# Petri IT Knowledgebase > IT Knowledgebase --- ## Pages - [Advertising](https://petri.com/advertising/): - [Cookie Policy](https://petri.com/cookie-policy/): Last updated on November 23, 2023 This cookie policy (“Policy”) describes what cookies are and how and they’re being used... - [Logitech Summer 2023](https://petri.com/giveways/logitech-summer-2023/): Check out how to win some free Logitech Gear from Petri. com/UnplugIT - [Giveways](https://petri.com/giveways/): - [Blog](https://petri.com/blog/): - [Homepage](https://petri.com/): Welcome to the Petri IT Knowledgebase, the trusted resource for IT Professionals for more than 20 years. - [GET-IT Microsoft Teams 1-Day Virtual Conference](https://petri.com/get-it-microsoft-teams-1-day-virtual-conference/): - [Petri.com Feedback](https://petri.com/petri-feedback/): Use the form below to submit feedback or report a bug on petri. com. - [Sponsors](https://petri.com/sponsors/): - [GetSponsor API](https://petri.com/getsponsor/): - [About Petri.com](https://petri.com/about/): About Petri. com Founded in 1999, for over 25 years Petri. com has been one of the most trusted and... - [Category](https://petri.com/category/): - [Post](https://petri.com/post/): - [Learning Center](https://petri.com/learning-center/): - [Subscribe](https://petri.com/subscribe/): ## ## Posts - [Troubleshooting Group Policy with GPResult: A Complete Guide](https://petri.com/gpresult/): Navigating Group Policy issues can be challenging in an Active Directory environment, but the gpresult command is a powerful tool... - [Microsoft 365 Apps to Prompt Users for OneDrive Backup](https://petri.com/microsoft-365-apps-prompt-onedrive-backup/): Microsoft 365 apps will soon prompt eligible users to back up their files to OneDrive, ensuring better data security and... - [Microsoft 365 Business Premium Customers Gain Access to E5 Security Add-On for Advanced Cyber Protection](https://petri.com/microsoft-365-business-premium-e5-security-add-on/): Microsoft is expanding its cybersecurity offerings by making Microsoft 365 E5 Security available as an add-on for Microsoft 365 Business... - [How Overcomplicated Systems Are Hurting Employee Productivity](https://petri.com/tech-overload-workplace-productivity/): Workplace technology is meant to boost productivity, but for many UK employees, it’s becoming a major roadblock. A new study... - [Microsoft Announces New AI Sales Agents to Enhance Business Automation](https://petri.com/microsoft-ai-sales-agents/): Microsoft has announced two new AI-driven agents designed to automate key business functions in Dynamics 365, enhancing sales efficiency and... - [Microsoft Teams Gets a Major Upgrade: New Chat and Meeting Features You Need to Know](https://petri.com/microsoft-teams-chat-meeting-features/): Microsoft Teams just got a whole lot smarter and more efficient with its latest February updates, introducing intelligent features that... - [Microsoft Unveils Windows 365 Disaster Recovery Plus: Faster Cloud PC Restoration in Just 30 Minutes](https://petri.com/windows-365-disaster-recovery-plus/): Microsoft has launched Windows 365 Disaster Recovery Plus in public preview for enterprise customers. This new offering provides organizations with... - [Microsoft Blames ‘Problematic Code Change’ for Recent Microsoft 365 Outage](https://petri.com/microsoft-365-outage-problematic-code-change/): This weekend, Microsoft tackled a major outage that left thousands of users unable to access key Microsoft 365 services like... - [ClickFix Phishing Campaign Deploys Havoc Malware Through Microsoft SharePoint](https://petri.com/clickfix-phishing-campaign-havoc-sharepoint/): Cybersecurity researchers have discovered a sophisticated phishing campaign targeting Microsoft SharePoint accounts, using a deceptive technique called ClickFix. This attack... - [What Is Windows Autopilot?](https://petri.com/what-is-windows-autopilot/): Windows Autopilot is a cloud-based deployment and provisioning service that simplifies setting up new devices. It ensures devices are configured... - [SharePoint Online Now Supports Sensitivity Labels for User-Defined Permissions](https://petri.com/sharepoint-online-labels-user-defined-permissions/): Microsoft is enhancing data security in SharePoint Online by introducing support for sensitivity labels with user-defined permissions, giving organizations greater... - [Microsoft to Retire Skype in May – Here’s What it Means for Businesses](https://petri.com/microsoft-retire-skype-may/): Microsoft is set to retire Skype for consumers on May 5, 2025. To ensure a smooth transition, the company is... - [First Ring Daily: Skype Gets Zune'd](https://petri.com/first-ring-daily-skype-gets-zuned/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to retire Skype in May... - [What’s new in Microsoft Intune - February 2025](https://petri.com/whats-new-microsoft-intune-february-2025/): Microsoft has released its latest monthly recap, highlighting new features and enhancements for Microsoft Intune. This update brings significant improvements... - [Microsoft Adds Password Protection for PDFs in OneDrive Web App](https://petri.com/microsoft-onedrive-web-app-password-protection/): Microsoft is set to release a new update for the OneDrive web app that will allow users to secure their... - [The Untapped Potential of IoT Edge Devices in Enhancing Data Privacy](https://petri.com/iot-edge-data-privacy/): In an era dominated by data breaches and rising concerns over digital privacy, the Internet of Things (IoT) often gets... - [Microsoft 365 Copilot Gets New Admin Feedback Tool for Better Data Control](https://petri.com/microsoft-365-copilot-gets-new-admin-feedback-tool-for-better-data-control/): Microsoft has introduced a new feature that allows administrators to submit Microsoft 365 Copilot feedback on behalf of users while... - [Massive Password Spray Attack Campaign Targets Microsoft 365 Accounts](https://petri.com/password-spray-attack-microsoft-365-accounts/): Cybersecurity researchers have uncovered a large-scale password spray attack exploiting outdated Basic authentication protections in Microsoft 365 accounts. Operated by... - [Azure Key Vault: Securely Store and Manage Your Secrets](https://petri.com/azure-key-vault/): Microsoft Azure Key Vault provides a centralized, secure, and scalable solution to store and manage cryptographic keys and secrets. With... - [Microsoft to Eliminate Reactivation Fees for Archived SharePoint Sites](https://petri.com/microsoft-reactivation-fees-archived-sharepoint-sites/): Microsoft is making a cost-saving change for organizations using SharePoint Online by eliminating the reactivation fee for archived sites in... - [Microsoft Defender for Cloud Gets Data and AI Security Dashboard for Proactive Threat Management](https://petri.com/microsoft-defender-for-cloud-data-and-ai-security-dashboard/): Microsoft has launched a new Data and AI security dashboard in public preview for its Defender for Cloud solution. This... - [Fix Windows Update - The Ultimate Guide](https://petri.com/fix-windows-update/): Struggling with how to fix Windows Update errors, stuck downloads, or failed installations? You’re not alone. This comprehensive guide will... - [Exchange Online Introduces New Tenant Outbound Email Limits - How It Affects Your Organization](https://petri.com/exchange-online-tenant-outbound-email-limits/): Microsoft has rolled out new tenant-level outbound email limits, known as the Tenant External Recipient Rate Limit (TERRL), for Exchange... - [OneDrive for Business to Remove EEEU Sharing Permission to Strengthen Data Security](https://petri.com/onedrive-for-business-eeeu-sharing-permission/): Microsoft is tightening security measures in OneDrive for Business by removing the EEEU sharing permission, a setting that could inadvertently... - [Microsoft Patches Major Power Pages Flaw That Could Expose Sensitive Data](https://petri.com/microsoft-patches-power-pages-flaw/): Microsoft has patched a critical Power Pages vulnerability that was actively exploited by cybercriminals, potentially exposing sensitive data. The company... - [Exchange Online to Enforce Stricter Controls on EWS Access — Here’s What’s Changing](https://petri.com/exchange-online-estricter-controls-ews-access/): Microsoft is preparing to retire Exchange Web Services (EWS) for Exchange Online, with all EWS requests set to be blocked... - [First Ring Daily: Microsoft's Quantum Computing Breakthrough](https://petri.com/first-ring-daily-microsofts-quantum-computing-breakthrough/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Majorana 1, Microsoft’s first quantum chip which... - [Microsoft 365 Backup - Why Do It and What Are My Options?](https://petri.com/microsoft-365-backup-why-do-it-and-what-are-my-options/): Microsoft 365 is one of today’s most widely used SaaS (Software-as -a-Service) applications. However, Microsoft 365 backup is a topic... - [PSA: Microsoft to Sunset WSUS Driver Synchronization, Urges Cloud Migration](https://petri.com/microsoft-sunset-wsus-driver-synchronization/): Microsoft is once again alerting administrators that Windows Server Update Services (WSUS) driver synchronization will be deprecated in April. The... - [Microsoft Teams Adds Name Pronunciation to Profile Cards](https://petri.com/microsoft-teams-name-pronunciation-profile-cards/): Mispronouncing a colleague’s name can be awkward, but Microsoft Teams is making it easier to get it right with its... - [Common Windows Image Backup Errors and How to Fix Them](https://petri.com/windows-image-backup-errors/): This guide explores some of the most frequent and persistent Windows Image Backup errors and associated error codes, actively highlighting... - [New Outlook for Windows to Add Built-In Newsletters for Seamless Email Communication](https://petri.com/new-outlook-for-windows-newsletters/): Microsoft will add support for Newsletters to its new Outlook for Windows and the Outlook web app. This new feature... - [Microsoft Warns of New XCSSET macOS Malware Variant with Advanced Stealth Tactics](https://petri.com/microsoft-new-xcsset-macos-malware-variant/): Microsoft has discovered a new variant of XCSSET, a sophisticated macOS malware family that has targeted users since at least... - [Microsoft Fixes Boot Errors in Windows Server 2025 with Latest Update](https://petri.com/microsoft-fixes-boot-errors-windows-server-2025/): Microsoft has released an update to fix a bug that caused “boot device inaccessible” errors on some Windows Server 2025... - [Microsoft to Phase Out Event Alerts in Purview Audit - How to Prepare for the Change](https://petri.com/microsoft-phase-out-event-alerts-purview-audit/): Microsoft is preparing to retire the event alerts feature in its Purview Audit solution. The company announced on the Microsoft... - [What is Microsoft Configuration Manager?](https://petri.com/what-is-microsoft-configuration-manager/): Microsoft Configuration Manager first appeared in 1994 as Microsoft Systems Management Server (SMS), offering tools to centrally manage software distribution... - [Russian Hackers Use Device Code Phishing to Hijack Microsoft 365 Accounts](https://petri.com/russian-hackers-device-code-phishing-steal-emails/): Microsoft has issued an alert about a sophisticated phishing campaign by Russian hackers, leveraging a deceptive device code authentication trick... - [First Ring Daily: They Won](https://petri.com/first-ring-daily-they-won/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss phone upgrade cycles, Microsoft offloading its HoloLens... - [Azure Blob Storage: The IT Pro’s Guide to Secure, Scalable Cloud Object Storage](https://petri.com/azure-blob-storage/): What is Azure Blob Storage? Microsoft Azure Blob Storage provides a scalable and efficient way to store massive amounts of... - [Latest Update Force Installs New Outlook Client on Windows 10 PCs](https://petri.com/windows-10-update-force-installs-new-outlook/): Microsoft released a major cumulative update for Windows 10 versions 22H2 and 21H2 this week. The KB5051974 update delivers important... - [Microsoft SIEM + XDR Gets New Unified Device Timeline Experience](https://petri.com/microsoft-siem-xdr-unified-device-timeline/): Microsoft has introduced a new Unified Device Timeline experience in its SIEM + XDR solution. This new feature offers administrators... - [Microsoft Outlook Now Lets Users Minimize Email Drafts on Android and iOS](https://petri.com/microsoft-outlook-minimize-email-drafts-android-ios/): Microsoft has introduced a new feature in the Outlook mobile app that allows users to minimize email drafts for seamless... - [What's New in Microsoft Intune Suite - February 2025](https://petri.com/whats-new-microsoft-intune-suite-february-2025/): Microsoft has introduced several new features and enhancements to its Intune Suite. Launched in March 2023, Microsoft Intune Suite is... - [Using Diskpart: A Guide to Windows Disk Management](https://petri.com/using-diskpart/): Diskpart is a powerful command-line utility in Windows that allows users to manage their hard drive, disks, partitions, and volumes... - [February 2025 Patch Tuesday Updates Fix 2 Zero-Day Vulnerabilities](https://petri.com/february-2025-patch-tuesday-updates/): Microsoft has released the February 2025 Patch Tuesday updates for Windows 11 and Windows 10. This month, there are 57... - [Microsoft Teams Gets AI-Powered Super Resolution Feature to Enhance Video Call Quality](https://petri.com/microsoft-teams-super-resolution/): Microsoft Teams has introduced a new Super Resolution feature that leverages AI to enhance the quality of video calls. This... - [Microsoft Releases Final Exchange Server 2019 Update with New Features and Security Enhancements](https://petri.com/microsoft-final-exchange-server-2019-update/): Microsoft has announced the release of the 2025 H2 Cumulative Update (CU15) for Exchange Server 2019. This is the final... - [Microsoft Intune: Set Up iOS Web-Based Device Enrollment](https://petri.com/microsoft-intune-ios-web-based-device-enrollment/): The introduction of iOS web-based device enrollment marked a significant step forward in simplifying how personal devices are managed by Microsoft... - [Hackers Exploit Publicly Leaked ASP.NET Keys for Code Injection Attacks — Are You at Risk?](https://petri.com/hackers-asp-net-keys-code-injection-attacks/): Microsoft has disclosed that threat actors are exploiting publicly exposed ASP. NET machine keys to execute ViewState code injection attacks.... - [New Policy to Let IT Admins Manage Windows 11 Updates During OOBE](https://petri.com/windows-11-updates-oobe-policy/): Microsoft has announced a major change that will give organizations greater control over how updates are installed on new Windows... - [Microsoft Teams to Get New Facebook-Inspired Storyline Feature to Boost Employee Engagement](https://petri.com/microsoft-teams-storyline-feature/): Microsoft has started testing a new Facebook-style Storyline news feed internally within Microsoft Teams. According to a new report from... - [What is Azure RBAC?](https://petri.com/what-is-azure-rbac/): Azure Role-Based Access Control (RBAC) is Microsoft Azure’s primary authorization system for managing access to cloud resources. By assigning specific... - [Microsoft Releases PowerShell Script to Counter BlackLotus UEFI Bootkit Threat](https://petri.com/powershell-script-blacklotus-uefi-bootkit/): Microsoft has released a new PowerShell script that enables administrators to update bootable media with the “Windows UEFI CA 2023”... - [Microsoft Extends Testing for Final Exchange Server 2019 Update - What it Means for Businesses](https://petri.com/microsoft-testing-final-exchange-server-2019-update/): Microsoft has yet to release the final cumulative update (CU15) for Exchange Server 2019 due to technical issues. The company... - [New Microsoft Teams PowerShell Setting Enables Federation with Specific Trial Tenants](https://petri.com/microsoft-teams-powershell-federation-trial-tenants/): Microsoft has introduced a new PowerShell setting within Tenant Federation Configuration, offering administrators enhanced flexibility to tailor their federation posture.... - [Understanding Group Policy WMI Filtering](https://petri.com/group-policy-wmi-filter/): Group Policy WMI Filtering is a powerful feature that allows administrators to apply Group Policy Objects (GPOs) and Group Policy... - [Hackers Use Fake ADFS Login Pages to Steal Credentials — Is Your Organization at Risk?](https://petri.com/hackers-fake-adfs-steal-credentials/): Security researchers have discovered a sophisticated phishing campaign targeting organizations that rely on Active Directory Federation Services (ADFS) for secure... - [Latest Microsoft Entra Connect Sync Update Brings New Auditing Capabilities](https://petri.com/microsoft-entra-connect-sync-auditing-capabilities/): Microsoft has recently rolled out a new update (version 2. 4. 129. 0) of its Entra Connect Sync service. The... - [What is SQL Server Reporting Services?](https://petri.com/sql-server-reporting-services-introduction/): SQL Server Reporting Services (SSRS) is a set of on-premises tools and services that enable you to create, deploy, and... - [Microsoft Entra to Add New People Administrator Role](https://petri.com/microsoft-entra-people-administrator-role/): Microsoft is about to add a new People administrator role in Microsoft Entra, allowing organizations to securely delegate people-related tasks.... - [Microsoft Teams Gets New Meetings Features and Advanced IT Controls](https://petri.com/microsoft-teams-updates-january-2025/): Microsoft published its monthly roundup of all the new capabilities added to its Teams collaboration platform in January. The latest... - [Microsoft Makes "Think Deeper" Free for All Copilot Users](https://petri.com/microsoft-think-deeper-free-copilot/): February 7, 2025, 8:32 AM PT: The “Think Deeper” feature is currently only available for consumers, and commercial customers won’t... - [First Ring Daily: Microsoft Earnings Aftermath](https://petri.com/first-ring-daily-microsoft-earnings-aftermath/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's FY2025 Q2 earnings and whether the... - [Microsoft Brings DeepSeek R1 to Windows 11 Copilot+ PCs](https://petri.com/microsoft-deepseek-r1-windows-11-copilot-pcs/): Microsoft has announced that it’s bringing NPU-optimized versions of DeepSeek R1 to Copilot+ PCs. The company will also integrate the... - [Microsoft Announces New Intel-Powered Surface Laptop 7 and Surface Pro 11 for Businesses](https://petri.com/intel-surface-laptop-7-surface-pro-11-businesses/): Microsoft announced today new business editions of its Surface Pro 11 and Surface Laptop 7 Copilot+ PCs with Intel x86... - [Microsoft to Integrate Security Copilot into Surface Management Portal](https://petri.com/security-copilot-surface-management-portal/): Microsoft has announced the upcoming integration of its Security Copilot into the Surface Management Portal, offering customers access to the... - [Surface Hub 3 to Get Support for Microsoft Edge and Miracast](https://petri.com/surface-hub-3-microsoft-edge-miracast/): Microsoft announced this morning several new experiences coming to Surface Hub 3 later this year, including support for Microsoft Edge... - [How to Use the Azure Pricing Calculator](https://petri.com/azure-pricing-calculator/): This guide will show you how to use the Azure Pricing Calculator effectively, offering step-by-step instructions, real-world examples, and key... - [Microsoft Edge’s Scareware Blocker: A Smarter Way to Block Malicious Scams](https://petri.com/microsoft-edges-scareware-blocker-preview/): Microsoft Edge is adding a new security feature that uses machine learning to defend users against scareware attacks. The new... - [Microsoft’s 2025 Cybersecurity Guide: Strengthening Identity Protection and Threat Defense](https://petri.com/microsoft-strategies-proactive-identity-management/): Microsoft has detailed key security recommendations for enterprises in 2025, emphasizing a proactive approach to data protection. The company urges... - [Microsoft Teams to Add Brand Impersonation Protection to Prevent Phishing Attacks](https://petri.com/microsoft-teams-chat-brand-impersonation-protection/): Microsoft has announced that the new brand impersonation protection feature will become generally available in Microsoft Teams next month. This... - [Microsoft Entra Gets New Identity Secure Score Recommendations to Boost Security](https://petri.com/microsoft-entra-identity-secure-score-recommendations/): Microsoft has announced the general availability of new Identity Secure Score recommendations in Microsoft Entra. These recommendations are designed to... - [PSA: Microsoft to Retire WSUS Driver Synchronization — What It Means for IT Administrators](https://petri.com/microsoft-retire-wsus-driver-synchronization/): Microsoft is gearing up to retire a key feature in Windows Server Update Services (also known as WSUS). The company... - [What Is Microsoft Intune?](https://petri.com/introduction-microsoft-intune/): Learn how Microsoft Intune allows organizations to enforce security policies, deploy software updates, and manage settings across various devices from a single console. - [Outdated Exchange Servers Could Lose Critical Security Protections, Microsoft Warns](https://petri.com/outdated-exchange-servers-security-protections/): Microsoft has alerted organizations about the risks of using outdated Exchange Servers. The company has warned that the Exchange Emergency... - [First Ring Daily: Microsoft is Changing](https://petri.com/first-ring-daily-microsoft-is-changing/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss organizational shakeups at Microsoft, including the recent... - [Microsoft Announces Audit Logging Changes Coming to Exchange Online](https://petri.com/exchange-online-audit-logging-changes/): Microsoft has announced plans to retire the Search-MailboxAuditLog and New-MailboxAuditLogSearch cmdlets in Exchange Online. The company will deprecate both cmdlets... - [Microsoft Defender for Endpoint Adds Aggregated Reporting to Streamline Threat Analysis](https://petri.com/microsoft-defender-for-endpoint-aggregated-reporting/): Microsoft has added support for aggregated reporting in public preview within its Defender for Endpoint solution. This new feature aims... - [Microsoft to Mandate MFA for Accessing Microsoft 365 Admin Center](https://petri.com/microsoft-365-admin-center-mfa/): Microsoft will soon require multi-factor authentication (MFA) for accessing the Microsoft 365 admin center. Starting on February 3, the company... - [Hackers Impersonate Tech Support on Microsoft Teams to Deploy Ransomware](https://petri.com/microsoft-teams-tech-support-ransomware/): Sophos has raised an alert about a wave of ransomware attacks where threat actors manipulated Microsoft Teams by impersonating tech... - [Microsoft Teams Meetings to Let Users Edit Display Names](https://petri.com/microsoft-teams-meetings-edit-display-names/): Microsoft Teams is getting a new update that will allow participants to edit their display names in real time during... - [Microsoft Fixes Startup Bug Affecting Windows Server 2022](https://petri.com/windows-server-2022-startup-issue-numa-nodes/): Microsoft has issued a fix to address a bug impacting Windows Server 2022 machines with two or more NUMA nodes.... - [Microsoft to Enhance Intune with Security Features and Device Cleanup Tools](https://petri.com/microsoft-to-enhance-intune-with-security-features-and-device-cleanup-tools/): Microsoft is working on several new features for its Intune service. The company will introduce a new integration of Enterprise... - [How to Apply Sensitivity Labels to Microsoft Teams](https://petri.com/microsoft-teams-sensitivity-labels/): Learn how to apply Teams sensitivity labels for enhanced security and compliance in Microsoft Teams. - [Microsoft to Retire Azure AD Graph APIs Next Month](https://petri.com/microsoft-retire-azure-ad-graph-apis/): Microsoft is moving forward with the phased retirement of its Azure AD Graph API service, which began in September 2024.... - [Microsoft Resolves Crash Issues in Microsoft 365 Apps on Windows Server](https://petri.com/microsoft-365-apps-crash-windows-server/): Microsoft has fixed a critical issue that had been causing Microsoft 365 apps and classic Outlook to crash on Windows... - [Biden’s Executive Order Targets Cybersecurity, AI, and Critical Infrastructure](https://petri.com/bidens-executive-order-cybersecurity-ai/): The Biden administration issued a new cybersecurity executive order (EO) on January 16, 2025. This directive introduces stringent standards for... - [Microsoft to Let Windows 11 Users Enable Administrator Protection from Settings](https://petri.com/windows-11-enable-administrator-protection-settings/): Microsoft has started testing a streamlined approach to enable the Administrator Protection feature in Windows 11. The latest Windows 11... - [Microsoft to Discontinue Support for Office Apps on Windows 10 in October](https://petri.com/microsoft-discontinue-support-office-apps-windows-10/): Microsoft announced this week that it will end support for Office apps on Windows 10 later this year, aligning with... - [First Ring Daily: Copilot Gets Costly](https://petri.com/first-ring-daily-copilot-gets-costly/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss how Microsoft is using Copilot to raise... - [How to Perform an In-Place Upgrade to Windows Server 2025](https://petri.com/in-place-upgrade-to-windows-server-2025/): In this post, I will demonstrate how to perform an in-place upgrade to Windows Server 2025 from one of your... - [January 2025 Patch Tuesday Updates Face Compatibility Issues with Citrix Software](https://petri.com/january-2025-patch-tuesday-updates-citrix-software/): Microsoft has identified a compatibility issue between the January 2025 Patch Tuesday updates and specific Citrix software installations. The company... - [Microsoft Teams Now Lets Users Control Where Notifications Appear on Screen](https://petri.com/microsoft-teams-now-lets-users-control-where-notifications-appear-on-screen/): Last month, Microsoft announced plans to roll out a new feature that enables users to customize the location of notifications... - [Microsoft Defender for Office 365 Adds AI-Powered Threat Classification to Boost Email Security](https://petri.com/microsoft-defender-for-office-365-threat-classification/): Microsoft is introducing a new Threat classification feature in Defender for Office 365 to improve email security. This tool leverages... - [SQL Server Essentials: Core SQL Server Data Types](https://petri.com/sql-server-data-types/): In this article we’ll cover the essential SQL Server data types and discuss their common usage. Data is at the... - [Microsoft 365 Copilot Chat Introduces Pay-as-You-Go Agents for Businesses](https://petri.com/microsoft-365-copilot-chat-pay-as-you-go-agents/): Microsoft introduced today a new Microsoft 365 Copilot Chat experience for commercial customers. This service extends the existing free AI... - [January 2025 Patch Tuesday Updates Fix Critical Hyper-V Privilege Escalation Flaws](https://petri.com/january-2025-patch-tuesday-updates/): Microsoft released yesterday the January 2025 Patch Tuesday updates for Windows 11 and Windows 10. This month’s Patch Tuesday updates... - [New Unified Contacts Experience Enhances Collaboration Across Microsoft Teams and Outlook](https://petri.com/new-unified-contacts-experience-microsoft-teams-outlook/): Microsoft has announced the general availability of the new unified contacts experience in Microsoft Teams and Outlook. This new feature... - [Microsoft Takes Legal Action Against Cybercriminals Exploiting AI Services to Spread Harmful Content](https://petri.com/microsoft-sues-cybercriminals-ai-services/): Microsoft has filed a lawsuit against a group of cybercriminals accused of creating malicious tools to bypass the security safeguards... - [Microsoft Intune Company Portal - Everything You Need to Know](https://petri.com/microsoft-intune-company-portal/): At the device and user level, the Intune Company Portal serves as powerful application that allows end users to install approved apps,... - [Microsoft Entra ID Adds TAP Support for Internal Guests](https://petri.com/microsoft-entra-id-tap-internal-guests/): Microsoft Entra ID has introduced support for issuing Temporary Access Passes (TAPs) for internal guest users. These passcodes are time-limited... - [Microsoft to Force Install New Outlook on Windows 10 PCs: Here’s What You Need to Know](https://petri.com/new-outlook-install-windows-10/): Microsoft is preparing to roll out an update that will automatically install the new Outlook for Windows client on Windows... - [First Ring Daily: What The Dell Happened?](https://petri.com/first-ring-daily-what-the-dell-happened/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss some of the biggest news of CES... - [What Is Azure Policy?](https://petri.com/what-is-azure-policy/): Effective governance is essential in today’s multi-cloud, hybrid IT ecosystems. Azure Policy provides a comprehensive framework for defining, enforcing, and... - [Key Deadlines IT Admins Need to Know for Microsoft 365 Products and Features](https://petri.com/key-deadlines-microsoft-365-products-features/): Microsoft will officially drop support for Windows 10 on October 14, 2025. Additionally, the company has announced plans to retire... - [Microsoft to Lay Off Underperforming Employees Across Key Divisions](https://petri.com/microsoft-lay-off-underperforming-employees/): Microsoft is gearing up for another wave of job cuts, this time targeting employees deemed underperforming. According to a new... - [Microsoft to Enhance New Outlook for Windows with S/MIME Support for Secure Email Communication](https://petri.com/microsoft-new-outlook-for-windows-s-mime/): Microsoft is adding fundamental Secure/Multipurpose Internet Mail Extensions (S/MIME) support for primary accounts to the new Outlook for Windows. This... - [Unlocking the Power of Active Directory Groups: A Comprehensive Guide](https://petri.com/active-directory-groups/): Active Directory groups are essential tools for managing and organizing users, computers, and other resources within a Windows domain. This... - [Microsoft Teams to Add New Live Chat Feature for Small Businesses](https://petri.com/microsoft-teams-live-chat-small-businesses/): Microsoft Teams is getting a Live chat feature that will enable small businesses to interact directly with customers on their... - [What's New in Microsoft SharePoint - December 2024](https://petri.com/microsoft-sharepoint-updates-december-2024/): Microsoft published a comprehensive roundup of the enhancements made to its SharePoint service in December 2024. The company mentioned that... - [Microsoft to Archive Unlicensed OneDrive Accounts This Month](https://petri.com/microsoft-archive-unlicensed-onedrive-accounts/): Last year, Microsoft announced plans to begin archiving OneDrive for Business accounts that remain unlicensed for over 90 days. The... - [Upgrade Now: Microsoft Declares 2025 the Year of Windows 11](https://petri.com/microsoft-2025-year-windows-11/): Microsoft has officially declared 2025 the “year of Windows 11 PC refresh. ” The company is urging customers to prepare... - [What is Microsoft Global Secure Access?](https://petri.com/microsoft-global-secure-access/): Microsoft Global Secure Access (GSA) offers an integrated, identity-driven approach to securing remote access to applications, file shares and resources, regardless... - [Microsoft Teams to Add New Recording Policies for Town Halls and Webinars](https://petri.com/microsoft-teams-recording-policies-town-halls-webinars/): Microsoft Teams is set to roll out new recording policies specifically for town halls and webinars. This feature will be... - [Critical Active Directory Vulnerability Could Let Attackers Crash Windows Servers](https://petri.com/active-directory-vulnerability-windows-servers/): Cybersecurity researchers have warned about a critical vulnerability in Windows Lightweight Directory Access Protocol (LDAP), posing a significant threat to... - [First Ring Daily: Twenty-Five](https://petri.com/first-ring-daily-twenty-five/): In this first episode of First Ring Daily of the new year, Brad Sams and Paul Thurrott discuss what to... - [What is Microsoft Defender for Cloud?](https://petri.com/what-is-microsoft-defender-for-cloud/): This article explores Microsoft Defender for Cloud features, benefits, integration capabilities, and best practices, offering actionable insights for IT professionals... - [Microsoft Teams Web Client Gets New Screen-Sharing Control](https://petri.com/microsoft-teams-updates-december-2024/): Microsoft has published a recap of all the enhancements made to its Teams collaboration platform in December 2024. This time... - [Cybersecurity Alert: Hackers Exploit Chrome Extensions to Hijack User Passwords](https://petri.com/chrome-extensions-hijack-user-passwords/): Cybersecurity experts have discovered a series of attacks where hackers compromised multiple Chrome extensions. According to a new report from... - [The Pros and Cons of Hybrid Azure AD Join](https://petri.com/benefits-hybrid-azure-ad-join/): What are the benefits of Hybrid Azure AD Join? Synchronizing existing on-premises AD devices is beneficial, but for not for new devices. Let's find out why. - [Microsoft 365 Apps Expand Double Key Encryption Support to Android Devices](https://petri.com/microsoft-365-apps-double-key-encryption-android/): Microsoft has rolled out Double Key Encryption (DKE) support for its Microsoft 365 apps on Android devices. The company has... - [First Ring Daily: Just a Button](https://petri.com/first-ring-daily-just-a-button/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s recent Copilot key changes, Asus announcing... - [Microsoft Confirms 'Product Deactivated' Errors in Office Apps Caused by Licensing Changes](https://petri.com/microsoft-office-apps-product-deactivated-errors/): Microsoft is currently investigating a new issue affecting its Office apps, including Word, Outlook, and Excel. The company acknowledged in... - [GitHub Launches Free Version of Copilot AI Assistant for VS Code](https://petri.com/github-copilot-free-vs-code/): Microsoft-owned GitHub has launched a free version of its Copilot AI assistant, making it available to all developers. The AI-powered... - [Microsoft 365 App Set to Rebrand as Microsoft 365 Copilot Next Month](https://petri.com/microsoft-365-app-rebrand-microsoft-365-copilot/): Microsoft is preparing a major update to the UI of its Microsoft 365 app in early 2025. The company has... - [What Is Azure Monitor? - Optimizing Your IT Infrastructure](https://petri.com/azure-monitor/): In this guide, we’ll explore Azure Monitor’s key components, advanced features, and use cases while integrating practical examples, KQL (Kusto... - [Microsoft Details Changes to Audit Log Searches in Exchange Online](https://petri.com/microsoft-changes-audit-log-searches-exchange-online/): Microsoft is changing the way the Search-UnifiedAuditLog cmdlet works in Exchange Online. Starting in January 2025, the HighCompleteness parameter, which... - [Critical Windows Kernel Flaw Could Let Hackers Gain System Privileges](https://petri.com/cisa-critical-windows-kernel-flaw/): The U. S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new Windows kernel vulnerability to its Known Exploited... - [AI-Powered File Summaries Coming to Microsoft Teams Mobile Apps](https://petri.com/ai-file-summaries-microsoft-teams-mobile-apps/): Microsoft is adding AI-generated summaries to its Teams mobile apps. This new feature will provide quick, concise overviews of Word,... - [Microsoft Adds Enhanced Message Trace to Exchange Online](https://petri.com/exchange-online-enhanced-message-trace/): Microsoft has announced the public preview of its enhanced Message Trace experience in the Exchange admin center (EAC) for Exchange... - [Organization Explorer in Outlook Coming to All Microsoft 365 Commercial Customers](https://petri.com/organization-explorer-outlook-microsoft-365/): Microsoft has announced that the Organization Explorer feature in Outlook will soon be available to all Microsoft 365 commercial customers.... - [How To Use The Windows Local Group Policy Editor](https://petri.com/windows-local-group-policy-editor/): This guide aims to help you understand how to navigate and use the Windows Local Group Policy Editor (LGPE) to... - [Microsoft Refines Copilot Key Experience in Windows 11 for Businesses](https://petri.com/microsoft-copilot-key-windows-11-businesses/): Microsoft has outlined enhancements to the Copilot key experience in Windows 11, tailored to better meet the needs of commercial... - [First Ring Daily: More of the Same](https://petri.com/first-ring-daily-more-of-the-same/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft deprecating suggested actions in Windows 11... - [Microsoft Lifts Windows 11 24H2 Upgrade Block on PCs with USB Scanners](https://petri.com/windows-11-24h2-upgrade-block-usb-scanners/): Microsoft has addressed a bug that disrupted connections for USB scanners and other devices on Windows 11. The company has... - [The Hidden Costs of AI Implementation in Modern IT Infrastructures](https://petri.com/the-hidden-costs-of-ai/): Unless you’ve been living under a rock, there’s no denying the extent to which AI has permeated organizations—35% of businesses... - [Researchers Discover Critical Microsoft Azure MFA Flaw: What You Need to Know](https://petri.com/critical-microsoft-azure-mfa-flaw/): Cybersecurity researchers have warned about a critical flaw in Microsoft’s multifactor authentication system. This vulnerability could allow hackers to infiltrate... - [Microsoft to Retire Client Access Rules in Exchange Online by 2025](https://petri.com/exchange-online-retire-client-access-rules-2025/): Microsoft has announced plans to retire Client Access Rules (CARs) in Exchange Online for all tenants by September 2025. The... - [Microsoft to Auto-Migrate Enterprise Users to New Outlook for Windows](https://petri.com/new-outlook-for-windows-migrate-enterprise-users/): Microsoft is preparing to transition Microsoft 365 Enterprise users from the classic Outlook to the new Outlook for Windows client.... - [Enable Windows Server 2025 Hotpatching: A Step-by-Step Guide](https://petri.com/enable-windows-server-hotpatching/): This article provides an overview of how to enable Windows Server 2025 Hotpatching. We'll cover prerequisites, step-by-step instructions, best practices, and troubleshooting tips. - [Microsoft Releases December 2024 Patch Tuesday Updates](https://petri.com/microsoft-december-2024-patch-tuesday-updates/): Microsoft has released the December 2024 Patch Tuesday Updates for all supported versions of Windows 11 and Windows 10. This... - [Final Exchange Server 2019 Cumulative Update Delayed Until 2025](https://petri.com/final-exchange-server-2019-cumulative-update-2025/): Microsoft has postponed the release of the final Cumulative Update for Exchange Server 2019. This update, known as Exchange Server... - [Researchers Discover New Windows Zero-Day Vulnerability Exposing NTLM Credentials](https://petri.com/windows-zero-day-vulnerability-ntlm-credentials/): Researchers at Acros Security recently discovered a critical Windows zero-day vulnerability affecting all supported versions of the operating system. In... - [Microsoft Confirms Compatability Issue Between Google Workspace Sync and Windows 11 Version 24H2](https://petri.com/microsoft-issue-outlook-windows-11-version-24h2/): Microsoft has acknowledged a new compatibility issue between Windows 11 version 24H2 and the Google Workspace Sync app. The company... - [Install Azure Arc Agent on Linux](https://petri.com/install-azure-arc-agent-on-linux/): Install Azure Arc Agent on Linux - this guide covers meeting prerequisites, deployment instructions, and advanced topics. - [Microsoft Teams to Let Users Customize the Location of Notifications](https://petri.com/microsoft-teams-customize-location-notifications/): Microsoft Teams is getting a new update that will allow users to customize where notifications appear on their screen. The... - [First Ring Daily: Big Changes for Intel](https://petri.com/first-ring-daily-big-changes-for-intel/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Intel’s ongoing troubles after the chip maker... - [What is Intune Endpoint Privilege Management?](https://petri.com/what-is-intune-endpoint-privilege-management/): When we consider Microsoft Intune Endpoint Privilege Management as a solution, we have a very real problem that’s being solved.... - [No U-Turn on Windows 11 TPM Requirement Despite Looming End of Support for Windows 10](https://petri.com/windows-11-support-older-hardware/): Microsoft has reiterated that it will not relax Windows 11’s stringent hardware requirements to entice Windows 10 users to upgrade.... - [Samsung to Discontinue DeX App for Windows PCs](https://petri.com/samsung-discontinue-dex-windows/): Samsung has revealed that its upcoming One UI 7 update will discontinue support for the DeX app on Windows. The... - [Microsoft Launches New Security Exposure Management Tool to Enhance Organizational Resilience](https://petri.com/microsoft-launches-security-exposure-management/): Microsoft has announced the general availability of Security Exposure Management. This new solution allows IT administrators to assess and reduce... - [Install Azure Arc Agent on Windows Server](https://petri.com/install-azure-arc-agent-windows-server/): In this guide I’ll show you how to install the Azure Arc agent on Windows Server using the Azure Portal onboarding flow and PowerShell scripts.... - [Microsoft's New Outlook for Windows to Let Users Move Emails Across Accounts](https://petri.com/microsoft-new-outlook-for-windows-move-emails-accounts/): Microsoft is about to release a new update for the new Outlook for Windows client, allowing users to seamlessly move... - [How New Rockstar 2FA Phishing Kit Targets Microsoft 365 Accounts](https://petri.com/rockstar-2fa-phishing-kit-microsoft-365/): Cybersecurity researchers have discovered a new phishing kit, dubbed Rockstar 2FA. The exploit toolkit enables hackers to steal Microsoft 365... - [FTC Opens Antitrust Probe Into Microsoft Over Cloud, AI Competition Concerns](https://petri.com/ftc-antitrust-probe-microsoft-cloud-ai/): The US Federal Trade Commission has reportedly launched an antitrust investigation into Microsoft. The Federal agency is scrutinizing Microsoft’s cloud... - [4 Steps to Secure Microsoft Entra ID](https://petri.com/steps-to-secure-microsoft-entra-id/): In this short guide, we’ll walk through the first 4 steps you should consider when implementing or securing Microsoft Entra ID. - [Microsoft Re-Releases the November 2024 Exchange Server Security Updates](https://petri.com/microsoft-re-releases-the-november-2024-exchange-server-security-updates/): This week, Microsoft re-released the November 2024 Exchange Server security updates, now known as November 2024 SUv2. The first release... - [Microsoft Faces Accusations of Using Customer Data to Train AI Models](https://petri.com/microsoft-faces-accusations-of-using-customer-data-to-train-ai-models/): Microsoft has been accused of using customer data from its Microsoft 365 applications, including Word and Excel, to train its... - [Windows and Firefox Zero-Day Security Flaws Being Exploited by Hackers](https://petri.com/windows-and-firefox-zero-day-security-flaws-being-exploited-by-hackers/): Security firm ESET is warning that RomCom, a Russian Advanced Persistent Threat (APT) group, is actively exploiting two zero-day security... - [Surge in IT Spending: AI Gold Rush Fuels Budget Increases](https://petri.com/surge-in-it-spending-ai-gold-rush-fuels-budget-increases/): CEOs are optimistic about the impact of AI and are increasing budgets for IT departments. Research from Salesforce finds that... - [Hackers Update Tactics to Bypass Multifactor Authentication](https://petri.com/hackers-bypass-mfa-aitm-quishing/): Microsoft is taking legal action to disrupt 240 websites owned by a cybercrime group in Egypt. The sites are connected... - [Windows 11 Insider Preview Brings Third-Party Passkey Support](https://petri.com/windows-11-insider-preview-third-party-passkey-support/): Microsoft has long been part of the FIDO Alliance, a consortium of technology companies championing a passwordless future. The company... - [Achieving True MFA in Active Directory by Securing Every Authentication Factor](https://petri.com/true-mfa-in-active-directory-securing-every-authentication-factor/): Multi-Factor Authentication (MFA) has become important for user security within Active Directory environments. By implementing additional verification steps, MFA makes... - [Microsoft 365 Users Experience Outlook ‘Issue’ as Fix Starts to Roll Out](https://petri.com/microsoft-365-issue-fix-november-25-2024/): Some European Microsoft 365 users started the week this morning without access to Microsoft 365 services. Microsoft said on X... - [Microsoft Teams Intelligent Event Recap Coming to Town Hall and Webinars](https://petri.com/microsoft-teams-intelligent-event-recap-release-date/): Microsoft updated its roadmap last week to confirm that Intelligent Event Recap is coming to Teams Town Hall and Webinars... - [Windows Recall and 'Click to Do' Preview Now Available on Copilot+ PCs](https://petri.com/windows-recall-preview-now-available/): Back in June 2024, Microsoft announced the new ‘Copilot+’ PC specification and device type. They also gave a demonstration of... - [First Ring Daily: Microsoft's Ignite 2024 Announcements](https://petri.com/first-ring-daily-microsofts-ignite-2024-announcements/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the biggest announcements from Microsoft’s Ignite conference... - [Microsoft Edge Introduces Shared Passwords Feature and New Security Updates](https://petri.com/microsoft-edge-gets-new-shared-passwords-feature-and-more/): This week at the Ignite 2024, Microsoft announced many new features coming to the company’s web browser, Edge for Business.... - [Windows Server Management enabled by Azure Arc Is Now Generally Available](https://petri.com/windows-server-management-enabled-by-azure-arc-is-now-ga/): At their Ignite 2024 tech conference this week, Microsoft announced a restructuring of sorts for Windows Server Management features and... - [Microsoft Introduces First Cloud PC Device - the Windows 365 Link](https://petri.com/microsoft-introduces-windows-365-link/): At Microsoft’s Ignite 2024 tech conference this week in Chicago, Redmond announced the first ‘Cloud PC’ device—a purpose-built solution called... - [Ignite 2024: Windows 11 Gets Hotpatching and New Admin Protection Feature](https://petri.com/windows-11-hotpatching-admin-protection/): Microsoft has announced new security features coming to Windows 11 Enterprise at Ignite 2024. The company has also introduced the... - [Ignite 2024: Microsoft to Add AI-Powered Windows Search to Copilot+ PCs](https://petri.com/microsoft-improved-windows-search-copilot-pcs/): Microsoft has announced plans to use AI models to enhance Windows search on its new Copilot+ PCs. These search improvements... - [Ignite 2024: Microsoft 365 Copilot Actions Feature Simplifies Task Automation for Businesses](https://petri.com/microsoft-365-copilot-actions-task-automation/): Microsoft has announced new updates for Microsoft 365 Copilot at its Ignite conference this morning. With Copilot Actions, organizations can... - [Ignite 2024: Microsoft Teams Gets New Meetings Features, Storyline Integration](https://petri.com/microsoft-teams-meetings-features-storyline/): Microsoft announced today several updates coming to Microsoft Teams at its Ignite 2024 conference. The company detailed new meetings features... - [Azure Arc: Monitoring and Securing Hybrid Environments](https://petri.com/what-is-azure-arc/): Explore the benefits of Microsoft Azure Arc and how it solves the common challenges of hybrid and multicloud management. - [Microsoft to Add Background Calendar Notifications Support to New Outlook for Windows](https://petri.com/new-outlook-for-windows-background-calendar-notifications/): Microsoft will add support for background calendar notifications to its new Outlook for Windows client this month. The company announced... - [First Ring Daily: Windows 11 ISO for ARM-based PCs is Here](https://petri.com/first-ring-daily-windows-11-iso-for-arm-based-pcs-is-here/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft finally releasing a Windows 11 ISO... - [Microsoft Pauses Exchange Security Update Over Transport Rule Failures](https://petri.com/microsoft-pauses-exchange-security-update/): Microsoft has paused the roll out of a security update that was released for Exchange Server 2016 and Exchange Server... - [Thwarting Phishing Attacks with Predictive Analytics and Machine Learning in 2024](https://petri.com/thwarting-phishing-attacks-with-predictive-analytics-and-machine-learning/): The types of cyberattacks bad actors gravitate to haven’t changed – only their sophistication. Phishing attacks are more popular than... - [Microsoft Power Pages Misconfigurations Expose Millions of Sensitive Records](https://petri.com/power-pages-misconfigurations-exposes-records/): Cybersecurity researchers have discovered a new data exposure issue in Microsoft Power Pages, stemming from misconfigured access controls in websites... - [How to Add a Domain Controller to an Existing Domain (PowerShell)](https://petri.com/add-domain-controller-to-existing-domain-powershell/): How do you add a new domain controller (DC) to your existing Active Directory (AD) domain? In this post, I... - [How to Add a New Forest to Active Directory (Server Manager)](https://petri.com/add-new-forest-to-active-directory/): In this guide, I’ll show you how to add a new forest to your existing Active Directory environment. There may... - [Add a Child Domain to an Existing Forest (Server Manager)](https://petri.com/add-child-domain-to-existing-forest/): In this guide I’ll show you how to add a child domain to an existing forest. If you have, for... - [Microsoft Teams to Roll Out Strict Update Policy with 90-Day Blocking Notification](https://petri.com/microsoft-teams-update-policy-blocking-notification/): Microsoft has introduced in-app notifications to inform users when they’re using an outdated version of the Microsoft Teams desktop client.... - [Microsoft is Raising Prices for Teams Phone and Power BI Services](https://petri.com/microsoft-raising-prices-teams-phone-power-bi/): Microsoft is getting ready to raise prices on Teams Phone and Power BI subscriptions. The company is also introducing a... - [Mastering the PowerShell Trim Method](https://petri.com/powershell-trim/): This guide explores the PowerShell Trim methods in detail, with real-world examples and practical tips on how to use each method effectively in PowerShell scripts. - [Microsoft Releases November 2024 Patch Tuesday Updates for Windows 11 and Windows 10](https://petri.com/microsoft-november-2024-patch-tuesday-updates/): Microsoft released yesterday the November 2024 Patch Tuesday updates for all supported versions of Windows 11 and Windows 10. This... - [VMware Makes Fusion and Workstation Free for All Users](https://petri.com/vmware-fusion-workstation-free-all-users/): VMware has announced that VMware Fusion and Workstation are now available for free to all commercial, educational, and personal users.... - [Hackers Exploit Microsoft Office Flaw in New Remcos RAT Phishing Attack](https://petri.com/microsoft-office-flaw-remcos-rat-phishing-attack/): Cybersecurity researchers have discovered a new phishing campaign enabling threat actors to deploy a modified variant of the Remcos RAT... - [Microsoft Fixes Issue with Unintended Windows Server 2025 Upgrades](https://petri.com/microsoft-fix-unintended-windows-server-2025-upgrades/): Microsoft has resolved an issue that unexpectedly upgraded certain instances of Windows Server 2019 and 2022 to Windows Server 2025.... - [Workplace Ninjas UK 2025: Unlocking the Future with Microsoft 365, Advanced Endpoint Management, and AI-Powered Security](https://petri.com/workplace-ninjas-uk-2025/): Workplace Ninjas UK 2025, scheduled for June 16-17, 2025, at the Edinburgh International Conference Centre (EICC) in Edinburgh, Scotland, is... - [Microsoft Expands Intune MAM Capabilities with Enhanced BYOD Support for Windows App and Remote Desktop](https://petri.com/microsoft-intune-mam-windows-app-remote-desktop/): Microsoft has announced the general availability of Windows app support for Microsoft Intune Mobile Application Management (MAM) on iOS/iPadOS. The... - [Microsoft Teams Introduces Automatic Loop Workspace Creation for Recurring Meetings](https://petri.com/microsoft-teams-loop-workspace-meetings/): Microsoft Teams has introduced a new feature that automatically creates a Loop workspace with meeting content. This feature is currently... - [First Ring Daily: Lunar Lake is a “One-Off”](https://petri.com/first-ring-daily-lunar-lake-is-a-one-off/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Intel’s plans to stop packaging memory with... - [Microsoft’s Magentic-One Multi-Agent AI Tackles Complex Enterprise Operations](https://petri.com/microsofts-magnetic-one-multi-agent-ai/): Microsoft has announced a new multi-agent artificial intelligence (AI) system dubbed Magentic-One this week. This new AI system is designed... - [Azure Linux 3.0 Preview Now Available on Azure Kubernetes Service v1.31](https://petri.com/azure-linux-3-0-preview-azure-kubernetes-service-v1-31/): Microsoft has announced the preview of Azure Linux 3. 0 on AKS version 1. 31, marking a significant update to... - [Windows Protected Print Mode - Secure Printing in Windows](https://petri.com/windows-protected-print-mode/): This article explores Windows Protected Print Mode (PPM) in Windows 10 and Windows 11. It’s a security feature that safeguards... - [Microsoft Entra ID Users to Receive MFA Passcodes via WhatsApp in Select Countries](https://petri.com/microsoft-entra-id-mfa-passcodes-whatsapp/): Microsoft Entra ID users will soon have the option to receive multifactor authentication (MFA) one-time passcodes (OTPs) directly through WhatsApp.... - [Microsoft Adds New Feature to Prevent Accidental Delicensing of Exchange Online Accounts](https://petri.com/exchange-online-delicensing-resiliency/): Microsoft has released a new delicensing resiliency feature for Exchange Online customers, providing better protection against the accidental removal of... - [New Phishing Campaign Leverages Malicious Linux VM to Infect Windows Devices](https://petri.com/phishing-linux-vm-windows-devices/): Cybersecurity researchers have discovered a new phishing campaign, dubbed “CRON#TRAP,” which lures victims into unknowingly installing a Linux virtual machine... - [Microsoft Confirms New Black Screen Issue Affecting Windows 10 Azure Virtual Desktop Users](https://petri.com/black-screen-windows-10-azure-virtual-desktop/): Microsoft has acknowledged a new issue that could result in frustrating black screens during the login process for Azure Virtual... - [Microsoft Adds New Tools to Enhance Security Exposure Management for Commercial Customers](https://petri.com/microsoft-tools-security-exposure-management/): Microsoft’s latest update to its Security Exposure Management solution delivers new tools to strengthen organizational defenses. The release introduces an... - [Microsoft Loop Now Supports Guest Sharing for Tenants with Sensitivity Labels](https://petri.com/microsoft-loop-guest-sharing-sensitivity-labels/): Microsoft Loop is getting a new update that will allow administrators to configure guest sharing for tenants with sensitivity labels.... - [Windows Server 2025 Launches with Hotpatching Support and Active Directory Enhancements](https://petri.com/windows-server-2025-generally-available/): Windows Server 2025, which launched in public preview earlier this year, is now generally available for commercial customers. The latest... - [Microsoft Teams Gets New Chat and Meeting Enhancements](https://petri.com/microsoft-teams-updates-october-2024/): Microsoft has announced a slew of updates added to its Teams collaboration platform in October. These new features are designed... - [First Ring Daily: Fractional Surface](https://petri.com/first-ring-daily-fractional-surface/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s FY25 Q1 earnings and why it... - [Microsoft Postpones Controversial AI Recall Feature Yet Again](https://petri.com/microsoft-postpones-recall-feature/): Microsoft has once again pushed back the release of its controversial Recall feature for Copilot+ PCs. The company has confirmed... - [Microsoft Earnings Reveal AI Growth Amidst Concerns Over Cost and Adoption Rates](https://petri.com/microsoft-earnings-ai-growth/): Microsoft announced its earnings for the first fiscal quarter on Wednesday afternoon. The company detailed a 22% revenue surge in... - [Hackers Can Exploit Windows Themes Zero-Day Flaw to Steal User Credentials](https://petri.com/windows-themes-flaw-user-credentials/): Cybersecurity experts have discovered a new zero-day flaw in Windows Themes that could enable attackers to steal NTLM authentication hashes.... - [Microsoft Introduces YubiKey Smart Card Redirection Support in Windows App on iOS](https://petri.com/yubikey-smart-card-redirection-windows-app-ios/): Microsoft has teamed up with YubiKey to introduce smart card redirection support for iOS and iPadOS within the Windows App,... - [Microsoft to Discontinue Support for Office UWP Apps in 2025](https://petri.com/microsoft-discontinue-office-uwp-apps/): Microsoft has announced it will discontinue support for its Word, Excel, and PowerPoint UWP applications on October 14, 2025. After... - [5 Key Benefits of Migrating to Azure](https://petri.com/5-key-benefits-of-migrating-to-azure/): Explore the key benefits of migrating to Azure, the processes involved, and the challenges you, as a system or IT administrator may face along the way - [GitHub Copilot Gets New Integrations with Apple's Xcode and Windows Terminal](https://petri.com/github-copilot-windows-terminal/): Microsoft-owned GitHub announced some major updates coming to its new products at its GitHub Universe conference. The company is bringing... - [Microsoft Teams to Offer Admins More Control Over Meeting Chat](https://petri.com/microsoft-teams-control-meeting-chat/): Microsoft Teams will introduce a new setting to give admins more control over meeting chat, allowing them to disable chat... - [Microsoft Intune Suite Adds Advanced Privilege Management and App Management Tools](https://petri.com/microsoft-intune-suite-management-tools/): Microsoft has rolled out enhanced Endpoint Privilege Management (EPM) and Enterprise Application Management capabilities for its Intune Suite. These new... - [Exchange Online Gets Inbound SMTP DANE with DNSSEC to Boost Protection Against Cyberattacks](https://petri.com/exchange-online-inbound-smtp-dane-with-dnssec-2/): Microsoft has announced the general availability of inbound SMTP DANE with DNSSEC for Exchange Online customers. This feature is designed... - [5 Benefits of the Internet Printing Protocol and Its Implementation in Windows](https://petri.com/internet-printing-protocol/): This article delves into the Internet Printing Protocol (IPP) and its implementation in Microsoft Windows. We’ll explore what it is,... - [Microsoft Teams Unites Chat and Channels in New Slack-Like UI](https://petri.com/microsoft-teams-chat-and-channels-experience/): Microsoft announced today a new chat and channels experience coming to its Teams collaboration platform. The company is also introducing... - [Microsoft Releases New Optional Update to Fix 8.63 GB Cache Bug in Windows 11 Version 24H2](https://petri.com/windows-11-version-24h2-kb5044384-update/): Microsoft has rolled out the optional preview cumulative update for Windows 11 version 24H2. The KB5044384 patch brings a couple... - [First Ring Daily: Qualcomm Strikes Back](https://petri.com/first-ring-daily-qualcomm-strikes-back/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Qualcomm boasting about the superiority of its... - [Microsoft Reports Nearly 400 U.S. Healthcare Facilities Targeted by Ransomware Attacks](https://petri.com/microsoft-healthcare-facilities-ransomware/): Microsoft has found that nearly 400 U. S. healthcare organizations have fallen victim to ransomware attacks this fiscal year. These... - [Microsoft Teams Launches New Queues App to Enhance Customer Engagement](https://petri.com/microsoft-teams-queues-app/): Microsoft has launched its new Queues app for Microsoft Teams, which is designed to help organizations enhance customer engagement. This... - [Critical RCE Vulnerability in Microsoft SharePoint Could Lead to Malicious Attacks](https://petri.com/microsoft-sharepoint-rce-vulnerability/): The US Cybersecurity and Infrastructure Security Agency (CISA) has disclosed a critical vulnerability in Microsoft SharePoint. This security flaw could... - [Windows 11 Version 24H2 Offers Faster Updates and Reduced CPU Usage](https://petri.com/windows-11-version-24h2-update-improvements/): Microsoft has introduced significant enhancements in Windows 11 version 24H2, drastically speeding up the Windows Update process. This major update... - [Windows 11 Version 24H2 Update Causes Blue Screen Crashes on Select Asus Models](https://petri.com/windows-11-version-24h2-blue-screen-asus-models/): Microsoft has acknowledged a new issue leading to the Blue Screen of Death on certain Asus devices. The company has... - [Enhancing Security with Microsoft Entra Token Theft Protection](https://petri.com/microsoft-entra-token-theft-protection/): This article explores how Microsoft Entra’s new token theft protection policy can provide robust protection against token theft. By leveraging... - [Microsoft Authenticator Adds Device-Bound Passkey Support, FIPS Compliance](https://petri.com/microsoft-authenticator-device-bound-passkey/): Microsoft has rolled out advanced phishing-resistant capabilities for its Authenticator app. The latest update includes enhancements to the device-bound passkey... - [Microsoft Adds Copilot AI Assistant to OneNote for Mac and iPad](https://petri.com/microsoft-copilot-onenote-mac-ipad/): Microsoft has officially launched the preview of its Copilot AI assistant in OneNote for Mac and iPad. Copilot in OneNote... - [North Korean Hackers Exploit Internet Explorer Vulnerability to Deploy RokRAT Malware](https://petri.com/hackers-internet-explorer-flaw-rokrat-malware/): Cybersecurity researchers have issued a security advisory about a new supply chain campaign that allowed the North Korea-backed hacking group... - [Microsoft Introduces Autoscale, Per-User Pricing for Azure Virtual Desktop on Azure Stack HCI](https://petri.com/azure-virtual-desktop-on-azure-stack-hci-updates/): Microsoft has introduced a suite of new features for Azure Virtual Desktop on Azure Stack HCI. These enhancements are aimed... - [Microsoft to Add Multi-Account Support for Add-Ins in New Outlook for Windows](https://petri.com/new-outlook-for-windows-multi-account-add-ins/): Microsoft is about to introduce multi-account support for add-ins and apps in its new Outlook for Windows client. This new... - [Latest Microsoft Intune Update Boosts Security and Streamlines Shift Worker Management](https://petri.com/microsoft-intune-update-october-2024/): Microsoft has published a roundup of all the new capabilities added to its Microsoft Intune service this month. The first... - [Active Directory Faces Greater Risks Than Ever in 2024](https://petri.com/active-directory-ransomware-report-2024/): You are woken by a call at 7am to find out your Active Directory (AD) infrastructure has been hit by... - [Microsoft Copilot Studio to Let Businesses Build AI Agents for Streamlining Operations Next Month](https://petri.com/microsoft-copilot-studio-autonomous-agents/): Earlier this year, Microsoft detailed a new set of features coming to Copilot Studio, designed to help businesses create autonomous... - [SSD Manufacturers Release Firmware Updates to Fix Windows 11 24H2 BSOD Crashes](https://petri.com/ssd-manufacturers-fix-bsod-windows-11-24h2/): Microsoft is currently investigating reports that specific SSD models are triggering Blue Screen of Death (BSOD) crashes on PCs running... - [First Ring Daily: Technical Finish](https://petri.com/first-ring-daily-technical-finish/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the various driver issues that continue to... - [Microsoft Loses Over Two Weeks of Security Logs for Cloud Services: Implications for Enterprise Customers](https://petri.com/microsoft-loses-security-logs-cloud-services/): Microsoft has notified its enterprise customers about a major incident involving the loss of over two weeks’ worth of security... - [Windows Admin Center 2410 Preview Brings New VM Features and Customization Options](https://petri.com/windows-admin-center-2410-preview/): Microsoft has announced the public preview of Windows Admin Center version 2410. The latest update introduces a revamped virtual machines... - [Kerberoasting AD Cyberattacks: A Growing Risk to Enterprises and How to Stop Them](https://petri.com/kerberoasting-ad-cyberattacks/): Microsoft has recently raised concerns about the increasing threat of a sophisticated attack method known as Kerberoasting. In response, the... - [Microsoft to End Support for Older Office and Exchange Server Versions Soon — Time to Upgrade!](https://petri.com/microsoft-older-office-exchange-server-support-ends/): Microsoft has issued a reminder that extended support for Office 2016 and Office 2019 will officially end on October 14,... - [Microsoft Entra ID Gets New HID Integration to Simplify Passwordless Authentication with Physical Access Cards](https://petri.com/microsoft-entra-id-hid-integration/): Identity solution provider HID has announced a new integration with Microsoft Entra ID (formerly Azure Active Directory). This new offering... - [Microsoft to Introduce Third-Party Passkey Support in Windows 11 for Seamless Passwordless Authentication](https://petri.com/microsoft-third-party-passkey-windows-11/): Microsoft has announced that it’s expanding support for passkeys in Windows 11. The company has updated the Windows 11 API... - [Microsoft Teams to Open Edge Links on Mac Devices Without Reauthentication](https://petri.com/microsoft-teams-edge-links-mac-devices/): Microsoft will roll out a new update that will enable macOS users to open Edge links directly within the Microsoft... - [How to Check FSMO Roles in Active Directory](https://petri.com/check-fsmo-roles/): Learn how to check FSMO roles in Active Directory (AD) to determine which domain controllers hold each role. - [Microsoft to Phase Out PPTP and L2TP Protocols to Boost VPN Security in Windows Server](https://petri.com/microsoft-deprecate-pptp-l2tp-protocols-windows-server/): Microsoft is phasing out the legacy PPTP and L2TP VPN protocols in future Windows Server versions. The company is encouraging... - [Understanding the 5 FSMO Roles in Active Directory](https://petri.com/understanding-fsmo-roles-active-directory/): FSMO roles are a crucial piece in Active Directory functionality. Learn about their purpose, types, and how they work together... - [New Tool Simplifies Large-Scale OneDrive to Google Drive Migrations](https://petri.com/onedrive-google-drive-migrations/): Google has launched a new file migration service in open beta, designed to simplify data transfers for its Workspace customers.... - [What Is Windows 11 Personal Data Encryption (PDE)?](https://petri.com/windows-11-personal-data-encryption-pde/): Personal Data Encryption (PDE) protects sensitive information from unauthorized access. Microsoft introduced the feature with Windows 11, version 22H2, but... - [Microsoft to Enhance Security with New Defender Application Control for Business in Windows Server 2025](https://petri.com/windows-server-2025-defender-application-control-for-business/): Microsoft is planning to add support for Windows Defender Application Control for Business in Windows Server 2025. This security feature... - [Microsoft Teams to Get New Calendar Experience with Advanced Scheduling and Collaboration Tools](https://petri.com/microsoft-teams-new-calendar-experience/): Microsoft is about to add a new calendar experience to its Teams desktop app, offering users the chance to opt-in... - [Microsoft to Let Users Launch New Outlook for Windows Without Internet Access](https://petri.com/microsoft-open-restart-new-outlook-for-windows-internet/): Microsoft has started rolling out an update that adds Offline support to its new Outlook for Windows client. This new... - [Microsoft Highlights Surge in Cyberattacks Targeting Educational Institutions](https://petri.com/microsoft-cyberattacks-educational-institutions/): Microsoft’s latest edition of the Cyber Signals report sheds light on the escalating cybersecurity threats facing educational institutions. It delves... - [Microsoft Entra Introduces MFA Requirements and New Security Features](https://petri.com/microsoft-entra-mfa-security-features/): Microsoft has provided a detailed overview of the latest features and capabilities for Entra customers, focusing on improvements in security,... - [Active Directory Password Policy - The Complete Guide](https://petri.com/active-directory-password-policy/): Requiring complex passwords in your Active Directory password policy increases the effectiveness of passwords exponentially. - [Microsoft Release October 2024 Patch Tuesday Updates for Windows 11 and Windows 10](https://petri.com/microsoft-october-2024-patch-tuesday-updates/): Microsoft released yesterday the October 2024 Patch Tuesday updates for Windows 11 and Windows 10. This month, the company released... - [Microsoft OneDrive Gets AI-Powered Search, New Copilot Features, Revamped Mobile App](https://petri.com/microsoft-onedrive-updates/): Microsoft announced a host of new features for its OneDrive cloud storage service today, aimed at improving functionality across multiple... - [Microsoft to Fix Word Bug Causing Unexpected File Deletions](https://petri.com/microsoft-fix-word-bug-file-deletions/): Microsoft is working to fix a new bug that unexpectedly deletes Word files when users attempt to save them. This... - [Microsoft Places App to Launch with New Core and Premium Plans Next Month](https://petri.com/microsoft-places-core-premium-plans/): Microsoft’s new AI-powered Places app, which was released in preview earlier this year, is set for its official launch next... - [Microsoft to Invest €4.3 Billion in Italy to Boost AI and Cloud Infrastructure](https://petri.com/microsoft-invest-e4-3-billion-italy/): Microsoft has announced plans to invest approximately €4. 3 billion in Italy over the next two years. This strategic move... - [Azure Migrate Now Supports VMware to Azure Stack HCI Migration](https://petri.com/azure-migrate-vmware-azure-stack-hci/): Microsoft has announced the public preview of a new Azure Migrate feature designed to facilitate the migration of on-premises VMware... - [Assess Your Organization’s AD Management Effectiveness](https://petri.com/ad-management-survey-2024/): Are you responsible for managing Active Directory (AD) within your organization? Whether you’re an IT professional, security specialist, or part... - [Microsoft OneDrive Enhances Search Experience with New Filters and Other Capabilities](https://petri.com/microsoft-onedrive-search-filters/): Microsoft has announced a slew of updates aimed at improving the search experience in its OneDrive cloud storage service. These... - [How to Virtualize iSCSI Target Servers on Azure Stack HCI](https://petri.com/virtualize-iscsi-target-server-azure-stack-hci/): Today I would like to dig a bit deeper into guest virtual machine (VM) storage virtualization on Azure Stack HCI.... - [Microsoft to Retire Revoke-SPOUserSession Cmdlet in SharePoint Online](https://petri.com/sharepoint-online-retire-revoke-spousersession-cmdlet/): Microsoft is phasing out the Revoke-SPOUserSession cmdlet for SharePoint Online, replacing it with a more comprehensive Microsoft Graph alternative. This... - [Microsoft Launches High-Performance Azure VMs for AI Workloads](https://petri.com/microsoft-azure-vms-ai-workloads/): Microsoft has officially announced the general availability of its new virtual machines for Azure customers. These VMs are specifically engineered... - [First Ring Daily: Fog of Updates](https://petri.com/first-ring-daily-fog-of-updates/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s busy week with the public release... - [Microsoft 365 App to Deprecate Feed Feature Next Month](https://petri.com/microsoft-365-deprecate-feed-feature/): Microsoft announced plans to retire the Feed feature from the Microsoft 365 app next month, with deprecation scheduled for November... - [AWS Chatbot Now Supports Access Management for AWS Accounts via Microsoft Teams and Slack](https://petri.com/aws-chatbot-aws-accounts-microsoft-teams-slack/): Amazon Web Services (AWS) has made it easier for businesses to manage their cloud resources with the introduction of AWS... - [Microsoft System Center 2025 to Launch on November 1 with New Features and a 10% Price Increase](https://petri.com/microsoft-system-center-2025-november-1/): Microsoft has announced that System Center 2025 will officially launch on November 1, with a 10% price hike compared to... - [Microsoft Defender XDR Now Offers Security Settings Management for Multi-Tenant Environments](https://petri.com/microsoft-defender-xdr-security-settings-management-multi-tenant/): Last year, Microsoft introduced support for device security settings management capabilities within Defender XDR. The company is now extending this... - [Microsoft Teams Introduces New Admin Controls, Copilot Enhancements](https://petri.com/microsoft-teams-updates-september-2024/): Microsoft has published a comprehensive roundup of new features and capabilities that were added to Teams in September. The company... - [Microsoft's New Copilot Features Transform the Chatbot into an AI Companion](https://petri.com/microsoft-copilot-features-ai-companion/): Microsoft has unveiled an enhanced Copilot experience, which brings a suite of new features and improvements for users across Windows,... - [Microsoft Releases the Windows 11 2024 Update (Version 24H2): What’s New and Improved](https://petri.com/microsoft-releases-windows-11-2024-update/): Microsoft has announced the release of the Windows 11 2024 Update, which is also known as Windows 11 version 24H2.... - [Microsoft Unveils New AI-Powered Search, Click to Do, Other Features for Windows 11 Copilot+ PCs](https://petri.com/microsoft-updates-windows-11-copilot-pcs/): Microsoft has announced new AI-powered experiences coming to its new Copilot+ PCs. The company plans to launch these new features... - [Microsoft Confirms Latest Windows 11 Preview Update Causes Reboots and BSODs](https://petri.com/windows-11-kb5043145-update-reboots-bsods/): Microsoft is currently investigating an issue causing unexpected reboots and Blue Screens of Death (BSODs) on Windows 11 devices. The... - [How to List Active Directory Users with PowerShell](https://petri.com/powershell-list-active-directory-users/): In this article, I’ll show you how to list Active Directory users with PowerShell. While you can also list Active... - [What’s new in Microsoft Intune - September 2024](https://petri.com/microsoft-intune-september-2024/): Microsoft has introduced several new features aimed at simplifying app management for IT administrators in September. This time around, the... - [Ransomware Group Uses Stolen Microsoft Entra ID Credentials to Breach Hybrid Cloud Environments](https://petri.com/ransomware-microsoft-entra-id-credentials/): Microsoft has warned that the threat actors Storm-0501 has shifted its focus to exploiting vulnerabilities in hybrid cloud environments. The... - [Microsoft to Begin Testing Windows Recall Feature with Security and Privacy Improvements in October](https://petri.com/microsoft-windows-recall-october/): Microsoft announced today that it will start testing the controversial Recall feature with Windows Insiders in October. The company also... - [Microsoft Outlook Mobile App to Get New Online Archive Feature for Seamless Email Management](https://petri.com/microsoft-outlook-mobile-online-archive/): Microsoft is about to add a new Online Archive feature to its Outlook mobile app. This update will allow users... - [First Ring Daily: Google Files Microsoft Antitrust Complaint in the EU](https://petri.com/frd-google-files-microsoft-antitrust-complaint-in-eu/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the antitrust complaint Google filed with the... - [The Ultimate List of Free Active Directory Tools](https://petri.com/the-ultimate-list-of-free-active-directory-tools/): While there are numerous paid solutions available, many IT professionals overlook the relative abundance of free Active Directory tools that... - [Microsoft Introduces OneDrive Support for RemoteApp in Azure Virtual Desktop](https://petri.com/onedrive-remoteapp-azure-virtual-desktop/): Microsoft has rolled out a new update that introduces OneDrive support for RemoteApp in Azure Virtual Desktop. This feature allows... - [Microsoft Updates New Planner App in Teams with Accessibility Features](https://petri.com/microsoft-planner-teams-accessibility-features/): Microsoft has released several new capabilities and improvements for the Planner app in Microsoft Teams. The company has added a... - [Microsoft Intune Admin Center to Get New Dell Management Portal Integration Next Month](https://petri.com/microsoft-intune-admin-center-dell-management-portal/): Microsoft is set to integrate a new Dell Management Portal within the Intune admin center this October. This portal will... - [Google Files EU Antitrust Complaint Against Microsoft's Cloud Licensing Practices](https://petri.com/google-eu-antitrust-complaint-microsoft/): Google has officially lodged an antitrust complaint with the European Commission against Microsoft. The company alleged that Microsoft’s software licensing... - [Remote Desktop Manager Adds Azure PIM Integration, Other New Features](https://petri.com/remote-desktop-manager-azure-pim/): Devolutions has announced the release of a new version of Remote Desktop Manager. The latest update brings several new capabilities... - [Microsoft Intune Update Lets IT Admins Control Apple Intelligence Features on iOS and macOS Devices](https://petri.com/microsoft-intune-update-apple-intelligence/): Microsoft Intune has added a new feature that enables administrators to configure and manage the availability of Apple Intelligence features... - [Microsoft Releases New File Integrity Monitoring Tool Integrated with Defender for Endpoint](https://petri.com/file-integrity-monitoring-defender-for-endpoint-2/): Microsoft announced yesterday the release of a new File Integrity Monitoring (FIM) solution based on Microsoft Defender for Endpoint. This... - [Microsoft Launches New VDI Solution for Teams with Performance Improvements](https://petri.com/microsoft-teams-vdi-solution/): Earlier this year, Microsoft announced the public preview of Microsoft Teams optimized for virtual desktop infrastructure (VDI), which is now... - [Microsoft Releases First Secure Future Initiative Report, Showcasing Key Security Enhancements](https://petri.com/microsoft-first-secure-future-initiative-report/): Microsoft published this morning its first Secure Future Initiative report. The company touted that it has made several key improvements... - [Microsoft Announces WSUS Deprecation: What IT Admins Need to Know](https://petri.com/microsoft-deprecates-windows-server-update-services/): Microsoft has announced the deprecation of Windows Server Update Services (WSUS), marking the end of new feature development for the... - [How To Use The Active Directory Administrative Center](https://petri.com/active-directory-administrative-center/): The Active Directory Administrative Center (ADAC) is a powerful, modern tool for managing Active Directory. Learn how to use it... - [Microsoft Announces Public Preview of Hotpatching Support for Windows Server 2025](https://petri.com/microsoft-preview-hotpatching-windows-server-2025/): Microsoft has announced that hotpatching support is available in public preview for the Standard and Datacenter editions of Windows Server... - [Microsoft Entra Internet Access: A Secure Web Gateway with Advanced Protection for SaaS Applications](https://petri.com/microsoft-entra-internet-access/): Microsoft has announced the general availability of its Entra Internet Access service that launched in preview back in July. This... - [Microsoft's New Windows App Now Generally Available Across All Platforms](https://petri.com/microsoft-windows-app-generally-available/): Microsoft has officially released its new Windows App for Windows, macOS, iPadOS, and the web, with a public preview now... - [Microsoft Teams to Add New Default Voice and Face Enrollment Policy in Early 2025](https://petri.com/microsoft-teams-default-voice-face-enrollment-policy/): Microsoft is about to introduce a new policy for voice and face enrollment in Microsoft Teams, which will be enabled... - [Microsoft Intune Gets New Alerts to Streamline Windows Update Tracking](https://petri.com/microsoft-intune-alerts-windows-update/): Microsoft has introduced two new alerts for Windows updates in Microsoft Intune. These new alerts are designed to give administrators... - [Microsoft Rolls Out New Copilot Experience with Enterprise Data Protection for Windows 11 Pro and Enterprise PCs](https://petri.com/microsoft-copilot-experience-windows-11-pro-enterprise/): Microsoft has announced an enhanced Copilot experience for organizations using managed Windows 11 Pro and Enterprise PCs. Starting later this... - [Hackers Exploited Windows Spoofing Vulnerability in Zero-Day Attacks](https://petri.com/hackers-zero-day-windows-spoofing-flaw/): Microsoft has disclosed a new Windows spoofing vulnerability that was addressed in the September 2024 Patch Tuesday updates. The company... - [Microsoft Teams to Bring AI-Powered Voice Isolation to macOS Users](https://petri.com/microsoft-teams-voice-isolation-macos/): Microsoft is set to introduce voice isolation support to its Teams desktop app for macOS next month. This feature leverages... - [Microsoft Enhances Windows 11 Enrollment: Quality Updates to Install Automatically During Initial Setup](https://petri.com/windows-11-quality-updates-initial-setup/): Microsoft has announced some important changes coming to the Windows MDM enrollment process for Intune-managed devices. Starting with the October... - [Microsoft Office LTSC 2024 Now Available for Businesses - Everything You Need to Know](https://petri.com/microsoft-office-ltsc-2024-available/): Microsoft has officially launched Office LTSC 2024, the latest version of Office for the Long-Term Servicing Channel. This release offers... - [Microsoft Enhances SIEM Migration with Context-Aware Tools for Seamless Splunk to Sentinel Transition](https://petri.com/microsoft-siem-migration-splunk-sentinel/): Microsoft has announced some important updates coming to the SIEM Migration experience. These new capabilities are designed to more context-aware... - [Microsoft Introduces Copilot Pages and Agents to Streamline Business Collaboration and Automation](https://petri.com/microsoft-copilot-pages-agents/): Microsoft has started rolling out new Copilot Pages to improve the Business Chat experience for commercial customers. It’s a dynamic... - [Microsoft Enhances Copilot Capabilities Across Outlook, Teams, and Word](https://petri.com/microsoft-copilot-capabilities-outlook-teams/): Microsoft announced today several new capabilities to enhance the Copilot AI assistant in its Microsoft 365 apps. The first big... - [Microsoft to Boost Windows Security to Prevent Future CrowdStrike-Style Outages](https://petri.com/microsoft-windows-security-crowdstrike-outages/): Earlier this week, Microsoft held its Windows Endpoint Security Ecosystem Summit at its Redmond headquarters, bringing together CrowdStrike, cybersecurity partners,... - [First Ring Daily: The Windows PC Has a Future](https://petri.com/first-ring-daily-the-windows-pc-has-a-future/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss how Qualcomm’s new Snapdragon X Plus 8-core... - [Microsoft Rolls Out Fix for Performance Issues Affecting Windows Server 2019](https://petri.com/microsoft-fix-performance-issues-windows-server-2019/): Microsoft has issued a fix for a bug that was previously causing performance issues on Windows Server 2019. The company... - [Microsoft Loop Now Supports Word, Excel, PowerPoint, and PDF File Uploads](https://petri.com/microsoft-loop-file-uploads-workspaces/): Microsoft has rolled out a new update that enables users to upload Word, PowerPoint, Excel, and PDF files directly into... - [New Microsoft Planner Web App to Launch Next Month - What to Expect](https://petri.com/new-microsoft-planner-web-app-launch/): Microsoft is set to launch a new Planner app that will replace the existing web version, aligning it with the... - [Microsoft to Begin Forced Upgrades to Windows 11 version 23H2 Next Month](https://petri.com/microsoft-forced-upgrades-windows-11-version-23h2/): Microsoft is preparing to roll out Windows 11 version 23H2 to users who are still running outdated versions of the... - [Microsoft Loop Vs OneNote: A Comprehensive Comparison](https://petri.com/loop-vs-onenote/): Microsoft Loop vs OneNote, which is the right note-taking and collaboration tool for you? In this article, we will look... - [Microsoft's September 2024 Patch Tuesday Update Fixes 79 Vulnerabilities](https://petri.com/microsofts-september-2024-patch-tuesday-updates/): Microsoft released yesterday the September 2024 Patch Tuesday updates for all supported versions of Windows 10 and Windows 11. This... - [Microsoft and Oracle Strengthen Cloud Partnership with Major Updates to Oracle Database@Azure](https://petri.com/microsoft-updates-oracle-databaseazure/): Microsoft and Oracle have announced a slew of updates for the Oracle Database@Azure service. This solution allows customers to run... - [Parallels Desktop 20 for Mac Launches with New AI Toolkit and Management Tools for Businesses](https://petri.com/parallels-desktop-20-for-mac/): Parallels has announced the release of Parallels Desktop 20 for macOS. Parallels Desktop for Mac lets Mac users run macOS,... - [Microsoft Intune Gets New Management Features for iOS 18 and macOS 15](https://petri.com/microsoft-intune-updates-ios-18-macos-15/): Microsoft Intune has introduced a suite of new features to support Apple’s iOS/iPadOS 18. 0 and macOS 15 Sequoia. With... - [3 Ways to Reduce Shadow IT](https://petri.com/3-ways-to-reduce-shadow-it/): In this article, I look at three easy ways to help prevent shadow IT becoming a problem in your business.... - [Microsoft Introduces Enhanced File Integrity Monitoring with Defender for Endpoint](https://petri.com/file-integrity-monitoring-defender-for-endpoint/): Microsoft has released a new version of File Integrity Monitoring (FIM) based on Defender for Endpoint in public preview for... - [Office 2024 to Block ActiveX Controls by Default to Protect Users from Malware](https://petri.com/office-2024-block-activex-controls/): Microsoft is set to disable ActiveX controls by default in its upcoming Office 2024 suite that will launch in October.... - [Microsoft 365 Admin Center to Get Support for Continuous Access Evaluation (CAE)](https://petri.com/microsoft-365-admin-center-continuous-access-evaluation/): Microsoft is getting ready to add support for continuous access evaluation (CAE) to the Microsoft 365 admin center. The CAE... - [Microsoft’s Inflection AI Deal Gets Green Light from UK Regulator](https://petri.com/microsofts-inflection-ai-green-light-uk-regulator/): The UK’s Competition and Markets Authority has given the green light to Microsoft’s acquisition of employees from Inflection AI. The... - [New Microsoft Planner App Gets Goals Feature to Enhance Task Management and Tracking](https://petri.com/new-microsoft-planner-app-goals/): Microsoft has released an update for the new Planner app that brings a new Goals feature that helps users set,... - [Windows Autopatch Adds PowerShell Scripts Support for Automated Policy Conflict Resolution](https://petri.com/windows-autopatch-powershell-scripts/): Microsoft has rolled out a new update that enables administrators to use PowerShell scripts with Windows Autopatch to resolve policy... - [Microsoft Entra ID Enhances Security with FIDO2 Provisioning APIs for Simplified Onboarding](https://petri.com/microsoft-entra-id-fido2-provisioning-apis/): Microsoft Entra ID has released FIDO2 provisioning APIs in public preview, allowing administrators to pre-configure security keys for employees. This... - [Microsoft Word Now Uses Copilot AI Assistant to Automatically Summarize Documents](https://petri.com/microsoft-word-copilot-summarize-documents/): Microsoft has released an update that uses AI to automatically summarize documents in Microsoft Word. Powered by Copilot for Microsoft... - [Microsoft's New Windows App to Bring Seamless Cloud Access Across All Devices This Fall](https://petri.com/microsoft-windows-app-general-availability-this-fall/): Microsoft has announced that its new Windows App will be generally available on Windows, macOS, iOS, and the web this... - [How to Mount an Exchange Database on a Different Server?](https://petri.com/mount-exchange-database-on-different-server/): Sometimes, situations arise when an Exchange Server administrator needs to mount an Exchange database on a different server. Here are... - [Qualcomm Launches New 8-Core Snapdragon X Plus Chip for Budget-Friendly Windows Laptops](https://petri.com/qualcomm-8-core-snapdragon-x-plus-chip/): Qualcomm has announced today its first 8-core Snapdragon X Plus chip at IFA in Berlin. This new Snapdragon X SoC... - [Microsoft's Surface Laptop 7th Edition and Surface Pro 11th Edition Are New Copilot+ PCs for Businesses](https://petri.com/microsoft-surface-laptop-7th-edition-surface-pro-11th-edition-for-business/): Microsoft announced this morning its latest lineup of Surface devices tailored for business customers, including the Surface Laptop 7th Edition,... - [Windows 365 Enterprise Adds Enhanced Data Protection and Monitoring Capabilities](https://petri.com/windows-365-enterprise-updates-august-2024/): Microsoft has released some important updates for its Windows 365 Enterprise customers. The company has announced that Windows 365 support... - [Microsoft Teams Gets New Time-Based Prompts, Town Hall Graph APIs](https://petri.com/microsoft-teams-time-based-prompts-town/): Microsoft Teams introduced a host of new features that enhance collaboration and user experience in August 2024. The highlights include... - [New Hotpatching Feature for Windows Server 2025 Evaluation VMs in Azure Cuts Downtime for Critical Updates](https://petri.com/hotpatching-windows-server-2025-evaluation-vms-in-azure/): Microsoft has announced the public preview of Hotpatching support on Windows Server 2025 Evaluation virtual machines running in Azure. This... - [First Ring Daily: Little ARMs](https://petri.com/first-ring-daily-little-arms/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss recent reports suggesting the upcoming release of... - [U.S. Agencies Sound Alarm on Rising Ransomware Attacks by Iranian Fox Kitten Group](https://petri.com/iranian-fox-kitten-ransomware-attacks/): The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have issued a warning that the Iranian... - [Microsoft to Phase Out Azure Classic Administrator Roles on August 31](https://petri.com/microsoft-retire-azure-classic-administrator-roles/): Microsoft is notifying commercial customers that Azure classic administrator roles will be retired on August 31, 2024. On the same... - [Exchange Server 2016 and Dynamics 365 PSA to Reach End of Support in 2025 — Plan Your Migration Now](https://petri.com/exchange-server-2016-dynamics-365-psa-end-of-support/): Microsoft has revealed that Exchange Server 2016 and Dynamics 365 Project Service Automation (PSA) will reach the end of their... - [Microsoft's Entra Connect Servers Get New Defender for Identity Sensor to Combat Cyber Threats](https://petri.com/entra-connect-servers-defender-for-identity-sensor/): Microsoft has released a new Defender for Identity sensor tailored for Entra Connect servers, enhancing security measures against credential theft... - [How Microsoft Evolved from Active Directory Red Forest to the Enterprise Access Model](https://petri.com/active-directory-red-forest/): Learn about the history of Active Directory Red Forest and how the enterprise [hybrid] landscape dictated Microsoft's new privileged access management model. - [Microsoft's OneDrive Web App to Add New Search Capabilities to Improve File Discovery and Management](https://petri.com/microsoft-onedrive-new-search-experience/): Microsoft is about to add a new search experience to its OneDrive web app next month. This new search results... - [Hackers Exploit Microsoft Sway in New QR Code Phishing Campaign](https://petri.com/microsoft-sway-qr-code-phishing-campaign/): Cybersecurity researchers have uncovered a new phishing campaign using malicious QR codes to steal Office credentials, potentially luring users into... - [Microsoft Teams Gets New Admin Control to Block External Access in Trial-Only Tenants](https://petri.com/microsoft-teams-block-external-access-trial-only-tenants/): Last month, Microsoft announced plans to introduce a new admin control to restrict external access from trial-only tenants. This new... - [Microsoft Intune Gets Resource Performance Report, Other New Features](https://petri.com/microsoft-intune-resource-performance-report/): Microsoft has rolled out a couple of new features and capabilities for Intune customers to enhance device performance management and... - [Microsoft to Host Windows Security Summit Following CrowdStrike Outage](https://petri.com/microsofts-windows-security-summit/): Microsoft is gearing up to host a summit on Windows security at its Redmond headquarters in September. The Windows Endpoint... - [First Ring Daily: Authentic Windows](https://petri.com/first-ring-daily-authentic-windows/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss their issues with the Microsoft Authenticator app... - [Microsoft Releases New Message Recall Capabilities for Exchange Online Customers](https://petri.com/exchange-online-message-recall-updates/): Microsoft has rolled out several improvements for the Message Recall feature in Exchange Online. The latest update brings new capabilities... - [Microsoft's Latest Update Causes Crashes on Dual-Boot Windows and Linux Devices](https://petri.com/microsofts-update-dual-boot-windows-linux/): Microsoft is currently investigating a critical issue that is causing crashes on select dual-boot Windows and Linux machines. The company... - [Microsoft's Controversial Recall AI Feature Coming to Windows Insiders in October](https://petri.com/microsofts-recall-feature-windows-october/): Microsoft is set to roll out its controversial Recall AI feature to Windows Insiders in October. This feature, which was... - [Microsoft's New MDTI Premium Data Connector for Sentinel Boosts Threat Detection Capabilities](https://petri.com/microsofts-mdti-premium-data-connector-sentinel/): Microsoft has introduced a new MDTI data connector within its Unified Security Operations Platform and standalone Sentinel experiences. This new... - [Microsoft Loop 2.0 Debuts with Revamped UI and New Collaboration Features](https://petri.com/microsoft-loop-2-0-ui-collaboration-features/): Microsoft has announced the release of Loop 2. 0 that brings several new features and enhancements to the productivity app.... - [New Unified Microsoft Teams App Now Available for Personal and Work Accounts](https://petri.com/unified-microsoft-teams-personal-work-accounts/): Microsoft has launched a new unified Teams app on Windows 11, Windows 10, and macOS. This new version of Microsoft... - [New Vulnerabilities in Microsoft Apps Compromise User Privacy on macOS](https://petri.com/microsoft-apps-vulnerability-macos/): Cybersecurity researchers have disclosed eight critical vulnerabilities in Microsoft apps for macOS. This new security flaws expose users to potential... - [Microsoft Offers Workaround to Fix Bug Causing Classic Outlook to Crash at Startup](https://petri.com/microsoft-bug-classic-outlook-crash/): Microsoft is working to fix a critical bug that causes the classic Outlook for Windows to crash during startup or... - [Microsoft to Mandate Multifactor Authentication for Azure Sign-Ins](https://petri.com/microsoft-mandate-multifactor-authentication-azure/): Microsoft is set to enforce multifactor authentication (MFA) for all Azure sign-ins. The company has urged administrators to activate MFA... - [Microsoft Copilot to Add Enterprise Data Protection Capabilities for Entra Accounts](https://petri.com/microsoft-copilot-enterprise-data-protection-entra-users/): Microsoft Copilot will add enterprise data protection (EDP) capabilities for users with Entra accounts next month, offering robust security features... - [Microsoft Unveils New Admin Policy for Seamless Transition to New Outlook for Windows](https://petri.com/microsoft-policy-new-outlook-for-windows/): Microsoft is set to introduce a new admin policy that will streamline the transition from the classic Outlook desktop app... - [Microsoft Patches BitLocker Recovery Issue Affecting Windows 11 and 10 PCs](https://petri.com/microsoft-fixes-bitlocker-recovery-windows/): Microsoft has fixed an issue that was causing Windows PCs to boot into BitLocker recovery mode. The company recommends all... - [Microsoft Lists Gets New Drag and Drop Feature to Reorder List Items](https://petri.com/microsoft-lists-drag-and-drop-reorder-list-items/): Microsoft has released a new update to make list organization easier and more intuitive in its Lists app. This new... - [Microsoft Releases August 2024 Patch Tuesday Updates for Windows 11 and Windows 10](https://petri.com/microsoft-august-2024-patch-tuesday-updates/): Microsoft has released the August 2024 Patch Tuesday updates for Windows 11 and Windows 10. This month, Microsoft addressed 90... - [Not Able to Connect to Microsoft Azure Arc and Azure Stack HCI Endpoints](https://petri.com/not-able-to-connect-to-microsoft-azure-arc-stack-hci/): Since mid-June 2024, some customers were not able to connect to Microsoft Azure services like Azure Arc Resource Bridge and Azure VMware Solution. In this article, Microsoft's Flo Fox looks at what you can do to resolve the issues. - [Microsoft Entra Verified ID Gets New Face Check Feature to Strengthen Protection Against Digital Impersonation](https://petri.com/microsoft-entra-verified-id-face-check-feature/): Microsoft has announced that the new Face Check feature is now generally available for Entra Verified ID customers. This new... - [How Hackers Could Exploit Microsoft Copilot's Vulnerabilities for Cyberattacks](https://petri.com/microsoft-copilots-vulnerabilities-cyberattacks/): The CTO of AI security firm Zenity has uncovered major security vulnerabilities within Microsoft Copilot, showing how cybercriminals could exploit... - [Microsoft Discovers Security Vulnerabilities in OpenVPN – What You Need to Know](https://petri.com/microsoft-security-vulnerabilities-openvpn/): Microsoft has disclosed a series of security vulnerabilities in OpenVPN that could allow attackers to execute remote code and gain... - [Microsoft to Impose Fees on Unlicensed OneDrive for Business Accounts](https://petri.com/microsoft-fees-unlicensed-onedrive-accounts/): Microsoft has announced some important changes to its storage policies for unlicensed OneDrive accounts. Starting in January 2025, Microsoft OneDrive... - [First Ring Daily: Google's Illegal Search Monopoly](https://petri.com/first-ring-daily-googles-illegal-search-monopoly/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Google losing its US antitrust case over... - [New Windows Update Flaw Lets Hackers Downgrade Fully Patched PCs](https://petri.com/windows-update-downgrade-pcs/): Cybersecurity researchers have uncovered a critical vulnerability in Windows Update that could be exploited to downgrade Windows PCs to older,... - [CrowdStrike to Give Customers Better Control Over Falcon Sensor Updates](https://petri.com/crowdstrike-control-falcon-sensor-updates/): CrowdStrike has published a comprehensive investigation into a faulty update that caused the crash of over 8. 5 million Windows... - [Microsoft Rolls Out AI-Powered Copilot in OneDrive to Boost Productivity and Collaboration](https://petri.com/microsoft-rolls-out-copilot-in-onedrive/): Earlier this year, Microsoft unveiled that its OneDrive app would be enhanced with new Copilot capabilities this summer. The company... - [Hackers Exploit Design Flaws in Windows Smart App Control and SmartScreen for Malware Attacks](https://petri.com/hackers-flaws-windows-security-malware-attacks/): Cybersecurity researchers have uncovered critical design flaws in Windows Smart App Control and SmartScreen. These vulnerabilities could potentially allow cybercriminals... - [Microsoft Teams Now Lets Users Enable/Disable the Discover Feed](https://petri.com/microsoft-teams-update-discover-feed/): Microsoft has released a new update that allows users to show or hide the Discover feed in Microsoft Teams. This... - [Microsoft Entra ID vs Azure AD - What's the Difference?](https://petri.com/entra-id-vs-azure-ad/): As an IT Pro in the Microsoft online landscape, you've certainly been seeing 'Microsoft Entra ID' more often. What is this? Is there a difference between Entra ID vs Azure AD? It's actually very simple. Read on to find out more! - [Microsoft Enhances Windows 365 with Cross-Region Disaster Recovery and AI Recommendations](https://petri.com/windows-365-cross-region-disaster-recovery/): Microsoft is celebrating the third-year anniversary of its Windows 365 service this month. The company also announced several new updates,... - [First Ring Daily: Microsoft’s FY24 Q4 Earnings ](https://petri.com/first-ring-daily-microsofts-fy24-q4-earnings/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's FY24 Q4 earnings, which also wrap... - [Microsoft's New Outlook for Windows Now Generally Available for Commercial Customers](https://petri.com/new-outlook-for-windows-generally-available/): Microsoft’s new web-based Outlook for Windows client is now generally available for commercial customers. This new app is still an... - [Outlook: How to Convert OST to PST](https://petri.com/convert-ost-to-pst/): In this guide, you will learn about Outlook OST and PST files, why you might need to convert OST files... - [Microsoft Teams Gets New Meeting Gallery, Custom Emojis and Reactions](https://petri.com/microsoft-teams-updates-july-2024/): Last month, Microsoft Teams released a host of new features aimed at enhancing user experience and functionality. Highlights include an... - [Microsoft 365 Backup Goes Live](https://petri.com/microsoft-365-backup-solution/): Microsoft 365 Backup Goes Live: Advanced Backup and Recovery Solution for OneDrive, SharePoint, and Exchange Data - [Microsoft Sentinel Now Integrates with 1Password for Streamlined Security Management](https://petri.com/microsoft-sentinel-integration-1password/): Microsoft has announced that a new 1Password integration is now generally available for Sentinel customers. This new tool enables organizations... - [Microsoft Confirms DDoS Attack Behind Latest Microsoft 365 and Azure Outage](https://petri.com/microsoft-365-azure-outage-ddos-attack/): Microsoft announced yesterday that its Azure cloud services experienced another major outage. The company confirmed that this widespread disruption was... - [Microsoft to Add AI-Powered Intelligent Recap Feature to New Outlook for Windows](https://petri.com/microsoft-intelligent-recap-new-outlook-for-windows/): Microsoft is set to enhance meeting productivity with its new AI-powered Intelligent Recap integration in the Outlook for Windows client.... - [Microsoft Teams Enhances New Planner App with Quick Sharing, Persistent Filters, and More](https://petri.com/microsoft-teams-planner-quick-sharing/): Microsoft has introduced several new features to enhance the new Planner app within Microsoft Teams. These updates include streamlined sharing... - [Microsoft Calls for Windows Kernel Access Restrictions Following Major CrowdStrike Outage](https://petri.com/microsoft-windows-changes-crowdstrike/): Microsoft has hinted at some important changes to Windows aimed at preventing cybersecurity vendors from accessing the Windows kernel. In... - [Microsoft Confirms New BitLocker Recovery Mode Bug Affecting Windows PCs](https://petri.com/bitlocker-recovery-bug-windows/): Microsoft is investigating a new issue that causes some Windows devices to enter the BitLocker recovery screen when booting up.... - [First Ring Daily: The Real Y2K](https://petri.com/first-ring-daily-the-real-y2k/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott look back at the impact of the massive... - [Microsoft Intune Gets New Copilot Integration to Simplify Device Data Retrieval](https://petri.com/microsoft-intune-copilot-device-data/): Microsoft has unveiled several enhancements to its Intune service, aimed at streamlining endpoint management for commercial customers. These updates reduce... - [CrowdStrike to Overhaul Testing and Deployment Procedures to Prevent Massive Outages](https://petri.com/crowdstrike-overhaul-testing-prevent-outages/): Cybersecurity firm CrowdStrike has released a post-incident report detailing how a flawed update last week crashed around 8. 5 million... - [Microsoft Improves Copilot in Planner (Preview) with Suggested Prompts and Other New Features](https://petri.com/microsoft-updates-copilot-in-planner-preview/): Microsoft announced that Copilot in Planner (preview) is generally available in the new Planner app in Microsoft Teams. The company... - [Microsoft Expands Copilot Dashboard to Copilot for Microsoft 365 Customers](https://petri.com/copilot-dashboard-copilot-for-microsoft-365/): Microsoft has started the rollout of its Copilot Dashboard for customers with a Copilot for Microsoft 365 subscription. This new... - [CISA Warns of Phishing Scams Exploiting CrowdStrike Outage Chaos](https://petri.com/cisa-phishing-scams-crowdstrike-outage/): The Cybersecurity and Infrastructure Security Agency (CISA) has alerted that cybercriminals are seizing the turmoil from the recent CrowdStrike outage... - [How to Recover Deleted Emails in Microsoft Exchange Server](https://petri.com/recover-deleted-emails/): In this article, Bharat Bhushan shows you how to recover deleted emails in Exchange Server. This article is sponsored by... - [Microsoft Adds New Dynamic Watermarking Feature to Enhance Data Protection in Word, Excel, and PowerPoint](https://petri.com/microsoft-365-apps-dynamic-watermarking/): Microsoft has announced the public preview of dynamic watermarking for Microsoft 365 apps, including Word, Excel, and PowerPoint. This new... - [Microsoft Releases New Recovery Tool to Fix Windows Systems Hit by CrowdStrike Outage](https://petri.com/microsoft-crowdstrike-recovery-tool-windows/): Microsoft has released a new Recovery Tool designed to help IT administrators quickly restore Windows machines impacted by the recent... - [First Ring Daily: Crowd Struck](https://petri.com/first-ring-daily-crowd-struck/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the botched CloudStrike update that triggered a... - [[Updated] Global IT Outage Linked to CrowdStrike Update Disrupts Critical Services Worldwide — What You Need to Know](https://petri.com/crowdstrike-update-global-it-outage/): Cybersecurity provider CrowdStrike has acknowledged that a recent update is causing Blue Screen of Death (BSOD) errors on thousands of... - [Exchange Online Gets Inbound SMTP DANE with DNSSEC to Strengthen Email Security](https://petri.com/exchange-online-inbound-smtp-dane-with-dnssec/): Microsoft has announced the public preview of Inbound SMTP DANE with DNSSEC support for Exchange Online, marking a significant step... - [Microsoft Purview Data Governance Solution to Launch on September 1](https://petri.com/microsoft-purview-data-governance-september/): Microsoft has announced that the new Purview Data Governance solution will become generally available on September 1. This new AI-powered... - [Microsoft Guarantees Faster, Smaller Downloads with Checkpoint Cumulative Updates for Windows 11](https://petri.com/microsoft-checkpoint-cumulative-updates-windows-11/): Microsoft is set to enhance the Windows update process with the introduction of checkpoint cumulative updates for Windows 11 version... - [Install SQL Server Reporting Services 2022](https://petri.com/install-sql-server-reporting-services/): In this article you’ll learn how to install SQL Server Reporting Services 2022 (SSRS) and configure it. It’s important to... - [Microsoft Enhances Draft with Copilot in Word with New Content Transformation and Organization Capabilities](https://petri.com/microsoft-updates-draft-with-copilot-word/): Microsoft has announced several enhancements coming to Copilot in Word. The Draft with Copilot experience now allows users to rewrite,... - [Microsoft Teams to Introduce New Administrative Units for Streamlined Management](https://petri.com/microsoft-teams-administrative-units/): Microsoft is set to add support for administrative units (AUs) in the Teams admin center. This new feature will allow... - [How to Add Comments to Your PowerShell Code and Scripts](https://petri.com/powershell-comment/): In this guide, you will learn about using PowerShell comments to help you better document your code and provide comment-based... - [New Config Refresh Feature in Windows 11 Bolsters Security and Policy Compliance](https://petri.com/microsoft-config-refresh-windows-11/): Microsoft has introduced a new security feature for Windows 11 called Config Refresh, which allows administrators to automatically reapply policies... - [Microsoft Entra Suite Debuts with Enhanced Capabilities to Combat Security Threats](https://petri.com/microsoft-entra-suite-combat-security-threats/): Microsoft has announced the general availability of the Microsoft Entra Suite and the integration of Microsoft Sentinel with the Microsoft... - [Microsoft's New Azure VM Migration Tool Boosts Uptime and Disaster Recovery](https://petri.com/azure-vm-migration-tool-uptime-disaster-recovery/): Microsoft has announced that the “Azure VM Regional to Zonal Move” feature is now generally available for commercial customers. This... - [Career Advice: Are Microsoft Certifications Worth It For IT Pros in 2024?](https://petri.com/are-microsoft-certifications-worth-it/): Are Microsoft certifications worth it? And do the benefits outweigh the costs? As a certified IT Pro, I'll answer these questions and more. - [Microsoft's New Outlook for Windows App to Hit General Availability on August 1](https://petri.com/new-outlook-for-windows-general-availability/): The new Microsoft Outlook for Windows client that launched in public preview last year will become generally available for commercial... - [Microsoft Expands AI-Powered Speaker Recognition to All Teams Rooms on Windows Devices](https://petri.com/microsoft-speaker-recognition-teams-rooms-windows/): Microsoft’s AI-powered speaker recognition technology is now available for all Teams Rooms on Windows devices. The company announced yesterday that... - [Microsoft Releases July 2024 Patch Tuesday Updates](https://petri.com/microsoft-july-2024-patch-tuesday-updates/): Microsoft has released the July 2024 Patch Tuesday updates for all supported versions of Windows 11 and Windows 10. This... - [Microsoft to End Support for Windows 11 Versions 21H2 and 22H2 in October](https://petri.com/windows-11-versions-21h2-and-22h2-end-support/): Microsoft is reminding customers that it will end support for multiple editions of Windows 11, versions 21H2 and 22H2, in... - [Azure Virtual Desktop Insights Gets New Tool to Monitor Connection Health](https://petri.com/azure-virtual-desktop-insights-connection-reliability/): Microsoft has introduced a new Connection Reliability tab in Azure Virtual Desktop Insights. This feature empowers administrators to closely monitor... - [Microsoft 365 Apps Get Support for OpenDocument Format 1.4: What You Need to Know](https://petri.com/microsoft-365-apps-opendocument-format-1-4/): Microsoft has announced that its Microsoft 365 apps now support OpenDocument Format (ODF) 1. 4 by default. The latest version... - [First Ring Daily: Laptop lore](https://petri.com/first-ring-daily-laptop-lore/): In this episode of First Ring Daily, Paul Thurrott discusses his experience using the Qualcomm-powered Surface Laptop 7 and how... - [Microsoft Entra PowerShell Module: Streamlining IT Resource Management and Automation](https://petri.com/microsoft-entra-powershell-module-public-preview/): Microsoft has recently announced the public preview of its Entra PowerShell module, a new command-line tool designed for IT administrators.... - [Microsoft to Retire Office 365 Connectors Feature in Microsoft Teams](https://petri.com/microsoft-teams-retire-office-365-connectors/): Microsoft is set to deprecate the Office 365 connectors feature in Microsoft Teams. The company encourages customers to transition to... - [Microsoft Entra Certificate-Based Authentication Gets New Issuer Hints Feature to Simplify Certificate Selection](https://petri.com/microsoft-entra-certificate-based-authentication-enhancements/): Microsoft has released a new issuer hints feature in public preview for Entra certificate-based authentication (CBA). Additionally, several other capabilities,... - [Microsoft Teams Now Supports Custom Sound Notifications](https://petri.com/microsoft-teams-custom-sound-notifications/): Microsoft has released a new update that allows users to personalize their notification sounds in the new Microsoft Teams desktop... - [Microsoft Intune Enhances Device Security with New Windows Corporate Identifier Feature](https://petri.com/microsoft-intune-windows-corporate-identifier/): Microsoft has released a new Windows corporate identifier feature for its Microsoft Intune service. This new feature is designed to... - [Silver SAML: Active Directory Attack Technique Explained](https://petri.com/silver-saml-active-directory/): In this blog post, you’ll be introduced to Silver SAML, a variant of Golden SAML. Golden SAML is a sophisticated... - [Microsoft Teams to Block Federated Communications with Trial-Only Tenants](https://petri.com/microsoft-teams-block-communications-trial-only-tenants/): Microsoft Teams is getting a new setting that will allow IT admins to block federated communications with trial-only Microsoft 365... - [Microsoft Unveils Cross-Region Disaster Recovery for Windows 365 Enterprise](https://petri.com/windows-365-enterprise-cross-region-disaster-recovery/): Microsoft has introduced support for cross-region disaster recovery for Windows 365 Enterprise. This new optional service allows organizations to safeguard... - [How to Fix Exchange Database Failed to Mount Error?](https://petri.com/exchange-database-failed-to-mount-error/): Learn the reasons that may lead to the Exchange database failed to mount error and ways to fix it. - [Microsoft Teams Gets New Copilot Integration, Multi-Tenant Organization Improvements](https://petri.com/microsoft-teams-copilot-integration/): Microsoft unveiled a range of new features and improvements for its Teams collaboration service in June 2024, enhancing chat, meeting... - [Microsoft to Phase Out WSUS Driver Synchronization in 2025](https://petri.com/microsoft-phase-out-wsus-drive-synchronization/): Microsoft has announced its plans to phase out the drive synchronization feature in Windows Server Update Services (WSUS) on April... - [First Ring Daily: ARM-Mageddon](https://petri.com/first-ring-daily-arm-mageddon/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the various ARM-powered Copilot+ PCs on the... - [New VDI Solution for Microsoft Teams Launches with Enhanced Performance and Advanced Meetings Features](https://petri.com/microsoft-teams-vdi-solution-preview/): Microsoft has announced the public preview of a new optimization architecture for Microsoft Teams on virtual desktop infrastructure (VDI). This... - [Microsoft Loop Now Supports External Sharing for Seamless Collaboration](https://petri.com/microsoft-loop-external-sharing/): Microsoft has released a new update that introduces guest/external sharing support for its Loop app. This new feature enhances collaboration... - [PingCastle - A Free Tool to Assess Active Directory Security](https://petri.com/pingcastle-active-directory-tool/): Are you looking to improve the security of your Active Directory environment? Learn how to set up the PingCastle Community... - [Microsoft Defender XDR Gets New Copilot for Security Integration for Enhanced Threat Intelligence](https://petri.com/defender-xdr-copilot-for-security-ti-embedded-experience/): Microsoft has announced the general availability of the Copilot for Security threat intelligence (TI) embedded experience in the Defender XDR... - [New Microsoft Teams PWA Now Available for All Windows and macOS Users](https://petri.com/new-microsoft-teams-pwa-windows-macos/): Microsoft has announced that its new Teams client is now available as a progressive web app (PWA) for both Windows... - [Microsoft Faces EU Antitrust Charges for Bundling Teams with Office 365](https://petri.com/microsoft-teams-eu-bundling-antitrust/): The European Commission has issued new antitrust charges against Microsoft concerning the bundling of Microsoft Teams with Office 365/Microsoft 365... - [Microsoft to Rebrand Outlook for Windows as "Outlook (Classic)"](https://petri.com/microsoft-rebrand-outlook-for-windows/): Microsoft will soon rename its existing Outlook for Windows app to “Outlook (classic),” starting with customers using version 2407 or... - [Microsoft Intune Adds New RAC Feature for Seamless Device Troubleshooting](https://petri.com/microsoft-intune-rac-device-troubleshooting/): Microsoft Intune is set to introduce a new Remove apps and configuration (RAC) feature next month. The new troubleshooting tool... - [US Government Imposes Ban on Kaspersky Antivirus Software Over Russian Espionage Risks](https://petri.com/us-ban-kaspersky-antivirus-software/): Last week, the Biden administration declared a ban on all US sales of Kaspersky antivirus software starting in July, citing... - [Microsoft to Retire SharePoint News Connector Service](https://petri.com/microsoft-retire-sharepoint-news-connector/): Microsoft is getting ready to retire its SharePoint News connector service next month. The company recommends customers to switch to... - [First Ring Daily: Vertical Powers](https://petri.com/first-ring-daily-vertical-powers/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the first Copilot+ PCs being off to... - [Microsoft Enhances Teams Rooms with Intelligent Recaps, Other New Features](https://petri.com/microsoft-teams-rooms-intelligent-recaps/): Microsoft has announced a slew of updates for Teams Rooms and devices at InfoComm 2024, to enhance how meetings are... - [Microsoft's New Surface Laptop 7 and Surface Pro 11 Copilot+ PCs Now Available](https://petri.com/microsofts-surface-laptop-7-surface-pro-11-copilot-pcs/): Microsoft has officially launched its new Copilot+ PCs today, which are now available for purchase at the Microsoft Store and... - [Microsoft to Retire DirectAccess in Favor of Always On VPN](https://petri.com/microsoft-retire-directaccess-always-on-vpn/): Microsoft has unveiled its plans to phase out DirectAccess in future Windows versions, urging commercial users to switch to Always... - [Microsoft Loop Adds New Commenting Capabilities to Tables and Boards](https://petri.com/microsoft-loop-comments/): Microsoft has released a new update that adds support for comments to Loop tables and boards. This new feature allows... - [Windows Autopatch Gets Policy Conflict Alerts and Post-Update Reliability Reports](https://petri.com/windows-autopatch-policy-conflict-alerts/): Microsoft has announced the public preview of alerts for policy conflicts in Windows Autopatch. The Windows Autopatch service is designed... - [First Ring Daily: Recall Needs More Work](https://petri.com/first-ring-daily-recall-needs-more-work/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to delay the release of... - [Microsoft Delays Recall AI Feature for Copilot+ PCs to Address Privacy Concerns](https://petri.com/microsoft-delays-recall-copilot-pcs/): Microsoft has postponed the rollout of its controversial Recall feature for Copilot+ PCs, and it will now be released first... - [Cloud Backup vs Local Backup - Choosing the Right Backup for Your Organization](https://petri.com/cloud-backup-vs-local-backup/): In this article, I will explain the differences between cloud backup vs local backup, plus when you should choose one over the other, or sometimes both. - [Microsoft Adds Copilot for Microsoft 365 Chat to Classic Outlook for Windows](https://petri.com/microsoft-copilot-classic-outlook-for-windows/): Microsoft is enhancing the classic Outlook for Windows app with new Copilot capabilities this month. The company has announced that... - [Microsoft Teams Chats to Simplify File Management with New Shared Tab](https://petri.com/microsoft-teams-chats-shared-tab/): Microsoft Teams is getting a new update to simplify how users discover content in chat messages. The app will rename... - [Microsoft Releases June 2024 Patch Tuesday Updates](https://petri.com/microsoft-june-2024-patch-tuesday-updates/): Microsoft released yesterday the June 2024 Patch Tuesday updates for Windows 11 and Windows 10 devices. This month, the company... - [New Microsoft Teams Client Lets Users Mute and Unmute from the Windows Taskbar](https://petri.com/microsoft-teams-mute-unmute-windows-taskbar/): The latest update to the new Microsoft Teams desktop client brings a highly anticipated feature that simplifies managing audio input... - [Microsoft Defender for Cloud Apps Now Tracks Unauthorized SaaS Apps on macOS](https://petri.com/microsoft-defender-for-cloud-apps-saas-apps-macos/): Microsoft has released an update for its Defender for Cloud Apps, extending its Shadow IT discovery capabilities to macOS devices.... - [Microsoft to Disable Windows Recall By Default Amid Security Concerns](https://petri.com/microsoft-disable-recall-by-default/): Microsoft has committed to making changes to Recall before its launch on new Copilot+ PCs later this month, opting to... - [How Does RAID Data Recovery Work? What to Expect?](https://petri.com/raid-data-recovery/): This article will provide an overview of the most common RAID levels and the process of RAID data recovery in... - [Microsoft Unveils Major Enhancements for Copilot for Microsoft 365](https://petri.com/microsoft-updates-copilot-for-microsoft-365/): Microsoft introduced several new features for Copilot in Microsoft 365 in May 2024. The company has highlighted new admin and... - [Microsoft Launches Azure Bastion Premium SKU with Advanced Security and Monitoring Features](https://petri.com/microsoft-azure-bastion-premium/): Microsoft has launched a new Premium SKU in public preview for its Azure Bastion service. This new offering is designed... - [Microsoft Shifts from NTLM to Kerberos to Strengthen Windows Authentication](https://petri.com/microsoft-deprecates-ntlm-kerberos/): Last year, Microsoft detailed plans to phase out NT LAN Manager (NTLM) user authentication to promote the adoption of the... - [New Outlook for Windows to Add Offline Mode with Performance Improvements](https://petri.com/new-outlook-for-windows-offline-mode/): Microsoft is getting ready to roll out new offline capabilities for the new Outlook for Windows client later this month.... - [Microsoft Partners with Broadcom to Streamline Cloud Migration for VMware Customers](https://petri.com/microsoft-broadcom-license-portability-vmware/): Last week, Microsoft announced an expansion of its partnership with Broadcom, poised to bring significant benefits to VMware Cloud Foundation... - [A Guide To Microsoft Office 2024 (LTSC): What You Need To Know](https://petri.com/microsoft-office-2024-guide/): Learn about the new version of Microsoft Office 2024 LTSC. We'll dive into new features, pricing, expected availability, and the main reasons you should choose this perpetual version vs the subscription model. - [Microsoft Releases Windows Server 2025 in Public Preview with Enhanced Storage, Security, and Hyper-V Capabilities](https://petri.com/windows-server-2025-public-preview/): Microsoft has announced the public preview of Windows Server 2025, including a host of new features and enhancements to optimize... - [First Ring Daily: AI Bedfellows](https://petri.com/first-ring-daily-ai-bedfellows/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the impact of a possible Apple/OpenAI partnership... - [New Microsoft Teams Client Now Alerts Users When Colleagues Are Available](https://petri.com/new-microsoft-teams-notify-when-available/): Microsoft is adding a highly anticipated “Notify when available” feature to the new Teams desktop app, enhancing real-time communication among... - [Microsoft to Launch New Converged Platform to Streamline Cloud Access Management](https://petri.com/microsoft-converged-platform/): Microsoft has announced a new converged platform to enhance risk management within enterprise environments. This new platform aims to streamline... - [Microsoft Delays Teams Live Events Retirement, Eases Transition to Town Halls](https://petri.com/microsoft-teams-live-events-retirement/): Microsoft is backtracking on its plans to retire Teams Live Events in September 2024. Last year, the company warned commercial... - [How to Resolve Exchange Dirty Shutdown Error? A Comprehensive Guide](https://petri.com/exchange-dirty-shutdown/): Learn to identify, troubleshoot, and fix Dirty Shutdown error in Microsoft Exchange. Also, know expert tips, FAQs, and much more to ensure smooth operation of your Exchange Server. - [Microsoft Unveils Next-Gen Windows Autopilot Device Preparation Experience for Faster, Scalable Deployments](https://petri.com/windows-autopilot-device-preparation/): Microsoft has recently announced a new Windows Autopilot device preparation experience for commercial customers. Built on a re-engineered architecture, this... - [Microsoft Intune Gets Big Update to Enhance Device Management and Security](https://petri.com/microsoft-intune-update-device-management-security/): Microsoft is set to enhance its Intune solution with a suite of new capabilities designed to optimize both administrative and... - [First Ring Daily: The Best Thing Announced](https://petri.com/first-ring-daily-the-best-thing-announced/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discussed the most interesting announcements from Microsoft this... - [Microsoft to Start VBScript Deprecation in Windows Later This Year](https://petri.com/microsoft-retire-vbscript-windows/): Last year, Microsoft unveiled its plans to end support for VBScript, a scripting language that has been a staple for... - [Free Tool - Use Purple Knight to Get an Active Directory Security Assessment](https://petri.com/purple-knight/): Learn about the benefits of the Purple Knight Active Directory (AD) security assessment and how it can help improve the... - [Build 2024: Microsoft SharePoint Embedded Now Generally Available to Streamline Document Management](https://petri.com/microsoft-sharepoint-embedded-generally-available/): SharePoint Embedded, the new Microsoft Graph API-powered service that launched in public preview in November 2023 is now generally available.... - [Build 2024: Microsoft Teams and Loop Add New Collaboration Features](https://petri.com/microsoft-teams-loop-collaboration/): Microsoft detailed today several new features coming to Microsoft Teams and Loop to help users collaborate more effectively with colleagues.... - [Build 2024: Microsoft Teams Premium Gets New AI Features and Data Protection Capabilities](https://petri.com/microsoft-teams-premium-ai-features/): Microsoft unveiled several updates for its Microsoft 365 suite of services at the annual Build developer conference. The company announced... - [Build 2024: Microsoft Unveils New Team Copilot to Boost Productivity with Process Automation](https://petri.com/microsoft-team-copilot-collaboration/): Microsoft continues to improve Copilot for Microsoft 365 which became generally available for commercial customers in November 2023. The company... - [Build 2024: Microsoft Launches Fluid Framework 2.0 in Preview](https://petri.com/microsoft-fluid-framework-2-0/): Microsoft has announced a public preview of the new Fluid Framework 2. 0 today at its Build 2024 conference. The... - [Build 2024: Microsoft Edge for Business Gets New Security Features to Prevent Data Leaks](https://petri.com/microsoft-edge-for-business-security-features/): At its Build conference this morning, Microsoft unveiled new security features coming to its Edge for Business experience that launched... - [Build 2024: Microsoft Announces New Azure Virtual Machines for AI and Cloud-Native Workloads](https://petri.com/azure-virtual-machines-ai-cloud-native-workloads/): Microsoft announced this morning the public preview of the Cobalt 100 Arm-based virtual machine (VM). The company has also announced... - [Build 2024: Microsoft Expands Copilot for Azure Preview to All Customers](https://petri.com/microsoft-expands-copilot-for-azure-preview/): Microsoft is broadening access to Copilot for Azure preview to all customers, promising enhanced cloud management capabilities. This expansion comes... - [Microsoft's New Copilot+ PCs Boast Advanced AI Experiences](https://petri.com/microsofts-copilot-plus-pcs/): Microsoft has just unveiled its new Copilot+ PCs, a new category of devices powered by Snapdragon X Elite and X... - [Microsoft to Enforce MFA for All Azure Customers in July](https://petri.com/microsoft-enforce-mfa-azure-customers/): Microsoft is stepping up its security game for Azure customers by mandating multi-factor authentication (MFA) starting in July 2024. This... - [First Ring Daily: Building on the Road](https://petri.com/frd-building-on-the-road/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's upcoming Build developer conference starting next... - [Hackers Exploit Windows Quick Assist App to Deploy Black Basta Ransomware](https://petri.com/windows-quick-assist-black-basta-ransomware/): Microsoft has warned customers about a new wave of social engineering attacks where cybercriminals exploit its Quick Assist app. The... - [Microsoft Teams Gets New Channel Management Capabilities](https://petri.com/microsoft-teams-channel-management/): Microsoft has announced a slew of updates to streamline channel management in its Teams collaboration service. The company has reduced... - [VMware Makes Workstation Pro and Fusion Pro Free for Personal Use](https://petri.com/vmware-workstation-pro-fusion-pro-free-personal-use/): VMware announced yesterday that its Workstation Pro and Fusion Pro desktop hypervisor products are now free for personal use. Starting... - [Microsoft's May 2024 Patch Tuesday Updates Fix Two Zero-Day Vulnerabilities](https://petri.com/microsofts-may-2024-patch-tuesday-updates/): Microsoft has released the May 2024 Patch Tuesday updates for Windows 11 and Windows 10. This month, Microsoft fixed a... - [PSA: Windows 10 version 21H2 Enterprise and Education Editions Set to Reach End of Support Next Month](https://petri.com/windows-10-version-21h2-end-support/): Microsoft is warning customers still using Windows 10 version 21H2 that it will soon reach end of support. The consumer... - [Microsoft Places Uses AI to Enhance Workplace Coordination](https://petri.com/microsoft-places-workplace-coordination/): Microsoft has announced the public preview of a new application called Microsoft Places. This new AI-powered app leverages insights from... - [Microsoft to Launch System Center 2025 Later This Year](https://petri.com/microsoft-launch-system-center-2025/): System Center 2025, the next release of Long-Term Servicing Channel (LTSC) will be released in Fall 2024. Microsoft has announced... - [Microsoft Teams' New Presenter Window Elevates Virtual Meetings](https://petri.com/microsoft-teams-presenter-window/): Microsoft Teams meetings are about to get a lot more interactive with the latest enhancements to the Presenter window. Now,... - [What is Single Sign-On (SSO): Everything You Need to Know](https://petri.com/what-is-single-sign-on/): In this article, IT consultant Chester Avey explains what single sign-on is and why IT departments should consider enabling it to make life easier for users. - [First Ring Daily: Outlook Frustrations and Microsoft's PR Struggles](https://petri.com/outlook-frustrations-microsofts-pr-struggles/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the persisting feature gap between the new... - [Stay Ahead of Threats: Microsoft Entra ID Protection Enhances Security Capabilities](https://petri.com/microsoft-entra-id-protection-security-capabilities/): Microsoft has announced some important updates for its Entra ID Protection service. The new feature offers administrators streamlined deployment of... - [Microsoft Introduces New Sentinel SOC Optimization Feature for Enhanced Cybersecurity](https://petri.com/microsoft-sentinel-soc-optimization/): Microsoft announced yesterday a public preview of SOC optimization for Microsoft Sentinel customers. The feature provides actionable tailored recommendations, allowing... - [Microsoft Teams Compose Box to Add Support for Slash Commands](https://petri.com/microsoft-teams-compose-box-slash-commands/): Microsoft Teams is set to introduce support for slash commands directly within the compose message box. The company has announced... - [Exchange Server Subscription Edition to Launch in Summer 2025](https://petri.com/exchange-server-subscription-edition-q3-2025/): Microsoft has revealed that Exchange Server Subscription Edition (SE) will debut in the third quarter of 2025. This upcoming on-premises... - [Microsoft Outlook Gets Support for Copilot with Graph-Grounded Chat](https://petri.com/microsoft-outlook-copilot-graph-grounded-chat/): Microsoft has published a recap of all the new features and improvements added to Copilot for Microsoft 365 during the... - [Microsoft Purview and Defender for Cloud Add New Security Features to Protect AI Applications](https://petri.com/microsoft-purview-security-features-ai-apps/): Microsoft has unveiled a host of new capabilities for its Microsoft Purview and Defender for Cloud solutions. The new features... - [Microsoft Expands Secure Future Initiative to Counter Rising Cyber Threats](https://petri.com/microsoft-expands-secure-future-initiative/): Microsoft has announced plans to make security its top priority to better protect its infrastructure and customers against sophisticated cyberattacks.... - [Microsoft Entra External ID Simplifies Customer Identity Access Management](https://petri.com/microsoft-entra-external-id-launch-may-15/): Microsoft Entra External ID, the new customer identity access management solution (CIAM) that the company announced last year, is set... - [New Microsoft Planner App in Teams Gets Copilot Integration to Streamline Collaboration](https://petri.com/new-microsoft-planner-teams-copilot/): Microsoft has started rolling out the Copilot AI assistant to the new Planner app in Teams. The new Copilot integration... - [Copilot in Microsoft Teams Now Supports Multi-Turn Conversations](https://petri.com/copilot-microsoft-teams-multi-turn-conversations/): Microsoft has published a recap of all the new capabilities added to Teams during the month of April 2024. The... - [Microsoft Intune Gets New Device Management Capabilities](https://petri.com/microsoft-intune-device-management/): Microsoft released several new device management capabilities for its Intune solution in April 2024. The company highlighted several improvements, including... - [Microsoft OneDrive Starts Rolling Out New Offline Mode for Work and School Accounts](https://petri.com/microsoft-onedrive-offline-mode/): Last year, Microsoft unveiled its plans to introduce a new Offline mode for the OneDrive web app. Now, the company... - [Microsoft Introduces Trusted Signing Solution: Simplifying App Development for Developers](https://petri.com/microsoft-trusted-signing-solution/): Microsoft has recently announced the public preview of its new Trusted Signing solution. This fully managed end-to-end signing service is... - [Microsoft Outlook will Let Users Follow Teams Meetings](https://petri.com/microsoft-outlook-follow-teams-meeting/): Microsoft Outlook is about to add a new meeting response option (RSVP) to the new Outlook for Windows and the... - [First Ring Daily: Big Numbers](https://petri.com/first-ring-daily-big-numbers/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s FY24 Q3 earnings beating all expectations... - [Microsoft 365 Multi-Tenant Organization Capabilities Generally Available for Enhanced Cross-Tenant Collaboration](https://petri.com/microsoft-365-multi-tenant-organization-generally-available/): Microsoft has announced the general availability of the new multi-tenant organization (MTO) capabilities for Entra ID customers. The new feature... - [Microsoft Reduces Size of Windows 10 Updates for Faster Downloads](https://petri.com/microsoft-reduces-size-windows-10-updates/): Microsoft has announced its plans to significantly reduce the size of its updates for Windows 10 version 22H2. The company... - [Microsoft to Retire Classic Teams on July 1, 2024](https://petri.com/microsoft-retire-classic-teams-july-2024/): Microsoft will soon officially retire the classic version of Microsoft Teams. The company has announced on the Microsoft 365 admin... - [Dropbox Introduces New Real-Time Co-Authoring Support for Microsoft 365 Apps](https://petri.com/dropbox-real-time-co-authoring-microsoft-365/): Dropbox and Microsoft are teaming up to more closely integrate the cloud storage service into Microsoft 365. The company has... - [Microsoft's Configuration Manager Update 2403 Brings Diagnostic Dashboard, Other New Features](https://petri.com/microsofts-configuration-manager-update-2403/): Microsoft has announced the release of the update 2403 for Configuration Manager (Current Branch). Among its notable features are the... - [Microsoft Intune Remote Help Gets Full Control Support for macOS Devices](https://petri.com/microsoft-intune-remote-full-control-macos/): Microsoft Intune Remote Help has introduced full control support for macOS devices. The new feature allows IT help desk agents... - [Russian Hackers Exploit Critical Windows Vulnerability to Deploy 'GooseEgg' Malware](https://petri.com/hackers-windows-vulnerability-gooseegg-malware/): Microsoft has warned customers about the exploitation of a Windows print spooler vulnerability by Russian hackers, enabling them to elevate... - [Microsoft Advises Against iPerf3 Usage for Network Testing on Windows](https://petri.com/microsoft-iperf3-network-testing-windows/): Microsoft has issued an advisory against using the iPerf3 tool on Windows devices, citing compatibility and performance concerns. The company... - [Microsoft Purview Launches Audit Search Graph API for Seamless Data Monitoring](https://petri.com/microsoft-purview-audit-search-graph-api/): Microsoft has launched its new Purview Audit Search Graph API in public preview for commercial customers. This new API allows... - [5 Ways to Get Things Done More Efficiently in Microsoft 365](https://petri.com/5-ways-to-get-things-done-microsoft-365/): It can seem at times we all have an overwhelming amount of things to do and information to deal with.... - [First Ring Daily: Did Copilot Do That?](https://petri.com/first-ring-daily-did-copilot-do-that/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft accidentaly pushing Copilot on Windows on... - [Microsoft Launches Office LTSC 2024 in Preview for Windows and Mac Devices](https://petri.com/microsoft-office-ltsc-2024-preview-windows-mac/): Microsoft has announced that Office 2024 is now available as a commercial preview for Windows and macOS users. The next... - [Cybercriminals Exploit OpenMetadata Flaws to Target Kubernetes Clusters](https://petri.com/openmetadata-flaws-kubernetes-clusters/): Microsoft has recently unveiled critical vulnerabilities within OpenMetadata’s open-source metadata repository. The security flaws could allow cybercriminals to execute remote... - [Microsoft Defender for Endpoint Rolls Out Offline Security Intelligence Update Feature for Linux Devices](https://petri.com/microsoft-defender-for-endpoint-offline-security-update/): Microsoft Defender for Endpoint has added a new Offline Security Intelligence Update feature in public preview for Linux devices. This... - [PSA: Microsoft Office 2016 and 2019 to Reach End of Support in October 2025](https://petri.com/office-2016-2019-end-support-2025/): Microsoft is reminding customers that Office 2016 and Office 2019 apps and productivity servers will reach end of support on... - [Microsoft Loop Adds New Filtering Capabilities to Tables and Boards](https://petri.com/microsoft-loop-filters-tables-boards/): Microsoft has released a new update for its Loop app that should make it easier for users to find and... - [Microsoft Graph Activity Logs Redefine Security Monitoring](https://petri.com/microsoft-graph-activity-logs/): Microsoft has announced the general availability of the activity logs feature in Microsoft Graph. This capability enables organizations to gain... - [Microsoft Bolsters Exchange Online Security with New External Recipient Rate Limit Feature](https://petri.com/exchange-online-external-recipient-rate-limit/): Microsoft takes a pivotal step in improving security with the introduction of a daily external recipient limit for Exchange Online... - [Microsoft Lifts Windows 11 Upgrade Block for PCs with Intel SST Drivers](https://petri.com/windows-11-upgrade-block-intel-sst-drivers/): Microsoft has removed an upgrade block that was previously in place for Windows 10 PCs with certain Intel Smart Sound... - [CISA Alerts: Russian Hackers Infiltrate US Government Emails](https://petri.com/cisa-russian-hackers-government-emails/): The US Cybersecurity and Infrastructure Security Agency (CISA) has warned that Russian hackers, who penetrated Microsoft’s email system last year,... - [Microsoft Copilot Dashboard Launches to Enhances Workplace Productivity](https://petri.com/microsoft-copilot-dashboard-generally-available/): Microsoft has launched a new Copilot Dashboard for Microsoft 365 customers. Powered by Viva Insights, the new dashboard provides actionable... - [First Ring Daily: Intel Does AI](https://petri.com/intel-does-ai/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott reflect on Intel's recent talks about new AI,... - [Microsoft Streamlines Log Ingestion with New Sentinel AWS S3 Connector](https://petri.com/microsoft-sentinel-aws-s3-connector/): Microsoft has announced the general availability of the Amazon Web Services (AWS) S3 connector for Microsoft Sentinel. This new connector... - [Microsoft SharePoint Exploits Pose Risk of Document Theft](https://petri.com/microsoft-sharepoint-exploits/): Cybersecurity researchers have discovered two new techniques that could enable hackers to steal data from Microsoft SharePoint. Microsoft SharePoint is... - [Install and Use SQL Server Report Builder](https://petri.com/sql-server-report-builder/): In this article, Michael Otey shows you how to use SQL Server Report Builder. SQL Server Report Builder and Reporting... - [Microsoft Fabric Adds New Security Features, Copilot Improvements](https://petri.com/microsoft-fabric-security-features/): Microsoft has recently announced a slew of new capabilities coming to Microsoft Fabric. The company highlighted improvements aimed at bolstering... - [April 2024 Patch Tuesday Updates Fix SmartScreen Security Bypass Vulnerability](https://petri.com/microsoft-april-2024-patch-tuesday-updates/): Microsoft released yesterday the April Patch Tuesday updates for Windows 11 and Windows 10. This month, the company addressed 149... - [Microsoft Intune Endpoint Privilege Management Gets New Support-Approved Elevations Feature](https://petri.com/endpoint-privilege-management-support-approved-elevations/): Microsoft has introduced a new support-approved elevation feature within its Intune Endpoint Privilege Management solution. The new capability allows standard... - [Microsoft Discontinues ISV Studio Analytics Portal](https://petri.com/microsoft-discontinues-isv-studio/): Microsoft has announced its decision to deprecate the ISV Studio feature this month. The company has updated its support page... - [Microsoft Introduces New Entra Recommendations to Fortify Application Defenses](https://petri.com/microsofts-entra-recommendations-application-defenses/): Microsoft has announced several new and upcoming recommendations for Entra ID customers. These recommendations enable organizations to improve the health... - [First Ring Daily: The Future of Windows on ARM](https://petri.com/first-ring-daily-the-future-of-windows-on-arm/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss what Paul learned from a recent briefing... - [Microsoft’s Unified Security Operations Platform Delivers Comprehensive End-to-End Protection](https://petri.com/microsofts-unified-security-operations-platform/): Microsoft has launched its new unified security operations platform in public preview for commercial customers. This platform combines essential security... - [New AI-Powered Planner App Starts Rolling Out to All Microsoft Teams Users](https://petri.com/new-planner-app-microsoft-teams/): Last month, Microsoft announced a public preview of the new Planner experience in Microsoft Teams. The company has started rolling... - [Prepare or Pay: Microsoft Sets Prices for Windows 10 Extended Security Updates](https://petri.com/windows-10-extended-security-updates-price/): Microsoft has unveiled the pricing details for Extended Security Updates (ESUs) as Windows 10 approaches its end of support in... - [How to Use Role-Based Access Control with Windows Admin Center](https://petri.com/windows-admin-center-rbac/): Windows Admin Center RBAC and how to control access. In this article, I'll explain what role-based access control (RBAC) is and how to configure it in Windows Admin Center. - [Microsoft Priva Adds New Tools to Bolster Privacy Management](https://petri.com/microsoft-priva-tools-privacy-management/): Microsoft has announced several new automated tools for its Priva platform. The new offerings are designed to help organizations efficiently... - [Hackers Exploit XZ Utils Vulnerability to Infiltrate Linux Systems - Everything You Need to Know](https://petri.com/xz-utils-vulnerability-linux-systems/): Microsoft has recently disclosed a new vulnerability in an open-source data compression utility present in almost all Linux distributions. The... - [Microsoft's Exchange Online 'High Volume Email' Service Expands Sending Limits](https://petri.com/exchange-online-high-volume-email/): Microsoft has announced the public preview of a new High Volume Email (HVE) service for Microsoft 365 customers. The new... - [Microsoft Copilot for Security Launches with Flexible Pricing Model](https://petri.com/microsoft-copilot-security-pricing-model/): Microsoft has announced the general availability of its new Copilot for Security solution. The new AI-powered service is designed to... - [Copilot for Microsoft 365 Gets New Productivity Features and Improvements](https://petri.com/what-s-new-copilot-for-microsoft-365/): Microsoft has recently published a roundup of all the new features and capabilities added to Copilot for Microsoft 365 in... - [Microsoft to Unbundle Teams from its Office 365 Commercial Plans Globally](https://petri.com/microsoft-unbundle-teams-office-365-globally/): Microsoft has decided to stop bundling its Microsoft Teams app with the Office productivity suite globally. This unbundling offers businesses... - [Microsoft Intune Boosts Security with Enhanced Policy Targeting and Dell BIOS Management](https://petri.com/microsoft-intune-update-march-2024/): Microsoft has unveiled all the new features it introduced in Microsoft Intune during the month of March 2024. The company... - [Microsoft Intune Enhances Onboarding Experience for Defender for Endpoint](https://petri.com/microsoft-intune-onboarding-defender-for-endpoint/): Microsoft is making some improvements to the way Intune deploys and manages Microsoft Defender for Endpoint on devices. This release... - [Microsoft Entra ID Now Supports External to Internal User Account Conversion](https://petri.com/microsoft-entra-id-convert-external-accounts-internal/): Microsoft has released a new “convert to internal user” feature in preview for its Microsoft Entra ID service. The latest... - [Microsoft Teams Gets New Discover Feed and Voice Isolation Features](https://petri.com/microsoft-teams-discover-feed-voice-isolation/): Microsoft has published a detailed roundup of the latest enhancements to its Teams collaboration service during the month of March... - [What Is Windows Admin Center? A Quick Overview](https://petri.com/what-is-windows-admin-center/): What is Windows Admin Center? In this article, Michael Reinders explains Microsoft's modern server management tool, it's capabilities, and why you should use it over legacy tools like MMC and Server Manager. - [How to Use Windows Admin Center](https://petri.com/how-to-use-windows-admin-center/): In this article, I will demonstrate how to use Windows Admin Center (WAC) to remotely manage your servers. If you... - [Microsoft Adds New Copilot and AI Features to Teams Meetings and Teams Rooms](https://petri.com/microsoft-ai-features-teams-meetings-teams-rooms/): Microsoft has announced a slew of new AI capabilities coming to Copilot in Teams to make hybrid meetings even better.... - [Microsoft Teams Desktop Client to Improve Chat Experience With Intelligent Message Translation Capabilities](https://petri.com/microsoft-teams-chats-intelligent-message-translation/): Microsoft is set to introduce intelligent message translation capabilities to enhance the chat experience in its Microsoft Teams desktop app.... - [Microsoft to Drop Support for 1024-bit Windows RSA Keys](https://petri.com/microsoft-1024-bit-windows-rsa-keys/): Microsoft has announced plans to discontinue Windows RSA keys shorter than 2048 bits. The company explains that this step aims... - [First Ring Daily: Stoic Surface](https://petri.com/first-ring-daily-stoic-surface/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott look back at yesterday's Surface and AI event... - [Latest Windows Server Updates Cause LSASS Memory Leaks and Reboots on Domain Controllers](https://petri.com/windows-server-lsass-memory-leaks-domain-controllers/): Microsoft has confirmed a new issue that is currently plaguing Windows Server machines. The company detailed on the Windows Health... - [New Surface Pro 10 and Surface Laptop 6 Get Intel AI NPU and 53% Performance Boost](https://petri.com/microsoft-surface-pro-10-surface-laptop-6-businesses/): Microsoft unveiled two new Surface devices during its business-focused digital event today: The Surface Pro 10 for Business and the... - [Copilot in Windows Adds New Copilot for Microsoft 365 Integration, Accessibility Features](https://petri.com/windows-copilot-microsoft-365-integration/): Microsoft highlights efforts to simplify user access to the new Copilot AI assistant on Windows devices. - [Windows 365 Gets New AI Features and Advanced Security Protections](https://petri.com/windows-365-ai-features-security-protections/): Microsoft is holding its “Advancing the New Era of Work” digital event and the company made some big announcements for... - [How to Enable Microsoft Copilot Effectively: A Quick Guide](https://petri.com/enable-microsoft-copilot/): In this article, I’ll outline everything you need to know to enable Microsoft Copilot in Microsoft 365. - [Microsoft Unveils New Billing Experience for Commercial Customers](https://petri.com/microsoft-billing-experience/): Microsoft has recently released a slew of updates aimed at enhancing the billing experience for its commercial customers. These updates... - [Microsoft Teams Gets New Features to Boost App Adoption and Engagement](https://petri.com/microsoft-teams-app-adoption-engagement/): Microsoft has announced several updates to enhance the adoption and engagement of apps in Microsoft Teams. The company highlighted that... - [What's New in SharePoint Server Subscription Edition Version 24H1](https://petri.com/sharepoint-server-subscription-edition-24-h1/): Microsoft has announced the release of SharePoint Server Subscription Edition (SE) version 24H1, marking a significant step forward in collaborative... - [Microsoft Office LTSC 2024 to Launch in Preview Next Month](https://petri.com/microsoft-office-ltsc-2024/): Microsoft has recently announced that Office 2024 LTSC will be available for commercial customers on Windows and macOS in April.... - [Microsoft Azure Joins AWS and Google in Scrapping Egress Fees](https://petri.com/microsoft-azure-egress-fees/): Microsoft has announced that business customers will no longer need to pay an egress fee to remove data from its... - [First Ring Daily: Another New Teams App](https://petri.com/first-ring-daily-another-new-teams-app/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's unified Teams client that just entered... - [Microsoft Brings Copilot for Microsoft 365 to Businesses of All Sizes](https://petri.com/copilot-for-microsoft-365-businesses/): Microsoft is expanding the availability of its Copilot for Microsoft 365 to more commercial customers. Additionally, Copilot Pro subscribers can... - [Microsoft Loop to Get B2B Guest Sharing Support for Enhanced Collaboration](https://petri.com/microsoft-loop-guest-sharing/): Microsoft is set to add support for business-to-business (B2B) guest sharing to its new Loop app. The new feature will... - [Microsoft Starts Testing Unified Teams Client for Personal and Work Accounts](https://petri.com/windows-11-unified-microsoft-teams-client/): Last month, Microsoft announced its plans to roll out a unified version of Microsoft Teams, catering to both personal and... - [Active Directory Backup vs Replication (And Why You Need to Be Clear on the Difference Now)](https://petri.com/backup-vs-replication/): Learn how the backup vs replication argument relates to Active Directory (AD) and protecting it. Michael Reinders outlines why you should understand the differences when dealing with Active Directory. - [Microsoft Copilot for Security to Launch on April 1 with New Capabilities](https://petri.com/microsoft-copilot-for-security-launch/): Microsoft announced this morning some important updates for its Copilot for Security solution. The new AI assistant that launched in... - [March 2024 Patch Tuesday Updates Fix Critical Hyper-V Vulnerabilities](https://petri.com/march-2024-patch-tuesday-updates/): Microsoft released yesterday the March 2024 Patch Tuesday updates for Windows 11 and Windows 10 devices. The latest update includes... - [Microsoft Commits to Supporting Classic Outlook for Windows Client Until 2029](https://petri.com/microsoft-classic-outlook-for-windows-2029/): Microsoft has recently shared more details about its plans for moving commercial customers to the new Outlook for Windows client.... - [SQL Server Essentials: What Is a Relational Database?](https://petri.com/what-is-a-relational-database/): SQL Server is a relational database. But what is a relational database exactly? Mike Otey, our resident SQL Server expert,... - [Russian State-Sponsored Hackers Stole Microsoft Source Code](https://petri.com/russian-hackers-microsoft-source-code/): Earlier this year, Microsoft disclosed a breach in its corporate email servers by Russian state-sponsored hackers. Now, the company revealed... - [First Ring Daily: Goodbye Windows Subsystem for Android](https://petri.com/goodbye-windows-subsystem-for-android/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to drop support for the... - [New Restricted SharePoint Search Feature Enhances Data Access Controls in Copilot for Microsoft 365](https://petri.com/restricted-sharepoint-search-copilot-for-microsoft-365/): Microsoft has announced a new Restricted SharePoint Search feature for Copilot for Microsoft 365 customers. The new setting will allow... - [Microsoft Launches Windows 365 Customer Lockbox for Enhanced Data Access Control](https://petri.com/windows-365-customer-lockbox/): Microsoft has launched Windows 365 Customer Lockbox for its commercial customers. This feature provides organizations with tools to control access... - [How Microsoft's Secure Future Initiative Leverages AI to Transform Software Development](https://petri.com/microsoft-secure-future-initiative-updates/): Last November, Microsoft introduced its Secure Future Initiative (SFI) to deal with cybersecurity threats. The company announced today the launch... - [Microsoft Defender for Endpoint Adds New Investigation and Response Capabilities](https://petri.com/microsoft-defender-for-endpoint-investigation-response/): Microsoft has introduced advanced investigation and response capabilities within its Defender for Endpoint service. The latest release brings support for... - [Lazarus Group Exploits Windows Zero-Day Flaw in Rootkit Attacks](https://petri.com/lazarus-windows-flaw-rootkit-attacks/): Microsoft has recently addressed a zero-day vulnerability within the Windows AppLocker driver. The security flaw has been exploited by the... - [Microsoft Loop Adds New Automation Capabilities to Streamline Workflows](https://petri.com/microsoft-loop-automation-rule/): Microsoft continues to improve its Loop app that launched in preview back in March 2023. The company has released a... - [How to Build Guest Clusters on Hyper Converged Infrastructure (HCI)](https://petri.com/build-guest-hci-cluster/): In this article, I explain how to build a guest HCI cluster and why traditional approaches don’t work. - [Microsoft Teams Gets New Copilot App and Other Big Updates](https://petri.com/microsoft-teams-copilot-updates/): Microsoft released 37 new features and capabilities for its Teams collaboration platform in February 2024. These updates include a new... - [First Ring Daily: The Moment Has Arrived](https://petri.com/first-ring-daily-the-moment-has-arrived/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the first big update for Windows 11... - [Microsoft OneDrive to Add Copilot AI Assistant to Enhance File Management](https://petri.com/microsoft-onedrive-copilot/): Microsoft is gearing up to integrate the AI-powered Copilot tool into its OneDrive cloud storage service. This new feature will... - [Windows 11 Moment 5 Update Brings Improvements for Copilot and Windows Autopatch](https://petri.com/windows-11-moment-5-update/): Microsoft has announced the release of a new feature update (which is codenamed “Moment 5”) for Windows 11. This release... - [Microsoft Extends Availability of Optional Updates for Windows 11 version 22H2](https://petri.com/windows-11-version-22h2-optional-updates/): Microsoft is backtracking on its plans to block non-security optional updates for Windows 11 version 22H2 beyond February 2024. The... - [Microsoft Releases New Conditional Access Policy to Require Reauthentications](https://petri.com/microsoft-conditional-access-policy-reauthentication/): Microsoft has announced a new reauthentication policy for its Microsoft Entra Conditional Access service. The new “sign-in frequency – every... - [GitHub Copilot Enterprise: AI-Powered Coding Companion Tailored for Large Organizations](https://petri.com/github-copilot-enterprise-available/): Microsoft-owned GitHub has announced the general availability of Copilot Enterprise. The new offering is tailored to enable large enterprises to... - [Microsoft Releases Internal Security Tool 'PyRIT' to Protect Generative AI Systems](https://petri.com/microsoft-security-pyrit-generative-ai-systems/): Last week, Microsoft introduced its Python Risk Identification Toolkit for generative AI (PyRIT) The new tool provides security teams and... - [Microsoft to Launch Unified Teams Client for Windows and macOS](https://petri.com/microsoft-unified-teams-client-windows-macos/): Microsoft is preparing to launch a new unified Teams client for Windows and macOS. The company has announced on the... - [What’s New in Microsoft Intune - February 2024](https://petri.com/microsoft-intune-february-2024/): Microsoft has published a list of all the new features added to its Microsoft Intune service during the month of... - [First Ring Daily: Surface Peaks](https://petri.com/first-ring-daily-surface-peaks/): As Microsoft is expected to refresh its Surface lineup with new AI features later this year, this episode of First... - [Microsoft's Entra ID License Utilization Portal: Simplifying License Management for Businesses](https://petri.com/microsoft-entra-id-license-utilization-portal/): Microsoft has launched a new Entra ID license utilization portal in public preview for commercial customers. The long-awaited feature is... - [Enhanced Task Management: Microsoft Teams to Get New AI-Powered Planner Experience](https://petri.com/microsoft-teams-planner-experience/): Microsoft is getting ready to introduce the new Planner experience within Microsoft Teams. The company will begin updating the existing... - [What Is Windows Server?](https://petri.com/what-is-windows-server/): What is Windows Server exactly and how much do you know about it? Why would you want to install it and use it in your environment? Read on to find out! - [Microsoft Starts Auto-Upgrading Eligible PCs to Windows 11 version 23H2](https://petri.com/microsoft-windows-11-version-23h2/): Microsoft has started pushing Windows 11 version 23H2 to users who are still running older versions of Windows 11. The... - [Microsoft Teams to Bolster Meeting Security with Updated Labels for External Participants](https://petri.com/microsoft-teams-meeting-updated-labels/): Microsoft is set to roll out updated participant labels to bolster security in Teams meetings. The new ‘unverified’ label will... - [SharePoint Premium Translation Generally Available for Commercial Customers](https://petri.com/sharepoint-premium-translation/): Microsoft has recently rolled out some important updates for its SharePoint Premium service. The company announced that SharePoint Translation is... - [Top 5 Features to Look for in On-Premises Veeam Storage](https://petri.com/top-features-on-premises-veeam-storage/): Learn the top five most important features to look for in an on-premises Veeam storage solution for your backups. - [Broadcom and Google Unveil New VMware License Portability Plan for Businesses](https://petri.com/broadcom-vmware-license-portability-plan/): Broadcom and Google have announced a new license portability plan that will allow enterprise customers to run VMware workloads on... - [What Is an Access Control List (ACL)?](https://petri.com/what-is-an-access-control-list-acl/): An access control list, or ACL, is a set of rules that determines the level of access a user or system has to a particular network or resource. Learn more about ACLs and how they are used in computer security. - [Microsoft and SAP Collaborate to Drive Entra ID Migration](https://petri.com/microsoft-sap-entra-id-migration/): Microsoft has announced a new strategic partnership with enterprise software giant SAP. The companies are currently working to develop a... - [First Ring Daily: Local AI, Cloud AI, and a Build of AI](https://petri.com/first-ring-daily-local-ai-cloud-ai-and-a-build-of-ai/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss how Microsoft’s Build 2024 conference will be... - [Microsoft to Discontinue Support for its Publisher App in 2026](https://petri.com/microsoft-kill-off-publisher/): Microsoft is pulling the plug on its Publisher desktop publishing application. The company will discontinue support for the tool on... - [Microsoft Warns About New Zero-Day Exchange Server Privilege Escalation Vulnerability](https://petri.com/microsoft-exchange-server-vulnerability/): Microsoft has released an advisory regarding a critical vulnerability in Exchange Server. The company disclosed this zero-day flaw in the... - [Microsoft Collaborates with OEMs to Update Windows Secure Boot Keys](https://petri.com/microsoft-windows-secure-boot-keys/): Microsoft has announced its plans to update Secure Boot on Windows Unified Extensible Firmware Interface (UEFI) PCs. The company is... - [Petri.com’s New Active Directory Outage and Disaster Recovery Survey](https://petri.com/ad-forest-outage-survey-2024/): Petri. com was recently asked by Cayosoft to conduct a survey amongst our audience regarding Active Directory (AD) downtime and... - [Microsoft Unveils Improved Controls for Windows Autopatch Management](https://petri.com/microsoft-unveils-improved-controls-for-windows-autopatch-management/): Microsoft has announced notable enhancements for its Windows Autopatch service. The biggest change in this release is the ability for... - [Microsoft's February 2024 Patch Tuesday Updates Fix Two Zero-Day Windows Flaws](https://petri.com/microsoft-february-2024-patch-tuesday-updates/): Microsoft released yesterday the February 2024 Patch Tuesday updates for Windows 11 and Windows 10. As usual, the company addressed... - [5 Reasons to Consolidate Active Directory Domains and Forests](https://petri.com/consolidate-active-directory-domains-forests/): In this article, we explain why it is necessary to consolidate Active Directory forests and domains to improve security and management. - [Microsoft and OpenAI Adopt AI-Driven Strategy to Counter Nation-State Cyber Threats](https://petri.com/microsoft-openai-cyber-attacks/): Microsoft’s latest Cyber Signals 2024 report reveals the alarming trend of nation-state threat actors harnessing generative AI for malicious purposes.... - [Streamline Application Deployment with Microsoft Intune Enterprise App Management](https://petri.com/intune-enterprise-app-management/): Intune Enterprise App Management is a service set to make the way businesses deploy software easier. And it is part of the Microsoft Intune Suite. Learn about how it works in this article. - [Cybercriminals Compromise Senior Executives' Azure Accounts - Everything You Need to Know](https://petri.com/cybercriminals-senior-executives-azure-accounts/): Cybersecurity researchers have revealed an ongoing campaign targeting Microsoft Azure corporate accounts. The malicious campaign is leading to the theft... - [Microsoft Teams Gets New Copilot Experience with Personalized Prompts](https://petri.com/microsoft-teams-copilot-experience/): Microsoft has started rolling out a new AI-powered Copilot experience in Microsoft Teams. The new app brings new features and... - [Microsoft to Fix Outlook Syncing Issues Caused by Broken Exchange ActiveSync Connections](https://petri.com/microsoft-outlook-exchange-activesync-connections/): Microsoft has acknowledged a new issue affecting select Outlook users, which prevents the desktop apps from connecting to email servers... - [What is Azure AD B2B?](https://petri.com/what-is-azure-ad-b2b/): Discover the benefits of using Azure AD B2B in your organization. Learn how it can improve collaboration and streamline access... - [Microsoft's New Outlook for Windows Adds Teams Chat Feature to Enhance Real-Time Collaboration](https://petri.com/microsoft-teams-chat-outlook-for-windows/): Microsoft has started rolling out an update that brings a new Teams chat integration into the new Outlook for Windows.... - [Microsoft Enters Talks with CISPE to Address Cloud Licensing Complaints](https://petri.com/microsoft-talks-cispe-cloud-licensing/): Microsoft has recently started talks with the Cloud Infrastructure Services Providers in Europe (CISPE) to address an ongoing antitrust case.... - [First Ring Daily: Copilot Gets Bigger](https://petri.com/first-ring-daily-copilot-gets-bigger/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft making Copilot on Windows open in... - [Microsoft's New PC Manager App Now Available to Let Users Monitor Their Computer's Health](https://petri.com/microsoft-pc-manager-app-available/): Microsoft’s new PC Manager app is now available for all users on Windows 10 and Windows 11 devices. The app... - [Enhanced Data Governance: Microsoft Purview Now Supports Scanning Fabric Items](https://petri.com/microsoft-purview-fabric-items/): Microsoft has recently added support for Fabric items to its Microsoft Purview service. The new feature allows IT admins to... - [What is Azure AD B2C?](https://petri.com/what-is-azure-ad-b2c/): Provide external users with seamless sign up and logins for your apps. Learn more about the features and benefits of Azure AD B2C in this article. - [Microsoft Entra Verified ID Gets Face Check Support for Enhanced Identity Verification](https://petri.com/microsoft-entra-verified-id-face-check/): Microsoft has introduced new Face Check support to its Entra Verified ID service. The feature allows organizations to verify a... - [Microsoft's Universal Print App Now Available for macOS Users](https://petri.com/microsofts-universal-print-macos/): Microsoft has released a new Universal Print app for macOS devices. The preview version of the app enables users to... - [Microsoft and AI: What Is the Copilot Semantic Index and How Does It Work?](https://petri.com/copilot-semantic-index/): Copilot Semantic Index uses vectorized indices to build a conceptual map of data by linking it together in meaningful ways, much like the human brain does. Find out how it works in this article! - [Windows Copilot Gets New Integration with Copilot for Microsoft 365](https://petri.com/windows-copilot-copilot-for-microsoft-365/): Microsoft announced yesterday a new Copilot for Microsoft 365 integration within the Copilot for Windows sidebar experience. The new feature... - [Microsoft to Add Linux-Like Sudo Command to Windows Server 2025](https://petri.com/windows-server-2025-sudo-command/): Microsoft appears to be working on adding sudo command support to Windows Server 2025. The new feature has been spotted... - [Azure Virtual Desktop for Azure Stack HCI Now Generally Available](https://petri.com/azure-virtual-desktop-for-azure-stack-hci-generally-available/): Microsoft has announced the general availability of Azure Virtual Desktop for Azure Stack HCI. The new service enables commercial customers... - [First Ring Daily: Windows New Setup](https://petri.com/windows-new-setup/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the new setup process coming to Windows... - [Microsoft Intune Suite Gets Enterprise App Management and Advanced Analytics](https://petri.com/microsoft-intune-suite-enterprise-app-management/): Microsoft has introduced three new solutions to its Intune Suite: Enterprise Application Management, Advanced Analytics, and Microsoft Cloud PKI. These... - [Microsoft Adds New Expedite Readiness Report to Windows Update for Business Deployment Service](https://petri.com/wufb-deployment-service-expedite-readiness/): Microsoft has released a new device readiness test feature for its Windows Update for Business deployment service. This release allows... - [Microsoft Teams Gets New Immersive Spaces and Collaborative Notes Improvements](https://petri.com/microsoft-teams-updates-january-2024/): Microsoft has published a monthly roundup of all the new features and capabilities added to its Teams collaboration service in... - [How to Minimize Your Active Directory Attack Surface](https://petri.com/active-directory-attack-surface/): When newly installed, Active Directory’s (AD) default configuration is designed to be easy to use. As a result, attackers can... - [Microsoft Outlook to Introduce New Microsoft 365 Groups Experience](https://petri.com/microsoft-365-groups-outlook/): Microsoft plans to release a new update that will allow users to switch from old Microsoft 365 Groups to a... - [Microsoft Entra ID Gets Advanced Customization Options for Certificate-Based Authentication](https://petri.com/microsoft-entra-id-certificate-based-authentication-customization/): Microsoft has released a new update for its Entra ID Conditional Access service that provides more granular controls over certificate-based... - [Microsoft to Enable Automatic Conditional Access Policies for Entra ID Customers](https://petri.com/microsoft-enable-conditional-access-policies/): Microsoft announced the automatic rollout of new Conditional Access (CA) policies for select Microsoft 365 licenses in November 2023. As... - [Top 10 Events to Audit in Active Directory to Uncover Security Risks](https://petri.com/top-10-events-to-audit-in-active-directory/): In this article, I will show you the top 10 events to audit in Active Directory when laying out your plan. - [Microsoft Teases New Features with First Windows Server 2025 Preview Build](https://petri.com/microsoft-windows-server-2025/): Microsoft has recently announced the release of Windows Server Insider Preview Build 26040. The company also revealed the official branding... - [Microsoft Provides More Details About 'Midnight Blizzard' Attacks](https://petri.com/microsoft-midnight-blizzard-attacks/): Microsoft has recently published an initial analysis of the cyber-attack that was carried out by Russian state-sponsored hackers in late... - [First Ring Daily: More Layoffs at Microsoft and Big iOS Changes in the EU](https://petri.com/first-ring-daily-more-layoffs-at-microsoft-and-big-ios-changes-in-the-eu/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott Microsoft laying off 1,900 employees in its Gaming... - [Microsoft Intune's Latest Update Streamlines Device Management](https://petri.com/microsoft-intune-update-device-management/): Microsoft has published a roundup of all the enhancements it made to its Microsoft Intune solution during the month of... - [Microsoft Confirms Windows 10 Optional Update Causes Sysprep Validation Errors](https://petri.com/windows-10-update-sysprep-validation-errors/): Microsoft has acknowledged a new issue in Windows 10 version 22H2, affecting users who installed the optional patch (KB5032278) released... - [Microsoft Teams Adds Support for 3D Immersive Meetings to Enhance Collaboration](https://petri.com/microsoft-teams-3d-immersive-meetings/): Microsoft has announced the general availability of Mesh experiences in Microsoft Teams. The new feature has been available in public... - [Microsoft Now Lets Users Preview Links in the Word Web App](https://petri.com/microsoft-word-for-the-web-preview-links/): Microsoft has started rolling out a new feature in the Word web app that lets users preview linked pages, bookmarks,... - [Microsoft's Migration Manager Update Enhances Data Migration for Businesses](https://petri.com/microsofts-migration-manager-update/): Microsoft announced yesterday a slew of updates to enhance its Migration Manager solution. The new features focus on bolstering security... - [Microsoft Teams Gets New Default Gallery Experience, Other Meeting Features](https://petri.com/microsoft-teams-new-default-gallery-experience/): Microsoft Teams continues to set the pace with a slew of new features and capabilities aimed at improving the meetings... - [Microsoft Defender Vulnerability Management Gets New Tool to Target Vulnerable Software Components](https://petri.com/microsoft-defender-vulnerability-management-update/): Microsoft has released a new dedicated inventory in public preview for its Defender Vulnerability Management solution. The new Vulnerable Components... - [Microsoft Teams to Let Meeting Participants Create Collaborative Notes](https://petri.com/microsoft-teams-meeting-collaborative-notes/): Microsoft is set to improve the collaborative notes experience within its Microsoft Teams desktop client. The new feature will allow... - [Microsoft’s Corporate Email Accounts Breached in Russian Espionage Attacks - What You Need to Know](https://petri.com/microsofts-corporate-emails-russian-attacks/): Last week, Microsoft disclosed that Russian state-sponsored hackers exploited a weak password to infiltrate its corporate network. The threat actor... - [Microsoft Defender for Cloud Gets New Agentless Malware Scanning Capabilities for VMs](https://petri.com/microsoft-defender-for-cloud-agentless-malware-scanning/): Microsoft Defender for Cloud has introduced support for agentless malware scanning for servers hosting virtual machines. The new feature is... - [First Ring Daily: Over 700 Trackers in the New Outlook for Windows](https://petri.com/first-ring-daily-over-700-trackers-in-the-new-outlook-for-windows/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott share more than 700 reasons you probably won’t... - [CISA: Androxgh0st Malware Poses Serious Threat to Microsoft 365 and AWS Credentials](https://petri.com/androxgh0st-malware-microsoft-365-aws/): The US Cybersecurity and Infrastructure Security Agency (CISA) and FBI have issued a warning regarding the recently discovered Androxgh0st malware.... - [Latest Windows Server 2022 Update Breaks Google Chrome and Apps for Some Users](https://petri.com/windows-server-2022-update-breaks-google-chrome/): Microsoft’s latest update for Windows Server 2022 has inadvertently caused problems for users trying to browse the web. The KB5034129... - [Microsoft Introduces New Copilot Integration to Enhance Viva Engage and Power BI](https://petri.com/microsoft-copilot-for-viva-engage/): Microsoft has announced the public preview of Copilot in Viva Engage and Power BI. The Copilot in Viva Engage experience... - [Microsoft Teams to Let IT Admins Block Users From Joining Externally Hosted Meetings](https://petri.com/microsoft-teams-externally-hosted-meetings/): Microsoft Teams is set to receive an update that will allow IT administrators to block select users from joining externally... - [Enhanced Cloud Protection: Microsoft's Defender for Cloud Gets New Integration with Defender XDR](https://petri.com/microsofts-defender-for-cloud-integration-defender-xdr/): Microsoft has announced the general availability of Defender for Cloud’s integration with Microsoft Defender XDR. This release offers administrators direct... - [New Phemedrone Malware Exploits Windows Defender SmartScreen Flaw to Steal Sensitive Data](https://petri.com/windows-defender-smartscreen-phemedrone-malware/): Cybersecurity researchers have disclosed a serious threat to Windows users, as hackers exploit a Windows Defender SmartScreen bypass vulnerability to... - [Copilot for Microsoft 365 Now Available for Small Businesses and Individuals - Everything You Need to Know](https://petri.com/copilot-for-microsoft-365-small-businesses/): Microsoft announced yesterday that Copilot for Microsoft 365 is now available for small and medium-size (SMBs). Indeed, the company is... - [Critical Microsoft SharePoint Flaw Exploited: CISA Issues Warning for Organizations to Act Swiftly](https://petri.com/cisa-microsoft-sharepoint-vulnerability/): The Cybersecurity and Infrastructure Security Agency (CISA) has raised concerns about the active exploitation of a critical vulnerability in Microsoft... - [Microsoft's New Dev Home App Now Available on Windows 10 PCs](https://petri.com/microsoft-dev-home-windows-10/): Microsoft has recently rolled out an update for its Dev Home app that launched in preview on Windows 11 last... - [First Ring Daily: Windows or AI - Who Wins?](https://petri.com/first-ring-daily-windows-or-ai-who-wins/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the future of Windows 10 and what... - [Microsoft Rolls Out New Features for Windows 365 Boot and Switch](https://petri.com/windows-365-boot-switch-features/): Microsoft has released several improvements for Windows 365 Boot and Windows 365 Switch, which are currently in public preview for... - [Fluid Framework 2.0 Launches in Open Beta for Building Collaborative Apps](https://petri.com/fluid-framework-2-0-open-beta/): Microsoft has announced that Fluid Framework 2. 0 is now available as an open beta for developers. This latest version... - [Microsoft Defender for Endpoint Gets New Dynamic Tagging Feature to Simplify Device Management](https://petri.com/microsoft-defender-for-endpoint-dynamic-tagging/): Microsoft has announced that support for dynamic rules for tagging devices is now generally available for its Microsoft Defender for... - [What Is IAM? A Guide to Identity and Access Management](https://petri.com/what-is-iam/): Find out more about Identity and Access Management (IAM) solutions, which offer enterprise-wide controls and visibility over identity management functions. - [Microsoft to Retire its Readiness Toolkit for Office Add-ins and VBA](https://petri.com/microsoft-readiness-toolkit-for-office-add-ins-and-vba/): Microsoft is getting ready to retire its Readiness Toolkit for Office add-ins and VBA. The toolkit will reach end of... - [Microsoft's January 2024 Patch Tuesday Updates Fix 49 Windows Vulnerabilities](https://petri.com/microsofts-january-2024-patch-tuesday-updates/): Microsoft has released yesterday the January 2024 Patch Tuesday updates for Windows 11 and Windows 10 devices. This month’s Patch... - [Microsoft Teams to Let Free Users Join Work Meetings without a Web Browser](https://petri.com/microsoft-teams-free-work-meetings/): Microsoft Teams is getting a new update that will allow users with personal Microsoft accounts (MSA) to join work meetings... - [Microsoft to Deprecate Search-Mailbox Cmdlet in Exchange Online – What You Need to Know](https://petri.com/microsoft-retire-search-mailbox-cmdlet-exchange-online/): Microsoft is set to retire the Microsoft 365 Purview eDiscovery standard search-mailbox cmdlet. The company has recently announced in a... - [What’s New in Azure Stack HCI 23H2](https://petri.com/azure-stack-hci-23h2/): In this article, I will give you an overview of Azure Stack HCI 23H2, which is currently in preview. With... - [Microsoft Teams Now Lets Users Forward Chat Messages](https://petri.com/microsoft-teams-forward-chat-messages-2/): Microsoft Teams has started rolling out a new update that allows users to forward messages from one chat to another... - [Streamlining Cloud Migration: Microsoft's AppCAT Tool Simplifies Migration from .NET Apps to Azure Cloud](https://petri.com/microsoft-appcat-azure-cloud/): Microsoft has announced the release of the Azure Migrate application and code assessment tool (AppCAT). The new tool is aimed... - [First Ring Daily: It's 2024](https://petri.com/first-ring-daily-its-2024/): In this first 2024 episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft changing an app install... - [Windows Server Backup: A Step-by-Step Guide](https://petri.com/windows-server-backup/): How familiar are you with Windows Server Backup? You may be surprised by its value in your organization. I’ll explain... - [Microsoft Teams Adds Improved Search Experience, Other New Features](https://petri.com/microsoft-teams-improved-search-experience/): Microsoft has published its roundup of all the enhancements made to Teams during the month of December 2023. The company... - [Microsoft Copilot Key is Coming to the Keyboard of New Windows 11 PCs](https://petri.com/microsoft-copilot-key-windows-11/): Microsoft is getting ready to add a new Copilot key to the Windows keyboard. The company announced today that the... - [Microsoft Outlook Now Lets Users Preserve Declined Meetings on the Calendar](https://petri.com/microsoft-outlook-preserve-declined-meetings/): Microsoft has recently introduced a new calendar setting that allows users to view declined meetings within Outlook calendars. These declined... - [GitHub Launches Copilot Chat - Your AI Programming Assistant for Enhanced Developer Productivity](https://petri.com/github-copilot-chat-generally-available/): Microsoft-owned GitHub has announced that its new Copilot Chat feature is now generally available for all users. The AI-powered programming... - [Microsoft Disables MSIX Protocol Handler Amid Rising Malware Threats](https://petri.com/microsoft-disables-msix-protocol-handler-amid-rising-malware-threats/): Microsoft has disabled the MSIX ms-appinstaller protocol handler by default due to active exploitation by financially motivated threat groups. The... - [First Ring Daily: The AI Battle of 2024](https://petri.com/first-ring-daily-the-ai-battle-of-2024/): In the last episode of First Ring Daily for this year, Brad Sams and Paul Thurrott discuss their issues with... - [Microsoft Details Windows Single Sign-on Changes to Comply with EU’s Digital Markets Act](https://petri.com/microsoft-details-windows-single-sign-on-changes-to-comply-with-eus-digital-markets-act/): Microsoft is planning to add a new single sign-on (SSO) option to Windows 10 and Windows 11 in January 2024.... - [Microsoft to Introduce New Secure Printing Experience on Windows 11](https://petri.com/microsoft-secure-printing-experience-windows/): Microsoft is planning to introduce a new Windows Protected Print Mode in Windows 11. The new feature eliminates the need... - [How Microsoft Defender for Office 365 Protects Organizations Against QR Code Phishing Attacks](https://petri.com/microsoft-defender-for-office-365-qr-code-phishing/): Microsoft has recently shared details about how Defender for Office 365 is effectively countering the rise of QR code phishing... - [First Ring Daily: Time to LLM](https://petri.com/first-ring-daily-time-to-llm/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott dive deep into Large Language Models (LLMs), getting... - [Microsoft Teams Channels to Get New Discover Feed](https://petri.com/microsoft-teams-channels-discover-feed/): Microsoft Teams is about to add a new Discover Feed for channels, which will roll out to desktop and web... - [Microsoft's Azure Monitor Enhances Container Insights with Multi-Line Logging](https://petri.com/azure-monitor-container-insights-multi-line-logging/): Microsoft has announced that Multi-Line Logging support is generally available in Azure Monitor – Container Insights. The new feature enables... - [Microsoft Rolls Out Fix for Wi-Fi Connectivity Issues on Windows 11 PCs](https://petri.com/microsoft-fix-wi-fi-connectivity-windows-11/): Microsoft has acknowledged an issue with the most recent Windows 11 updates, which cause Wi-Fi connectivity issues on public, enterprise,... - [Microsoft Adds Two-Way Trust Relationships Support to Entra Domain Services](https://petri.com/microsoft-entra-domain-services-two-way-trust-relationships/): Microsoft has added support for two-way trust relationships in its Entra Domain Services solution. The new feature provides organizations with... - [Critical Perforce Server Vulnerability Opens Doors for Full System Control](https://petri.com/microsoft-critical-perforce-server-vulnerability/): Microsoft has recently disclosed four vulnerabilities in the Perforce Helix Core Server. These security flaws could enable threat actors to... - [Microsoft Teams Channels Now Let Users Create Loop Components](https://petri.com/microsoft-teams-loop-components-channels/): The new Microsoft Teams client that launched earlier this year now supports Loop components within channels. The feature allows users... - [Microsoft Cracks Down on Websites Generating Millions in Fraudulent Accounts](https://petri.com/microsoft-websites-fraudulent-accounts/): Last week, Microsoft disrupted a Vietnam-based threat group called Storm-1152. Microsoft’s Digital Crimes Unit (DCU) gained control of the domains... - [Microsoft Releases New Printer Metadata Troubleshooter Tool to Fix Printer Renaming Issues](https://petri.com/microsoft-printer-metadata-troubleshooter-tool/): Microsoft recently acknowledged an issue where the HP Smart App was being installed, and printers were getting renamed on Windows... - [Microsoft Details FIDO2 Security and Certificate-Based Authentication Updates](https://petri.com/microsoft-fido2-security-certificate-based-authentication/): Microsoft has detailed its efforts to enable phishing-resistant authentication methods for organizations. The company is implementing several security features, including... - [Microsoft Teams to Retire Legacy Chat Infrastructure in March 2024](https://petri.com/microsoft-teams-retire-legacy-chat-infrastructure/): Microsoft has decided to discontinue support for the legacy chat messaging infrastructure in Microsoft Teams. This change will go into... - [NTFS Permissions: A Comprehensive Guide](https://petri.com/ntfs-permissions/): Windows allows users to assign permissions to files and folders, for added security and to control which users can perform... - [Microsoft Entra Permissions Management Gets New Capabilities and APIs](https://petri.com/microsoft-entra-permissions-management-features/): Microsoft has announced several new features for its Entra Permissions Management service. The cloud infrastructure entitlement management (CIEM) tool enables... - [First Ring Daily: Intel's New Core Ultra CPUs and AI PCs](https://petri.com/first-ring-daily-intels-new-core-ultra-cpus-and-ai-pcs/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Intel showing off its new "Meteor Lake"... - [Microsoft Teams Enhances File Management with New OneDrive App](https://petri.com/microsoft-teams-new-onedrive-app/): Microsoft has started rolling out a new OneDrive app to replace the existing Files app in the new Microsoft Teams... - [Strategic IT Planning in Complex Organizations](https://petri.com/strategic-it-planning-in-complex-organizations/): In the ever-changing world of IT, aligning strategic objectives with evolving user needs and business goals is a formidable challenge,... - [What's New in Microsoft Entra Certificate-Based Authentication](https://petri.com/microsoft-entra-certificate-based-authentication-updates/): Microsoft has detailed new features and capabilities added to its Entra certificate-based authentication (CBA) since its launch in October 2023.... - [Cybercriminals Exploit OAuth Apps for BEC and Phishing Attacks](https://petri.com/oauth-apps-bec-phishing-attacks/): Microsoft has issued a warning about cybercriminals exploiting OAuth for automated financial cyberattacks. The Threat Intelligence team has identified that... - [Here's How Run Command Simplifies Management Operations on Azure Arc-Enabled Servers](https://petri.com/run-command-azure-arc-enabled-servers/): Microsoft has introduced Run Command support in public preview for Azure Arc-enabled servers. This new feature enables administrators to remotely... - [Microsoft Leads the Way in Responsible AI Integration and ESG Compliance](https://petri.com/microsoft-responsible-ai-esg-compliance/): Chester Avey dissects how AI can apply to all aspects of ESG compliance and how companies like Microsoft are shining examples of how to integrate responsible AI and do it methodically. - [Microsoft Releases December 2023 Patch Tuesday Updates for Windows 11 and 10](https://petri.com/december-2023-patch-tuesday-updates/): Microsoft released its monthly Patch Tuesday updates for Windows 11 and Windows 10 yesterday. The company rolled out 33 new... - [Enhancing Cloud Security: Microsoft Details Best Practices to Thwart Identity Compromise](https://petri.com/microsoft-best-practices-identity-compromise/): Microsoft has released a comprehensive guide to assist IT administrators in promptly and effectively responding to security breaches within their... - [Log4j Saga Continues: Lazarus Hackers Exploit 2-Year-Old Flaw to Deploy New RAT Malware](https://petri.com/lazarus-log4j-flaw-rat-malware/): Security researchers have disclosed that hackers are persistently exploiting the Log4j vulnerability to infiltrate organizations globally. The infamous Lazarus hacking... - [[Updated] New Archive Channels Feature Coming to Microsoft Teams](https://petri.com/microsoft-teams-archive-channels/): Update – 12 Dec 2023 (1:17 AM PT): Microsoft has updated the Microsoft 365 Admin Center message to communicate that the... - [Microsoft Entra ID Can Now Record Timestamp for Last Successful User Sign-ins](https://petri.com/microsoft-entra-id-last-successful-user-sign-ins/): Microsoft has announced that Entra ID customers can now track the last successful sign-in activity for user accounts. This new... - [New Outlook for Windows Now Lets Users Dictate Emails](https://petri.com/new-outlook-for-windows-voice-dictation/): Microsoft has started rolling out voice dictation capabilities to new the Outlook for Windows and Outlook on the web. The... - [First Ring Daily: The Windows 12 AI Vision](https://petri.com/first-ring-daily-the-windows-12-ai-vision/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss what to expect from the next Windows... - [Microsoft Unveils New Features for Windows 365 Cloud PCs](https://petri.com/microsoft-features-windows-365/): Microsoft is testing updates for its Windows 365 Cloud PC service, which are available for Insiders in the Dev Channel.... - [Microsoft 365 App Now Lets Users Categorize Files with Tags](https://petri.com/microsoft-365-app-categorize-files-tags/): Microsoft has shared a roundup of updates made to its Microsoft 365 app that launched in November 2022. The app... - [LogoFAIL Attack Exploits UEFI Logos, Posing Risks to Enterprise and Consumer Devices](https://petri.com/logofail-attack-consumer-enterprise-devices/): Security researchers have disclosed a new firmware vulnerability named LogoFAIL, which is capable of infiltrating a wide array of Windows... - [New Microsoft Teams Client Now Generally Available for Virtual Desktop Infrastructure](https://petri.com/new-microsoft-teams-virtual-desktop-infrastructure/): Microsoft has announced that the new version of its Teams app is now generally available for virtual desktop infrastructure (VDI)... - [Microsoft to Fix Windows Bug that Renames Printers to HP LaserJet](https://petri.com/microsoft-windows-bug-printers-hp-laserjet/): Microsoft has acknowledged a new issue plaguing Windows PCs, where the HP Smart App is being automatically installed without user... - [Do I Need Antivirus on Azure Stack HCI?](https://petri.com/azure-stack-hci-antivirus/): As Azure Stack HCI becomes more common in datacenters and at the network edge, I would like to highlight some frequently asked questions about software and Azure Stack HCI antivirus. - [Microsoft Announces Paid Extended Security Updates for Windows 10: What You Need to Know](https://petri.com/windows-10-extended-security-updates/): Microsoft announced today that it will offer Windows 10 Extended Security Updates (ESUs) to both consumers and organizations. The company... - [Set-ExecutionPolicy – Mastering PowerShell Execution Policy](https://petri.com/set-executionpolicy/): Learn how to manage PowerShell security with the Set-ExecutionPolicy cmdlet. Bill Kindle guides you through execution policies and how to set them. - [Russian Hackers Exploit Outlook Flaw to Breach Exchange Accounts](https://petri.com/russian-hackers-outlook-flaw-exchange-accounts/): Microsoft has warned customers that a Russian state-sponsored hacking group (dubbed Forest Blizzard (STRONTIUM)) is actively exploiting an Outlook flaw... - [New Outlook for Windows to Let Users Save Files Where They Want](https://petri.com/new-outlook-for-windows-local-folder-attachments/): Microsoft will soon introduce a new feature in the new Outlook for Windows client, which will allow users to choose... - [Microsoft Copilot Hits General Availability with Commercial Data Protection](https://petri.com/microsoft-copilot-generally-available/): Microsoft Copilot, the AI-powered chat tool that launched in preview earlier this year, is now generally available for both consumers... - [First Ring Daily: Evernote's Death Spiral and Amazon's New Enterprise-Focused Q Assistant](https://petri.com/first-ring-daily-evernotes-death-spiral-and-amazons-new-enterprise-focused-q-assistant/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Evernote significantly restricting its feature set for... - [Microsoft Releases New Windows 10 Optional Update With AI-Powered Copilot](https://petri.com/windows-10-optional-update-copilot/): Microsoft rolled out a new optional update (KB5032278) for Windows 10 version 22H2 yesterday. The major highlight of this release... - [Microsoft's Outlook on the Web to Drop Support for Activity-Based Authentication Timeout](https://petri.com/outlook-on-the-web-activity-based-authentication-timeout/): Microsoft is discontinuing support for activity-based authentication timeout in Outlook on the Web. Starting in January 2024, the company will... - [Microsoft Unveils Azure Expert Assessment: Your Personalized Path to Seamless Cloud Adoption](https://petri.com/microsoft-azure-expert-assessment/): Microsoft has unveiled Azure Expert Assessment, a free one-to-one service enabling enterprises to strategize their cloud adoption journey collaboratively with... - [Microsoft Delays Final Exchange Server 2019 Cumulative Updates Until 2024](https://petri.com/exchange-server-2019-final-cumulative-updates-2024/): Microsoft has unveiled plans to postpone the rollout of new cumulative updates (CUs) for Exchange Server 2019, extending the release... - [Microsoft Expands Enhanced User Analytics Support to Teams, Outlook, and OneDrive](https://petri.com/microsoft-enhanced-user-analytics-teams-outlook/): Microsoft is expanding its enhanced user analytics capabilities to support popular Microsoft 365 apps such as Outlook, Teams, and OneDrive.... - [Microsoft Sunsets Defender Application Guard for Office: Here's What You Need to Know](https://petri.com/microsoft-defender-application-guard-for-office/): Microsoft has announced that it’s deprecating Defender Application Guard for Office this month. The company has quietly updated its support... - [Microsoft's New SharePoint Embedded Service Launches to Build Custom Business Apps](https://petri.com/microsoft-sharepoint-embedded/): Microsoft announced SharePoint Embedded at the European SharePoint Conference in Amsterdam today. The new offering empowers businesses to craft tailor-made... - [Microsoft Defender for Cloud Simplifies Onboarding with New Terraform Module](https://petri.com/microsoft-defender-for-cloud-terraform-module/): Microsoft has introduced a new Terraform module aimed at simplifying the onboarding process for Microsoft Defender for Cloud (MDC). This... - [Upgrade to Windows 11 – The Road Ahead](https://petri.com/upgrade-to-windows-11/): In this article, you’ll learn some strategies to upgrade to Windows 11. Including learning about the planning and readiness phase.... - [Microsoft Teams Updates App Gets New Collaboration Features, Onboarding Experience](https://petri.com/microsoft-teams-updates-app-collaboration-features/): Microsoft has released several new features and improvements for the Updates app in Microsoft Teams. This app provides a centralized... - [Microsoft Loop Now Lets Users Export Tables to Excel Spreadsheets](https://petri.com/microsoft-loop-export-tables-excel/): Microsoft has released a new update for its Loop app, allowing users to export Loop tables directly to Excel spreadsheets.... - [First Ring Daily Thanksgiving Edition: Full of AI](https://petri.com/first-ring-daily-thanksgiving-edition-full-of-ai/): In this special Thanksgiving edition of First Ring Daily, Brad Sams and Paul Thurrott discuss everything that happened at OpenAI... - [Here's How Researchers Bypassed Windows Hello Fingerprint Authentication on Dell, Lenovo, and Surface Laptops](https://petri.com/windows-hello-fingerprint-authentication-bypass/): Cybersecurity researchers from Blackwing HQ have managed to bypass Windows Hello fingerprint authentication on three different laptops from Dell, Lenovo,... - [New Microsoft Defender Bounty Program Offers up to 20K Rewards](https://petri.com/microsoft-defender-bounty-program/): Microsoft announced yesterday the launch of its new Defender Bounty Program. The new program is aimed at enticing security researchers... - [Microsoft Defender XDR Now Lets IT Admins Get Email Notifications for Response Actions](https://petri.com/microsoft-defender-xdr-email-notifications-actions/): Microsoft has introduced email notifications support for its Microsoft Defender XDR service. The feature allows IT admins to configure the... - [Making Microsoft Azure Penetration Testing Work to Combat Threats](https://petri.com/microsoft-azure-penetration-testing/): This short guide explains how Microsoft Azure penetration testing solutions can work to enhance a native public cloud platform within... - [Microsoft Releases Fix for Office 365 'Something Went Wrong' Sign in Errors](https://petri.com/microsoft-fix-office-365-sign-in-errors/): Microsoft has released a fix for ‘Something Went Wrong ’ errors plaguing users attempting to sign into Office 365 desktop... - [Microsoft Defender for APIs is Now Generally Available](https://petri.com/microsoft-defender-for-apis-generally-available/): Microsoft has announced the general availability of its Defender for APIs security solution. This new offering has been in preview... - [[Updated] Microsoft's Copilot Assistant is Coming to Windows 10 PCs](https://petri.com/microsoft-copilot-windows-10/): Update November 21, 2023 – 9:10 AM PT: Microsoft has started rolling out the new Copilot AI assistant to Windows... - [Windows Admin Center 2311 Public Preview: A Deep Dive into Azure Hybrid Services and Tool Advancements](https://petri.com/windows-admin-center-version-2311/): Microsoft has announced that Windows Admin Center version 2311 is available in public preview for commercial customers. The latest update... - [Microsoft's AI-Infused SharePoint Premium Solution Redefines Content Management](https://petri.com/microsoft-sharepoint-premium-solution/): Microsoft has announced SharePoint Premium, a new AI-powered solution designed to transform content management for Microsoft 365 customers. SharePoint Premium... - [SMB Over QUIC Integration in Windows Server 2025: A Leap for Datacenter Connectivity](https://petri.com/smb-over-quic-windows-server-2025-editions/): Microsoft is planning to add the Server Message Block (SMB) over QUIC technology to all editions of Windows Server 2025.... - [Windows Autopatch Adds New Driver and Firmware Controls, Simplifies Update Management](https://petri.com/windows-autopatch-driver-firmware-controls/): Microsoft held its Ignite 2023 conference in Seattle this week, and the company unveiled some big updates for Windows Autopatch.... - [New Microsoft Planner Experience to Launch with Copilot Integration in 2024](https://petri.com/new-microsoft-planner-experience-2024/): At the annual Microsoft Ignite conference, Microsoft announced that it’s bringing together some existing task management and planning tools such... - [GET-IT: Submit Your Questions for Microsoft Teams Product Manager Anupam Pattnaik](https://petri.com/microsoft-teams-ama/): As usual, we are looking forward to our annual Microsoft Teams free 1-day virtual conference, this year coming up November... - [Microsoft's November 2023 Patch Tuesday Updates Fix 63 Windows Flaws](https://petri.com/november-2023-patch-tuesday-updates/): Microsoft released the November 2023 Patch Tuesday Updates for all supported versions of Windows 11 and Windows 10. This month,... - [Ignite 2023: Microsoft Teams Gets Voice Isolation, Immersive Experiences, Other New Features](https://petri.com/microsoft-teams-voice-isolation/): Microsoft has announced a bunch of new productivity and collaboration features coming to Microsoft Teams at Ignite 2023. The company... - [Ignite 2023: Microsoft Unveils Copilot Studio, New Features for Copilot for Microsoft 365](https://petri.com/microsoft-copilot-studio/): Microsoft announced at its Ignite 2023 conference today Microsoft Copilot Studio, a low-code tool that allows users to customize Copilot... - [Ignite 2023: Microsoft Loop Now Generally Available with New Capabilities and Improvements](https://petri.com/microsoft-loop-generally-available/): Microsoft announced this morning the general availability of its Microsoft Loop app for commercial customers (Microsoft 365 Business Standard, Business... - [Ignite 2023: Windows 365 Gets New AI Features and GPU Support](https://petri.com/microsoft-updates-windows-365-azure-virtual-desktop/): As Microsoft is kicking off its Ignite 2023 conference this morning, the company detailed several updates coming to Windows 365... - [Ignite 2023: Microsoft 365 Universal Print Gets macOS Support, Security Features](https://petri.com/microsoft-365-universal-print-macos-support/): Microsoft announced some important updates for the Universal Print service at its Ignite 2023 conference today. The cloud-based print service... - [Ignite 2023: Microsoft Introduces New Unified Security Operations Platform, Security Copilot Features](https://petri.com/microsoft-unified-security-operations-platform/): It’s been a couple of months since Microsoft introduced Security Copilot, an AI-powered assistant that’s designed to help cybersecurity professionals... - [Get-ADComputer: The PowerShell Command for Managing Active Directory Computers](https://petri.com/get-adcomputer/): The Get-ADComputer PowerShell cmdlet is a powerful tool for managing AD computers. Learn how it can be used to retrieve information about computer objects. - [First Ring Daily: Copilot on Windows 10?](https://petri.com/first-ring-daily-copilot-on-windows-10/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss a recent report claiming Microsoft’s Copilot assistant... - [New Microsoft Search User Analytics Reports Now Cover Teams, Outlook, and Office](https://petri.com/microsoft-search-user-analytics-reports/): Microsoft has announced some updates for the Search Analytics reports in the Search & Intelligence Admin Center. The user analytics... - [Microsoft to Offer Three More Years of Windows Server 2012 Extended Security Updates](https://petri.com/windows-server-2012-extended-security-updates/): Microsoft has announced that it would provide three additional years of Windows Server 2012 Extended Security Updates (ESUs). This move... - [How to Create a Dockerfile Step by Step](https://petri.com/dockerfile/): Learn how to use a Dockerfile to create a Docker image with a specific configuration in this quick and easy step-by-step tutorial. - [Microsoft Intune Gets New Feature to Streamline Windows 11 Upgrade Experience](https://petri.com/microsoft-intune-windows-11-upgrade/): Microsoft has introduced a new feature in Intune and the Windows Update for Business deployment service to streamline the Windows... - [GitHub Unveils Copilot Enterprise to Let Organizations Customize Codebase](https://petri.com/github-copilot-enterprise-customize-codebase/): Microsoft’s owned GitHub has announced the general availability plans for GitHub Copilot Chat. The company has also unveiled previews of... - [New Outlook for Windows to Get Copilot Integration, Offline Support, Other New Features](https://petri.com/new-outlook-for-windows-copilot-offline/): Earlier this year, Microsoft launched its new web-based Outlook for Windows client, which combines the functionalities of email and calendar... - [Report: Microsoft Plans to Bring AI-Powered Copilot Assistant to Windows 10](https://petri.com/microsoft-copilot-assistant-windows-10/): Microsoft is reportedly planning to bring its new Copilot AI assistant to Windows 10. According to a new report from... - [Microsoft to Provide Startups with Free Access to Azure AI Infrastructure for Running LLMs](https://petri.com/microsoft-startups-azure-ai-infrastructure/): Microsoft has announced plans to support the growth of select startups by providing free access to its Azure AI services.... - [Microsoft Expands Protection: Enterprise IoT Security Now Part of Microsoft 365 E5 and E5 Security Plans](https://petri.com/enterprise-iot-security-microsoft-365-e5/): Microsoft has announced that enterprise IoT (eIoT) security capabilities are now available for organizations with Microsoft 365 E5/E5 security subscriptions.... - [Expert Guide to Azure Stack HCI Network Requirements: Hardware Essentials – FAQ Part 1](https://petri.com/azure-stack-hci-network-requirements-1/): Azure Stack HCI expert Flo Fox answers your most burning questions about Azure Stack HCI network requirements, including switched vs switchless configurations and mixing networking equipment from different vendors. - [Microsoft Authenticator Now Blocks Suspicious MFA Notifications](https://petri.com/microsoft-authenticator-suspicious-mfa-notifications/): Microsoft has recently introduced a new feature in its Authenticator app, designed to enhance user security and combat MFA fatigue... - [Microsoft Entra ID to Get Automatic Conditional Access Policies This Month](https://petri.com/microsoft-entra-id-automatic-conditional-access-policies/): Microsoft has announced plans to introduce new Conditional Access policies that will automatically protect customers against potential cyberattacks. Starting next... - [Microsoft Deprecates Three Features in Windows 11 Version 23H2](https://petri.com/microsoft-deprecates-features-windows-11/): Last week, Microsoft started rolling out the Windows 11 2023 Update, which introduces Windows Copilot and several new features that... - [Microsoft Exchange Vulnerabilities: Zero-Days Pave Way for Remote Code Execution](https://petri.com/microsoft-exchange-remote-code-execution/): Trend Micro’s Zero Day Initiative (ZDI) has disclosed four zero-day vulnerabilities in Microsoft Exchange. The security flaws could enable threat... - [Microsoft Unveils New Azure Integration with Canonical’s Snapshot Service](https://petri.com/microsoft-azure-canonical-snapshot-service/): Microsoft has collaborated with Canonical to simplify Linux OS updates and bolster security for Canonical workloads on Azure. This partnership... - [New Microsoft Teams Web Client Starts Rolling Out in Preview to Edge and Chrome Users](https://petri.com/new-microsoft-teams-web-client-preview/): Microsoft has started rolling out the new version of its Microsoft Teams web client today. The company has posted a... - [Microsoft Announces New Secure Future Initiative to Counter Evolving Cyberthreats](https://petri.com/microsoft-secure-future-initiative/): Microsoft announced this morning its new Secure Future Initiative (SFI) to protect customers against the evolving threat landscape. The initiative... - [Microsoft Teams Gets New Meet App, Live Translated Transcripts, Other New Features](https://petri.com/microsoft-teams-updates-october-2023/): Microsoft announced a slew of enhancements for its Teams collaboration service in October 2023. Notable additions include the Meet app... - [SQL Server - How to Add a Table Using SQL CREATE TABLE](https://petri.com/sql-create-table/): Once you have created a user database, you can begin to create tables using the SQL CREATE TABLE statement. Databases typically have many... - [SQL Server Essentials: Create a SQL Database](https://petri.com/create-sql-database/): Learn how to create a SQL database with our easy-to-follow guide. Michael Otey shows you the simplest way to create a database with the T-SQL CREATE DATABASE command and other methods. - [Microsoft 365 Copilot is Now Generally Available](https://petri.com/microsoft-365-copilot-generally-available/): Microsoft 365 Copilot, the new AI-powered assistant that launched in public preview earlier this year, is now generally available. Microsoft... - [Classic Microsoft Teams Users will Auto-Update to New Teams Desktop Client in Early 2024](https://petri.com/classic-microsoft-teams-auto-update-new-teams-2024/): Microsoft is gearing up to begin automatic updates for classic Teams users, transitioning them to the new Teams desktop client... - [Microsoft Releases Windows 11 Version 23H2: Everything You Need to Know](https://petri.com/windows-11-version-23h2/): Microsoft has just announced the release of Windows 11 version 23H2 (also known as the Windows 11 2023 Update). The... - [CISA Releases New 'Logging Made Easy' Tool to Detect Security Threats](https://petri.com/cisa-logging-made-easy-tool-security-threats/): The Cybersecurity and Infrastructure Security Agency (CISA) has recently released a new Logging Made Easy (LME) solution. The free tool... - [Top Azure Cloud Security Controls to Understand](https://petri.com/azure-cloud-security-controls/): Explore essential Azure cloud security controls and best practices in our concise guide. Learn to bolster your security posture with key deployment strategies. - [Supercharging Collaboration: New Microsoft Teams Channels Experience Now Generally Available](https://petri.com/new-microsoft-teams-channels-experience/): Microsoft announced yesterday that the new channels experience is now generally available for the classic and new Teams desktop apps.... - [Microsoft: Octo Tempest Group Exploits Social Engineering Tactics to Target Organizations](https://petri.com/microsoft-octo-tempest-social-engineering/): Microsoft has recently published details about a hacking group dubbed Octo Tempest that uses advanced social engineering techniques, SIM swapping,... - [Streamlining SaaS Governance: How Nudge Security Simplifies Compliance and Security Management for Cloud Apps](https://petri.com/nudge-security/): Nudge Security provides a simple and easy to implement solution to a challenging problem for organizations managing compliance, security, and... - [IT Admins Can Now Disable Roaming Signatures in Outlook on the Web and New Outlook for Windows](https://petri.com/microsoft-disable-roaming-signatures-outlook/): Microsoft has introduced a new policy that allows IT admins to disable roaming signatures for Outlook on the web and... - [First Ring Daily: Microsoft's FY2024 Q1 Earnings](https://petri.com/first-ring-daily-microsofts-fy2024-q1-earnings/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott look at Microsoft's first quarter earnings for its... - [What’s New in Microsoft Intune - October 2023](https://petri.com/microsoft-intune-updates-october-2023/): Microsoft has released a slew of new capabilities and improvements for Microsoft Intune. The first new feature that the company... - [Microsoft Teams to Let Users Forward Chat Messages - Here's How](https://petri.com/microsoft-teams-forward-chat-messages/): Microsoft Teams is set to release a new update that will allow users to forward messages between chat conversations. The... - [Microsoft Defender for Endpoint Gets Streamlined Device Connectivity Experience](https://petri.com/microsoft-defender-for-endpoint-device-connectivity/): Microsoft has released a new update that streamlines the device connectivity and onboarding experience for Microsoft Defender for Endpoint. The... - [Microsoft Expands Passwordless Experience to Entra ID-Joined Windows 11 Devices](https://petri.com/microsoft-passwordless-entra-id-joined-windows-11/): Microsoft has introduced a new policy that enables organizations to bid farewell to passwords and embrace the era of passwordless... - [Microsoft Dynamics 365 Customer Service Gets New Copilot Capabilities](https://petri.com/microsoft-dynamics-365-copilot-capabilities/): Microsoft has introduced new Copilot features in Dynamics 365 Customer Service, improving the way customer service agents interact with their... - [5 Ways to Clean the AppData Folder in Windows](https://petri.com/appdata-folder/): The inner workings of the Windows operating system are a labyrinth of files and folders, each with its own specific... - [Microsoft Outlook to Let Users View Declined Events on the Calendar](https://petri.com/microsoft-outlook-declined-events-calendar/): Microsoft is set to introduce a new time management feature in Microsoft Outlook. This update will allow users to retain... - [Qualcomm Unveils Snapdragon X Elite: A Powerhouse for Windows on Arm PCs, Outperforming Apple's M2 Max with 30% Less Power](https://petri.com/qualcomms-snapdragon-x-elite/): Qualcomm has just kicked off its Snapdragon 2023 Summit in Hawaii, and the company announced the new Snapdragon X Elite... - [Windows LAPS Introduces Microsoft Entra ID and Intune Support to Boost Protection](https://petri.com/windows-laps-microsoft-entra-id-intune/): Microsoft has introduced support for Microsoft Entra ID and Microsoft Intune in its Windows LAPS solution. This update enables organizations... - [Microsoft Syntex Adds Taxonomy and Image Tagging, Other Content Management Features](https://petri.com/microsoft-syntex-updates/): Microsoft Syntex has announced several new capabilities to improve content management and discovery for Syntex pay-as-you-go customers. The major highlights... - [Microsoft Teams Premium Gets Major Enhancements to Boost Collaboration](https://petri.com/microsoft-teams-premium-collaboration/): Microsoft Teams Premium is getting a new update with a suite of new features to improve the meeting and collaboration... - [Microsoft Purview Audit Extends Default Retention Period for Activity Logs](https://petri.com/microsoft-purview-audit-retention-activity-logs/): Microsoft recently unveiled updates to the default retention period for activity logs in Microsoft Purview Audit. This change is designed... - [How to Properly Secure and Govern Microsoft Entra ID Apps](https://petri.com/secure-microsoft-entra-id-apps/): Microsoft Entra ID, formerly Azure Active Directory (AD), is Microsoft’s cloud-native identity management platform. It only takes one compromised Entra... - [Microsoft Entra ID App Registration and Enterprise App Security Explained](https://petri.com/microsoft-entra-id-app-registration-explained/): One of the main reasons that application governance is often overlooked, as it relates to an organization’s cloud security posture,... - [Experience the Future of Security Operations Now with the Microsoft Security Copilot Early Access Program](https://petri.com/microsoft-security-copilot-early-access-program/): Microsoft is taking cybersecurity to the next level with its expansion of Microsoft Security Copilot. The company has launched the... - [Boosting Efficiency: Microsoft's New Feature Simplifies Management of Azure Role Permissions](https://petri.com/microsoft-management-azure-role-permissions/): Microsoft has announced a new security tool that enables IT admins to clean up their Azure role-based access control (RBAC)... - [Microsoft Teams Admin Center Gets Rule-Based Monitoring Alerts to Enhance Meeting Quality](https://petri.com/microsoft-teams-admin-center-rule-based-monitoring-alerts/): The Microsoft Teams admin center has introduced a new feature – rule-based monitoring alerts – aimed at simplifying the task... - [Microsoft Updates Teams PowerShell Module to Version 5.7.0](https://petri.com/microsoft-teams-powershell-module-version-5-7/): Microsoft has announced the release of version 5. 7. 0 of the Microsoft Teams PowerShell module. This release introduces several... - [Latest Windows Server Updates Trigger Hyper-V VM Boot Problems](https://petri.com/windows-server-updates-hyper-v-vm/): Microsoft has acknowledged a new issue that is currently affecting Windows Server 2022 and Windows Server 2019. Found in the... - [Mitigate Security Threats: Monitor HTTP Requests with M365 Graph Activity Logs](https://petri.com/microsoft-graph-activity-logs-public-preview/): Microsoft has announced the public preview of Microsoft Graph Activity Logs. This new offering is designed to provide organizations with... - [Microsoft Intune Endpoint Privilege Management Support Now Available for Windows 365 Cloud PCs](https://petri.com/microsoft-intune-endpoint-privilege-management-windows-365/): To strengthen security measures for businesses, Microsoft has introduced Intune Endpoint Privilege Management support for Windows 365 devices. The latest... - [Enhanced Collaboration: Loop Components Coming to Microsoft Teams Channels](https://petri.com/microsoft-teams-channels-loop-components/): Microsoft is set to introduce support for collaborative Loop components in Teams channels next month. While the feature is currently... - [Master the Power of File and Directory Management with Get-ChildItem in PowerShell](https://petri.com/get-childitem/): The Get-ChildItem PowerShell cmdlet is a powerful tool for listing files and folders in a variety of ways. In this... - [Enhancing Security: Microsoft to Phase Out Default Outbound Access for Azure VMs](https://petri.com/microsoft-retire-default-outbound-access-azure-vms/): Microsoft is introducing a significant change to Azure that will impact how virtual machines (VMs) connect to the Internet. Starting... - [Boosting Ransomware Defenses: Microsoft Introduces Multi-User Authorization for Azure Backup Vaults](https://petri.com/azure-backup-vaults-multi-user-authorization/): Microsoft has released a new security feature, Multi-User Authorization (MUA), for Azure Backup vaults. Azure Backup is a cloud-based service... - [Microsoft Confirms Chinese State-Backed Atlassian Confluence Attacks](https://petri.com/microsoft-chinese-atlassian-confluence-attacks/): Microsoft has revealed that a Chinese-backed threat group, known as Storm-0062, is currently exploiting a critical zero-day vulnerability in Atlassian... - [Microsoft Defender for Endpoint Now Automatically Blocks Human-Operated Attacks](https://petri.com/microsoft-defender-for-endpoint-human-operated-attacks/): Microsoft Defender for Endpoint is getting a security feature designed to thwart human-operated attacks automatically. The introduction of new “contain... - [Essential Guide to Mastering Get-ADGroupMember (AD User Management)](https://petri.com/get-adgroupmember-and-get-adgroup/): Dive into the capabilities of Get-ADGroupMember, explore its common parameters, and provide practical examples to showcase its power and versatility in managing your Active Directory environment. - [Microsoft Discontinues NTLM Authentication in Windows 11: What You Need to Know](https://petri.com/microsoft-disable-ntlm-windows-11/): Microsoft is getting ready to say goodbye to NT LAN Manager (NTLM), a long-standing authentication support system, in favor of... - [Microsoft Plans to Deprecate VBScript in Windows to Block Malware](https://petri.com/microsoft-deprecate-vbscript-windows/): VBScript, once the go-to tool for Windows enthusiasts and IT professionals, is gradually inching towards its sunset. Microsoft has quietly... - [Microsoft's October 2023 Patch Tuesday Updates Fix 103 Security Flaws](https://petri.com/microsoft-october-patch-tuesday-updates/): Microsoft announced the release of the October 2023 Patch Tuesday updates for Windows 10 and Windows 11 yesterday. This month,... - [Microsoft Introduces New Search & Intelligence Admin Portal Experience](https://petri.com/microsoft-search-intelligence-admin-portal-experience/): Microsoft has started rolling out a new home page for its Search and intelligence admin portal. The new homepage provides... - [Microsoft 365 Admins Warned About Google's New Strict Anti-Spam Rules](https://petri.com/microsoft-365-admins-google-anti-spam-rules/): Last week, Google made headlines with its announcement of new requirements for bulk email senders, signalling a renewed commitment to... - [Azure Arc-Enabled System Center Virtual Machine Manager Gets New Management Features](https://petri.com/azure-arc-enabled-scvmm-management-features/): Microsoft has released new Azure management capabilities tailored for Azure Arc-enabled System Center Virtual Machine Manager (SCVMM). This latest update... - [Windows Server vNext Update: Key Enhancements in Active Directory Upgrade](https://petri.com/windows-server-ad-forest-domain-functional-level/): Microsoft has recently announced the release of the Windows Server Insider Preview build 25951. The new build introduces several enhancements... - [Microsoft Cloud for Sovereignty Launches in Public Preview](https://petri.com/microsoft-cloud-for-sovereignty-public-preview/): Microsoft has announced the public preview of its Microsoft Cloud for Sovereignty solution tailored specifically for the public sector. The... - [Hackers Abuse SQL Server Flaw to Breach Azure Cloud VMs](https://petri.com/microsoft-sql-server-flaw-azure-cloud-vms/): Microsoft’s security experts have recently discovered a highly sophisticated attempt to target cloud environments. Hackers managed to exploit a compromised... - [New Microsoft Teams Client Launches on Windows and macOS](https://petri.com/new-microsoft-teams-windows-macos/): The new Microsoft Teams desktop app that launched in preview earlier this year is now generally available for Windows and... - [Microsoft Entra Privileged Identity Management Gets New Capabilities](https://petri.com/microsoft-entra-privileged-identity-management-updates/): Microsoft continues to raise the bar in cybersecurity by introducing two new features in its Entra Privileged Identity Management (PIM)... - [Microsoft Loop Now Lets Office Insiders Add Planner Boards](https://petri.com/microsoft-loop-planner-boards/): Microsoft has started testing a new Planner component within its Loop web app. This integration simplifies teamwork by allowing Loop... - [Master SQL Server: SQL Server Management Studio Tutorial](https://petri.com/sql-server-management-studio-tutorial/): In this SQL Server Management Studio tutorial (SSMS), I will show you the primary database management and development capabilities provided... - [Microsoft OneDrive Gets Big Update with New Copilot Integration, File Management Capabilities](https://petri.com/microsoft-onedrive-copilot-integration/): Microsoft unveiled yesterday OneDrive 3. 0, a significant overhaul of its cloud storage service. This latest update includes a sleek... - [Microsoft Unveils New OneDrive Sync Features for Business Customers](https://petri.com/microsoft-onedrive-sync-features/): Microsoft has recently announced some important updates coming to the OneDrive Sync client. The new capabilities are designed to boost... - [Microsoft to Shut Down Business Connectivity Services in Microsoft 365 in 2024](https://petri.com/business-connectivity-services-microsoft-365/): Microsoft has announced its plans to bid farewell to Business Connectivity Services (BCS) for Microsoft 365 customers in September 2024.... - [Microsoft Deprecates Remote PowerShell Support in Exchange Online](https://petri.com/exchange-online-remote-powershell/): In a decisive move toward bolstering cybersecurity, Microsoft is permanently turning off Remote PowerShell Protocol (RPS) for Exchange Online this... - [Azure VMware Solution – Maximizing Security and Control with Customer-Managed Keys](https://petri.com/azure-vmware-solution-customer-managed-keys/): In this article, I look at Azure VMware Solution, a Microsoft virtual machine (VM) service, verified by VMware, that runs... - [Microsoft Entra ID Protection Updates Password Change Remediations](https://petri.com/microsoft-entra-id-protection-password-change/): Microsoft has released a new update for its Entra ID Protection service. The security feature is designed to let IT... - [What is New with Power Platform - September 2023](https://petri.com/what-is-new-with-power-platform-september-2023/): Happy back-to-school season Makers! This month we’re looking at some features across Canvas Apps, Power BI, and Power Automate.   ... - [Microsoft Teams Now Supports 1,000 Standard/Shared Channels](https://petri.com/microsoft-teams-1000-channels/): Microsoft has detailed a roundup of new capabilities added to its Teams collaboration service in September. These updates are designed... - [Exchange Online to Introduce SMTP DANE with DNSSEC Support for Inbound Emails](https://petri.com/exchange-online-smtp-dane-with-dnssec-inbound-emails/): Microsoft announced this week plans to release the public preview of Inbound SMTP DANE with DNSSEC support for Exchange Online... - [First Ring Daily: Bing Gets Bargained](https://petri.com/first-ring-daily-bing-gets-bargained/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s attempt to sell Bing to Apple,... - [Microsoft Teams Gets New Town Halls Experience, Retires Teams Live Events](https://petri.com/microsoft-teams-town-halls/): Microsoft Teams continues to improve the meeting experience, and starting next month the collaboration platform is getting a new Town... - [New ZeroFont Phishing Technique Lets Hackers Show Fake AV Scans in Outlook Emails](https://petri.com/zerofont-phishing-fake-av-scans-outlook/): Security researchers have discovered that hackers are now employing a new zero-point font obfuscation technique to target Microsoft Outlook users.... - [Microsoft Mesh for Teams Launching in Public Preview Next Month](https://petri.com/microsoft-mesh-for-teams-public-preview/): Microsoft Mesh integration in Teams is set to launch in public preview in October. The upcoming release should bring a... - [Windows Terminal Preview 1.19 Adds Broadcast Input, Web Search, Other New Features](https://petri.com/windows-terminal-preview-1-19-broadcast-input/): Microsoft’s latest release, Windows Terminal 1. 19 Preview, is making waves in the developer community with its array of new... - [Mastering Active Directory OU: A Comprehensive Guide to Organizational Units](https://petri.com/active-directory-ou/): Explore Active Directory OU (Organizational Units): their functions, benefits, best practices, and differences from AD groups in our guide. - [Microsoft Planner to Add Support for New Personal Plans Next Month](https://petri.com/microsoft-planner-personal-plans/): Microsoft is gearing up to introduce support for Personal plans in Microsoft Planner. These new Personal plans will provide users... - [Microsoft Releases Big Windows 11 Fall Update With Copilot in Preview](https://petri.com/windows-11-fall-update-version-23h2-preview-release/): The Windows 11 Fall Update is now available as an optional update for Windows 11 version 22H2, and it includes over 200 new features such as Copilot in Windows and a new File Explorer. - [Microsoft Defender for Cloud Adds New Features to Boost Multi-Cloud Data Protection](https://petri.com/microsoft-defender-for-cloud-adds-new-features-to-boost-multi-cloud-data-protection/): Microsoft has announced some important updates for its Defender for Cloud solution. This latest release introduces a new unified cloud... - [Microsoft is Sunsetting its Azure Database for MariaDB Service in 2025](https://petri.com/microsoft-sunsetting-azure-database-for-mariadb/): Microsoft is set to retire its Azure Database for MariaDB service, making way for Azure Database for MySQL – Flexible... - [Microsoft's Remote Help Solution Gets Support for macOS](https://petri.com/microsofts-remote-help-macos/): Microsoft has announced its September service release (2309) for Microsoft Intune with a focus on convenience and security. The major... - [What Is SQL Server?: Understanding SQL Server and its Different Editions](https://petri.com/what-is-sql-server/): SQL Server is a relational database management system (RDBM) developed by Microsoft. This article details what is SQL Server and how its key subsystems and services work. - [New Outlook for Windows Now Available to Download on the Microsoft Store](https://petri.com/new-outlook-for-windows-11-devices/): Microsoft has announced that its new web-based Outlook for Windows client is now generally available for consumers. The new app... - [GitHub Announces the General Availability of Passkey Support](https://petri.com/github-general-availability-passkey/): In a world where online security is paramount, GitHub has just announced the general availability of passkey support for passwordless... - [First Ring Daily: The Biggest Week in Microsoft's History](https://petri.com/first-ring-daily-ep-1517-biggest-week-in-microsofts-history/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the unexpected departure of Microsoft’s Chief Product... - [Microsoft Unveils New Security Features for Windows 11, Microsoft Intune, and More](https://petri.com/microsoft-security-updates-windows-11-microsoft-intune/): Microsoft held its Surface and AI event where the company unveiled several new security features and updates set to transform... - [Understanding Multi-Tenant Organizations in Microsoft 365](https://petri.com/microsoft-365-multi-tenant-organization/): A multi-tenant organization (MTO) is a group of up to 5 Entra ID tenants linked together to improve collaboration across Microsoft 365. Here's everything you need to know about MTOs. - [Microsoft Announces Windows 11 Fall Update With Copilot in Windows and New Cloud PC Features](https://petri.com/windows-11-fall-update-copilot-coming-september-26/): The Windows 11 Fall update is coming on September 26 as an optional update for Windows 11 version 22H2, and it will add over 200 new features including Copilot for Windows. - [Microsoft 365 Copilot to Be Available for Enterprise Customers on November 1](https://petri.com/microsoft-365-copilot-launch-november-1/): Microsoft is gearing up to launch Microsoft 365 Copilot to enterprise customers, with a scheduled launch on November 1. The... - [Microsoft to Finalize Entra ID Name Change in 2024](https://petri.com/microsoft-entra-id-name-change-2024/): Microsoft unveiled its plans to rebrand Azure Active Directory (Azure AD) to Entra ID back in July. Fast forward to... - [GitHub Copilot Chat Now Available in Preview for Individual Users](https://petri.com/github-copilot-chat-individual-users/): Microsoft-owned GitHub has just unveiled an expansion of its AI-powered Copilot Chat service that promises to enhance developers’ productivity. The... - [How to Find and Block Breached Passwords in Active Directory](https://petri.com/compromised-passwords-active-directory/): There are multiple ways to find compromised passwords in Active Directory. This article explores how to that using a manual password audit and automated tools. - [Microsoft Teams Premium to Retain Real-time Telemetry Data for Up To Seven Days](https://petri.com/microsoft-teams-premium-real-time-telemetry/): Microsoft is set to enhance how organizations harness real-time data during Teams meetings with an upcoming update. The Real-Time Analytics... - [Microsoft to Kill Off Exchange Web Services in October 2026](https://petri.com/microsoft-exchange-web-services-2026/): Microsoft has recently sent ripples through the developer community with its announcement of the retirement of the Exchange Web Services... - [Microsoft 365 Defender Gets Multi-Tenant Support in Public Preview](https://petri.com/microsoft-365-defender-gets-multi-tenant-support-in-public-preview/): Microsoft has introduced multi-tenant support in public preview for Microsoft 365 Defender. This feature simplifies the lives of IT pros... - [Microsoft AI Researchers Accidentally Leaked 38TB of Sensitive Data](https://petri.com/microsoft-leaked-38tb-sensitive-data/): Cybersecurity researchers have uncovered a 38TB storage bucket containing private data inadvertently leaked by a Microsoft employee. The breach, attributed... - [Azure Update Manager is Now Generally Available](https://petri.com/azure-update-manager-generally-available/): Microsoft has announced the general availability of Azure Update Manager for enterprise customers. This tool simplifies and enhances the update... - [Microsoft 365 Lighthouse Gets Support for Alerts and Notifications](https://petri.com/microsoft-365-lighthouse-alerts-notifications/): Microsoft has announced the release of a new update for Microsoft 365 Lighthouse. This latest update brings support for alerts... - [Microsoft Patches Critical XSS Flaws in Azure HDInsight Analytics Service](https://petri.com/microsoft-xss-flaws-in-azure-hdinsight/): Microsoft has recently patched eight cross-site scripting (XSS) vulnerabilities impacting Azure HDInsight. These vulnerabilities could have allowed unauthorized access, session... - [Microsoft Unveils New Partnership to Bring Oracle Cloud Hardware to Azure Datacenters](https://petri.com/microsoft-oracle-database-azure/): Microsoft is expanding its existing partnership with Oracle, one that has the potential to reshape how businesses harness the power... - [EU to Reportedly Push Ahead with Microsoft Teams Antitrust Probe](https://petri.com/eu-microsoft-teams-antitrust-probe/): The European Commission is gearing up for a formal antitrust investigation into Microsoft’s contentious bundling of Teams with its Office... - [First Ring Daily: The EU is Not Happy](https://petri.com/first-ring-daily-eu-microsoft-teams-unbundling/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the EU Commission reportedly preparing a formal... - [Microsoft Releases SharePoint Server Subscription Edition Update 23H2](https://petri.com/microsoft-sharepoint-server-subscription-edition-23h2/): Microsoft has announced the release of a new feature update (23H2) for SharePoint Server Subscription Edition (SE). Among the highlights... - [Microsoft to Add SMB NTLM Blocking Support to Windows 11](https://petri.com/microsoft-smb-ntlm-blocking-windows-11/): Microsoft has announced the release of a new Windows 11 Preview Build 25951 to the Canary Channel. This release comes... - [PowerShell Crescendo 1.1.0 is Now Generally Available](https://petri.com/microsoft-powershell-crescendo-1-1-0/): Microsoft has announced the general availability of PowerShell Crescendo 1. 1. 0 for all its customers. This latest iteration brings... - [Microsoft Launches Enhanced Windows 365 App Experience to Boost Productivity on Android Devices](https://petri.com/microsoft-windows-365-app-experience-android/): Microsoft has partnered with Motorola to launch an enhanced Windows 365 App experience for Android devices. The new built-in feature... - [Microsoft Details Roll Out Plan for New Outlook for Windows Client](https://petri.com/microsoft-roll-out-plan-outlook-for-windows/): Microsoft has unveiled its strategy to replace the classic Outlook desktop application, but the transition won’t be a swift one.... - [Using Microsoft Sentinel to Automate and Reduce Security Alerts](https://petri.com/microsoft-sentinel-reduce-alerts/): Microsoft Sentinel, the company's SIEM solution can generate a lot of security notifications. Here's how to take back control and make Microsoft Sentinel reduce alerts. - [Microsoft Releases September 2023 Patch Tuesday Updates for Windows 11 and Windows 10](https://petri.com/september-2023-patch-tuesday-updates/): The September 2023 Patch Tuesday updates for Windows 11 and Windows 10 fix a total of 65 vulnerabilities, and IT Pros also get a new policy to control optional updates on Windows 11. - [Microsoft to Sunset Outlook REST API v2.0 in 2024](https://petri.com/microsoft-sunset-outlook-rest-api-2024/): In a notable shift for developers, Microsoft has revealed its plan to retire the Outlook REST API v2. 0 in... - [Microsoft's Bing Chat Enterprise Service Adds New Deployment Controls](https://petri.com/microsoft-bing-chat-enterprise-deployment-controls/): Microsoft has launched a new Bing Chat Enterprise service plan that gives organizations more control over who can access the... - [W3LL Phishing Group Breaches Thousands of Microsoft 365 Corporate Accounts](https://petri.com/w3ll-phishing-microsoft-365-accounts/): Security researchers have discovered a new threat actor that has been using a highly advanced phishing kit to bypass multifactor... - [Microsoft Entra ID Gets Conditional Access Overview Dashboard and Templates](https://petri.com/microsoft-entra-id-conditional-access-overview-templates/): In today’s constantly evolving digital landscape, finding the perfect harmony between strong security measures and seamless access for a hybrid... - [Protect Your Organization's Assets: Disaster Recovery with Azure Backup](https://petri.com/azure-backup/): Here's how Azure Backup can keeps your data and workloads safe by backing them up to the Azure cloud for disaster recovery. - [RDP Server Security Enhanced by Bullwall's New Solution Against Ransomware Attacks](https://petri.com/bullwall-server-intrusion-protection-ransomware/): Bullwall announced the launch of its new Server Intrusion Protection solution this week. In an age where remote access is... - [Microsoft to Protect Copilot Commercial Customers Against Copyright Lawsuits](https://petri.com/microsoft-protect-copilot-customers-copyright-lawsuits/): Microsoft has announced that it will defend customers of its AI-powered Copilot services from the daunting specter of copyright infringement... - [Microsoft Opens Registrations for its Ignite Conference on November 14-17](https://petri.com/microsoft-opens-registrations-ignite-2023/): Microsoft's Ignite 2023 conference will be held in Seattle on November 14-17, and you can already register for the in-person or free online event. - [First Ring Daily: Google Goes to Court and the EU Lists Out "Gatekeepers"](https://petri.com/first-ring-daily-google-court-battle-eu-gatekeepers/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Google’s upcoming antitrust battle in the US,... - [Microsoft to Drop Support for Third-Party Printer Drivers on Windows PCs](https://petri.com/microsoft-third-party-printer-drivers-windows/): Microsoft is set to bid farewell to third-party printer drivers offered via Windows Update. This change, scheduled for a staggered... - [How Immutable Backups Protect Against Ransomware](https://petri.com/immutable-storage-ransomware-backups/): In this article, we explore how immutable backups and immutable storage can protect your organization against data loss and ransomware. - [Microsoft Explains How Chinese Hackers Breached US Government Email Accounts](https://petri.com/microsoft-chinese-hackers-breached-email-accounts/): Microsoft recently disclosed a cyber-espionage campaign that allowed Chinese hackers to steal a signing key and breach sensitive US government... - [What's New With Microsoft's Power Platform – August 2023](https://petri.com/microsoft-power-platform-august-2023-updates/): The Power Platform updates for August 2023 include a PowerBI layout switcher, the ability to choose a launch item in the PowerBI mobile app, and more. - [MSI Releases New BIOS Updates to Fix Unsupported Processor BSOD Errors on Windows 11](https://petri.com/msi-fix-unsupported-processor-bsod-errors-windows-11/): Microsoft recently acknowledged a technical hiccup causing Blue Screen of Death (BSOD) unsupported processor errors on Windows 11 and 10.... - [Azure Firewall Gets Explicit Proxy Support and Other New Features](https://petri.com/microsoft-azure-firewall-explicit-proxy/): Microsoft has introduced a new Explicit proxy mode for Azure Firewall that allows direct proxy configuration within sending applications. The... - [PSA: Microsoft to Disable Older TLS Protocols in Windows](https://petri.com/microsoft-disable-older-tls-protocols-windows/): Microsoft is set to bids farewell to outdated Transport Layer Security (TLS) 1. 0 and 1. 1 protocols in Windows.... - [What’s New in Microsoft Teams - August 2023](https://petri.com/whats-new-microsoft-teams-august-2023/): In the fast-paced world of digital collaboration, Microsoft continues to raise the bar with its latest enhancements to Microsoft Teams... - [Securing Enterprise Devices: Embracing Zero Trust Security](https://petri.com/airdroid-business-zero-trust-security/): In an era where data security is of significant importance for all businesses, AirDroid Business offers a sophisticated MDM solution to ensure businesses' security, management, and productivity. - [Microsoft Releases Improvements for Entra ID Cross-Tenant Access Settings](https://petri.com/microsoft-updates-entra-id-cross-tenant-access-settings/): Microsoft is improving the collaboration experience with updates to Entra ID cross-tenant access settings. These enhancements include support for custom... - [What is a Roaming User Profile on Windows?](https://petri.com/roaming-profiles/): Roaming profiles are a Windows feature that allows user profiles to be used across multiple workstations within a network. A... - [New Microsoft Teams for Mac Client to Launch in Preview This Month](https://petri.com/microsoft-teams-for-mac-client/): Microsoft is gearing up to release the public preview of its new Teams client for macOS later this month. The... - [New Group Policy Analytics Tool Lets IT Admins Assess MDM Migrations](https://petri.com/microsoft-group-policy-analytics-tool/): Microsoft has released a new Group Policy analytics tool that lets organizations import, analyze, and migrate on-premises GPOs to Microsoft... - [What’s New in Windows Autopatch - August 2023](https://petri.com/windows-autopatch-updates-august-2023/): Microsoft has rolled out a series of Windows Autopatch enhancements designed to redefine how organizations approach updates and device management.... - [First Ring Daily: Ahead of AI](https://petri.com/first-ring-daily-ep-1503-ahead-of-ai/): On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s upcoming special event on September 21,... - [Microsoft is Unbundling Teams From its Microsoft 365/Office 365 Commercial Subscriptions in Europe](https://petri.com/microsoft-unbundling-teams-microsoft-office-365-europe/): Microsoft will start unbundling Teams from its Microsoft 365/Office 365 commercial suites in the EU and Switzerland on October 1, 2023.  - [OneDrive for Business Kills Unlimited Storage Option for Commercial Customers](https://petri.com/onedrive-for-business-unlimited-storage/): Microsoft has quietly discontinued its once-generous unlimited cloud storage option for the OneDrive for Business service. Indeed, all new commercial... - [Microsoft to Introduce Platform SSO Support for Mac Devices](https://petri.com/microsoft-platform-sso-mac-devices/): Microsoft is getting ready to enhance the user experience for Mac devices with its upcoming Platform Single Sign-On (SSO) capabilities.... - [Microsoft Purview Gets OCR Support and Other New Data Loss Prevention Capabilities](https://petri.com/microsoft-purview-data-loss-prevention-capabilities/): In a leap towards fortifying data security, Microsoft has unveiled several enhancements for Microsoft Purview Data Loss Prevention. These latest... - [How to Protect Windows Devices with Microsoft Defender for Endpoint](https://petri.com/microsoft-defender-for-endpoint/): Here's how to enable Microsoft Defender for Endpoint to protect Windows devices from risky activities and potential attacks. - [Microsoft to Enable Extended Protection By Default on Exchange Server](https://petri.com/microsoft-extended-protection-exchange-server/): Microsoft has announced its plans to enable Extended Protection by default on Exchange Server later this year. Scheduled to roll... - [New Microsoft Teams Client Gets a Big Update to Enhance Multi-Tenant Collaboration](https://petri.com/microsoft-teams-multi-tenant-collaboration/): Microsoft has started rolling out a set of updates for its new Teams desktop client designed to take employee collaboration... - [Five Tactics Towards Achieving Zero Trust with Microsoft Entra ID (Azure Active Directory)](https://petri.com/microsoft-zero-trust/): In this article, you'll learn about five Microsoft Zero Trust tactics for securing Azure Active Directory, starting with Conditional Access. - [Microsoft's New Remote Help Service Adds Support for Android Devices](https://petri.com/microsoft-remote-help-for-android/): Microsoft continues to evolve its offerings with the latest August (2308) service release for Microsoft Intune. A notable highlight is... - [Carderbee Hackers Abuse Microsoft Signing Keys in Supply Chain Attacks](https://petri.com/carderbee-hackers-supply-chain-attacks/): Security researchers have exposed a new supply chain attack that targeted entities across Asia, with a particular focus on Hong... - [AWS Unveils New Dedicated Local Zones Service for Critical Workloads](https://petri.com/aws-unveils-dedicated-local-zones/): Amazon Web Services (AWS) recently made waves with the announcement of a new service called Dedicated Local Zones. This new... - [Microsoft Teams Premium Self-Service Trial Licenses to be Available Next Month](https://petri.com/microsoft-teams-premium-self-service-trial/): Key takeaways: Microsoft has announced the imminent launch of the self-service Teams Premium trial for commercial customers. Scheduled for a... - [First Ring Daily: AI Boom Helps Nvidia Double its Quarterly Revenue](https://petri.com/first-ring-daily-ai-boom-nvidia-chips/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Nvidia doubling its revenue in Q2 thanks... - [Microsoft Acknowledges New "Unsupported Processor" BSOD Errors on Windows 11](https://petri.com/microsoft-bsod-error-issues-windows-11/): Key takeaways: Microsoft’s latest optional update for Windows 11 version 22H2, KB5029351, designed to bring improved features and experiences, has... - [SQL Server Essentials: Using the SQL GROUP BY Clause](https://petri.com/sql-group-by/): Here's how to use the SQL GROUP BY clause to arrange data into groups and perform calculations with grouped data. - [Microsoft Entra ID Gets API-Driven Provisioning Support in Public Preview](https://petri.com/microsoft-entra-id-api-driven-provisioning/): Key takeaways: Microsoft has announced API-driven provisioning support for Microsoft Entra ID (formerly Azure Active Directory). This new release allows... - [Cameyo Unveils New Solution to Run Windows Apps on ChromeOS](https://petri.com/cameyo-windows-apps-chromeos/): Key takeaways: Cameyo has a new app accessibility feature with this latest update: a seamless integration of its Virtual App... - [Microsoft Releases New Policy to Control Optional Updates on Windows 11](https://petri.com/windows-11-enable-optional-updates-policy/): The August optional update for Windows 11 version 22H2 introduces a new "Enable optional updates" policy giving IT pros more control over optional updates and CFRs. - [WinRAR Patches Flaw That Lets Attackers Run Malicious Code When Opening RAR Files](https://petri.com/winrar-patches-flaw-rar-files/): Key takeaways: RARLAB has released a crucial update aimed at addressing a high-severity security loophole within its popular WinRAR compression... - [Microsoft Edge Version 116 is Out With New Edge for Business Experience](https://petri.com/microsoft-edge-for-business-available/): Microsoft Edge has just rolled out version 116, and it’s not just another humdrum update. This new version takes the... - [How to Use the PowerShell Get-MessageTrace Command in Office 365](https://petri.com/powershell-get-messagetrace/): Here's how to use the PowerShell Get-MessageTrace command to manage and analyze email message traces in Office 365. - [Windows VMs Get Improved Microsoft Intune Support in Parallels Desktop 19 for Mac](https://petri.com/parallels-desktop-19-for-mac-intune-integration/): Parallels Desktop 19 is ready for the upcoming macOS Sonoma, and it brings new ways to enrolling Windows 11 virtual machines in Microsoft Intune. - [Microsoft Brings Windows 365 Cloud PCs to VMware Horizon Cloud](https://petri.com/microsoft-windows-365-vmware-horizon-cloud/): Key Takeaways: Microsoft has unveiled an ambitious new chapter in its partnership with none other than VMware. The company announced... - [Microsoft Loop to Become Enabled By Default for More Customers](https://petri.com/microsoft-loop-enabled-by-default-more-customers/): Key Takeaways: Step aside old-school collaboration tools, Microsoft’s Loop app is getting ready for its debut to a broader range... - [CISA Issues Advisory on Critical File Transfer Flaw in Citrix ShareFile](https://petri.com/cisa-file-transfer-flaw-citrix-sharefile/): Key Takeaways: US Cybersecurity and Infrastructure Security Agency (CISA) has warned about a critical vulnerability present in Citrix ShareFile. CISA... - [Microsoft Now Lets IT Admins Assign Sponsors to Entra ID Guest Accounts](https://petri.com/microsoft-entra-id-guest-accounts-sponsors/): Key Takeaways: Microsoft has released a new update that enables IT admins to designate sponsors for Entra ID guest accounts.... - [First Ring Daily: Bing Isn't Growing, But AI Still Has a Place](https://petri.com/first-ring-daily-bing-isnt-growing/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Bing’s stagnating market share despite Microsoft investing... - [Researchers Disclose PowerShell Gallery Design Flaws Vulnerable to Supply Chain Attacks](https://petri.com/microsoft-powershell-gallery-flaws/): Key Takeaways: Attention all IT Pros! Security researchers have unveiled three design flaws within the PowerShell Gallery, an online platform... - [Microsoft Defender for Identity Adds New Sensor to Detect Certificate Abuse](https://petri.com/microsoft-defender-for-identity-sensor-certificate-abuse/): Key Takeaways: Microsoft Defender for Identity has added a cutting-edge addition to its toolkit – a new sensor now deployable... - [Microsoft Defender for Endpoint Gets Device Tagging Support for iOS and Android](https://petri.com/microsoft-defender-for-endpoint-device-tagging/): Key takeaways: Microsoft Defender for Endpoint has introduced device tagging support in public preview for mobile devices. This capability allows... - [Microsoft Releases New Exchange Server Security Updates to Fix Localization Issues](https://petri.com/microsoft-exchange-server-security-updates/): Microsoft has released a new version of the August 2023 security updates for Exchange Server. The company pulled the updates... - [Hackers Exploit Critical Citrix Flaw to Compromise 2,000 NetScaler Instances](https://petri.com/hackers-citrix-flaw-2000-netscaler-instances/): Security researchers have disclosed a new campaign that exploited a critical Citrix NetScaler vulnerability to infect thousands of devices. They... - [Is AI Going to Change Backup and Recovery Strategies?](https://petri.com/ai-for-backup-and-recovery/): In IT, a rapidly growing number of software vendors now have some type of AI capabilities built into their tools, and this should definitely be of interest to IT pros. - [Microsoft Loop Now Lets Users Add Jira and Trello Boards](https://petri.com/microsoft-loop-jira-trello-integration/): Microsoft Loop users can now add Jira and Trello boards to Loop pages and update them right from the app.  - [AWS CodePipeline Introduces Support for GitLab](https://petri.com/aws-codepipeline-support-gitlab/): Amazon Web Services (AWS) has introduced support for GitLab in its AWS CodePipeline service. This release allows developers to leverage... - [Azure Firewall Adds New Resource Health and Latency Probe Metric Features](https://petri.com/azure-firewall-resource-health-latency-probe-metric/): Microsoft has announced some new monitoring and logging capabilities for Azure Firewall. The first new feature that the company highlighted... - [Microsoft 365 Universal Print Gets QR Code Scanning Support on Android and iOS](https://petri.com/universal-print-qr-code-scanning-android-ios/): Microsoft has released a new update that brings enhancements to its Universal Print service. The company announced that the secure... - [US Government to Investigate Chinese Hack That Breached Exchange Online](https://petri.com/us-government-investigate-exchange-online-breach/): The Cyber Security Review Board (CSRB) has recently announced that it will investigate the recent compromise of Exchange Online used... - [What is Azure Data Studio?](https://petri.com/azure-data-studio/): Here's how Azure Data Studio works, how it differs from SQL Server Management Studio, and how you can download and install it on your PC. - [Microsoft Defender for Endpoint Now Supports Mixed Licensing Scenarios](https://petri.com/microsoft-defender-for-endpoint-mixed-licensing/): Microsoft has introduced support for mixed licensing in its Microsoft Defender for Endpoint solution. The new capability allows IT admins... - [Microsoft Integrates Copilot into Dynamics 365 Field Service App for Frontline Workers](https://petri.com/microsoft-copilot-dynamics-365-field-service/): Microsoft has announced that it’s bringing the Copilot AI assistant to apps used by frontline workers. The company has launched... - [How to Install SQL Server Containers on Linux Using Docker](https://petri.com/sql-server-docker/): One of the advantages of running an application like SQL Server in a container is that no installation is required. Here's how to configure SQL Server Docker containers on Linux. - [Remote Help to Add Support for Android Devices This Month](https://petri.com/remote-help-support-android-devices/): Last year, Microsoft introduced a new Remote Help solution for the Microsoft Intune Suite. The company announced yesterday that the... - [First Ring Daily: Selling the Chips](https://petri.com/first-ring-daily-selling-the-chips/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the new ‘Downfall’ vulnerability affecting older Intel... - [Microsoft Entra ID to Start Delivering MFA Text Messages Through WhatsApp](https://petri.com/microsoft-entra-id-mfa-text-messages-whatsapp/): Microsoft Entra ID will soon start delivering multifactor authentication (MFA) text messages through WhatsApp. The company announced on the Microsoft... - [Microsoft Defender for Cloud Adds New Security Features to Block Threats](https://petri.com/microsoft-defender-for-cloud-security-features/): Microsoft announced yesterday several new capabilities coming to Microsoft Defender for Cloud. The latest updates are designed to help organizations... - [How to Add, Change, and Remove Mailbox Folder Permissions With PowerShell in Office 365](https://petri.com/mailboxfolderpermission/): how to add, change, and remove mailbox folder permissions using the PowerShell Add-MailboxFolderPermission and Set-MailboxFolderPermission cmdlets. - [Microsoft Entra ID Conditional Access Gets Protected Actions Support to Boost Security](https://petri.com/microsoft-entra-id-conditional-access-protected-actions/): Microsoft has announced that Conditional Access for protected actions support is now generally available for Entra ID (Azure AD) customers.... - [Windows 365 Switch Now Available in Public Preview](https://petri.com/windows-365-switch-public-preview/): Microsoft has announced the public preview of its Windows 365 Switch service. The new offering allows users to switch between... - [August 2023 Patch Tuesday Updates are Now Available on Windows 11 and Windows 10](https://petri.com/august-2023-patch-tuesday-windows-11/): Microsoft has released today the August 2023 Patch Tuesday updates for Windows 11 and Windows 10, which include fixes for over 80 vulnerabilities. - [Microsoft Releases New Windows 365 Features for Enterprise Customers](https://petri.com/microsoft-windows-365-enterprise/): Microsoft has released the July 2023 update for its Windows 365 Enterprise service. The company announced that the new Move... - [Bing Chat Enterprise Service Plan Coming to Microsoft 365 Subscriptions Next Month](https://petri.com/bing-chat-enterprise-service-plan/): Last month, Microsoft launched its new Bing Chat Enterprise service in preview for commercial customers. The company has announced on... - [Microsoft Syntex Gets New Features, Drops Price for Unstructured Document Processing](https://petri.com/microsoft-syntex-unstructured-document-processing/): Last year, Microsoft launched its new Syntex service that uses AI to organize large sets of data and unorganized content... - [GitHub Copilot Adds New Code Referencing Feature in Private Beta](https://petri.com/github-copilot-code-referencing/): Microsoft-owned GitHub has released a new code referencing tool for GitHub Copilot. The new feature will inform developers when AI-powered... - [Microsoft Patches Critical Azure Flaw Following Criticism for 'Irresponsible' Security Practices](https://petri.com/microsoft-patches-azure-flaw-criticism/): Microsoft has fixed a critical vulnerability that could let hackers gain unauthorized access to sensitive data and cross-tenant applications managed... - [How to Increase the Attachment Size Limit in Microsoft Outlook](https://petri.com/outlook-attachment-size-limit/): Microsoft's Outlook app limits the size of email attachments by default. Here's how to increase the Outlook attachment size limit using Regedit and PowerShell - [Subscribe to 'This Week in IT' on YouTube](https://petri.com/subscribe-this-week-in-it-youtube/): This Week in IT now has its own YouTube Channel! If you have been watching This Week in IT since... - [CISA Warns About New Ivanti EPMM Vulnerabilities](https://petri.com/cisa-ivanti-epmm-vulnerabilities/): The Cybersecurity and Infrastructure Security Agency (CISA) has warned about two vulnerabilities in Ivanti’s Endpoint Manager Mobile (EPMM). The security... - [Windows 11 to Get Support for Microsoft Azure Attestation Service](https://petri.com/microsoft-azure-attestation-service-windows-11/): Microsoft is getting ready to introduce support for the Microsoft Azure Attestation (MAA) service on Windows 11. The company announced... - [How to Grant Full Mailbox Access to Users in Office 365 and Exchange Server](https://petri.com/powershell-add-mailboxpermission/): Here's how to grant full mailbox access in both Office 365 and Exchange Server environments using the Exchange Admin Center and PowerShell Add-MailBoxPermission. - [First Ring Daily: AI on the Desktop](https://petri.com/first-ring-daily-ai-on-the-desktop/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft killing off the Cortana app on... - [Microsoft Revises Cloud Licensing Policies for Running Office on AWS](https://petri.com/microsoft-cloud-run-office-aws/): Microsoft is making some minor changes to its cloud licensing policies for specific customers that run Microsoft Office on AWS.... - [Russian Hackers Used Microsoft Teams to Target Government Agencies](https://petri.com/russian-hackers-microsoft-teams-government/): Microsoft has issued a security advisory about a new Russia-linked hacking group dubbed Midnight Blizzard. The threat actors used Microsoft... - [What’s New in Windows – July 2023](https://petri.com/whats-new-in-windows-july-2023/): With the exception of Windows 11 Moment 3 landing for everyone in July, it’s been a fairly quiet month. But... - [Microsoft Managed Desktop Service to Retire in July 2024](https://petri.com/microsoft-managed-desktop-sunsetting-2024/): Microsoft is planning to sunset its Microsoft Managed Desktop service next year. The company has quietly updated its support document... - [Microsoft to Disable TLS 1.0 and 1.1 Support By Default on Windows 11](https://petri.com/microsoft-disable-tls-1-0-and-1-1-windows-11/): Microsoft announced yesterday that it will soon deprecate Transport Layer Security (TLS) versions 1. 0 and 1. 1 on Windows... - [SQL Server Essentials: How to Install SQL Server 2022 and Azure Data Studio on Linux](https://petri.com/install-sql-server-on-linux/): Starting with SQL Server 2017, Microsoft has supported SQL Server on Linux, which has the same underlying database engine as... - [What’s New with Microsoft’s Power Platform in July 2023](https://petri.com/microsoft-power-platform-updates-july-2023/): Summer is in full swing, and it is hot out there! Speaking of hot things, Microsoft just released last month... - [Microsoft Fixes WSUS Bug Preventing Updates Distribution on Windows 11 version 22H2](https://petri.com/microsoft-wsus-bug-windows-11-version-22h2/): Microsoft has released updates to fix a bug that was previously impacting the Windows Server Update Services (also known as... - [Azure Virtual Desktop Introduces Watermarking Support to Protect Sensitive Data](https://petri.com/azure-virtual-desktop-watermarking-sensitive-data/): Earlier this year, Microsoft released watermarking support in public preview for Azure Virtual Desktop (AVD). The company detailed in a... - [Microsoft Entra ID Protection Gets New Dashboard, Advanced Detections](https://petri.com/microsoft-entra-id-protection-dashboard/): Microsoft announced yesterday a new update for its Microsoft Entra ID Protection service. This release brings a new dashboard, advanced... - [Microsoft's Clipchamp Video Editor is Adding Support for Work Accounts](https://petri.com/microsoft-clipchamp-work-accounts-support/): Clipchamp, the video editing app that Microsoft acquired back in 2021 will soon be available for Microsoft 365 commercial customers via the Targeted Releasd program. - [AWS to Start Charging for Public IPv4 Addresses in February 2024](https://petri.com/aws-public-ipv4-addresses-2024/): Amazon Web Services (AWS) is planning to charge organizations for the use of public IPv4 addresses. Starting on February 1,... - [Microsoft Entra ID Introduces Strict Location Enforcement To Block Stolen Token Access](https://petri.com/microsoft-entra-id-strict-location-enforcement/): Microsoft has released a public preview of a new continuous access evaluation (CAE) setting for the Entra ID Conditional Access... - [Microsoft Intune Gets Support for Uninstalling Apps in the Company Portal for Windows](https://petri.com/microsoft-intune-uninstalling-apps-company-portal/): Microsoft has started rolling out the July 2023 service release (2307) for Microsoft Intune. The latest update brings several new... - [AWS Certifications: A Complete Guide](https://petri.com/aws-certifications/): AWS Certifications are industry-recognized credentials that demonstrate your expertise with AWS. Here's a comprehensive overview of AWS certifications to help you advance your IT Pro career. - [Microsoft Defender for Storage to Add Malware Scanning Support in September](https://petri.com/microsoft-defender-for-storage-malware-scanning/): Microsoft has announced that the malware scanning capability will become generally available on September 1. The new agentless SaaS solution... - [Microsoft and Samsung Unveil New Mobile Device Attestation Solution for Businesses](https://petri.com/microsoft-samsung-mobile-device-attestation/): Microsoft has announced a new strategic partnership with Samsung to enhance mobile security for business customers. The companies have unveiled... - [How to Use PowerShell If Statements to Add Conditional Logic to Your Scripts](https://petri.com/powershell-if-statement/): PowerShell If statements are used to perform the conditional execution of code. Here's how If, Else, and Elseif statements can make you a better PowerShell scriptwriter. - [Importing Windows Updates into WSUS Now Requires PowerShell](https://petri.com/microsoft-import-updates-wsus-powershell-script/): Microsoft has announced some important changes coming to Windows Server Update Services (WSUS). The company detailed in a blog post... - [Microsoft Defender Vulnerability Management Gets Firmware Security Advisories](https://petri.com/microsoft-defender-vulnerability-management-firmware-security-advisories/): Microsoft announced yesterday that firmware security advisories are now available for the Microsoft Defender Vulnerability Management service. The new feature... - [EU Starts Antitrust Probe into Microsoft Teams Bundling with Office 365](https://petri.com/eu-antitrust-probe-microsoft-teams/): The European Commission (EC) has launched a formal probe into Microsoft’s bundling of the Teams app with Office 365 and... - [First Ring Daily: Microsoft Releases its FY23 Q4 Earnings](https://petri.com/first-ring-daily-microsoft-fy23-q4-earnings/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s financial results for the last quarter... - [Planning for a Successful Office 365 Tenant to Tenant Migration Project](https://petri.com/office-365-tenant-to-tenant-migration/): Here are the essential steps to plan for a successful Office 365 tenant to tenant migration project, covering pre-migration preparation, data assessment, and more. - [Microsoft Entra ID Enhanced Sign-In Branding Now Generally Available](https://petri.com/microsoft-entra-id-enhanced-sign-in-branding/): Microsoft has announced the general availability of improved company branding functionality for enterprise customers. The new feature launched in preview... - [Microsoft Teams to Add New Meet App to Manage Meeting Activities and Content](https://petri.com/microsoft-teams-new-meet-app/): Microsoft Teams is getting a new Meet app that should make it easier for users to track and manage meeting... - [Microsoft 365 Defender Adds New URL Page to Block Phishing Attacks](https://petri.com/microsoft-365-defender-url-page-phishing-attacks/): Microsoft has launched a URL page for its Microsoft 365 Defender solution. The new page provides a unified hub that... - [AMD 'Zenbleed' CPU Flaw Exposes Passwords and Encryption Keys to Hackers](https://petri.com/amd-zenbleed-flaw-ryzen-cpus/): Tavis Ormandy, a Google Security researcher has discovered a new vulnerability affecting AMD’s Zen 2 processors. Dubbed Zenbleed, the security... - [Microsoft Defender for IoT Gets New Firmware Analysis Capabilities](https://petri.com/microsoft-defender-for-iot-firmware-analysis/): Microsoft has released a new firmware analysis feature for Microsoft Defender for IoT. The new capability conducts an automated analysis... - [Report: Stolen Microsoft Key Gave Chinese Hackers Widespread Access to Cloud Services](https://petri.com/microsoft-key-chinese-hackers-access-cloud-services/): Microsoft has recently disclosed a security breach that allowed Chinese hackers to access the email accounts of around two dozen... - [Microsoft to Start Windows Mail and Calendar to Outlook Migration Next Month](https://petri.com/mail-and-calendar-apps-migrate-outlook-for-windows/): Microsoft will start to migrate some users of the Windows Mail and Calendar apps to the new Outlook for Windows in August. - [Mastering Microsoft 365 Administration: A Guide to Microsoft's Various Admin Centers](https://petri.com/office-365-portal/): This article details the Office 365 portal and other admin centers available in Microsoft 365 to empower IT pros to harness the full potential of the platform. - [Microsoft Azure Boost Launches to Offload Virtualization Processes](https://petri.com/azure-boost-offload-virtualization-processes/): Microsoft has announced a public preview of Azure Boost for enterprise customers this week. The new offering is designed to... - [SQL Server Essentials: Downloading and Installing SQL Server Data Tools for Visual Studio](https://petri.com/sql-server-data-tools-for-visual-studio/): Here's how to download and install the latest version of SQL Server Data Tools for Visual Studio on your PC. - [GitHub Copilot Chat Now Available in Public Preview for Businesses](https://petri.com/github-copilot-chat-public-beta-businesses/): Microsoft-owned GitHub has announced the limited public beta release of GitHub Copilot Chat for enterprise customers and organizations. This release... - [The Dirty Truth About IT Offboarding Automation](https://petri.com/it-offboarding-automation-nudge-security/): Nudge Security’s IT offboarding playbook can help organizations save up to 90% of the time and effort in SaaS offboarding by streamlining time-consuming tasks. - [Splunk Announces New Partnership with Microsoft to Boost Digital Resilience](https://petri.com/splunk-partnership-microsoft-digital-resilience/): Splunk Inc. announced this week a new strategic partnership with Microsoft. The new deal will enable both companies to build... - [New Microsoft 365 Backup Solution to Launch in Preview for Exchange, SharePoint, and OneDrive](https://petri.com/microsoft-365-backup-exchange-sharepoint-onedrive/): Microsoft unveiled a couple of new additions to the Microsoft 365 ecosystem at its Inspire 2023 conference this week. The... - [Microsoft Expands Free Access to Cloud Security Logs Following Exchange Hacks](https://petri.com/microsoft-free-access-cloud-security-logs/): Microsoft announced yesterday that it will provide organizations access to expanded cloud logging data at no additional cost to prevent... - [First Ring Daily: Microsoft's AI Now Has a Price](https://petri.com/first-ring-daily-microsoft-365-copilot-pricing/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s pricing model for the Microsoft 365... - [Microsoft Launches Sales Copilot, Teases New Customer Insights Tools](https://petri.com/microsoft-sales-copilot-customer-insights-tools/): Microsoft has announced the general availability of its Sales Copilot at Inspire 2023 conference. The company is also bringing new... - [Microsoft Releases Hotpatch Support for Windows Server Virtual Machines with Desktops](https://petri.com/hotpatch-windows-server-virtual-machines-with-desktops/): Microsoft has announced that hotpatch support is now generally available for Windows Server Azure Edition VMs running the Desktop experience.... - [Troubleshooting Guide: Fixing the "User Profile Service Failed The Sign-In" Error](https://petri.com/user-profile-service-failed-the-sign-in-error/): Here's how to fix "User profile service failed the sign-in" errors and regain access to your user account on Windows 10. - [Microsoft to Distribute Llama 2, Meta's Open-Source Alternative to OpenAI LLM Models](https://petri.com/microsoft-to-distribute-meta-llama-2-ai-model/): Microsoft will be Meta’s preferred partner to distribute Llama 2, the company’s next-gen and open-source large language model (LLM) designed for commercial use. - [Microsoft Announces Bing Chat Enterprise and Microsoft 365 Copilot Pricing](https://petri.com/microsoft-365-copilot-monthly-cost/): Microsoft announced this morning the pricing details of its Microsoft 365 Copilot tool alongside a new version of its Bing... - [Nasuni Unveils New Features, Integration with Microsoft Sentinel to Protect File Data Against Security Threats](https://petri.com/nasuni-integration-microsoft-sentinel/): Nasuni has announced a new integration with Microsoft Sentinel. This release enables organizations to automatically detect security threats and initiate... - [Microsoft Edge Workspaces Now Generally Available for Enterprise Customers](https://petri.com/microsoft-edge-workspaces-enterprise-customers/): Microsoft has announced that the Edge Workspaces feature is now generally available for enterprise customers. The new collaboration experience launched... - [Microsoft Shares More Details About Chinese Cyberattack That Breached Exchange Email Accounts](https://petri.com/microsoft-hack-exchange-email-accounts/): Last week, Microsoft confirmed that Chinese hackers gained unauthorized access to email accounts of U. S. government agencies and other... - [SQL Server Essentials: Using SQL COALESCE](https://petri.com/sql-coalesce/): The SQL COALESCE expression can help you to process Null values that are returned by your queries. Here's how to use this function to enhance the data presentation of your queries. - [Microsoft Intune Lets IT Admins Configure Windows 365 Alerts for Cloud PCs in Grace Periods](https://petri.com/microsoft-intune-windows-365-alerts-grace-periods/): Microsoft has added support for new system-based alerts in public preview for Windows 365 Enterprise customers. The new feature enables... - [Microsoft Entra ID Adds Restricted Management Administrative Units in Preview](https://petri.com/microsoft-entra-id-restricted-management-administrative-units/): Microsoft has introduced restricted management administrative units support in public preview for Microsoft Entra ID. The new role-based access control... - [What is Amazon Kinesis Data Firehose?](https://petri.com/what-is-amazon-kinesis-data-firehose/): Amazon Kinesis Data Firehose is a fully managed service for efficiently streaming data from virtually any data source to your... - [Microsoft Edge for Business to Be Enabled By Default Next Month](https://petri.com/microsoft-edge-for-business-enabled-by-default/): Microsoft Edge for Business will soon become the default experience for all enterprise customers. Microsoft has announced its plans to... - [Windows 11 Version 23H2 to be Released as an Enablement Package in Q4 2023](https://petri.com/windows-11-version-23h2-enablement-package/): Microsoft announced yesterday that Windows 11 version 23H2 will be released as an enablement package in the fourth quarter of 2023. - [Microsoft Defender for Endpoint Adds Device Isolation and Antivirus Scanning Support on Linux and macOS](https://petri.com/microsoft-defender-for-endpoint-device-isolation/): Microsoft Defender for Endpoint has announced that Device isolation and Antivirus scanning capabilities are now available in preview for macOS... - [Microsoft Says Chinese Hackers Compromised Exchange Email Accounts](https://petri.com/microsoft-hackers-exchange-email-accounts/): Microsoft has disclosed that Chinese hackers breached the email accounts of US government employees. The hacking group (tracked as Storm-0558)... - [GitHub Adds Support for Passkeys in Public Beta for Passwordless Authentication](https://petri.com/github-passkeys-passwordless-authentication/): GitHub announced this morning that it has added support for passkeys in public beta. The passkeys feature is a standardized... - [First Ring Daily: Amazon Opens its App Store on Windows 11 to All Android Apps](https://petri.com/first-ring-daily-amazon-app-store-windows-11-android-apps/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft Teams 3D avatars reaching general availability... - [Microsoft Rebrands Azure AD to Microsoft Entra ID](https://petri.com/azure-ad-rebrand-microsoft-entra-id/): Microsoft has announced that it will soon rebrand Azure Active Directory (Azure AD) as Entra ID. The name change will... - [Nested Microsoft 365 Groups: What You Need to Know](https://petri.com/nested-microsoft-365-groups/): Nested Microsoft 365 groups are a new feature available in Azure Active Directory. They refer to the practice of creating a group within another group using Azure AD dynamic groups. - [Microsoft Defender for Endpoint Lets IT Admins Natively Manage Security Settings](https://petri.com/microsoft-defender-for-endpoint-manage-security-policies/): Microsoft has released a new update that enables IT admins to manage security configuration settings directly in Microsoft Defender for... - [July Patch Tuesday Updates Are Out With 'Moment 3' Features](https://petri.com/july-2023-patch-tuesday-windows-11-moment-3/): Microsoft’s July Patch Tuesday updates include fixes for 130 vulnerabilities, and the 'Moment 3' features are now enabled by default on Windows 11 version 22H2. - [Microsoft to End Windows 11 version 21H2 Support on October 10](https://petri.com/microsoft-end-support-windows-11-version-21h2/): Microsoft is getting ready to end support for Windows 11 version 21H2. The company updated its support life cycle page... - [Microsoft Entra Gets New Identity and Access Management Solutions](https://petri.com/microsoft-entra-updates/): Microsoft has announced a slew of updates for its Microsoft Entra product family. The company detailed two new security offerings,... - [Microsoft Dev Box Goes Out of Preview](https://petri.com/microsoft-dev-box-cloud-workstation/): Microsoft launched its Dev Box cloud-powered workstations in public preview back in August 2022. The company announced yesterday that it... - [Clickstream Analytics on AWS Launches to Enhance Data Visualization in Mobile and Web Apps](https://petri.com/clickstream-analytics-on-aws-mobile-web-apps/): Amazon Web Services (AWS) has announced a new end-to-end solution called Clickstream Analytics on AWS. The new service enables customers... - [Visual Studio Code 1.80 is Out with Terminal Image Support and More](https://petri.com/visual-studio-code-1-80/): Microsoft has announced the release of the latest version of Visual Studio Code. The July 2023 Update (version 1. 80)... - [Cisco Discloses New Flaw in Enterprise Switches That Lets Hackers Intercept Encrypted Traffic](https://petri.com/cisco-nexus-9000-series-vulnerability/): Cisco has recently warned customers about a new high-severity vulnerability that affects select data center switch models. The security flaw,... - [How To Enable Archive Mailboxes In Office 365](https://petri.com/enable-archive-mailbox-office-365/): Here's how to enable archive mailboxes in Office 365 to allows users to offload and preserve older emails, documents, and other data using in-place archiving. - [Windows Autopatch Gets New Capabilities for its First Anniversary](https://petri.com/microsoft-updates-windows-autopatch/): Microsoft has detailed several updates to celebrate the first anniversary of Windows Autopatch. The new capabilities that are designed to... - [Windows 365 Frontline is Now Generally Available for Hybrid Workforces](https://petri.com/microsoft-windows-365-frontline/): Microsoft announced yesterday the general availability of its Windows 365 Frontline service. The new offering launched in public preview in... - [What's New With Microsoft's Power Platform in June 2023](https://petri.com/microsoft-power-platform-june-2023-updates/): This month's Power Platform additions include delegation improvements for Power Apps, coauthoring in model-driven App Designer, and more. - [Critical FortiGate Vulnerability Affects 336,000 Vulnerable Firewalls](https://petri.com/fortigate-vulnerability-firewalls/): Researchers have developed an exploit for a new critical vulnerability in the FortiGate firewall that affects around 336,000 Internet-exposed devices.... - [How to Use Microsoft 365 Dynamic Groups to Streamline Access Management](https://petri.com/microsoft-365-dynamic-groups/): In today’s dynamic business landscape, managing user access to resources is critical for organizations. Azure Active Directory (AAD), a comprehensive... - [Microsoft Teams 2.0 to Become Default Client on Windows in September](https://petri.com/microsoft-teams-2-0-default-client-windows/): Microsoft is getting ready to make its new Teams 2. 0 client available for all users. As of today, the... - [Microsoft Entra Workload Identities Service Adds Support for App Health Recommendations](https://petri.com/microsoft-entra-workload-app-health-recommendations/): Microsoft has introduced support for app health recommendations in Microsoft Entra Workload Identities. The feature provides insights with actionable guidance... - [SQL Server Essentials: Using the SQL LIKE Operator](https://petri.com/sql-like/): Here's how the SQL LIKE operator can enhance the power and flexibility of the SQL SELECT statement by letting you select rows that are based on partial values. - [Microsoft Teams Meetings Get New Spatial Audio Experience, Together Mode Improvements](https://petri.com/microsoft-teams-june-2023-updates/): Microsoft has shared the latest round of updates made to its Teams collaboration platform in June 2023. The company released... - [How Microsoft Teams Meeting Notes Can Supercharge Your Meeting Efficiency](https://petri.com/microsoft-teams-meeting-notes/): Here's how to use the new Microsoft Teams Meeting Notes to record the agenda, create discussion points, action items, and share important information with colleagues. - [Microsoft, Moody's Partner to Empower Financial Services with Generative AI Tools](https://petri.com/microsoft-moodys-generative-ai/): Microsoft has announced a new strategic partnership with New York-based financial risk assessment firm Moody’s. The company explained that the... - [Microsoft Confirms New Windows Bug Affecting Some Endpoint Security Tools](https://petri.com/microsoft-windows-bug-security-tools/): Microsoft has acknowledged a new compatibility issue with Trellix’s endpoint security software and some Windows 11 and Windows 10 devices.... - [Windows Copilot Preview is Now Available for Insiders](https://petri.com/windows-copilot-preview-dev-channel-insiders/): The first Windows Copilot preview is now available for a subset of Insiders on the Dev Channel. Microsoft plans to add new features to its new AI Assistant on Windows 11. - [Microsoft Rebrands Yammer Web Experience to Viva Engage](https://petri.com/microsoft-rebrands-yammer-viva-engage/): Earlier this year, Microsoft unveiled its plans to ditch the Yammer brand in favor of Viva Engage. Now, the company... - [Microsoft Adoption Score Feature Now Generally Available for Commercial Customers](https://petri.com/microsoft-adoption-score-commercial-customers/): Microsoft has released new updates to improve Adoption Score, Usage Reports, and Experience insights in the Microsoft 365 admin center.... - [Microsoft Partners with Rubrik to Enhance Incident Response with Generative AI](https://petri.com/microsoft-rubrik-incident-response/): Microsoft has announced a new partnership with Zero Trust cybersecurity vendor Rubrik. The deal will allow enterprise customers to utilize... - [First Ring Daily: Windows 11 Moment 3 Approaches, Windows Copilot Still MIA](https://petri.com/first-ring-daily-windows-11-moment-3-windows-copilot-mia/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Windows 11 Moment 3 now being available... - [Grafana Patches Critical Azure AD Authentication Bypass Vulnerability](https://petri.com/grafana-azure-ad-authentication-bypass-flaw/): Grafana has recently released new security updates to patch a critical vulnerability in its application. The flaw could enable threat... - [Implementing Access Controls using Microsoft Intune](https://petri.com/microsoft-intune-suite-endpoint-management/): Here's how organizations can significantly minimize their exposure by controlling access privileges with Microsoft Intune. - [Microsoft Reportedly Working on Windows 365 Cloud PC Offering for Consumers](https://petri.com/windows-365-cloud-pc-consumers/): Microsoft could be working to launch a consumer version of its Windows 365 Cloud PC service. According to a new... - [June 2023 Preview Release Brings 'Moment 3' Features to Windows 11](https://petri.com/windows-11-moment-3-june-2023-preview-release/): Microsoft made the Windows 11 Moment 3 update available with the optional June 2023 preview release yesterday. - [Microsoft Details Onboarding Requirements for Microsoft 365 Copilot](https://petri.com/microsoft-365-copilot-requirements/): Last month, Microsoft announced the launch of its Microsoft 365 Copilot Early Access Program. Now, the company has detailed a... - [Microsoft Teams Adds New Notetaking Experience to Channels](https://petri.com/microsoft-teams-notes-tab-channels/): Microsoft has started rolling out a new Notes tab to Microsoft Teams for Enterprise customers. Powered by OneNote, the Notes... - [Microsoft Teams External Access Vulnerability Lets Attackers Deliver Malware](https://petri.com/microsoft-teams-external-access-vulnerability/): Security researchers have recently discovered a new vulnerability in Microsoft Teams. The flaw could enable threat actors to deliver malware... - [Microsoft Intune Adds Mobile Application Management Support for Microsoft Edge](https://petri.com/microsoft-intune-mam-for-edge-on-windows/): Microsoft has announced the release of the June 2023 service release (2306) for Microsoft Intune. The latest update brings Mobile... - [Microsoft Confirms New High CPU Usage Bug in Windows 11 File Explorer](https://petri.com/microsoft-high-cpu-usage-windows-11-file-explorer/): Microsoft has acknowledged a new issue that causes high CPU usage in Windows 11 versions 21H2 and 21H2. The File... - [Mitigating Identity-Related Risks With Windows Hello for Business and Seamless Single Sign-On (SSO)](https://petri.com/windows-hello-for-business-single-sign-on/): Here's how Windows Hello for Business and seamless single sign-on (SSO) can help organizations to mitigate many identity-related risks. - [Microsoft Patches Critical 'nOAuth' Flaw in Azure AD Apps](https://petri.com/microsoft-noauth-flaw-azure-ad-apps/): Microsoft has patched a new security vulnerability that was discovered in some applications leveraging Azure Active Directory (recently renamed Microsoft... - [Microsoft 365 Customers Locked Out of Outlook, Teams, and Other Apps](https://petri.com/microsoft-365-customers-locked-out-outlook-teams/): If you have recently encountered issues accessing Microsoft Teams, Outlook, and other Microsoft 365 apps, you’re not alone. Several IT... - [What is AWS Lambda?](https://petri.com/what-is-aws-lambda/): AWS Lambda is an event-driven serverless computing platform on the AWS cloud. Learn how AWS Lambda works and what are the best use cases for this platform. - [Dev Home Preview 0.2 Now Available With Several Improvements and Bug Fixes](https://petri.com/dev-home-preview-0-2-release/): Microsoft has announced the release of the 0. 2 preview version of the Dev Home app for Windows 11. The... - [Google Takes on Microsoft with New Antitrust Complaint Over Cloud Practices](https://petri.com/google-microsoft-antitrust-cloud-practices/): Google has officially filed an antitrust complaint against Microsoft with the Federal Trade Commission (FTC), according to a report from... - [How to Import PST Files to Office 365](https://petri.com/import-pst-to-office-365/): Here's how to import PST files to Office 365 using either Outlook or the Microsoft Purview Compliance portal and Azure AzCopy. - [Microsoft to Fix Slow Startup or Freezing Issues in Outlook](https://petri.com/microsoft-outlook-slow-startup-freezing/): Microsoft is working to fix a bug causing Outlook to become unresponsive on the startup screen for a while before... - [ASUS Routers Get New Firmware Updates to Patch Critical Vulnerabilities](https://petri.com/asus-routers-firmware-updates-vulnerabilities/): ASUS has rolled out a new set of firmware updates to address critical vulnerabilities in its several router models. The... - [Microsoft Bookings Mobile Apps to Be Retired Next Month](https://petri.com/microsoft-bookings-mobile-apps-retire/): Microsoft is getting ready to sunset its Bookings mobile apps next month. The apps will be retired on July 15,... - [The Ultimate Guide to Web Application Firewalls (WAF)](https://petri.com/web-application-firewall/): An often-overlooked element of security is the Web Application Firewall (WAF), especially in cloud computing. In this article, I explain... - [Microsoft Azure Firewall Adds New Upgrade/Downgrade Experience](https://petri.com/azure-firewall-upgrade-downgrade/): Microsoft has released a new upgrade/downgrade experience for Azure Firewall. The feature allows customers to switch between the Azure Firewall... - [First Ring Daily: New Outlook to Replace Mail and Calendar Apps in 2024](https://petri.com/first-ring-daily-outlook-windows-11-mail-app/): In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft’s plan to replace the Windows 11... - [Microsoft Defender for Endpoint Eases Enrollment Requirements for Devices Managed via Intune](https://petri.com/microsoft-defender-for-endpoint-device-enrollment-intune/): Microsoft has announced some changes coming to the security settings management capabilities in Microsoft Defender for Endpoint this month. The... - [How To Block Senders in Office 365](https://petri.com/microsoft-office-365-block-sender/): Here are all the different methods IT pros can use to block senders in Office 365, including using the the Tenant Allow/Block List in the Microsoft 365 Defender portal - [Microsoft Confirms Recent Cloud Outages Caused By Storm-1359 DDoS Attacks](https://petri.com/microsoft-outages-ddos-attacks/): Earlier this month, Microsoft confirmed a major outage that affected Azure, Outlook, Teams, and other Microsoft 365 services. The company... - [[Updated] Microsoft's New Outlook for Windows Client to Replace Mail and Calendar Apps in 2024](https://petri.com/outlook-for-windows-replace-mail-and-calendar-apps/): Microsoft is getting ready to replace the UWP Mail and Calendar apps with the new Outlook desktop client for Windows.... - [The Role of Identity Threat and Detection Response in Zero Trust Security](https://petri.com/the-role-of-identity-threat-and-detection-response-in-zero-trust-security/): I recently spoke to Sean Deuby, who is Principal Technologist at Semperis and an Identity expert. Sean told me about... - [Microsoft Teams Gets New Collaborative Meeting Notes Experience](https://petri.com/microsoft-teams-collaborative-meeting-notes/): Microsoft Teams is getting a new collaborative meeting notes feature to improve the meeting experience. This release enables participants to... - [Microsoft Adds New Copilot AI Capabilities to Dynamics 365 ERP](https://petri.com/dynamics-365-erp-copilot-ai-capabilities/): Microsoft has announced new AI-powered Copilot features for Microsoft Dynamics 365 enterprise resource management (ERP) solutions. The new Copilot capabilities... - [How to Get Started With Exchange Online Archiving](https://petri.com/enable-exchange-online-archiving/): Exchange Online Archiving allows your users to continue to work when their email storage becomes an issue. Here's how to enable Exchange Online Archiving with the GUI and PowerShell. - [Microsoft Introduces Win32 App Isolation Support to Boost Security on Windows 11](https://petri.com/win32-app-isolation-windows-11/): Microsoft unveiled its plans to introduce Win32 app isolation support in Windows 11 at its Build 2023 conference. The company... - [Intel Reveals New Core Branding For its Upcoming Meteor Lake CPUs](https://petri.com/intel-meteor-lake-cpus-branding-changes/): Intel will simplify the branding of its Meteor Lake CPUs by dropping the “i” letter for processor tiering, and it’s also creating a new Ultra label for premium models. - [Microsoft Now Sells  Replacement Parts for Surface Tablets, Laptops, and All-in-Ones](https://petri.com/microsoft-now-sells-surface-replacement-parts/): To improve the repairability and durability of its various Surface devices, Microsoft has started selling official Surface replacement parts on its Microsoft Store. - [Microsoft Releases Azure Firewall Structured Logs Feature to Troubleshoot Network Issues](https://petri.com/microsoft-azure-firewall-structured-logs/): Microsoft has announced the general availability of Azure Firewall structured logs. The new feature brings an improved logging experience for... - [Microsoft Drops Support for Windows 10 Version 21H2](https://petri.com/microsoft-support-windows-10-version-21h2/): Microsoft has officially dropped support for Windows 10 version 21H2. The company announced yesterday that it will no longer ship... - [SQL Server Essentials: Installing SQL Server Management Studio and Azure Data Studio](https://petri.com/install-sql-server-management-studio/): Here's how to download and install SQL Server Management Studio and Azure Data Studio, which are the two primary management and development tools for SQL Server. - [Microsoft Releases June 2023 Patch Tuesday Updates](https://petri.com/microsoft-releases-june-2023-patch-tuesday-updates/): The June 2023 Patch Tuesday updates for Windows 11 and Windows 10 include fixes for 69 vulnerabilities. Microsoft is also adding support for Bluetooth Low Energy audio on Windows 11. - [Microsoft Says Recent Azure Outage Was Caused By 'Huge Spike' in Network Traffic](https://petri.com/microsoft-azure-outage-spike-traffic/): Last week, Microsoft acknowledged an issue that triggered connectivity issues on its Azure portal. Now, the company has confirmed that... - [UnplugIT Episode 2 - In The Loop](https://petri.com/unplugit-episode-2-in-the-loop/): In this episode, I sit down with Microsoft MVP, Darrell (As A Service) Webster where we deep dive into Microsoft... - [Microsoft Defender for Endpoint Adds New Monthly Security Summary Report](https://petri.com/microsoft-defender-endpoint-monthly-security-summary/): Microsoft Defender for Endpoint has introduced a new monthly security summary report in public preview. The new tool enables IT... - [IT Admins Can Now Set Up Multi-App Kiosk Mode on Windows 11 PCs](https://petri.com/multi-app-kiosk-mode-windows-11/): Last year, Microsoft started testing a new multi-app kiosk mode for Windows 11. The company announced yesterday that the new... - [GitHub Enterprise Importer Tool Launches to Make Cloud Migrations Easier](https://petri.com/github-enterprise-importer-tool/): Microsoft-owned GitHub has launched a new GitHub Enterprise Importer tool. The new service enables developer teams to migrate their code,... - [Microsoft Teams Certified Devices Let Users Join Meetings From the Pre-Join Screen](https://petri.com/microsoft-teams-certified-devices-updates/): Microsoft has released two new capabilities for Microsoft Teams certified devices. The first feature allows participants to use the Teams... - [Microsoft 365 Defender Now Supports Threat-Informed Security Posture Recommendations](https://petri.com/microsoft-365-defender-security-posture-recommendations/): Microsoft has released a new threat-informed security posture recommendations feature for Microsoft 365 Defender. This capability provides recommendations to help... - [How To Export An Office 365 Mailbox To PST: A Complete Guide](https://petri.com/export-mailbox-to-pst/): Here's how export an Office 365 mailbox to PST using eDiscovery content search and the Outlook for Windows client. - [Microsoft's Outlook Web App to Retire Calendar Board View This Month](https://petri.com/microsoft-outlook-calendar-board-view/): Microsoft is getting ready to deprecate the calendar board view (aka Project Moca) in the Outlook web app. The company... - [Microsoft Defender for IoT Switches to New Site-Based Licensing Model](https://petri.com/microsoft-defender-iot-site-based-licensing/): Microsoft has introduced a new site-based licensing model for its Microsoft Defender for IoT solution. This change aims to help... - [Google Password Manager to Add Support for Biometric Authentication for Desktop Users](https://petri.com/google-password-manager-biometric-authentication/): Google has released several new security features to improve the built-in Password Manager in its Chrome browser. As of today,... - [How to Connect to Exchange Online Using PowerShell](https://petri.com/connect-to-exchange-online-powershell/): Exchange Online PowerShell is a command-line tool that allows you to manage your Exchange Online mailboxes and users. Here's how to connect to Exchange Online PowerShell. - [Microsoft to Retire Old Exchange Admin Center for Exchange Online Customers This Month](https://petri.com/microsoft-retire-old-exchange-admin-center/): Microsoft unveiled its plans to retire the old Exchange Admin Center (EAC) in 2021. The company has announced that the... - [Microsoft Launches New C# Dev Kit for Visual Studio Code in Preview](https://petri.com/microsoft-c-dev-kit-visual-studio-code/): Microsoft has announced the release of a preview version of the C# Dev Kit for Visual Studio Code. It’s a... - [Microsoft Releases Azure OpenAI Service for Government Customers](https://petri.com/azure-openai-service-government-customers/): Microsoft announced yesterday that its Azure OpenAI Service is now available for Azure Government customers. The new service will allow... - [Google Opens Pre-Orders for Duet AI for Google Workspace Enterprise](https://petri.com/duet-ai-for-google-workspace-enterprise-preorders/): Google has opened pre-orders for Duet AI for Google Workspace Enterprise, a new collection of generative AI features for its cloud-based productivity suite. - [Microsoft Entra ID Governance Service is Now Generally Available](https://petri.com/microsoft-entra-id-governance/): Microsoft announced this morning the general availability of Microsoft Entra ID Governance service. The new cost-effective solution is designed to... - [Google Workspace Introduces Passkey Support to Protect Users Against Phishing Attacks](https://petri.com/google-workspace-passkey/): Last month, Google introduced passkey support for consumer Google accounts. The company has now expanded the passwordless login solution to... - [Microsoft Lets IT Admins Move Windows 365 Cloud PCs to Another Region](https://petri.com/microsoft-move-windows-365-cloud-pcs/): Microsoft has released a new update for its Windows 365 Enterprise service. The company detailed a new feature that allows... - [SQL Server Essentials: Using SQL Cross Joins](https://petri.com/sql-cross-join/): SQL Cross Join queries generate a paired combination of each row of a first table with each row of a second table. Here's how to use an SQL Cross Join. - [Microsoft Teams Adds New Visio App to Improve the Diagramming Experience](https://petri.com/microsoft-teams-visio-app/): Microsoft has announced today that Visio is now available as a personal app in Microsoft Teams. The new app comes... - [Microsoft Loop Components to Sync Task Lists with Planner and To Do](https://petri.com/loop-components-task-lists-planner-to-do/): Microsoft has announced a new integration that will let users sync their task lists between Loop components and Microsoft Planner... - [[Update] Microsoft 365 Services Hit With Another Outage Causing Connectivity Issues](https://petri.com/microsoft-365-outage/): Microsoft Outlook went down for almost 8 hours on Monday, along with Teams, OneDrive for Business, SharePoint Online, and other... - [Apple's M2 Ultra Mac Pro Completes the Mac Transition to Apple Silicon](https://petri.com/apple-m2-ultra-chip-mac-pro/): Apple unveiled yesterday a new M2 Ultra chip that is coming to its desktop workstations, the Mac Studio and the Mac Pro. - [Microsoft Teams Meetings Get New Zoom Controls to Improve Screen Sharing](https://petri.com/microsoft-teams-zoom-controls-meetings/): Microsoft has released a new zoom controls feature in preview for Microsoft Teams. This update allows participants to zoom in... - [Microsoft to Block Outlook Web App on Unsupported Browsers in Fall 2023](https://petri.com/microsoft-outlook-web-app-unsupported-browsers/): Microsoft plans to redirect all users with unsupported browsers to the light version of the Outlook web app. The company... - [How to Whitelist a Domain in Office 365](https://petri.com/whitelist-domain-office-365/): Here's how to whitelist a domain in Office 365 using a mail flow rule, the Microsoft 365 Defender portal, and PowerShell. - [Microsoft to Enable SMB Signing By Default to Boost Security on Windows 11](https://petri.com/microsoft-smb-signing-by-default-windows-11/): Microsoft has announced some important changes coming to Server Message Block (SMB) signing on Windows 11 Enterprise edition. Starting with... - [Microsoft Starts Testing New Search Experience in Word, Excel, and PowerPoint for Mac](https://petri.com/search-experience-word-excel-powerpoint-for-mac/): Microsoft has started rolling out a new search experience in preview to Microsoft Word, Excel, and PowerPoint for Mac. The... - [How to Enable Auto Login on Windows 10](https://petri.com/auto-login-windows-10/): Here's how to auto login Windows 10 to reach the desktop environment without requiring users to enter a username and password. - [Microsoft's New Authentication Strength Feature Provides More Control Over CA Policies](https://petri.com/conditional-access-authentication-strength/): Microsoft has announced the general availability of Conditional Access authentication strength policies for Azure Active Directory (Azure AD). The new... - [What's New With Microsoft's Power Platform – May 2023](https://petri.com/microsoft-power-platform-may-2023-updates/): At its Build developer conference, Microsoft showed us how its powerful AI Copilot is making its way into various Power Platform and Microsoft 365 products. - [Microsoft Discloses New 'Migraine' Flaw That Bypasses Built-In Protections on macOS](https://petri.com/microsoft-migraine-flaw-macos/): Microsoft has discovered a new macOS vulnerability dubbed Migraine. The company detailed in its security advisory that the flaw allows... - [Microsoft Teams Adds Active Speaker View, 3D Avatars, and Other New Features](https://petri.com/microsoft-teams-active-speaker-view-3d-avatars/): Microsoft has detailed all the improvements made to its Teams collaboration service in May 2023. The major highlights include a... - [What's New in Windows – May 2023](https://petri.com/whats-new-windows-may-2023/): Last month was packed with Windows announcements as Microsoft announced Windows Copilot, Dev Home, and more at its annual Build developer conference. - [Microsoft Releases Cross-Tenant Synchronization for Seamless Azure AD B2B Collaboration](https://petri.com/cross-tenant-synchronization-azure-ad/): Microsoft has announced the general availability of cross-tenant synchronization for Azure Active Directory (recently renamed Microsoft Entra ID) customers. The... - [Amazon Security Lake is Now Generally Available](https://petri.com/amazon-security-lake/): Amazon Web Services (AWS) has announced that Amazon Security Lake is hitting general availability this week. The new service enables... - [How to Enable Azure AD Password Protection: A Step-by-Step Guide](https://petri.com/azure-ad-password-protection/): Azure AD Password Protection prevents users in your tenant from using simple or known-hacked passwords. Here's a complete guide for implementing this solution. - [Microsoft Teams Premium Adds New AI-Powered Intelligent Recap Feature for Meetings](https://petri.com/microsoft-teams-premium-intelligent-recap/): Microsoft announced yesterday that the AI-based intelligent recap feature is now generally available for Microsoft Teams Premium subscribers. Powered by... - [Microsoft Will Make Teams 2.0 the Default Client Later This Year](https://petri.com/microsoft-teams-2-0-default-windows-client/): The new Microsoft Teams 2.0 client that Microsoft made available in public preview in late March will become the default app for Windows users later this year. - [Unplugging What’s Next for Teams 2.0](https://petri.com/unplugging-whats-next-for-teams-2-0/): In this first episode, Stephen talks to Microsoft’s Anupam Pattnaik, Product Lead for Teams. In this inaugural show, Stephen and... - [Stephen L Rose Joins Petri.com as Chief Technology Strategist](https://petri.com/stephen-l-rose-joins-petri-com-as-chief-technology-strategist/): I’m delighted to announce that Stephen L Rose has joined Petri. com as Chief Technology Strategist. For those who don’t... - [Microsoft Releases Tenant Restriction v2 to Ensure Secure External Collaboration](https://petri.com/microsoft-tenant-restriction-v2/): Microsoft has recently announced the release of tenant restrictions version 2 (TRv2) for commercial cloud customers. The latest release enables... - [First Ring Daily - Stephen Rose Talks Build 2023](https://petri.com/first-ring-daily-stephen-rose-talks-build-2023/): In this episode of First Ring Daily, Stephen Rose, Petri’s Chief Technology Strategist, talks to Paul and Brad about the... - [Microsoft Authenticator Lite is Now Generally Available for Outlook Mobile Apps](https://petri.com/microsoft-authenticator-lite-outlook-mobile/): Microsoft released the public preview of Authenticator Lite for its Outlook mobile apps back in March 2023. The company has... - [Nvidia Announces New Hardware and Services for Enterprise AI at Computex](https://petri.com/computex-nvidia-dgx-gh200-ai-supercomputer/): Nvidia announced several new AI products at Computex including the Nvidia DGX GH200 AI supercomputer and the Nvidia MGX modular server specification. - [Microsoft Outlook, Edge, and Viva Engage Now Available on Shared Android Devices](https://petri.com/microsoft-outlook-shared-device-mode-android/): Microsoft has announced that Microsoft Outlook, Edge, Viva Engage, and Power Apps are generally available on shared Android devices. The... - [SQL Server Essentials: How to Create a Simple Backup Job in SQL Server](https://petri.com/create-sql-server-backup-job/): Read this tutorial to learn how to create SQL Server backup jobs using SQL Server Management Studio (SSMS). - [Microsoft Warns Chinese Volt Typhoon Hacking Group Infects Critical US Infrastructure](https://petri.com/microsoft-volt-typhoon-critical-us-infrastructure/): Microsoft has discovered that a Chinese government hacking group dubbed Volt Typhoon is targeting critical infrastructure environments in the United... - [Microsoft is Investigating File Copying/Saving Failures on Windows 11](https://petri.com/windows-11-file-copying-saving-failures/): Microsoft is investigating a new issue that causes failures while copying and saving files on Windows devices. The company has... - [Build 2023 - AI Hype or Should You Adopt Early?](https://petri.com/build-2023-ai-hype-or-should-you-adopt-early/): This Week in IT, Stephen Rose meets Richard Campbell, host of RunAs Radio, to discuss all the major AI announcements... - [Microsoft Introduces New Dev Home App to Boost Developer Productivity](https://petri.com/microsoft-introduces-dev-home/): Microsoft has unveiled several new tools and capabilities for Windows 11 at its Build 2023 developer conference this week. One... - [Microsoft Entra Introduces New Identity and Access Management Capabilities](https://petri.com/microsoft-entra-external-id-preview/): Microsoft announced yesterday that its Entra External ID solution will hit general availability this summer. The new service seamlessly integrates... - [Microsoft Lets Users Boot Windows 11 Devices Straight into Windows 365 Cloud PCs](https://petri.com/windows-365-boot-public-preview/): Microsoft kicked off its Build developer conference yesterday, where it unveiled several new features for enterprise customers. The company also... - [How to Enhance your Home Lab with the Microsoft 365 Developer Program](https://petri.com/microsoft-365-developer-program/): The Microsoft 365 Developer Program is a free program that gives developers the tools, and support they need to build great solutions for Microsoft 365. - [Microsoft Announces New Native Developer Tools on Windows on ARM](https://petri.com/microsoft-build-2023-windows-on-arm-updates/): Microsoft Announced at its Build developer conference today that new developer tools are available natively on Windows on ARM PCs. - [Microsoft Dev Box Adds New Features Ahead of its General Availability in July](https://petri.com/microsoft-dev-box-new-features-july-2023-availability/): Microsoft Dev Box, the Azure-based service that lets developers access a cloud-based workstation is getting new features ahead of its July 2023 availability. - [Microsoft's Azure Deployment Environments Service Now Generally Available](https://petri.com/microsoft-azure-deployment-environments/): Microsoft has announced the general availability of Azure Deployment Environments. It’s a new managed service that lets developers use infrastructure-as-code... - [Microsoft Fabric Brings New AI-Powered Data Analytics Features to Boost Productivity](https://petri.com/microsoft-fabric-data-analytics/): Microsoft kicked off its Build 2023 conference today, and the company announced several updates for its products and services. Arun... - [GitHub Expands Security Tools to Protect Azure DevOps](https://petri.com/github-advanced-security-azure-devops/): Microsoft has launched GitHub Advanced Security for Azure DevOps in public preview today. The new service is designed to help... - [Microsoft Mesh Mixed-Reality Collaboration Platform Enters Private Preview](https://petri.com/microsoft-mesh-private-preview/): Microsoft has unveiled a range of new updates for its Microsoft 365 ecosystem at its annual Build developer conference. The... - [Microsoft Edge for Business Launches with New Enterprise Features](https://petri.com/microsoft-edge-for-business-preview/): Microsoft has announced a slew of improvements coming to its Edge browser at Build 2023. The new features include Microsoft... - [Windows Copilot Brings AI Personal Assistant to Windows 11](https://petri.com/windows-copilot-build-2023/): Today at Build 2023, Microsoft announced Windows Copilot for Windows 11. As the first PC operating system to include integrated... - [Microsoft 365 Copilot Gets Support for Plugins](https://petri.com/microsoft-365-copilot-plugins/): At its Build 2023 developer conference, Microsoft detailed some important updates for its Microsoft 365 apps. The company announced this... - [Microsoft Teams to Add New Collaborative Stageview for Virtual Meetings](https://petri.com/microsoft-teams-collaborative-stageview/): Microsoft is working on a new Collaborative Stageview feature for Microsoft Teams. The company has announced on the Microsoft 365... - [Amazon Detective Gets New Features to Bolster Analysis of AWS Security Findings](https://petri.com/amazon-detective-aws-security-findings/): Last week, Amazon Web Services (AWS) announced that its Amazon Detective service is getting a new integration with AWS Security... - [How Destructive Testing Can Make Your Disaster Recovery Plans More Robust](https://petri.com/disaster-recovery-testing/): If you don’t implement disaster recovery testing, you won’t know if your DR plans will work when needed. You should also break your DR plans to improve them. - [Microsoft Lets IT Admins Remove Internet Explorer References From Windows 10](https://petri.com/microsoft-internet-explorer-references-windows-10/): Microsoft released an update to permanently disable Internet Explorer 11 (IE11) on Windows 10 back in February. Now, the company... - [How to Install and Configure Docker on Ubuntu 22.04](https://petri.com/install-docker-ubuntu/): Learn how to install Docker on Ubuntu 22.04 and everything you need to get started with Docker images and containers. - [Microsoft Releases AI-Powered Code Optimizations to Monitor .NET Apps](https://petri.com/microsoft-code-optimizations-net-apps/): Microsoft has announced the public preview of Code Optimizations for Azure Monitor. The new AI-powered service enables customers to detect... - [AWS to Invest $12.7 Billion into Indian Cloud Infrastructure by 2030](https://petri.com/aws-invest-12-7-billion-india/): Amazon Web Services (AWS) has announced its plans to invest $12. 7 billion into cloud infrastructure in India by 2030.... - [New Microsoft 365 Defender Feature Automatically Blocks Adversary-in-the-Middle Campaigns](https://petri.com/microsoft-365-defender-adversary-in-the-middle-attacks/): Microsoft 365 Defender is getting a new update that enables customers to detect and block adversary-in-the-middle (AiTM) attacks. The company... - [Latest Red Hat Enterprise Linux Release Brings New Features to Streamline IT Management Tasks](https://petri.com/red-hat-enterprise-linux-releases/): Red Hat has recently announced the general availability of Enterprise Linux 9. 2 and the upcoming release of Red Hat... - [Microsoft is Caught Scanning Password-Protected Zip Files on SharePoint Online](https://petri.com/microsoft-password-protected-zip-files-sharepoint/): A security researcher shared his surprise after Microsoft flagged some password-protected zip files he had stored on SharePoint Online as malware. - [Microsoft Acknowledges Slow VPN Connection Issues on Windows 11](https://petri.com/microsoft-slow-vpn-connection-windows-11/): Last week, Microsoft rolled out a new set of Patch Tuesday updates for all supported versions of Windows 10 and... - [Azure AD System-Preferred Multifactor Authentication is Now Generally Available](https://petri.com/azure-ad-system-preferred-multifactor-authentication/): Last year, Microsoft introduced the public preview of a system-preferred multifactor authentication (MFA) for Azure Active Directory (Azure AD). The... - [Azure Firewall Adds New Logging and Metrics Features to Enhance Traffic Analysis](https://petri.com/azure-firewall-logging-metrics/): Microsoft has announced new network traffic analysis capabilities for its Azure Firewall solution. The latest logging and metric improvements enable... - [Azure Container Storage Now Available in Public Preview](https://petri.com/azure-container-storage-preview/): Microsoft has announced the release of its Azure Container Storage solution. The new cloud-based service enables organizations to create and... - [EU Launches Informal Antitrust Probe into Microsoft Azure Cloud Services](https://petri.com/eu-antitrust-probe-microsoft-azure/): The European Union has opened an informal probe against Microsoft Azure cloud services. According to a report from Bloomberg, the... - [Microsoft Outlook Now Supports Improved Interoperability With Google Calendar](https://petri.com/outlook-google-calendar-interoperability-improvements/): Google announced this week that Calendar Interoperability improvements are now available for users of Microsoft Outlook. - [Microsoft Teams Chats and Channels to Get an Improved Search Experience](https://petri.com/microsoft-teams-chats-channels-search-experience/): Microsoft has announced some improvements coming to the search experience in Microsoft Teams chats and channels. The company highlighted a... - [PSA: Microsoft to End Support for Windows 10 Version 21H2 in June](https://petri.com/microsoft-end-support-windows-10-version-21h2/): Microsoft is reminding customers that Windows 10 version 21H2 will reach end of support next month. The company updated its... - [Google Announces Duet AI But Can It Compete with Microsoft 365 Copilot?](https://petri.com/google-announces-duet-ai-but-can-it-compete-with-microsoft-365-copilot/): Google shows off its competitor to Microsoft 365 Copilot, Duet AI, at its I/O conference this week. I look at... - [Azure AD Conditional Access Gets Token Protection for Sign-In Sessions in Preview](https://petri.com/azure-ad-conditional-access-token-protection/): Microsoft has recently introduced Token Protection for sign-in sessions support for its Azure AD Conditional Access service. The new feature... - [SQL Server Essentials: Using SQL Self Joins](https://petri.com/sql-self-join/): An SQL self join can be used for demonstrating relationships within a single SQL Server table database. Here's how and when to use an SQL self join. - [Microsoft Delivers Another Fix to Patch Outlook Privilege Escalation Vulnerability](https://petri.com/microsoft-outlook-privilege-escalation-vulnerability/): Microsoft has released a security update to address a critical Outlook vulnerability that affects all versions of Windows. The new... - [New Memory Integrity Scan Tool Lets Users Check for Compatibility Issues on Windows PCs](https://petri.com/memory-integrity-scan-tool-windows/): Microsoft has recently released a new tool that enables Windows users to detect compatibility issues with memory integrity (also known... - [Google Cloud Launches New A3 Supercomputers to Train Large AI Models](https://petri.com/google-cloud-a3-supercomputers/): Google announced the launch of its new A3 supercomputer virtual machines at Google I/O 2023. The company explained that the... - [Duet AI for Google Cloud Brings Code and Chat Assistance to Developers](https://petri.com/duet-ai-for-google-cloud-code-assistance/): With Duet AI for Google Cloud, Google gives developers an always-on AI assistant that can provide code suggestions and more. - [Google Introduces Duet AI With Generative AI Features for Workspace Users](https://petri.com/google-workspace-duet-ai/): Google has announced major updates for its Google Workspace suite of apps at the annual I/O conference. Dubbed Duet AI... - [Microsoft Entra Boosts Security New Tools and Capabilities to Thwart Cyberattacks](https://petri.com/microsoft-entra-updates-cyberattacks/): Microsoft has recently released several new security tools and features for its Microsoft Entra product family. These updates are designed... - [What Is a Home Lab and Do You Need One?](https://petri.com/what-is-a-home-lab/): If you're wondering what is a home lab this article explains what you need to set one up and how it can help you to progress throughout your IT pro career. - [Microsoft Releases Updates to Fix Secure Boot Flaw on Windows 10/11 and Windows Server](https://petri.com/microsoft-fix-secure-boot-flaw-windows/): Microsoft has released new security patches to address the BlackLotus UEFI security flaw in all supported versions of Windows 11... - [Webinar: Learn How to Keep Critical Web Apps Online and Sensitive Data Secure](https://petri.com/keep-web-apps-online-data-secure/): Do you know your WAF from your WAAP? Or your RASP from your WAF? This week, Petri is hosting a... - [Microsoft Releases May 2023 Patch Tuesday Updates for Windows 11 and Windows 10](https://petri.com/may-2023-patch-tuesday-updates-windows-11-10/): The May 2023 Patch Tuesday updates for Windows 11 and Windows 10 fix 38 vulnerabilities, and Microsoft also addressed Windows LAPS interoperability issues. - [AWS User Notifications Service Lets IT Admins View Notifications from Over 100 AWS Services](https://petri.com/aws-user-notifications-service/): Amazon has announced that AWS User notifications support is now generally available for enterprise customers. The new feature enables IT... - [Microsoft to Throttle Email Connections From Outdated Exchange Servers](https://petri.com/microsoft-throttle-email-exchange-servers/): Microsoft has detailed its plans to protect organizations against persistently vulnerable Exchange Servers. Starting on May 10, the company is... - [Microsoft’s Work Trend Index Highlights Growing Need to Adapt to AI-Driven Work Landscape](https://petri.com/microsofts-work-trend-index-report-ai/): Microsoft has released its latest Work Trend Index report, which highlights data and insights about how work is changing in... - [Microsoft 365 Copilot Early Access Program Now Available](https://petri.com/microsoft-365-copilot-early-access-program/): Microsoft announced today the launch of its Microsoft 365 Copilot Early Access Program, which is an invitation-only paid preview of... - [Microsoft Lists Gets Big Update with Performance Improvements and Other New Features](https://petri.com/microsoft-lists-performance-improvements/): Microsoft has recently released a major update for its Microsoft Lists app. The company detailed that the latest update brings... - [Azure Stack HCI Deployment: Choosing Between Large Clusters vs. Smaller Specialized Clusters](https://petri.com/azure-stack-hci-deployment-clusters/): To make an Azure Stack HCI deployment successful, you need to consider the initial investments and maintenance costs required for large clusters vs. smaller clusters. - [Microsoft Authenticator Enables Number Matching By Default to Block MFA Fatigue Attacks](https://petri.com/microsoft-authenticator-number-matching-feature/): Last year, Microsoft released support for number matching in push notifications for its Microsoft Authenticator app. Starting today, the number... - [Microsoft Brings Modern Authentication Support to Exchange Server 2019](https://petri.com/microsoft-modern-authentication-exchange-server-2019/): Microsoft has announced the release of its new cumulative update (CU13) for Exchange Server 2019. The latest update brings modern... - [What’s New in Windows – April 2023](https://petri.com/whats-new-windows-april-2023/): This month, Windows is getting memory safe Rust code in the kernel, Microsoft announces Windows 11 LTSC edition to launch... - [Microsoft Launches Azure AD Certificate-Based Authentication (CBA) on Mobile Devices](https://petri.com/azure-ad-certificate-based-authentication-mobile/): Last year, Microsoft released a public preview of Azure Active Directory certificate-based authentication (CBA) on mobile. The company announced yesterday... - [How to Add Microsoft Store Apps to Intune](https://petri.com/add-microsoft-store-apps-to-intune/): Here's how the recent Microsoft Store repository integration in Intune works and how to add Microsoft Store apps to Intune. - [Google Adds Support for Passkeys to Protect Google Accounts](https://petri.com/google-support-passkeys-google-accounts/): Google has started rolling out its passkey technology to Google accounts across all platforms. The feature allows users to log... - [Microsoft Now Provides Email Alerts About Known Issues for Windows Admins](https://petri.com/microsoft-email-alerts-known-issues-windows/): Microsoft has released a new email alerts feature that should make it easier for IT admins to keep track of... - [Microsoft's Bing Chatbot Launches in Open Preview and Will Get Third-Party Plugins](https://petri.com/microsoft-bing-chatbot-open-preview-chat-history/): Microsoft is removing the waitlist for its Bing chatbot today, and the company also detailed several upcoming features including chat history and visual search. - [Poly Partners with Pexip to Provide Secure Video Collaboration Solutions](https://petri.com/poly-partners-pexip-secure-video-collaboration/): Polly has teamed up with video technology provider Pexip to launch new cloud-based and on-premises communications services. The new offerings... - [Microsoft Outlook and Teams to Open Web Links in Microsoft Edge By Default](https://petri.com/microsoft-outlook-teams-web-links-edge/): Microsoft is planning to make web links in Microsoft Outlook and Teams to open by default in its Edge browser.... - [Microsoft Teams Adds Auto Install Approved Apps Feature, Webinar Reminders](https://petri.com/microsoft-teams-auto-install-approved-apps/): Microsoft published a detailed roundup of all the new features added to Microsoft Teams in April 2023. This time around,... - [How to Configure Windows LAPS in an Microsoft Entra ID (Azure AD) Scenario](https://petri.com/configure-windows-laps/): Here's how to configure Windows LAPS in an Azure Active Directory scenario and how to manage it from Microsoft Entra. - [SharePoint is Getting a New Copilot Experience and Other Updates](https://petri.com/new-copilot-experience-sharepoint/): Microsoft detailed yesterday several new updates coming to its SharePoint platform over the coming months, including a new AI-powered Copilot experience. - [What's New With Microsoft's Power Platform in April 2023](https://petri.com/microsoft-power-platform-april-2023-updates/): This month, we’re seeing Microsoft's Power Platform lean into AI enhancements, and many of these new AI-powered features are genuinely useful. - [Microsoft OneDrive to Get New Web Experience with AI-Powered File Recommendations](https://petri.com/microsoft-onedrive-new-web-experience/): Microsoft has announced a new version of the OneDrive web app for business and education customers. The company highlighted today... - [Windows Autopatch May 2023 Update Adds Support for Autopatch Groups](https://petri.com/windows-autopatch-groups/): Microsoft has detailed a bunch of new features added to its Windows Autopatch service in May 2023. The company explained... - [Microsoft Teams Meetings Now Let Small Businesses Request Payments from Clients](https://petri.com/microsoft-teams-payments-app/): Microsoft has partnered with Stripe, PayPal, and GoDaddy to launch a new Payments app for Microsoft Teams. The app allows... - [Google Authenticator to Get End-to-End Encryption Support](https://petri.com/google-authenticator-end-to-end-encryption/): Last week, Google announced account synchronization support for its Authenticator app. On April 25, the security research team Mysk highlighted... - [AWS Launches New Verified Access Service to Replace VPN](https://petri.com/aws-verified-access-service/): Amazon has announced the general availability of its AWS Verified Access service. The service enables IT admins to provide secure... - [SQL Server Essentials: Using SQL Joins](https://petri.com/sql-join/): In relational databases like SQL Server, the SQL JOIN statement is used to query, connect and retrieve data from multiple... - [Azure Virtual Desktop Adds New Security Features, Storage Enhancements](https://petri.com/azure-virtual-desktop-updates/): Microsoft has announced some new capabilities for its Azure Virtual Desktop service. The top requested feature should help organizations to... - [Apache Superset Auth Bypass Flaw Exposes Vulnerable Servers to RCE Attacks](https://petri.com/apache-superset-flaw-rce-attacks/): Apache Superset has released fixes to patch a security flaw in the default configuration that could lead to remote code... - [Microsoft Sentinel Gets New Workspace Manager and Hunts Feature](https://petri.com/microsoft-sentinel-workspace-manager-hunts/): Microsoft announced some new updates for its Microsoft Sentinel solution this week. The company has highlighted a new Workspace Manager... - [Managing Group Policy Objects: Create GPOs, Link GPOs, and Edit GPOs](https://petri.com/create-gpo-link-gpo-edit-gpo/): If you’re an IT pro working with Active Directory, you can use Group Policy to configure the Windows environments of... - [Microsoft to Release Windows 11 LTSC in the Second Half of 2024](https://petri.com/windows-11-ltsc-coming-in-2024/): Microsoft announced updates for its Windows 11 and Windows 10 support roadmaps yesterday, and the biggest news is that a... - [Microsoft Defender for Cloud Apps to Get App Governance Add-On in June](https://petri.com/microsoft-defender-for-cloud-apps-app-governance/): Microsoft has announced that its App Governance add-on will soon be a part of the Microsoft Defender for Cloud Apps... - [Microsoft Designer Enters Public Preview with New A.I. Features](https://petri.com/microsoft-designer-public-preview/): Today, Microsoft Designer goes into public preview and it adds new A. I. features. Like Canva, Designer offers a collection... - [Latest Windows 11 Update Fixes Windows LAPS Interop Issues](https://petri.com/windows-laps-interop-issues-windows-11/): Microsoft has released the optional April 2023 security patches for Windows 11 versions 21H2 and 22H2. The optional updates (KB5025298... - [What is Group Policy in Active Directory?](https://petri.com/what-is-group-policy/): Group Policy is an infrastructure feature in Active Directory that allows IT pros to manage their users’ Windows environments and... - [New cloud.microsoft domain Will Simplify Access to Microsoft 365 Web Apps  ](https://petri.com/microsoft-365-web-apps-cloud-dot-microsoft-domain/): Microsoft announced this week that it’s planning to move its various Microsoft 365 web apps to a unified cloud. microsoft... - [Microsoft Loop Adds Support for Personal Accounts on iOS and Android](https://petri.com/microsoft-loop-personal-accounts-ios-android/): Microsoft has started rolling out support for personal accounts in its Microsoft Loop app on mobile devices. Indeed, the company... - [Microsoft Changes Windows Server 2022 Licensing Policies](https://petri.com/windows-server-2022-licensing-policies/): Microsoft is changing its Windows Server 2022 licensing policies to better compete with rivals. Earlier this month, the company quietly... - [Microsoft Defender for APIs Now Available in Preview](https://petri.com/microsoft-defender-for-apis-preview/): Microsoft has announced the public preview of its new Microsoft Defender for APIs solution. The new powerful tool enables organizations... - [Google Authenticator Now Lets Users Back Up 2FA Codes to the Cloud](https://petri.com/google-authenticator-back-up-2fa-codes-cloud/): Google has released a new much-awaited feature for its Authenticator app on Android and iOS. The latest update allows users... - [Microsoft Intune Gets New Windows Defender Firewall Management Features](https://petri.com/microsoft-intune-windows-defender-firewall-management/): Microsoft has introduced several new features to its Microsoft Intune admin center. The company highlighted that these updates should help... - [Linux File Permissions: Everything You Need to Know](https://petri.com/linux-file-permissions/): This article explains how Linux file permissions work, including how to change file permissions and file ownership using the chmod and chown commands. - [Google Takes on Microsoft's Security Copilot With New Cloud Security AI Workbench](https://petri.com/google-cloud-security-ai-workbench/): Google has just announced at the RSA Conference 2023 its new Cloud Security AI Workbench, which will offer various AI-powered... - [Microsoft to Separate Teams From Office to Avoid EU Antitrust Scrutiny](https://petri.com/microsoft-separate-teams-office-eu/): Microsoft has decided to unbundle Microsoft Teams with its Office software. According to a report from the Financial Times, this... - [5 New Features in Linux 6.3 Kernel](https://petri.com/5-new-features-linux-6-3-kernel/): The latest Linux kernel is now available, and it comes with some important new features. Linux Kernel 6. 3 is... - [Amazon GuardDuty Gets New Threat Detection Capabilities](https://petri.com/amazon-guardduty-threat-detection-capabilities/): Amazon announced this morning some important updates for Amazon GuardDuty. The service has added support for Amazon EKS Runtime Monitoring,... - [Canonical Releases Ubuntu 23.04 with Azure Active Directory Support](https://petri.com/ubuntu-23-04-azure-active-directory/): Last week, Canonical announced the release of Ubuntu 23. 04. The latest version of its Linux distribution includes improved Azure... - [Microsoft Announces Windows LAPS Support for Azure AD Joined Devices](https://petri.com/windows-laps-azure-ad-joined-devices/): Microsoft has announced a public preview of Windows LAPS with Azure Active Directory (recently renamed Microsoft Entra ID). The new... - [Microsoft Improves Windows Update Process on Windows 11 and 10 PCs](https://petri.com/microsoft-windows-update-windows-11-10/): Microsoft has released an updated version of Windows Update Health Tools for Windows 11 and Windows 10. The company detailed... - [Microsoft’s New Azure Storage Mover Makes Cloud Migrations Easier](https://petri.com/microsofts-azure-storage-mover/): Microsoft has announced that its Azure Storage Mover is now generally available for enterprise customers. The new tool intends to... - [What is AWS Amplify?](https://petri.com/what-is-aws-amplify/): AWS Amplify is an Amazon Web Services (AWS) application development framework that organizations can use to develop and deploy web... - [Microsoft Office 2013 Reaches End of Support](https://petri.com/microsoft-office-2013-end-support/): Microsoft announced yesterday that Office 2013 reached its end of support on April 11, 2023. The company has warned that... - [Microsoft Viva is Getting a New AI-Powered Copilot Experience](https://petri.com/copilot-in-microsoft-viva/): Microsoft is bringing its new AI-powered Copilot to Microsoft Viva. The employee experience platform integrated within Microsoft Teams offers different... - [Microsoft Sentinel All-in-One v2 is Now Available to Streamline Deployments](https://petri.com/microsoft-sentinel-all-in-one-v2/): Microsoft has announced the release of Microsoft Sentinel All-in-One v2. The latest version is designed to help customers reduce costs... - [Microsoft Releases Hotpatching Windows Server Azure Edition with Desktop Experience](https://petri.com/hotpatching-windows-server-azure-edition/): Microsoft has released Hotpatching support for Windows Server Azure Edition VMs running the Desktop Experience installation mode. The company originally... - [Microsoft's Azure Virtual Desktop App is now Available on the Microsoft Store](https://petri.com/azure-virtual-desktop-app-microsoft-store/): Microsoft’s new Azure Virtual Desktop app is available to download from the Microsoft Store. The company announced the app’s availability... - [Three Ways to Load Balance Applications Running on Azure Stack HCI](https://petri.com/azure-stack-hci-load-balancing/): When you virtualize an Azure Stack HCI cluster, you may want to load balance applications running on it to optimize... - [Microsoft Adopts Weather-Themed Threat Actor Naming Taxonomy](https://petri.com/microsoft-weather-themed-threat-actor-naming-taxonomy/): Microsoft is adopting a new weather-themed taxonomy to describe threat actors across the world. Some nation-state actors such as Russia,... - [Microsoft Defender for Endpoint Can Now Discover Internet-Facing Devices](https://petri.com/microsoft-defender-for-endpoint-internet-facing-devices/): Microsoft Defender for Endpoint is getting a new update that will enable IT admins to discover internet-facing devices. The new... - [Researchers Uncover New LockBit Ransomware Created to Encrypt Files on macOS](https://petri.com/lockbit-ransomware-encrypt-files-macos/): Security researchers have discovered a new LockBit ransomware that’s designed to target macOS devices. The MalwareHunterTeam detailed on Twitter that... - [Cyberattacks Increased 38% in 2022 - Secure Active Directory Now](https://petri.com/cyberattacks-increased-38-in-2022-secure-active-directory-now/): According to a recent report, cyberattacks increased by 38% in 2022 compared to 2021, meaning that it’s more important than... - [Microsoft Defender Boosts Threat Intelligence with File Hash and URL Search Capabilities](https://petri.com/microsoft-defender-file-hash-url-search-intelligence/): Microsoft has announced new File Hash and URL Search capabilities for its Microsoft Defender Threat Intelligence solution. It’s a top-requested... - [Microsoft Teams Now Lets Authorized Users Manage Call Queue and Auto Attendant Greetings](https://petri.com/microsoft-teams-call-queue-auto-attendant-greetings/): Microsoft Teams has introduced support for user-managed call queue and auto-attendant greetings. The long-awaited calling feature lets IT admins designate... - [Windows 365 Cloud PCs Now Protected with Host-Based Encryption](https://petri.com/windows-365-cloud-pcs-encryption-at-rest/): Microsoft has announced that all new Windows 365 PCs will now be encrypted at rest. Starting this month, the new... - [Use PowerShell Functions to Quickly Simplify Your Scripts](https://petri.com/powershell-functions/): Are you creating PowerShell scripts for the first time? One important skill to master is how to write PowerShell functions,... - [Outlook for Mac Adds Support for Email Profiles in Preview](https://petri.com/outlook-for-mac-adds-email-profiles/): Microsoft has started testing support for profiles in its Outlook for Mac app. Until now, it wasn’t possible to mute... - [Microsoft Confirms Interoperability Issues Between New Windows LAPS and Legacy LAPS Policies](https://petri.com/microsoft-interoperability-issues-windows-laps-legacy-laps-policies/): Microsoft is investigating an interoperability issue between the new Windows Local Administrator Password Solution (LAPS) and legacy LAPS policies. The... - [How to Set an Out Of Office Message in Microsoft Outlook](https://petri.com/out-of-office-message-outlook/): Outlook can send out-of-office replies when you are unable to respond. Here's how to set up out-of-office messages in Outlook for Windows, Mac, and the web. - [Amazon Bedrock Brings Generative AI Capabilities to AWS](https://petri.com/amazon-bedrock-generative-ai-aws/): Amazon announced yesterday Amazon Bedrock, a new platform allowing organizations to build and scale generative AI applications in the likes of OpenAI’s ChatGPT. - [Microsoft Provides Guidance to Detect and Block BlackLotus Campaigns](https://petri.com/microsoft-guidance-blacklotus-campaigns/): Microsoft has published guidance to help businesses protect their Windows devices against the BlackLotus UEFI bootkit. The company also detailed... - [Microsoft Releases Version 2303 of Microsoft Configuration Manager](https://petri.com/microsoft-configuration-manager-version-2303/): Microsoft has released version 2303 of the Microsoft Configuration Manager for the Current Branch. The company announced that Microsoft Endpoint... - [LinkedIn Gets Free Profile Verification Features to Prove Identity and Employment](https://petri.com/linkedin-profile-verification-features/): Microsoft-owned LinkedIn has announced some new features that will let users verify their identity and current jobs on the professional... - [Cohesity Unveils New Partnership with Microsoft to Protect Businesses from Cyber Threats](https://petri.com/cohesity-announces-partnership-microsoft/): Cohesity, a data security and management service provider, has announced an expanded partnership with Microsoft. The deal includes new software... - [SQL Server Essentials: Using SQL SELECT and the WHERE and HAVING Clauses to Retrieve Data](https://petri.com/sql-select-where-clause/): Here's how to use the SQL SELECT statement to retrieve data from one or more SQL Server tables, and how to filter rows with the SQL WHERE and HAVING clauses. - [Microsoft Warns IT Admins to Block Shared Key Access in Azure Storage Accounts](https://petri.com/microsoft-shared-key-access-azure-storage-accounts/): Security researchers have discovered a design flaw in Microsoft Azure. The vulnerability could enable threat actors to get access to... - [Windows LAPS is Now Natively Integrated on Windows 11, Windows 10, and Windows Server](https://petri.com/windows-laps-integration-windows-11-10-server/): The April 2023 Patch Tuesday updates make Windows LAPS an inbox feature on Windows 11, Windows 10, and Windows Server 2019 and newer. - [Microsoft Releases April 2023 Patch Tuesday Updates for Windows 11 and Windows 10](https://petri.com/microsoft-releases-april-2023-patch-tuesday-updates-for-windows-11-and-windows-10/): The April 2023 Patch Tuesday updates for Windows 11 and Windows 10 bring fixes for 97 vulnerabilities, and they also make the new Windows LAPS an inbox feature - [Microsoft's New Viva Engage App Now Available on iOS and Android](https://petri.com/microsoft-viva-engage-app-ios-android/): Microsoft announced yesterday that its Yammer mobile apps for iOS and Android have now been rebranded as Viva Engage. The... - [Microsoft Ends Support for SharePoint Server 2013 Today](https://petri.com/microsoft-sharepoint-server-2013-support-end/): Microsoft is officially killing off its extended support for SharePoint Server 2013 today. It’s been a long time coming, but... - [Windows Autopatch Now Lets IT Admins Customize Quality Updates Deployment Cadence](https://petri.com/windows-autopatch-customize-quality-updates-deployment-cadence/): Microsoft has announced several new capabilities added to its Windows Autopatch service this month. The company has introduced a new... - [Microsoft Teams Adds New Snapchat Lenses to Spice Up Virtual Meetings](https://petri.com/microsoft-teams-snapchat-lenses-meetings/): Microsoft Teams has added a new feature that should make it easier for users to spice up their virtual meetings.... - [5 Strategies for Blocking Cyberthreats in Windows](https://petri.com/fim-and-system-hardening-block-detect-cyberthreats-in-windows/): Register for our webinar on April 12th to discover how to establish hardened configurations for your Windows servers and endpoints,... - [Microsoft Warns About New Destructive 'Mercury' Attacks on Hybrid Environments](https://petri.com/microsoft-destructive-attacks-hybrid-environments/): Microsoft has warned that an Iranian state-backed threat actor dubbed Mercury has been carrying out destructive attacks in hybrid environments.... - [Microsoft Exchange Online Delays Deprecation of Client Access Rules Until 2024](https://petri.com/exchange-online-delay-client-access-rules-deprecation/): Last year, Microsoft unveiled that it would phase out Client Access Rules (CARs) in Exchange Online in September this year.... - [How to Install WSL2 on Windows 10 and Windows 11](https://petri.com/install-wsl2-windows/): Here's how to install WSL2 on Windows 10 and Windows 11 to run Linux repositories natively on your PC, no virtual machine required. - [Microsoft Entra Entitlement Management to Update User Admin Role](https://petri.com/microsoft-entra-entitlement-management-user-admin-role/): Microsoft has announced some important changes coming to its Microsoft Entra Entitlement Management service. Starting on May 3, employees in... - [Microsoft Edge Gets New Browser Essentials Tool to Monitor Security and Performance Issues](https://petri.com/microsoft-edge-browser-essentials-tool/): Microsoft has started testing a new Browser Essential feature in Microsoft Edge. The new tool provides a unified dashboard that... - [SQL Server Essentials: SQL Server Sample Databases](https://petri.com/sql-server-sample-databases/): Here's how everything you need to know about installing and using SQL Server sample databases including Northwind, AdventureWorks, and WideWorldImporters. - [Windows 365 Frontline Cloud PC Service Brings New Capabilities for Shift and Part-Time Workers](https://petri.com/microsoft-windows-365-frontline-cloud-pc/): Microsoft announced this morning that its Windows 365 Cloud PC service is now available in public preview for frontline workers.... - [Amazon GuardDuty Adds Support for Amazon EKS Runtime Monitoring](https://petri.com/amazon-guardduty-amazon-eks-runtime-monitoring/): Amazon GuardDuty has introduced Amazon EKS Runtime Monitoring support this week. The new capability enables organizations to detect runtime threats... - [Microsoft Edge Workspaces Now Available in Preview to Streamline Collaboration](https://petri.com/microsoft-edge-workspaces-limited-preview/): Microsoft has announced that the Workspaces feature is now available in limited public preview in Microsoft Edge. The new collaboration... - [What’s New in Windows – March 2023](https://petri.com/whats-new-in-windows-march-2023/): Apart from the release of Windows 11 22H2 Moment 2, it’s been a fairly quiet month. But not for Windows... - [Microsoft Releases Azure Firewall Updates to Troubleshoot Network Performance Issues](https://petri.com/microsoft-azure-firewall-updates/): Microsoft has announced some new logging and metric improvements to provide more insights into Microsoft Azure Firewall traffic. The Latency... - [Microsoft Teams Adds New My Day View in 'Tasks by Planner and To Do' App](https://petri.com/microsoft-teams-my-day-view-tasks-by-planner-and-to-do/): Microsoft has released a new My Day view in the Tasks by Planner and To Do app for Microsoft Teams.... - [Outlook for Windows Preview App Starts Adding Support for Third-Party Accounts](https://petri.com/outlook-for-windows-preview-gmail-support/): Microsoft Outlook for Windows preview app now supports Gmail accounts. iCloud, Yahoo, and other IMAP accounts are next, and so is offline support. - [What's New With Microsoft's Power Platform in March 2023](https://petri.com/microsoft-power-platform-march-2023-updates/): Microsoft's Power Platform added new generative AI features in March including a New AI Copilot for Power Apps and AI Builder and Copilot in Power Automate. - [Microsoft's Surface Thunderbolt 4 Dock Replaces Surface Connect With USB-C Port](https://petri.com/microsoft-surface-thunderbolt-4-dock/): Microsoft introduced yesterday its latest Surface Dock with Thunderbolt 4, which now uses a USB-C port to connect to Surface devices instead of Microsoft’s proprietary Surface Connect port. - [Microsoft Defender 365 Gets New Threat Intelligence Capabilities](https://petri.com/microsoft-defender-365-threat-intelligence/): Microsoft has recently unveiled several updates to improve threat intelligence in its existing products and services. The company has introduced... - [Microsoft Changes Release Schedule for Configuration Manager to Bi-Annual Updates](https://petri.com/microsoft-configuration-manager-bi-annual-updates/): Microsoft announced some changes yesterday to its release schedule for Microsoft Configuration Manager updates. The company is switching the product... - [Microsoft to Add New Windows Autopatch Alerts About Expired Licenses and Access Issues](https://petri.com/microsoft-windows-autopatch-alerts-expired-licenses/): Microsoft has announced several new features coming to Windows Autopatch next month. These enhancements will notify IT admins about expiring... - [Microsoft Teams Adds New Green Screen Background Effect for Meetings](https://petri.com/microsoft-teams-green-screen-effect/): Last month, Microsoft unveiled that it’s adding green screen background support to improve Teams meetings. The company announced this morning... - [Microsoft Incident Response Retainer Service is Now Generally Available](https://petri.com/microsoft-incident-response-retainer/): Microsoft has introduced a new Incident Response Retainer service for enterprise customers. The new service provides flexible pre-paid hours for... - [What is Microsoft Stream?](https://petri.com/what-is-microsoft-stream/): Microsoft Stream is a video creation and collaboration service for Microsoft 365. Learn how to record your screen with it and catch up on Teams meetings. - [AWS Chatbot Integration Now Available in Microsoft Teams](https://petri.com/aws-chatbot-microsoft-teams/): Amazon Web Services has announced the general availability of AWS Chatbot for Microsoft Teams. The new integration allows customers to... - [Microsoft Azure Flaw Could Let Hackers Control Bing Search and Office 365 Data](https://petri.com/microsoft-azure-flaw-bing-office-365-data/): Security researchers have discovered a new vulnerability in Microsoft Azure Active Directory (Azure AD). The security flaw allowed users to... - [Cloud Conversations: Iain Smith on Unified Communications & The Pace of AI](https://petri.com/cloud-conversations-episode-71-iain-smith/): Iain Smith is a 9-time Microsoft MVP and a much-respected figure in the field of Unified Communications. He discusses the history of UC and much more. - [Microsoft Now Lets Users Pin Windows 365 Cloud PCs to the Windows 11 Taskbar](https://petri.com/microsoft-pin-windows-365-cloud-pcs-windows-11-taskbar/): Microsoft has released a new update for its Windows 365 Cloud PC service this week. The company announced that this... - [AWS Application Migration Service Gets New Import and Export Features](https://petri.com/aws-application-migration-service-import-and-export/): Amazon has announced some important updates for its Application Migration Service. The latest release includes a new server migration metrics... - [Logpoint's Converged SIEM Platform Adds New Case Management Interface and Other New Features](https://petri.com/logpoint-converged-siem-case-management-interface-agentx/): Logpoint Converged SIEM is getting a new Case Management interface, a new "AgentX" endpoint security agent, and various new features to improve security. - [Microsoft Postpones Remote PowerShell Deprecation in Exchange Online](https://petri.com/exchange-online-postpones-remote-powershell-deprecation/): Last year, Microsoft announced its plans to deprecate Remote PowerShell (RPS) in Exchange Online in June 2023. Now, the company... - [Microsoft Teams Gets Collaboration Security to Block Phishing Attacks](https://petri.com/microsoft-teams-collaboration-security/): Microsoft has announced a new Collaboration Security feature for Microsoft Teams. The new set of capabilities provides preventive, detective, and... - [SQL Server Essentials: Modifying Table Data With SQL Insert, SQL Update, SQL Delete and Truncate](https://petri.com/sql-insert-update-delete-truncate/): Here's how to modify data from a SQL Server table using the SQL INSERT, T-SQL UPDATE, T-SQL DELETE and TRUNCATE statements. - [Microsoft Announces New Surface Hub 2S With Teams Rooms on Windows Experience](https://petri.com/microsoft-surface-hub-2s-teams-rooms-on-windows-experience/): Microsoft will release a second-gen Surface Hub 2S later this year that will be running a new Teams Rooms on Windows experience. - [Microsoft's New Security Copilot Tool Uses GPT-4 to Quickly Respond to Threats](https://petri.com/microsofts-security-copilot-tool/): Microsoft announced the release of a new Security Copilot tool for cyber security professionals. The AI-powered chat assistant is designed... - [Microsoft Outlook Adds New Authenticator Lite Feature on iOS and Android](https://petri.com/microsoft-outlook-authenticator-lite/): Microsoft has started rolling out a new Authenticator Lite feature in preview for its Outlook mobile app. The company announced... - [Azure AD Custom Claims Providers Feature Let Users Customize Authentication Flows](https://petri.com/azure-ad-custom-claims-providers/): Microsoft has announced the public preview of a new custom claims provider feature for Azure Active Directory (Azure AD). The... - [Microsoft Teams Gets New Files App, 3D Mesh Avatars, and Other New Features](https://petri.com/microsoft-teams-files-app-3d-mesh-avatars/): As Microsoft is kicking off its Enterprise Connect conference this morning, the company announced a new Teams desktop client that... - [Get Ready to Transform Your Organization's IT Security: Join Our Free 1-Day Virtual Conference](https://petri.com/stop-security-incidents-and-ransomware-now/): This week, March 30th at 9. 20am ET, Petri is hosting its first free virtual 1-day conference of the year... - [Microsoft Teams 2.0 Client Drops in Public Preview](https://petri.com/microsoft-teams-2-client-public-preview/): It’s been a long time coming for long-suffering Microsoft Teams users. Today, Microsoft is launching access to a public preview... - [Microsoft to Raise the Price of Cloud Services in Europe on April 1](https://petri.com/microsoft-raise-price-cloud-services-europe/): Microsoft unveiled its plans to increase the price of its cloud services in the European Union (EU) in January 2023.... - [How to Use Microsoft's Hybrid Azure AD Connect Cloud Sync Software](https://petri.com/install-azure-ad-connect-cloud-sync/): Here's how to configure Azure AD Connect cloud sync and implement it into your Active Directory/Azure AD infrastructure. - [CISA Releases New Free Tool to Identify Threats in Microsoft Cloud Services](https://petri.com/cisa-tool-identify-threats-microsoft-cloud/): The U. S. Cybersecurity and Infrastructure Security Agency (CISA) has released a new open-source incident response tool. The Python-based utility... - [Microsoft to Block Unsupported Exchange Servers from Sending Emails to Exchange Online](https://petri.com/microsoft-block-emails-old-exchange-servers-exchange-online/): Microsoft is introducing a transport-based enforcement system in Exchange Online that will throttle and block emails from old Exchange Servers.... - [How to List All Groups in Linux - An IT Pro's Tips and Tricks](https://petri.com/linux-list-all-groups/): In this article, we detail different ways to list all groups on a Linux machine. We also explain how to list all users and show the groups they belong to. - [Intel Unveils its 13th Gen vPro CPUs](https://petri.com/intel-13th-gen-vpro-cpus/): Intel's 13th gen vPro CPUs for business PCs bring a new process technology and more cores, as well as silicon-based virtualization security on Windows 11. - [Microsoft Teams to Get New Files App Next Month](https://petri.com/microsoft-teams-new-files-app/): The Microsoft Teams desktop client is about to get a new Files app on Windows and macOS. The new experience... - [Microsoft Confirms Latest Defender Update Causes LSA Protection Alerts on Windows 11](https://petri.com/microsoft-lsa-protection-alerts-windows-11/): Microsoft is currently investigating a persistent issue related to the latest security update for Windows 11 PCs. The company has... - [Nvidia Unveils H100 NVL Inference Platform Optimized for Large Language Model Deployments](https://petri.com/nvidia-h100-nvl-inference-platform-large-language-model-deployments/): Nvidia unveiled this week four new inference platforms optimized for generative AI applications such as OpenAI’s ChatGPT. - [GitHub Unveils New GPT-4-Powered Copilot Tool with Chat and Voice Support](https://petri.com/github-releases-copilot-x-tool/): Microsoft’s GitHub has released a new GPT-4 powered version of its Copilot programming assistant. Copilot X expands the tool’s capabilities... - [Researchers Discover Privacy Flaw in Windows 11 Snipping Tool That Could Leak Sensitive Data in Screenshots](https://petri.com/windows-11-snipping-tool-acropalypse-flaw/): Security researchers have found a new vulnerability in the Snipping Tool app available in Windows 11. The security flaw dubbed... - [Microsoft Loop Public Preview - Everything You Need to Know](https://petri.com/microsoft-loop-app-public-preview/): The Microsoft Loop app is available in public preview starting today. But what is Loop for and can it compete with productivity solutions like Notion? - [Microsoft Integrates GPT-4 into Azure OpenAI Service](https://petri.com/microsoft-gpt-4-azure-openai-service/): Microsoft has announced that it’s adding OpenAI’s GPT-4 to its Azure OpenAI Service. The new integration will enable organizations to... - [Why You Need a Domain Controller Outside of Your Azure Stack HCI Cluster](https://petri.com/set-up-domain-controller-outside-azure-stack-hci-cluster/): Here's why you need to have a domain controller outside of your Azure Stack HCI cluster to make it easier to restart a cluster in case of a failure. - [Microsoft Changes its Release Schedule for Optional Windows Updates](https://petri.com/microsoft-changes-optional-windows-patches-release-schedule/): Starting in April 2023, Microsoft will target the fourth week of the month to release optional non-security preview patches for Windows 11 and Windows 10. - [Microsoft Teams Green Screen Feature to Let Users Personalize Video Call Backgrounds](https://petri.com/microsoft-teams-green-screen-meetings/): Microsoft Teams is set to introduce a new green screen feature on Windows and macOS. The company has announced on... - [Microsoft Defender for IoT Gets Cloud-Powered Security Features to Protect Enterprise Networks](https://petri.com/microsoft-defender-iot-enterprise-networks/): Microsoft has announced that its Microsoft Defender for IoT solution is now generally available for enterprise customers. The new cloud-powered... - [Microsoft to Start Rolling Out On-Prem UUP-Style Updates to Windows 11 22H2 Devices Next Week](https://petri.com/microsoft-on-prem-uup-updates-windows-11-22h2/): Microsoft will start offering on-prem Unified Update Platform (UUP) updates to Windows 11 PCs on March 28. The company is... - [Windows 11 Version 22H2's Latest Patch Tuesday Update May Degrade SSD Performance](https://petri.com/windows-11-version-22h2-patch-tuesday-ssd-performance-issues/): The March Patch Tuesday update for Windows 11 version 22H2 may be causing some new SSD performance issues, according to various user reports. - [Microsoft Releases Semantic Kernel SDK for Building AI-Powered Applications](https://petri.com/microsoft-semantic-kernel-sdk-ai-applications/): Last week, Microsoft announced the release of Semantic Kernel (SK). The new open-source framework enables developers to integrate artificial intelligence... - [Amazon Linux 2023 is Now Available with New Security Features and Long-Term Support](https://petri.com/amazon-linux-2023-security-long-term-support/): Amazon has recently announced the general availability of Amazon Linux 2023. The latest cloud-optimized Linux distribution is designed to improve... - [Microsoft Edge 111 Brings New Copilot Experience to the Sidebar](https://petri.com/microsoft-edge-111-copilot-experience-bing-button/): Microsoft Edge 111 added a new Bing button at the right side of the Edge toolbar, which integrates the new Edge Copilot experience. - [What is Microsoft Lists? A Productivity Guide](https://petri.com/what-is-microsoft-lists/): Microsoft Lists is the evolution of the SharePoint List feature. Several years ago, the Microsoft brain trust set out to... - [Microsoft Releases PowerShell Scripts to Fix WinRE BitLocker Flaw on Windows 11 and 10](https://petri.com/microsoft-powershell-scripts-winre-bitlocker-flaw/): Microsoft has released new PowerShell scripts to address a BitLocker security vulnerability on Windows PCs. The PowerShell scripts are designed... - [Google Workspace Gets 20% More Expensive for Monthly Subscribers](https://petri.com/google-workspace-price-hike/): Last month, Google unveiled some important pricing changes for Google Workspace customers. The company announced this week that it’s increasing... - [Cloud Computing and the Energy Crisis: Is Building More Data Centers Sustainable?](https://petri.com/cloud-computing-data-centers-energy-crisis/): The impact of cloud computing on the energy sector is getting an increasing amount of attention. Is migrating more workloads to the cloud really sustainable? - [Microsoft 365 Copilot - Everything You Need to Know](https://petri.com/microsoft-365-copilot-everything-you-need-to-know/): Learn how Microsoft 365 Copilot will improve your productivity using natural language to generate content and analyze information faster. - [Azure Firewall Basic Now Available to Protect Small Businesses Against Cyberattacks](https://petri.com/azure-firewall-basic-protect-small-businesses/): Microsoft has announced the general availability of Azure Firewall Basic. The affordable SKU launched in preview in October 2022 to... - [Microsoft Releases Updates to Patch Critical Outlook NTLM Vulnerability](https://petri.com/microsoft-patch-outlook-ntlm-vulnerability/): Microsoft has released patches to address a critical security flaw in Outlook for Windows. The company confirmed that a Russian... - [AWS Releases Application Composer to Visualize and Build Serverless Applications](https://petri.com/aws-application-composer-build-serverless-applications/): Microsoft has announced the general availability of AWS Application composer. First introduced in December 2022, the new low-code tool enables... - [Microsoft Warns About New MFA Bypass Tool Used in AiTM Phishing Campaigns](https://petri.com/microsoft-mfa-bypass-aitm-phishing-campaigns/): Microsoft has warned customers about Adversary-in-the-Middle (AiTM) phishing kit available for sale on a popular cybercrime forum. The software is... - [Using Affinity and Anti-Affinity Rules in Azure Stack HCI and Windows Server Hyper-V](https://petri.com/azure-stack-hci-affinity-rules/): This article details what are affinity and anti-affinity rules and how to use them with Azure Stack HCI and Windows Server Hyper-V. - [March Patch Tuesday Updates Bring New Windows 11 Features and Fixes for 74 Vulnerabilities](https://petri.com/windows-11-march-2023-patch-tuesday-updates/): The March 2023 Patch Tuesday updates mark the public rollout of the “Moment 2” update for Windows 11, which brings a new taskbar search box and more. - [Google Workspace to Get New ChatGPT-Like Generative AI Capabilities](https://petri.com/google-workspace-generative-ai-capabilities/): Google announced this morning new ChatGPT-like generative AI capabilities for its Google Workspace productivity suite. The new AI-based features will... - [Microsoft 365 Defender Adds Real-Time Custom Detections Support in Preview](https://petri.com/microsoft-365-defender-real-time-custom-detections/): Microsoft has introduced support for near real-time custom detections in its Microsoft 365 Defender solution. The new Continuous (NRT) feature... - [Microsoft's Web-Based Outlook for Windows App to be Available for all Users Next Month](https://petri.com/microsoft-outlook-for-windows-app/): Microsoft is set to release its long-awaited unified Outlook for Windows app for all users. The new web-based experience has... - [Cloud Conversations: Katie McMillan on Information Security vs. Legacy Technology and Mentoring](https://petri.com/cloud-conversations-episode-70-katie-mcmillan/): This week's Cloud Conversations episode welcomes Katie McMillan, a rising star in the tech community who specialises in Information Security. - [Microsoft Removes Edition Checks for AppLocker Deployment on Windows 10 and 11](https://petri.com/microsoft-removes-edition-checks-applocker-windows/): Microsoft has made some changes to the way the AppLocker application control policies work on Windows PCs. The company has... - [How to Enable Hyper-V in Windows 10](https://petri.com/enable-hyper-v/): Here's how to enable Hyper-V on Windows 10 using PowerShell or the Windows GUI. We also detail how to create your first VM and how nested virtualization works. - [GitHub to Start Rolling Out Two-Factor Authentication (2FA) to All Contributors Today](https://petri.com/github-two-factor-authentication/): Microsoft’s owned GitHub has recently announced that it will soon require two-factor authentication (2FA) for developers who contribute code on... - [Microsoft Loop App to Launch in Public Preview This Month](https://petri.com/microsoft-loop-launch-public-preview/): Microsoft is getting ready to launch its Microsoft Loop app in public preview later this month. Microsoft Loop has been... - [Microsoft Warns that Business Email Compromise Attacks Can Hijack Accounts in Hours](https://petri.com/microsoft-business-email-compromise-attacks/): Microsoft has warned that threat actors are increasingly using business email compromise campaigns to target enterprise customers. The company has... - [What is the Intel vPro Platform?](https://petri.com/intel-vpro-platform/): Here's how the Intel vPro platform works and how its features like Active Management Technology allow IT pros to remotely manage devices in a secure manner. - [Cloud Conversations: Fabian Bader on Protecting Azure AD Hybrid Identity and Microsoft Defender](https://petri.com/cloud-conversations-episode-69-fabian-bader/): Fabian Bader is a cyber-security architect and Microsoft MVP. In this week's Cloud Conversations episode, he discusses protecting Azure AD Hybrid Identity and Microsoft Defender - [Microsoft's Azure OpenAI Service Gets New ChatGPT Integration in Preview](https://petri.com/azure-openai-service-chatgpt-integration/): Microsoft has just announced a new ChatGPT integration coming to its Azure OpenAI Service. This release enables developers to add... - [Windows Update for Business Reports Now Help IT Admins Monitor Bandwidth Usage](https://petri.com/windows-update-for-business-delivery-optimization-report/): Microsoft has announced the general availability of Delivery Optimization in Windows Update for Business reports. The new Delivery Optimization report... - [Microsoft Edge to Let Enterprise Customers Securely Save Files to OneDrive on Mobile Devices](https://petri.com/microsoft-edge-save-files-onedrive-mobile/): Microsoft Edge is getting a new update that will allow enterprise customers to securely save files to OneDrive on mobile... - [Microsoft Adds New Open-Source Capabilities to Azure AI](https://petri.com/microsoft-open-source-capabilities-azure-ai/): Microsoft announced yesterday several new features for developers at its Azure Open Source Day 2023. The company explained that these... - [Exchange Online to Block Remote PowerShell Connections for New Tenants Next Month](https://petri.com/exchange-online-block-remote-powershell-connections/): Microsoft has announced that it’s deprecating Remote PowerShell (RPS) for Exchange Online in new tenants next month. The company will... - [Optimizing the VDI User Experience with FSLogix Containers and Application Masking ](https://petri.com/fslogix-profile-container-application-masking/): Here's how Microsoft's FSLogix technology can be used to optimize remote and virtual desktop environments by leveraging Profile Container and App Masking. - [Microsoft Releases Azure AD System-Preferred Authentication Policy in Preview](https://petri.com/microsoft-azure-ad-system-preferred-authentication/): Microsoft has started rolling out a new system-preferred authentication policy in preview for Azure AD customers. The feature enables the... - [Microsoft's Outlook for Mac Email Client is Now Free to Use on macOS](https://petri.com/outlook-for-mac-free-download/): Microsoft has announced that its Outlook for Mac client is now available as a free app on Apple’s App Store.... - [Pure Storage's FlashBlade//E Blade Server Aims to Make Flash-Based Storage More Affordable](https://petri.com/pure-storage-flashblade-e-blade-server/): Pure Storage recently announced FlashBlade//E, a new cost-effective solution for managing unstructured data using flash storage. - [Microsoft Teams Channels vs. Chat](https://petri.com/microsoft-teams-channels-vs-chat/): Microsoft Teams is a complex collaboration tool. In this article, I’m going to help you understand Microsoft Teams channels vs chat. - [Microsoft's Windows Insider Program Adds New Canary Channel](https://petri.com/windows-11-insider-program-canary-channel/): Microsoft is launching a new Canary channel for its Windows Insider Program today, and the existing Dev channel is getting a “reboot.” - [Microsoft Dynamics 365 Copilot Brings Generative AI to Business Applications](https://petri.com/microsoft-dynamics-365-copilot/): Microsoft announced this morning a new Microsoft Dynamics 365 Copilot solution. The new AI-powered tool allows customers to automate repetitive... - [Microsoft Updates Teams PowerShell Module to Version 5.0](https://petri.com/microsoft-teams-powershell-module-5-0/): Microsoft has announced the release of version 5. 0 of the Microsoft Teams PowerShell module. The latest release brings major... - [Microsoft Releases New Azure AD Property Lock Feature to Prevent Changes to App Credentials](https://petri.com/microsoft-azure-ad-property-lock-app-credentials/): Microsoft has introduced a new feature that allows customers to configure an app instance property lock for Azure AD enterprise... - [Microsoft Defender Vulnerability Management Adds New Premium Capabilities to Uncover Security Risks](https://petri.com/microsoft-defender-vulnerability-management-premium-capabilities/): Microsoft has released an update that brings new premium capabilities for Microsoft Defender Vulnerability Management. The new security features provide... - [BlackLotus Malware Bypasses UEFI Secure Boot on Windows 11 PCs](https://petri.com/blacklotus-bypasses-secure-boot-windows-11/): The security researchers at ESET issued a security advisory about the BlackLotus vulnerability this week. The research warned that the... - [What’s New in Windows – February 2023](https://petri.com/whats-new-in-windows-february-2023/): It’s been a busy month. Microsoft started testing the next Windows 11 ‘moment’, plus the Unified Update Platform (UUP) is... - [What's New With Microsoft's Power Platform in February 2023](https://petri.com/microsoft-power-platform-february-2023-updates/): Microsoft unveiled several new features for PowerBI and Dataverse in February and published its Power Platform 2023 release wave 1 plan. - [Cloud Conversations: Paul Huijbregts, Justen Graves, and Joe Anich on Microsoft Defender for Endpoint](https://petri.com/cloud-conversations-episode-68-paul-huijbregts-justen-graves-joe-anich/): In this week's Cloud Conversations episode, Paul Huijbregts, Justen Graves, and returning guest Joe Anich talk about Microsoft Defender for Endpoint in-depth. - [Microsoft's New Azure Operator Nexus Solution Now Available in Public Preview](https://petri.com/microsofts-azure-operator-nexus/): Microsoft has launched the public preview of its Azure Operator Nexus service. It’s a next-generation hybrid cloud platform that allows... - [Microsoft's New Windows 365 App Brings Cloud PCs into Windows 11](https://petri.com/microsofts-windows-365-app-windows-11/): Microsoft announced the release of the latest major update for Windows 11 this week. The company also announced the general... - [Microsoft Teams Added New Premium Features, Schedule Send Suggestions in February](https://petri.com/microsoft-teams-premium-features-february/): Microsoft has published a round-up of all the new features rolled out to Teams users during the month of February.... - [Microsoft Launches New Intune Suite to Simplify Endpoint Management](https://petri.com/microsoft-launches-new-intune-suite/): Microsoft has launched a new cloud-based Microsoft Intune Suite for enterprise customers. It’s a cost-effective plan that brings advanced endpoint... - [What IT Pros Need to Know About the Latest Windows 11 Feature Update](https://petri.com/windows-11-moment-2-update-it-pros/): Microsoft released the first big update of the year for Windows 11 yesterday, and IT pros will be able to control what's being rolled out in their organization.  - [Microsoft Adds Pod Sandboxing to Azure Kubernetes Service (AKS)](https://petri.com/microsoft-pod-sandboxing-azure-kubernetes-service-aks/): Last week, Microsoft released a new update that adds pod sandboxing support to its Azure Kubernetes Service (AKS). The new... - [Microsoft Defender App Starts Force Installing on Windows 10 and 11 PCs](https://petri.com/microsoft-defender-force-installing-windows/): Microsoft has started force-installing its Microsoft Defender for individuals app on Windows 10 and Windows 11 PCs. The company is... - [Windows 11 Version 22H2 "Moment" Update Brings AI-Powered Bing to the Taskbar](https://petri.com/windows-11-moment-update-taskbar-searchbox-bing-ai/): A major update for Windows 11 version 22H2 is available today. It introduces a new search box in the taskbar that integrates Microsoft's new AI-powered Bing. - [C-Facts Unveils New Partnership with Ingram Micro to Streamline Cloud Cost Management](https://petri.com/c-facts-announces-partnership-ingram-micro/): Last week, C-Facts announced a new partnership with Ingram Micro. The companies have signed a five-year agreement to provide C-Facts... - [Microsoft Now Lets IT Admins Enable Suspicious Activities Reporting in Azure AD](https://petri.com/microsoft-suspicious-activities-reporting-azure-ad/): Microsoft has introduced a new Report Suspicious Activity feature in Azure Active Directory (recently renamed Microsoft Entra ID). Suspicious activity... - [How to Use OneDrive for Business: A Complete Guide](https://petri.com/how-to-use-onedrive-for-business/): OneDrive for Business can help your users be more productive with their cloud-based files. Here's everything you need to know about using OneDrive for Business. - [Microsoft Syntex to Launch New Pay-As-You-Go Licensing Model for Document Processing](https://petri.com/microsoft-syntex-pay-as-you-go-licensing-model/): Microsoft is getting ready to release a pay-as-you-go licensing option for its Microsoft Syntex service. The new plan will include... - [Microsoft Advises IT Admins to Remove Some Exchange Server Antivirus Exclusions](https://petri.com/microsoft-remove-exchange-server-antivirus-exclusions/): Microsoft has published an advisory recommending IT admins to remove select antivirus exclusions in Exchange Servers. The company explained that... - [How to Install Windows 11 on a Mac with Parallels Desktop](https://petri.com/install-windows-11-mac-m1-parallels/): Here's how to install Windows 11 on Mac using Parallels Desktop 18 for Mac. The app supports both Intel-based Macs and Apple Silicon Macs with M1 and M2 chips. - [Cloud Conversations: Merethe Stave on ChatGPT, Community, and Viva Explorers](https://petri.com/cloud-conversations-episode-67-merethe-stave/): Merethe Stave is a Senior Cloud Architect at Cloudway and a Microsoft MVP. In this week's episode, she joins Femke and Peter to discuss ChatGPT, Viva Explorers, and more. - [Microsoft Releases SharePoint Workflow Manager for SharePoint Server](https://petri.com/microsoft-sharepoint-workflow-manager-sharepoint-server/): Microsoft has recently announced the release of SharePoint Workflow Manager. The new workflow engine powers the SharePoint 2013 Workflow platform... - [Microsoft 365 Defender Now Supports Automatic Disruption of Business Email Compromise Attacks](https://petri.com/microsoft-365-defender-automatic-disruption-bec-attacks/): Microsoft introduced a new automatic attack disruption feature in its Microsoft 365 Defender solution at Ignite 2022. The company announced... - [What is Tauri?](https://petri.com/what-is-tauri/): Tauri is a cross-platform programming framework based on Rust. In this article, you’ll learn why Tauri might take over from... - [Microsoft Releases Visual Studio 2022 17.5 with AI-Powered Coding Suggestions and More](https://petri.com/microsoft-releases-visual-studio-2022-17-5/): Microsoft has announced the release of a new update for Visual Studio 2022. The version 17. 5 of the IDE... - [VMware Releases ESXi Update to Fix Secure Boost Issues in Windows Server 2022 VMs](https://petri.com/vmware-esxi-update-fix-secure-boost-windows-server-2022-vms/): VMware has released vSphere ESXi update to address the Secure Boot issue with Windows Server 2022 virtual machines. Microsoft acknowledged... - [Securing Azure Virtual Desktop with Azure Active Directory Conditional Access](https://petri.com/secure-azure-virtual-desktop/): Here's how to secure Azure Virtual Desktop by focusing on Identity Access Management, which can be achieved using Azure AD Conditional Access policies.  - [Microsoft To Do to Add New Admin Controls for Restricting Personal Accounts on Android Devices](https://petri.com/microsoft-to-do-restrict-personal-accounts-android/): Microsoft To Do is about to get a new update that will enable IT admins to block personal accounts on... - [Hackers Steal Data Center Logins for Microsoft, Amazon, and Other Big Companies](https://petri.com/hackers-steal-data-center-logins-microsoft-amazon/): Security researchers have disclosed a campaign that allowed hackers to gain access to data center logins for Microsoft, Amazon, Apple,... - [Amazon Launches New Resource Map Feature for Visualizing VPC Resources](https://petri.com/amazon-announces-vpc-resource-map/): Amazon announced earlier this month the general availability of Amazon Virtual Private Cloud (Amazon VPC) resource map. The new feature... - [Microsoft Teams Will Reportedly Get a Big Performance Boost in March](https://petri.com/microsoft-teams-performance-boost-march/): Microsoft is getting ready to launch its revamped Microsoft Teams desktop app that will bring significant performance improvements by ditching... - [Atlassian Claims Data Breach Linked to Third-Party Workplace Platform Envoy](https://petri.com/atlassian-data-breach-envoy/): Last week, Atlassian confirmed a security breach that exposed the sensitive data of thousands of thousands of Atlassian employees. The... - [Windows File Sharing with SMB: Port 445, 139, 138, and 137 Explained](https://petri.com/smb-port-445-139-138-137/): SMB is the most prevalent protocol for sharing files on Windows. This article examines how Windows file sharing works over ports 445, 139, 138, and 137. - [Microsoft Releases New Driver and Firmware Controls for Windows Update for Business](https://petri.com/microsoft-driver-firmware-controls-windows-update-for-business/): Microsoft has released a new update that brings driver and firmware management capabilities for the Windows Update for Business deployment... - [Microsoft's Azure Virtual Desktop Adds Watermarking Support to Prevent Data Leaks](https://petri.com/azure-virtual-desktop-watermarking/): Microsoft has introduced watermarking support for Azure Virtual Desktop (AVD). The company announced that the new security feature is designed... - [Windows 365 vs. Azure Virtual Desktop: Which Virtualization Solution Should You choose?](https://petri.com/windows-365-vs-azure-virtual-desktop/): Here's an overview of the main differences between Windows 365 and Azure Virtual Desktop to help you understand which solution is best for your organization. - [Exchange Online Gets New Cloud-based Message Recall Feature to Retrieve Read Emails](https://petri.com/exchange-online-cloud-based-message-recall/): Microsoft has released a new update that brings improvements to the Message Recall functionality in Exchange Online. The company has... - [Parallels Desktop is Now Officially Supported for Running Windows 11 on ARM on Apple Silicon Macs](https://petri.com/parallels-desktop-mac-windows-11-official-support/): Microsoft has finally recognized Parallels Desktop for Mac as a supported solution for running Windows 11 on ARM on Apple Silicon Macs. - [Researchers Find New ESXiArgs Ransomware Variant that Makes Data Recovery Nearly Impossible](https://petri.com/researchers-new-esxiargs-ransomware-variant-recovery-impossible/): Last week, the US Cybersecurity and Infrastructure Security Agency (CISA) released a script to help enterprise customers recover from widespread... - [Microsoft Confirms VM Secure Boot Issue Causing Boot Failures on Windows Server 2022](https://petri.com/microsoft-vm-secure-boot-windows-server-2022/): Microsoft has acknowledged a new issue that might prevent virtual machines (VMs) from booting up on Windows Server 2022. The... - [Cloud Conversations: Dwayne Natwick on SC-100 Exam Guide & Working with Multi-Cloud Solutions](https://petri.com/cloud-conversations-episode-66-dwayne-natwick/): Microsoft Security MVP Dwayne Natwick returns to the show this week to discuss multi-cloud solutions, his new SC-100 Exam Guide, and much more. - [5 Tips for Reducing IT-Related Energy Costs](https://petri.com/5-tips-for-reducing-it-related-energy-costs/): As energy prices continue to soar and IT departments are squeezed even tighter, many IT organizations are looking at how... - [Microsoft to End Support for Exchange Server 2013 in April](https://petri.com/microsoft-end-support-exchange-server-2013-april/): Microsoft is reminding customers that it’s ending extended support for Exchange Server 2013. After April 11, 2023, the older version... - [Microsoft Promises Faster .NET Framework Updates with UUP on Windows 11 22H2](https://petri.com/microsoft-net-framework-updates-uup-windows-11-22h2/): Microsoft has announced some important updates to improve the . NET Framework update experience on Windows 11 version 22H2. The... - [GitHub’s Copilot for Business Now Available with a Powerful AI Model, VPN Proxy Support](https://petri.com/github-copilot-business-powerful-ai-model/): Microsoft has announced the general availability of GitHub Copilot for Business. The AI-powered programming assistant costs $19 per user per... - [Zero Trust: How Azure Active Directory and Identity Management Enable Cloud Security ](https://petri.com/zero-trust-security-azure-ad-identity-management/):  In this article, we detail how Microsoft's Zero Trust approach leverages Azure Active Directory and Identity and Access Management to enable cloud security. - [Microsoft's February Patch Tuesday Updates Fix 75 Windows Vulnerabilities](https://petri.com/windows-patch-tuesday-february-2023/): The Windows Patch Tuesday updates for February fixes dozens of security vulnerabilities, including two flaws that are already being exploited by attackers. - [Microsoft OneDrive to Get New Shared Experience on the Web This Month](https://petri.com/microsoft-onedrive-update-shared-experience/): Microsoft has announced some improvements coming to the Shared experience in OneDrive on the web. The new feature is designed... - [PSA: Microsoft to Permanently Kill Off Internet Explorer 11 on Windows 10 PCs Today](https://petri.com/microsoft-permanently-disable-internet-explorer-11-windows-10/): Microsoft is finally killing off its out-of-support Internet Explorer 11 (IE11) desktop application today. Indeed, the company will release a... - [Microsoft to Rebrand Yammer as Viva Engage](https://petri.com/microsoft-rebrand-yammer-viva-engage/): Microsoft has announced that it’s rebranding the Yammer app to Viva Engage. The new branding changes will begin rolling out... - [Microsoft Edge 110 Adds New IT Policies and Ends Support for Windows 7 and Windows 8.1](https://petri.com/microsoft-edge-110-policies-windows-7-windows-8-1/): Microsoft has recently started rolling out version 110 of its Edge web browser. This month’s update ends support for Windows... - [Microsoft to Launch UUP On-Premises for 30% Smaller, Faster Windows Updates in March](https://petri.com/microsoft-uup-on-premises-faster-windows-updates/): Microsoft is getting ready to launch its Unified Update Platform (UUP) for on-premises environments in March. The company says this... - [LDAP, OpenLDAP, and Active Directory: What's the Difference?](https://petri.com/ldap-openldap-active-directory/): LDAP, OpenLDAP, and Active Directory are the most used identity and access management solutions today. In this article, we'll explain how they work and help you determine which one is the right choice for your network. - [Microsoft Sentinel Adds Azure DDoS Protection to Automate Attack Response](https://petri.com/microsoft-sentinel-azure-ddos-protection/): Microsoft has released a new Azure DDoS Protection solution for Microsoft Sentinel. The new service leverages Azure DDoS Protection logs... - [Microsoft to Reportedly Announce ChatGPT-Like Tools for Office Apps in March](https://petri.com/microsoft-chatgpt-tools-office-apps/): Microsoft’s partnership with OpenAI may soon accelerate with new ChatGPT-like tools coming to Office. According to The Verge, Microsoft may... - [Microsoft to Add New Commercial Policy to Enable Hidden Features on Windows 11](https://petri.com/microsoft-commercial-policy-enable-features-windows-11/): Microsoft has announced the release of a new Windows 11 build for Insiders in the Dev channel. The company has... - [Microsoft Starts Rolling Out New Home Experience for Viva Connections](https://petri.com/microsoft-new-home-experience-viva-connections/): Microsoft has released a new home experience that should make it easier for desktop users to get started with Viva... - [Microsoft to Kill Off Windows Support Diagnostic Tool (MSDT) in 2025](https://petri.com/microsoft-windows-support-diagnostic-tool-msdt/): Microsoft is planning to retire its Microsoft Support Diagnostic Tool (MSDT) and its related troubleshooters for Windows 11. The company... - [Cloud Repatriation: Is It a Risk For Microsoft Azure?](https://petri.com/cloud-repatriation-risks-for-microsoft-azure/): Cloud repatriation appears to be one of the new IT hot topics in 2023. In this article, I explain why cloud repatriation is being part of more and more IT-related conversations this year, what the concerns are for customers, and how recent news might cause Microsoft Azure to lose customers. - [Microsoft to Sunset Teams Free (Classic) in Favor of Paid Plans](https://petri.com/microsoft-to-sunset-teams-free-classic-in-favour-of-paid-plans/): Microsoft has recently announced that it’s retiring the free version of Microsoft Teams for businesses on April 12. The company... - [CISA Releases New Tool to Recover from Ransomware Attacks on Unpatched VMware ESXi Servers](https://petri.com/cisa-releases-tool-recover-vmware-esxi-ransomware/): VMware has warned about a large-scale global ransomware campaign that is currently targeting vulnerable VMware ESXi servers worldwide. The hypervisor... - [How to Secure Sensitive Data in Microsoft 365](https://petri.com/secure-data-microsoft-365/): Too many organizations putting their data in the Microsoft cloud may assume that controls for data security and privacy are present, enabled, and configured by default. In this article, we explain the main ways to secure sensitive data within Microsoft 365. - [Microsoft is Ready to Take on Google With AI-Powered Bing](https://petri.com/microsoft-ai-powered-bing/): Microsoft launched yesterday a new version of its Bing search engine that leverages a next-generation OpenAI model. Microsoft Edge is also getting new Chat and Compose capabilities powered by OpenAI. - [Latest Skype Insider Update Brings Native Support for Apple Silicon Macs](https://petri.com/skype-update-native-apple-silicon-macs/): Microsoft has started testing a native Apple Silicon version of its Skype desktop app. The company says that the update... - [FireCompass Raises $7 Million to Improve its CART and ASM Capabilities](https://petri.com/firecompass-investment-round-cart-asm-capabilities/): FireCompass, a SaaS platform for Continuous Automated Red Teaming (CART) and External Attack Surface Management (EASM) is raising $7 million to expand to more international markets and hire more talent. - [Microsoft Purview Adds Adaptive Protection to Dynamically Mitigate Risks](https://petri.com/microsoft-purview-adaptive-protection-risks/): Microsoft yesterday announced the launch of Adaptive Protection support in Microsoft Purview. The new solution leverages machine learning to help... - [[Update] Microsoft Confirms Outlook.com is Currently Down for Some Users](https://petri.com/microsoft-outlook-outage-emails/): Microsoft has acknowledged a new issue with its Outlook. com webmail service. The company confirmed on its service health website... - [Microsoft Claims Windows 11 Update to Scan Older Office Versions Won't Access Private Data](https://petri.com/microsoft-windows-11-update-scan-older-office-versions/): Last month, Microsoft quietly released a new update to determine the number of users running older versions of Office on... - [Atlassian Releases Patches for Critical Authentication Vulnerability in Jira Software](https://petri.com/atlassian-critical-vulnerability-jira-software/): Atlassian has released fixes to patch a new critical vulnerability in Jira Service Management Server and Data Center. The security... - [How To Find Windows 10 Stop Codes and Fix Errors Quickly](https://petri.com/windows-stop-codes/): In this guide, we explain how to find Windows 10 stop codes retroactively. This will help you to find the reasons behind Windows 10 crashes and guide you to solidify your Windows reliability across your enterprise. - [Microsoft Teams Adds Native Elgato Stream Deck Integration for Managing Meetings and Webinars](https://petri.com/microsoft-teams-meetings-elgato-streamdeck/): Microsoft has announced a new Elgato Stream Deck integration with Microsoft Teams. Indeed, the company has released a new Teams... - [Microsoft Releases New Update to Improve Universal Print Reports](https://petri.com/microsoft-update-improve-universal-print-reports/): Microsoft has announced the release of a new update that brings improvements to reports in its Universal Print service. The... - [Everything You Should Know About AWS EC2 Instances Types](https://petri.com/aws-ec2-instances-types-pricing/): Amazon Elastic Compute Cloud (Amazon EC2) is a service that provides scalable cloud capacity in the Amazon Web Services (AWS)... - [AWS CTO Takes on ChatGPT Over Cybersecurity](https://petri.com/aws-cto-criticizes-chatgpt-over-cybersecurity/): In spite of its surging popularity, not everyone is a fan of OpenAI's ChatGPT chatbot. This week, AWS CTO Werner Vogels took to Twitter to criticize ChatGPT regarding its answer to one of his questions regarding cloud cybersecurity. - [Microsoft to Let IT Admins Customize the Search Experience on the Windows 11 Taskbar](https://petri.com/microsoft-customize-search-box-windows-11-taskbar/): Microsoft is adding a new policy that enables IT admins to customize the Windows Search experience on the Windows 11... - [Viva Sales Gets New GPT-3.5 Integration to Write Emails for Sales Teams](https://petri.com/viva-sales-gpt-integration-write-emails/): Microsoft has introduced new generative AI-based capabilities to improve the customer service experience in Viva Sales. Powered by OpenAI’s GPT... - [What’s New in Windows – January 2023](https://petri.com/whats-new-in-windows-january-2023/): Windows has had a slow start to 2023. But nevertheless, there are some interesting pieces of news to share, including... - [Microsoft Introduces Fully-Managed Azure Load Testing Service for Developers](https://petri.com/microsoft-introduces-azure-load-testing/): Microsoft announced yesterday the general availability of its Azure Load Testing service. The new fully managed service is designed to... - [Microsoft Teams Premium Launches with New OpenAI's GPT Powered Features to Boost Productivity](https://petri.com/microsoft-teams-premium-subscription/): Microsoft has announced that Teams Premium is now generally available for enterprise customers. The new add-on subscription, powered by OpenAI’s... - [What is Microsoft Sentinel and How Does It Protect Cloud and On-Premises Resources? ](https://petri.com/what-is-microsoft-sentinel/): Microsoft Sentinel, which was previously known as Azure Sentinel, is a Security Information and Event Management (SIEM) solution for Azure and Microsoft 365. In this article, we explain how Microsoft Sentinel works and how it can help organizations to protect their cloud and on-premises resources. - [Microsoft Relaunches Uncovering Hidden Risks Podcast](https://petri.com/microsoft-relaunches-uncovering-hidden-risks-podcast/): Uncovering Hidden Risks is a new monthly podcast from the Microsoft Security team that looks at taking the data security... - [Microsoft Warns About New Consent-Phishing Attacks Used to Steal Data](https://petri.com/microsoft-consent-phishing-attack/): Security researchers have discovered a phishing campaign that tricked users into authorizing permissions for malicious OAuth applications. Microsoft has disabled... - [What You Need to Know About Microsoft's Power Platform Updates in January 2023](https://petri.com/power-platform-january-2023-updates/): In January, Microsoft announced an update for the Power Automate embed pay-as-you-go program, a new Shared Device Mode feature for Power Apps on Android, and a new virtual tables wizard to easily integrate external data from SharePoint and SQL into Dataverse. - [Microsoft Stops Selling Windows 10 Digital Downloads](https://petri.com/microsoft-stops-selling-windows-10-downloads/): Microsoft has officially stopped selling downloadable licenses for Windows 10 Home and Professional editions on its website. Indeed, the company... - [Microsoft Teams Rooms on Windows to Get a Visual Refresh, New Features for IT Admins](https://petri.com/microsoft-teams-rooms-windows-visual-refresh/): Microsoft has announced a new design for Microsoft Teams Rooms on Windows. The company announced yesterday that the upcoming update... - [Microsoft Launches Office 365 Government Secret Cloud to Handle Classified Data](https://petri.com/microsoft-office-365-government-secret-cloud/): Microsoft has announced the general availability of its Office 365 Government Secret service. The new cloud SKU supports Impact Level... - [Microsoft Defender for Endpoint Adds Device Isolation Support for Linux Machines](https://petri.com/microsoft-defender-endpoint-device-isolation-linux/): Microsoft Defender for Endpoint has introduced device isolation support in public preview on onboarded Linux machines. The security feature enables... - [Chance To Win $250 in Petri 2023 Audience Survey](https://petri.com/petri-2023-audience-survey/): At Petri, we are committed to delivering quality content and an engaging experience for our readers. To do that, we... - [Microsoft 365 Outage Caused by WAN Router IP Address Change, Says Microsoft](https://petri.com/microsoft-365-outage-wan-router-ip-change/): Last week, Microsoft confirmed a multi-hour outage that prevented users from accessing Azure, Microsoft Teams, and other Microsoft 365 services.... - [Microsoft Releases Optional Update to Fix Remote Desktop Bug in Windows 11](https://petri.com/microsoft-fix-remote-desktop-bug-windows-11/): Microsoft has released a new optional patch to fix a bug that caused the Remote Desktop application to crash on... - [Microsoft Intune Gets Troubleshooting Pane Update and Other New Features](https://petri.com/microsoft-intune-troubleshooting-pane-update/): Microsoft has released a new troubleshooting pane update for Microsoft Intune. The new experience is designed to provide information about... - [What Are the UPN and sAMAccountName User Account Attributes?](https://petri.com/upn-samaccountname-user-account-attributes/): This article explains what the UPN and sAMAccountName are user account attributes in Active Directory, and how the username and user logon name can be used in your organization. - [Microsoft Earnings Report FY2023 Q2](https://petri.com/microsoft-earnings-report-fy2023-q2/): This week, during its quarterly earnings call, Microsoft reported that revenue is up two percent year-on-year. But there were definitely... - [Microsoft Recommends IT Admins to Patch Exchange Servers](https://petri.com/microsoft-patch-exchange-servers/): Microsoft has recommended customers to deploy the latest January 2023 security updates on on-premises Exchange servers. The company urges IT... - [Cloud Conversations: Tom Arbuthnot on Empowering.Cloud, Unified Communications, and Microsoft Teams](https://petri.com/cloud-conversations-episode-65-tom-arbuthnot/): Tom Arbuthnot is a Microsoft MVP, a Microsoft Certified Master, and the co-founder of Empowering.Cloud. In this week's episode, Tom joins Peter Rising on the show to discuss unified communications, the evolution to Teams from Lync and Skype for Business, co-founding Empowering.Cloud, and more. - [Five Essential Disaster Recovery Test Scenarios](https://petri.com/essential-disaster-recovery-test-scenarios/): Many organizations that have disaster recovery plans may still lag in disaster recovery testing. In this article, we take a look at 5 essential disaster recovery test scenarios that all organizations should perform to guarantee that their disaster recovery plans will be effective when required. - [Microsoft Starts Force Upgrading Windows 11 Users to version 22H2](https://petri.com/microsoft-upgrading-windows-11-version-22h2/): Microsoft has started the process of automatically upgrading users that are on Windows 11 version 21H2 to version 22H2. The... - [Microsoft Plans to Block All Downloaded Excel XLL Add-Ins](https://petri.com/microsoft-block-downloaded-excel-xll-add-ins/): Microsoft is planning to make its Office apps more secure by blocking all Excel XLL add-ins downloaded from the internet.... - [Microsoft Offers Temporary Fix for Start menu or UWP App Freezing Issues on Windows 11 and 10](https://petri.com/microsoft-fix-start-menu-app-freezing-windows/): Microsoft has acknowledged an issue that could cause problems with the Start menu, Windows Search, and various UWP applications. The... - [Windows Terminal Preview 1.17 Adds Process Restart and Mica Support](https://petri.com/windows-terminal-preview-1-17/): Microsoft has updated the preview release of Windows Terminal to version 1. 17. The latest update brings several new features... - [Azure Native New Relic Service Provides Full Stack Observability To Boost Digital Transformation](https://petri.com/microsoft-azure-native-new-relic-service/): Microsoft has announced that its Azure Native New Relic service is now available for customers in the Microsoft Azure Marketplace.... - [How to Run a Successful Microsoft Teams Meeting, Live Event, or Webinar](https://petri.com/microsoft-teams-meeting-live-event-webinar/): Microsoft Teams meetings, live events, and webinars are the three main video conferencing options in Microsoft Teams, but which one should you choose? In this article, we give you an overview of the different features of each option and provide recommendations and guidance on when to use each. - [Microsoft Confirms Global Network Outage Hits Teams, Outlook, and Azure](https://petri.com/microsoft-network-outage-teams-outlook-azure/): Microsoft is investigating a network configuration issue that is currently preventing users from accessing Microsoft Teams, Outlook, Azure, and other... - [AWS Launches New Cloud Computing Region in Melbourne](https://petri.com/aws-launches-cloud-region-melbourne/): Amazon Web Services (AWS) has announced the launch of its second cloud region in Melbourne, Australia. The new Asia Pacific... - [Microsoft Releases Update to Streamline Exchange Online License Assignments](https://petri.com/microsoft-exchange-online-license-assignments/): Microsoft has released a new feature that adds support for concurrent license assignments in Exchange Online. The latest release enables... - [Microsoft Announces New Multibillion-Dollar Investment in OpenAI](https://petri.com/microsoft-multibillion-dollar-investment-openai/): Microsoft has announced a new multibillion-dollar partnership with OpenAI. The company explained that the deal marks the beginning of the... - [Install Windows 11/Server 2022 in VMware Workstation 17 Pro](https://petri.com/install-windows-in-vmware-workstation-pro/): In this article, I’ll show you how to successfully install Windows 11 or Windows Server 2022 in VMware Workstation 17... - [Microsoft Teams Rolls Out New Video Filter Effects for Meetings](https://petri.com/microsoft-teams-video-filter-effects-meetings/): Microsoft Teams has introduced a set of new video filters in preview to enhance video calls and meetings. The Microsoft... - [How to Export Active Directory Users to CSV With PowerShell and ADUC](https://petri.com/export-active-directory-users-csv-powershell/): IT Pros sometimes need to extract task-specific information about a subset or all of their users from Active Directory. In this article, we explain how to export Active Directory users to a CSV file using PowerShell and Active Directory Users and Computers (ADUC). - [Microsoft Confirms System Restore Breaks Apps on Windows 11 Version 22H2](https://petri.com/microsoft-system-restore-breaks-apps-windows-11-22h2/): Microsoft has confirmed that the System Restore feature could break some apps on Windows 11 version 22H2. The company detailed... - [Collaborating with Microsoft 365: File Sharing, Real-Time Co-Authoring, and Microsoft Loop Components](https://petri.com/microsoft-365-file-sharing-loop-components/): Microsoft 365 includes powerful collaboration features that allow teams to work on and share Office documents. This article takes you through the basics of file sharing and collaboration in Microsoft 365, including how to use Microsoft 365 Groups and the new dynamic Microsoft Loop components.  - [Cloud Conversations: Eswar Prakash on Physical Computing with Power Platform](https://petri.com/cloud-conversations-episode-64-eswar-prakash/): Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing,... - [Microsoft Rebrands the Office Insider Program as Microsoft 365 Insider](https://petri.com/microsoft-office-insider-program-microsoft-365-insider/): Microsoft has announced that it’s rebranding the Office Insider program as the Microsoft 365 Insider program. The company says that... - [Microsoft to End Sale of Windows 10 Home and Pro Licenses This Month](https://petri.com/microsoft-block-sale-windows-10-licenses/): Microsoft has finally decided to stop selling Windows 10 licenses to consumers and enterprise customers by the end of this... - [Microsoft Patches Four SSRF Vulnerabilities in Azure Cloud Services](https://petri.com/microsoft-ssrf-vulnerabilities-azure-services/): Microsoft has patched vulnerabilities in four different Azure cloud services. The security flaws could enable attackers to perform a server-side... - [Microsoft to Block SMB Guest Authentication By Default in Windows 11 Pro](https://petri.com/microsoft-block-smb-guest-authentication-windows-11-pro/): Microsoft is planning to disable insecure SMB (Server Message Block) guest authentication fallbacks by default in Windows 11 Pro. The... - [How to Use Microsoft Lists For Work Management and Tracking](https://petri.com/microsoft-lists-work-management-tracking/): Microsoft Lists is an evolution of SharePoint Lists that can be used to aggregate all the lists you have in Microsoft 365. In this article, we'll explain how to get started with Microsoft Lists and use it for work management and tracking. - [Git Releases New Security Updates to Block Remote Code Execution Attacks](https://petri.com/git-security-updates-block-remote-code-execution/): Git has recently released new updates to address two critical security vulnerabilities that could allow hackers to launch remote code... - [Apple Unveils New M2-Powered MacBook Pro and Mac Mini Devices](https://petri.com/apple-m2-macbook-pro-mac-mini-devices/): Apple has finally announced its much-anticipated MacBook Pro and Mac Mini models powered by new M2 Pro and M2 Max... - [Microsoft to Expand ChatGPT Capabilities to Azure OpenAI Service](https://petri.com/microsoft-expand-chatgpt-azure-openai/): Microsoft has announced the general availability of its Azure OpenAI service. Microsoft CEO Satya Nadella also unveiled its plans to... - [Microsoft Releases a Script to Recover Some Windows App Shortcuts Deleted on Friday 13](https://petri.com/microsoft-script-recover-windows-app-shortcuts/): Last week, Microsoft confirmed a new issue that caused application shortcuts to disappear from the Taskbar and Start Menu on... - [RAID 5 vs. RAID 10: What's the Difference and Which One Is Best?](https://petri.com/raid-5-vs-raid-10/): If you need help choosing between RAID 5 and RAID 10 for your IT environment, this article explains the intricacies of how RAID 5 and RAID 10 work and what their advantages and disadvantages are based on overall business and IT needs in your enterprise. - [Amazon RDS Now Supports Custom SQL Server Images](https://petri.com/amazon-rds-custom-sql-server-images/): Amazon Relational Database Service (RDS) now supports creating custom SQL Server database images using a Custom Engine Version (CEV). OS customizations can now persist across database instances without requiring businesses to redo their customizations. - [Cloud Conversations - Femke de Vroome on Favourite Teams Features and Teams Governance](https://petri.com/cloud-conversations-episode-63-femke-de-vroome/): Femke de Vroome is a Productivity Engineer at Wortell. In this week's Cloud Conversations episode, she joins Kat Beedim and Femke Cornelissen to discuss her favorite Teams features, simplifying the Teams governance customer journey, and more. - [[Updated] Microsoft to Fix Defender Bug Deleting Windows Apps Shortcuts from Taskbar](https://petri.com/microsoft-defender-bug-windows-apps-shortcuts/): Microsoft is investigating a new bug that’s currently removing application shortcuts from the Taskbar and Start Menu on Windows PCs.... - [Microsoft FastTrack Now Helps IT Admins Deploy Windows Autopatch at No Additional Cost](https://petri.com/microsoft-fasttrack-deploy-windows-autopatch/): Microsoft has announced some new features added to its Windows Autopatch service this month. Windows Autopatch is a cloud-based tool... - [How to Create Flows with Power Automate to Automate Workflows Between Apps](https://petri.com/power-automate-create-flows/): Power Automate is a workflow service that allows you to automate many different actions across common apps and services.  You... - [Microsoft Planner Now Lets Users Create Recurring Tasks](https://petri.com/microsoft-planner-recurring-tasks/): Microsoft has released some much-anticipated updates for Microsoft Planner this week. The company announced that its popular task management tool... - [ManageEngine ADSelfService Plus: Protect On-Premises and Cloud Services from Password Attacks with Multi-factor Authentication](https://petri.com/manageengine-adselfservice-plus-mfa/): Advanced password attacks, like brute force and those launched by malicious insiders, are devastating the security of today’s enterprises and... - [Microsoft to Add IPv6 Support to Azure Active Directory in March](https://petri.com/microsoft-ipv6-support-azure-active-directory/): Microsoft has announced that it’s bringing Internet Protocol version 6 (IPv6) support to its Azure Active Directory services. The company... - [How to Easily Edit the Hosts File in Windows 11](https://petri.com/easily-edit-the-hosts-file-in-windows-11/): In this article, you will learn how to edit the Windows 11 hosts file. There are several easy ways that... - [Microsoft 365 to Launch New $1.99/Month Basic Subscription with 100 GB of OneDrive Storage](https://petri.com/microsoft-launch-1-99-month-basic-subscription/): Microsoft has announced its plans to launch a new Microsoft 365 Basic tier later this month. The affordable plan costs... - [Microsoft to Add Some Popular Teams Features to a New Premium Subscription](https://petri.com/microsoft-teams-features-premium-subscription/): Last month, Microsoft launched a new Teams Premium plan in preview as an add-on for commercial customers. Now, the company... - [Microsoft Releases Exchange Server Updates to Improve Security of PowerShell Payloads](https://petri.com/microsoft-exchange-server-updates-powershell-payloads/): Microsoft has released yesterday the January 2023 Security Updates (SUs) for all supported versions of the Exchange Server. The latest... - [Microsoft's January Patch Tuesday Updates Fix 98 Windows Vulnerabilities](https://petri.com/windows-patch-tuesday-updates-january-2023/): This month’s Patch Tuesday updates include fixes for 98 vulnerabilities in Windows, Office, Microsoft Exchange Server, and more. Yesterday also marked the end of support for Windows 7, Windows 8.1, and Windows RT 8.1. - [Microsoft Discontinues Support for Windows 7 ESUs and Windows 8.1](https://petri.com/microsoft-ends-support-windows-7-windows-8-1/): Microsoft is finally ending support for Windows 7 Extended Security Updates (ESUs) and Windows 8. 1. This means that the... - [Microsoft Teams, Viva, and Outlook Add New Collaboration Features for Shared Devices](https://petri.com/microsoft-updates-teams-viva-outlook/): Microsoft has announced a handful of new features across Microsoft Teams, Viva, and other Microsoft 365 apps. The new solutions... - [Microsoft Acquires Fungible to Bolster Azure Networking and Storage](https://petri.com/microsoft-acquires-fungible/): Microsoft has announced the acquisition of Fungible, a start-up selling composable disaggregated infrastructure solutions for data centers. The company plans... - [What Are the Best Hyperconverged Infrastructure (HCI) Solutions on the Market?](https://petri.com/top-5-hyperconverged-infrastructure-platforms/): Hyperconverged infrastructure platforms allow businesses to virtualize servers, storage, and underlying networks and implement a software-driven control of their IT environment. In this article, we look at the top 5 HCI platforms and explain how they can help to reduce your overall IT costs. - [Microsoft is Reportedly Bringing ChatGPT Features to Outlook, Word, and PowerPoint](https://petri.com/microsoft-chatgpt-outlook-word-powerpoint/): Microsoft is reportedly planning to integrate OpenAI’s ChatGPT technology into its Office applications. A new report from The Information suggests... - [Amazon Cuts 18,000 Jobs From its Global Workforce](https://petri.com/amazon-cuts-18000-jobs/): Amazon has announced that it was laying off 18,000 of its employees. The 18,000 layoffs represent roughly 6 percent of Amazon’s workforce, and most of the cuts will affect the company's consumer retail business and human resources divisions. - [Amazon Simple Storage Service (Amazon S3) Now Encrypts New Objects By Default](https://petri.com/amazon-s3-encrypt-objects-by-default/): Amazon Web Services announced yesterday that Amazon Simple Storage Service (Amazon S3) can now encrypt all new objects by default.... - [Microsoft Offers Workaround for Bug Breaking Database Connections for Windows Apps](https://petri.com/microsoft-bug-database-connections-windows-apps/): Last month, Microsoft acknowledged that some Windows applications might experience problems while connecting to databases through ODBC (Open Database Connections).... - [Using Autodesk Drive to Collaborate on Design and Model Data in the Cloud](https://petri.com/what-is-autodesk-drive/): Autodesk Drive is a cloud storage platform that allows individuals and small teams to collaborate on design data in the... - [Windows Server 2012 Extended Support Ends in October](https://petri.com/windows-server-2012-extended-support-ends-october/): Microsoft is set of end extended support for Windows Server 2012 and Windows Server 2012 R2 in October 2023. The... - [What's New with Microsoft Power Platform in December 2022](https://petri.com/microsoft-power-platform-december-2022-updates/): As we all move into the new year, let's take a look at the latest updates Microsoft announced for its Power Platform in December including Power BI Interface changes and real-time app co-authoring in model-driven apps. - [PyTorch Discloses Internal Dependency Compromised with Malicious Code](https://petri.com/pytorch-dependency-attack-malicious-code/): Last week, PyTorch identified a supply chain attack that potentially caused developers to download a compromised PyTorch dependency. The PyTorch... - [How To Use Microsoft PowerToys to Improve Productivity](https://petri.com/microsoft-powertoys/): Microsoft PowerToys is a free download for Windows that adds features for power users that are not included in Windows... - [Microsoft Introduces Automate Tab in Excel for Windows and Mac](https://petri.com/microsoft-excel-automate-tab-windows-mac/): Microsoft announced yesterday that it has started rolling out the Automate tab to Excel for Windows and macOS. The latest... - [How to Create Conditional Access Policies using PowerShell](https://petri.com/powershell-create-conditional-access-policies/): This article explains how to create Conditional Access policies using PowerShell instead of the graphical user interface. By using PowerShell, IT Pros can easily replicate the same Conditional Access policies across multiple tenants. - [Bitwarden – An Open-Source Alternative to LastPass for Business and Personal Use](https://petri.com/bitwarden-alternative-to-lastpass/): I’ve been using Bitwarden for the last couple of years and in this overview, I’ll look at why you might... - [Microsoft Teams Added New Delete Chat Feature and 800+ Emoji Reactions in December 2022](https://petri.com/microsoft-teams-delete-chat-december-2022/): Microsoft has recently detailed the latest round of updates made to its Teams collaboration service in December 2022. It’s been... - [What’s New in Windows – December 2022](https://petri.com/whats-new-in-windows-december-2022/): December was relatively quiet as Microsoft shuts down for the last two weeks of the year. But we did get... - [Microsoft Teams Gets Co-organizer Support for Managing Breakout Rooms](https://petri.com/microsoft-teams-co-organizer-breakout-rooms/): Microsoft Teams is getting a new update that brings co-organizer support for managing breakout rooms. The company has recently announced... - [Report: Windows 11 to Add a Full-Screen Widgets Panel and Other New Features in Early 2023](https://petri.com/windows-11-update-full-screen-widgets-panel-2023/): Microsoft is working on a slew of notable improvements for Windows 11 that are expected to arrive with different “Moment”... - [What Are the Network Requirement Changes in Azure Stack HCI Version 22H2?](https://petri.com/azure-stack-hci-version-22h2-network-requirements/): Azure Stack HCI version 22H2 brought some significant storage network capacity changes and new network equipment requirements. In this article, we give you a quick overview of the changes IT pros need to take into consideration to implement the latest version of Azure Stack HCI. - [PSA: Microsoft to Switch Off Basic Authentication in Exchange Online in January](https://petri.com/microsoft-switch-off-basic-authentication-exchange-online/): Microsoft is once again reminding customers that it will permanently turn off Basic Authentication in Exchange Online in early January.... - [Security Researchers Discover Critical Linux Kernel Flaw Affecting SMB Servers](https://petri.com/linux-critical-kernel-flaw-smb-servers/): The security research firm Zero Day Initiative (ZDI) has disclosed a critical vulnerability in the Linux kernel server. The new... - [How to Choose Between RAID 0 Vs. RAID 1](https://petri.com/raid-0-vs-raid-1/): The main differences between RAID 0 and RAID 1 include performance, redundancy, and cost. In this article, we'll help you determine how to choose the best RAID level for your projects based on the advantages and disadvantages of each type. - [LastPass Confirms Hackers Stole Personal Data and Encrypted Password Vaults](https://petri.com/lastpass-hackers-stole-encrypted-password-vaults/): Back in August, LastPass announced that its systems were compromised in a security incident. Now, LastPass CEO Karim Toubba disclosed... - [How Does eDiscovery Work Within Microsoft 365?](https://petri.com/microsoft-365-ediscovery/): For organizations working with Microsoft 365, content sprawl may become inevitable as users start to store data across various services. In this article, we explain how to use eDiscovery within Microsoft 365 to manage risk levels for organizational data. - [Amazon Web Services (AWS): A 2022 FAQ](https://petri.com/aws-faq-2022/): Amazon Web Services (AWS) remains the world’s leading cloud services provider, but not everyone may be familiar with its various services. In this article, we'll try to answer some of the most common questions you may have about Amazon Web Services in 2022. - [Samsung Releases Server-Side Fixes for Microsoft Intune Android 13 Enrollment Issues](https://petri.com/samsung-fixes-microsoft-intune-android-13-enrollment-issues/): Microsoft this week confirmed that the Android 13 update caused enrollment issues with Microsoft Intune on some Samsung phones. The... - [AWS Launches New Local Zones in Bangkok and Kolkata](https://petri.com/aws-launches-local-zones-bangkok-kolkata/): Amazon Web Services (AWS) has announced the launch of its two new Local Zones in Bangkok and Kolkata. The company... - [Microsoft Releases Fix for Hyper-V VM Issues in Windows Server](https://petri.com/microsoft-fix-hyper-v-vm-issues-windows-server/): Microsoft released yesterday out-of-band updates for Windows Server 2019 and Windows Server 2022. The updates are meant to address an... - [Introduction to Microsoft Teams Premium](https://petri.com/microsoft-teams-premium/): Microsoft Teams Premium aims to make every meeting — from 1:1 reunions to large meetings to virtual appointments to webinars — more personalized, intelligent, and secure. In this article, we'll explain everything you need to know about Microsoft Teams Premium. - [Microsoft Confirms New Issue Causing BSOD Errors on Windows 10 PCs](https://petri.com/microsoft-bug-bsod-errors-windows-10/): Microsoft has acknowledged a new bug that causes some Windows 10 devices to receive an error with a Blue Screen... - [Google Workspace Extends Client-Side Encryption to Gmail](https://petri.com/google-workspace-client-side-encryption-gmail/): Google has recently announced client-side encryption support for Gmail on the web. The long-awaited security feature is currently available in... - [Microsoft Intune Gets New Controls to Configure Expedited Windows Feature and Quality Updates](https://petri.com/microsoft-intune-expedited-windows-feature-quality-updates/): Microsoft has released a new update that enables customers to configure policies for Windows feature updates and expedited quality updates... - [What Is Notion? A Guide For Beginners](https://petri.com/what-is-notion-a-guide-for-beginners/): Notion is a cloud-based productivity and collaboration all in-one workspace tool. In this article, I’ll answer the question ‘what is Notion?... - [Microsoft to Permanently Disable Internet Explorer 11 in February 2023](https://petri.com/microsoft-disable-internet-explorer-11-windows-10/): Microsoft has announced some changes in its plans to kill off Internet Explorer (IE11) on Windows 10. The company detailed... - [Microsoft Teams Premium Add-on Arrives with New AI-Powered Meeting Features](https://petri.com/microsoft-teams-premium-add-on-preview/): Microsoft unveiled its plans to launch Microsoft Teams Premium as an add-on at its Ignite 2022 conference. Now, the company... - [Should You Upgrade to Office 2021 LTSC or Microsoft 365 Apps?](https://petri.com/office-2021-ltsc-or-microsoft-365-apps/): With Office 2013, 2016, and 2019 soon reaching end-of-support, IT pros need to offer their managers recommendations on how to proceed. In this article, we detail the pros and cons of upgrading to Office 2021 LTSC or migrating to the subscription model, Microsoft 365 Apps for enterprise. - [Microsoft to Fix New Bug Breaking Hyper-V VMs in Windows Server](https://petri.com/microsoft-fix-hyper-v-vms-windows-server/): Earlier this week, Microsoft released the December 2022 Patch Tuesday updates for various supported versions of Windows. Now, the company... - [Microsoft Exchange Online To Deprecate Remote PowerShell Support in June 2023](https://petri.com/exchange-online-deprecate-remote-powershell/): Microsoft announced yesterday that it’s blocking the use of Remote PowerShell (RPS) protocol for Exchange Online in June 2023. The... - [How to Use Managed Metadata Within SharePoint Online](https://petri.com/sharepoint-managed-metadata/): SharePoint Online provides content types, managed metadata, and sensitivity labels to classify data. In this article, we’ll explain how you can use SharePoint managed metadata to control how users add metadata to content across sites in an organization. - [Microsoft to Roll Out EU Data Boundary Plan for Cloud Services on January 1](https://petri.com/microsoft-eu-data-boundary-plan-january-1/): Microsoft has announced a new EU Data Boundary plan for its cloud services. Starting in January 2023, the new data... - [Skype Now Supports Real-Time Video Call Translations With Your Own Voice](https://petri.com/skype-truvoice-real-time-video-call-translations/): Microsoft has announced a new update to improve real-time translations in Skype. The company released a new AI-powered TruVoice feature... - [AWS Announces Amazon Comprehend for Intelligent Document Processing](https://petri.com/aws-announces-amazon-comprehend-for-intelligent-document-processing/): Amazon Comprehend for Intelligent Document Processing (IDP) is a new natural language processing service that can uncover relationships and connections in various document types. It can classify and extract data from PDF documents, Microsoft Word files, and more without extracting the text first. - [Microsoft Rolls Out Fix for LSASS Memory Leak Bug Affecting Windows Server](https://petri.com/microsoft-fix-lsass-memory-leak-bug-windows-server/): Microsoft has released a fix for a memory leak bug in LSASS that could have caused some domain controllers to... - [Microsoft Releases Windows Updates to Fix Quick Assist Installation Issues](https://petri.com/microsoft-windows-updates-fix-quick-assist-installation-issues/): Microsoft has released new updates to improve the Quick Assist experience on Windows 10 and Windows 11. This release also... - [Microsoft's December 2022 Patch Tuesday Updates Fix 52 Windows Vulnerabilities](https://petri.com/windows-december-2022-patch-tuesday-updates/): With Microsoft's December 2022 Patch Tuesday updates, the company fixed a total of 52 vulnerabilities in Windows, Office, and other components. There are also minor new features for both Windows 11 versions 22H2 and 21H2 this month. - [What Are Azure ArcBox and Azure Stack HCI Jumpstart?](https://petri.com/azure-arc-jumpstart-arcbox/): Microsoft announced at its latest Ignite conference the public preview for Azure Jumpstart HCIBox, as well as Azure Jumpstart ArcBox for DataOps. We explain in this article how IT pros can use these sandbox environments in their Azure Arc learning journey. - [Microsoft Authenticator to End Support for the Apple Watch in January 2023](https://petri.com/microsoft-authenticator-end-support-apple-watch/): Microsoft is getting ready to discontinue support for its Authenticator app on the Apple Watch in January 2023. The company... - [Microsoft Releases New Customization Features for Sign-In Experiences in Azure AD](https://petri.com/microsoft-customization-features-sign-in-experiences-azure-ad/): Microsoft has released a new update to improve the Azure Active Directory-based user sign-in experience for enterprise customers. The latest... - [GitHub Copilot for Business is Now Available with Admin Controls](https://petri.com/github-copilot-for-business-available-admin-controls/): GitHub has launched a business version of its GitHub Copilot AI-based coding assistant. The new GitHub Copilot for Business plan... - [Microsoft Acquires Hollowcore Fiber Cable Maker Lumenisity to Bolster Cloud Infrastructure](https://petri.com/microsoft-acquires-lumenisity/): Microsoft has announced the acquisition of Lumenisity, a UK-based maker of hollow core fiber (HCF) cable for global networking infrastructure.... - [Recession Proof Your IT: How to Reduce IT Costs Without Compromising Service](https://petri.com/recession-proof-your-it-how-to-reduce-it-costs-without-compromising-service/): With talk of a recession just around the corner, IT departments need to find ways to do more with less... - [Microsoft Edge to End Support for Windows 7 and Windows 8/8.1 in January 2023](https://petri.com/microsoft-edge-end-support-windows-7-windows-8-8-1/): Microsoft Edge is finally dropping support for Windows 7 and Windows 8/8. 1 in January 2023. Microsoft has announced in... - [How to Use Windows File Recovery to Recover Lost Files](https://petri.com/windows-file-recovery/): Windows File Recovery is a free command-line utility for recovering deleted files in Windows 10 version 2004 and newer. If you have lost any files on your PC after accidentally deleting them, this article explains how to use Windows File Recovery to recover them in a couple of steps. - [Microsoft Authenticator for iOS Gets FIPS 140 Compliance to Support U.S. Federal Agencies](https://petri.com/microsoft-authenticator-ios-fips-140-compliance/): Microsoft has announced that its Authenticator app for iOS is now compliant with the Federal Information Processing Standards (FIPS 140) security... - [How to Install and Configure Apache Web Server on Ubuntu 22.04](https://petri.com/install-apache-ubuntu-linux/): Apache web server is one of the most popular tools for serving web pages and deploying web applications using UNIX and Windows operating systems. In this tutorial, I’ll show you how to install and configure Apache web server on Ubuntu Linux 22.04. - [Microsoft's New Azure Storage Mover Tool Makes Cloud Migrations Easier](https://petri.com/microsofts-azure-storage-mover-tool/): Back in February, Microsoft announced an Azure file migration program that provides popular migration tools to customers at no additional... - [Cloud Conversations – Will Rowe on Careers in Tech](https://petri.com/cloud-conversations-episode-62-will-rowe/): Will Rowe is a well-known figure in the Microsoft community and is Director at MS Talent. In this week's Cloud Conversations episode, Will joins Femke and Peter to discuss launching MS Talent, the great resignation, the state of the talent pool, and much more. - [Microsoft Releases PowerShell Crescendo 1.1.0-preview01](https://petri.com/microsoft-powershell-crescendo-1-1-0-preview01/): Microsoft has announced the release of PowerShell Crescendo 1. 1. 0-preview01. The latest version brings error-handling improvements, a new schema,... - [Bitwarden Adds Passwordless Authentication Support to Secure Web Vault](https://petri.com/bitwarden-passwordless-authentication-web-vault/): Bitwarden has recently announced passwordless authentication support for its web vault. The new feature allows users to log into their... - [Microsoft Adds RDP Shortpath Support to Azure Virtual Desktop](https://petri.com/microsoft-rdp-shortpath-azure-virtual-desktop/): Microsoft has announced the general availability of RDP Shortpath support for public networks in Azure Virtual Desktop. The RDP Shortpath... - [Microsoft Teams Introduces Communities for Consumers and Small Businesses](https://petri.com/microsoft-teams-communities-consumers-small-businesses/): Microsoft has started rolling out a new Communities feature in Microsoft Teams for Consumers and Teams Essentials. This release enables... - [What’s New in Windows – November 2022](https://petri.com/whats-new-in-windows-november-2022/): It’s been a relatively quiet month what with Thanksgiving in the U. S. and Microsoft slowly winding down for the... - [Microsoft Confirms New Windows Bug Causing Database Connection Issues with Some Apps](https://petri.com/microsoft-windows-bug-database-connection-issues-apps/): Microsoft has acknowledged a new issue with the latest batch of Patch Tuesday updates released on November 8. The company... - [Microsoft Teams Lets Users Set Adobe Acrobat As the Default PDF Viewer](https://petri.com/microsoft-teams-set-adobe-acrobat-default-pdf-app/): Microsoft has released a new Adobe Acrobat integration in Microsoft Teams. The latest update allows users to set Acrobat as... - [Action1 Review – Free Cloud-Native Patch Management for Windows](https://petri.com/action1-review-patch-management-windows/): In this review, we show you how you can use Action1’s free platform to patch Windows and third-party applications. See... - [Cloud Conversations: Ana Ines Urrutia on Viva Explorers, Travel and Flying planes](https://petri.com/cloud-conversations-episode-61-ana-ines-urrutia/): Ana Inés Urrutia is a Dynamics 365 Human Resources specialist and a Microsoft Business Applications MVP. In this new Cloud Conversations episode, she joins Azure and Peter to chat about travel and her career with Dynamics 365 and Human Resources. - [PowerShell Set Environment Variable - A Step-By-Step Guide](https://petri.com/powershell-set-environment-variable/): Environment variables allow you to access command line tools and control the execution of programs on Windows. In this article, we’ll explain how environment variables work and the different ways to set an environment variable with PowerShell. - [Microsoft Exchange Online Adds Support for Role Based Access Control for Applications](https://petri.com/microsoft-exchange-online-role-based-access-control-for-applications/): Microsoft has introduced role-based access control (RBAC) support for applications in Exchange Online. The new security feature brings a new... - [Microsoft Syntex to Launch New PAYG Backup and Restore Solution for Exchange, OneDrive, and SharePoint](https://petri.com/microsoft-syntex-backup-restore-solution/): Microsoft relaunched its Syntex service with a broad set of AI-powered tools to automate content creation, indexing, and discovery at... - [How to Enable Windows 11 Config Lock on Secured-Core PCs](https://petri.com/windows-11-config-lock/): Windows 11 config lock is a new system-level feature to protect secured-core PCs from unintentional misconfiguration. In this article, I'll be detailing how Windows 11 config lock works and how you can configure it in the Intune Admin Center. - [Azure Stack HCI Gets New Network HUD Feature to Detect Networking Issues](https://petri.com/azure-stack-hci-network-hud-detect-networking-issues/): Microsoft has released a new Network HUD feature that allows IT administrators to identify and mitigate networking issues in Azure... - [What’s New with Microsoft’s Power Platform in November 2022](https://petri.com/microsoft-power-platform-november-2022-updates/): Microsoft has just updated its Power Automate desktop app with a new client update and process mining features. In November, we’re also getting a preview of a PowerFX formula repair tool and Power Apps developer tools. - [Microsoft Releases Azure AD Authentication Support for Windows Admin Center in Azure](https://petri.com/microsoft-azure-ad-authentication-windows-admin-center-azure/): Microsoft has recently announced that Azure Active Directory authentication support is generally available for organizations using Windows Admin Center in... - [Microsoft Teams Adds Scheduled Messages and Other Chat Features](https://petri.com/microsoft-teams-updates-november-2022/): Microsoft has just published a roundup of new features added to its Teams collaboration service in November 2022. The list... - [Why You Should Have a Fabric Domain and Network for Azure Stack HCI](https://petri.com/azure-stack-hci-fabric-domain-network/): Microsoft's hyperconverged infrastructure (HCI) cluster solution can be pretty complex to implement and secure. In this article, we explain how IT pros can create a fabric domain and network to keep Azure Stack HCI separated from the rest of the application services hosted by their organization. - [Windows 11 Optional Update Adds New MDM Policy for Organizational Messages](https://petri.com/windows-11-optional-update-policy-organizational-messages/): Microsoft has released a new optional patch (KB5020044) for Windows 11 version 22H2. The latest release brings some new features... - [Here Are The Main Highlights From Amazon's AWS re:Invent 2022 Conference](https://petri.com/aws-reinvent-2022-conference-highlights/): Last week, Amazon held its AWS re:Invent 2022 conference in Las Vegas. Re:Invent is Amazon’s premier conference for Amazon Web... - [Microsoft Defender Vulnerability Management Now Supports Firmware Assessments](https://petri.com/microsoft-defender-vulnerability-management-firmware-assessments/): Microsoft has released a new update for its Microsoft Defender vulnerability management service. The latest release enables IT admins to... - [Microsoft Entra Workload Identities Service is Now Generally Available](https://petri.com/microsoft-entra-workload-identities-generally-available/): Microsoft has announced the general availability of its Entra Workload Identities service. The new solution is designed to manage identity... - [Cloud Conversations – Meron Gebremedhin on the Pathfinders Power Platform Community](https://petri.com/cloud-conversations-meron-gebremedhin-pathfinders-power-platform/): In this week's Cloud Conversations episode, Meron Gebremedhin, a Senior System Engineer who founded the Pathfinders Power Platform community joins Azure and Peter to discuss her journey into tech, working across the Power Platform, and cyber security. - [Microsoft Defender for Endpoint Gets New Zeek Integration to Detect Network-Based Threats](https://petri.com/microsoft-defender-endpoint-zeek-integration-network-based-threats/): Microsoft has partnered with Corelight to add a new Zeek integration to its Defender for Endpoint solution. The new integration... - [What is ClickUp?](https://petri.com/what-is-clickup/): ClickUp is a cloud-based project management tool that provides various collaboration features. In this article, we’ll explain how ClickUp works... - [Microsoft Launches New Windows Update for Business Reports Service](https://petri.com/microsoft-windows-update-for-business-reports/): Microsoft has recently announced the general availability of Windows Update for Business reports. The new solution that enables customers to... - [Best Black Friday Hardware, Software, and Security Deals for IT Pros](https://petri.com/best-black-friday-2022-deals-it-pros/): The shopping season is finally here. That’s right, Black Friday deals and offers are already live at popular online retailers... - [Latest Patch Tuesday Updates Cause Freezes, Reboots on Domain Controllers](https://petri.com/patch-tuesday-updates-freezes-reboots-domain-controllers/): Earlier this month, Microsoft rolled out a new set of Patch Tuesday updates for Windows Server. The company has recently... - [Windows Subsystem for Linux Drops its Preview Tag on the Microsoft Store](https://petri.com/windows-subsystem-for-linux-microsoft-store/): Microsoft has announced that the Windows Subsystem for Linux (WSL) is now generally available on the Microsoft Store. The new... - [Microsoft to Fix New Windows 11 22H2 Bug Breaking Remote Desktop Connections](https://petri.com/microsoft-windows-11-22h2-remote-desktop-connections/): Microsoft has acknowledged a new issue that’s currently affecting Windows 11 version 22H2 (or the Windows 11 2022 Update). The... - [How to Install Google Drive for Desktop (Install & Set Up)](https://petri.com/install-google-drive-for-desktop/): Google Drive is a cloud-based storage platform with seamless file-sharing and synchronization features. In this guide, we explain how to install Google Drive for desktop, how to pause or check the sync status on a Windows or Mac device, and how to integrate Google Drive with Microsoft Office. - [Amazon Announces $4.4B Investment in India with New AWS Region](https://petri.com/amazon-announces-cloud-region-india/): Amazon has announced the launch of a new AWS region in Hyderabad, India. The company says the new infrastructure region... - [Microsoft Defender for Endpoint Gets New Removable Storage Management Capabilities](https://petri.com/microsoft-defender-for-endpoint-gets-new-removable-storage-management-capabilities/): Microsoft has introduced several new removable storage management features in Defender for Endpoint (MDE). The latest release makes it easier... - [Microsoft Says Windows 10 version 22H2 is Now Ready for Broad Deployment](https://petri.com/windows-10-version-22h2-ready-broad-deployment/): Microsoft has announced that Windows 10 version 22H2 is now ready for broad deployment in business environments. The company has... - [Cloud Conversations – Season 3 Launch Episode With Femke Cornelissen](https://petri.com/cloud-conversations-season-3-launch-femke-cornelissen/): After a bit of a break, this week marks the launch of Cloud Conversations Season 3. The team is back with new content and a brand-new hosting team member, Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. - [Microsoft Teams Meetings Get New Sign Language View and Accessibility Pane](https://petri.com/microsoft-teams-meetings-get-new-sign-language-view-and-accessibility-pane/): Microsoft Teams has recently introduced a new accessibility feature called “sign language view. ” This release enables participants who are... - [Microsoft Authenticator to Enable Number Matching Security Feature by Default in February 2023](https://petri.com/microsoft-authenticator-number-matching-by-default/): Last month, Microsoft introduced support for number matching to its Authenticator app. The company has announced on the Microsoft 365... - [How to Enable and Use the Active Directory Recycle Bin](https://petri.com/active-directory-recycle-bin/): The Active Directory Recycle Bin allows IT pros to easily recover deleted objects without any enterprise software solutions or multiple-step processes. In this article, I'll explain how to enable the Active Directory Recycle Bin with the Active Directory Administrative Center and PowerShell. - [Amazon Launches AWS Resource Explorer With Unified Search Capabilities](https://petri.com/amazon-aws-resource-explorer/): This AWS Resource Explorer is a new tool that lets IT Pros search through the AWS resources in their account across all different Regions. It's now available for all customers at no additional charge. - [Microsoft Releases Fix for Kerberos Authentication Issues on Domain Controllers](https://petri.com/microsoft-fix-kerberos-authentication-domain-controllers/): Microsoft has started rolling out an out-of-band update to address a bug that was previously causing Kerberos authentication issues on... - [Microsoft Now Lets IT Admins Send Messages to Windows 11 Lock screen, Desktop, or Taskbar](https://petri.com/microsoft-send-organizational-messages-windows-11/): Back in April, Microsoft announced a new organizational messages feature that allows companies to send messages to users on their... - [How to Migrate an Azure ExpressRoute Connection](https://petri.com/azure-migrate-expressroute/): Azure ExpressRoute is Microsoft’s solution for extending an on-premises network into the Microsoft cloud with a private connection. In this article, we explain how to migrate an Azure ExpressRoute connection to another tenant or another connectivity provider without any downtime. - [Microsoft's New One Outlook Email Client Now Supports Multiple Accounts](https://petri.com/microsofts-one-outlook-supports-multiple-accounts/): Microsoft’s new unified Outlook app for Windows (aka One Outlook) is finally getting support for multiple accounts (via Thurrott). As... - [Microsoft to Disable Basic Authentication for the Autodiscover Protocol in Exchange Online](https://petri.com/microsoft-disable-autodiscover-protocol-exchange-online/): Microsoft started switching off Basic Authentication support for Exchange Online customers back in October. The company announced yesterday that it’s... - [Microsoft Partners with Nvidia to Build Azure-Powered AI Supercomputer](https://petri.com/microsoft-nvidia-build-ai-supercomputer/): Microsoft has announced a new “multi-year” deal with Nvidia to build an AI supercomputer hosted in Microsoft Azure and powered... - [Microsoft Teams Now Lets Users Play Minesweeper and Solitaire During Virtual Meetings](https://petri.com/microsoft-teams-casual-games-meetings/): Microsoft has launched a new Games for Work app that allows users to play casual games during Teams meetings. The... - [New Microsoft 365 App Starts Rolling Out on the Web](https://petri.com/new-microsoft-365-app-rolling-out-the-web/): Last month, Microsoft announced at its Ignite 2022 conference that a Microsoft 365 app would replace the existing Office app... - [RAID 5 vs. RAID 6: How to Choose the Best RAID Configuration](https://petri.com/raid-5-vs-raid-6/): RAID 5 and RAID 6 are two of the most used RAID levels for data storage projects. In this article, we explain the major differences between RAID 5 and RAID 6 and how to choose the right RAID level for your project. - [Microsoft's All-In-One Office Mobile App to Retire Two File-Sharing Capabilities](https://petri.com/microsoft-office-mobile-app-retire-file-sharing-capabilities/): Microsoft has announced its plans to deprecate some file-sharing capabilities in its Office mobile apps. The company detailed in a... - [Microsoft Addresses DirectAccess Connectivity Issues on Windows 10 and 11](https://petri.com/microsoft-directaccess-connectivity-windows-10-and-11/): Microsoft has confirmed a new bug that causes problems with the Direct Access remote connectivity feature on Windows 10 and... - [Microsoft Teams will Let Users Delete Chats Next Month](https://petri.com/microsoft-teams-update-delete-chats/): Last month, Microsoft unveiled that it’s working on a new feature to let users delete chats permanently from their list... - [Microsoft Unveils Next-Gen Azure VMs with AMD's EPYC Chips](https://petri.com/microsoft-next-gen-azure-vms-amds-epyc-chips/): Last week, Microsoft announced two new virtual machines (VMs) for Azure HPC customers. The new HX-series and HBv4-series VMs are... - [Microsoft Releases Point-In-Time Restore Feature for Windows 365 Cloud PCs](https://petri.com/microsoft-point-in-time-restore-windows-365-cloud-pcs/): Microsoft has announced that a new point-in-time feature is generally available for Windows 365 Enterprise customers. The feature first launched... - [How to Use Local Administrator Password Solution (LAPS) with Active Directory and Azure AD](https://petri.com/local-administrator-password-solution/): Microsoft has updated its Local Administrator Password Solution (LAPS) tool and plans to integrate it into the OS. In this article, I'll explain how this new version of LAPS works and how you can use it to manage local admin account passwords in your Active Directory and Azure AD environments. - [AWS Launches New Cloud Region in Switzerland, Unveils 15-Year $5.9B Investment](https://petri.com/aws-launches-cloud-region-switzerland/): Amazon Web Services (AWS) has announced the launch of a new cloud computing region in Switzerland. The Europe AWS region... - [Microsoft Defender for Endpoint Adds Network Protection on iOS and Android](https://petri.com/microsoft-defender-for-endpoint-network-protection/): Microsoft has announced that mobile network protection is now generally available in Defender for Endpoint. The feature first launched in... - [What is a Software-Defined Perimeter?](https://petri.com/software-defined-perimeter/): A software-defined perimeter (SDP) is a modern network security framework that organizations can use to protect their IT environment from outsiders. In this article, I’ll explain how a software-defined perimeter works and what are the main use cases for this new computer security approach. - [Microsoft Defender for Business Adds Server Protections for SMBs](https://petri.com/microsoft-defender-business-server-protections/): Microsoft launched a preview of new server protection capabilities in its Defender for Business solution back in July. The company... - [GitHub Expands AI-Powered Copilot Tool to Business Customers](https://petri.com/github-expands-copilot-business-customers/): GitHub announced yesterday that it’s bringing the AI-powered Copilot coding assistant to business customers. The pair programming tool has been... - [Zoom Adds New Email and Calendar Products to Improve Collaboration](https://petri.com/zoom-adds-email-calendar-services/): Zoom has announced the release of the beta version of its mail and calendar services. Zoom Mail and Zoom Calendar... - [Microsoft Releases .NET 7 with Performance Enhancements and More](https://petri.com/microsoft-releases-net-7/): Microsoft announced the general availability of . NET 7 at its . NET Conf 2022 virtual event. The latest version... - [Microsoft's November Patch Tuesday Updates Fix 69 Windows Flaws](https://petri.com/november-2022-patch-tuesday-updates/): Microsoft fixed a total of 69 Windows vulnerabilities in the November 2022 Patch Tuesday Updates. Windows 11 is also receiving its first "Moment" update with several taskbar improvements and the much-anticipated File Explorer tabs. - [How to Troubleshoot Microsoft 365 Login Problems](https://petri.com/microsoft-365-login-problems/): A number of things can go wrong during the Microsoft 365 (formerly Office 365) login process. In this guide will outline the best practices for troubleshooting Microsoft 365 login problems so you can get to the bottom of the issue as quickly as possible.  - [Azure VMware Solution Gets Support for Stretched Clusters and Customer-Managed Keys](https://petri.com/azure-vmware-solution-stretched-clusters-customer-managed-keys/): Microsoft has announced the release of a big update for its Azure VMware Solution (AVS). This release brings support for... - [Microsoft Teams PWA is Now Available for Linux Machines](https://petri.com/microsoft-teams-pwa-linux-machines/): Microsoft has announced that a new Teams Progressive Web App (PWA) is now available for Linux machines. The company says... - [Microsoft's GitHub Copilot Hit with Lawsuit for Software Piracy](https://petri.com/github-copilot-lawsuit-software-piracy/): A programmer has filed a lawsuit against Microsoft, GitHub, and OpenAI, claiming that their AI-powered coding assistant violates copyright laws.... - [Microsoft Teams to Get a New Webinars Experience Next Month](https://petri.com/microsoft-teams-new-webinars-experience/): Microsoft has announced a new Webinars experience for its Teams collaboration service. The updated Webinars experience is based on the... - [How to List Active Directory Users with ADUC](https://petri.com/list-active-directory-users/): Learn how to list and export all Active Directory users in your environment using the GUI and the Active Directory Users and Computers applications. We also explain how to narrow down the list using various filters available in PowerShell. - [Microsoft Teams Gets a Performance Boost with Framework Upgrade](https://petri.com/microsoft-teams-performance-framework-upgrade/): Microsoft claims that it has optimized the Microsoft Teams desktop app to reduce latency in key scenarios, such as switching... - [Microsoft to Drop Support for Distribution List Migration to Microsoft 365 Groups](https://petri.com/microsoft-distribution-list-migration-microsoft-365-groups/): Microsoft announced yesterday that it would deprecate the distribution list migration feature in the legacy Exchange admin center (EAC) in... - [Why You Need to Create an Incident Response Plan](https://petri.com/incident-response-plan/): To effectively handle various types of security break-ins, many organizations have created an incident response plan. In this article, I'll explain how an incident response plan differs from a disaster recovery plan, and what steps you need to follow to create an effective IR plan. - [Microsoft Adds New File Locksmith and Hosts File Editor Tools to PowerToys](https://petri.com/microsoft-file-locksmith-hosts-file-editor-powertoys/): Microsoft has released a new update for its PowerToys suite of tools. The version 0. 64 of the app brings... - [Microsoft to Block OneDrive and SharePoint on Internet Explorer 11 in January 2023](https://petri.com/microsoft-block-onedrive-sharepoint-internet-explorer-11/): Microsoft is getting ready to block access to OneDrive and SharePoint Online from Internet Explorer (IE 11). The company recently... - [Microsoft Defender Vulnerability Management Now Detects OpenSSL 3.0 Vulnerabilities](https://petri.com/microsoft-defender-vulnerability-management-openssl-vulnerabilities/): Last week, the OpenSSL team patched two high-severity security vulnerabilities in its open-source cryptography tool. Microsoft announced yesterday that organizations... - [Microsoft Exchange Online Adds Support for Cross-Tenant User Data Migration](https://petri.com/microsoft-exchange-online-cross-tenant-user-data-migration/): Microsoft has released cross-tenant migration capabilities for Exchange Online. The latest update brings new cross-tenant mailbox migration and cross-tenant OneDrive... - [Microsoft Releases Azure AD Certificate-Based Authentication Support on iOS and Android](https://petri.com/microsoft-azure-ad-certificate-based-authentication-ios-android/): Microsoft today announced the release of Azure AD Certificate-based authentication (CBA) on mobile devices. As of today, YubiKey is the... - [What is the Microsoft Digital Contact Center Platform?](https://petri.com/microsoft-digital-center-platform/): The Microsoft Digital Contact Center Platform is a new customer care solution that the company introduced back in July 2022. In this article, we’ll explain how the Microsoft Digital Contact Center Platform works and how organizations of any size can leverage it to engage with customers. - [Microsoft Teams Added New Chat Features and More in October](https://petri.com/microsoft-teams-chat-features-october/): Microsoft has shared a roundup of improvements made to its Teams collaboration service in October 2022. The major highlights of... - [What's New With Microsoft's Power Platform in October 2022](https://petri.com/whats-new-with-microsofts-power-platform-in-october-2022/): After a whirlwind of news from the first annual Microsoft Power Platform Conference in September, we now have all the... - [Azure AD Conditional Access Policies Get Support for App Filters](https://petri.com/azure-ad-conditional-access-policies-app-filters/): Microsoft has added support for application filters to Azure AD conditional access (CA) policies. This release enables organizations to use... - [Microsoft Rolls Out Fix for OneDrive Crashing Issues on Windows 10](https://petri.com/microsoft-fix-onedrive-crashing-windows-10/): Microsoft has confirmed and issued a fix for a bug in Windows 10, which could cause OneDrive to crash or... - [What Are the Different Windows Logon Types?](https://petri.com/windows-logon-types/): As IT pros, we've all 'logged onto computers', servers, network devices, etc. This article will explain the basics of Windows logon types, how authentication plays a role, and then describe the various types of logons built into Windows. - [Microsoft Warns Attackers Now Leveraging Raspberry Robin to Distribute Clop Ransomware](https://petri.com/microsoft-raspberry-robin-clop-ransomware/): Microsoft has warned users that threat actors have deployed a Clop encryption malware to encrypt enterprise networks affected by the... - [Outlook for Windows to Finally Get Support for Cloud Signatures](https://petri.com/outlook-for-windows-cloud-signatures/): Microsoft is getting ready to release an update for the Outlook for Windows client that will let users store their... - [Microsoft Confirms Server Manager Disk Resets Could Cause Data Loss](https://petri.com/microsoft-server-manager-disk-resets-data-loss/): Microsoft is investigating a new issue that could cause data loss when resetting virtual disks using the Server Manager Management... - [How to Enable AWS Direct Connect Redundancy Using Azure ExpressRoute](https://petri.com/aws-direct-connect-azure-expressroute-redundancy/): AWS Direct Connect and Azure ExpressRoute let you set up a private interconnection to your on-premises resources. In this article, I’ll explain how you can enable AWS Direct Connect redundancy with Microsoft's Azure ExpressRoute by using physical or virtual connections. - [Microsoft's OneNote Desktop App is Now Available on the Microsoft Store](https://petri.com/microsofts-onenote-desktop-app-microsoft-store/): Microsoft has announced that its OneNote desktop app is now available to download on the Microsoft Store. Microsoft’s UWP version... - [Microsoft Releases New Windows Update to Fix Vulnerable Driver Blocklist Sync Issue](https://petri.com/microsoft-windows-update-fix-vulnerable-driver-blocklist-sync-issue/): Microsoft has released a new optional update for Windows 10 and Windows 11 version 22H2. This release brings bug fixes... - [Microsoft 365 Defender Introduces New Identity Protection Alerts](https://petri.com/microsoft-365-defender-identity-protection-alerts/): Microsoft has introduced a new Azure Active Directory Identity Protection alerts feature in Microsoft 365 Defender. The feature is designed... - [Paul Thurrott’s Short Takes: Microsoft Earnings Special Edition (October 2022)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-19/): Because it’s that time of the quarter, this special edition of Short Takes will focus exclusively on Microsoft’s latest quarterly... - [Microsoft Authenticator Gets Number Matching and Additional Context Support](https://petri.com/microsoft-authenticator-number-matching/): Microsoft has announced the general availability of several new security capabilities in its Microsoft Authenticator app. The first new feature... - [AWS Doubles the Compute Power of its Snowball Edge Device](https://petri.com/aws-snowball-edge-double-compute-power/): Amazon has doubled the computing power of its Snowball Edge device. The rugged device is designed for bringing AWS computing services such as Amazon EC2, Amazon EBS, and Amazon S3 to your edge environments. - [3CX Full Contact Center Solution Adds Voice, Text, and Live Chat](https://petri.com/3cx-full-contact-center-solution/): The number of phone calls we make has been decreasing globally over the past several years. And there is a... - [Microsoft Releases New Phishing Prevention Tools to Block Credential Theft](https://petri.com/microsoft-phishing-prevention-tools-credential-theft/): Microsoft has partnered with Yubico to announce new security solutions to help organizations prevent phishing attacks against Azure, Office 365,... - [Microsoft Announces Expedited Windows Updates to Address Zero-Day Security Flaws](https://petri.com/microsoft-expedited-windows-updates/): Microsoft has released a new feature for Windows Update for Business (WUfB) that lets IT admins speed up the installation... - [Microsoft Introduces the On-Premises Unified Update Platform for Seamless Windows Updates](https://petri.com/microsoft-on-premises-unified-update-platform-2/): Microsoft has announced a public preview of the Unified Update Platform (UUP) for on-premises environments. The company first started testing... - [Microsoft’s New Windows Dev Kit 2023 'Project Volterra' Now Available for Developers](https://petri.com/microsoft-windows-dev-kit-2023-project-volterra/): Microsoft has launched Windows Dev Kit 2023 (codenamed “Project Volterra”), a new Snapdragon-powered desktop PC designed for data scientists and... - [Microsoft Edge Gets Efficiency Mode Improvements to Extend Battery Life](https://petri.com/microsoft-edge-efficiency-mode-battery-life/): Earlier this month, Microsoft started rolling out Edge version 106 to all users in the Stable channel on Windows, macOS,... - [How to Use a PowerShell Foreach Loop](https://petri.com/powershell-foreach/): The PowerShell Foreach statement can be used to execute a command or a set of commands for each item in a collection. In this article, I will explain three different ways to use the PowerShell Foreach keyword: the Foreach loop, the ForEach object cmdlet, and the ForEach method. - [VirtualBox 7.0 Adds Windows 11 TPM and Full Encryption Support](https://petri.com/virtualbox-7-0-windows-11-tpm-full-encryption/): Last week, Oracle announced the release of VirtualBox 7. 0 on all supported platforms. The latest major release of the... - [Microsoft Starts Rolling Out New AI-Powered Image Creator Tool to Bing](https://petri.com/microsoft-image-creator-tool-bing/): Image Creator, the new AI-based art generator tool that Microsoft announced at Ignite 2022, is now available in Microsoft Bing.... - [How to Change an Email Signature in Outlook](https://petri.com/how-to-change-email-signature-outlook/): Email signatures are an important tool to build brand awareness, generate leads and create direct contact with clients and partners. In this guide, I'll explain how to change an email signature in Outlook for Windows, Outlook for Mac, Outlook on the web, and the Outlook mobile apps. - [Microsoft Confirms Customer Data Breach Caused by Misconfigured Server](https://petri.com/microsoft-customer-data-breach-misconfigured-server/): Microsoft has published an advisory about a server misconfiguration that may have compromised the sensitive data of some potential customers.... - [Budget for Operational Resilience in 2023](https://petri.com/budget-for-operational-resilience-in-2023/): I’m joined by Jim Doggett and Sean Deuby from Semperis to discuss how IT organizations can budget for operational resilience in 2023. - [Microsoft Announces New Azure DDoS IP Protection SKU for Small Businesses](https://petri.com/microsoft-ddos-ip-protection-small-businesses/): Microsoft has released its new Azure DDoS IP Protection SKU in public preview. It’s a cost-effective enterprise-grade endpoint security solution... - [Microsoft Partners with AMD, Google, & NVIDIA to Announce "Caliptra" Open-Source Root of Trust](https://petri.com/microsoft-caliptra-open-source-root-of-trust/): Microsoft has partnered with Google, AMD, and NVIDIA to create a new open specification for a silicon Root of Trust... - [How to Use a PowerShell Array](https://petri.com/powershell-array/): A PowerShell array is what you need to use whenever you need to gather or even manipulate multiple pieces of data. In this article, we'll explain how PowerShell arrays work, how to use an array of objects, and everything you need to know about PowerShell arrays to become a power user. - [Windows 11 version 22H2 Gets File Explorer Tabs and Taskbar Improvements](https://petri.com/windows-11-version-22h2-file-explorer-tabs/): Microsoft has released several new features for Windows 11 version 22H2. The new features rolled out to Windows 11 devices... - [Microsoft Starts Rolling Out the Windows 10 2022 Update with a "Scoped Set" of Productivity Features](https://petri.com/microsoft-windows-10-2022-update/): Microsoft has started rolling out Windows 10 version 22H2, also known as the Windows 10 2022 Update, to all Windows... - [Oracle Alloy Now Lets Enterprises Become Cloud Service Providers](https://petri.com/oracle-alloy-enterprises-cloud-service-providers/): Oracle has launched a new Oracle Alloy platform that enables organizations to host and deliver custom cloud services with Oracle... - [Top Microsoft 365 Tools for Simplified Project Management](https://petri.com/top-microsoft-365-tools-for-simplified-project-management/): Effective project management is essential for businesses of all shapes and sizes. Project management can help your organization to better... - [Microsoft Releases Fix for TLS/SLS Connection Issues on Windows PCs](https://petri.com/microsoft-tls-sls-connection-issues-windows/): Microsoft is rolling out an out-of-band update to address an issue that causes Transport Layer Security (TLS)/ Secure Sockets Layer... - [Cloud Conversations – Ru Campbell and Peter Rising Share Ignite Highlights at South Coast Summit](https://petri.com/cloud-conversations-ru-campbell-peter-rising-ignite-highlights/): In this week's Cloud Conversations episode, Peter Rising and Ru Campbell meet for the first time at the South Coast Summit in Southampton, UK, and they discuss their conference highlights and also dive into the Ignite Book of News and pick out some of their favorite announcements. - [Microsoft Finds New Prestige Ransomware Targeting Polish and Ukrainian Businesses](https://petri.com/microsoft-prestige-ransomware-ukraine/): Microsoft has recently discovered a new ransomware campaign that’s targeting organizations within the transportation and logistics industries across Poland and... - [Microsoft Adds Authentication Strength Support to Conditional Access Policies](https://petri.com/microsoft-authentication-strength-conditional-access-policies/): Microsoft has released a new setting for conditional access policies that enables organizations to define the authentication strength of accepted... - [Choosing between 2.4 GHz and 5 GHz Wi-Fi](https://petri.com/2-4ghz-vs-5ghz-wifi/): 2.4 GHz and 5 GHz Wi-Fi bands play an important role in a wireless local area network's range, strength, and penetrative abilities. In this article, I'll help you to better understand the main differences between 2.4 GHz and 5 GHz Wi-Fi as well as the pros and cons of each band. - [Microsoft Teams Meetings to Let Users Request Payments Next Month](https://petri.com/microsoft-teams-meetings-payments-app/): Microsoft Teams is getting a new app that will allow users to request payments during meetings. As of today, Google... - [Microsoft Syntex Gets New AI-Powered Content Management Tools](https://petri.com/microsoft-syntex-ai-powered-content-management-tools/): Microsoft has announced Microsoft Syntex, a new set of apps and services that use AI to analyze and organize large... - [Azure Active Directory Premium P1 vs. P2: A Features Comparison](https://petri.com/azure-active-directory-premium-p1-vs-p2/): In this article, we'll break down the differences between Azure Active Directory Premium P1 and P2 licensing to help you decide which plan provides the best suite of identity products for your organization. - [Windows 365 App is Now Available on the Microsoft Store for Windows 11](https://petri.com/windows-365-app-available-microsoft-store-windows-11/): Microsoft announced yesterday that a new Windows 365 application is now available in public preview on the Microsoft Store. The... - [Microsoft Announces New Security and Identity Management Solutions](https://petri.com/microsoft-security-identity-management-solutions/): Microsoft announced several new security features and services at its Ignite 2022 conference this week. Specifically, the company introduced two... - [Microsoft Office will Soon be Rebranded as Microsoft 365](https://petri.com/microsoft-office-rebrand-microsoft-365/): Microsoft introduced a new Microsoft 365 app at its Ignite conference yesterday. This app will replace the all-in-one Office app... - [AWS Announces Amazon File Cache](https://petri.com/aws-announces-amazon-file-cache/): Amazon File Cache, a new high-speed cache service on Amazon Web Services can now be used by AWS customers for processing file data stored in the cloud and on-premises. - [Microsoft Edge Gets Workspaces, Website Typo Protection, and More](https://petri.com/microsoft-edge-workspaces-website-typo-protection/): At Ignite 2022, Microsoft unveiled several new updates coming to its Edge browser. The biggest addition is a new Microsoft... - [Microsoft Announces New Hybrid Work Features for Outlook](https://petri.com/microsoft-hybrid-work-features-outlook/): Microsoft just kicked off its Ignite 2022 conference this morning, where Microsoft 365 CVP Jared Spataro announced some important updates... - [Microsoft to Release New Intune Premium Suite in March 2023](https://petri.com/microsoft-intune-premium-suite-2023/): Microsoft has announced its plans to roll out a new Advanced Management Suite in March 2023. The cloud-based Microsoft Intune... - [Microsoft Teams Gets New Channel Experience and Much More](https://petri.com/microsoft-teams-new-channel-experience/): Microsoft has announced a range of new chat and meetings features for Teams at its Ignite 2022 event. The biggest... - [Microsoft Teams Premium Plan to Bring New AI-Powered Meeting Features for Businesses](https://petri.com/microsoft-teams-premium-plan/): Microsoft is set to introduce a new service plan called “Microsoft Teams Premium” for commercial customers. The company announced the... - [Microsoft to Launch New Microsoft 365 App on Windows, Mobile, and the Web](https://petri.com/microsoft-365-app-windows-mobile-web/): Microsoft is getting ready to release a new Microsoft 365 app available for Windows, mobile, and web users. The new... - [Microsoft Releases New Loop App in Preview, Updates Loop Components](https://petri.com/microsoft-loop-app-preview/): Microsoft kicked off its Ignite 2022 conference today, and there’s some big news regarding the Microsoft 365 ecosystem. The company... - [Microsoft Announces New Creator Tools Coming to Microsoft 365, Edge, and Bing](https://petri.com/microsoft-creator-tools-microsoft-365-edge-bing/): Microsoft has announced a new Designer app that provides AI-powered design suggestions to let Microsoft 365 subscribers quickly create invitations,... - [Microsoft Announces Surface Laptop 5, Surface Studio 2+, and Surface Pro 9](https://petri.com/microsoft-surface-laptop-5-surface-studio-2-surface-pro-9/): Microsoft has officially announced new Surface devices this morning, a new Surface Laptop 5, Surface Studio 2+ all-in-one PC, as... - [How to Use Microsoft Teams Shared Channels](https://petri.com/microsoft-teams-shared-channels/): Shared channels in Microsoft Teams allow organizations to welcome external users in a channel without giving them access to a whole team. In this article, we will explore how to enable shared channels in Teams and the various advantages of using them for an organization. - [October 2022 Patch Tuesday Updates Fix 85 Windows Vulnerabilities](https://petri.com/october-2022-patch-tuesday-updates/): The October 2022 Patch Tuesday that Microsoft released yesterday fix 85 vulnerabilities on all supported versions of Windows. The updates also bring minor changes to the Taskbar on Windows 11 and Windows 10. - [Google Announces New Cloud Regions, Dual Run Mainframe Migration Service](https://petri.com/google-announces-new-cloud-regions/): Google has announced plans to bring its physical cloud infrastructure to more customers worldwide. Indeed, the company is opening Google... - [Google Announces New Tools and Services to Boost Cloud Security](https://petri.com/google-announces-tools-boost-cloud-security/): Google Cloud has announced several new security tools, products, and services to help organizations better protect their cloud environments. The... - [Microsoft Teams Now Supports Group Chat with Distribution Lists and Other Groups](https://petri.com/microsoft-teams-group-chat-with-distribution-lists/): Microsoft Teams is getting a new update that enables users to start a group chat with Exchange Online distribution lists,... - [Azure Firewall Basic Now Available in Preview for Small Businesses](https://petri.com/azure-firewall-basic-preview-small-businesses/): Last week, Microsoft released the Basic edition of its Azure Firewall service in public preview. It’s an affordable plan designed... - [Microsoft Issues Fix for Outlook Bug Causing Crashes on Startup](https://petri.com/microsoft-fix-outlook-bug-crashes-startup/): Microsoft has recently released a fix to address a bug in Outlook for Windows, which was previously causing the app... - [Filtering with PowerShell Where-Object: Easy Examples](https://petri.com/powershell-where-object/): In this guide, we explain how to use the PowerShell Where-Object cmdlet to filter objects and data. We illustrate this with a series easy examples showing you how to filter files by name or date, how to filter processes by status or CPU usage, and more. - [Lazarus APT Abuses Vulnerable Dell Drivers to Bypass Windows Security](https://petri.com/lazarus-vulnerable-dell-drivers-windows/): Last week, cybersecurity researchers warned that the North Korean hacking group “Lazarus” exploited Dell hardware drivers to deploy a Windows... - [Windows 11 version 22H2 Causes Issues with Provisioning Packages](https://petri.com/windows-11-22h2-issues-provisioning-packages/): Microsoft started rolling out Windows 11 version 22H2 to all eligible PCs last month. While the feature update introduces several... - [How to Install And Get Started With the Azure CLI](https://petri.com/install-azure-cli/): In this article, we explain how to download, install, and get started with the Azure CLI. We also detail which Azure services you can manage with the Azure CLI and how you can add extensions to complement native commands. - [Microsoft Adds Linux Desktop Management Support to Intune](https://petri.com/microsoft-intune-linux-desktop-management/): Microsoft has announced that Linux desktop management support is generally available in Microsoft Intune. The new Intune management experience will... - [Microsoft to Replace Teams Linux Client with New Progressive Web App](https://petri.com/microsoft-replace-teams-linux-client-progressive-web-app/): Microsoft has announced that it’s working on a new Teams progressive web app (PWA) for Linux. The new app will... - [Microsoft Starts Rolling Out the Windows 11 2022 Update to More PCs](https://petri.com/microsoft-windows-11-2022-update-more-pcs/): Microsoft has started rolling out the Windows 11 2022 Update to more PCs this week. The company updated the Windows... - [Microsoft Warns About Spike in Password Spray Attacks Targeting Exchange Online](https://petri.com/microsoft-password-spray-attacks-exchange-online/): Microsoft has released an advisory to warn Exchange Online users about increasing password spray attacks. The company has recommended enterprise... - [Amazon Workspaces Now Supports Ubuntu Virtual Desktops](https://petri.com/amazon-workspaces-now-support-ubuntu/): Amazon WorkSpaces added support for Ubuntu-based virtual desktops last week, with support for expanded security patching for 10 years. Developers and engineers can now access an Ubuntu virtual environment via Workspaces and enjoy a wealth of open-source tools and libraries. - [AWS Managed Active Directory vs. Self-Hosted AD: Which Solution is Best For Your Company?](https://petri.com/aws-active-directory/): In this article, we explore two options for deploying Active Directory-dependent workloads on AWS. Organizations can either use AWS Managed Active Directory or choose to self-host AD on AWS EC2 instances. - [Microsoft Defender for Individuals Gets New Identity Theft Monitoring Capabilities](https://petri.com/microsoft-defender-for-individuals-identity-theft-monitoring/): Microsoft has partnered with Experian to bring identity theft protection monitoring capabilities to its Microsoft Defender for individuals solution. The... - [What's New for Windows – September 2022](https://petri.com/everything-about-windows-september-2022/): The big news this month is the availability of the Windows 11 2022 Update. But there are also lots of... - [Microsoft Confirms Windows 11 2022 Update Causes Performance Issues When Copying Large Files](https://petri.com/windows-11-2022-update-performance-issues-large-files/): Microsoft has confirmed a new issue that is currently affecting PCs running the Windows 11 2022 Update (or version 22H2).... - [What's New for Microsoft's Power Platform – September 2022](https://petri.com/microsoft-power-platform-september-2022-updates/): The latest updates for Microsoft's Power Platform include Co-authoring support and an integrated virtual agent in Power Apps, Named Formulas for Power Fx, and a New Automation Kit for Power Platform to help your organization build an Automation Center of Excellence. - [Microsoft Teams Added Native Apple Silicon Support and More in August and September](https://petri.com/microsoft-teams-updates-august-september/): Cameo in PowerPoint Live - [How to Run Commands and Programs Remotely Using PsExec](https://petri.com/psexec/): PsExec is a command-line utility program for Windows written by none other than Mark Russinovich, the current CTO of Microsoft... - [Microsoft Warns About New Zero-Day Vulnerabilities in Exchange Server](https://petri.com/microsoft-zero-day-vulnerabilities-exchange-server/): Microsoft has issued an advisory about two new zero-day vulnerabilities affecting Exchange Server. The critical flaws, which were discovered by... - [Microsoft Blocks Windows 11 2022 Update on Select PCs Due to Printing Issues](https://petri.com/microsoft-blocks-windows-11-2022-update-printing-issues/): Microsoft started rolling out the Windows 11 2022 Update (22H2) last week, but the company was forced to put some... - [How to Use Chmod Recursive to Change File Permissions on Linux and macOS](https://petri.com/chmod-recursive-file-permissions/): In this guide, we'll show you how to use chmod recursive to easily change file permissions for all files inside a directory and its subdirectories on macOS and Linux. We'll also explain how to use the "X" argument to preserve file execution privileges. - [Outlook on the Web Gets New Contact Management Features](https://petri.com/outlook-on-the-web-contact-management/): Microsoft has announced new contact management features for its Outlook web app. The latest update brings a new self-updating contact... - [Microsoft to Retire Client Access Rules Support in Exchange Online in 2023](https://petri.com/microsoft-retire-client-access-rules-exchange-online/): Microsoft is getting ready to end support for Client Access Rules (CARs) in Exchange Online. The Exchange team has warned... - [Microsoft's New One Outlook App Now Available for All Office Insiders](https://petri.com/microsoft-new-outlook-for-windows-office-insiders/): Back in May, Microsoft started testing a beta version of the revamped Outlook desktop app for Windows (Codenamed “Project Monarch”).... - [Windows 11 Smart App Control Explained: What It Is and How It Works](https://petri.com/windows-11-smart-app-control/): Windows 11 Smart App Control is a new security feature on the version 22H2 of the OS. It can block malicious and untrusted apps on your PC, just like Microsoft Defender Application Control for enterprise users. Learn how Windows 11 Smart App Control works and how you can enable it in this article. - [Petri Dish: Cybersecurity vs IT Security with Devolutions](https://petri.com/petri-dish-cybersecurity-vs-it-security-with-devolutions/): Russell Smith, Editorial Director of Petri, talks to Maurice Cote from Devolutions about the difference between cybersecurity and IT security... - [Microsoft Adds SSO and Passwordless Authentication Support to Azure Virtual Desktop](https://petri.com/microsoft-sso-passwordless-authentication-azure-virtual-desktop/): Microsoft has announced Azure AD-based single sign-on and passwordless authentication support for Azure Virtual Desktop. These new capabilities are currently... - [Microsoft Reveals Attackers Used Malicious OAuth Apps to Hack Exchange Online](https://petri.com/microsoft-oauth-apps-hack-exchange-online/): Microsoft has unveiled a recent cybersecurity attack that allowed the threat actors to compromise Exchange Online. The attacker abused unsecured... - [Amazon Announces the Ability to Deploy EKS Clusters on AWS Outposts](https://petri.com/amazon-deploy-eks-clusters-on-aws-outposts/): Amazon is giving AWS customers the ability to host an entire Amazon EKS cluster on AWS Outposts. Previously, IT pros could only use AWS Outposts to deploy Kubernetes cluster nodes and pods to an on-premises infrastructure. - [Microsoft Teams to Make It Easier to Filter Unread Items in Activity Feed](https://petri.com/microsoft-teams-filter-unread-items-activity-feed/): Microsoft is planning to make it easier for users to catch up on important Activity feed notifications in Teams. The... - [September Patch Tuesday Updates Cause Group Policy Issues on Windows PCs](https://petri.com/windows-update-cause-group-policy-issues/): Microsoft has acknowledged a new issue with the recent Windows updates, which prevents users from copying or moving files/shortcuts via... - [How to View the Attribute Editor in Active Directory](https://petri.com/active-directory-view-attribute-editor/): In this guide, I'll show you how to view the Attribute Editor in Active Directory Users and Computers. This hidden tab let you view and edit almost every attribute of every object in Active Directory. - [Microsoft Starts Rolling Out Loop Components to Outlook for Windows](https://petri.com/microsoft-loop-components-outlook-windows/): Earlier this year, Microsoft announced its plans to add support for Loop components to its Outlook email client. Loop components... - [Microsoft to Enable SMB Authentication Rate Limiter By Default in Windows 11](https://petri.com/microsoft-smb-authentication-rate-limiter-windows-11/): Back in March, Microsoft started testing a new SMB authentication rate limiter feature in Windows 11 and Windows Server. Now,... - [A Guide to Azure Certification](https://petri.com/azure-certification-guide/): Getting an Azure certification can really help to future-proof your IT career in a time of economic uncertainty. In this post, I will explain why there is value in getting certified for Microsoft Azure, the available qualifications, and how to prepare for the different exams. - [Microsoft Viva Gets New Pulse Module And Other Updates](https://petri.com/microsoft-announces-viva-pulse/): Microsoft has announced the integration of new apps and services in its Viva employee experience platform. The company is launching... - [Stop MFA Fatigue with Additional Context and Number Matching for Microsoft Authenticator](https://petri.com/mfa-fatigue-additional-context-microsoft-authenticator/): Last week, Uber confirmed a major cybersecurity attack that compromised its internal communications and engineering systems. The company believes that... - [Microsoft Defender for Endpoint to Enable Tamper Protection for All Customers](https://petri.com/microsoft-defender-endpoint-tamper-protection/): Microsoft Defender for Endpoint will soon turn on tamper protection by default for all existing enterprise customers. The tamper protection... - [What is Data Management As a Service (DMaaS)?](https://petri.com/what-is-dmaas/): Data Management as a Service (DMaaS) describes the growing number of cloud-based services allowing organizations to manage data from different sources. In this article, we'll explain how DMaaS can help organizations to address the challenges associated with data collection, processing, and security. - [Microsoft Adds Smart App Control, More Security Features to the Windows 11 2022 Update](https://petri.com/windows-11-2022-update-security-features/): The just-released Windows 11 2022 Update is bringing several new security features to the OS. The first major update for... - [Here Are the Main New Features in the Windows 11 2022 Update](https://petri.com/windows-11-2022-update-new-features/): Following months of testing with Windows Insiders, Microsoft has finally started rolling out the Windows 11 2022 Update to all... - [Microsoft Starts Rolling Out the Windows 11 2022 Update](https://petri.com/microsoft-rolling-out-windows-11-2022-update/): Microsoft has started rolling out the Windows 11 2022 Update today, which is also known as Windows 11 version 22H2.... - [Microsoft Defender for Endpoint Adds Support for Android Enterprise COPE devices](https://petri.com/microsoft-defender-for-endpoint-android/): Microsoft has launched its Defender for Endpoint solution on Android Enterprise (AE) company-owned personally enabled (COPE) devices. The company says... - [Microsoft Moves SharePoint Server Subscription Edition to Bi-Annual Release Schedule](https://petri.com/microsoft-sharepoint-server-subscription-edition-bi-annual-updates/): Microsoft announced a major change to how it delivers new releases of SharePoint Server Subscription Edition. Indeed, Microsoft will now... - [Microsoft Teams Adds Support for Scheduling Chat Messages](https://petri.com/microsoft-teams-schedule-chat-messages/): Microsoft Teams is getting a new schedule send feature that allows users to choose a specific time to send a... - [Microsoft: Token-Mining Vulnerability in Teams is Not Critical to Fix](https://petri.com/microsoft-teams-vulnerability-tokens/): Security researchers have recently identified a vulnerability in the Microsoft Teams desktop app. The security flaw could allow attackers to... - [How to Restore Active Directory](https://petri.com/how-to-restore-active-directory/): As an IT pro, it is critical that you know how to restore Active Directory to prevent any possible interruptions to your environment. In this guide, I will walk you through the most common methods of restoring system state backups, which include all the authoritative objects of Active Directory. - [Microsoft to End Windows 10 version 21H1 Support in December](https://petri.com/microsoft-end-windows-10-21h1-support/): Windows 10 version 21H1, also known as the Windows 10 May 2021 Update, will reach end of support in three... - [What is a Hybrid Cloud Architecture?](https://petri.com/hybrid-cloud-architecture/): A hybrid cloud architecture is an environment that combines private computing resources with a public cloud. In this article, we'll explain how a hybrid cloud architecture works and what are the main advantages and use cases for this type of IT environment. - [Microsoft Introduces New Group Policy to Control IE Retirement](https://petri.com/microsoft-group-policy-control-ie-retirement/): Microsoft has introduced a new Group Policy that should make it easier to control the Internet Explorer (IE) retirement process... - [Microsoft Teams Gets New Remixed Ringtone for Video Calls](https://petri.com/microsoft-teams-calls-remixed-ringtone/): Microsoft has released a remixed version of its default Teams ringtone, which is now available for all desktop, web, and... - [VMware to Launch New vCenter Converter Tool in Beta](https://petri.com/vmware-vcenter-converter-tool/): vCenter Converter, the former physical to virtual (p2V) machine migration assistant that WMware retired in 2019 is set to officially... - [Microsoft's September 2022 Patch Tuesday Updates Fix 64 Windows Vulnerabilities](https://petri.com/september-2022-windows-patch-tuesday-updates/): Microsoft fixed a total of 64 security flaws in the September 2022 Patch Tuesday updates for Windows 11 and Windows 10, including two vulnerabilities that are already being exploited in the wild. This month's updates bring improvements to language support and SMB compression on Windows 11. - [Windows Terminal 1.16 Preview Adds New Text Rendering Engine and Themes](https://petri.com/windows-terminal-1-16-preview/): Microsoft has announced the release of Windows Terminal version 1. 16, which brings a couple of significant improvements to the... - [How to Recession-Proof your IT Career](https://petri.com/how-to-recession-proof-your-it-career/): In this article, I will share my recommendations on how to build a recession-proof career and protect it against the... - [How to Schedule an Email in Outlook](https://petri.com/how-to-schedule-an-email-in-outlook/): In this guide, we’ll show you how to schedule an email in Outlook for Windows, Outlook for Mac, and Outlook on the web. We'll also explain how to schedule emails with Outlook on iOS and Android, as this feature is currently not supported natively. - [Microsoft Teams Lets Users View Full Chat Conversation Thread in Search Results](https://petri.com/microsoft-teams-view-full-chat-conversation-thread/): Microsoft Teams is getting an improved search experience, which will allow users to see message threads right from search results.... - [IT Admins Can Now Manually Create Incidents in Microsoft Sentinel](https://petri.com/it-admins-can-now-manually-create-incidents-in-microsoft-sentinel/): Microsoft announced yesterday some important updates for Microsoft Sentinel. This release brings a new feature that allows IT admins to... - [Microsoft 365 apps Can Now Install Updates on Idle or Locked Windows Devices](https://petri.com/microsoft-365-apps-updates-idle-locked-windows/): Microsoft has introduced a new “update under lock” feature to streamline the update experience in its Microsoft 365 apps. The... - [Google Finalizes $5.4 Billion Mandiant Acquisition](https://petri.com/google-mandiant-acquisition/): Google announced this morning that its $5. 4 billion acquisition of cybersecurity provider Mandiant has officially closed. The deal brings... - [Researchers Warn About New Shikitega Malware Targeting Linux Endpoints and IoT Devices](https://petri.com/shikitega-malware-linux-endpoints-iot-devices/): Security researchers have unveiled a new malware that is infecting Linux endpoints and Internet-of-things (IoT) devices. The malware allows attackers... - [How to Add a Domain Controller to an Existing Domain (Server Manager)](https://petri.com/how-to-add-domain-controller-to-existing-domain/): As an IT Pro, it is highly likely that you’ve needed to add additional domain controllers (DCs) to your Active... - [Microsoft Adds Facebook-Like Storyline Feature to Viva Engage and Yammer](https://petri.com/microsoft-adds-storyline-viva-engage/): Last month, Microsoft launched its Viva Engage social networking platform for commercial customers. Now, the company has introduced a Facebook-like... - [Microsoft Addresses Sign-In Issues on Windows 11 PCs](https://petri.com/microsoft-fix-sign-in-bug-windows-11/): Microsoft has released a patch to address an issue that prevents users from signing in after adding a new Microsoft... - [Microsoft Teams Meetings Now Let Users Collaborate on Excel Spreadsheets](https://petri.com/microsoft-teams-meetings-excel-live/): Back in July, Microsoft unveiled a new Excel Live feature to make real-time collaboration easier within Microsoft Teams. The company... - [What is Azure Data Factory?](https://petri.com/azure-data-factory/): Azure Data Factory can collect data from multiple sources and perform various data engineering operations in a code-free and cost-effective way. In this guide, we explain the major components of Azure Data Factory and detail the best use cases for your business. - [Microsoft to Retire Meeting Scheduler Service in 2023](https://petri.com/microsoft-retire-meeting-scheduler/): Microsoft is getting ready to retire its Scheduler service for Microsoft 365. The company announced this week on the Microsoft... - [Windows Autopatch Gets Application-Based Authentication Support and More](https://petri.com/windows-autopatch-application-based-authentication/): Microsoft has detailed some new features added to its Windows Autopatch service in the month of September. The major highlights... - [Microsoft's New eCDN Enhances Live Video Streaming in Teams](https://petri.com/microsofts-ecdn-live-streaming-teams/): Microsoft has launched a new WebRTC-based enterprise content delivery network (eCDN) solution. The new standalone offering is a result of... - [Microsoft Announces New Teams Rooms Pro and Basic Plans](https://petri.com/microsoft-announces-teams-rooms-pro/): Last month, Microsoft announced that it’s revising the pricing structure of the Teams Rooms subscriptions. The company unveiled yesterday new... - [VMware Cloud on AWS Now Integrates with Amazon FSx for NetApp ONTAP](https://petri.com/vmware-cloud-on-aws-amazon-fsx-for-netapp-ontap-integration/): Amazon and VMware announced last week the general availability of the VMware Cloud on AWS integration with Amazon FSx for NetApp ONTAP. - [What is PowerShell and How to Get Started With It?](https://petri.com/what-is-powershell/): PowerShell is a cross-platform object-oriented language and shell that IT Pros can use to manage computers running Windows, Linux, and macOS. PowerShell can automate tasks across thousands of computers simultaneously. Learn what PowerShell is and how to use it in this article. - [Microsoft Teams to Show Up To 49 Meeting Participants by Default](https://petri.com/microsoft-teams-49-meeting-participants/): Microsoft Teams is working on a new update that will improve the meeting experience for desktop and web users. The... - [Microsoft Blocks Unmanaged Azure AD Guest Accounts](https://petri.com/microsoft-unmanaged-azure-ad-accounts/): Microsoft has released an update that blocks the use of unmanaged Azure AD accounts in organizations. The company has provided... - [How to Back Up Active Directory](https://petri.com/how-to-back-up-active-directory/): In this guide, we'll explain how to back up Active Directory by performing a full server backup or a system state backup. If you're running some of your Active Directory DCs as VMs in Microsoft Azure, we'll also explain how to set up Azure Backup to protect them. - [ESPC22 Conference Discount for Petri Readers](https://petri.com/espc22-conference-discount-for-petri-readers/): It’s time for you and your team to take a short break from your busy work demands and deadlines to... - [What’s New with Windows – August 2022](https://petri.com/whats-new-windows-august-2022/): August was relatively quiet as Microsoft prepares to begin rolling out Windows 11 22H2 in the coming month or two.... - [Register Now for Petri’s GET-IT Virtual Desktop Infrastructure Conference](https://petri.com/register-vdi-conference/): As more organizations look to consolidate infrastructure in the cloud, Petri is hosting a 1-day conference in September where industry... - [Latest Visual Studio Code Update Brings Merge Editor Improvements and Snap Layouts Support](https://petri.com/latest-visual-studio-code-update-brings-merge-editor-improvements-and-snap-layouts-support/): Microsoft has announced the release of version 1. 71 of its Visual Studio Code editor. The latest update brings some... - [Understanding Network Basics: What is TCP, Subnetting, and More](https://petri.com/what-is-tcp-subnetting/): In this article, we’ll explain the basics of networking, networking architecture, networking types, and networking security. We’ll also detail what... - [Microsoft to Let Admins Temporarily Pause Exchange Online Basic Auth Deprecation](https://petri.com/microsoft-exchange-online-basic-authentication/): Microsoft is once again notifying customers that it will finally disable basic authentication support in Exchange Online starting October 1,... - [What's New for Microsoft's Power Platform – August 2022](https://petri.com/microsoft-power-platform-august-2022-updates/): September is shaping up to be a month of working smarter and not harder. This month, Microsoft introduced their collaboration... - [AWS Launches New Cloud Region in the United Arab Emirates](https://petri.com/aws-cloud-region-united-arab-emirates/): Amazon Web Services (AWS) has announced the launch of a new data center in the United Arab Emirates (UAE). Over... - [Microsoft's New Azure Managed Grafana Service Improves Data Visualizations](https://petri.com/microsoft-azure-managed-grafana-service/): Microsoft’s Azure Managed Grafana service that launched in preview back in April is now generally available for enterprise customers. The... - [Microsoft is Investigating Azure Outage Affecting Ubuntu VMs](https://petri.com/microsoft-azure-outage-ubuntu-vms/): Microsoft has acknowledged that customers may experience domain name system (DNS) issues while accessing some Azure cloud services. The company... - [Microsoft Teams to Let Admins Deploy Up To 500 Teams Using Templates and PowerShell](https://petri.com/microsoft-teams-deploy-500-teams/): Microsoft Teams is getting a new update that will enable IT admins to deploy and manage teams at scale. Microsoft... - [Microsoft's Arm-based Azure VMs with Ampere Altra Chips Are Now Generally Available](https://petri.com/microsofts-arm-azure-vms-ampere-altra-chips/): Microsoft launched a preview of Arm support on Azure virtual machines (VMs) in April this year. Now, the company has... - [How to Install Grammarly for Word and Outlook](https://petri.com/grammarly-for-word-outlook/): Here's how to install Grammarly for Word and Outlook, a popular AI-powered writing assistant that can help users check spelling, punctuation, grammar, clarity, and improve their writing style. - [Microsoft Adds New To Do Integration to Outlook for Windows](https://petri.com/microsoft-to-do-integration-outlook-for-windows/): Microsoft has started rolling out a new update for Outlook for Windows. The latest release brings a new integration with... - [How to Create And Connect to an AWS RDS MySQL Database](https://petri.com/how-to-connect-aws-rds-mysql/): If you want to deploy MySQL databases in the cloud, this guide explains how to create and connect to an AWS RDS MySQL database. Amazon RDS is a scalable solution that lets you do that in minutes, and you’ll only need to pay for what you use. - [Microsoft Changes Licensing Policies to Support Small Cloud Vendors](https://petri.com/microsoft-changes-cloud-licensing-policies/): Microsoft has announced some important changes to its restrictive software licensing policies that should reduce the price of running Microsoft... - [Microsoft Releases Windows 365 Endpoint Analytics Reports for Performance Monitoring of Cloud PCs](https://petri.com/microsoft-windows-365-endpoint-analytics-reports/): Last year, Microsoft released two new Windows 365 Endpoint analytics reports in preview to help IT admins proactively monitor their... - [Microsoft is Sunsetting Kaizala Messaging Service in Favor of Teams in 2023](https://petri.com/microsoft-sunsetting-kaizala-service/): Microsoft is getting ready to sunset its Kaizala group messaging service next year. The company has informed its partners that... - [Microsoft Introduces New Adoption Score Tool to Measure People and Technology Experiences](https://petri.com/microsoft-adoption-score/): Microsoft has launched a new tool to help IT admins understand and optimize Microsoft 365 usage patterns within their organization.... - [LastPass Confirms Internal Source Code Compromised in Security Breach](https://petri.com/lastpass-source-code-compromised-breach/): LastPass has announced that its development environment was recently compromised in a security breach. The password manager maker detailed in... - [What is the Microsoft Teams Exploratory License, And When Should You Use It?](https://petri.com/microsoft-teams-exploratory/): The Microsoft Teams Exploratory experience is a free trial license that organizations can use to get started with Office 365. In this article, we'll explain why it can be a great option for customers who want to evaluate the Teams in their organization. - [Report: Microsoft and Amazon Halt Plans to Build New Irish Data Centers Amid Power Shortages](https://petri.com/microsoft-amazon-halt-irish-data-centers/): Microsoft and Amazon have reportedly halted their plans to build new data center projects in Dublin. According to a report... - [Microsoft Teams to Support Chats with Distribution Lists and Other Groups](https://petri.com/microsoft-teams-chats-distribution-lists/): Microsoft Teams is getting a new update that will enable users to start a group chat by inviting members of... - [Get Free AWS Training at AWS Innovate on September 28](https://petri.com/aws-innovate-conference-september-28/): AWS Innovate is a one-day virtual event that’s scheduled for Wednesday, September 28, 2022. The event will offer five different tracks with 30+ business and technical sessions for IT pros interested in developing their skills. - [VMware Carbon Black Releases Fix for BSOD and Boot Loop Issues on Windows](https://petri.com/vmware-carbon-black-bsod-boot-loop-windows/): VMware has acknowledged a new issue with its Carbon Black Endpoint Detection and Response (EDR) solution. The company confirmed in... - [Avast Gets New Ransomware Shield to Protect Small Businesses](https://petri.com/avast-ransomware-shield-small-businesses/): Avast has launched a new Ransomware Shield to protect small businesses and organizations from ransomware attacks. The new solution prevents... - [Microsoft Makes Teams Voice and Video Calling Features Available to Custom Business Apps](https://petri.com/microsoft-makes-teams-voice-and-video-calling-features-available-to-custom-business-apps/): Microsoft has announced the general availability of Azure Communication Services (ACS) for Teams. The new service enables developers to integrate... - [How to Configure Windows Autopatch: A Step-by-Step Guide](https://petri.com/windows-autopatch/): In this guide, we'll show how to get configure Windows Autopatch, a new Microsoft service that manages the automated patching of Windows, Microsoft 365 apps for Enterprise, Microsoft Edge, and Microsoft Teams in your organization. - [Microsoft Teams Gets New Facebook-Like Social Network 'Viva Engage'](https://petri.com/microsoft-teams-viva-engage/): Microsoft unveiled its plans to integrate Viva Engage within Teams at Inspire 2022. The company announced this morning that the... - [Cloud Conversations – Kat Beedim on Introversion, Microsoft Inspire, and Viva Engage](https://petri.com/cloud-conversations-episode-57-kat-beedim/): In this week's Cloud Conversations episode, we welcome back our co-host Kat Beedim following her wedding in Las Vegas. We also talk about being introverted or extroverted, our highlights from Microsoft Inspire, Viva Engage, Yammer, eDiscovery Premium & searching for cloud attachments, and much more. - [Microsoft Adds Co-Authoring Support for Protected Office Documents on iOS and Android](https://petri.com/microsoft-co-authoring-protected-office-documents-mobile/): Microsoft has announced that real-time co-authoring support for protected Office documents is now generally available on both Android and iOS... - [Google to Disable Calendar Interop with Exchange Online in October](https://petri.com/google-disable-calendar-interop-exchange-online/): Google has announced an important configuration change for Google Workspace customers. The company recommends that organizations should enable OAuth 2.... - [How to Recover Your PC Using System Restore on Windows 10](https://petri.com/system-restore-windows-10/): In this guide, we'll show you how to use System Restore on Windows 10 and fix potential issues by going back to a previous restore point. We'll also explain how to address the various problems that can be encountered during the restore process. - [Mandiant Warns Hackers Now Use New Trick to Bypass MFA](https://petri.com/mandiant-hackers-bypass-mfa/): Cybersecurity company Mandiant has discovered that hackers are using a new technique to target enterprise networks. The researchers warned that... - [Microsoft Acknowledges Secure Boot Fix Causes BitLocker Issues on Windows 11](https://petri.com/microsoft-bitlocker-issues-windows-11/): Microsoft has acknowledged a new issue with the recent security update for Secure Boot DBX (KB5012170) and Windows 11, which... - [Microsoft Defender for Endpoint Adds Network and Web Protection on macOS and Linux](https://petri.com/microsoft-defender-endpoint-network-web-protection-macos-linux/): Microsoft has released a new update for its Microsoft Defender for Endpoint solution. The latest release brings the network and... - [Google Cloud Mitigated a Record-Breaking HTTPS DDoS Attack](https://petri.com/google-cloud-blocks-ddos-attack/): Google has announced that it blocked the largest distributed denial-of-service (DDoS) attack. The attack peaked at 46 million requests per... - [How to Share Files in Teams (And Understand Where They Are Stored)](https://petri.com/how-to-share-files-in-teams/): In this article, I will show you how to share files in Teams. Not only that, but I will also... - [5 Tips for Using the Microsoft Teams Admin Center](https://petri.com/microsoft-teams-admin-center-tips/): In this article, I'll give you 5 tips to help you manage the Microsoft Teams admin center as efficiently as possible in your organization. Learn how to customize messaging policies, manage external access, create templates for your teams, and more. - [Microsoft Sysmon 14.0 Brings New Security Feature to Block Malware](https://petri.com/microsoft-sysmon-14-0-block-malware/): Microsoft has announced the release of version 14. 0 of Sysmon. The latest release brings a new feature that lets... - [Microsoft to Reduce Price for Teams Rooms Plans in September](https://petri.com/microsoft-reduce-price-teams-rooms/): Microsoft has announced some important pricing changes regarding Microsoft Teams Rooms plans, which will go into effect on September 1,... - [Microsoft Adds Time-Based One-Time Passcode Support to Azure AD](https://petri.com/microsoft-entra-totp-based-mfa-azure-ad/): Microsoft has released time-based one-time passcode (TOTP) support for Azure Active Directory (recently renamed Microsoft Entra ID) customers. The new... - [Latest Windows Server 2022 Update Improves Protection Against Ransomware Attacks](https://petri.com/windows-server-2022-kb5016693/): Microsoft has released the optional patch (KB5016693) for Windows Server 2022. The new cumulative update brings enhancements to the Microsoft... - [Microsoft Partners with Canonical to Add Native .NET 6 Support to Ubuntu 22.04](https://petri.com/microsoft-canonical-net-6-ubuntu-22-04/): Microsoft has partnered with Canonical to bring native . NET 6 support to Ubuntu 22. 04. This update should facilitate... - [Which Azure AD Connect Versions Are Currently Supported?](https://petri.com/azure-ad-connect-versions/): We detail here the Azure AD Connect versions that are going out of support on August 31, 2022 and in March 2023. With Microsoft now retiring 2.x versions of Azure AD Connect 12 months after their release, you'll want to plan your upgrades/migrations to supported versions as soon as possible. - [Microsoft Opens New Datacenter Region in Doha, Qatar](https://petri.com/microsoft-datacenter-region-qatar/): Microsoft has announced the launch of a new datacenter region in Doha, Qatar. The new cloud region will help to... - [Microsoft Defender for Endpoint Adds Tamper Protection on macOS](https://petri.com/microsoft-defender-for-endpoint-tamper-protection-macos/): Microsoft has announced that Tamper Protection is now generally available for Defender for Endpoint customers on macOS devices. The new... - [Microsoft’s New Dev Box Developer Workstation Service Launches in Preview](https://petri.com/microsoft-dev-box-developer-workstation/): Microsoft has launched a public preview of its Microsoft Dev Box managed service. The new cloud-based offering provides developers easier... - [Microsoft Teams Starts Rolling Out New 'Video Clip' Feature in 1:1 Chats](https://petri.com/microsoft-teams-video-clip-feature-chats/): Microsoft Teams has started rolling out a new Video Clip feature in public preview that was announced at Inspire 2022... - [Microsoft Sentinel Now Lets IT Admins Detect Low and Slow Password Spray Attacks](https://petri.com/microsoft-sentinel-low-slow-password-spray-attacks/): Microsoft has released a new guided hunting notebook for its Microsoft Sentinel solution. The notebook enables organizations to leverage machine... - [How to Install Office LTSC 2021](https://petri.com/install-office-2021/): This how-to guide will detail all the steps you need to follow to install Office 2021 LTSC, the latest perpetual version of Office for commercial and government customers on your computer. - [Cloud Conversations – Al Eardley on Microsoft Technology Center and Microsoft Certifications](https://petri.com/cloud-conversations-episode-56-al-eardley/): Al Eardley is a Modern Work and Security Technical Architect at Microsoft. He returns to Cloud Conversations this week to chat with Peter Rising about working at the Microsoft Technology Center in London, Microsoft certifications, evangelizing leading technology such as AI and IoT, and much more. - [Microsoft Outlook to Move Mail, Calendar, and Other Apps to A New Location](https://petri.com/microsoft-outlook-move-mail-calendar-apps/): Microsoft announced this week that it’s changing the default location of apps in Outlook for Windows. As of today, the... - [How To Install Active Directory Users And Computers (ADUC): A Step-by-Step Guide](https://petri.com/install-active-directory-users-and-computers/): In this guide, we'll show you how to install Active Directory Users and Computers (ADUC) on Windows. We'll also show you the basics of working with it so you can manage Active Directory user accounts, computer accounts, groups, and OUs. - [AWS Licenses Visual Studio with EC2](https://petri.com/amazon-licenses-visual-studio-aws-ec2/): Amazon now lets organizations run Microsoft Visual Studio on Amazon EC2 instances with a user-based license model. AWS-licensed installations of Visual Studio have a per-user subscription fee on their EC2 instances, and administrators have the ability to modify end-user access on a monthly basis. - [Google Workspace Adds Stronger Protections to Sensitive Accounts](https://petri.com/google-workspace-stronger-protections-sensitive-accounts/): Google has released a new update that should help to prevent unauthorized changes to Workspace user accounts. This security feature... - [How to Find a Substring In PowerShell](https://petri.com/powershell-substring/): Need to search for or extract a substring inside a PowerShell string? Never fear, PowerShell substring is here! In this... - [Microsoft 365 Experience Insights Dashboard Now Available in Preview](https://petri.com/microsoft-365-experience-insights-dashboard/): Microsoft has launched a new Experience Insights dashboard this week. It is designed to give organizations an overview of several... - [What is AWS IoT?](https://petri.com/what-is-aws-iot/): In this article, we will explore in detail what AWS IoT is, what components it offers, and how developers can... - [Microsoft Visual Studio 2022 17.3 Brings Support for .NET MAUI and Azure Container Apps](https://petri.com/microsoft-visual-studio-2022-17-3-net-maui/): Microsoft has announced the release of Visual Studio 2022 17. 3. The latest update brings a slew of new features... - [Microsoft's OneDrive Gets A Revamped Home Page and New File Sharing Experience](https://petri.com/microsofts-onedrive-revamped-home-page/): Microsoft is celebrating 15 years of its OneDrive cloud storage service this month. The company has unveiled a refreshed OneDrive... - [August Patch Tuesday Updates Fix 121 Vulnerabilities and Improve Focus Assist](https://petri.com/august-2022-patch-tuesday-updates/): The August 2022 Patch Tuesday updates address 121 vulnerabilities in Windows, with 17 of them rated critical. Microsoft also improved the Focus Assist feature on Windows 11 and Windows 10 and added an option for easily updating to the latest version of Windows 11 at startup. - [Google to Open Three New Cloud Regions in Malaysia, Thailand, and New Zealand](https://petri.com/google-cloud-malaysia-thailand-new-zealand/): Google has announced that it’s building three new cloud regions in Malaysia, Thailand, and New Zealand. The launch of these... - [Microsoft Entra Verified ID Service is Now Generally Available](https://petri.com/microsoft-launches-entra-verified-id-service/): Microsoft has announced that its Entra Verified ID service is now generally available for commercial customers. The new decentralized identity... - [Test Network Connectivity with PowerShell Test-Connection](https://petri.com/powershell-test-connection/): Jeff Hicks shows you how to test network connectivity between two endpoints using the PowerShell Test-Connection cmdlet. For IT pros, the PING utility that has existed since forever. It still works, and you can even use it in PowerShell. But you get text output that's hardly useful for scripting. - [Start Planning for AWS re:Invent 2022 in Las Vegas on Nov. 28 – Dec. 2](https://petri.com/aws-reinvent-2022/): This year’s AWS re:Invent 2022 conference will be an in-person event in Las Vegas from November 28 to December 2, and there will be over 1,500 breakout sessions on a variety of AWS topics including cloud architecture, continuous deployment, large-scale migrations, machine learning, and more. - [Microsoft Brings Windows 11's Universal Print Capabilities to Windows 10](https://petri.com/microsoft-universal-print-windows-10/): Microsoft has announced that new Universal Print capabilities that debuted on Windows 11 last year are coming to Windows 10.... - [Slack Releases Fix for Critical Bug That Exposed Hashed Passwords for Years](https://petri.com/slack-bug-exposed-hashed-passwords/): Slack has confirmed that a security vulnerability accidentally exposed the hashed passwords of around 0. 5 percent of its customers.... - [Microsoft Edge 104 Brings Enhanced Security Mode Improvements and New Policies](https://petri.com/microsoft-edge-104-enhanced-security-mode/): Microsoft has started rolling out Edge version 104 to the Stable channel. This new update brings some improvements to the... - [Cloud Conversations – Femke Cornelissen on Dutch Women in Tech, Twitter Spaces, and M365 Adoption](https://petri.com/cloud-conversations-episode-55-femke-cornelissen/): Femke Cornelissen is an Adoption and Modern Workplace Team Leader at Tredion ICT & Telecom, as well as a Community manager Dutch Women in Tech. In this week's Cloud Conversations episode, she joins Peter Rising to chat about her career in M365 Adoption and Modern Work. - [How to Use the PowerShell Exit Keyword to Terminate Scripts](https://petri.com/powershell-exit/): The PowerShell exit keyword allows you to terminate scripts without closing your current console session. In this guide, we explain all the different ways to use PowerShell exit to break the execution of a script, function, loop, or switch statement. - [Microsoft's New Azure Fluid Relay Service Lets Developers Build Collaborative Apps](https://petri.com/microsofts-azure-fluid-relay-collaborative-apps/): Microsoft has announced the general availability of its Azure Fluid Relay service. It’s a managed cloud offering that enables web... - [Error Handling With PowerShell Try Catch Blocks](https://petri.com/powershell-try-catch/): In this article, Adam Bertram shows you how to use PowerShell try catch, a built-in error handling feature, to help you debug scripts when there are problems. Plus, there's information on new error handling features in PowerShell 7! - [How to Set Up Amazon FSx for Windows File Server](https://petri.com/aws-fsx-for-windows/): AWS FSx for Windows File Server is for organizations looking to use AWS to get highly available storage for their Windows applications with full Server Message Block (SMB) support. In this guide, we'll go through the steps required to set up Amazon FSx for Windows File Server. - [Smart App Control Can Now Block More File Types on Windows 11](https://petri.com/smart-app-control-block-file-types-windows-11/): Microsoft has unveiled some security enhancements for the Smart App Control feature in Windows 11. David Weston, Microsoft’s VP for... - [Microsoft Defender Experts for Hunting Lets Businesses Proactively Hunt Security Threats](https://petri.com/microsoft-defender-experts-hunting/): Back in May, Microsoft unveiled a new Defender Experts for Hunting solution to help organizations proactively hunt for security threats.... - [VMware Releases Updates to Address Critical Authentication Bypass Flaw](https://petri.com/vmware-fixes-critical-authentication-bypass-flaw/): VMware has released new security updates to address a critical authentication bypass vulnerability present in its multiple products. The company... - [Microsoft Teams Gains Native Support for Apple Silicon Macs](https://petri.com/microsoft-teams-apple-silicon-macs/): Microsoft Teams for macOS is finally getting native support for Apple Silicon devices. The company has just announced that the... - [Microsoft Confirms Uber Receipt Emails Bug Crashing Outlook for Windows](https://petri.com/microsoft-uber-receipt-emails-outlook/): Microsoft is investigating a new issue that is causing the Outlook desktop app to crash when opening emails containing complicated... - [A Simple Guide to Linux Shell Scripting With Bash](https://petri.com/shell-scripting-bash/): This shell scripting tutorial for beginners will go over the basics of Linux shell scripting with Bash, including creating and running a script, as well as working with strings and loops. - [Microsoft Defender Gets New Security Tools Powered By RiskIQ's Threat Intelligence](https://petri.com/microsoft-defender-security-tools-threat-intelligence/): Microsoft has announced two new security services to enhance the threat intelligence capabilities of its Microsoft Defender platform. The new... - [How to Use PowerShell Grep: Select-String and RegEx Real World Examples](https://petri.com/powershell-grep-select-string/): PowerShell grep: Learn how to get your text string into a PowerShell object, and then use Select-String to search the string for patterns. Jeff Hicks uses a real world example where you will parse a log file and then format and display the output according to your needs. - [Microsoft Teams Adds Viva Goals to Help Employees Track Objectives and Key Results](https://petri.com/microsoft-teams-viva-goals-module/): Microsoft Viva Goals, a new goal-setting and management tool that launched in private preview back in May is now generally... - [Microsoft Launches Faster Outlook Lite Android App in Select Markets](https://petri.com/microsoft-launches-outlook-lite-android/): Last month, Microsoft announced its plans to launch a new smaller and faster Outlook Lite app for Android. The Lite... - [What’s New in Windows – July 2022](https://petri.com/whats-new-in-windows-july-2022/): This month, Microsoft is apparently pushing back the next big release of Windows to 2024, the Windows Autopatch service is now generally available, Windows 10 22H2 will be getting some new features, and there are tons of updates to Insider Preview builds of Windows 11. - [What's New for Microsoft's Power Platform – July 2022](https://petri.com/microsoft-power-platform-july-2022-updates/): The July 2022 updates for Microsoft's Power Platform include a new Search pane in Canvas apps, a new way to embed a canvas app in Teams, and 44 new connectors. - [Amazon CloudFront Vs. Cloudflare: How to Choose the Right CDN](https://petri.com/aws-cloudfront-vs-cloudflare/): Cloudflare and Amazon CloudFront are among the most renowned and reliable CDNs on the market. In this Amazon CloudFront vs. Cloudflare comparison, we'll detail the key differentiators for both CDNs to help you determine what the most relevant service to use for your business.  - [Microsoft's Move to Block Office Macros Leads Hackers to Find New Attack Vectors](https://petri.com/microsofts-block-office-macros-malware/): Last week, Microsoft started rolling out an update to block all Office VBA macros obtained from the internet by default... - [What's New in Microsoft Teams – July 2022](https://petri.com/whats-new-microsoft-teams-july-2022/): Microsoft has detailed a round-up of new features that were added to Teams during the month of July. The company... - [VMware Fusion 22H2 Tech Preview Adds Windows 11 Support to Apple Silicon Macs](https://petri.com/vmware-fusion-22h2-windows-11-apple-silicon/): VMware has announced the release of the Fusion 22H2 Tech Preview for Mac devices. This release adds the much-anticipated support... - [Microsoft Teams Now Lets Meeting Organizers Assign Seats in Together Mode](https://petri.com/microsoft-teams-assign-seats-together-mode/): Earlier this month, we reported that Microsoft Teams is adding a new feature in Together Mode to let meeting organizers... - [Windows 11 to Add New Multi-App Kiosk Mode for IT Admins](https://petri.com/windows-11-multi-app-kiosk-mode-it-admins/): Microsoft has released the Windows 11 preview build 25169 for Insiders in the Dev channel. The latest update brings two... - [Windows Autopilot Deployment: A Step-by-Step Guide](https://petri.com/windows-autopilot-deployment-step-by-step/): In this Windows Autopilot deployment step-by-step guide, we explain how IT pros can use this solution to simplify the process of pre-configuring Windows devices before handing them out to users in their organization. - [AWS Adds New Security Features to Elastic Block Store and Kubernetes Service](https://petri.com/aws-security-malware-protection-features/): Amazon has released new security updates for its Amazon Elastic Block Store (EBS) and Amazon Elastic Kubernetes Service (EKS) services.... - [Understanding PowerShell Objects](https://petri.com/powershell-objects/): I have taught PowerShell objects to many people over the last 10 years and it is not as difficult as people make it out to be. In this article, I will take you through the basics of working with objects. Plus, real-world examples of how to simplify complex code using objects. - [Microsoft Releases Updates for Azure AD Certificate-Based Authentication](https://petri.com/microsoft-updates-azure-ad-certificate-based-authentication/): Microsoft announced the public preview of Azure Active Directory Certificate-Based Authentication (CBA) back in February. Now, the software giant has... - [Microsoft Exchange Servers Hit By Stealthy IIS Backdoors](https://petri.com/microsoft-exchange-servers-iis-backdoors/): Microsoft has published a security advisory about a new wave of malware attacks that target Exchange Servers. The company has... - [Paul Thurrott’s Short Takes: Microsoft Earnings Special Edition (July 2022)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-18/): Because Microsoft announced its quarterly and annual earnings this week, I’m back with a new edition of Short Takes that... - [Microsoft Launches New On-Premises Unified Update Platform To Manage Windows Updates](https://petri.com/microsoft-on-premises-unified-update-platform/): Microsoft has launched a new Unified Update Platform (UUP) that brings on-premises update management capabilities for commercial customers. UUP on... - [How to Fix The "Trust Relationship Between This Workstation And The Primary Domain Failed" Error](https://petri.com/trust-relationship-between-this-workstation-and-the-primary-domain-failed-error/): The “trust relationship between this workstation and the primary domain failed” error occurs when a computer cannot access a network because it is offline, or when it lost its membership to the Active Directory domain. Learn how to repair your device's trust relationship with Active Directory here. - [iCloud for Windows Now Lets Users Generate 2FA Codes](https://petri.com/icloud-for-windows-2fa-code-generator/): Apple has released a new update that brings a much-anticipated feature for its iCloud app on Windows. First spotted by... - [Microsoft Releases Emergency Fix for Windows 11 Start Menu Issues](https://petri.com/microsoft-fix-windows-11-start-menu/): Microsoft has acknowledged a new issue that is currently preventing users from opening the Start menu on some Windows 11... - [Using PowerShell Select-Object](https://petri.com/powershell-select-object/): In this article, PowerShell expert Jeff Hicks takes you through the different ways you can use the PowerShell Select-Object cmdlet. PowerShell is an object-oriented shell. And as such, you will need to understand how to work with objects to get the best out of PowerShell. - [Microsoft Releases Azure Active Directory Cross-Tenant Access Settings](https://petri.com/microsoft-azure-ad-cross-tenant-access-settings/): Microsoft has announced the general availability of new Azure AD cross-tenant collaboration settings. The feature was first announced back in... - [Latest Windows Server Updates May Cause Printing and Scanning Issues](https://petri.com/windows-server-updates-printing-issues/): Last year, Microsoft released security updates to address Windows Server printing issues in some business printers and scanners that use... - [Securing IoT with Azure Sphere](https://petri.com/azure-sphere/): IoT expert John Lunn takes a look at what Azure Sphere is and how it is helping to protect Internet of Things (IoT) devices with additional security overlay. Learn about the 3 components of Azure Sphere, including Azure Sphere OS, and how Microsoft's Pluton chip is used to secure devices. - [Microsoft to Resume Blocking Office VBA Macros By Default on July 27](https://petri.com/microsoft-resume-block-office-vba-macros/): Back in February, Microsoft announced that it would begin blocking Visual Basic for Applications (VBA) macros by default in its... - [AWS Porting Assistant Moves VB.NET Apps to .NET Core](https://petri.com/aws-porting-assistant-vb-net/): The new AWS Porting Assistant for .NET supports assessment and porting of legacy VB.NET applications to .NET Core. The AWS Porting Assistant for .NET translates VB.NET class libraries, web APIs, and console applications to .NET Core 3.1, .NET 5, or .NET 6 applications. - [Microsoft Retires Windows Information Protection in Favor of New Purview Service](https://petri.com/microsoft-retires-windows-information-protection-purview-service/): Microsoft has announced its plans to retire the built-in Windows Information Protection (WIP) feature in its client operating system. The... - [New Features in SQL Server 2022](https://petri.com/sql-server-2022-new-features/): SQL expert Mike Otey introduces you to all the most important SQL Server 2022 new features in the latest release of Microsoft's relational database. New features include SQL Ledger backed by blockchain, integration with AWS S3 storage, and Link to Azure SQL Managed Instance. - [Windows 12 Won't Be a Big Bang Release. Here's Why.](https://petri.com/windows-12-2024/): Microsoft is apparently scrapping next year’s big update for Windows 11. And instead, aiming for a major update in 2024.... - [Microsoft to Enable Brute Force Attack Protection By Default in Windows 11](https://petri.com/windows-11-brute-force-protection/): Microsoft has unveiled a new security feature that is set to arrive in Windows 11 later this year. David Weston,... - [Atlassian Releases Patches to Fix Critical Confluence Flaw](https://petri.com/atlassian-fix-critical-confluence-flaw/): Atlassian has disclosed a new critical flaw in its Confluence Server and Data Center products. The company explained in its... - [Oracle Teams Up with Microsoft to Launch New Database Service for Azure](https://petri.com/microsoft-oracle-database-service-for-azure/): Microsoft has teamed up with Oracle to launch a new service called “Oracle Database Service for Azure. ” The latest... - [Microsoft Releases Update Management Center in Public Preview](https://petri.com/microsoft-releases-update-management-center/): Microsoft has launched a new Update Management Center (UMS) in public preview. The new service is designed to make it... - [New Optional Patch Fixes Freezing Issues in Windows Server 2022](https://petri.com/microsoft-update-freezing-issues-windows-server-2022/): Microsoft has released the optional July 2022 non-security patch (KB5015879) for Windows Server 2022. This optional update reduces resource contention... - [How to Use the Icacls Command to Manage File Permissions](https://petri.com/icacls-command/): Icacls is a Windows command-line utility that IT admins can use to change access control lists on files and folders. In this guide, you'll learn how to quickly and easily modify access control lists from the command line. - [Inspire 2022: Microsoft Launches Cloud for Sovereignty to Protect Government Customers](https://petri.com/microsoft-launches-cloud-for-sovereignty/): Microsoft is launching today Microsoft Cloud for Sovereignty, a new cloud offering for the government sector. The new cloud solution... - [Inspire 2022: Microsoft Celebrates Windows 365 One Year Anniversary with New Features](https://petri.com/microsoft-updates-windows-365/): Microsoft is celebrating the one-year anniversary of its Windows 365 Cloud PC service that launched back in July 2021. The... - [Inspire 2022: Microsoft Digital Contact Center Platform Brings New AI Tools to Modernize Customer Service](https://petri.com/microsoft-digital-contact-center-platform/): Microsoft launched today the Digital Contact Center Platform, a new flexible and collaborative contact center solution. The new service brings... - [Inspire 2022: Microsoft Teams Gets Excel Live Experiences, Video Clips, and Viva Engage](https://petri.com/microsoft-teams-adds-excel-live-video-clip/): Microsoft has unveiled a bunch of Microsoft 365 updates at its annual Inspire partner conference, which just kicked off this... - [DHS Review Board Warns Log4j Flaw to Affect Vulnerable Systems Until At Least 2032](https://petri.com/dhs-log4j-flaw-affect-systems-2032/): The US Department of Homeland Security has issued a security advisory about the risks associated with Log4j vulnerabilities. The DHS’... - [Microsoft Teams Meetings Now Let Users Pop Out Shared Content](https://petri.com/microsoft-teams-meetings-pop-out-shared-content/): Microsoft Teams has released some new features for public preview users. The software giant has announced that the Teams desktop... - [How to Install Active Directory PowerShell Module](https://petri.com/install-active-directory-powershell-module/): Learn how to install the Active Directory PowerShell module on any version of Windows, starting with Windows 7. Importing AD module gives IT pros convenient and secure remote access to administer their AD environments, all without having to interactively log into their domain controllers. - [Cloudflare Issues Advisory About Mantis Botnet Behind the Most Powerful DDoS Attack](https://petri.com/cloudflare-mantis-botnet-ddos-attack/): The internet infrastructure firm Cloudflare has released an advisory about a powerful botnet dubbed Mantis. The botnet was behind the... - [Google's Chrome OS Flex Converts Old Macs, PCs into Reliable Chromebooks](https://petri.com/chrome-os-flex-converts-macs-pcs-chromebooks/): Google has officially launched Chrome OS Flex, a free version of Chrome OS that can be installed on almost any... - [Azure Bastion Native Client Support - Log Into VMs With the Windows RDP Client](https://petri.com/azure-bastion-native-client-support/): In this article, Azure expert Aidan Finn shows you how to log into VMs protected by an Azure Bastion Host using the native Remote Desktop Protocol (RDP) client in Windows. This method brings some advantages over using the Azure Portal, including the ability to cut and paste to the remote device. - [Backup Power Supplies and Strategies to Recover from Power Outages](https://petri.com/backup-power-supplies/): In this article, we look at backup power solutions and the different kinds of power outages you need to protect your critical IT systems against. Plus, learn about strategies for avoiding downtime when the worst happens. - [Microsoft Teams is Getting Native Support for Apple Silicon Macs in September](https://petri.com/microsoft-teams-native-support-apple-silicon-macs/): Microsoft has announced that it’s bringing support for Apple M1/M2 processors in its Microsoft Teams app for macOS. The company... - [Microsoft Releases New Azure AD Group Writeback Updates](https://petri.com/microsoft-releases-azure-ad-group-writeback-updates/): Microsoft has recently announced some important updates for Azure AD Connect Group Writeback. This release enables organizations to write back... - [Microsoft Defender for Business Gets Protections for Windows and Linux Servers](https://petri.com/microsoft-defender-for-business-windows-linux-servers/): Microsoft has released server protection capabilities for its Defender for Business solution. The new security feature is available in preview... - [Google Cloud Announces First Arm-based VMs for High-Performance Workloads](https://petri.com/google-cloud-first-arm-based-vms/): Google Cloud today announced Tau T2A, its first virtual machines (VMs) based on the Arm architecture. The company has also... - [July Patch Tuesday Updates Fix 84 Vulnerabilities and LDAP Gets TLS 1.3](https://petri.com/windows-july-2022-patch-tuesday-updates/): Microsoft fixed 84 Windows vulnerabilities with this month's Patch Tuesday updates, and four of them are rated critical. The July Patch Tuesday Updates also mark the public rollout of the Search Highlights feature Microsoft previously introduced on Windows 10. - [Microsoft Warns About New Large-Scale Phishing Campaign Bypassing MFA](https://petri.com/microsoft-phishing-campaign-bypassing-mfa/): Microsoft has discovered a new massive AiTM phishing campaign that can steal credentials even if the user account is protected... - [Microsoft 365 Apps to End Support for Windows 8.1 and Windows 7 in January](https://petri.com/microsoft-365-apps-end-support-windows-8-1-windows-7/): Microsoft is preparing to drop support for its Microsoft 365 apps on some older versions of Windows next year. The... - [Azure Stack HCI Pricing – Is Full OPEX Possible?](https://petri.com/azure-stack-hci-pricing/): Flo Fox, a Senior Fast Track Engineer at Microsoft, looks at Azure Stack HCI pricing. Including whether full OPEX is possible, the cost structure of Windows Server licences, Azure Stack HCI hardware, Azure support, and more. - [Microsoft Defender for IoT Protects Unmanaged Enterprise IoT Devices](https://petri.com/microsoft-defender-for-iot-unmanaged-enterprise-iot-devices/): Microsoft has announced the general availability of new enterprise IoT security capabilities in its Defender for IoT solution. The company... - [IT Admins Can Now Monitor Microsoft 365 with New Service Health Dashboard](https://petri.com/microsoft-365-admin-health-dashboard/): Microsoft has launched a new Health dashboard in public preview for small or medium-sized organizations. The software giant says that... - [Microsoft's New Windows Autopatch Service is Now Generally Available](https://petri.com/microsofts-new-windows-autopatch-service-is-now-generally-available/): Windows Autopatch, an enterprise service that launched in public preview back in May, is now generally available for customers with... - [AWS Announces Streamlined Deployment for .NET Apps](https://petri.com/aws-streamlined-dot-net-applications-deployment/): The new AWS Toolkit for Visual Studio and AWS Deploy Tool for .NET enable you to seamlessly deploy .NET applications on Amazon Web Services without needing a lot of AWS expertise.. - [Microsoft Teams to Automatically End Stale Meetings with Only One Participant](https://petri.com/microsoft-teams-end-stale-meetings/): Microsoft Teams is getting an update that will automatically end stale meetings. The new feature will prompt users to end... - [Microsoft Launches Visual Studio Code Server in Preview](https://petri.com/microsoft-visual-studio-code-server/): Microsoft has recently released a new update (version 1. 69) for Visual Studio Code. The big highlight of this release... - [Microsoft to Fix Bug Breaking Outlook Search on Windows 11](https://petri.com/microsoft-outlook-search-bug-windows-11/): Microsoft is investigating a new Windows 11 bug that is currently preventing the Outlook desktop app from displaying recent emails... - [How to Install Git on Ubuntu 20.04](https://petri.com/install-git-ubuntu/): Learn how how to install Git on Ubuntu 20.04 step by step so that you can manage your repositories quickly and easily from the command line. After installing Git, you'll be able to automate common tasks for your repositories stored on GitLab, GitHub and similar platforms. - [Microsoft's Entra Permissions Management Solution Goes Out of Preview](https://petri.com/microsoft-entra-permissions-management-solution/): Microsoft has announced that its Entra Permissions Management solution is now generally available for enterprise customers. It’s a cloud-based infrastructure... - [Manage Microsoft Teams Faster With The New Admin App!](https://petri.com/microsoft-teams-admin-app/): Microsoft recently announced a new Teams app called Admin, which brings a subset of the most commonly accessed admin settings... - [Microsoft Updates Teams PowerShell Module to Version 4.5](https://petri.com/microsoft-teams-powershell-module-version-4-5/): Microsoft has released version 4. 5. 0 of the Teams PowerShell module. This update doesn’t bring any big changes but... - [Microsoft Rolls Back Default VBA Macro Block in Office Apps](https://petri.com/microsoft-rolls-back-vba-macro-block-office/): Microsoft is set to backtrack on its decision to block Visual Basic for Applications (VBA) macros by default across all... - [How to Fix the "Remote Desktop Connection - An Internal Error Has Occurred" Error](https://petri.com/remote-desktop-connection-an-internal-error-has-occurred/): The "Remote Desktop Connection: An internal error has occurred" message can show up when a Remote Desktop Protocol client is unable to make a connection with an RDP server. Learn how to troubleshoot this issue with a step-by-step guide for checking the most important RDP settings on your Windows PC. - [Latest Windows Server vNext Insider Build Brings Support for LAPS](https://petri.com/windows-server-local-administrator-password-solution-laps/): Last week, Microsoft announced the release of the Windows Server vNext Insider build 25151. This new preview build of the... - [Microsoft Azure Reportedly Experiencing Capacity Shortages Amid Global Supply Chain Issues](https://petri.com/microsoft-azure-capacity-issues-supply-chain/): Microsoft’s Azure cloud is experiencing capacity issues due to ongoing supply chain constraints. According to a new report from The... - [Microsoft's New Outlook for Mac to Add Support for Retention Policies and Reactions](https://petri.com/microsofts-outlook-for-mac-retention-policies-reactions/): Microsoft has announced some important updates that should improve the new Outlook for Mac experience that launched in Fall 2020.... - [Microsoft Detects Raspberry Robin Windows Worm in Hundreds of Enterprise Networks](https://petri.com/microsoft-detects-raspberry-robin-windows-worm/): Microsoft has warned customers about a new high-risk worm called “Raspberry Robin” that is infecting Windows PCs. The software giant... - [Microsoft Announces Ephemeral OS Disk Support for Confidential Azure VMs](https://petri.com/microsoft-ephemeral-os-disk-confidential-azure-vms/): Microsoft has announced Ephemeral OS disk support for Azure confidential virtual machines (VMs). The new feature enables organizations to use... - [5 Essentials for Successful Cloud Adoption](https://petri.com/cloud-adoption-essentials/): In this post, I’ll detail five essential principles for successful cloud adoption. You will learn how to approach adopting a cloud solution, including who should be involved, how processes need to be changed, and how using a Cloud Adoption Framework can get you on the right path to cloud success! - [CISA Advises Federal Agencies to Patch Windows LSA Flaw Affecting Domain Controllers](https://petri.com/cisa-patch-windows-lsa-flaw-domain-controllers/): Back in May, the Cybersecurity & Infrastructure Security Agency (CISA) temporarily removed a Windows flaw from its Known Exploited Vulnerability... - [What’s New with Microsoft's Power Platform – June 2022](https://petri.com/microsoft-power-platform-june-2022-updates/): The release of a streamlined and user-friendly maker experience for model-driven apps was one of the highlights of the June 2022 updates for Microsoft's Power Platform. There have been many other updates last month including new metrics in Power BI, Search coming to Power Apps in preview, and more. - [Microsoft Teams Simplifies IT Management with New Admin App](https://petri.com/microsoft-teams-releases-admin-app/): Microsoft has announced the release of a new Admin App for Microsoft Teams. The app provides a central hub that... - [Microsoft Defender for Endpoint Now Detects Network Threats on Android and iOS Devices](https://petri.com/microsoft-defender-for-endpoint-mobile-network-protection/): Microsoft has released a new mobile network protection feature for its Microsoft Defender for Endpoint (MDE) solution. The new capability... - [How to Select Hardware for Azure Stack HCI](https://petri.com/azure-stack-hci-hardware/): Azure Stack HCI is Microsoft’s hyper-converged infrastructure cluster solution for hosting virtualized Windows and Linux workloads. In this guide, we'll explain the network components and hardware required to run virtualized workloads on-premises with Azure Stack HCI. - [What’s New with Windows – June 2022](https://petri.com/whats-new-with-windows-june-2022/): This month, there was a lot of activity for Windows Insiders, Internet Explorer was finally retired, and could Microsoft be... - [Microsoft to Launch a Faster Outlook Lite App for Android Users](https://petri.com/microsoft-outlook-lite-app-android/): Microsoft is getting ready to launch a new Outlook Lite app for Android. The software giant announced the new version... - [Kaspersky Discloses New 'SessionManager' Backdoor Targetting Microsoft Exchange Servers](https://petri.com/kaspersky-sessionmanager-backdoor-microsoft-exchange-servers/): Security vendor Kaspersky has warned about a new malware that allows attackers to backdoor Microsoft Exchange servers. Dubbed SessionManager, the... - [Is VMware Doomed After Broadcom's $61B Takeover Bid?](https://petri.com/is-vmware-doomed-after-broadcoms-61b-takeover-bid/): Broadcom announced that it was planning to acquire VMware in May. And since then, it has laid out its plans... - [Understanding Office 365 Quarantine](https://petri.com/office-365-quarantine/): Microsoft’s Office 365 Quarantine is a new service designed to keep organizations safer by moving all suspicious messages to a... - [What’s New in Microsoft Teams – June 2022](https://petri.com/whats-new-microsoft-teams-june-2022/): Microsoft has published a roundup of all the new features and enhancements rolled out to Microsoft Teams in the month... - [Microsoft Office App for Android Gets New Quick Access Filters](https://petri.com/microsoft-office-app-android-quick-access-filters/): Microsoft has started rolling out a new Quick Access filters experience in its unified Office app for Android. The feature... - [Microsoft Defender Vulnerability Management Adds New CVE Reporting Feature](https://petri.com/microsoft-defender-vulnerability-management-cve-reporting-feature/): Microsoft Defender Vulnerability Management is getting a new update that allows IT Pros to gain insights about vulnerable software and... - [Microsoft Delays End of Auto-Renewals of Legacy CSP Subscriptions](https://petri.com/microsoft-delays-end-legacy-csp-auto-renewals/): Microsoft has indefinitely delayed its plans to block auto-renewals of monthly subscriptions that are currently sold by Cloud Solution Providers... - [Microsoft Releases Patches to Address Azure FabricScape Flaw Affecting Linux Workloads](https://petri.com/microsoft-azure-fabricscape-flaw-linux-workloads/): Microsoft has patched a critical in Azure Service Fabric dubbed “FabricScape” that affects containerized workloads on Linux. The software giant... - [Google Creates New Division to Accelerate Public Cloud Adoption](https://petri.com/google-public-sector-cloud-adoption/): Google is creating a new division that will focus on helping US public sector organizations to accelerate the adoption of... - [Microsoft 365 Web Apps Get New Idle Session Timeout Feature to Prevent Data Leaks](https://petri.com/microsoft-365-web-apps-idle-session-timeout-feature/): The idle session timeout feature, which the company announced for its Microsoft 365 web apps back in March, is now... - [Using Windows Boot Manager to Fix Startup Errors on Windows](https://petri.com/windows-boot-manager-fix-startup-errors/): Windows PCs may sometimes encounter issues during startup, and that can happen when Windows fails to load properly. In this... - [Microsoft Teams Adds New Web Features for Small Businesses](https://petri.com/microsoft-teams-new-web-features-small-businesses/): Microsoft announced a big update for Teams on the web that’s aimed at small and medium businesses. The latest release... - [Microsoft Starts Rolling Out Edge WebView2 to Windows 10 PCs](https://petri.com/microsoft-edge-webview2-windows-10-pcs/): Microsoft has started rolling out the Edge WebView2 Runtime to Windows 10 consumer devices. The Microsoft Edge WebView 2 control... - [IT Admins Get New Azure AD Temporary Access Pass Feature to Create Time-Limited Passcodes](https://petri.com/it-admins-create-azure-ad-temporary-access-pass/): Microsoft has announced that Temporary Access Pass (TAP) is generally available for commercial customers. The Temporary Access Pass feature enables... - [Microsoft Addresses Windows 11 Wi-Fi Hotspot Issues in New Optional Update](https://petri.com/microsoft-addresses-windows-11-wi-fi-hotspot-issues/): Microsoft has released the KB5014668 update for Windows 11, a new optional patch that fixes the Wi-Fi hotspot feature broken... - [Microsoft Defender for Identity Can Now Detect Insecure Domain Configurations](https://petri.com/microsoft-defender-for-identity-detect-insecure-domain-configurations/): Microsoft Defender for Identity is getting a new update that enables IT admins to identify insecure domain configurations in their... - [Amazon CodeWhisperer is Now Available in Public Preview](https://petri.com/amazon-codewhisperer-preview/): Amazon CodeWhisperer is a code development tool that uses machine learning (ML) and artificial intelligence (AI) to help developers write better code and reduce routine and repetitive work. It's now available in preview form with support for multiple IDEs and languages. - [What is a Virtual Machine?](https://petri.com/what-is-a-virtual-machine/): A virtual machine (VM) is an emulated or digital version of a physical computer. In this guide, we explain some of the most important use cases for virtual machines, including cross-platform software development and malware investigation. - [Microsoft to Start Notifying Windows 8.1 Users About Upcoming End of Support](https://petri.com/microsoft-windows-8-1-users-end-of-support-notifications/): Microsoft is getting ready to end support for its almost 9-year-old Windows 8. 1 operating system on January 10, 2023.... - [CISA Warns Unpatched VMware Servers Remain Vulnerable to Log4Shell](https://petri.com/cisa-unpatched-vmware-servers-vulnerable-log4shell/): The US Cybersecurity and Infrastructure Agency (CISA) has warned that attackers are still exploiting the Log4Shell flaw to target VMware’s... - [Microsoft Teams Now 60% Faster but When Will Teams 2.0 Arrive?](https://petri.com/microsoft-teams-now-60-faster-but-when-will-teams-2-0-arrive/): Microsoft first announced plans for a new and faster Teams client last year. But while Windows 11 got a new... - [How to Install SQL Server 2022](https://petri.com/install-sql-server-2022/): SQL Server 2022, the latest release of Microsoft's relational database product is nearing the finish line. In this guide, we'll show you how to install SQL Server 2022 with the default, typical setup configuration. - [Microsoft Entra Verified ID Now Lets Users Recover Lost Credentials](https://petri.com/microsoft-entra-verified-id-recover-lost-credentials/): Microsoft has announced new features and improvements coming to its Microsoft Entra Verified ID service. The company says that these... - [QNAP Releases Patch to Fix PHP Security Flaw Affecting Select NAS Devices](https://petri.com/qnap-fix-php-security-flaw-nas-devices/): QNAP has released a patch to address a new PHP security vulnerability that affects specific configurations of its Network Attached... - [Windows 11 to Add 'Legacy' Local Administrator Password Solution](https://petri.com/windows-11-legacy-local-administrator-password-solution/): Microsoft has released a new Windows 11 build to Insiders in the Dev channel. The build 25145 brings a couple... - [Microsoft Lists Calendar View Gets Color Coding with Conditional Formatting Rules](https://petri.com/microsoft-lists-calendar-view-color-coding-conditional-formatting-rules/): Microsoft Lists calendar view is getting better with conditional formatting support, which now makes it easier to customize the calendar... - [Microsoft Unveils New Edge Secured-Core IoT Devices to Block Firmware Attacks](https://petri.com/microsoft-unveils-edge-secured-core-iot-devices/): Microsoft has announced that it’s expanding the Secured-core initiative to enhance the security of Internet of Things (IoT) devices. The... - [GitHub Copilot AI Coding Assistant Launches with a $10/Month Subscription Fee](https://petri.com/github-copilot-ai-coding-assistant-subscription-fee/): GitHub has announced that its Copilot AI coding assistance tool is now generally available for all developers. GitHub Copilot launched... - [How to Create Files and Folders with PowerShell](https://petri.com/powershell-how-to-create-files-folders/): PowerShell can intelligently create multiple files and folders in bulk. In this guide, we'll show you how to create your own files and folders using the New-Item PowerShell cmdlet. - [IT Admins Get New Features for Managing Microsoft 365 App Updates](https://petri.com/it-admins-features-managing-microsoft-365-updates/): Microsoft announced yesterday that it has started rolling out several new capabilities for Servicing profiles. These are one of the... - [[Updated] Microsoft is Investigating Outage Affecting Teams and Exchange Online](https://petri.com/microsoft-investigating-teams-exchange-online-outage/): If you’re having issues with Microsoft 365 services right now, you’re not alone. The Redmond giant has acknowledged that its... - [Microsoft's Out-Of-Band Patch Fixes Microsoft 365 and Azure AD Sign-In Issues on ARM Devices](https://petri.com/microsofts-fixes-microsoft-365-azure-ad-sign-in-arm-devices/): Microsoft has released out-of-band patches for Windows 11 and various versions of Windows 10. The latest updates address the sign-in... - [QNAP Warns NAS Users About New DeadBolt Ransomware Campaign](https://petri.com/qnap-warns-nas-users-deadbolt-ransomware-campaign/): QNAP has published an advisory about a new stream of DeadBolt ransomware attacks targetting its network-attached storage (NAS) devices worldwide.... - [Microsoft is Investigating Sign-In Issues Affecting Microsoft 365 and Azure AD on ARM Devices](https://petri.com/microsoft-sign-in-issues-microsoft-365-azure-ad-arm-devices/): Microsoft has confirmed a new issue that causes Microsoft 365 and Azure Active Directory (AAD) sign-in issues on ARM-based Windows... - [How to Fix the "An Active Directory Domain Controller for the Domain Could Not Be Contacted" Error](https://petri.com/an-active-directory-domain-controller-could-not-be-contacted/): When trying to join a computer to an Active Directory domain, you may sometimes encounter the “an Active Directory Domain... - [AWS Mainframe Modernization is Now Generally Available](https://petri.com/aws-mainframe-modernization-general-availability/): AWS Mainframe Modernization is now generally available, and this new service enables you to migrate and modernize your on-premises mainframe workloads to a managed runtime environment on the Amazon Web Services cloud. - [Microsoft Teams Now Lets Users Send Notes and Files to Themselves](https://petri.com/microsoft-teams-chat-with-self-feature/): Microsoft Teams is getting a new update that enables users to create a special chat with themselves. The chat with... - [Microsoft to Fix Windows Bug Breaking Wi-Fi hotspots After Installing Latest Patch Tuesday Update](https://petri.com/microsoft-fix-windows-bug-wi-fi-hotspot/): Microsoft has acknowledged a new known issue causing the Wi-Fi hotspot feature to not work as expected on Windows devices.... - [Microsoft and Apple Team Up to Boost Exchange Online Security on iOS & macOS](https://petri.com/microsoft-apple-team-up-boost-exchange-online-security-ios-macos/): Microsoft has teamed up with Apple to improve the security of Exchange Online accounts on iOS and macOS devices. In... - [How to Combine Branches with Git Merge](https://petri.com/git-merge-combine-branches/): If you’re using Git for source code management, you may need to merge different development branches for a project into... - [Microsoft Confirms Windows Server Backup Issues in This Month's Patch Tuesday Updates](https://petri.com/windows-server-backup-issues-patch-tuesday-updates/): Earlier this week, Microsoft released the June 2022 Patch Tuesday updates for all supported versions of Windows. These patches brought... - [Microsoft Defender for Individuals is Now Available on Desktop and Mobile](https://petri.com/microsoft-defender-for-individuals-available-desktop-mobile/): Microsoft has launched a new Microsoft Defender for individuals app today. The new security offering for consumers is now available... - [Microsoft Reimagines the Sales Experience with Viva Sales](https://petri.com/microsoft-reimagines-the-sales-experience-with-viva-sales/): Microsoft announced this morning Viva Sales, a new Viva application designed to meet the specific needs of sellers. Viva Sales... - [AWS DataSync Now Integrates With Google Cloud Storage and Microsoft Azure](https://petri.com/aws-datasync-google-cloud-microsoft-azure-integration/): AWS DataSync now supports moving data between AWS, Google Cloud, and Microsoft Azure. This release expands the number of supported storage locations from 10 to 12, which is significant as it now includes two of the major cloud providers. - [Microsoft Releases First ARM64 Preview of Visual Studio for Windows 11](https://petri.com/microsoft-visual-studio-2022-native-arm64-windows-11/): Microsoft has finally launched the first native ARM64 version of Visual Studio for Windows 11 devices. The Visual Studio 2022... - [Microsoft Acquires Foreign Cyber Threat Analysis Company Miburo](https://petri.com/microsoft-acquires-miburo/): Microsoft announced yesterday that it has entered into a definitive agreement to acquire Miburo, a New York-based cyber threat analysis... - [Why You Should Restrict Access to Office 365 Using Microsoft Conditional Access Policies](https://petri.com/microsoft-365-conditional-access/): In this guide, we’ll explain how organizations can set up Conditional Access policies to restrict how their users can access Office 365 and other Microsoft services. - [Microsoft's June 2022 Patch Tuesday Updates Fix Several Remote Code Execution Vulnerabilities](https://petri.com/june-2022-patch-tuesday-updates/): Microsoft has released yesterday the June 2022 Patch Tuesday updates for Windows 11 and Windows 10, which include 60 security... - [Cloud Conversations – Elaiza Benitez on Power Platform and the Microsoft MVP Program](https://petri.com/cloud-conversations-episode-53-elaiza-benitez/): Elaiza Benitez is an independent Power Platform consultant and a Microsoft MVP in Business Applications Solutions. In this week’s Cloud Conversations episode, she joins Azure and Peter to talk about her career in Power Platform, the Microsoft MVP program, and much more. - [New Report Shows 47% of Enterprise Windows 10 PCs Could Be Impacted by Internet Explorer's Retirement on June 15](https://petri.com/report-shows-47-enterprise-windows-10-pcs-impacted-internet-explorer-retirement/): Microsoft is finally ending support for its Internet Explorer 11 (IE11) web browser on June 15. This change will impact... - [Microsoft Teams Improves Meetings and Calls with New AI-Powered Echo Cancellation Capabilities](https://petri.com/microsoft-teams-improves-meetings-calls-echo-cancellation-capabilities/): Microsoft has announced a new set of AI-powered capabilities to improve the calling and meeting experience in Microsoft Teams. Echo... - [GitHub to Discontinue Atom Text Editor on December 15](https://petri.com/github-discontinue-atom-text-editor-december-15/): Microsoft-owned GitHub is getting ready to retire Atom, an open-source text editor that debuted in 2011. The company detailed in... - [Microsoft Entra Workload Identities Service Brings New Features for Securing Apps and Services](https://petri.com/microsoft-entra-workload-identities-features-securing-apps-services/): Microsoft has released some important updates for its Microsoft Entra workload identities service. The new capabilities are designed to protect... - [Using GPUpdate to Manage Group Policy](https://petri.com/gpupdate-force/): With GPUpdate, administrators can update Group Policy settings from a central location and set configuration settings for computers in an... - [Outlook for iOS and Android To Get An Algorithmic Newsfeed Experience This Month](https://petri.com/outlook-for-ios-android-newsfeed-experience/): Microsoft is set to introduce a new algorithmic newsfeed on the Search page of its Outlook mobile apps. The new... - [Researchers Discover New Symbiote Linux Malware Targeting Financial Institutions](https://petri.com/symbiote-linux-malware-targets-financial-institutions/): Security researchers have discovered a new Linux malware dubbed Symbiote that uses sophisticated techniques to hide its presence on compromised... - [Microsoft Defender for Endpoint Gets New Feature to Block Compromised Unmanaged Devices](https://petri.com/microsoft-defender-for-endpoint-block-compromised-unmanaged-devices/): Microsoft Defender for Endpoint has released a new Contain feature that lets organizations isolate compromised unmanaged Windows devices from the... - [Reduce Data Theft with Microsoft Purview Insider Risk Management](https://petri.com/microsoft-purview-insider-risk-management/): Insider risk management is a critical component of any security strategy, and this article will explore how Microsoft Purview Insider Risk Management can help organizations to reduce the chances of data theft or leakage. - [Qbot Malware Operators Exploit Windows MSDT Zero-Day Flaw to Infect PCs](https://petri.com/qbot-malware-exploit-windows-msdt-zero-day-flaw-infect-pcs/): Cybersecurity researchers have found that attackers are exploiting the recently discovered Windows zero-day flaw dubbed “Follina” to infect victims’ computers... - [IT Admins Can Now Create Nested Dynamic Azure AD Groups](https://petri.com/it-admins-create-nested-dynamic-azure-ad-groups/): Microsoft has released a new update that allows IT teams to create dynamic Azure Active Directory (recently renamed Microsoft Entra... - [Microsoft Endpoint Manager Gets App & Driver Compatibility Reports for Windows Updates](https://petri.com/microsoft-endpoint-manager-app-driver-compatibility-reports-windows-updates/): Microsoft has rolled out new Windows compatibility reports for Microsoft Endpoint Manager (MEM) in public preview. The new capabilities should... - [Microsoft Expands Windows Customer Connection Program to IT Admins](https://petri.com/microsoft-expands-windows-customer-connection-program-it-admins/): Microsoft has announced that it’s expanding its Windows Customer Connection Program (WCCP) to IT admins. This WCCP program is designed... - [Microsoft Teams for Mac and iOS Now Support Background Noise Suppression](https://petri.com/microsoft-teams-mac-ios-support-background-noise-suppression/): Microsoft Teams on Mac and iOS has finally added support for real-time noise suppression. The AI-powered tool first debuted on... - [How to Delete a Protected OU in Active Directory](https://petri.com/delete-protected-ou-active-directory/): As your organization's logical layout changes, you may need to delete OUs in Active Directory. In this post, we'll show you two different ways to delete protected OUs and what minor roadblocks you may come across while doing so. - [Cloud Conversations – Geetha Sivasailam on Power Platform, User Groups & In-Person conferences](https://petri.com/cloud-conversations-episode-52-geetha-sivasailam/): Geetha Sivasailam is a Solutions Architect at Artis Consulting and a Microsoft Business Applications MVP. In this week's episode, she joins Azure and Peter to talk about her career journey in tech to the Power Platform. We also talk about User Groups, in-person conferences, and Work / Life balance. - [Windows 11 version 22H2 is Now Available for Commercial Pre-Release Validation](https://petri.com/windows-11-version-22h2-now-available-commercial-pre-release-validation/): Microsoft has announced that Windows 11 version 22H2 is now available for commercial pre-release validation by business customers. The upcoming... - [Microsoft 365 Admin Center Adds New Dashboard for Managing Windows & Office Updates](https://petri.com/microsoft-365-admin-center-dashboard-managing-windows-office-updates/): Microsoft has launched a new software updates dashboard in the Microsoft 365 admin center. The new software updates page enables... - [Learn How Organizations Are Using Semperis Purple Knight to Secure Active Directory](https://petri.com/semperis-purple-knight-secure-active-directory/): Petri interviewed several organizations in North America to find out how they are using Purple Knight to secure Active Directory (AD). What follows is a summary of the findings and a link to the full interviews on YouTube for each organization. - [Apple Unveils New MacBook Air and Refreshed MacBook Pro with M2 Chip](https://petri.com/apple-unveils-new-macbook-air-and-refreshed-macbook-pro-with-m2-chip/): Apple has officially unveiled its first Macs powered by the next generation of Apple silicon at the Worldwide Developers Conference... - [Microsoft Claims Teams is Now Up To 60% Faster on Windows](https://petri.com/microsoft-teams-up-to-60-faster-on-windows/): Microsoft claims that it has optimized its Teams desktop app to boost performance during resource-intensive scenarios such as messaging, video... - [Atlassian Releases Patches for Zero-Day Confluence RCE Flaw](https://petri.com/atlassian-patches-zero-day-confluence-rce-flaw/): Atlassian has released new security updates to fix a critical flaw affecting its Confluence Server and Data Center products. The... - [How to Create an AWS Lambda Function](https://petri.com/aws-lambda-create-function/): In this guide, I’ll explain how AWS Lambda lets you run your code in a cloud-based ‘serverless’ infrastructure, and how... - [Atlassian Warns of Active Exploitation of Unpatched Critical Confluence Flaw](https://petri.com/atlassian-active-exploitation-unpatched-critical-confluence-flaw/): Atlassian has published a security advisory about a new critical flaw impacting its Confluence Server and Data Center products. The... - [Microsoft's Surface Laptop Go 2 - Good Buy or Disappointing Upgrade?](https://petri.com/microsofts-surface-laptop-go-2-good-buy-or-disappointing-upgrade/): This week in IT, I take a look at the new Microsoft Surface Laptop Go 2, who it’s for, and... - [Microsoft Postpones the Release of Next Version of Exchange Server Until 2025](https://petri.com/microsoft-postpones-next-version-exchange-server-until-2025/): Microsoft has delayed its plans to release the next version of on-premises Exchange Server in the second half of 2021.... - [How to Install Azure Stack HCI Single-Node Clusters](https://petri.com/install-azure-stack-hci/): If your company is interested in modernizing its infrastructure with Azure hybrid computing capabilities, you can now do so by deploying Azure Stack HCI on a single-node cluster. We'll explain in this guide how to install Azure Stack HCI single-node clusters with PowerShell. - [Security Researchers Discover New Windows Search Protocol Vulnerability](https://petri.com/security-researchers-new-windows-search-protocol-vulnerability/): Security researchers have discovered a new zero-day vulnerability that allows hackers to launch a Windows search window via malicious Word... - [Microsoft Releases Fix for Azure Active Directory Logging Issues](https://petri.com/microsoft-releases-fix-azure-active-directory-logging-issues/): Microsoft has released a hotfix today to address data logging issues in Azure Active Directory and several other cloud services.... - [Microsoft's New Autopatch Service Lets IT Admins Patch Windows PCs Automatically](https://petri.com/microsofts-new-autopatch-service-patch-windows-pcs-automatically/): Back in April, Microsoft unveiled a new feature to help IT Pros automate the patch management process in enterprise environments.... - [Everything You Need to Know About Windows – May 2022](https://petri.com/windows-news-may-2022/): This month, Microsoft announces an update to the Surface Laptop Go. Plus, there’s a new Arm-based development kit for Windows,... - [How to Reset a Windows 10 Password](https://petri.com/reset-windows-10-password/): Windows 10 offers many ways for you to reset a forgotten password. However, the steps you’re required to follow to... - [Surface Laptop Go 2 is Microsoft's New Affordable Windows 11 PC](https://petri.com/surface-laptop-go-2-microsofts-affordable-windows-11-pc/): Microsoft has officially announced its new Surface Laptop Go 2 following a series of leaks. The new 12. 4-inch laptop... - [Everything You Need to Know About Microsoft Power Platform – May 2022](https://petri.com/power-platform-may-2022-updates/): The Microsoft Power Platform updates released in May 2022 include a new Express design feature and Power Automate pane for Power Apps, while PowerBI got a new ExecuteQueries REST API. - [Microsoft Announces Entra, A New Identity and Access Management Suite](https://petri.com/microsoft-entra-identity-and-access-management-suite/): Microsoft has launched a new product family of identity and access management solutions called Microsoft Entra. This new suite of... - [Microsoft Acknowledges Office Zero-Day Flaw Affecting Windows Diagnostic Tool](https://petri.com/microsoft-acknowledges-office-zero-day-flaw-windows-diagnostic-tool/): Microsoft has acknowledged a new zero-day remote code execution flaw in its Microsoft Support Diagnostic Tool (MSDT). The Microsoft Security... - [What is a DevOps Pipeline?](https://petri.com/what-is-a-devops-pipeline/): In this article, we will be talking more about DevOps pipelines, their phases, components, and what you need to understand before building a DevOps pipeline of your own, along with the build process. - [Microsoft Now Lets IT Admins Review & Remove Inactive Azure AD Users](https://petri.com/microsoft-it-admins-remove-inactive-azure-ad-users/): Microsoft has unveiled a couple of security improvements to Azure Active Directory (recently renamed Microsoft Entra ID). The company has... - [Broadcom to Acquire Virtualization Company VMware for $61 Billion](https://petri.com/broadcom-acquire-virtualization-company-vmware-61-billion/): Chipmaker Broadcom has announced that it’s buying VMware in a cash-and-stock deal valued at $61 billion. The transaction is expected... - [The Top 10 Ipconfig Commands You Should Learn](https://petri.com/ipconfig-commands/): In this article, I'm going to show you how to use the command-line tool ipconfig. If you're an IT admin, ipconfig is a very useful console application program that can help you troubleshoot network connectivity problems in Windows. - [Cloud Conversations – Nate Chamberlain on Microsoft Teams MS-700 exam guide](https://petri.com/cloud-conversations-episode-51-nate-chamberlain/): Nate Chamberlain is Microsoft 365 adoption, content, and training expert. He returns to Cloud Conversations this week to chat with Azure and Peter about the release of the second edition of his Microsoft Teams MS-700 exam guide book which he co-wrote with Peter - [Latest Windows Server 2022 Update Brings Support for WSL 2 Linux Distributions](https://petri.com/windows-server-2022-update-support-wsl-2-linux-distributions/): Microsoft has announced the release of Windows Server 2022 build 20348. 740. Earlier this week, Microsoft’s Program Manager Craig Loew... - [Microsoft Confirms RTM Build for First Windows 11 Feature Update](https://petri.com/microsoft-confirms-rtm-build-windows-11-version-22h2/): Microsoft has quietly confirmed that the recent Beta channel build 22621 is the final version of Windows 11 22H2. The... - [Build 2022: Microsoft's Intelligent Data Platform Combines Data and Analytics](https://petri.com/microsoft-intelligent-data-platform-combines-data-analytics/): Microsoft unveiled a slew of updates for its Azure services at the annual Build developer conference. The Redmond giant has... - [How to Set Up an AWS EFS File System](https://petri.com/set-up-aws-efs/): Amazon EFS is an easy-to-use and serverless storage solution allowing companies to optimize file storage in Amazon Web Services (AWS). In this article, we'll show you how to set up and test access to Amazon EFS. - [Build 2022: GitHub Copilot will be Free for Open Source Contributors & Students This Summer](https://petri.com/github-copilot-free-open-source-contributors-students-summer/): GitHub Copilot, an AI-powered coding assistant that launched in preview last year, will become generally available for all developers this... - [Build 2022: Microsoft Introduces New Dev Box Cloud PC Service for Developers](https://petri.com/microsoft-dev-box-cloud-pc-service-developers/): Microsoft has announced a new custom virtualization solution called “Microsoft Dev Box” at its annual Build developer conference. The new... - [Build 2022: Microsoft Boosts Data Analytics and Cybersecurity in New Training & Certifications](https://petri.com/microsoft-boosts-data-analytics-cybersecurity-training-certifications/): Microsoft has unveiled enhancements coming to the Learn platform during its Build 2022 developer conference. The Redmond giant is expanding... - [Build 2022: Microsoft Power Pages Now Lets Businesses Create Secure & Modern Websites](https://petri.com/microsoft-power-pages-now-lets-businesses-create-secure-modern-websites/): Microsoft has announced that it is rebranding its Power Apps portals as Power Pages. The company is also unveiled some... - [Build 2022: Windows 11 to Add Support for Third-Party Widgets Later This Year](https://petri.com/windows-11-add-support-third-party-widgets/): Microsoft kicks off its Build 2022 developer conference today, and Microsoft’s Chief Product Officer Panos Panay announced several new features... - [Build 2022: Microsoft Teams Gets Live Share Feature and New Collaborative Apps](https://petri.com/microsoft-teams-live-share-feature-collaborative-apps/): At its Build 2022 developer conference today, Microsoft announced new tools for developers to create collaboration solutions for Teams and... - [Amazon EC2 Now Supports NitroTPM and UEFI Secure Boot](https://petri.com/amazon-ec2-nitrotpm-uefi-secure-boot-support/): Amazon Elastic Compute Cloud (EC2) instances now support NitroTPM, a virtual TPM 2.0-compliant TPM module based on AWS Nitro System, as well as UEFI Secure Boot in all AWS Regions outside of China. - [Microsoft Defender for Office 365 to Get Preset Security Policy Improvements In June](https://petri.com/microsoft-defender-for-office-365-preset-security-policy-improvements/): Microsoft has announced some improvements coming to the preset security policies in Defender for Office 365 solution this summer. These... - [How to Use PowerShell For Loop, While Loop, and Other Loops](https://petri.com/how-to-use-powershell-for-while-loops/): In this article, you will learn how to use the PowerShell For loop, While loop, and other loops. I explain how they are constructed, and you can define conditions to enter or exit a loop. - [Microsoft Detects 254% Spike in XorDDoS Attacks on Linux Servers](https://petri.com/microsoft-detects-spike-xorddos-attacks-linux-servers/): Microsoft has published an advisory about a distributed denial-of-service (DDoS) malware called XorDdos that is targeting Linux endpoints and servers.... - [CISA Warns Federal Agencies to Mitigate Critical VMware Vulnerabilities by May 23](https://petri.com/cisa-warns-federal-agencies-mitigate-vmware-vulnerabilities/): The Cybersecurity and Infrastructure Security Agency (CISA) has warned US government agencies to immediately patch critical vulnerabilities in VMware products.... - [Microsoft Releases Out-Of-Band Patches to Fix Windows AD Authentication Issues](https://petri.com/microsoft-out-of-band-patches-windows-ad-authentication-issues/): Microsoft released new out-of-band (OOB) updates yesterday to address Active Directory (AD) authentication problems caused by the May 2022 Patch... - [Microsoft Revises Restrictive Cloud Licensing Policies to Avoid EU Antitrust Probe](https://petri.com/microsoft-revises-restrictive-cloud-licensing-policies/): Microsoft has announced new initiatives to decrease the licensing costs and restrictions for small cloud vendors. The Redmond giant plans... - [Microsoft Says Windows 11 is Now Generally Available for All Compatible Devices](https://petri.com/microsoft-windows-11-generally-available-compatible-devices/): Microsoft has quietly updated the Windows Health Dashboard page to mention that Windows 11 is now ready for broad deployment... - [Cloud Conversations – Ståle Hansen on Digital Wellbeing and Viva Explorers](https://petri.com/cloud-conversations-stale-hansen-digital-wellbeing-viva-explorers/): Ståle Hansen is CEO & Principal Cloud Architect at Cloudway, a Public Speaker, and a Microsoft MVP. In this episode, Ståle joins Kat and Peter to discuss digital wellbeing, Microsoft Viva & the Viva Explorers, his career journey & the changing face of technology, and Office 365 for IT Pros. - [Microsoft to Integrate Citrix HDX Technology into Windows 365 Cloud PCs](https://petri.com/microsoft-integrate-citrix-hdx-windows-365-cloud-pcs/): Microsoft has announced a new partnership with Citrix, a Florida-based virtualization and cloud computing company. The Redmond giant has teamed... - [Microsoft's New One Outlook Client Now Available for Testers](https://petri.com/microsofts-one-outlook-client-available-testers/): Following a series of leaks, Microsoft has finally started rolling out its new One Outlook app (Project Monarch) to Office... - [Microsoft Teams is Now Available in the Microsoft Store](https://petri.com/microsoft-teams-available-microsoft-store-windows-pcs/): Microsoft continues to bring its popular apps to the Windows 10 and Windows 11 Microsoft Store. The Redmond giant has... - [CISA Warns Windows Admins Against Applying May Patch Tuesday Updates on Domain Controllers](https://petri.com/cisa-warns-may-patch-tuesday-updates-domain-controllers/): The US Cybersecurity and Infrastructure Security Agency (CISA) has temporarily removed the security flaw CVE-2022-26925 from its Known Exploited Vulnerability... - [How to Access Active Directory](https://petri.com/how-to-access-active-directory/): In this guide, you'll learn how to open Active Directory Users and Computers (ADUC), the Active Directory Administrative Center (ADAC), and there's also Active Directory Sites and Services for more complex configuration options. - [IT Admins Report Issues With Microsoft Store Version of Quick Assist App](https://petri.com/it-admins-report-issues-microsoft-store-quick-assist/): Last month, Microsoft announced its plans to move the Quick Assist app to the Microsoft Store. The Redmond giant is... - [Microsoft Teams Adds Viva Goals Module Powered By Ally.io OKR](https://petri.com/microsoft-teams-adds-viva-goals-module/): Microsoft announced this morning Viva Goals, a new Teams module that helps employees keep track of their progress on key... - [Microsoft Edge Canary Adds Free Built-In VPN for Select Insiders](https://petri.com/microsoft-edge-free-built-in-vpn-canary-insiders/): Microsoft has announced that it’s adding a new built-in virtual private network (VPN) service to its Edge browser. This VPN... - [Microsoft's Azure AD Conditional Access Service Can Now Require Reauthentication](https://petri.com/microsofts-azure-ad-conditional-access-service-can-now-require-reauthentication/): Microsoft has added re-authentication support in Azure AD Conditional Access. The company says that it’s one of the top-requested features... - [Microsoft Confirms May 2022 Patch Tuesday Updates Cause AD Authentication Issues](https://petri.com/microsoft-may-2022-patch-tuesday-updates-ad-authentication-issues/): Microsoft has acknowledged a new issue that causes authentication failures on the server or client machines for some Windows services.... - [What is Datadog – The Ultimate Guide](https://petri.com/what-is-datadog/): Datadog is a SaaS-based monitoring platform for cloud applications. In this guide, we’re going to detail how IT pros and... - [Cloud Conversations – Jessica White on Allyship, Mentoring, & Organizing a Conference](https://petri.com/cloud-conversations-episode-49-jessica-white/): Jessica White is a Technical Architect, Speaker, and a Microsoft MVP. In this episode, Jessica joins Kat and Peter to discuss the DDD East Midlands conference, allyship and mentoring, Women in tech, living with an invisible disability, Neuroscience, and social learning for children with autism - [Microsoft Rolls Out Azure AD Verifiable Credentials Service to More Customers](https://petri.com/microsoft-azure-ad-verifiable-credentials-service/): Microsoft launched a new Azure Active Directory Verifiable Credentials (VC) solution in public preview last year. The company has now... - [Microsoft to Ship Some Exchange Server Security Updates in .EXE Packages](https://petri.com/microsoft-exchange-server-security-updates-exe-packages/): Microsoft has announced some major changes to the delivery process for security updates (SUs) and hotfixes (HFs) for Exchange Server.... - [Microsoft Releases May 2022 Patch Tuesday Updates](https://petri.com/may-2022-patch-tuesday-updates/): Microsoft has just released the May 2022 Patch Tuesday updates, which bring the usual security fixes as well as some... - [Microsoft is Rebranding its Power Apps Portals to 'Power Pages'](https://petri.com/microsoft-rebranding-power-apps-portals-power-pages/): Back in March, Microsoft announced that its annual Build developer conference would be held on May 24-26. The company plans... - [Microsoft Advises IT Admins to Restrict Access to Leaked One Outlook Client](https://petri.com/microsoft-advises-it-admins-restrict-access-one-outlook/): Last week, Microsoft’s web-based One Outlook client (Project Monarch) leaked online, generating some interest among Outlook enthusiasts. The app is... - [Getting Started with Microsoft 365 Business Premium](https://petri.com/getting-started-microsoft-365-business-premium/): Microsoft 365 Business Premium, previously known as Microsoft 365 Business, is a subscription service packed with productivity and security management features.... - [F5 Confirms New Remote Code Execution Flaw in BIG-IP Systems](https://petri.com/f5-confirms-new-remote-code-execution-flaw-in-big-ip-systems/): Last week, the application service provider F5 disclosed a new security vulnerability that allows threat actors with network access to... - [Microsoft's New Security Experts Service Protects Businesses Against Ransomware Attacks](https://petri.com/microsoft-security-experts-service-ransomware-attacks/): Microsoft has introduced today Microsoft Security Experts, a new service category designed to address the unique security needs of customers... - [Active Directory vs. Azure AD (and Other Identity Providers)](https://petri.com/active-directory-vs-azure-ad/): This article will look at Active Directory (AD), Azure Active Directory (Azure AD), and explain how they differ and can... - [AWS Snow Family Now Supports Remote Monitoring and Operations](https://petri.com/aws-snow-family-now-supports-remote-monitoring-and-operations/): AWS Snowball customers can now manage their connected Snowball Edge devices remotely. IT Pros can now operate these devices from AWS... - [Microsoft's New One Outlook App Gets Closer to Official Launch](https://petri.com/microsofts-one-outlook-app-gets-closer-launch/): Microsoft has been working on its web-based One Outlook app for Windows and macOS for over a year now. This... - [Outlook on the Web to Get a New Bookings Experience Next Month](https://petri.com/outlook-on-the-web-get-bookings-experience/): Microsoft has announced a new Bookings experience that will be coming to Outlook on the web. The company is introducing... - [Microsoft, Google, and Apple to Expand Passwordless Login Across All Major Platforms](https://petri.com/microsoft-google-apple-passwordless-logins-across-platforms/): Microsoft, Apple, and Google have committed to expanding passwordless sign-in support across all major device platforms. The three biggest tech... - [GitHub to Require All Code Contributors to Enable 2FA by Late 2023](https://petri.com/github-require-contributors-enable-2fa/): Microsoft is planning to make some changes to the existing authentication policies on its GitHub platform. The company has announced... - [Microsoft Authenticator Now Lets Users Generate Strong Passwords](https://petri.com/microsoft-authenticator-generate-strong-passwords/): Microsoft has released a new update for its Authenticator app that allows users to generate strong and unique passwords. The... - [Cloud Conversations – Kevin McDonnell on Security & Compliance, Hybrid Work, and Viva](https://petri.com/cloud-conversations-kevin-mcdonnell-on-security-compliance-hybrid-work-and-viva/): Kevin McDonnell is a Microsoft 365 Solutions Architect at CPS and the co-host of the GreyHatBeardPrincess podcast. In this week's episode, Kevin joins Peter Rising to talk about hybrid work, security and compliance, Microsoft Viva, objectives and key results, and Microsoft Purview Compliance - [Microsoft's Update Compliance Service Will Soon Require Azure AD](https://petri.com/microsofts-update-compliance-service-require-azure-ad/): Microsoft has announced some important changes regarding its Update Compliance service. The company says that Update Compliance will require the... - [PSA: Microsoft Exchange Online to Drop Basic Authentication Support in October](https://petri.com/microsoft-exchange-online-drop-basic-authentication-support/): Microsoft is getting ready to drop support for Basic Authentication in its Exchange Online e-mail service. The company is reminding... - [IT Expert Answers: How to Check Your PowerShell Version](https://petri.com/how-to-check-your-powershell-version/): Whether you’re a PowerShell pro or just starting out, it’s useful to know how to check your PowerShell version. We’ll... - [TLStorm 2.0 Exploits Expose Millions of Aruba and Avaya Network Switches to RCE Attacks](https://petri.com/tlstorm-2-0-exploits-aruba-and-avaya-network-switches-rce-attacks/): Security researchers at Armis have discovered five critical vulnerabilities in multiple network devices sold by Aruba and Avaya. The security... - [Microsoft Announces Defender for Business Standalone Solution for Small Businesses](https://petri.com/microsoft-defender-for-business-standalone-small-businesses/): Microsoft has launched a new standalone version of its Defender for Business solution for commercial customers. The new cost-effective enterprise-grade... - [QNAP Confirms New Critical Flaws Affecting Some Network-Attached Storage Devices](https://petri.com/qnap-critical-flaws-network-attached-storage-devices/): Last week, QNAP published a security advisory to warn customers about new critical flaws in an open-source fileserver technology integrated... - [What's New with Power Platform - May 2022](https://petri.com/whats-new-with-power-platform-may-2022/): There are new features this month across the Power Platform including some brand-new Power Apps functions, a new version of... - [What’s New with Windows – April 2022](https://petri.com/whats-new-with-windows-april-2022/): This month sees Microsoft announce a whole load of new features for Windows 11, but it’s not clear when they... - [Microsoft Lists App Now Available to Download on Android](https://petri.com/microsoft-lists-available-download-android/): Microsoft unveiled its plans to launch the Lists app for Android at its Ignite conference back in November 2021. The... - [Cloud Conversations – Nikki Chapple on Teams Governance, Community & The Changing Face of Tech](https://petri.com/cloud-conversations-nikki-chapple-teams-governance-community/): Nikki Chapple is a Principal Cloud Architect at CloudWay, and she's also an Office Apps and Services MVP. In this week's episode, Nikki Chapple joins Kat and Azure to talk about what is Teams, how tech has changed over 30 years, speaking and networking events, and Music – Duran Duran and raving. - [What’s New in Microsoft Teams – April 2022](https://petri.com/whats-new-microsoft-teams-april-2022/): Microsoft has published a monthly roundup of the updates made to its Teams collaboration service during the month of April.... - [Microsoft Addresses Cross-Tenant Database Vulnerability in Azure PostgreSQL](https://petri.com/microsoft-cross-tenant-database-vulnerability-azure-postgresql/): Microsoft has released new patches to address critical security vulnerabilities affecting its Azure PostgreSQL product. Discovered by security researchers from... - [Azure Container Apps Add Built-In Authentication Support in Preview](https://petri.com/azure-container-apps-add-built-in-authentication-support/): Microsoft has released built-in authentication support for its Azure Container Apps, a new fully managed serverless container service. The feature... - [Microsoft to Move Office Apps to Monthly Updates for Enterprise Customers](https://petri.com/microsoft-365-apps-move-monthly-enterprise-channel/): Microsoft has announced in a message on the Microsoft 365 Admin Center that it will automatically begin updating all devices... - [How to Customize the Windows 11 Start Menu and Taskbar](https://petri.com/how-to-customize-the-windows-11-start-menu-and-taskbar/): While there are some limitations, there’s a lot that you can do to make the Windows 11 Start menu and... - [Newly Discovered Emotet Campaign Spreads Malware Through PowerShell Commands](https://petri.com/emotet-campaigns-malware-powershell-commands/): Cybersecurity researchers have discovered that the threat actors are testing new attack techniques to distribute malware. Indeed, the latest version... - [Microsoft 365 Web Apps Now Let Users Switch Between Multiple Accounts](https://petri.com/microsoft-365-web-apps-switch-multiple-accounts/): Microsoft has released a new feature that allows users to switch between multiple personal and work accounts in Microsoft 365... - [Microsoft Partners With Red Button to Enhance Azure DDoS Protection](https://petri.com/microsoft-partners-red-button-ddos-protection/): Microsoft has announced a new partnership with Red Button, an Israel-based Distributed Denial-of-Service (DDoS) attack simulation testing solutions provider. The... - [Atlassian Releases Patches for Critical Jira Authentication Bypass Vulnerability](https://petri.com/atlassian-fixes-critical-jira-authentication-bypass-vulnerability/): Atlassian has released new security patches for its Jira and Jira Service Management solutions. The latest set of updates aims... - [Apple Finally Discontinues Support for macOS Server App](https://petri.com/apple-discontinues-macos-server-app/): Apple is phasing out its macOS Server application that was first released back in 2011. Indeed, the company has announced... - [How to Use Git Bash on Windows](https://petri.com/how-to-use-git-bash-on-windows/): Git Bash is a terminal emulator shell and limited Linux-like environment for Windows that lets you run Git commands. Learn... - [Microsoft Announces Free 1:1 Consultation Service for Small Businesses](https://petri.com/microsoft-announces-free-11-consultation-service-for-small-businesses/): Microsoft has announced a free one-to-one consultation service for small businesses, including retailers, nonprofits, education institutions, and more. This new... - [This Week in IT - Is Microsoft Killing Off Patch Tuesday?](https://petri.com/this-week-in-it-is-microsoft-killing-off-patch-tuesday/): This week in IT, Windows Autopatch could kill off Patch Tuesday for some enterprises, but not all might be what... - [Hive Ransomware Group Attacks Vulnerable Microsoft Exchange Servers](https://petri.com/hive-ransomware-group-attacks-vulnerable-microsoft-exchange-servers/): Security researchers have revealed a new series of ransomware attacks carried out by the Hive ransomware group to target Microsoft... - [Microsoft Exchange Server Cumulative Updates will Shift to a Biannual Release Cycle](https://petri.com/microsoft-exchange-server-cumulative-updates-biannual-release-cycle/): Microsoft has announced that the Exchange Server cumulative updates (CUs) are switching to a biannual release schedule. The company currently... - [AWS Confirms Log4j Hotpatch Fix Leads to Privilege Escalation](https://petri.com/aws-log4j-hotpatch-fix-privilege-escalation/): Back in December, Amazon released emergency fixes to address the Log4j vulnerability in JVMs across multiple environments, but it looks... - [How to Download a File using PowerShell](https://petri.com/how-to-download-a-file-using-powershell/): PowerShell can download files from the Internet and your local network to your computer. Learn how to use PowerShell's Invoke-WebRequest and Start-BitsTransfer cmdlets to download files here. - [Use Azure ExpressRoute Private Peering & Azure Virtual WAN to Connect Privately to Microsoft 365](https://petri.com/use-azure-expressroute-private-peering-virtual-wan-connect-microsoft-365/): Many Office 365 customers want to use Azure ExpressRoute to connect their on-premises network to the Microsoft cloud with a private connection. In this post, we're going to explain how to use Azure ExpressRoute with Microsoft Private Peering all while keeping costs down and enabling redundancy. - [Microsoft to Disable SMB1 File-Sharing Protocol By Default on Windows 11](https://petri.com/microsoft-disable-smb1-protocol-by-default-windows-11/): Microsoft is finally getting ready to deprecate the SMB1 (Server Message Block version 1) file-sharing protocol on Windows PCs. Indeed,... - [Microsoft Renames Data Governance and Compliance Products to "Microsoft Purview"](https://petri.com/microsoft-data-governance-compliance-products-microsoft-purview/): Microsoft announced a significant revamp of its Azure Purview data-governance platform. The Redmond giant is rebranding the service as “Microsoft... - [Microsoft Simplifies IT Monitoring with New Azure Managed Grafana Service](https://petri.com/microsoft-launches-new-azure-managed-grafana-service/): Last year, Microsoft unveiled its plans to create a fully-managed version of Grafana that runs natively on its Azure cloud... - [Microsoft Introduces SQL Server Information Protection Sensitivity Labels](https://petri.com/microsoft-sql-server-information-protection-sensitivity-labels/): Microsoft has announced a new data protection feature for its SQL Server tool. The new capability enables organizations to classify... - [Automate Team Creation in Microsoft Teams](https://petri.com/automate-team-creation-in-microsoft-teams/): Microsoft Teams can become a nightmare for IT administrators if team creation is uncontrolled. That's why it's a good idea to put a process in place to enable user productivity and ensure that administrators can easily manage new Teams. - [Windows 10 November 2021 Update is Now Ready for Broad Deployment](https://petri.com/windows-10-november-2021-update-is-now-ready-for-broad-deployment/): Microsoft has announced that the Windows 10 November 2021 Update (21H2), which began rolling out on November 16 last year,... - [Microsoft Rolls Out Dynamic Administrative Units Support for Azure AD](https://petri.com/microsoft-dynamic-administrative-units-azure-ad/): Microsoft has announced the public preview of dynamic administrative units with Azure Active Directory (Azure AD). The new feature lets... - [Microsoft to Make Changes to Cloud Licensing Restrictions after Customer Complaints](https://petri.com/microsoft-changes-cloud-licensing-restrictions-customer-complaints/): Microsoft is planning to make some changes to the way it licenses its products to customers who wish to use... - [This Week in IT - Windows 10 Gets Search Highlights and Is Microsoft in Hot Water Over Windows Cloud Pricing?](https://petri.com/this-week-in-it-windows-10-gets-search-highlights-and-is-microsoft-in-hot-water-over-windows-cloud-pricing/): This week in IT, April Patch Tuesday updates fix 119 vulnerabilities, Windows 10 Search Highlights hits general availability, Atlassian Jira/Confluence... - [Microsoft Issues New Guidance on Securing Domain Controllers](https://petri.com/microsoft-issues-guidance-securing-domain-controllers/): Microsoft has released updated guidance to help enterprise customers protect domain controllers (DCs) against cyber attacks. The company urges IT... - [How to Reset OneDrive Synchronization](https://petri.com/how-to-reset-onedrive-synchronization/): A OneDrive synchronization issue can cause a user to experience data loss. Learn how to reset OneDrive on your PC to get your content synchronized again. - [Best Practices for Installing Active Directory Domain Controllers in a Virtual Machine](https://petri.com/best-practices-for-installing-active-directory-domain-controllers-in-a-virtual-machine/): Installing Active Directory domain controllers in a virtual machine (VM) can be useful if you want to separate them from the physical network, giving you more flexibility and additional protection for your Active Directory infrastructure. - [Microsoft Defender for Endpoint Adds Support for Windows Server 2012 R2 and 2016](https://petri.com/microsoft-defender-for-endpoint-adds-support-windows-server-2012-r2-2016/): Microsoft Defender for Endpoint is finally getting support for some older versions of Windows Server. Indeed, the Redmond giant has... - [Microsoft Defender for Office 365 Gets Differentiated Protection for Priority Accounts](https://petri.com/microsoft-defender-for-office-365-gets-differentiated-protection-for-priority-accounts/): Microsoft Defender for Office 365 is getting a new update that lets enterprise admins prioritize threat protection for critical users.... - [How to Install System Center Configuration Manager 2022](https://petri.com/how-to-install-system-center-configuration-manager-2022/): In this post, I'll be showing you how to install Microsoft Endpoint Configuration Manager 2103, which comes with the latest version of System Center 2022 released in early April 2022. - [How to Install System Center Operations Manager 2022](https://petri.com/how-to-install-system-center-operations-manager-2022/): System Center Operations Manager 2022 is the latest version of Microsoft's monitoring solution for your enterprise. This guide will show you how to install your first 'Management Server', which is the server that handles all the communication and sending of data to SQL databases. - [Microsoft Lets Windows Server Admins Opt-In for Automatic .NET Updates](https://petri.com/microsoft-lets-windows-server-admins-opt-in-for-automatic-net-updates/): Microsoft has announced some important changes that should make it easier to manage . NET updates on Windows Server machines.... - [Microsoft Aims to Streamline Certificate Lifecycle Management with Endpoint Manager](https://petri.com/microsoft-aims-to-streamline-certificate-lifecycle-management-with-endpoint-manager/): Microsoft Endpoint Manager is getting a new cloud certificate lifecycle management solution for Public Key Infrastructure (PKI). The company says... - [Microsoft Endpoint Manager Will Let IT Automate and Manage Elevation to Admin Privileges](https://petri.com/microsoft-endpoint-manager-automate-manage-elevation-admin-privileges/): Microsoft has announced a new automation feature coming to Microsoft Endpoint Manager. The solution enables employees to temporarily have admin... - [Microsoft Plans to Enable Organizations to Manage and Protect Linux Desktops](https://petri.com/microsoft-enable-organizations-manage-protect-linux-desktops/): Microsoft has announced its plans to bring Linux support to its Microsoft Endpoint Manager solution. The new feature will enable... - [Microsoft Tunnel Enables VPN Connections for Unenrolled Mobile Devices](https://petri.com/microsoft-tunnel-vpn-connections-unenrolled-mobile-devices/): Microsoft has announced some important updates for Microsoft Endpoint Manager (MEM), the company’s on-premise and cloud-based security solution for enterprise... - [New Report Says Hackers Exploiting Spring4Shell Flaw to Spread Mirai Malware](https://petri.com/hackers-spring4shell-flaw-spread-mirai-malware/): A team of security researchers has discovered that attackers are now exploiting the critical Spring4Shell vulnerability to spread Mirai malware... - [Microsoft 365 Non-Profit Plans to Get a Price Hike in September](https://petri.com/microsoft-365-non-profit-plans-price-hike-september/): Microsoft has announced that it’s increasing the pricing for most of its non-profit Office 365 and Microsoft 365 subscription plans... - [This Week in IT - Microsoft Demos the Future of Windows 11 But ETA Missing in Action](https://petri.com/this-week-in-it-microsoft-demos-the-future-of-windows-11-but-eta-missing-in-action/): This week in IT, Microsoft’s Windows 11 event this week was filled with promises of what the future holds but... - [Microsoft Details Efforts to Fight Russian Cyber Attacks Targeting Ukraine](https://petri.com/microsoft-details-efforts-fight-russian-cyber-attacks-ukraine/): Microsoft has detailed its latest efforts to tackle cyber attacks targetting organizations in Ukraine. The Redmond giant revealed that it... - [Reviewing Your Backup Checklist](https://petri.com/reviewing-your-backup-checklist/): With World Backup Day just behind us, our backup checklist can help guide you through the process of verifying that your backups are doing what you expect them to do, and what they need to do to protect your sensitive data. - [VMware Releases Patches to Fix Critical Remote Code Execution Exploit in Workspace ONE Access](https://petri.com/vmware-patches-remote-code-execution-exploit-workspace-one-access/): VMware has released patches to address several “critical” security vulnerabilities impacting its products. The company published a security advisory that... - [Amazon Enhances VMware Support in AWS Backup](https://petri.com/amazon-enhances-vmware-support-in-aws-backup/): AWS Backup now allows IT admins to restore individual virtual disks that are attached to your VMware virtual machines, and AWS Backup is also now capable of protecting VMware’s Software-Defined Data Centers (SDDC) on VMware Cloud on AWS Outposts.  - [What is Ansible – The Ultimate Guide](https://petri.com/what-is-ansible/): Ansible is the most widely used DevOps tool for managing changes across your cloud or data center infrastructure. In this article, you... - [A Complete Guide to Robocopy](https://petri.com/robocopy-complete-guide/): Robocopy is a powerful command-line tool for Windows that allows users to synchronize files and folders from one location to another. Learn more about everything you can do with Robocopy here. - [Cloud Conversations – Zoe Wilson on Viva, Career & Community Journeys](https://petri.com/cloud-conversations-zoe-wilson-viva-career-community-journeys/): Zoe Wilson is a Microsoft MVP and she's also Director of Innovation and Customer Success at Agilisys. In this week's Cloud Conversations episode, Zoe joins Kat and Azure to talk about enabling Microsoft Viva, Mentoring, Women in Tech, and being an individual contributor vs leader of a team. - [Microsoft Teams' Presenter Mode Now Lets Users Move and Resize Video Feed](https://petri.com/microsoft-teams-presenter-mode-move-resize-video-feed/): Microsoft has started rolling out a new update for its Teams collaboration service that should help users to make their... - [Microsoft Publishes Advisory About New Spring4Shell Cyberattacks](https://petri.com/microsoft-publishes-advisory-spring4shell-cyberattacks/): Microsoft has published details about a critical security vulnerability dubbed “Spring4Shell” in the Spring Framework for Java. The Redmond giant... - [Microsoft Announces Remote Help, A New Premium Endpoint Management Solution for Windows](https://petri.com/microsoft-remote-help-endpoint-management-windows/): Microsoft is holding its “Windows Powers the Future of Hybrid Work” digital event this morning, where Chief Product Officer Panos... - [Windows 11 Gets Revamped File Explorer and New AI-Powered Meeting Features](https://petri.com/windows-11-revamped-file-explorer-meeting-features/): Microsoft is planning to roll out a couple of new experiences to Windows 11 users. Indeed, the biggest news is... - [Microsoft Adds Ampere ARM CPU Support to Azure Virtual Machines](https://petri.com/microsoft-adds-ampere-arm-cpu-support-to-azure-virtual-machines/): Microsoft has released a preview version of Arm support on Azure virtual machines (VMs). The company claims that its new... - [System Center 2022 is Now Available with New Datacenter Management Capabilities](https://petri.com/system-center-2022-is-now-available-with-new-datacenter-management-capabilities/): Microsoft has announced the general availability of System Center 2022, its datacenter management suite for enterprise customers. The first new... - [How to Write and Run a PowerShell Script File on Windows 11](https://petri.com/how-to-write-and-run-a-powershell-script-file-on-windows-11/): PowerShell scripts are a great way to automate repetitive tasks. In this guide, we're going to detail how you can write and run a PowerShell script on Windows 11 using PowerShell, the PowerShell ISE, or Visual Studio Code. - [Cloud NAS Shootout: Amazon EFS/FSx versus Azure Files](https://petri.com/cloud-nas-shootout-amazon-efs-fsx-versus-azure-files/): Organizations looking to move some or all of their file systems to the cloud can opt for service providers such as Microsoft Azure Files, Amazon Elastic File System, or Amazon FSx. This article compares these options based on 4 key parameters – performance, price, features, and support. - [QNAP to Fix Critical OpenSSL Bug Impacting NAS Devices](https://petri.com/qnap-critical-openssl-bug-nas-devices/): Taiwan-based QNAP Systems has confirmed a new OpenSSL bug that impacts most of its network-attached storage (NAS) devices. According to... - [VMware Releases Emergency Fix for "Spring4Shell" Vulnerability in Spring Framework](https://petri.com/vmware-fix-spring4shell-vulnerability-spring-framework/): VMware has released emergency patches to address the “Spring4Shell” remote code execution exploit in the Spring Framework. The company is... - [This Week in IT - Windows Update Gets the Greta Thunberg Seal of Approval](https://petri.com/this-week-in-it-windows-update-gets-the-greta-thunberg-seal-of-approval/): Windows Update gets new energy efficiency feature, Microsoft buys Minit for mining, and QNAP says its NAS devices are vulnerable... - [Report: New Phishing Campaign Targets Calendly Users to Steal Credentials](https://petri.com/new-phishing-campaign-calendly-steal-credentials/): The security analysts at INKY have recently discovered a new phishing campaign that targets Calendly, an automated meeting scheduling tool.... - [Getting Started with hMailServer](https://petri.com/getting-started-with-hmailserver/): hMailServer is a free email server for organizations, businesses, and individuals which is easy to install and simple to use.... - [Everything you need to know about Power Platform – March 2022](https://petri.com/everything-you-need-to-know-about-power-platform-march-2022/): Microsoft’s March 2022 offerings to the Power Platform community span changes to the model-driven app experience, an introduction “GPT-3”, and some previews of some new independently made app connectors - [Microsoft Acquires Business Process Mining Solutions Provider Minit](https://petri.com/microsoft-acquires-business-process-mining-minit/): Microsoft announced this morning that it has acquired Minit, an Amsterdam-based provider of process mining solutions, for an undisclosed amount.... - [Microsoft Releases Public Preview of Arc Enabled Azure Stack HCI](https://petri.com/microsoft-public-preview-arc-enabled-azure-stack-hci/): Microsoft has launched a public preview of Arc-enabled Azure Stack HCI. The Redmond giant says that the new integration enables... - [Globant Confirms Lapsus$ Hackers Had Unauthorized Access to Customers’ Source Code](https://petri.com/globant-lapsus-hackers-access-customers-source-code/): Earlier this week, the Lapsus$ hacking group claimed that it had stolen 70GB of data from Globant, a Luxembourg-based IT... - [Set Up and Manage Viva Topics in Microsoft Teams](https://petri.com/microsoft-teams-viva-topics/): Viva Topics help organizations manage the information and knowledge they have in Microsoft 365, including Teams and SharePoint. It takes a modern approach to knowledge management by organizing a company's knowledge into topic cards. In this guide, learn how to set up and manage Viva Topics. - [CISA Publishes Advisory About Cyber Attacks Targeting Internet-Connected UPS Devices](https://petri.com/cisa-cyber-attacks-internet-connected-ups-devices/): The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory about ongoing cyberattacks against internet-connected uninterruptible power supply (UPS)... - [Microsoft's Revamped Azure Front Door CDN Offers Two New Tiers](https://petri.com/microsofts-revamped-azure-front-door-cdn-offers-two-new-tiers/): Microsoft has announced a revamped version of Azure Front Door, its secure cloud content delivery network (CDN) service for protecting... - [What is Grafana: The Ultimate Guide](https://petri.com/what-is-grafana/): In today’s DevOps era, most organizations use hundreds of different services.  Monitoring all of these is crucial for keeping your... - [11 Ways to Take a Screenshot on Windows Devices](https://petri.com/screenshot-on-windows-devices/): Do you often look for the easiest way to take a screenshot on your PC? Here are ten easy-to-use and useful methods to take a screenshot on your Windows devices. - [Microsoft Windows Update for Business Gets New Gradual Rollouts Feature](https://petri.com/microsoft-windows-update-for-business-gets-new-gradual-rollouts-feature/): Microsoft has released a new gradual rollouts feature for its Windows Update for Business deployment service. This new capability was... - [Microsoft to Launch Office 365 Government Secret Cloud in Mid-2022](https://petri.com/microsoft-launch-office-365-government-secret-cloud/): Microsoft has announced its plans to launch Office 365 Government Secret, a new cloud offering for government agencies and their... - [Microsoft Patches Five Critical Security Flaws in Azure Defender for IoT](https://petri.com/microsoft-patches-critical-security-flaws-azure-defender-for-iot/): Security researchers have uncovered five critical vulnerabilities in Microsoft Azure Defender for IoT. The Redmond giant has already released new... - [Amazon Relaunches AWS Educate](https://petri.com/amazon-relaunches-aws-educate/): Earlier this month, Amazon relaunched its AWS Educate offering, which is now open to all individuals no matter what level of education or technical experience they may have. - [Static vs Dynamic IP Address - What's the Difference?](https://petri.com/static-vs-dynamic-ip-address-whats-the-difference/): In this guide, we’re going to explain the differences between static and dynamic IP addresses. Both types of Internet Protocol... - [Microsoft Defender Can Now Block Malicious Drivers on Windows PCs](https://petri.com/microsoft-defender-block-malicious-drivers-windows/): The new vulnerable driver blocklist feature for Microsoft Defender is designed to prevent third-party malicious drivers from running on Windows devices, and the feature will also prevent threat actors from exploiting vulnerabilities in signed kernel drivers. - [Deep Dive: Understanding How Outlook Room Finder Uses the Places Service](https://petri.com/deep-dive-understanding-how-outlook-room-finder-uses-the-places-service/): Outlook Room Finder uses the Places service to find free conference rooms available in your organization’s building. Here's what you need to know about how it works. - [Sophos Fixes Critical Remote Code Execution Flaw in Firewall Products](https://petri.com/sophos-firewall-critical-remote-code-execution-flaw/): Sophos has released an emergency update to patch a critical security flaw in its firewall product line that could allow for remote code execution (RCE) on targeted machines. - [IT Admins Can Now Choose When Microsoft 365 Web Apps Sign Out Inactive Users](https://petri.com/microsoft-365-web-apps-idle-session-timeout-policy/): Microsoft is rolling out a new update that lets IT Admins configure a tenant-wide timeout policy to automatically sign out... - [This Week in IT - Get Into the Groove with Microsoft Teams and Jira](https://petri.com/this-week-in-it-get-into-the-groove-with-microsoft-teams-and-jira/): This Week in IT, Microsoft source code is leaked by hacking group Lapsus$, HP warns of a serious remote code... - [Cloud Conversations – Joe Anich and Trevor Stuart on Microsoft 365 Defender & SC-200 Exam](https://petri.com/cloud-conversations-joe-anich-trevor-stuart-microsoft-365-defender-sc-200-exam/): Joe Anich, a Microsoft Senior Incident Response Customer Engineer, and Trevor Stuart, a Microsoft Senior Cloud Solution Architect, have just released their SC-200 exam guide. In this week's episode, they'll be talking about SC-200 exam tips and improvements to Microsoft 365 Defender over time - [Microsoft's Partner Program to Get a Major Cloud Overhaul in October](https://petri.com/microsoft-partner-program-cloud-overhaul-october/): Microsoft announced a major revamp of its partner program last week. The Redmond giant will rebrand the existing Microsoft Partner... - [New Windows 10 Optional Patch Fixes Bluetooth Issue Causing BSODs](https://petri.com/microsoft-releases-optional-update-windows-10-bluetooth-issues/): The optional March 2022 update for Windows 10 versions 21H2, 21H1, and 20H2 addresses a critical Bluetooth issue that was previously causing blue screens of death (BSODs) on Windows 10 machines. - [Okta Claims Only 2.5% Customers Were Impacted by Lapsus$ Group Hack](https://petri.com/okta-claims-only-2-5-customers-were-impacted-by-lapsus-group-hack/): Okta has published an extensive update about the recent cyberattack by the LapsuS$ hacking group and claims that around 2.5 percent of its customers were affected by this security incident. The company explained that the hack didn’t impact HIPAA, Auth0, and FedRAMP customers. - [Microsoft Details its Latest Efforts to Reduce Teams Outages](https://petri.com/microsoft-details-its-latest-efforts-to-reduce-teams-outages/): Microsoft has been doing some significant work to make its Teams app more reliable and less susceptible to be hit by outages. These investments complement ongoing efforts to make Microsoft Teams more battery-efficient when users are in video meetings. - [Microsoft Teams Adds New Jira App to Improve Collaboration and Workflows](https://petri.com/microsoft-teams-adds-jira-app-collaboration-workflows/): Microsoft has announced a new integration between the Jira project management tool and its Teams collaboration service. The goal is... - [Microsoft Confirms Lapsus$ Hacker Group Gained “Limited Access” to Its Source Code](https://petri.com/microsoft-lapsus-hacker-group-limited-access-source-code/): Microsoft has confirmed that the hacking group Lapsus$ managed to gain “limited access” to its security system and steal some... - [HP Confirms New Remote Code Execution Vulnerability Affects Several Printer Models](https://petri.com/hp-remote-code-execution-vulnerability-printer-models/): HP has acknowledged that its several printer models are vulnerable to a new critical buffer overflow bug that can potentially... - [Lapsus$ Hackers Claim to Leak Source Code of Microsoft Azure, Cortana, and Bing](https://petri.com/lapsus-hackers-leak-microsoft-source-code/): Last week, the infamous hacker group Lapsus$ claimed that it had breached several Azure DevOps source code repositories. Microsoft is... - [How to Install Windows Server 2022 Step by Step](https://petri.com/install-windows-server-2022/): Windows Server 2022 is built on the strong foundation of Windows Server 2019 and brings several innovations around three pillars: security, Azure hybrid integration and management, and application platform enhancements. Here's a step-by-step guide on how to install Windows Server 2022. - [Microsoft’s New PowerShell Crescendo Tool Facilitates Native Command-Line Wraps](https://petri.com/microsoft-launches-powershell-crescendo-tool/): Microsoft announced that PowerShell Crescendo has hit general availability (GA) this month. The new open-source module first launched in preview... - [Protect iOS and Android Devices with Microsoft Defender for Endpoint](https://petri.com/protect-ios-and-android-devices-with-microsoft-defender-for-endpoint/): If iOS and Android are usually considered to be more secure than Windows PCs, they are still vulnerable to attacks from web-based sources. Here's how Microsoft Defender for Endpoint can protect iOS and Android devices from various online threats. - [Microsoft Announces the General Availability of Azure Stack Edge Pro 2](https://petri.com/microsoft-announces-azure-stack-edge-pro-2/): Microsoft has announced the general availability of its Azure Stack Edge Pro 2 solution. The AI-driven edge computing device enables... - [New Research Suggests IT Hardware Spending Remains Unaffected By Cloud Adoption](https://petri.com/it-hardware-spending-cloud-adoption/): Spiceworks Ziff Davis (SWZD) has released a new “Hardware Trends in 2022 and Beyond” report. The company’s latest research findings... - [This Week in IT - Microsoft Teams Connect Takes the Pain Out of B2B Collaboration](https://petri.com/this-week-in-it-microsoft-teams-connect-takes-the-pain-out-of-b2b-collaboration/): This week in IT, multifactor authentication lets Cisco users down and the Russians in, Microsoft Teams Connect arrives in preview to make cross-enterprise collaboration easier, Microsoft Azure gets a slight lead in the enterprise cloud space, and there's much more. - [Microsoft Teams Connect Will Soon Improve External Collaboration With Shared Channels](https://petri.com/microsoft-teams-connect-external-collaboration-shared-channels/): Microsoft is getting ready to release the Teams Connect shared channels feature in public preview this month. The Redmond giant... - [How to Git Branch Checkout a Remote Branch](https://petri.com/how-to-check-out-a-remote-git-branch/): If you are new to Git, you'll need to learn the commands that will let you collaborate with others while allowing everyone to work on their specific branch without impacting an application. This tutorial will teach you how to check out a remote Git branch step by step. - [Cloud Conversations – Ami Diamond on the SharePoint Wizard](https://petri.com/cloud-conversations-ami-diamond-on-the-sharepoint-wizard/): Ami Diamond is a SharePoint Online / Microsoft Teams /Microsoft 365 Expert at P.Z Projects. In this week's Cloud Conversations episode, Ami joins Kat and Pete to talk about setting up his SharePoint Wizard YouTube channel, contributing to the community, and his favorite Microsoft 365 features. - [Windows Server Insider Build 25075 Brings New Brute Force Attack Prevention Capabilities](https://petri.com/windows-server-insider-build-25075-brute-force-attack-prevention/): Microsoft has announced the release of a new Windows Server Insider Preview Build 25075. The latest build is for the... - [FBI and CISA Issue Advisory Over Multi-Factor Authentication Flaw Abused By Russian Hackers](https://petri.com/fbi-cisa-multi-factor-authentication-flaw-russian-hackers/): The US Cybersecurity and Infrastructure Security Agency (CISA) and FBI released an alert about a Russian state-backed activity that allowed... - [Network Requirements for Azure Stack HCI Active/Active Cluster Nodes](https://petri.com/network-requirements-for-azure-stack-hci-active-active-cluster-nodes/): In this guide, we're going to explain the network requirements for deploying Azure Stack HCI Active/Active cluster nodes, and detail the maximum possible distance between two Azure Stack HCI nodes within an active/active cluster. - [Microsoft's Surface Hub 2 Smart Camera Arrives to Help with Hybrid Work](https://petri.com/microsofts-surface-hub-2-smart-camera-hybrid-work/): Microsoft has unveiled several new features and capabilities for its Office productivity suite to better suit the needs of the... - [How to Install Hyper-V on Windows Server Core](https://petri.com/how-to-install-hyper-v-on-windows-server-core/): Using the Windows Server Core install mode means no Graphical User Interface (GUI), so how do you install Hyper-V on this version of Windows Server? We're going to explain how to do it in that guide and why you may find Windows Server Core to be a great option for using Hyper-V. - [German Cybersecurity Office BSI Issues Security Warning About Kaspersky Antivirus](https://petri.com/german-agency-bsi-warns-kaspersky-antivirus/): German federal cybersecurity agency BSI has warned its citizens against using antivirus products from Russian-based Kaspersky Lab. The security agency... - [Petri IT Knowledgebase Gets Major Site Redesign](https://petri.com/petri-it-knowledgebase-gets-major-site-redesign/): Welcome to the new look Petri. com! Our team has been working hard over the past three months to completely... - [QNAP Warns Against 'Dirty Pipe' Linux Flaw That Affects Several NAS Devices](https://petri.com/qnap-warns-dirty-pipe-linux-flaw-nas-devices/): QNAP has issued an advisory about a new Linux vulnerability that affects most of its Network Attached Storage (NAS) devices. The company warned that this high severity Linux exploit called “Dirty Pipe” could be abused by attackers to gain root privileges on affected systems. - [Microsoft Lifts Windows 11 Update Block As Oracle Releases VirtualBox Fix](https://petri.com/microsoft-lifts-windows-11-update-block-virtualbox-fix/): Microsoft has removed an important upgrade block that should finally allow more users to upgrade to Windows 11. Last week,... - [Microsoft Azure Ahead of AWS in Enterprise Cloud Space, Says New Report](https://petri.com/microsoft-azure-ahead-aws-enterprise-cloud-space/): Microsoft Azure is now the most widely used enterprise cloud computing service, according to a new report from the IT... - [Microsoft 365 Apps and Services To Drop Support for Some TLS Certificates in 2025](https://petri.com/microsoft-365-services-drop-support-tls-certificates-2025/): Microsoft announced this week some important Transport Layer Security (TLS) certificate changes regarding the Microsoft 365 services. The company detailed... - [This Week in IT - Linux Gets Its Pipes Dirty](https://petri.com/this-week-in-it-linux-gets-its-pipes-dirty/): This week in IT, all Linux distributions are affected by a serious security flaw, called Dirty Pipe, that can completely... - [Microsoft’s New Office.com UI Now Available for All Business and Education Customers](https://petri.com/microsoft-office-com-ui-business-education-customers/): Microsoft unveiled its plans to redesign Office. com and the Office app for Windows at Ignite 2021. Now, the company... - [Cloud Conversations – Matt Zorich on Azure Sentinel and KQL](https://petri.com/cloud-conversations-matt-zorich-on-azure-sentinel-and-kql/): Matt Zorich is a Principal Cyber Security Operations Specialist who's also a Kibana Query Language guru. He joins Ru and Pete in this week's episode to talk about how 365 days of KQL started, what makes Sentinel so valuable, recommendations for folks getting into Sentinel / KQL, and more. - [What is DNS?](https://petri.com/what-is-dns/): Do you know how domain names, like microsoft.com, are translated into IP addresses? The Internet uses a service called the Domain Name System (DNS), which allows domain names to be translated into IP addresses so that browsers and other Internet-connected apps and services can find webservers. - [Microsoft Defender for Identity Gets Action Accounts Support](https://petri.com/microsoft-defender-for-identity-action-accounts/): Microsoft has added support for action accounts to its Microsoft Defender for Identity solution. The new action accounts feature was... - [The Ultimate Guide to Microsoft Teams eDiscovery](https://petri.com/ultimate-guide-to-microsoft-teams-ediscovery/): Microsoft Teams stores data in various places, making it difficult for IT Admins to perform complete eDiscovery. In this article, we'll explore the different eDiscovery tools available for IT Admins, how to collect Teams data using eDiscovery, and the current limitations for eDiscovery workflows. - [Get Ready for AWS Pi Day 2022](https://petri.com/get-ready-for-aws-pi-day-2022/): On March 14th, 2022 Amazon will host its 2nd annual AWS Pi Day virtual event. During this one-day free virtual event, Amazon will offer sessions showing how you can leverage S3 for your business, keep your data protected and optimize your S3 storage costs. - [Patch Tuesday – March 2022](https://petri.com/patch-tuesday-march-2022/): Microsoft released 71 fixes this month, 3 of which are rated Critical and 68 Important. While three are publicly known... - [Google to Acquire Cybersecurity Firm Mandiant to Bolster Cloud Computing Business](https://petri.com/google-acquires-cybersecurity-firm-mandiant/): Google has announced its plans to acquire Mandiant, a US-based cyber security company, in an all-cash deal valued at $5.... - [Microsoft Acknowledges "AutoWarp" Critical Security Vulnerability Affecting Azure Automation Service](https://petri.com/microsoft-acknowledges-autowarp-critical-security-vulnerability-affecting-azure-automation-service/): Microsoft has addressed a new critical security vulnerability in its Azure Automation service. The exploit labeled “AutoWarp” was mitigated in... - [Researchers Discover Leaked Nvidia Code-Signing Certificates Used to Spread Malware](https://petri.com/nvidia-code-signing-certificates-malware/): Last week, security researchers revealed that a hacking group had been involved in using leaked Nvidia code-signing certificates for malware... - [Microsoft 365 Web Apps To Get Account Switching Support Next Month](https://petri.com/microsoft-365-web-apps-account-switching/): Microsoft is working on a new feature that will bring account switching support for Microsoft 365 web apps. The company... - [Cloud Conversations: Pragati Jain on Power Platform & Community events](https://petri.com/cloud-conversations-pragati-jain-on-power-platform-community-events/): In this week's episode, we discussed Power Platform updates, event planning, and time management and community contributions with Pragati Jain, a Microsoft Data Platform MVP, Event organizer, Manager at the Power BI UK User group, conference speaker, and blogger. - [Cloud Conversations – Pragati Jain on Power Platform & Community events](https://petri.com/cloud-conversations-pragati-jain-on-power-platform-community-events-2/): In this week's episode, we discussed Power Platform updates, event planning, and time management and community contributions with Pragati Jain, a Microsoft Data Platform MVP, Event organizer, Manager at the Power BI UK User group, conference speaker, and blogger. - [Windows 11 Surges Forward and ARM Gets Pluton](https://petri.com/windows-11-surges-forward-and-arm-gets-pluton/): This week in IT, Windows 11 increases its market share, Microsoft releases Defender for Business and it pledges to help... - [Microsoft Defender for Cosmos DB is Now Available in Public Preview](https://petri.com/microsoft-defender-for-cosmos-db-is-now-available-in-public-preview/): Microsoft has announced the public preview of Microsoft Defender for Azure Cosmos DB, a new database protection solution for enterprise... - [Get-AdUser: How to Audit Active Directory Users with PowerShell](https://petri.com/get-aduser-how-to-audit-active-directory-users-with-powershell/): PowerShell is an essential tool for IT admins, and it makes it easy to audit Active Directory user accounts with the Get-AdUser command. In this guide, we're going to detail how to get started with the popular Active Directory cdmdlet.  - [How to Download and Set Up Microsoft Entra Connect](https://petri.com/how-to-install-and-configure-azure-ad-connect-v2/): In this guide, I’ll provide information on how to download Microsoft Entra Connect and walk you through the installation and configuration of it. We'll be using a new Windows Server 2019 forest and domain and an Microsoft Entra ID tenant using a Premium P2 trial license and a verified custom domain. - [Microsoft Announces Public Preview of Azure AD Multi-Stage Access Reviews](https://petri.com/microsoft-azure-ad-multi-stage-access-reviews/): Microsoft has launched a new multi-stage access reviews feature for Azure AD customers. The new capability is currently available in... - [Microsoft Launches New Endpoint Security Solution for Small Businesses](https://petri.com/microsoft-launches-new-endpoint-security-solution-for-small-businesses/): Microsoft has announced the general availability of Microsoft Defender for Business, a new endpoint security offering designed for small and... - [Microsoft Office Mobile Apps Now Support Co-Authoring Encrypted Documents](https://petri.com/microsoft-office-mobile-co-authoring-encrypted-documents/): Microsoft has announced that its Office mobile apps now support co-authoring documents encrypted with sensitivity labels. This capability has been... - [Microsoft Offers Temporary Workaround for Windows 11 and 10 Reset Issue](https://petri.com/microsoft-workaround-windows-11-and-10-reset-bug/): Microsoft has acknowledged a new issue with Windows 10 and Windows 11, which causes select locally-synced OneDrive files and folders... - [Everything You Need to Know About Power Platform - February 2022](https://petri.com/everything-you-need-to-know-about-power-platform-february-2022/): Microsoft is doing something like our recent weather with its Power Platform in February as they’ve begun revealing some newer 2022 rollout code in preview mode. Learn more about model-driven apps updates, new Power BI features, and other updates Microsoft's Power Platform received in February. - [What's New with Windows – February 2022](https://petri.com/whats-new-with-windows-february-2022/): This month, Lenovo releases new Windows devices on ARM, Windows 11 gets a ‘major’ update, and resetting your PC might... - [How Viva Learning Promotes Learning Culture in Hybrid Workspaces](https://petri.com/how-viva-learning-promotes-learning-culture-in-hybrid-workspaces/): Microsoft Viva, the company's new employee experience platform includes different modules to keep employees engaged. With Viva Learning, Microsoft wants to address common training challenges by providing employees with easy-to-digest courses based on their interests and roles. - [OneDrive Sync Support Now Generally Available for Apple M1 Macs](https://petri.com/onedrive-sync-support-apple-m1-macs/): Microsoft announced today that its OneDrive sync client for Mac is now generally available for Apple M1-powered Macs. The updated... - [What's New in Microsoft Teams - February 2022](https://petri.com/whats-new-microsoft-teams-february-2022/): Microsoft has detailed new features and capabilities that arrived in its Teams collaboration platform in February. This month, the biggest... - [Microsoft Acknowledges New Netlogon Issues On Windows Server Machines](https://petri.com/microsoft-acknowledges-netlogon-issues-windows-server/): Microsoft has acknowledged a new Windows Server bug that prevents select apps or network drives from establishing secure Netlogon channel... - [This Week in IT - Microsoft Wants to Secure Google Cloud but John Malkovich Isn’t Impressed](https://petri.com/this-week-in-it-microsoft-wants-to-secure-google-cloud-but-john-malkovich-isnt-impressed/): This week in IT, Microsoft adds Google Cloud Platform support to Microsoft Defender for Cloud, CloudKnox helps organizations gain visibility... - [What's New in Microsoft 365 - February 2022](https://petri.com/whats-new-microsoft-365-february-2022/): Microsoft has published its monthly roundup of all the new features and capabilities added to the Microsoft 365 subscription service.... - [Cloud Conversations: Sara Fennah on How to Prepare for Microsoft Exams](https://petri.com/cloud-conversations-sara-fennah-on-how-to-prepare-for-microsoft-exams/): Cloud Conversations is a weekly podcast about everything connected to cloud computing. This week, Sara Fennah, a Microsoft 365 consultant, trainer, MCT, MVP, blogger discusses how to prepare for Microsoft 365 exams, Microsoft Loop, and upcoming in-person conferences - [Microsoft Releases .NET 7 Preview 1 with Cloud-Native and Container Improvements](https://petri.com/microsoft-releases-net-7-preview-1-with-cloud-native-and-container-improvements/): Last week, Microsoft announced the first preview release of . NET 7, alongside ASP. NET Core 7 Preview 1 and... - [What is 5G and How is it Better Than 4G LTE?](https://petri.com/what-is-5g/): Faster Internet speeds are what get touted the most about 5G, but there are many differences between 5G and existing 3G and 4G networks. Here's why you should care about 5G and how this technological innovation will transform industry, gaming, and entertainment. - [Recording Podcasts via Microsoft Teams Best Practices Guide](https://petri.com/recording-podcasts-via-microsoft-teams-best-practices-guide/): During the pandemic, Microsoft Teams has become a popular tool for recording podcasts because it provides an easy way to... - [Amazon Adds AWS Backup to S3](https://petri.com/amazon-adds-aws-backup-to-s3/): AWS Backup enables you to centralize and automate data protection across your AWS services. Using AWS Backup and its new support for S3, you can centrally create and manage immutable backups of S3 data across all your accounts and restore the data to a specified point-in-time. - [Microsoft Launches CloudKnox Permissions Management in Public Preview](https://petri.com/microsoft-cloudknox-permissions-management-public-preview/): Microsoft is launching today its new CloudKnox Permissions Management solution in public preview. The cloud infrastructure entitlements management (CIEM) platform... - [Microsoft Defender for Cloud Adds Support for Google Cloud Platform](https://petri.com/microsoft-defender-for-cloud-supports-for-google-cloud-platform/): Microsoft has announced this morning some improvements for its Defender for Cloud suite. The company says that the Microsoft Defender... - [Microsoft Unveils New "Singularity" AI Cloud Infrastructure Service](https://petri.com/microsoft-unveils-singularity-ai-infrastructure-service/): Microsoft is planning to launch a new AI infrastructure service called “Singularity. ” In a research paper published yesterday titled... - [How to Use the Terraform AWS Provider](https://petri.com/how-to-use-the-terraform-aws-provider/): The Terraform AWS provider lets you connect Terraform with AWS services such as AWS Elasticbeanstalk, AWS Lambda, etc. In this tutorial, you will learn about the Terraform AWS Provider, how you can declare it in Terraform, and using the provider to create an AWS EC2 instance. - [Microsoft Teams Adds Local Time Information to User Profile Cards](https://petri.com/microsoft-teams-local-time-user-profile-cards/): Microsoft Teams has released a new update that allows users to find the local time of their co-workers by checking... - [How to Download And Install Fonts in Windows 10](https://petri.com/how-to-download-and-install-fonts-in-windows-10/): Windows 10 makes it easy to download and install fonts to use in programs and apps. Learn the various methods and websites you can utilize to grow your Fonts collection on your Windows PC. - [Microsoft Viva To Get New Integration with LinkedIn's Glint in 2023](https://petri.com/microsoft-viva-integration-glint-2023/): Microsoft is launching a new integration between its Viva service and Glint, a popular employee engagement platform acquired by LinkedIn... - [Cloud Conversations - Sara Lagerquist on Power Automate](https://petri.com/cloud-conversations-sara-lagerquist-on-power-automate/):  Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud... - [GitHub Rolls Out New AI-Powered Code Scanning Security Alerts](https://petri.com/github-code-scanning-security-alerts/): GitHub is getting new AI-powered code scanning analysis capabilities that should enable developers to identify the most common security flaws... - [This Week in IT - Windows 11 New Features and Google Flexes its Muscles](https://petri.com/this-week-in-it-windows-11-new-features-and-google-flexes-its-muscles/): This week in IT, Microsoft releases an optional preview of new experiences for Windows 11 due to reach GA in... - [How to Use Adaptive Scopes for Retention Within Microsoft 365](https://petri.com/how-to-use-adaptive-scopes-for-retention-within-microsoft-365/): In this guide, we’re going to explain how IT admins can use adaptive scopes to make retention policies for Microsoft... - [Microsoft Launches Azure Spring Cloud Enterprise in Preview](https://petri.com/microsoft-launches-azure-spring-cloud-enterprise/): Last year, Microsoft unveiled Azure Spring Cloud Enterprise, a fully managed service designed for enterprise developers. Now, the Redmond giant... - [Microsoft Adds Hotpatching Support to Windows Server 2022 Azure Edition](https://petri.com/microsoft-hotpatching-support-windows-server-2022-azure-edition/): Microsoft has announced that hot patching support is now generally available for Windows Server 2022 Azure Edition. The new hotpatch... - [How to Encrypt Emails in Outlook (Microsoft 365)](https://petri.com/how-to-encrypt-emails-in-outlook-microsoft-365/): Outlook email encryption ensures that any email you send with Microsoft's email client is encrypted before it leaves your computer. Here are the multiple ways to use email encryption in Outlook, and why you may want to start using this feature whether it's for business communications or personal use - [The Top 10 PowerShell Commands That You Should Know](https://petri.com/the-top-10-powershell-commands-that-you-should-know/): In this guide, we’re going to detail the top ten PowerShell commands for managing Windows PCs, checking services and processes,... - [5 Steps to Secure Active Directory](https://petri.com/active-directory-security-5-steps-to-secure-ad/): In this guide about Active Directory security, we're going to detail five steps that IT admins need to follow to secure Active Directory environments in an organization. - [Microsoft Simplifies Identity Management with Azure Active Directory Certificate-Based Authentication](https://petri.com/microsoft-azure-active-directory-certificate-based-authentication-preview/): Microsoft has announced some important updates for Azure Active Directory customers. The company says that the new Azure Active Directory... - [Microsoft Defender for Office 365 Gets a Streamlined Submissions Experience](https://petri.com/microsoft-defender-for-office-365-streamlined-submissions-experience/): Microsoft has launched a streamlined submissions experience in the Microsoft 365 Defender portal. The new submissions page provides dedicated item... - [Microsoft Releases First Major Windows 11 Update with Taskbar Improvements and More](https://petri.com/microsoft-releases-windows-11-update-taskbar-improvements/): Microsoft has released a big update for its new Windows 11 OS, which brings a bunch of improvements to the... - [Microsoft Launches Emissions Impact Dashboard for Microsoft 365 in Preview](https://petri.com/microsoft-launches-emissions-impact-dashboard-for-microsoft-365-in-preview/): Microsoft has launched the new Emissions Impact Dashboard for Microsoft 365, a tool that lets Microsoft cloud customers track, analyze... - [Microsoft Defender to Block Credential Theft By Default on Windows PCs](https://petri.com/microsoft-defender-block-windows-credential-theft/): Microsoft is getting ready to enable a new security feature in Microsoft Defender that should make it more difficult for... - [How to Manage Tasks and Approvals in Teams with Adaptive Cards](https://petri.com/how-to-manage-tasks-and-approvals-in-teams-with-adaptive-cards/): Adaptive Cards are a great way to share formatted information with users instead of posting a Channel message in Teams. In this guide, we're going to explain how to use Adaptive Cards and Power Automate to manage tasks and approvals in Microsoft Teams. - [Amazon Adds Batch Replication to S3](https://petri.com/amazon-adds-batch-replication-to-s3/): Amazon launched this month Simple Storage Service (S3) Batch Replication, a fully managed, low-cost feature that replicates newly uploaded objects between different S3 buckets. - [Cloud Conversations - Microsoft Information Protection + SC-400](https://petri.com/microsoft-information-protection-sc-400/): In this show, Shabaz Darr and Viktor Hedberg join Ru and Pete to catch up about the SC-400 Microsoft Information Protection Administrator exam, the most common Microsoft security problems Viktor sees in his work, and more. - [Microsoft Teams Will Let Users Control Calls With Bluetooth Headsets](https://petri.com/microsoft-teams-control-calls-bluetooth-headsets/): Microsoft Teams is getting a new update that will allow users to calls with Bluetooth headsets on Windows PCs. This... - [Microsoft to Add Azure AD Join Support to Windows 365 Cloud PCs This Month](https://petri.com/microsoft-to-add-azure-ad-join-support-to-windows-365-cloud-pcs-this-month/): Microsoft has recently announced that Azure AD Join support is coming to its Windows 365 Cloud PC service this month.... - [Active Directory Replication: A Guide for IT Pros](https://petri.com/active-directory-replication-a-guide-for-it-pros/): This guide covers the basics of how sites define the logical layout of your network and how the tools and features in Active Directory Domain Services work together to keep your directory running smoothly. - [Understanding Windows Server 2022 Licensing](https://petri.com/understanding-windows-server-2022-licensing/): Understanding the licensing requirements for Windows Server 2022 will enable you to optimize your investment in the latest version of Microsoft's server OS. - [This Week in IT – Could Microsoft Win the Cloud with Cybersecurity Expertise?](https://petri.com/could-microsoft-win-the-cloud-with-mandiant-cybersecurity-expertise/): This week in IT it’s all about security. Microsoft is reportedly in talks to buy Mandiant, potentially making Microsoft unrivalled... - [Azure Active Directory Adds New Cross-Tenant Access Settings in Public Preview](https://petri.com/azure-active-directory-adds-cross-tenant-access-settings/): Microsoft has announced the public preview of cross-tenant collaboration settings in its Azure Active Directory service. The new feature enables... - [How to Set Up Windows 365](https://petri.com/how-to-set-up-windows-365/): In this article, you will learn how to get started with Windows 365, how to set it up for your organization, and how to choose between Hybrid Azure AD and Azure AD native join. - [Microsoft to Reportedly Acquire Mandiant to Bolster Security Products](https://petri.com/microsoft-to-reportedly-acquire-mandiant-to-bolster-security-products/): Microsoft is reportedly planning to acquire a US-based cyber security company Mandiant. According to a new report from Bloomberg, this... - [Microsoft Teams Video Calls and Meetings are Now 50% More Power Efficient](https://petri.com/microsoft-teams-meetings-power-efficient/): Microsoft announced yesterday that its Teams desktop app has reduced power consumption in video calls and meetings by up to... - [Patch Tuesday February 2022 – Microsoft Teams, Outlook, and Windows Get Important Updates](https://petri.com/patch-tuesday-february-2022-microsoft-teams-outlook-and-windows-get-important-updates/): Microsoft releases 51 patches, fixing 48 bugs, including 1 zero-day flaw. There’s also an update for all Teams clients and... - [Microsoft Teams Rooms Devices to Get Improved Meeting Stage, Webinar and Reactions Support](https://petri.com/microsoft-teams-rooms-devices-to-get-improved-meeting-stage-webinar-and-reactions-support/): Microsoft has unveiled a handful of new capabilities for Teams Rooms on Android devices, including support for webinars, reactions, and... - [Live AMA with Paul Thurrott and Russell Smith](https://petri.com/live-ama-with-paul-thurrott-and-russell-smith/): If you are a Premium member over at Thurrott. com, our sister site, Paul Thurrott and I are doing a... - [Microsoft Defender App Launches in Preview on Windows and Android](https://petri.com/microsoft-defender-app-preview-windows-android/): Microsoft has launched a new Microsoft Defender Preview app for Windows and Android devices. This is currently available to download... - [Microsoft Disables MSIX Protocol Handler to Protect Windows Users from Malware](https://petri.com/microsoft-disables-msix-protocol-handler-windows/): Last week, Microsoft announced that it has temporarily disabled the MSIX protocol handler to prevent malicious attacks on Windows 10... - [Microsoft Office Apps to Block All Downloaded VBA Macros By Default](https://petri.com/microsoft-office-apps-block-vba-macros-by-default/): Microsoft is finally getting ready to block Visual Basic for Applications (VBA) macros downloaded from the internet by default in... - [Microsoft Teams Will Soon Be Able to Pull Contact Information from LinkedIn](https://petri.com/microsoft-teams-pull-contact-information-linkedin/): Microsoft is working on some important updates for its Teams collaboration service. The Redmond giant is planning to release a... - [Practical Microsoft Graph PowerShell for Microsoft Teams](https://petri.com/practical-microsoft-graph-powershell-for-microsoft-teams/): If you're an IT Pro, learn how to manage Microsoft Teams more easily using PowerShell and the Microsoft Graph. It can often be a complicated process that requires multiple services to be combined. Use PowerShell to connect to all the connected services to manage a team in Microsoft Teams. - [Microsoft Releases Out-Of-Band Updates to Fix Windows Active Directory Issues](https://petri.com/microsoft-releases-updates-windows-active-directory/): Microsoft has released out-of-band (OOB) updates for several Windows Server configurations to fix an Active Directory issue related to Microsoft... - [Microsoft Issues Warning About Multi-Phase Phishing Attacks Targeted At Azure AD](https://petri.com/microsoft-multi-phase-phishing-attacks-azure-ad/): Microsoft has warned users about a new multi-phase campaign targeting enterprise customers. The Microsoft 365 Defender Threat Intelligence Team detailed... - [Amazon FSx for Windows File Server Gets FedRAMP Compliance](https://petri.com/amazon-fsx-for-windows-file-server-gets-fedramp-compliance/): Earlier this week, Amazon announced some important compliance updates for Amazon FSx for Windows File Server. The company says that... - [Azure AD SC-300 Exam - Are Microsoft Exams Worth It?](https://petri.com/azure-ad-sc-300-exam-are-microsoft-exams-worth-it/): Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing,... - [This Week in IT - Microsoft Lists is Coming to Everyone But Who Knows What It Is For?](https://petri.com/this-week-in-it-microsoft-lists-is-coming-to-everyone-but-who-knows-what-it-is-for/): This Week in IT – Microsoft Lists is Coming to Everyone But Who Knows What It Is For? This week... - [Exchange Online Gets MTA-STS Support to Improve Email Security](https://petri.com/exchange-online-mta-sts-support-email-security/): Microsoft has announced new security capabilities for Exchange Online customers. The company has finally added support for SMTP MTA Strict... - [Everything You Need to Know About Power Platform - January 2022](https://petri.com/everything-you-need-to-know-about-power-platform-january-2022/): The big news this month is the release of the next Release Wave Plan. As if we were all excited... - [Amazon Launches a New AWS Management Console](https://petri.com/amazon-launches-new-aws-management-console/): Amazon started off this new year with one pretty big change for Amazon Web Services (AWS). They updated the AWS... - [Set Up Microsoft Teams Using the Machine-Wide Installer - Complete Guide](https://petri.com/set-up-microsoft-teams-using-machine-wide-installer/): This article is a step-by-step guide that will show you how to ensure that everyone in your Microsoft Teams organization has access to Teams using the machine-wide installer. - [Amazon Adds Replication to EFS](https://petri.com/amazon-adds-replication-to-efs/): Amazon Elastic File System (Amazon EFS) allows EC2 instances, AWS Lambda functions and containers to share access to a fully-managed, high... - [Microsoft Details Evolution of Sophisticated UpdateAgent Mac Malware](https://petri.com/microsoft-details-evolution-sophisticated-updateagent-mac-malware/): Microsoft has shared some important details about the evolution of a malware called “UpdateAgent” that started targeting Mac devices in... - [Microsoft Sentinel Gets Continuous Threat Monitoring Support for GitHub](https://petri.com/microsoft-sentinel-continuous-threat-monitoring-github/): Microsoft Sentinel, the company’s security information and event management (SIEM) platform is getting a new GitHub integration. The new solution... - [Microsoft Endpoint Configuration Manager Can Now Visualize Content Distribution Status](https://petri.com/microsoft-endpoint-configuration-manager-visualize-content-distribution/): Earlier this week, Microsoft released a new update (version 2201) for Microsoft Endpoint Configuration Manager users enrolled in the technical... - [Microsoft Teams Public Preview Users Can Now See 50 Percent More Chat Messages](https://petri.com/microsoft-teams-compact-mode-private-chats/): Microsoft has unveiled some important updates for its Teams collaboration service. The company has announced that Microsoft Teams public preview... - [Analytics in Viva Insights that Improve Collaboration Behaviours in the Workplace](https://petri.com/analytics-viva-insights-improve-collaboration-in-the-workplace/): Learn how Microsoft Viva Insights can help find out how happy employees are, if burnout is a problem, and how resilient an organisation is. As our lives become increasingly connected, we make sense of an enormous amount of information while multiple tasks and deliverables require our attention. - [Microsoft Defender for Office 365 to Get Advanced Threat Protection for Priority Accounts](https://petri.com/microsoft-defender-for-office-365-to-get-advanced-threat-protection-for-priority-accounts/): Microsoft is working on some important updates for Microsoft Defender for Office 365. The cloud-based email filtering service is getting... - [Microsoft Lists Now Supports Personal Microsoft Accounts](https://petri.com/microsoft-lists-supports-personal-microsoft-accounts/): Microsoft has announced that its new Lists app now supports personal accounts. The company has started rolling out a new... - [Microsoft Priva is Now Generally Available for Enterprise Customers](https://petri.com/microsoft-priva-generally-available-enterprise-customers/): Microsoft has announced that its new privacy management solution “Microsoft Priva” is now generally available for business and enterprise customers.... - [What's New in Microsoft Teams - January 2022](https://petri.com/whats-new-microsoft-teams-january-2022/): Microsoft has just published its monthly roundup covering everything added to its Teams collaboration platform in January 2022. This month,... - [Cloud Conversations - Securing Microsoft 365 in SMBs and Defender for Business](https://petri.com/cloud-conversations-securing-microsoft-365-in-smbs-and-defender-for-business/): Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing,... - [This Week in IT - Windows 11 Beats Windows 10 Out of the Starting Blocks](https://petri.com/this-week-in-it-episode-4/): This week Microsoft announced that Windows 11 upgrades have beaten Windows 10 during the same period since launch. Microsoft issued... - [Microsoft Reports on how Azure AD Protects Users Against DDoS Attacks](https://petri.com/microsoft-azure-ad-protects-users-denial-of-service-attacks/): Microsoft has recently unveiled that it mitigated one of the largest-ever-recorded DDoS attacks that targetted Asian Azure customers in November.... - [Microsoft Teams Launches New Device Trade-In Program for Enterprise Customers](https://petri.com/microsoft-teams-device-trade-in-program/): Microsoft has launched a new device trade-in program for its Teams collaboration platform. The new initiative aims to make it... - [What is AWS (Amazon Web Services)? - The Ultimate Guide](https://petri.com/what-is-aws-amazon-web-services/): Amazon Web Services (AWS) is a comprehensive cloud computing platform launched by Amazon in 2006. Learn what services Amazon provides as part of AWS, how they can benefit your business, and how they compare with other providers in the cloud computing space, like Azure, and Google Cloud Platform. - [Manage Windows Devices with Microsoft Endpoint Manager (Intune)](https://petri.com/manage-windows-microsoft-endpoint-manager-intune/): Microsoft Endpoint Manager (Intune) is a free cloud service that connects your devices to the cloud and lets you manage... - [Microsoft Defender for Business is Coming to Business Premium Next Month](https://petri.com/microsoft-defender-for-business-is-coming-to-business-premium-next-month/): Microsoft unveiled a new endpoint security solution for small and medium-sized companies called “Microsoft Defender for Business” at its Ignite... - [Microsoft Defender for Endpoint Gets Vulnerability Management Support on Android and iOS](https://petri.com/microsoft-defender-for-endpoint-vulnerability-management-ios-android/): Microsoft has announced that threat and vulnerability management support in Microsoft Defender for Endpoint is now generally available on Android and iOS devices. - [Microsoft's New Outlook for Mac is Hitting General Availability Next Month](https://petri.com/microsofts-new-outlook-for-mac-client/): Microsoft unveiled a new Outlook for Mac experience with significant performance and reliability improvements back in 2019. The company has... - [What is a Domain Controller?](https://petri.com/what-is-a-domain-controller/): Domain controllers (DCs) are at the heart of Active Directory Domain Services (AD DS), the directory service that provides authentication, authorization, and password management for Microsoft Windows networks. Find... - [Microsoft is Bringing Android Apps and Taskbar Improvements to Windows 11 in February](https://petri.com/microsoft-android-apps-taskbar-improvements-windows-11/): Microsoft is getting ready to roll out a big update to Windows 11 users next month, which should bring improvements... - [Microsoft Releases New Optional Windows 11 Update to Fix Taskbar, Audio, and Display Issues](https://petri.com/microsoft-releases-windows-11-kb5008353-update/): Microsoft has released new optional updates for Windows 11 and Windows 10 version 20H2 and newer. The latest Windows 11 optional update (KB5008353) includes several fixes for issues affecting audio devices, multi-monitor setups, auto-brightness as well as app icons in the taskbar. - [PDQ Acquires Endpoint Management Solution Provider SmartDeploy](https://petri.com/pdq-acquires-smartdeploy/): PDQ has announced today the acquisition of SmartDeploy, a Seattle-based provider of modern endpoint management solutions. The company plans to... - [Regulatory Compliance with Microsoft 365](https://petri.com/regulatory-compliance-with-microsoft-365/): Making sure your business is in compliance with the various regulatory policies that you need to work with can be... - [Microsoft Addresses Outlook Search Issues on Windows 10](https://petri.com/microsoft-outlook-search-issues-windows-10/): Microsoft has addressed a known issue that was breaking the Outlook search functionality on Windows 10. The company announced on... - [Group Policy Differences Between Windows 10 and 11 Cause Management Pain for Sysadmins](https://petri.com/group-policy-differences-windows-10-and-11/): Microsoft has released a list of twenty-five legacy group policies that should be disabled on Windows 10 and Windows 11. The company is urging IT Admins to stop using these group policies in order to improve overall performance on Windows PCs. - [Disaster Recovery for Kubernetes](https://petri.com/disaster-recovery-kubernetes/): A lot of businesses are in the process of modernizing their applications as a part of their digital transformation strategies... - [This Week in IT - Windows Group Policy Woes](https://petri.com/this-week-in-it-windows-group-policy-woes/): In this week’s edition of This Week in IT, Microsoft issues updates to fix last week’s update. Microsoft is finally... - [Microsoft Adopts Machine Learning to Push Windows 10 Version 21H2 to More PCs](https://petri.com/microsoft-windows-10-version-21h2-more-pcs/): Microsoft announced today that it has started pushing Windows 10 21H2 (the November 2021 update) to users running version 20H2.... - [Microsoft Restricts Excel 4.0 Macros by Default to Protect Users from Malware](https://petri.com/microsoft-restricts-excel-4-0-macros-by-default/): Microsoft unveiled its plans to disable Excel 4. 0 XLM macros by default back in October 2021. The company has... - [Cloud Conversations - Season 2 Kickoff](https://petri.com/cloud-conversations-season-2-kickoff/):  Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud... - [Real World SmartDeploy with Barry Weiss of the Gordon and Betty Moore Foundation](https://petri.com/real-world-smartdeploy-with-barry-weiss-of-the-gordon-and-betty-moore-foundation/): After struggling for years with tools like Microsoft Deployment Toolkit (MDT), Barry Weiss heard about a simpler and less expensive... - [How to Use the Terraform Azure Provider to Deploy Cloud Resources](https://petri.com/deploy-resources-terraform-azure-provider/): Learn step-by-step about everything you need to know about the Azure Provider for Terraform and how to use it to manage your Azure cloud infrastructure. - [QNAP NAS Devices Being Targeted by Qlocker Ransomware Again](https://petri.com/qnap-nas-devices-being-targeted-by-qlocker-ransomware-again/): QNAP, a Taiwan-based network-attached storage (NAS) manufacturer, has issued an advisory about ransomware and brute-force attacks that affect all network-attached storage devices. - [Microsoft Releases Out-Of-Band Windows Server 2019 Update to Address Hyper-V, ReFS and VPN Issues](https://petri.com/microsoft-out-of-band-windows-2019-update/): Microsoft has started rolling out an out-of-band update for Windows Server 2019. The same KB5010791 patch addresses a couple of... - [Microsoft Edge Tests New Security Feature to Mitigate "Unforeseen" Zero-Day Exploits](https://petri.com/microsoft-edge-update-zero-day-exploits/): Microsoft has started testing a new security feature for its Edge browser that should help IT admins to protect end-users from zero-day vulnerabilities. - [AWS Firewall Manager Adds AWS Shield Advanced Automatic Application Layer DDoS Mitigation](https://petri.com/aws-firewall-manager-shield-advanced-automatic-application-layer-ddos-mitigation/): Amazon Web Services has announced some important updates for its AWS Firewall Manager service. The company says that the popular... - [Microsoft Releases Out-Of-Band Patches To Fix Windows 10 VPN Connection, Windows Server Issues](https://petri.com/microsoft-releases-out-of-band-vpn-patches-windows-server/): Microsoft has released out-of-band patches to address several issues related to VPN connections, Domain Controllers (DC), and Hyper-V caused by this month’s Patch Tuesday updates. - [Microsoft Teams Public Preview Now Lets Users Mute Meetings Notifications](https://petri.com/microsoft-teams-mute-notifications-meetings/): Microsoft Teams is getting a new update that will allow users to mute notifications during Teams meetings. The company has recently announced that the Mute notifications feature is now available in public preview for desktop and web users. - [Microsoft Defender Exclusions List Can Be Read by Attackers in Windows 10](https://petri.com/microsoft-defender-exclusions-list-windows-10/): Security researchers have discovered a flaw in Microsoft Defender Antivirus that could allow attackers to bypass the malware detection solution on Windows machines. - [How to Prevent Data Leakage in Microsoft Teams with Data Loss Prevention](https://petri.com/microsoft-teams-data-loss-prevention/): A Microsoft Teams data loss prevention (DLP) policy can help protect your organization’s sensitive data by preventing users from sharing, sending, and storing that data outside the Teams client. Learn how to set up a Teams DLP policy here. - [This Week in IT – When Windows Updates go Loopy](https://petri.com/this-week-in-it-when-windows-updates-go-loopy/): In this week’s edition of This Week in IT, Microsoft messes up Patch Tuesday updates in grand style, causing Windows... - [Windows 10 Multiple Monitor Tricks](https://petri.com/windows-10-multiple-monitor-tricks/): In today’s Ask the Admin, I’ll show you a couple of tricks that make working with multiple monitors easier. I'll show you have to change the orientation of your displays to up and down instead of sideways, and how to quickly extend displays using a keyboard shortcut. - [Making Office 365 More Sustainable with Self-Service Restore](https://petri.com/making-office-365-more-sustainable-with-self-service-restore/): In the first four parts of my occasional series on Microsoft 365 backups, I’ve been fairly cynical. In my final... - [Microsoft Provides Workaround for L2TP VPN Connections Issues on Windows](https://petri.com/microsoft-l2tp-vpn-connections-windows/): Microsoft has acknowledged a new bug that is preventing its built-in Windows client from connecting to a Virtual Private Network (VPN). - [What is Azure Stack HCI?](https://petri.com/what-is-azure-stack-hci/): Learn more about Azure Stack HCI. In this article, you will learn what Azure Stack HCI is and how it differs from Azure Stack Hub. We discuss deployment requirements and scenarios, and the advantages of choosing Azure Stack HCI to run services and applications in a hybrid cloud environment. - [Latest Windows Server Updates Trigger DC Reboot Loop and Hyper-V Start-Up Issues](https://petri.com/latest-windows-server-updates-dc-reboot-loop-hyper-v/): Microsoft is once again dealing with a buggy Patch Tuesday update after Windows Server admins started complaining about domain controller (DC) boot loops, Hyper-V issues, and more. - [Microsoft Zero Trust Solutions Help Drive 50% Lower Chance of Data Breach, Says New Research Study](https://petri.com/microsoft-zero-trust-data-breach-reduced-risk/): Microsoft has published a new study detailing the potential financial implications of implementing a Zero Trust architecture with its security... - [Microsoft Announces General Availability of Azure AD Continuous Access Evaluation](https://petri.com/azure-ad-continuous-access-evaluation/): Microsoft unveiled a new Continuous Access Evaluation (CAE) security solution for its Azure AD Conditional Access service back in October... - [Patch Tuesday January 2022 - Wormable Bug in Windows and a Critical Bug in Exchange Server Get Fixes](https://petri.com/patch-tuesday-january-2022-wormable-bug-in-windows-critical-bug-exchange/): Microsoft patches a wormable bug in http. sys in Windows and Windows Server. There are also fixes for three remote... - [Microsoft Teams and Viva Add New Features To Empower Frontline Workers](https://petri.com/microsoft-teams-viva-updates-frontline-workers/): Microsoft has announced a slew of new features and capabilities for Teams and Viva. The company says that these improvements... - [Norton 360 Antivirus Suite Adds Optional Crypto Mining](https://petri.com/norton-360-antivirus-crypto-mining/): Norton has released a new update for its Norton 360 security suite that allows users to mine Ethereum cryptocurrency directly within the application. - [Microsoft Azure Virtual Desktop Service Adds Trusted Launch Virtual Machines Support](https://petri.com/microsoft-azure-virtual-desktop-trusted-launch/): Microsoft has announced that it is bringing Trusted Launch support to the Azure Virtual Desktop service. The company says this... - [SonicWall Releases Patches for Critical Y2K22 Bug Affecting Email Security Products](https://petri.com/sonicwall-y2k22-bug-email-security-products/): SonicWall, the cyber-security firm has announced that the Y2K22 bug has affected some of its email security and firewall products. The company released new security updates last week to address the Microsoft Exchange Server vulnerability. - [PowerToys 0.53.1 Brings New Always On Top Tool and Web Search Plugin](https://petri.com/powertoys-update-always-on-top-web-search/): Microsoft has released a new update for its PowerToys suite of tools this week. The latest update (version 0.53.1) brings a new Always on Top feature that allows power users to pin the active window so that it always stays on top of all other applications. - [Microsoft Provides a Temporary Workaround for Outlook Search Issues on Windows 10](https://petri.com/microsoft-workaround-outlook-search-issues-windows-10/): Microsoft has acknowledged a new issue that is currently preventing recent emails from appearing in Outlook search results. The bug was discovered following the release of the December Patch Tuesday updates last month. - [Microsoft Defender for Endpoint Rolls Out Zero-Touch Onboarding Support to iOS Devices](https://petri.com/microsoft-defender-endpoint-zero-touch-ios/): Microsoft has announced its Defender for Endpoint solution has added support for zero-touch onboarding on iOS. This feature is now... - [This Week in IT: Can Intel 12th Gen Mobile CPUs Compete with Apple's M1 Chip?](https://petri.com/intel-12th-gen-mobile-cpus-vs-apple-m1/): In this edition of This Week in IT, at CES AMD releases its Ryzen 6000 series CPUs with Microsoft’s Pluton... - [What is Active Directory: The Ultimate Guide](https://petri.com/what-is-active-directory/): Active Directory is Microsoft’s on-premises identity and access management (IAM) service. In this article, learn how Active Directory (AD) makes... - [Intel Announces 12th-Gen Mobile CPUs at CES](https://petri.com/intel-12th-gen-mobile-cpus-at-ces/): Intel has announced its 12th Gen Intel Core lineup of mobile processors at the CES 2022 event. The latest chips... - [Lenovo Announces New Microsoft Pluton-Powered ThinkPads with AMD Ryzen 6000 CPUs](https://petri.com/lenovo-microsoft-pluton-thinkpads-amd-ryzen-6000/): Microsoft unveiled its Pluton security processor back in November 2020, which is designed to make CPUs more secure by protecting... - [Microsoft Releases Out-Of-Band Windows Server Update To Fix Remote Desktop Issues](https://petri.com/microsoft-releases-out-of-band-windows-server-update-to-fix-remote-desktop-issues/): Microsoft has released new out-of-band patches for Windows Server to fix some issues with Remote Desktop caused by the December... - [AWS re:Post Takes on Stack Overflow](https://petri.com/aws-repost-takes-on-stack-overflow/): There’s no doubt that the Internet can be a great resource for technical information and solutions to the problems that... - [Microsoft Teams to Tackle Meeting Fatigue with New “Hide Your Own Video” Feature](https://petri.com/microsoft-teams-meeting-fatigue-hide-your-own-video/): Microsoft Teams is set to introduce a new feature that may help users reduce meeting fatigue and distractions. This new... - [Is Outlook for Android and iOS free?](https://petri.com/is-outlook-for-android-and-ios-free/): Outlook for Android and iOS is free to download, but using some of its features can incur a monthly fee.... - [What's New in Microsoft Teams - December 2021](https://petri.com/microsoft-teams-end-to-end-encryption-meetings-features-december-2021/): Microsoft has published a monthly round-up of all the features added to its Teams collaboration service in December 2021. This... - [What's New with Power Platform - December 2021](https://petri.com/whats-new-power-platform-december-2021/): Microsoft continues to spoil us with continued updates to the platform as we look to hold true to our New Year's Resolutions. Say no to spreadsheets. (No excel as a data source) Release wave 2 for Power Platform is wrapping up for 2021 with a few tweaks to mention. - [What's New with Windows – December 2021](https://petri.com/whats-new-with-windows-december-2021/): It was a quiet month, as expected. But there were a few significant announcements. Most notably for enterprise IT, Microsoft... - [Top Petri News Posts of 2021](https://petri.com/top-petri-news-posts-of-2021/): Microsoft unveiled a slew of new consumer and enterprise-focused products and services in 2021. It’s been a big year for... - [Microsoft Delivers Emergency Fix For Exchange Y2K22 Bug](https://petri.com/microsoft-delivers-emergency-fix-for-exchange-y2k22-bug/): Microsoft has released an official fix for the “Y2K22” bug that was previously preventing on-premise Exchange servers from sending emails. This... - [Google Confirms Microsoft Teams Bug Can Block Emergency Calls on Android 9 and Lower](https://petri.com/microsoft-teams-bug-blocks-emergency-calls-android-9-and-lower/): Google has started sending out emails recommending users install the Microsoft Teams update as soon as possible to fix a... - [Petri is Looking for Writers](https://petri.com/petri-is-looking-for-writers/): The Petri IT Knowledgebase is looking for writers! Petri is a leading site providing IT professionals with tutorials, news, and... - [What is a Virtual Server?](https://petri.com/what-is-a-virtual-server/): Learn how a virtual server lets a computer run multiple operating systems simultaneously. A virtual server is meant to make the best use of the overall physical compute resources, providing a better return on investment for each organization. Read more here! - [Apache Releases Log4j Version 2.17.1 to Patch New Remote Code Execution Vulnerability](https://petri.com/apache-log4j-2-17-1-patch-remote-code-execution/): Last month, a security researcher discovered a new zero-day exploit in the Apache Log4j Java-based logging library that threat actors... - [Microsoft Teams Meetings Get New Raise Hands Order Feature](https://petri.com/microsoft-teams-meetings-raise-hands-order/): Microsoft Teams has released a new update that brings some improvements to the raise-hand feature in meetings. As pointed out... - [Microsoft 365 E3 vs E5 Plans Compared](https://petri.com/microsoft-365-e3-vs-e5-plans-compared/): Learn the differences between Microsoft 365 E3 and E5 plans to make it easier to decide which one is right for your organization. Both plans offer a huge range of benefits and services, and in this article, you will learn about the advantages of each plan. - [Microsoft Edge Canary Brings Back Legacy Edge Follow RSS Feeds Option](https://petri.com/microsoft-edge-canary-follow-rss-feeds/): Microsoft has started working on a new followable web feature for its Edge browser that will let users subscribe to their... - [Microsoft to Fix Windows 11 Bug Breaking Color Rendering on HDR Displays](https://petri.com/microsoft-fix-windows-11-bug-color-hdr/): Microsoft has acknowledged a new Windows 11 bug that prevents some image editing applications from rendering colors correctly on select... - [Researchers Discover Four New Security Flaws Affecting Microsoft Teams](https://petri.com/four-security-flaws-microsoft-teams/): Security researchers have revealed several new security flaws impacting the “link preview” feature in Microsoft Teams. The cybersecurity company Positive... - [Microsoft Releases Windows 10 Version 21H2 Security Baseline With Tamper Protection And More](https://petri.com/windows-10-21h2-security-baseline-tamper-protection/): Microsoft has announced the release of a new security baseline package for Windows 10 version 21H2. The Redmond giant detailed... - [Microsoft Sentinel Launches New Log4j Vulnerability Solution In Public Preview](https://petri.com/azure-sentinel-log4j-solution-public-preview/): Microsoft has announced some important updates for Microsoft Sentinel, its scalable cloud-native SIEM tool that provides AI-powered security analytics in... - [Latest Skype Update Brings New Zoom-In Feature, View Switcher Option For Meetings](https://petri.com/skype-zoom-in-feature-view-switcher-meetings/): Microsoft has announced the release of a new Skype update, which brings several new platform-specific functionalities. The biggest addition is... - [Microsoft Edge Canary Now Lets Select Insiders Capture Screenshots From PDF Documents](https://petri.com/microsoft-edge-canary-lets-select-insiders-capture-screenshots-from-pdf/): Microsoft Edge has started testing a new update that will allow users to capture screenshots from PDF documents. The feature... - [Microsoft Advises Customers to Patch Active Directory Privilege Escalation Vulnerability](https://petri.com/microsoft-advises-customers-patch-active-directory-privilege-escalation-vulnerability/): Last month, Microsoft released the November Patch Tuesday updates to address two Active Directory (AD) Domain Services privilege escalation security... - [Microsoft Azure Key Vault Automated Key Rotation Now in Public Preview](https://petri.com/microsoft-azure-key-vault-automated-key-rotation-public-preview/): Microsoft has announced that the automated key rotation feature in Azure Key Vault is available in public preview. The service... - [Microsoft Announces Secured-Core Hardware for Windows Server 2022 and Azure Stack HCI](https://petri.com/secured-core-hardware-windows-server-2022-azure-stack-hci/): Earlier this year, Microsoft unveiled its plans to expand the Secured-Core initiative to its server products to help protect organizations... - [How to Secure Unmanaged Devices with Microsoft Defender for Endpoint](https://petri.com/secure-unmanaged-devices-microsoft-defender-endpoint/): Learn how to configure Security Management with Microsoft Defender for Endpoint, including meeting the prerequisites and the exact steps that must be taken in order to get started. This post will go through each of these in detail so that you can get up and running right away. - [Microsoft Teams Rolls Out CART Captioning Support For Meetings To GCC Customers](https://petri.com/microsoft-teams-rolls-out-cart-captioning-support-for-meetings-to-gcc-customers/): Microsoft has started rolling out CART captioning support to its Teams collaboration platform, allowing meeting participants to view real-time captions... - [Azure Bicep Brings Easier Infrastructure as Code to Azure Resource Management](https://petri.com/azure-bicep-infrastructure-as-code/): Learn how Azure Bicep simplifies resource management in the Azure cloud and how it compares to JSON-based Azure Resource Management (ARM) templates. Bicep is a new domain-specific language (DSL) for deploying cloud resources using infrastructure as code. - [Microsoft Office 365 Prices Increasing 20% for Monthly Subscriptions](https://petri.com/microsoft-office-365-prices-increasing-20-for-monthly-subscriptions/): Microsoft is introducing the New Commerce Experience (NCE) subscription model for its Cloud Solution Provider (CSP) partners in January 2022.... - [How to Add a Custom Background in Microsoft Teams Meetings](https://petri.com/add-custom-background-microsoft-teams-meetings/): Learn how to set a custom background for your Microsoft Teams meetings. With Microsoft Teams meetings, you can customize the background with your own images. - [Microsoft Teams Rooms Devices to Add New Front Row Layout for Meetings in Early 2022](https://petri.com/microsoft-teams-rooms-devices-new-front-row-layout-meetings-2022/): Microsoft is planning to roll out a new immersive layout called “front row” on Teams Rooms devices in January 2022.... - [Microsoft to Make Windows Terminal Default Command Line Tool on Windows 11 in 2022](https://petri.com/windows-terminal-default-command-line-windows-11-2022/): Microsoft is getting ready to make Windows Terminal the default terminal tool on Windows 11 machines. The Redmond giant has... - [Microsoft Brings New Organizational Charts Feature to Visio on the Web](https://petri.com/microsoft-new-organizational-charts-visio-on-the-web/): Microsoft has released some important updates for its popular diagramming software Visio, with the web app getting the same organization... - [Patch Tuesday December 2021 - Apache Log4j Panic and Microsoft Plugs Windows AppX Installer Zero Day](https://petri.com/patch-tuesday-december-2021-apache-log4j-windows-appx-installer-zero-day/): This month, a flaw in the Apache Log4j library causes panic, Microsoft patches 67 new CVEs, 7 of which are... - [Microsoft Teams One-To-One Calls Get More Secure With End-To-End Encryption Support](https://petri.com/microsoft-teams-one-to-one-calls-get-more-secure-with-end-to-end-encryption-support/): Learn how to enable support for end-to-end encryption in Microsoft Teams for one-to-one calls. The end-to-end encryption feature is disabled by default, and it’s up to the IT admins to enable it for a specific user group or the entire organization. - [Microsoft Office App for Android to Add a New Video Creation Tool This Month](https://petri.com/microsoft-office-app-android-video-creation/): Learn about a new video recording feature in the Office Mobile app for Android can be used to record short videos up to 90 seconds long with text, annotations, ink, and more. - [Excel on the Web Gets New Queries Pane, Sheet Direction Switcher, and More](https://petri.com/excel-web-queries-pane-sheet-direction-switcher/): Learn about the updates in Excel on the Web in December 2021! Including a searchable data validation list, the queries pane, and text in shapes. - [How to Install WSL on Windows Server](https://petri.com/how-to-install-wsl-on-windows-server/): WSL allows you to run applications natively as Linux processes on Windows. Learn how to install and use WSL on... - [Microsoft Teams Gets New Press To Unmute Feature In Public Preview](https://petri.com/microsoft-teams-gets-new-press-to-unmute-feature-in-public-preview/): Learn how to enable the unmute button in Microsoft Teams desktop app public preview. The update is expected to start rolling out to Standard and Government Cloud Customers (GCC) later this month. - [Microsoft Teams Rolls Out Update to Fix Emergency Calling Bug on Android](https://petri.com/microsoft-teams-rolls-out-update-to-fix-emergency-calling-bug-on-android/):   Last week, Google acknowledged a new issue in Microsoft Teams preventing some Android users in the US from calling... - [Microsoft Says There Will Be No Hyper-V Server 2022 Free Edition](https://petri.com/microsoft-says-there-will-be-no-hyper-v-server-2022-free-edition/): Microsoft has released a special ‘Hyper-V Server‘ core edition with every release of Windows Server Long-Term Servicing Channel (LTSC 2012... - [How to Install Windows 11 - The Ultimate Guide](https://petri.com/install-windows-11/): Learn how to install Windows 11 or perform a Windows 11 upgrade from Windows 10. Installing Windows 11 is quite different than the previous versions of Windows. - [Windows Server Hot Patching Coming to On-Premises Azure Stack HCI](https://petri.com/windows-server-hot-patching-coming-to-on-premises-azure-stack-hci/): Microsoft announced the availability of hotpatching – aka rebootless patching –  in Windows Server Azure Edition earlier this year. At... - [AWS US-East Outage Impacts a Wide Range of Sites and Services](https://petri.com/aws-us-east-outage-impacts-a-wide-range-of-sites-and-services/): It almost seems like the headline could have been “AWS Outage Cancels Christmas”. Underlining the pervasive reliance that so many... - [What is a DHCP Server?](https://petri.com/what-is-a-dhcp-server/): A DHCP Server is a network device that automatically assigns IP addresses and other network settings to endpoints. Learn how the DHCP protocol works, how DHCP Servers automatic IP address assignment, and the pluses and minuses of using DHCP. - [Microsoft Teams: A Step-by-Step Guide to Installation](https://petri.com/microsoft-teams-a-step-by-step-guide-to-installation/): Learn how to download and install Microsoft Teams for your desktop and mobile. This article covers the system requirements, a step-by-step guide to installation, and how to log in to Microsoft Teams account. - [Cloud Conversations Episode 35 - Lesley Crook on Viva, and a Day in the Life with Teams](https://petri.com/cloud-conversations-episode-35-lesley-crook-on-viva-and-a-day-in-the-life-with-teams/): Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing,... - [Microsoft Teams Essentials Most Affordable Collaboration Solution for Small Business](https://petri.com/what-is-microsoft-teams-essentials/): Learn about Microsoft Teams Essentials, including the kind of organizations it is designed for, how it can help your organization, how it compares to Microsoft Teams free edition, and pricing and availability. - [Big Announcements at AWS re:Invent 2021](https://petri.com/big-announcements-at-aws-reinvent-2021/): This year’s AWS re:Invent conference is taking place from Nov. 29 through Dec. 3, 2021 at the Venetian Resort &... - [What's New with Power Platform - November 2021](https://petri.com/whats-new-with-power-platform-november-2021/): Learn about new connectors Power Platform , artificial intelligence, and a much-needed makeover for Power BI, all new in Power Platform for November. Hope you enjoy all the latest updates!  - [What's New with Windows – November 2021](https://petri.com/whats-new-with-windows-november-2021/): Learn what's new with the Windows 10 November 2021 Update, a big cumulative update for Windows 11 with a lot of fixes, and Windows 11 SE is now available for education. - [Microsoft Lists New Features – Offline Mode, Kanban Board View, Rich Text Editor, and More](https://petri.com/microsoft-lists-new-features-offline-mode-kanban-board/): In this article, learn about the new features and when you can expect them to appear in your Microsoft 365 tenant. New features include offline mode, a new Kanban board view, lookup fields across your lists, and more! - [What is Microsoft 365? Everything You Need to Know](https://petri.com/what-is-microsoft-365/): In this article, I'll be answering the question what is Microsoft 365? What it is used for, the different services and applications included in the available subscription plans, pricing, and how to secure and manage your data and services in the Microsoft cloud, and how it compares to Office 365 - [Protecting the Different Types of Microsoft 365 Data](https://petri.com/protecting-the-different-types-of-microsoft-365-data/): In this article, you'll learn about the different types of Microsoft 365 data and the kind of protection that's available for them. Microsoft is responsible for app availability but customers are responsible for protecting data in the cloud. - [Cloud Conversations Episode 34 - Sophie Dimelow on Women in Tech and Community](https://petri.com/cloud-conversations-episode-34-sophie-dimelow-on-women-in-tech-and-community/): Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing,... - [Microsoft Patches Azure Active Directory Private Key Data Vulnerability](https://petri.com/microsoft-patches-azure-active-directory-private-key-data-vulnerability/): Learn how to mitigate the recently patched Microsoft Azure Active Directory private key data vulnerability. In this article, you will find out what the issue is, which services and apps it affects, and links to Microsoft official remediation guides. - [Microsoft Announces Teams Phone with Calling Plan](https://petri.com/microsoft-announces-teams-phone-with-calling-plan/): Learn how Microsoft is simplifying management and lowering costs with its new Teams Phone with Calling Plan option for SMBs. Starting January 1, 2022, customers in 33 markets will be able to purchase Teams Phone with Calling Plan directly from Microsoft. - [Semperis Hybrid Identity Protection Conference 2021](https://petri.com/semperis-hybrid-identity-protection-conference-2021/): Learn about the foundations of the Hybrid Identity Protection Conference, the value it brings to IT pros, especially those working with Active Directory, and about how technologies, like Verifiable Credentials and passwordless authentication, will affect the hybrid identity landscape in the future. - [How to Deploy Microsoft Defender Application Control (Previously WDAC)](https://petri.com/how-to-deploy-microsoft-defender-application-control-previously-wdac/): Previously known as Windows Defender Application Control (WDAC), Microsoft Defender Application Control (MDAC) is now accessible to organizations using Windows 10 and 11 Professional. Learn how to deploy MDAC using Microsoft Intune and Configuration Manager. - [How to Create a Team in Microsoft Teams](https://petri.com/how-to-create-a-team-in-microsoft-teams/): Microsoft Teams is a chat-based workspace that groups people and enables them to share and collaborate on ideas and information.... - [Cloud Conversations EP33 – Sheryl Netley on Power Platform](https://petri.com/cloud-conversations-ep33-sheryl-netley-on-power-platform/): In this week's episode, Sheryl Netley, who is a Microsoft Power Platform MVP, discusses how she changed the focus of her career, attending and speaking at events, women in Power Platform, forming habits to get the most out of your day, and much more! - [How to Manage Access Reviews within Microsoft 365](https://petri.com/how-to-manage-access-reviews-within-microsoft-365/): In this article, I'm going to show you how to audit security in Microsoft 365 with Access Reviews in Azure Active Directory (AAD). Learn how to set up and run Access Reviews from the Azure management portal and using the Microsoft Graph and PowerShell. - [Microsoft Defender for Business Brings Enterprise-Grade Endpoint Security to SMEs](https://petri.com/microsoft-defender-for-business-brings-enterprise-grade-endpoint-security-to-smes/): In this article, you'll learn what Microsoft Defender for Business is, what it includes, and what benefits it brings to SMEs with up to 300 employees. - [Windows 10 November 2021 Update (21H2) Release and New Features for IT Pros](https://petri.com/windows-10-november-2021-update-21h2-release-and-new-features-for-it-pros/): 16th November 2021, Microsoft made the Windows 10 November 2021 Update (21H2) generally available. In this article, I’m going to... - [Windows Subsystem for Linux and Hyper-V Get USB Passthrough Support](https://petri.com/windows-subsystem-for-linux-and-hyper-v-get-usb-passthrough-support/): In this article, I explain how Microsoft has added USB device passthrough support to Windows Subsystem for Linux 2 (WSL) and Hyper-V. Click to learn more! - [Microsoft Issues Emergency Update Fix for Windows Server SSO Authentication Bug](https://petri.com/microsoft-issues-emergency-update-fix-for-windows-server-sso-authentication-bug/): Microsoft has issued an out-of-band emergency update fix to patch an authentication issue that was caused by the November 9th... - [Cloud Site List Management for IE Mode Enters Public Preview](https://petri.com/cloud-site-list-management-for-ie-mode-enters-public-preview/): As part of Microsoft’s flurry of announcements out of Ignite November 2021, a new feature to assist IT Pros with... - [The Ultimate Guide to Installing OpenSSH on Windows](https://petri.com/the-ultimate-guide-to-installing-openssh-on-windows/): In this mega 'how-to' guide, you'll learn how to install and configure OpenSSH on Windows. Find out how to connect remotely to Linux, Unix, Oracle, Windows, Windows Server, and other operating systems via the secure command line. Click to learn more! - [AWS Announces the Ability to Switch Windows Server and SQL Server License Types](https://petri.com/aws-announces-the-ability-to-switch-windows-server-and-sql-server-license-types/): AWS now offers the ability to switch between AWS provided licenses and bring your own licenses (BYOL) for Windows Server and SQL Server instances using the AWS License Manager. Click to learn more! - [Microsoft Retiring Desktop Analytics in 2022](https://petri.com/microsoft-retiring-desktop-analytics-in-2022/): Microsoft is ending support for Desktop Analytics in 2022. In this article, I'll explain how Microsoft Endpoint Manager (MEM) Endpoint analytics will be replacing it, what the new features are, and what you need to do to take advantage of it. Click to learn more! - [Patch Tuesday November 2021 - Microsoft Patches Windows RDP Zero-Day and Exchange RCE](https://petri.com/patch-tuesday-november-2021-microsoft-patches-windows-rdp-zero-day-and-exchange-rce/): Patch Tuesday in November 2021 sees Microsoft release patches to address 55 CVEs, including fixes for 6 zero-day bugs. There... - [Understanding Microsoft Information Protection](https://petri.com/understanding-microsoft-information-protection/): In this article, we'll tackle Microsoft Information Protection (MIP), explaining exactly what it is and the many services, features, and capabilities that comprise it. Click to learn more! - [Microsoft Defender for Cloud Supports AWS](https://petri.com/microsoft-defender-for-cloud-supports-aws/): Microsoft Defender for Cloud provides critical security functions for your resources and workloads in multiple clouds and on-premises. This article describes what Defender for Cloud is and what cloud platforms it supports. Click to learn more! - [Visio on the Web Coming to Microsoft 365 Commercial Users](https://petri.com/visio-on-the-web-coming-to-microsoft-365-commercial-users/): Every user with an Office 365 or Microsoft 365 commercial subscription is entitled to Visio on the Web at no additional cost. Learn more here! - [3CX Teams Integration](https://petri.com/3cx-teams-integration/): This article describes the new Teams integration in 3CX and how you can now use it to help bridge the gap in places where we are hosting our own session boarder controller (SBC). - [Microsoft Teams Ignite November 2021 News Roundup](https://petri.com/microsoft-teams-ignite-november-2021-news-roundup/): In this article, I'm going to cover all the important new Microsoft Teams features announced in November 2021 at Ignite, including updates to chat, collaboration, the metaverse, Teams Rooms, and much more. - [Microsoft 365 Built-in Data Protection](https://petri.com/microsoft-365-built-in-data-protection/): Let’s take a closer look at Microsoft 365’s built-in data protection technologies and see what steps you might need to take for your own complete data protection needs. - [Microsoft Loop is Rebrand of Fluid Framework](https://petri.com/microsoft-loop-is-rebrand-of-fluid-framework/): At its Ignite conference yesterday, Microsoft announced that some parts of its Fluid Framework are being rebranded as Microsoft Loop.... - [Microsoft Ignite – Highlights for IT Pros](https://petri.com/microsoft-ignite-highlights-for-it-pros/): In this article, I'm going to cut through all the marketing spiel and highlight my picks for the Microsoft Ignite November 2021 sessions that will be most important for Petri readers. - [What's New with Power Platform - October 2021 Edition](https://petri.com/whats-new-with-power-platform-october-2021-edition/): Lots to cover this month! So, let’s get started with what’s new with Power Platform in October 2021. Release wave... - [What's New with Windows – October 2021 Edition](https://petri.com/whats-new-with-windows-october-2021-edition/): Windows 11 is now generally available, there are already fixes for a long list of bugs and performance issues with... - [Microsoft Brings HTTP/3 via Windows Server 2022 to Exchange Online](https://petri.com/microsoft-brings-http-3-via-windows-server-2022-to-exchange-online/): In this article, I explain how Microsoft has dramatically increased performance of frontend Exchange Online servers by deploying Windows Server 2022 and HTTP/3. - [How to Download the Windows 11 ISO](https://petri.com/windows-11-iso-download/): In this quick guide, I’m going to show you how to download the Windows 11 ISO image file, which you... - [Using Microsoft 365 Defender Threat Analytics to Improve Security](https://petri.com/using-microsoft-365-defender-threat-analytics-to-improve-security/): Managing your security posture and responding to threats is an ongoing operation. And in this article, I'm going to describe how to use Microsoft 365 Defender Threat Analytics to improve security in your organization. - [Ransomware Risks for Microsoft 365](https://petri.com/ransomware-risks-for-microsoft-365/): With the rise in remote workers the risk of ransomware is higher than it has ever been before. By now... - [Windows 11 on Intel Alder Lake Threatens to Outperform Apple M1 Pro and M1 Max Chips](https://petri.com/windows-11-on-intel-alder-lake-threatens-to-outperform-apple-m1-pro-and-m1-max-chips/): Wccftech recently got their hands on benchmarks for a pre-release Core i9-12900HK Alder Lake mobile chip. And in a Geekbench 5.4.1 test, the i9-12900HK apparently outperforms the Apple M1 Max. - [AWS Panorama Provides Computer Vision](https://petri.com/aws-panorama-provides-computer-vision/): The AWS Panorama appliance is a computer vision (CV) appliance that uses Machine Learning (ML) to analyze images provided by your on-premises cameras. - [Surface Duo 2: Better Hardware, Same Productivity](https://petri.com/surface-duo-2-better-hardware-same-productivity/): The Surface brand is full of products that tried something different. The classic Pro put a different spin on a... - [How to Validate Applications Using Test Base for Microsoft 365](https://petri.com/how-to-validate-applications-using-test-base-for-microsoft-365/): Test Base for Microsoft 365 is a platform which allows you to script and automate your application compatibility testing. In this article, I will take you through the steps in Azure required to test apps before you deploy them. - [How to Avoid Disaster Recovery Failures](https://petri.com/how-to-avoid-disaster-recovery-failures/): Experiencing a disaster is one of the worst possible events for both businesses and their IT departments. However, there is... - [Windows 11 is the Most Inclusive and Accessible Windows to Date](https://petri.com/windows-11-is-the-most-inclusive-and-accessible-windows-to-date/): Windows 11 makes huge steps forward in terms of accessibility, making most scenarios simply more accessible by default. In this article, I walk through the key accessibility features in Windows 11. - [Microsoft is Bringing Update Stack Packages to Windows 11](https://petri.com/microsoft-is-bringing-update-stack-packages-to-windows-11/): Update Stack Packages deliver changes to the Windows 11 update experience before a monthly cumulative update (CU), or yearly feature update, is pushed out to Windows 11 devices. Update Stack Packages shouldn't be confused with servicing stack updates or feature experience packs. - [How to Join the Windows Insider Program and Upgrade Your Device](https://petri.com/how-to-join-the-windows-insider-program-and-upgrade-your-device/): This post will walk you through joining the Windows Insider Program on a device, and the distinct options you have in joining the WIP train and offering feedback to Microsoft about the future of Windows. - [Microsoft Defender for Endpoint - Important Service and Endpoint Settings You Should Configure Right Now](https://petri.com/microsoft-defender-for-endpoint-which-settings-configure-right-now/): In this article, I'll talk you through some of the key and most important Microsoft for Endpoint configuration settings you need to know about, specifically for Windows 10 and Windows 11, and general advice on getting up and running. - [Smooth Scrolling Comes to Excel for Windows](https://petri.com/smooth-scrolling-comes-to-excel-for-windows/): Microsoft Excel is getting an update that will make it easier to scroll through a worksheet with large cells and view all the data. In this article, I explain how Microsoft has solved this problem and when you can expect to see it arrive in Excel. - [Microsoft Intune App Protection Policies Get Improved Targeting Capabilities](https://petri.com/microsoft-intune-app-protection-policies-get-improved-targeting/): With the release of Microsoft Intune Service Release 2109, App Protection policies now support targeting to categories of applications. The categories are All Apps, All Microsoft Apps, and Core Microsoft Apps. - [Microsoft Teams Desktop Client Gets Quoted Reply Feature for Chat](https://petri.com/microsoft-teams-desktop-client-gets-quoted-reply-feature-for-chat/): The Microsoft Teams desktop client is getting a long-awaited feature update that lets you send quoted replies to messages in... - [Patch Tuesday October 2021 – Microsoft Fixes Windows Kernel Zero-Day and Critical Bug in Exchange Server](https://petri.com/patch-tuesday-october-2021-microsoft-fixes-windows-kernel-zero-day-and-critical-bug-in-exchange-server/): This month’s Patch Tuesday for includes a cumulative update (CU) for Windows 11, which was made generally available October 4th.... - [Amazon Announces the General Availability of VMware Cloud on AWS Outposts](https://petri.com/amazon-announces-the-general-availability-of-vmware-cloud-on-aws-outposts/): This past Oct 5th 2021, Amazon announced the general availability of VMware Cloud on AWS Outposts. In case you’re not... - [External Sharing and Guest User Access in Microsoft 365 and Teams](https://petri.com/external-sharing-and-guest-user-access-in-microsoft-365-and-teams/): Sharing content with users external to your organization and managing guest user access in Microsoft 365 and Microsoft Teams can... - [Endpoint Management 1-Day Virtual Conference Now Available On Demand](https://petri.com/endpoint-management-1-day-virtual-conference-now-available-on-demand/): Free 1-day conference on using endpoint management to manage and deploy devices with Microsoft Intune, Windows Autopilot, Configuration Manager, and Windows Update. - [How to Install the New Microsoft Defender for Endpoint Agent on Windows Server 2012 R2 and 2016](https://petri.com/how-to-install-defender-for-endpoint-server-2012-r2-2016/): In this article, I'll show you how to install the new Microsoft Defender for Endpoint agent in Windows Server 2012 R2 and Windows Server 2016. The new agent brings additional protection capabilities to these server platforms and is currently in public preview. - [The New Microsoft Whiteboard App is Here](https://petri.com/the-new-microsoft-whiteboard-app-is-here/): The new Microsoft Whiteboard app brings many new features, including a new modern look, over 40 new templates, reactions, and the ability to insert images and shapes. - [Microsoft Defender for Endpoint Pricing Plans](https://petri.com/microsoft-defender-for-endpoint-pricing-plans/): Microsoft recently announced that Microsoft Defender for Endpoint will soon be available in two plans: P1 and P2. In this article, I will look at how the two plans compare. - [Everything You Wanted to Know About the Windows Insider Program](https://petri.com/what-is-windows-insider-program/): In this article, I look at how the Windows Insider Program is used to test new features, help shape the future of Microsoft Windows, and the history of the program. - [Microsoft Teams Gets Faster AI-Powered Search](https://petri.com/microsoft-teams-gets-faster-ai-powered-search/): Microsoft announced yesterday that it is updating the search experience in its desktop client for Teams. While we wait for... - [Surface Laptop Studio: Building a Better Mousetrap](https://petri.com/surface-laptop-studio-building-a-better-mousetrap/): Several years ago, Microsoft took to the stage in New York City and unveiled the Surface Book, a device that... - [Surface Pro 8: Better in Nearly Every Way](https://petri.com/surface-pro-8-better-for-the-office-but-not-the-budget/): If there is one device that defines the Surface brand, it’s the Pro. The hardware is the backbone of the... - [Windows 11 New Features, Release Date and System Requirements](https://petri.com/windows-11-new-features-release-date-and-system-requirements/): Windows 11 is generally available this week. In this article, I look at Windows 11 new features, when it will be released, and the minimum system requirements. - [Azure Virtual Desktop Now Comes with Azure AD-Joined VM Support](https://petri.com/azure-virtual-desktop-now-comes-with-azure-ad-joined-vm-support/): Azure Virtual Desktop now supports Azure Active Directory (AD) joined virtual machines (VM). The new Azure AD support works with personal desktops that have local user profiles; pooled desktops used as a jump box; and pooled desktops or apps where users don't need to save data on the VM. - [What's New with Power Platform - September 2021](https://petri.com/whats-new-power-platform-september-2021/): Automate together Collaboration has now become much easier in Power Automate. The new co-presence feature will allow multiple users to edit... - [What's New with Windows – September 2021](https://petri.com/whats-new-with-windows-september-2021/): It’s been a relatively quiet month for Windows as Microsoft gets down to finalizing Windows 11 for an October 5th... - [What's New with Azure – September 2021](https://petri.com/whats-new-azure-september-2021/): Microsoft recently announced that their Ignite (online only) conference will be running again on November 2-4. That means we are... - [How to Join the Windows Insider for Business Program](https://petri.com/how-to-join-the-windows-insider-for-business-program/): This post will demonstrate how you can join the Windows Insider Program for Business and start deploying Windows 10 and Windows 11 insider builds in your enterprise. - [Microsoft Announces New Collaborative Features for Teams Phone](https://petri.com/microsoft-announces-new-collaborative-features-for-teams-phone/): Microsoft is developing Teams Phone to be the most collaborative solution on the market. Microsoft announced earlier this week several new features to Teams Phone to update the platform for modern cloud calling and to integrate calling better into people's workflow. - [Citrix Taps Mark Palomba to Lead its Global Partner Program](https://petri.com/citrix-taps-mark-palomba-to-lead-its-global-partner-program/): Citrix Systems has named Mark Palomba to head the company’s global channels organization. Citrix Taps Mark Palomba to Lead its... - [GET-IT: Endpoint Management 1-Day Virtual Conference is Today](https://petri.com/get-it-endpoint-management-virtual-conference-today/): Petri’s GET-IT: Endpoint Management 1-Day virtual conference is a full day of free learning where we will be diving deep... - [Amazon Announces the General Availability of EKS Anywhere](https://petri.com/amazon-announces-the-general-availability-of-eks-anywhere/): Amazon EKS Anywhere is a deployment option for Amazon EKS that enables you to create and operate Kubernetes clusters on-premises... - [How to Mitigate Microsoft Exchange Autodiscover Protocol Flaw That Leaks User Credentials](https://petri.com/how-to-mitigate-microsoft-exchange-autodiscover-protocol-flaw-that-leaks-user-credentials/): In this article, I explain how the recently discovered flaw in the Exchange Server Autodiscover protocol can leak user credentials.... - [Windows 11 is Faster, Even on Identical Hardware](https://petri.com/windows-11-is-faster-even-on-identical-hardware/): Microsoft has improved the speed of Windows 11 by optimizing memory and CPU usage. Other improvements include 40% smaller updates, smaller OS disk footprint, and changes to the servicing and update orchestration model for IT pros. - [Using Polls for Better Engagement in Microsoft Teams Meetings](https://petri.com/microsoft-teams-polls-better-engagement-in-meetings/): Microsoft Teams Polls. Here we'll share tips on '4' distinct types of polls in Microsoft Teams. The end goal is to better assess meeting participation, membership information retention, overall focus of attendees in your meetings, and the openness of traditional in-person human interaction. - [Surface Laptop Studio: Microsoft’s New Portable Workstation](https://petri.com/surface-laptop-studio-microsofts-new-portable-workstation/): Today, Microsoft is unveiling its refreshed lineup that includes updating most of the products in its lineup. But the company... - [Microsoft Refreshes Surface Lineup with Duo 2, Pro 8, and Go 3 and More](https://petri.com/microsoft-refreshes-surface-lineup-with-duo-2-pro-8-and-go-3-and-more/): For fans of Surface, today is a good day. Microsoft has announced a significant refresh to its lineup that includes... - [How to Join Windows Server 2022 Core to Active Directory](https://petri.com/join-windows-server-2022-core-to-active-directory/): In this post, I will show you how to join Windows Server 2022 Core to an Active Directory (AD) domain.... - [How Can I Move a File or Folder from the Command Line Using Windows PowerShell?](https://petri.com/move-file-folder-from-command-line-powershell/): Discover how to use PowerShell to move files and folders in this Ask the Admin. Find out how to move MP3 files, filter, move .txt files, and more. - [How to Install Windows Server 2022 Core](https://petri.com/how-to-install-windows-server-2022-core/): In this post, I will demonstrate how to install Windows Server 2022 the way Microsoft recommends... using the ‘Server Core’... - [How to Customize Endpoint Security Settings in Microsoft Intune](https://petri.com/how-to-customize-endpoint-security-settings-in-microsoft-intune/): In this article, I’m going to show you how to customize endpoint security settings in Microsoft Intune. Including how to... - [Nerdio Now Manages More Than 1 Million VDI Users in Azure](https://petri.com/nerdio-now-manages-more-than-1-million-vdi-users-in-azure/): Cloud virtual desktop provider Nerdio, which hosts its VDI service in Azure, now manages more than 1 Million Windows users.... - [How to Create a Compliance Policy in Microsoft Intune](https://petri.com/how-to-create-a-compliance-policy-in-microsoft-intune/): In this article, I’m going to show you how to create a compliance policy in Intune, Microsoft’s Mobile Device Management... - [How to Enable Windows Hello for Business](https://petri.com/how-to-enable-windows-hello-for-business/): In this article, I’m going to show you how to enable Windows Hello for Business. You should enable Windows Hello... - [Patch Tuesday September 2021 – Microsoft fixes MSHTML Zero-Day and Apple Blocks NSO Group Surveillance Spyware](https://petri.com/patch-tuesday-september-2021-microsoft-fixes-mshtml-zero-day-and-apple-blocks-nso-group-surveillance-spyware/): This month, Microsoft released a fix for the MSHTML zero-day that emerged earlier in September. And it fixes a serious... - [Microsoft Brings Passwordless Sign-In to Consumer Accounts](https://petri.com/microsoft-brings-passwordless-sign-in-to-consumer-accounts/): Back in March 2021, Microsoft introduced a passwordless sign-in experience for work or school accounts. With the help of the... - [Microsoft Viva Connections - Coming to Public Preview](https://petri.com/microsoft-viva-connections-coming-to-public-preview/): Because of the ever-evolving shift of the workforce and the workplace from ‘in-house’ to hybridization, hybrid work is reshaping how... - [How to Add a Server to a SharePoint Farm](https://petri.com/how-to-add-a-server-to-a-sharepoint-farm/): Back in July 2021, I wrote a post explaining how to install SharePoint Server Subscription Edition in a virtual machine... - [Microsoft Buys Clipchamp Video Creation App](https://petri.com/microsoft-buys-clipchamp-video-creation-app/): Last week, Microsoft announced that it had bought Clipchamp, a browser-based video creation app. Founded in 2013, Clipchamp’s mission is... - [How to Join Windows 10 to Azure Active Directory](https://petri.com/how-to-join-windows-10-to-azure-active-directory/): Registering Windows 10 devices with an identity provider, like Azure Active Directory (recently renamed Microsoft Entra ID), is an important... - [Microsoft Start Comes to Android, iOS, and Windows 10 News and Interests](https://petri.com/microsoft-start-comes-to-android-ios-and-windows-10-news-and-interests/): When Microsoft announced that it would be rolling out a new taskbar feature called News and Interests in Windows 10... - [AWS Adds Support for NetApp ONTAP](https://petri.com/aws-adds-support-for-netapp-ontap/): One of the major announcements from this past AWS Storage Day 2021, September 2nd 2021, was Amazon FSx for NetApp... - [Microsoft Provides Temporary Fix for Office 365 Zero-Day](https://petri.com/microsoft-provides-temporary-fix-for-office-365-zero-day/): September 7th, Microsoft released a security advisory for a remote code execution vulnerability (CVE-2021-40444) in Microsoft MSHTML, the rendering engine... - [Distributors Synnex and Tech Data Complete Merger, Combined Company is Now TD Synnex](https://petri.com/distributors-synnex-and-tech-data-complete-merger-combined-company-is-now-td-synnex/): IT distributor Synnex last week completed its acquisition of Tech Data in a deal valued at $8. 3 billion. Rich... - [BWW Media Group names Russell Smith the Editorial Director for the Petri IT Knowledgebase](https://petri.com/bww-media-group-names-russell-smith-the-editorial-director-for-the-petri-it-knowledgebase/): A Letter from George A. Coll, CEO and Managing Partner, BWW Media Group BWW Media Group is delighted to share... - [How to Register Windows 10 with Azure Active Directory](https://petri.com/how-to-register-windows-10-with-azure-active-directory/): Registering Windows 10 devices with an identity provider, like Azure Active Directory (recently renamed Microsoft Entra ID), is an important... - [What's New in Azure AD Connect V2](https://petri.com/whats-new-in-azure-ad-connect-v2/): Azure AD Connect is a free tool from Microsoft that’s used for synchronizing objects between on-premises Windows Server Active Directory... - [Microsoft Offers Free Support for Windows 11 and Windows 10 21H2 Commercial Previews](https://petri.com/microsoft-offers-free-support-for-windows-11-and-windows-10-21h2-commercial-previews/): Microsoft announced September 2nd that it is releasing Windows 11 and Windows 10 (version 21H2) commercial previews. Organizations in the... - [Microsoft Viva Increasing its Branding to More 'Personal Insights' for Microsoft 365 Users](https://petri.com/microsoft-viva-increasing-its-branding-to-more-personal-insights-for-microsoft-365-users/): Over the coming months, Microsoft will be re-branding some of what Microsoft calls ‘personal insights’ into your daily flow in... - [What's New with Power Platform - August 2021 Edition](https://petri.com/whats-new-with-power-platform-august-2021-edition/): As mentioned last month, the Power Platform release wave two commenced in August. While not all of the planned features... - [What's New with Azure Infrastructure – August 2021 Edition](https://petri.com/whats-new-with-azure-infrastructure-august-2021-edition/): I think you’ll find that there are quite a few announcements this month. The summer quiet period is over, and... - [What's New with Windows – August 2021 Edition](https://petri.com/whats-new-with-windows-august-2021-edition/): Microsoft announces Windows 11 release date, tweaks the Windows 11 minimum hardware requirements (but not much), and Windows 365 goes... - [WireGuard VPN Gets Port to Windows Kernel but Don't Run Out to Replace IPsec or OpenVPN](https://petri.com/wireguard-vpn-gets-port-to-windows-kernel-but-dont-run-out-to-replace-ipsec-or-openvpn/): WireGuard is a Virtual Private Network (VPN) protocol that was first developed in 2016 by security researcher Jason A. Donenfeld.... - [Windows 11 Arrives October 5th Without Android Apps](https://petri.com/windows-11-arrives-october-5th-without-android-apps/): Earlier this year, Microsoft announced Windows 11 with a refreshed interface, new widgets, and an updated store. But to run... - [Using SYSPREP in Windows 11](https://petri.com/using-sysprep-in-windows-11/): Deploying Windows 11 to hundreds or even thousands of devices can be automated if you have a system image that... - [Windows Server 2022 Series - Part 3 - Upgrading Final 3 Servers](https://petri.com/windows-server-2022-series-part-3-upgrading-final-3-servers/): Welcome to Part 3 of my Windows Server 2022 Series. This series of posts has chronicled the upgrade of my... - [Contact Center Provider NICE Joins Microsoft’s Business Apps ISV Connect Program](https://petri.com/contact-center-provider-nice-joins-microsofts-business-apps-isv-connect-program/): Contact Center Provider NICE Joins Microsoft’s Business Apps ISV Connect Program NICE, among the leading contact center platform providers, this... - [Microsoft Finalizes Windows 11 Hardware Requirements](https://petri.com/microsoft-finalizes-windows-11-hardware-requirements/): Back in June, when Microsoft announced Windows 11, the company received praise for the interface and scorn for the lack... - [Microsoft Pulls Azure Cosmos DB Component After Major Security Issue Exposed](https://petri.com/microsoft-pulls-azure-cosmos-db-component-after-major-security-issue-exposed/): It has been revealed that Microsoft pulled a component of its Azure Cosmos DB service earlier this month because of... - [Installing Windows 11 Just Became Much Easier with New ISO Download Option](https://petri.com/installing-windows-11-just-became-much-easier-with-new-iso-download-option/): If you’ve been waiting to test out Window 11, now might be the time! After initially making the first preview... - [Windows Server 2022 Series - Upgrading 2 more DCs and Fileserver (Core) to 2022](https://petri.com/windows-server-2022-series-upgrading-2-more-dcs-and-fileserver-core-to-2022/): Welcome to Part 2 of my Windows Server 2022 Series. I am progressing through my Hyper-V lab, upgrading all the... - [Microsoft Improves Windows 10 Device Control with new 'Apply Layered' Group Policy Setting](https://petri.com/microsoft-improves-windows-10-device-installation-control-with-new-apply-layered-group-policy-setting/): Along with the Windows 10 quality updates in August, Microsoft added a new feature to Group Policy which will allow... - [Microsoft Ignite Free Virtual Event Coming in November](https://petri.com/microsoft-ignite-free-virtual-event-coming-in-november/): Microsoft has announced that it will be bringing back its Ignite conference this November, again in virtual form. Running from... - [Windows Server 2022 Now Available for Evaluation and to Volume License and Azure Customers](https://petri.com/windows-server-2022-now-available-for-evaluation-and-to-volume-license-and-microsoft-azure-customers/): Back in June this year, Microsoft sent the final Windows Server 2022 bits to OEMs for testing. And without so... - [GET-IT: Advanced Microsoft 365 1-Day Conference is Today](https://petri.com/get-it-advanced-microsoft-365-1-day-conference-is-today/): Petri’s GET-IT: Advanced Microsoft 365 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft... - [Patch Microsoft Exchange Servers Now to Stop LockFile Ransomware](https://petri.com/patch-microsoft-exchange-servers-now-to-stop-lockfile-ransomware/): The LockFile ransomware group has been actively launching attacks against Microsoft Exchange Servers, exploiting three vulnerabilities that were patched by... - [Get Ready for the 2021 AWS Summit Online– Americas](https://petri.com/get-ready-for-the-2021-aws-summit-online-americas/): It’s time to get ready for the big online AWS event of the year – the AWS Summit Online for... - [B2B Hardware and Software Revenues through Channel Rose in First Half of 2021](https://petri.com/b2b-hardware-and-software-revenues-through-channel-rose-in-first-half-of-2021/): B2B Hardware and Software Revenues through Channel Rose in First Half of 2021 Sales of hardware and software through the... - [How to Deploy Zero Trust Identity Security](https://petri.com/how-to-deploy-zero-trust-identity-security/): This is the second article in the Zero Trust Security in Microsoft 365 series. Here you will gain an understanding... - [Microsoft announces Price Increase for Microsoft and Office 365](https://petri.com/microsoft-announces-price-increase-for-microsoft-and-office-365/): Microsoft’s Office 365 suite is the crown jewel of Software-as-a-Service. The productivity suite was launched a decade ago and now... - [New Notes and Comments Functionality Rolling Out to Excel on the Web](https://petri.com/new-notes-and-comments-functionality-rolling-out-to-excel-on-the-web/): On one of Microsoft’s Office Insider blogs, a PM on the Excel team recently announced new functionality in the helpfully... - [Azure Sentinel Gets Fusion AI Early Ransomware Detection in Preview](https://petri.com/azure-sentinel-gets-fusion-ai-early-ransomware-detection-in-preview/): Earlier this month, the Azure Sentinel and Microsoft Threat Intelligence Center (MSTIC) teams announced the public availability of ‘Fusion detection... - [Microsoft's Investment in Rubrik is a Shakeup for the Industry](https://petri.com/microsofts-investment-in-rubrik-is-a-shakeup-for-the-industry/): Microsoft and Rubrik are announcing today an agreement that will likely shakeup the industry. Rubrik, a company that provides data... - [Upgrading to Windows Server 2022 Active Directory](https://petri.com/windows-server-2022-series-upgrading-dc-from-2016-to-2022/): I’m kicking off my series to upgrade my Hyper-V lab running Active Directory Domain Services. I’ll be performing in-place upgrades... - [Microsoft Looks to Improve Azure Active Directory Compliance and Security Breach Prevention](https://petri.com/microsoft-acquires-cloudknox-to-improve-azure-active-directory-compliance-and-security-breach-prevention/): Microsoft recently announced that it acquired CloudKnox Security, a security management solution for businesses that use more than one cloud... - [Microsoft Extends its Services Partnership with EY](https://petri.com/microsoft-extends-its-services-partnership-with-ey/): Microsoft Extends its Services Partnership with EY Less than a year after the formation of the EY Microsoft Services Group,... - [Amazon Retires EC2-Classic](https://petri.com/amazon-retires-ec2-classic/): It seems hard to believe but Amazon Web Services EC2 was first launched back in 2006. It was Amazon’s third... - [Microsoft Rolls out new Windows 11 Build with Updated In-Box Apps](https://petri.com/microsoft-rolls-out-new-windows-11-build-with-updated-in-box-apps/): Microsoft has released a new build of Windows 11 and with this release, the company is pushing out updates for... - [Patch Tuesday August 2021 – Microsoft Bolsters PrintNightmare and PetitPotam Protections](https://petri.com/patch-tuesday-august-2021-microsoft-bolsters-printnightmare-and-petitpotam-protections/): August sees Microsoft release the smallest number of security fixes for its products so far this year. In fact, it’s... - [Default Keys for Windows Server 2019 and Windows 10 Deployment](https://petri.com/windows-server-2016-windows-10-product-keys/): In Windows 10, Windows Server 2016, and later versions of Windows, you can perform a full installation of the operating... - [Microsoft Acquires Peer5 to Improve Teams Video Functionality](https://petri.com/microsoft-acquires-peer5-to-improve-teams-video-functionality/): If you based your expectations on the month of July about what types of companies Microsoft was looking to acquire,... - [Do More with Teams Meeting Recordings in Microsoft 365](https://petri.com/do-more-with-teams-meeting-recordings-in-microsoft-365/): When Microsoft first announced Teams Meeting Recordings, they were stored in Microsoft Stream, a new SharePoint-based website (stream. office. com).... - [How to Enable Remote Desktop in Windows Server 2022 for Remote Administration](https://petri.com/how-to-enable-remote-desktop-in-windows-server-2022-for-remote-administration/): Remote Desktop Services (RDS) is a feature in Windows Server 2022 that lets multiple users connect simultaneously and access applications... - [AWS Picks Up Share, Aims to Expand Microsoft Workload Migrations](https://petri.com/aws-picks-up-share-aims-to-expand-microsoft-workload-migrations/): AWS Picks Up Share, Aims to Expand Microsoft Workload Migrations While Microsoft and Google have eaten into AWS share of... - [Microsoft to Sunset OneNote for Windows 10, OneNote is the Future](https://petri.com/microsoft-to-sunset-onenote-for-windows-10-onenote-is-the-future/): One of the ironies of Microsoft’s OneNote app is that on Windows, it’s not one app, but there are two... - [Give your Emails, Calendar, Tasks a boost with My Day in Outlook Web](https://petri.com/give-your-emails-calendar-tasks-a-boost-with-my-day-in-outlook-web/): Ever feel the pain of switching between your Inbox and Calendar, maybe looking up an appointment, or even wanting to... - [What’s New with Azure – July 2021 Edition](https://petri.com/whats-new-with-azure-july-2021-edition/): July – a month that many take a vacation in, and it’s the start of the commercial year for Microsoft.... - [Microsoft Drops Semi-Annual Channel Releases Starting with Windows Server 2022](https://petri.com/microsoft-drops-semi-annual-channel-releases-starting-with-windows-server-2022/): Microsoft has announced that it is dropping Semi-Annual Channel (SAC) releases for Windows Server. Starting with Windows Server 2022 there... - [What’s New with Power Platform – July 2021](https://petri.com/whats-new-with-power-platform-july-2021/): I am headed out on a family vacation so I plan to keep this one short and sweet but did... - [How to Achieve World-Class Windows Patching Like a Pro](https://petri.com/how-to-achieve-world-class-windows-patching-like-a-pro/): One of the most difficult and rewarding topics on an IT Pro’s plate – Patching. If you’re an IT Pro... - [Windows 365 Is Now Generally Available, Pricing Revealed](https://petri.com/windows-365-is-now-generally-available-pricing-revealed/): Right on target, Microsoft has announced that Windows 365 is generally available. This means that the service, while only announced... - [What’s New with Windows – July 2021 Edition](https://petri.com/everything-you-need-to-know-about-windows-july-2021-edition/): July and August are usually a quiet time at Microsoft. But this year, there’s a little more buzz than usual... - [Acronis Adds File Sync and Sharing Tool for MSPs](https://petri.com/acronis-adds-file-sync-and-sharing-tool-for-msps/): Kaseya Denies Paying Ransom for Key that Unlocks Data Encrypted by REvil Attack Plagued by ransomware attacks that exploited zero-day... - [Amazon ECS io2 Block Express Volumes is a SAN in Cloud](https://petri.com/amazon-ecs-io2-block-express-volumes-provides-a-san-in-cloud/): On July 19th 2021, Amazon announced the general availability of their new Amazon ECS io2 Block Express volumes service.  ... - [How to Enable Telnet Client in Windows 11 and Server 2022](https://petri.com/enable-telnet-client-in-windows-11-and-server-2022/): Telnet is a client/server protocol used for accessing remote servers. As the name might suggest, Telnet was originally used on... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (2021)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-17/): Because Microsoft announced its quarterly and annual earnings this week, this edition of Short Takes looks exclusively at the results... - [How to Add Windows Server 2022 as a Domain Controller](https://petri.com/windows-server-2022-as-a-domain-controller/): There is an updated version of this article here: How to Add a Domain Controller to an Existing Domain Windows... - [Microsoft Beats Expectations with Profits up 47%](https://petri.com/microsoft-beats-expectations-with-profits-up-47/): The end of June marks the end of Microsoft’s fiscal year and the company has released its earnings for FYQ4,... - [Microsoft Modern USB-C Teams Speaker Review](https://petri.com/microsoft-modern-usb-c-teams-speaker-review/): Earlier this year, Microsoft released a handful of new Teams peripherals that include a couple of headsets, a webcam, and... - [Guide: How to Install SharePoint Server Subscription Edition in a VM](https://petri.com/guide-how-to-install-sharepoint-server-subscription-edition-in-a-vm/): Microsoft surprised more than a few in the IT Pro and tech industry by announcing SharePoint Server Subscription Edition. Billing... - [Best Practices: Office 365 Tools to Eliminate Email Security Misconfigurations](https://petri.com/use-these-microsoft-defender-for-office-365-tools-to-eliminate-email-security-misconfigurations/): According to Microsoft, 90% of security threats start from malicious email. And while it would be nice to think that... - [Survey Reveals Most MSPs Now Offer Managed Security Services](https://petri.com/survey-reveals-most-msps-now-offer-managed-security-services/): Nearly all MSPs now offer managed security services, according to Datto’s Global State of the MSP Report released Thursday. The... - [Using DR to Protect Against Ransomware](https://petri.com/using-dr-to-protect-against-ransomware/): While 2020 will surely be remembered as the year of the pandemic, it’s quite possible that 2021 will be remembered... - [Tip for Opening Large Text Files in Windows 11](https://petri.com/tip-for-opening-large-text-files-in-windows-11/): Notepad is a simple editor that has been included as an inbox application since the very early days of Windows.... - [Petri Research: The New Challenges Ahead for the IT Pro](https://petri.com/petri-research-the-new-challenges-ahead-for-the-it-pro/): During the past few years, the world of IT has undergone a dramatic change. Three years ago, it was primarily... - [Microsoft Confirms Windows 11 Will have LTSC Branch](https://petri.com/microsoft-confirms-windows-11-will-have-ltsc-branch/): Last month, Microsoft officially announced Windows 11 and that it would be released in the fall. The new OS that... - [How to Set Up Windows Sandbox](https://petri.com/how-to-set-up-windows-sandbox-to-safely-test-apps-in-an-isolated-environment/): If you want to spin up an isolated Windows 10 desktop quickly, without the knowledge required to work with virtual... - [Microsoft Unveils SharePoint Server Subscription Edition](https://petri.com/microsoft-unveils-sharepoint-server-subscription-edition/): In the world of Microsoft, everything is cloud, cloud, cloud, but the reality is that many operations are still using... - [Microsoft Begins Rollout of "Teams 2.0" to Windows 11 Insiders](https://petri.com/microsoft-begins-rollout-of-teams-2-0-to-windows-11-insiders/): Last month, when Microsoft announced Windows 11, the company also said that they would be bringing Teams to the OS... - [What's New with Microsoft Forms for Education](https://petri.com/whats-new-with-microsoft-forms-for-education/): If you’re an IT Pro offering support in an Education or Higher Education organization, your world, over the last year... - [What is Microsoft Test Base](https://petri.com/what-is-microsoft-test-base/): Microsoft recently announced that ‘Test Base for Microsoft 365’ has moved from the private preview stage to public preview. The... - [Microsoft Gave Its Partners an Earful at Annual Inspire Conference](https://petri.com/microsoft-give-its-partners-an-earful-at-annual-inspire-conference/): It was a big week for the Microsoft ecosystem as the company held its annual Inspire partner conference. Like last... - [First Look at Microsoft's New Teams Peripherals](https://petri.com/first-look-at-microsofts-new-teams-peripherals/): Earlier this year, Microsoft announced a handful of new Teams accessories including a USB-C speaker, two headsets, and a webcam.... - [Patch Tuesday – July 2021](https://petri.com/patch-tuesday-july-2021/): Microsoft patches 103 security vulnerabilities this month, including PrintNightmare, a Windows DNS Server bug, 3 elevation of privilege vulnerabilities in... - [First Look at Microsoft Teams 2.0](https://petri.com/first-look-at-microsoft-teams-2-0/): A couple of weeks back, Microsoft announced Windows 11 and with it, a new Teams experience would be launching with... - [What’s The Difference Between Windows 11 and Windows 365](https://petri.com/whats-the-difference-between-windows-11-and-windows-365/): In the world of Microsoft operating systems, there are several choices such as Windows 10, Windows 11, and Windows 365.... - [Microsoft is Significantly Reducing its Commerical Marketplace Fees](https://petri.com/microsoft-is-significantly-reducing-its-commerical-marketplace-fees/): For the second year in a row, Microsoft is hosting its Inspire conference virtually but there is hope on the... - [Microsoft Unveils Windows 365, A Desktop in the Cloud](https://petri.com/microsoft-unveils-windows-365-a-desktop-in-the-cloud/): This week, Microsoft is hosting its virtual Inspire conference where the company unveils solutions and tools for their partners to... - [How to Create an Approval Workflow in Teams](https://petri.com/how-to-use-the-new-approvals-app-in-teams/): Introduction One of the most important workflows in a business is the approval process. This can range from administration-like approvals... - [Microsoft to Acquire of RiskIQ to Bolster Security Tools](https://petri.com/microsoft-to-acquire-of-riskiq-to-bolster-security-tools/): Microsoft has announced today that the company is acquiring RiskIQ, a company based out of San Francisco that specializes in... - [How to Securely Elevate Privileges in PowerShell Scripts](https://petri.com/powershell-secrets-management-how-to-securely-elevate-privileges-in-powershell-scripts/): If you are using PowerShell scripts to automate tasks in your environment, sooner or later, there’s a good chance that... - [How to Fully Patch the PrintNightmare Vulnerability](https://petri.com/how-to-fully-patch-the-printnightmare-vulnerability/): Image Credit: Microsoft If you are an admin and have been scrambling the past week to patch the PrintNightmare vulnerability,... - [Microsoft Releases Second Build of Windows 11](https://petri.com/microsoft-releases-second-build-of-windows-11/): Late last month, Microsoft announced Windows 11 and not long after, released the first build of the OS. Today, the... - [Guide: How to Install Windows 11 in a Virtual Machine](https://petri.com/guide-how-to-install-windows-11-in-a-virtual-machine/): I’m sure many of you are excited that Microsoft’s Windows Insider Program team recently launched the testing phase of Windows... - [Microsoft’s PrintNightmare Patch Not Effective Against Vulnerability](https://petri.com/microsofts-printnightmare-patch-not-effective-against-vulnerability/): Late yesterday, Microsoft released a patch that was expected to close the vulnerability that is known as PrintNightmare. The patch,... - [Guide: Getting Started with Zero Trust Security in Microsoft 365](https://petri.com/guide-getting-started-with-zero-trust-security-in-microsoft-365/): Zero Trust is a security model that can be applied to Microsoft 365. It focuses on improving security by verifying... - [What's New with Universal Printing in Windows 11](https://petri.com/whats-new-with-universal-printing-in-windows-11/): There are some exciting improvements on the way for Universal Print coming in Windows 11. In addition, it’s not just... - [Microsoft Releases Emergency Update to Patch PrintNightmare Vulnerability](https://petri.com/microsoft-releases-emergency-update-to-patch-printnightmare-vulnerability/): Microsoft has released an out-of-band patch that will plug up a hole in a known zero-day exploit. Known as PrintNightmare,... - [First Look at the New Office UI that Matches Windows 11](https://petri.com/first-look-at-the-new-office-ui-that-matches-windows-11/): When Microsoft released the first build of Windows 11 last month, the company also indicated that they would be updating... - [How to Create Retention Policies for Microsoft Teams](https://petri.com/how-to-create-retention-policies-for-microsoft-teams/): I work with many legal and regulatory organizations that require no retention period for Microsoft Teams channels and their users’... - [Set it and Forget it is the Worst Practice in Azure](https://petri.com/set-it-and-forget-it-is-the-worst-practice-in-azure/): I’ll admit that I may have done a not-so-best-practice type of thing, I have not gone into the Azure Portal... - [Microsoft Gives Up on Running SQL Server in a Windows Container](https://petri.com/microsoft-gives-up-on-running-sql-server-in-a-windows-container/): Back in 2017, Microsoft had an ambitious plan to run SQL Server in a Windows container. At that time, containers... - [Windows Server 2022 Gets Hotpatching Support, and Much More](https://petri.com/windows-server-2022-now-rtm-gets-hotpatching-support-and-much-more/): Microsoft announced that Windows Server 2022 was released to OEMs for testing earlier this month. And in a presentation last... - [AvePoint Lands on the Nasdaq Today](https://petri.com/avepoint-lands-on-the-nasdaq-today/): AvePoint is going public today - a major milestone for any company and highlights that the Microsoft 365 ecosystem continues... - [What's New with Power Platform - June 2021](https://petri.com/whats-new-with-power-platform-june-2021/): The year is halfway over! That is crazy to think about, so I won’t. Either way, welcome to the second... - [What's New with Azure– June 2021 Edition](https://petri.com/whats-new-with-azure-june-2021-edition/): July is here and we are halfway through the year. Am I the only one that feels like 2021 is... - [What's New with Windows – June 2021 Edition](https://petri.com/everything-you-need-to-know-about-windows-june-2021-edition/): Microsoft launches Windows 11, Windows Server 2022 gets hotpatching, and ARM64EC promises to make it easier for developers to port... - [Guide: How to Plan for Microsoft Defender Endpoint Deployments and Migrations](https://petri.com/guide-how-to-plan-for-microsoft-defender-endpoint-deployments-and-migrations/): When approaching a rollout of Microsoft Defender for Endpoint (MDE) for your organization, it can be difficult to know where... - [Windows 11: How to Enable the Classic Start Menu](https://petri.com/windows-11-how-to-enable-the-classic-start-menu/): If you prefer the ‘classic’ Windows 10 Start menu, or if you want Live Tiles back, then Windows 11 gives... - [How to Turn Off News and Interests with Group Policy](https://petri.com/how-to-turn-off-news-and-interests-on-the-windows-taskbar/): News and Interests on the Windows 10 taskbar is a new feature that is turned on automatically for all users... - [How to Stop an Unresponsive Hyper-V Virtual Machine](https://petri.com/how-to-stop-an-unresponsive-hyper-v-virtual-machine/): It doesn’t happen that often but sometimes Hyper-V virtual machines (VM) hang when you are trying to shut them down.... - [How to Download and Install Windows Admin Center](https://petri.com/how-to-install-and-use-windows-admin-center/): Back at Microsoft Ignite 2017 in Orlando, FL, I attended the session where ‘Project Honolulu’ was announced and demonstrated. This... - [Microsoft Details Hardware Needed to use DirectStorage in Windows 11](https://petri.com/microsoft-details-hardware-needed-to-use-directstorage-in-windows-11/): With the release of Windows 11, Microsoft is bringing many new features to the OS. Everything from a new UI,... - [Microsoft Can't Tell Us the Chips Windows 11 Will Support](https://petri.com/microsoft-cant-tell-us-the-chips-windows-11-will-support/): Earlier today, Microsoft released its first build of Windows 11 to Insiders and it is filled with UI updates and... - [A Closer Look at Microsoft's First Build of Windows 11](https://petri.com/a-closer-look-at-microsofts-first-build-of-windows-11/): Microsoft has released the first build of its ‘next-generation’ operating system that will be known as Windows 11. Featuring significant... - [Microsoft Unveils Office Refresh to Match Windows 11](https://petri.com/microsoft-unveils-office-refresh-to-match-windows-11/): Today, the company is unveiling updates coming to Office that will update the interface to match that of the upcoming OS and features rounded corners and a floating ribbon. - [Microsoft Releases First Build of Windows 11, This Is What's New](https://petri.com/microsoft-releases-first-build-of-windows-11-this-is-whats-new/): To get started, Microsoft requires that you join the Insider program as that's where this first release is being distributed. To get the latest release, you will need to be in the Dev channel but builds will eventually move to the Beta channel. - [How to Rename Your SharePoint Domain in Microsoft 365](https://petri.com/how-to-rename-your-sharepoint-domain-in-microsoft-365/): A long-requested feature in SharePoint Online is the ability to change the URL of the top-level SharePoint site.   This... - [How to Enable Nested Virtualization in Windows 10 Hyper-V](https://petri.com/how-to-enable-nested-virtualization-in-hyper-v/): Hyper-V is the built-in hypervisor that comes free in Windows and Windows Server. It is used to run virtual machines... - [Clearing up Windows 11 Compatibility, It's Easy and Frustrating](https://petri.com/clearing-up-windows-11-compatibility-its-easy-and-frustrating/): This week has been a mixed bag of excitement and confusion. The excitement has been associated with the features that... - [How to Enable TPM for Windows 11 and Solve Compatibility Issues](https://petri.com/how-to-enable-tmp-for-windows-11-and-solve-compatibility-issues/): If you are having trouble determining if your PC is compatible with Windows 11, here are all the steps you... - [Microsoft Teams "2.0" Will Deliver Big Performance Improvements](https://petri.com/microsoft-teams-2-0-will-deliver-big-performance-improvements/): Teams is the backbone of Microsoft’s modern communication platform and is the hub of productivity inside the Microsoft 365 suite... - [IT Pros: These Windows 10 Features Won't be in Windows 11](https://petri.com/it-pros-these-windows-10-features-wont-be-in-windows-11/): With the release of Windows 11, Microsoft is taking the opportunity to prune Windows 10 of some features that were... - [Microsoft Provides Clarity for Windows 11 Licensing Requirements, 21H2 but not LTSC](https://petri.com/microsoft-provides-clarity-for-windows-11-licensing-requirements-21h2-but-not-ltsc/): With the release of Windows 11, Microsoft is changing many aspects of how the OS operates. Everything from a new... - [With Windows 11, Everyone Gets Teams](https://petri.com/with-windows-11-everyone-gets-teams/): Today, Microsoft announced their newest OS, Windows 11. Along with updates to the UI, the servicing models, and a lot... - [Microsoft Overhauls Windows 11 Servicing, One Update Per Year](https://petri.com/microsoft-overhauls-windows-11-servicing-one-update-per-year/): Today, Microsoft announced Windows 11 and the company is making sweeping changes across all corners of the OS. Everything from... - [Microsoft Updates Windows 11 Minimum Specs, Internet Now Required](https://petri.com/microsoft-updates-windows-11-minimum-specs-internet-now-required/): Microsoft has pulled back the curtains today on Windows 11 and along with new features and an updated interface, the... - [Microsoft Announces Windows 11 with UI Updates, Android Apps, and More](https://petri.com/microsoft-announces-windows-11-significant-ui-updates/): Microsoft is officially pulling back the curtains today on Windows 11 and the company is ready to make the biggest... - [Guide: How to Install Windows Server 2019](https://petri.com/guide-how-to-install-windows-server-2019/): Windows Server 2019 is almost as easy to install as Windows 10. And in this article, I’m going to take... - [Guide: How to Migrate Tenant to Tenant Telephone Numbers in Office 365](https://petri.com/guide-how-to-migrate-tenant-to-tenant-telephone-numbers-in-office-365/): Microsoft Teams has grown massively in the last 12 months, growing from 44 million active users in April 2020 to... - [How to Manage Windows Update Using PowerShell](https://petri.com/how-to-manage-windows-update-using-powershell/): In this article, I will look at both Microsoft’s Windows Update provider for PowerShell in Windows Server 2019. And I’ll... - [Microsoft Passes $2 Trillion Market Cap](https://petri.com/microsoft-passes-2-trillion-market-cap/): In the world of public companies, there are major milestones like going public and stock price splits. For Microsoft, there... - [Microsoft Indefinitely Delays Joining Teams Meeting with Digital ID](https://petri.com/microsoft-indefinitely-delays-joining-teams-meeting-with-digital-id/): Earlier this year, Microsoft announced that they would be enabling a new way to join Teams meetings that didn’t use... - [How to Use Known Issue Rollback to Fix Problems Caused by Windows Updates](https://petri.com/windows-servicing-how-to-fix-issues-caused-by-windows-cumulative-updates-using-known-issue-rollback/): The technology that underpins Known Issue Rollback first appeared in Windows 10 version 2004. Known Issue Rollback, or KIR for... - [Petri Reader Survey for 2021](https://petri.com/petri-reader-survey-for-2021/): The annual Petri reader survey helps us align our content with your interests. - [How to Upgrade from Windows Server 2019 Core to Windows Server 2022 Core](https://petri.com/how-to-upgrade-from-windows-server-2019-core-to-windows-server-2022-core/): Continuing my mini-series on providing IT Pros valuable assistance and guides moving their workloads, roles, and Server-based applications to Windows... - [Understanding Microsoft Defender for Endpoint and How It Protects Your Data](https://petri.com/understanding-microsoft-defender-for-endpoint-and-how-it-protects-your-data/): Microsoft Defender for Endpoint (MDE, previously known as Microsoft Defender Advanced Threat Protection) is Microsoft’s endpoint security platform that goes... - [How to Easily Turn Teams Messages into Tasks](https://petri.com/how-to-easily-turn-teams-messages-into-tasks/): When was the last time you were engaged in a communication thread and made a mental note to assign yourself... - [AWS Details Frankfurt Data Center Outage Cause](https://petri.com/aws-recovers-from-frankfurt-data-center-outage/): One of the things that Amazon recommends for high availability is to be sure that your services span multiple AWS... - [Microsoft Unveils Fluid Components Coming to Teams, Office, and OneNote](https://petri.com/microsoft-unveils-fluid-components-coming-to-teams-office-and-onenote/): If you haven’t ever heard of Fluid in the context of Microsoft’s collaboration suite, you could be forgiven. Fluid is... - [Microsoft’s Bringing the Teams Rooms Experience to the Surface Hub](https://petri.com/microsofts-bringing-the-teams-rooms-exeperience-to-the-surface-hub/): The Microsoft Surface Hub is a device that has undergone a significant amount of transition in its short life. Specifically,... - [First Look at a Basic Windows Server 2012 R2 to Windows Server 2022 Upgrade](https://petri.com/first-look-at-a-basic-windows-server-2012-r2-to-windows-server-2022-upgrade/): Windows Server 2019, the (2nd) most recent server OS version of Microsoft’s Long Term Servicing Channel (LTSC), was generally available... - [How to Create a Bootable USB Drive for Windows Server 2019 Installation](https://petri.com/create-a-bootable-usb-drive-for-windows-server-2019-installation/): Before you can install Windows Server 2019 on physical hardware, you’ll need boot media that contains all the files necessary... - [Microsoft’s Making it Easier to Use Teams to Stream to YouTube or Twitch](https://petri.com/microsofts-making-it-easier-to-use-teams-to-stream-to-youtube-or-twitch/): While it may not be the most headline-grabbing feature, Teams has proven to be a reliable video communication tool that... - [Walking Through Windows 11](https://petri.com/walking-through-windows-11/): Earlier today, we got our first look at Microsoft’s ‘Next Generation’ OS and there is a lot to unpack. But... - [Windows 11 Leaks Ahead of Microsoft's Windows Keynote](https://petri.com/windows-11-leaks-ahead-of-microsofts-windows-keynote/): Later this month, Microsoft will be hosting an event to showcase the ‘next-generation of Windows. Expected at the event, the... - [Guide: How to Implement SharePoint Syntex Document Understanding Models](https://petri.com/guide-how-to-implement-sharepoint-syntex-document-understanding-models/): In Getting Started with SharePoint Syntex – Problem, Solution, and Methodology, we explain that SharePoint Syntex is a service that... - [Patch Tuesday – June 2021](https://petri.com/patch-tuesday-june-2021/): This month Microsoft patches 7 zero-day flaws in Windows, 6 of which are being exploited in the wild. And there... - [Microsoft Bookings Gets a New UI, More Features, and Roles](https://petri.com/microsoft-bookings-gets-a-new-ui-more-features-and-roles/): Last March, at Ignite, Microsoft gave a preview of the new powerful and customizable experience. Starting on June 1st, they are starting to roll it out as a toggle to First Release customers. - [Guide: Using PowerShell to Assist with Backing up Microsoft 365 Data and Settings](https://petri.com/guide-using-powershell-to-assist-with-backing-up-microsoft-365-data-and-settings/): If you are aiming for a roll-your-own approach to creating a backup of your data in Microsoft 365, the options... - [Amazon Location Service is Now Generally Available](https://petri.com/amazon-location-service-is-now-generally-available/): Location and mapping are vital aspects of many mobile applications. However, developers face significant barriers to integrating location functionality into... - [How to Create Custom Themes For Microsoft Teams Rooms](https://petri.com/how-to-create-custom-themes-for-microsoft-teams-rooms/): As we start the new way of working in the second half of 2021, whether it’s back into the office... - [GET-IT One Day of PowerShell is Happening Today](https://petri.com/get-it-one-day-of-powershell-is-happening-today/): Petri’s GET-IT: PowerShell 1-Day virtual conference is a full day of free learning dedicated to technical PowerShell content aimed at... - [Microsoft is Finally Including Visio in Microsoft 365 But There’s a Catch](https://petri.com/microsoft-is-finally-including-visio-in-microsoft-365-but-theres-a-catch/): For years, Microsoft has been pitching Office 365 and eventually Microsoft 365 as the premier productivity suite for individuals and... - [Microsoft Search Begins to Index Meeting Transcripts](https://petri.com/microsoft-search-begins-to-index-meeting-transcripts/): One of the benefits of having all of your productivity data in one platform is that it can be indexed... - [Microsoft 365 Scheduler Makes Meeting Scheduling Easier, for a Fee](https://petri.com/microsoft-365-scheduler-makes-meeting-scheduling-easier-for-a-fee/): Microsoft is reporting in a recent technical article that weekly meetings have increased by 148% in the past year since... - [Choosing the Right Microsoft 365 Tool for Managing Your Tasks](https://petri.com/choosing-the-right-microsoft-365-tool-for-managing-your-tasks/): OK, quick: How many Microsoft 365 services and apps are available to you and your users to help manage their... - [Microsoft Rebrands Windows Virtual Desktops, Adds New Features](https://petri.com/microsoft-rebrands-windows-virtual-desktops-adds-new-features/): As Microsoft rounds out its fiscal year, which officially ends on June 30th, the company is making a few last-minute... - [Five Important Differences Between Windows 10 Home and Pro](https://petri.com/5-important-differences-between-windows-10-home-and-pro/): If you are in the market for a new notebook or PC, there are two choices consumers have in Windows... - [Amazon Announces Amazon Elastic Container Service Anywhere](https://petri.com/amazon-announces-amazon-elastic-container-service-anywhere/): This past May 2021, Amazon announced the general availability of Amazon Elastic Container Service (ECS) Anywhere.   While most organizations... - [How to Restore Files and Data in Microsoft 365](https://petri.com/how-to-restore-files-and-data-in-microsoft-365/): In the last two articles in this series, I’ve pointed out some of the flaws in the arguments put forward... - [Microsoft’s ’Next Generation’ of Windows Plots the Course for Significant Changes](https://petri.com/microsofts-next-generation-of-windows-plots-the-course-for-significant-changes/): Microsoft is planning what will be one of the biggest updates to Windows in recent history. While we have seen... - [Microsoft Defender for Endpoint Now Secures Unmanaged Devices and Linux Gets EDR](https://petri.com/microsoft-defender-for-endpoint-now-secures-unmanaged-devices-and-linux-gets-edr/): Microsoft recently announced that its Defender for Endpoint solution can now detect when unmanaged network devices may pose a threat.... - [How to use Stellar Repair for Exchange to Recover a Corrupted EDB File](https://petri.com/product-review-stellar-repair-for-exchange/): This post was Sponsored by Stellar, you can learn more about their EDB Recovery Tool here. Exchange Server is Microsoft’s... - [Everything You Need to Know About Power Platform May 2021](https://petri.com/everything-you-need-to-know-about-power-platform-may-2021/): With Build being this month a lot of the announcements came out via Build and while it is a developer... - [Everything You Need to Know About Windows – May 2021 Edition](https://petri.com/everything-you-need-to-know-about-windows-may-2021/): Satya Nadella announces there will be significant changes coming to Windows, Microsoft starts rolling out the Windows 10 May 2021... - [Everything You Need to Know About Azure Infrastructure – May 2021 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-may-2021-edition/): Microsoft’s Build conference was on last week and it gave us lots of AI, Machine Learning, and every other type... - [Guide: Getting Started with Windows Package Manager (Winget) v1.0](https://petri.com/guide-getting-started-with-windows-package-manager-winget-v1-0/): Microsoft announced at Build that Windows Package Manager (WPM) v1. 0 is now generally available. First announced in May 2020,... - [AWS Makes the Transition to Containers Eaiser with App Runner](https://petri.com/aws-announces-app-runner/): Unless you’ve been working out of a cave, you’ve probably heard that containers are the future in app development and... - [How to Discover and Configure Sites for IE Mode in the New Edge](https://petri.com/how-to-discover-and-configure-sites-for-ie-mode-in-the-new-edge/): We have just over a year until Internet Explorer hits another ‘major’ milestone on its way to riding into the... - [Microsoft Azure Sentinel gets SAP Support, Plus UEBA and Entity Pages Reach GA](https://petri.com/microsoft-azure-sentinel-gets-sap-support-plus-ueba-and-entity-pages-reach-ga/): Last week Microsoft announced improvements to its cloud-native SIEM product, Azure Sentinel. In an effort to make Sentinel more efficient... - [Microsoft Confirms Next Windows Update is "Significant", Teases UI](https://petri.com/microsoft-confirms-next-windows-update-is-significant-teases-ui/): Earlier this month, Microsoft confirmed that Windows 10X was not coming to market but that the technologies built for that... - [Microsoft Announces its First Integration of GPT-3 into Microsoft 365](https://petri.com/microsoft-announces-its-first-integration-of-gpt-3-into-microsoft-365/): Late last year, Microsoft announced that the company would be exclusively licensing the GPT-3 language model from OpenAI. And today... - [Microsoft Unveils new Fluid Framework, Together Mode, and More for Teams at Build](https://petri.com/microsoft-unveils-new-fluid-framework-together-mode-and-more-for-teams-at-build/): This week, Microsoft is hosting its annual developer conference called Build. For the second year in a row, the conference... - [What’s New With the Microsoft Graph at Build 2021](https://petri.com/whats-new-with-the-microsoft-graph-at-build-2021/): When Satya Nadella took over as CEO at Microsoft, he stated that one of the company’s most valuable assets were... - [Microsoft Announces Low-Cost Windows on Arm Development Kit](https://petri.com/microsoft-announces-low-cost-windows-on-arm-development-kit/): The past couple of weeks have been filled with unease in the Windows community. With the end of Windows 10X... - [How to Disable the Cortana Services in Microsoft 365](https://petri.com/how-to-disable-the-cortana-services-in-microsoft-365/): With Microsoft 365, Cortana can pose a challenge for unintended data retention - if you are looking to disable Cortana for a single user or across your org, here is how to do that. - [Microsoft Search Now Available in Windows 10](https://petri.com/microsoft-search-now-available-in-windows-10/): Microsoft Search is now integrated with Windows Search in Windows 10. Microsoft had been talking about this capability since 2018... - [Microsoft Paints a Future of Meetings with Teams](https://petri.com/microsoft-paints-a-future-of-meetings-with-teams/): The second half of 2021 is going to include a migration that few have ever experienced in the business world. After the majority of employees migrated from the office to the home, the reverse migration is going to happen soon as well. - [Guide: Limit Microsoft 365 Access to Corporate Devices with Conditional Access](https://petri.com/guide-limit-microsoft-365-access-to-corporate-devices-with-conditional-access/): Azure Active Directory Conditional Access can put administrators back in control. Part of the Azure Active Directory Premium P1 license, with Conditional Access you control the conditions under which a user is granted or blocked access to Azure AD resources. - [Modern Work: What's Next for You?](https://petri.com/modern-work-whats-next-for-you/): As the world starts to slowly move from workers being mostly at home to migrating back to the office, new... - [All Things Azure, Office 365 and more at VeeamON 2021](https://petri.com/all-things-azure-office-365-and-more-at-veeamon-2021/): One of the good things about virtual events like VeeamOn is that you can attend specifically what you want to... - [Surface Headphones 2+, A Better Way to Teams](https://petri.com/surface-headphones-2-a-better-way-to-teams/): A few weeks back, Microsoft announced the Surface Headphones 2+ that answered the nagging question – why aren’t Surface Headphones... - [Guide: Getting Started with SharePoint Syntex - Problem, Solution, and Methodology](https://petri.com/guide-getting-started-with-sharepoint-syntex-problem-solution-and-methodology/): Microsoft announced SharePoint Syntex at Ignite 2020 as part of Project Cortex.   In Microsoft’s own words, SharePoint Syntex transforms... - [Microsoft Details End of Life Roadmap for IE11](https://petri.com/microsoft-details-end-of-life-roadmap-for-ie11/): When it comes to browsers on Windows 10, there are currently three options technically available to users. You have Internet... - [How to Access and Triage Network Connectivity in the Microsoft 365 Admin Center](https://petri.com/how-to-access-and-triage-network-connectivity-in-the-microsoft-365-admin-center/): The Microsoft 365 network connectivity test tool allows you to perform similar tests on demand for instant results. - [Microsoft Confirms that Windows 10X is Dead   ](https://petri.com/microsoft-confirms-that-windows-10x-is-dead/): A few weeks back, I scooped that Microsoft would not be bringing Windows 10X to market, and today, the company... - [Guide: How to Install Active Directory in Windows Server 2019 Using PowerShell](https://petri.com/how-to-install-active-directory-in-windows-server-2019-using-powershell/): Looking to install Active Directory in Windows Server 2019? Here's how to accomplish that task with PowerShell. - [New Permissions Management Page Coming to the M365 Compliance Center](https://petri.com/new-permissions-management-page-coming-to-the-m365-compliance-center/): Microsoft has been in a continual cycle of moving legacy features and interfaces from older websites to brand new ones.... - [Microsoft's Approach to Securing Hybrid Work with Zero Trust](https://petri.com/microsoft-updates-security-for-hybrid-work/): 12th May 2021, ahead of RSA 2021, Microsoft announces improvements to its security products for better-protecting organizations in a post-pandemic... - [Microsoft Teams Personal Features Arrive, But What About Skype?](https://petri.com/microsoft-teams-personal-features-arrive-but-what-about-skype/): It was more than a year ago that Microsoft announced its intentions to bring Teams functionality to the consumer. Starting... - [Amazon Nimble Studio Enables Distributed Digital Content Creation](https://petri.com/amazons-nimble-studio-provides-distributed-digital-content-creation/): Amazon Nimble Studio is a new service that businesses and creative studios can use to produce digital content and CGI... - [Guide: How to Setup a Microsoft Bookings Site](https://petri.com/guide-how-to-setup-a-microsoft-bookings-site/): I’m going to bet you probably haven’t heard of Microsoft Bookings. Would you like an alternate infrastructure to take care... - [Patch Tuesday – May 2021](https://petri.com/patch-tuesday-may-2021/): This month Microsoft has released quite a low number of security patches for Windows. But there are still some nasty... - [Blockchain Bust: Microsoft Joins IBM with Blockchain Shutdown](https://petri.com/blockchain-bust-microsoft-joins-ibm-with-blockchain-shutdown/): A few years ago, Blockchain was going to change the world with its distributed database and ledger technology. At the... - [Guide: How to Install Windows 10 in a Virtual Machine](https://petri.com/how-to-install-windows-10-in-a-virtual-machine/): Windows 10 includes all the software you need to set up a virtual machine (VM). Using a feature called Hyper-V,... - [Accelerate Your Data Protection Strategy at VeeamON 2021 and Support a Good Cause](https://petri.com/accelerate-your-data-protection-strategy-at-veeamon-2021-and-support-a-good-cause/): Data is essential to every business, it accelerates business operations, drives sales, and maintains business integrity. The importance of data... - [Guide: How to Install Windows Server 2019 in a Virtual Machine](https://petri.com/how-to-install-windows-server-2019-in-a-virtual-machine/): Windows Server 2019 is almost as easy to install as Windows 10. And in this article, I’m going to take... - [Petri's GET-IT Teams Day is Happening Today](https://petri.com/petris-get-it-teams-day-is-happening-today/): Petri’s GET-IT: Teams 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Teams content... - [Guide: How to Install Active Directory in Windows Server 2019 (Server Manager)](https://petri.com/how-to-install-active-directory-in-windows-server-2019-server-manager/): In this article, I show you how to install your first Windows Server 2019 Active Directory (AD) domain controller (DC).... - [Microsoft Shelves Windows 10X, It is not Shipping in 2021](https://petri.com/microsoft-shelves-windows-10x-it-is-not-shipping-in-2021/): Back in the fall of 2019, Microsoft held a Surface event that will likely go down in history as one... - [Microsoft 365 Update will let Admins Monitor User Feedback](https://petri.com/microsoft-365-update-will-let-admins-monitor-user-feedback/): Today, Microsoft allows your users to submit feedback about Microsoft 365 products at your organization. Are you curious about what... - [VeeamON’s Free Conference Will Help Accelerate Your Data Protection Strategy](https://petri.com/veeamons-free-conference-will-help-accelerate-your-data-protection-strategy/): Trends come and go but protecting your data and having the ability to easily restore items efficiently is a part... - [Microsoft Commits to Keeping All EU Client Data inside the EU](https://petri.com/microsoft-commits-to-keeping-all-eu-client-data-inside-the-eu/): If you spend five minutes listening to Microsoft talk about its cloud services, one of the key talking points is... - [Understanding and Configuring Operator Connect for Microsoft Teams](https://petri.com/how-to-setup-operator-connect-for-microsoft-teams/): During Microsoft Ignite 2021, Voices matter: Reconnect with Microsoft Teams Calling, Microsoft introduced a new technology that allows for connectivity... - [Everything You Need to Know About Azure Infrastructure – April 2021 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-april-2021-edition/): I’ve been drowning in project deadlines for the last month and I’ve not had a chance to keep up with... - [Microsoft to Remove Adobe Flash from Windows and Server in July](https://petri.com/microsoft-to-remove-adobe-flash-from-windows-and-server-in-july/): While you may have fond memories of Flash from the games that ran in the browser, as the web matured,... - [Understanding Exchange Server Updates and the Process to Patching](https://petri.com/understanding-exchange-server-updates-and-the-process-to-patching/): For all you IT Pros continuing to support an on-premises Exchange Server infrastructure (in any configuration), Microsoft has a vital... - [Everything You Need to Know about Power Platform - April 2021](https://petri.com/everything-you-need-to-know-about-power-platform-april-2021/): Power Platform news for April 2021. Includes printing, Flows from Power BI, more AI smarts, and more. Even the Excel connector got better. What a month. - [How to Install SUSE Enterprise Server in Windows 10](https://petri.com/how-to-install-suse-enterprise-server-in-windows-10/): In this article, I’m going to show you how to use WSL to install SUSE Enterprise Server in Windows 10.... - [Triaging OneDrive Sync Issues is About to Get a lot Easier](https://petri.com/triaging-onedrive-sync-issues-is-about-to-get-a-lot-easier/): Microsoft’s OneDrive document sync and storage service is the backbone for many users’ and keeping data synced across devices is... - [Everything You Need to Know About Windows – April 2021](https://petri.com/everything-you-need-to-know-about-windows-april-2021/): Microsoft prepares to release the Windows 10 May 2021 Update. The news and interests taskbar flyout is coming to older... - [How to Migrate Group Policy Windows Firewall Rules to Intune](https://petri.com/how-to-migrate-group-policy-windows-firewall-rules-to-intune/): As you make the move from Microsoft on-premises infrastructure to the cloud, you’ll move from Group Policy management of your... - [Microsoft adds Kinvolk to its Portfolio of Container Tools](https://petri.com/microsoft-adds-kinvolk-to-its-portfolio-of-container-tools/): This week, Microsoft reported earnings for the first quarter of the year, and to say that they had a healthy... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2021)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-16/): Because Microsoft announced its quarterly earnings this week, this edition of Short Takes looks exclusively at the results across all... - [Getting Started with Backing up Data in Microsoft 365, Understanding the Limitations](https://petri.com/getting-started-with-backing-up-data-in-microsoft-365-and-its-limitations/): So, you’ve decided to jump straight into the deep-end and backup your data in Microsoft 365. But first, what does... - [Microsoft Teams Hits 145 Million Daily Active Users](https://petri.com/microsoft-teams-hits-145-million-daily-active-users/): Microsoft has released their Q3 earnings release and the company posted big results yet again. It’s clear that the company... - [Microsoft Posts Strong Q3 Results as Pandemic Transformation Continues](https://petri.com/microsoft-posts-strong-q3-results-as-pandemic-transformation-continues/): It’s that time of the quarter again where Microsoft has released their earnings. For calendar year Q1, fiscal year Q3,... - [Surface Laptop 4: Good for the Workday, Ready for Zero Trust](https://petri.com/surface-laptop-4-good-for-the-workday-ready-for-zero-trust/): For years, the Surface brand has been about pushing boundaries of what’s possible in the PC space to take the... - [How to Install Linux GUI Apps in Windows 10 and Windows 11 with WSL](https://petri.com/how-to-install-linux-gui-apps-in-windows-10-21h2-with-wsl/): As more apps are developed in Linux than ever before, Microsoft recognized that it needed to provide developers with an easy way to build, test, and run Linux apps without leaving the Windows desktop. Learn how to use the Windows Subsystem for Linux (WSL) to run graphical Linux apps on Windows. - [Never Mind, Microsoft Won’t Retire Top Senders and Recipient Report](https://petri.com/never-mind-microsoft-wont-retire-top-senders-and-recipient-report/): Earlier this year, Microsoft announced that they had planned to retire the top senders and recipient report from Microsoft Defender... - [How to Install Ubuntu in Windows 10 with WSL 2](https://petri.com/how-to-install-ubuntu-in-windows-10-with-wsl-2/): Windows Subsystem for Linux (WSL) is an optional feature in Windows 10 that allows developers and system administrators to run... - [How to Manage Local Administrators and Groups with Intune](https://petri.com/how-to-manage-local-administrators-and-groups-with-intune/): When we think about administrative rights on Intune-enrolled Windows 10 devices, we need to consider two possible device states for... - [How to Elevate Privileges in Windows Terminal](https://petri.com/how-to-elevate-privileges-in-windows-terminal/): Windows Terminal is delivered by Microsoft as a packaged app through the Microsoft Store and on GitHub in MSIX format.... - [Microsoft Brings Linux GUI Apps to Windows 10](https://petri.com/microsoft-brings-linux-gui-apps-to-windows-10/): Last year, at Build 2020, Microsoft said that it was working on bringing Linux apps to Windows 10 with GUI... - [How to Configure Windows Terminal Themes](https://petri.com/how-to-configure-windows-terminal-themes/): One of the most interesting features of Windows Terminal is the ability to customize the appearance of each tab. But... - [Guide To The Windows Recovery Environment: How To Access And Use It](https://petri.com/how-to-use-the-windows-recovery-environment/): Learn about the Windows Recovery Environment and how to access and use it to troubleshoot and fix common technical issues... - [Outlook’s New Scheduling Feature Targets Meeting Burnout](https://petri.com/outlooks-new-scheduling-feature-targets-meeting-burnout/): When you look at your calendar before having a cup of coffee and all you see are meetings back-to-back for... - [Microsoft Plans Significant Overhaul to the Microsoft Store](https://petri.com/microsoft-plans-significant-overhaul-to-the-microsoft-store/): This fall, Microsoft is planning a significant update to Windows 10 that will bring with it a refreshed interface, updated... - [Windows Server Gets Redesigned Event Viewer in Windows Admin Center v2103](https://petri.com/windows-server-gets-redesigned-event-viewer-in-windows-admin-center-v2103/): The Event Viewer tool in Windows and Windows Server first appeared in 1993. So, Microsoft has decided that it’s time... - [Outlook Mobile Clients will soon Support Access to Delegate Mailboxes](https://petri.com/outlook-mobile-clients-will-soon-support-access-to-delegate-mailboxes/): IT Pros – your users will be very pleased to hear that Microsoft has finally announced a timeline for the... - [The Driving Forces of Disaster Recovery Evolution in 2021](https://petri.com/the-driving-forces-of-disaster-recovery-evolution-in-2021/): There’s no doubt that there’s been a huge focus on disaster recovery (DR) beginning in 2020 and carrying over into... - [Surface Laptop 4 – First Impressions](https://petri.com/surface-laptop-4-first-impressions/): This week, Microsoft announced the updated Surface Laptop 4 and if you want a closer look at the specs, check... - [How to De-identify PII data from the Teams Admin Usage Report](https://petri.com/how-to-de-identify-pii-data-from-the-teams-admin-usage-report/): Microsoft announced recently that the rollout of a new feature in Teams usage reporting has completed and should be available... - [Patch Tuesday – April 2021](https://petri.com/patch-tuesday-april-2021/): This month Microsoft releases critical patches for on-premises Exchange Server, a fix for the AD Kerberos KDC flaw, and plugs... - [7 Steps to Migrate Windows 2012 R2 Domain Controllers to Windows Server 2019](https://petri.com/7-steps-to-migrate-windows-2012-r2-domain-controllers-to-windows-server-2019/): One of the best ways to secure your systems is to make sure that Active Directory (AD) domain controllers (DCs)... - [Microsoft Unveils Surface Laptop 4 in a New Color with New Chips](https://petri.com/microsoft-unveils-surface-laptop-4-in-a-new-color-with-new-chips/): While the Surface Pro line of devices certainly defines the Surface brand, after all it was the first product, for... - [Microsoft Unveils New Teams Certified Speakers, Headsets, and Webcam](https://petri.com/microsoft-unveils-new-teams-certified-speakers-headsets-and-webcam/): In recent years, the Surface brand has received much of the attention in the hardware space at Microsoft. That’s not... - [Petri's GET-IT Backup and Recovery 1-Day Virtual Conference is Right Now!](https://petri.com/petris-get-it-backup-and-recovery-1-day-virtual-conference-is-this-week/): Petri’s GET-IT Backup and  Recovery 1-Day Virtual Conference is a day dedicated to a topic that most of us hope... - [Microsoft to Shove Org-Wide Teams Backgrounds Behind Additional License](https://petri.com/microsoft-to-shove-org-wide-teams-backgrounds-behind-license/): Microsoft Teams is the central hub for productivity for many organizations around the globe. At the last official count, Microsoft... - [Microsoft to Acquire Nuance for $19.7 Billion](https://petri.com/microsoft-to-acquire-nuance-for-19-7-billion/): Microsoft has announced today that the company will acquire Nuance for about $19. 7 billion. Once completed, this will be... - [Amazon Releases AWS S3 Object Lambda](https://petri.com/amazon-releases-aws-s3-object-lambda/): One of the most significant enhancements for AWS Simple Storage Service (S3) is the release of AWS S3 Object Lambda.... - [Migrating to SharePoint and OneDrive - An IT Pro 'Best Practice' Getting Started Guide](https://petri.com/migrating-to-sharepoint-and-onedrive-an-it-pro-best-practice-getting-started-guide/): Supporting a remote workforce, especially if you haven’t had the time to plan, assess, execute, and support it, can be... - [OneDrive Sync Client is Finally Available as a 64-bit App](https://petri.com/onedrive-sync-client-is-finally-available-as-a-64-bit-app/): If you are using the OneDrive sync client on Windows, you are currently using a 32-bit app to move the... - [SharePoint Scenario-Based Site Templates Arrive this Month](https://petri.com/sharepoint-scenario-based-site-templates-arrive-this-month/): SharePoint, the endpoint for most roads in Microsoft 365, is the bedrock for the company’s collaboration platform continues to entrench... - [Outlook on the Web - Use Board view in Calendar to Enhance your Time Management Skills](https://petri.com/outlook-on-the-web-use-board-view-in-calendar-to-enhance-your-time-management-skills/): “Everyone needs some extra time. ” I doubt you’ll meet many in IT that won’t agree with this statement. I... - [Using Stellar Repair for Outlook to Recover a Corrupted PST](https://petri.com/product-review-stellar-repair-for-outlook/): This post was Sponsored by Stellar Repair, you can learn more about their PST Recovery Tool here. Email is the... - [How to Control Intune Enrollment with Enrollment Restrictions](https://petri.com/how-to-control-intune-enrollment-with-enrollment-restrictions/): Enrollment restrictions are sets of rules assigned to Azure AD groups.   There are two types of enrollment restrictions: device... - [Outlook Mobile Updates Help Keep Work and Personal Content Separate](https://petri.com/outlook-mobile-updates-help-keep-work-and-personal-content-separate/): Over the past year, Microsoft’s Outlook mobile development team has been assisting you and your users with providing a clear... - [Microsoft to Finally Enable Joining Teams Meeting Without a Link](https://petri.com/microsoft-to-finally-enable-joining-teams-meeting-without-a-link/): Microsoft has announced that you will soon be able to use meeting IDs to join a meeting instead of a... - [Everything You Need to Know About Power Platform – March 2021](https://petri.com/everything-you-need-to-know-about-power-platform-march-2021/): Hello Power Platform Friends. Spring has finally sprung here in Ohio spring, so I am dying to get outside and... - [Everything You Need to Know About Azure Infrastructure – March 2021 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-march-2021-edition/): Microsoft ran another virtual edition of the Ignite conference in March. As usual there were a large number of Azure... - [Everything You Need to Know About Windows – March 2021](https://petri.com/everything-you-need-to-know-about-windows-march-2021/): This month sees a bumper crop of interesting announcements, despite the expected lack of Windows news at Ignite. Microsoft officially... - [Microsoft 365 Falls Over Because of DNS](https://petri.com/microsoft-365-outage-currently-impacting-many-online-services/): If you can't get Teams to authenticate or properly access your Microsoft 365 content, you are not alone. It appears... - [Understanding Microsoft 365 Data, What is and Is Not Your Responsibility](https://petri.com/understanding-microsoft-365-data-what-is-and-is-not-your-responsibility/): When people talk about the security of data in Microsoft 365, invariably phrase you’ll hear – and I don’t know... - [Microsoft's Bringing 'in-house' ads to the Teams Activity Feed](https://petri.com/microsofts-bringing-in-house-ads-to-the-teams-activity-feed/): Microsoft has announced that it will start telling your users that they can also use Teams for personal use with... - [How to Search Azure Services by Region](https://petri.com/how-to-search-azure-services-by-region/): I do most of my Azure work in both North Central US and Central US. However, I had a recent... - [Microsoft's Adding 'Supervisor' Functionality to Monitor Teams Private Chats](https://petri.com/microsofts-adding-supervisor-functionality-to-monitor-teams-private-chats/): Microsoft will roll-out a new feature later this year that should will increase visibility for Teams private chats. - [How to Automatically Hybrid Azure AD Join and Intune Enroll PCs](https://petri.com/how-to-automatically-hybrid-azure-ad-join-and-intune-enroll-pcs/): On-premises Active Directory domain-joined PCs have typically been managed with tools such as Group Policy.   At larger scales, you... - [PowerPoint Auto Fix Can Clean up Your Slides with a Single Click](https://petri.com/powerpoint-auto-fix-can-clean-up-your-slides-with-a-single-click/): You’re running late prepping for a meeting... your supervisor asked you to whip up a short PowerPoint slide deck for... - [Windows Server 2022 Secured-Core and Azure Hybrid Services Block Kernel Level Attacks](https://petri.com/windows-server-2022-secured-core-and-azure-hybrid-services-block-kernel-level-attacks/): Microsoft announced at its Ignite conference earlier this year that it is extending its Secured-Core initiative to Windows Server 2022.... - [How to Set Up Windows Server Rebootless (Hotpatching) Patching](https://petri.com/how-to-set-up-windows-server-rebootless-hotpatching-patching/): As part of the Automatic VM Guest Patching for Azure VMs preview announced at Ignite in March, Microsoft introduced Windows... - [How to Package and Deploy Windows Applications with Intune](https://petri.com/how-to-package-and-deploy-windows-applications-with-intune/): Intune Administrators can deploy, make optionally available, or uninstall Win32 apps with the help of Windows 10’s Intune Management Extension... - [Improved Containerization Features Coming in Windows Server 2022](https://petri.com/improved-containerization-features-coming-in-windows-server-2022/): Microsoft recently announced the first preview of Windows Server 2022, and some of its new features, at Ignite at the... - [How to Use Windows Admin Center in the Azure Portal](https://petri.com/how-to-use-windows-admin-center-in-the-azure-portal/): Microsoft announced at its recent Ignite conference that WAC in the Azure Portal in now available in public preview. Prior... - [Microsoft's Making it Easier to Adjust Sharing Link Permissions](https://petri.com/microsofts-making-it-easier-to-adjust-sharing-link-permissions/): Microsoft will be rolling out a simplified sharing control for files stored in SharePoint and OneDrive. This will allow users... - [Windows Admin Center in the Azure Portal is Now in Public Preview](https://petri.com/windows-admin-center-in-the-azure-portal-is-now-in-public-preview/): During the first part of Ignite in September 22-24, 2020, Microsoft announced that it was bringing Windows Admin Center (WAC)... - [GET-IT Practitioners Guide to Ignite is Happening Today](https://petri.com/get-it-practitioners-guide-to-ignite-is-happening-today/): Petri's GET-IT Practitioners Guide to Ignite is designed to help keep you updated on the key announcements from Microsoft's second... - [New 'Show Changes' feature Coming to Excel for the Web](https://petri.com/new-show-changes-feature-coming-to-excel-for-the-web/): One of Microsoft Excel’s Project Managers (PMs) on the Office Insider team recently published another ‘Feature deep dive‘. They announced... - [How to Set an Out of Office Message in Teams](https://petri.com/how-to-set-a-teams-out-of-office-message/): Setting an out-of-office message in Micrsoft Teams is easy. Learn how with this step-by-step article. - [Microsoft Lists - An Evolution of SharePoint Lists](https://petri.com/microsoft-lists-an-evolution-of-sharepoint-lists/): Welcome to SharePoint Lists! – At least that’s how Microsoft likely worded their introduction back in 2001 (Wow! ). The... - [Microsoft Azure AD Outage Highlights Upcoming SLA Updates](https://petri.com/microsoft-cloud-outage-highlights-upcoming-sla-updates/): If you had trouble yesterday accessing many of Microsoft’s services, you are not alone. For several hours, late into the... - [Microsoft Releases Box to Microsoft 365 Migration Tool](https://petri.com/microsoft-releases-box-to-microsoft-365-migration-tool/): Microsoft has a new tool that will make it easier for companies to migration from Box to OneDrive/SharePoint. - [Microsoft Releases ‘One-Click’ HAFNIUM Mitigation Tool](https://petri.com/microsoft-releases-one-click-hafnium-mitigation-tool/): Microsoft has a new tool that will make installing a temporary patch much easier to block known HANFIUM attacks. - [Best Practices for Deploying BitLocker with Intune](https://petri.com/best-practices-for-deploying-bitlocker-with-intune/): To protect data at rest on your Intune-managed Windows devices, BitLocker disk encryption can be applied automatically using the BitLocker... - [Microsoft Announces Whiteboard for Android and Microsoft Teams](https://petri.com/microsoft-announces-whiteboard-for-android-and-microsoft-teams/): A new Public Preview of the Microsoft Whiteboard app for Android and the launch of Microsoft Whiteboard for Microsoft Teams... - [Microsoft adds Extended Update Cadence for Edge Enterprise Users](https://petri.com/microsoft-adds-extended-update-cadence-for-edge-enterprise-users/): Microsoft is adding a new update option to Edge for Enterprise customers. - [AWS Turns 15](https://petri.com/aws-turns-15/): I know it seems almost impossible that it really could be 15 years but AWS launched its first service on... - [Microsoft Begins the Process to Shutdown Window Store for Business and Education](https://petri.com/microsoft-begins-the-process-to-shutdown-window-store-for-business-and-education/): And now it looks like Microsoft is taking more decisive action, at least for the business and education storefronts. The... - [New Personal Well-Being Insights Coming to Insights app in Teams](https://petri.com/new-personal-well-being-insights-coming-to-insights-app-in-teams/): Microsoft announced some new Insights features coming to Teams earlier this year and at their Ignite conference last week. They... - [Microsoft Endpoint Manager's Updates Aim to Simplify Mobile Device Management Policy Creation](https://petri.com/microsoft-endpoint-managers-new-settings-catalog-aims-to-simplify-mobile-device-management-policy-creation/): Rolling out in public preview early February 2021, Microsoft is adding a new feature to its Endpoint Manager (MEM) solution... - [HAFNIUM Highlights the Problem with Removing the Last Exchange Server](https://petri.com/hafnium-highlights-the-problem-with-removing-the-last-exchange-server/): Unless you have been living under a rock for the last week, you could not have missed that the Microsoft... - [Patch Tuesday – March 2021](https://petri.com/patch-tuesday-march-2021/): Microsoft released patches to fix 82 security bugs in Windows and other software this month. There are critical bugs in... - [Getting Started with Microsoft 365 Groups](https://petri.com/getting-started-with-microsoft-365-groups/): If you are getting started with Microsoft 365 groups, here's an introduction to how the tool works and how to... - [Rumors of Windows Server's Death Are Greatly Exaggerated](https://petri.com/rumors-of-windows-servers-death-are-greatly-exaggerated/): Aidan Finn goes on a rant about why Windows Server is far from dead and how it will be providing jobs for IT pros for years to come. - [Microsoft to Unveil New Webcam this Spring](https://petri.com/microsoft-to-unveil-new-webcam-this-spring/): Microsoft is working on a new webcam that should arrive this spring alongside several other peripherals and an updated Laptop... - [How to Turn Off Cortana Daily Briefing Emails](https://petri.com/how-to-turn-off-cortana-daily-briefing-emails/): If you do not want to receive the Cortana Daily Briefing email for yourself, your tenant, or a group of... - [How to Configure BitLocker Auto Unlock](https://petri.com/how-to-configure-bitlocker-auto-unlock/): BitLocker is a full-disk encryption tool that is built-in to Windows 10. Full disk encryption prevents someone who gets physical... - [AWS and Azure used in SolarWinds Attack](https://petri.com/aws-and-azure-used-in-solarwinds-attack/): The SolarWinds exploit was one of the biggest security breaches of the past year. There’s now no doubt that this... - [Microsoft has Shutdown Several UserVoice Feedback Forums](https://petri.com/microsoft-has-shutdown-its-uservoice-feedback-forums/): Microsoft has shutdown its UserVoice feedback platform without warning, leaving many users out in the dark when it comes to... - [Microsoft to Push 'Edge WebView2' Runtime to PCs](https://petri.com/microsoft-to-push-edge-webview2-runtime-to-pcs/): Back in February of this year, Microsoft added an item to their Microsoft 365 Roadmap that may very well be... - [How to Enable Passwordless Authentication with Azure AD](https://petri.com/how-to-enable-passwordless-authentication/): Microsoft announced at its Ignite conference, which ran March 2nd – 4th 2021, that passwordless authentication is now generally available.... - [PowerShell Gems That Every Microsoft 365 Administrator Should Know About](https://petri.com/powershell-gems-that-every-microsoft-365-administrator-should-know-about/): As an IT Professional, can you survive without PowerShell? I can imagine there are several debates around this topic on... - [Microsoft Warns of Active Exchange Server Exploits, Patches Released](https://petri.com/microsoft-warns-of-active-exchange-server-exploits-patches-released/): Microsoft has released several new patches for Exchange Server after they discovered an active 0-day vulnerability. - [Microsoft is Retiring Delve Mobile Apps](https://petri.com/microsoft-is-retiring-delve-mobile-apps/): Microsoft is retiring the Delve mobile apps but the technology is still baked into the graph. - [Microsoft Expands Teams Lineup with new Hardware](https://petri.com/microsoft-expands-teams-lineup-with-new-hardware/): At Ignite 2021, Micorosft has unveiled several new Teams pieces of hardware that will compliment the software experience. - [New Privacy, Compliance, and Webinar Features are Headed to Teams](https://petri.com/new-privacy-compliance-and-webinar-features-are-headed-to-teams/): At Ignite 2021, Microsoft has announced new functionality for Teams like webinar features as well as updates to privacy tools... - [Windows Server 2022 Now Available in Preview](https://petri.com/windows-server-2022-now-available-in-preview/): Today Microsoft officially announced the availability of Windows Server 2022 in preview at its Ignite conference, which is running March... - [Microsoft 365 Universal Print Now Generally Available](https://petri.com/microsoft-365-universal-print-now-generally-available/): Microsoft officially announced today the general availability of Universal Print at its Ignite conference. - [Microsoft Enhances Azure Active Directory With Several New Features](https://petri.com/microsoft-ignite-march-2021-azure-active-directory-announcements-embargo-march-2nd-6am-pt/): At Microsoft’s Ignite conference this week, there was a series of announcements for new Azure Active Directory features either entering... - [Microsoft Mesh: The Next Big Bet for Mixed Reality](https://petri.com/microsoft-mesh-the-next-big-bet-for-mixed-reality/): Microsoft is hosting its Ignite conference today and the company has announced a new mixed reality platform that they are... - [Microsoft Unveils PowerFx, RPA comes to the Windows Desktop at Ignite 2021](https://petri.com/power-platform-announcements-from-ignite/): Learn about Power Fx the new low code language, RPA desktop automation for all Windows Users, & all of the other major Power Platform news from Iginte. - [Paul Thurrott's Short Takes: Microsoft Ignite 2021 Special Edition](https://petri.com/paul-thurrotts-short-takes-microsoft-ignite-2021-special-edition/): Because Microsoft is having its second Ignite virtual event in five months, this edition of Short Takes looks exclusively at... - [Everything You Need to Know About Azure Infrastructure – February 2021 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-february-2021-edition/): Over the last couple of weeks, I’ve spotted lots of tiny little changes in the Azure Portal. And my feeds... - [Everything You Need to Know About Power Platform - February 2021](https://petri.com/everything-you-need-to-know-about-power-platform-february-2021/): February had lots of news for Power Platform from Microsoft. Learn about the new stuff like Dataverse for Teams, Power BI security, and more. - [Everything You Need to Know About Windows – February 2021](https://petri.com/everything-you-need-to-know-about-windows-february-2021/): In February, Microsoft announced its plans to release Windows 10 version 21H1 and that Windows 10 Enterprise LTSC support will... - [AWS Announcement Highlights for February 2021](https://petri.com/aws-announcement-highlights-for-february-2021/): In spite of the heavy winter weather and ongoing pandemic, Amazon continues to churn out an impressive set of enhancements... - [Microsoft to Open Data Center Region in Indonesia](https://petri.com/microsoft-to-open-data-center-region-in-indonesia/): Microsoft has announced today that the company plans to open a new datacenter region in Indonesia as part of the... - [How To Select the Correct Azure Storage Service for Your Operation](https://petri.com/how-to-select-the-correct-azure-storage-service-for-your-operation/): Selecting an Azure Storage Service doesn’t have to be difficult, yet you can take some steps to make sure you... - [How to Block Adobe Flash Player Using Active Directory Group Policy](https://petri.com/block-adobe-flash-player-using-active-directory-group-policy/): Flash Player is a plug-in for browsers that is installed and maintained separately. Although it came bundled with some browsers.... - [Veeam adds 200 new Features to its Backup and Recovery Suite with v11](https://petri.com/veeams-v11-of-its-backup-and-recovery-solution-has-something-for-everybody/): Veeam has announced their new v11 software and it brings 150 new features to the suite. - [Microsoft has new Clouds for Financial Services, Manufacturing, and Nonprofit](https://petri.com/microsoft-has-new-clouds-for-financial-services-manufacturing-and-nonprofit/): Microsoft is preparing to roll out new verticle cloud solutions targeted at several specific industries. - [Protecting Microsoft 365 from Ransomware Attacks with Filewall](https://petri.com/using-filewall-for-exchange-online-to-provide-protection-against-attachment-based-threats/): FileWall for Exchange is designed to work using Microsoft’s Graph API and integrates directly with the service - [How to Access Planner and To Do Content in Teams](https://petri.com/how-to-access-planner-and-to-do-content-in-teams/): One of the latest steps in bringing workflows from other Microsoft 365 applications into the native Teams interface is creating... - [Understanding Character Encoding in PowerShell](https://petri.com/understanding-character-encoding-in-powershell/): Working with strings in PowerShell is core to many different operations. With strings come the many different encodings that can... - [Microsoft’s Game Stack Live Developer Conference Takes Place April 20-21st](https://petri.com/microsofts-game-stack-live-developer-conference-takes-place-april-20-21st/): Microsoft's Game Stack Live developer event is taking place in late April and it will be a virtual event. - [Microsoft’s Bringing Text Predictions and Modern Comments to Word](https://petri.com/microsofts-bringing-text-predictions-and-modern-comments-to-word/): Microsoft is bringing two new features to Word: text predictions and modern commenting. - [Reactions are Headed to Outlook on the web and Mobile, Shows Promise but Significant Gaps Remain](https://petri.com/reactions-are-headed-to-outlook-on-the-web-and-mobile-shows-promise-but-significant-gaps-remain/): If you don’t use something often, then you might even forget it exists. When I read that reactions in Outlook... - [Microsoft is Merging OneDrive and SharePoint Admin Centers](https://petri.com/microsoft-is-merging-onedrive-and-sharepoint-admin-centers/): Microsoft is planning to merge the OneDrive and SharePoint admin centers next month. - [Microsoft Improves Security for Windows Server Update Services](https://petri.com/microsoft-improves-security-for-windows-server-update-services/): There haven’t been any significant changes to Windows Server Update Services (WSUS) for years. But recently, Microsoft released two updates... - [Microsoft is Making Changes to the L in Windows/Office LTSC](https://petri.com/microsoft-is-making-changes-to-the-l-in-windows-office-ltsc/): If you are riding on the Windows 10 and Office LTSC branches, your train is about to reach the station... - [Microsoft Announces Office 2021](https://petri.com/microsoft-announces-office-2021/): Microsoft has announced Office 2021, the next perpetual release of the productivity tools. - [Understanding Microsoft Defender and its Many Layers](https://petri.com/understanding-microsoft-defender-and-its-many-layers/): The Defender brand has existed since 2005, first seen in anti-spyware software for Windows XP and Vista called Windows Defender. Learn the difference between Defender then and now. And how it reflects the changes we’ve seen in Microsoft as a whole over that same time. - [Automate Azure VM Best Practices Configuration Using Azure Automanage](https://petri.com/automate-azure-vm-best-practices-configuration-using-azure-automanage/): Azure Automanage helps you to make sure your virtual machines (VM) are consistently configured with Microsoft’s best practice recommendations. And... - [Microsoft Announces the Next Update to Windows 10, Arriving this Spring](https://petri.com/microsoft-announces-the-next-update-to-windows-10-arriving-this-spring/): Microsoft has announced the next update to Windows 10 but do not get too excited, as there is not a... - [How to Turn Emails in Outlook Mobile into To Dos](https://petri.com/how-to-turn-emails-in-outlook-mobile-into-to-dos/): Microsoft has started rolling out a new feature to the Outlook mobile app (iOS & Android) that allows you to... - [What is Microsoft Mesh? A New Developer Platform for Mixed Reality Apps](https://petri.com/what-is-microsoft-mesh-a-new-developer-platform-for-mixed-reality-apps/): Microsoft has a new development platform that is not explicitly tied to any single device and allows you to create... - [What's New in PowerShell 7.1](https://petri.com/whats-new-in-powershell-7-1/): The latest versions of PowerShell are not included out-of-the-box with Windows 10. So, you might not know that PowerShell is... - [How to Enable PowerShell Remoting in Windows 10](https://petri.com/how-to-enable-powershell-remoting-in-windows-10/): Unlike Windows Server, PowerShell Remoting isn’t enabled by default in Windows 10. PowerShell Remoting is a secure management protocol (WSMan)... - [Microsoft to Crackdown on High Volume Microsoft 365 Email Offenders](https://petri.com/microsoft-to-crackdown-on-high-volume-microsoft-365-email-offenders/): Microsoft has announced that users who receive a high number of messages, they will soon be cracking down on the... - [Patch Tuesday – February 2021](https://petri.com/patch-tuesday-february-2021/): Microsoft has released a relatively small number of fixes this month, in total just 56. But they include patches for... - [Microsoft Adds 'Meet Now' to Teams but It Needs to Go One Step Further](https://petri.com/microsoft-adds-meet-now-to-teams-but-it-needs-to-go-one-step-further/): Microsoft is rolling out a new Meet Now feature for Teams that almost matches the best-in-class funcationality. - [Protecting Hybrid Active Directory Environments from Attack](https://petri.com/protecting-hybrid-active-directory-environments-from-attack/): Security Assertion Markup Language (SAML) is an open standard that facilitates user logon to on-premises and cloud services. - [Want to Run a Webinar in Teams? You will Need Teams Pro](https://petri.com/want-to-run-a-webinar-in-teams-you-will-need-teams-pro/): Microsoft has a new service plan called Teams Pro that you will need if you want to run a webinar. - [GET-IT SharePoint Day is Happening Today!](https://petri.com/get-it-sharepoint-day-is-happening-today/): The world of SharePoint is constantly evolving. From significant announcements like Viva to managing the security of your users and... - [How to Install Windows Software Remotely Using PowerShell and Chocolatey](https://petri.com/how-to-install-windows-software-remotely-using-powershell-and-chocolatey/): 2020 saw more people work from home than ever due to the worldwide health pandemic. But organizations were caught off... - [Spartan Down: Microsoft’s Pulling the Plug on Classic Edge on March 9th](https://petri.com/spartan-down-microsofts-pulling-the-plug-on-classic-edge-on-march-9th/): Microsoft will remove legacy Edge from Windows 10 PCs next month with a cumulative update. - [Change Windows 10 Graphics Settings to Solve Display Problems on Devices with Dual GPUs](https://petri.com/change-windows-10-graphics-settings-to-solve-display-problems-on-devices-with-dual-gpus/): Change graphics performance preferences to solve problems with display issues on devices with dual GPUs. - [Microsoft Exploits Its Software Toolkit to Create Viva](https://petri.com/microsoft-viva-technical-aspects/): Microsoft launched Viva, its new employee experience platform, on Feb.4. Here's a technical assessment of the new EXP platform. - [Microsoft 365's Next Big Feature is Called Viva - The Intranet, Reborn](https://petri.com/microsoft-365s-next-big-feature-is-called-viva/): Keeping employees engaged is a critical component to the long-term success of the individual but with resources often scattered to... - [How Microsoft is Moving Back into Education in a World of iPads and Chromebooks](https://petri.com/how-microsoft-is-moving-back-into-education-in-a-world-of-ipads-and-chromebooks/): Microsoft's battle for education, while not won, has certainly become much less of a worry for the company. - [Microsoft Open Sources ESE, the Extensible Storage Engine](https://petri.com/microsoft-open-source-ese-database/): Microsoft has open-sourced the ESE database, the engine at the heart of Exchange Server and Exchange Online. The code is now available on GitHub. - [What is Windows 10 Cloud Configuration](https://petri.com/microsoft-announces-windows-10-in-cloud-config-to-improve-security-for-frontline-and-remote-workers/): February 2nd, 2021, Microsoft announced ‘Windows 10 in cloud configuration’. ‘Cloud configuration’ is a new recommended device configuration that can... - [Use Update Compliance to View Blocked Windows 10 Feature Updates](https://petri.com/use-update-compliance-to-view-blocked-windows-10-feature-updates/): New queries in Update Compliance provide greater insight for IT when safeguard holds are placed on Windows endpoints. - [Everything You Need to Know About Windows – January 2021](https://petri.com/everything-you-need-to-know-about-windows-january-2021/): A near-final build of Windows 10X leaks to the Internet, Microsoft released Edge version 88, and Microsoft is hoping to... - [Everything You Need to Know About the Power Platform - January 2021](https://petri.com/everything-you-need-to-know-about-the-power-platform-january-2020/): Power BI, Power Apps, Power Automate, Microsoft Teams, Github, Visual Studio code and 10 year olds getting certified. This month has a bit of everything! - [Everything You Need to Know About Office 365 - January 2021](https://petri.com/everything-you-need-to-know-about-office-365-january-2021/): January has come and gone but Office 365 news is still flowing. - [Everything You Need to Know About Azure Infrastructure – January 2021 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-january-2021-edition/): The first month of the year has come and gone but here is a recap of the Azure announcements for... - [Missing Audit Records for Retention Labels Applied to SharePoint Online Documents](https://petri.com/spo-retention-audit-records-missing/): A change made in December 2020 means that some audit records for retention labels applied to SharePoint Online are missing - [How to Configure PowerShell SSH Remoting in Windows 10](https://petri.com/configure-powershell-ssh-remoting-in-windows-10/): Microsoft introduced Secure Shell (SSH) as a transport for PowerShell Remoting in PowerShell 6. Older versions of PowerShell (Windows PowerShell)... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (January 2021)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-15/): Because Microsoft announced its quarterly earnings this week, this edition of Short Takes looks exclusively at the results across all... - [How to Inventory Remote Computers Using PowerShell](https://petri.com/how-to-inventory-remote-computers-using-powershell/): Windows Management Instrumentation (WMI) is a management infrastructure built-in to Windows for querying management and operations data. It can be... - [New Override Alerts for Office 365 Create an Additional Safety Net](https://petri.com/new-override-alerts-for-office-365-create-an-additional-safety-net/): Microsoft is rolling out a new feature that will alert you if a phishing link or malware is delivered to... - [Surface Duo Update Delivers App Improvements for Microsoft 365](https://petri.com/surface-duo-update-delivers-app-improvements-for-microsoft-365/): Microsoft is rolling out a new update to the Surface Duo that will improve the Microsoft 365 app experience. - [CISA and CrowdStrike Tools Make Detecting Compromised Microsoft 365 Accounts Easier](https://petri.com/cisa-and-crowdstrike-tools-make-detecting-compromised-microsoft-365-accounts-easier/): The Cybersecurity and Infrastructure Security Agency (CISA) recently released a PowerShell-based tool to help organizations detect compromised accounts and applications... - [How to Hide Sensitive Documents Stored in SharePoint Online](https://petri.com/hide-sharepoint-documents/): Sometimes the need exists to hide SharePoint documents from curious eyes. This article explores the best approach to use. - [Microsoft Beats Expectations with Healthy Q2 Earnings](https://petri.com/microsoft-beats-expectations-with-healthy-q2-earnings/): It's that time of the quarter again where Microsoft reports its earnings but this time around it is for calendar... - [Microsoft's Ignite, Part II, is Happening March 2-4](https://petri.com/microsofts-ignite-part-ii-is-happening-march-2-4/): Last year, when Microsoft announced that they would be splitting Ignite into two events, we did not know when the... - [Microsoft Endpoint Manager Simplifies Remote PC Management During Pandemic](https://petri.com/microsoft-endpoint-manager-simplifies-remote-pc-management-during-pandemic/): There are lots of ways that you can remotely manage Windows devices. But some of them require direct network connectivity... - [Teams Web Meetings Update Delivers Gallery View and Together Mode Features](https://petri.com/teams-web-meetings-update-delivers-gallery-view-and-together-mode-features/): Microsoft has done well to ensure that Teams provides a consistent experience across the desktop client, web browser, or mobile... - [Microsoft Leadership Team Evolution Continues with Kurt DelBene Retiring](https://petri.com/microsoft-leadership-team-evolution-continues-with-kurt-delbene-retiring/): Microsoft has had several high-profile executives depart the company this month with Kurt DelBene joining the list. - [Microsoft Teams New ‘Offline Experience’ Will Improve Messaging Workflow](https://petri.com/microsoft-teams-new-offline-experience-will-improve-messaging-workflow/): Microsoft is bringing a new feature to Teams that will make it easier to send messages when you are offline. - [Running an Azure AD Access Review for Every Guest in Every Group](https://petri.com/azure-ad-access-review-guests/): A preview of Azure AD Access Reviews for all guests in all groups in a tenant is available. It's a preview, so some gaps are inevitable. - [New Meeting Organizer Options Arriving in Teams this January](https://petri.com/new-meeting-organizer-options-arriving-in-teams-this-january/): Two new features arrive in Microsoft Teams in January and will roll out over the next week or so. - [Microsoft Renames 10 Azure Active Directory Roles](https://petri.com/microsoft-renames-10-azure-active-directory-roles/): Microsoft has updated 10 role names in Azure AD and if your script is broken, this is likely why. - [Use Google Calendar to Schedule Microsoft Teams Meetings](https://petri.com/use-google-calendar-to-create-microsoft-teams-meetings/): Microsoft has released a version of the Teams meeting add-on for Google Calendar. You can create Teams meetings from Google Workspace or Calendar. - [Surface Duo, Four Months Later](https://petri.com/surface-duo-four-months-later/): The Duo has a place in this world if you are looking for a modern-PDA and a device that embodies... - [Getting Started with PSCustomObject in PowerShell](https://petri.com/getting-started-with-pscustomobject-in-powershell/): When you need to store data in a structured format that can be extended upon, or in a more ordered... - [How to Use PowerShell Splatting to Make Code More Readable](https://petri.com/use-powershell-splatting-to-make-code-more-readable/): In this article, I show you how to use PowerShell splatting to make your code more readable. - [Microsoft's Investment in Cruise Brings it Into the Self-Driving Car Game](https://petri.com/microsoft-investment-in-cruise-brings-it-into-the-self-driving-car-game/): Microsoft is making a significant investment in Cruise and brings the company into the self-driving car game. - [Microsoft 365 Passwordless Sign-In: Windows Hello vs. FIDO2 Security Keys](https://petri.com/microsoft-365-passwordless-sign-in-windows-hello-vs-fido2-security-keys/): Windows Hello and FIDO2 security keys both provide passwordless authentication. But which is best depends on your organization's existing infrastructure... - [GET-IT: Free SharePoint 1 Day Virtual Conference is Happening February 9th](https://petri.com/get-it-free-sharepoint-1-day-virtual-conference-is-happening-february-9th/): Petri’s GET-IT: SharePoint 1-Day virtual conference is a full day of free learning dedicated to technical content aimed at IT... - [Disaster Recovery and the SolarWinds Exploit](https://petri.com/disaster-recovery-from-the-solarwinds-exploit/): One of the biggest malware attacks in recent history was the SolarWinds exploit where malware was spread through SolarWinds’ software... - [The New History Menu in Teams will Simplify Navigation](https://petri.com/the-new-history-menu-in-teams-will-simplify-naviagation/): Microsoft is bringing a new history menu to Teams that will make it easier to jump back to a specific... - [The New 250 GB Upload Limit for Microsoft 365. Good or Bad?](https://petri.com/microsoft-365-250-gb-max-file-upload-good-or-bad/): Microsoft 365 now supports the upload of 250 GB files to SharePoint Online and OneDrive for Business. Sounds good, and it is, but there is a downside too. - [Azure AD Connect Gets Better Performance and Cloud Provisioning Attribute Mapping in Preview](https://petri.com/azure-ad-connect-gets-better-performance-and-cloud-provisioning-attribute-mapping-in-preview/): Faster synchronization, on-demand user provisioning, and attribute mapping come to Azure AD Connect and cloud provisioning. - [How to Use PowerShell to Change and Update the Registry](https://petri.com/how-to-use-powershell-to-change-and-update-the-registry/): The Windows registry is complicated and can be difficult to work with. Using PowerShell, we can leverage many different ways... - [Microsoft 365 Advanced eDiscovery Decrypts Exported Files](https://petri.com/microsoft-365-advanced-ediscovery-decrypt/): Microsoft 365 Advanced eDiscovery can now decrypt protected documents stored in SharePoint Online and OneDrive for Business - [Patch Tuesday – January 2021](https://petri.com/patch-tuesday-january-2021/): Microsoft fixes a zero-day in its Defender antimalware software and issues a patch for a vulnerability that was publicly disclosed... - [Microsoft Increases File Size Support in Microsoft 365](https://petri.com/microsoft-increases-file-size-support-in-microsoft-365/): Microsoft is increasing the size of uploads from 100 GB to 250GBs. - [How to Enable PowerPoint Presenter View in Teams](https://petri.com/how-to-enable-powerpoint-presenter-view-in-teams/): Microsoft is finally bringing Presenter view to Teams when you share a PowerPoint deck. - [Where Microsoft Might be Going with One Outlook](https://petri.com/one-outlook-project-monarch/): What does the Project Monarch, the development of a single client as part of Microsoft's One Outlook effort, mean in practice? - [Teams Will Soon Organize Meeting Content for Easier Post-Event Discoverability](https://petri.com/teams-will-soon-organize-meeting-content-for-easier-post-event-discoverability/): Microsoft will start to roll out a new feature that will make it easier to find information that was discussed... - [How to Work with Services in PowerShell](https://petri.com/how-to-work-with-services-in-powershell/): How PowerShell can be used to work services in Windows using PowerShell - [Microsoft Refreshes the Surface Pro For Business, Not Consumers](https://petri.com/microsoft-refreshes-the-surface-pro-for-business-not-consumers/): If there is one device in the Surface family that defines the brand, it would be the Surface Pro. The... - [History and Open Tabs Sync Rolling Out to Microsoft Edge](https://petri.com/history-and-open-tabs-sync-rolling-out-to-microsoft-edge/): History and open tabs sync starts to roll out in some regions for users on the stable channel. - [How to Limit Resource Usage of PowerShell Scripts](https://petri.com/how-to-limit-resource-usage-of-powershell-scripts/): PowerShell scripts can use a lot of resources. And that can be a problem if you need to run a... - [Microsoft 365, Artificial Intelligence, and Privacy](https://petri.com/privacy-ai-microsoft365/): The Microsoft 365 Productivity Score feature was castigated by privacy advocates, but perhaps they had the wrong target. Is the use of AI in Microsoft 365 more concerning? - [Getting Started with Shared Calendars in Microsoft Teams](https://petri.com/getting-started-with-shared-calendars-in-microsoft-teams/): Shared Calendars in Microsoft Teams have limitations, but they are still useful. Learn how to set one up with this step-by-step guide. - [Microsoft Lists for iOS Arrives This Month, OneDrive App Updates Too](https://petri.com/microsoft-lists-for-ios-arrives-this-month-onedrive-app-updates-too/): Microsoft will start rolling out its Lists app for iOS users this month and an update to OneDrive will make... - [How to be the first to Know About Azure Storage Explorer Updates](https://petri.com/how-to-be-the-first-to-know-about-azure-storage-explorer-updates/): The Azure Storage Explorer is one of my most regularly-used Azure tools aside from the Azure Portal itself. If you... - [Everything You Need to Know About Azure Infrastructure – December 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-december-2020-edition/): Happy new year! I’m writing this article at the end of my first day back at work since November. I... - [Looking at Microsoft 365 Priority Accounts Again](https://petri.com/microsoft-365-priority-accounts-again/): Microsoft's initial run at highlighting the advantage of priority accounts for Exchange Online and Microsoft Defender wasn't good. Now it's more understandable. - [Everything You Need to Know About Power Platform - December 2020](https://petri.com/everything-you-need-to-know-about-power-platform-december-2020/): What you missed while you were taking it easy over the holidays. Includes updates on Desktop Flows, Power Apps Performance recommendations, and more. - [Everything You Need to Know About Office 365 – December 2020 Edition](https://petri.com/everything-you-need-to-know-about-office-365-december-2020-edition/): As we kick off the first workday of 2021, it’s time for our monthly round-up of what happened, well, last... - [Everything You Need to Know About Windows – December 2020](https://petri.com/everything-you-need-to-know-about-windows-december-2020/): This month I have some details of changes coming to Windows and a new feature aimed at improving performance in... - [Microsoft Says Solorigate Let Attackers View, but not Modify, Source Code](https://petri.com/microsoft-says-solorigate-let-attackers-view-but-not-modify-source-code/): Microsoft has published an update on the Solar Winds hack that let attackers view its source code. - [Understanding and Manipulating Dates and Time in PowerShell](https://petri.com/understanding-and-manipulating-dates-and-time-in-powershell/): Working with Dates and Times in PowerShell is very common. Many scripts require simple or complex date calculations for such... - [How to Check if a PowerShell Script is Running with Admin Privileges](https://petri.com/how-to-check-a-powershell-script-is-running-with-admin-privileges/): Use a . NET API to check if the user running your script is a local administrator. - [Exchange Online Rejects Old TLS Connections in January 2021](https://petri.com/old-tls-going-exchange-online/): Exchange Online will soon remove support for TLS 1.0 and 1.1. Any messages sent to Exchange Online from servers using these protocols will fail. - [Microsoft is Bringing an 'Approval' Workflow Feature to Teams](https://petri.com/microsoft-is-bringing-an-approval-workflow-feature-to-teams/): Microsoft has announced a new 'Approvals' feature for Teams that will make receiving approvals easier. - [Marking Office 365 Documents and Email as Formal Records](https://petri.com/microsoft-365-records-management/): Microsoft 365 includes the ability to mark SharePoint and Exchange items as records using a special form of retention label. - [How to Monitor Network Activity Using Windows 10 Packet Monitor (PKTMON)](https://petri.com/how-to-monitor-network-activity-using-windows-10-packet-monitor-pktmon/): Learn how to debug network issues in Windows 10 and Windows Server with PacketMon. - [Understanding and Exploring Continuous Access Evaluation for Azure Active Directory](https://petri.com/respond-to-changes-in-security-policy-and-conditions-in-real-time-with-continuous-access-evaluation-preview-for-azure-ad/): Reducing the time that security tokens remain valid negatively affects the end-user experience. CAE is designed to address the problem. - [How to Automatically Unlock BitLocker Protected Devices Connected to Wired Networks](https://petri.com/automatically-unlock-bitlocker-protected-devices-connected-to-wired-networks-using-network-unlock/): Network Unlock allows devices connected to a wired network to automatically unlock BitLocker-protected OS drives. - [Meeting Reactions Arrive in Teams in January](https://petri.com/meeting-reactions-arrive-in-teams-in-january/): Back in July, Microsoft announced a slew of features that would be coming to the Teams meeting experience. While some... - [Yammer Previews Support for Azure B2B Collaboration](https://petri.com/yammer-previews-support-for-azure-b2b-collaboration/): Microsoft has previewed support for Azure B2B Collaboration (guest user accounts) in Yammer. The feature is only available for networks configured in Microsoft 365 native mode. - [How to Push Data via PowerShell to PowerBI](https://petri.com/how-to-push-data-via-powershell-to-powerbi/): PowerBI has quickly become a top platform for data analytics within the Office 365 set of applications. With the ability... - [Microsoft Illustrates the Breadth and Depth of the SolarWinds Hack](https://petri.com/microsoft-illustrates-the-breadth-and-depth-of-the-solarwinds-hack/): Unless you have been hiding under an air-gapped rock, the entire computing industry was set on fire this week with... - [How to Copy Active Directory Groups from One User to Another with PowerShell](https://petri.com/how-to-copy-active-directory-groups-from-one-user-to-another-with-powershell/): Use PowerShell to create consistent user objects in Active Directory. - [How to Audit and Test Windows 10 Controlled Folder Access](https://petri.com/how-to-audit-and-test-windows-10-controlled-folder-access/): Audit and test Microsoft Defender Controlled Folder Access to help protect your organization against ransomware. - [GET-IT Azure DevOps is Happening Right Now](https://petri.com/get-it-azure-devops-is-happening-right-now/): Petri’s GET-IT: Azure DevOps 1-Day virtual conference is a day of free learning dedicated to deep technical content aimed at IT Pros... - [How to Update User Photos for Microsoft 365 Accounts](https://petri.com/update-user-photos-office-365-accounts/): Every Microsoft 365 user account should have a photo and Microsoft 365 Groups and Teams should have photos too. - [Microsoft Has a New Password Manager for Consumer and Enterprise Customers](https://petri.com/microsoft-has-a-new-password-manager-for-consumer-and-enterprise-customers/): Microsoft has announced their first password manager that is being included in the company's Authenticator app. - [How to Create a PowerShell Powered Web Server Using Pode](https://petri.com/how-to-create-a-powershell-powered-web-server-using-pode/): Pode is a unique cross-platform PowerShell web server designed to host REST API’s, web sites, and TCP/SMTP servers. Support for... - [How and When to Use Breakout Rooms in Teams](https://petri.com/how-and-when-to-use-breakout-rooms-in-teams/): In a move that mirrors in-person meetings, Microsoft has released breakout rooms for Microsoft Teams. Breakout rooms were originally expected... - [Microsoft Delays Teams’ Fluent Update, Native Notifications](https://petri.com/microsoft-delays-teams-fluent-update-native-notifications/): Microsoft has delayed native notifications in Teams and Fluent icons. - [GET-IT: Azure and DevOps 1-Day Virtual Conference is Happening Wednesday](https://petri.com/get-it-azure-and-devops-1-day-virtual-conference-is-happening-wednesday/): Petri’s GET-IT: Azure DevOps 1-Day virtual conference is a full day of free learning dedicated to deep technical content aimed at... - [Azure AD Premium Licenses Needed to Manage SharePoint Sites with Sensitivity Labels](https://petri.com/azuread-premium-sensitivity-labels/): Sensitivity labels can now manage the external sharing capability of SharePoint Online team sites. Those who assign labels need Azure AD Premium licenses. - [How to Use Acme.sh to Provision LetsEncrypt SSL Certificates](https://petri.com/how-to-use-acme-sh-to-provision-letsencrypt-ssl-certificates/): LetsEncrypt has changed the face of SSL certification issuance. Making it easy for website developers to freely and easily issue... - [Patch Tuesday – December 2020](https://petri.com/patch-tuesday-december-2020/): This month there are just 58 bugs patched for Microsoft products, including a critical remote code execution flaw in Hyper-V... - [Why You Should Use Windows Update for Business Instead of Windows Server Update Services](https://petri.com/why-you-should-use-windows-update-for-business-instead-of-windows-server-update-services/): As more employees work from home, Windows Update for Business provides a simpler way to update Windows endpoints with the... - [How to Use Restic for Backup](https://petri.com/how-to-use-restic-for-backup/): Restic is a Go-based backup utility. Built on the design principles of an efficient, easy-to-use, secure, and verifiable backup system,... - [Decrypting SharePoint Online Documents with PowerShell](https://petri.com/decrypt-sharepointonline-documents/): SharePoint Online users can protect confidential documents by applying sensitivity labels with encryption. Sometimes administrators need to decrypt those files. - [SharePoint Usage Explodes in 2020, Adds 100 Million Monthly Users](https://petri.com/sharepoint-usage-explodes-in-2020-adds-100-million-monthly-users/): Today, the company is updating that figure and the growth has been substantial. In a blog post penned by Jared... - [How Azure AD and a Load Balancer Can Simplify App Delivery](https://petri.com/how-azure-ad-and-a-load-balancer-can-simplify-app-delivery/): This post was sponsored by Kemp Microsoft’s offering in the single sign-on space for several years has been Azure Active Directory, which serves... - [Microsoft to Turn on Guest Access in Teams by Default](https://petri.com/microsoft-to-turn-on-guest-access-in-teams-by-default/): Microsoft is making a change to Guest default settings but you likely do not have much to worry about. - [No Way to Stop Gathering Data Used by Productivity Score](https://petri.com/productivity-score-data/): Microsoft caved in to protests last week and removed user level data from its Productivity Scorre feature even though the data is available elsewhere. - [Microsoft Begins Rollout of Breakout Rooms for Teams](https://petri.com/microsoft-begins-rollout-of-breakout-rooms-for-teams/): If you want to use breakout rooms with Teams, there is good news and not-so-good news. - [How to Use PowerShell Calculated Properties](https://petri.com/how-to-use-powershell-calculated-properties/): Manipulate PowerShell object output using calculated properties. - [Paul Thurrott's Short Takes: December 4 2020](https://petri.com/paul-thurrotts-short-takes-december-4-2/): Because it’s the most wonderful time of a less than wonderful year, this edition of Short Takes looks at Microsoft’s... - [AWS Launches re:Invent 2020 with new MacOS Support](https://petri.com/aws-launches-reinvent-2020-with-new-macos-support/): Starting on Monday, November 30th, and running for the next three weeks, Amazon has launched its annual AWS re:Invent conference.... - [Microsoft Releases Machine-Learning Backed Password Spray Attack Detection](https://petri.com/microsoft-releases-machine-learning-backed-password-spray-attack-detection/): New machine-learning backed password spray attack detection spots twice the number of compromised accounts. - [Teams Previews Personal Features for Desktop and Browser Clients](https://petri.com/teams-personal-desktop/): Microsoft has released Teams personal functionality for the Windows desktop and browser clients. - [Rich in Microsoft History, Salesforce to Acquire Slack](https://petri.com/rich-in-microsoft-history-salesforce-to-acquire-slack/): SalesForce has announced that it will be buying Slack for $27. 7 billion – a 28x Net Twelve Months Revenue.... - [Everything You Need to Know about Power Platform - November 2020](https://petri.com/everything-you-need-to-know-about-power-platform-november-2020/): All of the things you wanted to know about Power Platform for Novemeber 2020. Here is a hint, the really cool stuff was bout Dataverse but there was more. - [Everything You Need to Know About Office 365 - November 2020 Edition](https://petri.com/everything-you-need-to-know-about-office-365-november-2020-edition/): It was a busy month for Office 365 updates but these are the items you need to know about. - [Microsoft Updates Teams Calling With CarPlay Support, New UI, and More](https://petri.com/microsoft-updates-teams-calling-with-carplay-support-new-ui-and-more/): Microsoft is starting to roll out a significant update to the Teams expereince with some features arriving today and others... - [Everything You Need to Know about Windows – November 2020](https://petri.com/everything-you-need-to-know-about-windows-november-2020/): November brings a new version of Edge in the Stable Channel, Windows Feature Experience Packs for Insiders, and news of... - [Everything You Need to Know About Azure Infrastructure – November 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-november-2020-edition/): November has come and gone but for those looking to catch-up on Azure, here's what you need to know. - [Widespread Criticism of Microsoft Productivity Score is Unfounded](https://petri.com/widespread-criticism-microsoft-productivity-score-unfounded/): People are certainly getting hot and bothered about Microsoft's Productivity Score feature. But the facts are that usage data has been available for years. - [Microsoft Begins Testing 'Windows Feature Experience Packs'](https://petri.com/microsoft-begins-testing-windows-feature-experience-packs/): Microsoft is testing out a new way to update features in Windows 10 with Windows Feature Experience Pack. - [Microsoft To Launch New Surface Pro in January](https://petri.com/microsoft-to-launch-new-surface-pro-in-january/): Microsoft is preparing to launch new Surface hardware early next year. - [SMB Compression Lowers Bandwidth and Improves Copy Times in Windows Server and Azure](https://petri.com/smb-compression-lowers-bandwidth-and-improves-copy-times-in-windows-server-and-azure/): SMB Compression improves speeds and lowers bandwidth utilization when copying large files across the network. - [How the Microsoft 365 Substrate Powers Intelligent Search](https://petri.com/microsoft-365-substrate-intelligent-search/): The Microsoft 365 substrate is the foundation underpinning how Microsoft 365 applications deliver intelligent search resuilts to users. - [The Microsoft ISV Market is Heating Up](https://petri.com/the-microsoft-isv-market-is-heating-up/): In the past two weeks, two major acquisitions have shaken up the Microsoft 365 ISV market. - [Four Common Disaster Recovery Myths](https://petri.com/four-common-disaster-recovery-myths/): Most organizations have finally been convinced about the need to have a robust disaster recovery (DR) plan to protect their... - [Determining Azure Blob Storage Access Tiers with Ease](https://petri.com/determining-azure-blob-storage-access-tiers-with-ease/): One of the things that is rather powerful about Azure Storage is that there are a number of different offerings.... - [No Question That MFA Should be Used, But Is It Time to Dump SMS?](https://petri.com/azure-ad-mfa-sms-app/): There's no question about using MFA to protect Azure AD accounts. The only issue is to use SMS or app-based authentication. - [Get-WinEvent - Search the Windows Event Log with PowerShell](https://petri.com/get-winevent/): The PowerShell Get-WinEvent cmdlet allows you to quickly search for just what you want to find in the Windows Event Log. - [Microsoft's Ambitious Plan to Secure Windows 10 From Physical Vulnerabilities](https://petri.com/microsofts-ambitious-plan-to-secure-windows-10-from-physical-vulnerabilites/): When it comes to security, the list of ways that attackers can steal information from your environment is growing at... - [How to Import and Export Delimited Files, like CSV, in PowerShell](https://petri.com/how-to-import-and-export-delimited-files-like-csv-in-powershell/): The Export-CSV and Import-CSV cmdlets are exceptionally useful tools to both export data for consumption to other applications and to... - [Microsoft Highlights Important Security Topics in National Cybersecurity Awareness Month](https://petri.com/microsoft-highlights-important-security-topics-in-national-cybersecurity-awareness-month/): Microsoft uses National Cybersecurity Awareness Month to highlight import security issues to help raise awareness with its customers. - [Teams Extensibility for Meetings Has Arrived, Oakdale becomes Dataverse for Teams](https://petri.com/teams-extensibility-for-meetings-has-arrived-oakdale-becomes-dataverse-for-teams/): With more than 115 million daily users of Teams, the platform is the communication hub for Microsoft 365. And today,... - [Analyzing Delayed Roll-Outs for New Office 365 Features](https://petri.com/analyzing-delayed-office365-features/): Microsoft delays some new Office 365 features for different reasons.It seems like a lot of Teams features are delayed, but is this true? - [Paul Thurrott's Short Takes: November 13 2020](https://petri.com/paul-thurrotts-short-takes-november-13-2/): Because it’s Friday the 13th, this edition of Short Takes looks at the Xbox Series X|S launch, the . NET... - [Patch Tuesday – November 2020](https://petri.com/patch-tuesday-november-2020/): Microsoft patches 112 bugs, including a zero-day for the Windows kernel. - [Play My Emails Goes International](https://petri.com/play-my-emails-international/): Outlook Mobile's Play My Emails feature is now available internationally after Microsoft deployed the necessary services in non-US Office 365 datacenters. - [Using PowerShell to Delete Files and Folders](https://petri.com/using-powershell-to-delete-files-and-folders/): In this article, we explore how to delete files and folders in PowerShell, and what limitations exist. Simple as a deletion of a file or folder is, it is important to understand how to perform this operation in PowerShell to delete process files, temporary files, or clean up sensitive data. - [How to Copy Active Directory Users with PowerShell](https://petri.com/how-to-copy-active-directory-users-with-powershell/): Using the New-ADUser cmdlet and -Instance parameter, you can copy AD attributes from an existing user when creating new Active... - [GET-IT User Management Virtual Conference is Happening Right Now](https://petri.com/get-it-user-management-virtual-conference-is-happening-right-now/): Today is the day, Petri's GET-IT User Management is happening right now and you can watch it here on Petri's... - [Updated Compliance Assessment Report Released for Microsoft 365](https://petri.com/updated-compliance-assessment-report-microsoft-365/): An updated assessment of Microsoft 365 compliance capabilities is available. It contains some good information, but it also includes some errors. - [Understanding How Azure Sentinel and Entity Behavior Analytics Deliver Actionable Intelligence](https://petri.com/azure-sentinel-user-and-entity-behavior-analytics-delivers-actionable-intelligence-on-user-threats/): UEBA can identify unusual activity and help SOC teams identify if there is a compromised entity or a malicious insider. - [GET-IT: Free User Management 1 Day Virtual Conference Happens Nov 10th](https://petri.com/get-it-free-user-management-1-day-virtual-conference-happens-nov-10th/): Petri's GET-IT: User Management 1-Day virtual conference is a full day of free learning dedicated to technical user management and... - [New Details for Microsoft’s Upcoming ‘Cloud PC’ Uncovered](https://petri.com/new-details-for-microsofts-upcoming-cloud-pc-uncovered/): Microsoft's new 'Cloud PC' remote solution for Microsoft 365 is moving closer towards retail availability. - [Assigning Rights in a Sensitivity Label for External Communications with PowerShell](https://petri.com/assigning-rights-label/): Assigning rights in a sensitivity label with PowerShell is a great way to automate work when you need to update the settings for lots of entries. - [Fast User Switching Coming to Teams Desktop App in December](https://petri.com/fast-tenant-switching-coming-to-teams-desktop-app-in-december/): One of the biggest challenges with Teams today is that if you are part of multiple tenants, switching between them... - [Everything You Need to Know About Azure Infrastructure – October 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-october-2020-edition/): October, the first month in Q4 of the calendar year and Q2 of the Microsoft financial year, is also in... - [Windows Admin Center is Coming to the Azure Portal](https://petri.com/windows-admin-center-is-coming-to-the-azure-portal/): At Ignite earlier this year, Microsoft announced that the Windows Admin Center is coming to the Azure portal. - [Everything You Need to Know About Office 365 – October 2020](https://petri.com/everything-you-need-to-know-about-office-365-october-2020/): While not quite as busy as last month, thanks to Ignite having come and gone, there were still quite a... - [Everything You Need to Know About Power Platform – October 2020](https://petri.com/everything-you-need-to-know-about-power-platform-october-2020/): Get your updates on the Power Platform for October 2020. Topics include new Power BI user and creator experience, 400 connectors, and enterprise automations - [Everything You Need to Know About Windows - October 2020 Edition](https://petri.com/everything-you-need-to-know-about-windows-october-2020/): This month's big news is the release of Windows 10 version 20H2. It's a minor update but it comes with... - [Microsoft Launches Public Teams Preview Program](https://petri.com/microsoft-launches-public-teams-preview-program/): Called the “Microsoft Teams Public Preview”, this update policy allows you to “explore and test upcoming features”. - [Botched Microsoft Update to Teams Retention Causes Customer Heartburn](https://petri.com/teams-retention-bug-caused-heartburn/): A Teams GUI bug made Office 365 retention policies created for Teams seem to apply to Exchage Online mailboxes. - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (October 2020)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-14/): Because it’s the most wonderful time of the quarter, this edition of Short Takes looks more closely at Microsoft’s latest... - [Microsoft Teams UI Update Begins to Incorporate Fluent Elements](https://petri.com/microsoft-teams-ui-update-begins-to-incorporate-fluent-elements/): Microsoft is slowly starting to bring Fluent elements to its popular collaboration tool, Teams. - [Excel’s new ‘Data Types’ Feature is the Apps Biggest Update in Years](https://petri.com/excels-new-data-types-feature-is-the-apps-biggest-update-in-years/): If there is one app in the Office 365 suite that keeps people coming back to the productivity tools it... - [Restructuring Office 365 Sensitivity Labels](https://petri.com/restructure-office365-sensitivity-labels/): Sensitivity Labels have been available to Office 365 tenants for two years. In that time, some poor decisions might have been made about labels. Now that label scoping is becoming available, it's time to look at how to restructure labels to deal with container management. - [How to Programmatically Install Microsoft Store Apps Using Windows Package Manager](https://petri.com/how-to-programmatically-install-microsoft-store-apps-using-windows-package-manager/): In the latest preview version of Windows Package Manager, you can install Microsoft Store apps from the command line. - [Microsoft Teams Passes 115 Million Daily Active Users  ](https://petri.com/microsoft-teams-passes-115-million-daily-active-users/): Microsoft Teams is now being used by 115 million daily active users. - [Microsoft Rides the Cloud to Strong Earnings for Q1](https://petri.com/microsoft-rides-the-cloud-to-strong-earnings-for-q1/): Microsoft has reported its Q1 fiscal (Q3 calendar year) earnings today and the company posted healthy numbers across the board... - [How to Choose Between Basic Mobility and Security Or Microsoft Intune](https://petri.com/understanding-the-difference-between-microsoft-intune-and-basic-mobility-security/): In this article, I explain the differences between Basic Mobility and Security and Microsoft Intune, both MDM services from Microsoft. - [Getting Started with Custom Templates in Teams](https://petri.com/getting-started-with-custom-templates-in-teams/): Announced back in May 2020, Team templates arrived in Microsoft 365 tenants over the last couple of weeks. Teams templates... - [Microsoft Tunnel Makes Connecting to Corporate Apps Easier from Android and iOS](https://petri.com/microsoft-tunnel-aims-to-make-connecting-to-corporate-apps-easier-from-android-and-ios/): First announced at Ignite in September 2020, Microsoft Tunnel Gateway provides access to on-premises corporate resources from Android and iOS... - [Project Moca In Preview for Office 365 Users](https://petri.com/project-moca-office365/): Office 365 commercial tenants now have the chance to use Project Moca, the latest productivity app from Microsoft. - [Patch Tuesday – October 2020](https://petri.com/patch-tuesday-october-2020/): This month Microsoft patches a serious remote code execution (RCE) in Windows that could be easily wormable and Outlook gets... - [Paul Thurrott's Short Takes: October 23](https://petri.com/paul-thurrotts-short-takes-october-23/): Because we can only overcome this sense of dread with humor, this edition of Short Takes looks at Microsoft’s new... - [Petri Dish: Talking Modern Data Protection with Cobalt Iron](https://petri.com/talking-modern-data-protection-with-cobalt-iron/): On this iteration of the Petri Dish, we sit down with Cobalt Iron to talk about how they think about... - [Where’s the Value in Microsoft 365 Priority Accounts?](https://petri.com/microsoft-odd-priority-accounts/): Microsoft 365 will soon boast the ability to nominate priority accounts in tenants with more than 10,000 seats. Special attention will be paid to these accounts. - [Windows 10 20H2 Arrives Today, Here’s What IT Pros Need to Know](https://petri.com/windows-10-20h2-arrives-today-heres-what-it-pros-need-to-know/): WIndows 10 20H2 is now available for some users but here's what IT Pros need to know. - [How to Update Windows System Images Using the Antimalware Update Package for Microsoft Defender](https://petri.com/how-to-update-windows-system-images-using-the-antimalware-update-package-for-microsoft-defender/): Update the Microsoft Defender engine, platform, and security intelligence file in Windows system images. - [Teams Will Finally Use Native Windows Notifications Starting Next Month](https://petri.com/teams-will-finally-use-native-windows-notifications-starting-next-month/): Microsoft will finally enable Teams to use native notifications starting next month. - [Microsoft Brings Integrated SIEM and XDR Tools to Defender and Azure Sentinel](https://petri.com/microsoft-brings-integrated-siem-and-xdr-tools-with-defender-and-azure-sentinel/): At its Ignite conference in September, Microsoft announced a serious of branding changes for Microsoft Defender and new features for... - [New Crucial Audit Events Added to Office 365](https://petri.com/new-crucial-audit-events-added-office-365/): Office 365 now boasts new crucial audit events for capturing details of message send, mailbox search, and site search operations. - [Paul Thurrott's Short Takes: October 16](https://petri.com/paul-thurrotts-short-takes-october-16/): Because it’s the Ides of October, this edition of Short Takes looks at mounting antitrust scrutiny of Big Tech, a... - [Working with Azure AD Administrative Units](https://petri.com/azure-ad-administrative-units/): Azure AD administrative unitsenable logical divisions of the directory which can be managed by delegated administrators. This article covers the basics. including using PowerShell to manage AUs. - [How To Enable Advanced Teams Audio Features Including Hard Mute](https://petri.com/how-to-enable-advanced-teams-audio-features-including-hard-mute/): Microsoft Teams has advanced audio controls and here is how you can use them during your next meeting or presentation. - [How to Limit OneDrive Upload Bandwidth](https://petri.com/how-to-limit-onedrive-upload-bandwidth/): By default, the OneDrive sync client upload rate isn't limited. In this article, I explain when and how to limit... - [Office 2010 Support Ends Today](https://petri.com/office-2010-support-ends-today/): Microsoft is shutting the doors on Office 2010 today and it's time to update if you have not done so... - [How to Set Up SMS-Based Authentication for Microsoft 365 and Azure Active Directory Users](https://petri.com/how-to-set-up-sms-based-authentication-for-microsoft-365-and-azure-active-directory-users/): Configure SMS-based sign-in for Azure Active Directory and Microsoft 365 users. - [Microsoft’s Tenant to Tenant Migration Vision Lacks Coverage and Depth](https://petri.com/microsoft-vision-mergers-not-great/): Microsoft presented a vision for helping Office 365 tenants cope with mergers, acquisitions, and divestitures at Ignite 2020. At least Microsoft is in the game, but their vision is lacking. - [Amazon Announces AWS Timestream](https://petri.com/amazon-announces-aws-timestream/): First announced back in November 2018, this past September 30th,  2020 Amazon announced that AWS Timestream was generally available. - [Paul Thurrott's Short Takes: October 9](https://petri.com/paul-thurrotts-short-takes-october-9/): Because it’s the end of the world as we know and I feel fine, this edition of Short Takes looks... - [Using Windows PowerShell Modules in PowerShell 7](https://petri.com/using-windows-powershell-modules-in-powershell-7-2/): With the advent of PowerShell Core and PowerShell 7, not all modules have been updated to be compatible with core... - [Microsoft Revamps Outlook with One Outlook Vision](https://petri.com/microsoft-revamps-outlook-one-outlook-vision/): At the Ignite 2020 conference, Microsoft announced their One Outlook vision and explained how some new technologies will get functionality to Outlook faster. - [Microsoft's Preparing a New OOBE for Windows 10](https://petri.com/microsofts-preparing-a-new-oobe-for-windows-10/): In the latest Windows 10 build released to Insider, version 20231, it is possible to enable a new OOBE, or... - [How to Optimize Windows 10 VDI for Improved Performance and Density](https://petri.com/how-to-optimize-windows-10-vdi-for-improved-performance-and-density/): In this article, we'll look at how to optimize Windows 10 virtual machines for improved performance and VM density. - [Using Microsoft Graph API To Help Admins Quickly Deploy Policies at Scale](https://petri.com/azure-ad-microsoft-graph-api-for-conditional-access-helps-admins-quickly-deploy-policies-at-scale/): Microsoft Graph Conditional Access support and insights make it easier to secure users at scale. - [How to Set Up Passwordless Sign-in Using the Microsoft Authenticator App for Microsoft 365](https://petri.com/how-to-set-up-passwordless-sign-in-using-the-microsoft-authenticator-app-in-microsoft-365-and-azure-active-directory/): Improve security by setting up passwordless sign-in for Microsoft 365 users. - [Google Rebrands G-Suite, Introduces New Features](https://petri.com/google-rebrands-g-suite-introduces-new-features/): Google is rebranding its productivity suite and releasing a couple of new features too. - [Network Connectivity Tool Helps Office 365 Tenants Measure Connections](https://petri.com/network-connectivity-tool-office365/): The Network Connectivity tool is now in preview in the Microsoft 365 admin center. The tool helps Office 365 tenants understand how good their connectivity is to core services like Exchange. - [VMworld 2020 – Announcements](https://petri.com/vmworld-2020-day-one-announcements/): Like the VMWorld conferences in the past few years, VMworld 2020 was kicked off with a keynote by VMware CEO... - [Everything You Need to Know About Microsoft 365 – September 2020](https://petri.com/everything-you-need-to-know-about-microsoft-365-september-2020/): To say that September was a busy month for Office 365 is a bit of an understatement. - [Everything You Need to Know About Windows – September 2020](https://petri.com/everything-you-need-to-know-about-windows-september-2020/): Windows 10 feature updates could become once yearly, and Microsoft Ignite brings announcements for Edge and Windows Virtual Desktop. - [Everything You Need to Know About the Power Platform - September 2020](https://petri.com/everything-you-need-to-know-about-the-power-platform-september-2020/): This month you get more info on how Teams and the Power Platform come together with Project Oakdale, Power BI Premium, UI Flows, and more. - [Everything You Need to Know About Azure Infrastructure – September 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-september-2020-edition/): September was Ignite month – I will get to that in a moment. That means there should be lots of... - [Using Windows PowerShell Modules in PowerShell 7](https://petri.com/using-windows-powershell-modules-in-powershell-7/): With the advent of PowerShell Core and PowerShell 7, not all modules have been updated to be compatible with core... - [Enable Plus Addressing in Exchange Online](https://petri.com/using-plus-addressing-exchange-online/): Exchange Online now supports plus addressing, a useful technique to create an address that lets you know if your email details are being shared by web sites and companies. - [GET-IT Office 365 Security Day is Happening Now!](https://petri.com/get-it-office-365-security-day-is-happening-tomorrow/): Petri's GET-IT: Office 365 Security 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft... - [Azure Arc Now Generally Available for Windows and Linux Servers](https://petri.com/azure-arc-now-generally-available-for-windows-and-linux-servers/): Azure Arc extends Azure's management features to Windows and Linux servers regardless of their physical location. - [Microsoft 365 Authentication Outage is Preventing Log Ins](https://petri.com/microsoft-365-authentication-outage-is-preventing-logins/): Are you having issues logging into your Microsoft 365 dashboards or applications? You are not alone with social media and... - [Azure Backup Center Brings Unified Admin Experience for Management at Scale](https://petri.com/azure-backup-center-brings-unified-admin-experience-for-management-at-scale/): Azure Backup Center provides a single pane of glass for managing backup of Azure resources at scale. - [Teams First Office 365 Application to Use Stream 2.0](https://petri.com/stream-moves-sharepoint/): Stream is moving storage for videos from Azure Media Services to SharePoint Online and OneDrive for Business. Teams is the first Office 365 app to use the new plaform. - [Microsoft Announces Ignite, Part 2, is Happening in March](https://petri.com/microsoft-announces-ignite-part-2-is-happening-in-march/): Microsoft has announced that the second part of Ignite will be happening in March of 2021. - [Microsoft Teams Will Soon Become Your Go-To Webinar Solution](https://petri.com/microsoft-teams-will-soon-become-your-go-to-webinar-solution/): Microsoft will soon roll out a feature that will allow you to use Teams as a webinar platform. - [Azure Resource Mover and Zone-to-Zone Disaster Recovery Now Available](https://petri.com/azure-resource-mover-and-zone-to-zone-disaster-recovery-now-available/): Azure Resource Mover provides a single pane of glass for managing cross-regions move operations. - [SharePoint Syntex is the first Project Cortex Product, Arrives October 1st](https://petri.com/sharepoint-syntex-is-the-first-project-cortex-product-arrives-october-1st/): The first product from Project Cortex is launching next month and the company is making big claims about its ability... - [Microsoft Moves On-Premises Office Servers to a Subscription Model](https://petri.com/exchange-sharepoint-skype-subscription/): Microsoft announced that the on-premises versions of Exchange, SharePoint, and Skype for Business Online will move to a subscription model in 2021. - [Microsoft Announces New Teams Rooms Capabilities Arriving in 2020](https://petri.com/microsoft-announces-new-teams-rooms-capabilities-arriving-in-2020/): Microsoft is bringing several new features to Teams that will make the Rooms experience align with new scenarios. - [Start Building Custom Apps with No Code in Microsoft Teams](https://petri.com/start-building-custom-apps-with-no-code-in-microsoft-teams/): Build custom apps in Microsoft Teams using the Power Apps preview and Project Oakdale. No code required. Just your business knowledge. - [New Features Coming to Windows Virtual Desktop Later This Year](https://petri.com/new-features-coming-to-windows-virtual-desktop-later-this-year/): Microsoft is rolling out new updates to Windows Virtual Desktops that will make the offering easier to manage. - [New Features Coming to Cortana Later This Year](https://petri.com/new-features-coming-to-cortana-later-this-year/): While Cortana may not be the personal assistant Microsoft imagined a few years ago, the truth is that the AI... - [Microsoft Details New Calling Features Coming to Teams This Year](https://petri.com/microsoft-details-new-calling-features-coming-to-teams-this-year/): If you are a heavy use of Teams calling features, several updates on the horizon are going to significantly improve... - [Surface Hub 2S 85in Arrives in January of 2021](https://petri.com/surface-hub-2s-85in-arrives-in-january-of-2021/): Microsoft's larger Surface Hub 2S pre-order will open on September 22nd. - [Microsoft’s Edge for Linux Arrives in October, New Features Announced](https://petri.com/microsofts-edge-for-linux-arrives-in-october-new-features-announced/): For those IT Pros who have been asking for a Linux interaction of Edge, your wait is nearly over. The... - [Understanding Azure App Registrations](https://petri.com/understanding-azure-app-registrations/): Microsoft offers a robust identity platform, but to facilitate authentication and authorization applications need to be registered. To that end,... - [Anticipating Microsoft Ignite 2020](https://petri.com/ignite-2020-lookahead/): Microsoft runs the 2020 edition of their annual Ignite conference as a free online event starting on September 22. In this piece, I look forward to Ignite and wonder how the event will go. - [Understanding PowerShell and Scheduled Task Management](https://petri.com/understanding-powershell-and-scheduled-task-management/): Many tasks within Windows are managed by the Windows Task Scheduler. This versatile task scheduling system, akin to cron in... - [Understanding How MDM Policies are Applied in Windows 10](https://petri.com/understanding-how-mdm-policies-are-applied-in-windows-10/): Microsoft has improved Mobile Device Management in Windows 10 and it now works more like Group Policy. - [Restricting Guest User Access in Azure Active Directory](https://petri.com/azure-ad-restrict-guest-access/): A new restricted level of access is available for Azure AD guest accounts. The good news is that it doesn't affect many Office 365 apps, which begs the question why the restriction exists. - [Microsoft’s Fall Surface Plans Come into Focus](https://petri.com/microsofts-fall-surface-plans-come-into-focus/): Like Microsoft has done for many years, the company is once again planning a fall hardware event where the company... - [Uncover Weaknesses in Active Directory Before Attackers Do](https://petri.com/uncover-weaknesses-in-active-directory-before-attackers-do/): This post is sponsored by Semperis For twenty years, Active Directory (AD) has been the cornerstone of identity management. Despite... - [Teams Education Drops Support for Cloud Recording in Stream for A1 Customers](https://petri.com/teams-education-drops-support-for-cloud-recording-in-stream-for-a1-customers/): A surprising change from Microsoft arrived at the end of August and it has caught many schools returning for the... - [Microsoft Readies Windows Server 2021 with New Preview Builds](https://petri.com/microsoft-readies-windows-server-2021-with-new-preview-builds/): Microsoft releases two new Windows Server vNext builds with a comprehensive list of new features. - [Use a Super User Group for Privileged Access to Encrypted Office 365 Content](https://petri.com/use-super-user-access-protected-content/): The combination of Azure AD Privileged Identity Management and Role assignment to Groups opens up all sorts of possibilities, including a way to control the supe-user permission for access to encrypted content. - [Paul Thurrott's Short Takes: September 11](https://petri.com/paul-thurrotts-short-takes-september-11/): Because this is no time for cowardice, this edition of Short Takes looks at Microsoft’s TikTok acquisition possibly being foiled... - [How to Use PowerShell to Manage Folder Permissions](https://petri.com/how-to-use-powershell-to-manage-folder-permissions/): Looking to manage folder permissions with Powershell? This is the easy way to accomplish that task. - [Surface Duo Review: The Pursuit of Productivity](https://petri.com/surface-duo-review-the-pursuit-of-productivity/): Microsoft's Surface Duo is a unique productivity device that fits in your pocket but it is not for everyone. ; - [Outlook Mobile Ceasing Support for iOS 12 Soon](https://petri.com/outlook-ceasing-support-ios-12-soon/): Outlook for iOS will cease support for iOS12 after Apple makes iOS14 generally available. This means that you need to find any devices running iOS12 in your organization. - [Coming Soon - GET-IT: Office 365 Security Day, Streaming September 30th](https://petri.com/coming-soon-get-it-office-365-security-day-streaming-september-30th/): Petri's GET-IT: Office 365 Security 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft... - [How to List Active Directory Privileged Group Membership Using PowerShell](https://petri.com/how-to-list-active-directory-privileged-group-membership-using-powershell/): One of the biggest security issues that organizations face with Windows Server Active Directory is the proliferation of privileged accounts. - [Scoping Office 365 Sensitivity Labels](https://petri.com/scoping-sensitivity-labels/): Office 365 sensitivity labels can be used to apply markings and protection to files, email, and containers. Now Microsoft is enabling scoping for sensitivity labels to make management easier. - [Teams Spotlight Feature Will Let Presenters Control the Primary Video Feed](https://petri.com/teams-spotlight-feature-will-let-presenters-control-the-primary-video-feed/): While Microsoft Teams has proven itself during the pandemic of 2020 as a viable meeting platform, there are still some... - [How to Report Active Directory Schema Changes Using PowerShell](https://petri.com/how-to-report-active-directory-schema-changes-using-powershell/): To protect the integrity of Active Directory, it's worth checking that only approved changes to the schema are made. - [Using PowerShell Invoke-RestMethod and Invoke-WebRequest with REST APIs](https://petri.com/using-powershell-with-rest-apis/): To interact with a REST API the PowerShell Invoke-RestMethod function is a clear choice. This function natively turns input JSON or XML into native PowerShell objects that make further interaction easy. Learn how to use Invoke-RestMethod in this article. - [Making Office 365 Activity Alerts More Accessible](https://petri.com/making-office-365-activity-alerts-more-accessible/): Office 365 signals alerts when preset conditions are met. The alerts are available in email and in the Security and Compliance Center, but it's nice to be able to expose them elsewhere using PowerShell. - [How To Broadcast Teams Meetings Like a Pro with NDI and OBS](https://petri.com/how-to-broadcast-teams-meetings-like-a-pro-with-ndi-and-obs/): Looking to use Teams with OBS and broadcast your video streams? This is how you can accomplish that task. - [Everything You Need to Know About Office 365 - August Edition](https://petri.com/everything-you-need-to-know-about-office-365-august-edition/): Next month, Microsoft will be hosting their Ignite conference and while it may be split into two events, I am... - [Everything You Need to Know about the Power Platform – August 2020](https://petri.com/everything-you-need-to-know-about-the-power-platform-august-2020/): Learn about for a Selected Message in Teams and when a column is modifed in SharePoint both new flow Triggers. Plus more with Teams, Power BI, and Oakdale. - [Everything You Need to Know About Azure Infrastructure – August 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-august-2020-edition/): With August now behind us, here's a look at the major announcements from this month. - [Everything You Need to Know About Windows – August 2020 Edition](https://petri.com/everything-you-need-to-know-about-windows-august-2020/): August saw Microsoft release Edge 85 to the Stable Channel, reveal features that will be part of Windows Server 2021,... - [Using Microsoft Teams Lists](https://petri.com/microsoft-lists-teams/): After launching Microsoft Lists for SharePoint Online and OneDrive for Business, we now have a Lists app in Teams. - [Paul Thurrott's Short Takes: August 28](https://petri.com/paul-thurrotts-short-takes-august-28/): Because it’s still August, what do you mean it’s still August, this edition of Short Takes looks at Microsoft and... - [How to Identify Unsupported Teams Devices using Endpoint Manager](https://petri.com/how-to-identify-unsupported-teams-devices-using-endpoint-manager/): If you need to understand how to find older devices that will no longer work with Teams, here is how... - [FCM Messages Blasted out to Teams Customers on Android](https://petri.com/microsoft-accidentally-blasts-out-test-message-to-teams/): Microsoft is dealing with a minor issue of blasting out “Test” messages to Teams users. - [Using Trainable Classifiers to Assign Office 365 Retention Labels](https://petri.com/using-trainable-classifiers-assign-office-365-retention-labels/): A trainable classifier is a digital representation of a common document type in your Office 365 tenant. After training Office 365 to generate the classifier by analyzing many documents of the type, you can use it to assign retention labels. - [TPM 2.0 and Secure Boot Become Mandatory for Windows Server Hardware in 2021](https://petri.com/tpm-2-0-and-secure-boot-become-mandatory-for-windows-server-hardware-in-2021/): Most x64 bit server hardware shipping today has TPM 2. 0 and Secure Boot, but the features are often turned... - [Unboxing The Surface Duo](https://petri.com/unboxing-the-surface-duo/): The Microsoft Surface Duo is here but first, we must get it out of the box. - [Microsoft’s Bringing Audio Transcription to Word](https://petri.com/microsofts-bringing-audio-transcription-to-word/): Coming soon to Microsoft Word, the ability to transcribe audio files. - [Microsoft Improves Data Protection in Azure Files](https://petri.com/microsoft-improves-data-protection-in-azure-files/): Several new Azure Files features went into public preview earlier this year to help organizations move file shares to the... - [Windows Virtual Desktop Now Integrated into Azure Portal](https://petri.com/windows-virtual-desktop-gets-azure-portal-integration-and-teams-a-v-redirection/): The Windows Virtual Desktop July 2020 update brings Azure Resource Manager support and Teams media optimizations. - [How OWA Predicts Text as Users Compose Email](https://petri.com/owa-predicts-text-as-users-compose-email/): OWA can predict what you want to write in email based on machine learning analysis of what you've written in the past. It's part of Microsoft's work to incorporate artificial intelligence in Microsoft 365. - [The Future of Microsoft 365 Could be Taos](https://petri.com/the-future-of-microsoft-365-could-be-taos/): What is MetaOS or Taos? It looks like it will be the future of Microsoft 365 - [Understanding Azure AD Application Proxy Support for Remote Desktop Services](https://petri.com/azure-ad-application-proxy-support-for-remote-desktop-services-web-client-now-in-preview/): Application Proxy lets users access Remote Desktop apps hosted behind a Remote Desktop Gateway. Now it works with the RDS... - [Paul Thurrott's Short Takes: August 21](https://petri.com/paul-thurrotts-short-takes-august-21/): Because it’s the summer of our discontent, this edition of Short Takes looks at Microsoft blurring the lines between Windows... - [How to Configure Lobby Meeting Options in Teams](https://petri.com/how-to-configure-lobby-meeting-options-in-teams/): In the midst of the many updates for Microsoft Teams, you could be excused for missing one interesting option that... - [Microsoft 365 Universal Print Enters Public Preview](https://petri.com/microsoft-365-universal-print-enters-public-preview/): Universal Print is a cloud-based infrastructure that works for today's distributed workforce. - [Coming Soon to Teams, Breakout Rooms](https://petri.com/coming-soon-to-teams-breakout-rooms/): Microsoft is teasing a new feature coming to Teams, breakout rooms. - [Microsoft Lists and the Curious Case of Project Osaka](https://petri.com/microsoft-lists-curious-case-project-osaka/): The new Microsoft Lists app is a useful tool for anyone who needs to organize data without writing any code. It builds on the strengths of SharePoint List and adds a nice integration with Teams. - [How to Protect Against Active Directory DCShadow Attacks](https://petri.com/how-to-protect-against-active-directory-dcshadow-attacks/): Protecting privileged access to Active Directory is key to preventing DCShadow attacks. - [Intune Makes Deploying Always On VPN Device Tunnels Easier without ProfileXML Node](https://petri.com/intune-makes-deploying-always-on-vpn-device-tunnels-easier-without-profilexml-node/): How to enable Device Tunnel in Microsoft Intune's VPN profile options. - [Microsoft Teams Will End Support for IE 11 in November](https://petri.com/microsoft-teams-will-end-support-for-ie-11-in-november/): Microsoft is ending support of IE 11 for many of its Microsoft 365 services starting in November. - [Getting Started with Azure App Service for Web Apps](https://petri.com/getting-started-with-azure-app-service-for-web-apps/): Microsoft offers a highly flexible and easy to use web application service. With the myriad of languages, runtimes, and options... - [Microsoft Expands Self-Service License Purchasing to Visio and Project](https://petri.com/microsoft-expands-self-service-license-purchasing-to-visio-project/): Never willing to junk a bad idea that they think is goodness, Microsoft is inflicting more trouble for Office 365 tenants by expanding the set of self-service license purchases to include Visio and Project. - [Should you Consider Backup-as-a-Service?](https://petri.com/should-you-consider-backup-as-a-service/): Instead of performing your backup with your centralized on-premises IT infrastructure, BaaS connects your protected systems to a public cloud... - [Azure AD Connect Cloud Provisioning Syncs Identities from Disconnected Forests](https://petri.com/azure-ad-connect-cloud-provisioning-syncs-identities-from-disconnected-forests-but-comes-with-significant-limitations-in-preview/): Cloud provisioning simplifies synchronizing on-premises identities to Azure AD during mergers and acquisitions. - [Getting Started With Azure Active Directory](https://petri.com/getting-started-with-azure-active-directory/): Azure Active Directory makes running one of the most commonly used and useful directory services easy to do and with... - [GET-IT Teams Day - Streaming is live](https://petri.com/get-it-teams-day-streaming-is-live/): The day is finally here, Petri's GET-IT Teams day event is live and you can watch the event with the... - [Patch Tuesday August 2020](https://petri.com/patch-tuesday-august-2020/): Microsoft patches 120 vulnerabilities this month, including 2 zero-day flaws. One in Windows and the second in Internet Explorer. - [Surface Duo Hopes to be the Peanut Butter to the Microsoft 365 Jelly](https://petri.com/surface-duo-hopes-to-be-the-peanut-butter-to-the-microsoft-365-jelly/): A significant turning point in the Surface story is when the company realized that Microsoft is not an entertainment company,... - [Analyzing Azure Active Directory Sign-In Data with PowerShell](https://petri.com/azuread-signin-powershell/): The Get-AzureADAuditSignInLogs cmdlet allows PowerShell access to Azure AD sign-in data, which makes it possible to analyze information in ways that haven't been possible before. - [Surface Duo Arrives Sept 10th for $1399](https://petri.com/surface-duo-arrives-sept-10th-for-1399/): Microsoft has announced the final details for the Surface Duo including its specs, pricing, and availability. - [Improving the New Employee Onboarding Experience with SharePoint Online](https://petri.com/improving-the-new-employee-onboarding-experience-with-sharepoint-online/): Improving the new hire experience has long been a topic of conversation…and it IS an “experience” now isn’t it? Culture is so important, with the hiring market being so competitive for talented hires, the first few days with an organization can make or break a new employee’s opinion.Don’t fear….Microsoft has your back with their latest New Employee Onboarding Hub for SharePoint Online! - [Microsoft Announces Public Preview of Endpoint Data Loss Prevention](https://petri.com/microsoft-announces-public-preview-of-endpoint-data-loss-prevention/): Microsoft's new Endpoint Data Loss Prevention (DLP) service is now available in public preview to all Microsoft 365 E5/A5 customers. - [Coming Soon - GET-IT: Teams Day, Streaming August 12, 2020](https://petri.com/announcing-get-it-teams-day-streaming-august-12-2020/): Petri's GET-IT: Teams 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Teams content... - [Decision Point: Exchange 2016 Exits Mainstream Support Soon](https://petri.com/exchange-2016-exits-mainstream-support/): Exchange 2016 exits mainstream support on October 13, 2020. It's time for customers to decide to stay on-premises with Exchange 2019 or move to the cloud. - [Amazon Releases Porting Assistant for .NET Core](https://petri.com/amazon-releases-porting-assistant-for-net-core/): Amazon has released their new Porting Assistant for . NET that’s designed to port Windows-specific . NET Framework code to... - [Paul Thurrott's Short Takes: August 7](https://petri.com/paul-thurrotts-short-takes-august-7/): Because tik tok, tik tok, what do you do, Microsoft, this edition of Short Takes looks at Microsoft’s bizarre pursuit... - [Microsoft Splits Ignite Into Two Events](https://petri.com/microsoft-splits-ignite-into-two-events/): Microsoft is making changes to Ignite and turning it into two events. - [Microsoft Reorg Leads to Significant Changes for Windows and Azure](https://petri.com/microsoft-reorg-leads-to-significant-changes-for-windows-and-azure/): Microsoft is making significant changes to how Windows and Azure operate with new leaderships and teams changing orgs. - [Choosing the Right Free Version of Teams](https://petri.com/choosing-the-right-free-version-of-teams/): If you are signing up for a free account to use with Microsoft Teams, you might see a few options... - [What's New for IT Pros in Windows 10 Version 2004](https://petri.com/whats-new-for-users-in-windows-10-version-2004-and-who-should-upgrade/): There's not a lot new going on for users in the Windows 10 May 2020 Update, so who should consider... - [What’s the Real Size of Exchange Online Mailboxes?](https://petri.com/real-size-exchange-online-mailboxes/): The Office 365 Substrate uses Exchange Online mailboxes to store a lot of data that users never see. The data is used by the substrate for different purposes, mostly to make it easier for features to get to relevant information. - [How to Use the Azure API Management to Proxy a Public API](https://petri.com/how-to-use-the-azure-api-management-to-proxy-a-public-api/): With Microsoft Azure's API Management service, you can easily proxy an existing API and modify the input and output before... - [Everything You Need to Know About Windows – July 2020](https://petri.com/everything-you-need-to-know-about-windows-july-2020/): This month, Microsoft drops Win32 app support in Windows 10X, 20H2 to get UI updates, and Microsoft is preparing a... - [Everything You Need to Know about the Power Platform – July 2020](https://petri.com/everything-you-need-to-know-about-the-power-platform-july-2020/): Teams and Power Platform integration gets super deep, SharePoint Workflows getting replaced by flows, and more things you need to know. - [Everything You Need to Know About Azure Infrastructure – July 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-july-2020-edition/): In the Microsoft calendar, July marked the end of FY20 and the start of a whole new semester for Azure... - [Everything You Need to Know About Office 365 - July 2020 Edition](https://petri.com/everything-you-need-to-know-about-office-365-july-2020-edition/): With July now behind us, it’s time to take a look back at the significant announcements from the month. And... - [Teams Advanced Communications License Now Available](https://petri.com/teams-advanced-communications/): On August 1, Microsoft released the Teams Advanced Communications add-on. It's an oddly eclectic license covering a mixture of features. - [Microsoft's Edge Browser is Crashing if Google is Your Search Engine](https://petri.com/microsofts-edge-browser-is-crashing-if-google-is-your-search-engine/): If you are using Microsoft's Edge browser and it keeps crashing, you are not alone. - [How to Manage Windows 10 Updates via PowerShell](https://petri.com/how-to-manage-windows-10-updates-via-powershell/): Windows is notorious for the number of system updates that are necessary and how often they come out. These updates... - [Understanding the New Teams Meeting Features and Experience](https://petri.com/understanding-the-new-teams-meeting-features-and-experience/): Microsoft's updated Teams meeting expereince is rolling out but to get the most out of the new UI, here's what... - [Understanding Hybrid Azure Active Directory Join](https://petri.com/understanding-hybrid-azure-active-directory-join/): Devices hybrid joined to AAD are not joined to AAD. But instead, joined to ADDS and automatically registered with AAD. - [Teams Unifies Personal and Work Tasks](https://petri.com/teams-unifies-personal-work-tasks/): Microsoft is rolling out Tasks in Teams, a new app that unified personal tasks created in Outlook and To Do with work tasks created in Planner. The app allows users to interact with both types of tasks. - [The Basics of Managing a Windows 10 System with PowerShell](https://petri.com/the-basics-of-managing-a-windows-10-system-with-powershell/): PowerShell isn't just a command-line tool for system administrators. Even savvy Windows 10 users can take advantage of the capabilities... - [Find and Block Unconstrained Delegation in Active Directory](https://petri.com/find-and-block-unconstrained-delegation-in-active-directory/): Service accounts configured for unconstrained delegation make it easy to compromise servers and Active Directory. - [Sponsored: Protecting your Domain and Users from Phishing Attacks](https://petri.com/protecting-against-phishing-attacks-with-dmarc/): Protecting your brand and your employees from phishing attacks is a critical first step to keeping your environment secure. - [Slack and Teams: Complaint is Weak and Filled with Leading Statements](https://petri.com/slack-and-teams-complaint-is-weak-and-filled-with-leading-statements/): Slack’s Odd Complaint I read the news that Slack filed a competition complaint against Microsoft in the EU on July... - [Microsoft’s RemoteWebAccess Site Goes Down Because DNS is Hard](https://petri.com/microsofts-remotewebaccess-site-goes-down-because-dns-is-hard/): Microsoft is feeling that sting today as its website, remotewebaccess. com has been dealing with DNS related challenges for more... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (July 2020)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-13/): Because the pandemic is clearly the best thing that’s ever happened to Microsoft, this edition of Short Takes looks at... - [Key Features for Disaster Recovery-As-A-Service (DRaaS)](https://petri.com/key-features-for-disaster-recovery-as-a-service-draas/): DRaaS has steadily become a more popular option to protect your critical services and applications. A Gartner survey in 2019... - [Microsoft Launches Workspaces, Then Pauses for Reflection](https://petri.com/exchange-online-workspaces/): Microsoft launched workspaces on Monday and promptly withdrew them on Tuesday to reconsider how to implement this new Exchange Online feature. The problem is that they planned to use a custom attribute to identify workspaces. - [Microsoft's Financials Remain Healthy in Q4 Earnings](https://petri.com/microsofts-financials-remain-healthy-in-q4-earnings/): Microsoft has posted healthy numbers yet again for its earnings even with the headwinds of COVID-19. - [How to Uncover and Move Away from SharePoint 2010 Workflows](https://petri.com/how-to-uncover-and-move-away-from-sharepoint-2010-workflows/): On July 6th, Microsoft announced the deprecation of SharePoint 2010 workflows in SharePoint Online. You may have also heard these workflows referred to as a “SharePoint Designer 2010” workflow. - [Optimize Windows Update with New Update Baseline Tool for Windows 10](https://petri.com/optimize-windows-update-with-new-update-baseline-tool-for-windows-10/): Apply Microsoft's recommended Windows Update settings for faster updates without impacting user productivity. - [Understanding the new Granular Permissions for App Access to Teams data](https://petri.com/understanding-the-new-granular-permissions-for-app-access-to-teams-data/): Microsoft announced in the message center this week that resource-specific content will roll-out to tenants, beginning mid-August. This opens the... - [Microsoft Opens the Door for New Teams App Integrations, Power BI Enhancements](https://petri.com/microsoft-opens-the-door-for-new-teams-app-integrations-power-bi-enhancements/): Microsoft is rolling out new functionality in Teams to make it easier for ISVs to build apps, bots, and more... - [New Group Policy Updates for Windows 10 in 2020](https://petri.com/group-policy-changes-in-the-windows-10-may-2020-update/): The Windows 10 May 2020 Update includes some new Group Policy settings to manage security, delivery optimization, and apps. - [Windows 10X Plans have Come Full Circle](https://petri.com/windows-10x-plans-have-come-full-circle/): Microsoft has made significant changes to Windows 10X and lost nearly 18 months of development time. - [Sensitivity Labels Exert More Control Over SharePoint Online Sites](https://petri.com/sensitivity-labels-control-sharepoint-sites/): Soon Sensitivity Labels will be able to control the sharing capability of SharePoint Online sites. Site owners and tenant admins can configure labels to control sharing in addition to the other container settings. - [Paul Thurrott's Short Takes: July 17](https://petri.com/paul-thurrotts-short-takes-july-17/): Because the end is listless, this edition of Short Takes looks at a temporary Outlook problem that broke the Internet,... - [The Problem with Guest Accounts (Going Outside Your Tenant)](https://petri.com/problem-guest-users-outside-tenant/): Azure B2B collaboration makes it easy for applications to create guest user accounts. Teams, Planner, Groups, SharePoint, OneDrive and so on do this. But how do you know what your users are doing as guests in other tenants? - [Patch Tuesday – July 2020](https://petri.com/patch-tuesday-july-2020/): Microsoft releases 123 security updates, including a patch for a critical Windows Server DNS bug and Hyper-V RemoteFX vGPU gets... - [Extreme Flow Guard (xFG) and Kernel Data Protection (KDP) Coming to Windows 10](https://petri.com/extreme-flow-guard-xfg-and-kernel-data-protection-kdp-coming-to-windows-10/): xFG and KDP bring new defenses against data corruption attacks in Windows 10. - [Microsoft Updates Outlook with New Time Management Features](https://petri.com/microsoft-updates-outlook-with-new-time-management-features/): Microsoft has announced several updates coming to Outlook that are designed to make it easier to add tasks to To... - [How to Customize the Microsoft Terminal](https://petri.com/how-to-customize-the-microsoft-terminal/): There are many ways to configure Microsoft Terminal to fit your needs. Each release has refined or expanded upon the... - [Understanding the New Teams Search Functionality](https://petri.com/understanding-the-new-teams-search-functionality/): Microsoft has improved contextual search in Teams but its implementation can be hard to understand. - [Surface Laptop 3 – Six Months Later](https://petri.com/surface-laptop-3-six-months-later/): Microsoft's Surface Laptop 3 has been on the market for more than half a year, but is it the right... - [What the Teams Meeting Enhancements Mean to the Enterprise](https://petri.com/teams-new-meeting-experience/): Microsoft made a batch of announcements about new functionality for Teams meetings last week. Here's an assesment of what those features mean for enterprise Office 365 tenants. - [Amazon Brings RDS to AWS Outposts](https://petri.com/amazon-brings-rds-to-aws-outposts/): AWS Outposts are essentially a hardware platform that runs on-premise but it is managed like the AWS cloud and they... - [Paul Thurrott's Short Takes: July 10](https://petri.com/paul-thurrotts-short-takes-july-10/): Because we’re getting a little loopy during the pandemic, this edition of Short Takes looks at the push to $2... - [Hardware Accelerated GPU Scheduling Coming to the Windows 10 May 2020 Update](https://petri.com/hardware-accelerated-gpu-scheduling-coming-to-the-windows-10-may-2020-update/): Users can opt to enable hardware-accelerated GPU scheduling if their GPU and driver support it. - [Improving SharePoint Online Search with Bookmarks](https://petri.com/improving-sharepoint-online-search-with-bookmarks/): Bookmarks in SharePoint when used correctly, can help your users find what they need much faster but only if implemented... - [Microsoft is Overhauling the Teams Meeting Experience](https://petri.com/microsoft-is-overhauling-the-teams-meeting-experience/): Microsoft is rolling out new features that will overhaul the meeting experience in Teams with new views, engagement tools, and... - [Creating PowerShell Function Failsafes with WhatIf](https://petri.com/creating-powershell-function-failsafes-with-whatif/): PowerShell function that supports the WhatIf parameter and how you can use it to make your PowerShell functions even more... - [Working with Planner Data Through the Graph](https://petri.com/working-planner-data-through-graph/): Microsoft Planner doesn't support PowerShell, but you can get to plan data with the Planner Graph API. And you can use PowerShell to access the Graph. - [Microsoft Expands Edge Rollout to Education and Business Customers](https://petri.com/microsoft-expands-edge-rollout-to-education-and-business-customers/): Microsoft plans to roll out its new browser to business and education customers starting at the end of July. - [Teams Phones get New Capabilities for Meetings and Connection to Nearby PCs](https://petri.com/teams-phones-get-new-capabilities-for-meetings-and-connection-to-nearby-pcs/): Microsoft has a new update for Teams Phones and it delivers on promises made back at Ignite in 2019. - [Exchange Online and Teams Get Important PowerShell Updates](https://petri.com/powershell-updates-office365/): Microsoft has released two important preview updates of PowerShell modules for Teams and Exchange Online. - [Azure Active Directory Gets SMS-based Authentication and Email Address Sign-In](https://petri.com/azure-active-directory-gets-sms-based-authentication-and-email-address-sign-in-preview/): Enable users to sign in to Azure AD using a phone number or with an alternate email address. - [Edge Browser Gets Alt Tab Integration in Windows 10 Insider Preview Build](https://petri.com/edge-browser-gets-alt-tab-integration-in-windows-10-insider-preview-build/): Switching to recent tabs in Microsoft Edge is coming to Alt Tab. - [Everything You Need to Know About Azure Infrastructure – June 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-june-2020-edition/): June 2020 marks the end of Vibranium and the start of Manganese, the codenames for the ending and starting half-year... - [Everything You Need to Know About Office 365 – June 2020](https://petri.com/everything-you-need-to-know-about-office-365-june-2020/): From migrations to updates to Yammer, this month was full of Office 365 updates. - [Everything You Need to Know about the Power Platform – June 2020](https://petri.com/everything-you-need-to-know-about-the-power-platform-june-2020/): All things Power Apps, Power BI, Power Automate, And Power Virtual Agents you need to know from June 2020 - Now with more AI and more tech tips. - [Everything You Need to Know About Windows – June 2020](https://petri.com/everything-you-need-to-know-about-windows-june-2020/): Microsoft's new Edge browser starts rolling out via Windows Update and the Windows 10 20H2 feature update is announced. - [Teams 7x7 Gallery View for Meetings Goes to Preview](https://petri.com/teams-large-gallery-view/): Microsoft has announced that Teams will soon get a large gallery view (7x7) for video meetings. The new feature allows Teams to deliver comparable meetings to Zoom. - [OneDrive File Upload Size Increased, Sharing Improved, Security Enhanced](https://petri.com/onedrive-file-upload-size-increased-sharing-improved-security-enhanced/): Microsoft has announced a wide variety of new features coming to OneDrive this year that includes larger uploads and improved... - [How to Solve Invalid_Client Error When Joining Windows 10 to Azure AD](https://petri.com/how-to-solve-invalid_client-error-when-joining-windows-10-to-azure-ad/): Configure MDM autoenrollment to solve Invalid_Client Azure AD join error message. - [Why You Should Use the Exchange Online PowerShell Module](https://petri.com/why-you-should-use-the-exchange-online-powershell-module/): Why you should use the EXOv2 PowerShell module and how it can benefit you as an Office365 administrator. - [Teams at Home Might Not Convince Potential Users](https://petri.com/teams-personal-not-compelling/): Microsoft's preview of Teams at Home shows how Teams can span the work and personal lives of users. Although it works, the app might not be compelling enough for people to adopt. - [Understanding the new Teams Capabilities in the SharePoint Migration Tool](https://petri.com/understanding-the-new-teams-capabilities-in-the-sharepoint-migration-tool/): The new Teams migration functionality is aimed at the casual IT administrator who is looking for a simpler approach to... - [Windows Autopilot User-Driven Hybrid Azure AD Join with VPN Support in Public Preview](https://petri.com/windows-autopilot-user-driven-hybrid-azure-ad-join-with-vpn-support-in-public-preview/): Windows 10 version 2004 brings user-driven hybrid Azure AD joins with VPN support. - [Amazon Honeycode Brings No Code Application Development to AWS](https://petri.com/amazon-honeycode-tackles-the-holy-grail-of-no-code-application-development/): No code application building has long been the Holy Grail of app development. The idea behind no code development is... - [Microsoft’s Free New Tool to Recover Files in Windows](https://petri.com/microsofts-free-new-tool-to-recover-files-in-windows/): Need help recovering a file in Windows? Microsoft has a new, and free, tool to make that process easier. - [Paul Thurrott's Short Takes: June 26](https://petri.com/paul-thurrotts-short-takes-june-26/): Because the earth actually rotates around Cupertino now, this edition of Short Takes looks at Microsoft’s blockbuster retail announcement, a... - [Native Mode Yammer Networks Generate Office 365 Compliance Records](https://petri.com/yammer-office-365-compliance-records/): If your Yammer network is configured in Microsoft 365 native mode, its conversations generate compliance records that can be found by Office 365 content searches. - [Understanding Windows 10 and Microsoft 365 Passwordless Sign-In](https://petri.com/understanding-windows-10-and-microsoft-365-passwordless-sign-in/): Which passwordless authentication method should you use with Windows 10 and Microsoft 365? - [Microsoft Defender ATP Arrives for Android](https://petri.com/microsoft-defender-atp-arrives-on-android/): Microsoft is releasing the first preview of its new Android app that will help protect your device against phishing and... - [Microsoft Defender ATP Adds UEFI Scanner to Detect Firmware-Level Attacks](https://petri.com/microsoft-defender-atp-gets-uefi-scanner-to-detect-firmware-level-attacks/): UEFI scanning comes to Microsoft Defender Advanced Threat Protection. - [Recovering Deleted Items in the New Exchange Admin Center](https://petri.com/recovering-deleted-items-new-exchange-admin-center/): Exchange Online users can recover deleted items themselves, but if they can't, admins can do the job - and now they can recover deleted items for users in the new EAC. - [How to Setup the Walkie Talkie Feature for Teams](https://petri.com/how-to-setup-the-walkie-talkie-feature-for-teams/): Looking to setup Walkie Talkie for Teams, here are the steps you need to follow. - [Teams for Consumer Arrives Today in Preview](https://petri.com/teams-for-consumer-arrives-today-in-preview/): Microsoft's Teams app is now available in preview for consumers with a basic set of features. - [Microsoft Announces Improvements to Azure AD Conditional Access](https://petri.com/microsoft-announces-improvements-to-azure-ad-conditional-access/): Microsoft announced April 5th two new Azure Active Directory (AD) Conditional Access features reaching general availability. - [Paul Thurrott's Short Takes: June 19](https://petri.com/paul-thurrotts-short-takes-june-19/): Because Microsoft will get it right one day, this edition of Short Takes looks at problems with Windows 10 version... - [Time to Review Your Tenant’s Office 365 Licenses](https://petri.com/manage-office365-licenses/): More people than ever before use Office 365 - but how many licenses bought for Office 365 are in productive use? That's a question which deserves some analysis. - [How to Manage Connections with Remote Desktop Connection Manager](https://petri.com/how-to-manage-connections-with-remote-desktop-connection-manager/): One of the most popular tools for managing multiple remote desktop connections has been the Microsoft Remote Desktop Connection Manager. - [Microsoft to Bundle New Edge with Next Version of Windows](https://petri.com/microsoft-to-bundle-new-edge-with-next-version-of-windows/): Microsoft is going to start bundling its new Edge browser with the next version of Windows that will arrive this... - [How to Enable Reserved Storage Using DISM or PowerShell in Windows 10 Version 2004](https://petri.com/how-to-enable-reserved-storage-using-dism-or-powershell-in-windows-10-version-2004/): Microsoft makes it easier for system administrators to query, enable, and disable Windows 10 Reserved Storage. In this article, I... - [Microsoft Revises Windows Rings, Advises IT Pros to Move to Beta Channel](https://petri.com/microsoft-revises-windows-rings-advises-it-pros-to-move-to-beta-channel/): Microsoft is making updates to the Rings of the Insider program and renaming them to Channels. - [New IT Teams Controls Make Setting Default Roles in Meetings Easier](https://petri.com/new-it-teams-controls-make-setting-default-roles-in-meetings-easier/): Microsoft has rolled out new administrative controls for configuring the defaults for who should be a presenter in a meeting. - [Sponsored: Five Key Points for Securing Office 365](https://petri.com/sponsored-five-key-points-for-securing-office-365/): This post is sponsored by CoreView who offer a wide variety of security solutions for Office 365 Office 365 is... - [Cortana Daily Briefing Not Wanted by Some Office 365 Tenants](https://petri.com/cortana-daily-briefing-unwanted-office-365-tenants/): Office 365 tenant administrators received heads-up email that Cortana daily briefing messages will soon be delivered to end user mailboxes. It's great to have practical applications of AI and ML, but it's also important not to ram choice down the throats of tenants. - [How to Improve Remote Worker Security Using Microsoft Intune](https://petri.com/how-to-improve-remote-worker-security-using-microsoft-intune/): In this article, I will show you how to use Microsoft Intune to create a compliance policy to keep remote... - [Paul Thurrott's Short Takes: June 12](https://petri.com/paul-thurrotts-short-takes-june-12/): Because $1. 5 trillion is an awful lot of zeros, this edition of Short Takes looks at Microsoft’s new market... - [Securing Remote Virtual Machines Using Azure Bastion](https://petri.com/securing-remote-virtual-machines-using-azure-bastion/): In this article, I'll explain in detail how Azure Bastion works and how to configure it. You will learn how to create a Bastion host manually and how to create a Bastion by changing a VM's settings. - [The Problem with Office 365 Backups](https://petri.com/problems-office365-backups/): ISVs are sometimes criticized because their backup products don't do a great job of handling Office 365 data. That might be true, but the real issue is the lack of APIs delivered by Microsoft. - [SharePoint Auto Digest Will Bring the News to the Inbox](https://petri.com/sharepoint-auto-digest-will-deliver-the-news-to-users/): SharePoint Auto Digest is about to make it much easier to bring news updates from SharePoint to the user's inbox. - [Patch Tuesday - June 2020](https://petri.com/patch-tuesday-june-2020/): This month Microsoft addresses 129 vulnerabilities, including SMBv3 bugs, Flash Player, and remote code execution flaws in VBScript. - [How to Block Unwanted Apps in Edge and Windows 10](https://petri.com/how-to-block-unwanted-apps-in-edge-and-windows-10/): Microsoft has added the ability to block potentially unwanted apps to the Windows 10 Settings app. - [Microsoft is Making it Easier to Use To Do at Work](https://petri.com/microsoft-is-making-it-easier-to-use-to-do-at-work/): Microsoft is rolling out an update for To Do that will make it a lot easier to use at work... - [Hackers Targeting Unpatched Windows Systems with Proof-of-Concept Code for SMB Vulnerability](https://petri.com/hackers-targeting-unpatched-windows-systems-with-proof-of-concept-code-for-smb-vulnerability/): Hackers are targeting unpatched Microsoft systems with publicly available SMBGhost PoC code. - [Create a User Activity Report for Multiple Office 365 Workloads](https://petri.com/graph-powershell-office365-usage/): The Microsoft Graph reporting endpoint is a rich source of information about Office 365 user activity. In this post, we use PowerShell and Graph calls to fetch and analyze information for five workloads. - [Teams Gets new Admin Controls for Backgrounds, UI and AI improvements Plus Auto-Enablement](https://petri.com/teams-gets-new-admin-controls-for-backgrounds-ui-and-ai-improvements-plus-auto-enablement/): Microsoft changes meeting limit size, again, adds more controls for backgrounds, and suggested replies are coming soon. - [Paul Thurrott's Short Takes: June 5](https://petri.com/paul-thurrotts-short-takes-june-5/): Because it’s probably Friday, this edition of Short Takes looks at Microsoft’s push to a dystopian future, the sad tale... - [Refresh of Exchange Online PowerShell Module Now Generally Available](https://petri.com/exchange-online-powershell-module-v2/): Microsoft has released V2 of the Exchange Online PowerShell module. The new module contains 9 REST-based cmdlets designed for speed and stability for the most intense Exchange Online operations. - [Microsoft to Match Zoom's Grid Calling Functionality, Eventually](https://petri.com/microsoft-will-match-zooms-7x7-calling-eventually/): Microsoft plans to match Zoom's 7x7 calling but that is likely not enough for the tool. - [How To Build a SharePoint Online Multi-Lingual Site](https://petri.com/how-to-build-a-sharepoint-online-multi-lingual-site/): The multi-lingual publishing feature for SharePoint communication sites has officially been rolled out worldwide. - [Windows Server Version 2004 Reaches General Availability](https://petri.com/windows-server-version-2004-reaches-general-availability/): Along with last week's release of the Windows 10 May 2020 Update, Microsoft released Windows Server version 2004. - [How to Manage Remote Connections in mRemoteNG](https://petri.com/how-to-manage-remote-connections-in-mremoteng/): Most system administrators need to connect to many different systems, often in a variety of ways. There are several tools... - [Outlook for Windows Will Finally get a Cloud Roaming Option this Month](https://petri.com/outlook-for-windows-will-finally-get-a-cloud-roaming-option-this-month/): Outlook for Windows is introducing an option to allow users to save some settings in the Microsoft 365 cloud. - [Know Your Data in the Microsoft 365 Compliance Center](https://petri.com/know-your-data-microsoft-365-compliance-center/): Know Your Data is part of the Microsoft 365 Information Governance mantra, and the Compliance Center now boasts a new dashboard to help Office 365 administrators know what they have. - [Everything You Need to Know About Office 365 – May 2020](https://petri.com/everything-you-need-to-know-about-office-365-may-2020/): This month there is lots of new stuff and I am not even sure what my favorite is. Outlook reading... - [Everything You Need to Know About Windows – May 2020](https://petri.com/everything-you-need-to-know-about-windows-may-2020/): May was a busy month for Windows, with the release of the Windows 10 May 2020 Update and Build. - [Everything You Need to Know About Azure Infrastructure – May 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-may-2020-edition/): As you might notice below, there were a lot of announcements in the world of Azure Infrastructure last month. That’s... - [Teams Gets Stronger Enterprise Controls, Expanded Chat Limits and Better Interop](https://petri.com/teams-gets-stronger-enterprise-controls-expanded-limits-and-better-interop/): This week in Teams, we've been exploring some new functionality rolling out for use with Intune, meeting limits/meeting join improvements,... - [Amazon’s AWS Summit - US and Canada 2020](https://petri.com/amazons-aws-summit-us-canada-2020/): This past May, 2020 Amazon presented their AWS Summit – US and Canada with a keynote by their Amazon CTO,... - [Surface Book 3: A Workstation for a Specific Type of Worker](https://petri.com/surface-book-3-a-workstation-for-a-specific-kind-of-worker/): Microsoft’s Surface Book 3 represents the ‘best of the best’ of the Surface family. It has the most powerful CPU/GPU... - [Paul Thurrott's Short Takes: May 29](https://petri.com/paul-thurrotts-short-takes-may-29/): Because I heard you missed me, I’m back, this edition of Short Takes looks at Microsoft’s mea culpa on open-source,... - [How Exchange Online Processes Journal Reports for Protected Email](https://petri.com/how-exchange-online-processes-journal-reports-protected-email/): Office 365 tenants often want to journal email from Exchange Online mailboxes. Things become a little more complicated when protected email is involved, but Exchange can decrypt protected messages - [Windows 10 May 2020 Update is Now Available](https://petri.com/windows-10-may-2020-update-is-now-available/): Microsoft has announced today that Windows 10, version 2004 is now generally available - [Microsoft Brings GUI Support and GPU Acceleration to Windows Subsystem for Linux](https://petri.com/microsoft-announces-gpu-hardware-acceleration-and-gui-app-support-for-wsl-2-at-build-2020/): Microsoft announces GPU hardware acceleration and GUI app support for WSL 2 at Build 2020. - [Teams 3x3 Calls and Pop-Out Chat Arrive, OneNote Editing in Teams Returns](https://petri.com/teams-3x3-and-pop-out-chat-arrives-onenote-editing-in-teams-returns/): Microsoft has rolled out a bunch of new features in the last week, here's a recap of what functionality is... - [Consolidating File Servers with PowerShell and Robocopy](https://petri.com/consolidating-file-servers-with-powershell-and-robocopy/): File Servers – We all have them in one form or another. These servers tend to grow exponentially more critical... - [Lists or Tasks: Microsoft Gives Many Options to Office 365 Users](https://petri.com/modern-lists-sharepoint-online/): Microsoft Lists are coming to SharePoint Online. It's yet another way for Office 365 users to organize data and could cause some confusion with Tasks. - [How Does Microsoft 365 Universal Print Work?](https://petri.com/how-does-microsoft-365-universal-print-work/): Microsoft is hoping to make it easier for organizations to give Azure Active Directory (AAD) joined and MDM-managed devices access... - [Understanding Windows 10 Always On VPN](https://petri.com/understanding-windows-10-always-on-vpn/): Microsoft Windows and Windows Server support a variety of different VPN technologies. The most advanced are DirectAccess and Windows 10... - [Using Formatting Files with PowerShell 7](https://petri.com/using-formatting-files-with-powershell-7/): Any terminal output in PowerShell is controlled by formatting files. Oftentimes, it is very useful to display more information about... - [Split Tunnel VPNs Improve Performance of Cloud Apps for Remote Workers](https://petri.com/split-tunnel-vpns-improve-performance-of-cloud-apps-for-remote-workers/): VPNs are commonly used to give users working from home access to corporate resources. But traditional forced tunnel VPNs can... - [How is COVID-19 Impacting Your Role as an IT Pro?](https://petri.com/how-is-covid-19-impacting-your-role-as-an-it-pro/): Around the globe, IT Pros are facing unprecedented challenges in their environments. From supporting hundreds, if not thousands, of newly-remote... - [Contextual Search is Finally Coming to Teams Chat and Channels](https://petri.com/contextual-search-is-finally-coming-to-teams-chat-and-channels/): It’s not too often that you realize an application that you are using frequently is missing some basic functionality. Especially... - [How to Use Windows Package Manager](https://petri.com/how-to-use-windows-package-manager/): Microsoft recently announced at Build 2020 that it is working on a native open-source package manager for Windows. Due to... - [Improving VDI Performance with MSIX App Attach](https://petri.com/improving-vdi-performance-with-msix-app-attach/): MSIX is a new installer technology for Windows that first appeared in Windows 10 version 1809 and it was later... - [Teams/Skype Interoperability has Been Delayed](https://petri.com/teams-skype-interoperability-has-been-delayed/): One of the big feature updates coming to Teams that many have been waiting for is the ability to chat with... - [Use PowerShell to Fetch Account SignIn Data from the Graph](https://petri.com/use-powershell-fetch-account-signin-data-from-graph/): You can use the Graph API to retrieve sign-in information about guest accounts and use the data to figure out if any accounts should be removed from your tenant. - [Microsoft is Finally Building a Native Package Manager in Windows](https://petri.com/microsoft-is-finally-building-a-native-package-manager-in-windows/): If you read the headline and thought that this was some sort of an elaborate joke, this is not a... - [Microsoft to Developers: Project Reunion is the Best Path Forward](https://petri.com/microsoft-to-developers-project-reunion-is-the-best-path-forward/): Microsoft has a dream, a dream that developers will build apps for all of its platforms with a single base... - [Microsoft Lists: A New Task Tracking App for Microsoft 365](https://petri.com/microsoft-lists-a-new-task-tracking-app-for-microsoft-365/): In the Microsoft portfolio, the company has several planning applications including To Do, Planner, Tasks, and previously Wunderlist. At Build... - [Enforce MFA for SharePoint Online Sites with Conditional Access Policies](https://petri.com/enforce-mfa-sharepoint-online-sites-conditional-access-policies/): Microsoft is previewing an Azure AD conditional access policy to block access to SharePoint Online sites unless accounts are protected with MFA. - [Microsoft 365’s Fluid Framework takes a Step Forward, Goes Open Source](https://petri.com/microsoft-365s-fluid-framework-takes-a-step-forward-goes-open-source/): At Ignite 2019, Microsoft announced a public preview of the company’s upcoming Fluid Framework. Since that announcement, the noise around the... - [What’s New in Teams at Build 2020: Templates, Broadcasting, APIs, and More](https://petri.com/whats-new-in-teams-at-build-2020-templates-broadcasting-apis-and-more/): This week, Microsoft’s Build conference is happening and the company is making announcements from updates to Windows development to new... - [Surface Go 2 Review: Firstline, First](https://petri.com/surface-go-2-review-firstline-first/): There are a lot of ways you can look at the Surface Go. Is it a consumer device, a firstline... - [Yammer Previews Fluent User Interface](https://petri.com/yammer-preview-fluent-design/): The new Yammer user interface is in preview. The new approach is based on Microsoft's Fluid Design System and it's better in some parts than in others. - [Surface Book 3: Unboxing and Hands-On](https://petri.com/surface-book-3-unboxing-and-hands-on/): This week, Microsoft has made available several Surface devices, like the brand new Surface Go 2. But arriving at my office... - [Reply-All Storm Suppression Only for Large Cloud Tenants](https://petri.com/reply-all-storm-suppression-only-for-large-cloud-tenants/): Exchange Online now boasts the abiliity to suppress reply-all email storms. This is good, but it's taken Microsoft a long time to develop and it's only for the enterprise. - [Intel's Latest 10th-Gen vPro CPUs Get Mandatory Hardware Shield](https://petri.com/intels-latest-10th-gen-vpro-cpus-get-mandatory-hardware-shield/): Intel releases 27 10th generation CPUs for desktop and mobile with Hardware Shield to improve remote worker security. - [Patch Tuesday – May 2020](https://petri.com/patch-tuesday-may-2020/): Microsoft issues fixes for 111 vulnerabilities, making this month the third biggest set of patches in Microsoft's history. - [Microsoft Announces Azure Active Directory External Identities](https://petri.com/microsoft-announces-azure-active-directory-external-identities/): Azure AD External Identities, now in public preview, brings easier authentication for users, organizations, and developers. - [Windows Terminal Reaches General Availability](https://petri.com/windows-terminal-reaches-general-availability/): Microsoft releases Windows Terminal version 1. 0 at Build 2020. - [How to Block Email Forwarding in Exchange Online](https://petri.com/blocking-email-forwarding-part2/): After stopping OWA users autoforwarding, other steps are necessary to stop clients forwarding email from Exchange Online mailboxes. - [Microsoft has 2 New Surface Docks, Surface Headphones Updated](https://petri.com/microsoft-has-2-new-surface-docks-surface-headphones-updated/): For Surface fans, today has been a big day with the announcement of the Surface Go 2 that has a larger... - [Hands-on with the Surface Go 2](https://petri.com/hands-on-with-the-surface-go-2/): Today’s the day, the Surface Go 2 is here, and in the not too distant future, so will the Surface Book... - [Stop OWA Users Autoforwarding Email](https://petri.com/stop-owa-users-autoforwarding-email/): How to use Role Based Access Control to block users having the ability to set an email forward address from OWA. - [Interpreting the Office 365 MailItemsAccessed Audit Event](https://petri.com/interpreting-the-office-365-mailitemsaccessed-audit-event/): If you have Office 365 E5 licenses, your mailboxes generate MailItemsAccessed events. These events are stored in the Office 365 audit log and can be used for investigating potentially compromised mailboxes. - [Syncing Updates from the Microsoft 365 Admin Center to Planner](https://petri.com/planner-link-office365-updates/): Soon you'll be able to synchronize Office 365 notification messages to Planner and manage the introduction of the changes through Planner. The integration is straightforward and works well. - [Microsoft 365 Communications Compliance Takes New Look at Employee Interaction](https://petri.com/communications-compliance-takes-new-look-employee-interaction/): Communications Compliance is a part of Microsoft 365's Insider Risk functionality. This is a replacement for Office 365 supervision policies and introduces coverage of new communications and a lot of machine learning. - [Taking Advantage of Free AWS Training](https://petri.com/taking-advantage-of-free-aws-training-options/): If you want to maximize your skills while sitting at home, Amazon has free options available. - [Patch Tuesday – April 2020](https://petri.com/patch-tuesday-april-2020/): This month Microsoft patches three Windows 10 zero-days, including a patch for two RCE flaws discovered last month in the... - [Azure Active Directory Premium P1 to be Part of Microsoft 365 Business](https://petri.com/azure-active-directory-premium-p1-to-be-part-of-microsoft-365-business/): Cloud Discovery, Application Proxy, passwordless authentication, and more Azure Active Directory features coming to Microsoft 365 Business in April. - [Microsoft is Rebranding Office 365 Groups](https://petri.com/microsoft-is-rebranding-office-365-groups/): Microsoft is going to rebrand Office 365 Groups to Microsoft 365 Groups in the near future. - [Inconsistencies in Microsoft 365 Licensing for Security and Compliance](https://petri.com/inconsistency-microsoft-365-security-compliance-licenses/): The new licensing guidance for Microsoft 365 security and compliance features is welcome, but as is probably inevitable, some inconsistencies exist that need to be probed. - [Microsoft Increases Teams Participant Views to 9, Trails Zoom by 40](https://petri.com/microsofts-increasing-teams-call-streams-to-9-trails-zoom-by-40/): Microsoft is finally increasing Teams calling to support 9 participant streams, up from 4 but well behind Zoom. - [How to Block TLS 1.0 and TLS 1.1 in Microsoft Edge and Google Chrome](https://petri.com/how-to-block-tls-1-0-and-tls-1-1-in-microsoft-edge-and-google-chrome/): Microsoft announced that it is delaying disabling legacy TLS protocols by default in all its supported browsers. - [AWS Previews Streamlined Container OS](https://petri.com/aws-previews-streamlined-container-os/): Amazon has just released the preview version of its new container optimized OS - [Working with Linux Permissions in PowerShell 7](https://petri.com/working-with-linux-permissions-in-powershell-7/): With the introduction of PowerShell Core and now PowerShell 7, the cross-platform capabilities of PowerShell have also brought new challenges.... - [Moving Groups, Teams, and Sites from Classifications to Sensitivity Labels](https://petri.com/moving-classifications-sensitivity-labels/): Office 365 Sensitivity Labels are supported by Teams, Groups, and Sites, but some work is needed if you want to replace older text-only classification labels with Office 365 Sensitivity Labels. - [Microsoft Changes Course with Windows 10X, Prepares Preview Builds](https://petri.com/microsoft-changes-course-with-windows-10x-prepares-preview-builds/): Microsoft is changing the path ahead for Windows 10X which means a new focus and Surface Neo isn't coming anytime... - [Active Directory Authentication for Azure Files Enters Public Preview](https://petri.com/active-directory-authentication-for-azure-files-enters-public-preview/): Active Directory authentication for Azure Files, which is now in preview, builds on Azure AD DS authentication over SMB by... - [Teams Custom Backgrounds Arrive In May](https://petri.com/teams-custom-backgrounds-arrive-in-may/): Microsoft’s Teams has quickly found itself at the center of the work-from-home conversation that has kicked up during the past... - [Microsoft’s Conference Strategy Reboot](https://petri.com/microsofts-conference-strategy-reboot/): Microsoft is not planning to have an in-person event until after July of FY2021 concludes and is re-thinking its entire... - [How Secure is Video Conferencing App Zoom?](https://petri.com/how-secure-is-video-conferencing-app-zoom/): There's been a lot written in the press recently about video conferencing app Zoom. But how bad are Zoom's security... - [The Confusing World of Microsoft 365 Security and Compliance Licensing](https://petri.com/microsoft-365-compliance-licensing-issues/): Licensing the range of Microsoft 365 compliance and security features is a task taken on by the bravest. Or so they say. Another way of putting it is that people just don't understand what licenses are needed - [Hardware-Enforced Stack Protection Preview Arrives For Windows 10](https://petri.com/hardware-enforced-stack-protection-preview-arrives-in-windows-10-insider-build/): Microsoft announces support for protection against Return-Oriented Programming based control flow attacks in Windows 10 Insider builds on the Fast... - [Comparing ThreadJob to PSJobs in PowerShell 7 on Linux](https://petri.com/comparing-threadjob-to-psjobs-in-powershell-7-on-linux/): There have always been a few options for running background asynchronous tasks within PowerShell. Traditionally, PowerShell (PS) Jobs was the... - [Microsoft Azure European Regions Starting to Hit Capacity Limits](https://petri.com/microsoft-azure-european-regions-hit-capacity-limits/): Some Azure customers complaining that they can't start virtual machines in several European regions due to lack of capacity. - [Purging Unwanted Messages from Exchange Online Mailboxes](https://petri.com/purge-messages-exchange-online/): Microsoft has removed the Search-Mailbox cmdlet from Exchange Online, but that doesn't mean you can't purge bad messages from user mailboxes. - [Everything You Need to Know About Azure – March 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-march-2020-edition/): At times like this, chatting about cool new features in Azure is a lot less important than what’s surrounding us... - [Everything you Need to Know About Office 365 - March 2020](https://petri.com/everything-you-need-to-know-about-office-365-march-2020/): Teams, work from home, and the power of the Power Platform makes this month update a busy one. Also some SharePoint Migrations to round out the update. - [Everything You Need to Know About Windows – March 2020](https://petri.com/everything-you-need-to-know-about-windows-march-2020/): Microsoft announces that it will pause Windows 10 optional updates starting in May and extend security updates for some Windows... - [How Slack Integrates with Teams for Calling](https://petri.com/how-slack-integrates-teams-calling/): Slack has revealed its add-on for Teams calling to dispell the mystery (at least in my mind) for how they would create a calling integration without Microsoft's help. - [Slack Wants to Integrate with Teams – But How?](https://petri.com/slack-integrate-teams/): The Slack CEO says that the company is working on a calling integration with Teams. Slack hasn't released any technical information, which leads to a certain amount of speculation as to how such an integration might happen. - [Microsoft’s Ignite is Going Digital Only, Cancels In-Person Event](https://petri.com/microsofts-ignite-is-going-digital-only-cancels-in-person-event/): This year has been a rough one for the event industry with nearly all in-person events being canceled. Microsoft has... - [How to Use PowerShell 7 to Work with JSON Files](https://petri.com/how-to-use-powershell-7-to-work-with-json-files/): What's changed in PowerShell 7 to enhance support for JSON? There are no new cmdlets, but there have been some... - [Microsoft Under Pressure to Improve Teams Video to Stop Customers Going to Zoom](https://petri.com/teams-video-view-improvement-needed/): Although Teams has seen a spike in usage due to more people working at home, the view of participants in Teams video meetings is not as good as competitors such as Zoom. - [Microsoft to Rebrand Some Office 365 SKUs Starting in April](https://petri.com/microsoft-is-rebranding-some-office-365-accounts-but-not-all/): If you were to point to one software-as-a-service product inside of Microsoft that has been a pillar of the company’s... - [Microsoft Teams for Consumer is Coming Later this Year](https://petri.com/microsoft-teams-for-consumer-is-coming-later-this-year/): As expected, Microsoft is rolling out later this year a Teams update that will enable functionality for families (and friends)... - [Microsoft sees Nearly 800% Increase for Cloud Services](https://petri.com/microsoft-sees-nearly-800-increase-for-cloud-services/): Seemingly overnight, a sizeable portion of the global workforce moved to being a remote operation. While everyone is looking for... - [Microsoft Increases Teams Membership to 10,000 Users](https://petri.com/microsoft-increases-teams-membership-10000-users/): Microsoft announced that Teams now supports a maximum of 10,000 users in the membership of an individual team. The new limit is rolling out to Office 365 tenants in April and should be available worldwide in May. - [Microsoft Delays Retirement of MCSE, MCSA, and MCSD Certifications](https://petri.com/microsoft-extends-retirement-of-mcse-mcsa-and-mcsd-certifications/): A few weeks ago, Microsoft made a significant announcement regarding several of its popular certifications. The company announced that Microsoft... - [Paul Thurrott's Short Takes: March 27](https://petri.com/paul-thurrotts-short-takes-march-27/): Because it’s such a great time to be alive, this edition of Short Takes looks at a ton of Coronavirus-related... - [Understanding $PSDefaultParameterValues in PowerShell 7](https://petri.com/understanding-psdefaultparametervalues-in-powershell-7/): Do you have that one PowerShell command you use constantly? If that command has parameters, you have to manually specify... - [Teams Introduces Tagging for Targeted Communications](https://petri.com/teams-tagging-targeted-communications/): Teams is all about communication, but now you can have "targeted communications," which is a long-winded way to describe tags. A tag is a shortcut method to address a set of team members. - [Work From Home – 4 Tips for Productive Video Conferencing](https://petri.com/work-from-home-4-tips-for-productive-video-conferencing/): Online meetings are becoming an even more regular part of daily work life as many of us move to 'work... - [Microsoft Issues Security Advisory for Zero-Day in Adobe Type Manager Library](https://petri.com/microsoft-issues-security-advisory-for-zero-day-in-adobe-type-manager-library/): Microsoft said on Monday that it is aware of an unpatched vulnerability in the Windows Adobe Type Manager Library that... - [Microsoft Imposes Restrictions on Office 365 Services to Ease Demand](https://petri.com/microsoft-imposes-restrictions-office-365-services-ease-demand/): Microsoft has imposed further restrictions on some Office 365 services to release CPU cycles and other resources to allow end users to work. The major impact is felt by SharePoint Online, OneNote, and Stream, and consequently by Teams because it uses all of the above. - [Understanding the PowerShell 7 Error Variable](https://petri.com/understanding-the-powershell-7-error-variable/): As with any programming language, code will have errors and troubleshooting those problems can be difficult. Thankfully, PowerShell has a... - [What’s Different about Backup to the Cloud?](https://petri.com/whats-different-about-backup-to-the-cloud/): A lot of businesses have begun to incorporate the cloud into their backup processes and most businesses that haven’t done... - [How to Send an Email via MailGun API using PowerShell 7](https://petri.com/how-to-send-an-email-via-mailgun-api-using-powershell-7/): Mailgun is an email sending service that provides logging and an API to send emails. PowerShell is particularly strong in... - [Choosing between Virtual Private Network and Zero Trust Remote Access Solutions](https://petri.com/choosing-between-virtual-private-network-and-zero-trust-remote-access-solutions/): As we enter a time of crisis that will see a significant number of employees asked to work from home,... - [Microsoft Added 12 Million New Daily Teams Users in 7 Days](https://petri.com/microsoft-added-12-million-new-daily-teams-users-in-7-days/): The rise of COVID-19 has put a significant amount of pressure on IT departments around the globe. With the onset... - [As Teams Turns 3, Microsoft is Adding Highly Requested New Features](https://petri.com/as-teams-turns-3-microsoft-is-adding-highly-requested-new-features/): It’s a bit hard to believe but Microsoft’s Teams application is turning 3 this week. To say that the application... - [Using Office 365 Sensitivity Labels with Teams, Groups, and Sites](https://petri.com/using-office-365-sensitivity-label-teams-groups-sites/): Office 365 Sensitivity Labels can now be applied to "containers" - Teams, Office 365 Groups, and SharePoint sites. The labels don't affect the contents of the containers, but they can control some container settings - [How to Audit LDAP Signing in an Active Directory Domain](https://petri.com/how-to-audit-ldap-signing-in-an-active-directory-domain/): Microsoft is planning to make changes to LDAP security settings in Windows Server. In today's Ask the Admin, I show... - [Office 365 Suffers Temporary Scaling Problems](https://petri.com/growth-service-demand-causes-problems/): A growth in demand for Office 365 services caused some issues for users of Teams, SharePoint Online and OneDrive for Business. The growth in Teams demand is understandable. - [A Note to Our Fellow IT Pros](https://petri.com/a-note-to-our-fellow-it-pros/): To those who have been working 24x7 to keep the networks alive, who imaged 100s of laptops, issued security tokens,... - [Microsoft Releases Emergency Fix for Windows SMB3 Vulnerability](https://petri.com/microsoft-releases-emergency-fix-for-windows-smb3-vulnerability/): Microsoft recommends applying an out-of-band emergency patch for SMB remote code execution flaw as soon as possible. - [Windows 10 Passes 1 Billion Monthly Active Users](https://petri.com/windows-10-passes-1-billion-monthly-active-users/): Microsoft’s Windows 10 operating system has passed a significant milestone, the OS is running on more than 1 billion PCs... - [How to Enable Security Defaults in Azure Active Directory](https://petri.com/how-to-enable-security-defaults-in-azure-active-directory/): Microsoft is gradually introducing multifactor authentication (MFA) for all organizational accounts in Azure Active Directory. In this article, I look... - [Paul Thurrott's Short Takes: March 13](https://petri.com/paul-thurrotts-short-takes-march-13/): Because of the Coronavirus, this edition of Short Takes looks at a lot of virus-related collateral damage, including Microsoft Build... - [Microsoft Moves Build to Virtual Event, Cancels In Person Show](https://petri.com/microsoft-moves-build-to-virtual-event-cancels-in-person-show/): Microsoft has announced that its developer conference, Build, is moving to a virtual-only event with the on-site portion of the... - [Patch Tuesday – March 2020](https://petri.com/patch-tuesday-march-2020/): The biggest Patch Tuesday in the company's history, this month Microsoft fixes 115 bugs. There's also a security advisory for... - [VMware Embraces Kubernetes for App Modernization](https://petri.com/vmware-embraces-kubernetes-for-app-modernization/): Like many businesses today, VMware has embraced Kubernetes as a path forward to rearchitect modern apps and extend infrastructure and... - [CVE-2020-0688 Puts Focus on Exchange On-Premises Vulnerabilities](https://petri.com/cve-2020-0688-puts-focus-exchange-vulnerabilities/): The revelations that Exchange Server has had a vulnerability in the Exchange Control Panel since Exchange 2010 shocked some. Microsoft has patched CVE-2020-0688, but the problem - [Microsoft Begins Rollout of Skype Federation in Teams](https://petri.com/microsoft-begins-rollout-of-skype-federation-in-teams/): There is one feature that I have been waiting to be brought to Teams that has been on the roadmap... - [How FIDO2 Passwordless Logins Work in Hybrid Azure AD Environments](https://petri.com/how-fido2-passwordless-logins-in-work-hybrid-azure-ad-environments/): Microsoft is expanding support for passwordless logins to devices that are hybrid joined to Azure AD domains. In this article,... - [With Microsoft Working from Home, Teams Will be in the Spotlight](https://petri.com/with-microsoft-working-from-home-teams-gets-the-spotlight/): In the world of software development, dogfooding is the act of using your own software. For Microsoft, this is done... - [SharePoint Online Embraces Office 365 Sensitivity Labels](https://petri.com/sharepoint-online-embraces-office-365-sensitivity-labels/): SharePoint Online is embracing Office 365 Sensitivity Labels to allow protected documents to be processed by indexing and available to content searches and eDiscovery. - [How to Create a Services List in PowerShell 7 on Linux](https://petri.com/how-to-create-a-services-list-in-powershell-7-on-linux/): Just like Windows, Linux has many running services that need proper management. With the advent of PowerShell 7 and it's... - [Understanding Windows App Installer](https://petri.com/understanding-windows-app-installer/): Windows App Installer was first introduced in the Windows 10 Anniversary Update (1607) to make sideloading UWP apps easier. Since... - [How to Manage GIT with PowerShell 7 and Posh-GIT](https://petri.com/how-to-manage-git-with-powershell-7-and-posh-git/): If you haven’t heard of Posh-GIT, it is a great module for assisting in managing your GIT repositories from within... - [Teams, Surface Earbuds, and the Microsoft 365 Assistant](https://petri.com/cortana-surface-earbuds-and-the-microsoft-365-ecosystem/): Microsoft may be pivoting Cortana but the assistant is gaining features in the hardware space as well as inside of... - [Google Managed Service for Microsoft Active Directory Reaches General Availability](https://petri.com/google-managed-service-for-microsoft-active-directory-reaches-general-availability/): Google makes it easier for enterprises to move apps that rely on Windows Server Active Directory to Google Cloud. - [On-Premises Exchange Not Going Away Just Yet](https://petri.com/exchange-not-dead-yet/): A Microsoft employee commented that Exchange 2019 is the last on-premises version and will bring the era of Exchange to a close after 25 or so years. - [Understanding User Settings and Data Synchronization in Chromium-Based Microsoft Edge](https://petri.com/understanding-user-settings-and-data-synchronization-in-chromium-based-microsoft-edge/): How account synchronization works in the new version of Microsoft Edge. - [PowerShell 7 is Now Available for Windows, Linux and macOS](https://petri.com/powershell-7-is-now-available-for-windows-linux-and-macos/): If you have been hanging around the Petri neighborhood, you might be mistaken to think that PowerShell 7 is already... - [The Difference between Backup and Disaster Recovery](https://petri.com/the-difference-between-backup-and-disaster-recovery/): While they definitely work together to provide data protection, backup and disaster recovery (DR) are not the same thing. A... - [Economic Impact Study Says Outlook Mobile is Good. How Surprising!](https://petri.com/economic-impact-study-outlook-mobile/): A Forrester Research study sponsored by Microsoft concludes that the deployment of Outlook Mobile brings big benefits for organizations. Given the funding source, that outcome is hardly surprising. - [Microsoft's MVP Summit Goes Virtual Because of Coronavirus](https://petri.com/microsofts-mvp-summit-goes-virtual-because-of-coronavirus/): In about two weeks, Microsoft was scheduled to host its annual MVP summit at its offices in Seattle, Washington. The... - [Everything You Need to Know About Office 365 - February 2020](https://petri.com/everything-you-need-to-know-about-office-365-february-2020/): This month the news is dominated but the Office client team and Power Platform team. Don't blame me, I just report the news. Still good stuff. - [Everything You Need to Know About Azure – February 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-february-2020-edition/): I did think about calling this the typo edition – I just bought a Microsoft Sculpt ergonomic keyboard and it... - [Everything You Need to Know About Windows - February 2020](https://petri.com/everything-you-need-to-know-about-windows-february-2020/): This month sees Microsoft pull a standalone security update, release a Windows 10X emulator so that developers can start adapting... - [Microsoft Removes Standalone Security Update Causing Issues on Some PCs](https://petri.com/microsoft-removes-standalone-security-update-causing-issues-on-some-pcs/): Microsoft UEFI Revocation List File update causes problems on some devices. Here's what you need to know about the latest... - [Microsoft is Retiring Several Popular Certifications](https://petri.com/microsoft-is-retiring-several-popular-certifications/): For decades, Microsoft has been pushing certifications as a way to show your expertise in a particular area. Spanning from... - [Looking into the Future With the Fluid Framework Preview](https://petri.com/fluid-framework-preview-office365/): Microsoft has made a preview of the Fluid Foundation available for Office 365 users to try out. The preview demonstrates how components can work together to share information quickly. - [Microsoft’s New Cloud Printing Service Moves Closer to Release](https://petri.com/microsofts-new-cloud-printing-service-is-closer-to-release/): Early last year, we first caught wind that Microsoft was working on a new cloud-based printing feature. The idea is... - [To Address 2 Billion Workers, Microsoft is Thinking Outside the Conversation](https://petri.com/to-address-2-billion-workers-microsofts-thinking-outside-the-conversation/): Microsoft is working to address this market by adding functionality to its popular Teams application to enhance workflows for all... - [Understanding SharePoint Online Versioning](https://petri.com/understanding-sharepoint-online-versioning/): SharePoint Online document libraries keep 500 versions of files by default. The minimum recommended by Microsoft is 100. But why are so many versions kept? The reason is that it leads to better recoverability and underpins features like AutoSave and co-authoring. - [How Pipeline Chain Operators Work in PowerShell 7](https://petri.com/how-pipeline-chain-operators-work-in-powershell-7/): PowerShell 7 has introduced a number of new abilities for the language. One of those abilities is the oft-requested pipeline... - [Microsoft Secured-Core PCs to Protect Financial Services, Government, and Healthcare](https://petri.com/microsoft-secured-core-pcs-to-protect-financial-services-government-and-healthcare/): Microsoft and its hardware partners have new device security requirements to protect against targeted firmware attacks. - [How to Use a Windows Notebook with an External Monitor](https://petri.com/using-a-windows-notebook-with-an-external-monitor/): How to configure Windows for the best experience when using an external monitor and how to reset the graphics stack... - [Create a PinPoint DNS Zone to Support Identical Internal and External Exchange Server HTTPS Namespaces](https://petri.com/create-a-pinpoint-dns-zone-to-support-identical-internal-and-external-exchange-server-https-namespaces/): How to configure Windows Server DNS to support identical internal and external Exchange Server HTTPS namespaces. - [A Roundup of Microsoft’s RSA Announcements](https://petri.com/a-roundup-of-microsofts-rsa-announcements/): The 2020 RSA is taking place next week but Microsoft is announcing the general availability of several services ahead of... - [Teams Gets Closer to Email](https://petri.com/teams-gets-closer-email/): Since its inception, Microsoft Teams has had an odd relationship with email. Some think that Teams will replace email, at least for many internal conversations. - [How to Send a Microsoft Teams Message using PowerShell 7](https://petri.com/how-to-send-a-microsoft-teams-message-using-powershell-7/): Microsoft Teams is up and coming in the world of business chat and collaboration clients. Much like Slack, Microsoft Teams... - [Microsoft’s New Office Mobile App Is Now Available to Everyone](https://petri.com/microsofts-new-office-mobile-app-is-now-available/): Back at Ignite, Microsoft announced that it was building a new mobile experience for iOS and Android users. Called the... - [Amazon AWS Leads the Growing Cloud Market](https://petri.com/amazon-aws-leads-the-growing-cloud-market/): The cloud market has continued to grow at a rapid pace and according to research by Synergy Research Group Amazon... - [How to Set Up Windows 10 Your Phone and Make Calls](https://petri.com/how-to-set-up-windows-10-your-phone-and-make-calls/): In today's Ask the Admin, I look at how to set up Your Phone in Windows 10 so that you... - [Patch Tuesday – February 2020](https://petri.com/patch-tuesday-february-2020/): This month sees a bumper crop of 99 patches from Microsoft, including a fix for the IE zero-day announced last... - [Microsoft Working on Outlook Cloud Signatures](https://petri.com/microsoft-working-outlook-cloud-signatures/): The news that Microsoft is working on cloud signatures for Outlook for Windows is welcome. The venerable Outlook client has long stored its signature information in the system registry, which makes it hard to move signatures from PC to PC. - [Microsoft Releases Alpha Version of PowerShell Secrets Management Module](https://petri.com/microsoft-releases-alpha-version-of-powershell-secrets-management-module/): Taking a look at the developer preview of a new PowerShell module from Microsoft that aims to make storing and... - [Microsoft’s Spring Hardware Event: Surface Book 3 and Go 2 Detailed](https://petri.com/microsofts-spring-hardware-event-surface-book-3-and-go-2-detailed/): Microsoft is planning a hardware event for the Spring, here is what you can expect for the new Book 3... - [Paul Thurrott's Short Takes: February 14](https://petri.com/paul-thurrotts-short-takes-february-14/): Because I want you to be my Valentine, this edition of Short Takes looks at Microsoft finally doing the right... - [Microsoft Edge Version 80 Brings ARM64 Support to Stable Channel](https://petri.com/microsoft-edge-version-80-brings-arm64-support-to-stable-channel/): February 7th saw Microsoft unexpectedly release a new version of its Chromium-based Edge browser to the stable channel. - [Microsoft Delays LDAP Signing and Channel Binding Changes in Active Directory](https://petri.com/microsoft-delays-ldap-signing-and-channel-binding-changes-in-active-directory/): Last year, Microsoft announced that it would be making changes to the default LDAP channel binding and signing configuration in... - [First Look at Microsoft’s Fluid Framework that Aims To Take on Notion](https://petri.com/first-look-at-microsofts-fluid-framework-that-aims-to-take-on-notion-hq/): Back at Build 2019, Microsoft announced Fluid Framework, a way to integrate living content inside of Office applications. While news... - [Microsoft Retreats from Flawed Plan to Force Bing Extension on Chrome Users](https://petri.com/microsoft-retreats-from-flawed-plan-force-extension-on-chrome-users/): After several weeks of customer protest, Microsoft decided that their plan to automatically install a Microsoft Search in Bing extension for Chrome browsers with Office ProPlus wouldn't fly. - [Microsoft Begins Courting Developers to Windows 10X, But Will They Build?](https://petri.com/microsoft-hopes-to-attract-developers-to-windows-10x-but-will-they-come/): This week, Microsoft is hosting a virtual developer conference where the company is talking in more detail about Windows 10X,... - [Teams Certificate Outage Causes Office 365 Tenants Concern](https://petri.com/allabout-teams-outage-3feb/): The fact that the Teams outage on 3 February was caused by an expired authentication certificate is enough to cause Office 365 tenants to ask why such a thing happened. - [How to Create a Group Policy Central Store](https://petri.com/how-to-create-a-group-policy-central-store/): How to centralize Group Policy templates to make managing configuration settings easier in a domain environment. - [A Roundup of Recent AWS Announcements](https://petri.com/recent-aws-announcements/): Amazon AWS is today’s leading cloud provider supporting millions of customers with over 175 cloud services from 22 geographic regions... - [Amazon Adds new Features to AWS Backup](https://petri.com/amazon-enhances-aws-backup/): AWS Backup was first released last year in January 2019 and since that time Amazon has reported that over 20,000... - [How to Manage Azure VMs running Windows Server using the Windows Admin Center.](https://petri.com/managing-azure-vms-using-windows-admin-center/): The Windows Admin Center (WAC) is a web portal for managing local or remote servers via a gateway that uses... - [Microsoft Releases Sensitive by Default Upload for SharePoint Online](https://petri.com/microsoft-releases-sensitive-by-default-upload-sharepoint-online/): A new SharePoint Online feature blocks access to newly uploaded files until Office 365 Data Loss Prevention processes the files to detect policy violations due to the presence of sensitive data. - [How PowerShell 7 Logging works in Linux](https://petri.com/how-powershell-7-logging-works-in-linux/): With PowerShell 7 being cross-platform, the question often comes up of how logging works on Linux systems. Most PowerShell administrators... - [Windows 10 Version 2004 (20H1) – Cortana](https://petri.com/windows-10-version-2004-20h1-cortana/): Most of the changes in Windows 10 version 2004, which is due to land in the first half of 2020,... - [Everything You Need to Know About Azure Infrastructure – January 2020 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-january-2020-edition/): This post summarizes the Azure news from January 2020 and looks to the rest of the year with some tips on training for IT pros. - [Windows 10X Emulator Arriving in February](https://petri.com/windows-10x-emulator-arriving-in-february/): Microsoft is making available a dual-screen Hyper-V emulator that simulates Windows 10X as part of a forthcoming pre-release version of... - [Sponsored: Adopting Teams is One Thing, Using it Effectively is Another ](https://petri.com/adopting-teams-is-one-thing-using-it-effectively-is-another/):   This post is sponsored by Quadrotech, you can learn about their Teams and other Office 365 resources on their... - [Getting Started with Free AWS Offerings](https://petri.com/getting-started-with-aws/): While businesses have been adopting the cloud and cloud services at an ever-increasing rate not everybody has made the move... - [Microsoft Launches Preview PowerShell Module for Graph](https://petri.com/microsoft-launches-preview-powershell-module-graph/): Microsoft has made a preview PowerShell module for the Graph available for developers to play with. Being able to use PowerShell with the Graph exposes a lot of data to play with, so it's a great addition to the administrator toolkit. - [Everything You Need to Know about Office 365 – January 2020](https://petri.com/everything-you-need-to-know-about-office-365-january-2020/): Everything you need to know about Office 365 from January 2020. Includes Power Platform, OneDrive for Business, ChrEdge, and more. - [Microsoft Forgets to Renew Certificate, Teams Goes Offline](https://petri.com/microsoft-forgets-to-renew-certificate-teams-goes-offline/): If you woke up this morning and are unable to sign in to Microsoft Teams, you are not alone. Microsoft’s... - [Everything You Need to Know About Windows – January 2020](https://petri.com/everything-you-need-to-know-about-windows-january-2020/): In January we finally said goodbye to Windows 7 SP1 and Windows Server 2008 R2 SP1. Microsoft made its new... - [Microsoft's Surface Hub 2X is Delayed and May Never Ship](https://petri.com/microsoft-has-cancelled-the-surface-hub-2x/): Back in May of 2018, Microsoft made a big splash by announcing the Surface Hub 2. The hardware was the... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (January 2020)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-12/): Because Microsoft announced its most recent quarterly earnings this week, this edition of Short Takes is going to obsess over... - [Google Is Building a Slack, Not a Teams](https://petri.com/google-is-building-a-slack-not-a-teams/): For the past half-decade or so, Google has been trying feverishly to crack the enterprise market with its cloud and... - [Microsoft Closes Outlook Copy-On-Write Flaw with Exchange Online Fix](https://petri.com/outlook-flaw-fixed-exchange-online/): Microsoft fixed the copy-on-write bug in Outlook for Windows in Exchange Online. The fix stops users removing attachments from sent or received messages. A strong case can be made that the fix should have been present - [Microsoft's Q2 Earnings Beat Estimates, Reinforce Office and Cloud Growth](https://petri.com/microsoftq2results/): It's that time of the year again and Microsoft has released its earnings for Q2 fiscal / Q4 calendar and... - [Microsoft Planning to Wind Down Windows 10 Store for Business](https://petri.com/microsoft-planning-to-wind-down-windows-10-store-for-business/): Redmond could be looking to phase out the Microsoft Store for Business and Store for Education. Not to be confused... - [The Importance of Endpoint Backup](https://petri.com/the-importance-of-endpoint-backup/): While almost every business has some type of backup processes in place for their important servers, many of these same... - [Managing OneDrive for Business File Upload Requests](https://petri.com/managing-onedrive-for-business-file-upload-requests/): The new Request Files feature in OneDrive for Business is great for users but comes with no admin controls. You can block the feature completely with a kludge and use Office 365 audit records to know when people are requesting files. - [Manage and Audit Windows and Linux Servers Using Azure Arc](https://petri.com/manage-and-audit-windows-and-linux-servers-using-azure-arc/): Microsoft adds a subset of existing Azure server security and auditing features to Azure Arc for organizations that need to... - [Microsoft Tries to Boost Microsoft Search in Bing with Chrome Extension](https://petri.com/microsoft-search-chrome-extension/): In a January 22 post, Microsoft announced a plan to boost Microsoft Search in Bing by including an extension to make Bing the search engine for Chrome for Office ProPlus users. - [Microsoft Issues Zero-Day Advisory for Internet Explorer](https://petri.com/microsoft-issues-zero-day-advisory-for-internet-explorer/): Hot on the heels of this month's Patch Tuesday, Microsoft has published a security advisory for an Internet Explorer zero-day. - [OneDrive for Business Makes It Easy to Request Files](https://petri.com/onedrive-request-files/): The OneDrive for Business Request Files feature is a quick and simple way for users to ask others to upload files to a target folder using a special sharing link. Request files is now available within Office 365. - [Patch Tuesday – January 2020](https://petri.com/patch-tuesday-january-2020/): Windows 7 gets its last regular Patch Tuesday security updates, Microsoft fixes a CryptoAPI vulnerability reported by the NSA, and... - [Microsoft Moves Ignite to a New Location, New Dates](https://petri.com/microsoft-moves-ignite-to-a-new-location-new-dates/): For the past couple of years, Microsoft has hosted Ignite in Orlando, Florida. But for 2020, the company is moving... - [Paul Thurrott's Short Takes: January 17](https://petri.com/paul-thurrotts-short-takes-january-17/): Because it’s been a while, this edition of Short Takes looks at Microsoft’s new carbon-negative push, thanking the NSA for... - [The Need to Manage Office 365 Feature Deprecations](https://petri.com/managing-office-365-change/): Everyone gets very excited about new Office 365 features, but how do we handle the dark side of change - deprecated features and functionality? The answer is that we probably don't do such a good job. - [Windows 10 Version 2004 (20H1) – Renaming Virtual Desktops and Restart Apps Feature](https://petri.com/windows-10-version-2004-20h1-virtual-desktops-and-restart-apps-feature/): Most of the changes in Windows 10 version 2004, which is due to land in the first half of 2020,... - [Microsoft's new Edge Browser is Generally Available Starting Today](https://petri.com/microsofts-new-edge-browser-is-here/): Microsoft's new Edge browser is here but it's not coming to your environment just yet; the company is taking the... - [Windows 7 Support Ends Today But You Probably Aren’t Impacted By This](https://petri.com/windows-7-says-goodbye-but-you-probably-arent-impacted-by-it/): Today is the day that many have likely feared for years, Windows 7 is officially reaching its end of support... - [Outlook Flaw Compromises Exchange Online Native Data Protection](https://petri.com/outlook-flaw-compromises-exchange-online-native-data-protection/): A bug in Outlook desktop's implementation of the MAPI over HTTP protocol allows users whose mailboxes are on hold to remove attachments from messages without the removal being captured. - [Microsoft Search and Improved Windows Search Performance in Windows 10](https://petri.com/microsoft-search-and-improved-windows-search-performance-in-windows-10/): Search in Windows and Microsoft 365 is changing. Earlier this year, Microsoft announced the general availability of Microsoft Search, a... - [What's in Store for Windows in 2020](https://petri.com/whats-in-store-for-windows-in-2020/): Windows 7 reaches end-of-life, Microsoft throws Windows a lifeline with Windows 10X, Windows 10 gets another major feature update, and... - [Teams Is Adding New Security and Management Tools, Dynamics 365 Joins the Update Party Too](https://petri.com/teams-is-adding-new-security-and-management-tools-dynamics-365-joins-the-update-party-too/): Microsoft is about to roll out new features for Teams that will make it easier to communicate and sign-in while... - [Windows - A Year in Review](https://petri.com/windows-a-year-in-review/): It's been another busy year for Windows and here is a summary of the most important events from the last... - [Exchange Online Calendar Auto-Processing Vexes Some Users](https://petri.com/exchange-online-calendar-auto-processing-vexes-some-users/): A recent change made to the way that Exchange Online processes notifications for calendar meetings has upset some Office 365 users because they don't see the email. - [How to Block Automatic Delivery of Microsoft Edge](https://petri.com/how-to-block-automatic-delivery-of-microsoft-edge/): Learn how to block automatic installation of Microsoft's Chromium-based Edge browser when it reaches general availability in January. - [Understanding How Streams Work in PowerShell 7](https://petri.com/understanding-how-streams-work-in-powershell-7/): Much like Unix, PowerShell has the concept of streams. It’s important to understand how the flow of data output works... - [Office 365 Successes and Failures Since 2011](https://petri.com/office-365-successes-and-failures-since-2011/): Office 365 has experienced great success since its launch in June 2011, but it's also had its share of failures as well. This article considers the most important technical advances in Office 365 and the most important parts of the ecosystem - [The Microsoft Software Reaching End of Support in 2020](https://petri.com/the-microsoft-software-reaching-end-of-support-in-2020/): With 2020 officially here, there are several major deadlines on the horizon that you need to be aware of when... - [Everything You Need to Know About Azure Infrastructure – December 2019 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-december-2019-edition/): By the time you read this, it will be 2020. I hope you have had a great holiday season and... - [Everything You Need to Know About Windows – December 2019](https://petri.com/everything-about-windows-december-2019/): This month sees Microsoft preparing for the general availability of its new Chromium-based Edge browser in January, Windows Server Core... - [Office 365 Has Changed Enormously Since 2011](https://petri.com/office-365-has-changed-enormously-since-2011/): Microsoft launched Office 365 in June 2011. Since then, the cloud office suite has matured nicely and now serves over 200 million monthly active users.The fears that people had about going to the cloud have been dealt with - [How to Run Legacy Microsoft Edge and New Edge Stable Channel Side-By-Side](https://petri.com/how-to-run-legacy-microsoft-edge-and-new-edge-stable-channel-side-by-side/): In today's Ask the Admin, I talk again about how Microsoft plans to deliver the new version of its Edge... - [Microsoft Plans to Disable SMTP Authenticated Submissions in Exchange Online](https://petri.com/microsoft-plans-disable-smtp-auth-exchange-online/): Microsoft is doing its level best to remove SMTP basic authentication from Exchange Online as quickly as possible. Basic auth for SMTP connections will disappear gradually as time goes by. - [How to Improve Network Performance in Windows VirtualBox Guests](https://petri.com/how-to-improve-network-performance-in-windows-virtualbox-guests/): In today’s Ask the Admin, I show you how to improve network performance in Windows virtual guests running on Oracle’s... - [Speedy PowerShell Access to Office 365 Groups with Get-ExoRecipient](https://petri.com/speedy-powershell-access-to-office-365-groups/): The new Exchange Online Management PowerShell module has cmdlets that are faster than their older Remote PowerShell equivalents. Converting scripts to make the new cmdlets work takes some effort. - [Windows Server Core Container Images Now 40 Percent Smaller](https://petri.com/windows-server-core-container-images-now-40-percent-smaller/): Microsoft announces 40% smaller Server Core container images coming in the 20H1 timeframe. - [Disaster Recovery: Practice Makes Perfect](https://petri.com/disaster-recovery-practice-makes-perfect/): There’s no doubt that having a disaster recovery (DR) plan in place is essential for businesses of all shapes and... - [Identifying Obsolete Guest User Accounts in an Office 365 Tenant](https://petri.com/guest-account-obsolete-activity/): Many Office 365 applications now create Azure Active Directory guest accounts. What's the best way to discover if the accounts are active and in use? This PowerShell script uses - [Paul Thurrott's Short Takes: December 20](https://petri.com/paul-thurrotts-short-takes-december-20/): Because the year is winding down, this edition of Short Takes looks at the terrible new direction of the Windows... - [How to Configure a Windows 10 VPN Profile Using Microsoft Intune](https://petri.com/how-to-configure-a-windows-10-vpn-profile-using-microsoft-intune/): How to deploy a Windows 10 VPN profile using Microsoft Intune. - [Batten Down the Hatches, Hackers Are Coming for Your NAS](https://petri.com/batten-down-the-hatches-hackers-are-coming-for-your-nas/): According to Kaspersky’s Threat Evolution Report Q3 2019, there is new ransomware ‘focused solely on NAS’ active in the wild. - [Using Office 365 Online Apps with the Brave Browser](https://petri.com/brave-browser-office365/): The Brave Browser offers the prospect of speed and security. But how well does it work with the Office 365 browser apps? As it happens, pretty well, with some exceptions. - [Managing Common Linux Configuration Files with PowerShell 7](https://petri.com/managing-common-linux-configuration-files-with-powershell-7/): PowerShell has been the default configuration tool for Windows since it’s release in 2006, but since being open-sourced in 2016,... - [Microsoft Edge Integration with Windows 10](https://petri.com/microsofts-new-edge-browser-to-start-shipping-with-windows-10-in-first-half-of-2020/): Microsoft has already updated current and older versions of Windows 10 to prepare them to integrate with its new Chromium-based... - [Patch Tuesday – December 2019](https://petri.com/patch-tuesday-december-2019/): This month’s end-of-year Patch Tuesday is relatively light, with Microsoft fixing a Windows zero-day and a spoofing vulnerability in SQL... - [Microsoft Forms Gets File Upload Capability](https://petri.com/microsoft-forms-upload-files/): Designers working with Microsoft Forms can now include a file upload question type in their questionnaires, surveys, and other forms. It's a small but valuable change to Forms. - [Microsoft's Offering a 'Free' Cyber Security Checkup to SMBs](https://petri.com/microsofts-push-to-help-smbs-includes-a-free-cyber-security-health-check/): Microsoft is looking to help SMBs secure their environments by offering a 'free' cybersecurity health check. - [How to Connect to a VirtualBox Windows Guest Using Remote Desktop](https://petri.com/how-to-connect-to-a-virtualbox-windows-guest-using-remote-desktop/): How to connect to a VirtualBox virtual machine using Microsoft’s Remote Desktop. - [Microsoft Teams Is Now Available for Linux](https://petri.com/microsoft-teams-is-now-available-for-linux/): Microsoft has made its Teams client available for Linux customers with an early preview of the application. - [Five Facts about Hybrid Cloud Backup](https://petri.com/five-facts-about-hybrid-cloud-backup/): Using the cloud as a backup target is definitely one of the ways that many businesses are adopting the hybrid... - [Analyzing the 2019 Numbers for Different Office 365 Workloads](https://petri.com/2019-numbers-different-office-365-workloads/): Microsoft is notoriously careful at giving out usage numbers for different Office 365 workloads.We know what the overall count is and now we have numbers for SharePoint Online and Teams. - [How to Manually Onboard Devices to Windows Autopilot – Part 2](https://petri.com/how-to-manually-onboard-devices-to-windows-autopilot-part-2/): How to manually onboard a device to Windows Autopilot. - [Improve Windows Enterprise Application Deployment Reliability and Security using MSIX](https://petri.com/improve-windows-enterprise-application-deployment-reliability-and-security-using-msix/): A closer look at some of the features of Microsoft’s new MSIX installer technology and how they can be used... - [How to Manually Onboard Devices to Windows Autopilot](https://petri.com/how-to-manually-onboard-devices-to-windows-autopilot-part-1/): How to manually onboard devices to Windows Autopilot. - [Paul Thurrott's Short Takes: December 6](https://petri.com/paul-thurrotts-short-takes-december-6/): Because ‘tis the season to snark, this edition of Short Takes looks at major breaking news about Notepad, another unwanted... - [Managing Network Settings with PowerShell 7](https://petri.com/managing-network-settings-with-powershell-7/): Built-in PowerShell 7 module NetTCPIP, on Windows, offers a range of functionality to update and manage your network interfaces. Many... - [How to Check Whether Windows 10 is Joined to Azure Active Directory](https://petri.com/how-to-check-whether-windows-10-is-joined-to-azure-active-directory/): How to check if Windows 10 is connected to an Azure Active Directory domain. - [Sponsored: Office 365 Migration Plan - The Common Pitfalls to Avoid](https://petri.com/office-365-migration-plan-the-common-pitfalls-to-avoid/): When thinking about your migration to Office 365, these are some of the common pitfalls I have encountered while helping... - [OneDrive for Business Delivers Sharing Consistency Across Office 365](https://petri.com/onedrive-consistent-sharing-office365/): OneDrive for Business is responsible for how sharing works within Office 365. Big strides are being made to achieving consistency across all the Office 365 apps and new some tricks are coming along too. - [What Exactly Is Microsoft Endpoint Manager?](https://petri.com/what-exactly-is-microsoft-endpoint-manager/): Looking at a recently-announced product called “Microsoft Endpoint Manager”. While the product name and management interface may be shiny and... - [Exploring the Office 365 Substrate](https://petri.com/office-365-substrate/): The Office 365 Substrate is a poorly understood part of Microsoft's Cloud Office system. The substrate is a critical part of enabling services that run across different applications like Exchange Online, SharePoint Online, Teams, and so on. - [Everything You Need to Know about Office 365 - November 2019](https://petri.com/everything-you-need-to-know-about-office-365-november-2019/): This month you get a round up of all of the Office 365 news and notes you want without the predictable jokes you don't. Teams, Project Cortex, and more. - [Everything You Need to Know About Azure Infrastructure – November 2019 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-november-2019-edition/): Microsoft Ignite 2019 has passed, and as one would expect, there were many Azure announcements. I’m not going to do... - [Everything You Need to Know About Windows – November 2019](https://petri.com/everything-you-need-to-know-about-windows-november-2019/): The Windows 10 November 2019 Update is released for download and on Windows Update, Microsoft confirms that Win32 apps are... - [MSIX Core Coming to Windows 7 and 8.1 in December, Plus New Features on the Horizon](https://petri.com/msix-core-coming-to-windows-7-and-8-1-in-december-plus-new-features-on-the-horizon/): Microsoft’s enterprise application packaging technology, MSIX, is being partially ported to down-level Windows clients and there are some interesting new... - [Teams Doesn’t Need Two PowerShell Modules (But Why Two Exist)](https://petri.com/teams-doesnt-need-two-powershell-modules/): If you work with Teams through PowerShell, you'll know that you sometimes need to open the Skype for Business Online module. It's a royal pain in the rear end to deal with two inconsistent modules - [Getting Started with Azure Arc-Servers](https://petri.com/getting-started-with-azure-arc-servers/): Microsoft announced Azure Arc at Ignite 2019 providing a cross-platform hybrid management system to manage all servers anywhere. In this... - [Tracking Anonymous Access to SharePoint and OneDrive Documents](https://petri.com/tracking-anonymous-access-sharepoint-onedrive-documents/): Cloudy attachments are an excellent way of sharing documents through email without attaching files. Behind the scenes, an anonymous link to the document is sent to recipients. - [We Want To Know What Technology You Use at Work](https://petri.com/we-want-to-know-what-technology-you-use-at-work/): As 2019 comes to an end and we look forward to 2020, we want to know what technology you are... - [Paul Thurrott's Short Takes: November 22 2019](https://petri.com/paul-thurrotts-short-takes-november-22-2/): Because millennials always have the answers, this week’s edition of Short Takes looks at Slack’s response to a Microsoft rip-off,... - [Microsoft Delays Surface Earbuds Until the Spring](https://petri.com/microsoft-delays-surface-earbuds-until-the-spring/): Microsoft is delaying the release of its Surface EarBuds until the spring but the company isn't saying why or when... - [Microsoft Announces Azure Managed Version of Connected Cache](https://petri.com/microsoft-announces-azure-managed-version-of-connected-cache/): A new Azure-managed version of Microsoft Connected Cache enters private preview to help reduce Internet bandwidth for updates. - [Year of Yammer: New Goals for Microsoft’s Enterprise Collaboration App](https://petri.com/year-of-yammer/): Microsoft has declared some undefined period, perhaps starting at the Ignite conference, to be the "Year of Yammer." Cynics might say "What! Yet again?" as Microsoft tries to position its enterprise networking app within Office 365 collaboration. - [New High Availability and Disaster Recovery Features in SQL Server 2019](https://petri.com/new-high-availability-and-disaster-recovery-features-in-sql-server-2019/): The latest release of SQL Server 2019 has several important enhancements for high availability (HA) and disaster recovery (DR). Let’s... - [Join Windows 10 to Microsoft Entra ID (Azure AD) During OOBE](https://petri.com/join-windows-10-to-azure-active-directory-during-oobe/): Before you perform an AAD domain join, you should understand the difference between an AAD domain-joined device and one that... - [Microsoft Adds Seven Million Teams Daily Users in Four Months](https://petri.com/microsoft-adds-seven-million-teams-daily-users-in-four-months/): Microsoft's Teams application has added seven million daily active users in four months but the growth will not be slowing... - [Can Exchange Online Really Recall Messages?](https://petri.com/can-exchange-online-really-recall-messages/): Outlook users are more than aware of the problems involved in message recall, a feature that's only available in Outlook desktop and has a nasty habit of not working. - [Managing Files with PowerShell 7 on Linux](https://petri.com/managing-files-with-powershell-7-on-linux/): Since Microsoft open-sourced PowerShell in 2016, running it on Linux has become not only easier but a core part of... - [Microsoft Shifting Certifications to Workload-Based to Align with Skills](https://petri.com/microsoft-shifting-certifications-to-workload-based-to-align-with-skills/): If you are looking to take or update existing Microsoft certifications, you might be wondering which are best to obtain... - [Intel Releases Microcode Update for CPUs Affected by Zombieload v2](https://petri.com/intel-releases-microcode-update-for-cpus-affected-by-zomieload-v2/): Intel releases microcode for CPUs affected by a new kind of MDS attack and says that previous microcode updates reduce... - [Taking An Easier Approach to Optimize Your Microsoft Licenses](https://petri.com/taking-an-easier-approach-to-optimize-your-microsoft-licenses/): At Ignite 2019, I had a chance to talk to with Cayosoft about how they are making it easier to... - [Petri Dish: Helping You Understand Where Your Most Important Data is Stored with Varonis](https://petri.com/helping-you-understand-where-your-most-important-data-is-stored-with-varonis/): At Ignite 2019, I had a chance to talk to Varonis about how they are helping customers find out where... - [In Review: Microsoft's First Cybersecurity Summit](https://petri.com/in-review-microsofts-first-cybersecurity-summit/): A review of Microsoft's first Cybersecurity Summit in 2019. - [Petri Dish: How Excel and PowerPoint are the Gateways to Power Automate](https://petri.com/how-excel-and-powerpoint-are-the-gateways-to-power-automate/): At Ignite 2019, I had a chance to talk to Dona Sarkar about her new role, Power Apps, and how... - [Patch Tuesday November 2019](https://petri.com/patch-tuesday-november-2019/): This month sees Microsoft patch a zero-day in IE, a security advisory for TPMs, and release the Windows 10 November... - [What You Need to Know about Azure Stack Edge and the Hybrid Cloud](https://petri.com/what-you-need-to-know-about-azure-stack-edge-and-the-hybrid-cloud/): While pretty much everybody knows that Microsoft is one of the main cloud providers with Azure, not everyone knows that... - [Petri Dish: From Quirky to Cohesive, The Journey of Office 365 in 2019 with Quadrotech](https://petri.com/from-quirky-to-cohesive-the-journey-of-office-365-in-2019-with-quadrotech/): At Ignite 2019, we sat down (or stood up) with Quadrotech to talk about their solutions for simplifying the management... - [Petri Dish: A Solution to Simplify Signature Management Across Your Company](https://petri.com/a-solution-to-simplify-signature-management-across-your-company/): At Ignite 2019, we sat down with CodeTwo to talk about their solutions for simplifying the process of managing email... - [Windows 10 November Update Is here, This is What’s in it for the Enterprise](https://petri.com/windows-10-november-update-is-here-this-is-whats-in-it-for-the-enterprise/): This week, Microsoft made available the next update for Windows 10. The bits, known by several names including November update,... - [Petri Dish: Diving into Migrating to Azure and Backing up Office 365 with Veeam](https://petri.com/diving-into-migrating-to-azure-and-backing-up-office-365-with-veeam/): At Ignite 2019, we sat down with Veeam to talk about their solutions for backing up your Office data as... - [Petri Dish: A Solution to Replacing Unified Messaging in Exchange](https://petri.com/a-solution-to-replacing-unified-messaging-in-exchange/): At Ignite 2019, we sat down with Xmedius to talk about their solutions for replacing unified messaging and how it... - [Petri Dish: Finding An Easier Way to Manage Your Azure Services with Serverless360](https://petri.com/finding-an-easier-way-to-manage-your-azure-services-with-serverless360/): At Ignite 2019, we sat down with Serverless360 to talk about their solutions for making it easier to manage your... - [Petri Dish: How Private Channels Brings New Security to Teams](https://petri.com/how-private-channels-brings-new-security-to-teams/): At Ignite 2019, we sat down with AvePoint to talk about new features that were announced for Teams and how... - [Petri Dish: Taking a Look at Migration Trends with AvePoint](https://petri.com/taking-a-look-at-migration-trends-with-avepoint/): At Ignite 2019, we sat down with AvePoint to talk about migration trends and what it takes to help your... - [Managing Teams Private Channels](https://petri.com/managing-teams-private-channels/): Everyone got very excited when Microsoft introduced private channels for Teams. Which is nice. The hard work of understanding the technology and managing its introduction now begins. - [Petri Dish: Talking Secured Remote Collaboration with Managed Methods](https://petri.com/talking-secured-remote-collaboration-with-managed-methods/): At Ignite 2019, we sat down with Managed Methods to talk about how they are securing your cloud operations so... - [Petri Dish: Lowering the Barrier to Privileged Access Management with Devolutions](https://petri.com/lowering-the-barrier-to-privileged-access-management-with-devolutions/): At Ignite 2019, we sat down with Devolutions to learn what's new with their solutions and how they are lowering... - [Microsoft Azure and Intune Management Portal Gets A Makeover](https://petri.com/microsoft-azure-and-intune-management-portal-gets-a-makeover/): Microsoft has updated both the Azure and Intune management portals for a cleaner look and better user experience. - [Paul Thurrott's Short Takes: Ignite 2019 Special Edition](https://petri.com/paul-thurrotts-short-takes-ignite-2019-special-edition/): Because this is the best reason to go to Florida, this special edition of Short Takes looks at the biggest... - [How to Install Web Apps in Microsoft’s New Chromium-Based Edge Browser](https://petri.com/how-to-install-web-apps-in-microsofts-new-chromium-based-edge-browser/): One of the best new features of Microsoft’s new Chromium-Based Edge browser is that it allows you to install Progressive... - [Exchange Online PowerShell Goes RESTful – But Only for Some Cmdlets](https://petri.com/exchange-online-powershell-goes-restful/): At Microsoft Ignite 2019, the Exchange product group announced the public preview of a set of REST-based PowerShell cmdlets designed to replace the oldest cmdlets in the Exchange set. - [Windows and Active Directory at Microsoft Ignite 2019](https://petri.com/windows-and-active-directory-at-microsoft-ignite-2019/): Microsoft announces a reimagined Performance Monitor, new Edge to debut in January 2020, FIDO security key support for hybrid Active... - [Talking Tenant Security with CoreView](https://petri.com/talking-tenant-security-with-coreview/): Petri is at Ignite 2019 where we are talking with CoreView about their solutions that makes managing Office 365, easier. - [Introducing Teams Private Channels](https://petri.com/teams-private-channels/): Microsoft launched private channels for Teams at the Ignite conference. This article describes the architecture and structure of private channels and discusses their intended usage. - [Surface Pro X Review: A Classic Look For The New Mobile Worker](https://petri.com/surface-pro-x-review-a-classic-look-for-the-new-mobile-worker/): Microsoft's newest Surface device, the Surface Pro X, may look familiar on the outside but inside its brand new from... - [Key Office 365 News from the Microsoft Ignite Conference 2019](https://petri.com/key-office-365-news-microsoft-ignite-conference-2019/): Microsoft made a ton of Office 365-related announcements at their Ignite conference in Orlando. Here's a summary of the key news for SharePoint, Exchange, Stream, Teams, Yammer, and Outlook. - [Microsoft’s New Excel Feature Will Automate All Your Redundant Tasks](https://petri.com/microsofts-new-excel-feature-will-automate-all-your-redundant-tasks/): Microsoft has a new scripting feature for Excel and it's going to make automating redundant tasks significantly easier. - [Microsoft’s Next Big Leap for Azure is Quantum](https://petri.com/microsofts-next-big-leap-for-azure-is-quantum/): Microsoft will soon begin a private preview of quantum solutions running in Azure which the company sees as the next... - [Microsoft 365’s Next Security Target is the Malicious Insider](https://petri.com/microsoft-365s-next-security-target-is-the-malicious-insider/): Microsoft 365 is gaining new security features that can make it easier to identify malicious insiders at your organization. - [Microsoft's Bringing new Features to Microsoft 365 Search](https://petri.com/microsofts-bringing-new-features-to-microsoft-365-search/): One of the themes that has been coming out of Microsoft the past couple of years is breaking down application... - [Microsoft Enhances PowerApps with new features, Introduces New Power Automate Name](https://petri.com/microsoft-enhances-powerapps-with-new-features-introduces-new-power-automate-name/): Microsoft announced a number of updates to the PowerApps service, including that the company is rebranding the platform. - [Microsoft’s Project Cortex Builds A Custom Knowledge Graph for Your Company](https://petri.com/microsofts-project-cortex-builds-a-custom-knowledge-graph-for-your-company/): Microsoft's Project Cortex is a new service from the company that will organize, surface, and share valuable data across your... - [Microsoft’s New Browser Ships in January with New Icon and More Privacy](https://petri.com/microsofts-new-browser-ships-in-january-with-new-icon-and-more-privacy/): Microsoft's new Edge browser is nearly complete and the company is introducing a new icon and privacy features with the... - [Microsoft Rebuilds Yammer, Adds New Features and Fluent](https://petri.com/microsoft-rebuilds-yammer-adds-new-features-and-fluent/): Microsoft is rebuilding Yammer with an updated interface and new features but you can't get your hands on it for... - [Microsoft Enhances Cortana with Briefings and Scheduler Support](https://petri.com/microsoft-enhances-cortana-with-briefings-and-scheduler-support/): Microsoft’s digital assistant may not always be at the front of the digital-AI conversations but the company is adding new... - [Watch Microsoft's Ignite Keynote Live with Commentary by Mary Jo Foley and Paul Thurrott](https://petri.com/watch-microsofts-ignite-keynote-live-and-commentary-by-mary-jo-foley-and-paul-thurrott/): This week, Microsoft is hosting its largest IT Pro conference of the year in Orlando, Florida. If you are not... - [Everything You Need to Know About Azure Infrastructure – October 2019](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-october-2019/): As we head towards Ignite, October had a bunch of Azure announcements but there will be even more next month. - [Everything You Need to Know About Windows – October 2019](https://petri.com/everything-you-need-to-know-about-windows-october-2019/): Windows 10X is coming to new foldable dual-screen devices and clamshell laptops, robots are invading Windows 10, all businesses can... - [Everything You Need to Know About for Office 365 – October 2019](https://petri.com/everything-you-need-to-know-about-for-office-365-october-2019/): Teams gets a better file experience, Microsoft Project gets rebooted, a plea to get you using FindTime and more. Check it out! - [Surface Laptop 3 Review: Ordinary Can Be Okay Too](https://petri.com/surface-laptop-3-review-ordinary-can-be-okay-too/): Microsoft's larger Surface Laptop 3 is branching out to use an AMD chip but you may want the business version... - [How PowerShell Remoting Works in V7](https://petri.com/how-powershell-remoting-works-in-v7/): PowerShell on its own is a robust and versatile language that can help you accomplish any task at hand. Combine... - [The Big Side Effect on Teams of Renaming a SharePoint Site URL](https://petri.com/big-side-effect-teams-renaming-sharepoint-site-url/): SharePoint Online now boasts the ability to rename site URLs, which seems good, but not so good when you discover that the new URL breaks the connection with Teams. - [How Microsoft Uses Machine Learning to Improve Windows 10 Update Experience](https://petri.com/how-microsoft-uses-machine-learning-to-improve-windows-10-update-experience/): Microsoft started using machine learning (ML) to manage the rollout of Windows 10 feature updates with the Windows 10 April... - [Windows Server 2019 Release Sees Server Core Adoption Soar](https://petri.com/windows-server-2019-release-sees-server-core-adoption-soar/): Microsoft says that since the general availability of Windows Server 2019, it has seen the fastest adoption rate for Server... - [FindTime – An Underappreciated Gem in the Office 365 World](https://petri.com/findtime-automates-calendar-scheduling/): Microsoft's FindTime service helps Office 365 users find the right time to schedule a meeting with people inside and outside their tenant. It's an underappreciated gem. And the good news is that an even better service - [Migrate to Windows 10 Using Microsoft’s Desktop Analytics Service](https://petri.com/migrate-to-windows-10-using-microsofts-desktop-analytics-service/): This week Microsoft announced the general availability of Desktop Analytics, a new cloud service that integrates with System Center Configuration... - [Microsoft Wins JEDI Defense Cloud Contract](https://petri.com/microsoft-wins-jedi-defense-cloud-contract/): Earlier this week, Microsoft posted strong earnings with its cloud division continuing to push the stock price higher. Announced today... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (October 2019)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-11/): Because it’s that time of the quarter, this edition of Short Takes looks solely at Microsoft’s quarterly earnings report, which... - [The Benefits of DRaaS for the SMB](https://petri.com/the-benefits-of-draas-for-the-smb/): While definitely necessary, making and maintaining disaster recovery (DR) plans is definitely not one of the favorite tasks for IT... - [Microsoft's Cloud Pushes Revenue Higher, Office Passes 200 Million Subscribers](https://petri.com/microsofts-cloud-pushes-revenue-higher-office-passes-200-million-subscribers/): Microsoft has reported it's Q1 FY earnings with Office 365 and the company's cloud services pushing the revenue needle higher. - [Microsoft to Office 365 Users: Have Your Credit Cards Ready](https://petri.com/office-365-users-have-credit-cards-ready/): In a rather odd decision, Microsoft is launching self-service purchases for Office 365 tenant users who want to use the Power Platform without consulting an administrator. Another troubling sign is the way that the MailItemsAccessed audit event has been packaged - [How Does Windows 10 Reset this PC Work?](https://petri.com/how-does-windows-10-reset-this-pc-work/): In today’s Ask the Admin, I look in more detail at how Reset this PC actually works and the new... - [Using Jobs in PowerShell 7](https://petri.com/using-jobs-in-powershell-7/): PowerShell jobs are an integral part of PowerShell. This handy feature allows administrators to run commands asynchronously. Asynchronous commands allow... - [G Suite Gets an Executive Reboot to Revamp Office 365 Foe](https://petri.com/new-gsuite-boss-revamp-against-office365/): Javier Soltero, ex-boss of Outlook, is now running G Suite for Google. The appointment is an opportunity to reboot G Suite to take on Office 365 and make up some of the ground that's been lost in the last five years. - [Microsoft has Acquired Mover](https://petri.com/microsoft-has-acquired-mover/): Microsoft has acquired Mover and will integegreat the technology into its Microsoft 365 migrations solutions. - [Surface Laptop 3: A 15in Primer](https://petri.com/surface-laptop-3-a-15in-primer/): In a world where laptops are bending, twisting, and folding, if you are looking for a vanilla laptop, the choices... - [How to Configure Notifications in Windows 10 for Maximum Productivity](https://petri.com/how-to-configure-notifications-in-windows-10-for-maximum-productivity/): How to set up notifications in Windows 10 to maximize productivity while not missing important tasks and messages. - [Paul Thurrott's Short Takes: October 18](https://petri.com/paul-thurrotts-short-takes-october-18/): Because corporate executives are paid far too much, this edition of Short Takes looks at top Microsoft executive salaries, an... - [Surface Pro 6 – One Year Later](https://petri.com/surface-pro-6-one-year-later/): Microsoft's Surface Pro 6 celebrated its first birthday, here's how my device has held up during the first year of... - [Microsoft Defender Tamper Protection Now Generally Available](https://petri.com/microsoft-defender-tamper-protection-now-generally-available/): A closer look at the Microsoft Defender Tamper Protection feature that rolled out in the Windows 10 May 2019 Update... - [Discover Who Creates Guest Accounts in Office 365 Applications](https://petri.com/knowing-guest-accounts-office-365/): Office 365 applications now create many guest accounts in Azure Active Directory. You can see what accounts exist, but it's more difficult to discover who created the accounts - or why they were created. - [Monitor Windows Server Security Using Azure Sentinel Part 1 – Set Up a Workspace and Data Connector](https://petri.com/monitor-windows-server-security-using-azure-sentinel-part-1-set-up-a-workspace-and-data-connector/): How to connect Windows Server to Microsoft’s modern cloud-native SIEM solution Azure Sentinel. - [SharePoint Gets Better Connected to Teams](https://petri.com/sharepoint-better-connected-to-teams/): The fit-and-finish quality within Office 365 is sometimes less than desirable. Two recent changes in SharePoint Online make it easier for users to know when a document library is connected to Teams and to generate thumbnails for items stored in the library. - [Windows 10 Virtualization-Based Security On By Default in Future Updates](https://petri.com/windows-10-virtualization-based-security-on-by-default-in-future-updates/): According to a recent blog post by Bruce Sherwin, a member of Microsoft’s Hyper-V Development Team, Cloud & AI, the... - [Servicing and Testing the Windows 10 November 2019 Update](https://petri.com/servicing-and-testing-the-windows-10-november-2019-update/): In today’s Ask the Admin, I look at how Microsoft is preparing to release the Windows 10 November 2019 Update... - [Paul Thurrott's Short Takes: October 11](https://petri.com/paul-thurrotts-short-takes-october-11/): Because I embrace my AI overlords, this edition of Short Takes looks at the next version of Windows 10, Microsoft’s... - [Using the Ternary Conditional Operator in PowerShell 7](https://petri.com/using-the-ternary-conditional-operator-in-powershell-7/): PowerShell 7. 0 introduces a familiar mainstay of most programming languages, the Ternary Operator. Using a much shorter syntax for... - [Highlighting Some Office 365 Sessions at Microsoft Ignite 2019](https://petri.com/planning-office-365-sessions-microsoft-ignite-2019/): Microsoft Ignite 2019 is in four weeks, so now's a good time to start browsing the session catalog to find interesting sessions to attend in person or listen to afterwards. - [Patch Tuesday – October 2019](https://petri.com/patch-tuesday-october-2019/): This month is light on security fixes and there are no zero-days but there are still plenty of critical flaws... - [Taking a Look at Your Hybrid Cloud Storage Appliance Options](https://petri.com/taking-a-look-at-your-hybrid-cloud-storage-appliance-options/): Seamlessly extending your local storage to the cloud is what hybrid cloud storage appliances offer. Sometimes these hybrid cloud storage... - [Azure Sentinel, Microsoft’s Cloud-Native SIEM Solution, Is Now Generally Available](https://petri.com/azure-sentinel-microsofts-cloud-native-siem-solution-is-now-generally-available/): Microsoft announced September 25th on its Security blog that Azure Sentinel has reached general availability. Based on Azure Monitor Log... - [Microsoft Intune Support for Android Enterprise Fully Managed Devices Now Generally Available](https://petri.com/microsoft-intune-support-for-android-enterprise-fully-managed-devices-now-generally-available/): Microsoft now officially supports management of Android Enterprise fully managed devices using Intune. - [Microsoft Unveils Battery-Powered Version of Azure That Fits in a Backpack](https://petri.com/microsoft-unveils-battery-powered-version-of-azure-that-fits-in-a-backpack/): Microsoft has a new version of Azure Data Box Edge that can fit in a backpack and runs on batteries. - [No Surprise That Exchange Online Uses Windows Server Core](https://petri.com/exchange-online-uses-windows-server-core/): A recent Microsoft post contained the news that Exchange Online uses Windows Server Core. That might be news to some, but not to anyone who's been following the advice of the Exchange product group. - [Microsoft Hopes to Leverage Office 365 to sell Earbuds](https://petri.com/microsoft-looks-to-leverage-office-365-to-sell-earbuds/): Microsoft has a new pair of earbuds that don't come cheap but they also integreat with Office 365. - [Understanding and Using the PowerShell 7 ForEach Parallel Option](https://petri.com/understanding-and-using-the-powershell-7-foreach-parallel-option/): Loops are one of those crucial logic components that every programming language uses extensively and PowerShell is by no means... - [Change in Management Philosophy Needed to Accelerate Teams Growth](https://petri.com/change-in-management-philosophy-needed-to-accelerate-teams-growth/): Microsoft Teams is very successful at present, but a nagging doubt exists that some of the approaches taken by Microsoft towards Teams management and administration are less than optimum. - [Microsoft Announces Windows 10 X With New Features, UI, and More](https://petri.com/microsoft-announces-windows-10-x-brings-new-features-ui-and-more/): Microsoft has a new SKU of Windows 10 but this version is introducing compartmentalization of Win32, a huge step towards... - [Microsoft Announces New Surface Pro X, Laptop 3, and Surface Pro 7](https://petri.com/microsoft-announces-new-surface-pro-x-laptop-3-and-surface-pro-7/): Microsoft has announced hardware updates to the Surface Pro, Surface Laptop, and the company is also launching a brand-new tablet... - [How to Upgrade to PowerShell 7](https://petri.com/how-to-upgrade-to-powershell-7/): Looking to upgrade to PowerShell 7? Here's the easy way to move to the new version of the platform. - [Making the Exchange – Azure Active Directory Connection More Reliable](https://petri.com/exods-aad-synchronization/): Microsoft posted an odd blog on September 9 to announce improvements in the relationship between Exchange Online and Azure Active Directory. Many Office 365 tenants might have ignored the post, but it's actually about a piece of important work to help the service run better. - [Everything You Need to Know about Office 365 and SharePoint - September 2019](https://petri.com/everything-you-need-to-know-about-office-365-and-sharepoint-september-2019/): Artificially intelligence making PowerPoint and the world better? SharePoint site swapping for us old timers? And a lot more in this Office 365 update. - [Microsoft's New Virtual Desktop Service is Here and Ready for Legacy Apps](https://petri.com/microsofts-new-virtual-desktop-service-is-here-and-ready-for-legacy-apps/): Microsoft's Windows Virtual Desktop is now generally available, here's what you need to know about the new service. - [Everything You Need to Know About Azure Infrastructure – September 2019](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-september-2019/): Lots of Microsoft Azure IaaS news, and looking deeper at the rise and fall of Azure Germany, Azure Sentinel, and Azure Stack. - [Everything You Need to Know About Windows – September 2019](https://petri.com/everything-you-need-to-know-about-windows-september-2019/): This month sees Microsoft designate Windows 10 1903 ready for broad deployment, BitLocker no longer trust SSDs that have built-in... - [Paul Thurrott's Short Takes: September 27](https://petri.com/paul-thurrotts-short-takes-september-27/): Because I know nothing, nothing, this edition of Short Takes looks at Microsoft’s new privacy fight, Windows 10’s usage successes,... - [Digging into the Back Up Myths](https://petri.com/digging-into-the-back-up-myths/): Backing up your data can be an easy process but it's important to not get caught up in only taking... - [Gather Research in a Structured Format with Microsoft Edge Collections](https://petri.com/gather-research-in-a-structured-format-with-microsoft-edge-collections/): Collections has made it to the Dev channel for Microsoft Edge Insiders. In this Ask the Admin, I look at... - [Adoption and Change Management: Two Sides of the Office 365 Card](https://petri.com/office365-adoption-change-management/): Adoption and Change Management are often discussed when companies move to cloud services, including Office 365. How quickly can we adopt the new services and how can we manage change? - [How to Get Outlook to Play Nice with Windows 10 Virtual Desktops](https://petri.com/how-to-get-outlook-to-play-nice-with-windows-10-virtual-desktops/): How to configure Windows and Outlook so that it works better with Windows 10 virtual desktops. - [Windows 10 Approaches 1 Billion Devices But Windows 7 Refuses to Go Away](https://petri.com/windows-10-approaches-1-billion-devices-but-windows-7-refuses-to-go-away/): Windows 10 is approaching 1 billion active devices but Windows 7 refuses to go away. - [How to Provision a Windows Virtual Desktop Host Pool](https://petri.com/how-to-provision-a-windows-virtual-desktop-host-pool/): How to configure a Windows Virtual Desktop (WVD) host pool. - [Support for Office 365 Sensitivity Labels Now in Office ProPlus for Windows](https://petri.com/office-365-sensitivity-labels-proplus/): The September update of the Office ProPlus monthly channel delivers support for Office 365 sensitivity labels without the need to install the Azure Information Protection client. - [The Dashboard: Microsoft's Unhealthy Relationship With UWP Devs](https://petri.com/the-dashboard-microsofts-unhealthy-relationship-with-uwp-devs/): There is little doubt Microsoft is a developer company. There is doubt about Microsoft being a company which supports indie app developers. - [Microsoft’s Dynamics 365 Wave 2 Delivers Fraud Protection, Commerce, and IoT Features](https://petri.com/microsofts-dynamics-365-wave-2-delivers-fraud-protection-commerce-and-iot-features/): While you may not think of Microsoft as a traditional retail player, the company has a suite of services that... - [Paul Thurrott's Short Takes: September 20](https://petri.com/paul-thurrotts-short-takes-september-20/): Because it’s always about Microsoft, this edition of Short Takes looks at Microsoft 365 for consumers, Microsoft’s new font, Microsoft’s... - [Patch Tuesday September 2019](https://petri.com/patch-tuesday-september-2019/): This month Microsoft patches two zero-days that could lead to elevation of privileges and more Remote Desktop Protocol bugs. - [Microsoft Gives Exchange 2010 Nine More Months](https://petri.com/exchange-2010-prolonged-october-2020/): In a surprising but welcome announcement, Microsoft moved the end of extended support for Exchange 2010 to October 2020. This version of Exchange was the most technology-rich and significant in the product's history. - [Oracle Gets Behind Teams with its Digital Assistant](https://petri.com/oracle-gets-behind-teams-with-its-digital-assistant/): This week, Oracle is hosting OracleWorld in San Francisco and at the event, the company is unveiling several updates to... - [Outlook Plans to Synchronize Email Signatures Across Devices](https://petri.com/outlook-synchronizes-email-signatures/): Microsoft has announced that Exchange Online and Outlook will soon synchronize email signatures across devices. Does this mean that the ISV market for email autosignature products is over? - [Microsoft Announces Build And Other Conference Dates for 2020](https://petri.com/microsoft-announces-build-and-other-conference-dates-for-2020/): In somewhat an unusual move, Microsoft has announced dates for its Build conference in 2020. In previous years, the company... - [Most Useful PowerShell Cmdlets for Managing and Securing Active Directory](https://petri.com/most-useful-powershell-cmdlets-for-managing-and-securing-active-directory/): How to manage and secure Active Directory using PowerShell; I’ll look at the most useful PowerShell cmdlets and give examples... - [Potential Problems Lurk When OneDrive Users Block Office 365 Searches](https://petri.com/onedrive-users-block-office-365-searches/): It's hard to find and fix every legacy on-premises setting. In the case of OneDrive for Business, it allows users to stop their site appearing in search results. - [The Hybrid Cloud Becomes the New Norm](https://petri.com/the-hybrid-cloud-becomes-the-new-norm/): As businesses have been moving along the path toward modernization and digital transformation, there’s no doubt that they have been... - [Is Google’s Chrome Enterprise Push a Threat to Windows?](https://petri.com/is-googles-chrome-enterprise-push-a-threat-to-windows/): With Google and Dell partnering to ship hardware that includes the Chrome OS Enterprise upgrade out-of-the-box, does Google’s push in... - [Competition and Adoption Driving Microsoft to Linux Client for Teams](https://petri.com/competition-adoption-driving-microsoft-linux-client-teams/): Lots of hot air and fuss resulted when Microsoft confirmed on the Teams UserVoice site that they are actively working on a Teams client for Linux. Many Office 365 tenants will be bemused at the attention. - [Cloud-Native SIEM and Built-in AI for Analytics with Azure Sentinel](https://petri.com/cloud-native-siem-and-built-in-ai-for-analytics-with-azure-sentinel/): Microsoft has gradually been transforming itself into a cloud and security company over the last few years. Now in public... - [How to Connect to a Windows Virtual Desktop VM or App](https://petri.com/how-to-connect-to-a-windows-virtual-desktop-vm-or-app/): In the final part of this series, I’ll show you how to connect to a virtual machine or app in... - [Paul Thurrott's Short Takes: September 6](https://petri.com/paul-thurrotts-short-takes-august-16-2/): Because summer ends when I say it ends, this edition of Short Takes looks at Slack and its inability to... - [The Must Have Tool While Working with Search and SharePoint Online](https://petri.com/the-must-have-tool-while-working-with-search-and-sharepoint-online/): If you are looking to improve the search functionality of your SharePoint site, this is the tool you need. - [Making Sense of Serverless SQL](https://petri.com/making-sense-of-serverless-sql/): The serverless offering for Azure SQL Server has the best pricing model for databases that see sporadic usage, but there... - [Office 365 Tenants Get Option to Move Video to Stream](https://petri.com/stream-migration-office365-video/): A self-service migration process to move content from the Office 365 Video portal to Microsoft Stream is now rolling out. The wizard-driven process is easy and efficient and doesn't have too many problems. - [Microsoft Acquires Movere To Simplify Cloud Migrations](https://petri.com/microsoft-acquires-movere-to-simplify-cloud-migrations/): Microsoft is all-in on the cloud and will let nothing get in the way of helping customers move to Azure.... - [Windows Containers: Understanding Images and Layers](https://petri.com/windows-containers-understanding-images-and-layers/): While it is easy to grasp the basic idea of how containers work and how they differ from virtual machines... - [5 Easy Ways to Install PowerShell 7 on Windows](https://petri.com/how-to-install-powershell-7/): In this guide, I’ll show you all the ways to install PowerShell 7 on your Windows 11 computer so you can get started with the latest PowerShell has to offer. - [Everything You Need to Know about SharePoint - August 2019](https://petri.com/everything-you-need-to-know-about-sharepoint-august-2019/): This month SharePoint focuses on making things more of an experience thanks to new web parts and other changes to Modern pages. Plus more Flow actions. Fun! - [Everything You Need to Know about Office 365 – August 2019](https://petri.com/everything-you-need-to-know-about-office-365-august-2019/): This month we go broad covering normal O365 stuff and some less common topics including Excel. Should make for a great addition to your summer reading list. - [Everything You Need to Know About Windows – August 2019](https://petri.com/everything-you-need-to-know-about-windows-august-2019/): This month Windows 19H2 edges closer to a final build, Citrix releases Managed Desktops based on Windows Virtual Desktop, Windows... - [Everything You Need to Know About Azure Infrastructure – August 2019 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-august-2019-edition/): This post summarizes the Azure IaaS news from August 2019, and discusses some of the more interesting items. - [Exploiting the Graph When PowerShell Can’t Do Enough for Teams](https://petri.com/exploiting-graph-when-powershell-teams/): Although Teams has a PowerShell module, its cmdlets can't get at some of the interesting information for team objects. But the Graph API reveals that information. Combining the Graph with PowerShell makes it possible to retrieve the information with just a little effort. - [Citrix Managed Desktops Generally Available](https://petri.com/citrix-managed-desktops-generally-available/): Back at its Ignite conference in September 2018, Microsoft announced Windows Virtual Desktop (WVD) and Citrix said that it would... - [Windows 10 S Mode to Get Win32 Apps Via Intune](https://petri.com/windows-10-s-mode-to-get-win32-apps-via-intune/): Microsoft adds the ability to install Win32 applications using Intune in Windows 10 S Mode in the 19H2 update. - [Azure Active Directory Basic Edition is Being Retired](https://petri.com/azure-active-directory-basic-edition-is-being-retired/): AAD Basic edition is ‘going away’ because it is low volume and confuses customers. - [SharePoint Online, OneDrive for Business, and Azure B2B Collaboration](https://petri.com/sharepoint-onedrive-azure-b2b-collaboration/): SharePoint Online and OneDrive for Business are making increasing use of Azure B2B Collaboration for sharing, which means that Office 365 tenants will have more guest user accounts. - [Three Ways to Extend Windows 7 Security Updates](https://petri.com/three-ways-to-extend-windows-7-security-updates/): If you find that you need updates for Windows 7 after January 2020, here are the three options that Microsoft... - [VMworld 2019 Day 2 – VMware Demos Project Pacific, Tanzu Missional Control and More](https://petri.com/vmworld-2019-day-2-vmware-demos-project-pacific-tanzu-missional-control-and-more/): VMware CTO Ray O’Farrell led off the VMworld 2018 day 2 keynote with a series of demos illustrating how a... - [Getting Started with Azure Ultra Disks](https://petri.com/getting-started-with-azure-ultra-disks/): Ultra Disk is a new managed disk for workloads demanding the highest performance and lowest latency. - [VMware Gets Behind Kubernetes to Build-Run-Manage in the Cloud](https://petri.com/vmware-gets-behind-kubernetes-to-build-run-manage-in-the-cloud/): VMworld is happening this week and if you need a brief of everything announced on day one, we have you... - [Office 365 Group Expiration Policy Auto-Renews Based on User Activity](https://petri.com/office-365-expiration-policy-auto-renews-user-activity/): The original Office 365 Groups expiration policy was pretty good. It helps tenants keep control of potential group sprawl by removing old groups based on age. Now the policy takes user activity into account. - [Google Takes a Big Step Forward to Bring Chrome OS to the Enterprise](https://petri.com/google-takes-a-big-step-forward-to-bring-chrome-os-to-the-enterprise/): Google has announced several new features that are coming to Chrome OS that will make it easier to use the... - [Windows Defender Certified by AV-Test and Outperforms Much of the Competition](https://petri.com/windows-defender-certified-by-av-test-and-outperforms-much-of-the-competition/): In something of a turnaround, Windows Defender is now matching and outperforming many free and commercial antivirus solutions. - [Paul Thurrott's Short Takes: August 23](https://petri.com/paul-thurrotts-short-takes-august-23/): Because AI that requires human intervention is only artificial, not intelligence, this edition of Short Takes looks at Microsoft’s new... - [Teams User Surveys Pose Privacy Concerns for Office 365 Tenants](https://petri.com/teams-user-surveys-privacy-concerns-office-365/): According to Office 365 notification MC187538, Microsoft plans to start asking Teams users to give feedback about the app through in-app surveys. That all sounds OK until you start thinking about privacy and who has the data. - [Connect to Azure Cloud Shell in Windows Terminal Preview](https://petri.com/connect-to-azure-cloud-shell-in-windows-terminal-preview/): Version 0. 3 of Windows Terminal lets you connect directly to Azure Cloud Shell, here's how you can do that. - [Microsoft Edge Takes Another Step Towards General Availability](https://petri.com/microsoft-edge-takes-another-step-towards-general-availability/): Microsoft's new Edge browser is ready for beta testing but don't expect the final release to be available anytime soon. - [Using KeyVault References to Read Key Vault Secrets](https://petri.com/using-keyvault-references-to-read-key-vault-secrets/): How to use Key Vault References in Azure App Services for the most flexible and secure approach to reading sensitive... - [Microsoft Adds New Enterprise Features to Windows 10](https://petri.com/microsoft-adds-new-enterprise-features-to-windows-10/): Microsoft has released a new build of Windows 10 and in this new 19h2 release, there are a couple of... - [When Technology Fails: Woes With SharePoint Online Restore this Library](https://petri.com/sharepoint-restore-library-woes/): It's great when Microsoft introduces new functionality to SharePoint Online to make the lives of administrators and users easier, which is what the Restore this library feature is all about. Then problems happen, and we understand where the flaw lines exist. - [Report Says Microsoft Is Certifying Insecure Drivers](https://petri.com/report-says-microsoft-is-certifying-insecure-drivers/): A new report by firmware and hardware security research company Eclypsium says that 40 drivers it tested from different vendors... - [Microsoft Acquires jClarity to Improve Java Azure Workloads](https://petri.com/microsoft-acquires-jclarity-to-improve-java-azure-workloads/): With Azure continuing to be the backbone of Microsoft’s future, the company won’t let anything get in the way of... - [The Basic Tasks For A Solid Disaster Recovery Plan](https://petri.com/the-basic-tasks-for-a-solid-disaster-recovery-plan/): There are two critical components of all disaster recovery (DR) plans: backup and recovery. Backup lays the foundation of all... - [Paul Thurrott's Short Takes: August 16](https://petri.com/paul-thurrotts-short-takes-august-16/): Because wormable is a fun word, this edition of Short Takes looks at a serious new Microsoft update warning, Surface... - [Patch Tuesday August 2019](https://petri.com/patch-tuesday-august-2019/): This month Microsoft patches ‘wormable’ vulnerabilities in Remote Desktop that it discovered during routine hardening, remote code execution flaws in... - [Exchange Online Exposes New Mailbox Activity Data](https://petri.com/exchange-online-exposes-new-mailbox-activity-data/): Microsoft has updated the vererable Get-MailboxStatistics cmdlet in Exchange Online PowerShell to return a bunch of new mailbox activity properties. The properties cover different activities. - [Windows Virtual Desktop Is Feature Complete](https://petri.com/windows-virtual-desktop-is-feature-complete/): Microsoft's Windows Virtual Desktop service now feature complete and should reach general availability in the near future. - [With Six Months Left, Microsoft Provides New Windows 10 Deployment Assistance](https://petri.com/with-six-months-left-microsoft-provides-new-windows-10-deployment-assistance/): Microsoft has a new FastTrack program for Windows 10 migrations for corporate customers but the bigger question is why is... - [BitTitan Introduces Cross-Tenant Teams Migration](https://petri.com/bittitan-introduces-cross-tenant-teams-migration/): Moving Teams between Office 365 tenants has been a challenge since the earliest days of Teams. Now a beta Graph API has allowed BitTitan to create the ability to transfer team settings and channel conversations between tenants. - [Windows Server to Add FIDO2 Security Key Support for Password-Less Sign-In](https://petri.com/windows-server-to-add-fido2-security-key-support-for-password-less-sign-in/): Enable password-less sign-in in hybrid cloud deployments using FIDO2 security keys with the next SAC release of Windows Server. - [Paul Thurrott's Short Takes: August 9](https://petri.com/paul-thurrotts-short-takes-august-9/): Because a cornerstone does not a foundation make, this edition of Short Takes looks at a misunderstanding of terms, Microsoft’s... - [A Closer Look at Modern SharePoint Audience Targeting](https://petri.com/a-closer-look-at-modern-sharepoint-audience-targeting/): A closer look at modern SharePoint audience targeting and how to configure the feature. - [The Magic Behind OWA Likes](https://petri.com/the-magic-behind-owa-likes/): OWA is the only Outlook client that supports "Likes." This begs the question how OWA supports likes and where the information about likes is stored. Some probing using easily accessible tools reveals the answer. - [VMware Expands the Hybrid Cloud to Google](https://petri.com/vmware-expands-the-hybrid-cloud-to-google/): This past July 2019, VMware added Google to their list of hybrid cloud partners that enable you to run vSphere... - [Slack Rolls out New Enterprise Controls](https://petri.com/slack-rolls-out-new-enterprise-controls/): Slack is rolling out new enterprise features for its customers that will help the platform move deeper into the corporate... - [Manage Customer Cloud Services Using Azure Lighthouse](https://petri.com/manage-customer-cloud-services-using-azure-lighthouse/): In today’s Ask the Admin, I look at how Microsoft partners can offer clients managed Azure services using Lighthouse. - [Is Exchange Online Threatened by Ransomware?](https://petri.com/is-exchange-online-threatened-by-ransomware/): Some people worry that Exchange Online mailboxes could be compromised by ransomeware and people will be forced to pay BitCoin to decrypt their messages. It's certainly a possibility, but out-of-the-box solutions exist if you're unlucky enough to be infected. - [Surface Go: One Year Later](https://petri.com/surface-go-one-year-later/): With the Surface Go now a year old, let's take a look at how well it has held up during... - [Research Shows Zero-Days Much Less Likely to Compromise Latest Windows OS Version](https://petri.com/research-shows-zero-days-much-less-likely-to-compromise-latest-windows-os-version/): Microsoft researcher releases data that shows the latest versions of Windows are significantly less likely to be compromised by zero-days. - [Google Makes it Easier to Migrate VMs from Azure to Google Cloud](https://petri.com/google-makes-it-easier-to-migrate-vms-from-azure-to-google-cloud/): Google has announced a new feature for its cloud platform that makes it significantly easier to migrate VMs from Azure... - [Get Users Working Faster with Windows 10 Autopilot White Glove Provisioning](https://petri.com/get-users-working-faster-with-windows-10-autopilot-white-glove-provisioning/): Part of Microsoft’s modern management initiative for Windows 10, Windows Autopilot is a suite of technologies designed to simplify the... - [Microsoft Deprecating Exchange Online's Search-Mailbox Cmdlet](https://petri.com/microsoft-deprecating-search-mailbox-cmdlet/): Microsoft has started to flag its intention to deprecate the Search-Mailbox cmdlet. It's probably the right time to remove this cmdlet from Exchange Online because Office 365 compliance searches can serve the same purpose. - [Everything You Need to Know About Office 365  – July 2019](https://petri.com/everything-you-need-to-know-about-office-365-july-2019/): Lots of info about Teams this month because it is kind of a big deal. After the Teams love affair there is also updates on PowerApps Portals and Forms. Fun. - [Everything You Need to Know about SharePoint Online – July 2019](https://petri.com/everything-you-need-to-know-about-sharepoint-online-july-2019/): SharePoint Online news for July 2019 is here. Check it out learn about ehanced editing, web parts, hub sites and usage data. Fancy! - [Everything You Need to Know About Windows – July 2019](https://petri.com/everything-you-need-to-know-about-windows-july-2019/): Microsoft changes Windows 10 servicing again, Windows Server will get support for FIDO2 security keys in hybrid configurations, Microsoft fixes... - [Everything You Need to Know About Azure Infrastructure – July 2019 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-july-2019-edition/): It may be the middle of Summer but there is a lot going on with Azure, this is what you... - [Enabling Password-Less Sign-In for Azure Active Directory](https://petri.com/enabling-password-less-sign-in-for-azure-active-directory/): Microsoft launches public preview of FIDO2-based password-less sign-in for Azure Active Directory accounts. - [Microsoft To Retire Skype for Business Online in 2021](https://petri.com/microsoft-to-retire-skype-for-business-online-in-2021/): Microsoft has announced that they will retire Skype Online for Business in two years with the company pushing everyone to... - [Controlling Communications inside Office 365 Tenants with Information Barriers (Part 2)](https://petri.com/controlling-communications-office-365-tenants-information-barriers-part-2/): In part 1 of this series, we discussed how to setup Office 365 Information Barriers. We now get to the practical application of those barriers to stop different user groups communicating with Teams. - [Sponsored: Physical Servers and Endpoints Require the Same Protection as VMs](https://petri.com/sponsored-physical-servers-and-endpoints-require-the-same-protection-as-vms/): The ability to easily restore critical data and applications always comes down to the level of priority organizations give to... - [Microsoft Enhances its Data Governance Portfolio with BlueTalon Acquisition](https://petri.com/microsoft-enhances-its-data-governance-portfolio-with-bluetalon-acquisition/): Microsoft has acquired BlueTalon, a company that specializes in data governance. - [Six Tips for Managing and Working with Large Media Files](https://petri.com/6-tips-for-managing-and-working-with-large-media-files/): If your business needs to store and manage RAW image files generated by professional cameras, high-resolution videos, or other large... - [Windows 10 Your Phone Gets Notification Mirroring and Suddenly Becomes More Useful](https://petri.com/windows-10-your-phone-gets-notification-mirroring-and-suddenly-becomes-more-useful/): Microsoft adds notification mirroring between Your Phone and Android handsets. - [How to Secure Microsoft 365 with Purview Information Barriers](https://petri.com/controlling-communications-office365-information-barriers-part-1/): Office 365 Information Barriers allow organizations to erect logical firewalls between different user communities to ensure that regulatory and legal requirements are met. Teams and Exchange Online support Information Barrier policies. - [Internet Explorer Mode and Other Enterprise Features Now Available for Testing in Microsoft Edge Insider Preview](https://petri.com/internet-explorer-mode-and-other-enterprise-features-now-available-for-testing-in-microsoft-edge-insider-preview/): Microsoft updates the Canary channel Edge Insider preview build with IE mode support. - [Slack Takes Aim at Teams Weaknesses](https://petri.com/slack-aims-teams-weaknesses/): Slack's July 22 post reports some advances in their desktop client that seem to aim at reported weaknesses in the Teams desktop client. The best update is better protection against network outages. - [Ensuring Disaster Recoverability for Your Legacy SQL Server 2008/R2](https://petri.com/ensuring-dr-recoverability-for-your-legacy-sql-server-2008-r2/): Protecting core infrastructure components like SQL Server is certainly one of the database professional first priorities. However, for those businesses... - [No Major New Features in Windows 10 19H2 But Enterprise Features and Performance Fixes Coming](https://petri.com/no-major-new-features-in-windows-10-19h2-but-enterprise-features-and-performance-fixes-coming/): Windows 10 19H2, which is the second feature update of 2019 planned for Windows 10 in fall this year, will... - [How to Create a Blog with Modern SharePoint News Pages](https://petri.com/how-to-create-a-blog-with-modern-sharepoint-news-pages/): Looking to use SharePoint to create a blog? Here's how you can accomplish that with SharePoint. - [Microsoft's Revenue Climbs up Into the Cloud](https://petri.com/microsofts-revenue-climbs-up-into-the-cloud/): Microsoft has released its Q2, FY Q4 earnings today with 33. 7 billion in revenue, Net Income of $12. 4... - [SharePoint Online Smartens PDF handling with Adobe Document Cloud](https://petri.com/sharepoint-online-smartens-pdf-handling-adobe-document-cloud/): The need to download PDF files to work with them has been a longstanding irritation for SharePoint Online users. Now Microsoft and Adobe have come up with a new file handler that sends PDFs to the Adobe Document Cloud. - [How to Create Puppet Bolt Tasks Part 2: Creating and Installing Tasks](https://petri.com/how-to-create-puppet-bolt-tasks-part-2-creating-and-installing-tasks/): Here is how to create and run Puppet Bolt tasks. - [Patch Tuesday July 2019](https://petri.com/patch-tuesday-july-2019/): This month sees Microsoft patch two zero-day vulnerabilities in Windows, an issue that may cause BitLocker to go into recovery... - [Microsoft Provides Browser Guidance with Edge Enterprise Roadmap](https://petri.com/microsoft-provides-browser-guidance-with-edge-enterprise-roadmap/): Microsoft has released a roadmap of features for its new Edge browser that enterprise customers can begin testing today. - [Microsoft's Next AI Trick Will Help You Keep Your Promises](https://petri.com/microsofts-next-ai-trick-will-help-you-keep-your-promises/): Microsoft is working on a new feature for its Office suite that will send you intelligent emails with reminders, action... - [How to Back Up NAS to Azure Storage](https://petri.com/how-to-back-up-nas-to-azure-storage/): If you have a network attached storage (NAS) device in your office, it’s important to make sure that you have... - [Microsoft Partner Benefits Intact for Now but Change is in the Air](https://petri.com/change-coming-for-partner-benefits/): Microsoft dug themselves out of a pit of pain last Friday when they reversed the decision to nix some popular partner benefit just before the Inspire conference in Las Vegas. - [Microsoft Backpedals, Returns Partners IUR Benefits](https://petri.com/microsoft-backpedals-returns-partners-iur-benefits/): Microsoft is rolling back changes to its partner program and will keep IUR benefits... for now. - [Two Years Later, Microsoft Teams Has 13 Million Daily Active Users](https://petri.com/two-years-later-microsoft-teams-has-13-million-daily-active-users/): Microsoft's Teams application has more than 13 million daily active users and the company is pushing out new features in... - [Microsoft's Azure LightHouse Aims to Delivery Simplicity](https://petri.com/microsofts-azure-lighthouse-aims-to-delivery-simplicity/): Microsoft is introducing a new Azure feature that will make it significantly easier for its partners to manage customers hardware... - [Linux Usage Surpasses Windows Server in Azure Cloud](https://petri.com/linux-usage-surpasses-windows-server-in-azure-cloud/): If you are a Windows shop, Windows Server is still the best way to provide file and print, and granular... - [Emailing Owners About Obsolete Office 365 Groups and Teams](https://petri.com/emailing-owners-obsolete-office-365-groups-teams/): In February, I published a script to report the activity in Office 365 Groups and Teams. It is natural that some of those groups will be obsolete, so here's another script to email the owners of those groups. - [Demystifying Azure App Services - Diagnostics and Telemetry](https://petri.com/demystifying-azure-app-services-diagnostics-and-telemetry/): The built-in diagnostics for Azure App Services will not only help you track down problems and misconfigurations in your app,... - [What You Need to Know About the Edge](https://petri.com/what-you-need-to-know-about-the-edge/): We hear 'edge' a lot, from browsers to data centers but here is what you need to know about edge... - [Gen 2 Virtual Machines Now In Preview For Microsoft Azure](https://petri.com/gen-2-virtual-machines-now-in-preview-for-microsoft-azure/): Generation 2 virtual machines (VMs) have been available in Hyper-V since Windows Server 2012 R2 and they provide several important... - [Health of Tech: Azure to Windows from ShiftHappens](https://petri.com/health-of-tech-azure-to-windows-from-shifthappens/): Last month, Paul, Mary Jo, and I were in Washington, D. C. where we recorded a second iteration Health of... - [Microsoft Shifts Sales Focus From Windows to Teams](https://petri.com/microsoft-shifts-sales-focus-from-windows-to-teams/): Microsoft is making updates to its sales agenda for FY2020 and for the year ahead, Windows is out, Teams is... - [How to Disable Hyper-V Completely in Windows 10](https://petri.com/how-to-disable-hyper-v-completely-in-windows-10/): Hyper-V is an optional feature in Windows 10 that can be used to run virtual machines (VMs) and perform other... - [Microsoft Decision on Internal Use Rights Doesn’t Inspire Partners](https://petri.com/microsoft-annoys-partners/): Microsoft's decision to make its partners pay commercial rates for software licenses might seem logical at first glance, but it's not helpful in a world where cloud technologies change so often. - [What You Need to Know About Connecting 4K Monitors to Notebooks](https://petri.com/what-you-need-to-know-about-connecting-4k-monitors-to-notebooks/): In this Ask the Admin, I look at what you need to know before connecting a high resolution 4K display... - [Email, Teams, and Expressing Reactions with Likes](https://petri.com/email-teams-expressing-reactions-with-likes/): Microsoft introduced support for like reactions in OWA in 2015. Teams also supports likes, but it also supports other reactions to messages from sad to angry. Knowing how to use these reactions is a social minefield. - [Demystifying Azure App Services Plan](https://petri.com/demystifying-azure-app-services-plan/): Are you curious about what an Azure App Service plan is, exactly? In this article we'll dive into the essence... - [Advanced Office 365 Message Encryption Includes Branded Communications and Revocation](https://petri.com/advanced-ome-branding/): Office 365 Message Encryption (OME) now offers an advanced set of features to Office 365 E5 tenants. You can have messages with specific branding delivered to different domains. Advanced OME also includes message revocation. - [Microsoft's Making Windows 10 Servicing Changes, Again](https://petri.com/microsofts-making-windows-10-servicing-changes-again/): Microsoft is once again changing up how it will service Windows 10; while these updates are not as significant, they... - [Everything You Need to Know about Microsoft Office 365 – June 2019](https://petri.com/everything-you-need-to-know-about-microsoft-office-365-june-2019/): Read about PowerApps, Teams, OneDrive, and more in this month's Office 365 news round-up. Goes best with a cool drink to escape the heat. - [Everything You Need to Know About SharePoint – June 2019](https://petri.com/everything-you-need-to-know-about-sharepoint-june-2019/): SharePoint hub sites, performance tuning, "the shift", and more. Lots of good content this month and a small piece on where I see SharePoint heading. - [Everything You Need to Know About Windows – June 2019](https://petri.com/everything-you-need-to-know-about-windows-june-2019/): This month Microsoft releases Edge preview builds for older versions of Windows, an early preview version of Windows Terminal makes... - [Everything You Need to Know About Azure Infrastructure – June 2019](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-june-2019/): Learn about all the announcements, news, and changes to Azure Infrastructure-as-a-Service (aaS) from June 2019. - [Windows 10 May 2019 Update and Windows Server Version 1903 Available for Download](https://petri.com/windows-10-may-2019-update-and-windows-server-version-1903-available-for-download/): Microsoft made the Windows 10 May 2019 Update and Windows Server version 1903 available for download May 21st. - [Paul Thurrott's Short Takes: June 28](https://petri.com/paul-thurrotts-short-takes-june-28/): Because baby steps are still forward steps, this edition of Short Takes looks at Microsoft’s less-than-inclusive internal policies, a weird... - [Teams Gets Urgent Message Capability for Personal Chats](https://petri.com/teams-priority-notifications/): Microsoft is rolling out priority notifications for Teams, the ability for users to send urgent messages in chats so that the recipients get notified every two minutes until they respond. - [Microsoft Releases Hyper-V Server 2019](https://petri.com/microsoft-releases-hyper-v-server-2019/): Download Hyper-V Server 2019 now from Microsoft’s Evaluation Center website. - [Windows Terminal Preview Available in the Microsoft Store](https://petri.com/windows-terminal-preview-available-in-the-microsoft-store/): An early preview version of Windows Terminal is now available to download from the Microsoft Store. - [Microsoft Looks to Diversify Chips in Upcoming Surface Products](https://petri.com/microsoft-looks-to-diversify-chips-in-upcoming-surface-products/): Microsoft is planning a hardware event for later this year where the company may announce new devices based on chips... - [Planner Supports Export to Excel](https://petri.com/planner-export-to-excel/): Excel fans delight! You can now export task data for a Planner plan to Excel and slice and dice the task information to your heart's content. The new feature is likely to be popular with Office 365 users. - [When it Comes to Ransomware, Air Gaps Are The Best Defense](https://petri.com/when-it-comes-to-ransomware-air-gaps-are-the-best-defense/): Ransomware attacks are on the rise and as many cities have recently learned, if you don't have an air-gapped backup,... - [How to Create Puppet Bolt Tasks](https://petri.com/how-to-create-puppet-bolt-tasks-understanding-modules-and-tasks/): Puppet Bolt tasks are scripts that you can run on Linux or Windows systems. A task contains a script, completely... - [Paul Thurrott's Short Takes: June 21](https://petri.com/paul-thurrotts-short-takes-june-21/): Because Microsoft couldn’t communicate its way out of a paper bag, this edition of Short Takes looks at Microsoft’s latest... - [Demystifying Windows Update Complexity and How To Challenge Your MSP](https://petri.com/demystifying-windows-update-complexity-and-how-to-challenge-your-msp/): On this edition of the Enterprise Dish, we dive into demystifying the complexity of Windows update error messages, how to... - [Adding a Default Photo to Azure Active Directory Guest User Accounts](https://petri.com/add-default-photo-azure-active-directory-guest-user-accounts/): You can add photos to Azure Active Directory guest accounts and have Office 365 apps display those photos. But it's a lot of work to track down suitable photos for individual guests. - [Microsoft Edge Now Available for Windows 7 and 8.1](https://petri.com/microsoft-edge-now-available-for-windows-7-and-8-1/): Microsoft currently offers Edge in three flavors for Windows 10: Canary, Developer, and Beta. For now, you can only install... - [Demystifying Azure App Services](https://petri.com/demystifying-azure-app-services/): Understanding how Azure App Services works behind the curtain is important if you want to make the most of the... - [Patch Tuesday – June 2019](https://petri.com/patch-tuesday-june-2019/): This month Microsoft patches four zero-day flaws in Windows 10 and some Bluetooth security keys stop working. - [Microsoft's Azure Bastion Creates a Secure Connection to Off-Internet VMs](https://petri.com/microsofts-azure-bastion-creates-a-secure-connection-to-off-internet-vms/): Microsoft announced a new Azure service this week called Bastion which makes it significantly easier to securely and remotely connect... - [Microsoft's Preparing New Keyboards with a Dedicated Office Key](https://petri.com/microsofts-preparing-new-keyboards-with-a-dedicated-office-key/): Microsoft may soon release a new keyboard with a dedicated Office key with the devices internally codenamed Holgate. - [The PowerShell Mess in the Microsoft Cloud](https://petri.com/powershell-mess-microsoft-cloud/): PowerShell is a great way of automating common administrative Office 365 operations. That is, if you know what module to use and how to use the cmdlets in that module. - [Tips, Tricks and Best Practices for Physical Server and Endpoint Backup](https://petri.com/tips-tricks-and-best-practices-for-physical-server-and-endpoint-backup/): Organizations have data in many different places that needs to be made available. Whether it is a physical server or... - [What You Need to Know About PowerShell 7](https://petri.com/what-you-need-to-know-about-powershell-7/): PowerShell 7 (PS7) is based on . NET Core 3. 0 and Microsoft is aiming to provide much greater compatibility... - [The Upcoming Generational Shift and AI in the Apps](https://petri.com/the-upcoming-generational-shifts-and-ai-in-the-apps/): At ShiftHappens, Mary Jo and Brad Sams sat down with Jeff Teper to talk millennials, AI, SharePoint, and a lot... - [The Genesis of SharePoint](https://petri.com/the-genesis-of-sharepoint/): This week at ShiftHappens, Jeff Teper sat down with Paul Thurrott to talk updates, Microsoft 365, and the genesis of... - [The Birth of AvePoint, The Challenges of a Startup](https://petri.com/the-birth-of-avepoint-the-challenges-of-a-startup/): At ShiftHappens this week, Brad Sams had the opportunity to sit down with the co-CEO of AvePoint, Tianyi Jiang, to... - [Inside the Trenches of Digital Transformation](https://petri.com/inside-the-trenches-of-digital-transformation/): At ShiftHappens this week, Brad Sams had the chance to sit down with Mario Carvajal, AvePoint's CTO, to talk about... - [Learning From Your Big SharePoint Mistakes](https://petri.com/learning-from-your-big-sharepoint-mistakes/): This week at ShiftHappens, it was a time of candid stories including how the Bank of Hawaii realized it had... - [A Little About PowerApps, a Lot About Flow](https://petri.com/a-little-about-powerapps-a-lot-about-flow/): At ShiftHappens, Brad Sams had a chance to sit down with Melissa Hubbard to talk Flow, PowerApps, and a lot... - [The Cloud Adoption Conversation That Is Going Around](https://petri.com/the-cloud-adoption-conversation-that-is-going-around/): This week at ShiftHappens, Brad Sams had the chance to sit down with Xgility to learn more about what they... - [The Differences Between Federal and Corporate Environments](https://petri.com/the-differences-between-federal-and-corporate-environments/): At Shift Happens this week, Brad Sams had a chance to sit down with Gino Degregori from Bravo Consulting Group... - [A Simple Tip To Expedite the Teams Migration Process with Your Users](https://petri.com/a-simple-tip-to-expedite-the-teams-migration-process-with-your-users/): With many companies starting to move to Teams, Matt Wade has a simple suggestion to expedite the user-adoption process. - [Migrations Can be Complex but They Don't Have to be Challenging](https://petri.com/migrations-can-be-complex-but-they-dont-have-to-be-challenging/): This week, we are at the ShiftHappens conference in Washington D. C and I had a chance to sit down... - [Getting Started with a Teams Migration](https://petri.com/getting-started-with-a-teams-migration/): At ShiftHappens this week, we had a chance to sit down with Pouneh Kaufman and Sara Bush about the steps... - [The Art of Story Telling in Three Steps](https://petri.com/the-art-of-story-telling-in-three-steps/): This week we are at ShiftHappens and Brad Sams had a chance to sit down with Miri Rodriguez to talk about... - [Is Teams the Next Outlook?](https://petri.com/is-teams-the-next-outlook/): Tony Redmond and Paul Thurrott discuss Teams momentum, Teams as the new Outlook, OneDrive, and hybrid computing at AvePoint's Shift... - [Digital Transformation: Beyond the Buzzwords](https://petri.com/digital-transformation-beyond-the-buzzwords/): Community Magnate Mary Jo Foley chats with Constellation Research chief Ray Wang about AI, the 'modern workplace,' surfing and more. - [How Fast Could and Should Office 365 Grow](https://petri.com/how-fast-could-and-should-office-365-grow/): In Washington, D. C, at Shift Happens, Mary Jo Foley and Tony Redmond sat down to talk about Office 365,... - [MyAnalytics Focused on Outcomes not Raw Statistics](https://petri.com/myanalytics-focused-outcomes-not-raw-statistics/): The new version of MyAnalytics is available to Office 365 E3 and E5 users and takes a different approach to the interpretation of data gathered about user work activities inside different apps. - [Google Moves Toward the Hybrid Cloud](https://petri.com/google-moves-toward-the-hybrid-cloud/): Anthos is definitely about modernization. While it may take Google some time to gain enterprise traction I think this move... - [Moving SQL Databases to the Cloud with the Data Migration Assistant](https://petri.com/moving-sql-databases-to-the-cloud-with-the-data-migration-assistant/): If you are moving SQL database instances into Azure, you'll want to look at the updated Database Migration Assistant from... - [How to Install Windows Software Using Chocolatey](https://petri.com/how-to-install-windows-software-using-chocolatey/): In today’s Ask the Admin, I’ll show you how to install Windows software in bulk using package manager Chocolatey. - [Finding the Identifier for Azure or Office 365 Tenants](https://petri.com/finding-identifier-azure-office-365-tenants/): After seeing a tweet about a site that could return the tenant identifier for any Azure or Office 365 tenant, I was a tad suspicious. After all, this data should be private - or so you'd think. - [How to Factory Reset Windows 10](https://petri.com/how-to-factory-reset-windows-10/): In this article, I'll show you how to factory reset Windows 10, without needing to find installation media, using the ‘Reset this PC’ feature in the Settings app. - [Microsoft's Goal to Democratize AI Reaches the Power Platform](https://petri.com/microsofts-goal-to-democratize-ai-reaches-the-power-platform/): This week, Microsoft is in Atlanta where the company is hosting its Business Application Summit. At the event, the company... - [PowerApps Enhanced with Artificial Intelligence Gain New Capabilities](https://petri.com/powerapps-enhanced-with-artificial-intelligence-gain-new-capabilities/): PowerApps is at it again. This time adding the power of Azure AI to components that you and I can use. No developers required. - [What’s New in the Windows 10 May 2019 Update](https://petri.com/whats-new-in-the-windows-10-may-2019-update/): These are the most important new features in the Windows 10 May 2019 Update that you need to know about. - [What is the Windows Terminal?](https://petri.com/what-is-the-windows-terminal/): In today’s Ask the Admin, I explain how Microsoft’s new terminal software for Windows 10 improves on the existing console. - [Yammer Supports EU Data Residency with No External Collaboration](https://petri.com/yammer-supports-eu-data-residency/): Microsoft says that new Yammer networks can have their messages stored in the European Union instead of the U.S. That sounds good, until you understand the downside that Yammer loses a lot of its external collaboration capabilities. - [The Return of Serverless Powershell](https://petri.com/the-return-of-serverless-powershell/): You can now use Powershell with Azure Functions 2. 0. This article provides a quick example using Visual Studio Code... - [Renaming Teams and Channels Can Be Messy, Especially with SharePoint](https://petri.com/renaming-teams-can-be-messy/): You can easily rename a team by giving it a new display name, or do the same thing to a channel. But Teams and SharePoint Online have the kind of relationship that's based on tight connections, so renaming team or channel names doesn't do much for SharePoint. - [Everything You Need to Know About Windows – May 2019](https://petri.com/everything-you-need-to-know-about-windows-may-2019/): This month’s news roundup includes important announcements made at Microsoft’s Build conference in Seattle, and the general availability of Windows... - [Everything You Need to Know About Azure Infrastructure – May 2019 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-may-2019-edition/): May revealed some interesting Azure developments to us – Sony are now an Azure customer! This post will summarize the infrastructure news of the last month. - [Everything You Need to Know About SharePoint - May 2019](https://petri.com/everything-you-need-to-know-about-sharepoint-may-2019/): Get your SharePoint Online and On-Prem fix for May 2019 with this article. Home sites, hub sites, on-prem in the cloud, and more. Love SharePoint. - [Everything You Need to Know About Office 365 – May 2019](https://petri.com/everything-you-need-to-know-about-office-365-may-2019/): With this edition of what is new for Office 365 Shane cooly covers Microsoft Search, Teams, PowerApps, and more. A must for your summer reading list. - [Paul Thurrott's Short Takes: May 31](https://petri.com/paul-thurrotts-short-takes-may-31/): Because I’m not as funny as I think I am, this edition of Short Takes looks at Microsoft’s bizarre Modern... - [Phishing Report Highlights Need for Sophisticated Anti-Malware Software](https://petri.com/phishing-report-exchange-online-protection/): A recent report by a security vendor says that 25% of phishing messages get by Exchange Online Protection (EOP) and arrive into Office 365 user mailboxes. This highlights the need to configure EOP properly and run multiple lines of defense. - [Avoiding Common Mistakes in Cloud Native Development](https://petri.com/avoiding-common-mistakes-in-cloud-native-development/): Don't let your development teams misuse the cloud! This article looks at some common cloud native problems that fast moving... - [Microsoft's Bringing New Data Centers To a Sustainable Sweden](https://petri.com/microsofts-bringing-new-data-centers-to-a-sustainable-sweden/): As Microsoft continues to invest heavily in new data center regions, the company is also investing in ways to make... - [Disaster Recovery with Azure Backup for SQL Server VMs](https://petri.com/disaster-recovery-with-azure-backup-for-sql-server-vms/): Running VMs in the cloud has become a big part of the modernization of IT infrastructure for most businesses. However,... - [Why is Windows Error Reporting Still A Cryptic Mess?](https://petri.com/why-is-windows-error-reporting-still-a-cryptic-mess/): After thirty years of Windows development, how Windows handles error reporting is stuck in 2006 which is unacceptable when the... - [Exchange’s EHLO Blog Moves to The Microsoft Technical Community](https://petri.com/exchange-ehlo-blog-moves-microsoft-technical-community/): Microsoft has moved the venerable EHLO blog maintained by the Exchange product group to the Microsoft Technical Community (MTC) platform. The first post is about the Exchange 2019 sizing calculator. - [Patch Tuesday – May 2019](https://petri.com/patch-tuesday-may-2019/): This month’s quality update for Windows 10 is so good that it installs itself twice, Microsoft releases patches for Intel... - [Four VeeamOn's Later, Availability and the Industry Has Evolved](https://petri.com/four-veeamons-later-availability-and-the-industry-has-evolved/): But each year, the tune has changed a little bit more each time and it's becoming more clear that Veeam... - [Important Office 365 Announcements from the SharePoint Conference](https://petri.com/announcements-sharepoint-conference/): Microsoft made a ton of announcements at this week's SharePoint conference in Las Vegas. If you're an Office 365 tenant administrator, the health of SharePoint Online and what it and OneDrive for Business can do is important to you. - [Getting Started with Role-based Access Control in Azure](https://petri.com/getting-started-with-role-based-access-control-in-azure/): Do you want to ensure your Azure users don't have the rights to create random, expensive resources without approval? You... - [Veeam Achieves Major Milestone, Makes Hybrid Push](https://petri.com/veeam-achieves-major-milestone-makes-hybrid-push/): At its VeeamON 2019 conference in Miami today, Veeam Software announced that it has exceeded $1 billion in annual bookings... - [Windows Server Version 1903 is Now Generally Available](https://petri.com/windows-server-version-1903-is-now-generally-available/): Microsoft today announced the general availability of Windows Server version 1903, which adds new Windows Server container capabilities, an updated... - [Microsoft Unveils SharePoint, Stream, and Yammer Features Coming to Microsoft 365](https://petri.com/microsoft-unveils-sharepoint-stream-and-yammer-features-coming-to-microsoft-365/): Microsoft has announced a couple of new features that will add more functionality to SharePoint, Yammer, and Streams - [Join us for the SharePoint Virtual Summit!](https://petri.com/join-us-for-the-sharepoint-virtual-summit/): At the SharePoint Virtual Summit, Lori Wright and Jeff Teper share the latest innovations and solutions for file collaboration, process... - [Bringing Microsoft Search by Bing to Office 365](https://petri.com/bringing-microsoft-search-bing-office-365/): You can now connect Office 365 sources like SharePoint Online, OneDrive for Business, Teams, and Yammer to Microsoft Search and have Bing reveal results from those sources in its searches. - [Microsoft Enterprise Search is Coming to Windows 10](https://petri.com/microsoft-enterprise-search-is-coming-to-windows-10/): Microsoft Enterprise Search is coming to all Office apps, Bing, SharePoint, OneDrive, and Windows 10. - [How to Synchronize Password Hashes Between AAD and Domain Services](https://petri.com/how-to-synchronize-password-hashes-between-aad-and-domain-services/): In the second part of this two-part series, I show you how to synchronize password hashes between AAD and Domain... - [Paul Thurrott's Short Takes: May 17](https://petri.com/paul-thurrotts-short-takes-may-17/): Because we’re all going to die anyway, this edition of Short Takes looks at a horrible new set of Intel... - [SharePoint Page Templates Have Finally Arrived, Here's How to Use Them](https://petri.com/sharepoint-page-templates-have-finally-arrived-heres-how-to-use-them/): Jasper Oosterveld, Microsoft MVP & InSpark Modern Workplace Consultant, discusses a new release for the modern SharePoint news experience. The... - [What is Windows Subsystem for Linux 2?](https://petri.com/what-is-windows-subsystem-for-linux-2/): What is the Windows Subsystem for Linux and what are the changes coming in version 2 of the technology? - [Microsoft Enables Longer Azure Active Directory Passwords](https://petri.com/microsoft-enables-longer-azure-active-directory-passwords/): You can now protect your Azure Active Directory account with a 256-character password, including spaces. This news will bring much joy to Office 365 administrators and others who hated the previous 16-character limit. - [Microsoft Previews Azure Active Directory Entitlement Management](https://petri.com/azure-active-directory-entitlement-management/): Microsoft launched the preview of Entitlement Management, a new part of their Azure Active Directory Identity Governance program. The idea is that you can manage access to resources via policy. - [Microsoft Looks to Push Teams Forward with new Apps, Monetization Opportunities](https://petri.com/microsoft-looks-to-push-teams-forward-with-new-apps-monetization-opportunities/): Microsoft is about to enable functionality inside of Teams that will allow for ISVs to build a business around the... - [How to Change the Default Search Engine in Chromium-Based Edge](https://petri.com/how-to-change-the-default-search-engine-in-chromium-based-edge/): Microsoft has released a new version of their Edge browser, here is how to change the search engine from Bing... - [Paul Thurrott's Short Takes: May 10](https://petri.com/paul-thurrotts-short-takes-may-10/): Because it was a big, big week, this edition of Short Takes looks mostly at Build 2019, Microsoft’s annual developer... - [Exchange and the Turla LightNeuron Attack](https://petri.com/exchange-turla-lightneuron-attack/): Turla, a Russian cyber-espionage group is reported as being behind an attack on Exchange on-premises servers that uses transport agents to capture and process messages for selected users. - [VMware Extends the Hybrid Cloud to Azure](https://petri.com/vmware-extends-the-hybrid-cloud-to-azure/): his new partnership underscores that Azure is Microsoft’s priority going forward and their new open attitude is all about enabling... - [Three Ways to Migrate to Windows 10](https://petri.com/three-ways-to-migrate-to-windows-10/): In today’s Ask the Admin, I’ll look at three different ways you can migrate from Windows 7 to Windows 10. - [How to Set Up (Microsoft Entra) Azure AD Domain Services](https://petri.com/how-to-configure-azure-active-directory-domain-services-part-1/): In this article, I’ll show you how to set up Azure AD Domain Services and configure DNS. In Plus, I’ll discuss password hash synchronization requirements and how to perform a domain join operation. - [[Sponsored] The Need for PST Eradication from Office 365 Tenants](https://petri.com/pst-eradication-office-365-tenants/): The PST is now a very old file format. Originally introduced to give users the ability to store email moved from their Exchange mailbox, the need for PSTs disappeared years ago because Office 365 users have massive mailboxes. - [Microsoft's New Collaboration Experience Sets the Course for the Future of Office](https://petri.com/microsofts-new-collaboration-experience-sets-the-course-for-the-future-of-office/): Microsoft is building a new collaboration framework that is going to significantly change how and where you interact with data... - [Microsoft's Overhauling Enterprise Search With a Zero Typing Experience](https://petri.com/microsofts-overhauling-enterprise-search-with-a-zero-typing-experience/): Later this month, Microsoft will be rolling out a new search workflow for enterprise customers that starts with a zero... - [Microsoft's Building its own Terminal for Windows 10, Adding Features to Windows Subsystem for Linux](https://petri.com/microsofts-building-its-own-terminal-for-windows-10-adding-features-to-windows-subsystem-for-linux/): Microsoft has built a proper Terminal for Windows 10 and the company is also adding new features to the Subsystem... - [Microsoft's Bringing New Feature to its PowerApps Platform](https://petri.com/microsofts-bringing-new-feature-to-its-powerapps-platform/): At Microsoft's Build conference this week, the company is making a significant number of announcements related to the company's PowerApps... - [Microsoft's Bringing New Privacy Controls, IE functionality, and Collections to Edge](https://petri.com/microsofts-bringing-new-privacy-controls-ie-funcationality-and-collections-to-edge/): Microsoft is going to solve its three-browser problem with a new feature in Edge and is also going to help... - [Microsoft's Windows Hello Takes Another Step Towards a Password-Less Future](https://petri.com/microsofts-windows-hello-takes-another-step-towards-a-password-less-future/): Microsoft is bringing Windows Hello to new places that will help make it easier to log in more securely to... - [Networking Outage Disrupts Microsoft's Cloud Platform In Nearly Every Region](https://petri.com/having-trouble-connecting-to-microsoft-services-you-are-not-alone/): Unable to connect to various Microsoft services? You are not alone with everything from Office to Skype and even some... - [From Azure to the Edge, Microsoft's Announcing Several AI, ML, and IoT Features at Build 2019](https://petri.com/from-azure-to-the-edge-microsofts-announcing-several-ai-ml-and-iot-features-at-build-2019/): Microsoft is expanding its Azure, IoT, end Edge services ahead of build with new features and options as the company... - [HoloLens 2 Developer Edition Arrives for $3500 or $99 Per Month](https://petri.com/hololens-2-developer-edition-arrives-for-3500-or-99-per-month/): Microsoft is releasing a Developer Edition of the HoloLens 2 but unlike the first generation device, this SKU won't save... - [Office ProPlus Desktop Apps Get New Privacy Controls](https://petri.com/office-proplus-desktop-apps-new-privacy-controls/): Office ProPlus Version 1904 boasts new privacy controls and Microsoft has documented how it thinks about required and optional data collected from users. Office 365 still lacks privacy controls for the server apps. - [Everything You Need to Know About Windows – April 2019](https://petri.com/everything-you-need-to-know-about-windows-april-2019/): This month sees yet more changes to Microsoft’s Windows 10 servicing schedule, problems for users after April’s Patch Tuesday quality... - [Microsoft Looks to be Launching Universal Printing, from the Cloud](https://petri.com/microsoft-looks-to-be-launching-universal-printing-from-the-cloud/): Ahead of Build, a new feature for Azure that may streamline the printing process has been uncovered. - [Everything You Need to Know About Azure Infrastructure – April 2019 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-april-2019-edition/): In my monthly summary, I will summarize all the Azure infrastructure news from April, which appeared to be a month for security announcements. - [Everything You Need to Know About Office 365 – April 2019](https://petri.com/everything-you-need-to-know-about-office-365-april-2019/): This month read about G Suite migrations, how Slack is trying to stop the migrations, secuirty enhancements, and more. Always so much to keep up on. - [Everything You Need to Know about SharePoint – April 2019](https://petri.com/everything-you-need-to-know-about-sharepoint-april-2019/): SharePoint restores get better, PNP helps you make it look prettier, and finally those columns stay in place. It was a good month for SharePoint. - [Previewing Azure Function App Premium Plans](https://petri.com/previewing-azure-function-app-premium-plans/): The new Premium Plans for Azure Function Apps try to address a number of shortcomings inherent to serverless computing. - [Creating and Publishing a Teams Directory](https://petri.com/creating-publishing-teams-directory/): If your Office 365 tenant has many private Teams, you might run the risk that people create duplicate teams because they don't know that a team already exists. Teams doesn't have a separate directory - [Microsoft and VMware are Bringing Microsoft 365 and Workspace ONE Closer Together](https://petri.com/microsoft-and-vmware-are-bringing-microsoft-365-and-workspace-one-closer-together/): Microsoft and VMware are bringing Microsoft 365 and Workspace One closer together with new integrations. - [Leveraging Virtualization for Improved Availability and Disaster Recovery](https://petri.com/leveraging-virtualization-for-improved-availability-and-disaster-recovery/): While there’s no doubt that the use of the cloud and containers are rapidly growing, the reality is that server... - [How to Enable GPU Acceleration in Windows Containers](https://petri.com/how-to-enable-gpu-acceleration-in-windows-containers/): Need a little extra GPU power inside your container? Here is how you can turn on GPU acceleration in Windows... - [How Microsoft Edge on Chromium Will Change the Windows 10 Lite and S Mode Proposition](https://petri.com/how-microsoft-edge-on-chromium-will-change-the-windows-10-lite-and-s-mode-proposition/): If Microsoft is serious about S Mode and Windows Lite, it needs a browser that is broadly compatible and performant. - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2019)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-10/): Because it’s that time of the quarter again, this edition of Short Takes looks at Microsoft’s most recent quarterly earnings. - [Microsoft Increases Minimum Storage Requirements for Windows 10 Feature Updates](https://petri.com/microsoft-increases-minimum-storage-requirements-for-windows-10-feature-updates/): Microsoft is increasing the minimum storage requirement for Windows 10 feature updates but if this impacts your environment, you have... - [Teams PowerShell Module Generally Available (At Last)](https://petri.com/teams-powershell-module-generally-available/): Microsoft released the generally available (1.0) version of the Teams PowerShell module on April 24. The Get-Team cmdlet receives a big makeover (and slowdown), but overall the module is solid. - [Microsoft's Q3 Earnings Jump 14% on Office and Cloud Growth](https://petri.com/microsofts-q3-earnings-jump-14-on-office-and-cloud-growth/): Microsoft has released earnings for its third quarter, calendar first quarter, with revenues of $30. 6 billion with a Net... - [Windows Admin Center 1904 Reaches GA with Support for Active Directory](https://petri.com/windows-admin-center-1904-reaches-ga-with-support-for-active-directory/): Windows Admin Center 1904 is released with a host of new features and updates, including Active Directory, DNS, and DHCP... - [How to Uninstall and Reset Windows Subsystem for Linux Distributions](https://petri.com/how-to-uninstall-and-reset-windows-subsystem-for-linux-distributions/): Here is how to uninstall and reset Linux distributions installed in Windows 10 using the Windows Subsystem for Linux. - [How To Prepare for an App Service Migration](https://petri.com/how-to-prepare-for-an-app-service-migration/): Microsoft's new tool to assist in cloud migrations can help you, but might be too limited for real world enterprise... - [SharePoint Launches Files Restore and New Admin Center](https://petri.com/sharepoint-online-files-restore/): Microsoft announced the Files Restore feature for SharePoint Online on April 22. It's the kind of news we can expect as the SharePoint conference draws near, and it's good news for Office 365 tenants. - [Microsoft's G-Suite Migration Tools Begin to Rollout](https://petri.com/microsofts-g-suite-migration-tools-begin-to-rollout/): Microsoft has started rolling out its new G-Suite migration tools to make the process of moving from Google's to Microsoft's... - [Four Dangers of the Hybrid Cloud](https://petri.com/four-dangers-of-the-hybrid-cloud/): While the security and redundancy provided with hybrid cloud setups is clearly documented, it's important to keep these risk-factors in... - [Paul Thurrott's Short Takes: April 19](https://petri.com/paul-thurrotts-short-takes-april-19/): Because I heard you missed me, I’m back, this edition of Short Takes looks at Surface Flub 2S, Waas and... - [How to Create a Windows Virtual Desktop Tenant with Windows Virtual Desktop](https://petri.com/how-to-create-a-windows-virtual-desktop-tenant-with-windows-virtual-desktop/): In the second part of this series, I show you how to create a Windows Virtual Desktop tenant. - [Exiting Office 365 with Your Encrypted Messages and Documents](https://petri.com/exiting-office-365-encrypted-messages-documents/): The Azure Information Protection team recently published an interesting post about making a "cloud exit." In other words, how to move your encrypted data out of a cloud service like Office 365. - [Microsoft's Surface Hub 2S Arrives in June, Comes in 50 and 85in Flavors](https://petri.com/microsofts-surface-hub-2s-arrives-in-june-comes-in-50-and-85in-flavors/): Microsoft's second-generation Hub is now available and it features a completely redesigned exterior that allows the device to be upgraded... - [What's New with Azure Update Management](https://petri.com/whats-new-with-azure-update-management/): Microsoft has added a new feature to Azure Update management giving you the ability to target dynamic groups of VMs.... - [Microsoft April Updates Cause Issues for Some Users](https://petri.com/microsoft-april-updates-cause-issues-for-some-users/): Microsoft’s April updates for Windows cause performance and authentication issues for some users. - [Slack Uploads from Outlook and Other Office Integrations](https://petri.com/slack-integrates-office/): Slack released some integrations for Office (365) on April 9. I took a look and discovered some interesting things about how the Outlook add-in for Slack works. - [Getting Started with Azure Virtual Desktop: Understanding Azure Virtual Desktop](https://petri.com/getting-started-with-windows-virtual-desktop-understanding-windows-virtual-desktop/): In the first part of this series, I look at the basics of Microsoft’s new Windows Virtual Desktop service. - [Patch Tuesday April 2019](https://petri.com/patch-tuesday-april-2019/): This month Windows is patched for two zero-day flaws, Windows 7 and Windows Server 2008 R2 users report that devices... - [Google Has a New Managed Active Directory Cloud Service](https://petri.com/google-has-a-new-managed-active-directory-cloud-service/): Google announces a new Managed Service for Microsoft Active Directory that should give customers more options about which cloud service... - [Accelerate Your Applications with Azure's Front Door Service](https://petri.com/accelerate-your-applications-with-azures-front-door-service/): Azure's Front Door service can bring availability and performance improvements to applications and services deployed anywhere on the Internet. - [Teams Supports Office 365 Data Loss Prevention Policies](https://petri.com/teams-supports-office-365-data-loss-prevention-policies/): Microsoft Teams supports Office 365 Data Loss Prevention (DLP) policies, which means that you can check for the sharing of sensitive data like credit card or passport numbers in personal chats or channel conversations. - [Mitigating Spectre Variant 2 with Retpoline on Windows](https://petri.com/mitigating-spectre-variant-2-with-retpoline-on-windows/): The Retpoline patch for Windows 10 was originally slated to arrive in the Windows 10 May 2019 Update but the... - [Google's Anthos Aims to do What Azure Stack Hasn't](https://petri.com/googles-anthos-aims-to-do-what-azure-stack-hasnt/): Google's new Anthos service aims to make multi-cloud operations, significantly easier with support for all the major players in the... - [Slack Hopes to Become Stickier with New Office 365 Integration](https://petri.com/slack-hopes-to-become-stickier-with-new-office-365-integration/): Slack is rolling out new features for Office 365 that the company hopes will bridge the gap between the two... - [Teams and Kaizala = Teams+?](https://petri.com/teams-and-kaizala/): On April 4, Microsoft announced that Kaizala, their mobile chat application, is now available to all Office 365 commercial customers and will be integrating with Teams. - [Microsoft's New Chromium-Based Edge, Now Available to Download](https://petri.com/microsofts-new-chromium-based-edge-now-available-to-download/): Microsoft's new Chromium-based Edge browser is now available for download. - [How to Secure Hybrid Office 365 Authentication](https://petri.com/how-to-secure-hybrid-office-365-authentication/): In today’s Ask the Admin, I discuss whether federated authentication is really the most secure way to set up hybrid... - [Paul Thurrott's Short Takes: April 5](https://petri.com/paul-thurrotts-short-takes-april-5/): Because my son is about to turn 21 and where does the time go, this edition of Short Takes looks... - [Microsoft's Making Significant Changes to Windows Updates and Feature Rollouts for Windows 10](https://petri.com/microsofts-making-significant-changes-to-windows-updates-and-feature-rollouts-for-windows-10/): Microsoft is once again making changes to the servicing model of Windows 10 but these updates will improve the quality... - [Office Apps to Get Native Support for Office 365 Sensitivity Labels](https://petri.com/native-support-office-365-sensitivity-labels/): Microsoft says that the Office desktop Windows apps will have native support for Office 365 sensitivity labels in the second half of 2019. Native support means that users won't need to install the Azure Information Protection (AIP) client to apply labels. - [Getting Started with Azure Migrate](https://petri.com/getting-started-with-azure-migrate/): This article will provide a quick overview of Microsoft's free Azure Migrate service. This service can help you assess your... - [Health of Tech: Azure to Windows from the Microsoft Loft](https://petri.com/health-of-tech-azure-to-windows-from-the-microsoft-loft/): The landscape of technology is changing quickly which is why it's important to understand how companies are staying relevant in... - [VMware Adds New Features to vRealize Cloud Management Platform](https://petri.com/vmware-adds-new-features-to-vrealize-cloud-management-platform/): VMware announced a new set of updates for their vRealize Cloud Management platform aimed at providing a unified control plane... - [Visual Studio 2019 Now Available for PC and Mac, Includes Live Share](https://petri.com/visual-studio-2019-now-available-for-pc-and-mac-includes-live-share/): Visual Studio 2019 is now available for the Mac and PC; Microsoft is also including Visual Studio Live share with... - [[Sponsored] Managing Teams Deployments for Better Outcomes](https://petri.com/managing-teams-deployments-better-outcomes/): Teams is on a roll at present with the number of organizations using the app accelerating past 500,000. Good planning and forethought help enormously to ensure the success of any deployment and Teams is no different. - [Everything You Need to Know About Azure Infrastructure – March 2019 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-march-2019-edition/): This post will summarize the Azure Infrastructure news from March 2019, featuring Azure Storage, Azure South Africa, Azure Stack HCI, and more. - [Everything You Need to Know About Windows – March 2019](https://petri.com/everything-you-need-to-know-about-windows-march-2019/): This month sees Kubernetes Windows container support come out of beta, Windows Virtual Desktop enters public preview, and the next... - [Everything You Need to Know About Office 365 - March 2019](https://petri.com/everything-you-need-to-know-about-office-365-march-2019/): You get Teams news, you get Teams, news, and you get Teams news. Lots of Teams focus in this month's round-up of Office 365 News and Notes. - [Paul Thurrott's Short Takes: March 29](https://petri.com/paul-thurrotts-short-takes-march-29/): Because I have a hard time saying no, this edition of Short Takes looks at Microsoft’s latest tax problem, Windows... - [Everything You Need to Know About SharePoint – March 2019](https://petri.com/everything-you-need-to-know-about-sharepoint-march-2019/): SharePoint is new and old. Learn about connected web parts, news, templates and more all in this months SharePoint news and notes. - [What Challenges Do You Face with IT Purchases?](https://petri.com/what-challenges-do-you-face-with-it-purchases/): We know that buying hardware, software, and services can be challenging and we are looking for your feedback about the... - [How Retention Impacts Office 365 Storage](https://petri.com/how-retention-impacts-office-365-storage/): Office 365 retention policies help organizations keep information for as long as needed. But retention consumes storage. This isn't a problem for Exchange Online, but it is for SharePoint Online. - [How to Install the RSAT Tools in Windows 10](https://petri.com/how-to-install-the-remote-server-administration-tools-in-windows-10/): Here's how to quickly and easily install the Remote Server Administration Tools in Windows 10. - [How to Run Code Remotely in Visual Studio Code](https://petri.com/how-to-run-code-remotely-in-visual-studio-code/): How to run code on a remote Windows Device from Visual Studio Code using PowerShell Remoting. - [Microsoft Surface Hub Event Announced for April](https://petri.com/microsoft-surface-hub-event-announced-for-april/): Microsoft has announced a Surface Hub event for April where the company is expected to finally do a deep dive... - [Microsoft's Upcoming Chromium-based Edge Browser Has A Few Features for the Enterprise](https://petri.com/microsofts-upcoming-chromuim-based-edge-browser-has-few-features-for-the-enterprise/): Microsoft's upcoming Edge browser that is based on Chromium has leaked and it contains a few knew features for the... - [Getting Started with Azure Adaptive Network Hardening](https://petri.com/getting-started-with-azure-adaptive-network-hardening/): Azure Security Center has included a new feature in preview called Adaptive Network Hardening which uses machine learning to analyze... - [Microsoft Responds to Dutch DPIA with Privacy Control for Office ProPlus](https://petri.com/new-privacy-controls-office-proplus/): Microsoft has announced that version 1904 of Office ProPlus (click to run) for Windows includes new privacy controls to allow organizations limit the data sent back by the Office apps. - [Disaster Recovery Trends for 2019](https://petri.com/disaster-recovery-trends-for-2019/): Disaster recovery (DR) methods for protecting today’s IT infrastructure and data are going through a period of substantial change. Today... - [Remote Management Using Puppet Bolt and Windows Subsystem for Linux](https://petri.com/remote-management-using-puppet-bolt-and-windows-subsystem-for-linux/): How to run remote commands on Windows Server using Puppet Bolt installed in Ubuntu with the help of the Windows... - [How to Audit Permission Changes on Windows File Servers](https://petri.com/how-to-audit-permission-changes-on-windows-file-servers/): How to set up auditing to track changes to permissions on Windows File Servers. - [Paul Thurrott's Short Takes: March 22](https://petri.com/paul-thurrotts-short-takes-march-22/): Because Windows 7 ain’t going to put itself out to pasture, this edition of Short Takes looks at Microsoft’s new... - [Microsoft Retires Windows 10 Semi-Annual Channel Targeted Releases](https://petri.com/microsoft-retires-windows-10-semi-annual-channel-targeted-releases/): Microsoft is making changes Windows Update for Business and the Windows 10 release schedule. - [Office 365 Supervision Policies Now Include Teams](https://petri.com/office-365-supervision-policies-include-teams/): Good news for those who like to know what's going on in email: Office 365 supervision policies now support Teams personal chats and channel conversations in addition to email. - [Microsoft's Big Bet on Virtualized Desktops Reaches Public Preview](https://petri.com/microsofts-big-bet-on-virtualized-desktop-reaches-public-preview/): Announced at Ignite last year, Microsoft's big bet on virtualized desktops is finally ready for public testing. - [Microsoft's Extending its Security Graph to MacOS, Adding More Services to ATP](https://petri.com/microsofts-extending-its-security-graph-to-macos-adding-more-services-to-atp/): Microsoft is continuing to build out its security services with a new offering for MacOS and new features for ATP... - [Monitor Your Website's Availability with Azure Application Insights](https://petri.com/monitor-your-websites-availability-with-azure-application-insights/): With Azure's Application Insights you can monitor the availability of any web site or web API from multiple locations around... - [Use Puppet Bolt Tasks to Manage Windows Server](https://petri.com/use-puppet-bolt-tasks-to-manage-windows-server/): How to use Puppet Bolt Tasks to run remote jobs on Windows Server. - [How to Quickly Deploy an Active Directory Test Environment in Azure](https://petri.com/how-to-quickly-deploy-an-active-directory-test-environment-in-azure/): How to deploy a Windows Server Active Directory test environment in Microsoft Azure. - [Microsoft's Bringing Customized Backgrounds, Whiteboards, and Live Captions to Teams](https://petri.com/microsofts-bringing-customized-backgrounds-whiteboards-and-live-captions-to-teams/): Microsoft’s Teams app has quickly become a cornerstone of the Office 365 platform. Offering a wide variety of customized experiences, the... - [If an Office 365 Disaster Happened, What Would You Do?](https://petri.com/office-365-disaster-incidents/): A question none of us like to think about too much is what we would do if a natural or man-made disaster took out Office 365 and disrupted service for an extended period. - [Patch Tuesday – March 2019](https://petri.com/patch-tuesday-march-2019/): This month sees Microsoft patch two zero-days in Windows 7 and critical bugs in Windows Deployment Services and DHCP. - [Getting Started with Azure on a Budget](https://petri.com/getting-started-with-azure-on-a-budget/): Microsoft's Azure platform offers a robust number of services and while it may sound expensive, it's easy to stay on... - [Paul Thurrott's Short Takes: March 15](https://petri.com/paul-thurrotts-short-takes-march-15/): Because it’s the ides of March, this edition of Short Takes looks at Huawei’s Plan B, a Windows 7 courtesy... - [Microsoft's new Game Stack Aims to Simplify the Game Development Process](https://petri.com/microsofts-new-game-stack-aims-to-simplify-the-game-development-process/): Microsoft's rolling out a new service that is designed to make it easier to build content with integrated matchmaking, communication,... - [Stick or Stay: Should I Upgrade to Exchange 2019?](https://petri.com/stick-or-stay-upgrade-exchange-2019/): Exchange 2019 has been around for six months. It's a good time to consider if on-premises organizations should upgrade or stick with what they have. Or move to the cloud and embrace Office 365. - [Delivering High Availability in the Hybrid Cloud](https://petri.com/delivering-high-availability-in-the-hybrid-cloud/): Hybrid cloud availability can be difficult because most businesses are running a mixture of many different technologies that all need... - [How to Make Working With Time Zones and Azure, Easier](https://petri.com/how-to-make-working-with-time-zones-and-azure-easier/): If your software hasn't made the switch to using Coordinated Universal Time, then now might be the right time. - [Microsoft to Roll Out Windows 7 Upgrade 'Nag' Screens in April](https://petri.com/microsoft-to-roll-out-windows-7-upgrade-nag-screens-in-april/): Starting next month, Microsoft will be rolling out 'nag' screens for Windows 7 that will inform you that the OS... - [Windows 10 Will Now Automatically Uninstall Corrupted Updates](https://petri.com/windows-10-will-now-automatically-uninstall-corrupted-updates/): Microsoft has deployed a new feature of Windows 10 that will automatically rollback failed updates when it detects a failed... - [Bringing Intelligence to the Office 365 Substrate](https://petri.com/office-365-substrate-artificial-intelligence/): Artificial intelligence is of major interest to Microsoft right now, so it really shouldn't be a surprise that Jeffrey Snover, one of their technical chiefs, is now heading the charge to bring AI to the Office 365 substrate. - [Microsoft Aims to Educate the C-Suite with new AI Business School](https://petri.com/microsoft-aims-to-educate-the-c-suite-with-new-ai-business-school/): To help business leaders better understand these technologies, Microsoft is launching AI Business School, a new learning program targeted at... - [How to Edit Linux Files Remotely in Windows Using Visual Studio Code](https://petri.com/how-to-edit-linux-files-remotely-in-windows-using-visual-studio-code/): This is how you can edit files on a remote Linux server using Microsoft’s VS Code. - [Paul Thurrott's Short Takes: March 8](https://petri.com/paul-thurrotts-short-takes-march-8/): Because Punxsutawney Phil is a lying liar who lies, this edition of Short Takes looks Windows 10 stumbling to 800... - [Windows 10 Now Running on 800 Million Devices](https://petri.com/windows-10-now-running-on-800-million-devices/): Adding 16 million new users a month, Windows 10 crosses the 800 million mile marker. - [Microsoft Enables Yammer Functionality in Teams](https://petri.com/microsoft-enables-yammer-functionality-in-teams/): Microsoft has flipped the switch and you can now integrate a Yammer conversation directly into Teams. - [Managing Users with Teams Messaging Policies](https://petri.com/managing-users-teams-messaging-policies/): If you have a small Office 365 tenant, you probably don't need to use Teams messaging policies to control user access to Teams features. But larger tenants soon discover that policy-based management - [How to Quickly Create Active Directory Users in Bulk](https://petri.com/how-to-quickly-create-active-directory-users-in-bulk/): This is how you can quickly create hundreds or even thousands of Active Directory users with the help of PowerShell. - [Microsoft's Delayed South African Data Centers are Now Operational](https://petri.com/microsofts-delayed-south-african-data-centers-are-now-operational/): Back in 2017, Microsoft announced that they would be opening two data centers in Africa by the end of 2018.... - [Windows 10 for Virtual Desktops Preview Available Again in Azure](https://petri.com/windows-10-for-virtual-desktops-preview-available-again-in-azure/): The multi-user version of Windows 10 that Microsoft touted at last year’s Ignite conference in September is now available again... - [Understanding Azure's New App Configuration Service](https://petri.com/preview-azures-new-app-configuration-service/): Microsoft has released a new app configuration service for Azure that can help you manage all the configuration settings for... - [Everything You Need to Know About Azure Infrastructure – February 2019](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-february-2019-edition/): This post will summarize the Azure infrastructure (IaaS) news from February 2019, including VNet integrations, Azure Monitor, backup, DR, storage, and more. - [Everything You Need to Know About Office 365 – February 2019](https://petri.com/everything-you-need-to-know-about-office-365-february-2019/): Feburuary 2019 everything you need to know about Office 365 is right here. Okay, that might not be true but still good stuff to keep you in the loop. - [Everything You Need to Know about SharePoint – February 2019](https://petri.com/everything-you-need-to-know-about-sharepoint-february-2019/): SharePoint news and notes for February 2019 including technical debt, page enhancements, and SharePoint site superpowers. - [Everything You Need to Know About Windows – February 2019](https://petri.com/everything-you-need-to-know-about-windows-february-2019/): This month sees Microsoft release Windows Server IoT 2019, an official Timeline extension for Google Chrome, Windows Defender ATP comes... - [Microsoft's Sentinel Security Tool Aims to Bring Intelligent Security Analytics To Your Data](https://petri.com/microsofts-sentinel-security-tool-aims-to-bring-intelligent-security-analytics-to-your-data/): Microsoft's new security tool creates a personal security graph for your environment with the ability to quickly outsource help, if... - [How Stable is Office 365? Can I Trust the Cloud?](https://petri.com/how-stable-is-office-365-can-i-trust-the-cloud/): Microsoft says Office 365 is stable, secure, and trustworthy. But then something happens to make people less sure that Office 365 really is what Microsoft says it is. - [What Are Windows 10 Local Experience Packs?](https://petri.com/what-are-windows-10-local-experience-packs/): Microsoft is slowly reducing reliance on legacy components in Windows 10 but Windows 10 Local Experience Packs remain. - [Microsoft's Lite OS Starts Simple With Plans to Scale Up](https://petri.com/microsofts-lite-os-starts-simple-with-plans-to-scale-up/): Curious what Windows Lite will look like? Here's an early preview of what to expect when the OS is announced... - [Using Discardable Office 365 Accounts to Preserve User Privacy](https://petri.com/delve-discardable-office-365-accounts/): Delve is a great way to learn about important documents other Office 365 users are working on, but it can sometimes reveal something that it shouldn't. - [How to Back Up and Restore Wireless Network Profiles](https://petri.com/how-to-back-up-and-restore-wireless-network-profiles/): Here's how to back up and restore wireless network profiles in the event of an outage, so that you can... - [Microsoft's Future Enters Private Preview](https://petri.com/microsofts-future-enters-private-preview/): Microsoft has a new cloud service and if you read between the lines, this is the future of the company. - [Multi-Cloud Disaster Recovery Benefits and Challenges](https://petri.com/multi-cloud-disaster-recovery-benefits-and-challenges/): When it comes to picking a cloud vendor, putting all your eggs in one basket might be the easiest option,... - [How to Architect an Azure Firewall with a VPN Gateway](https://petri.com/how-to-architect-an-azure-firewall-with-a-vpn-gateway/): This post will show how to design a hub network that isolates virtual network services in Azure from on-premises networks using the Azure Firewall. - [Microsoft Unveils HoloLens 2 With Improved Field of View for $3500](https://petri.com/microsoft-unveils-hololens-2-with-improved-field-of-view-for-3500/): As expected, in Barcelona at Mobile World Congress, Microsoft has unveiled their second generation HoloLens. Powered by a Snapdragon 850, the... - [Paul Thurrott's Short Takes: February 22](https://petri.com/paul-thurrotts-short-takes-february-22/): Because I’m off to Barcelona, this edition of Short Takes looks at Microsoft at MWC, Microsoft’s “inner source” moves, Microsoft’s... - [How to Create Network Rules in Azure Firewall](https://petri.com/how-to-create-network-rules-in-azure-firewall/): In this post, I will explain how one can create network rules in the Azure Firewall to allow transport layer traffic between subnets or virtual networks. - [Revisiting the Office 365 Groups and Teams Activity Report](https://petri.com/office-365-groups-teams-activity-report/): A year is a long time in Office 365. Lots changes in that time, so it's good to go back and look at some PowerShell written to report Teams and Groups activity - [How to Send Emails to OneNote](https://petri.com/how-to-send-emails-to-onenote/): Here is how to send emails, including attachments, to Microsoft OneNote to improve your workflow. - [Sponsored: Extending Office 365 Data Protection](https://petri.com/extending-office-365-data-protection/): This post is sponsored by Druva’s Office 365 backup solution. There’s no doubt that Office 365 is the most popular... - [Patch Tuesday February 2019](https://petri.com/patch-tuesday-february-2019/): This month sees significant changes in Exchange Server security and critical patches for Windows and SharePoint Server. - [Microsoft Teams Went Down, But it's Not Out](https://petri.com/microsoft-teams-went-down-but-its-not-out/): Microsoft's Teams suffered a significant outage but the company has a vested interest in making sure that it offers a... - [Planner Does Multiplan](https://petri.com/planner-does-multiplan/): Microsoft has announced the ability of the Planner web app to create multiple plans for an Office 365 group. This is a useful feature that Teams and SharePoint - [How To Create SharePoint News digest with news from multiple SharePoint sites](https://petri.com/how-to-create-sharepoint-news-digest-with-news-from-multiple-sharepoint-sites/): How you can extract news from multiple SharePoint Sites into one centralized news digest. - [How to Install Windows Subsystem for Linux](https://petri.com/how-to-install-windows-subsystem-for-linux/): Looking to install the subsystem for Linux in Windows 10? Here's how to do it. - [Paul Thurrott's Short Takes: February 15](https://petri.com/paul-thurrotts-short-takes-february-15/): Because all I can taste is snow, this edition of Short Takes looks at a Windows 10 development spaz attack,... - [How Pegasus and Centaurus Fit Into the Windows Lite Narrative](https://petri.com/how-pegasus-and-centaurus-fit-into-the-windows-lite-narrative/): Microsoft's working on a new operating system that it is calling 'Lite OS', here's what we know so far. - [The Joys of Managing Large Microsoft Teams](https://petri.com/joys-managing-large-microsoft-teams/): Teams now supports memberships of up to 5,000 users. This is great for large tenants, but probably isn't too interesting for most of Office 365. - [Migration Tools for the Azure Hybrid Cloud](https://petri.com/migration-tools-for-the-azure-hybrid-cloud/): Looking for help with your migration in a hybrid cloud world? These tools can help you on your path ahead. - [Understanding the Windows 10 Your Phone App](https://petri.com/understanding-the-windows-10-your-phone-app/): Access recent photos and SMS messaging on your Android phone using the Windows 10 Your Phone app. - [What is Windows 10 Reserved Storage](https://petri.com/what-is-windows-10-reserved-storage/): Windows 10 19H1 Reserved Storage helps keep Windows update-to-date and run more smoothly. - [Exchange Privilege Elevation Vulnerability Addressed by Microsoft Patches](https://petri.com/microsoft-patches-exchange-privilege-elevation-vulnerability/): The recent exposure of a privilege elevation vulnerability that exists in the control Exchange has over Active Directory and EWS push notifications is fixed - [Understanding and Creating NAT Rules in Azure Firewall](https://petri.com/understanding-and-creating-nat-rules-in-azure-firewall/): In this post, I will show you how to publish an Azure service in a virtual network to the Internet using a NAT (DNAT) rule in the Azure Firewall. - [How to Configure Group Policy to Reapply Settings](https://petri.com/how-to-configure-group-policy-to-reapply-settings/): How to ensure that Group Policy settings are applied every time Group Policy is processed. - [Microsoft Teams Will Soon Let you Replace Backgrounds, Instead of Blurring](https://petri.com/microsoft-teams-will-soon-let-you-replace-backgrounds-instead-of-blurring/): Microsoft is working on a new feature for Teams that will take background blurring to the next level, full customization. - [How To Extend Windows Server Evaluation](https://petri.com/how-to-extend-windows-server-evaluation/): In today’s Ask the Admin, I’ll show you to extend to evaluation time for Windows Server. - [With HoloLens Now out of Stock, All Attention Turns to HoloLens 2](https://petri.com/with-hololens-now-out-of-stock-all-attention-turns-to-hololens-2/): Microsoft has begun teasing its big announcement for later this month and with Hololens 1 now out of stock, the... - [Paul Thurrott's Short Takes: February 8](https://petri.com/paul-thurrotts-short-takes-february-8/): Because I want to be your Valentine, this edition of Short Takes looks at Microsoft’s weird criticism of its own... - [How to Build an Azure Firewall in a Hub Virtual Network](https://petri.com/how-to-build-an-azure-firewall-in-a-hub-virtual-network/): This post will show how to architect a centralized Azure Firewall deployment in with virtual networks peered into hub-and-spoke configurations. - [Who Owns Office 365 Deployment? Most Organizations Don’t Know](https://petri.com/who-owns-office-365-deployment-most-organizations-dont-know/): In our industry, we are witnessing IT teams delegating and partitioning shifting responsibilities, often on an ad-hoc basis, with the... - [Microsoft Targets the Healthcare Industry with Several New Features for Teams](https://petri.com/microsoft-targets-the-healthcare-industry-with-several-new-features-for-teams/): Microsoft is working on new features for Teams that they hope will entice workers in the healthcare industry to adopt... - [Leave Those SharePoint Permissions for Office 365 Groups Alone](https://petri.com/leave-sharepoint-permissions-office-365-groups-alone/): Office 365 Groups and Teams make SharePoint much easier for people to use, but the price paid is the imposition of the groups permission model on SharePoint. - [Microsoft's Build Registration Opens February 27th](https://petri.com/microsofts-build-registration-opens-february-27th/): Microsoft's Build conference will take place again in Seattle with registration opening up later this month. - [How to Secure A Network Using NSGs and ASGs](https://petri.com/how-to-secure-a-network-using-nsgs-and-asgs/): Learn how to use Application Security Groups (ASGs) with Network Security Groups (NSGs) to create secure network designs for virtual machines in Azure. - [Microsoft's Windows 7 Extended Support Pricing Announced](https://petri.com/microsofts-windows-7-extended-support-pricing-announced/): With Windows 7 support coming to an end next year, Microsft has announced pricing for extending Windows 7 support for... - [Surface Go: Six Months Later](https://petri.com/surface-go-six-months-later/): Microsoft's Surface Go is six months old and this is a closer look at the hardware after using it a... - [How to Use Windows 10 Quick Assist to Give or Receive Remote Support](https://petri.com/how-to-use-windows-10-quick-assist-to-give-or-receive-remote-support/): Looking to better understand Quick Assist in Windows 10 for remote support? Russell has you covered. - [Groups Membership Model Makes Teams Private Channels Hard to Implement](https://petri.com/teams-secure-channels/): Secure (or private) channels is the biggest user request to the Teams development group, possibly because Slack has this feature. Office 365 - [Azure Firewall in a Single Virtual Network](https://petri.com/azure-firewall-in-a-single-virtual-network/): In this post, I will show you how to design the deployment of an Azure Firewall in a single virtual network with full inspection and logging of traffic. - [How to Secure A Network Using NSGs](https://petri.com/how-to-secure-a-network-using-nsgs/): This post shows how you can use Network Security Groups (NSGs) to secure the subnets of a typical virtual machine-based web application deployment in Azure. - [What To Consider when Building Your Azure Firewall Design](https://petri.com/what-to-consider-when-building-your-azure-firewall-design/): This post discusses some considerations when planning for or designing a deployment of the Azure Firewall with VNets, peering, NSGs, web services & more. - [Paul Thurrott's Short Takes: February 1](https://petri.com/paul-thurrotts-short-takes-february-1/): Because I’m stuck in this polar vortex, this edition of Short Takes looks at Microsoft’s and Apple’s earnings, Microsoft’s Super... - [Everything You Need to Know About Azure Infrastructure – January 2019](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-january-2019/): In my monthly wrap-up, I will share what happened in the world of Azure infrasructure-as-a-service (IaaS) during January, 2019. - [Everything you need to know about Office 365 - January 2019](https://petri.com/everything-you-need-to-know-about-office-365-january-2019/): Office 365 alerts and clients, Microsoft Stream, PowerApps, Encryption, and so much more. This monthly news and notes has everything you need to know. - [Everything you need to know about SharePoint – January 2019](https://petri.com/everything-you-need-to-know-about-sharepoint-january-2019/): This month read about SharePoint Online enhancements that continue to focus on helping you make the move to Modern sites from Classic. - [Everything You Need to Know About Windows – January 2019](https://petri.com/everything-you-need-to-know-about-windows-january-2019/): This month sees Windows Server 2019 finally reach general availability in Azure and appear in the Windows Evaluation Center, plus... - [Enterprise Dish: The Right (and Wrong) Way to Deal with a Cloud Outage](https://petri.com/enterpirse-dish-the-right-and-wrong-way-to-deal-with-a-cloud-outage/): On this edition of the Enterprise Dish, we dive into if you should host critical exchange servers locally, new features... - [Microsoft Begins Rolling Out Overhauled Microsoft 365 Compliance and Security Center](https://petri.com/microsoft-begins-rolling-out-overhauled-microsoft-365-compliance-and-security-center/): Microsoft is rolling out an updated security and compliance center for Microsoft 365 customers. - [What is Amazon WorkLink?](https://petri.com/what-is-amazon-worklink/): Amazon has a new tool that is designed to make it easier to access intranet sites on mobile devices. - [Why Exchange Transport Rules are a Good Way to Encrypt Email](https://petri.com/exchange-transport-rules-good-way-encrypt-email/): Exchange Online transport rules are a powerful way to ensure that email from Office 365 tenants to specific recipients are encrypted in a consistent manner. - [Microsoft's Q2 Shows Stability in a Turbulent Market](https://petri.com/microsofts-q2-is-a-small-miss-on-revenue-but-company-remains-stable/): Microsoft has released their Q2 earnings for 2019, fiscal Q4 2018, with a revenue of $32. 5 billion, an increase... - [What Are AWS Gravitron Processors?](https://petri.com/what-are-aws-gravitron-processors/): Amazon has new Gravitron processors for its services, here's how they can help save you some money. - [How To Run Commands on Remote Windows Servers Using Puppet Bolt](https://petri.com/how-to-run-commands-on-remote-windows-servers-using-puppet-bolt/): Russell explains how to use Puppet Bolt to run commands remotely on Windows Server. - [Sponsored: Evolving Office 365 Tenants](https://petri.com/sponsored-evolving-office-365-tenants/): Office 365 serves a wide spectrum of organizations. Many are very small, some belong to government agencies, and some are... - [The Three Different Types of Rules that are in the Azure Firewall](https://petri.com/the-three-different-types-of-rules-that-are-in-the-azure-firewall/): In this post, I will explain what the three types of rules that are in the Azure Firewall, what they do, and how they are different from each other. - [The Only Hardware Battle that Matters for Microsoft is Education](https://petri.com/the-only-hardware-battle-that-matters-for-microsoft-is-education/): A new generation is being brought up not on Windows and Office, but with iPads and Chromebooks; Microsoft needs to... - [Fixing a Multi-Protocol Exchange Server Vulnerability](https://petri.com/fixing-multi-protocol-exchange-server-vulnerability/): No fix is available yet for the Exchange vulnerability reported by Mollema and described in CVE-2018-8581. Stay calm and Microsoft will generate a patch. - [What is AWS Firecracker?](https://petri.com/what-is-aws-firecracker/): Amazon Firecracker is a new feature that makes it easier and safer to run micro-services. - [The Benefits of Backing Up Your Data to the Cloud](https://petri.com/the-benefits-of-backing-up-your-data-to-the-cloud/): We all have heard about backing up our data to the cloud, but outlining all the benefits shows the true... - [Windows Server 2019 GA Arrives on Azure](https://petri.com/windows-server-2019-ga-arrives-on-azure/): Microsoft has finally made Windows Server 2019 (WS2019) generally available for IaaS virtual machines on their public cloud, Microsoft Azure. - [All Versions of On-Premises Exchange Server Vulnerable to New Attack](https://petri.com/exchange-server-vulnerable-new-attack/): A newly-discovered vulnerability in Exchange potentially allows attackers to gain control over Active Directory. - [Paul Thurrott's Short Takes: January 25](https://petri.com/paul-thurrotts-short-takes-january-25/): Because I live for the controversy, this edition of Short Takes looks at Microsoft’s hypocritical attack on fake news, the... - [Auditing Access to Microsoft LAPS Passwords in Active Directory](https://petri.com/auditing-access-to-laps-passwords-in-active-directory/): Russell shows you how to audit access to LAPS passwords in Active Directory and how to establish a process for... - [Office 365 Outage is Blocking Access to Mailboxes](https://petri.com/office-365-outage-is-blocking-access-to-mailboxes/): There is an active outage impacting customers in Europe from accessing their Office 365 mailboxes. - [Encrypted Office 365 Content is a Wake-Up Call for ISVs](https://petri.com/encrypted-office-365-content-wake-up-call-isvs/): The signs are that Office 365 will store more encrypted content as time goes by. But ISV products might not be able to process that content. - [Azure Az Module for Windows PowerShell, Core, and Cloud Shell Replaces AzureRM](https://petri.com/azure-az-module-for-windows-powershell-core-and-cloud-shell-replaces-azurerm/): Learn about the new Az PowerShell module for managing and deploying resources in Microsoft Azure. - [Patch Tuesday January 2019](https://petri.com/patch-tuesday-january-2019/): The first Patch Tuesday of 2019 sees a critical remote code execution vulnerability fixed in the Windows DHCP client. - [Microsoft Unveils new Pen, Laptops, and Teams Features for Education](https://petri.com/microsoft-unveils-new-pen-laptops-and-teams-features-for-education/): Microsoft is announcing a new peripheral for the Surface Go, new laptops aimed at educators, and new features for Teams. - [Using Document IDs with SharePoint Online](https://petri.com/using-document-ids-sharepoint-online/): Most Office 365 users might be unaware of SharePoint's Document ID service, which generates unique document identifiers for documents in a site. - [Manage Azure Virtual Machines Using Windows Admin Center](https://petri.com/manage-azure-virtual-machines-using-windows-admin-center/): Russell shows you how to manage Azure virtual machines (VMs) using the Windows Admin Center (WAC). - [Paul Thurrott's Short Takes: January 18](https://petri.com/paul-thurrotts-short-takes-january-18/): Because this time it’s personal, this edition of Short Takes looks at Cortana’s slow-motion suicide, Microsoft trying to fix the... - [Use a Local Administrator Account for Remote Administration](https://petri.com/use-a-local-administrator-account-for-remote-administration/): LAPS-managed local administrator accounts can be used for remote administration providing that policy doesn’t block their use. - [Microsoft Misses Deadline for African Data Centers](https://petri.com/microsoft-misses-deadline-for-african-data-centers/): Microsoft has missed a self-imposed deadline to open data centers in Africa but the company is still committed to the... - [Exchange 2010 Nears the End](https://petri.com/exchange-2010-nears-end/): Exchange 2010 will become unsupported on January 14, 2020. It's time to decide whether to move to Office 365 or Exchange 2016/2019. - [Microsoft Teases HoloLens 2 Event for Mobile World Congress](https://petri.com/microsoft-teases-hololens-2-event-for-mobile-world-congress/): Microsoft is teasing a Hololens 2 reveal for late next month as corporate executives will be traveling to Barcelona for... - [Azure VM Image Builder Makes Customization of ISO and Marketplace Images Easier](https://petri.com/azure-vm-image-builder-makes-customization-of-iso-and-marketplace-images-easier/): Azure VM Image Builder is a new tool for Microsoft’s cloud that lets you provision ISO or Azure Marketplace images... - [Microsoft Hopes 2019 is the Year of the Modern Desktop](https://petri.com/microsoft-hopes-2019-is-the-year-of-the-modern-desktop/): With the demise of Windows 7 coming in about a year, Microsoft is hoping to push customers on legacy platforms... - [Conditional Access Blocks Downloads of Office 365 Attachments and Documents](https://petri.com/conditional-access-blocks-office-365-downloads/): Azure Conditional Access policies are pretty powerful, especially when applications accommodate their controls. OWA and SharePoint Online now do for Office 365 - [How To Configure Delivery Optimization in Windows 10](https://petri.com/how-to-configure-delivery-optimization-in-windows-10/): Here's how the Windows Update Delivery Optimization feature works in Windows 10 and show you how to configure it using... - [With One Year Left of Windows 7 Support, Microsoft Hopes Hundreds of Millions will Migrate to Windows 10](https://petri.com/with-one-year-left-of-windows-7-support-microsoft-hopes-hundreds-of-millions-will-migrate-to-windows-10/): Windows 7 will reach end of life in 52 weeks, but with more than 400 million customers still running Windows... - [Microsoft's Build Conference to take place May 7-9, in Seattle](https://petri.com/microsofts-build-conference-to-take-place-may-7-9-in-seattle/): Microsoft is planning to host its Build conference in Seattle, May 7-9th. - [Paul Thurrott's Short Takes: January 11](https://petri.com/paul-thurrotts-short-takes-january-11/): Because CES is a pointless disaster, this edition of Short Takes looks at Microsoft’s brief view from the top, when... - [Static Website Hosting on an Azure Storage Account](https://petri.com/static-website-hosting-on-an-azure-storage-account/): In this post, I will show you how to host a static website on an Azure storage account – a great way to host websites with a small budget. - [What Is the Difference Between WMI and CIM?](https://petri.com/what-is-the-difference-between-wmi-and-cim/): Russell explains whether there is a difference between WMI and CIM. - [New OWA Makes Categories into Favorites](https://petri.com/new-owa-makes-categories-favorites/): Microsoft is still building out the new OWA (for Exchange Online) interface. One new feature is the ability to make categories into Outlook favorites. - [Getting Started with Windows Server 2019 System Insights](https://petri.com/getting-started-with-windows-server-2019-system-insights/): Install Windows Server 2019 System Insights using Windows Admin Center. - [The Hybrid Cloud Trends We Expect to See in 2019](https://petri.com/the-hybrid-cloud-trends-we-expect-to-see-in-2019/): As we head into the new year, here are the hybrid cloud trends that we expect to see in 2019. - [Microsoft's Bringing New Features to Teams to Assist Firstline Workers](https://petri.com/microsofts-bringing-new-features-to-teams-to-assist-firstline-workers/): Microsoft is bringing new features to Teams that will make it easier for firstline workers to communicate with other employees. - [Test Microsoft Security Patches Early on the Security Update Validation Program](https://petri.com/test-microsoft-security-patches-early-on-the-security-update-validation-program/): SUVP provides patches up to three weeks before their official release and encompasses all Microsoft products that are supported for... - [Microsoft Plans to Launch Automatic Email Encryption for Office 365 Tenants](https://petri.com/microsoft-to-launch-automatic-email-encryption-office-365/): Microsoft plans to create an automatic policy to encrypt outbound email containing sensitive data for all Office 365 tenants. - [What Is WSUS Dual Scan?](https://petri.com/what-is-wsus-dual-scan/): Dual Scan enabled clients scan WSUS and WU, but only download Windows patches from Microsoft’s update servers (Windows Update). - [Troubleshoot Windows Update Delivery Optimization](https://petri.com/troubleshoot-windows-update-delivery-optimization/): Russell explains how to troubleshoot problems with the Delivery Optimization service in Windows 10. - [How to Deploy Traffic Manager for Azure App Services for Disaster Recovery](https://petri.com/how-to-deploy-traffic-manager-for-azure-app-services-for-disaster-recovery/): This post will show you how to deploy and configure Azure Traffic Manager to redirect clients from a production Azure App Services plan to a failover plan. - [Microsoft's Retail Narrative Continues, Partners with Kroger for Retail-as-a-Service](https://petri.com/microsofts-retail-narrative-continues-partners-with-kroger-for-retail-as-a-service/): Microsoft and Kroger have teamed up to take on Amazon's expansion into retail with Retail-as-a-Service. - [Microsoft To Fix One of the Annoying Aspects of Deploying Windows 10](https://petri.com/microsoft-to-fix-one-of-the-annoying-aspects-of-deploying-windows-10/): Microsoft is removing one of the annoying aspects of installing Windows 10; Cortana screaming at you. - [Paul Thurrott's Short Takes: January 4](https://petri.com/paul-thurrotts-short-takes-january-4/): Because I can already feel the mornings getting lighter, the first 2019 edition of Short Takes looks at Microsoft’s 2018,... - [How To Host a DNS Domain in Azure](https://petri.com/how-to-host-a-dns-domain-in-azure/): This post will explain how you can host an external (Internet) DNS domain in Azure using Azure DNS to get better performance, security and manageability. - [The Easy Ways to Restore Azure VMs From Backup](https://petri.com/the-easy-ways-to-restore-azure-vms-from-backup/): In this post, I will explain the different ways that you can use Azure Backup to restore an Azure virtual machine. - [Microsoft Hopes to Up-sell E3 Customers with Two New M365 Tiers](https://petri.com/microsoft-hopes-to-up-sell-e3-customers-with-two-new-m365-tiers/): Microsoft is adding two new tiers to its Microsoft 365 platform that are designed as up-sells to current E3 customers. - [MyAnalytics – Open to All with Teams and SharePoint Insights Coming](https://petri.com/myanalytics-teams-and-sharepoint-insights-coming/): Microsoft announced that the MyAnalytics app is available to any Office 365 user with an Exchange Online license. Also, Teams and SharePoint signals are soon - [How To Convert A Virtual Machine's Disk Tiers](https://petri.com/how-to-convert-a-virtual-machines-disk-tiers/): Aidan shows you how you can switch a virtual machine’s disks between the different tiers, such as from Standard HDD... - [Microsoft's Upcoming Webcams are Codenamed Bari](https://petri.com/microsofts-upcoming-webcams-are-codenamed-bari/): Microsoft is working on a pair of new webcams and they are currently codenamed, Bari. - [How to Enable Windows Sandbox](https://petri.com/how-to-enable-windows-sandbox/): Learn how to enable Windows Sandbox in Windows 10 to help protect against malicious applications. - [Microsoft Fails to Uphold Promise to Pay Developers More for Apps in the Windows Store](https://petri.com/microsoft-fails-to-uphold-promise-to-pay-developers-more-for-apps-in-the-windows-store/): Microsoft promised developers in 2018 a more generous revenue split for the Microsoft Store but failed to deliver on its... - [Petri's Top Posts of 2018](https://petri.com/petris-top-posts-of-2018/): With 2019 starting fresh today, it's time to take one last look at 2018 for Petri. During the year we... - [An Azure Infrastructure Year in Review – 2018](https://petri.com/an-azure-infrastructure-year-in-review-2018/): Aidan takes a look back at 2018 and discusses some of the highlights from each month. It is interesting to... - [Everything You Need to Know About Windows – December 2018 Edition](https://petri.com/everything-you-need-to-know-about-windows-december-2018-edition/): December is usually a quiet month at Microsoft, but this year there have been several newsworthy events, including Microsoft’s plans... - [Everything you need to know about Office 365 – December 2018](https://petri.com/everything-you-need-to-know-about-office-365-december-2018/): Microsoft Teams, Power BI, Artificial Intelligence and more Office 365 news and notes you need to know from December 2018 from MVP Shane Young. - [Everything you need to know about SharePoint – December 2018 Edition](https://petri.com/everything-you-need-to-know-about-sharepoint-december-2018-edition/): News on new web parts, dressing SharePoint up to make it prettier, the SharePoint Conference, and Shane's terrible opinions. Enjoy and happy new year. - [Everything You Need to Know About Azure Infrastructure – December 2018 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-december-2018-edition/): We’re closing in on the end of 2018, so let’s see what goodies Microsoft is leaving with us in Azure... - [Patch Tuesday December 2018](https://petri.com/patch-tuesday-december-2018/): In what Microsoft says will be the last cumulative update in 2018 before the holiday season, there are patches for... - [The Cloud Predictions for 2019](https://petri.com/the-cloud-predictions-for-2019/): This post on IT predictions for 2019 covers Azure, Azure Stack, Microsoft 365, Containers, outages & bugs, and a growing skills shortage in the business. - [Azure AD Authentication for Azure Files](https://petri.com/azure-ad-authentication-for-azure-files/): In this post, I will clarify what this new permissions feature for Azure Files shares, powered by Azure AD Domain Services supports, and does not support. - [Surface Book 2 - 15in: One Year Later](https://petri.com/surface-book-2-15in-one-year-later/): It has been more than a year with the Surface Book 2 and in that time, I have taken the... - [Are IT Certifications Worth It?](https://petri.com/are-it-certifications-worth-it/): Russell Smith looks at whether certifications are worth having and how they can help your IT career. - [IT Governance with Azure Policy](https://petri.com/it-governance-with-azure-policy/): Learn how to control the properties users can select when provisioning resources in the Azure cloud. - [Disaster Recovery Features in Windows Server 2019](https://petri.com/disaster-recovery-features-in-windows-server-2019/): Microsoft has released a new version of SharePoint and with it comes a couple new features to help you recover... - [Edge (Chromium) for the Enterprise](https://petri.com/edge-chromium-for-the-enterprise/): Russell Smith takes a preliminary look at whether Microsoft’s shift to using Chromium in its Edge browser will affect enterprise... - [Choosing an Azure Virtual Machine - December 2018](https://petri.com/choosing-an-azure-virtual-machine-december-2018/): This post will explain how to select an Azure virtual machine (VM) series and size from the myriad of B-Series, A-Series, D-Series and more options. - [Paul Thurrott's Short Takes: December 21](https://petri.com/paul-thurrotts-short-takes-december-21/): Because it's not going to be a white Christmas, this edition of Short Takes looks at Windows Sandbox, a Microsoft... - [DR Fail Over of Azure App Services Using Automation](https://petri.com/dr-fail-over-of-azure-app-services-using-automation/): In this post, I will explain how you can implement disaster recovery failover for an application that has been built on Azure’s App Services and Azure SQL. - [Microsoft Will Remove a Significant Windows 10 Enterprise Pain Point in 2019](https://petri.com/microsoft-will-remove-a-significant-windows-10-enterprise-pain-point-in-2019/): With the next major update to Windows 10, the company is going to remove a significant pain point from the... - [Using PowerShell to Check Group or Team Membership](https://petri.com/powershell-check-group-team-membership/): PowerShell is great at getting lots done for Office 365 administrators. As an example, here are a couple of ways to check group membership. - [Microsoft's Releasing a new 'Office' app for Windows 10](https://petri.com/microsofts-releasing-a-new-office-app-for-windows-10/): Microsoft is releasing a new Office app for Windows 10 that is designed to make it easier to switch between... - [How To Get NTFS File Permissions Using PowerShell](https://petri.com/how-to-get-ntfs-file-permissions-using-powershell/): In today’s Ask the Admin, Russell takes a look at using PowerShell to determine the NTFS permissions set on files... - [Windows Sandbox: A New Lightweight Desktop Environment for Running Untrusted Apps](https://petri.com/windows-sandbox-a-new-lightweight-desktop-environment-for-running-untrusted-apps/): Microsoft has a new sandbox feature for Windows 10 that makes it safer to run untrusted apps without exposing your... - [To Make Office 365 Smarter, Microsoft's Getting More Ambitious with Internal AI Testing](https://petri.com/to-make-office-365-smarter-microsofts-getting-more-ambitious-with-internal-ai-testing/): Microsoft will start a mass data collection practice for US employees that the company hopes will help them improve their... - [Multi-User Windows 10 Powers Windows Virtual Desktop](https://petri.com/multi-user-windows-10-powers-windows-virtual-desktop/): Russell explains how multi-user Windows 10 enables Microsoft's new Windows Virtual Desktop on Azure. - [What Aidan Wants for Azure Christmas 2018](https://petri.com/what-aidan-wants-for-azure-christmas-2018/): It’s that time of year when we write a letter to Azure-Claus and ask for the special things that we would like at this festive time of year. Here’s my wish list. - [OneNote for Windows 10 will Finally Support Custom Tags in 2019](https://petri.com/onenote-will-finally-support-custom-tags-in-2019/): Microsoft will finally bring custom tags to OneNote in early 2019 which will make it easier to index older content. - [Memory-Based Attacks are on the Rise](https://petri.com/memory-based-attacks-are-on-the-rise/): Microsoft updates Windows Defender ATP to detect and auto remediate memory-based attacks. - [Microsoft Releases Exchange 2019 Preferred Architecture](https://petri.com/microsoft-exchange-2019-preferred-architecture/): Microsoft has publsihed the preferred architecture for Exchange 2019. As you'd expect, the architecture is highly influenced by the cloud. Exchange Online - [Modern SharePoint Web Parts - YouTube Web Part](https://petri.com/modern-sharepoint-web-parts-youtube-web-part/): Jasper Oosterveld, Microsoft MVP dives into the latest developments around Modern SharePoint Web Parts. - [Paul Thurrott's Short Takes: December 14](https://petri.com/paul-thurrotts-short-takes-december-14/): Because it's beginning to look a lot like year-end retrospectives, this edition of Short Takes looks at a new Windows... - [Microsoft Has Found its New 'Excel'](https://petri.com/microsoft-has-found-its-new-excel/): Microsoft is frequently expanding the functionality of Office 365 and with the success of Teams, the company may have found... - [Using the Office 365 Audit Log to Track Retention Labels](https://petri.com/analyzing-document-classifications-office-365/): Office 365 allows users to apply retention labels to SharePoint and OneDrive documents and to Exchange messages. Audit log analysis. - [Hybrid Cloud: Microsoft Azure vs Amazon AWS](https://petri.com/hybrid-cloud-microsoft-azure-vs-amazon-aws/): A closer look at how Amazon and Microsoft are attacking the hybrid cloud markets with each having a slightly different... - [Understanding Kerberos Delegation in Windows Server Active Directory](https://petri.com/understanding-kerberos-delegation-in-windows-server-active-directory/): Understanding how Kerberos delegation works in Active Directory is key to keeping your systems secure. - [Outlook Click-to-Run Optimizes AutoDiscover for Office 365](https://petri.com/outlook-optimizes-autodiscover-office-365/): Microsoft has optimized the Click-to-Run version of Outlook for Office 365. There's nothing startling about that, but the Outlook team communication - [Modern SharePoint Web Parts — News Web Part](https://petri.com/modern-sharepoint-web-parts-news-web-part/): Jasper Oosterveld, Microsoft MVP shows the latest updates to the Modern SharePoint News Web Part. - [Surface Go with LTE Review](https://petri.com/surface-go-with-lte-review/): Microsoft's Surface Go with LTE offers flexibility in connectivity but it doesn't come cheap and the battery life does take... - [Puppet Bolt Agentless Automation for Linux and Windows Server](https://petri.com/puppet-bolt-agentless-automation-for-linux-and-windows-server/): Puppet Bolt is an agentless and masterless remote task runner that you can use with your existing PowerShell, Python, and... - [Paul Thurrott's Short Takes: December 7](https://petri.com/paul-thurrotts-short-takes-december-7/): Because Microsoft is actually in the news for a change, this edition of Short Takes looks at Microsoft's new Edge,... - [Browser Reboot: Microsoft's Building a 'new' Edge for Windows 7,8,10 and MacOS](https://petri.com/browser-reboot-microsofts-building-a-new-edge-for-windows-7810-and-macos/): Microsoft is saying goodbye to Edge and hello to a 'new' Edge. The company is dumping its old rendering engine... - [Analyzing the Numbers for Different Office 365 Workloads](https://petri.com/analyzing-numbers-different-office-365-workloads/): Microsoft says that Office 365 has 155 million monthly active users. That's an interesting statistic, but how many people use Exchange, SharePoint, Teams, Yammer, and Planner? - [How to Choose the Correct Azure VM Disk Tier](https://petri.com/how-to-choose-the-correct-azure-vm-disk-tier/): In this post, I will explain he differences between the four Azure virtual hard disk tiers that you can deploy for Azure virtual machines. - [What You Need to Know About Windows 10 S Mode](https://petri.com/what-you-need-to-know-about-windows-10-s-mode/): Microsoft is continuing to improve the S Mode experience in Windows 10 version 1809 and beyond, here's what you need... - [Visual Studio 2019 Preview Now Available for Mac and PC](https://petri.com/visual-studio-2019-preview-now-available-for-mac-and-pc/): Microsoft is releasing a new Visual Studio Preview today for both Mac and PC, this is your first look at... - [Microsoft and Docker Team up for Cloud-Native App Bundles Standard](https://petri.com/microsoft-and-docker-team-up-for-cloud-native-app-bundles-standard/): Microsoft and Docker have teamed up to create an open source, cloud-agnostic specification for packaging and running distributed applications. - [Windows 10 October 2018 Update Still Experiencing Issues](https://petri.com/windows-10-october-2018-update-still-experiencing-issues/): Apple iCloud, mapped drives, Trend Micro, F5 VPN clients, and AMD graphics still causing problems for Windows 10 version 1809... - [Outlook Mobile Gets a New Architecture](https://petri.com/outlook-mobile-gets-new-architecture/): Microsoft has simplified the synchronization architecture used to connect Outlook mobile clients to Exchange. The new approach sets the scene for some new features - [Exploring Microsoft's Azure Backup Server v3](https://petri.com/exploring-microsofts-azure-backup-server-v3/): Microsoft has launched v3 of their on-premises backup server that integrates into Azure’s cloud backup & storage services, Azure Backup Server or MABS. - [Windows Subsystem for Linux Improvements in Windows 10 Version 1809](https://petri.com/windows-subsystem-for-linux-improvements-in-windows-10-version-1809/): Now that the Windows 10 October 2018 Update has been rereleased after the initial rollout was paused in early October,... - [What is Windows Lite? It's Microsoft's Chrome OS Killer](https://petri.com/what-is-windows-core-os-its-microsofts-chromebook-os-killer/): Microsoft is working on a new iteration of Windows that may not be called Windows and will finally be it's... - [Digging Into Azure VM Disk Performance Features](https://petri.com/digging-into-azure-vm-disk-performance-features/): In this post, I will discuss some Azure features that allow you to obtain better virtual hard disk (VHD) performance with virtual machines. - [Restore an Azure Virtual Machine’s Disks from Backup](https://petri.com/restore-an-azure-virtual-machines-disks-from-backup/): This post will explain how a new way to restore an Azure virtual machine from backup simplifies some complexity we have had with availability sets/zones. - [Modern SharePoint News - Layout update inbound](https://petri.com/modern-sharepoint-news-layout-update-inbound/): Jasper Oosterveld, Microsoft MVP, dives into the latest developments around Modern SharePoint. - [Everything you need to know about SharePoint – November 2018](https://petri.com/everything-you-need-to-know-about-sharepoint-november-2018/): SharePoint is awesome. Come check out the news and notes for November 2019 including things for both on-prem and online. There is something for everyone. - [Everything you need to know about Office 365 – November 2018](https://petri.com/everything-you-need-to-know-about-office-365-november-2018/): What is news and noteworthy in November 2018 for Office 365? Here is your rundown that includes Power BI, the Graph API, and a licensing change. - [Everything You Need to Know About Azure Infrastructure – November 2018 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-november-2018-edition/): This post contains a summary of all the Azure IaaS news and announcements from November 2018. - [Everything You Need to Know About Windows - November 2018](https://petri.com/everything-you-need-to-know-about-windows-november-2018/): Windows 10 version 1809 is rereleased but users still face problems, Microsoft issues security advisory for devices with self-encrypting SSDs,... - [Paul Thurrott's Short Takes: November 30](https://petri.com/paul-thurrotts-short-takes-november-30/): Because it's been a while, sorry, this edition of Short Takes looks at how cute it is when the mainstream... - [Rights Management, Protection, and Email AutoSignatures](https://petri.com/rights-management-protection-email-autosignatures/): Given the increased ways to apply rights management protection (encryption) to Exchange Online messages, the volume of encrypted traffic should rise. Autosignature - [Amazon is targeting the Hybrid Cloud by Bringing Metal to your Data Center](https://petri.com/amazon-is-targeting-the-hybrid-cloud-by-bringing-metal-to-your-data-center/): Amazon is launching a new hybrid cloud solution called Outposts that will bring metal to your data center. - [Amazon Walks Into Microsoft's Backyard with FSx for Windows File Server](https://petri.com/amazon-walks-into-microsofts-backyard-with-fsx-for-windows-file-server/): Amazon is walking into Microsoft's backyard with a new Windows file system that the company hopes will steal a bit... - [What’s New in Azure File Sync? - November 2018 Edition](https://petri.com/whats-new-in-azure-file-sync-november-2018-edition/): This post will discuss some of the new features that were introduced with version 4 of the Azrue File Sync agent in November 2018. - [The new Petri forums are open for business](https://petri.com/the-new-petri-forums-are-open-for-business/): Your Community Magnate for Petri.com is back.I'm here to participate with you in the new-and-improved Petri forums. - [Microsoft Needs A Quality Review](https://petri.com/microsoft-needs-a-quality-review/): In this opinion post, I share why I beleive that Microsoft needs to stop writing new code, do a complete reset, and focus on quality. - [Using Office 365 Sensitivity Labels](https://petri.com/using-office-365-sensitivity-labels/): Sensitivity labels allow Office 365 tenants to encrypt messages and documents very easily. That is, as long as you have applications that understand labels. - [What You Need to Know About Cloud Backup and Disaster Recovery](https://petri.com/what-you-need-to-know-about-cloud-backup-and-disaster-recovery/): Using the cloud for backup and recovery is a choice many businesses utilize but make sure you understand the entire... - [Getting creative with SharePoint News](https://petri.com/getting-creative-with-sharepoint-news/): Jasper shows how the latest News Web Part in combination with SharePoint Page Properties can create new 'news' experiences/ - [Microsoft Launcher 5.0 for Android Brings Timeline Support](https://petri.com/microsoft-launcher-5-0-for-android-brings-timeline-support/): While Microsoft has finally re-released the Windows 10 October 2018 Update (version 1809) since the rollout was paused early October,... - [Good News for Office 365 as Microsoft Acquires FSLogix](https://petri.com/microsoft-acquires-fslogix/): Microsoft announced on November 19 that they had acquired FSLogix, a developer of software aimed at easing the pains of VDI deployments. - [Patch Tuesday November 2018](https://petri.com/patch-tuesday-november-2018/): Microsoft rereleases Windows Server 2019 and Windows 10 version 1809, and patches 62 flaws, 13 of which are rated critical. - [Unifying Office 365 Sensitivity Labels with Azure Information Protection](https://petri.com/unifying-office-365-sensitivity-labels/): The new sensitivity labels available in Office 365 bring marking and protection functionality for Exchange and SharePoint previously available with AIP. - [What’s New in Windows 10 Version 1809 For IT Professionals](https://petri.com/whats-new-in-windows-10-version-1809-for-it-professionals/): In today’s Ask the Admin, Russell takes look at what’s new in Windows 10 version 1809 for system administrators and... - [Cross Platform Azure Az PowerShell Modules](https://petri.com/cross-platform-azure-az-powershell-modules/): In this post, I will discuss the preview “Az” PowerShell modules that are designed to be a replacement for the older AzureRM modules and AzureRM.Netcore. - [Microsoft's Releasing Tools to let Companies Build their Own Cortana](https://petri.com/microsofts-releasing-tools-to-let-companies-build-their-own-cortana/): Microsoft has released a new set of tools that will allow companies to build their own version of Cortana. - [Microsoft's Bringing Cognitive Services to a Container Near You](https://petri.com/microsofts-bringing-cognitive-services-to-a-container-near-you/): Microsoft is working to extend the reach of its cognitive services with the release of new features that can run... - [Customer Lockbox Preview for Azure VMs](https://petri.com/customer-lockbox-preview-for-azure-vms/): This post will explain what the preview for Customer Lockbox for Azure virtual machines is and how to enable it and use the feature. - [Dutch Report Slams Microsoft for GDPR Violations in Office](https://petri.com/dutch-report-slams-microsoft-gdpr-violations/): A report prepared for the Dutch Government slams Microsoft for GDPR personal data violations discovered in Office 2016 and Office 365. - [Microsoft Re-Releases Windows 10, 1809 - 30 Month Support Window Starts Today](https://petri.com/microsoft-re-releases-windows-10-1809-30-month-support-window-starts-today/): Microsoft is re-releasing Windows 10 1809 and the company is promising a commitment to improved quality but the question is... - [What to Expect when you Migrate to SharePoint Online](https://petri.com/what-to-expect-when-you-migrate-to-sharepoint-online/): As Microsoft begins to roll out the next generation of on-premises version of SharePoint, you may be considering moving to... - [What Does IBM’s Acquisition of Red Hat mean for the Hybrid Cloud?](https://petri.com/what-does-ibms-acquisition-of-red-hat-mean-for-the-hybrid-cloud/): A lot is changing in the world of Hybrid Cloud and IBM is making a big play to win the... - [How To Install Puppet Enterprise on Red Hat Linux](https://petri.com/how-to-install-puppet-enterprise-on-red-hat-linux/): Russell shows you how to install Puppet Enterprise server version 7 on a Red Hat Linux VM running on Hyper-V. - [Surface Go with LTE Arrives November 20th, Starting at $679](https://petri.com/surface-go-with-lte-arrives-november-20th-starting-at-679/): Microsoft's Surface Go with LTE arrives later this month but it won't come cheap. - [Microsoft Plans New Migration Tools to Move G Suite to Office 365](https://petri.com/new-migration-tools-g-suite-to-office-365/): Microsoft plans to deliver new migration tools to move Google G Suite email, contact, and calendar data to Office 365 (which means Exchage Online) by Q2 2019. - [7 Ways to Authenticate Users and Devices in Windows 10](https://petri.com/7-ways-to-authenticate-users-and-devices-in-windows-10/): In today’s Ask the Admin, I’ll look at all the different ways Windows 10 users and devices can authenticate with... - [With Windows 1809 Delayed, OEMs are Shipping New Devices With Unsupported Software](https://petri.com/with-windows-1809-delayed-oems-are-shipping-new-devices-with-unsupported-software/): Because Windows 10 1809 is delayed, Microsoft's partners are now shipping new hardware running on unsupported software. - [Windows 10 Activation Servers Hit A Snag, Deactivates Legitimate Installs of Windows](https://petri.com/windows-10-activation-servers-hit-a-snag-deactivates-legitimate-installs-of-windows/): If your install of Windows 10 is suddenly no longer activated, Microsoft is aware of the issue, but we don't... - [Exchange Online Introduces Office 365 Privileged Access Management](https://petri.com/exchange-online-office-365-privileged-access-management/): Microsoft has made privileged access management (PAM) generally available for Office 365, but in reality it's only Exchange Online that supports the new feature. - [Self-Encrypting SSDs Vulnerable to Attack, Microsoft Warns](https://petri.com/self-encrypting-ssds-vulnerable-to-attack-microsoft-warns/): Researchers from Radboud University in the Netherlands, Carlo Meijer and Bernard van Gastel, have published a paper claiming that encryption... - [EUC and VMware Cloud on AWS Announcements from VMworld Europe 2018](https://petri.com/euc-and-vmware-cloud-on-aws-announcements-from-vmworld-europe-2018/): At this year’s VMworld Europe 2018 in Barcelona VMware made a number of announcements about the new enhancements to their... - [Microsoft's Plan to Automatically Email Office 365 Users Is A Rare Disconnect](https://petri.com/microsofts-plan-to-automatically-email-office-365-users-is-a-rare-disconnect/): Microsoft has scrapped plans to send out tips and tricks email to Office 365 customers after harsh feedback from IT... - [Acompli Founder and Cortana Boss, Javier Soltero, To Depart Microsoft](https://petri.com/accompli-founder-and-cortana-boss-javier-soltero-to-depart-microsoft/): After acquiring the app, Microsoft rebranded it to Outlook and the rest is history; the email app remains one of... - [Teams PowerShell Module Gets a Refresh](https://petri.com/teams-powershell-module-refresh/): Microsoft has updated the Teams PowerShell module to version 0.9.5. The best thing about the refresh is that the Get-Team cmdlet works. - [What’s New in Windows 10 Version 1809 For Users](https://petri.com/whats-new-in-windows-10-version-1809-for-users/): In today’s Ask the Admin, I’ll look at what’s new in Windows 10 version 1809 for business users. - [Azure Launches DC-Series Confidential Compute VM Preview](https://petri.com/azure-launches-dc-series-confidential-compute-vm-preview/): Microsoft launched a new kind of Azure virtual machine using new Intel hardware features to offer a secure computing platform for secure data processing. - [Using Exchange Address Book Policies with Teams](https://petri.com/using-exchange-address-book-policies-teams/): Teams borrows from many other Office 365 applications to build its functionality.The latest component taken is Exchange Online address book policies. - [Everything You Need to Know About Azure Infrastructure – October 2018 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-october-2018-edition/): October was a busy time for Azure announcements, here's what you need to know about the announcements last month. - [Paul Thurrott's Short Takes: November 2](https://petri.com/paul-thurrotts-short-takes-november-2/): Because it's summer in November, this edition of Short Takes looks at cloud comparisons, Chinese software piracy, Microsoft loves the... - [Everything you need to know about Office 365 – October 2018](https://petri.com/everything-you-need-to-know-about-office-365-october-2018/): Read about the news and notes for Office 365 for October 2018. It includes Teams, OneDrive, Microsoft 365, Halloween, and too many hastags. - [Everything you need to know about SharePoint – October 2018](https://petri.com/everything-you-need-to-know-about-sharepoint-october-2018/): A day late, but not a dollar short, this will give you all of the late breaking news and notes you need for SharePoint from October 2018. - [Everything You Need to Know About Windows – October 2018](https://petri.com/everything-you-need-to-know-about-windows-october-2018/): Microsoft bungles rollout of the Windows 10 October 2018 update, Windows Server 2019 skips RTM, and Always-Connected PCs are the... - [Does Your Office 365 Tenant Need Backups?](https://petri.com/determining-need-office-365-backups/): Do you need to backup Office 365 data? The question isn't simple because technology changes all the time and it's hard to backup some applications.. - [Windows Server 2019 Essentials Gets Stripped Back](https://petri.com/windows-server-2019-essentials-gets-stripped-back/): Microsoft says that it is working on some recommendations for its small business customers on how best to replace the... - [Microsoft Stream Mobile App for iOS has arrived](https://petri.com/microsoft-stream-mobile-app-for-ios-has-arrived/): Microsoft Stream iPhone App has arrived and here's what you need to know. - [Purging Offensive Material from Teams](https://petri.com/purging-offensive-material-teams/): Teams is a great place to have conversations, but sometimes certain messages need to be purged.How can Office 365 admins do this? - [Microsoft Kills Support for Teams App on Windows 10 S](https://petri.com/microsoft-kills-support-for-teams-app-on-windows-10-s/): Microsoft is ending support for its Teams app on Windows 10 S, the rug gets pulled out late next month. - [Microsoft's 800 Million Challenge](https://petri.com/microsofts-800-million-challenge/): Microsoft has shared a few statistics about Windows 10 and Windows itself which paints a picture of the challenge ahead... - [Windows Defender Gets Put in the Sandbox](https://petri.com/windows-defender-gets-put-in-the-sandbox/): Microsoft is putting Defender into a sandbox as the company looks to lock down the platform against future attacks. - [Small Businesses Targeted by 43% of Cyberattacks](https://petri.com/small-businesses-targeted-by-43-of-cyberattacks/): According to SCORE, the US association for small businesses, a survey conducted for National Cybersecurity Awareness Month shows that 43%... - [IBM is buying Red Hat in $34 billion Bid to Rule the Hybrid Cloud](https://petri.com/ibm-is-buying-red-hat-in-34-billion-bid-to-rule-the-hybrid-cloud/): IBM is buying Red Hat to help boost its hybrid-cloud operations as well as its portfolio of security products. - [With Acquisition Complete, Microsoft Commits to GitHub](https://petri.com/with-acquisition-complete-microsoft-commits-to-github/): Microsoft now owns GitHub and paid $7. 5 billion for the privilege but the big question is what happens next? - [Paul Thurrott's Short Takes: October 26](https://petri.com/paul-thurrotts-short-takes-october-26/): Because it's that time of the quarter, this edition of Short Takes looks a bit more closely at Microsoft's most... - [Office 365 Soars to 155 Million Active Users](https://petri.com/office-365-soars-155-million-active-users/): Office 365 now has 155 monthly active users and is gaining new users at over 3 million seats per month. That's impressive by any measure. - [Microsoft's Enterprise Windows 10 Battle Hits the Halfway Mark](https://petri.com/microsofts-enterprise-windows-10-battle-hits-the-halfway-mark/): Microsoft says that half of its commercial customers are now running Windows 10 but how will they get the other... - [Microsoft Posts $29.1 Billion for Q1 Earnings With Strong Growth Across the Org](https://petri.com/microsoft-posts-29-1-billion-for-q1-earnings-with-strong-growth-across-the-org/): Microsoft reported their first-quarter earnings for 2019, calendar Q3, with $29. 1 billion in revenue, an increase of 19% when... - [Managing Windows 10 Updates in a Small Businesses Environment](https://petri.com/managing-windows-10-updates-in-a-small-businesses-environment/): In this article, Russell explains the ways you can manage Windows Update to give you a more reliable computing experience. - [Azure AD Domain Services Gets a Few Improvements](https://petri.com/azure-ad-domain-services-gets-a-few-improvements/): In this post, I will share some information about improvements that were made to Azure Active Directory (Azure AD) Domain Services. - [What Is Microsoft Entra ID Conditional Access? (And How To Use It)](https://petri.com/understanding-azure-active-directory-conditional-access/): Conditional Access is a security feature that allows organizations to control corporate resource access based on certain conditions. Common reasons... - [Windows Server 2019 Skips RTM, But What Does that Mean?](https://petri.com/windows-server-2019-skips-rtm-but-what-does-that-mean/): Windows Server 2019 is the first version of Microsoft’s server OS not to RTM. But what does that mean in... - [SharePoint Server 2019 Now Generally Available](https://petri.com/sharepoint-server-2019-now-generally-available/): Microsoft is making SharePoint Server 2019 now generally available which means it may be ready for your production environment. - [Container Availability and Disaster Recovery](https://petri.com/container-availability-and-disaster-recovery/): Looking to dive into containers as a possible recovery option but don't know where to start? Mike Otey has you... - [Exchange 2019 Server On-Premises Debuts](https://petri.com/exchange-2019-server-debuts/): Microsoft has shipped Exchange 2019, the latest in a long line of enterprise-class email servers stretching back to 1996. The latest version runs on Windows 2019. - [Don't Be Stupid - Microsoft Is Not Killing Surface](https://petri.com/dont-be-stupid-microsoft-is-not-killing-surface/): This post explains why the Canalys guess that Satya Nadella will kill off the Microsoft Surface line is just silly and how Surface is more than a PC. - [Modern SharePoint Web Parts — Quick Links Web Part](https://petri.com/modern-sharepoint-web-parts-quick-links-web-part/): Jasper Oosterveld, Microsoft MVP, dives into the latest developments around Modern SharePoint Web Parts. - [Following Development Challenges, Next Gen HoloLens Targeted for Q2, 2019](https://petri.com/following-development-challenges-next-gen-hololens-targeted-for-q2-2019/): The release of Microsoft's next-generation HoloLens has been pushed back into 2019 but the company still has plenty of time. - [Managing Office 365 Guest Accounts](https://petri.com/managing-office-365-guest-accounts/): Many Office 365 applications (Teams, Groups, Planner, SharePoint, etc.) now support external guest access. you might end up with a lot of guests. - [Everything but Windows is what will save Windows](https://petri.com/everything-but-windows-is-what-will-save-windows/): Microsoft has shifted its priorities and while it doesn't always include Windows, this is what will save Windows. - [What is Standard SSD Managed Disks?](https://petri.com/what-is-standard-ssd-managed-disks/): In this post, I will discuss the general availability of Azure’s Standard SSD managed disks, and what this means for virtual machines. - [Forms – an Undervalued Part of Office 365](https://petri.com/forms-office-365/): Microsoft Forms is available through Office 365 subscriptions, but how many people actually use Forms? As it turns out, Forms are easy to develop and share - [Surface Pro 6: A Cautious But Quality Upgrade](https://petri.com/surface-pro-6-a-cautious-but-quality-upgrade/): Microsoft's Surface Pro 6 packs a new CPU and a new color but is it the same old Pro or... - [Patch Tuesday October 2018](https://petri.com/patch-tuesday-october-2018/): This month sees the Windows 10 October 2018 Update pulled from Windows Update, 49 vulnerabilities patched in Windows, and the... - [What is Azure Public IP Address Prefix?](https://petri.com/what-is-azure-public-ip-address-prefix/): In this post, I will explain what the new Public IP Address preview Azure feature offers customers of Microsoft’s cloud service. - [Modern SharePoint Web Parts — Recent Documents Web Part](https://petri.com/modern-sharepoint-web-parts-recent-documents-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Paul Thurrott's Short Takes: October 12](https://petri.com/paul-thurrotts-short-takes-october-12/): Because I'm between continents at the moment, this edition of Short Takes looks at Microsoft's abortive release of Windows 10... - [Microsoft Shuffles the Deck Again, Cortana Finds a new Home](https://petri.com/microsofts-shuffles-the-deck-again-cortana-finds-a-new-home/): Microsoft is moving Cortana from AI to Office which likely signals a big shift in the way the company is... - [How Event-Based Retention Works for Office 365](https://petri.com/office-365-event-based-retention/): Office 365 classification labels dictate how workloads like SharePoint and Exchange retain content. Now you can control retention based on events. - [Top Ways Businesses are Using the Hybrid Cloud](https://petri.com/top-ways-businesses-are-using-the-hybrid-cloud/): Today the hybrid cloud has become the new norm for many businesses and in this post, Mike shows you how... - [As Microsoft Struggles to Manage Feedback, Windows 10 1809 Has Been Re-Released](https://petri.com/as-microsoft-struggles-to-manage-feedback-windows-10-has-been-1809-re-released/): Microsoft has re-released Windows 10 1809 after fixing an issue that was deleting content but the company is still trying... - [OWA Gets a Refresh](https://petri.com/owa-gets-refresh/): Microsoft has released a new version of Outlook Web Access (OWA) to preview. Office 365 targeted release tenants can try the new UI. - [Microsoft Pulls Windows 10 October 2018 Update from Windows Update](https://petri.com/microsoft-pulls-windows-10-october-2018-update-from-windows-update/): Microsoft acknowledges disappearing files after installation of the Windows 10 October 2018 Update (version 1809) and pauses rollout. - [Microsoft's Hiding its Productivity Future Behind A Game Streaming Service](https://petri.com/microsofts-hiding-its-productivity-future-behind-a-game-streaming-service/): This week, Microsoft announced a new game streaming platform called xCloud but it's what they are not saying that is... - [Amazon Announces AWS Storage Gateway Hardware Appliance](https://petri.com/amazon-announces-aws-storage-gateway-hardware-appliance/): Amazon recently announced a new AWS Storage Gateway hardware appliance that can be used to connect an organization’s existing on-premise... - [What is Azure Front Door?](https://petri.com/what-is-azure-front-door/): In this post, I will discuss another surprise service announcement from Microsoft Ignite, Azure Front Door, and answering what this service is. - [Microsoft Pulls October Update, Windows Server 2019 Missing as Well](https://petri.com/microsoft-pulls-october-update-citing-issues-with-content-deletion/): Microsoft has paused its rollout of Windows 10 1809 after users were reporting that it was deleting content from My... - [Changes to Azure Germany Operations](https://petri.com/changes-to-azure-germany-operations/): Microsoft recently announced the opening dates of the two new Azure regions in Germany, and the freezing of the Azure Germany sovereign regions. - [Connecting LinkedIn and Office 365](https://petri.com/connecting-linkedin-office-365/): You can connect LinkedIn to Office 365 so that Office 365 users are able to look up LinkedIn contacts from applications like OWA and SharePoint Online. - [Windows 10 October Update Is Deleting Content, Users Beware](https://petri.com/windows-10-october-update-is-deleting-content-users-beware/): Microsoft's latest Windows 10 release is causing serious headaches for some users as the update is deleting content from personal... - [Microsoft Takes the Cautious Route With Surface Updates](https://petri.com/microsoft-takes-the-cautious-route-with-surface-updates/): Microsoft updated several of its core products this week and announced a new peripheral; while they didn't hit a home... - [What is Azure Firewall](https://petri.com/what-is-azure-firewall-2/): In this post, I will discuss the Azure Firewall, a cloud-scale firewall service that was made generally available at the recent Microsoft Ignite conference. - [Yammer’s New Vision – More Integrated with Azure and Office 365](https://petri.com/yammer-new-vision-office365/): At the Ignite conference last week, GM Murali Sitaram laid out a new vision for Yammer and explained how the product will be better integrated with Office 365 and Azure - [Microsoft Ignite – New Windows 10 Features Coming to Intune](https://petri.com/microsoft-ignite-new-windows-10-features-coming-to-intune/): Intune plays an important part in Microsoft’s modern desktop strategy, allowing organizations to deploy and manage Windows 10 without an... - [Everything you need to know about SharePoint - September 2018](https://petri.com/everything-you-need-to-know-about-sharepoint-september-2018/): The month of Septemeber was filled with SharePoint news from Ignite 2018 and Shane helps you find the signal in... - [Windows Virtual Desktop is Multi-User VDI in the Azure Cloud](https://petri.com/windows-virtual-desktop-is-multi-user-vdi-in-the-azure-cloud/): Microsoft announced at its Ignite conference on Monday a new service called Windows Virtual Desktop that will preview later this... - [Everything you need to know about Office 365 September 2018](https://petri.com/everything-you-need-to-know-about-office-365-september-2018/): With Ignite happening last month, there was a lot of Office 365 news and Shane distills it down into an... - [Everything You Need to Know About Azure Infrastructure – September 2018 Edition](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-september-2018-edition/): Septemeber was full of Azure announcements from Ignite, Aidan breaks all the news down so that it is easier to... - [Everything You Need to Know About Windows – September 2018](https://petri.com/everything-you-need-to-know-about-windows-september-2018/): This month sees lots of announcements coming out of Microsoft’s annual Ignite conference for IT pros, including about a preview... - [Paul Thurrott's Short Takes: September 28](https://petri.com/paul-thurrotts-short-takes-september-28/): Because hazy, hot, and humid doesn't even begin to explain the weather in Orlando, this edition of Short Takes looks... - [What Is Cortana's Future? Here's My Prediction](https://petri.com/what-is-cortanas-future-heres-my-prediction/): The future of Cortana may be vastly different than what most imagined but it makes a lot of sense for... - [New Search Experiences Also coming to Office 365](https://petri.com/new-search-experiences-also-coming-to-office-365/): In the same way Microsoft is introducing a new modern search experience in modern SharePoint Online (SPO) sites, the same... - [Managing Teams Through the Teams and Skype for Business Online Admin Center](https://petri.com/managing-teams-admin-center/): Microsoft announced at Ignite that you can soon manage Teams through the Teams and Skype for Business Online Admin Center. Office 365 - [Microsoft Ignite 2018 - Azure Management And Governance News](https://petri.com/microsoft-ignite-2018-azure-management-and-governance-news/): This post includes some of the great news about managing and ensuring governance in Microsoft Azure that was shared at the Ignite conference this week. - [Surface Hub 2's Best Feature Isn't The Screen or Hinge](https://petri.com/surface-hub-2s-best-feature-isnt-the-screen-or-hinge/): Microsoft's Surface Hub 2 attracted a lot of attention for its hardware but it's the software that will steal the... - [Microsoft Ignite 2018 - Azure Miscellaneous News](https://petri.com/microsoft-ignite-2018-azure-miscellaneous-news/): Aidan shares the latest information that I have on various Azure announcements that don’t easily fit into other categories. - [The Tenth Version of Exchange Shows There’s Life in this On-Premises Server](https://petri.com/exchange2019-email-server/): Microsoft released lots of information about Exchange 2019 at the Ignite conference. Administrators will love some of the new features. - [Windows Admin Center 1809 Reaches General Availability](https://petri.com/windows-admin-center-1809-reaches-general-availability/): Just before Microsoft’s Ignite conference got started this week, version 1809 of the Windows Admin Center and SDK reached general... - [Office 2019 Now Available for Mac and PC](https://petri.com/office-2019-now-available-for-mac-and-pc/): Microsoft is making Office 2019 available starting today but only for a small group of customers; consumers will have to... - [Microsoft Ignite 2018  - Azure Storage News](https://petri.com/microsoft-ignite-2018-azure-storage-news/): This week at Ignite, Microsoft has announced a sizeable amount of data storage news and Aidan breaks it all down... - [Is Microsoft's Surface Hub 2 Delayed? It's Complicated](https://petri.com/is-microsofts-surface-hub-2-delayed-its-complicated/): Microsoft has announced the availability of Surface Hub 2 for 2019 but it's complicated and the next-gen OS won't arrive... - [Microsoft's Windows Virtual Desktop Delivers A Modern Desktop with Azure](https://petri.com/microsofts-windows-virtual-desktop-delivers-a-modern-desktop-with-azure/): Windows Virtual Desktop is a new cloud service that delivers a multi-user Windows 10 experience which is optimized to work... - [SQL Server 2019 Now Available In Public Preview](https://petri.com/sql-server-2019-now-available-in-public-preview/): Microsoft is making available the next generation of on-premises SQL Server software but be aware that this is a preview... - [Windows Server 2019 Arrives in October](https://petri.com/windows-server-2019-arrives-in-october/): Microsoft has announced that Windows Server 2019 will arrive next month and if you are still running 2008, you need... - [Cortana's New Skills Kit Hopes To Make it the AI for the Enterprise](https://petri.com/cortanas-new-skills-kit-hopes-to-make-it-the-ai-for-the-enterprise/): Microsoft is working on a new skills kit for enterprise customers that will make it easier to integrate the digital... - [Microsoft's New Unified Search Looks to Crack the Internal Content Discovery Nut](https://petri.com/microsofts-new-unified-search-looks-to-crack-the-internal-content-discovery-nut/): Microsoft is bringing a new unified search experience to Microsoft 365 that it hopes will making - [Microsoft Ignite 2018 - Azure Networking News](https://petri.com/microsoft-ignite-2018-azure-networking-news/): In this post, I will discuss some of the headline news about networking in Azure that has emerged this week at Microsoft Ignite 2018. - [Microsoft Ignite 2018  - Azure Virtual Machines News](https://petri.com/microsoft-ignite-2018-azure-virtual-machines-news/): In this post, I will share some of the news about Azure virtual machines from the Microsoft Ignite 2018 conference. - [No Skype for Business Online for Small Office 365 Tenants](https://petri.com/no-skype-for-business-online-small-office-365-tenants/): In news gently leaking out, Microsoft is set to announce that new Office 365 tenants with 500 or fewer licensed seats will have to use Teams. - [Should you be Using Disaster-Recovery-as-a-Service?](https://petri.com/should-you-be-using-disaster-recovery-as-a-service/): There’s no doubt that building disaster recovery (DR) plans for your organization can be tough. There are an amazing number... - [Paul Thurrott's Short Takes: September 21](https://petri.com/paul-thurrotts-short-takes-september-21/): Because half the planet is waiting for their new iPhone to arrive this morning, this edition of Short Takes looks... - [New Features Start Showing up in Azure Portal Ahead of Ignite](https://petri.com/some-pre-ignite-azure-storage-news/): In this post, I share some Azure storage news that has either appeared or been announced for blob storage and the Azure Portal. - [Understanding Application Security Groups in the Azure Portal](https://petri.com/understanding-application-security-groups-in-the-azure-portal/): This post will show how to deploy application security groups to create granular (per-NIC/virtual machine) network security group rules in the Azure Portal. - [Microsoft Releases Teams Administrative Roles](https://petri.com/microsoft-releases-teams-administrative-roles/): To make things easier for Office 365 tenant administrators, Microsoft has released four new administrative role for Teams. - [Modern SharePoint - Working with Document Templates](https://petri.com/modern-sharepoint-working-with-document-templates/): Jasper Oosterveld takes a look at the new document template experience within the Modern SharePoint Document Libraries. - [Docker For Windows: Create a Linux Container on Windows 10](https://petri.com/docker-for-windows-create-a-linux-container-on-windows-10/): Looking to create a Linux container in Windows 10? Russell shows you how with easy step-by-step instructions. - [Google Announces "What-If" Tool for Analyzing Machine Learning Models](https://petri.com/google-announces-what-if-tool-for-analyzing-machine-learning-models/): Google recently announced a new “What-If” tool that can be used to analyze changes to machine learning models. - [Looking Forward to Office 365 at Ignite 2018](https://petri.com/office-365-ignite-2018/): MIcrosoft has scheduled 1,500+ sessions for the Ignite 2018 conference in Orlando next week. What's happening for Office 365? Exchange, SharePoint, Teams. - [News Forecast - Ignite Downpour](https://petri.com/news-forecast-ignite-downpour/): Microsoft Ignite is coming – and that means there will be lots of cloud news coming out of Microsoft - here's what I'm hoping will be discussed. - [Microsoft 365 Closes the IT Loop With Managed Desktop Service](https://petri.com/microsoft-365-closes-the-it-loop-with-managed-desktop/): Microsoft has pulled the covers off of its new managed desktop service which will provide Surface hardware and service the... - [Replicating Between File Servers Using Azure File Sync](https://petri.com/replicating-between-file-servers-using-azure-file-sync/): In this post, I will explain how you can replicate folders between multiple Windows Server file servers using Azure File Sync. - [Microsoft Details How and Why its Data Center went Offline This Month](https://petri.com/microsoft-details-how-and-why-its-data-center-went-offline-this-month/): Microsoft has detailed the exact reasons why its data centers went offline earlier this month and why it took longer... - [Patch Tuesday September 2018](https://petri.com/patch-tuesday-september-2018/): Microsoft patches 62 vulnerabilities, 17 of which are rated Critical. Including a patch for the zero-day ALPC vulnerability that was... - [Paul Thurrott's Short Takes: September 14](https://petri.com/paul-thurrotts-short-takes-september-14/): Because Microsoft can't stop punching Windows 10 in the face, this edition of Short Takes looks at a foolish new... - [Azure Update Management Part 2: Schedule Updates, Check Update Compliance, and Enroll Non-Azure VMs](https://petri.com/azure-update-management-part-2-schedule-updates-check-update-compliance-and-enroll-non-azure-vms/): In the first part of this series, Russell showed you how to enroll Azure virtual machines to Azure Update Management.... - [Preserving Teams Messages for an Ex-Employee](https://petri.com/preserving-teams-messages-ex-employee/): When someone leaves your company, you might need to preserve their Office 365 data. Email, OneDrive, and SharePoint are straightforwards, but what about Teams? - [How to Use Azure Update Manager](https://petri.com/azure-update-management-part-1-overview-and-enrolling-azure-vms/): In today’s Ask the Admin, Russell shows you how to enroll Azure virtual machines to Azure Update Management and provide... - [Synchronizing Hybrid Cloud Data with Azure SQL Data Sync](https://petri.com/synchronizing-hybrid-cloud-data-with-azure-sql-data-sync/): Azure SQL Data Sync is useful where data needs to be unidirectionally or bidirectionally synchronized across several Azure SQL Databases... - [Expectations for Microsoft's Upcoming 'Hardware' Event](https://petri.com/expectations-for-microsofts-upcoming-hardware-event/): Microsoft has announced a hardware event for early next month but it's important to set your expectations before the curtain... - [Publishing SharePoint News to Teams](https://petri.com/publishing-sharepoint-news-teams/): SharePoint Online makes it easy to publish news items, but people might miss the news if it only exists there. Publishing to Teams spreads your message - [What Happened to Microsoft’s Clouds Last Week?](https://petri.com/what-happened-to-microsofts-clouds-last-week/): In this post, I will explain how a lighting strike to one of Microsoft’s data centers in America affected Microsoft cloud customers around the world. - [How To Stop Windows 10 Updating Device Drivers](https://petri.com/how-to-stop-windows-10-updating-device-drivers/): In today’s Ask the Admin, Russell shows you how to stop Windows 10 updating device drivers automatically via Windows Update... - [What is Windows Defender Application Control?](https://petri.com/what-is-windows-defender-application-control/): In this blog post, Russell looks at the story behind Windows Defender Application Control in Windows 10. - [Paul Thurrott's Short Takes: September 7](https://petri.com/paul-thurrotts-short-takes-september-7/): Because just when I thought I was out, they pull me back in, this edition of Short Takes looks at... - [Microsoft Acknowledges it Can't Force Businesses to Modernize Their Software](https://petri.com/microsoft-acknowledges-it-cant-force-businesses-to-modernize-their-software/): With the company announcing today support changes to Office and Windows, Microsoft is throwing in the towel on trying to... - [Microsoft Promises to Fix Your Windows 10 App Compat Issue For 'Free'](https://petri.com/microsoft-promises-to-fix-your-windows-10-app-compat-issue-for-free/): With the Windows 7 support window quickly coming to an end, Microsoft is throwing everything it has to make sure... - [Microsoft is Changing Windows 10 Support Lifecycle, Again](https://petri.com/microsoft-is-changing-windows-10-support-lifecycle-again/): When Microsoft announced Windows 10 and said that they were going to move Enterprise customers to a rapid update cycle,... - [Microsoft will Offer Windows 7 Extended Security Updates Through January 2023](https://petri.com/microsoft-will-offer-windows-7-extended-security-updates-through-january-2023/): Microsoft has announced that they will offer extended support for Windows 7 but unlike with Windows XP, it will not... - [Microsoft Reverts Office Support Lifecycle Changes, Connectivity Support](https://petri.com/microsoft-reverts-office-support-lifecycle-changes-connectivity-support/): Microsoft is making changes to the lifecycle support of Office 2016 and support on Windows 8. 1 for Office. - [Breaking Old Email Habits Increases Security in Office 365](https://petri.com/breaking-old-email-habits-increases-security-office-365/): A recent survey revealed that 22% of executives in small to medium businesses continue to share email passwords. There's no way this should happen inside Office 365. - [What Is Tiering in Azure File Sync](https://petri.com/what-is-tiering-in-azure-file-sync/): In this post, I will explain what tiering is in Azure File Sync, how to enable it, and how the policy-based system works. - [Tips for Troubleshooting Azure File Sync](https://petri.com/tips-for-troubleshooting-azure-file-sync/): This how-to post will explain methods you can use to debug, troubleshoot, and solve issues with Azure File Sync, including capturing logs and traces. - [With Office 365 Offline For Some, It's Time to Remember Who Has Control of Your Data](https://petri.com/with-office-365-offline-for-some-its-time-to-remember-who-has-control-of-your-data/): Microsoft's cloud platform is having a rough day with Azure experiencing a significant outage and Office 365 inaccessible for others. - [How To Defer Windows 10 Feature Updates](https://petri.com/how-to-defer-windows-10-feature-updates/): In this Ask the Admin, Russell explains how you can defer Windows 10 Feature Updates by up to 18 months. - [Microsoft Edge – Performance vs. Battery Life](https://petri.com/microsoft-edge-performance-vs-battery-life/): Despite Microsoft’s claim that its Edge browser in Windows 10 is faster than Mozilla Firefox and Google Chrome, putting Edge... - [Verifying Administrator Access to Office 365 User Content](https://petri.com/office-365-user-content-admin-access/): Office 365 Administrators have many ways to access user data. It's important to set up a policy to control access and then check access. Exchange SharePoint - [VMworld 2018 Executive Wrap-up: WorkSpace One, vSphere, Cloud Management](https://petri.com/vmworld-2018-executive-wrap-up-workspace-one-vsphere-cloud-management/): WorkSpace One, vSphere, Cloud Management are the hot buzzwords leaving VMworld and Mike breaks down the latest on these products... - [Everything you need to know about Office 365 – August 2018](https://petri.com/everything-you-need-to-know-about-office-365-august-2018/): It was a busy month for Office updates and if you missed any of them, you can catch up quickly... - [Everything you need to know about SharePoint – August 2018](https://petri.com/everything-you-need-to-know-about-sharepoint-august-2018/): With August coming to an end, it's time to catch up on all the SharePoint news announced this month. - [Everything You Need to Know About Azure Infrastructure – August 2018](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-august-2018/): This post will summarize what's been going on in Azure IaaS in August, and discuss a few features and services that you might have missed or forgotten. - [Everything You Need to Know About Windows – August 2018](https://petri.com/everything-you-need-to-know-about-windows-august-2018/): This month sees lots of changes in Windows Server 2019 Insider builds, Microsoft announced more efficient Windows 10 updates, and... - [Paul Thurrott's Short Takes: August 31](https://petri.com/paul-thurrotts-short-takes-august-31/): Because my kid is 20 and I need parental leave, this edition of Short Takes looks at a big boost... - [An IT Pro's Opinion of Using the Surface Pro](https://petri.com/an-it-pros-opinion-of-using-the-surface-pro/): In this opinion post, I’m going to share what my experience of owning and using a Surface Pro for work has been like over the last six months. - [Microsoft Unifies Quality Updates in Windows 10 Version 1809](https://petri.com/microsoft-unifies-quality-updates-in-windows-10-version-1809/): In this Ask the Admin, Russell explains the changes that Microsoft is making to full, delta, and express updates in... - [Microsoft's Making Office 365 Home and Personal Better, Still Can't Buy More Storage](https://petri.com/microsofts-making-office-365-home-and-personal-better-still-cant-buy-more-storage/): Microsoft is introducing new quality-of-life updates for Office 365 but they still will not let consumers buy more storage. - [Google's Next G-Suite Feature? Logging Into Windows](https://petri.com/googles-next-g-suite-feature-logging-into-windows/): Google is working to make it easier to use Windows with G-Suite and may soon enable the ability to login... - [Proving that Teams Retention Policies Work](https://petri.com/proving-teams-retention-policies-work/): You can create an Office 365 retention policy to process Teams channel conversations and personal chats, but how do you prove that the policy is working? - [Backing Up Files with Azure File Sync](https://petri.com/backing-up-files-with-azure-file-sync/): This post will explain how you can back up folders & files that have been synchronized and/or tiered to the cloud with Azure File Sync. - [Understanding Windows Server 2016’s Disaster Recovery Features](https://petri.com/understanding-windows-server-2016s-disaster-recovery-features/): If you are running Windows Server 2016, you already have a robust set of DR tools at your disposal but... - [VMworld 2018 Day 2 – Digital Transformation Stories and a Guest Appearance by Malala Yousafzai](https://petri.com/vmworld-2018-day-2-digital-transformation-stories-and-a-guest-appearance-by-malala-yousafzai/): he VMworld 2018 Day 2 keynote took a different turn than the previous day but was still packed with updates... - [Microsoft Details New Features Coming to OneDrive and SharePoint](https://petri.com/microsoft-details-new-features-coming-to-onedrive-and-sharepoint/): Later this year, Microsoft will be rolling out a set of significant updates to its SharePoint and OneDrive platforms. - [Restoring Files with Azure File Sync](https://petri.com/restoring-files-with-azure-file-sync/): In this post, I will show you how to restore files that were synchronized to the cloud, using Azure File Sync, and backups up using Azure Backup. - [Using Office 365 IM Conversation Records for eDiscovery](https://petri.com/office-365-conversation-records-ediscovery/): Teams and Skype for Business Online both capture conversation records that can be found by Office 365 eDiscovery (content) searches. - [VMworld 2018 Day 1 Keynote – VMware Bridges the Hybrid Cloud and Multi Cloud Management](https://petri.com/vmworld-2018-day-1-keynote-vmware-bridges-the-hybrid-cloud-and-multi-cloud-management/): VMWorld is happening this week and if you missed the action from day one, here's a brief summary of everything... - [Adding a 0 to the 3-2-1 Rule](https://petri.com/adding-0-3-2-1-rule/): We are all familiar with the 3-2-1 data recovery rule but as the technology modernizing, it's time to modernize how... - [Microsoft Has Fixed One of the Annoying Aspects of Teams](https://petri.com/microsoft-fixed-one-annoying-aspects-teams/): Microsoft has recently rolled out an update to Teams that fixes one of the most annoying issues with the application. - [Google Adds In-App Messaging to Firebase](https://petri.com/google-adds-app-messaging-firebase/): Google recently announced Firebase In-App Messaging, a new service that enables developers to configure triggers that send in-app messages to... - [Microsoft Brings Intune Support to To-Do](https://petri.com/microsoft-brings-intune-support/): Microsoft is finally bringing Intune support to its task management application, To-Do. - [Microsoft Teams Matches Skype Functionality, Ready For The Road Ahead](https://petri.com/microsoft-teams-matches-skype-functionality-ready-road-ahead/): Microsoft says that Teams now matches Skype for Business Online's feature set but the company still won't say when they... - [Paul Thurrott's Short Takes: August 24](https://petri.com/paul-thurrotts-short-takes-august-24/): Because this literally isn't your father's Microsoft, this edition of Short Takes looks at a nonsense puff-piece about the software... - [Install and Configure Puppet 5 Part 2: Set Up Puppet](https://petri.com/install-configure-puppet-part-2-set-puppet/): In the final part of this two-part article, Russell shows you how to install Puppet 5 on Red Hat Linux. - [New GDPR Data Loss Prevention Template Needs Some Tweaking](https://petri.com/gdpr-data-loss-prevention-template-needs-tweaking/): Microsoft has done a good job of preparing Office 365 for GDPR, but the best intentions sometimes run into difficulties. - [What’s New in Windows Server 2019](https://petri.com/whats-new-windows-server-2019/): Windows Server 2019 is all about improved support for hybrid cloud scenarios, hyper-converged infrastructure, and security. In this Ask the... - [Microsoft's Killing its Sway iOS App](https://petri.com/microsofts-killing-sway-ios-app/): Microsoft is ending support for its Sway iOS app but the company says that they are not sunsetting the entire... - [Enable OneDrive for Business Known Folder Migration](https://petri.com/enable-onedrive-business-known-folder-migration/): In this Ask the Admin, Russell explains what Known Folder Migration (KFM) is in OneDrive for Business and show you... - [Take the Petri Reader Survey for a Chance to Win a Surface Go](https://petri.com/take-petri-reader-survey-chance-win-surface-go/): Every couple of years, we poll our readers to make sure that we are covering the right content, with the... - [Removing the License for an Office 365 Feature with PowerShell](https://petri.com/removing-license-for-office-365-powershell/): The licensing model for Teams is now per-user instead of tenant-wide. That's fine if you leave everyone enabled for Teams, but Office 365 Admin Center - [How To Deploy Azure File Sync](https://petri.com/deploy-azure-file-sync/): In this post, I will show you, with step by step instructions, how to deploy Azure File Sync to synchronize files to Azure. - [Ahead of Ignite, Microsoft will Combine Office and Microsoft 365 Roadmaps](https://petri.com/ahead-of-ignite-microsoft-will-combine-office-and-microsoft-365-road-maps/): Ahead of Microsoft's Ignite conference, the company will combine the roadmaps for Office 365 and Microsoft 365 signaling that these... - [Windows Search Improvements in Redstone 5](https://petri.com/windows-search-improvements-redstone-5/): In this Ask the Admin, Russell looks at how Microsoft is improving Windows Search in Windows 10 version 1809. - [Patch Tuesday August 2018](https://petri.com/patch-tuesday-august-2018/): This month sees a host of memory corruption vulnerabilities patched and Intel discovers a new speculative execution side channel flaw. - [Paul Thurrott's Short Takes: August 17](https://petri.com/paul-thurrotts-short-takes-august-17/): Because jetlag is the worst, this edition of Short Takes looks at Microsoft's most recent Cortana defeats, stepping back from... - [Blocking Guests from Classified Office 365 Groups (and Teams)](https://petri.com/blocking-guests-classified-office-365-groups-teams/): Office 365 Groups and Teams can hold tons of secrets that we don't want to share outside our organization. You can block guest users from groups. - [New Search Experiences Arriving (finally) to SharePoint Online](https://petri.com/new-search-experiences-arriving-finally-sharepoint-online/): Search in SharePoint Online (SPO) is one of the areas in the platform where we will see more changes in... - [Review: Microsoft's Surface Go hits the Mark for the First Line Worker](https://petri.com/surface-go-review/): Microsoft's Surface Go is smaller in every way but does the limited performance impact it's big picture dreams? - [Azure File Sync Requirements](https://petri.com/azure-file-sync-requirements/): This post will detail the system requirements and considerations for planning an Azure File Sync deployment. - [Azure File Sync is now Generally Available](https://petri.com/azure-file-sync-now-generally-available/): This post will discuss what the general availability of Azure File Sync will mean to customers that are continuing to use on-premises file servers. - [Migrating SharePoint, the Testing Plan, and what was really tested](https://petri.com/migrating-sharepoint-testing-plan-really-tested/): We all know that testing your migration plan should be done but realistically, that's not always a luxury you may... - [Network Principles for Office 365 Connectivity](https://petri.com/network-principles-office-365-connectivity/): Two simple principles are key for Office 365 network connectivity. Keep things simple and get user data to a Microsoft edge node as quickly as possible. - [Amazon Announces Availability of Serverless Aurora MySQL](https://petri.com/amazon-announces-availability-serverless-aurora-mysql/): Amazon recently announced that a serverless version of their Aurora MySQL database product is now generally available. - [Windows 10 Enterprise for Remote Sessions](https://petri.com/windows-10-enterprise-remote-sessions/): In this Ask the Admin, I’ll look at a new Windows 10 SKU, Windows 10 Enterprise for Remote Sessions, that... - [Multiple Ways to Backup SQL Server in an Azure VM](https://petri.com/multiple-ways-backup-sql-server-azure-vm/): This post will discuss several ways that you can back up SQL Server which is running in an Azure virtual machine. - [‘InPrivate Desktop’ Coming to Windows 10 Enterprise](https://petri.com/inprivate-desktop-coming-windows-10-enterprise/): Microsoft is working on a new Windows 10 feature called ‘InPrivate Desktop’ that will make running risky applications, easier. - [Debugging Teams Clients When Something Goes Wrong](https://petri.com/debugging-teams-clients/): Most of the time, the Teams clients run along without a problem. But like all software, they have their moments. Here's how to Office 365 - [Hybrid Cloud Trends in 2018](https://petri.com/hybrid-cloud-trends-in-2018/): The hybrid cloud is growing in popularity as the benefits are quickly realized; here are some of the trends seen... - [Don’t Upgrade Crap](https://petri.com/dont-upgrade-crap/): Now that we have the SharePoint 2019 Public Preview in our hands we can really start getting serious about planning... - [The Ups and Downs of the Deleting Microsoft 365 Users Wizard](https://petri.com/deleting-microsoft-365-users-wizard/): Microsoft issued a new wizard to delete Office 365 accounts last week. It has the normal quota of cute graphics and some glitches to boot - [Turn On Windows 10 NTFS Case Sensitivity](https://petri.com/turn-windows-10-ntfs-case-sensitivity/): In this Ask the Admin, Russell show's you how to enable the flag on a folder and explain why you... - [Modern SharePoint Web Parts — Weather Web Part](https://petri.com/modern-sharepoint-web-parts-weather-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Microsoft's 'Immersive Productivity' Agenda Extends to Visio](https://petri.com/microsofts-immersive-productivity-agenda-extends-visio/): Next up on Microsoft's Mixed Reality agenda is bringing the platform to Visio and we shouldn't have to wait too... - [Google Announces Istio Version 1.0](https://petri.com/google-announces-istio-version-1-0/): Google has announced the launch of version 1. 0 of the open-source Istio service mesh platform. - [How to Resize an Azure Virtual Machine](https://petri.com/resize-azure-virtual-machine/): This step-by-step how-to post will instruct you on how to change the series and size of an Azure virtual machine. - [Paul Thurrott's Short Takes: August 3](https://petri.com/paul-thurrotts-short-takes-august-3/): Because one trillion, that's why, this edition of Short Takes looks at Apple's $1 trillion market capitalization and how it... - [First Look: Microsoft's Surface Go - The Tablet for the First Line](https://petri.com/first-impressions-microsofts-surface-go-the-tablet-for-the-front-line/): Microsoft's Surface Go is a smaller version of the Pro but it does cut a few corners to keep the... - [Checking Exchange Online Email Addresses to Make Sure They're Not Compromised](https://petri.com/checking-office-365-email-addresses-compromise/): Scammers and spammers love having large databases of email addresses to use for their nefarious purposes. Your Exchange Online addresses might be there. - [Install and Configure Puppet 5](https://petri.com/install-configure-puppet-5-part-1-set-red-hat-linux-hyper-v/): As a companion to my series on managing Windows Server with Puppet Enterprise, this short two-part article will guide you... - [Everything You Need to Know About Azure Infrastructure – July 2018](https://petri.com/everything-need-know-azure-infrastructure-july-2018/): July was a busy month for Azure announcements, in this post, we wrap it all up so that you can... - [Everything You Need to Know About Windows – July 2018](https://petri.com/everything-need-know-windows-july-2018/): This month Microsoft trials a new managed desktop service as part of Microsoft 365 in the US and UK, Windows... - [Everything You Need to Know About Office 365 - July 2018](https://petri.com/everything-you-need-to-know-about-office-365-july-2018/): The month of July had quite a few Office 365 announcements, here's a wrap-up of what was announced. - [Everything You Need to Know About SharePoint - July 2018](https://petri.com/everything-need-know-sharepoint-july-2018/): It was a busy month of SharePoint announcements, Shane wraps it all up into one easy to digest post. - [Dealing with Protected Documents Found by Office 365 Content Searches](https://petri.com/protected-documents-office-365-content-searches/): Office 365 content searches can find all sorts of information, but they cannot decrypt protected files in SharePoint and OneDrive for Business sites. - [What is Azure Firewall?](https://petri.com/what-is-azure-firewall/): In this post, I will explain what the new Azure Firewall, recently launched in preview, can do and what it cannot at this time. - [Azure AD Password Protection to Prevent Password Spraying Attacks](https://petri.com/azure-ad-password-protection-to-prevent-password-spraying-attacks/): In today’s Ask the Admin, Russell takes a look at Azure AD Password Protection and why Microsoft believes it will... - [Aidan's Essential Azure Toolkit (July 2018)](https://petri.com/aidans-essential-azure-toolkit-july-2018/): In this post, I’ll share some of the tools that I install on my PC to learn, teach & write about, and work with Microsoft Azure. - [Microsoft Releases Remote Desktop Web Client for Windows Server 2016 and 2019 Preview](https://petri.com/microsoft-releases-remote-desktop-web-client-windows-server-2016-2019-preview/): Microsoft has announced Remote Desktop Web Client general availability for Windows Server 2016 and 2019 Preview. - [Adding Photos for Office 365 Guests](https://petri.com/adding-photos-office-365-guests/): Office 365 apps like Teams, Groups, Planner, and SharePoint support guest user access, so they create guest accounts. - [Where's Microsoft 365 Headed Next? The Managed Desktop](https://petri.com/wheres-microsoft-365-headed-next-managed-desktop/): Microsoft is testing out a new Managed Desktop service and is looking for feedback as it gears up to bring... - [Google Adds More Features to G-Suite, Becomes a Bigger Thorn in Office 365's Side](https://petri.com/google-adds-features-g-suite-becomes-bigger-thorn-office-365s-side/): Google is adding new features to G Suite, the company's productivity platform that rivals Office 365. - [The new SharePoint is Here: SharePoint 2019 Public Preview is Now Available](https://petri.com/new-sharepoint-sharepoint-2019-public-preview-now-available/): The preview of the next major update to SharePoint 2019 is here and this is what you need to know. - [Microsoft Launches Exchange 2019 Into Preview](https://petri.com/exchange-2019-preview/): Microsoft has just launched the preview version of Exchange 2019. The good news is that it's a new version. What might be unexpected is the lack of new. - [Microsoft Brings Local Predictive Analytics Capabilities to Windows Server](https://petri.com/microsoft-brings-local-predictive-analytics-capabilities-to-windows-server/): In this Ask the Admin, Russel looks at the new analytics capabilities in Windows Server 2019. - [Understanding SQL Server’s Disaster Recovery Options](https://petri.com/understanding-sql-servers-disaster-recovery-options/): Learn about the differences in SQL Server's disaster recovery options so that you know what options you have to prevent... - [Microsoft's Not Abandoning the Consumer, But Its Future is Productivity](https://petri.com/microsofts-not-abandoning-the-consumer-but-its-future-is-productivity/): As Microsoft continues to evolve its business in a world without Windows, the company wants to be known as the... - [Teams Brings Inline Translation to the Masses](https://petri.com/teams-inline-translation/): Microsoft Teams now supports inline translation for messages and personal chats. The translation is done by Microsoft Translator for over 60 languages - [Adding a New Office 365 Group to an Existing (Classic) SharePoint Online Site](https://petri.com/adding-new-office-365-group-existing-classic-sharepoint-online-site/): The ability to add a new Office 365 Group to an existing SharePoint Online site is finally coming to Office... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (July 2018)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-9/): Because $110 billion, that's why, this edition of Short Takes looks exclusively at Microsoft's blockbuster quarterly and fiscal 2018 results. - [Microsoft's Cloud Continues to Drive Earnings, The Company Forward](https://petri.com/microsofts-cloud-continues-drive-earnings-company-forward/): If you needed any (more) evidence that Microsoft's Cloud platform is the future of the company, for the year ended... - [Windows 10 April 2018 Update Brings UWP Multi-Instancing, UWP Console Apps and Broader File System Access](https://petri.com/windows-10-april-2018-update-introduces-uwp-console-apps-and-broader-file-system-access/): The Windows 10 April 2018 Update introduces support for UWP Multi-Instancing, UWP console apps, and broader access to the file... - [Revisiting Application Guard in the Windows 10 April 2018 Update](https://petri.com/revisiting-application-guard-in-the-windows-10-april-2018-update/): In this Ask the Admin, I'll look at new functionality and examine whether performance has improved. - [SharePoint Best Intentions – Planning versus Reality](https://petri.com/sharepoint-best-intentions-planning-versus-reality/): If you are thinking about updating to SharePoint 2019, it's time to take a serious look at how upgrades work... - [Microsoft Finally Makes Mailbox Auditing Happen for Exchange Online](https://petri.com/mailbox-auditing-exchange-online/): The news that Microsoft will make mailbox auditing the default in Exchange Online is very welcome, as is the new mechanism they plan to use. - [Amazon Announces Several AWS Storage Gateway Updates](https://petri.com/amazon-announces-several-aws-storage-gateway-updates/): Amazon recently announced several updates to the AWS Storage Gateway service. This is a product that was designed to serve... - [Preview of Azure Blob Storage Lifecycle Management](https://petri.com/preview-azure-blob-storage-lifecycle-management/): I this post, I will talk about the new automatic management of tiered Azure blob storage by a new preview Azure feature called Lifecycle Management. - [Azure Blob Storage Soft Delete](https://petri.com/azure-blob-storage-soft-delete/): This post discusses and shows how to deploy & use a new preview recycle bin feature for Azure blob storage called Soft Delete. - [Patch Tuesday -- July 2018](https://petri.com/patch-tuesday-july-2018/): This month’s Patch Tuesday was a relatively quiet one. Microsoft made a minor update to Spectre v4 patches, issued critical... - [View Diagnostic Data in Windows 10 April 2018 Update](https://petri.com/view-diagnostic-data-in-windows-10-april-2018-update/): In this Ask the Admin, I'll show you the new Diagnostic Data Viewer in Windows 10. - [Microsoft's Ending Support For Classic Skype on September 1st, 2018](https://petri.com/microsofts-ending-support-classic-skype-september-1st-2018/): Microsoft will retire classic Skype in September of 2018 with the company pushing desktop users to version 8. 0 - [Paul Thurrott's Short Takes: July 13](https://petri.com/paul-thurrotts-short-takes-july-13/): Because this edition of Short Takes is rated M for suggestive themes and strong language, we take a look at... - [Inside the Free Version of Teams](https://petri.com/free-teams-version-works/): A free version of Teams is now available and it's pretty good. Up to 300 users, free storage, and lots of functionality - and a phantom Office 365 tenant - [Modern SharePoint Web Parts — Image Web Part](https://petri.com/modern-sharepoint-web-parts-image-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Microsoft's Newest Azure Feature Lets You Bring Your Network to the Cloud](https://petri.com/microsofts-newest-azure-feature-lets-bring-network-cloud/): hile Microsoft has introduced services and technologies like Azure Stack to bring the cloud closer to home the company is... - [Microsoft Makes Its Slack Competitor, Teams, Available for Free](https://petri.com/microsoft-makes-slack-competitor-teams-available-free/): Microsoft is finally offering a free version of Teams and it's far more robust than you may think even though... - [Licensing Exchange Online Shared Mailboxes](https://petri.com/licensing-exchange-online-shared-mailboxes/): Microsoft made a mistake in their provisioning process for Exchange Online shared mailboxes, so lots of mailboxes have 100 GB quotas. - [Copy An Azure VM Using Managed Disk Snapshots](https://petri.com/copy-azure-vm-using-managed-disk-snapshots/): In this post, I will show you how you can use the snapshot feature of managed disks to create an exact copy of a virtual machine. - [How Hybrid Use Benefit Reduces Azure VM Costs](https://petri.com/hybrid-use-benefit-reduces-azure-vm-costs/): This post will explain how Hybrid Use Benefit (HUB) or Azure Hybrid Benefit (AHB) can be used to reduce the cost of Azure virtual machines. - [SharePoint Page Properties Arriving in Targeted Release](https://petri.com/sharepoint-page-properties-arriving-targeted-release/): Jasper Oosterveld, Modern Workplace Consultant and Microsoft MVP, examines the new Page Property Experience within the Modern SharePoint Experience. - [Demoting a Windows Server 2016 Domain Controller](https://petri.com/demoting-a-windows-server-2016-domain-controller/): In this Ask the Admin, I'll show you how to demote a domain controller and remove the Active Directory Domain... - [Standard SSD Disks Preview for Azure VMs](https://petri.com/standard-ssd-disks-preview-azure-vms/): This post will discuss a new tier of virtual machine storage that was recently went into preview in Microsoft Azure, called Standard SSD Disks. - [How to Dig Deeper Into Your SharePoint Farm](https://petri.com/dig-deeper-sharepoint-farm/): Want to learn the clean and pretty ways to dig into your SharePoint farm? Here's an easy to follow guide... - [Microsoft Promotes Windows 10 1803 to SAC For Broad Availability](https://petri.com/microsoft-promotes-windows-10-1803-sac-broad-availability/): Microsoft is now reccomending that you deploy Windows 10 1803 to all corporate users - [Resisting Business Email Compromise Attacks on Office 365 Users](https://petri.com/resisting-business-email-compromise-attack-office-365/): Recent news (or FUD) about an "undocumented" Office 365 API got the security world in a tizzy, but in reality it's likely just part of the Graph. BEC - [Modernizing IT with Hyperconverged Infrastructure and the Hybrid Cloud](https://petri.com/modernizing-it-with-hyperconverged-infrastructure-and-the-hybrid-cloud/): See how businesses are modernizing their IT infrastructure with HCI and the hybrid cloud to make for a more stable... - [The Delve People Profile: A Sad State of Affairs](https://petri.com/delve-people-profile-sad-state-affairs/): Jasper Oosterveld, Modern Workplace Consultant at InSpark and Microsoft MVP, examines the state of the Delve Profile Page. - [Hands-On: Microsoft's Surface Go](https://petri.com/hands-on-microsofts-surface-go/): Microsoft has announced a new member of the Surface family and I got to spend a little bit of time... - [Surface Go: Microsoft's Entry Level Tablet Arrives in August for $399](https://petri.com/surface-go-microsofts-entry-level-tablet-arrives-in-august-for-399/): Microsoft has a brand new entry-level Surface tablet called the Go and it starts at $399 when it becomes available... - [Managing Windows Server with Puppet Part 7: Installing Active Directory](https://petri.com/managing-windows-server-with-puppet-part-7-installing-active-directory/): In this Ask the Admin, I'll show you how to install and configure Active Directory using Puppet. - [Paul Thurrott's Short Takes: July 6](https://petri.com/paul-thurrotts-short-takes-july-6/): Because there were two Mondays in this holiday-shortened week, this edition of Short Takes looks at Microsoft's Androme-drama, a rumored... - [Google Announces Firestore Security Rules Simulator](https://petri.com/google-announces-firestore-security-rules-simulator/): Google recently introduced the Firestore Security Rules Simulator - a new tool that developers and administrators can use to write... - [Storage Explorer Preview in the Azure Portal](https://petri.com/storage-explorer-preview-azure-portal/): This post will discuss the preview release of Microsoft’s Storage Explorer for Azure storage which is built into the Azure Portal. - [Preview of WORM Storage Added To Azure](https://petri.com/preview-worm-storage-added-azure/): This post will discuss and demonstrate the new write once-read many (WORM) blob storage feature that Microsoft recently launched in preview. - [5 Things You Can Do to Prepare for your SharePoint 2019 Migration](https://petri.com/5-things-can-prepare-sharepoint-2019-migration/): Upgrading, even for the best of environments, always has a surprise or two in store, even for the most vigilant... - [Diving Deeper into Office 365 Audit Data with Cloud App Security](https://petri.com/office-365-audit-data-cloud-app-security/): Office 365 generates lots of audit data. Some of the data seems a little strange, and we need some help to understand it. Office 365 Cloud App Security - [How To Use The DISM Command to Repair Windows 10: A Step-By-Step Guide](https://petri.com/fix-corrupt-system-files-using-dism/): Learn how to use the DISM command in Windows 10 and Windows 11 to troubleshoot and fix common issues with your Windows operating system and key system files. - [Google Announces Cloud Filestore](https://petri.com/google-announces-cloud-filestore/): Google recently announced the coming beta of Cloud Filestore. This is a new service that will provide customers with managed... - [OpenSSH Comes Out of Beta in Windows April 2018 Update](https://petri.com/openssh-client-comes-out-of-beta-in-windows-april-2018-update/): In this Ask the Admin, I'll show you how to get started with the OpenSSH client in the Windows 10... - [Office 365 Video Transition to Stream Coming. Are You Ready?](https://petri.com/office-365-video-transition-stream/): If you use Office 365 Video today, you will use Stream in the future. The migration is happening - slowly. But when it does, you can use Office 365 Groups - [Happy 10th Birthday Hyper-V!](https://petri.com/happy-10th-birthday-hyper-v/): On February 19, 2003, Microsoft announced that the corporation has acquired a privately held virtualization vendor called Connectix. It might... - [Microsoft's Making Golf (Even) More Enjoyable to Watch](https://petri.com/microsofts-making-golf-even-enjoyable-watch/): Microsoft and the PGA Tour have teamed up to help uncover new insights using all the data collected during each... - [Everything You Need to Know About Windows -- June 2018](https://petri.com/everything-you-need-to-know-about-windows-june-2018/): This month sees Microsoft hold its first virtual Windows Server Summit with lots of news about upcoming features. Plus, Sets... - [Everything You Need to Know About SharePoint -- June 2018](https://petri.com/everything-need-know-sharepoint-june-2018/): This month read about SharePoint and Teams joining forces, new PowerShell, a SharePoint Starter Kit, and how Repeating Tables have finally been solved. - [Everything You Need to Know About Office 365 –- June 2018](https://petri.com/everything-need-know-office-365-june-2018/): Catch up on everything you need to know about Office 365 for June 2018. Topics include GDPR security, OneDrive, Teams, and more. - [Paul Thurrott's Short Takes: June 29](https://petri.com/paul-thurrotts-short-takes-june-29/): Because it's the Dog Days of Summer, this week's edition of Short Takes looks at non-controversial controversies, Azure getting a... - [Everything You Need to Know About Azure Infrastructure -- June 2018](https://petri.com/everything-you-need-to-know-about-azure-infrastructure-june-2018-edition/): This post is a summary of all the Azure infrastructure (IaaS) news from Jun e 2018, covering virtual machines, networking, storage, security, and more. - [Create InfoPath Repeating tables for SharePoint with PowerApps](https://petri.com/create-infopath-repeating-tables-sharepoint-powerapps/): Do you need to create Repeating Tables like you had in InfoPath? Then read this to learn how you can get them plus more with PowerApps. - [Archiving Teams the Official Way](https://petri.com/archiving-teams-official-way/): Microsoft Teams has introduced a way for Office 365 tenants to archive teams. Basically you set the team to be read-only. - [Microsoft's Making it Easier to Keep Teams Organized with new Archive Option](https://petri.com/microsofts-making-easier-keep-teams-organized-new-archive-option/): Microsoft is making it easier to keep Teams organized with a new archive option for historical content. - [Protecting Files in Office 365 Document Libraries Against Guest Users](https://petri.com/protecting-office-365-document-libraries-guest-users/): Office 365 Groups and Teams support guest users, who enjoy full access to the SharePoint document libraries. You might not want this. - [Execute Scripts Inside Azure VMs from the Portal](https://petri.com/execute-scripts-inside-azure-vms-portal/): This post will show how to use the Run Command to execute PowerShell scripts inside an Azure virtual machine running... - [Keeping your DR Plan from Becoming a Disaster](https://petri.com/keeping-your-dr-plan-from-being-a-disaster/): Vital steps to maintaining an effective DR plan so that you don't find yourself in the dark during the next... - [General Availability of Azure Site Recovery for Azure VMs](https://petri.com/general-availability-azure-site-recovery-azure-vms/): This post discusses the newly generally available Azure Site Recovery for Azure IaaS virtual machine replication and disaster recovery. - [Google App Engine Adds Node.js Support](https://petri.com/google-app-engine-adds-node-js-support/): Google recently announced the ability for developers to deploy Node. js apps to Google’s fully-managed App Engine standard environment. - [Paul Thurrott's Short Takes: June 22](https://petri.com/paul-thurrotts-short-takes-june-22/): Because ethics is tragically unfunny, this week's edition of Short Takes examines Microsoft's controversial non-moves on its ICE contracts, Microsoft's... - [Microsoft Teams for Surface Hub is Now Available in Preview](https://petri.com/microsoft-teams-surface-hub-now-available-preview/): Microsoft has released Teams in preview for the Surface Hub, expanding the app's footprint across the Office 365 ecosystem. - [Office 365 News and Views – June 2018](https://petri.com/office-365-news-june-2018/): Lots happens in a month within Office 365. I can't possibly write about every change in SharePoint, Teams, Exchange, etc. released by Microsoft, - [Azure File Sync Nearing General Availability](https://petri.com/azure-file-sync-nearing-general-availability/): Microsoft has launched the final preview release of Azure File Sync, a service that I, and many of my customers, have been anticipating. - [New Windows Autopilot Deployment Options in Windows 10 1803 and Redstone 5](https://petri.com/new-windows-autopilot-deployment-options-in-redstone-5/): In this Ask the Admin, I'll look at the new deployment options for Windows Autopilot in the current and next... - [Microsoft's Subtle Branding Changes to its Core Products](https://petri.com/microsofts-subtle-branding-changes-core-products/): Microsoft has quietly changed the way it brands two of its core products and if you aren't looking closely, you... - [Microsoft Expands Its Cloud Footprint to Norway](https://petri.com/microsoft-expands-cloud-footprint-norway/): Microsoft is opening up a new data center in Norway with availability starting in late 2019. - [Google Opens a New Cloud Region in Finland](https://petri.com/google-opens-new-cloud-region-finland/): Google opened a new data region in Finland as the company works to grab more cloud market share. - [Patch Tuesday -- June 2018](https://petri.com/patch-tuesday-june-2018-2/): In this month’s Patch Tuesday, Microsoft released a disabled-by-default patch for Spectre 4, Adobe plugs a zero-day Flash vulnerability that... - [Hybrid Configuration Wizard Transfers Settings – Too Little, Too Late](https://petri.com/hybrid-configuration-wizard-transfers-settings-exchange/): Microsoft has updated the Hybrid Configuration Wizard (HCW) to transfer some Exchange on-premises configuration settings. That's nice, but just too late. - [Project Natick -- Microsoft's Undersea Data Centers](https://petri.com/project-natick-microsofts-undersea-data-centers/): Microsoft recently shared information on Phase 2 of Project Natick, a research effort to deploy cloud data centers in the sea with tidal/wave/wind power. - [A New Planner Apps Arrives to Modern SharePoint Online Sites](https://petri.com/new-planner-apps-arrives-modern-sharepoint-online-sites/): Microsoft is releasing an update to the way a Planner Plan can be integrated in a modern SharePoint Online (SPO)... - [Intel's Spectre Variant 4 Microcode Update Off by Default](https://petri.com/intels-spectre-variant-4-microcode-update-off-by-default/): In this Ask the Admin, I look at Spectre Variant 4 and whether it will affect performance as its distributed... - [Paul Thurrott's Short Takes: June 15](https://petri.com/paul-thurrotts-short-takes-june-15/): Because I do not like it Sam-I-Am, this week's edition of Short Takes looks at Windows 10 version 1803 out... - [Understanding External Access to Documents in an Office 365 Tenant (Part 3)](https://petri.com/external-access-documents-office-365-part-3/): Office 365 logs sharing information in the audit log. Here's how to find out how tenant users share documents from SharePoint with external people. - [A Free Version of Microsoft Teams Moves Closer to Availability](https://petri.com/free-version-microsoft-teams-moves-closer-availability/): A free version of Microsoft Teams is still in development and new documentation suggests its release will happen in the... - [How To Deploy Azure Policies](https://petri.com/deploy-azure-policies/): This post will show you how to enforce/audit governance to Azure subscriptions or resource groups using Azure Policy by assigning an initiative definition. - [Solve RDP Error 'CredSSP Encryption Oracle Remediation'](https://petri.com/solve-rdp-error-credssp-encryption-oracle-remediation/): In this Ask the Admin, I'll explain how to resolve an RDP error that might appear after the May 2018... - [Windows Server 2019 Improves Hybrid Cloud Support](https://petri.com/windows-server-2019-improves-hybrid-cloud-support/): Microsoft's upcoming Windows Server 2019 release improves its support for hybrid cloud scenarios. - [Microsoft's Updating Office with new Ribbon, Icons and Search](https://petri.com/microsofts-updating-office-new-ribbon-icons-search/): Microsoft is starting to roll out significant UI changes to Office applications with updates to the ribbon, search, and new... - [Protect SQL Server in Azure VMs using Azure Backup](https://petri.com/protect-sql-server-azure-vms-using-azure-backup/): In this post, I will show you how to use a new preview feature in Azure Backup to protect SQL Server databases that are hosted in Azure virtual machines. - [Spanning Continues to Fight for Office 365 Backups](https://petri.com/spanning-office-365-backups/): I don't consider backups necessary for Office 365, but ISVs continue to offer these products and customers continue to buy, so I chatted with Spanning - [Azure Policy for Governance Enforcement](https://petri.com/azure-policy-governance-enforcement/): This post will explain how Azure Policy can be used to audit or restrict usage, and apply settings, to automatically enforce governance. - [Paul Thurrott's Short Takes: June 8](https://petri.com/paul-thurrotts-short-takes-june-8/): Because Brad's finally coming back from vacation, this week's edition of Short Takes looks at Microsoft's planned GitHub acquisition, Microsoft's... - [Ways To Use Azure Traffic Manager](https://petri.com/ways-use-azure-traffic-manager/): This post will show how Azure Traffic Manager can be used in a few non-obvious scenarios, including DR, migration, and international deployments. - [Google Announces VPC-Native Clusters for Kubernetes Engine](https://petri.com/google-announces-vpc-native-clusters-kubernetes-engine/): Google recently announced the ability for admins to create native Virtual Private Cloud clusters within Google Kubernetes Engine. - [Understanding External Access to Documents in an Office 365 Tenant (Part 2)](https://petri.com/external-access-documents-office-365-part-2/): Many Office 365 Groups and Teams have external guest members. This article explains how to use PowerShell to query groups about external guests. - [Microsoft Breathes Life into Win32 Apps with .NET Core 3.0 and UWP XAML Islands](https://petri.com/microsoft-breathes-life-into-win32-apps-with-net-core-3-0-and-uwp-xaml-islands/): At the beginning of March and at its developer conference in May, Microsoft made several announcements about the future of... - [Reset Expired Domain Admin Password in Azure VM](https://petri.com/reset-expired-domain-admin-password-in-azure-vm/): If you only have one domain admin account set up in a Windows Server domain running in an Azure VM,... - [Teams Now Captures Compliance Records for Hybrid and Guest Users](https://petri.com/teams-compliance-records-hybrid-exchange/): Teams is now able to capture compliance records for contributions to private chats by users with on-premises Exchange mailboxes in a hybrid Office 365 org, - [Features Added to Azure for GDPR](https://petri.com/features-added-azure-gdpr/): This post describes a number of features and tools that you can use to enforce, comply with and assess GDPR compliance with for your Azure subscriptions. - [Automatic Shutdown Settings in Azure VMs](https://petri.com/automatic-shutdown-settings-azure-vms/): This post discusses the Auto-Shutdown settings in Azure virtual machines, how to configure them, and whether you should use this feature or not. - [With GitHub Acquisition, Microsoft Moves Fully into the Open Source Community](https://petri.com/github-acquisition-microsoft-moves-fully-open-source-community/): Microsoft is buying GitHub, an online code repository company that is popular collaboration tool and a social network for developers. - [MSIX Installer to Bring More Win32 Apps to Microsoft Store](https://petri.com/msix-installer-promises-to-bring-legacy-win32-apps-to-the-microsoft-store/): Microsoft's new MSIX unified packaging format promises to make it easier to bring legacy apps to the Store, even if... - [Paul Thurrott's Short Takes: June 1](https://petri.com/paul-thurrotts-short-takes-june-1/): Because it's hazy, hot, and humid, this week's edition of Short Takes looks at Microsoft's market cap gains, more internal... - [In latest Microsoft Re-Org, Edge Becomes a Bigger Focus](https://petri.com/latest-microsoft-re-org-edge-becomes-bigger-focus/): Microsoft has once again changed up its org structure but this time around, Edge is becoming a bigger focus while... - [Everything You Need to Know About Office 365 -- May 2018](https://petri.com/everything-need-know-office-365-may-2018/): News, notes, and opinions from Microsoft MVP Shane Young for the Office 365 Ecosystem in May 2018 without any GDPR bashing. - [Everything You Need to Know About Windows -- May 2018](https://petri.com/everything-you-need-to-know-about-windows-may-2018/): This month I look at Windows 10 April 2018 Update woes, Progressive Web Apps in the Microsoft Store, new productivity... - [Everything You Need to Know About SharePoint -- May 2018 Edition](https://petri.com/everything-need-know-sharepoint/): A rundown of the news and notes for SharePoint for May 2018 from SharePoint MVP Shane Young. Yes, we are getting more SharePoint on-prem and VR. - [Understanding External Access to Documents in a Microsoft 365 Tenant](https://petri.com/external-access-documents-office-365-part-1/): It's a good idea to understand whether any external people have access to documents in your Office 365 tenant. SharePoint Online doesn't tell us. - [Everything You Need to Know About Azure Infrastructure -- May 2018 Edition](https://petri.com/everything-need-know-azure-infrastructure-may-2018-edition/): This post provides a summary of the Azure infrastructure (IaaS) news from May 2018, spanning virtual machines, storage, networking, compute, and more. - [SharePoint Hub Sites -- A Bit Buggy but Still Very Valuable for Enterprises Worldwide](https://petri.com/sharepoint-hub-sites-bit-buggy-still-valuable-enterprises-worldwide/): Jasper Oosterveld, Microsoft MVP and Modern Workplace Consultant at InSpark, discusses issues with the SharePoint Hub Sites. - [What Is Microsoft's Intelligent Edge?](https://petri.com/what-is-microsofts-intelligent-edge/): There's been a lot of talk again this year at Build about Azure, IoT, and cloud computing in general but... - [A Couple of Tips For Ransomware Defense for Disaster Recovery](https://petri.com/ransomware-defense-disaster-recovery/): Building in disaster recovery protection from ransomware is a key step to making sure that when, not if, your company... - [GDPR Is Here -- What Does It Mean To You?](https://petri.com/gdpr-is-here-what-does-it-mean-to-you/): In this post, I will summarize the General Data Protection Regulation (GDPR) and what it means to organizations inside and outside of Europe. - [Interpreting SharePoint Online Audit Records](https://petri.com/sharepoint-online-audit-records/): Microsoft says that SharePoint Online and OneDrive for Business offer secure collaboration within Office 365. Good auditing is part of the logic. - [Choosing an Azure Storage Account Type](https://petri.com/choosing-azure-storage-account-type/): This post will explain how to pick a storage account type in Azure, from the four types: Cool Blob, Hot Blob, General Purpose v1, and General Purpose v2. - [Handling GDPR Right to Erasure Requests for Office 365](https://petri.com/gdpr-right-erasure-requests-office-365/): GDPR Article 17 allows individuals to request an organization to erase their personal data. Now that GDPR is in effect, how can you erase Office 365 data? - [Managing Linux, Windows, AWS, and Azure Using PowerShell Core Part 2: PowerShell Remoting Over SSH](https://petri.com/managing-linux-windows-aws-and-azure-using-powershell-core-part-2-powershell-remoting-over-ssh/): In this second part, I’ll look at how to manage Linux and Windows systems remotely using PowerShell Core. - [Managing Linux, Windows, AWS, and Azure Using PowerShell Core Part 1: Installing PowerShell Core and Modules for Azure and AWS](https://petri.com/getting-started-with-powershell-core/): In the first part of this two-part series, I'll show you how to get started with PowerShell Core for managing... - [What's New In SharePoint Server 2019](https://petri.com/whats-new-sharepoint-server-2019/): This week, Microsoft announced SharePoint Server 2019 that will be released later this year and here is a list of... - [Changed Process for Remoting into Azure VMs](https://petri.com/changed-process-remoting-azure-vms/): This post explains how to log into Windows (RDP) or Linux (SSH) virtual machines using the new experience in the Azure Portal. - [Azure AD Login for Azure Linux VMs](https://petri.com/azure-ad-login-azure-linux-vms/): This post explains how to sign into Linux virtual machines in Azure using Azure Active Directory (AD) for better security, auditing, and ease of use. - [Surface Book 2: Six Months Later](https://petri.com/surface-book-2-six-months-later/): Microsoft's Surface Book 2 has been available for six months and it's time to look back at the good, the... - [Guest Access in Planner Rolls Out](https://petri.com/guest-access-planner-rolls-out/): Planner now supports guest user access to its plans. Office 365 tenants will celebrate this feature because they've been waiting for it to arrive. - [Patch Tuesday -- May 2018](https://petri.com/patch-tuesday-may-2018/): This month the Windows 10 April 2018 Update finally drops, although some Intel SSDs don’t seem to be happy about... - [With 400,000 Companies Now using SharePoint, Microsoft's Bringing Mixed Reality to the Platform](https://petri.com/400000-companies-now-using-sharepoint-microsofts-bringing-mixed-reality-platform/): Microsoft is announcing a new feature for SharePoint today called Spaces that will bring Mixed Reality to the collaboration platform. - [SharePoint Server 2019 Public Preview to be Released in June](https://petri.com/sharepoint-server-2019-public-preview-released-june/): SharePoint Server 2019 will enter public preview in June of 2018 but its final release date isn't know yet, but... - [Paul Thurrott's Short Takes: May 18](https://petri.com/paul-thurrotts-short-takes-may-18/): Because I'm so tired my eyes hurt, this week's edition of Short Takes examines Surface Hub 2, a rumored $400... - [Google Introduces Cloud Memorystore Beta](https://petri.com/google-introduces-cloud-memorystore-beta/): Google recently announced that the beta of its Cloud Memorystore service is now available to the general public. - [Google Announces Asylo Framework for Confidential Computing](https://petri.com/google-announces-asylo-framework-confidential-computing/): Google recently announced Asylo, the firm’s newest open-source framework for securing and protecting applications and data that are contained within... - [Consumers Gain from Enterprise-Class Office 365 Features](https://petri.com/outlook-gains-enterprise-class-office-365-features/): Outlook.com (premium) now boasts two new protected email features taken directly from Exchange Online. It's an example of how the shared Office 365 - [Solving Problems Using Reliability Monitor in Windows 10](https://petri.com/solving-problems-using-reliability-monitor-in-windows-10/): In today's Ask the Admin, I'll look at how you can use the Reliability Monitor in Windows 10 to solve... - [How to Deploy An Azure Virtual Machine (May 2018)](https://petri.com/deploy-azure-virtual-machine-may-2018/): This post will show you how you can quickly deploy an Azure virtual machine for evaluation purposes. - [Veeam's Making it Easier to Create New Production Environments, On-Demand](https://petri.com/veeams-making-easier-create-new-production-environments-demand/): DataLabs allows developers and operations teams to use production-like workloads to validate updates, security vulnerabilities, forensics and GDPR compliance. - [Microsoft Goes Back to the Drawing Board with the Surface Hub 2](https://petri.com/microsoft-goes-back-drawing-board-surface-hub-2/): Microsoft has unveiled the Surface Hub 2 and while it has a similar name to the original product, the company... - [How Planner Synchronizes its Tasks to Outlook's Calendar](https://petri.com/planner-synchronizes-outlook-calendar/): Many Office 365 tenants use Planner for group-based task management. Generally, the application is OK and has been getting better. Now it links to Outlook - [Continuing the SharePoint Migration Journey – Site Collections](https://petri.com/continuing-sharepoint-migration-journey-site-collections/): Take a read to learn how site collections and not breaking inheritance can make for a better SharePoint environment and why to do it during migration. - [Swapping the OS Disk of an Azure Virtual Machine](https://petri.com/swapping-os-disk-azure-virtual-machine/): This post explains how you can restore or replace just the OS disk of an Azure virtual machine that is using managed disks. - [Office 365 Groups and Governance](https://petri.com/office-365-groups-governance/): Jasper Oosterveld, Microsoft MVP and Modern Workplace Consultant, dives into the importance of Governance when using Office 365 Groups. - [Paul Thurrott's Short Takes: May 11](https://petri.com/paul-thurrotts-short-takes-may-11/): Because traveling is the worst, this week's edition of Short Takes examines Microsoft Build 2018, Microsoft product demotions, Google I/O... - [Windows Admin Center HCI Management Now Available for Windows Server 2016](https://petri.com/windows-admin-center-hci-management-now-available-for-windows-server-2016/): After the release of a patch for Windows Server 2016 on April 16th, it's now possible to manage hyper-converged infrastructure... - [Expiring Teams Now Available in Office 365](https://petri.com/expiring-teams-office-365/): Microsoft Teams now shows team owners when their team is going to expire - that if, if you use the Office 365 Groups expiration policy. - [The Hybrid Cloud Database Benefits](https://petri.com/hybrid-cloud-database-benefits/): If you haven't moved to a hybrid cloud scenario, you should consider these benefits as there are many reasons to... - [Microsoft Previews Storage Migration Service in Windows Server 2019](https://petri.com/microsoft-previews-storage-migration-service-in-windows-server-2019/): Microsoft releases a preview of Storage Migration Service in the latest Insider version of Windows Server 2019. In this Ask... - [Processing GDPR Data Subject Requests with Office 365](https://petri.com/processing-gdpr-data-subject-requests-office-365/): GDPR comes into force on May 25, 2018. To help Office 365 tenant administrators respond to GDPR data subject requests, a new DSR case feature is available. - [Associating Azure Network Security Groups](https://petri.com/associating-azure-network-security-groups/): In this post, I will explain how the two options for associating a network security group (NSG) work, and I’ll recommend a method to use. - [Microsoft's Modern Meetings Demo Shows the Future of Surface Hub](https://petri.com/microsofts-modern-meetings-demo-shows-future-surface-hub/): At Microsoft's Build conference, the company provided hints about what will be coming with Surface Hub v2. - [A Better Understanding of What and Where Microsoft 365 is Headed](https://petri.com/better-understanding-microsoft-365-headed/): Microsoft is evolving Microsoft 365 and now positioning it above Windows when it comes to developing for the company's various... - [Microsoft's Working Towards A Smarter Edge, Cloud Not Always Required](https://petri.com/microsofts-working-towards-smarter-edge-cloud-not-always-required/): Microsoft has announced several new features for its Azure IoT Edge but more importantly, the cloud is not always required. - [Microsoft's Adding New Developer Opportunities to Teams, Power BI](https://petri.com/microsofts-adding-new-developer-opportunities-teams-power-bi/): At Build this week, Microsoft has announced a couple of new opportunities for developers to add additional value to Teams... - [Microsoft's Making it Easier to Work with GitHub](https://petri.com/microsofts-making-easier-work-github/): Microsoft is making it easier for developers to work with GitHub inside its own development tools. - [What Are PowerApps and How to Get Started with Them](https://petri.com/powerapps-get-started/): Learn what PowerApps are, why you should care, and finally how to get started with them. They, like the children, are the future. - [Enabling DDoS for Azure Virtual Networks](https://petri.com/enabling-ddos-azure-virtual-networks/): This post will explain what DDoS protection is offered in Azure and how to deploy Standard tier protection in a... - [Sharing Azure Portal Dashboards](https://petri.com/sharing-azure-portal-dashboards/): This post will explain how to share custom Azure Portal dashboards with other administrators and delegated administrators of your subscription. - [Boost in SharePoint Storage Allocation to Move Data to the Cloud](https://petri.com/20x-boost-sharepoint-storage-allocation/): Microsoft has boosted the per-user storage allocation for SharePoint Online by 20x in an attempt to convince people to move data to Office 365. - [Options for Load Balancing Services in Azure](https://petri.com/options-load-balancing-services-azure/): This post compares methods for load balancing services hosted in Azure using the Azure Load Balancer, Web Application Gateway, and virtual appliances. - [Firewall Options for an Azure Virtual Network](https://petri.com/firewall-options-azure-virtual-network/): In this post, I will explain several ways that you can protect virtual machine and web services using firewall services in Azure. - [Disabling Document Sharing for Users with No Access to a SPO Site](https://petri.com/disabling-document-sharing-users-no-access-spo-site/): SharePoint Online not only provides controls to enable/disable document/site sharing with external users but also some features to manage how... - [Google Announces Several Cloud Database Improvements](https://petri.com/google-announces-several-cloud-database-improvements/): Google recently announced several improvements to the managed cloud database offerings that are available as a part of the Google... - [Tony’s Random Office 365 Updates](https://petri.com/random-office-365-updates-april-2018/): Anyone running an Office 365 tenant knows that it's hard to keep up with everything that changes. Imagine what it must be like to write about Office 365 - [Comparing the Basic and Standard Azure Load Balancers](https://petri.com/comparing-basic-standard-azure-load-balancers/): In this post, I will discuss the differences between the Basic and Standard tier Azure load balancers and why you would choose one over the other. - [Everything You Need to Know About Office 365 -- April 2018](https://petri.com/everything-need-know-office-365-april-2018/): Office 365 news including Security updates, performance enhancements, external sharing management, and OneNote 2016 headed for retirement. - [Everything You Need to Know About Azure Infrastructure -- April 2018](https://petri.com/everything-need-know-azure-infrastructure-april-2018/): We’re just a few weeks away from the Microsoft Build conference, where historically, a lot of announcements are made. - [Everything You Need to Know About SharePoint -- April 2018](https://petri.com/everything-need-know-sharepoint-april-2018/): SharePoint continues to be awesome and Microsoft continues to make cool investments. Check out this month’s news and highlights. - [Everything You Need to Know About Windows -- April 2018](https://petri.com/everything-you-need-to-know-about-windows-april-2018/): This month, Windows 10 goes on a diet, the April Update is delayed, and Project Honolulu reaches general availability as... - [Microsoft Increases SharePoint Online Storage 20x](https://petri.com/microsoft-increases-sharepoint-online-storage-20x/): Microsoft is significantly increasing the amount of storage for SharePoint Online which may allow you to save a few dollars... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2018)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-8/): Because this happens once a quarter, this week’s edition of Short Takes looks exclusively at Microsoft’s earnings announcement and the... - [What's in the Windows 10 April 2018 Update for The Enterprise](https://petri.com/whats-windows-10-april-2018-update-enterprise/): With the release of the Windows 10 April 2018 update, Microsoft is introducing several new functions and features for enterprise... - [Microsoft Releases Office 2019 in Preview for Commercial Customers](https://petri.com/microsoft-releases-office-2019-preview-commercial-customers/): Microsoft is making available today a preview of Office 2019 and here is where you can download it. - [Yammer: A Tip of the Hat to You!](https://petri.com/yammer-tip-hat/): Jasper Oosterveld, Microsoft MVP and Modern Workplace Consultant, shares his opinion about the progress Yammer made over the last couple... - [Microsoft Continues to Climb with Cloud and Office Growth in Q3](https://petri.com/microsoft-continues-climb-cloud-office-growth-q3/): Microsoft reported their Q3 earnings today and the company beat Wall St. expectations with strong Office and Cloud growth. - [Access Azure Virtual Machines Using the Serial Console Recovery Tool](https://petri.com/access-an-azure-virtual-machine-using-the-serial-console-recovery-tool/): In this Ask the Admin, I'll show you how to access an Azure Windows Server virtual machine using the serial... - [Azure Active Directory External Collaboration Policy Now Generally Available](https://petri.com/azure-active-directory-external-collaboration-policy/): Office 365 makes it easy to collaborate with external users through Office 365 Groups and Teams, both of which use Azure B2B Collaboration. - [Windows Admin Center -- The Future of the Windows Server GUI](https://petri.com/windows-admin-center-the-future-of-the-windows-server-gui/): In this post, I’ll look at why Windows Admin Center is the new GUI management tool of choice for Windows... - [With 4 Million Businesses Using G Suite, Google Is Pushing Further into Office 365's Playground](https://petri.com/4-million-businesses-using-g-suite-google-pushing-office-365s-playground/): Google is rolling out one of its largest updates ever to G-Suite and at the same time, is chipping away... - [Microsoft Switches Office 365 Groups to Private by Default](https://petri.com/office-365-groups-private-default/): Microsoft is switching the default access type for Office 365 Groups to be private. It's a change that you can easily reverse, if you want it to be public. - [VMware Announces vSphere 6.7](https://petri.com/vmware-announces-vsphere-6-7/): VMware recently announced vSphere 6. 7, the latest version of its cloud virtualization platform, which includes a variety of updates... - [Choosing a Disaster Recovery Technology: Backup vs. Replication](https://petri.com/choosing-a-disaster-recovery-technology-backup-vs-replication/): There are two primary types of backup technologies and knowing the difference between backup and replication will help you choose... - [Paul Thurrott's Short Takes: April 20](https://petri.com/paul-thurrotts-short-takes-april-20/): Because security and privacy are fashionable, this week's edition of Short Takes examines Microsoft's new Azure Sphere platform, a Windows... - [Next Generation Alerts Generally Available in Azure](https://petri.com/next-generation-alerts-generally-available-azure/): This post explains how the new alert system of Azure has improved with better scoping, merged functionality, and reusable action groups. - [SharePoint Online, Groups, Regional Settings, and Pacific Time](https://petri.com/sharepoint-online-groups-regional-settings/): Office 365 Groups are the reason why many SharePoint Online sites appear in tenants. If you're on the Pacific coast of the U.S., the regional settings OK - [Microsoft Brings Windows Defender Protections to Chrome](https://petri.com/microsoft-brings-windows-defender-protections-chrome/): Microsoft is bringing Windows Defender to Chrome via an extension but there are a few things you need to consider... - [Patch Tuesday -- April 2018](https://petri.com/patch-tuesday-april-2018/): This month’s Patch Tuesday fixes 63 CVE vulnerabilities, 17 of which are critical for Windows 10. - [Creating a Simple Flow to Send OnDemand Notifications on Specific Documents](https://petri.com/creating-simple-flow-send-ondemand-notifications-specific-documents/): Microsoft Flow integration in SharePoint Online provides a very simple way to model common collaboration scenarios, such as send an... - [What You Need to Know About Teams and Office 365 Retention Policies](https://petri.com/teams-supports-office-365-retention-policies/): With GDPR coming, it's good news that Teams now supports Office 365 retention policies. You can apply retention to messages posted to channels and chats. - [Microsoft Announces New Project VAST Security Visualization Tool](https://petri.com/microsoft-announces-new-project-vast-security-visualization-tool/): With a little help from Power BI and Azure Log Analytics, Microsoft's new Project VAST promises to make it easier... - [Microsoft's Bringing Azure and Xbox Security to the Edge](https://petri.com/microsoft-announces-azure-sphere-intelligent-edge/): Microsoft has announced a new Azure service targeted at the growing IoT segment that they hope will secure the edge... - [Microsoft Releases Remote Desktop HTML5 Client Preview](https://petri.com/microsoft-releases-preview-of-remote-desktop-web-client/): At last year's Ignite, Microsoft announced that it was developing an HTML5 web client for Remote Desktop Services. At the... - [Paul Thurrott's Short Takes: April 13](https://petri.com/paul-thurrotts-short-takes-april-13/): Because it's Friday the 13th, this week's edition of Short Takes looks at a quiet Windows 10 delay, the next... - [Google Launches Cloud Functions 1.0 for Firebase](https://petri.com/google-launches-cloud-functions-1-0-firebase/): Google recently announced version 1. 0 of the Firebase Cloud Functions SDK, which includes several improvements over the previous beta... - [What Is Azure SQL Database Managed Instance?](https://petri.com/azure-sql-database-managed-instance/): Azure SQL Database Managed Instance (Preview) is a new PaaS solution that offers near 100% compatibility with SQL Server with a private VNet connection. - [Project Honolulu Graduates, Say Hello to Windows Admin Center](https://petri.com/project-honolulu-graduates-say-hello-windows-admin-center/): Microsoft has announced today that the Windows Admin center has reached general availability and that with the release of Server... - [Why the Last Login Date Reported by the Get-MailboxStatistics Cmdlet is so Wrong](https://petri.com/get-mailboxstatistics-cmdlet-wrong/): The venerable Exchange Get-MailboxStatistics has been around for over ten years, but now it's telling lies about Office 365 users. - [5 Things to Know About PowerShell Core on Windows](https://petri.com/5-things-to-know-about-powershell-core-on-windows-2/): PowerShell MVP offers 5 important things you'll want to know before diving into PowerShell Core on Windows. - [Office 365 Hybrid Cloud Data Protection Considerations](https://petri.com/office365-hybrid-cloud-data-protection-considerations/): Even though Microsoft has your data, that doesn't mean you are protected from an outage... here's what you need to... - [Serial Console Access for Azure Virtual Machines](https://petri.com/serial-console-access-azure-virtual-machines/): Aidan Finn shows you how to access an Azure Windows or Linux virtual machine console using serial access when you... - [Redstone 4 Brings Better WebM Support in Edge](https://petri.com/redstone-4-brings-better-webm-support-in-edge/): Microsoft adds support for embedded WebM video content in Edge. - [New Teams and Skype for Business Online Admin Center Appears](https://petri.com/new-teams-skype-for-business-online-admin-center/): Office 365 has a new admin center for Teams and Skype for Business Online. It's still early days for the TSBAC, as I like to call it, but you can see - [5 Things to Know About PowerShell Core on Linux](https://petri.com/5-things-to-know-about-powershell-core-on-linux/): Resident PowerShell expert Jeff Hicks shares his top 5 things Windows pros should know about PowerShell Core on Linux. - [Focus Assist Replaces Quiet Hours in Windows 10 Redstone 4](https://petri.com/focus-assist-replaces-quiet-hours-in-redstone-4/): In Redstone 4, Quiet Hours has been renamed to Focus Assist and brings several improvements. - [Modern SharePoint Web Parts — Yammer Web Part](https://petri.com/modern-sharepoint-web-parts-yammer-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Paul Thurrott's Short Takes: April 6](https://petri.com/paul-thurrotts-short-takes-april-6/): Because I heard you missed me, I'm back, this week's edition of Short Takes examines Microsoft's massive reorg and my... - [Foundation of Many Microsoft Cloud Services Is Now Open Source](https://petri.com/foundation-many-microsoft-cloud-services-now-open-source/): Microsoft has made Service Fabric, the foundation of many of their cloud services, available under MIT open source licensing. - [Restore Azure Virtual Machine From a Backup Snapshot](https://petri.com/restore-azure-virtual-machine-backup-snapshot/): In this post, I will show you how you can quickly restore an Azure virtual machine from a snapshot-based backup. - [Microsoft Extends Advanced Protection Capabilities to Office 365 Home and Personal](https://petri.com/microsoft-extends-advanced-protection-capabilities-office-365-home-personal/): Microsoft is bringing many of its corporate data protection services to Office 365 Home and Personal. - [Hiding Office 365 Groups Created by Teams from Exchange Clients](https://petri.com/hiding-office-365-groups-exchange-clients/): Teams now hides the Office 365 Groups that it creates from Exchange clients (Outlook, OWA, and the mobile apps). You can run the Set-UnifiedGroup cmdlet - [Stop Taking Advice From "A Person Connected To Microsoft"](https://petri.com/stop-taking-advice-person-connected-microsoft/): In this opinion post, I explain why those working in IT need to start taking technical education seriously and using reliable sources of news & information. - [Managing Windows Server with Puppet Part 6: Installing, Updating, and Removing Software](https://petri.com/managing-windows-server-with-puppet-part-6-installing-updating-and-removing-software/): In today's Ask the Admin, Russell Smith shows you how to manage Puppet, Windows Installer, and Chocolatey. - [Managing Windows Server with Puppet Part 5: Managing Local Users and Groups](https://petri.com/managing-windows-server-with-puppet-part-5-managing-local-users-and-groups/): In today's Ask the Admin, Russell Smith shows you how to manage local users and groups using Puppet. - [The Path Ahead for Microsoft's Windows](https://petri.com/path-ahead-microsofts-windows/): Microsoft has made some major changes to how Windows is organized that will have a profound impact on its future. - [Why the Office 365 Group Expiration Policy Needs Help](https://petri.com/better-office-365-group-expiration/): It is nice to have an Azure Active Directory Expiration Policy for Office 365 Groups, but it's not so good that the policy functions based on age. - [A Checklist for Pricing Azure Virtual Machines](https://petri.com/checklist-pricing-azure-virtual-machines/): This post contains a checklist of things to price when estimating how much a virtual machine solution in Azure will cost. - [Enable Unauthenticated Access to a Windows File Share](https://petri.com/enable-anonymous-access-to-a-windows-server-file-share/): In today's Ask the Admin, Russell Smith explains how unauthenticated access to Windows file shares works. - [Microsoft Overhauls Windows Org, Names New Leader Along with Other Changes](https://petri.com/microsoft-overhauls-windows-org-names-new-leader-along-changes/): Microsoft is making big changes to its Windows org by changing up the leadership and also changing the internal priorities... - [Everything You Need to Know About Office 365 -- March 2018](https://petri.com/everything-need-know-office-365-march-2018/): Get all of the news and notes you need for Office 365 from March 2018. Topics include Teams, Dynamics, SharePoint Hub sites, and employee engagement. - [Everything You Need to Know About SharePoint -- March 2018](https://petri.com/everything-need-know-sharepoint-march-2018/): The SharePoint news roundup for March 2018. Read about Hub Sites, SharePoint using Azure AD, support ending, and how to get into the TAP. - [Everything You Need to Know About Azure Infrastructure -- March 2018 Edition](https://petri.com/everything-need-know-azure-infrastructure-march-2018-edition/): March of 2018 brought lots of news on Azure infrastructure services, including plenty of evidence of the new & open Microsoft. - [Everything You Need to Know About Windows -- March 2018](https://petri.com/everything-you-need-to-know-about-windows-march-2018/): Windows 10 Redstone 4 reaches RTM and Microsoft announces the availability of a preview version of Windows Server 2019. - [Why PowerShell is a Core Skill for Office 365 Administrators](https://petri.com/powershell-important-office365-admins/): PowerShell is a critical skill for Office 365 tenant administrators. A knowledge of PowerShell allows you to fix things that Microsoft leaves undone. Teams - [Azure Backup Instant VM Recovery and Large Disks](https://petri.com/azure-backup-instant-vm-recovery-large-disks/): Azure Backup has just rolled out new functionality to make virtual machine backup & restore jobs faster & more efficient, and to support >1 TB disks. - [Yes, You Can Use Your On-Premises Data with Office 365](https://petri.com/yes-can-use-premises-data-office-365/): Do you have data both on-prem and in Office 365? Would you like to use that data together for true hybrid? Read about the on-premises data gateway. - [Office Customization Tool for Click-To-Run](https://petri.com/office-customization-tool-click-run/): The Office Customization Tool for Click-To-Run is a web-based Tool created by Microsoft to simplify the generation of configuration files... - [Choosing the Best Mobile Office 365 Email Client](https://petri.com/best-mobile-office-365-email-client/): Companies that move to Office 365 have to decide what mobile email client to use. A native client that uses EAS or Outlook? - [Google Introduces Several New Ways to Keep Accounts Secure](https://petri.com/google-introduces-several-new-ways-keep-accounts-secure/): Google recently announced several new tools and services that can be used to protect data stored on the Google Cloud... - [The SMB’s Essential Disaster Recovery Checklist](https://petri.com/the-smbs-essential-disaster-recovery-checklist/): If you don't know where to start with your DR planning check out this essential DR checklist to make sure... - [The Ball is in Microsoft's Court To Capitalize on Teams](https://petri.com/ball-microsofts-court-capitalize-teams/): Microsoft's Teams is off to a strong start but the company needs to be aggressive with feature deployment and not... - [Modern SharePoint Web Parts -- Planner Web Part](https://petri.com/modern-sharepoint-web-parts-planner-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [The Architecture of Azure File Sync](https://petri.com/architecture-azure-file-sync/): In this post, I will explain how the components of an Azure File Sync architecture, and how they work together in an example multi-site scenario. - [The Hidden Price of “Lift and Shift” Migrations](https://petri.com/hidden-price-lift-shift-migrations/): Migrating, managing, backing up, and protecting useless data has a cost. Are you willing to pay it? - [Office 365 Makes Message Encryption Even Easier](https://petri.com/office-365-encrypted-email/): Office 365 now includes out-of-the-box email encryption, which might just mean that the era of using S/MIME and PGP might be coming to a close. - [Microsoft Begins Rolling out SharePoint Hub Sites](https://petri.com/microsoft-begins-rolling-sharepoint-hub-sites/): Microsoft is now ready to start rolling out SharePoint hub sites but there is a catch as it's not coming... - [Patch Tuesday March 2018](https://petri.com/patch-tuesday-march-2018/): This month, Microsoft patches a remote code execution vulnerability for CredSSP, helps Intel distribute microcode updates to protect against Spectre... - [Architecting Availability Zones for Azure VMs](https://petri.com/architecting-availability-zones-azure-vms/): This post will explain the architecture of Azure availability zones which offer a higher SLA for virtual machines in a single Azure region. - [Microsoft Announces Windows Server 2019, Preview Now Available](https://petri.com/microsoft-announces-windows-server-2019-preview-now-available/): Microsoft has announced Windows Server 2019 and you can download preview bits today to test before the platform reaches general... - [With Project Denali, Microsoft Looks To Standardize Data Center Cloud Storage](https://petri.com/project-denali-microsoft-looks-standardize-datacenter-cloud-storage/): Microsoft is at the Open Compute Project Summit and the company is going public with Denali, a next-generation spec for... - [Microsoft's Employee Engagement Summit Kicks off at 11AM ET, You can Watch it Here](https://petri.com/microsofts-employee-engagement-summit-kicks-off-11am-et-can-watch/): Today, at an online event, Microsoft is discussing how technology can improve employee engagement and communications; we have embedded the... - [The Evolution of Microsoft’s Collaboration Story for Office 365](https://petri.com/evolution-microsoft-collaboration-story-office-365/): Since Office 365 appeared in 2011, Microsoft's collaboration story has varied according to whatever technology is available Teams, Yammer, Groups, email - [Deploy Azure App Service Environment with Internal Load Balancer](https://petri.com/deploy-azure-app-service-environment-internal-load-balancer/): This shows how to deploy the internal (load balancer) Azure App Service Environment (ASE) with an app service running on an isolated tier app service plan. - [Project Rome and Windows 10 Timeline](https://petri.com/using-the-timeline-in-windows-10-redstone-4/): Redstone 4 will be finalized later this month, so I decided it was time to spin up the latest insider... - [[Sponsored] Overcoming Remote Desktop Challenges with Remote Desktop Manager](https://petri.com/sponsored-overcoming-remote-desktop-challenges-remote-desktop-manager/): In today’s corporate environment IT administrators typically need to manage many different remote systems but it's important to know the... - [Amazon Announces New EC2 Spot Instance Pricing](https://petri.com/amazon-announces-new-ec2-spot-instance-pricing/): Amazon recently announced a new pricing model for its EC2 Spot Instance offering, which makes it easier to purchase spare... - [Paul Thurrott's Short Takes: March 16](https://petri.com/paul-thurrotts-short-takes-march-16/): Because I told you so, this edition of Short Takes looks Microsoft's future in cloud gaming, Intel's plans to fix... - [Office 365 Takes Aim at Spoofers but Users See Warnings About Fraudulent Messages](https://petri.com/office-365-aims-spoofers-fraudulent-messages/): Microsoft upgraded their EOP anti-spoofing capabilities inside Office 365, but users saw messages stamped "the sender failed our fraud detection checks" - [Managing Windows Software Using Chocolatey](https://petri.com/managing-windows-software-using-chocolatey/): In today's Ask the Admin, Russell Smith shows you how to get started with the Chocolatey package manager for Windows. - [Recovering Deleted Email with New Exchange Online Cmdlets](https://petri.com/recovering-deleted-email-exchange-online/): Exchange Online has two new cmdlets to help administrators recover deleted email on behalf of users. Office 365. PowerShell - [Deploy Azure App Service Environment With A Public IP](https://petri.com/deploy-azure-app-service-environment-public-ip/): This post shows how to deploy an Azure external App Service Environment (ASE) with a public IP address and your first Isolated tier app service. - [Microsoft's Adding new Data Centers in Europe and the Middle East](https://petri.com/microsofts-adding-new-data-centers-europe-middle-east/): Microsoft is adding two new regions to its cloud platform while also turning on services in other countries as products... - [Microsoft Begins Testing Teams PWA](https://petri.com/microsoft-begins-testing-teams-pwa/): Even though Teams only turned one this week, the company has begun testing a PWA version of the platform with... - [Digging Into A Couple of the Hybrid Cloud Best Business Practices](https://petri.com/hybrid-cloud-best-business-practices/): Learn a few of the best practices that businesses today are using for the hybrid cloud to make sure you... - [Monitoring the Removal of Office 365 Groups (and Teams)](https://petri.com/monitoring-removal-office-365-groups/): Owners of Office 365 Groups can delete groups if they want. Some don't like this as it means that SharePoint site collections, teams, and plans are removed. - [Managing Windows Server with Puppet Part 4: Working with Files and ACLs](https://petri.com/managing-windows-server-with-puppet-part-4-working-with-files-and-acls/): In this Ask the Admin, Russell Smith shows you how to use the file resource and manage permissions on files... - [Microsoft Details Teams Feature Roadmap](https://petri.com/microsoft-shares-teams-feature-roadmap/): Microsoft has unveiled the features roadmap for its Teams platform which includes further Cortana integration, Cloud recording and a lot... - [Google Releases Firebase Crashlytics from Beta](https://petri.com/google-releases-firebase-crashlytics-beta/): Google recently announced that the latest version of Firebase Crashlytics, the firm’s tool for reporting and managing app crashes, has... - [Controlling Resource Usage and Costs in Azure DevTest Labs](https://petri.com/controlling-resource-usage-costs-azure-devtest-labs/): This post will show you how to control and understand costs in development & test deployments using Azure DevTest Labs. - [Paul Thurrott's Short Takes: March 9](https://petri.com/paul-thurrotts-short-takes-march-9/): Because baseball season can't start soon enough, this edition of Short Takes looks at Windows's not-so-new S mode, Microsoft's best-selling... - [Microsoft Confirms It's Working on Surface Hub 2](https://petri.com/microsoft-confirms-working-surface-hub-2/): Microsoft has confirmed that the company is working on the second generation Surface Hub and that it will share details... - [Modern SharePoint Web Parts -- Connectors Web Parts](https://petri.com/modern-sharepoint-web-parts-connectors-web-parts/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Managing Windows Server with Puppet Part 3: Edit the Site Manifest](https://petri.com/managing-windows-server-with-puppet-part-3-edit-the-site-manifest/): In today's Ask the Admin, Russell Smith shows you to install modules on your Puppet master and how to open... - [Common Questions About Teams Guest Access](https://petri.com/common-questions-teams-guest-access/): Office 365 now supports external access to Teams for guests with any email address. Office 365 questions, including Planner. - [Package Management in Windows Using Chocolatey](https://petri.com/what-is-chocolatey-and-should-i-use-it-in-my-environment/): In today's Ask the Admin, Russell Smith looks at the Chocolatey package manager for Windows, what it does, and how... - [SharePoint -- Who’s In and Who’s out?](https://petri.com/sharepoint-whos-whos/): Shane Young gives you a rundown of what is in and what is out when it comes to SharePoint. Give it a read and join the conversation. - [Microsoft Debuts New AI Platform in Windows 10](https://petri.com/microsoft-debuts-new-ai-platform-windows-10/): Microsoft is building a new AI platform for Windows 10 that the company hopes developers will use to make their... - [Microsoft Looks to Streamline Moving SQL and Open Source Apps to Azure](https://petri.com/microsoft-looks-streamline-moving-sql-open-source-apps-azure/): Microsoft is rolling out new options to make moving their SQL Server and OSS apps to Azure to easier and... - [How a Free Version of Teams Might Work](https://petri.com/technical-aspects-free-version-teams/): Microsoft might be working on a free version of Teams to take on Slack. As it turns out, not many technical changes are needed. Office 365 - [Review: Surface Pro with LTE - Business in the Front, Data in the Back](https://petri.com/review-surface-pro-lte-business-front-data-back/): Microsoft has a new flavor of its Surface Pro and I have been using the device for the past week,... - [Microsoft's Bringing Azure Stack to Government Customers](https://petri.com/microsofts-bringing-azure-stack-government-customers/): Microsoft has announced several new features and functionality for its Government customers including Azure Stack. - [Deploying Azure DevTest Labs](https://petri.com/deploying-azure-devtest-labs/): This post show you how to deploy an Azure DevTest Lab in the resource group of your choice, with the virtual network of your choice. - [How to Connect Azure Web Apps To On-Premises](https://petri.com/connect-azure-web-apps-premises/): In this post, I will explain & compare the different ways that an Azure app service or web app can integrate with on-premises or remote networks or systems. - [Paul Thurrott's Short Takes: March 2](https://petri.com/paul-thurrotts-short-takes-march-2/): Because March showers bring the Apocalypse, this edition of Short Takes looks at Microsoft helping Intel to ship firmware updates,... - [What Is App Service Environment?](https://petri.com/app-service-environment/): In this post, I will explain how the isolated Azure App Services Environment works, and why you would deploy it, despite the apparent high cost. - [Is Azure SQL Highly Available?](https://petri.com/azure-sql-highly-available/): This post will explain how Azure SQL uses the underlying Service Fabric to implement primary + secondary AlwaysOn high availability or fault tolerance. - [Managing Windows Server with Puppet Part 2: Log Into Puppet Master, Accept Node Certificate, and Test Connectivity](https://petri.com/managing-windows-server-with-puppet-part-2-log-in-to-puppet-master-accept-node-certificate-and-test-connectivity/): In today's Ask the Admin, Russell Smith shows you how to log in to Puppet master using Secure Shell, accept... - [What Is Windows 10 Fast Startup And How to Disable It](https://petri.com/how-to-disable-windows-10-fast-startup-and-why-you-might-want-to/): In this Ask the Admin, Russell Smith shows you how to disable Fast Startup, explains what it does, and discusses... - [Teams Now Supports Guest Users from Non-Office 365 Domains](https://petri.com/teams-supports-guest-users-office-365/): Six months after allowing users from other Office 365 domains to access Teams as guest users, Microsoft now supports access from any email address. - [Everything You Need to Know About Windows –- February 2018 Edition](https://petri.com/everything-you-need-to-know-about-windows-february-2018-edition/): This month is all about Redstone 4, always-connected PCs, and changes to the SKU lineup and licensing. - [Modern SharePoint Web Parts Updates -- Twitter Web Part](https://petri.com/modern-sharepoint-web-parts-updates-twitter-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Office 365 Updates Keep on Piling Up](https://petri.com/office-365-updates-feb-2018/): Office 365 keeps on changing, which makes it very hard to keep up with detail. The big stuff gets covered in articles but small changes might be overlooked. - [Google Launches AdSense Auto Ads](https://petri.com/google-launches-adsense-auto-ads/): In a recent post on the Google AdSense blog, Google announced AdSense Auto Ads, the firm's latest AdSense offering that... - [Everything You Need to Know About Azure Infrastructure -- February 2018 Edition](https://petri.com/everything-need-know-azure-infrastructure-february-2018-edition/): This post is a summary of the changes and announcements in Microsoft Azure infrastructure services from the month of February 2018. - [Everything You Need to Know About Office 365 -- February 2018 Edition](https://petri.com/everything-need-know-office-365-february-2018-edition/): Get a rundown of all of this month's news from O365 including updates to iOS apps, Teams goes external, governance, and more. - [Everything You Need to Know About SharePoint -- February 2018 Edition](https://petri.com/everything-need-know-sharepoint-february-2018-edition/): Do you need a quick overview of the news for SharePoint Online and on-premises this month then this is the article for you from SharePoint MVP Shane Young. - [Microsoft's Preparing a Free Version of Teams to Take on Slack](https://petri.com/microsofts-preparing-free-version-teams-take-slack/): Microsoft is preparing to offer a free SKU of Teams with the long-term goal of hoping that these users will... - [Paul Thurrott's Short Takes: February 23](https://petri.com/paul-thurrotts-short-takes-february-23/): Because he started it, this edition of Short Takes looks at HP's PC resurgence, Intel's next mobile setback, Always Connected... - [Managing Windows Server with Puppet](https://petri.com/managing-windows-server-with-puppet-part-1-configure-puppet-master-and-bootstrap-the-puppet-agent-in-windows-server/): In today's Ask the Admin, Russell Smith shows you how to set up Puppet Enterprise Master in Azure and provision... - [Google Cloud TPUs Now Available in Beta](https://petri.com/google-cloud-tpus-now-available-beta/): In a recent post on the Google Cloud Platform blog, Google announced the beta availability of their new Cloud TPUs,... - [Intel's Bringing 5G to Windows 10 PCs Next Year, Here's Why It Matters](https://petri.com/intels-bringing-5g-windows-10-pcs-next-year-heres-matters/): The next generation of wireless connectivity is launching soon and next year, Windows 10 PCs with 5G will be released... - [Office 365, GDPR, Data Spillage, and the Right to be Forgotten](https://petri.com/office-365-gdpr-data-spillage/): GDPR is coming and Office 365 tenants need to be prepared to deal with topics like data spillage and the right to be forgotten. PII data removal. - [How Can I Store Secrets in Azure?](https://petri.com/can-store-secrets-azure/): In this post, I will tell you about a service in Azure called Key Vault, which you can think of as secret storage/handling-as-a-service. - [Patch Tuesday February 2018](https://petri.com/patch-tuesday-february-2018/): This month’s cumulative update for the Windows 10 Fall Creators Update sees the OS build bumped to version 16299. 248. - [Power BI and PowerApps Are Two Peas in a Pod](https://petri.com/power-bi-powerapps-two-peas-pod/): Learn how you can now make your actionable data from Power BI actually actionable using the PowerApps Visual. It sounds like a mouthful but it is awesome. - [Starting Your SharePoint Migration From Scratch](https://petri.com/starting-sharepoint-migration-scratch/): It's time to start seriously planning your migration to the cloud and starting with SharePoint has the ability to pay... - [How to Archive Inactive Office 365 Groups (and Teams)](https://petri.com/archive-inactive-office-365-groups/): Now that so many Office 365 apps use Groups, it's logical that some of the groups will serve their purpose and then need to be archived. - [How to Develop and Test Software with Azure VMs](https://petri.com/development-test-software-azure-vms/): This post covers Azure DevTest Labs, a way to provide self-service for developers and testers, with helpful automation, but budge control for the business. - [How to Use the Cloud as a DR Site](https://petri.com/using-the-cloud-as-a-dr-site/): See how the cloud can enhance your backup and DR capabilities and make sure that you are prepared for the... - [Paul Thurrott's Short Takes: February 16](https://petri.com/paul-thurrotts-short-takes-february-16/): Because it was 62 degrees yesterday but it will still snow tomorrow, this edition of Short Takes looks at 5... - [Introduction to the IT Roadmap Planning Tool for Microsoft 365](https://petri.com/introduction-roadmap-planning-tool-microsoft-365/): In this article. I will make an overview of the IT Roadmap Planning Tool for Microsoft 365. - [PowerShell DSC and Puppet -- Why It Is Not Either/Or](https://petri.com/puppet-vs-dsc-why-puppet-might-suit-your-windows-server-configuration-management-needs/): In this Ask the Admin, Russell Smith discusses why Puppet and DSC together is often the best configuration management solution... - [The Ups and Downs of the Simplified View of SharePoint in Teams](https://petri.com/simplified-view-sharepoint-teams/): Teams is one of Microsoft's hubs for teamwork within Office 365. People work with documents all the time and the documents are in SharePoint. - [Microsoft DSC Environment Analyzer Creates Compliance Reports for Power BI](https://petri.com/microsoft-dsc-environment-analyzer-creates-compliance-reports-for-power-bi/): Compliance is always a hot topic, so in this Ask the Admin, I'll look at how Microsoft's DSCEA can be... - [Getting Started with Windows Information Protection](https://petri.com/getting-started-windows-information-protection/): We are going to dig into WIP's requirements, how it works, and how you can use it. - [Keeping an Eye on Small but Important Changes in Office 365](https://petri.com/small-important-changes-office-365/): A recent vacation meant that I didn't spend as much time as usual monitoring changes inside Office 365, Yammer, Teams, Office 365 Groups, and Planner. - [Microsoft's Bringing Windows Defender ATP to Windows 7](https://petri.com/microsofts-bringing-windows-defender-atp-windows-7/): Microsoft is expanding the reach of ATP and will soon offer it for users of Windows 7 but only if... - [5 Things you Need to Know about the Hybrid Cloud](https://petri.com/5-things-you-need-to-know-about-the-hybrid-cloud/): There are five things every business should know about the hybrid cloud before you move to maximize your efforts. - [How Does the Windows 10 Subsystem for Linux Work and What Is It For?](https://petri.com/bash-out-of-beta-in-windows-10/): In this Ask the Admin, I’ll look at what you can do with Bash and the Windows Subsystem for Linux... - [Google Updates G Suite Meet Room Hardware](https://petri.com/google-updates-g-suite-meet-room-hardware/): In a recent post on the G Suite Updates blog, Google announced several new updates to it Hangouts Meet Room... - [Paul Thurrott's Short Takes: February 9](https://petri.com/paul-thurrotts-short-takes-february-9/): Because I've fallen and I can't get up, this edition of Short Takes examines Microsoft's latest marketing gaff, Build 2018... - [Microsoft's Build Conference is May 7-9, Registration Opens in February](https://petri.com/microsofts-build-conference-may-7-9-registration-opens-february/): Microsoft's Build conference is happening May 7-9 but unlike the past few years, the company has serious competition for this... - [MyAnalytics Outlook Add-In Highlights Personal Commitments](https://petri.com/myanalytics-highlights-personal-commitments/): MyAnalytics is one of the AI components inside Office 365. Its Outlook add-on can highlight commitments you have made in email. - [G Suite Takes a Big Step Forward Towards No Longer Needing Microsoft Office](https://petri.com/g-suite-takes-big-step-forward-towards-no-longer-needing-microsoft-office/): Google is taking a big step forward with G Suite to make it so that you no longer need to... - [Set Up Active Directory to Support Tiered Administration and Privileged Access Workstations](https://petri.com/keep-active-directory-secure-using-privileged-access-workstations/): In this Ask the Admin, Russell Smith discusses setting up Active Directory to support a secure tiered administrative model and... - [Azure SQL Backups](https://petri.com/azure-sql-backups/): This post will explain how Azure SQL makes backups extremely easy, what you get from this automatic service, and how you can do restores. - [Microsoft Looks to Poach Dropbox, Box, and Google Customers with 'Free' OneDrive](https://petri.com/microsoft-looks-poach-dropbox-box-google-customers-free-onedrive/): Microsoft is playing hardball and will offer corporate customers free 'One Drive' services if they are currently contracted with another... - [Updates for Planner but No Sign of Guest Access](https://petri.com/planner-updates/): Microsoft has released some useful updates for the Office 365 Planner app, but external access is still not there. - [Secure Microsoft Azure VMs Using Just-In-Time Access](https://petri.com/just-in-time-access-beta-comes-to-azure-vms/): In this Ask the Admin, Russell Smith looks at how the solution works and why you should use it when... - [Stress Testing Azure Accelerated Networking](https://petri.com/stress-testing-azure-accelerated-networking/): In this post, I test Azure's Accelerated Networking feature for virtual machines to see how it impacts networking performance and bandwidth availability. - [How Do I Apply NSG Policies To Applications in Azure?](https://petri.com/apply-nsg-policies-applications-azure/): This post describes Application Security Groups, a feature of NSGs, which allows you dynamically assign firewall policies to Azure virtual machines. - [New Windows 10 Commercial SKU Roadmap Revealed](https://petri.com/new-windows-10-commercial-sku-roadmap-revealed/): Microsoft is about to refresh its SKU offering for Commercial customers and they are also making significant changes to their... - [Paul Thurrott's Short Takes: February 2](https://petri.com/paul-thurrotts-short-takes-february-2/): Because we get much closer to Spring every day, this edition of Short Takes corporate earnings from Microsoft, Google, Apple,... - [Office 2019 Will Only Run On Windows 10, Shortened Lifecycle](https://petri.com/office-2019-will-run-windows-10-shortened-lifecycle/): Microsoft has announced that if you are running Windows 7, you will not be able to install Office 2019. - [Microsoft's Making More Changes to the Windows 10 Lifecycle, Extended Support for Some versions](https://petri.com/microsofts-making-changes-windows-10-lifecycle-extended-support-versions/): Microsoft is making more changes to the lifecycle support of Windows 10 and this time, they are giving you six... - [Design Considerations for Azure Web Apps](https://petri.com/design-considerations-azure-web-apps/): In this post, I will discuss some things you should consider when planning or designing an Azure App Service deployment. - [Microsoft's Q2 Earnings: $28.9 billion in Revenue, Stock Approaches $100](https://petri.com/microsofts-q2-earnings-28-9-billion-revenue-stock-approaches-100/): Microsoft's second quarter ended on December 31st and the company announced earnings for the time period of revenue of $28.... - [Everything You Need to Know About SharePoint -- January 2018 Edition](https://petri.com/everything-need-know-sharepoint-january-2018-edition/): SharePoint news that includes the SharePoint Conference, a pulled patch, renaming those URLs, a great migration tool, and more. Check it OUT! - [Everything You Need to Know About Office 365 - January 2018 Edition](https://petri.com/everything-need-know-office-365-january-2018-edition/): Office 365 News and notes covering OneDrive for Business file restores, Teams functionality, Flow User Connector improvements, a GDPR guide, and more. - [Everything You Need to Know About Azure Infrastructure - January 2018 Edition](https://petri.com/everything-need-know-azure-infrastructure-january-edition/): This post is a summary of all the news and interesting posts that were released in January 2018 on Azure infrastructure solutions & services. - [Everything You Need to Know About Windows – January 2018 Edition](https://petri.com/everything-you-need-to-know-about-windows-january-2018/): It’s been a busy month for Windows, and in case you didn’t get a chance to catch all the news,... - [Microsoft Teams Gets a User Interface Makeover](https://petri.com/microsoft-teams-user-interface-makeover/): Teams is the poster child for Office 365 right now, so it's only right that Microsoft has refreshed the Teams UI a year into the app's life. - [Using the Office 365 Groups Naming Policy](https://petri.com/office-365-groups-naming-policy/): One of the premium features for Office 365 Groups is the ability to use a naming policy so that all groups (and Teams) have a compliant name. - [Backing Up Azure App Service](https://petri.com/backing-azure-app-service/): This post will show you how to backup an Azure App Service or web app, protecting the content, settings, and, optionally, connected Azure databases. - [Microsoft Finds Itself Stuck in the middle of Intel's on-going PR Disaster](https://petri.com/microsoft-finds-stuck-middle-intels-going-pr-disaster/): Intel's latest fix to patch the Spectre vulnerability is causing more issues than it fixes; Microsoft to the rescue. - [Blocking Internet Access for Azure VMs](https://petri.com/blocking-internet-access-azure-vms/): This post will show how to use Network Security Group (NSG) Service Tags to block Internet access for Azure Virtual Machines without failing reboots. - [OpenSSH Doesn’t Replace PowerShell Remoting in Fall Creators Update](https://petri.com/connect-to-windows-server-1709-using-ssh/): The Windows 10 Fall Creators Update and Windows Server 1709 include a beta OpenSSH server and client. In this Ask... - [Modern SharePoint Web Parts Updates -- People Web Part](https://petri.com/modern-sharepoint-web-parts-updates-people-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Paul Thurrott's Short Takes: January 26](https://petri.com/paul-thurrotts-short-takes-january-26/): Because winter in Narnia was shorter than this, this edition of Short Takes looks at Microsoft's coming $1 trillion market... - [Drilling into PowerShell Core](https://petri.com/drilling-into-powershell-core/): Resident PowerShell guru Jeff Hicks shares his thought on the release of PowerShell Core. - [What Meltdown Means for Office 365](https://petri.com/meltdown-office-365/): The Meltdown vulnerability is clearly serious, especially if you run on-premises servers. But if you use Office 365, should you be worried? - [Populate Active Directory with Test User Accounts](https://petri.com/populate-active-directory-with-test-user-accounts/): In this Ask the Admin, Russell Smith uses a PowerShell script to populate Active Directory with test user accounts. - [Amazon Introduces AWS Auto Scaling](https://petri.com/amazon-introduces-aws-auto-scaling/): Amazon recently announced AWS Auto Scaling, a new service that enables admins to simultaneously configure scaling options for multiple AWS... - [Adding WebJobs to Azure App Service](https://petri.com/adding-webjobs-azure-app-service/): Aidan Finn explains how you can use WebJobs to execute tasks on Azure App Service. - [Evolution of Mixed Reality Continues as Microsoft Combines Teams, Re-orgs NEXT](https://petri.com/evolution-mixed-reality-continues-microsoft-combines-teams-re-orgs-next/): Microsoft has changed up some of its organizational structure as well as combing a couple of teams in its mixed... - [PowerShell Core 6.0 and Why Windows PowerShell Is No Longer Being Developed](https://petri.com/powershell-core-and-why-windows-powershell-is-no-longer-being-developed/): Microsoft announced the general availability of PowerShell Core 6. 0 on January 10th. In this Ask the Admin, we will... - [Finding Obsolete Office 365 Groups with PowerShell](https://petri.com/identifying-obsolete-office-365-groups-powershell/): Office 365 Groups (and Teams) can become obsolete quickly, but administrators need some help to find the underused groups. PowerShell comes to the rescue. - [Microsoft Cuts More From its Payroll, Layoffs Across Several Orgs](https://petri.com/microsoft-cuts-payroll-layoffs-across-several-orgs/): Microsoft has cut more employees from its payroll today, with a heavy impact to the Windows and Devices Group. - [Google Adds Salesforce Sales Cloud Integration to Google Analytics 360](https://petri.com/google-adds-salesforce-sales-cloud-integration-google-analytics-360/): Google recently announced that Salesforce's Sales Cloud will be integrated with Google Analytics 360, enabling businesses to better track and... - [Azure Accelerated Network Is Generally Available](https://petri.com/azure-accelerated-network-generally-available/): This post discusses the GAof Accelerated Networking for Windows and Linux Azure virtual machines, improving networking performance. - [New Yammer Features: Counts, Group Types, and Move Conversations](https://petri.com/new-yammer-features-counts-group-types-move-conversations/): Jasper Oosterveld, Modern Workplace Consultant and Microsoft MVP, announced and reviews three new Yammer features. - [Paul Thurrott's Short Takes: January 19](https://petri.com/paul-thurrotts-short-takes-january-19/): Because baby it's cold outside, this edition of Short Takes looks at Surface Book 2 market expansion, IBM revenue growth,... - [Google's Bringing a Unified Security View to G Suite](https://petri.com/googles-bringing-unified-security-view-g-suite/): Google is starting to fuse security into its productivity suite in a similar way that Microsoft has done with Office... - [PowerShell for SharePoint Online Toolset](https://petri.com/powershell-sharepoint-online-toolset/): We can use PowerShell for SPO by using any of the development environments provided by Microsoft. If you ask my... - [The Mysterious Files Folder and its Importance to Office 365 Apps](https://petri.com/mysterious-files-folder/): Many differences exist between the on-premises and cloud worlds. The Files folder is one of Office 365's unique features. - [Google Cloud is Adding 5 New Data Centers, Rolling Out 3 New Subsea Cables](https://petri.com/google-cloud-adding-5-new-data-centers-rolling-3-new-subsea-cables/): Google is expanding its cloud footprint with new data centers and also three new subsea cables coming in 2019. - [Azure App Services on Linux](https://petri.com/azure-app-services-linux/): In this post, I will discuss App Services on Linux, how it differs to the Windows Server offering, and what you can do with the Linux alternative. - [Top 4 Disaster Risks for SMBs](https://petri.com/top-4-disaster-risks-for-smbs/): See how you can handle the biggest disaster risks for small and medium-sized businesses before they impact your business. - [Patch Tuesday January 2018](https://petri.com/patch-tuesday-january-2018/): This month’s Patch Tuesday is one of the most interesting in a while. Not just because the patches Microsoft was... - [Behind the Scenes in an Office 365 Group Mailbox](https://petri.com/behind-scenes-office-365-group-mailbox/): You know that Office 365 Groups have a mailbox and that the mailbox holds conversations and the group calendar. But many other folders exist. - [Why is Everyone Scared of Microsoft Becoming the Next IBM?](https://petri.com/everyone-scared-microsoft-becoming-next-ibm/): As Microsoft continues to evolve its business model, it is frequently compared to IBM but is that such a bad... - [Active Directory Security: Understanding the AdminSDHolder Object](https://petri.com/active-directory-security-understanding-adminsdholder-object/): In this Ask the Admin, Russell Smith explains how this mechanism works and how you can change the way that... - [Mount an Active Directory Backup Using the Database Mounting Tool](https://petri.com/active-directory-domain-services-database-mounting-tool/): In this Ask the Admin, Russell Smith explains how to use the ADDS Database Mounting Tool to look at backups... - [Do You Need Third-Party Antimalware in Windows?](https://petri.com/need-third-party-antimalware-windows/): In today's Ask the Admin, we discuss whether it's necessary to use third-party antimalware in Windows 10 and Windows Server... - [Change the System Partition From MBR to GPT in Windows 10](https://petri.com/change-the-disk-partition-from-mbr-to-guid-in-windows-10/): In today's Ask the Admin, Russell Smith shows you how to change the system disk partition type from MBR to... - [Paul Thurrott's Short Takes: January 12](https://petri.com/paul-thurrotts-short-takes-january-12/): Because Meltdown and Spectre are the gifts that keep on giving, this edition of Short Takes looks at more news... - [Secure Active Directory Using the Clean Source Principle](https://petri.com/secure-active-directory-using-clean-source-principle/): Russell Smith explains how to integrate the clean source principle into your Active Directory design and management practices to keep... - [Office 365 Starts on Road to Support International Email Addresses](https://petri.com/office-365-international-email-addresses/): Microsoft says that Office 365 will support internationalized email addresses (EAI) in Q1 2018. Support is limited to inbound and outbound email. - [My Azure Infrastructure Highlights of 2017](https://petri.com/azure-infrastructure-highlights-2017/): Aidan Finn reviews his highlights in the last year of Azure infrastructure improvements. Please share your highlights too. - [Protect Users Against Malicious Websites Using Windows 10 Application Guard](https://petri.com/protect-users-against-malicious-websites-using-windows-10-application-guard/): In today's Ask the Admin, Russell Smith shows you how Windows Defender Application Guard can protect enterprise users against malicious... - [Azure SQL Elastic Pool, Single Databases, and DTUs](https://petri.com/azure-sql-elastic-pool-single-databases-dtus/): This post, about Azure SQL, will answer questions such as "What are DTUs?", "What are eDTUs?", and what is an "elastic pool?". - [Microsoft Outlines Performance Impacts of Meltdown and Spectre Patching](https://petri.com/microsoft-outlines-performance-impacts-meltdown-specture-patching/): With the patching of the Meltdown vulnerability, there will be serious impacts to performance to older CPUs and thanks to... - [Infrastructure-as-Code Part 3: Deploy Active Directory and Certificate Services in Azure](https://petri.com/infrastructure-code-part-3-deploy-active-directory-certificate-services-azure/): In the final part of this series, Russell Smith shows you how to use the code I created in the... - [A Teams PowerShell Primer](https://petri.com/teams-powershell-primer/): The Teams PowerShell module is flawed, but that does not mean that you cannot do work with it. Here's a primer of the most important cmdlets. - [Hybrid Cloud Security Risks](https://petri.com/hybrid-cloud-security-risks/): Learn about the main Hybrid Cloud security risks so that you are protected as you add complexity to your data... - [Expanded Azure Virtual Machine Availability and Locations](https://petri.com/expanded-azure-virtual-machine-availability-locations/): Microsoft Azure is growing fast to meet demand, and this post explains how VM availability and regional capacity are growing too. - [Google Adds Community Connectors Feature to Data Studio](https://petri.com/google-adds-community-connectors-feature-data-studio/): In a recent announcement, Google introduced Community Connectors to Data Studio, which is designed to make data collection, analysis, and... - [Paul Thurrott's Short Takes: January 5](https://petri.com/paul-thurrotts-short-takes-january-5/): Because it's the end of the world as we know it, this edition of Short Takes looks at the many... - [Deploy Active Directory and Certificate Services Using Azure Resource Manager](https://petri.com/deploy-active-directory-certificate-services-azure-using-infrastructure-code-part-1/): In this three-part series, Russell Smith discusses how he deployed an Active Directory forest with 2 domain controllers and a... - [Why Teams Needs Better Views](https://petri.com/teams-needs-better-views/): Microsoft Teams is the hot property in Office 365, but sometimes its user interface shows signs of immaturity. Better views are needed to sort items. - [Amazon Takes Its Microsoft Fight to On-Premises Hardware with Linux 2](https://petri.com/amazon-takes-microsoft-fight-premises-hardware-linux-2/): Amazon is expanding the footprint of its cloud platform with Linux 2, an on-premises software package that can be used... - [Google Chrome Versus Microsoft Edge in the Enterprise](https://petri.com/google-chrome-versus-microsoft-edge-enterprise/): In today's Ask the Admin, Russell Smith looks at the pros and cons of each browser for use in the... - [Creating Your First PowerApps App Using a SharePoint List -- Part 2](https://petri.com/creating-first-powerapps-app-using-sharepoint-list-part-2/): In this follow-up article we cover how to edit and publish the PowerApps app we created in the first article. All using SharePoint Online as the data source - [Microsoft Posts Office 365 Information Protection Guide for GDPR](https://petri.com/office-365-information-protection-guide-gdpr/): Microsoft has a new Information Protection guide to help Office 365 tenants prepare for GDPR. The guide is incomplete, but it has some good information. - [Paul Thurrott's Short Takes: December 29](https://petri.com/paul-thurrotts-short-takes-december-29/): Because there's a chill in the air, this short New Year edition of Short Takes looks at Windows Hello security,... - [Creating Your First PowerApps App Using a SharePoint List](https://petri.com/creating-first-powerapps-app-using-sharepoint-list-part-1/): Learn how to create and customize your first PowerApps app using SharePoint list with step-by-step instructions. A must know skill. - [Modern SharePoint Web Parts Updates — Text Web Part](https://petri.com/modern-sharepoint-web-parts-updates-text-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [The Highs and Lows of Office 365 in 2017](https://petri.com/office-365-highs-and-lows-in-2017/): Lots of good things happened in the world of Office 365 during 2017. More people than ever before use the service, new applications and functionality - [Modern SharePoint Web Parts Updates -- Image Web Part](https://petri.com/modern-sharepoint-web-parts-updates-image-web-part/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Azure Site Recovery Deployment Planner for VMware and Hyper-V](https://petri.com/azure-site-recovery-deployment-planner-vmware-hyper-v/): The ASR Deployment Planner for VMware and Hyper-V will help you understand, size, and price your DR solutions based on Azure. - [Amazon Launches Amazon Linux 2](https://petri.com/amazon-launches-amazon-linux-2/): In a recent post on the AWS blog, Amazon announced the latest version of its Linux offering, Amazon Linux 2. - [Azure Launches Archive Storage and Storage Account v2](https://petri.com/azure-launches-archive-storage-storage-account-v2/): In this post, I'll explain the benefits of new Azure storage features: tiered blob storage, and general purpose v2 (GPv2) storage accounts. - [Azure SQL Versus SQL Server In An Azure VM](https://petri.com/azure-sql-versus-sql-server-azure-vm/): This post will compare the options for deploying SQL Server in Microsoft Azure, Azure SQL (PaaS) or SQL Server running in virtual machines (IaaS). - [Paul Thurrott's Short Takes: December 22](https://petri.com/paul-thurrotts-short-takes-december-22/): Because it's the gift that keeps on giving, this special holiday edition of Short Takes looks at Microsoft v. Google,... - [Deploy Active Directory and Certificate Services in Azure Using Infrastructure-as-Code -- Part 2](https://petri.com/deploy-active-directory-certificate-services-azure-using-infrastructure-code-part-2/): In part two of this series on deploying Active Directory and a member server running certificate services in Microsoft Azure,... - [The Pain of Removing Unwanted Content from Teams](https://petri.com/pain-removing-content-teams/): Creating great content in Microsoft Teams is all very well. But what happens when some not-so-good content turns up? You might just want to remove it. - [Sponsored: Conquering Remote Desktop Challenges](https://petri.com/remote-desktop-challenges/): Conquer your Remote Desktop challenges by overcoming a few of the more common hurdles. - [Cloud and Hyper-V Predictions for 2018](https://petri.com/cloud-hyper-v-predictions-2018/): Aidan Finn delves into the mists of the future to discover what will work and what will not in the... - [System State Support by Azure Backup Is Generally Available](https://petri.com/system-state-support-azure-backup-generally-available/): This post explains what the value is of system state backup, and how to backup & restore system state using Azure Backup's MARS agent. - [Microsoft Outlines New Business Features Coming In The Next Update of Windows 10](https://petri.com/microsoft-outlines-new-business-features-coming-next-update-windows-10/): Microsoft has outlined the features coming in the next major update of Windows and there are a few items that... - [What Is Hyper-Convergence in Windows Server 2016?](https://petri.com/hyper-convergence-windows-server-2016/): In this Ask the Admin, Russell Smith explains what hyper-convergence is and how it can help simplify your IT systems. - [Reviewing My Hyper-V and Cloud Predictions for 2017](https://petri.com/reviewing-hyper-v-cloud-predictions-2017/): This post will review my Hyper-V and Microsoft cloud predictions of 2017, in advance of making more new year's forecasts for 2018. - [VMware and Microsoft Are Friends Again, VMware virtualization on Azure Moves Forward](https://petri.com/vmware-microsoft-friends-vmware-virtualization-azure-moves-forward/): Microsoft and VMware are friends again with both companies agreeing to work together to bring VMware products to Microsoft's cloud. - [How Office 365 Groups Saved SharePoint Online](https://petri.com/office-365-groups-saved-sharepoint-online/): Office 365 Groups have been very good for SharePoint Online. Because many apps use Groups, they also use SharePoint, even if they don't know it. - [Veeam’s 'Biggest Release' In their 10 Year History Arrives Today](https://petri.com/veeams-biggest-release-10-year-history-arrives-today/): Veeam, once a niche company with a unique product has been growing at a serious rate the past couple of... - [Using the Azure Pricing Calculator](https://petri.com/using-azure-pricing-calculator/): This post will show you how to using the Azure Pricing Calculator to estimate the cost of using Azure services, using an example of a virtual machine. - [Surface Pro: Six Months Later](https://petri.com/surface-pro-six-months-later/): The Surface Pro has been available for six months and now that the dust has settled, it's time to take... - [PowerShell for SharePoint Online Usage Scenarios](https://petri.com/powershell-sharepoint-online-usage-scenarios/): PowerShell for SPO is a tool not only for platform administration and configuration tasks but also for doing many other... - [Amazon Releases New Unified CloudWatch Agent](https://petri.com/amazon-releases-new-unified-cloudwatch-agent/): Amazon has announced a new unified agent for their AWS CloudWatch monitoring service, making it easier for admins to log... - [Automatically Resize an Azure VM](https://petri.com/automatically-resize-azure-vm/): In this “how to” post, I will show you how to use Azure Automation to scale up (increase) or scale down (decrease) the size of an Azure virtual machine. - [Improve Office 365 Security Using Secure Score](https://petri.com/improve-office-365-security-using-secure-score/): In this Ask the Admin, Russell Smith shows you what Office 365 Secure Score can do for the online security... - [Paul Thurrott's Short Takes: December 15](https://petri.com/paul-thurrotts-short-takes-december-15/): Because there's a chill in the air, this edition of Short Takes looks at Microsoft's embrace of fake news, OpenSSH... - [Microsoft Releases Compliance Manager Preview](https://petri.com/microsoft-releases-compliance-manager-preview/): In this Ask the Admin, Russell Smith looks at how Microsoft's new service can help organizations meet compliance requirements. - [Microsoft Clarifies Premium Features for Office 365 Groups. Prepare to Spend More!](https://petri.com/microsoft-clarifies-premium-features-office-365-groups/): A new Microsoft support article clarifies premium features used by Office 365 Groups that require premium licenses. Also used by Teams. - [Microsoft and Reddit Partner To Make Search Better](https://petri.com/microsoft-reddit-partner-make-search-better/): Microsoft and Reddit have teamed up to make searching the site a little bit better and also adding a new... - [Lack of Migration Tools Can Cause Problems Moving to Teams](https://petri.com/migration-tools-slow-migration-teams/): Microsoft Teams is popular now, but if you decide to use it, how can you move content from other applications to Teams. Microsoft does not have an API. - [Getting Started with Project Honolulu](https://petri.com/getting-started-project-honolulu/): In this Ask the Admin, Russell Smith looks at the technical preview of Project Honolulu in Windows Server version 1709. - [What's the benefit of Windows on ARM for the Enterprise?](https://petri.com/whats-benefit-windows-arm-enterprise/): There is a lot of talk about how Windows devices based on ARM will be a huge shift in desktop... - [Taking Advantage of Azure’s DR Options to Keep Your Data Safe For Tomorrow](https://petri.com/taking-advantage-of-azures-built-on-dr-options/): Learn about Azure's different options to protect your business-critical data to avoid your next possible outage. - [Adding a Subscription to an External Office 365 User](https://petri.com/adding-subscription-external-office-365-user/): In this Ask the Admin, Russell Smith walks you through what happened when he converted an external Office 365 user... - [Extending Your On-Premise databases to the Hybrid Cloud with SQL Server Stretch Databases](https://petri.com/extending-your-on-premise-databases-to-the-hybrid-cloud-with-sql-server-stretch-databases/): See how SQL Server Stretch Databases can extend your data to the hybrid cloud and it is easy to configure... - [IBM Announces new Power Systems Servers and POWER9 Processor](https://petri.com/ibm-announces-new-power-systems-servers-power9-processor/): In a recent press release, IBM announced its new Power Systems Servers and POWER9 processor, which can be useful when... - [Managing File Associations in Windows 10](https://petri.com/managing-file-associations-windows-10/): In this Ask the Admin, Russell Smith explains the changes to how default app file associations are managed in Windows... - [Modern SharePoint Site Themes - New customizations](https://petri.com/modern-sharepoint-site-themes-new-customizations/): Jasper Oosterveld, Microsoft MVP & Consultant, reviews the latest updates to the customizations of the Modern SharePoint Team Site look... - [Modern SharePoint Web Parts Updates -- Spacer and Divider](https://petri.com/modern-sharepoint-web-parts-updates-spacer-divider/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [G Suite for Office 365 Admins: Calendar Structured Resource Data](https://petri.com/g-suite-office-365-admins-calendar-structured-resource-data/): In today's Ask the Admin, Russell Smith shows you how to create additional calendars for people and resources with structured... - [Microsoft Brings Advanced Threat Protection to SharePoint Online](https://petri.com/atp-sharepoint-online/): Microsoft launched Advanced Threat Protection for SharePoint Online, OneDrive for Business, and Teams on December 5. - [Deploy From Your Code Management into Azure Web Apps](https://petri.com/deploy-code-management-azure-web-apps/): This post will explain how to deploy code into Azure Web apps from VSTS, GitHub, Git, BitBucket, and so on, instead of FTP, using a GitHub example. - [Amazon Announces New AWS Cloud Media Services](https://petri.com/amazon-announces-new-aws-cloud-media-services/): In a recent post on the AWS blog, Amazon announced several new media services that can be used to process,... - [What's New in Windows Server 1709 Hyper-V](https://petri.com/whats-new-windows-server-1709-hyper-v/): This post explains what new features you will find in the 1709 release of Windows Server 2016 Hyper-V. - [Protecting Office 365 Documents with Conditional Access Policies](https://petri.com/conditional-access-policies-protect-office-365-documents/): Azure Conditional Access policies can be used with Azure Information Protection (AIP) to secure protected documents against unauthorized access. - [Cross-Platform Administration for Office 365 with Office 365 CLI Tool](https://petri.com/cross-platform-administration-office-365-office-365-cli-tool/): In this article, Jussi Roine discusses the purpose of Office 365 CLI. - [Azure Launches FS_v2-Series Virtual Machines](https://petri.com/azure-launches-fs_v2-series-virtual-machines/): Aidan Finn discusses Microsoft's launch of a new version of the F-Series virtual machines aimed at providing Xeon performance for... - [Paul Thurrott's Short Takes: December 1](https://petri.com/paul-thurrotts-short-takes-december-1/): Because it's beginning to look a lot like Festivus, this edition of Short Takes looks at the success of Windows... - [Microsoft's Forced Enterprise-Modernization Reaches Its First Roadblock](https://petri.com/microsofts-forced-enterprise-modernization-reaches-first-roadblock/): Microsoft is forcing every company of every size to modernize their IT practices and while this may be a good... - [Measuring the Impact of Teams on Email Traffic](https://petri.com/measuring-impact-teams-email-traffic/): Saying that Teams will reduce the amount of email traffic is one thing; proving it is another. After making the case that Teams reduces email traffic - [Modern SharePoint Web Parts Updates -- Forms](https://petri.com/modern-sharepoint-web-parts-updates-forms/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Amazon takes on Microsoft's Azure Advanced Threat Protection with GuardDuty](https://petri.com/amazon-takes-microsofts-azure-advanced-threat-protection-guard-duty/): Amazon has announced a new security service for AWS called GuardDuty that will challenge Azure Advanced Threat Protection for the... - [Uploading to Azure Web Apps Using FTP](https://petri.com/uploading-azure-web-apps-using-ftp/): In this post, I will show you how to use FTP to upload web content to an Azure web app - you can also use this method to download files. - [Microsoft's Bringing Location Based Services to Azure](https://petri.com/microsofts-bringing-location-based-services-azure/): Microsoft is pushing out a new service into preview that will finally bring location-based services to the cloud platform. - [The Fuss About VMware and Azure](https://petri.com/fuss-vmware-azure/): Aidan Finn shares what he thinks about the recent reaction by VMware to Microsoft’s news that they would be enabling... - [Teams Won’t Replace Email but It Can Reduce Email Traffic](https://petri.com/teams-wont-replace-email/): Some observers say that Teams will replace email. Well, Teams won't because Email has so many advantages. But Teams will take some traffic. - [What Is Windows Defender System Guard in the Fall Creators Update?](https://petri.com/windows-defender-system-guard-fall-creators-update/): In this Ask the Admin, Russell Smith explains how Windows Defender System Guard reorganizes existing security defenses. - [5 Ways a DR Plan can help your ROI](https://petri.com/5-ways-a-dr-plan-can-help-your-roi/): An effective DR plan has a big ROI in a number of different ways but only if you construct it... - [Microsoft is Bringing VMware to Azure, VMware Is Not A Happy Camper](https://petri.com/microsoft-bringing-vmware-azure-vmware-not-happy-camper/): VMware is upset with Microsoft over its new Azure service and will not provide support for the platform. - [Azure Web App Deployment Slots](https://petri.com/azure-web-app-deployment-slots/): In this post, I will explain the role of web app deployment slots in Azure, for controlled release management & QA (quality assurance), and how to use them. - [Windows Server: Protected Privileged Accounts](https://petri.com/windows-server-protected-privileged-accounts/): In this Ask the Admin, Russell Smith outlines some of the security features in Windows Server that can be used... - [Paul Thurrott's Short Takes: November 22 2017](https://petri.com/paul-thurrotts-short-takes-november-22/): Because I am thankful for a short work week, this edition of Short Takes looks at Microsoft's portable gaming acumen,... - [What's Next For Azure Stack? Here's What's Coming in CY18](https://petri.com/whats-next-azure-stack-heres-whats-coming-cy18/): Microsoft has released a roadmap for what is coming next for Azure Stack and it includes a wide variety of... - [Validate the Integrity of Installation Media](https://petri.com/validate-integrity-installation-media/): In this Ask the Admin, Russell Smith shows you how to be sure the source media you use to install... - [Managing GDPR with Teams, Planner, and Compliance Manager](https://petri.com/teams-planner-compliance-manager-gdpr/): Microsoft's Compliance Manager is intended to help cloud tenants cope with regulations like ISO 27001 and GDPR. Teams and Planner make it better. - [First impressions on Compliance Manager Preview](https://petri.com/first-impressions-compliance-manager-preview/): Microsoft released Compliance Manager Preview, after initially announcing the new service during Ignite 2017 in late September. It is, for... - [Google Announces General Availability of BigQuery Data Transfer Service](https://petri.com/google-announces-general-availability-bigquery-data-transfer-service/): Google recently announced the general availability of their BigQuery Data Transfer Service, which can be used to automate the transfer... - [Deploying a Web App in Azure](https://petri.com/deploying-web-app-azure/): This step-by-step post will show how to set up a new Azure Web App, as an alternative to deploying a website in a virtual machine. - [Yammer Presents: Group Insights](https://petri.com/yammer-presents-group-insights/): Jasper Oosterveld, Microsoft MVP and Consultant, introduces the new Yammer Group Insights. - [Paul Thurrott's Short Takes: November 17](https://petri.com/paul-thurrotts-short-takes-november-17/): Because perfect is the enemy of good, this edition of Short Takes looks at Windows as a (dis)service, Windows 10... - [Controlled Folder Access in Windows 10 FCU](https://petri.com/controlled-folder-access-windows-10-fcu/): In this Ask the Admin, Russell Smith explains how Controlled Folder Access can help protect users against ransomware. - [Surface Book 2 Review: A Workhorse for the Workplace](https://petri.com/surface-book-2-review-workhorse-workplace/): Microsoft's Surface Book 2 bridges the gap between laptop and desktop but with a starting price of $2499, is it... - [European SharePoint Conference Swings into Dublin](https://petri.com/european-sharepoint-conference-dublin/): The European SharePoint Conference took place in Dublin, Ireland this week. Here's what I learned from the event. - [Introducing SharePoint Attention View](https://petri.com/introducing-sharepoint-attention-view/): Jasper Oosterveld, Microsoft MVP and Consultant at InSpark, introduces the new attention view in SharePoint Document Libraries. Making our lives,... - [Microsoft and Apache Jump Into the Cloud Bed, New Tools for Devs Announced](https://petri.com/microsoft-apache-jump-cloud-bed-new-tools-devs-announced/): Microsoft is bringing more features to Azure including tech from Apache Spark to create a new Azure Databricks service. - [Microsoft's Extends Support of Windows 10 1511 to Ease Adoption Pain](https://petri.com/microsofts-extends-support-windows-10-1511-ease-adoption-pain/): After early adopters were not able to upgrade in time, Microsoft is extending support of Windows 10 1511 by six... - [My Tasks App Arrives For Microsoft Teams](https://petri.com/tasks-app-arrives-microsoft-teams/): My Tasks App is a new feature that is not delivered as a regular Microsoft Teams App but as the... - [Checking Office 365 Group Membership with Azure AD Access Reviews](https://petri.com/azuread-access-reviews-group-membership/): A new premium Azure Active Directory feature allows you to force group owners to certify that external members should have continued access. - [Amazon Announces New S3 Encryption and Security Features](https://petri.com/amazon-announces-new-s3-encryption-security-features/): In a recent post on the AWS blog, Amazon announced the addition of several new encryption and security features that... - [Amazon Adds Improvements to CloudWatch in the AWS GovCloud Region](https://petri.com/amazon-adds-improvements-cloudwatch-aws-govcloud-region/): Amazon recently announced several improvements to CloudWatch within the AWS GovCloud (US) Region, including support for extended metric retention, the... - [Paul Thurrott's Short Takes: November 10](https://petri.com/paul-thurrotts-short-takes-november-10/): Because friends don't let friends use Linux, this edition of Short Takes looks at Kroger's Amazon problem, Salesforce's CEO problem,... - [Managing OneDrive Files On Demand in The Windows 10 Fall Creators Update](https://petri.com/managing-onedrive-files-demand-windows-10-fall-creators-update/): In today's Ask the Admin, Russell Smith shows you how you can manage the new OneDrive Files On-Demand feature in... - [Amazon Announces New AWS EC2 P3 Instances](https://petri.com/amazon-announces-new-aws-ec2-p3-instances/): Amazon recently announced the availability of new AWS Elastic Compute Cloud (EC2) P3 instances, which are ideal for computation-intensive activities. - [Microsoft's Advanced Threat Protection Adds Support for Android, iOS, and Linux](https://petri.com/microsofts-advanced-threat-protection-adds-support-android-ios-linux/): Microsoft is expanding the footprint of Advanced Threat Protection with the ability to now monitor iOS and Android devices. - [Windows Server: New Features in Version 1709](https://petri.com/windows-server-new-features-version-1709/): In this Ask the Admin, Russell Smith provides a summary of the new features in the latest version of Windows... - [Microsoft Wants LinkedIn to Help You Create Your Next Resume](https://petri.com/microsofts-wants-linkedin-help-create-next-resume/): Microsoft has a new tool for Office365 customers that uses LinkedIn data to help you build a better resume. - [Modern SharePoint Web Parts Updates -- Group Calendar](https://petri.com/modern-sharepoint-web-parts-updates-group-calendar/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Why the PowerShell Module for Teams is Critically Flawed](https://petri.com/powershell-module-teams-critically-flawed/): Microsoft has released a beta version of the Teams PowerShell module. The only problem is that the module is not very good. - [The Five Big Benefits of the Hybrid Cloud](https://petri.com/five-big-benefits-hybrid-cloud/): The hybrid cloud has a lot to offer and here are the five biggest benefits of the new hybrid environments. - [Cloud Security: Create a Custom RBAC Role in Microsoft Azure](https://petri.com/cloud-security-create-custom-rbac-role-microsoft-azure/): In this Ask the Admin, Russell Smith shows you how to add a custom Azure role for restarting virtual machines. - [Microsoft's Next Great Challenge, Selling Microsoft 365](https://petri.com/microsofts-next-great-challenge-selling-microsoft-365/): Microsoft is embarking on its next great SaaS challenge, convincing the enterprise that Microsoft 365 is not only a good... - [Cray Supercomputers in Microsoft Azure](https://petri.com/cray-supercomputers-microsoft-azure/): Microsoft and Cray have announced that Cray's supercomputers are coming to Azure to offer physical high performance computing (HPC) to cloud customers. - [Why S2D Is Missing from Windows Server 1709](https://petri.com/s2d-missing-windows-server-1709/): This post explains why Storage Spaces Direct (S2D) is missing from the 1709 semi-annual release of Windows Server 2016, and what Microsoft's plans are. - [Managing Privileged Access to Active Directory](https://petri.com/managing-privileged-access-active-directory/): In this Ask the Admin, Russell Smith looks at what you need to take into consideration when planning access to... - [Big Brother Watches Your Email with Office 365 Supervision Policies](https://petri.com/office-365-supervision-policies/): Office 365 includes supervision policies to allow tenants to monitor the content of email sent by different groups of users to each other and externally. - [Understanding Microsoft 365](https://petri.com/understanding-microsoft-365/): In this post, I’ll discuss one of the hottest subjects that my customers want to learn more about; Microsoft 365. - [What Are Azure Containers -- For IT Pros](https://petri.com/azure-containers-pros/): This post, aimed at IT pros, will explain what Azure containers are, what the deployment options are, and how you can orchestrate the solutions. - [Paul Thurrott's Short Takes: November 3](https://petri.com/paul-thurrotts-short-takes-november-3/): Because there's a new Call of Duty out and I feel a, ahem, cold coming on, this edition of Short... - [Microsoft Outlines What's New in the Fall Creators Update for IoT](https://petri.com/microsoft-outlines-whats-new-fall-creators-update-iot/): Microsoft is bringing several new features to its IoT platform with the Fall Creators update to increase security and make... - [What Are Logic Apps -- For IT Pros](https://petri.com/logic-apps-pros/): What are Azure Logic Apps? This post, aimed at IT Pros, will explain how Logic Apps can be used to create coordinated & integrated workflows in Azure. - [Microsoft Turns up the Heat on Oracle, Amazon, and IBM Databases](https://petri.com/microsoft-turns-heat-oracle-amazon-ibm-databases/): Microsoft is turning up the heat on Amazon and Oracle by offering a new tool that will take the pain... - [Exchange Online Protection Highlights Unauthenticated Senders](https://petri.com/exchange-online-protection-highlights-unauthenticated-senders/): Exchange Online Protection(EOP) now highlights unauthenticated users - or messages that come from people who cannot prove their identity. - [Microsoft Has A New (Free) Tool To Help Make Your SQL Databases Faster](https://petri.com/microsoft-new-free-tool-help-make-sql-databases-faster/): In the coming weeks, Microsoft is going to release a free cross-platform tool that will help you improve the performance... - [What Is Azure Service Fabric -- For IT Pros](https://petri.com/azure-service-fabric-pros/): Aidan Finn discusses Service Fabric, a microservices deployment compute-based system in Azure. - [What Is Remote Desktop Modern Infrastructure?](https://petri.com/remote-desktop-modern-infrastructure/): This post explains how Remote Desktop Services (RDS) Modern Infrastructure will use Azure PaaS & Azure AD to simplify and secure client app deployments. - [Microsoft 365 Graduates, Grabs A Few New Apps](https://petri.com/microsoft-365-graduates-grabs-new-apps/): Microsoft is bringing Microsoft 365 out of preview and as it graduates, the company is adding a couple new apps... - [What Are Azure Functions -- For IT Pros](https://petri.com/azure-functions-pros/): This post will explain how Azure Functions offer pay-per-second serverless computing, without the distractions or costs of IT infrastructure. - [Microsoft Softens Stance but RPC over HTTP is still Dead](https://petri.com/rpc-over-http-still-dead/): Microsoft said RPC over HTTP was dead for Exchange Online on Oct 31, 2017. The protocol is still dead, but it now in a zombie-like unsupported mode. - [Introducing SharePoint Hub Sites](https://petri.com/introducing-sharepoint-hub-sites/): Jasper Oosterveld, Microsoft MVP and Consultant, introduces the new SharePoint Hub Site. - [Planned Maintenance For Azure Virtual Machines](https://petri.com/planned-maintenance-azure-virtual-machines/): Aidan Finn examines Microsoft's new feature that allows you to control the forced outages that occur to virtual machines when... - [Paul Thurrott's Short Takes: Earnings Special Edition (October 2017)](https://petri.com/paul-thurrotts-short-takes-earnings-special-edition/): Because quarterly earnings are in the air, this edition of Short Takes focuses on Microsoft's earnings announcement this week. - [App Management Using Microsoft Store for Business](https://petri.com/app-management-using-microsoft-store-business/): In today's Ask the Admin, Russell Smith looks at the prerequisites for setting up Microsoft Store for Business and show... - [Microsoft's Cloud Hits 20 Billion Run Rate, Revenue Climbs 12% in Q1](https://petri.com/microsofts-cloud-hits-20-billion-run-rate-company-posts-strong-q1-results/): It's earnings day for Microsoft and the company has posted another strong quarter (Q1 with revenue of $24. 5 billion... - [Google Adds Improvements to Data Loss Prevention API](https://petri.com/google-adds-improvements-data-loss-prevention-api/): Google recently announced several improvements to their Data Loss Prevention API, a service that can be used to manage sensitive... - [Windows Server Essentials: File History](https://petri.com/windows-server-essentials-file-history/): In this Ask the Admin, Russell Smith looks at how Windows Server Essentials can help small businesses manage File History,... - [Easier Than Ever to Protect Email with Office 365](https://petri.com/protect-email-office-365/): Office 365 has given its rights management capabilities a complete refresh. Clients deal with protected email better and it's easy to send protected email. - [Create a Cloud Storage Local Cache Using Azure File Sync](https://petri.com/create-cloud-storage-local-cache-using-azure-file-sync/): In this Ask the Admin, Russell Smith looks at how Azure File Sync works and how to enable it in... - [Understanding G Suite Licensing](https://petri.com/understanding-g-suite-licensing/): In today's Ask the Admin, Russell Smith explains the different licensing options for G Suite and how they compare to... - [Azure Preview for DDoS Protection](https://petri.com/azure-preview-ddos-protection/): In this post I’ll discuss a new preview release in Azure, that offers us a protection service against distributed denial of service (DDoS) attacks. - [Microsoft Puts Deis Acquisition to Work, Makes Kubernetes its Platform of Choice](https://petri.com/microsoft-puts-deis-acquisition-work-makes-kubernetes-platform-choice/): Microsoft is throwing its weight behind Kubernetes and is making it the preferred container for Azure. - [Why You Should Use Microsoft's Active Directory Tier Administrative Model](https://petri.com/use-microsofts-active-directory-tier-administrative-model/): In this Ask the Admin, Russell Smith explains what Microsoft's AD tier administrative model is and how it can improve... - [It’s the Small Changes in Office 365 That Make the Difference](https://petri.com/small-changes-office-365-make-difference/): Microsoft says they will communicate large changes in Office 365 better, but what about all the small changes that show up without warning. - [SharePoint Online Administration Center: New and improved](https://petri.com/sharepoint-online-administration-center-new-improved/): Jasper Oosterveld, Microsoft MVP en Consultant, is reviewing the new SharePoint Administration Center in Office 365. - [What Are Azure Availability Zones?](https://petri.com/azure-availability-zones/): Aidan Finn explains explains a new high-availability and service level agreement (SLA) feature of Microsoft Azure called availability zones. - [Essential Components of a Successful DR Strategy](https://petri.com/essential-components-of-a-successful-dr-strategy/): Learn about the essential elements for building a DR that works for your environment and all types of scenarios. - [Paul Thurrott's Short Takes: October 20](https://petri.com/paul-thurrotts-short-takes-october-20/): Because I'm about to be gonged again, this edition of Short Takes looks at Microsoft's market cap, the Fall Creators... - [The Cortana Smart Speaker is here, but is it your Office Assistant?](https://petri.com/review-cortana-smart-speaker-office-assistant/): The Invoke is finally here but is Cortana inside a smart speaker the next great digital assistant or is it... - [Azure Portal Life Hacks](https://petri.com/azure-portal-life-hacks/): This post contains a number of tips to help you make the most of the Azure Portal and reduce the amount of navigation and clicking required. - [The Useful Clean Up Mailbox Option Hidden in OWA](https://petri.com/owa-clean-up-mailbox-option/): OWA now boasts a useful mailbox option, which is helpful if you feel that you need to remove some old and lingering email. - [Azure Site Recovery Announcements from Ignite](https://petri.com/azure-site-recovery-announcements-ignite/): This post is a summary of the announced new features that are coming to Azure Site Recovery, Microsoft's DR-as-a-Service solution in the cloud. - [Microsoft Announces SQL Server 2017 for Docker](https://petri.com/microsoft-announces-sql-server-2017-docker/): In this Ask the Admin, Russell Smith looks at Microsoft SQL Server 2017 being available for the first time on... - [Gallery: Hands On With 13in and 15in Surface Book 2](https://petri.com/gallery-hands-13in-15in-surface-book-2/): Microsoft has announced a new 15in Surface Book and they have also overhauled the internals of the 13in model too. - [Microsoft Expands Surface Family with 15in Surface Book 2](https://petri.com/microsoft-expands-surface-family-15in-surface-book-2/): Microsoft has updated its Surface Book family to include updated internals like a quad-core processor and also a new 15in... - [Microsoft Makes Major Changes More Transparent for Office 365](https://petri.com/office-365-major-changes-transparent/): Based on user feedback and a horrible year of change management missteps, Microsoft is changing the way it handles major updates for Office 365. - [AWS and Microsoft Announce Gluon](https://petri.com/aws-microsoft-announce-gluon/): Amazon and Microsoft recently announced Gluon, a new interface for open-source deep learning that enables developers to quickly and easily... - [Surface Studio: Long Term Update](https://petri.com/surface-studio-long-term-update/): As the Surface Studio comes up on its one year announcement anniversary, it's time to take a look back at... - [What Is Azure File Sync](https://petri.com/azure-file-sync/): This post explains how Microsoft is solving common file server problems such as capacity, backup, disaster recovery (DR), and inter-office collaboration. - [Paul Thurrott's Short Takes: October 13](https://petri.com/paul-thurrotts-short-takes-october-13/): Because autumn is in the air, this edition of Short Takes looks at Microsoft's new Amazon partnership, Windows phone is... - [Windows Server 2016: Understanding Microsoft’s Enhanced Security Administrative Environment](https://petri.com/windows-server-2016-understanding-microsofts-enhanced-security-administrative-environment/): In today's Ask the Admin, I'll look at Microsoft's recommendations for securing Active Directory forests using its Enhanced Security Administrative... - [Office 365 Growth Doesn’t Reduce SLA Performance](https://petri.com/office-365-growth-good-sla-performance/): Office 365 continues to grow strongly but all the added users do not seem to have impacted the reliability (SLA) of the service. - [Microsoft Announces Azure Confidential Computing](https://petri.com/microsoft-announces-azure-confidential-computing/): In this Ask the Admin, Russell Smith provides a brief overview of Microsoft's Azure Confidential Computing technology and looks at... - [Google Launches Cloud Firestore](https://petri.com/google-launches-cloud-firestore/): Google announced Cloud Firestore, a fully-managed NoSQL document database that is designed to easily store and sync app and website... - [4 Ways to Add a Secondary Administrator to OneDrive for Business](https://petri.com/4-ways-add-secondary-administrator-onedrive-business/): Adding a secondary administrator to OneDrive For Business in Office 365 is a very common ask for an Office 365... - [AAD Licensing for Groups and Teams Features Burdens Office 365 Tenants](https://petri.com/aad-licensing-groups-teams/): Microsoft clarified what AAD features need premium licenses at Ignite. Tenants need many of those features to control Office 365 Groups and Teams. - [Azure Networking Announcements from Ignite](https://petri.com/azure-networking-announcements-ignite/): Microsoft announced lots of new generally available and preview features for networking in Azure at the Ignite 2017 conference. This post has all the news. - [Choosing an Azure Virtual Machine - September 2017](https://petri.com/choosing-azure-virtual-machine-september-2017/): This post will help you decide which of the Azure virtual machine (VM) series and size you should choose for your IaaS-based application deployments. - [The Azure IaaS Announcements from Ignite 2017](https://petri.com/azure-iaas-announcements-ignite-2017/): Aidan Finn shares a summary of the improvements to the Azure virtual machine and related services and features announced at... - [Windows Store Apps Can Compromise PC Security](https://petri.com/windows-store-apps-can-compromise-pc-security/): In this Ask the Admin, Russell Smith explains why you should use application control to restrict which Windows Store apps... - [Paul Thurrott's Short Takes: October 6](https://petri.com/paul-thurrotts-short-takes-october-6/): Because I'm in a real Groove this week, this edition of Short Takes looks at Microsoft Edge on Android and... - [Upgrading your Infrastructure with the Hybrid Cloud](https://petri.com/upgrading-your-infrastructure-with-the-hybrid-cloud/): Hybrid IT has many use-cases and while it's not for everyone, the vast majority of scenarios can benefit from this... - [PowerShell Classes Part 5 -- Classes or PSCustom Objects?](https://petri.com/powershell-classes-part-5-classes-pscustom-objects/): Custom PowerShell objects are one way to represent a set of data as a single object and so are PowerShell... - [Windows Defender Exploit Guard Replaces EMET in Fall Creators Update](https://petri.com/windows-defender-exploit-guard-replaces-emet-fall-creators-update/): In this Ask the Admin, Russell Smith looks at the technical details of how Windows Defender Exploit Guard will replace... - [Microsoft's Bringing Edge to iOS and Android](https://petri.com/microsofts-bringing-edge-ios-android/): Microsoft is bringing its Edge browser to iOS and Android but this also means that they are now actively developing... - [The Big Flaw in Exchange Online Auditing](https://petri.com/flaw-in-exchange-online-auditing/): You can capture Exchange mailbox events in the Office 365 audit log, but only if you remember to enable auditing for target mailboxes. - [Windows Server 2016: Short-Lived Active Directory Group Membership](https://petri.com/windows-server-2016-short-lived-active-directory-group-membership/): In today's Ask the Admin, Russell Smith shows you how to temporarily add users to Active Directory groups. - [Post-Ignite 2017 Reflections About Office 365](https://petri.com/post-ignite-2017-reflections-office-365/): After returning from the Ignite conference, I have pages of notes to pour over. Here are some of the more interesting things i learned about Office 365. - [Configure DNS to Enable a Trust Between Two Active Directory Forests](https://petri.com/configure-dns-enable-trust-two-active-directory-forests/): In today's Ask the Admin, Russell Smith shows you how to set up DNS in Windows Server so that you... - [Windows Server 2016: Set Up Privileged Access Management](https://petri.com/windows-server-2016-set-privileged-access-management/): In today's Ask the Admin, Russell Smith shows you how to implement Privileged Access Management (PAM) in Windows Server 2016. - [Microsoft's Roadmap Shows What's Ahead for Office 365](https://petri.com/microsofts-office-365-roadmap/): Last week, Microsoft announced several new features coming to Office 365 and now we have a roadmap to make sense... - [Windows 10 Protected Event Logging](https://petri.com/windows-10-protected-event-logging/): In this Ask the Admin, Russell Smith looks at how Protected Event Logging is implemented in Windows 10. - [Exchange Relieves Hybrid Deployment Blockers for On-Premises Customers](https://petri.com/hybrid-deployment-blockers-exchange/): Some changes are coming relatively soon to relieve the complexity and overhead of deploying and managing hybrid Exchange organizations. - [Paul Thurrott's Short Takes: September 29](https://petri.com/paul-thurrotts-short-takes-september-29/): Because I'm suffering from Ignite fever, this edition of Short Takes looks at Satya Nadella's book tour, Microsoft's Ignite messaging,... - [Microsoft Withdraws Plans to Charge for Office 365 Inactive Mailboxes](https://petri.com/no-licenses-office-365-inactive-mailboxes/): A leak in the UK revealed a plan to require Office 365 inactive mailboxes to have licenses. Storage costs, but for inactive mailboxes? - [The "CPU Burst" B-Series Azure Virtual Machine](https://petri.com/cpu-burst-b-series-azure-virtual-machine/): This post discusses the new Azure B-Series virtual machines, which use "burst-able" processor utilization to greatly reduce costs. - [Office 365 Multi-Geo Solves Data Sovereignty but not Network Problems](https://petri.com/office-365-multi-geo/): Microsoft will release Office 365 multi-geo tenants to general availability in early 2018. You can then deploy Exchange Online and SharePoint Online - [Analyzing New Site Theming Options for SharePoint Online](https://petri.com/analyzing-new-site-theming-options-sharepoint-online/): New site theming options for SharePoint Online are starting to be rolled out to First Release Office 365 tenants. - [IBM Announces Cloud Mass Data Migration](https://petri.com/ibm-announces-cloud-mass-data-migration/): Earlier this week, IBM announced Cloud Mass Data Migration, a new service that enables organizations to quickly and easily transfer... - [Tony’s Office 365 Snippets from Ignite – Day 2](https://petri.com/tonys-office-365-snippets-ignite-day-2/): Day 2 at Ignite featured news about SharePoint, Exchange, Office 365 Groups, and Teams, And on a personal note, I had the chance to speak twice. - [SharePoint's Future Continues to Look Bright](https://petri.com/sharepoints-future-continues-look-bright/): Microsoft's SharePoint platform continues to grow at a healthy rate and the company has successfully transitioned the majority of its... - [Microsoft Announces Office 2019](https://petri.com/microsoft-announces-office-2019/): Microsoft has announced a new version of Office for on-premises users and it will arrive in the second half of... - [Office 365 Admin News from Ignite 2017](https://petri.com/office-365-admin-news-ignite-2017/): Microsoft made a number of announcements about improvements they are making to Office 365 administration at the Ignite 2017 conference. - [Tony's Snippets from Ignite 2017 (Day 1)](https://petri.com/ignite-2017-day-1/): Everyone has a different experience at a massive conference like Microsoft Ignite. Here's some personal notes from Day 1 of the 2017 event. - [Transitioning Skype for Business Online to Microsoft Teams](https://petri.com/transitioning-skype-teams/): Microsoft confirmed that they will transition Skype for Business Online to Teams over the next year or so. - [It's Official: Skype For Business Sidelined in Favor of Teams](https://petri.com/official-skype-business-sidelined-favor-teams/): Microsoft has made the news official, Skype for Business will be going away and Teams is the new future for... - [Microsoft Begins to Pitch Windows 10 S for the Enterprise](https://petri.com/microsoft-begins-pitch-windows-10-s-enterprise/): At Microsoft's Ignite conference, the company has started to pitch Windows 10 S for the enterprise along with new low-end... - [Microsoft Updates A Little Bit of Everything for Azure](https://petri.com/microsoft-updates-little-bit-everything-azure/): Microsoft has announced a significant number of updates to its Azure platform that includes everything from licensing terms to Azure... - [Microsoft 365 Overhauled with New Features and Tiers](https://petri.com/microsoft-365-overhauled-new-features-tiers/): At Ignite 2017, Microsoft announced a significant update to Microsoft 365 that brings with it new features and two new... - [Microsoft Brings AI, Modular Apps and More to Dynamics 365](https://petri.com/microsoft-brings-ai-modular-apps-dynamics-365/): Microsoft's premier ERP software is getting several new features including AI, modular apps and deeper integration with PowerApps and Microsoft... - [More Efficient PowerShell with PSReadline -- Part 6](https://petri.com/more-efficient-powershell-with-psreadline/): PowerShell MVP Jeff Hicks wraps up his look at PSReadline and shares some time-saving tools from his PowerShell profile. - [6 Things IT Pros Should Look Forward to At Microsoft Ignite 2017](https://petri.com/6-things-pros-look-forward-microsoft-ignite-2017/): In this post, I'll list the 6 things that I predict that Microsoft will be emphasizing at Microsoft Ignite 2017 in Orlando. - [Headed to Ignite? We Are Too!](https://petri.com/headed-to-ignite-we-are-too/): Next week, Microsoft is headed to Orlando where the company will be hosting its Ignite conference and it looks like... - [Let PSReadline Handle PowerShell -- Part 5](https://petri.com/let-psreadline-handle-powershell-part-2/): PowerShell teacher Jeff Hicks demonstrates how to take advantage of PSReadline key handlers to optimize your console experience. - [Paul Thurrott's Short Takes: September 22](https://petri.com/paul-thurrotts-short-takes-september-22/): Because it's that time of the year again---by which I mean Microsoft Ignite---this edition of Short Takes looks at Microsoft's... - [Office 365 Audit Logging Generates Lots of Data - and Some Odd Entries](https://petri.com/office-365-audit-logging-generates-data/): Office 365 audit logging generates a lot of data - sometimes too much. The trick is to know what events are recorded and what applications capture. - [PowerShell Classes Part 4 -- Constructors and Inheritance](https://petri.com/powershell-classes-part-4-constructors-inheritance/): Take your PowerShell class programming to the next level! Define constructors to simplify the creation of the classes, and use... - [Let PSReadLine Handle PowerShell -- Part 4](https://petri.com/let-psreadline-handle-powershell/): PowerShell MVP Jeff Hicks takes you further with PSReadline by demonstrating how to incorporate key handlers. - [iOS 11 and Exchange 2016/Online: Not Kissing Cousins](https://petri.com/ios-11-exchange-not-kissing-cousins/): Apple released iOS 11 and found that the mail app cannot connect to Exchange Online or Exchange 2016. It's all to do with HTTP2 connections. - [Progressive Web Apps Are Coming To The Windows Store](https://petri.com/progressive-web-apps-coming-windows-store/): Last week at the Microsoft Edge Summit, Microsoft discussed their plan for embracing Progressive Web Apps (PWAs). The plan is: Find, APPX, add to Store. - [Things You Should Know About External Access for Teams](https://petri.com/about-external-access-teams/): A week into external access for Teams, it is obvious that Microsoft has some work to do to smoothen access and increase functionality. - [Code Signing Microsoft Office Macros and Visual Basic for Applications](https://petri.com/code-signing-microsoft-office-macros-visual-basic-applications/): In today's Ask the Admin, Russell Smith shows you how to sign Microsoft Office VBA code and macros so that... - [Strategies to Minimize Data Loss with Hyper-V Replica](https://petri.com/strategies-to-minimize-data-loss-with-hyper-v-replica/): Learn about the factors that can help you minimize data loss with Hyper-V Replica and prevent your next downtime. - [Microsoft Begins Testing Bing For Business](https://petri.com/microsoft-begins-testing-bing-business/): Microsoft is testing a new service that allows you to use Bing to search your intranet. - [Paul Thurrott's Short Takes: September 15](https://petri.com/paul-thurrotts-short-takes-september-15/): Because it's ides of September, this edition of Short Takes looks at Project Honolulu, new Surface rumors, Azure confidential computing,... - [Color Your World with PSReadLine -- Part 3](https://petri.com/color-your-world-with-psreadline/): Resident PowerShell expert Jeff Hicks continues his exploration of PSReadline and shows you how to take advantage of command and syntax colorization. - [Feature Pack 2 for SharePoint Server 2016 Has Been Released](https://petri.com/feature-pack-2-sharepoint-server-2016-released/): Feature Pack 2 for SharePoint Server 2016 is now available and it includes support for SharePoint Framework-based custom web parts... - [Google Announces Dedicated Interconnect for Google Cloud Platform](https://petri.com/google-announces-dedicated-interconnect-google-cloud-platform/): Google recently announced Dedicated Interconnect, a new service that enables enterprise-level consumers to connect directly to Google Cloud Platform. - [Doing More with PSReadline History -- Part 2](https://petri.com/doing-more-with-psreadline/): PowerShell teacher Jeff Hicks continues his exploration of PSReadline and demonstrates how to take advantage of its command history features. - [Office 365 Disposition Reviews Process Sensitive Information](https://petri.com/office-365-disposition-reviews/): Office 365 disposition reviews mean that items awaiting deletion must be manually reviewed before a final decision is made. It's part of data governance. - [Microsoft Layoffs Impact US Employees, Sales and Product Teams](https://petri.com/microsoft-layoffs-impact-us-employees-sales-product-teams/): Microsoft has cut additional staff from their payroll with the layoffs impacting not only sales but engineering too. - [Monitoring Azure Virtual Machine Performance](https://petri.com/monitoring-azure-virtual-machine-performance/): This post will help you answer "why is my Azure VM slow?". You'll learn how to enable performance monitoring using Metrics, and can create charts & alerts. - [PowerShell Classes Part 3 -- Using Methods](https://petri.com/powershell-classes-part-3-using-methods/): In part 3 of the PowerShell Class series, Missy Januszko discusses how to define methods to perform actions against an... - [The Five Biggest Hybrid Cloud Mistakes](https://petri.com/the-five-biggest-hybrid-cloud-mistakes/): Avoid these five common hybrid cloud mistakes to make sure that your environment is ready for the modern infrastructure. - [How External Access for Microsoft Teams Works](https://petri.com/external-access-microsoft-teams/): Microsoft launched the long-awaited external access for Teams on Sept 11. The downside is that only Azure AD accounts are supported. - [Getting Started with PSReadline -- Part 1](https://petri.com/getting-started-with-psreadline/): Do more in PowerShell faster with PSReadline. Master Jeff Hicks starts a series introducing you to this must-know feature. - [Azure Archive Storage and Blob-Level Tiering](https://petri.com/azure-archive-storage-blob-level-tiering/): Azure has a new archive storage system for large-scale ultra-cheap storage, and the ability to move stored files between the hot, cool, and archive tiers. - [Microsoft Begins Rolling Out Guest Access for Teams](https://petri.com/microsoft-begins-rolling-guest-access-teams/): Microsoft has announced that they have begun rolling out Guest access for Teams and that over 125,000 organizations are now... - [Microsoft isn't Killing Skype for Business, But They Will be Making Changes](https://petri.com/microsoft-isnt-killing-skype-business-will-making-changes/): Microsoft isn't killing Skype for Business but the company will be changing up how it is serviced and is trying... - [Paul Thurrott's Short Takes: September 8](https://petri.com/paul-thurrotts-short-takes-september-8/): Because tech partnerships are such fun, this edition of Short Takes looks at Microsoft and DACA, Microsoft and Adobe, a... - [Creating Azure Virtual Machine Performance Alerts](https://petri.com/creating-azure-virtual-machine-performance-alerts/): https://docs.microsoft.com/en-us/azure/backup/backup-configure-vault - [The Teams-SfB Fiasco and What Might Happen Next](https://petri.com/teams-sfb-fiasco/): Microsoft inflicted a PR fiasco on themselves by leaking the imminent replacement of Skype for Business by Teams. But what does this really mean? - [Goodbye Skype for Business, Hello....Teams](https://petri.com/goodbye-skype-business-hello-teams/): It looks like Microsoft is going to rebrand Skype for Business and bring the platform under the Teams umbrella. - [Capturing and Inspecting Traffic in Azure Networks](https://petri.com/capturing-inspecting-traffic-azure-networks/): Learn how to capture Azure virtual machine network traffic using Network Watcher Packet Capture and inspect the data using Wireshark. - [Blocking Access to Office 365 for an Ex-employee](https://petri.com/blocking-access-office-365-user/): Office 365 allows you to block a user when necessary, as when someone is leaving the organization. You can also initiate a forced sign-out. - [Making the Small Business Case for Chromebooks](https://petri.com/making-small-business-case-chromebooks/): In this Ask the Admin, Russell Smith looks at Chromebooks and why they have become a popular choice for small... - [Google's Cloud Team Is Sending Chromebooks To Microsoft Partners](https://petri.com/googles-cloud-team-sending-chromebooks-microsoft-partners/): Google is sending Chromebooks to Microsoft resellers and customers in an attempt to get them to explore what Google has... - [Check Communications Between Virtual Machines in Azure](https://petri.com/check-communications-virtual-machines-azure/): This post shows how you can troubleshoot communications between two virtual machines in Azure by using the diagnostics tools in Network Watcher. - [VMWare Cloud Now Available on AWS](https://petri.com/vmware-cloud-now-available-aws/): Amazon has announced that VMware Cloud is now available on Amazon's AWS platform. With this update, users of VMware’s Software-Designed... - [Microsoft's Next Windows Variant Must Be the Modern Thin Client](https://petri.com/microsofts-next-windows-variant-must-modern-thin-client/): Microsoft needs to build the next generation of Windows that runs in Azure and is streamed locally if it hopes... - [Role-Based Access Control Comes to Intune](https://petri.com/role-based-access-control-comes-intune/): In this Ask the Admin, Russell Smith looks at how Microsoft's Role-Based Access Control can help you manage administrator access... - [Microsoft Migrates Exchange Public Folders to Office 365 Groups](https://petri.com/migrate-public-folders-office-365-groups/): Microsoft has new tools to migrate Exchange public folders to Office 365 Groups. Sounds good. The tools work, but they need a lot of manual oversight. - [Paul Thurrott's Short Takes: September 1](https://petri.com/paul-thurrotts-short-takes-september-1/): Because it’s time to go back to school, this edition of Short Takes looks at the Windows 10 Fall Creators... - [What Is Azure Virtual Machine Accelerated Networking?](https://petri.com/azure-virtual-machine-accelerated-networking/): Aidan Finn discusses how you can achieve better networking performance with Azure virtual machines by using a feature called Accelerated... - [Next Major Windows 10 Update Arrives October 17, Here's What's in it for the Enterprise](https://petri.com/next-major-windows-10-update-arrives-october-17-heres-whats-enterprise/): Microsoft will release Windows 10 version 1709 on October 17th and there is a lot packed in this release designed... - [Choosing Between Cloud or On-Premises Storage for Small Business](https://petri.com/choosing-cloud-premises-storage-small-business/): In this Ask the Admin, Russell Smith looks at the benefits of cloud storage and why a combination of cloud... - [Amazon Announces Updates to AppStream 2.0, including Domain Join, Simple Network Setup, and More](https://petri.com/amazon-announces-updates-appstream-2-0-including-domain-join-simple-network-setup/): Amazon recently announced several updates to the company's application streaming service, AppStream 2. 0, including domain join, simple network setup,... - [Games Vendors Play with Exchange Hardware Configurations](https://petri.com/games-vendors-play-exchange-hardware-configurations/): Hardware vendors publish their solutions for Exchange through the Microsoft ESRP. The only thing is that some of the solutions are illogical and unworkable. - [Auditing Azure Usage Using Activity Log](https://petri.com/auditing-azure-usage-using-activity-log/): Learn how to audit actions in Microsoft Azure, save searches, and retain years of history using Activity Log in the Azure Portal. - [Modern Workplace Community Empowered by SharePoint Communication Sites -- Part 2](https://petri.com/modern-workplace-community-empowered-sharepoint-communication-sites-part-2/): The new SharePoint Communication Site is an excellent tool for setting up a Modern Workplace Community. Your adoption of Office... - [Microsoft Begins External Testing of Guest Access For Microsoft Teams](https://petri.com/microsoft-begins-external-testing-guest-access-microsoft-teams/): Anyone who is using Microsoft Teams has been waiting patiently for guest access and while the company isn't saying anything... - [Microsoft Launches the Security Compliance Toolkit 1.0](https://petri.com/microsoft-launches-security-compliance-toolkit-1-0/): In this Ask the Admin, Russell Smith explains why SCM was killed off and how the Security Compliance Toolkit stacks... - [AutoSave: Nice Feature, but Office 365 Tenants Need to Keep an Eye on Network Demand](https://petri.com/autosave-office-documents/): The CTR version of the Office desktop applications include an autosave feature for files stored in SharePoint and OneDrive for Business. Network bandwidth! - [Azure Just In Time Virtual Machine Access](https://petri.com/azure-just-time-virtual-machine-access/): Aidan Finn explains how JIT access to Azure virtual machines enables you to further secure virtual network deployments and enable... - [NYPD Forced to Replace 36,000 Windows Phones After Microsoft Abandons Support](https://petri.com/nypd-forced-replace-36000-windows-phones-microsoft-abandons-support/): The NYPD purchased 36,000 Windows Phones that now must be replaced as Microsoft is no longer servicing the OS which... - [PowerShell Classes Part 2 -- Enumerated Types](https://petri.com/powershell-classes-part-2-enumerated-types/): In the second part of the series on PowerShell classes, learn how and where to declare constant values using Enums... - [Paul Thurrott's Short Takes: August 25](https://petri.com/paul-thurrotts-short-takes-august-25/): Because I'm finally settled in Pennsylvania like a tick, this edition of Short Takes looks at Microsoft sneakiness, no more... - [The Cloud -- Don't Be the Driver, Be the Mechanic](https://petri.com/cloud-dont-driver-mechanic/): Training & experience are as important as ever with cloud computing, even though some features have dumbed down deployment by making it "too" easy. - [Google Cloud Speech API Improves Longform Audio Recognition -- Adds New Language Variants](https://petri.com/google-cloud-speech-api-improves-longform-audio-recognition-adds-new-language-variants/): In a recent update, Google's Cloud Speech API received improved longform audio recognition, as well as the addition of 30... - [Microsoft Will Release Windows Server 1709 at Ignite in September](https://petri.com/microsoft-will-release-windows-server-1709-ignite-september/): Microsoft is planning to release the first iteration of Windows Server from its semi-annual channel at Ignite next month. - [Nano Server End of Support Is "Spring 2018"](https://petri.com/nano-server-end-support-spring-2018/): The end of support for Windows Server 2016 Nano Server is probably April 2018. I'll explain this calculation and how you can deal with the issue. - [Groups versus Teams: Two Sides of the Same Coin](https://petri.com/groups-and-teams-office365/): Office 365 Groups and Microsoft Teams are two of the collaboration offerings available within Office 365. Some get very vexed about the two applications. - [Modern Workplace Community Empowered by SharePoint Communication Sites -- Part 1](https://petri.com/modern-workplace-community-empowered-sharepoint-communication-sites-part-1/): The new SharePoint Communication Site is an excellent tool for setting up a Modern Workplace Community. Your adoption of Office... - [Microsoft Sunsets GigJam, Never Found A Place To Party](https://petri.com/microsoft-sunsets-gigjam-never-found-place-party/): Microsoft is shutting the doors on Gigjam, a service that was trying to align unstructured content to create new workflows. - [Avoiding the Five Biggest Disaster Recovery Mistakes](https://petri.com/avoiding-the-five-biggest-dr-mistakes/): Michael Otey talks about avoiding the five biggest disaster recovery mistakes. - [Microsoft and Red Hat Extend Partnership, Simplify Deploying Containers](https://petri.com/microsoft-red-hat-extend-partnership-simplify-deploying-containers/): Microsoft and Red Hat are deepening their relationship to make it easier to run containers in your environment regardless of... - [Microsoft Has Problems as They Work to Improve Office 365 Support](https://petri.com/microsoft-problems-office-365-support/): Microsoft is working on ways to improve how tenants receive support for Office 365. The problem is that they haven't told anyone. - [Managing Macro Security in Office 2016](https://petri.com/managing-macro-security-office-2016/): In this Ask the Admin, Russell Smith looks at how you can secure Office 2016 macros and VBA code to... - [Microsoft's Removing ReFS Creation Functionality from Windows 10 Pro](https://petri.com/microsofts-removing-refs-creations-functionality-windows-10-pro/): Microsoft is removing some ReFS functionality from Windows 10 Pro likely to force users to a higher-priced version of the... - [Managing Azure Resources with Cloud Shell](https://petri.com/managing-azure-resources-cloud-shell/): In this Ask the Admin, Russell Smith looks at the different ways Azure can be managed from the command line,... - [Paul Thurrott's Short Takes: August 18](https://petri.com/paul-thurrotts-short-takes-august-18/): Because it's important to curate images on the Bing home page, this edition of Short Takes looks at the new... - [Starting an Azure Runbook from Your Phone](https://petri.com/starting-azure-runbook-phone/): This post will show you how to use the Microsoft Flow app on your phone to start and stop Azure VMs via Automation runbooks in a user friendly way. - [What Are Azure Web App Service Plans?](https://petri.com/azure-web-app-service-plans/): This post describes how Azure app services are run in an App Service Plan, and the features of each tier of the App Service Plans. - [What GDPR means to Office 365](https://petri.com/gdpr-office-365/): The EU introduces the GDPR in May 2018. What consequences will GDPR have for Office 365 customers. - [Amazon launches Amazon Macie, a Service for Discovering, Classifying, and Securing Data at Scale](https://petri.com/amazon-launches-amazon-macie-service-discovering-classifying-securing-data-scale/): In a recent update, Amazon announced Amazon Macie, a new security service that uses machine learning to discover, classify, and... - [Microsoft Quietly Moved Font Parsing to AppContainer in the Anniversary Update](https://petri.com/microsoft-quietly-moved-font-parsing-appcontainer-anniversary-update/): In this Ask the Admin, Russell Smith explains why you probably should not enable Untrusted Font Blocking in Group Policy. - [Microsoft Adding Support for Progressive Web Apps in Windows 10](https://petri.com/microsoft-adding-support-progressive-web-apps-windows-10/): In this Ask the Admin, Russell Smith explains how Progressive Web Apps could change the future of apps across all... - [What Is Outlook Customer Manager?](https://petri.com/outlook-customer-manager/): In this Ask the Admin, Russell Smith explains what Outlook Customer Manager is and how it integrates with Office 365. - [Microsoft's Latest Acquisitions Aims to Democratize the Super Computer](https://petri.com/microsofts-latest-acquisitions-aims-democratize-super-computer/): Microsoft has acquired Cycle Computing which is a cloud orchestrator and should make it easier to tap into the raw... - [Office 365 Powers Microsoft to Higher Cloud Revenues](https://petri.com/office-365-powers-cloud-revenues/): Microsoft must have been happy with the $18.9 billion run rate they achieved for commercial cloud products in fiscal 2017. But what makes the money? - [Microsoft's Bringing Data Down Under With Two New Azure Regions](https://petri.com/microsofts-bringing-data-two-new-azure-regions/): Microsoft is opening two new data regions in Australia and hopes to grab a large section of that growing market. - [Deploying Azure Automation in the Azure Portal](https://petri.com/deploying-azure-automation-azure-portal/): This is a step-by-step guide on deploying a new Azure Automation Account, ready to use with updated and additional PowerShell modules. - [Microsoft, Elon Musk, OpenAI and Dota Walk Into a Bar](https://petri.com/microsoft-elon-musk-openai-dota-walk-bar/): Elon Musk's Open AI organization used Azure to power its AI bot that was able to beat the top players... - [Paul Thurrott's Short Takes: August 11](https://petri.com/paul-thurrotts-short-takes-august-11/): Because Jamon Iberico is God's perfect food, this edition of Short Takes looks at a surprisingly contentious and controversial week... - [Modern SharePoint Web Parts Updates — Highlighted Content](https://petri.com/modern-sharepoint-web-parts-updates-highlighted-content/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Create Surveys and Questionnaires Using Forms in Office 365](https://petri.com/create-surveys-questionnaires-using-forms-office-365/): In this Ask the Admin, Russell Smith shows you what you can do with Office 365 Forms. - [Microsoft Has a New SKU of Windows 10 Designed for High-End Hardware](https://petri.com/microsoft-new-sku-windows-10-designed-high-end-hardware/): Microsoft has announced a new SKU of Windows 10 Pro for workstations and it will arrive this fall with the... - [Consumer Reports No Longer Recommends Surface Hardware](https://petri.com/consumer-reports-no-longer-recommends-surface-hardware/): Consumer Reports is no longer recommending Surface hardware after their survey found that 25% of owners had issues in the... - [Azure Active Directory Flavors](https://petri.com/azure-active-directory-flavors/): Sjoukje Zaal gives an overview of the different flavors of Azure Active Directory. - [Microsoft Launches Group Expiration Policy into Preview](https://petri.com/group-expiration-policy-preview/): Microsoft launched the Office 365 Groups expiration policy into preview. It expires groups after a set period and helps keep groups under control. - [Google Optimize Adds Support for 37 New Languages](https://petri.com/google-optimize-adds-support-for-37-new-languages/): Google announced this week that they have added support for 37 new languages to Google Optimize, the firm's website testing... - [Selecting the Right SME Storage Solution Part 2: Network Attached Storage](https://petri.com/selecting-right-sme-storage-solution-part-2-network-attached-storage/): In the second part of this article, Russell Smith looks at Network Attached Storage solutions for SMEs. - [How to Manage the Common Productivity Drop During SharePoint Adoption](https://petri.com/productivity-drop-sharepoint-adoption/): If left unchecked, the dip in productivity during the SharePoint adoption period may have a negative impact on business and... - [Microsoft to Remove Some Chinese Certificate Authorities from Windows 10](https://petri.com/microsoft-remove-chinese-certificate-authorities-windows-10/): Microsoft is removing certificate authorities from WoSign and StartCom from Windows 10 after multiple violations of its Trusted Root program. - [Azure AD Sign-in Changes Cause Problems for Office 365](https://petri.com/azuread-sign-changes-cause-problems-office-365/): The Azure AD team changed the sign-in experience used by services like Office 365 to improve and rationalize it. But things didn't work out so well. - [Hybrid Cloud HA and DR Using SQL Server AlwaysOn Availability Groups](https://petri.com/hybrid-cloud-ha-and-dr-using-sql-server-alwayson-availability-groups/): Today, many businesses are in the process of looking for ways to leverage the hybrid cloud for high availability (HA)... - [Windows as a Service is Windows' Second Life, Because It Had To be](https://petri.com/windows-as-a-service-is-windows-second-life-because-it-had-to-be/): Microsoft pivoted to WaaS as it found the perfect time to introduce it's truly new feature, Security as a Service. - [Microsoft to Deprecate PowerShell 2.0 in the Windows 10 Fall Creators Update](https://petri.com/microsoft-deprecate-powershell-2-0-windows-10-fall-creators-update/): In this Ask the Admin, Russell Smith discusses why PowerShell 2. 0 poses a security risk and how to remove... - [Adding Script to Your PowerShell HTML Reports](https://petri.com/adding-script-to-your-powershell-html-reports/): PowerShell master Jeff Hicks wraps up his series on going further with ConvertTo-HTML by adding javascript to his PowerShell generated HTML reports. - [Paul Thurrott's Short Takes: August 4](https://petri.com/paul-thurrotts-short-takes-august-4/): Because it's 125 degrees in the shade, this edition of Short Takes looks at Microsoft's not-so-new AI focus, Microsoft's rural... - [Enhancing HTML Reports with PowerShell](https://petri.com/enhancing-html-reports-with-powershell/): PowerShell sensei Jeff Hicks continues his exploration of creating killer HTML reports with PowerShell by adding an image and multiple sections. - [Data Leak as Office 365 Admin Center Displays Usage Data from Other Tenants](https://petri.com/data-leak-office-365-admin-center/): The Office 365 Admin Center experienced a problem on August 3 when it began to include data from other tenants in its usage reports. - [Upload Files or Entire File Shares with METADATA to SharePoint Online](https://petri.com/upload-files-entire-file-shares-metadata-sharepoint-online/): Learn how to use PowerShell to move your content to SharePoint Online and keep the key metadata like owner and dates. It is pure magic! - [Microsoft Launches External Access Block Policy for Groups, Teams, and Planner](https://petri.com/external-access-policy-groups-teams-planner/): Microsoft has launched a new external sharing policy for groups that allows tenants to set allow and block lists for domains. - [G Suite Adds Improvements to Google Calendar Interop for Microsoft Exchange](https://petri.com/g-suite-adds-improvements-google-calendar-interop-microsoft-exchange/): Google has made several improvements to G-Suite that make it easier for organizations that use both Google Calendar and Microsoft... - [Protect Against Malware by Enforcing PowerShell Constrained Language Mode](https://petri.com/protect-malware-enforcing-powershell-constrained-language-mode/): In this Ask the Admin, Russell Smith shows you how to enforce constrained language mode in PowerShell to restrict hackers'... - [Adding Style to PowerShell HTML Reports](https://petri.com/adding-style-powershell-html-reports/): Jeff Hicks shares more tips for using PowerShell, including some tricks for creating HTML reports. - [Apple Results Beat Expectations with Services Surge](https://petri.com/apple-results-beat-expectations-services-surge/): Apple's net income and revenues both surged in the most recent quarter, thanks in large part to its quickly-growing services... - [Change Management Tools for Office 365](https://petri.com/change-management-tools-office-365/): Read an overview of tools and resources recommended to keep up with the changes in Office 365. - [Microsoft's Making it Easier to Buy Surface Hardware, Including Hub](https://petri.com/microsofts-making-easier-buy-surface-hardware-including-hub/): Microsoft is making it easier to buy Surface hardware, including the Hub, but the company is once again only offering... - [Controlling Message Deletion in Microsoft Teams](https://petri.com/controlling-message-deletion-teams/): Microsoft Teams now allows tenants and team owners to control whether users (or team owners) can delete messages. - [Triggering Actions with Webhooks in Azure](https://petri.com/triggering-actions-webhooks-azure/): This post will explain how webhooks can be used to start actions in Azure from other Azure systems or external services running anywhere. - [Sponsored: Managing Email Signatures](https://petri.com/managing-email-signatures/): Microsoft has never given Exchange customers a way to manage email signatures on behalf of users. Some commercial solutions exist. - [Managing State in the SharePoint Framework Using Redux](https://petri.com/managing-state-sharepoint-framework-using-redux/): Learn to manage state in the SharePoint framework using React and Redux, including the creation of a client web part. - [Windows 10 Overhead is Slowing Enterprise Adoption](https://petri.com/windows-10-overhead-slowing-enterprise-adoption/): The complexity of maintaining Windows 10 is slowing its adoption as IT administrators try to figure out how to deal... - [Paul Thurrott's Short Takes: July 28](https://petri.com/paul-thurrotts-short-takes-july-14-2/): Because it's the dog days of summer, this edition of Short Takes examines Microsoft's new bug bounty religion, a "fully... - [Making the Small Business Case for Windows 10 S](https://petri.com/making-small-business-case-windows-10-s/): In this Ask the Admin, Russell Smith looks at how Windows 10 S stacks up for businesses that are either... - [Amazon CloudWatch adds Support for High-Resolution Custom Metrics and Alarms](https://petri.com/amazon-cloudwatch-adds-support-high-resolution-custom-metrics-alarms/): Amazon has announced this week an update CloudWatch that will improve the visibility into the events that may negatively impact... - [Docker LinuxKit Brings Linux Containers to Windows Server](https://petri.com/docker-linuxkit-brings-linux-containers-windows-server/): In this Ask the Admin, Russell Smith looks in detail at the mechanics of how Linux containers will be supported... - [PowerShell Classes - Your Ultimate Guide](https://petri.com/creating-first-powershell-class/): Take your PowerShell programming to a new level by learning how to use classes. - [Microsoft is Changing The Windows 10 Servicing Model, Again](https://petri.com/microsoft-changing-windows-10-servicing-model/): Microsoft is once again changing the servicing model of Windows 10; the company is removing one of the safety-nets used... - [Microsoft Ends Windows 10 1511 Support in October, Pushes 1703 to Everyone](https://petri.com/microsoft-ends-windows-10-1511-support-october-pushes-1703-everyone/): Microsoft has announced that in October, the company will be ending support for Windows 10 build 1511. - [Interview with Vijay Tewari of Microsoft About Azure Stack](https://petri.com/interview-vijay-tewari-microsoft-azure-stack/): I interviewed Vijay Tewari, one of the leaders of the development of Azure Stack, Microsoft's implementation of their private/hybrid cloud solution. - [Office 365 Alert Policies Automate Audit Monitoring](https://petri.com/office-365-alert-policies-automate-audit-monitoring/): Office 365 alert policies allow tenants to monitor Office 365 audit events for different patterns to detect suspicious or unwanted behavior. - [Creating Portable HTML in PowerShell](https://petri.com/creating-portable-html-powershell/): Jeff Hicks shares tips and tricks for doing more with HTML in this PowerShell series. - [Microsoft Launches Windows Bug Bounty Program Because Late Is Better Than Never](https://petri.com/microsoft-launches-bug-bounty-program-late-better-never/): Microsoft has finally opened up a bug bounty program for Windows 10 where the company will pay up to $250,00... - [Microsoft Looks to Make Azure More Container Friendly With Container Instances](https://petri.com/microsoft-looks-make-azure-container-friendly-container-instances/): Microsoft is rolling out a new container service that is being pitched as the easiest way to launch and manage... - [What Is the Azure App Service?](https://petri.com/azure-app-service/): In this post, aimed at IT pros, I'll describe the heart of Azure platform-as-a-service (PaaS), the Service Fabric and the App Service Suite. - [ConvertTo-HTML Tips and Tricks](https://petri.com/convertto-html-tips-and-tricks/): In this series, Jeff Hicks shares tips and tricks for creating reports in PowerShell. - [Selecting the Right SME Storage Solution Part 1: Windows Server](https://petri.com/selecting-right-sme-storage-solution-part-1-windows-server/): In part one of this article, Russell Smith looks at the advantages for small businesses of server hardware running Windows... - [Modern SharePoint Web Parts Updates -- Quick Links and News](https://petri.com/modern-sharepoint-web-parts-updates-quick-links-news/): Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. - [Windows 10 Gains In the Enterprise But Windows 7 Is Still The Top Dog](https://petri.com/windows-10-gains-enterprise-windows-7-still-top-dog/): Microsoft's Windows 10 operating system is making inroads in the corporate world but it may not be fast enough to... - [Introducing Azure Web Apps](https://petri.com/introducing-azure-web-apps/): This post is an overview of Azure Web Apps, an enterprise-class cloud-based hosting solution for online line-of-business and SaaS applications. - [Microsoft's Bringing AI To HoloLens v.Next with Custom Silicon](https://petri.com/microsofts-bringing-ai-hololens-v-next-custom-silicon/): Microsoft is working on a new chip that will be the next generation Holographic Processing Unit that will bring AI... - [Hyper-V Replica for Disaster Recovery](https://petri.com/hyper-v-replica-disaster-recovery/): Michael Otey discusses Hyper-V Replica as an option for protecting business-critical virtual machines from site or system outages. - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (July 2017)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-7/): Because Microsoft just announced its quarterly and fiscal year 2017 earnings, this edition of Short Takes focuses on those results. - [Microsoft Security Risk Detection is Ready for Customers](https://petri.com/microsoft-security-risk-detection-now-generally-available/): Microsoft Security Risk Detection, a new Azure-hosted "whitebox fuzzing" service, is now generally available following several months of external testing. - [Strong Office 365 and Azure Growth Delivers $18.9 Billion Annual Revenues](https://petri.com/fy17-q4-office365-azure-revenues/): Microsoft's Q4 FY17 results show strong growth in cloud revenues with the ARR reaching $18.9 billion and actual revenues of $15 billion. - [Microsoft Q4 Earnings: Net income of $6.5 billion on $23.3 billion of revenue](https://petri.com/microsoft-q4-earnings-net-income-6-5-billion-23-3-billion-revenue/): Microsoft has released its Q4 earnings (Q2 calendar) and during that time period, the company brought in Net income of $6.... - [Exploring Office 365 with the Graph Explorer](https://petri.com/exploring-office-365-graph-explorer/): The Microsoft Graph is a common programmatic interface to Office 365 and other data, including Azure AD. The Graph Explorer guides you through endpoints. - [With Windows as a Service, Microsoft is Forced to End Feature Support Early for Some Hardware](https://petri.com/windows-service-microsoft-forced-end-feature-support-early-hardware/): Microsoft is making changes to its support policy for Windows 10 as some vendors are no longer updating hardware that... - [Google Pushes Further Into Business World With Hire](https://petri.com/google-pushes-business-world-hire/): Google has announced a new feature for G-Suite, called Hire; the service makes it easier to streamline the recruitment process... - [Azure Web Applications -- IaaS Versus PaaS](https://petri.com/azure-web-applications-iaas-versus-paas/): In this post I will compare the IaaS and PaaS capabilities of Azure for running a website or web-based application in the cloud. - [Two Kinds of Office 365 Analytics – For You and The Company](https://petri.com/office-365-analytics/): Microsoft offers Workplace Analytics to help Office 365 Enterprise tenants understand the internal dynamics of their company. It's not MyAnalytics. - [Microsoft Release First SQL Server 2017 Release Candidate](https://petri.com/microsoft-release-first-sql-server-2017-release-candidate/): Microsoft has released the first Release Candidate of SQL Server 2017 which means major development work is complete and that... - [Azure Adds D_v3 and E_v3 Virtual Machine Series](https://petri.com/azure-adds-d_v3-e_v3-virtual-machine-series/): Aidan Finn discusses the features of Microsoft's 2 new series of virtual machines, the D_v3 and the E_v3, which are... - [Enable Storage Sense in Windows 10 Creators Update](https://petri.com/enable-storage-sense-windows-10-creators-update/): In this Ask the Admin, Russell Smith shows you how to turn on Storage Sense in the Windows 10 Creators... - [Paul Thurrott's Short Takes: July 14](https://petri.com/paul-thurrotts-short-takes-july-14/): Because Brad just took a baseball bat to a hornet's nest, this edition of Short Takes looks at Microsoft as... - [Getting Started with Power BI and SharePoint Online -- Part 2](https://petri.com/getting-started-power-bi-sharepoint-online-part-2/): In this article we cover how to publish your Power BI visual online, configure your SharePoint data refresh, and use the Power BI Web Part. - [Microsoft Releases The First Insider Server Build](https://petri.com/microsoft-releases-first-insider-server-build/): Microsoft has released today the first Insider build of Windows Server, a pre-release version of the platform that allows you... - [Preview of Centralized Reporting for Azure Backup](https://petri.com/preview-centralized-reporting-azure-backup/): Microsoft has launched a preview solution for monitoring and reporting on Azure Backup deployments, using the visualization and reporting of Power BI. - [Microsoft Reverses eDiscovery Decision Because of Discovery Mailboxes](https://petri.com/microsoft-reverses-ediscovery-decision/): Microsoft told us some months ago that they would block the creation of new eDiscovery cases in Exchange and SharePoint. A course reversal has happened. - [Microsoft Defines Its Path Forward for On-Premises](https://petri.com/microsoft-defines-path-forward-premises/): During the past few weeks, Microsoft has defined the path forward for on-premises users and while they are not abandoning... - [Azure Backup Server Adds Support for WS2016 and VMware 6.5](https://petri.com/azure-backup-server-adds-support-ws2016-vmware-6-5/): Microsoft released a new version of Azure Backup Server (MABS), with support for Windows Server 2016, VMware 6.5, and improved on-premises modern storage. - [Replicate Azure Virtual Machines to Another Region for Disaster Recovery](https://petri.com/replicate-azure-virtual-machines-another-region-disaster-recovery/): In this step-by-step post I will guide you on how to replicate Azure virtual machines from one region to another for disaster recovery. - [Microsoft to Close Surface Hub Manufacturing Plant in Oregon](https://petri.com/microsoft-close-surface-hub-manufacturing-plant-oregon/): Microsoft is closing the operational facility where the company was building its Surface Hub but I don't believe this is... - [Modernizing Your IT Infrastructure with Windows Server 2016 and the Hybrid Cloud](https://petri.com/modernizing-your-it-infrastructure-with-windows-server-2016-and-the-hybrid-cloud/): Take advantage of the Hybrid Cloud capabilities in Windows Server 2016. - [Intractable Problems Involved in Merging Office 365 Tenants](https://petri.com/problems-merging-office-365-tenants/): Microsoft makes it easy to use Office 365, but things are not so straightforward if you need to merge, split, or acquire an Office 365 tenant. - [Configuring Windows Server 2016 Hyper-V Compute Resiliency](https://petri.com/configuring-windows-server-2016-hyper-v-compute-resiliency/): This post will explain how to configure the settings of Windows Server 2016 Hyper-V/Failover Clustering Compute Resiliency. - [Microsoft 365: A Simplified Approach To Subscription Headaches](https://petri.com/microsoft-365-simplified-approach-subscription-headaches/): At Inspire, Microsoft has announced a new tier of services that they are calling Microsoft 365 that will serve as... - [Put A little Cloud In Your On-Premises With New Azure Stack Hardware](https://petri.com/put-little-cloud-premises-new-azure-stack-hardware/): Microsoft and its partners are finally ready to start selling Azure Stack hardware but sadly, few options available to retrofit... - [This IT Pro Is Learning Dev Stuff!](https://petri.com/pro-learning-dev-stuff/): In this post I will explain why IT pros, like myself, might want to consider learning the developer side of the cloud, platform-as-a-service (PaaS). - [Shuffle At the Top: Microsoft CVP of Windows Apps and CIO Leave the Company](https://petri.com/shuffle-top-microsoft-cvp-windows-apps-cio-leave-company/): This week, Microsoft has made at least two changes to high-level position at the company with a CVP and the... - [Paul Thurrott's Short Takes: July 7](https://petri.com/paul-thurrotts-short-takes-july-7/): Because my Surface hibernated and it won't wake up, this edition of Short Takes looks at this week's curiously vague... - [Getting Started with Power BI and SharePoint Online -- Part 1](https://petri.com/getting-started-power-bi-sharepoint-online-part-1/): Learn how to create your first Power BI visual using SharePoint list data and then display that visual on SharePoint Online. - [My Experiences Using the Surface Laptop](https://petri.com/experiences-using-surface-laptop/): Jussi Roine shares experiences using the Surface Laptop. - [Azure Active Directory is a Core Part of the Office 365 "Experience"](https://petri.com/aad-core-office-365/): Recent developments from Microsoft show that Azure Active Directory is a core part of the overall Office 365 experience. - [Azure Information Protection Versus Windows Information Protection Overview -- Part 1](https://petri.com/azure-information-protection-versus-windows-information-protection-overview-part-1/): Paul Robichaux discusses how to reduce information leakage by using Azure Information Protection and Windows Information Protection. - [Microsoft's Re-Org Takes Shape, Up to 3,000 Job Cuts](https://petri.com/microsofts-re-org-takes-shape-3000-job-cuts/): Microsoft has announced today that they are cutting back on their headcount as they reorganize the company's sales structure as... - [SharePoint Communication Sites: Taking Your Modern Workplace to the Next Level](https://petri.com/sharepoint-communication-sites-taking-modern-workplace-next-level/): Jasper Oosterveld discusses a world moving toward a modern workplace for collaboration tools, personalized dashboards, and communication portals. - [What Are Hyper-V VM Failover Cluster Group Sets?](https://petri.com/hyper-v-vm-failover-cluster-group-sets/): This post explains how Failover Cluster Group sets can be used to order the failover of Hyper-V virtual machines to model application dependencies. - [Mapping the Migration, Easing the Transition to the Cloud](https://petri.com/mapping-migration-easing-transition-cloud/): Moving from on-premises to the cloud can be a challenge but there is software available that can help you map... - [Unraveling the Mystery of $MyInvocation](https://petri.com/unraveling-mystery-myinvocation/): Missy Januszko explores the uses of $MyInvocation. - [Gartner Sees Strong Position and Momentum for Office 365](https://petri.com/gartner-strong-position-momentum-office-365/): Gartner's recent SWOT analysis of Office 365 contains some interesting thoughts and observations. I do not agree with them all. - [Microsoft Expands FastTrack to Include Azure](https://petri.com/microsoft-expands-fasttrack-include-azure/): Starting in August, Microsoft will be expanding its FastTrack service for those who are moving to Azure but there are... - [Microsoft to Re-Org Sales Team, Layoffs Expected](https://petri.com/microsoft-re-org-sales-team-layoffs-expected/): For the upcoming fiscal year, Microsoft is expected to re-org the sales team and as part of that change, layoffs... - [Paul Thurrott's Short Takes: June 30](https://petri.com/paul-thurrotts-short-takes-june-30/): Because this Russian hacker is asking for Bitcoin, this edition of Short Takes looks at Petya, a Microsoft reorg rumor,... - [Team Foundation Version Control Verses Git in Visual Studio Team Services](https://petri.com/team-foundation-version-control-verses-git-visual-studio-team-services/): In this Ask the Admin, Russell Smith looks at centralized versus distributed version control in Visual Studio Team Services and... - [Schedule Meetings the Easy Way by Using Microsoft FindTime](https://petri.com/schedule-meetings-easy-way-using-microsoft-findtime/): In this Ask the Admin, Russell Smith shows you an easier way to schedule meetings using an add-in for Office... - [How to Prioritize Your SharePoint Adoption Campaigns for Optimal Results](https://petri.com/how-to-prioritize-your-sharepoint-adoption-campaigns/): Although every SharePoint adoption plan is different, there are 3 activities that are universal and essential to the success of... - [Leveraging OneNote: Working with a Distributed Team](https://petri.com/leveraging-onenote-working-distributed-team/): Working on a distributed team can be frustrating and difficult. OneNote can ease some of the pain which comes from a team being spread out. - [Microsoft's Cloudyn Acquisition Will Help You Spend Less On Azure](https://petri.com/microsofts-cloudyn-acquisition-will-help-spend-less-azure/): Microsoft has announced today that they are acquiring Cloudyn, a company that specializes in managing and optimizing cloud usage - [Update on Nano Server and Semi-Annual Release](https://petri.com/update-nano-server-semi-annual-release/): This post is a follow up with more details on the fate of Nano Server, the future of the Semi-Annual Channel, and your support options. - [Windows AutoPilot, Coming this Fall with the Creators Update](https://petri.com/windows-autopilot-coming-fall-creators-update/): With the release of the Fall Creators Update later this year, Microsoft will be introducing a new feature designed to... - [Exchange Cumulative Updates and Distribution List Upgrades](https://petri.com/exchange-cumulative-updates-dl-upgrades/): The quarterly cumulative updates for Exchange Server quietly appeared with little fuss while Office 365 has bulk conversions for distribution lists. - [Launch a UWP App When Windows Starts](https://petri.com/launch-uwp-app-windows-starts/): Russell Smith shows you how to launch a UWP app when Windows starts. - [Microsoft Presents Stream -- The Video Enterprise Service](https://petri.com/microsoft-presents-stream-video-enterprise-service/): Jasper Oosterveld discusses Microsoft's release of Stream to the general public. - [Install Folder Management Add-In for Visual Studio Team Services](https://petri.com/install-folder-management-add-visual-studio-team-services/): Russell Smith shows you how to add support for folder management in Visual Studio Team Services. - [Microsoft Focuses on Security with Redstone 3 for the Enterprise](https://petri.com/microsoft-hopes-entice-enterprise-new-security-features-windows-10-fall-creators-update/): This fall, Microsoft will be releasing a new update for Windows 10 and with it will comes several new security... - [Common External Access Needed for Office 365 Applications](https://petri.com/common-external-access-office-365/): The news that Teams won't support external access when they planned is not a shock. But what is needed is a common external access mechanism for Office 365. - [EU Fines Google a Record $2.7 Billion for Antitrust Violations](https://petri.com/eu-fines-google-record-2-7-billion-antitrust-violations/): As we've seen before with Microsoft, Intel, and Apple, the EU is not shy about protecting competition. Now Google has... - [Nano Server Is Here Today. Gone... Pretty Soon](https://petri.com/nano-server-today-gone-pretty-soon/): Microsoft is removing the ability to use Nano Server for Hyper-V, SOFS, and other infrastructure and application roles. This post details what is happening. - [The Door Opens To New Windows Linux Subsystems](https://petri.com/door-opens-new-windows-linux-subsystems/): Microsoft has officially opened the door to new variants for the Windows Linux Subsystem with SUSE now offering two apps... - [Leveraging VM Replication for Fast Recovery](https://petri.com/leveraging-vm-replication-for-fast-recovery/): Replication is one of the fastest and most effective high availability technologies for protecting and quickly restoring VMs in the... - [Stream Reaches GA but Office 365 Video Users Must Wait for Transition](https://petri.com/stream-ga-office365-transition/): Microsoft has launched Stream, its new video streaming and management service for Office 365 and consumers. Office 365 Video will be converted to Stream. - [Microsoft Will Remove SMB1 Networking Protocol from Upcoming Windows 10 Release](https://petri.com/microsoft-will-remove-smb1-networking-protocol-upcoming-windows-10-release/): In the next release of Windows 10, Microsoft will be removing SMB1 by default from the OS for clean installs. - [Validating PowerShell Input Using Parameter Validation Attributes](https://petri.com/validating-powershell-input-using-parameter-validation-attributes/): Missy Januszko uses parameter validation attributes to define the acceptable input without writing a ton of additional code. - [Parent-Child Components with ReactJS and SharePoint Framework](https://petri.com/parent-child-components-reactjs-sharepoint-framework/): Scot Hillier continues this series on CRUDSheet web parts created in the SharePoint Framework, including the components that make up... - [Microsoft's Enterprise Video Sharing Service Goes Mainstream](https://petri.com/microsofts-enterprise-video-sharing-service-goes-mainstream/): Microsoft has announced that its corporate video sharing platform called Stream is now generally available. - [Single Data Disks -- Up To 4TB With Azure Virtual Machines](https://petri.com/single-data-disks-4tb-azure-virtual-machines/): In this post I will discuss the benefits of the limited preview release of 4 TB (TiB) disks for Azure virtual machines, and how to create & use them. - [Migrating Modern Public Folders to Exchange Online (or Elsewhere)](https://petri.com/migrating-modern-public-folders-exchange-online/): Microsoft now supports the migration of modern public folders to Exchange Online. More interestingly, you can migrate public folders to other repositories. - [G Suite Appointment Slots](https://petri.com/g-suite-appointment-slots/): Office 365 users and admins might not be familiar with appointment slots but as with most things G Suite, it... - [Set Up Azure Active Directory Connect Pass-Through Authentication](https://petri.com/set-azure-active-directory-connect-pass-authentication/): In this Ask the Admin, Russell Smith shows you how to set up Azure Active Directory Connect pass-through authentication. - [Deploy an Azure Application Using Visual Studio Team Services](https://petri.com/deploy-azure-application-using-visual-studio-team-services/): In today's Ask the Admin, Russell Smith walks you through deploying an app in Azure using an ARM template and... - [Paul Thurrott's Short Takes: June 16](https://petri.com/paul-thurrotts-short-takes-june-16/): Because time flies when you're being dumb, this edition of Short Takes looks at a new rapid release schedule for... - [What Is Windows Server 2016 Hyper-V Compute Resiliency?](https://petri.com/windows-server-2016-hyper-v-compute-resiliency/): Compute Resiliency is a feature of WS2016 Hyper-V that reduces the impact of transient issues on highly available virtual machines. Read on to learn more. - [Microsoft Moves Windows Server To Rapid Release, Releasing Two Feature Updates Per Year](https://petri.com/microsofts-moves-windows-server-rapid-release-releasing-two-feature-updates-per-year/): Microsoft is making big changes to the way it services Windows Server including a new servicing branch and shipping two... - [Microsoft Defines New Path For Nano Server, Server Core](https://petri.com/microsoft-defines-new-path-nano-server-server-core/): Microsoft has defined a new direction for Nano Server while also expanding the role for Server Core; the company is... - [Microsoft is Bringing Native Linux Container Support and Bash to Windows Server](https://petri.com/microsoft-bringing-native-linux-container-support-bash-windows-server/): Microsoft is enabling new support for Linux technology on Windows Server including Bash support and native Linux containers. - [Block Untrusted Apps Using AppLocker](https://petri.com/block-untrusted-apps-using-applocker/): In today's Ask the Admin, Russell Smith shares his strategy for using AppLocker to block untrusted apps. - [Bottlenecks of Modern Data Storage Technologies](https://petri.com/bottlenecks-of-modern-data-storage-technologies/): Get an overview of storage technologies focusing on the internal organization of data storage – going from the hardware level... - [Microsoft Surface Pro Review: Making The Good A Little Bit Better](https://petri.com/microsoft-surface-pro-review-making-good-little-bit-better/): Microsoft's Surface Pro is all about refinement and improves on many key areas over the previous generation device but it... - [Small Change in Recover Deleted Items. Big Impact for Exchange Users](https://petri.com/exchange-recover-deleted-items/): Microsoft has made a small change in the Original Folder Item Recovery feature to allow deleted items to be recovered from where they came. - [Can Microsoft Reignite a Passion for Creating and Learning with Windows 10?](https://petri.com/can-microsoft-reignite-passion-creating-learning-windows-10/): It will take new device form factors to move us to a future where small devices are better able to... - [Azure Backup Agent Adds Support for System State](https://petri.com/azure-backup-agent-adds-support-system-state/): In this post I explain how you can use a preview feature of the Azure Backup MARS agent to backup and restore system state for Windows Server machines. - [Microsoft Sets Dangerous Precedent With Another New Patch for Windows XP](https://petri.com/microsoft-sets-dangerous-precedent-another-new-patch-windows-xp/): Microsoft is releasing another patch for Windows XP today which raises the question of why pay for extended support and... - [Overcoming the Last Mile Problem](https://petri.com/overcoming-last-mile-problem/): We all know that the cloud services have scalability and availability that is typically better than most businesses. However, that... - [Connect Visual Studio Team Services to Azure Using a Service Principal Name](https://petri.com/connect-visual-studio-team-services-azure-using-service-principal-name/): Russell Smith shows how to connect Visual Studio Team Services to Azure using a Service Principal Name so that you... - [Still No Good Option for Office 365 Backups](https://petri.com/no-good-option-office-365-backups/): ISVs propose backup solutions for Office 365 but no product exists that takes a comprehensive and integrated approach to Office 365 applications. - [With Data Being the New Oil, Microsoft Bets on Power BI Premium](https://petri.com/data-new-oil-microsoft-bets-power-bi-premium/): Microsoft has announced that PowerBI Premium has reached general availability and will start at $625 a month. - [Avoiding Accidental Changes with PowerShell's WhatIf and Confirm Parameters](https://petri.com/avoiding-accidental-changes-powershells-whatif-confirm-parameters/): Learn how to prevent PowerShell mistakes by adding -whatif and -confirm parameters. - [Migrate Content from Docs.com to OneDrive for Business](https://petri.com/migrate-content-docs-com-onedrive-business/): Jussi Roine discusses Microsoft's announcement that Docs. com is being phased out. - [VMware’s vRealize Suite Refresh Provides Enhanced Hybrid Cloud Automation and DevOps Support](https://petri.com/vmwares-vrealize-suite-refresh-provides-enhanced-hybrid-cloud-automation-devops-support/): VMware announced a complete refresh of its vRealize Suite with support for intelligent operations, hybrid cloud, automation and DevOps - [Paul Thurrott's Short Takes: June 9](https://petri.com/paul-thurrotts-short-takes-june-9/): Because our three days of Spring have finally arrived, this edition of Short Takes looks at an amazing Intel threat... - [Microsoft's Next Windows 10 Security Feature Looks to Be Exploit Guard](https://petri.com/microsofts-next-windows-10-security-feature-looks-exploit-guard/): Microsoft is working on a new security feature for Windows 10 called Exploit Guard that will allow admins to block... - [Microsoft is Shutting Down Docs.com](https://petri.com/microsoft-shutting-docs-com/): Microsoft has announced that they will be closing Docs. com; an online service used to share Office content and track... - [5 Tips for Modern Task Management](https://petri.com/5-tips-modern-task-management/): If you can control your workload, you can sleep better, feel less overwhelmed, and actually enjoy the calm moments. Matthew... - [Azure Site Recovery for Azure Virtual Machines](https://petri.com/azure-site-recovery-azure-virtual-machines/): This post explains how you can get disaster recovery replication for Azure virtual machines using a new preview feature. - [Microsoft Looks To Bolster Advanced Threat Detection Services With Hexadite Acquisition](https://petri.com/microsoft-looks-bolster-advanced-threat-detection-services-hexadite-acquisition/): Microsoft is acquiring Hexadite and will integrate the company's technology into Windows Advanced Threat Protection. - [The Rebirth of Yammer Groups](https://petri.com/the-rebirth-of-yammer-groups/): Microsoft hopes that by linking Yammer Groups to the Office 365 Groups service they will make Yammer more popular with Office 365 tenants. - [TCP Fast Open -- Disabled in Microsoft Edge](https://petri.com/tcp-fast-open-disabled-microsoft-edge/): In this Ask the Admin, Russell Smith explains how TCP Fast Open helps to speed up browsing in Microsoft Edge... - [What Is Visual Studio Team Services?](https://petri.com/visual-studio-team-services/): In this Ask the Admin, Russell Smith explains what Visual Studio Team Services is and how it compares to GitHub. - [Ransomware Is Indiscriminate -- Secure Your Systems Now](https://petri.com/ransomware-indiscriminate-secure-systems-now/): Russell Smith explains how attackers target businesses indiscriminately and outlines some steps for securing your devices. - [Create a Room Mailbox in Office 365](https://petri.com/create-room-mailbox-office-365/): In today's Ask the Admin, Russell Smith shows you how to create and use conference rooms in Office 365. - [Office 365 Apps Make Parts of Outlook Desktop More Usable](https://petri.com/office-365-apps-make-outlook-desktop-usable/): Outlook desktop supports Tasks and Contacts. Dedicated users like these bits of Outlook but many people do not. Recent Office 365 apps improve matters. - [Surface Book Performance Base: Long Term Update](https://petri.com/surface-book-performance-base-long-term-update/): I have been using Microsoft's Surface Book with Performance base for seven months which means it is time for a... - [Anatomy of a PowerShell Advanced Function](https://petri.com/anatomy-powershell-advanced-function/): PowerShell advanced functions provide modularity in automating system administration tasks and by structuring PowerShell scripts as advanced functions, you can... - [Azure Storage Announcements at Build](https://petri.com/azure-storage-announcements-build/): A number of Azure storage improvements were announced at Build: 4 TB virtual machine VHDs, 5 PB storage accounts, tiered storage and network access control. - [Set Up Email Rules in Office 365](https://petri.com/set-email-rules-office-365/): Russell Smith shows you how to set up email rules in the Office 365 web portal. - [Microsoft's Working on New SKUs of Windows for Workstations And Server](https://petri.com/microsofts-working-new-skus-windows-workstations-server/): Microsoft is working on a new SKU of Windows 10 that is designed for the workstation PC that includes support... - [Azure Virtual Machine Announcements from Build](https://petri.com/azure-virtual-machine-announcements-build/): Microsoft made a number of announcements about Azure virtual machines at the recent Build 2017 conference. This post will describe those announcements. - [Fine Tuning the Active Directory Searcher](https://petri.com/fine-tuning-active-directory-searcher/): Jeff Hicks shares more information on fine tuning the Active Directory Searcher. - [Paul Thurrott's Short Takes: June 2](https://petri.com/paul-thurrotts-short-takes-june-2/): Because the stress level has hit Defcon-1, this edition of Short Takes looks at Microsoft's intelligent edge, Steve Ballmer's rewriting... - [Microsoft 'Millennializes' Skype With Big Changes to the UI](https://petri.com/microsoft-millennializes-skype-big-changes-ui/): Microsoft is making big changes to Skype's Interface with the hope of attracting more users to the platform with new... - [Deploying Azure Virtual Machines with Smaller OS Disks](https://petri.com/deploying-azure-virtual-machines-smaller-os-disks/): You can reduce the cost of storage for Azure virtual machines with managed disks by using smaller OS drives. This post will explain why and how. - [Office 365 Groups Support Mail Contacts as Guest Members](https://petri.com/office-365-groups-mail-contacts/): Office 365 Groups now support the addition of Exchange Online mail contacts as guest members. This solves a problem for many tenants - [Why You Should Run a Data Inventory Before Your SharePoint Migration](https://petri.com/run-data-inventory-sharepoint-migration/): Before you migrate to a newer version of SharePoint or a different environment, always run a complete data inventory. This... - [New Sharing User Experience in OneDrive for Business and SharePoint Online](https://petri.com/new-sharing-user-experience-onedrive-business-sharepoint-online/): Microsoft has released the latest sharing experience for SharePoint Online and OneDrive for Business. Find out why Juan Carlos Gonzalez... - [Deploying VHD Sets on Windows Server 2016 Hyper-V](https://petri.com/deploying-vhd-sets-windows-server-2016-hyper-v/): This post will show you how to create a VHD Set, the replacement for Shared VHDX, and deploy it to a new virtual or guest cluster running on WS2016 Hyper-V. - [Use the Update Compliance in Operations Management Suite to Monitor Windows Updates](https://petri.com/use-update-compliance-operations-management-suite-monitor-windows-updates/): Russell Smith shows you how to configure Operations Management Suite's Update Compliance to monitor Windows updates. - [Planner Mobile App: Another Milestone for the Office 365 Task Management Service](https://petri.com/planner-mobile-app-another-milestone-office-365-task-management-service/): The Mobile Planner app is another milestone for the Office 365 Task Management Service. - [Scaling the PowerShell Active Directory Searcher](https://petri.com/scaling-powershell-active-directory-searcher/): Continuing this series on Active Directory Searcher with PowerShell, Jeff Hicks looks at managing large environments. - [Windows 10 Is Running on More than 50 Million Business PCs](https://petri.com/windows-10-running-50-million-business-pcs/): Microsoft's latest operating system, Windows 10, is now running on more than 50 million corporate machines and is continuing to... - [Deciphering PowerShell Providers](https://petri.com/deciphering-powershell-providers/): Learn what a PowerShell provider does and how it allows a common set of cmdlets to interact with differently-structured data... - [What Are Shared Virtual Hard Disk Sets on Windows Server 2016 Hyper-V?](https://petri.com/shared-virtual-hard-disk-sets-ws2016-hyper-v/): This post explains how VHD Sets offer a new way to do virtual cluster storage on WS2016 Hyper-V, with support for backup, resizing, and Hyper-V Replica. - [Paul Thurrott's Short Takes: May 26](https://petri.com/paul-thurrotts-short-takes-may-26/): Because it's my 27th anniversary, this edition of Short Takes looks at WannaCry's sad final statistic, the Windows 10 Creators... - [Deploying Software Using Desired State Configuration](https://petri.com/deploying-software-using-desired-state-configuration/): While other commercial products may be more robust, there are a few different ways Desired State Configuration can be used... - [What Is the Storage Resiliency of Windows Server 2016?](https://petri.com/storage-resiliency-windows-server-2016/): This post will explain how Storage Resiliency decreases downtime for virtual machines running on Windows Server 2016 Hyper-V. - [The Biggest Threat To Microsoft's Future is Artificial Intelligence](https://petri.com/biggest-threat-microsofts-future-artificial-intelligence/): The next revolution in computing is around the corner and for Microsoft, if they miss this opportunity it stands to... - [Microsoft’s Crusade to Convince Office 365 Tenants to Move Away from Distribution Groups](https://petri.com/microsoft-crusade-office-365-groups/): Microsoft really wants Office 365 tenants to migrate old email distribution lists to Office 365 Groups. Is their enthusiasm just a tad too much? - [New Azure Active Directory Admin Experience Is Generally Available](https://petri.com/new-azure-active-directory-admin-experience-generally-available/): The new Azure AD administrator interface has gone generally available in the Azure Portal for administrators of all Microsoft enterprise cloud services. - [Expanding the Active Directory Searcher and PowerShell](https://petri.com/expanding-active-directory-searcher-powershell/): Learn about using Active Directory Searcher in this series. - [Microsoft Announces a New Surface Pro, Refreshes Branding and Marketing](https://petri.com/microsoft-announces-new-surface-pro-refreshes-branding-marketing/): Microsoft has announced a new Surface Pro that is an iterative update but also packs a few key new features... - [Azure Active Directory Connect Makes Cloud Single Sign-On Easy](https://petri.com/azure-active-directory-connect-makes-cloud-single-sign-easy/): Russell Smith outlines two new features of Azure Active Directory Connect, Seamless Single Sign-On and Pass-Through Authentication. - [Recent Outlook and OWA Enhancements Disappoint On-Premises Exchange Customers](https://petri.com/on-premises-exchange-owa-outlook-enhancements/): Microsoft has provided many recent updates for Outlook but the new functionality often only works for Office 365 users. That's sad for on-premises users. - [Microsoft Lets China's Government Use its Own Encryption in Windows 10](https://petri.com/microsoft-lets-chinas-government-use-encryption-windows-10/): Microsoft has built a customized version of Windows 10 for China that has new features including the ability to change... - [Finding Groups with the Active Directory Searcher and PowerShell](https://petri.com/finding-groups-active-directory-searcher-powershell/): In this series, Jeff Hicks continues looking at ways to use the Active Directory Searcher with PowerShell. - [Shut Down Remote Workgroup Computers](https://petri.com/shut-remote-workgroup-computers/): In today's Ask the Admin, Russell Smith shows you how to shut down a remote workgroup computer using PowerShell. - [Microsoft Introduces Low Priority VMs to Cut Batch Processing Pricing](https://petri.com/microsoft-introduces-low-priority-vms-cut-batch-processing-pricing/): Microsoft is introducing a way to complete batch processing jobs in Azure with pricing reductions of up to 80% if... - [Using RPOs and RTOs to Drive Your Disaster Recovery Strategy](https://petri.com/using-rpos-rtos-drive-disaster-recovery-strategy/): When you’re creating a disaster recovery strategy for your business, there are two main criteria that you need to consider:... - [Modern SharePoint Web Parts : Document Library and List Web Parts Are Finally Here!](https://petri.com/modern-sharepoint-web-parts-document-library-list-web-parts-finally/): The Modern SharePoint Team Site releases Document Library and List Web Parts, which provides for an easier and more user-friendly... - [Paul Thurrott's Short Takes: May 19](https://petri.com/paul-thurrotts-short-takes-may-19/): Because nothing happens quickly in New Orleans, this edition of Short Takes on a ransomware attack. WannaCry, WannaCry, WannaCry. Why... - [Hyper-V Virtual Machine Groups](https://petri.com/hyper-v-virtual-machine-groups/): This post explains how to use VM Groups, a way to manage and orchestrate (Hyper-V Replica with VHD Sets) a set of virtual machines on WS2016 Hyper-V. - [6 Steps to Prevent WannaCrypt and Other Ransomware](https://petri.com/6-steps-to-prevent-wannacrypt-other-ransomware/): Learn how to prevent ransomware such as WannaCrypt & CryptoLocker from damaging your business using these 6 best practices steps. - [Windows Server 2016 Joins Windows Insider Program](https://petri.com/windows-server-2016-joins-windows-insider-program/): Windows Server 2016 is joining the Insider Program this summer. - [Bypass the Lock Screen in Windows 10](https://petri.com/bypass-lock-screen-windows-10/): In today's Ask the Admin, I will show you how to set up Windows 10 to bypass the lock screen. - [SharePoint Online Administration Joins the 21st Century. Office 365 Admins Relieved](https://petri.com/sharepoint-admin-center/): Microsoft plans to modernize the SharePoint Online Admin Center. That's good news for Office 365 admins, especially those who don't know SharePoint. - [Microsoft will Open Two New Data Centers in Africa in 2018](https://petri.com/microsoft-will-open-two-new-datacenters-africa-2018/): Microsoft has announced that they will be opening up two new Azure regions in Africa in 2018. - [Veeam Looks to Expand its On-Premises Horizon with support for AWS](https://petri.com/veeam-looks-expand-premises-horizon-support-aws/): Veeam is looking to move beyond the on-premises data center and has announced that they will soon be supporting Amazon's... - [Bash for Windows Comes to Windows Server 2016](https://petri.com/bash-windows-comes-windows-server-2016/): Microsoft announces that the Windows Subsystem for Linux is coming to Windows Server 2016 at Build 2017. - [SharePoint Virtual Summit: Continuing the Rebirth of SharePoint](https://petri.com/sharepoint-virtual-summit-continuing-rebirth-sharepoint/): Learn about the many new features and updates announced at the SharePoint Virtual Summit event that are going to make... - [With More than 250,000 Organizations Now Using SharePoint, Microsoft Adds More Features](https://petri.com/250000-organizations-now-using-sharepoint-microsoft-adds-features/): Microsoft has announced that they are bringing new features to SharePoint such as new community sites and improved sharing directly... - [Introduction to Azure Active Directory Auditing](https://petri.com/introduction-azure-active-directory-auditing/): Find out what auditing features are available in Azure Active Directory. - [Convert Your Old Distribution Lists to Office 365 Groups](https://petri.com/convert-dl-office-365-groups/): Microsoft is making a method available to allow users to convert old-style email distribution groups to Office 365 Groups. - [PowerShell Remoting Basics](https://petri.com/powershell-remoting-basics/): Missy Januszko provides an overview of PowerShell remoting and explains the use of different cmdlets for managing multiple machines at... - [Sponsored: Remote Desktop Team Considerations](https://petri.com/sponsored-remote-desktop-team-considerations/): Almost all mid-to-large businesses have many people using Remote Desktop Connections, and these users are often separated into different systems... - [Don’t Blame Microsoft For WannaCrypt Vulnerability Exploitation](https://petri.com/dont-blame-microsoft-wannacrypt-vulnerability-exploitation/): Microsoft has found itself on the receiving end for some blame of the Wannacrpyt cyber attack but the finger is... - [Windows 10: Pin Apps to the Taskbar Using Group Policy](https://petri.com/windows-10-pin-apps-taskbar-using-group-policy/): Learn how to customize the taskbar in Windows 10 Anniversary Update using Group Policy. - [PowerShell Problem Solver: Finding Needles in the Active Directory Haystack](https://petri.com/powershell-problem-solver-finding-needles-active-directory-haystack/): Jeff Hicks walks you through some problems using Active Directory and PowerShell. - [Paul Thurrott's Short Takes: May 12](https://petri.com/paul-thurrotts-short-takes-may-12/): Because Build 2017 made for a very long week, this edition of Short Takes looks at Microsoft's new Windows strategy,... - [Create Deployment Rings Using Windows 10 Update for Business](https://petri.com/create-deployment-rings-using-windows-10-update-business/): Russell Smith shows you how to use Windows Update for Business policy settings to create deployment rings for Windows 10... - [Microsoft Brings ‘Placeholders’ to Windows 10 for OneDrive and SharePoint](https://petri.com/microsoft-brings-placeholders-windows-10-onedrive-sharepoint/): Microsoft has announced that they are bringing back one of their most requested features, placeholders for OneDrive and SharePoint. - [Windows 10 'Fall Creators Update’: New UI Elements, Placeholders and More](https://petri.com/windows-10-fall-creators-update-new-ui-elements-placeholders/): Microsoft has announced the next major update to Windows 10 will be called the Fall Creators update and it's packed... - [Microsoft is Bringing New Flavors of Linux to Windows 10](https://petri.com/microsoft-bringing-new-flavors-linux-windows-10/): Microsoft has announced that they are bringing more flavors of Linux to Windows 10 and that the features will be... - [Configuring StorSimple as a File Server/NAS](https://petri.com/configuring-storsimple-file-servernas/): This post will explain why you would deploy a StorSimple appliance as a file server, and show you how to create a shared folder. - [Microsoft Continues Battle Against Malware with Outlook Add-in](https://petri.com/outlook-anti-malware-addin/): Microsoft provides Office 365 users with a Report Message add-in for Outlook 2016 to help them report junk and phishing email. - [Microsoft’s New Database Migration Service Helps You Move Beyond Oracle](https://petri.com/microsofts-new-database-migration-services-helps-move-beyond-oracle/): Microsoft is once again on the offensive and is going after Oracle customers with a new migration service to help... - [Microsoft Adds 440,000 Windows 10 Users Per Day During Last Seven Months](https://petri.com/microsoft-adds-440000-windows-10-users-per-day-last-seven-months/): Microsoft's Windows 10 OS is growing quickly and is showing few signs of slowing down. - [Microsoft Azure Cosmos DB: A Globally Distributed, Multi-Model Database Service](https://petri.com/microsoft-azure-cosmos-db-globally-distributed-multi-model-database-service/): Microsoft has announced a new DB service for Azure that they are calling Cosmos that is available everywhere starting today. - [Converting Availability Set Virtual Machines to Azure Managed Disks](https://petri.com/converting-availability-set-vms-azure-managed-disks/): This post explains the benefits of using Azure Managed Disks with availability set virtual machines, and shares a PowerShell script to do the conversion. - [Leveraging the Hybrid Cloud for Backup and Disaster Recovery](https://petri.com/leveraging-hybrid-cloud-backup-disaster-recovery/): The hybrid cloud has become an integral part of most business IT infrastructures, and many businesses have begun to leverage... - [Enabling Windows 10 Device Guard](https://petri.com/enabling-windows-10-device-guard/): Russell Smith shows you how to get up and running quickly with Device Guard in Windows 10 Enterprise. - [Outlook Apps Support Office 365 Groups – But Only for Conversations](https://petri.com/outlook-apps-support-office-365-groups/): The Outlook apps for iOS and Android now support Office 365 Groups. You can access conversations in groups as easily as email in the Inbox. - [Evolving The Windows SKUs](https://petri.com/evolving-the-windows-sku/): With the release of Windows 10 S, it seems likely that Microsoft may be preparing to overhaul its SKU lineup... - [Discovering the Active Directory Searcher with PowerShell](https://petri.com/discovering-active-directory-searcher-powershell/): Jeff Hicks discusses using Active Directory Searcher with PowerShell. - [Paul Thurrott's Short Takes: May 5](https://petri.com/paul-thurrotts-short-takes-april-21-2/): Because Microsoft just had a big event and I'm still as giddy as a schoolgirl, this edition of Short Takes... - [Network Device Naming in Windows Server 2016 Hyper-V](https://petri.com/network-device-naming-windows-server-2016-hyper-v/): This post explains why and how to to name the virtual NICs of a Windows Server 2016 Hyper-V virtual machine using network device naming. - [What Has Changed in Windows Update for Business](https://petri.com/changed-windows-update-business/): Russell Smith looks at changes in Windows Update for Business in the Windows 10 Anniversary Update 1607. - [Surface Laptop: 48 Hours Later](https://petri.com/surface-laptop-48-hours-later/): Now that the excitement has settled down and the confetti cleaned up, it's time to look at the Surface Laptop... - [All Change for Office 365 eDiscovery on July 1](https://petri.com/office-365-ediscovery-changes/): Microsoft moves to a consistent eDiscovery platform for Office 365 from July 1, 2017. Some changes are needed for Exchange and SharePoint. - [Build 2017: Here’s What I'll Be Watching For at Microsoft’s Developer Conference](https://petri.com/build-2017-heres-ill-watching-microsofts-developer-conference/): Microsoft's Build conference takes place next week and here is what I'll be watching for as the company announces their... - [Using MPIO with the Windows Server iSCSI Initiator](https://petri.com/using-mpio-windows-server-iscsi-initiator/): This post will explain how to configure the Windows Server iSCSI Initiator to use Multi-path I/O (MPIO) for fault tolerant storage networking. - [List Operations with React JS and SharePoint Framework](https://petri.com/list-operations-react-js-sharepoint-framework/): Learn to use the SharePoint Framework and React JS to perform CRUD operations against SharePoint lists. - [Windows 10 S: Microsoft’s new Windows SKU for Education and Beyond](https://petri.com/windows-10-s-microsofts-new-windows-sku-education-beyond-draft/): Microsoft has introduced a new SKU of Windows 10 called Windows 10 S that will only run store apps and... - [Microsoft Is Bringing Desktop Office Apps to the Windows Store](https://petri.com/microsoft-is-bringing-desktop-office-apps-to-the-windows-store/): Microsoft has announced that they are bringing desktop Office apps to the Windows Store to support Windows 10 S. - [Microsoft Adds a New Member to the Surface Family, the Laptop](https://petri.com/microsofts-adds-new-member-surface-family-laptop/): Microsoft has announced a new member of the Surface family, the Surface Laptop - [Focused Inbox Comes to Outlook Desktop at Last](https://petri.com/outlook-focused-inbox/): Outlook desktop clients can now use the Focused Inbox feature, but only when the right conditions exist and only for Office 365. - [Configure StorSimple as an iSCSI Storage System](https://petri.com/configure-storsimple-iscsi-storage-system/): This step-by-step instructional guide will show you how to configure an Azure StorSimple 1200 virtual appliance as an MPIO-capable iSCSI storage system. - [Understanding Windows Update for Business](https://petri.com/understanding-windows-update-business/): Find out how Windows Update for Business makes it easier for organizations to keep Windows 10 patched and up-to-date. - [Build a Cloud-Integrated Surveillance System Using Microsoft Azure and Windows 10, Part 1](https://petri.com/build-cloud-integrated-surveillance-system-using-microsoft-azure-windows-10-part-1/): Jussi Roine shares the beginning stages of how he built a security surveillance system that integrates with Microsoft Azure and... - [Converting a Desired State Configuration Script Resource to a Resource Module](https://petri.com/converting-desired-state-configuration-script-resource-resource-module/): Learn the necessary steps to convert a script resource into a custom resource module. - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2017)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-6/): Because it's that time of the quarter, this edition of Short Takes looks exclusively at Microsoft's quarterly earnings announcement. - [Office 365 Hits 100 Million Users. On Course for 120 Million This Year](https://petri.com/office-365-hits-100-million-users/): Microsoft's latest results say that Office 365 now has "over 100 million active users". Microsoft will grow Office 365 to 120 million by end 2017. - [Microsoft's Cloud Continues To Drive Its Q3 Results Upward](https://petri.com/microsofts-cloud-continues-drive-q3-results-upward/): Microsoft's Cloud performance continues to be a key driver of revenue for the company with Q3 results indicating that its... - [Windows 10 Device Guard Versus AppLocker](https://petri.com/windows-10-device-guard-versus-applocker/): Russell Smith discusses the key differences between AppLocker and Device Guard in Windows 10. - [Windows Cloud + Education: The Challenge Microsoft Must Solve](https://petri.com/windows-cloud-education-the-challenge-microsoft-must-solve/): Microsoft is working on a new OS targeted at the education market, called Windows Cloud, but they have a few... - [Best Practices for Deploying StorSimple Virtual Arrays](https://petri.com/best-practices-deploying-storsimple-virtual-arrays/): This post will describe Microsoft's best practices for designing and deploying the Azure StorSimple 1200 virtual appliance for tiered storage to the cloud. - [New Hyper-V Features in Creators Update](https://petri.com/new-hyper-v-features-creators-update/): Windows 10 Creators Update added new features to Hyper-V and Hyper-V Manager - read this post to learn about these additions and changes. - [Discover the Power of Hybrid Search in SharePoint 2016](https://petri.com/discover-the-power-of-hybrid-search-in-sharepoint-2016/): In this short video, discover the power of hybrid search in SharePoint 2016. Find out all the things that are... - [Why Has Microsoft's Project Centennial Been So Unsuccessful?](https://petri.com/microsofts-project-centennial-unsuccessful/): Microsoft built a bridge, Project Centennial, so Win32 desktop apps could be submitted to the Windows 10 app store, but things have not gone well so far. - [Teams Adds to the Office 365 Compliance Story](https://petri.com/teams-compliance-story/): Microsoft Teams now boasts support for a range of Office 365 compliance features as chats are captured in mailboxes to make them searchable. - [Microsoft Begins Putting LinkedIn To Use, Challenging Salesforce](https://petri.com/microsoft-begins-putting-linkedin-use-challenging-salesforce/): Microsoft has announced today that Dynamics 365 customers can now integrate with LinkedIn Sales Navigator and that they have a... - [Deploying a StorSimple Virtual Appliance](https://petri.com/deploying-storsimple-virtual-appliance/): This step-by-step instructional post will guide your through creating, deploying & registering a StorSimple tiered cloud storage appliance on your network. - [Driving Adoption for Office 365, Part 6](https://petri.com/driving-adoption-office-365-part-6/): Jasper Oosterveld shares guidance through this series on driving adoption for Office 365. - [Microsoft’s Preparing to Release Desktop Office Apps in the Windows Store](https://petri.com/microsofts-preparing-release-desktop-office-apps-windows-store/): Microsoft is preparing to release its productivity apps in the Windows Store which will help show the company's commitment to... - [Building Your Disaster Recovery Plan](https://petri.com/building-disaster-recovery-plan/): Building and testing Disaster Recovery (DR) plans isn’t anyone’s favorite activity, but it is very important. Find out how to... - [What Is Software Defined Networking In Windows Server 2016?](https://petri.com/software-defined-networking-windows-server-2016/): Russell Smith takes a look at how Software Defined Networking in Windows Server 2016 can add a virtualization layer on... - [Paul Thurrott's Short Takes: April 21](https://petri.com/paul-thurrotts-short-takes-april-21/): Because it always rains when I drive, this edition of Short Takes looks at Microsoft's new schedule for Windows 10... - [StorSimple Available -- Priced for Small and Medium Enterprises](https://petri.com/storsimple-available-priced-small-medium-enterprises/): Microsoft made their tiered storage solution, StorSimple, available through the Cloud Solution Provider (CSP) program, targeting small/medium businesses. - [Microsoft Will Release Two Feature Updates Per Year for Windows 10; Redstone 3 Arrives in September](https://petri.com/microsoft-will-release-two-feature-updates-per-year-windows-10-redstone-3-arrives-september/): Microsoft has announced that Windows 10 will received two feature updates per year and that Redstone 3 will arrive in... - [Microsoft Deepens Its Commitment to IoT](https://petri.com/microsoft-deepens-commitment-iot/): Microsoft is digging in when it comes to enterprise IoT with the company announcing several new products and security enhancements. - [Turning Office 365 Off at the Weekend](https://petri.com/turn-office-365-off-at-the-weekend/): France has a new law to allow employees to disconnect from work at the weekend and holidays. How can we implement a block with Office 365? - [Making the Most of Virtual Desktops, Task View, and Snap Assist in Windows 10](https://petri.com/making-virtual-desktops-task-view-snap-assist-windows-10/): Russell Smith takes a look at putting virtual desktops to use with a bit of help from Task View and... - [Managing SharePoint Online Files with PowerShell](https://petri.com/managing-sharepoint-online-files-powershell/): Learn to use the Patterns and Practices PowerShell to move, copy, and delete SharePoint Online files from document libraries. - [Microsoft is Bringing AI and More To SQL Server 2017](https://petri.com/microsoft-bringing-ai-sql-server-2017/): Microsoft has announced that it is improving the performance of SQL Server 2017 for Linux users and also bringing new... - [A Number of Azure Monitoring Solutions Now Available in GA](https://petri.com/number-azure-monitoring-solutions-now-available-ga/): A number of Azure management tools recently became generally available: Azure Monitor, Network Watcher, Azure Advisor, and Resource Health. - [Microsoft Adds Another Acquisition to its Portfolio, Intentional Software](https://petri.com/microsoft-adds-another-acquisition-portfolio-intentional-software/): Microsoft has announced today that they are buying Intentional Software, a company that builds productivity software designed for teams. - [Testing DSC Configurations Using Pester](https://petri.com/testing-dsc-configurations-using-pester/): Learn how to use Pester to test a Desired State Configuration to ensure that servers are configured exactly the way... - [Restricting Office 365 Content Searches with Permission Filters](https://petri.com/restricting-office-365-content-searches/): Office 365 content searches are very powerful at finding content. Permissions filters can restrict the ability of eDiscovery managers to see results. - [Create an Azure Virtual Machine Using a Customized Virtual Hard Disk](https://petri.com/create-azure-virtual-machine-using-customized-virtual-hard-disk/): Learn how to attach a customized virtual hard disk to a new Azure virtual machine. - [Manage Azure Resources with Visual Studio Cloud Explorer](https://petri.com/manage-azure-resources-visual-studio-cloud-explorer/): Learn how to hierarchically browse Azure resources using Cloud Explorer in Visual Studio. - [Sponsored: Best Practices for Securing Remote Desktop Connections](https://petri.com/sponsored-best-practices-securing-remote-desktop-connections/): Properly securing your Remote Desktop Connections is vital because of the far-reaching access and capability that Remote Desktop Connection has.... - [After NSA Exploits Leak, Microsoft Finds Itself in an Odd Position](https://petri.com/after-nsa-exploits-leak-microsoft-finds-itself-in-an-odd-position/): Microsoft has quietly patched security vulnerabilities used by the NSA after they were made public over the weekend but who... - [Creating Active Directory User Accounts with ADSI and PowerShell](https://petri.com/creating-active-directory-user-accounts-adsi-powershell/): Jeff Hicks continues his series on using Active Directory with PowerShell, ADSI, and LDAP by walking you through the creation... - [Paul Thurrott's Short Takes: April 14](https://petri.com/paul-thurrotts-short-takes-april-14/): Because Windows Vista is finally dead, this edition of Short Takes looks at the last stand for an unfairly maligned... - [Restore Azure Virtual Machines to an Availability Set Using PowerShell](https://petri.com/restore-azure-virtual-machines-availability-set-using-powershell/): A restored virtual machine will not join an availability set by default. This post shows a PowerShell method to restore the machine to an availability set. - [Security Driving Enterprises to Windows 10](https://petri.com/security-driving-enterprises-windows-10/): Enterprises are migrating to Windows 10 faster than expected and one of the key reasons is security. - [Bringing Compliance to Office 365 Groups](https://petri.com/office-365-groups-compliance/): Tenants have not been able to exert control over the content of Office 365 Groups for compliance purposes. Now they can with retention policies. - [Choosing an Azure Virtual Machine -- April 2017](https://petri.com/choosing-azure-virtual-machine-april-2017/): This updated post explains how to pick an Azure VM Series, and size or spec a virtual machine to run in the cloud. - [Using the Patterns and Practices PowerShell with SharePoint](https://petri.com/using-patterns-practices-powershell-sharepoint/): Make working with SharePoint PowerShell easy and much more powerful with the Patterns and Practices PowerShell. Both Online and On-Prem. - [Microsoft Adds New Features to Azure Active Directory](https://petri.com/microsoft-adds-new-features-azure-active-directory/): Azure Active Directory B2B is now generally available and the company is expanding options available to European users too. - [Microsoft Announces Windows Event For May 2nd in NYC](https://petri.com/microsoft-announces-windows-event-may-2nd-nyc/): Microsoft has announced a Windows event for May 2nd where the company is expected to talk about Windows Cloud and... - [Intersecting DSC Configuration Design and Personal Style](https://petri.com/intersecting-dsc-configuration-design-personal-style/): DSC configurations require logical thinking through the steps necessary to make changes to a server's configuration. Learn my process for... - [Driving Adoption for Office 365, Part 5](https://petri.com/driving-adoption-office-365-part-5/): Learn about driving adoption for Office 365 with a focus on measuring, planning, and budgeting. - [Office 365 Data Governance Framework Spans Multiple Workloads](https://petri.com/office-365-data-governance/): Microsoft launched the data governance framework for Office 365 to span Exchange, SharePoint, Skype for Business, OneDrive, and Groups. - [Deploy an Azure Network Watcher Instance -- Preview](https://petri.com/deploy-azure-network-watcher-instance-preview/): This post will demonstrate how to enable and deploy the Network Watcher in your Azure subscription. - [Microsoft Closes the Book on Windows Vista](https://petri.com/microsoft-closes-book-windows-vista/): Microsoft is ending support for Windows Vista today; an OS that never had a chance at long-term success. - [Create NAT Rules for the Hyper-V NAT Virtual Switch](https://petri.com/create-nat-rules-hyper-v-nat-virtual-switch/): This post will show how to create NAT rules for virtual machines running on Windows Server 2016 (WS2016) or Windows 10 Hyper-V NAT-enabled virtual switches. - [Sponsored: In Your Rush to the Cloud, Don't Forget Where You Came From](https://petri.com/sponsored-rush-cloud-dont-forget-came/): If your on-premises Active Directory isn't secure, it doesn't matter how much you've locked down Office 365. Find why Active... - [Microsoft Snatches Up Deis To Boost Azure Kubernetes Tech](https://petri.com/microsoft-snatches-deis-boost-azure-kubernetes-tech/): Microsoft is acquiring Deis, a container technology company; the software improves application agility, efficiency, and reliability, through their Kubernetes software... - [Managing Active Directory Groups with ADSI and PowerShell](https://petri.com/managing-active-directory-groups-adsi-powershell/): This series on managing Active Directory with PowerShell, ADSI, and LDAP continues with a look at group-user accounts. - [Microsoft Confirms SharePoint vNext Will Have On-Premises Iteration](https://petri.com/microsoft-confirms-sharepoint-vnext-will-premises-iteration/): Microsoft has confirmed that its next version of SharePoint will also support on-premises deployments; no indication on when the next... - [Paul Thurrott's Short Takes: April 7](https://petri.com/paul-thurrotts-short-takes-april-7/): Because Spring is finally in the air, this edition of Short Takes looks at Microsoft's customer satisfaction win over Apple,... - [Preview of Resource Policy in the Azure Portal](https://petri.com/preview-resource-policy-azure-portal/): Read about the preview release of Azure resource policy administration in the Azure Portal - control what can be deployed and where they can be created. - [How to Copy a Virtual Hard Disk in Microsoft Azure](https://petri.com/copy-virtual-hard-disk-microsoft-azure/): Learn how to copy a virtual hard disk in Azure using AzCopy. - [Windows as a Service: The Highs and Lows of Rapid Release](https://petri.com/windows-service-havoc-enterprise/): Microsoft's Windows as a Service model for Windows 10 brings with it many benefits but it is also creating a... - [Active Directory User Accounts with PowerShell, ADSI, and LDAP](https://petri.com/active-directory-user-accounts-powershell-adsi-ldap/): This series of articles is about managing Active Directory with PowerShell, ADSI, and LDAP. This article focuses on single-user accounts. - [Planner Moves Forward – Slowly](https://petri.com/planner-moves-forward-slowly/): Microsoft Planner added the ability to assign multiple people to a task. It's a good step, but it's the first new feature in 9 months. - [SharePoint Podcast Episode #332: Dance Like the Microwave Isn't Watching](https://petri.com/sharepoint-podcast-episode-332-dance-like-microwave-isnt-watching/): Shane Young and Todd Klindt talk about SharePoint, O365, Identity, the new Ryzen chip, and Microwaves spying on you. Good times! - [Azure Announces Ls-Series Virtual Machines](https://petri.com/azure-announces-ls-series-virtual-machines/): Microsoft announced the Ls-Series virtual machines, VM specs and sizes that are designed for use with services that require local low-latency flash storage. - [Driving Adoption for Office 365, Part 4](https://petri.com/driving-adoption-office-365-part-4/): In this series about driving adoption for Office 365, we will focus on communication, learning, and the launch. - [What You Need to Know About the EU General Data Protection Regulation](https://petri.com/need-know-eu-general-data-protection-regulation/): Understand what the EU GDPR is and how it might affect your company. - [5 Ways the Hybrid Cloud Has Changed IT](https://petri.com/5-ways-hybrid-cloud-changed/): Most businesses have adopted a hybrid cloud strategy in which they have stretched several key IT elements into the cloud... - [Using Tags to Help Delve Find Office 365 Content More Efficiently](https://petri.com/efficient-delve-searches-office365/): Changing your tagging habits for documents can make a huge difference in the effectiveness of Delve searches for Office 365 content. - [3 Tips for Working with the Microsoft Azure Recovery Services Agent](https://petri.com/3-tips-working-microsoft-azure-recovery-services-agent/): Learn how to avoid some of the common problems with the Microsoft Azure Recovery Services agent. - [Deploying ReactJS Web Parts Through the SharePoint Framework](https://petri.com/deploying-reactjs-web-parts-sharepoint-framework/): In this article, you will learn to deploy SharePoint Framework client web parts to Office 365. - [Windows 10 Creators Update Delivers a More Secure Edge](https://petri.com/windows-10-creators-update-delivers-secure-edge/): Learn about new security defenses in Microsoft Edge in the Windows 10 Creators Update. - [Microsoft Expands Office 365 K1 Tier](https://petri.com/microsoft-expands-office-365-k1-plans/): Microsoft is adding new features to its Office 365 K1 plan, a tier of the productivity suite designed for front-line... - [What Is Azure Network Watcher?](https://petri.com/azure-network-watcher/): This post introduces the preview release of Azure Network Watcher, a tool for resource and end-to-end network monitoring & troubleshooting. - [Leveraging OneNote: Getting Your Content into OneNote](https://petri.com/leveraging-onenote-getting-content-onenote/): OneNote has a multitude of different tools for getting your content into OneNote. From the standard paste to extensions to special printers; It's all there! - [SharePoint Podcast #331 -- Unrelated](https://petri.com/sharepoint-podcast-331-unrelated/): Shane and Todd, your favorite SharePoint MVPs, spend this episode covering Windows and Azure AD among other things. Why no SharePoint guys? - [Sponsored: Eliminating Archived Email and PSTs in the Enterprise, Part 2](https://petri.com/sponsored-eliminating-archived-email-psts-enterprise-part-2/): Eliminating archived email and PSTs doesn’t need to be overwhelming. Learn about the Locate, Identify, Migrate, and Eliminate phases of... - [Paul Thurrott's Short Takes: March 31](https://petri.com/paul-thurrotts-short-takes-march-31/): Because there's a Microsoft coffee shop in Berlin, this edition of Short Takes looks at the Windows 10 Creators Update... - [Active Directory with PowerShell, ADSI, and LDAP](https://petri.com/active-directory-powershell-adsi-ldap/): This is series of articles about managing Active Directory with PowerShell. This one particularly focuses on using the LDAP moniker. - [3 Ways to Get More from IT -- And Not Be a BOFH](https://petri.com/3-ways-get-not-bofh/): In this article, Russell Smith shares his thoughts about how to live peacefully with the tech in your life. - [Building a Location Beacon Using Microsoft Flow, Power BI, and Azure Functions](https://petri.com/building-location-beacon-using-microsoft-flow-power-bi-azure-functions/): Jussi Roine shows you how to build a production-ready solution using Office 365 and Microsoft Azure for locating your dearest... - [Managing Cross-Node Dependencies with Desired State Configuration](https://petri.com/managing-cross-node-dependencies-desired-state-configuration/): Learn how to control timing of Desired State Configuration across nodes using WaitFor resources in this how-to article. - [Leveraging OneNote: Using Page Templates](https://petri.com/leveraging-onenote-using-page-templates/): Use custom page templates in OneNote to make it easy to drive more consistent note taking in your business. OneNote has template support built in by default - [How To Recover Deleted Office 365 Groups In Three Easy Steps](https://petri.com/recover-deleted-office-365-groups/): Microsoft has released the Azure Active Directory cmdlets to allow Office 365 tenants to recover deleted Office 365 Groups. - [Driving Adoption for Office 365, Part 3](https://petri.com/driving-adoption-office-365-part-3/): Office 365 is an incredibly powerful Cloud platform build on four strong pillars: collaboration, mobile, intelligence and trust. Although these... - [Windows 10 Creators Update Arrives April 11, Here’s What’s in it for the Enterprise](https://petri.com/windows-10-creators-update-arrives-april-11-heres-whats-in-it-for-the-enterprise/): Microsoft will release the Creators update for Windows 10 on April 11th; here's what is in this release for enterprise... - [Azure Autoscaling with VMSS and Managed Disks, Part 3: Vertical Autoscaling](https://petri.com/azure-autoscaling-vmss-managed-disks-part-3-vertical-autoscaling/): Learn how to vertically scale VMs in a VMSS using Azure Automation. - [Sponsored: Five Essential Remote Desktop Tips](https://petri.com/sponsored-five-essential-remote-desktop-tips/): Michael Otey shares five essential tips that can make your work with Remote Desktop Connection faster and more efficient. - [Surface Studio Review: The C-Suite PC Has Arrived](https://petri.com/surface-studio-review-the-c-suite-pc-has-arrived/): Microsoft's Surface Studio is the hero of the segment and an artists dream but it can be used for much... - [Exchange Online Provides Archive Folders to Users. Good or Bad Idea?](https://petri.com/exchange-online-archive-options/): Exchange Online makes a new archive folder available to users. Now we have multiple ways to archive email in Office 365. What's best? - [Microsoft Adds Several New Features To Skype for Business](https://petri.com/microsoft-adds-several-new-features-skype-business/): Microsoft is adding a couple of new features to Skype for Business that will allow the platform to handle high... - [Sponsored: Eliminating Archived Email and PSTs in the Enterprise, Part 1](https://petri.com/sponsored-eliminating-archived-email-psts-enterprise-part-1/): There has never been a better time to address archived email data and reduce the costs associated with storing it... - [Active Directory PowerShell with ADSI](https://petri.com/active-directory-powershell-with-adsi/): PowerShell is all about having options. This article spends some time going over how to manage Active Directory using alternative... - [Windows 10: Intelligence and Office 365 Integration in Windows Ink](https://petri.com/windows-10-intelligence-office-365-integration-windows-ink/): Learn how Windows Ink enables pen input in useful ways in the Windows 10 Anniversary Update. - [Microsoft Azure: Enable Encryption for Data at Rest](https://petri.com/microsoft-azure-enable-encryption-data-rest/): Learn how to enable Storage Service Encryption for storage accounts in Microsoft Azure. - [SharePoint Podcast #330 -- Number 4 Will Shock You](https://petri.com/sharepoint-podcast-330-number-4-will-shock/): We created a click-bait style title to go with a click-bait chat. After that, we cover SharePoint, PowerShell, Azure, BGinfo, and Google Docs. Busy show. - [Deploying Windows Server 2016 Containers Using Azure and Docker](https://petri.com/deploying-windows-server-2016-containers-using-azure-docker/): Learn how to get started quickly with Windows Containers and Docker with a little bit of help from Microsoft Azure. - [What You Need to Know About Data Replication](https://petri.com/need-know-data-replication/): Although the basics of replication are fairly straightforward, there are several factors that can influence the efficiency and effectiveness of... - [Leveraging OneNote: Using Tables in Your Notes](https://petri.com/leveraging-onenote-using-tables-notes/): Too often notes are long walls of uninterrupted text. Break up the text by using tables to arrange information in a more coherent way to communicate better. - [Converting Azure VM Disks to Managed Disks](https://petri.com/converting-azure-vm-disks-managed-disks/): This post shares a simple example of how to convert an Azure virtual machine from a storage account to using Managed Disks. - [Office 365 Adoption Content Pack for Power BI Coming Soon](https://petri.com/office-365-powerbi-content-pack/): Microsoft's new Office 365 Adoption content pack for Power BI makes new information and graphs available to tenant administrators - [Microsoft Shares Interesting Secure Azure Network Design](https://petri.com/microsoft-shares-interesting-secure-azure-network-design/): Microsoft has shared very interesting design and JSON templates for a secure n-tier application DMZ network architecture in Azure. - [Azure Autoscaling with VMSS and Managed Disks, Part 2: Deployment](https://petri.com/azure-autoscaling-vmss-managed-disks-part-2-deployment/): Russell Smith shows you how to deploy VMs in a Virtual Machine Scale Set with autoscaling enabled and a load... - [Driving Adoption for Office 365, Part 2](https://petri.com/driving-adoption-office-365-part-2/): Office 365 is an incredibly powerful Cloud platform build on four strong pillars: collaboration, mobile, intelligent and trust. Although these... - [Extend the Native Capabilities of DSC with the Script Resource](https://petri.com/extend-native-capabilities-dsc-script-resource/): Many server configuration settings can be set using native Desired State Configuration (DSC) resources. Learn how to do more with... - [Microsoft Finalizes Creators Update, Version for China’s Government](https://petri.com/microsoft-finalizes-creators-update-version-chinas-government/): Microsoft has built a version of Windows 10 for the Chinese government that does not contain 'backdoors'; the company is... - [Microsoft’s Flawed Plan to Auto-Generate Office 365 Groups for Managers](https://petri.com/microsoft-auto-generate-office-365-groups/): Microsoft plans to auto-generate Office 365 Groups for managers with between 2 and 20 direct reports starting April 13, 2017. The plan has many flaws. - [What Is Azure AD Privileged Identity Management?](https://petri.com/azure-ad-privileged-identity-management/): Learn how Azure Active Directory Privileged Identity Management can improve tenant security. - [The 8 New Features That Have Improved User Experience in SharePoint 2016](https://petri.com/the-8-new-features-that-have-improved-user-experience-in-sharepoint-2016/): This video explains the benefits of 8 new handy features in SharePoint 2016 that improve the user experience. - [The Productivity Wars Are Heating Up; Google and Amazon Take on Microsoft](https://petri.com/productivity-wars-heating-google-amazon-take-microsoft/): Google and Amazon both have their sights set on Office 365 as they hope to tap into the lucrative productivity... - [Paul Thurrott's Short Takes: March 17](https://petri.com/paul-thurrotts-short-takes-march-17/): Because I've pilkunnussija'd and I can't stop correcting my own writing, this edition of Short Takes looks at a Surface... - [Understanding Azure Storage: Storage Types and Redundancy](https://petri.com/understanding-azure-storage-storage-types-redundancy/): Learn about the different storage services and redundancy settings in Azure Storage. - [Using a NAT Virtual Switch with Hyper-V](https://petri.com/using-nat-virtual-switch-hyper-v/): Learn why you might need a NAT virtual switch, and how to deploy one on Windows 10 Client Hyper-V or Windows Server 2016 (WS2016) Hyper-V. - [Azure Autoscaling with VMSS and Managed Disks, Part 1: Concepts](https://petri.com/azure-autoscaling-vmss-managed-disks-part-1-concepts/): Learn how Virtual Machine Scale Sets and Managed Disks make Azure Autoscale easier to work with. - [Configuring VM Networking on a Hyper-V NAT Switch](https://petri.com/configuring-vm-networking-hyper-v-nat-switch/): This post shares 3 ways to configure IPv4 address configurations in virtual machines that are connected to a NAT virtual switch on Hyper-V. - [Why Contacts Are a Problem for the Outlook Apps](https://petri.com/contacts-problem-outlook-apps/): The Outlook for iOS and Android apps are popular with users, but they have a problem managing Contacts because of the control of the OS. - [Microsoft Brings New Capabilities to HDInsight and DocumentDB](https://petri.com/microsoft-brings-new-capabilities-hdinsight-documentdb/): Microsoft is announcing new features for HDInsight and DocumentDB this week at the Strata Hadoop + World conference. - [Azure AD Connect Health General Availability](https://petri.com/azure-ad-connect-health-general-availability/): Microsoft announced the GA of Azure AD Connect Health to monitor synchronization or ADFS federation between on-premises Active Directory and the cloud. - [Create "Programmer-Style" Class-Based DSC Resources](https://petri.com/create-programmer-style-class-based-dsc-resources/): Learn how to create professional-looking class-based DSC resources in just a few easy steps. - [Controlling Data Movement Using Azure Region Pairs](https://petri.com/controlling-data-movement-using-azure-region-pairs/): This post explains where Azure will replicate your data to if you decide to enable replication or turn it on. - [Teams: Seeking a More Perfect State of Chatty Conversations](https://petri.com/teams-chat-based-workspace/): Microsoft Teams are now generally available to all Office 365 business tenants. There is much to like about the new chat-centered team workspace. - [With 50,000 Organizations Onboard, Microsoft Teams Takes Flight](https://petri.com/with-50000-organizations-onboard-microsoft-teams-takes-flight/): Microsoft Teams has reached general availability and with more than 50,000 organizations using the platform, it is off to a... - [Understanding Azure Storage: Managed Disks and Storage Accounts](https://petri.com/understanding-azure-storage-managed-disks-storage-accounts/): Learn about the different types of Azure storage account and Managed Disks. - [Driving Adoption for Office 365, Part 1](https://petri.com/driving-adoption-office-365-part-1/): Office 365 is an incredibly powerful Cloud platform built on four strong pillars: collaboration, mobile, intelligent, and trust. Although these... - [Azure Stack TP3, Road Map, and Licensing Announced](https://petri.com/azure-stack-tp3-road-map-licensing-announced/): This post discusses Technical Preview 3 of Azure Stack, the GA roadmap, new features, and how Microsoft will license or bill for their private cloud. - [Deploying Managed Disks with New Azure VMs](https://petri.com/deploying-managed-disks-new-azure-vms/): This post explains the recent changes that allow you to deploy Azure virtual machines with Managed Disks instead of storage account disks. - [Leveraging OneNote: An Outlook Task-Based Project Dashboard](https://petri.com/leveraging-onenote-outlook-task-based-project-dashboard/): Stay on top of your projects by building a dashboard then give it extra power with Outlook tasks. Never again will the details get the best of you. - [SharePoint Podcast Episode #329 -- Well-Known and Irritating to One and All](https://petri.com/sharepoint-podcast-episode-329-well-known-irritating-one/): In this episode Shane and Todd talk about how to move SharePoint Online files with PowerShell, two factor auth, and new features for OneDrive and O365. - [The Anatomy of a Privilege Escalation Attack](https://petri.com/anatomy-privilege-escalation-attack/): Learn how an attacker can move laterally across a network to get access to a domain controller. - [Using Azure Backup Instant Recovery with Azure VMs](https://petri.com/using-azure-backup-instant-recovery-azure-vms/): Learn how to restore one or a few files from an Azure virtual machine backup without restoring the entire virtual... - [Paul Thurrott's Short Takes: March 10](https://petri.com/paul-thurrotts-short-takes-march-10-2/): Because Project Olympus hasn't yet fallen, this edition of Short Takes looks at a Wikileaks tech leak, Microsoft's ARM server... - [Google’s Jamboard Will Cost $4999 Plus $600 Yearly Maintenance Fee](https://petri.com/googles-jamboard-will-cost-4999-plus-600-yearly-maintenance-fee/): Google's Jamboard will arrive in May for $4999 but the company is requiring that you pay an annual maintenance fee... - [AvePoint Introduces Backup for Office 365 Groups (Well, Outlook Groups)](https://petri.com/avepoint-backup-office-365-groups/): AvePoint is the first ISV to introduce a backup product that can deal with Office 365 Groups. Well, at least they can deal with Outlook Groups. - [The SharePoint Permissions Struggles in Office 365 Groups](https://petri.com/sharepoint-permissions-struggles-office-365-groups/): Since the integration of the modern SharePoint Team Site with Office 365 Groups, there has been a call within the... - [Google Continues To Push Forward In The Enterprise Space](https://petri.com/google-continues-push-forward-enterprise-space/): Google is pushing its cloud agenda forward this week and is overhauling its support structure and offering new incentives. - [Microsoft Commits to Bringing ARM to the Data Centers](https://petri.com/microsoft-commits-bringing-arm-data-centers/): Microsoft is bringing Windows Server to ARM-powered devices with the help of Qualcomm; this is Microsoft's second big commitment to... - [Keys to Ensuring Availability in a Hybrid Cloud Environment](https://petri.com/keys-ensuring-availability-hybrid-cloud-environment/): Ensuring the availability of hybrid cloud resources has different challenges than implementing on-premises HADR implementations. Check out the primary factors... - [Visual Studio 2017 Is Not Supported on All Versions of Windows 10](https://petri.com/visual-studio-2017-not-supported-versions-windows-10/): If you are planning on installing Visual Studio 2017 on Windows 10, it's important to know which versions are supported... - [Visual Studio 2017, Now Available for Download](https://petri.com/visual-studio-2017-now-available-download/): The latest version of Microsoft’s development platform is now available to download. - [Delve Relaunches with Intelligent Search](https://petri.com/delve-relaunches-intelligent-search/): Delve is Search for Office 365. In the past, it's been handicapped by poor user behavior. Now Office Graph is used to apply some extra intelligence. - [How Can I Encrypt Generation 1 Hyper-V VMs?](https://petri.com/can-encrypt-generation-1-hyper-v-vms/): In this post I'll explain the function of Key Storage Drive, a way to enable BitLocker encryption in the guest OS of a WS2016 Hyper-V Generation 1 VM. - [How to Avoid an AWS-Style Outage in Azure](https://petri.com/avoid-aws-style-outage-azure/): This post will explain how you can make your Azure services disaster and fault tolerant, following the news of how AWS crashed many businesses recently. - [What Are Azure Managed Disks?](https://petri.com/azure-managed-disks/): Learn about how new Managed Disks in Azure make storage management easier. - [Diversify Your Cloud](https://petri.com/diversify-your-cloud/): Outages are inevitable and while the 'cloud' offers many advantages, it is vulnerable to the same issues as on-premises environments. - [Paul Thurrott's Short Takes: March 3](https://petri.com/paul-thurrotts-short-takes-march-3/): Because Windows phone is still dead, this edition of Short Takes examines Microsoft's charitable contributions, a new LinkedIn strategy, security... - [IBM Patents Email Autoreply and Then Backs Down](https://petri.com/ibm-patents-email-autoreply/): The U.S. Patent Office granted IBM a patent on email autoreply. Which is silly, because the patent could never be upheld. - [Deploy Hyper-V Management from Azure](https://petri.com/deploy-hyper-v-management-azure/): This post shares step-by-step instructions for deploying Azure Server Management tools to allow cloud-based management of on-premises WS2016 Hyper-V hosts. - [FastTrack Network Analysis for Office 365](https://petri.com/fasttrack-network-analysis-for-office-365/): FastTrack Network Analysis is a tool provided by Microsoft FastTrack Team that allows tenant administrators to perform a deep analysis... - [Office 365 License Management Made Easy with Azure AD Groups](https://petri.com/office-365-license-management-azuread-groups/): Microsoft launched a preview feature to allow Office 365 tenants manage their licenses using Azure AD groups. It's a good solution for many tenants. - [Exchange 2007 Hits The End-Of-Life Buffers On April 11](https://petri.com/exchange-2007-hits-end-life/): Exchange 2007 reaches end of lifetime on April 11, 2017. This version brought us PowerShell and log shipping for the first time, so it was an important step - [DSC Configuration Data Layout Tips and Tricks](https://petri.com/dsc-configuration-data-layout-tips-tricks/): Learn how to make your PowerShell DSC configurations and configuration data easier to read and maintain with these tips and... - [Why Outlook for iOS Sometimes Downloads Mail Slower Than You Expect](https://petri.com/outlook-ios-synchronizes-exchange/): Outlook for iOS synchronizes with Exchange mailboxes differently to the way that Mobile Outlook on Windows 10 Mobile does. - [Introduction to Azure VM Managed Disks](https://petri.com/introduction-azure-vm-managed-disks/): This post will describe what Managed Disks are, what they offer, and why you would use them with your Azure virtual machines. - [Using BitLocker with Hyper-V Key Storage Drive](https://petri.com/using-bitlocker-hyper-v-key-storage-drive/): This is a step-by-step set of instructions to enable and configure BitLocker inside of a WS2016 Hyper-V Generation 1 virtual machine with Key Storage Drive. - [Using On-Premises Azure Backup Instant File Recovery](https://petri.com/using-premises-azure-backup-instant-file-recovery/): This post will show you how to do a restore using the January 2017 (or later) MARS agent for Azure Backup, using Instant File Recovery. - [Add a Network Interface to an Azure VM](https://petri.com/add-network-interface-azure-vm/): In this article, I show you how to add an additional network interface to an Azure VM that's already configured... - [Your First Web Part with ReactJS and the SharePoint Framework](https://petri.com/first-web-part-reactjs-sharepoint-framework/): Learn to create a simple client web part using ReactJS and the SharePoint Framework. - [SharePoint Podcast Episode #328 -- Hello Kitty Lunchbox](https://petri.com/sharepoint-podcast-episode-328-hello-kitty-lunchbox/): This week contrary to the show title Shane and Todd talk about lots of news around SharePoint Online and OneDrive for Business. Then some PNP PowerShell. - [Monitoring & Troubleshooting Azure JSON Deployments](https://petri.com/monitoring-troubleshooting-azure-json-deployments/): This step-by-step post will show you how to monitor a current Azure JSON template deployment, and how to troubleshoot faults if they happen. - [Doing More with PowerShell Verbose Messages](https://petri.com/doing-more-with-powershell-verbose-messages/): Here are some ideas on how you might want to start using Write-Verbose. - [Azure Backup Instant File Recovery](https://petri.com/azure-backup-instant-file-recovery/): Read how Azure Backup Instant File Recovery enables faster restores from hybrid/online and Azure VM backups, and you can test files before restoring. - [Paul Thurrott's Short Takes: February 24](https://petri.com/paul-thurrotts-short-takes-february-24/): Because tech bloggers invented the entire concept of fake news, this edition of Short Takes looks at a bunch of... - [SharePoint Podcast Episode #327 -- Daily Grind of the Common Man](https://petri.com/sharepoint-podcast-episode-327-daily-grind-common-man/): In this SharePoint Podcast Shane and Todd talk about Passwords with PowerShell, new web parts for SharePoint Online, O365 security, and treasure hunting. - [Hello, Petri. Meet Your New Community Magnate](https://petri.com/hello-petri-meet-your-new-community-magnate/): Magnate: A person of rank, power, influence, or distinction often in a specified area; that's quite a title to try... - [Mary Jo Foley Joins BWW Media Group As The Chief Community Magnate](https://petri.com/mary-jo-foley-joins-bww-media-group-chief-community-magnate/): Mary Jo Foley is joining BWW Media Group to help us lead a new community of technologists; we will be... - [IT Is Hard, Takes Grit … and IT’s All About Amazing People](https://petri.com/it-is-hard-takes-grit-and-its-all-about-amazing-people/): Great work in IT is made possible by real people, with real talent, and with an ever-present grit. And today... - [How Exchange Online Protection Dynamic Delivery Works Inside Office 365](https://petri.com/atp-dynamic-delivery-works/): Microsoft has upgraded Advanced Threat Prootection for EOP to enable dynamic delivery for Safe Attachments. This speeds up delivery of messages to users. - [What Is Antimalware Scan Interface (AMSI) in Windows 10?](https://petri.com/antimalware-scan-interface-amsi-windows-10/): Learn about the Antimalware Scan Interface in Windows 10 and Windows Server 2016. - [Microsoft Opens Two New Azure Regions, Kubernetes Reaches General Availability](https://petri.com/microsoft-opens-two-new-azure-regions-kubernetes-reaches-general-availability/): Microsoft is turning on two new data centers in South Korea and for Kubernetes fans, that service is now generally... - [Outlook.com and Exchange Online: Two Services and a Common Infrastructure](https://petri.com/outlook-com-exchange-online/): Outlook.com and Exchange Online share a common Office 365 infrastructure. The two services are very close. Here's how Microsoft made the change. - [Manage On-Premises Hyper-V from Azure](https://petri.com/manage-premises-hyper-v-azure/): This post will explain how to use Azure instead of RSAT on Windows 10 to manage Windows Server 2016 Hyper-V, a solution too for Windows 7 & Mac users. - [Auditing Improvements in Windows Server 2016](https://petri.com/auditing-improvements-windows-server-2016/): Learn about improvements to security auditing in Windows Server 2016 and Windows 10. - [How to Encrypt an Azure Virtual Machine](https://petri.com/encrypt-azure-virtual-machine/): In this article, I'll show you to encrypt an Azure virtual machine. - [Paul Thurrott's Short Takes: February 17](https://petri.com/paul-thurrotts-short-takes-february-17/): Because Microsoft Ireland is the coolest place in the world to work, this edition of Short Takes looks at a... - [Understanding Windows 10 Enterprise Licensing](https://petri.com/understanding-windows-10-enterprise-licensing/): Discover how Windows 10 Enterprise is licensed. - [Secure Azure AD Using Identity Protection](https://petri.com/secure-azure-ad-using-identity-protection/): Learn how Azure Active Directory Identity Protection can help secure cloud identities. - [SharePoint Podcast Episode #326 - Be the Boss of Your MOSS](https://petri.com/sharepoint-podcast-episode-326-boss-moss/): In this episode, Shane and Todd talk about the best intranets and why SharePoint owns the list. Then online updates and PowerShell. Check it out. - [Microsoft Gets Excited About Third-Party Extensions for Teams](https://petri.com/microsoft-excited-about-teams/): Microsoft has announced new Bots and deep link capabilities for Teams and that they are enabling Teams for all tenants. - [Microsoft Delays February Patch Tuesday To March](https://petri.com/microsoft-delays-february-patch-tuesday-march/): Microsoft has chosen to delay the February Patch Tuesday release until March due to an issue found late in the... - [Microsoft Teams in the Real World](https://petri.com/microsoft-teams-real-world/): Microsoft Teams is a powerful collaboration tool within the Office 365 platform. This article describes two business scenarios for using... - [Managing Usernames and Passwords with PowerShell for SharePoint Online](https://petri.com/managing-usernames-passwords-powershell-sharepoint-online/): Shane Young shares the bad, the good, and the best ways to manage your accounts when it comes to PowerShell,... - [Microsoft’s Build Conference Tickets Now On-Sale](https://petri.com/microsofts-build-conference-tickets-now-sale/): Microsoft's Build conference tickets are now on-sale, but if you plan to attend, you need to act quickly as they... - [Lurking Challenges for Teams and Planner](https://petri.com/lurking-challenges-teams-planner/): Teams and Planner are great Office 365 applications, but they have some aspects that Microsoft needs to address if the applications are to succeed. - [Amazon Takes on Skype For Business With Chime But It Won’t Come Cheap](https://petri.com/amazon-takes-skype-business-chime-wont-come-cheap/): Amazon has announced a new chat service called Chime that will take on Skype for Business but the high price... - [Updating Windows Server 2016 Hyper-V Integration Components](https://petri.com/updating-windows-server-2016-hyper-v-integration-components/): Microsoft changed how integration components are upgraded in Windows guest OS virtual machines running on Windows Server 2016. Learn how in this post. - [Azure Monitor: Creating Alerts](https://petri.com/azure-monitor-creating-alerts/): Learn how to create an alert in Azure Monitor. - [Microsoft’s New Tools Make Surface Devices Better Suited For The Enterprise](https://petri.com/microsofts-new-tools-make-surface-devices-better-suited-for-the-enterprise/): Microsoft is introducing a new set of tools that will give IT admins more control over Surface hardware, including the... - [Microsoft Increases Office 365 Security With Three New Tools](https://petri.com/microsoft-increases-office-365-security-with-new-security-core-threat-intelligence-and-data-governance/): Microsoft is introducing three new security features for Office 365 that the company hopes will make the product indispensable in... - [Azure SQL Database Threat Detection Reaches General Availability in April](https://petri.com/azure-sql-database-threat-detection-reaches-general-availability-in-april-draft/): Microsoft has announced that Azure SQL Advanced Threat Protection will reach general availability in April of 2017. - [Windows Server 2016: DFS-R vs. Storage Replica](https://petri.com/windows-server-2016-dfs-r-vs-storage-replica/): What is the difference between Dfs-R and Storage Replica in Windows Server 2016? - [Paul Thurrott's Short Takes: February 10](https://petri.com/paul-thurrotts-short-takes-february-10/): Because the irony is so thick I could cut it with a knife, this edition of Short Takes looks at... - [Create a Virtual Machine in the Azure Cloud](https://petri.com/create-virtual-machine-azure-cloud/): Quickly provision your first virtual machine in the Azure cloud. - [Visual Studio 2017 Arrives On March 7](https://petri.com/visual-studio-2017-arrives-march-7/): Microsoft has announced that Visual Studio 2017 will arrive on March 7th and it will be accompanied with a two-day... - [Amazon Continues To Lead Cloud Market Share, More than Microsoft and Google Combined](https://petri.com/amazon-continues-lead-cloud-market-share-microsoft-google-combined/): For the fourth quarter of 2016, Amazon continued to dominate the cloud market by having more market share than Microsoft... - [SharePoint Podcast Episode #325](https://petri.com/sharepoint-podcast-episode-325/): In this SharePoint show, Todd and Shane dive into OneDrive for Business syncing with SharePoint, SMAT, and FindTime before getting lost on TV. - [Office 365 Secure Score Analyzes Tenant Security](https://petri.com/office-365-secure-score/): The Secure Score service allows Office 365 administrators to analyze the security of their tenant against a set of benchmarks established by Microsoft. - [How to Remove the 3 Main Roadblocks to SharePoint Adoption](https://petri.com/how-to-remove-the-3-main-roadblocks-to-sharepoint-adoption/): In this short video, discover the 3 most common roadblocks and learn how to remove them so that you can... - [Azure Monitor: Creating Metrics](https://petri.com/azure-monitor-creating-metrics/): Find out how to define metrics in Azure Monitor. - [Microsoft To Provide Patent Protection For Azure Customers](https://petri.com/microsoft-provide-patent-protection-azure-customers/): Microsoft is now offering up its patent portfolio to Azure customers to help protect them against IP litigation; 10,000 Microsoft... - [Top 5 Trends in Azure Hybrid Cloud Management](https://petri.com/top-5-trends-azure-hybrid-cloud-management/): As you begin to implement your organization’s 2017 tech strategy, here are the top five most interesting things that are... - [Office 365 Halts Workload-Specific eDiscovery](https://petri.com/office-365-content-searches-ediscovery/): Microsoft will stop Office 365 tenants creating new workload-specific searches from July 2017. The direction is to use Office 365 content searches instead. - [Microsoft Cuts Prices on Azure Virtual Machines and Blob Storage Up To 51%](https://petri.com/microsoft-cuts-prices-azure-virtual-machines-blob-storage-51/): Microsoft has announced additional price cuts for its Azure service that lowers the cost by up to 51% for some... - [What Are the New File Types in Windows Server 2016 Hyper-V VMs?](https://petri.com/new-file-types-windows-server-2016-hyper-v-vms/): This post will explain the new file formats of virtual machines running on Windows Server 2016 Hyper-V. - [What Is Microsoft Advanced Threat Analytics?](https://petri.com/microsoft-advanced-threat-analytics/): Russell Smith explains what Microsoft's Advanced Threat Analytics (ATA) is and how it can help keep your systems secure. - [Windows Cloud Will Be Upgradeable](https://petri.com/windows-cloud-will-upgradeable/): Microsoft's upcoming Windows Cloud OS will be upgradeable to Windows 10 Pro based on documentation found in a build of... - [Office 365 Drops Site Mailboxes. What Should You Do Next?](https://petri.com/office-365-drops-site-mailboxes/): Office 365 will stop supporting site mailboxes soon. The question is then what to do? Use shared mailboxes, Office 365 Groups or what? - [Deploying JSON Templates Using the Azure Portal](https://petri.com/deploying-json-templates-using-azure-portal/): Get step-by-step instructions on how to upload a JSON template to the Azure Portal and deploy the new template using the GUI experience. - [Paul Thurrott's Short Takes: February 3](https://petri.com/paul-thurrotts-short-takes-february-3/): Because there's a nude jogger terrorizing the Microsoft campus, this edition of Short Takes looks at basically anything and everything... - [Azure Monitor: Logs and Saving Queries](https://petri.com/azure-monitor-logs-saving-queries/): In this article, you'll learn how to view and filter activity and diagnostic logs in Azure Monitor and save your... - [Why Free Windows 10 Upgrades in CSP Is Big News](https://petri.com/free-windows-10-upgrades-csp-big-news/): Subscribers to Windows 10 Enterprise E3 now will get access to perpetual licensing for Windows 10 Professional. Find out why this is such a big deal. - [Map Azure Templates Using ARMVIZ](https://petri.com/map-azure-templates-using-armviz/): Learn how to visualize Azure ARM templates using an online tool called ARMVIZ. - [Google’s Cloud Platform Pushes Further Into Azure Territory](https://petri.com/googles-cloud-platform-pushes-further-into-azure-territory/): Google is moving further into Microsoft's Azure territory with new SQL features for the enterprise. - [How Background Office 365 Processes Cause Confusion](https://petri.com/office-365-processes-cause-confusion/): Office 365 background processes sometime reveal too much to end users. Like strange user names as document owners or odd system accounts in audit events. - [SharePoint Podcast Episode #324 -- My Good Sweatpants](https://petri.com/sharepoint-podcast-episode-324-good-sweatpants/): In this SharePoint Podcast MVPs Shane Young and Todd Klindt discuss using PowerShell to manage O365 domain, WMF 5.1, StaffHub, and FastTrack. - [iPhone 7 Powers Apple to Another Blockbuster Quarter](https://petri.com/iphone-7-powers-apple-another-blockbuster-quarter/): Forget the naysayers: Apple has delivered another blockbuster quarter on the back of its most successful iPhone launch ever. - [Leveraging OneNote: Getting Familiar with Outlook Tasks](https://petri.com/leveraging-onenote-getting-familiar-outlook-tasks/): OneNote is a great note taking tool, but it also works with Outlook Tasks to set reminders and delegate work. Keep your projects on track with tasks. - [Microsoft Joins Suit Against Immigration Ban](https://petri.com/microsoft-joins-suit-immigration-ban/): Microsoft has joined a Washington State lawsuit against a U. S. presidential Executive Order on immigration. The ban is unconstitutional. - [Using the Office 365 Connector Incoming WebHook to Post Service Health Information](https://petri.com/office-365-connector-incoming-webhook/): The Incoming WebHook connector for Office 365 can be used to transmit information from many different sources to Groups or Teams, with a little PowerShell. - [Deploy a Remote Desktop Services Farm in Azure](https://petri.com/deploy-remote-desktop-services-farm-azure/): Learn how to quickly deploy a Remote Desktop Services (RDS) farm in Microsoft Azure. - [Microsoft’s Heading Down The Windows RT Path With Windows Cloud](https://petri.com/microsofts-heading-windows-rt-path-windows-cloud/): Microsoft's upcoming Windows Cloud OS appears to follow the same path as Windows RT but will this SKU succeed the... - [Microsoft Adds DHCP Tools to RSAT for Windows 10](https://petri.com/microsoft-adds-dhcp-tools-rsat-windows-10/): Install the RTM version of the Remote Server Administration Tools for Windows 10. - [Windows 10 Cloud SKU Shows Up In Latest Insider Build](https://petri.com/windows-10-cloud-sku-shows-latest-insider-builds/): Microsoft appears to be working on a new SKU for Windows called Cloud and early signs of its arrival have... - [How to Reset Default Security ACLs in Windows](https://petri.com/reset-default-security-acls-windows/): Learn how to reset Windows Server security to default settings. - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (January 2017)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-5/): Because there's nothing quite like the bitter taste of Starbucks coffee, this edition of Short focuses largely on Microsoft's quarterly... - [Using Virtual Desktops in Windows 10](https://petri.com/using-virtual-desktops-windows-10/): Use virtual desktops in Windows 10 to improve productivity. - [Microsoft Adds Another Billion to Commercial Cloud Revenues](https://petri.com/microsoft-cloud-grows-again/): Microsoft's FY17 Q2 results chart another step to achieving a $20 billion run rate in commercial cloud products. Office 365 shows more growth. - [Microsoft Beats Estimates For Q2 With Revenue of $24.1 billion](https://petri.com/microsoft-beats-estimates-q2-revenue-24-1-billion/): Microsoft has released its second quarter earnings (first quarter calendar) with revenue of $24. 1 billion GAAP, and $26. 1... - [Microsoft’s Cloud Shell Looks To Modernize Windows](https://petri.com/microsofts-cloud-shell-looks-to-modernize-windows/): Microsoft is working on a new shell for Windows that is internally being called Cloud Shell that looks to modernize... - [OWA Search Now Supports Office 365 Groups](https://petri.com/owa-search-supports-office-365-groups/): Microsoft has updated the OWA client to integrate searches of content stored in Office 365 Groups along with user mailbox data. - [Creating JSON Templates From Azure Resource Groups](https://petri.com/creating-json-templates-azure-resource-groups/): This post provides step-by-step instructions on how to export Azure Resource Manager (ARM) templates from an existing resource group deployment. - [Add a Taskpad to a Custom MMC](https://petri.com/add-taskpad-custom-mmc/): Learn how to create a new taskpad view in a Microsoft management console (MMC). - [Dell Takes On Surface Hub With 55in and 86in Displays](https://petri.com/dell-takes-surface-hub-55in-86in-displays/): Dell has released two new displays that are set to challenge the Surface Hub but there are a few notable... - [Microsoft Wins Another Victory in Federal Email Case](https://petri.com/microsoft-wins-another-victory-federal-email-case/): A federal appeals court refused to reconsider a previous decision in which the U. S. DOJ was prevented from forcing... - [ Microsoft’s Adding New Features To OneDrive For Business](https://petri.com/microsofts-adding-new-features-onedrive-business/): Microsoft is updating OneDrive for Business with several new features and is also adding a stand-alone Mac application. - [Microsoft Expands In Germany, Remains In The UK](https://petri.com/microsoft-expands-germany-remains-uk/): Microsoft is expanding its Office 365 presence in Germany while also saying that the company is committed to the UK... - [SharePoint Podcast Episode #323 -- Brownies from California](https://petri.com/sharepoint-podcast-episode-323-brownies-california/): The title sounds good so the show must be. Today the guys talk about SharePoint Online Conditional Access, PowerShell, and more. Check it out. - [Microsoft Mounts an Attack on Chromebooks in Education](https://petri.com/microsoft-mounts-attack-chromebooks-education/): Microsoft today announced an initiative that will push back against Chromebooks in education. It involves a new version of Intune... - [New Office 365 Admin Center Takes Over](https://petri.com/new-office-365-admin-center/): The Office 365 Admin Center has received a face lift and the new version is deprecated from January 31, 2017. Does the new admin console any better? - [Azure Security Center Adds Support for Windows Server 2016](https://petri.com/azure-security-center-adds-support-windows-server-2016/): Microsoft adds support for Windows Server 2016 virtual machines (VMs) to its centralized solution for monitoring the security of Azure... - [Outlook Client Updates Stall the Focused Inbox](https://petri.com/outlook-updates-stall-focused-inbox/): Microsoft released information about the client updates required to support the Focused Inbox feature inside Office 365. - [Apple Sues Qualcomm for $1 Billion](https://petri.com/apple-sues-qualcomm-1-billion/): Piggybacking on U. S. Federal Trade Commission complaint, Apple sued Qualcomm late Friday for $1 billion. - [What Is Active Directory Federation Services?](https://petri.com/active-directory-federation-services/): In this Ask the Admin, learn how ADFS can be used for sharing identity information between business partners. - [Samsung Explains the Galaxy Note 7 Debacle](https://petri.com/samsung-explains-galaxy-note-7-debacle/): In a press conference on Monday, Samsung finally explained its Galaxy Note 7 disaster. As expected, the underlying cause was... - [Microsoft Expected To Layoff Additional Employees On Monday](https://petri.com/microsoft-expected-layoff-additional-employees-monday/): On Monday, Microsoft is expected to layoff around 700 employees but these cuts are not related to the recent LinkedIn... - [Paul Thurrott's Short Takes: January 20](https://petri.com/paul-thurrotts-short-takes-january-20/): Because I will never tire of the Galaxy Note 7 jokes, this edition of Short Takes looks at Microsoft's Windows... - [Deploying a JSON Template in Azure Using a Parameters File](https://petri.com/deploying-json-template-azure-using-parameters-file/): This post will show you how to deploy an JSON template to Azure using PowerShell and a parameters JSON file. - [How to Start a Threaded Conversation in Slack](https://petri.com/start-threaded-conversation-slack/): Learn how to start a threaded conversation in Slack. - [Apple and Audible Amend Audiobook Deal to Appease EU Regulators](https://petri.com/apple-audible-amend-audiobook-deal-appease-eu-regulators/): The European Commission announced today that Apple and Audible have ended an exclusive audiobook deal in order to avoid antitrust... - [Microsoft Expands CSP Program, Offers ‘Free’ Windows 10 Upgrades To Windows 7/8.1 Devices](https://petri.com/microsoft-expands-csp-program-offers-free-windows-10-upgrades-windows-78-1-devices/): Microsoft is expanding its CSP program to make it easier to upgrade Windows 7 and 8. 1 machines by offering... - [Microsoft’s Newly Acquired LinkedIn Overhauls Its Platform](https://petri.com/microsofts-newly-acquired-linkedin-overhauls-platform/): Microsoft has overhauled its LinkedIn platform to make it easier to find and locate content as well as making messaging... - [Getting Started with the Azure Security Center](https://petri.com/getting-started-azure-security-center/): In today's Ask the Admin, Russell Smith shows you how to get started with the Azure Security Center. - [Microsoft Finally Adds an Undo Send Feature to OWA](https://petri.com/undo-send-owa/): OWA (in Office 365) now boasts an Undo Send feature that allows users to recall an outbound message for up to 30 seconds. - [Learning React JS in the SharePoint Framework](https://petri.com/learning-react-js-sharepoint-framework/): With the release of SharePoint Framework RC0, developers should begin to look more closely at client wed parts and React JS. - [Deploying Multiple Resources Using an Azure JSON File](https://petri.com/deploying-multiple-resources-using-azure-json-file/): Learn how to deploy multiple resources in a fairly simple example of an Azure Resource Manager JSON file. - [SharePoint Podcast Episode #322: The Ten Best Ways to Listen to Todd Klindt's Podcast](https://petri.com/sharepoint-podcast-episode-322-ten-best-ways-listen-todd-klindts-podcast/): In this show the guys cover new Microsoft Flow Services, Office Web Apps now support Azure, CMD is forever and Shane calls dibs on his organs. - [U.S. Charges Qualcomm with Antitrust Violations](https://petri.com/u-s-charges-qualcomm-antitrust-violations/): Qualcomm was charged with antitrust violations by the U. S. Federal Trade Commission this week. Did Apple complain about a... - [Chrome Makes SharePoint Look Insecure](https://petri.com/chrome-makes-sharepoint-look-insecure/): The latest version of the Chrome browser made some SharePoint Online sites look as if they were insecure because a SHA-1 cert is in the certificate chain. - [Learn the Most Useful Windows 10 Keyboard Shortcuts](https://petri.com/learn-useful-windows-10-keyboard-shortcuts/): Navigate Windows 10 more efficiently with keyboard shortcuts. - [Microsoft’s Project Osaka Is A Collaborative Tables Tool](https://petri.com/microsofts-new-project-osaka-collaborative-tables-tool/): Microsoft is working on a new tool that will make it easier to collaborate on large sets of data and... - [How to Connect Existing Office 365 Groups with a Microsoft Team](https://petri.com/connect-existing-office-365-groups-microsoft-team/): In this how-to article I show you how easy it is to connect an existing Office 365 Group to a... - [Office 365 Meets Its SLA But Fails Elsewhere](https://petri.com/office-365-meets-sla-fails-elsewhere/): Find out why Microsoft's Office 365 uptime ratings aren't necessarily providing a complete picture of Office 365 reliability. - [SUSE Linux Makes Its Way To Windows 10](https://petri.com/suse-linux-makes-way-windows-10/): If you are a developer and are using the Windows Subsystem for Linux, you have a new tool at your... - [Microsoft Acquires Maluuba; Adds New Technology to its AI Portfolio](https://petri.com/microsoft-acquires-maluuba-adds-news-technology-ai-portfolio/): Microsoft has announced today that they have acquired Maluuba, a deep learning company focused on natural language understanding. - [Importing Complex XML into PowerShell](https://petri.com/importing-complex-xml-powershell/): Jeff Hicks wraps up his series on XML and PowerShell by walking you through the process of importing complex XML... - [Building a Simple Azure JSON File](https://petri.com/building-simple-azure-json-file/): This step-by-step post will show how to get started with Azure JSON deployments by building a simple JSON file from scratch using the free tool, VS Code. - [Paul Thurrott's Short Takes: January 13](https://petri.com/paul-thurrotts-short-takes-january-13/): Because the end is listless, this edition of Short Takes looks at a bizarre Microsoft lawsuit, Microsoft's privacy ah-ha moment,... - [Microsoft StaffHub – Another Use for Office 365 Groups](https://petri.com/microsoft-staffhub-use-office-365-groups/): Microsoft StaffHub is an Office 365 application to allow managers to organize the work schedule of teams. The new app is based on Office 365 Groups. - [Microsoft’s StaffHub Comes To Office 365](https://petri.com/microsofts-staffhub-comes-office-365/): Microsoft has announced a new tool to make it easier to manage a schedule called Staff Hubs and it is... - [Microsoft Aims To Use Bluetooth To Auto Lock Your PC If You Walk Away](https://petri.com/microsoft-aims-use-bluetooth-auto-lock-pc-walk-away/): Microsoft is testing new ways to secure your PC, including auto locking your device if you walk away from your... - [Azure AD: Set Up Self-Service Password Reset](https://petri.com/azure-ad-set-self-service-password-reset/): Learn how to configure and test password reset policy for cloud-only users in Azure Active Directory. - [Importing More Data into PowerShell](https://petri.com/importing-data-powershell/): In the seventh installment in this series, Jeff demonstrates how to properly import XML data into PowerShell. - [New Word Editor Feature Proves its Worth](https://petri.com/word-editor-office-365/): The new Editor feature in Word provides a intelligent way to improve the conciseness and accuracy of writing. It's only available in Office 365 Pro Plus. - [Introduction to Windows Information Protection](https://petri.com/introduction-windows-information-protection/): Learn how Windows Information Protection in Windows 10 can help prevent data loss. - [Microsoft Teams: The Trend Is Positive But Not Perfect](https://petri.com/microsofts-teams-trend-positive-not-perfect/): Microsoft's Teams application is resonating well with its users and the general consensus is that this is a good application... - [Sponsored: Everything You Need to Know About Microsoft Nano Server](https://petri.com/sponsored-everything-you-need-to-know-about-microsoft-nano-server/): Aidan Finn and Mike Resseler discuss features and functionality available in Microsoft Nano Server. - [Windows Server 2016: Apply Filters on DNS Queries](https://petri.com/windows-server-2016-apply-filters-dns-queries/): Learn how to block DNS queries to malicious domains using DNS Policies in Windows Server 2016. - [Microsoft’s Next Windows 10 Update Will Increase Transparency, Privacy](https://petri.com/microsofts-next-windows-10-update-will-increase-transparency-privacy/): Microsoft has created a new online dashboard that gives you more control over the data the company has collected and... - [Using VS Code to Edit Azure JSON Templates](https://petri.com/using-vs-code-edit-azure-json-templates/): This post will explain how to set up and configure the free VS Code from Microsoft to edit Azure JSON template files, including code snippet functionality. - [XML Data and PowerShell](https://petri.com/xml-data-and-powershell/): In the sixth installment in this series, you will learn how to bring XML files into PowerShell if you used... - [Unifying Data Loss Prevention across Office 365](https://petri.com/unifying-data-loss-prevention-across-office-365/): Office 365 includes Unified Data Loss Prevention (DLP) policies to protect sensitive content contained in Exchange, SharePoint, and OneDrive. - [Windows 10 Creators Update Arrives In April, Hardware Set For Refresh](https://petri.com/windows-10-creators-update-arrives-april-hardware-set-refresh/): Microsoft is gearing up to release the Creators update this spring and it may arrive with new hardware as the... - [How to Set Up Windows Hello for Business](https://petri.com/set-windows-hello-business/): Learn how to set up Windows Hello for Business using Microsoft Intune. - [SharePoint Podcast Episode #321: Not Again](https://petri.com/sharepoint-podcast-episode-321-not/): This episode Shane dives into installing SharePoint 2013 with all of the BI features on Azure in SouthEast Asia. Then he celebrates Festivus. - [Using PowerShell to Locate Ownerless Office 365 Groups](https://petri.com/powershell-ownerless-office-365-groups/): Use PowerShell to locate Office 365 Groups that have no owners. It's easy to do and demonstrates the usefulness of PowerShell. - [Paul Thurrott's Short Takes: CES Special Edition](https://petri.com/paul-thurrotts-short-takes-ces-special-edition/): Because what happens at CES never stays in Vegas, this edition of Short Takes (mostly) focuses on the Consumer Electronics... - [Dear SharePoint Online Content Types & Hub: What’s Going on with You?](https://petri.com/dear-sharepoint-online-content-types-hub-whats-going/): SharePoint content types and the content type hub have been around for many years. Unfortunately, there hasn't been an update... - [Creating Custom XML from .NET and PowerShell](https://petri.com/creating-custom-xml-net-powershell/): The fifth installment of this series demonstrates another technique to assemble an XML document from scratch using the . NET... - [Understanding the Structure of an Azure JSON File](https://petri.com/understanding-structure-azure-json-file/): This post will explain the basic structure and syntax of a JSON file, to help you get started with automated and repeatable deployments in Microsoft Azure. - [Creating More Custom XML with PowerShell](https://petri.com/creating-custom-xml-powershell/): In the fourth installment of this series on working with XML in PowerShell, you will learn how to assemble an... - [Windows 10 Tip: Verify Your Identity](https://petri.com/windows-10-tip-verify-identity/): In this article, I'll show you how to verify your identity in Windows 10 to gain the full benefits of... - [Getting Started with PowerShell for SharePoint Online and Office 365](https://petri.com/getting-started-powershell-sharepoint-online-office-365/): Learn how to install and configure PowerShell for SharePoint Online and Office365. With everything installed then you can connect to run your first cmdlets. - [Replacing the Deprecated Azure RemoteApp](https://petri.com/replacing-deprecated-azure-remoteapp/): This post explains your alternatives to the soon-to-be-dead Azure RemoteApp, including options from Microsoft and Citrix. - [Fiat Chrysler Brings Android to the Car Dashboard](https://petri.com/fiat-chrysler-brings-android-car-dashboard/): Fiat Chrysler announced today that it has partnered with Google to bring Android to its car dashboards. The move appears... - [Windows 10 Gains 14% Desktop Market Share in 2016, Edge Continues to Struggle](https://petri.com/windows-10-gains-14-desktop-market-share-2016-edge-continues-struggle/): Microsoft's Windows 10 operating system saw healthy growth in 2016 but its browser, Edge, is struggling to find a home... - [Calendar Sharing Becomes Much Easier for Office 365 Users](https://petri.com/easier-calendar-sharing-office-365/): Microsoft is making it easier for Office 365 users to share their calendars with users in other Office 365 tenants and Outlook.com. - [Enterprise Agenda: Ransomware Threat Continues to Grow](https://petri.com/enterprise-agenda-ransomware-threat-continues-grow/): Ransomware will continue to grow in popularity in 2017 and taking a look back at the past two years, you... - [Paul Thurrott's Short Takes: December 30 2016](https://petri.com/paul-thurrotts-short-takes-december-30-2/): Because it's the end of the year as we know it, this edition of Short Takes focuses on Microsoft, the... - [Cloud & Hyper-V Predictions for 2017](https://petri.com/cloud-hyper-v-predictions-2017/): It's time to make predictions on what I think will happen in the world of Hyper-V and cloud computing, as well as review last year's forecast. - [SharePoint Podcast Episode #320: The Ransomware Christmas Special](https://petri.com/sharepoint-podcast-episode-320-ransomware-christmas-special/): This episode is pure fun. Nothing to make your brain hurt but more just to make you laugh while keeping you up-to-date on the plight of evil doers. - [Skype for Business Comes to Volvo Cars](https://petri.com/skype-business-comes-volvo-cars/): Volvo Cars announced today that it will be the first automaker to integrate Microsoft's Skype for Business into its vehicles. - [Petri Year In Review: Windows 10, Surface Hubs and Popular Deep Dives](https://petri.com/petri-year-review-windows-10-surface-hubs-popular-deep-dives/): As 2016 comes to an end, one of my favorite things to do is to take a look at all... - [Creating Custom XML in PowerShell](https://petri.com/creating-custom-xml-in-powershell/): Sometimes, you have to take matters into your own hands to create the exact XML format that you need. Learn... - [Microsoft To Provide Additional Windows Update Installation Options With Creators Update](https://petri.com/microsoft-provide-additional-windows-update-installation-options-creators-update/): Microsoft will release a new feature with the Creators update next year that will allow a user to defer updates... - [Microsoft Intune: Create an MDM Policy](https://petri.com/microsoft-intune-create-mdm-policy/): Learn how to create and deploy a MDM policy in Microsoft Intune - [Aidan's IT Pro Highlights of 2016](https://petri.com/pro-highlights-2016/): In this post I share my IT pro highlights of 2016, from a world of Microsoft news, changes, and happenings. - [Microsoft Loses ‘Strategic’ Android Partner As Cyanogen Shuts Down](https://petri.com/microsoft-loses-strategic-android-partner-cyanogen-shuts/): Cyanogen has announced that it is ending its operations and seeing as they are a strategic partner with Microsoft, this... - [SharePoint Podcast Episode #319](https://petri.com/sharepoint-podcast-episode-319/): Todd Klindt and Shane Young give your weekly updates on SharePoint DSC, Calendar.Help, Onedrive, updates, Star Wars, and More. Very random, very fun. - [Paul Thurrott's Short Takes: December 23 2016](https://petri.com/paul-thurrotts-short-takes-december-23-2/): Because it's beginning to snark a lot like Christmas, this edition of Short Takes focuses on a series of headline... - [Microsoft Intune: Windows 10 Device Enrollment](https://petri.com/microsoft-intune-windows-10-device-enrollment/): Learn how to set up Windows 10 Device Enrollment in Microsoft Intune. - [Converting PowerShell to XML](https://petri.com/converting-powershell-to-xml/): See a demonstration of different ways you can take results from a PowerShell expression or command and turn them into... - [SharePoint Podcast Episode #318](https://petri.com/sharepoint-podcast-episode-318/): Check out Shane and Todd talking about SharePoint and other Microsoft technologies with a good sprinkling of random topics and banter in their weekly show. - [Learn to Work with SharePoint PowerShell Objects and Scripts](https://petri.com/learn-work-sharepoint-powershell-objects-scripts/): This article shows you one of those complicated SharePoint PowerShell scripts and then explains what all of the pieces do so you can learn to write your own - [Microsoft Lands $927 Million Pentagon Contract](https://petri.com/microsoft-lands-927-million-pentagon-contract/): Microsoft has landed a lucrative contract with the Pentagon to the tune of nearly a billion dollars to provide technical... - [Exchange Online Protection's Ongoing Battle Against Malware](https://petri.com/exchange-online-protection-battle-malware/): The folks running Exchange Online Protection are in an ongoing battle against spammers, scammers, and other attackers. Will EOP succeed? - [Microsoft’s Finalizing Creators Update, Redstone 3 Development is Around the Corner](https://petri.com/microsofts-finalizing-creators-update-redstone-3-development-around-corner/): Microsoft is winding down development of Windows 10 Redstone 2 in January which means the engineering efforts will shift to... - [The New Easy Way to Backup Azure Virtual Machines](https://petri.com/new-easy-way-backup-azure-virtual-machines/): This post shows the new Azure Backup experience for Azure virtual machines, driven from the settings of each virtual machine. - [Sponsored: Automated Permissions Management: Turn a Mountain into a Molehill](https://petri.com/sponsored-automated-permissions-management-turn-mountain-molehill/): Learn how to effectively and efficiently manage access to your organization's data. - [How Office 365 Collects and Reports Audit Data](https://petri.com/office-365-audit-data/): Office 365 collects a lot of audit data from different applications running across the service. But how can you access and use that data? - [Paul Thurrott's Short Takes: December 16](https://petri.com/paul-thurrotts-short-takes-december-16/): Because 3 degrees is a terrible temperature in both Fahrenheit and Celsius, this edition of Short Takes focuses this week's... - [Deploy Domain Controllers as Azure Virtual Machines](https://petri.com/deploy-domain-controllers-azure-virtual-machines/): This "how to" post will walk you, step-by-step, through the creation of a domain controller using an virtual machine in an Azure virtual network. - [Delegate a Domain to Azure DNS](https://petri.com/delegate-domain-azure-dns/): Learn how to delegate a domain name that you own to Azure DNS. - [Shane's SharePoint Watercooler News](https://petri.com/shanes-sharepoint-watercooler-news/): Shane's quick hitter update on news you might have missed and his two cents on how the news applies to you and your work. - [Sponsored: Introduction to Docker Images on Windows Server](https://petri.com/sponsored-introduction-docker-images-windows-server/): Docker Images are the transportable component of containers and provide a template that describes what each container looks like. There... - [Azure Site Recovery Adds Support for WS2016](https://petri.com/azure-site-recovery-adds-support-ws2016/): Read about the support that Azure Site Recovery (ASR) introduced for Hyper-V on Windows Server 2016 (WS2016) and the current limitations of this support. - [Office 365 Mailbox Quotas Swelling to 100 GB](https://petri.com/exchange-online-mailbox-quotas-swelling/): Microsoft is increasing mailbox quotas for Exchange Online to 100 GB, but only if you have the Office 365 E3 or E5 plans. Stay calm and fill that mailbox. - [Cisco Is Shutting Down Its Cloud](https://petri.com/cisco-shutting-cloud/): Joining HPE with Helion, Cisco is shutting down its cloud service that it has invested $1 billion into known as... - [Azure Virtual Network Peering Using PowerShell](https://petri.com/azure-virtual-network-peering-using-powershell/): Find out how to link two Azure virtual networks using VNet Peering. - [Cloud-Based Password Management Might Be Right for You](https://petri.com/cloud-based-password-management-might-right/): It is almost impossible to keep track of all of the websites and systems we use in our daily lives;... - [Windows 2016 Support (Again!) Is Key Element in Quarterly Exchange Updates](https://petri.com/exchange-2016-windows-2016-redux/): Microsoft fixed the Windows 2016 bug that caused problems for Exchange 2016 DAG member servers. Fix is in Exchange 2016 CU4. - [Install Windows Server DHCP, Configure Scopes, and Authorize in AD](https://petri.com/install-windows-server-dhcp-configure-scopes-authorize-ad/): Learn how to install and configure a Windows DHCP Server using PowerShell. - [Are Containers the Future of the Cloud?](https://petri.com/containers-future-cloud/): In this opinion post I wonder if containers are the ideal solution for developing in the cloud, offering the best of IaaS and PaaS. - [Customize Nano Server Using Nano Server Image Builder](https://petri.com/customize-nano-server-using-nano-server-image-builder/): Customize Nano Server images using a free tool from Microsoft. - [Microsoft’s Surface Hub Is Here For the Long Haul](https://petri.com/microsofts-surface-hub-long-haul/): Microsoft's Surface Hub is here to stay, the product is selling well with the average order size being 50 units;... - [Bad Cookies Spell Trouble for Office 365 Admin Center](https://petri.com/bad-cookies-office-365-admin-center/): It's not good when the Office 365 Admin Center displays an HTTP 400 error when displaying a web page. Most likely the problem is caused by a corrupt cookie. - [Paul Thurrott's Short Takes: December 9](https://petri.com/paul-thurrotts-short-takes-december-9/): Because I can still hear Marc Benioff screaming, this edition of Short Takes focuses on Microsoft's LinkedIn acquisition, a new... - [PowerShell and XML Fundamentals](https://petri.com/powershell-and-xml-fundamentals/): Learn some basic concepts and commands for using XML with PowerShell. - [My OneNote Wishlist](https://petri.com/my-onenote-wishlist/): OneNote has evolved as a product and seems to have stopped receiving new features. This is my feature wishlist the Office team should announce for OneNote. - [Initialize and Format a Disk in Windows Using Disk Management](https://petri.com/initialize-format-disk-windows-using-disk-management/): Initialize and format a disk using Disk Management. - [Sponsored: Securing Windows Containers with Hyper-V](https://petri.com/sponsored-securing-windows-containers-hyper-v/): A malicious user could break out of a container if they uncover a design fault in the implementation of containers... - [Microsoft Reboots Its Mobile Strategy With Cellular PCs](https://petri.com/microsoft-reboots-mobile-strategy-cellular-pcs/): Microsoft is about to reboot its mobile strategy, again, but this time they have a new arsenal of features that... - [Microsoft Wants You to Use the Outlook Brand Correctly (but OWA is still OWA and Outlook's the fat client)](https://petri.com/rebranding-outlook/): Microsoft wants you to use Outlook as the brand name for a family of clients. However, OWA means OWA and Outlook is the fat desktop client. - [Microsoft Is Bringing Windows 10 To ARM, x86 Apps Included](https://petri.com/microsoft-bringing-windows-10-arm-x86-apps-included/): Microsoft has announced a strategic shift for how it will bring Windows 10 to mobile devices; x86 emulation on ARM... - [Microsoft Details Event Line Up For 2017, Build Heads To Seattle](https://petri.com/microsoft-details-event-line-2017-build-heads-seattle/): Microsoft is making big changes to its conferences for 2017 with Build heading to Seattle and Envision being combined with... - [Enterprise Agenda: Planning for the Year Ahead](https://petri.com/enterprise-agenda-planning-year-ahead/): It's time to break out the spreadsheets and documentation as it is planning season; with a few simple steps, you... - [Best Practices for Domain Controller VMs in Azure](https://petri.com/best-practices-domain-controller-vms-azure/): This post explains the best practices, support policies and recommendations for deploying Active Direcotory Domain Controllers using Azure virtual machines. - [PowerShell 101 for SharePoint Friends](https://petri.com/powershell-101-sharepoint-friends/): If you use SharePoint or any Microsoft product, then you need to know and love PowerShell. Here I will help you with from a SharePoint PowerShell angle. - [Version 2 of the Azure Active Directory PowerShell Module is Generally Available – But be Careful](https://petri.com/version2-azure-active-directory-powershell-module/): Microsoft announced the general availability of the Azure AD PowerShell module. V2 means that scripts will have to be updated for use inside Office 365. - [Microsoft Details New Enterprise Features Coming To Windows 10](https://petri.com/microsoft-details-new-enterprise-features-coming-windows-10/): Microsoft has announced several new features coming to Windows 10 this spring that are targeted at the enterprise with the... - [Microsoft Acquisition of LinkedIn is Cleared by Regulators](https://petri.com/microsoft-acquisition-linkedin-cleared-regulators/): As expected, Microsoft has cleared the final regulatory approval needed to complete its $26. 2 billion acquisition of LinkedIn. - [Control Virtual Machines Sizes That Azure Admins Can Deploy](https://petri.com/control-virtual-machines-sizes-azure-admins-can-deploy/): This post will show you how to limit which Azure virtual machine specs and sizes can be deployed to a subscription or resource group using ARM policy. - [Leveraging OneNote: Mastering Outlines and Lists](https://petri.com/leveraging-onenote-mastering-outlines-lists/): OneNote 2016 is a complex program with many features. Many of the features which make working with outlines and lists are hidden. Find and use them today! - [HPE Turns The Ship Toward Hybrid Waters](https://petri.com/hpe-turns-ship-toward-hybrid-waters/): Twelve months ago, HPE was a different organization. Today, the company has spun-off several of its assets and streamlined its... - [Configure a DNS Zone Using Azure DNS](https://petri.com/configure-dns-zone-using-azure-dns/): Learn how to set up an Azure DNS zone and add records using PowerShell. - [Safety Tips Inserted by Exchange Online Protection Make Email Safer](https://petri.com/exchange-online-protection-safety-tips/): Microsoft is rolling out safety tips in Office 365 to make users more aware of spam and phishing attacks. Exchange Online Protection inserts the tips. - [Deploy Windows 10 Using MDT and WDS, Part 3: Deploy Windows 10 from a PXE-Enabled Boot Client](https://petri.com/deploy-windows-10-using-mdt-wds-part-3-deploy-windows-10-pxe-enabled-boot-client/): Learn how to deploy Windows 10 over the network on a PXE-enabled boot client using MDT and WDS. - [Paul Thurrott's Short Takes: December 2](https://petri.com/paul-thurrotts-short-takes-december-2/): Because it's December all of a sudden and what the heck, this edition of Short Takes focuses Microsoft's LinkedIn acquisition,... - [Deploy Windows 10 Using MDT and WDS, Part 2: Create an MDT Task Sequence and Configure WDS](https://petri.com/deploy-windows-10-using-mdt-wds-part-2-install-wds-boot-pxe-client/): Customize Windows 10 deployment in MDT using a task sequence, and configure Windows Deployment Services. - [Azure Backup Adds Support for VMware](https://petri.com/azure-backup-adds-support-vmware/): Microsoft announced that Azure Backup Server (MABS) added support for ESXi 5. 5 and 6. 0 (with or without vCenter)... - [Deployment of Exchange Online Expandable Archives Paused](https://petri.com/exchange-online-expandable-archives-paused/): Exchange Online promised "bottomless" ever-expanding archive mailboxes. The deployment was limited to some Office 365 regions and is now paused. - [The Nano Server Image Builder](https://petri.com/nano-server-image-builder/): Read about how the Nano Server Image Builder makes it easier to build WS2016 Nano Server images, and deploy them to physical servers via USB. - [Sponsored: Understanding Windows Containers](https://petri.com/sponsored-understanding-windows-containers/): Learn why containers are more efficient than virtual machines, and the benefits of using Docker images with containers. - [Outlook 2016 and its Many Connections to Office 365 Groups](https://petri.com/outlook-connections-office-365-groups/): If you examine the network connections opened by Outlook 2016, you'll find many to Office 365 Groups. The connections are used for synchronization. - [Deploy Windows 10 Using MDT and WDS, Part 1: Create an MDT Deployment Share](https://petri.com/deploy-windows-10-using-mdt-wds-part-1-create-mdt-deployment-share/): Learn how to deploy the Microsoft Deployment Toolkit (MDT) and import a Windows 10 image ready for distribution over the... - [Remote Desktop to Azure VM Has Failed](https://petri.com/remote-desktop-azure-vm-failed/): This post contains a set of steps, actions, and solutions for when you cannot remote desktop into an Azure virtual machine. - [Microsoft Shares New Azure Server Specs](https://petri.com/microsoft-shares-new-azure-server-specs/): Take a look at Microsoft’s newest contribution to the Open Compute Project (OCP), which gives us a peek behind the... - [Windows 10 Anniversary Update Graduates To Current Branch For Business](https://petri.com/windows-10-anniversary-update-graduates-current-branch-business/): Microsoft has announced that its Anniversary update for Windows 10 has graduated to the Current Branch for Business. - [Sponsored: Automate Office 365 User Licensing](https://petri.com/sponsored-automate-office-365-user-licensing/): If you need to ensure that users have the correct Office 365 licenses assigned, and that licenses are automatically revoked... - [Microsoft Says It's Time To Dispel Some Cloud Myths. Do The Myths Apply to Office 365?](https://petri.com/microsoft-dispels-cloud-myths-office-365/): Microsoft says it's time to dispel the myths that circulate about cloud services. Do those myths apply to Office 365? - [Microsoft and HPE Further Relationship To Expand The Hybrid Cloud](https://petri.com/microsoft-hpe-relationship-expand-hybrid-cloud/): Microsoft and HPE have announced that they are expanding their partnership to help train and advance the deployment of Azure... - [Azure Backup Protects Against Deliberate Attacks](https://petri.com/azure-backup-protections-deliberate-attacks/): Read how Azure Backup has added new security features to protect your cloud backups from ransomware and cryptoware. - [Office 365 Achieved 99.99% Availability in Q3 2016. Does Anyone Still Care About Cloud SLAs?](https://petri.com/office-365-sla/): Microsoft reports that Office 365 attained availability of 99.99% in the third quarter of 2016 and comfortably beat its SLA target. - [Introduction to Windows Hello for Business](https://petri.com/introduction-windows-hello-business/): Russell explains what Windows Hello for Business is and how it differs from Windows Hello for consumers. - [Leveraging OneNote: Build a Project Dashboard](https://petri.com/leveraging-onenote-build-project-dashboard/): Use OneNote to build a project dashboard and stay on top of your projects. Understand the status of all the moving parts in every project at a glance. - [Paul Thurrott's Short Takes: November 23](https://petri.com/paul-thurrotts-short-takes-november-23/): Because it's a short Thanksgiving work week here in the U. S. , this edition of Short Takes focuses on... - [Microsoft Offers Concessions to EU to Win Approval of LinkedIn Acquisition](https://petri.com/microsoft-offers-concessions-eu-win-approval-linkedin-acquisition/): A report claims that Microsoft has offered to open up Outlook to rivals in order to win European Union approval... - [Microsoft Retires EMET Security Tool](https://petri.com/microsoft-retires-emet-security-tool/): Find out why Microsoft has discontinued EMET and how Windows 10 mitigates many of the threats that EMET was designed... - [Microsoft Overhauls Office 365 Roadmap – For the Better](https://petri.com/microsoft-overhauls-office-365-roadmap/): Microsoft is overhauling the Office 365 Roadmap by providing unique feature IDs for development items. - [Azure Launches New Av2-Series VMs](https://petri.com/azure-launches-new-av2-series-vms/): Microsoft launched a replacement for the A-Series VMs that is faster, more affordable, with easier to understand sizing. - [Sponsored: Delegating Access in Active Directory](https://petri.com/sponsored-delegating-access-active-directory/): Delegating access to Active Directory (AD) usually involves deciding which permissions to assign users so that they can perform a... - [Microsoft’s Push To Turn Your Phone Into A PC Arrives With Redstone 3](https://petri.com/microsofts-push-turn-phone-pc-arrives-redstone-3/): Microsoft is working on new technology that would allow ARM chips to emulate x86 which could result in a significant... - [Microsoft Launches New Files Experience for Office 365 Groups](https://petri.com/new-files-experience-office-365-groups/): Office 365 Groups has a new Files experience. It's supposed to make documents and attachments more visible to group members. - [Paul Thurrott's Short Takes: November 18](https://petri.com/paul-thurrotts-short-takes-november-18/): Because The Netherlands is perfect and you can't make me leave, this edition of Short Takes focuses on Microsoft joining... - [Microsoft’s New ‘Office 365 Hub’ Makes An Appearance in Insider Builds](https://petri.com/microsofts-new-office-365-hub-makes-appearance-insider-builds/): Microsoft has updated the Get Office app for Windows Insiders and it shows how they are transitioning the app from... - [Office 365 Snippets -- November 17, 2016](https://petri.com/office-365-snippets-november-17-2016/): Office 365 leads G Suite when it comes to deployments, why dynamic groups don't work for Teams and Planner, tenant isolation, and PowerShell is ten. - [Sponsored: Choosing an Effective AD Auditing and Reporting Tool](https://petri.com/sponsored-choosing-effective-ad-auditing-reporting-tool/): Successful, effective auditing is essential for the compliance and security of your network, but the complexity of Active Directory (AD)... - [Microsoft Connect: Visual Studio 2017, SQL Server v.Next for Windows and Linux and More](https://petri.com/microsoft-connect-visual-studio-2017-sql-server-v-next-windows-linux/): Microsoft held its Connect conference today and announced at the event are Visual Studio 2017, SQL Server v. Next for... - [Azure N-Series General Availability Starting On December 1st](https://petri.com/azure-n-series-general-available-starting-december-1st/): Microsoft has a new series of virtual machines called the N-series and they will be generally available starting on December... - [Microsoft Offers EU Concessions on LinkedIn Purchase](https://petri.com/microsoft-offers-eu-concessions-linkedin-purchase/): Facing resistance to its largest-ever corporate acquisition, Microsoft has offered concessions to the EU's antitrust agency. - [Outlook Anywhere Gets the Bullet](https://petri.com/outlook-anywhere-terminates/): Microsoft will block Outlook Anywhere (RPC over HTTP) connections to Office 365 on Oct 31 2017. MAPI over HTTP is required thereafter. Be prepared! - [Microsoft Partners with Elon Musk's OpenAI](https://petri.com/microsoft-partners-elon-musks-openai/): This week, Microsoft announced a partnership with OpenAI, the nonprofit research organization co-founded by futurist Elon Musk. The goal? Nothing... - [How To Set Up Two-Factor Authentication for a Microsoft Account](https://petri.com/set-two-factor-authentication-microsoft-account/): In today's Ask the Admin, I'll show you how to set up two-factor authentication for Microsoft Accounts which is an... - [Sponsored: Active Directory Cleanup – Removing Stale Objects](https://petri.com/sponsored-active-directory-clean-up-removing-stale-objects/): Due to the nature of the tasks Active Directory (AD) performs as an identity management solution, inactive objects are not... - [Amazon Cuts Cloud Costs Up To 25%, Adds Fuel To The Cloud Race](https://petri.com/amazon-cuts-cloud-costs-25-adds-fuel-cloud-race/): Amazon is announcing a further reduction in pricing for their EC2 platform and if history is any judge of what... - [Microsoft Is Bringing Visual Studio To The Mac](https://petri.com/microsoft-bringing-visual-studio-mac/): Microsoft has announced that they will be bringing their popular Visual Studio development platform to OS X; the announcement is... - [Paul Thurrott's Short Takes: November 11](https://petri.com/paul-thurrotts-short-takes-november-11/): Because Amsterdam may be the most wonderful place on earth, this edition of Short Takes focuses on tech industry fears... - [Customize Office 2016 Click-to-Run Installations](https://petri.com/customize-office-2016-click-run-installations/): Microsoft distributes Office 2016 to consumers and Office 365 users using Click-To-Run, a streaming and virtualization technology that’s based on... - [Merge Your Skype Name with a Microsoft Account](https://petri.com/merge-skype-name-microsoft-account/): Secure your Skype account by merging it with a Microsoft Account. - [Office 365 Snippets - November 10, 2016](https://petri.com/office-365-snippets-november-10-2016/): Office 365 news and views for the week starting November 7. Moving datacenter regions, moving data back from an archive, & moving public folders to Groups. - [Review: Microsoft’s New Top-End Surface Book Is Bigger in Every Way](https://petri.com/review-microsofts-new-top-end-surface-book-bigger-every-way/): Microsoft has a new Surface Book that has an improved GPU and more battery life; the shell of the device... - [Microsoft Azure: A First Look at Azure DNS](https://petri.com/microsoft-azure-first-look-azure-dns/): Azure DNS does give you is the ability to use Microsoft’s infrastructure for resolving name queries for your domain’s zones.... - [Understanding the technology and capabilities of Microsoft Teams](https://petri.com/understanding-microsoft-teams/): Microsoft Teams is a new application within Office 365. Now in preview and available to all enterprise tenants, it's touted as a Slack-killer. But is it? - [Sponsored: Automating User Provisioning in Active Directory](https://petri.com/sponsored-automating-user-provisioning-active-directory/): Manually setting up users in Active Directory is not only tedious, but also error prone. PowerShell alone doesn’t provide an... - [Microsoft's Servicing Of Windows Is Changing, Hopefully For The Better](https://petri.com/microsofts-servicing-windows-changing-hopefully-better/): Microsoft is changing the way it is servicing Windows with a new update model that will deliver delta upgrades but... - [Paul Thurrott's Short Takes: November 4](https://petri.com/paul-thurrotts-short-takes-november-4/): Because queso tater tots are the perfect food, this edition of Short Takes focuses on Steve Ballmer's falling out with... - [Sizing Bandwidth & Storage for Azure Site Recovery](https://petri.com/sizing-bandwidth-storage-azure-site-recovery/): Learn Microsoft’s method for calculating the storage account requirements and replication bandwidth requirements for the DR-in-the-cloud solution, Azure Site Recovery... - [Exchange 2016 to Windows 2016: No Thanks – At Least, Not for the Moment](https://petri.com/exchange-2016-says-no-to-windows-2016/): A bug has been discovered in Windows 2016 server that causes Exchange 2016 CU3 to crash. The bug seems to be in IIS but it's not. DAGs are affected. - [Office 365 Snippets – November 3, 2016](https://petri.com/office-365-snippets-3-november-2016/): Teams launched for Office 365 and might kill Slack (or not). A new Outlook for iOS . meeting scheduler. And Skype for Business improved performance. - [The Challenges Ahead For Microsoft Teams](https://petri.com/challenges-ahead-microsoft-teams/): Microsoft's new collaborative tool is finally here but the product has a few challenges ahead that will not be easy... - [Filtering Files and Folders in Azure Backup](https://petri.com/filtering-files-folders-azure-backup/): Filter out specific files, file types, and sub-folders from a back selection when using the Azure Backup MARS agent to... - [Build a WS2016 Demo/Training Lab on a Single PC](https://petri.com/build-ws2016-demotraining-lab-single-pc/): Get a walkthrough of how to build a test/demo/evaluation lab for Windows Serve 2016, including Hyper-V and failover clustering, on... - [The Battle for Cloud Supremacy: Google G Suite and Office 365](https://petri.com/battle-cloud-supremacy/): Microsoft and Google are battling for dominance in cloud application suites. The question is whether G-Suite trumps Office 365 or vice versa! - [Microsoft Unveils Teams, Its Slack Competitor](https://petri.com/microsoft-unveils-teams-slack-competitor/): Microsoft is gearing up to go head-to-head with Slack with a new product called Microsoft Teams that will be included... - [Azure AD Domain Services Reaches General Availability](https://petri.com/azure-ad-domain-services-reaches-general-availability/): Get insight into the generally available Azure Active Directory (AAD) Domain Services and the changes that have been made to... - [Microsoft to Fix Zero-Day Windows Flaw That Was Outed by Google](https://petri.com/microsoft-fix-zero-day-windows-flaw-outed-google/): Microsoft announced that it will fix a dangerous new zero-day security flaw in Windows that it says is being exploited... - [PowerShell Problem Solver: Cleaning Up Old DSC Resources](https://petri.com/powershell-problem-solver-cleaning-up-old-dsc-resources/): Learn how to use PowerShell to clean up the DSC Resources that you have installed. - [Here Comes The Google Enterprise ](https://petri.com/comes-google-enterprise/): Google is finally making a serious move into the enterprise and cloud spaces; a series of announcements over the last... - [Top 5 Reasons to Deploy System Center 2016](https://petri.com/top-5-reasons-deploy-system-center-2016/): System Center 2016 was released with Windows Server 2016. As usual, if you want to manage the new Server operating... - [Microsoft Open Sources Its Next Gen Cloud Hardware Design](https://petri.com/microsoft-open-sources-next-gen-cloud-hardware-design/): Microsoft is working on a new cloud-based server architecture and they are open-sourcing the designs so that others may contribute... - [SCARY: “Atom Bomb” Windows Security Hole said to be Unfixable](https://petri.com/atombombing-windows-security-richij-1676989/): Windows has an unfixable security flaw. That’s the frightening conclusion of this researcher, who says he can inject code—at will—into... - [Paul Thurrott's Short Takes: October 28](https://petri.com/paul-thurrotts-short-takes-october-28/): Because what happens in Vegas will dog me for the rest of my life, this edition of Short Takes focuses... - [First Steps: Docker and Containers in Windows Server 2016](https://petri.com/first-steps-docker-containers-windows-server-2016/): Find out how to deploy an image to a container in Windows Server 2016, create a new image, and upload... - [Security: The Next Big Battleground in Computing?](https://petri.com/security-next-big-battleground-computing/): Satya Nadella's recent "trust in computing" speech highlighted the need for dependable, secure, trustworthy computing. Let's look at how Microsoft... - [The Sometimes Surprising But Always Interesting Delve Results](https://petri.com/odd-delve-results/): Delve is the Office 365 search engine. Usually its results are accurate and useful but sometimes "interesting" results show up. - [The Surface Studio ‘Pro’](https://petri.com/surface-studio-pro/): Microsoft’s newest Surface is designed for the professional which means it has a price tag to match but its features... - [Microsoft Surface Studio Dials it up to 11, as Apple Weeps](https://petri.com/microsoft-surface-studio-wiondows-10-richij-1676931/): Microsoft launched its Surface Studio all-in-one desktop at the Windows 10 event yesterday. Here’s what people are saying. Just don’t... - [Installing WSUS 2016](https://petri.com/installing-wsus-2016/): Someone asked me recently on Twitter about WSUS in Windows Server 2016 and whether it "still mattered. " I think... - [Automating WSUS 2016 Installation with PowerShell](https://petri.com/automating-wsus-2016-installation-with-powershell/): Learn how to automate the process of installing Windows Software Update Services (WSUS) on a Windows Server 2016 box. - [Sponsored: Why Choose Between the Public or Private Cloud? Choose HPE Flexible Capacity to Get the Best of Both Worlds](https://petri.com/sponsored-choose-public-private-cloud-choose-hpe-flexible-capacity-get-best-worlds/): Public cloud and private cloud solutions both offer unique advantages (and limitations), and choosing the right platform for the right... - [When Technology Becomes a People Problem](https://petri.com/technology-becomes-people-problem/): Technology gets a bad rap when it doesn’t work as expected, but experience shows it’s not always the tech that’s... - [iPhone Sales Fall Again, But Apple Beats Estimates](https://petri.com/iphone-sales-fall-apple-beats-estimates/): Apple sold fewer iPhones in the previous quarter than it did a year ago, the third quarterly decline in a... - [Backing Up Files and Folders Using Azure Backup](https://petri.com/backing-files-folders-using-azure-backup/): Aidan Finn shares an online backup solution for small businesses, branch offices, and mobile workers, where Azure Backup can be... - [Microsoft Updates How Exchange Online Processes License Removals Without Warning; Chaos Ensues](https://petri.com/exchange-online-office365-license/): Microsoft changed the way that Exchange Online deals with the removal of an Office 365 license from an account and caused problems for customers. - [SharePoint App Drops on Windows 10 Mobile](https://petri.com/sharepoint-app-drops-windows-10-mobile/): The lack of a SharePoint mobile app has always been a bit of a curiosity, but now, for Windows 10... - [Microsoft To Surpass 100 Million Office 365 Users in 2017](https://petri.com/office-365-85-million-monthly-active-users/): According to their Q1 FY17 results, Microsoft's new figure for Office 365 active users is "over 85 million". That's an increase of 15 million since April. - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (October 2016)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-4/): Because it's that time of the month, this edition of Short Takes focuses largely on Microsoft's quarterly earnings: Plus I... - [Connect Two Azure Resource Manager Virtual Networks Using VNet Peering](https://petri.com/connect-two-azure-resource-manager-virtual-networks-using-vnet-peering/): Want to learn how to link two virtual networks using VNet Peering, a new feature in Microsoft Azure? Aidan Finn... - [Top 5 Reasons to Deploy Windows Server 2016](https://petri.com/top-5-reasons-deploy-windows-server-2016/): Explore the main reasons you should consider deploying the now generally available Windows Server 2016 in your network. - [Microsoft Tops Earnings With Strong Cloud Growth](https://petri.com/microsoft-tops-earnings-strong-cloud-growth/): For the end of its first quarter fiscal year, third quarter calendar year, Microsoft has reported $20. 5 billion in... - [Offline File Support Arrives in OneDrive Windows Store App](https://petri.com/offline-file-support-arrives-onedrive-windows-store-app/): Microsoft has a patchy history with offline synchronization for its OneDrive platform. The new synchronization client in Windows 10 is... - [Sponsored: Not Paying the Ransom(ware)](https://petri.com/sponsored-not-paying-ransomware/):   One of the worst nightmares for the IT professional is coming into the office in the morning and finding... - [Office 365 Snippets -- October 20, 2016](https://petri.com/office-365-snippets-october-20-2016/): The world of Office 365 featured Yammer compliance, Skype Bots, Exchange videos, a collaboration with VMware, and some password problems. - [How Can I Connect 2 Azure Virtual Networks?](https://petri.com/can-connect-2-azure-virtual-networks/): In this post I will show you how to connect two Azure virtual networks (VNets) together, extending one to another,... - [Microsoft Roadshow: Three Events In Three Weeks](https://petri.com/microsoft-roadshow-three-events-three-weeks/): Microsoft is hosting three separate events, all in New York City, during a three-week span with each event focusing on... - [Microsoft claims “Breakthrough” in Speech Recognition -- “Human Parity”](https://petri.com/microsoft-speech-recognition-richij-1676638/): Microsoft Research says it’s made a major breakthrough in converting human speech to text. Recognising continuous, conversational speech is really... - [Microsoft and SAP Deepen Ties With New Initiative](https://petri.com/microsoft-sap-deepen-ties-new-initiative/): Microsoft and SAP have announced an expansion of their partnership to bring more SAP products to Microsoft's cloud but it... - [Those Exchange Online Bottomless Archives Aren't Quite There, Yet... Except in Some Places](https://petri.com/exchange-bottomless-archives/): Microsoft says that Exchange Online provides bottomless archives to its users. Yet those archives have not been made available to all Office 365 tenants. - [Enterprise Agenda: Backing Up Office 365](https://petri.com/enterprise-agenda-backing-office-365/): On this edition of the Enterprise Agenda, we take a look at how and why you should be backing up... - [The Browser Based Enterprise](https://petri.com/browser-based-enterprise/): How software is being delivered to the enterprise is changing; the cloud is having a significant impact on both hardware... - [DoJ v Microsoft: Feds Still Want to Snoop on Irish Cloud](https://petri.com/doj-microsoft-ireland-richij-1676587/): Microsoft’s fight to keep its European customers’ data private is back in the news. The U. S. Justice Department wants... - [DOJ Appeals Microsoft's Ireland Verdict](https://petri.com/doj-appeals-microsofts-ireland-verdict/): As expected, the U. S. Department of Justice has appealed a July legal victory for Microsoft, in which the software... - [Paul Thurrott's Short Takes: October 14](https://petri.com/paul-thurrotts-short-takes-october-14/): Because my Fitbit is telling me to exact revenge, this edition of Short Takes focuses on Xbox One's third month... - [Connect Two Azure Resource Manager Virtual Networks Using VPN](https://petri.com/connect-two-azure-resource-manager-virtual-networks-using-vpn/): Aidan Finn shows you how to connect two Azure virtual networks that are in the same subscription using a VNet-to-VNet... - [Office 365 Snippets -- October 14, 2016](https://petri.com/office-365-snippets-october-13-2016/): A week after Ignite finishes, there's more Office 365 goodness to be mined from the vast collection of videos released by Microsoft. And more... - [How the Focused Inbox Replaces Clutter Inside Office 365](https://petri.com/focused-inbox-office-365/): Office 365 brought inbox automation through the Clutter feature in 2015. Now the Focused Inbox replaces Clutter because it's deemed to be more user-friendly - [Microsoft HoloLens is Now in These 8 Countries (but Still Super Spendy)](https://petri.com/microsoft-hololens-6-countries-1676535-richij/): Microsoft HoloLens is now available in six more countries. Redmond wants more businesses and developers to get going with its... - [Native USB Audio 2.0 Coming to Windows 10](https://petri.com/native-usb-audio-2-0-coming-windows-10/): In September, Microsoft announced native support for USB Audio 2. 0 out-of-the-box in Windows 10, and is available starting in... - [Leveraging OneNote: Outlook Groups Can Auto-Share Notebooks](https://petri.com/leveraging-onenote-outlook-groups-can-auto-share-notebooks/): Sharing your OneNote notebooks can be done automatically when using Outlook Groups. Keep you team connected using Groups and use email less and less. - [Office 365: How Does the New Office Tap Feature Work in Word and Outlook 2016?](https://petri.com/office-365-new-office-tap-feature-work-word-outlook-2016/): Microsoft recognizes the real power of cloud services, such as Office 365, lies not necessarily in the client apps that... - [Microsoft’s New Windows 7/8 Rollup Patches To Be Released Starting Tomorrow](https://petri.com/microsofts-new-windows-78-rollup-patches-released-starting-tomorrow/): Microsoft is making significant changes to how it updates Windows and Server products; these updates go live starting tomorrow which... - [Azure Application Gateway Web Application Firewall Preview](https://petri.com/azure-application-gateway-web-application-firewall-preview/): Find out about a new network security feature, the Web Application Firewall, for web applications that was launched in preview... - [With Problems Mounting, Samsung Halts Galaxy Note 7 Production](https://petri.com/problems-mounting-samsung-halts-galaxy-note-7-production/): Samsung can't catch a break: After issuing its biggest-ever recall for the Galaxy Note 7 smartphone, the firm this past... - [MinRole Improvements in SharePoint 2016 Feature Pack 1](https://petri.com/minrole-improvements-sharepoint-2016-feature-pack-1/): When SharePoint 2016 Feature Pack 1 (FP1) is released in November, one of the new features it will include is... - [Microsoft Windows Event Announced For October 26th](https://petri.com/microsoft-hardware-event-announced-october-26th/): Microsoft has announced a hardware event for later this month where the company is expected to show off some new... - [The Sams Report EP 59: Should Microsoft Build An Android Flagship](https://petri.com/sams-report-ep-59-microsoft-build-android-flagship/): On this episode, I cover all of the Microsoft news this week including the fixing broken updates, Band hitting the... - [Microsoft Cloud AI Tests Turing Institute -- Data Science Meets Machine Learning](https://petri.com/microsoft-cloud-ai-richij-1676433/): Microsoft CEO Satya Nadella is talking up the company’s cloud chops in artificial intelligence. Azure and Office 365 are chock-full... - [Paul Thurrott's Short Takes: October 7](https://petri.com/paul-thurrotts-short-takes-october-7/): Because I'm still sick and I'm taking this entire town down with me, this edition of Short Takes focuses on... - [Enable Modern Authentication in Exchange Online](https://petri.com/enable-modern-authentication-exchange-online/): Find out how to enable Modern Authentication in Exchange Online so that 2FA-enabled Office 365 can use Outlook 2013 or... - [Enable Multi-Factor Authentication for Office 365 Users](https://petri.com/enable-multi-factor-authentication-office-365-users/): Learn how to enable two-factor authentication on a Microsoft Account with the help of Microsoft's Authenticator mobile app. - [Azure Automation DSC Reporting](https://petri.com/azure-automation-dsc-reporting/): Russell Smith describes how to access DSC node reports in Azure Automation DSC using the management portal. - [Office 365 Snippets -- October 6, 2016](https://petri.com/office-365-snippets-october-6-2016/): Another week, more Office 365 snippets. Some news about Exchange bosses making good, a strange offer to block someone, and the Office 365 Admin Center is GA. - [What Is Multifactor Authentication and How Does It Work?](https://petri.com/multi-factor-authentication-work/): This guide will walk you through all the technology behind multifactor authentication and give examples of how to protect your organization from phishing attacks and security breaches. - [H-Series Azure Virtual Machines](https://petri.com/h-series-azure-virtual-machines/): Find out about the new H-Series Azure virtual machine, which was launched by Microsoft at the Ignite Conference in Atlanta. - [Skype Teams: Channels, Threads, Messaging And A Lot More](https://petri.com/skype-teams-channels-threads-messaging-lot/): Microsoft is working on a new collaborative tool called Skype Teams and now we are starting to learn more about... - [Improved Azure VM Networking Performance (Preview)](https://petri.com/improved-azure-vm-networking-performance-preview/): Learn how Microsoft has recently started rolling out a preview of improved networking performance for Azure virtual machines. - [Transforming Exchange Distribution Groups to Office 365 Groups](https://petri.com/transform-exchange-dl-office-365-groups/): Exchange distribution groups are popular, but Office 365 Groups are the new standard for collaboration within Microsoft's cloud platform. Here's how to convert. - [Windows Server 2016: What's in It for Small Businesses?](https://petri.com/windows-server-2016-whats-small-businesses/): Let's examine whether there are any features in Windows Server 2016 that might be worth SMEs upgrading to it. - [What's New in Azure Stack TP2](https://petri.com/whats-new-azure-stack-tp2/): Aidan Finn walks you through the second technical preview release of Azure Stack, Microsoft’s on-premises version of Azure, that was... - [Microsoft Announces "A Cloud for Global Good"](https://petri.com/microsoft-announces-cloud-global-good/): Microsoft CEO Satya Nadella and President and Chief Legal Officer Brad Smith appeared in Dublin this morning at the beginning... - [Wrapping Up Ignite: More Office 365 Snippets](https://petri.com/ignite-office-365-snippets/): The Ignite conference was packed with information about Office 365. Here's another set of snippets to keep you updated with what's happening in the cloud. - [The Sams Report EP 58: The Microsoft Pivot](https://petri.com/sams-report-ep-58-microsoft-pivot/): On this episode, I cover all of the Microsoft news this week including the big week of Ignite, the Microsoft... - [Paul Thurrott's Short Takes: September 30](https://petri.com/paul-thurrotts-short-takes-september-30/): Because I already miss Atlanta, this edition of Short Takes focuses on Salesforce and Microsoft, Microsoft's new AI-focused reorganization, Google's... - [Office 365 Groups News from Ignite](https://petri.com/office-365-groups-news-ignite/): Office 365 Groups occupy a special place in Microsoft’s collaboration strategy. Lots of information about their plans emerged at the Ignite conference. - [Office 365 at Ignite -- SharePoint, Exchange, Auditing, and More](https://petri.com/office-365-snippets-ignite/): More news and views about Office 365 from the Ignite conference in Atlanta - SharePoint, Exchange, Delve, and Office 365 Auditing - [Google's Office 365 Competitor is Rebranded as G Suite, Adds New Functionality](https://petri.com/googles-office-365-competitor-rebranded-g-suite-adds-news-functionality/): As part of a sweeping series of announcements aimed at business customers on Thursday, Google announced that it is rebranding... - [Synchronize OneDrive for Business Using the Next Generation Sync Client](https://petri.com/synchronize-onedrive-business-using-next-generation-sync-client/): Find out how to synchronize OneDrive for Business using the Next Generation Sync Client in Windows 10. - [Deploy Azure OMS Log Analytics](https://petri.com/deploy-azure-oms-log-analytics/): Aidan Finn walks you through how to deploy an Azure Log Analytics workspace so that you can prepare the foundation... - [Leveraging OneNote: Empower Your Meetings with OneNote](https://petri.com/leveraging-onenote-empower-meetings-onenote/): Meetings can be a complete waste of time. Leverage OneNote in your company to take back time and be more productive than ever in meetings. - [Yammer and Office 365 Groups Connect](https://petri.com/yammer-office-365-groups/): Yammer and Office 365 Groups take two very different approaches to collaboration. Although slow, Microsoft is finally closing the gap. - [On-Premises Deployment of Azure Log Analytics (OMS)](https://petri.com/premises-deployment-azure-log-analytics-oms/): Aidan Finn shows you how to deploy an Azure Logs Analytics, otherwise known as Operations Management Suite (OMS), agent to... - [Microsoft Expands Surface Enterprise Initiative Worldwide](https://petri.com/microsoft-expands-surface-enterprise-initiative-worldwide/): One year ago, Microsoft launched its Surface Enterprise Initiative, in which it allowed select partners to both sell and support... - [Office 365 News from Ignite, Day 1](https://petri.com/office-365-news-ignite-day1/): An exhausting first day at Ignite brought lots of Office 365 news. Surprisingly, the number of Office 365 MAU hasn’t grown, at least not publicly, Confirmation arrived that the Outlook apps now run in the Microsoft Cloud. Lots of focus on using intelligence to repel threats. MyAnalytics arrived, and Exchange 2016 CU3 embraced the Outlook REST API. - [Microsoft Azure: Set Up Billing Alerts](https://petri.com/microsoft-azure-set-billing-alerts/): Learn how to set up billing alerts in Azure to keep your cloud expenses in check. - [Windows 10 Passes 400 Million Installs](https://petri.com/windows-10-passes-400-million-installs/): Microsoft has announced Windows 10 has passed 400 million installs and while they still have a long way to go... - [Microsoft Extends Its Security Layer To Office 365](https://petri.com/microsoft-extends-security-layer-office-365/): Microsoft is turning its Office 365 platform into not only a productivity tool but also a new security layer that... - [Windows 10 Redstone 2: Edge Gets New Security Features To Combat Malicious Websites](https://petri.com/windows-10-redstone-2-edge-gets-new-security-features-combat-malicious-websites/): Microsoft will deliver a new feature for Edge with the Redstone 2 update in 2017 that will provide significant new... - [Windows Server 2016 and System Center 2016 To Arrive In October](https://petri.com/windows-server-2016-system-center-2016-arrive-october/): Microsoft has announced that the general availability of Windows Server 2016 will arrive in October and that it will include... - [Microsoft Partners with Adobe on Dynamics 365](https://petri.com/microsoft-partners-adobe-dynamics-365/): Microsoft announced today that it will make Adobe Marketing Cloud the preferred marketing service for its Dynamics 365 Enterprise offering.... - [Leveraging OneNote: An Intro to Projects](https://petri.com/leveraging-onenote-intro-projects/): Stay on top of projects with OneNote. Keep information in one place where your team can contribute and gain updates about their projects. - [Paul Thurrott's Short Takes: September 23](https://petri.com/paul-thurrotts-short-takes-september-23/): Because I'm sick and have to fly again on Sunday, this edition of Short Takes focuses on a massive Microsoft... - [The Sams Report EP 57: Hardware Is Hard](https://petri.com/sams-report-ep-57-hardware-hard/): On this episode, I cover all of the Microsoft news this week including the on-going problems with Microsoft hardware, Skype... - [Microsoft TypeScript 2.0 Language -- Ready for Prime Time in IT?](https://petri.com/microsoft-typescript-2-0-richij-1676000/): Microsoft updates TypeScript language to 2. 0. It’s an open-source superset of JavaScript, but said to be easier to use,... - [Microsoft Azure: Understanding Shared Access Signatures (SAS)](https://petri.com/microsoft-azure-understanding-shared-access-signatures-sas/): In today's Ask the Admin, Russell Smith explains how Shared Access Signatures (SAS) can be used to grant access to... - [Skype Teams Readies For Preview, Will Be Bundled With Office 365](https://petri.com/skype-teams-readies-preview-will-bundled-office-365/): Microsoft is working on a new team collaboration application called Skype Teams; how the product will be offered and its... - [Office 365 Snippets - September 22, 2016](https://petri.com/office-365-snippets-september-22-2016/): The world of Office 365 is ever-changing. This week my attention was distracted by the inability of the Admin Center to report unlicensed accounts, a Watson dump in an ActiveSync cmdlet, some interesting data about the number of Office 365 users affected by outages as revealed through an API, and more odd entries in the Audit Log. Thankfully Ignite is next week and nothing will happen. - [Surprise: Companies Who Effectively Use Big Data Make More Money](https://petri.com/surprise-companies-effectively-use-big-data-make-money/): Companies that can effectively use their data assets have a significant advantage over their competitors; Microsoft commissioned a new study... - [New Azure AD Admin Experience](https://petri.com/new-azure-ad-admin-experience/): Find out more about the recent launch of a preview Azure AD administration experience in the Azure Portal. - [Delegating Admin Access in Azure for Microsoft Partners](https://petri.com/delegating-admin-access-azure-microsoft-partners/): Aidan Finn shows you how to delegate administrative access of an Azure subscription to users in an external Azure Active... - [Microsoft Opens “Cloud Germany” with 2 New DCs -- Azure und 365 über alles](https://petri.com/microsoft-cloud-germany-azure-richij-1675923/): Microsoft’s cloud: ready for Germany. Two new data centers now open for Azure IaaS/PaaS, with Office and Dynamics SaaS coming... - [Microsoft Officially Ends Its Controversial Windows 10 Upgrade Practices](https://petri.com/microsoft-officially-ends-controversial-windows-10-upgrade-practices/): Microsoft has finally removed the 'Get Windows 10' app with an update to Windows 10 that officially closes the book... - [Updates Released for Exchange 2016 and Exchange 2013](https://petri.com/updates-released-exchange-2016-exchange-2013/): With all the focus and attention paid to Office 365, you’d be forgiven for assuming that not much happens in the world of on-premises software. Microsoft will support Exchange 2016 until 2025 and has to maintain the software through patches and updates until then. Exchange 2013 isn’t forgotten either. New cumulative updates are available for the two servers. Cue excitement all round. - [Microsoft Azure: Prevent Accidental Deletion by Locking Resources](https://petri.com/microsoft-azure-prevent-accidental-deletion-locking-resources/): In today's Ask the Admin, Russell shows you how to apply locks to Azure resources, to prevent accidental deletion or... - [Everyone Has Something to Steal](https://petri.com/everyone-something-steal/): With the increasing sophistication of hackers, and the rising black market price of sensitive data IT has a huge target... - [Microsoft's New Goal: "Solve" Cancer](https://petri.com/microsofts-new-goal-solve-cancer/): Today, Microsoft announced an audacious new goal: its researchers will attempt to "solve" cancer by treating the disease group as... - [Automated Failover of Internet Web Services to Azure](https://petri.com/automated-failover-internet-web-services-azure/): Aidan shows you how you can fail over an Internet web service from a “local” data centre to Azure, which... - [Microsoft Azure Outage -- Was it a DNS DDoS?](https://petri.com/microsoft-azure-outage-dns-richij-1675867/): Azure recently experienced a nasty outage, lasting several hours. It seems to have been centered around DNS, but had wide... - [New Azure Office 365 Regions Go Live in UK](https://petri.com/new-azure-office-365-regions-go-live-uk/): In this post, Aidan talks about the effects on administrators of the launch of the new regions for Azure and... - [The Sams Report EP 56: Surface Dreams And Redstone Hints](https://petri.com/sams-report-ep-56-surface-dreams-redstone-hints/): On this episode, I cover all of the Microsoft news this week including Surface AIO dreams, Band debacles, a new... - [Paul Thurrott's Short Takes: September 16](https://petri.com/paul-thurrotts-short-takes-september-16/): Because it's International iPhone Day today, this edition of Short Takes focuses on the iPhone 6SE (sorry, iPhone 7), ongoing... - [Leveraging OneNote: Making a Kanban system](https://petri.com/leveraging-onenote-making-kanban-system/): OneNote is a powerful tool in business for note taking. It can also be used as a Kanban board to keep work flowing fast and efficiently. - [Tony’s Office 365 Snippets -- September 15 2016](https://petri.com/tonys-office-365-snippets-september-15-2016/): Ignite is fast approaching and I have an impossible schedule at the event, so I’ll be viewing a lot of... - [Surface Complete Warranty for Education Customers is Now Available](https://petri.com/surface-complete-warranty-education-customers-now-available-u-s/): This week, Microsoft announced a new Surface Complete for Education warranty for schools and educational institutions. It's available starting today... - [In Praise of Inactivity - Why Exchange Online inactive mailboxes are so valuable](https://petri.com/in-praise-of-inactivity/): Inactive mailboxes are a valuable way for Exchange Online to preserve the content of mailboxes for compliance purposes. - [Microsoft’s Desktop App Converter Heads To The Windows Store](https://petri.com/microsofts-desktop-app-converter-heads-windows-store/): Microsoft's desktop app converter, also known as the Centennial bridge, is heading to the Windows store with the hopes that... - [Secure Standalone Windows Servers Using Security Compliance Manager](https://petri.com/secure-standalone-windows-servers-using-security-compliance-manager/): Russell Smith shows you how to use the localGPO command line tool in Security Compliance Manager (SCM) to apply security... - [Microsoft Usurps Oracle and Salesforce.com -- Inks Huge Dynamics Deal at HP Inc](https://petri.com/microsoft-dynamics-oracle-salesforce-hp-richij-1675751/): HP buys 26,500 seats of Microsoft Dynamics, displacing Salesforce and Oracle. It’s a huge deal, cementing Microsoft as the SaaS... - [Understanding Windows Server 2016 Licensing](https://petri.com/understanding-windows-server-2016-licensing/): Aidan Finn describes some of the significant changes to Windows Server licensing that are coming with Windows Server 2016, that... - [Create GPOs Using the Security Compliance Manager Tool](https://petri.com/create-gpos-using-security-compliance-manager-tool/): In today’s edition of Ask the Admin, Russell Smith will show you how to export security templates as Group Policy... - [Deploy OMS Monitoring to Azure Virtual Machines](https://petri.com/deploy-oms-monitoring-azure-virtual-machines/): In this post, Aidan will show you two ways to deploy Azure Log Analytics (OMS) monitoring to Azure virtual machine,... - [HP to Purchase Samsung Printer Business for $1 Billion](https://petri.com/hp-purchase-samsung-printer-business-1-billion/): HP Inc. announced today that it has entered into a definitive agreement to purchase Samsung's printer business in a deal... - [Data Transformations with PowerShell Classes, Part 2](https://petri.com/data-transformations-with-powershell-classes/): PowerShell teacher Jeff Hicks wraps up his series on data transformations in PowerShell using a v5 class. - [The Sams Report EP 55: Hardwaring In October, Consoles All Year Long](https://petri.com/sams-report-ep-55-hardwaring-october-consoles-year-long/): On this episode, I cover all of the Microsoft news this week including a hardware event for October, changes in... - [External Access for Office 365 Groups](https://petri.com/external-access-office-365-groups/): Microsoft has put a huge amount of emphasis on Office 365 Groups as the basis for team-based collaboration for its... - [Paul Thurrott's Short Takes: September 9](https://petri.com/paul-thurrotts-short-takes-september-9/): Because it's Apple's world and we just live in it, this edition of Short Takes focuses on the U. S.... - [Will Microsoft Launch a Surface All-In-One Desktop Next Month? Sources say...](https://petri.com/microsoft-surface-cardinal-all-in-one-richij-1675650/): Microsoft is said to be launching a new Surface, codenamed Cardinal. The new device will be a one-box desktop PC—i.... - [Using Traffic Manager in Azure Resource Manager](https://petri.com/using-traffic-manager-azure-resource-manager/): Learn how to perform geo-load balancing for deployments in different Azure regions using Traffic Manager profiles in Azure Resource Manager... - [Microsoft Azure: Using Linked ARM Templates](https://petri.com/microsoft-azure-using-linked-arm-templates/): In today's Ask the Admin, I'll explain how to use linked Azure Resource Manager (ARM) templates to facilitate complex deployment... - [Apple Announces iPhone 7, Apple Watch Series 2](https://petri.com/apple-announces-iphone-7-apple-watch-series-2/): As expected, Apple unleashed a new generation of mobile smart devices on Wednesday. The firm announced the iPhone 7 and... - [Microsoft Azure: Use Visual Studio to Deploy a Virtual Machine](https://petri.com/microsoft-azure-use-visual-studio-deploy-virtual-machine/): In today's Ask the Admin, I'll show you how to create an ARM template in Visual Studio for deploying Azure... - [Moving Legacy Archives to Office 365 Is Painful](https://petri.com/moving-legacy-archives-office-365-painful/): Migration of legacy archives like Enterprise Vault are often left as the last part of the journey from on-premises servers... - [To Compete with Slack, Microsoft Chooses Door Number Three](https://petri.com/compete-slack-microsoft-chooses-door-number-three/): As Brad noted yesterday, Microsoft will take on the Slack team collaboration solution by leveraging its in-house Skype capabilities to... - [Microsoft’s Cloud in Brexit Britain -- New Azure and Office 365 DCs for UK](https://petri.com/microsoft-cloud-azure-office-365-uk-richij-1675561/): Microsoft Azure and Office 365 hosted in the UK for the first time. Redmond just opened up three new data... - [Microsoft Is Preparing To Take On Slack With Skype Teams](https://petri.com/microsoft-preparing-take-slack-skype-teams/): Microsoft is working on a Slack competitor, internally called Skype Teams, that will be a new productivity tool for the... - [Should Azure Stack Be On Limited Hardware?](https://petri.com/azure-stack-limited-hardware/): Microsoft announced that Azure Stack (MAS) would be released in mid-2017 via a set of hardware partners on highly tested... - [Transforming Data with PowerShell Classes, Part 1](https://petri.com/transforming-data-with-powershell-classes-part-1/): PowerShell sensei Jeff Hicks continues his look at working with data in PowerShell and introduces us to classes in PowerShell v5. - [Windows 10 Market Share Reaches 23% in August, Windows 7 Remains Flat](https://petri.com/windows-10-adoption-reaches-23-august-windows-7-remains-flat/): With Microsoft ending the free upgrade for Windows 10, market share growth of the OS will likely slow but a... - [Microsoft Sees Strong Support For Legal Case Against Government Secrecy](https://petri.com/microsoft-sees-strong-support-legal-case-government-secrecy/): On Friday, over 80 technology firms, media organizations, civil liberties groups, and others filed legal briefs supporting Microsoft's challenge to... - [Windows 10 Tip: Change the System Language](https://petri.com/windows-10-tip-change-system-language/): In today's Ask the Admin, following on from a previous article on how to change the interface language for a... - [Paul Thurrott's Short Takes: September 2](https://petri.com/paul-thurrotts-short-takes-september-2/): Because Kaby Lake is a lie, this edition of Short Takes focuses on another forced Windows 10 upgrade, smartphone sales... - [The Sams Report EP 54: Redstone Turns A Little Blue](https://petri.com/sams-report-ep-54-redstone-turns-little-blue/): On this episode, I cover all of the Microsoft news this week including a couple new discoveries for Redstone 2,... - [Microsoft Adds VMware Support to System Center DPM](https://petri.com/microsoft-adds-vmware-support-system-center-dpm/): This post will discuss the recent announcement that Microsoft has added support for backing up VMware virtual machines using System... - [Dancing on the Table with PowerShell](https://petri.com/dancing-on-the-table-with-powershell/): PowerShell guru Jeff Hicks continues his exploration of working with data in PowerShell, this time with a DataTable object. - [What Is Thunderbolt 3?](https://petri.com/what-is-thunderbolt-3/): Russell explains what Thunderbolt 3 is and where USB Type-C connectors fit into the picture. As the Thunderbolt 3 cables... - [Windows 10 Enterprise E3 Now Available, E5 Coming October 1st For $14 Per User](https://petri.com/windows-10-enterprise-e3-now-available-e5-coming-october-1st/): Microsoft's new Windows 10 Enterprise E3 SKU is now available but the version most large companies are likely waiting for... - [Making Data Dance with PowerShell](https://petri.com/making-data-dance-with-powershell/): PowerShell MVP Jeff Hicks begins a series of articles demonstrating how to make the most out of data in PowerShell no matter where it comes from. - [Windows 7 not supported on New PCs -- Intel and AMD Toe the Line](https://petri.com/windows-7-not-supported-intel-amd-richij-1675391/): With new PC chips rapidly approaching, here’s a timely reminder about Windows 7 support: There isn’t any—at least not on... - [The Nano Server Debate - Yes or No?](https://petri.com/nano-server-debate-yes-no/): It is clear from Microsoft’s publicity about Windows Server 2016 that the corporation believes that the default choice for installing... - [Microsoft Flow: Create a Workflow Using a Template](https://petri.com/microsoft-flow-create-a-workflow-using-a-template/): In today's Ask the Admin, I'll show you how to sign up for Microsoft Flow and create a simple workflow that posts a tweet with a hashtag from your Twitter account to your Slack channel. - [Microsoft Brings Windows Information Protection To Mobile Office Apps on Windows](https://petri.com/microsoft-brings-windows-information-protection-mobile-office-apps-windows/): Microsoft has released new mobile Office apps for Windows that enables Windows Information Protection, a new feature that shipped with... - [Why an Office 365 Connector Generates Multiple SendAs Audit Events](https://petri.com/why-an-office-365-connector-generates-multiple-sendas-audit-events/): Office 365 Connectors allow data drawn from multiple internet sources like Twitter to be imported into Office 365. This article explains why imported tweets result in multiple SendAs events logged in the Office 365 Audit log. - [EU Orders Ireland to Recover $14.5 Billion in Unpaid Taxes From Apple](https://petri.com/eu-orders-ireland-recover-14-5-billion-unpaid-taxes-apple/): A European Union investigation has concluded that Ireland illegally taxed Apple at a rate of just 1 percent for over... - [Enterprise Agenda: The Great Migration of 2016](https://petri.com/enterprise-agenda-great-migration-2016/): In this edition of the Enterprise Agenda, it's time to start preparing for the great migration to Windows Server 2016... - [What Is Microsoft Flow?](https://petri.com/what-is-microsoft-flow/): In this post I'll provide a brief overview of IFTTT and Zapier and Microsoft's contribution to the user-friendly, user-powered workflow... - [The Sams Report EP 53: Testers Unite In The Middle Of The Night](https://petri.com/sams-report-ep-53-testers-unite-middle-night/): On this episode, I cover all of the Microsoft news this week including more issues with the Anniversary update, patches... - [Paul Thurrott's Short Takes: August 26](https://petri.com/paul-thurrotts-short-takes-august-26/): Because my Kindle broke my webcam or something, this edition of Short Takes focuses on whether Excel should be blamed... - [MS Excel’s Science SNAFUs -- Bug or User Error?](https://petri.com/excel-science-snafu-richij-1675204/): Microsoft Excel causes problems in genetic research. That’s the claim of three researchers from an Australian institute, who discovered almost... - [Filtering PowerShell with the Where Method](https://petri.com/filtering-powershell-methodically/): PowerShell expert Jeff Hicks wraps up his discussion on filtering with a look at a filtering method that is speedy and fun. - [Microsoft Delivers Another Bad Update, Breaks PowerShell with Latest Patch](https://petri.com/microsoft-delivers-another-bad-update-breaks-powershell-latest-patch/): This week, Microsoft released a new patch for Windows and the update has done more harm that good as it... - [Microsoft Targets VMware Customers with ‘Free’ Windows Server License](https://petri.com/microsofts-targets-vmware-customers-free-windows-server-license/): Microsoft has announced a new offer to VMware customers that will give them a free Windows Server license if they... - [Veeam Announces Availability Platform for the Hybrid Cloud, Office 365 Backup Tools](https://petri.com/veeam-announces-availability-platform-hybrid-cloud-office-365-backup-tools/): Veeam has announced a suite of new tools that will be coming later this year that will make it easier... - [Microsoft Windows 10 vs. EFF Privacy Voice -- Fight!](https://petri.com/microsoft-windows-10-eff-richij-1675047/): Microsoft Windows 10 comes under fire for privacy. The Electronic Frontier Foundation last week reopened the case against Redmond’s telemetry... - [DIY PST Imports Using Azure Blob Storage](https://petri.com/diy-pst-imports-using-azure-blob-storage/): The Office 365 Import Service does a good job of “bringing data home” by ingesting PST files and other data... - [Lenovo to Bundle Microsoft Productivity Apps on Android Devices](https://petri.com/lenovo-bundle-microsoft-productivity-apps-android-devices/): Microsoft and Lenovo announced an expansion of their strategic relationship: Under the terms of the deal, Lenovo will bundle Microsoft's... - [Microsoft Acquires Genee, A Smarter Way To Schedule Meetings](https://petri.com/microsoft-acquires-genee-smarter-way-schedule-meetings/): Microsoft has announced that they have acquired Genee, a smarter way to schedule meetings that uses artificial intelligence to coordinate... - [Microsoft’s New Patching Philosophy Sacrifices A Few For The Many](https://petri.com/microsofts-new-patching-philosophy-sacrifices-many/): Microsoft is making a big bet by changing how it will patch older versions of Windows with a goal of... - [Leveraging OneNote at Your Company](https://petri.com/leveraging-onenote-company/): Use OneNote to manage information, track issues, follow tickets, make project hubs and more. OneNote connects existing documents and data for your team. - [The Sams Report EP 52: Anniversary Woes](https://petri.com/sams-report-ep-52-anniversary-woes/): On this episode, I cover all of the Microsoft news this week including more builds of Redstone, Anniversary woes, the... - [Paul Thurrott's Short Takes: August 19](https://petri.com/paul-thurrotts-short-takes-august-19/): Because I'm already planning my next trip, this edition of Short Takes focuses on Windows phone market share, Microsoft's Edge... - [Microsoft Open-Sources PowerShell, on Linux -- World Turned Upside-Down](https://petri.com/microsoft-powershell-linux-richij-1675002/): Microsoft PowerShell on Linux and macOS—yes, it’s now open source. If you think the world’s gone mad, you might be... - [A First Look At PowerShell on Linux](https://petri.com/microsoft-powershell-for-everyone/): PowerShell MVP Jeff Hicks offers his insights and analysis of the big announcement that PowerShell is now an open source project. - [Microsoft Is Open-Sourcing PowerShell, Bringing It to Linux and macOS](https://petri.com/microsoft-open-sourcing-powershell-bringing-linux-os-x/): Microsoft has announced today that they will be open-sourcing PowerShell and also bringing the platform to Linux and OS X;... - [Git for Sysadmins - Using POSH-GIT](https://petri.com/git-sysadmins-using-posh-git/): Apart from the amusing name, POSH-GIT is a PowerShell module for GitHub supplied as part of Git for Windows. In... - [More PowerShell Filtering Options](https://petri.com/more-powershell-filtering-options/): PowerShell MVP and trainer Jeff Hicks continues his exploration of filtering in PowerShell and offers up more tips and tricks. - [Azure OpInsights vs. System Center Operations Manager](https://petri.com/azure-opinsights-vs-system-center-operations-manager/): In today’s Ask the Admin, I’ll compare Azure Operational Insights (OpInsights) with System Center Operations Manager (SCOM), and discover whether... - [Outlook for iOS & Android Is Dumping AWS and Heading for an All-Microsoft Infrastructure in Q3](https://petri.com/outlook-ios-android-dumping-aws-q3/): By the time Microsoft Ignite happens in September 2016, the Outlook app for iOS and Android will have an all-Microsoft... - [Huge Change to Patch Tuesday -- IT Admins are Revolting [updated]](https://petri.com/microsoft-windows-patch-tuesday-rollup-richij-1674925/): Microsoft to change how older Windows versions get patches. For better or worse, it’ll be more like the Windows 10... - [Microsoft To Change How It Updates Windows 7/8.1 and Server 2008 R2/2012 Starting In October](https://petri.com/microsoft-will-change-updates-windows-78-1-server-2008-r2-2012-starting-october/): Microsoft is making big changes to the way that it will release patches for many of its popular Windows products... - [Filtering PowerShell](https://petri.com/filtering-powershell/): PowerShell is all about working with objects. But you need to be smart about and only work what you really need. This is the purpose of filtering. - [What You Need to Know About Converting Desktop Apps to UWP](https://petri.com/need-know-converting-desktop-apps-uwp/): In today's Ask the Admin, I'll look at some of the benefits of converting Win32 desktop apps to run in... - [Microsoft Sunsets Azure RemoteApp, Recommends Citrix XenApp ‘Express’](https://petri.com/microsofts-sunsets-azure-remoteapp-recommends-citrix-xenapp-express/): Microsoft has announced that they will be sunsetting Azure RemoteApp and is recommending users switch to a product made by... - [Add a Language Pack to Change the Display Language in Windows 10](https://petri.com/add-language-pack-change-display-language-windows-10/): Russell walks through the steps to add a language pack to a Windows 10 machine. As part of the process,... - [Testing PowerShell with Pester](https://petri.com/testing-powershell-with-pester/): PowerShell expert and MVP Jeff Hicks demonstrates how you can use Pester to test your server and network configuration. - [The Sams Report EP 51: Getting Edgy With Redstone 2](https://petri.com/sams-report-ep-51-getting-edgy-golden-keys/): On this episode, I cover all of the Microsoft news this week including the first Redstone 2 build, playing with... - [Paul Thurrott's Short Takes: August 12](https://petri.com/paul-thurrotts-short-takes-august-12/): Because I can't stop interrupting Brad today, this edition of Short Takes focuses on the London police and their love... - [Preview for NVIDIA-Powered Azure VMs Begins](https://petri.com/preview-nvidia-powered-azure-vms-begins/): Microsoft has launched a preview for a new set of NVIDIA-powered virtual machines in Azure that can be used for... - [Always Encrypted Reaches General Availability in Azure SQL Database](https://petri.com/always-encrypted-reaches-general-availability-azure-sql-database/): Always Encrypted is a feature of SQL Server 2016 that Microsoft released in Azure SQL Database in June 2016. Russell... - [Microsoft Backs Down From Skylake Support Limits](https://petri.com/skylake-windows/): Back in January, Microsoft announced a stark new hardware support policy for Windows that was secretly driven by rampant reliability issues with... - [Google Buys Orbitera as It Continues to Chase Amazon and Microsoft in The Cloud Race](https://petri.com/google-buys-orbitera-continues-chase-amazon-microsoft-cloud-race/): Google is continuing to expand its infastracutre to better compete with Amazon and Microsoft; Gartner is starting to recognize the... - [Create a Self-Signed Certificate Using PowerShell](https://petri.com/create-self-signed-certificate-using-powershell/): Russell demonstrates how to use PowerShell to quickly create a self-signed certificate, which are handy to use in test scenarios... - [Microsoft Windows UEFI Secure Boot -- Insecure by Design?](https://petri.com/microsoft-windows-uefi-secure-boot-richij/): Microsoft Windows Secure Boot has a big problem. It’s no longer secure, and can’t be fixed—or so say a pair... - [Troubleshooting Azure ARM Virtual Machines](https://petri.com/troubleshooting-azure-arm-virtual-machines/): Aidan walks through how to use the built-in tools for troubleshooting faulty virtual machines in Azure: diagnose tools, activity logs,... - [Backup Options for Office 365: SharePoint and OneDrive for Business](https://petri.com/backup-options-office-365-sharepoint-onedrive-business/): In today’s Ask the Admin, I’ll look at why you might need to back up data stored in the cloud... - [New Azure IaaS Features Announced for August 2016](https://petri.com/new-azure-iaas-features-announced-august-2016/): In late July and into August 2016, Microsoft is releasing new IaaS features and making improvements for Microsoft Azure that... - [Controlling Password Replication on Read-Only Domain Controllers](https://petri.com/controlling-password-replication-read-domain-controllers/): Learn how to change which users can have their account credentials cached on read-only domain controllers (RODC). - [What is Azure Log Analytics (OMS)?](https://petri.com/azure-log-analytics-oms/): Aidan explains a bit of the history of how System Center Advisor (SCA) has evolved into Azure Log Analytics (OMS).... - [Delta Reminds Us Of The Importance Of Disaster Recovery](https://petri.com/delta-reminds-us-importance-disaster-recovery/): Delta is experencing a global outage of its computer system becuase of a power outage at its headquarters which raises... - [Office Tip: How to Extract Embedded Images from a Word Document](https://petri.com/office-tip-extract-embedded-images-word-document/): This handy Office tip demonstrates two techniques to export images from a Word document. - [The Sams Report EP 50: Redstone in 2017 and 2016](https://petri.com/sams-report-ep-50-redstone-2017-2016/): On this episode, I cover all of the Microsoft news this week including now more feature releases this year, cutting features from... - [Paul Thurrott's Short Takes: August 5](https://petri.com/paul-thurrotts-short-takes-august-5/): Because I still dream in French, this edition of Short Takes focuses on Apple's and Microsoft's new emojis, Nadella's cloud... - [Microsoft: Two Windows 10 Feature Updates Coming In 2017](https://petri.com/microsoft-two-feature-updates-coming-2017-no-2016/): Microsoft has indicated that there will be no more feature updates to WIndows 10 in 2016 and that two updates... - [Getting Started with Azure SQL Database](https://petri.com/getting-started-azure-sql-database/): Russell shows how to create your first Azure SQL Database, configure a firewall and connect to the database using Visual... - [Microsoft Cuts Windows 10 Rollback Period To 10 Days](https://petri.com/microsoft-cuts-windows-10-rollback-period-10-days/): Microsoft has quietly changed the rollback period in Windows 10 that allows you to move to revert to an older... - [Anniversary Update Turns Windows 10 Into a Dumb Terminal for Continuum](https://petri.com/anniversary-update-turns-windows-10-dumb-terminal-continuum/): In today’s Ask the Admin, I’ll look at a new feature, coming in next week’s Windows 10 Anniversary Update (AU),... - [Microsoft’s New Excel API Is A Leap Forward For The Spreadsheet Application](https://petri.com/microsofts-new-excel-api-leap-forward-spreadsheet/): Microsoft has announced the general availability of its REST API for Excel that will extend the capaiblites of the spreadsheet... - [GitHub for Windows - Branches, Pull Requests, and Conflicts](https://petri.com/github-windows-branches-pull-requests-conflicts/): In this article about GitHub for Windows, learn how to add branches to GitHub repos, create pull requests and deal... - [Microsoft's Blunder: Upgrade to Office 2016 and Lose Skype for Business](https://petri.com/microsofts-blunder-upgrade-office-2016-lose-skype-business/): For some customers that use Office 365 or Office 2013 and try to upgrade to Office 2016 apps, they may... - [Microsoft HoloLens -- Now Open for Business](https://petri.com/microsoft-hololens-business-richij/): Microsoft HoloLens is now available to all. Redmond wants more businesses and developers to get going with its augmented-reality Windows... - [Windows Store for Business](https://petri.com/windows-store-business/): This article is an overview of Windows Store for Business, which businesses can use to create their own private portals... - [Getting Started with Azure Automation Desired State Configuration](https://petri.com/getting-started-azure-automation-desired-state-configuration/): Russell shows how to create an Azure Automation account, upload and compile a DSC configuration, and on board an Azure... - [Export Azure Resource Group as a JSON Template](https://petri.com/export-azure-resource-group-json-template/): Learn how to export resource groups (RGs) as Azure Resource Manager (ARM) templates using JSON, then deploy that resource group... - [Azure ARM VMs and Availability Sets](https://petri.com/azure-arm-vms-availability-sets/): Learn about availability sets and how to deploy them with Azure Resource Manager (ARM) or Cloud Solution Provider (CSP) virtual... - [Microsoft Cuts More Features From Windows 10 Pro To Push Businesses To Enterprise Edition](https://petri.com/microsoft-cuts-features-windows-10-pro-push-businesses-enterprise-edition/): Microsoft is removing more features from Windows 10 Pro to entice more businesses to move to the monthly subscription service... - [Azure Security Center Generally Available](https://petri.com/azure-security-center-generally-available/): This article generally describes how Azure Security Center works, lists which types of virtual machines it supports, and describes two... - [Add NAS-Based Network Locations to Windows 10 for Fast Search](https://petri.com/add-nas-based-network-locations-windows-10-fast-search/): In this article, learn how to add network locations to File Explorer in Windows 10 for faster search. - [The Sams Report EP 49: A Trip To Redmond, A Final Reminder](https://petri.com/sams-report-ep-49-trip-redmond-final-reminder/): On this episode, I cover all of the Microsoft news this week including my trip to campus, layoffs, Simplo batteries,... - [Paul Thurrott's Short Takes: July 29](https://petri.com/paul-thurrotts-short-takes-july-22-2/): Because Paris, vous me manques déjà, this edition of Short Takes focuses on more Microsoft layoffs related to phone disaster,... - [Microsoft To Cut An Addition 2850 Employees](https://petri.com/microsoft-cut-addition-2850-employees/): Microsoft has announced that they will further cut their employee count by over 2000 staff by the end of fiscal... - [Configure RDS Collections Using PowerShell](https://petri.com/configure-rds-collections-using-powershell/): Learn how to configure Remote Desktop Services (RDS) collections using Windows PowerShell, including how to create, enumerate, and remove collections... - [Migrating Azure VMs to ARM/CSP using migAz](https://petri.com/migrating-azure-vms-armcsp-using-migaz/): Learn to use migAz to move Classic / Service Management / SM Azure IaaS virtual machine deployments to Azure Resource... - [Samsung Surges in Quarter Thanks to Strong Galaxy S7 Sales](https://petri.com/samsung-surges-quarter-thanks-strong-galaxy-s7-sales/): With iPhone sales falling for the second quarter in a row, one might assume that overall smartphone sales have likewise... - [Making Windows 10 RS2 a Viable Tablet and Mobile Enterprise OS](https://petri.com/making-windows-10-rs2-viable-tablet-mobile-enterprise-os/): It’s not over until the fat lady sings, and Redstone 2 (RS2), Microsoft’s next major update to Windows 10 due... - [The Best Windows Laptop for $550? Xiaomi Mi Notebook Air](https://petri.com/xiaomi-mi-notebook-air-richij/): Xiaomi Mi Notebook Air is a sleek Ultrabook for an amazing price. It also beats its Apple namesake in many... - [GA of Azure VM Migration from Classic to Resource Manager](https://petri.com/ga-azure-vm-migration-classic-resource-manager/): This post provides an overview of Microsoft's new migration service to move your Azure virtual machines and their dependencies from... - [Apple Device Sales Tumble for Second Quarter in a Row](https://petri.com/apple-device-sales-tumble-second-quarter-row/): On Tuesday, Apple announced the results of its most recent quarter, posting net income of $7. 8 billion on revenues... - [GitHub for Windows – Installation, Adding Accounts, Committing Changes, and Syncing Repos](https://petri.com/github-windows-installation-adding-accounts-committing-changes-syncing-repos/): Learn how to get started with GitHub for Windows. We'll install it, add accounts, clone a repository, commit changes and... - [Migrating Azure VMs from Classic Service Management to Resource Manager](https://petri.com/migrating-azure-vms-classic-service-management-resource-manager/): Aidan shows how to migrate your virtual machines from Azure Classic Service Managment (ASM) API to the newer Azure Resource... - [Configure Remote Desktop Services Collections in Windows Server 2012 R2](https://petri.com/configure-remote-desktop-services-collections/): Learn how to configure Remote Desktop Services collections in Windows Server 2012 R2. - [Microsoft Windows 10 Anniversary Edition -- Better for Professionals](https://petri.com/microsoft-windows-10-anniversary-edition-richij/): Microsoft Windows 10 gets its birthday build. But the Anniversary Edition isn’t just about pushing consumers to upgrade before Friday’s... - [Microsoft Ends Major Development of Windows 10 Redstone 1, Prepares for August 2nd Release](https://petri.com/microsoft-ends-major-development-redstone-1-prepares-august-2nd-release/): Microsoft has completed the Anniversary update, also known as Redstone 1 and the company is now preparing for the full... - [Verizon to Purchase Yahoo's Core Business for $4.8 Billion](https://petri.com/verizon-purchase-yahoos-core-business-4-8-billion/): According to multiple reports, Verizon Wireless will announce as soon as Monday morning that it will acquire Yahoo's core business... - [Microsoft Expands Azure Service Locations](https://petri.com/microsoft-expands-azure-service-locations/): Microsoft recently announced further expansion of the number of Azure regions (datacenter locations) and ExpressRoute (WAN) points of presence around... - [Deploy a Read Only Domain Controller](https://petri.com/deploy-read-domain-controller/): In today's Ask the Admin, I'll show you how to deploy a Windows Server 2012 R2 Read Only Domain Controller... - [Deploy Azure RemoteApp with VNET using PowerShell](https://petri.com/deploy-azure-remoteapp-vnet-using-powershell/): Aidan shows how you can speed up and automate the deployment of Azure RemoteApp, Microsoft’s managed Remote Desktop Services farm... - [The Sams Report EP 48: OneWeek Of Billions](https://petri.com/sams-report-ep-48-oneweek-billions/): On this episode, I cover all of the Microsoft news this week including hitting RTM, OneWeek, Billions, Office upgrades and... - [Paul Thurrott's Short Takes: July 22](https://petri.com/paul-thurrotts-short-takes-july-22/): Because in Paris *personne ne peut vous entendre crier*, this edition of Short Takes focuses on some important questions about... - [Azure Usage and Billing Portal Released](https://petri.com/azure-usage-billing-portal-released/): Russell provides a closer look at the recently released Azure Usage and Billing Portal. - [Microsoft’s Surface Hub Is a Hit, Demand Outstrips Supply](https://petri.com/microsofts-surface-hub-hit-demand-outstrips-supply/): Microsoft's Surface Hub, the device designed for the conference room and can cost as much as $21,999, is a hit... - [New Storage Support for Azure Site Recovery](https://petri.com/new-storage-support-azure-site-recovery/): Microsoft recently announced improvements to the storage options in the Azure Site Recovery (ASR) disaster recovery-as-a-service (DRaaS) solution in Azure.... - [France Says That Windows 10 Violates Personal Privacy Laws](https://petri.com/france-says-windows-10-violates-personal-privacy-laws/): France's CNIL, which is tasked with protecting personal data and preserving individual liberties, this week accused Microsoft of violating the... - [Attach a Data Disk to a VM in the Azure Portal](https://petri.com/attach-data-disk-vm-azure-portal/): Russell demonstrates how to create and attach a new disk to an existing virtual machine in Azure. - [Microsoft Enhances Office 365 With New SMB Bookings Platform](https://petri.com/microsoft-enhances-office-365-new-smb-bookings-platform/): Microsoft has announced new service for Office 365 called Bookings that will make it easier for SMB clients to manage... - [Using Microsoft Security Solutions Against Modern Threats](https://petri.com/using-microsoft-security-solutions-modern-threats/): Aidan provides an overview of Microsoft’s cloud-based security solutions: Advanced Threat Analytics (ATA), Microsoft Cloud App Security, Azure Rights Management... - [Need a Twitter Blue Check? Check Out the New Verification Form](https://petri.com/twitter-verification-form-blue-check-richij/): Do you want a blue check-mark for your Twitter account? Well there’s a new verification process for “popular” users. It... - [Behind The Scenes at Skype: The Troubles, Fixes And Future](https://petri.com/behind-scenes-skype-troubles-fixes-future/): The past few months have resulted in Skype becoming unstable but the team has finally come forward to explain the... - [Behind the Numbers: Microsoft Continues Its Transition to the Cloud](https://petri.com/behind-numbers-microsoft-continues-transition-cloud/): On Tuesday, Microsoft announced financial results for its fiscal fourth quarter: net income of $3. 1 billion on revenues of... - [Microsoft Reports Q4 Earnings: $22.6b In Revenue, $5.5b Net Income](https://petri.com/microsoft-reports-q4-earnings/): For the fourth quarter of Microsoft’s fiscal year, ending June 30th, the company reported revenue of $22. 6 billion non-GAAP... - [Deploy Remote Desktop Services using PowerShell](https://petri.com/deploy-remote-desktop-services-using-powershell/): Russell demonstrates how to deploy Remote Desktop Services in Windows Server 2012 R2 using PowerShell. - [Things to Do Before You Start with Azure in CSP](https://petri.com/things-start-azure-csp/): Review Aiden's steps in this article to verify that you are ready to start an Azure deployment using the Cloud... - [Installing Remote Desktop Services in Windows Server 2012 R2](https://petri.com/installing-remote-desktop-services-windows-server-2012-r2/): In today’s Ask the Admin, I’ll show you how to install RDS in Windows Server 2012 R2. In Remote Desktop... - [Microsoft’s New Stream Service Aims To Simplify The Corporate Video Experience](https://petri.com/microsofts-new-stream-service-aims-simplfythe-corporate-video-experience/): Microsoft has announced a new video sharing service for the corporate environment called Stream; the goal of the new service... - [What is Office 365 (2016)](https://petri.com/office-365-2016/): This is an overview of the most successful productivity suite of all time. Office 365 has many different offerings, see what it can offer you. - [Understanding the basics of the Azure IoT Solution](https://petri.com/understanding-azure-iot-solution/): Curious about what Azure IoT is? At Microsoft's WPC conference I had a chance to sit down with the company... - [SoftBank to Buy ARM for $32 Billion](https://petri.com/softbank-buy-arm-32-billion/): Spurred in part by a British pound that has plummeted in value since that country's "Brexit" vote, Japan's SoftBank announced... - [Introduction to Azure Automation Desired State Configuration](https://petri.com/introduction-azure-automation-desired-state-configuration/): Russell explains that Azure Automation Desired State Configuration (DSC) is comprised of Azure Automation and PowerShell DSC. - [Restore Azure VMs in the Azure Portal](https://petri.com/restore-azure-vms-azure-portal/): Aidan shows how to recover a virtual machine using the Azure Portal from a back up of your Azure Resource... - [The Sams Report EP 47: Fearless Leader, Signoffs, and Windows as a Service](https://petri.com/sams-report-ep-47-fearless-leadr-signoffs-windows-service/): On this episode, I cover all of the Microsoft news this week including the road to release, WPC announcements, Windows... - [Paul Thurrott's Short Takes: July 15](https://petri.com/paul-thurrotts-short-takes-july-15/): Because I'm traveling so much I don't even know where I am anymore, this edition of Short Takes focuses on... - [Backing Up Azure VMs in the Azure Portal](https://petri.com/backing-azure-vms-azure-portal/): Learn how to configure backup of Azure virtual machines using the Recovery Services vault in the Azure Portal. - [Google Faces New Antitrust Charges in EU](https://petri.com/google-faces-new-antitrust-charges-eu/): The European Commission this morning announced a third set of antitrust charges against Google, formally accusing the search giant with... - [What Is Azure Information Protection?](https://petri.com/azure-information-protection/): Russell Smith looks at components of Microsoft’s new Azure Information Protection service, which includes identity-driven security, encryption, information rights management,... - [Microsoft Wins Appeal, Doesn't Have To Hand Over Data Stored In Ireland](https://petri.com/microsoft-wins-appeal-data-stored-abroad-safe-us-government/): Microsoft has won an appeal that required it to turn over data stored in an Irish database; a big win... - [Microsoft Changes The Battle Plan For Azure Stack](https://petri.com/microsoft-changes-battle-plan-azure-stack/): Microsoft has announced a change in strategy for Azure Stack where they will be working with vendors to certify hardware... - [Servicing Options for Windows Server 2016 Announced](https://petri.com/current-branch-for-business-servicing-option-for-ws2016/): Microsoft announced a bunch of information about Windows Server 2016 (WS2016) at the Worldwide Partner Conference on July 12th in... - [Download an Azure VM to Hyper-V](https://petri.com/download-azure-vm-hyper-v/): Aidan provides step-by-step directions to download a virtual machine from Microsoft Azure and get it running on a local or... - [Getting Started with Office 365 Planner](https://petri.com/getting-started-office-365-planner/): Office 365 Planner has reached general availability and now it’s time to put it through its paces. I’m happy to... - [Microsoft’s Bringing A New Skype Client To Linux Users](https://petri.com/microsofts-bringing-new-skype-client-linux-users/): Microsoft is bringing a new Skype client to Linux users and they are also making it easier for users with... - [Remote Desktop Services Deployment Options in Windows Server 2012 R2](https://petri.com/remote-desktop-services-deployment-options-windows-server-2012-r2/): In this article, Russell explains how RDS Session Host deployment in Windows Server 2012 R2 differs from earlier versions of... - [How to Choose an Azure Virtual Machine](https://petri.com/choose-azure-virtual-machine/): How should your company select an Azure virtual machine? Aidan Finn lays out what the series and preset sizes really... - [Silicon Valley Darling Facebook Moves to Office 365](https://petri.com/silicon-valley-darling-facebook-moves-office-365/): Facebook is moving to Office 365, a big win for Microsoft in a region of the US that has typically... - [Microsoft’s Enterprise Windows 10 Subscription Service Will Start At $7 A Month](https://petri.com/microsofts-enterprise-windows-10-subscription-service-will-start-7-month/): Microsoft has announced at WPC that for enterprise customers, starting this fall, Windows 10 will cost $7 per month per... - [Microsoft Announces Surface as a Service](https://petri.com/microsoft-announces-surface-service/): Last month, Microsoft quietly unveiled a Surface Membership plan that allows small businesses to buy the firm's devices on a... - [PC Market Declined Almost 5 Percent in Q2 2016](https://petri.com/pc-market-declined-almost-5-percent-q2-2016/): Analysts from both Gartner and IDC reported this week that the PC market declined once again in the second quarter... - [Deploy & Configure Azure ARM Load Balancer](https://petri.com/deploy-configure-azure-arm-load-balancer/): In this post I will show you how to deploy and configure the Azure Resource Manager (ARM and CSP) network... - [Windows 10 How to Get Better Battery Life](https://petri.com/windows-10-get-better-battery-life/): If you want better battery life from Windows 10, adopt Edge as your browser after Microsoft releases the Windows 10... - [Nadella: Only the Microsoft Ecosystem Cares About the Individual and the Organization](https://petri.com/nadella-kicks-off-wpc-telling-partners-microsoft-ecosystem-cares-individual-organization/): Microsoft's WPC 2016 conference is being held this week in Toronto and the event kicked off with a keynote by... - [Manage Active Directory Groups Using PowerShell](https://petri.com/manage-active-directory-groups-using-powershell/): In this Ask the Admin, Russell Smith shows you how to create AD groups using PowerShell, how to add parameters... - [The Sams Report EP 46: The Road Ahead, Podcast Turns 1](https://petri.com/73949-2/): On this episode, I cover all of the Microsoft news this week including the road to release, Windows phone upgrade... - [Paul Thurrott's Short Takes: July 8](https://petri.com/paul-thurrotts-short-takes-july-8/): Because I still kind of miss Steve Ballmer, this edition of Short Takes focuses on the mysteries around Kevin Turner's... - [Best Practices with Azure ARM Network Security Groups](https://petri.com/best-practices-azure-arm-network-security-groups/): In this post about Azure network security group best practices, Aidan offers tips for creating, configuring, and associating network security... - [Office 365 Tip: Exchange Server Retention Policies](https://petri.com/office-365-tip-exchange-server-retention-policies/): In today’s Ask the Admin, I’ll explain how to use Retention Policies in Exchange Server, Exchange Online and Office 365.... - [Microsoft’s Bringing More Data Driven Products To Market Starting Today](https://petri.com/microsofts-bringing-data-driven-products-market-starting-today/): Microsoft is making Power BI publish to the web generally available and Power BI Embedded will reach GA on July... - [Kevin Turner Leaves Microsoft, Will Become CEO of Citadel Securities](https://petri.com/kevin-turner-leaves-microsoft-will-become-ceo-citadel-securities/): Kevin Turner's 11-year run as Chief Operating Officer at Microsoft has come to a close: Citadel Securities announced this morning... - [Back Up and Restore Azure Premium Storage VMs](https://petri.com/back-restore-azure-premium-storage-vms/): After lots of feedback, Microsoft Azure has added public preview support for backing up and restoring virtual machines that use... - [Using RemoteApp with Azure AD Domain Services](https://petri.com/using-remoteapp-azure-ad-domain-services/): Microsoft recently announced that Azure RemoteApp can be used with Azure AD Domain Services (still in preview) for domain authentication,... - [Understanding How Business IT Is Being Attacked](https://petri.com/understanding-business-attacked/): Aidan explains, using recent statistics, how the nature of attacks has changed from floppy disks and firewall probes, to a... - [Microsoft AppSource Aims to Make It Easier To Discover Business Apps](https://petri.com/microsoft-app-sources-aims-make-easier-discover-business-apps/): Microsoft AppSource solves one of the company's big problems with its developer ecosystem, discoverability; the new search engine is now... - [Microsoft Updates Skype for Business Mac Preview](https://petri.com/microsoft-updates-skype-business-mac-preview/): A new version of the Skype for Business for Mac Preview is now available, adding new contacts and presence, IM,... - [Microsoft to Bundle App-V and UE-V with Windows 10 Going Forward](https://petri.com/microsoft-bundle-app-v-ue-v-windows-10-going-forward/): Microsoft announced this week that it will take the long-awaited step of moving two key client virtualization solutions---App-V and UE-V---from... - [Enabling HTTPS for PowerShell Remoting in Windows Server 2012 R2](https://petri.com/enabling-https-powershell-remoting-windows-server-2012-r2/): In today’s Ask the Admin, I’ll kill two birds with one stone by showing you how to enable secure PowerShell... - [Getting the Most Out of Office 365: Revisiting Office 365 Groups](https://petri.com/getting-office-365-revisiting-office-365-groups/): Microsoft has been making incremental improvements to Office 365 Groups over time. Now with the addition of Planner and Skype Groups are complete. - [Microsoft Hangs Small Business Bait For Office 365, Free Skype Meetings](https://petri.com/microsoft-hangs-new-small-business-bait-office-365-free-skype-meetings/): Microsoft has announced a new Skype meetings feature today that anyone can use but the company is quietly hoping that... - [Blackberry Finally Says Goodbye to Classic Phones](https://petri.com/blackberry-finally-says-goodbye-classic-phones/): Blackberry has transitioned its devices, in turn, to touch-based Blackberry 10 and Android systems, but it has thus far always... - [Which Write Is Right For PowerShell?](https://petri.com/which-write-is-right/): PowerShell teacher Jeff Hicks explains the differences between Write-Output, Write-Host and when to use each command. - [The Sams Report EP 45: White Bands With Internal Angst, More Ads Maybe](https://petri.com/sams-report-ep-45-internal-angst-ads-maybe/): On this episode, I cover all of the Microsoft news this week including some internal musing, the company is trying... - [Paul Thurrott's Short Takes: July 1](https://petri.com/paul-thurrotts-short-takes-july-1/): Because how could it possibly be July already, this edition of Short Takes focuses on HP's new PC as a... - [Windows 10 Is Installed On Nearly 1 in 5 PCs](https://petri.com/windows-10-installed-nearly-1-5-pcs/): Windows 10 is installed on nearly one in five PCs as the market share for the operating system continues to... - [Enterprise Agenda: Finding Your Fit with Disaster Recovery](https://petri.com/enterprise-agenda-finding-fit-disaster-recovery/): Preparing for disaster recovery is worth more than gold when an outage occurs. When the recovery process acts and feels... - [Satya Nadella to Publish First Book in 2017](https://petri.com/satya-nadella-publish-first-book-2017/): Microsoft CEO Satya Nadella will publish his first book, Hit Refresh, in 2017. In doing so, he follows in the... - [Deploying and Configuring Network Security Groups in Azure ARM](https://petri.com/deploying-configuring-network-security-groups-azure-arm/): This post will show you how to use Azure Resource Manager (ARM) or a CSP subscription to deploy network security... - [PowerShell Problem Solver: Extending the Hot Fix Reporting Tool](https://petri.com/powershell-problem-solver-extending-the-hot-fix-reporting-tool/): PowerShell author Jeff Hicks continues to extend his hotfix reporting tool with additional filtering parameters and converts it to a function. - [Windows 10 Anniversary Update Arrives August 2nd, 350 Million Installs](https://petri.com/windows-10-anniversary-update-arrives-august-2nd-350-million-installs/): Microsoft has announced that Windows 10's Anniversary Update will arrive on August 2nd and will be a free update for... - [What Are Network Security Groups in Azure Resource Manager?](https://petri.com/network-security-groups-azure-resource-manager/): Network security groups (NSGs) can offer network security and policy enforcement for virtual networks in an Azure Resource Manager (ARM)... - [Windows 10 Ignoring the Hosts File for Specific Name Resolution](https://petri.com/windows-10-ignoring-hosts-file-specific-name-resolution/): Modifying the HOSTS hosts file causes your computer to look directly at the IP address specified in it. This is... - [Deploy a New Domain from a Microsoft Azure Template](https://petri.com/deploy-new-domain-microsoft-azure-template/): Learn how to quickly deploy a new virtual machine-based Active Directory domain in Azure using a JSON template in Azure... - [Current Status Episode 41: Nutanix discusses Women in Technology](https://petri.com/current-status-episode-41-nutanix-discusses-women-technology/): Join us Monday, June 27th at 9:15 pm EDT for another episode of Current Status. During this episode of Current... - [What Is Exchange Online Archiving?](https://petri.com/exchange-online-archiving/): Learn all about Exchange Online Archiving, a set of optional features that can be purchased separately from Exchange Online, which... - [Azure Enterprise State Roaming for Windows 10 Now Generally Available](https://petri.com/azure-enterprise-state-roaming-windows-10-now-generally-available/): Microsoft has announced the release of Enterprise State Roaming for Windows 10 business customers and we dive into what this... - [The Sams Report EP 44: Goodbye Surface 3, Mobile Love, and Hardware Ahoy](https://petri.com/sams-report-ep-44-goodbye-surface-3-mobile-love-hardware-ahoy/): On this episode, I cover all of the Microsoft news this week including a lot of love for mobile users,... - [Paul Thurrott's Short Takes: June 24](https://petri.com/paul-thurrotts-short-takes-june-24/): Because I said so, that's why, this edition of Short Takes focuses on whether Microsoft should rebrand itself, more changes... - [Microsoft’s New Information Protection Capabilities Brings Modern Security Protection To Your Data  ](https://petri.com/microsofts-new-information-protection-capabilities-brings-modern-security-protection-sensitive-data/): Microsoft will open up a public preview of its Azure Information Protection service next month that will bring significant data... - [Connecting Users to the Azure Cloud](https://petri.com/connecting-to-the-azure-cloud/): In this article Aidan Finn discusses the most forgotten aspect of migrating or deploying services into the cloud: Exactly how... - [PowerShell Problem Solver: An Advanced HotFix Reporting Tool](https://petri.com/powershell-problem-solver-an-advanced-hotfix-reporting-tool/): PowerShell scripter Jeff Hicks completes his HotFix reporting tool with some final advanced bells and whistles. - [Gain enhanced visibility and control with Office 365 Advanced Security Management](https://petri.com/gain-enhanced-visibility-control-office-365-advanced-security-management/): Understand how your users are using Office 365 and automate malicious activity detection using Office 365 Advanced Security Management. - [Microsoft’s Commitment To Linux Continues To Pay Azure Dividends](https://petri.com/microsofts-commitment-linux-continues-pay-dividends/): Microsoft's choice to embrace Linux inside of Azure is continuing to pay dividends as its usage expands with software made... - [An Advanced PowerShell HTML HotFix Report](https://petri.com/an-advanced-powershell-html-hotfix-report/): PowerShell expert Jeff Hicks completes his hotfix HTML report with an old-school approach. - [Getting Started with PowerShell's Get-Member](https://petri.com/getting-started-with-powershells-get-member/): Most people think they know about Get-Member. PowerShell MVP Jeff Hicks dives into this useful cmdlet everyone should know how to use. - [Creating Simple PowerShell HotFix HTML Reports](https://petri.com/simple-powershell-hotfix-html-reports/): PowerShell guru Jeff Hicks guides you through using his hotfix reporting function to create snazzy HTML reports. - [How To Migrate Machines To Azure](https://petri.com/migrate-machines-azure/): In this “how do I . . ? ” article I will explain how you can use Azure Site Recovery... - [Paul Thurrott's Short Takes: June 17](https://petri.com/paul-thurrotts-short-takes-june-17/): Because it's the end of the world and I feel fine, this edition of Short Takes focuses on the real... - [The Sams Report EP 43: E3 Hangover, Cut Features, Placeholders And Lots More](https://petri.com/sams-report-ep-43-e3-hangover-cut-features-placeholders-lots/): On this episode, I cover my own rumor report from E3 and what Microsoft announced, Scorpio, Xbox One S, fiscal... - [Working With Azure Cool Storage](https://petri.com/working-azure-cool-storage/): Microsoft recently announced the general availability of Cool Blob Storage in Azure, a new more affordable way to archive files... - [Windows Server 2012 R2: Get a list of active Remote Desktop Users](https://petri.com/windows-server-2012-r2-get-list-active-remote-desktop-users/): In today’s Ask the Admin, I’ll show you how to quickly get a list of users connected to a server... - [Microsoft’s Chrome OS Migration Guide Shows the Company Is Aware of the Google Threat](https://petri.com/microsofts-chrome-os-migration-guide-shows-company-aware-google-threat/): Microsoft has a new migration guide that will help you move from Chrome OS to Windows which shows the company is aware the threat the growing OS represents. - [PowerShell Problem Solver: Improving the Hot Fix Report](https://petri.com/powershell-problem-solver-improving-the-hot-fix-report/): Jeff Hicks continues developing his PowerShell HotFix reporting script with splatting, parameter validation and error handling. - [Microsoft’s Soliciting Feedback To Improve Insider Program For Businesses](https://petri.com/microsofts-taking-feedback-improve-insider-program-businesses/): Microsoft is soliciting businesses for feedback about its Insider program to make it more beneficial to its corporate customers. - [Move an Azure VM from Standard to Premium Storage](https://petri.com/move-azure-vm-standard-premium-storage/): In this article Aidan will show you how to migrate the data disks of an Azure virtual machine (in Azure... - [Why Is Microsoft Buying LinkedIn?](https://petri.com/microsoft-buying-linkedin/): Yesterday, Microsoft pulled the trigger on the blockbuster purchase of LinkedIn in an all-cash deal valued at an incredible $26.... - [Implementing Azure User Defined Routing](https://petri.com/implementing-azure-user-defined-routing/): In this post I will show you how to create a route table and routes, and associate that route table... - [Implementing Azure Routing Using PowerShell](https://petri.com/implementing-azure-routing-using-powershell/): In this post I will show you how use PowerShell to create a route table and routes, and associate that... - [Microsoft Is Acquiring LinkedIn for $26.2 Billion](https://petri.com/microsoft-acquiring-linkedin-26-2-billion/): Microsoft has announced this morning that it is acquiring LinkedIn for $26. 2 billion; Microsoft will acquire LinkedIn for $196... - [Paul Thurrott's Short Takes: June 10](https://petri.com/paul-thurrotts-short-takes-june-10/): Because the altitude is killig me, this edition of Short Takes focuses on a new Windows 10 site for business... - [The Sams Report EP 42: Xbox, E3, and Windows 10 shenanigans](https://petri.com/73366-2/): On this special report, I cover more about Xbox E3 plans, new build of Windows, and should Microsoft get in... - [Copy Files In Azure Using Free Tool AzCopy](https://petri.com/copy-files-in-azure-using-free-tool-azcopy/): Aidan Finn shows us how to copy files up to an Azure storage account, down from a storage account, and... - [Create an Azure RemoteApp Collection with VNET](https://petri.com/create-azure-remoteapp-collection-vnet/): Aidan Finn explains how to deploy a newer and simpler architecture where a RemoteApp collection is created on an Azure... - [Current Status Episode 40: Citrix Synergy Recap with Steve Greenberg and Joe Shonk](https://petri.com/current-status-episode-40-citrix-synergy-recap-steve-greenberg-joe-shonk/): Recently Citrix Synergy held is annual conference, and we will be discussing our thoughts from the both the customer and... - [Resolving "Namespace is already defined' Group Policy Error in Windows 10](https://petri.com/resolving-namespace-already-defined-group-policy-error-windows-10/): Learn how to resolve the "Namespace is already defined" Group Policy error in Windows 10. - [Create a GitHub Repository](https://petri.com/create-github-repository/): In today’s Ask the Admin, I’ll show you how to create a repo in GitHub that you can use with... - [Microsoft’s New F Series Azure VMs Target The Gaming Community](https://petri.com/microsofts-new-f-series-azure-vms-target-gaming-community/): Microsoft has announced a new series of VMs for Azure, called the F series, that is targeted at gamers and... - [Mobile App Stores Are Adapting to Market Changes](https://petri.com/mobile-app-stores-adapting-market-changes/): Apple's App Store and the Google Play Store have collectively created a new economic engine, but their makers have big... - [Microsoft’s Session List For Ignite Is Live, 463 Options To Choose From](https://petri.com/microsofts-session-list-for-ignite-is-live-463-options-to-choose-from/): Microsoft has released the session list for its Ignite conference and this year will have over 400 sessions to choose... - [PowerShell Problem Solver: Creating a Hot Fix Reporting Tool](https://petri.com/powershell-problem-solver-creating-a-hot-fix-report/): PowerShell scripter Jeff Hicks starts a series of articles on building a hot fix reporting tool. - [The Importance of Tools that Provide True Network Visibility](https://petri.com/importance-tools-provide-true-network-visibility/): Gain insight and transparency into your network visibility with the right tools. SolarWinds explains how its NetPath solution does the trick. - [A Primer on Special PowerShell Operators](https://petri.com/special-powershell-operators/): PowerShell trainer Jeff Hicks wraps up his look at operators with some special cases. - [What's New In Windows Server 2016 TP5: Clustering Features](https://petri.com/whats-new-windows-server-2016-tp5-clustering-features/): Learn all about new improvements to failover clustering in Windows Server 2016. - [Understanding In-Place Hold and Litigation Hold in Exchange](https://petri.com/understanding-in-place-hold-and-litigation-hold-in-exchange/): In today's Ask the Admin, Russell Smith explains the difference between an in-place hold and a litigation hold in Exchange. - [Microsoft’s Making A Serious Commitment To Apache Spark](https://petri.com/microsofts-making-serious-commitment-apache-spark/): Microsoft has announced new support for Apache Spark and is also making some of its services generally available as well. - [How Do I Customize Microsoft Azure Routing?](https://petri.com/how-do-i-customize-microsoft-azure-routing/): Learn how you can customize network routing for Azure virtual machines on, from, and to a virtual network. - [Understanding the Azure Resource Manager Load Balancer](https://petri.com/understanding-azure-resource-manager-load-balancer/): Learn how Azure Resource Manager (ARM) uses a virtual load balancer in the Azure fabric to implement NAT rules for... - [Paul Thurrott's Short Takes: June 3](https://petri.com/paul-thurrotts-short-takes-june-3/): Because even Satya Nadella isn't moving quickly enough, this edition of Short Takes focuses on a misreport about "Get Windows... - [Create an Azure Network Security Group using ARM PowerShell](https://petri.com/create-azure-network-security-group-using-arm-powershell/): Learn how to create a Network Security Group in Azure, using PowerShell Azure Resource Manager, to control inbound and outbound... - [Getting the Most Out of Office 365: Train on Teamwork](https://petri.com/getting-the-most-out-of-office-365-train-on-teamwork/): Many companies want to get the most out of their tools. To maximize how your company uses Office 365 focus on teamwork training. - [Microsoft Announces Office 365 Advanced Security Management](https://petri.com/microsoft-announces-office-365-advanced-security-management/): This week, Microsoft announced Office 365 Advanced Security Management, a set of tools that will provide organizations with better visibility... - [SQL Server 2016 Reaches General Availability](https://petri.com/sql-server-2016-reaches-general-availability/): SQL Server 2016 has reached general availability, meaning that the software is now ready for production environments. - [More PowerShell Operators](https://petri.com/more-powershell-operators/): PowerShell expert Jeff Hicks is back with more helpful tips on working with PowerShell operators. - [What’s New in Windows Server 2016 TP5 Storage?](https://petri.com/whats-new-windows-server-2016-tp5-storage/): Learn about storage feature improvements in the Windows Server 2016 Technical Preview 5. - [Expanded Partnership with Xiaomi Brings Microsoft Apps to More Android Handsets](https://petri.com/expanded-partnership-xiaomi-brings-microsoft-apps-android-handsets/): Microsoft has announced a dramatic expansion of its partnership with China-based device maker Xiaomi on Wednesday. As part of the... - [How to Install and Upgrade Azure PowerShell](https://petri.com/install-upgrade-azure-powershell/): Learn quick and easy steps for how to install and upgrade the PowerShell module for Azure and Azure Resource Manager. - [Microsoft Establishes Its Own Venture Capital Group](https://petri.com/microsoft-establishes-venture-capital-group/): In a bid to counter the Silicon Valley-centric nature of tech venture capital, Microsoft has created its own venture group.... - [Azure DevTest Labs Reaches General Availability](https://petri.com/azure-devtest-labs-reaches-general-availability/): Learn more about Microsoft's new Azure DevTest Labs service and what it has to offer to developers and sysadmins. - [Setting Application Control Policies with Microsoft's AppLocker](https://petri.com/setting-application-control-policies-microsofts-applocker/): Russell Smith shows us how best to set up application control policies in Windows using AppLocker. - [Paul Thurrott's Short Takes: May 27](https://petri.com/paul-thurrotts-short-takes-may-27/): Because Microsoft has finally killed all that was special about Nokia, this edition of Short Takes focuses on the Finnish... - [Deploy an Azure VM to an Existing Domain using an ARM Template](https://petri.com/deploy-azure-vm-existing-domain-using-arm-template/): Learn how to add a member server to an existing domain using a Microsoft Azure Resource Manager (ARM) template. - [Considering an All-Flash Storage Solution? Hewlett Packard Enterprise Technology Services Storage Consulting Can Help](https://petri.com/considering-flash-storage-solution-hewlett-packard-enterprise-technology-services-storage-consulting-can-help/): If you're considering a move to flash storage – like HPE 3PAR StoreServ Storage -- HPE Technology Services Consulting (TSC)... - [What's New in Windows Server 2016 Technical Preview 5: Networking Features](https://petri.com/whats-new-in-windows-server-2016-technical-preview-5-networking-features/): Learn all about the new networking improvements in Windows Server 2016 Technical Preview 5. - [Getting the Most Out of Office 365: Driving User Adoption](https://petri.com/getting-the-most-out-of-office-365-driving-user-adoption/): Many companies use Office 365, but many of their employees ignore the new tools. How do you train users to take advantage of everything? - [Enterprise Agenda: Best Practices for Building Your Available Datacenter](https://petri.com/enterprise-agenda-best-practices-building-available-datacenter/): Knowing the best practices of any industry can help you avoid common pitfalls and in this edition of the Enterprise... - [Creating a GPO Central Store in Windows Server 2012 R2](https://petri.com/creating-gpo-central-store-windows-server-2012-r2/): Daniel Petri shows us how to create a GPO central store in Windows Server 2012 R2 for easier management of... - [Windows 10: Stop Data Flow to Microsoft](https://petri.com/windows-10-stop-data-flow-microsoft/): Russell Smith shows us how to stop various Windows 10 apps and OS components from sending or receiving data to... - [Microsoft Awards 12 Affordable Access Initiative Grants](https://petri.com/microsoft-awards-12-affordable-access-initiative-grants/): Microsoft announced this week that has awarded 12 recipients with Affordable Access Initiative grants so that they can help bring... - [Microsoft Increases Baseline Specs Required for Windows 10 Anniversary Update](https://petri.com/microsoft-increases-baseline-specs-required-windows-10-anniversary-update/): This summer, when the Anniversary update comes out for Windows 10, Microsoft will be increasing the baseline specs for 32bit... - [Dynamics CRM 2016 Spring Wave Reaches General Availability](https://petri.com/dynamics-crm-2016-spring-wave-reaches-general-availability/): Microsoft has announced today that its Dynamics CRM 2016 spring wave has reached general availability that brings with it several... - [Introduction to PowerShell Operators](https://petri.com/introduction-powershell-operators/): Jeff Hicks provides an introductory overview into math, assignment, and comparison operators used in Windows PowerShell. - [How to Purchase Microsoft Azure for Your Business](https://petri.com/how-purchase-microsoft-azure-your-business/): Aidan Finn provides advice on choosing a Microsoft Azure billing plan, including pros and cons for enterprise agreements, direct billing,... - [Windows 10 Tip: Block Untrusted Fonts](https://petri.com/windows-10-tip-block-untrusted-fonts/): Russell Smith shows us steps on how to block processing of untrusted fonts using the Graphics Device Interface (GDI) in... - [The Sams Report EP 40: Glorious Feature Phones, Promoted Apps and Google Gafs](https://petri.com/sams-report-ep-40-glorious-feature-phones-promoted-apps-google-gafs/): On this episode, I cover the all the news that Microsoft announced this week including feature phones going bye bye,... - [Paul Thurrott's Short Takes: May 20](https://petri.com/paul-thurrotts-short-takes-may-20/): Because Google is apparently taking over the world, this edition of Short Takes focuses on Microsoft's Bing Concierge Bot, two... - [Upgrading Software in Microsoft Azure RemoteApp](https://petri.com/upgrading-software-in-microsoft-azure-remoteapp/): Learn how you can upgrade software in a Microsoft Azure RemoteApp app collection in a managed way by replacing the... - [Microsoft EMS Components: Advanced Threat Analytics](https://petri.com/microsoft-ems-components-advanced-threat-analytics/): Diego Samuilov provides an overview of the Microsoft Advanced Thread Analytics service, which is part of Microsoft's Enterprise Mobility Suite... - [Implementing a DMZ for Microsoft Azure Virtual Machines](https://petri.com/implementing-a-dmz-for-microsoft-azure-virtual-machines/): Aidan Finn provides step-by-step instructions for deploying a DMZ in Microsoft Azure using Azure virtual networks. - [Storage Tip: Understanding the Difference Between JBOD, DAS, NAS and SANs](https://petri.com/storage-tip-understanding-difference-jbod-das-nas-sans/): From a single portable USB disk to enterprise-grade Storage Area Networks (SANs), Russell Smith will explain the differences between three... - [Microsoft Closes the Book on Nokia Assets, Ending in Disaster](https://petri.com/microsoft-closes-book-nokia-acquisition-ending-disaster/): Microsoft has sold off the last remaining asset it had from the Nokia acquisition, marking an end to the disastrous... - [Understanding PowerShell Terminology](https://petri.com/powershell-terminology/): PowerShell expert Jeff Hicks provides an overview of introductory PowerShell terms to help you get acquainted with PowerShell. - [What is Azure Active Directory Enterprise State Roaming?](https://petri.com/what-is-azure-active-directory-enterprise-state-roaming/): Learn how Microsoft's Azure Active Directory Enterprise State Roaming (ESR) feature works and how it enables users to securely access their app data and settings across multiple devices. - [Microsoft and SAP Announce New Partnership, Bringing Two Giants Closer Together](https://petri.com/microsoft-sap-announce-new-partnership-bringing-two-giants-closer-together/): Microsoft and SAP have announced a new partnership that will allow SAP ERP software to run on Azure and new... - [Azure Backup Server System Requirements](https://petri.com/azure-backup-server-system-requirements/): Microsoft's free Azure Backup Server (MABS) is a free on-premises backup server that will protect Microsoft workloads, such as Hyper-V,... - [Microsoft Expands Windows Defender Advanced Threat Protection Preview](https://petri.com/microsoft-expands-windows-defender-advanced-threat-protection-preview/): Microsoft is expanding its newly announced Windows Defender Advanced Threat Protection preview program to include more companies, and you can... - [The Essential Ingredient to Managing Domain Consolidation Projects with a Remote Workforce](https://petri.com/essential-ingredient-managing-domain-consolidation-projects-remote-workforce/): There has always been a challenge to effectively manage domain consolidation efforts within the enterprise. Throughout the years, the way... - [For Microsoft, Its Achilles' Heel Is Excel](https://petri.com/microsoft-achilles-heel-excel/): Microsoft's productivity future is based heavily on the fact that corporations are addicted to Excel, and there is not a... - [A Quick Tip for Copying a Site in SharePoint Online](https://petri.com/quick-tip-copying-site-sharepoint-online/): In this Ask the Admin, Russell Smith shows us how to copy an existing site in SharePoint Online. - [Publishing Azure RemoteApp Programs to Selected Users](https://petri.com/publishing-azure-remoteapp-programs-selected-users/): Learn how to use a heavily requested preview feature that will allow administrators to publish apps in an Azure RemoteApp... - [Paul Thurrott's Short Takes: May 13](https://petri.com/paul-thurrotts-short-takes-may-13/): Because the PC market is shrinking and I feel fine, this edition of Short Takes focuses on Google's fear of... - [New Features in Windows Server 2016 Technical Preview 5](https://petri.com/new-features-windows-server-2016-technical-preview-5/): Almost as if it didn't even happen, Windows Server 2016 Technical Preview 5 slipped out the door on April 27th.... - [Moving and Deleting Active Directory OUs with PowerShell](https://petri.com/moving-and-deleting-active-directory-ous-with-powershell/): PowerShell expert Jeff Hicks wraps up his lesson on managing Active Directory OUs with PowerShell by showing you how to move and delete them. - [Identify Malicious Phishing Attacks with Outlook Conditional Formatting](https://petri.com/identify-malicious-phishing-attacks-outlook-conditional-formatting/): Learn this easy tip on how to help identify phishing attacks in your organization by implementing conditional formatting in Outlook. - [PowerShell Problem Solver: Active Directory Group Members](https://petri.com/powershell-problem-solver-active-directory-group-members/): PowerShell Problem Solver Jeff Hicks demonstrates better techniques for get user account details from members of an Active Directory group. - [Microsoft Enhances Azure SaaS Platform with SQL Elastic Pools and CDN Options](https://petri.com/microsoft-enhances-azure-saas-platform-sql-elastic-pools-cdn-options/): Microsoft has announced the general availability of two new featurs for Azure: SQL database elastic pools and a partnership with... - [U.S Regulators are Looking at Mobile Device Security](https://petri.com/u-s-regulators-looking-mobile-device-security/): Regulators from the U. S. Federal Trade Commission (FTC) and Federal Communications Commission (FCC) are working jointly to discover more... - [Designing a DMZ for Azure Virtual Machines](https://petri.com/designing-a-dmz-for-azure-virtual-machines/): This article will show you three designs, each building on the other, for a demilitarized zone (DMZ) or perimeter network for Internet facing n-tier applications based on Azure virtual machines and networking. - [Microsoft Opens Two Data Centers in Canada, Expanding Operations In Korea](https://petri.com/microsoft-opens-two-data-centers-canada-expanding-operations-korea/): Microsoft has announced the availability of two new data center regions in Canada as well as a new region in... - [Open365 Beta: A New Productivity Tool](https://petri.com/open365-beta-a-new-productivity-tool/): A new productivity competitor in the same market where Microsoft and Google are fighting for dominance. What is it, and is it ready for primetime? - [Microsoft Is Adding New Features To UWP Apps](https://petri.com/microsofts-adding-new-features-uwp-apps/): Microsoft is adding new features to its UWP app platform that will provide better performance and higher framerates that the... - [Microsoft to Shut Down MSN China](https://petri.com/microsoft-shut-msn-china/): Microsoft announced today that it will shut down its MSN web portal in China, ceding the market to Baidu. com.... - [What's New in Windows Server 2016 Technical Preview 5: Hyper-V Features](https://petri.com/whats-new-windows-server-2016-technical-preview-5-hyper-features/): Learn all about the new improvements to Hyper-V in the Windows Server 2016 Technical Preview 5. - [Will Microsoft Really End the Windows 10 Upgrade Offer?](https://petri.com/will-microsoft-really-end-windows-10-upgrade-offer/): The Windows 10 Upgrade Offer is hard to categorize in the scope of Microsoft disasters. But despite its very explicit... - [WHEA Errors on Hyper-V Hosts](https://petri.com/whea-errors-on-hyper-v-hosts/): Aidan Finn describes a common WHEA error that can be found in Hyper-V and provides a workaround. - [Office 365: Adding Content Controls to Word Documents](https://petri.com/office-365-adding-content-controls-to-word-documents/): Learn how to add fillable text boxes, drop-down menus and other form elements to Word 2016 documents. - [The Sams Report EP 38: Redstone 3 and 300](https://petri.com/72688-2/): On this episode, I cover the all the news that Microsoft announced this week including a little bit about Redstone... - [Paul Thurrott's Short Takes: May 6](https://petri.com/paul-thurrotts-short-takes-may-6/): Because life is too short for crapware, this edition of Short Takes focuses on Microsoft's decision to end the free... - [Microsoft Now Allows Businesses To Buy (and Sell) Apps in Bulk](https://petri.com/microsoft-now-allows-businesses-buy-sell-apps-bulk/): To make the app buying process easier, Microsoft has enabled the ability to bulk purchase apps through the Windows Store... - [Learning from Experience: Insights from the Front Lines of IT Transformation](https://petri.com/learning-experience-insights-front-lines-transformation/): What can an established company do to compete with revolutionary companies, or to compete more effectively with existing, yet more... - [Microsoft Will End Free Upgrade Offer For Windows 10 In July](https://petri.com/microsoft-will-end-free-upgrade-offer-windows-10-july/): Microsoft has announced that the free upgrade Windows 10 offer will be discontinued later this year when the Anniversary update... - [Windows 10 Tip: Show or Hide the Recycle Bin](https://petri.com/windows-10-tip-show-hide-recycle-bin/): In this Ask the Admin, learn how to hide the Recycle Bin for users accessing Windows Server via Remote Desktop. - [SQL Server Management Studio 2016: Subtle Changes Yield Big Wins](https://petri.com/sql-server-2016-subtle-changes-provide-big-wins/): Michel K. Campbell discusses how one of the big changes with SQL Server 2016 is bringing a slew of new... - [Next Windows 10 Update Will Bring the End of Recognizing SHA-1 As Secure](https://petri.com/next-windows-10-update-will-bring-end-recognizing-sha-1-secure/): Microsoft has announced that with the Anniversary update with Windows 10, the company will no longer recognize that SHA-1 is... - [Microsoft Details SharePoint and OneDrive Roadmap: Apps, Intranet, and Access](https://petri.com/microsoft-details-sharepoint-onedrive-roadmap-apps-intranet-access/): Microsoft has announced several features coming to SharePoint and OneDrive for Business during the remainder of the year. - [SharePoint 2016 Is Now Generally Available](https://petri.com/sharepoint-2016-now-generally-available/): Microsoft has announced today that SharePoint 2016 has reached general availability and is ready for production environments. - [SharePoint Extensibility is Growing Up with the SharePoint Framework](https://petri.com/sharepoint-extensibility-growing-sharepoint-framework/): Microsoft has announced a new extensibility framework for SharePoint that will make it easier for its customers to build out... - [Microsoft EMS Components: Azure Rights Management](https://petri.com/microsoft-ems-components-azure-rights-management/): Keep your data private and secure with Microsoft's Azure Rights Management functionality, which is part of the Microsoft Enterprise Mobility Suite. - [To own productivity, Microsoft needs to build new tools](https://petri.com/productivity-microsoft-needs-build-new-tools/): Modern productivity has moved beyond emailing Word documents to coworkers. To keep Office relevant Microsoft needs to update their project management tools. - [Why are there no compelling Windows 10 apps?](https://petri.com/no-compelling-windows-10-apps/): Nine months after Windows 10 launched, even Microsoft doesn’t seem to be able to create a must-have Universal Windows Platform... - [Skype for Business Online with Intune Now Includes Mobile Application Management](https://petri.com/skype-for-business-online-with-intune-now-includes-mobile-application-management/): Microsoft has now added Skype for Business to their suite of apps available for mobile app management through Microsoft Intune. - [SQL Server 2016 is Coming June 1, Here’s What’s in Each Edition](https://petri.com/sql-server-2016-coming-june-1-heres-whats-edition/): Microsoft has announced the availability of SQL Server 2016 and the features that will be in each edition of the... - [Investing in Your Data Center to Minimize Risk: Money Well Spent](https://petri.com/data-center-investments/): When it comes to investing in your data center, while performance is still king, up-time is what keeps management off... - [Recommendation: Asus SOHO Wi-Fi Router RT-AC66U](https://petri.com/recommendation-asus-soho-wi-fi-router-rt-ac66u/): Russell Smith has lost track of how many Wi-Fi routers that have been less than satisfactory. In this article, he... - [The Sams Report EP 37: Small Pipes, Big Xbox](https://petri.com/72518-2/): On this episode, I cover the all the news that Microsoft announced this week including a new build of Windows... - [Paul Thurrott's Short Takes: April 29](https://petri.com/google-copying-microsofts-mission-statement/): Because Microsoft controls the weather now, this edition of Short Takes focuses on Microsoft's use of DNA for storage, Skype's... - [Microsoft Flow: A Backend Internet Plumbing Service To Compete With IFTTT](https://petri.com/microsoft-flow-backend-internet-plumbing-service-compete-ifttt/): Microsoft is working on a new service that will allow you to connect different platforms with templates to create unique... - [Introducing Office 365 Planner](https://petri.com/introducing-office-365-planner/): Russell Smith provides an overview of the Office 365 Planner apps, which helps teams create plans, share files, and much... - [Current Status Episode 39: Outlook Performance in VDI with Jarian Gibson](https://petri.com/current-status-episode-39-outlook-performance-vdi-jarian-gibson/): During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Jarian Gibson (@jariangibson), Architect at... - [Office 365 Vulnerability Exposed Business Accounts, Fixed within Seven Hours](https://petri.com/office-365-vulnerability-exposed-business-accounts-fixed-within-seven-hours/): A serious exploit found within Office 365 allowed you to access nearly any business email account but the bug was... - [FTC Expands Antitrust Investigation of Google Android](https://petri.com/ftc-expands-antitrust-investigation-google-android/): Following in the footsteps of the Europe Commission, the U. S. Federal Trade Commission (FTC) is expanding its own investigation... - [Research Study Shows Positive Perceptions for the Software-Defined Data Center for Enterprises](https://petri.com/research-study-shows-positive-perceptions-software-defined-data-center-enterprises/): A new study from HyTrust and Intel suggests that 2016 might be the year where a software-defined data center (SDDC) approach might become the norm for many enterprises. - [Why I'm Happy to Beta Test Windows Mobile 10](https://petri.com/im-happy-beta-test-windows-mobile-10/): Russell Smith shares his thoughts on why he's excited to be a part of the Windows Mobile 10 journey even... - [PowerShell Problem Solver: In Case it Matters](https://petri.com/powershell-problem-solver-in-case-it-matters/): PowerShell professional Jeff Hicks dives into a tricky string replacement problem and demonstrates some advanced regular expression tricks. - [Microsoft’s Newly Acquired Xamarin Expands Developer Tools With New Features](https://petri.com/microsofts-newly-acquired-xamarin-expands-developer-tools-new-features/): Microsoft and Xamarin are hosting the Evolve 16 conferece in Orlando where the companies have announced several new development features... - [Microsoft and Xamarin Have Opened Sourced the SDK for iOS, Android and Mac](https://petri.com/microsoft-xamarin-opened-sourced-sdk-ios-android-mac/): Microsoft and Xamarin have completed the open sourcing of the Xamarin SDK for Android, iOS and Mac. - [Apple Revenues, Device Sales Take a Tumble in Quarter](https://petri.com/apple-revenues-device-sales-take-tumble-quarter/): Apple recorded revenues of over $50 billion in the quarter ending March 31, but the firm sold fewer iPhones, iPads,... - [A Simple Way to Clean Install Windows 10](https://petri.com/simple-way-clean-install-windows-10/): Learn how to perform a clean installation of Windows 10, while keeping the free upgrade benefit for Windows 7 and 8.1 users. - [Getting the Most Out of Office 365: Outlook, Plus OneNote](https://petri.com/getting-the-most-out-of-office-365-outlook-plus-onenote/): Maximize your email workflow by adding OneNote. Save emails, reply to long emails without missing a single point. OneNote plus Outlook is the perfect pair. - [Adding Microsoft Cloud to a Small-to-Medium Business](https://petri.com/adding-microsoft-cloud-to-a-small-mid-business/): There's lots of talk about cloud and what it can do for your business. But with so many offerings, even... - [What's the Future of the IT Pro?](https://petri.com/whats-the-future-of-it-pro/): What's in store for IT pros in the future? - [Microsoft and Google Drop Regulatory Complaints Against Each Other](https://petri.com/microsoft-google-drop-regulatory-complaints/): Microsoft and Google jointly announced on Friday that the two firms would set aside their regulatory complaints against each other... - [Microsoft’s Preparing To Take On Amazon Glacial With Azure Cool Storage](https://petri.com/microsofts-preparing-take-aws-glacial-storage-azure-cool-storage/): Microsoft is working on a new Azure service that will compete with Amazon Glacier for long term data storage. - [Create Custom MMC Consoles for Managing Windows Server](https://petri.com/create-custom-mmc-consoles-managing-windows-server/): Learn how to create complex management consoles for managing Windows Server. - [Provision a domain using a Microsoft Azure Resource Manager template](https://petri.com/provision-dc-microsoft-azure-using-powershell/): Learn to use the new PowerShell resource management cmdlets to provision a VM as a domain controller in Azure. - [Microsoft’s Updating UAC With Additional Authentication Options](https://petri.com/microsofts-updating-uac-additional-authentication-options/): Microsoft is updating the UAC dialog box in Windows 10 Anniversary Update to include additional authentication options. - [Microsoft Announces More Features Coming to Windows 10 with the Anniversary Update](https://petri.com/microsoft-announces-features-coming-windows-10-anniversary-update/): Microsoft has announced today a significant number of new features that are coming to Windows 10 with the Anniversary Update... - [The Sams Report EP 36: New Redstone Features, Surface 4 and Year Of Linux](https://petri.com/sams-report-ep-36/): On this episode, I cover the all the news that Microsoft announced this week including lots of new features coming... - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2016)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-3/): Because this happens only four times a year, this edition of Short Takes focuses on Microsoft's quarterly earnings report: the... - [Microsoft Reports Strong Cloud Growth, Dismal Windows Phone Sales for Q3](https://petri.com/microsoft-reports-strong-cloud-growth-dismal-windows-phone-sales/): Microsoft has released its Q1 earnings and there has been strong growth in its cloud services but Windows phone remains... - [3 Ways to Disable a Network Connection in Windows 10](https://petri.com/3-ways-disable-network-connection-windows-10/): Learn three quick and easy ways to disable a network connection with the command line in Windows 10. - [Getting the Most Out of Office 365: Office Online](https://petri.com/getting-the-most-out-of-office-365-office-online/): Office 365 users may wonder about the online versions of the classic Office desktop programs. So how does Office Online measure up, and what is it good for? - [PowerShell Problem Solver: What's Installed?](https://petri.com/powershell-problem-solver-whats-installed/): PowerShell expert Jeff Hicks shares his ideas on how to find out if a particular feature or application is running on a server. Is this a problem you have? - [Azure Site Recovery Preview in Azure Portal](https://petri.com/azure-site-recovery-preview-azure-portal/): Microsoft has launched a public preview of Azure Site Recovery in the Azure Portal. - [Microsoft Announces Free Cloud-Focused Career and Training Resources for IT Pros](https://petri.com/microsoft-announces-free-cloud-focused-career-training-resources-pros/): Microsoft announced two free online resources that are designed to help IT pros advance their careers in cloud technologies, such... - [The Year of Linux is Slowly Approaching with Flavors of Redmond](https://petri.com/year-linux-slowly-approaching-flavors-redmond/): For fans of Linux who have been holding out that 'next year' will be the time Linux overtakes Windows, it may be closer than you think. - [Intel to Lay off 12,000 Employees, Restructure for Future](https://petri.com/intel-lay-off-12000-employees-restructure-future/): Intel announced Tuesday that it will reduce its workforce by 11 percent by 12,000 employees. The goal, Intel says, is... - [EU Formally Charges Google with Antitrust Violations](https://petri.com/eu-formally-charges-google-antitrust-violations/): As expected, the European Union's European Commission formally charged Google with violating antitrust laws by forcing its hardware maker and... - [Microsoft EMS Components: Microsoft Intune](https://petri.com/microsoft-ems-components-microsoft-intune/): Learn how you can get a handle on mobile device management with this overview of Microsoft Enterprise Mobility Suite and Microsoft Intune. - [Resurrecting Windows Phone Mobile](https://petri.com/resurrecting-windows-phone-mobile/): Aidan Finn outlines his thoughts on how Microsoft can turn its mobile story around. - [U.S. Supreme Court Refuses to Hear Google Book Scanning Case](https://petri.com/u-s-supreme-court-refuses-hear-google-book-scanning-case/): The U. S. Supreme Court this week refused to hear a challenge to an important Google book scanning lawsuit, leaving... - [Microsoft's Azure Container Service Reaches General Availability](https://petri.com/microsofts-azure-container-service-reaches-general-availability/): Microsoft has announced the general availability of the Azure Container Service that allows you to use open source software with... - [Is it safe to store sensitive information in the cloud?](https://petri.com/is-it-safe-to-store-sensitive-information-in-the-cloud/): A look at some real and irrational fears connected to cloud adoption and security. - [Anatomy of a Microsoft Azure Virtual Machine](https://petri.com/anatomy-of-an-azure-virtual-machine/): Understanding the basics of a Microsoft Azure virtual machine makes it easier to not only design and price virtual machines, but also lends itself to troubleshooting machines that go wrong. - [Intel’s New Low-Cost PC Platform Lays the Foundation for a Surface 4](https://petri.com/intels-new-low-cost-pc-platform-lays-foundation-surface-4/): Intel has announced a new low-cost PC platform which will likely power the Surface 4 but the chips will not... - [Google is Under Legal Fire on Multiple Fronts](https://petri.com/google-legal-fire-multiple-fronts/): Like Microsoft before it, Google is discovering that domination has its downsides: The search giant is now under legal fire... - [Paul Thurrott's Short Takes: April 15](https://petri.com/paul-thurrotts-short-takes-april-15/): Because I'm stuck in meetings and dying on the inside, this edition of Short Takes focuses on a new Microsoft... - [Accelerate Your IT Transformation with the Right Services Partner](https://petri.com/accelerate-transformation-journey-hewlett-packard-enterprise/): Transforming an existing IT infrastructure into a more agile one that supports an increasingly digital business environment is no easy... - [Microsoft Sues the U.S. Government Over Secrecy Orders](https://petri.com/microsoft-sues-u-s-government-secrecy-orders/): Microsoft this week filed a federal lawsuit against the U. S. Department of Justice, alleging that the agency's growing use... - [Using Microsoft Azure Resource Explorer to Debug VM Deployment Errors](https://petri.com/using-microsoft-azure-resource-explorer-to-debug-vm-deployment-errors/): Learn how to debug errors when deploying Azure VMs using PowerShell. - [Visual Studio Code Arrives At 1.0 With 500,000 Monthly Active Users](https://petri.com/visual-studio-code-arrives-1-0-500000-monthly-active-users/): Microsoft's Visual Studio Code platform has reached milestone 1. 0 and it currently has 500,000 monthly active users and 1,000... - [Blue Whale Web Acquires IT Unity and NC Communications, Joining Petri and Thurrott](https://petri.com/blue-whale-web-acquires-unity-nc-communications-joining-petri-thurrott/): Blue Whale Web has acquired two companies that will be joining Petri and Thurrott; these two communities will help to... - [Microsoft is Bringing New Educational Features to Windows 10 with Anniversary Update](https://petri.com/microsoft-bringing-new-educational-features-windows-10-anniversary-update/): When Microsoft released the Anniversary update for Windows 10 this summer, they will be including several new features targeted at... - [PowerShell Problem Solver: Finding Empty Organizational Units in Active Directory](https://petri.com/powershell-problem-solver-finding-empty-organizational-units-active-directory/): PowerShell MVP Jeff Hicks demonstrates how to find and remove empty Active Directory organizational units with simple PowerShell scripts. - [Attack of the Chatbots](https://petri.com/attack-of-the-chatbots/): Hot on the heels of Microsoft's recent announcement about its Bot Framework, Facebook this week revealed that it too would... - [Microsoft Releases OneDrive For Business Update, New Features Coming Later This Year](https://petri.com/microsoft-details-onedrive-business-updates-rolling-today/): Microsoft has announced several new features for OneDrive for Business that are rolling out today as well as features coming... - [What's New in Remote Desktop in Windows Server 2016](https://petri.com/whats-new-in-remote-desktop-in-windows-server-2016/): In today's Ask the Admin, I'll give you a quick rundown of the new Remote Desktop Services (RDS) features coming in Windows Server 2016. - [Microsoft EMS Components: Azure Active Directory](https://petri.com/microsoft-ems-components-azure-active-directory/): What is Azure Active Directory, and why is it convenient for the enterprise? In this post, we take a closer look at the feature. - [Surface 3, A Year Later](https://petri.com/surface-3-year-later/): It was over a year ago that Microsoft released the Surface 3, and it is worth taking a second look... - [PC Sales Continue to Free Fall](https://petri.com/pcs-sales-continue-free-fall/): Despite constant assurances that the PC market will eventually right itself, PC makers sold far fewer PCs in the first... - [Opinion: Are bots the new apps?](https://petri.com/opinion-bots-new-apps/): Is there a bot for that? At Microsoft's Build conference in San Francisco, Microsoft CEO Satya Nadella took to the... - [Microsoft’s Updating The BSOD To Make It Slightly Less Painful](https://petri.com/microsofts-testing-way-make-bsods-slightly-less-painful/): Microsoft is testing a way to improve the BSOD experience in Windows 10 to give the end user a few... - [How to Customize Routing in Microsoft Azure](https://petri.com/how-to-customize-routing-microsoft-azure/): If you deploy a network service in an Azure virtual machine, then the default virtual network routing will need to... - [Microsoft Details How to Use Your Phone to Log into Windows 10](https://petri.com/microsoft-details-use-phone-log-into-windows-10-pc/): Microsoft has released documentation that dives deep into how the company plans to let you use your phone to authenticate... - [Microsoft Comes Out in Support of the EU-U.S. Privacy Shield](https://petri.com/microsoft-comes-support-eu-u-s-privacy-shield/): Microsoft this morning announced its support for the EU-U. S. Privacy Shield, which is designed to safeguard privacy as data... - [Microsoft Releases Windows 10 Roadmap Highlighting New and In Development Features](https://petri.com/microsoft-releases-windows-10-roadmap-highlighting-new-development-features/): Microsoft has released a new road map website for Windows 10 that provides a look at new and in-development features... - [Microsoft Promotes Windows 10 1511 to Current Branch for Business](https://petri.com/microsoft-promotes-windows-10-1511-current-branch-business/): Microsoft has announced that they are moving Windows 10 build 1511 to the Current Branch For Business, which will have... - [Review: Microsoft Bluetooth Wedge Keyboard](https://petri.com/review-microsoft-bluetooth-wedge-keyboard/): Russell Smith shares his thoughts on the Microsoft Bluetooth Wedge Keyboard and how it might fit your needs. - [The Sams Report EP 35: Redstone Gets All The Things](https://petri.com/71913-2/): On this episode, I cover the all the news that Microsoft announced this week including the huge update to Windows... - [Paul Thurrott's Short Takes: April 8](https://petri.com/paul-thurrotts-short-takes-april-8/): Because my son just turned 18 and where does the time go, this edition of Short Takes focuses on Microsoft's... - [Surface Hub, A Year Later](https://petri.com/surface-hub-year-later/): A year ago, I first got a chance to check out the Surface Hub and nearly a year later, the... - [Microsoft's Project ‘Madeira’ Comes Into Focus](https://petri.com/microsoft-opens-door-project-madeira-preview/): Microsoft has opened the door to try out Project Madeira, a new ERP-type solution for small and medium sized businesses. - [The Costs of Running SQL Server on Linux](https://petri.com/costs-running-sql-server-linux/): Michael K. Campbell shares his thoughts on Microsoft's decision to run SQL Server on Linux, along with associated costs that likely motivated the tech giant's decision. - [Deadly Linux Commands Little Cause For Concern With Bash On Windows](https://petri.com/deadly-linux-commands-little-cause-concern-bash-windows/): Microsoft has released the first build of Windows 10 that includes Bash but if you were worried about rm -rf... - [Gartner Weighs In On Smart Phone Growth, PC, and Tablet Sales Expectations for 2016](https://petri.com/gartner-weighs-smart-phone-growth-pc-tablet-sales-expectations-2016/): The market researchers at Gartner have consulted their crystal balls and have arrived at some predictions for digital device sales... - [What is Microsoft Enterprise Mobility Suite?](https://petri.com/what-is-microsoft-enterprise-mobility-suite/): Learn what is Microsoft Enterprise Mobility Suite, along with an overview of the services and components that make up the suite. - [Microsoft’s Cloud App Security Service Hits General Availability](https://petri.com/microsofts-cloud-app-security-service-hits-general-availability/): Microsoft has announced that its Cloud App Security service is now generally available and ready for production environments. - [Daimler: Microsoft Considering a Stake in HERE Location Services](https://petri.com/daimler-microsoft-may-buy-stake-location-services/): Two years after it should have purchased the HERE mapping and location offerings from Nokia, Microsoft may finally find itself... - [SQL Server 2005 Support Is Ending Next Week](https://petri.com/sql-server-2005-support-ending-next-week/): If you are running SQL Server 2005, the software will no longer be supported after next week which will leave... - [Create a VNet-to-VNet VPN using AzureRM PowerShell](https://petri.com/create-a-vnet-to-vnet-vpn-using-azurerm-powershell/): Here's a simple way to create a VNet-to-VNet VPN using Microsoft AzureRM and PowerShell. - [AMD Launches New A-Series CPUs Earlier Than Expected](https://petri.com/amd-launches-new-series-cpus-earlier-expected/): AMD announced this morning that it is fast-tracking the move to next-generation microprocessors and will ship its first mobile-oriented 7th... - [Getting Operating System Information with PowerShell](https://petri.com/getting-operating-system-information-powershell/): Learn how to get operating system information with Windows PowerShell and the Get-CIMInstance cmdlet. - [How Does Azure Backup via Disk Work?](https://petri.com/how-does-azure-backup-via-disk-work/): Aidan Finn provides an overview of the process that Azure Backup currently uses to seed the first full backup using a secure couriered disk transfer. - [Microsoft’s Missed Opportunities with its Own Software in the Windows Store](https://petri.com/microsofts-missed-opportunities-software-services-windows-store/): Microsoft's Windows store is missing some of the company's own software and services, which could drive a lot more traffic... - [How to Remotely Ping Microsoft Azure VMs](https://petri.com/how-to-remotely-ping-microsoft-azure-vms/): Learn how to remotely test network connectivity to virtual machines in Microsoft Azure. - [Paul Thurrott's Short Takes: April 1](https://petri.com/l-thurrotts-short-takes-april-1/): Because every day with me is April Fools, this edition of Short Takes focuses on a year off for Windows... - [An Office 365 Tip on Restricting Editing in Word 2016](https://petri.com/office-365-tip-restricting-editing-word-2016/): Make collaboration in Office 365 a little bit easier with this quick tip. - [The Sams Report EP 34: All Things Build, Redstone and the Anniversary Update](https://petri.com/sams-report-ep-34-things-build-redstone-anniversary-update/): On this episode, I cover the all the news that Microsoft announced this week at its Build conference including new... - [Microsoft Announces Azure Functions, Service Fabric, and IoT Starter Kit](https://petri.com/microsoft-announces-azure-functions-service-fabric-and-iot-starter-kit/): At Microsoft's Build conference, the company announced several new Azure features for microservies and IoT as well as on premises... - [Microsoft Office by the Numbers](https://petri.com/microsoft-office-numbers/): Microsoft has share new details about how many users are actively utilizing Office 365, including 4 trillion emails have been sent using the platform. - [Microsoft Azure by the Numbers](https://petri.com/microsoft-azure-numbers/): At Microsoft's Build conference, the company revealed a few statistics about how large its operation is and other key figures. - [Microsoft And Xamarin: Included With Visual Studio And Going Open Source](https://petri.com/microsoft-xamarins-future-becomes-clear-free-enterprise-going-open-source/): Microsoft announced at Build that Xamarin will be free for Visual Studio Enterprise users and that they will be open-sourcing... - [Microsoft’s Is Turning The Conversation Into A Platform](https://petri.com/microsofts-new-driving-force-turning-conversation-platform/): One of Microsoft's new pillars for building tools and features revolves around turning the conversation into a platform. - [Build 2016 is a Peek at the Future of Microsoft](https://petri.com/build-2016-peek-future-microsoft/): As tech enthusiasts, we often get bogged down in the details: A particular product release, a certain feature, the size... - [Microsoft’s Bot Framework Offers A Peek At A Better Contextual Future](https://petri.com/microsofts-bot-framework-offers-peek-better-contextual-future/): At Microsoft's Build 2016 conference, developers saw a glimpse of what Microsoft's new bot framework might offer in the future. - [Windows 10 Anniversary Update Coming This Summer, New Features Announced](https://petri.com/windows-10-anniversary-update-coming-summer-devices-new-features-announced-embargo/): Microsoft has announced the next major update to Windows 10, called the 'Anniversary Update', it will arrive this summer. - [Microsoft’s Command Line Family Is Growing, Say Hello To Bash](https://petri.com/microsofts-command-line-family-growing-say-hello-bash/): Microsoft is adding a new command-line tool to Windows 10 and it comes from the Linux world; Bash is headed... - [Microsoft Is Delivering New Tools To Make it Easier To Build And Port Apps to UWP](https://petri.com/microsoft-delivering-tools-make-easier-build-port-apps-uwp/): Microsoft has announced new tools that will make it easier for developers to port or build apps for the UWP... - [Microsoft’s HoloLens Development Edition Is Shipping Today](https://petri.com/microsofts-hololens-shipping-today/): Microsoft announced a major milestone for its HoloLens today at Build, the device is now available and is shipping to... - [Microsoft Adds 70 Million Windows 10 Devices In Q1, Total Now Tops 270 Million](https://petri.com/microsoft-adds-70-million-windows-10-devices-q1-total-now-tops-270-million/): Microsoft has announced at its Build conference that Windows 10 has been installed on 270 million devices. - [Risking Your Brand with the Availability Gap](https://petri.com/risking-brand-availability-gap/): Your brand is linked closely to the availability of your core applications, if downtime becomes the new normal, you are... - [Using Sysprep in Windows 10](https://petri.com/using-syspre-windows-10/): Learn how to use sysprep in Windows 10 to automate the deployment of Windows operating systems. - [DOJ Unlocks iPhone, Raising New Questions](https://petri.com/doj-unlocks-iphone-raising-new-questions/): The DOJ said that it had found a method of unlocking a terrorist's iPhone. The action resulted in a temporary... - [Meet Brad and Paul at Build 2016!](https://petri.com/meet-brad-and-paul-at-build-2016/): Microsoft's Build 2016 conference kicks off this week and both Paul and Brad will be there; here's a list of... - [Deploy VMs Using Azure Resource Manager and PowerShell](https://petri.com/deploy-vms-using-azure-resource-manager-and-powershell/): Learn how to deploy a VM in Azure using the new Resource Manager deployment model and PowerShell. - [Introducing Office 365 Connectors](https://petri.com/introducing-office-365-connectors/): Office 365 Connectors integrate all the tools you use every day for work into Office 365 Groups. - [Microsoft’s Build Session List Goes Live, Teases Interactive Tiles And More](https://petri.com/microsofts-build-session-list-goes-live-teases-interactive-notifications/): The session list for Microsoft's upcoming Build conference has been announced and it includes a few teasers like interactive live... - [More Choices in PowerShell](https://petri.com/more-choices-powershell/): Take your PowerShell scripts to the next level with custom menus and choice prompts. PowerShell MVP Jeff Hicks explains how. - [Microsoft’s Surface Hub Is Now Shipping To Customers](https://petri.com/microsofts-surface-hub-now-shipping-customers/): After two delays and a price change, Microsoft's Surface Hub is now shipping to customers. - [Paul Thurrott's Short Takes: March 25](https://petri.com/paul-thurrotts-short-takes-march-25/): Because yellow is the new purple, this edition of Short Takes focuses on Microsoft's interest in the Yahoo sale, How... - [The Sams Report EP 33: A Few Redstones, Build Hype, Skypetastrophe](https://petri.com/the-sams-report-ep-33-a-few-redstones-build-hype-skypetastrophe/): On this episode, I cover the all the news that Microsoft announced this week including the a couple of new... - [Microsoft’s Testing New Survey Feature Called Office Forms](https://petri.com/microsofts-testing-new-survey-feature-called-office-forms/): Microsoft is testing a new feature called Office Forms that makes it easy to administer surveys and quizzes. - [Microsoft Is Said To Be Interested In Contributing To A Bid For Yahoo!](https://petri.com/microsoft-said-interested-contributing-bid-yahoo/): Microsoft is said to be interested in contributing to a bid to buy Yahoo!'s assets but that they only want to be a minority owner. - [Getting the Most Out of Office 365: Yammer Over Email, Part 2](https://petri.com/getting-the-most-out-of-office-365-yammer-over-email-part-2/): Email is over 40 years old, it is high time for a new, better, smarter communication tool, it is called Yammer. - [Current Status Episode 38: Storage Modernization with Leah Schoeb](https://petri.com/current-status-episode-38-storage-modernization-leah-schoeb/): Storage has evolved significantly over the years. During this episode, learn about how transformation in the data center is occurring as we speak through modernization of storage. - [Microsoft’s Latest AI Experiment Heads Towards Ca’tay’strophe](https://petri.com/microsofts-latest-ai-experiment-heads-towards-cataystrophe/): Microsoft's new AI experiment, Tay.ai, has been pulled after responding to queries with racist and demeaning remarks. - [Windows 10 Tip: Metered Network Connections](https://petri.com/qa-windows-10-tip-metered-network-connections/): A quick tip on how to manually designate a Wi-Fi network as a metered connection in Windows 10. - [Intel Says "Tick-Tock" Processor Development is Over](https://petri.com/intel-says-tick-tock-processor-development/): Stung by its failure to maintain long-held processor development techniques, Intel has declared that the era of "tick-tock" is over,... - [Microsoft’s Set To Take on AWS Lambda With Azure Functions](https://petri.com/microsofts-set-take-aws-lambda-azure-functions/): A new feature for Azure has been uncovered and it will likely be talked about next week at Microsoft's Build conference in San Francisco. - [Working with PowerShell Variables](https://petri.com/working-with-powershell-variables/): PowerShell teacher Jeff Hicks continues his look at working with variables including demonstrating how to create a read-only variable. - [A Guide to Different Microsoft Azure Backup Options](https://petri.com/guide-different-microsoft-azure-backup-options/): Aidan Finn outlines the different ways businesses can use Microsoft Azure Backup. - [Google’s Gearing Up To Fight Microsoft, Amazon In The Cloud](https://petri.com/googles-gearing-fight-microsoft-amazon-cloud/): Google is spinning up its efforts in the cloud space and will be building out 12 new data centers in the next 18 months to take on Amazon and Microsoft. - [Apple Product Launch Overshadowed by Looming Legal Fight](https://petri.com/apple-product-launch-overshadowed-looming-legal-fight/): On a day in which Apple padded its product lineup with new models, the consumer electronics giant received a legal... - [Small Business Tools: What I Use](https://petri.com/small-business-tools-use/): Russell Smith provides a rundown of the software he uses to manage his small business. - [How and why I use the public cloud to get my work done](https://petri.com/use-public-cloud-get-work-done/): Learn how one IT pro uses the public cloud to be more productive in his day-to-day work. - [Microsoft’s Working on a New Bot Framework](https://petri.com/microsofts-working-new-bot-framework/): Microsoft is working on a new bot framework and the first details of the new service have been uncovered. - [What Is Microsoft Entra ID? (Azure AD) - A Comprehensive Guide](https://petri.com/what-is-azure-active-directory/): What is Microsoft Entra ID? In today's Ask the Admin, I'll explain what Microsoft Entra ID is and how it compares to Windows Server Active Directory, including the difference between cloud, synchronized, and federated identities. - [Microsoft Is Building Another Bridge, Port Chrome Extensions To Edge](https://petri.com/microsoft-building-another-bridge-port-chrome-extensions-edge/): Microsoft is building out a new 'bridge' that will make it easy to port Chrome extensions to Edge. - [Create a VNet-to-VNet VPN in the Azure Management Portal](https://petri.com/create-a-vnet-to-vnet-vpn-in-the-azure-management-portal/): Learn how to create two virtual networks (VNets) and link them together using a Virtual Private Network (VPN) in the new Azure Management Portal. - [The Sams Report EP 32: HERE Are The Extensions, Redstone Visions](https://petri.com/71288-2/): On this episode, I cover the all the news that Microsoft announced this week including the brand new extensions for... - [Paul Thurrott's Short Takes: March 18](https://petri.com/paul-thurrotts-short-takes-march-18/): Because Spring is in the air but snow is in the forecast, this edition of Short Takes focuses on how... - [Getting the Most Out of Office 365: Use Yammer Over Email, Part 1](https://petri.com/getting-the-most-out-of-office-365-use-yammer-over-email-part-1/): Email is out of date and if your company uses Office 365, then they might have Yammer, which is a far superior communication tool. - [Microsoft Has Released Windows 10 Mobile For Existing Devices](https://petri.com/microsoft-released-windows-10-mobile-existing-devices/): Microsoft has finally released Windows 10 Mobile for existing Lumia smartphones and you can download the update now. - [For Microsoft, Aggressive Is The New Normal](https://petri.com/microsoft-aggressive-new-normal/): Microsoft is returning to its roots when it comes to pushing new software and Windows 10 shows how it will proceed moving forward. - [Introduction to PowerShell Variables](https://petri.com/introduction-to-powershell-variables/): Veteran PowerShell trainer Jeff Hicks kicks off an exploration of defining and using variables in PowerShell, including some best practices. - [PowerShell Problem Solver: More with Negatives](https://petri.com/powershell-problem-solver-more-with-negatives/): PowerShell expert Jeff Hicks returns with another solved problem this time identifying disk volumes not formatted as NTFS. - [The Expectations, Hopes, and Dreams for Microsoft’s Build 2016 Conference](https://petri.com/expectations-hopes-dreams-microsofts-build-2016-conference/): Microsoft's Build 2016 conference is two weeks away and to help set the expectations for the event, Brad Sams outlines what might be discussed. - [Report: Apple to Improve iCloud Security in Wake of Encryption Debate](https://petri.com/report-apple-improve-icloud-security-wake-encryption-debate/): Apple is still fighting a hotly-debated legal battle over law enforcement requests to bypass encryption on its iPhone handsets. But... - [Why Is Microsoft Releasing SQL Server on Linux?](https://petri.com/why-is-microsoft-releasing-sql-server-on-linux/): Aidan Finn provides his take on why Microsoft's is releasing its SQL Server platform to the open source Linux platform. - [Microsoft’s Azure To Receive Crucial Government Certification](https://petri.com/microsofts-azure-receive-crucial-government-certification/): Microsoft's Azure cloud service is about to receive the highest level fedRAMP certification which will allow it to bid on high impact operations. - [Planning for Windows Server 2016](https://petri.com/planning-for-windows-server-2016/): IT veteran Jeff Hicks shares his thoughts on getting the most from Windows Server 2016, what you might want to consider and the future of IT administration. - [Why is Backup so Hard?](https://petri.com/why-is-backup-so-hard/): Aidan Finn gives his thoughts on why backup is so hard and difficult for IT professionals. - [SharePoint 2016 Reaches RTM, Future of SharePoint Virtual Event Announced](https://petri.com/sharepoint-2016-reaches-rtm-future-sharepoint-virtual-event-announced/): Microsoft has announced today that SharePoint 2016 has reached RTM and it delivers many new capabilities. - [Microsoft Finds Another Use For Its $2.5 Billion Acquisition of Minecraft, AI Training](https://petri.com/microsoft-finds-another-use-2-5-billion-acquisition-minecraft-ai-training/): Microsoft is using its Minecraft acquisition to help advance artificial intelligence and will soon open source its research to help others in this field. - [Microsoft's Year of Living Dangerously](https://petri.com/microsofts-year-living-dangerously/): Three-quarters of the way through Windows 10's first year, Microsoft is in danger of subverting its reputation, as well as... - [Windows 10 Mobile: Printing](https://petri.com/windows-10-mobile-printing/): Here's a quick tutorial on how printing works in Windows 10 Mobile. - [Activating God Mode in Windows 10](https://petri.com/activating-god-mode-windows-10/): Learn how to activate God Mode in Windows 10 to make configuration easier across applications. - [The Sams Report EP 31: Flighting Procedures, IE 11 Adverts, Windows 10 Aggressiveness](https://petri.com/sams-report-ep-31-flighting-procedures-ie-11-adverts-windows-10-aggressiveness/): On this episode, I cover the all the news that Microsoft announced this week including the Windows 10 aggressiveness, IE... - [Paul Thurrott's Short Takes: March 11](https://petri.com/paul-thurrotts-short-takes-march-10/): Because Microsoft loves Linux and I feel weird, this edition of Short Takes focuses on some Microsoft/Linux musings, another PS... - [Microsoft’s Latest Windows 10 Upgrade Tactic Pits Employees Against Admins](https://petri.com/microsofts-latest-windows-10-upgrade-tactic-puts-employees-admins-ie-11/): Microsoft's latest tactic to upgrade to Windows 10 is pushing advertisements to domain-joined machines that tells the employee that the... - [Microsoft’s Targeting Oracle Customers With ‘Free’ License Offer For SQL Server 2016](https://petri.com/microsofts-targeting-oracle-customers-free-license-offer-sql-2016/): Microsoft is targeting Oracle customers with a new offer for SQL Server 2016 as the company ramps up its marketing effort for the new platform. - [What Should I Do In Azure First?](https://petri.com/what-should-i-do-in-azure-first/): As an IT pro facing the mammoth size and immense possibilities of Azure, trying to figure out what you should... - [Microsoft’s Project Rigel Brings Surface Hub Capabilities To New Devices](https://petri.com/microsofts-project-rigel-brings-surface-hub-capabilities-new-hardware/): Microsoft has announced project Rigel that will bring a Surface Hub-like Skype experience to any conference room. - [PowerShell Problem Solver: Finding What’s Not There](https://petri.com/powershell-problem-solver-finding-whats-not/): Resident PowerShell expert Jeff Hicks tackles the tricky problem of documenting something that isn't there like service. - [Microsoft updates its OneDrive for Business roadmap](https://petri.com/microsoft-updates-its-onedrive-for-business-roadmap/): Russell Smith outlines Microsoft's plans for its enterprise cloud storage service OneDrive for Business. - [Microsoft Drinks Its Own Kool-Aid, Completes Mission-Critical Cloud Service Suite](https://petri.com/microsoft-drinks-kool-aid-completes-mission-critical-cloud-service-suite/): Microsoft has announced today that its Dynamics AX ERP product is available as a service in 137 markets and in 40 different languages. - [Understanding the PowerShell Pipeline](https://petri.com/understanding-the-powershell-pipeline/): To get the most out of PowerShell you need to understand the pipeline. PowerShell guru Jeff Hicks offers some beginner guidance. - [Microsoft Is Making Significant Changes To Its MVP Program](https://petri.com/microsoft-making-significant-changes-mvp-program/): Microsoft will be making significant changes to its MVP program in the next several months that will impact consumer product... - [With SQL Server Heading to Linux, What's Next?](https://petri.com/sql-server-heading-linux-whats-next/): While some are scrambling to explain why Microsoft's decision to port SQL Server to Linux makes sense, a more pressing... - [New Admin Center Begins Rolling Out For Office 365](https://petri.com/new-admin-center-begins-rolling-office-365/): Microsoft's new Admin Center for Office 365 introduces a new dashboard and a refreshed U and begins rolling out today. - [Microsoft Is Bringing SQL Server To Linux](https://petri.com/microsoft-is-bringing-sql-server-to-linux/): Microsoft has announced today that they will be bringing SQL Server to the Linux platform in the middle of 2017 and a private preview is available today. - [Microsoft Introduces AES-XTS to BitLocker in Windows 10 Version 1511](https://petri.com/microsoft-introduces-aes-xts-to-bitlocker-in-windows-10-version-1511/): Learn about new changes to BitLocker full disk encryption made in Windows 10 Version 1511. - [Microsoft Integrates Skype Into Additional Services](https://petri.com/microsoft-integrates-skype-into-additional-services/): Microsoft is bringing Skype to Office Online and OneDrive to make it easier to communicate while collaborating. - [Surface Book Five Months Later: Finally Recommend Without Caveat](https://petri.com/surface-book-five-months-later-finally-recommend-without-caveat/): It's hard to believe that it has been five months since Microsoft first announced the Surface Book and Surface Pro 4 in New York. - [Microsoft Reportedly Walked Away from $8 Billion Slack Acquisition](https://petri.com/microsoft-reportedly-walked-away-from-8-billion-slack-acquistion/): According to a report, Microsoft considered buying the Slack collaboration service for an incredible $8 billion. But pushback from Microsoft... - [What is Microsoft Azure?](https://petri.com/what-is-microsoft-azure/): In this introductory article, Aidan Finn explains what Microsoft Azure is and isn't, along with key features of the service. - [Paul Thurrott's Short Takes: March 4](https://petri.com/paul-thurrotts-short-takes-march-4/): Because years of Call of Duty are finally paying off, this edition of Short Takes focuses on IDC's comeuppance on... - [The Sams Report EP 30: HoloLens Everything, Windows Something, Redmond Executives](https://petri.com/sams-report-ep-30-hololens-everything-windows-something-redmond-executives/): On this episode, I cover the all the news that Microsoft announced this week including all the announcements around HoloLens,... - [Getting the Most Out of Office 365: Reducing the Email Burden](https://petri.com/getting-office-365-reducing-email-burden/): Use these tools to reduce the amount of "email work" you do every day. - [Microsoft’s HoloLens Documentation Gives New Details, No Black Holograms](https://petri.com/microsofts-hololens-documentation-gives-new-details-no-black-holograms/): Documentation for Microsoft's HoloLens has been released and it offers up several new details about the device including working with... - [Microsoft’s Dynamics Spring Wave Coming In Q2 Puts Acquisitions To Use](https://petri.com/microsofts-dynamics-spring-wave-coming-in-q2-puts-acquisitions-to-use/): Microsoft is set to release its spring wave of updates for Dynamics which will included several new features from its... - [Windows 10 RT Is Alive, Supported By Device Guard](https://petri.com/windows-10-rt-is-alive-supported-by-device-guard/): While showing off Device Guard during the Technet Virtual Conference, support for Windows 10 RT was spotted inside the feature. - [Microsoft Expands Availability of Windows Hello Enabled Type Cover](https://petri.com/microsoft-expands-availability-of-windows-hello-enabled-type-cover/): Microsoft has expanded the availability of the Type cover that has a finger printer reader that enables Windows Hello support... - [Join Windows 10 to Azure Active Directory](https://petri.com/join-windows-10-to-azure-active-directory/): Here's  quick tip on how to join Windows 10 to Azure Active Directory (AAD) and why you might want to do that. - [Microsoft’s Brad Smith: Encryption is Key, 'The path to hell starts at the backdoor'](https://petri.com/microsoft-brad-smith-encryption-is-key-the-path-to-hell-starts-at-the-backdoor/): In strong words, Microsoft's Brad Smith further backed Apple and his company's position at RSA's annual security conference. - [Free DevOps Tool for Calculating Development Waste](https://petri.com/free-devops-tool-for-calculating-development-waste/): Improve your DevOps processes with this free tool from Sonatype for calculating developmental waste. - [Results of Aggregating Azure Premium Disks](https://petri.com/results-of-aggregating-azure-premium-disks/): See how performance improves when you add additional data disks based on Premium Storage to an Azure virtual machine. - [What is Rugged DevOps?](https://petri.com/what-is-rugged-devops/): Learn about rugged DevOps and how it can help increase security of your deployments. - [Advanced Threat Protection Service for Businesses is Coming to Windows 10](https://petri.com/advanced-threat-protection-service-for-businesses-is-coming-to-windows-10/): Microsoft is a adding a Windows Defender Advanced Threat Protection service to Windows 10. Aimed at businesses with IT staff,... - [Nano Web-Based GUI Management Tools Preview](https://petri.com/nano-web-based-gui-management-tools-preview/): Learn how to set up the web-based server management tools for Windows Server 2016. - [Microsoft Unveils HoloLens Specs, Battery Life And Dev Kit Ship Date](https://petri.com/microsoft-unveils-hololens-specs-battery-life-dev-kit-ship-date/): Microsoft has announced that they will begin shipping HoloLens dev kits next month and they are also finally revealing the specs of the device. - [PowerShell 5.0 is Back](https://petri.com/powershell-5-0-is-back/): An update on the state of PowerShell 5.0, why you might want to upgrade and a few things to watch out for. - [Office 365 Unlimited OneDrive Storage Ends On March 1 2017](https://petri.com/office-365-unlimited-onedrive-storage-ends-on-march-1-2017/): If you have a OneDrive account and you use the unlimited storage that you received by signing up for Office 365, your account will be reverted to 1TB. - [Managing Active Directory OUs with PowerShell](https://petri.com/managing-active-directory-ous-powershell/): PowerShell MVP Jeff Hicks continues his discussion of using PowerShell to manage Active Directory organizational unit settings. - [Microsoft's Wireless Display Adapter Is A Portable No Frills Media Streamer](https://petri.com/microsofts-wireless-display-adapter-is-a-portable-no-frills-media-streamer/): Microsoft's new Wireless Display Adapter has been redesigned and is supposed to offer lower latency, but is it really worth $50? - [Paul Thurrott's Short Takes: February 26](https://petri.com/paul-thurrotts-short-takes-february-26/): Because it’s been that kind of week, this edition of Short Takes focuses on Microsoft supporting Apple in the phone... - [The Sams Report EP 29: Build, Astoria And OneDrive Placeholders](https://petri.com/the-sams-report-ep-29-build-astoria-and-onedrive-placeholders/): On this episode, I cover the all the news that Microsoft announced this week including the end of Astoria, hints about Build, and a lot more. - [Microsoft Cancels Astoria, Lays The Foundation For Build](https://petri.com/microsoft-cancels-astoria-lays-the-foundation-for-build/): Microsoft has announced that they are canceling their Android bridge, Astoria and also gave a few hints about what to expect at Build 2016. - [Rediscover Music with Roon](https://petri.com/rediscover-music-roon/): Learn how you can rediscover your existing music with Roon, which promises to transform files and streams into a music collection that can be enjoyed from anywhere. - [Microsoft Stands With Apple Against the FBI](https://petri.com/microsoft-stands-with-apple-against-the-fbi/): Microsoft has stated that they support Apple in their fight against the FBI to keep data on an iPhone secure and not build a backdoor into the software. - [Current Status Episode 37: Networking in the Future! with Tom Hollingsworth](https://petri.com/current-status-networking-in-the-future-tom-hollingsworth/): Join us Thursday, February 25, 2016 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Tom Hollingsworth (@networkingnerd), aka Networking Nerd! - [Microsoft’s Outlook.com Premium Is Free With Office 365](https://petri.com/microsofts-outlook-premium-is-free-with-office-365/): Microsoft is testing out a premium version of their Outlook.com email service and now we have a few more details about the features that are included. - [HP Partially Blames Free Windows 10 for PC Shortfall](https://petri.com/hp-partially-blames-free-windows-10-for-pc-shortfall/): HP Inc. ---the part of the newly split firm that sells PCs, printers and other hardware devices--reported financial results for... - [The Enterprise Agenda: The Cost Of Doing Nothing Is Agility, Velocity, And Lost Functionality](https://petri.com/the-enterprise-agenda-the-cost-of-doing-nothing-is-agility-velocity-and-lost-functionality/): In the world of IT, if you are not moving forward, you are falling behind and it can cost you more than money if you wait too long. - [Microsoft has acquired Xamarin](https://petri.com/microsoft-has-acquired-xamarin/): Microsoft has announced that they have acquired Xamarin, a development platform that works well for building mobile applications. - [Office 365 Updates and Improvements: February 2016 Edition](https://petri.com/office-365-updates-improvements-february-2016/): Microsoft has released several updates for its Office 365 platform this month including improvements for SharePoint and OneDrive. - [Microsoft Exec Testifies That Legal Conflicts Are Undermining Tech Gains](https://petri.com/microsoft-exec-testifies-that-legal-conflicts-are-undermining-tech-gains/): Microsoft President and Chief Legal Officer Brad Smith testified ahead of a U. S. Congressional hearing this week that conflicting... - [Windows 10 Tip: Change Network Profile](https://petri.com/windows-10-tip-change-network-profile/): In today's Ask the Admin, I'll show you how to change the network profile for your Ethernet or Wi-Fi connection in Windows 10 from Public to Private. - [Bill Gates Raises Important Questions About Apple in iPhone Terrorism Case](https://petri.com/bill-gates-backs-the-fbi-in-iphone-terrorism-case/): Despite a later and half-hearted expression of disappointment, Microsoft co-founder Bill Gates has indeed taken the side of the U.... - [HoloLens Clicker Peripheral Will Make It Easier To Interact With Holograms](https://petri.com/hololens-clicker-peripheral-will-make-it-easier-to-interact-with-holograms/): Microsoft's upcoming Hololens will support a Bluetooth clicker that will make interacting with Holograms easier. - [Microsoft Is Changing How App Reviews Are Managed And Displayed](https://petri.com/microsoft-is-changing-how-app-reviews-are-managed-and-displayed/): Microsoft is making changes to how Windows store app reviews will be displayed and offers advice if your app is not found when searched. - [Free Active Directory Tool for Preventing Insider Misuse](https://petri.com/free-active-directory-tool-for-preventing-insider-misuse/): Learn about a free Active Directory tool to help prevent insider misuse and security breaches within your organization.  - [Improvements to Azure AD Connect, Plus Reasons to Upgrade to Latest Version](https://petri.com/improvements-azure-ad-connect-plus-reasons-upgrade-latest-version/): Learn what's new in Azure AD Connect 1.1, plus reasons why you should upgrade to the latest version. - [With Microsoft a No-Show at Mobile World Congress, Partners Step Up](https://petri.com/with-microsoft-a-no-show-at-mobile-world-congress-partners-step-up/): has only a minimal presence at Mobile World Congress this week and will not make any formal announcements. Instead, it... - [HP’s New Windows Phone Is A Continuum Powerhouse, The Future Of The Mobile Office](https://petri.com/hps-new-windows-phone-is-a-continuum-powerhouse-the-future-of-the-mobile-office/): HP has a new Windows phone but this device is designed for Continuum and has new peripherals that can make this phone, the only computing device your office needs. - [What is Microsoft Project Centennial?](https://petri.com/microsoft-project-centennial/): In today's Ask the Admin, learn about Microsoft Project Centennial and how it will change the way . NET and... - [Display Memory Usage with PowerShell](https://petri.com/display-memory-usage-powershell/): Learn how to display memory usage with PowerShell and divide the workload between data gathering and data formatting. - [The Sams Report EP 28: Sleeping Beauty Rests and MWC Hype](https://petri.com/the-sams-report-ep-28-sleeping-beauty-rests-and-mwc-hype/): On this episode, I cover the all the news that Microsoft announced this week including an the updates for the... - [Paul Thurrott's Short Takes: iPhone Encryption Special Edition](https://petri.com/paul-thurrotts-short-takes-iphone-encryption-special-edition/): Because I'm of an encrypted mind, this edition of Short Takes focuses on this week's big tech controversy: A US... - [Current Status Episode 36: Exchange 2016, the Last Episode? with Gareth Gudger](https://petri.com/current-status-episode-36-exchange-2016-the-last-episode-with-gareth-gudger/): Join us for another episode of Current Status, where co-hosts Theresa Miller and Phoummala Schmitt talk Exchange 2016 with Gareth Gudger. - [Custom Archiving in PowerShell 5.0](https://petri.com/custom-archiving-powershell-5-0/): Discover how to create a custom archive in PowerShell 5.0 that includes folders and files. - [Getting The Most Out of Office 365: Working with Mobile Apps](https://petri.com/getting-office-365-working-mobile-apps/): How can you get the most out of Office 365 using mobile apps on iOS, Android, and Windows Mobile? - [Microsoft’s Azure Container Service Preview Now Available](https://petri.com/microsofts-azure-container-service-preview-now-available/): Microsoft announced that its Azure Container Service preview is now available and lets IT pros deploy and manage containers with several open source tools. - [Microsoft's Next Gen Wireless Display Adapter Coming March 1st](https://petri.com/microsofts-next-gen-wireless-display-adapter-coming-march-1st/): Microsoft has announced its next generation wireless display adapter and it will be available starting in March. - [Overcoming The Challenges Of Availability](https://petri.com/overcoming-the-challenges-of-availability/): Making sure your data is available is not only critical to the operation of your business, but being able to... - [U.S. DOD to Migrate 4 Million Seats to Windows 10 Within One Year](https://petri.com/u-s-department-of-defense-to-migrate-4-million-seats-to-windows-10-within-one-year/): Windows 10 has received its most notable endorsement yet, with the U. S. Department of Defense committing to upgrade 4... - [Configuring the PowerShell Console](https://petri.com/configuring-powershell-console/): PowerShell author Jeff Hicks explains how to make the most of your PowerShell console window including Windows 10. - [Visual Studio 2015 Update 2 CTP and Team Foundation Server 2015 Update 2 RC 1 Now Available To Download](https://petri.com/visual-studio-2015-update-2-ctp-and-team-foundation-server-2015-update-2-rc-1-now-available-to-download/): Microsoft has released a new preview version of Visual Studio 2015 and Team Foundation Server 2015 that are now available for testing. - [Enable Diagnostic Logging in Windows Server 2012 R2 Routing and Remote Access](https://petri.com/enable-diagnostic-logging-in-windows-server-2012-r2-routing-and-remote-access/): Learn how to enable verbose logging in Windows Server 2012 R2 Routing and Remote Access (RRAS). - [A Tip to Free Disk Space in Windows 10](https://petri.com/tip-free-disk-space-windows-10/): Learn how to use Microsoft's Disk Cleanup tool to free disk space in Windows 10. - [A Tale of Two Azures](https://petri.com/a-tale-of-two-azures/): Did you know that there are two versions of Azure? Aidan Finn explains the differences between the two. - [Microsoft's New Business Focused Lumia 650 Lacks Business Features](https://petri.com/microsofts-new-business-focused-lumia-650-lacks-business-features/): Microsoft has quietly announced the Lumia 650, a phone targeted at the business market that lacks key business features from higher-end devices. - [Free Disk Space in Windows 10 by Automating Disk Cleanup](https://petri.com/free-disk-space-in-windows-10-automating-disk-cleanup/): Learn how to free disk space in Windows 10 with this automated approach. - [Paul Thurrott's Short Takes: February 12](https://petri.com/paul-thurrotts-short-takes-february-12/): Because I'm tired of the FUD, this edition of Short Takes focuses on a coming firmware fix for Surface Book... - [The Sams Report EP 27: iOS Only Apps, Sleepy Surface Wakes Up, And A Preview](https://petri.com/70297-2/): On this episode, it's time to talk seriously about why Microsoft is only build iOS apps, new preview ring and a lot more. - [Creating Colorful Emails with PowerShell](https://petri.com/creating-colorful-emails-with-powershell/): PowerShell expert Jeff Hicks revisits how to colorize PowerShell output and this times mails it in with HTML and XML. - [Getting the Most Out of Office 365: Which Tool is the Best for My Team?](https://petri.com/getting-office-365-tool-best-team/): Office 365 offers a few tools to improve working in a team. While Yammer Groups and Office 365 Groups are similar, they suit different types of teams. - [Microsoft Creates Clever Advertisement For Its Machine Learning Capabilities, Dog Detection](https://petri.com/microsoft-creates-clever-advertisement-for-its-machine-learning-capabilities-dog-detection/): Microsoft has created a unique service that shows off its machine learning capabilities by being able to identify a breed of dog. - [Microsoft's Android Assault Continues as Acer Signs On](https://petri.com/microsofts-android-assault-continues-acer-signs/): Microsoft signed a partnership with Acer that will see Office and other apps preinstalled on the device maker's phones and... - [Deciphering Microsoft’s Branches, Rings, And All The Other Things](https://petri.com/deciphering-microsofts-branches-rings-and-all-the-other-things/): Branches, rings, and flights are all terms that Microsoft uses to describe processes for software graduation. - [PowerShell Problem Solver: Finding Duplicate Commands](https://petri.com/powershell-problem-solver-finding-duplicate-commands/): PowerShell expert Jeff Hicks demonstrates how to find duplicate commands in PowerShell and how avoid problems. - [Join Windows Server 2016 Nano to a Domain](https://petri.com/join-windows-server-2016-nano-domain/): Learn how to add Windows Server 2016 Technical Preview 4 Nano Server to an Active Directory domain using the Offline Domain Join (djoin) tool. - [Russia Dials Up the Crazy, Wants to "Ban" Windows](https://petri.com/russia-dials-crazy-wants-ban-windows/): Following in the august footsteps of China, Russia is the latest totalitarian state that is publicly seeking to "ban" Microsoft... - [Your First 30 Minutes in PowerShell](https://petri.com/first-30-minutes-powershell/): PowerShell expert trainer Jeff Hicks offers suggestions on how to spend your first 30 minutes with PowerShell. Don't grab a book, open the console. - [Windows 10 Update Hub Makes It Easier To Find Release Notes](https://petri.com/microsoft-10-update-hub-makes-it-easier-to-track-patches/): Microsoft has released a new website that makes it easier to find Windows 10 update notes. - [Windows 10 Tip: Disable Fast Startup](https://petri.com/windows-10-tip-disable-fast-startup/): Learn about what fast startup is in Windows 10 and how to disable it. - [Developer Ports iOS Game To Windows In 5 Minutes](https://petri.com/developer-ports-ios-game-to-windows-in-5-minutes/): A developer has shown how you can port a game from iOS to Windows in under five minutes using the Island Wood bridge. - [Performance Results of Aggregating Standard Azure Disks](https://petri.com/performance-results-of-aggregating-standard-azure-disks/): Aidan Finn performs several different tests to determine performance of aggregating standard data disks in Microsoft Azure. - [Azure Portal Reaches General Availability](https://petri.com/azure-portal-reaches-general-availability/): Russell Smith looks at how the new Azure portal changes the way apps are deployed in the cloud. - [The Microsoft Mobile Strategy In The Face Of Reality](https://petri.com/microsoft-mobile-strategy-in-face-of-reality/): Microsoft has been forced to radically change its mobile strategy because it could not gain any sizable market share. - [Formatting Messages in Slack](https://petri.com/formatting-messages-slack/): In today's Ask the Admin, Russell Smith shows us how to format messages in Slack to make channel feeds easier to read. - [Using The Biggest Virtual Machine in Microsoft Azure's Cloud](https://petri.com/using-the-biggest-virtual-machine-in-microsoft-azures-cloud/): Aidan Finn plays with the biggest virtual machine in Microsoft Azure, the GS5, and explains the cost and performance implications for using it. - [Paul Thurrott's Short Takes: February 5](https://petri.com/paul-thurrotts-short-takes-february-5/): Because it was Brad's fault, this edition of Short Takes focuses on John Roberts sells Microsoft short, gamers embrace Windows... - [Getting The Most Out Of Office 365: The Easy First Steps](https://petri.com/getting-the-most-out-of-office-365-some-easy-first-steps/): Learn some practical first tips for getting the most out of Office 365 for your organization. - [Building a PowerShell Console Menu Revisited, Part 2](https://petri.com/building-powershell-console-menu-revisited-part-2/): PowerShell scripter Jeff Hicks completes his exploration of building PowerShell menu oriented scripts by exporting and importing XML. - [Simplified Azure Site Recovery for VMware vSphere](https://petri.com/simplified-azure-site-recovery-vmware-vsphere/): Aidan Finn explains how Microsoft is simplifying Azure Site Recovery for vSphere, which should make Microsoft's DR site in the... - [Microsoft Outlines Edge Development Objectives For 2016](https://petri.com/microsoft-outlines-edge-development-objectives-for-2016/): For 2016, Microsoft has released a road map outlining the development priorities for the browser for the upcoming calendar year. - [Creating Active Directory OUs with PowerShell](https://petri.com/creating-active-directory-ous-powershell/): Learn how easy it is to create Active Directory Organizational Units with PowerShell and why you might want to use PowerShell. - [Windows 10 Business Adoption Rate Nearly Doubles Windows 8, But Is That Any Good?](https://petri.com/windows-10-enterprise-adoption-rate-nearly-doubles-windows-8-but-is-that-any-good/): A new report out states that, based on their sample data, adoption rate of Windows 10 is nearly twice as fast as that of Windows 8. - [Getting The Most Out Of Office 365: What Is Delve?](https://petri.com/getting-the-most-out-of-office-365-what-is-delve/): Joseph Finney provides an overview on Office 365's Delve, which helps organizations discover important documents for better collaboration and productivity. - [Microsoft Acquires Software Keyboard Maker SwiftKey](https://petri.com/microsoft-acquires-software-keyboard-maker-swiftkey/): Microsoft announced last night that it has acquired SwiftKey, makers of the most popular software keyboard for devices. The software... - [Microsoft’s New Hololens Demo Provides A Realistic POV](https://petri.com/microsofts-new-hololens-demo-provides-a-realistic-pov-experience/): Microsoft has teamed up with the NFL to show what the future of watching games could be like but they also provide a new realistic POV too. - [Feeling Pressure From Slack And Facebook, Yammer Now On By Default for Some Office 365 Users](https://petri.com/feeling-pressure-from-slack-and-facebook-yammer-now-on-by-default-for-some-office-365-users/): Microsoft is getting more aggressive with Yammer and is turning it on for all Office 365 customers who meet the basic requirements. - [Add PowerShell to Windows Explorer Context Menu in Windows 10](https://petri.com/add-powershell-windows-explorer-context-menu-windows-10/): Here's a quick tutorial on how to add PowerShell to the Windows Explorer context menu in Windows 10. - [Google Financial Results Beat Estimates](https://petri.com/google-financial-results-beat-estimates/): Google umbrella Alphabet announced its first-ever consolidated earnings report, with the firm beating expectations. But investors were perhaps most excited... - [Microsoft Opens Registration for Ignite](https://petri.com/microsoft-opens-registration-for-ignite/): Microsoft has opened the doors for Ignite registration, a conference that will be taking place in Atlanta this fall. - [Getting The Most Out Of Office 365: Getting A Handle On Skype for Business](https://petri.com/getting-office-365-getting-handle-skype-business/): Skype for Business is Microsoft's premier communication tool that can replace your PBX and messaging systems with one integrated tool. - [Microsoft Flips the Switch, Windows 10 Is Now A ‘Recommended’ Update](https://petri.com/microsoft-flips-the-switch-windows-10-is-now-a-recommended-update/): Microsoft has flipped the switch and made Windows 10 a recommended update for Windows 7 and 8.1 users. - [Microsoft Brings FastTrack Services To Small Businesses](https://petri.com/microsoft-brings-fasttrack-services-to-small-businesses/): Microsoft has announced that they will be expanding their Office 365 FastTrack program to small businesses with 50 seats or more. - [Why Learn PowerShell?](https://petri.com/why-learn-powershell/): Have you been avoiding learning PowerShell? Author and expert Jeff Hicks shares his views on what you are missing and why you should learn PowerShell. - [Windows Phone: Wanted Dead or Alive](https://petri.com/windows-phone-wanted-dead-alive/): Following the release of Microsoft's Q2 2016 fiscal year earnings, Windows Phone has apparently been proclaimed dead... again. - [IDC: Tablet Sales Fell 10 Percent in 2015](https://petri.com/idc-tablet-sales-fell-10-percent-in-2015/): Sales of tablets fell 10 percent in 2015, and almost 15 percent in the fourth quarter,according to the market researchers... - [Microsoft is Testing the Viability of Underwater Data Centers](https://petri.com/microsoft-is-testing-the-viability-of-underwater-data-centers/): Microsoft is underwater. Literally. The software giant is testing a prototype data center that can operate hundreds of feet below... - [Windows 10 Overtakes Windows XP In Market Share](https://petri.com/windows-10-overtakes-windows-xp-in-marketshare/): Windows 10's marketshare continues to grow as the operating system is now installed on more devices than Windows XP.  - [Sleepless In Seattle: Surface Sleep Bug Remains Elusive](https://petri.com/sleepless-in-seattle-surface-sleep-bug-remains-elusive/): Microsoft's new Surface devices suffer from an annoying sleep issue that the company has yet to fix with no timeline for resolution announced either. - [First Public Preview of Microsoft Azure Stack](https://petri.com/first-public-preview-of-microsoft-azure-stack/): Microsoft has announced the first public preview of Microsoft Azure Stack. Learn about this new service and whether it's right for you. - [The Sams Report EP 26: Phone Woes, Cloud Explosion](https://petri.com/the-sams-report-ep-26-phone-woes-cloud-explosion/): On this episode, I cover the all the news that Microsoft announced this week including their earnings for the company's second quarter and a lot more. - [Windows Phone's Downward Spiral Reaches The Bottom](https://petri.com/microsofts-windows-phone-becomes-a-third-class-citizen/): Microsoft's Windows Phone platform is in serious trouble with sales slumping to a new low and the company openly supporting other platforms. - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (January 2016)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-2/): Because Microsoft just announced its quarterly earnings, this edition of (not so) Short Takes focuses on how well its various... - [Microsoft’s Surface Brand Is Once Again A Billion Dollar Operation](https://petri.com/microsofts-surface-brand-is-once-again-a-billion-dollar-operation/): Microsoft's Surface line of hardware has once again become a billion dollar operation for the company with Q2 results besting that of last year. - [Microsoft's Q2 Beats Estimate, $25.7 Billion in Revenue](https://petri.com/microsofts-q2/): Microsoft has announced their second quarter earnings today (fourth quarter calendar year) and it was healthy period for the company. - [Colorful Information in PowerShell 5.0](https://petri.com/colorful-information-powershell-5-0/): PowerShell MVP Jeff Hicks continues his exploration of the information stream in v5 and demonstrates how to use Write-Host as a wrapper. - [50,000 IOPS with an Azure VM: Is It Possible?](https://petri.com/50000-iops-with-an-azure-vm/): Aidan Finn tests whether it's possible to achieve 50,000 IOPS with a Microsoft Azure VM. - [The Enterprise Agenda: New Opportunities, Advanced Threats](https://petri.com/enterprise-heads-into-the-new-year-with-updated-risks-new-opportunities/): The enterprise has many challenges ahead for 2016 but with proper planning and training, downtime and security alerts should be kept to a manageable state. - [IDC: Device Makers Sold Record 1.4 Billion Smart Phones in 2015](https://petri.com/idc-device-makers-sold-record-1-4-billion-smart-phones-in-2015/): The market researchers at IDC claim that device makers sold 1. 4 billion smart phones in 2015, a record. And... - [Microsoft Expands Co-Authoring Support For Office Online, New Features For Outlook.com](https://petri.com/microsoft-expands-co-authoring-support-for-office-online-new-features-for-outlook-com/): Microsoft has announced new co-authoring support for Office Online and is also expanding the services that can connect with Outlook.com - [PowerShell Problem Solver: Creating Permanent Credentials](https://petri.com/powershell-problem-solver-creating-permanent-credentials/): Discover how easy it is to secure your daily PowerShell work with a persistent credential that you don't have to remember to use. - [Why IT Pros Should Be Using Azure Resource Groups](https://petri.com/why-it-pros-should-be-using-azure-resource-groups/): Have you ever used a resource group in Azure? If you have never consciously used a resource group, then it's time to start reconsidering.  - [Veeam Availability Suite v9 Released](https://petri.com/veeam-availability-suite-v9-released/): Veeam has released their updated availability suite, V9, that has 250 enhancements over the prior version of the software. - [Apple's iPhone Sales Were Flat in Q4 2015](https://petri.com/apples-iphone-sales-were-flat-in-q4-2015/): Apple delivered a knockout punch in its quarterly earnings as always, but warnings about slowing iPhone sales growth did not... - [Microsoft’s PowerBI App Now Available For Desktop And Tablets](https://petri.com/microsofts-powerbi-apps-now-available-for-desktop-and-tablets/): Microsoft has released a new PowerBI app that lets users you to view your data in a touch-friendly environment on your PC. - [Microsoft’s Hybrid Data Center Strategy Takes One Step Forward With Azure Stack TP1](https://petri.com/microsofts-bringing-some-of-the-benefits-of-azure-to-on-prem-deployments/): Microsoft's Azure Stack brings the power of Azure to your local data center and the company will be releasing a technical preview of the software on Friday. - [Configure Operational Insights for Azure Virtual Machines](https://petri.com/configure-operational-insights-for-azure-virtual-machines/): Learn how to quickly set up an OpInsights workspace in your Azure subscription, along with steps on how to deploy the OMS agent to virtual machines. - [More PowerShell Coloring Tips for Domain Controller Statuses](https://petri.com/more-powershell-coloring-tips-domain-controller-statuses/): PowerShell MVP Jeff Hicks shows you how to build an advanced highlighting function that should work for any command. - [Microsoft Announces Earnings This Week, Here’s What To Look For](https://petri.com/microsoft-announces-earnings-this-week-heres-what-to-look-for/): Microsoft will be announcing its earnings this week which will shine a light on how well it is doing with all eyes focused on its cloud growth. - [Building a PowerShell Console Menu Revisited, Part 1](https://petri.com/building-a-powershell-console-menu-revisited-part-1/): PowerShell MVP Jeff Hicks revisits a popular topic about creating PowerShell console based menus for your scripts. - [Troubleshooting Azure VPNs](https://petri.com/troubleshooting-azure-vpns/): Russell Smith shows you how to enable VPN gateway diagnostics and download the resulting logs from Azure storage. - [Microsoft Surface (Wrongly) Blamed for Failure During NFL Playoff Game](https://petri.com/microsoft-surface-wrongly-blamed-for-failure-during-nfl-playoff-game/): Microsoft's Surface tablet was repeatedly called out as the culprit of a technical glitch during the nationally-televised AFC championship football... - [Microsoft Releases List of Skylake Devices Supported On Windows 7](https://petri.com/microsoft-releases-list-of-skylake-systems-supported-on-windows-7/): Last week, Microsoft announced that they would be providing limited support for Windows 7 (and 8.1) machines that are using Skylake. Today, the company is m - [Creating Azure VMs with Premium Storage](https://petri.com/creating-azure-vms-with-premium-storage/): Aidan Finn walks us through on how to create an Azure virtual machine that uses Azure's Premium Storage.  - [Paul Thurrott's Short Takes: January 22](https://petri.com/paul-thurrotts-short-takes-january-22/): This week's other news includes a key remaining question about Microsoft's new Windows support policy for new hardware, Google paid... - [Understanding PowerShell Custom Properties with the Select-Object cmdlet](https://petri.com/understanding-powershell-custom-properties-with-select-object-cmdlet/): PowerShell MVP Jeff Hicks explains how to use hashtables to create new object properties with Select-Object and why you should. - [The Sams Report EP 25: Skylake Meets Surface, Redstone And Xbox Scoops](https://petri.com/the-sams-report-ep-25-skylake-meets-surface-redstone-and-xbox-scoops-2/): On this episode, I cover the all the news that Microsoft announced this week including limited support Xbox news, a new build of Redstone, and a lot more. - [Dropbox Lands In The Windows Store](https://petri.com/dropbox-lands-in-the-windows-store/): Last year, Microsoft announced a partnership with Dropbox that would make it easier for Office 365 users to access the storage service from within Office. A - [Microsoft Places Windows App Hope On iOS Devs And Marketshare](https://petri.com/microsoft-places-windows-app-hope-on-ios-devs-and-marketshare/): Microsoft is pinning its hope to build out its app store on the success of Windows 10 and also Islandwood, a 'bridge' to porting over iOS apps to Windows. - [Current Status Episode 35: Office 365 with J. Peter Bruzzese](https://petri.com/current-status-episode-35-office-365-j-peter-bruzzese/): co-hosts Theresa Miller and Phoummala Schmitt talk with guest J. Peter Bruzzese (@jpbruzzese), Office Servers and Services MVP. - [SharePoint 2016 Release Candidate Now Available For Download](https://petri.com/sharepoint-2016-release-candidate-released/): Yesterday, with little warning or fanfare, Microsoft announced the release of SharePoint Server 2016 Release Candidate (RC). - [Windows 10 Tip: Using the Lumia 950 with Windows Hello](https://petri.com/windows-10-tip-using-the-lumia-950-with-windows-hello/): Russell Smith shares a quick Windows 10 tip for using the Lumia 950 with Windows Hello for increased security. - [Microsoft to Donate $1 Billion in Cloud Capabilities for Non-Profit Organizations](https://petri.com/microsoft-to-donate-1-billion-in-cloud-capabilities-to-expand-usage/): Microsoft announced this week that it will donate $1 billion in "cloud computing resources" over the next five years to... - [Process Monitoring with PowerShell](https://petri.com/process-monitoring-powershell/): PowerShell MVP Jeff Hicks shares his script for watching processes using a WMI event subscription using the CIM cmdlets. - [Color Coding with PowerShell](https://petri.com/color-coding-with-powershell/): PowerShell MVP Jeff Hicks continues his quest to display service statuses in a colorful format. - [Microsoft’s Build Conference Sells Out In One Minute](https://petri.com/microsofts-build-conference-sells-out-in/): Microsoft opened the doors for its Build conference registration today and if you were planning on attending, the event is now sold-out. - [Windows 10 Mobile: 10 Days On the Road with the Lumia 950](https://petri.com/windows-10-mobile-10-days-road-lumia-950/): Russell Smith shares his thoughts on 10 days on the road with Windows 10 Mobile. - [Microsoft Trims Redstone Features To Focus On OneCore and Other Systems](https://petri.com/microsoft-trims-redstone-features-to-focus-on-onecore-and-other-systems/): Microsoft has made significant updates to their internal systems to make compiling new builds of Windows 10 faster. - [Microsoft Buys Minecraft for Education](https://petri.com/microsoft-buys-minecraft-for-education/): Microsoft announced this morning its acquisition of MinecraftEdu, a version of the blockbuster game Minecraft that is built for the classroom. - [Microsoft Azure Prices Coming Down in February](https://petri.com/microsoft-azure-prices-coming-down-in-february/): Microsoft made some positive headlines last week when they announced that some Azure prices would be coming down soon.  - [Easier Deployment of Azure SQL VMs](https://petri.com/easier-deployment-of-azure-sql-vms/): Microsoft is making it much easier for you to deploy SQL Server inside of Azure VMs in the Azure Portal.  - [Microsoft Updates Team Foundation Server and VS Team Services Roadmap](https://petri.com/microsoft-updates-team-foundation-server-and-vs-team-services-roadmap-for-2016/): Microsoft has updated their Team Foundation Server roadmap to highlight the features that will be coming in 2016. - [Microsoft Brings Windows 10 to Retailers](https://petri.com/microsoft-brings-windows-10-to-retailers/): While most people associate Windows with personal computing devices such as PCs, tablets, and phones, Microsoft is of course bringing... - [Microsoft Shares New Details On HoloLens: Up to 5.5 Hour Battery Life, Device Link And More](https://petri.com/microsoft-shares-new-details-on-hololens-up-to-5-5-hour-battery-life-device-link-and-more/): New details about Microsoft's upcoming Hololens have been announced at an event in Tel Aviv that include battery life, connectivity and more. - [Create an Azure Premium Storage Account](https://petri.com/create-an-azure-premium-storage-account/): Aidan Finn shows us how to create an Azure Premium Storage Account, along with steps for deploying necessary storage for virtual machines. - [Microsoft Announces Limited Support For Windows 7 With Skylake CPUs](https://petri.com/microsoft-announces-limited-support-for-windows-7-with-skylake-cpus/): Microsoft has announced that if you are planning to run Windows 7 on a Skylake CPU, there will be limited support for new machines. - [Paul Thurrott's Short Takes: January 15](https://petri.com/paul-thurrotts-short-takes-january-15/): This week: Microsoft's share of the enterprise cloud, the missing Windows 7 convenience rollup, Microsoft's iOS porting tools move forward,... - [Windows 10 Tip: Use Cortana to Send Text Messages and Receive Missed Call Notifications](https://petri.com/windows-10-tip-use-cortana-to-send-text-messages-and-receive-missed-call-notifications/): In today's Ask the Admin, Russell Smith shows us how to send text messages using Cortana in Windows 10. - [The Sams Report EP 24: Windows 10 Gets A New ARM, Windows 8 Says Goodbye](https://petri.com/the-sams-report-ep-24-windows-10-gets-a-new-arm-windows-8-says-goodbye/): On this episode, I cover the all the news that Microsoft announced this week including how the company is working to speed up the adoption of Windows 10. - [Microsoft To Support ARM64 ‘Across All Device Categories’ With Redstone](https://petri.com/microsoft-to-support-arm64-across-all-device-categories-with-redstone/): Later this year, Microsoft will be releasing a new update for Windows 10 called Redstone and it is said to enable ARM64 support. - [Microsoft Continues To Chase Amazon In The Race To The Bottom Of The Cloud](https://petri.com/microsoft-continues-to-chase-amazon-in-race-to-the-bottom-of-the-cloud/): Microsoft has announced a price reduction for some of its Azure services, which mirror a recent price drop by Amazon. - [Getting the Most Out of Office 365: Working in OneDrive for Business](https://petri.com/getting-office-365-working-onedrive-business/): Learn how Office 365's OneDrive for Business can boost employee productivity with its collaboration tools for the cloud. - [What is GitHub?](https://petri.com/what-is-github/): Learn about the Git version control system (VCS) and the cloud GitHub service. - [Windows 10 Desktop On ARM Discovered in Microsoft Documentation](https://petri.com/windows-10-desktop-for-arm-is-in-development/): Thanks to documentation spotted on Microsoft's website, it looks like the company has built a version of Windows 10 that runs on ARM chips. - [Microsoft’s Next Aggressive Windows 10 Step Focuses on Domain Joined Machines](https://petri.com/microsofts-next-aggressive-windows-10-step-focuses-on-domain-joined-machines/): Microsoft's next step in getting users to upgrade to Windows 10 will focus on domain joined machines. - [More Answers to Your PowerShell Problems: Using and Extending Objects](https://petri.com/answers-powershell-problems/): PowerShell MVP Jeff Hicks continues his exploration of using and extending objects to solve a scripting challenge. - [The Open Source Community Can Now Help Improve Microsoft Edge](https://petri.com/the-open-source-community-can-now-help-improve-microsoft-edge/): Microsoft has posted its ChakraCore repository to GitHub which means that anyone in the open source community can contribute code to the engine. - [Microsoft’s Build 2016 Registration Opens January 19th](https://petri.com/microsofts-build-2016-registration-opens-january-19th/): Microsoft has announced that registration for its Build 2016 conference will open up on January 19th at 9 AM and the event will likely sell out quickly. - [IDC: PC Sales Experienced Record Decline in 2015 As Expected](https://petri.com/idc-pc-sales-experienced-record-decline-in-2015-as-expected/): Despite a modest improvement in the fourth quarter, PC sales in 2015 met expectations and delivered the largest year-over-year decline... - [Microsoft Announces R Server And R Server Developer Edition](https://petri.com/microsoft-announces-r-server-and-r-server-developer-edition/): Microsoft has announced a new product for the company, Server R, which is a re-branding of  Revolution R Enterprise for Hadoop, Linux and Teradata. - [Performance Improvements in Azure Backup](https://petri.com/performance-improvements-in-azure-backup/): Azure Backup is finally starting to generate interest among SMEs, thanks to the slew of recent improvements that were driven by customer feedback. - [Microsoft Ends Support For Its Divisive OS, Windows 8](https://petri.com/microsoft-ends-support-for-its-divisive-os-windows-8/): WIndows 8 support is coming to an end which marks the closure of an era for an operating system that cost two executives their jobs. - [Getting Started with the PowerShell 5.0 Information Stream](https://petri.com/getting-started-powershell-5-0-information-stream/): Learn how to leverage the PowerShell 5.0 information stream, which lets serves as a logging mechanism for scripts and functions. - [Understand Your Microsoft Azure Spending](https://petri.com/understand-your-microsoft-azure-spending/): Learn how to better understand your Microsoft Azure spending with these quick tips from Aidan Finn. - [Windows 10 Tip: Sharing in Windows Store Apps](https://petri.com/windows-10-tip-sharing-windows-store-apps/): Here's a quick tip for working in Windows 10: Learn how to easily share information in Windows Store apps. - [About 20% of Internet Explorer Users Will Be Using Unsupported Software Starting This Week](https://petri.com/nearly-20-of-internet-explorer-users-will-be-using-unsupported-software-starting-this-week/): Microsoft is ending support for Internet Explorer 8, 9, and 10 which means that no additional security patches will be released. - [Satya Nadella to Attend U.S. State of the Union Address](https://petri.com/satya-nadella-to-attend-u-s-state-of-the-union-address/): Microsoft CEO Satya Nadella has been awarded a rare honor with an invitation to attend U. S. President Barack Obama's... - [Windows 10 Tip: Working with RAW Image Files](https://petri.com/windows-10-tip-working-raw-image-files/): Learn quick tips and tricks for working with RAW image files in Windows 10, along with a list of useful applications for opening and editing image files. - [What is Azure Premium Storage?](https://petri.com/azure-premium-storage/): Learn all about Azure Premium Storage, along with how this shared-SSD flash storage behaves with IaaS virtual machines. - [The Sams Report EP 23: Lumia 650 Goodness, WIndows 10 Hoopla and CES](https://petri.com/the-sams-report-lumia-650-goodness-windows-10-hoopla-and-ces/): On this episode, I cover the the major new milestone that Windows 10 crossed, some insider info about the Lumia 650 and all of the new Windows devices. - [Paul Thurrott's Short Takes: January 8](https://petri.com/paul-thurrotts-short-takes-january-8/): Because it's my New Years resolution, this week's other news includes tech empires striking back against terrorism, Microsoft's "renewed partnership"... - [CES 2016: Dell Brings The Excellent XPS 13 To The Business World](https://petri.com/ces-2016-dell-brings-its-excellent-xps-13-to-the-business-world/): Dell has announced that it is bringing a variant of its XPS 13 to the business world under the name of the Latitude 7370 and it will ship in March. - [Using PowerShell's Storage Cmdlets to Query the System Drive](https://petri.com/using-powershells-storage-cmdlets-to-query-system-drive/): Learn how to use the PowerShell storage cmdlets to discover information about system drives. - [Deploy VMs Using Azure Resource Manager](https://petri.com/deploy-vms-using-azure-resource-manager/): Learn how to deploy cloud apps quickly across multiple regions using Azure Resource Manager. - [The Answer to Your PowerShell Question: Working with Objects](https://petri.com/answer-powershell-question-object/): PowerShell MVP Jeff Hicks teaches you how to use objects in the pipeline to solve a scripting challenge. - [Getting the Most Out of Office 365: An Overview of Yammer](https://petri.com/getting-office-365-overview-yammer/): Here's a broad overview of how to get the most out of Office 365 and the Yammer enterprise social network for better productivity in the workplace. - [CES 2016: Hands On With HP's New Business Machine Lineup](https://petri.com/ces-2016-hands-on-with-hps-new-business-machine-lineup/): HP has announced several new machines for its business class customers and Brad Sams has gotten his hands on the new devices. - [China Still Has "Major Problems" with Microsoft in Antitrust Case](https://petri.com/china-still-has-major-problems-with-microsoft-in-antitrust-case/): China is not satisfied with Microsoft's response to its ongoing antitrust investigation. And it has requested that the software giant... - [A Quick Guide to SQL Server 2005 End of Support](https://petri.com/quick-guide-sql-server-2005-end-of-support/): Aidan Finn shows us a quick guide to SQL Server 2005 end of support, complete with tips and considerations for mapping out a migration or upgrade. - [CES 2016: Microsoft Partners on Smart Car Technologies](https://petri.com/ces-2016-microsoft-partners-on-smart-car-technologies/): Hoping to catch up to rivals such as Apple and Google, Microsoft today announced multiple partnerships with automotive companies aimed... - [Moving to PowerShell 5.0](https://petri.com/moving-powershell-5-0/): PowerShell MVP Jeff Hicks makes the jump to PowerShell 5.0 and explains why you should too. - [On Board Servers to Azure Operational Insights](https://petri.com/on-board-servers-to-azure-operational-insights/): Learn how to manually install the Operations Management Suite (OMS) agent on your servers and connect them to an OpInsights workspace. - [Essential Learning for IT Pros in 2016](https://petri.com/essential-learning-for-it-pros-in-2016/): Aidan Finn shares his thoughts on what he believes to be essential learning for IT pros in 2016 in the Microsoft ecosystem. - [Surface Book Headed To 10 New Markets, Pre-Orders Starting Tomorrow](https://petri.com/surface-book-headed-to-10-new-markets-pre-orders-starting-tomorrow/): Microsoft is about to expand the Surface Book availability to 10 new markets with pre-orders opening up tomorrow. - [Windows Store Sees Strong Revenue Growth On The Back Of Windows 10](https://petri.com/windows-store-sees-strong-revenue-growth-on-the-back-of-windows-10/): Microsoft's Windows Store is seeing new signs of life with increased activity from developers and consumers are buying more apps too. - [Windows 10 Passes 200 Million Monthly Active Devices](https://petri.com/windows-10-passes-200-million-monthly-active-devices/): Windows 10 is now installed on more than 200 million devices with 22 million devices in the enterprise and education sector running the platform. - [Getting the Most Out of Office 365: Using Office 365 Groups](https://petri.com/getting-the-most-out-of-office-365-using-office365-groups/): Microsoft has been building enterprise email services for decades now and while the GUI around them has changed, the experience... - [Microsoft to Warn Users of Governmental Hacks](https://petri.com/microsoft-to-warn-users-of-governmental-hacks/): Microsoft on Thursday announced that it will alert users of its consumer cloud services---Outlook. com, OneDrive and so on---when it... - [DevOps Predictions for 2016](https://petri.com/devops-predictions-for-2016/): Blair Kellerhals outlines Jumpcloud's Rajat Bhargava's DevOps predictions for 2016, which include a shift toward containers and much more. - [Microsoft's 2016: More Hardware, Software and Cloud](https://petri.com/microsofts-2016-more-hardware-software-and-cloud/): It’s hard to believe that 2015 is now behind us, which means that with a new year, it's time to take a look at what Microsoft is planning for 2016.  - [Paul Thurrott's Short Takes: December 30 2015](https://petri.com/paul-thurrotts-short-takes-december-30/): Because auld acquaintance should never be forgot, this (short) week's other news includes Microsoft encryption news from the past, Microsoft... - [PowerShell 5.0 Tutorial: Working with Zip Files](https://petri.com/powershell-5-0-tutorial-working-with-zip-files/): PowerShell MVP Jeff Hicks takes a look at the new Compress-Archive cmdlet in PowerShell 5.0. - [Implementing Storage Spaces Inside Azure Virtual Machines](https://petri.com/implementing-storage-spaces-inside-azure-virtual-machines/): Aidan Finn shows us how to implement Storage Spaces inside a Windows Server 2012 R2 Azure virtual machine to aggregate the capacity and performance potential of multiple data disks. - [Cisco To Audit Code In Wake Of Juniper Backdoor Announcement](https://petri.com/cisco-to-audit-code-in-wake-of-juniper-backdoor-announcement/): Cisco has said that they will audit their own code to make sure that it is free of back-door holes that would weaken the effectiveness of their products. - [Welcome To The New Petri](https://petri.com/welcome-to-the-new-petri/): The Petri IT Knowledgebase has a brand new design with an optimized backend that makes the site faster to load and easier to navigate. - [A Free Tool for Recovering Lost Product Keys for Windows 10, Windows Server 2012 R2](https://petri.com/free-tool-recovering-lost-product-keys-windows-10-windows-server-2012-r2/): Here's a free tool to help IT administrations recover the product key for Windows 10, Windows Server 2012 R2, Microsoft Office, Microsoft Exchange, and more. - [The Role of Azure Virtual Machine Data Disks, Plus Tips on Sizing Disks for Capacity](https://petri.com/azure-virtual-machine-data-disks/): Aidan Finn provides an overview on the role of Azure virtual machine data disks, along with some helpful tips for sizing data disks for capacity. - [Microsoft in 2015: Two Steps Forward, One Step Back](https://petri.com/microsoft-in-2015-two-steps-forward-one-step-back/): 2015 was a watershed year for Microsoft, with many notable product releases and updates. But Microsoft's 2015 was in turn... - [Getting The Most Out Of Office 365: What Can Do What?](https://petri.com/68742-2/): Office 365 has a plethora of tools under the brand name and to help clear up what each product offers, I have created an easy to understand chart. - [Install Nano Server in Microsoft Azure](https://petri.com/install-nano-server-microsoft-azure/): Russell Smith walks us through some quick steps on how to install Nano Server in Microsoft Azure with the Windows Server 2016 Technical Preview 4. - [Nutanix Files for Initial Public Offering](https://petri.com/nutanix-files-for-initial-public-offering/): Nutanix announced on Wednesday that it intends to go public and raise $200 million to help it drive new sales and build out its products. - [Paul Thurrott's Short Takes: December 23 2015](https://petri.com/paul-thurrotts-short-takes-december-23/): This (short) week's other news includes LG stealing the Surface ad, Google and Ford partnering on driverless cars, and Google's... - [PowerShell Problem Solver: Process Performance Reporting](https://petri.com/powershell-problem-solver-process-performance-reporting/): PowerShell MVP Jeff Hicks shows how to build a custom performance object and shares tips on measuring performance through reporting. - [Microsoft Raises The Price Of The Surface Hub, Delays Release Date Again](https://petri.com/microsoft-is-raising-the-price-of-the-surface-hub/): Microsoft has raised the price of the Surface Hub and has announced yet another delay for existing preorders. - [Getting the Most Out of Office 365: Outlook on the Web](https://petri.com/getting-the-most-out-of-office-365-outlook-on-the-web/): Joe Finnely shares a few insights on collaborative features and functionality in Office 365's Outlook on the Web to make email more productive. - [Apple Comes Out Firing Against Encryption Backlash](https://petri.com/apple-comes-out-firing-against-encryption-backlash/): Under increasing political pressure because of its controversial policy of automatically encrypting new iPhones and other devices, Apple has gone... - [Hyper-V Predictions for 2016](https://petri.com/hyper-v-predictions-for-2016/): Here we are, counting down the days and hours to 2016, and it is time for Aidan Finn to make some Hyper-V predictions for 2016. - [NetApp To Purchase Solid State Storage Start-Up SolidFire](https://petri.com/netapp-to-purchase-solid-state-storage-start-up-solidfire/): NetApp, Inc. on Monday announced its intent to acquire the Boulder, Colorado based all-flash array (AFA) vendor SolidFire, for $870 million in cash. - [Opinion: Kite-Flying is Tarnishing Microsoft's Reputation](https://petri.com/kite-flying-tarnishing-microsofts-reputation/): Aidan Finn takes a look at how Microsoft is employing kite-flying marketing tactics and describes how it's backfiring for the technology giant. - [Microsoft Inks 20th Acquisition For the Year After Buying Talko](https://petri.com/microsoft-inks-20th-acquisition-for-the-year-after-buying-talko/): Microsoft has announced that it has acquired Talko, a mobile communication tool, and that it will be integrated into Skype. - [Delegating Admin Rights in Microsoft Azure](https://petri.com/delegating-admin-rights-in-microsoft-azure/): Learn how to delegate admin rights in Azure with some helpful tips on how to implement role-based access control (RBAC). - [2015 Was A Record Year For Microsoft Acquisitions](https://petri.com/for-2015-it-was-a-record-year-for-microsoft-acquisitions/): It was a record year for Microsoft acquisitions, the company bought 18 different business that include a new email app and big data management tools. - [Toshiba to Lose $5.4 Billion in 2015, Shed 7,800 Jobs](https://petri.com/toshiba-to-lose-5-4-billion-in-2015-shed-7800-jobs/): Toshiba announced this morning that it will likely post a record $5. 4 billion loss for fiscal 2015 as an... - [A Tip for Writing Better Scripts with PowerShell's Read-Host cmdlet](https://petri.com/tip-writing-better-script-powershell-read-host-cmdlet/): PowerShell MVP Jeff Hicks shares a new command that adds functionality to PowerShell's Read-Host cmdlet to help you make better scripts. - [Windows 10 Tip: Configure Windows Spotlight and the Sign-In Screen](https://petri.com/windows-10-tip-configure-windows-spotlight-and-the-sign-in-screen/): Russell Smith shows how to set the Windows 10 lock screen to use Windows Spotlight, and disable the Windows Hero image on the sign-in screen. - [Juniper Finds Backdoor Exposing Encrypted VPN Traffic](https://petri.com/juniper-finds-backdoor-exposing-encrypted-vpn-traffic/): Juniper Network’s NetScreen firewalls contains an unauthorized backdoor allowing third parties to potentially monitor encrypted VPN traffic. - [The Sams Report EP 22: A Taste Of Redstone, A Scoop for OneDrive](https://petri.com/68671-2/): On this episode, I cover the new build of Redstone, a new cadence of the Insider builds and a scoop about a new feature coming to OneDrive. - [Paul Thurrott's Short Takes: December 18](https://petri.com/paul-thurrotts-short-takes-december-18/): Because I'm always jolly, this week's other news includes Microsoft's over-insistent efforts to get customers upgraded to Windows 10, a... - [Domain Controller Status Lights via PowerShell](https://petri.com/domain-controller-status-lights-via-powershell/): Sometimes you need to display PowerShell information in a more colorful format. Learn how to display domain controller service statuses that light up. - [Using Office Mobile Apps With Continuum Will Require Office 365 Subscription](https://petri.com/using-office-mobile-apps-with-continuum-will-require-office-365-subscription/): Microsoft's Office mobile apps will require an Office 365 subscription if you want to use them with Continuum on Windows 10 Mobile. - [In Defense of the Server GUI](https://petri.com/in-defense-server-gui/): The role of the GUI in Windows Server has been under attack. Aidan Finn explains why he and customers do not accept the dogma. - [Surface Hub Gets A Few Unique Cortana Commands, User Guide Released](https://petri.com/surface-hub-will-be-released-soon-company-posts-up-user-guide/): Starting next month, Microsoft will begin shipping its Surface Hub and to help you get started, a new user guide has been released. - [Microsoft Partnership Will Bring Windows 10 to Governments in China](https://petri.com/microsoft-partnership-will-bring-windows-10-to-governments-in-china/): Microsoft has announced a joint venture that will sell and service Windows 10 in China's governmental agencies and certain state... - [Microsoft Brings Back Unlimited OneDrive Storage, Only For Some Business Accounts](https://petri.com/microsoft-brings-back-unlimited-onedrive-storage-only-for-some-business-accounts/): Microsoft is updating its OneDrive storage options for its business customers that features unlimited capacity for each user who are... - [PowerShell Problem Solver: Process Performance Counters](https://petri.com/powershell-problem-solver-process-performance-counters/): Get processes using the most CPU with PowerShell and performance counters. - [Microsoft Announces Expansion of Corporate Philanthropy](https://petri.com/microsoft-announces-expansion-corporate-philanthropy/): Microsoft this week announced plans to expand its corporate philanthropy globally, and to the people who really need it. It... - [Microsoft Delivers Yet Another Sour Windows 10 Update, This Time For Mobile](https://petri.com/microsoft-delivers-yet-another-sour-windows-10-update-this-time-for-mobile/): Microsoft has pulled another Windows 10 update because of issues impacting customers trying to install the files on their mobile devices. - [Why Uber Isn’t the Savior of Microsoft’s Universal Windows App Platform](https://petri.com/uber-isnt-savior-microsofts-universal-windows-app-platform/): As a Windows Phone user, Russell Smith suffered the ultimate humiliation of being forced to ask a friend to register a bank card in Uber using Android.  - [Getting The Most Out Of Office 365, Part 1: Who Can See What?](https://petri.com/getting-the-most-out-of-office365-part-1-who-can-see-what/): Learn how to get the most out of Office 365 by understanding who in the organization can see what. - [Comparing Azure Active Directory Editions](https://petri.com/comparing-azure-active-directory-editions/): What is Azure Active Directory, and what are the features? Here's a feature comparison for the free, basic, and premium editions of Active Directory in the cloud. - [Samsung Appeals Apple Patent Loss to Supreme Court](https://petri.com/samsung-appeals-apple-patent-loss-to-supreme-court/): Samsung on Monday took the final legal step it can take before being forced to pay Apple almost $550 million... - [Windows Store Begins To Show Signs Of New Life](https://petri.com/windows-store-begins-to-show-signs-of-new-life/): Microsoft's Windows Store is starting to show signs of new life after the feature was largely ignored by big name developers with Windows 8. - [Microsoft’s Changed Opinion on Hyper-Convergence](https://petri.com/microsofts-changed-opinion-hyper-convergence/): Read how Microsoft's view and recommendations on hyper-convergence have changed over the last year with the evolution of Storage Spaces Direct (S2D). - [Windows 10 Install Prompt On Windows 7/8 Is Unnecessary Nagware](https://petri.com/microsofts-windows-10-install-prompt-on-windows-78-is-reminiscent-of-malware/): The Windows 10 install prompt that is showing up for Windows 7 and 8 users is borderline malware. - [Prompt Answers in PowerShell](https://petri.com/prompt-answers-powershell/): PowerShell MVP Jeff Hicks explores a new way to prompt for input in your scripts and functions. - [Deferring Upgrades in Windows 10](https://petri.com/deferring-upgrades-in-windows-10/): Learn how to defer upgrades on your Windows 10 personal computer, or learn how to deploy deferred upgrades across your organization with Group Policy. - [Paul Thurrott's Short Takes: December 11](https://petri.com/paul-thurrotts-short-takes-december-11/): Because it's beginning to look a lot like Christmas, this week's other news includes the source of Surface Book shortages,... - [The Sams Report EP 21: Cortana Everywhere And All The Windows Updates](https://petri.com/the-sams-report-ep-21-cortana-everywhere-and-all-the-windows-updates/): On this episode, I talk about the updates for Windows 10, a bit about Redstone, Cortana taking on Siri, and everything else in the world of Microsoft. - [Current Status Episode 34: Exchange Management Automation Station with Michel de Rooij](https://petri.com/current-status-episode-34-exchange-management-automation-station-with-michel-de-rooij/): Join us Thursday, December 10, 2015 at 10:15 pm EDT for another episode of Current Status. - [Microsoft Announces New Features for Office 365 Groups](https://petri.com/microsoft-announces-new-features-office-365-groups/): Microsoft announced several new features for Office 365 Groups, including  new dynamic membership and naming policies. - [Exchange 2016: What’s New, and Is It Worth It?](https://petri.com/exchange-2016-whats-new-and-is-it-worth-it/): Learn about new features in Exchange 2016, along with advice on whether you should migrate from Exchange 2013 and 2010.  - [Building A Better Conference Room](https://petri.com/building-a-better-conference-room/): It has been a few decades since the conference room saw an overhaul but with new sensors, the worst part of your day is getting better. - [Microsoft Owns Productivity And That Should Be Enough](https://petri.com/microsoft-owns-productivity-and-that-should-be-enough/): Microsoft is a company that "gets" productivity ... and not much else. And it should stop pretending, or even aspiring,... - [Office 365 Tip: Using Modern Email Attachments](https://petri.com/office-365-tip-using-modern-email-attachments/): Russell Smith shows us a quick Office 365 for using modern email attachments. - [PowerShell Problem Solver: More Processor Performance](https://petri.com/powershell-problem-solver-processor-performance/): Learn how to use PowerShell to get processor utilization values with WMI and performance counters. - [Microsoft Embraces Linux Foundation To Create New Certification](https://petri.com/microsoft-embraces-linux-foundation-to-create-new-certification/): During 2015, Microsoft has made it clear that Linux is no longer the foe of yesterday and has created a new certification for running Linux on Azure. - [Yahoo to Spin Off its Core Business](https://petri.com/yahoo-to-spin-off-its-core-business/): After a tumultuous year in which it planned to sell off its $31 billion Alibaba stake and reassert itself as... - [Installing Remote Server Administration Tools on Windows 10](https://petri.com/installing-remote-server-administration-tools-windows-10/): Learn how to install Microsoft's Remote Server Administration Tools on Windows 10 for better server management and administration. - [Microsoft Announces General Availability of System Center Configuration Manager](https://petri.com/microsoft-announces-general-availability-of-system-centerconfiguration-manager/): Microsoft has announced today the general availability of System Center Configuration Manager. - [Qualcomm Charged with Antitrust Violations in the EU](https://petri.com/qualcomm-charged-with-antitrust-violations-in-the-eu/): Antitrust regulators from the EU's European Commission (EC) have formally charged U. S. -based mobile chipset maker Qualcomm with two... - [What Do Unikernels Mean for Containers?](https://petri.com/what-do-unikernels-mean-for-containers/): Russell Smith discusses Microsoft's Drawbridge research project and how it could change they way we virtualize applications in Windows Server - [Windows 10 Tip: Manage Telemetry Settings](https://petri.com/windows-10-tip-manage-telemetry-settings/): Here's a quick tip on how to set the telemetry level in Windows 10 using Group Policy. - [Getting The Most Out Of Office 365 At Work - Introduction](https://petri.com/getting-office365-work-introduction/): Microsoft's Office 365 suite is a powerful set of tools and its important that you get the most out of your organizations subscription. - [Two Months With The Surface Book](https://petri.com/two-months-with-the-surface-book/): I have been using Microsoft's new flagship device, the Surface Book, for two months and it's time to see if the device really is the 'ultimate laptop' - [Microsoft Is Open-Sourcing Part Of Its Edge Browser](https://petri.com/microsoft-is-open-sourcing-more-parts-of-its-browser-tech/): Microsoft has announced today at JSConf in Florida that they will be open-sourcing key components of its Chakra JavaScript engine. - [A Workaround for Using PowerShell's Get-Service with the ComputerName Parameter](https://petri.com/using-powershell-get-service-cmdlet-with-the-computername-parameter/): Jeff Hicks shows us a way to use PowerShell's Get-Service cmdlet to work with the commonly used ComputerName property. - [Microsoft’s Build 2016 Conference Kicks Off On March 30](https://petri.com/microsofts-build-conference-kicks-off-on-march-30/): Microsoft has announced today that it’s Build conference will be taking placing March 30th to April 1st 2016 and that it will be hosted in San Francisco.  - [Microsoft Announces Windows Server 2016 Licensing](https://petri.com/microsoft-announces-ws2016-licensing/): Microsoft has announced details on Windows Server 2016 licensing, which includes a switch to a per-core licensing model. - [The Sams Report EP 20: The Bugs, The Updates And The Phone Real Talk](https://petri.com/the-sams-report-ep-20-the-bugs-the-updates-and-the-phone-real-talk/): On this episode, I cover Windows 10's new development process, updates to the Surface Book and Pro 4, and being blunt about the state of Windows 10 Mobile. - [Paul Thurrott's Short Takes: December 4 2015](https://petri.com/paul-thurrotts-short-takes-december-4/): Because every day without snow this winter is to be celebrated, this week's other news includes a major Windows Server... - [Will IT Pros Adopt Infrastructure as Code?](https://petri.com/will-it-pros-adopt-infrastructure-as-code/): The foundation of IT is shifting beneath our feet. How we deploy IT is changing to infrastructure-as-code. What do you think of it? - [Check Domain Controller Services with PowerShell](https://petri.com/check-domain-controller-services-powershell/): Learn how to use PowerShell to check the status of critical services on your domain controllers and how to manage at scale. - [Steve Ballmer Has Some Harsh Words for the New Microsoft](https://petri.com/steve-ballmer-has-some-harsh-words-for-the-new-microsoft/): Former Microsoft CEO Steve Ballmer was always plain-spoken and honest, and that apparently hasn't changed a bit since his departure... - [Scaling WMI with PowerShell and Remoting](https://petri.com/scaling-wmi-powershell-remoting/): Learn how to scale out WMI commands in PowerShell by using PowerShell remoting. - [Yahoo Board to Consider Dismantling Company](https://petri.com/yahoo-board-to-consider-dismantling-company/): The Yahoo board of directors will meet this week to determine the fate of the flailing company. And one of... - [Create a Containers VM Host with DHCP](https://petri.com/create-containers-vm-host-dhcp/): Learn how to deploy Windows Server Containers with direct network connectivity and DHCP-assigned IP addresses. - [What are Hyper-V Containers?](https://petri.com/hyper-v-containers/): Learn and understand the reasoning behind Hyper-V Containers and how they work and differ from Windows Server Containers. - [Microsoft and Hewlett Packard Enterprise Expand Collaboration To The Cloud](https://petri.com/microsoft-and-hewlett-packard-enterprise-announce-the-first-hyper-converged-system/): HPE is hosting its Discover event this week in London where they announced a new hybrid cloud service with the help of Microsoft. - [HPE Debuts Synergy, Its New Composable Hardware](https://petri.com/hpe-debuts-synergy-its-new-composable-hardware/): At HPE's discover event in London the company has announced its new Synergy platform that is brand new hardware. - [Windows 10 Tip: How to Disable Hibernation with SSD Disks](https://petri.com/windows-10-tip-how-to-disable-hibernation-ssd-disks/): Learn how to disable hibernation in Windows 10 to save SSD disk life and space. - [Microsoft Extends Office 365 with PBX/PSTN Capabilities](https://petri.com/microsoft-extends-office-365-with-pbxpstn-capabilities/): Microsoft on Monday announced a major update to the commercial versions of Office 365 that will enable Skype for Business... - [Microsoft Releases Azure PowerShell 1.0](https://petri.com/microsoft-releases-azure-powershell-1-0/): Russell Smith outlines what's new in the Azure PowerShell 1. 0 release. - [How to Disable the Windows 10 Lock Screen](https://petri.com/disable-windows-10-lock-screen/): Daniel Petri shows us how to make signing into Windows 10 a bit easier by disabling the lock screen. - [PowerShell Problem Solver: Process Performance For All](https://petri.com/powershell-problem-solver-process-performance/): PowerShell MVP Jeff Hicks wraps up his series on performance counters by creating a custom report for multiple servers. The power is in the pipeline. - [Paul Thurrott's Short Takes: November 25](https://petri.com/paul-thurrotts-short-takes-november-25/): Because Thanksgiving, this short week's other news includes Microsoft's diversity problem, Android's future at Microsoft, where Android fragmentation hurts users,... - [Pearson VUE's Credential Management System Has Been Compromised](https://petri.com/pearson-vues-credential-management-system-has-been-compromised/): Pearson VUE, who manages the certification programs for a large number of IT vendors  has announced that their credentials system has been hacked. - [Microsoft Pulled Windows 10 November Update Over Privacy Concern](https://petri.com/microsoft-pulled-windows-10-november-update-over-privacy-concern/): Earlier this week, Microsoft pulled its Windows 10 November update and now we know why, it was related to the... - [Managing Windows Server Containers with PowerShell: Connecting to a Network](https://petri.com/managing-windows-server-containers-with-powershell-connecting-to-network/): In this post, learn how to deploy a Windows Server Containers-based application and configure NAT networking and Windows Firewall rules. - [What is Azure AD Domain Services?](https://petri.com/what-is-azure-ad-domain-services/): In this article, I explain what Azure AD Domain Services is and how you can use it to simplify deployment of applications and services in the cloud that normally rely on on-premises Active Directory (AD). - [As Microsoft Winds Down Support For IE10, IE11 Gets New Enterprise Features](https://petri.com/microsoft-winds-support-ie10-ie11-gets-new-enterprise-features/): Microsoft is ending support for all prior version of IE11 for Windows 7/8 but to help ease the transition, the company has announced new features. - [Security Vulnerability on Dell PCs is Compared to Superfish](https://petri.com/security-vulnerability-dell-pcs-compared-superfish/): Dell says it inadvertently shipped new PCs with a potential security vulnerability. This lapse has drawn comparisons to Lenovo's Superfish fiasco. - [Windows 10 Update Pulled and Lumia 950 Receives a Lukewarm Welcome](https://petri.com/windows-10-update-pulled-lumia-950-receives-lukewarm-welcome/): A disappointing reception for Microsoft's new flagship Lumia handset and Windows 10 update woes. - [Microsoft Releases Windows Server 2016 Technical Preview 4](https://petri.com/microsoft-releases-windows-server-2016-technical-preview-4/): Russell Smith dives into the Windows 2016 Technical Preview 4 release. - [Microsoft's Modernized Development Workflow Begins To Show Cracks](https://petri.com/microsofts-modernized-development-workflow-begins-show-cracks/): Microsoft has moved to a modernized workflow for development but the faster release cadence is starting to show its weakness within Windows 10. - [What's New in Windows Sever 2016 Technical Preview 4](https://petri.com/whats-new-windows-server-2016-technical-preview-4/): Learn about new features in the Windows Server 2016 Technical Preview 4 for Hyper-V and related roles and technologies. - [The Sams Report EP 19: Lumia 950, Windows Turns 30 And Windows Re-org](https://petri.com/sams-report-ep-19-lumia-950-windows-turns-30-windows-re-org/): On this episode, I talk about Windows turning 30, there was a shakeup in the Windows org, the Lumia 950 is here and a lot more. - [Deep Dive: Microsoft’s Continuum For Windows 10 Mobile](https://petri.com/deep-dive-microsofts-continuum-windows-10-mobile/): Microsoft's new mobile OS comes with a feature that allows you to turn it into a desktop-like PC and in this post, I take a closer look at the tool. - [Review: Microsoft's Lumia 950, More Future Than Past](https://petri.com/review-microsofts-lumia-950-future-past/): Microsoft's new Lumia 950 is now available and I take a closer look at the new phone to see if it truly is a flagship that can compete with the iPhone. - [Paul Thurrott's Short Takes: November 20](https://petri.com/paul-thurrotts-short-takes-november-20/): This week's other news includes the 30th anniversary of Windows, Microsoft's cloud-only future, Google hires ex-VMware CEO for business cloud efforts, more. - [Microsoft Shakes The Windows Org Tree One More Time](https://petri.com/microsoft-shakes-windows-org-tree-one-time/): Microsoft has made a few organizational changes in the Windows Org by appointing a new CVP Windows Apps Studio and CVP Windows Shell Program Management. - [Reclaiming Disk Space on Windows 10 by Removing Modern Applications](https://petri.com/reclaiming-disk-space-on-windows-10-by-removing-modern-applications/): Learn how to reclaim disk space on your Windows 10 machine by removing unneeded modern applications. - [Windows 10: Use a PIN Instead of a Password to Sign In](https://petri.com/windows-10-use-a-pin-instead-of-a-password-to-sign-in/): Learn why Microsoft considers PINs safer than passwords, and how to configure a PIN for your Windows 10 device. - [Microsoft and Hewlett Packard Enterprise Join Hands For New Partnership](https://petri.com/microsoft-hewlett-packard-enterprise-join-hands-new-partnership/): Microsoft and Hewlett Packard Enterprise have announced a new partnership to help with Windows 10 deployments and application development. - [Microsoft Drops Version Numbers From Dynamics, Dynamics AX Coming in Q1](https://petri.com/microsoft-drops-version-numbers-dynamics-dynamics-ax-coming-q1/): Microsoft has announced a new name for its flagship Dynamics product and that the new ERP software will be released in Q1 of 2016. - [Windows 10 Tip: Configure Windows Update for Business using Group Policy](https://petri.com/windows-10-tip-configure-windows-update-for-business-using-group-policy/): Learn how to defer upgrades and updates in Windows 10 Professional and Enterprise edition. - [Improving The User Provisioning Process](https://petri.com/improving-user-provisioning-process/): User provisioning is a tasks that many administrators detest but what if there was a better way? Petri and HelpSystem can help you improve this process. - [PowerShell Problem Solver: Process CPU Utilization](https://petri.com/powershell-problem-solver-process-cpu-utilization/): Discover how to find how much processor time processes are consuming with PowerShell and WMI. - [Microsoft Is Making It Easier To Get Visual Studio](https://petri.com/microsoft-making-easier-get-visual-studio/): Microsoft is making it easier to buy Visual Studio with new subscription offerings that can be purchased in monthly or annual buckets. - [Microsoft Graph: A Unified Path To Access Data Across the Intelligent Cloud](https://petri.com/microsoft-graph-unified-path-access-data-across-intelligent-cloud/): The Microsoft Graph is a new way to access your organization's data across the intelligent cloud and it's entering General Availability today. - [Microsoft Announces New Approach to Security](https://petri.com/microsoft-announces-new-approach-security/): Microsoft announced today that it is shifting its security focus to focus on what it calls the mobile first, cloud first world. Trustworthy Computing 2.0? - [A Workaround for Finding Missing Hyper-V Tools in Windows 10](https://petri.com/workaround-finding-missing-hyper-v-tools-windows-10/): Daniel Petri shows us a workaround for finding missing Hyper-V tools in Windows 10. - [Red Hat's Impact on Microsoft Azure: A Win for the Enterprise](https://petri.com/red-hat-impact-microsoft-azure-win-for-the-enterprise/): Microsoft and Red Hat announced a partnership to bring Red Hat Enterprise Linux to Azure, .NET to RHEL, and improve mutual systems management. - [EMC Announces Data Lake 2.0 Strategy For Isilon](https://petri.com/emc-announces-data-lake-2-0-strategy-isilon/): Splish, splash. EMC has announced their "Data Lake 2.0" strategy, and it's time to get your Isilon's enterprise bits to get all wet. - [Managing Windows Server Containers with PowerShell: Managing Containers](https://petri.com/managing-windows-server-containers-with-powershell-managing-containers/): Learn how to perform administration inside of a Windows Server container, along with steps on creating a new container image in the repository. - [Deploy and Manage Windows Server Containers using Docker](https://petri.com/deploy-manage-windows-server-containers-using-docker/): Russell Smith shows you how to quickly deploy Windows Server containers using Docker in the latest technical preview. - [Microsoft Brings Windows 10 To Phones Starting November 20th](https://petri.com/microsoft-brings-windows-10-phones-starting-november-20th/): Microsoft will release a new Windows 10 Mobile device, called the Lumia 950, on AT&T on November 20th, which is the first phone to run the new OS. - [How To Run Two 4k Monitors From Your Surface](https://petri.com/run-two-4k-monitors-surface/): Looking to run two 4k monitors from your Surface? Make sure to read this guide so you know what to expect and to save yourself some time. - [Microsoft Expands Insider Program To Include Office](https://petri.com/microsoft-expands-insider-program-include-office/): Microsoft has expanded its insider program to now include Office which means you can try out new features before they are released. - [Windows Mobile: Revisiting the Lumia 640](https://petri.com/windows-mobile-revisiting-lumia-640/): Six months after its release, Russell Smith takes another look at the Lumia 640 and gives his verdict. - [The Sams Report EP 18: Windows 10's Second Push](https://petri.com/sams-report-ep-18-windows-10s-second-push/): On this episode, I talk about how Microsoft has executed its second major push of Windows 10, Surface Dock woes, and where is that Windows 10 Mobile Update. - [Paul Thurrott's Short Takes: November 13 2015](https://petri.com/paul-thurrotts-short-takes-november-13/): This week: Microsoft's new emotion-sensing platform, bad news for UK-based Surface Book fans, and Apple execs mock the products they copied, and much more. - [Rancher Labs Announces Support for Orchestrating Persistent Storage Services for Docker](https://petri.com/rancher-labs-announces-support-orchestrating-persistent-storage-services-docker/): Learn more about Rancher Labs and how they are bringing open source platforms to DevOps teams to help simplify the process for building a private container service. - [Current Status Episode 33: Transform Legacy Apps to Web Apps](https://petri.com/current-status-episode-33-transform-legacy-apps-to-web-apps/): Join Current Status co-hosts Theresa Miller and Phoummala Schmitt as they discuss how to transform legacy apps to web apps. - [Microsoft Delivers New Business Features To Windows 10](https://petri.com/microsoft-delivers-new-business-features-windows-10/): Microsoft has released an update for Windows 10 that brings several features to the OS including the long awaited Windows Update for Business. - [Windows 10 Surpasses 12 Million Enterprise Installs](https://petri.com/windows-10-surpasses-12-million-enterprise-installs/): Microsoft has announced that its new OS, Windows 10, has surpassed 12 million enterprise installs which signals solid growth in the corporate market. - [Microsoft’s First Major Update To Windows 10 Has Arrived](https://petri.com/microsofts-first-major-update-windows-10-arrived/): Microsoft has released the first major update to Windows 10 that brings with it several new features for both the consumer and the IT admin. - [Google Updates Containers Technology for Better Performance in High-Scale Environments](https://petri.com/google-updates-containers-technology-better-performance-high-scale-environments/): Google made performance updates and improvements to its cloud-based container offerings for Docker, Google Container Engine and Google Container Registry. - [Box Is Bullish On Windows 10, Brings Its Enterprise App To The Windows Store](https://petri.com/box-bullish-windows-10-brings-enterprise-app-windows-store/): Box has announced that its new app for the Windows Store is now available and that it will work on all of Microsoft's devices. - [Azure SQL Database Threat Detection Enters Public Preview](https://petri.com/azure-sql-database-threat-detection-enters-public-preview/): Microsoft's Azure's SQL Database Threat Detection feature is now in public preview and adds to the company's new suite of security related services. - [Microsoft Announces Major Commercial Cloud Expansion in Germany](https://petri.com/microsoft-announces-major-commercial-cloud-expansion-germany/): Microsoft CEO Satya Nadella arrived in Berlin on Wednesday and announced a significant expansion of the software giant's commercial cloud efforts in Germany - [Compound Filtering with WMI and PowerShell](https://petri.com/compound-filtering-with-wmi-and-powershell/): Learn how to create a compound filtering query with WMI and PowerShell, and learn advantages of early and late filtering. - [Microsoft Announces Major Commerical Cloud Expansion in Europe](https://petri.com/microsoft-announces-major-commerical-cloud-expansion-europe/): Satya Nadella announced a series of Microsoft Cloud expansions in Europe today. Key among them are "multiple" datacenters for just the U.K. - [Creating a Better PowerShell Module](https://petri.com/creating-a-better-powershell-module/): PowerShell MVP Jeff Hicks revisits his Uptime module and enhances with new properties and parameters. - [Managing Windows Server Containers with PowerShell: Creating a New Container](https://petri.com/managing-windows-server-containers-with-powershell-creating-new-container/): Learn how to manage and create Windows Server Containers using PowerShell, as well as explaining the file types and locations. - [The Sams Report EP 17: Inside The OneDrive Story And Redstone Delights](https://petri.com/sams-report-ep-17-inside-onedrive-story-redstone-delights/): On this episode, I cover the inside story of the changes to OneDrive, a few minor features coming to Redstone and the TH2 release. - [Amazon and Google Reap Over Half of Every Dollar Spent Online](https://petri.com/amazon-google-reap-half-every-dollar-spent-online/): The Internet economy is now worth over $300 billion annually, and only two firms---Amazon.com and Google---control fully 57 percent of that. - [Microsoft Has Acquired Secure Islands To Boost Its Security Credentials](https://petri.com/microsoft-acquired-secure-islands-boost-security-credentials/): Microsoft has announced that they will be acquiring Secure Islands, a provider of advanced information protection solutions to fold into its Azure product. - [Intel Wireless Docking and WiGig](https://petri.com/intel-wireless-docking-and-wigig/): Learn about new wireless docking technology from Intel and WiGig. - [Paul Thurrott's Short Takes: November 6](https://petri.com/paul-thurrotts-short-takes-november-6/): This week's other news includes some user angst over OneDrive cuts, PC makers allegedly dissing Windows 10, Google wants to help design Android CPUs, more. - [How to Turn Off Telemetry in Windows 7, 8](https://petri.com/turn-off-telemetry-windows-7-8-windows-10/): Learn how to disable Microsoft's Diagnostics and Telemetry Service to stop data from being sent to Microsoft. - [Microsoft Has Released A Quantum Simulator](https://petri.com/microsoft-released-quantum-simulator/): Microsoft is working towards quantum computing and to help others pursue this goal, they have released a quantum simulator on GitHub. - [Microsoft’s Preparing For Its Second Windows 10 Push](https://petri.com/microsofts-preparing-second-windows-10-push/): Microsoft is preparing for its second major push of Windows 10 as the company will be releasing the OS for its mobile phones as well as the Xbox One. - [Tell Me More: Expanding Objects and Properties in PowerShell](https://petri.com/expanding-objects-properties-powershell/): PowerShell MVP and IT veteran Jeff Hicks discusses a common problem for beginners and explains how to expand objects and properties in PowerShell. - [IBM Acquires Gravitant To Expand Hybrid Cloud Offering](https://petri.com/ibm-acquires-gravitant-expand-hybrid-cloud-offering/): IBM today announced that it has acquired Austin, Texas based Gravitant to expand it's hybrid cloud offering. - [Microsoft’s Putting Its Acquisitions To Use With Dynamics 2016](https://petri.com/microsofts-putting-acquisitions-use-dynamics-2016/): With the release of Dynamics 2016 in December, Microsoft will be putting its acquisitions to work as the company integrates its acquired technology. - [Windows Store For Business Launch Is Coming Into View](https://petri.com/microsofts-gearing-up-to-release-its-next-business-feature-windows-store-for-business/): Microsoft is gearing up to release it's next big feature for the corporate users, Windows Store for Business and a new site gives us new details. - [PowerShell Problem Solver: Processor Loads](https://petri.com/powershell-problem-solver-processor-loads/): Learn the best way to get the average processor utilization for a remote server with some quick PowerShell help. - [Understanding IP Addressing in Microsoft Azure](https://petri.com/understanding-ip-addressing-microsoft-azure/): Learn about the different kind of external and internal IP addresses available to Azure virtual machines. - [VCDX Defense Process Drops Troubleshooting Questions](https://petri.com/vcdx-defense-process-drops-troubleshooting-questions/): Those who are looking to obtain the highest VMware certification, look out, the company announced today that they’ve made an adjustment to the process. - [Microsoft Deepens Its Ties To Linux, Partners With Red Hat](https://petri.com/microsoft-deepens-ties-linux-partners-red-hat/): Microsoft has announced a new partnership with Red Hat that will allow the Linux software to run natively on the company's cloud platform. - [Hewlett Packard Enterprise Goes Public, Splitting HP In Two](https://petri.com/hewlett-packard-enterprise-goes-public-splitting-hp-two/): On Monday, Hewlett Packard Enterprise Chief Executive Officer Meg Whitman, rang the opening bell at the NYSE to complete the separation of HP and HPE. - [Getting System Drive Alternatives](https://petri.com/getting-system-drive-alternatives/): Compare different PowerShell techniques for getting system drive information using WMI. - [Windows Server 2016 Feature: ReFS Accelerated VHDX Operations](https://petri.com/windows-server-2016-feature-refs-accelerated-vhdx-operations/): Windows Server 2016 improves the speed of VHD and VHDX operations. Aidan Finn show the results using basic 1 GbE iSCSI storage. - [Microsoft Is Making Changes To Office 365, Removing Unlimited OneDrive Storage](https://petri.com/microsoft-makes-changes-to-office-365-removes-unlimited-onedrive-storage/): Microsoft has announced that they are changing up their Office 365 plans and will be removing the unlimited storage option with OneDrive. - [Microsoft Sets October 31st 2016 Deadline For New Windows 7 Machines](https://petri.com/microsoft-sets-october-31st-2016-deadline-new-windows-7-machines/): Microsoft has set a deadline for OEMs to sell Windows 7 machines which means if you are in the market for new hardware, you will want to act soon. - [Auto-Triggering VPNs in Windows 10](https://petri.com/auto-triggering-vpns-windows-10/): Learn how to configure apps to auto-trigger VPN connections in Windows 10. - [Create a Containers VM Host with NAT](https://petri.com/create-containers-vm-host-nat/): This post will show you how to create a new Windows Server 2016 (WS2016) VM host for Windows Server Containers with NAT networking. - [Microsoft Brings Cloud Foundry Out Of Preview, Opens Access to Pivotal Cloud Foundry](https://petri.com/microsoft-brings-cloud-foundry-preview-opens-access-pivotal-cloud-foundry/): Microsoft has announced that Cloud Foundry on Azure is now generally available to all users of Azure and there is new support for Pivotal Cloud Foundry too. - [A Free Tool for Better Management of Cloud Data on Multiple Devices](https://petri.com/free-tool-better-management-cloud-data-multiple-devices/): Learn more about Lenovo ReachIt, which is a useful and free solution for managing cloud services on multiple devices. - [Paul Thurrott's Short Takes: October 30](https://petri.com/paul-thurrotts-short-takes-october-30/): This week's other news includes some new Windows 10 controversies, some Surface Book issues, an Android and Chrome OS merger, and more Xbox lemonade. - [What is JSON and How Is It Used?](https://petri.com/what-is-json-and-how-is-it-used/): Russell Smith explains how JSON differs from XML, and how it's used in Azure's management portal. - [Validating Computer Lists with PowerShell](https://petri.com/validating-computer-lists-with-powershell/): Follow these tips and tricks for validating your list of computer names for a better PowerShell experience. - [Microsoft's About To Become More Aggressive With Windows 10 Upgrades](https://petri.com/microsofts-become-aggressive-windows-10-upgrades/): Microsoft has announced that, starting next year, they will begin pushing Windows 10 upgrades more aggressively through Windows Update. - [How to Enable the Built-In Administrator Account in Windows 10](https://petri.com/how-to-enable-built-in-administrator-account-windows-10/): Learn two different methods for enabling the built-in administrator account in Windows 10. - [Microsoft Band 2: Exercise And Productivity On Your Wrist](https://petri.com/microsoft-band-2-exercise-productivity-wrist/): Microsoft has a brand new fitness and productivity wearable called the Band 2 but is it worth the steep entry price of $249? - [SQL Server 2016 CTP 3.0 Is Coming This Week, Azure Data Lake Enters Public Preview](https://petri.com/sql-server-2016-ctp-3-0-coming-week-azure-data-lake-enters-public-preview/): Microsoft is pushing forward with SQL Server and has announced that the CTP of Server 2016 3.0 will be arriving soon and it will bring new features. - [What is Azure Operational Insights?](https://petri.com/azure-operational-insights/): Learn about Azure Operational Insights and how it differs from Microsoft Operations Manager. - [PowerShell Problem Solver: Getting Process Details](https://petri.com/powershell-problem-solver-getting-process-details/): Learn how to find hidden object properties in PowerShell and use them to get details about running processes on your servers. - [Apple Crushes It Again, Thanks to China](https://petri.com/apple-crushes-thanks-china/): Apple pulled off another financial miracle, posting a net profit of $11.1 billion on revenues of $51.5 billion for the quarter ending September 30. - [Checking System Drive Free Space with WMI and PowerShell](https://petri.com/checking-system-drive-free-space-with-wmi-and-powershell/): Use PowerShell and WMI to dynamically get disk information for the system drive even when you don't know what it is. - [Windows Mobile 10: The Story So Far](https://petri.com/windows-mobile-10-story-far/): With just under two months till RTM, find out how Windows 10 Mobile is developing with Russell Smith's impressions of build 10572. - [Microsoft: System Center Will Be Updated Regularly Alongside Windows 10](https://petri.com/microsoft-system-center-will-updated-regularly-alongside-windows-10/): With Configuration Manager "vNext" expected by the end of the year, Microsoft has begun explaining how it has changed this product to accommodate Windows 10 - [Windows Server Containers Networking](https://petri.com/windows-server-containers-networking/): Learn how Windows Server Containers will be connected to the network via a virtual switch, using NAT and DHCP. - [Install Azure PowerShell 1.0 Preview](https://petri.com/install-azure-powershell-1-0-preview/): Learn how to install the new Azure PowerShell 1.0 Preview cmdlets and sign in to Azure Resource Manager. - [EU Antitrust Chief Promises to Actively Pursue Google on Multiple Fronts](https://petri.com/eu-antitrust-chief-promises-actively-pursue-google-multiple-fronts/): In a wide-ranging interview, European Union Competition Commissioner Margrethe Vestager pledged to pursue multiple antitrust investigations against Google. - [Surface Book: The Fastest Way To Recharge](https://petri.com/surface-book-fastest-way-recharge/): There are two ways that you can charge the Surface Book if you have an extra charger that can dramatically reduce the time to add juice to your laptop. - [Tip for Opening Large Text Files in Windows](https://petri.com/tip-opening-large-files-windows/): Daniel Petri shares a list of free tools to help open large files in Windows. - [Surface Book: The Hinge](https://petri.com/surface-book-hinge/): Microsoft's new Surface Book hinge is a unique feature of the laptop and Brad Sams takes a closer look at what makes this feature stand out. - [Microsoft Azure Files Generally Available](https://petri.com/microsoft-azure-files-generally-available/): Microsoft released Azure File Storage with SMB 2.1 and SMB 3.0 support. What is this service, what is it intended for, and what should it not be used for? - [Microsoft's Stock Pushed Into The Clouds By Strong Azure Growth](https://petri.com/microsofts-stock-pushed-clouds-strong-azure-growth/): Microsoft's Azure platform saw strong growth during the most recent quarter which has pushed the company's stock to a new 52 week high. - [Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (October 2015)](https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition/): Because Microsoft only releases its earnings four times a year, this week's other news focuses exclusively on those earnings, which beat expectations. - [Current Status Episode 30: Enterprise-Level Storage in the Cloud with Laz Vekiarides](https://petri.com/current-status-episode-30-enterprise-level-storage-cloud-laz-vekiarides/): Join Current Status co-hosts Theresa Miller and Phoummala Schmitt, as they talk with Laz Vekiarides, co-founder at ClearSky Data. - [PowerShell How To: Building Effective Lists with Active Directory and DNS](https://petri.com/powershell-how-to-building-effective-lists-with-active-directory-and-dns/): Additional techniques and tips for building lists of computer names including querying Active Directory or DNS with PowerShell. - [How to Upgrade to Windows 10 Pro from Home Edition](https://petri.com/how-to-upgrade-to-windows-10-pro-from-home-edition/): Learn how to upgrade to Windows 10 Pro from the Windows 10 Home edition in this article by Daniel Petri. - [Microsoft’s New Type Cover Takes A Step Forward](https://petri.com/microsofts-new-type-cover-is-a-good-buy/): With the release of the Surface Pro 4, Microsoft has updated the Type cover; if you own a Surface Pro 3, you may want to look into buying this peripheral. - [Sized Up: Surface Pro 4, Surface Book Clipboard, And The Pro 3](https://petri.com/sized-surface-pro-4-surface-book-clipboard-pro-3/): Thinking about buying the Pro 4 or Surface Book but want a closer look at how the tablets size up? We have you covered with a gallery of the new devices. - [Yahoo Begins Its Transition Away from Bing Search](https://petri.com/yahoo-begins-transition-away-bing-search/): Yahoo, bound by the terms of a multi-year search agreement with Microsoft, would like to run back to Google. This week, it took a big step in that direction - [Surface Dock: Microsoft Builds A Better Hub](https://petri.com/surface-dock-microsoft-builds-better-hub/): Microsoft has released a refreshed Surface Dock that has a different design than the prior generation and it will reduce the footprint on your desk. - [Review: Surface Book, Windows 10 Has A New Flagship](https://petri.com/review-surface-book-windows-10-has-a-new-flagship/): Microsoft's brand new Surface Book is here and I have been playing with the device for a couple weeks to let you know if it should be on your short list. - [Review: Surface Pro 4, An Evolutionary Update](https://petri.com/review-surface-pro-4-evolutionary-update/): Microsoft's next generation Surface is here and it packs a larger display, Intel's new Skylake chips, improved Type cover and a lot more. - [Customizing the Windows 10 Start Menu](https://petri.com/customizing-the-windows-10-start-menu/): Learn how to customize the Windows 10 Start menu in this article by Daniel Petri. - [Create Better Lists with PowerShell](https://petri.com/create-better-lists-with-powershell/): PowerShell MVP Jeff Hicks explains how to effectively create and use lists of computernames in your daily work. - [Surface Book To Be Sold By Channel Partners, Surface Trade-In Program Announced](https://petri.com/surface-book-sold-channel-partners-surface-trade-program-announced/): Microsoft has announced a new Surface trade in program for upgrading your business hardware and that the Surface Book will be sold by channel partners. - [Microsoft Expands Surface Commercial Availability and Support](https://petri.com/microsoft-expands-surface-commercial-availability-support/): Microsoft is now supporting commercial customers of all Surface devices with new availability and service and support options to help meet demand. - [Microsoft Board Shakeup Sees Two New Faces Nominated To Join The Team](https://petri.com/microsoft-board-shakeup-sees-two-new-faces-nominated-join-team/): Microsoft has announced today that it has nominated two new individuals to join its board of directors, Sandra Peterson and Padmasree Warrior. - [How Windows Server Containers Work](https://petri.com/windows-server-containers-work/): Learn how Windows Server Containers work by understanding how the repository and container images are used to quickly deploy services with identical configurations and reduced effort. - [Enable Nested Hyper-V Virtualization in Windows 10 Build 10565](https://petri.com/enable-nested-hyper-v-virtualization-windows-10-build-10565/): Learn how to enable Hyper-V nested virtualization in Windows 10 build 10565. - [Google Apps for Work Now Offered for Free During Transition](https://petri.com/google-apps-work-now-offered-free-transition/): In a bid to steal more business users from Microsoft, Google this morning announced that it would wave the fees on its Google Apps for Work offerings. - [Microsoft Brings Custom Visuals To Power BI Service and Desktop](https://petri.com/microsoft-brings-custom-visuals-power-bi-service-desktop/): Microsoft has announced that custom visuals for Power BI service and desktop is now available to everyone and that Power BI dev tools are entering preview. - [Windows 10 Build 10565 Adds Nested Hyper-V](https://petri.com/windows-10-build-10565-adds-nested-hyper-v/): Microsoft introduced a preview of nested virtualization for Hyper-V with preview build 10565 of Windows 10, enabling Hyper-V VMs to host and run VMs. - [Paul Thurrott's Short Takes: October 16, 2015](https://petri.com/paul-thurrotts-short-takes-october-16-2015/): This week's other news includes a new marketing campaign for Windows 10, you're getting the Windows 10 upgrade whether you want it or not, and so much more. - [Microsoft Admits Windows 10 Was Accidently Downloaded On Some Computers](https://petri.com/microsoft-admits-windows-10-accidently-downloaded-computers/): Microsoft has said that some users accidentally had Windows 10 download on to their machine but the OS was not installed as that requires user input. - [IT Career Advice: Don’t Be That Other IT Pro](https://petri.com/it-career-advice-dont-be-that-other-it-pro/): IT veteran Jeff Hicks shares his thoughts on the nature of lazy IT pros, along with symptoms that are commonly associated with this group of people. - [Microsoft Lumia 950: Dead on Arrival?](https://petri.com/microsoft-lumia-950-dead-arrival/): Russell Smith discusses why the Lumia 950 and 950 XL won't be money down the drain if you're in the market for a new Windows Mobile handset. - [Microsoft Moves Ignite 2016 from May to September, Takes The Show To Atlanta](https://petri.com/microsoft-moves-ignite-2016-may-september-takes-show-atlanta/): Microsoft has announced that they will be moving their Ignite conference from Chicago to Atlanta and that it will be held in September. - [Microsoft Adds To Azure’s Data Security Appeal, New Encryption Features Coming Soon](https://petri.com/microsoft-adds-azures-data-security-appeal-new-encryption-features-coming-soon/): Microsoft has announced several new data security features for Azure's SQL services that include addition encryption scenarios and a lot more. - [PowerShell Problem Solver: IP Resolution Tricks](https://petri.com/powershell-problem-solver-ip-resolution-tricks/): Jeff Hicks provides tips and tricks for resolving computer names to IP addresses using Windows PowerShell. - [Support For SQL Server 2005 Ends In Less Than 6 Months](https://petri.com/support-sql-server-2005-ends-less-6-months/): If you are running SQL Server 2005 you need to be aware that support for that platform is ending in less than six months. - [HP Teaming with 3M to Combat "Visual Hacking"](https://petri.com/hp-teaming-3m-combat-visual-hacking/): HP and 3M are teaming up to combat a form of digital theft that is so obvious in retrospect that I'm surprised no one has tackled this problem before in such an integrated fashion. - [Windows 10: Disk Optimization](https://petri.com/windows-10-disk-optimization/): Learn a quick trick in disk optimization in Windows 10 with the redesigned Reset and Refresh features that are designed to reduce the OS footprint. - [VMworld 2015 Europe: Refresh to Cloud Management Platform to Accelerate DevOps Initiatives](https://petri.com/vmworld-2015-europe-refresh-cloud-management-platform-accelerate-devops/): At VMworld 2015 Europe, VMware announced changes to its cloud management platform to accelerate DevOps across public and private cloud environments. - [PowerShell 5.0 Tutorial: Example-Driven Parsing using ConvertFrom-String](https://petri.com/powershell-5-0-tutorial-example-driven-parsing-using-convertfrom-string/): Russell Smith shows you how to easily parse complex text files using ConvertFrom-String in PowerShell 5.0. - [Introducing Microsoft Azure Backup Server](https://petri.com/introducing-microsoft-azure-backup-server/): Microsoft has started Project Venus by launching Microsoft Azure Backup Server, which offers more backup functionality and a local disk repository. - [Dell's $67 Billion Acquisition of EMC to be Biggest Tech Deal Ever](https://petri.com/dells-67-billion-acquisition-emc-biggest-tech-deal-ever/): PC giant Dell announced this morning that it would acquire storage giant EMC in a deal valued at $67 billion. EMC will merge with Dell, but VMware will not. - [Financial Service Firms Warming Up To Windows 10, Bloomberg’s Terminal Now Compatible](https://petri.com/financial-service-firms-warming-windows-10-bloombergs-terminal-now-compatible/): The financial service sector is not typically one that uses the words of ‘fast adoption’ but Windows 10 is starting to show penetration into this market. - [Azure IaaS Announcements at AzureCon](https://petri.com/azure-iaas-announcements-azurecon/): Microsoft announced a number of improvements to Azure, including new services, price reductions, and virtual machines that affect IT pros. - [Dell Rumored to be In Merger Talks With EMC](https://petri.com/dell-rumored-merger-talks-emc/): Aidan Finn weighs whether Dell is nuts for considering an acquisition of EMC. Would Microsoft own a share of VMware? How can this work? - [Paul Thurrott's Short Takes: October 9, 2015](https://petri.com/paul-thurrotts-short-takes-october-9-2015/): Because I'm so tired my eyes hurt, this week's other news includes a legal aid to Microsoft's email court case, PC sales hit another tough quarter, more. - [PowerShell 5.0 Just Enough Administration (JEA) Part 2: Creating Toolkits and Understanding Logs](https://petri.com/powershell-5-0-just-enough-administration-jea-part-2-creating-toolkits-and-understanding-logs/): Learn how to create your own JEA Toolkits (Endpoints), and monitor the logs for user activity. - [Memory Compression in Windows 10 Threshold 2](https://petri.com/memory-compression-in-windows-10-threshold-2/): Learn about upcoming changes to Memory Manager in Windows 10 Threshold 2, and how memory compression will be used to improve performance. - [Microsoft: An Olive Branch And A Pistol](https://petri.com/microsoft-an-olive-branch-and-a-pistol/): Microsoft's software and hardware strategy is evolving and with the new hardware being announced by the company, OEMs are being put on notice. - [Microsoft Announces Facebook, Instagram, Box, Twitter, and more Universal Apps for Windows 10](https://petri.com/microsoft-announces-facebook-instagram-box-twitter-and-more-universal-apps-for-windows-10/): Microsoft announces soon to be made available Windows 10 Universal Apps from Facebook, Instagram, Twitter, Netflix, and more. - [PowerShell Problem Solver: Fun with CSV Imported Objects](https://petri.com/powershell-problem-solver-fun-csv-imported-objects/): Use PowerShell to transform data from CSV files via objects in the pipeline. - [Current Status Episode 29: Data Protection in the Cloud with Gina Minks](https://petri.com/current-status-episode-29-data-protection-in-the-cloud-gina-minks/): Current Status co-hosts talk about data protection in the cloud with Gina Minks of Spanning. - [Eight Million Business PCs Now Running Windows 10](https://petri.com/eight-million-business-pcs-now-running-windows-10/): Microsoft announced at its event in NYC that Windows 10 is now running on 110 million PCs and of that base, 8 million are business machines. - [A Look at PowerShell 5.0](https://petri.com/fishing-powershell-5-0/): Jeff Hicks takes a look at PowerShell 5.0 and how solutions in PowerShell 4.0 and 3.0 translates to the new version. - [Basic Delimited Parsing using ConvertFrom-String in PowerShell 5.0](https://petri.com/basic-delimited-parsing-using-convertfrom-string-in-powershell-5-0/): Learn how to easily parse delimited text files using ConvertFrom-String in PowerShell 5.0. - [Today is Microsoft's Last Stand in Mobile](https://petri.com/today-is-microsofts-last-stand-in-mobile/): I'm heading to New York City on Amtrak's Acela Express to attend the Microsoft Windows 10 Devices event, a watershed moment for the firm's mobile efforts. - [Windows 10 Enterprise Feature: Credential Guard](https://petri.com/windows-10-enterprise-feature-credential-guard/): Russell Smith explains how Credential Guard in Windows 10 Enterprise can be used to protect domain user account passwords. - [What are Windows Server Containers?](https://petri.com/windows-server-containers/): Learn about Windows Server containers and how this virtualization technology will benefit your business. - [Paul Thurrott's Short Takes: October 2, 2015](https://petri.com/paul-thurrotts-short-takes-october-2-2015/): Because the altitude is getting to me, this week's other news includes Microsoft's new social networking features for email, and a whole lot more. - [Practicing PowerShell with Veeam](https://petri.com/practicing-powershell-with-veeam/): PowerShell MVP and expert Jeff Hicks shares his experiences talking about PowerShell live with Veeam Software. - [What is Slack and Is It Better Than Email?](https://petri.com/what-is-slack-and-is-it-better-than-email/): Russell Smith explains how Slack works, and how it can improve productivity for small teams working on internal projects. - [Exchange Server 2016 Is Now Available To Download](https://petri.com/exchange-server-2016-is-now-available-to-download/): Microsoft has announced today Exchange Server 2016 is now available for download and it comes with several new features for IT admins and users. - [Softerra Adaxes Review: An Active Directory Management and Automation Solution](https://petri.com/softerra-adaxes-review-active-directory-management-automation-solution/): Jeff Hicks provides an in-depth review of Softerra Adaxes, an Active Directory management and automation solution. - [PowerShell 5.0 Just Enough Administration (JEA) Part 1: Understanding JEA and Configuring the Demo Toolkit](https://petri.com/powershell-5-0-just-enough-administration-jea-part-1-understanding-jea-and-configuring-the-demo-toolkit/): Learn how to easily configuring constrained PowerShell Remoting endpoints using the PowerShell Just Enough Administration Toolkit. - [Microsoft and Google Settle All Patent Lawsuits](https://petri.com/microsoft-and-google-settle-all-patent-lawsuits/): Microsoft and Google have quietly settled all of the approximately 20 patent-related lawsuits against each other. Terms of the agreement were not disclosed. - [Current Status Episode 28: The CTO Perspective on Workspace with Ruben Spruijt, CTO Atlantis Computing](https://petri.com/current-status-episode-28-the-cto-perspective-on-workspace-with-ruben-spruijt-cto-atlantis-computing/): In this episode of Current Status, Phoummala, Theresa, and Melissa sit down with Ruben Spruijt, CTO Atlantis Computing, to discuss future trends in the IT workplace. - [Testing Empty Folders with PowerShell](https://petri.com/testing-empty-folders-with-powershell/): Learn how to clean up your folder structure on your PC with this quick PowerShell tutorial. - [Windows Server 2016 Feature: Switch Embedded Teaming](https://petri.com/windows-server-2016-switch-embedded-teaming/): Windows Server 2016 will offer a new way to do converged networking called Switch Embedded Teaming that also allows SMB Direct (RDMA) to be converged. - [PowerShell Problem Solver Updating CSV Files](https://petri.com/powershell-problem-solver-updating-csv-files/): In this PowerShell Problem Solver, Jeff Hicks continues his walkthrough on updating CSV files with PowerShell. - [Apple’s Enterprise Business is $25 billion A Year](https://petri.com/apples-enterprise-business-is-25-billion-a-year/): Apple’s CEO Tim Cook has shared that for Apple, the Enterprise is a $25 billion dollar a year business for the 12 months ending in June. - [A Quick PowerShell Tutorial: Adding a Hyper-V Custom View](https://petri.com/quick-powershell-tutorial-adding-hyper-v-custom-view/): Jeff Hicks shows us a quick PowerShell tutorial on adding a Hyper-V custom view. - [Microsoft Unleashes A U-SQL Submarine To Go Diving Through Your Data Lake](https://petri.com/microsoft-unlashes-a-u-sql-submarine-to-go-diving-through-your-data-lake/): Microsoft has announced U-SQL, a language that makes processing big data easier and it's coming to its Azure platform. - [Microsoft Announces Changes to Financial Reporting Structure](https://petri.com/microsoft-announces-changes-to-financial-reporting-structure/): Microsoft has announced changes to the way it will report its financial results, with the software giant trimming its top-level businesses down to three. - [Microsoft Pushes Back On Windows 10 Privacy Concerns](https://petri.com/microsoft-clarifies-windows-10-and-its-privacy-implications/): Ever since the launch of Windows 10, Microsoft has come under fire about the privacy implications of the OS and now the company is fighting back. - [Microsoft Has Acquired Adxstudio](https://petri.com/microsoft-has-acquired-adxstudio/): Microsoft has announced that they have acquired Adxstudio, a provider of web portals, engagement solutions and application lifecycle management solutions. - [Will The FTC Formally Charge Google with Antitrust Violations?](https://petri.com/will-the-ftc-formally-charge-google-with-antitrust-violations/): How can the U.S Federal Trade Commission even charge Google with violating antitrust laws when Android is in no way a monopoly in this country? - [Microsoft Provides Guidance On Windows 10 Activation: Digital Entitlement vs Product Key](https://petri.com/microsoft-provides-guidance-on-windows-10-activation-digital-entitlement-vs-product-key/): Microsoft has introduced a new way to activate Windows with Windows 10 called digital entitlement and now the company has posted new activation guidance. - [Less Than Two Months After Release, Windows 10 Has Surpassed 100 Million Installs](https://petri.com/less-than-two-months-after-release-windows-10-has-surpassed-100-million-installs/): Windows 10 was released by Microsoft on July 29th and sometime last week, the OS passed the 100 million install milestone, a major hurdle for the company. - [Consumer Interest In Windows 10 Is On The Rise](https://petri.com/consumer-interest-in-windows-10-is-on-the-rise/): Consumer interest in Windows 10 is on the rise with OEMs reporting increased interest and sales of the new platform. - [Add User Alerts to SharePoint Online Document Libraries](https://petri.com/add-user-alerts-sharepoint-online-document-libraries/): Russell Smith shows you how to set up email notifications to alert users when the contents of document libraries have been changed. - [Will Windows 10 Help Decrease Amount of Pirated Software?](https://petri.com/will-windows-10-help-decrease-amount-pirated-software/): Russell Smith discusses the changes to the wording of Microsoft's Services Agreement and how Windows 10 might help decrease the amount of pirated software. - [Paul Thurrott's Short Takes: September 25, 2015](https://petri.com/paul-thurrotts-short-takes-september-25-2015/): Because you need to leave this one to the professionals, this week's other news includes a potential US antitrust case against product bundling in Android. - [Microsoft Has Released A New App To Make Scheduling A Meeting Less Awful](https://petri.com/microsoft-has-released-a-new-app-to-make-scheduling-a-meeting-less-awful/): Microsoft has released an app that attempts to take the pain out of scheduling a meeting and is currently available for iOS users with Android coming soon. - [Microsoft Releases Outlook Groups App for Mobile](https://petri.com/microsoft-releases-outlook-groups-app-for-mobile/): Microsoft's Outlook Groups app for Android, Windows and iOS mobile devices gives users access to Office 365 Groups. - [U.S./China Cyber Security Agreement to Fall Short of Original Goals](https://petri.com/u-s-china-cyber-security-agreement-to-fall-short-of-original-goals/): U.S president Barack Obama will meet with Xi Jinping, the president of China, in Washington D.C. today. A possible cyber-security agreement is top-of-mind. - [Hyper-V Host Memory Utilization with PowerShell](https://petri.com/hyper-v-host-memory-utilization-with-powershell/): Jeff Hicks provides some PowerShell tricks for determining your Hyper-V host memory utilization. - [Microsoft To Release A Custom Windows 10 Experience For Baidu Users In China](https://petri.com/microsoft-will-release-a-custom-windows-10-experience-for-baidu-users-in-china/): Microsoft has announced a new partnership with Baidu that will allow them to sell the OS in that country with a custom experience for local users. - [Microsoft to Combat Advanced Persistent Threats](https://petri.com/microsoft-combat-advanced-persistent-threats/): Microsoft is developing a system called Project Sonar to counter advanced persistent threats (APTs). What are APTs and how will Sonar help? - [PowerShell Problem Solver: CSV Import Tricks and Tips](https://petri.com/powershell-problem-solver-csv-import-tricks-tips/): Import CSV files into PowerShell with these handy tips and tricks from IT veteran and PowerShell MVP Jeff Hicks. - [Microsoft appoints a new leader of Outlook to keep the client fresh](https://petri.com/microsoft-appoints-a-new-leader-of-outlook-to-keep-the-client-fresh/): Microsoft’s email application, Outlook, is likely one of, if not the most used, email applications on the planet and the product is getting a new leader. - [Microsoft’s Skype Outage Blamed On Configuration Change](https://petri.com/microsofts-skype-outage-blamed-on-configuration-change/): Earlier this week, Microsoft's Skype was knocked offline for several hours and the company is now coming forward about what caused the outage. - [Microsoft, Google and Others Invest in CloudFlare](https://petri.com/microsoft-google-and-others-invest-in-cloudflare/): Microsoft, Google and others are the latest companies to invest in CloudFlare, a content delivery network that protects websites and improves reliability. - [Building A Disaster Recovery Solution That Fits Your Budget](https://petri.com/building-a-disaster-recovery-solution-that-fits-your-budget/): Disaster Recovery as a Service (DRaaS) is growing 50% year-over-year and on pace to become a $12 billion market by 2020. - [What Does Windows Server 2016 Mean for Small Businesses?](https://petri.com/what-does-windows-server-2016-mean-small-businesses/): Russell Smith discusses why there's no immediate hurry for SMBs to upgrade to Windows Server 2016. - [Testing Hyper-V Disk Health with a Custom Property](https://petri.com/testing-hyper-v-disk-health-custom-property/): Jeff Hicks takes his custom solution on testing Hyper-V disk health a step further by showing us steps to help automate the process with PowerShell. - [Microsoft’s Office 2016 is now available](https://petri.com/microsofts-office-2016-now-available-to/): Microsoft's latest productivity suite, Office 2016, is now available for purchase or download if you are an Office 365 subscriber. - [Microsoft Announces Preview Import Service for SharePoint Online and OneDrive for Business](https://petri.com/microsoft-announces-preview-import-service-for-sharepoint-online-and-onedrive-for-business/): Migrate data to SharePoint Online and OneDrive for Business faster with the Office 365 Import Service. - [Thoughts on System Center 2012 R2 Update Rollup 7](https://petri.com/system-center-2012-r2-update-rollup-7/): Microsoft released Update Rollup 7 (UR7) for System Center 2012 R2 about 1 month ago. Read why it's probably safe to deploy this update now. - [Skype Downtime Impacts Millions Around The Globe](https://petri.com/skype-downtime-impacts-millions-around-the-globe/): Microsoft's communication tool, Skype, has been offline for several hours rendering the application useless; the company is currently working on a fix. - [Volkswagen Used Software to Cheat on Emissions](https://petri.com/volkswagen-used-software-to-cheat-on-emissions/): VW admitted late last week that it used software to defeat U.S. emissions testing for years in order to promote its so-called "clean diesel" vehicles. - [Paul Thurrott's Short Takes: September 18, 2015](https://petri.com/paul-thurrotts-short-takes-september-18-2015/): Because we remember that someone actually got a Zune tattoo, this week's other news includes another look at auto-downloading Windows 10 installs and more. - [Opinion: Word Mobile vs. Word 2013](https://petri.com/opinion-word-mobile-vs-word-2013/): Learn about the differences between Word Mobile for Windows 10 and Word 2013. - [Windows 10 Opinion: Vendors in No Hurry to Develop Universal Apps](https://petri.com/windows-10-opinion-vendors-no-hurry-develop-universal-apps/): Russell Smith explains why he thinks there's unlikely to be an explosion of Universal Apps for Windows 10 until Windows 7 loses significant market share. - [Apple Wins Key Ruling in Patent Case Appeal Against Samsung](https://petri.com/apple-wins-key-ruling-in-patent-case-appeal-against-samsung/): A United States federal appeals court ruled Thursday that Apple could prevent Samsung from shipping future devices that infringe on Apple's patents. - [Microsoft’s HoloLens Dev Kits Coming Next Year, First Target Is The Enterprise](https://petri.com/microsofts-hololens-dev-kits-coming-next-year-first-target-is-the-enterprise/): Microsoft's CEO, Satya Nadella, said that the HoloLens dev kits will arrive next year and the first customers will be the enterprise. - [Tips and Tricks with PowerShell's Get-Member](https://petri.com/tips-tricks-powershell-get-member/): PowerShell MVP Jeff Hicks shows us several tips and tricks with PowerShell's Get-Member cmdlet. - [Azure AD Now Supports Facebook and Google Logins, Microsoft Accounts Coming Soon](https://petri.com/azure-ad-now-supports-facebook-google-logins-microsoft-accounts-coming-soon/): Russell Smith explains how Microsoft's new Azure AD B2C service can help reduce identity management costs for businesses looking to engage with customers. - [Cortana Analytics, Salesforce and Alpine Metrics walk into a dataset, generates better sales forecasts](https://petri.com/cortana-analytics-salesforce-and-alpine-metrics-walk-into-a-dataset-generates-better-sales-forecasts/): Microsoft has announced that working with Salesforce and Alpine Metrics, they have created a new tool to help provide new insight into the sales workflow. - [Microsoft Surface Turns a Corner](https://petri.com/microsoft-surface-turns-corner/): How did Microsoft turn the Surface business from a billion dollar loss into a multi-billion dollar business? - [Microsoft’s Upcoming Windows Phones Offer It The Best Chance To Crack The Corporate Nut](https://petri.com/microsofts-upcoming-windows-phones-offer-its-best-chance-to-crack-the-corporate-nut/): Microsoft will be releasing two new Windows phones next month and they will be the first devices that may crack the corporate nut. - [How to Check Notebook Battery Health using POWERCFG](https://petri.com/check-notebook-battery-health-using-powercfg/): Use PowerCFG to determine the health of your notebook's battery - [Here’s what happens if you add more than 500 items to the Start menu in Windows 10](https://petri.com/heres-what-happens-if-you-add-more-than-500-items-to-the-start-menu-in-windows-10/): There is a bug in Windows 10 where if you add more than 500 items to the menu, it will crash, eat app icons and exhibit other odd behavior. - [A Better PowerShell Automation Philosophy](https://petri.com/better-powershell-automation-philosophy/): Jeff Hicks walks us through several different scenarios to help us understand how IT pros can continue to automate tasks with PowerShell. - [PowerShell Summit Europe 2015 is Now Underway](https://petri.com/powershell-summit-europe-2015-now-underway/): Jeff Hicks gives us an inside look at the PowerShell Summit Europe 2015 conference that is now underway. - [Microsoft Promotes Brad Smith to Company President](https://petri.com/microsoft-promotes-brad-smith-to-company-president/): Microsoft has announced that Brad Smith, its chief legal counsel since the antitrust days, has been promoted to president and chief legal officer. - [Testing Hyper-V Disk Health](https://petri.com/testing-hyper-v-disk-health/): Jeff Hicks shows us a solution to help test Hyper-V disk health by identifying critical virtual machines. - [Russia Finds Google Guilty of Antitrust Violations](https://petri.com/russia-finds-google-guilty-of-antitrust-violations/): Russia's antitrust agency found Google guilty of violating the country's laws by requiring device makers to bundle its apps and services on Android devices. - [Microsoft to unveil next generation hardware on October 6th](https://petri.com/microsoft-to-unveil-next-generation-hardware-on-october-6th/): Microsoft has announced that they will be hosting an event on October 6th to announce their next generation of hardware that includes Surface and phones. - [Microsoft re-signs agreement with NATO to share data to thwart cyber threats](https://petri.com/microsoft-re-signs-agreement-with-nato-to-share-data-to-thwart-cyber-threats/): Microsoft and NAT have signed an agreement to share data to help better protect countries in Europe; this is a renewal of a previous agreement. - [Use Azure as Virtual DR Site for VMware and Physical Servers](https://petri.com/use-azure-virtual-dr-site-vmware-physical-servers/): Learn more about Microsoft Azure's in-the-cloud disaster recovery (DRaaS) solution for VMware virtual machines and physical servers. - [Paul Thurrott's Short Takes: September 11, 2015](https://petri.com/paul-thurrotts-short-takes-september-11-2015/): Because a sentence that starts "you people" is never going to end well, this week's other news includes downloading Windows 10 whether you want it or not. - [Azure Backup of IaaS VMs Generally Available](https://petri.com/azure-backup-iaas-vms-generally-available/): Microsoft has made Azure Backup for IaaS virtual machines generally available. Learn about the improvements made to this vital service with this release. - [Apple Lures the Enterprise with the iPad Pro, Uses Office as the Bait](https://petri.com/apples-targets-the-enterprise-with-ipad-pro-and-office/): Apple held its keynote this week where it announced a myriad of products and one such device, the iPad Pro, is targeted at productivity focused individuals. - [Disconnect a Microsoft Account from your Windows 8 Login](https://petri.com/disconnect-a-microsoft-account-from-your-windows-8-login/): Learn how to disconnect a Microsoft account from a local Windows 8 account in this Ask the Admin by Russell Smith. - [Apple Announces New iPhones, iPads and More](https://petri.com/apple-announces-new-iphones-ipads-and-more/): Apple on Wednesday announced a wide array of new products, including new iPhone 6S smart phones, a Surface-like iPad Pro, Apple TV, iOS, and more. - [Microsoft’s Introducing a New Way to Update Office, Current Branch for Business](https://petri.com/microsofts-introducing-a-new-way-to-update-office-called-current-branch-for-business/): To help corporate customers keep their machines updated but no overburden them with updates, the company has announced Current Branch for Business. - [Working with PowerShell's Get-Member cmdlet](https://petri.com/working-with-powershell-get-member-cmdlet/): Jeff Hicks shows us how to do more with PowerShell's Get-Member cmdlet. - [Microsoft’s Office 2016 Will Arrive on September 22](https://petri.com/microsofts-office-2016-will-arrive-on-september-22/): Microsoft has announced that on September 22, the company will begin rolling out Office 2016, the latest iteration of the company’s productivity suite. - [Apple Joins Microsoft in Resisting Governmental Access to Customer Data](https://petri.com/apple-joins-microsoft-in-resisting-governmental-access-to-customer-data/): Later today, Apple will introduce new iPhones, iPads and other devices. But there are other things going on with Apple that are far more important. - [Windows 10 Roadmap – Fall 2015 Edition](https://petri.com/windows-10-roadmap-fall-2015-edition/): With the release of Windows 10, Microsoft is moving to a new servicing model for the OS that includes constantly... - [Windows 10 Will Receive Three New Enterprise Features This Month](https://petri.com/windows-10-insiders-will-get-three-new-enterprise-features-starting-this-month/): Microsoft has announced that Enterprise Data Protection, Microsoft Passport and Windows Store for Business will be arriving to Windows Insiders this month. - [Configure Share Permissions with WMI and PowerShell](https://petri.com/configure-share-permissions-wmi-powershell/): Learn how to easily configure share permissions with WMI and PowerShell in this helpful tutorial by Jeff Hicks. - [Windows 10 has Surpassed 81 Million Installs](https://petri.com/windows-10-has-surpassed-81-million-installs/): Microsoft previously that Windows 10 had surpassed 75 million installs and that number continues to grow and has surpassed 81 million installs. - [Microsoft Email Case Heads to Federal Appeals Court This Week](https://petri.com/microsoft-email-case-heads-to-federal-appeals-court-this-week/): This week Microsoft will face off against the DOJ in a closely-watched case that will help determine the scope of U.S. search warrants in the digital age. - [Microsoft ratchets up its cloud security credibility by acquiring Adallom](https://petri.com/microsoft-ratchets-up-its-cloud-security-offerings-by-acquiring-adallom/): Microsoft has announced this morning that they have acquired Adallom, a cloud security firm that helps secure client data. - [Microsoft heads back to court on September 9th](https://petri.com/microsoft-v-usa-september-9th/): Microsoft will be facing off against the US Department of Justice to decide the fate of cloud computing in the 2nd Circuit Court of Appeals starting on September 9th. - [Paul Thurrott's Short Takes: September 4, 2015](https://petri.com/paul-thurrotts-short-takes-september-4-2015/): Because Microsoft can't stop punching itself in the face, this week's other news includes Windows 10 milestones to look forward to, and a whole lot more. - [Fixing the Windows Server 2012 R2 Screen Lock Issue](https://petri.com/fixing-windows-server-2012-r2-screen-lock-issue/): Here's a tip on how to fix a screen lock issue in Windows Server 2012 R2 from Daniel Petri. - [Microsoft has acquired VoloMetrix, an organizational analytics tool](https://petri.com/microsoft-has-acquired-volometrix-boosts-its-organizational-analytics-appeal/): Microsoft has announced today that they have acquired VoloMetrix, a company that specializes in organizational analytics. - [Microsoft attracts an unlikely ally with Windows 10, VMware](https://petri.com/microsoft-finds-an-unlikely-ally-with-windows-10-vmware/): VMware is going to bury the hatchet with Microsoft as the two companies, who were once fierce combatants, are now working together to promote Windows 10. - [Tips for Searching for PowerShell History](https://petri.com/tips-searching-powershell-history/): Jeff Hicks provides us with several different solutions for PowerShell history, which include tips for using the command buffer and the Get-History cmdlet. - [Microsoft cranks up the performance of its VMs, cuts prices too](https://petri.com/microsoft-cranks-up-the-performance-of-its-vms-cuts-prices-too/): Microsoft has announced a new type of VM, the GS series, that is the company's top end offering and is designed for the most intensive applications. - [Microsoft’s SQL Server 2016 CTP 2.3 now available to download](https://petri.com/microsofts-sql-server-2016-community-technology-preview-2-3-now-available-to-download/): Microsoft has released SQL Sever 2016 CTP 2.3 (Community Technical Preview) is now available for download and it comes with several new features. - [Intel Promises a PC Renaissance with Skylake Processors](https://petri.com/intel-promises-a-pc-renaissance-with-skylake-processor/): Today, Microprocessor giant Intel trumpeted the arrival of its 6th-generation Core processor lineup, named Skylake, promising it would be a "turning point." - [Microsoft is reducing its number of portals, merging Intune with Office 365](https://petri.com/microsoft-is-reducing-its-number-of-portals-merging-intune-with-office-365/): Microsoft is reducing the number of portals it has by merging the Intune portal with Office 365, the Intune portal will shutdown later this month. - [Windows Update for Business will arrive later this year](https://petri.com/windows-update-for-business-will-arrive-later-this-year/): Microsoft announced Windows Update for Business but it has yet to be released, expect it to arrive later this year with Threshold wave 2. - [Windows 10 Enterprise adoption rate is ‘unprecedented’](https://petri.com/windows-10-enterprise-adoption-rate-is-unprecedented/): Microsoft has said that the adoption rate of Windows 10 is unprecedented for only a month after launch and they are encouraged by early feedback. - [Google Takes a Big Risk in Refuting EU Antitrust Claims in Europe](https://petri.com/google-takes-a-big-risk-in-refuting-eu-antitrust-claims-in-europe/): In rejecting the EC's antitrust claims, Google is risking a disaster that could cost billions in fines and require it to make major behavioral changes. - [Configure a Windows Remote Management HTTPS Listener](https://petri.com/configure-windows-remote-management-https-listener/): Russell Smith shows us how to easily configure a Windows Remote Management HTTPS listener in this Ask the Admin. - [Hello, World](https://petri.com/brad-sams-joins-petri/): Brad Sams is joining Petri as the Executive Editor where he will be helping to create content and drive strategy to grow Thurrott and Petri into household names. - [VMworld 2015: VMware Advances Into Hybrid Cloud and Containers](https://petri.com/vmware-advances-into-hybrid-cloud-and-containers/): VMWare announced a number of steps towards realizing its software-defined data center vision, including big pushes into the hybrid cloud and containers. - [Hyper-V Dynamic Memory Versus Virtual NUMA](https://petri.com/hyper-v-dynamic-memory-versus-virtual-numa/): Aidan Finn describes how Dynamic Memory and guest-aware NUMA offer different benefits and are mutually exclusive. - [Increase the Font Size in Windows 10 Universal Apps](https://petri.com/increase-the-font-size-in-windows-10-universal-apps/): In this quick tutorial, learn how to increase the font size in Windows 10 universal apps for better reading on small displays. - [Paul Thurrott's Short Takes: August 28, 2015](https://petri.com/paul-thurrotts-short-takes-august-28-2015/): Because I will turn this car around if I have to, this week's other news includes no Xbox Micro for you, Ubuntu really turns it up a notch, and more. - [Create a Custom Tool to Find History with PowerShell](https://petri.com/create-custom-tool-find-history-powershell/): Jeff Hicks shows us how we can create a custom tool and leverage PowerShell's Get-History cmdlet for better efficiency and productivity. - [Facebook Offers M to Counter Siri, Cortana and Google Now](https://petri.com/facebook-offers-m-to-counter-siri-cortana-and-google-now/): This week Facebook released a preview version of a personal digital called M. Can this Messenger-based solution compete with Siri, Cortana and Google Now? - [PowerShell Profile Tricks for Better VMware Management](https://petri.com/powershell-profile-tricks-better-vmware-management/): Maish Saidel-Keesing shows us a few PowerShell profile tricks that you can use for better and faster VMware management. - [PC Market Freefall Now Expected to Continue Through 2016, IDC Says](https://petri.com/pc-market-freefall-now-expected-to-continue-through-2016-idc-says/): A sobering new report from the market researchers at IDC refutes any notion that the PC market will stabilize or even rebound this calendar year. - [Chromebooks Passes iPad, Gains on Windows in US Education Market](https://petri.com/chromebooks-passes-ipad-gains-on-windows-in-us-education-market/): While Chromebooks haven't had much impact on the worldwide market for personal computing devices, Google's notebooks have seen some traction in education. - [Windows 10 Tip: Change the Default Search Engine in Edge](https://petri.com/windows-10-tip-change-default-search-engine-edge/): Learn how to change the default search engine in Windows 10 with this quick how-to article from Russell Smith. - [An Open Letter to Lenovo](https://petri.com/open-letter-lenovo/): IT veteran Jeff Hicks voices his concerns and suggestions to Lenovo regarding their public relations disasters like Superfish and the Lenovo Service Engine. - [Previews of SharePoint 2016 and Cloud Hybrid Search Are Now Available](https://petri.com/previews-of-sharepoint-2016-and-cloud-hybrid-search-are-now-available/): Microsoft on Monday announced that SharePoint 2016 IT Preview is now available, as is a cloud hybrid search preview for SharePoint Server 2013 and 2016. - [Why PowerShell's Desired State Configuration Should Matter to You](https://petri.com/why-powershell-desired-state-configuration-should-matter/): PowerShell MVP Jeff Hicks explains why PowerShell's Desired State Configuration (DSC) should matter to you as an IT professional and how it can help bolster your career. - [Paul Thurrott's Short Takes: August 21, 2015](https://petri.com/paul-thurrotts-short-takes-august-21-2015/): Because air travel makes me cranky, this week's other news includes a possible consolidated Microsoft hardware event in October, and much, much more. - [Microsoft Releases Windows Server 2016 Technical Preview 3](https://petri.com/microsoft-releases-windows-server-2016-technical-preview-3/): Learn about the key new features in Windows Server 2016 Technical Preview 3, including Hyper-V containers, Nano Server, and more. - [Microsoft Ships Third Preview Version of Windows Server 2016](https://petri.com/microsoft-ships-third-preview-version-of-windows-server-2016/): Microsoft has shipped Windows Server 2016 Technical Preview 3, along with related releases of System Center 2016 TP3 and the RSAT Tools for Windows 10. - [Extending Objects in Windows PowerShell, Part 4](https://petri.com/extending-objects-in-windows-powershell-part-4/): In his last article on extending objects in Windows PowerShell, Jeff Hicks shows us how to how to take learned concepts and use them at scale. - [Fishing for PowerShell: Leveraging Get-Command and Show-Command](https://petri.com/fishing-for-powershell-leveraging-get-command-show-command/): Learn how to find and do more with PowerShell with the help of Get-Command and Show-Command cmdlets. - [Microsoft Will Sell VAIO Computers in October](https://petri.com/microsoft-will-sell-vaio-computers-in-october/): VAIO is returning to the US, with Microsoft selling high-end VAIO computers—formerly owned by Sony—through its online and retail stores starting in October. - [Windows 10 Upgrade Phishing Emails](https://petri.com/windows-10-upgrade-phishing-emails/): Daniel Petri shares examples of circulating phishing emails from unsolicited companies that prompt unsuspecting users to upgrade to Windows 10. - [Windows 10's Latest Unfounded Privacy Fear: Games](https://petri.com/windows-10s-latest-unfounded-privacy-fear-games/): A report claims that Microsoft can "invade your Windows 10 computer in search of counterfeit software." Does Windows 10 have yet another privacy problem? - [Windows 10 Upgrade Tip: Cleaning Up Temporary Files](https://petri.com/windows-10-upgrade-tip-clean-up-temporary-files/): Learn how to clean up your temporary files following a Windows 10 upgrade installation. - [AT&T Was Reportedly a Long-Time Willing Partner of the NSA](https://petri.com/att-was-reportedly-a-long-time-willing-partner-of-the-nsa/): Citing leaked Snowden documents, The New York Times and ProPublica reported this weekend that AT&T was a decade-long "willing partner" of the NSA. - [A Look at Microsoft's New Hybrid Cloud Features](https://petri.com/microsoft-new-hybrid-cloud-features/): Learn about Microsoft's recent enhancements made to on-premises and in-cloud monitoring, online backup, and backing up VMware virtual machines. - [Paul Thurrott's Short Takes: August 15, 2015](https://petri.com/paul-thurrotts-short-takes-august-15-2015/): Because it's only 4 months until the new Star Wars movie, this week's other news includes the worst Windows infomercial ever, a Windows 10 update, and more. - [Extending Objects in Windows PowerShell, Part 3](https://petri.com/extending-objects-windows-powershell-part-3/): Jeff Hicks shows us more on extending objects in Windows PowerShell, this time by teaching us how to create a custom server management framework. - [Lenovo Announces Restructuring, Job Cuts After Mobile Losses](https://petri.com/lenovo-announces-restructuring-job-cuts-after-mobile-losses/): Lenovo posted revenues of $10.7 billion for the quarter ending June 30. But it faces “significant declines” in PCs and tablets, and slow growth in phones. - [Will the New Google Work with Microsoft?](https://petri.com/will-the-new-google-work-with-microsoft/): With Google splintering itself into a new corporate structure and Sundar Pichai taking the reins at the new Google subsidiary, things are clearly changing. - [Opinion Windows 10: Two Weeks Later](https://petri.com/opinion-windows-10-two-weeks-later/): In this article Petri Contributing Editor Russell Smith outlines why he believes Windows 10 isn’t ready for the mainstream just yet. - [Azure Virtual Machines SLA: A Primer](https://petri.com/azure-virtual-machines-sla/): Aidan Finn explains how you can deploy virtual machines to meet the system requirements for Microsoft's 99.95% SLA on Azure VMs. - [Google Announces Massive Corporation Restructuring](https://petri.com/google-announces-massive-corporation-restructuring/): In its typically unconventional fashion, Google will become a subsidiary of a new company called Alphabet, which is an umbrella for other, smaller companies - [Windows 10: Beating the Upgrade Fear](https://petri.com/windows-10-beating-upgrade-fear/): Daniel Petri shares his experiences on upgrading his computers to Windows 10 and outlines several different reasons why you shouldn't fear the upgrade. - [A Nokia Mobile Comeback? Not So Fast](https://petri.com/a-nokia-mobile-comeback-not-so-fast/): A Reuters report claims that Nokia, once the world’s largest maker of mobile phones, is plotting a mobile comeback. Sorry, Nokia fans, but that's laughable - [Goodbye Passwords: Windows 10 Passport](https://petri.com/goodbye-passwords-windows-10-passport/): Russell Smith provides an overview of the technology behind Windows 10 Passport, which is designed to put an end to passwords. - [Paul Thurrott's Short Takes: August 7, 2015](https://petri.com/paul-thurrotts-short-takes-august-7-2015/): This week's other news includes the first release of Microsoft’s bridge between iOS and Windows 10, future Microsoft mobile possibilities, and much more. - [Episode 25 August 6th - 10:15pm EDT Guest: John Martin, Data Center Architect, DCEP, CDCEP, CDCDP, CDCMP, CDCA](https://petri.com/episode-25-john-martin/): The modern data center. What does that mean in the era of the cloud? Do clouds hover over your servers... - [Windows 10 Privacy Concerns Are Overblown, But Perception Matters](https://petri.com/windows-10-privacy-concerns-are-overblown-but-perception-matters/): While most of the complaints about Windows 10's privacy violations are bogus, growing concerns about these issues could cause lasting damage. - [Extending Objects with PowerShell, Part 2](https://petri.com/extending-objects-powershell-part-2/): Jeff Hicks continues his tutorial on extending objects with PowerShell by showing us how to create alias and utilize methods with objects. - [With Windows 10 Rolling Out, Microsoft Looks Forward to Windows 10 Mobile](https://petri.com/with-windows-10-rolling-out-microsoft-looks-forward-to-windows-10-mobile/): With Microsoft focused on a “mobile first, cloud first” future, the software giant needs Windows 10 to fly on non-PC devices too. So smart phones are next. - [Nokia Sells HERE to German Auto Consortium](https://petri.com/nokia-sells-here-to-german-auto-consortium/): Nokia has agreed to sell its HERE digital mapping and location services business to a consortium of European automakers for about $3.8 billion. - [User Account Control: Standard User versus Protected Administrator Accounts](https://petri.com/user-account-control-standard-user-versus-protected-administrator-accounts/): Russell Smith explains some of the potential risks of using administrator accounts in Windows. - [Deep Dive on Windows Server 2016 New Features: Nested Virtualization in Hyper-V](https://petri.com/deep-dive-windows-server-2016-new-features-nested-virtualization-hyper-v/): Learn about nested virtualization in Windows Server 2016 for Hyper-V, a new feature that lets a user create and share virtual machines. - [Microsoft Reportedly Invests in Uber](https://petri.com/microsoft-reportedly-invests-in-uber/): Microsoft has invested about $100 million in Uber as part of a round of financing that values the controversial taxi-replacement service at $51 billion. - [Windows 10's Continuum Killed the Personal Computer](https://petri.com/windows-10-continuum-killed-personal-computer/): The dream is no longer a PC in every home. Aidan Finn believes that Windows 10 Continuum has the potential to kill off the PC as we know it. - [Paul Thurrott's Short Takes: July 31, 2015](https://petri.com/paul-thurrotts-short-takes-july-31-2015/): Because Windows 10 is here and I feel fine, this week’s other news includes Windows 10’s impressive day-one performance, the... - [Microsoft Does Right by Internet and Its Customers by Phased Windows 10 Rollout](https://petri.com/microsoft-does-right-by-internet-and-its-customers-by-phased-windows-10-rollout/): Alarmists were predicting an Internet meltdown on Wednesday, with Microsoft rolling out Windows 10 electronically to millions of customers in 190 countries. - [Extending Objects in Windows PowerShell, Part 1](https://petri.com/extending-objects-windows-powershell-part-1/): PowerShell MVP Jeff Hicks shares beginning tips and tricks for getting started with extending objects in Windows PowerShell. - [Best Windows 10 Features for Better Productivity, Security](https://petri.com/best-windows-10-features-for-better-productivity-security/): To commemorate the launch of Windows 10, we're providing our list of the best Windows 10 features for better productivity and security. - [Living on the Edge: Microsoft’s New Browser for Windows 10](https://petri.com/living-edge-microsofts-new-browser-windows-10/): Russell Smith looks at some of the changes Microsoft has made to its new Edge browser for Windows 10. - [Microsoft Delivers Free Windows 10 Upgrade in 190 Countries](https://petri.com/microsoft-delivers-free-windows-10-upgrade-in-190-countries/): Well, today is the big day: Windows 10 is now available as a free upgrade to users of Windows 7 and Windows 8.1 in 190 countries around the world. - [Budgeting Struggles with Cloud Computing](https://petri.com/budgeting-struggles-cloud-computing/): Learn about the challenges around planning IT budgets for cloud computing, and learn about recent price increases from Microsoft's Azure services. - [Newly Discovered Android Flaw Puts Almost One Billion at Risk](https://petri.com/newly-discovered-android-flaw-puts-almost-one-billion-at-risk/): Android really is the new Windows: a newly-discovered set of security vulnerability in the mobile OS has placed almost one billion users at risk of attack. - [Thinking About the Next Surface Pro](https://petri.com/thinking-about-the-next-surface-pro/): Now that we're sure that Microsoft won't suddenly announce a new Surface Pro model in tandem with the release of Windows 10 this week, our eyes turn to the fall. - [Deep Dive in Windows Server 2016 New Features: PowerShell Direct](https://petri.com/deep-dive-windows-server-2016-new-features-powershell-direct/): Learn all about the new Windows Server 2016 feature, PowerShell Direct, which prevents IT admins from making simple configuration mistakes. - [Paul Thurrott's Short Takes: July 24, 2015](https://petri.com/paul-thurrotts-short-takes-july-24-2015/): Because Windows 10 is inevitable, this week's other news includes the pending Windows 10 launch, Google's latest attempt at violating your privacy, and more - [Why Does Hyper-V Have Network Issues with 1 GbE NICs?](https://petri.com/hyper-v-network-issues-1-gbe-nics/): A common cause of network-related crashes and performance issues on Hyper-V is VMQ. Find out why you should disable VMQ on all of your 1 GbE NICs. - [Backup and Restore Users on a Remote SQL Database with T-SQL and PowerShell](https://petri.com/backup-restore-users-remote-sql-database-tsql-powershell/): Here's a quick tutorial from Michael Simmons on how to backup and restore users on a remote SQL database with the help of T-SQL and PowerShell. - [Apple Posts Blockbuster Earnings but Disappoints Investors](https://petri.com/apple-posts-blockbuster-earnings-but-disappoints-investors/): Apple posted a profit of $10.7 billion on revenues of $50 billion while selling an incredible 47.5 million iPhones and still manage to disappoint investors. - [Microsoft Delivers $2.1 Billion Operating Loss on Phone Write-Down](https://petri.com/microsoft-delivers-2-1-billion-operating-loss-on-phone-write-down/): It was a solid quarter for Microsoft, with the firm posting $22.2 billion in revenues for the previous quarter. But 8 billion in write-downs don't help. - [Tech Giants Petition Court to Reconsider Damages Award in Apple v. Samsung](https://petri.com/tech-giants-petition-court-to-reconsider-damages-award-in-apple-v-samsung/): Dell, Google, and other Silicon Valley technology giants have petitioned the US Federal Court of Appeals to reconsider a damages ruling in Apple v. Samsung. - [An Interview with Microsoft’s Ranga Rengarajan, Data Platform Services](https://petri.com/interview-microsoft-ranga-rengarajan-data-platform-services/): Senior Editor Blair Greenwood interviews Microsoft's Ranga Rengarajan of Data Platform Services on SQL Server 2016 and the current state of big data in an IT pro world. - [Even with Updating Changes, Windows 10 Will Retain 10 Year Support Lifecycle](https://petri.com/even-with-updating-changes-windows-10-will-retain-10-year-support-lifecycle/): Yes, Windows 10 is doing many things differently, but it will stick the standard ten-year support life cycle, while requiring users to stay up-to-date. - [Microsoft's Project Venus: Extending Azure Backup Features](https://petri.com/microsoft-project-venus-extending-azure-backup-features/): Aidan Finn gives us a look at Microsoft's new Project Venus, which is a multi-step project that will quickly add desired features to Azure Backup. - [Farewell and Thank You](https://petri.com/farewell-and-thank-you/): Editorial Director Jeff James ends his tenure at The Petri IT Knowledgebase with some thoughts on what made the site such a pleasure to be a part of. - [Paul Thurrott's Short Takes: July 17, 2015](https://petri.com/paul-thurrotts-short-takes-july-17-2015/): Because no PC should be left behind in the Windows 10 upgrade wave, this week's other news includes a new theory about when Surface Pro 4 might ship, more. - [Working with the PowerShell ISE and Script Snippets](https://petri.com/working-with-the-powershell-ise-and-script-snippets/): PowerShell MVP Jeff Hicks shows us how to work with the PowerShell and script snippets to save you from excessive typing. - [Despite PC Doldrums, Intel Beats Expectations](https://petri.com/despite-pc-doldrums-intel-beats-expectations/): Intel announced earnings for the second quarter of 2015, posting net income of $2.7 billion on revenues of $13.2 billion, beating expectations. - [Microsoft Issues Final Patch Tuesday Updates for Windows Server 2003](https://petri.com/microsoft-issues-final-patch-tuesday-updates-for-windows-server-2003/): It's the end of an era: On Tuesday, Microsoft issued its final set of Patch Tuesday security updates for Windows Server 2003. - [Bye Windows Server 2003, In Remembrance](https://petri.com/bye-windows-server-2003-in-remembrance/): Aidan Finn looks back on his experience when he first deployed Windows Server 2003 and considers what might have happened in the future. - [Enable Two-Factor Authentication with Microsoft Accounts and Outlook.com](https://petri.com/enable-two-factor-authentication-with-microsoft-accounts-and-outlook-com/): Learn steps for enabling two-factor authentication for your Microsoft accounts for increased security and protection against leaks. - [Report: Uber Backs Out of Talks to Acquire HERE from Nokia](https://petri.com/report-uber-backs-out-of-talks-to-acquire-here-from-nokia/): Uber has reportedly backed out of talks to acquire Nokia's HERE mapping and location services. The reason? Nokia was asking for too much money. - [WPC 2015: 5 Announcements IT Pros Should Care About](https://petri.com/wpc-2015-5-announcements-it-pros-should-care-about/): Aidan Finn lists five announcements emerging from Microsoft's 2015 Worldwide Partner Conference that IT pros should care about. - [Microsoft to "Upgrade the World" Starting July 29](https://petri.com/microsoft-to-upgrade-the-world-starting-july-29/): Microsoft has announced its plans to "upgrade the world" to Windows 10 starting on July 29. The software giant will also host special events in 13 cities. - [Every Business is a Tech Business: Cultivating Better Business Practices](https://petri.com/every-business-is-a-technology-business-cultivating-better-business-practices/): Russell Smith discusses the value of adopting cloud solutions to improve productivity through collaboration in small businesses. - [Paul Thurrott's Short Takes: July 10, 2015](https://petri.com/paul-thurrotts-short-takes-july-7-2015/): This week's other news includes reasons for Windows Phone's failure, getting closer to the truth of HoloLens, the PC industry continues to tank, and more. - [Moving from CSV to XML Part 4](https://petri.com/csv-xml-powershell-finishing-touches-custom-tool/): In the final article in this series on converting CSV to XML with PowerShell, Jeff Hicks puts finishing touches on our custom tool. - [Microsoft to Lay Off 7800 Employees, Take $7.6 Billion Write-Off on Nokia Purchase](https://petri.com/microsoft-to-lay-off-7800-employees-take-7-6-billion-write-off-on-nokia-purchase/): Microsoft will write off $7.6 billion, take a restructuring charge related to the Nokia purchase, and lay off 7,800 employees, mostly in its phone business. - [Troubleshooting Upgrade Problems in Windows 10 Build 10159](https://petri.com/troubleshooting-upgrade-problems-in-windows-10-build-10159/): Russell Smith shows us a workaround for troubleshooting upgrade problems in the Windows 10 Build 10159. - [CSV to XML with PowerShell: Writing Typed Objects to the Pipeline](https://petri.com/csv-xml-powershell-writing-typed-objects-pipeline/): In this article series on converting CSV to XML with PowerShell, Jeff Hicks shows us how to write typed objects to the pipeline. - [CSV to XML with PowerShell: Capture Type Information for Different Properties](https://petri.com/csv-xml-powershell-capture-type-information-different-properties/): In this article series on moving CSV to XML, Jeff Hicks shows us who to capture type information for different properties. - [Alternatives to the OneDrive for Business Sync Client](https://petri.com/alternatives-onedrive-business-sync-client/): Russell Smith looks at the many issues with Microsoft's OneDrive for Business sync client, and why third-party solutions don't step up to the challenge for resolving those issues. - [How to Install the Insider Hub App in Windows 10](https://petri.com/install-insider-hub-app-windows-10/): Learn how to add the Insider Hub app back to Windows 10 in build 10158 and later. - [How to Add a User to the Administrators Group](https://petri.com/add-user-administrators-group/): Russell Smith shows us how to add or remove a user account from the local Administrators group in Windows 7 and later operating systems. - [Managing INI Files with PowerShell Part 2](https://petri.com/managing-ini-files-powershell-part-2/): Jeff Hicks continues his tutorial of managing traditional INI files with PowerShell. - [Parallel Processing in PowerShell: Active Directory Cmdlets Revisited](https://petri.com/parallel-processing-in-powershell-active-directory-cmdlets/): Jeff Hicks shows us additional tips and tricks for parallel processing in PowerShell with the Active Directory cmdlets. - [4 Ways to Configure Azure VMs using PowerShell](https://petri.com/4-ways-to-configure-azure-vms-using-powershell/): Russell Smith presents four different ways to configure Azure VMs using PowerShell, including the Azure DSC extension and more. - [Using PowerShell to Export CSV Files to XML: Part 1](https://petri.com/using-powershell-to-export-csv-files-to-xml/): Jeff Hicks shows us a quick primer on using PowerShell to export CSV files to XML. - [Restrict Privileged Accounts with Authentication Silos in Windows Server 2012 R2](https://petri.com/restrict-privileged-accounts-with-authentication-silos-in-windows-server-2012-r2/): Learn how to restrict the use of domain admin accounts using authentication policy and silos in Windows Server 2012 R2. - [What’s New in Outlook 2016 Preview](https://petri.com/whats-new-outlook-2016-preview/): Russell Smith talks about some of his favorite features in Outlook 2016 Preview, including Clutter, Modern Attachment Handling, and more. - [Managing INI Files with PowerShell](https://petri.com/managing-ini-files-with-powershell/): Jeff Hicks shows us how to manage traditional INI files in a more object-based approach with PowerShell. - [Paul Thurrott's Short Takes: June 26, 2015](https://petri.com/paul-thurrotts-short-takes-june-26-2015/): Because France, this week's other news includes a literally incredible prediction about Windows 10 adoption in business, HoloLens heads for space, and more. - [Using PowerShell in Parallel with the Active Directory Cmdlets](https://petri.com/using-the-powershell-active-directory-cmdlets/): Jeff Hicks shows us how to use PowerShell in parallel with the Active Directory cmdlets. - [Episode 24 - June 25th- 10:15pm EDT Guest: Rick Dehlinger](https://petri.com/episode-24-rick-dehlinger/): Converged infrastructure, is this just a fad or it is a data center strategy that is here to stay. Join us to discuss... - [PowerShell Problem Solver: Active Directory Remote Desktop Settings](https://petri.com/powershell-problem-solver-active-directory-remote-desktop-settings/): Jeff Hicks tackles a problem with Active Directory Remote Desktop settings, where you can readily see in the settings, but Get-ADUser doesn't retrieve them. - [With Hardware in Freefall, Blackberry CEO Admits to Android Dreams](https://petri.com/with-hardware-in-freefall-blackberry-ceo-admits-to-android-dreams/): Blackberry CEO John Chen admitted this week that he is considering moving his firm's devices business to Android while charting a software-based future. - [Microsoft Launches New Previews for Azure SQL Data Warehouse, SQL Server 2016](https://petri.com/microsoft-launches-new-previews-azure-sql-data-warehouse-sql-server-2016/): Microsoft announced that a new limited public preview is now available for Azure SQL Data Warehouse, and the CTP 2.1 Preview is now available for SQL Server 2016. - [Microsoft Launches New Microsoft Azure VM Pricing Tool](https://petri.com/microsoft-launches-new-azure-vm-pricing-tool/): Learn about Microsoft's new tool for pricing Azure virtual machines and common issues that are associated with pricing VMs. - [Getting Started with PowerShell Profiles](https://petri.com/getting-started-with-powershell-profiles/): Learn how to get started with PowerShell profiles with three great ways to make your administrative much more productive. - [Samsung Laptops Are Quietly Disabling Windows Update](https://petri.com/samsung-laptops-are-quietly-disabling-windows-update/): A Samsung software utility is disabling Windows Update on the firm's PCs in order to ensure that only the correct drivers are installed. Hilarity ensues. - [US Navy Pays Millions for Extended Windows XP Support](https://petri.com/us-navy-pays-millions-for-extended-windows-xp-support/): The US Navy last year entered into a Microsoft Custom Support Agreement (MCSA) so it can continue using Windows XP past that OS's support expiration. - [Does Azure Backup Work?](https://petri.com/does-azure-backup-work/): Aidan Finn shares his experience on how he almost lost his production machine data and reviews whether Azure Backup for Virtual Machine works in the event of data loss. - [An Introduction to Parallel PowerShell Processing](https://petri.com/introduction-to-parallel-powershell-processing/): PowerShell MVP Jeff Hicks gives us an introduction to parallel PowerShell processing for better performance for tasks that scale. - [Making a PowerShell Command Your Own](https://petri.com/making-powershell-command/): PowerShell MVP Jeff Hicks shows us how we can create our own PowerShell command. - [Enable Distributed BranchCache on a Microsoft Azure File Server](https://petri.com/enable-distributed-branchcache-on-a-microsoft-azure-file-server/): Aidan Finn shows us how to enable distributed BranchCache on a Microsoft Azure file server. - [EU Demands Sweeping Changes to Google Search](https://petri.com/eu-demands-sweeping-changes-to-google-search/): Regulators from the European Commission are requiring Google to make sweeping changes to its Search service due to ongoing violations of EU antitrust laws. - [New MDM Features in Microsoft's Enterprise Mobility Suite](https://petri.com/new-mdm-features-microsoft-enterprise-mobility-suite/): Peter De Tender outlines new mobile device management (MDM) features that are coming to Microsoft's Enterprise Mobility Suite. - [Improving Microsoft Azure File Server Performance with BranchCache](https://petri.com/improving-microsoft-azure-file-server-performance-with-branchcache/): Learn how you can improve file server performance in Azure without adding any additional hardware or virtual machines by using Windows BranchCache. - [Paul Thurrott's Short Takes: June 19, 2015](https://petri.com/paul-thurrotts-short-takes-june-19-2015/): Because it's only 40 days until Microsoft launches Windows 10, this week's other news includes Dell pushing old PCs with a new OS, who won E3, and more. - [Create Azure Active Directory Users Using PowerShell](https://petri.com/create-azure-active-directory-users-using-powershell/): Learn how to create Azure Active Directory users using PowerShell in this how-to article by Aidan Finn. - [Episode 23 : 06/18/2015 10:15 EDT Guests: Chris Matthieu and Steve Greenberg](https://petri.com/episode-23-chris-matthieu-and-steve-greenberg/): Unicorn sightings guaranteed during this episode!   Join us to discuss Internet of Things (IOT) with Octoblu co-founder Chris Mattheiu (@chrismatthieu) and Citrix... - [FCC to Fine AT&T $100 Million for Throttling Unlimited Data Users](https://petri.com/fcc-to-fine-att-100-million-for-throttling-unlimited-data-users/): The Federal Communications Commission announced that it plans to fine A&T Mobile $100 million for misleading its customers on unlimited cellular data plans. - [Using Conditional Breakpoints in PowerShell Scripts](https://petri.com/conditional-breakpoints-in-powershell/): Understand how to use conditional breakpoints in PowerShell to test and debug different scripts and functions. - [How to Create a Windows Server 2012 R2 Authentication Policy](https://petri.com/how-to-create-a-windows-server-2012-r2-authentication-policy/): Russell Smith shows us how to create a Windows Server 2012 R2 authentication policy to increase security and avoid misuse of your administrator accounts. - [RescueTime Review: Understand Time Spent for Better Productivity](https://petri.com/rescuetime-review/): Jeff Hicks provides us with a review of RescueTime, which tracks your time spent on different activities to better understand and improve your productivity. - [Nadella Announces Yet Another Microsoft Shake-Up](https://petri.com/nadella-announces-yet-another-microsoft-shake-up/): This week, Microsoft CEO Satya Nadella cleaned house yet again, consolidating business units and jettisoning a number of high-profile executives. - [PowerShell Remoting Tip: Setting a Network Category to Private](https://petri.com/powershell-remoting-tip-setting-a-network-category-to-private/): Jeff Hicks teaches us a PowerShell remoting tip by showing us how to set a network category to private. - [Microsoft to Automatically Encrypt Bing Search Traffic](https://petri.com/microsoft-to-encrypt-bing-search-traffic/): Microsoft announced this week that it will automatically encrypt all Bing search traffic by default starting "this summer." - [PowerShell Import-CSV Cmdlet: Parse a Comma-Delimited CSV Text File](https://petri.com/powershell-import-csv-cmdlet-parse-comma-delimited-csv-text-file/): Learn how to easily parse a comma-delimited CSV text file with the PowerShell Import-CSV cmdlet. - [How to Learn PowerShell](https://petri.com/learn-powershell/): Jeff Hicks serves us some practical advice and tips on how to learn PowerShell with ease. - [BlackBerry's Rumored Android Pivot Might Really Be About Exiting the Hardware Business](https://petri.com/blackberrys-rumored-android-pivot-might-really-be-about-exiting-the-hardware-business/): Assessing Blackberry's rumored move to Android, it's obvious that in doing so, Blackberry is really signaling its intent to exit the hardware business. - [More Complaining I’m Tired of Hearing: About PowerShell Remoting](https://petri.com/about-powershell-remoting/): Jeff Hicks shares his thoughts about complaints and excuses regarding PowerShell remoting. - [Sharing Files in the Cloud using Azure Files](https://petri.com/sharing-files-in-the-cloud-using-azure-files/): Learn how to quickly create and connect to Azure Files SMB shares all in one place using PowerShell. - [Optimizing PowerShell Scheduled Jobs](https://petri.com/optimizing-powershell-scheduled-jobs/): PowerShell MVP Jeff Hicks teaches us tips and tricks for optimizing PowerShell Scheduled Jobs. - [Paul Thurrott's Short Takes: June 12, 2015](https://petri.com/paul-thurrotts-short-takes-june-12-2015/): Because only Snoop Dog could put the Twizzle back in Twitter, this week's other news includes Microsoft abandoning a Nokia smart watch design and much more. - [Network Traffic Management Using DNS Policies in Windows Server 2016](https://petri.com/network-traffic-management-using-dns-policies-in-windows-server-2016/): Learn how to implement network traffic management using DNS Policies in Windows Server 2016 Technical Preview 2. - [Using the Microsoft Azure Storage Explorer Tools](https://petri.com/using-the-microsoft-azure-storage-explorer-tools/): Learn about different third-party tools and solutions for better use with your Microsoft Azure storage account. - [Amazon, Apple Face New Antitrust Investigations](https://petri.com/amazon-apple-face-new-antitrust-investigations/): Success has its downsides: both Amazon.com and Apple are now facing antitrust inquiries related to their domination of digital content markets. - [Easier Azure VM Deployment with the Custom Script Extension](https://petri.com/scripted-customization-azure-vm-deployment/): Make Azure VM deployment easier with a scripted configuration option called the Custom Script extension in Azure. - [Wormhole Area Networking and Microsoft Azure](https://petri.com/wormhole-area-networking-and-microsoft-azure/): Aidan Finn describes how to move legacy services such as file servers and LOB apps with thick clients to Azure using a a new networking technology. - [No Back Doors: Microsoft Opens Windows Source Code to EU Governments](https://petri.com/no-back-doors-microsoft-opens-windows-source-code-to-eu-governments/): Microsoft this past week opened a Transparency Center in Brussels and invited EU governments to analyze the source code to Windows and other products. - [How To Upload Files to Microsoft Azure](https://petri.com/how-to-upload-files-to-microsoft-azure/): Learn quick and easy steps on how to upload files to Microsoft Azure. - [Identifying Website Visitor IP Addresses Using PowerShell](https://petri.com/powershell-problem-solver/): Learn how to identify a website visitor's IP addresses with PowerShell. - [Apple Aims Directly at Android with New Announcements](https://petri.com/apple-aims-directly-at-android-with-new-announcements/): At its Worldwide Developer Conference on Monday, Apple announced a series of product updates and initiatives aimed at displacing the Android market leader. - [What is the Windows Server Network Controller?](https://petri.com/what-is-the-windows-server-network-controller/): Learn about Microsoft's new Windows Server Network Controller, which is a new cloud fabric management solution in Windows Server 2016. - [Free Tools for Importing Email to Office 365](https://petri.com/free-tools-for-importing-email-to-office-365/): Learn about free tools for importing email to Office 365, including tools for Exchange Online batch migrations and more. - [Is It OK for Microsoft to Push the Windows 10 Upgrade on Users?](https://petri.com/is-it-ok-for-microsoft-to-push-the-windows-10-upgrade-on-users/): In Microsoft's mad quest to push over a billion people to Windows 10 as quickly as possible, has the software giant gone too far? - [Episode 22 - June 6th - 10:15 EDT Guest: Jeff Guillet – Microsoft Exchange MVP](https://petri.com/episode-22-jeff-guillet-microsoft-exchange-mvp/): Hi Ho, Hi Ho, it’s to the cloud we go!   Join us to discuss Office 365 Identity Management with Microsoft Exchange MVP... - [How to Create and Validate a Microsoft Azure Active Directory Domain](https://petri.com/how-to-create-and-validate-a-microsoft-azure-active-directory-domain/): Aidan Finn shows us how to create and validate a Microsoft Azure Active Directory Domain. - [Use PowerShell to Copy Files to Multiple Locations](https://petri.com/use-powershell-to-copy-files-to-multiple-locations/): Learn how to use PowerShell to copy files to multiple locations in this tutorial by Jeff Hicks. - [Paul Thurrott's Short Takes: June 5, 2015](https://petri.com/paul-thurrotts-short-takes-june-5-2015/): Because talk is cheap and actually solving problems takes skill, this week's other news includes a major Chinese government hack of US government workers. - [Windows Phone Tip: Use the Keyboard Faster](https://petri.com/windows-phone-tip-use-the-keyboard-faster/): Learn some useful shortcuts that can help you use the keyboard faster in Windows Phone 8.1 - [Microsoft Pledges Support for SSH](https://petri.com/microsoft-pledges-support-for-ssh/): Microsoft this week pledged to bidirectionally support the Secure Shell (SSH) encrypted network protocol in the PowerShell scripting environment. - [How to Use Cortana in Windows 10](https://petri.com/use-cortana-windows-10/): Russell Smith provides tips on how to use Cortana in Windows 10, including explanations for Notebook, reminders, and places features. - [Getting Started with DISM PowerShell Cmdlets](https://petri.com/getting-started-with-dism-powershell-cmdlets/): Jeff Hicks shows us tips for getting started with DISM PowerShell cmdlets, which are useful for making changes to desktop settings and Windows images. - [Add or Remove Active Directory attributes from Read-Only Domain Controllers (RODCs)](https://petri.com/modify-the-read-only-domain-controller-filtered-attribute-set-using-adsi-edit/): Learn how to easily add or remove Active Directory attributes from read-only domain controllers (RODCs) in this tutorial by Russell Smith. - [Microsoft Keeps Up the Guessing Game with Windows 10 Barreling Towards Release](https://petri.com/microsoft-keeps-up-the-guessing-game-with-windows-10-barreling-towards-release/): Windows 10 will arrive on July 29 whether it's ready or not, but Microsoft is failing in exactly the same way it always does: Communication. - [PowerShell Problem Solver: Creating a Better EventLog View](https://petri.com/powershell-problem-solver-creating-better-eventlog-view/): Learn how to change the default display for PowerShell's Get-Eventlog cmdlet by formatting the output to a list. - [OneDrive versus OneDrive for Business](https://petri.com/onedrive-versus-onedrive-business/): Understand the differences between OneDrive versus OneDrive for Business so that you can understand which solution is best for you. - [Intel to Acquire Altera for $16.7 billion](https://petri.com/intel-to-acquire-altera-for-16-7-billion/): Microprocessor giant Intel announced on Monday that it will acquire Altera, a maker of specialized integrated circuits, for $16.7 billion. - [13 Things System Administrators Hate About IT Vendors](https://petri.com/13-things-system-administrators-hate-about-it-vendors/): Petri IT Knowledgebase Editorial Director Jeff James supplies his list of top 13 things system administrators hate about IT vendors. - [A Summer Reading List for System Administrators](https://petri.com/summer-reading-list-for-system-administrators/): Jeff Hicks provides his summer reading list for system administrators, which includes resources on IPv6, Docker, and PowerShell. - [Windows 10 Release Will Hurt the PC Market This Year](https://petri.com/windows-10-release-will-hurt-the-pc-market-this-year/): Windows 10 will trigger a steeper reduction of PC sales this year because Microsoft is giving it away for free to existing customers. - [SharePoint Site Collection Ownership Issues: Assigning Permissions to a Web Application](https://petri.com/sharepoint-site-collection-ownership-issues-assigning-permissions-to-a-web-application/): Michael Simmons describes a common issue with SharePoint site collection ownership, where farm administrators are often listed as the site owners. - [Recent Enhancements to Azure Site Recovery](https://petri.com/recent-enhancements-to-azure-site-recovery/): Aidan Finn lists the recent enhancements to Azure Site Recovery, which includes a new preview for VMware virtual machines and physical servers. - [Paul Thurrott's Short Takes: May 29, 2015](https://petri.com/paul-thurrotts-short-takes-may-29-2015/): Because I feel like it and I’m tired of explaining myself, this week's other news includes a July confirmation for Windows 10, and much, much more. - [Episode 21 - May 28th- 10:15pm EDT Guest : Leon Adato, Head Geek at SolarWinds](https://petri.com/episode-21-leon-adato-head-geek-at-solarwinds/): Servers go down. Systems crash. Lights go out in the datacenter. As a sysadmin, being informed of these outages are... - [What is Microsoft Azure Stack?](https://petri.com/microsoft-azure-stack/): Aidan Finn explains how Microsoft is bringing Azure to your data center on your terms using Azure Stack. - [Microsoft Azure IaaS Announcements at Build and Ignite 2015](https://petri.com/microsoft-azure-iaas-announcements-at-build-and-ignite-2015/): Aidan Finn provides a summary of Microsoft Azure IaaS announcements at Build and Ignite 2015. - [Microsoft Says It Would Obey Encryption Laws](https://petri.com/microsoft-says-it-would-obey-encryption-laws/): With important countries like the USA and UK debating whether to require tech firms to enable encryption back doors, Microsoft has finally spoken up. - [SQL Server 2016 Community Technology Preview (CTP2) Now Available for Download](https://petri.com/sql-server-2016-community-technology-preview-ctp2-now-available-download/): The SQL Server 2016 Community Technology Preview (CTP2) is now available to download and provides a first look into Always Encrypted and Stretch Database capabilities. - [PowerShell Problem Solver: Make it Pretty](https://petri.com/change-powershell-console-font-and-background-colors/): Learn how to easily change the PowerShell console font and background colors. - [A New Strategy for Windows Phone Emerges as Cortana Heads to Android and iOS](https://petri.com/a-new-strategy-for-windows-phone-emerges-as-cortana-heads-to-android-and-ios/): Cortana on Android and iOS was inevitable, and predictable. But it also makes obvious Microsoft's real strategy for Windows Phone going forward. - [Creating Repeating PowerShell Scheduled Jobs](https://petri.com/creating-repeating-powershell-scheduled-jobs/): PowerShell MVP Jeffery Hicks shows us how to create PowerShell Scheduled Jobs to repeat itself for a specified amount of time. - [Hyper-V's Biggest Weakness](https://petri.com/hyper-v-biggest-weakness/): In this opinion post, Aidan Finn discusses what how he believes that the management component is Hyper-V's biggest weakness for Microsoft. - [20 Years Later: The Internet Tidal Wave](https://petri.com/20-years-later-the-internet-tidal-wave/): “A new competitor ‘born’ on the Internet is Netscape,” Microsoft CEO Bill Gates awkwardly wrote in his Internet Tidal wave... - [PowerShell Problem Solver: Finding Orphan Aliases](https://petri.com/finding-orphan-aliases/): In this PowerShell Problem Solver, Jeff Hicks shows us steps to create alias, along with steps for finding orphan aliases. - [SAPIEN Technologies PowerShell Help Writer 2015 Review](https://petri.com/sapien-powershell-help-writer-review/): Jeff Hicks provides an in-depth look into SAPIEN Technologies PowerShell Help Writer 2015, which helps IT professionals write better PowerShell documentation. - [Paul Thurrott's Short Takes: May 22, 2015](https://petri.com/paul-thurrotts-short-takes-may-22-2015/): Because I will turn around and go back home if you two don't shut up, this week's other news includes Intel's CEO throwing cold water on Windows 10. - [Chromebook Continues to be a Tiny Slice of the PC Market](https://petri.com/chromebook-continues-to-be-a-tiny-slice-of-the-pc-market/): The market researchers at Gartner say that sales of Chromebooks--laptops running Google’s Chrome OS instead of Windows--will jump 27 percent in 2015. - [Understanding Dual-SIM Operations in Windows Phone 8.1](https://petri.com/understanding-dual-sim-operations-in-windows-phone-8-1/): Learn about understanding dual-SIM Operations in Windows Phone 8.1 in this post by Russell Smith. - [Creating PowerShell Scheduled Jobs With The New-JobTrigger Cmdlet](https://petri.com/creating-powershell-scheduled-jobs-with-the-new-jobtrigger-cmdlet/): PowerShell MVP Jeffery Hicks shows us steps for creating PowerShell Scheduled Jobs with the New-JobTrigger cmdlet. - [4 Must-Learn Skills for Windows System Administrators](https://petri.com/4-must-learn-skills-for-windows-system-administrators/): Jeff provides his must-learn skills for Windows System Administrators for a successful career, which include PowerShell and Microsoft Azure. - [Understanding Azure Availability Sets](https://petri.com/understanding-azure-availability-sets/): Find out about the differences between Azure Availability Sets and Affinity Groups, and when you should use which. - [Leak Highlights Microsoft's Quiet Transition from the Old to the New](https://petri.com/leak-highlights-microsofts-quiet-transition-from-the-old-to-the-new/): A recent leak of an email solution called Flow reinforces an emerging view of Microsoft as being on the cusp of a new era of productivity. - [Troubleshooting Microsoft Azure Automation Runbooks](https://petri.com/troubleshooting-microsoft-azure-automation-runbooks/): Learn tips for troubleshooting Microsoft Azure Automation Runbooks by learning how to access job history and more. - [New Features in Office 365 Groups](https://petri.com/new-features-office-365-groups/): Discover some of the exciting new features in Office 365 Groups, including real-time collaboration and improvements to threaded conversations and calendars. - [Tech Firms Urge Obama to Reject Encryption Back Doors](https://petri.com/tech-firms-urge-obama-to-reject-encryption-back-doors/): Leading tech firms, civil society organizations and security policy experts are calling on US president Barack Obama to reject anti-encryption proposals. - [How Many CSVs Should a Scale-Out File Server Have?](https://petri.com/how-many-csvs-should-a-scale-out-file-server-have/): Aidan Finn discusses a common question around how many CSVs should a Scale-Out File Server have. - [What You Need to Know About Windows Server 2016 Containers](https://petri.com/what-you-need-to-know-about-windows-server-2016-containers/): Aidan Finn summarizes what he learned at Ignite 2015 about new Windows Server Containers that are coming to Windows Server 2016. - [Security Expert Claims He Hacked Airplanes While in Flight](https://petri.com/security-expert-claims-he-hacked-airplanes-while-in-flight/): A controversial security expert who was removed from a United Airlines flight in April now claims that he had previously... - [Test Active Directory User Accounts with PowerShell](https://petri.com/test-active-directory-user-accounts-with-powershell/): PowerShell MVP Jeffery Hicks shows us how to test Active Directory user accounts with PowerShell. - [How to Install the full UI on Windows Server 2016](https://petri.com/install-the-full-ui-on-windows-server-2016/): Learn how to install the full UI on Windows Server 2016, which is not the default option during installation. - [Paul Thurrott's Short Takes: May 15, 2015](https://petri.com/paul-thurrotts-short-takes-may-15-2015/): Because I said so, that's why, this week's other news includes Microsoft's complex new servicing plan for the many Windows 10 product editions. - [Windows 10 Continuum: Could Your Next Phone Also Be Your Next PC?](https://petri.com/windows-10-continuum-could-your-next-phone-also-be-your-next-pc/): Russell Smith explains how Windows 10 Continuum might change the landscape of personal computing for end users. - [Windows as a Service Requires More Trust Than Microsoft May Deserve](https://petri.com/windows-as-a-service-requires-more-trust-than-microsoft-may-deserve/): Microsoft has pushed the notion of Windows as a Service. But this name has nothing to do with subscription services. Instead, it's all about trust. - [Understanding Federated Resources, Forward Syncing, and Loose Coupling in Office 365](https://petri.com/understanding-federated-resources-forward-syncing-loose-coupling-office-365/): Russell Smith helps us understand how Federated Resources, Forward Syncing, and Loose Coupling in Office 365 work to manage user and group identities. - [PowerShell Problem Solver: Where is that IP?](https://petri.com/powershell-problem-solver-ip/): In this PowerShell Problem Solver, Jeff Hicks shows us how to easily find the geographic location of an IP address with the New-WebServiceProxy cmdlet. - [What is Microsoft's Storage Spaces Direct?](https://petri.com/what-is-microsoft-storage-spaces-direct/): Learn about this new Windows Server 2016 feature, Storage Spaces Direct (S2D), that was explained at Microsoft Ignite 2015. - [Facebook Starts Publishing Sponsored News Articles](https://petri.com/facebook-starts-publishing-sponsored-news-articles/): Facebook has begun testing publishing news articles directly into the Facebook news feed, starting with iPhone. The goal? To monetize mobile. - [Microsoft Ignite 2015 Conference Recap](https://petri.com/microsoft-ignite-2015-conference-recap/): Editorial Director Jeff James put together his Microsoft Ignite 2015 conference recap by talking to IT pros, vendors, authors, and other show attendees. - [PowerShell Management at Scale](https://petri.com/powershell-management-scale/): Need to automate large, complex IT management tasks? PowerShell management at scale could be just what you're looking for. - [Verizon to Acquire AOL for $4.4 Billion](https://petri.com/verizon-to-acquire-aol-for-4-4-billion/): Verizon announced this morning that it would acquire Internet pioneer AOL for $50 per share in a deal valued at about $4.4 billion. - [What’s New in Windows Server 2016 Hyper-V](https://petri.com/whats-new-windows-server-2016-hyper-v/): Aidan Finn gives up a recap of what’s new in Windows Server 2016 Hyper-V following Microsoft's Ignite 2015 conference in Chicago. - [Building a PowerShell Ping Sweep Tool: Adding a Port Check](https://petri.com/building-a-powershell-ping-sweep-tool-adding-a-port-check/): Continuing his article series on building a PowerShell ping sweep tool, PowerShell MVP Jeff Hicks shows us how to add a port check to our existing tool. - [China Smartphone Market Contracts](https://petri.com/china-smart-phone-market-contracts/): The market researchers at IDC say the China smart phone market contracted in the first quarter, the first time it has done so in six years. - [What was Microsoft Ignite 2015 Really About?](https://petri.com/what-was-microsoft-ignite-2015-really-about/): What was Microsoft Ignite 2015 really about? Jeff Hicks does some keyword analysis on the Ignite session catalog and comes up with some interesting data. - [Windows 10 Security: Microsoft Passport and Virtual Secure Mode](https://petri.com/windows-10-security-microsoft-passport-and-virtual-secure-mode/): Learn about Microsoft Passport and Virtual Secure Mode in this Windows 10 security overview by Russell Smith. - [Paul Thurrott's Short Takes: May 8, 2015](https://petri.com/paul-thurrotts-short-takes-may-8-2015/): Because Microsoft just held Build 2015 and Ignite 2015 back to back and I'm still not done traveling, here's this week's other news. - [Microsoft Makes the Case for Windows 10 in the Enterprise](https://petri.com/microsoft-makes-the-case-for-windows-10-in-the-enterprise/): Did the software giant make a compelling case for businesses to upgrade to Windows 10 from Windows 7 at Ignite 2015? - [Microsoft Ignite 2016 Dates and Location Announced](https://petri.com/microsoft-ignite-2016-dates-and-location-announced/): Microsoft Ignite 2016 Dates and Location Announced - [How to Install Windows Server 2016 Nano in a VM](https://petri.com/how-to-install-windows-server-2016-nano-in-a-vm/): Learn how to install Windows Server 2016 Nano in a VM in this how-to article by Russell Smith. - [Microsoft Ignite 2015 Keynote Highlights for IT Pros](https://petri.com/microsoft-ignite-2015-keynote-highlights-for-it-pros/): Aidan Finn serves up his opinion on Microsoft Ignite 2015 keynote highlights for IT professionals in this recap article. - [Microsoft to Appeal Skype Ruling in the EU](https://petri.com/microsoft-to-appeal-skype-ruling-in-the-eu/): The General Court of the European Union ruled Tuesday that Microsoft cannot register trademarks for the Skype name and logo. - [Episode 20 - May 5th – 10:15pm EDT – Guests: Dane Young and Carl Webster](https://petri.com/episode-20-dane-young-and-carl-webster/): It’s Citrix Synergy Week! Join us to discuss what Citrix CTP’s Dane Young (@youngtech), Carl Webster (@carlwebster), and Theresa Miller... - [How to Install and Configure Microsoft LAPS](https://petri.com/secure-local-administrator-accounts-with-the-local-administrator-password-solution-laps-tool/): Russell Smith tells us how to secure local administrator accounts with the Local Administrator Password Solution (LAPS) Tool. - [Microsoft Continues Cloud Push, Announces Windows Server 2016, SQL Server 2016, and Windows Update for Business](https://petri.com/microsoft-continues-cloud-push-announces-windows-server-2016-sql-server-2016-and-windows-update-for-business/): Windows Server 2016, SQL Server 2016, and Windows Update for Business - [Microsoft launches Office 2016 Preview](https://petri.com/microsoft-launches-office-2016-preview/): Microsoft launched the Office 2016 preview at Microsoft Ignite, where the company introduced new security, management, and deployment features for IT pros. - [What I Expect from Ignite 2015](https://petri.com/what-i-expect-from-ignite-2015/): With barely a moment to reflect on last week's Build 2015 conference in San Francisco, Microsoft in Chicago this week for its Ignite conference. - [Don't like PowerShell? Get Over It And Get On With It](https://petri.com/dont-like-powershell-get-over-it-and-get-on-with-it/): Petri Contributing Editor Jeff Hicks asks: "Don't like PowerShell? Get Over It and Get On with It." - [Paul Thurrott's Short Takes: May 1, 2015](https://petri.com/paul-thurrotts-short-takes-may-1-2015/): Because Build 2015 just happened and I'm still on East Coast time, this week's other news includes Windows as a service and more. - [Using OffCAT to Solve Problems with Microsoft Office](https://petri.com/using-offcat-to-solve-problems-with-microsoft-office/): Learn about the troubleshooting capabilities of Microsoft's free Office Configuration Analyzer Tool (OffCAT). - [5 Things That Would Improve Microsoft Azure](https://petri.com/5-things-that-would-improve-microsoft-azure/): Aidan Finn discusses 5 things that would improve Microsoft Azure, including making enhancements to strategy, management, and pricing. - [Build 2015: Success of Windows 10 Tied to New Universal App Platform](https://petri.com/build-2015-success-of-windows-10-tied-to-new-universal-app-platform/): While Microsoft should have little problem meeting its goal of 1 billion Windows 10 devices, the success of the underlying platform is less sure. - [Disable Remote Desktop Network Level Authentication using PowerShell](https://petri.com/disable-remote-desktop-network-level-authentication-using-powershell/): Follow these easy steps to disable Remote Desktop Network Level Authentication using PowerShell. - [Build 2015: Microsoft Takes on Amazon with SQL Data Warehouse, Azure Data Lake](https://petri.com/build-2015-microsoft-takes-on-amazon-with-sql-data-warehouse-azure-data-lake/): At the Build 2015 developer conference in San Francisco, Microsoft announced Azure SQL Data Warehouse and Azure Data Lake as competitive storage offerings. - [Build 2015: Microsoft Bridges the Windows 10 Gap for Developers](https://petri.com/build-2015-microsoft-bridges-the-windows-10-gap-for-developers/): With a bridge-building theme as a backdrop, Microsoft on Wednesday announced a series of changes that fundamentally alter the relationship... - [PowerShell Problem Solver: Converting Universal Time using PowerShell](https://petri.com/converting-universal-time-using-powershell/): Learn simple steps for converting Universal Time using PowerShell in this article by PowerShell MVP Jeff Hicks. - [Set Up a Virtual Private Network in Windows Phone 8.1](https://petri.com/set-up-a-virtual-private-network-in-windows-phone-8-1/): Learn how to easily set up a virtual private network in Windows Phone 8.1 in this article by Russell Smith. - [Avoid Running Out of Azure Open Credits](https://petri.com/avoid-running-azure-open-credit/): Learn how to avoid a Microsoft Azure shutdown with Aidan Finn's tips for avoiding running out of Azure open credit, along with steps to get back up and running. - [What I Expect from Build 2015](https://petri.com/what-i-expect-from-build-2015/): Here are some questions I hope to have answered at Build 2015, along with some announcements I'd really like to see. - [Apple Posts Yet Another Blockbuster Quarter](https://petri.com/apple-posts-yet-another-blockbuster-quarter/): Apple reported a net profit of $13.6 billion on revenues of 58 billion in the quarter ending March 31, thanks to continued strong sales of iPhone 6. - [Automate Domain Member Server Deployment in Microsoft Azure](https://petri.com/automate-domain-member-server-deployment-microsoft-azure/): Learn about improvements to a PowerShell script to automate domain member server deployment in Microsoft Azure. - [What IT Pros Can Expect at Microsoft Ignite](https://petri.com/pros-can-expect-microsoft-ignite/): Aidan Finn discusses what IT pros can expect at Microsoft Ignite for Microsoft Windows 10, Microsoft Azure, and Windows Server vNext technologies. - [Nokia Denies Return to Handset Market](https://petri.com/nokia-denies-return-to-handset-market/): In the wake of a recent rumor, Nokia has gone on record: it is not reentering the handset market. - [The Complete Guide to Windows Server 2003 End of Support](https://petri.com/complete-guide-windows-server-2003-end-of-support/): Learn how to plan a migration from Windows Server 2003 to Windows Server 2012 R2 from start to finish in this comprehensive guide that includes advice on migration and hardware requirements, security changes, and more. - [Shopping for Credentials with Cmdkey.exe](https://petri.com/shopping-for-credentials-with-cmdkey-exe/): Learn how to leverage cmdkey.exe, a command-line tool that makes it simple to shop for the credentials you need. - [Paul Thurrott's Short Takes: April 24, 2015](https://petri.com/paul-thurrotts-short-takes-april-24-2015/): Because you just can't make this stuff up, this week's other news includes Microsoft's quarterly earnings report, Office successes on Android/iOS and more. - [What is Windows 10 Device Guard?](https://petri.com/what-is-windows-10-device-guard/): What is Windows 10 Device Guard? Contributing Editor Russell Smith gives us the low-down on one of the latest Windows 10 security features. - [Microsoft Earnings: Revenues Up as Windows Continues to Decline](https://petri.com/microsoft-earnings-revenues-up-as-windows-continues-to-decline/): Microsoft on Thursday announced the financial results for its fiscal 2015 third quarter, which ended March 31. - [PowerShell Summit North America 2015 Wrap Up](https://petri.com/powershell-summit-north-america-2015-wrap/): PowerShell MVP Jeff Hicks gives us a wrap up of the what happened at the PowerShell Summit North America 2015, along with tips for growing an IT pro's skill set and career. - [Episode 19- April 23rd -10:15pm EDT Guest: Janene Ellefson @jamminjanene](https://petri.com/episode-19-april-23rd-1015pm-edt-guest-janene-ellefson-jamminjanene/): “I feel the need, the need for speed. ” That’s what Tom Cruise first said and now almost everyone is saying... - [Microsoft Lumia 640 Review](https://petri.com/microsoft-lumia-640-review/): Russell Smith provides a Microsoft Lumia 640 review and analyzes whether the device will be able to boost Windows Phone sales in 2015. - [Google Launches Fi, a Low-Cost Cell Phone Service](https://petri.com/google-launches-fi-a-low-cost-cell-phone-service/): Google on Wednesday announced Project Fi, a new low-cost cell phone service that it is launching in the United States. - [Infographic: US Data Breaches in 2014](https://petri.com/infographic-us-data-breaches-in-2014/): Aidan Finn takes a look at an infographic provided by 27001 Academy and takes a look at US data breaches in 2014. - [2015 CSA Summit Highlights Cloud Security Threats](https://petri.com/2015-csa-summit-highlights-cloud-security-threats/): The 2015 Cloud Security Alliance Summit focused on providing information to IT managers on how they can best handle their cloud security risks. - [PowerShell Summit North America Day 2 Wrap Up](https://petri.com/powershell-summit-day-2-wrap/): PowerShell MVP Jeff Hicks gives us a look at day 2 at the PowerShell Summit North America conference. - [Twitter #Finally Cracks Down on Abuse](https://petri.com/twitter-finally-cracks-down-on-abuse/): After taking a series of minor steps that failed to stop certain types of abuse on its platform, Twitter has finally started to crack down. - [Microsoft Bolsters Office 365 Security with Lockbox, New Encryption Features](https://petri.com/microsoft-bolsters-office-365-security-with-lockbox-new-encryption-features/): Microsoft Bolsters Office 365 Security with Lockbox, New Encryption Features - [Book Review: Digital Wars by Charles Arthur](https://petri.com/book-review-digital-wars-charles-arthur/): In this book review on Digital Wars by Charles Arthur, Aidan Finn gives his thoughts on how Microsoft, Google, and Apple have fared through their innovations throughout the years. - [PowerShell Summit North America 2015 Is Under Way](https://petri.com/powershell-summit-north-america-2015/): The PowerShell Summit North America 2015 is under way, and PowerShell MVP Jeff Hicks describes his experience, along with announcements made by Microsoft at the event. - [Yahoo Can Terminate Microsoft Search Deal This Year, Filing Reveals](https://petri.com/yahoo-can-terminate-microsoft-search-deal-this-year-filing-reveals/): According to a filing, both Yahoo and Microsoft can terminate their recently renegotiated search deal as soon as October, five years earlier than before. - [Identifying a Computer Name with a Ping Sweep Tool with PowerShell](https://petri.com/building-ping-sweep-tool-powershell-part-4/): Learn how to identify a computer name with a custom ping sweep tool created in Windows PowerShell. - [How to Query the Windows Search Index using SQL and PowerShell](https://petri.com/how-to-query-the-windows-search-index-using-sql-and-powershell/): Learn how to query the Windows Search index using SQL and PowerShell, along with simple steps on generating reports with PowerShell. - [Cloud Moves Slow Progress of Microsoft's On-Prem Servers](https://petri.com/cloud-moves-slow-progress-of-microsofts-on-prem-servers/): Microsoft's move to the cloud has seriously hindered its ability or desire to ship on-premises server products. And it's only going to get worse over time. - [RSA Conference 2015 Survival Guide](https://petri.com/rsa-conference-2015-survival-guide/): Check out our RSA Conference 2015 Survival Guide for hints, tips, and tricks on getting the most out of this popular IT security conference. - [PowerShell Problem Solver: Use PowerShell to Find Local Groups and Members](https://petri.com/use-powershell-to-find-local-groups-and-members/): PowerShell MVP Jeff Hicks shows us an another way to use PowerShell to find local groups and members. - [Paul Thurrott's Short Takes: April 17, 2015](https://petri.com/paul-thurrotts-short-takes-april-17-2015/): Because Windows XP will never really go away, this week's other news includes an EU "I told you so" to the US DOJ and FTC and so much more. - [How to Force an Azure VM Shutdown](https://petri.com/how-to-force-an-azure-vm-shutdown/): Learn how to force an Azure VM shutdown in this how-to article by Contributing Editor Russell Smith. - [Episode 18 - April 16th - 10:15pm EDT Guest: Jared Shockley @jshoq](https://petri.com/episode-18-jared-shockley-jshoq/): We all love it. We all hate it. SharePoint. Is it just a glorified file server with sidebars and images?... - [Will Windows 10 Mobile be Ready to Launch with Windows 10?](https://petri.com/will-windows-10-mobile-be-ready-to-launch-with-windows-10/): Will Windows 10 Mobile be ready to launch with Windows 10? Russell Smith explains why it is critical that Microsoft should launch both for the sake of the company's One Microsoft mantra. - [Microsoft and Yahoo Renew Search Partnership](https://petri.com/microsoft-and-yahoo-renew-search-partnership/): Microsoft has closed an important deal with Yahoo, which will continue using Bing technologies in its own search experience. - [Major New Deals Make it Clear that Android is Microsoft's Plan B in Mobile](https://petri.com/major-new-deals-make-it-clear-that-android-is-microsofts-plan-b-in-mobile/): Microsoft is involved in deals to ensure that its apps and services are bundled on Samsung and other Android devices, plus a new deal with Cyanogen. - [PowerShell Problem Solver: Create Numbered Output Lists with PowerShell](https://petri.com/create-numbered-output-lists-with-powershell/): Learn how to create numbered output lists with PowerShell in this article by PowerShell MVP Jeff Hicks. - [Applying Security Policies with the Windows Server Security Configuration Wizard](https://petri.com/applying-security-policies-with-the-windows-server-security-configuration-wizard/): Learn how to apply security policies with the Windows Server Security Configuration Wizard in this article by Russell Smith. - [EU Formally Charges Google with Antitrust Violations, Will Investigate Android Too](https://petri.com/eu-formally-charges-google-with-antitrust-violations-will-investigate-android-too/): The European Union formally accused Google of violating antitrust laws by abusing its dominance in Internet search to harm competitors and consumers. - [Google Bolsters Cloud Networking Services](https://petri.com/google-bolsters-cloud-networking-services/): Google announced a host of new updates to a variety of Google Cloud Networking services, including new load balancing access points, new Carrier Interconnect partners, and more. - [The Curse of Zune: Is Microsoft too Focused on the US Market?](https://petri.com/microsoft-curse-zune/): Aidan Finn dives into Microsoft's strategy with the United States market. Aidan argues that Microsoft may be hurting itself by neglecting the international markets. - [Microsoft Rehires Kurt DelBene as Strategy Chief](https://petri.com/microsoft-rehires-kurt-delbene-as-strategy-chief/): Kurt DelBene will return to Microsoft after two years serving the US Secretary of Health and Human Services and overseeing Healthcare.gov. - [Building a PowerShell Ping Sweep Tool with Parameter Validation](https://petri.com/building-a-powershell-ping-sweep-tool-with-parameter-validation/): Learn how to build a PowerShell ping sweep tool with parameter validation in this tutorial by PowerShell MVP Jeff Hicks. - [Create Custom Security Policies with the Windows Server Security Configuration Wizard](https://petri.com/create-custom-security-policies-with-the-windows-server-security-configuration-wizard/): Learn how to create custom security policies with the Windows Server Security Configuration Wizard. - [Will Microsoft Finally Buy HERE Maps from Nokia?](https://petri.com/will-microsoft-finally-buy-here-maps-from-nokia/): Nokia is considering shedding its HERE mapping and location business unit. And Microsoft is on a short list of companies that could purchase HERE. - [PowerShell Problem Solver: Find Local User Accounts Using PowerShell](https://petri.com/find-local-user-accounts-using-powershell/): Learn how to easily find local user accounts using PowerShell with this step-by-step tutorial by Jeff Hicks. - [Installing Microsoft Anti-Malware in Azure VMs](https://petri.com/installing-microsoft-anti-malware-azure-vms/): Learn all about installing Microsoft Anti-Malware in Azure VMs in this how-to article by Aidan Finn. - [Paul Thurrott's Short Takes: April 10, 2015](https://petri.com/paul-thurrotts-short-takes-april-10-2015/): Because your Apple Watch isn't arriving until June anyway, this week's other news includes Microsoft's mobile payments mulligan and a whole lot more. - [Microsoft's Nano Server is All About the Cloud](https://petri.com/microsofts-nano-server-is-all-about-the-cloud/): With the coming generation of Nano Server capabilities in Windows Server vNext, the differences between it and Azure are about to blur even further. - [Microsoft Announces Hyper-V Containers](https://petri.com/microsoft-announces-hyper-v-containers/): Microsoft announces new Hyper-V containers for better application virtualization in the next version of Windows Server, referred to as Windows Server vNext. - [Episode 17 - April 9th - 10:15pm EDT Guest: Pat Richard @patrichard, MVP](https://petri.com/episode-17pat-richard-patrichard-mvp/): Skype for Business? What is this product that Microsoft has just launched? Lync has been rapidly gaining market share on... - [Thoughts on Windows Nano Server](https://petri.com/thoughts-on-windows-nano-server/): Russell Smith provides his thoughts on Windows Nano Server, which is Microsoft's newly-announced server option planned for Windows Server vNext. - [Microsoft Announces Nano Server](https://petri.com/microsoft-announces-nano-server/): Microsoft announces Nano Server, a server OS optimized for cloud infrastructure and born-in-the-cloud applications. - [PowerShell Problem Solver: Create a Grouped HTML Report with PowerShell](https://petri.com/create-a-grouped-html-report-with-powershell/): In this PowerShell Problem Solver article, learn how to create a grouped HTML report with PowerShell. - [Google Faces Yet Another Complaint: Deceiving Children](https://petri.com/google-faces-yet-another-complaint-deceiving-children/): Google can't seem to catch a break these days: now the search giant is being accused again of deceptive business practices. Its target is children. - [Windows Server vNext Technical Preview Due in May](https://petri.com/windows-server-vnext-technical-preview-due-in-may/): Microsoft plans to deliver a new Windows Server vNext Technical Preview build next month. - [Troubleshooting Microsoft Azure VM Remote Desktop Connections](https://petri.com/troubleshooting-microsoft-azure-vm-remote-desktop-connections/): Here's a helpful troubleshooting technique for repairing Remote Desktop connection settings for Azure VMs running Windows Server. - [Optimizing Azure Storage for Windows Server Virtual Machines](https://petri.com/optimizing-azure-storage-windows-server-virtual-machines/): Learn all about optimizing Azure Storage for Windows Server virtual machines in this how-to article by Contributing Editor Russell Smith. - [Manage Documents with Windows Explorer using Tags and File Properties](https://petri.com/manage-documents-with-windows-explorer-using-tags-and-file-properties/): Learn how to manage documents with Windows Explorer using tags and file properties in this tutorial by Russell Smith. - [Introducing the 2nd Annual Petri.com / Thurrott.com Happy Hour at Microsoft Ignite](https://petri.com/petri-happy-hour-at-microsoft-ignite/): Register today to attend the Petri happy hour at Microsoft Ignite. Meet Petri authors Daniel Petri, Paul Thurrott, Phoummala Schmitt, and more! - [Microsoft at 40](https://petri.com/microsoft-at-40/): This past weekend, Microsoft moved into middle age, having reached the ripe old age of 40. Let's look back. - [Paul Thurrott's Short Takes: April 3, 2015](https://petri.com/short-takes-62005/): Because "Linux user" is perhaps the ultimate personal technology oxymoron, here is this week's other news - [Idera PowerShell Plus Review: A Free PowerShell Management Tool](https://petri.com/powershell-plus-review/): In this PowerShell Plus review by Jeff Hicks, you'll learn the pros and cons of this free IT pro and automation tool. - [How to Access Desired State Configuration MOF Metadata](https://petri.com/how-to-access-desired-state-configuration-mof-metadata/): Learn how to access Desired State Configuration MOF Metadata with the help of PowerShell. - [Do We Still Need GUI Management Tools in Windows Server?](https://petri.com/gui-management-tools-in-windows-server/): Russell Smith debates whether we still need GUI management tools in Windows Server, thanks to Microsoft's increasing focus on developing PowerShell. - [EU Reportedly Preparing to Finalize Google Antitrust Case](https://petri.com/eu-reportedly-preparing-to-finalize-google-antitrust-case/): After investigating Google's search business for five years the EU is reportedly ready to charge Google with sweeping antitrust violations. - [PowerShell Problem Solver: Use PowerShell to Test if Windows Services are Running](https://petri.com/powershell-problem-solver-test-service/): PowerShell MVP Jeff Hicks shows us how to use PowerShell to test if Windows services are running automatically. - [Microsoft Brings MDM Capabilities to Office 365](https://petri.com/microsoft-brings-mdm-capabilities-to-office-365/): Microsoft announced this week that all Office 365 commercial customers are now getting access to basic mobile device management (MDM) functionality. - [Connecting Multiple Networks in Microsoft Azure](https://petri.com/connecting-multiple-networks-in-microsoft-azure/): Aidan Finn shows us steps for connecting multiple networks in Microsoft Azure, along with explanations for different scenarios in which you may need to do this. - [Using Startup Scripts to Manage Local Active Directory Groups](https://petri.com/using-startup-scripts-to-manage-local-active-directory-groups/): Learn how to use startup scripts to manage local Active Directory groups in this step-by-step tutorial by Daniel Petri. - [Monitoring Windows Event Logs for Security Breaches](https://petri.com/monitoring-windows-event-logs-for-security-breaches/): Russell Smith provides tips and tricks for monitoring Windows Event Logs for security breaches. - [Microsoft Expands Surface Lineup with New Surface 3](https://petri.com/microsoft-expands-surface-lineup-with-new-surface-3/): Microsoft announces Surface 3, a cost-reduced version of Surface Pro 3 that eschews the compatibility and performance issues of previous RT-based Surfaces. - [How to Query an Excel Workbook as a Database with PowerShell](https://petri.com/query-an-excel-workbook-as-a-database-with-powershell/): Learn how to query an Excel Workbook as a database with Windows PowerShell. - [What is Chef?](https://petri.com/what-is-chef/): A useful IT management tool called Chef is getting noticed by IT pros (and CIOs) alike. So what is Chef? Michael Simmons takes a look and gives us his take. - [Microsoft's Productivity Buying Spree Continues with LiveLoop](https://petri.com/microsofts-productivity-buying-spree-continues-with-liveloop/): Over the past several months, Microsoft has been gobbling up businesses that make productivity apps and services. And it looks like it just LiveLoop too. - [Lansweeper 5.2 Review: An Asset Management and Network Inventory Tool for IT Pros](https://petri.com/lansweeper-5-2-review/): In this Lansweeper 5.2 review, Jeff Hicks shows us the benefits of using the asset management and network inventory tool for your SQL Server, VMware, and Active Directory environments. - [Backing Up Microsoft Azure Virtual Machines](https://petri.com/backing-up-azure-virtual-machines/): Need help backing up Azure virtual machines? Aidan Finn walks us through the process of how to use Azure Backup to protect Microsoft Azure IaaS VMs. - [Paul Thurrott's Short Takes: March 27, 2015](https://petri.com/paul-thurrotts-short-takes-march-27-2015/): Because the wheels on the bus go 'round and 'round, here is this week's other news. - [How to Create a Hybrid RemoteApp Collection](https://petri.com/how-to-create-a-hybrid-remoteapp-collection/): In his two-page tutorial, Contributing Editor Aidan Finn shows us how to create a Hybrid RemoteApp collection. - [Manage Local Active Directory Groups using Group Policy Preferences](https://petri.com/manage-local-active-directory-groups-using-group-policy-preferences/): Learn how to manage local Active Directory groups using Group Policy Preferences, which lets you create, delete, update, and rename local groups. - [Google Faces Renewed EU Scrutiny in Wake of FTC Leak](https://petri.com/google-faces-renewed-eu-scrutiny-in-wake-of-ftc-leak/): EU lawmakers who previous scuttled a Google antitrust settlement are now taking a harder stance against the search giant in the wake of leaked FTC documents - [Configure Event Log Forwarding in Windows Server 2012 R2](https://petri.com/configure-event-log-forwarding-windows-server-2012-r2/): Follow these step-by-step instructions on how to configure event log forwarding in Windows Server 2012 R2. - [Is Android Microsoft's Plan B for Mobile?](https://petri.com/is-android-microsofts-plan-b-for-mobile/): Microsoft will try to make Windows 10 a success in mobile. But if that doesn't work, what is Microsoft's Plan B for mobile? - [PowerShell Problem Solver: PowerShell String Parsing with Named Captures and REGEX](https://petri.com/powershell-string-parsing-with-named-captures-and-regex/): PowerShell MVP Jeff Hicks shows us how to achieve PowerShell string parsing with named captures and REGEX. - [Creating a Function to Test and Compare PowerShell Commands](https://petri.com/creating-a-function-to-test-and-compare-powershell-commands/): PowerShell MVP Jeff Hicks walks us through the process of creating a function to test and compare PowerShell commands and their efficiency. - [Query XML Event Log Data Using XPath in Windows Server 2012 R2](https://petri.com/query-xml-event-log-data-using-xpath-in-windows-server-2012-r2/): Russell Smith demonstrates how to create more complex filters to make your custom views even more valuable by querying event log data using Path in Windows Server 2012 R2. - [Microsoft Has One Brand to Rule Them All](https://petri.com/microsoft-has-one-brand-to-rule-them-all/): Microsoft has a final brand card to play that matters more than Windows, Office and Server combined. What is this incredible brand, you ask? - [Audit Internet Explorer Usage with the Enterprise Site Discovery Toolkit](https://petri.com/audit-internet-explorer-usage-with-the-enterprise-site-discovery-toolkit/): Learn how to audit Internet Explorer usage with the Enterprise Site Discovery Toolkit in Russell Smith's latest article. - [What’s New in Microsoft EMET 5.2](https://petri.com/whats-new-in-emet-5-2/): Learn about the new slew of security features in Microsoft's Enhanced Mitigation Experience Toolkit (EMET) 5.2. - [Why Didn't the FTC Charge Google with Antitrust Violations?](https://petri.com/why-didnt-the-ftc-charge-google-with-antitrust-violations/): An inadvertently leaked memo reveals that the FTC determined that Google had violated US antitrust laws and harmed both competitors and consumers alike. - [How to Uninstall Windows PowerShell](https://petri.com/how-to-uninstall-windows-powershell/): Tim Warner provides helpful instructions on how to uninstall Windows PowerShell. - [Create an Azure RemoteApp Template from an Azure VM](https://petri.com/create-an-azure-remoteapp-template-from-an-azure-vm/): Learn how to create an Azure RemoteApp Template from an Azure virtual machine. - [Paul Thurrott's Short Takes: March 20, 2015](https://petri.com/paul-thurrotts-short-takes-march-20-2015/): Because you know to call the A-Team and not the B-Team, this week's other news includes a shocking revelation that the FTC found Google antitrust violations - [PowerShell Problem Solver: PowerShell String Parsing with Regular Expressions](https://petri.com/powershell-string-parsing-with-regular-expressions/): Learn all about PowerShell string parsing with regular expressions in this handy how-to article by Jeff Hicks. - [Episode 16 March 19th, 10:15pm EDT – Guest Lauren Malhoit](https://petri.com/episode-16-guest-lauren-malhoit/): We’ve all heard of SDN (Software Defined Networking) but have you heard of Cisco ACI? What is this ACI we... - [How to Create Custom Views in Windows Server 2012 R2 Event Viewer](https://petri.com/how-to-create-custom-views-in-windows-server-2012-r2-event-viewer/): Learn how to create Custom Views in Windows Server 2012 R2 Event Viewer for better security monitoring of your environment. - [What Is Microsoft Really Doing with Internet Explorer?](https://petri.com/what-is-microsoft-really-doing-with-internet-explorer/): With Windows 10, Microsoft is pushing a new web browser—currently codenamed Project Spartan—over its legacy Internet Explorer. - [How to Create an Azure RemoteApp Template](https://petri.com/how-to-create-an-azure-remoteapp-template/): Aidan Finn shows us how to create an Azure RemoteApp template, which allows you to upload your own set of applications to be presented to your users. - [Lync Steps Aside for Skype for Business](https://petri.com/lync-steps-aside-for-skype-for-business/): Microsoft announces the schedule for launching Skype for Business and how it will keep the products and services up to date going forward. - [Getting the Most Out of Azure Site Recovery](https://petri.com/getting-the-most-out-of-azure-site-recovery/): Aidan Finn provides tips and tricks for getting the most out of Azure Site recovery. - [Declutter Your Inbox with Office 365 Clutter Enhancements](https://petri.com/declutter-your-inbox-with-office-365-clutter-enhancements/): Take advantage of new Office 365 Clutter enhancements, which lets administrators bypass Clutter filters, configure retention policies, and personalize system notifications. - [Nintendo Belatedly Embraces Mobile](https://petri.com/nintendo-belatedly-embraces-mobile/): A growing failure in the market for video game consoles it once dominated, Nintendo will finally turn its attention to mobile devices. - [How to Query the DSC Compliance Server](https://petri.com/how-to-query-the-dsc-compliance-server/): Learn how to query the Desired State Configuration (DSC) compliance server in this article by PowerShell MVP expert Jeff Hicks. - [Creating a Recovery Plan for Hyper-V VM failover to Microsoft Azure](https://petri.com/creating-a-recovery-plan-for-hyper-v-vm-failover-to-microsoft-azure/): Learn the steps for creating a recovery plan for Hyper-V VM failover to Microsoft Azure in this latest post by Aidan Finn. - [Microsoft Pushes Forward with Business Offerings at Convergence](https://petri.com/microsoft-pushes-forward-with-business-offerings-at-convergence/): Microsoft announced a variety of business software and service offerings during a Monday morning keynote at the Convergence 2015 conference in Atlanta, Georgia. - [Episode 15: March 12, 2015 10:15pm EDT Guest: Mike Nelson](https://petri.com/episode-15-mike-nelson/): Join us as we speak VDI with Citrix CTP and vExpert Mike Nelson (@nelmedia).   In this episode we will discuss Citrix... - [Adding Trace Information to a PowerShell Ping Tool](https://petri.com/adding-trace-information-to-a-powershell-ping-tool/): PowerShell MVP Jeff Hicks shows us how to add trace information to a PowerShell ping tool in his latest article. - [Paul Thurrott's Short Takes: March 13, 2015](https://petri.com/paul-thurrotts-short-takes-march-13-2015/): Because sometimes it's better to be right than to be loved, this week's other news includes a reported Microsoft plan to bring Cortana to Android and iOS. - [Configure Distributed File System Replication in Windows Server 2012 R2](https://petri.com/configure-distributed-file-system-replication-in-windows-server-2012-r2/): Learn how to configure distributed file system replication in Windows Server 2012 R2 in this step-by-step tutorial. - [Enable Notifications to Open Firewall Ports in Windows Server 2012 R2](https://petri.com/enable-notifications-to-open-firewall-ports-in-windows-server-2012-r2/): Learn how to easily enable notifications to open firewall ports in Windows Server 2012 R2 in this step-by-step tutorial. - [Microsoft's Rivals Push Forward with USB-C](https://petri.com/microsofts-rivals-push-forward-with-usb-c/): Apple and Google launched expensive, high-end PCs built around the new USB-C standard, which delivers power, data and display over a single connector. - [PowerShell Problem Solver: Use PowerShell to Find Non-System Service Accounts](https://petri.com/use-powershell-to-find-non-system-service-accounts/): Microsoft PowerShell MVP Jeff Hicks shows us how to use PowerShell to find non-system service accounts. - [Create a Distributed File System Namespace in Windows Server 2012 R2](https://petri.com/create-a-distributed-file-system-namespace-in-windows-server-2012-r2/): Learn how to create a Distributed File System Namespace in Windows Server 2012 R2 in this tutorial by Russell Smith. - [Back Up and Restore Group Policy Objects Using PowerShell](https://petri.com/back-up-restore-group-policy-objects-using-powershell/): Learn how to back up and restore Group Policy Objects using PowerShell. - [Don't FREAK Out: Microsoft Patches Publicized Flaws](https://petri.com/dont-freak-out-microsoft-patches-publicized-flaws/): As part of its normal monthly Patch Tuesday, Microsoft this week patched the widely publicized FREAK flaw in all supported Windows versions. - [Using "This group is a member of" controls to manage local AD groups](https://petri.com/using-this-group-is-a-member-of-controls-to-manage-local-ad-groups/): In the second part of this article series, Daniel Petri shows us how to use "This group is a member of" control to manage local Active Directory groups. - [Automate Domain Controller Deployment in Microsoft Azure](https://petri.com/automate-domain-controller-deployment-in-microsoft-azure/): Russell Smith revisits his script that lets us automate domain controller deployment in Microsoft Azure. - [Microsoft Sues Kyocera for Patent Infringement](https://petri.com/microsoft-sues-kyocera-for-patent-infringement/): Microsoft is suing Kyocera, a Japanese consumer electronics maker whose Android products it says are infringing on seven Microsoft patents - [5 Reasons Why I Like Microsoft Azure RemoteApp](https://petri.com/5-reasons-why-i-like-microsoft-azure-remoteapp/): Aidan Finn dishes out five reasons why he likes Microsoft Azure RemoteApp thanks to its ease of use, robust client support, and more. - [Create ZIP archives with PowerShell and the Shell.Application COM object](https://petri.com/create-zip-archives-with-powershell-and-the-shell-application-com-object/): PowerShell MVP Jeff Hicks shows us how to create ZIP archives with PowerShell and the Shell.Application COM object. - [Google+ is Dead, Long Live Google+](https://petri.com/google-is-dead-long-live-google/): Google quietly revealed last week that its unpopular Google+ social networking service is going to be split into multiple separate services. - [How Microsoft might escape the Windows Phone "App Trap"](https://petri.com/how-microsoft-might-escape-the-windows-phone-app-trap/): Could the new approach to .NET, dubbed .NET Native compilation, point the way toward how Microsoft might escape the Windows Phone app trap? - [Paul Thurrott's Short Takes: March 6, 2015](https://petri.com/paul-thurrotts-short-takes-march-6-2015/): This week's other news includes a super FREAKy revelation that Windows is also vulnerable to a decades-old encryption hack. - [Top SQL Server Experts to Follow on Twitter](https://petri.com/top-sql-server-experts-to-follow-on-twitter/): Follow this list of top SQL Server experts on Twitter for helpful advice and tips from the best in the industry. - [Manage Local Active Directory Groups using Group Policy Restricted Groups](https://petri.com/manage-local-active-directory-groups-using-group-policy-restricted-groups/): Learn how to manage local Active Directory groups using Group Policy Restricted Groups in this step-by-step walkthrough by Daniel Petri. - [Episode 14: March 5, 2015 10:15pm EDT @ExchangeGoddess Birthday Extravaganza!](https://petri.com/episode-14-exchangegoddess-birthday-extravaganza/): An all-star lineup! Smartphones, tablets, hololens, fitbit... what’s up with all this technology? ! Are we in tech overload? With all... - [How to Rename a Windows Device](https://petri.com/how-to-rename-a-windows-device/): Learn how to rename a Windows device, such as servers and PCs, by using the GUI or Windows PowerShell. - [Considering Microsoft's Mobile Message for 2015](https://petri.com/considering-microsofts-mobile-message-for-2015/): With MWC coming to a close, we now have a clearer picture of how Microsoft will deliver the mobile half of its "mobile first, cloud first" strategy in 2015. - [Migrate Windows Server 2003 File Servers using Windows Server Migration Tools](https://petri.com/migrate-windows-server-2003-file-servers-using-windows-server-migration-tools/): Learn how to migrate Windows Server 2003 file servers using Windows Server migration tools in this tutorial by Russell Smith. - [PowerShell Problem Solver: Identify Folders with Blocked Inheritance Using PowerShell](https://petri.com/identify-folders-with-blocked-inheritance-using-powershell/): PowerShell MVP Jeff Hicks shows us how to identify folders with blocked inheritance using PowerShell, along with tips for using the Set-Inheritance cmdlet. - [FREAK Flaw Leaves Web Sites and Mobile Devices Exposed](https://petri.com/freak-flaw-leaves-web-sites-and-mobile-devices-exposed/): Many web sites and mobile devices are at risk of electronic attack thanks to a newly discovered security vulnerability that dates back to the 1990s. - [Using PowerShell and WMI to Find Folders by File Type](https://petri.com/using-powershell-and-wmi-to-find-folders-by-file-type/): Learn how to use PowerShell and WMI to find file folders by type in this article by PowerShell MVP Jeff Hicks. - [Replicating Hyper-V Virtual Machines to Microsoft Azure](https://petri.com/replicating-hyper-v-virtual-machines-to-microsoft-azure/): Aidan Finn shows us the process of replicating Hyper-V virtual machines to Microsoft Azure. - [Google Announces Plans for Hybrid Wireless Service](https://petri.com/google-announces-plans-for-hybrid-wireless-service/): Google plans to enter the US wireless market with a hybrid "Wi-Fi first" service that will seamlessly bridge Wi-Fi and cellular data connections. - [Leaked Slides Reveal Windows Server vNext Nano Server Role](https://petri.com/leaked-slides-reveal-windows-server-vnext-nano-server-role/): Leaked slides reveal Windows Server vNext Nano Server Role, and Jeff James does some digging on what other information is revealed. - [Testing URIs and URLs with PowerShell](https://petri.com/testing-uris-urls-powershell/): Learn all about testing URIs and URLs with PowerShell in this how-to article by PowerShell MVP Jeff Hicks. - [With No Flagship Phones Until Windows 10, Microsoft Again Hits at the Middle of the Market](https://petri.com/with-no-flagships-until-windows-10-microsoft-again-hits-at-the-middle-of-the-market/): While others attacked this week's MWC with exciting new flagship designs, Microsoft took a different tack. - [What Would Steve Jobs Have Done With Microsoft?](https://petri.com/what-would-steve-jobs-have-done-with-microsoft/): In this opinion post, Aidan Finn wonders what would Steve Jobs have done with Microsoft. - [Configure Single Sign-On to Enterprise Apps using Azure Active Directory](https://petri.com/configure-single-sign-on-to-enterprise-apps-using-azure-active-directory/): Learn how to configure single sign-on (SSO) to enterprise apps using Azure Active Directory in this step-by-step article by Russell Smith. - [Paul Thurrott's Short Takes: February 27, 2015](https://petri.com/paul-thurrotts-short-takes-february-27-2015/): Because you accept no substitutes, this week's other news includes Microsoft at Mobile World Congress next week and so much more. - [3 Ways to Connect to the Office 365 Reporting Service from Excel](https://petri.com/3-ways-to-connect-to-the-office-365-reporting-service-from-excel/): Russell Smith shows three different ways to connect to the Office 365 Reporting Service from Excel. - [Top Features Windows 10 Needs to Have](https://petri.com/top-features-windows-10-needs-to-have/): What improvements can Microsoft make to Windows 10 on the PC and smaller form factors? Here are some features Windows 10 needs to have. - [Lenovo Web Site Hacked as Retribution for Superfish Scandal](https://petri.com/lenovo-web-site-hacked-as-retribution-for-superfish-scandal/): The web site for the world's biggest PC maker was taken offline by a malicious hacker group as retribution for the bundling of the Superfish malware on its PCs. - [Change and Delete Office 365 User Accounts with PowerShell](https://petri.com/change-and-delete-office-365-user-accounts-with-powershell/): Learn how to delete Office 365 users, change user properties, and restore users from the recycle bin using Windows PowerShell. - [Enabling Hyper-V to Azure DR Replication](https://petri.com/enabling-hyper-v-azure-dr-replication/): This post provides step-by-step instructions for enabling Hyper-V to Azure DR replication by configuring a Hyper-V host or cluster to replicate to ASR. - [PowerShell Problem Solver: How to Pull Data from Log Files using PowerShell](https://petri.com/how-to-pull-data-from-log-files-using-powershell/): Learn how to pull data from log files using PowerShell and the Get-Content and Import-CSV cmdlets. - [SIM Card Maker Acknowledges NSA, GCHQ Intrusion](https://petri.com/sim-card-maker-acknowledges-nsa-gchq-intrusion/): Gemalto this week admitted that it had indeed been hacked. But the world's biggest maker of SIM cards says its encryption keys were never stolen. - [Beginning SQL Server Database Administration: Key Concepts](https://petri.com/beginning-sql-server-database-administration-key-concepts/): Learn key concepts and tips for beginning SQL Server database administration, including an overview on SQL Server Management Studio. - [Microsoft Azure Disaster Recovery Replication Methods](https://petri.com/microsoft-azure-disaster-recovery-replication-methods/): This article discusses how to choose the best Microsoft Azure disaster recovery replication methods. - [Google Makes Carrier Deals to Compete with Apple Pay](https://petri.com/google-makes-carrier-deals-to-compete-with-apple-pay/): Several months after Apple jumpstarted the market for mobile payments, Google has finally responded. - [Microsoft Azure Site Recovery Hyper-V Requirements](https://petri.com/microsoft-azure-site-recovery-hyper-v-requirements/): Learn about Microsoft Azure Site Recovery Hyper-V Requirements for hosts and VMs for disaster recovery replication to Azure using Azure Site Recovery. - [Storage Spaces Performance Tuning](https://petri.com/storage-spaces-performance-tuning/): Aidan Finn shares some tips on how to perform advanced performance tuning for Storage Spaces that's used for storing Hyper-V virtual machines. - [Superfish Drama Winds Down, But the Damage is Done](https://petri.com/superfish-drama-winds-down-but-the-damage-is-done/): Last week was a moment of reckoning for the world's biggest PC maker as Lenovo was thrust awkwardly into the spotlight for preinstalling malware on its PCs. - [Microsoft Bolsters Azure with Machine Learning, Data Services, and Cloud Analytics Updates](https://petri.com/microsoft-bolsters-azure-with-machine-learning-data-services-and-cloud-analytics-updates/): Microsoft has announced that it is bolstering Microsoft Azure with machine learning and improved cloud analytics capabilities. - [Paul Thurrott's Short Takes: February 20, 2015](https://petri.com/paul-thurrotts-short-takes-february-20-2015/): Poorly imitated but never duplicated, this week's other news includes Lenovo's about-face on Superfish, an NSA and GCHQ hack of SIM cards, and more. - [How to Find and Remove Lenovo Superfish Adware](https://petri.com/how-to-find-and-remove-lenovo-superfish/): Learn how to find and remove Lenovo Superfish in this step-by-step tutorial by Jeff James. - [An IT Pro Perspective on Lenovo Superfish](https://petri.com/it-pro-perspective-on-lenovo-superfish-adware/): In an IT pro perspective on Lenovo Superfish, Microsoft MVP Jeff Hicks explains what we can all learn from the Superfish fiasco. - [Azure Site Recovery Now Supports SAN-to-SAN Replication](https://petri.com/azure-site-recovery-now-supports-san-to-san-replication/): Azure Site Recovery will now support the orchestration of site-to-site storage area network (SAN) replication for customers with Hyper-V and System Center. - [Episode 13: February 19, 2015 10:15pm EDT Guest: Michael Van Horenbeek](https://petri.com/episode-13-michael-van-horenbeek/): Most organizations these days are taking a close look at cloud-based Email what it means to their business.   Our guest... - [Lenovo Accused of Installing Adware on New PCs](https://petri.com/lenovo-accused-installing-adware-new-pcs/): Lenovo, the world's biggest maker of PCs, has been installing adware on its PCs in order to deliver custom ads. Lenovo says the software is not malicious. - [Microsoft Azure Site Recovery Bandwidth Requirements](https://petri.com/microsoft-azure-site-recovery-bandwidth-requirements/): This post will show you how to estimate your bandwidth requirements for replicating Hyper-V virtual machines to Azure. - [President Obama Calls for Cybersecurity Information Sharing](https://petri.com/president-obama-calls-cybersecurity-information-sharing/): President Obama this past week signed an executive order calling on the private sector and government to formally share cybersecurity threat information. - [How to Create a PowerShell Module](https://petri.com/how-to-create-a-powershell-module/): PowerShell MVP Jeff Hicks shows us how to easily create a PowerShell module in this step-by-step article. - [Azure Online Backup February 2015 Improvements](https://petri.com/azure-online-backup-february-2015-improvements/): Microsoft added complex retention policies, more retention, and out-of-band support for the first backup to their improvements to Azure Online Backup. - [Report Uncovers Decades-Long US Hacking Effort](https://petri.com/report-uncovers-decades-long-us-hacking-effort/): Security researchers at Kaspersky Lab in Russia report that they have discovered how American intelligence agencies have subverted computer systems. - [Microsoft First Cloud Provider to Adopt Cloud Privacy Standard](https://petri.com/microsoft-first-cloud-provider-to-adopt-isoiec-27018-cloud-privacy-standard/): Microsoft's Brad Smith announced that Microsoft is the first cloud provider to adopt the ISO/IEC 27018 cloud privacy standard. - [A PowerShell Script to Find System Uptime: Formatting Results](https://petri.com/powershell-script-find-system-uptime-formatting-results/): Learn how to write a PowerShell script to find system uptime, along with tips for formatting your results. - [US Senate Offers Bill That Could Aid Microsoft in Overseas Warrant Case](https://petri.com/us-senate-offers-bill-aid-microsoft-overseas-warrant-case/): Microsoft has come out in support of a US bill that would limit the extraterritorial reach of search warrants. - [Reset an Azure Active Directory User Password and Set to Never Expire](https://petri.com/reset-azure-active-directory-user-password-set-never-expire/): Russell Smith shows us how to reset an Azure Active Directory user password and set to never expire in this how-to article. - [Building a Ping Sweep Tool with PowerShell](https://petri.com/building-ping-sweep-tool-powershell/): In part one of this article, PowerShell MVP Jeff Hicks shows us how we can build a PowerShell tool to ping a range of IP addresses. - [Paul Thurrott's Short Takes: February 13, 2015](https://petri.com/short-takes-february-13-2015/): In this week's other news, Microsoft can't stop punching itself in the face. - [Getting Started with Microsoft SQL Server](https://petri.com/getting-started-with-sql-server/): Here are five simple steps to help you with getting started with Microsoft SQL Server as an IT administrator. - [Episode 12: February 12, 2015 10:15 pm EDT Guest: Steve Kenniston](https://petri.com/episode-12-steve-kenniston/): In this era, most of us have managed to make multiple copies of our business critical data, but how do... - [Find Disabled, Inactive Active Directory Users Accounts with PowerShell Revisited](https://petri.com/find-disabled-and-inactive-active-directory-users-accounts-with-powershell-revisited/): PowerShell MVP Jeff Hicks serves up an alternate method for finding disabled and inactive Active Directory users accounts with PowerShell. - [Microsoft Purchases Sunrise, Will Reportedly Buy N-Trig as Well](https://petri.com/microsoft-purchases-sunrise-will-reportedly-buy-n-trig-well/): Microsoft on Wednesday confirmed reports that it would purchase calendar maker Sunrise. And it will reportedly buy Surface Pro 3 pen maker N-Trig too. - [What are Microsoft Azure Resource Groups?](https://petri.com/what-are-microsoft-azure-resource-groups/): Learn about the Azure Resource Manager and how Microsoft Azure resource groups can be used to manage your Azure assets. - [PowerShell Problem Solver: Get Local Active Directory Group Members with PowerShell](https://petri.com/get-local-active-directory-group-members-with-powershell/): PowerShell MVP Jeff Hicks shows us how to get local Active Directory group members with Windows PowerShell. - [February's Patch Tuesday is All About IE](https://petri.com/februarys-patch-tuesday-ie/): Microsoft released a sweeping set of 56 security fixes described across nine bulletins as part of its regularly scheduled "Patch Tuesday" updates yesterday. - [Use PowerShell's Get-Content cmdlet to Copy Files to Multiple Computers](https://petri.com/copy-files-to-multiple-computers-by-reading-simple-text-input-using-powershell/): Use PowerShell's Get-Content cmdlet to copy files to multiple computers. - [Troubleshooting Hyper-V Networking](https://petri.com/troubleshooting-hyper-v-networking/): Learn several different tips to help you with troubleshooting Hyper-V networking issues in Windows Server Hyper-V and Windows Client Hyper-V. - [Microsoft and Samsung Settle Contract Dispute](https://petri.com/microsoft-samsung-settle-contract-dispute/): Microsoft and Samsung have quietly settled a major contract dispute that threatened Samsung's use of the Android mobile OS on its smart phones and tablets. - [A Useful PowerShell Script to Document Your Active Directory Environment](https://petri.com/useful-powershell-script-document-active-directory-environment/): Use this free, powerful PowerShell script to make documenting your Active Directory environment easier. - [Enable Tracking Protection in Internet Explorer to Improve Privacy and Speed](https://petri.com/enable-tracking-protection-in-internet-explorer-to-improve-privacy-and-speed/): Learn how do not request and tracking protection in Internet Explorer can improve your privacy and speed up web browsing. - [Use PowerShell to Find Folders with Specific File Types](https://petri.com/using-powershell-to-find-folders-with-specific-file-types/): Learn how to use PowerShell to find folders with specific file types in this how-to article by PowerShell MVP Jeff Hicks. - [FCC Chairman Comes Out Hitting for Net Neutrality](https://petri.com/fcc-chairman-comes-hitting-net-neutrality/): The FCC took the bold step of revealing that it intends to invoke its legal authority to regulate broadband Internet service as a public utility. - [Migrate Active Directory from Windows Server 2003 to 2012 R2: Migrate DHCP, Remove Server 2003, and Raise Functional Levels](https://petri.com/windows-server-2003-dhcp-migration-2012/): Learn how to install and migrate DHCP settings, demote a Windows Server 2003 domain controller and raise domain and forest functional levels - [Microsoft Intune to Get Monthly Updates Going Forward](https://petri.com/microsoft-intune-get-monthly-updates-going-forward/): Microsoft also announced that it would now rapidly add new capabilities to the Inune cloud PC and device management services "at cloud speed." - [Paul Thurrott's Short Takes: February 6, 2015](https://petri.com/short-takes-february-6-2015/): In this week's other news, Satya Nadella celebrates year one as Microsoft CEO but I raise questions, Radio Shack bites the dust, and Obama's iPhone preview. - [Migrate Active Directory from Windows Server 2003 to 2012 R2: Install AD and Transfer FSMO Roles](https://petri.com/windows-server-2003-to-2012-r2-install-ad-and-transfer-fsmo-roles/): Learn how to migrate from Windows Server 2003 to 2012 R2, which includes steps for installing Active Directory and transferring FSMO roles. - [Episode 11: February 5, 2015 10:15 EDT Guest: Eric Wright](https://petri.com/episode-11-eric-wright/): While everyone is familiar with Juno, the failed Eastern blizzard of 2015, it is only us in the IT community... - [Why is Windows Server vNext Delayed Until 2016?](https://petri.com/why-is-windows-server-vnext-delayed-until-2016/): Wondering why is Windows Server vNext delayed until 2016? Russell Smith has some ideas, including the addition of Docker support. - [Microsoft Will Reportedly Purchase Online Calendar Maker for $100+ Million](https://petri.com/microsoft-will-reportedly-purchase-online-calendar-maker-100-million/): Microsoft will reportedly spend over $100+ million to purchase online calendar maker Sunrise. - [Migrate Active Directory from Windows Server 2003 to 2012 R2: Preparing Windows Server and Active Directory](https://petri.com/migrate-active-directory-windows-server-2003-2012-r2-preparing-windows-server-active-directory/): Learn how to migrate Active Directory from Windows Server 2003 to 2012 R2, including DNS and DHCP, to the latest version of Windows Server. - [Using PowerShell to Find Disabled or Inactive User Accounts in Active Directory](https://petri.com/using-powershell-to-find-disabled-or-inactive-user-accounts-in-active-directory/): Learn how to use PowerShell to find disabled or inactive user accounts in Active Directory in this helpful article by PowerShell MVP Jeff Hicks. - [Millions of Android Devices Infected by Malicious Apps](https://petri.com/millions-android-devices-infected-malicious-apps/): Google has pulled three adware-distributing apps from its Play Store, but only after several millions devices were infected with the malicious software. - [Migrating from Windows Server 2003: Getting Started](https://petri.com/migrating-from-windows-server-2003/): Learn about the options for migrating from Windows Server 2003 to Windows Server 2012 R2 in this how-to article by Russell Smith. - [Microsoft Azure SQL Database Now Includes New Security, Automation Features](https://petri.com/microsoft-azure-sql-database-new-security-automation-features/): Microsoft has updated Azure SQL Database to include new security and automation features to make the cloud computing service more attractive and productive for users. - [Microsoft Outlines Its Plan to Evolve SharePoint for the Cloud First, Mobile First Era](https://petri.com/microsoft-outlines-plan-evolve-sharepoint-cloud-first-mobile-first-era/): Microsoft this week began addressing how and when it will update SharePoint for the cloud first, mobile first era. - [Getting Hyper-V Integration Components via Windows Update](https://petri.com/upgrade-hyper-v-integration-components-via-windows-update/): Aidan Finn explains how Microsoft is moving to using Windows Updates to upgrade Hyper-V Integration Components on Hyper-V. - [Grouping PowerShell Objects with Group-Object](https://petri.com/grouping-powershell-objects-with-group-object/): Learn all about grouping PowerShell objects with Group-Object in this detailed how-to by PowerShell MVP Jeff Hicks. - [Android and iOS Leave Little Room for Windows in the Smart Phone Market](https://petri.com/android-ios-leave-little-room-windows-smart-phone-market/): Android and iOS continued to dominate the global smart phone market in 2014, with Windows Phone stuck in third place. But there are big questions for 2015. - [Microsoft Outlines OneDrive for Business Data at Rest Encryption, OneDrive Support Coming Soon](https://petri.com/onedrive-for-business-data-at-rest-encryption/): Microsoft has provided some additional detail about OneDrive for Business data at rest encryption, and normal OneDrive will be getting the feature soon. - [Microsoft Delays Windows Server vNext to 2016](https://petri.com/microsoft-delays-windows-server-vnext-2016/): Originally expected to ship alongside Windows 10 later in 2015, the next major Windows Server version has now been delayed by Microsoft until 2016. - [Microsoft Will Offer Businesses a Mixed Servicing Approach with Windows 10](https://petri.com/microsoft-will-offer-businesses-mixed-servicing-approach-windows-10/): Microsoft recently revealed its "Windows as a service" concept as part of its announcement about free upgrades to Windows 10. - [Copy, Move and Rename Files Using Windows PowerShell](https://petri.com/copy-move-rename-files-using-windows-powershell/): Learn how to copy, move and rename files using Windows PowerShell in this how-to article by Russell Smith. - [Google Reports Growth, But Earnings Fall Short](https://petri.com/google-reports-growth-earnings-fall-short/): Google this week reported net income of $4.76 billion on revenues of $18.10 billion for the 4th quarter of 2014. But the results fell short of expectations. - [Episode 10: January 29, 2015 Guest: Paul Cunningham](https://petri.com/episode-10-paul-cunningham/): Joining us from the future, Exchange Server Pro, Exchange MVP Paul Cunningham (@exchservpro) will join us from Australia to discuss... - [Samsung Stumbles Badly as Apple Soars](https://petri.com/samsung-stumbles-badly-apple-soars/): While Apple set records for iPhone sales, profits and revenues in Q4 2014, Samsung's smart phone business stumbled badly. Again. - [VMware Tops $6 Billion in Revenue in 2014, Inks Cloud Deal with Google](https://petri.com/vmware-tops-6-billion-in-revenue-in-2014-inks-cloud-deal-with-google/): While Microsoft and Apple recently revealed impressive financial results, VMware tops $6 Billion in Revenue in 2014. - [Using the Azure Virtual Machine Optimization Assessment Tool](https://petri.com/using-the-azure-virtual-machine-optimization-assessment-tool/): Run the Azure Virtual Machine Optimization Assessment Tool to get best practice advice about running Active Directory, SQL and SharePoint in the cloud. - [Scheduling Azure VM Startup and Shutdown using Azure Automation](https://petri.com/azure-vm-startup-and-shutdown-using-azure-automation/): Learn about scheduling Azure VM startup and shutdown using Azure Automation to help you save money on your Microsoft Azure bill. - [Amazon Unveils WorkMail, Takes Aim at Exchange, Gmail](https://petri.com/amazon-unveils-workmail-takes-aim-exchange-gmail/): Amazon unveils WorkMail and wades into the enterprise messaging market, putting it in direct competition with Microsoft Exchange and Google Gmail. - [PowerShell Problem Solver: Importing CSV Files Revisited](https://petri.com/powershell-problem-solver-importing-csv-files-revisited/): Learn more about importing a CSV file in PowerShell, including use of the Import-CSV and Get-Content cmdlets for file importing. - [Apple Sold 74.5 Million iPhones in Q4 2014](https://petri.com/apple-sells-74-5-million-iphones-q4-2014/): Well, it's official: Apple is now the iPhone company. The Cupertino consumer electronics giant sold an astonishing 74.5 million iPhones in Q4 2014. - [Microsoft Updates Power BI, Launches Free Version, Teases Power BI Pro](https://petri.com/microsoft-updates-power-bi-launches-free-version-teases-ower-bi-pro/): Microsoft updates Power BI in an attempt to make business intelligence more approachable and to make it easier for companies to "adopt a data culture." - [Choosing Between Azure VM Series](https://petri.com/choosing-azure-vm-series/): This article is a guide for choosing between Choosing Between Azure VM Series, including A- (Basic and Standard), D-, DS-, and D-series virtual machines. - [How to Copy Files between Hyper-V Host and Guests with PowerShell](https://petri.com/copy-files-hyper-v-host-guest/): Jeff Hicks shows us how to use PowerShell to easily copy files between the Hyper-V host and guest virtual machines. - [Microsoft Delivers Another Blockbuster Quarter](https://petri.com/microsoft-delivers-another-blockbuster-quarter/): Microsoft on Monday announced operating income of $7.8 billion on revenues of $26.5 billion for the quarter ended December 31, 2014. - [Create an Office 365 Group in Outlook.com](https://petri.com/create-an-office-365-group-in-outlook-com/): Learn how to create an Office 365 group in Outlook.com. - [What is Microsoft Really Doing with Windows 10?](https://petri.com/microsoft-really-windows-10/): Paul Thurrott asks what Windows 10 will really do to right the Microsoft ship and ensure that this year's launch is nothing like the Windows 8 debacle. - [Paul Thurrott's Short Takes: January 23, 2015](https://petri.com/paul-thurrott-short-takes-january-23-2015/): In this first installment of Paul Thurrott's Short Takes: A quick thanks, Surface 2 finally sells out, and putting Windows 8 and Surface RT/2 in perspective. - [Has Microsoft Changed their Image?](https://petri.com/has-microsoft-changed-their-perception/): Aidan Finn analyzes the recent Windows 10 event and how Microsoft has managed to change their image with a slew of announcements. - [What about Windows Server 10?](https://petri.com/what-about-windows-server-10/): Microsoft revealed lots of updated information on Windows 10 yesterday, but what about Windows Server 10? Russell Smith gives us his take. - [Episode 9: January 22, 2015 Guest: Rick Vanover](https://petri.com/episode-9-rick-vanover/): Whether you have been in IT for 2 months or 20 years it is likely you have seen something that... - [Microsoft Provides a Much More Complete Look at Windows 10](https://petri.com/microsoft-provides-much-complete-look-windows-10/): Microsoft provided a complete look at Windows 10 at a media event held at their headquarters in Redmond yesterday. Paul Thurrott gives us the highlights. - [Generate Office 365 Reports using PowerShell](https://petri.com/generate-office-365-reports-using-powershell/): Learn how to generate Office 365 Reports using PowerShell in this step-by-step tutorial by Russell Smith. - [PowerShell Problem Solver: Enumerating Members of Large Active Directory Groups](https://petri.com/enumerating-members-of-large-active-directory-groups/): Jeff Hicks shows us how to go about enumerating members of large Active Directory groups using PowerShell. - [Microsoft: Windows 10 will be Free Upgrade for Windows 7 and Windows 8 Users](https://petri.com/microsoft-windows-10-will-free-upgrade-windows-7-windows-8-users/): Microsoft announced today that Windows 10 will be a free upgrade for Windows 7 and Windows 8 users. - [Enabling Auto-Scaling for Azure VMs](https://petri.com/enabling-auto-scaling-azure-vms/): This article shows you how to implement virtual machine auto-scaling in Azure to optimize your use of Azure credit and minimize spending. - [My PowerShell Troubleshooting Toolkit Expanded](https://petri.com/powershell-troubleshooting-toolkit-expanded/): PowerShell Troubleshooting Toolkit Expanded: Jeff Hicks provides even more information about how IT admins can build upon his popular PowerShell toolkit. - [All Eyes on Redmond with Windows 10 on the Horizon](https://petri.com/redmond-windows-10-horizon/): Paul Thurrott discusses the significance of this week's Windows 10 event and why he thinks this new OS version from Microsoft will be its best yet. - [It's Official: Samsung Will Not Acquire Blackberry](https://petri.com/samsung-will-not-acquire-blackberry/): Samsung denied reports that it would purchase Blackberry and says that it will instead seek to expand an existing partnership with the struggling firm. - [Create and Manage Azure Active Directory Administrative Units](https://petri.com/create-manage-azure-active-directory-administrative-units/): Learn how to create and manage Microsoft Azure Active Directory Administrative Units, which can be used to limit the scope of administrative roles. - [British Man Arrested in Connection with Xbox Live, PSN Attacks](https://petri.com/british-man-arrested-connection-xbox-live-psn-attacks/): Paul Thurrott discusses the arrest of a British man in connection with of the Christmas Day 2014 DDoS attacks on Xbox Live and PlayStation Network. - [Paul Thurrott Joins the Petri IT Knowledgebase, Launches Thurrott.com](https://petri.com/paul-thurrott-joins-petri-knowledgebase-launches-thurrott-com/): SuperSite for Windows founder Paul Thurrott has joined the Petri IT Knowledgebase and partnered with Petri publisher Blue Whale Web to launch Thurrott.com. - [Use PowerShell to Create and Assign Licenses to Office 365 Users](https://petri.com/use-powershell-create-assign-licenses-office-365-users/): Russell Smith shows us how to use PowerShell to create and assign licenses to Office 365 users. - [How to Prevent Forwarding or Replying to all Recipients in Outlook](https://petri.com/prevent-forwarding-replying-recipients-outlook/): Daniel Petri shows how the NoReplyAll add-in can help prevent forwarding or replying to all recipients in Outlook for your email items. - [A Cipher Best Practice: Configure IIS for SSL/TLS Protocol](https://petri.com/cipher-best-practice-configure-iis-ssl-tls-protocol/): Here's an easy solution for configuring protocol orders and ciphers, which eliminates the need for a tedious and manual implementation. - [Episode 8: January 15, 2015 Guest: Stefanie Holland](https://petri.com/episode-8-stefanie-holland/): Security breaches, cloud privacy and data loss have been a hot topic of concern for many business in 2014 for... - [Saving Money with Microsoft Azure Virtual Machines](https://petri.com/saving-money-azure-virtual-machines/): Learn several different methods for saving money with Azure, where Aidan Finn provides tips on reducing the cost of running VMs and staying within budget. - [Open a Command Prompt in Full Screen in Windows 10](https://petri.com/open-command-prompt-full-screen-windows-10/): Learn how to easily open a command prompt in a full screen window in Windows 10. - [The Perils of Working from Home](https://petri.com/perils-of-working-from-home/): If you are thinking about working from home, here are a few points that you should consider before you make the move permanent. - [PowerShell Problem Solver: Delete Empty Folders with PowerShell](https://petri.com/powershell-problem-solver-delete-empty-folders/): Learn how to delete empty folders with PowerShell by using the GetFiles() method. - [A Great Free Tool for Finding Disabled and Inactive Active Directory User Accounts](https://petri.com/go-quest-find-disabled-inactive-active-directory-user-accounts/): Use this free tool from Quest Software, now part of Dell, to find disabled and inactive Active Directory user accounts with PowerShell. - [Using the PowerShell Send-MailMessage cmdlet](https://petri.com/using-powershell-send-mailmessage-cmdlet/): Learn how to effectively use the Windows PowerShell Send-MailMessage cmdlet to easily send messages directly from PowerShell. - [Google Launches Cloud Trace to Troubleshoot Cloud App Perfomance Issues](https://petri.com/google-cloud-trace-beta-troubleshoot-perfomance-issues/): Google launches Google Cloud Trace in beta form to help cloud application developers optimize their apps. - [Hashing it Out in PowerShell: Using Get-FileHash](https://petri.com/hashing-powershell-using-get-filehash/): Learn how to use the PowerShell cmdlet Get-FileHash to obtain the hash value for a file. - [Microsoft Updates Azure with Key Vault, Docker Images, and Ginormous VM Sizes](https://petri.com/microsoft-azure-key-vault-docker-images-ginormous-vms/): Microsoft Updates Azure with a host of new features and improvements, including Azure Key Vault, Docker Images, and G-series virtual machines. - [Should You Use RDP Restricted Admin Mode?](https://petri.com/should-i-use-rdp-restricted-admin-mode/): Understand the potential risks of using Restricted Admin Mode for remote desktop connections. - [Episode 7: January 8, 2015 Guest: Rawlinson Rivera](https://petri.com/episode-7-rawlinson-rivera/): Virtualization has become a part of our everyday IT lives, with almost everything being virtualized. Rawlinson (@punchingclouds) will join us... - [Will there ever be a PowerShell certification?](https://petri.com/powershell-certification-exams/): Learn why Microsoft won't be offering a PowerShell certification anytime soon, but that shouldn't be a deterrent for learning the technology for your career. - [Windows Phone 8.1 Long Term Review](https://petri.com/windows-phone-8-1-long-term-review/): In his Windows Phone 8.1 long term review, Russell Smith looks at some of the core functionality and discusses issues he encountered with offline use. - [PowerShell Problem Solver: Exporting Active Directory Groups to CSV](https://petri.com/powershell-problem-solver-exporting-active-directory-groups-csv/): Learn how to easily export Active Directory Groups to a CSV file in Windows PowerShell with the help of the Get-ADGroupMember cmdlet. - [Storing Documents in the Cloud: OneDrive, SharePoint, or Email?](https://petri.com/store-documents-ond/): Learn the most effective scenarios for storing your documents in the cloud, with technologies such as One Drive and SharePoint. - [Configuring Network Security Groups in Microsoft Azure](https://petri.com/configuring-network-security-groups-in-microsoft-azure/): Learn how to secure subnets in a virtual network using Network Security Groups in Microsoft Azure. - [PowerShell Command History and Buffers](https://petri.com/powershell-command-history-buffers/): Jeff Hicks shows us shows us how to easily bring up your past PowerShell command history for future use. - [Raise Active Directory Domain and Forest Functional Levels using PowerShell](https://petri.com/raise-active-directory-domain-and-forest-functional-levels-using-powershell/): Learn how to raise Active Directory domain and forest functional levels using PowerShell in this how-to article by Russell Smith. - [Revisiting the PowerShell Uptime Clock](https://petri.com/revisiting-powershell-uptime-clock/): Jeff Hicks revisits the PowerShell Uptime Clock and provides tips for adding finishing touches to the Get-MyUptime cmdlet in his latest article. - [Use Microsoft Azure Backup with Recovery Services](https://petri.com/backing-up-pcs-to-microsoft-azure/): Learn how to install, configure, and use Microsoft Azure Backup with Recovery Services on Windows 8.1, Windows 8, and Windows 7 client devices. - [Microsoft Azure versus Amazon EC2 Cloud Security Comparison](https://petri.com/microsoft-azure-versus-amazon-ec2-cloud-security-comparison/): Russell Smith writes about Microsoft Azure versus Amazon EC2 cloud security. Which cloud provider has the better security options? - [Solving Group Policy Problems with the Group Policy Results Wizard](https://petri.com/solving-group-policy-problems-with-the-group-policy-results-wizard/): Learn how to use the Group Policy Results Wizard in the Group Policy Management Console. - [Creating Advanced Functions in PowerShell](https://petri.com/creating-advance-functions-powershell/): Learn all about creating advanced functions in PowerShell via this tutorial by Jeff Hicks. - [Create a PowerShell Function to Display System Uptime](https://petri.com/powershell-function-to-display-system-uptime/): Learn how to create a PowerShell function to display system uptime in this how-to article by Jeff Hicks. - [Creating DSC Resource Snippets for the PowerShell ISE](https://petri.com/creating-dsc-resource-snippets-powershell-ise/): Learn all about creating DSC resource snippets for the PowerShell ISE in this how-to article by Jeff Hicks. - [The Top 7 Microsoft News Stories of 2014](https://petri.com/top-7-microsoft-news-2014/): Aidan Finn reviews the biggest headlines in the world of Microsoft this year, and puts together a summary of the Microsoft news stories of 2014. - [3 Windows Technologies that Improved our Productivity in 2014](https://petri.com/3-windows-technologies-that-improved-productivity-2014/): Russell Smith shares the top three Windows technologies that improved our productivity in 2014. - [Deploying a Microsoft Azure Storage Account](https://petri.com/deploying-microsoft-azure-storage-account/): Aidan Finn shows us how to deploy a storage account in Microsoft Azure, in preparation for storing new or uploaded virtual machines. - [Choosing Microsoft Azure Storage for IaaS](https://petri.com/choosing-microsoft-azure-storage-for-iaas/): This post will describe the possible options for choosing and deploying storage in Microsoft Azure, with a focus on virtual machines and IaaS. - [Boolean Values in PowerShell](https://petri.com/using-boolean-values-in-powershell/): Learn about using Boolean values in Windows PowerShell, including tips for working with Not, NotContains, NotIn, NotLike, and NotMatch logic operators. - [About Hyper-V Virtual Processor Limitations](https://petri.com/about-hyper-v-virtual-processor-limitations/): Aidan Finn clears up a few myths about Microsoft guidance on Hyper-V virtual processor limitations and talks about vCPU maximums in Hyper-V. - [How to Use Starter Group Policy Objects in Windows Server](https://petri.com/how-to-use-starter-group-policy-objects-in-windows-server/): Learn how to create, load, and save starter Group Policy Objects in Windows Server Active Directory. - [Formatted Grouping in PowerShell](https://petri.com/formatted-grouping-powershell/): Learn different methods for handling grouped output with PowerShell, which includes Format-List and Format-Table cmdlet solutions. - [Microsoft Makes Azure Disaster Recovery For SMEs and Branch Offices](https://petri.com/microsoft-makes-azure-disaster-recovery-smes-branch-offices/): Microsoft has made Azure Site Recovery, or DR-in-the-cloud, more affordable for small-to-medium enterprises (SMEs) and branch offices. - [Use Get-CIMInstance to Create a PowerShell File Extension Report](https://petri.com/use-get-ciminstance-to-create-powershell-file-extension-report/): Jeff Hicks teaches us how to use the Get-CIMInstance cmdlet in Windows PowerShell to create a file extension report. - [5 Hyper-V Skills You Need To Learn for 2015](https://petri.com/5-hyper-v-skills-need-learn-2015/): Aidan Finn recommends five Hyper-V skills you need to learn for 2015, including learning PowerShell and embracing Microsoft Azure. - [6 Hyper-V Predictions for 2015](https://petri.com/6-hyper-v-predictions-for-2015/): Microsoft MVP Aidan Finn gives us his predictions for what we can expect in the world of Microsoft virtualization in 2015. - [Using ClipBook Viewer on Windows 8](https://petri.com/using-clipbook-viewer-windows-8/): Learn how to run the classic Windows XP ClipBook Viewer application in Windows 8 in this how-to article by Daniel Petri. - [Using Microsoft Azure Online Backup](https://petri.com/using-microsoft-azure-online-backup/): Aidan Finn provides an overview of using Microsoft Azure online backup for Windows client devices. - [Adding a ToolTip using SAPIEN PowerShell Studio](https://petri.com/adding-tooltip-powershell-studio-project/): Learn how to easily add a ToolTip to your WinForms-based script with the help of SAPIEN PowerShell Studio. - [PowerShell Problem Solver: Importing CSV Files into PowerShell](https://petri.com/importing-csv-files-into-powershell/): Jeff Hicks shows us how to import CSV files into PowerShell in this helpful tutorial article. - [A Handy, Free Tool for Easy USB Disk Ejection](https://petri.com/handy-tool-easy-usb-disk-ejection/): Daniel Petri shares a helpful and free tool to easily eject a USB disk to avoid compromising your data. - [Add Pop-Up Tips for PowerShell WinForms Script](https://petri.com/add-popup-tips-powershell-winforms-script/): Learn how to create pop-up help tips for your custom, graphical PowerShell WinForms Script. - [How to Open the Windows 8 Command Prompt in any Folder](https://petri.com/how-to-open-command-prompt-in-any-folder-in-windows-8/): Learn how to open the command prompt in Windows 8, along with tips on how to easily launch the command prompt in any directory. - [Easily Edit the Hosts File in Windows 10](https://petri.com/easily-edit-hosts-file-windows-10/): Learn how to edit the hosts file in Windows 10 with this step-by-step tutorial by Daniel Petri. - [Extending Battery Monitoring with WMI Events in PowerShell](https://petri.com/extending-battery-monitoring-wmi-events-powershell/): Jeff Hicks shows us how to create a script that does battery monitoring with WMI events in PowerShell. - [Assigning Elastic IP Addresses to Amazon EC2 Instances](https://petri.com/assigning-elastic-ip-addresses-to-amazon-ec2-instances/): Learn how to assign elastic IP (EIP) addresses to Amazon EC2 VPC instances. - [How to Create and Link a Group Policy Object in Active Directory](https://petri.com/how-to-create-and-link-a-group-policy-object-in-active-directory/): Learn how to create and link a Group Policy Object in Active Directory in this step-by-step tutorial by Russell Smith. - [How to Copy Files with PowerShell Remoting](https://petri.com/copy-files-powershell-remoting/): Learn an easy method on how to copy files with PowerShell remoting functionality. - [Updating the Windows 10 Technical Preview to the Latest Build](https://petri.com/updating-windows-10-technical-preview-latest-build/): Learn how to update the Windows 10 Technical Preview to the new build, and about the different update tracks available after the update. - [PowerShell Problem Solver: Finding Installed Software Using CIM Cmdlets](https://petri.com/powershell-problem-solver-finding-installed-software-part-4/): Learn how to use CIM cmdlets in Windows PowerShell to find installed software and applications on your computer. - [Using Internet Explorer 11 Edge Mode in Windows 10 Technical Preview](https://petri.com/using-internet-explorer-11-edge-mode/): Learn how to use Internet Explorer 11 Edge Mode in Windows 10 Technical Preview and how to enable it. - [Reviewing My Hyper-V Predictions For 2014](https://petri.com/reviewing-hyper-v-predictions-2014/): Aidan Finn reviews and grades his Hyper-V predictions for 2014 based on what actually transpired this year. - [2014 Holiday Gift Guide for System Administrators](https://petri.com/2014-holiday-gift-guide-system-administrators/): In our 2014 Holiday Gift Guide for System Administrators, Petri IT Knowledgebase staffers brings you top gifts for the holidays, including picks from Logitech, iRobot, Microsoft and more. - [Enable IP between VPC Instances in Amazon Web Services](https://petri.com/enable-ip-vpc-instances-amazon-web-services/): Learn how to configure security groups in Amazon Web Services so EC2 Virtual private Cloud (VPC) instances can communicate with each other. - [More Battery Reporting Fun with PowerShell](https://petri.com/battery-management-fun-powershell/): Learn how to create a PowerShell battery report tool in this how-to by Jeff Hicks. - [How to Restore Default Windows Notepad Settings](https://petri.com/how-to-restore-default-windows-notepad-settings/): How to Restore Default Windows Notepad Settings in Windows 7, Windows 8, and Windows Server 2012 - [How to Install the Windows 10 Technical Preview](https://petri.com/install-windows-10-technical-preview/): Learn how to install the Windows 10 Technical Preview in this step-by-step tutorial by Daniel Petri. - [Anti-Malware Solutions for Microsoft Azure Virtual Machines](https://petri.com/anti-malware-solutions-microsoft-azure-virtual-machines/): Learn about different anti-malware solutions, including options from Microsoft, McAfee, Symantec, and Trend Micro for Azure virtual machines. - [PowerShell Problem Solver: Find Installed Software using WMI and StdRegProv](https://petri.com/powershell-problem-solver-find-installed-software-powershell-part-3/): Learn how to find installed software using WMI and StdRegProv in this latest PowerShell Problem Solver from Jeff Hicks. - [Configure DHCP and DNS in an AWS Virtual Private Cloud](https://petri.com/configure-dhcp-dns-amazon-web-services-virtual-private-cloud/): Learn how to configure DHCP and DNS in an AWS Virtual Private Cloud. - [Manage IP Addressing with Virtual Private Clouds in Amazon Web Services](https://petri.com/manage-ip-addressing-virtual-private-clouds-amazon-web-services/): Manage IP addressing with Virtual Private Clouds in Amazon Web Services by provisioning a Windows Server 2012 R2 virtual machine with the help of Windows PowerShell. - [Using Microsoft Azure Forced Tunneling](https://petri.com/azure-forced-tunneling/): Learn how to use Azure Forced Tunneling to route Azure virtual networks and machines via your on-premises network. - [How to Configure Windows Server as an iSCSI Target and Storage Server](https://petri.com/setup-windows-server-2012-r2-iscsi-storage-server/): Learn how to use iSCSI to configure Windows Server 2012 R2 as a storage server. - [Provision a Windows Server Storage Spaces Mirrored Volume with PowerShell](https://petri.com/provision-storage-spaces-mirrored-volume-in-windows-server-using-powershell/): Learn how to configure a Windows Server Storage Spaces Mirrored Volume with PowerShell. - [PowerShell Problem Solver: Searching the Registry to Find Installed Software](https://petri.com/powershell-problem-solver-find-installed-software-part-2/): Jeff Hicks shows us an easy way to search your computer's registry to find installed software with PowerShell. - [Reduce VDI costs by Enabling Data Deduplication on Windows Server 2012 R2](https://petri.com/reduce-vdi-costs-enable-windows-server-2012-r2-data-deduplication/): Learn how to reduce on your VDI deployment costs by enabling data deduplication on Windows Server 2012 R2. - [Building a Battery Manager with PowerShell](https://petri.com/building-battery-manager-powershell/): Learn how to build a battery manager with PowerShell in this tutorial by Jeff Hicks. - [Provision Windows Server in Amazon Web Services using PowerShell](https://petri.com/provision-windows-server-amazon-web-services-using-powershell/): Learn how to automate the provisioning of Windows Server in Amazon Web Services using PowerShell. - [Microsoft’s View on Hyper-Convergence](https://petri.com/microsofts-view-hyper-convergence/): Petri IT Knowledgebase Contributing Editor Aidan Finn gives us his opinion of Microsoft’s view on hyper-convergence. - [Configure Multiple NICs in an Azure Virtual Machine](https://petri.com/configure-multiple-nics-in-an-azure-virtual-machine/): Learn how to provision a Microsoft Azure virtual machine with two or more network interface cards in this how-to article by Russell Smith. - [The Microsoft Azure Outage: Why It Happened](https://petri.com/microsoft-azure-outage/): Microsoft Azure suffered a widespread outage on November 18th/19th. This article looks at the cause, and asks what Microsoft could have done differently. - [An Overview of the Microsoft Cloud Platform System](https://petri.com/overview-of-microsoft-cloud-platform-system/): Aidan Finn gives an overview of Microsoft's Cloud Platform System, which is the company's cloud-in-a-rack solution built on Dell hardware. - [PowerShell Problem Solver: Find Installed Software Using PowerShell](https://petri.com/powershell-problem-solver-find-installed-software-part-1/): Jeff Hicks shows us an easy method for finding installed software on your computer with Windows PowerShell. - [Chris Bradshaw Announced as Winner of Petri IT Hero Contest](https://petri.com/chris-bradshaw-announced-winner-petri-hero-contest/): System Administrator Chris Bradshaw has been selected as the winner of the first-ever Petri IT Hero contest. Congratulations Chris! - [Failover Clustering in Windows Server Technical Preview](https://petri.com/failover-clustering-windows-server-technical-preview/): Aidan Finn discusses the new features of Failover Clustering in Windows Server Technical Preview. - [Could Windows 10 and Windows Server vNext End the Reliance on Passwords?](https://petri.com/could-windows-10-and-server-vnext-end-reliance-on-passwords/): Learn about new generation credentials and remote smartcards in Windows 10 and Windows Server vNext. - [How to Build Azure-Like Virtual Machines on Hyper-V](https://petri.com/build-azure-like-vms-hyper-v/): This article shows you how to create virtual machines on Hyper-V that are similar to those you can run in Microsoft Azure. - [How to Configure Internet Explorer 11 Enterprise Mode Logging](https://petri.com/how-to-configure-internet-explorer-11-enterprise-mode-logging/): Learn how to enable Internet Explorer Enterprise Mode logging using IIS, and allow users to toggle Enterprise Mode on and off from the Tools menu. - [How to Enable Internet Explorer 11 Enterprise Mode](https://petri.com/how-to-enable-internet-explorer-11-enterprise-mode/): Learn the difference between Internet Explorer Compatibility View and Enterprise Mode, and how to set up Enterprise Mode using Group Policy. - [Export Hyper-V Configuration Using PowerShell](https://petri.com/export-hyper-v-configuration-powershell/): This helpful PowerShell function lets you export or backup the configuration for select virtual machines on your Hyper-V server. - [Protect Privileged Credentials in Windows Server 2012 R2 using the Protected Users Group](https://petri.com/protect-privileged-credentials-windows-server-2012-r2-using-protected-users-group/): Learn tips for protecting privileged credentials in Windows Server 2012 R2 with the use of a protected users group. - [PowerShell Problem Solver: Find Script Commands](https://petri.com/powershell-problem-solver-find-script-commands/): Easily find cmdlets and modules that are required to run your script with Windows PowerShell. - [Vote for the Winner of the Petri IT Hero Contest!](https://petri.com/vote-winner-petri-it-hero-contest/): Petri IT Knowledgebase readers can now vote for the winner in the final phase of the Petri IT Hero contest. - [Building a PowerShell Troubleshooting Toolkit Revisited](https://petri.com/building-powershell-troubleshooting-toolkit-revisited/): PowerShell workflows make the task downloading your customized PowerShell troubleshooting toolkit much easier. - [How to Price Microsoft Azure on Open Licensing](https://petri.com/price-microsoft-azure-open-licensing/): Learn how to price a solution in Azure using open licensing with the Microsoft Azure Open Calculator. - [Windows Server vNext Privileged Access Management](https://petri.com/windows-server-vnext-privileged-access-management/): Learn about Microsoft's new Just-In-Time Privileged Access Management model in Windows Server vNext to better manage your Active Directory user accounts. - [How to scan QR codes in Windows Phone 8.1](https://petri.com/how-to-scan-qr-codes-in-windows-phone-8-1/): Learn how to scan QR codes in Windows Phone 8.1 using Bing Vision. - [Build a Troubleshooting Toolkit using PowerShell](https://petri.com/build-a-troubleshooting-toolkit-using-powershell/): Save time by building a custom troubleshooting toolkit with Windows PowerShell in Jeff Hick's latest article. - [Are Docker Containers Better than VMs?](https://petri.com/are-docker-containers-better-than-vms/): Are Docker Containers Better than VMs? Learn about how Docker works and the differences between Linux containers and hypervisors. - [An Interview with Microsoft Azure CTO Mark Russinovich](https://petri.com/interview-microsoft-azure-cto-mark-russinovich/): The Petri IT Knowledgebase recently conducted an interview with Microsoft Azure CTO Mark Russinovich. Read on for more details! - [Choosing a Microsoft Certification: Exchange, Lync, and SharePoint? Or Office 365?](https://petri.com/choosing-microsoft-certification-exchange-2013-lync-2013-sharepoint-2013-office-365/): Learn tips for choosing a Microsoft certification that's either based in Exchange, Lync and SharePoint, or alternatively, Office 365. - [PowerShell Problem Solver: Finding Long File Names](https://petri.com/powershell-problem-solver-finding-long-file-names/): Learn how to find long file names in Windows PowerShell in this how-to article by Microsoft MVP, Jeffery Hicks. - [Setting Up a Site Mailbox in SharePoint Online](https://petri.com/setting-site-mailbox-sharepoint-online/): Learn how to set up a site mailbox in SharePoint Online for added collaboration between outside members of your organization, - [Microsoft Showcases Azure Active Directory Sync Services and Windows 10 MDM Features](https://petri.com/teched-europe-azure-active-directory-windows-10-mdm/): Learn about new management features in Windows 10, including Mobile Device Management (MDM), Azure Active Directory support and new Windows Store features. - [What's New in Windows Server vNext Hyper-V](https://petri.com/whats-new-windows-server-vnext-hyper-v/): This post summarizes what's new in Windows Server vNext Hyper-V, including features that were announced at TechEd Europe 2014. - [New Features in Windows Server vNext](https://petri.com/new-features-windows-server-vnext/): Aidan Finn gives us a look at new features in Windows Server vNext, the successor to Windows Server 2012 R2. - [TechEd Europe 2014: Windows 10 Enterprise Data Protection](https://petri.com/teched-europe-2014-windows-10-enterprise-data-protection/): Learn about some of the new security features in Microsoft's latest client OS, including Windows 10 Enterprise Data Protection. - [Will Microsoft TechEd 2015 live on outside the US and Europe?](https://petri.com/will-microsoft-teched-2015-live-outside-us-europe/): Will Microsoft TechEd 2015 live on outside of the United States and Europe? - [How to Use Microsoft Azure Automation](https://petri.com/how-to-use-microsoft-azure-automation/): Learn how to use Microsoft Azure Automation to schedule Azure runbooks to batch regular administrative tasks in the cloud. - [An IT Pro's Perspective on the TechEd Europe 2014 Keynote](https://petri.com/teched-europe-2014-keynote-pro-view/): Contributing Editor Aidan Finn gives us his summary of the TechEd Europe 2014 keynote from the perspective of a veteran IT professional. - [TechEd Europe 2014: New APIs and SDKs for Office 365 app development](https://petri.com/teched-europe-2014-new-apis-sdks-office-365-app-development/): At TechEd Europe 2014, Microsoft has released new Office 365 APIs, along with new iOS and Android SDKs for development with Office 365 services. - [Choosing a Microsoft Azure Website Hosting Plan](https://petri.com/choosing-a-microsoft-azure-website-hosting-plan/): Learn some tips about choosing a Microsoft Azure website hosting plan in this helpful overview by Microsoft MVP Aidan Finn. - [PowerShell Problem Solver: Find IP Address Using PowerShell](https://petri.com/powershell-problem-solver-find-ip-address-using-powershell/): Learn how to find your computer's IP or MAC address with Windows PowerShell. - [TechEd Europe 2014: Office 365 gets new mobile device management and DLP features](https://petri.com/teched-europe-2014-office-365-new-mdm-dlp-features/): At TechEd Europe 2014, Microsoft announced improvements to mobile device management and DLP features for Office 365. - [TechEd Europe 2014: Microsoft Updates Microsoft Azure, shows Windows 10 and Office 365 Improvements](https://petri.com/microsoft-teched-europe-2014-news/): Find out the latest Microsoft TechEd Europe 2014 News in this news round-up by the Petri IT Knowledgebase. - [TechEd Europe 2014: Microsoft Previews Windows 10 Enterprise Features](https://petri.com/teched-europe-14-microsoft-previews-windows-10-enterprise-features/): Microsoft Previews Windows 10 Enterprise Features at TechEd Europe this morning, and Contributing Editor Russell Smith walks us through what's new. - [Microsoft takes aim at Dropbox and Google with unlimited OneDrive storage](https://petri.com/microsoft-takes-aim-at-dropbox-and-google-unlimited-onedrive-storage/): Microsoft is heating up the cloud storage wars with Dropbox and Google by rolling out unlimited OneDrive storage for all Office 365 users. - [3 Ways to Create New Active Directory Users](https://petri.com/3-ways-to-create-new-active-directory-users/): Learn how to create new Active Directory users with three different administration tools - [Using the AddOnsMenu property in the PowerShell ISE](https://petri.com/using-addonsmenu-property-powershell-ise-object-model/): Learn how to add custom menu items with the AddOnsMenu property in the PowerShell ISE. - [Completely Remove a Hyper-V Virtual Machine with PowerShell](https://petri.com/completely-remove-hyper-v-virtual-machine-powershell/): Learn how to completely remove a Hyper-V virtual machine with PowerShell with scripting tips from Jeffery Hicks. - [IBM and Docker Partnerships Support Microsoft's Cloud Vision](https://petri.com/ibm-docker-partnerships-microsoft-cloud/): Learn how Microsoft's partnership with Docker and IBM works to support Satya Nadella's cloud vision. - [How to Use Snap and Snap Assist in Windows 10 Technical Preview](https://petri.com/how-to-use-snap-and-snap-assist-in-windows-10-technical-preview/): Learn how to use Snap and Snap Assist features in Windows 10 for added productivity. - [What to Expect at Microsoft TechEd Europe 2014](https://petri.com/what-to-expect-at-teched-europe-2014/): Learn what to expect at Microsoft TechEd Europe 2014, including Microsoft's emphasis for this years conference on Microsoft Azure and Office 365. - [PowerShell Problem Solver: Copy Files with Credentials Revisited](https://petri.com/powershell-problem-solver-copy-files-credentials-revisited/): Learn how to copy files with credentials in Windows PowerShell, along with troubleshooting tips when using PSDrive to copy files. - [How to Use Virtual Desktops in Windows 10 Technical Preview](https://petri.com/how-to-use-virtual-desktops-in-windows-10-technical-preview/): Learn how to use Virtual Desktops in Windows 10 Technical Preview. - [5 Ways to Move Virtual Machines into Microsoft Azure](https://petri.com/move-virtual-machines-into-microsoft-azure/): Learn five different ways to move virtual machines into Microsoft Azure. - [A First Look at the Microsoft Cloud Platform System](https://petri.com/first-look-microsoft-cloud-platform-system-powered-dell/): The Microsoft Cloud Platform System is an appliance that combines hardware, storage, and networking provided by Dell, running Microsoft's Windows Server and System Center software. - [Can I Quote You on That? Quoting and Variable Expansion in PowerShell](https://petri.com/can-quote-quoting-variable-expansion-powershell/): Microsoft PowerShell MVP Jeff Hicks explains quoting and variable expansion in PowerShell. - [How to Customize the Windows 10 Start Menu with Group Policy](https://petri.com/how-to-use-and-customize-the-windows-10-start-menu/): Learn how to use and customize the Windows 10 Start menu using group policy and configure the default live tiles layout for your users. - [Fix for VMware Workstation "Not enough physical memory is available" Error](https://petri.com/fixing-enough-physical-memory-available-errors-vmware-workstation/): Learn how to fix "Not enough physical memory is available" errors in VMware Workstation. - [Microsoft Tech Conferences Relaunch Under Microsoft Ignite Banner](https://petri.com/microsoft-tech-conferences-relaunch-under-microsoft-ignite-banner/): Microsoft announced today that Microsoft tech conferences will relaunch under the Microsoft Ignite conference banner in 2015. - [What You Need to Know Before Migrating VMs to Microsoft Azure](https://petri.com/need-to-know-migrate-vms-to-microsoft-azure/): In this first of a two-part series, Aidan Finn discusses the challenges of migrating VMs to Microsoft Azure. - [Microsoft Releases Virtual Machine Converter 3.0](https://petri.com/new-tool-p2v-microsoft/): Microsoft added the ability to do physical-to-virtual (P2V) conversions from vSphere to Hyper-V with Microsoft Virtual Machine Converter (MVMC) 3.0. - [PowerShell Problem Solver: Copy Files with Alternate Credentials](https://petri.com/powershell-copy-files-alternate-credentials/): Learn how to copy files with alternate credentials in Windows PowerShell. - [Use PowerShell to Remotely Manage Exchange 2010 from a Windows 8 PC](https://petri.com/use-powershell-remotely-manage-exchange-2010-windows-8-pc/): Learn how to use PowerShell to remotely manage Exchange 2010 from a Windows 8 PC with these helpful tips. - [Windows 10 Technical Preview: Using Snap, Task View, and Virtual Desktops](https://petri.com/windows-10-snap-task-view-virtual-desktops/): Dive into the Windows 10 Technical Preview with a look at Windows 10 Snap, Task View, and Virtual Desktop features. - [Is Office 365 Really Suited for Small Business?](https://petri.com/office-365-really-suited-small-business/): Is Office 365 really suited for small business? Microsoft MVP J. Peter Bruzzese gives his take on what benefits Office 365 provides. - [Exchange 2010 Cross-Forest Migration: Using ADMT and the Password Export Server](https://petri.com/exchange-2010-cross-forest-migration/): Learn how to perform a Exchange 2010 cross-forest migration using the Active Directory Migration Tool (ADMT) and the Password Express Server. - [Create New Active Directory Users with Excel and PowerShell](https://petri.com/create-new-active-directory-users-excel-powershell/): Russell Smith shows you how to create new Active Directory users with Excel and PowerShell. - [Hands-On with Windows Phone 8.1: Navigation, Mail, Calendar, and Maps](https://petri.com/windows-phone-8-1-navigation-windows-mail-calendar-maps/): Russell Smith gets hands-on with Windows Phone 8.1 by looking at navigation, mail, calendar, and maps apps. - [Satya Nadella's Remarks on Women and Raises is an Important Reminder for all Women in Tech](https://petri.com/satya-nadellas-remarks-women-raises-lesson-women-tech/): Petri IT Knowledgebase Senior Editor Blair Greenwood gives her perspective of Microsoft CEO Satya Nadella's remarks on women in tech industries and pay raises. - [Nominate your System Administrator Hero in the Petri IT Hero Contest](https://petri.com/nominate-system-administrator-hero-petri-hero-contest/): Nominate your IT hero in the Petri IT Hero contest for a chance to win Amazon gift cards and even an Xbox One game console. - [Tips for Choosing a Microsoft Azure Region](https://petri.com/tips-choosing-microsoft-azure-region/): Aidan Finn provides several tips to consider when choosing a Microsoft Azure region to host services in. - [With PowerShell, Sometimes Old is New Again](https://petri.com/old-powershell-scripts/): Learn about how far PowerShell has come in this retrospective by PowerShell MVP Jeff Hicks. - [New Office 365 SMB Plans Finally Announced](https://petri.com/new-smb-office-365-plans-finally-announced/): Microsoft has announced new Office 365 SMB plans, which include Office 365 Business Essentials, Office 365 Business, and Office 365 Business Premium. - [PowerShell Problem Solver: Let’s Figure it Out](https://petri.com/powershell-problem-solver-lets-figure/): Have a Windows PowerShell problem you need help with? Jeff Hicks and his new PowerShell Problem Solver column should have the info you need. - [Can Google Cloud Platform Win the Cloud Battle Against AWS and Azure?](https://petri.com/google-cloud-platform-overview/): Learn about Google's cloud efforts in this Google Cloud Platform overview, which includes an interview with Google Cloud Platform marketing chief Brian Goldfarb. - [Welcome to the New Petri.com](https://petri.com/welcome-new-petri-com/): Welcome to the new Petri.com! Learn about all the new features, improvements, and enhancements that have been made to the Petri IT Knowledgebase website. - [Using the PowerShell ISE Editor Object](https://petri.com/using-powershell-ise-editor-object/): Directly modify scripts by using the PowerShell ISE Editor Object, where you can insert text, send output to a tab, and more. - [Hands-on with the Windows 10 Technical Preview](https://petri.com/hands-windows-10-technical-preview/): J. Peter Bruzzese gets hands-on with the Windows 10 Technical Preview, showing off features, such as the new Start menu, the Snap Assist feature and more. - [Install the Windows 10 Technical Preview in VMware Workstation 10](https://petri.com/install-windows-10-technical-preview-vmware-workstation-10/): Learn how to install the Windows 10 Technical Preview in a VMware Workstation 10 virtual machine - [Install Windows Server Technical Preview in Microsoft Azure](https://petri.com/install-windows-server-technical-preview-microsoft-azure/): Learn how to install Windows Server Technical Preview in Microsoft Azure in this step-by-step tutorial by Russell Smith. - [Testing the Windows 10 Technical Preview in a Hyper-V VM](https://petri.com/testing-the-windows-10-preview-in-hyper-v/): Learn how to test the Windows 10 Technical Preview in a Hyper-V VM in this step-by-step tutorial by Microsoft MVP Aidan Finn. - [Microsoft Announces Windows Server and System Center Plans](https://petri.com/microsoft-announces-windows-server-system-center-plans/): Microsoft released information on the next versions of Windows Server and System Center, and details on Windows 10 management using SCCM and Intune. - [What Windows 10 Means for Developers: Write Once, Deploy Anywhere](https://petri.com/windows-10-means-developers-write-deploy-anywhere/): Microsoft unveiled Windows 10 today -- learn what this news means for developers who are creating apps for PCs, Windows Phone, Microsoft Surface, and Xbox. - [An IT Pro's Perspective on Windows 10](https://petri.com/windows-10-it-pro-perspective/): Aidan Finn serves up an IT Pro's perspective on Windows 10, which was formally announced at a press event in San Francisco earlier today. - [Microsoft Announces Windows 10, Hopes We Forget Windows 8](https://petri.com/microsoft-announces-windows-10-hopes-we-forget-windows-8/): Microsoft announces Windows 10 at a small media event in San Francisco this morning. Read on to find out what's new in the latest Microsoft client OS. - [Search Active Directory for Accounts with Passwords Set to Never Expire](https://petri.com/search-active-directory-for-accounts-with-passwords-set-to-never-expire/): Learn how to audit Active Directory for accounts that have passwords set to never expire in this tutorial by Russell Simmons. - [What to Expect from the Windows 9 Event on Sep. 30th](https://petri.com/expect-windows-9-event-sep-30th/): Learn what to expect from the Windows 9 event on September 30th, as well as the latest on Windows TH, free Windows 9 upgrades, and more. - [Windows Server 2012 R2 Security Overview](https://petri.com/windows-server-2012-r2-security-overview/): Improve Windows Server 2012 R2 security by learning about available features, plus free tool recommendations to minimize security threats. - [An Overview of the PowerShell ISE Object Model](https://petri.com/overview-powershell-ise-object-model/): PowerShell expert Jeffery Hicks provides an overview of the PowerShell ISE Object Model, which can be used to create your own keyboard shortcuts. - [4 Easy Ways to Take Windows 8 Screen Captures](https://petri.com/easy-ways-take-windows-8-screen-captures/): Learn four easy ways to take screen captures in Windows 8, including methods with the Windows Snipping Tool and Microsoft OneNote. - [Differences Between Windows 8.1 Pro and Enterprise Editions](https://petri.com/differences-between-windows-8-1-pro-and-enterprise-editions/): Learn differences between Windows 8.1 Pro and Enterprise Editions to make your upgrade decisions easier. - [Office 365 Legal Hold Bug Fix Now Available, Exchange Fix Coming Soon](https://petri.com/office-365-legal-hold-bug-fix-now-available/): J. Peter Bruzzese gives us an update on Microsoft's progress for the Office 365 Legal Hold bug fix. - [Search XML files with PowerShell using Select-XML](https://petri.com/search-xml-files-powershell-using-select-xml/): Learn how to search XML files with Windows PowerShell using the Select-XML cmdlet and XPath statements. - [Using PowerShell with XML](https://petri.com/using-powershell-xml/): Learn all about using PowerShell with XML in this introductory article by Michael Simmons. - [Add Email Disclaimers in Office 365 and Exchange 2013 Using Transport Rules](https://petri.com/add-email-disclaimers-office-365-exchange-2013/): Learn how to add email disclaimers in Office 365 and Exchange 2013 using transport rules in this how-to article by J.Peter Bruzzese. - [JumpCloud Touts Directory-as-a-Service (DaaS) Alternative to Active Directory](https://petri.com/jumpcloud-daas-active-directory-replacement/): JumpCloud DaaS promises to provide a cloud-based alternative to on-premise directory services like Active Directory. - [What is Windows Server ODX?](https://petri.com/windows-server-odx/): Learn how Offloaded Data Transfer (ODX) enhances storage transfers in Windows Server and Hyper-V, and how to disable ODX if you have problems with your SAN. - [Importing, Exporting, and Cloning VMware vApps](https://petri.com/importing-exporting-cloning-vmware-vapps/): Learn how to import, export, and clone VMware vApps easily in this step-by-step tutorial by Petri IT Knowledgebase author and VMware expert, Melissa Palmer. - [PowerShell ISE Keyboard Shortcuts](https://petri.com/powershell-ise-keyboard-shortcuts/): Be a more effective IT system administrator with these PowerShell ISE keyboard shortcuts. - [How to Forget or Delete a Windows 8.1 Wi-Fi Network Profile](https://petri.com/delete-a-windows-8-1-wi-fi-network-profile/): Need to delete a Windows 8.1 Wi-Fi network profile? This tutorial article shows you how to do that using both the Windows GUI and the command line. - [Clustered Hyper-V Virtual Machine Prioritization](https://petri.com/clustered-hyper-v-virtual-machine-prioritization-2/): Use the Windows Server Failover Clustering prioritization feature to manipulate and order the failover of highly available Hyper-V virtual machines. - [Display Last Logged On Information for Windows 8.1](https://petri.com/display-last-logged-on-information-for-windows-8/): Learn how to display last logged on information for Windows 8 and Windows 8.1 in this quick how-to article by Daniel Petri. - [Resource Metering in Hyper-V](https://petri.com/resource-metering-hyper-v-2/): Learn how to measure usage of host resources by virtual machines by using a feature called resource metering in Hyper-V. - [Quickly Edit Environment Variables in Windows 8](https://petri.com/quickly-edit-environment-variables-windows-8-2/): Learn how to easily edit environment variables in Windows 8 with this step-by-step tutorial by Daniel Petri. - [An Introduction to Exchange Online Protection (EOP)](https://petri.com/introduction-to-exchange-online-protection-eop/): Learn about Exchange Online Protection, Microsoft's latest solution for protecting your Microsoft Exchange server from malware and spam. - [Leaked Windows 9 Videos Show New Start Menu, Virtual Desktops, Live Tiles, and More](https://petri.com/leaked-windows-9-videos-show-start-menu-virtual-desktops/): German IT site WinFuture has posted some leaked Windows 9 videos that show the Windows 9 Technical Preview build in action. - [Microsoft Buys Minecraft Maker for $2.5 Billion](https://petri.com/microsoft-buys-minecraft-maker-2-5-billion/): Microsoft buys Minecraft maker Mojang for a whopping $2.5 billion. Will this mean Windows Phone users will finally get Minecraft? - [How to Enable Two Factor Authentication for Google Apps and Gmail](https://petri.com/how-to-enable-two-factor-authentication-for-google-apps/): Learn how to enable two-factor authentication for Google Apps and Gmail with this step-by-step tutorial from the Petri IT Knowledgebase. - [Using VMware vApp](https://petri.com/using-vmware-vapp/): Learn more about using VMware vApp, including common use cases and how to create your first VMware vApp group. - [The Microsoft Azure Sales Strategy for Small and Medium Enterprises](https://petri.com/microsoft-azure-sales-strategy-for-small-and-medium-enterprises/): Aidan Finn explains the Microsoft Azure sales strategy for small and medium enterprises, and outlines three core IT scenarios for cloud adoption. - [Windows 9 Technical Preview Screenshots Leaked](https://petri.com/windows-9-technical-preview-screenshots-leaked/): Leaked Windows 9 Technical Preview screenshots reveal features that Windows users have been clamoring for since Windows 8 was released. - [Microsoft Unveils Office Delve for Office 365](https://petri.com/microsoft-unveils-office-delve-for-office-365/): Microsoft has announced Office Delve for Office 365, a new cloud-based feature that will let admins discover Office 365 data relationships more easily. - [Enabling SQL Server Traffic Encryption](https://petri.com/enabling-sql-server-traffic-encryption/): Learn how to enable SSL traffic encryption in Microsoft SQL Server in this how-to article by Daniel Petri. - [Boot a Hyper-V Virtual Machine Using PXE](https://petri.com/boot-hyper-v-virtual-machine-using-pxe/): Learn how to boot a Hyper-V Virtual Machine Using PXE off of a network in this step-by-step tutorial. - [How to Set Location-Based Reminders in Windows Phone 8.1](https://petri.com/set-location-based-reminders-windows-phone-8-1/): Learn how to set location-based reminders in Windows Phone 8.1 with this step-by-tutorial from the Petri IT Knowledgebase. - [A Handy IT Help Desk Configuration Script](https://petri.com/handy-it-help-desk-configuration-script/): Learn how to use this handy IT help desk configuration script to automate tedious help desk tasks. - [Using Hyper-V Enhanced Session Mode](https://petri.com/using-hyper-v-enhanced-session-mode/): Learn how to use Windows Server 2012 R2 Hyper-V Enhanced Session Mode to get device redirection and improved performance for virtual machine connections. - [13 Beers for IT Professionals and System Administrators](https://petri.com/13-beers-professionals-system-administrators/): The Petri IT Knowledgebase's list of beers for IT professionals, including Microsoft Active Directory, Windows Server, and Exchange admins. - [OWA bug allows bypass of Microsoft Exchange Legal Hold feature](https://petri.com/owa-bug-microsoft-exhange-legal-hold-bypass/): A newly-discovered bug in OWA allows bypass of Microsoft Exchange Legal Hold. - [5 Reasons Why You Should Upgrade To Windows Server 2012 R2](https://petri.com/5-reasons-why-upgrade-to-windows-server-2012-r2/): Aidan Finn serves up five reasons why you should upgrade to Windows Server 2012 R2. - [How to Downsize to an ‘Extra Small’ Server Core Azure VM](https://petri.com/downsize-extra-small-server-core-azure-vm/): Learn how to remove the GUI and administration tools in Windows Server 2012 R2 and downsize to 'extra small' server core Azure vm. - [What is Hyper-Convergence?](https://petri.com/what-is-hyper-convergence/): This post outlines what hyper-convergence is and asks an important question: is hyper-convergence the right way to go? - [Top 6 Takeaways from VMworld 2014](https://petri.com/top-6-takeaways-vmworld-2014/): Read on to find out what some of the key takeaways from VMworld 2014 were in this event recap by Jeff James. - [Installing a guest OS from a Windows ISO image](https://petri.com/installing-guest-os-from-windows-iso-image/): Aidan Finn walks us through installing a guest OS from a Windows ISO image in this handy how-to article. - [Windows PowerShell ISE Fundamentals](https://petri.com/windows-powershell-ise-fundamentals/): Learn the the basics of using the Windows PowerShell ISE in this how-to article by PowerShell expert Jeff Hicks. - [What is Docker?](https://petri.com/what-is-docker/): One of the hottest products in IT these days is Docker. So what is Docker? Our overview should help you understand what the buzz is all about. - [Adjusting Exchange Online Deleted Item Retention](https://petri.com/adjusting-exchange-online-deleted-item-retention/): Learn how to adjust Exchange Online deleted item retention limits in this how-to article by J. Peter Bruzzese. - [What's New in VMware vSphere 6.0](https://petri.com/whats-new-in-vmware-vsphere-6-0/): We take a look at what's new in VMware vSphere 6.0 by cobbling together an early look at what features the updated release might contain. - [Why the Cloud Is the Key to IT Competitiveness](https://petri.com/cloud-computing-competitive-advantage/): The cloud computing competitive advantage means that companies that fail to embrace it could fall behind. - [Exchange 2010 Cross-Forest Migration: GAL Sync and Enabling MRS Proxy](https://petri.com/exchange-2010-cross-forest-migration-galsync/): In this second part of our article series on Exchange 2010 cross-forest migration learn how to perform a GAL Sync and Enable MRS Proxy. - [Using the Microsoft OneDrive for Business Library](https://petri.com/using-microsoft-onedrive-for-business-library/): Learn how to use Microsoft OneDrive for Business library functionality in this overview by Theresa Miller. - [VMworld 2014: VMware unveils EVO:RAIL, vCloud Air, and vRealize Suite](https://petri.com/vmworld-2014-vmware-unveils-evo-rail-vcloud-air-vrealize-suite/): VMware unveils EVO:RAIL, vCloud Air, vRealize Suite, and a plethora of other new and updated products and services at VMworld 2014. - [How to restart Windows Explorer shell in Windows 7/8](https://petri.com/how-to-restart-windows-explorer-shell-windows-7-8/): Learn how to restart Windows Explorer shell in both Windows 7 and Windows 8 in this handy how-to article by Daniel Petri. - [Microsoft turns to IT community to help name TechEd successor](https://petri.com/microsoft-turns-to-it-community-teched-name-help/): Microsoft turns to the IT community for help with naming the successor to Microsoft TechEd. - [Windows 9 Preview Slated for September 30th](https://petri.com/windows-9-preview-slated-september-30th/): The Windows 9 preview may be available as soon as September 30th. Read on for more details on Microsoft's latest client OS. - [Connect to Windows 8 Remotely Using PowerShell](https://petri.com/connect-to-windows-8-remotely-using-powershell/): Learn how to connect to Windows 8 remotely using PowerShell in this how-to guide by Russell Smith. - [How to Enable PowerShell Remoting in Windows 8](https://petri.com/enable-powershell-remoting-in-windows-8/): Learn how to enable PowerShell Remoting in Windows 8 using the command line or Group Policy. - [Using the Microsoft Security Compliance Manager Tool](https://petri.com/using-the-microsoft-security-compliance-manager-tool/): Learn about using the Microsoft Security Compliance Manager tool to manage and create your own security templates. - [Manually Install a Guest OS in a Hyper-V Virtual Machine](https://petri.com/install-a-guest-os-in-hyper-v/): Learn how to easily install a guest OS in Microsoft Hyper-V virtual machine. - [Manage Servers using Server Manager in Windows 8.1](https://petri.com/manage-servers-using-server-manager-in-windows-8-1/): Learn how to manage servers using Server Manager in Windows 8.1 when the servers or management PC are members of a workgroup or different AD forest. - [What is Microsoft StorSimple?](https://petri.com/what-is-microsoft-storsimple/): Ever asked the question "What is Microsoft StorSimple?" Aidan Finn provides a thorough answer to that question in this overview post. - [Using Office 365 Data Loss Prevention (DLP)](https://petri.com/office-365-data-loss-prevention-dlp/): Learn tips for Office 365 data loss prevention with tools provided by Microsoft in Exchange 2013 and Exchange Online. - [Microsoft Pulls Faulty Windows Patches](https://petri.com/microsoft-pulls-faulty-windows-patches/): Microsoft pulls faulty Windows patches after users reported problems, including 'blue screen of death' (BSOD) errors. - [Managing Exchange Online Mailbox Size Limits with PowerShell](https://petri.com/managing-exchange-online-mailbox-size-limits/): Learn about managing Exchange Online mailbox size limits with PowerShell in this short how-to article. - [Manage Remote PowerShell Access to Exchange Online](https://petri.com/managing-remote-powershell-access-exchange-online/): Peter J. Bruzzese shows how to effectively manage remote PowerShell access to Exchange Online. - [Configure Internet Explorer Proxy Settings in Windows 8](https://petri.com/internet-explorer-proxy-settings-windows-8/): Learn how to configure Internet Explorer proxy settings in Windows 8, using both the Windows 8 Modern UI and the desktop Control Panel. - [5 Features Windows 9 Needs to Have](https://petri.com/5-features-windows-9-needs/): What Windows 9 features would make you upgrade? Russell Smith serves up his wish-list of features he'd like to see in the next Microsoft client OS. - [Microsoft pushes Bing, Skype and Office 365 in the classroom](https://petri.com/microsoft-pushes-bing-in-the-classroom/): Microsoft has a number of programs available for schools, including Bing in the Classroom, Skype in the Classroom, and Office 365 for Education. - [The Best Hyper-V Training Resources](https://petri.com/hyper-v-training-resources/): If you're looking to learn more about Hyper-V, this article provides a list of some of the best Hyper-V training resources. - [Search using file size filters in Windows 8 File Explorer](https://petri.com/search-using-file-size-filters-in-windows-8-file-explorer/): Learn how to search using file size filters in Windows 8 File Explorer in this how-to article by Daniel Petri. - [Manage Flexible Single Master Operation (FSMO) Roles Using PowerShell](https://petri.com/manage-fsmo-roles-using-powershell/): Learn how to manage FSMO Roles Using PowerShell in Windows Server Active Directory. - [How to rename and hide Windows services](https://petri.com/rename-and-hide-windows-services/): At times you might need to rename and hide Windows services. This short how-to by Daniel Petri shows you how to perform both tasks. - [Add a Network Printer to Windows 8 with PowerShell](https://petri.com/add-a-network-printer-to-windows-8-with-powersh/): Learn how to add a network printer to Windows 8 using the Add Device Wizard and PowerShell. - [Exchange Online Protection vs. Forefront Online Protection for Exchange](https://petri.com/exchange-online-protection-vs-forefront-online-protection-for-exchange/): J. Peter Bruzzese give us his take on the current state of the Exchange Online Protection vs Forefront Online Protection for Exchange debate. - [Disable Windows Server 2012 R2 Automatic Maintenance Using PSEXEC](https://petri.com/windows-server-2012-disable-automatic-maintenance-using-psexec/): Learn how to disable Windows Server 2012 Automatic Maintenance with PSEXEC. - [Why You Need to Learn PowerShell](https://petri.com/why-you-need-to-learn-powershell/): Learn PowerShell to reduce the time it takes to deploy entire Windows Server environments, on site or in the cloud, from hours to mere minutes. - [Microsoft Exchange 2010 Cross-Forest Migration](https://petri.com/microsoft-exchange-2010-cross-forest-migration/): Learn how to configure a test lab for a Microsoft Exchange 2010 cross-forest migration in this four-part article series by Exchange expert Krishna Kumar. - [How to Create a Windows 8 USB Recovery Disk](https://petri.com/create-windows-8-usb-recovery-disk/): Learn how to create a Windows 8 USB recovery disk and learn about other available recovery options. - [Using the Windows Server 2012 Security Configuration and Analysis Tool](https://petri.com/using-windows-server-2012-security-configuration-and-analysis-tool/): Learn how to use the built-in Windows Server 2012 Security Configuration and Analysis Snap-In to manage Windows server security. - [3 Ways to Start Windows 8 in Safe Mode](https://petri.com/3-ways-to-start-windows-8-in-safe-mode/): Learn several different ways to start Windows 8 in safe mode, including using the system recovery tool and a boot disk. - [How Do I Manage Hyper-V?](https://petri.com/manage-hyper-v/): Aidan Finn shows us how to manage Hyper-V for small-to-medium deployments, and walks us through using PowerShell for deploying Hyper-V at scale. - [9 Essential IT Job Skills for 2015](https://petri.com/9-essential-it-job-skills-for-2015/): What IT job skills will be in demand for 2015 and beyond? The Petri IT Knowledgebase takes a look at what's on the horizon. - [3 Ways to Shut Down Windows 8](https://petri.com/3-ways-to-shut-down-windows-8/): Learn how to shut down Windows 8 three different ways, including using a VBS script and a Start Screen shortcut. - [What are Hyper-V Protected Networks?](https://petri.com/what-are-hyper-v-protected-networks/): What are Hyper-V Protected Networks? Aidan Finn answers that question and presents some scenarios when you should use them. - [US Judge rules against Microsoft in email privacy case](https://petri.com/us-judge-rules-against-microsoft-email-privacy-case/): In the Microsoft email privacy case, NY district judge Loretta Preska has ruled against Redmond. Aidan Finn gives us his take on the news. - [Share Office 365 Documents with OneDrive for Business](https://petri.com/share-office-365-documents-onedrive-business/): Learn how to share Office 365 documents using Microsoft OneDrive for Business, including sharing with the iPhone and Android apps in this handy how-to guide. - [Deploy a SharePoint Farm in Microsoft Azure](https://petri.com/deploy-a-sharepoint-farm-in-microsoft-azure/): Learn how to quickly deploy a SharePoint farm in Microsoft Azure using this handy Ask an Admin tutorial by Russell Smith. - [What is Windows Server 2012 R2 Dynamic Quorum?](https://petri.com/what-is-windows-server-2012-r2-dynamic-quorum/): Learn about Windows Server 2012 R2 Dynamic Quorum in this introduction by Microsoft MVP Aidan Finn. - [Test Labs in Microsoft Azure - Six Disadvantages](https://petri.com/test-labs-in-microsoft-azure-six-disadvantages/): Learn about some of the disadvantages of running your Windows Server test labs in Microsoft Azure. - [Using the PowerShell get-history Cmdlet](https://petri.com/using-powershell-get-history-cmdlet/): Learn how to use the PowerShell get-history cmdlet to make a transcript of a PowerShell session in this Petri IT Knowledgebase Ask an Admin article. - [How to Setup a Microsoft Azure Virtual Network](https://petri.com/setup-a-microsoft-azure-virtual-network/): Learn how to setup a Microsoft Azure Virtual Network in this short step-by-step tutorial. - [Microsoft Azure Growing Faster than Amazon, IBM, and Google in Cloud Services](https://petri.com/microsoft-azure-growth-amazon-ibm-google-cloud-services/): Microsoft Azure is quickly catching up to Amazon Web Services according to Synergy Research Group. On August 1 it launches in Open Licensing. - [Using PowerShell to Provision Member Servers in Microsoft Azure](https://petri.com/using-powershell-provision-member-servers-microsoft-azure/): Learn how to provision member servers in Microsoft Azure using Windows PowerShell. - [Improvements I Want to See in the Next Version of Hyper-V](https://petri.com/improvements-i-want-to-see-in-next-version-of-hyper-v/): Aidan Finn outlines the top features and improvements he'd like to see in the next version of Hyper-V. - [10 Essential VMware Management Tools](https://petri.com/10-essential-vmware-management-tools/): A collection of 10 useful VMware management tools to help IT professionals administer VMware infrastructure more effectively. - [4 Useful Features of Windows 8 File Explorer](https://petri.com/4-useful-features-windows-8-file-explorer/): Learn about four great features found in the new ribbon UI in Windows 8 File Explorer. - [How to Reserve Public Virtual IP Addresses in Microsoft Azure](https://petri.com/how-to-reserve-public-virtual-ip-addresses-in-microsoft-azure/): Learn how to create a reserved Public Virtual IP address (VIP) in Microsoft Azure with this helpful how-to article by Russell Smith. - [Test Connectivity to an Active Directory Domain Controller from a PC](https://petri.com/test-connectivity-to-an-active-directory-domain-controller-from-pc/): Tools and techniques that can be used to test connectivity to an Active Directory domain controller from a PC. - [Enable Telnet Client in Windows 8 and Server 2012](https://petri.com/enable-telnet-client-windows-server-2012-windows-8/): Learn how to enable the Telnet client for Windows Server 2012 and Windows 8 through the GUI, command line, or PowerShell. - [Proximal Data AutoCache Review](https://petri.com/proximal-data-autocache-review/): The Petri IT Knowledgebase review of Proximal Data AutoCache, a product that boosts read performance of virtualization storage for Hyper-V and vSphere. - [Provision Domain Controllers in Azure using PowerShell](https://petri.com/provision-domain-controllers-in-azure-using-powershell/): Learn how to remotely provision domain controllers in Azure using PowerShell using a helpful PowerShell Remoting script. - [How to Change the Windows 8.1 Lock Screen](https://petri.com/how-to-change-windows-8-1-lock-screen/): Learn how to to change the Windows 8.1 lock screen in this step-by-step tutorial by the Petri IT Knowledgebase. - [Self-Replicating DNS Forwarders Problems in Windows Server 2008/2012](https://petri.com/self-replicating-dns-forwarders-problem-windows-server-2008-2012/): Learn how to troubleshoot self-replicating DNS forwarders problems in Windows Server 2008 and Windows Server 2012. - [Why Blade Servers are the Wrong Choice](https://petri.com/blade-servers-are-the-wrong-choice/): Aidan Finn argues that blade servers are the wrong choice for your data center, written from the perspective of a Hyper-V engineer. - [Stop Microsoft Azure Virtual Machines in Parallel using PowerShell](https://petri.com/stop-microsoft-azure-virtual-machines-in-parallel-with-powershell/): Learn how to stop Microsoft Azure virtual machines in parallel using PowerShell background Jobs. - [Microsoft Replaces TechEd with Unified Technology Event for Enterprises](https://petri.com/microsoft-replaces-teched-with-unified-technology-event-for-enterprises/): Microsoft Replaces TechEd with Unified Technology Event for Enterprises - [Controlling SMB Multichannel in Windows Server 2012 R2](https://petri.com/controlling-smb-multichannel/): Learn about controlling SMB Multichannel and SMB 3.0 through the use of smart design, SMB Multichanel constraints, and SMB bandwidth limits. - [Configure DNS forwarders in Windows Server 2012 R2](https://petri.com/configure-dns-forwarders-windows-server-2012-r2/): Learn how to configure DNS forwarders in Windows Server 2012 R2 using the Windows GUI and the command prompt. - [Best Practices for DNS Forwarding](https://petri.com/best-practices-for-dns-forwarding/): Daniel Petri explains DNS forwarding best practices contrasting DNS forwarder to root hints, offering advice on how to use DNS Forwarding effectively. - [Microsoft to Cut 18,000 Jobs in Largest Layoff Ever](https://petri.com/microsoft-job-cuts-18000-largest-reduction-corporate-history/): Newly-announced Microsoft job cuts will impact up to 18,000 Microsoft employees within the next year. - [Managing SMB Multichannel in SMB 3.0](https://petri.com/managing-smb-multichannel/): Learn how to design and manage SMB Multichannel in SMB 3.0, a data protocol available in Windows Server 2012 R2. - [9 Essential Tools for Linux Administration](https://petri.com/9-essential-tools-for-linux-administration/): Our top 9 list of tools for Linux administration, including Wget, SED, TCPdump, Nagios, SCP, Webmin, and more. - [Microsoft Job Cuts Announcement Imminent](https://petri.com/microsoft-job-cuts-announcement-imminent/): Microsoft is expected to make an announcement about impending job cuts, which span the Nokia division. - [Deploying VNet-to-VNet VPNs in Azure](https://petri.com/deploying-vnet-to-vnet-vpns-in-azure/): Learn how to create a virtual network to virtual network (VNet-to-VNet) VPN to connect two virtual networks in the same or different Microsoft Azure regions or subscriptions. - [5 Essential Windows Store Apps for IT Administrators](https://petri.com/5-essential-windows-store-apps-for-it-administrators/): Top Windows 8 and Windows Phone 8 for IT system administrators include My Azure Dashboard, Remote Desktop, Reading List, OneNote, and LastPass. - [Sync Office 365 to OneDrive for Business](https://petri.com/sync-office-365-to-onedrive-for-business/): J. Peter Bruzzese shows how easy it is to sync Office 365 to OneDrive for Business. - [Create and Configure a File Share using Azure Files](https://petri.com/configure-a-file-share-using-azure-files/): Learn how to easily create an SMB file share in Microsoft Azure without provisioning a virtual machine with the new Azure Files feature. - [VNet-to-VNet VPNs in Microsoft Azure](https://petri.com/vnet-to-vnet-vpns-in-microsoft-azure/): Learn why you would need to use a VNet-to-VNet VPN in Microsoft Azure, along with considerations for using one to connect virtual networks in the same or different regions. - [Why the Microsoft Upgrade Treadmill is Broken](https://petri.com/why-the-microsoft-upgrade-treadmill-is-broken/): The advent of the cloud and mobile devices have disrupted how IT departments upgrade their products. So what does that mean for Microsoft? Jeff gives his take. - [Microsoft's Satya Nadella on Productivity Solutions Strategy](https://petri.com/microsofts-satya-nadella-productivity-solutions-strategy/): Microsoft CEO Satya Nadella details a long-term strategy on its cloud OS, hardware, and devices and services for today's mobile-first, cloud-first world. - [Pause and Drain Actions on Windows Server 2012 R2 Clusters](https://petri.com/pause-and-drain-actions-on-windows-server-2012-r2-clusters/): Learn how to pause and drain a host of virtual machines, also learn how Windows Server 2012 R2 can move virtual machines before shutting down a clustered Hyper-V host. - [Share Network Resources Using Windows 7 HomeGroup](https://petri.com/share-network-resources-using-windows-7-homegroup/): Learn how to easily share files and printers using Windows 7 HomeGroup in the latest Ask the Admin at the Petri IT Knowledgebase. - [Live Exporting Windows Server 2012 R2 Hyper-V VMs](https://petri.com/live-exporting-windows-server-2012-r2-hyper-v-vms/): Learn how to export a Windows Server 2012 R2 Hyper-V virtual machine, including how to live export a running virtual machine or a checkpoint of a virtual machine. - [Pinning a File in Tiered Microsoft Storage Spaces](https://petri.com/pinning-a-file-in-tiered-microsoft-storage-spaces/): Learn why and how to pin a file to a HDD or SSD tier in Windows Server 2012 R2 (WS2012 R2) Storage Spaces. - [Disable Outlook Auto-Mapping for Users with Full Access Permissions](https://petri.com/disable-outlook-auto-mapping-for-users-with-full-access-permissions/): Learn how to boost Microsoft Exchange performance by disabling Outlook auto-mapping for users with full access mailbox permissions. - [Using the Microsoft Azure IaaS Cost Estimator Tool](https://petri.com/using-microsoft-azure-iaas-cost-estimator-tool/): Learn about the Microsoft Azure pricing tool that provides estimates on what it costs to move physical computers or virtual machines to Microsoft Azure. - [Using Libraries in Windows 7](https://petri.com/using-libraries-in-windows-7/): Learn how to manage the default libraries and create your own in Windows 7. - [Create a NIC Team Inside of a Hyper-V Virtual Machine](https://petri.com/create-a-nic-team-inside-of-a-hyper-v-virtual-machine/): Learn how to create a NIC team inside of a Hyper-V virtual machine and when it is necessary to do so. Also learn necessary configurations for creating a NIC team. - [Grouping and Filtering Files in Windows 7 Explorer](https://petri.com/grouping-and-filtering-files-in-windows-7-explorer/): Learn how to use new features in Windows Explorer to better organize files and folders with grouping and filtering in Windows 7. - [3 Microsoft Exchange Administration Tasks to Perform with Windows PowerShell](https://petri.com/perform-microsoft-exchange-administration-tasks-with-windows-powershell/): Make Microsoft Exchange administration easier with Windows PowerShell. Learn how to create test data, reports, and delete email from Exchange mailboxes. - [How to Virtualize a Microsoft Exchange Server](https://petri.com/how-to-virtualize-microsoft-exchange-server/): Steps to virtualize and deploy a Microsoft Exchange Server, along with resources for converting Exchange CAS/Hub server or existing Exchange Server Mailbox Server. - [Deploying a Non-Clustered Hyper-V Host for Production Workloads](https://petri.com/deploying-non-clustered-hyper-v-host-production-workloads/): Learn how to deploy a non-clustered Hyper-V host for production environments. - [How to Enable Office 365 Multi-Factor Authentication](https://petri.com/how-to-enable-office-365-multi-factor-authentication/): Learn how to enable multi-factor authentication in Office 365 for enhanced security in this step-by-step tutorial by J. Peter Bruzzese. - [Deploying a Non-Clustered Hyper-V Host: Enabling the Hyper-V role](https://petri.com/deploying-non-clustered-hyper-v-host-enabling-hyper-v-role/): Part two of a multi-part series on deploying a non-clustered Hyper-V host. This installment focuses on enabling the hyper-V role. - [Is the Modern UI in Windows 8.1 and Windows Server 2012 R2 ready for the enterprise?](https://petri.com/modern-ui-windows-8-1-windows-server-2012-r2-ready-for-enterprise/): Russell Smith explains why the new Modern UI introduced in Windows 8 and Windows Server 2012 R2 isn't quite ready for the enterprise. - [Best Free Battery Management Apps for iPhone](https://petri.com/best-free-battery-management-apps-for-iphone/): Extend your iPhone's battery life with these top, free battery management apps available in the App Store. - [Delete email from Microsoft Exchange user mailboxes using PowerShell](https://petri.com/delete-email-from-microsoft-exchange-user-mailboxes-using-powershell/): How to use PowerShell to delete email from Microsoft Exchange user mailboxes quickly and safely. - [Choosing an Office 365 Subscription Plan](https://petri.com/choosing-an-office-365-subscription-plan/): Learn about all the available Office 365 subscription plans for consumers, businesses, and enterprises. - [How to Deploy a Non-Clustered Hyper-V Host](https://petri.com/deploying-a-non-clustered-hyper-v-host/): How to deploy a non-clustered Hyper-V host running Windows Server 2012 R2 as the management OS. Part 1 of a series on preparing a production ready standalone Hyper-V host. - [How Can I Block the Use of Passwords in Group Policy Preferences?](https://petri.com/block-the-use-of-passwords-in-group-policy-preferences/): Learn how to block and remove passwords from Group Policy Preferences in Windows Server. - [Microsoft Reveals Office 365 Roadmap](https://petri.com/microsoft-reveals-office-365-roadmap/): Microsoft released an online roadmap for Office 365 giving a clear view of features launched, in roll-out, in development, cancelled, and previous releases. - [Protecting Yourself from an Exchange Online Outage](https://petri.com/protect-yourself-exchange-online-outage/): J. Peter Bruzzese suggests some third-party tools that could have helped keep emails flowing after the Exchange Online outage this week. - [Getting Started with Microsoft Azure Automation](https://petri.com/getting-started-with-microsoft-azure-automation/): Learn how to get started with the Microsoft Azure Automation management platform along with tips for creating, deploying, and maintaining cloud resources. - [How to Create an Office 365 Mailbox and Connect it to Microsoft Outlook](https://petri.com/how-to-create-an-office-365-mailbox-and-connect-it-to-microsoft-outlook/): Learn how to create a mailbox in Office 365 and link it to Microsoft Outlook 2007/2010/2013. - [Will the Office 365 Trust Center Allay Cloud Security Concerns?](https://petri.com/will-the-office-365-trust-center-allay-cloud-security-concerns/): Microsoft recently launched the Office 365 Trust Center, an online resource that provides information on Office 365 cloud security and privacy efforts. - [Why You Should Embrace Windows 8 Apps](https://petri.com/why-you-should-embrace-windows-8-apps/): Learn about the changes to Windows Store apps and the desktop integration introduced in Windows 8.1 Update. - [Protect Windows Server Using the Security Configuration Wizard Part 2: Applying and Rolling Back Policies and Advanced Features](https://petri.com/protect-windows-server-using-the-security-configuration-wizard-part-2-applying-and-rolling-back-policies-and-advanced-features/): How to apply and roll back security policies for Windows Server using the Security Configuration Wizard. - [Perform 7 Essential IT Management Tasks with PowerShell](https://petri.com/essential-windows-powershell-commands-for-it-professionals/): A list of helpful Windows PowerShell task-based commands for IT professionals including tasks for managing users, password recovery options, and more. - [How To Fix Windows Update When it Breaks](https://petri.com/how-to-fix-windows-update-when-it-breaks/): Security and Windows updates go hand in hand. How do you stay secure when Windows Update won't work? You fix it! This article will show you how to do that. - [Enabling Hyper-V DHCP Guard and Router Guard](https://petri.com/enabling-hyper-v-dhcp-guard-and-router-guard-2/): How to enable Hyper-V DHCP Guard and Router Guard in existing VMs and by default using System Center Virtual Machine Manager. - [How to Set the Date and Time in Windows Server Core 2012 R2](https://petri.com/how-to-set-the-date-and-time-in-windows-server-core-2012-r2/): How to use the command line in Windows Server Core 2012 R2 to set the time and date. Another Ask an Admin column from the Petri IT Knowledgebase. - [Microsoft Unveils Interflow Security Information Exchange Platform](https://petri.com/microsoft-unveils-interflow-security-information-exchange-platform/): Microsoft Interflow aims to help bolster IT security. Interflow is a new security and threat information exchange platform running on Microsoft Azure. - [Hyper-V Router Guard and DHCP Guard Explained](https://petri.com/hyper-v-router-guard-and-dhcp-guard-explained/): How Router Guard and DHCP Guard can be used by Hyper-V administrators to prevent guest OS administrators from enabling unwanted network services. - [Top Windows PowerShell Experts and Resources on Twitter](https://petri.com/top-windows-powershell-experts-resources-on-twitter/): A list of the top Windows PowerShell resources and experts on Twitter from the Petri IT Knowledgebase. - [Killing A Frozen Windows Server 2012 Hyper-V Virtual Machine](https://petri.com/kill-a-frozen-windows-server-2012-hyper-v-virtual-machine-2/): How to get the GUID of a Hyper-V virtual machine on WS2012 or WS2012 R2 Hyper-V, and use that information to kill a hung virtual machine. - [Using the Windows Server Security Configuration Wizard Part 1: Evaluating Risk and Creating a New Security Policy](https://petri.com/windows-server-security-configuration-wizard-evaluate-risk-and-create-security-policy/): How to create custom security policies for Windows Server using the Security Configuration Wizard and how to evaluate risks associated with new policies. - [What are Hyper-V Extended Port ACLs?](https://petri.com/what-are-hyper-v-extended-port-acls-2/): How to implement network security and stateful firewall rules within the Hyper-V virtual switch by applying Extended Port ACLs. - [Performing Out-Of-Band File Copies to Hyper-V Virtual Machines](https://petri.com/performing-out-of-band-file-copies-to-hyper-v-virtual-machines/): How to perform an out-of-band file copy to a virtual machine on running Windows Server 2012 R2 Hyper-V. - [Microsoft's Julia White on Office 365, Satya Nadella, and One Microsoft](https://petri.com/microsoft-julia-white-satya-nadella-office-365/): Part 2 of our interview with Microsoft's Julia White covering new CEO Satya Nadella, Office 365, and One Microsoft. - [Self-Service Password Resets for OWA users in Microsoft Exchange 2013](https://petri.com/self-service-password-resets-for-owa-users-in-microsoft-exchange-2013/): How to enable self-service password resets for OWA users in MS Exchange 2013 by Peter De Tender, (part 2/2). - [How to Open or Close Windows Firewall Ports to Apps on Windows 8.1](https://petri.com/how-to-open-or-close-windows-firewall-ports-to-apps-on-windows-8-1/): How to allow access to a program or application through Windows Firewall in Windows 8.1. - [Interview with Microsoft's Julia White: Office 365 Growth and Adoption](https://petri.com/interview-microsoft-julia-white-office-365-adoption/): First of a two part interview with Microsoft Office Division General Manager Julia White. We discuss growth and adoption, features and applications of Office 365. - [How to Get the Serial Number of a Remote Computer Using PowerShell](https://petri.com/how-to-get-the-serial-number-of-a-remote-computer-using-powershell/): Learn how to retrieve the serial number from a local or remote computer using PowerShell and Windows Management Instrumentation (WMI). - [What are Hyper-V Virtual Machine Integration Services?](https://petri.com/what-are-hyper-v-virtual-machine-integration-services/): Hyper-V Integration Services provide a way for management tools and admins to interact with an otherwise isolated guest OS running inside a virtual machine. - [Interview with Amazon’s Jeff Barr: WorkSpaces and CloudFormation](https://petri.com/interview-amazon-jeff-barr-workspaces-cloudformation/): An interview with Amazon Web Services Chief Evangelist Jeff Barr in which we cover AWS tips, Amazon WorkSpaces, and Amazon CloudFront. - [How to Keep Windows 8.1 Secure Using Action Center](https://petri.com/action-center-windows-8-security/): Learn how to use and access Action Center in Windows 8 to solve problems with Windows Firewall and Windows Defender. - [What Is Microsoft Azure RemoteApp?](https://petri.com/microsoft-azure-remoteapp-overview/): Considering trying Microsoft Azure RemoteApp? Check out our overview and decide whether to give Azure RemoteApp a try. - [Enabling HTTPS on Windows Server 2008/2012 Certificate Authority for Web Enrollment](https://petri.com/enable-https-certificate-authority-web-enrollment-windows-server-2008-2012/): Learn to enable HTTPS on Certificate Authority for Web Enrollment on Windows Server 2008/2012, how to create the certificate template, and more! - [How Can I Delete a File or Folder from the Command Line Using Windows PowerShell?](https://petri.com/delete-folder-file-from-command-line-powershell/): Learn how to delete files and folders using PowerShell in this Ask an Admin. Find out how to remove all MP3 files, filter, remove .txt files and more. - [Interview with Amazon’s Jeff Barr: AWS for Windows Server Admins](https://petri.com/interview-amazon-jeff-barr-aws-windows-server-administrators/): Unfamiliar with Amazon Web Services (AWS)? This first part of our two-part interview with Amazon's Jeff Barr will get you up to speed. - [Solving the "This Web Browser Does Not Support the Generation of Certificate Requests" Error](https://petri.com/this-web-browser-does-not-support-the-generation-of-certificate-requests-error/): Find out how to solve the "This Web Browser Does Not Support the Generation of Certificate Requests" error in this quick tutorial. - [How to Find Out Which Users Are Logged on Windows Server](https://petri.com/view-logged-on-users-windows-server/): Learn how to find out which users are logged in to your servers using psloggedon and net session. Read on for more! - [Using SharePoint 2013 Managed Navigation to Link to a Search Results Page](https://petri.com/managed-navigation-sharepoint-2013-search-results-page/): Learn to use managed navigation to link to a search results page in SharePoint 2013. Display information, keep URLs tidy, and more! - [5 Reasons to Choose VMware vSphere 5.5 over Windows Server 2012 R2 Hyper-V](https://petri.com/choose-vmware-vsphere-over-windows-server-2012-r2-hyper-v/): Can't decide between VMware vSphere 5.5 and Windows Server 2012 R2 Hyper-V? VMware vExpert David Davis offers up five reasons why VMware is the better option. - [Missing Windows Key + X Shortcut in Windows 8.1](https://petri.com/windows-8-1-find-winkey-x-shortcut-menu/): Missing the Windows Key (Winkey) + X shortcut context menu? Discover how to reinstall it on your computer in this easy instructional article. - [How to Enable Windows Firewall in Windows 8.1](https://petri.com/enable-windows-8-1-firewall/): Check the status of / enable Windows Firewall in Windows 8 using the GUI and PowerShell. - [We're Hiring! Looking for Security, Office 365, and SharePoint Writers](https://petri.com/hiring-security-office-365-sharepoint-writers/): The Petri IT Knowledgebase is hiring! We're looking for contract writers to cover IT security, Office 365 and SharePoint. Apply within! - [Failing KB2919355 Update for Windows 8.1](https://petri.com/windows-8-1-kb2919355-installation-update/): Find out how to manually install the Windows 8.1Update (KB2919355) with this helpful post. - [How to Configure Result Source for Search in SharePoint 2013](https://petri.com/configure-result-source-for-search-sharepoint-2013/): Learn to use Result Source for Search in SharePoint 2013 to enable users to see their project sites. Easy-to-follow instructions and more! - [How to Share Files from Microsoft OneDrive Using Short URLs](https://petri.com/share-files-microsoft-onedrive-short-urls/): Learn about OneDrive and how to share files and folders using short URLs with the help of this short how-to post. - [Automatic Start and Stop Actions for Hyper-V Virtual Machines](https://petri.com/hyper-v-automatic-start-and-stop/): Hyper-V Automatic Start and Stop | Learn to control if/how Hyper-V VMs will automatically stop or start before and after a host shutdown or startup. - [Recreate a Virtual Machine in Microsoft Azure](https://petri.com/recreate-virtual-machine-in-microsoft-azure/): Learn how to recreate a virtual machine in Microsoft Azure without backing up or reinstalling the operating system. - [Show Hidden Files and Folders in Windows 7](https://petri.com/show-hidden-files-folders-windows-7/): This handy how-to article will show you how to reveal hidden files and folders on a PC running Windows 7. - [Easily Edit the Hosts File in Windows 7](https://petri.com/edit-hosts-file-windows-7/): Edit the hosts File in Windows 7 by using Notepad with these easy step-by-step instructions. - [How to Easily Assign a Static IP Address in Microsoft Azure](https://petri.com/assign-static-ip-address-microsoft-azure/): Learn how to use PowerShell to quickly assign a static IP address in Microsoft Azure using this quick 'n easy Ask an Admin post. - [TechEd 2014 Interview: Microsoft General Manager Mike Shutz Discusses Azure, Hybrid Cloud](https://petri.com/microsoft-general-manager-mike-shutz-interview-azure/): Meet Mike Shutz (General Manager, Product Marketing, Server and Tools Division) as we discuss hybrid cloud, Microsoft Azure, the future of the IT pro, and more. - [Trust Still the Main Hurdle for Cloud Computing](https://petri.com/cloud-computing-international-companies/): Will international companies trust cloud platforms powered by U.S. companies? Learn more in this opinion post. - [Create PowerShell Scripts Faster with the Script Browser and Analyzer](https://petri.com/microsoft-script-browser-script-analyzer-for-powershell/): Learn about Microsoft's new plugin for PowerShell ISE that adds a script browser and script analyzer in this quick Ask an Admin. - [Controlling the Change Password Feature in Exchange 2013 Outlook Web Access (OWA)](https://petri.com/change-password-outlook-web-access-exchange-2013/): Learn how to control the Change Password feature in Outlook Web Access (OWA) for Exchange 2013. - [Monitoring PCoIP Session Statistics in VMware Horizon View Desktops](https://petri.com/monitor-pcoip-session-statistics-vmware-horizon-view/): Learn how to easily monitor performance session statistics in VMware Horizon View in this quick walkthrough. - [TechEd 2014: What's New for IT Pros](https://petri.com/teched-2014-news/): Discover what's new in Microsoft products in our recap of the announcements at TechEd North America 2014. - [Windows Phone 8.1 First Impressions](https://petri.com/windows-phone-8-1-first-impressions/): See how Windows Phone 8.1 stacks up against the competition in terms of navigation, functuality, social network integration, apps, and more. - [Using the Cisco AnyConnect Secure Mobility Client](https://petri.com/cisco-anyconnect-secure-mobility-client-overview/): Learn more about the Cisco AnyConnect Secure Mobility Client, including licensing and migration recommendations. - [3 Tips for Working with the Active Directory Administrative Center (ADAC)](https://petri.com/active-directory-administrative-center-adac-tips/): Check out our 3 tips to help you work faster with the Active Directory Administrative Center (ADAC). - [TechEd 2014 Interview: Mark Russinovich on Microsoft Azure](https://petri.com/teched-2014-interview-mark-russinovich-on-microsoft-azure/): Read our interview with Microsoft Technical Fellow Mark Russinovich to get the latest on Microsoft Azure and what new CEO Satya Nadella brings to the company. - [Remove Stale Computer Accounts from Active Directory Using PowerShell](https://petri.com/find-remove-inactive-accounts-from-active-directory-powershell/): Search for and remove inactive users and computer accounts and query Active Directory – all by using PowerShell. Find out how in this Ask an Admin. - [Find Out How Many Computers Are Running Windows XP](https://petri.com/use-powershell-to-find-windows-xp/): Learn how to use PowerShell to query Active Directory for computers running Windows XP in this quick Ask an Admin post. - [Why You Should Use Cisco AnyConnect Instead of the Cisco VPN Client](https://petri.com/cisco-anyconnect-vpn-client-differences/): Discover the differences between Cisco AnyConnect VPN Client and Cisco VPN Client, and whether you should switch over to AnyConnect. - [An IT Pro's Perspective of TechEd 2014](https://petri.com/it-pro-perspective-of-teched-2014/): TechEd 2014 was filled with Microsoft Azure cloud news, but what does all that mean for the IT pro? Aidan Finn gives us his take. - [Petri Contributing Editor Aidan Finn Wins TechEd 2014 Speaker Idol](https://petri.com/petri-contributing-editor-aidan-finn-wins-teched-2014-speaker-idol/): After the votes were tallied, Petri Contributing Editor Aidan Finn emerged as the winner of the TechEd 2014 Speaker Idol competition. - [How to Add Computers to a Domain Using PowerShell](https://petri.com/add-computer-to-domain-powershell/): Learn how to join computers to an Active Directory domain using PowerShell in this easy Ask an Admin post. - [New Features in PowerShell v5 Preview](https://petri.com/powershell-v5-preview-new-features/): Check out the PowerShell v5 preview and its new features, including OneGet and new cmdlets, and whether you should upgrade. - [Creating Service Manager Portal Offerings](https://petri.com/create-service-manager-portal-offering/): Find out how to create custom Service Manager portal offerings and scope these to specific user groups in this helpful post. - [TechEd 2014: Microsoft details cloud-first, mobile-first strategy](https://petri.com/teched-2014-microsoft-cloud-first-mobile-first-strategy/): Microsoft released more details of their cloud-first, mobile-first strategy at TechEd 2014 today, including new features for Microsoft Azure. - [Configuring AppLocker in Windows Server 2012 R2](https://petri.com/configure-enforce-applocker-windows-server-2012-r2/): AppLocker in Windows Server 2012 | Learn to create and enforce rules for Applocker in Windows Server 2012 with the help of this post. - [TechED 2014 Survival Guide](https://petri.com/teched-2014-survival-guide/): Attending Microsoft TechEd 2014 this year? Check out our conference survival guide for the latest tips on how to get the most out of the show. - [What I Want to See in the Surface Mini](https://petri.com/microsoft-surface-mini-features-news-rumors/): What will the new Microsoft Surface Mini be like? Check out Aidan Finn's report on what the Surface Mini may (and may not) feature. - [Managing Windows Updates with PowerShell](https://petri.com/manage-windows-updates-with-powershell-module/): Learn more about the free PSWindowsUpdate PowerShell module to help install and manage your Windows updates. - [Review: Fiio X3 Digital Audio Player](https://petri.com/fiio-x3-digital-audio-player-review/): Read our review of the Fiio X3 Digital Audio Player, one of the best sound DAPs on the market today. - [Top 5 Free Tools for Hyper-V](https://petri.com/top-hyper-v-free-tools/): Check out our favorite free Hyper-V tools, including ones for Hyper-V backup, physical to virtual (P2V) tools, Hyper-V virtual switch management, and more! - [What Are Virtual Machine Manager Service Templates?](https://petri.com/virtual-machine-manager-service-template-overview/): Check out this quick introduction to Virtual Machine Manager service templates, which allow you to model business services for the cloud. - [Avoiding Disk Performance Issues in Storage Spaces](https://petri.com/disk-performance-issues-in-storage-spaces/): Learn to optimize the disk performance in Storage Spaces to reduce the possibilities of performance issues caused by hardware, drivers, or firmware. - [Provisioning Windows Server 2012 on Amazon Web Services (AWS)](https://petri.com/configure-windows-server-2012-in-amazon-web-services-aws/): Windows Server 2012 on Amazon Web Services (AWS) | Learn the basics of configuring VMs on Amazon's cloud platform, including how to get WS2012 running in a VM. - [Default Hyper-V Storage Paths Explained](https://petri.com/default-hyper-v-storage-paths/): Discover where Hyper-V stores virtual machine files by default, and how you can manipulate those settings to get a better configuration. - [Is CloudShare or Microsoft Azure Better for Building Lab Environments in the Cloud?](https://petri.com/build-test-lab-in-cloud-azure-cloudshare/): Learn which cloud platform is better for sysadmins to create test labs in this op-ed post comparing Microsoft Azure and CloudShare. - [Linux for Windows Server Administrators: Services and Runlevels](https://petri.com/linux-services-runlevel-windows-server-administrator/): Find out more in our series on running Linux for Windows Server administrators! In part 2, we discuss Linux services, commands, and runlevels. - [Hyper-V Virtual Machine Virtual Network Adapters Explained](https://petri.com/hyper-v-virtual-machine-virtual-network-adapters-overview/): Virtual Machine Virtual Network Adapters | Learn all about the types of virtual NICs (vNICs) that can be used in Hyper-V virtual machines. - [What Is System Center Advisor?](https://petri.com/system-center-advisor-overview/): Check out this introduction to Microsoft System Center Advisor, including how it works, its architecture, and integration with Operations Manager. - [How to Add UPN Suffixes in Active Directory](https://petri.com/add-upn-suffixes-in-active-directory/): Learn to add additional User Principal Name (UPN) suffixes to Active Directory in this helpful Ask an Admin article. - [5 Reasons To Choose Windows Server 2012 R2 Hyper-V over VMware vSphere 5.5](https://petri.com/choose-windows-server-2012-r2-hyper-v-over-vmware-vsphere/): Learn why you should opt for Windows Server 2012 R2 Hyper-V over VMware vSphere 5.5 from the Hyper-V perspective, spanning technology and business reasons. - [How Can I Copy Files and Preserve Date Timestamps?](https://petri.com/copy-files-preserve-timestamp/): Learn to copy files and preserve timestamps using Robocopy to make sure file timestamps are maintained during a copy or move operation. - [What Are Service Manager Configuration Items?](https://petri.com/configuration-items-service-manager/): Check out this quick overview to configuration items in Service Manager and learn how to create configuration items. - [Hyper-V Virtual Machine Storage Controllers Explained](https://petri.com/hyper-v-virtual-machine-storage-controllers-overview/): Learn about the role and types of storage controllers included in generations 1 and 2 Hyper-V virtual machines in this introduction. - [New Features in Microsoft Exchange 2013 SP1](https://petri.com/microsoft-exchange-2013-sp1-new-features/): Check out these new features in Microsoft Exchange 2013 SP1, including Windows Server 2012 R2 Support, Show Command Logging, Edge Transport Role Update & more. - [3 Tips for Solving Wireless Connectivity Problems](https://petri.com/wireless-connect-troubleshooting-tips/): Learn to set wireless router passwords and use netsh to enable or disable network adapters with these three simple tips. - [How to Create a Linked Clone Pool in VMware Horizon View](https://petri.com/vmware-horizon-view-create-linked-clone-pool/): Find out how to create VMware Horizon View desktop pools with linked clones in our detailed walkthrough. - [How to Enable Shadow Copy on a Shared Folder in Windows Server 2012 R2](https://petri.com/enable-shadow-copy-on-shared-folder-windows-server-2012-r2/): Find out how to enable shadow copies in Windows Server 2012 so that users can restore files using the Previous Versions tab. - [Getting the most out of Hyper-V Dynamic Memory](https://petri.com/hyper-v-dynamic-memory-strategies/): Discover why you should (or shouldn't) use Hyper-V Dynamic Memory in Windows Server 2008 R2 SP1 to change how memory is assigned to VMs. - [Linux for Windows Server Admins](https://petri.com/linux-for-windows-server-administrator/): Are you a Windows Server admin who needs to learn Linux? In part 1 of this series, learn how to handle logins, drives, and users. - [Migrate or Restore a Windows Server 2012 R2 Certification Authority to a New Server](https://petri.com/migrate-restore-windows-server-2012-r2-certification-authority-to-new-server/): Discover how to back up and restore a Windows Server 2012 R2 Active Directory Certification Authority to a new server in this detailed how-to post. - [How to Set Up a VMware View Event Log Database](https://petri.com/setup-vmware-view-event-log-database/): Check out these steps to create and setup a VMware View event log database to capture events and errors within View. - [Install PowerShell Web Access in Windows Server 2012](https://petri.com/install-powershell-web-access-windows-server-2012/): Learn how to make remote administration easy by installing PowerShell Remote Access Gateway in Windows Server 2012. Read on for more! - [How to Fix Skype Not Displaying Full Screen During Screen Share](https://petri.com/display-skype-screen-share/): Can't get Skype to share screens properly? Check out this quick post on for how to solve a common Skype problem. - [Smart Paging in Hyper-V Dynamic Memory](https://petri.com/smart-paging-hyper-v-dynamic-memory/): Discover more about Smart Paging, a new feature to Hyper-V’s Dynamic Memory in Windows Server 2012, including what it is and how it operates. - [Documenting System Center 2012 – Orchestrator Workflows](https://petri.com/system-center-2012-orchestrator-workflow-documentation/): Download the free Orchestrator Visio and Word Generator tool and learn to document your System Center 2012 - Orchestrator flows in this post. - [Run a Script or Batch File with Administrative Privileges as Windows Starts](https://petri.com/run-startup-script-batch-file-with-administrative-privileges/): Learn to configure a Group Policy Object (GPO) to run a startup script with administrative privileges in this quick how-to. - [Configure VMware View Persona Management](https://petri.com/configure-vmware-view-persona-management/): Learn how to configure View Persona Management for VDI users in this walkthrough – especially helpful for service VDI users who need to manage user profiles. - [How to Connect Service Manager 2012 to Operations Manager 2012](https://petri.com/connect-service-manager-2012-to-operations-manager-2012/): Learn to establish the configuration item synchronization between Operations Manager and Service Manager to extend the Configuration Management Database (CMDB). - [Understanding the Architecture of the Hyper-V Hypervisor](https://petri.com/hyper-v-hypervisor-architecture/): Learn about the architecture of Hyper-V’s type 1 hypervisor, including drivers, VMWP, VMMS, WMI, virtual switches, Virtualization Service Providers, and more. - [Using Microsoft Azure: Virtual Machines and RDP](https://petri.com/microsoft-azure-virtual-machines-rdp/): lLarn more about Microsoft Azure's possibilities with virtual machines and Remote Desktop Protocol in part 1 of a new series. - [Check Certificate Authority Health in Windows Server 2012 R2 Using PKIVIEW](https://petri.com/certificate-authority-health-windows-server-2012-r2-pkiview/): Learn how to check the status of your enterprise certification authorities using the Enterprise PKI (PKIVIEW) tool. - [Installing VMware View Group Policy ADM templates](https://petri.com/install-vmware-view-group-policy-adm-templates/): Learn how to install GPO files for controlling VMware View policies in this quick walkthrough. - [How to Create a New Workflow with Visio and SharePoint Designer](https://petri.com/create-new-workflow-with-visio-sharepoint-designer/): Discover how to use Microsoft Visio Pro 2013 or SharePoint Designer 2013 to create a new workflow using this helpful guide. - [Microsoft Azure: Virtual Machines, Virtual Networking, and RDS](https://petri.com/microsoft-azure-virtual-machines-networking-rds/): Find out whether Microsoft Azure can help you in your work and whether it'll take away - or help - your job in part 2 of a two-part series. - [Going to TechEd 2014? Meet your favorite Petri Authors in Person!](https://petri.com/going-to-teched-2014-meet-your-favorite-petri-authors-in-person/): Heading to Microsoft TechEd 2014 this year? Register for our author meet and greet to meet your favorite Petri authors at the conference! - [Top Windows Phone 8.1 Features For Businesses](https://petri.com/top-windows-phone-8-1-features-for-businesses/): Find out about our favorite Windows Phone 8.1 update, including security and management features, and improvements for user productivity. - [Get Reviewer Details from System Center Service Manager](https://petri.com/reviewer-details-service-manager/): Learn how to get reviewer details from Service Manager and leverage PowerShell to create an activity which will enhance the inbox offerings. - [How to Run PowerShell Scripts with Administrative Privileges](https://petri.com/run-powershell-scripts-with-administrative-privileges/): Learn two ways to launch PowerShell scripts with administrative rights when you are logged in using a standard user account. - [Microsoft Adds BT and Verizon As Azure ExpressRoute Partners](https://petri.com/microsoft-bt-verizon-windows-azure-expressroute-partners/): Microsoft recently announced partnerships with BT and Verizon. Learn more about plans to introduce a new WAN solution to connect on-premise clouds. - [How to Use Server Manager in Microsoft Azure to Manage Servers](https://petri.com/using-windows-azure-server-manager/): Learn how to use Server Manager in Microsoft Azure and configure an HTTP winrm listener in a Microsoft Azure VM with the help of this Ask an Admin post. - [End of Support for Windows Server 2003](https://petri.com/windows-server-2003-end-of-support/): The end of life for Windows Server 2003 (W2003) and Windows Server 2003 R2 (W2003 R2) is July 14, 2015. Learn about your options and start planning now! - [Using the Microsoft Assessment and Planning (MAP) Toolkit for Server and Private Cloud Migration](https://petri.com/microsoft-assessment-and-planning-map-toolkit-server-private-cloud-migration/): Microsoft Assessment and Planning Toolkit (MAP) | In part 2, learn to use the free MAP tool to prepare for server and cloud platform migration. - [System Center Service Manager PowerShell Module and SMLets Module](https://petri.com/system-center-service-manager-powershell-module-and-smlets-module/): Learn more about System Center Service Manager's two modules, which module you should use, and whether you can even use both. - [Who's on First? About That Windows 8.1 Update](https://petri.com/windows-8-1-update-whos-on-first/): Confused by the name of the Windows 8.1 Update, aka Windows 8.1 Update 1 and Windows 8.1 Spring Update? Check out our funny send-up! - [Microsoft Releases Virtual Machine Converter 2.0](https://petri.com/microsoft-virtual-machine-converter-2-0-released-download/): Check out and download Microsoft Virtual Machine Converter 2.0, a free tool that converts VMware virtual disks and machines to Hyper-V equivalents. - [Using the Microsoft Assessment and Planning Toolkit (MAP) for Windows 7/8.1 Migration](https://petri.com/install-microsoft-assessment-planning-toolkit-map-windows-7-8-1-migration/): Microsoft Assessment and Planning Toolkit (MAP) | Install MAP toolkit and determine Windows 7 or 8.1 readiness in part 1 of a 2-part series. - [How to Configure DNS on a Domain Controller with Two IP Addresses](https://petri.com/configure-dns-on-domain-controller-two-ip-addresses/): Learn how to configure DNS on a Windows Server 2012 domain controller with two IPv4 addresses in this quick Ask an Admin post. - [Microsoft Azure: First Impressions](https://petri.com/microsoft-azure-overview/): Check out this Microsoft Azure overview in part 1 of a 2-part series, as we look at Microsoft Azure's pricing, services, and access. - [MEC 2014: Microsoft Introduces Office 365 Fast Track Deployment Guide](https://petri.com/microsoft-office-365-fast-track-deployment-guide/): Check out Microsoft's new Fast Track deployment resources website for the info you need for a successful roll-out of Office 365. - [Configuring Microsoft Azure Online Backup](https://petri.com/configure-windows-azure-online-backup/): Need a quick backup solution? Learn to configure Microsoft Azure Online Backup in four easy steps and protect yourself against data loss. - [6 Microsoft Surface Pro 2 Tips](https://petri.com/microsoft-surface-pro-2-tips/): Discover what makes the new Surface Pro 2 a worthy successor to the original, and learn how to get the most out of your Surface Pro 2! - [Microsoft Exchange Conference (MEC) 2014 Highlights](https://petri.com/microsoft-exchange-conference-mec-2014-highlights/): Check out the highlights from Microsoft Exchange Conference (MEC) 2014, from Office 365 to OWA for Android. - [Using Storage Reports in the VMware vSphere Web Client](https://petri.com/storage-reports-in-vmware-vsphere-web-client/): Discover more about vSphere web client's new storage reporting feature in this quick overview. - [Migrating from Windows XP to Windows 8.1: Enterprise Computing](https://petri.com/migrating-from-windows-xp-to-windows-8-1-enterprise/): Find out how to migrate from Windows XP to Windows 8 with help from these free tools provided by Microsoft. - [Is Poor Product Distribution Hurting Microsoft?](https://petri.com/microsoft-product-distribution/): Is Microsoft sabotaging itself with poor distribution? Discover more about distribution, marketing, sales, and the Microsoft Surface. - [9 Essential Microsoft Surface 2 Tips](https://petri.com/microsoft-surface-2-tips/): Considering a Surface 2? Check out these top Microsoft Surface 2 performance tips, including OneDrive usage and more. - [Microsoft to Bring Back Start Menu in Future Windows 8.1 Update](https://petri.com/microsoft-to-bring-back-start-menu-in-future-windows-8-1-update/): Microsoft announced at the Build 2014 developer conference that the Windows Start Menu would soon be returning to Windows 8.1. - [How to Upgrade from Windows XP to Windows 8.1](https://petri.com/upgrade-from-windows-xp-to-windows-8-1/): Learn how to upgrade from Windows XP to Windows 8 or Windows 8.1 in this step-by-step tutorial. - [Microsoft Announces Windows 8.1 Update](https://petri.com/windows-8-1-update-announced/): Microsoft announced the Windows 8.1 update at the Build conference this week. Find out whether it will have what it takes to convince Windows 8 skeptics. - [Adjust VMware High Availability Slot Size in the VMware vSphere Web Client](https://petri.com/adjust-high-availability-slot-size-web-client/): Find out more about high availability (HA) slot size in vSphere Web Client, including how to adjust the HA slot size. - [Using NTBACKUP to Back Up Windows XP](https://petri.com/back-up-windows-xp-ntbackup/): Learn how to use NTBACKUP to create a full system backup in Windows XP in this quick 'n easy Ask an Admin. - [How to Get User and Computer Objects Information with the Active Directory Administrative Center](https://petri.com/get-user-computer-objects-info-with-active-directory-administrative-center-adac/): Active Directory Administrative Center (ADAC) | Learn where to find useful information about user and computer objects in the ADAC. - [How to Use the Azure BGInfo Extension on a Windows Server 2012 Virtual Machine](https://petri.com/azure-bginfo-extension-on-windows-server-2012-virtual-machine/): Learn how to install and enable the BGInfo extension for Azure virtual machines to display useful management information on Windows Server 2012 desktops. - [Stop or Start VMs in an Windows Azure Subscription Using PowerShell Loop](https://petri.com/stop-start-vm-windows-azure-subscription-with-powershell-loop/): Learn to use wildcards and Foreach-Object loops in PowerShell to power on or shut down Windows Azure VMs. - [Understanding Latency Sensitivity in VMware vSphere 5.5](https://petri.com/latency-sensitivity-vmware-vsphere-5-5-overview/): Discover more about latency sensitivity settings in VMware vSphere 5.5, which decrease the latency to a virtual machine. - [Microsoft Drops Azure Pricing and Adds New Options](https://petri.com/microsoft-drops-azure-pricing-adds-new-options/): Keeping pace with recent cloud price reductions by Google and Amazon, Microsoft slashes Microsoft Azure pricing. - [How to Manage a Windows Server 2008 DC Using the Active Directory Administrative Center (ADAC)](https://petri.com/active-directory-administrative-center-adac-manage-windows-server-2008-dc/): Active Directory Administrative Center (ADAC) | Discover how to manage Windows Server 2008 and 2003 using ADAC and Windows PowerShell Module for AD. - [How Does Hyper-V Dynamic Memory Work?](https://petri.com/how-does-hyper-v-dynamic-memory-work/): Discover how Dynamic Memory works to help you better configure your virtual machines to make the best use of your host's memory. Read on for more! - [What Is Hyper-V Dynamic Memory?](https://petri.com/hyper-v-dynamic-memory-overview/): Discover more about Hyper-V Dynamic Memory, a feature in Windows Server 2008 R2 SP1. Increase the VM to host ratio and more! - [How to Configure SharePoint 2013 ULS Logging Levels](https://petri.com/how-to-configure-sharepoint-2013-uls-logging-levels/): Get to know Universal Logging System (ULS) logs in SharePoint 2013 in this overview, including configuration and more. - [Microsoft Announces the Enterprise Mobility Suite](https://petri.com/microsoft-announces-enterprise-mobility-suite/): Microsoft unveiled the Enterprise Mobility Suite this week, a bundle that includes Azure AD Premium, Azure Rights Management, and Windows Intune. - [Microsoft Launches Office for iPad](https://petri.com/microsoft-launches-office-ipad/): As expected, Microsoft CEO Satya Nadella announced the availability of Microsoft Office for the iPad at a press event in San Francisco this morning. - [How to Block Specific File Types in Windows Server 2012?](https://petri.com/block-specific-file-types-windows-server-2012/): Learn how to block certain file types using the File Server Resource Manager (FSRM) in Windows Server 2012. - [Windows XP End of Support Guide](https://petri.com/windows-xp-end-of-support-guide/): Microsoft's end of support for Windows XP is April 8, 2014. Are you ready? Read on for tips to help you survive the transition. - [How to Upgrade vCenter Server Appliance (vCSA)](https://petri.com/upgrade-vcenter-server-appliance-vcsa/): Discover how to upgrade your vCenter Server Appliance (vCSA) to the latest major-release version in this helpful tutorial. - [Forget Amazon Workspaces – Build a DaaS in Microsoft Azure (or any Other Cloud)](https://petri.com/amazon-workspaces-build-daas-azure-cloud/): Amazon has just announced their new Workspaces Desktop as a Service (DaaS) offering. So is this new service worth a look? - [Using the SharePoint 2013 Developer Dashboard](https://petri.com/sharepoint-2013-developer-dashboard-introduction/): Discover more about SharePoint developer dashboard in this overview, including its uses and how to enable (and disable) this feature. - [How to Connect Service Manager 2012 to Configuration Manager 2012](https://petri.com/connect-service-manager-2012-to-configuration-manager-2012/): Learn to establish a connection between Configuration Manager 2012 and Service Manager, which can import data from both Configuration Manager 2007 and 2012. - [How to Enable Hyper-V Virtual Machine Processor Compatibility Mode](https://petri.com/enable-hyper-v-virtual-machine-processor-compatibility-mode/): Learn to enable processor compatibility mode in Hyper-V to allow a VM to move between different generations of the same processor family. - [Configuring vCenter Server Appliance (vCSA) with Sysprep Files](https://petri.com/sysprep-files-configure-vcenter-server-appliance-vcsa/): Find out how to upload and configure sysprep files, as part of our series getting to know the VMware vCenter Server Appliance (vCSA). - [Why Learn the Active Directory Administrative Center?](https://petri.com/why-learn-active-directory-administrative-center/): Learn why the Active Directory Administrative Center is superior to the old Microsoft Management Console in this op-ed. - [Deploying a Windows Server 2012 R2 Certificate Authority](https://petri.com/deploy-windows-server-2012-r2-certificate-authority/): Learn to deploy a Windows Server 2012 R2 CA in this post, including installing Active Directory Certificate Authority and more. - [Use System Center 2012 - Orchestrator to Update Service Manager Action Logs](https://petri.com/update-action-log-system-center-orchestrator/): Learn to update the action log of an incident in Service Manager using System Center 2012 - Orchestrator with help of this tutorial. - [Troubleshooting Wireless Networks in Windows 8.1](https://petri.com/troubleshoot-wireless-networks-in-windows-8-1/): Learn to troubleshoot wireless issues in Windows 8 using the NETSH command to help simplify wireless in Windows 8 for the user and the admin. - [Using Hyper-V Virtual Machine Processor Resource Control](https://petri.com/hyper-v-virtual-machine-processor-resource-control-overview/): Find out why and how you can use the virtual processor resource control settings to configure Hyper-V virtual machine reservations, limits, and weights. - [RSA Conference 2014: 8 Top Computer Security Trends](https://petri.com/rsa-conference-2014-8-top-computer-security-trends/): Read our summary of the latest in cyber security trends to get the info you need to protect your IT environment. - [Auto-Triggered VPN in Windows 8.1: Overview](https://petri.com/auto-triggered-vpn-windows-8-1-overview/): Learn all about automatically triggered VPNs in Windows 8.1, including how to setup and removal. - [Configuring Hyper-V Virtual Machine NUMA Topology](https://petri.com/customize-non-uniform-memory-access-numa-configuration-of-vm/): Learn to customize the virtual non-uniform memory access (NUMA) configuration of a virtual machine in this helpful how-to. - [Configuring Work Folders in Windows Server 2012 R2](https://petri.com/configure-work-folders-windows-server-2012-r2/): Learn to install and configure Work Folders, a new feature of Windows Server 2012 R2, including installation and prerequisites. - [Enabling System Center Service Manager for Asset Management](https://petri.com/enable-system-center-service-manager-it-asset-management/): Learn to extend Service Manager 2012! Add IT Asset Management (ITAM) functionality to your Service Manager 2012 R2 ITIL system. - [What Is Non-Uniform Memory Access (NUMA)?](https://petri.com/non-uniform-memory-access-overview/): Discover how Hyper-V interoperates with the Non-Uniform Memory Access (NUMA) architectures of host computers in this helpful introduction. - [SQL Server 2014 Released to Manufacturing](https://petri.com/sql-server-2014-released-to-manufacturing-ga-slated-for-april-1/): Microsoft SQL Server 2014 has been released to manufacturing, and customers can download the new version on April 1st. - [On the Road: Two Weeks Without Windows](https://petri.com/using-android-over-windows/): Check out what our writer learned as he used an entry-level Android tablet to replace a Windows 8 notebook for two weeks. - [How to Create VMware vSAN Storage Policies](https://petri.com/create-vsan-storage-policy/): Learn to create a storage policy in this handy post, enabling you to gain control of the behavior of your virtual SAN (vSAN) storage. - [SharePoint Planning: Understanding SQL Disaster Recovery Options](https://petri.com/sharepoint-planning-understanding-sql-disaster-recovery-options/): Find out your options for disaster recovery for your SQL servers, including storage redundancy, in this helpful post. - [Configuring Cluster Shared Volumes (CSV) Cache](https://petri.com/enable-cluster-shared-volumes-csv-cache/): Learn to enable Cluster Shared Volumes (CSV) Cache to improve the read performance of CSV in Windows Server 2012 (WS2012) and Windows Server 2012 R2. - [Using Orchestrator Health Checker to Troubleshoot Runbooks](https://petri.com/use-orchestrator-health-checker-troubleshoot-runbooks/): Learn how to determine if your System Center - Orchestrator runbooks are out of control and creating orphans with the help of Orchestrator Health Checker! - [RSA Conference 2014: 10 Security Companies to Watch](https://petri.com/rsa-2014-10-security-companies-to-watch/): What are some of the most promising companies in the IT security space? Read our RSA Conference 2014 round-up to find out. - [How to Setup and Configure VMware vSAN storage](https://petri.com/setup-configure-vmware-virtual-san-vsan-storage/): Virtual SAN (vSAN) storage | Discover how to setup VMware vSAN and find out how local server storage can host VMs. - [How to Configure Fine-Grained Password Policy in Windows Server 2012 with PowerShell](https://petri.com/fine-grained-password-policy-in-windows-server-2012-powershell/): Find out how to create fine-grained password policies using PowerShell in Windows Server 2012 R2 in this Ask an Admin post. - [Upgrading Configuration Manager 2012 SP1 to R2](https://petri.com/upgrading-configuration-manager-2012-sp1-to-r2/): Discover the steps to updating to Configuration Manager 2012 R2 from Configuration Manager 2012 SP1 in part two of this helpful series. - [SPC14: Microsoft Touts Hybrid Clouds and the Social Enterprise](https://petri.com/microsoft-hybrid-clouds-social-enterprise/): Karen Forster continues her coverage of SPC14, including the latest on hybrid clouds, the new Office Graph, and the codename Oslo app. - [Unified Threat Management and the WatchGuard XTM Firewall](https://petri.com/unified-threat-management-watchguard-xtm-firewall/): Check out our review of the WatchGuard XTM series, which can provide security and connect devices securely to on-premise and (hybrid) cloud services. - [What Roles Do Storage Profiles Play in VMware Virtual SAN Storage?](https://petri.com/vmware-virtual-san-vsan-storage-profiles/): VMware Virtual SAN (vSAN) | As storage becomes more defined and controlled by software, how will processes adapt? Learn more in this overview. - [Understanding and Managing the WSS_Logging Database in SharePoint 2013](https://petri.com/manage-wss_logging-database-sharepoint-2013/): Learn to understand and manage the WSS_Logging database in SharePoint 2013 with the help of this post! - [How to Perform a PC Refresh in Windows 8 and Create a Custom Refresh Image](https://petri.com/perform-windows-8-refresh-create-custom-image/): Learn to create a custom refresh image in Windows 8 so that you can perform a PC refresh while preserving installed desktop applications. - [Preparing to Upgrade to Configuration Manager 2012 R2](https://petri.com/upgrade-to-configuration-manager-2012-r2/): Discover how to prepare your production implementation of an upgrade to Configuration Manager 2012 R2. - [How Would Microsoft Design a Scale-Out File Server: Disks, Networking, and More](https://petri.com/microsoft-scale-out-file-server-sofs-storage-spaces/): Designing a Scale-Out File Server (SOFS) | In part 2 of this series, find out how disks, networks, servers, and Storage Bricks play a part in designing a SOFS. - [VMware announces Horizon DaaS for vCloud Hybrid Service](https://petri.com/vmware-announces-horizon-daas-on-vchs/): VMware has officially announced that the VMware Horizon Desktop as a Service is now available on their vCloud Hybrid service. - [What's New in Windows 8.1 Update](https://petri.com/windows-8-1-update-1-news/): Microsoft's Windows 8.1 Update release is just around the corner. Check out what this new update brings to the table. - [How to Configure Fine-Grained Password Policy in Windows Server 2012 Using ADAC](https://petri.com/configure-fine-grained-password-policy-in-windows-server-2012-adac/): Learn how to create fine-grained password policies using the Active Directory Administrative Center (ADAC) in Windows Server 2012. - [Using the VMware vSphere Mobile Watchlist App](https://petri.com/vmware-vsphere-mobile-watchlist-app-overview/): Check out the vSphere Watchlist mobile app, which helps manage vSphere environments. Read our walkthrough to see if this app is right for you! - [Take the Petri IT Knowledgebase 2014 Reader Survey for Chance to Win $100 Gift Card](https://petri.com/take-the-petri-it-knowledgebase-2014-reader-survey/): Have an opinion about the types of content we publish on the Petri IT Knowledgebase? Take our reader survey and get a chance to win one of five $100 gift cards! - [SPC14: Microsoft Courts SharePoint Developers, Promotes Interoperability](https://petri.com/microsoft-courts-sharepoint-developers-promotes-interoperability/): Learn about Microsoft's surprising moves towards openness and interoperability, as reported by Karen Forster from the Microsoft SharePoint Conference 2014. - [How Would Microsoft Design a Scale-Out File Server?](https://petri.com/microsoft-scale-out-file-server-sofs/): Ever wonder how Microsoft would design a SOFS for storage over SMB 3.0 networking with transparent failover? Find out more in part 1 of this series. - [System Center 2012 Configuration Manager Deployment Architectures](https://petri.com/system-center-2012-configuration-manager-server-template/): Check out the five System Center 2012 Configuration Manager (SCMM) common server templates that emerge in this informative overview. - [SharePoint Planning: Understanding SQL Server High Availability Options](https://petri.com/sql-server-high-availability-options-sharepoint/): Learn about three SQL Server high availability solutions: SQL database mirroring, SQL server clustering, and SQL Server AlwaysOn in this helpful post. - [Using Shared VHDX to Create a Guest Cluster in Windows Server 2012 R2](https://petri.com/use-shared-vhdx-create-guest-cluster-windows-server-2012-r2/): Learn how to use a shared VHDX to create a guest cluster on WS2012 R2 Hyper-V hosts. - [How to Use Global Search in the Active Directory Administrative Center](https://petri.com/use-global-search-in-active-directory-administrative-center-adac/): Learn about using the Global Search feature in the ADAC. Discover how to search all objects and attributes across multiple domains in a forest using ADAC. - [RSAC 2014: Interview with Barracuda Networks CEO William "BJ" Jenkins](https://petri.com/rsac-2014-interview-with-barracuda-networks-ceo-william-bj-jenkins/): We sit down with the CEO of Barracuda Networks to talk about their recent IPO, the cloud, and the latest security trends. - [Top 10 IT Trends – from the Microsoft Perspective](https://petri.com/it-trends-from-microsoft-perspective/): Find out how Microsoft is prepared for the next 5 years of change, according to the top IT trends as posted by Gartner, Inc. - [Using ULS Viewer to Monitor and Filter SharePoint 2013 Logs](https://petri.com/ulsviewer-sharepoint-2013-logs/): Check out what ULSViewer, a free Microsoft utility can do to for your SharePoint logs, and learn some configuration tips. - [Optimize Windows 8 for Audio: Configure Windows 8 and Setup JRIVER Media Center](https://petri.com/optimize-windows-8-audio-setup-jriver-media-center/): Learn how to get the best out of Windows 8 and JRIVER Media Center for audio playback in part two of this short series. - [How to Upgrade ESXi with VMware Update Manager (VUM)](https://petri.com/upgrade-esxi-vmware-update-manager-vum/): Learn how to to upgrade ESXI with VMware Update Manager (VUM) with the help of this detailed walkthrough. - [Optimize Windows 8 for Audio: Understanding Digital Audio](https://petri.com/optimize-windows-8-digital-audio/): Learn how to combine Windows 8 and digital audio to make a sweet hi-fi system. In part 1 of 2, discover the concepts of computer-based digital audio. - [The Rise of Satya Nadella to CEO of Microsoft](https://petri.com/satya-nadella-new-microsoft-ceo/): Meet Satya Nadella, Microsoft's new CEO, and learn about what led to ex-CEO Steve Ballmer's stepping down in the company. - [RSA 2014: Microsoft Releases EMET 5.0 Technical Preview](https://petri.com/rsa-2014-microsoft-releases-emet-5-0-technical-preview/): Microsoft has taken the wraps off their new EMET 5.0 Technical Preview, which serves up some noteworthy new security capabilities. - [How to Upgrade VMware vCenter 5.1 to 5.5](https://petri.com/upgrade-vmware-vcenter-5-5/): Learn how to upgrade from VMware vCenter 5.1 to vSphere 5.5 in our easy-to-follow walkthrough of the process. - [Export Office 365 Users to a CSV File](https://petri.com/export-office-365-users-to-csv-file/): Learn to export licensed Office 365 users to a comma delimited file (CSV) using PowerShell in this quick Ask an Admin article. - [Preparing for the MCSE SharePoint 2013 Core Solutions 70-331 Exam](https://petri.com/exam-prep-70-331-mcse-sharepoint-2013-core-solutions/): Taking the 70-331 MCSE SharePoint 2013 Core Solutions exam? Check out this post for tips to prepare for the 70-331 exam. - [Creating a Windows Server 2012 R2 Cluster Shared Volume](https://petri.com/create-windows-server-2012-r2-cluster-shared-volume/): Find out what a Cluster Shared Volume (CSV) is and how to create one in this thorough introduction. - [The Best T-Shirts at RSA Conference 2014](https://petri.com/the-best-t-shirts-at-rsa-conference-2014/): Attending RSA in San Francisco this week? We've created a gallery of the best free vendor T-shirts to help you get the most from your expo booth crawl. - [RSA Conference 2014 Survival Guide](https://petri.com/rsa-conference-2014-survival-guide/): Attending RSA Conference 2014 in San Francisco this year? Check out our handy survival guide to get the most out of this annual IT security event. - [How to Install the Windows PowerShell Cmdlets for Windows Azure AD and Office 365](https://petri.com/connect-office-365-using-powershell/): Learn to install the Windows Azure Active Directory PowerShell cmdlets so that you can manage Office 365 from the command line. - [VMware Outlines Horizon DaaS Plans](https://petri.com/vmware-horizon-daas-features/): Horizon DaaS | Check out VMware's plans for Horizon DaaS, and what new features have already been added. - [Deploy a Windows 8.1 Image Onto a Surface Pro: Create Offline USB Media Within MDT 2013](https://petri.com/install-windows-8-1-surface-pro-create-usb-mdt/): Create the offline USB media from within MDT 2013 and install a Windows 8.1 image with offline USB device media in part 2 of a series. - [Windows Server Failover Clustering: Why Cluster Quorum Matters](https://petri.com/windows-server-failover-clustering-cluster-quorum/): Discover the function of quorums in Window Server Failover Clustering in this helpful post. - [Where Do I Add the Code for My Desired State Configuration (DSC) Module?](https://petri.com/desired-state-configuration-dsc-module-add-code/): Desired State Configuration (DSC) | In part 9 of our series, discover where to add code to bring a DSC module to life. - [Microsoft, Don’t Abandon the Desktop!](https://petri.com/microsoft-dont-abandon-desktop/): There is still room for improvement and innovation on the Windows desktop. Learn why our writer thinks Microsoft shouldn't abandon desktop users just yet. - [How to Deploy a Custom Windows 8.1 Image Onto a Surface Pro Via USB Media](https://petri.com/install-windows-8-1-image-surface-pro-usb/): Learn how to install a Windows 8.1 image by using offline USB device media (part of Microsoft Deployment Toolkit 2013) in part 1 of a two-part series. - [Presenting a Session at a VMware Users Group (VMUG) Meeting](https://petri.com/vmware-users-group-vmug-present-session/): If you have attended a VMware Users Group (VMUG) meeting in the past, then you know its value. Find out how to present at a VMUG session in this post! - [How Do I Create My Own Desired State Configuration (DSC) Resource?](https://petri.com/create-desired-state-configuration-dsc-resource/): Desired State Configuration (DSC) | In part 8 of our series, learn to take DSC a step further and create your own Desired State Configuration resource. - [Windows Server 2012 Scheduled Cluster Tasks](https://petri.com/windows-server-2012-scheduled-cluster-tasks/): Learn about scheduled cluster tasks in Windows Server 2012 and how to implement them in this helpful how-to article. - [Configuring SSL on SharePoint Sites](https://petri.com/configure-ssl-sharepoint-sites/): Discover how to configure SSL on your SharePoint sites, including importing a certificate into SharePoint Webserver, configuring IIS bindings, and more! - [Why Tighter Integration Between Windows Store Apps and the Desktop Is Important](https://petri.com/windows-8-1-store-apps-desktop-integration/): Windows Store apps and desktop integration will be important if the notebook and desktop user base is to adopt them. Check out this op-ed on the topic! - [Best Free VMware Resources](https://petri.com/best-free-vmware-resources/): Check out our list of some great free VMware resources for VMware, including videos, Hands-on Labs, tools, and more! - [Windows Server 2012 R2 Hyper-V Automatic Virtual Machine Activation](https://petri.com/automatic-virtual-machine-activation-avma-windows-server-2012-r2-hyper-v/): Automatic Virtual Machine Activation | Learn to use Automatic Virtual Machine Activation (AVMA) to auto-activate the guest OS installations of Hyper-V VMs. - [VMware and Google Join Forces to Bring Windows Apps to Chromebooks](https://petri.com/vmware-and-google-join-forces-to-bring-windows-apps-to-chromebooks/): Google and VMware join forces to bring VMware Horizon DaaS to Google Chromebooks. Will this partnership have what it takes to make inroads against Microsoft? - [How to Participate in the Desired State Configuration (DSC) Community](https://petri.com/desired-state-configuration-dsc-github/): Desired State Configuration (DSC) | Learn to use GitHub, PowerShell, and the DSC community libraries to your advantage. Part 7 of a series. - [Connect to Windows Azure Resources Using a VPN: Install Client and Root Certificates, Configure VPN](https://petri.com/windows-azure-vpn-client-root-certificate/): Windows Azure Point-to-Site and VPN pt 2| Create a self-signed client certificate, install the root/client certificates, and configure the VPN connection. - [Using Office 365 ProPlus with the Office Deployment Tool](https://petri.com/using-office-365-proplus-with-office-deployment-tool/): Learn to download the Office 365 Pro Plus install files and create a package file that you can reuse in App-V (Microsoft Application Virtualization). - [4 Things Every VMware Admin Should Know How to Do](https://petri.com/what-vmware-admin-should-know/): Check out our list of four important things that every VMware admin should know how to perform, including ESXTOP and more! - [Create a File Share in Windows Server 2012 R2 Using Server Manager](https://petri.com/create-file-share-windows-server-2012-r2-with-server-manager/): Learn how to use Server Manager in Windows Server 2012 R2 to set up a new file share with the help of this awesome Ask an Admin article! - [Windows Server Failover Cluster Validation](https://petri.com/validate-windows-server-failover-cluster/): Validate a new or modified Windows Server Failover Cluster configuration and find out what makes a supported cluster. - [Using the PowerShell CIM Explorer](https://petri.com/using-the-powershell-cim-explorer/): CIM Explorer | Download, install, and learn how to use the PowerShell CIM Explorer in this helpful article. - [Using Community Desired State Configuration Resources](https://petri.com/using-community-desired-state-configuration-resources-dsc/): Desired State Configuration (DSC) | Learn to use community-shared DSC resource providers in part six of this multi-part series. - [Configure Windows Azure to Accept Point-to-Site VPN Connections](https://petri.com/configure-windows-azure-point-to-site-vpn-connections/): Discover how to connect to Windows Azure using a point-to-site SSTP virtual private network (VPN) in part 1 of a new series. - [Options for Protecting VMware vCenter Server](https://petri.com/vmware-vcenter-server-increased-high-availability/): VMware vCenter Server | Learn about how to increase the uptime in vCenter Server, an important part in highly available (HA) environments, - [Disable Windows Store App Updates in Windows 8.1](https://petri.com/disable-windows-store-app-updates-windows-8-1/): Discover how to disable automatic updates for Windows Store apps in Windows 8.1 using the GUI or Group Policy. - [How to Deploy Office 365 ProPlus](https://petri.com/deploy-office-365-proplus/): Office 365 ProPlus | In this helpful post, discover what Office 365 ProPlus is and how you can integrate it in your enterprise environment. - [How to Publish a Desired State Configuration](https://petri.com/publish-desired-state-configuration/): Desired State Configuration (DSC) | In part 5 of our series, learn to take a .MOF file and publish it to the pull server. - [Naming Standards in a Window Server Cluster](https://petri.com/window-server-failover-cluster-naming-conventions/): What's in a name? Learn to standardize the naming of Windows failover cluster components in this helpful how-to article. - [How Do I Create a Desired State Configuration?](https://petri.com/create-desired-state-configuration/): Desired State Configuration (DSC) | In part four of our series, learn to combine provided resources to define a Desired State Configuration. - [Sysprep Windows Server 2012 Faster with /mode:vm Switch](https://petri.com/sysprep-windows-server-2012-modevm-switch/): Use the new /mode:vm switch in sysprep to image Windows Server 2012 faster in a virtual environment. Learn how in this Ask an Admin article! - [Thoughts on the VMware Purchase of Airwatch](https://petri.com/vmware-airwatch-purchase/): VMware has purchased Airwatch, a mobile device management company. Learn how this might improve or affect VMware's strategy. - [Microsoft Names Satya Nadella as new CEO](https://petri.com/microsoft-names-satya-nadella-as-new-ceo/): Microsoft has named Satya Nadella as the new CEO. Will Nadella have what it takes to bring the software giant success? - [What Can I Configure Using Desired State Configuration?](https://petri.com/desired-state-configuration-resource-provider/): Desired State Configuration | In part 3 of our series, learn what you can configure with DSC, resource providers, and how to combine the resources. - [Secure Legacy Applications on Windows Server 2012 R2 and Windows 8.1 with EMET 4.1](https://petri.com/emet-4-1-legacy-applications-windows-8-1-server-2012-r2/): Learn about EMET 4.1 and how it can be used to secure legacy applications running on Windows Server 2012 R2 or Windows 8.1. - [Top Performance Tuning Tips for Windows Server 2012 R2 Hyper-V](https://petri.com/windows-server-2012-r2-hyper-v-performance-tips/): Kick your Windows Server 2012 R2 Hyper-V performance up a notch. Check out these helpful tips to improve the performance of Windows Server 2012 R2 Hyper-V. - [Microsoft Updates Windows Intune, Reveals Mobile Management Roadmap](https://petri.com/microsoft-updates-windows-intune-unveils-cloud-based-mobile-management-roadmap/): Microsoft has announced updates to Windows Intune that will bring a host of new cloud-based MDM features to the service. - [How to Add Disk Performance Counters to Windows Server 2012 R2](https://petri.com/add-disk-performance-counters-windows-server-2012-r2/): Enable disk performance counters in Windows Server 2012 R2 Task Manager using this quick how-to! - [Does the Hypervisor Still Matter?](https://petri.com/does-the-hypervisor-still-matter/): Do you care which hypervisor you use? Find out more about where our writer thinks the future of the hypervisor is going in this op-ed. - [How Do I Install Unsigned Device Drivers in Windows 8 64-bit Edition?](https://petri.com/install-unsigned-device-drivers-windows-8-64-bit-edition/): Learn the tricks to installing an unsigned driver in Windows 8 64-bit edition or Windows Server 2012 in this Ask an Admin. - [Antivirus on a Hyper-V Host: Do You Need It?](https://petri.com/antivirus-on-hyper-v-host-configuration/): Is installing anti-virus on your Hyper-V hosts necessary? Learn more, including how to configure antivirus scanning exceptions. - [Updating the vCenter Server Appliance (vCSA)](https://petri.com/updating-vcenter-server-appliance-vcsa/): Deploying the vCenter Server Appliance? Learn to keep vCSA updated with vCenter patches in this easy-to-follow how-to post. - [How to Use Group Managed Service Accounts in Windows Server 2012](https://petri.com/group-managed-service-accounts-gmsa-windows-server-2012/): Learn to use Group Managed Service Accounts (gMSA) to improve security in Windows Server 2012 (and later) in this quick Ask an Admin. - [Review: MakerBot Digitizer Desktop 3D Scanner](https://petri.com/makerbot-digitizer-3d-scanner-review/): Check out our review of MakerBot Digitizer Desktop 3D Scanner, which turns a 3D object into a computer file. - [Review: DataON Storage DNS-1640 JBOD for Storage Spaces](https://petri.com/dataon-storage-dns-1640-jbod-review/): Check out our review of DataON Storage DNS-1640 JBOD, used for clustered Storage Spaces in Windows Server 2012 (WS2012) and Windows Server 2012 R2 (WS2012 R2). - [Desired State Configuration and Local Configuration Manager](https://petri.com/desired-state-configuration-local-configuration-manager/): Local Configuration Manager (LCM) |In part 2 of this series on Desired State Configuration, read on for a closer look at Local Configuration Manager. - [Azure, Xbox, and Surface power Microsoft's Q2 2014 financials](https://petri.com/azure-xbox-surface-microsofts-q2-2014-financial-results/): Microsoft reported an impressive $24.52 billion in revenue for fiscal Q2 2014, driven by sales growth for the Surface, Xbox, and Microsoft business units. - [Lenovo to Purchase IBM's x86 Server Business for $2.3 Billion](https://petri.com/lenovo-to-purchase-ibms-x86-server-business-for-2-3-billion/): Lenovo snatched up IBM's desktop and laptop units years ago, and has returned for more in the form of Big Blue's x86 server business. - [Workers Are Happier Being Mobile and Working Remotely](https://petri.com/remote-working-telecommute-employee-productivity/): Learn about the benefits to remote working, and look at Microsoft's integrated solution, spanning on-premise, and public cloud for telecommuting. - [How to Close an App in Windows 8 and Win 8.1](https://petri.com/close-app-in-windows-8-1/): Need help closing apps in Windows 8 or 8.1? Here's a quick primer that presents multiple ways to close a Win 8 app. - [What Is the Future of the Enterprise PC?](https://petri.com/future-of-enterprise-pc/): Is the era of the PC was coming to an end? What's next for the enterprise PC? Learn more in this op-ed on Microsoft's next steps. - [Desired State Configuration Host Deployment: Local Configuration Manager](https://petri.com/post-deployment-desired-state-configuration-dsc/): Desired State Configuration (DSC) |In this new series on deploying a DSC web host, we take a look at Local Configuration Manager (LCM) & configuration ID. - [Review: iPodCast App for Windows Phone](https://petri.com/ipodcast-app-windows-phone-review/): Check out our review of iPodCast, a podcast subscription management and playback app for Windows Phone. - [Attaching a Content Type to a List or Library in SharePoint 2013](https://petri.com/attach-content-type-to-sharepoint-2013-list-library/): Learn to enable a list or library to use content types in SharePoint 2013, and how to attach those content types in part three of this series. - [Configure Workplace Join: Enable Device Registration and Enroll for Workplace Join](https://petri.com/configure-workplace-join-enable-device-registration/): Learn to enable device registration in ADFS and set up Workplace Join in Windows Server 2012 R2 in part two of this series. - [Using the CloudPhysics Cloud Calculator to Estimate Hosting Costs](https://petri.com/cloud-cloudphysics-calculator/): CloudPhysics cloud calculators | Got a bunch of VMs running in your data center? Find out what it might cost to run them in the public cloud in this overview. - [Windows Server 2012 or WS2012 R2 Hyper-V Cluster Requirements](https://petri.com/windows-server-2012-r2-hyper-v-cluster-requirements/): Learn about the requirements needed to build a Windows Server 2012 or WS2012 R2 Hyper-V cluster, including host servers, shared storage, and more. - [How to Create a New Content Type in SharePoint 2013](https://petri.com/create-new-content-type-sharepoint-2013/): Discover how to create SharePoint 2013 content types, and learn about content type columns, parents, and more! - [Deploying a Desired State Configuration Web Host Using DSC](https://petri.com/deploy-desired-state-configuration-web-host-with-dsc/): Learn to deploy a Desired State Configuration web host using DSC in this tutorial. - [Microsoft extends anti-malware protection for Windows XP](https://petri.com/microsoft-extends-anti-malware-protection-for-windows-xp/): Microsoft's aging Windows XP should get the boot, but is extended anti-malware protection support sending the wrong message to users? - [How to Backup and Restore the VMware vCenter Server Appliance Database (VCSA)](https://petri.com/backup-restore-vcsa-vcenter-server-appliance-database/): Learn how to backup and restore VCSA - vCenter Server Appliance - and discover more about using the vCenter server appliance in this helpful post! - [Understanding Content Types in SharePoint 2013](https://petri.com/content-types-sharepoint-2013-overview/): Discover all about SharePoint 2013 content types, including the difference in content types, their uses, and more! - [How to Install the Active Directory PowerShell Module on a Member Server](https://petri.com/install-active-directory-powershell-module-member-server/): Learn how to install the Active Directory PowerShell module on a domain member server using Server Manager and using PowerShell in this Ask an Admin. - [Set Up Active Directory Federation Services - A Practical Example for Workplace Join](https://petri.com/set-up-active-directory-federation-services/): Learn how to set up Active Directory Federation Services (AD FS) for the purposes of allowing devices to use Workplace Join. - [Deploying a Desired State Configuration Web Host Using PowerShell](https://petri.com/deploy-desired-state-configuration-web-host-powershell/): Desired State Configuration Web Host | Learn to use a PowerShell script to deploy a Desired State Configuration (DSC) web host in this helpful guide. - [Useful Tools for Hyper-V Administrators](https://petri.com/hyper-v-tools-for-admins/): Check out these two useful, free tools for Hyper-V admins: Convert-WindowsImage and Disk2vhd. - [Is Modern PC Hardware Less Reliable Now Than Ever?](https://petri.com/pc-hardware-asus-ultrabook-unreliable/): Reliability is more important in devices where there are no user-serviceable parts. Check out this op-ed on PC hardware, the Asus Ultrabook, and reliability. - [Windows 8.1 and the MakerBot Replicator 2 Desktop 3D Printer](https://petri.com/makerbot-replicator-2-desktop-3d-printer-overview/): MakerBot Replicator 2 3D Desktop Printer makes 3D printing easy and fun. Check out our overview of MakerBot Replicator 2 3D printer and the 3D Builder app! - [How to Install vCHS Plugin for vSphere Web Client](https://petri.com/vchs-plugin-vsphere-web-client-installation/): vCHS Plugin for vSphere web client | Learn more about vCHS plugin for the vSphere web client, including installation and its uses. - [Powershell Deployment Toolkit: Introducing Variables.XML](https://petri.com/powershell-deployment-toolkit-variables-xml/): PowerShell Deployment Toolkit (PDT) | Learn to edit the Variables.XML file to quickly deploy our environments in System Center 2012 SP1/R2. - [How to Perform a Nonauthoritative Restore of Active Directory](https://petri.com/nonauthoritative-restore-active-directory/): A nonauthoritative restore of Active Directory (AD) is the default restore mode for Windows Backup and most third-party backup utilities. - [The Purpose of a Hyper-V Failover Cluster](https://petri.com/hyper-v-failover-cluster/): Hyper-V failover cluster |Discover what a failover cluster is and what role this Windows Server feature plays in enabling high availability in Hyper-V. - [The Week in IT: Target Ups Hack Numbers, Microsoft MIA at CES?](https://petri.com/it-news-target-ups-hack-numbers-microsoft-mia-at-ces/): IT news: Check out Target's IT new security woes, Microsoft's presence (or lack thereof) at CES, and the controversy over RSA's relationship with the NSA. - [VMware vCenter Operation Manager for Horizon View: Walkthrough](https://petri.com/vmware-vcenter-operation-manager-horizon-view-walkthrough/): vCenter Operation Manager for Horizon View |Got some virtual desktops to manage? Read our introduction to vCOPs for View to find out what it can do for you! - [Setup a Virtual Network in Windows Azure](https://petri.com/setup-virtual-network-windows-azure/): Create a virtual network in Windows Azure to set up a lab environment for Active Directory. Check out this easy-to-follow guide! - [How to Setup Lync Federation](https://petri.com/setup-lync-federation/): Learn to setup Lync Federation, a handy tool for keeping up external communications with businesses and colleagues. - [Restoring a File or Folder in Windows Server 2012 R2](https://petri.com/recover-file-or-folder-windows-server-backup/): Learn how to use Windows Server Backup in WS2012 R2 to restore a file or folder in this easy Ask an Admin article! - [Choosing Between VLANs or Hyper-V Network Virtualization](https://petri.com/use-vlans-or-hyper-v-network-virtualization-hnv/): Discover the pros and cons of using Hyper-V Network Virtualization (aka Windows Network Virtualization) or VLANs in Hyper-V virtualization or clouds. - [Deploying System Center Using the PowerShell Deployment Toolkit](https://petri.com/use-powershell-deployment-toolkit-deploy-system-center/): Learn how to use PowerShell Deployment Toolkit (PDT), a mandatory utility for anyone who needs to get an environment installed for System Center 2012 SP1/R2. - [Getting to Know the New vSphere Web Client](https://petri.com/vmware-vsphere-web-client-introduction/): vSphere Web Client | Check out our helpful walkthrough on VMware vSphere Web Client and how it compares to the classic vSphere client. - [Best Free Image and Video Editing Software for System Administrators](https://petri.com/best-free-image-video-editing-software-sysadmins/): Looking for free or open-source utilities to manage images and play video? Read on to discover some of the best free and open-source image and video utilities. - [Windows XP: It's Time to Say Goodbye](https://petri.com/end-of-windows-xp/): Windows XP ends its user support in April 2014. Learn why you should migrate from Windows XP to Windows 7 for a more secure computing experience. - [Back Up a Windows Server 2012 R2 Domain Controller](https://petri.com/backup-a-windows-server-2012-r2-domain-controller/): Learn how to back up a Windows Server 2012 R2 domain controller and install Windows Backup components in this new Ask an Admin. - [Configuring VM VLAN Isolation in Hyper-V](https://petri.com/configure-vm-vlan-isolation-hyper-v/): Learn to isolate virtual machines using VLANs in Hyper-V, including network configuration and VM configuration. - [Windows Azure Pack (WAP) Framework Components](https://petri.com/windows-azure-pack-wap-framework-components/): Learn more about Windows Azure Pack (WAP) and the five primary APIs that make up the WAP framework! Also learn about portals, providers, and firewalls. - [What Is on Your VMware Learning List in 2014?](https://petri.com/vmware-learning-list-2014/): Check out our VMware and virtualization to-do list for 2014, and tell us what you're planning on learning this year! - [Setup Windows Azure PowerShell Management](https://petri.com/windows-azure-powershell-management-setup/): Learn to setup Windows Azure PowerShell cmdlets to manage Azure remotely from the command line in this quick 'n' easy Ask an Admin. - [How to Export or Backup a VMware vSphere Distributed Switch (vDS) Configuration](https://petri.com/vmware-vsphere-distributed-switch-vds-configuration-export-backup/): VMware vSphere Distributed Switch (vDS) | Learn how to backup the configuration of distributed switches with vSphere and the web client. - [Setup a Windows Server 2012 R2 Domain Controller in Windows Azure: Provision a VM with a Persistent IP Address, Install AD DS](https://petri.com/build-windows-server-2012-r2-domain-controller-windows-azure-provision-a-vm-with-a-persistent-ip-address-and-install-ad-ds/): Install a WS2012 DC in a Windows Azure VM. Learn to provision a VM in Azure with a persistent IP address, & configure AD DS, & promote a server to a DC. - [Top 10 Petri IT Knowledgebase Articles of 2013](https://petri.com/top-10-petri-it-knowledgebase-articles-2013/): With 2014 just around the corner, we take a look at back at our ten most popular articles published in 2013. - [Alternatives to Microsoft Forefront Unified Access Gateway](https://petri.com/microsoft-forefront-unified-access-gateway-alternatives/): We bid adios to Microsoft Forefront UAG. Need to find a replacement? Check out our four alternative solutions! - [Review: Lenovo ThinkPad S1 Yoga](https://petri.com/lenovo-thinkpad-s1-yoga-review/): Check out the Lenovo ThinkPad S1 Yoga in this review, Lenovo's version of their critically acclaimed Yoga Ultrabook. - [The Best Windows 8.1 Business Ultrabooks](https://petri.com/best-windows-8-1-business-ultrabooks/): Check out some of the top Windows 8.1 ultrabooks for businesses! We look at some of the premium Windows 8.1 ultrabooks and break down their pros and cons. - [Setup a Windows Server 2012 R2 Domain Controller in Windows Azure: IP Addressing and Creating a Virtual Network](https://petri.com/build-windows-server-2012-r2-domain-controller-windows-azure-ip-address-virtual-network/): Install a Windows Server 2012 domain controller in a Windows Azure virtual machine. Learn to about IP addressing and create virtual networks in part 1. - [Getting to Know VMware Hands-on Labs (HOL) Online](https://petri.com/vmware-hands-on-labs-hol-online-introduction/): VMware Hands-on Labs (HOL) Online | You can now explore the amazing products from VMware with an online lab! Learn more about HOL in this overview. - [Is the Pro Edition of Windows 8 Sufficient for Your Small Business?](https://petri.com/windows-8-pro-sufficient-small-business/): Learn about the differences between the Windows 8 Pro and Enterprise editions, and whether Windows 8 Pro is sufficient for your small business. - [Netwrix Auditor 5.0 Review](https://petri.com/netwrix-auditor-5-review/): Find out how Netwrix Auditor 5.0 stacks up as an auditing solution in this review. Also learn how to create a new managed object in Netwrix Auditor! - [Performing a Hyper-V Replica Test Failover](https://petri.com/perform-hyper-v-replica-test-failover/): Learn to use test failover in Hyper-V Replica to evaluate the infrastructural elements of implementing a business continuity plan (BCP) in this handy guide! - [Backing Up Microsoft Lync Server 2013](https://petri.com/backup-microsoft-lync-server/): Backing up your Lync Server 2013 should be a given. Learn to backup your Lync Server, monitor databases, and more in this helpful guide. - [My 2014 VMware Wish List](https://petri.com/2014-vmware-wish-list/): What's on your VMware wish list? Check out what our writer wishes VMware would do in 2014. - [Installing the Remote Desktop Services role in Windows Server 2012](https://petri.com/install-remote-desktop-services-role-windows-server-2012/): Use the new Remote Desktop Services installation type in Windows Server 2012. Learn how in this easy Ask an Admin post! - [System Center Virtual Machine Manager 2012 R2: Cloud Delegations, VMs, and Templates](https://petri.com/system-center-virtual-machine-manager-2012-r2-scvmm-cloud-delegation-vms-templates/): System Center Virtual Machine Manager 2012 R2 | In part 4 of this series, learn to delegate clouds to tenants, export cloud quota details, and more! - [Hyper-V Predictions for 2014](https://petri.com/hyper-v-predictions-for-2014/): Check out out predictions for Hyper-V in 2014, including Hyper-V Network Virtualization, Windows Azure Pack, RDMA networking, and more! - [Use Managed Metadata Keywords to Improve Tagging of SharePoint Content](https://petri.com/managed-metadata-keyword-sharepoint-content/): Learn to configure the managed metadata service application in SharePoint 2013 and create enterprise keyword term sets with this helpful guide. - [Use PowerShell to Create a New Virtual Machine in Windows Azure Running Server 2012 R2](https://petri.com/create-virtual-machine-in-windows-azure-powershell/): Learn to create a VM in Windows Azure running Server 2012 R2 using the PowerShell New-AzureQuickVM command. - [Perform a Hyper-V Replica Initial Copy Via a Restore](https://petri.com/perform-hyper-v-replica-initial-copy-using-restore/): Learn how to perform the Hyper-V Replica initial copy by restoring virtual machines from backup in the secondary site. Check out this guide for more info! - [VMware in 2013: The Year in Review](https://petri.com/vmware-2013-year-in-review/): In 2013, VMware offered exciting new products, updates, and other features. Check out this list of the VMware features that have our writer paying attention. - [How to Create a New Server Group in Server Manager on Windows Server 2012](https://petri.com/create-new-server-group-in-server-manager-ws2012/): Learn how to group servers together in Server Manager for easier management in Windows Server 2012 using this easy Ask an Admin tutorial. - [System Center Virtual Machine Manager 2012: Configuring Storage](https://petri.com/system-center-virtual-machine-manager-2012-scvmm-configure-storage/): System Center Virtual Machine Manager 2012 R2 (SCVMM) | Learn to manage storage spaces and offer SMB3 shares for our hosts in part 4 of this series. - [Nokia Lumia 1020 Windows Phone Review](https://petri.com/nokia-lumia-1020-windows-phone-review/): Is the Nokia Lumia 1020 worth your time? Check out our review of the Nokia Lumia 1020 camera smartphone, running Windows Phone 8. - [Are Rackmount Servers Winning Back Enterprise Customers?](https://petri.com/are-rackmount-servers-winning-back-enterprise-customers/): Learn about the power of rackmount servers and the tech solutions that can take advantage of the flexibility of these rack servers. - [Sharing Service Applications Between SharePoint 2013 Farms](https://petri.com/share-service-applications-acrosssharepoint-2013-farms/): Learn to share service applications across SharePoint 2013 farms using PowerShell. Publish service applications from the production farm and more! - [Do You Need Antivirus on Your Servers?](https://petri.com/are-antivirus-on-yservers-necessary/): Consider putting antivirus on servers to help prevent or limit the damage caused by virus outbreaks on your network. Learn more in this post! - [Creating Polls in Microsoft Lync](https://petri.com/how-to-conduct-polls-microsoft-lync/): Conducting polls in Microsoft Lync has never been easier! Learn to create and edit a poll, as well as share and save the results, in this handy tutorial. - [The Hyper-V Virtual Switch: An Overview](https://petri.com/hyper-v-virtual-switch-overview/): Learn what role the Hyper-V virtual switch plays in networking virtual machines in this helpful introduction! - [System Center Virtual Machine Manager 2012: Creating a Clustered File Server](https://petri.com/system-center-virtual-machine-manager-scvmm-2012-create-clustered-file-server/): System Center Virtual Machine Manager 2012 R2 (SCVMM) | Learn to create a clustered file server and validate the deployment in part 3 of this series. - [Can You Rely on Microsoft Security Essentials to Protect Your Computer?](https://petri.com/does-microsoft-security-essentials-work/): Microsoft Security Essentials isn't as comprehensive as some paid products. Take a look at whether it's worth switching to a paid security solution. - [Holiday Gifts for the Microsoft Exchange Administrator](https://petri.com/holiday-gifts-for-microsoft-exchange-administrator/): Check out our great gift ideas for the Microsoft Exchange admin on your list. - [How Tech Is Revolutionizing Direct-Attached Storage (DAS)](https://petri.com/direct-attached-storage-das-overview-options/): Looking for DAS options? With more workloads being virtualized, teams are looking for faster, cost-effective ways to meet demands. Learn more in this guide! - [Configure a Trust Relationship Between Two SharePoint 2013 Farms](https://petri.com/configure-trust-relationship-between-sharepoint-2013-farms/): Learn to create a trust relationship between SharePoint 2013 farms in this tutorial! Also learn to setup SharePoint servers for remote PowerShell connections. - [System Center Virtual Machine Manager SoFS: Configuring the Fabric](https://petri.com/system-center-virtual-machine-manager-scvmm-2012-configure-fabric/): System Center Virtual Machine Manager 2012 R2 (SCVMM) | Learn more about VMM and configuring fabric in a Scale-Out File Server (SoFS) lab in part 2. - [Perform a Hyper-V Replica Initial Copy Using External Media](https://petri.com/perform-hyper-v-replica-initial-copy-using-external-media/): Find out how to perform the initial copy of a Hyper-V Replica with external media and removable storage, including enabling Bitlocker to Go. - [Holiday Gift Ideas for IT Professionals](https://petri.com/holiday-gift-ideas-for-it-professionals/): Read on for gift suggestions for the sysadmin on your holiday shopping list this year! - [How to Enable SSH Warnings on ESXi Hosts](https://petri.com/enable-ssh-warning-on-esxi-hosts/): Need to enable SSH on your ESXi hosts? Check out this walkthrough on how to disable the annoying warning message. - [How to Shadow a Remote Desktop session in Windows Server 2012 R2](https://petri.com/shadow-remote-desktop-session-in-windows-server-2012-r2/): Remote Desktop shadowing makes a reappearance in Windows Server 2012 R2. Learn how to shadow RDS in WS2012 R2 in this Ask an Admin! - [Creating VMware Snapshots with PowerCLI](https://petri.com/use-powercli-create-snapshot/): Learn to create, automate, and manage multiple snapshots with a single PowerCLI command! It's all in this helpful tutorial. - [Perform a Hyper-V Replica Initial Copy Via the Network](https://petri.com/perform-hyper-v-replica-initial-copy-over-network/): Learn about performing the initial copy of a Hyper-V Replica-protected VM over the network, and the benefits and potential issues of this method. - [System Center Virtual Machine Manager SoFS: Building a Virtual SoFS Lab](https://petri.com/system-center-virtual-machine-manager-scvmm-build-virtual-sofs-lab/): System Center Virtual Machine Manager 2012 R2 (SCVMM) | Learn to build a virtual Scale-Out File Server (SoFS) lab in part one of a new series. - [Challenges Facing the Next Generation of IT Pros](https://petri.com/it-pros-need-training/): Looking for young IT pros? You're not alone. Find out the reasons for the lack of new IT pros in the field, and why training still matters. - [VMware Event Logs and PowerCLI](https://petri.com/vmware-event-logs-powercli/): Discover how to retrieve event log information from your VMware servers using PowerCLI. - [The Importance of a Home Lab to the IT Professional](https://petri.com/home-lab-it-professional/): Why have a home lab for your IT work? Discover whether you should be maintaining a home computer lab to keep your tech skills sharp. - [How to Quickly Configure a Kiosk PC Using Windows 8.1 Assigned Access](https://petri.com/configure-kiosk-pc-with-windows-8-1-assigned-access/): Learn to use Assigned Access to to create a kiosk PC in Windows 8.1 with this helpful Ask an Admin article! - [System Center Virtual Machine Manager 2012 R2: Migrating Tenants and Clouds](https://petri.com/system-center-virtual-machine-manager-scvmm-2012-r2-migrate-tenants-clouds/): System Center Virtual Machine Manager 2012 R2 | Discover how to migrate tenants and clouds in part four of this multi-part series on SCVMM 2012 R2. - [Designing a Hyper-V Virtual Machine](https://petri.com/configure-hyper-v-virtual-machine/): Learn about designing and configuring a virtual machine on Hyper-V to run an operating system or service, including concepts and specifications. - [Enable RemoteApp Capability in Windows XP SP3](https://petri.com/enable-remoteapp-windows-xp-sp3/): Learn to enable the RemoteApp capability in Windows XP SP3 and replicate a Windows XP Mode feature using Windows 8 client Hyper-V. - [System Center Virtual Machine Manager 2012 R2: Migrating Hosts and Libraries](https://petri.com/system-center-virtual-machine-manager-2012-r2-scvmm-migrate-host-library/): Discover how to migrate hosts and libraries in System Center Virtual Machine Manager 2012 R2 in part three of this multi-part series on SCVMM 2012 R2. - [Modifying a VM with PowerCLI](https://petri.com/use-powercli-modify-virtual-machine/): Using PowerCLI to modify a virtual machine is a snap! Learn more about managing a VMware infrastructure in this helpful how-to guide. - [Redirected I/O in Windows Server 2012/R2 Cluster Shared Volumes](https://petri.com/redirected-io-windows-server-2012r2-cluster-shared-volumes/): Learn how redirected I/O has changed in Windows Server 2012 (WS2012) and Windows Server 2012 R2 (WS2012 R2), and how to control which networks it uses. - [How to Install Windows Server 2012 R2](https://petri.com/install-windows-server-2012-r2/): Learn how to install Windows Server 2012 R2 in this short 'n easy Ask an Admin article. - [Managing Service Instances on SharePoint 2013](https://petri.com/manage-service-instances-sharepoint-2013/): Learn about service instances in SharePoint 2013 in this overview, including how to turn them on and off through Central Administration and PowerShell. - [How to Estimate VMware vSphere Replication Traffic](https://petri.com/estimate-vsphere-replication-traffic/): Learn how to estimate and plan for vSphere Replication traffic, including using the vSphere Replication Capacity Planning Appliance fling. - [Managing VMware with CIM and PowerShell](https://petri.com/manage-vmware-cim-powershell/): Learn how to manage your VMware servers using CIM and PowerShell in this tutorial! Connect using the WSMan protocol and more. - [Upgrading to System Center Virtual Machine Manager 2012 R2](https://petri.com/upgrade-to-system-center-virtual-machine-manager-scvmm-2012-r2/): Getting ready to upgrade to System Center Virtual Machine Manager 2012 R2? Learn about the challenges and solutions you may find in upgrading to SCVMM. - [Options for Upgrading Standalone Hosts to Windows Server 2012 R2 Hyper-V](https://petri.com/upgrading-standalone-hosts-to-windows-server-2012-r2-hyper-v/): Learn how to upgrade a non-clustered or standalone Hyper-V host to Windows Server 2012 R2 or WS2012 R2 Hyper-V with this easy overview. - [Successful PlayStation 4 and Xbox One Launches Marred by Glitches](https://petri.com/playstation-4-xbox-one-launch-glitches/): PlayStation 4 and Xbox One have some glitches – but will that impact sales? Discover what problems gamers have uncovered in these hot new consoles. - [How to Check for Missing Updates in Windows Server 2012 R2 and Windows 8.1](https://petri.com/microsoft-baseline-security-analyzer-missing-updates-windows-server-2012-r2/): Learn to use Microsoft Baseline Security Analyzer 2.3 (MBSA) to scan Windows Server 2012 R2 and Windows 8.1 PCs for missing security updates in this article! - [LSA Protected Mode Troubleshooting Tips for Windows Server 2012 R2 and Windows 8.1](https://petri.com/lsa-protected-mode-troubleshooting-tips-server-2012-r2-windows-8-1/): LSA Protected Mode | Learn to enable auditing for drivers or plug-ins that fail to load when LSA protected mode is on in Windows Server 2012 R2 or Windows 8.1. - [Server-Side Caching: Virtualization's Hot New Technology](https://petri.com/server-side-virtualization-new-technology/): Server-side caching | Find out how this hot new technology segment in virtualization might be able to help your storage and performance issues. - [Cisco USB Console Connection Setup](https://petri.com/cisco-usb-console-connection-setup/): Install and setup the Cisco USB console driver on your PC to configure or troubleshoot your Cisco devices. Learn how in this helpful article! - [Managing VMware Tools with PowerCLI](https://petri.com/manage-vmware-tools-powercli/): Learn to manage VMware tools using PowerCLI to easily update all your client tools at once. Read on for more! - [Migrating to System Center Virtual Machine Manager 2012 R2](https://petri.com/migrate-to-system-center-virtual-machine-manager-scvmm-2012-r2/): System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 r2) | Discover the steps in migrating to SCVMM 2012 r2 in this detailed walkthrough. - [Introducing Hyper-V Server 2012 R2](https://petri.com/hyper-v-server-2012-r2-introduction/): Hyper-V Server 2012 R2 | Learn more about the latest version of Hyper-V Server and what it can do for you! Includes licensing and download links. - [Enabling Secure Boot in Windows 8 and Windows Server 2012](https://petri.com/enable-secure-boot-windows-8-server-2012/): Learn how to confirm that Secure Boot is enabled on a Windows 8 or Windows Server 2012 computer with UEFI – all in this quick Ask an Admin article! - [Virtual Desktop Infrastructure (VDI) and Automated Storage Tiering](https://petri.com/virtual-desktop-infrastructure-vdi-storage-guide/): Virtual Desktop Infrastructure (VDI) | There's many storage options available for virtualization. Discover what to consider when storage shopping! - [Customizing the Start Screen in Windows 8 and Windows Server 2012](https://petri.com/customize-start-screen-windows-8-and-server-2012/): Learn to customize Start screen layout in Windows 8 and Windows Server 2012 using PowerShell. It's all in this quick 'n easy Ask an Admin! - [Fixing Microsoft: Missteps and Solutions](https://petri.com/how-to-fix-microsoft/): We know Microsoft's mistakes, but what are some solutions? Check out part 3 in this op-ed series, in which we propose ways Microsoft can get back on track. - [ESX the PowerShell Way with Get-ESXCli](https://petri.com/esx-powershell-get-esxcli/): Learn to use Get-ESXCli to pull information about your VMware environment in this introductory guide. - [How to Use VMware Unity Touch on iPad](https://petri.com/how-to-use-vmware-unity-touch-ipad/): VMware Unity Touch was created to better the user experience on tablets for VMware View. Check out this brief walkthrough on how to use Unity Touch! - [Why You Should Join the VMware User Group (VMUG)](https://petri.com/vmware-user-group-vmug-introduction/): VMUG meetings are a way for VMware customers, vendors, and employees to connect and troubleshoot. Find out more about VMUG in this article. - [Configure Advanced Security Scenarios in Windows Server 2012](https://petri.com/advanced-security-scenario-windows-server-2012/): Learn more about advanced security scenarios in Windows Server 2012, and how permissions configuration has been simplified for advanced security scenarios. - [What Went Wrong At Microsoft: Surface and Marketing Mishaps](https://petri.com/microsoft-mistakes-surface-marketing/): Discover how Microsoft messed up its marketing in part two of this op-ed series, including the Surface, Metro, and Xbox One. - [Configuring Basic DNS Records in Windows Server 2008 R2 and 2012](https://petri.com/configure-basic-dns-records-windows-server-2008-r2-and-2012/): Learn to configure DNS records in Windows Server 2008 R2 and Windows Server 2012 and about basic DNS record types, all in this tutorial! - [How to Install Windows 8.1 RTM Using a Windows 8 Product Key](https://petri.com/install-windows-8-1-rtm-using-windows-8-product-key/): Install or upgrade to Windows 8.1 with a Windows 8 product key in this article. Disable the initial product key check in the Windows 8.1 RTM installer! - [How to Setup and Configure Visio Graphics Service in SharePoint 2013](https://petri.com/setup-configure-visio-graphics-service-sharepoint-2013/): Visio Graphics Service | Discover how to setup and configure Visio Graphics Service in this guide, including creating a new application pool and more! - [Dynamic Access Control: Cross-Forest Access Control](https://petri.com/dynamic-access-control-dac-cross-forest-access-control/): Dynamic Access Control (DAC) | Learn how to configure cross-forest DAC and create claim transformation policies in Windows Server 2012 in pt 4 of our series. - [Distributing Cumulative Update 3 for System Center Configuration Manager (SCCM) 2012 SP1](https://petri.com/distribute-cumulative-update-3-system-center-configuration-manager-sccm-2012-sp1/): Learn to distribute and deploy Cumulative Update 3 for System Center Configuration Manager (SCCM) 2012 SP1 in this handy guide. - [Managing SharePoint 2013 with PowerShell: Working with Alternate Access Mappings](https://petri.com/manage-alternate-access-mapping-in-sharepoint-2013-powershell/): Learn to manage Alternate Access Mappings in SharePoint 2013 using PowerShell to create, modify, and remove AAM with the help of this guide. - [What Went Wrong At Microsoft](https://petri.com/microsoft-mistakes-windows-8-phone/): Did Microsoft's recent fumblings contribute to CEO Steve Ballmer's upcoming departure? Learn how Microsoft dropped the ball in pt. 1 of a 3-part op-ed series. - [Best Free Disk Management Software for System Administrators](https://petri.com/best-free-disk-management-software/): Need a good free or open source disk management utility? Check out our list of the most popular ones as part of our ongoing free tools directory. - [Dynamic Access Control: Configure and Deploy Central Access Policy, Configure File Server](https://petri.com/dynamic-access-control-dac-configure-deploy-central-access-policy/): Dynamic Access Control (DAC) | Configure and deploy Central Access Policy rules, policies. Learn to configure a Windows Server 2012 files server to use DAC. - [Configuring Forward and Reverse Lookup Zones in Windows Server 2008 R2 and 2012](https://petri.com/configure-forward-reverse-lookup-zones-in-windows-server-2008-r2-2012/): Learn to create forward and reverse lookup zones in Windows Server 2008 R2 and WS2012 with the help of this detailed walkthrough. - [Applying Cumulative Updates for System Center Configuration Manager 2012 SP1](https://petri.com/cumulative-update-3-system-center-configuration-manager-sccm-2012-sp1/): Discover how to apply Cumulative Update 3 for System Center Configuration Manager (SCCM) 2012 SP1, including deployment points and clients. - [Managing SharePoint 2013 with PowerShell: Working with Timer Jobs](https://petri.com/manage-timer-jobs-sharepoint-2013-with-powershell/): Discover how to manage a SharePoint 2013 timer job using PowerShell to view, modify, and run timer jobs. It's all in this easy-to-follow guide! - [Use Cross-Version Live Migration to Upgrade to Windows Server 2012 R2 Hyper-V](https://petri.com/cross-version-live-migration-upgrade-windows-server-2012-r2-hyper-v/): Learn to use cross-version live migration to upgrade to Windows Server 2012 R2 Hyper-V with the help of this guide. - [Installing the DNS Server Role on Windows Server 2012](https://petri.com/install-dns-server-role-on-windows-server-2012/): Discover how to install the DNS server role in Windows Server 2012 (Standard Edition) in this easy-to-follow tutorial. - [How to Create a Fenced vApp in vCloud Director](https://petri.com/create-fenced-vapp-vcloud-director/): Learn to create a fenced vApp in vCloud Director to deploy multiple copies of any application for testing or training. Take a look at our handy guide! - [Dynamic Access Control: Kerberos, Claim Types, and Resource Properties](https://petri.com/dynamic-access-control-dac-kerberos-claim-types-resource-properties/): Dynamic Access Control (DAC) | Learn to enable claims support for DAC in Windows Server 2012 and create claim types and resource properties. Pt 2 of a series. - [Designing a Non-Clustered Hyper-V Host](https://petri.com/design-standalone-hyper-v-host/): Discover what it takes to design a standalone Hyper-V host (AKA non-clustered host) in this article, including disk and RAM requirements. - [Best Free Automation Software for System Administrators](https://petri.com/free-automation-software-system-administrators/): Take a look at this list of free automation tools to help automate mundane IT tasks! - [Windows Azure Pack Framework Explained](https://petri.com/window-azure-pack-framework-introduction/): Windows Azure Pack (WAP) Framework | Learn more about WAP framework, including its components and extensions, in part three of a series. - [Best Free Tools for System Administrators](https://petri.com/best-free-tools-for-system-administrators/): Looking for a good free utility to help with an irksome IT task? Check out our ever-growing directory of free tools and services for IT professionals. - [Enable BitLocker on a System Drive Without TPM in Windows 8 and Server 2012](https://petri.com/enable-bitlockerwithout-tpm-windows-8-and-windows-server-2012/): Discover how to enable BitLocker without TPM to change local policy so that BitLocker can be used on a system volume in Windows 8 and Server 2012. - [Installing the DNS Server Role on Windows Server 2008 R2](https://petri.com/install-dns-server-role-windows-server-2008-r2/): Installing the DNS server role in Windows Server 2008 R2 is an even better idea now with Active Directory. Learn how in part 1 of a new series! - [Dynamic Access Control: Introduction to the Technology and Components](https://petri.com/dynamic-access-control-dac-introduction/): Discover how Dynamic Access Control (DAC) can improve compliance and file server security management in Windows Server 2012 – pt. 1 of a new series! - [How to Create a Multi VM vApp in vCloud Director](https://petri.com/make-multi-vm-vapp-vcloud-director/): Discover how to make a multi VM vApp in vCloud Director with the help of this handy how-to guide! - [Enable LSA Protection in Windows Server 2012 R2 and Windows 8.1](https://petri.com/enable-lsa-protection-windows-8-1-server-2012-r2/): Learn how to enable LSA protection and protect against Pass the Hash attacks in Windows Server 2012 R2 and Windows 8.1. - [Enabling Hyper-V Extended Replication](https://petri.com/enabl-hyper-v-extended-replication/): Extended Replication | Learn how to enable Hyper-V Replica Extended Replication, a new feature in Windows Server 2012 R2 (WS2012 R2). - [Remote Network Access: Enabling Network Access Protection](https://petri.com/remote-network-access-enabling-network-access-protection/): Remote Network Access | In part 6 of our series, learn how to reconfigure the NPS policies for our SSTP connections, and enable them to require NAP details. - [5 Top iOS Note-Taking Apps for System Administrators](https://petri.com/best-ios-note-taking-apps-for-sysadmins/): What iOS note-taking apps do we recommend for sysadmins? Read our list of the top 5 apps to find out! - [Easily Change Windows 8.1 Edition Without Reinstalling](https://petri.com/change-windows-8-1-edition-without-reinstalling/): Change Windows versions without a reinstall! Just grab your product key, Windows Anytime Upgrade, and go. Learn more in this guide! - [Disabling Access to Removable Storage in Windows 7, Windows Server 2008 R2, and Later](https://petri.com/disable-access-to-removable-storage-in-windows/): Learn how to block all access to removable storage, such as USB drives, in Windows 7 and Windows Server 2008 R2 (or later), to help reduce security risks. - [Configure the Default Location of a User Profile in Windows 8.1](https://petri.com/configure-default-location-of-user-profile-windows-8-1/): Learn to configure the default location of a user profile in Windows 8.1 (and other versions of Windows) in this helpful guide. - [Remote Network Access: Health Validation](https://petri.com/remote-network-access-health-validation/): Remote Network Access | In pt. 5 of our series, install and configure Health Registration Authority (HRA) and configure health policies. - [Preparing Host Clusters For Hyper-V Replica](https://petri.com/use-hyper-v-replica-broker-prepare-host-clusters/): Hyper-V Replica | Learn how to add and configure Hyper-V Replica Broker to prepare host clusters for Hyper-V in this tutorial. - [Managing SharePoint 2013 with PowerShell: Creating the Search Application](https://petri.com/create-sharepoint-2013-search-application-with-powershell/): Discover how to create a SharePoint 2013 search service application and create a search topology in this easy-to-follow tutorial. - [PowerShell Remoting: How to Restrict User Commands](https://petri.com/powershell-remoting-restricting-user-commands/): Learn how to restrict the commands that users can run over a remote PowerShell session in this Ask an Admin article. - [Moving Testing to the Cloud: A Look at Windows Azure and CloudShare](https://petri.com/move-testing-to-cloud-windows-azure-cloudshare/): Create test labs in the cloud! Learn about some of the advantages of moving your testing to the cloud with services like Windows Azure and CloudShare. - [3 Types of Failover in Hyper-V Replica](https://petri.com/types-of-failover-hyper-v-replica/): Learn about the three types of failover in Hyper-V Replica, including when to use them, in this Ask an Admin. - [Remote Network Access: Health Certificates](https://petri.com/remote-network-access-health-certificates/): Remote Network Access | In pt. 4 of our series, learn to create and publish health certificate templates, work with Network Policy Server (NPS), and more! - [Microsoft Stumbles with Windows 8.1, Internet Explorer 11 Updates](https://petri.com/windows-8-1-update-internet-explorer-11-frustration/): Glitches abound in Microsoft's Windows 8.1 and Internet Explorer 11 updates. Learn of the teething troubles users might experience when upgrading. - [Use Hyper-V Replica Over HTTPS/SSL: Configuring Certificates](https://petri.com/use-hyper-v-replica-over-https-ssl-configure-certificates/): Hyper-V Replica | Learn about Hyper-V Replica certificate requirements, how to choose a certificate, and how to enable per-VM replication in this guide. - [How to Upgrade to Windows 8.1 Without Using the Windows Store](https://petri.com/upgrade-to-windows-8-1-without-windows-store/): Upgrade to Windows 8.1 | Skip the Windows Store! Learn how to download the Windows 8.1 RTM bits with a Windows 8 product key in this easy how-to article. - [Repair Disk Errors in Windows 8 and Windows Server 2012](https://petri.com/fix-disk-errors-windows-8-and-windows-server-2012/): Fix disk errors in Windows 8 | Got corrupted disks? Learn to force a spotfix offline repair using chkdsk in Windows Server 2012 and Windows 8. - [How to Expand WSUS Updates: Approving Updates](https://petri.com/expand-wsus-updates-approve-updates/): Expand WSUS Updates | In part 3 of our series on getting more from your WSUS updates, learn how to approve and validate updates. - [What’s New for Group Policy in Windows 8.1](https://petri.com/group-policy-in-windows-8-1-new-features/): Group Policy in Windows 8.1 | Learn about the interesting Group Policy changes that come with the release of Windows 8.1 and Server 2012 R2. - [5 Reasons Why VMware Is Here to Stay](https://petri.com/five-reasons-why-vmware-is-here-to-stay/): VMware has proven itself a worthy adversary in the virtualization game. Find out whether we think VMware will hold its own vs. Microsoft and others. - [VMworld 2013 Europe: VMware Updates Horizon Suite, Acquires Desktone](https://petri.com/vmworld-2013-europe-vmware-updates-horizon-suite/): Check out the latest news from VMworld 2013, including VMware Horizon View Updates, Desktone acquisition, and more! - [VMware Storage Integration Explained](https://petri.com/vmware-storage-integration-types/): Discover what types of storage integrations are available with VMware, including vSphere API for Array Integration (VAAI), and more! - [Using the Resilient File System (ReFS) in Windows Server 2012](https://petri.com/resilient-file-system-refs-windows-server-2012-overview/): ReFS in Windows Server 2012 | Check out our pros and cons of Resilient File System (ReFS), Microsoft's new file system, before deployment in production. - [Clean Up Disk Space After Upgrading to Windows 8.1](https://petri.com/free-up-disk-space-after-windows-upgrade/): Recover disk space after a Windows upgrade! Learn how to delete the windows.old folder and remove previous installations in this handy tutorial. - [How to Expand WSUS Updates: System Center Update Publisher (SCUP)](https://petri.com/expand-wsus-updates-system-center-updates-publisher-scup/): Expand WSUS Updates | Learn how to install, configure, and publish updates for System Center Updates Publisher (SCUP) in part 2 of this series. - [Understanding Hyper-V Replica](https://petri.com/hyper-v-replica-overview/): Meet Hyper-V Replica, Microsoft’s disaster recovery solution for their virtualization platform. Learn more in this overview! - [Improving Virtual CPU Performance](https://petri.com/improve-cpu-performance-vmware-virtual-machine/): Increase CPU performance in VMware | Experiencing poor vCPU performance due to over committing resources? Read on to learn about managing VMware CPU resources. - [How to Host Multiple SSL Sites on a Server with One IP Address and Port](https://petri.com/host-multiple-ssl-sites-with-one-ip-address-port/): Discover how to host multiple SSL websites on IIS8 when there is only a single IP address and port. It's all in this easy Ask an Admin article. - [How to Integrate Microsoft Lync 2010 with BlackBerry Enterprise Server (BES)](https://petri.com/integrate-lync-2010-blackberry-exchange-server-bes/): Integrate the Microsoft Lync 2010 IM feature with BlackBerry Enterprise Server (BES) with the help of this handy tutorial. - [How to Expand WSUS Updates: Code Signing Certificate](https://petri.com/how-to-expand-wsus-updates-code-signing-certificate/): Expand WSUS Updates | In part 1 of this new series on Windows Server Update Services (WSUS), learn to prepare the code signing certificate. - [Understanding Disaster Recovery](https://petri.com/disaster-recovery-planning-overview/): Disaster Recovery (DR) Planning | Are you prepared? Find out why you should be ready for an IT disaster at all times, and the differences between backup and DR. - [How to Save Your Skype Video Messages](https://petri.com/save-skype-video-messages/): Save Skype video messages with the the help of this tutorial! We'll show you how to keep your important video messages received over Skype. - [Interview: Microsoft's Elden Christensen Discusses Windows Server 2012 R2 Storage Features](https://petri.com/elden-christensen-windows-server-2012-r2-storage-features-interview/): Curious about Windows Server 2012 R2 storage features? Read our interview with Microsoft Principal Program Manager Elden Christensen about storage and more. - [How to Connect to a Windows 8.1 or Server 2012 R2 Remote Desktop Using Restricted Admin Mode](https://petri.com/use-restricted-admin-mode-to-connect-windows-8-1-server-2012-r2-remote-desktop/): Learn to use Restricted Admin mode to connect a remote desktop in Windows 8.1 and Server 2012 R2. Improve security with this helpful guide. - [VMware VCAP-DTD Exam: What to Expect](https://petri.com/vmware-vcap-dtd-exam-tips/): VCAP-DTD Exam | Taking VMware's VCAP-DTD? Learn what to expect when taking the exam in this helpful article. - [Hyper-V Hardware Offloads for Networking](https://petri.com/hyper-v-hardware-offloads-networking/): Windows Server and Hyper-V include support for hardware offloads to improve networking performance. Learn more about hardware offloading in this guide. - [Remote Network Access: Configuring an SSTP Client](https://petri.com/remote-network-access-configure-sstp-client/): Remote Network Access | In part 3 of our series on Remote Network Access, learn to learn to manually configure an SSTP client and configure the VPN profile. - [How to Configure VMware Storage I/O Control (SIOC)](https://petri.com/configure-vmware-vsphere-storage-io-control-sioc/): vSphere Storage I/O Control (SIOC) | Have you setup VMware SIOC yet? Read this post to find out how SIOC can solve common storage problems. - [Use Active Directory Administrative Center to Create PowerShell Commands in Windows Server 2012](https://petri.com/use-active-directory-administrative-center-create-powershell-commands/): Active Directory Administrative Center (ADAC) | Create PowerShell commands with the history viewer in ADAC in Windows Server 2012. Learn how in this article! - [Microsoft Touts Fall Enterprise Push, Unveils Remote Desktop Apps for iOS and Android](https://petri.com/microsoft-launches-remote-desktop-ios-android-apps/): Discover what Microsoft's Satya Nadella has to say about cloud strategy, the fall enterprise application push, and new remote desktop apps for iOS and Android. - [Remote Network Access: Deploying an SSTP Server](https://petri.com/remote-network-access-deploy-sstp-server/): Remote Network Access | In part 2 of our series, learn to install and configure SSTP servers to support and implement clients' VPN connections. - [Basic Hyper-V Replica Configuration Between Non-Clustered Hosts](https://petri.com/basic-hyper-v-replica-configuration-between-non-clustered-hosts/): Hyper-V Replica | Copy a VM using Hyper-V Replica with Windows Server 2012 or WS2012 R2 (includes Hyper-V Server). - [Getting Started with PowerCLI: Managing ISO Files](https://petri.com/vsphere-powercli-manage-iso-files/): VMware vSphere PowerCLI | Manage ISO files with PowerShell! Learn to copy and mount ISO files in part 6 of this multi-part series. - [Overlooked Features in Window Server 2008 R2](https://petri.com/window-server-2008-r2-overlooked-features/): Discover what Windows Server 2008 R2 features are often forgotten – and why they deserve a second look. - [Getting Started with PowerCLI: Creating a Virtual Machine](https://petri.com/vsphere-powercli-create-virtual-machine/): VMware vSphere PowerCLI | Learn how best to create a new virtual machine from the command line in part 5 of this multi-part series! - [Using Windows 8.1 with the Microsoft Upgrade Assistant](https://petri.com/using-windows-8-1-with-upgrade-assistant/): Upgrade to Windows 8.1 using Microsoft Upgrade Assitant! It's easy with the help of this step-by-step tutorial. - [Using DHCP Policy-Based Assignment in Windows Server 2012](https://petri.com/dhcp-policy-based-assignment-windows-server-2012/): DHCP Policy-Based Assignment (PBA) | Configure DHCP policy and learn to assign specific IP addresses from a range of options to groups of devices in WS2012. - [Remote Network Access: Objectives and Architecture](https://petri.com/remote-network-access-objectives/): Remote Network Access | Discover what architecture/servers are used in pt. 1 of this new miniseries on deploying a Remote Network Access solution. - [Is Microsoft Releasing New Versions of Software Too Quickly?](https://petri.com/microsoft-rapid-release/): Microsoft Rapid Release Cadence | Is Microsoft releasing new versions of their software too quickly? Check out what our writer has to say about it! - [Why RTM Is No Longer a Green Light to Install Windows](https://petri.com/windows-8-1-rtm-not-worth-it/): Windows 8.1 RTM | Learn why we think it's best to wait for Windows 8.1 RTC before upgrading your Windows 8 and Server 2012 systems. - [Not All of vCenter Operations Manager Is Created Equal](https://petri.com/vcenter-operations-manager-vcop-pros-cons/): vCenter Operations Manager (vCOPS) | Read why we think this powerful tool could still use some improvement. - [Microsoft's Jeffrey Snover Discusses Windows Server 2012 R2, Microsoft's Cloud Strategy, PowerShell](https://petri.com/jeffrey-snover-windows-server-2012-r2-microsoft-cloud/): Uncover what Microsoft's Jeffery Snover has to say about WS2012 R2, PowerShell, and Microsoft's '3 cloud' strategy in this wide-ranging interview. - [System Center 2012 SP1 - Orchestrator: Disk Maintenance and Runbooks](https://petri.com/system-center-2012-sp1-orchestrator-disk-maintenance-runbooks/): System Center 2012 SP1 - Orchestrator | Learn to use Orchestrator's disk maintenance capabilities with runbooks and PowerShell in part 2 of this handy series! - [Upgrading to Windows 8.1 from Windows 8](https://petri.com/upgrade-to-windows-8-1/): Want Windows 8.1? Discover how to upgrade to Windows 8.1 from Windows 8 using this easy step-by-step tutorial. - [Configuring Cluster-Aware Updating in Windows Server 2012](https://petri.com/configure-cluster-aware-updating-windows-server-2012/): Cluster-Aware Updating | Learn to configure Cluster-Aware Updating (CAU) in Windows Server 2012 in this how-to article, including prerequisites and pre-staging! - [Three Mistakes that are Hurting Microsoft's Mobile Efforts](https://petri.com/three-mistakes-that-are-hurting-microsofts-mobile-efforts/): Microsoft has released details of the new Surface 2 and Surface Pro 2 tablets. Will these new devices offer enough to reverse Microsoft's mobile fortunes? - [Getting Started with vSphere PowerCLI: PSDrives](https://petri.com/vsphere-powercli-psdrives/): VMware vSphere PowerCLI | Learn how best to use PSDrives in vSphere PowerCLI in part 4 of this multi-part series! - [Top 5 Features of VMware vSphere 5.5](https://petri.com/vmware-vsphere-5-5-top-features/): Check out our top 5 features in vSphere 5.5, including VMware SSO updates, VM latency sensitivity, and expanded vGPU support. - [Making a Windows Server 2012 Domain Controller a Global Catalog Server](https://petri.com/make-windows-server-2012-domain-controller-a-global-catalog/): Learn to promote a Windows Server 2012 domain controller as a global catalog server using Active Directory Site and Services in this Ask an Admin article! - [Using System Center 2012 SP1 Orchestrator for Log and Disk Maintenance](https://petri.com/system-center-2012-sp1-orchestrator-disk-maintenance/): System Center 2012 SP1 - Orchestrator | Learn more about Orchestrator's disk maintenance capabilities, including making a storage maintenance plan. - [Sample Converged Network Designs for Hyper-V Hosts](https://petri.com/converged-network-designs-hyper-v-hosts-example/): Converged Network Designs for Hyper-V Hosts | Check out these scenarios that will help you design converged network implementations in Hyper-V hosts. - [Getting Started with PowerCLI: Start and Shutdown Virtual Machines](https://petri.com/vsphere-powercli-start-shutdown-vm/): VMware vSphere PowerCLI | Learn to start and shutdown virtual machines with vSphere PowerCLI in part 3 of this multi-part series! - [Is VMware Horizon Workspace Maturing Fast Enough?](https://petri.com/vmware-horizon-workspace-slow-progression/): Learn why our writer thinks VMware needs to push Horizon Workspace even harder to make their updates worthwhile. - [Restrict Access to the Windows Store in Windows 8 and Server 2012](https://petri.com/manage-access-windows-store-in-windows-8-server-2012/): Learn how to restrict user access to the Windows Store in Windows 8 and Windows Server 2012 using Group Policy. Just follows these easy steps! - [Managing IIS with PowerShell: Creating New Sites](https://petri.com/enable-iis-remote-management-powershell-create-new-sites/): Enabling IIS Remote Management with PowerShell | In part 2 of our series, learn to manage IIS remotely using PowerShell, and speed up IIS site creation. - [How to Design Converged Networks](https://petri.com/design-converged-networks/): Discover how to design converged networks in WS2012 and WS2012 R2! Learn what's necessary in physical storage and bandwidth, and how to start drawing designs. - [System Center 2012 SP1 - Orchestrator: Sample Runbook Restrictions](https://petri.com/system-center-2012-sp1-orchestrator-sample-runbook-restriction/): System Center 2012 SP1 - Orchestrator | Learn to create sample runbook restrictions that restrict users' access to services in part 3 of this series. - [Getting Started with PowerCLI: Setup and Configuration](https://petri.com/vsphere-powercli-setup-configuration/): VMware vSphere PowerCLI | Learn to setup and configure vSphere PowerCLI, VMware's PowerShell management solution, in part 2 of this series! - [VMworld 2013: 7 Virtualization Vendors to Watch](https://petri.com/vmworld-2013-virtualization-vendors-to-watch/): Check out 7 of the hottest vendors and products at VMworld 2013. We walked the show floor and polled VMware experts to highlight the best ones. - [Administering IIS with PowerShell: Creating an Application Pool](https://petri.com/enable-iis-remote-management-powershell-create-application-pool/): Learn how to enable IIS remote management using PowerShell! In part 1 of a new series, discover how to create application pools. - [Getting Effective Audit Policy Settings in Windows Server 2012](https://petri.com/get-effective-audit-policy-settings-windows-server-2012/): In this Ask an Admin, discover how to use auditpol to get effective audit policy settings in Windows Server 2012! - [How to Install and Run VisualEsxtop Fling from VMware Labs](https://petri.com/install-run-vmware-visualesxtop-fling/): VMware VisualEsxtop Fling | Learn about about one of the latest tools to come out of the VMware labs: VisualEsxTop, a handy troubleshooting tool. - [Mount a VHD or ISO File in Windows Server 2012 and Windows 8](https://petri.com/mount-vhd-iso-file-windows-server-2012/): Discover how to mount an ISO or Virtual Hard Disk in Windows 8 and Windows Server 2012 in this easy Ask an Admin article! - [System Center 2012 SP1 - Orchestrator: Sample Runbook Publishing](https://petri.com/system-center-2012-sp1-orchestrator-sample-runbook-publishing/): System Center 2012 SP1 - Orchestrator | In this tutorial, learn about sample runbook publishing so that it can be used by HR and take advantage of automation. - [Single Sign-On (SSO) Improvements in vSphere 5.5](https://petri.com/vsphere-5-5-single-sign-on-sso-improvements/): vSphere 5.5 and Single Sign-On Improvements | In this article, check out VMware's big improvements in SSO and the updated vSphere 5.5. - [How to Lock Down a Remote PowerShell with a Constrained Endpoint](https://petri.com/configure-constrained-endpoints-remote-powershell-access/): Learn how to configure constrained endpoints in PowerShell 3.0 so that standard users can connect remotely to servers. - [Creating Converged Networks Using Virtual NICs](https://petri.com/create-converged-network-virtual-nic/): Learn to create a converged network with a virtual NIC in the management OS of a Hyper-V host in this quick 'n easy guide! - [Maximize Hyper-V Live Migration with 10GbE Network Bandwidth](https://petri.com/maximize-hyper-v-live-migration-with-10gbe-network-bandwidth/): Learn to maximize a 10GbE network bandwidth to make the most of your Hyper-V Live Migration - [System Center 2012 SP1 - Orchestrator: Sample Runbook Creation](https://petri.com/system-center-2012-sp1-orchestrator-sample-runbook-creation/): System Center 2012 SP1 - Orchestrator | Create a sample runbook, a new user account, and add it into a specific group with the help of this tutorial. - [Getting Started with vSphere PowerCLI](https://petri.com/vmware-vsphere-powercli-getting-started/): Learn to download and install vSphere PowerCLI, VMware's PowerShell indispensible management solution, in part 1 of this multi-part series! - [Is Apple Envy Derailing Microsoft's Smartphone Efforts?](https://petri.com/apple-microsoft-smartphone/): Is Microsoft suffering from Apple envy? Discover why Microsoft needs to relax and focus on selling the strengths of the genuinely capable Windows Phone. - [Photography Tips for the IT Pro](https://petri.com/photography-tips-software/): Discover what photography tips and photo software recommendations will appeal to photography buffs AND IT pros. - [System Center 2012 SP1 - Orchestrator: EUPSCO Installation](https://petri.com/system-center-2012-sp1-orchestrator-eupsco-installation/): Discover how to install System Center 2012 SP1 - Orchestrator: EUPSCO with the help of this step-by-step tutorial, including prerequisites and service accounts. - [Updating Windows Management Framework (WMF) on Windows Server 2008/R2](https://petri.com/update-wmf-windows-management-framework-on-windows-server-2008-r2/): Learn how to update and install Windows Management Framework (WMF) to version 3.0 in Windows Server 2008 and R2. - [What Are VMware Cloud Credits?](https://petri.com/vmware-cloud-credits-overview/): Learn about the recently announced VMware Cloud Credits program in this article, including how it works and the benefits of using Cloud Credits. - [Is 'Touch ID' the Killer Feature of the iPhone 5S?](https://petri.com/touch-id-iphone-5s/): Check out the new upcoming iPhone 5S and its Touch ID fingerprint scanning feature, speedy 64-bit CPU, an improved camera, and iOS 7. - [Implement and Enforce QoS with Data Center Bridging Hardware (DCB)](https://petri.com/implement-enforce-qos-data-center-bridging-hardware-dcb/): Learn to implement QoS enforced with Data Center Bridging (DCB) hardware in this step-by-step tutorial. - [System Center 2012 SP1 - Orchestrator: What Is EUPSCO?](https://petri.com/system-center-2012-sp1-orchestrator-eupsco-overview/): Learn more about EUPSCO, or End User Portal for System Center 2012 SP1 - Orchestrator, a free application that helps publish and launch runbooks. - [Windows Server 2008 R2 / 2012 Hyper-V Best Practices: Resources](https://petri.com/windows-server-2008-r2-2012-hyper-v-best-practices/): Windows Server 2008 R2 / 2012 Hyper-V best practices | Check out these helpful best practices articles written by Microsoft PFE Roger Osborne. - [All About VMware Certifications](https://petri.com/vmware-certifications-overview/): Take a look at the different VMware certifications that are available, and learn what our writer thinks about the value of each one. - [Use Group Policy to Stop Users from Linking Microsoft Accounts to Local or Domain Logins in Windows 8](https://petri.com/use-group-policy-to-stop-linking-microsoft-accounts-to-local-domain-logins/): Learn how to use Group Policy to disable the ability to link domain and local computer accounts to Microsoft Accounts in Windows 8 using this easy guide. - [System Center 2012 SP1 - Orchestrator: Automate Runbooks with PowerShell](https://petri.com/system-center-2012-sp1-orchestrator-automate-runbooks/): System Center 2012 SP1 - Orchestrator | Find out what PowerShell cmdlet will automatically start your runbooks in this helpful article. - [New Security Features in Windows 8.1](https://petri.com/new-windows-8-1-security-features/): Discover what's new in Windows 8.1 security, including Multifactor Authentication, biometrics, certificate handling, and more! - [Deploying QoS Packet Scheduler in Windows Server 2012](https://petri.com/deploy-qos-packet-scheduler/): Discover how to deploy QoS Packet Scheduler in Windows Server 2012 to help manage your bandwidth! Includes handy PowerShell cmdlets to get the job done. - [How to Create Active Directory Sites in Windows Server](https://petri.com/create-active-directory-sites-windows-server/): Find out how to create Active Directory sites and subnets in Windows Server in this easy Ask an Admin article. - [System Center 2012 SP1 - Orchestrator: Exporting and Importing Runbooks](https://petri.com/system-center-2012-sp1-orchestrator-export-import-runbook/): System Center 2012 SP1 - Orchestrator | Learn to import and export runbooks in this easy step-by-step tutorial! - [Configure Global Object Access Auditing in Windows Server](https://petri.com/configure-global-object-access-auditing-windows-server/): Global Object Access Auditing | Learn how to configure Global Object Access Auditing in Windows Server 2012 with optional expression-based conditions. - [Creating Custom Reports for Configuration Manager (SCCM)](https://petri.com/creating-custom-reports-configuration-manager-sccm/): Create customized reports using Configuration Manager (SCCM) – it's a snap when you use this easy step-by-step guide. - [Configuring Quality of Service (QoS) Rules in Windows Server 2012](https://petri.com/configure-qos-quality-of-service-rules-windows-server-2012/): Quality of Service (Qos) rules | Apply Quality of Service (Qos) rules in Windows Server 2012 with the help of this guide, including OS Packet Scheduler & more! - [How to Plan a VMware VCDX Mock Defense Panel](https://petri.com/how-to-plan-vmware-vcdx-mock-defense-panel/): Preparing for a VMware VCDX defense is a huge task. Take on the challenge with these tips on how you can organize VCDX practice panels and study sessions. - [Installing a Free TFTP Server for Cisco Device Management](https://petri.com/manage-cisco-devices-with-tftp/): Manage Cisco Devices with TFTP | Upgrading the firmware on most Cisco equipment requires a TFTP server. Download and install a free TFTP server in this article! - [Should I Choose Server Core When Installing Windows Server?](https://petri.com/using-server-core-when-installing-windows-server/): Discover why you should install Windows Server Core instead of the full GUI version of Windows Server in this helpful article. - [6 Things I learned at VMworld 2013](https://petri.com/6-things-i-learned-at-vmworld-2013/): As VMworld 2013 draws to a close, Jeff serves up his thoughts on VMware NSX, the VMware Virtual SAN, and the Hyper-V custard truck in this show recap. - [How to Build a Windows Server 2012 R2 Hyper-V Test Lab](https://petri.com/build-windows-server-2012-r2-hyper-v-test-lab/): Learn to build a test lab for Windows Server r2 Hyper-V to be used at home or at work. Read this in-depth guide for storage options, networking, and more! - [Lync 2010 Integration with Outlook Web App 2010 (OWA 2010)](https://petri.com/lync-2010-integration-with-owa-2010-outlook-web-app/): Integrate Lync 2010 using Outlook Web Access 2010 (OWA 2010), to provide users with the ability to have Lync IM sessions and more. Learn how in this guide! - [VMworld 2013: Introduction to the VMware Horizon View Configuration Tool (vCT)](https://petri.com/vmware-horizon-view-configuration-tool-vct/): Use VMware Horizon View Configuration Tool (vCT) to deploy a Horizon View environment in an automated fashion. Find out more in this overview from VMworld 2013. - [Why You Need to Upgrade from Windows XP (and Windows Server 2003)](https://petri.com/upgrading-from-windows-xp-server-2003/): Windows XP and Windows Server 2003 will soon be out of support and face ‘zero-day’ vulnerability. Find out why and when you should upgrade in this article. - [What’s New in Windows Server 2012 R2 Hyper-V Live Migration](https://petri.com/windows-server-2012-r2-hyper-v-live-migration-news/): Windows Server 2012 R2 Hyper-V Live Migration | Discover what's new in Server 2012 Hyper-V live migration, including awesome performance options and more! - [Monitoring System Center 2012 - Orchestrator with Orchestrator Health Checker](https://petri.com/monitor-system-center-2012-orchestrator-health-checker/): Orchestrator Health Checker | Discover how to install, configure, and monitor Microsoft System Center 2012 - Orchestrator using the Orchestrator Health Checker. - [VMware Brings Back VCA Certifications](https://petri.com/vmware-certified-associate-vca-returns/): VMware Certified Associate (VCA) | Just getting started with VMware? Learn about several new associate level certifications just announced at VMworld 2013. - [Solving the Mystery of the Self-Waking Laptop](https://petri.com/laptop-wakes-up-by-itself/): Have a laptop that wakes up by itself? Solve the mystery of the automatically waking laptop with these troubleshooting hints from a real-life scenario. - [Enable Advanced Auditing in Windows Server](https://petri.com/enable-advanced-audit-policy-configuration-windows-server/): Advanced Audit Configuration Policy | Learn about the new auditing capabilities in Windows Server and how to enable them in this quick 'n easy Ask an Admin. - [VMworld 2013: VMware Announces vSphere 5.5 and vCloud Suite 5.5](https://petri.com/vmworld-2013-vmware-announces-vsphere5-5-vcloudsuite5-5/): In the VMworld 2013 keynote, VMware CEO Pat Gelsinger touts IT as a service (ITaaS) and unveils VMware vSphere 5.5 and VMware vCloud Suite 5.5. - [Creating a NIC Team and Virtual Switch for Converged Networks](https://petri.com/create-nic-team-virtual-switch-for-converged-networks/): Converged Networks and NIC Teams | Learn to create a converged network for Hyper-V using a Windows Server 2012 NIC team and connect to a virtual switch. - [System Center 2012 SP1 - Orchestrator: Integration Pack](https://petri.com/system-center-2012-sp1-orchestrator-integration-pack/): System Center 2012 SP1 - Orchestrator | Learn more about Microsoft's Orchestrator as we install Integration Pack. Follow this multi-part series! - [Administering SharePoint 2013 with PowerShell: Site Collections](https://petri.com/administer-sharepoint-2013-powershell-site-collections/): Learn how administering SharePoint 2013 with PowerShell can be used to help you manage your site collections. Check out this how-to article for more! - [IT Volunteering Resources](https://petri.com/it-volunteering-resources/): Are you an IT pro looking to volunteer your time and expertise? Looking for someone with IT skills to donate? Find out more about the world of IT volunteerism. - [How to Boot Directly to the Desktop in Windows 8.1 and Server 2012 R2](https://petri.com/bypass-start-screen-windows-8-1-server-2012-r2/): Learn how to bypass the Start screen and boot directly to the desktop in Windows 8.1 or Windows Server 2012 R2 with the help of this handy Ask an Admin. - [Using VMware Thinapp to Setup Native Browser Redirect](https://petri.com/using-vmware-thinapp-setup-native-browser-redirect/): Learn to use VMware ThinApp to setup native browser redirect, including how to register and test ThinApp, in this walkthrough article. - [What Is the New VMware vCloud Hybrid Service (vCHS)?](https://petri.com/vmware-vcloud-hybrid-service-vchs-overview/): What is VMware vCloud Hybrid Service (vCHS)? Discover more about vCloud Hybrid Service and what makes it unique in this walkthrough. - [Will New Features in Windows Server 2012 R2 Increase BYOD Adoption in the Workplace?](https://petri.com/byod-features-in-windows-server-2012-r2/): Learn about BYOD in Windows Server 2012 R2, including Work Folders, Workplace Join, and Web Application Proxy. Will these be enough to increase BYOD adoption? - [System Center 2012 SP1 – Orchestrator: Runbook Designer](https://petri.com/system-center-2012-sp1-orchestrator-runbook-designer/): System Center 2012 SP1 - Orchestrator | Dive deeper into Microsoft's Orchestrator as we look closer at Runbook Designer and its capabilities. Multi-part series! - [Disable the Integrity Bit of VHDs Copied to an ReFS Volume Using PowerShell](https://petri.com/disable-integrity-bit-of-virtual-hard-disks-refs-volume/): Learn how to use PowerShell to disable the integrity bit of virtual hard disks copied to ReFS in this step-by-step guide. - [Synching Office 365 with Active Directory: Using Directory Synchronization](https://petri.com/sync-office-365-ad-install-directory-synchronization/): Office 365 Directory Synchronization | Learn to install and configure the Directory Synchronization tool for account and password sync in part 2 of this series. - [Find AD Replication Errors Quickly with Active Directory Replication Status Tool](https://petri.com/troubleshooting-active-directory-replication-status-tool/): Learn to use the Active Directory Replication Status tool (ADREPLSTATUS) from Microsoft to quickly find and troubleshoot Active Directory replication errors. - [Will Corporations Rush to Adopt vCloud Hybrid Service?](https://petri.com/will-corporations-adopt-vmware-vcloud-hybrid-service-vchs/): vCloud Hybrid Service (vCHS) | Will corporations go for the new VMware vCHS hybrid cloud offering? Read our breakdown of how vCHS compares to others. - [What Is Consistent Device Naming?](https://petri.com/consistent-device-naming-overview/): What is Consistent Device Naming (CDN)? Discover how this feature helps automate the deployment and configuration of the Microsoft private cloud. - [Synching Office 365 with Active Directory: Prepare for Directory Synchronization](https://petri.com/sync-office-365-active-prepare-directory-synchronization/): Office 365 Directory Synchronization | Learn about the Directory Synchronization tool for Office 365 and Active Directory in part 1 of a new 2-part series. - [System Center 2012 SP1 - Orchestrator: Tools](https://petri.com/system-center-2012-sp1-orchestrator-tools/): System Center 2012 SP1 - Orchestrator | In this post, discover more about Microsoft's Orchestrator's tools, including deployment manager and runbook designer. - [7 Reasons Office 365 Will Succeed](https://petri.com/reasons-office-365-will-succeed/): Think Office 365 will last? Check out the 7 reasons why we think Microsoft's updated cloud-based office productivity suite is here to stay. - [Display Last Interactive Logon Information in Windows Server 2008/2012](https://petri.com/last-interactive-logon-information-windows-server-2008-2012/): Learn to use last interactive logon information in Windows Server 2008/2012 to track attempts of unsuccessful logons in this handy how-to guide. - [Enable Disk Quotas in Windows Server 2012](https://petri.com/enable-disk-quotas-in-windows-server-2012/): Learn to create and enable disk quotas in Windows Server 2012 in order to help manage disk space on file servers in this easy Ask an Admin article. - [Using the My VMware Mobile App](https://petri.com/my-vmware-mobile-app-overview/): The My VMware mobile app helps keep tabs of your product entitlements and license keys. Find out what else it can do for you in our product overview! - [Easily Find Local Admins on Your Network](https://petri.com/find-local-admin-on-network/): Learn how to find local admins on a workstation in this incredibly easy how-to article. - [System Center 2012 SP1 - Orchestrator: Server Components](https://petri.com/system-center-2012-sp1-orchestrator-server-components/): System Center 2012 SP1 - Orchestrator | Learn about Microsoft's Orchestrator server components, including data store, runbook server, and more. - [Introducing Converged Networks](https://petri.com/converged-networks-overview/): What are converged networks? Discover how converged networks (aka converged fabrics) are an economical, easy to deploy, and flexible option in this overview. - [What Are Flings from VMware Labs? (And Why Should You Care?)](https://petri.com/what-are-vmware-flings/): VMware flings | VMware released some cool small lab projects in the way of free tools called "flings." Read about the best VMware flings and how to get them. - [Enabling Secure LDAP on Windows Server 2008/2012 Domain Controllers: Configuration](https://petri.com/enable-secure-ldap-windows-server-2008-2012-dc-configuration/): Learn to enable and configure secure LDAP (LDAPS) communications between client/server applications on Windows Server 2008/2012 DCs in part 2 of this series. - [Import IP Address with IP Address Management (IPAM) into Windows Server 2012](https://petri.com/import-ip-address-with-ipam-windows-server-2012/): Import with IPAM in Windows Server 2012 | Learn to use IP address management (IPAM) to import IP addresses in Server 2012 with the help of this easy guide. - [System Center 2012 SP1 - Orchestrator: Installation](https://petri.com/system-center-2012-sp1-orchestrator-installation/): Need to install Microsoft System Center 2012 SP1 - Orchestrator? Learn how with part 1 of a 2-part guide, including an introduction to Runbook Designer! - [Import and Export Lists of Servers with Windows Server 2012 Server Manager](https://petri.com/import-export-managed-server-lists-with-server-manager/): Learn how to import/export server lists using Windows Server 2012 Server Manager in order to save time and share those lists between more than one sysadmin. - [Understanding Hyper-V Host Networking Requirements](https://petri.com/hyper-v-host-networking-requirements/): Basic Hyper-V host networking goes beyond numbers of NICs. Discover what Hyper-V networking requirements and designs are needed in this in-depth guide. - [Will Surface Setbacks Derail Microsoft's Tablet Ambitions?](https://petri.com/microsoft-surface-setbacks/): Microsoft Surface Setbacks | Microsoft's tablet efforts have suffered setbacks. Find out why we think that Microsoft may rebound with the Surface – or may not. - [Disabling Adobe Reader XI Updates Using Group Policy](https://petri.com/disable-adobe-reader-xi-updates-group-policy/): Block and disable Adobe Reader XI updates from being installed by end users with Group Policy. Learn how in this easy-to-follow tutorial! - [What Is Microsoft System Center 2012 - Orchestrator?](https://petri.com/microsoft-system-center-2012-orchestrator-overview/): What is Microsoft System Center 2012 - Orchestrator, and what can it do for IT pros? Discover what this helpful automation tool can do in this introduction. - [Enabling Secure LDAP on Windows Server 2008/2012 Domain Controllers](https://petri.com/enable-secure-ldap-windows-server-2008-2012-dc/): Learn how to enable secure LDAP (LDAPS) communications between client/server applications on Windows Server 2008/2012 DCs in part 1 of a 2-part series. - [Configuring Windows Server Core 2012](https://petri.com/configure-windows-server-core-2012/): Learn to configure Windows Server Core 2012 quickly and easily in this Ask an Admin, including steps to join the server to a domain. - [Windows XP Security Considerations](https://petri.com/windows-xp-security-considerations/): Windows XP security | Microsoft's discontinuing their Windows XP support in 2014. Learn what what you can do about Windows XP security concerns in this post. - [How to Store Hyper-V Virtual Machines on SMB 3.0 Storage](https://petri.com/store-hyper-v-virtual-machine-smb-3-storage/): Learn how storing Hyper-V virtual machines on SMB 3.0 will help lower storage costs and make your job a little easier in this tutorial. - [How to Use VMware Horizon Data Service on an iPad](https://petri.com/use-horizon-data-on-ipad/): Curious about Horizon Data? Check out our in-depth walk-through to learn how to use and configure VMware Horizon Data on an iPad. - [Administering SharePoint 2013 with PowerShell: Managing Content Databases](https://petri.com/administer-sharepoint-2013-powershell-manage-content-databases/): Administer SharePoint 2013 with PowerShell and learn to manage content databases in this helpful how-to article. Includes content database removal and more. - [Configure a DNS Server Address for a Network Adapter in Windows Server](https://petri.com/configuring-dns-server-addresses-for-network-adapter/): Learn how to configure DNS addresses for a network adapter in Windows Server 2012 before promoting to a DC in this quick Ask an Admin article. - [What does vCloud Hybrid Service (vCHS) Mean for VMware Partners?](https://petri.com/vmware-partners-vcloud-hybrid-service-vchs/): What do VMware partners think about the new VMware vCloud Hybrid Service (vCHS)? Check out our writer Brian Suhr's initial thoughts. - [Configuring Simple Storage Spaces in a Failover Cluster](https://petri.com/configure-storage-spaces-failover-cluster/): Learn to configure storage space in Windows Server to create a failover cluster. Use this to create a Hyper-V cluster or SMB 3.0 Scale-Out File Server (SOFS)! - [Why Some IT Pros Deserve Cloud Outsourcing](https://petri.com/cloud-computing-outsourcing-it-service/): Outsourcing to cloud computing is every IT pro's fear. Discover why our writer thinks bad IT pros are to blame for businesses outsourcing to the cloud. - [Windows Intune: What's New in Q3 2013](https://petri.com/windows-intune-update-2013/): Windows Intune, Microsoft's cloud-based management service is ever-changing. Read on to discover the latest improvements to Windows Intune. - [VMware Horizon Suite Licensing Explained](https://petri.com/vmware-horizon-suite-licensing-options-changes/): VMware Horizon Suite licensing options have changed, along with their mix of new and existing products. Discover what's new in this article. - [Managing Active Directory in PowerShell 3.0 with Out-GridView](https://petri.com/manage-active-directory-powershell-3-out-gridview/): Manage Active Directory with PowerShell 3.0 Out-GridView with this easy tutorial, and learn to filter and manipulate the results. - [What Is Windows Azure Pack, aka Katal?](https://petri.com/what-is-windows-azure-pack-katal/): Use Windows Azure Pack (aka Katal) to bring Azure cloud integration to Microsoft System Center and Windows Server. Learn more in this introduction. - [Manage Network Adapters with PowerShell: Configure an Adapter](https://petri.com/manage-network-adapters-powershell-configure-adapter/): Manage Network Adapters with PowerShell | Learn to configure an network adapter in Windows Server 2012 in part four of this multi-part series. - [Designing a Basic Scale-Out File Server (SOFS)](https://petri.com/design-basic-scale-out-file-server-sofs/): Scale-Out File Server (SOFS) | Discover what goes into designing a basic scale-out file server that will offer scalable SMB 3.0 connectivity to storage. - [Setup a SharePoint 2013 Development Environment: Farm and Service App Configuration](https://petri.com/setup-sharepoint-2013-development-environment-farm-configuration/): Setup SharePoint 2013 Development Environment | Learn to do a farm and service application configuration in the final chapter in this 3-part series. - [Is PowerShell the Future of Windows Server Management?](https://petri.com/powershell-manage-windows-server/): Learn about features in PowerShell that could help you more effectively manage Windows Server. - [How to Change Languages for Each Application in Windows 8](https://petri.com/set-per-application-languages-windows-8/): Per-Application Languages in Windows 8 | Many IT pros use more than one language. Learn to easily set per-application languages in Windows 8 with this tutorial. - [Create a Basic Scale-Out File Server (SOFS)](https://petri.com/create-basic-scale-out-file-server-sofs/): Learn to create a scale-out file server (SOFS) to share scalable and transparent failover storage via SMB 3.0 using Windows Server 2012 R2. - [We're Bolstering our VMware, System Center, and Windows Intune Coverage](https://petri.com/new-bloggers-vmware-system-center-windows-intune-coverage/): We've increased our VMWare, System Center, and Windows Intune coverage! Meet the new bloggers, Brian Suhr and Damian Flynn, who will cover this beat. - [Easily Edit the HOSTS File in Windows 8](https://petri.com/edit-hosts-file-windows-8/): Edit the HOSTS File in Windows 8 and block websites using Notebook and these easy step-by-step instructions. - [The Petri IT Knowledgebase Names Richard Pugh as Most Valuable Forum Member (MVM)](https://petri.com/petri-it-knowledgebase-forums-richard-pugh-mvm/): The Petri IT Knowledgebase is happy to announce that forum member Richard Pugh has been awarded "Most Valuable Forum Member (MVM) status. - [Setup a SharePoint 2013 Development Environment: Installation](https://petri.com/setup-sharepoint-2013-development-environment-installation/): Setup SharePoint 2013 Development Environment | Perform a basic SharePoint 2013 dev environment installation, including prerequisites, configuration, and more. - [Deploy Windows Server 2012 in an Azure Virtual Machine](https://petri.com/deploy-windows-server-2012-azure-virtual-machine/): Create and configure a Windows Server 2012 virtual machine in Windows Azure in this Ask an Admin. Includes a download for a Azure trial/paid subscription! - [Typing Hebrew Niqqud (Voweling Points) in Windows 8](https://petri.com/typing-hebrew-vowels-niqqud-windows-8/): Typing Hebrew vowels (niqqud) in Windows 8 is different than in past Windows versions. Learn to make the "Hebrew" layout your default in this tutorial. - [Security Hardening Techniques for Windows Server 2008 R2](https://petri.com/security-hardening-strategies-windows-server-2008-r2/): Learn security hardening best practices in Windows Server 2008 R2, including Microsoft Baseline Security Analyzer (MBSA) and Security Configuration Wizard. - [Setup a Sharepoint 2013 Development Environment: Prepare a Hyper-V VM](https://petri.com/setup-sharepoint-2013-development-environment-prepare-hyper-v-vm/): Setup a Sharepoint 2013 development environment | In part 1 of this series, build a Sharepoint 2013 dev environment using handy Hyper-V on your workstation. - [Enable BitLocker Drive Encryption in Windows Server 2012](https://petri.com/enable-bitlocker-drive-encryption-windows-server-2012/): Make Bitlocker your security buddy! Check out these steps to enable and manage BitLocker drive encryption in Windows Server 2012. - [VMware vCloud Hybrid Service (vCHS) Options Explained](https://petri.com/vmware-vcloud-hybrid-service-vchs-explained/): Two vCloud Hybrid Service (vCHS) options wlll soon be available. Learn the difference between these cloud capacity options in this guide. - [Install and Use Hebrew Fonts on Windows 8](https://petri.com/install-hebrew-fonts-windows-8/): Install and display Hebrew fonts on Windows 8 using this easy guide – without language packs or localized OS versions. - [What Is Windows Server 2012 Hyper-V Live Migration?](https://petri.com/windows-server-2012-hyper-v-live-migration/): Windows Server 2012 Hyper-V Live Migration | Discover what Server 2012 Hyper-V Live Migration can do for you, including IT performance enhancements and more. - [What is Microsoft System Center?](https://petri.com/microsoft-system-center-introduction/): Microsoft System Center | Take this walkthrough on System Center and its components in this article by new Petri IT Knowledgebase writer Damian Flynn. - [Enable and Configure Access Denied Remediation (ADR) in Windows Server 2012](https://petri.com/configure-access-denied-remediation-windows-server-2012/): Access Denied Remediation (ADR) in Windows Server 2012 | Learn to enable and configure ADR to display custom access-denied messages for Windows 8 users. - [Managing Windows Server 2008 R2 from Windows 8](https://petri.com/managing-server-2008-r2-with-windows-8/): Manage Server 2008 R2 from a Windows 8 workstation using this tutorial, including downloading RSAT and adding remote servers to Server Manager. - [How to Enable PowerShell Logging](https://petri.com/enable-powershell-logging/): PowerShell Logging | Discover how to enable PowerShell logging using the command line or in Group Policy in this easy Ask an Admin. - [Introduction to Hyper-V Network Virtualization (HNV)](https://petri.com/hyper-v-network-virtualization-hnv-introduction/): Hyper-V Network Virtualization (HNV): Learn about HNV basics, multitenant computing, and how HNV is used in Windows Server 2012 in this thorough guide. - [Patching Hyper-V Clusters](https://petri.com/patching-hyper-v-clusters/): Discover how to patch Hyper-V in a failover cluster and learn how to choose which Hyper-V patching solution is right for you. - [Tips for SharePoint 2013 Apps](https://petri.com/sharepoint-2013-apps-tips/): Check out our tips and tricks for using SharePoint apps, including how to make an app plan for your company. - [Loopback Adapter Installation on Windows Server 2012](https://petri.com/loopback-adapter-installation-windows-server-2012/): Need connection? Learn how to add the Microsoft loopback network adapter in Windows Server 2012. - [Hyper-V Patch: Not Just a Windows Update](https://petri.com/hyper-v-updates-patches-hotfixes/): Beat the issue before it starts! Find out why why you should patch Hyper-V and where to download these updates. - [Top iOS 7 Features for IT Pros](https://petri.com/top-ios-7-features-it-pros/): Discover what new iOS 7 features IT pros will love come launch day! - [Full Drive Encryption (FDE) FAQs](https://petri.com/full-drive-encryption-fde-faq/): Brimming with Full Drive Encryption questions? We got you covered. Check out our FAQs about FDE and Bitlocker! - [Backup and Restore Service Applications in SharePoint 2013](https://petri.com/backup-restore-service-applications-sharepoint-2013/): Learn how to backup and restore your service applications in SharePoint 2013 using PowerShell and Central Administration. - [Manage Network Adapters with PowerShell: Troubleshooting](https://petri.com/manage-network-adapters-powershell-troubleshooting/): Managing network adapters with PowerShell | Pick up handy network troubleshooting cmdlets in part 3 of this series. - [Windows Server Update Services 2012: Reporting and PowerShell](https://petri.com/windows-server-update-services-2012-reporting-and-powershell/): Show that WSUS who's who! Discover how to install Windows Server Update Services 2012 (WSUS) reporting and how to manage it with PowerShell. - [Delegate Permission to Reset AD User Account Passwords](https://petri.com/delegate-permission-reset-ad-user-account-passwords/): Learn how to grant an Active Directory group permission to reset passwords and unlock user accounts in this easy Ask an Admin. - [Is PRISM Damaging Cloud Computing?](https://petri.com/prism-damaging-cloud-computing/): In June 2013, the world found out about PRISM. Learn more about this Internet surveillance program and how it could affect the future of cloud computing. - [Create a Network Map in Windows 7](https://petri.com/create-network-map-windows-7/): An accurate network map can be an invaluable troubleshooting aid. Discover how to create a network map for Windows 7 in this handy tutorial. - [Manage Workstations Without Domain Admin Rights](https://petri.com/manage-workstations-without-domain-admin-rights/): Missing those domain admin rights? Configure a management group on workstations so that IT staff can provide support without full access to Active Directory - [Restore from Unattached Content Databases in SharePoint 2013](https://petri.com/restore-from-unattached-content-database-sharepoint-2013/): Learn how to perform one of the most important restores in an admin's arsenal: the unattached content database restore in Sharepoint. - [Upgrade to System Center 2012 SP1 VMM: Post-Installation](https://petri.com/upgrade-system-center-2012-sp1-vmm-post-installation/): After the upgrade, then what? Follow through with these post-installation steps for System Center 2012 SP1 Virtual Machine Manager (VMM). - [Enable Office365 Integration in Windows Server Essentials 2012](https://petri.com/office365-integrat-windows-server-essentials-2012/): ADFS not cutting it? Save time and integrate Office365 with AD in Windows Server Essentials 2012 with this easy tutorial. - [Upgrade to System Center 2012 SP1 Virtual Machine Manager (VMM)](https://petri.com/upgrade-system-center-2012-sp1-vmm/): It's time for an upgrade! Move on up and learn to install System Center 2012 SP1 Virtual Machine Manager (VMM) in this easy how-to article. - [Connect to the Active Directory Drive in PowerShell](https://petri.com/connect-active-directory-drive-in-powershell/): Find out how to connect to the AD drive and the commands used to navigate through. - [Export Active Directory User Information to Excel](https://petri.com/export-active-directory-user-information-to-excel/): Learn how to export AD user information to Excel and generate reports on user objects with PowerShell in this quick 'n easy Ask an Admin! - [New Features in Windows Server 2012 R2 Failover Clustering](https://petri.com/windows-server-2012-r2-failover-clustering-news/): Failover clustering has gotten even better in Windows Server 2012 R2. Discover the improvements in failover clustering, including CSV storage feature support. - [What Is Virtual Networking?](https://petri.com/virtual-networking-basics/): Learn the basics of virtual networking in this handy primer. - [What's New in Windows 8.1](https://petri.com/whats-new-in-windows-8-1/): So what's new in Windows 8.1? This article explains what the latest update to Microsoft's newest client OS has to offer. - [VMware Announces vSphere Big Data Extensions](https://petri.com/vmware-vsphere-big-data-extensions/): Have Hadoop clusters you need virtualized? Check out VMware's new vSphere Big Data Extensions – they could be just what you need. - [Backup and Restore a SharePoint 2013 Farm Configuration](https://petri.com/backup-restore-sharepoint-2013-farm-configuration/): Learn how to backup and restore a SharePoint 2013 farm configuration in this how-to article! - [Plan a Windows Server 2012 Migration with MAP 8.0](https://petri.com/plan-windows-server-2012-migration-map-8/): Discover how Microsoft's Assessment and Planning Toolkit 8.0 can help you migrate to Windows Server 2012 in this handy Ask an Admin. - [Create Guest Clusters in Windows Server 2012 Hyper-V](https://petri.com/create-guest-clusters-windows-server-2012-hyper-v/): Create a guest cluster using virtual machines with Windows Server 2012 Hyper-V and learn what Microsoft is doing to make guest clustering easier. - [Top 5 Windows 8 Pro Tablet Apps for IT Admins](https://petri.com/top-windows-8-pro-tablet-apps-it-admins/): Need new sysadmin-friendly apps? Check out our favorite apps for Windows 8 Pro tablets! - [How to Use SharePoint 2013 User License Enforcement](https://petri.com/sharepoint-2013-user-license-enforcement/): Discover how to best use SharePoint 2013's new user licensing capabilities in this helpful how-to article. - [Windows Server Essentials 2012 R2: Deployment and Remote Access](https://petri.com/windows-server-essentials-2012-r2-deployment-remote-access/): Learn about the new deployment and remote access features in Windows Server Essentials 2012 R2 in this Ask an Admin. - [Open Shortest Path First (OSPF) Configuration Basics](https://petri.com/open-shortest-path-first-ospf-configuration-basics/): Open Shortest Path First (OSPF) is widely deployed in networks worldwide. Learn how to configure OSPF in this tutorial! - [System Center Virtual Machine Manager 2012 SP1: Prepare Installation](https://petri.com/system-center-virtual-machine-manager-2012-sp1-prepare-installation/): Discover the steps to prepare for an installation of System Center 2012 SP1, including Distribute Key Management (DKM) and service accounts. - [The Friday Funny: Mr T. Battles IT Consultants, Frees Zombies](https://petri.com/the-friday-funny-mr-t-it-zombie/): Ever lay awake at night wondering what Mr. T thinks of virtualization? Sleep soundly, dear readers, for now we know the answer. - [Researchers Distribute Malware Via iOS Power Charger](https://petri.com/malware-via-ios-charger/): Researcher surprised the industry when they infected an iOS with malware via an innocuous charger. We discuss staying vigilant against future malware attacks. - [How to Edit the Hosts File on a Microsoft Surface RT](https://petri.com/edit-hosts-file-windows-surface-rt/): Need to edit the hosts file on a Microsoft Surface RT tablet? Learn how to edit the hosts file, which also applies for other devices running Windows 8. - [Configure SMB Security in Windows Server 2012](https://petri.com/configure-smb-security-windows-server-2012/): With Windows Server 2012 and Win8 comes a new version of the SMB protocol. Learn to disable SMB 1.0 and configure SMB encryption in this easy Ask an Admin. - [Managing Network Adapters with PowerShell: Addressing and Configuration Info](https://petri.com/manage-network-adapters-powershell-addressing-configuration-info/): Managing network adapters with PowerShell | Learn to get addressing and configuration info in part 2 of an easy-to-understand 3-part series. - [System Center Virtual Machine Manager 2012 SP1: Installation](https://petri.com/system-center-virtual-machine-manager-2012-sp1-installation/): Install System Center 2012 SP1 - Virtual Machine Manager (VMM/SCVMM) with this easy-to-follow guide. - [Install and Configure Remote BLOB Storage (RBS) in a SharePoint Farm](https://petri.com/install-configure-remote-blob-storage-rbs-sharepoint-farm/): Need to maximize your hardware investment with tiered storage? Discover how RBS for Sharepoint can help! Learn to install and configure RBS in Sharepoint. - [Installing the Desktop Experience on Windows Server 2012](https://petri.com/install-desktop-experience-windows-server-2012/): Miss having desktop features like the snipping tool and desktop themes on Windows Server 2012? Learn how to install Desktop Experience and add them. - [Windows Server 2012: SMB 3.0 and the Scale-Out File Server](https://petri.com/windows-server-2012-smb-3-scale-out-file-server/): Wondering what's up with SOFS? Learn the basics of Windows Server 2012 SMB 3.0 Scale-Out File Server in this helpful article. - [Microsoft Exchange 2013 Highlights from TechEd 2013](https://petri.com/microsoft-exchange-2013-highlights-teched-2013/): Missed TechEd 2013? We got your back! Check out the latest Microsoft Exchange 2013 news from the conference. - [Microsoft IT Slang and Buzzwords](https://petri.com/friday-funny-microsoft-it-buzzwords-slang/): IT slang? Let's double-click on that. Pick up some of Microsoft buzzwords in today's Friday Funny! - [Xbox One and the Cloud OS: A Tale of Two Clouds](https://petri.com/xbox-one-cloud-os/): What do Microsoft's new Xbox One game console and Cloud OS strategy have in common? Read on to find out! - [New in Windows Server 2012: ReFS, NTFS Updates and SMB 3.0](https://petri.com/windows-server-2012-refs-ntfs-updates-smb-3-0/): ReFS, NTFS, and SMB – oh my! Find out about new storage and file services features in Windows Server 2012 in this Ask an Admin article. - [We're Hiring! Wanted: VMware and Microsoft System Center Bloggers](https://petri.com/hiring-vmware-microsoft-system-center-blogger/): We're looking for writers and bloggers who are experts in Microsoft System Center and VMware products. Apply today! - [New Features in Windows Server 2012 R2 Storage Spaces](https://petri.com/new-features-windows-server-2012-r2-storage-spaces/): Check out the new features in Windows Server 2012 R2 Storage Spaces, including write-back cache, parallelized repair, tiered Storage Spaces, and more. - [Manage Network Adapters with PowerShell](https://petri.com/manage-windows-server-201-network-adapters-powershell/): Learn to manage Windows Server 2012 network adapters using PowerShell in part one of a three-part tutorial. - [VMware Announces vCenter Log Insight](https://petri.com/vmware-announces-vcenter-log-insight/): VMware has unveiled vCenter Log Insight, an analytics tool that helps admins measure and analyze the status of their physical and virtual IT infrastructures. - [Search Active Directory for Locked-Out User Accounts with PowerShell](https://petri.com/search-active-directory-locked-out-user-accounts-powershell/): Finding locked user accounts in Active Directory can be a pain. Search for locked-out accounts using PowerShell in this quick 'n easy Ask an Admin. - [10 Things I Learned at Microsoft TechEd 2013](https://petri.com/microsoft-teched-2013-recap/): Missed Microsoft TechEd 2013 – North America? Discover our top 10 favorite TechEd moments in this recap. - [HP ElitePad 900 Review: Almost (But Not Quite) Perfect](https://petri.com/hp-elitepad-900-review/): A longtime iPad user just about falls in love with the HP ElitePad 900 tablet. Discover the good and the bad of the ElitePad 900 in this review. - [How to Upload Photos to Active Directory with PowerShell](https://petri.com/upload-photos-to-active-directory-powershell/): Adding the photo attribute is a great email tool for remote employees. Learn how to upload pics to Active Directory using PowerShell with this article. - [How to Backup and Restore SharePoint 2013](https://petri.com/how-to-backup-restore-sharepoint-2013/): Don't wait until it's too late! Learn how to backup and restore SharePoint 2013, including incorporating user-performed backups and more. - [What's New in SQL Server 2014](https://petri.com/sql-server-2014-news/): Curious what new features Microsoft SQL Server 2014 offers? We've updated this guide with the latest info to help you... - [Windows Server Update Services 2012: Configuration](https://petri.com/windows-server-update-services-2012-configuration/): After you've installed WSUS 2012, what next? Learn how to configure clients and approve updates in Windows Server Update Services 2012 in this helpful article. - [Data Deduplication and Storage Spaces in Windows Server 2012](https://petri.com/data-deduplication-storage-windows-server-2012/): Who doesn't like improvements? Read on for more about the new Data Deduplication and Storage Spaces features in Windows Server 2012. - [BlackBerry Enterprise Service 10.1: Introduction](https://petri.com/blackberry-enterprise-service-10-1-introduction/): BlackBerry Enterprise Service 10.1 is not your dad’s BES server. Discover what's new with BES 10.1 in this article. - [Windows Server 2012 SMB 3.0 File Shares: An Overview](https://petri.com/windows-server-2012-smb-3-file-shares/): Want increased performance, scalability, and availability? Discover how storing Windows Server 2012 VMs on SMB 3.0 file shares makes it happen. - [Remote Server Administration Tools (RSAT) for Windows 8: Download and Install](https://petri.com/remote-server-administration-tools-rsat-windows-8-download-install/): Need to manage servers from a dedicated workstation? Learn how to use Remote Server Administration Tools (RSAT) for Windows 8 to get it done. - [Top Windows Server 2012 R2 Hyper-V Virtualization Features](https://petri.com/top-virtualization-features-in-windows-server-2012-r2-hyper-v/): Curious to see what the new and improved virtualization features are in Windows Server 2012 R2? Read this list of some of our favorites new features. - [What's New in Windows Server 2012 R2](https://petri.com/whats-new-in-windows-server-2012-r2/): Microsoft announced Windows Server 2012 R2 this morning at Microsoft TechEd 2013. Check out this early glimpse into what Server 2012 R2 has to offer. - [TechEd 2013 Survival Guide](https://petri.com/teched-2013-survival-guide/): Interested in news coming out of TechEd 2013 this week? Here's a handy guide for getting the most out of the show, whether you're onsite or watching remotely. - [Managing Windows Server 2012 with Server Manager](https://petri.com/manage-windows-server-2012-with-server-manager/): Learn how to more effectively manage Windows Server using the new Server Manager tool in Windows Server 2012. - [Joining Windows Server 2012 to a Domain](https://petri.com/join-windows-server-2012-to-domain/): Learn how to join Windows Server 2012 to an AD domain using Server Manager in this quick 'n easy Ask an Admin. - [6 Must-Have iPad Apps for System Administrators](https://petri.com/best-ipad-apps-sysadmin/): iPad apps abound, but these six turn the iPad into an IT Pro's go-to tool. Discover our iPad apps every sysadmin should have. - [Microsoft Surface Pro Review](https://petri.com/microsoft-surface-pro-review/): Does the Microsoft Surface Pro have what it takes to replace your Windows 8 laptop and your existing tablet device? Read our review to find out. - [System Center Virtual Machine Manager 2012 SP1: Software Requirements](https://petri.com/system-center-virtual-machine-manager-2012-sp1-software-requirements/): Check out the software requirements for Microsoft System Center Virtual Machine Manager 2012 SP1, including VMM Database, VMM Library, and more. - [Windows 8 Keyboard Shortcuts](https://petri.com/windows-8-keyboard-shortcuts/): Having trouble navigating the interface in Windows 8? Check out our indispensable list of Windows 8 keyboard commands. - [Forcing a Remote Group Policy Update with GPMC](https://petri.com/force-remote-group-policy-update-gpmc/): Take advantage of this new Windows Server 2012 feature and learn how to update Group Policy remotely using the Group Policy Management Console (GPMC). - [System Center Virtual Machine Manager 2012 SP1: Components](https://petri.com/system-center-virtual-machine-manager-vmm-2012-sp1-components/): Before you consider the architecture of VMM, know what each feature will do. Discover the components in System Center Virtual Machine Manager 2012 SP1. - [Configure SharePoint 2013 User Profiles for Social Networking](https://petri.com/configure-sharepoint-2013-user-profiles-for-social-networking/): In this helpful article, learn the steps to setup and configure SharePoint 2013 User Profiles to maximize the social networking experience. - [How to Play DVDs in Windows 8](https://petri.com/how-to-play-dvds-windows-8/): Looking for a way to play DVD or Blu-ray discs using Windows 8? Learn a number of options for playing DVDs on Win8 with our latest Ask an Admin article. - [Using DNS Logs As a Security Information Source](https://petri.com/dns-security-information-source/): Learn how DNS logs and analysis can be a useful sources of security information in this article by Qualys CTO Wolfgang Kandek. - [Enable Remote Desktop on Windows Server 2012](https://petri.com/enable-remote-desktop-windows-server-2012-for-remote-administration/): Learn how to enable Remote Desktop in Windows Server 2012 so that you can remotely administer a server. - [System Center Virtual Machine Manager 2012 SP1: System Requirements](https://petri.com/requirements-system-center-virtual-machine-manager-2012-sp1/): Review the system requirements of Microsoft's System Center 2012 Service Pack 1 Virtual Machine Manager. - [Free Password Management Tools to Make Your Life Easier](https://petri.com/free-password-management-tools/): Bogged down by too many passwords and login credentials? Consider using these two free password management tools designed to free up some brain space. - [VMware Unveils vCloud Hybrid Cloud Service, Enters IaaS Market](https://petri.com/vmware-vcloud-hybrid-service-unveiled/): VMware takes the wraps off their vCloud Hybrid Service, a cloud IaaS offering designed to compete with similar services from Amazon and Microsoft. - [Planning Hyper-V Virtual Machine Storage](https://petri.com/hyper-v-virtual-machine-storage/): Discover the many considerations when configuring storage for a Hyper-V virtual machine. - [Why You Shouldn't Disable the Firewall in Windows Server](https://petri.com/dont-disable-firewall-windows-server/): Learn why you shouldn't disable Windows Server Firewall on your PC and what tools you can use to configure the firewall. - [Microsoft Cloud OS: An Overview](https://petri.com/microsoft-cloud-os/): Discover the ins and outs of cloud computing and learn how Microsoft has made a cloud OS with Windows Server 2012 and System Center 2012 SP1. - [Windows Server Update Services (WSUS) 2012: Installation](https://petri.com/windows-server-update-services-wsus-2012-installation/): Become a WSUS wizard! Learn to install and configure Windows Server Update Services (WSUS) 2012. - [Network Address Translation Configuration](https://petri.com/network-address-translation-configuration/): In this follow-up to our introduction to Network Address Translation (NAT), learn how configure dynamic, static, and overloaded NAT. - [Using Remote Desktop Connection Manager](https://petri.com/using-remote-desktop-connection-manager/): In this Ask an Admin, discover how to manage remote desktop connections with Microsoft's Remote Desktop Connection Manager (RDCM). - [Using Hyper-V Snapshots](https://petri.com/create-manage-delete-hyper-v-snapshot/): It's a new Ask an Admin! Discover how to create, manage, and delete Hyper-V Snapshots. - [Setup a Domain Controller with Windows 2012 Server Core](https://petri.com/setup-domain-controller-windows-2012-server-core/): Server Core excels as an Active Directory Domain Controller. This article will guide you through creating a DC with Windows 2012 Server Core. - [Disabling User Account Control (UAC) in Windows 8](https://petri.com/disabling-user-account-control-uac-in-windows-8/): Wish you could drop UAC in Win8? We got you covered: Learn four easy ways to disable User Account Control in Windows 8 in this helpful tutorial. - [Enable the Active Directory Recycle Bin in Windows Server 2012](https://petri.com/enable-active-directory-recycle-bin-windows-server-2012/): Learn how to enable the Active Directory recycle bin in Windows Server 2012 using the Active Directory Administrative Center. - [How Hyper-V Snapshots Work](https://petri.com/how-hyper-v-snapshots-work/): Ever wondered how Hyper-V snapshots work? Wonder no more as we go take a walk through how snapshots work and mistakes to avoid. - [Top 10 SharePoint 2013 Features](https://petri.com/top-sharepoint-2013-features/): Is it worth upgrading to SharePoint 2013? We think so. Check out our list of the top 10 new SharePoint 2013 features. - [VM Limitations in Windows Server 2012 Hyper-V](https://petri.com/limitations-virtual-machines-windows-server-2012-hyper-v/): What are the limitations of Virtual Machines (VMs) created in Windows Server 2012 Hyper-V? Read on to find out! - [Virtualizing Microsoft Exchange Tips and Tricks](https://petri.com/virtualizing-microsoft-exchange-tips/): Considering using your virtualization infrastructure to run Exchange servers and save money? Check out these handy tips for virtualizing Exchange. - [The State of Windows 8](https://petri.com/state-of-windows-8/): We asked for our readers' opinions about Windows 8, and boy, you gave it to us. Check out what other IT pros thought of Win8 – for better or worse. - [Dedicated Forest Root Domains in Active Directory](https://petri.com/dedicated-forest-root-domain-in-active-directory/): New Ask an Admin! Check out the benefits and disadvantages of using a dedicated forest root domain in your Active Directory design. - [Hyper-V Snapshots: What, When, and Why](https://petri.com/hyper-v-snapshots/): What is a Hyper-V snapshot? Read this Ask an Admin for an introduction to Hyper-V snapshots and when you should consider using them. - [Create Exchange 2010 Server Reports with PowerShell](https://petri.com/create-exchange-2010-server-reports-powershell/): Moving on from mailboxes, next we tackle server reports! Learn to create Exchange 2010 server reports using PowerShell with this handy how-to article. - [Check a Domain Controller Configuration with the DCDiag Tool](https://petri.com/check-domain-controller-configuration-with-dcdiag/): Learn to wield the dcidiag.exe tool like a pro! Discover how to use check a DC configuration with the DCDiag tool in this Ask an Admin column. - [Choosing Hyper-V Storage: Virtual Hard Disks](https://petri.com/choosing-hyper-v-storage-virtual-hard-disks-2/): Looking at Hyper-V storage options? Discover the pros and cons of business friendly, cloud-enabled, virtual hard disks. - [Why Should I Use Windows 8 Client Hyper-V?](https://petri.com/reasons-for-windows-8-client-hyper-v/): Discover the properties of Windows 8 Client Hyper-V and the reasons why you should use it in this new Ask an Admin column. - [Create a Minecraft Server Using Windows Azure IaaS](https://petri.com/create-minecraft-server-windows-azure-iaas/): Wondering what to do with the new Windows Azure IaaS service? Discover how to spool up a Minecraft server with Azure IaaS in this tutorial with John Savill. - [Microsoft Exchange Storage Options: SATA Disks](https://petri.com/microsoft-exchange-storage-options-sata-disks/): As sysadmins seek to lessen deployment costs, many are deploying Exchange databases on SATA drives. Read on to discover why SATA storage may work for you. - [Changing the IP Address of a Domain Controller](https://petri.com/change-ip-address-domain-controller/): As part of your IT infrastructure, DCs should be assigned an IP address. Learn to change the IP address of a domain controller in this edition of Ask an Admin. - [Guest Post: The Future of Virtualization: The Software-Defined Datacenter](https://petri.com/virtualizationsoftware-defined-datacenter/): What's next for virtualization? Discover what's new in this article by VMware's Sr. Cloud Strategist Neela Jacques. - [Converting a Hyper-V Pass-Through Disk to a VHDX](https://petri.com/convert-hyper-v-pass-through-disk-to-a-vhdx/): Now that you know the merits of VHDX, let's dig deeper. Discover how to convert a Hyper-V pass-through disk to VHDX in this helpful Q&A. - [Managing Virtual Machines in Windows Server 2012 Hyper-V](https://petri.com/manage-virtual-machines-in-windows-server-2012-hyper-v/): Learn about the new features of Windows Server 2012 Hyper-V, how to manage VMs, and from which of its new features you can most benefit. - [Performing an Offline Domain Join in Active Directory](https://petri.com/offline-domain-join-active-directory/): Need to join a client to an AD domain that isn't connected to a domain controller? Learn how to perform an offline domain join in AD in this tutorial. - [Create Exchange 2010 Multiple Mailbox Reports with PowerShell](https://petri.com/exchange-mailbox-report-powershell-multiple-inboxes/): With PowerShell, what you can do for one item you can do for 1,000. Learn to create multiple Exchange 2010 mailbox reports using PowerShell. - [How to Convert a VHD File into VHDX](https://petri.com/convert-vhd-file-into-vhdx-file/): Stumped as to how to convert a Hyper-V VHD file into VHDX format? Learn how using both Hyper-V Manager and PowerShell in this article. - [Installing Active Directory Domain Services Role on Windows Server 2012](https://petri.com/install-active-directory-domain-services-role-windows-server-2012/): Active Directory really does keep getting better with age! Learn to install the AD domain services role on Windows Server 2012 in this handy how-to. - [Create Exchange 2010 Individual Inbox Reports with PowerShell](https://petri.com/create-exchange-2010-individual-inbox-reports-powershell/): Need to create Exchange 2010 individual mail reports? Learn how using PowerShell cmdlets to report on details of a single mailbox with this awesome article. - [Promote a Member Server to Domain Controller in Windows Server 2012](https://petri.com/promote-member-server-to-domain-controller-windows-server-2012/): Promoting a server to domain controller is a common task for Active Directory admins. Learn how using both the GUI and PowerShell in this tutorial. - [Install Active Directory on Windows Server 2012 with Server Manager](https://petri.com/install-active-directory-windows-server-2012-manager/): Want to know more about installing Active Directory on Windows Server 2012 with Server Manager? Learn to install AD DS components and configure a new forest. - [Deploy Update Rollup 2 for Virtual Machine Manager 2012 SP1](https://petri.com/deploy-update-rollup-2-virtual-machine-manager-2012-service-pack-1/): Check out our advice on how to deal with Microsoft's most recent update rollup for System Center Virtual Machine Manager 2012 Service Pack 1. - [How to Verify Domain Ownership in Office 365](https://petri.com/office-365-verify-domain-ownership/): One of the keys to successful federation is properly adding and verifying the domain. Learn to verify domain ownership in Office 365 with this handy article. - [How Reader Feedback Improves the Petri IT Knowledgebase](https://petri.com/reader-feedback-petri-it-knowledgebase/): We asked readers for feedback, and boy, did you deliver. Read on to see some survey results and to welcome a few new authors to the Petri family. - [Create a SharePoint 2013 Farm Configuration with PowerShell](https://petri.com/create-sharepoint-2013-farm-configuration-powershell/): Installing SharePoint 2013 can be easy, but there are still a few “gotchas." Avoid those and learn to create a Sharepoint Farm Configuration using PowerShell. - [Choosing Hyper-V Storage: Physical Disks](https://petri.com/choosing-hyper-v-storage-physical-disks/): Learn about storage and physical disks for Hyper-V virtual machines with Microsoft MVP and Hyper-V expert Aidan Finn. - [The State of Windows Server Security](https://petri.com/windows-server-security/): Learn about the state of Windows Server security in this article by Windows expert Russell Smith. - [vSphere Data Protection: Backup and Recovery](https://petri.com/vsphere-data-protection-backup-recovery/): We're back with our look at the new vSphere Data Protection (VDP)! Learn the process of backing up and recovering a vSphere virtual machine with VDP. - [vSphere Data Protection: Introduction and Installation](https://petri.com/vsphere-data-protection-introduction-installation/): Learn the pros and cons of VMware's new product, vSphere Data Protection (VDP), as well as how to install and configure VDP. - [Create Exchange 2010 Mailbox Size Reports with PowerShell](https://petri.com/create-exchange-2010-mailbox-size-reports-powershell/): Whip up an Exchange 2010 mailbox storage report using PowerShell with this handy how-to article! - [Review: ManageEngine Desktop Central](https://petri.com/manageengine-desktop-central-review/): We take on ManageEngine's Desktop Central, an affordable device management system. Will it stand up to our in-depth testing? Read our review of Desktop Central! - [Access VMFS Volumes without a VMware Host](https://petri.com/access-vmfs-volumes-without-vmware-host/): Need to access VMware VMFS files but don't have a running VMware host handy? Learn how to access VMFS files using the open source VMFS drive from fluid Ops. - [MMS 2013: Microsoft and the Cloud-Optimized Business](https://petri.com/mms-2013-microsoft-cloud-optimized-business/): What does Microsoft have in common with legendary linebacker Dick Butkus? Discover the connection in our MMS 2013 recap. - [Installing Exchange 2010 Management Tools on Windows 8](https://petri.com/install-exchange-2010-management-tools-windows-8/): Wrangling Exchange servers? Learn how to install and setup Exchange 2010 Management Tools on Windows 8 and Windows 7. - [Creating Failover Clusters in Windows Server 2012 Hyper-V](https://petri.com/create-failover-clusters-windows-server-2012-hyper-v/): Learn how to set up high availability with failover clustering using Hyper-V in Windows 2012 and in the free Hyper-V 2012 Server. - [MMS 2013: The Private Cloud Under Glass: HP's 'Serverquarium'](https://petri.com/mms-2013-private-cloud-hp-serverquarium/): Check this out: HP puts the private cloud on display with their 'Serverquarium' exhibit at MMS 2013. - [Create SharePoint List Items with PowerShell](https://petri.com/create-sharepoint-list-items-using-powershell/): Have you tried using PowerShell to connect to SharePoint to save your output as list items? Learn to do just that in this helpful guide. - [MMS 2013: Microsoft Promotes Cloud OS, Touts Customer Success Stories](https://petri.com/mms-2013-microsoft-promotes-cloud-os-touts-customer-success-stories/): Microsoft's Brad Anderson took the stage at MMS 2013 this morning to urge attendees to embrace the cloud and work to improve the agility of IT services. - [Virtualization Storage and the Importance of IOPS](https://petri.com/virtualization-storage-iops/): We're talking serious storage specification! Learn more as we go into virtualization and an overview of IOPS (Input/Output Operations per Second). - [Installing Microsoft Exchange 2010 SP3](https://petri.com/install-microsoft-exchange-2010-sp3/): Wait no longer: Exchange 2010 SP3 is available! Download the update, discover its new features, and learn how to install the latest version of Exchange 2010. - [How to Identify What Is Connected to a Network Switch](https://petri.com/identify-connections-network-switch/): Trying to identify what is connected to a Cisco network switch? Discover some networking options, both free and commercial. - [Selecting the Right Mobile Device Management (MDM) Software](https://petri.com/selecting-mobile-device-management-mdm-software/): Struggling with managing BYOD and company-owned devices? Learn what questions to ask when considering mobile device management (MDM) software. - [Top 5 Free VMware Virtual Appliances](https://petri.com/top-5-vmware-virtual-appliances/): Need an application or solution up and running fast? Trying to troubleshoot? Check out our list of the best VMware virtual appliances. - [Managing Hyper-V with PowerShell in Windows Server 2012](https://petri.com/powershell-hyper-v-windows-server-2012/): Learn to manage the Hyper-V role in Windows Server 2012 using PowerShell 3.0 with this helpful tutorial. - [Active Directory Integration with Office 365: Directory Sync](https://petri.com/active-directory-integration-office-365-directory-sync/): After the installation, integration, and federation comes the next step: Learn to activate local Active Directory synchronization with Office 365. - [RSA: Top 7 IT Security Trends for 2013](https://petri.com/rsa-it-security-trends-2013/): Need to know what to keep an eye out for on the IT security front? Check out our list of seven infosec trends you should keep an eye on. - [We're Hiring! Wanted: Windows Server Management and Virtualization Bloggers](https://petri.com/hiring-windows-server-management-virtualization-bloggers/): The Petri IT Knowledgebase is looking for writers and bloggers who are experts in Microsoft Windows Server administration and virtualization. Apply here! - [Using Microsoft PST Capture Tool for Exchange 2010](https://petri.com/microsoft-exchange-pst-capture-tool-exchange-2010/): Microsoft PST Capture Tool can be a life saver! Learn to install the PST Capture Console and search for PST files on Exchange 2010 with this helpful guide. - [RSA 2013: 10 Security Companies to Watch](https://petri.com/rsa-security-companies-to-watch/): Fresh from the RSA security conference, check out our list of 10 security companies that are doing interesting work in the security space. - [How to Block Websites by IP Address](https://petri.com/how-to-block-websites-ip-address/): Learn how to block specific websites, including Facebook and Youtube by IP address and how to research those addresses in this helpful how-to article. - [IPv4 and IPv6 Subnetting Differences](https://petri.com/ipv4-ipv6-subnetting-differences/): Do you know the fundamental differences between IPv4 and IPv6 subnetting? Read on to find out. - [Active Directory Integration with Office 365: Complete Federation](https://petri.com/active-directory-integration-office-365-complete-federation/): Learn to set up single sign-on and complete federation in part two of this series on Active Directory integration with Office 365. - [8 Tips to Optimize the Surface Pro](https://petri.com/optimize-surface-pro-tips/): Use that device like a pro! Discover 8 ways to get the most out of your Surface Pro. - [Installing RightFax Connector on Exchange Server 2010 Hub Transport Servers](https://petri.com/install-rightfax-exchange-server-2010-hub-transport/): RightFax connectors provide a seamless way to fax within Outlook. Learn to install and configure RightFax on Exchange 2010 Hub Transport servers in this how-to. - [Generate Test Data for Exchange 2010 Using PowerShell: Sending Email](https://petri.com/generate-test-data-exchange-2010-using-powershell-send-mail/): We're still generating test data! In part two of this series, learn how to send email using Exchange 2010 and PowerShell. - [7 Tips to Optimize the Microsoft Surface RT](https://petri.com/optimize-microsoft-surface-rt/): Increase the performance in your Microsoft Surface RT with these seven tips and tricks. - [Patch Tuesday: Microsoft Fixes Vulnerabilities in Windows, Office, Internet Explorer, and Server Tools](https://petri.com/microsoft-patch-tuesday-march-2013/): While not as massive as the monster patch tuesday release for February 2013, Microsoft's patch tuesday updates for March 2013 were still noteworthy. - [5 Tips for PowerShell 3.0 ISE](https://petri.com/powershell-3-ise-tips/): Discover helpful tips for PowerShell 3.0 ISE (Integrated Scripting Editor), including region folding, snippets, managing themes, parentheses, and more! - [Active Directory Integration with Office 365: Installation](https://petri.com/active-directory-integration-office-365-installation/): Moving to the cloud? Learn how to install and integrate an existing Active Directory infrastructure with Office 365 in this helpful guide. - [Introduction to VMware Horizon Suite](https://petri.com/introduction-vmware-horizon-suite/): Meet VMware's Horizon Suite, a client for end-user computing (EUC). Discover the Horizon Suite's components, and why you should consider using it. - [Five PowerShell 3.0 Tips & Tricks](https://petri.com/powershell-3-tips/): PowerShell 3.0 packs a punch! Discover our five must-have Powershell 3.0 tips. - [Generate Test Data for Exchange 2010 Using PowerShell: Simulate User Logons](https://petri.com/generate-test-data-exchange-2010-powershell-user-logon/): You know you should make a test environment, right? Learn to create test data for Exchange 2010 using PowerShell in part one of this two-part series. - [Exchange Administrator Tools, Tips, and Tricks](https://petri.com/exchange-administrator-tools-tips/): Every Exchange admin needs a toolbox. Check out our list of the top Exchange tools and resources. - [Petri's Top 10 Windows Server 2012 Articles](https://petri.com/top-windows-server-2012-articles/): Check out some of our favorite Windows Server 2012 articles that have appeared on Petri IT Knowledgebase. - [The Friday Funny: The Best T-Shirts at #RSAC 2013](https://petri.com/the-friday-funny-the-best-t-shirts-at-rsac/): Looking for the best T-shirts spotted at the RSA Conference? We've got you covered with this handy list of the top tees seen at the event. - [RSAC: Microsoft Touts Windows 8 Support for Latest Hardware Security Options](https://petri.com/rsac-microsoft-touts-windows-8-support-for-latest-hardware-security-options/): Some new hardware security options are hitting the market, and Microsoft used the RSA Conference as a backdrop to discuss how Windows 8 will support them. - [SubInACL: Setting Permissions](https://petri.com/subinacl-setting-permissions/): SubInACL is a tool worth keeping in your admin toolbelt. Learn to set permissions in SubInACL in this helpful tutorial. - [Cisco Express Forwarding (CEF): An Overview](https://petri.com/cisco-express-forwarding-cef-overview/): Learn about basic Cisco Express Forwarding (CEF) concepts, including the Forwarding Information Base (FIB), the Adjacency Table, dCEF, and more. - [RSAC: Microsoft Makes Case for "Security Optimism"](https://petri.com/rsac-microsoft-makes-case-for-security-optimism/): Microsoft Corporate Vice President Scott Charney used his RSA Conference keynote to argue that the security industry has made great strides in recent years. - [Increase Storage Space with a Surface Pro Recovery USB Stick](https://petri.com/increase-storage-surface-pro-recovery-usb/): Unhappy with your new Microsoft Surface Pro's lack of storage space? Learn to increase storage with a recovery USB stick. - [Best Windows 8 Deployment Tools](https://petri.com/best-windows-8-deployment-tools/): Deploying Windows 8 (and other Microsoft OSes) is easier than ever with the right tools! Read on for our list of favorite Windows 8 deployment tools. - [RSA Conference 2013 Survival Guide](https://petri.com/rsa-conference-2013-survival-guide/): Going to the RSA Conference 2013 in San Francisco next week? Here's a handy survival guide filled with tips to help you get the most out of the conference. - [SubInACL: Download and Deployment](https://petri.com/subinacl-download-deployment/): Managing security? Download subinacl.exe and learn how SubInACL is the Swiss Army knife of permissions management. - [Windows Network Troubleshooting Tools](https://petri.com/windows-network-troubleshooting-tools/): Troubled by tracert? Puzzled by ping? Learn about the most commonly used Windows troubleshooting tools. - [Exchange Server 2013 Hits and Misses](https://petri.com/exchange-server-2013-hits-misses/): Interested in Exchange Server 2013? Check out our look the new, improved features of Exchange 2013 as well as its misses and gotchas. - [Top 10 Cisco IOS Configuration Mistakes](https://petri.com/cisco-ios-configuration-mistakes/): Learning Cisco IOS? Check out our list of the top Cisco IOS configuration mistakes and avoid these common errors. - [How to Export and Import PowerShell Scheduled Jobs](https://petri.com/export-import-powershell-scheduled-jobs/): Learn to export and import scheduled jobs in PowerShell with this helpful guide. Download our ScheduledJobTools module as well! - [Monster Microsoft Patch Tuesday Release Squashes 57 Bugs](https://petri.com/monster-microsoft-patch-tuesday-release-squashes-57-bugs/): Microsoft's monthly 'Patch Tuesday' update was made available yesterday and addresses a whopping 57 separate security vulnerabilities. - [Windows Server 2012 Essentials: Configuration](https://petri.com/windows-server-2012-essentials-configuration/): Learn how to configure Windows Server 2012 Essentials as well as Anywhere Access and backup configuration in this tutorial by IT pro Peter de Tender. - [Microsoft Surface Pro: Unboxing and First Impressions](https://petri.com/microsoft-surface-pro-first-impressions/): We take an initial look at Microsoft's new Surface Pro with Windows 8 Professional. Learn how it compares to the Microsoft's Surface RT out of the box. - [Printing from iOS Devices to non-AirPrint Printers](https://petri.com/printing-ios-devices-non-airprint-printers/): Make printing from an iPad or iPhone a snap! Learn how to print from iOS devices using the Lantronix xPrintServer non-AirPrint Printer. - [Setting Out of Office (OOF) for Another User in Exchange 2010](https://petri.com/set-out-of-office-for-another-user-exchange-2010/): Learn how to configure the Out of Office (OOF) message for any user with the Exchange Management Shell. - [Take the Petri IT Knowledgebase Reader Survey for a Chance to Win a $100 Amazon Gift Card](https://petri.com/petri-it-knowledgebase-reader-survey/): Fill out the Petri IT Knowledgebase reader survey for a chance to win one of five $100 Amazon gift cards. Tell us what you think! - [Import Scheduled Tasks with PowerShell](https://petri.com/import-scheduled-tasks-powershell/): You've learned to export scheduled tasks, but what's next? Learn to import scheduled tasks using PowerShell, SchTasks.exe and Microsoft Management Console. - [How to Install Exchange Server 2013](https://petri.com/how-to-install-exchange-server-2013/): Installing Exchange Server 2013 isn't too different from previous versions, but beware of some gotchas. Learn more in our guide to installing Exchange 2013. - [How to Enable an Administrator Account in Windows 8](https://petri.com/enable-administrator-account-windows-8/): Need to enable an active administrator account in Windows 8? Read on to find easy how-to instructions. - [Recover Data from a Dead PC with USMT: Migration](https://petri.com/recover-data-dead-pc-usmt-migratio/): Don't be dour over a dead PC! Migrate recovered user data from a fried computer with this helpful guide. - [Recover Data from a Dead PC with USMT: Installation](https://petri.com/recover-data-dead-pc-usmt-installation/): Learn to retrieve user files and settings from a fizzled-out PC using User State Migration Tool (USMT) in this helpful guide. - [Export Scheduled Tasks Using PowerShell](https://petri.com/export-scheduled-tasks-using-powershell/): Learn how to export scheduled tasks using PowerShell and the management console in this how-to by PowerShell pro Jeff Hicks. - [Seed a Database in an Exchange 2010 DAG with NetApp SAN](https://petri.com/seed-database-exchange-2010-dag-netapp-san/): Moving a large amount of data? Learn how to use NetApp SnapMirror to seed a database in an Exchange 2010 DAG. - [Top 5 Windows 8 Enterprise Features](https://petri.com/top-windows-8-enterprise-features/): What does Windows 8 Enterprise offer that other versions of Win8 lack? Take a look at our list of noteworthy Windows 8 Enterprise features and improvements. - [The Friday Funny: Star Wars Stormtrooper Guards Google Data Center](https://petri.com/friday-funny-star-wars-stormtrooper-google-data-center/): These aren't the servers you're looking for. Enjoy this hilarious look as the Star Wars Force seems to be strong with Google's data centers. - [How to Manage Mobile Devices with Windows Intune](https://petri.com/manage-mobile-devices-windows-intune/): Learn how you can use Windows Intune to manage your mobile Windows RT, Android, and iOS-based devices devices in this helpful how-to by Peter de Tender. - [Manually Seed an Exchange 2010 DAG Database](https://petri.com/seed-exchange-2010-dag-database/): Manually seeding a database isn’t common, but it's good in a pinch. Learn to manually seed an Exchange 2010 DAG database in this tutorial. - [Installing the Windows Intune Client on Windows 8](https://petri.com/install-deploy-windows-intune-windows-8/): Looking for a cloud-based client management solution for Windows 8? Learn how to install and deploy Windows Intune in this tutorial by Peter de Tender. - [Boot a Hyper-V Virtual Machine from a USB Drive](https://petri.com/boot-hyper-v-virtual-machine-usb-drive/): Can't get enough virtualization? Learn how to boot a Hyper-V VM to a USB drive in this tutorial by IT pro Peter de Tender. - [PowerShell Web Access: Reconfiguration](https://petri.com/powershell-web-access-reconfiguration/): We're at the end of our PowerShell Web Access series! Learn how to reconfigure PSWA for use in the domain. - [Microsoft Updates Cloud OS Strategy](https://petri.com/microsoft-cloud-os-update/): Learn about Microsoft's recent updates, add-ons, and improvements to System Center 2012, Windows Intune, and Windows Azure. - [How to Create a Windows To Go USB Drive](https://petri.com/create-windows-to-go-usb-drive/): Learn Windows to Go basics and how to make a Windows to Go USB drive in this helpful tutorial by IT veteran Peter de Tender. - [Configure Exchange 2010 to Receive Emails for Other Domains](https://petri.com/configure-exchange-2010-receive-email-external-domains/): Learn to configure Exchange 2010 to receive emails from external domains via GUI or PowerShell in our easy step-by-step guide. - [PowerShell Web Access: Testing](https://petri.com/powershell-web-access-testing/): PSWA installation, configuration... It's time for the next step: Learn how to test your PowerShell Web Access web applications. - [Performing a Remote Device Wipe with Exchange](https://petri.com/remote-device-wipe-exchange/): Learn how to remotely wipe a device using Exchange in this helpful how-to article. - [Top 10 VMware vSphere Performance Tips](https://petri.com/top-10-vmware-vsphere-performance-tips/): Viva la virtualization! Make the most of vSphere with our top 10 performance and optimization tips from David M. Davis. - [Bring Your Own Device: Will 2013 be the Year of BYOD?](https://petri.com/bring-your-own-device-byod-trends/): Waiting for the Bring Your Own Device revolution? Read on for reasons 2013 will be the year employers embrace BYOD. - [PowerShell Web Access: Configuration](https://petri.com/powershell-web-access-configuration/): We continue our look at PowerShell Web Access (PSWA) -- read on as we delve into gateway configuration and configuring authorization rules. - [What is VMware vCloud?](https://petri.com/vmware-vcloud/): Learn about VMware vCloud and general cloud computing in this helpful walk-through with virtualization guru David Davis. - [PowerShell Web Access: Installation Guide](https://petri.com/powershell-web-access-installation-guide/): Installing PowerShell Web Access (PSWA) is a snap in this easy-to-follow guide. - [Top 10 Petri IT Knowledgebase Articles of 2012](https://petri.com/top-10-petri-articles-2012/): Take a look at some of the more popular Petri IT Knowledgebase articles that ran in 2012. - [Holiday IT Horror Stories](https://petri.com/holiday-it-horror-stories/): Being an IT pro isn't always glamorous. Read on for some of our favorite reader-submitted holiday IT horror stories. - [How to Defrag Drives using Powershell in Windows Server 2012](https://petri.com/defrag-drives-powershell-windows-server-2012/): Defragging can be such a drag. Learn how to defrag drives using Powershell cmdlets in this helpful how-to by Jeff Hicks. - [Oracle VM VirtualBox 4.2.4 Review](https://petri.com/oracle-vm-virtualbox-review/): Looking for a free, easy-to-use desktop virtualization product? Check out our review to see if the latest version of Oracle VM VirtualBox makes the cut. - [Top 10 Holiday Gifts for Sysadmins](https://petri.com/geek-gift-sysadmin/): Looking for a present for your favorite system administrator? Check out our 2012 holiday gift guide for sysadmins and network administrators. - [VMware Site Recovery Manager: VRM Server Configuration and Testing](https://petri.com/vmware-site-recovery-manager-vrm-server-configuration-testing/): Learn to configure the VRM server and test the database in VMware Site Recovery Manager 5.0 in the second part of these series. Step-by-step and video! - [Switching Between the GUI and Server Core in Windows Server 2012](https://petri.com/switching-gui-server-core-windows-server-2012/): The server GUI in Windows Server 2012 is now an optional feature. Learn to switch between the GUI and server core in this helpful how-to by Jeff Hicks. - [VMware Site Recovery Manager: Preparing the VRM Database](https://petri.com/vmware-site-recovery-manager-5-preparing-vrm-database/): Learn how to prepare the VRM database in VMware Site Recovery Manager 5.0 for configuration in the first part of these series. Step-by-step and video! - [3 Ways to Make the Most Out of Keeping Windows XP](https://petri.com/windows-xp-tips/): Many IT departments are still using Windows XP and will likely stick with it. Check out these 3 tips on making the most out of keeping Windows XP. - [Performing Disk Repair with PowerShell Cmdlets in Windows Server 2012](https://petri.com/disk-repair-powershell-cmdlets-windows-server-2012/): Sometimes things go wrong with disks or volumes. Learn to repair disks with Powershell cmdlets in Windows 2012 in this helpful article. - [Windows 8 Deployment Using MDT 2012: OS Install](https://petri.com/windows-8-deployment-mdt-2012-os-install/): Read on about Windows 8 deployment using MDT 2012 in part two of this series by Peter De Tender. - [HP Cloud Services and Strategy Updates Announced](https://petri.com/hp-cloud-services-strategy-update/): Read on for the latest updates to HP Cloud Services, HP Cloud Service Automation, and HP CloudSystem, as announced at 2012 HP Discover Frankfurt. - [Windows 8 Deployment Using MDT 2012: Setup and Configuration](https://petri.com/windows-8-deployment-mdt-2012-setup/): Learn how to setup Windows 8 deployment using MDT 2012 in this first of a two-part series by Peter De Tender. - [Using Ping and Traceroute for Network Troubleshooting](https://petri.com/ping-and-traceroute-network-troubleshooting/): Learn how sysadmins use the ping and traceroute (aka tracert) commands to configure and troubleshoot networks. - [Using the Netstat Command to Monitor Network Traffic](https://petri.com/netstat-command-monitor-network-traffic/): The netstat command can be a very useful tool. Learn more about how to use netstat command to monitor your network traffic and more. - [Useful Keyboard Shortcuts for Windows Server 2012](https://petri.com/keyboard-shortcuts-for-windows-server-2012/): Check out this helpful list of keyboard shortcuts for faster ways to navigate the new interface in Windows Server 2012. - [DameWare Remote Support Software [Sponsored]](https://petri.com/dameware-remote-support-software/): Learn how DameWare Remote Support software by Solarwinds enables remote Windows administration, Active Directory Management, and more. - [Five Reasons to Deploy Exchange 2013](https://petri.com/why-deploy-exchange-2013/): Exchange 2013 is loaded with useful new features. Read on for our reasons to deploy Exchange 2013, Microsoft's ubiquitous email server software. - [How to Configure a Static IPv4 Address in Windows 7](https://petri.com/configure-static-ipv4-address-windows-7/): Knowledge is power! Learn how to configure a static IPv4 address using Windows 7 in this useful step-by-step tutorial. - [7 Things Sysadmins Can Be Thankful For This Thanksgiving](https://petri.com/7-things-sysadmins-are-thankful-thanksgiving/): What are sysadmins thankful for this Thanksgiving? Check out what must-have items makes the lives of IT pros easier. - [How to Modify, Schedule and Launch Scheduled Tasks in Windows 8 and Server 2012](https://petri.com/manage-schedule-and-launch-scheduled-tasks/): Learn to modify a scheduled task, manually launch a scheduled task, remove a scheduled task in this PowerShell series by Jeff Hicks, - [How to Limit Targeted Ad Tracking in iOS 6](https://petri.com/limit-targeted-ad-tracking-ios-6/): Of the 200+ new and enhanced features Apple touted with iOS 6, nowhere is their new form of Ad Tracking listed. Learn how to limit targeted ad tracking in iOS6 with this tutorial by John O'Neill, Sr. - [Microsoft at a Crossroads](https://petri.com/microsoft-at-a-crossroads/): It's been a busy few weeks for Microsoft. Read Jeff James' thoughts on the release of Windows 8, Microsoft Surface, and Windows Phone 8, as well as the departure of Windows President Steven Sinofsky. - [Manage Scheduled Tasks in Windows 8 and Windows Server 2012 with PowerShell : Part 2](https://petri.com/manage-scheduled-tasks-windows-8-windows-server-2012-powershell-part-2/): Create a new scheduled task in Windows 8 and Windows Server 2012 with Powershell in part two of this series by Hicks. - [Generating Site Survey Reports Using Cisco WCS](https://petri.com/generating-site-survey-reports-using-cisco-wcs/): Learn how to generate impressive site survey reports using Cisco WCS with this helpful step-by-step article. - [How to Prepare an iPad for Deployment Using Apple Configurator](https://petri.com/how-to-prepare-ipad-deployment-using-the-apple-configurator/): We're movin' on to mobile device management! Read on to learn how to prepare an iPad for deployment using Apple Configurator. - [Five Must-Have Windows 8 Apps](https://petri.com/five-best-windows-8-apps/): Whether you're still deciding whether to upgrade to Win8 or have already taken the plunge, check out our list of the top 5 must-have Windows 8 apps. - [Windows 8 Feature Focus: 3 Huge Improvements in IIS 8](https://petri.com/windows-8-feature-focus-3-improvements-iis-8/): We name the three big improvements in IIS 8 and teach you how to install IIS 8 in Windows 8 and Windows Server 2012. - [Manage Scheduled Tasks in Windows 8 and Windows Server 2012 with PowerShell : Part 1](https://petri.com/manage-scheduled-tasks-windows-8-windows-server-2012-powershell-part-1/): Manage scheduled tasks in Windows 8 and Windows Server 2012 with Powershell in part one of this series by Jeff Hicks. - [What Is Windows Azure IaaS?](https://petri.com/what-is-windows-azure-iaas/): Want to feel clear-headed about the cloud? Learn more as Matt Hester discusses cloud services such as Windows Azure Iaas and how it can work for you. - [How to Use Windows Easy Transfer to Migrate to a Windows 8 PC](https://petri.com/windows-easy-transfer-to-migrate-windows-8-pc/): Moving info from an old computer to a new one can be a hassle. Read on for a hassle-free way to use Windows Easy Transfer to migrate to a Windows 8 PC. - [Six Reasons to Deploy Windows 8](https://petri.com/six-reasons-to-deploy-windows-8/): Still on the fence about whether to deploy Windows 8? Here are six IT-friendly features that may convince you to make the switch. - [How to Import Hyper-V Virtual Machines from a Backup](https://petri.com/how-to-import-hyper-v-virtual-machines-from-a-backup/): Learn how to import virtual machines using Hyper-V Manager and Powershell with this helpful tutorial by Jeff Hicks. - [Six Reasons Not to Deploy Windows 8](https://petri.com/six-reasons-not-to-deploy-windows-8/): Windows 8 may be an impressive product, but it still may not be right for you or your company. Read our six reasons why you shouldn't deploy Windows 8. - [Windows 8 Overview and XP-eriences](https://petri.com/windows-8-overview/): Veteran IT professional Peter De Tender gives his overview of Windows 8, and discusses what migration from Windows XP/7 to Windows 8 may entail. - [Microsoft Surface RT Review](https://petri.com/microsoft-surface-rt-review/): Microsoft Surface RT | The new Surface RT tablet has finally arrived. Does Microsoft's entry into the tablet arena have what it takes? Read our review for more! - [Introduction to Border Gateway Protocol (BGP)](https://petri.com/introduction-border-gateway-protocol-bgp/): Learn basic concepts of Border Gateway Protocol in this helpful introduction to BGP. - [The First 5 Steps to Take with Windows 8](https://petri.com/first-5-steps-windows-8/): You have the shiny new Windows release installed -- now what? Jeff Hicks shows you the first five steps to take with Windows 8. - [Video Interview: HotLink CEO on Multi-Hypervisor Management and Hybrid Cloud](https://petri.com/video-interview-hotlink-multi-hypervisor-management-hybrid-cloud/): VMware expert David Davis sits down with HotLink CEO Lynn LeBlanc to discuss virtualization and private cloud management. - [How to Upgrade iOS using Apple Configurator](https://petri.com/how-to-upgrade-ios-apple-configurator/): John O'Neill, Sr., shows you just how to upgrade single or multiple iOS with Apple Configurator. - [How to Use SetSPN to Set Active Directory Service Principal Names](https://petri.com/how-to-use-setspn-to-set-active-directory-service-principal-names-2/): Michael Simmons shows you how to how to specify a user or computer account to be identified with an SPN by using the SetSPN utility. - [The Friday Funny: Steve Ballmer Selling Windows 1.0](https://petri.com/the-friday-funny-steve-ballmer-selling-windows-1-0/): Windows 8 officially arrives a week from now, but does anyone remember Windows 1.0? Watch Microsoft CEO Steve Ballmer make the official pitch for the Windows that started it all. - [How to Change the Product Key in Windows 8](https://petri.com/how-to-change-product-key-in-windows-8/): John O'Neill, Sr., shows you how to change the product key in Windows 8 using the GUI AND the command line. How's that for value? - [How to Export Hyper-V Virtual Machines](https://petri.com/how-to-export-hyper-v-virtual-machines/): Jeff Hicks shows how to export Hyper-V virtual machines using PowerShell and Hyper-V Manager. - [Application Installations with Microsoft Deployment Toolkit 2102 Update 1](https://petri.com/application-installation-microsoft-deployment-toolkit-2102-update-1/): You've installed MDT 2012 Update 1 -- now what? Michael Simmons walks you through adding and configuring application installations with Microsoft Deployment Toolkit 2102 Update 1. - [Spanning Tree Protocol (STP) Path Selection](https://petri.com/stp-spanning-tree-protocol-path-selection/): Do you know what a root bridge is? Sean Wilkins shares some STP path selection know-how. - [How to Connect CentOS Web Server to a SQL Server](https://petri.com/how-to-connect-centos-web-server-to-a-sql-server/): Learn how to set up an internal CentOS web server to talk to a SQL server in this handy how-to article. - [The Friday Funny: Kevin Costner and the Apple Lisa](https://petri.com/the-friday-funny-kevin-costner-and-the-apple-lisa/): Kevin Costner steps in as Apple Lisa pitchman in this advertising classic from the early 1980s. - [Troubleshooting Cisco VTP](https://petri.com/cisco-vtp-troubleshooting/): Does your Cisco VTP configuration need an SOS? Sean Wilkins tackles Cisco VLAN Trunking Protocol (VTP) troubleshooting issues. - [Windows 8 Client Hyper-V : Managing Client Hyper-V with PowerShell](https://petri.com/manage-hyper-v-client-with-powershell/): In part five of our Hyper-V series, Jeff Hicks runs through the steps in managing Windows 8 Client Hyper-V with PowerShell. - [Comparison Shopping: SharePoint 2010 Versions](https://petri.com/comparison-shopping-sharepoint-2010-versions/): Which version of SharePoint should you use? Michael Simmons compares multiple editions of Sharepoint 2010. - [VMware Updates vCloud Suite, Announces VMware vCloud Automation Center 5.1](https://petri.com/vcloud-automation-center-5-1/): At VMworld Barcelona, VMware announces updates to the vCloud Suite and unveils VMware vCloud Automation Center 5.1. - [10 Tips to Make a Secure Password](https://petri.com/how-to-make-a-secure-password/): Trying to improve the strength of your passwords? Discover 10 tips to make a safer password and thwart people you don't want on your network. - [IPv6 Support in Windows 8 and Windows Server 2012](https://petri.com/ipv6-support-windows-8-windows-server-2012/): Sean Wilkins discusses what's new in Windows Server 2012 and Windows 8 in terms of IPv6 support. - [Windows 8 Client Hyper-V : Create a Virtual Machine Based on an Exisiting VHD File](https://petri.com/windows-8-client-hyper-v-part-4-create-a-virtual-machine-based-on-an-exisiting-vhd-file/): In part four of this series, Jeff Hicks shows you how to create a new virtual machine based on an existing VHD file in WIndows 8 Hyper-V. - [How to Create a Deployment Share in MDT 2012](https://petri.com/how-to-create-deployment-share-mdt-2012/): We continue our MDT talk with Michael Simmons, who shows you how to create a deployment share in MDT 2012. - [How to Add a Windows 8 Start Menu](https://petri.com/add-a-windows-8-start-menu/): Find out how to add a start menu to Windows 8 and get Windows 8 working the way you want it to work. - [5 Reasons Why You Should Replace Task Manager with Sysinternals Process Explorer](https://petri.com/5-reasons-replace-task-manager-with-sysinternals-process-explorer/): Michael Simmons can give you 5 good reasons why you should replace Task Manager with Sysinternals Process Explorer. - [Apple and Microsoft Fans: Can't We All Just Get Along?](https://petri.com/apple-and-microsoft-fans-cant-we-all-just-get-along/): In today's The Friday Funny, we explore the relationship between Apple, Microsoft, and the stoner as IT product pitchman. - [Microsoft Deployment Toolkit (MDT) 2012 Update 1: Overview and Installation](https://petri.com/microsoft-deployment-toolkit-mdt-2012-update-1-overview-installation/): Monkeying around with the Microsoft Deployment Toolkit 2012? Michael Simmons takes you though the overview and installation process of MDT 2012 Update 1. - [Windows 8 Client Hyper-V : Importing Virtual Machines](https://petri.com/import-virtual-machines-in-windows-8-client-hyper-v/): In part 3 of our Windows 8 Client Hyper-V series, Jeff Hicks walks you through the steps of importing virtual machines. - [How to Backup SharePoint 2010](https://petri.com/how-to-backup-sharepoint-2010/): Don't get lazy! Michael Simmons shows you how to backup SharePoint 2010 data in three easy steps. - [Microsoft Volume Activation Management Toolkit v3 (VAMT 3): Improvements and Installation](https://petri.com/microsoft-volume-activation-management-toolkit-3-improvements-installation/): Microsoft's Volume Activation Management Toolkit version 3 (VAMT 3) is chock-full of new features. Michael Simmons walks you through the improvements. - [iPhone 5 First Impressions](https://petri.com/iphone-5-first-impressions/): Our own John O'Neill Sr. gives his take on the new iPhone 5. Is Apple's latest smartphone worth the wait? - [Top 10 Windows Server 2012 Features](https://petri.com/top-10-windows-server-2012-features/): The jury may still be out on Windows 8 in the enterprise, but check out our list of 10 useful features in Windows Server 2012 for IT admins. - [Windows 8 Client Hyper-V : Configuring a Virtual Switch](https://petri.com/windows-8-client-hyper-v-configuring-virtual-switch/): We continue our look at Windows 8 Client Hyper-V in part two of our series. In this installment, Jeff walks us through configuration of a virtual switch. - [Interview: Microsoft's Chris Van Wesep on System Center 2012 SP1](https://petri.com/interview-microsofts-chris-van-wesep-on-system-center-2012-sp1/): In this interview, Microsoft's Chris Van Wesep clues us in on the new features in System Center 2012 SP1. - [How to Wipe Mobile Devices Through Outlook Web Access (OWA)](https://petri.com/how-to-wipe-mobile-devices-outlook-web-access-owa/): John O'Neill, Sr., shows you how to enable users to perform a remote wipe of their own mobile devices through Outlook Web Access (OWA). - [Win A Free Trip to VMworld, TechEd, Citrix Synergy, or Cisco Live 2013](https://petri.com/win-a-free-trip-with-trainsignals-10th-anniversary-giveaway/): Our friends at TrainSignal are celebrating their 10th anniversary by giving away a free trip to VMware VMworld, TechEd, Citrix... - [Understanding Managed Paths in SharePoint 2010](https://petri.com/understanding-managed-paths-sharepoint-2010/): Without forethought and planning, it's easy for managed paths to get out of hand. Michael Simmons helps you understand managed paths in SharePoint 2010. - [Interview: Microsoft's Edwin Yuen, Matt McSpirit Discuss System Center 2012](https://petri.com/interview-microsoft-edwin-yuen-matt-mcspirit-system-center-2012-part-2/): Read our interview with Microsoft's Edwin Yuen and Matt McSpirit as they discuss the evolution of System Center 2012. - [Interview: Microsoft's Edwin Yuen, Matt McSpirit Discuss Windows Server 2012 and Hyper-V 3.0](https://petri.com/edwin-yuen-matt-mcspirit-discuss-windows-server-2012-hyper-v-3-0/): We interview Microsoft's Edwin Yuen and Matt McSpirit as they discuss Windows Server 2012, Hyper-V 3.0, Windows ODX, and SR-IOV. - [Windows 8 Client Hyper-V : Installation and Configuration](https://petri.com/using-windows-8-client-hyper-v-part-1/): Jeff Hicks discusses using Windows 8 client Hyper-V in the first of a five-part series. - [Enable and Restore File History in Windows 8](https://petri.com/enable-restore-file-history-windows-8/): File History is not just another name for a backup -- it also protects against accidental changes. John O'Neill, Sr., shows you how to enable and restore File History in Windows 8. - [Microsoft Develops Pointers Web App to Improve Windows 8 Deployment Experience](https://petri.com/pointers-improve-windows-8-deployment/): Microsoft is using pointers to streamline users' Windows 8 deployment experience. Michael Simmons discusses its advantages for Microsoft – and for you. - [How to Wipe an iPhone or iPad](https://petri.com/how-to-wipe-an-iphone/): John O'Neill, Sr., walks you through how to wipe an iPhone or iPad and render it factory-fresh. - [How to Create a PowerShell Update System for Help Files](https://petri.com/how-to-create-powershell-update-system-help-files/): Jeff Hicks shows you how to create a PowerShell update system for help files. - [Microsoft Technical Fellow Mark Russinovich Updates Sysinternals, Adds Windows 8 Support](https://petri.com/sysinternals-adds-windows-8-support/): Microsoft Technical Fellow Mark Russinovich has updated many of his free Sysinternals Windows utilities with bug fixes and other improvements. - [VMworld 2012: VMware Hopes to Revolutionize Online Learning with Project NEE](https://petri.com/vmworld-2012-vmware-online-learning-project-nee/): VMware's new Project NEE training platform has the potential to significantly improve online education. - [Windows Server 2012 Arrives Today](https://petri.com/windows-server-2012-arrives-today/): Microsoft will announce later this morning that Windows Server 2012 is now generally available for purchase and download. - [Creating Custom Objects in PowerShell: v3.0 Enhancements](https://petri.com/creating-custom-objects-windows-powershell-part-4/): Learn to create custom objects in PowerShell and discover the enhancements found in PowerShell v3.0 in this last installment of a multi-part series. - [Creating Custom Objects in PowerShell from Scratch](https://petri.com/creating-custom-objects-in-windows-powershell-part-3/): Learn to create PowerShell custom objects from scratch in part three of this series. - [How to Enable and Manage Safari’s Bookmarks Bar](https://petri.com/how-to-enable-manage-safari-bookmarks-bar/): John O'Neill, Sr., shows you how to enable and manage Safari's bookmarks bar. - [VMworld 2012 : VMware Introduces Horizon Suite](https://petri.com/vmworld-2012-vmware-introduces-horizon-suite/): VMware Chief Technology Officer Steve Herrod introduces the new VMware Horizon Suite at day two of VMworld 2012. - [VMworld 2012: VMware Launches vCloud Suite 5.1](https://petri.com/vmworld-2012-vmware-launches-vcloud-suite-5-1-find-out-whats-new/): VMware unveiled vSphere 5.1 and vCloud 5.1 today at VMworld 2012. David M. Davis provides a technical overview of what's new and noteworthy. - [VMworld 2012: VMware Introduces New CEO, Attempts to Redefine Cloud Discussion](https://petri.com/vmworld-2012-vmware-introduces-new-ceo-redefines-cloud-discussion/): At VMworld 2012, incoming VMware CEO Pat Gelsinger outlined the company's new "software-defined datacenter" product strategy and unveiled the new VMware vCloud Suite. - [Free Network Management Tools from SolarWinds [Sponsored]](https://petri.com/free-network-management-tools-from-solarwinds-sponsored/): Looking for some free network management tools? SolarWinds describes three of their best no-charge networking tools in this sponsored post. - [Use System Center to Monitor Your Coffee Consumption](https://petri.com/use-system-center-to-monitor-your-coffee-consumption/): Microsoft System Center can easily manage thousands of PCs, but did you know it can also monitor your coffee intake? - [Windows 8 File History Protects Users from Doom and Data Loss](https://petri.com/windows-8-file-history/): John O'Neill, Sr., shows you how the Windows 8 File History feature protects users from disastrous data loss. - [3 Ways to Shut Down Windows 8](https://petri.com/how-to-shut-down-windows-8/): Need to know how to shut down Windows 8? John O'Neill, Sr., walks you through three easy methods to shut down Windows 8. - [Creating Custom Objects in PowerShell with the Original Object](https://petri.com/creating-custom-objects-windows-powershell-part-2/): Learn to create custom objects in PowerShell while keeping the original object in part two of this series. - [IP Security Basics : How to Set Up IPSec Direct Encapsulation on Cisco Devices](https://petri.com/ipsec-direct-encapsulation/): Sean Wilkins walks you through the setting up IPSec direct encapsulation on Cisco devices. - [The Advantages of Using the Cloud to Unify Communications](https://petri.com/advantages-using-cloud-communications/): Mike Danseglio shows you why it's smart to use the cloud to unify and combine your communications. - [How to (Painlessly) Transfer Your iTunes Library to a Different PC](https://petri.com/how-to-transfer-itunes-library/): Is your iTunes library in the Lost & Found? John O'Neill, Sr. walks you through an easy and pain-free way of transferring your old info to a new device. - [Creating Custom Objects in PowerShell : Introduction](https://petri.com/custom-objects-windows-powershell-part-1/): Learn to create your own custom object in Powershell in this four-part series. - [The Session Initiation Protocol (SIP) Primer](https://petri.com/session-initiation-protocol/): New to the wide world of Session Initiation Protocol (SIP)? In this article, Sean Wilkins will briefly demystify SIP and its network elements. - [Cloud Storage for Content Creation and Management](https://petri.com/cloud-storage-for-content-creation/): Considering moving files and content to the cloud? Mike Danseglio gives you some tips on how to make the most of your cloud computing solution. - [Turn Off Data Roaming on Your iOS Devices (and Avoid Surprises)](https://petri.com/turn-off-data-roaming-on-ios-devices/): Worried about the cost of unfettered data roaming on your iOS device? John O'Neill Sr. serves up some tips to help you avoid stress and save money. - [WinRM - Not Just for PowerShell](https://petri.com/winrm-not-just-for-powershell/): Jeff Hicks explains how WinRM can be used outside of PowerShell - [Introduction to Network Address Translation](https://petri.com/introduction-to-network-address-translation/): Interested in learning more about Network Address Translation (NAT)? In this article, Sean Wilkins provides a tutorial on what NAT... - [Identity Management with Forefront Identity Manager 2010](https://petri.com/identity-management-with-forefront-identity-manager-2010/): Microsoft’s Forefront Identity Manager 2010, or FIM 2010, is an identity management solution which can handle every aspect of managing... - [4 Steps to Protect Your Data in The Cloud](https://petri.com/protect-your-data-in-the-cloud/): Considering using the cloud for part of your IT infrastructure? Here are four tips that any IT pro should find useful when preparing for a move to the cloud. - [Installing Windows Server 2012 (RC) Step-by-Step](https://petri.com/installing-windows-server-2012-rc/): A step-by-step easy-to-follow guide on how to install Windows Server 2012. - [Where Is the File: Using Get-FileItem](https://petri.com/using-get-fileitem/): Learn how to quickly find the file you are looking for by using the command line utility Get-FileItem. - [Problems with RDP Connections on Windows Server 2008 R2](https://petri.com/rdp-windows-server-2008-r2/): Learn how to solve RDP problems on your Windows Server 2008 R2 machine. - [Selecting High Availability Technologies for Cloud Computing](https://petri.com/high-availability-in-the-cloud/): Mike Danseglio explores the Availability Technologies recommendations, from the NIST's Guidelines on Security and Privacy in Public Cloud Computing. - [Microsoft Lync Resources on Twitter](https://petri.com/microsoft-lync-resources-on-twitter/): A handy guide to some of the best Microsoft Lync resources and experts on Twitter. - [How To Use The Active Directory Topology Diagrammer](https://petri.com/using-active-directory-topology-diagrammer/): Learn how to use the Active Directory Topology Diagrammer to quickly create diagrams of your AD structure. - [Grant DNSAdmins the Right to View DNS Event Log Entries Remotely on Windows Server 2008 R2](https://petri.com/grant-dnsadmins-rights-on-windows-server-2008-r2/): Learn how to grant DNSAdmins the right to view DNS event log entries remotely on Windows Server 2008 R2. - [Where is the File: Using Where.exe](https://petri.com/using-where-exe/): Learn how to use the command line Where.exe to quickly search for files in part 1 of this how-to. - [Defining Availability Requirements for Cloud Computing](https://petri.com/availability-requirements-for-cloud-computing/): Mike Danseglio goes over government requirements for defining availability in the cloud. - [BYOD - Bring Your Own Device - Coming to a Workplace Near You](https://petri.com/byod-bring-your-own-device/): This article focuses on ways that Windows on ARM (WOA) installations that your users bring into your organizations can not only be useful, but safe. - [Oracle to Launch New Cloud Application: Are They Too Late?](https://petri.com/oracle-to-launch-cloud-application/): Oracle's announced the launch of their new cloud application -- will it be able to stand out from its competitors or is Oracle too late? - [How to Find the Right SharePoint Training: A Resource Guide for IT Pros](https://petri.com/sharepoint-training-resources/): IT veteran Michael Simmons lists the best resources when learning SharePoint. - [Windows Server 2012: First Five Fixes](https://petri.com/windows-server-2012-fixes/): PowerShell MVP Jeff Hicks discusses his "First Five Fixes" when setting up a new Windows Server 2012 system. - [Spanning Tree Protocol: STP Port States](https://petri.com/spanning-tree-protocol-port-states/): Learn what happens during each Spanning Tree Protocol port state and why they are needed for STP operation. - [Drobo Storage Pushing the Limits with BeyondRAID, Thunderbolt and vSphere Certification](https://petri.com/drobo-storage/): Drobo is pushing the limits of SMB-level and pro-sumer storage with BeyondRAID, Thunderbolt, Data-Aware SSD Tiering, 'VMware Ready' cert and much more. - [July 2012 Webinar Update: Free Webinars for IT Pros](https://petri.com/it-webinars-july-2012/): Don't miss free, live webinars happening this month on Windows 8, IT security fundamentals, and how to build a successful... - [How the Cloud is Making Siri Smarter in iOS 6](https://petri.com/cloud-improving-siri-in-ios6/): See how Apple is making Siri smarter in iOS6 by utilizing the Cloud. - [Where is the Cisco CCNA 2012 Update?](https://petri.com/cisco-ccna-2012/): Where is the CCNA 2012 update? In this article we'll help you understand Cisco's certification revision process and how to prepare for the CCNA in 2012. - [Using the Active Directory Recycle Bin in Windows Server 2008 R2](https://petri.com/using-active-directory-recycle-bin/): PowerShell MVP Jeff Hicks shows how to easily recover deleted objects in Active Directory using PowerShell. - [Understanding Mailbox Auditing Reports in Office 365](https://petri.com/office-365-mailbox-auditing-reports/): Learn about the different auditing reports that are available in Office 365, and why they are useful. - [Hyper-V Backup Tools: New and Improved](https://petri.com/new-hyper-v-backup-tools/): vExpert David Davis explains the different backup tools available for your enterprise backup, and how to choose the best one. - [Top 3 Reasons to Learn PowerShell](https://petri.com/top-3-reasons-to-learn-powershell/): Speaker and author Mark Minasi tells you why you should learn PowerShell. - [Setting Up the Active Directory Recycle Bin in Windows Server 2008 R2](https://petri.com/setting-up-active-directory-recycle-bin/): Learn how to set up Windows Server 2008 R2's new feature, the Active Directory Recycle Bin. - [Improve Your Networking Skills with the CCNA Aspire Game](https://petri.com/ccna-aspire-game/): A complete review of Cisco's CCNA Aspire, a game filled with tasks that encompass more than 80% of the material covered on the CCNA exam. - [The New MCSE: Changes To The Microsoft Certification Program](https://petri.com/the-new-mcse/): Learn about Microsoft's new MCSE program. - [Microsoft Surface: Will It Beat the iPad?](https://petri.com/microsoft-surface-vs-ipad/): Learn how the Microsoft Surface tablet compares to Apple's iPad. - [Exchange 2010 High Availability: Non-Mailbox Server Roles](https://petri.com/exchange-2010-ha-non-mailbox-server-roles/): Learn how to configure two CAS-HUB servers for high availability. - [Managed Service Accounts: Change or Roll Back the MSA](https://petri.com/managed-service-accounts-3/): Read on to learn how to change or roll back the Managed Service Account (MSA) in part three of this series. - [RIP for IPv6: RIPng Configuration](https://petri.com/ipv6-ripng-configuration/): Learn how to configure RIPng for IPv6. - [iPad Disaster Recovery: Backup Procedures for iPads](https://petri.com/backup-procedures-for-ipads/): Learn the disaster recovery process for your iPad by IT veteran John O'Neill Sr. - [Citrix XenServer 6: Installing XenServer and XenCenter](https://petri.com/install-xenserver-6/): Learn how to install and configure Citrix XenServer 6 and XenCenter in this video tutorial from Citrx CTP Elias Khnaser. - [Managed Service Accounts: Configure a Service Using MSA](https://petri.com/managed-service-accounts-2/): Learn how to connect the MSA to the computer account in Active Directory in part two of this series. - [Basic EIGRP for IPv6 Configuration](https://petri.com/eigrp-for-ipv6-configuration/): Learn the basic configuration of EIGRP for IPv6. - [Understanding Journaling in Office 365](https://petri.com/office-365-journaling/): Learn how to keep track of your organization's correspondences using Office 365 journaling. - [Dropbox, Box, and SkyDrive: A Comparison](https://petri.com/dropbox-vs-skydrive-vs-box/): Discover the differences between Dropbox, Box, and SkyDrive -- and which one may best suit your needs. - [Top 3 Features in PowerShell V3 (video)](https://petri.com/powershell-v3-features/): In this video, PowerShell MVP Don Jones talks about his top 3 features in PowerShell V3 - [Master Cloud Development with Azure Achievements in Visual Studio](https://petri.com/visual-studio-achievements/): Visual Studio Achievements was launched by Microsoft to help developers perfect their coding skills when working with Visual Studio and Windows Azure. - [Managed Service Accounts: MSA Setup](https://petri.com/managed-service-accounts-1/): Learn to set up Managed Service Accounts (MSA) in part one of this three-part series. - [IPv6 Launch Day: IPv6 Resources for Network Admins](https://petri.com/ipv6-launch-day-resources/): Sean Wilkins has been prepping Petri reader's for the past several months with a series of articles on IPv6. Here are all of the articles. - [OSPFv3 Configuration - OSPF for IPv6](https://petri.com/ospfv3-configuration-for-ipv6/): Learn the basic configuration of OSPFv3 in a single area for IPv6. - [How to Create a Storage Pool on Windows Server 2012](https://petri.com/create-storage-pool-on-windows-server-2012/): How to create a storage pool on Windows Server 2012,with the PowerShell Cmdlets and the Storage Manager GUI tools. - [Lepide Exchange Manager: Exchange Migration, Recovery, and More](https://petri.com/edbtopst/): Overview of Lepide Exchange Manager. Perform restore from EDB, PST or OST by converting them to PSTs or importing them directly into your live Exchange server. - [June 2012 Webinar Update: Free Webinars for IT Pros](https://petri.com/it-webinars-june-2012/): Free IT Webinars Recommended by Petri IT Knowledgebase, including Windows Server 2012, Hyper-V, Security and Data Privacy, VMware Backup and more. - [Windows Server 2012: Is Storage Spaces the Killer Feature?](https://petri.com/storage-spaces-windows-server-2012/): Discover the main features and functions of Storage Spaces. - [Manage Windows Features with PowerShell: Add Feature or Role](https://petri.com/windows-features-with-powershell-part-2/): Learn how to add a feature or role to a Windows Server 2008 R2 system using Windows PowerShell and the ServerManager module. - [Cisco IPv6 Static Address Configuration](https://petri.com/ipv6-static-address-configuration/): Learn how to configure IPv6 addressing on a Cisco IOS device. - [Can 4G Meet the Needs of Mobile Cloud Users?](https://petri.com/4g-mobile-cloud-users/): Avril Salter, PhD discusses the differences between 4G and Wireless, and which one will ultimately take over. - [Creating a New vDS with VMware vSphere](https://petri.com/vsphere-vds-setup/): This video post demonstrates a walkthrough of the configurations you'll set up when creating a new vNetwork Distributed Switch. - [Manage Windows Features with PowerShell](https://petri.com/manage-windows-features-with-powershell/): Learn to configure and manage servers the easy way using Windows PowerShell. - [IPv6 Address Notation](https://petri.com/ipv6-address-notation/): Networking Consultant Sean Wilkins shows how to use IPv6 address notation, and how it differs from using IPv4. - [Print from your Phone or Tablet using Google Cloud Print](https://petri.com/google-cloud-print/): How to use Google Cloud Print to print from your mobile device. - [8 Questions (and Answers) about Windows 8](https://petri.com/windows-8-features/): We answer 8 lingering questions about Windows 8. - [Providing Last-Mile Desktop and Application Lockdown with PolicyPak](https://petri.com/policypak/): The founder of PolicyPak shows how you can deliver Group Policy settings over VDI to lock down applications. - [Managing Local User Accounts with Windows PowerShell](https://petri.com/managing-local-user-accounts-with-powershell/): Learn basic management tasks using Windows PowerShell. - [How to Recover Deleted and Lost Files](https://petri.com/recover-lost-data-from-hard-drive/): Learn how to easily recover damaged, deleted or misplaced files from hard drives and other storage devices. - [IPv6 Header vs IPv4 Header](https://petri.com/ipv6-header-vs-ipv4/): Get to know the differences between the IPv6 headers and the IPv4 headers. - [4 Reasons ReFS (Resilient File System) is Better Than NTFS](https://petri.com/4-reasons-refs-is-better-than-ntfs/): Learn how ReFS will likely replace NTFS, and why you will love this new file system. - [8 Reasons Windows 8 Tablets will make a Splash in the Enterprise](https://petri.com/windows-8-tablets-will-make-a-splash-in-the-enterprise/): John O'Neill, Sr. shows how Windows 8 tablets can add value to organizations, and why they will make a splash in the enterprise. - [Security Essentials - Intro to Shares](https://petri.com/security-essentials-intro-to-shares/): This post teaches how to administer shares using Windows Explorer. - [Creating Local Accounts with Windows PowerShell](https://petri.com/create-local-accounts-with-powershell/): Microsoft MVP Jeff Hicks shows how to set up local user accounts using Powershell. - [EIGRP Redistribution Troubleshooting](https://petri.com/eigrp-redistribution-troubleshooting/): How to troubleshoot problems that are seen when redistributing to and from Cisco’s Enhanced Interior Gateway Routing Protocol (EIGRP). - [Add Windows Server 2012 as a Domain Controller](https://petri.com/windows-server-2012-as-domain-controller/): Learn how to add Windows Server 2012 as a domain controller. - [May 2012 Webinar Update: Free Webinars for IT Pros](https://petri.com/it-webinars-may-2012/): Free webinars for IT Pros on browser security, disaster recovery, Exchange HA, SCOM and SCCM, VMware certifications and more. - [What Makes a Great Mobile Cloud App?](https://petri.com/what-makes-a-great-mobile-cloud-app/): Dr. Avril Salter shows how mobile cloud apps can enable you to reach your customers in new ways, and improve the productivity of your employees. - [VMware vCloud Director Essentials - Managing vCloud Director](https://petri.com/managing-vmware-vcloud-director/): Learn about vCloud Director Task and Events, and how to monitor Blocking Tasks, view Provider and Org vDC usage, and check vCD Logs. - [Find User-Based Service Accounts with PowerShell and Command Line](https://petri.com/find-user-based-service-accounts-with-powershell-and-command-line/): How to identify what accounts your services are running under, as well as identify potential problems before they become major headaches. - [Specifying an iOS Upgrade File Manually Using iTunes](https://petri.com/specifying-an-ios-upgrade-file-manually-using-itunes/): This article shows how to manually upgrade your iOS device using iTunes. - [Making Sense of the New MCSE: Microsoft Certified Solutions Expert](https://petri.com/mcse-microsoft-certified-solutions-expert/): The reinvention of the MCSE has spawned a number of opinions, both good and bad. In this article, MCT Ed... - [How To Import Contacts into Office 365 and Outlook Web Access](https://petri.com/importing-contacts-into-office-365-and-outlook-web-access/): Discover several different approaches to moving your contacts or address book into Office 365. - [Examining Cloud Service Provider Policies and Practices](https://petri.com/cloud-service-provider-policies-and-practices/): Learn about the US government's concerns about public cloud computing, and their Policies and Practices recommendations. - [VMware vCloud Director Essentials: Provider vDC and Deployment Templates](https://petri.com/setting-up-vmware-vcloud-director-essentials-part-2/): In Part 2 of this two-part series, vExpert David Davis shows how to create a Provider Virtual Datacenter and a VM Deployment Template. - [Command Line WMI: Formatting Data](https://petri.com/command-line-wmi-part-3/): In the conclusion of this three-part series, Jeff Hicks looks at some advanced ways of formatting data. - [Setting up a Multi-Subnet Infrastructure without a Router between Subnets](https://petri.com/set-up-a-multi-subnet-infrastructure-without-a-router/): Learn how to work with a multi-site environment without having access to a "true" router. - [Converting VMware VMDK Files to Microsoft's VHD Format and VHD to VMDK](https://petri.com/converting-vmware-files/): How to convert VMware VMDK Files to Microsoft's VHD Format and VHD to VMDK using Starwind's V2V Converter utility. - [3 Free April Webinars for IT Pros](https://petri.com/it-webinars-april-2012/): Webinars are a great way to learn without spending much time or money. They give you a chance to ask... - [Delivering IT as a Service with Microsoft System Center 2012](https://petri.com/intro-to-itaas-with-microsoft-system-center-2012/): An overview of some of the concepts surrounding the development of delivering ITaaS in enterprise IT organizations. - [VMware vCloud Director Essentials: Introduction and Setup](https://petri.com/setting-up-vmware-vcloud-director-part-1/): Learn how to set up vCloud Director from the Web interface, and how to create your first Provider Virtual Datacenter and VM Deployment Template. - [Command Line WMI: Query Remote Machines](https://petri.com/command-line-wmi-part-2/): Jeff Hicks teachs us how to work with WMIC directly from the command line to query remote machines. - [Cisco Unified Computing System: UCS Manager Simulator Overview](https://petri.com/cisco-ucs-manager-simulator/): This article takes a look at the simulator installation prerequisites, basic setup configuration and UCSPE limitations. - [Introduction to Microsoft's Private Cloud with System Center 2012](https://petri.com/intro-to-private-cloud-system-center-2012/): Learn more about Microsoft's Private Cloud, which allows a faster delivery of services, and a more categorical approach to your datacenters. - [How to Determine which Attribute will be Saved for a Deleted Active Directory Object](https://petri.com/attributes-deleted-active-directory-object/): Daniel Petri shows how to determine which attributes will be saved for a deleted object. - [Troubleshooting VLAN Switch Problems: No Connectivity](https://petri.com/troubleshoot-vlan-switch-part-2/): Learn how to troubleshoot VLAN and switch problems in the conclusion of this two-part series by seasoned Cisco veteran Joe Rinehart. - [Command Line WMI: Basic Syntax and Querying](https://petri.com/command-line-wmi-part-1/): Learn how to use Windows Management Instrumentation (WMI) as a database you can query in part one of this series. - [Cisco First Hop Redundancy Protocols: HSRP, VRRP, GLBP](https://petri.com/cisco-first-hop-redundancy-protocols/): How to implement a first-hop redundancy protocol, using Cisco's Hot Standby Router Protocol (HSRP), Virtual Router Redundancy Protocol (VRRP), and Gateway Load Balancing Protocol (GLBP). - [How to Search for Deleted Objects in Active Directory](https://petri.com/deleted-objects-in-active-directory/): When an object is deleted in Active Directory, it isn't completely removed at first. In this article, we'll show you how to find these deleted objects. - [How to Resize Windows Virtual Machine Disks](https://petri.com/resize-virtual-disks/): Storage expert Tom Finnis shows how to re-size existing drives in Windows, - [Troubleshooting VLAN and Switch Problems](https://petri.com/troubleshoot-vlan-switch/): Learn how to troubleshoot VLAN and switch problems in the first of this two-part series by Joe Rinehart. Video Tutorial. - [Find Service Pack Information](https://petri.com/find-service-pack-info/): Gather service pack info by using the command line tool, WMIC.EXE, as well as Windows PowerShell. - [EIGRP Metrics Troubleshooting](https://petri.com/eigrp-metrics-troubleshooting/): Enhanced Interior Gateway Routing Protocol (EIGRP), how its metric is calculated, and how this info can be used with traffic. - [Check If CPU Supports Second Level Address Translation (SLAT)](https://petri.com/check-cpu-slat-support/): Learn about the specific requirements for the embedded Hyper-V feature that Windows 8 Client offers, which is to have a CPU with SLAT capabilities. - [Deciding How to Store Data with the Mobile Cloud](https://petri.com/storing-data-with-mobile-cloud/): Learn what data you should be saving on your mobile device using the Mobile Cloud. - [Remote Desktop Services in Windows Server 2008](https://petri.com/remote-desktop-services-windows-server-2008/): This article describes what the components of Remote Desktop Services are and how they relate to those found in past versions of Windows Server. - [Integrating Microsoft Excel with PowerShell: Reading Data](https://petri.com/export-to-excel-with-powershell-part-3/): In the conclusion of this three-part series, learn how to read data from an Excel file, using PowerShell. - [OSPF Metrics Troubleshooting](https://petri.com/ospf-metrics-troubleshooting/): Learn about the Open Shortest Path First (OSPF) routing protocol, how its metric is calculated, and how this info can be used to ensure that traffic is taking the path that is expected. - [Create an Exchange ActiveSync Configuration Profile for iPhones and iPads](https://petri.com/exchange-activesync-configuration-profiles/): Easily connect multiple iPhones or iPads to email systems using Exchange ActiveSync Configuration Profiles - [The Mobile Cloud: Mobile Applications and Cloud Services](https://petri.com/mobile-cloud-applications-and-services/): This article covers the mobile cloud, whether to should put your applications on the cloud or the device, and what the cloud means to IT professionals. - [Top 5 Benefits of Server Virtualization](https://petri.com/server-virtualization-benefits/): This article takes a look at the top 5 benefits of server virtualization for IT departments. - [Integrating Microsoft Excel with PowerShell: Create a Rich Excel Doc](https://petri.com/export-to-excel-with-powershell-part-2/): In the second of this three-part series, learn how to create a more detailed report straight into Excel using PowerShell. - [Master Subnetting with Cisco's Subnet Game](https://petri.com/cisco-subnet-game/): Learn how to master IP Subnetting by using Cisco's Subnet Game. Networking Consultant Sean Wilkins teaches you how to use the game and shows why it is beneficial. - [Add Administrative Templates to a Group Policy Object in Windows Server 2008 Domain](https://petri.com/add-administrative-templates-to-gpo/): Discover how to add administrative templates to group policy objects (GPO) in Windows Server 2008 using the new ADMX file extension. - [Installing and Testing Citrix VDI-in-a-Box](https://petri.com/install-citrix-vdi-in-a-box/): vExpert David Davis records his experience with Citrix VDI-in-a-box, and shows how to install, configure, and test this affordable and easy to use product. - [Auto Deploy In VMware vSphere 5](https://petri.com/auto-deploy-using-vsphere-5/): This step-by-step tutorial shows you how to use Auto Deploy, one of VMware vSphere 5's coolest features. Learn how to significantly cut down time normally spent in provisioning vSphere servers. - [Integrating Microsoft Excel with PowerShell: Build a Basic Report](https://petri.com/export-to-excel-with-powershell/): Learn how to export basic reports straight into Excel using PowerShell in the first of this three-part series. - [Take Control of iOS Device Configuration - Creating a Basic Configuration Profile for an iPhone or iPad](https://petri.com/iphone-configuration-utility/): Learn how to create a basic configuration profile for your iPhone or iPad, using the iPhone Configuration Utility tool from Apple. - [Create a SharePoint Document Library in Office 365](https://petri.com/create-sharepoint-document-library/): Learn how to create a SharePoint document libraries in Office 365. See example scenarios and solutions in this comprehensive walk-through. - [Intro to Virtualization: Hardware, Software, Memory, Storage, Data and Network Virtualization Defined](https://petri.com/intro-to-virtualization/): This Introduction to Virtualization guide takes a detailed look at the different types of virtualization as well as the benefits of each. - [Profile Management in VMware View 5](https://petri.com/vmware-view-persona-management/): Learn about VMware View 5 View Persona Management and why it's more than just another profile management tool. - [Put the Squeeze on Files with Compact.exe](https://petri.com/compress-files-with-compact-exe/): Compress files and folders easily with Comapct.exe. This simple command line tool in combination with PowerShell makes compressing files easy. - [Intro to Server Virtualization: Hypervisor vs. Paravirtualization](https://petri.com/hypervisor-vs-paravirtualization/): What is Hypervisor and Paravirtualization and server virtualization? This overview explains the differences and advantages to each. - [VMware vCenter Operations Manager 5 - To Have and Have Not](https://petri.com/vcenter-operations-manager-5-review/): Is VMware vCenter Operations Manager 5 (vCOPS) worth buying? David Davis reviews the good and bad of the newest version. Top 5 features and more... - [AutoDiscover Configuration for Exchange 2007 and 2010](https://petri.com/autodiscover-configuration-exchange-2010/): How to configure AutoDiscover for Exchange 2007 and Exchange 2010. Automatically configure email clients for smart phones tablets. - [Installing Exchange Server 2010 SP2](https://petri.com/install-exchange-server-2010-sp2/): Learn how to install exchange server 2010 SP2 in this video tutorial post by TrainSignal. - [Integrate Microsoft Word with PowerShell: Format Style Documents](https://petri.com/format-microsoft-word-docs-powershell/): Integrate Microsoft Word Docs with PowerShell | Discover how to format and style Word documents with PowerShell in part 2 of this series. - [Cisco Unified Computing System: UCS Service Profiles](https://petri.com/ucs-service-profiles/): What are UCS Service Profiles? This post explains Service Profiles and what settings and configurations they help automate. - [3 Ways to Crack or Remove Lost Passwords in Word 2010 Files](https://petri.com/recover-word-2010-password/): Lost or forgot your MS Word 2010 password? Try one of these 3 solutions to recover or crack MS Word 2010 and .docx passwords. - [PCoIP: What Is PC-over-IP and How Does It Work?](https://petri.com/what-is-pc-over-ip/): Learn about PC-over-IP (PCoIP) and how it differs from other options, including Remote Desktop Protocol (RDP) and Independent Computing Architecture (ICA). - [Troubleshooting VMware View 5: Examples](https://petri.com/troubleshooting-vmware-view-5-examples/): Explore real-world situations of VMware View 5 failures and troubleshooting techniques and solutions. - [Integrating Microsoft Word with PowerShell: Generate a Document](https://petri.com/generate-microsoft-word-document-powershell/): Learn how to integrate Microsoft Word with PowerShell and generate a Word document in part 1 of a 2-part series. - [Cisco Unified Computing System: UCS Components](https://petri.com/cisco-ucs-hardware-overview/): A summary of Cisco Unified Computing System (UCS) hardware capabilities and features by Sean Wilkins including fabric interconnects, blade server chassis and fabric extenders. - [Top 3 Mistakes When Selecting Cloud Service Providers](https://petri.com/selecting-cloud-service-providers-mistakes/): Avoid the top 3 mistakes when picking and selecting cloud service providers. 3.) Failure to plan for multiple... - [Administrative Templates in Server 2008 R2 Group Policy Objects (GPO)](https://petri.com/administrative-templates-for-group-policy-objects/): Overview of Administrative Templates in Windows Server 2008 R2 Group Policy Objects. These templates allow customization of virtually any settings on AD domains - [Troubleshooting VMware View 5: Failure Points](https://petri.com/troubleshooting-vmware-view-failure-points/): Failure points in VMware View 5 | Discover what common failure points will help you better troubleshoot VMware View 5 in part 1 of a 2-part video series. - [Use PowerShell to Create Custom Log Events](https://petri.com/use-powershell-to-create-custom-log-events/): Learn how to use PowerShell to create custom event's in the Windows Event Log. - [Cisco Unified Computing System: UCS Manager Overview](https://petri.com/cisco-unified-computing-system-overview/): Sean Wilkins gives a brief overview of Cisco UCS and how it can save your company money. - [How To Find Office 365 Mailbox Size With PowerShell](https://petri.com/find-office-365-mailbox-size-with-powershell/): Michael Simmons explains how to use PowerShell to find Office 365 mailbox size. PowerShell makes administration efficient and easily repeatable. - [Top 10 Reasons You Need To Be Using Windows Intune](https://petri.com/what-is-windows-intune/): What is Windows Intune? John Weston of Microsoft shares the top 10 reasons you should use Intune to manage and secure your PC's via the cloud. - [Service Manager 2012 Beta Part 6 - Self-Service Portal Installation](https://petri.com/self-service-portal-installation/): Learn how to install Self-Service Portal Installation in Peter De Tender's final post in his series on installing System Service Manager 2012 - [Create and Log Your Own Events - Part 1](https://petri.com/create-custom-event-in-event-log-part-1/): Insert custom events in Windows event log. This can be useful for a variety of reasons such as noting system changes made or a whole host of scenarios. - [Monitor vRAM Usage and Licensing in vSphere 5](https://petri.com/monitor-vram-usage-and-licensing-in-vsphere-5/): Learn how to monitor vRAM usage in vSphere 5 in this post by Eric Siebert. Because VMware's license is related to vRAM usage admins need to keep usage in check - [Security and Privacy in Public Cloud Computing](https://petri.com/cloud-security-and-privacy/): Mike Danseglio summarizes the 80 page NIST document (Special Publication 800-144) about Security and Privacy in Public Cloud Computing. - [How To Share A Document Library In Office 365](https://petri.com/share-office-365-document-library/): Set up a document library in Office 365 to share documents with people outside your organization, such as clients or contractors. - [Set Up Office 365 Trial With Your Own Domain Name](https://petri.com/set-up-office-365-trial-on-own-domain/): Michael Simmons walks you through setting up an Office 365 free 30 day trial on your own domain. Is Office 365 right for you? Try it out and see! - [Configuring UCS Service Profile Templates - vNIC/vHBA Placement Policies - Part 2](https://petri.com/configure-cisco-service-profile-templates-placement-policies/): Jason Nash of TrainSignal explains how to set up vNIC & vHBA Placement Policies when configuring Service Profile Templates in Cisco UCS - [Service Manager 2012 Beta: Active Directory Connector Configuration](https://petri.com/scsm-active-directory-connector-configuration/): Learn how to configure the Active Directory Connector in System Center Service Manager (SCSM) 2012. This is part 5 of a 6 part series by Peter De Tender - [Book Review - Priceless Computer Tips at Your Fingertips](https://petri.com/book-review-priceless-computer-tips-at-your-fingertips/): Book review of Sudhir Diddee's Priceless Computer Tips at Your Fingertips by TrainSignal's Heather Ackamn. - [Crash Dump Analysis Part 3: Basic BSOD Troubleshooting](https://petri.com/bsod-troubleshooting/): Have a Blue Screen Error in Windows? Diagnosis Blue Screen of Death in this BSOD Troubleshooting article by Michael Simmons - [Free Webinar: Best New Features in Exchange 2010 SP2](https://petri.com/exchange-2010-sp2-webinar/): Service Pack 2 for Exchange 2010 offers a number of features that will help you get more done and save... - [Avoid Storage I/O Bottlenecks With vCenter and Esxtop](https://petri.com/avoid-stroage-io-bottlenecks/): Use Virtualization Manger and Storage Manager to troubleshoot and solve I/O Bottlenecks that can hurt virutlization performance. - [Service Manager 2012 Beta Part 4 - SCSM 2007 R3 Connector Configuration](https://petri.com/sccm-2007-r3-connector-configuration/): In part 4 of this series on installing Service Manager 2012, learn to configure the SCCM 2007 R3 Connector. - [Diagnosing Windows Memory Problems](https://petri.com/windows-memory-diagnostic-tool/): Jeff Hicks shows us how to use Windows Memory Diagnostic tool to diagnose windows memory issues. - [3 Steps To Secure Your Data In the Cloud](https://petri.com/3-steps-to-secure-your-data-in-the-cloud/): Top 3 steps to secure your data in the cloud. Greg Stuart walks through three simple steps to secure your data utilizing the cloud and cloud services. - [OSPF Redistribution Troubleshooting](https://petri.com/ospf-redistribution-troubleshooting/): Sean Wilkins discusses OSPF Redistribution configuration. Proper configuration is the first step to troubleshoot OSPF Redistribution issues. - [How To Change User Password With PowerShell](https://petri.com/how-to-change-user-password-with-powershell/): How to Change Windows Passwords with PowerShell. This is much faster because you can apply it to several machines at once with reusable code. - [Cisco UCS - Creating Service Profile Templates - Part 1](https://petri.com/cisco-ucs-creating-service-profile-templates/): In this video post from TrainSignal, Jason Nash explains how to create service profile templates in Cisco Unified Computing System Manager. - [Service Manager 2012 Beta: Installing the Data Warehouse Server](https://petri.com/installing-the-data-warehouse-server/): Install data warehouse server on a virtual machine to comply with Microsoft's best practices on installing System Service Manager 2012. Part three of six! - [Create Environmental Variables With SetX](https://petri.com/setx-to-create-custom-environmental-variables/): Jeff Hicks shows how to use setx.exe to create custom environmental variables easily and efficiently. This is especially useful for remote machines. - [OSPF Stub Area Troubleshooting](https://petri.com/ospf-stub-area-troubleshooting/): Sean Wilkins explains OSPF Stub Area troubleshooting and how it relates to Link State Advertisement (LSA) types. This is the 2nd post in a series on OSPF Areas. - [Understanding FSMO Roles in Server 2008 Active Directory](https://petri.com/fsmo-roles-in-server-2008-active-directory/): Michael Simmons explains FSMO Roles and how they can prevent conflicts when making changes to Active Directory objects. - [Video: Social Engineering for Your Enterprise](https://petri.com/social-engineering-security-plus/): Lisa Szpunar of TrainSignal explains different social engineering techniques and how you can protect yourself and your company from losing sensitive information. - [Service Manager 2012 Beta: Installing the Service Management Server](https://petri.com/system-center-service-manager-2012-installation/): Learn how to install System Center Service Manager 2012 beta in this 2nd post of the 6 part series by Peter De Tender. - [Command Line Event Logs - Part 2](https://petri.com/managing-command-line-event-logs/): Learn how to manage event logs with command line. Jeff Hicks explains how to use WEVTUTIL.EXE to manage event logs via Command Line. - [OSPF Area Troubleshooting](https://petri.com/ospf-area-troubleshooting/): Sean Wilkins explains what OSPF areas are and how to troubleshoot and solve OSPF area problems. - [Crash Dump Analysis Part 2: Memory Dump Files](https://petri.com/memory-dump-files/): Learn how to save memory dump files and chose the type of dump that is best for your situation. Solve BSOD with memory dump files. - [Exchange 2010 UM - Creating Custom Prompts (Video)](https://petri.com/creating-custom-prompts-in-unified-messaging/): Learn how to record custom auto attendant prompts in Exchange 2010 Unified Messaging (UM) in this video post. - [Service Manager 2012 Beta: SCSM System Requirements](https://petri.com/system-center-service-manager-2012-installation-requirements/): What is System Center Service Manager 2012? Download the beta and learn system requirements and how to install SCSM 2012 - [Command Line Event Logs - Part 1](https://petri.com/command-line-event-log/): Quickly manage event logs through command line. This can often be quicker and more efficient than using a graphic interface (GUI) - [The IPv6 Transition](https://petri.com/ipv6-transition/): Learn about IPv4 to IPv6 Transition options. Sean Wilkins discusses Dual Stack, Tunneling and Translation. - [Petri's Top 4 Password Reset Utilities](https://petri.com/top-4-windows-password-reset-tools/): Lost your windows password? Try one of these password reset tools to get access to your machine quickly. - [Use System Configuration Tool to Solve Problems](https://petri.com/system-configuration-to-solve-problems/): Jeff Hicks goes over several troubleshooting tasks you can accomplish with the Windows System Configuration. You can also add new tools easily. - [IPv6 Address Types](https://petri.com/ipv6-address-types/): Sean Wilkins discusses the IPv6 address types. Learn about IPv6 Unicast, Multicast and Anycast. Anycast is where IPv4 and IPv6 differ the most. - [Is Exchange Unified Messaging Right for You?](https://petri.com/exchange-unified-messaging-right-for-you/): J. Peter Bruzzese interviews Exchange Unified Messaging Expert Jesse Ortiz to talk about some of the features and benefits of Unified Messaging. - [Use Command Line To Monitor Server Performance](https://petri.com/typeperf-exe-command-line-performance/): Jeff Hicks explains how to use Command Line to monitor server performance by using TYPEPERF.EXE - [The IPv6 Header](https://petri.com/ipv6-header/): Learn what the IPv6 Header Fields are for. Sean Wilkins explains Version, Traffic Class, Flow Label, Payload Length, Hop Limit and Source/Destination Address. - [Introduction to Data Deduplication](https://petri.com/data-deduplication-introduction/): What is Data deduplication? Learn how to reduce storage and backup costs with data dedupliation. Learn what type of deduplication is best for you - [Crash Dump Analysis Part 1: How to Install the Windows Debugger](https://petri.com/crash-dump-analysis-how-to-install-the-windows-debugger/): Troubleshoot Blue Screen of Death (BSOD) with Crash Dump Analysis. Learn how to install windows debugger to debug BSOD and troubleshoot system errors. - [Exchange MVP J. Peter Bruzzese on UCC, Bull Riding and Why VDI is like a Keurig](https://petri.com/j-peter-bruzzese-exchange-interview/): Video interview with Microsoft Exchange MVP J. Peter Bruzzese. Peter touches on Microsoft's push for UCC, VDI ROI's and this year's TechMentor in Vegas - [Windows 7 Power Scheme Configuration using POWERCFG.EXE](https://petri.com/power-scheme-configuration-using-powercfg-exe/): If you're in a position where you are responsible for managing or supporting several laptops, it's likely that one task... - [EIGRP Neighborship Troubleshooting](https://petri.com/eigrp-neighborship-troubleshooting/): Enhanced Interior Gateway Routing Protocol (EIGRP) neighborship troubleshooting techniques and solutions. Learn how to solve these issues here. - [Cisco CCNP Route - BGP Troubleshooting](https://petri.com/bgp-troubleshooting-ccnp-route/): Learn how to troubleshoot Border Gateway Protocol (BGP) issues. This video is great for anyone looking to take the Cisco CCNP Route Exam - [Add Open PowerShell To Context Menu](https://petri.com/add-powershel-tl-context-menu/): Learn how to add "Open PowerShell" to the Windows Context Menu allowing you to open PowerShell in-context anywhere in Windows. - [Veeam Backup and Replication Support for Hyper-V is Finally Here](https://petri.com/veeam-hyper-v-backup-and-replication/): TrainSignal's Kasia Lorenc talks with Veeam's VP of Product Strategy Doug Hazelman about the newest Backup & Replication software which now supports Hyper-V. - [Command Line Task Management](https://petri.com/command-line-task-management/): Many tools exist for remotely managing computers but sometimes command line (CMD.exe) is the best option because of its ease of use. Learn some simple tasks... - [OSPF Neighborship Troubleshooting](https://petri.com/ospf-neighborship-troubleshooting/): Learn how to troubleshoot OSPF neighborship issues by utilizing these 5 useful commands. Find mismatched areas, authentication mismatches, subnet mismatches... - [Top 10 Server 2008 Tasks With PowerShell - Part 2 (6 through 10)](https://petri.com/top-10-server-2008-tasks-done-with-powershell-part-2/): In part 2, learn the final 5 Top 10 Server Tasks with PowerShell in Windows Server 2008 in this video lesson from TrainSignal.com - [Remove User Account From The Logon Screen in Windows 7](https://petri.com/remove-user-account-from-the-logon-screen-in-windows-7/): Remove user account from Windows 7 logon screen. Delete unused accounts from logon screen without deleting the account completely. - [Flexible NetFlow - What It Does and Why You Need It](https://petri.com/flexible-netflow-explained/): Flexible NetFlow is Cisco's next generation network monitoring software. Flexible NetFlow provides a more in-depth and richer view of network activity. - [Troubleshooting DHCP Problems](https://petri.com/troubleshoot-dhcp-problem/): Solve several DHCP configuration issues that can cause DHCP problems on your Cisco Network. Fix Unable to reach external network errors DNS issues duplicate IP - [Why You Need NetFlow: See Who Is Using Your Bandwidth and Why](https://petri.com/netflow-and-why-you-need-it/): What is NetFlow and why do you need to use it? Network engineers and admins need to use Netflow to monitor networks and analyse traffic through regular routers. - [Top 10 Windows Server 2008 Tasks done with PowerShell - Part 1](https://petri.com/top-10-server-2008-tasks-done-with-powershell-part-1/): Learn the top 10 most useful server tasks with PowerShell in Windows Server 2008 in this video lesson from TrainSignal.com. - [Interview With Jeffrey Snover - Inventor of PowerShell and Lead Architect for Windows Server 2012](https://petri.com/jeffrey-snover-powershell/): Kasia Lorenc sits down with Jeffery Snover to discuss the creation and history of PowerShell as well as his new role at Microsoft. - [Configuring Outgoing Email on SharePoint 2010 - Part 2](https://petri.com/configure-outgoing-email-sharepoint-2010/): Configuring outgoing email in SharePoint 2010 with this video tutorial. Email in SharePoint increases productivity, alerts, and improve communication. - [How to Install ESXi 5 - The Free VMware vSphere Hypervisor](https://petri.com/install-esxi-5/): How to install ESXi 5 from VMware. ESXi 5 is the freevSphere Hypervisor from VMware. Download and install for free. Virtualization... - [Interview With Jeff Hicks: Why IT Pros Need to Learn PowerShell](https://petri.com/powershell-jeff-hicks-interview/): Kasia Lorenc interviews Jeff Hicks to discuss Microsoft PowerShell and why it will soon be a requirement for every IT admin to know how to use it. - [Intro to Virtualization - Free Video Training Course and Whitepaper by vExpert David Davis](https://petri.com/intro-to-virtualization-training/): vExpert David Davis shares a free introduction to virtualization video training and white paper. - [How To Tame Application Management Overload in Your Environment](https://petri.com/application-management-system-for-performance-and-alert-data/): Controlling application management overload with a single application where you can have all your performance and alert data presented to you. - [Get-WMIObject - WMI PowerShell Tricks for Windows Server Management](https://petri.com/get-wmiobject-wmi-powershell-tricks/): Get-WMIObject in Windows Powershell makes it easier to utilize Windows Management Instrumentation (WMI) and makes managing windows servers much easier. - [How To Configure a Cisco Router to Export NetFlow Data](https://petri.com/netflow-data-export-from-cisco-router/): How-To video and transcript with Josh Stephens, Head Geek at SolarWinds on configuring a Cisco router to export NetFlow data. - [Persistent vs. Non-persistent Virtual Desktops](https://petri.com/virtual-desktop-persistent-vs-non-persistent/): Learn the difference between persistent and non-persistent virtual desktops and which one is better for you - [Configuring Incoming and Outgoing Email on SharePoint 2010 - Part 1](https://petri.com/configure-email-sharepoint-2010-part-1/): Learn how to configure incoming and outgoing emails in SharePoint 2010 with this how-to video from Trainsignal - [Video with Josh Stephens, VP of Technology and Head Geek at SolarWinds](https://petri.com/video-with-josh-stephens-vp-of-technology-and-head-geek-at-solarwinds/): Interview with Josh Stephens, VP and Head Geek at SolarWinds which provides network & storage management and monitoring software. - [Anti Virus Exclusion Guidelines for Microsoft Products](https://petri.com/anti-virus-exclusion-guidelines-for-microsoft-products/): This article provides a list of anti virus exclusion guidelines for Microsoft Products. Exclusions prevent anti-virus software conflicts with other software. - [Wireless LAN Maintenance and Troubleshooting Part 2](https://petri.com/wireless-network-tools/): This article goes through some awesome tools that you can use to help find and fix problems on your wireless network. - [How To Pass The VCP5 Exam](https://petri.com/vcp5-exam/): Are you going to be taking the VCP5 Exam? This article provides some great information on how to approach studying for the exam - [CCNP TSHOOT: Cisco Troubleshooting Procedures](https://petri.com/ccnp-tshoot-cisco-troubleshooting-procedures/): Getting ready to take the CCNP TSHOOT exam? This article is a great crash course in common troubleshooting procedures. - [Video with Scott Lowe, VMware vExpert and Author of Mastering VMware vSphere 5](https://petri.com/scott-lowe-interview-vsphere/): Watch TrainSignal.com's interview with Scott Lowe; popular virtualization blogger, speaker and author of the newly released Mastering VMware vSphere 5 book. - [Install Windows 8 Developer Preview](https://petri.com/install-windows-8-developer-preview/): Download and learn how to install Windows 8 Developer Preview in this short tutorial by J. Peter Bruzzese. Learn how to navigate the new Metro UI. - [Wireless LAN Maintenance and Troubleshooting Part 1](https://petri.com/wireless-troubleshooting-and-maintenance/): Wireless LAN troubleshooting techniques and maintenance tips in this two-part series. Learn how to maintain your wireless LAN. - [CCNP TSHOOT: Cisco Troubleshooting Techniques](https://petri.com/ccnp-tshoot-cisco-troubleshooting-techniques/): Prepare for the CCNP TSHOOT exam with this article that covers basic Cisco troubleshooting techniques. - [Cisco IOS Diagnostic Tools](https://petri.com/cisco-ios-diagnostic-tools/): Sean Wilkins discusses Cisco IOS diagnostic tools available to help troubleshoot and monitor network issues. - [External Hard Drive Read Only Issue and Solution](https://petri.com/external-hard-drive-read-only-solution/): External hard drive stuck as Read Only? Need to trouble shoot how to write to your external drive? This article explains how to solve this issue. - [Microsoft Network Monitor - Part 2](https://petri.com/microsoft-network-monitoring-part-2/): The second of a two part series, learn how to handle and understand data captures from Microsoft Network Monitor. - [Hyper-V Backup - Considerations when Backing Up Virtual Machines](https://petri.com/hyper-v-backup-considerations/): Backing up a virtual machine is a little different than backing up physical hardware. Keep these tips in mind before you backup on Hyper-V. - [Killing a Hung Virtual Machine on Hyper-V](https://petri.com/killing-a-hung-hyper-v-virtual-machine/): If a VM becomes unresponsive or hung killing it without restarting the host machine may be the only option. Learn how to kill a hung VM in this article. - [Desktop Virtualization Challenges - Introduction to Desktop Virtualization Part 3](https://petri.com/desktop-virtualization-xendesktop-5-part-3/): Desktop Virtualization is becoming more and more popular. This article goes over some of the challanges that Desktop Virtualization faces. - [Microsoft Network Monitor - Part 1](https://petri.com/microsoft-network-monitor-part-1/): Learn what Microsoft Network Monitor is and how it works. Learn how to take a network capture from network's data stream. - [Get Hyper-V Virtual Machine Process ID and GUID](https://petri.com/get-hyper-v-virtual-machine-process-id-and-guid/): Learn how to obtain a VM's process ID and GUID on Hyper-V. This can be useful when you need to manipulate a VM. - [Citrix XenDesktop 5: Intro to Desktop Virtualization Part 2](https://petri.com/types-of-desktop-virtualization-xendesktop-5-part-2/): Elias Khnaser goes over different types of Desktop Virtualization including Virtual Desktop Infrastructure, Terminal Server, and Client Hypervisors. - [vSphere Client for iPad - Administering vSphere 5 from your iPad](https://petri.com/vsphere-client-for-ipad/): Learn how to install and set up vSphere Client for iPad so you can administer virtual machines in vSphere 5 from iPad. - [Citrix XenDesktop 5: Intro to Desktop Virtualization Part 1](https://petri.com/desktop-virtualization-xendesktop-5-part-1/): Ever wonder what Desktop Virtualization is? This post explains the benefits of XenDesktop 5 and why you should be using it. - [Free Webinar - How to Get Started with Virtualization](https://petri.com/virtualization-training-free-webinar/): Watch this free webinar from David Davis on Introduction to Virtualization. Improve your skills by learning virtualization for. - [Deploying Printers Using Group Policy - Networking Printers & Windows 2008 Server Part 2](https://petri.com/deploying-printers-using-group-policy-windows-2008/): Learn how to deploy network printers automatically in Windows Server 2008 using Group Policy Management. - [VM Backup - Backing up Virtual Machines with Windows Server 2008 R2 & Hyper-V](https://petri.com/vm-backup-with-windows-server-backup/): Learn how to backup virtual machines (VM) on Windows Server 2008 R2 using Windows Server Backup & Hyper-V. - [Registering the Microsoft Hyper-V Volume Shadow Copy Service with Windows Server Backup](https://petri.com/register-volume-shadow-copy-service/): Learn how to register Volume Shadow Copy Service (VSS) writer with Windows Server Backup. This allows backups to volumes that remain in running state. - [Clear Logs in Windows Server Backup Console](https://petri.com/windows-server-backup-log-how-to-delete/): In this article, learn how to clear the Windows Server 2008 Backup log - [Advanced Dial Peer Concepts and Configuration](https://petri.com/dial-peer-configuration/): Learn advanced Dial Peer Concepts and configurations in this overview of Dial Plans, Dial Peer Matching and Inbound Peer Matching - [Using VMware vSphere Hot-Add to Dynamically Add CPU and RAM](https://petri.com/vsphere-hot-add-memory-and-cpu/): Learn how to use vSphere Hot-Add to Dynamically add CPU and RAM to resource hungry virtual applications that are mission critical and require high availability. - [Access Denied Error Attempting to Manage a Remote Hyper-V Server in a Workgroup Environment](https://petri.com/access-denied-error-hyper-v/): Access Denied Error Attempting to Manage a Remote Hyper-V Server? Learn how to fix this this error in the following article. - [Communications Manager Express - Installation and Upgrade Overview](https://petri.com/install-communications-manager-express/): Learn how to install Cisco's Unified Communications Manager Express (CME) in this brief step-by-step how-to article. - [Configure High Availability for Non-Mailbox Servers](https://petri.com/configure-high-availability-for-non-mailbox-servers/): The following describes how to set up high availability in Hub Transport, Edge Transport, Client Access and Unified Messaging Servers. - [Exchange Server 2010: Data Protection Manager Setup](https://petri.com/data-protection-manager-setup/): Learn how to install and setup Microsoft Data Protection and learn about all of DPM's features and capabilities. - [Default Keys for Windows Server 2008 R2 and Windows 7 Deployment](https://petri.com/windows-server-2008-windows-7-product-keys/): In need of a list of installation keys for Windows Server 2008 and Windows Server 7? Windows references this list of available keys so you don't have to enter a key - [An Overview of Cisco Communications Manager Express](https://petri.com/communications-manager-express-overview/): This overview of Cisco Communications Manager Express demonstrates Cisco CME's wide range of features as an affordable and easily implemented voice solution. - [How to Configure Database Availability Group for Exchange Server 2010](https://petri.com/configure-database-availability-groups-exchange-2010/): This article explains how to configure Database Availability Group (DAG) in Exchange 2010 to ensure High Availability. - [Install Replmon to Work on Windows Server 2008 R2](https://petri.com/install-replmon-on-windows-server-2008/): Install Replmon on Windows Server 2008. Replmon is not installed by default on Windows Server 2008. Learn how to set up Replmon which adds a useful GUI - [Improve VoIP Quality with Link Fragmentation and Interleaving](https://petri.com/configure-link-fragmentation-and-interleaving-for-improved-voip/): How to configure Link Fragmentation and Interleaving which can improve VoIP quality by preventing packet delay across network. - [The Great Big Hyper-V Survey of 2011](https://petri.com/why-hyper-v/): Why did you choose Hyper-V? How do you use Hyper-V? These are the questions Hyper-V MVPs are trying to find answers to in the Great Big Hyper-V Survey of 2011. - [Power Consumption Graphing and Control in vSphere 4.1](https://petri.com/vmware-power-management/): The power management feature in VMware vSphere 4.1 can help you save money and reduce energy consumption by setting the right controls in vSphere Client. - [Upgrading to vSphere 4.1 Overview](https://petri.com/vsphere-4-1-upgrade/): Get an overview of the VMware vSphere 4.1 upgrade process. Learn about vCenter Agent Pre-Upgrade Check Tool, vCenter Server Data Migration Tool and more. - [Troubleshooting "Access Denied" Error Messages When Accessing Administrative Shares in Windows 7](https://petri.com/windows-7-access-denied/): Solve the "Access Denied" issue in Windows 7 when accessing administrative shares on Windows 7 computers that are members of a workgroup. - [Installing Windows Server Backup on Windows Server 2008 R2](https://petri.com/windows-server-2008-r2-backup/): Install Windows Server Backup on Windows Server 2008 R2 using Server Manager, Servermanagercmd.exe and PowerShell. - [Traffic Policing and Shaping Configuration](https://petri.com/traffic-shaping-and-policing/): Guide to Traffic Policing and Shaping Configuration which uses the Modular Quality of Service (QoS) Command line interface (MQC). - [Moving Mailboxes to Exchange 2010 and the BadItemLimit](https://petri.com/baditemlimit-override-exchange-2010/): Step-by-step instructions for using the Exchange Management Shell (EMS) to override the BadItemLimit when moving large mailboxes. - [Log Blind Spots - A Review of Cases Where System Logs are Insufficient](https://petri.com/user-activity-monitoring-and-system-audits/): Utilizing activity monitoring to avoid blind spots in your audit reports which can occur when relying solely on system logs. - [Traffic Policing and Shaping Overview](https://petri.com/traffic-policing-and-shaping/): Overview of traffic policing and traffic shaping configuration when implementing Quality of Service (QoS) on a network. - [Xperf Rocks Part 2: Analyzing Storage Performance Data & Generating Graphs](https://petri.com/xperf-analyzing-storage-performance/): Overview of Xperf, part of the Microsoft Windows Performance Toolkit. Part 2 focuses on analyzing storage performance data & generating graphs. - [Interview with Don Jones at Windows Connections 2011](https://petri.com/learn-powershell-don-jones-interview/): TrainSignal recently had the opportunity to sit down with Don Jones at Windows Connections 2011 to discuss the importance of learning PowerShell. - [How Do You Track IP Addresses?](https://petri.com/track-ip-addresses-reference-guide/): A guide for tracking IP addresses on a network. Includes suggested tools to prevent outages related to duplicate IP addresses. - [AutoQoS Configuration](https://petri.com/autoqos-voip-and-enterprise/): Overview of AutoQoS VoIP and AutoQoS for the Enterprise features, which allow for automatic quality of service (QoS) configuration on your network. - [Xperf Rocks Part 1: Troubleshooting Storage Performance Problems](https://petri.com/xperf-windows-storage-performance/): Overview of Xperf, part of the Microsoft Windows Performance Toolkit, used for troubleshooting Windows storage performance issues. - [Permissions and Role Based Access Control (RBAC) - Part II](https://petri.com/role-based-access-control-exchange-2010/): Guide to RBAC (Role Based Access Control), a new permissions model in Exchange Server 2010. - [Digital Voice Port Configuration](https://petri.com/voip-digital-voice-port-configuration/): Digital voice port configuration on a VoIP network focusing on T1 & E1 voice port types. - [Top Storage Pitfalls to Avoid with Windows Failover Clusters](https://petri.com/windows-failover-cluster-setup/): Configuring Windows failover clusters to ensure proper setup when choosing partition size, compatible and consistent storage drivers & storage controller settings. - [What is esxtop?](https://petri.com/esxtop-overview/): Overview of esxtop, VMware's command-line tool for analyzing vSphere performance issues. - [Networking Printers & Windows 2008 Server - Part 1](https://petri.com/windows-2008-print-server-management/): Adding the Print Services role to a Windows 2008 Server and using the Print Management console to share printers on your network. - [Analog Voice Port Configuration](https://petri.com/analog-voice-port-configuration/): Analog voice port configuration on a VoIP network including configuration details for the three main voice port types: FXO, FXS and E&M. - [Permissions and Role Based Access Control (RBAC) - Part I](https://petri.com/rbac-in-exchange-2010/): Guide to RBAC (Role Based Access Control), a new permissions model in Exchange Server 2010. - [Windows GPT Disks - Is Bigger Really Better?](https://petri.com/gpt-vs-mbr-based-disks/): Comparison of MBR (Master Boot Record) and GPT (GUID Partition Table) based Windows disks. - [Understanding Memory Compression in vSphere 4.1](https://petri.com/memory-compression-in-vsphere-4-1/): Overview of memory compression in vSphere 4.1. Includes configuring memory compression on your vSphere virtual infrastructure. - [Configuring vSphere 4.1 VM to Host DRS Affinity Rules](https://petri.com/host-drs-affinity-rules-vsphere-4-1/): Configuring VM to Host DRS Affinity Rules on vSphere 4.1. - [SBS 2011 and SharePoint Foundation: Configuring Outgoing & Incoming E-mail Settings](https://petri.com/setting-up-sharepoint-email-sbs-2011/): Detailed instructions on configuring outgoing & incoming email for SharePoint Foundation on SBS (Small Business Server) 2011. - [Implementing iSCSI Storage with Windows Failover Clusters](https://petri.com/windows-failover-cluster-iscsi-technology/): Step-by-step guide covering configuration of iSCSI-based disks for use with Windows Failover Clusters. - [Using Storage IO Control (SIOC) in vSphere 4.1](https://petri.com/storage-io-control-vsphere-4-1/): Guide for enabling SIOC, explanation of shares & IOPs, configuration details for controlling resources between VMs, and SIOC performance monitoring. - [Leveraging the Cluster Validation Wizard for Troubleshooting Storage Problems](https://petri.com/cluster-validation-wizard-and-failover-clusters/): Using the Cluster Validation Wizard, also known as Validate, to perform a variety of tests to ensure that cluster components are accurately configured and supported in a clustered environment. - [How To Disable Internet Explorer First Run Welcome Screen Pop Up](https://petri.com/disable-ie8-ie9-welcome-screen/): How to disable first run welcome screen in IE8 and IE9 via group policy editor or registry editor. - [Utilizing SAN Storage with Windows Failover Clusters](https://petri.com/2008-failover-clustering-and-san/): Windows 2008 Failover Clustering with SAN storage. - [QoS Classification and Marking Configuration](https://petri.com/qos-marking-and-classification/): QoS Marking and Classification configuration for VoIP Quality of Service implementation. - [Preventing Automatic Service Pack 1 Update to Windows 7 and Windows Server 2008 R2](https://petri.com/windows-7-server-2008-r2-sp1-blocker/): Blocking Windows 7 and Windows Server 2008 R2 Service Pack 1 (SP1) automatic updates with the Windows Service Pack Blocker Tool Kit. - [Understanding the Windows Disk Storage Architecture](https://petri.com/windows-storage-disk-architecture/): Overview of Windows storage disk architecture for troubleshooting disk storage issues. - [Congestion Management Configuration](https://petri.com/congestion-management-and-queue-configuration/): Congestion management and queue configuration including FIFO (First-In First-Out), WFQ (Weighted Fair Queueing), Priority and Custom Queueing. - [An Overview of RAID Storage Levels](https://petri.com/raid-levels-comparison-guide/): RAID levels comparison summary; an explanation of the most common RAID storage levels. - [More Information About RemoteFX on Hyper-V R2 SP1](https://petri.com/hyper-v-r2-sp1-remotefx/): Explanation of RemoteFX including hardware & software requirements, functionality overview, and required editions of Windows Server 2008 R2 with SP1. - [Basic Dial Peer Concepts and Configuration](https://petri.com/voip-dial-peer-configuration/): Cisco IOS voice dial peer and call leg configuration options. - [Understanding PAL Reports to Identify Windows Storage Bottlenecks](https://petri.com/performance-analysis-of-logs-reports/): Using PAL reports for troubleshooting performance issues by identifying when counters have exceeded various thresholds and identifying bottlenecks. - [What is I/O Virtualization (IOV)?](https://petri.com/what-is-io-virtualization-iov/): Overview of I/O Virtualization (IOV) utilized in data centers allowing for a huge reduction in network and storage cabling. - [Configuring RemoteFX on Windows Server 2008 R2 SP1 Hyper-V](https://petri.com/configuring-remotefx-hyper-v-r2-sp1/): How-to guide covering some of the basic configuration options for RemoteFX on Hyper-V R2 SP1. - [Leveraging PAL to Troubleshoot Windows Storage Performance Issues](https://petri.com/leveraging-pal-to-troubleshoot-windows-storage-performance-issues/): Performance Analysis of Logs (PAL) tool, a powerful free tool developed by Microsoft and the open source community for analyzing storage performance issues. - [Importing Hyper-V VMs into vSphere](https://petri.com/import-vm-hyper-v-to-vsphere/): Step-by-step guide and video for importing Hyper-V virtual machines into VMware vSphere 4.1. - [Preventing Automatic Update to IE9 with Internet Explorer 9 Blocker Toolkit](https://petri.com/blocker-toolkit-for-ie9/): How to block Windows Automatic Update of IE9 with Internet Explorer 9 Blocker Toolkit from Microsoft, in environments where Automatic Updates are enabled. - [Cisco Voice Over IP (VoIP) QoS Basics](https://petri.com/voip-quality-of-service-basics/): Basic overview for configuring Quality of Service (QoS) with VoIP, including the high level QoS methods available to achieve quality voice traffic. - [Exploring Windows Storage Technologies: DAS, NAS and SAN-Based Solutions](https://petri.com/das-nas-san-storage-technologies/): Overview of Windows storage technologies including Direct Attached Storage (DAS), Storage Area Networks (SAN) and Network Attached Storage (NAS). - [Cisco SMB Wireless Solutions Overview](https://petri.com/smb-wireless-cisco-solutions/): SMB wireless solutions, including features overview of Cisco’s current access point and wireless router products. - [Get Ready - Windows Server 2008 R2 / Windows 7 Service Pack 1 is almost here!](https://petri.com/windows-7-and-server-2008-r2-sp1/): Microsoft has announced the February 2011 availability of Windows Server 2008 R2 and Windows 7 Service Pack 1 (SP1). - [Beginning SSIS: How to Create a Basic Data Load Package in SQL Server Integration Services](https://petri.com/ssis-creating-data-load-package/): Step-by-step guide by Jennifer McCown on creating a basic data load package in SQL Server Integration Services. - [Top 5 VoIP Concepts to Know for CCNA Voice](https://petri.com/voip-basics-ccna-voice-exam/): An overview of the basic concepts of deploying and operating VoIP technologies as they relate to CCNA Voice Certification. - [Changing SQL Server Job Owners with PowerShell](https://petri.com/sql-server-powershell-change-job-owners/): Using PowerShell for changing job owners in bulk in SQL Server, a more efficient choice than SSMS or T-SQL. - [Free Tools for Troubleshooting Windows Storage Performance Problems](https://petri.com/troubleshooting-windows-storage-performance/): Free tools for storage performance monitoring, including Task Manager & Perfmon, which display performance metrics to help identify any I/O bottlenecks. - [Finding What You Need in PowerShell](https://petri.com/sql-server-powershell-cmdlets-overview/): Working with cmdlets in PowerShell. Learn about what's available in PowerShell by running help on and searching specific cmdlets. - [PowerShell Basics for DBAs](https://petri.com/powershell-basics-for-dbas/): Overview of PowerShell basics - an explanation of how PowerShell is organized and how to get information about the different drives you work with. - [Why Should DBAs Care About PowerShell?](https://petri.com/powershell-scripting-advantages-for-dbas/): Advantages that PowerShell offers to DBAs. Real world examples demonstrating the simplicity of scripting with PowerShell, in contrast to T-SQL and VBScript. - [License & Activation Management with Volume Activation Management Tool (VAMT)](https://petri.com/volume-activation-management-tool/): Christian Mohn provides a walkthrough of Microsoft's Volume Activation Management Tool (VAMT) for license and activation management. - [Creating an Enterprise Scripting Template in PowerShell](https://petri.com/powershell-enterprise-scripting-template/): Step-by-step instructions for building a scripting process in PowerShell which enables each object to be scripted to its own file. - [Wireless LAN Technologies Overview](https://petri.com/wireless-lan-technologies-overview/): Overview of wireless LAN technologies, by Sean Wilkins, including 802.11 standards variations, channel planning & options for implementing Cisco Access Points. - [How to Backup Fault Tolerant VMs in vSphere 4](https://petri.com/backup-fault-tolerant-vms-vsphere-4/): Step-by-step instructions for backing up Fault Tolerant enabled VMs in vSphere 4, by temporarily disabling FT in order to allow a snapshot to be created. - [Scripting Database Objects with Advanced Scripting Options in PowerShell](https://petri.com/powershell-scripting-advanced-options/): How-To guide for scripting database objects in PowerShell using SMO for advanced scripting options. - [Scripting Database Objects in PowerShell](https://petri.com/scripting-database-objects-in-powershell/): A guide for scripting database objects in PowerShell to easily script all the objects in your database for as many of your servers as you'd like. - [Introduction to Indexes in SQL Server](https://petri.com/introduction-to-sql-server-indexes/): An explanation of indexes in SQL Server, one of the most effective and essential elements to an efficient database system. - [How to Create and Edit a Report in SQL Server Reporting Services](https://petri.com/sql-reporting-services-create-edit-reports/): Step-by-step instructions for creating, formatting, and exporting reports with SQL Server Reporting Services (SSRS). - [Total Backup Solutions from Hybir](https://petri.com/total-backup-solutions-from-hybir/): What is 'total backup' and how can Hybir's new technology ensure complete, automated backup for individual files and/or your entire system? - [How to Configure an iPhone for Microsoft BPOS Exchange Online Email](https://petri.com/iphone-configuration-for-bpos-exchange/): How to configure an iPhone to connect to your BPOS Exchange account. - [Microsoft Office 365: The Next Generation of Cloud-Hosted Exchange, Sharepoint, Office and Lync](https://petri.com/office-365-cloud-hosted-exchange-sharepoint-office-lync/): Overview of Office 365, the next step forward in Microsoft's cloud computing platform. Includes resources for admins transitioning from BPOS to Office 365. - [Outline and Introduction to Exam 70-653: TS: Windows Small Business Server 2008, Configuring](https://petri.com/exam-70-653-microsoft-certification/): Outline of Microsoft Exam 70-653: TS: Windows Small Business Server 2008, Configuring. Covers guidelines and recommendations for preparing for the exam. - [Moving a Virtual Machine Between Hyper-V Hosts](https://petri.com/move-virtual-machine-between-hyper-v-hosts/): Guidelines for moving a virtual machine between Hyper-V hosts while minimizing downtime of the VM and limiting effect of other VMs on the virtualization host. - [10 Tools Every Network Administrator Should Have On Their Thumbdrive](https://petri.com/10-things-every-windows-admin-should-have-on-their-thumbdrive/): Wesley David outlines some of the best tools and utilities every Network Administrator should have with them at all times. - [Email Coexistence for BPOS and Exchange: Part 3 - Activate Users and Migrate Mailboxes to BPOS](https://petri.com/bpos-email-coexistence-setup-part-3/): Final part in a 3 part series on setting up email coexistence for BPOS and Exchange. Includes activating users and migrating mailboxes to BPOS. - [Email Coexistence for BPOS and Exchange: Part 2 - How to Synchronize Active Directory with BPOS](https://petri.com/bpos-email-coexistence-setup-part-2/): How to set up and configure email coexistence for BPOS and Exchange. Includes verifying email traffic flow and enabling Active Directory Synchronization. - [Installing Windows 7 Service Pack 1 BETA](https://petri.com/installing-windows-7-service-pack-1-beta/): Installation walkthrough of Windows 7 Service Pack 1 Beta and information on specific changes for both Windows 7 and Windows Server 2008 R2 systems. - [Using Remote Desktop Connection Manager](https://petri.com/remote-desktop-connection-manager/): Step-by-step guide for using Windows Remote Desktop Connection Manager (RDCMan) for performing administration and configuration tasks remotely. - [How to Enable IMAP Access to Exchange Mailboxes](https://petri.com/how-to-enable-imap-access-to-exchange-mailboxes/): Instructions for enabling IMAP support on Exchange Server 2003/2007 including details on configuring IMAP over SSL. - [Replace Default Windows 7/Server 2008 R2 Recovery Environment in Diagnostic and Recovery Toolset Version 6.5](https://petri.com/replace-default-windows-recovery-environment-in-dart/): How to replace the default Windows Recovery Environment with DaRT (Diagnostic and Recovery Toolset) version 6.5. - [Support for IPv6 in Windows Server 2008 R2](https://petri.com/support-for-ipv6-in-windows-server-2008-r2/): In this second installment of hot topics in Windows Server 2008 R2, Matt and Chris discuss IPv6, the new Internet protocol supported in Windows Server 2008 R2. - [Email Coexistence for BPOS and Exchange: Part 1 - Introduction and Verifying Your Domain](https://petri.com/bpos-email-coexistence-setup-part-1/): Part 1 of 3 in a series on setting up email coexistence for BPOS and Exchange. Includes adding domain to BPOS, enabling external relay and verifying domain. - [Enable Remote Management of Windows Server 2008 R2 Server Core](https://petri.com/2008-r2-server-core-enable-remote-management/): How to enable remote management of Windows Server 2008 R2 Server Core using SCONFIG and Remote Server Administration Tools (RSAT). - [10 Windows Server 2008 R2 Hot Topics: IIS](https://petri.com/10-windows-server-2008-r2-hot-topics-iis/): A special video presentation and discussion of some of the hottest features and functionality included in Windows Server 2008 R2,... - [Get the Windows Live Messenger Icon back to the Tray Area in Windows 7](https://petri.com/windows-live-messenger-and-windows-7-taskbar/): Great Windows 7 tip on how to remove the Windows Live Messenger Icon from the taskbar, without having to close down the application. - [Installing System Center Virtual Machine Manager 2008 Configuration Analyzer Update 1](https://petri.com/installing-vmmca-update-1/): Virtual Machine Manager 2008 Configuration Analyzer (VMMCA) Update 1 is a diagnostic tool that can be used to evaluate important configuration settings for computers that are serving, or might serve, Virtual Machine Manager (VMM) roles or other VMM functions. - [How to Move Database Files in SQL Server: Part 2](https://petri.com/move-db-files-in-sql-server-detach-attach/): How to move database files in SQL Server with the Detach/Attach method, including the restrictions and implications of detaching a database. - [How to Move Database Files in SQL Server: Part 1](https://petri.com/move-db-files-in-sql-server-taking-db-offline/): How to move database files in SQL Server by taking the database offline. Overview of what makes this method one of the simplest options with minimal interruption to the server and to the database itself. - [Using Quick Migration to Migrate a VM Between Hyper-V Hosts](https://petri.com/migrate-vm-using-quick-migration/): Instructions on using SCVMM to perform Quick Migration when migrating a virtual machine between Hyper-V hosts. - [Manually Migrating a VM Between Hyper-V Hosts](https://petri.com/migrate-vm-manually-between-hyper-v-hosts/): Instructions for manually moving a virtual machine between Hyper-V hosts with Hyper-V R2. - [How to Set Up Custom Domains and Receive Email with Microsoft BPOS](https://petri.com/bpos-domain-and-email-configuration/): A step-by-step guide for setting up custom domains and email with Microsoft BPOS. - [Introduction to the SQL Server Integration Services (SSIS) Development Environment](https://petri.com/sql-server-integration-services-introduction/): An introduction to SQL Server Integration Services (SSIS), with an emphasis on the SSIS development environment. - [Secure Active Directory Objects in Windows Server 2008/R2 ADUC](https://petri.com/secure-active-directory-objects-windows-server-2008r2/): Instructions on using Active Directory Users and Computers (ADUC) in Windows Server 2008/2008 R2 to protect Active Directory objects from accidental deletion. - [Daniel Petri’s MCSE & System Administrator Interview Questions – Part 8 – Windows Server 2008/R2 Hyper-V and Virtualization](https://petri.com/mcse-system-administrator-virtualization-interview-questions/): The top technical job interview questions MCSE's and System admins should prepare for; specific to Windows Server 2008/R2 Hyper-V and Virtualization topics. - [The Case for Commercial SSL Certificates for Exchange Server 2007/2010](https://petri.com/ssl-exchange-certificate-buying-commercial/): Reasons to buy SSL SAN certificates for Exchange Server 2007/2010 from a genuine commercial certificate authority. - [Error when Attempting to Remove Windows Server 2008 Server Core from Domain](https://petri.com/windows-2008-server-core-error/): Resolve Server 2008 R2 Server Core error: "The security database on the server does not have a computer account for this workstation trust relationship" - [Monitoring Your Database with SQL Profiler](https://petri.com/monitoring-with-sql-profiler/): Explains how to use SQL Server Profiler to record of the activity of your database, including ad hoc queries, stored procedure requests, logins, errors & more. - [Configuring Taskbar Alerts & Maintenance Functions in Windows 7 Action Center](https://petri.com/windows-7-action-center-security-and-maintenance-functions/): Step-by-step instructions on how to configure the Windows 7 alerts you see in the taskbar and built-in security and maintenance functions of Windows 7. - [How to Remove Libraries & Favorites from Windows Explorer in Server 2008 R2 & Windows 7](https://petri.com/remove-libraries-and-favorites-from-windows-explorer/): Instructions on how to edit the registry setting in Windows 7 in order to remove the favorites and libraries folders in the default view of Windows Explorer. - [Prepare your Domain for the Windows Server 2008 R2 Domain Controller](https://petri.com/prepare-for-server-2008-r2-domain-controller/): Prior to installing the 1st Windows Server 2008 DC on an existing Windows 2000, Windows Server 2003/2008 domain, the domain must be prepared using ADPREP. - [Enabling Remote Management in Windows Server 2008 R2](https://petri.com/remote-management-in-windows-server-2008-r2/): How to use the built-in Windows Server Manger in Server 2008 R2 to remotely manage via server to server, server to server core & client to server scenarios. - [Fix "RPC Server is Unavailable" Error in Windows Server 2008 R2 Remote Disk Management](https://petri.com/rpc-server-is-unavailable-error/): Detailed steps to fixing the "RPC Server is Unavailable" error when attempting to connect to a remote server in Windows Server 2008 R2. - [String Data Types in SQL Server: VARCHAR vs. CHAR](https://petri.com/sql-server-string-data-types/): SQL Server Basics: How to choose proper string data types, when to use CHAR instead of VARCHAR, and why it's important for your database. - [Exchange, SharePoint & Live Meeting in the Cloud: Microsoft Business Productivity Online Suite (BPOS)](https://petri.com/microsoft-bpos-hosted-services-review/): Explains what's really included in Microsoft's Business Productivity Online Suite (BPOS) and how it compares to other hosted Exchange and SharePoint providers. - [Daniel Petri’s MCSE & System Administrator Interview Questions – Part 7 – Windows Server 2008 R2 TS/RDS](https://petri.com/mcse-system-administrator-windows-server-2008-r2-ts-rds-interview-questions/): The questions interviewers need to ask and candidates should prepare for in an MCSE or system administrator job interview. Part 7: Windows Server 2008/R2 TS/RDS - [Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 5 – Exchange Server 2007/2010](https://petri.com/mcse-system-administrator-exchange-server-2007-2010-interview-questions/): The questions interviewers need to ask and candidates should prepare for in an MCSE or system administrator job interview. Part 5: Exchange Server 2007/2010 - [Daniel Petri’s MCSE & System Administrator Interview Questions – Part 6 – Windows Server 2008/R2 Active Directory](https://petri.com/mcse-system-administrator-windows-server-2008-r2-active-directory-interview-questions/): This is a part 6 of my MCSE and System Administrator job interview sample questions See previous parts at: Part... - [Introduction to the DoD / TCP/IP Model](https://petri.com/introduction-to-the-dod-tcpip-model/): A review of the TCP/IP / DoD Model as it relates to the CCNA & Network+ exams with a breakdown of the Four Layers in the model. - [Defrag Windows 7 Quickly and Easily](https://petri.com/defragmenting-partitions-in-windows-7/): Want to know how to defragment windows 7? Learn how to defrag Windows 7 using Auslogic Disk Defrag or Windows built-in tools. - [Creating a Partition During Windows 7 Installation](https://petri.com/creating-a-partition-during-windows-7-installation/): How to properly configure the partition's size during a Windows 7 custom install. - [Shrinking the System Partition in Windows 7](https://petri.com/shrink-system-partition-in-windows-7/): Step by step guide on how to shrink the system partition in Windows 7 by using the extend feature in Disk Management, or using the DISKPART command line executable. - [Extending the System Partition in Windows 7](https://petri.com/extending-the-system-partition-in-windows-7/): A detailed description of the 2 internal methods for extending the system partition in Windows 7. - [Get Back Quick Launch in Windows 7](https://petri.com/get-back-quick-launch-in-windows-7/): Detailed instruction on how to enable the Quick Launch toolbar in Windows 7 - [Gaining Exclusive Access to a SQL Server Database](https://petri.com/gaining-exclusive-access-to-a-sql-server-database/): Learn how to gain exclusive access to a SQL Server database so you can safely perform operations like taking it offline, restoring etc. - [Transfer User Files and Settings from Windows XP/Vista to Windows 7](https://petri.com/transfer-user-files-and-settings-from-windows-xpvista-to-windows-7/): A step by step guide to using Windows Easy Transfer to migrate files and user settings from Windows XP/Vista to Windows 7. - [Introduction to the OSI Model](https://petri.com/introduction-to-the-osi-model/): A detailed review of the tie in between the OSI Model to the CCNA and Network+ exams as well as the breakdown of the seven layers of the OSI Model. - [How to Install SQL Server 2008](https://petri.com/how-to-install-sql-server-2008/): A walk through of the setup wizard for SQL Server 2008 installation with screen shots and step by step instructions. - [Troubleshooting a Slow Database Server: Is SQL Server the Cause?](https://petri.com/troubleshooting-a-slow-database-server/): How to use Perfmon for high level troubleshooting to determine if database slowness is being caused by SQL issues. - [Working with Domain Member Virtual Machines and Snapshots](https://petri.com/working-with-domain-member-virtual-machines-and-snapshots/): 3 options to follow in order to avoid authentication issues when using virtualization software and snapshots. - [Fixing "Windows cannot connect to the domain" Errors](https://petri.com/fixing-windows-cannot-connect-to-the-domain-errors/): Detailed instructions on how to use the 2 methods to repair "windows cannot connect to the domain" errors. - [How to Plan SQL Server Database Files](https://petri.com/sql-server-database-files/): Setting up data and log files properly in SQL can eliminate future production problems. Here are some important things to consider. - [Update Hyper-V Hosts](https://petri.com/update-hyper-v-hosts/): Updating Hyper-V Host on a regular basis is part of the maintenance needed to keep a stable and secure virtual host environment. Here are some best practices to follow. - [Installing .NET Framework 1.1 on Windows NT 4.0 Server](https://petri.com/installing-net-framework-1-1-on-windows-nt-4-0-server/): Important information on downloading and installing Microsoft's .NET Framework 1.1 on Windows NT 4.0 Server, including debugging certain errors. - [Microsoft Releases Office 2010 & SharePoint Server](https://petri.com/microsoft-releases-office-2010-and-sharepoint/): Today, Microsoft officially launched Microsoft Office 2010 and Microsoft SharePoint 2010. Here's the highlights... - [Changes in the CCNP exam](https://petri.com/changes-in-the-ccnp-exam/): A review of the CCNP certification and prerequisites and some of the recent changes announced from Cisco regarding updates to the exam structure. - [Almost Everything You Need to Know About DHCP as a Systems Administrator](https://petri.com/almost-everything-you-need-to-know-about-dhcp-as-a-systems-administrator/): DHCP is a critical "must have" network service that enables SysAdmins to manage clients by assigning, tracking and re-assigning IP addresses. - [Installing Hyper-V on Windows Server 2008 R2](https://petri.com/installing-hyper-v-on-windows-server-2008-r2/): There are 3 methods of installing Hyper-V on Windows Server 2008 R2: through the GUI, using command prompt and using PowerShell. - [Prepare Your Windows Server 2008 R2 for Hyper-V Role](https://petri.com/prepare-your-windows-server-2008-for-hyper-v-role/): Step by step instructions on the necessary 9 steps to follow prior to installing the Hyper-V Role on a Windows Server 2008 R2. - [Introduction to the Cisco Certified Network Associate Routing & Switching (CCNA) certification](https://petri.com/introduction-to-the-cisco-certified-network-associate-routing-switching-ccna-certification/): The Cisco Certified Network Associate Routing & Switching exam, 640-802 CCNA, is available to candidates as a combined exam from... - [The Ultimate Guide to Installing Windows 7](https://petri.com/ultimate-guide-to-installing-windows-7/): Step-by-step guide for how to install Windows 7. Explains common configuration settings and installation pitfalls with easy-to-follow screenshots. - [How to Join a Domain in Windows 7](https://petri.com/join-a-domain-in-windows-7/): Explains the prerequisites, settings and steps required to join a domain in Windows 7 via two different methods. - [Is Your PC Compatible with Windows 7? Find Out with Upgrade Advisor](https://petri.com/is-your-pc-compatible-with-windows-7/): Will your computer support Windows 7? Learn how to use Windows 7 Upgrade Advisor to check if hardware, software & peripheral devices will support the upgrade. - [Identity Management and the Administrator's Account](https://petri.com/identity-management-and-the-administrators-account/): Explains identity management fundamentals and how to positively identify who used specific generic user accounts such as the "Administrator" account. - [Windows Recovery Environment (RE): The Solution When A Computer Won't Boot](https://petri.com/windows-recovery-environment/): How to use the Windows Recovery Environment to diagnose and recover from serious booting errors and the security implications of using it. - [Free Tool to Manage Windows Server 2008 R2 Core with a GUI: Visual Core Configurator](https://petri.com/manage-server-2008-r2-core-with-visual-core-configurator/): Reviews Visual Core Configurator 2008, a free tool used to set up and configure Microsoft Windows Server 2008 R2 Core server using a GUI. Download here. - [Should You Migrate from Exchange Server to Google Apps?](https://petri.com/exchange-to-google-apps-issues/): Paul Cunningham of ExchangeServerPro.com takes a holistic look at the challenging aspects of migrating from Exchange to Google Apps. - [Simple Monitoring For Any SNMP Device (Free Download)](https://petri.com/network-device-monitor-solarwinds/): Solarwinds network management has released a free network device monitor for SNMP devices. It can monitor any SNMP variable and will send alerts as needed. - [3 Ways to Enable the Built-In Windows 7 Administrator Account](https://petri.com/enable-the-windows-7-administrator-account/): Learn the 3 ways to enable the built-in Administrator account in Windows 7: with the users and groups snap-in, from the command prompt or during installation. - [The Case For A Network Management Certification](https://petri.com/the-case-for-a-network-management-certification/): SolarWinds Certified Professional (SCP) is the latest network management certification option. This certification picks up where Cisco's CCNA ends off. - [How Can I Install and Use Hebrew Fonts on My Windows 7 Computer?](https://petri.com/install-hebrew-on-windows-7/): Detailed instructions on how to install Hebrew fonts in Windows 7. You can install Hebrew language support during the setup of Windows 7, or at any time after. - [Quick Tip: How to Create a Network Connections Shortcut in Windows 7, Server 2008 and Vista Too!](https://petri.com/create-shortcut-to-network-connections/): Explains how to quickly and easily create a desktop shortcut to the network connection settings in Windows 7, Vista and Windows Server 2008. - [Video: Cisco Nexus 1000-V and vSphere Video Training](https://petri.com/cisco-nexus-1000v-vsphere-video-training/): In this video tutorial, Rick Scherer creates the Cisco VSM and VEM (virtual ethernet module) and now goes about adding an ESX host to the new Nexus 1000V switch - [Secret Commands for Emergency Maintenance from the ESXi4 Console](https://petri.com/vmware-esxi4-console-secret-commands/): Useful commands for ESXi4's official and unsupported consoles to avoid a dirty shutdown and for management and configuration tasks. - [How to Create Professional Network Diagrams Using Microsoft Visio](https://petri.com/network-diagrams-using-visio/): Learn how to use Microsoft Visio to quickly and easily generate professional-looking network diagrams. - [Get Back the Classic Start Menu in Windows 7](https://petri.com/classic-start-menu-in-windows-7/): Missing the classic Start Menu? Learn the easiest ways to switch back and forth between the new and classic Start Menu in Windows 7 and Windows Server 2008 R2. - [Manage Windows Server 2008 R2 Core with SCONFIG](https://petri.com/manage-windows-server-2008-r2-core-with-sconfig/): SCONFIG eases Windows Server 2008 R2 Core deployments. Join a domain, configure remote management, change network settings and more with this built-in tool. - [5 Ways to Install Windows Updates on Windows Server 2008 R2 Core](https://petri.com/install-windows-updates-on-windows-server-2008-r2-core/): The 5 quickest ways to download Windows Server updates from the Windows Update site and install for Windows Server 2008 R2 Core. - [Finding VMware vSphere Virtual Machine Snapshots with PowerCLI](https://petri.com/finding-vsphere-vm-snapshots-with-powercli/): Train Signal vSphere Pro Vol 1 explains you how to find old snapshots in your vSphere infrastructure, report on how old they are, and how much space they take up in your datastores. - [Getting Certified: CompTIA Network+ Certification and the N10-004 Exam](https://petri.com/comptia-network-certification/): This article will introduce you to CompTIA - the Computing Technology Industry Association - as well as the Network+ certification plus expected skills and knowledge a candidate should have prior to sitting the exam. - [Video Training on VMware View, ThinApp, Cisco Nexus 1000V, and PowerCLI](https://petri.com/video-training-on-vmware-view-thinapp-cisco-nexus-1000v-and-powercli/): Top-rated, hands-on video training for VMware desktop and application virtualization. VMware View, ThinApp, Cisco Nexus 1000V, and PowerCLI and more! - [The Essential Guide to Creating and Cloning Virtual Machine Images](https://petri.com/guide-to-creating-and-cloning-virtual-machines/): Essential guide for creating and cloning virtual machines for use with VMware, Microsoft Hyper-V or Citrix XEN and how to avoid the most common pitfalls. - [Issues with E-mail Stuck in the Drafts Folder on Exchange 2007/2010](https://petri.com/email-stuck-in-drafts-folder/): Not able to send mail from Outlook or OWA 2010? Is it stuck in the Drafts folder on your Exchange Server? Learn why this is happening and how to fix it. - [VMware vSphere Data Recovery: Overview and Deployment](https://petri.com/vmware-vsphere-data-recovery/): See where VMware Data Recovery for vSphere improves upon VMware Consolidated Backup for management of all your virtual machine backup, restore, and recovery needs. - [How to Create & Restore a Backup with VMware vSphere Data Recovery](https://petri.com/vmware-data-recovery-backup-and-restore/): Guided instructions for how to configure the data recovery appliance, schedule backups and restore a virtual machine with VMware Data Recovery. - [Create a Unified Outgoing VDI Gateway with Windows Server 2008 R2 and ObserveIT](https://petri.com/unified-outgoing-vdi-gateway/): How to use a single outgoing virtual desktop (VDI) gateway to remotely connect to multiple locations with full audit visibility of all actions performed. - [Enable "God Mode" in Windows Server 2008/R2, Windows 7 and Vista](https://petri.com/windows-god-mode/): See how to enable "God Mode" - a secret tweak for Windows 7, Server 2008 and Vista that shows all Windows customization settings in a central GodMode folder. - [Using ImageX for File-Based Image Deployments](https://petri.com/imagex/): Understand ImageX for Windows 7; a tool that allows you to capture, modify, and apply disk images for deployment of systems using Windows Imaging format (.wim). - [Creating a Virtual Hard Disk Image from a Running OS with Disk2vhd](https://petri.com/physical-to-virtual-with-disk2vhd/): Disk2vhd is tool that creates virtual hard disk images of running operating systems loaded on physical hardware; allowing the transition from disk to VM. - [Evolution of Windows Firewall: Windows 7](https://petri.com/windows-7-firewall/): Learn the basic functionality of the Windows 7 Firewall service as well as some of the advanced security configuration. - [Increase Boot Volume Size of a Windows Server 2008 Virtual Machine](https://petri.com/expanding-boot-volumes-for-server-2008-vm/): Learn how to use the native Disk Manager in Windows Server 2008 to expand (and in some cases shrink) the boot partition without any downtime at all! - [Evolution of Windows Firewall: Windows Vista Firewall](https://petri.com/windows-vista-firewall/): We started this series with how Windows Firewall started out in Windows XP and then the changes to Windows Firewall... - [Fast and Affordable Backup for the SMB](https://petri.com/fast-affordable-backup-for-the-smb/): This month’s topic comes as a result of a question sent to our feedback email box recently: “Data is increasing... - [Evolution of Windows Firewall: Windows XP with SP2](https://petri.com/windows-xp-sp2-firewall/): Learn how Windows Firewall changed between Windows XP and XP SP2. - [Disabling User Account Control (UAC) in Windows 7](https://petri.com/disable-uac-in-windows-7/): Highlights the best options to reduce or completely disable User Account Control (UAC) notifications on your Windows 7 computer. - [Install & Configure the Verizon Network Access Manager](https://petri.com/install-configure-the-verizon-network-access-manager/): A step by step guide, including system requirements, for the installation and configuration of the Verizon Network Access Manager. - [Installing Chromium in VMware Player 3.0](https://petri.com/installing-chromium-in-vmware-player-3-0/): Preview the latest development version of the new Google Chrome OS with VMware Player 3.0. - [Image-based Installations with Windows Imaging Format](https://petri.com/image-based-installations-with-windows-imaging-format/): Details the Windows Imaging file format (WIM), the benefits using it for Windows installs, and reviews the tool (WIMGAPI) used to manage the WIM format. - [Evolution of Windows Firewall: Windows XP](https://petri.com/windows-xp-firewall/): This article will cover the background and evolution of the Windows Firewall, starting with Windows XP. - [Installing Ubuntu 9.10 as a Virtual Machine in Windows](https://petri.com/installing-ubuntu-9-10-as-a-virtual-machine-in-windows/): Step-by-step tutorial on how to Ubuntu Linux 9.10 Karmic Koala into Microsoft Windows via virtualization using only free software. - [Generate Reports About User Actions on Windows Servers](https://petri.com/generate-reports-about-user-actions-on-windows-servers/): Learn how to record and index of any human interaction with your servers, and index this data alongside with detailed meta data of what is seen on the screen. - [Managing Multiple Remote Connections mRemote (Open-Source) Connection Manager](https://petri.com/mremote-open-source-remote-connection-manager/): Learn how you can save money and aid in the administration of multiple remote systems with the free and open-source tool mRemote (released under the GPL license). - [Planning for vSphere: Key Considerations for a Successful Deployment](https://petri.com/planning-for-vsphere/): The ultimate guide to planning a VMware vSphere 4.0 deployment; from determining system requirements to licensing considerations, and all options in between. - [Easier Navigation Between Remote Desktop Sessions with Windows 7/2008 R2](https://petri.com/easy-navigation-between-rdp-sessions/): Learn how to drag and move RDP tabs to any side of the screen, making it easy to see all sessions when doing RDP-in-RDP in Windows 7 / Server 2008 R2. - [Windows Image Deployment with FOG](https://petri.com/windows-image-deployment-with-fog/): Whether you have five or 5,000 PCs, managing your OS images is a crucial part of your IT infrastructure. Done... - [Big Improvements to Virtualization in Windows Server 2008 R2](https://petri.com/virtualization-improvements-in-server-2008-r2/): Windows Server 2008 R2 Virtualization Features: Hot-Add VM Storage, Enhanced Processor and Networking Support, Cluster Shared Volumes (CSV), Live Migration. - [Speeding Up Internet Explorer 8 with Accelerators](https://petri.com/internet-explorer-8-accelerators/): Learn all about Internet Explorer Accelerators; a new feature of IE8 that speed up web browsing by providing quick access to functions like mapping, emailing, etc. - [How to access USB and Other PCI Devices in VMware ESXi4 VMs with VMDirectPath](https://petri.com/vmware-esxi4-vmdirectpath/): In this latest article in his series on vSphere4 Tom Finnis explains one of the less publicised new features in ESXi4 - VMDirectPath; which allows host PCI & PCIe devices to be passed through to the virtual machine. - [Getting Familiar with the Windows 7 Start Menu](https://petri.com/windows-7-start-menu/): See what's changed in the Windows 7 start menu from Windows Vista and XP versions and learn how to quickly customize it for personalization and ease of use. - [Private Browsing with Internet Explorer 8 and Windows 7](https://petri.com/private-browsing-in-windows-7/): Learn how to use Internet Explorer's InPrivate Browsing feature to surf the web without leaving a track to where you've been and what your activities were. - [How to Resolve an Error in NetWkstaGetInfo (2138)](https://petri.com/fix-for-error-in-netwkstagetinfo-2138/): Instructions for how to diagnose and resolve an error in NetWkstaGetInfo (2138). - [Virtual Disk Options in Windows 7 Virtual PC](https://petri.com/virtual-disk-options-in-windows-7-virtual-pc/): Understand the virtual disk options available when configuring a VM: Dynamically Expanding Virtual Disk, Fixed Size Virtual Disk and Differencing Virtual Disk - [Can Windows Virtual PC and VMware Workstation Coexist on the Same Computer?](https://petri.com/can-virtual-pc-and-vmware-workstation-coexist/): Can Windows Virtual PC & VMware Workstation be installed and function properly on the same machine? Daniel explains the most common errors. - [Enabling More than One Remote Desktop Session on Windows XP SP3](https://petri.com/multiple-remote-desktop-sessions-on-windows-xp-sp3/): As you probably all know by now, Windows XP Professional allows you to only use one concurrent Remote Desktop session.... - [Getting Started with the Windows 7 Desktop](https://petri.com/getting-started-with-the-windows-7-desktop/): See the changes to the Windows desktop and learn to leverage the new functionality to perform customizations for personalization with Windows 7. - [Installing Remote Server Administration Tools (RSAT) for Windows 7](https://petri.com/remote-server-administration-tools-for-windows-7/): Complete instructions (including screenshots) for where to download and how to install Remote Server Administration Tools (RSAT) for Windows 7. - [Creating a Virtual Machine in Virtual PC on Windows 7](https://petri.com/creating-a-virtual-machine-in-virtual-pc-on-windows-7/): Learn how to use Virtual PC in Windows 7 to create, configure and boot your own set of virtual machines with step-by-step instructions and screenshots. - [How to Remove Old Device Drivers from Vista & Windows 7](https://petri.com/removing-old-drivers-from-vista-and-windows7/): Step-by-step instructions for how to uninstall and completely remove unused and conflicting device drivers from Windows 7 & Vista. - [Fixing the Hyper-V Export Error: "Failed to Create Export Directory"](https://petri.com/fixing-hyper-v-export-errors/): Learn how to fix a Hyper-V export error indicating "failed to create export directory with the name ..." with this simple tip. - [Working with Virtual Windows XP Disks in Windows 7](https://petri.com/virtual-windows-xp-disks/): Learn how the default Virtual Windows XP virtual machine used for enabling Windows XP Mode (or XPM for short) uses virtual hard disks (VHDs) - [Hiding the User Name for a Locked Computer in Windows Vista/2008](https://petri.com/hiding-user-name-on-logon-screen/): Improve computer security by learning how to prevent the last username from being displayed on the Windows logon screen of a locked computer. - [Tools for Customizing Windows Server 2008 as a Workstation](https://petri.com/tools-for-customizing-windows-server-2008-as-a-workstation/): There are times that you may want to use Windows Server 2008 as your personal workstation OS. Daniel Petri shows you how. - [The Registry and System Tweaks for Customizing Windows Server 2008 as a Workstation](https://petri.com/registry-and-tweaks-for-server-2008-as-a-workstation/): In my previous article titled “Customizing Windows Server 2008 as a Workstation – The Logic” I wrote about the reasons... - [Customizing Windows Server 2008 as a Workstation - The Logic](https://petri.com/customizing-windows-server-2008-as-a-workstation/): As the general discontent of Windows Vista was growing on more and more people, I decided to write a series... - [Windows Virtual PC and Win XP Mode Release Candidate](https://petri.com/windows-virtual-pc-and-win-xp-mode-release-candidate/): Windows Virtual PC (WVPC) is a client virtualization software, which can be used on Windows 7 to create multiple Virtual Machines (VMs), each running a different operating system (OS). - [Administering Your Network with Terminals: An Open Source Connection Manager](https://petri.com/terminals-remote-connection-manager/): Why and where to get Terminals; an open source, remote connection tool that manages all your network connections (RDP, VNC, HTTP, VMRC, etc.) from one place. - [Issues with Video Performance on Hyper-V Hosts](https://petri.com/hyper-v-video-performance-issues/): Quick tip to help correct display issues and improve video performance on your Hyper-V hosts. - [How to Set Up Your Own VMware ESXi4 Server](https://petri.com/installing-vmware-esxi4/): Step-by-step instructions for how to set up your own VMware ESXi 4.0 server and allow multiple virtual machines to be run on a single physical host. - [An Intro to Virtualization with VMware vSphere 4](https://petri.com/vmware-vsphere-4/): An in-depth look at the features and changes in vSphere 4, how they apply to SMBs and info to help you decide whether a deployment should be in your future... - [Managing Multiple Remote Desktop Connections with Windows 7 and MuRD](https://petri.com/managing-multiple-remote-desktop-connections-with-windows-7-and-murd/): Learn how to manage multiple remote desktop connections with Windows 7 and MuRD - [Inside SolarWinds Free TFTP Server: Simple to Use, Easy to Like](https://petri.com/free-tftp-server-from-solarwinds/): Download and installation instructions for SolarWinds free TFTP which can be used to upload and download executable images and configurations to network devices. - [Quick Guide to the New Aero Features in Windows 7](https://petri.com/new-aero-features-in-windows-7/): Quick tips and shortcuts for how to use Aero Peek, Aero Snap and Aero Shake in Windows 7. Instructions also include video demonstrations of all features... - [Has Windows Mail Suddenly Disappeared on You?](https://petri.com/windows-mail-has-disappeared/): If Windows Mail is missing from your start or default programs menu, use these easy instructions to restore it on your Windows 7, Vista or Server 2008 computer. - [Network Monitoring with Orion Network Performance Monitor](https://petri.com/orion-network-performance-monitor/): Download network monitoring software used to detect, diagnose, and resolve network outages and performance issues and review features of Orion network monitor. - [Securing Removable Storage Devices with BitLocker To Go in Windows 7](https://petri.com/bitlocker-to-go-in-windows/): Inside the features and requirements of BitLocker To Go and its capabilities to to control how removable storage devices; like USBs, are secured. - [Uninstalling Windows XP Mode (XPM) Beta from Windows 7](https://petri.com/uninstalling-virtual-windows-xp-beta/): Step-by-step instructions for how to uninstall the default (beta) Virtual Windows XP machine (Windows XPM) when the RTM version is available. - [Having Trouble Installing Hyper-V Integration Services on Vista SP2?](https://petri.com/installing-hyper-v-integration-services-on-vista-sp2/): Instructions for resolving installation errors when adding Hyper-V Integration Services on a Windows Vista SP2 virtual machine. - [Correcting Display Direction for Text-based E-mails in Outlook 2007](https://petri.com/correcting-email-display-direction-in-outlook/): Instructions for how to fix the display direction of plain text emails in Outlook so messages read from right-to-left or left-to-right based on the language. - [Stop File Transfer Manager from Restarting Completed Downloads](https://petri.com/clearing-file-transfer-manager-downloads/): Simple instructions for clearing the File Transfer Manager download queue and eliminating the repeated "Confirm Transfer Request" messages. - [How To Install Windows XP Mode (XPM) on Windows 7](https://petri.com/installing-windows-xpm-on-windows-7/): Detailed instructions for how to install and launch Windows XP Mode (also known as XPM) from your Windows 7 computer. - [Install Virtual PC on Windows 7](https://petri.com/installing-virtual-pc-on-windows-7/): Step-by-step instructions for installing Windows Virtual PC functionality and multiple OS environments to your Windows 7 computer. - [Correcting Multiple Monitor Configuration Issues in Vista](https://petri.com/multi-monitor-configuration-in-vista/): Simple step-by-step instructions for correcting multi monitor configuration issues in Windows Vista computers. - [Inside Windows 7 Security: BitLocker Drive Encryption](https://petri.com/bitlocker-in-windows-7/): An overview with respect to Bitlocker on Windows 7. - [Do I Need to Add the /3GB Switch to a 64-bit Windows Server?](https://petri.com/3gb-switch-with-64-bit-windows/): Step-by-step instructions for how to allocate more memory (3GB) to Exchange and other applications with Windows Server and the /3GB switch . - [Introduction to Cisco ASA 5500 Series Adaptive Security Appliances](https://petri.com/cisco-asa-5500-series/): Key features, capabilities and benefits of the Cisco ASA 5500 series adaptive security appliances for industry standard routing and firewall functionality. - [Connecting to Your SMTP Server with the SMTP-AUTH Login Command](https://petri.com/smtp-authentication/): Configure SMTP authentication on your mail servers using the SMTP-AUTH login command by following these step-by-step instructions and examples. - [Restoring Windows 7 from a Backup System Image](https://petri.com/restore-windows-7-from-backup-image/): Learn how to restore and recover your system from a previously backed-up system image in Windows 7. - [Using the vSphere 4.0 Client to Manage ESXi 4.0](https://petri.com/managing-esxi4-with-vsphere-client/): Learn how to use the VMware's new vSphere Client to complete the configuration of ESXi4 host servers and deploy virtual machines. - [How to Enable More Simultaneous Downloads in IE 8](https://petri.com/adjust-ie8-download-limits/): Step-by-step instructions for how to increase the number of simultaneous file downloads in Internet Explorer 8 past the default max of 6. - [Seven Simple Ways to Find Your Uptime in Windows Server 2008](https://petri.com/check-uptime-in-server-2008/): Learn seven simple methods to quickly view and monitor the uptime of your system in Windows Server 2008. - [Inside the New Features of ObserveIT v4.08](https://petri.com/observeit-v408-features/): A detailed look at the new features and functionality included in the latest version of ObserveIT (v4.08). - [How to Test Your Internet Download Speed](https://petri.com/download-speed-testing/): How to test your ISP's Internet connection bandwidth and your computer's download speed in a few simple steps. - [How to Slipstream Updates for Office 2007](https://petri.com/slipstream-updates-for-office-2007/): Step-by-step instructions for slipstreaming Office 2007 installations along with service pack updates (SP1 and SP2). - [Reduce Your Windows 2008 Server Core Installation by ~200MB](https://petri.com/server-2008-core-footprint/): Reduce your Windows Server 2008 Server Core installation footprint by as much as 200MB with this step-by-step guide. - [Hyper-V in SCVMM 2008 "Needs Attention"](https://petri.com/hyper-v-updates-for-scvmm-2008/): Details the key Hyper-V updates to download to resolve the "Needs Attention" status in Virtual Machine Manager (VMM). - [SQL Server Recovery Models](https://petri.com/sql-server-recovery-models/): How to implement the 3 different SQL Server 2008 recovery models according to your backup strategy needs. - [Top 4 Reasons to Move to Microsoft SQL Server 2008 R2](https://petri.com/top-4-reasons-to-move-to-microsoft-sql-server-2008-r2/): Built-in security, availability, and scale coupled plus robust business intelligence offerings. Learn the to 10 features of Microsoft SQL Server 2008 R2. - [Windows 7 Upgrade Paths](https://petri.com/windows-7-upgrade-paths/): A summary of the possible upgrade paths from previous versions to the Windows 7 operating system. - [Troubleshoot a Slow Database in SQL Server 2008](https://petri.com/troubleshoot-slow-database-in-sql-server-2008/): Follow these steps in order to uncover the queries causing SQL database slowness. - [How to Design a Backup Strategy in SQL Server](https://petri.com/design-a-backup-strategy-in-sql-server/): A high-level discussion on the best practices to follow when developing a backup strategy in SQL. - [How to Choose a SQL Server Authentication Mode](https://petri.com/how-to-choose-sql-server-authentication-mode/): Insight on when it is appropriate to select Windows authentication or Windows and SQL authentication during an install of SQL Server 2008. - [How to Manage SQL Server Database Files](https://petri.com/how-to-manage-sql-server-database-files/): T-SQL is a useful tool in managing large numbers of files in SQL. While this can be done in SSMS, t-SQL is much more flexible and less prone to error. - [Quickly Access your Folders in Vista](https://petri.com/quickly-access-your-folders-in-vista/): In this article, MVP Daniel Petri will show you how to quickly access any folder on your computer through a cool toolbar shortcut. - [Working with System Image Backups in Windows 7](https://petri.com/working-with-system-image-backups-in-windows-7/): Learn how to successfully restore your Windows 7 computer to working status with system image backups. - [Restoring Files with Backup and Restore in Windows 7](https://petri.com/restoring-files-with-backup-and-restore-in-windows-7/): Learn how to restore your lost data from backup in this step-by-step guide for the restore process in the Windows 7 Backup and Restore utility. - [Choosing the Best Storage Desination for your Windows 7 Backup](https://petri.com/where-to-save-your-windows-7-backup/): Details where Windows 7 allows you to store your data backups, the benefits of each storage medium and which option will best fit your requirements. - [Windows 7 Backup & Restore - What it should have been in Vista!](https://petri.com/windows-7-backup-restore/): A detailed walk-through of the new Backup & Restore tool included in Windows 7. Learn how to back up your files and data with ease. - [Top Tips for Importing & Exporting your VM with Hyper-V](https://petri.com/importing-and-exporting-your-virtual-machines/): A detailed guide for how to use the import and export process to move virtual machines around in a Hyper-V environment. - [Security Overview of Encrypting File System (EFS) in Windows 7](https://petri.com/encrypting-file-system-overview/): Comparison & analysis of Windows 7's BitLocker encryption versus EFS. Detailed deployment instructions included. - [Setting Up Mobile Messaging in Exchange 2007, Part 2](https://petri.com/setting-up-mobile-messaging-in-exchange-2007-part-2/): A step-by-step procedure for synchronizing a Windows Mobile device to an Exchange 2007 server and resolving a setup error. - [Configuring Nokia E71 to Synchronize with Exchange Server 2007](https://petri.com/configuring-nokia-e71-with-exchange-2007/): This article walks through the simple steps on how to configure your Nokia E71 cellular phone to synchronize with an Exchange Server 2007 organization. - [Establishing a Service Level Agreement (SLA) for Exchange 2007](https://petri.com/establishing-a-service-level-agreement-for-exchange-2007/): In this article, Brien Posey uses his experiences to show you why service level agreements can be made to work in your favor. - [Virtual Processor Limitations in Hyper-V](https://petri.com/virtual-processor-limitations-in-hyper-v/): In this article, Brien Posey talks about configuring Hyper-V to find the right balance between CPU cores and guest operating systems. - [How to Play Sound Alerts on Microsoft System Center Operations Manager Console](https://petri.com/play-sound-alerts-on-microsoft-system-center-operations-manager-console/): One of the most annoying facts about the Microsoft System Center Operations Manager console (also known as OpsMgr) is that... - [Easily Removing End Users from the Local Administrators Group](https://petri.com/removing-end-users-from-the-local-administrators-group/): In many enterprises, the organization policy is to add end users to the local Administrators group on their assigned PC;... - [Windows 7 Release Candidate (Build 7100) - Early Details](https://petri.com/windows-7-release-candidate-build-7100-early-details/): The Windows 7 Release Candidate download page on TechNet suddenly showed up online and available for review for a short... - [Dual Booting Windows Vista with Windows 7 Ultimate](https://petri.com/dual-booting-windows-vista-with-windows-7-ultimate/): This article is a detailed guide on the steps to take to install Windows 7 Ultimate edition alongside your existing... - [Setting up Windows Vista to multi-boot Windows 7 Ultimate](https://petri.com/setting-up-windows-vista-to-multi-boot-windows-7-ultimate/): Take complete walk through on the steps taken to set up your Windows Vista Ultimate system to multi-boot with Windows... - [Upgrading Windows Vista Ultimate to Windows 7 Ultimate](https://petri.com/upgrading-windows-vista-ultimate-to-windows-7-ultimate/): Windows 7 is the next generation of operating system due from Microsoft. In this article, Jason Zandri takes you on... - [Setting Up Mobile Messaging in Exchange 2007, Part 1](https://petri.com/setting-up-mobile-messaging-in-exchange-2007-part-1/): In this article, Brien Posey shows you how to set up Exchange 2007 to provide users access to their messages and their calendar while on the go. - [Microsoft's Assessment and Planning Toolkit - Planning for Virtualization](https://petri.com/microsoft-assessment-and-planning-toolkit/): Learn how to plan the implementation of your server virtualization with Microsoft's Assessment and Planning Toolkit - [Configuring Exchange 2007 as an Authenticated or Anonymous SMTP Relay](https://petri.com/authenticated-or-anonymous-smtp-relay-with-exchange-2007/): We've recently had to configure a couple of client's SBS2008 Exchange 2007 servers to act as SMTP relays for remote... - [Windows Server 2008 Foundation: An Entry-Level Server Platform](https://petri.com/introduction-to-windows-server-2008-foundation/): A new version of Windows Server 2008 has been announced: Windows Server 2008 Foundation. In this article, MVP Daniel Petri... - [Preventing Automatic Update to IE8 with Internet Explorer 8 Blocker Toolkit](https://petri.com/using-internet-explorer-8-blocker-toolkit/): For organizations wanting to delay the introduction of IE8 until they have tested compatibility with internal applications and sites, Microsoft... - [The Benefits of Creating Multiple Storage Groups - Part 2](https://petri.com/the-benefits-of-creating-multiple-storage-groups-part-2/): Deciding how many mailbox stores to place on an Exchange Server, and deciding how to arrange the storage groups can... - [Backing Up Group Policy Objects](https://petri.com/backing-up-group-policy-objects/): Backing up your Group Policy Objects allows you to restore group policy settings without having to perform an entire Active... - ["Fix It" with Microsoft's Automated Knowledge Base Solutions](https://petri.com/introducing-fix-it-for-me/): An introduction to Fix It; Microsoft's automated knowledge base solutions and how they can be used to perform some OS fixes without manual intervention. - [Changes to the Security Center in Windows 7](https://petri.com/changes-to-the-security-center-in-windows-7/): Microsoft has replaced the Security Center with the Action Center in Windows 7. In this article, Brian Posey explains the... - [Creating Recipient Filters in Exchange 2007](https://petri.com/creating-recipient-filters-in-exchange-2007/): Recipient filtering can be a handy way to quickly locate a user or a mailbox, but it can also be... - [Using a Template to Create Recipient Objects](https://petri.com/using-a-template-to-create-recipient-objects/): Templates can be used to create multiple mailboxes using a single command. In this article, Brien Posey shows you how... - [The Benefits of Creating Multiple Storage Groups, Part 1](https://petri.com/the-benefits-of-creating-multiple-storage-groups-part-1/): In this article, Brien Posey helps you to figure out the best mailbox server architecture for your own environment. - [Add Missing User Properties Tabs in Active Directory Users and Computers on Windows Vista](https://petri.com/add-missing-user-properties-tabs-in-adu-on-windows-vista/): This tip was submitted by Sorin Solomon, one of the Petri forums moderators: Those who followed the instructions in the... - [What's New in Exchange Server 2007 SP2](https://petri.com/exchange-server-2007-sp2/): Exchange Server 2007 SP2 is a mission-critical update. Learn what's included in this latest service pack and the proper steps for installation. - [Physical to Virtual Conversion of Linux Servers with VMware Converter BootCD](https://petri.com/physical-to-virtual-conversion-of-linux-servers-with-vmware-converter-bootcd/): Learn how to use a BootCD to convert Linux Servers from Physical to Virtual (P2V) in VMware Server - [Hyper-V Licensing Considerations](https://petri.com/licensing-virtual-servers/): An overview of licensing requirements for virtual servers. - [How to Create a CatchAll Mailbox in Exchange 2007](https://petri.com/setting-up-a-catchall-mailbox-in-exchange-2007/): Simple instructions for configuring a catchall mailbox in Exchange 2007 to capture email for unresolved addresses. - [Identify Your Windows Vista/2008 Operating System Version and Architecture in 2 Steps](https://petri.com/quickly-find-your-windows-version-and-architecture-info/): Simple 2-step process for determining the version and architecture (32-bit/64-bit) of your Windows OS. - [The Ultimate Guide to Hard Drive Partitioning](https://petri.com/the-ultimate-guide-to-hard-drive-partitioning/): This tutorial shows you how to use free hard drive partition utilities to safely divide your HD into several paritions for an alternate OS or data preservation. - [Quickly Change Screen Resolution in Windows 7](https://petri.com/quickly-change-screen-resolution-in-windows-7/): This article by Daniel Petri describes some of the UI improvements in Windows 7, Microsoft’s upcoming client operating system. - [Fine Tuning Service's Startup for Speed on Windows 7](https://petri.com/windows-7-startup-for-speed/): Learn which Windows 7 startup services are safe to disable, allowing you to get some of your system’s speed and resources back. - [Defragmenting the Active Directory Database](https://petri.com/active-directory-database-defragmentation/): Performing an offline defragmentation of the Active Directory database is a great way to reclaim lost disk space if the... - [Creating Custom Event Views in Windows Server 2008](https://petri.com/custom-event-views-in-windows-server-2008/): Learn to create custom views in Windows Server 2008 by following these simple step-by-step instructions and screenshots. - [A Guide to Windows 7 Network and Sharing Center](https://petri.com/inside-windows-7-network-and-sharing-center/): Look inside the new Windows 7 Network and Sharing Center. See the features and functionality included in this latest version. - [Setting Virtual Machine Boot Options in Windows Server 2008 Hyper-V](https://petri.com/setting-virtual-machine-boot-options-windows-sever-2008-hyper-v/): Here, Brien Posey shows you how to minimize the amount of work involved in rebooting a host server containing virtual machines by setting some automatic startup options. - [Using Templates to Create Exchange Recipient Objects, Part 1](https://petri.com/using-templates-to-create-exchange-recipient-objects-part-1/): Here, Brien Posey explains how you can use recipient template objects to make the mailbox creation process quicker, easier, and less prone to error. - [Get Your Desktop Icons Back in Vista](https://petri.com/get-your-desktop-icons-back-in-vista/): In this article, MVP Daniel Petri will show you how to get your old desktop icons back in Windows Vista, Windows Server 2008, and even Windows 7. - [New Taskbar Features in Windows 7](https://petri.com/new-taskbar-features-in-windows-7/): In this article, MVP Daniel Petri will walk you through some of the new features found in the Windows 7 taskbar. - [Setting Up System Center Virtual Machine Manager (SCVMM)](https://petri.com/setting-up-system-center-virtual-machine-manager-scvmm/): Here, Brien Posey shows you how to install Microsoft’s System Center Virtual Machine Manager, which improves an administrator’s ability to manage virtual machines in the enterprise. - [Drag and Drop to Command Prompt - It's Back in Windows 7!](https://petri.com/drag-and-drop-to-command-prompt-its-back-in-windows-7/): In this article, Daniel Petri tells you if you can drag an object to an open Command Prompt window in Windows 7. - [Upgrading Windows XP Professional SP3 to Windows 7 Ultimate (beta build 7000)](https://petri.com/upgrading-windows-xp-professional-sp3-to-windows-7-ultimate-beta/): Learn how to Upgrade from Windows XP to Windows 7 Ultimate, step by step, from a Microsoft expert! There is more to it that you may think. - [Installing Windows 7 in VMware Server 2.0](https://petri.com/installing-windows-7-in-vmware-server-20/): The best way to test Windows 7 is to install it inside the FREE VMware Server 2.0 - Learn how, step by step, from an IT Pro! - [Windows 7 Editions Comparison](https://petri.com/windows-7-editions-comparison/): The new Microsoft Windows 7 OS will have all new versions that you need to be aware of! Upgrades from XP and Vista are available. - [Low Budget Exchange Server Deployments; What Do You Really Need?](https://petri.com/low-budget-exchange-server-deployments-what-do-you-really-need/): In the midst of the current economic situation, it is very important to keep tabs on spending. Learn how to save money on your Exchange Server Deployment! - [How to Model and Predict Changes to your VMware ESX Infrastructure using vKernel Modeler](https://petri.com/how-to-model-and-predict-changes-to-your-vmware-esx-infrastructure-using-vkernel-modeler/): How do you know if the change you are about to make to your VMware Infrastructure will help or hurt? You need vKernel Modeler! - [BitLocker To Go Walkthrough on Legacy Systems](https://petri.com/bitlocker-to-go-walkthrough-on-legacy-systems/): Windows 7 is the next generation of operating system due from Microsoft and it is now set for a planned... - [Finding Unread E-Mails in Gmail](https://petri.com/finding-unread-e-mails-in-gmail/): Argghhh... another one of these nasty annoyances that can drive you nuts! I expect that most of you have a... - [Walkthrough for BitLocker on Windows 7](https://petri.com/walkthrough-for-bitlocker-on-windows-7/): Windows 7 is the next generation of operating system due from Microsoft and it is still set for a planned... - [Windows 7 Cool Feature - Problem Steps Recorder](https://petri.com/windows-7-cool-feature-problem-steps-recorder/): In Windows 7 (currently in beta), Problem Steps Recorder is a new feature that will record each and every step... - [Free Remote Desktop, Terminal & Citrix Session Recorder: ObserveIT Express](https://petri.com/free-remote-desktop-terminal-citrix-session-recorder-observeit-express/): ObserveIT is a software that is designed from the ground up to be deployed in multi-server enterprise environments and provides... - [Windows 7 Performance Tweaks](https://petri.com/windows-7-performance-tweaks/): Quick tips to optimize the performance of your Windows 7 computer. - [Installing Windows 7 Beta](https://petri.com/installing-windows-7-beta/): Windows 7 is the name of the next version of Windows-based operating system. Windows 7 is next version of the... - [Installing Hyper-V on Windows Server 2008](https://petri.com/installing-hyper-v-on-windows-server-2008/): Hyper-V is a hypervisor-based technology that is a key feature of Windows Server 2008, and provides a scalable, reliable, and... - [Product Overview - Citrix SmartAuditor vs. ObserveIT](https://petri.com/product-overview-citrix-smartauditor-vs-observeithtm/): In today’s shifting IT world  many organizations has servers hosting applications for both internal and customer-facing applications. These servers are... - [Repair Corrupt Microsoft Excel Spreadsheets](https://petri.com/excel-recovery/): This guide outlines how to automatically repair your damaged XLS or XLSX files and recover Excel spreadsheets, tables, formulas and formatting. - [Driver Detective Driver Updater](https://petri.com/computer-driver-updates/): Computer Driver Updates Can Be Done Automatically With the Right Driver Update Tool. This Guide Covers the Use of Driver Detective to Update PC and Server Drivers. - [Web Servers Training Labs](https://petri.com/web_servers_training_labs/): A review of Train Signal’s Web Servers Video Lab Training – Product Details.  See more details at Train Signal’s website.... - [Five things you should know before hooking up your wireless network](https://petri.com/wireless-networking-five-things-you-should-know-security-cwna/): Planning to setup a wireless network? David Davis walks you through five things you should know before rolling up your sleeves. - [Planning for an Exchange 2007 Migration, Part 2](https://petri.com/planning-for-exchange-2007-migration-part-2/): In the first part of this article series, I talked about a few of the things that you should do... - [Home Network Setup - What are the possible configuration settings for a home/SOHO network with 3-4 computers and an ADSL Internet connection?](https://petri.com/adsl_home_network_config/): On this page I will describe the 4 variants or options that one has when connecting a home or small... - [Configuring a Windows 2003 Server to exchange RIP routes with a Cisco router - Part 1](https://petri.com/configure-windows-2003-server-exchange-rip-cisco-router/): Did you know that a Windows Server can act as a router? Even better, did you know that a Windows... - [How can I gain access to a Windows 7 or XP computer if I forgot the administrator's password? How can I reset the administrator's password if I forgot it?](https://petri.com/forgot_administrator_password/): Petri's top tools to recover or reset Windows Login and Windows Administrator Password. Did you forget your password? We'll show you how to get back on your PC. - [Windows Server 2008 ADPREP](https://petri.com/windows-server-2008-adprep/):   Before you can introduce Windows Server 2008 domain controllers into existing Windows 2000 or Windows Server 2003 domains, you... - [How can I write (burn) ISO files to CD or DVD?](https://petri.com/how_to_write_iso_files_to_cd/): ISO files are actually images of complete CDs or DVDs compiled as one whole image file (*. iso), just like... - [How can I install Windows XP Pro on my computer?](https://petri.com/install_windows_xp_pro/): How can I install Windows XP Pro on my computer? As a Microsoft Windows support professional, one of your tasks... - [Exchange 2007 Migration Planning](https://petri.com/planning-for-exchange-2007-migration/): Prepare for a Exchange 2007 Migration with this how to article by Brian Posey. - [Testing Exchange 2007 Migration Readiness](https://petri.com/testing-exchange-2007-migration-readiness/): Lately, I have had a lot of people contacting me because they are interested in bringing Exchange 2007 into an... - [BitLocker To Go Walkthrough Windows 7](https://petri.com/bitlocker-to-go-walkthrough-windows-7/): Windows 7 is the next generation of operating system due from Microsoft and it is now set for a planned... - [Exchange Server Recovery the Easy Way](https://petri.com/exchange-recovery/): Learn how to perform an automated Exchange Server recovery. Repair .EDB database files and restore users' emails, calendars and contacts. - [Managing Windows Server 2008 Disk Quotas, Part 2](https://petri.com/managing-windows-server-2008-disk-quotas-part-2/): In the previous article in this series, I introduced you to the concept of quota template. Now that I have... - [Exclude VMware Virtual Adapters from Vista/2008 Network Awareness and Windows Firewall](https://petri.com/exclude-vmware-virtual-adapters-vista-2008-network-awareness-windows-firewall/): This article explains how to exclude VWware virtual adapters from built in network awareness and firewalls in Windows Vista and Server 2008. - [Edge Transport Server Security - Firewall Configuration](https://petri.com/edge-transport-server-security-part-1/): Brian Posey covers Edge Transport Server Security in this how-to article on proper firewall configuration. - [Establishing Group Policies for Outlook 2007](https://petri.com/establishing-group-policies-for-outlook-2007/): Many years ago, I used to work in the help desk for a large company. At that time, group policies... - [Redirect Favorites and Cookies folder using a Group Policy](https://petri.com/redirect-favorites-cookies-folder-using-group-policy/):   Here’s a great tip submitted by one of our readers – Ziv Shadar. I’ve uploaded it almost word for... - [Edge Transport Server Security, Part 2](https://petri.com/edge-transport-server-security-part-2/): In the first article in this series, I talked about the edge transport server’s role within an Exchange server organization,... - [Tips for Deploying Exchange on a Budget](https://petri.com/reducing-exchange-costs/): Learn money-saving tips and strategies for deploying Exchange servers within budget restrains. - [Automatically Repair .mdb and .accdb Files with Access Recovery](https://petri.com/ms-access-recovery/): This guide outlines how to use Stellar Phoenix Access Recovery application to automatically repair access database files. damaged MDB or ACCDB files and recover your Access tables and forms. - [DelDate](https://petri.com/deldate/): Description This command deletes all files from the specified directory that were last modified prior to the number of dates... - [Self-Service Updates for Active Directory and the Global Address List](https://petri.com/directory_update_tool/): Directory Update – Update your Active Directory and Global Address List (GAL) information One of the most annoying daily tasks... - [Disable NetBIOS in W2K/XP/2003](https://petri.com/disable_netbios_in_w2k_xp_2003/): NetBIOS is an ancient session-level interface and transport protocol developed by IBM to network together PCs. It is a broadcast-based,... - [Download DirectX 9.0c](https://petri.com/download_directx_90c/): Where can I download DirectX 9. 0c? Microsoft DirectX 9. 0 for home users will update your current version of... - [Download ISA Server SP1](https://petri.com/download_isa_server_sp1/): Where can I download ISA Server 2000 Service Pack 1? Internet Security and Acceleration (ISA) Server 2000 fixes are distributed... - [Download Windows 2000 SP4](https://petri.com/download_w2k_sp4/): Where can I download Windows 2000 Service Pack 4? SP4 is a collection of updates for Windows 2000. You can... - [Enable Alcatel SpeedTouch Pro with Static Port Mapping](https://petri.com/enable_alcatel_speedtouch_pro_with_static_port_mapping/): How to configure Alcatel SpeedTouch Pro with Static Port Mapping? In the previous tip I’ve explained how to convert your... - [Enable Telnet on Windows Server 2003](https://petri.com/enable_telnet_on_windows_2003/): Windows Server 2003 has the Telnet disabled by default (and so good that it does! ) To have the Telnet... - [Extract Specific Tools from Adminpak.msi](https://petri.com/extract_specific_tools_from_adminpak_msi/): How can I extract only specific Snap-ins from the Adminpak. msi? Installing the adminpak. msi will install all of the... - [Forgot the Administrator Password - Alternate Method - The LOGON.SCR trick](https://petri.com/forgot_administrator_password_alternate_logon_trick/): Forgot the Administrator password – Alternate Method – The LOGON. SCR trick This is another trick that will easily work... - [GFI Network Server Monitor 7](https://petri.com/gfi_network_server_monitor/): GFI Network Server Monitor 7 New GFI Network Server Monitor 7 enables enhanced complex monitoring tasks for small, medium and... - [Hyper-V beta embedded inside Windows Server 2008 RTM](https://petri.com/hyperv-beta-embedded-inside-windows-server-2008/): A few days ago, on the 4th of February 2008, Microsoft has finalized the Windows Server 2008 code, declaring it... - [Implementing Hyper-V in Windows Server 2008](https://petri.com/implementing-hyper-vision-hyperv-windows-server-2008/): When it comes to file and application servers, often times the server hardware is grossly underutilized. In fact, many servers... - [How do I install and configure a new Windows 2000 DNS server within an existing DNS environment where Active Directory is not enabled?](https://petri.com/install_and_configure_a_new_w2k_dns_server/): To create a new Windows 2000 DNS Server, you must install Windows 2000 Server or Advanced Server on a server... - [Install Remote Desktop Web Connection on Windows XP](https://petri.com/install_remote_desktp_web_connection_on_windows_xp/): Remote Desktop Web Connection is an optional World Wide Web Service component of Internet Information Services, which is included by... - [Installing Hyper-V on Windows Server 2008 Server Core](https://petri.com/installing-hyper-v-on-windows-server-2008-server-core/): The Server Core installation option of the Windows Server 2008 operating system installs a minimal server installation of Windows Server... - [ISA Server Feature Pack 1](https://petri.com/isa_server_2000_feature_pack_1/): ISA Server 2000 Feature Pack 1 ISA Server Feature Pack 1 delivers enhanced security and ease of use beyond that... - [MCAP Certification – More Info](https://petri.com/mcap_certification_more_info/): MCAP stands for Microsoft Certified Architect Program, a program Microsoft has devised in order to identify top industry experts in... - [Microsoft Action Pack Subscription – What it is and Why you Need it](https://petri.com/ms_action_pack_subscription/): Microsoft Action Pack Subscription – What it is and Why you Need it Many MCSE students and serious IT Professionals... - [Obtain a Digital Certificate from an Online Certificate Authority (CA)](https://petri.com/obtain_digital_certificate_from_online_ca/): How do I obtain a Digital Certificate from my Certificate Authority (CA)? This article will describe the 2 most popular... - [Planning for Windows Server 2008 Virtualization](https://petri.com/planning-for-windows-server-2008-virtualization-hyperv/): The concept of server virtualization has been around for quite a few years now, but it seems to just now... - [Publishing OWA 2003 with ISA Server 2004](https://petri.com/publishing_owa_with_isa2004/): How can I publish OWA 2003 with ISA Server 2004? Publishing OWA 2003 with an internal certificate (issued by an... - [How can I quickly edit the items in the Quick Launch toolbar in Windows Vista?](https://petri.com/quickly_edit_quick_launch_icons_in_windows_vista/): How can I quickly edit the items in the Quick Launch toolbar in Windows Vista? As you may have known... - [Quickly Search Active Directory from the Desktop](https://petri.com/quickly_search_active_directory_from_the_desktop/): How can I quickly perform search operations in AD from my desktop? No problem. Create a new shortcut on your... - [Recover Lost Product Keys for Windows 2000, XP, 2003 - CD-Key Recovery for Windows 2000, Windows 2003, and Windows XP](https://petri.com/recover_lost_product_keys_for_windows_2000_xp_2003/): One of the biggest nags for an IT administrator facing the need to format and reinstall a Windows-based operating system... - [Remote Version Checking through SMTP/POP3/IMAP4](https://petri.com/remote_version_checking/): How can I tell what build is my Windows/Exchange server? It’s quite easy to forget which builds your servers are... - [Restore Ntbackup Backups from Windows XP to Windows Vista](https://petri.com/restore_ntbackup_backups_to_windows_vista/): Lately I began to use Windows Vista on my laptop computer, needless to say that one of the basic and... - [Saved Queries in Windows Server 2003 AD Users & Computers](https://petri.com/saved_queries_in_windows_2003_dsa/): How can I use the new Saved Queries capabilities in Windows Server 2003 AD Users & Computers? Windows Server 2003... - [Send To Notepad Shortcut](https://petri.com/send_to_notepad_shortcut/): How can I quickly send files to Notepad for quick editing? This is one of my favorite tweaks, and it... - [The Art and Science of Sizing Exchange 2003 (Part 2)](https://petri.com/sizing_exchange_part_2/): The Art and Science of Sizing Exchange 2003 (Part 2) Storage is the most critical component of an Exchange back-end... - [Summer clock in Israel for 2006](https://petri.com/summer_clock_in_israel_for_2006/): Summer clock (Daylight Savings Time or DST) in Israel for 2006 On the 30th of March 2006 Israel will be... - [Understanding FSMO Roles in Active Directory](https://petri.com/understanding_fsmo_roles_in_ad/): What are the FSMO Roles in Active Directory? Windows 2000/2003 Multi-Master Model A multi-master enabled database, such as the Active... - [Microsoft Virtual Hard Disk Test Drive Program](https://petri.com/vhd_test_drive_program/): Work with the Microsoft Virtual Hard Disk (VHD) Test Drive Program Great new resource from Microsoft: The Virtual Hard Disk... - [Aero Theme is Bad, Disable It](https://petri.com/vista_aero_performance_issues/): With the new Aero Theme Microsoft introduced 3D look to windows, something that Mac OS X users have had for... - [What's Network Setup Wizard in Windows XP?](https://petri.com/whats_network_setup_wizard_in_windows_xp/): The Network Setup Wizard sets the proper permissions on shared folders, adds required keys to the registry, configures protocols and... - [What's Windows Product Activation?](https://petri.com/windows-product-activation/): What is Microsoft (or Windows) Product Activation (or WPA for short)? Windows Product Activation (or WPA) is Microsoft’s attempt to... - [Windows 2003 ADPrep](https://petri.com/windows_2003_adprep/): What do I need to do to prepare my Windows 2000 forest for the installation of the first Windows Server... - [Windows Server 2003 Gold (RTM) Patches](https://petri.com/windows_server_2003_gold_patches/): Windows Server 2003 Gold (RTM) Patches You should consider installing Service Pack 1 as soon as possible During March 2005... - [How to use the Cisco IOS Policy-Based Routing Features](https://petri.com/how-to-use-cisco-ios-policy-based-routing-features/): The use of a dynamic routing protocol on a company’s WAN and LAN is standard practice today. Whether you use... - [Veeam's New Backup Application for VMware ESX Server](https://petri.com/veeam-backup-vmware-vmware-esx-server-replication/): There haven’t been a lot of companies offering VMware VMFS backup applications, up until this point. Recently, Veeam, the company... - [Installing Windows Vista in VMware Server](https://petri.com/virtual_installing_vista_under_vmware_server/): VMware Server is the perfect place to test Microsoft Windows Vista. That is because VMware Server is free to download... - [VMware or Virtual PC - Which Product is Right For You?](https://petri.com/virtual_vmware_virtualpc_compared/): Whether you would like to use virtualization on your desktop PC or on a server farm, you must choose a... - [Creating a Wireless Network Group Policy, Part 1](https://petri.com/creating-wireless-network-group-policy-part-1/): One of the things that always seems weird about wireless networking is that companies typically go to great lengths to... - [Performance Monitoring The Easy Way, Part 1](https://petri.com/performance-monitoring-easy-way-part-1/): The Windows Performance Monitor has been around in one form or another since the days of Windows NT.   Even... - [Using Exchange Management Shell to Configure Content Filtering](https://petri.com/using-exchange-2007-management-shell-configure-content-filtering-part1/): One of the things that I’ve always found interesting about Exchange Server 2007 is that the Exchange Management Console was... - [Delete IE7 History From the Command Line](https://petri.com/delete-ie7-history-from-command-line/): When cloning a computer running Windows XP, 2003, Vista or 2008, one of the tasks that you should perform before... - [Disable Administrative Shares](https://petri.com/disable_administrative_shares/): How can I disable the Administrative Share creation in Windows NT/2000/XP/2003? Every Windows NT/W2K/XP/2003 machine automatically creates a share for... - [Disable Password Requirements in Windows Server 2003 Domains](https://petri.com/disable_password_requirement_in_win2003_domain/): How can I disable the password requirement for a user in a Windows Server 2003 Active Directory domain? Windows Server... - [How can I prevent users from writing to USB removable disks (USB flash drives)?](https://petri.com/disable_writing_to_usb_disks_in_xp_sp2/): USB removable disks (also known as flash drives or “Disk on Key” and other variations) are quickly becoming an integral... - [Download Windows XP Reskit Tools](https://petri.com/download_windows_xp_reskit_tools/): Where can I get the Windows XP Support Tools? The Windows XP Resource Kit Tools are a set of software... - [Enable Theme Support in Windows Server 2003](https://petri.com/enable_themes_on_windows_2003/): How can I enable theme support in Windows Server 2003? Windows Server 2003 has the theme support services disabled by... - [Free Packet Sniffers for Windows 2003/Vista/2008](https://petri.com/free-packet-sniffers-for-windows-2003-vista-2008/): A packet sniffer is usually used to analyze network traffic. The reason for using a packet sniffer (or simply called... - [Grant Full Mailbox Rights to an Administrator on Exchange 2000/2003](https://petri.com/grant_full_mailbox_rights_on_exchange_2000_2003/): How do I grant the administrator(s) (or any other user) full mailbox right on Exchange 2000/2003 mailboxes? In Microsoft Exchange... - [How to Disable SMB 2.0 on Windows Vista/2008](https://petri.com/how-to-disable-smb-2-on-windows-vista-or-server-2008/): Server Message Blocks Protocol (SMB) is the file sharing protocol used by default on Windows-based computers. SMB 1. 0 was... - [IconZone](https://petri.com/iconzone/): Description This utility changes desktop icons, start-menu icons and quick-launch icons as well as proxy settings whenever the computer’s IP... - [Import Virtual Machines from Virtual Server to Hyper-V with VMC2HV](https://petri.com/import-virtual-machines-virtual-server-hyper-v-vmc2hv/): Matthijs ten Seldam, who has developed VMRC+ (see my Manage Virtual Server Machines with VMRC Plus article for more info),... - [How do I install and configure Windows 2000 DNS server?](https://petri.com/install_and_configure_w2k_dns_server/): The Domain Name System (DNS) is the Active Directory locator in Windows 2000. Active Directory clients and client tools use... - [Install VM Additions on Windows Vista Beta and Virtual Server R2](https://petri.com/install_vs_r2_vm_additions_on_windows_vista_beta/): How can I install the Virtual Server R2 VM Additions on Windows Vista? The Virtual Additions are a set of... - [Installing Link Layer Topology Discovery (LLTD) on Windows Server 2003](https://petri.com/installing-link-layer-topology-discovery-on-windows-server-2003/): Link Layer Topology Discovery (LLTD) graphically displays the topology of a network. This post shows you how to setup LLTD on Windows Server 2003. - [Limitations of Alternate PF Trees](https://petri.com/limitations_of_alternate_pf_trees/): Why does Outlook still show only the basic Public Folders structure although I’ve created additional Public Folder hierarchies? When you... - [Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 3 – Exchange Server 2003](https://petri.com/mcse-system-administrator-exchange-interview-questions/): This is a part 3 of my MCSE and System Administrator job interview sample questions. See previous parts at: Part... - [Offer Remote Assistance in Windows XP/2003](https://petri.com/offer_remote_assistance_in_windows_xp/): Sometimes you’re up against stupid or lamer users who can’t figure out their GUI (not to mention basic computer skills).... - [Planning FSMO Roles in Active Directory](https://petri.com/planning_fsmo_roles_in_ad/): What are the considerations for the FSMO placement in Active Directory? Windows 2000/2003 Active Directory domains utilize a Single Operation... - [Quickly See if your Server, PC or Laptop Supports Hyper-V](https://petri.com/quickly-see-if-your-server-pc-or-laptop-supports-hyper-v/): Virtual machine technology enables multiple operating systems to run concurrently on a single machine. Microsoft Hyper-V, a key feature of... - [Quickly Edit Quick Launch Icons in Windows XP/2003](https://petri.com/quickly_edit_quick_launch_icons_in_windows_xp_2003/): How can I quickly edit the items in the Quick Launch toolbar in Windows 2000/XP/2003? The Quick Launch toolbar is... - [Quickly Search the Web](https://petri.com/quickly_search_the_web/): How can I quickly search the web from my web browser? Searching the web for specific articles, sites and links... - [Remote to a Windows Vista Machine using VNC on Windows XP](https://petri.com/remote_windows_vista_using_vnc/): Through the use of VNC and port-forwarding, you can control your Windows Vista or Windows XP computer from inside and... - [SBS 2000 Installation Tips](https://petri.com/sbs_2000_installation_tips/): I’m about to install SBS 2000 on my network. Are there any special issues to take into consideration before I... - [Sender Policy Framework](https://petri.com/sender_policy_framework/): Sender Policy Framework (SPF) tackles email address forgery. Without SPF it is very easy to send e-mails using someone else’s... - [Slow Shutdown of Exchange 2003 Server Installed on DC](https://petri.com/slow_shutdown_of_exchange_2003_server_installed_on_dc/): Exchange 2003 on a Domain Controller or “Why does my Exchange 2003 server take 10 minutes or more to shutdown”... - [What is Microsoft Software Update Services (SUS)?](https://petri.com/sus/): What is Microsoft Software Update Services (SUS)? Microsoft SUS is a free patch management tool provided by Microsoft to help... - [Understanding Function Levels in Windows Server 2003 Active Directory](https://petri.com/understanding_function_levels_in_windows_2003_ad/): What are the domain and forest function levels in a Windows Server 2003-basedActive Directory? Functional levels are an extension of... - [Upgrade Windows 2000 GPO with XP Features](https://petri.com/upgrade_windows_2000_gpo_with_xp_features/): How do I upgrade a Windows 2000 Active Directory Group Policy object (GPO) to support the new features in Windows... - [View Additional User Information in AD Users and Computers](https://petri.com/view_additional_user_information_in_aduc/): How can I view additional information about a user in the AD Users and Computers snap-in? The Windows 2003 Resource... - [Vista Command Prompt](https://petri.com/vista_command_prompt/): The Command Prompt is a native Windows program that lets you execute commands without using a GUI. You can accomplish... - [What's New in Windows Server 2003 Active Directory?](https://petri.com/whats_new_in_windows_server_2003_active_directory/): Looking for an overview of what's new in Active Directory in Windows Server 2003? Daniel points out the highlights and noteworthy additions. - [What You Need to Know About Securing Your Virtual Network](https://petri.com/what-you-need-to-know-about-vmware-virtualization-security/): A lot of people think that if you virtualize, let’s say, a Windows 2003 Server, that virtualized system should be... - [Windows Server 2003 SP1 Patches](https://petri.com/windows_server_2003_sp1_patches/):   You should consider installing Service Pack 1 as soon as possible During March 2005 Microsoft released SP1 for Windows... - [Virtual Floppy Disks with VMware](https://petri.com/virtual-floppy-disks-vmware/): You might be thinking that floppy disks are “dead”, right? Well, you are correct that the physical floppy 3. 5″... - [How to Mount VMware Virtual Disks Without VMware](https://petri.com/virtual_mount_vmware_virtual_disk_without_vmware/): VMware Workstation and Server uses virtual disk files as the disk drives for virtual machines. These files (ending in .... - [Understanding VMware VMX Configuration Files - Learn How To Create and Edit VMX Files](https://petri.com/virtual_vmware_vmx_configuration_files/): In our article called VMware Disk Files Explained, we talked about the different VMware files on disk. In particular, we... - [Why you need to Decommission Exchange 2003 Servers after your Exchange 2007 Upgrade](https://petri.com/decommission-exchange-2003-servers-exchange-2007-upgrade/): The Exchange Server 2003 Setup program was designed from the very beginning to allow you to uninstall Exchange server should... - [Performance Monitoring the Easy Way, Part 2](https://petri.com/performance-monitoring-easy-way-part-2/): In the previous article in this series, I explained why I believe that performance monitoring is becoming more important now... - [Using Exchange Management Shell to Configure Content Filtering, Part 2](https://petri.com/using-exchange-2007-management-shell-configure-content-filtering-part2/): In the previous article in this series (Using Exchange Management Shell to Configure Content Filtering, Part 1), I showed you... - [Delete Failed DCs from Active Directory](https://petri.com/delete_failed_dcs_from_ad/): How can I delete a failed Domain Controller object from Active Directory? When you try to remove a domain controller... - [Disable APIPA in Windows 98/ME/2000/XP/2003](https://petri.com/disable_apipa_in_windows_2000_xp_2003/): A Windows-based computer that is configured to use DHCP can automatically assign itself an Internet Protocol (IP) address if a... - [How can I prevent users from writing to USB removable disks (USB flash drives) by using Group Policy (GPO)?](https://petri.com/disable_writing_to_usb_disks_in_xp_sp2_with_gpo/): USB removable disks (also known as flash drives or “Disk on Key” and other variations) are quickly becoming an integral... - [Download Microsoft Defender](https://petri.com/download_microsoft_defender/): Download Microsoft Windows Defender (formerly known as Microsoft AntiSpyware) Microsoft Windows Defender (Beta 2) is the final name for Microsoft’s... - [Download Microsoft PowerShell for Windows](https://petri.com/download_powershell_for_windows/): Download Microsoft PowerShell 1. 0 Installation Packages for Windows 2003 SP1, Windows XP SP2 and Windows Vista Microsoft Windows PowerShell... - [Download Windows 2000 SP4 Support Tools](https://petri.com/download_w2k_sp4_support_tools/): What are the Windows 2000 Support Tools? Where can I get them? Why do I need to update them? Along... - [Download Windows XP SP1](https://petri.com/download_windows_xp_sp1/): Where can I download Windows XP Service Pack 1/1a? Update – SP2 is out On August 9, 2004, Microsoft released... - [Enable Compressed Folder in Windows 2000](https://petri.com/enable_compressed_folder_in_w2k/): How can I enable the “Compressed Folder” feature in Windows 2000? The Compressed Folder feature that exists in Microsoft Plus!... - [Free Notepad Replacements](https://petri.com/free_notepad_replacements/): Freeware Notepad Replacements Notepad is one of the few tools that have always been a part of Windows, but in... - [Greylisting in Exchange 2003](https://petri.com/greylisting_in_exchange_2003/): Greylisting seems to be the right method to effectively lower the spam levels your mail servers get daily. Read more... - [How to Install Microsoft Virtual Machine (VM) Additions on Server Core](https://petri.com/how-to-install-microsoft-virtual-machine-vm-additions-windows-server-core-2008/): As you already know by now, in Windows Server 2008,  Server Core installation does not include the traditional full graphical... - [Internet Explorer 7 causes Exchange System Manager (ESM) to crash when I try to open Help](https://petri.com/ie7_crashes_when_opening_esm_help/): One of the issues we discovered with Internet Explorer 7 was that it did not have full compatibility with various... - [Import Saved Queries in Windows Server 2003 AD Users & Computers](https://petri.com/import_saved_queries_in_windows_2003_dsa/): How can I import saved queries to Windows Server 2003 AD Users & Computers? Windows Server 2003 AD Users and... - [Install and Configure Windows Server 2003 DNS Server](https://petri.com/install_and_configure_windows_2003_dns_server/): Need some help with your Domain Name System (DNS) Server setup in Windows Server 2003? This article shows you how to configure and install it. - [Install WAMP on Windows Vista](https://petri.com/install_wamp_server_on_vista/): If you recently upgraded to Microsoft Vista, you can enhance the functionality of Vista by turning it into a server.... - [Installing Link Layer Topology Discovery (LLTD) on Windows XP](https://petri.com/installing-link-layer-topology-discovery-on-windows-xp/): In one of my previous articles – “Hide your Vista Computer on the Network” I wrote about what the network... - [Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 4 – PC Technician](https://petri.com/mcse-system-administrator-pc-technician-interview-questions/): After a long delay, this is a part 4 of my MCSE and System Administrator job interview sample questions. See... - [Microsoft Powertoys Suit](https://petri.com/microsoft_powertoys_suit/): What are the Windows XP Powertoys? Where can I get them? The Microsoft Powertoys are small tools/gadgets from Microsoft that... - [MS Knowledge Base Search Tips](https://petri.com/ms_kb_search_tips/): How to Query the Microsoft Knowledge Base The Microsoft Knowledge Base is a primary Microsoft product information source that Microsoft... - [Office System (2003) SP3 Slipstreaming](https://petri.com/office-system-2003-sp3-slipstreaming/): How can I slipstream service packs into Office System (2003)? Like in previous versions of Office and their corresponding Service... - [OrgBuilder](https://petri.com/orgbuilder/): Description This utility builds up Active Directory users, OU’s and groups as well as private and public shared folders. The... - [Port Scanning with NMAP - Installation & Usage of NMAP](https://petri.com/port-scanning-with-nmap/): Port scanning is a technique used to determine the states of network ports on a host and to map out... - [Quickly Turn On/Off the Aero Theme in Vista](https://petri.com/quickly-turn-on-off-aero-theme-in-windows-vista/): As you all probably know by now, Vista’s new Aero Theme is one of the cool features of Microsoft’s current... - [Work with Vista Hibernation - Quickly  Enable Hibernation & Quickly Disable Hibernation](https://petri.com/quickly_enable_or_disable_vista_hibernation/): Hibernation is a term used for laptops and portable computers. Windows Vista (like XP before it) supports the industry standard... - [Recovering Deleted Items in Active Directory](https://petri.com/recovering-deleted-items-active-directory/): Active Directory is a hierarchical database that holds information about the network’s resources such as computers, servers, users, groups and... - [Remotely Manage Devices in Windows 2008 Server Core](https://petri.com/remotely-manage-devices-windows-server-2008-core/): As I wrote in previous Windows Server 2008 articles, a Server Core installation provides a minimal environment for running specific... - [Reporting Storage Size in Microsoft Exchange](https://petri.com/reporting_storage_size_in_exchange/): In a great blog entry by Michael B. Smith, he has outlined a scripted method of obtaining the Mailbox and... - [Restoring Exchange 2000/2003 mailboxes with ExMerge after moving the mailbox to Exchange 2007](https://petri.com/restoring-exchange-2003-mailboxes-exchange-2007-exmerge/): Imagine the following scenario: You perform a full backup of mailbox store on Exchange 2000/2003.   You move a mailbox... - [Small Business Server 2000 Patches](https://petri.com/sbs_2000_patches/):   Required Patches – SP1/SP1a Small Business Server 2000 is based on the Windows 2000 platform, and incorporates Back Office... - [Server Performance Advisor (SPA) for Windows Server 2003](https://petri.com/server-performance-advisor-spa-windows-server-2003/): This is an article following my previous one about the PAL (Performance Analysis of Logs) tool – read “Quickly Analyze... - [S/MIME Benefits in OWA 2003](https://petri.com/smime_benefits_in_owa_2003/): Some benefits of using the S/MIME control in OWA 2003 Outlook Web Access (OWA) in Exchange Server 2003 has many... - [Tar Pitting in Exchange 2003](https://petri.com/tar_pitting_exchange_2003/): Microsoft KB 842851 has more info: Tar pitting is the practice of deliberately inserting a delay into certain SMTP communications... - [How to Transfer FSMO Roles](https://petri.com/transferring_fsmo_roles/): Learn how to quickly transfer FSMO roles in Active Directory using PowerShell and GUI tools - [Understanding Multiple Local GPOs in Windows Vista](https://petri.com/understanding_multiple_local_gpo_in_windows_vista/): Local GPOs are used to allow the administrator of a Windows 2000/XP/2003/Vista computer to configure security and registry settings for... - [Upgrading From Exchange Server Standard Edition to the Enterprise Edition](https://petri.com/upgrading_from_exchange_server_standard_edition_to_the_enterprise_edition/): How to Upgrade from Exchange Server Standard Edition to the Enterprise Edition? MS KB 170280 has info on this issue:... - [How can I view the Intelligent Message Filter (IMF) archive in Exchange 2003?](https://petri.com/view_imf_archive/): Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial... - [How to Choose the Right VMware Infrastructure ESX Edition For You](https://petri.com/vmware-infrastructure-esx/): In our previous article, “VMware Versions Compared“, we compared the various products in VMware’s product line. For example, the difference... - [What's Remote Assistance in Windows XP/2003?](https://petri.com/remote-assistance-in-windows-xp/): If you’ve ever tried to help a novice user troubleshoot a Windows problem over the phone, you know how frustrating... - [What are IPSEC Policies?](https://petri.com/what_are_ipsec_policies/): What are IPSEC Policies and how do I work with them? If you’ve studied Windows 2000 security much, then you... - [Windows 2003 Domain Controller Rename](https://petri.com/windows_2003_domain_controller_rename/): Free instructions on renaming your domain controller with Windows Server 2003. Step-by-step guide through the renaming screens. - [What is a VLAN? How to Setup a VLAN on a Cisco Switch](https://petri.com/csc_setup_a_vlan_on_a_cisco_switch/): What is a VLAN? How to Setup a VLAN on a Cisco Switch Have you ever wondered what a Virtual... - [Layer by Layer Troubleshooting with a Cisco Router](https://petri.com/layer-by-layer-troubleshooting-cisco/): Every network admin is going to have trouble with network links on a Cisco router, at one point or another.... - [Essential Information About VMware Consolidated Backup (VCB)](https://petri.com/virtual-vmware-consolidated-backup-vcb/): As part of VMware Infrastructure (VI), VMware includes VMware Consolidated Backup (VCB). This product is used to backup VMware ESX... - [How to Remotely Manage your VMware Servers](https://petri.com/virtual_remote_manage_vmware_servers/): As soon as you begin using VMware Servers in a production environment you will have a need for remotely managing... - [How to quickly find and resolve VMware ESX Server performance capacity bottlenecks with VKernel](https://petri.com/vkernel-capacity-bottleneck-analyzer-vmware-appliance-quickly-resolve-performance/): As a system administrator with growing demand on your servers you will eventually run into a capacity bottleneck in your... - [Defining an Exchange 2007 E-Mail Address Policy, Part 1](https://petri.com/defining-exchange-2007-email-address-policy-part-1/): As we all know, Exchange Server 2007 is a lot different from previous versions of Exchange.   One of the... - [Performance Monitoring the Easy Way, Part 3](https://petri.com/performance-monitoring-easy-way-part-3/): In the second article in this series, I mentioned that one of the biggest improvements in performance monitoring was the... - [Getting Mailbox Sizes in PowerShell](https://petri.com/getting-mailbox-sizes-in-powershell/): Learn how to get Microsoft Exchange mailbox sizes in PowerShell in this step-by-step tutorial by the Petri IT Knowledgebase. - [Delete Internet Explorer Address Bar History](https://petri.com/delete_ie_address_bar_history/): Can I delete the Internet Explorer Address Bar History? Sure you can! When you use Internet Explorer to browse to... - [Disable Automatic Image Resizing in IE 6](https://petri.com/disable_auto_picture_resizing_in_ie_6/): How can I disable automatic image resizing in Internet Explorer 6/7? Internet Explorer 6/7 has a feature that causes images... - [Disable the RunAs Command](https://petri.com/disable_runas/): Can I disable the RunAs command? You sure can! The RunAs command was first introduced in Windows 2000 (in NT... - [DispCompInfo](https://petri.com/dispcompinfo/): Description This tool displays the computer name, IP address and optionally a text message on the user’s desktop. Not as... - [Download Microsoft Evaluation Products](https://petri.com/download_microsoft_evaluation_products/): Where can I download 120-day evaluation versions of Windows 2000/2003 or other MS products? As you may recall, my first... - [Download the Microsoft Device Emulator 1.0 with Windows Mobile OS Images (Pocket PC and Smart Phone)](https://petri.com/download_ppc_device_emulator/): The Microsoft Device Emulator 1. 0 is a standalone version of the same ARM based Device Emulator that ships as... - [Download Windows 2000 Sysprep](https://petri.com/download_w2k_sysprep/): Where can I download W2K Sysprep? The Windows 2000 System Preparation Tool (Sysprep) Version 1. 1 enables administrators to prepare... - [Enable Envelope Journaling in Exchange 2000/2003](https://petri.com/enable_envelope_journaling_in_exchange/): Standard message-only journaling simply delivers a copy of a message flagged for archival to a designated journal mailbox. Envelope journaling... - [Enabling Telnet Client in Windows Server 2008 and Windows Vista](https://petri.com/enabling-telnet-client-in-windows-server-2008-and-windows-vista/):   Telnet Client allows a computer to connect to a remote Telnet server and run applications on that server. Once... - [File Servers Training Labs](https://petri.com/file_servers_training_labs/): File Servers Learning Labs A review of Train Signal’s Windows 2000/2003 File Servers Video Lab Training – Product Details.  See... - [Free Tweaking Tools for Windows XP](https://petri.com/free_tweaking_tools/): Want to get the most out of Windows XP? Daniel Petri shows you some of his favorite tweaking tools for Microsoft's long-lived client OS. - [Hardware Requirements for Windows Server 2003](https://petri.com/hardware_requirements_for_windows_server_2003/): What are the Windows Server 2003 Hardware/System requirements? Review the table on this page to determine the minimum and recommended... - [How to Install Windows Server 2008 Step by Step](https://petri.com/how-to-install-windows-server-2008-step-by-step/): Installing Windows Server 2008 is pretty straightforward and is very much like installing Windows Vista, but I thought I’d list... - [Internet Explorer 7 Crashes when Posting Messages in OWA 2003](https://petri.com/ie7_crashes_when_posting_messages_in_owa_2003/): We all love Outlook Web Access (OWA) in Exchange Server 2003. However when using Internet Explorer 7 (if you still... - [The Importance of Web Application Scanning](https://petri.com/importance_of_web_application_scanning/): The Importance of Web Application Scanning White paper – November ‘05 Organizations need a Web application scanning solution that can... - [Install DC from Media in Windows Server 2003](https://petri.com/install_dc_from_media_in_windows_server_2003/): How do I install a Replica Domain Controller from a previous backed-up media on my Windows Server 2003 server? First... - [Install Windows 2000 Server](https://petri.com/install_windows_2000/): How can I install Windows 2000 Server? As a Microsoft Windows 2000 Server support professional, one of your tasks may... - [Installing Remote Server Administrative Tools on Windows Vista](https://petri.com/installing-remote-server-administration-tools-rsat-windows-vista/): Microsoft Remote Server Administration Tools (RSAT) enables IT administrators to remotely manage roles and features in Windows Server 2008 from... - [Links](https://petri.com/links/): Here is Daniel’s List of Recommended Web links: (Sorted in some freestyle alphabetical order) Great Microsoft-related Knowledge Bases These are... - [Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 2 – Windows Server 2003 Active Directory](https://petri.com/mcse_system_administrator_active_directory_interview_questions/): This is a part 2 of my MCSE and System Administrator job interview sample questions. See previous part at: Part... - [MSG.EXE replaces Net Send in Windows Vista](https://petri.com/msg-exe-net-send-vista/): When using Windows XP and previous operating systems one could easily send messages from one computer to another by using... - [OSI Model Concepts](https://petri.com/osi_concepts/): Learn the 7 layers of the OSI Model, the standard model for networking protocols and distributed applications. - [Ports used by Exchange Server](https://petri.com/ports_used_by_exchange/): What TCP and UDP ports does my Exchange 2000/2003 Server use? For purposes of configuring firewalls or for troubleshooting communications... - [Quickly Abort Shut Down Commands on Windows XP/2003](https://petri.com/quickly_abort_shut_down_commands_on_xp_2003/): How can I quickly abort a shutdown command on Windows XP/2003? Some worms, such as the Blaster worm, use known... - [Quickly Share Folders from Desktop](https://petri.com/quickly_share_folders_from_desktop/): I want to be able to quickly create shares or manage shares from my desktop. How can I do that?... - [Recovery and Troubleshooting Options in Windows XP](https://petri.com/recovery_and_troubleshooting_options_in_windows_xp/): What recovery and troubleshooting options do I have in Windows XP? Software and hardware issues can affect the way that... - [Remotely Managing Windows 2008 Server Core Settings through MMC Snap-ins](https://petri.com/remotely-manage-windows-server-2008-mmc/): In my previous articles (see list below) I have written about how, in Windows Server 2008, Server Core installation does... - [Require Windows 98 Clients to Logon to the Domain](https://petri.com/require_windows_98_clients_to_logon_to_the_domain/): How can I require Windows 98 clients to logon to the domain instead of pressing “cancel” at the welcome screen?... - [Restoring items from Exchange Snapshots](https://petri.com/restoring_items_from_exchange_snapshots/): Restoring items from Exchange snapshots In order to maximize Exchange 2003 capabilities and performance and to minimize the restore time... - [SMTP, POP3 and Telnet in Exchange 2000/2003](https://petri.com/smtp_pop3_and_telnet/): How can I verify that my Exchange server is accepting connections? How can I connect to my Exchange server via... - [Travel in Time with the Wayback Machine](https://petri.com/travel_in_time/): A couple of days ago I wanted to re-read some information that I once used to have on my old... - [Unhide Recycle Bin when Dragging and Dropping Files](https://petri.com/unhide_recycle_bin_when_dragging_and_dropping_files/): How do I drag and drop a file to the Recycle Bin if it’s hidden behind many open windows? This... - [Use OEM Version to Upgrade XP](https://petri.com/use_oem_version_to_upgrade_xp/): How can I force an OEM version of Windows XP to install as an upgrade installation? First, find your setupp.... - [Manage Virtual Server Machines with VMRC Plus](https://petri.com/virtual-manage-virtual-server-vmrc-plus/): As some of you know, a few Microsoft employees have been spotted working with a cool tool called VMRC Plus,... - [Windows 2000 Domain Rename](https://petri.com/w2k_domain_rename/): Can I rename my Windows 2000 Domain? The short answer is YES and NO. 🙂 You can rename a Windows... - [What's Remote Desktop in Windows XP/2003?](https://petri.com/remote-desktop-in-windows-xp/): With Remote Desktop on Windows XP Professional or Windows Server 2003, you can have access to a Windows session that... - [What is a Public Key Infrastructure (PKI & Windows PKI)?](https://petri.com/what_is_a_public_key_infrastructure_pki/): I remember several years back wondering what a PKI was. PKI was a hot topic in the media; often appearing... - [Windows 2003 Domain Rename](https://petri.com/windows_2003_domain_rename/): Can I rename my Windows 2003 Domain? Can I move Child Domains between different trees in Active Directory? Yes you... - [Find Out How PacketTrap Perspective Fills Your Network Management Needs – Now With VMware Support](https://petri.com/find-out-how-packettrap-perspective-fills-your-network-management-needs/): There are a lot of network management systems out there but not a lot of them make network management easy... - [Monitor VMware ESX Server Performance for Free: Solarwinds VM Monitor](https://petri.com/monitor-vmware-esx-server-performance-for-free-vm-monitor/): Just released today is SolarWinds free performance monitoring tool – VM Monitor. In this article, learn how to download VM... - [Five Reasons you should Virtualize your servers with VMware Server](https://petri.com/virtual_5_-reasons_to_virtualize_your_servers_with_vmware_server/): Virtualization is becoming more and more popular but that isn’t reason enough to do it. So why should you virtualize... - [What You Need to Run a 64-Bit Guest OS in VMware](https://petri.com/virtual_run_a_64_bit_guest_operating_system_in_vmware/): Have you seen 64-bit versions of popular operating systems any applications? Perhaps you would like to try out these 64-bit... - [Top 3 VMware Consolidated Backup (VCB) Utilities](https://petri.com/vmware-consolidated-backup-utilities/): In our previous article, “What you need to know about VMware Consolidated Backup (VCB)“, we provided an overview of how... - [Defining an Exchange 2007 E-Mail Address Policy, Part 2](https://petri.com/defining-exchange-2007-email-address-policy-part-2/): If you have done much work with Exchange Server 2003 or Exchange 2000 Server, then you are probably familiar with... - [Performance Monitoring the Easy Way, Part 4](https://petri.com/performance-monitoring-easy-way-part-4/): In the previous article in this series, I showed you how data collector sets could free an administrator from having... - [Installing the Exchange 2007 prerequisites on Windows Server 2008](https://petri.com/installing-exchange-2007-prerequisites-on-windows-server-2008/): Installing the Windows prerequisites on Windows Server 2008 is a bit more involved than on Windows 2003. On Windows 2003,... - [How do I use EXMERGE to delete specific messages from Exchange 2000/2003 mailboxes?](https://petri.com/delete_messages_from_mailboxes_by_using_exmerge/): Sometimes one might need to delete many messages from one or more mailboxes. This might happen when trying to stop... - [Disable Automatic Update in Windows XP/2003](https://petri.com/disable_automatic_update_in_windows_xp_2003/): How can I turn off the Automatic Update feature in in Windows XP and Windows Server 2003? To turn off... - [Disable Shared Documents Folder in Windows XP](https://petri.com/disable_shared_documents_folder_in_windows_xp/): What is the Shared Documents folder used for? Can I remove this option from Windows XP? Shared folders are counterparts... - [Display Phantom Drivers in Windows 2000/XP/2003](https://petri.com/display_phantom_drivers_in_windows_2000_xp_2003/): How can I display hidden (phantom) drivers in Windows 2000/XP/2003? There are times when you’ll need to manually remove old,... - [Download RDP 5.2](https://petri.com/download_rdp_5_2/): Where can I download the Remote Desktop Connection 5. 2 software (the Windows Server 2003 TS client)? This software package... - [Download Windows 2003 SP2 Adminpak](https://petri.com/download_windows_2003_adminpak/): What is the Windows Server 2003 SP2Administration Pack? Where can I get it? The Administration Tools Pack allows administrators to... - [ Encrypted files using Cygwin and OpenSSL](https://petri.com/encrypted-files-using-cygwin-and-openssl/): Using Cygwin, the free open-source terminal emulator, in coordination with OpenSSL, you can create cross-platform encrypted files. The files created... - [Exchange 2007 Deemphasized Functionality](https://petri.com/exchange_2007_deemphasized_functionality/): Many features found in earlier versions of Microsoft Exchange Server have been deemphasized in Exchange 2007. “Deemphasizing” means that these... - [How to Filter MAC Address with Windows Server 2003/2008 DHCP Server Callout DLL](https://petri.com/filter-mac-address-windows-server-2008-dhcp-server-callout-dll/): As we all know, DHCP Servers are used to assign IP Addresses and other configuration information to client computers running... - [Front Page 2003 SP2 Slipstreaming](https://petri.com/front_page_2003_sp_slipstreaming/): How can I slipstream service packs into Front Page 2003? This scenario explains how to create an integrated installation of... - [Review of VMware Server 2.0 Beta](https://petri.com/review-vmware-server-2-beta/): It was just announced that VMware Server 2. 0 Beta is now available for download. There are a lot of... - [Move Physical Machines to VMs with VMware Converter: Part 1](https://petri.com/virtual_convert_physical_machines_to_virtual_machines_with_vmware_converter/): This free tutorial outlines the steps to transform physical servers to virtual formats using VMWare's Converter utility. - [5 Essential Free VMware Appliances](https://petri.com/virtual_top_5_free_vmware_appliances/): Did you know that you can download FREE, already configured servers from the Internet, then run them on your Windows... - [VMware ESX Server 3i's Impact on Virtualization](https://petri.com/vmware-esx-server-3i/): You are probably already familiar with what VMware ESX Server is, how it is revolutionary, and how virtualization is changing... - [Enterprise Print Management in Windows Server 2008, Part 2](https://petri.com/enterprise-print-management-in-windows-server-2008-part-two/): In the previous article, I showed you how to install the Print Management console. In this article, I will continue... - [Planning a DFS Architecture, Part 3](https://petri.com/planning-dfs-architecture-part-three/): Note:This article is a follow up to Planning a DFS Architecture Part One and Part Two. Although Windows Server 2008... - [Optimizing PowerShell in Exchange 2007](https://petri.com/optimizing-powershell-in-exchange-2007/): PowerShell introduces a substantial amount of flexibility and possibilities. With Microsoft introducing PowerShell in more products, we have the ability... - [How can I display the Spam Confidence Level (SCL) score in Outlook Web Access (OWA)?](https://petri.com/display_scl_level_in_owa_2003_sp2/): Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial... - [Download Mozilla Firefox](https://petri.com/download_firefox/): Where can I download Mozilla Firefox? The wait is over. Firefox 2. 0 empowers you to browse faster, more safely... - [Download Remote Desktop Web Connection for Windows Server 2003](https://petri.com/download_remote_desktop_web_connection_for_win_2003/): Where can I download the Remote Desktop Web Connection for Windows Server 2003? The Remote Desktop Web Connection ActiveX control... - [Download Windows XP Update Rollup 1](https://petri.com/download_windows_xp_update_rollup_1/): Where can I download Windows XP Update Rollup 1? Update – SP2 is out On August 9, 2004, Microsoft released... - [Enterprise Print Management in Windows Server 2008, Part 1](https://petri.com/enterprise-print-management-in-windows-server-2008-part-one/): I’m probably revealing a little too much about my age, but when I first started working with Windows Server, the... - [Filtering E-mail by Regions in Outlook 2003/2007](https://petri.com/filtering-email-by-region-outlook-2003-2007-exchange/): In my previous article – “Filtering E-mail by World Regions in Exchange Server 2003“, I wrote about a way to... - [Fujitsu Siemens Innovations Contest](https://petri.com/fujitsu-siemens-innovations-contest/): I was asked by Fujitsu/Siemens to get the word on on their innovations contest. I thought that the contest was... - [HFNetChk](https://petri.com/hfnetchk/): HFNetChk is a command-line tool that enables an administrator to check the patch status of all the machines in a... - [How does EFS Work?](https://petri.com/how_does_efs_work/): How does EFS work? EFS uses an encryption attribute to designate files for EFS protection. When a file’s encryption attribute... - [Internet Explorer 5.X and 6.0 Patches](https://petri.com/ie_5x_60_patches/):   You should consider installing IE 6. 0 SP1 as soon as possible Internet Explorer 6 Service Pack 1 (SP1)... - [Browsing Websites and Downloading Files is Painfully Slow with Windows Vista](https://petri.com/improve_windows_vista_network_performance/): Microsoft KB article 929868 describes a problem which will cause you to experience very slow browsing on certain websites when... - [Install Hebrew on Windows 2000](https://petri.com/install_hebrew_on_w2k/): How can I install and use Hebrew fonts on my Windows 2000 computer? Windows 2000 (and XP/2003/Vista) has the built-in... - [Install Windows 2000/XP/2003 Recovery Console](https://petri.com/install_windows_2000_xp_2003_recovery_console/): How can I install the Windows XP/2000 Recovery Console? How can I start the computer and use the Recovery Console... - [Installing VMware Additions on Windows Server 2008 Server Core Installations](https://petri.com/installing-vmware-additions-on-windows-server-2008-server-core-installations/): As you already know by now, in Windows Server 2008,  Server Core installation does not include the traditional full graphical... - [Load Balancing on Windows 2000/2003 DC after Upgrading from NT](https://petri.com/load_balancing_on_windows_2000_2003_dc_after_upgrading_from_nt/): How do I to prevent overloading on the first Windows 2000 or Windows Server 2003 domain controller as I upgrade... - [Meaning of Lights in Alcatel SpeedTouch ADSL Modem](https://petri.com/meaning_of_lights_in_alcatel_speedtouch_adsl_modem/): What do the lights in the Alcatel SpeedTouch ADSL modem mean? Here you will find a summery of what the... - [Network Issues with Windows Server 2008 RDP and VS/Hyper-V on Dell Servers](https://petri.com/network-issues-with-windows-server-2008-rdp-on-dell-servers/): Last month I had a client buy and install several Dell PowerEdge 2950 servers. These servers had 2 Quad processors,... - [Outlook 2007 Performance Issues - Tips & Tweaks To Improve](https://petri.com/outlook_2007_performance_problems/): For the past 6 months I’ve been playing with Outlook 2007 RTM on my personal environment, I do not play... - [Pre-configure Mailbox Language](https://petri.com/preconfigure_mailbox_language/): How can I pre-configure the default language for the folder names inside my mailbox? If you use Microsoft Outlook Web... - [Quickly Find MX Records](https://petri.com/quickly_find_mx_records/): How can I quickly find MX Records for SMTP domains? MX is an acronym for Mail eXchange. MX is defined... - [How can I quickly zoom on file and folder details in Windows Vista?](https://petri.com/quickly_zoom_on_file_and_folder_details_in_windows_vista/): How can I quickly zoom on file and folder details in Windows Vista? Windows Vista has many cool visual additions.... - [Red Earth Policy Patrol - more info](https://petri.com/red_earth_policy_patrol/): Red Earth Policy Patrol 2. 5 – more info Perhaps no problem plagues the Internet as deeply as that of... - [Remove the Windows Mail splash screen](https://petri.com/remove-windows-mail-splash-screen/): Windows Mail is an excellent client-based email application bundled into Windows Vista and described by Microsoft as the following: “Windows... - [Forgot the Administrator's Password? - Change Domain Admin Password in Windows Server 2003 AD](https://petri.com/reset_domain_admin_password_in_windows_server_2003_ad/): Note: In order to successfully use this trick you must first use one of the password resetting tools available on... - [Run Active Directory Management Tools as Another User](https://petri.com/run_ad_tools_as_another_user/): How can I run Active Directory management tools as another user (one with administrative privileges)? As a security best practice,... - [Search](https://petri.com/search/): Advanced Search You can use the search form found on each page’s right-hand top corner. It will invoke a Google-based... - [Setting Windows Server 2008 Terminal Services Display Data Prioritization](https://petri.com/setting-windows-server-2008-terminal-services-display-data-prioritization/): Windows Server 2008 holds some major key benefits in Terminal Services technology. Some of these are discussed in various articles... - [Temporarily Increase the Exchange 2000 16 Gigabyte Database Size Limit](https://petri.com/temporarily_increase_the_exchange_2000_16_gigabyte_database_size_limit/): How to Temporarily Increase the Exchange 2000 16-Gigabyte Database Size Limit? MS KB 813051 has info on this issue: The... - [Create a mountable virtual encrypted hard drive in Windows Vista using TrueCrypt](https://petri.com/truecrypt/): TrueCrypt is a free, open-source application for Windows XP and Windows Vista that will create a mountable, virtual, encrypted, hard... - [Untrusted Certificate Source](https://petri.com/untrusted_certificate_source/): How can I tell if an SSL certificate is from an un-trusted source or not before I enter the secured... - [Using Backup Status and Configuration in Vista](https://petri.com/using_backup_status_and_configuration_in_vista/): To protect your files you can create a backup by using Vista’s Backup Status and Configuration tool. A backup set... - [Creating Differencing Disks with Microsoft Virtual PC](https://petri.com/virtual_creating_differencing_disks_with/): As I mentioned in my “Creating Virtual Machines with Microsoft Virtual PC 2007” article, Microsoft Virtual PC is one of... - [What's a Trojan Horse?](https://petri.com/whats_a_trojan_horse/): What is a Trojan Horse and what threat does it pose? Since "Trojan Horses" (or Backdoors) have been in the... - [What's the HCL?](https://petri.com/hardware-compatibility-list/): What’s the HCL? The hardware compatibility list (or HCL) provides a representative list of hardware peripherals that are compatible with... - [Microsoft Hyper-V will not boot virtual SCSI devices](https://petri.com/win-2008-hyper-v-will-not-boot-virtual-scsi-devices/): There is recent unexpected bad news from Microsoft concerning Hyper-V: Anthony F. Voellm, Principal Software Development Lead of Hyper-V at... - [What is Windows Server 2003 SP1 Slipstreaming?](https://petri.com/windows_2003_sp1_slipstreaming/): What is Windows Server 2003 SP1 Slipstreaming? How can I slipstream service packs into the Windows Server 2003 media? This... - [How can Cisco's Network Security and Deployment Methodologies help you?](https://petri.com/how-cisco-network-security-and-methodologies-can-help/): In my time browsing the Cisco website and also from watching Cisco presentations, there are a couple of different methodologies... - [Roboform -  Automated Password Manager & Form Filler](https://petri.com/roboform-password-manager-form-filler/): Many times when I get a recommendation for a software application, it is from a salesman who is trying to... - [How to Convert Physical Machines to Virtual Machines with VMware Converter: Part 2](https://petri.com/virtual_convert_physical_machines_to_virtual_machines_with_vmware_converter_2/): This is article covers part two of using VMware Converter to transition physical servers to virtual machines. - [Understanding VMware ESX Users, Groups, And Roles - ESX User Configuration, ESX Group Management, ESX Role Management](https://petri.com/virtual_understanding_vmware_esx_users_groups_roles/): Just like with any network operating system, to securely setup VMware ESX, you need to understand how to configure users,... - [VMware ESX Server Cluster & Resource Pools Explained](https://petri.com/vmware-esx-server-cluster-pools/): One of the most important features of VMware ESX Server / Virtual Infrastructure is the ability to configure Cluster Pools... - [Monitoring Exchange 2007 Service Level Agreements](https://petri.com/exchange-2007-service-level-agreements/): E-mail has become a mission critical application within most organizations, so it has become common for upper level management to... - [Planning a DFS Architecture, Part 2](https://petri.com/planning-dfs-architecture-part-two/): In the first part of this article series, I talked about the differences between a stand-alone DFS namespace and a... - [SCW for Exchange Server 2007 – Part I](https://petri.com/scw-for-exchange-server-2007-part-1/): What is the Security Configuration Wizard (SCW)? The Security Configuration Wizard is a security tool that reduces the attack surface... - [How do I delete an "undeletable" file?](https://petri.com/delete_undeletable_files/): Sometimes you want to delete a file but when you do so an error message pops and tells you it... - [Disable System Restore in Windows XP](https://petri.com/disable_system_restore_in_windows_xp/): How can I turn off the System Restore feature in XP? System Restore is an incredible space hog (read more... - [Download Free Windows 2000 Resource Kit Tools](https://petri.com/download_free_reskit_tools/): Where can I download the Windows 2000 Resource Kit tools? You can download the Windows 2000 Resource Kit software tools... - [Download Windows NT 4.0 SP6a](https://petri.com/download_nt_4_sp6a/): Where can I download Windows NT 4. 0 Service Pack 6a? Windows NT 4. 0 Service Pack 6a (SP6a) resolves... - [Download Remote Desktop Web Connection for XP SP1](https://petri.com/download_remote_desktop_web_connection_for_xp_sp1/): Where can I download the Remote Desktop Web Connection for Windows Server 2003? The Remote Desktop Web Connection ActiveX control... - [Download Windows 2003 Reskit Tools](https://petri.com/download_windows_2003_reskit_tools/): Where can I get the Windows Server 2003 Reskit Tools? The Windows Server 2003 Resource Kit Tools are a set... - [Enable MP3 File Transfer in Windows Live Messenger](https://petri.com/enable_mp3_file_transfer_in_wlm/): How can I enable transfer of MP3 files through Microsoft Windows Live Messenger? Microsoft Windows Live Messenger is the new... - [Error c1030af1 on Public Folder Properties in Exchange System Manager](https://petri.com/error_c1030af1_on_pf_properties/): The following article deals with solving error c1030af1 when trying to view or modify Public Folder properties in Exchange System... - [Exchange 2007 SP1 Preview](https://petri.com/exchange_2007_sp1_preview/): Exchange 2007 Service Pack 1 Preview Microsoft Exchange Server 2007 has been released in the beginning of 2007, and most... - [Filtering E-mail by World Regions in Exchange Server 2003](https://petri.com/filtering-email-world-regions-exchange-server-2003/): Working with messaging products for many years I’ve noticed that a popular question on Exchange and Outlook forums is how... - [GAL Problems and OAB Automatic Updates in Outlook 2003](https://petri.com/gal_problems_and_oab_automatic_updates_in_outlook_2003/): Address List entries in Outlook 2003 are not updated even though I‘ve made changes to users or groups in Active... - [Shavlik HFNetChk Pro/LT](https://petri.com/hfnetchk_pro/): Featuring Shalvik’s exclusive PatchPush, HFNetChkPro is the easiest way to manage security patches on your network, keeping your network safe.... - [How to Ask a Question?](https://petri.com/how_to_ask_a_question/): How to ask a question? (or – How do I ask a question on a professional forum/newsgroup without getting flamed?... - [Internet Explorer 6.0 SP1 Patches](https://petri.com/ie_60_sp1_patches/): Internet Explorer 6. 01 SP1 Patches Microsoft Internet Explorer 6 Service Pack 1 (SP1) is available for Windows XP, Windows... - [Increase your Windows Vista Performance with the Performance & Reliability Improvements Pack](https://petri.com/increase-windows-vista-performance-reliability-improvement-pack-sp1/): As you’ve probably read here on my site in the past, I and many of my readers have been very... - [Install Hebrew on Windows Server 2003](https://petri.com/install_hebrew_on_windows_server_2003/): How can I install and use Hebrew fonts on my Windows Server 2003 computer? Windows Server 2003 (and 2000/XP/Vista) has... - [Install Windows Server 2003](https://petri.com/install_windows_2003/): This Windows Server 2003 installation and setup guide takes you from initial install to final configuration. - [Installing Windows Server 2008 Core](https://petri.com/installing-windows-server-2008-core/): As I wrote in my previous articles, a Windows Server 2008 Server Core installation provides a minimal environment for running... - [How to Create an Inexpensive iSCSI SAN for VMware ESX](https://petri.com/iscsi-san-vmware-esx/): Many of the features of VMware ESX Server and VMware Virtual Infrastructure depend on having a storage area network (SAN).... - [Logon Locally User Right](https://petri.com/logon_locally_user_right/): How can I easily give someone the Log On Locally user right on a Windows 2000 and Windows Server 2003... - [Message Protocols Used by Exchange 2000/2003](https://petri.com/message_protocols_used_by_exchange_2000_2003/): What message protocols does Exchange 2000/2003 use? Each Exchange server has a Protocols container that contains the HTTP, Internet Message... - [Missing Drag and Drop in Vista Command Prompt](https://petri.com/missing_drag_and_drop_vista_command_prompt/):   One of the cool features in the Windows 2000/XP/2003 Command Prompt (CMD) window was the ability to drag and... - [New GFI Software White Paper Explains NDR Spam](https://petri.com/new-gfi-software-white-paper-explains-ndr-spam/): I was recently informed by GFI Software that they have a new white paper that explains what NDR spam is... - [Overview of Windows Server 2003 - Enterprise Edition](https://petri.com/overview_of_windows_server_2003_enterprise_edition/): Windows Server 2003 Enterprise Edition boasts a number of features that lesser versions of Windows Server lack. Find out what they are in this handy overview. - [Prepare IIS on Windows XP/2003 for Sharing Calendars using Internet Publishing](https://petri.com/prepare-iis-sharing-calendars-using-internet-publishing/): As I discussed in my previous article – “Share Calendars with Local Users using Internet Publishing“, Outlook 2007 has improved... - [Quickly Check EFS Attributes](https://petri.com/quickly_check_efs_attributes/): How can I check to see if a file is encrypted with EFS or not? When you try to access... - [Quickly Find Remote Open Ports](https://petri.com/quickly_find_remote_open_ports/): If you want to see all the used and listening ports on a remote computer use the PORTQRY. EXE command,... - [Raise Domain Function Level in Windows Server 2003 Domains](https://petri.com/raise_domain_function_level_in_windows_2003/): How can I raise the domain function level in a Windows Server 2003-based domain? Functional levels are an extension of... - [Reduce Help Desk Calls With The Specops Password Reset Tool](https://petri.com/reduce-help-desk-calls-with-specops-password-reset/): One of the most time consuming administrative tasks is the password reset issue. Research shows that help desk calls may... - [Remove the Manage My Computer Context Menu from My Computer in 2000/XP/2003](https://petri.com/remove_manage_my_computer_from_context_menu_in_w2k_xp_2003/): How can I remove the Manage My Computer context menu from My Computer in 2000/XP/2003? In Windows 2000/XP/2003, when you... - [Forgot the Administrator's Password? - Change Domain Admin Password in Windows Server 2008 AD](https://petri.com/reset_domain_admin_password_in_windows_server_2008_ad/): Step 1 Restart Windows 2003 in Directory Service Restore Mode. Note: At startup, press F8 and choose Directory Service Restore... - [Run Control Panel Applets as Another User](https://petri.com/run_control_panel_applets_as_another_user/): How can I run Control Panel applets as another user (one with administrative privileges)? Sometimes you’ll want to do file... - [Search Tips](https://petri.com/search_tips/): Advanced Search Tips “Knowledge is of two kinds. We know a subject ourselves, or we know where we can find... - [Setting Mailbox Limits](https://petri.com/setting_mailbox_limits/): Setting mailbox limits in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of... - [Test OMA in Exchange 2003](https://petri.com/test_oma_in_exchange_2003/): How can I verify that OMA is functioning on my Exchange Server 2003? Outlook Mobile Access (OMA) in Exchange Server... - [Tweaking](https://petri.com/tweaking/): Tweaking Tips and Tricks This page contains a collection of tweaking tips & tricks, articles and how-to guides, all related... - [Update the Time on Windows XP](https://petri.com/update_the_time_on_windows_xp/): How can I update the clock on my Windows XP machine? Why does the clock always drift away from the... - [Using ExMap to view your Exchange Topology](https://petri.com/using_exmap_to_view_your_exchange_topology/): Almost every Exchange administrator would like to see his Exchange servers and the relations between them in one visual map.... - [Download Exchange 2007 Virtual Machines](https://petri.com/virtual_download_exchange_2007_virtual_machines/): Download Microsoft Exchange Server 2007 Virtual Machines The Microsoft VHD Test Drive Program provides customers with an enhanced server-based software... - [What's Active Directory Cleanup Wizard](https://petri.com/active-directory-cleanup-wizard/): What is the active directory cleanup wizard and what does it do? - [What's the Microsoft Computer Browser Service?](https://petri.com/microsoft-computer-browser-service/): Microsoft Active Directory services in Windows 2000 replace the computer browser service used in earlier versions of Windows to provide... - [Windows 2000 MCSA Certification Requirements](https://petri.com/windows_2000_mcsa_certification_requirements/): What are the Windows 2000 MCSA certification requirements? The Microsoft Certified Systems Administrator (MCSA) credential proves that you have the... - [Windows 98 Second Edition (SE) Patches](https://petri.com/windows_98_se_patches/): Windows 98 Second Edition (SE) Patches Note: Microsoft has stopped supporting Windows 98 and Windows NT 4. 0 Workstation as... - [How do you install VMware ESX Server 3i (ESXi)?](https://petri.com/how-do-you-install-vmware-esx-server-3i-esxi/): VMware ESX Server 3i is a very powerful and free Enterprise virtualization platform. I covered all the basics of it,... - [How To Create A Network Test Lab With VMware](https://petri.com/virtual_create_network_testlab_vmware/): Let’s say that you want to do some testing of network applications using VMware. This is the perfect use for... - [How to Use VNC to 'Backdoor' Access VMware Servers](https://petri.com/virtual_using_vnc_and_vmware_server/): This free article explains how to use VNC to access and manage a VMware ESX or GSX server. Detailed instructions are included. - [How to Reset your VMware ESX Server root password](https://petri.com/vmware-esx-server-root-password-reset-recovery-lost/): Just like every other password, it is inevitable that, eventually, you will loose or forget the root password to one... - [Group Policy Object Modeling in Windows Server 2008](https://petri.com/group-policy-object-modeling-windows-server-2008/): If you have ever done much work with group policies, then you have undoubtedly found out that managing group policies... - [Planning a Sites and Services Architecture for Exchange 2007, Part 2](https://petri.com/planning-sites-services-architecture-windows-ad-exchange-2007-server-part2/): In my previous article in this series, Planning a Sites and Services Architecture for Exchange 2007, I explained that Exchange... - [Security Configuration Wizard for Exchange Server 2007 – Part 2](https://petri.com/security-configuration-wizard-scw-exchange-2007-part-2/): In Part I of this series, we registered the XML files so that the Security Configuration Wizard could create an... - [Disable the Built-In Firewall in Alcatel SpeedTouch Pro](https://petri.com/disable_the_built-in_firewall/): How can I disable the built-in Firewall in the Alcatel SpeedTouch ADSL modem? The Alcatel SpeedTouch ADSL modem has a... - [Download GPMC](https://petri.com/download_gpmc/): Where can I download the GPMC console for Windows Server 2003/XP? The Microsoft Group Policy Management Console (GPMC) is the... - [Download Windows 2003 SP1](https://petri.com/download_windows_2003_sp1/): Where can I download Windows 2003 Service Pack 1? In the beginning of April, 2005, Microsoft released SP1 for Windows... - [Active Directory Client (dsclient) for Win98/NT](https://petri.com/dsclient_for_win98_nt/): How can I work with NT 4. 0 and Win98 clients in a Windows 2000 or Windows Server 2003 Domain?... - [Enable Password Changing through OWA in Exchange 2003](https://petri.com/enable_password_changing_through_owa_in_exchange_2003/): Can I enable user password changes through Outlook Web Access (OWA) in Exchange 2003? Yes, although this behavior is not... - [Error While Installing Applications in Vista (like Adobe Acrobat Reader)](https://petri.com/error_installing_applications_on_vista/): One of the first tasks that one performs right after finishing the installation of a new operating system is to... - [EXIFS Access to Alternate PF Trees in Exchange 2000](https://petri.com/exifs_access_to_alternate_pf_trees_in_e2k/): In Exchange 2000, how can I provide access to Alternate Public Folder Trees via EXIFS? Although Exchange 2000 allows multiple... - [Determine the System Uptime in Windows Vista](https://petri.com/find_system_uptime_windows_vista/): Knowing how much time your system has been running is a piece of information useful for administrators. Sometimes you might... - [Get Ready for Windows Server 2008/Vista Service Pack 2](https://petri.com/get-ready-for-windows-server-2008-vista-service-pack-2/): MSDN and TechNet subscribers now have access to Service Pack 2 (SP2) beta for Windows Vista and Windows Server 2008.... - [Hide a Server from the Microsoft Computer Browser Service](https://petri.com/hide_a_server_from_the_microsoft_computer_browser_service/): You can configure a computer so that it does not send announcements to browsers on the domain. If you do... - [How to Install Active Directory on Windows 2000](https://petri.com/how_to_install_active_directory_on_w2k/): How do I install Active Directory on my Windows 2000 Server? First make sure you read and understand Active Directory... - [Increase Broadband Connection Speed in Windows XP/Windows Server 2003](https://petri.com/increase_broadband_connection_speed_in_windows_xp_2003/): This tip is designed for increased BROADBAND speed in Windows XP while using standard Network Interface cards (NIC) that are... - [Install Hebrew on Windows Vista](https://petri.com/install_hebrew_on_windows_vista/): How can I install and use Hebrew fonts on my Windows Vista computer? Windows Vista (and 2000/2003/XP) has the built-in... - [Install Windows 98 after Windows XP](https://petri.com/install_windows_98_after_windows_xp/): This procedure assumes that Windows XP is installed on drive C: Drive C: must be FAT16 or FAT32 to be... - [Installing Exchange 2007 Management Tools On a 32-Bit Operating System](https://petri.com/installing_exchange_2007_management_tools_on_a_32bit_os/): As you probably know by now, Exchange 2007 is distributed in 2 versions – 64-bit and 32-bit. Only the 64-bit... - [Joining a Domain in Windows XP Pro](https://petri.com/joining_a_domain_in_windows_xp_pro/): How do I change a computer’s description, name, or join a domain in Windows XP Pro? Update for Windows 7... - [Microsoft Data Protection Manager 2007](https://petri.com/microsoft-data-protection-manager-2007/): This week Microsoft has finally released the final (RTM) version of System Center Data Protection Manager (SCDPM) 2007, which introduces... - [New EFS Features in Windows XP](https://petri.com/new_efs_features_in_windows_xp/): What are the new EFS features in Windows XP? Microsoft Windows 2000 introduced the capability for data recovery with the... - [Office System (2003) SP2 Slipstreaming](https://petri.com/office_system_2003_sp_slipstreaming/): Office System (2003) SP2 Slipstreaming How can I slipstream service packs into Office System (2003)? This scenario explains how to... - [Overview of Windows Server 2003 - Standard Edition](https://petri.com/overview_of_windows_server_2003_standard_edition/): Windows Server 2003 - Standard Edition is a fully-featured server OS, but does it have all the features you need? Read our overview to find out. - [How can I disable the caching of failed DNS lookups in Windows 2000/XP/2003?](https://petri.com/preventing_caching_of_failed_dns_lookups/): Windows 2000/XP/2003 added the ability to cache DNS lookup results in the client’s cache. This cache can be viewed by... - [Quickly Check Which User Encrypted a File](https://petri.com/quickly_check_which_user_encrypted_a_file/): How can I easily discover who’s the user that encrypted a file? The Windows Explorer user interface (UI) shows which... - [Quickly Find Remote Open Ports - GUI](https://petri.com/quickly_find_remote_open_ports_gui/): The process of testing a remote server’s open or listening ports is called "Scanning". The Internet is full with various... - [Raise Forest  Fuction Level in Windows Server 2003 Active Directory](https://petri.com/raise_forest_function_level_in_windows_2003/): How can I raise the forest function level in a Windows Server 2003-based Active Directory? Functional levels are an extension... - [Reduce Spam with Exchange 2007 Server Safe List Aggregation](https://petri.com/reduce-spam-exchange-server-2007-safe-list-aggregation-safe-senders/): As you probably know, Exchange server 2007 is designed to take a layered approach to message hygiene.  Typically, when an... - [Remove Orphaned Apps from the Add/Remove Applet in Control Panel](https://petri.com/remove_orphaned_apps_from_the_add_remove_applet_in_control_panel/): How can I remove orphaned apps from the Add/Remove applet in Control Panel in Windows 2000/XP/2003? Sometimes after you uninstall... - [Reset Folder Views in Windows XP](https://petri.com/reset_folder_views_in_windows_xp/): How can I reset the folder views in Windows XP? Sometimes the default folder views in Windows Explorer and My... - [Run Windows Explorer as Another User](https://petri.com/run_windows_explorer_as_another_user/): How can I run Windows Explorer as another user (one with administrative privileges)? Sometimes you’ll want to do file and... - [Secure IPSec Policy Agent](https://petri.com/secure_ipsec_policy_agent/): How can I prevent other users from disabling the IPSEC Policy Agent service? In previous articles I’ve showed you how... - [Setting Mailbox Limits over 2GB](https://petri.com/setting_mailbox_limits_over_2gb/): Setting mailbox limits over 2GB in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the... - [Speed Up Network File Copying in Windows XP](https://petri.com/speed_up_network_file_copying_in_windows_xp/): If you use the TCP/IP protocol and you have a 100mbps network adapter, you may notice slow network performance while... - [Test SMTP Service in IIS and Exchange](https://petri.com/test_smtp_service/): How can I test to see if my SMTP service is ready to receive incoming mail? There are a couple... - [Unattended Installation of Active Directory](https://petri.com/unattended_installation_of_active_directory/): How do I automatically upgrade a server to a domain controller during installation? You can automatically run DCPROMO during an... - [Update Windows Messenger](https://petri.com/update_windows_messenger/): What updates or upgrades do you use for Windows Messenger? So you’ve decided not to uninstall the Windows Messenger client... - [Download Microsoft Virtual PC 2007](https://petri.com/virtual_download_virtual_pc_2007/): Download Microsoft Virtual PC 2007 Yes, now you can, for free! Microsoft has released the new Microsoft Virtual PC 2007... - [What's APIPA?](https://petri.com/whats_apipa/): A Windows-based computer that is configured to use DHCP can automatically assign itself an Internet Protocol (IP) address if a... - [What's the Password Reset Disk in Windows XP?](https://petri.com/whats_the_password_reset_disk_in_windows_xp/): What is the Windows XP Password Reset Disk and how can I use it? To protect user accounts in the... - [Windows 2000 MCSE Certification Requirements](https://petri.com/windows_2000_mcse_certification_requirements/): What are the Windows 2000 MCSE certification requirements? The Windows 2000 track of the MCSE credential is designed for information... - [What is Windows Auditing?](https://petri.com/windows_auditing/): Security is an ever increasing concern in almost every area of society today and computers are no exception. A detailed... - [How to Configure a Cisco Router as a Terminal Server](https://petri.com/how-to-configure-cisco-router-as-terminal-server/): David Davis shows us how to quickly access the console on Cisco routers and switches and how to configure them as terminal servers. - [Best Practices for Securing VMware ESX Server](https://petri.com/secure-vmware-esx-server/): As VMware ESX is loaded directly on hardware and is its own virtualization operating system, there are a number of... - [What You Need to VMware ESX Server 3.0](https://petri.com/virtual_esx_install_requirements/): Perhaps you are planning to install VMware ESX in a product environment or, like many of us, we just want... - [Beyond VMware: Virtualization Options Compared](https://petri.com/virtual_virtualization_options_compared/): When most people think of Virtualization, they might think of Microsoft but I’d be willing to bet that they think... - [How do you replicate VMware ESX Guest Machines from one ESX Server to another?](https://petri.com/vmware-esx-server-vizioncore-replication-site-to-site/): Recently, I downloaded an evaluation version of the Vizioncore vEssentials bundle for VMware ESX Server. Included in that bundle are... - [Hyper-V Quirks That Take Some Getting Used To](https://petri.com/hyper-v-quirks-that-take-some-getting-used-to/): Lately, it seems as though everyone that I talk to is interested in virtualizing at least some of the servers... - [Planning a Sites and Services Architecture for Exchange 2007](https://petri.com/planning-sites-services-architecture-windows-ad-exchange-2007-server/): When Microsoft created Exchange Server 2007, they introduced a number of architectural changes.  Among these changes are the fact that... - [Security Configuration Wizard for Exchange Server 2007 – Part 3](https://petri.com/security-configuration-wizard-scw-exchange-2007-part-3/): In Part 1 of this series, we registered the XML files so that the Security Configuration Wizard could create an... - [Bypass UAC using a Desktop Shortcut](https://petri.com/bypass-uac-using-desktop-shortcut/):   Windows Vista has the built-in ability to automatically reduce the potential of security breaches in the system. It does... - [Deploy Windows XP through GPO](https://petri.com/deploy_windows_xp_through_gpo/): How do I use Group Policy to deploy Windows XP in a Windows 2000 network? You can use Group Policy... - [How can I easily administer DNS servers by using the command prompt?](https://petri.com/dnscmd_command_in_windows_2000_2003/): A GUI interface is great for novice administrators but is cumbersome if you have to perform the same task over... - [Download Group Policy ADM Files for All Microsoft Operating Systems](https://petri.com/download_gpo_adm_files/): Download Group Policy ADM Files for all Microsoft Operating Systems Administrative Template files are used to populate user interface settings... - [Download Shadow Copy Client](https://petri.com/download_shadow_copy_client/): Where can I download the Shadow Copy Client? What are the system requirements for the Shadow Copy client? Shadow Copy... - [Easily Identify Computer Name on Windows 2008 Server Core](https://petri.com/easily-identify-computer-name-on-windows-2008-server-core/):   In Windows Server 2008, one of the installation methods available is server core. A core installation provides a minimal... - [Enable Remote Desktop on Windows Server 2003](https://petri.com/enable_rdp_windows_2003/): With Remote Desktop on Windows XP Professional or Windows Server 2003 (in Windows 2000 Advanced Server, this feature was called... - [Errors After Moving Exchange Stores to a Different Disk](https://petri.com/errors_after_moving_exchange_stores_to_a_different_disk/): Errors after moving Exchange Stores to a different disk in Exchange 2000/2003? When you install Exchange 2000/2003 on your server... - [EXIFS Access to Alternate PF Trees in Exchange 2003](https://petri.com/exifs_access_to_alternate_pf_trees_in_exchange_2003/): In Exchange 2000, how can I provide access to Alternate Public Folder Trees via EXIFS? Although Exchange 2003 allows multiple... - [Find your Microsoft Passport Password](https://petri.com/find_your_microsoft_passport_password/): How do I find out my MSN Messenger (Microsoft Passport) password, in case I forgot it? You’ve used your good... - [Get the Windows Experience Index (WEI) score of a Vista Network Computer](https://petri.com/get-windows-experience-index-score-of-vista-network-computer/): Microsoft defines the Windows Experience Index as the following: “The Windows Experience Index is a new feature built into Windows... - [Hide a User from the Welcome Screen in Windows XP](https://petri.com/hide_a_user_from_the_welcome_screen_in_windows_xp/): How can I hide a user from the Welcome Screen in Windows XP? To hide a user‘s account from the... - [How to Install Active Directory on Windows 2000 (for idiots)](https://petri.com/how_to_install_active_directory_on_w2k_for_idiots/): I’m a Lamer! How do I install Active Directory on my Windows 2000 Server? You can configure your server as... - [IIS 4.0 Patches](https://petri.com/iis_40_patches/): IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to protect... - [Install Hebrew on Windows XP](https://petri.com/install_hebrew_on_windows_xp/): How can I install and use Hebrew fonts on my Windows XP computer? Windows XP (and 2000/2003/Vista) has the built-in... - [Install Windows Server 2003 CA](https://petri.com/install_windows_server_2003_ca/): How can I install the Certificate Authority (CA) service in Windows Server 2003? Windows Server 2003 can be used as... - [How can I install Intelligent Message Filter on Exchange Server 2003 Service Pack 2?](https://petri.com/installing_imf_with_exchange_2003_sp2/): Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial... - [Junk E-mail Reporting Tool for Microsoft Office Outlook 2003/2007](https://petri.com/junk_email_reporting_tool_for_outlook_2003/): Microsoft has released a nice tool that allows us to report any spam e-mail message that has bypassed the built-in... - [Manage your Network with ManageNet](https://petri.com/managenet/): ManageNet network administration tool – more info It is estimated that 85% of a network administrator’s time is spent rolling... - [Microsoft launches Hyper-V beta 1](https://petri.com/microsoft-launches-hyperv-beta-1/): Completely unexpected Microsoft launches the first beta of its upcoming hypervisor Hyper-V (formerly codename Viridian / Windows Server Virtualization). This... - [Monitoring Exchange and Finding Common Problems](https://petri.com/monitoring_exchange_server_and_finding_common_problems/): Monitoring Exchange and Finding Common Problems Introduction In our daily jobs as Systems Engineers and Administrators we come across systems... - [New Generation of Microsoft Certifications](https://petri.com/new_generation_of_microsoft_certifications/): New Generation of Microsoft Certifications On the October 25th 2005 Microsoft has announced a new generation of certifications that are... - [Office XP SP3 Info](https://petri.com/office_xp_sp3_info/): Office XP Service Pack 3 (SP3) provides the latest updates to Microsoft Office XP. SP3 contains significant security enhancements, in... - [Overview of Windows Server 2003 - Web Edition](https://petri.com/overview_of_windows_server_2003_web_edition/): Microsoft Windows Server 2003, Web Edition is a part of the Microsoft Windows Server 2003 family. It is an easy-to-deploy, easy-to-manage server operating... - [Problem with Exchange 2003 SP2 OWA and Windows XP SP3 When Using the Jerusalem Time Zone](https://petri.com/problem-with-exchange-2003-sp2-owa-windows-xp-sp3-when-using-jerusalem-time-zone/): During some of the consulting sessions that I hold with my various clients I often stumble upon things that I... - [Raising Windows Server 2008 Active Directory Domain and Forest Functional Levels](https://petri.com/raising-windows-server-2008-active-directory-domain-and-forest-functional-levels/):   When the first Windows Server 2008–based Domain Controller is deployed in a domain or forest, the domain or forest... - [REG Command in Windows XP](https://petri.com/reg_command_in_windows_xp/): What can the REG. EXE command do in Windows XP? REG. EXE does almost everything Regedt32 can do, but it... - [Remove the M Drive Mapping in Exchange 2000](https://petri.com/remove_the_m_drive_mapping_in_e2k/): How can I remove the IFS Mapping for Drive M in Exchange 2000 Server? MS KB 305145 has more info:... - [Reset Mailbox Language](https://petri.com/reset_mailbox_language/): How can I reset the language for the folder names inside my mailbox? In Exchange 2000/2003 and Outlook 2000/XP/2003, when... - [Runas Command Failure](https://petri.com/runas_command_failure/): Why do get errors when trying to run programs or MMC snap-ins with the RUNAS command? As a security best... - [Securing RDP/Terminal Services Communications](https://petri.com/securing_rdp_communications/): When Microsoft Windows 2000 was released many years ago, administrators were blessed with new functionality called Terminal Services which easily... - [Setup an SSH Server in Vista](https://petri.com/setup-ssh-server-vista/): The free, open source application Cygwin can be used in combination with OpenSSH to turn Windows Vista into an SSH... - [Testing RPC over HTTP/S Connection](https://petri.com/testing_rpc_over_http_connection/): How can I test RPC over HTTP/S on Exchange 2003? RPC over HTTP/S is a cool method for connecting your... - [Vista Blocked File Protection Control](https://petri.com/unblock-files-windows-vista/): Windows Vista is known to be much more picky about the file types it allows the user to use than... - [Using Outlook 2003 to Recover Deleted Items](https://petri.com/using_outlook_2003_to_recover_deleted_items/): Can I recover deleted items through Outlook 2003 in Exchange 2003? Can I recover hard-deleted items through Outlook? Of course... - [Installing a new OS on a new VM witn Microsoft Virtual PC 2007](https://petri.com/virtual_install_new_os_on_microsoft_virtual_pc/): If you got to this article I suppose you’ve already read my “Creating Virtual Machines with Microsoft Virtual PC 2007”... - [What is ASR in Windows XP and Windows Server 2003?](https://petri.com/whats_asr_in_windows_xp_2003/): What is the ASR feature in Windows XP/2003? How do I use it? If you run a  Windows XP Pro... - [What's the Recovery Console?](https://petri.com/whats_the_recovery_console/): What is the Recovery Console? How can I use it? What will it help me do? If safe mode and... - [Windows 2000 SP4 Info](https://petri.com/windows_2000_sp4_info/): Windows 2000 Service Pack 4 is a well-tested collection of updates that focuses on a variety of customer-reported concerns with... - [Unable to Logon to Windows 2003 Domain Due to Windows Cannot Connect to the Domain Error](https://petri.com/windows_cannot_connect_to_the_domain_error/): Some IT admins report issues with Windows XP workstations that are joined to a Windows 2003 Active Directory domain. These... - [How to configure EIGRP on your Cisco router](https://petri.com/how-to-configure-eigrp-on-your-cisco-router/): Do you need to configure dynamic routing protocol for you network? EIGRP may be an excellent choice. It is a... - [Server Virtualization, Network Virtualization & Storage Virtualization Explained](https://petri.com/server-virtualization-network-virtualization-storage-virtualization/): There are many types of virtualization- server, network, storage, and more. In this article, we will demystify these complex terms,... - [How to Import Virtual PC and Virtual Server machines to VMware](https://petri.com/virtual_import_virtual_server_and_pc_to_vmware/): Do you have Microsoft Virtual PC or Virtual Server machines already built? If so, now you can import them to... - [VMware File Types Explained: VMDK, VMEM, VMSN, VMSD, VMX & More](https://petri.com/virtual_vmware_files_explained/): When using VMware Server & Workstation, you will, at some point, go to the directory where your VMware virtual machines... - [VMware Virtual Center Benefits](https://petri.com/vmware-virtual-center/): The VMware Infrastructure package consists of 3 applications – VMware ESX, Virtual Center, and VMware Consolidated Backup. In this article,... - [An Introduction to Network Access Protection’s Components](https://petri.com/introduction-to-network-access-protection-components/): Although VPN connections have been a staple of enterprise environments for many years now, security concerns have increased exponentially in... - [Restoring Exchange Mailbox Data Using the Recovery Storage Group, Part 1](https://petri.com/restoring_exchange_mailbox_recovery_storage_group_part1/): Recovery storage groups were first introduced in Exchange Server 2003.   At the time, the idea behind them was that... - [Transport Rules: Adding a disclaimer](https://petri.com/transport-rules-adding-a-disclaimer/): Many businesses incorporate a disclaimer or footer at the bottom of their outbound messages. These disclaimers often advise as to... - [Change the Default Boot Partition in Windows Vista](https://petri.com/change-the-default-boot-partition-windows-vista/): With the release of Windows Vista, many users have been dual booting between Windows XP and Windows Vista. Unfortunately, the... - [Determining FSMO Role Holders](https://petri.com/determining_fsmo_role_holders/): How can I determine who are the current FSMO Roles holders in my domain/forest? Windows 2000/2003 Active Directory domains utilize... - [Disable EFS in Windows 2000](https://petri.com/disable_efs_in_windows_2000/): How can I disable EFS on Computers Running Windows 2000? To disable EFS on computers running Windows 2000, you must... - [Disable the Guest account in Windows XP](https://petri.com/disable_the_guest_account_in_windows_xp/): Do I need the Guest account in Windows XP? Can I disable it? Yes you can disable the guest account,... - [Download Group Policy Settings Reference](https://petri.com/download_gpo_reference/): This spreadsheet lists Group Policy settings described in Administrative Template (. adm) files and Security Settings that shipped with Windows... - [Download the full IE package](https://petri.com/download_the_full_ie_package/): I want to download Internet Explorer 6 SP1 from Microsoft but I don’t want to install it right away. Can... - [Download Windows Server 2003 SP1 Sysprep](https://petri.com/download_windows_2003_sp1_sysprep/): Where can I download Windows Server 2003 Sysprep? The Windows Server 2003 SP1 System Preparation tool enables administrators to prepare... - [Enable Remote Assistance in XP/2003](https://petri.com/enable_remote_assistance_in_xp_2003/): How can I enable Remote Assistance in Windows XP or Windows Server 2003? Windows XP and Windows Server 2003 install... - [Establishing a Proper Global Catalog Placement Strategy](https://petri.com/establishing-proper-global-catalog-placement-strategy/): Deciding how many Global Catalog Servers to have on your network, and where to place those servers can be tricky.... - [EXMERGE and Hebrew Fonts](https://petri.com/exmerge_and_hebrew_fonts/): How do I use EXMERGE with Hebrew fonts? EXMERGE is very useful in many scenarios, one of which is migrating... - [Finding Delegates in Active Directory](https://petri.com/finding_delegates_in_active_directory/): Finding delegates in Active Directory When using Exchange 2000/2003 there are very common situations where users define delegates in their... - [Hide Entries in the Boot.ini](https://petri.com/hide_entries_in_the_boot_ini/): How do I hide entries in the Boot. ini file so that they’re not visible when I boot my computer?... - [How to Install Active Directory on Windows 2000 (for Lamers)](https://petri.com/how_to_install_active_directory_on_w2k_for_lamers/): I’m a Lamer! How do I install Active Directory on my Windows 2000 Server? You can configure your server as... - [IIS 5.0 Patches](https://petri.com/iis_50_patches/):   IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to... - [Increase Internet Connection Speed in Windows XP](https://petri.com/increase_internet_connection_speed_in_windows_xp/): This tip is designed for increased BROADBAND speed in Windows XP, but it should work for 56k modems too. Note:... - [Install IIS on Windows XP](https://petri.com/install_iis_on_windows_xp/): To install IIS 5. 1 on Windows XP Pro follow these steps: On the Start menu, click Control Panel. Double-click... - [How can I install Windows Vista?](https://petri.com/install_windows_vista/): How can I install Windows Vista? As a Microsoft Windows Vista support professional, one of your tasks may be to... - [Installing Windows XP Ntbackup on Windows Vista](https://petri.com/installing_windows_xp_ntbackup_on_windows_vista/): You’ve read my “Using Backup Status and Configuration in Vista” article (if you haven’t I urge you to do so).... - [Keyboard Accelerators in Windows Vista](https://petri.com/keyboard_accelerators_in_windows_vista/): Windows Vista’s new Windows Explorer interface has many interesting keyboard shortcuts, also called “Keyboard Accelerators”. They are especially useful for... - [Managing Windows 2008 Server Core Local Settings](https://petri.com/managing-windows-2008-server-core-locally/): A Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements... - [Cleaning your Computer from Malware with the Microsoft Malware Removal Starter Kit](https://petri.com/microsoft-malware-removal-starter-kit/): Every day, viruses, spyware, and other malware are triggered by employees, potential adversaries and/or malicious users. Some are sent to... - [How can I mount the Exchange 2000/2003 database when the E00.log is missing and I receive events 9518 and 455?](https://petri.com/mount_exchange_database_when_e00log_is_missing/): You may receive the following error message when you try to mount a mailbox or public store: An internal processing... - [New Security Features in Exchange 2003](https://petri.com/new_security_features_in_exchange_2003/): What are the new security features found in Exchange Server 2003 in comparison to Exchange 2000? Exchange Server 2003 is... - [Overwriting Mailbox Store Policy Limits](https://petri.com/overwriting_mailbox_store_policy_limits/): Overwriting Mailbox Store Policy limits in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the... - [Problems with Exchange 2003 Installed on Domain Controllers](https://petri.com/problems_with_exchange_2003_installed_on_domain_controllers/): Why is it NOT recommended to install Exchange Server 2003 on a computer that is also a Domain Controller? There... - [Quickly Copy Error and Display Messages](https://petri.com/quickly_copy_error_and_display_messages/): How can I quickly copy error messages and other type of messages in Windows 2000/XP/2003? Did you ever find yourself... - [Quickly Find Used IP Addresses - GUI](https://petri.com/quickly_find_used_ip_addresses_gui/): You can also find the used IP Addresses on your network by use of GUI tools. There are many tools... - [Registration of NetBIOS Names](https://petri.com/registration_of_netbios_names/): MS KB 119495 article  has more info: Names registered by the WINS server can be divided into three groups: Computer... - [Reset Nickname and Automatic Completion in Outlook XP](https://petri.com/reset_nickname_and_automatic_completion_in_outlook_xp/): How to reset the Nickname and Automatic Completion cache in Outlook XP? Outlook 2002 maintains a nickname list that is... - [How can I run the Windows Server 2003 SP1 Adminpak.msi on Windows Vista RTM?](https://petri.com/running_win_2003_adminpak_on_vista_rtm/): Installing the Adminpak. msi will install all of the management tools that are needed to administer Windows 2000, Windows XP... - [Share Calendars with Local Users using Internet Publishing`](https://petri.com/share-calendars-local-users-internet-publishing/): Microsoft Office Outlook 2007 provides you with a comprehensive time and information manager. Users can share their calendars with other... - [Three Steps to the Initial Configuration of your Windows 2008 Server After Installation](https://petri.com/three-steps-to-the-initial-configuration-of-your-windows-2008-server-after-installation/): When Microsoft created Windows Server 2008, one of their many goals was to simplify the deployment process. In fact, you... - [Understanding VPN Remote Access Mechanism](https://petri.com/understanding-vpn-remote-access-mechanism/): What is a Virtual Private Network (VPN)? A VPN, or Virtual Private Network, is a group of two or more... - [Using OWA 2003 for Storing Files](https://petri.com/using_owa_2003_for_storing_files/): Can I enable users to store / upload files in their mailboxes through Outlook Web Access (OWA) in Exchange 2003?... - [Installing Ubuntu 6.10 as a Virtual Machine](https://petri.com/virtual_installing_ubuntu_as_virtual_machine/): For those of you new to the idea of virtualization, virtualization is the nesting of “sub-operating systems” within a host operating... - [What's CIDR?](https://petri.com/whats_cidr/): The Classless Inter Domain Routing (CIDR) standard is already in effect and most newer routers supports it. In a few... - [Windows 2000 SP4 Patches](https://petri.com/windows_2000_sp4_patches/): Required Patches Windows 2000 Server/Advanced Server with Service Pack 4 requires the following security-related patches: Make sure you read Internet... - [Windows Millennium (ME) Patches](https://petri.com/windows_me_patches/): Windows Millennium (ME) Patches No one will help you, no one will support you, no one will ever hear you... - [How to configure IPSEC encryption with the Cisco IOS (site to site VPN tunneling)](https://petri.com/how-to-configure-ipsec-encryption-with-cisco-ios/): The OSPF dynamic routing protocol is probably the most popular LAN routing protocol today. OSPF can scale to the largest... - [Solarwinds Read-Time NetFlow Analyzer - Free Download](https://petri.com/solarwinds-read-time-netflow-analyzer-free-download/): So many network performance tools tell you that you have too much traffic here or there but then don’t go... - [Top 10 VMware Performance Tweaks](https://petri.com/virtual_increase_vmware_performance/): With VMware Server, you run virtual guest operating systems inside a host operating system. Because you are running multiple operating... - [Top 20 VMware Keyboard Shortcuts](https://petri.com/virtual_vmware_keyboard_shortcuts/): Pointing and clicking is great but you can save a lot of time by knowing the keyboard shortcuts used by... - [What is the Best Performance Monitoring Application for VMware ESX Server?](https://petri.com/what-is-the-best-performance-monitoring-application-for-vmware-esx-server-vizioncore-vcharter/): As you know, VMware ESX Server and the Virtual Infrastructure Client does have some basic performance monitoring tools. While these... - [Learn the Basics of Journaling in Exchange Server 2007](https://petri.com/learn-basics-journaling-exchange-server-2007/): These days, there are a lot of federal regulations in place that require companies that function as a part of... - [Restoring Exchange Mailbox Data Using the Recovery Storage Group, Part 2](https://petri.com/restoring_exchange_mailbox_recovery_storage_group_part2/): In part one of this article series, I showed you how to create a recovery storage group, and how to... - [DNS Training Labs](https://petri.com/dns_training_labs/): A review of Train Signal’s Windows 2000/2003 DNS Video Lab Training – Product Details.  See more details at Train Signal’s... - [Change Office XP CD Key](https://petri.com/change_office_xp_cd_key/): How can I change the CD Key of my Office XP installation? You can do it by editing the Registry.... - [DHCP Server Migration Made Easy in Windows Server 2008](https://petri.com/dhcp-server-migration-made-easy-windows-server-2008/): If you have ever had to move a DHCP Server from one physical server to another, you know that the... - [Disable the Welcome Screen in XP Pro](https://petri.com/disable_the_welcome_screen_in_xp_pro/): How can I disable the Welcome Screen in Windows XP Pro? To turn the Welcome Screen on or off: You... - [How to downgrade your converted Alcatel SpeedTouch 510 ADSL modem back to the Pro model?](https://petri.com/downgrade_from_alcatel_speedtouch_510_to_pro/): How to downgrade your converted Alcatel SpeedTouch 510 ADSL modem back to the Pro model? This document describes how you... - [Download IE7](https://petri.com/download_ie7/): Download Internet Explorer 7 Yes! It’s finally here, Microsoft’s latest and anticipated Internet browser – Internet Explorer 7. IE 7... - [Download Virtual Server R2 Enterprise Edition](https://petri.com/download_virtual_server_r2_ent/): Download Microsoft Virtual Server R2 Enterprise Edition Yes, now you can, for free! From Microsoft’s webpage: Microsoft Virtual Server 2005... - [Download Windows 2003 Support Tools](https://petri.com/download_windows_2003_support_tools/): What are the Windows Server 2003 Support Tools? Where can I get them from? The Windows Server 2003 Support Tools... - [Edit Registry Settings for Users Other Than Myself](https://petri.com/edit_registry_settings_for_users_other_than_myself/): How can I edit registry settings for users other than myself? From an account with Administrator level access: Start Registry... - [Enable Remote Assistance Offering in XP/2003](https://petri.com/enable_remote_assistance_offering_in_xp_2003/): How can I enable Remote Assistance offering in Windows XP and Windows Server 2003? MSKB 301527 has more: The Remote... - [Forgot the Administrator's Password? - Change Domain Admin Password in Windows Server 2003 AD](https://petri.com/reset_domain_admin_password_in_windows_server_2003_ad/): Note: In order to successfully use this trick you must first use one of the password resetting tools available on... - [How do I run Powershell and VBScripts on Windows PCs using AD and Group Policy?](https://petri.com/run-powershell-scripts-windows-ad-group-policy-specops-command/): We all know that Windows Active Directory (AD) Group Policy is very powerful. It can apply policies on the PCs... - [SCW for Exchange Server 2007 – Part II](https://petri.com/scw-for-exchange-server-2007-part-2/): In Part I of this series, we registered the XML files so that the Security Configuration Wizard could create an... - [Setting up a Logon Script through GPO in Windows Server 2008](https://petri.com/setting-up-logon-script-through-gpo-windows-server-2008/): As written in the first part of this set of articles, there are two ways to assign Logon scripts. The... - [Reducing Help Desk Calls With The Specops Password Reset Tool By Daniel Petri](https://petri.com/specops-password-reset/): One of the most time consuming administrative tasks is the password reset issue. Research shows that help desk calls may... - [Temporarily Disable the Windows XP SP2 Automatic Download](https://petri.com/temporarily_disable_windows_xp_sp2_auto_download/): How do I temporarily disable the automatic download of Windows XP SP2? Windows XP SP2 was released to the Windows... - [Troubleshooting Dcpromo Errors](https://petri.com/troubleshooting_dcpromo_errors/): What are the most common DNS related Dcpromo errors? How do I fix them? Some common issues that you may... - [UNIX Connectivity from Windows: Telnet, FTP, rsh, rcp, rexec and putty](https://petri.com/unix-connectivity-from-windows/): As much as each software vendor would like it to be so, most IT environments are not homogenous. Most shops... - [Using GlobalNames Zone in Windows Server 2008](https://petri.com/using-globalnames-zone-window-server-2008/): On my previous article, “Understanding GlobalNames Zone in Windows Server 2008”, I’ve listed the major benefits for using the new... - [Creating Virtual Machines with Microsoft Virtual PC 2007](https://petri.com/virtual_create_virtual_machines_virtual_pc_2007/): Microsoft Virtual PC is one of the top contenders in a growing line of Virtual Machine utilities. The latest version,... - [What's System Restore in Windows XP?](https://petri.com/windows-xp-system-restore/): What is System Restore in Windows XP? System Restore is a component of Windows XP Professional that you can use... - [Why you should Upgrade to Windows Vista SP1](https://petri.com/why-you-should-upgrade-to-windows-vista-service-pack-1-sp1/): Windows Vista SP1 is now RTM, and will be shortly available for download for all Vista users. You can read... - [Windows 2003 MCSE/MCSA Upgrade Requirements](https://petri.com/windows_2003_mcse_mcsa_upgrade_requirements/): What are the requirements for a W2K MCSE/MCSA to upgrade his or her certification to the Windows 2003 MCSE/MCSA certification?... - [How can Cisco's Network Security and Deployment Methodologies can help you?](https://petri.com/how-cisco-network-security-and-methodologies-can-help-2/): In my time browsing the Cisco website and also from watching Cisco presentations, there are a couple of different methodologies... - [Review of VMware Server 2.0 Beta](https://petri.com/review-vmware-server-2-beta/): It was just announced that VMware Server 2. 0 Beta is now available for download. There are a lot of... - [Move Physical Machines to VMs with VMware Converter: Part 1](https://petri.com/virtual_convert_physical_machines_to_virtual_machines_with_vmware_converter/): This free tutorial outlines the steps to transform physical servers to virtual formats using VMWare's Converter utility. - [5 Essential Free VMware Appliances](https://petri.com/virtual_top_5_free_vmware_appliances/): Did you know that you can download FREE, already configured servers from the Internet, then run them on your Windows... - [VMware ESX Server 3i's Impact on Virtualization](https://petri.com/vmware-esx-server-3i/): You are probably already familiar with what VMware ESX Server is, how it is revolutionary, and how virtualization is changing... - [Enterprise Print Management in Windows Server 2008, Part 2](https://petri.com/enterprise-print-management-in-windows-server-2008-part-two/): In the previous article, I showed you how to install the Print Management console. In this article, I will continue... - [Planning a DFS Architecture, Part 3](https://petri.com/planning-dfs-architecture-part-three/): Note:This article is a follow up to Planning a DFS Architecture Part One and Part Two. Although Windows Server 2008... - [Optimizing PowerShell in Exchange 2007](https://petri.com/optimizing-powershell-in-exchange-2007/): PowerShell introduces a substantial amount of flexibility and possibilities. With Microsoft introducing PowerShell in more products, we have the ability... - [How do I delete an "undeletable" file?](https://petri.com/delete_undeletable_files/): Sometimes you want to delete a file but when you do so an error message pops and tells you it... - [Disable System Restore in Windows XP](https://petri.com/disable_system_restore_in_windows_xp/): How can I turn off the System Restore feature in XP? System Restore is an incredible space hog (read more... - [Download Free Windows 2000 Resource Kit Tools](https://petri.com/download_free_reskit_tools/): Where can I download the Windows 2000 Resource Kit tools? You can download the Windows 2000 Resource Kit software tools... - [Download Windows NT 4.0 SP6a](https://petri.com/download_nt_4_sp6a/): Where can I download Windows NT 4. 0 Service Pack 6a? Windows NT 4. 0 Service Pack 6a (SP6a) resolves... - [Download Remote Desktop Web Connection for XP SP1](https://petri.com/download_remote_desktop_web_connection_for_xp_sp1/): Where can I download the Remote Desktop Web Connection for Windows Server 2003? The Remote Desktop Web Connection ActiveX control... - [Download Windows 2003 Reskit Tools](https://petri.com/download_windows_2003_reskit_tools/): Where can I get the Windows Server 2003 Reskit Tools? The Windows Server 2003 Resource Kit Tools are a set... - [Enable MP3 File Transfer in Windows Live Messenger](https://petri.com/enable_mp3_file_transfer_in_wlm/): How can I enable transfer of MP3 files through Microsoft Windows Live Messenger? Microsoft Windows Live Messenger is the new... - [Error c1030af1 on Public Folder Properties in Exchange System Manager](https://petri.com/error_c1030af1_on_pf_properties/): The following article deals with solving error c1030af1 when trying to view or modify Public Folder properties in Exchange System... - [Exchange 2007 SP1 Preview](https://petri.com/exchange_2007_sp1_preview/): Exchange 2007 Service Pack 1 Preview Microsoft Exchange Server 2007 has been released in the beginning of 2007, and most... - [Filtering E-mail by World Regions in Exchange Server 2003](https://petri.com/filtering-email-world-regions-exchange-server-2003/): Working with messaging products for many years I’ve noticed that a popular question on Exchange and Outlook forums is how... - [GAL Problems and OAB Automatic Updates in Outlook 2003](https://petri.com/gal_problems_and_oab_automatic_updates_in_outlook_2003/): Address List entries in Outlook 2003 are not updated even though I‘ve made changes to users or groups in Active... - [Shavlik HFNetChk Pro/LT](https://petri.com/hfnetchk_pro/): Featuring Shalvik’s exclusive PatchPush, HFNetChkPro is the easiest way to manage security patches on your network, keeping your network safe.... - [How to Ask a Question?](https://petri.com/how_to_ask_a_question/): How to ask a question? (or – How do I ask a question on a professional forum/newsgroup without getting flamed?... - [Internet Explorer 6.0 SP1 Patches](https://petri.com/ie_60_sp1_patches/): Internet Explorer 6. 01 SP1 Patches Microsoft Internet Explorer 6 Service Pack 1 (SP1) is available for Windows XP, Windows... - [Increase your Windows Vista Performance with the Performance & Reliability Improvements Pack](https://petri.com/increase-windows-vista-performance-reliability-improvement-pack-sp1/): As you’ve probably read here on my site in the past, I and many of my readers have been very... - [Install Hebrew on Windows Server 2003](https://petri.com/install_hebrew_on_windows_server_2003/): How can I install and use Hebrew fonts on my Windows Server 2003 computer? Windows Server 2003 (and 2000/XP/Vista) has... - [Install Windows Server 2003](https://petri.com/install_windows_2003/): This Windows Server 2003 installation and setup guide takes you from initial install to final configuration. - [Installing Windows Server 2008 Core](https://petri.com/installing-windows-server-2008-core/): As I wrote in my previous articles, a Windows Server 2008 Server Core installation provides a minimal environment for running... - [How to Create an Inexpensive iSCSI SAN for VMware ESX](https://petri.com/iscsi-san-vmware-esx/): Many of the features of VMware ESX Server and VMware Virtual Infrastructure depend on having a storage area network (SAN).... - [Logon Locally User Right](https://petri.com/logon_locally_user_right/): How can I easily give someone the Log On Locally user right on a Windows 2000 and Windows Server 2003... - [Message Protocols Used by Exchange 2000/2003](https://petri.com/message_protocols_used_by_exchange_2000_2003/): What message protocols does Exchange 2000/2003 use? Each Exchange server has a Protocols container that contains the HTTP, Internet Message... - [Missing Drag and Drop in Vista Command Prompt](https://petri.com/missing_drag_and_drop_vista_command_prompt/):   One of the cool features in the Windows 2000/XP/2003 Command Prompt (CMD) window was the ability to drag and... - [New GFI Software White Paper Explains NDR Spam](https://petri.com/new-gfi-software-white-paper-explains-ndr-spam/): I was recently informed by GFI Software that they have a new white paper that explains what NDR spam is... - [Overview of Windows Server 2003 - Enterprise Edition](https://petri.com/overview_of_windows_server_2003_enterprise_edition/): Windows Server 2003 Enterprise Edition boasts a number of features that lesser versions of Windows Server lack. Find out what they are in this handy overview. - [Prepare IIS on Windows XP/2003 for Sharing Calendars using Internet Publishing](https://petri.com/prepare-iis-sharing-calendars-using-internet-publishing/): As I discussed in my previous article – “Share Calendars with Local Users using Internet Publishing“, Outlook 2007 has improved... - [Quickly Check EFS Attributes](https://petri.com/quickly_check_efs_attributes/): How can I check to see if a file is encrypted with EFS or not? When you try to access... - [Quickly Find Remote Open Ports](https://petri.com/quickly_find_remote_open_ports/): If you want to see all the used and listening ports on a remote computer use the PORTQRY. EXE command,... - [Raise Domain Function Level in Windows Server 2003 Domains](https://petri.com/raise_domain_function_level_in_windows_2003/): How can I raise the domain function level in a Windows Server 2003-based domain? Functional levels are an extension of... - [Reduce Help Desk Calls With The Specops Password Reset Tool](https://petri.com/reduce-help-desk-calls-with-specops-password-reset/): One of the most time consuming administrative tasks is the password reset issue. Research shows that help desk calls may... - [Remove the Manage My Computer Context Menu from My Computer in 2000/XP/2003](https://petri.com/remove_manage_my_computer_from_context_menu_in_w2k_xp_2003/): How can I remove the Manage My Computer context menu from My Computer in 2000/XP/2003? In Windows 2000/XP/2003, when you... - [Forgot the Administrator's Password? - Change Domain Admin Password in Windows Server 2008 AD](https://petri.com/reset_domain_admin_password_in_windows_server_2008_ad/): Step 1 Restart Windows 2003 in Directory Service Restore Mode. Note: At startup, press F8 and choose Directory Service Restore... - [Run Active Directory Management Tools as Another User](https://petri.com/run_ad_tools_as_another_user/): How can I run Active Directory management tools as another user (one with administrative privileges)? As a security best practice,... - [Search](https://petri.com/search/): Advanced Search You can use the search form found on each page’s right-hand top corner. It will invoke a Google-based... - [Setting Windows Server 2008 Terminal Services Display Data Prioritization](https://petri.com/setting-windows-server-2008-terminal-services-display-data-prioritization/): Windows Server 2008 holds some major key benefits in Terminal Services technology. Some of these are discussed in various articles... - [Temporarily Increase the Exchange 2000 16 Gigabyte Database Size Limit](https://petri.com/temporarily_increase_the_exchange_2000_16_gigabyte_database_size_limit/): How to Temporarily Increase the Exchange 2000 16-Gigabyte Database Size Limit? MS KB 813051 has info on this issue: The... - [Create a mountable virtual encrypted hard drive in Windows Vista using TrueCrypt](https://petri.com/truecrypt/): TrueCrypt is a free, open-source application for Windows XP and Windows Vista that will create a mountable, virtual, encrypted, hard... - [Untrusted Certificate Source](https://petri.com/untrusted_certificate_source/): How can I tell if an SSL certificate is from an un-trusted source or not before I enter the secured... - [Using Backup Status and Configuration in Vista](https://petri.com/using_backup_status_and_configuration_in_vista/): To protect your files you can create a backup by using Vista’s Backup Status and Configuration tool. A backup set... - [Creating Differencing Disks with Microsoft Virtual PC](https://petri.com/virtual_creating_differencing_disks_with/): As I mentioned in my “Creating Virtual Machines with Microsoft Virtual PC 2007” article, Microsoft Virtual PC is one of... - [What's a Trojan Horse?](https://petri.com/whats_a_trojan_horse/): What is a Trojan Horse and what threat does it pose? Since "Trojan Horses" (or Backdoors) have been in the... - [What's the HCL?](https://petri.com/hardware-compatibility-list/): What’s the HCL? The hardware compatibility list (or HCL) provides a representative list of hardware peripherals that are compatible with... - [Microsoft Hyper-V will not boot virtual SCSI devices](https://petri.com/win-2008-hyper-v-will-not-boot-virtual-scsi-devices/): There is recent unexpected bad news from Microsoft concerning Hyper-V: Anthony F. Voellm, Principal Software Development Lead of Hyper-V at... - [What is Windows Server 2003 SP1 Slipstreaming?](https://petri.com/windows_2003_sp1_slipstreaming/): What is Windows Server 2003 SP1 Slipstreaming? How can I slipstream service packs into the Windows Server 2003 media? This... - [How can Cisco's Network Security and Deployment Methodologies help you?](https://petri.com/how-cisco-network-security-and-methodologies-can-help/): In my time browsing the Cisco website and also from watching Cisco presentations, there are a couple of different methodologies... - [Roboform -  Automated Password Manager & Form Filler](https://petri.com/roboform-password-manager-form-filler/): Many times when I get a recommendation for a software application, it is from a salesman who is trying to... - [How to Convert Physical Machines to Virtual Machines with VMware Converter: Part 2](https://petri.com/virtual_convert_physical_machines_to_virtual_machines_with_vmware_converter_2/): This is article covers part two of using VMware Converter to transition physical servers to virtual machines. - [Understanding VMware ESX Users, Groups, And Roles - ESX User Configuration, ESX Group Management, ESX Role Management](https://petri.com/virtual_understanding_vmware_esx_users_groups_roles/): Just like with any network operating system, to securely setup VMware ESX, you need to understand how to configure users,... - [VMware ESX Server Cluster & Resource Pools Explained](https://petri.com/vmware-esx-server-cluster-pools/): One of the most important features of VMware ESX Server / Virtual Infrastructure is the ability to configure Cluster Pools... - [Monitoring Exchange 2007 Service Level Agreements](https://petri.com/exchange-2007-service-level-agreements/): E-mail has become a mission critical application within most organizations, so it has become common for upper level management to... - [Planning a DFS Architecture, Part 2](https://petri.com/planning-dfs-architecture-part-two/): In the first part of this article series, I talked about the differences between a stand-alone DFS namespace and a... - [SCW for Exchange Server 2007 – Part I](https://petri.com/scw-for-exchange-server-2007-part-1/): What is the Security Configuration Wizard (SCW)? The Security Configuration Wizard is a security tool that reduces the attack surface... - [Disable the Built-In Firewall in Alcatel SpeedTouch Pro](https://petri.com/disable_the_built-in_firewall/): How can I disable the built-in Firewall in the Alcatel SpeedTouch ADSL modem? The Alcatel SpeedTouch ADSL modem has a... - [Download GPMC](https://petri.com/download_gpmc/): Where can I download the GPMC console for Windows Server 2003/XP? The Microsoft Group Policy Management Console (GPMC) is the... - [Download Windows 2003 SP1](https://petri.com/download_windows_2003_sp1/): Where can I download Windows 2003 Service Pack 1? In the beginning of April, 2005, Microsoft released SP1 for Windows... - [Active Directory Client (dsclient) for Win98/NT](https://petri.com/dsclient_for_win98_nt/): How can I work with NT 4. 0 and Win98 clients in a Windows 2000 or Windows Server 2003 Domain?... - [Enable Password Changing through OWA in Exchange 2003](https://petri.com/enable_password_changing_through_owa_in_exchange_2003/): Can I enable user password changes through Outlook Web Access (OWA) in Exchange 2003? Yes, although this behavior is not... - [Error While Installing Applications in Vista (like Adobe Acrobat Reader)](https://petri.com/error_installing_applications_on_vista/): One of the first tasks that one performs right after finishing the installation of a new operating system is to... - [EXIFS Access to Alternate PF Trees in Exchange 2000](https://petri.com/exifs_access_to_alternate_pf_trees_in_e2k/): In Exchange 2000, how can I provide access to Alternate Public Folder Trees via EXIFS? Although Exchange 2000 allows multiple... - [Determine the System Uptime in Windows Vista](https://petri.com/find_system_uptime_windows_vista/): Knowing how much time your system has been running is a piece of information useful for administrators. Sometimes you might... - [Get Ready for Windows Server 2008/Vista Service Pack 2](https://petri.com/get-ready-for-windows-server-2008-vista-service-pack-2/): MSDN and TechNet subscribers now have access to Service Pack 2 (SP2) beta for Windows Vista and Windows Server 2008.... - [Hide a Server from the Microsoft Computer Browser Service](https://petri.com/hide_a_server_from_the_microsoft_computer_browser_service/): You can configure a computer so that it does not send announcements to browsers on the domain. If you do... - [How to Install Active Directory on Windows 2000](https://petri.com/how_to_install_active_directory_on_w2k/): How do I install Active Directory on my Windows 2000 Server? First make sure you read and understand Active Directory... - [Increase Broadband Connection Speed in Windows XP/Windows Server 2003](https://petri.com/increase_broadband_connection_speed_in_windows_xp_2003/): This tip is designed for increased BROADBAND speed in Windows XP while using standard Network Interface cards (NIC) that are... - [Install Hebrew on Windows Vista](https://petri.com/install_hebrew_on_windows_vista/): How can I install and use Hebrew fonts on my Windows Vista computer? Windows Vista (and 2000/2003/XP) has the built-in... - [Install Windows 98 after Windows XP](https://petri.com/install_windows_98_after_windows_xp/): This procedure assumes that Windows XP is installed on drive C: Drive C: must be FAT16 or FAT32 to be... - [Installing Exchange 2007 Management Tools On a 32-Bit Operating System](https://petri.com/installing_exchange_2007_management_tools_on_a_32bit_os/): As you probably know by now, Exchange 2007 is distributed in 2 versions – 64-bit and 32-bit. Only the 64-bit... - [Joining a Domain in Windows XP Pro](https://petri.com/joining_a_domain_in_windows_xp_pro/): How do I change a computer’s description, name, or join a domain in Windows XP Pro? Update for Windows 7... - [Microsoft Data Protection Manager 2007](https://petri.com/microsoft-data-protection-manager-2007/): This week Microsoft has finally released the final (RTM) version of System Center Data Protection Manager (SCDPM) 2007, which introduces... - [New EFS Features in Windows XP](https://petri.com/new_efs_features_in_windows_xp/): What are the new EFS features in Windows XP? Microsoft Windows 2000 introduced the capability for data recovery with the... - [Office System (2003) SP2 Slipstreaming](https://petri.com/office_system_2003_sp_slipstreaming/): Office System (2003) SP2 Slipstreaming How can I slipstream service packs into Office System (2003)? This scenario explains how to... - [Overview of Windows Server 2003 - Standard Edition](https://petri.com/overview_of_windows_server_2003_standard_edition/): Windows Server 2003 - Standard Edition is a fully-featured server OS, but does it have all the features you need? Read our overview to find out. - [How can I disable the caching of failed DNS lookups in Windows 2000/XP/2003?](https://petri.com/preventing_caching_of_failed_dns_lookups/): Windows 2000/XP/2003 added the ability to cache DNS lookup results in the client’s cache. This cache can be viewed by... - [Quickly Check Which User Encrypted a File](https://petri.com/quickly_check_which_user_encrypted_a_file/): How can I easily discover who’s the user that encrypted a file? The Windows Explorer user interface (UI) shows which... - [Quickly Find Remote Open Ports - GUI](https://petri.com/quickly_find_remote_open_ports_gui/): The process of testing a remote server’s open or listening ports is called "Scanning". The Internet is full with various... - [Raise Forest  Fuction Level in Windows Server 2003 Active Directory](https://petri.com/raise_forest_function_level_in_windows_2003/): How can I raise the forest function level in a Windows Server 2003-based Active Directory? Functional levels are an extension... - [Reduce Spam with Exchange 2007 Server Safe List Aggregation](https://petri.com/reduce-spam-exchange-server-2007-safe-list-aggregation-safe-senders/): As you probably know, Exchange server 2007 is designed to take a layered approach to message hygiene.  Typically, when an... - [Remove Orphaned Apps from the Add/Remove Applet in Control Panel](https://petri.com/remove_orphaned_apps_from_the_add_remove_applet_in_control_panel/): How can I remove orphaned apps from the Add/Remove applet in Control Panel in Windows 2000/XP/2003? Sometimes after you uninstall... - [Reset Folder Views in Windows XP](https://petri.com/reset_folder_views_in_windows_xp/): How can I reset the folder views in Windows XP? Sometimes the default folder views in Windows Explorer and My... - [Run Control Panel Applets as Another User](https://petri.com/run_control_panel_applets_as_another_user/): How can I run Control Panel applets as another user (one with administrative privileges)? Sometimes you’ll want to do file... - [Search Tips](https://petri.com/search_tips/): Advanced Search Tips “Knowledge is of two kinds. We know a subject ourselves, or we know where we can find... - [Setting Mailbox Limits](https://petri.com/setting_mailbox_limits/): Setting mailbox limits in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of... - [Test OMA in Exchange 2003](https://petri.com/test_oma_in_exchange_2003/): How can I verify that OMA is functioning on my Exchange Server 2003? Outlook Mobile Access (OMA) in Exchange Server... - [Tweaking](https://petri.com/tweaking/): Tweaking Tips and Tricks This page contains a collection of tweaking tips & tricks, articles and how-to guides, all related... - [Update the Time on Windows XP](https://petri.com/update_the_time_on_windows_xp/): How can I update the clock on my Windows XP machine? Why does the clock always drift away from the... - [Using ExMap to view your Exchange Topology](https://petri.com/using_exmap_to_view_your_exchange_topology/): Almost every Exchange administrator would like to see his Exchange servers and the relations between them in one visual map.... - [Download Exchange 2007 Virtual Machines](https://petri.com/virtual_download_exchange_2007_virtual_machines/): Download Microsoft Exchange Server 2007 Virtual Machines The Microsoft VHD Test Drive Program provides customers with an enhanced server-based software... - [What's Active Directory Cleanup Wizard](https://petri.com/active-directory-cleanup-wizard/): What is the active directory cleanup wizard and what does it do? - [What's the Microsoft Computer Browser Service?](https://petri.com/microsoft-computer-browser-service/): Microsoft Active Directory services in Windows 2000 replace the computer browser service used in earlier versions of Windows to provide... - [Windows 2000 MCSA Certification Requirements](https://petri.com/windows_2000_mcsa_certification_requirements/): What are the Windows 2000 MCSA certification requirements? The Microsoft Certified Systems Administrator (MCSA) credential proves that you have the... - [Windows 98 Second Edition (SE) Patches](https://petri.com/windows_98_se_patches/): Windows 98 Second Edition (SE) Patches Note: Microsoft has stopped supporting Windows 98 and Windows NT 4. 0 Workstation as... - [How do you install VMware ESX Server 3i (ESXi)?](https://petri.com/how-do-you-install-vmware-esx-server-3i-esxi/): VMware ESX Server 3i is a very powerful and free Enterprise virtualization platform. I covered all the basics of it,... - [How To Create A Network Test Lab With VMware](https://petri.com/virtual_create_network_testlab_vmware/): Let’s say that you want to do some testing of network applications using VMware. This is the perfect use for... - [How to Use VNC to 'Backdoor' Access VMware Servers](https://petri.com/virtual_using_vnc_and_vmware_server/): This free article explains how to use VNC to access and manage a VMware ESX or GSX server. Detailed instructions are included. - [How to Reset your VMware ESX Server root password](https://petri.com/vmware-esx-server-root-password-reset-recovery-lost/): Just like every other password, it is inevitable that, eventually, you will loose or forget the root password to one... - [Group Policy Object Modeling in Windows Server 2008](https://petri.com/group-policy-object-modeling-windows-server-2008/): If you have ever done much work with group policies, then you have undoubtedly found out that managing group policies... - [Planning a Sites and Services Architecture for Exchange 2007, Part 2](https://petri.com/planning-sites-services-architecture-windows-ad-exchange-2007-server-part2/): In my previous article in this series, Planning a Sites and Services Architecture for Exchange 2007, I explained that Exchange... - [Security Configuration Wizard for Exchange Server 2007 – Part 2](https://petri.com/security-configuration-wizard-scw-exchange-2007-part-2/): In Part I of this series, we registered the XML files so that the Security Configuration Wizard could create an... - [Bypass UAC using a Desktop Shortcut](https://petri.com/bypass-uac-using-desktop-shortcut/):   Windows Vista has the built-in ability to automatically reduce the potential of security breaches in the system. It does... - [Deploy Windows XP through GPO](https://petri.com/deploy_windows_xp_through_gpo/): How do I use Group Policy to deploy Windows XP in a Windows 2000 network? You can use Group Policy... - [How can I easily administer DNS servers by using the command prompt?](https://petri.com/dnscmd_command_in_windows_2000_2003/): A GUI interface is great for novice administrators but is cumbersome if you have to perform the same task over... - [Download Group Policy ADM Files for All Microsoft Operating Systems](https://petri.com/download_gpo_adm_files/): Download Group Policy ADM Files for all Microsoft Operating Systems Administrative Template files are used to populate user interface settings... - [Download Shadow Copy Client](https://petri.com/download_shadow_copy_client/): Where can I download the Shadow Copy Client? What are the system requirements for the Shadow Copy client? Shadow Copy... - [Easily Identify Computer Name on Windows 2008 Server Core](https://petri.com/easily-identify-computer-name-on-windows-2008-server-core/):   In Windows Server 2008, one of the installation methods available is server core. A core installation provides a minimal... - [Enable Remote Desktop on Windows Server 2003](https://petri.com/enable_rdp_windows_2003/): With Remote Desktop on Windows XP Professional or Windows Server 2003 (in Windows 2000 Advanced Server, this feature was called... - [Errors After Moving Exchange Stores to a Different Disk](https://petri.com/errors_after_moving_exchange_stores_to_a_different_disk/): Errors after moving Exchange Stores to a different disk in Exchange 2000/2003? When you install Exchange 2000/2003 on your server... - [EXIFS Access to Alternate PF Trees in Exchange 2003](https://petri.com/exifs_access_to_alternate_pf_trees_in_exchange_2003/): In Exchange 2000, how can I provide access to Alternate Public Folder Trees via EXIFS? Although Exchange 2003 allows multiple... - [Find your Microsoft Passport Password](https://petri.com/find_your_microsoft_passport_password/): How do I find out my MSN Messenger (Microsoft Passport) password, in case I forgot it? You’ve used your good... - [Get the Windows Experience Index (WEI) score of a Vista Network Computer](https://petri.com/get-windows-experience-index-score-of-vista-network-computer/): Microsoft defines the Windows Experience Index as the following: “The Windows Experience Index is a new feature built into Windows... - [Hide a User from the Welcome Screen in Windows XP](https://petri.com/hide_a_user_from_the_welcome_screen_in_windows_xp/): How can I hide a user from the Welcome Screen in Windows XP? To hide a user‘s account from the... - [How to Install Active Directory on Windows 2000 (for idiots)](https://petri.com/how_to_install_active_directory_on_w2k_for_idiots/): I’m a Lamer! How do I install Active Directory on my Windows 2000 Server? You can configure your server as... - [IIS 4.0 Patches](https://petri.com/iis_40_patches/): IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to protect... - [Install Hebrew on Windows XP](https://petri.com/install_hebrew_on_windows_xp/): How can I install and use Hebrew fonts on my Windows XP computer? Windows XP (and 2000/2003/Vista) has the built-in... - [Install Windows Server 2003 CA](https://petri.com/install_windows_server_2003_ca/): How can I install the Certificate Authority (CA) service in Windows Server 2003? Windows Server 2003 can be used as... - [How can I install Intelligent Message Filter on Exchange Server 2003 Service Pack 2?](https://petri.com/installing_imf_with_exchange_2003_sp2/): Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial... - [Junk E-mail Reporting Tool for Microsoft Office Outlook 2003/2007](https://petri.com/junk_email_reporting_tool_for_outlook_2003/): Microsoft has released a nice tool that allows us to report any spam e-mail message that has bypassed the built-in... - [Manage your Network with ManageNet](https://petri.com/managenet/): ManageNet network administration tool – more info It is estimated that 85% of a network administrator’s time is spent rolling... - [Microsoft launches Hyper-V beta 1](https://petri.com/microsoft-launches-hyperv-beta-1/): Completely unexpected Microsoft launches the first beta of its upcoming hypervisor Hyper-V (formerly codename Viridian / Windows Server Virtualization). This... - [Monitoring Exchange and Finding Common Problems](https://petri.com/monitoring_exchange_server_and_finding_common_problems/): Monitoring Exchange and Finding Common Problems Introduction In our daily jobs as Systems Engineers and Administrators we come across systems... - [New Generation of Microsoft Certifications](https://petri.com/new_generation_of_microsoft_certifications/): New Generation of Microsoft Certifications On the October 25th 2005 Microsoft has announced a new generation of certifications that are... - [Office XP SP3 Info](https://petri.com/office_xp_sp3_info/): Office XP Service Pack 3 (SP3) provides the latest updates to Microsoft Office XP. SP3 contains significant security enhancements, in... - [Overview of Windows Server 2003 - Web Edition](https://petri.com/overview_of_windows_server_2003_web_edition/): Microsoft Windows Server 2003, Web Edition is a part of the Microsoft Windows Server 2003 family. It is an easy-to-deploy, easy-to-manage server operating... - [Problem with Exchange 2003 SP2 OWA and Windows XP SP3 When Using the Jerusalem Time Zone](https://petri.com/problem-with-exchange-2003-sp2-owa-windows-xp-sp3-when-using-jerusalem-time-zone/): During some of the consulting sessions that I hold with my various clients I often stumble upon things that I... - [Raising Windows Server 2008 Active Directory Domain and Forest Functional Levels](https://petri.com/raising-windows-server-2008-active-directory-domain-and-forest-functional-levels/):   When the first Windows Server 2008–based Domain Controller is deployed in a domain or forest, the domain or forest... - [REG Command in Windows XP](https://petri.com/reg_command_in_windows_xp/): What can the REG. EXE command do in Windows XP? REG. EXE does almost everything Regedt32 can do, but it... - [Remove the M Drive Mapping in Exchange 2000](https://petri.com/remove_the_m_drive_mapping_in_e2k/): How can I remove the IFS Mapping for Drive M in Exchange 2000 Server? MS KB 305145 has more info:... - [Reset Mailbox Language](https://petri.com/reset_mailbox_language/): How can I reset the language for the folder names inside my mailbox? In Exchange 2000/2003 and Outlook 2000/XP/2003, when... - [Run Windows Explorer as Another User](https://petri.com/run_windows_explorer_as_another_user/): How can I run Windows Explorer as another user (one with administrative privileges)? Sometimes you’ll want to do file and... - [Secure IPSec Policy Agent](https://petri.com/secure_ipsec_policy_agent/): How can I prevent other users from disabling the IPSEC Policy Agent service? In previous articles I’ve showed you how... - [Setting Mailbox Limits over 2GB](https://petri.com/setting_mailbox_limits_over_2gb/): Setting mailbox limits over 2GB in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the... - [Speed Up Network File Copying in Windows XP](https://petri.com/speed_up_network_file_copying_in_windows_xp/): If you use the TCP/IP protocol and you have a 100mbps network adapter, you may notice slow network performance while... - [Test SMTP Service in IIS and Exchange](https://petri.com/test_smtp_service/): How can I test to see if my SMTP service is ready to receive incoming mail? There are a couple... - [Unattended Installation of Active Directory](https://petri.com/unattended_installation_of_active_directory/): How do I automatically upgrade a server to a domain controller during installation? You can automatically run DCPROMO during an... - [Update Windows Messenger](https://petri.com/update_windows_messenger/): What updates or upgrades do you use for Windows Messenger? So you’ve decided not to uninstall the Windows Messenger client... - [Download Microsoft Virtual PC 2007](https://petri.com/virtual_download_virtual_pc_2007/): Download Microsoft Virtual PC 2007 Yes, now you can, for free! Microsoft has released the new Microsoft Virtual PC 2007... - [What's APIPA?](https://petri.com/whats_apipa/): A Windows-based computer that is configured to use DHCP can automatically assign itself an Internet Protocol (IP) address if a... - [What's the Password Reset Disk in Windows XP?](https://petri.com/whats_the_password_reset_disk_in_windows_xp/): What is the Windows XP Password Reset Disk and how can I use it? To protect user accounts in the... - [Windows 2000 MCSE Certification Requirements](https://petri.com/windows_2000_mcse_certification_requirements/): What are the Windows 2000 MCSE certification requirements? The Windows 2000 track of the MCSE credential is designed for information... - [What is Windows Auditing?](https://petri.com/windows_auditing/): Security is an ever increasing concern in almost every area of society today and computers are no exception. A detailed... - [How to Configure a Cisco Router as a Terminal Server](https://petri.com/how-to-configure-cisco-router-as-terminal-server/): David Davis shows us how to quickly access the console on Cisco routers and switches and how to configure them as terminal servers. - [Best Practices for Securing VMware ESX Server](https://petri.com/secure-vmware-esx-server/): As VMware ESX is loaded directly on hardware and is its own virtualization operating system, there are a number of... - [What You Need to VMware ESX Server 3.0](https://petri.com/virtual_esx_install_requirements/): Perhaps you are planning to install VMware ESX in a product environment or, like many of us, we just want... - [Beyond VMware: Virtualization Options Compared](https://petri.com/virtual_virtualization_options_compared/): When most people think of Virtualization, they might think of Microsoft but I’d be willing to bet that they think... - [How do you replicate VMware ESX Guest Machines from one ESX Server to another?](https://petri.com/vmware-esx-server-vizioncore-replication-site-to-site/): Recently, I downloaded an evaluation version of the Vizioncore vEssentials bundle for VMware ESX Server. Included in that bundle are... - [Hyper-V Quirks That Take Some Getting Used To](https://petri.com/hyper-v-quirks-that-take-some-getting-used-to/): Lately, it seems as though everyone that I talk to is interested in virtualizing at least some of the servers... - [Planning a Sites and Services Architecture for Exchange 2007](https://petri.com/planning-sites-services-architecture-windows-ad-exchange-2007-server/): When Microsoft created Exchange Server 2007, they introduced a number of architectural changes.  Among these changes are the fact that... - [Security Configuration Wizard for Exchange Server 2007 – Part 3](https://petri.com/security-configuration-wizard-scw-exchange-2007-part-3/): In Part 1 of this series, we registered the XML files so that the Security Configuration Wizard could create an... - [Change the Default Boot Partition in Windows Vista](https://petri.com/change-the-default-boot-partition-windows-vista/): With the release of Windows Vista, many users have been dual booting between Windows XP and Windows Vista. Unfortunately, the... - [Determining FSMO Role Holders](https://petri.com/determining_fsmo_role_holders/): How can I determine who are the current FSMO Roles holders in my domain/forest? Windows 2000/2003 Active Directory domains utilize... - [Disable EFS in Windows 2000](https://petri.com/disable_efs_in_windows_2000/): How can I disable EFS on Computers Running Windows 2000? To disable EFS on computers running Windows 2000, you must... - [Disable the Guest account in Windows XP](https://petri.com/disable_the_guest_account_in_windows_xp/): Do I need the Guest account in Windows XP? Can I disable it? Yes you can disable the guest account,... - [Download Group Policy Settings Reference](https://petri.com/download_gpo_reference/): This spreadsheet lists Group Policy settings described in Administrative Template (. adm) files and Security Settings that shipped with Windows... - [Download the full IE package](https://petri.com/download_the_full_ie_package/): I want to download Internet Explorer 6 SP1 from Microsoft but I don’t want to install it right away. Can... - [Download Windows Server 2003 SP1 Sysprep](https://petri.com/download_windows_2003_sp1_sysprep/): Where can I download Windows Server 2003 Sysprep? The Windows Server 2003 SP1 System Preparation tool enables administrators to prepare... - [Enable Remote Assistance in XP/2003](https://petri.com/enable_remote_assistance_in_xp_2003/): How can I enable Remote Assistance in Windows XP or Windows Server 2003? Windows XP and Windows Server 2003 install... - [Establishing a Proper Global Catalog Placement Strategy](https://petri.com/establishing-proper-global-catalog-placement-strategy/): Deciding how many Global Catalog Servers to have on your network, and where to place those servers can be tricky.... - [EXMERGE and Hebrew Fonts](https://petri.com/exmerge_and_hebrew_fonts/): How do I use EXMERGE with Hebrew fonts? EXMERGE is very useful in many scenarios, one of which is migrating... - [Finding Delegates in Active Directory](https://petri.com/finding_delegates_in_active_directory/): Finding delegates in Active Directory When using Exchange 2000/2003 there are very common situations where users define delegates in their... - [Hide Entries in the Boot.ini](https://petri.com/hide_entries_in_the_boot_ini/): How do I hide entries in the Boot. ini file so that they’re not visible when I boot my computer?... - [How to Install Active Directory on Windows 2000 (for Lamers)](https://petri.com/how_to_install_active_directory_on_w2k_for_lamers/): I’m a Lamer! How do I install Active Directory on my Windows 2000 Server? You can configure your server as... - [IIS 5.0 Patches](https://petri.com/iis_50_patches/):   IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to... - [Increase Internet Connection Speed in Windows XP](https://petri.com/increase_internet_connection_speed_in_windows_xp/): This tip is designed for increased BROADBAND speed in Windows XP, but it should work for 56k modems too. Note:... - [Install IIS on Windows XP](https://petri.com/install_iis_on_windows_xp/): To install IIS 5. 1 on Windows XP Pro follow these steps: On the Start menu, click Control Panel. Double-click... - [How can I install Windows Vista?](https://petri.com/install_windows_vista/): How can I install Windows Vista? As a Microsoft Windows Vista support professional, one of your tasks may be to... - [Installing Windows XP Ntbackup on Windows Vista](https://petri.com/installing_windows_xp_ntbackup_on_windows_vista/): You’ve read my “Using Backup Status and Configuration in Vista” article (if you haven’t I urge you to do so).... - [Keyboard Accelerators in Windows Vista](https://petri.com/keyboard_accelerators_in_windows_vista/): Windows Vista’s new Windows Explorer interface has many interesting keyboard shortcuts, also called “Keyboard Accelerators”. They are especially useful for... - [Managing Windows 2008 Server Core Local Settings](https://petri.com/managing-windows-2008-server-core-locally/): A Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements... - [Cleaning your Computer from Malware with the Microsoft Malware Removal Starter Kit](https://petri.com/microsoft-malware-removal-starter-kit/): Every day, viruses, spyware, and other malware are triggered by employees, potential adversaries and/or malicious users. Some are sent to... - [How can I mount the Exchange 2000/2003 database when the E00.log is missing and I receive events 9518 and 455?](https://petri.com/mount_exchange_database_when_e00log_is_missing/): You may receive the following error message when you try to mount a mailbox or public store: An internal processing... - [New Security Features in Exchange 2003](https://petri.com/new_security_features_in_exchange_2003/): What are the new security features found in Exchange Server 2003 in comparison to Exchange 2000? Exchange Server 2003 is... - [Overwriting Mailbox Store Policy Limits](https://petri.com/overwriting_mailbox_store_policy_limits/): Overwriting Mailbox Store Policy limits in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the... - [Problems with Exchange 2003 Installed on Domain Controllers](https://petri.com/problems_with_exchange_2003_installed_on_domain_controllers/): Why is it NOT recommended to install Exchange Server 2003 on a computer that is also a Domain Controller? There... - [Quickly Copy Error and Display Messages](https://petri.com/quickly_copy_error_and_display_messages/): How can I quickly copy error messages and other type of messages in Windows 2000/XP/2003? Did you ever find yourself... - [Quickly Find Used IP Addresses - GUI](https://petri.com/quickly_find_used_ip_addresses_gui/): You can also find the used IP Addresses on your network by use of GUI tools. There are many tools... - [Registration of NetBIOS Names](https://petri.com/registration_of_netbios_names/): MS KB 119495 article  has more info: Names registered by the WINS server can be divided into three groups: Computer... - [Reset Nickname and Automatic Completion in Outlook XP](https://petri.com/reset_nickname_and_automatic_completion_in_outlook_xp/): How to reset the Nickname and Automatic Completion cache in Outlook XP? Outlook 2002 maintains a nickname list that is... - [Runas Command Failure](https://petri.com/runas_command_failure/): Why do get errors when trying to run programs or MMC snap-ins with the RUNAS command? As a security best... - [Securing RDP/Terminal Services Communications](https://petri.com/securing_rdp_communications/): When Microsoft Windows 2000 was released many years ago, administrators were blessed with new functionality called Terminal Services which easily... - [Setup an SSH Server in Vista](https://petri.com/setup-ssh-server-vista/): The free, open source application Cygwin can be used in combination with OpenSSH to turn Windows Vista into an SSH... - [Testing RPC over HTTP/S Connection](https://petri.com/testing_rpc_over_http_connection/): How can I test RPC over HTTP/S on Exchange 2003? RPC over HTTP/S is a cool method for connecting your... - [Vista Blocked File Protection Control](https://petri.com/unblock-files-windows-vista/): Windows Vista is known to be much more picky about the file types it allows the user to use than... - [Using Outlook 2003 to Recover Deleted Items](https://petri.com/using_outlook_2003_to_recover_deleted_items/): Can I recover deleted items through Outlook 2003 in Exchange 2003? Can I recover hard-deleted items through Outlook? Of course... - [Installing a new OS on a new VM witn Microsoft Virtual PC 2007](https://petri.com/virtual_install_new_os_on_microsoft_virtual_pc/): If you got to this article I suppose you’ve already read my “Creating Virtual Machines with Microsoft Virtual PC 2007”... - [What is ASR in Windows XP and Windows Server 2003?](https://petri.com/whats_asr_in_windows_xp_2003/): What is the ASR feature in Windows XP/2003? How do I use it? If you run a  Windows XP Pro... - [What's the Recovery Console?](https://petri.com/whats_the_recovery_console/): What is the Recovery Console? How can I use it? What will it help me do? If safe mode and... - [Windows 2000 SP4 Info](https://petri.com/windows_2000_sp4_info/): Windows 2000 Service Pack 4 is a well-tested collection of updates that focuses on a variety of customer-reported concerns with... - [Unable to Logon to Windows 2003 Domain Due to Windows Cannot Connect to the Domain Error](https://petri.com/windows_cannot_connect_to_the_domain_error/): Some IT admins report issues with Windows XP workstations that are joined to a Windows 2003 Active Directory domain. These... - [How to configure EIGRP on your Cisco router](https://petri.com/how-to-configure-eigrp-on-your-cisco-router/): Do you need to configure dynamic routing protocol for you network? EIGRP may be an excellent choice. It is a... - [Server Virtualization, Network Virtualization & Storage Virtualization Explained](https://petri.com/server-virtualization-network-virtualization-storage-virtualization/): There are many types of virtualization- server, network, storage, and more. In this article, we will demystify these complex terms,... - [How to Import Virtual PC and Virtual Server machines to VMware](https://petri.com/virtual_import_virtual_server_and_pc_to_vmware/): Do you have Microsoft Virtual PC or Virtual Server machines already built? If so, now you can import them to... - [VMware File Types Explained: VMDK, VMEM, VMSN, VMSD, VMX & More](https://petri.com/virtual_vmware_files_explained/): When using VMware Server & Workstation, you will, at some point, go to the directory where your VMware virtual machines... - [VMware Virtual Center Benefits](https://petri.com/vmware-virtual-center/): The VMware Infrastructure package consists of 3 applications – VMware ESX, Virtual Center, and VMware Consolidated Backup. In this article,... - [An Introduction to Network Access Protection’s Components](https://petri.com/introduction-to-network-access-protection-components/): Although VPN connections have been a staple of enterprise environments for many years now, security concerns have increased exponentially in... - [Restoring Exchange Mailbox Data Using the Recovery Storage Group, Part 1](https://petri.com/restoring_exchange_mailbox_recovery_storage_group_part1/): Recovery storage groups were first introduced in Exchange Server 2003.   At the time, the idea behind them was that... - [Transport Rules: Adding a disclaimer](https://petri.com/transport-rules-adding-a-disclaimer/): Many businesses incorporate a disclaimer or footer at the bottom of their outbound messages. These disclaimers often advise as to... - [Change Office XP CD Key](https://petri.com/change_office_xp_cd_key/): How can I change the CD Key of my Office XP installation? You can do it by editing the Registry.... - [DHCP Server Migration Made Easy in Windows Server 2008](https://petri.com/dhcp-server-migration-made-easy-windows-server-2008/): If you have ever had to move a DHCP Server from one physical server to another, you know that the... - [Disable the Welcome Screen in XP Pro](https://petri.com/disable_the_welcome_screen_in_xp_pro/): How can I disable the Welcome Screen in Windows XP Pro? To turn the Welcome Screen on or off: You... - [How to downgrade your converted Alcatel SpeedTouch 510 ADSL modem back to the Pro model?](https://petri.com/downgrade_from_alcatel_speedtouch_510_to_pro/): How to downgrade your converted Alcatel SpeedTouch 510 ADSL modem back to the Pro model? This document describes how you... - [Download IE7](https://petri.com/download_ie7/): Download Internet Explorer 7 Yes! It’s finally here, Microsoft’s latest and anticipated Internet browser – Internet Explorer 7. IE 7... - [Download Virtual Server R2 Enterprise Edition](https://petri.com/download_virtual_server_r2_ent/): Download Microsoft Virtual Server R2 Enterprise Edition Yes, now you can, for free! From Microsoft’s webpage: Microsoft Virtual Server 2005... - [Download Windows 2003 Support Tools](https://petri.com/download_windows_2003_support_tools/): What are the Windows Server 2003 Support Tools? Where can I get them from? The Windows Server 2003 Support Tools... - [Edit Registry Settings for Users Other Than Myself](https://petri.com/edit_registry_settings_for_users_other_than_myself/): How can I edit registry settings for users other than myself? From an account with Administrator level access: Start Registry... - [Enable Remote Assistance Offering in XP/2003](https://petri.com/enable_remote_assistance_offering_in_xp_2003/): How can I enable Remote Assistance offering in Windows XP and Windows Server 2003? MSKB 301527 has more: The Remote... - [Event logs archiving with GPO](https://petri.com/event_logs_archiving_with_gpo/): In some environments the company policy requires that security logs of Domain Controllers are configured to retain information X days... - [Expired SSL Website Certificate](https://petri.com/expired_ssl_website_certificate/): How can I tell if an SSL certificate has expired or not before I enter the secured site? Any website... - [Finding Public Folder Calendars and their Owners](https://petri.com/finding_pf_calendars_and_their_owners/): One of the tasks associated with the new DST changes is identifying Public Folder calendars, and their associated owners. In... - [GFI LANguard Network Security Scanner](https://petri.com/gfi_languard_nss/): GFI LANguard N. S. S. is a leading security scanner that also offers patch management. Security scanning and patch management... - [How do I install Active Directory on my Windows Server 2003 server?](https://petri.com/how_to_install_active_directory_on_windows_2003/): Installing Active Directory isn't always a straightforward process, so Daniel Petri walks you through an AD install for Windows Server 2003. - [IIS 5.1 Patches](https://petri.com/iis_51_patches/):   IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to... - [Info Collected by Windows Update](https://petri.com/info_collected_by_windows_update/): Information collected by Windows Update Does Windows Update collect personal information from your computer? Go to Windows Update, click on... - [Install ISA Server 2000 on Windows Server 2003](https://petri.com/install_isa_server_2000_on_windows_server_2003/): Daniel walks us through installation of Microsoft's Internet and Acceleration Server (ISA) 2000 on Windows Server 2003. - [How can I install Windows Vista without supplying the product key?](https://petri.com/install_windows_vista_without_supplying_the_product_key/): How can I install Windows Vista without supplying the product key? Well, you can, sort of. You can configure Windows... - [Integrating ObserveIT with the New Windows Server 2008 Terminal Server Features](https://petri.com/integrate-observeit-new-windows-2008-terminal-server-features/): If you recall, I’ve recently began working for ObserveIT (www. observeit-sys. com), a startup company that has an amazing solution... - [Keyboard Shortcuts in Windows XP](https://petri.com/keyboard_shortcuts/): How can I quickly open Windows Explorer in Windows XP? What keyboard shortcuts do you know? In Windows XP, as... - [Managing Windows 2008 Server Core through RDP](https://petri.com/managing-windows-2008-server-core-rdp/): As described in my previous articles, Windows Server 2008 has an interesting option to install it with a minimal graphical... - [Microsoft Network Monitor 3.1 has been released](https://petri.com/microsoft-network-monitor-3/): The Microsoft Network Monitor tool has been around since the days of NT 4. 0, and although it wasn’t the... - [Mount ISO Files in Windows Vista](https://petri.com/mount_iso_files_in_windows_vista/): An . ISO file is a file that contains the complete image of a disc, either a CD or a... - [Why are the options to configure Root Hints or Forwarders unavailable?](https://petri.com/no_forwarding_or_root_hints_on_dns_server/): If no DNS servers were detected during the initial configuration of Windows 2000 DNS, the system will typically designate the... - [Office XP SP3 Slipstreaming](https://petri.com/office_xp_sp_slipstreaming/): How can I slipstream service packs into Office XP (2002)? This scenario explains how to create an integrated installation of... - [Windows Small Business Server 2003: A Clear and Concise Administrator's Reference and How-To](https://petri.com/packt_sbs_book/): Windows Small Business Server 2003: A Clear and Concise Administrator’s Reference and How-To Many small to medium sized companies that... - [Problems with Forms-Based Authentication and SSL in ActiveSync](https://petri.com/problems_with_forms_based_authentication_and_ssl_in_activesync/): Problems in Synchronizing a Pocket PC with Exchange Server 2003 when using SSL and Forms-Based Authentication in OWA As written... - [How can I quickly copy a file or a folder's path in Windows Vista?](https://petri.com/quickly_copy_file_and_folder_path_in_windows_vista/): While working with files and folders in your Windows operating system you might sometimes find the need to copy a... - [RegPol](https://petri.com/regpol/): Description This command line utility enables you to import . REG files even if the Group Policy is set to... - [Reset OWA 2000/2003 Language](https://petri.com/reset_owa_2000_2003_language/): How can I reset the language for the right-click operations within OWA? In Exchange 2000 and 2003, OWA (Outlook Web... - [How can I run the Windows Server 2003 SP1 Adminpak.msi on Windows Vista RTM?](https://petri.com/running_win_2003_adminpak_on_vista_rtm/): Installing the Adminpak. msi will install all of the management tools that are needed to administer Windows 2000, Windows XP... - [Share Calendars with Local Users using Internet Publishing`](https://petri.com/share-calendars-local-users-internet-publishing/): Microsoft Office Outlook 2007 provides you with a comprehensive time and information manager. Users can share their calendars with other... - [Three Steps to the Initial Configuration of your Windows 2008 Server After Installation](https://petri.com/three-steps-to-the-initial-configuration-of-your-windows-2008-server-after-installation/): When Microsoft created Windows Server 2008, one of their many goals was to simplify the deployment process. In fact, you... - [Understanding VPN Remote Access Mechanism](https://petri.com/understanding-vpn-remote-access-mechanism/): What is a Virtual Private Network (VPN)? A VPN, or Virtual Private Network, is a group of two or more... - [Using OWA 2003 for Storing Files](https://petri.com/using_owa_2003_for_storing_files/): Can I enable users to store / upload files in their mailboxes through Outlook Web Access (OWA) in Exchange 2003?... - [Installing Ubuntu 6.10 as a Virtual Machine](https://petri.com/virtual_installing_ubuntu_as_virtual_machine/): For those of you new to the idea of virtualization, virtualization is the nesting of “sub-operating systems” within a host operating... - [What's CIDR?](https://petri.com/whats_cidr/): The Classless Inter Domain Routing (CIDR) standard is already in effect and most newer routers supports it. In a few... - [Windows 2000 SP4 Patches](https://petri.com/windows_2000_sp4_patches/): Required Patches Windows 2000 Server/Advanced Server with Service Pack 4 requires the following security-related patches: Make sure you read Internet... - [Windows Millennium (ME) Patches](https://petri.com/windows_me_patches/): Windows Millennium (ME) Patches No one will help you, no one will support you, no one will ever hear you... - [How to configure IPSEC encryption with the Cisco IOS (site to site VPN tunneling)](https://petri.com/how-to-configure-ipsec-encryption-with-cisco-ios/): The OSPF dynamic routing protocol is probably the most popular LAN routing protocol today. OSPF can scale to the largest... - [Solarwinds Read-Time NetFlow Analyzer - Free Download](https://petri.com/solarwinds-read-time-netflow-analyzer-free-download/): So many network performance tools tell you that you have too much traffic here or there but then don’t go... - [Top 10 VMware Performance Tweaks](https://petri.com/virtual_increase_vmware_performance/): With VMware Server, you run virtual guest operating systems inside a host operating system. Because you are running multiple operating... - [Quickly Search Active Directory from the Desktop](https://petri.com/quickly_search_active_directory_from_the_desktop/): How can I quickly perform search operations in AD from my desktop? No problem. Create a new shortcut on your... - [Recover Lost Product Keys for Windows 2000, XP, 2003 - CD-Key Recovery for Windows 2000, Windows 2003, and Windows XP](https://petri.com/recover_lost_product_keys_for_windows_2000_xp_2003/): One of the biggest nags for an IT administrator facing the need to format and reinstall a Windows-based operating system... - [Remote Version Checking through SMTP/POP3/IMAP4](https://petri.com/remote_version_checking/): How can I tell what build is my Windows/Exchange server? It’s quite easy to forget which builds your servers are... - [Restore Ntbackup Backups from Windows XP to Windows Vista](https://petri.com/restore_ntbackup_backups_to_windows_vista/): Lately I began to use Windows Vista on my laptop computer, needless to say that one of the basic and... - [SBS 2000 Installation Tips](https://petri.com/sbs_2000_installation_tips/): I’m about to install SBS 2000 on my network. Are there any special issues to take into consideration before I... - [Sender Policy Framework](https://petri.com/sender_policy_framework/): Sender Policy Framework (SPF) tackles email address forgery. Without SPF it is very easy to send e-mails using someone else’s... - [Slow Shutdown of Exchange 2003 Server Installed on DC](https://petri.com/slow_shutdown_of_exchange_2003_server_installed_on_dc/): Exchange 2003 on a Domain Controller or “Why does my Exchange 2003 server take 10 minutes or more to shutdown”... - [What is Microsoft Software Update Services (SUS)?](https://petri.com/sus/): What is Microsoft Software Update Services (SUS)? Microsoft SUS is a free patch management tool provided by Microsoft to help... - [Understanding Function Levels in Windows Server 2003 Active Directory](https://petri.com/understanding_function_levels_in_windows_2003_ad/): What are the domain and forest function levels in a Windows Server 2003-basedActive Directory? Functional levels are an extension of... - [Upgrade Windows 2000 GPO with XP Features](https://petri.com/upgrade_windows_2000_gpo_with_xp_features/): How do I upgrade a Windows 2000 Active Directory Group Policy object (GPO) to support the new features in Windows... - [View Additional User Information in AD Users and Computers](https://petri.com/view_additional_user_information_in_aduc/): How can I view additional information about a user in the AD Users and Computers snap-in? The Windows 2003 Resource... - [Vista Command Prompt](https://petri.com/vista_command_prompt/): The Command Prompt is a native Windows program that lets you execute commands without using a GUI. You can accomplish... - [What's New in Windows Server 2003 Active Directory?](https://petri.com/whats_new_in_windows_server_2003_active_directory/): Looking for an overview of what's new in Active Directory in Windows Server 2003? Daniel points out the highlights and noteworthy additions. - [What You Need to Know About Securing Your Virtual Network](https://petri.com/what-you-need-to-know-about-vmware-virtualization-security/): A lot of people think that if you virtualize, let’s say, a Windows 2003 Server, that virtualized system should be... - [Windows Server 2003 SP1 Patches](https://petri.com/windows_server_2003_sp1_patches/):   You should consider installing Service Pack 1 as soon as possible During March 2005 Microsoft released SP1 for Windows... - [Virtual Floppy Disks with VMware](https://petri.com/virtual-floppy-disks-vmware/): You might be thinking that floppy disks are “dead”, right? Well, you are correct that the physical floppy 3. 5″... - [How to Mount VMware Virtual Disks Without VMware](https://petri.com/virtual_mount_vmware_virtual_disk_without_vmware/): VMware Workstation and Server uses virtual disk files as the disk drives for virtual machines. These files (ending in .... - [Understanding VMware VMX Configuration Files - Learn How To Create and Edit VMX Files](https://petri.com/virtual_vmware_vmx_configuration_files/): In our article called VMware Disk Files Explained, we talked about the different VMware files on disk. In particular, we... - [Why you need to Decommission Exchange 2003 Servers after your Exchange 2007 Upgrade](https://petri.com/decommission-exchange-2003-servers-exchange-2007-upgrade/): The Exchange Server 2003 Setup program was designed from the very beginning to allow you to uninstall Exchange server should... - [Performance Monitoring the Easy Way, Part 2](https://petri.com/performance-monitoring-easy-way-part-2/): In the previous article in this series, I explained why I believe that performance monitoring is becoming more important now... - [Using Exchange Management Shell to Configure Content Filtering, Part 2](https://petri.com/using-exchange-2007-management-shell-configure-content-filtering-part2/): In the previous article in this series (Using Exchange Management Shell to Configure Content Filtering, Part 1), I showed you... - [Delete IE7 History From the Command Line](https://petri.com/delete-ie7-history-from-command-line/): When cloning a computer running Windows XP, 2003, Vista or 2008, one of the tasks that you should perform before... - [Disable Administrative Shares](https://petri.com/disable_administrative_shares/): How can I disable the Administrative Share creation in Windows NT/2000/XP/2003? Every Windows NT/W2K/XP/2003 machine automatically creates a share for... - [Disable Password Requirements in Windows Server 2003 Domains](https://petri.com/disable_password_requirement_in_win2003_domain/): How can I disable the password requirement for a user in a Windows Server 2003 Active Directory domain? Windows Server... - [How can I prevent users from writing to USB removable disks (USB flash drives)?](https://petri.com/disable_writing_to_usb_disks_in_xp_sp2/): USB removable disks (also known as flash drives or “Disk on Key” and other variations) are quickly becoming an integral... - [Download Windows XP Reskit Tools](https://petri.com/download_windows_xp_reskit_tools/): Where can I get the Windows XP Support Tools? The Windows XP Resource Kit Tools are a set of software... - [Enable Theme Support in Windows Server 2003](https://petri.com/enable_themes_on_windows_2003/): How can I enable theme support in Windows Server 2003? Windows Server 2003 has the theme support services disabled by... - [Free Packet Sniffers for Windows 2003/Vista/2008](https://petri.com/free-packet-sniffers-for-windows-2003-vista-2008/): A packet sniffer is usually used to analyze network traffic. The reason for using a packet sniffer (or simply called... - [Grant Full Mailbox Rights to an Administrator on Exchange 2000/2003](https://petri.com/grant_full_mailbox_rights_on_exchange_2000_2003/): How do I grant the administrator(s) (or any other user) full mailbox right on Exchange 2000/2003 mailboxes? In Microsoft Exchange... - [How to Disable SMB 2.0 on Windows Vista/2008](https://petri.com/how-to-disable-smb-2-on-windows-vista-or-server-2008/): Server Message Blocks Protocol (SMB) is the file sharing protocol used by default on Windows-based computers. SMB 1. 0 was... - [IconZone](https://petri.com/iconzone/): Description This utility changes desktop icons, start-menu icons and quick-launch icons as well as proxy settings whenever the computer’s IP... - [Import Virtual Machines from Virtual Server to Hyper-V with VMC2HV](https://petri.com/import-virtual-machines-virtual-server-hyper-v-vmc2hv/): Matthijs ten Seldam, who has developed VMRC+ (see my Manage Virtual Server Machines with VMRC Plus article for more info),... - [How do I install and configure Windows 2000 DNS server?](https://petri.com/install_and_configure_w2k_dns_server/): The Domain Name System (DNS) is the Active Directory locator in Windows 2000. Active Directory clients and client tools use... - [Install VM Additions on Windows Vista Beta and Virtual Server R2](https://petri.com/install_vs_r2_vm_additions_on_windows_vista_beta/): How can I install the Virtual Server R2 VM Additions on Windows Vista? The Virtual Additions are a set of... - [Installing Link Layer Topology Discovery (LLTD) on Windows Server 2003](https://petri.com/installing-link-layer-topology-discovery-on-windows-server-2003/): Link Layer Topology Discovery (LLTD) graphically displays the topology of a network. This post shows you how to setup LLTD on Windows Server 2003. - [Limitations of Alternate PF Trees](https://petri.com/limitations_of_alternate_pf_trees/): Why does Outlook still show only the basic Public Folders structure although I’ve created additional Public Folder hierarchies? When you... - [Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 3 – Exchange Server 2003](https://petri.com/mcse-system-administrator-exchange-interview-questions/): This is a part 3 of my MCSE and System Administrator job interview sample questions. See previous parts at: Part... - [Offer Remote Assistance in Windows XP/2003](https://petri.com/offer_remote_assistance_in_windows_xp/): Sometimes you’re up against stupid or lamer users who can’t figure out their GUI (not to mention basic computer skills).... - [Planning FSMO Roles in Active Directory](https://petri.com/planning_fsmo_roles_in_ad/): What are the considerations for the FSMO placement in Active Directory? Windows 2000/2003 Active Directory domains utilize a Single Operation... - [Quickly See if your Server, PC or Laptop Supports Hyper-V](https://petri.com/quickly-see-if-your-server-pc-or-laptop-supports-hyper-v/): Virtual machine technology enables multiple operating systems to run concurrently on a single machine. Microsoft Hyper-V, a key feature of... - [Quickly Edit Quick Launch Icons in Windows XP/2003](https://petri.com/quickly_edit_quick_launch_icons_in_windows_xp_2003/): How can I quickly edit the items in the Quick Launch toolbar in Windows 2000/XP/2003? The Quick Launch toolbar is... - [Quickly Search the Web](https://petri.com/quickly_search_the_web/): How can I quickly search the web from my web browser? Searching the web for specific articles, sites and links... - [Remote to a Windows Vista Machine using VNC on Windows XP](https://petri.com/remote_windows_vista_using_vnc/): Through the use of VNC and port-forwarding, you can control your Windows Vista or Windows XP computer from inside and... - [Active Directory Offline Defragmentation](https://petri.com/active_directory_offline_defragmentation/): How do I defragment the Active Directory to make it smaller in size? The size of NTDS. DIT will often... - [Advanced Drag-and-Drop Techniques in Vista](https://petri.com/advanced_drag_and_drop_vista/): Ever since Microsoft introduced mice into their operating systems (something done earlier by other vendors such as Apple and pioneered... - [Before you begin](https://petri.com/before_you_begin/): Before you begin messing with your system The registry is no child’s play Modifying the registry can cause serious problems... - [Change the Registered User and Company Name in Windows XP / Vista](https://petri.com/change_registered_user_and_company_vista_xp/): Network administrators have had countless times that they need to change the registered user and company name for a Windows... - [Changes in Vista Service Pack 1](https://petri.com/changes-windows-vista-sp1-enhancements-security-quality-bugfix/): Scheduled to be released in the beginning of 2008, Windows Vista Service Pack 1 (SP1) delivers improvements and enhancements to... - [How to configure your Alcatel SpeedTouch 510 ADSL modem not to use NAT?](https://petri.com/configure_alcatel_speedtouch_510_for_dhcp_spoofing/): This document describes how you can configure an Alcatel SpeedTouch 510 ADSL modem not to use NAT anymore. This process... - [Configure MX Records for Incoming SMTP E-Mail Traffic](https://petri.com/configure_mx_records_for_incoming_smtp_email_traffic/): How do I configure and test the MX Record for my Internet Domain name? When you want to run your... - [Configure USB Disks to be Read-Only in Windows XP SP2](https://petri.com/configure_usb_disks_to_be_read_only_in_xp_sp2/): How can I configure USB Disks to be Read-Only in Windows XP SP2? Since USB Disks-on-key and other external USB... - [Copy Encrypted Files on the Network](https://petri.com/copy_encrypted_files_on_the_network/): Can I copy or move an encrypted file or folder across the network? No. When you attempt to gain access... - [Creating an Unattend Installation File for DCPROMO in Windows Server 2008](https://petri.com/creating-unattend-installation-file-dcpromo-windows-server-2008/): This article describes the syntax that you use to build answer files to perform unattended installations of Active Directory Domain... - [Windows Backup Bug Prevents Israeli Administrators from Backing Up Windows Server 2008](https://petri.com/windows-server-2008-backup-bug-for-israeli-administrators/): Update: As of June 2008, this bug has been acknowledged and a private fix is already available. I was informed... - [Windows XP SP2 Patches](https://petri.com/windows_xp_sp2_patches/): You should consider installing Service Pack 2 as soon as possible On August 9, 2004, Microsoft released SP2 for Windows... - [What is Cisco Telepresence and what does it take?](https://petri.com/cisco-telepresence-what-is-it-what-does-it-take-video-conferencing-hdtv/): If you are like me, you have probably heard about Cisco’s Telepresence video conferencing system but probably didn’t realize that... - [How to Recover a Lost Password on a Cisco Switch](https://petri.com/csc_how_to_recover_lost_password_on_cisco_switch/): Lost the password to your Cisco switch? David Davis walks you through how to recover that password (and your sanity). - [Best Practices for Exchange Server Migrations, Part 2](https://petri.com/best-practices-for-exchange-server-migrations-part-2/): In the first article in this series, I outlined three steps that I think are essential to the Exchange 2007... - [Creating a Group Policy Central Store](https://petri.com/creating-group-policy-central-store/): One of the issues that sometimes made managing group policies difficult in Windows XP and in Windows Server 2003 was... - [Access Denied Error in EFS Encrypted Files](https://petri.com/access_denied_error_in_efs_encrypted_files/):   Why do I get an “Access Denied” error every time I try to read a file even though I’ve... - [Block Incoming Internet Mail to Specific Users or Groups](https://petri.com/block_incoming_internet_mail_to_specific_users_or_groups/): How do I block incoming Internet mail to specific users or groups in Exchange 2003? This tip might come in... - [Cannot Install Update for Windows Vista KB929777](https://petri.com/cannot_install_update_windows_vista_kb929777/): Trying to install Windows Vista on a computer with more than 3 GB of RAM might cause a BSOD (Blue... - [Changing Store Limits in Exchange 2003 SP2](https://petri.com/change_store_size_limits_ex2003_sp2/): How can I change the store limits in Exchange 2003 SP2? By default, the size limit of each database on... - [Changes in Default Behavior in Windows Server 2003](https://petri.com/changes_in_default_behavior_in_windows_server_2003/): What are the changes in default behavior in Windows Server 2003? The Windows security initiative, launched in the spring of... - [How to configure your Alcatel SpeedTouch ADSL modem not to use NAT?](https://petri.com/configure_alcatel_speedtouch_pro_for_dhcp_spoofing/): This document describes how you can configure an Alcatel SpeedTouch Pro ADSL modem not to use NAT anymore. This process... - [Configure Web Access to Newsgroups Hosted on Exchange 2000/2003](https://petri.com/configure_web_access_to_newsgroups_hosted_on_exchange_2000_2003/): In Exchange 2000/2003, how can I configure web access to some of the newsgroups that are hosted on the server?... - [Copy User Profiles in Windows XP](https://petri.com/copy_user_profiles_in_windows_xp/): How do I copy a user profile in Windows XP? Why is the COPY TO button grayed out? UPDATE: This... - [Get certified on Windows Server 2003 to Windows Server 2008](https://petri.com/windows-server-2008-certifications/): The Windows Server 2008 certifications are part of the new generation of Microsoft certifications, which emphasize primary skill sets and... - [Windows XP SP2 Slipstreaming](https://petri.com/windows_xp_sp_slipstreaming/): How can I slipstream service packs into the Windows XP media? This scenario explains how to create an integrated installation... - [Configuring a Cisco router to exchange RIP routes with a Windows 2003 Server - Part 2](https://petri.com/configure-cisco-router-exchange-rip-routes-windows-server/): Did you know that a Windows Server can act as a router? Even better, did you know that a Windows... - [Static Routes in the Cisco IOS](https://petri.com/csc_how_to_static_routes_cisco_ios/): As a network administrator, you must be able to configure your routers to route traffic across the network. Static routes... - [Classifying Messages in Exchange Server 2007, Part 1](https://petri.com/classifying-messages-in-exchange-server-2007-part-one/): By now you’re probably familiar with the idea that Exchange Server 2007 is designed in such a way that every... - [Creating a Journal Rule in Exchange 2007](https://petri.com/creating-journal-rule-exchange-server-2007/): In the previous article in this series (Learn the Basics of Journaling in Exchange Server 2007), I talked about how... - [Activate Vista Aero Interface on Windows Vista Basic Edition](https://petri.com/activate_vista_aero_on_vista_basic_edition/): Microsoft has made some awesome graphical additions to Windows Vista, namely, the Aero theme (read more about it on my... - [Active Directory Search Limit](https://petri.com/active_directory_search_limit/): How do I modify the number of Active Directory objects to search? By default, the Windows 2000 Active Directory searches... - [Backup Exchange 2000/2003 from a Non-Exchange Server](https://petri.com/backup_exchange_from_non_exchange_server/): How can I backup my Exchange 2000/2003 server from a non-Exchange Windows 2000/2003 server? When you install Exchange 2000/2003 on... - [Bug in the Intelligent Message Filter (IMF) interface](https://petri.com/bug_in_imf_interface/): Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial... - [Change or Add OEM Logo and Information](https://petri.com/change_or_add_oem_logo_and_information/): How can I change or add OEM logo and information on my computer? By default, the General tab (right-click My... - [Change User Password from the Command Prompt](https://petri.com/change_user_password_from_the_command_prompt/): How can I change my user-account password from a Command Prompt? You can change a Windows User Account password that... - [Configure a New Global Catalog](https://petri.com/configure_a_new_global_catalog/): How can I configure a Windows 2000/2003 Server as a Global Catalog? The Global Catalog (GC) contains an entry for... - [Configure Message Security in Outlook 2003](https://petri.com/configure_message_security_in_outlook_2003/): How can I configure e-mail and message security in Outlook 2003? After installing the online Certificate Authority (CA) and after... - [Configure SSL on Your Website with IIS](https://petri.com/configure_ssl_on_your_website_with_iis/): On IIS 6. 0, how do I configure my website to use SSL? By default, web browsing is being performed... - [Control USB Drive Letter Assignment in Windows XP/2003/Vista/2008](https://petri.com/control-usb-drive-letter-assignment-in-windows/): In Windows XP/2003/Vista/2008, when a removable drive (USB flash drive, flash card reader, portable hard drive, etc. ) is attached... - [Creating and Managing Virtual Servers with Windows 2008 Server and Hyper-V](https://petri.com/creating-managing-virtual-servers-windows-server-2008-hyperv/): In the two previous articles in this series (Planning for Windows Server 2008 Virtualization and Implementing Hyper Vision in Windows... - [Customize the Places Bar in Office XP/2003](https://petri.com/customize_the_places_bar_in_office_xp_2003/): How can I customize the Places Bar in Office XP? In Office 2000 you needed to either edit the registry... - [Windows XP SP1 Info](https://petri.com/windows_xp_sp1_info/): What’s SP1? The service pack is a collection of updates for Windows XP. These updates address: Security issues (including the... - [Windows Update Problems - Error 0x800A138F](https://petri.com/wu_problems_800a138f/): Many users of Windows XP, Windows 2000 and Windows Server 2003 have had problems when trying to access the Windows... - [How Router Interfaces get their names on Cisco Routers](https://petri.com/csc_how_router_interfaces_get_their_names_on_cisco_routers/): Why is your router’s Ethernet interface called Ethernet0/0 on one router but Ethernet 3/0 on another router? Where do these... - [What you need to know about BGP routing protocol](https://petri.com/csc_what_is_bgp/): Perhaps you are thinking that you could care less about some routing protocol called BGP. Could it possibly have anything... - [Controlling Access to Message Attachments Through OWA, Part 3](https://petri.com/control-exchange-server-2007-attachments-through-owa-part-three/): In the previous part of this article series, I showed you several different options for controlling how users are allowed... - [How can I transfer NT4 domain data using the Active Directory Migration Tool?](https://petri.com/active_directory_migration_tool_usage_nt_w2k/): When migrating to Windows 2000 Active Directory Services, many organizations choose the path of restructuring rather than upgrading. This involves... - [Administer Exchange 2003 from Windows XP SP1](https://petri.com/administer_exchange_2003_from_windows_xp_2000_2003/): How can I manage my Exchange 2003 server from a Windows XP/2000/2003 workstation? This article describes the steps to be... - [Problematic SSL Website Certificate on the Official Website of the Bank of Israel](https://petri.com/bankisrael/): Problematic SSL Web Certificate on the Official Website of the Bank of Israel Any website operator that wants to secure... - [Configure Message Security in OWA 2003](https://petri.com/configure_message_security_in_owa_2003/): How can I configure e-mail and message security in Outlook Web Access (OWA) 2003? After installing the online Certificate Authority... - [Configure TCP/IP from the Command Prompt](https://petri.com/configure_tcp_ip_from_cmd/): Learn how to configure TCP/IP settings using Netsh. exe in this article by Daniel Petri. - [Controlling IE cache size via GPO](https://petri.com/controlling_ie_cache_size_via_gpo/): I have seen this question several times at different message boards, so I’ve decided to write something on it. The... - [Secure Remote Access – Configuring and Session Recording](https://petri.com/creating-secure-auditable-remote-access-management-environment-windows-server-security/): In today’s complex network and IT environments more and more people need to gain access to the corporate servers, applications,... - [Customizing New Meeting Request Outlook Form](https://petri.com/customizing_new_meeting_request_outlook_form/): You are all familiar with the standard Outlook form for meeting requests where you specify the meeting details and invite... - [Windows XP SP1/SP1a Patches](https://petri.com/windows_xp_sp1_patches/): You should consider installing Service Pack 2 as soon as possible On August 9, 2004, Microsoft released SP2 for Windows... - [Automatically Power Up VMware Server Guest Operating Systems](https://petri.com/automatically-power-up-vmware-server-guest-os/): This free article outlines techniques for auto-booting a VMWare ESX Server Guest operating system. Screenshots are included as well. - [How to Configure Local Username Database in Cisco IOS](https://petri.com/csc_how_to_configure_local_username_database_cisco_ios/): In this article, we will take a step further in securing our Cisco router by using a local username /... - [How to Unlock Password Protected Word Documents](https://petri.com/word-password-recovery/): The following article details the steps for removing Microsoft Word document passwords using the our recommended download for Office document... - [Controlling Access to Message Attachments Through OWA, Part 2](https://petri.com/control-exchange-server-2007-attachments-through-owa-part-two/): In the first part of this article series, I gave you a general description of the options that are available... - [How to Set Up ADMT for a Windows NT 4.0-to-Windows Server 2003 Migration?](https://petri.com/active_directory_migration_tool_usage_nt_windows_2003/): MS KB 326480 has more info: This article describes how to set up the Active Directory Migration Tool (ADMT) to... - [Administer Windows 2000/2003 Domain from Windows XP](https://petri.com/administer_windows_2000_2003_domain_from_windows_xp/): How can I administer Windows 2000/2003-based computers using Windows XP Professional-based clients? This article describes how to use the Windows... - [Basic Active Directory Services Interface (ADSI) Scripting](https://petri.com/basic_adsi_scripting/): ADSI is a set of COM objects that are used to programmatically manipulate a namespace. A namespace could be anything... - [Temporarily Bypass Windows Server 2008 Activation](https://petri.com/bypass-windows-server-2008-activation/): In Windows Server 2008 (and previous Microsoft operating systems) you must activate your computer in order to use it legally.... - [Change Recovery Console Administrator Password on a Domain Controller](https://petri.com/change_recovery_console_administrator_password_on_a_domain_controller/): How can I change the Recovery Console Administrator password on a Domain Controller? When you promote a Windows 2000 Server-based... - [Change Print Server](https://petri.com/changeprintsrv/): Description Do you need to change your organizational print server? You might find the task of updating the clients’ printers’... - [Configure Active Directory Connector Connection Agreements](https://petri.com/configure_active_directory_connector_connection_agreements/): How do I configure Active Directory Connector Connection Agreements (CA)? MSKB 296260 has the following information: In most ADC deployments,... - [How to configure Multiple Local GPOs in Windows Vista?](https://petri.com/configure_multiple_local_gpo_in_windows_vista/): How to configure Multiple Local GPOs in Windows Vista? Windows Vista has the ability to create multiple local group policies... - [Configure TCP/IP to use DHCP and a Static IP Address at the Same Time](https://petri.com/configure_tcp_ip_to_use_dhcp_and_a_static_ip_address_at_the_same_time/): Thanks to reader pnatan from Tapuz we can do that with just a simple registry tweak. To configure your computer... - [Why do I get error messages when I try to convert FAT16 partitions to FAT32 in Windows 2000/XP/2003?](https://petri.com/convert_fat16_to_fat32_in_windows_2000_xp_2003/): In W2K, XP and Windows Server 2003, if you attempt to convert a File Allocation Table (FAT or FAT16) partition... - [Creating security alerts of abnormal user actions on Windows servers using Microsoft System Center Operation Manager 2007 and ObserveIT](https://petri.com/creating-security-alerts-using-scom-2007-and-observeit/): System and software downtime frequently mean lost revenues, lowered employee productivity and reduced customer satisfaction. Despite the fact that companies... - [Windows Server 2003 Server Performance Advisor (SPA)](https://petri.com/windows-server-2003-server-performance-advisor/): Microsoft Windows Server 2003 Server Performance Advisor (or SPA for short) is a simple but robust tool that helps administrators... - [Windows XP SP1a Info](https://petri.com/windows_xp_sp1a_info/):   What’s SP1a and what’s the difference between SP1 and SP1a? On February 3, 2003, Microsoft released SP1 again as... - [Cisco 800 series Routers - the best routers to practice for your CCNA exam and learn the IOS](https://petri.com/cisco-800-series-routers/): So many new or aspiring network administrators have asked me “what is the best router to use to learn the... - [How to Configure Passwords to Secure your Cisco Router](https://petri.com/csc_how_to_configure_passwords_to_secure_your_cisco_router/): Maybe you have a new router or you want to verify that you have security properly configured on your existing... - [Best Practices for Exchange Server Migrations](https://petri.com/best-practices-for-exchange-server-migrations-part-1/): Any time that I think about server migrations, I always have to cringe a little bit. I’m not anti-progress or... - [Creating A Postmaster Mailbox In Exchange Server](https://petri.com/creating-a-postmaster-mailbox-in-exchange-server-2007/): We’ve all occasionally run into situations in which we have tried to e-mail someone and received an unexpected non delivery... - [Active Directory Offline Defragmentation](https://petri.com/active_directory_offline_defragmentation/): How do I defragment the Active Directory to make it smaller in size? The size of NTDS. DIT will often... - [Advanced Drag-and-Drop Techniques in Vista](https://petri.com/advanced_drag_and_drop_vista/): Ever since Microsoft introduced mice into their operating systems (something done earlier by other vendors such as Apple and pioneered... - [Before you begin](https://petri.com/before_you_begin/): Before you begin messing with your system The registry is no child’s play Modifying the registry can cause serious problems... - [Change the Registered User and Company Name in Windows XP / Vista](https://petri.com/change_registered_user_and_company_vista_xp/): Network administrators have had countless times that they need to change the registered user and company name for a Windows... - [Changes in Vista Service Pack 1](https://petri.com/changes-windows-vista-sp1-enhancements-security-quality-bugfix/): Scheduled to be released in the beginning of 2008, Windows Vista Service Pack 1 (SP1) delivers improvements and enhancements to... - [How to configure your Alcatel SpeedTouch 510 ADSL modem not to use NAT?](https://petri.com/configure_alcatel_speedtouch_510_for_dhcp_spoofing/): This document describes how you can configure an Alcatel SpeedTouch 510 ADSL modem not to use NAT anymore. This process... - [Configure MX Records for Incoming SMTP E-Mail Traffic](https://petri.com/configure_mx_records_for_incoming_smtp_email_traffic/): How do I configure and test the MX Record for my Internet Domain name? When you want to run your... - [Configure USB Disks to be Read-Only in Windows XP SP2](https://petri.com/configure_usb_disks_to_be_read_only_in_xp_sp2/): How can I configure USB Disks to be Read-Only in Windows XP SP2? Since USB Disks-on-key and other external USB... - [Copy Encrypted Files on the Network](https://petri.com/copy_encrypted_files_on_the_network/): Can I copy or move an encrypted file or folder across the network? No. When you attempt to gain access... - [Creating an Unattend Installation File for DCPROMO in Windows Server 2008](https://petri.com/creating-unattend-installation-file-dcpromo-windows-server-2008/): This article describes the syntax that you use to build answer files to perform unattended installations of Active Directory Domain... - [Windows Backup Bug Prevents Israeli Administrators from Backing Up Windows Server 2008](https://petri.com/windows-server-2008-backup-bug-for-israeli-administrators/): Update: As of June 2008, this bug has been acknowledged and a private fix is already available. I was informed... - [Windows XP SP2 Patches](https://petri.com/windows_xp_sp2_patches/): You should consider installing Service Pack 2 as soon as possible On August 9, 2004, Microsoft released SP2 for Windows... - [What is Cisco Telepresence and what does it take?](https://petri.com/cisco-telepresence-what-is-it-what-does-it-take-video-conferencing-hdtv/): If you are like me, you have probably heard about Cisco’s Telepresence video conferencing system but probably didn’t realize that... - [How to Recover a Lost Password on a Cisco Switch](https://petri.com/csc_how_to_recover_lost_password_on_cisco_switch/): Lost the password to your Cisco switch? David Davis walks you through how to recover that password (and your sanity). - [Best Practices for Exchange Server Migrations, Part 2](https://petri.com/best-practices-for-exchange-server-migrations-part-2/): In the first article in this series, I outlined three steps that I think are essential to the Exchange 2007... - [Creating a Group Policy Central Store](https://petri.com/creating-group-policy-central-store/): One of the issues that sometimes made managing group policies difficult in Windows XP and in Windows Server 2003 was... - [Access Denied Error in EFS Encrypted Files](https://petri.com/access_denied_error_in_efs_encrypted_files/):   Why do I get an “Access Denied” error every time I try to read a file even though I’ve... - [Block Incoming Internet Mail to Specific Users or Groups](https://petri.com/block_incoming_internet_mail_to_specific_users_or_groups/): How do I block incoming Internet mail to specific users or groups in Exchange 2003? This tip might come in... - [Cannot Install Update for Windows Vista KB929777](https://petri.com/cannot_install_update_windows_vista_kb929777/): Trying to install Windows Vista on a computer with more than 3 GB of RAM might cause a BSOD (Blue... - [Changing Store Limits in Exchange 2003 SP2](https://petri.com/change_store_size_limits_ex2003_sp2/): How can I change the store limits in Exchange 2003 SP2? By default, the size limit of each database on... - [Changes in Default Behavior in Windows Server 2003](https://petri.com/changes_in_default_behavior_in_windows_server_2003/): What are the changes in default behavior in Windows Server 2003? The Windows security initiative, launched in the spring of... - [How to configure your Alcatel SpeedTouch ADSL modem not to use NAT?](https://petri.com/configure_alcatel_speedtouch_pro_for_dhcp_spoofing/): This document describes how you can configure an Alcatel SpeedTouch Pro ADSL modem not to use NAT anymore. This process... - [Configure Web Access to Newsgroups Hosted on Exchange 2000/2003](https://petri.com/configure_web_access_to_newsgroups_hosted_on_exchange_2000_2003/): In Exchange 2000/2003, how can I configure web access to some of the newsgroups that are hosted on the server?... - [Copy User Profiles in Windows XP](https://petri.com/copy_user_profiles_in_windows_xp/): How do I copy a user profile in Windows XP? Why is the COPY TO button grayed out? UPDATE: This... - [Get certified on Windows Server 2003 to Windows Server 2008](https://petri.com/windows-server-2008-certifications/): The Windows Server 2008 certifications are part of the new generation of Microsoft certifications, which emphasize primary skill sets and... - [Windows XP SP2 Slipstreaming](https://petri.com/windows_xp_sp_slipstreaming/): How can I slipstream service packs into the Windows XP media? This scenario explains how to create an integrated installation... - [Configuring a Cisco router to exchange RIP routes with a Windows 2003 Server - Part 2](https://petri.com/configure-cisco-router-exchange-rip-routes-windows-server/): Did you know that a Windows Server can act as a router? Even better, did you know that a Windows... - [Static Routes in the Cisco IOS](https://petri.com/csc_how_to_static_routes_cisco_ios/): As a network administrator, you must be able to configure your routers to route traffic across the network. Static routes... - [Classifying Messages in Exchange Server 2007, Part 1](https://petri.com/classifying-messages-in-exchange-server-2007-part-one/): By now you’re probably familiar with the idea that Exchange Server 2007 is designed in such a way that every... - [Creating a Journal Rule in Exchange 2007](https://petri.com/creating-journal-rule-exchange-server-2007/): In the previous article in this series (Learn the Basics of Journaling in Exchange Server 2007), I talked about how... - [Activate Vista Aero Interface on Windows Vista Basic Edition](https://petri.com/activate_vista_aero_on_vista_basic_edition/): Microsoft has made some awesome graphical additions to Windows Vista, namely, the Aero theme (read more about it on my... - [Active Directory Search Limit](https://petri.com/active_directory_search_limit/): How do I modify the number of Active Directory objects to search? By default, the Windows 2000 Active Directory searches... - [Alternative Command Shells for Windows](https://petri.com/alternative-command-shells_for-windows/): I’ve used the command shell since the days of DOS 5. 0. In these days, using the command line was... - [Block Web Browsing but Allow Intranet Traffic with IPSec](https://petri.com/block_internet_but_allow_intranet_with_ipsec/): How can I block a Windows 2000/XP/2003 computer from surfing on the Internet but still allow it to surf to... - [Cellular Data to your Cisco Router](https://petri.com/cellular_data_cisco_router/): What do you do when your primary T1, cable, or DSL connection goes down to the Internet or your private... - [How can I change the System partition drive letter in Windows XP?](https://petri.com/change_system_drive_letter_in_windows_xp/): For the most part, this is not recommended, especially if the drive letter is the same as when Windows was... - [Changing the Tombstone Lifetime Attribute in Active Directory](https://petri.com/changing_the_tombstone_lifetime_windows_ad/): The tombstone lifetime must be substantially longer than the expected replication latency between the domain controllers. The interval between cycles... - [How to configure your Alcatel SpeedTouch ADSL modem to act as a transparent bridge?](https://petri.com/configure_alcatel_speedtouch_pro_to_act_as_a_transparent_bridge/): This document describes how you can configure an Alcatel SpeedTouch Pro ADSL modem not to use NAT anymore, and not... - [Configure a Newsgroup Feed From a NNTP Server](https://petri.com/configure_newsgroup_feed_from_nntp_server/): In Exchange 2000/2003, how can I configure a newsgroup feed from a live NNTP server? To configure an Exchange 2000... - [Configuring Exchange 2007 to Send E-mail to External domains](https://petri.com/configuring-exchange-2007-send-external-email/): Those of you skilled in Exchange 2000/2003 versions surely remember that, out of the box, Exchange 2000/2003 allows you to... - [How do I install and configure a new Windows 2000 DNS server to prepare for a new AD Domain?](https://petri.com/create_a_new_dns_server_for_ad/): The Domain Name System (DNS) is the Active Directory locator in Windows 2000. Active Directory clients and client tools use... - [Configure Outlook XP/2003/2007 to Prompt for a Password](https://petri.com/configure_outlook_xp_2003_2007_to_prompt_for_a_password/): How can I configure Outlook XP/2003/2007 to prompt me for a password? When using an Outlook client to connect to... - [Configuring Auto Logon](https://petri.com/configuring_autologon/): Can I configure Windows 2000/XP/2003 to log me on automatically? You sure can! Old but nevertheless good. The auto logon... - [Creating Wireless GPO Setting](https://petri.com/creating_wireless_gpo_settings/): I found this nice blog by Darren Mar-Elia regarding an issue with editing wireless GPO settings from a Windows XP... - [Windows Server 2008 Scenarios](https://petri.com/windows-server-2008-scenarios/): Microsoft Windows Server 2008 is the next generation of the Windows Server operating system, scheduled to be officially released during... - [Working with the Favorite Items in Vista Explorer](https://petri.com/working_with_favorite_items_in_windows_vista/): Windows Vista comes with a new and shiny user interface. Most of the things we’ve gotten used to in Windows... - [3 WAN Protocols you should know: HDLC, PPP, and Frame-Relay](https://petri.com/csc_3_wan_protocols_you_should_know/): Your company is connected to the Internet, right? (everyone nod your head yes) So what WAN protocol do you use... - [How to use the OSI Model to Troubleshoot Networks](https://petri.com/csc_how_to_use_the_osi_model_to_troubleshoot_networks/): In a previous article, we explained the OSI model and how it works. In that article, we went over how... - [How to Configure Exchange 2007 OWA for Individual Users](https://petri.com/configure-exchange-2007-owa-for-individual-users/): Although I think that Microsoft has done a pretty decent job creating the Exchange 2007 version of OWA, the fact... - [Active Directory Training Labs](https://petri.com/ad_training_labs/): A review of Train Signal’s Windows 2000/2003 Active Directory Video Lab Training – Product Details.  See more details at Train... - [Difference between Activation and Registration](https://petri.com/activation_vs_registration/): What’s the difference between Product Activation and Product Registration? In one short line: Activation is mandatory, registration is optional. Activation... - [Add Logo and Support Information to Vista](https://petri.com/add-logo-and-support-information-to-vista/): As you may remember, in my “How can I change or add OEM logo and information on my computer? ”... - [Add User Account Information to Active Directory Users and Computers](https://petri.com/add_user_account_information_to_dsa/): How can I add additional user account information option to the Active Directory Users and Computers context menu? As seen... - [Artificially Raise Your Windows Experience Index](https://petri.com/artificially_raise_wei/): When you first install and run Windows Vista, it will calculate your Windows Experience Index score to evaluate your computer’s... - [How can I configure Exchange 2003 to block unsolicited commercial e-mail (spam) with Intelligent Message Filter?](https://petri.com/block_spam_with_exchange_2003_imf/): Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial... - [How can I change a drive letter in Windows XP?](https://petri.com/change_a_drive_letter_in_windows_xp/): When you add drives to your computer, such as an extra hard drive, a CD drive, or a storage device... - [Change the IMAP4 Banner](https://petri.com/change_the_imap4_banner/): How can I change the IMAP4 banner seen when connecting to my Exchange server? MS KB article 303513 has more:... - [Combating SPAM Problems in a Corporate Environment](https://petri.com/combating_spam/): Perhaps no problem plagues the Internet as deeply as that of unsolicited junk E-mail, or SPAM. While there’s no doubt... - [Configure Exchange 2000/2003 to Receive E-Mail for other Domains](https://petri.com/configure_exchange_2000_2003_to_receive_email_for_other_domains/): How do I configure my Exchange 2000/2003 server to accept e-mails for domains other than my own? Exchange 2000/2003 will... - [Configuring Forms-Based Authentication in OWA and Exchange 2003](https://petri.com/configuring_forms_based_authentication_in_exchange_2003/): How can I configure Forms-Based Authentication in Exchange Server 2003 OWA? Exchange Server 2003 has greatly improved the Outlook Web... - [Create new PF Tree on Exchange 2000](https://petri.com/create_new_pf_tree_on_e2k/): How do I create a new Public Folder Tree in Exchange 2000? When you first install Exchange 2000, you have... - [Windows Server 2008 Terminal Services Presentation](https://petri.com/windows-server-2008-terminal-services-new-features-presentation/): Terminal Server on Windows Server 2008 has 3 primary features that offer great out-of-the-box manageability, improved access and improved user... - [Working with Query Based Distribution Groups in Exchange 2003](https://petri.com/working_with_query_based_distribution_groups_in_exchange_2003/): How can I work with Query-Based Distribution groups in Windows Server 2003 and Exchange Server 2003? Windows Server 2003 and... - [Analyzing the Boot Process of a Cisco IOS Router](https://petri.com/csc_analyzing_boot_process_cisco_ios_router/): You can learn a lot about a router by watching it power-up / boot-up. When the router boots, you can... - [Using the Ping Command In The Cisco IOS](https://petri.com/csc_ping_command_cisco_ios/): The ping command is irreplaceable when it comes to troubleshooting. At some point, you will undoubtedly use this command to... - [Configuring Exchange 2007 Send Connectors](https://petri.com/configuring-exchange-2007-send-connectors/): A lot of Exchange administrators are surprised to learn that in most cases a new Exchange Server 2007 deployment is... - [WINS Training Labs](https://petri.com/wins_training_labs/): A review of Train Signal’s Windows 2000/2003 WINS Video Lab Training – Product Details.  See more details at Train Signal’s... - [Active Directory on Windows Server 2008 Requirements](https://petri.com/active-directory-windows-server-2008-requirements/):   The process of installing an Active Directory domain in Windows Server 2008 is quite simple, but some beginners or... - [Add "Take Ownership" to right-click menu in Vista](https://petri.com/add-take-ownership-context-menu-vista/): In order to streamline the ownership of various files and folders in Windows Vista, you can add the “Take Ownership”... - [Add Volume Control in Windows XP](https://petri.com/add_volume_control_in_windows_xp/): Where did the volume control icon disappear in Windows XP? This is another stupid "feature" of Windows XP. I usually... - [Assigning Custom Tasks to Events in Vista](https://petri.com/assigning-custom-tasks-to-events/): As mentioned earlier in my “Working with Vista’s new Event Viewer" and "Working with Filtering and Custom Views in the... - [How can I configure Outlook 2003 to block spam?](https://petri.com/block_spam_with_outlook_2003/): Microsoft Office Outlook 2003 includes features and functionality designed to help block much of the junk e-mail messages (or spam)... - [Control Active Directory Intrasite Replication Interval](https://petri.com/change_ad_replication_interval/): How do I change the intrasite replication interval in Windows 2000 for domain information? Active Directory intrasite replication for naming... - [Change the POP3 Banner](https://petri.com/change_the_pop3_banner/): How can I change the POP3 banner seen when connecting to my Exchange server? MS KB article 303513 has more:... - [Combating Spam with Greylisting](https://petri.com/combating_spam_with_greylisting/): Greylisting is quickly emerging as the new weapon that can be effectively used to fight against spam. Greylisting is somewhat... - [Configure IIS to be a Smart Host for Exchange](https://petri.com/configure_iis_to_be_a_smart_host_for_exchange/): How can I configure an IIS computer to be a Smart Host for my Exchange Server? It may be necessary... - [Configure Public Folder to Hold Default Contacts List](https://petri.com/configure_public_folder_to_hold_default_contacts_list/): How can I configure a Public Folder to hold my default Contacts list in Exchange 2000/2003? If you’ve ever created... - [Configuring ICS on Windows 2000](https://petri.com/configuring_ics_on_windows_2000/): This is a step by step setup of how you get Windows 2000 Server (or Professional) to use Internet Connection... - [Create new PF Tree on Exchange 2003](https://petri.com/create_new_pf_tree_on_exchange_2003/): How do I create a new Public Folder Tree in Exchange Server 2003? When you first install Exchange Server 2003,... - [Cisco Network Assistant (CNA) – Configure, Monitor, Troubleshoot & Maintain your Devices](https://petri.com/csc_cisco_network_assistant/): In Basics of Cisco Switch Administration – Part 1, we touched on some of the basic uses of the Cisco... - [Windows Vista Service Pack 1 is RTM](https://petri.com/windows-vista-sp1-is-rtm/): Almost exactly one year since the first release of Windows Vista to the market in 2007, Windows Vista Service Pack... - [Working with Store Policies](https://petri.com/store-policies/): Working with Store System Policies in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the... - [Basics of Cisco Switch Administration - Part 1](https://petri.com/csc_basics_of_cisco_switch_administration_01/): Need help configuring a switch port or seeing what MAC address is on what port? David Davis serves up some Cisco switch admin basics. - [Preventing network loops with Spanning-Tree Protocol (STP) 802.1d](https://petri.com/csc_preventing_network_loops_with_stp_8021d/): Preventing network loops with Spanning-Tree Protocol (STP) 802. 1d Have you ever had a loop in your LAN?  You don’t... - [Configuring Exchange ActiveSync Policies, Part 1](https://petri.com/configuring-exchange-active-sync-policies-part-1/): If you have been using Exchange Server for a while, then you probably remember when Microsoft introduced ActiveSync policies in... - [Can I disable the circular logging method in Active Directory?](https://petri.com/active_directory_circular_logging/): Actually you do NOT need to do anything... Windows 2000/2003 Active Directory uses circular logging for maintaining transactions in the... - [How can I add a new RDP listening port to Windows 2000/2003 Terminal Server?](https://petri.com/add_a_new_rdp_listening_port_to_terminal_server/): You cannot add a new listening port to your Terminal Server via the GUI (Terminal Server Configuration in Administrative Tools)... - [Add Your Own Link](https://petri.com/add_your_own_link/): Want to add a link to your own site? As long as your site is a free, non-profit, non-pop-up-banner, IT/Microsoft... - [Automatically back up your hard drive, delete temp files, and backup a Web site using batch scripting](https://petri.com/automate_backup_of_your_computer_using_batch_scripting/): Batch scripting is a powerful aspect of Windows. If you are unaware, batch scripts are files that are executed by... - [Block Web Browsing with IPSec](https://petri.com/block_web_browsing_with_ipsec/): How can I block a Windows 2000/XP/2003 computer from surfing on the Internet? Windows 2000/XP/2003 machines have a built-in IP... - [Change the Amount of Disk Space Used by System Restore in Windows Vista](https://petri.com/change_amount_of_disk_space_used_by_system_restore_in_vista/): The System Restore program created restore points whenever you installed a new hotfix, service pack or even (some) applications, and... - [Change the SMTP Banner](https://petri.com/change_the_smtp_banner/): How can I change the SMTP banner seen when connecting to my Exchange server via Telnet? MS KB articles 281224... - [Key difference between ISA Server 2004 and ISA Server 2006](https://petri.com/compare-isa-server-2004-and-2006/): ISA Server 2000 was Microsoft’s first attempt at a commercial and full-featured Firewall + Proxy server product, offering features not... - [How can I configure Intelligent Message Filter in Exchange 2003 SP2?](https://petri.com/configure_imf_in_exchange_2003_sp2/): Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial... - [Configuring ICS on Windows XP](https://petri.com/configuring_ics_on_windows_xp/): This is a step by step setup of how you get Windows XP to use Internet Connection Sharing or ICS.... - [Create New Top-Level Public Folders in Exchange 2000/2003](https://petri.com/create_new_top-level_public_folders_in_exchange_2000_2003/): How can I create new Top-Level Public Folders in Exchange 2000/2003? Public folders can be administered and created using the... - [Convert an IP Address from Decimal to Binary Form](https://petri.com/csc_convert_ip_address_from_decimal_to_binary/): Decimal to binary conversion is an important task to understand in IP addressing and Subnetting. IP addressing is a core... - [Windows Vista Windows Remote Assistance](https://petri.com/windows-vista-windows-remote-assistance/): Windows Remote Assistance is a built-in tool that allows users to connect remotely and control the guest operating system. Windows... - [Working with Wireless GPO Settings from XP SP2](https://petri.com/working_with_wireless_gpo_settings_from_xp_sp2/): I found this nice blog by Darren Mar-Elia regarding an issue with editing wireless GPO settings from a Windows XP... - [Basics of Cisco Switch Administration - Part 2](https://petri.com/csc_basics_of_cisco_switch_administration_02/): Introduction In Basics of Cisco Switch Administration – Part 1, we covered some of the basics of Cisco switch administration... - [Reset Administrator Password On A Cisco Router With SNMP](https://petri.com/csc_reset_admin_password_with_cisco_snmp/): Recently, a fellow Cisco administrator told me about a tool he had used to reset a password on a router.... - [Lightweight Directory Services Setup and Overview](https://petri.com/lightweight-directory-services-setup/): Brian Posey shows a real world example of AD LDS setup in this two part Lightweight Directory Services overview. - [Active Directory Cleanup Wizard Usage](https://petri.com/active_directory_cleanup_wizard_usage/): In Exchange 2000/2003, what is the Active Directory Cleanup Wizard and what is it good for? MSKB 270652 has the... - [Add Additional Attributes to the User Objects](https://petri.com/add_additional_attributes_to_user_objects/): How can I add additional attributes to the users objects in Active Directory? Windows 2000 and Windows Server 2003 Active... - [Adding Network Support to Virtual Servers](https://petri.com/adding-network-support-to-virtual-servers/): A couple of months ago, I wrote a series of articles on Hyper Visor (more commonly known as Hyper-V), the... - [Automatic Completion with a Command Prompt](https://petri.com/automatic_completion_with_a_command_prompt/): Can I use Automatic Completion with a Command Prompt in Windows 2000/XP/2003? Yes. This article describes how to configure Windows... - [Change BSOD Color to a Different Color](https://petri.com/change_bsod_color/): Can I change the Blue Screen of Death (BSOD) color to something other than blue? You sure can! In Windows... - [Change the Telnet Banner](https://petri.com/change_the_telnet_banner/): How can I change the Telnet banner seen when connecting to my Windows Server 2003 server via Telnet? MS KB... - [Configure Instant Messaging in Exchange 2000](https://petri.com/configure_instant_messaging_in_e2k/): How to install and configure Instant Messaging on Exchange 2000? Step #1: Installing the IM service If you didn’t do... - [How can I configure RPC over HTTP/S on Exchange 2003 (single server scenario)?](https://petri.com/how-can-i-configure-rpc-over-https-on-exchange-2003-single-server-scenario/): RPC over HTTP/S is a cool method for connecting your Outlook 2003 client to the corporate Exchange Server 2003 from... - [Configuring IPSec Policies through GPO](https://petri.com/configuring_ipsec_policies_through_gpo/): How can I configure an IPSec Policy through GPO? As written in previous articles (see related articles at bottom of... - [Create Quick Launch Shortcuts to Lock, Restart, and Shutdown Computer](https://petri.com/create_quick_launch_shortcuts_lock_computer_restart_shutdown/): Windows Vista automatically assigns shortcuts to the quick launch toolbar. You can quickly create shortcuts to shutdown, restart, and lock... - [What is IP Subnet Zero? - Cisco Articles & Tips](https://petri.com/csc_ip_subnet_zero/): I am sure you have used the Cisco IOS command show running-config before, and noticed a peculiar default command in... - [What are the editions of Windows Vista?](https://petri.com/windows_vista_editions/): What are the editions of Windows Vista? Microsoft, learning from their experience in Windows XP, have created different versions of... - [Windows Update](https://petri.com/wu/): Windows Update & Windows Update Catalog As always, check the Windows Update site for a good reference on what you’re... - [Configuring Dynamic DNS (DDNS) in the Cisco IOS](https://petri.com/csc_configuring_dynamic_dns_in_cisco_ios/): Would you like to host a web server or e-mail server on your Internet connection, but don’t want to pay... - [Routers, Switches & Firewalls – Learn how they are different](https://petri.com/csc_routers_switches_and_firewalls/): If you are used to working with home networking gear you are used to an integrated device that “does it... - [Configuring the Lightweight Directory Services, Part 2](https://petri.com/configuring-lightweight-directory-services-part-2/): In my first article in this series on creating lightweight directory services, I explained that the Lightweight Directory Service (AD... - [Add Administrative Tools Icon to the Desktop in XP/2003](https://petri.com/add_admin_tools_icon_to_the_desktop_in_xp_2003/): How can I add the Administrative Tools icon to the desktop in Windows XP/2003? The administrative Tools folder is in... - [Adding New Administrative Templates to a GPO](https://petri.com/adding_new_administrative_templates_to_gpo/): How can I add a new Administrative Template to an existing (or new) GPO? In a previous article – Understanding... - [Automating The Creation Of Active Directory Snapshots](https://petri.com/automating-creation-active-directory-snapshots/):   Windows Server 2008 has a new feature allowing administrators to create snapshots of the Active Directory database for offline... - [Change Default Location of the i386 Folder](https://petri.com/change_default_location_of_the_i386_folder/): How can I change the default location of the i386 folder? After installing Windows 2000 or XP, if I ever... - [Configure Exchange 2007 to Receive E-Mail for other Domains](https://petri.com/configure-exchange-2007-recieve-email-other-domains/): Exchange 2007 will only accept e-mail traffic for the e-mail domain that is identical to the name of your Active... - [Configure Instant Messaging SRV Records](https://petri.com/configure_instant_messaging_srv_records/): How can I configure Instant Messaging SRV records on Exchange 2000? The problem When you configure IM on your network... - [Configure Specific E-Mail Addresses for Specific Exchange 2000/2003 Users](https://petri.com/configure_specific_email_addresses_for_exchange_users/): How do I configure some Exchange recipients to have different e-mail addresses in Exchange 2000/2003? Exchange 2000/2003 will automatically configure... - [Configuring Routing in W2K Pro/XP Pro](https://petri.com/configuring_routing_in_w2k_pro_xp_pro/): Routing is configured on a W2K Server / Windows Server 2003 machine by use of the RRAS snap-in. However, this... - [Create Setup Boot Disks for Windows XP](https://petri.com/create_setup_boot_disks_for_windows_xp/): How can I create the Setup Boot floppies for Windows XP Pro/Home? Windows XP Setup boot disks are available only... - [Customize Windows Vista in Two Clicks](https://petri.com/customize-windows-vista-in-two-clicks/): If you recall, back in the times of Windows 95/98, Windows 2000 Workstation and even Windows XP, many tools were... - [An Introduction to Windows Vista Sync Center - Sync files between your laptop and desktop](https://petri.com/windows_vista_sync_center/): If you consistently use a desktop computer in the office and a laptop while traveling, being able to accurately sync... - [Configuring Router Interface Descriptions on a Cisco Router](https://petri.com/csc_configuring_router_interface_descriptions_on_a_cisco_router/): If someone were to look at your router’s configuration, could they understand what the real purpose of the network connections... - [How to Setup VLAN Trunking Protocol (VTP) on Cisco Switches](https://petri.com/csc_setup_a_vtp_on_cisco_switches/): How to Setup VLAN Trunking Protocol (VTP) on Cisco Switches In our last article about VLAN’s (Read ore about it... - [Configuring Virtual Networks With Hyper-V](https://petri.com/configuring-virtual-networks-with-hyper-v/): If you’ve ever worked with Microsoft’s Virtual PC or Virtual Server, then you know that those products work in the... - [Active Directory Connector Requirements](https://petri.com/active_directory_connector_requirements/): What are the requirements for installing the Exchange 2000 Active Directory Connector on a Windows 2000 computer? MSKB 253286 has... - [Adding the Administrator's Account to the Vista Welcome Screen](https://petri.com/add_administrators_account_to_vista_welcome_screen/): Those of you who’ve already installed Windows Vista on their own (read my “Install Windows Vista” article) must have noticed... - [Adding Root Certificates to Windows Mobile 2003 Pocket PC](https://petri.com/adding_root_certificates_to_windows_mobile_2003_ppc/): How can I add a Root Certificate to my Windows Mobile 2003 Pocket PC? Windows Mobile 2002 and 2003 based... - [Backup Windows Server 2003 Active Directory](https://petri.com/backup-windows-server-2003-active-directory/): Backing up Active Directory is essential to maintain the proper health of the Active Directory database. You can backup Active... - [Change to "No Sounds" Sounds Scheme by default](https://petri.com/change_to_no_sounds_sound_scheme_by_default/): Can I change to "No Sounds" Sounds Scheme by default? You sure can! In Windows 2000/XP/2003, each time a new... - [Configure Specific E-Mail Addresses for Specific Exchange 2007 Recipients](https://petri.com/configure-specific-email-addresses-exchange-2007-recipients/): In Exchange 2000/2003, in order to generate a new or different E-Mail address for specific recipients, you had to edit... - [Configure ISA to Publish OWA](https://petri.com/configure_isa_to_publish_owa/): How can I configure Internet Security and Acceleration Server to publish OWA on an Internal Exchange Server? The ISA Server... - [Configure SSL on Outlook Mobile Access (OMA)](https://petri.com/configure_ssl_on_oma/): How do I configure OMA to use SSL? Outlook Mobile Access (or OMA for short) is a new feature found... - [Conflicting Store Policies](https://petri.com/conflicting_store_policies/): Conflicting Store System Policies in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set store settings by directly... - [Create Taskpads for Active Directory Operations](https://petri.com/create_taskpads_for_ad_operations/): How can I easily perform management operations in AD from a customized Taskpad? As your AD infrastructure grows, and the... - [Customize a New XP Installation](https://petri.com/customize_a_new_xp_installation/): How can I customize a new Windows XP installation? When installing a brand new Windows XP Pro computer (read my... - [How to Edit Cisco IOS ACL's Using Line Numbers](https://petri.com/csc_edit_cisco_ios_acl_using_line_numbers/): In our previous series on Cisco IOS Access-lists Part 1 and Part 2 , we covered all the basics of... - [The Basics of Ethernet Cabling](https://petri.com/csc_the_basics_of_ethernet_cabling/): Getting the basic networking tasks done right is the key to any PC Ethernet network, and David Davis shows you how to get off on the right foot. - [Consolidating Multiple Windows Domains](https://petri.com/consolidating-multiple-windows-domains/): If you’re considering bringing Windows Server 2008 onto your network, then one of the decisions that you will eventually have... - [What Do You Need to Install Active Directory?](https://petri.com/active_directory_installation_requirements/): This article explains what you need to install Active Directory in Windows Server 2000 and 2003. Screenshots are included. - [Add Command Prompt Here Shortcut to Windows Explorer](https://petri.com/add_command_prompt_here_shortcut_to_windows_explorer/): How can I add a Command Prompt option to the default Explorer right click context menu? If you find that... - [Administer Exchange 2000 from Windows XP](https://petri.com/administer_exchange_2000_from_windows_xp/): How can I manage my Exchange 2000 server from a Windows XP computer? This article describes the steps to be... - [Backing up Exchange 2000/2003 with NTBACKUP](https://petri.com/backup_exchange_2000_2003_with_ntbackup/): How do I backup my Exchange 2000/2003 server? One of the most important tasks for an Exchange administrator is the... - [Brick Level Backup of Mailboxes by using EXMERGE](https://petri.com/brick_level_backup_of_mailboxes_by_using_exmerge/): How do I use EXMERGE to make Brick-Level backups of Exchange 2000/2003 mailboxes? One of the most important tasks for... - [Changing the Default NumLock Key State](https://petri.com/change_numlock_default_state/): Can I change the Default NumLock Key State? You sure can! The NumLock key is a key that toggles the... - [Change User Password from a Remote Computer](https://petri.com/change_user_password_from_a_remote_computer/): How can I change my user-account password from a remote computer? You can change a Windows User Account password that... - [Configure Time and Date Settings in Windows 2008 Server Core](https://petri.com/configure-time-date-settings-windows-2008/): As noted in previous articles, Windows Server 2008 has an interesting option to install it with a minimal graphical user... - [Configure Message Security in Exchange 2003](https://petri.com/configure_message_security_in_exchange_2003/): How can I configure e-mail and message security in Exchange Server 2003? Exchange Server 2003 can work hand-in-hand with the... - [Configure SSL for Outlook Web Access (OWA)](https://petri.com/configure_ssl_on_owa/): How do I configure OWA to use SSL? Outlook Web Access (or OWA for short) is one of Exchange Server‘s... - [Control Usage of Portable Devices with GFI EndPointSecurity](https://petri.com/control-portable-device-security-gfi-endpoint-security/): Uncontrolled use of iPods, USB sticks, PDAs and other devices on your network can lead to data theft, introduction of... - [Create Users for Testing Purposes](https://petri.com/create_users_for_testing_purposes/): How can I create a large number of users for testing purposes? If you want to create a large amount... - [Customize the Places Bar in Office XP](https://petri.com/customize_the_places_bar_in_office_xp/): How can I customize the Places Bar in Office XP? In Office 2000 you needed to either edit the registry... - [Windows XP Search Bug](https://petri.com/windows_xp_search_bug/): How can I find a text file containing a text string? I’m sure I have that file but the XP... - [Windows Update Problems - Error 0x80070485](https://petri.com/wu_problems_80070485/): Windows Update Problems – Error 0x80070485 When you use a computer that is running Microsoft Windows 98, Windows 98 Second... - [How a Cisco Switch functions on an Ethernet network](https://petri.com/csc_how_a_cisco_switch_functions_on_an_ethernet_network/): Many of us use switches every day but never really think about how they work. Whether you are studying to... - [Use TFTP to Backup your Cisco Router Configurations](https://petri.com/csc_use_tftp_to_backup_your_cisco_router_configurations/): Just like any important server on your network, Cisco routers and switches need to be periodically backed up. You don’t... - [How to Control Exchange 2007 Attachments through OWA, Part 1](https://petri.com/control-exchange-server-2007-attachments-through-owa-part-one/): As someone who spends a lot of time traveling, I have always thought that OWA was pretty much the greatest... - [Running the Windows 2000 Server Active Directory Migration Tool](https://petri.com/active_directory_migration_tool/): Using the Active Directory Migration Tool to test and configure the migration of NT4 to Active Directory under Windows 2000 Server. - [Add Desktop Icons in Windows Vista](https://petri.com/add_desktop_icons_in_windows_vista/): How can I add the desktop icons back to the Windows Vista desktop? You can, but unlike in Windows XP... - [Administer Exchange 2000 from Windows XP SP1](https://petri.com/administer_exchange_2000_from_windows_xp_sp1/): How can I manage my Exchange 2000 server from a Windows XP SP1 computer? This article describes the steps to... - [Backup Exchange 2000/2003 from a Non-Exchange Server](https://petri.com/backup_exchange_from_non_exchange_server/): How can I backup my Exchange 2000/2003 server from a non-Exchange Windows 2000/2003 server? When you install Exchange 2000/2003 on... - [Bug in the Intelligent Message Filter (IMF) interface](https://petri.com/bug_in_imf_interface/): Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial... - [Change or Add OEM Logo and Information](https://petri.com/change_or_add_oem_logo_and_information/): How can I change or add OEM logo and information on my computer? By default, the General tab (right-click My... - [Change User Password from the Command Prompt](https://petri.com/change_user_password_from_the_command_prompt/): How can I change my user-account password from a Command Prompt? You can change a Windows User Account password that... - [Configure a New Global Catalog](https://petri.com/configure_a_new_global_catalog/): How can I configure a Windows 2000/2003 Server as a Global Catalog? The Global Catalog (GC) contains an entry for... - [Configure Message Security in Outlook 2003](https://petri.com/configure_message_security_in_outlook_2003/): How can I configure e-mail and message security in Outlook 2003? After installing the online Certificate Authority (CA) and after... - [Configure SSL on Your Website with IIS](https://petri.com/configure_ssl_on_your_website_with_iis/): On IIS 6. 0, how do I configure my website to use SSL? By default, web browsing is being performed... - [Control USB Drive Letter Assignment in Windows XP/2003/Vista/2008](https://petri.com/control-usb-drive-letter-assignment-in-windows/): In Windows XP/2003/Vista/2008, when a removable drive (USB flash drive, flash card reader, portable hard drive, etc. ) is attached... - [Creating and Managing Virtual Servers with Windows 2008 Server and Hyper-V](https://petri.com/creating-managing-virtual-servers-windows-server-2008-hyperv/): In the two previous articles in this series (Planning for Windows Server 2008 Virtualization and Implementing Hyper Vision in Windows... - [Customize the Places Bar in Office XP/2003](https://petri.com/customize_the_places_bar_in_office_xp_2003/): How can I customize the Places Bar in Office XP? In Office 2000 you needed to either edit the registry... - [Windows XP SP1 Info](https://petri.com/windows_xp_sp1_info/): What’s SP1? The service pack is a collection of updates for Windows XP. These updates address: Security issues (including the... - [Windows Update Problems - Error 0x800A138F](https://petri.com/wu_problems_800a138f/): Many users of Windows XP, Windows 2000 and Windows Server 2003 have had problems when trying to access the Windows... - [How Router Interfaces get their names on Cisco Routers](https://petri.com/csc_how_router_interfaces_get_their_names_on_cisco_routers/): Why is your router’s Ethernet interface called Ethernet0/0 on one router but Ethernet 3/0 on another router? Where do these... - [What you need to know about BGP routing protocol](https://petri.com/csc_what_is_bgp/): Perhaps you are thinking that you could care less about some routing protocol called BGP. Could it possibly have anything... - [Controlling Access to Message Attachments Through OWA, Part 3](https://petri.com/control-exchange-server-2007-attachments-through-owa-part-three/): In the previous part of this article series, I showed you several different options for controlling how users are allowed... - [Running More than 128 VMs on Windows Server 2008 Hyper-V](https://petri.com/running-more-than-128-vms-on-windows-server-2008-hyper-v/): Microsoft’s Hyper-V is a hypervisor-based technology that is a key feature of Windows Server 2008, and provides a scalable, reliable,... - [How to Partition Your Hard Drive](https://petri.com/partition-hard-drive/): This article details how to create a multiple partitions on any hard drive. These partitions can be used to separate data from the OS or install other operating systems. - [Cleaning Up Exchange 2003 Remnants, Part 2](https://petri.com/cleaning-up-exchange-2003-remnants-part-2/): In the previous article in this series, I talked about the importance of removing the routing group connectors prior to... - [Expanding Virtual Hard Disks with Hyper-V](https://petri.com/expanding-virtual-hard-disks-with-hyper-v/): One of the most frequent questions I see on forums and newsgroups that deal with virtualization is the age-old question... - [IPv6's Role in Windows Server 2008](https://petri.com/introduction-ipv6-part-1/): Windows Server 2008 now includes support for IPv6. This article provides an overview of IPv6 as it applies to Windows Server. - [Domain Controller Virtualization Options](https://petri.com/domain-controller-virtualization-options/): One of the most frequent questions on virtualization forums that deal with server deployments is the question of how should... - [RDP Security – Designing Terminal Server Security](https://petri.com/securing-rdp-remote-desktop-and-terminal-server-connections/): Remotely accessing your servers and workstations through terminal services or RDP is an easy method of doing your job from... - [Synchronize Outlook PST Files on Your Desktop & Notebook PCs](https://petri.com/synchronizing_outlook_on_desktop_and_notebook/): In the past year notebooks have outsold desktop computers for the first time. If you have Outlook both on your... - [Windows XP SP1/SP1a Deployment Info](https://petri.com/windows_xp_sp1-deployment_info/): How do I deploy SP1? Service Pack 1 (SP1) includes installation files that you can extract from the XPsp1. exe... - [A Word about Working with GPOs and Terminal Servers](https://petri.com/a_word_about_working_with_gpos_and_ts/): A word about working with Group Policy Objects (GPOs) and Terminal Servers Recently I had a long conversation with one... - [Recommended 3rd-Party VMware ESX Server Tools](https://petri.com/3rd-party-tools-available-esx-server/): This free article outlines six excellent tools for use with VMware ESX Server installations. Optimization and more. - [5 Critical VMware ESX CLI Network Troubleshooting Commands](https://petri.com/5-critical-vmware-esx-cli-network-commands/): Five essential commands for troubleshooting VMWare ESX based networks. This free article provides a description of each command and its use. - [Five Ways to Administer a VMware ESX Server](https://petri.com/5_ways_to_adminster_esx_server/): This free article outlines five methods for the administration of VMware ESX server installations. - [Using CSVDE and LDIFDE to Export Information from Active Directory Snapshots in Windows Server 2008](https://petri.com/using-csvde-ldifde-export-active-directory-snapshots-windows-server-2008/):   As described in the previous articles in this series, Active Directory snapshots in Windows Server 2008 allow an administrator... - [Understanding Windows Server 2008 Server Core](https://petri.com/understanding-windows-server-2008-server-core/): Introduced in Windows Server 2008, Server Core is a low-footprint way to install your server OS. This article explains why Server Core is such a big deal for system administrators. - [ESXi 4.0 - Installing In "Embedded" Mode](https://petri.com/installing-esxi4-in-embedded-mode/): Full details on VMware ESXi 4.0 and it's enhanced support for installing in "embedded" mode, where the host server does not need any physical disks installed. - [ARP cache: What is it and how can it help you?](https://petri.com/csc_arp_cache/): What is ARP? The Address Resolution Protocol (or ARP) is a very important part of IP networking. ARP is used... - [Windows Vista Training & Tutorials for IT Admins](https://petri.com/vista_tips/): Hundreds of free articles covering Windows Vista for IT Administrators. Deployment, security, tips, and more are covered. - [Tweaking Windows Vista so it can run a bit faster](https://petri.com/tweaking_window_vista_performance/): I decided to write this article after I bought myself a brand new, state of the art, laptop from Dell.... - [Acunetix Web Vulnerability Scanner Version 3.0 Combats Rise in “Google Hacking” Attacks](https://petri.com/acunetix_web_vulnerability_scanner/): Seattle, Washington – November 21, 2005 – Acunetix, a leading security software company focused exclusively on helping enterprises secure their... --- # # Detailed Content ## Pages ### Advertising - Published: 2024-04-12 - Modified: 2024-07-17 - URL: https://petri.com/advertising/ --- ### Cookie Policy - Published: 2023-11-22 - Modified: 2023-11-23 - URL: https://petri.com/cookie-policy/ Last updated on November 23, 2023 This cookie policy (“Policy”) describes what cookies are and how and they’re being used by the petri. com website (“Website” or “Service”) and any of its related products and services (collectively, “Services”). This Policy is a legally binding agreement between you (“User”, “you” or “your”) and BWW Media Group (“Petri”, “BWW Media”, “we”, “us” or “our”). You should read this Policy so you can understand the types of cookies we use, the information we collect using cookies, and how that information is used. It also describes the choices available to you regarding accepting or declining the use of cookies. For further information on how we use, store and keep your personal data secure, see our privacy policy. What are cookies? Cookies are small pieces of data stored in text files that are saved on your computer or other devices when websites are loaded in a browser. They are widely used to remember you and your preferences, either for a single visit (through a “session cookie”) or for multiple repeat visits (using a “persistent cookie”). Session cookies are temporary cookies that are used during the course of your visit to the Website, and they expire when you close the web browser. Persistent cookies are used to remember your preferences within our Website and remain on your desktop or mobile device even after you close your browser or restart your computer. They ensure a consistent and efficient experience for you while visiting the Website and Services. Cookies... --- ### Logitech Summer 2023 - Published: 2023-07-18 - Modified: 2023-09-18 - URL: https://petri.com/giveways/logitech-summer-2023/ Check out how to win some free Logitech Gear from Petri.com/UnplugIT Terms and Conditions of Use Privacy Policy --- ### Giveways - Published: 2023-07-18 - Modified: 2023-07-18 - URL: https://petri.com/giveways/ --- ### Blog - Published: 2023-06-15 - Modified: 2023-06-15 - URL: https://petri.com/blog/ --- ### Homepage > Welcome to the Petri IT Knowledgebase, the trusted resource for IT Professionals for more than 20 years. - Published: 2023-06-15 - Modified: 2024-10-03 - URL: https://petri.com/ --- ### GET-IT Microsoft Teams 1-Day Virtual Conference - Published: 2022-11-10 - Modified: 2022-11-10 - URL: https://petri.com/get-it-microsoft-teams-1-day-virtual-conference/ --- ### Petri.com Feedback - Published: 2022-03-15 - Modified: 2022-03-15 - URL: https://petri.com/petri-feedback/ Use the form below to submit feedback or report a bug on petri. com. --- ### Sponsors - Published: 2022-03-14 - Modified: 2023-09-15 - URL: https://petri.com/sponsors/ --- ### GetSponsor API - Published: 2022-03-14 - Modified: 2022-03-14 - URL: https://petri.com/getsponsor/ --- ### About Petri.com - Published: 2022-03-11 - Modified: 2025-02-20 - URL: https://petri.com/about/ About Petri. com Founded in 1999, for over 25 years Petri. com has been one of the most trusted and respected resources for IT professionals working in Microsoft environments. Known for its deep technical expertise, community-driven insights, and a vast library of how-to guides, industry news, and expert opinions, Petri has remained an essential destination for IT Pros navigating the evolving landscape of enterprise technology. The Petri IT Knowledgebase, is operated by Petri Media LLC, an independent subsidiary of Cayosoft Inc. Petri maintains its editorial independence and commitment to supporting and advancing the IT Pro community. In addition to having an extensive library of how-to, news, and opinion content focused on Microsoft Windows, Windows Server, Active Directory, Entra ID, Microsoft 365, Azure, Exchange, SharePoint, PowerShell, Intune, and dozens of other IT platforms and technologies, the Petri IT Knowledgebase is home to webinars, conferences, whitepapers, and sponsored content to help IT professionals solve daily challenges. Advertising information The Petri IT Knowledgebase website provides advertisers with an effective, cost-efficient vehicle to deliver their marketing messages to system administrators, network administrators, senior IT leaders, and other IT professionals. For more information about the advertising packages available, please contact our advertising department. --- ### Category - Published: 2022-02-22 - Modified: 2022-02-22 - URL: https://petri.com/category/ --- ### Post - Published: 2022-02-22 - Modified: 2022-02-22 - URL: https://petri.com/post/ --- ### Learning Center - Published: 2022-02-22 - Modified: 2023-09-15 - URL: https://petri.com/learning-center/ --- ### Subscribe - Published: 2022-02-22 - Modified: 2022-02-22 - URL: https://petri.com/subscribe/ --- ## ## Posts ### Troubleshooting Group Policy with GPResult: A Complete Guide - Published: 2025-03-07 - Modified: 2025-03-07 - URL: https://petri.com/gpresult/ - Categories: Active Directory (AD) - Tags: Active Directory, Endpoint Management, featured-top-right, group policy Navigating Group Policy issues can be challenging in an Active Directory environment, but the gpresult command is a powerful tool for diagnosing and resolving these problems. This article helps you to effectively use gpresult to troubleshoot Group Policy information, ensuring your system configurations are applied correctly and efficiently. Using GPResult for Basic Troubleshooting Let me explain and demonstrate how to use GPResult for basic troubleshooting with Group Policy. How to generate a report using GPResult You can use Windows Terminal with a command prompt or a PowerShell prompt. We'll start with one of the simplest examples of the command. gpresult /R Using the 'GPResult' command with the '/R' switch - Image Credit: Michael Reinders/Petri. com You can also run it against another user, a remote user, not the user currently logged on, using the /USER switch. Let me show you. gpresult /USER breinders /R Interpreting the output A good deal of diagnostic information and summary data starts the report. Basic, but important details you won't want to miss. You'll find what Group Policy Objects (GPOs) were applied and were not applied under the 'Applied Group Policy Objects' and 'The following GPOs were not applied because they were filtered out' headings. Towards the end of the report, you'll see what Active Directory (AD) security groups the user is a member of. This can help isolate precedence issues with multiple GPOs. You will also see if any WMI filters removed any GPOs from applying to the user. Advanced usage of GPResult I... --- ### Microsoft 365 Apps to Prompt Users for OneDrive Backup - Published: 2025-03-07 - Modified: 2025-03-07 - URL: https://petri.com/microsoft-365-apps-prompt-onedrive-backup/ - Categories: 365 Apps - Tags: Microsoft 365, News - Article Type: News Microsoft 365 apps will soon prompt eligible users to back up their files to OneDrive, ensuring better data security and seamless access across devices. These prompts will start rolling out in Word, Excel, and PowerPoint on Windows PCs next month, encouraging users to enable OneDrive Known Folder Move (KFM) for automatic cloud backups. OneDrive Known Folder Move (KFM) is a feature that lets users automatically move their important folders to Microsoft OneDrive. This feature helps to ensure that all files in these folders are backed up to the cloud and accessible from any device. Administrators can deploy KFM through Group policy or Microsoft Intune. “If your organization still has users who are not enrolled in KFM, the message ("BACK UP THIS DOCUMENT: Share and work with others in this and other files using OneDrive") will encourage them to do it while using familiar desktop apps. After users select the Open OneDrive button, they can select the folders they want to back up in OneDrive,” the company explained on the Microsoft 365 admin center. OneDrive backup prompt (Image Credit: Microsoft) How KFM enhances collaboration and data protection in Microsoft 365 apps Microsoft outlined several benefits of enrolling in KFM, including support for Microsoft 365 Copilot and seamless collaboration. With this feature, users can access their cloud files from any device, ensuring their work stays updated with synchronized changes. Additionally, automatic backups help protect against data loss caused by device failures. Users also gain access to cloud-specific features like AutoSave, which automatically... --- ### Microsoft 365 Business Premium Customers Gain Access to E5 Security Add-On for Advanced Cyber Protection - Published: 2025-03-07 - Modified: 2025-03-07 - URL: https://petri.com/microsoft-365-business-premium-e5-security-add-on/ - Categories: Security - Tags: Microsoft 365 Business Premium, News - Article Type: News Microsoft is expanding its cybersecurity offerings by making Microsoft 365 E5 Security available as an add-on for Microsoft 365 Business Premium customers. This new solution is designed to provide small and medium-sized businesses with robust, cost-effective protection against a wide range of cyber threats. Microsoft 365 Business Premium is a comprehensive solution designed for small and medium-sized businesses. It offers essential productivity tools, advanced security features, and device management capabilities. Security features like Advanced Threat Protection, Information Protection, and Identity Protection help to protect business data. “E5 Security delivers added protection to meet the growing needs of SMBs in a package that is cost-effective. Purchasing E5 Security has 57% savings when compared to the cost of separately purchasing the individual products that are included,” Microsoft explained. Microsoft 365 E5 Security (Image Credit: Microsoft) Which products are included in Microsoft 365 E5 Security? Microsoft 365 E5 Security offers various security tools designed to protect their organization against various cyber threats. Key components included in this plan are Microsoft Entra ID Plan 2, Microsoft Defender for Endpoint Plan 2, Microsoft Defender for Identity, Microsoft Defender for Office 365 Plan 2, and Microsoft Defender for Cloud Apps. First off, Microsoft 365 Business Premium includes Microsoft Entra ID P1 that offers advanced identity and access management capabilities, like risk-based conditional access, identity protection, and governance. It also offers Microsoft Defender for Identity that helps organizations to protect their identities against advanced targeted cyberattacks. In Microsoft 365 Business Premium, Microsoft Defender for Endpoint P2 is... --- ### How Overcomplicated Systems Are Hurting Employee Productivity - Published: 2025-03-06 - Modified: 2025-03-06 - URL: https://petri.com/tech-overload-workplace-productivity/ - Categories: IT Management - Tags: News, Software - Article Type: News Workplace technology is meant to boost productivity, but for many UK employees, it's becoming a major roadblock. A new study reveals that technology overload is leaving workers feeling overwhelmed, frustrated, and even ready to quit. According to Workplace 365, 59% of employees believe that simplifying digital workplaces should be a top IT investment priority. Research shows that 65% of employees in large organizations feel overwhelmed by complex workplace technology. Additionally, 41% want their employers to replace outdated IT systems with more efficient, user-friendly solutions. Nearly 59% of employees would consider quitting if workplace IT systems are too complex. Many are calling for simpler, more integrated solutions to ease the burden of managing multiple applications. Additionally, research shows that 40% of employees don’t even use the software and apps provided by their companies. "There is a strong appetite for change in workplace technology. This isn’t just a productivity issue – it’s a critical challenge for talent retention," explained Erik Nicolai, CEO and co-founder of Workspace 365. "By simplifying the digital workplace and focusing on user-friendly solutions, businesses can unlock the full potential of their workforce and bring the focus back to high value tasks. " The digital skills gap and training needs The UK loses £63 billion annually due to digital skill shortages. A quarter of employees want more training to make full use of workplace tools, while 27% are self-upskilling due to a lack of employer support. Notably, 82% of employees work remotely part-time. However, a third of remote and hybrid... --- ### Microsoft Announces New AI Sales Agents to Enhance Business Automation - Published: 2025-03-06 - Modified: 2025-03-06 - URL: https://petri.com/microsoft-ai-sales-agents/ - Categories: Dynamics 365 - Tags: Dynamics 365, News - Article Type: News Microsoft has announced two new AI-driven agents designed to automate key business functions in Dynamics 365, enhancing sales efficiency and productivity. The company plans to launch Sales Agent and Sales in public preview in May. AI agents are autonomous software programs that leverage artificial intelligence to perform tasks by perceiving their environments, making decisions, and taking actions to achieve specific goals. They operate independently, respond to real-time changes, take proactive steps, and can interact with other agents or humans. Optimizing sales with Sales Agent and Sales Chat Microsoft’s new sales agents are accessible through Microsoft 365 Copilot and Copilot Chat. The sales agents in Microsoft 365 Copilot integrate with data from Microsoft 365, Salesforce, and Dynamics CRM systems. The Sales Agent is designed to enhance the efficiency of sales teams by automating various tasks. It can research potential leads, schedule meetings, and communicate with customers. This tool can also perform some basic sales tasks independently. Similarly, Sales Chat helps sales teams automatically create documents by pulling information from CRM data, pitch decks, meetings, emails, online sources, and more. Users can access information with natural language commands like preparing for upcoming meetings, and identifying at-risk deals. "Our ambition is to empower every employee with a Copilot and transform every business process with agents," explained Jared Spataro, Chief Marketing Officer, AI at Work. "Today we are announcing two new agents that apply this ambition to sales - the revenue engine for every business - and can be used right in the flow... --- ### Microsoft Teams Gets a Major Upgrade: New Chat and Meeting Features You Need to Know - Published: 2025-03-05 - Modified: 2025-03-05 - URL: https://petri.com/microsoft-teams-chat-meeting-features/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft Teams just got a whole lot smarter and more efficient with its latest February updates, introducing intelligent features that enhance chat, meetings, and collaboration. From adding bots to group chats to scheduling messages and improving webinar experiences, here’s a quick look at everything new in Teams this month. New chat & collaboration features Microsoft Teams now allows users to add agents and bots directly to individual and group chats across Windows, macOS, and the web. To add an agent, users will need to click on “Add people, agents and bots” > “Add agents and bots” and then search for the specific agent or bot. Participants in the chat can prompt an agent with an @mention. Microsoft has also introduced a new feature that lets users send messages to channels at a scheduled date and time. This capability should help employees coordinate with team members across different time zones. Moreover, users can now customize where Teams notifications appear on their screens. Microsoft has also enhanced the app installation process by making it easier to discover apps previously used in group chats, channels, meetings, and more. Scheduled message delivery in channels (Image credit: Microsoft) Update to meetings, webinars, and town halls Microsoft is bringing the intelligent meeting recap experiences to webinar and town hall events. However, this feature requires a Microsoft Teams Premium and Microsoft 365 Copilot license. Microsoft has also made it possible for meeting participants to share meeting recaps through links with their colleagues. This new option is available... --- ### Microsoft Unveils Windows 365 Disaster Recovery Plus: Faster Cloud PC Restoration in Just 30 Minutes - Published: 2025-03-05 - Modified: 2025-03-06 - URL: https://petri.com/windows-365-disaster-recovery-plus/ - Categories: Windows 365 - Tags: featured-top-left, News, Windows 365 - Article Type: News Microsoft has launched Windows 365 Disaster Recovery Plus in public preview for enterprise customers. This new offering provides organizations with a faster, more reliable way to restore their Windows 365 Cloud PCs during outages. Microsoft launched Windows 365 cross-region disaster recovery in July last year. This service allows Windows 365 Enterprise customers to ensure business continuity during regional outages. It works by creating temporary copies of Cloud PCs in different regions, including all user data and settings. This service requires an additional license. However, the Windows 365 cross-region disaster recovery service has some limitations. The temporary Cloud PC created during disaster recovery is deleted after the service is deactivated, and data, settings, or applications are not preserved. Moreover, this service aims to restore access to Cloud PCs within four hours for tenants who have up to 50,000 Cloud PCs in that region. With Windows 365 Disaster Recovery Plus, users won’t be able to save their work on the temporary Cloud PC created during disaster recovery. However, this service significantly speeds up restoration, reducing the Recovery Time Objective (RTO) from four hours to just 30 minutes for organizations with up to 50,000 Cloud PCs in a region. This faster recovery minimizes downtime, allowing users to get back to work more quickly during an outage. Configuring Windows 365 Disaster Recovery Plus Administrators will be able to configure the Windows 365 Disaster Recovery Plus service through the Microsoft Intune admin center. To do this, navigate to Devices > Windows 365 > User Settings... --- ### Microsoft Blames ‘Problematic Code Change’ for Recent Microsoft 365 Outage - Published: 2025-03-04 - Modified: 2025-03-04 - URL: https://petri.com/microsoft-365-outage-problematic-code-change/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News This weekend, Microsoft tackled a major outage that left thousands of users unable to access key Microsoft 365 services like Outlook and Teams. The company later confirmed that a faulty code change was to blame for the disruption. What caused the Microsoft 365 outage? According to Downdetector, the outage began at around 4:00 PM ET on March 1, disrupting key services like Microsoft Outlook, Teams, Exchange, Microsoft 365, and Azure. At least 30,000 Outlook users, 24,000 Office 365 users, and 150 Microsoft Teams users were affected. Reports indicate that the majority of impacted customers were in U. S. cities, including New York, Chicago, and Los Angeles. Microsoft identified a potential cause of the outage and reported that Microsoft 365 services were starting to recover. By 7 PM ET, the company confirmed that the issue was resolved by rolling back a faulty code change. "We've identified a potential cause of impact and have reverted the suspected code to alleviate impact. We’re monitoring telemetry to confirm recovery," Microsoft explained. "Following our reversion of the problematic code change, we’ve monitored service telemetry and worked with previously impacted users to confirm that service is restored. Microsoft 365 faces more downtime and login issues However, some iOS users continued to face issues logging into their Microsoft 365 accounts. Despite the fix, these users had to delete and then reinstall the app on their devices to restore access. On Monday, Microsoft faced another issue with Microsoft 365 services, causing downtime for many customers. This affected various services,... --- ### ClickFix Phishing Campaign Deploys Havoc Malware Through Microsoft SharePoint - Published: 2025-03-04 - Modified: 2025-03-04 - URL: https://petri.com/clickfix-phishing-campaign-havoc-sharepoint/ - Categories: SharePoint - Tags: News, SharePoint - Article Type: News Cybersecurity researchers have discovered a sophisticated phishing campaign targeting Microsoft SharePoint accounts, using a deceptive technique called ClickFix. This attack exploits user trust to execute malicious commands, deploying the powerful Havoc command-and-control (C2) framework to seize full control over compromised systems. The ClickFix cyberattack technique involves tricking users into executing malicious PowerShell commands by presenting them with a fake error message delivered via phishing email. The user is instructed to copy and paste the command, which then downloads and runs malware, allowing hackers to steal data and maintain control over the system. The Havoc Framework is an open-source post-exploitation command and control (C2) framework designed for cybersecurity professionals and researchers. It lets users manage compromised systems and execute various post-exploitation tasks. Havoc supports features like payload generation, HTTP/HTTPS listeners, and various built-in post exploitation commands. How does the phishing campaign exploit Havoc C2 to take over systems? The ClickFix campaign was first discovered by researchers from FortiGuard Labs. The attackers leverage the Microsoft Graph API within SharePoint to hide their malicious command and control (C2) communications. They send phishing emails that instruct the recipient to review a restricted notice that requires them to click on an attached HTML document (Documents. html). Once clicked, the HTML document shows a fake error message that asks users to update the DNS cache manually. Users click on the “How to fix” button to automatically copy a PowerShell command to the Windows clipboard and paste it into their systems. This command is designed to launch another... --- ### What Is Windows Autopilot? - Published: 2025-03-03 - Modified: 2025-03-03 - URL: https://petri.com/what-is-windows-autopilot/ - Categories: Endpoint Management, Windows - Tags: Endpoint Management, featured-top-right, Microsoft 365, Windows 10, Windows 11, Windows Autopilot - Article Type: Overview Windows Autopilot is a cloud-based deployment and provisioning service that simplifies setting up new devices. It ensures devices are configured with the right security policies, settings, and applications the moment the user logs in for the first time. With Windows Autopilot, IT professionals can: Automate device enrollment into Microsoft Intune (or any supported Mobile Device Management (MDM) platform) Seamlessly configure Windows devices, such as Windows 10 and Windows 11 PCs Reduce manual setup efforts for end users. The end of device imaging For decades, device provisioning and deployment entailed an IT engineer applying a 'gold image' to a device, through either Microsoft Configuration Manager, Windows Deployment Services, USB media, or other methods. Whilst this ensured a consistent 'image' was applied to each device, this 'point-in-time' configuration was soon overlayed or overwritten by configurations or setting applied by Group Policy or an MDM. In contrast, Windows Autopilot relies on a 'vanilla' or lightweight base image being in place before company-specific configuration is applied. This approach means that an IT engineer is no longer required to apply an image, as the lightweight (also known as OEM Optimtized) imaged device can be delivered straight to the end user. Requirements for Windows Autopilot To use Windows Autopilot, you need: Supported Windows versions Windows 11 (Pro, Pro Education, Pro for Workstations, Enterprise, Education) Windows 10 (same editions as above) Licensing requirements Windows Autopilot is included in most Microsoft 365 plans, such as: Microsoft 365 Business Premium Microsoft 365 E3/E5 Microsoft 365 F1/F3 Intune for Education Enterprise... --- ### SharePoint Online Now Supports Sensitivity Labels for User-Defined Permissions - Published: 2025-03-03 - Modified: 2025-03-03 - URL: https://petri.com/sharepoint-online-labels-user-defined-permissions/ - Categories: SharePoint Online - Tags: News, SharePoint Online - Article Type: News Microsoft is enhancing data security in SharePoint Online by introducing support for sensitivity labels with user-defined permissions, giving organizations greater control over sensitive content. This new feature is currently available in public preview for commercial customers. What are Microsoft Purview sensitivity labels? Microsoft Purview sensitivity labels are tools designed to help organizations classify and protect sensitive information. Users can apply these labels to documents and emails in order to ensure that sensitive data is handled appropriately. Sensitivity labels work across various platforms and devices, including Windows, macOS, iOS, and Android. User-defined permissions in Microsoft Purview allow users to specify who can access their content and what actions they can perform when a sensitivity label is applied. This feature allows users to collaborate securely by defining permissions based on their specific needs. This new encryption configuration refers to the “Let users assign permissions when they apply the label” setting, which allows users to specify who can access the content and what permissions they have when they apply a sensitivity label to a document or email. Additionally, a checkbox in Office apps (like Word, PowerPoint, and Excel) prompts users to set these permissions when applying a sensitivity label. “When a document is labeled with user-defined permissions and uploaded to SharePoint or OneDrive, these services can now process the document so that it can be opened and edited in Office for the web, the label name is displayed in the Sensitivity column, and the encrypted file is returned in search results for the... --- ### Microsoft to Retire Skype in May – Here’s What it Means for Businesses - Published: 2025-03-03 - Modified: 2025-03-03 - URL: https://petri.com/microsoft-retire-skype-may/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365, News, skype - Article Type: News Microsoft is set to retire Skype for consumers on May 5, 2025. To ensure a smooth transition, the company is urging users to migrate to the free version of Microsoft Teams, its modern alternative for messaging and calls. Microsoft says that existing Skype users will be able to log into Microsoft Teams with their Skype credentials. Users will notice that their contacts, message history, and call logs will appear automatically in the Teams app. “The way we communicate has evolved significantly over the years,” said Jeff Teper, President for Microsoft 365 Collaborative Apps + Platforms. “From instant messaging to video calls, technology has continuously transformed how we connect with each other. In order to streamline our free consumer communications offerings so we can more easily adapt to customer needs, we will be retiring Skype in May 2025 to focus on Microsoft Teams, our modern communications and collaboration hub. ” https://youtu. be/FK-WjbsVgB4 Why Microsoft is Phasing Out Skype? Skype was originally launched in beta in late 2003, and the app quickly gained popularity due to its free voice calls. It was acquired by eBay in 2005 and then by Microsoft for $8. 5 billion in 2011. Despite undergoing multiple redesigns, Skype failed to compete with Microsoft Teams and Zoom, particularly during the pandemic. Microsoft Teams has seen significant growth in its user base, with many organizations and individuals already adopting it as their primary communication tool. This makes it more practical for Microsoft to invest in Teams rather than maintaining two separate platforms. End... --- ### First Ring Daily: Skype Gets Zune'd - Published: 2025-02-28 - Modified: 2025-02-28 - URL: https://petri.com/first-ring-daily-skype-gets-zuned/ - Categories: Microsoft, Microsoft 365 - Tags: First Ring Daily, Microsoft, Microsoft Teams, News, skype - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to retire Skype in May 2025, with the company encouraging users to transition to the free version of Microsoft Teams. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to retire Skype in May 2025, with the company encouraging users to transition to the free version of Microsoft Teams. --- ### What’s new in Microsoft Intune - February 2025 - Published: 2025-02-28 - Modified: 2025-02-28 - URL: https://petri.com/whats-new-microsoft-intune-february-2025/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has released its latest monthly recap, highlighting new features and enhancements for Microsoft Intune. This update brings significant improvements to the Managed Home Screen (MHS) application, enhancing device management and user experience. The Managed Home Screen (MHS) app is an Android tool used in corporate environments to control and customize the user interface on company-owned devices. It helps to ensure that only approved apps and settings are accessible. This app enables IT administrators to manage and secure devices by providing a streamlined and restricted user experience. The latest update allows Microsoft Intune admins to set up shared devices to use a QR code authentication method for signing into the Managed Home Screen (MHS) app. Microsoft Intune admins can also allow users to choose a device ringtone under Managed Home Screen settings. Managed Home Screen sign-in options now include “Scan QR Code. ” (Image Credit: Microsoft) Administrators can now view more comprehensive details about devices. In addition to the device's make, model, serial number, and IP addresses, they can also see the Android OS version, security patch version, and the last time the device was rebooted. This information helps in better managing and troubleshooting devices. Device query for multiple devices generally available in Microsoft Intune Microsoft has also announced the general availability of the device query for multiple Windows devices feature in Microsoft Intune. This means that IT admins can now run queries across multiple devices simultaneously. Specifically, they can efficiently evaluate device configurations across a large number of devices by... --- ### Microsoft Adds Password Protection for PDFs in OneDrive Web App - Published: 2025-02-27 - Modified: 2025-02-27 - URL: https://petri.com/microsoft-onedrive-web-app-password-protection/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is set to release a new update for the OneDrive web app that will allow users to secure their PDF files with User and Owner Passwords for enhanced protection and control. This new feature ensures that sensitive documents remain accessible only to authorized users while preventing unauthorized modifications or misuse. Currently, the OneDrive web app doesn’t offer password protection for PDF files. This means that anyone with access can open, edit, or share them freely. Without password protection, sensitive information could end up in the wrong hands, allowing unauthorized users to copy, print, or modify the content. With this update, OneDrive web users can protect their PDF files in two ways: User Password and Owner Password. A User Password restricts access, ensuring only authorized users can open the file. Meanwhile, an Owner Password gives the file owner control over actions like printing, copying, and editing. “The User Password is required to open and view a PDF file. The Owner Password is used to set operation permissions on a PDF file, such as allow printing, copying, or modifying the content. This enhancement provides an additional layer of security for sensitive documents, ensuring that only authorized individuals can access the content,” Microsoft explained. How to use the password protection feature in the OneDrive web app To use the password protection feature, Microsoft OneDrive users will need to follow the steps mentioned below: Open the PDF file, navigate to the upper left toolbar and then click the Set password button. Head over... --- ### The Untapped Potential of IoT Edge Devices in Enhancing Data Privacy - Published: 2025-02-27 - Modified: 2025-02-27 - URL: https://petri.com/iot-edge-data-privacy/ - Categories: Internet of Things (IoT) - Tags: featured-top-right, IoT, Privacy - Article Type: Opinion In an era dominated by data breaches and rising concerns over digital privacy, the Internet of Things (IoT) often gets a bad rap. Every smart thermostat, connected fridge, and wearable device adds another node in a sprawling network that seems more vulnerable than ever. Yet, beneath this web of perceived risks lies a surprising ally in the fight for data privacy: IoT edge devices. The edge, often misunderstood or overshadowed by cloud computing's dominance, presents a paradigm shift in how data is processed and protected. Rather than transmitting every byte of information to centralized servers, edge devices handle data processing locally, dramatically reducing the surface area for potential breaches. This shift not only enhances performance but fortifies privacy at its core. Redefining privacy at the edge Traditional IoT frameworks rely heavily on cloud computing, where data collected from devices is sent to centralized servers for analysis and storage. This centralization creates a lucrative target for cybercriminals—one breach could expose millions of users' sensitive data. Edge computing flips that model by enabling data processing closer to the source. Instead of streaming data directly to the cloud, devices analyze and respond locally. This minimizes exposure, as sensitive data doesn’t leave the device or travel through as few intermediaries as possible. As an example, let’s consider smart home security systems that use edge processing to analyze video feeds in real time without sending raw footage to the cloud. Not only does this reduce latency, but it also ensures that sensitive visual data... --- ### Microsoft 365 Copilot Gets New Admin Feedback Tool for Better Data Control - Published: 2025-02-27 - Modified: 2025-02-27 - URL: https://petri.com/microsoft-365-copilot-gets-new-admin-feedback-tool-for-better-data-control/ - Categories: Microsoft 365, Microsoft Copilot - Tags: Microsoft 365, News - Article Type: News Microsoft has introduced a new feature that allows administrators to submit Microsoft 365 Copilot feedback on behalf of users while ensuring data privacy. This tool allows admins to review chat logs, remove sensitive details, and provide valuable insights to improve Copilot’s performance. Microsoft emphasized the role administrators play in helping organizations adopt and maximize the benefits of Microsoft 365 Copilot, which enhances collaboration, content creation, and communication. However, to reach its full potential, Copilot relies on user input and expertise. By providing feedback, teams can ensure Copilot aligns with their specific needs and integrates seamlessly into their workflows. This new Copilot diagnostic logs feature enables administrators to submit feedback on behalf of C-suite leaders and users. They can collect and review chat logs, remove sensitive information, and then submit feedback. “With the new Copilot diagnostic logs feature, admins can choose what data they share with Microsoft when submitting feedback on Copilot responses and interactions for themselves or internal parties, ensuring sensitive and confidential information is protected,” Microsoft explained. Microsoft 365 Copilot feedback (Image Credit: Microsoft) How does the Microsoft 365 Copilot diagnostic logs feature work? Sign in to the Microsoft 365 admin center. On the left navigation panel, click Copilot and then select Settings > Copilot diagnostic logs. To collect the chat logs, enter up to five user emails, the Microsoft 365 Copilot product related to feedback, the number of conversations to include in the logs, and a date range within 30 days. Click the Next button and then review... --- ### Massive Password Spray Attack Campaign Targets Microsoft 365 Accounts - Published: 2025-02-26 - Modified: 2025-02-26 - URL: https://petri.com/password-spray-attack-microsoft-365-accounts/ - Categories: Microsoft 365 - Tags: cybersecurity, Microsoft 365, News - Article Type: News Cybersecurity researchers have uncovered a large-scale password spray attack exploiting outdated Basic authentication protections in Microsoft 365 accounts. Operated by a Chinese-affiliated group, the botnet harnesses over 130,000 compromised devices to infiltrate organizations and steal sensitive data. What is a password spray attack? A password spray attack is a type of brute force attack where a threat actor tries a single common password against several different accounts. Traditional password spray attacks often lead to account lockouts that occur when multiple failed login attempts are made on a single account. Account lockouts can alert security teams to investigate any suspicious activities. According to the SecurityScorecard researchers, the attack is considered stealthy because the password spraying attempts are recorded in non-interactive sign-in logs, which are often overlooked by security teams. The non-interactive sign-in logs are logs that record sign-in attempts that don't involve direct user interaction, such as automated processes or background services. Essentially, the threat actors exploit non-interactive sign-ins to successfully compromise Microsoft 365 accounts. The hackers can then steal sensitive data, disrupt business operations, as well as move laterally within the targeted organization. The researchers observed that this tactic has been used to breach multiple Microsoft 365 tenants worldwide. Microsoft plans to permanently remove support for Basic authentication with Client Submission (SMTP AUTH) in September 2025. However, the company warned that these cyberattacks pose an immediate threat. How to mitigate Microsoft 365 password spray attacks? To mitigate these password spray attacks, the researchers advise that administrators should take several security... --- ### Azure Key Vault: Securely Store and Manage Your Secrets - Published: 2025-02-26 - Modified: 2025-02-26 - URL: https://petri.com/azure-key-vault/ - Categories: Microsoft Azure, Security - Tags: Azure Key Vault, cloud computing, featured-top-right, Microsoft Azure, Security - Article Type: Overview Microsoft Azure Key Vault provides a centralized, secure, and scalable solution to store and manage cryptographic keys and secrets. With built-in integration across the Azure ecosystem, Key Vault simplifies access control, reduces security risks, and helps organizations comply with regulatory standards. What is Azure Key Vault? Azure Key Vault is a cloud-based service that enables secure storage and management of cryptographic keys, secrets, and certificates. Here’s a quick breakdown: Keys: Used for encryption, decryption, and signing operations, such as RSA or elliptic curve keys. Secrets: Store sensitive information like passwords, API keys, or connection strings. Certificates: Manage TLS/SSL certificates for secure communication and authentication. Key Vault helps organizations enforce access control, monitor activity logs, and maintain compliance, ensuring sensitive data is protected at all times. Key capabilities Azure Key Vault offers multiple features designed to streamline security and management of sensitive data. These capabilities provide a foundation for protecting secrets, managing cryptographic keys, and enforcing access control policies. Secrets Management – Secure storage for tokens, passwords, API keys, and other sensitive information. Key Management – Generate, store, and manage encryption keys used for data encryption. Certificate Management – Provision, manage, and renew TLS/SSL certificates. Access Control – Enforce authentication and authorization policies using Azure Role-Based Access Control (RBAC) and Entra ID. Logging and Monitoring – Integrate with Azure Monitor and Log Analytics to track access and usage logs. HSM Support – Utilize hardware security modules (HSMs) for additional security for cryptographic keys. API Integration – Seamlessly work with Azure Key Vault APIs... --- ### Microsoft to Eliminate Reactivation Fees for Archived SharePoint Sites - Published: 2025-02-26 - Modified: 2025-02-26 - URL: https://petri.com/microsoft-reactivation-fees-archived-sharepoint-sites/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is making a cost-saving change for organizations using SharePoint Online by eliminating the reactivation fee for archived sites in the Microsoft 365 Archive. This update will roll out globally to all commercial customers by the end of March. What is Microsoft 365 Archive? Microsoft 365 Archive launched in May 2024 to help organizations manage and store inactive SharePoint sites and data efficiently. This feature moves inactive data to a cold storage tier, which significantly reduces storage costs while maintaining searchability, security, and compliance standards. It preserves all metadata and permissions to ensure that achieved data can be easily reactivated when needed. Administrators can manage Microsoft 365 Archive through the SharePoint admin center. Microsoft currently charges a reactivation fee of $0. 60 per GB to move archived SharePoint sites from cold storage to hot storage. Reactivating a site that has been archived for more than a week typically takes around 24 hours. This fee was introduced to cover the costs of handling large data volumes and to promote efficient storage use. What are the key changes? Starting March 31, Microsoft will remove the reactivation fee for SharePoint sites and content stored in the Microsoft 365 Archive. Organizations will only pay a monthly storage fee of $0. 05 per GB, but only if their archived data exceeds their unused SharePoint Online storage quota. This means some organizations may use the service at no additional cost, depending on their available storage. “There will be a restriction against re-archiving content for four months after it... --- ### Microsoft Defender for Cloud Gets Data and AI Security Dashboard for Proactive Threat Management - Published: 2025-02-25 - Modified: 2025-02-25 - URL: https://petri.com/microsoft-defender-for-cloud-data-and-ai-security-dashboard/ - Categories: Cloud Computing - Tags: Microsoft Defender for Cloud, News - Article Type: News Microsoft has launched a new Data and AI security dashboard in public preview for its Defender for Cloud solution. This new dashboard offers a centralized platform to help organizations monitor and manage data and AI resources, along with their associated risks and protection status. “The dashboard highlights critical security issues, resources needing attention, and internet-exposed resources, enabling proactive risk mitigation. Additionally, it provides insights into sensitive data within data resources and AI workloads, strengthening the overall security posture,” Microsoft explained. Data and AI security overview (Image Credit: Microsoft) What are the benefits of the Data and AI security dashboard? Microsoft highlighted various benefits of this new Data and AI security dashboard for Defender for Cloud customers. It enables IT admins to view the most critical data and AI security issues within an organization. This feature helps to make informed decisions and take proactive measures to address security risks. The new Data and AI security dashboard provides a centralized hub to help IT admins view all their data and AI resources. Moreover, it offers detailed insights into data storage locations and resource types. This dashboard also helps to evaluate how well their data and AI resources are protected against threats. With this new dashboard, administrators can view attack paths, recommendations, and data threat analysis. They can also take actions to reduce sophisticated threats and enhance the overall security posture of their organization. Lastly, the security explorer helps to discover valuable insights about their data and AI resources. This new dashboard also... --- ### Fix Windows Update - The Ultimate Guide - Published: 2025-02-25 - Modified: 2025-02-25 - URL: https://petri.com/fix-windows-update/ - Categories: Windows, Windows Server - Tags: featured-top-right, Windows 10, Windows 11, Windows Server, Windows Update - Article Type: How To Struggling with how to fix Windows Update errors, stuck downloads, or failed installations? You're not alone. This comprehensive guide will walk you through step-by-step solutions to troubleshoot and fix Windows Update problems. Whether you're dealing with error codes, slow updates, or a completely broken update system, this guide is sure to assist you in your recovery. Basic issues and fixes related to Windows Update Let us first cover the most basic and common issues you'll discover when troubleshooting Windows Update error messages. The first one is relatively easy. Seriously - Restart your Windows PC Yes, restart your computer. You know the old adage - "If all else fails, reboot. " But, in this case, if it's quite convenient, rebooting Windows can resolve an issue with the Windows Update subsystem. Because the service is so fundamental to Windows itself, there are a great number of services, temporary files, etc. that make up that infrastructure. So, instead of restarting this service, and deleting these files... just reboot. Run the Windows Update Troubleshooter If you're still experiencing issues with Windows Update, run the Windows Update Troubleshooter. Click the Start button, and click on Settings. In the System category, scroll down and click on the 'Troubleshoot' item. Click 'Other troubleshooters'. Next to the 'Windows Update' item, click the Run button. Fix Windows Update using the Windows Update Troubleshooter - Image Credit: Michael Reinders/Petri. com You'll be able to click through a mini-wizard to identify your issue and hopefully be presented with a resolution or steps... --- ### Exchange Online Introduces New Tenant Outbound Email Limits - How It Affects Your Organization - Published: 2025-02-25 - Modified: 2025-02-25 - URL: https://petri.com/exchange-online-tenant-outbound-email-limits/ - Categories: Exchange Online - Tags: Exchange Online, featured-top-left, News - Article Type: News Microsoft has rolled out new tenant-level outbound email limits, known as the Tenant External Recipient Rate Limit (TERRL), for Exchange Online customers. This update is part of a broader plan to enforce external recipient rate (ERR) limits for individual mailboxes starting in October 2025. In Exchange Online, Tenant External Recipient Rate Limit (TERRL) is a policy that limits the number of emails a tenant can send to external recipients within 24 hours. External recipients are those whose email addresses are outside the tenant’s accepted domains. According to Microsoft, the new limits will be determined by the number of email licenses an organization has purchased. However, the limits are calculated differently for organizations with trial licenses. Microsoft has already enforced these limits for organizations with only trial licenses or a single email license. “Daily outbound email volume and quota are tracked using a 24-hour sliding window. If you exceed your limit, subsequent outbound messages will be blocked until your volume of external recipients from the last 24 hours drops below the limit. This could take minutes or up to 24 hours, depending on your email sending pattern,” the Exchange team explained. Sample limits for tenants with various license counts (Image Credit: Microsoft) How Exchange Online outbound email limits differ by license type Microsoft stated that organizations with trial licenses can send emails to up to 5,000 external recipients within 24 hours. Meanwhile, for customers with purchased email licenses (Exchange Online or Exchange Online Protection), the daily outbound email limit depends on... --- ### OneDrive for Business to Remove EEEU Sharing Permission to Strengthen Data Security - Published: 2025-02-24 - Modified: 2025-02-24 - URL: https://petri.com/onedrive-for-business-eeeu-sharing-permission/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is tightening security measures in OneDrive for Business by removing the EEEU sharing permission, a setting that could inadvertently expose sensitive data to internal users. This change aims to enhance data protection and prevent unauthorized access within organizations. The EEEU sharing permission in OneDrive is a setting that allows all internal users within an organization to access certain content while excluding external users. This permission enables users to manage access to content in Microsoft OneDrive and SharePoint. Essentially, managing access with EEEU can be difficult for administrators, which makes it harder to track who has permission to view specific content. This lack of control increases the risk of unauthorized individuals accessing sensitive data. Microsoft discourages the use of the EEEU setting to enhance security and compliance. Currently, the EEEU permission may be unintentionally applied to the root site and default document library in Microsoft OneDrive. Consequently, apps, processes, or users within an organization could gain access to restricted or confidential information. This unintended access poses significant security and privacy risks. “After the EEEU permission is removed, these apps, processes, and users will lose access to the content from the affected OneDrive accounts. Users, processes, and apps that were granted direct permissions to specific files and folders of a OneDrive account will not be impacted and will continue to retain their access,” the company explained in a message on the Microsoft 365 Admin Center. When does EEEU sharing permission removal begin? Starting April 10, Microsoft will automatically scan OneDrive accounts... --- ### Microsoft Patches Major Power Pages Flaw That Could Expose Sensitive Data - Published: 2025-02-24 - Modified: 2025-02-24 - URL: https://petri.com/microsoft-patches-power-pages-flaw/ - Categories: Power Platform - Tags: featured-top-left, News, Security - Article Type: News Microsoft has patched a critical Power Pages vulnerability that was actively exploited by cybercriminals, potentially exposing sensitive data. The company is urging customers to inspect their websites for any signs of compromise and take immediate security measures. Microsoft introduced Power Pages in 2022 and it’s a low-code platform that allows users to create, host, and manage secure business websites. It’s part of the Power Platform and is designed to be user-friendly, even for those with minimal coding experience. This service offers ready-made templates for various purposes, including registration, scheduling, and applications. The high-severity vulnerability, tracked as CVE-2025-24989, is a critical improper access control flaw in Microsoft's Power Pages service. It allows attackers to escalate privileges, bypass user registration controls, and gain unauthorized access to restricted data or modify sensitive files. First discovered by a Microsoft researcher, the flaw has been assigned a CVSS score of 8. 2 out of 10. Key recommendations for Power Pages users Microsoft has discovered that cybercriminals are actively exploiting this security flaw. Fortunately, the company has already patched the vulnerability in the Power Pages service. Microsoft says that affected customers have been notified and given instructions on how to check their websites for signs of exploitation. Furthermore, Microsoft recommends that customers should protect their Power Pages environment by requiring users to enable multi-factor authentication. They should also use the tools available in the Power Pages Admin Center to continuously monitor their website for any suspicious activity. Last year, Microsoft discovered a misconfigured implementation of Power Pages... --- ### Exchange Online to Enforce Stricter Controls on EWS Access — Here’s What’s Changing - Published: 2025-02-21 - Modified: 2025-02-21 - URL: https://petri.com/exchange-online-estricter-controls-ews-access/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft is preparing to retire Exchange Web Services (EWS) for Exchange Online, with all EWS requests set to be blocked starting October 1, 2026. The company is also implementing a major update to the EWSEnabled tenant-wide switch, changing how organizations manage EWS access. What is Exchange Web Services (EWS)? Exchange Web Services (EWS) is an API that allows applications to access and manage mailbox items such as emails, calendar events, and contacts on Microsoft Exchange servers. It leverages SOAP-based XML messages over HTTP to communicate with the server, which enables cross-platform integration. As of today, administrators can set the EWSEnabled flag for both the entire organization and individual users. If the user-level flag is set to true, it overrides the organization-level setting allowing EWS requests even if the organization-level flag is set to false. If either level is set to Null, the default is to allow EWS requests. However, Microsoft warned that this approach of setting the EWSEnabled flag at both the organization and user levels can create inconsistencies and security issues. Administrators may find it difficult to enforce the same policies throughout the entire organization, leading to potential gaps in security and policy application. How does this new behavior affect organizations? To resolve this problem, EWS will require both the user-level and organization-level EWSEnabled flags to be set to true. This change gives IT admins enhanced control over EWS access and helps to ensure consistent policy enforcement across the organization. This new behavior will begin rolling out to commercial... --- ### First Ring Daily: Microsoft's Quantum Computing Breakthrough - Published: 2025-02-21 - Modified: 2025-02-21 - URL: https://petri.com/first-ring-daily-microsofts-quantum-computing-breakthrough/ - Categories: Hardware, Microsoft - Tags: First Ring Daily, Microsoft, News, Quantum - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Majorana 1, Microsoft's first quantum chip which required the company to create an entirely new state of matter. --- ### Microsoft 365 Backup - Why Do It and What Are My Options? - Published: 2025-02-21 - Modified: 2025-02-21 - URL: https://petri.com/microsoft-365-backup-why-do-it-and-what-are-my-options/ - Categories: Backup & Storage, Microsoft 365 - Tags: Backup, cloud computing, Disaster Recovery, featured-top-right, Microsoft 365 - Article Type: Overview Microsoft 365 is one of today’s most widely used SaaS (Software-as -a-Service) applications. However, Microsoft 365 backup is a topic that often misunderstood. Many businesses mistakenly believe that because Microsoft 365 is a cloud-based product that there’s no need for any type of backups. They mistakenly think that Microsoft will handle all of that and there is no need to do anything to protect cloud data – the cloud provider will take care of everything. However, that definitely isn’t the case. While Microsoft is responsible for the service and availability of the Microsoft 365 applications, Microsoft’s responsibility ends there. The task of protecting your Microsoft 365 data falls squarely on the customer. Microsoft 365 built-in data protection Microsoft 365 offers a basic level of data protection. The duration for which Microsoft 365 protects data depends on several factors including: the specific service configuration settings and any retention policies. The Microsoft 365 recycle bin The recycle bin is the primary data protection tool for Microsoft 365. It allows you to undelete a given item for a set period of time. The recycle bin contains emails, documents and files, as well as Microsoft Teams chat messages, calendars, and contacts. The default retention period is 30 days. The maximum retention time for the Microsoft 365 recycle bin is 93 days. You can only restore one item at a time and items are permanently deleted following the retention period. SharePoint and OneDrive also offer site versioning that enables you to restore items for... --- ### PSA: Microsoft to Sunset WSUS Driver Synchronization, Urges Cloud Migration - Published: 2025-02-20 - Modified: 2025-02-20 - URL: https://petri.com/microsoft-sunset-wsus-driver-synchronization/ - Categories: Windows - Tags: featured-top-left, News, WSUS - Article Type: News Microsoft is once again alerting administrators that Windows Server Update Services (WSUS) driver synchronization will be deprecated in April. The company issued a 60-day warning in the Windows Message Center earlier this week, emphasizing the need to adopt alternative update management solutions. What is WSUS driver synchronization? Windows Server Update Services (WSUS) driver synchronization is a process that allows the server to download and manage driver updates from Microsoft. It helps to ensure that client devices receive the necessary driver updates to maintain performance, security, as well as compatibility. WSUS connects to Microsoft’s update servers, retrieves metadata and available driver updates, and stores them for deployment across the network. Administrators can approve, decline, or schedule these updates based on organizational needs. Microsoft highlighted the findings of a 2024 survey regarding WSUS driver synchronization. The company found that more than one-third of the surveyed organizations or IT administrators relied on WSUS to manage driver updates. The majority of the respondents had started moving to other update management methods like Microsoft Intune, Windows Update for Business (WUfB), or third-party tools. However, 8 percent of respondents were concerned about the impact of WSUS driver synchronization being discontinued. Their worries were likely driven by uncertainty over managing driver updates without WSUS, possible compatibility challenges, and the difficulties of transitioning to alternative solutions. How IT administrators can prepare for this change? On April 18, Microsoft is deprecating WSUS driver synchronization to streamline update management and shift toward cloud-based solutions. WSUS driver synchronization often led to... --- ### Microsoft Teams Adds Name Pronunciation to Profile Cards - Published: 2025-02-20 - Modified: 2025-02-20 - URL: https://petri.com/microsoft-teams-name-pronunciation-profile-cards/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Mispronouncing a colleague’s name can be awkward, but Microsoft Teams is making it easier to get it right with its new Name Pronunciation feature. This new tool allows users to record and share the correct pronunciation of their names on profile cards. With just one click, Microsoft Teams users can listen to how their colleagues’ names are pronounced. This feature is especially helpful in diverse workplaces where some names may be unfamiliar or tricky to pronounce correctly. “This new feature helps promote diversity by giving working colleagues relevant information about each other. Names are a crucial part of a person’s identity. The incorrect pronunciation of a person’s name can lead to anxiety and offense in some cases. Correctly pronouncing a person’s name helps to create an inclusive environment,” Microsoft explained. Name Pronunciation (Image Credit: Microsoft) How to Add Name Pronunciation in Microsoft Teams In Microsoft Teams, users can record and share the pronunciation of their name by following these steps: Click the profile photo in the upper right corner of the screen and then select the name to open the profile card. Select the microphone icon on the profile card to begin recording the pronunciation of the name. Make sure that each word is pronounced distinctly so that the listener can understand easily. Finally, save the recording. After recording their name pronunciation, users' colleagues can easily listen to it by clicking the speaker icon on their profile card. Microsoft Teams stores these recordings in each user’s mailbox, keeping them available... --- ### Common Windows Image Backup Errors and How to Fix Them - Published: 2025-02-19 - Modified: 2025-02-19 - URL: https://petri.com/windows-image-backup-errors/ - Categories: Windows - Tags: Backup, Disaster Recovery, featured-top-right, Windows 10, Windows 11 - Article Type: How To This guide explores some of the most frequent and persistent Windows Image Backup errors and associated error codes, actively highlighting practical solutions for enterprise environments. As is often the case with ensuring stable recovery processes as organizational infrastructure scales and adapts, backups don’t always go smoothly. Many routine backups can indeed fail, meaning IT professionals may encounter a wealth of error codes, each signaling a specific type of issue. Let’s look at some of the most common Windows Image Backup error codes and how to solve them. Critical Windows Image Backup errors, codes, and solutionsStorage and space issues Error 0x807800A1 OR 0x80780081 - Insufficient Storage Space Occurs when the destination drive lacks adequate free space Solution: Ensure the destination drive has more storage space than that of the source data. Pro tip: Implement monitoring to alert when backup destinations approach capacity thresholds. Error 0x81000033 - Destination Unavailable or Moved Typically occurs when network destinations are adjusted or moved Solution: Check network connectivity and permissions, and verify the UNC path accessibility from the backup source. Pro tip: Consider configuring backup retry logic in enterprise environments VSS-related errors Error 0x80780166 OR 0x800423F3 - VSS Service Failures This occurs when there is an issue with the VSS, which Windows uses for backup operations. Solution: Open Windows Terminal tab as an administrator Reset VSS system: vssadmin reset Clear existing shadows: vssadmin delete shadows /all Restart the VSS service: Get-Service VSS | Restart-Service Verify no conflicting backup operations are running Delete all shadow copies... --- ### New Outlook for Windows to Add Built-In Newsletters for Seamless Email Communication - Published: 2025-02-19 - Modified: 2025-02-19 - URL: https://petri.com/new-outlook-for-windows-newsletters/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft will add support for Newsletters to its new Outlook for Windows and the Outlook web app. This new feature will enable users to quickly create, distribute, and track internal email campaigns—all within their inbox. With this update, Microsoft Outlook users will be able to easily create and send professional email newsletters with images, videos, and interactive content. This feature will also offer built-in tracking tools to let users monitor reader engagement and interactions. “Readers can discover and subscribe to newsletters that interest them using the new Explore page in the Outlook Newsletters module, accessible in the left-side navigation menu. The new module also includes pages for users to view their drafts,” the company explained on the Microsoft 365 admin center. Outlook Newsletters (Image Credit: Microsoft) How to enable Newsletters in Microsoft Outlook Microsoft will begin rolling out Outlook Newsletters as an opt-in preview for commercial customers later this month. IT admins must manually enable the feature for their organization, with access controlled through the OwaMailboxPolicy settings. By default, the OutlookNewslettersAccessLevel property will be set to Undefined. If enterprise admins don’t configure it, the setting will automatically default to NoAccess during the Preview phase. Admins will be able to adjust this property to ReadWrite, ReadOnly, or NoAccess using the Set-OwaMailboxPolicy command in the Exchange Management Shell. With ReadWrite access, users will be able to create and edit content in Outlook Newsletters. Meanwhile, the ReadOnly access will let users view content created by others. Last week, Microsoft released a new update... --- ### Microsoft Warns of New XCSSET macOS Malware Variant with Advanced Stealth Tactics - Published: 2025-02-19 - Modified: 2025-02-19 - URL: https://petri.com/microsoft-new-xcsset-macos-malware-variant/ - Categories: Security - Tags: News, Secuirty - Article Type: News Microsoft has discovered a new variant of XCSSET, a sophisticated macOS malware family that has targeted users since at least 2020. The company has observed that this malware is now deploying advanced tactics to specifically target Apple developers in ongoing attacks. The XCSSET malware was first spotted by security firm Trend Micro back in 2020. This malware initially spread through infected Xcode projects, which is a free development tool provided by Apple. This malware allows attackers to exploit zero-day vulnerabilities and has been used to backdoor developers’ devices. XCSSET can inject JavaScript backdoors into websites, read data from Safari browsers, take screenshots, encrypt files, as well as exfiltrate data to a system controlled by attackers. It can also steal credentials from various apps, including Telegram, Chrome, Skype, Evernote, Opera, WeChat, Notes, and Contacts. Improvements to the XCSSET macOS malware According to the Microsoft Threat Intelligence team, this new variant is the first known significant update to the XCSSET malware since 2022. These new features make it easier for threat actors to spread the macOS malware and hide malicious activities. Better code obfuscation Compared to the previous versions, both methods used for encoding payloads and the number of encoding iterations are significantly more randomized. This new XCSSET variant also uses Base64 to encode module names, which makes it harder to detect the malware's modules. New infection methods This new XCSSET variant leverages two new mechanisms to maintain persistence on compromised devices. The first "zshrc" method involves creating a file named ~/. zshrc_aliases... --- ### Microsoft Fixes Boot Errors in Windows Server 2025 with Latest Update - Published: 2025-02-18 - Modified: 2025-02-18 - URL: https://petri.com/microsoft-fixes-boot-errors-windows-server-2025/ - Categories: Windows Server 2025 - Tags: featured-top-left, News, Windows Server - Article Type: News Microsoft has released an update to fix a bug that caused "boot device inaccessible" errors on some Windows Server 2025 devices. This issue specifically affected servers using iSCSI (Internet Small Computer Systems Interface) technology. The iSCI protocol in Windows Server enables the connection of storage devices over an IP network. It operates at the block level and transmits SCSI commands over TCP/IP, which leverages existing Ethernet infrastructure. This makes it a cost-effective solution for virtualization and clustering environments. iSCSI also ensures secure data transfers through CHAP authentication and IPsec encryption. “This is observed on servers operating under NDIS Poll Mode booting from an iSCSI LUN. Under such configuration, the server will experience the error during startup, after the installation of Windows Server 2025 is completed,” Microsoft explained on the Windows Release Health Dashboard. How to resolve Windows Server 2025 boot errors Microsoft has recently rolled out the KB5051987 update to address this issue on affected Windows Server machines. The company recommends customers to install the latest updates as soon as possible to prevent disruptions and ensure system stability. Microsoft announced the general availability of Windows Server 2025 alongside System Center 2025 in November 2025. The latest version brings new security features for Active Directory and adds new techniques to block attacks against server message block (SMB). Microsoft has also introduced a couple of new capabilities for cloud users, including hotpatching for hybrid and on-prem clouds. However, this feature requires an additional subscription fee. Microsoft has also deprecated a couple of... --- ### Microsoft to Phase Out Event Alerts in Purview Audit - How to Prepare for the Change - Published: 2025-02-18 - Modified: 2025-02-18 - URL: https://petri.com/microsoft-phase-out-event-alerts-purview-audit/ - Categories: Active Directory (AD) - Tags: Microsoft Purview, News - Article Type: News Microsoft is preparing to retire the event alerts feature in its Purview Audit solution. The company announced on the Microsoft 365 Admin Center that this change will take effect in March 2025. Microsoft Purview Audit is an auditing solution designed to support organizations in conducting forensic and compliance investigations. It provides high-bandwidth access to audit logs, allowing efficient data retrieval and allows for customized retention policies to meet regulatory requirements. In the Microsoft Purview Audit solution, the event alerts feature enables administrators to be notified through email when specific events occur within their tenants. They can create alert policies to monitor specific activities such as file access, user logins, and changes to permissions. These alerts help IT admins quickly respond to potential security issues and policy violations. Starting on March 24, any alert policies previously set up using the Microsoft Purview Audit solution will stop functioning. These policies will no longer trigger email notifications when the specified event occurs. Microsoft will retire support for the following cmdlets: Get-AuditConfigurationRule, New-AuditConfigurationRule, Remove-AuditConfigurationRule, and Set-AuditConfigurationRule. Additionally, administrators will no longer be able to create new alert policies using the Audit solution. Last year, Microsoft removed this functionality from the Purview Portal’s Audit UI. “Please note that the event alerts capability within Purview DLP will remain unaffected by this change. Any alert policies created through Purview DLP will continue to generate alerts as expected. We recommend that you use the alerts functionality within DLP, which is where we will continue to invest our development... --- ### What is Microsoft Configuration Manager? - Published: 2025-02-17 - Modified: 2025-02-17 - URL: https://petri.com/what-is-microsoft-configuration-manager/ - Categories: Endpoint Management - Tags: Configuration Manager, Endpoint Management, featured-top-right - Article Type: Overview Microsoft Configuration Manager first appeared in 1994 as Microsoft Systems Management Server (SMS), offering tools to centrally manage software distribution and inventory across Windows networks. But is it still the same product today? What is Microsoft Configuration Manager? At its core, Configuration Manager helps organizations deploy applications and apply configuration and security updates to both laptops, desktops and servers. Whilst mobile devices, such as iOS and Android, are supported in a limited fashion, Microsoft Intune is more suited to this type of device management.   Key features Configuration Manager is one of the most feature-packed products Microsoft offers. Each feature area includes prerequisites that may affect how you design and implement your management hierarchy. Co-management Co-management bridges your existing on-premises deployment with Microsoft Intune. This setup allows you to concurrently manage Windows devices through both Configuration Manager and Intune. It unlocks cloud-based features (like Conditional Access) while preserving your current on-premises infrastructure. If you’re not ready to fully migrate, co-management is a practical way to start leveraging Intune’s cloud benefits alongside Configuration Manager. Cloud-attached management Features like the Cloud Management Gateway and Microsoft Entra ID integration let you manage Internet-based clients without complex on-premises network configurations that extend your site servers to the internet. Devices remain under your watch whether they’re on the corporate network or working remotely, ensuring consistent policy enforcement and compliance. Microsoft Configuration Manager Cloud Management Gateway (Image Credit: Microsoft Learn) Application management Configuration Manager supports a broad range of application deployment scenarios. Administrators can deliver and update... --- ### Russian Hackers Use Device Code Phishing to Hijack Microsoft 365 Accounts - Published: 2025-02-17 - Modified: 2025-02-17 - URL: https://petri.com/russian-hackers-device-code-phishing-steal-emails/ - Categories: Security - Tags: cyberattacks, featured-top-left, News - Article Type: News Microsoft has issued an alert about a sophisticated phishing campaign by Russian hackers, leveraging a deceptive device code authentication trick to hijack Microsoft 365 accounts. These cybercriminals gain unauthorized access to sensitive data across key government and business sectors worldwide. What is device code phishing? Device code phishing is a sophisticated phishing technique that leverages the device code authentication flow, which is commonly used for logging printers, smart TVs, and other similar devices that don’t support standard web browsers. The device displays an alphabetic or alphanumeric device code and a link associated with a user account. The user opens the link on a computer, smartphone, or another device to authenticate. The device code phishing technique lets the attacker trick the user into entering the device code on a malicious link in order to capture the authentication tokens. These tokens allow attackers to gain unauthorized access to the user’s account and any associated data or services. How does device code phishing work? According to the Microsoft Threat Intelligence team, the Russian threat actors have been using device code phishing to hijack Microsoft 365 accounts since at least late August 2023. The hacking group first poses as high-ranking officials to begin a conversation on a messaging app like Microsoft Teams, Signal, and WhatsApp. The attacker first builds trust with the target and then sends a phishing email with a fake Microsoft Teams meeting invite. When the victim clicks the link, they are taken to a legitimate Microsoft login page and asked to... --- ### First Ring Daily: They Won - Published: 2025-02-14 - Modified: 2025-02-14 - URL: https://petri.com/first-ring-daily-they-won/ - Categories: Hardware, Microsoft, Mobile - Tags: First Ring Daily, Google, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss phone upgrade cycles, Microsoft offloading its HoloLens US military contract to another company, and how the upcoming Microsoft Build and Google I/O developer conferences are about to overlap each other in May. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss smartphone upgrade cycles, Microsoft offloading its HoloLens US military contract to another company, and how the upcoming Microsoft Build and Google I/O developer conferences are about to overlap each other in May. --- ### Azure Blob Storage: The IT Pro’s Guide to Secure, Scalable Cloud Object Storage - Published: 2025-02-14 - Modified: 2025-02-14 - URL: https://petri.com/azure-blob-storage/ - Categories: Microsoft Azure - Tags: cloud computing, featured-top-right, Microsoft Azure, storage - Article Type: Overview What is Azure Blob Storage? Microsoft Azure Blob Storage provides a scalable and efficient way to store massive amounts of unstructured data, making it an essential component for IT professionals managing cloud storage solutions. Whether you need to store binary data, backup files, log files, or handle large-scale workloads, Azure Blob Storage delivers flexible storage tiers to optimize costs and performance. With robust support for disks, resources, and Azure-hosted services, it is the backbone of many enterprise cloud strategies for storing unstructured data. Azure Blob Storage is similar to Amazon S3. Blob storage vs file storage Blob storage is better suited to storing unstructured data, like data lakes, websites, backup and restore, archives, and big data analytics etc. File storage is better for organizing and managing structured data, like users' files and folders, in cases where you want to also provide shared access. Azure Blob Storage pricing Current pricing for Azure Blob Storage per gigabyte (GB) by storage tier: Data storage prices pay-as-you-goPremiumHotCoolColdArchiveFirst 50 terabyte (TB)/month$0. 15 per GB$0. 018 per GB$0. 01 per GB$0. 0036 per GB$0. 002 per GBNext 450 TB/month$0. 15 per GB$0. 0173 per GB$0. 01 per GB$0. 0036 per GB$0. 002 per GBOver 500 TB/month$0. 15 per GB$0. 0166 per GB$0. 01 per GB$0. 0036 per GB$0. 002 per GBAzure Blob Storage pricing per gigabyte What are containers in Azure Blob Storage? Azure Blob Storage is organized using a hierarchical structure to help you manage your data. Containers are the top-level of the hierarchical structure and they provide a logical grouping of your blob data. Inside each container, you can optionally create folders to further organize data. Key features of containers in Azure Blob... --- ### Latest Update Force Installs New Outlook Client on Windows 10 PCs - Published: 2025-02-14 - Modified: 2025-02-14 - URL: https://petri.com/windows-10-update-force-installs-new-outlook/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft released a major cumulative update for Windows 10 versions 22H2 and 21H2 this week. The KB5051974 update delivers important security fixes and automatically installs the new Outlook client on Windows 10 PCs. Microsoft announced the general availability of the new web-based Outlook for Windows app in August 2024. While Microsoft highlights its advantages, many users still prefer the classic Outlook desktop app. The new Outlook has limited offline support and lacks compatibility with on-premises Exchange accounts and COM add-ins, requiring organizations to switch to web add-ins. Some users have also reported that the new Outlook desktop app runs slowly on Windows PCs. Additionally, messages sent through the app sometimes fail to be sent properly and get stuck in the draft folder. How to block forced installation of new Outlook app on Windows 10 The KB5051974 update, which is mandatory for Windows 10 PCs, includes critical security fixes and automatically installs the new Outlook for Windows app. While skipping the update is not recommended, users can prevent the forced installation of the new Outlook client using a registry hack. Open the Start menu, search for Registry Editor, and launch it. In the Registry Editor, navigate to the following location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WindowsUpdate\Orchestrator\UScheduler_Oobe Right-click the UScheduler_Oobe key in the left pane, navigate to New > String Value, and then name the value BlockedOobeUpdaters. Finally, double-click the BlockedOobeUpdaters value and type in the Value data field. Click Ok to apply the changes and then close Registry Editor. Microsoft advises that users who have... --- ### Microsoft SIEM + XDR Gets New Unified Device Timeline Experience - Published: 2025-02-13 - Modified: 2025-02-13 - URL: https://petri.com/microsoft-siem-xdr-unified-device-timeline/ - Categories: Security - Tags: News, Security - Article Type: News Microsoft has introduced a new Unified Device Timeline experience in its SIEM + XDR solution. This new feature offers administrators a centralized hub to track device activity across Microsoft Sentinel and Defender XDR. “This feature streamlines security investigations by enabling analysts to access all relevant device activities in one place, reducing the need to switch between platforms and accelerating incident response times. By bringing these activities together, we are delivering a more powerful experience, empowering customers to investigate and respond to threats with unmatched context and efficiency,” Microsoft explained. Device Timeline in Microsoft Sentinel (Image Credit: Microsoft) What are the benefits of the Unified Device Timeline experience? Microsoft has consolidated the timeline experiences from Microsoft Sentinel and Defender XDR. It provides a unified view of notifications about potential security issues as well as all actions performed on devices. This new feature also eliminates the need to toggle between different platforms. With this release, IT admins can track and view reports on specific types of network activity. This feature collects data from Microsoft Sentinel, which collects information from various third-party network security vendors. It highlights instances where network traffic has been stopped or rejected, which can indicate potential security threats. These logs should make it easier for security teams to quickly identify and respond to potential threats. New features coming soon Going forward, Microsoft plans to add support for incorporating device Anomalies into the Unified Device Timeline. This feature will allow security analysts to view suspicious activities that might indicate a... --- ### Microsoft Outlook Now Lets Users Minimize Email Drafts on Android and iOS - Published: 2025-02-13 - Modified: 2025-02-13 - URL: https://petri.com/microsoft-outlook-minimize-email-drafts-android-ios/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has introduced a new feature in the Outlook mobile app that allows users to minimize email drafts for seamless multitasking. This feature is currently available for beta testers in Outlook for Android and iOS. Currently, when users are composing an email in Outlook and need to check something else in the app (like another email or calendar event), users have to save the draft and then reopen it from the draft folder later. With this update, the Outlook mobile app now helps users compose emails more quickly by allowing them to minimize their email drafts. This allows users to check their calendar or other emails and return to their drafts without searching the Draft folder. “You can easily switch between composing an email and referencing other emails or calendar events without losing your progress,” the Outlook team explained. “You will save time and reduce mental overhead with the ability to quickly return to email drafts when needed. ” Minimize button (Image Credit: Microsoft) How to minimize email drafts in Outlook for Android and iOS To use the new feature, open a new or existing email draft in the Outlook app on Android or iOS. Tap the minimize button in the top-right corner while composing an email. When ready, simply go to the Mail or Calendar tab of the app and select the draft to continue writing. This new minimize button is currently available to Android Beta users running version 4. 2447. 0 or newer of the app, and iOS TestFlight users running... --- ### What's New in Microsoft Intune Suite - February 2025 - Published: 2025-02-12 - Modified: 2025-02-12 - URL: https://petri.com/whats-new-microsoft-intune-suite-february-2025/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has introduced several new features and enhancements to its Intune Suite. Launched in March 2023, Microsoft Intune Suite is a comprehensive solution that seamlessly integrates advanced endpoint management and security tools into a single, unified platform. Starting this month, organizations can use Security Copilot to enhance the security of their Endpoint Privilege Manager (EPM) by identifying and investigating potential risks associated with file elevation requests. Microsoft says that EPM support is currently available as an add-on for its Intune Suite. “With this capability, while reviewing the properties of a file elevation request, you'll now find the option to Analyze with Copilot. Use of this option directs Security Copilot to use the files hash in a prompt Microsoft Defender Threat Intelligence to evaluate the file potential indicators of compromise so you can then make a more informed decision to either approve or deny that file elevation request,” Microsoft explained. Enterprise admins will be able to view the following results in the Intune admin center: The files’ reputation: This indicates how trustworthy a file is based on its behavior and history. Information about the trust of the publisher: This provides details about the entity that created or distributed the file. The risk score for the user requesting the file elevation: This score assesses the potential risks associated with the user who is asking for elevated privileges. The risk score of the device from which the elevation was submitted: This evaluates the security status of the device being used to request elevation... . --- ### Using Diskpart: A Guide to Windows Disk Management - Published: 2025-02-12 - Modified: 2025-02-18 - URL: https://petri.com/using-diskpart/ - Categories: Disk Management, Windows, Windows Server - Tags: disk management, featured-top-right, Windows, Windows Server - Article Type: How To Diskpart is a powerful command-line utility in Windows that allows users to manage their hard drive, disks, partitions, and volumes with precision and control. This article covers key commands, syntax, and best practices to help you manage your storage devices effectively on any version of Windows. How to access Diskpart Diskpart is accessed from the command line. You can open Windows Terminal from the Start Menu and use either a command prompt tab or a Windows PowerShell tab. The command will work in both shells. Opening the Windows Terminal program from the Start Menu - Image Credit: Michael Reinders/Petri. com To get started, type in 'diskpart' and press Enter. Starting the DISKPART shell - Image Credit: Michael Reinders/Petri. com At this point, you're at the DISKPART prompt in the local computer's disk subsystem. How does Diskpart work? (Key commands) Understanding how Diskpart commands work is key. One word = "focus. " There are three steps to using Diskpart. The first step is selecting a particular volume, hard drive partitions, or disks. Then you mark the item as active. Finally, you perform actions on said item. How to list all disks using Diskpart For instance, we can first type 'list disk' to list the state of all disks in my Windows 11 PC. This will display both an online disk and an offline disk. Using Diskpart 'list disk' to view all logical hard drives - Image Credit: Michael Reinders/Petri. com We see our current disks. I have a single 'virtual' disk, 'Disk 0'. It... --- ### February 2025 Patch Tuesday Updates Fix 2 Zero-Day Vulnerabilities - Published: 2025-02-12 - Modified: 2025-02-13 - URL: https://petri.com/february-2025-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: featured-top-left, News, Windows 10, Windows 11 - Article Type: News Microsoft has released the February 2025 Patch Tuesday updates for Windows 11 and Windows 10. This month, there are 57 new patches to address vulnerabilities in Windows, Office, Azure, Visual Studio, and Remote Desktop Services. On the quality and experience front, Microsoft has released a couple of new features and improvements for Windows 11 versions 24H2 and 23H2. Meanwhile, the KB5051974 update automatically installs the new Outlook for Windows app on PCs running Windows 10 version 22H2. 57 vulnerabilities fixed in the February 2025 Patch Tuesday updates Among the 57 vulnerabilities fixed this month, three are rated critical, 53 are rated Important, and one of them is rated Moderate in severity. Notably, two of these security flaws are publicly known and two of them are already being exploited in the wild. Here are the most important critical vulnerabilities Microsoft fixed this month: CVE-2025-21418: This is an actively exploited privilege escalation vulnerability in the Windows Ancillary Function Driver for WinSock. This security flaw allows a hacker to execute a specifically crafted program to gain system-level privileges on Windows 11, Windows 10, and Windows Server machines. CVE-2025-21391: This is a privilege escalation vulnerability in Windows Storage with a CVSS score of 7. 1. It could allow a local attacker to delete files from the target system, potentially disrupting applications that rely on this data. CVE-2025-21194: This is a 7. 1-rated security feature bypass vulnerability in Microsoft Surface. The flaw could enable cybercriminals to compromise the hypervisor and the secure kernel on Surface devices. CVE-2025-21377:... --- ### Microsoft Teams Gets AI-Powered Super Resolution Feature to Enhance Video Call Quality - Published: 2025-02-11 - Modified: 2025-02-11 - URL: https://petri.com/microsoft-teams-super-resolution/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft Teams has introduced a new Super Resolution feature that leverages AI to enhance the quality of video calls. This new capability is currently available in public preview for Snapdragon X-based Copilot PCs. Microsoft Teams may send lower-quality videos to maintain smooth meetings in poor network conditions. Traditionally, the app would attempt to improve these low-resolution videos by upscaling them, which involves enlarging the video to fit a higher-resolution display. However, conventional upscaling often results in blurry images, as it simply stretches the video without adding any new details. How does the Super Resolution feature work in Microsoft Teams Microsoft first announced the Super Resolution feature at its Ignite 2024 conference. This feature uses the local NPU chip to artificially scale up the resolution of a video stream without compromising the overall picture quality. “If bandwidth is limited, Teams will automatically enable Super Resolution for videos that do not meet the receiver’s viewing sizes. The effectiveness of SR depends on the level of upscaling needed, being more noticeable in severely degraded videos than those needing slight upscaling. Thus, the feature's performance varies with bandwidth constraints,” Microsoft explained. Super Resolution (Image Credit: Microsoft) The Super Resolution feature is enabled by default on Copilot+ PCs when connected to a power supply. To save power, Microsoft Teams disables this feature when the device is unplugged. Users can also turn it off manually using the toggle button in the “Video settings. ” The Super Resolution feature is currently available only to commercial customers using the... --- ### Microsoft Releases Final Exchange Server 2019 Update with New Features and Security Enhancements - Published: 2025-02-11 - Modified: 2025-02-11 - URL: https://petri.com/microsoft-final-exchange-server-2019-update/ - Categories: Exchange Server - Tags: Exchange Server, featured-top-left, News - Article Type: News Microsoft has announced the release of the 2025 H2 Cumulative Update (CU15) for Exchange Server 2019. This is the final major update before this Exchange Server version reaches its end-of-support deadline in October 2025. Microsoft emphasized that CU15 includes new features, security enhancements, bug fixes, and all previous Security Updates (SUs). Previously, administrators had to test Exchange Server updates in a separate environment before deploying them in production. However, not all organizations have test environments, and this process can delay the rollout of critical updates. The latest cumulative update introduces server-side support for Feature Flighting, a new capability that will be available in the Exchange Server Subscription Edition. This feature allows administrators to test and gradually roll out new updates within their organizations. Feature Flighting is designed as an optional cloud-based service for on-premises Exchange customers. It uses the Office Config Service (OCS) to connect to Microsoft’s servers and retrieve information about new features and updates. “With Feature Flighting, admins can deploy updates immediately and control when a flighted feature is enabled in their environment. Feature Flighting also enables Microsoft to disable a flighted feature in case a significant issue is discovered after the update containing the flighted feature was released,” the Exchange team explained. Microsoft notes that Feature Flighting is enabled by default for Exchange Server customers. Administrators will be able to configure or disable this capability by following the steps mentioned on this support page. Support for Windows Server 2025 Starting with CU15, IT admins can install and... --- ### Microsoft Intune: Set Up iOS Web-Based Device Enrollment - Published: 2025-02-10 - Modified: 2025-02-10 - URL: https://petri.com/microsoft-intune-ios-web-based-device-enrollment/ - Categories: Endpoint Management - Tags: featured-top-right, iOS, Microsoft Intune - Article Type: How To The introduction of iOS web-based device enrollment marked a significant step forward in simplifying how personal devices are managed by Microsoft Intune. As one of two methods now available for enrolling personal iOS devices, the other being the traditional Intune Company Portal app that is obtained from the Apple app store, web-based enrollment offers a faster, more user-friendly experience. Web-based enrollment is a streamlined entry point, allowing users to enroll their devices directly through a browser, bypassing the need to download the Company Portal app to kick things off. Combined with Just-In-Time (JIT) registration, web-based enrollment minimizes sign-ins during setup through the use of Single Sign-On (SSO). Here’s a guide to configuring and implementing web-based enrollment for your organization. Note: I’m not typically an advocate for enrolling personal devices, as Intune App Protection policies often provide a more secure and less intrusive alternative, after all - this is a user's own device! By managing only the app and its data, App Protection offers a good level of security without requiring full device enrollment. That said, for scenarios where device management is necessary, web-based enrollment provides a much-improved experience. Configuring Just-In-Time (JIT) Registration JIT registration improves the overall user experience by reducing authentication prompts and enabling seamless SSO across supported apps. It leverages the Apple SSO extension for tighter compliance integration with Microsoft and non-Microsoft apps. Follow these steps to configure JIT registration: Navigate to Configuration Profiles Open the Microsoft Intune admin center and go to Devices > iOS/iPadOS > Configuration profiles. Create a New Profile... --- ### Hackers Exploit Publicly Leaked ASP.NET Keys for Code Injection Attacks — Are You at Risk? - Published: 2025-02-10 - Modified: 2025-02-10 - URL: https://petri.com/hackers-asp-net-keys-code-injection-attacks/ - Categories: Security - Tags: featured-top-left, Malware, News - Article Type: News Microsoft has disclosed that threat actors are exploiting publicly exposed ASP. NET machine keys to execute ViewState code injection attacks. The company warns that web developers are inadvertently putting their organizations at risk by using these keys from online repositories and documentation in their applications. In December, Microsoft first observed the attacks that involved an unknown attacker who used a static ASP. NET machine key to deploy the Godzilla post-exploitation framework. This tool is used by cybercriminals to perform malicious activities after gaining initial access to a system. How does the ViewState code injection attack work? The attackers exploit ViewState if they manage to obtain the ASP. NET machine keys. ViewState is a method that is used by ASP. NET to preserve the state of a webpage between postbacks. The hackers can leverage these ASP. NET keys to create a ViewState that contains malicious code. This specially crafted ViewState can then be sent to the server through a POST request. When the server processes the malicious ViewState, it runs the embedded code, giving hackers control over the system. This can result in unauthorized access, data theft, or further exploitation of the targeted IIS web server. "Once it's processed by ASP. NET Runtime on the targeted server, the ViewState is decrypted and validated successfully because the right keys are used," the Microsoft Threat Intelligence team explained. "The malicious code is then loaded into the worker process memory and executed, providing the threat actor remote code execution capabilities on the target IIS Web server. " ViewState code injection attack... --- ### New Policy to Let IT Admins Manage Windows 11 Updates During OOBE - Published: 2025-02-10 - Modified: 2025-02-10 - URL: https://petri.com/windows-11-updates-oobe-policy/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has announced a major change that will give organizations greater control over how updates are installed on new Windows 11 devices. A new policy will soon allow administrators to decide whether quality updates are applied during the out-of-box experience (OOBE). Previously, users had to manually check for updates through Windows Update after setting up a new Windows 11 device. With Windows 11 version 24H2, Windows Setup now checks for updates multiple times during the setup process. This new approach ensures that the PC is fully updated before the customer begins using it, but it does result in a longer setup time. How does the new IT policy for Windows 11 updates work? Starting in mid-2025, Microsoft will introduce a new policy that will allow commercial customers to disable the installation of cumulative updates during OOBE. Administrators will be able to configure this new setting through Windows Autopilot and Windows Autopilot device preparation. This policy will also let IT admins sync existing update settings, including deferrals and pause policies, across managed PCs. They can deploy it using MDM solutions like Microsoft Intune or traditional Group Policy methods. “This change will help ensure devices in your organization are secure out of the box by getting the quality update at the end of their out-of-box experience. It can take an average of 20 minutes though the download and installation time will depend on the size of the update, the user's network conditions, and the hardware capabilities of the device,” Microsoft explained. Microsoft... --- ### Microsoft Teams to Get New Facebook-Inspired Storyline Feature to Boost Employee Engagement - Published: 2025-02-07 - Modified: 2025-02-07 - URL: https://petri.com/microsoft-teams-storyline-feature/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has started testing a new Facebook-style Storyline news feed internally within Microsoft Teams. According to a new report from The Verge, this feature will allow users to share updates, post news, and engage with colleagues by liking and sharing content. “Storyline enables leaders to communicate directly with their organizations, delivering personalized updates to amplify, clarify, and humanize leadership communication. Employees can share their perspectives, celebrate achievements, propose innovative ideas, and engage in meaningful conversations with colleagues across their organizations,” Microsoft explained. Microsoft first announced this new Storyline feature for Teams at its Ignite conference in November 2024. This new feature builds on a similar tool in Viva Engage, a social networking platform aimed at improving employee engagement and communication within organizations. https://www. youtube. com/watch? v=YlBMEgEwBLE How does the Storyline feature work in Microsoft Teams? In Microsoft Teams, users will be able to view Storyline notifications under the Activity section in the left navigation pane. Clicking on a notification will open a new pane on the right, which will offer a dedicated space for conversations. Users will also be able to access their colleagues' Storyline pages directly from one-on-one Teams chats. Additionally, Microsoft Teams users will have a tab in their personal chat that will provide access to their Storyline page. From there, users will be able to create new posts and announcements, view existing ones, and manage their followers. Users will also have access to Storyline profile analytics, though this feature requires a Viva Engage premium license. Storyline (Image Credit: Microsoft) The... --- ### What is Azure RBAC? - Published: 2025-02-07 - Modified: 2025-02-26 - URL: https://petri.com/what-is-azure-rbac/ - Categories: Microsoft Azure - Tags: featured-top-right, Microsoft Azure, RBAC - Article Type: Overview Azure Role-Based Access Control (RBAC) is Microsoft Azure's primary authorization system for managing access to cloud resources. By assigning specific permissions to users, service principals, and managed identities, Azure RBAC ensures that access is both controlled and aligned with the principle of least privilege. Whether you’re securing a single subscription or governing a hybrid cloud deployment, Azure RBAC is indispensable for scalable and secure cloud management. The fundamentals of Azure RBAC Azure RBAC operates on a role-based model, which grants permissions based on the roles assigned to identities. These roles are applied at various scopes to control actions on a set of resources. Key components of RBAC Security principals: Identities such as users, service principals, managed identities, and Microsoft Entra ID groups that require access. Role definitions: Built-in roles, like User Access Administrator or Virtual Machine Contributor, that provide predefined permissions. Custom roles can also be created to address the specific needs of your organization. Scopes: The levels where permissions apply, such as management groups, subscriptions, resource groups, or individual resources. Role assignments: The linkage between a security principal, a role definition, and a scope. Assigning roles in Azure RBAC through the Azure Portal interface. (Image Credit: Tim Warner/Petri. com) Built-in and custom roles in Microsoft Azure Azure RBAC offers over 70 built-in roles to handle common access management scenarios: Owner: Full access to all actions, including assigning roles to others. User Access Administrator: Grants the ability to manage RBAC role assignments without controlling resource configurations. Virtual Machine Contributor: Provides permissions to manage virtual... --- ### Microsoft Releases PowerShell Script to Counter BlackLotus UEFI Bootkit Threat - Published: 2025-02-07 - Modified: 2025-02-07 - URL: https://petri.com/powershell-script-blacklotus-uefi-bootkit/ - Categories: PowerShell, Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released a new PowerShell script that enables administrators to update bootable media with the "Windows UEFI CA 2023" certificate to boost system security. This update specifically targets vulnerabilities exploited by the BlackLotus UEFI bootkit, which is a sophisticated threat capable of bypassing Secure Boot protections. What is BlackLotus UEFI? BlackLotus UEFI is a bootkit designed to target Windows systems by exploiting vulnerabilities in the Unified Extensible Firmware Interface (UEFI). It can bypass Secure Boot and gain control over the boot process of the operating system. BlackLotus can disable Windows security features such as Microsoft Defender Antivirus, BitLocker, and Hypervisor-Protected Code Integrity (HVCI). It operates at the kernel level, which makes it harder for traditional antivirus software to remove it from Windows machines. Microsoft released security updates to address the Secure Boot bypass vulnerability (tracked as CVE-2023-24932) back in March 2023 and July 2024. Secure Boot is a security feature that ensures only trusted software runs during the boot process to protect Windows PCs against malicious software such as rootkits. These security updates block certain vulnerable boot managers that BlackLotus could exploit. However, the fix is not enabled by default, because applying it incorrectly or facing compatibility issues could prevent the operating system from starting properly. To address this issue, Microsoft is rolling out the update gradually to give Windows administrators time to test it in enterprise environments before full enforcement by 2026. This update will add the "Windows UEFI CA 2023" certificate to the UEFI Secure Boot Signature... --- ### Microsoft Extends Testing for Final Exchange Server 2019 Update - What it Means for Businesses - Published: 2025-02-06 - Modified: 2025-02-06 - URL: https://petri.com/microsoft-testing-final-exchange-server-2019-update/ - Categories: Exchange Server - Tags: Exchange Server 2019, featured-top-left, News - Article Type: News Microsoft has yet to release the final cumulative update (CU15) for Exchange Server 2019 due to technical issues. The company has outlined some of the reasons for the delay, but it has not provided a new expected release date for the update. In December, Microsoft announced plans to push the final cumulative update for Exchange Server 2019 into 2025. The company acknowledged feedback from customers who indicated that December was not an ideal time for Cumulative Updates. The company noted that CU15 (also known as the H1 2025 CU) was initially expected to arrive in early January 2025. However, Microsoft has confirmed a further delay due to the complexity of new features and customer-reported issues from Microsoft’s Technology Adoption Program (TAP). Development of a new Exchange Server 2019 CU15 build To address these issues, Microsoft is developing a new version of CU15, which requires additional testing to ensure quality and reliability. However, this extended testing has further delayed the release to the general public. "We have committed to Exchange Server CU15 being the 'code equivalent' to Exchange Subscription Edition (SE) RTM release (other than updates released in interim, as well as changed branding and EULA). Therefore, CU15 is the last chance that we have if we want to release any Exchange features before Exchange SE CU1. CU15 does include new features, which added complexity to this release," the Exchange team explained. End of support coming soon for Exchange Server 2019 Microsoft will end support for Exchange Server 2019 on October... --- ### New Microsoft Teams PowerShell Setting Enables Federation with Specific Trial Tenants - Published: 2025-02-05 - Modified: 2025-02-05 - URL: https://petri.com/microsoft-teams-powershell-federation-trial-tenants/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft has introduced a new PowerShell setting within Tenant Federation Configuration, offering administrators enhanced flexibility to tailor their federation posture. The company announced on the Micrososoft 365 admin center that this setting is now available to commercial users through Microsoft Teams PowerShell. Last year, Microsoft added a new PowerShell setting (called -ExternalAccessWithTrialTenants) to the Set-CsTenantFederationConfiguration cmdlet. This setting allows IT administrators to block external access with tenants with trail-only licenses. A trail-only tenant is a tenant that uses trail subscriptions and has no purchased licenses. These tenants can be used to evaluate Microsoft Teams features before committing to a full license. “Now, we’re introducing a new Tenant federation setting -AllowedTrialTenantDomains to enable more granularity in defining the federation posture for your organization. This setting will allow you to keep federation with trial-only tenants blocked, while explicitly allowing federation with trial tenant domains you trust and collaborate with for valid business needs,” Microsoft explained. How to manage federation with specific trial-only tenants in Microsoft Teams Microsoft clarifies that the new AllowedTrialTenantDomains setting is exclusively available in PowerShell. Administrators can enable external communication with specific trial-only tenants using the following PowerShell command: $list = New-Object Collections. Generic. ListString $list. add("contoso. com") $list. add("fabrikam. com") Set-CsTenantFederationConfiguration -AllowedTrialTenantDomains $list Currently, any communication between different Microsoft 365 cloud environments involving trail-only tenants is blocked by default. However, keep in mind that the new setting will not be applicable to cross-cloud communication. Organizations that add domains to the allowed trial tenant list will see these changes take effect in mid-February. Microsoft advises... --- ### Understanding Group Policy WMI Filtering - Published: 2025-02-05 - Modified: 2025-02-05 - URL: https://petri.com/group-policy-wmi-filter/ - Categories: Active Directory (AD) - Tags: Active Directory, featured-top-right, group policy - Article Type: How To Group Policy WMI Filtering is a powerful feature that allows administrators to apply Group Policy Objects (GPOs) and Group Policy preferences based on specific attributes of target computers, servers, and users. By leveraging Windows Management Instrumentation (WMI) queries, IT professionals can create highly targeted and dynamic GPOs that respond to the unique needs of their environment. We'll cover WMI Filtering, its benefits, setup, best practices, and troubleshooting tips. Whether you need to enhance security, streamline management, or customize user experiences, mastering WMI Filtering can significantly improve your Group Policy settings strategy. Setting up a Group Policy WMI Filter Next, I'll demonstrate how to create WMI Filters using the Group Policy Management Console (GPMC). But first, let me assist you in verifying you have all your ducks in a row before you start. Prerequisites The only prerequisites are to have the necessary administrative privileges to create and edit GPOs and WMI Filters. Typically, you need to be in either Domain Admins or Group Policy Creator Owners group in Active Directory. Also, ensure you have access to the Group Policy Management Console (GPMC) and can launch it. Using the Group Policy Management Console There are several ways to open the GPMC, but the easiest method is to: Click the Start button Start typing 'group' Click on the 'Group Policy Management' item. Launching the Group Policy Management app from the Start Menu - Image Credit: Michael Reinders/Petri. com You probably noticed the 'WMI Filters' category item on the left. Go ahead and click... --- ### Hackers Use Fake ADFS Login Pages to Steal Credentials — Is Your Organization at Risk? - Published: 2025-02-05 - Modified: 2025-02-05 - URL: https://petri.com/hackers-fake-adfs-steal-credentials/ - Categories: Identity Management - Tags: ADFS, featured-top-left, News - Article Type: News Security researchers have discovered a sophisticated phishing campaign targeting organizations that rely on Active Directory Federation Services (ADFS) for secure access. This attack has already compromised over 150 organizations across critical sectors, including healthcare, education, government, and technology. Active Directory Federation Services (ADFS) is a software component that gives users sign-on (SSO) access to systems and applications. This service lets users log in once and gain access to multiple systems without needing to log in again. It leverages a claim-based authentication mechanism to verify user identities and supports federated identity management. How do hackers exploit ADFS in this phishing campaign? According to a new report from Abnormal Security, the attackers leverage spoofed ADFS sign-in pages to trick victims into entering their credentials and multifactor authentication (MFA) details like one-time passcodes (OTPs). This allows the attackers to gain unauthorized access to the victims' accounts. Abnormal Security mentioned that the success of the phishing campaign is largely due to the attacker's ability to create very convincing phishing emails. These emails are designed to look like they come from trusted sources, such as the organization’s IT helpdesk. Typically, the attack starts with an email that appears to be an urgent notification from the IT department, which prompts the recipient to click on a link to initiate an urgent update. Attackers disguise phishing email URLs to resemble legitimate ADFS links, making them harder to detect and prevent victims from growing suspicious. They also create fake login pages that closely mimic the official portals used... --- ### Latest Microsoft Entra Connect Sync Update Brings New Auditing Capabilities - Published: 2025-02-04 - Modified: 2025-02-05 - URL: https://petri.com/microsoft-entra-connect-sync-auditing-capabilities/ - Categories: Identity Management - Tags: featured-top-left, Microsoft Entra, News - Article Type: News Microsoft has recently rolled out a new update (version 2. 4. 129. 0) of its Entra Connect Sync service. The latest release brings new auditing capabilities, enhancements, as well as bug fixes to improve user experience and boost the overall stability of the system. What is Microsoft Entra Connect Sync? Microsoft Entra Connect Sync enables organizations to synchronize identity data (users, groups, and contacts) between their on-premises environments and Microsoft Entra ID (formerly known as Azure AD). This service offers a common identity for accessing both cloud and on-premises resources. It allows for custom synchronization rules and configurations to meet specific organization needs. How does the new audit feature work? Microsoft explained that the new audit feature allows customers to monitor administrator events and activity in Microsoft Entra Connect Sync. This means that any changes made by administrators, whether through the user interface (UI) or using PowerShell scripts, are now recorded for tracking purposes. The new audit feature allows administrators to view the following key logged events: Add/Update/Delete Directories (EventID 2503): This event logs the names of the directories that were added, updated, or deleted. It helps to ensure that any modifications are properly recorded. Enable/Disable Sync Features (EventIDs 2505, 2506, 2507): These events monitor changes in the synchronization configuration for domains and Organizational Units (OUs), password hash sync, as well as sync start options. ADFS-Related Updates (EventIDs 2514–2520): These events log changes related to Active Directory Federation Services (ADFS), single sign-on, and ADFS server installations. Credential and Permission Updates (EventIDs 2518, 2519,... --- ### What is SQL Server Reporting Services? - Published: 2025-02-03 - Modified: 2025-02-03 - URL: https://petri.com/sql-server-reporting-services-introduction/ - Categories: SQL Server - Tags: featured-top-right, SQL Server, SQL Server Reporting Services - Article Type: Overview SQL Server Reporting Services (SSRS) is a set of on-premises tools and services that enable you to create, deploy, and manage printed, web, email and mobile reports from SQL Server databases. Let's look at its evolution and capabilities in more detail. When SQL Server was first released it was a simple relational database but as time has gone on Microsoft has added a number of subsystems that have marked the evolution of SQL Server into an enterprise data platform. One of these systems is Microsoft SQL Server Reporting Services (SSRS). Along with SQL Server Analysis Services (SSAS) and SQL Server Integration Services (SSIS), SSRS is one of the core Business Intelligence (BI) components in today’s SQL Server release. SSRS is a set of on-premises tools and services that enable you to create, deploy, and manage printed, web, email and mobile reports. Reports can retrieve data from SQL Server databases and Analysis Services as well as other relational database such as Oracle, MySQL, and Azure SQL Database. SRS eliminates the need to produce reports using other external tools like Crystal Reports or Excel workbooks. A web portal allows you to organize and display Reporting Services reports and Key Performance Indicators (KPIs). Reports can also be incorporated into web and Windows-based applications as well as viewed in SharePoint, Power BI dashboards, and mobile devices like Android and iOS. SSRS reports can be paginated. They can support drill-through and sub-reports. SQL Server editions with SSRS Microsoft first released SSRS as an add-on... --- ### Microsoft Entra to Add New People Administrator Role - Published: 2025-02-03 - Modified: 2025-02-03 - URL: https://petri.com/microsoft-entra-people-administrator-role/ - Categories: Identity Management - Tags: Microsoft Entra, News - Article Type: News Microsoft is about to add a new People administrator role in Microsoft Entra, allowing organizations to securely delegate people-related tasks. This update helps streamline user management while minimizing security risks associated with high-level admin roles. In Microsoft Entra ID, built-in roles offer pre-defined permissions for efficient access control, but they don’t always match common user management scenarios that are often delegated across multiple departments. With this release, enterprise admins will be able to assign the new People admin role to users through the Entra Portal and Microsoft 365 Admin Center. These users will be able to update profile photos for all users, including IT admins. Users will also be able to update settings related to pronouns, name pronunciation, profile card settings, and photo update settings for all users. “Developed from customer feedback, this role will provide dedicated permissions for managing people-related settings and profile photos without needing the high privileges of Global admin or User admin roles,” the company explained on the Microsoft 365 admin center. “By limiting access to necessary settings, it reduces risks associated with higher privilege roles and aligns with user jobs focused on people administration. ” What are the benefits of the new People administrator role? Microsoft mentioned that the new People admin role will offer several benefits to organizations. It allows customers to assign specific tasks to People admins without granting them excessive permissions. People admins will also be able to implement updates and improvements that enhance user profiles and settings. This feature enables organizations to... --- ### Microsoft Teams Gets New Meetings Features and Advanced IT Controls - Published: 2025-02-03 - Modified: 2025-02-03 - URL: https://petri.com/microsoft-teams-updates-january-2025/ - Categories: Microsoft Teams - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft published its monthly roundup of all the new capabilities added to its Teams collaboration platform in January. The latest update brings a new message forwarding experience, stronger security controls, advanced admin tools, and upgrades for Teams Phones. New chat features Microsoft has added a new feature that allows users to seamlessly insert hyperlink into Teams chat messages. Users can simply copy the URL, highlight the text where they want to hyperlink, and then paste the URL. Microsoft has released a new update to improve the message forwarding experience for both Teams desktop and mobile apps. Users can now forward messages containing Loop components while maintaining proper permissions. Furthermore, Microsoft Teams lets users forward messages between channels. They can also add additional context and @mention recipients while sharing the message. Forwarding Loop components (Image Credit: Microsoft) Updates to meetings In January, Microsoft made it easier for meeting participants to move between breakout rooms. Moreover, the new calendar experience is now generally available in Microsoft Teams. It brings a couple of new Copilot and Places features to align the calendar experience across Microsoft Teams and Outlook. Users can switch to the new Teams calendar by clicking the "New Calendar" toggle, which is available at the top-right of the calendar app. New calendar experience in Microsoft Teams (Image Credit: Microsoft) Microsoft Teams now lets organizers disable copying and forwarding of live captions, transcripts, and recap for meetings. Moreover, Microsoft Purview has added eDiscovery support for town halls in Teams. Microsoft has also... --- ### Microsoft Makes "Think Deeper" Free for All Copilot Users - Published: 2025-01-31 - Modified: 2025-02-07 - URL: https://petri.com/microsoft-think-deeper-free-copilot/ - Categories: Microsoft Copilot - Tags: Microsoft Copilot, News - Article Type: News February 7, 2025, 8:32 AM PT: The "Think Deeper" feature is currently only available for consumers, and commercial customers won't be able to access it in Microsoft 365 Copilot Chat. Microsoft is now offering its “Think Deeper” feature to all free Copilot users, removing the previous paywall. Microsoft AI CEO Mustafa Suleyman announced on LinkedIn that this tool no longer requires a Copilot Pro subscription. What is Think Deeper? Microsoft launched Think Deeper as an experimental feature in Copilot Labs in October. Up until now, this feature was only available for Copilot Pro subscribers, which costs $20 per month per user. Think Deeper uses OpenAI’s o1 reasoning model to provide high-quality answers to complex questions. Microsoft highlights its effectiveness in tackling STEM-related tasks like advanced math, coding, and data analysis, while also offering detailed planning and comprehensive advice. “The possible uses here are really infinite. I'm genuinely so excited that our tens of millions of users are all getting this opportunity. We've got so much more in the pipeline right now that I can't wait to tell you about,” Suleyman explained. Think Deeper in Copilot (Image Credit: Microsoft) How to access the Think Deeper feature in Microsoft Copilot? Starting this week, consumers can access Think Deeper through the Copilot web app or the Copilot Android or iOS apps. To use this feature in Copilot, users will simply need to click or tap the “Think Deeper” button within the prompt bar. It will take around 30 seconds to analyze the... --- ### First Ring Daily: Microsoft Earnings Aftermath - Published: 2025-01-31 - Modified: 2025-01-31 - URL: https://petri.com/first-ring-daily-microsoft-earnings-aftermath/ - Categories: Microsoft - Tags: artificial intelligence, First Ring Daily, Microsoft, News - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's FY2025 Q2 earnings and whether the company's massive investments in AI are starting to pay off. On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's FY2025 Q2 earnings and whether the company's massive investments in AI are starting to pay off. --- ### Microsoft Brings DeepSeek R1 to Windows 11 Copilot+ PCs - Published: 2025-01-31 - Modified: 2025-01-31 - URL: https://petri.com/microsoft-deepseek-r1-windows-11-copilot-pcs/ - Categories: Artificial Intelligence - Tags: Copilot+ PCs, DeepSeek R1, News - Article Type: News Microsoft has announced that it's bringing NPU-optimized versions of DeepSeek R1 to Copilot+ PCs. The company will also integrate the DeepSeek-R1-Distill-Qwen-1. 5B model into its Microsoft AI Toolkit for developers, with the 7B and 14B versions set to follow. In a recent blog post, Microsoft announced that DeepSeek R1 models will first be available on Qualcomm Snapdragon X-powered PCs, followed by Intel Core Ultra 200V laptops and AMD AI chipsets. This release will allow developers to build AI-powered apps that run locally on compatible Copilot+ PCs. "The optimized DeepSeek models for the NPU take advantage of several of the key learnings and techniques from that effort, including how we separate out the various parts of the model to drive the best tradeoffs between performance and efficiency, low bit rate quantization and mapping transformers to the NPU," Microsoft explained. Microsoft has outlined the hardware requirements for running these AI models on Windows 11 devices. To qualify, a PC must have a Neural Processing Unit (NPU) with at least 40 TOPS (trillion operations per second), 16GB of RAM, and 256GB of storage. This means that PCs with old NPUs won’t be able to run these models locally. How to run DeepSeek R1 on Windows 11 Copilot+ PCs? To get started with DeepSeek on a Copilot+ PC, developers will need to create an Azure account on Microsoft’s website. Now, launch Azure AI Foundry and then search for DeepSeek R1. Select the “Check out model” option, click Deploy, and then click “Deploy” again in the... --- ### Microsoft Announces New Intel-Powered Surface Laptop 7 and Surface Pro 11 for Businesses - Published: 2025-01-30 - Modified: 2025-01-30 - URL: https://petri.com/intel-surface-laptop-7-surface-pro-11-businesses/ - Categories: Hardware - Tags: featured-top-left, Surface Laptop 7, Surface Pro 11 - Article Type: News Microsoft announced today new business editions of its Surface Pro 11 and Surface Laptop 7 Copilot+ PCs with Intel x86 Core Ultra processors (Series 2). Additionally, a 5G-enabled variant of the Surface Laptop for Business is set to launch later this year. In September 2023, Microsoft introduced business editions of the Surface Pro 11 and Surface Laptop 7, both powered by Qualcomm chips. However, enterprise users might still opt for Intel CPUs to maintain the best app and driver compatibility. “Starting Feb. 18, business customers can choose between Intel and Snapdragon-powered Copilot+ PCs from Surface, and experience the most advanced, intelligent and secure PCs available across both platforms,” said Nancie Gaskill, General Manager of Surface Business. https://www. youtube. com/watch? v=9SWEA2y2DjQ Surface Laptop 7 for Business The new Surface Laptop 7 for Business comes with the latest Intel Core Ultra processors with the 13. 8" and 15 ” display options. It offers Wi-Fi 7 support, up to 32 GB of memory, and up to 1 TB of storage. Microsoft promises up to 22 hours of video playback and up to 14 hours of active web usage. The Surface Laptop 7 for Business also features an anti-reflective touchscreen display and Windows Hello support for passwordless authentication. Regarding the ports selection, both models come with 2 USB-C ports, a Surface Connect port, a USB-A port, and a headphone jack, though the 15-inch model has an additional MicroSDXC Express card reader and MicroSDXC card reader and an optional smart card reader. The Surface Laptop 7 for Business with... --- ### Microsoft to Integrate Security Copilot into Surface Management Portal - Published: 2025-01-30 - Modified: 2025-01-30 - URL: https://petri.com/security-copilot-surface-management-portal/ - Categories: Endpoint Management - Tags: News, Security Copilot - Article Type: News Microsoft has announced the upcoming integration of its Security Copilot into the Surface Management Portal, offering customers access to the AI-powered chatbot in public preview starting on February 24. This new feature aims to enhance device management with advanced AI capabilities for IT administrators. The Surface Management Portal is a centralized platform integrated into the Microsoft Intune Admin Center. It lets IT admins manage and monitor Surface devices within their organizations. The portal helps to gain insights into device compliance, support activity, and warranty coverage. Microsoft first announced Security Copilot back in March 2023. It’s an AI-powered solution that allows security teams to get the latest information on security incidents, summaries of threats, and more. Security Copilot offers integration with various Microsoft security products (like Microsoft Intune, Microsoft Sentinel, and Microsoft Defender), as well as third-party services. “Security Copilot combines the power of natural language conversations and generative AI to simplify and enhance the device management experience. This integration unlocks the ability to leverage advanced AI capabilities directly within the Surface Management Portal, making it easier to troubleshoot issues, access relevant information, and ensure the security of all Surface devices,” explained Nancie Gaskill, General Manager for Surface. Security Copilot (Image Credit: Microsoft) Benefits of Security Copilot Integration in the Surface Management Portal The new Security Copilot integration will allow IT administrators to quickly resolve specific device issues and summarize warranty information. They can also manage support tickets and service orders related to the Surface devices within their organization. These new... --- ### Surface Hub 3 to Get Support for Microsoft Edge and Miracast - Published: 2025-01-30 - Modified: 2025-01-30 - URL: https://petri.com/surface-hub-3-microsoft-edge-miracast/ - Categories: Hardware - Tags: News, Surface Hub 3 - Article Type: News Microsoft announced this morning several new experiences coming to Surface Hub 3 later this year, including support for Microsoft Edge and Miracast wireless projection. These enhancements aim to enhance business collaboration by enabling seamless web access and content sharing. Microsoft launched Surface Hub 3 as an all-in-one digital whiteboard in December 2023. It offers seamless integration with Microsoft Teams Rooms, which makes it ideal for enhancing collaboration in hybrid meetings. Surface Hub 3 is available for business customers in 50-inch and 85-inch models. Surface Hub 3 gets support for Microsoft Edge On Surface Hub 3, customers will be able to launch the Microsoft Edge browser directly from the home screen. It will provide seamless access to websites, web apps (Microsoft web apps, third-party apps, and custom line-of-business apps), as well as personal content. “Once logged into your personalized experience, your files will be at your fingertips for brainstorming, collaborative editing, or presenting. Interactive experiences that define Hub 3 collaboration, like marking up a PowerPoint together with your remote colleagues, will work seamlessly through Edge,” explained David Alexander, Product Manager for Microsoft Surface. Microsoft Edge on Surface Hub 3 (Image Credit: Microsoft) Microsoft Edge will run in Kiosk Mode, which allows multiple users to access various apps and experiences on the same device. The web browser starts in an InPrivate session every time Microsoft Edge is launched on Surface Hub 3. Users can click the “End session” button once they are done with the working session or meeting. This action deletes... --- ### How to Use the Azure Pricing Calculator - Published: 2025-01-29 - Modified: 2025-01-29 - URL: https://petri.com/azure-pricing-calculator/ - Categories: Microsoft Azure - Tags: featured-top-right, Microsoft Azure This guide will show you how to use the Azure Pricing Calculator effectively, offering step-by-step instructions, real-world examples, and key insights on leveraging its advanced features. By the end, you'll not only understand your potential costs but also feel confident sharing polished estimates with stakeholders. When managing IT infrastructure, staying ahead of your budget can feel like solving a riddle—especially with the flexible yet complex pricing of cloud solutions like Microsoft Azure. Enter the Azure Pricing Calculator, a tool designed to simplify cost estimation across over 100 Azure services. Whether you're migrating on-premises workloads, planning a new project, or optimizing existing resources, this calculator is your gateway to financial clarity. Why cloud cost planning is essential Navigating Azure pricing without a strategy can lead to unexpected charges, underutilized resources, or budget overruns. Whether you're working with virtual machines, managed disks, or SQL databases, accurate estimates can help you: Avoid surprises: Know what you're paying for upfront to prevent financial headaches. Optimize usage: Right-size resources based on needs, avoiding overspending on underutilized instances. Plan confidently: Align your costs with project goals while communicating effectively with your team. By proactively using the Azure Pricing Calculator, you're taking the first step toward mastering your cloud investment. Getting started with the Azure Pricing Calculator The Azure Pricing Calculator is a free, browser-based tool. It’s updated regularly using Microsoft's Azure Retail Prices API to reflect current pricing for all supported services. Keep in mind that prices vary globally across different regions due to factors... --- ### Microsoft Edge’s Scareware Blocker: A Smarter Way to Block Malicious Scams - Published: 2025-01-29 - Modified: 2025-01-29 - URL: https://petri.com/microsoft-edges-scareware-blocker-preview/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News - Article Type: News Microsoft Edge is adding a new security feature that uses machine learning to defend users against scareware attacks. The new Scareware blocker is currently available in preview in the Edge browser on Windows PCs. Scareware is a type of malicious software that is designed to trick users into thinking that their PC is infected with a virus or security threat. Typically, it uses alarming pop-up messages or fake system alerts to create a sense of urgency and fear. The goal is to manipulate users into downloading and purchasing harmful software, often disguised as legitimate antivirus programs. Microsoft announced the Scareware blocker feature for Edge at its Ignite conference in November 2023. While Edge already uses Microsoft Defender's SmartScreen to block known scams by analyzing web pages and checking them against a list of phishing and malware sites, the new Scareware blocker aims to protect users from previously unknown scam tools. https://www. youtube. com/watch? v=ZydkiKDY8xk&t=12s How does the Scareware blocker work? In Microsoft Edge, the Scareware blocker uses machine learning to detect signs of scareware scams. It compares full-screen pages with thousands of scam samples, and if it identifies a malicious page, it exits full-screen mode, stops any aggressive audio, warns the user, and displays a thumbnail of the page. There is also an option to report the malicious site to help protect others. Scareware blocker (Image Credit: Petri/Rabia) To enable the Scareware blocker, users must first ensure they are using the latest version of Microsoft Edge. Then, they can click the three-dot icon,... --- ### Microsoft’s 2025 Cybersecurity Guide: Strengthening Identity Protection and Threat Defense - Published: 2025-01-29 - Modified: 2025-01-29 - URL: https://petri.com/microsoft-strategies-proactive-identity-management/ - Categories: Identity Management - Tags: Identity Management, News - Article Type: News Microsoft has detailed key security recommendations for enterprises in 2025, emphasizing a proactive approach to data protection. The company urges businesses to strengthen their defenses against AI-driven attacks and phishing threats by adopting advanced security measures. "Reactive security isn’t enough to safeguard your environment. Our guidance for 2025 is to always start at the highest level of security (Secure by Default), then dial back as needed for compatibility or other reasons. It’s also critical to protect all identities: employees, contractors, partners, customers, and, most importantly, machine, service, and AI identities,” Joy Chik, President of Identity & Network Access at Microsoft. Strengthen security with a “Secure by Default” approach Microsoft urges organizations to adopt a "secure by default" approach by enforcing multifactor authentication (MFA) and addressing security risks from shadow IT and non-human identities. Administrators should actively detect and monitor unauthorized apps within their systems to strengthen security. To address these challenges, Microsoft has introduced features like managed Conditional Access policies and phishing-resistant authentication methods such as passkeys. Additionally, the company has expanded MFA support to Microsoft Azure and Intune portals, enhancing overall protection. Extend Zero Trust access controls to all resources Microsoft also recommends organizations to extend Zero Trust principles to all resources and entry points. Organizations can consider unifying access policy engines, extending modern access controls to all apps and internet resources, and enforcing least privilege access. Microsoft suggests using the Entra Suite to implement a Zero Trust security model, and Entra Private Access to replace traditional VPNs with... --- ### Microsoft Teams to Add Brand Impersonation Protection to Prevent Phishing Attacks - Published: 2025-01-28 - Modified: 2025-01-28 - URL: https://petri.com/microsoft-teams-chat-brand-impersonation-protection/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft has announced that the new brand impersonation protection feature will become generally available in Microsoft Teams next month. This security feature proactively alerts enterprise users to potential brand impersonation attempts in Teams chat messages. Previously, enabling external access in Teams allowed users to receive messages from outside domains. Microsoft Teams would automatically scan these external senders for potential impersonation risks. Users receiving a chat invitation had the option to accept, block, or preview the message. How does brand impersonation protection work in Microsoft Teams? In Microsoft Teams, the brand impersonation protection feature automatically detects phishing attacks targeting organizations with external access enabled. It alerts users of potential brand impersonation attempts without requiring any admin configuration. “If your company allows external domains to contact your users in Teams, we will identify if an external user is impersonating a brand commonly targeted by phishing attacks during their initial contact with your user through Teams Chat. If we detect potential impersonation, we will show a high-risk alert to the user, notifying them to check for suspicious name/email and proceed with caution,” the company explained on the Microsoft 365 admin center. In this example, Microsoft Teams identified a message where the sender falsely claimed to be from Microsoft. However, the sender’s email address or domain didn’t match Microsoft, which indicates a potential impersonation attempt. Brand impersonation protection for Teams Chat (Image Credit: Microsoft) The brand impersonation protection feature will be enabled by default for all commercial customers. Microsoft advises administrators to educate employees... --- ### Microsoft Entra Gets New Identity Secure Score Recommendations to Boost Security - Published: 2025-01-28 - Modified: 2025-01-28 - URL: https://petri.com/microsoft-entra-identity-secure-score-recommendations/ - Categories: Identity Management - Tags: Microsoft Entra, News - Article Type: News Microsoft has announced the general availability of new Identity Secure Score recommendations in Microsoft Entra. These recommendations are designed to help administrators strengthen their security posture and provide actionable insights to detect and mitigate security risks within the organization. Microsoft first announced the Entra Identity Secure Score recommendations feature in April 2024. It provides recommendations to help organizations improve their security posture by following the best practices and industry standards. This security feature provides clear guidance and support for implementation through the Microsoft Entra admin center. What are the new Identity Secure Score recommendations? The new Identity Secure Score recommendations include requiring multifactor authentication (MFA) for administrative roles, ensuring all users can complete MFA, and enabling policies to block legacy authentication. Additionally, Microsoft recommends that cloud-only tenants set their password policies to never expire. Additionally, it is recommended that users be protected by implementing user and sign-in risk policies, enabling password hash synchronization for hybrid environments, and restricting user consent to trusted applications only. Furthermore, the Identity Secure Score recommendations encourage IT admins to adopt least-privileged administrative roles, assign more than one Global Admin, and enable self-service password reset for end users. New Secure Score Recommendations (Image Credit: Microsoft) How to access the Identity Secure Score recommendations? To access Identity Secure Score recommendations, administrators will need to head over to the Microsoft Entra admin center and then go to Identity > Overview > Recommendations. Navigate to the recommendation page, click filter by “Category” and select “Identity Secure Score. ” Alternatively, IT... --- ### PSA: Microsoft to Retire WSUS Driver Synchronization — What It Means for IT Administrators - Published: 2025-01-27 - Modified: 2025-01-28 - URL: https://petri.com/microsoft-retire-wsus-driver-synchronization/ - Categories: Endpoint Management - Tags: featured-top-left, News, WSUS - Article Type: News Microsoft is gearing up to retire a key feature in Windows Server Update Services (also known as WSUS). The company is reminding customers that it will deprecate the WSUS driver synchronization service on April 18, 2025. WSUS (Windows Server Update Services) driver synchronization is a feature that allows administrators to manage and distribute driver updates within their network. It enables the synchronization of driver updates from the Microsoft Update Catalog to the WSUS server. This feature helps to ensure that all devices within their organization have the necessary drivers installed and updated. Why Microsoft is phasing out WSUS driver synchronization? Microsoft first announced plans to kill off the driver synchronization capability in June 2024. The company found that just 34 percent of WSUS users are syncing drivers, with most of them moving to alternate solutions. However, only 8 percent of customers expressed concern about the feature's deprecation. The data implies that Microsoft no longer sees value in maintaining the WSUS driver synchronization capability. “If you’re using driver synchronization updates via Windows Server Update Services (WSUS), prepare for change. This service is scheduled for deprecation on April 18, 2025. For on-premises contexts, drivers will be available on the Microsoft Update catalog, but you won’t be able to import them into WSUS,” Microsoft explained. What do you need to do to prepare? Going forward, administrators will need to manually download drivers from the Microsoft Update Catalog or transition to third-party update management solutions. Alternatively, they can choose to switch to cloud-based tools... --- ### What Is Microsoft Intune? > Learn how Microsoft Intune allows organizations to enforce security policies, deploy software updates, and manage settings across various devices from a single console. - Published: 2025-01-27 - Modified: 2025-01-27 - URL: https://petri.com/introduction-microsoft-intune/ - Categories: Endpoint Management - Tags: Endpoint Management, featured-top-right, Microsoft Intune, Windows Autopilot - Article Type: Overview At its core, Microsoft Intune is a Mobile Device Management (MDM) and Mobile Application Management (MAM) solution. It enables organizations to manage both corporate-owned and personal devices (Bring Your Own Device, or BYOD) in a way that balances security requirements with employee productivity. Intune integrates deeply with the Microsoft ecosystem, including Microsoft Entra ID (formerly Azure Active Directory), Microsoft 365, and Windows Autopilot. It’s designed to help organizations protect sensitive information by controlling who can access data, what devices can be used, and how resources are accessed. Key features of Microsoft Intune Key features of Intune include: centralized device management robust application control and seamless integration with existing IT infrastructures. Intune allows organizations to enforce security policies, deploy software updates, and manage settings across various devices from a single console. This ensures consistency, compliance, and streamlined IT operations. What is Microsoft Intune (Image credit: Microsoft) Device management Microsoft Intune enables IT teams to manage devices across all major platforms, including Windows, macOS, iOS, iPadOS, Android, and Linux. This cross-platform compatibility ensures that organizations can maintain consistent management and security policies regardless of the devices their workforce uses, and is often referred to as 'single pane of glass' for remote device management. Microsoft Intune - supported device platforms (Image credit: Dean Ellerby/Petri) Administrators can use Intune to configure device settings to align with organizational requirements, such as setting up Wi-Fi configurations, deploying certificates, or enforcing password policies. Intune also simplifies software management by enabling IT admins to deploy updates, distribute apps,... --- ### Outdated Exchange Servers Could Lose Critical Security Protections, Microsoft Warns - Published: 2025-01-27 - Modified: 2025-01-27 - URL: https://petri.com/outdated-exchange-servers-security-protections/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Microsoft has alerted organizations about the risks of using outdated Exchange Servers. The company has warned that the Exchange Emergency Mitigation Service (EEMS) may no longer work on Exchange Server versions older than March 2023. What is Exchange Emergency Mitigation Service? Microsoft first released the Exchange Emergency Mitigation Service (EEMS) back in September 2021. This security feature enables organizations to protect their Exchange Servers by automatically applying mitigations to address potential threats within their organizations. EEMS leverages the Office Config Service (OCS) to check for and download necessary mitigations, including disabling vulnerable services, blocking malicious HTTP requests, and disabling vulnerable app pools. Administrators can control applied mitigations through Exchange PowerShell cmdlets and scripts. How will this change affect Exchange Servers? Microsoft is planning to deprecate an older certificate type used by the Office Configuration Service (OCS). This certificate is essential for EEMS to connect to OCS and download new mitigation definitions. “One of older certificate types in OCS is getting deprecated. “A new certificate has already been deployed in OCS, and any server that is updated to any Exchange Server Cumulative Update (CU) or Security Update (SU) newer than March 2023 will continue to be able to check for new EEMS mitigations,” the Exchange team explained. According to Microsoft, customers running the EEMS on Exchange Server versions older than March 2023 might see error messages in the Application log or EEMS log indicating issues with connecting to the mitigation endpoint. Additionally, Microsoft notes that running the $exscripts\Get-Mitigations. ps1 script will fail... --- ### First Ring Daily: Microsoft is Changing - Published: 2025-01-24 - Modified: 2025-01-24 - URL: https://petri.com/first-ring-daily-microsoft-is-changing/ - Categories: Microsoft - Tags: First Ring Daily, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss organizational shakeups at Microsoft, including the recent departure of the company's Executive Vice President of business development. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss organizational shakeups at Microsoft, including the recent departure of the company's Executive Vice President of business development. --- ### Microsoft Announces Audit Logging Changes Coming to Exchange Online - Published: 2025-01-24 - Modified: 2025-01-24 - URL: https://petri.com/exchange-online-audit-logging-changes/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft has announced plans to retire the Search-MailboxAuditLog and New-MailboxAuditLogSearch cmdlets in Exchange Online. The company will deprecate both cmdlets in favor of the Search-UnifiedAuditLog cmdlet in March this year. The Search-MailboxAuditLog and New-MailboxAuditLogSearch cmdlets in Microsoft Exchange Online are used for searching mailbox audit logs. The Search-MailboxAuditLog cmdlet performs a synchronous search of mailbox audit logs for one or more specified mailboxes. It shows the search results directly within the Exchange Management Shell window. This cmdlet is useful for quick searches that require immediate results. Additionally, the New-MailboxAuditLogSearch cmdlet performs an asynchronous search of mailbox audit logs and then sends the search results through email to specified recipients. It’s useful for extensive searches where the results need to be shared with other people. Timeline for the retirement of old Exchange Online cmdlets Starting on March 1, 2025, new records will no longer be written to the Search-MailboxAuditLog cmdlet. Instead, all new log entries will be automatically directed to the Search-UnifiedAuditLog cmdlet, which consolidates audit logs from multiple Microsoft 365 services, such as Microsoft Teams, Exchange Online, SharePoint Online, OneDrive for Business, Microsoft Entra ID, and Power BI. This cmdlet also provides advanced filtering options, which allow admins to refine searches by criteria like users, date ranges, specific actions, IP addresses, and more. “After the retirement, admins will be able to access Search-MailboxAuditLog and New-MailboxAuditlogSearch and make changes and downloads until late June 2025. After late June, Search-MailboxAuditLog and New-MailboxAuditlogSearch will become a static record only, and admins will no... --- ### Microsoft Defender for Endpoint Adds Aggregated Reporting to Streamline Threat Analysis - Published: 2025-01-24 - Modified: 2025-01-24 - URL: https://petri.com/microsoft-defender-for-endpoint-aggregated-reporting/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News - Article Type: News Microsoft has added support for aggregated reporting in public preview within its Defender for Endpoint solution. This new feature aims to overcome limitations in event reporting and improve data analysis for endpoint security. What is the problem? Essentially, Microsoft Defender for Endpoint collects a lot of data from various points in enterprise networks to detect potential intruders. This data is quickly analyzed to highlight the higher-fidelity signals that are important for SOC analysts. During the analysis, redundant and irrelevant signals are discarded to minimize noise so that more significant analysis can be performed to detect significant security threats. However, some administrators have expressed the desire to be able to review all collected signals. How does the aggregated reporting feature work? The aggregated reporting feature provides summarized information on all supported event types, such as low-efficiency telemetry. This capability should be useful in analyzing and identifying potential security threats within an organization. “With aggregated reporting, Defender for Endpoint ensures that all essential event properties valuable to investigation and threat hunting activities are continuously collected. It does this by extended reporting intervals of one hour, which reduces the size of reported events and enables efficient yet valuable data collection,” Microsoft explained. Advanced hunting query results with aggregated reports (Image Credit: Microsoft) How to enable aggregated reporting in Microsoft Defender for Endpoint? To enable aggregated reporting, administrators will need to navigate to Settings > Endpoints > Advanced features and then enable the Aggregated reporting feature. Once enabled, aggregated reports may take up to... --- ### Microsoft to Mandate MFA for Accessing Microsoft 365 Admin Center - Published: 2025-01-23 - Modified: 2025-01-23 - URL: https://petri.com/microsoft-365-admin-center-mfa/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft will soon require multi-factor authentication (MFA) for accessing the Microsoft 365 admin center. Starting on February 3, the company will begin rolling out this new MFA requirement in phases at the tenant level. Microsoft 365 admin center is a web-based portal that allows administrators to manage their organization’s users, settings, licenses, subscriptions, and more. Microsoft has found that MFA helps to reduce the risk of account compromise by 99. 2 percent. This feature allows organizations to reduce the risk of unauthorized access and protect sensitive data, accounts, and resources. “Multi-factor authentication (MFA) is a security feature that requires you to provide two or more pieces of evidence to prove your identity when you sign in to an online service,” Microsoft explained. “MFA adds an extra layer of protection to your account and your data, reducing the risk of unauthorized access even if your password is compromised. ” Microsoft 365 Admin Center (Image Credit: Microsoft) How can organizations get additional time to prepare for this MFA requirement? Microsoft acknowledged that organizations with complex setups may need more time to prepare for this MFA requirement. These organizations can request an extension through the Azure Portal, which will also apply to the Microsoft Entra admin center and the Microsoft Intune admin center. Customers who haven't added an MFA verification method before the mandatory requirement rollout will still be able to access the Microsoft 365 admin center. However, they will be prompted to register for MFA and add a verification method. Microsoft notes that security... --- ### Hackers Impersonate Tech Support on Microsoft Teams to Deploy Ransomware - Published: 2025-01-23 - Modified: 2025-01-23 - URL: https://petri.com/microsoft-teams-tech-support-ransomware/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365, News - Article Type: News Sophos has raised an alert about a wave of ransomware attacks where threat actors manipulated Microsoft Teams by impersonating tech support personnel. These attackers used this tactic to gain initial access to systems, steal sensitive data, and deploy ransomware. According to a report published on Tuesday, Sophos linked these attacks to two threat actors identified as STAC5143 and STAC5777. Microsoft initiated investigations after customers reported incidents in November and December. These groups have been leveraging Office 365 services, including Microsoft Teams and Outlook, to infiltrate and gain unauthorized access to organizations. Sophos has recorded over 15 incidents of this kind in the past three months. How does the tech support scam work? According to Sophos, threat actors use email bombing and Microsoft remote control tools, such as Quick Assist and Microsoft Teams screen sharing. They first gain control of the victim’s device and install malware. The attackers then use a compromised Office 365 account to send messages or make calls through Microsoft Teams. "Both threat actors operated their own Microsoft Office 365 service tenants as part of their attacks and took advantage of a default Microsoft Teams configuration that permits users on external domains to initiate chats or meetings with internal users," Sophos researchers explained. Threat Actor-Initiated Microsoft Teams Activity from External M365 Tenant (Image Credit: Sophos) The hacking groups also flood the Outlook mailboxes of select employees at the target organization with large volumes of spam emails. This tactic is designed to overwhelm recipients and create a sense of... --- ### Microsoft Teams Meetings to Let Users Edit Display Names - Published: 2025-01-22 - Modified: 2025-01-22 - URL: https://petri.com/microsoft-teams-meetings-edit-display-names/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that will allow participants to edit their display names in real time during live meetings. This new personalization feature will begin rolling out to participants using the Microsoft Teams desktop and web apps on Windows and macOS. In Microsoft Teams, an "(edited)" label will appear next to a participant's name on the meeting screen. The name change will only last for the duration of the meeting, reverting to the original name on the user's People card once the meeting ends. “Original People card names will display in some meeting features such as calendar invites, the list of people invited to meetings, group chat rosters, and so on. Permanent meeting artifacts (such as the attendance report and transcriptions) will not reflect name changes,” Microsoft explained. Edit display name in Teams meetings (Image Credit: Microsoft) How to edit display name in Microsoft Teams meetings Microsoft notes that this new feature will be off by default for all tenants. It will be up to the IT admins to enable it via the Teams admin center for all or select end users within their organizations. Once enabled, meeting organizers will be able to turn on this feature by navigating to Meeting options > Let people edit their display name. Meeting participants will be able to join the meeting and then click the People option at the top of the screen to edit their display names in the Participants panel. Microsoft will start rolling out this update to... --- ### Microsoft Fixes Startup Bug Affecting Windows Server 2022 - Published: 2025-01-22 - Modified: 2025-01-22 - URL: https://petri.com/windows-server-2022-startup-issue-numa-nodes/ - Categories: Windows Server - Tags: News, Windows Server - Article Type: News Microsoft has issued a fix to address a bug impacting Windows Server 2022 machines with two or more NUMA nodes. The company has acknowledged that this issue previously caused these systems to fail during startup. What is NUMA? Non-Uniform Memory Access (NUMA) is a memory architecture used in multiprocessor systems where the time it takes for a processor to access memory varies based on the memory’s location relative to the processor. In NUMA, each processor has its local memory that is accessible more quickly than memory shared with other processors or located far away. This design enhances performance in high-performance computing environments by reducing memory access delays. NUMA is widely implemented in Windows Servers that have multiple physical CPUs or multi-core processors. “Some servers that have two or more NUMA nodes fail to start up,” Microsoft explained in a support document. “​​​​​​​If you installed earlier updates, only the new updates contained in this package will be downloaded and installed on your device. ” Microsoft has also released the servicing stack update (KB5050117) for Windows Server 2022. This release brings quality improvements to the servicing stack, which is a critical component in Windows responsible for installing updates. In related news, Microsoft has resolved a bug that caused Microsoft 365 Apps to crash on Windows Server 2019 and 2016. The issue stemmed from a recent Office update that integrated the React Native framework. Microsoft has provided a workaround for users who haven't yet received the automatic update. --- ### Microsoft to Enhance Intune with Security Features and Device Cleanup Tools - Published: 2025-01-22 - Modified: 2025-01-22 - URL: https://petri.com/microsoft-to-enhance-intune-with-security-features-and-device-cleanup-tools/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft is working on several new features for its Intune service. The company will introduce a new integration of Enterprise App Catalog apps with Windows Autopilot for enhanced deployment and management. Microsoft Intune Enterprise App Management is a feature that helps administrators discover, deploy, and manage applications from the Enterprise App Catalog. It provides a comprehensive view of all apps that need updates. “Using Windows Autopilot, you'll be able to select blocking apps from the Enterprise App Catalog in the Enrollment Status Page (ESP) and the Device Preparation Page (DPP) profiles. This allows you to update apps more easily without needing to update those profiles with the latest versions,” Microsoft explained. Additionally, Microsoft mentioned that the remote actions (such as Retire, Wipe, and Delete) will add support for multiple administrative approval (MAA). The MAA feature requires a second administrator to approve certain actions before they are executed. The upcoming update will help to ensure that any remote actions will require approval from a second administrator before they can be executed. This security feature is designed to prevent unauthorized access and mitigate compromised accounts. Microsoft also plans to add a new feature that will let customers configure a specific rule for cleaning up devices for each platform. It will also be possible to customize Role Based Access Control Permissions (RBAC) for different actions. This capability helps to assign specific permissions to different roles. Microsoft Intune to support platform level targeting of Device Cleanup rule According to Microsoft, platform level targeting of... --- ### How to Apply Sensitivity Labels to Microsoft Teams > Learn how to apply Teams sensitivity labels for enhanced security and compliance in Microsoft Teams. - Published: 2025-01-21 - Modified: 2025-01-21 - URL: https://petri.com/microsoft-teams-sensitivity-labels/ - Categories: Microsoft 365, Microsoft Teams - Tags: Compliance, featured-top-right, Microsoft 365, Microsoft Teams, Security - Article Type: How To Microsoft launched Microsoft Teams in March 2016 as a real-time team collaboration tool. Since then, it has seen substantial adoption inside Microsoft and outside. According to a recent Microsoft announcement, Teams has 270 million monthly active users, and 3 million organisations use it. With Teams sensitivity labels, managing sensitive data has become easier for administrators. That is a lot of sensitive data being used and added to Teams. This number will grow fast with additional features such as video calls, audio calls, chat, document sharing, etc. Therefore, an administrator might want more control to help protect their corporate assets, and the easiest way to do this is through teams sensitivity labels. What are sensitivity labels? Sensitivity labels from Microsoft Purview Information Protection let you classify and protect your organisation's data while ensuring that users can remain productive, and it does not hinder their ability to collaborate. You can provide protection settings with teams sensitivity labels, including encryption and content marking. Administrators can apply sensitivity labels to files, emails, groups, and sites. Sensitivity labels encrypt the content by applying a "Highly Confidential" label to a document or email, and a watermark is applied. Several types of content markings, including headers, footers, and watermarks, and encryption can also limit what authorised people can do with the content. Figure 1: Sensitivity label applied to a Word document (Image Credit: Kat Beedim/Petri. com) Sensitivity labels are part of Azure Information Protection Plan 1 and Plan 2. Manual labelling is available in Azure Information Protection... --- ### Microsoft to Retire Azure AD Graph APIs Next Month - Published: 2025-01-21 - Modified: 2025-01-21 - URL: https://petri.com/microsoft-retire-azure-ad-graph-apis/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft is moving forward with the phased retirement of its Azure AD Graph API service, which began in September 2024. The company has confirmed that starting February 1, 2025, existing applications will no longer be able to send requests to the Azure AD Graph API. Azure AD Graph API was a service that allowed developers to interact programmatically with Azure Active Directory (Azure AD). It enabled the management of directory resources like users, groups, and applications through RESTful endpoints. However, Azure AD Graph API has been deprecated and Microsoft recommends using Microsoft Graph API instead. Microsoft Graph API was launched in 2017, and it offers a more comprehensive set of features, enhanced security, and better integration capabilities. In 2021, Microsoft provided a tool to help customers find and replace any Azure AD Graph dependencies. The Microsoft Entra recommendation feature also helps IT admins identify and address outdated dependencies within their Azure AD environment. “Microsoft Graph represents our best-in-breed API surface. It offers a single unified endpoint to access Microsoft Entra services and Microsoft 365 services such as Microsoft Teams and Microsoft Intune. All new functionalities will only be available through Microsoft Graph. Microsoft Graph is also more secure and resilient than Azure AD Graph,” Microsoft explained. How to extend Azure AD Graph API access for an app? Microsoft is gradually rolling out this change to all tenants, with full availability anticipated by the end of February. The company has also provided a temporary workaround to help organizations with legacy applications... --- ### Microsoft Resolves Crash Issues in Microsoft 365 Apps on Windows Server - Published: 2025-01-21 - Modified: 2025-01-22 - URL: https://petri.com/microsoft-365-apps-crash-windows-server/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft has fixed a critical issue that had been causing Microsoft 365 apps and classic Outlook to crash on Windows Server 2019 and 2016. The company identified the root cause as a recent Microsoft Office update, which introduced the React Native framework integration to enhance functionality across its suite of apps. React Native is a popular JavaScript framework that lets developers build both mobile and desktop applications. It enables developers to write code once and deploy it across multiple platforms. The integration of React Native with Office apps allows Microsoft to deliver a consistent user experience across its suite of Office applications. In a Reddit thread, several users reported that their Office apps (such as Outlook, Excel, Word, and PowerPoint) unexpectedly closed or stopped working almost immediately after being opened. The problem affected only users who updated the classic Outlook desktop client and other Microsoft 365 apps to Version 2412 (Build 18324. 20168). “If your Microsoft 365 Apps clients are configured to automatically update from the Office Content Delivery Network (CDN), then no action is required. If you manage updates directly you can now download this latest update and begin deployment,” Microsoft explained. "We'll be gradually rolling out this update of Microsoft 365 Apps to users on that update channel starting January 16th, 2025 (PST). " Microsoft Outlook crashing on Windows Server (Image Credit: Spiceworks) Workaround to fix Microsoft 365 apps crashing on Windows Server Microsoft says that customers who haven’t received the automatic update can manually downgrade to Version 2411 (Build... --- ### Biden’s Executive Order Targets Cybersecurity, AI, and Critical Infrastructure - Published: 2025-01-20 - Modified: 2025-01-20 - URL: https://petri.com/bidens-executive-order-cybersecurity-ai/ - Categories: Security - Tags: cybersecurity, News - Article Type: News The Biden administration issued a new cybersecurity executive order (EO) on January 16, 2025. This directive introduces stringent standards for software companies working with the US government and mandates greater transparency from providers to bolster national digital security. The 40-page executive order signed by the Biden administration on Thursday addresses multiple cybersecurity concerns. These include requiring software providers to develop more secure products, harnessing AI to boost cyber defense capabilities, issuing strict sanctions for ransomware groups, and securing federal communications networks against foreign entities. Specifically, the executive order mandates software vendors that sell products and services to the US government to submit proof that they follow secure software development practices. The Cybersecurity and Infrastructure Security Agency (CISA) will be required to double-check these security attestations within 90 days. These companies will be required to adhere to a new set of security practices. Additionally, the order directs the National Institute for Standards and Technology to offer guidance on securely deploying software updates and patches. It also directs federal agencies to issue recommendations on using and securing open-source software. Biden's cybersecurity plan proposes strengthened authentication, AI-powered defense, and more Biden’s directive requires federal agencies to use phishing-resistant authentication standards like WebAuthn. It directs CISA, the Department of Defense, and Homeland Security to accelerate the detection and identification of new security threats before they spread across government networks. The executive order also mandates federal agencies to migrate to post-quantum cryptographic standards by 2030. The agencies will be required to submit detailed plans in... --- ### Microsoft to Let Windows 11 Users Enable Administrator Protection from Settings - Published: 2025-01-20 - Modified: 2025-01-20 - URL: https://petri.com/windows-11-enable-administrator-protection-settings/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has started testing a streamlined approach to enable the Administrator Protection feature in Windows 11. The latest Windows 11 Canary builds introduce a new setting that allows users to turn on this security feature without needing IT administrator approval. What is Administrator protection? Microsoft first introduced the Administrator protection feature in the Windows 11 Canary build back in October 2024. This feature is designed to enhance security by giving users "just-in-time" administration privileges when prompted. When a system process requires administrator privileges, the user is prompted to securely authorize this activity through Windows Hello. The administrator privilege granted to a process is temporary. It is only available while the process is active and is revoked once the process completes its task and ends. Currently, this feature is disabled by default and requires a change in the group policy settings to enable it. How does this new feature work? With this upcoming change, users will be able to enable the Administrator protection feature from the Account Protection section on the Windows Security Settings page. Users will need to reboot their Windows 11 PCs to apply the changes. “With Administrator protection, the user stays de-privileged and is granted just-in-time elevation rights only for the duration of an admin operation. The admin token is discarded after use and is recreated when another task requiring admin privileges is performed,” the Windows Insider team explained. Configuring Administrator protection (Image Credit: Microsoft) The Administrator protection feature makes it harder for cybercriminals to exploit privilege escalation... --- ### Microsoft to Discontinue Support for Office Apps on Windows 10 in October - Published: 2025-01-17 - Modified: 2025-01-17 - URL: https://petri.com/microsoft-discontinue-support-office-apps-windows-10/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft announced this week that it will end support for Office apps on Windows 10 later this year, aligning with the operating system's end-of-support date. The company strongly advises both consumers and businesses to upgrade to Windows 11 for continued updates and optimal performance. “Microsoft 365 apps will no longer be supported on Windows 10 after it reaches end of support on October 14, 2025. Microsoft 365 apps are no longer supported on Windows 7, Windows 8, or Windows 8. 1 now that these operating systems have reached their end-of-support dates. To avoid performance and reliability issues, we recommend that you move to Windows 11,” Microsoft explained in a support document. Microsoft has confirmed that Office apps like Word, Excel, and PowerPoint will still work on Windows 10 PCs but will no longer receive new features or security updates. Over time, users may encounter performance and reliability issues. To address this, Microsoft strongly recommends upgrading to Windows 11. Microsoft also plans to introduce a paid Extended Security Updates (ESUs) program to assist businesses and individuals requiring more time to transition. This program will provide security updates even after Windows 10 reaches its end-of-support date. Consumers can pay $30 for an additional year of updates, while businesses can opt for extended security updates for up to three years. This program aims to help users protect their Windows 10 devices from security vulnerabilities and other threats during the transition period. Microsoft stresses Windows 11 upgrade despite slow adoption Since its launch, Microsoft has... --- ### First Ring Daily: Copilot Gets Costly - Published: 2025-01-17 - Modified: 2025-01-17 - URL: https://petri.com/first-ring-daily-copilot-gets-costly/ - Categories: Microsoft 365, Microsoft Copilot - Tags: copilot, Microsoft 365 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss how Microsoft is using Copilot to raise the price of its Microsoft 365 consumer subscriptions just days after announcing new on-demand AI agents for the commercial version of the AI assistant. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss how Microsoft is using Copilot to raise the price of its Microsoft 365 consumer subscriptions just days after announcing new on-demand AI agents for the commercial version of the AI assistant. --- ### How to Perform an In-Place Upgrade to Windows Server 2025 - Published: 2025-01-17 - Modified: 2025-01-17 - URL: https://petri.com/in-place-upgrade-to-windows-server-2025/ - Categories: Windows Server - Tags: featured-top-right, Windows Server 2025 - Article Type: How To In this post, I will demonstrate how to perform an in-place upgrade to Windows Server 2025 from one of your existing Windows Servers. Reminder: Microsoft fully supports in-place upgrades to Windows Server 2025 from Windows Server 2012 R2 and later versions. In this article, I'll show you how to perform the upgrade from the command line. Using this method, you can automate in-place upgrades to Windows Server 2025 across many devices. Initial preparation and prerequisites for an in-place upgrade to Windows Server 2025 Make sure the ISO file you downloaded or have contains the edition of Windows Server 2025 you need (Standard, Datacenter). Also, verify that you have an official product activation key or confirm that your network has an existing Key Management Services (KMS) server to auto-activate your server. With that out of the way, go ahead and insert a USB stick with the Windows Server 2025 installation media (ISO) in your server or use your virtualization software to mount the ISO to one of your virtual servers. Here, I am adding the ISO to my 'WS22-DC4' VM running Windows Server 2022. Using Hyper-V Manager to mount the Windows Server 2025 ISO for my in-place upgrade to Windows Server 2025 - Image Credit: Michael Reinders/Petri Before running Windows Setup on the server you want to upgrade, let's collect some diagnostics for troubleshooting purposes in the event the Feature Update is unsuccessful. Let's run the following Get-ComputerInfo, systeminfo. exe, and ipconfig commands to collect some important information: Get-ComputerInfo -Property WindowsBuildLabEx,WindowsEditionID... --- ### January 2025 Patch Tuesday Updates Face Compatibility Issues with Citrix Software - Published: 2025-01-17 - Modified: 2025-01-17 - URL: https://petri.com/january-2025-patch-tuesday-updates-citrix-software/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has identified a compatibility issue between the January 2025 Patch Tuesday updates and specific Citrix software installations. The company confirmed on the Windows Release Health Dashboard that the latest updates may fail on devices running Citrix’s Session Recording software version 2411. Citrix Session Recording is a software solution that enables organizations to record and monitor user sessions within Citrix environments. It records interactions between users and the virtual environment such as mouse movements, keyboard input, and screen activity. Administrators can analyze recorded sessions to gain insights into application performance, user behavior, and system issues. “Affected devices might initially download and apply the January 2025 Windows security update correctly, such as via the Windows Update page in Settings. However, when restarting the device to complete the update installation, an error message with text similar to “Something didn’t go as planned. No need to worry – undoing changes” appears. The device will then revert to the Windows updates previously present on the device,” Microsoft explained. Workaround to fix Citrix compatibility issues with the January 2025 Patch Tuesday updates Citrix is currently investigating the issue, and the company has published a workaround to address the problem on affected Windows PCs. For now, the only way to resolve the issue is to disable the Session Recording Monitoring Service before installing the January 2025 Patch Tuesday updates by following these steps: Press the Win + R keys to open the Services Management Console, type services. msc, and then press the Enter key. Right-click on the... --- ### Microsoft Teams Now Lets Users Control Where Notifications Appear on Screen - Published: 2025-01-16 - Modified: 2025-01-16 - URL: https://petri.com/microsoft-teams-now-lets-users-control-where-notifications-appear-on-screen/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Last month, Microsoft announced plans to roll out a new feature that enables users to customize the location of notifications in Microsoft Teams. This new setting is currently available in public preview for the new Microsoft Teams desktop client for Windows. Typically, Microsoft Teams' banner notifications appear at the bottom right corner of the screen. These notifications alert users about new messages, calls, or other important updates while they are working on other applications. Users can interact with these notifications directly, such as clicking to open the chat or call. Microsoft emphasized that placing notifications in less intrusive areas of the screen will help users stay focused on their tasks with fewer disruptions. This change ensures users remain informed about important updates without interrupting their workflow. Customize the location of notifications in Teams (Image Credit: Microsoft) How to customize the location of notifications in Microsoft Teams To customize the location of notifications, Microsoft Teams users will need to navigate to Settings > Notifications and activity > Display. Now, users will select the option for notification based on their preferences: Bottom right, Top right, Bottom left, or Top left. Microsoft is gradually rolling out the new notification setting to Targeted release customers and users enrolled in the Teams public preview program. IT administrators will need to enable the "Show preview features" option in their update policy. For Targeted release, global admins can access the Microsoft 365 admin center to grant access to specific users or the entire organization. Last month, Microsoft... --- ### Microsoft Defender for Office 365 Adds AI-Powered Threat Classification to Boost Email Security - Published: 2025-01-16 - Modified: 2025-01-16 - URL: https://petri.com/microsoft-defender-for-office-365-threat-classification/ - Categories: Security - Tags: Microsoft 365, News - Article Type: News Microsoft is introducing a new Threat classification feature in Defender for Office 365 to improve email security. This tool leverages AI and machine learning to help security teams identify and understand the intent behind email threats. The latest update allows administrators to incorporate Threat classification information into key features of the Defender portal, improving detection, analysis, and response within their organizations. It uses advanced techniques like large language models (LLMs) and machine learning (ML) to better understand the intent behind threats. How does the Threat classification feature work? The new Threat classification feature offers several improvements for security analysts, such as granular threat identification, enhanced incident analysis, faster response, and inclusion in advanced hunting. It categorizes phishing threats into types like Invoice Scams, Corporate Data Theft, Payroll Fraud, Lure-Based Attacks, and Gift Card Fraud. On the Threat Explorer page, administrators can filter emails by Threat classification, view classifications in the results, analyze trends using charts, and export data with classification details. On the Advanced Hunting page, the ThreatClassification column in the EmailEvents table enables the creation of custom detection rules based on classification information. Threat Explorer (Image Credit: Microsoft) The Email Summary panel will integrate Threat classification across various areas, such as Alerts, Incidents, Reports, AIR, Submission, Explorer, and Advanced Hunting. Additionally, the Email Entity page will feature a new Threat classification field in the threat detection details. It should help IT administrators understand the context and intent behind detected threats. The new Threat Classification feature is expected to become... --- ### SQL Server Essentials: Core SQL Server Data Types - Published: 2025-01-15 - Modified: 2025-01-15 - URL: https://petri.com/sql-server-data-types/ - Categories: SQL Server - Tags: featured-top-right, SQL Server - Article Type: Overview In this article we’ll cover the essential SQL Server data types and discuss their common usage. Data is at the core of all relational database systems and SQL Server supports many different types of data and each data type represents a specific category of data. Each of the different data types have different uses and permitted operations. For example, character data types might support string searches and comparisons while numeric data types support mathematical operations. SQL Server character data types The most common SQL Server data types are probably the different character data types. SQL Server character data types can contain character strings like letters, numbers, and special characters. Character data types support string searches, comparisons and substring operations. The primary character data types are char and varchar. Char data types are fixed length while varchars are variable length. For a char data type the (n) represents the actual length of the character data for a varchar it is the maximum length. The nchar and nvarchar data types are the same as the char and varchar data types but store Unicode data. The text data type is used for very large character string data and has a maximum length of 2 GB. Data TypeDescriptionchar(n)A fixed length string where n specifies the column length from 1 to 8,000. Default size is 1. varchar(n)A variable length string where n specifies the maximum string length from 1 to 8,000. Default size is 1. varchar(max)A variable string up to 2 GBtextVariable length non-Unicode character data... --- ### Microsoft 365 Copilot Chat Introduces Pay-as-You-Go Agents for Businesses - Published: 2025-01-15 - Modified: 2025-01-15 - URL: https://petri.com/microsoft-365-copilot-chat-pay-as-you-go-agents/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365 Copilot Chat, News - Article Type: News Microsoft introduced today a new Microsoft 365 Copilot Chat experience for commercial customers. This service extends the existing free AI chat functionality with an option to use pay-as-you-go AI agents that will be accessible directly from the chat conversation. Microsoft 365 commercial customers will have access to a secure and reliable chat experience backed by OpenAI’s GPT-4. Organizations can deploy specialized AI agents for tasks like customer service or technical support. These agents are available directly within the chat interface and are billed based on usage. This service also provides IT teams with robust tools to manage agents, protect enterprise data, and ensure compliance with security policies. “Copilot Chat is a powerful new on-ramp for everyone in your organization to build the AI habit with Copilot and agents. Microsoft 365 Copilot remains our best-in-class personal AI assistant at work. It includes everything in Copilot Chat, plus grounding in all your meetings, emails, chats, and documents. And it includes Copilot in the Microsoft 365 apps that millions of people rely on every day — Teams, Outlook, Word, Excel, PowerPoint, and more,” Microsoft explained. Microsoft 365 Copilot Chat (Image Credit: Microsoft) What is included in Microsoft 365 Copilot Chat for businesses? Microsoft 365 Copilot Chat includes GPT-4o-powered web-grounded chat, which helps users with tasks like market research, drafting strategic plans, and preparing for meetings. Users can also upload files such as Word, Excel, and PowerPoint documents directly into the chat, allowing the Copilot AI assistant to offer personalized support. It analyzes the... --- ### January 2025 Patch Tuesday Updates Fix Critical Hyper-V Privilege Escalation Flaws - Published: 2025-01-15 - Modified: 2025-01-15 - URL: https://petri.com/january-2025-patch-tuesday-updates/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft released yesterday the January 2025 Patch Tuesday updates for Windows 11 and Windows 10. This month’s Patch Tuesday updates include fixes for 159 vulnerabilities in Windows, Office, Hyper-V, SharePoint Server, Azure, and more. “This is the largest number of CVEs addressed in any single month since at least 2017 and is more than double the usual amount of CVEs fixed in January,” the Zero Day Initiative explained. “This comes on the heels of a record number of December patches and could be an ominous sign for patch levels in 2025. ” 159 vulnerabilities fixed with the January 2025 Patch Tuesday updates Among the 159 vulnerabilities that Microsoft fixed this month, 11 are rated “Critical” and the other 148 are rated Important in severity. There are also three security flaws that are already being exploited by attackers. Let’s take a closer look at some of the most important vulnerabilities Microsoft fixed this month: CVE-2025-21333, CVE-2025-21334, and CVE-2025-21335: Microsoft has addressed three privilege escalation flaws in Windows Hyper-V. These vulnerabilities are rated important in severity with a CVSS score of 7. 8. Attackers could exploit these bugs to gain system-level privileges on affected Windows 10, Windows 11, Windows Server 2022, and Windows Server 2025 machines. CVE-2025-21186, CVE-2025-21366, and CVE-2025-21395: These remote code execution flaws in Microsoft Access are rated important with a CVSS score of 7. 8. A successful exploitation of these bugs requires user interaction like downloading and running a malicious file. CVE-2025-21275: This is an elevation of privilege vulnerability in Windows App... --- ### New Unified Contacts Experience Enhances Collaboration Across Microsoft Teams and Outlook - Published: 2025-01-14 - Modified: 2025-01-14 - URL: https://petri.com/new-unified-contacts-experience-microsoft-teams-outlook/ - Categories: Microsoft Teams - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft has announced the general availability of the new unified contacts experience in Microsoft Teams and Outlook. This new feature is currently available to all Outlook users and will be gradually rolled out to Microsoft Teams users by April 30, 2025. The new unified contacts experience aims to improve collaboration by allowing Microsoft Entra ID customers to easily access and manage the same set of contacts across both Teams and Outlook. Moving forward, users' contacts will be linked to their Microsoft account instead of being tied to individual applications. “Presently, the contacts created in Teams are not accessible in Outlook and vice versa. Many of you have shared feedback about the need for having a single set of contacts across Teams and Outlook to avoid the context switching and dual effort in upkeeping contacts due to the current app level segregation of contacts,” Microsoft explained. List of contacts in the People App (Image Credit: Microsoft) The new unified contacts experience synchronizes contact updates across Microsoft Teams, Outlook, and Microsoft Graph APIs. Moreover, user annotations (like category labels) are consistently updated across Teams and Outlook. This feature will automatically detect and merge any duplicate contacts between both apps. A new category label ‘Teams Conflict’ will be automatically applied to duplicate contacts to highlight any conflicts or inconsistencies that require user attention. How to get started with the new unified contacts experience in Microsoft Teams To access the new unified contacts experience, users will need to launch the new Microsoft Teams client... . --- ### Microsoft Takes Legal Action Against Cybercriminals Exploiting AI Services to Spread Harmful Content - Published: 2025-01-14 - Modified: 2025-01-14 - URL: https://petri.com/microsoft-sues-cybercriminals-ai-services/ - Categories: Artificial Intelligence - Tags: AI, News - Article Type: News Microsoft has filed a lawsuit against a group of cybercriminals accused of creating malicious tools to bypass the security safeguards of its generative AI services. These tools were allegedly designed to produce harmful content, with the perpetrators profiting by selling access to other malicious actors. In the court filings, Microsoft mentioned that a foreign-based threat actor group allegedly compromised the accounts of legitimate Microsoft customers. The cybercriminals then sold access to these accounts through a web domain. The service also included instructions on how to use these custom tools to generate harmful content. Microsoft has since shut down the service that ran from July to September 2024. “First, Defendants created a client-side software tool referred to by Defendants as "de3u," which Defendants make publicly available via the "rentry. org/dc3u" domain. Second, Defendants created software for running a reverse proxy service, referred to as the "oai reverse proxy," designed specifically for processing and routing communications from the de3u software to Microsoft's systems,” Microsoft explained. de3u User Interface (Image Credit: Microsoft) Microsoft boosts security to fight against malicious AI use Microsoft did not specify how the cybercriminals compromised legitimate customer accounts. However, the company noted that hackers have previously created tools to scan code repositories for API keys accidentally included in applications. Microsoft also warned that credentials could be stolen by hackers who gain unauthorized access to networks. The lawsuit accuses that the group of cybercriminals violated the federal laws, including the Computer Fraud and Abuse Act, the Digital Millennium Copyright Act, and... --- ### Microsoft Intune Company Portal - Everything You Need to Know - Published: 2025-01-13 - Modified: 2025-01-14 - URL: https://petri.com/microsoft-intune-company-portal/ - Categories: Endpoint Management - Tags: Endpoint Management, featured-top-right, Microsoft Intune At the device and user level, the Intune Company Portal serves as powerful application that allows end users to install approved apps, securely access resources, and stay compliant with organizations policies.   In the modern workplace, ensuring that company-owned devices remain secure and compliant is essential. Without proper oversight, these endpoints can quickly become a conduit for security breaches and data loss. Microsoft Intune addresses these risks by offering a robust, cloud-based approach to managing mobile devices and applications. What Is the Intune Company Portal? The Microsoft Intune Company Portal (to give it it's full title) is a dedicated app that is the user facing portion of Microsoft Intune. Its primary role is to give employees and / or students a simplified interface for accessing business resources, apps, and reviewing / remediating their device compliance. The Intune Company Portal ensures that users can enroll their devices, install sanctioned applications, and stay compliant with policies designed to protect corporate data. There are versions of the company portal for all operating systems that Intune supports, including: Android iOS macOS and Windows. Once the portal is installed, users can sign in (or be signed in automatically) using their Microsoft school or work account. Core use cases of the Intune Company Portal Key use cases of the Company Portal are: Application Management Users browse, install, and update business-approved apps through a centralized portal. This streamlined process ensures employees have rapid access to the software they need, without waiting for lengthy support requests By allowing users self-service... --- ### Microsoft Entra ID Adds TAP Support for Internal Guests - Published: 2025-01-13 - Modified: 2025-01-13 - URL: https://petri.com/microsoft-entra-id-tap-internal-guests/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Microsoft Entra ID has introduced support for issuing Temporary Access Passes (TAPs) for internal guest users. These passcodes are time-limited and help onboard and recover accounts without relying on traditional passwords. What is a Temporary Access Pass (TAP)? A Temporary Access Pass (TAP) in Microsoft Entra ID is a time-limited passcode designed to help users onboard passwordless authentication methods, such as FIDO2 security keys or the Microsoft Authenticator App. It also enables users to regain account access without relying on a password. Administrators can configure TAP policies to define the passcode’s duration and usage limits and assign it to specific users or groups. Microsoft has outlined several key benefits of this new feature for Entra ID customers. This capability allows internal guests to configure and recover their accounts with time-bound TAPs easily. It offers a secure temporary access method to minimize the risks associated with lost or forgotten passwords. Administrators can manage TAPs for internal guests to ensure that necessary access is provided without compromising security. Windows device setup (Image Credit: Microsoft) How to get started? To get started, administrators will need to enable the Temporary Access Pass (TAP) policy in the Microsoft Entra admin center. Next, they will generate TAPs for internal guests using the Entra admin center or Microsoft Graph. Finally, IT admins will allow internal guests to use these TAPs for seamless onboarding and account recovery. “You can add a TAP as a sign-in method to an internal guest, but not other types of guests. An internal... --- ### Microsoft to Force Install New Outlook on Windows 10 PCs: Here’s What You Need to Know - Published: 2025-01-13 - Modified: 2025-01-13 - URL: https://petri.com/new-outlook-install-windows-10/ - Categories: Microsoft 365, Windows 10 - Tags: featured-top-left, News, Windows 10 - Article Type: News Microsoft is preparing to roll out an update that will automatically install the new Outlook for Windows client on Windows 10 PCs. The company announced in a message on the Microsoft 365 admin center that the rollout will take place in two different phases. The new Outlook for Windows will be automatically installed on Windows 10 PCs as part of an optional update that will ship on January 28. The app will then roll out to all Windows 10 users as part of the monthly security update release on February 11. Microsoft notes that the new Outlook will coexist with the classic Outlook desktop application. This means that users will be able to run the new Outlook and classic Outlook side-by-side. It will not require any changes to configurations or user defaults. “New Outlook exists as an installed app on the device. For instance, it can be found in the Apps section of the Start Menu. It does not replace existing (classic) Outlook or change any configurations / user defaults. Both (classic) Outlook and New Outlook for Windows can run side by side,” Microsoft explained. How to remove the new Outlook on Windows 10 PCs Currently, there is no way to block the installation of the new Outlook app on Windows 10 PCs. However, IT admins can choose to remove the installation through a PowerShell script or by applying a registry tweak to prevent Windows updates from reinstalling the new Outlook for Windows client. Last month, Microsoft announced that it... --- ### First Ring Daily: What The Dell Happened? - Published: 2025-01-10 - Modified: 2025-01-10 - URL: https://petri.com/first-ring-daily-what-the-dell-happened/ - Categories: Hardware - Tags: AMD, CES, Dell, First Ring Daily, Intel, News, NVIDIA - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss some of the biggest news of CES 2025 including Dell's simplified PC portfolio, new CPUs from Intel and AMD, and Nvidia's new GPUs and AI tools for PCs. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss some of the biggest news of CES 2025 including Dell's simplified PC portfolio, new CPUs from Intel and AMD, and Nvidia's new GPUs and AI tools for PCs. --- ### What Is Azure Policy? - Published: 2025-01-10 - Modified: 2025-01-10 - URL: https://petri.com/what-is-azure-policy/ - Categories: Microsoft Azure, Security - Tags: Azure Policy, featured-top-right - Article Type: Overview Effective governance is essential in today’s multi-cloud, hybrid IT ecosystems. Azure Policy provides a comprehensive framework for defining, enforcing, and automating compliance across Microsoft Azure resources, on-premises workloads, and third-party clouds via Azure Arc. Azure Policy ensures your resources align with business, security, and compliance requirements—without adding operational overhead. By leveraging initiatives, built-in policies, custom rules, and remediation capabilities, Azure Policy allows IT pros to audit, prevent, and fix misconfigurations at scale. This article provides an actionable overview of Azure Policy, its core components, and practical use cases for real-world IT scenarios. What does Azure Policy do? Azure Policy enforces resource configurations to meet business and security standards. Unlike Azure role-based access control (RBAC), which controls user actions (who can access or modify a resource), Azure Policy focuses on the state of resources: RBAC determines who can create a storage account. Azure Policy ensures the storage account is encrypted, tagged, and configured according to organizational requirements. This difference is critical for IT pros managing cloud governance at scale. With Azure Policy, you can ensure that resources meet security requirements, cost-management standards, and operational baselines automatically. Azure Policy applies to newly created resources and can audit or remediate existing resources that don’t comply. For example, if a virtual machine is missing diagnostic settings, Azure Policy can flag it or fix it using remediation tasks. This makes it a powerful tool for preventing misconfigurations before they happen and fixing ones already in place. Azure Policy works across Azure subscriptions, resource groups,... --- ### Key Deadlines IT Admins Need to Know for Microsoft 365 Products and Features - Published: 2025-01-10 - Modified: 2025-01-10 - URL: https://petri.com/key-deadlines-microsoft-365-products-features/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft will officially drop support for Windows 10 on October 14, 2025. Additionally, the company has announced plans to retire several key Microsoft 365 features and products by the end of this year, urging customers to prepare for these upcoming changes (via AdminDroid). First off, Microsoft has detailed some important changes coming to the Teams PowerShell cmdlets. Later this month, Microsoft plans to deprecate Get-CsDialPlan cmdlet. The company will also retire DialPlan attribute from Get-CsOnlineUser and LocationProfile attribute from Get-CsUserPolicyAssignment cmdlet. Microsoft recommends customers to use the Get-CsEffectiveTenantDialPlan cmdlet instead. Exchange Online Legacy Tokens Microsoft will turn off Exchange Online Legacy Tokens across Microsoft 365 tenants in February 2025. However, administrators will have the temporary option to enable them via PowerShell. Microsoft will remove the option to re-enable Legacy Tokens in June. However, Exchange Online Legacy Tokens will be turned off for all tenants in October. It’s important to note that the depreciation of Exchange Online legacy Tokens will impact old Outlook add-ins, which help users manage emails, appointments, tasks, and other features. Microsoft urges organizations to migrate Outlook add-ins to use Entra ID tokens through Nested App Authentication (NAA) and Microsoft Graph. RBAC application impersonation role in Exchange Online Additionally, Microsoft will retire the RBAC application impersonation role in Exchange Online due to security concerns next month. This role is used to grant service applications access to multiple mailboxes. Customers can use Role-Based Access Control for applications accessing mailboxes. Microsoft strongly recommends organizations to migrate apps to Microsoft Graph... --- ### Microsoft to Lay Off Underperforming Employees Across Key Divisions - Published: 2025-01-09 - Modified: 2025-01-10 - URL: https://petri.com/microsoft-lay-off-underperforming-employees/ - Categories: Microsoft - Tags: featured-top-left, Microsoft, News - Article Type: News Microsoft is gearing up for another wave of job cuts, this time targeting employees deemed underperforming. According to a new report from Business Insider, the layoffs will span multiple departments, including the critical security division. Microsoft has been conducting performance evaluations across the company over several months in order to identify areas for improvement. The exact number of affected employees has not been disclosed. However, the company typically fills roles left vacant by performance-related departures, which means the overall workforce size is unlikely to decrease significantly. Microsoft is also making it easier for managers to take action against employees who fail to meet performance standards. “At Microsoft we focus on high performance talent. We are always working on helping people learn and grow. When people are not performing, we take the appropriate action,” a Microsoft spokesperson said in a statement. Microsoft’s approach to streamlining operations through workforce reductions In recent years, Microsoft has carried out strategic job cuts across multiple sectors to streamline operations and boost efficiency. In 2023, the company laid off about 1,000 employees across various divisions, including its Xbox gaming division. After acquiring Activision Blizzard for $75. 4 billion, Microsoft cut nearly 2,000 roles in its gaming division in early 2024. In the summer of 2024, Microsoft laid off approximately 1,000 employees from its Azure cloud services division. Then, in September, the company made additional cuts, letting go of 650 employees from the Xbox division. These cuts increased the total number of gaming-related layoffs for the year to... --- ### Microsoft to Enhance New Outlook for Windows with S/MIME Support for Secure Email Communication - Published: 2025-01-09 - Modified: 2025-01-09 - URL: https://petri.com/microsoft-new-outlook-for-windows-s-mime/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is adding fundamental Secure/Multipurpose Internet Mail Extensions (S/MIME) support for primary accounts to the new Outlook for Windows. This feature will allow users to securely send and receive digitally signed and encrypted emails. What is S/MIME? Secure/Multipurpose Internet Mail Extensions (S/MIME) is a popular protocol that is used to enhance the security of email communications. It provides two key features called encryption and digital signatures. Encryption helps protect an email's contents to ensure that only the intended recipient can read it. Digital signatures also help to confirm the sender’s identity and ensure that the email hasn’t been altered during transmission. S/MIME uses public key cryptography to boost the security of email communication. This protocol is built into all popular email clients, allowing users to send and receive secure emails. Previously, this feature was available only on the Outlook web app, and Microsoft is now bringing S/MIME support to the new Outlook for Windows. With this update, users will be able to send and read signed and encrypted emails directly within the new Outlook for Windows. This new option is accessible via Options > More Options. “If your organization is currently using S/MIME, you will soon see controls to apply S/MIME encryption when signing into new Outlook. Similarly, you will be able to verify, sign, decrypt, and reply to S/MIME emails,” the company explained on the Microsoft 365 admin center. What you need to do to prepare for this change? Microsoft says that both new and existing S/MIME configurations will... --- ### Unlocking the Power of Active Directory Groups: A Comprehensive Guide - Published: 2025-01-08 - Modified: 2025-01-08 - URL: https://petri.com/active-directory-groups/ - Categories: Active Directory (AD) - Tags: Active Directory, featured-top-right, Security - Article Type: Overview Active Directory groups are essential tools for managing and organizing users, computers, and other resources within a Windows domain. This article will provide an in-depth exploration of Active Directory (AD) groups, including their types, purposes, and best management practices. Whether you're a seasoned IT professional or just beginning your journey with Active Directory, this guide will help you understand the nuances and leverage the full potential of AD groups. Overview of Active Directory groups Active Directory domain groups are logical containers that house users, computer accounts, and/or other groups. There are two types of groups: Security and Distribution. Let's explore these groups and what differentiates them. Types of AD groups There are two types of Active Directory groups - Security and Distribution. These two types serve distinct purposes in AD. Understanding these sometimes nuanced differences is crucial. Let's look at both. Distribution groups Distribution groups are primarily used for email distribution lists. They are designed to streamline the sending of emails to multiple recipients. The largest technical difference is that these groups can NOT be used to assign user rights to resources in AD. These groups can be domain local, global, or universal—more on that in the next section. Security groups Security groups are used to assign permissions to network resources - files, folders, shared drives, and printers. You can grant a specific group read/write access to a share and simultaneously assign another group read-only access to the same share. As an example use case, you could create a... --- ### Microsoft Teams to Add New Live Chat Feature for Small Businesses - Published: 2025-01-08 - Modified: 2025-01-08 - URL: https://petri.com/microsoft-teams-live-chat-small-businesses/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a Live chat feature that will enable small businesses to interact directly with customers on their websites. The company has announced on the Microsoft 365 admin center that this new tool will initially be available later this month for U. S. -based customers with Microsoft 365 Business subscriptions. With this new live chat widget, visitors to the company’s website will be able to initiate a chat with the business team. The customer support team will be able to respond within their existing Microsoft Teams chat and channels. The new chat tool will enable small businesses to easily collect contact details from businesses on their website. Moreover, it will automatically assign website visitors to available team members in Microsoft Teams for real-time interaction. They will also be able to manage customer conversations directly within Microsoft Teams, including reassigning or closing chats as needed. Talk to customers directly in Teams (Image Credit: Microsoft) Additionally, this new feature will share customer requests and chat transcripts in a specific Teams channel for follow-up. A centralized dashboard will let business teams track all customer requests within a specific period. Configuring the new Live chat feature in Microsoft Teams Microsoft notes that this new live chat widget will be disabled by default in Microsoft Teams. IT admins will be able to configure this feature through the Teams Admin app for end users within their organization. Microsoft expects to roll out this new chat integration to all small businesses worldwide by late March 2025. This... --- ### What's New in Microsoft SharePoint - December 2024 - Published: 2025-01-08 - Modified: 2025-01-08 - URL: https://petri.com/microsoft-sharepoint-updates-december-2024/ - Categories: SharePoint - Tags: News, SharePoint - Article Type: News Microsoft published a comprehensive roundup of the enhancements made to its SharePoint service in December 2024. The company mentioned that some of these new features are currently being rolled out to Targeted Release Microsoft 365 customers. SharePoint: Microsoft Syntex update Microsoft has released a new simple document processing prebuilt model for its Syntex pay-as-you-go service. It leverages optical character recognition (OCR) and deep learning technologies to extract data from structured documents. This new pre-built model is designed to identify and extract key-value pairs, named entities, selection marks, as well as bar codes from documents such as invoices, forms, contracts, receipts, and bank statements. Users can configure this model to extract this information to specified library columns. The extractor details page (Image Credit: Microsoft) Power Apps card for Viva Connections Microsoft has added support for the Power Apps card to Viva Connections. This new feature allows customers to embed their Power Apps and Cards directly into the Viva Connections dashboard. With the Power Apps card, users can perform various tasks quickly within the dashboard, including checking sales numbers, submitting forms, and submitting vacation requests. The Power Apps card enables organizations to design cards tailored to their specific requirements, such as surfacing important news, providing access to training content, and managing various tasks. https://youtu. be/8B37DusCfXg Viva Pulse integration with Microsoft 365 Copilot subscription Microsoft has announced that the Viva Pulse experience is now a part of the Microsoft 365 Copilot subscription. The Viva Pulse tool lets organizations use brief surveys to collect real-time... --- ### Microsoft to Archive Unlicensed OneDrive Accounts This Month - Published: 2025-01-07 - Modified: 2025-01-07 - URL: https://petri.com/microsoft-archive-unlicensed-onedrive-accounts/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Last year, Microsoft announced plans to begin archiving OneDrive for Business accounts that remain unlicensed for over 90 days. The archiving process is set to kick off on January 27, and data in these accounts could become inaccessible or even permanently deleted. An unlicensed account is one that isn't linked to a Microsoft 365 or Office 365 subscription. Businesses may have unlicensed OneDrive accounts for several reasons, such as when an employee leaves the organization but their account remains active, or when an administrator removes the license. Microsoft says that these unlicensed accounts can create security and compliance issues, as well as lead to file duplication. According to Microsoft, users will no longer have access to unlicensed accounts once they are archived. Customers who want to reactivate their accounts will need to pay $0. 60/GB and then a monthly fee of $0. 05/GB for storage in the Microsoft 365 Archive. The account reactivation process can take up to 24 hours and provides 30 days of access to the account. “If you take no action for OneDrive accounts that have been unlicensed for longer than 90 days, these accounts will remain inaccessible to end users until you set up an Azure subscription and enable unlicensed account billing in the Microsoft SharePoint admin center. This action will not affect tenants who have not changed the default tenant retention settings,” the company explained on the Microsoft 365 admin center. The Unlicensed OneDrive accounts page (Image Credit: Microsoft) What do IT admins need to do to... --- ### Upgrade Now: Microsoft Declares 2025 the Year of Windows 11 - Published: 2025-01-07 - Modified: 2025-01-08 - URL: https://petri.com/microsoft-2025-year-windows-11/ - Categories: Windows 10, Windows 11 - Tags: featured-top-left, News, Windows 10, Windows 11 - Article Type: News Microsoft has officially declared 2025 the "year of Windows 11 PC refresh. " The company is urging customers to prepare to upgrade as Windows 10 approaches its end-of-support deadline in October 2025. "We believe that Windows 11 is available at a time when the world needs it most – providing advanced AI capabilities and modern security benefits that customers expect in 2025 and beyond," explained Yusuf Mehdi, executive vice president and consumer chief marketing officer at Microsoft. "As the world moves with us to Windows 11, we will welcome them with new features, enhanced security, improved functionality, and the familiar Windows experience they know and love. " Microsoft plans to end support for its Windows 10 operating system on October 14, 2025. After this date, the company will stop releasing feature and security updates to Windows 10 users. Microsoft will offer a paid Extended Security Update (ESU) program for businesses and consumers not yet ready to upgrade to Windows 11. The ESU program will provide Windows 10 home users an additional year of updates for $30. For businesses and schools, updates will cost up to $61 per user and can extend for up to three extra years. Microsoft launched the original version of Windows 11 back in 2021, but support was limited to PCs with processors no older than three to four years. These strict hardware requirements left many Windows 10 users unable to upgrade. Microsoft urges users to replace old Windows 10 PCs Microsoft emphasized that upgrading a Windows 10 device... --- ### What is Microsoft Global Secure Access? - Published: 2025-01-06 - Modified: 2025-01-06 - URL: https://petri.com/microsoft-global-secure-access/ - Categories: Microsoft Azure, Remote Access - Tags: featured-top-right - Article Type: How To, Overview Microsoft Global Secure Access (GSA) offers an integrated, identity-driven approach to securing remote access to applications, file shares and resources, regardless of location, device, or user identity. I didn’t expect we’d see the beginning of the end of traditional VPNs for at least a decade. The ever-present need for on-premises applications, file shares, and resources to be accessible to an increasingly mobile workforce will not begin to disappear any time soon. Many apps, file shares and resources simply must stay in traditional data centers, or in fully secured private portions of the public cloud (Azure Files in a private virtual network (vnet), for example). And yet, in 2023, we saw the public preview and (in 2024) the eventual release of Microsoft’s Global Secure Access solution. What is Microsoft Global Secure Access? Global Secure Access builds on Microsoft’s Application Proxy service by bringing together several features like HTTPS traffic traversal and cloud tunneling. GSA is built on the principles of Zero Trust and it features Microsoft Entra Internet Access, Microsoft Entra Internet Access for Microsoft Traffic, and Microsoft Entra Private Access to provide secure and adaptive access to Software-as-a-Service (SaaS) apps, private apps, and Microsoft services. Traffic forwarding profiles Global Secure Access includes 3 traffic forwarding profiles. Traffic forwarding profiles enable admins to forward specific traffic to Global Secure Access from devices running the Global Secure Access client. 1. Microsoft Entra Internet Access for Microsoft Traffic Whilst this traffic forwarding profile is a bit of a mouthful to say, it’s the only profile that’s included... --- ### Microsoft Teams to Add New Recording Policies for Town Halls and Webinars - Published: 2025-01-06 - Modified: 2025-01-06 - URL: https://petri.com/microsoft-teams-recording-policies-town-halls-webinars/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft Teams is set to roll out new recording policies specifically for town halls and webinars. This feature will be available across the Microsoft Teams desktop app for Windows, the Teams web client, and mobile apps next month. Microsoft Teams introduced support for town halls in October 2023. This feature allows organizations to host large, internal events like company-wide meetings, internal broadcasts, and global team meetings. Microsoft Teams town halls provide advanced production capabilities, structured attendee management, and support for up to 20,000 participants. On the other hand, Microsoft Teams webinars are designed for external-facing events, including customer presentations, marketing events, and training sessions. This feature also includes registration capabilities, an interactive Q&A experience, and support for up to 1,000 interactive participants. Previously, the recording policies for Microsoft Teams town halls and webinars automatically inherited the recording policy configured for meetings. With this update, town halls and webinars will have separate recording policies, allowing administrators to enable or disable recordings independently. This feature will be available to all users, regardless of their license type. How the new Microsoft Teams' recording policies will affect your organization? Microsoft advises organizations to update the default recording policy settings for town halls and webinars through PowerShell commands. After the rollout, administrators will have the flexibility to adjust these settings through either the Teams admin center or PowerShell commands. Microsoft notes that this change will be available by default for all users by late February 2025. The company recommends administrators review the existing configuration to... --- ### Critical Active Directory Vulnerability Could Let Attackers Crash Windows Servers - Published: 2025-01-03 - Modified: 2025-01-06 - URL: https://petri.com/active-directory-vulnerability-windows-servers/ - Categories: Active Directory (AD) - Tags: Active Directory, featured-top-left, News - Article Type: News Cybersecurity researchers have warned about a critical vulnerability in Windows Lightweight Directory Access Protocol (LDAP), posing a significant threat to unpatched Windows Servers. This flaw could be exploited to trigger server crashes or enable unauthorized remote access. What is LDAP? LDAP (Lightweight Directory Access Protocol) is a popular protocol for accessing and managing directory services over a network. It organizes data hierarchically to make it easier for customers to search and manage information about users, groups, and other entities. LDAP is typically used for authentication and authorization to ensure secure access to resources. The SafeBreach research team first identified the vulnerability in Active Directory's LDAP. The security flaw is tracked as CVE-2024-49113 with a CVSS score of 9. 8. Initially thought to cause only Denial of Service (DoS) attacks, further analysis revealed that the flaw could also enable remote code execution According to the researchers, this vulnerability could be exploited to crash any Windows Server machine. The attack becomes feasible when the target system’s domain controller is connected to an internet-facing DNS server. “The vulnerability that the SafeBreach Labs PoC exploits affects technology that is in widespread use across enterprise networks, and this flaw could help attackers propagate more easily and effectively,” the SafeBreach research team explained. The attack flow (Image Credit: SafeBreach) How to mitigate the risks of the Active Directory vulnerability? SafeBreach researchers have noted that there is no evidence of the DoS bug being actively exploited. Fortunately, Microsoft has addressed the flaw in the December 2024 Patch Tuesday... --- ### First Ring Daily: Twenty-Five - Published: 2025-01-03 - Modified: 2025-01-03 - URL: https://petri.com/first-ring-daily-twenty-five/ - Categories: Hardware - Tags: CES, First Ring Daily, News - Article Type: News In this first episode of First Ring Daily of the new year, Brad Sams and Paul Thurrott discuss what to expect from the CES 2025 trade show that will officially kick off next week. --- ### What is Microsoft Defender for Cloud? - Published: 2025-01-03 - Modified: 2025-01-03 - URL: https://petri.com/what-is-microsoft-defender-for-cloud/ - Categories: Microsoft Azure, Security - Tags: featured-top-right, Microsoft Defender for Cloud - Article Type: Overview This article explores Microsoft Defender for Cloud features, benefits, integration capabilities, and best practices, offering actionable insights for IT professionals managing multicloud environments. Modern cloud environments demand robust security solutions to tackle ever-evolving cyber threats. Microsoft Defender for Cloud answers this call with a unified security platform that protects resources across Microsoft Azure, Amazon Web Services (AWS), Google Cloud Platform (GCP), and hybrid environments. Designed as a cloud-native application protection platform (CNAPP), Microsoft Defender for Cloud combines foundational CSPM (Cloud Security Posture Management) and cloud workload protections with advanced tools like Microsoft Defender XDR (Extended Detection and Response) to deliver comprehensive coverage. A unified approach to cloud security Microsoft Defender for Cloud serves as a security recommendations engine, providing vulnerability assessments, real-time security alerts, and built-in defenses to secure workloads. Its capabilities extend to advanced threat protection (ATP) and extended detection and response (XDR), making it a one-stop shop for securing cloud infrastructures. Microsoft Defender for Cloud key features: Cloud Security Posture Management (CSPM): Identifies configuration risks, such as exposed ports or weak passwords, and offers remediation guidance. Cloud Workload Protections: Safeguards virtual machines, databases, containers, and cloud apps against known and emerging threats. Multi-cloud support: Through Azure Arc, Defender for Cloud provides unified protection for on-premises servers, Kubernetes clusters, and even workloads in Amazon Web Services and GCP. Enabling and setting up Microsoft Defender for Cloud Turning on and configuring Microsoft Defender for Cloud involves a few simple steps. Here’s how you can get started: Step 1: Enable... --- ### Microsoft Teams Web Client Gets New Screen-Sharing Control - Published: 2025-01-03 - Modified: 2025-01-03 - URL: https://petri.com/microsoft-teams-updates-december-2024/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft has published a recap of all the enhancements made to its Teams collaboration platform in December 2024. This time around, the company highlighted enhanced screen-sharing controls, improvements for webinars and town halls, as well as new Teams-certified devices. Updates to meetings, webinars, and town halls Microsoft has released a new update that allows meeting participants to take control during screen sharing in the Microsoft Teams web client. This capability was previously only available for users in the Teams desktop app. Moreover, Microsoft has added a new feature that lets event organizers download transcripts for their town hall and webinar instances. Microsoft Teams has also added support for viewing RTMP-In 708 captions in transcription to enhance compatibility with modern digital video formats. Microsoft Teams Rooms and Devices Microsoft has released major updates to the Whiteboard app on Teams Rooms on Android. When users work on a Whiteboard outside a meeting, their content and changes are saved and instantly shared with collaborators once the meeting starts. Users can leverage the "Follow me" control to guide participants as the speaker moves the cursor across the Whiteboard. Whiteboard enhancements on Teams Rooms on Android (Image Credit: Microsoft) Additionally, Microsoft has announced several new Teams-certified devices in December 2024. The Cisco Room Navigator allows users to view room availability, provides calendar integration, and supports instant booking capabilities. Additionally, the Yealink Room Panel E2, which is designed to be mounted outside meeting spaces, lets users view meeting details. It also provides on-the-spot reservation capabilities via... --- ### Cybersecurity Alert: Hackers Exploit Chrome Extensions to Hijack User Passwords - Published: 2025-01-02 - Modified: 2025-01-02 - URL: https://petri.com/chrome-extensions-hijack-user-passwords/ - Categories: Security - Tags: Chrome, cybersecurity, featured-top-left, News - Article Type: News Cybersecurity experts have discovered a series of attacks where hackers compromised multiple Chrome extensions. According to a new report from Reuters, the attackers used malicious code designed to steal browser cookies and hijack authentication sessions The cybersecurity firm Cyberhaven informed its customers that the hackers compromised a company account to release a malicious update (version 24. 10. 4) to its data loss prevention extension on December 25. The compromised Chrome extension was used to send sensitive information (such as authenticated sessions and cookies) to the attacker’s domain. The attack also affected other extensions, including Internxt VPN, VPNCity, Uvoice, and ParrotTalks. How did hackers hijack Chrome Extensions? Specifically, the scammer sent a phishing email to the registered support email for Cyberhaven’s Chrome extension. The email warned the developer that the extension was violating Google’s rules. The victim had to click the “Go To Policy” page to prevent their extension from being removed. “Once the employee clicked on the email, they were taken to the standard Google authorization flow for adding a malicious OAUTH Google application called “Privacy Policy Extension”," Cyberhaven explained. "This authorization page was hosted on Google. com and part of the standard authorization flow for granting access to third-party Google applications. “ Phishing email (Image Credit: Cyberhaven) As it turns out, the developer adhered to the usual procedure and unintentionally authorized this malicious third-party application. The hacker managed to complete the authentication process even if the developer had two-factor authentication enabled for their account. How to protect your organization against 2FA bypass... --- ### The Pros and Cons of Hybrid Azure AD Join > What are the benefits of Hybrid Azure AD Join? Synchronizing existing on-premises AD devices is beneficial, but for not for new devices. Let's find out why. - Published: 2025-01-02 - Modified: 2025-01-02 - URL: https://petri.com/benefits-hybrid-azure-ad-join/ - Categories: Active Directory (AD), Microsoft Entra ID (Azure AD) - Tags: Active Directory, featured-top-right, Microsoft Entra ID, Windows - Article Type: Overview What are the benefits of a Hybrid Azure AD (Microsoft Entra ID) Join? I hear this question a lot; especially since I’ve published many videos referring to Hybrid Azure AD joins as a bad idea. Synchronizing existing on-premises Active Directory (AD) devices to Entra ID is beneficial, but for new devices, leveraging the security and flexibility of cloud-native solutions is preferred. Let's find out why. What is Hybrid Azure AD? First, let me briefly cover what Hybrid Active Directory is, in this context. Hybrid AD is a common name for the something called Hybrid Microsoft Entra ID joined Windows devices. Microsoft Entra ID, of course, is the new name for Azure Active Directory. So: Hybrid AD = Hybrid Azure Active Directory join = Hybrid Microsoft Entra join. Simple, right? Names aside, actually it is quite simple. A device that is joined to an on-premises Active Directory domain and synchronized to Microsoft Entra is a ‘Hybrid Joined device’. The device has an object in the on-premises AD domain, and a corresponding synchronized object in the Microsoft Entra ID tenant. Note, however, that we’re specifically talking about computers, here, not people or user identities. This is vital to highlight, because it’s entirely possible (and very common) for an organization to leverage the benefits of Hybrid User Identities, without using Hybrid Microsoft Entra joined devices. Benefits of Hybrid Azure AD? There are many benefits to synchronizing on-premises AD devices to the cloud. Most of them are related to the fact that synchronizing... --- ### Microsoft 365 Apps Expand Double Key Encryption Support to Android Devices - Published: 2024-12-23 - Modified: 2024-12-23 - URL: https://petri.com/microsoft-365-apps-double-key-encryption-android/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has rolled out Double Key Encryption (DKE) support for its Microsoft 365 apps on Android devices. The company has announced on the Microsoft 365 admin center that this security feature is now available in public preview for commercial customers. Double Key Encryption is a robust security feature that enhances data protection by using two separate keys for encryption. One key is managed by the user and the other is securely stored in Microsoft Azure. This dual-key approach ensures the data remains secure even if one key is compromised. The DKE feature helps organizations to meet various regulatory requirements such as HIPAA and GDPR. Request the DKE public key (Image Credit: Microsoft) How does the Double Key Encryption feature work? Previously, the Double Key Encryption (DKE) feature was only available in Microsoft 365 Apps on Windows, Mac, and iOS. With this latest update, Microsoft has expanded DKE functionality to Android. Users can now apply sensitivity labels to define document protection levels and view DKE-protected files directly on their devices. Microsoft plans to roll out the DKE feature to all commercial customers worldwide by late January 2025. However, this feature will only be available for organizations that have implemented DKE within their environments. Microsoft has extended Double Key Encryption support to Android devices to help businesses maintain strong security across multiple platforms. This feature enables administrators to protect sensitive information and meet regulatory requirements. It also helps to ensure that authorized users can securely access critical data across various devices. --- ### First Ring Daily: Just a Button - Published: 2024-12-20 - Modified: 2024-12-20 - URL: https://petri.com/first-ring-daily-just-a-button/ - Categories: Microsoft - Tags: copilot, First Ring Daily, News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's recent Copilot key changes, Asus announcing a new Copilot+ PC NUC, and CES 2025 being just around the corner. --- ### Microsoft Confirms 'Product Deactivated' Errors in Office Apps Caused by Licensing Changes - Published: 2024-12-20 - Modified: 2024-12-20 - URL: https://petri.com/microsoft-office-apps-product-deactivated-errors/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is currently investigating a new issue affecting its Office apps, including Word, Outlook, and Excel. The company acknowledged in a support document that users are encountering unexpected "Product Deactivated" errors. According to Microsoft, this problem might be triggered when an administrator makes changes at licensing level. Specifically, this issue could be caused while moving a user from one licensing group to another. This applies to both Azure Active Directory (AD) groups and security groups synced from on-premises Active Directory. Microsoft noted that changing a user's license, such as switching from an Office 365 E3 subscription to a Microsoft 365 E3 subscription, can lead to errors. These issues can also occur when users are removed from a license group and then re-added, whether to the same group or a different one. Microsoft also highlighted that enabling or disabling specific licenses or service plans for users can cause issues. For example, users may encounter “Product Deactivated” error messages if administrators turn off the “Latest version of Desktop Apps” service plan in a Microsoft 365 subscription. Microsoft Office apps "Product Deactivated" error (Image Credit: Reddit) Workaround to fix 'Product Deactivated' Errors in Office Apps The only workaround right now is to click the “Reactivate” button on the error banner and sign in again. Alternatively, users can log out of all Microsoft 365 apps, close them, restart the app, and sign back in when prompted. Microsoft recommends that users should contact their IT admin to check if the Microsoft 365 subscription has expired... . --- ### GitHub Launches Free Version of Copilot AI Assistant for VS Code - Published: 2024-12-19 - Modified: 2024-12-20 - URL: https://petri.com/github-copilot-free-vs-code/ - Categories: Developer - Tags: featured-top-left, GitHub Copilot, News - Article Type: News Microsoft-owned GitHub has launched a free version of its Copilot AI assistant, making it available to all developers. The AI-powered code completion tool is now seamlessly integrated into the Visual Studio Code (VS Code) IDE. GitHub first launched the Copilot coding assistant back in 2022. Previously, GitHub Copilot was only available for free to all verified students, teachers, and open-source maintainers. However, developers were required to pay a monthly subscription fee, starting at $10 per month. “With this announcement, GitHub Copilot becomes a core part of the VS Code experience. The team has been hard at work, as always, improving that experience with brand new AI features and capabilities,” GitHub explained. GitHub Copilot Free Key features of GitHub Copilot Free SKU The GitHub Copilot free SKU allows developers to seek help with coding questions, debug existing code, and make changes across multiple files. Moreover, the terminal chat feature helps interpret errors, fix failed commands, and suggest shell scripts. Other capabilities include support for voice commands, custom instructions, and more. Terminal Chat (Image Credit: Microsoft) GitHub has acknowledged some limitations of the free version of the Copilot AI assistant. It provides developers access to 2,000 code completions and 50 chat messages per month. Users on the free plan can choose between OpenAI’s GPT-4o and Anthropic’s Claude 3. 5 Sonnet. However, they will need to switch to Pro and other paid plans to use premium AI models such as Google’s Gemini 1. 5 Pro and OpenAI’s o1-preview. GitHub Copilot Free is available across multiple... --- ### Microsoft 365 App Set to Rebrand as Microsoft 365 Copilot Next Month - Published: 2024-12-19 - Modified: 2024-12-19 - URL: https://petri.com/microsoft-365-app-rebrand-microsoft-365-copilot/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is preparing a major update to the UI of its Microsoft 365 app in early 2025. The company has notified its commercial customers that the app will get a new icon and be rebranded to Microsoft 365 Copilot starting in mid-January. Microsoft plans to simplify the Microsoft 365 Copilot app by removing the header and organization logo. The user profile, settings, and feedback options will be relocated to the bottom-left toolbar for easier access. Moreover, the search box will remain available on the home page, although the search functionality will remain the same. Other UI changes coming to the Microsoft 365 app Microsoft 365 Copilot Chat, Copilot Pages, and other AI tools will be added to the app list on the left toolbar. Meanwhile, some features, including the Back button, My Day, and Help Me Create, will be removed from the app. “With Microsoft 365 Copilot app becoming the destination for Copilot, we will be bringing AI-powered document creation into Copilot tab. Users will be able to brainstorm ideas and draft new content based on a storyboard or a script to an agenda or an executive summary from Copilot Chat,” Microsoft explained. Microsoft is updating the URLs to access Microsoft 365 Copilot and Microsoft 365 apps. The new URL for Microsoft 365 Copilot will be m365copilot. com, and users navigating to the old URLs (office. com or microsoft365. com) will be redirected to m365. cloud. microsoft. com. Microsoft will start rolling out updates to the Microsoft 365 Copilot app in mid-January 2025. The changes will... --- ### What Is Azure Monitor? - Optimizing Your IT Infrastructure - Published: 2024-12-18 - Modified: 2024-12-18 - URL: https://petri.com/azure-monitor/ - Categories: Azure, Microsoft Azure - Tags: Azure, Azure Monitor, featured-top-right, kql - Article Type: Overview In this guide, we’ll explore Azure Monitor’s key components, advanced features, and use cases while integrating practical examples, KQL (Kusto Query Language) insights, and best practices. By the end, you’ll know how to leverage Azure Monitor to optimize resource performance, ensure availability, and reduce costs. What is Azure Monitor? Microsoft Azure Monitor is a comprehensive monitoring solution for Azure, on-premises, and multi-cloud resources. Azure Monitor is a unified Azure services platform that collects, analyzes, and acts on telemetry data from your IT environment. It delivers metrics for near real-time performance monitoring, log data for in-depth analysis, and rich notifications. From virtual machines (VMs) and Azure Functions to on-premises resources integrated via Azure Arc, Azure Monitor provides a single pane of glass for visibility and insights. How Azure Monitor collects monitoring data Azure Monitor’s data collection capabilities are its backbone. It ingests telemetry from multiple layers, including: Azure Resources: Metrics and logs from VMs, storage accounts, Azure Logic Apps, and Azure Functions. Guest Operating Systems: Data collected using the Azure Monitor Agent (AMA) or Log Analytics agents on servers running either the Linux or Windows operating systems. Applications: Application Insights offers end-to-end monitoring for distributed applications, capturing response times, dependency failures, and user sessions. Custom Sources: APIs allow ingestion of telemetry from third-party tools or non-Azure environments. Data is categorized into: Platform metrics for performance tracking, such as CPU usage and memory consumption. Metrics refer to time-sampled numerical values. Logs for rich, queryable telemetry that helps troubleshoot issues and analyze trends. Azure... --- ### Microsoft Details Changes to Audit Log Searches in Exchange Online - Published: 2024-12-18 - Modified: 2024-12-18 - URL: https://petri.com/microsoft-changes-audit-log-searches-exchange-online/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft is changing the way the Search-UnifiedAuditLog cmdlet works in Exchange Online. Starting in January 2025, the HighCompleteness parameter, which administrators can currently toggle between true and false, will be permanently set to true for all queries. What is the Search-UnifiedAuditLog cmdlet? The Search-UnifiedAuditLog cmdlet is a PowerShell command that is used in Exchange Online to search the unified audit log. This log includes events from various Microsoft 365 services such as Exchange Online, Microsoft Entra ID, Microsoft Teams, and OneDrive for Business. This cmdlet is particularly useful for investigating security incidents and compliance issues within their organization. Earlier this year, Microsoft introduced the HighCompleteness parameter in the Search-UnifiedAuditLog cmdlet, giving users the option to balance search completeness and performance. When set to true, this parameter ensures the search retrieves the most comprehensive set of relevant audit records but may take longer to process. On the other hand, setting the HighCompleteness parameter to false prioritizes speed over completeness. While queries will run faster, they may return only a partial set of the possible results. “The HighCompleteness parameter in the Search-UnifiedAuditLog cmdlet will now be set to true for all queries. With this change, the cmdlet will now prioritize completeness of search results over performance. As a result, search queries may take longer to finish,” the company explained on the Microsoft 365 admin center. When this will happen? This change will apply to all search queries submitted through the Search-UnifiedAuditLog cmdlet starting in January 2025. Microsoft advises administrators to prepare by... --- ### Critical Windows Kernel Flaw Could Let Hackers Gain System Privileges - Published: 2024-12-18 - Modified: 2024-12-18 - URL: https://petri.com/cisa-critical-windows-kernel-flaw/ - Categories: Windows - Tags: News, Windows - Article Type: News The U. S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new Windows kernel vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. This security flaw (tracked as CVE-2024-35250) poses a serious threat by allowing attackers to gain elevated system privileges. The DEVCORE Research team discovered the vulnerability and reported it to Microsoft through Trend Micro's Zero Day Initiative. This is a Windows Kernel-Mode Driver Elevation of Privilege flaw with a CVSS score 7. 8. A Windows kernel-mode driver is a type of software that operates at the core level of the Windows operating system. Cybercriminals could exploit this flaw to gain system privileges in low-complexity attacks without user interaction. The DEVCORE Research team exploited this vulnerability to compromise a fully patched Windows 11 device during this year’s Pwn2Own Vancouver hackathon. Microsoft addressed the security flaw in the June 2024 Patch Tuesday updates. Moreover, the proof-of-concept (PoC) was released on GitHub a few months later. The DEVCORE researchers released a video demo showing their CVE-2024-35250 exploit hacking a Windows 11 version 23H2 device. https://www. youtube. com/watch? v=j1wzwXLxdVs CISA adds critical Adobe ColdFusion vulnerability to the exploited list Additionally, CISA has also added an Adobe ColdFusion vulnerability (tracked as CVE-2024-20767), which was patched in March 2024. This critical vulnerability could allow remote unauthenticated hackers to read arbitrary files on the system. It affects Adobe ColdFusion versions 2023. 6, 2021. 12, and earlier. “An attacker could leverage this vulnerability to access or modify restricted files,” CISA explained. “Exploitation of this issue does not require user interaction. Exploitation of this... --- ### AI-Powered File Summaries Coming to Microsoft Teams Mobile Apps - Published: 2024-12-17 - Modified: 2024-12-18 - URL: https://petri.com/ai-file-summaries-microsoft-teams-mobile-apps/ - Categories: Microsoft Teams - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft is adding AI-generated summaries to its Teams mobile apps. This new feature will provide quick, concise overviews of Word, PowerPoint, and PDF files shared in chats or channels in Microsoft Teams. . With this release, Microsoft Teams users will be able to tap the AI summary icon in the file preview of shared documents on their mobile devices. This feature will help users understand the main points without reading the entire document. “All Word, PPT, and PDF files shared in chat and channels in the Teams mobile app will have an AI summary icon in the file chiclet,” the company explained in a message on the Microsoft 365 admin center. “With this feature, users can consume and comprehend the content without reading the entire document. Users can close the screen once the summary is consumed. ” When will Microsoft Teams mobile apps get AI-powered file summaries? Microsoft plans to begin rolling out this feature to the Teams mobile apps in mid-January 2025. This feature will be enabled by default for all users on the Microsoft Teams app for iOS and Android. The company expects to complete the roll out process for all commercial customers by late February 2025. In related news, Microsoft Teams is getting a new chat and channels experience that will combine private chats and channel messages in a single view. This new view will provide three filters at the top to surface unread messages, chat conversations, and channels. Microsoft Teams users will also be able to keep chats... --- ### Microsoft Adds Enhanced Message Trace to Exchange Online - Published: 2024-12-17 - Modified: 2024-12-17 - URL: https://petri.com/exchange-online-enhanced-message-trace/ - Categories: Exchange Online - Tags: Exchange Online, featured-top-left, News - Article Type: News Microsoft has announced the public preview of its enhanced Message Trace experience in the Exchange admin center (EAC) for Exchange Online. This feature has started rolling out now and it’s expected to reach general availability by the end of the month. What is Message Trace? A message trace is a feature that enables administrators to track an email message as it travels through Exchange Online. It helps to determine if a message was received, rejected, deferred or delivered. This capability provides detailed information about each step the email took, which is useful for troubleshooting issues, answering user questions, and validating the effects of policy changes. “You can now query up to 90 days of historical data for near real-time queries. However, please note that you can only query 10 days’ worth of data at a time. Please note that you will initially only have 30 days of historical data for near real-time query, and this will build over time to 90 days of historical data,” Microsoft explained. UI improvements Microsoft has also introduced new filter options (such as by subject and delivery status) for Message Trace queries. The subject filter supports the “starts with,” “ends with,” as well as contains functions. Moreover, the delivery status filter will provide searches for "Quarantined", "Filtered as spam", and "Getting status" statuses. Additionally, Microsoft has released several UI improvements based on user feedback. The timestamps for the email activities will automatically be displayed in the time zone that is set in the Exchange account... --- ### Organization Explorer in Outlook Coming to All Microsoft 365 Commercial Customers - Published: 2024-12-16 - Modified: 2024-12-16 - URL: https://petri.com/organization-explorer-outlook-microsoft-365/ - Categories: Microsoft 365, Windows 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced that the Organization Explorer feature in Outlook will soon be available to all Microsoft 365 commercial customers. Starting in January, users will no longer need a Viva Premium license to use the Org Explorer app. What is Organization Explorer? Microsoft first introduced the Organization Explorer app in Outlook back in July 2021. This tool is designed to help organizations explore their company’s internal structure. It allows users to see managers, roles, and team hierarchies, and provides detailed profiles for each employee. Users can search for individuals, view their contact information, and understand their position within the organization. Currently, a Microsoft Viva Connections license is needed to access the Organization Explorer in Outlook. However, starting in January 2025, this feature will be available without requiring a Viva Suite license. How to access Organization Explorer in Outlook? To access the app, users will need to select the Org Explorer option from the navigation bar in Outlook. They will then click on a person's card or photo to view detailed information. Organization Explorer (Image Credit: Microsoft) Microsoft will start rolling out this update in mid-January 2025 for the new Outlook for Windows, Outlook for Mac, and the Outlook web app. The feature will become generally available for classic Outlook by early April 2025. To gain early access, Microsoft recommends switching to the new Outlook for Windows or the Outlook web app. In related news, Microsoft has announced plans to migrate Microsoft 365 for Enterprise customers from classic Outlook to the... --- ### How To Use The Windows Local Group Policy Editor - Published: 2024-12-16 - Modified: 2024-12-16 - URL: https://petri.com/windows-local-group-policy-editor/ - Categories: Windows - Tags: featured-top-right, Windows - Article Type: How To This guide aims to help you understand how to navigate and use the Windows Local Group Policy Editor (LGPE) to enhance your Windows desktop environment's security, performance, and usability. What is the Local Group Policy Editor? The Windows Local Group Policy Editor is a Microsoft Management Console (MMC) snap-in that allows you to manage and change Group Policy Objects (GPO) on the local computer. Policy changes reflect changes to specific keys in the Windows Registry. In medium-to-large enterprises, Group Policy settings are managed via Active Directory domain controllers and are pushed down to endpoints. LGPE offers advanced users and IT Pros a troubleshooting option for determining why specific settings aren't working as expected. In addition, for computers that are not centrally managed by Active Directory (AD), the LGPE lets IT Pros make configuration changes to Windows PCs. How to access the Local Group Policy Editor There are several methods to open LGPE. The only prerequisite is that it is not installed or supported on Windows 10/11 Home Edition. Here are the most common methods for launching the tool. On your keyboard, click the Start button and the 'R' key to open the 'Run' dialog. Type in 'gpedit. msc' and press Enter. You can also open the Search box and type in 'gpedit. msc'. Running 'gpedit. msc' from the Start Run dialog opens the Windows Local Group Policy Editor - (Image Credit: Michael Reinders/Petri. com) Click the Start menu button in Windows, type 'local group', and select 'Edit group policy—Control Panel' on the Start... --- ### Microsoft Refines Copilot Key Experience in Windows 11 for Businesses - Published: 2024-12-16 - Modified: 2024-12-16 - URL: https://petri.com/microsoft-copilot-key-windows-11-businesses/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has outlined enhancements to the Copilot key experience in Windows 11, tailored to better meet the needs of commercial customers based on their feedback. The company suggests that organizations reconfigure the Copilot key to launch the Microsoft 365 app. Microsoft announced the Copilot key for new Windows 11 PCs back in January. The Copilot key is configured to launch the Copilot app on Windows 11. Last month, Microsoft added the ability to reprogram the Copilot key to open other apps instead. The company has also started testing a native Copilot app that opens as a more compact view and can be opened using the Alt+Space shortcut. Users can reprogram the Copilot key by heading to the Settings app under personalization. However, this new version of the Copilot app is only available for consumers authenticating with a Microsoft account. It doesn’t work for commercial customers with Microsoft Entra ID accounts. “While the Copilot key was originally intended to invoke Copilot in Windows, this has shifted as we've evolved Microsoft Copilot experiences on Windows to better address your feedback and needs,” Microsoft explained. “With this change, IT admins will need to take steps to ensure employees authenticating with a Microsoft Entra account can still access Copilot via the Copilot key. ” Microsoft 365 app with Copilot (Image Credit: Microsoft) Copilot key on new Windows 11 PCs Microsoft advises organizations to remap the Copilot key to launch the Microsoft 365 app, which supports authentication via Microsoft Entra ID and enables access to Copilot... --- ### First Ring Daily: More of the Same - Published: 2024-12-13 - Modified: 2024-12-13 - URL: https://petri.com/first-ring-daily-more-of-the-same/ - Categories: Microsoft 365, Microsoft Copilot, Windows, Windows 11 - Tags: copilot, First Ring Daily, News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft deprecating suggested actions in Windows 11 and all the different flavors of Copilot that probably confuse customers. --- ### Microsoft Lifts Windows 11 24H2 Upgrade Block on PCs with USB Scanners - Published: 2024-12-13 - Modified: 2024-12-13 - URL: https://petri.com/windows-11-24h2-upgrade-block-usb-scanners/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has addressed a bug that disrupted connections for USB scanners and other devices on Windows 11. The company has lifted the compatibility hold, allowing users to install the Windows 11 version 24H2 update on affected PCs. Last month, many users reported that USB scanners and other scanning devices stopped working after updating to Windows 11 version 24H2. The issue affected devices using the eSCL protocol, which couldn’t switch to USB mode, rendering them unrecognizable. The eSCL protocol is a driverless scanning system that facilitates communication between devices and clients using HTTP(S) and XML. Which devices are affected by the Windows 11 24H2 USB scanner bug? According to Microsoft, this problem caused scanning and other features to stop working. It affected various devices, including scanners, multifunction printers, fax machines, modems, and other eSCL network devices. To resolve the problem, the company has released the KB5048667 cumulative update for all supported versions of Windows 11. “This issue was resolved by Windows updates released December 10, 2024 (KB5048667), and later. We recommend you install the latest security update for your device as it contains important improvements and issue resolutions, including this one. The safeguard hold (ID 54762729) that was previously in place for this issue will be lifted in the coming days,” Microsoft explained. Microsoft notes that some devices may take up to 48 hours to receive the Windows 11 24H2 update. However, users can reboot their PCs to speed up the upgrade process. In related news, Microsoft has acknowledged that users... --- ### The Hidden Costs of AI Implementation in Modern IT Infrastructures - Published: 2024-12-13 - Modified: 2024-12-13 - URL: https://petri.com/the-hidden-costs-of-ai/ - Categories: Artificial Intelligence - Tags: artificial intelligence - Article Type: Overview Unless you’ve been living under a rock, there’s no denying the extent to which AI has permeated organizations—35% of businesses have already developed AI-based workflows if not completely automating aspects of their business. However, IT infrastructures are a different beast. Even though it promises transformative capabilities, AI can also be deemed a Pandora’s box, of sorts. Beneath the surface of this innovation lies a complex web of hidden costs that often go unnoticed until they begin to impact budgets and operations. Organizations must navigate these costs to achieve a balanced approach between innovation and financial sustainability. Let’s look at how feasible AI really is. Infrastructure and hardware investments AI workloads demand immense computational power, often exceeding the capabilities of standard IT infrastructure. This is especially true for multi-agent, cutting-edge models by Microsoft and OpenAI, but most such solutions aren’t meant for the average org. With OpenAI releasing a $200/month subscription tier, it’s becoming increasingly clear that relying on third-parties isn’t as financially prudent as initially thought. So, what’s the alternative, then? One option is for companies to rent hosted GPU servers in data centers and offload their AI infrastructure. It’s the ‘sweet spot’ between third-party tools and going fully on-site. Still, this still means a third-party bears at least part of the responsibility. What about going fully local? An Nvidia H100 is going to set you back around $28,000, while a server containing 8 H200 GPUs is more than $250,000. Not to mention, you’re going to need advanced cooling... --- ### Researchers Discover Critical Microsoft Azure MFA Flaw: What You Need to Know - Published: 2024-12-13 - Modified: 2024-12-13 - URL: https://petri.com/critical-microsoft-azure-mfa-flaw/ - Categories: Microsoft Azure - Tags: featured-top-left, Microsoft Azure, News - Article Type: News Cybersecurity researchers have warned about a critical flaw in Microsoft’s multifactor authentication system. This vulnerability could allow hackers to infiltrate accounts, compromising sensitive data across Microsoft Teams chats, OneDrive files, Outlook emails, and Azure Cloud. Researchers at Oasis Security first identified the critical vulnerability in Microsoft’s MFA system. The issue stemmed from a lack of rate limits, allowing attackers to make unlimited sign-in attempts without being blocked. This gave hackers a higher chance of guessing the correct code and posed a significant risk to over 400 million paid Microsoft 365 accounts. Typically, users enter their email and password and then select a pre-configured MFA method while signing into a Microsoft account. In the scenario highlighted by researchers, users received a verification code through a separate channel, such as a text message or an authenticator app, to complete the process. “By rapidly creating new sessions and enumerating codes, the Oasis research team demonstrated a very high rate of attempts that would quickly exhaust the total number of options for a 6-digit code (1M). Simply put – one could execute many attempts simultaneously,” explained Tal Hason, an Oasis research engineer. According to the researchers, repeated failed MFA sign-in attempts on Microsoft accounts did not trigger any notifications for account owners. Consequently, users remained unaware of suspicious activity targeting their accounts. This lack of visibility made the vulnerability and the attack method "dangerously low profile. ” One of the successful attempts (Image Credit: Oasis Security) Researchers at Oasis Security informed Microsoft about the issue... --- ### Microsoft to Retire Client Access Rules in Exchange Online by 2025 - Published: 2024-12-12 - Modified: 2024-12-12 - URL: https://petri.com/exchange-online-retire-client-access-rules-2025/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft has announced plans to retire Client Access Rules (CARs) in Exchange Online for all tenants by September 2025. The company urges organizations to transition to Conditional Access with Continuous Access Evaluation (CAE) for improved security and compliance. Client Access Rules in Exchange Online allow organizations to control access to their email services based on specific client properties or connection requests, using conditions, exceptions, and actions. These rules help IT admins manage access by IP addresses, authentication type, user properties, and more. This feature is designed to protect Exchange Online resources against security threats and ensure compliance with regulatory requirements. Microsoft originally announced plans to deprecate Client Access Rules (CARs) in Exchange Online back in September 2022. CARs are considered legacy technology and lack modern enforcement controls like multifactor authentication and device compliance. Moreover, CARs are designed to work within the Exchange Online environment and do not apply to other applications or services. Microsoft has already disabled CARs cmdlets for tenants without active rules. Now, Microsoft plans to deprecate CARs for all remaining tenants on September 1, 2025. Microsoft recommends organizations move to newer access control features such as Conditional Access (CA) with Continuous Access Evaluation (CAE). Why organizations should migrate from CARs to CAE in Exchange Online? CAE enhances security by ensuring that users’ location-based Conditional Access (CA) policies are consistently enforced. Additionally, this feature is supported by various Microsoft 365 services, including SharePoint Online, Exchange Online, and Microsoft Teams. CAE also provides real-time notifications for password changes, account... --- ### Microsoft to Auto-Migrate Enterprise Users to New Outlook for Windows - Published: 2024-12-11 - Modified: 2024-12-12 - URL: https://petri.com/new-outlook-for-windows-migrate-enterprise-users/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft is preparing to transition Microsoft 365 Enterprise users from the classic Outlook to the new Outlook for Windows client. Starting in April 2026, the company will begin auto-migrating customers to the updated platform while providing the option to switch back to the classic version if needed. “Our goal with this change is to give users an opportunity to try new Outlook as millions of users already have. New Outlook gives users the most modern experience with Copilot features, theming, and a wave of valuable time-saving features like Pinning and Snoozing mails. Users are also welcome to give us feedback on new Outlook using Feedback in the Help ribbon, so we can tailor the best email and calendar experience,” the company explained on the Microsoft 365 admin center. Microsoft is providing more than 12 months of advance notice to help organizations prepare for the upcoming transition to the new Outlook for Windows client. The update will happen automatically without requiring any administrative action. However, organizations can opt out of the migration using admin controls. Users who have already switched to the new Outlook will still have the option to return to the classic version at any time via a toggle button. Who’s excluded from the new Outlook for Windows migration? Microsoft has clarified that users will not be automatically switched to the new Outlook if they are opted out via admin controls, have the toggle hidden by policy, or are using a perpetual license. Furthermore, those with on-premises accounts will... --- ### Enable Windows Server 2025 Hotpatching: A Step-by-Step Guide > This article provides an overview of how to enable Windows Server 2025 Hotpatching. We'll cover prerequisites, step-by-step instructions, best practices, and troubleshooting tips. - Published: 2024-12-11 - Modified: 2024-12-11 - URL: https://petri.com/enable-windows-server-hotpatching/ - Categories: Windows Server - Tags: Azure Update Manager, featured-top-right, Windows Server 2025 - Article Type: How To Hotpatching is a powerful feature in Windows Server 2025 that allows administrators to apply security updates and patches without requiring a system reboot, minimizing downtime and ensuring continuous operation. This article provides an overview of how to enable Windows Server 2025 Hotpatching. We'll cover prerequisites, step-by-step instructions, best practices, and troubleshooting tips. What is Windows Server hotpatching? As organizations increasingly rely on Windows Server to manage critical business operations, minimizing downtime becomes essential. One of the latest innovations to support this need is hotpatching. Microsoft initially announced and released a hotpatching (hotpatch) preview for Windows Server 2022 virtual machines (VMs) in Microsoft Azure (requiring Windows Server 2022 Azure Edition ISOs). As it has matured, they've been rolling it out to more platforms and environments, including physical servers. Hotpatching, now in public preview, is a feature that allows administrators to apply security updates and patches with fewer reboots throughout the year. Microsoft will likely release this feature to general availability sometime in 2025. In case it's not clear, Windows Server 2025 Hotpatching can be run on other virtualization platforms besides Hyper-V, like VMWare, and any other platforms that support Microsoft's protection-focused virtualization feature called Virtualization-Based Security (VBS). (More on this below) Annual hotpatching schedule Instead of planning around twelve mandatory monthly reboots per year, Hotpatching offers just four planned reboots per year. For Patch Tuesday in January, April, July, and October, IT Pros can expect the monthly cumulative update to require a reboot. But for the other months in the year,... --- ### Microsoft Releases December 2024 Patch Tuesday Updates - Published: 2024-12-11 - Modified: 2024-12-11 - URL: https://petri.com/microsoft-december-2024-patch-tuesday-updates/ - Categories: Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released the December 2024 Patch Tuesday Updates for all supported versions of Windows 11 and Windows 10. This month, the company rolled out 72 patches to address several vulnerabilities in Windows, SharePoint Server, Hyper-V, Defender for Endpoint, and System Center Operations Manager, and other components. Microsoft addressed more vulnerabilities in December 2024 than in any December since 2017. On the quality and experiences update front, the company has rolled out several improvements for Windows 11 versions 23H2 and 22H2 and Windows 10. 72 vulnerabilities fixed in the December 2024 Patch Tuesday updates In December, Microsoft fixed a total of 72 vulnerabilities, 16 of which were deemed "Critical. " Additionally, there are 54 security flaws rated as “Important” and one is rated “Moderate” in terms of severity. Here’s a list of the most notable vulnerabilities Microsoft addressed in December: CVE-2024-49138: This is a moderate-level security flaw in the Windows Common Log File System Driver that could enable hackers to launch privilege escalation attacks. This technique can be used to gain system-level privileges on Windows Server machines. CVE-2024-49112: This is a critical security vulnerability with a CVSS score of 9. 8. It’s an unauthenticated RCE issue in the Windows Lightweight Directory Access Protocol (LDAP). Cybercriminals could exploit this flaw to compromise Windows 10 systems and Domain Controllers by sending custom LDAP calls. CVE-2024-49117: This critical RCE vulnerability in Windows Hyper-V allows threat actors on a guest virtual machine (VM) to execute code on the underlying host OS and perform a cross-VM attack... . --- ### Final Exchange Server 2019 Cumulative Update Delayed Until 2025 - Published: 2024-12-10 - Modified: 2024-12-10 - URL: https://petri.com/final-exchange-server-2019-cumulative-update-2025/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Microsoft has postponed the release of the final Cumulative Update for Exchange Server 2019. This update, known as Exchange Server 2019 CU15 (or H2 2024 CU), will be delivered to commercial customers next year. In 2022, Microsoft announced that it would be moving to a biannual update scheme for Exchange Server products, which typically receive these updates around March and September. However, the company mentioned that it prioritizes the quality of CUs over sticking to a strict release schedule and the actual release dates might be delayed to April, October, or even later if more time is needed to ensure the updates meet their quality standards. Microsoft was supposed to release the final Cumulative Update for Exchange Server 2019 sometime in 2024. The company has received feedback from customers indicating that December is not a convenient time for them to receive Cumulative Updates. The holiday season makes it challenging for organizations to implement and test updates. When will Exchange Server 2019 receive its final update? Now, Microsoft has officially announced that the final Cumulative Update (CU15) for Exchange Server 2019 has been delayed and it will begin rolling out to customers in early January 2025. It will be referred to as the H1 2025 CU rather than the H2 2024 CU. Microsoft plans to drop support for Exchange Server 2019 on October 14, 2025. After this date, the company will no longer provide security updates, bug fixes, and technical support for Exchange Server 2019. Microsoft will release the next Exchange... --- ### Researchers Discover New Windows Zero-Day Vulnerability Exposing NTLM Credentials - Published: 2024-12-10 - Modified: 2024-12-10 - URL: https://petri.com/windows-zero-day-vulnerability-ntlm-credentials/ - Categories: Windows - Tags: News, Windows, Windows 11 - Article Type: News Researchers at Acros Security recently discovered a critical Windows zero-day vulnerability affecting all supported versions of the operating system. In response, Microsoft has issued new guidelines to help administrators proactively mitigate NTLM relay attacks within enterprise networks. Windows NTLM (New Technology LAN Manager) is a set of security protocols designed to authenticate users and safeguard their actions. It uses a challenge-response mechanism to verify identities without transmitting passwords over the network. In June 2023, Microsoft officially deprecated NTLM and now advises customers to adopt the Negotiate protocol, which prioritizes the more secure Kerberos system, only defaulting to NTLM when absolutely necessary. How does Windows NTLM zero-day flaw facilitate credential theft? According to researchers from Acros Security, the Windows zero-day vulnerability enables hackers to steal NTLM credentials simply by tricking a user into viewing an infected folder. This flaw impacts all Windows versions, from Windows 7/Server 2008 R2 to Windows 11 Version 24H2 and Windows Server 2022. “The vulnerability allows an attacker to obtain user's NTLM credentials by simply having the user view a malicious file in Windows Explorer - e. g. , by opening a shared folder or USB disk with such file, or viewing the Downloads folder where such file was previously automatically downloaded from attacker's web page,” explained Mitja Kolsek, CEO of Acros Security. Fortunately, this NTLM authentication flaw has not yet been exploited in the wild. Microsoft has classified the vulnerability as "Important" in severity and plans to release a fix in April. Microsoft noted that NTLM relaying is... --- ### Microsoft Confirms Compatability Issue Between Google Workspace Sync and Windows 11 Version 24H2 - Published: 2024-12-09 - Modified: 2024-12-09 - URL: https://petri.com/microsoft-issue-outlook-windows-11-version-24h2/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has acknowledged a new compatibility issue between Windows 11 version 24H2 and the Google Workspace Sync app. The company confirmed on the Windows Release Health Dashboard that this bug could prevent users from launching the Outlook desktop client on Windows 11 PCs. Google Workspace Sync app is a tool that allows users to synchronize their Google Workspace account with Microsoft Outlook. This feature lets users manage their emails, calendar, contacts, and tasks in classic Outlook for Windows. “You might observe that Microsoft Outlook fails to start, and you are unable to uninstall or reinstall Google Workspace Sync. Resulting from this issue you will observe an error which begins with ‘Cannot Start Microsoft Outlook. Cannot Open the Outlook Window. The set of folders cannot be opened. An unexpected error has occurred. MAPI was unable to load the information service,” Microsoft explained. Microsoft recommends users install the latest version of Google Workspace Sync (version 4. 3. 68. 0). However, those using an older version of the app may be unable to install Windows 11 version 24H2. If the issue persists 48 hours after updating the app, Microsoft advises contacting Google Workspace support for assistance. Windows 11 version 24H2 rolls out to more devices Last week, Microsoft announced that Windows 11 version 24H2 has started rolling out to more PCs. Users will need to head over to Windows Update and then click the Download and install button to get the latest version of the operating system (24H2). Keep in mind that this update will not... --- ### Install Azure Arc Agent on Linux > Install Azure Arc Agent on Linux - this guide covers meeting prerequisites, deployment instructions, and advanced topics. - Published: 2024-12-09 - Modified: 2024-12-09 - URL: https://petri.com/install-azure-arc-agent-on-linux/ - Categories: Linux, Microsoft Azure - Tags: Azure Arc, featured-top-right, linux - Article Type: How To This article provides a comprehensive guide for installing Linux servers to Azure Arc, covering prerequisites, deployment instructions, and advanced topics such as hybrid connectivity methods, proxies, and private endpoints. For those managing hybrid environments with Windows, don’t miss my complementary article on Installing Azure Arc Agent on Windows Server to achieve a unified management strategy. Why use Azure Arc for Linux servers? Linux servers are at the heart of modern IT operations, supporting everything from applications to containerized workloads. By integrating Linux systems into Microsoft Azure, Azure Arc offers the following benefits: Centralized Governance: Apply Azure Policy and assign custom tags for compliance, organization, and cost tracking. Advanced Monitoring: Use Azure Monitor to collect telemetry, gain insights, and set up proactive alerts. Flexible Connectivity Methods: Choose between direct internet, proxies (via proxy URL and proxy port), or private endpoints for secure communication. Automation at Scale: Streamline deployment with onboarding scripts or tools like Ansible. Cost Visibility: Use tags and metadata to allocate costs effectively across projects and departments. Real-world example: Azure Arc in action A financial services company faced challenges managing Linux servers scattered across on-premises and AWS environments. By onboarding these servers as Azure Arc-enabled servers: They applied physical location tags to identify costs by region and branch. Hybrid connectivity without sacrificing security Azure Monitor provided real-time insights, improving performance monitoring across their hybrid environment. Azure Policy enforced compliance with regulatory requirements across multiple clouds. Prerequisites for onboarding Linux servers Before onboarding, confirm that your environment meets these requirements: Supported Linux operating systems Azure Arc supports popular distributions, including: Ubuntu 18. 04 and 20. 04 Red Hat Enterprise Linux (RHEL) 7. 6+ and 8 CentOS 7 and 8 SUSE Linux... --- ### Microsoft Teams to Let Users Customize the Location of Notifications - Published: 2024-12-06 - Modified: 2024-12-06 - URL: https://petri.com/microsoft-teams-customize-location-notifications/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft Teams is getting a new update that will allow users to customize where notifications appear on their screen. The company announced on the Microsoft 365 admin center that this new feature will start rolling out to the Microsoft Teams desktop app for Windows starting next month. Currently, Microsoft Teams notifications appear in the bottom right corner of the screen. With this update, users will be able to choose from four customizable notification locations: bottom right, top right, bottom left, or top left. The new customizable notification feature in Microsoft Teams is designed to make notifications more convenient by allowing users to place them in a position that best suits their workflow. By reducing the disruption caused by unexpected alerts in the corner of the screen, users can maintain better focus on their tasks without unnecessary interruptions. How to customize the location of notifications in Microsoft Teams Microsoft notes that this feature will be enabled by default for all Teams users. They will be able to customize notification placement by navigating to Settings > Notifications and activity > Display. The upcoming Microsoft Teams update will begin rolling out to Targeted release customers in mid-January 2025. This feature is expected to become generally available for all commercial customers in mid-February 2025. Microsoft is also working on a new feature that will allow users to send SMS messages directly from the Microsoft Teams desktop and mobile client. This capability should make it easier for users to communicate with people outside of their... --- ### First Ring Daily: Big Changes for Intel - Published: 2024-12-06 - Modified: 2024-12-06 - URL: https://petri.com/first-ring-daily-big-changes-for-intel/ - Categories: Hardware - Tags: First Ring Daily, Intel, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Intel's ongoing troubles after the chip maker abruptly "retired" its CEO Pat Gelsinger. --- ### What is Intune Endpoint Privilege Management? - Published: 2024-12-06 - Modified: 2024-12-06 - URL: https://petri.com/what-is-intune-endpoint-privilege-management/ - Categories: Endpoint Management - Tags: featured-top-right, Microsoft Intune - Article Type: Overview When we consider Microsoft Intune Endpoint Privilege Management as a solution, we have a very real problem that’s being solved. Admin rights. Technical solutions are there to solve a problem, right? Without a problem, a solution is just a gimmick - a token - a gesture, at best. As Bill Gates is said to have remarked: “The computer was born to solve problems that did not exist before. ” The solution to giving ‘regular users’ ‘admin rights’, aka elevated privileges, has always been pretty simple - don’t. This, however, often prompts an immediate - and valid - question. What do we do for those who genuinely need elevated privileges, but are otherwise ‘regular users’? Until now, the Microsoft answer to this has been... unremarkable. It’s generally agreed that simply adding the user to the Local Administrators group is not acceptable. As a close second on the list of things we probably shouldn’t do; we can provide them with a second (privileged) account, that allows them to elevate when required. Microsoft first released the Local Administrator Password Solution back in 2015, but even this wasn’t designed to solve the exact problem we face. In fact, this solution - now reinvigorated for the cloud - is designed to help avoid actual IT administrators having to use an identical username and password for the ‘Local Admin’ account across every endpoint, typically required for the worst recovery scenarios. The solution to endpoint privilege management And so, Endpoint Privilege Management (EPM) was born. EPM serves... --- ### No U-Turn on Windows 11 TPM Requirement Despite Looming End of Support for Windows 10 - Published: 2024-12-06 - Modified: 2024-12-06 - URL: https://petri.com/windows-11-support-older-hardware/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has reiterated that it will not relax Windows 11's stringent hardware requirements to entice Windows 10 users to upgrade. The company detailed that a TPM 2. 0 module is a non-negotiable requirement for boosting Windows 11’s security baseline. What is TPM? Microsoft introduced TPM 2. 0 (Trusted Platform Module version 2. 0) as a requirement with the launch of Windows 11 back in October 2021. It’s designed to secure data on a device at the hardware level. It refers to a specially designed chip, either integrated into a PC’s motherboard or added to the CPU, along with firmware that enables the storage of security certificates, encryption keys, and passwords. TPM 2. 0 is a requirement for Windows 11, as it supports features such as Windows Hello authentication and BitLocker data encryption. In a recent blog post, Microsoft emphasized that it will not lower the minimum hardware requirements for Windows 11. The company warned that any PC that doesn’t meet these requirements will display a watermark on the screen indicating that the operating system is not supported. Microsoft will also add a notification to the Windows 11 Settings app to inform users that the requirements aren’t being met. Additionally, Microsoft mentioned that these unsupported PCs might not receive the latest Windows 11 updates. Customers who are running Windows 11 on unsupported hardware are recommended to downgrade to Windows 10. “TPM 2. 0 plays a crucial role in enhancing identity and data protection on Windows devices, as well as maintaining the integrity of your system,” explained... --- ### Samsung to Discontinue DeX App for Windows PCs - Published: 2024-12-05 - Modified: 2024-12-05 - URL: https://petri.com/samsung-discontinue-dex-windows/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Samsung has revealed that its upcoming One UI 7 update will discontinue support for the DeX app on Windows. The company is urging DeX users on Windows PCs to transition to Microsoft’s Phone Link app as an alternative. What is DeX for Windows? DeX for Windows is an app that allows users to connect their Samsung smartphones to a Windows PC and use them in a desktop-like experience. It enables users to access mobile apps, transfer files, and use the phone’s interface on a larger screen with a keyboard and mouse. Microsoft Phone Link is a feature that allows users to connect their Android or iPhone to a Windows computer. It allows users to perform various tasks directly from their PC, including making and receiving phone calls, reading and replying to text messages, and viewing and managing notifications. The Phone Link app also allows users to run individual mobile apps directly on Windows 11. Samsung suggests Microsoft's Phone Link as a replacement Starting with One UI 7, the DeX application will no longer work on Windows 11 devices. “The DeX for PC on Windows OS will end support from One UI 7 version. We encourage customers to connect mobile phone and PC through the Link to Windows feature,” Samsung explained on its website. The decision of Samsung to discontinue DeX for Windows might be attributed to its low user base. Samsung will start testing One UI 7 later this month and it will begin rolling out to US-based customers in... --- ### Microsoft Launches New Security Exposure Management Tool to Enhance Organizational Resilience - Published: 2024-12-04 - Modified: 2024-12-05 - URL: https://petri.com/microsoft-launches-security-exposure-management/ - Categories: Security - Tags: News, Security - Article Type: News Microsoft has announced the general availability of Security Exposure Management. This new solution allows IT administrators to assess and reduce threat exposure within their organization. Microsoft initially launched Security Exposure Management in preview back in March. It consolidates data across devices, identities, applications, and hybrid environments to provide a unified view of an organization’s attack surface. The platform automates attack path assessments of critical assets and offers prioritized recommendations to boost security. It offers integration with tools such as Microsoft Defender XDR and Security Copilot. How does Security Exposure Management work? The Security Exposure Management solution includes three primary tools, including Attack Surface Management, Attack Path Analysis, and Unified Exposure Insights. Attack Surface Management offers continuous views of the attack surface of an organization. Moreover, Attack Path Analysis lets security teams visualize and prioritize high-risk attack paths. Unified Exposure Insights allows administrators to view the threat exposure of their organization. This capability should help to prioritize risks and align security initiatives with business goals. Microsoft’s Security Exposure Management also supports continuous threat exposure management, allowing IT administrators to proactively monitor, measure, and remediate cyber risks. "Exposure management is critical for enabling teams to understand the posture of the organization, and it helps security teams see all the potential attack paths to critical assets as if they were looking through it, through the eyes of the attacker," explained Vasu Jakkal, Microsoft's corporate VP for compliance, identity management. Exposure management overview (Image Credit: Microsoft) Microsoft has also announced the public preview of... --- ### Install Azure Arc Agent on Windows Server - Published: 2024-12-04 - Modified: 2024-12-09 - URL: https://petri.com/install-azure-arc-agent-windows-server/ - Categories: Azure, Windows Server - Tags: Azure, Azure Arc, featured-top-right, hybrid cloud, Microsoft, Windows Server - Article Type: How To In this guide I'll show you how to install the Azure Arc agent on Windows Server using the Azure Portal onboarding flow and PowerShell scripts. You’ll also learn about the Azure Connected Machine Agent (CMA), tray icon visibility, proxy configurations, and advanced troubleshooting techniques. For those managing hybrid environments with Linux, don’t miss my complementary article on Installing Azure Arc Agent on Linux to achieve a unified management strategy. Azure Arc is revolutionizing hybrid infrastructure management, offering a unified solution to govern, monitor, and secure resources across on-premises, cloud, and edge environments, across all your different deployment types. With Azure Arc-enabled servers, IT professionals can treat Windows Server machines as Azure-native resources, benefiting from tools like Azure Monitor, Azure Policy, and centralized automation—all while reducing management complexity. Why use Azure Arc for Windows Server? Managing hybrid infrastructures with siloed tools often results in inefficiencies and increased complexity. Azure Arc solves this by centralizing server management within the Azure Resource Manager (ARM) deployment framework. Here are the key benefits of Azure Arc for Windows Server: 1. Centralized governance Use Azure Policy to enforce compliance across hybrid environments. Control access with Role-Based Access Control (RBAC) to ensure secure resource management. 2. Performance monitoring Use Azure Monitor to gain real-time insights into server performance. Configure alerts for critical metrics like high CPU utilization, memory usage, and disk activity. Integrate with Microsoft Copilot and the Microsoft Defender 365 security products and services. 3. Automation and scalability Deploy servers at scale using installation scripts or PowerShell cmdlets. Onboard servers seamlessly with the graphical wizard or interactive installer. 4. Cross-platform support Azure Arc supports both Windows Server and Linux endpoints, making it ideal for diverse IT environments. For... --- ### Microsoft's New Outlook for Windows to Let Users Move Emails Across Accounts - Published: 2024-12-03 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-new-outlook-for-windows-move-emails-accounts/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is about to release a new update for the new Outlook for Windows client, allowing users to seamlessly move emails between accounts. This functionality will be governed by IT policies, giving administrators precise control through Exchange PowerShell. “By enabling this policy, admins can grant their users the ability to move emails between accounts in a way that aligns with organizational needs and policies. With this rollout, we are introducing a new parameter called -ItemsToOtherAccountsEnabled for the Set-OWAMailboxPolicy policy,” Microsoft explained. The new -ItemsToOtherAccountsEnabled parameter will allow administrators to control whether users can move or copy emails between accounts. This feature will be disabled by default, and IT admins will need to manually enable it to move emails between accounts. Users will be able to move emails by dragging and dropping an email from one account to another or by using shortcuts. They can also click an email and select the Move or Copy option from the menu. When will this happen? Microsoft will begin rolling out this update to targeted release customers in the new Outlook for Windows client by mid-January 2025. This feature is expected to hit general availability in early March 2025. Microsoft is planning to drop support for the Windows Mail, Calendar, and People apps on December 31. The company encourages customers to move existing users of these apps to the new Outlook for Windows client. Users who haven’t moved to the new Outlook for Windows client will no longer be able to send or receive... --- ### How New Rockstar 2FA Phishing Kit Targets Microsoft 365 Accounts - Published: 2024-12-03 - Modified: 2024-12-03 - URL: https://petri.com/rockstar-2fa-phishing-kit-microsoft-365/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Cybersecurity researchers have discovered a new phishing kit, dubbed Rockstar 2FA. The exploit toolkit enables hackers to steal Microsoft 365 credentials by bypassing multifactor authentication through sophisticated adversary-in-the-middle (AitM) attacks. According to a new report published by Trustwave SpiderLabs, Rockstar 2FA is an updated version of the DadSec kit. Microsoft has identified that the toolkit has been designed by the Storm-1575 hacking group. It’s available through a subscription model and marketed on various platforms such as ICQ, Telegram, and Mail. ru. "This campaign employs an AiTM attack, allowing attackers to intercept user credentials and session cookies, which means that even users with multifactor authentication (MFA) enabled can still be vulnerable," Trustwave researchers explained. "Microsoft user accounts are the prime target of these campaigns, as target users will be redirected to landing pages designed to mimic Microsoft 365 (O365) login pages. " Rockstar 2FA's attack flow (Image Credit: Microsoft) How does the Rockstar 2FA toolkit bypass MFA and steal cookies The Rockstar 2FA toolkit enables threat actors to bypass multifactor authentication (MFA) and harvest session cookies. It evades detection with FUD links, obfuscation, and QR codes. The toolkit lets attackers customize phishing themes and integrate their campaigns with Telegram bots. The researchers observed that threat actors evade antispam filters by hosting phishing links on reputable platforms such as Atlassian Confluence, Google Docs Viewer, and Microsoft OneDrive. Once the toolkit redirects the victims, they encounter fake login portals that are designed to mimic legitimate websites. Credentials entered are sent to an AiTM server, allowing... --- ### FTC Opens Antitrust Probe Into Microsoft Over Cloud, AI Competition Concerns - Published: 2024-12-02 - Modified: 2024-12-02 - URL: https://petri.com/ftc-antitrust-probe-microsoft-cloud-ai/ - Categories: Cloud Computing - Tags: AI, cloud computing, News - Article Type: News The US Federal Trade Commission has reportedly launched an antitrust investigation into Microsoft. The Federal agency is scrutinizing Microsoft’s cloud computing, software licensing, cybersecurity, and AI businesses. Last month, the Financial Times reported that the FTC was preparing to launch an investigation into Microsoft’s cloud computing business. The agency was planning to investigate accusations that Microsoft is abusing its market dominance by making it harder for customers to move data from Azure to rival cloud platforms. According to a new report from Bloomberg, the federal agency has sent a detailed formal request for information, which spans hundreds of pages, after getting approval from FTC Chair Lina Khan. The focus is on how Microsoft bundles its productivity and security software with its Azure cloud. FTC and EU scrutinize Microsoft’s bundling practices In recent years, Microsoft has faced criticism for bundling its products in ways that competitors claim hinder fair competition. Earlier this year, the EU accused Microsoft of violating antitrust rules by pairing Microsoft Teams with Office apps like Word and Excel. The FTC is also investigating Microsoft’s investments in its AI ventures. The company, which partners with ChatGPT creator OpenAI, has integrated AI into several products, including the Bing search engine. The investigation is one of Lina Khan's last major initiatives, marking a vigorous effort by the FTC under her leadership to challenge corporate consolidation in recent years. While no official announcement has been made, it is anticipated that Khan will step down as President-elect Donald Trump assumes office. Trump's... --- ### 4 Steps to Secure Microsoft Entra ID > In this short guide, we’ll walk through the first 4 steps you should consider when implementing or securing Microsoft Entra ID. - Published: 2024-12-02 - Modified: 2024-12-09 - URL: https://petri.com/steps-to-secure-microsoft-entra-id/ - Categories: Identity Management, Microsoft Entra ID (Azure AD) - Tags: featured-top-right, Microsoft Entra ID, Security - Article Type: How To Second only to Generative AI, cybersecurity is top of mind for organizations across the globe. But with Microsoft’s rapid release approach to cloud-based and cloud-enabled security features, how do you make sure you have the basics covered? In this short guide, we’ll walk through the first 4 steps you should consider when implementing or securing Microsoft Entra ID. 1. Isolate Microsoft Entra ID privileged roles Users in IT or Security roles often have a high level of privilege in an Microsoft Entra ID environment, meaning they are a more valuable target for cyber criminals. It’s not surprising, then, that it’s vital to protect these users more than standard, non-privileged users. Create native Entra ID privileged identities Privileged user accounts should always be created directly in Microsoft Entra ID, rather than being synchronized from on-premises Active Directory. On-prem accounts are vulnerable to legacy authentication protocols and lateral movement within hybrid environments. This creates unnecessary risks that could cascade into Entra ID during an on-premises breach. By isolating privileged accounts in Entra ID, you ensure they are protected with modern cloud-native controls. License Required: Entra ID Premium P1. End User Impact: Admins may need to manage separate cloud-only accounts. This is minimal for most users but requires communication for those impacted. Create a new user in Microsoft Entra ID (Image Credit: Dean Ellerby/Petri. com) Enforce MFA for privileged accounts Multifactor authentication (MFA) should be enforced for privileged accounts at all times, regardless of location or device compliance. This ensures a second authentication... --- ### Microsoft Re-Releases the November 2024 Exchange Server Security Updates - Published: 2024-11-29 - Modified: 2024-11-29 - URL: https://petri.com/microsoft-re-releases-the-november-2024-exchange-server-security-updates/ - Categories: Exchange Server - Tags: exchange, News - Article Type: News This week, Microsoft re-released the November 2024 Exchange Server security updates, now known as November 2024 SUv2. The first release didn't go so well. The original updates, which went out on November 12, 2024, caused issues with data loss prevention (DLP) rules and transport rules, leading to disruptions in on-premises email flow. You can find the downloads for the updated release in Microsoft's original blog post here. Microsoft offered a relatively simple table to help Exchange Server administrators choose the correct path based on their current environment and actions. If Nov 2024 SUv1... Then... was installed manually and you do not use any transport or DLP rules,it is recommended to install the Nov 2024 SUv2 to gain more granular control over the X-MS-Exchange-P2FromRegexMatch header. Please see the FAQ below. was installed using Microsoft / Windows update and you do not use any transport or DLP rules,in December 2024, the server will download and install the Nov 2024 SUv2. was installed (manually or automatically) and then uninstalled to fix the issue with transport rules,install the re-released Nov 2024 SUv2. was never installed,install the re-released Nov 2024 SUv2. In case it's unclear, if you've installed the original 'Nov 2024 SUv1' updates and have experienced no issues, you are still recommended to install the new Nov 2024 SUv2 update. The new package resolves the issue with transport rules introduced in the first update and offers more granular control for "non-RFC compliant P2 FROM header detection. " As a reminder, the only on-premises Exchange Server versions that remain supported are... --- ### Microsoft Faces Accusations of Using Customer Data to Train AI Models - Published: 2024-11-29 - Modified: 2024-11-29 - URL: https://petri.com/microsoft-faces-accusations-of-using-customer-data-to-train-ai-models/ - Categories: Microsoft Copilot - Tags: copilot, News - Article Type: News Microsoft has been accused of using customer data from its Microsoft 365 applications, including Word and Excel, to train its AI models. The controversy arose from the "Connected Experiences" feature, enabled by default in Office apps and allows for Internet-based functionalities like document co-authoring. Critics argue that this feature could be used to scrape user content for AI training without clear disclosure. Microsoft has strongly denied these allegations, stating that the Connected Experiences feature is not used to train AI models but to enable Internet-required functions. The company emphasized that it does not use customer data from Microsoft 365 applications to train large language models (LLMs). Despite the denial, concerns about privacy and data usage persist among users, highlighting the ongoing tension between innovation and user privacy. A post by NixCraft on X (formerly Twitter) started the 'rumor mill' asserting that "Microsoft Office, like many companies in recent months, has slyly turned on an "opt-out" feature that scrapes your Word and Excel documents to train its internal AI systems. This setting is turned on by default, and you have to manually uncheck a box to opt out. " https://twitter. com/nixcraft/status/1860530950041485565 The poster went a step further and added a 'call to action' of sorts and wrote: "If you are a writer who uses MS Word to write any proprietary content (blog posts, novels, books, or any work you intend to protect with copyright and/or sell), you're going to want to turn this feature off immediately. " Microsoft has repeatedly and recently vehemently denied... --- ### Windows and Firefox Zero-Day Security Flaws Being Exploited by Hackers - Published: 2024-11-27 - Modified: 2024-11-27 - URL: https://petri.com/windows-and-firefox-zero-day-security-flaws-being-exploited-by-hackers/ - Categories: Windows - Tags: News, Windows - Article Type: News Security firm ESET is warning that RomCom, a Russian Advanced Persistent Threat (APT) group, is actively exploiting two zero-day security flaws to plant backdoors on systems. Firefox is being exploited through a use-after-free bug (CVE-2024-9680) in the animation timeline feature, which can lead to code being run in the restricted context of the browser. The bug was discovered October 8th and a patch was quickly issued the next day. ESET found a second bug (CVE-2024-49039) in Windows that allows hackers that have been able to authenticate on a system to run arbitrary code. It was the exploitation of both the Windows and Firefox vulnerabilities together that allowed RomCom to perform remote code execution on endpoints. A patch for CVE-2024-49039 has been available for more than a month. Zero-click attack To exploit both vulnerabilities to run code remotely, RomCom was embedding malicious code into websites that redirects users to a server where the code to install a backdoor is hosted. This is known as a zero-click attack because once the end user is persuaded to visit a malicious or otherwise infected website, no further actions are required for the user’s system to be infected. ESET hasn’t disclosed how many systems have been infected so far but has stated that most of the victims were targeted between October 10 and November 4 in Europe and North America. Test and deploy patches quickly Testing and pushing out patches as quickly as possible is key to making sure users don’t fall prey to zero-day... --- ### Surge in IT Spending: AI Gold Rush Fuels Budget Increases - Published: 2024-11-27 - Modified: 2024-11-27 - URL: https://petri.com/surge-in-it-spending-ai-gold-rush-fuels-budget-increases/ - Categories: Artificial Intelligence, Microsoft Copilot - Tags: artificial intelligence, Career, News - Article Type: News CEOs are optimistic about the impact of AI and are increasing budgets for IT departments. Research from Salesforce finds that 84% think “AI will be as significant to businesses as the internet,”. The research also found that CIOs are having to serve as Chief AI Officers, with Deloitte research showing 63% of CIOs reporting directly to CEOs in 2024, a 10% increase from 2023. According to a recent survey by 1E and YouGov, which polled 500 US-based IT decision-makers (ITDMs), 59% of ITDMs agree that AI has elevated their department’s status, and 88% report professional benefits from AI involvement. The survey suggests that AI is boosting the status, influence, and pay of IT departments and decision-makers. With CEOs and CIOs being increasingly optimistic about AI’s potential, with many predicting a return on investment as soon as next year. IT departments are playing an important role in AI adoption, with 95% of ITDMs engaging in strategic AI activities like consulting on AI strategy and advising executives. IT hasn’t always been recognized as driving business growth and cost savings, but more of a cost center. However, as AI adoption starts to take pace, it is enhancing the standing of IT departments and aligning them closer to organizations’ key business goals. AI is finding its way beyond the IT department for coding and threat detection duties to include: Customer service HR Sales Accounting Operations Marketing and more... AI brings benefits and challenges for IT Professionals There are also benefits for individuals. IT Professionals... --- ### Hackers Update Tactics to Bypass Multifactor Authentication - Published: 2024-11-26 - Modified: 2024-11-26 - URL: https://petri.com/hackers-bypass-mfa-aitm-quishing/ - Categories: Microsoft - Tags: Microsoft, News, Security - Article Type: News Microsoft is taking legal action to disrupt 240 websites owned by a cybercrime group in Egypt. The sites are connected to Abanoub Nady (MRxC0DER), who develops and sells DIY phishing kits under the ONNX brand name. The ONNX name is being used fraudulently to sell the do-it-yourself phishing kits, which are used by many cybercriminals to bypass multifactor authentication (MFA) and break into Microsoft accounts. Microsoft says all sectors are at risk but that financial services have been heavily targeted. In a recent blog post, Microsoft noted: “Phishing emails originating from these “do it yourself” kits make up a significant portion of the tens to hundreds of millions of phishing messages observed by Microsoft each month. The fraudulent ONNX operations are part of the broader “Phishing-as-a-Service” (PhaaS) industry and as noted in this year’s Microsoft Digital Defense Report, the operation was among the top five phish kit providers by email volume in the first half of 2024. ” Fradulent phishing email (Image Credit: Microsoft. com) Microsoft’s Digital Crime Unit (DCU) is disrupting the cybercriminal supply chain to protect customers from threats, including financial fraud, data theft, and ransomware. The phishing kits enable criminals to use advancing adversary-in-the-middle (AiTM) attacks where they intercept network communications to steal passwords and security tokens to authenticate themselves. Microsoft says that AiTM attacks have become the go-to method and are highly favored by criminals to bypass MFA protections, with a 146% increase in AiTM attacks in this year’s Microsoft Digital Defense Report. ‘Quishing’ is on the rise... --- ### Windows 11 Insider Preview Brings Third-Party Passkey Support - Published: 2024-11-26 - Modified: 2024-11-26 - URL: https://petri.com/windows-11-insider-preview-third-party-passkey-support/ - Categories: Windows 11 - Tags: News, Security, Windows 11 - Article Type: News Microsoft has long been part of the FIDO Alliance, a consortium of technology companies championing a passwordless future. The company is taking another step to making passkeys the future by introducing API support in Windows 11 for third-party passkey providers. In a November 22 blog post, Microsoft said that it is releasing updates to WebAuthn APIs that add a plugin authentication model for passkeys. This will allow users to choose a third-party provider, like Bitwarden and 1Password, instead of the native Windows passkey provider. The decision to provide third-party passkey support in Windows 11 was first announced at the beginning of October, 2024. Passkeys are essentially private-public key pairs that allow users to sign in to websites and applications without using a password or TOTP multifactor authenticator codes. Not everyone wants or trusts Microsoft to deal with creating and storing their passkeys. Synchronizing passkeys in Windows 11 with Windows Hello (Image Credit: Microsoft) The new third-party passkey support will give users more choice. Microsoft also says that plugins will be able to use Windows Hello as a verification mechanism to provide users with a seamless experience. In its October blog post, Microsoft said: “Microsoft is partnering closely with 1Password, Bitwarden and others on integrating this capability to provide users with seamless third-party passkey provider integration into Windows 11. You will be able to use the same passkey on Windows 11 that you’ve created on your mobile device, and together we can raise the bar on login security with passkeys. ” There... --- ### Achieving True MFA in Active Directory by Securing Every Authentication Factor - Published: 2024-11-25 - Modified: 2024-11-25 - URL: https://petri.com/true-mfa-in-active-directory-securing-every-authentication-factor/ - Categories: Active Directory (AD) - Tags: Active Directory, featured-top-right, multifactor authentication, NoAD - Article Type: Overview, Sponsored Multi-Factor Authentication (MFA) has become important for user security within Active Directory environments. By implementing additional verification steps, MFA makes it more difficult for adversaries to gain unauthorized access and it is essential for any organization aiming to secure its Active Directory infrastructure. However, despite investing heavily on MFA to stop cyberattacks, top research reports show that account compromises aren’t decreasing. Rather, stolen passwords have risen to become the top cause of a data breach. This shows that even with MFA integrated into the Active Directory (AD) authentication flow, the security of each authentication factor is crucial for receiving the security benefits of MFA. So, there is still a need for a defense-in-depth approach that ensures credentials are secure rather than relying solely on MFA as a compensating control. The threat of compromised credentials   According to the Verizon 2024 Data Breach Investigations Report, stolen credentials remain a consistent and widespread threat to all organizations, including those using Active Directory. The report makes it clear that hackers are exploiting systems using default, weak, or compromised passwords to gain unauthorized access. Even with all the advancements in MFA and other technologies, these cybercriminals persist in using stolen credentials because they're so effective, easy to find on the Dark Web, and often provide a direct route straight into an organization's systems. This unexpected trend raises some important questions: How can attackers bypass MFA so consistently, and how can organizations better secure their authentication? Understanding how attackers bypass MFA Although MFA is... --- ### Microsoft 365 Users Experience Outlook ‘Issue’ as Fix Starts to Roll Out - Published: 2024-11-25 - Modified: 2024-11-25 - URL: https://petri.com/microsoft-365-issue-fix-november-25-2024/ - Categories: Microsoft 365 - Tags: featured-top-left, News - Article Type: News Some European Microsoft 365 users started the week this morning without access to Microsoft 365 services. Microsoft said on X that was investigating an issue impacting users accessing Exchange Online and some functionality in Microsoft Teams calendar. The issue mostly appeared to affect users trying to access Outlook through the web browser. Although, some users were also having issues connecting to Microsoft’s servers and logging into Microsoft 365. Fix for November 25 Microsoft 365 Outlook issues rolling out now A few hours later, Microsoft updated X, saying a recent change had resulted in the issue users were experiencing this morning. Microsoft started reverting the change and investing whether anything else needed to be done to restore normal service. https://twitter. com/MSFT365Status/status/1861047970143019048 An hour ago, Microsoft released another update, saying that the fix is still rolling out through the effected environment. But in the meantime, engineers were beginning manual restarts on some machines that were in ‘an unhealthy state’. Microsoft redirected admins to MO941162 in the Admin Center. The Admin Center post says the following services are affected: Outlook on the Web Outlook desktop client Representational State Transfer (REST) Exchange ActiveSync (EAS) --- ### Microsoft Teams Intelligent Event Recap Coming to Town Hall and Webinars - Published: 2024-11-25 - Modified: 2024-11-25 - URL: https://petri.com/microsoft-teams-intelligent-event-recap-release-date/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft updated its roadmap last week to confirm that Intelligent Event Recap is coming to Teams Town Hall and Webinars in January 2025. Intelligent Event Recap, similar to Intelligent Meeting Recap, which was first launched for Teams Premium users in May, 2023, uses artificial intelligence to create an overview of an event with the aim of helping organizers and presenters save time and understand what steps they should take next. What is Intelligent Event Recap? Microsoft says that Intelligent Event Recap will allow event organizers, co-organizers, and presenters to easily explore meeting recordings by browsing recordings by speakers and topic, see AI-generated meeting notes, AI-generated follow-up tasks, and name mentions. Here are some of the key features: It will summarize your recordings, take notes for you, and identify key discussion points and action items for organizers and presenters. It offers personalized timeline markers and presents information by topic or speaker in color-coded segments, streamlining recording review. Intelligent Event Recap in action in a Teams meeting (Image Credit: Microsoft) Teams Town Halls are a type of meeting event designed for one-to-many communications. Town Halls are for hosting large-scale events with up to 20,000 attendees. They support moderation and Q&A. Conversely, webinars are one-to-many communications with a limit of 1000 attendees but with robust registration features. Webinars also allow attendees to chat, have moderated Q&A, and support reactions. Intelligent Event Recap availability Much like Intelligent Meeting Recap, Intelligent Event Recap is available to organizations using Teams Premium or Copilot for Microsoft 365... --- ### Windows Recall and 'Click to Do' Preview Now Available on Copilot+ PCs - Published: 2024-11-22 - Modified: 2024-11-22 - URL: https://petri.com/windows-recall-preview-now-available/ - Categories: Windows - Tags: featured-top-right, Windows 11 - Article Type: News Back in June 2024, Microsoft announced the new 'Copilot+' PC specification and device type. They also gave a demonstration of Windows Recall, a controversial new feature that takes periodic snapshots of your computer screen, capturing what you're doing, so you can 'go back in time' and remember that website you were doing research on, or what Excel spreadsheet had that crucial calculation. Recall privacy and security controversy The controversy of Recall centers on privacy and security concerns. Security researchers quickly, and without literal merit, labeled it a privacy nightmare, fearing it could exploit secure information, share information with others, and allow IT admins or other admin-level users on a device to view these saved snapshots. In response to this outcry, Microsoft delayed the feature initially to October, but then recently to December. Technically, they are a bit early today. Microsoft made a few small changes and security enhancements including better-described data encryption and Windows Hello authentication. For the record, the feature will be disabled by default and will require explicit 'opt-in' by users. It will be unavailable on the Windows 11 Enterprise and Education SKUs. It is also removed by default on PCs managed by an IT administrator for work or school. IT Pros will fully control the availability of Recall within their org. Windows Insider Program - Dev Channel The wait for Windows Insiders with Snapdragon-based Copilot+ PCs is over. The Windows Insider Program has announced the latest build of Windows 11 in the Dev Channel - 26120. 2415. Windows... --- ### First Ring Daily: Microsoft's Ignite 2024 Announcements - Published: 2024-11-22 - Modified: 2024-11-22 - URL: https://petri.com/first-ring-daily-microsofts-ignite-2024-announcements/ - Categories: Microsoft - Tags: copilot, First Ring Daily, Microsoft, Microsoft Ignite, News - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the biggest announcements from Microsoft's Ignite conference for IT Pros this week, as well as the US DOJ formally recommending that Google should be forced to divest itself of its Chrome web browser. --- ### Microsoft Edge Introduces Shared Passwords Feature and New Security Updates - Published: 2024-11-22 - Modified: 2024-11-22 - URL: https://petri.com/microsoft-edge-gets-new-shared-passwords-feature-and-more/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News, Security - Article Type: News This week at the Ignite 2024, Microsoft announced many new features coming to the company's web browser, Edge for Business. Because today's work environment looks very different from just a few years ago, Microsoft continues to adapt to the new hybrid landscape and offer more security-focused features to keep your organization safe and protected. Cybersecurity threats are more sophisticated, remote users are using personal devices - this all complicates the task of protecting sensitive information in your enterprise. And because today's daily work tasks rely heavily on the web browser, it is crucial to keep the browser secure. Let's review some of the top new features coming to Microsoft Edge for Business. Secure Enterprise Browser - Microsoft Edge for Business is designed to meet the security and productivity needs of organizations, optimized for AI, and includes advanced security features including data loss prevention, unmanaged device support, and generative AI controls. Management made simple - Larger organizations can use Microsoft Intune to manage the Edge for Business browser with easy-to-use policies - policies that are familiar to IT Pros. For smaller organizations, the Edge management service in the Microsoft 365 admin center is the way to go. Customers enjoy its easy-to-use UI, AI controls, and organizational branding features. From this interface, you can deploy both browser policies in the cloud and Intune policies from a single pane. Safely introduce and control AI in your organization - The Edge management service provides comprehensive solutions for overseeing AI usage, including restricting access to... --- ### Windows Server Management enabled by Azure Arc Is Now Generally Available - Published: 2024-11-21 - Modified: 2024-11-21 - URL: https://petri.com/windows-server-management-enabled-by-azure-arc-is-now-ga/ - Categories: Azure, Windows Server - Tags: Azure Arc, News, Windows Server - Article Type: News At their Ignite 2024 tech conference this week, Microsoft announced a restructuring of sorts for Windows Server Management features and SKUs and brought them under Azure Arc. They are advertising the features as a 'free add-on' bundle for companies utilizing Windows Server Pay as you Go, or active Software Assurance (SA) agreements. This is why I put 'free' in quotes. Benefits for SA and active subscription licence holders The key benefits for customers with Windows Server licenses that include Software Assurance or active subscription licenses include: Azure Change Tracking and Inventory Azure Update Manager Azure Machine Configuration Windows Admin Center in Azure Arc Remote Support Network HUD Best Practices Assessment Azure Site Recovery (Config Only) There are no explicit costs associated with these features beyond associated networking, compute, storage, and log ingestion charges for customers enrolled in Windows Server Pay as you Go or Software Assurance. Azure benefits with Azure Arc and Windows Server (Image Credit: Microsoft) This table shows each benefit, the minimum supported Windows Server version, and the description of the feature. BenefitSupported OSDescriptionAzure Update ManagerWindows Server 2012 and aboveAssess the update status and deploy updates to machines (one off, recurring, maintenance windows) with visibility into update compliance and auditing. Azure Change Tracking and InventoryWindows Server 2012 and aboveDiscovery of and changes of software, services/daemons, files, and registries of Azure Arc-enabled servers. Azure Machine ConfigurationWindows Server 2012 and aboveConfiguration of machine properties for OS, app, and environment settings, with Azure Policy. Available natively with the Azure Connected Machine agent. Windows Admin... --- ### Microsoft Introduces First Cloud PC Device - the Windows 365 Link - Published: 2024-11-21 - Modified: 2024-11-21 - URL: https://petri.com/microsoft-introduces-windows-365-link/ - Categories: Windows 365 - Tags: featured-top-left, News, Windows 365 - Article Type: News At Microsoft's Ignite 2024 tech conference this week in Chicago, Redmond announced the first 'Cloud PC' device—a purpose-built solution called Windows 365 Link. With a public preview starting now, they are expected to be shipping or generally available in April 2025. The new Windows 365 Link - Image Credit: Microsoft "... a small Windows-based OS designed to connect you to Windows 365 in seconds" - or so goes the marketing campaign coming out of Ignite. With a quick sign-in to your cloud PC with the Windows 365 Link, you can securely connect to your familiar Windows desktop hosted in Microsoft 365 and Microsoft Azure. Once connected, your users can experience a high-fidelity experience with all of the Microsoft 365 Apps including full video meetings in Microsoft Teams, Word, Excel, and the New Outlook. Windows 365 Link devices are a breeze to setup in the Intune Admin Center - Image Credit: Microsoft Setting up new Windows 365 Link devices will be a breeze using the Microsoft Intune Admin Center. IT Pros will be able to manage and provision these thin clients alongside other Windows, macOS, and other devices. Windows 365 Link is built from the ground up for security Security, Security, Security, right? This is the main focus coming out of Ignite, and highlighted in Satya Nadella's (CEO) keynote on Tuesday, Nov 19. There are some security features built from the ground up in the new Windows 365 Link. First, there are no local admin accounts. Second, there is no local data... --- ### Ignite 2024: Windows 11 Gets Hotpatching and New Admin Protection Feature - Published: 2024-11-19 - Modified: 2024-11-19 - URL: https://petri.com/windows-11-hotpatching-admin-protection/ - Categories: Windows 11 - Tags: featured-top-left, News, Windows 11 - Article Type: News Microsoft has announced new security features coming to Windows 11 Enterprise at Ignite 2024. The company has also introduced the Windows Resiliency Initiative to make Windows more robust and secure for enterprise customers. Windows 11 Enterprise gets hotpatching support and PDE Microsoft has announced Hotpatch support for Windows 11 Enterprise 24H2 and Windows 365. This feature allows administrators to apply critical security updates without requiring a system reboot. The Configuration Refresh feature lets IT admins enforce MDM-defined security policies by automatically returning PC settings to the preferred configuration. Personal Data Encryption Lastly, Microsoft has announced that the Personal Data Encryption for known folders is now generally available for Windows 11 Enterprise. This feature leverages Windows Hello authentication to protect files stored in the Desktop, Documents, and Pictures folders. IT admins can use Microsoft Intune to enable Personal Data Encryption within their organization. Windows 11 security features Microsoft highlighted a couple of security features that are now enabled by default in Windows 11, including virtualization-based security, Credential Guard, vulnerable driver block list, and Local Security Authority (LSA) protection. Other security features like Smart App Control, App Control for Business policies, as well as passkey support for Windows Hello authentication help to protect customers against cyberattacks. Windows 11 Administration Protection feature aims to block malware Microsoft has announced updates to boost Windows security for commercial customers. The company has introduced a new security feature in preview that will give employees standard user permissions by default, but they will still be able to... --- ### Ignite 2024: Microsoft to Add AI-Powered Windows Search to Copilot+ PCs - Published: 2024-11-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-improved-windows-search-copilot-pcs/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has announced plans to use AI models to enhance Windows search on its new Copilot+ PCs. These search improvements are coming to File Explorer, Windows Search, and Settings. The improved Windows Search experience is designed to make it easier for users to find files, including documents and photos. This feature will eliminate the need for users to remember file names or exact file content. Microsoft is leveraging the NPU chips on new Copilot+ PCs to enable local search on disk without having to be connected to the Internet. “Users will be able to search for local documents by describing their content or using synonyms of content in documents. For example, a document that talks about cars, buses and airplanes can be found by a user searching for “modes of transport. ” For images, users will be able to search by image content, including any text found in an image,” Microsoft explained. With the improved Windows Search, users will be able to find files stored in OneDrive for Business more easily. This integration will help users quickly locate and access work documents. In early 2025, Microsoft plans to roll out this new Windows Search experience to Windows Insiders for Snapdragon-powered Copilot+ PCs. The improved Windows Search will also be coming to Windows 365 Cloud PCs in Spring 2025. Other AI features coming to Windows 11 Microsoft plans to enhance Microsoft 365 Copilot to allow more employees access to generative writing capabilities in apps like Word and Outlook. Moreover, the controversial AI-powered... --- ### Ignite 2024: Microsoft 365 Copilot Actions Feature Simplifies Task Automation for Businesses - Published: 2024-11-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-365-copilot-actions-task-automation/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced new updates for Microsoft 365 Copilot at its Ignite conference this morning. With Copilot Actions, organizations can streamline workflows by automating repetitive tasks with simple, customizable prompts. “For example, you can automatically receive a summary of your most important action items at the end of each workday; create an action to gather inputs from your team for a weekly newsletter you send each Thursday; or automate customer meeting prep with a recurring action that summarizes your last few interactions ahead of your next sync,” Microsoft explained. Customers can automate these customizable prompt templates, which can be used on demand or triggered by specific events. Currently, the Copilot Actions feature is available in private preview for Microsoft 365 Copilot users. Additionally, Microsoft has enhanced Copilot Pages with new content creation capabilities, including multi-page support and rich artifacts. Copilot Actions (Image Credit: Microsoft) In Microsoft Teams, the Copilot AI assistant will allow users to analyze screen-shared content in meetings. This feature will be available in public preview in early 2025. Additionally, Copilot in Teams will let users summarize the content of files shared in 1:1 and group chats. Copilot file summaries will be available in preview for both Microsoft Teams desktop and mobile apps in early 2025. In Microsoft PowerPoint, the Copilot AI assistant will allow users to translate entire presentations into one of 40 languages in January 2025. Later this month, Copilot in Outlook will help users schedule focus time or 1:1 meetings with colleagues, as well as... --- ### Ignite 2024: Microsoft Teams Gets New Meetings Features, Storyline Integration - Published: 2024-11-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-meetings-features-storyline/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft announced today several updates coming to Microsoft Teams at its Ignite 2024 conference. The company detailed new meetings features to enhance collaboration and the integration of Storyline in Microsoft Teams. Starting this month, the meeting transcription feature in Teams will add support for multilingual meetings to facilitate collaboration among global teams. Once enabled, the attendees will be able to choose from 51 spoken and 31 translation languages. The live translated captions and transcripts will add translation support for multilingual meetings. The intelligent meeting recap will be available in the language that users selected for translation during the Teams meeting. Users will be able to change the language of the recap from the Recap tab in Microsoft Teams. The new meetings features are currently available in private preview for commercial customers. These capabilities will become generally available for the Microsoft Teams desktop, web, and mobile clients in 2025. Storyline in Microsoft Teams Last but not least, Microsoft announced that a Viva Engage-like Storyline feature will be available soon for Microsoft Teams. “Storyline in Microsoft Teams will simplify the ways that leaders and employees share and connect with colleagues across the company, increasing visibility and engagement. Employee communications are often scattered across multiple places, leading to frustration, delays and overload,” Microsoft explained. It will allow employees to receive updates and notifications from leaders as well as discover content shared within the organization. They can also share their own ideas and viewpoints directly within Microsoft Teams. Microsoft plans to roll out this... --- ### Azure Arc: Monitoring and Securing Hybrid Environments > Explore the benefits of Microsoft Azure Arc and how it solves the common challenges of hybrid and multicloud management. - Published: 2024-11-18 - Modified: 2024-11-21 - URL: https://petri.com/what-is-azure-arc/ - Categories: Microsoft Azure - Tags: Azure, Azure Arc, Cloud, DevOps, featured-top-right - Article Type: Overview Managing hybrid cloud environments can feel like taming a multi-headed beast. With diverse management tools, inconsistent security policies, and resources spread across on-premises, public clouds, and edge environments, the complexity is daunting. Azure Arc rises to this challenge, bringing together centralized governance, automation, and a single control plane for seamless management of your hybrid infrastructure. What is Azure Arc? Azure Arc is Microsoft’s hybrid cloud management platform, extending Azure's capabilities to non-Azure environments. Whether you’re managing on-premises servers, Kubernetes clusters running in Google Cloud (GCP), or VMware vSphere workloads, Azure Arc projects these resources into Azure Resource Manager (ARM) for unified management. Key resource types managed by Azure Arc Azure Arc-Enabled Servers: Manage Windows and Linux servers running anywhere—on-premises, on Azure Stack HCI, or even in public clouds like Amazon Web Services (AWS) and Google Cloud Platform (GCP). Azure Arc-Enabled Kubernetes: Attach Kubernetes clusters, no matter where they’re hosted, and apply GitOps configurations. Azure Arc-Enabled Data Services: Run services like SQL Managed Instance and PostgreSQL on any infrastructure. Azure Arc-Enabled VMware vSphere: Extend Azure management to VMware environments, enabling lifecycle management for virtual machines. Azure Stack HCI and System Center Virtual Machine Manager (SCVMM): Manage virtual machines on-premises with the same tools you use in Azure. This broad range of supported resource types enables organizations to bridge the gap between traditional IT and modern cloud-native technologies. The Azure Arc dashboard showcasing diverse resources, including Kubernetes clusters, Windows and Linux servers, and SQL databases (Image Credit: Tim Warner/Petri. com) Centralized monitoring... --- ### Microsoft to Add Background Calendar Notifications Support to New Outlook for Windows - Published: 2024-11-18 - Modified: 2024-11-18 - URL: https://petri.com/new-outlook-for-windows-background-calendar-notifications/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft will add support for background calendar notifications to its new Outlook for Windows client this month. The company announced on the Microsoft 365 admin center that this new feature will let users receive desktop alerts for upcoming events, even when the app is closed. Currently, Microsoft Teams users must keep the new Outlook for Windows client open to receive Calendar notifications. If the app isn’t launched, they won’t get alerts for upcoming events or meetings. With this release, Microsoft Outlook users will need to click on the notification to view the details of the Calendar event. This feature will help to ensure that users don’t miss any important meetings or appointments. How to enable background Calendar notifications in the new Outlook for Windows client? To enable background Calendar notifications, Microsoft Outlook users will need to follow the steps mentioned below: Click the gear icon available in the top right corner to open Settings. Select Notifications, expand the "Notifications in Outlook" section, and turn on “Send notifications when Outlook is closed. ” Navigate to the Notify me about section, expand the Calendar option and then select Desktop. Click the Save button to apply the changes. Background calendar notifications (Image Credit: Microsoft) Once enabled, users will need to open the Settings app in Windows 11. Select System > Notifications, click the Outlook (new) option and then enable the Show notification banners toggle. In Windows 11 Settings, find the Installed apps option and then search for Outlook. Click the three-dot menu next to... --- ### First Ring Daily: Windows 11 ISO for ARM-based PCs is Here - Published: 2024-11-15 - Modified: 2024-11-15 - URL: https://petri.com/first-ring-daily-windows-11-iso-for-arm-based-pcs-is-here/ - Categories: Windows, Windows 11 - Tags: First Ring Daily, ISO files, News, Windows 11, Windows on ARM - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft finally releasing a Windows 11 ISO for ARM-based PCs and the various caveats that come with it. --- ### Microsoft Pauses Exchange Security Update Over Transport Rule Failures - Published: 2024-11-15 - Modified: 2024-11-15 - URL: https://petri.com/microsoft-pauses-exchange-security-update/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Microsoft has paused the roll out of a security update that was released for Exchange Server 2016 and Exchange Server 2019 on November 12. The company has warned that the patch could break transport rules for select customers. “We are aware of customers having an issue with the Transport rules stopping periodically after this update is installed. Based on our initial investigation, this can happen to customers who use their own transport or DLP rules. If you are seeing this problem, you might have to uninstall the November SU until it is re-released,” Microsoft explained. In Microsoft Exchange, transport rules (also known as mail flow rules) help manage the flow of email messages within an organization. They enable administrators to apply specific actions to messages based on predefined conditions. These rules also allow organizations to automate workflows and filter out unwanted content like spam and phishing attempts. DLP (Data Loss Prevention) rules are designed to protect sensitive information by setting specific conditions and actions within a DLP policy. These rules detect and monitor sensitive data, enforce policies to prevent unauthorized access as well as take preventive actions like blocking or encrypting data. Admins report transport rule failures after Exchange security update Several administrators reported on Reddit that their transport rules stopped functioning after installing the Exchange security update. Some users confirmed that restarting the service temporarily fixed the issue, though the problem kept coming back. Microsoft advises affected users to uninstall the update and wait for a new version. Microsoft... --- ### Thwarting Phishing Attacks with Predictive Analytics and Machine Learning in 2024 - Published: 2024-11-15 - Modified: 2024-11-20 - URL: https://petri.com/thwarting-phishing-attacks-with-predictive-analytics-and-machine-learning/ - Categories: Security - Tags: artificial intelligence, machine learning, Phishing, Security - Article Type: Opinion The types of cyberattacks bad actors gravitate to haven’t changed – only their sophistication. Phishing attacks are more popular than they’ve ever been. Chiefly, because of how accessible they’ve become through AI and machine learning. Staying ahead of modern-day cyber attacks will require organizations to fight fire with fire. This means adopting an AI-driven strategy to counteract high-level threats. The evolving threat of phishing attacks In 2024, the estimated average global cost of a data breach was 4. 88 million dollars – a 10% increase over the previous year. At least 36% of all data breaches were due to a phishing campaign.     It’s easy to see why phishing campaigns remain so popular. They’re simple and effective. All one needs is a solid grasp of English, decent web design skills, a bit of SEO trickery and poof—unsuspecting victims will be handing their SSN over without thinking twice.   Hence, threat actors seldom use them as an end, but rather to inject systems with ransomware and/or extract data. And they’re very effective, too, with 94% of organizations reporting email security incidents, in large part due to successful phishing attempts.   Unfortunately, generative AI only made things worse. It’s a stark reminder that while the democratization of AI has been a boon in many aspects, it’s also substantially shifted the landscape of cybersecurity. Just remember what happened to that Ferrari executive, who was one personal question away from unwittingly siphoning the Italian car manufacturer’s funds to a scammer.      Understanding AI-powered phishing attacks While Ransomware-as-a-Service has... --- ### Microsoft Power Pages Misconfigurations Expose Millions of Sensitive Records - Published: 2024-11-14 - Modified: 2024-11-14 - URL: https://petri.com/power-pages-misconfigurations-exposes-records/ - Categories: Security - Tags: Microsoft Power Pages, News - Article Type: News Cybersecurity researchers have discovered a new data exposure issue in Microsoft Power Pages, stemming from misconfigured access controls in websites built with the platform. This flaw exposed millions of sensitive business records to unauthorized users, posing a serious security risk for affected organizations. Microsoft Power Pages is a low-code software as a service (SaaS) platform that allows customers to build, host, and manage business websites. It lets users design and publish externally facing websites using a visual design studio and customizable templates. In September, Aaron Costello, head of SaaS security research at AppOmni, discovered that a major business service provider for the NHS had unintentionally allowed unauthorized access to sensitive data due to insecure permission settings on Power Pages. The NHS has since resolved this misconfiguration. However, researchers found that this same misconfiguration also exposed several million additional records from government entities and organizations. These included internal company files, sensitive information, and data from registered site users. Misconfigured access controls expose PII via Web API (Image Credit: Microsoft) What are the causes of data exposure? The report identified four main reasons for the exposure of business data, the first being that Power Pages reveal too many columns to the Web API. “By granting unauthenticated users excessive permissions, anyone may have the ability to extract records from the database using readily-available Power Page APIs,” Costello explained. Additionally, a Power Pages site allows users to register and become authenticated through associated APIs. External users can also be granted global access for read... --- ### How to Add a Domain Controller to an Existing Domain (PowerShell) - Published: 2024-11-14 - Modified: 2024-11-15 - URL: https://petri.com/add-domain-controller-to-existing-domain-powershell/ - Categories: Active Directory (AD) - Tags: Windows Server 2016, Windows Server 2019, Windows Server 2022, Windows Server 2025 - Article Type: How To How do you add a new domain controller (DC) to your existing Active Directory (AD) domain? In this post, I will show you how to quickly add a new DC to AD. This article applies to: Windows Server 2025, Windows Server 2019, Windows Server 2022, and Windows Server 2016 Check the domain and forest functional levels of your domain The only main prerequisite to adding a Windows Server 2025 domain controller into an existing domain is that the domain functional level needs to be running Windows Server 2016. I can use PowerShell to confirm the domain and forest functional levels. Get-ADForest | fl Name, ForestModeGet-ADDomain | fl Name, DomainMode Using PowerShell to confirm the forest and domain functional levels Install Windows Server and rename the server The initial setup includes firing up a new virtual machine and installing Windows Server. When setup finishes, I can use this PowerShell command to rename the computer. Rename-Computer -NewName "WS25-DC5" -Restart Check for updates using SConfig After rebooting, I can use the 'SConfig' program in PowerShell to check for updates and install them. (They are already installed, so no updates are pending) Using SConfig to check for and install Windows Updates After one more reboot, we need to assign a Static IP Address to our server. Here are the commands. New-NetIPAddress –IPAddress 192. 168. 1. 138 -DefaultGateway 192. 168. 1. 254 -PrefixLength 24 -InterfaceIndex (Get-NetAdapter). InterfaceIndex Set-DNSClientServerAddress –InterfaceIndex (Get-NetAdapter). InterfaceIndex –ServerAddresses 192. 168. 1. 240,192. 168. 1. 241 This will assign a static IP of 192. 168. 1. 38 on my lab network with the default gateway and add my... --- ### How to Add a New Forest to Active Directory (Server Manager) - Published: 2024-11-14 - Modified: 2024-11-14 - URL: https://petri.com/add-new-forest-to-active-directory/ - Categories: Active Directory (AD) - Tags: Windows Server 2016, Windows Server 2019, Windows Server 2022, Windows Server 2025 - Article Type: How To In this guide, I'll show you how to add a new forest to your existing Active Directory environment. There may be compliance or security requirements dictating you add a new forest. This article applies to: Windows Server 2016, Windows Server 2019, Windows Server 2022, and Windows Server 2025. However, just a note, you can add forest trusts, too. If you have an existing forest, contoso. com, you can add another forest, northwindtraders. com, and optionally build a trust between them, all within your LAN environment. Add the Active Directory Domain Services server role to Windows Server In our final scenario will be adding a new forest to an environment. There are several logical designs that dictate this option. If you are starting out completely from scratch, this is the only option you will have – adding your first domain controller and creating your very first (forest-root) domain. Another scenario would be if you need a more defined separation of domains. If you are merging with another corporation, you may want to add a new forest in a test setting - this will allow complete separation between your forest domain structure and your testing. However, as I stated previously, you'll be able to create forest trusts that will allow users in one forest to log in (seamlessly) to computers in the other forest. I have built another Windows Server 2022 Datacenter Hyper-V VM and named it WS22-FOREST-DC1. Our 3rd and final server, ready for promotion - WS22-FOREST-DC1 Again, I went and added... --- ### Add a Child Domain to an Existing Forest (Server Manager) - Published: 2024-11-14 - Modified: 2024-11-14 - URL: https://petri.com/add-child-domain-to-existing-forest/ - Categories: Active Directory (AD) - Tags: Windows Server 2016, Windows Server 2019, Windows Server 2022, Windows Server 2025 - Article Type: How To In this guide I'll show you how to add a child domain to an existing forest. If you have, for example, contoso. com as your single Active Directory forest domain, you may want to add some logical separation. You can add a child domain, corp. contoso. com, to your forest during the DC promotion wizard. This article applies to: Windows Server 2016, Windows Server 2019, Windows Server 2022, and Windows Server 2025. Add the AD Domain Services server role This scenario requires you to have an existing domain/forest already in your environment. For example, reinders. local is my forest-root domain. It was built when I created (promoted) my first domain controller (DC) in my lab environment. All we need to do is build another Windows Server 2022 Datacenter server and confirm it has LAN access to our existing domain. I've built another one of these servers and named it WS22-CHILD-DC01. The next contestant on the domain controller train Configure the new child domain I already went through the process of adding the Active Directory Domain Services (AD DS) role in the previous example, so I won't go through it in detail here. I added the role and I am starting at the wizard for promoting the server as a domain controller. Putting in the details of our existing and new domain I chose the second option – 'Add a new domain to an existing forest. ' I then typed in my existing forest domain – 'reinders. local' and named our new child domain – 'corp'... . --- ### Microsoft Teams to Roll Out Strict Update Policy with 90-Day Blocking Notification - Published: 2024-11-14 - Modified: 2024-11-14 - URL: https://petri.com/microsoft-teams-update-policy-blocking-notification/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft has introduced in-app notifications to inform users when they’re using an outdated version of the Microsoft Teams desktop client. Starting this week, these alerts will encourage users to update to the latest version for improved performance and security. In December, Microsoft Teams desktop clients that haven’t been updated in 90 days will display a blocking page. This page will prompt users to either update to the latest version or switch to the Microsoft Teams web app. The update policy applies to Teams desktop users on Windows (version 24193. 1805. 3040. 8975) and macOS (version 24215. 1002. 3039. 5089). “To identify when desktop clients fall out of date, an in-app alert is displayed if the user's current version is between one and three months old, and if there's a new version available,” Microsoft explained. “Users on Teams desktop clients that are more than three months old will see a blocking page. This page gives the options to update now, reach out to their IT admin, or continue to Teams on the web. ” For users running the new Teams app in VDI environments, the Teams desktop client for Windows will follow the same update policies as in non-VDI setups. Starting January 13, users will see in-app reminders if their app is 30 days out of date, with blocking notifications beginning on February 3 if the app is 90 days out of date. How to prepare for this change? Microsoft advises administrators to ensure that users are on the latest version of Microsoft Teams. The app receives automatic... --- ### Microsoft is Raising Prices for Teams Phone and Power BI Services - Published: 2024-11-13 - Modified: 2024-11-13 - URL: https://petri.com/microsoft-raising-prices-teams-phone-power-bi/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is getting ready to raise prices on Teams Phone and Power BI subscriptions. The company is also introducing a new monthly billing option for commercial customers with annual Microsoft 365 Copilot contracts. Starting April 1, 2025, Microsoft will raise the price of Teams Phone subscriptions for both new and existing commercial customers. The Teams Phone Standard plan will increase from $8 to $10 per user per month, while the cost for Frontline Workers will rise from $4 to $5 per user per month. “This price update marks the first price increase since Teams Phone launched in 2017. It is reflective of the increased value we have delivered to our customers to enable flexible, smart, and reliable calling natively in Teams,” Microsoft explained in a FAQ document. Microsoft Teams Phone price changes (Image Credit: Microsoft) Microsoft said this change won’t affect education, government, or nonprofit customers. Currently, there are no planned changes for customers who purchase Teams Phone via Microsoft 365 E5 or Office 365 E5 annual term subscriptions with annual billing. Microsoft announces price changes for Power BI According to Microsoft, the cost of an annual Power BI Pro subscription will increase from $10 to $14 per user per month, and Power BI Premium Per User (PPU) will go up from $20 to $24 per user per month. However, pricing for other Power BI editions (such as Power BI Capacities (F SKU), Power BI Report Server, Power BI Embedded, and Power BI Free) will remain unchanged. Microsoft 365 Copilot... --- ### Mastering the PowerShell Trim Method > This guide explores the PowerShell Trim methods in detail, with real-world examples and practical tips on how to use each method effectively in PowerShell scripts. - Published: 2024-11-13 - Modified: 2024-11-18 - URL: https://petri.com/powershell-trim/ - Categories: PowerShell - Tags: DevOps, PowerShell - Article Type: How To This guide explores the PowerShell Trim methods in detail, with real-world examples and practical tips on how to use each method effectively in PowerShell scripts. Effective string handling in PowerShell is a cornerstone of clean, efficient scripting, especially when handling user input, log data, or file paths. In PowerShell scripting, precision in string manipulation is vital for cross-platform efficiency, making methods like Trim, TrimStart, and TrimEnd indispensable tools for data handling.  PowerShell’s robust support for diverse data types, including comma-separated value (CSV) files and folders, enhances its utility for managing structured and unstructured data. PowerShell 7 brings Trim to the cross-platform realm, allowing IT pros to harness its capabilities on Windows, macOS, and Linux. With PowerShell 7’s cross-platform capabilities, mastering the Trim methods ensures efficient and consistent string handling. Understanding the PowerShell trim methods PowerShell’s Trim string methods are adapted from . NET’s System. String. Trim methods, ensuring robust and consistent functionality across platforms. Here’s a look at what each method does: Trim: Removes whitespace or specified characters from the beginning and end of the current string object. It’s a powerful method, directly adapted from . NET’s robust System. String. Trim for versatile use cases TrimStart: Removes whitespace or specified characters only from the start TrimEnd: Removes whitespace or specified characters only from the end.  TrimEnd is particularly useful in scenarios where consistent data formatting is essential, especially when working with files, URLs, and other structured text that may contain line breaks, carriage returns, or specific unwanted characters Each of these methods is simple yet powerful for keeping your data clean and prepared for processing. When you think about how often most developers need to trim whitespace from both ends of a string, for instance, you see this method's power. Example 1: Basic whitespace cleanup One... --- ### Microsoft Releases November 2024 Patch Tuesday Updates for Windows 11 and Windows 10 - Published: 2024-11-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-november-2024-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: featured-top-left, News, Windows 10, Windows 11 - Article Type: News Microsoft released yesterday the November 2024 Patch Tuesday updates for all supported versions of Windows 11 and Windows 10. This month, the company has fixed a total of 89 Windows vulnerabilities, with eight of them more likely to be exploited by attackers. 89 vulnerabilities fixed in the November 2024 Patch Tuesday updates Among the 89 Windows vulnerabilities Microsoft fixed this month, 4 are rated “Critical,” 84 are rated Important, and one is rated Moderate in severity. However, two vulnerabilities are already being exploited in the wild, and you can find more details below: CVE-2024-49039 – This is a Windows Task Scheduler elevation of privilege vulnerability that lets hackers execute remote procedure calls (RPC) available only to privileged accounts. The CVSS 8. 8-rated flaw affects Windows 10 and later versions, including Windows Server 2025. CVE-2024-43451 – This spoofing vulnerability enables hackers to steal a victim’s NTLMv2 hash to validate credentials in Windows environments. This important rated flaw with a CVSS score of 6. 5 affects all Windows versions and requires minimal user interaction. CVE-2024-49019 – This elevation-of-privilege vulnerability in Active Directory Certificate Services enables hackers to gain domain administrator access. Microsoft has provided various recommendations to help organizations secure certificate templates. CVE-2024-49040 – This is an Exchange Server spoofing flaw with a CVSS score of 7. 5. It could allow cybercriminals to make phishing attempts and send malicious messages to the victims. This security vulnerability affects both Exchange Server 2016 and 2019. CVE-2024-43639 – This is a critical remote code execution (RCE) flaw in... --- ### VMware Makes Fusion and Workstation Free for All Users - Published: 2024-11-12 - Modified: 2024-11-12 - URL: https://petri.com/vmware-fusion-workstation-free-all-users/ - Categories: VMware - Tags: News, vmware - Article Type: News VMware has announced that VMware Fusion and Workstation are now available for free to all commercial, educational, and personal users. Starting this week, these virtualization tools will no longer require a paid subscription, making them accessible to a broader audience. VMware Workstation is available for both Windows and Linux, and it’s designed to help customers with more advanced IT-related tasks like software development, testing, and simulation. It allows users to run multiple virtual machines simultaneously and includes features like snapshots, cloning, and advanced networking configurations. On the other hand, VMware Fusion allows users to run Windows and other operating systems on macOS devices. It seamlessly integrates with macOS features such as Retina displays and the Touch Bar. Additionally, VMware Fusion offers advanced capabilities, including support for Open Container Initiative (OCI) containers and Kubernetes clusters. "Effective immediately, both VMware Fusion and VMware Workstation will transition away from the paid subscription model, meaning you can now utilize these tools without any cost. The paid versions of these offerings – Workstation Pro and Fusion Pro – are no longer available for purchase," said Himanshu Singh, Broadcom's Product Marketing Director. What existing VMware customers can expect? VMware mentioned that customers with existing commercial contracts will continue to have their agreements honored until the contract expires. During this time, they will receive the full range of services and enterprise-grade support as specified in their contract. According to VMware, the free versions of the products will have all the same features as the paid versions. However,... --- ### Hackers Exploit Microsoft Office Flaw in New Remcos RAT Phishing Attack - Published: 2024-11-12 - Modified: 2024-11-12 - URL: https://petri.com/microsoft-office-flaw-remcos-rat-phishing-attack/ - Categories: Security - Tags: Microsoft Office, News - Article Type: News Cybersecurity researchers have discovered a new phishing campaign enabling threat actors to deploy a modified variant of the Remcos RAT (Remote Access Trojan). This new malware grants cybercriminals complete control over infected Windows devices. Researchers at Fortinet’s FortiGuard Labs report that this phishing campaign begins with an email designed to lure victims into clicking on an Excel file disguised as a business order notification. The file exploits a remote code execution vulnerability (CVE-2017-0199) to install malware on the target device by taking advantage of how Microsoft Office and Word parse certain files. "Its code is wrapped in multiple layers using different script languages and encoding methods, including JavaScript, VBScript, Base64-encoded, URL-encoded, and PowerShell, to protect itself from detection and analysis," the researcher explained. "Once the downloaded exe file, dllhost. exe, starts, it extracts a batch of files into the %AppData% folder. Some of the key data are hidden in these files. " dllhost. exe about to run the PowerShell program (Image Credit: Fortinet) The infected host also downloads a malicious executable file, which is processed through a 32-bit PowerShell command to deploy the Remcos RAT. The malware then alters the system registry to ensure it launches automatically at startup. Once active, Remcos gathers basic information from the victim’s device, including the operating system, IP address, and other system details. The encrypted data is sent to a Command and Control (C2) server, where it registers the victim’s device as online and ready for the attacker’s control. How to protect your organization against Remcos RAT... --- ### Microsoft Fixes Issue with Unintended Windows Server 2025 Upgrades - Published: 2024-11-11 - Modified: 2025-01-17 - URL: https://petri.com/microsoft-fix-unintended-windows-server-2025-upgrades/ - Categories: Windows Server 2025 - Tags: featured-top-left, News, Windows Server 2025 - Article Type: News Microsoft has resolved an issue that unexpectedly upgraded certain instances of Windows Server 2019 and 2022 to Windows Server 2025. The company acknowledged the problem on the Windows Release Health Dashboard over the weekend. On November 1, Microsoft announced the general availability of Windows Server 2025. The new version includes enhanced security for Active Directory, with added protections against brute force, spoofing, and man-in-the-middle attacks. It also introduces hotpatching support for hybrid and on-premises cloud environments. Additionally, Windows Server 2025 offers up to 60% better storage IOPS performance compared to Windows Server 2022. What is the problem? In a Reddit thread, several enterprise admins reported that all their Windows Server 2022 instances were unexpectedly upgraded to Windows Server 2025. It's important to note that this update was pushed despite Windows Server 2025 requiring new licensing. The update was mistakenly labeled as both an optional and security update for Windows Server 2022 machines. “Some devices upgraded automatically to Windows Server 2025 (KB5044284). This was observed in environments that use third-party products to manage the update of clients and servers. Please verify whether third-party update software in your environment is configured not to deploy feature updates. This scenario has been mitigated,” Microsoft explained. New Group Policy option lets IT admins control Windows Server 2025 upgrade notifications Additionally, Microsoft addressed another issue where an update to Windows Server 2025 was offered through a banner in Windows Update. This notification was intended for organizations considering an in-place upgrade. Microsoft is currently working with some... --- ### Workplace Ninjas UK 2025: Unlocking the Future with Microsoft 365, Advanced Endpoint Management, and AI-Powered Security - Published: 2024-11-11 - Modified: 2024-11-11 - URL: https://petri.com/workplace-ninjas-uk-2025/ - Categories: Microsoft 365 - Tags: Conference, featured-top-right, Microsoft 365, NoAD, NoAds - Article Type: Overview Workplace Ninjas UK 2025, scheduled for June 16-17, 2025, at the Edinburgh International Conference Centre (EICC) in Edinburgh, Scotland, is a conference tailored for IT Pros and security experts seeking to deepen their knowledge across Microsoft 365, Intune, ConfigMgr, Microsoft Defender, and the revolutionary AI-powered Microsoft 365 Copilot. This two-day event presents a robust lineup of technical sessions led by MVPs, Microsoft representatives, and security leaders, focused on navigating and managing the modern workplace with Microsoft’s advanced suite of tools. Key highlights of Workplace Ninjas UK 2025 1. Expert-Led Technical Sessions on Intune, ConfigMgr, Microsoft Defender, and Microsoft 365 Workplace Ninjas UK 2025 offers over 50 breakout sessions covering endpoint management, security, compliance, and productivity through Microsoft’s ecosystem: Microsoft 365 and Microsoft 365 Copilot: Learn how to leverage Microsoft 365 Copilot for AI-driven productivity gains across Teams, Word, Excel, and other key apps. Microsoft Intune and ConfigMgr for Endpoint Management: Dive into advanced Intune configurations, deployment strategies, and integration techniques to manage and secure endpoints across complex environments. Microsoft Defender XDR and Sentinel for Security and Compliance: Discover best practices for implementing Microsoft Defender for Endpoint, Defender for Office 365, and Sentinel for extended detection and response (XDR). PowerShell Fundamentals for Automation and API Access: Master the essentials of PowerShell scripting, fostering skills of automation within Microsoft 365 and endpoint management environments. Sessions range from the basics of PowerShell 101, through to Scripting best practices and accessing RESTful APIs. 2. Spotlight on Microsoft 365 Copilot: AI in Security and Productivity... --- ### Microsoft Expands Intune MAM Capabilities with Enhanced BYOD Support for Windows App and Remote Desktop - Published: 2024-11-11 - Modified: 2024-11-11 - URL: https://petri.com/microsoft-intune-mam-windows-app-remote-desktop/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has announced the general availability of Windows app support for Microsoft Intune Mobile Application Management (MAM) on iOS/iPadOS. The company has also released a preview of Remote Desktop support for MAM on Android devices. Microsoft Intune Mobile Application Management (MAM) enables organizations to manage and secure their data within mobile apps. This feature is especially valuable in bring-your-own-device (BYOD) environments, where employees use personal devices for work. With MAM, IT admins can set app protection policies to keep company data safe within managed applications. Previously, it was challenging to support Bring Your Own Device (BYOD) with Azure Virtual Desktop (AVD) and Windows 365, as the system applied identical redirection settings to both corporate and personal devices. This meant features like drive and clipboard redirection were either universally enabled or disabled, without regard for device type. Enhanced redirection and security controls with Intune MAM integration With Intune MAM integration, users can now set different redirection options when connecting to Azure Virtual Desktop, the Windows App client, and the Remote Desktop client. These settings can be customized based on factors like user security groups, operating systems, or whether the device is managed through Microsoft Intune. Microsoft Intune MAM allows organizations to disable specific redirections on personal devices and require PIN access to apps before connection. It also provides options to block third-party keyboards, prevent jailbroken or rooted devices from connecting, and enforce mobile threat defense solutions on devices. On a managed iPad, drive redirection is allowed - as shown in the... --- ### Microsoft Teams Introduces Automatic Loop Workspace Creation for Recurring Meetings - Published: 2024-11-08 - Modified: 2024-11-08 - URL: https://petri.com/microsoft-teams-loop-workspace-meetings/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft Teams has introduced a new feature that automatically creates a Loop workspace with meeting content. This feature is currently available on the Microsoft Teams desktop and web clients and is designed for recurring meetings with 2 to 50 participants. After a recurring Teams meeting ends, participants will receive a prompt in the chat to create a Loop workspace. This workspace consolidates shared meeting content in one place to facilitate ongoing collaboration. “No more scrolling back up and down in the weeks-long chat looking for that file that a colleague shared. Instead, you’ll have a Loop workspace where all the content stays gathered, and auto-magically includes future files that are shared in the chat,” Microsoft explained. Loop workspace creation option (Image Credit: Microsoft) How it works? Microsoft Teams users can automatically aggregate Teams meeting content in a Loop workspace by following the steps mentioned below: After a recurring meeting ends, users will be prompted to set up a workspace, check and confirm the members, and review the shared content. Once confirmed, a Loop workspace is created, the shared content is included, and invitations are sent to the participants. Examine the shared files from the meeting series and either approve or remove them before adding to the workspace. Finally, click the Create button. Microsoft notes that users can access the Loop workspace in a couple of ways. They can view it directly in the Loop app, or by clicking the "Open in Loop workspace" link in the Teams meeting chat. To... --- ### First Ring Daily: Lunar Lake is a “One-Off” - Published: 2024-11-08 - Modified: 2024-11-08 - URL: https://petri.com/first-ring-daily-lunar-lake-is-a-one-off/ - Categories: Hardware - Tags: First Ring Daily, Intel, Lunar Lake, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Intel's plans to stop packaging memory with the processor in its upcoming Panther Lake and Nova Lake chips. They also share their vision of what a "perfect device" would be. --- ### Microsoft’s Magentic-One Multi-Agent AI Tackles Complex Enterprise Operations - Published: 2024-11-08 - Modified: 2024-11-08 - URL: https://petri.com/microsofts-magnetic-one-multi-agent-ai/ - Categories: Artificial Intelligence - Tags: artificial intelligence, News - Article Type: News Microsoft has announced a new multi-agent artificial intelligence (AI) system dubbed Magentic-One this week. This new AI system is designed to help enterprise customers automate complex tasks that typically require human intervention. How does the Magentic-One framework work? Magentic-One uses a multi-agent system to automate and execute complex, multi-step tasks. It relies on an Orchestrator agent that is responsible for managing and coordinating four specialized agents: WebSurfer, FileSurfer, Coder, and ComputerTerminal. Each of these agents handles a specific function, such as web navigation, coding, file handling, and command-line operations. The Orchestrator assigns tasks to these agents and monitors their progress. “Together, Magentic-One’s agents provide the Orchestrator with the tools and capabilities that it needs to solve a broad variety of open-ended problems, as well as the ability to autonomously adapt to, and act in, dynamic and ever-changing web and file-system environments,” Microsoft’s researchers explained. Magentic-One (Image Credit: Microsoft) Microsoft has released the Magentic-One framework as an open-source project for researchers and developers. However, the company notes that Magentic-One is still under development, may make mistakes, and has not yet achieved human-level performance. Moreover, as these agent-based systems become more powerful, the risks of misuse and unintended actions could also increase significantly. Additionally, Microsoft emphasized that Magentic-One is still in its early stages. The company is actively seeking user feedback to identify challenges and improve the multi-agent framework moving forward. Lastly, Microsoft has released an open-source agent evaluation tool called AutoGenBench that enables customers to rigorously test agentic systems. It offers... --- ### Azure Linux 3.0 Preview Now Available on Azure Kubernetes Service v1.31 - Published: 2024-11-07 - Modified: 2024-11-07 - URL: https://petri.com/azure-linux-3-0-preview-azure-kubernetes-service-v1-31/ - Categories: Microsoft Azure - Tags: Azure Linux, News - Article Type: News Microsoft has announced the preview of Azure Linux 3. 0 on AKS version 1. 31, marking a significant update to its Azure Linux container host for Azure Kubernetes Service (AKS). This latest release brings a host of upgrades to key components, promising enhanced performance, security, and developer tools. Microsoft showcased several key updates in Azure Linux 3. 0, including the use of the latest Long-Term Support (LTS) kernel, which boosts both performance and security. Moreover, SELinux is now set to "enforcing" mode by default to offer enhanced security controls. Additionally, Microsoft has upgraded key components such as OpenSSL (v3. 3. 0), SystemD (v255), and Containerd (v1. 7. 13). The update also improves tooling and package availability, streamlining the development experience with Azure Linux. How to use Azure Linux 3. 0 in preview To get started with Azure Linux 3. 0 (Preview) on AKS version 1. 31, customers must first register the Azure Linux 3. 0 feature flag in their Azure subscription. This can be done by running the following az CLI command: az feature register --namespace Microsoft. ContainerService --name AzureLinuxV3Preview AKS version 1. 31 (Image Credit: Microsoft) Once registered, any new AKS version 1. 31 clusters or node pools created with the --os-sku=AzureLinux option will automatically use Azure Linux 3. 0 by default. Administrators can use any method (such as CLI, PowerShell, Terraform, and ARM) to deploy Azure Linux 3. 0 clusters or node pools. Limitations It’s important to note that Azure Linux 3. 0 Preview is not supported on AKS versions 1. 30 or earlier. Additionally, existing clusters or node pools running Azure Linux 2. 0 cannot be... --- ### Windows Protected Print Mode - Secure Printing in Windows - Published: 2024-11-07 - Modified: 2024-11-07 - URL: https://petri.com/windows-protected-print-mode/ - Categories: Windows - Tags: featured-top-right, Print Management, Security, Windows 10, Windows 11 - Article Type: How To This article explores Windows Protected Print Mode (PPM) in Windows 10 and Windows 11. It's a security feature that safeguards sensitive print jobs in Windows. I will delve into the purpose of Windows PPM, functionality, and benefits, focusing on its implementation, advanced security measures, and practical troubleshooting techniques to ensure secure and reliable printing. Windows Protected Print Mode adds to Internet Printing Protocol (IPP) support in the Windows Print System by only allowing Mopria-certified printers and preventing third-party print drivers. Many Mopria-certified printers load manufacturer drivers by default. These restrictions enable Microsoft to provide security that wouldn't otherwise be possible. Introduction to Windows Protected Printing Mode Windows Protected Print Mode is a security feature that ensures confidential and protected print jobs are printed securely within a networked environment. In a time of data breaches and unauthorized access, protected printing modes provide a robust solution to safeguard sensitive documents from potential threats. This mode employs a variety of advanced security measures, including data encryption, user authentication, and secure job storage, to prevent unauthorized access and tampering during the printing process. Why should I enable Windows Protected Print Mode? There are many reasons to enable and utilize Windows Protected Print Mode (PPM) in your environment. Let me explain the most prevalent. Enhanced Security - With PPM, all print jobs are encrypted and securely transmitted over the network, reducing the risk of attack threats and interception. Sensitive documents are protected throughout the entire printing process. Regulation Compliance - In industries subject to strict compliance (healthcare,... --- ### Microsoft Entra ID Users to Receive MFA Passcodes via WhatsApp in Select Countries - Published: 2024-11-07 - Modified: 2024-11-07 - URL: https://petri.com/microsoft-entra-id-mfa-passcodes-whatsapp/ - Categories: Identity Management, Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, featured-top-left, News - Article Type: News Microsoft Entra ID users will soon have the option to receive multifactor authentication (MFA) one-time passcodes (OTPs) directly through WhatsApp. This feature will initially be available to commercial customers in India and select other countries. Microsoft Entra ID (formerly known as Azure Active Directory) is a cloud-based identity and access management service that enables organizations to manage identities across both cloud and on-premises environments. Currently, Entra ID sends OTPs via text messages, which users receive in their default messaging app on Android and iOS devices. Last year, Microsoft Entra ID introduced WhatsApp as an alternative for sending OTPs to users in India and Indonesia. The company found that this capability helped to enhance deliverability, completion rates, and user satisfaction compared to other methods. However, Microsoft temporarily disabled the channel in India. Microsoft Entra ID expands WhatsApp OTP for MFA Microsoft has now decided to reintroduce the WhatsApp OTP option in India and expand it to more countries. This feature will be available only to users set up to receive MFA text messages and who already have WhatsApp installed on their Android or iOS devices. The WhatsApp sender agent displaying the OTPs will be branded as Microsoft and will feature a verified checkmark. “If a user with WhatsApp on their device is unreachable or doesn’t have internet connectivity, they will quickly fall back to the regular SMS channel. In addition, users receiving OTPs via WhatsApp for the first time will be notified of the change in behavior via SMS text message,”... --- ### Microsoft Adds New Feature to Prevent Accidental Delicensing of Exchange Online Accounts - Published: 2024-11-06 - Modified: 2024-11-06 - URL: https://petri.com/exchange-online-delicensing-resiliency/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft has released a new delicensing resiliency feature for Exchange Online customers, providing better protection against the accidental removal of user licenses. This feature includes a 30-day grace period, giving administrators more time to address issues and prevent disruptions in mailbox access. In Exchange Online, each user requires a license to access their mailbox. If a license is removed from an Entra ID user account, the mailbox becomes inaccessible, preventing the user from accessing their emails. Additionally, any new emails sent to that mailbox may not be delivered, and the sender will receive a notification that the email couldn’t be delivered. How does delicensing resiliency work in Exchange Online? Microsoft has noted instances where customers accidentally removed thousands of user licenses due to group-based licensing issues. To address this problem, Microsoft has introduced a 30-day grace period during which unlicensed mailboxes remain fully functional. This gives administrators time to identify and resolve issues, allowing them to either remove the user's license, reassign a license, or leave the user unlicensed until the grace period ends. “Once the 30-day grace period expires and we remove the license, the user mailbox follows its own default 30-day grace period, during which time the user cannot access the mailbox. However, if the license is added back, access is restored, and the mailbox becomes active. After the 30-day grace period, the data is deleted and can't be recovered,” the Exchange team explained. Exchange Online Delicensing Resiliency (Image Credit: Microsoft) Microsoft has released a new Get-PendingDelicenseUser cmdlet that... --- ### New Phishing Campaign Leverages Malicious Linux VM to Infect Windows Devices - Published: 2024-11-06 - Modified: 2024-11-06 - URL: https://petri.com/phishing-linux-vm-windows-devices/ - Categories: Security - Tags: cyberattacks, linux, News, Windows - Article Type: News Cybersecurity researchers have discovered a new phishing campaign, dubbed "CRON#TRAP," which lures victims into unknowingly installing a Linux virtual machine on their Windows systems. This sophisticated tactic provides attackers with a covert foothold in corporate networks, allowing them to operate under the radar of traditional security defenses. A report from Securonix researchers reveals that hackers are using a new method to maintain access and steal sensitive data from targeted Windows devices. The CRON#TRAP campaign begins with a phishing email containing a link to a large zip file, disguised with a survey-related name. When opened, the zip file runs a shortcut that silently deploys a Linux virtual machine in the background using the QEMU emulator. QEMU is a free open-source tool that can be used to emulate various hardware architectures. It supports full-system emulation, and user mode emulation, as well as can achieve near-native performance when used with virtualization technologies. How are hackers using a hidden Linux VM to gain persistent access? Researchers discovered that the Linux VM instance includes a preconfigured backdoor, designed to establish a secure communication channel with a command-and-control (C2) server located in the US. Their analysis of the QEMU image, known as PivotBox, revealed a log of all commands executed within the emulated Linux environment. "The commands executed by the threat actor reveal a clear intention to establish persistence, maintain covert access," said Tim Peck, Senior Threat Researcher at Securonix. "They were highly focused on establishing a stable, reliable, and stealthy point of access within the... --- ### Microsoft Confirms New Black Screen Issue Affecting Windows 10 Azure Virtual Desktop Users - Published: 2024-11-05 - Modified: 2024-11-05 - URL: https://petri.com/black-screen-windows-10-azure-virtual-desktop/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has acknowledged a new issue that could result in frustrating black screens during the login process for Azure Virtual Desktop (AVD) users. This bug specifically impacts those who installed the July 2024 non-security preview update (KB5040525) on their Windows 10 devices. Azure Virtual Desktop is a cloud-based service that provides virtualized desktops and applications over the Internet. This service allows users to access a full Windows experience from any device and supports both single-session and multi-session capabilities. What is the potential impact of the black screen issue on Azure Virtual Desktop users? According to Microsoft, Windows 10 users may experience a black screen for 10 to 30 minutes after logging into Azure Virtual Desktop (AVD). Additionally, users may face issues with single sign-on (SSO) for Office applications like Outlook and Teams, which could hinder data synchronization and connectivity to backend services. This bug could also cause other applications in the Office suite to lose network connectivity. “This issue is caused by a deadlock in the interactions between the Azure Active Directory (AAD) broker and the underlying AppX deployment service (AppxSvc) and Background tasks infrastructure service. You are more likely to experience this issue if you are using FSLogix user profile containers on multi-session environments,” Microsoft explained. What is FSLogix? FSLogix is a profile management solution designed to improve the user experience in virtual desktop environments. It redirects user profiles to a storage provider, helping to minimize login times and optimize file input/output operations. Additionally, FSLogix provides a local profile... --- ### Microsoft Adds New Tools to Enhance Security Exposure Management for Commercial Customers - Published: 2024-11-05 - Modified: 2024-11-05 - URL: https://petri.com/microsoft-tools-security-exposure-management/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Microsoft’s latest update to its Security Exposure Management solution delivers new tools to strengthen organizational defenses. The release introduces an advanced attack path dashboard, alongside the innovative Choke Points and Blast Radius features, providing enhanced visibility and control over potential security threats. Microsoft Security Exposure Management is a tool designed to help administrators identify, evaluate, and mitigate security risks within their organizations. It provides a consolidated view of security status, continuously monitors for vulnerabilities, and integrates with other Microsoft Defender tools to facilitate proactive risk management. The Choke Points feature automatically detects key nodes where multiple attack paths intersect on the way to critical assets. It visualizes these points on an attack path graph and offers actionable recommendations for securing them. Administrators can focus on these choke points to mitigate multiple attack paths simultaneously. The Blast Radius feature allows administrators to see how a compromised asset could affect other parts of the network. It provides a detailed visualization of potential impacts, helping security teams assess the broader consequences of an attack and prioritize mitigation efforts effectively. Attack path dashboard Microsoft has introduced a new attack path dashboard that gives a high-level overview of all identified attack paths within the environment. This feature helps security teams gain insights into path types, common entry points, target assets, and more, strengthening their organization’s risk mitigation efforts. Attack path widget The attack path widget on the exposure management overview page offers a quick snapshot of identified attack paths. It offers a timeline of new... --- ### Microsoft Loop Now Supports Guest Sharing for Tenants with Sensitivity Labels - Published: 2024-11-04 - Modified: 2024-11-04 - URL: https://petri.com/microsoft-loop-guest-sharing-sensitivity-labels/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft Loop is getting a new update that will allow administrators to configure guest sharing for tenants with sensitivity labels. This feature is gradually rolling out to all commercial customers on the Loop web app and iOS/Android clients. The B2B (business to business) guest sharing feature allows organizations to collaborate with external users (like vendors, partners, and clients) by granting them access to specific resources. This feature is used in various platforms like Microsoft Loop, Microsoft Entra, and SharePoint. Previously, B2B guest sharing was only available for Microsoft Loop components, pages, and workspaces for customers who had not configured sensitivity labels within their tenants. With this release, Microsoft Loop will expand the guest-sharing feature to all tenants. However, the app will respect the existing sharing settings configured for Microsoft OneDrive and Microsoft SharePoint. “After this rollout, if admins have configured Microsoft SharePoint for B2B guest sharing, users in your organization will be able to share Loop workspaces, pages, and components with people outside of your tenant. Users can share pages and components with the People you choose option. Guest users cannot create workspaces,” the company explained in a message on the Microsoft 365 admin center. Configuring guest sharing with sensitivity labels in Microsoft Loop To allow guest sharing of Loop workspaces, pages, and components, IT administrators need to configure specific settings by following these steps: Navigate to the Microsoft SharePoint admin center > Policies > Sharing. Set the external sharing settings to either New and existing guests or Existing guests... . --- ### Windows Server 2025 Launches with Hotpatching Support and Active Directory Enhancements - Published: 2024-11-04 - Modified: 2025-01-17 - URL: https://petri.com/windows-server-2025-generally-available/ - Categories: Windows Server - Tags: featured-top-left, News, Windows Server 2025 - Article Type: News Windows Server 2025, which launched in public preview earlier this year, is now generally available for commercial customers. The latest version comes with a set of new features to enhance performance and security, including hotpatching support, expanded Active Directory capabilities, and advanced security configurations. Customers will be able to perform in-place upgrades right back to Windows Server version 2012 R2. Hotpatching In Windows Server 2025, Microsoft has introduced hotpatching support that allows administrators to apply security updates without requiring a reboot. This feature works by patching the in-memory code of running processes and minimizes disruptions to the services. Compared to traditional updates, hotpatches are smaller and quicker to apply as well as make it easier to manage and orchestrate updates across their infrastructure. This feature is available in both the Standard and Datacenter editions of Windows Server 2025. Extra reading on Petri. com: How to enable hotpatching in Windows Server. Hotpatching in Windows Server 2022 Azure Edition (Image Credit: Microsoft) Active Directory enhancements Microsoft has announced some major improvements coming to Active Directory Domain Services (AD DS) and Active Directory Lightweight Domain Services (AD LDS). The company has also increased the database page size from 8k to 32k as well as extended the AD schema with three new Log Database Files (LDF), including sch89. ldf, sch90. ldf, and sch91. ldf. Additionally, Microsoft has added a new feature that lets administrators repair objects with missing core attributes. There are also new domain and forest functional levels to support the 32k database page size and other new... --- ### Microsoft Teams Gets New Chat and Meeting Enhancements - Published: 2024-11-01 - Modified: 2024-11-01 - URL: https://petri.com/microsoft-teams-updates-october-2024/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced a slew of updates added to its Teams collaboration platform in October. These new features are designed to enhance productivity, customization, and cross-platform compatibility for end users. Chat and Meetings features In Microsoft Teams, users will receive a notification in the Activity feed when the AI-powered meeting recap is ready for a meeting. Additionally, Microsoft has added a new setting that allows organizers to control who can admit attendees from the lobby. Organizers and co-organizers can also enable external email automation platforms to manage communication mechanisms in webinars and town halls. Moreover, Microsoft Teams has added voice isolation support to enhance video calls and meetings on Mac devices. Recap notifications in Teams Activity feed (Image Credit: Microsoft) Microsoft Teams' webinars are now generally available for government customers. The latest update also brings new sorting, sorting, archiving, and filtering options to boost engagement in Teams Q&A. In November, Microsoft Teams will get a new feature that will let users combine private chats and channel messages in a single view. A new information pane also lets users get an overview of all of the key details in their 1:1 and group chat. Updates for Microsoft Teams devices Microsoft has released a new feature that lets IT admins configure integration with select digital signage providers in Teams Rooms on Windows. Furthermore, there is a new feature that enables administrators to configure Teams Rooms on Windows to display dynamic content when the device is not being used. This capability is available... --- ### First Ring Daily: Fractional Surface - Published: 2024-11-01 - Modified: 2024-11-01 - URL: https://petri.com/first-ring-daily-fractional-surface/ - Categories: Microsoft - Tags: First Ring Daily, Microsoft, News, Surface - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's FY25 Q1 earnings and why it may not make sense for the company to continue to invest in Surface hardware. --- ### Microsoft Postpones Controversial AI Recall Feature Yet Again - Published: 2024-11-01 - Modified: 2024-11-01 - URL: https://petri.com/microsoft-postpones-recall-feature/ - Categories: Windows 11 - Tags: News, Windows Recall - Article Type: News Microsoft has once again pushed back the release of its controversial Recall feature for Copilot+ PCs. The company has confirmed that Recall will be available for Windows Insiders in December. In May, Microsoft announced the AI-powered Recall feature as an upcoming feature exclusively for the first wave of Copilot+ PCs. It’s designed to periodically capture screenshots of everything users see or do on their computers. Recall saves these images to the disk and uses OCR to create a large, searchable database. Recall Security Architecture (Image Credits: Microsoft) Microsoft enhances Recall with key security features Microsoft originally planned to ship Recall alongside new Copilot+ PCs back in June. However, cybersecurity researchers raised concerns that Recall data was stored without proper encryption on users' computers. In response, Microsoft postponed the release of this feature for Windows Insiders until October. In addition to this, Microsoft announced several security updates for Recall to address privacy concerns. Recall is now an entirely opt-in feature that users can uninstall if desired, and accessing the timeline requires Windows Hello enrollment. Additionally, a "just-in-time" decryption feature has been added to protect snapshots and the search index. Microsoft set to begin testing Windows Recall in December According to The Verge, Microsoft acknowledged that Recall is still not ready and has now set its release for sometime in October. The report also mentions that new bugs emerged after Microsoft postponed the feature’s original summer launch, potentially impacting its functionality within Windows 11. “We are committed to delivering a secure and... --- ### Microsoft Earnings Reveal AI Growth Amidst Concerns Over Cost and Adoption Rates - Published: 2024-10-31 - Modified: 2024-11-01 - URL: https://petri.com/microsoft-earnings-ai-growth/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft announced its earnings for the first fiscal quarter on Wednesday afternoon. The company detailed a 22% revenue surge in its Azure cloud business as the company focuses attention on artificial intelligence. Microsoft is regarded as a leader in artificial intelligence, bolstered by a strategic partnership with OpenAI. This collaboration has allowed Microsoft to incorporate advanced AI technologies into its products and services ahead of many competitors. However, recent reports indicate that adoption of Microsoft’s key AI products, including Microsoft 365 Copilot, has been slower than anticipated. The Copilot AI assistant brings generative AI features to the company’s productivity apps, but it comes with a hefty price tag. This AI-powered feature costs $30 per user per month and requires a Microsoft 365 subscription, such as Microsoft 365 E3, E5, Business Standard, or Business Premium. Microsoft 365 Copilot can be an impressive productivity tool, especially for employees who need help drafting documents and presentations. However, its add-on fee can significantly raise monthly costs for both small businesses and large enterprises. For example, an organization with 500 employees would need to pay an additional $15,000 per month. Will Microsoft’s AI investments deliver the expected returns? Microsoft’s chairman and CEO Satya Nadella stated in the recent earnings call that the company’s AI business is on course to reach a $10 billion annual revenue run rate next quarter. However, investors are concerned that major AI investments may not deliver the anticipated financial returns. Microsoft earnings Q1 (Image Credit: Microsoft) Additionally, Microsoft has received mixed... --- ### Hackers Can Exploit Windows Themes Zero-Day Flaw to Steal User Credentials - Published: 2024-10-31 - Modified: 2024-10-31 - URL: https://petri.com/windows-themes-flaw-user-credentials/ - Categories: Windows - Tags: News, Windows 11 - Article Type: News Cybersecurity experts have discovered a new zero-day flaw in Windows Themes that could enable attackers to steal NTLM authentication hashes. The security firm ACROS Security detailed that this vulnerability affects all supported versions of Windows, including Windows 11. In January, Microsoft patched a similar vulnerability, CVE-2024-21320, which had a CVSS score of 6. 5. However, Akamai researcher Tomer Peled discovered that attackers could still bypass this patch by sending a malicious theme file and tricking the victim into interacting with it. This report led to the discovery of another spoofing vulnerability, CVE-2024-38030, which Microsoft addressed with a patch in July. "When we learned about this second flaw, we had to fix our patches for CVE-2024-21320 as well," Acros Security CEO Mitja Kolsek explained. "While analyzing the issue, our security researchers decided to look around a bit and found an additional instance of the very same problem that was still present on all fully updated Windows versions, up to currently the latest Windows 11 24H2. " https://www. youtube. com/watch? v=dIoU4GAk4eM NTLM relay attack method According to ACROS Security, this new vulnerability is similar to CVE-2024-38030 and could enable hackers to launch authentication coercion attacks. In this type of cyberattack, an attacker deceives a system into sending authentication credentials to a malicious server. A common technique involves NTLM relay attacks, where hackers intercept authentication requests and forward NTLM hashes to their own systems for access. NTLM is a suite of security protocols that provides authentication, integrity, and confidentiality for network users. Windows Themes files let users customize... --- ### Microsoft Introduces YubiKey Smart Card Redirection Support in Windows App on iOS - Published: 2024-10-30 - Modified: 2024-10-30 - URL: https://petri.com/yubikey-smart-card-redirection-windows-app-ios/ - Categories: Windows - Tags: News, Windows - Article Type: News Microsoft has teamed up with YubiKey to introduce smart card redirection support for iOS and iPadOS within the Windows App, now available in public preview. This integration supports the latest YubiKey 5 portfolio, offering enhanced security and convenience for mobile users accessing remote Windows environments. The smart card redirection feature enables a smart card connected to a local device to function within a remote session. This is especially useful for tasks that require remote authentication, such as logging into secure servers or accessing protected applications. “Microsoft and Yubico have partnered to deliver an improved experience for YubiKey and Windows App users. Now customers using Windows App can connect their YubiKey to their Apple iPhone or iPad and use it within the virtual Windows session to stay secure and productive,” Microsoft explained. A pop-up of a smart card sign in (Image Credit: Microsoft) How does smart card redirection work? Microsoft explains that users need a compatible connector to connect the YubiKey to their iOS device. Once a remote session starts through the Windows App on iOS, the YubiKey is redirected to the Windows environment, allowing it to be used for authentication within that session. Microsoft highlighted a couple of benefits of this feature for enterprise customers. It provides a secure method for authentication to ensure that sensitive operations are protected. This feature also enables users to leverage their YubiKey to gain secure access without needing to be physically present at the remote machine. Microsoft notes that this feature requires customers to... --- ### Microsoft to Discontinue Support for Office UWP Apps in 2025 - Published: 2024-10-30 - Modified: 2024-10-30 - URL: https://petri.com/microsoft-discontinue-office-uwp-apps/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced it will discontinue support for its Word, Excel, and PowerPoint UWP applications on October 14, 2025. After this date, the company will no longer offer new features, security patches, and technical support for these apps What are Microsoft Office UWP apps? The Microsoft Office Universal Windows Platform (UWP) apps are designed to offer a streamlined experience for creating, editing, and viewing documents on mobile devices and Windows PCs. These apps function seamlessly across a variety of Windows devices, including PCs and tablets, and integrate with OneDrive and other cloud services. Microsoft Office UWP apps are still supported on Windows 10 PCs. However, the company has shifted its focus toward developing Office apps for iOS and Android, which provide advanced features and cloud services tailored to mobile users' needs. “If Microsoft Windows-based devices within your organization are running Word Mobile, Excel Mobile, or PowerPoint Mobile, we recommend that the applications be removed before the October 14, 2025, end of support date. While they may continue to function, using unsupported software could lead to potential security risks and other issues,” the company explained in a message on the Microsoft 365 admin center. How to prepare for this change? Microsoft advises Intune customers to run a report to identify devices using the Office UWP apps. Administrators can do this by navigating to the Microsoft admin center, then selecting All services > Apps | Monitor > Discovered apps. From there, they can search for "office. word," "office. excel," or "office. powerpoint. " For PC users,... --- ### 5 Key Benefits of Migrating to Azure > Explore the key benefits of migrating to Azure, the processes involved, and the challenges you, as a system or IT administrator may face along the way - Published: 2024-10-30 - Modified: 2024-10-30 - URL: https://petri.com/5-key-benefits-of-migrating-to-azure/ - Categories: Microsoft Azure - Tags: featured-top-right - Article Type: Overview At Petri. com, we are very familiar with the Azure infrastructure and setup and can offer insights and experience to help organizations make the most of this enterprise-grade cloud environment.  As such, we felt it prudent to explore the key benefits of migrating to Azure, the processes involved, and the challenges you, as a system or IT administrator may face along the way. Organizations and institutions worldwide are constantly exploring ways to optimize and strengthen their IT infrastructure. One of the most fervent trends in recent years has been the migration from on-premises systems to cloud environments which offer unparalleled security controls, flexibility and agility, traits which organizations strive to achieve in the wake of digitization. Among the numerous cloud platforms on the market, Microsoft Azure is one of the leading and most recognizable choices, providing IT and system administrators with a plethora of advantages from improved performance to cost optimization. The changing state of IT infrastructure Before exploring the specifics of how to perform an Azure migration, it’s worth taking note of how digital spaces for IT and system administrators are changing. With the advent of new technologies, prolific cyber threats, and recent innovations in search engine AI and software, among a whole host of other advancements, the way we all manage and utilize data is evolving at an unprecedented pace. Digital transformation, particularly post-pandemic, has illustrated the need for scalable and resilient IT solutions.   Not only must organizations adopt a multi-layered approach to the security of their assets, data... --- ### GitHub Copilot Gets New Integrations with Apple's Xcode and Windows Terminal - Published: 2024-10-30 - Modified: 2024-10-30 - URL: https://petri.com/github-copilot-windows-terminal/ - Categories: Developer - Tags: GitHub Copilot, News - Article Type: News Microsoft-owned GitHub announced some major updates coming to its new products at its GitHub Universe conference. The company is bringing the Copilot AI assistant to Apple’s Xcode IDE. With this release, developers will be able to use Copilot to build apps in Apple’s IDE. This AI-powered feature will offer multi-line suggestions and users will be able to block suggestions that match public code. GitHub also plans to add support for Copilot Chat and other capabilities to Xcode in the coming months. “This is a major milestone in our ongoing mission to make Copilot an essential tool for developers across a wide variety of platforms,” GitHub explained. “Now, Apple developers can enjoy the same intelligent coding assistance, seamlessly integrated into their favorite IDE. ” Copilot for XCode (Image Credit: Microsoft) GitHub mentioned that this feature is currently available in public beta for all Copilot customers with individual, business, and enterprise subscriptions. To get started, users will need to install the Copilot extension for Xcode. GitHub Copilot in Windows Terminal Additionally, GitHub Copilot is getting a new integration with Windows Terminal. Developers can now interact with the AI assistant to receive command suggestions and explanations directly from the Windows Terminal. This feature is available in the Windows Terminal Canary for all Copilot customers across individual, business, and enterprise plans, though administrators must enable Copilot access in the CLI at the organization level. Improvements coming to VS Code integration GitHub has introduced major enhancements to its VS Code integration, including Copilot Chat, which allows... --- ### Microsoft Teams to Offer Admins More Control Over Meeting Chat - Published: 2024-10-29 - Modified: 2024-10-29 - URL: https://petri.com/microsoft-teams-control-meeting-chat/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Microsoft Teams will introduce a new setting to give admins more control over meeting chat, allowing them to disable chat before and after meetings. This feature will be available on Microsoft Teams desktop, web, and mobile clients starting in December. Microsoft is expanding the “Meeting chat” control in the Teams admin center with two new options: “In-meeting only for everyone” and “In-meeting only except anonymous users. ” Administrators will be able to access these options by navigating to Teams admin center > Meetings > Meeting policies > Meeting engagement > Meeting chat. According to Microsoft, IT admins will be able to choose from five options in the “Meeting chat” setting. These include On for everyone, On for everyone but anonymous users, Off, In-meeting only for everyone (new), and In-meeting only except anonymous users (new). “Admins can select the In-meeting only options to disable the ability of meeting participants to send messages in the meeting chat before or after the meeting, for meetings organized by specific users in their tenant. When one of the In-meeting only options is selected, participants can read past chat history, but they can only send messages in the meeting chat while the meeting is active,” Microsoft explained. Meeting chat controls (Image Credit: Microsoft) New meeting chat controls arrive for all Microsoft Teams users by early 2025 Microsoft plans to roll out this new feature to targeted release customers in early December. It will become generally available for all commercial customers in January 2025, with government customers to... --- ### Microsoft Intune Suite Adds Advanced Privilege Management and App Management Tools - Published: 2024-10-29 - Modified: 2024-10-29 - URL: https://petri.com/microsoft-intune-suite-management-tools/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has rolled out enhanced Endpoint Privilege Management (EPM) and Enterprise Application Management capabilities for its Intune Suite. These new features are aimed at optimizing security controls while minimizing disruptions in enterprise environments. Microsoft Intune Endpoint Privilege Management is a feature that allows businesses to manage user privileges more effectively. Meanwhile, Enterprise Application Management offers a comprehensive solution for overseeing applications within an organization. Microsoft has introduced automated rule creation for quicker approvals in Endpoint Privilege Management (EPM). This feature enables administrators to create elevation rules directly from support approval requests or entries in the elevation report. It eliminates the need for lengthy manual approval processes. The latest update enables IT administrators to specify allowed command parameters when setting elevation rules in Endpoint Privilege Management. Additionally, the EPM service now integrates with Personal Data Encryption (PDE) for Windows folders. Furthermore, EPM now supports Azure Virtual Desktop single-session environments. This service also includes new integration with Windows attestation, which verifies the integrity of devices before granting elevation. The security feature ensures that only trusted devices can receive temporary elevated privileges. Microsoft Intune Enterprise App Management updates Microsoft has launched a new guided application upgrade feature that allows administrators to deploy updates for applications already installed through the Enterprise App Catalog. This feature utilizes Microsoft Graph to gather information about available app updates, including installation commands, supersedence settings, and detection rules. The Enterprise App Catalog now features over 450 applications, simplifying the management of app environments. Some of these apps support self-updating... --- ### Exchange Online Gets Inbound SMTP DANE with DNSSEC to Boost Protection Against Cyberattacks - Published: 2024-10-29 - Modified: 2024-10-29 - URL: https://petri.com/exchange-online-inbound-smtp-dane-with-dnssec-2/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft has announced the general availability of inbound SMTP DANE with DNSSEC for Exchange Online customers. This feature is designed to strengthen email security by integrating two advanced security standards. Microsoft introduced the public preview of DANE with DNSSEC support for inbound email in June 2024. SMTP DANE (DNS-based Authentication of Named Entities) is a security protocol that uses DNS to verify certificate authenticity, ensuring secure email communication with TLS (Transport Layer Security) and preventing TLS downgrade attacks. On the other hand, DNSSEC (Domain Name System Security Extensions) is a set of DNS extensions that provide cryptographic verification of DNS records. It helps to prevent DNS spoofing and adversary-in-the-middle attacks. What are the benefits of SMTP DANE with DNSSEC? Microsoft emphasized that SMTP DANE with DNSSEC brings valuable security and compliance benefits for Exchange Online customers. It prevents downgrade attacks by ensuring email communication always uses TLS and relies on DNSSEC-backed records to validate server identities. SMTP DANE with DNSSEC allows organizations to ensure that email data is encrypted and the recipient server is authenticated. It also helps demonstrate compliance with industry security standards for email communication. “Inbound SMTP DANE with DNSSEC will continue to be included in enterprise and consumer email offerings at no charge, as part of our efforts to improve email security. Other email providers and domain owners are encouraged to adopt these standards to collectively enhance email security and protect users from malicious actors,” the Exchange team explained. Microsoft has already implemented SMTP DANE with DNSSEC... --- ### 5 Benefits of the Internet Printing Protocol and Its Implementation in Windows - Published: 2024-10-28 - Modified: 2024-10-28 - URL: https://petri.com/internet-printing-protocol/ - Categories: Windows, Windows 10, Windows 11 - Tags: featured-top-right - Article Type: Overview This article delves into the Internet Printing Protocol (IPP) and its implementation in Microsoft Windows. We'll explore what it is, the fundamental concepts, functionality, advancements in Windows 11, and essential troubleshooting techniques. It aims to offer you a comprehensive understanding of IPP. Introduction to Internet Printing Protocol (IPP) Microsoft announced support for the Internet Printing Protocol (IPP) in 2018 in Windows 10. But what is it exactly? What is Internet Printing Protocol (IPP)? The IPP is a robust network printing protocol for communications between client devices (IPP client) and what will be called IPP printers. It uses HTTP to handle printing tasks over local and wide area networks (LAN and WAN respectively). From the print job submission, the encoding used to encapsulate the network data of the print job, the different operating systems used, and printer attributes all have to be taken into account when you click 'Print. ' IPP offers a standardized method for managing print jobs and running queries for printer capabilities. The IPP simplifies the printing process by allowing users to submit print jobs, check the status (print queues) of those jobs, and receive notifications about said jobs. Often you can browse to the printer's URI in your web browser to check the basic status of your printers. Importance of IPP in modern printing environments In today's digital and hybrid landscape, IPP has grown in importance immensely. It provides a secure and seamless method for printing from various devices, including computers, tablets, and even smartphones, regardless of... --- ### Microsoft Teams Unites Chat and Channels in New Slack-Like UI - Published: 2024-10-28 - Modified: 2024-10-28 - URL: https://petri.com/microsoft-teams-chat-and-channels-experience/ - Categories: Microsoft Teams - Tags: featured-top-left, Microsoft 365, News - Article Type: News Microsoft announced today a new chat and channels experience coming to its Teams collaboration platform. The company is also introducing a new @mentions view as well as new filters and controls, and more. Microsoft Teams gets chat and channels in a single view The new chat and channels experience is designed to help customers enhance collaboration and simplify the user experience. A guided onboarding process will help users navigate the new layout and tailor it to their specific needs. Users will also be able to choose to keep the chat messages and channels separate during the onboarding process, with the option to adjust this preference later. “We’ve redesigned the chat and channels experience to simplify your digital workspace by bringing chats, teams, and channels into one place under Chat. This integrates both chat and channels into your critical workflows, making it easier to access, triage and organize your conversations,” said Jeff Teper, President, Collab apps and Platform. Chats and Microsoft Teams channels in a single view (Image Credit: Microsoft) @mentions view In Microsoft Teams, the new @mentions view will offer quick access to all messages where a user is mentioned across chats, channels, and meetings, making it easy to spot and respond to important messages needing their attention. Users will be able to reply to these messages directly on the side pane. @mentions view (Image Credit: Microsoft) Furthermore, Microsoft Teams will add new filters to help users sort and view messages based on criteria like unread messages in chats or... --- ### Microsoft Releases New Optional Update to Fix 8.63 GB Cache Bug in Windows 11 Version 24H2 - Published: 2024-10-25 - Modified: 2024-10-25 - URL: https://petri.com/windows-11-version-24h2-kb5044384-update/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has rolled out the optional preview cumulative update for Windows 11 version 24H2. The KB5044384 patch brings a couple of new features, improvements, and bug fixes for the latest version of Windows 11. The KB5044384 preview update enables users to customize the Copilot key on their keyboard, allowing it to open a different app or Windows Search. To do this, navigate to Settings > Personalization > Text Input. Additionally, users can now block suggestions to disable notifications from specific apps by clicking the ellipses (... ) menu in the notification. Alternatively, notifications can be managed by going to Settings > System > Notifications. Microsoft has also introduced a new Narrator shortcut that allows users to copy what Narrator last spoke to the clipboard by pressing the Narrator key + Ctrl + X. Narrator will also let users auto-read the contents of an email message in the new Outlook for Windows client. This feature was already available in the classic Outlook desktop client. The KB5044384 update also introduces the Windows Sandbox client preview, which comes with several new capabilities. These include runtime clipboard redirection, control over audio and video input, and the ability to share folders with the host during runtime. Users can download this app directly from the Microsoft Store. Microsoft has resolved a bug that prevented users from deleting 8. 63 GB of data associated with “Windows Update Cleanup. ” This data is generated by the new “checkpoint cumulative updates” feature, which allows users to receive feature and security updates in... --- ### First Ring Daily: Qualcomm Strikes Back - Published: 2024-10-25 - Modified: 2024-10-25 - URL: https://petri.com/first-ring-daily-qualcomm-strikes-back/ - Categories: Hardware - Tags: 8-Core Snapdragon X Plus, First Ring Daily, Intel, Lunar Lake, News, Qualcomm - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Qualcomm boasting about the superiority of its Arm-based Snapdragon X chips over Intel's new "Lunar Lake" mobile CPUs designed for Copilot+ PCs. --- ### Microsoft Reports Nearly 400 U.S. Healthcare Facilities Targeted by Ransomware Attacks - Published: 2024-10-25 - Modified: 2024-10-25 - URL: https://petri.com/microsoft-healthcare-facilities-ransomware/ - Categories: Security - Tags: cyberattacks, News - Article Type: News Microsoft has found that nearly 400 U. S. healthcare organizations have fallen victim to ransomware attacks this fiscal year. These campaigns aim to breach sensitive patient data, disrupt vital operations, and put patients’ lives at risk. In a report released earlier this week, Microsoft noted that healthcare organizations face average ransomware payments of up to $4. 4 million, with downtime costs reaching $900,000 per incident. These attacks create a ripple effect by overloading nearby hospitals with displaced patients and straining resources across facilities. “The healthcare sector faces a rapidly increasing range of cybersecurity threats, with ransomware attacks emerging as one of the most significant. A combination of valuable patient data, interconnected medical devices, and small IT/cybersecurity operations staff, which spreads resources thin, can make healthcare organizations prime targets for threat actors,” the Microsoft Threat Intelligence team explained. What is the impact of ransomware attacks on patient care and hospital operations? Microsoft researchers analyzed the impact of ransomware attacks on four hospitals—two affected and two unaffected. They found that patient numbers rose by 15 percent while waiting room times surged by about 50 percent in impacted facilities. Additionally, confirmed strokes spiked by 113 percent, and cardiac arrest cases increased by 81 percent. Microsoft also reported a significant drop in survival rates for out-of-hospital cardiac arrests with favorable neurological outcomes, plummeting from 40 percent before the attack to just 4. 5 percent during it. Moreover, emergency medical services (EMS) arrivals at unaffected hospitals rose by 35. 2 percent. The role of organized hacking groups in healthcare... --- ### Microsoft Teams Launches New Queues App to Enhance Customer Engagement - Published: 2024-10-24 - Modified: 2024-10-25 - URL: https://petri.com/microsoft-teams-queues-app/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has launched its new Queues app for Microsoft Teams, which is designed to help organizations enhance customer engagement. This new solution offers advanced features, including call queue management, real-time metrics, and historical reporting. The Queues app allows authorized users to manage incoming PSTN or VoIP calls and make outgoing calls on behalf of call queues or auto attendants. It also offers real-time metrics, including average wait time, the number of waiting calls, and the longest call waiting time. Users can easily access historical reports for call queues, auto attendants, and agent queue actions. “The intuitive interface and real-time updates of the Queues app, ensure that agents can manage incoming calls, provide assistance, and resolve issues efficiently. Agents and leads can easily opt in and out depending on their availability, and if configured by the administrator, they can view the CRM record for incoming PSTN calls side by side to ensure they have all the context they need to provide a high-quality customer service experience,” Microsoft explained. Microsoft has integrated its Copilot AI assistant into the Queues app via Teams Phone. This AI-powered feature enables agents to automatically capture notes, highlights, and any outstanding issues before transferring calls to their colleagues. However, organizations would need a Microsoft 365 Copilot license. View the call queue (Image Credit: Microsoft Teams) How to use the Queues app for Microsoft Teams To launch the Queues app, Microsoft Teams users should navigate to the left side of the window. Next, click on the View more... --- ### Critical RCE Vulnerability in Microsoft SharePoint Could Lead to Malicious Attacks - Published: 2024-10-24 - Modified: 2024-10-24 - URL: https://petri.com/microsoft-sharepoint-rce-vulnerability/ - Categories: Security, SharePoint - Tags: Microsoft SharePoint, News - Article Type: News The US Cybersecurity and Infrastructure Security Agency (CISA) has disclosed a critical vulnerability in Microsoft SharePoint. This security flaw could enable cybercriminals to remotely inject malicious code into compromised servers. SharePoint Server is an on-premises version of Microsoft SharePoint that is designed for organizations that prefer to manage their own infrastructure. It allows customers to create, share, and manage content, documents, and applications. This service offers advanced security features and compliance tools to help organizations maintain control over their data. CISA has included the deserialization vulnerability, tracked as CVE-2024-38094, in its Known Exploited Vulnerabilities (KEV) Catalog. Microsoft has classified this bug as "important," assigning it a CVSS score of 7. 2 out of 10. This flaw arises when an application deserializes untrusted data without adequate validation. It could potentially result in serious risks such as remote code execution, Denial of Service (DoS), and unauthorized actions. “An authenticated attacker with Site Owner permissions can use the vulnerability to inject arbitrary code and execute this code in the context of SharePoint Server,” Microsoft explained in a security advisory. Proof-of-concept exploit for SharePoint flaw now available Microsoft released the July Patch Tuesday updates to address the security vulnerability in SharePoint. Initially, the company did not categorize this flaw as publicly known or exploited. However, a proof-of-concept (POC) exploit is now available on GitHub, which could increase the risk of exploitation in enterprise environments. Microsoft has not yet provided further details about the scope of the exploitation or the threat actors exploiting this flaw for... --- ### Windows 11 Version 24H2 Offers Faster Updates and Reduced CPU Usage - Published: 2024-10-24 - Modified: 2024-10-24 - URL: https://petri.com/windows-11-version-24h2-update-improvements/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has introduced significant enhancements in Windows 11 version 24H2, drastically speeding up the Windows Update process. This major update is designed to reduce installation and restart times, while also lowering CPU usage during monthly updates. In a recent blog post, Microsoft has outlined several improvements to how Windows manages cumulative updates. One key change is the introduction of parallel processing, which allows Windows devices to handle multiple tasks at once by spreading the workload across different CPU cores. Secondly, Microsoft has optimized the cache to update components to enhance efficiency with future component references. Windows Updates will also now make more efficient use of system RAM to improve performance. Furthermore, Windows 11 version 24H2 enhances the Windows Update stack, which is an important component of the Windows operating system responsible for installing updates. The installation time for monthly Windows updates is now 45 percent faster, with up to 25 percent less CPU usage. Enhanced restart times and smaller update sizes in Windows 11 version 24H2 Compared to Windows 11 version 22H2, the restart time is around 40 percent faster on some systems. Additionally, Microsoft has reduced the download size of large feature updates by approximately 200 MB in version 24H2. “All thanks to the redesign and conditional download of Microsoft-developed apps that you first saw in Windows 11, version 22H2. A subset of these inbox apps includes system apps such as Settings and File Explorer. These system apps are updated today via the Windows monthly update. Other Microsoft inbox... --- ### Windows 11 Version 24H2 Update Causes Blue Screen Crashes on Select Asus Models - Published: 2024-10-23 - Modified: 2024-10-23 - URL: https://petri.com/windows-11-version-24h2-blue-screen-asus-models/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has acknowledged a new issue leading to the Blue Screen of Death on certain Asus devices. The company has placed a safeguard hold that prevents the installation of Windows 11 version 24H2 on the affected computers. On the Windows Health Dashboard, Microsoft explained that users attempting to install the Windows 11 version 24H2 update may encounter error messages and the Blue Screen of Death. This issue is linked to hardware incompatibility and specifically affects certain Asus models, including the X415KA and X515KA. “After attempting to update to Windows 11, version 24H2, some ASUS devices, specifically the X415KA and X515KA models, might encounter an issue where the system is unable to complete the update. During the update process, devices might experience a blue screen with an error message and cannot complete the installation of version 24H2,” Microsoft explained. According to Microsoft, Windows 11 version 24H2 will not automatically appear as a Windows Update on affected Asus systems. Users are also advised against manually updating to the latest version using the media creation tool or the Windows 11 Installation Assistant. Moreover, Microsoft recommends that administrators check safeguard ID: 54157480 in the Windows Update for Business reporting function. Microsoft is collaborating with Asus to resolve hardware compatibility issues with Windows 11 version 24H2. However, it is unclear when the update will be re-released for the affected systems. What are the other issues blocking upgrades to Windows 11 version 24H2? Additionally, several other issues have prompted Microsoft to block the Windows 11 version... --- ### Enhancing Security with Microsoft Entra Token Theft Protection - Published: 2024-10-23 - Modified: 2024-10-21 - URL: https://petri.com/microsoft-entra-token-theft-protection/ - Categories: Microsoft Entra ID (Azure AD) - Article Type: How To This article explores how Microsoft Entra's new token theft protection policy can provide robust protection against token theft. By leveraging a new Conditional Access policy, organizations can safeguard their digital identities and sensitive data from cyberthreats. Securing your IT landscape is increasingly becoming critical. With cyberthreats on the rise, and showing no signs of slowing down, bolstering your security framework and foundation should be a weekly, if not daily message in your ear and for your IT Pros. To keep those baddies out, Microsoft offers a comprehensive suite of technologies - Entra, Defender XDR, Intune, and Windows. A crucial aspect of these tools is their role in token theft protection. A token allows applications to authenticate and authorize your users without them needing to ask for credentials repeatedly. These are becoming a hot target for hackers. In this article, we'll look at the new token binding feature in Microsoft Entra and how it can be used with security features in other Microsoft products to prevent token hijacking. What is token theft? When a user logs in to an online service and uses multifactor authentication (MFA), I imagine they feel safe, knowing only they can access their account. However, after a user opens an email in Outlook on the Web, clicks on a 'not-so-safe' email, then... Token theft, also known as token hijacking, is an attack in which malicious actors gain access to an authentication token used by an online service, like Microsoft 365. Authentication tokens are pieces of information... --- ### Microsoft Authenticator Adds Device-Bound Passkey Support, FIPS Compliance - Published: 2024-10-23 - Modified: 2024-10-23 - URL: https://petri.com/microsoft-authenticator-device-bound-passkey/ - Categories: Security - Tags: Microsoft Authenticator, News - Article Type: News Microsoft has rolled out advanced phishing-resistant capabilities for its Authenticator app. The latest update includes enhancements to the device-bound passkey feature, which has been in public preview since May, offering users a stronger defense against phishing attacks. Microsoft Authenticator's device-bound passkeys improve security by linking each passkey to a specific device. These passkeys use public-private key cryptography to protect users against phishing attacks in enterprise environments. Since the public preview release, some customers have faced difficulties registering their device-bound passkeys. In response, the company has incorporated user feedback to improve the passkey registration experience. “Based on this feedback, we’ve improved the registration flow to provide a more tailored experience to ensure users are successful when registering their passkey. We've also optimized the registration process by initially directing users to sign into the Authenticator app,” Microsoft explained. Passkey in Microsoft Authenticator (Image Credit: Microsoft) Microsoft has introduced attestation support to verify the authenticity of the Authenticator app using Android and iOS APIs. These features, which are currently in public preview, will hit general availability in the coming months. FIDO2 passkey authentication in brokered Microsoft apps on Android Microsoft has also added passkey (FIDO2) authentication support for brokered Microsoft apps on Android. This allows users to log into apps like Microsoft Teams and Outlook using a FIDO2 security key or passkey. However, it requires the installation of either the Authenticator app or the Intune Company Portal app on Android 14+ devices, with support for Android 13 devices coming soon. FIPS compliance for... --- ### Microsoft Adds Copilot AI Assistant to OneNote for Mac and iPad - Published: 2024-10-22 - Modified: 2024-10-22 - URL: https://petri.com/microsoft-copilot-onenote-mac-ipad/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has officially launched the preview of its Copilot AI assistant in OneNote for Mac and iPad. Copilot in OneNote is currently rolling out to commercial customers on the Beta Channel and requires a Microsoft 365 Copilot subscription. Microsoft 365 Copilot launched in public preview back in December 2023. The AI assistant is currently available as an add-on on top of a Microsoft 365 commercial subscription, and it costs $30 per user per month. “With Copilot in OneNote for iPad and Mac, you can handle tasks faster and more efficiently. Copilot is by your side, embedded in OneNote and other Microsoft 365 apps you use every day. It helps you unleash the power of AI to generate higher productivity, more creativity, and leveled-up skills,” Microsoft explained. Copilot in OneNote (Image Credit: Microsoft) How to use Copilot in OneNote for iPad and Mac To try out Copilot in OneNote, Microsoft 365 customers will need to follow the steps mentioned below: Open the OneNote notebook associated with the Microsoft 365 commercial account. Click the Copilot button available on the Home tab to open Copilot on an iPad or Mac device. The Copilot AI assistant can be used to ask questions, summarize meeting notes, rewrite content, generate plans, and more. What are the known limitations? Microsoft is working to address two limitations for the Copilot integration in OneNote for iPad and Mac. Currently, Copilot in OneNote doesn’t support the voice input feature on iPad. Moreover, the AI assistant is unable to analyze all... --- ### North Korean Hackers Exploit Internet Explorer Vulnerability to Deploy RokRAT Malware - Published: 2024-10-22 - Modified: 2024-10-22 - URL: https://petri.com/hackers-internet-explorer-flaw-rokrat-malware/ - Categories: Windows - Tags: News, Windows 11 - Article Type: News Cybersecurity researchers have issued a security advisory about a new supply chain campaign that allowed the North Korea-backed hacking group APT37 to compromise Windows devices this summer. This threat actor exploited a zero-day vulnerability in Internet Explorer to deploy the RokRAT malware, allowing them to exfiltrate sensitive data. Microsoft officially dropped support for Internet Explorer 11 back in June 2022. Most organizations have already transitioned to modern web browsers such as Google Chrome, Microsoft Edge, and Mozilla Firefox. However, some legacy applications still rely on Internet Explorer and might not work in new web browsers. How APT37 leveraged Toast pop-up ads to deliver RokRAT malware According to the AhnLab Security Intelligence Center (ASEC), the hackers exploited a Toast pop-up ad commonly bundled with free software tools. Toasts are pop-up notifications that appear on the screen for a short duration. Specifically, the state-sponsored hacking group targeted a domestic advertisement agency and exploited the CVE-2024-38178 vulnerability to display specially crafted Toast ads on users' computers. Instead of legitimate advertisements, the Toast script started the deployment of the RokRAT malware that allowed hackers to steal data from their victims. “They then injected vulnerability code into the server’s ad content script. This vulnerability is exploited when the ad program downloads and renders the ad content. As a result, a zero-click attack occurred without any interaction from the user,” the AhnLab researchers explained. Call for Best Security Practices AhnLab and the National Cyber Security Centre (NCSC) were the first to discover and report the Internet... --- ### Microsoft Introduces Autoscale, Per-User Pricing for Azure Virtual Desktop on Azure Stack HCI - Published: 2024-10-22 - Modified: 2024-10-22 - URL: https://petri.com/azure-virtual-desktop-on-azure-stack-hci-updates/ - Categories: Virtualization - Tags: Azure Stack HCI, Azure Virtual Desktop, News - Article Type: News Microsoft has introduced a suite of new features for Azure Virtual Desktop on Azure Stack HCI. These enhancements are aimed at simplifying the configuration, management, and optimization of virtual desktop environments. Azure Virtual Desktop for Azure Stack HCI allows customers to deploy and manage virtual desktops on their on-premises infrastructure using Azure Stack HCI. This integration reduces latency and improves performance, especially in areas with poor connectivity to the Azure public cloud. Autoscale for host pools Microsoft has announced the general availability of Autoscale support for Azure Virtual Desktop host pools on Azure Stack HCI. This feature automatically adjusts the number of session hosts based on a set schedule in order to reduce deployment costs. Previously, Autoscale was only available for Azure virtual machines (VMs). Start VM on Connect The Start VM on Connect feature helps cut costs by powering on virtual machines (VMs) only when a user connects. Once the user disconnects, the VM is automatically powered off when it's no longer needed. “For personal host pools, Start VM on Connect only powers on an existing session host VM that is already assigned or can be assigned to a user. For pooled host pools, Start VM on Connect only powers on a session host VM when none are turned on and more VMs are only turned on when the first VM reaches the session limit,” Microsoft explained. Support for Azure Virtual Desktop Insights Microsoft has announced that Windows 11 and Windows 10 Enterprise single-session images are available to download... --- ### Microsoft to Add Multi-Account Support for Add-Ins in New Outlook for Windows - Published: 2024-10-21 - Modified: 2024-10-21 - URL: https://petri.com/new-outlook-for-windows-multi-account-add-ins/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is about to introduce multi-account support for add-ins and apps in its new Outlook for Windows client. This new feature will dynamically adjust the available add-ins based on the selected message or user account. Add-ins are small apps or tools that help users perform tasks directly within Microsoft Outlook without switching to other applications. Users can find add-ins for various purposes, such as project management, CRM integration, email tracking, and more. For instance, add-ins can be used to schedule a meeting with a single click or to track the status of a project. As of today, the new Outlook for Windows app only allows users to access apps and add-ins within their primary email account. However, users can’t access add-ins for secondary accounts. “After this rollout, available add-ins and modules in Outlook will dynamically change to reflect what is available in the context of a selected message or user account,” the company explained in a message on the Microsoft 365 admin center. This new feature removes the requirement for administrators to manually set an account as primary for add-ins to work in the new Outlook for Windows client. Users will retain all their existing features while gaining access to additional add-ins in their non-primary accounts. When will the new multi-account feature be rolled out in the new Outlook for Windows client? Microsoft notes that this feature will begin rolling out to targeted release customers by the end of this month, and will be enabled by default for all commercial... --- ### Latest Microsoft Intune Update Boosts Security and Streamlines Shift Worker Management - Published: 2024-10-21 - Modified: 2024-10-21 - URL: https://petri.com/microsoft-intune-update-october-2024/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has published a roundup of all the new capabilities added to its Microsoft Intune service this month. The first new security feature that the company highlighted today will enable administrators to block certificate spoofing in on-premises environments. Microsoft will add a new Security Identifier (SID) variable in Simple Certificate Enrollment Protocol (SCEP) profiles as part of the SAN value in certificates. A Security Identifier uniquely identifies users, groups, or computer accounts in Windows environments, while the SCEP protocol simplifies the process of enrolling devices for certificates. This new feature is now available for Windows, iOS/iPadOS, and macOS devices, with Android support expected next month. Microsoft advises administrators to thoroughly test the feature before rolling it out widely across their organization. New SID variables in the Subject alternative name field of a SCEP certificate configuration policy (Image Credit: Microsoft) Microsoft Intune adds new "working time" feature The latest Microsoft Intune update allows IT admins to mute notifications and block access to Microsoft Teams for shift workers. However, IT admins will need to ensure that the Working Time API must be integrated within their tenant. Microsoft explains that this new feature helps organizations prevent issues with employees requesting extra pay for using work apps outside of their working hours. It can also be used to restrict access to these apps when employees are off duty. When Microsoft Intune mutes notifications, employees won’t see pop-up windows or notification badges on app icons for new messages. They will need to open the Microsoft... --- ### Active Directory Faces Greater Risks Than Ever in 2024 - Published: 2024-10-21 - Modified: 2024-10-21 - URL: https://petri.com/active-directory-ransomware-report-2024/ - Categories: Active Directory (AD) - Tags: featured-top-left, News, NoAD, NoAds - Article Type: News, Sponsored You are woken by a call at 7am to find out your Active Directory (AD) infrastructure has been hit by ransomware. The helpdesk is overwhelmed by calls from users who can't log in and management is already demanding to know how long it will take to restore. You break into a cold sweat realizing IT has never validated testing of a complete AD forest restore. Thanks to Semperis for sponsoring this article. According to a recent report by Semperis, this scenario isn't that uncommon. The report’s findings show that Active Directory is the most targeted attack surface for ransomware in 2024. In this article, I look at the risks, the complexity of restoring AD, and what you can do to mitigate a ransomware attack. Active Directory is still critical infrastructure in 2024 Active Directory (AD) is one of the most important pieces of IT infrastructure because it is the core identity and access management (IAM) solution for many organizations. Even though the technology is 25 years old and Microsoft encourages organizations to use Entra ID, its modern cloud-based identity management solution, millions of companies across the world still use AD. Unless you have a simple AD architecture, i. e. a couple of domain controllers (DCs) in a single site, it’s widely accepted that relying on Windows Server Backup or generic server backup solutions to recover AD is a bad idea. The AD recovery process is complicated. There are 40 high-level steps that must be completed to ensure that AD functions correctly... --- ### Microsoft Copilot Studio to Let Businesses Build AI Agents for Streamlining Operations Next Month - Published: 2024-10-21 - Modified: 2024-10-21 - URL: https://petri.com/microsoft-copilot-studio-autonomous-agents/ - Categories: Microsoft 365, Microsoft Copilot - Tags: Microsoft 365, News - Article Type: News Earlier this year, Microsoft detailed a new set of features coming to Copilot Studio, designed to help businesses create autonomous agents from the ground up. The company announced today that these advanced capabilities will be available for enterprise customers in public preview next month. “Copilot Studio provides an all-in-one platform for building agents, with managed SaaS infrastructure, AI models, a low-code design interface, and thousands of prebuilt connectors. It integrates personal, business, and analytical data, and enables publishing to Copilot, web, and your apps. These new capabilities allow agents to act independently, initiate events, and automate complex business tasks,” Microsoft explained. How Copilot Studio's autonomous agents will transform enterprise workflow automation Microsoft explains that Copilot agents can be set to trigger automatically based on events from various sources, such as tools, systems, or databases, using an organization’s own data. Users will also have access to detailed logs showing how each agent completes tasks, including key steps, systems involved, and actions taken along the way. Copilot Studio is also adding a new “Activity” tab that provides a comprehensive overview of the agent’s activities. It should help users to track progress, troubleshoot issues, analyze performance trends, and review previous decisions. Autonomous agents (Image Credit: Microsoft) Microsoft emphasized that these autonomous agents use OpenAI o1 and other advanced models to boost their AI and reasoning abilities. To ensure safe and responsible use, the agents come with built-in guardrails and controls, allowing creators to set clear guidelines and permissions. Additionally, enterprise customers will have... --- ### SSD Manufacturers Release Firmware Updates to Fix Windows 11 24H2 BSOD Crashes - Published: 2024-10-18 - Modified: 2024-10-18 - URL: https://petri.com/ssd-manufacturers-fix-bsod-windows-11-24h2/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is currently investigating reports that specific SSD models are triggering Blue Screen of Death (BSOD) crashes on PCs running Windows 11 version 24H2. Western Digital and SanDisk have released new firmware updates to resolve this issue and ensure that affected users can prevent further system failures. According to the reports on the Western Digital community forums, the Windows 11 2024 update (version 24H2) is causing system failures and Blue Screen of Death errors for select users. The issue stems from a problem with the Host Memory Buffer (HMB) affecting certain Western Digital and SanDisk SSD models, including the SanDisk Extreme M. 2, WD Black SN770, WD Black SN770M, WD Blue SN580, and WD Blue SN5000. After updating to Windows 11 version 24H2, users with the affected SSDs experience a Blue Screen of Death (BSOD) displaying the error message "Critical Process Has Died. " The crashes are caused by faulty memory drivers that can’t handle the 200 HMBs used by these SSD models. Microsoft implements upgrade block to prevent Windows 11 24H2 BSOD crashes Fortunately, Western Digital and SanDisk have released new firmware updates to fix the BSOD crash issues on Windows 11 devices. Additionally, Microsoft has implemented a safeguard to block affected users from upgrading to Windows 11 version 24H2 until the latest firmware is installed. Users experiencing crashes are advised to download the latest firmware patches through the SSD manufacturer's download tool or by visiting the official support page. Earlier this month, Microsoft began rolling out Windows 11 version 24H2... --- ### First Ring Daily: Technical Finish - Published: 2024-10-18 - Modified: 2024-10-18 - URL: https://petri.com/first-ring-daily-technical-finish/ - Categories: Windows, Windows 11 - Tags: First Ring Daily, News, Windows 11, Windows on ARM - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the various driver issues that continue to plague Windows on ARM devices. --- ### Microsoft Loses Over Two Weeks of Security Logs for Cloud Services: Implications for Enterprise Customers - Published: 2024-10-18 - Modified: 2024-10-18 - URL: https://petri.com/microsoft-loses-security-logs-cloud-services/ - Categories: Security - Tags: Microsoft Entra, Microsoft Sentinel, News - Article Type: News Microsoft has notified its enterprise customers about a major incident involving the loss of over two weeks' worth of security logs for several of its cloud services. The company confirmed that this bug impacted key Microsoft security products, including Microsoft Entra and Sentinel. Logging involves recording events, activities, and transactions within a system, such as account sign-ins or failed login attempts. These logs are important for enterprise admins to investigate security incidents and analyze system performance. When logs are missing, it becomes difficult for customers to track security breaches, and unauthorized access, or diagnose and resolve performance issues. What happened? Earlier this month, Microsoft notified affected customers that a bug in its internal monitoring agents led to inconsistent log data collection between September 2 and September 19. The company has confirmed that there is no evidence that the issue was caused by a security breach. “A bug in one of Microsoft’s internal monitoring agents resulted in a malfunction in some of the agents when uploading log data to our internal logging platform. This resulted in partially incomplete log data for the affected Microsoft services. This issue did not impact the uptime of any customer-facing services or resources – it only affected the collection of log events. Additionally, this issue is not related to any security compromise,” Microsoft explained. Microsoft first detected the issue on September 5 and implemented a temporary workaround by periodically rebooting the agent or server to restore the log collection process. While this fix improved the completeness... --- ### Windows Admin Center 2410 Preview Brings New VM Features and Customization Options - Published: 2024-10-17 - Modified: 2024-10-17 - URL: https://petri.com/windows-admin-center-2410-preview/ - Categories: Windows Admin Center - Tags: News, Windows Admin Center - Article Type: News Microsoft has announced the public preview of Windows Admin Center version 2410. The latest update introduces a revamped virtual machines tool, an updated installer, bug fixes, and various performance improvements to enhance the server management experience. Windows Admin Center is a browser-based tool that allows administrators to manage their Windows Server environments. It lets IT admins connect their on-premises servers with Azure services. Administrators can also use role-based access control and various authentication options to secure their management environment. Microsoft has upgraded the framework from . Net Core 6 to . Net Core 8, boosting security with stronger cryptographic methods. This update also adds support for HTTP/2 to reduce latency and improve overall performance. Upgrade to . NET Core (Image Credit: Microsoft) In the Windows Admin Center, Microsoft has improved the virtual machine (VM) tool experience to help IT Professionals efficiently perform administrative tasks. The company says that administrators will see a new toggle in the top right corner of the Virtual machines tool that will let them switch between the “detailed” mode and a “light” mode. Virtual machine tool update (Image Credit: Microsoft) Microsoft noted that VM Power operations will now update only the status of the specific virtual machine. The company has also removed the runtime pipeline to boost responsiveness and simplified the default view by reducing the number of columns. In the default mode, administrators will see the names of computers running Windows VMs, along with their operating system versions. Updated Windows Admin Center installer and other new features Furthermore,... --- ### Kerberoasting AD Cyberattacks: A Growing Risk to Enterprises and How to Stop Them - Published: 2024-10-17 - Modified: 2024-10-17 - URL: https://petri.com/kerberoasting-ad-cyberattacks/ - Categories: Active Directory (AD) - Tags: Active Directory, News - Article Type: News Microsoft has recently raised concerns about the increasing threat of a sophisticated attack method known as Kerberoasting. In response, the company has outlined the attack's methodology, associated risks, and key strategies to help organizations defend against these cyber threats. What is Kerberoasting and how does it work? Kerberoasting is a cyberattack technique that compromises the Kerberos authentication protocol used in Active Directory (AD) environments. This type of attack is particularly dangerous because it doesn’t require elevated privileges and can lead to significant security breaches. First seen in 2014 against government agencies and financial institutions, Kerberoasting has since become a tool for hackers across multiple industries. In a Kerberoasting attack, cybercriminals with a valid domain account request service tickets for accounts associated with a Service Principal Name (SPN) in an Active Directory. An SPN is a unique identifier for a service linked to a service account. The attacker extracts the encrypted tickets and uses offline brute-force methods to crack the password hashes and steal the account passwords. This enables them to gain higher privileges, potentially accessing sensitive data or deploying malware within the network. “This type of password theft helps threat actors pose as legitimate service accounts and continue to move vertically and laterally through the network and machines. Kerberoasting typically targets high privilege accounts which can be used for a variety of attacks such as rapidly distributing malicious payloads like ransomware to other end user devices and services within a network,” explained David Weston, Vice President, Enterprise and OS Security... . --- ### Microsoft to End Support for Older Office and Exchange Server Versions Soon — Time to Upgrade! - Published: 2024-10-16 - Modified: 2024-10-16 - URL: https://petri.com/microsoft-older-office-exchange-server-support-ends/ - Categories: Exchange Server, Office - Tags: Microsoft 365, News, Office 2016, Office 2019 - Article Type: News Microsoft has issued a reminder that extended support for Office 2016 and Office 2019 will officially end on October 14, 2025. Following this date, users of these versions will no longer receive security patches, bug fixes, or technical assistance. Microsoft has warned that customers using Office 2016 and Office 2019 may expose themselves to security vulnerabilities and other risks. The company recommends upgrading to Microsoft 365 E3, which includes the Microsoft 365 Apps for enterprise along with core device management, security, and compliance features. Users will gain access to the latest versions of Office desktop applications (like Word, PowerPoint, and Excel), as well as Microsoft 365 Copilot. Organizations that prefer not to transition to the cloud can upgrade to Office LTSC 2024. This version includes select Microsoft 365 Apps and will receive five years of support under the Fixed Lifecycle Policy. “While the applications may continue to function, using unsupported software could lead to potential security risks and other issues. Because migrations can take time, we recommend starting to upgrade any remaining devices your organization has running Office 2016 or Office 2019 to a supported version as soon as possible,” Microsoft explained. Alternate options for Office and Exchange Server 2016/2019 (Image Credit: Microsoft) What happens when Exchange Server 2016 and 2019 reach end of support? In October 2025, Exchange Server 2016 and Exchange Server 2019 will also lose extended support, prompting customers to plan their migrations to Exchange Online. For those who want to remain on-premises, Microsoft will release Exchange... --- ### Microsoft Entra ID Gets New HID Integration to Simplify Passwordless Authentication with Physical Access Cards - Published: 2024-10-16 - Modified: 2024-10-16 - URL: https://petri.com/microsoft-entra-id-hid-integration/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Identity solution provider HID has announced a new integration with Microsoft Entra ID (formerly Azure Active Directory). This new offering allows organizations to use their physical access cards as an additional multifactor authentication (MFA) method to access Entra ID as well as Microsoft 365 apps and services. Microsoft's research has found that implementing multifactor authentication helps organizations reduce the risk of security breaches by more than 99. 2 percent. MFA strengthens security by adding an extra layer of protection, making it much harder for hackers to compromise user accounts. The new HID integration streamlines the transition to passwordless authentication by simplifying MFA deployment in enterprise environments. It allows organizations to customize their MFA solutions while enhancing protection against phishing attacks. “Deploying MFA is one of the most important steps to securing user identities, and the purpose of Microsoft Entra ID External Authentication Method (EAM) is to extend the purpose of Entra ID’s functionality by enabling organizations to use the third-party MFA solution of their choosing to establish quick, simple, and secure MFA,” said Eleanor Falla, Senior Product Manager for Microsoft Security. “HID’s integration offers flexibility through its many authenticator choices and offers the convenience of choosing from existing physical cards to access both facilities and digital resources as an MFA factor. ” What are the benefits of HID's integration with Microsoft Entra ID? This new HID integration promises greater flexibility, convenience, and security for Entra ID customers. It supports a range of authentication methods and physical authenticators. These include hardware OTP tokens,... --- ### Microsoft to Introduce Third-Party Passkey Support in Windows 11 for Seamless Passwordless Authentication - Published: 2024-10-16 - Modified: 2024-10-17 - URL: https://petri.com/microsoft-third-party-passkey-windows-11/ - Categories: Windows 11 - Tags: featured-top-left, News, Windows 11 - Article Type: News Microsoft has announced that it’s expanding support for passkeys in Windows 11. The company has updated the Windows 11 API to support third-party passkey authentication services, including 1Password and Bitwarden. Passkeys are a modern authentication method designed to replace traditional passwords with a more secure alternative. They use cryptographic keys stored securely on a user’s device for authentication. Customers can use passkeys with biometric authentication (such as face recognition or fingerprint) or a device PIN. Passkeys are resistant to phishing attacks and data breaches because private keys can’t be intercepted or stolen. Microsoft has outlined several improvements to enhance passwordless authentication in Windows 11, including support for third-party passkeys. This new feature will allow users to authenticate on their PCs using the same passkey they created on their mobile devices. Enhanced Windows Hello passkey experience coming to Windows Hello PCs Additionally, Microsoft has redesigned the Windows Hello experience, making it simpler for Windows 11 users to create, save, and manage passkeys. When visiting a website that supports passkeys, users will be prompted to easily set one up using their Microsoft account and Windows Hello. “As a user, you can navigate to a website that supports passkeys and get prompted to select how you want to save your passkeys. You will be asked to complete a one-time setup with your Microsoft account, and you will be prompted to save a recovery key that will be used to verify your identity and protect your passkeys through end-to-end encryption,” Microsoft explained. Windows 11... --- ### Microsoft Teams to Open Edge Links on Mac Devices Without Reauthentication - Published: 2024-10-15 - Modified: 2024-10-15 - URL: https://petri.com/microsoft-teams-edge-links-mac-devices/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft will roll out a new update that will enable macOS users to open Edge links directly within the Microsoft Teams desktop app this month. This feature will require admins to designate Microsoft Edge as the default browser for Teams through policy configuration. Currently, Microsoft Teams users must reauthenticate links in their web browser, which requires verifying their identity by entering a password or using two-factor authentication. This additional step can be time-consuming and inconvenient for end users. “When you set the default browser to Microsoft Edge on MacOS and enable the feature, web links from the Teams desktop app sent via chats, channels, calendar, and other entry points will seamlessly open automatically in the profile that is signed into Teams app and skips the need to reauthenticate in the browser making it faster and easier to access content,” the company explained on the Microsoft 365 roadmap. Microsoft says this new feature will be enabled by default with the "System default browser" setting. This means that when users click on a link in Microsoft Teams, it will automatically open in the default web browser on their Mac devices. How to set up the new feature in Microsoft Teams? However, IT admins will be able to control the availability of this feature by configuring the "Choose Which Browser Opens Web Links" policy in the Microsoft 365 Apps admin center. Users will be able to update the browser settings by navigating to the app’s Settings > Files and links > Links open... --- ### How to Check FSMO Roles in Active Directory > Learn how to check FSMO roles in Active Directory (AD) to determine which domain controllers hold each role. - Published: 2024-10-15 - Modified: 2024-10-16 - URL: https://petri.com/check-fsmo-roles/ - Categories: Active Directory (AD) - Article Type: How To In this article, I'm going to show you how to check which domain controllers (DC) hold the FSMO roles in Active Directory (AD). FSMO roles are assigned to specific domain controllers and are designed to prevent conflicts once data is replicated. You can also quickly transfer FSMO and seize FSMO roles using PowerShell. How to check FSMO roles in Active Directory There are three main locations to verify (and change) what FMSO roles are assigned to what domain controllers: Netdom command-line tool (quickest) PowerShell Active Directory GUI tools NTDSUtil Quickly check the FSMO roles using Netdom If you want the quickest, easiest method to check which DCs hold your FSMO roles, you can run netdom from a command line. netdom query fsmo Using the simple netdom command-line tool to get all at FSMO roles at once (Image Credit: Michael Reinders/Petri. com) How to check FSMO roles in PowerShell This is much easier and quicker. There are only a handful of commands in PowerShell to run and glean the same information we just spent about 10 minutes doing. Let's get started. First, type the following at the PowerShell prompt to get the 'Schema Master' and 'Domain Naming Master' roles. Get-ADForest | fl SchemaMaster,DomainNamingMaster Using PowerShell to get the two forest FSMO Roles (Image Credit: Michael Reinders/Petri. com) Next, run this similar command to get the remaining three roles. Get-ADDomain | fl RIDMaster,PDCEmulator,InfrastructureMaster Using PowerShell to get the three domain FSMO Roles (Image Credit: Michael Reinders/Petri. com) That is it! You could easily write... --- ### Microsoft to Phase Out PPTP and L2TP Protocols to Boost VPN Security in Windows Server - Published: 2024-10-15 - Modified: 2024-10-15 - URL: https://petri.com/microsoft-deprecate-pptp-l2tp-protocols-windows-server/ - Categories: Windows Server - Tags: News, Windows Server - Article Type: News Microsoft is phasing out the legacy PPTP and L2TP VPN protocols in future Windows Server versions. The company is encouraging users to transition to more robust alternatives like SSTP and IKEv2, which offer stronger encryption and improved reliability. PPTP is an older Virtual Private Network (VPN) protocol that creates a secure tunnel for data transmission between a client and server over the internet. This protocol offers faster connection speeds since it uses lower encryption standards. On the other hand, L2TP is a more modern protocol that creates a tunnel for data transmission. Unlike PPTP, L2TP doesn’t offer built-in encryption, and it’s often used with IPsec (Internet Protocol Security) to ensure data integrity, confidentiality, and authentication. Why is Microsoft deprecating PPTP and L2TP? In a detailed blog post, Microsoft explained that it’s deprecating PPTP and L2TP in future Windows Server versions to enhance security and performance. PPTP is considered obsolete due to its known vulnerabilities and weak encryption. Meanwhile, L2TP lacks built-in encryption or authentication mechanisms. Moreover, configuring L2TP/IPsec can be challenging, and misconfigurations can lead to security vulnerabilities. The L2TP protocol often encounters issues with Network Address Translation (NAT) traversal, which might require additional configuration to ensure secure connections through firewalls. “PPTP and L2TP have been reliable workhorses in the world of VPN technology. However, with the increasing sophistication of cyber threats, these protocols have become less effective in providing the robust security necessary to protect our data. Their vulnerabilities have been well-documented, and they are no longer sufficient to... --- ### Understanding the 5 FSMO Roles in Active Directory - Published: 2024-10-15 - Modified: 2024-10-16 - URL: https://petri.com/understanding-fsmo-roles-active-directory/ - Categories: Active Directory (AD) - Article Type: Overview FSMO roles are a crucial piece in Active Directory functionality. Learn about their purpose, types, and how they work together in this guide. Windows Server Active Directory multi-master model A multi-master enabled database, such as Active Directory, provides the flexibility of allowing changes to occur at any domain controller (DC) in the enterprise, but it also introduces the possibility of conflicts that can potentially lead to problems once the data is replicated to the rest of the enterprise. One way Active Directory deals with conflicting updates is by having a conflict resolution algorithm handle discrepancies in values by resolving to the DC to which changes were written last (that is, "the last writer wins"), while discarding the changes in all other DCs. Although this resolution method may be acceptable in some cases, there are times when conflicts are just too difficult to resolve using the "last writer wins" approach. In such cases, it is best to prevent the conflict from occurring rather than to try to resolve it after the fact. For certain types of changes, Active Directory incorporates methods to prevent conflicting updates from occurring using a single-master model. Windows Server Active Directory single-master model To prevent conflicts, Active Directory performs updates to certain objects in a single-master fashion. In a single-master model, only one DC in the entire directory is allowed to process updates. This is similar to the role given to a primary domain controller (PDC) in earlier versions of Windows (such as Microsoft Windows NT 4. 0), in... --- ### New Tool Simplifies Large-Scale OneDrive to Google Drive Migrations - Published: 2024-10-14 - Modified: 2024-10-14 - URL: https://petri.com/onedrive-google-drive-migrations/ - Categories: Microsoft 365 - Tags: Google Workspace, News, OneDrive - Article Type: News Google has launched a new file migration service in open beta, designed to simplify data transfers for its Workspace customers. This feature enables administrators to seamlessly migrate files from Microsoft OneDrive to Google Drive, supporting up to 100 users simultaneously. This new file migration service enables administrators to move all data (including files and folders) from OneDrive to Google Drive. It can also transfer the permissions associated with these files and folders to ensure that users retain their access rights. “Data migrations play a critical role in ensuring a seamless transition between various tools and Google Workspace for both admins and end users. Workspace now offers a first party solution that allows our customers to migrate their data at scale, and without the need for third-party workarounds or on-premises infrastructure,” Google explained. A completed migration (Image Credit: Google) According to Google, this file migration tool will help organizations streamline the migration process by cutting down onboarding time for Workspace customers. It also aims to minimize disruptions for end users within the organization. How to migrate files from Microsoft OneDrive to Google Drive Google noted that OneDrive migration doesn’t require a sign-up and can be performed by enterprise admins by following the steps mentioned below: Navigate to the Google Admin console and connect to the OneDrive account. Next, identify the email addresses of OneDrive users in order to set the migration scope. Lastly, create and upload an identity map to connect users on the source to those on the target accounts... . --- ### What Is Windows 11 Personal Data Encryption (PDE)? - Published: 2024-10-14 - Modified: 2024-10-14 - URL: https://petri.com/windows-11-personal-data-encryption-pde/ - Categories: Windows 11 - Tags: featured-top-right - Article Type: How To Personal Data Encryption (PDE) protects sensitive information from unauthorized access. Microsoft introduced the feature with Windows 11, version 22H2, but it hasn't received a lot of fanfare. This article explains PDE, how it works, and why it might be needed in addition to BitLocker. What is Personal Data Encryption (PDE)? Personal Data Encryption (PDE) is a feature Microsoft released with Windows 11, version 22H2, that is complementary to BitLocker Encryption. PDE provides file-based data encryption functions in Windows. It utilizes Windows Hello for Business for authentication purposes to encrypt keys to user credentials. PDE is enabled by default on eligible Windows 11 devices, encrypting data like photos, documents, and emails. PDE uses AES-CBC with a 256-bit key to protect content with two levels of protection. Personal Data Encryption offers easy-to-configure options in Microsoft Intune to safeguard your sensitive personal data from unauthorized access, including administrators. Even if an administrator 'administratively' accesses a device, they will be unable to access these specific files and folders in the user's profile. This is one of the strongest reasons to deploy PDE in your organization. By leveraging advanced encryption techniques and the device's Trusted Platform Module (TPM), it allows your users to keep documents, photos, and pictures encrypted, even if your device falls into the wrong hands. This not only protects your privacy but also helps you comply with data protection regulations. Windows 11 Personal Data Encryption prerequisites There are a few prerequisites you need to be aware of regarding PDE. Windows 11,... --- ### Microsoft to Enhance Security with New Defender Application Control for Business in Windows Server 2025 - Published: 2024-10-14 - Modified: 2024-10-14 - URL: https://petri.com/windows-server-2025-defender-application-control-for-business/ - Categories: Windows Server - Tags: News, Windows Server 2025 - Article Type: News Microsoft is planning to add support for Windows Defender Application Control for Business in Windows Server 2025. This security feature enables administrators to create a list of trusted applications and drivers that are allowed to run on devices within the organization. Microsoft has provided a set of default security policies for Windows Server 2025 that can be applied using PowerShell commands through the OSconfig platform. The Application Control feature operates in two modes: Audit mode and Enforcement mode. In Audit mode, the system permits untrusted or potentially harmful files to run without blocking them but keeps a detailed log of these events for administrators to assess the impact of stricter policies. In contrast, Enforcement mode actively blocks any untrusted or unauthorized files from running and records all blocked attempts for further review. In Windows Server 2025, Microsoft is focusing on improving the deployment and management of Application Control policies. This update should also help facilitate the transition from Audit mode to Enforcement mode through local tooling and PowerShell experience. “There will be no Application Control policy in audit mode which will be enabled by default in WS 2025. The only way to add Application Control for business is via OSconfig tool. Base policies are integrated in OSconfig (unsigned). Using these policies, users will be able to add supplemental policies to existing base policies (to customize the default base policy,” Microsoft explained. Getting started with Windows Defender Application Control for Business (WDAC) Currently, the Windows Defender Application Control is available to... --- ### Microsoft Teams to Get New Calendar Experience with Advanced Scheduling and Collaboration Tools - Published: 2024-10-11 - Modified: 2024-10-11 - URL: https://petri.com/microsoft-teams-new-calendar-experience/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is about to add a new calendar experience to its Teams desktop app, offering users the chance to opt-in starting this November. The new calendar will feature advanced tools for scheduling, meeting creation, and multitasking. “The new calendar in Teams combines rich productivity features and the latest innovations like Microsoft Copilot, to help users more seamlessly manage their schedules, prepare for and recap meetings, and even identify optimal days for in-office collaboration. The new calendar in Teams is designed to be familiar and reliable, as it’s one unified calendar that works across new Outlook for Windows, Outlook on the web, Microsoft Places, and now Microsoft Teams,” the company explained on the Microsoft 365 roadmap. A "New calendar" toggle at the top right of the Teams calendar app will allow users to switch between the existing and new calendar experience easily. The new command bar will offer quick access to features like filters, month and split views, customizable time scales, printing options, sharing tools, and personalized calendar settings. Microsoft Teams' new calendar experience offers enhanced meeting creation options The new calendar experience will allow users to quickly create meetings using the calendar's quick view or the updated scheduling form. Additionally, users will get easier access to meeting recaps and other artifacts directly from the calendar. With the new Microsoft Places integration, teams will also be able to better coordinate their in-office schedules. With Places Finder, users will be able to switch between floors and view different room capabilities such as... --- ### Microsoft to Let Users Launch New Outlook for Windows Without Internet Access - Published: 2024-10-10 - Modified: 2024-10-10 - URL: https://petri.com/microsoft-open-restart-new-outlook-for-windows-internet/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has started rolling out an update that adds Offline support to its new Outlook for Windows client. This new feature allows users to open and restart the app without requiring an internet connection. Microsoft originally introduced offline mode for its new Outlook for Windows application in June 2024. When this feature is enabled, the new Outlook client stores copies of users' emails, calendar events, and contacts on their devices. With Offline access, users can read, manage, and view Outlook items, as well as perform various actions such as archiving, categorizing, deleting, and pinning emails. They can also view and update their settings, including automatic replies, categories, email accounts, and contact lists. Until now, an active internet connection was necessary to open or restart the app, but this requirement is about to change. “Previously, you needed a connection to the internet to open or restart the new Outlook. Offline access is only supported when the app is already running and then goes offline. Opening and restarting the app while offline will be introduced with this rollout,” the company explained on the Microsoft 365 admin center. Admin controls for offline access in the new Outlook for Windows client The new offline capability for the new Outlook for Windows client will be generally available to commercial customers by late November. This feature will be enabled by default, but enterprise administrators can disable offline access by setting the Exchange PowerShell Set-OwaMailboxPolicy cmdlet parameter OfflineEnabledWin to "False. " Microsoft announced the general availability of its... --- ### Microsoft Highlights Surge in Cyberattacks Targeting Educational Institutions - Published: 2024-10-10 - Modified: 2024-10-10 - URL: https://petri.com/microsoft-cyberattacks-educational-institutions/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Microsoft's latest edition of the Cyber Signals report sheds light on the escalating cybersecurity threats facing educational institutions. It delves into the tactics, origins, and capabilities of cybercriminals targeting the sector while offering practical recommendations to help organizations strengthen their security defenses. According to Microsoft, this report draws on telemetry data from Defender for Office 365 and 78 trillion daily security signals collected across various platforms. The company found that educational institutions are now hit with over 2,500 cyberattack attempts per week, with most of these attacks occurring in the second quarter of 2024. QR Codes: A disguised vulnerability for phishing cyberattacks Microsoft mentioned that educational institutions face a variety of security threats such as Internet of Things vulnerabilities, phishing campaigns, and nation-based attacks. It indicates that cybercriminals exploit Office 365 to send 15,000 malicious QR code messages daily to the education sector. “Legitimate software tools can be used to quickly generate QR codes with embedded links to be sent in email or posted physically as part of an attack. And those images are hard for traditional email security solutions to scan, making it even more important for faculty and students to use devices and browsers with modern web defenses,” the Microsoft Threat Intelligence team explained. Microsoft incident response engagements (Image Credit: Microsoft) Hackers have specifically targeted higher education institutions, such as universities and colleges, to steal intellectual property and access scientific research. Microsoft pointed out that universities often develop AI projects for government agencies, defense departments, and private companies,... --- ### Microsoft Entra Introduces MFA Requirements and New Security Features - Published: 2024-10-09 - Modified: 2024-12-02 - URL: https://petri.com/microsoft-entra-mfa-security-features/ - Categories: Identity Management - Tags: Microsoft Entra, News - Article Type: News Microsoft has provided a detailed overview of the latest features and capabilities for Entra customers, focusing on improvements in security, identity modernization, and more. These updates aim to streamline operations while strengthening protection and adaptability for organizations. Security improvements In June, Microsoft announced that it would require multifactor authentication (MFA) for all Azure sign-ins beginning in October this year. The company plans to roll out this change in two phases. Starting on October 15, customers will be required to implement MFA to sign into the Entra admin center, Azure portal, and Intune admin center. Related article: 4 Steps to Secure Microsoft Entra ID In early 2025, Microsoft will extend gradual enforcement of MFA to include the Azure CLI, Azure PowerShell, Azure mobile app, and Infrastructure as Code (IaC) tools. Administrators will receive a 60-day advance notice with options to extend time for organizations that meet specific requirements. “We understand that some customers may need additional time to prepare for this MFA requirement. Therefore, Microsoft will allow extended time for customers with complex environments or technical barriers. The notification from us will also include details about how customers can postpone the start date of enforcement for their tenants, the duration of the postponement, and a link to apply,” Microsoft explained. Earlier this year, Microsoft announced plans to phase out keychain-backed device identity for Apple devices in Entra ID environments by June 2026. Now, Microsoft has informed customers that starting in June 2025, all newly registered Apple devices must use hardware-bound cryptographic secrets supported... --- ### Active Directory Password Policy - The Complete Guide > Requiring complex passwords in your Active Directory password policy increases the effectiveness of passwords exponentially. - Published: 2024-10-09 - Modified: 2024-10-09 - URL: https://petri.com/active-directory-password-policy/ - Categories: Active Directory (AD), Identity Management - Article Type: How To A simple (non-complex) Active Directory password (AD) is vulnerable to hacking and exploitation. Requiring complex passwords in your Active Directory password policy increases the effectiveness of passwords exponentially - each additional special character you require in your users' passwords makes them ultimately impervious to brute-force attacks. Going back to the 2000s, Excel's simple workbook-protected passwords could be brute-forced in the time it takes to click 'Go'. Even today, hackers with standard equipment can brute force a complex, 7-character password in 7 seconds. But, how about adding 4 characters to it... 3 years! A 15-character complex password - 77 million years! Please read this carefully and dutifully to protect your organization's assets. What is the default password policy in Active Directory? When you install the first domain controller (DC) in a domain (not necessarily in a forest), a 'Default Domain Policy' Group Policy Object (GPO) is created. Within this policy lies the default domain password policy for 'all' accounts in that domain (there are some minor exceptions). This constitutes the password requirements for your users. Here are the six settings and what their default attributes are. I'll explain each setting later on in this article. Enforce password history - The default is 24. Minimum password age - The default for this is one day. Maximum password age - The default for this setting is 42 days. Minimum password length - The default is 7. Complexity requirements - The default value is Enabled. Store passwords using reversible encryption - The default for this is Disabled. In Active Directory,... --- ### Microsoft Release October 2024 Patch Tuesday Updates for Windows 11 and Windows 10 - Published: 2024-10-09 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-october-2024-patch-tuesday-updates/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft released yesterday the October 2024 Patch Tuesday updates for Windows 11 and Windows 10. This month, the company released 117 patches to fix vulnerabilities in Windows, Office, and other components. Microsoft is reminding customers that several versions of Windows 11 have reached the end of support this month. These include Windows 11 version 22H2 for Home and Pro editions, as well as version 21H2 for Enterprise, Education, and IoT Enterprise editions. PCs running these versions will no longer receive security updates or bug fixes, and users should upgrade to Windows 11 versions 23H2 or 24H2 to protect against security threats. 117 vulnerabilities fixed in the October 2024 Patch Tuesday updates In October, Microsoft addressed fixed a total of 117 vulnerabilities. Three of them are rated critical and there are also two security flaws that are actively being exploited in the wild. Here’s the full list of CVEs released by Microsoft with the October 2024 Patch Tuesday updates: CVE-2024-43573: This is a zero-day Windows MSHTML platform spoofing vulnerability with a CVSS rating of 6. 5. MSHTML is the rendering engine that powers applications such as Internet Explorer. This security flaw affects all versions of Windows except Windows Server 2008, Windows Server 2008 R2 and Windows Server 2012. CVE-2024-43572: This is a critical vulnerability that affects the Microsoft Management Console. It could allow an unauthorized hacker to run code on a machine with untrusted Microsoft Saved Console (MSC) files. However, it would require an attacker to convince the victim to install the... --- ### Microsoft OneDrive Gets AI-Powered Search, New Copilot Features, Revamped Mobile App - Published: 2024-10-08 - Modified: 2024-10-08 - URL: https://petri.com/microsoft-onedrive-updates/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, OneDrive - Article Type: News Microsoft announced a host of new features for its OneDrive cloud storage service today, aimed at improving functionality across multiple platforms. Key updates include an improved search experience, enhancements to Copilot in OneDrive, a redesigned mobile app, and a more intuitive photos experience. First off, Microsoft OneDrive is getting an enhanced search experience to help users quickly find important files. Microsoft has already started rolling out this feature and it will become generally available for commercial customers later this year. “Our improved search experience is a game-changer. With new filter controls and more detailed results, find the exact file or folder faster and easier—whether it’s stored in your OneDrive, a shared library, or a folder from a teammate,” said Jason Moore, VP of Product for OneDrive. Microsoft OneDrive is also bringing support for colored folders to Windows File Explorer. In mid-2025, the company plans to release major updates to the document library experience that should help to improve the overall performance and reliability. Microsoft has also added a new Offline mode that allows users to view, edit, and organize their files without an Internet connection. Colored Folders in Windows File Explorer (Image Credit: Microsoft) Microsoft launches an updated OneDrive mobile app Microsoft has launched a refreshed OneDrive mobile app, which allows users to import photos, videos, and documents from Google Drive, Google Photos, and Dropbox. There is also a new AI-powered search experience to help users quickly find specific photos. Microsoft has begun rolling out the new OneDrive mobile experience... --- ### Microsoft to Fix Word Bug Causing Unexpected File Deletions - Published: 2024-10-08 - Modified: 2024-10-08 - URL: https://petri.com/microsoft-fix-word-bug-file-deletions/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is working to fix a new bug that unexpectedly deletes Word files when users attempt to save them. This bug is currently affecting all users running Word for Microsoft 365 version 2409. Microsoft officially acknowledged the issue in a support document published on October 3. The company mentioned that the deletion bug occurs when users save a Word document with a capitalized file extension. It can also be triggered by including a '#' character in the file name. “Users may encounter an issue in version 2409 where their file is deleted after save if the title contains a capitalized file extension (. DOCX, . RTF) or #. The issue occurs after making an edit to the file and saving when prompted after trying to close Word,” Microsoft explained. Workarounds for the Microsoft Word file deletion bug Fortunately, deleted files are not permanently lost; instead, Microsoft Word moves them to the Recycle Bin. The Word team is actively investigating the issue, and a fix is expected in a future update. In the meantime, Microsoft advises users to manually save all Word documents before closing the app to avoid encountering the bug. Alternatively, Microsoft Word users can navigate to the File menu, select Options, and then click on the Save tab. From there, users should enable the option labeled “Don’t show the Backstage when opening or saving files with keyboard shortcuts. ” Finally, Microsoft advises that users can temporarily resolve this issue by reverting to a previous version until a fix is released. To... --- ### Microsoft Places App to Launch with New Core and Premium Plans Next Month - Published: 2024-10-08 - Modified: 2024-10-08 - URL: https://petri.com/microsoft-places-core-premium-plans/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft’s new AI-powered Places app, which was released in preview earlier this year, is set for its official launch next month. The company has announced on the Microsoft 365 admin center that this app will become generally available with core and premium service plans. Microsoft Places lets users set their office hours and locations while coordinating schedules with coworkers. With the dedicated Location Plan feature, employees can share when they are in the office and see their colleagues' availability. Managers can assign priority days, and all this information is automatically synced with Outlook calendars. Key features of the Microsoft Places core and enhanced plans Microsoft will introduce two new service plans for its Places app: Core and Premium. The Core plan will offer all the essential features needed for customers to manage and utilize workspaces efficiently. “As an existing customer, you will see an additional service plan as part of your Office 365 subscription: Places core. This service plan includes all core features such as setting up and updating location plans, viewing collaborators’ location plans, accessing peek card experiences, scheduling in person meetings, managing hybrid RSVP, and workplace presence related capabilities,” Microsoft explained. Microsoft Places location plan (Image Credit: Microsoft) The Places Enhanced plan offers all the features of the core plan as well as additional premium capabilities. Microsoft Teams Premium customers will be able to access enhanced features such as intelligent booking, Places Finder, Places Explorer, Places Space Analytics, and auto-release policies. Licensing Microsoft will integrate the new service... --- ### Microsoft to Invest €4.3 Billion in Italy to Boost AI and Cloud Infrastructure - Published: 2024-10-07 - Modified: 2024-10-07 - URL: https://petri.com/microsoft-invest-e4-3-billion-italy/ - Categories: Artificial Intelligence - Tags: artificial intelligence, cloud computing, News - Article Type: News Microsoft has announced plans to invest approximately €4. 3 billion in Italy over the next two years. This strategic move aims to significantly expand the hyperscale cloud and AI data center infrastructure. In a press release, Microsoft emphasized that this is its largest-ever investment in Italy. The deal will establish Italy North as one of the biggest data center regions in Europe, helping local businesses comply with European data regulations. It will also solidify Microsoft's presence in the region, positioning Italy as a key hub for its cloud and AI services. “This landmark investment underscores our long-standing commitment to Italy’s digital transformation,” said Brad Smith, Vice Chair and President of Microsoft. “By expanding access to our AI technology and expertise, we are equipping the Italian government, businesses, and the broader workforce with the tools to build an AI-driven economy that creates jobs and drives prosperity. ” Microsoft launches initiative to train 1 million Italians in Digital and AI Skills by 2025 In Italy, Microsoft plans to launch new training programs to boost digital skills by the end of 2025. The company will collaborate with certified training providers, government bodies, industry partners, non-profits, universities, and associations to offer skilling programs for both students and professionals. According to Microsoft, this initiative aims to train more than 1 million people in Italy. It will focus on AI-driven business transformation, technical AI skills, AI fluency, as well as the promotion of safe and responsible AI development. In the past year, over 320 companies have joined Microsoft’s... --- ### Azure Migrate Now Supports VMware to Azure Stack HCI Migration - Published: 2024-10-07 - Modified: 2024-10-30 - URL: https://petri.com/azure-migrate-vmware-azure-stack-hci/ - Categories: Azure Stack HCI - Tags: Azure Stack HCI, News - Article Type: News Microsoft has announced the public preview of a new Azure Migrate feature designed to facilitate the migration of on-premises VMware virtual machines (VMs) to Azure Stack HCI. This solution aims to streamline the transition process while offering organizations enhanced performance, scalability, and robust security. Azure Migrate is a service that enables organizations to move their on-premises workloads to the Azure cloud. It offers a unified platform to help administrators discover, assess, and migrate servers, databases, applications, and data. Azure Stack HCI is a hybrid cloud solution that integrates compute, storage, and networking into a single solution. This service supports running Windows and Linux virtual machines (VMs) and containerized workloads. It offers seamless integration with Azure Backup, Azure Site Recovery, and Azure Security Center. “The core of this release lies within the integration of Azure Migrate with our adaptive cloud framework, facilitating a smooth transition of Virtual machines from VMware to Azure Stack HCI. Azure Migrate is a proven solution used by numerous organizations to move on-premises workloads to Azure, and now, it extends its capabilities to support Azure Stack HCI as well,” Microsoft explained. The migration process to on-premises Azure Stack HCI cluster (Image Credit: Microsoft) Benefits of using Azure Migrate for VMware to Azure Stack HCI migration With Azure Migrate, IT administrators can complete the migration process without the need to install and manage agents on each virtual machine (VM). This feature also enables customers to reconfigure workload properties (such as RAM and CPU) during the migration. Moreover, Azure... --- ### Assess Your Organization’s AD Management Effectiveness - Published: 2024-10-07 - Modified: 2024-10-07 - URL: https://petri.com/ad-management-survey-2024/ - Categories: Active Directory (AD) - Tags: featured-top-left, NoAD, NoAds - Article Type: Overview Are you responsible for managing Active Directory (AD) within your organization? Whether you’re an IT professional, security specialist, or part of an infrastructure team, understanding AD resiliency and best practices is crucial. Active Directory is still the most widely used Identity and Access Management (IAM) solution on the market. And for the first time in years, Microsoft is bringing new features and security improvements to AD in Windows Server 2025. However, organizations encounter a dual challenge: the persistent skills shortage and knowledge gap that hinder effective AD management and security efforts. To address this, our recently launched AD management survey aims to identify and understand the most pressing management challenges faced by organizations in their AD environments. If you complete the survey in its entirety, we will share the results with you. This will allow you to assess how your organization compares to others. Based on previous survey data, these results can provide valuable insights into the broader industry landscape and identify areas where your organization might be falling behind. Additionally, the data can help highlight any gaps in your Active Directory (AD) management strategy that could be impacting productivity and return on investment (ROI). Take the Active Directory management survey 🔗 Participate in the survey By participating in this confidential industry survey, you’ll help benchmark your organization’s AD management practices against your peers and like organizations. Here’s what you can expect: Insightful Results: Discover how your AD resiliency compares to similar organizations. Best Practices: Share your experiences and learn... --- ### Microsoft OneDrive Enhances Search Experience with New Filters and Other Capabilities - Published: 2024-10-07 - Modified: 2024-10-07 - URL: https://petri.com/microsoft-onedrive-search-filters/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced a slew of updates aimed at improving the search experience in its OneDrive cloud storage service. These new features are designed to help users quickly locate important files stored within the OneDrive app. With file type filter pills, users can now easily filter their search results by specific file types, such as spreadsheets, documents, and presentations. They can simply click on the desired filter to view only that file type. Microsoft has introduced a new date filter that allows users to find files modified within a specific time frame, such as “Today,” “Last 7 Days,” “Last 30 Days,” “Last 3 months,” or “In the last year. ” Additionally, new columns for "Location," "Created by," and "Modified by" provide details about the file's origin, including who created or last updated it. File Type Filter Pills (Image Credit: Microsoft) Switch between All Files, My Files, Current Folder, and Library in Microsoft OneDrive Last but not least, Microsoft has released a new feature that allows users to switch between "All Files," "My Files," "Current Folder," and "Current Library" on the search results page. “This feature allows for a broader search across all accessible files or a more focused search within your personal files, a specific folder, or a document library, depending on your needs at any given moment,” Microsoft explained. Microsoft says the new OneDrive search features are currently rolling out to all customers globally. Later this year, the company plans to introduce additional features, such as the ability to open... --- ### How to Virtualize iSCSI Target Servers on Azure Stack HCI - Published: 2024-10-07 - Modified: 2024-11-19 - URL: https://petri.com/virtualize-iscsi-target-server-azure-stack-hci/ - Categories: Azure Stack HCI - Tags: featured-top-right - Article Type: Overview Today I would like to dig a bit deeper into guest virtual machine (VM) storage virtualization on Azure Stack HCI. My case and scenario today will be around virtual iSCSI servers as a target for other workloads like SQL Server. My cluster consists of three Azure Stack HCI 23H2 nodes cabled in a switched configuration. There are two SQL Servers also running on the cluster. As iSCSI targets, I will use Windows Server 2022 and 2025 with the Fileserver and iSCSI roles enabled. In addition, we will have one physical domain controller for our Azure Stack HCI fabric, to start up and maintain cluster authentication in case of a cluster reboot. There will also be two more domain controllers running on the cluster for redundancy purposes. Azure Stack HCI fabric (Image Credit: Flo Fox) Why do we still require classic storage? Most modern applications support Server Message Block (SMB) or Network File Sharing (NFS) as storage target but you often have legacy software or features which requires older SAN protocols. In Windows Server Hyper-V you can path-through physical Fiber Channel Adapters directly into VMs but it’s often a complex solution and it requires expensive hardware. In most environments, it makes sense to virtualize iSCSI storage servers as they can leverage virtual network adapters and the common IP protocol. Virtual iSCSI Server as target systems In my example, I will describe practices for Windows Server as an iSCSI target but you can use any other iSCSI software that Azure Stack HCI... --- ### Microsoft to Retire Revoke-SPOUserSession Cmdlet in SharePoint Online - Published: 2024-10-04 - Modified: 2024-10-07 - URL: https://petri.com/sharepoint-online-retire-revoke-spousersession-cmdlet/ - Categories: SharePoint Online - Tags: Microsoft 365, News, SharePoint Online - Article Type: News Microsoft is phasing out the Revoke-SPOUserSession cmdlet for SharePoint Online, replacing it with a more comprehensive Microsoft Graph alternative. This transition, which is set to begin next month, promises enhanced security by extending sign-out capabilities across all Microsoft 365 services. Microsoft introduced the Revoke SPOUserSession cmdlet back in January 2016. It allows administrators to invalidate the SharePoint Online sessions of a user across all devices. Once triggered, it signs the user out of all platforms, including browsers, desktop apps, and mobile devices. This tool is especially useful when a user leaves an organization or if their account is compromised. Why Microsoft is deprecating the Revoke-SPOUserSession cmdlet? Microsoft's telemetry data shows that only a small number of organizations use the Revoke-SPOUserSession cmdlet for user management. As a result, the company is replacing it with the Microsoft Graph Revoke-MgUserSignInSession cmdlet, which signs users out of all Microsoft 365 services, not just SharePoint Online. “We will be retiring the Revoke-SPOUserSession PowerShell cmdlet for Microsoft SharePoint Online (SPO), as part of our ongoing efforts to enhance security and streamline scope and permissions for our users. Instead, please use the Revoke-MgUserSignInSession, where we will continue to invest resources,” the company explained in a message on the Microsoft 365 admin center. How will this change affect your organization? Starting in early November, Microsoft will begin blocking all attempts to use the old cmdlet. Users will receive the error message: “This cmdlet has been deprecated and replaced by Microsoft graph cmdlet ‘Revoke-MgUserSignInSession. ” Microsoft urges enterprise admins to... --- ### Microsoft Launches High-Performance Azure VMs for AI Workloads - Published: 2024-10-04 - Modified: 2024-10-04 - URL: https://petri.com/microsoft-azure-vms-ai-workloads/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Microsoft has officially announced the general availability of its new virtual machines for Azure customers. These VMs are specifically engineered to meet the demanding computing requirements of advanced AI workloads. Microsoft has launched the ND H200 v5 VMs, enabling cloud customers to run AI supercomputing clusters on Azure. These VMs come with eight Nvidia H200 Tensor Core GPUs and are specifically designed to handle large datasets that require fast computation. “The Azure ND H200 v5 series VMs deliver a 76% increase in High Bandwidth Memory (HBM) to 141GB and a 43% increase in HBM Bandwidth to 4. 8 TB/s over the previous generation of Azure ND H100 v5 VMs. This increase in HBM bandwidth enables GPUs to access model parameters faster, helping reduce overall application latency, which is a critical metric for real-time applications such as interactive agents,” Microsoft explained. Compared to the ND H100 v5 series, Microsoft has found that the new ND H200 v5 VMs deliver 35% higher throughput for inference workloads. Additionally, these VMs come pre-integrated with Azure Batch, Azure Kubernetes Service, Azure OpenAI Service, and Azure Machine Learning. What's new in Azure FXv2-Series VMs Microsoft has introduced the FXv2-series VMs in public preview for select Azure regions. These VMs feature the 5th Generation Intel Xeon Platinum 8573C processor and support the NVMe interface for both local and remote disks. The FXv2-series is specifically designed for SQL Server workloads and offers enhanced computing performance, memory, storage, and I/O bandwidth capabilities. Microsoft highlighted several improvements in the new VMs... --- ### First Ring Daily: Fog of Updates - Published: 2024-10-04 - Modified: 2024-10-04 - URL: https://petri.com/first-ring-daily-fog-of-updates/ - Categories: Active Directory (AD), Windows, Windows 11 - Tags: First Ring Daily, News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's busy week with the public release of Windows 11 version 24H2 and the upcoming public preview of new AI features on Copilot+ PCs. --- ### Microsoft 365 App to Deprecate Feed Feature Next Month - Published: 2024-10-04 - Modified: 2024-10-04 - URL: https://petri.com/microsoft-365-deprecate-feed-feature/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft announced plans to retire the Feed feature from the Microsoft 365 app next month, with deprecation scheduled for November 1. After that date, users will no longer have access to Microsoft Feed within the app. What is Microsoft Feed? Microsoft Feed is a feature in Microsoft 365 designed to help users stay updated with relevant content and activities. It provides personalized content and activity from across Microsoft 365, including updates to documents, suggested tasks, links shared in Teams chats, and highlights about coworkers. Customers can access it through the Microsoft 365 app, the Feed tab in the Outlook mobile apps, and the new tab page in Microsoft Edge. Microsoft says that the deprecation of the Feed feature will impact both Microsoft 365 web and Windows apps. The company advises customers to transition to the "Recommended" files section on the Microsoft 365 home tab. “We are committed to ensuring that your existing workflows remain unaffected. Launched in 2022, Feed was designed to help users explore the latest content and team activities. Over time, we have integrated all the essential features of Feed into a more accessible surface within the Microsoft 365 app: the “Recommended” files on the Home tab,” Microsoft explained. Microsoft Feed (Image Credit: Microsoft) Benefits of 'Recommended' Files Feature The "Recommended" files feature uses machine learning to help users quickly find the most relevant files for their work. It displays a list of suggested files as cards, showing a thumbnail, recent activity details, and the time of the... --- ### AWS Chatbot Now Supports Access Management for AWS Accounts via Microsoft Teams and Slack - Published: 2024-10-03 - Modified: 2024-10-04 - URL: https://petri.com/aws-chatbot-aws-accounts-microsoft-teams-slack/ - Categories: Amazon Web Services - Tags: AWS, featured-top-left, Microsoft Teams, News - Article Type: News Amazon Web Services (AWS) has made it easier for businesses to manage their cloud resources with the introduction of AWS Organizations support in AWS Chatbot. This new feature enables IT teams to centrally control access to multiple AWS accounts directly from Microsoft Teams or Slack. What is AWS Chatbot? Amazon Web Services launched AWS Chatbot back in 2020. This service allows enterprise development and IT teams to monitor and manage their AWS resources directly from chat applications. It allows customers to receive alerts, run commands, and perform various tasks directly within the chat environment. AWS Chatbot provides real-time notifications and the ability to respond to incidents quickly. https://www. youtube. com/watch? v=0jUSEfHbTYk With this release, IT administrators can utilize chatbot policies along with the multi-account management features of AWS Organizations to control access and manage command permissions from chat applications. AWS Organizations is a service that allows customers to effectively manage and govern multiple AWS accounts. “For example, you can restrict access to production accounts from chat channels in designated workspaces/teams. Customers can also use SCPs to specify guardrails on the CLI command tasks executed from chat channels. For example, you can specify deny all rds: delete-db-cluster CLI actions originating from chat channels,” AWS explained. Use cases for AWS Organizations integration in AWS Chatbot AWS highlighted various benefits of using AWS Organizations support in AWS Chatbots. Customers can configure Service Control Policies (SCPs) to control what API actions can be performed from chat channels. For example, enterprise admins can define an SCP to prevent... --- ### Microsoft System Center 2025 to Launch on November 1 with New Features and a 10% Price Increase - Published: 2024-10-03 - Modified: 2024-10-03 - URL: https://petri.com/microsoft-system-center-2025-november-1/ - Categories: System Center - Tags: Microsoft System Center, News - Article Type: News Microsoft has announced that System Center 2025 will officially launch on November 1, with a 10% price hike compared to the 2022 version. This update brings new features and security improvements aimed at streamlining IT management for businesses, but at a slightly higher cost. Microsoft System Center is a suite of management tools designed to streamline IT infrastructure administration in on-premises, cloud, and hybrid environments. It offers robust automation and self-service capabilities to reduce the workload on IT staff within an organization. System Center also provides extensive monitoring and troubleshooting tools to ensure high performance and reliability. “The System Center 2025 licensing model for Standard and Datacenter will be the same as 2022 with server and client management licenses. As with System Center 2022, the 2025 editions will be differentiated by virtualization rights only. Licenses are required only for the endpoints being managed. No additional licenses are needed for customers with SQL Server Standard Edition,” Microsoft explained. According to Microsoft, the server management licensing for System Center 2025 will be based on the physical core. The licensing model uses the same model used by Windows Server 2025 which requires licenses for eight cores. What’s new in System Center 2025? Microsoft highlighted that System Center 2025 brings several new features and capabilities for commercial customers. It enables administrators to monitor Azure Stack hyperconverged infrastructure (HCI) 23H2 clusters with Virtual Machine Manager (VMM) & System Center Operations Manager 2025. Additionally, Microsoft has introduced support for Arc-enabled capabilities in System Center 2025. This... --- ### Microsoft Defender XDR Now Offers Security Settings Management for Multi-Tenant Environments - Published: 2024-10-02 - Modified: 2024-10-02 - URL: https://petri.com/microsoft-defender-xdr-security-settings-management-multi-tenant/ - Categories: Security - Tags: Microsoft Defender XDR, News - Article Type: News Last year, Microsoft introduced support for device security settings management capabilities within Defender XDR. The company is now extending this functionality to multi-tenant environments, enhancing efficiency for large organizations and service providers. Microsoft Defender XDR enables IT admins to easily configure and manage security settings for devices across multiple platforms, such as Windows, Linux, and macOS. These settings can be managed through the Microsoft 365 Defender portal or Microsoft Intune admin center. The multi-tenant view in the Defender XDR portal offers a central hub where administrators can track and manage all security policies across the organization. The key benefit is that IT admins can manage each tenant's policies without having to switch between different portals. “Security administrators can now drive even greater efficiencies with simplified security settings management supporting multi-tenancy environments that are common to large enterprises and managed services security providers (MSSPs),” Microsoft explained. Endpoint Security Policies page (Image Credit: Microsoft) How to manage security settings for multiple tenants in the Defender XDR portal? To access the multi-tenant view, administrators need to go to Endpoints > Configuration Management > Endpoint Security Policies. From there, security admins can create, edit, or delete policies for individual tenants. They can also search for specific policies across all tenants directly from the Endpoint Security Policies page. Microsoft emphasizes that admins must ensure security settings for each tenant are properly configured to manage them within the Defender XDR portal. The security administrator role is required for managing settings in Microsoft Defender, while the Endpoint... --- ### Microsoft Teams Introduces New Admin Controls, Copilot Enhancements - Published: 2024-10-02 - Modified: 2024-10-02 - URL: https://petri.com/microsoft-teams-updates-september-2024/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Microsoft has published a comprehensive roundup of new features and capabilities that were added to Teams in September. The company highlighted improvements for Copilot in Teams, a new Shared tab in Teams chat, and updates for Teams Rooms and Phones. Here's a look at everything you need to know. Updates for meetings and webinars First off, Copilot in Teams can now review the transcription and the associated chat to provide detailed information about what was discussed during the meeting. This feature is generally available for both Teams desktop and mobile devices. Microsoft Teams users can now access meeting recap and artifacts directly within Outlook after a Teams meeting. However, this feature requires a Teams Premium or Copilot for Microsoft 365 license. Microsoft has introduced new expanded controls that enable administrators and organizers to disable Copilot in Teams for specific users within their organization. This new setting is available in the Teams Admin Center. Microsoft Mesh in Teams has also added a new work environment that provides a presentation area and breakout rooms to facilitate group discussions. Expanded controls for managing Copilot in Teams meetings (Image Credit: Microsoft) Moreover, organizers can enable presenters to moderate Q&A sessions and publish questions that appear during a meeting. Organizers can also choose to sort questions by audience votes and filter them based on keywords. The latest update also allows government community clouds (GCC) customers to create webinars with up to 1,000 internal and external participants. Chat & collaboration features Microsoft has released a new... --- ### Microsoft's New Copilot Features Transform the Chatbot into an AI Companion - Published: 2024-10-01 - Modified: 2024-10-01 - URL: https://petri.com/microsoft-copilot-features-ai-companion/ - Categories: Microsoft Copilot - Tags: Microsoft Copilot, News - Article Type: News Microsoft has unveiled an enhanced Copilot experience, which brings a suite of new features and improvements for users across Windows, mobile, and the web. The company aims to transform Copilot into a true AI companion, designed to assist users throughout the day through engaging and intuitive natural conversations. “With your permission, Copilot will ultimately be able to act on your behalf, smoothing life’s complexities and giving you more time to focus on what matters to you,” said Mustafa Suleyman, the CEO of Microsoft AI. “It will be an advocate for you in many of life’s most important moments. It’ll accompany you to that doctor’s appointment, taking notes and following up at the right time. ” Microsoft has introduced a new feature called Copilot Daily, which offers personalized summaries of news and weather updates. Microsoft Copilot users can listen to these summaries in various voice options. Currently, Copilot Daily is being rolled out in preview for customers in the US and UK, with plans to expand this feature to additional regions and include more personalization options in the coming months. Copilot Daily (Image Credit: Microsoft) With Copilot Voice, the AI assistant now offers users a choice of four different voices. This feature is currently available only in English for customers in Australia, Canada, New Zealand, the United Kingdom, and the United States. Microsoft plans to expand support to more countries and languages soon. Microsoft has launched a new Personalized Discover feature to help users get started with the Copilot AI assistant. Users... --- ### Microsoft Releases the Windows 11 2024 Update (Version 24H2): What’s New and Improved - Published: 2024-10-01 - Modified: 2024-10-02 - URL: https://petri.com/microsoft-releases-windows-11-2024-update/ - Categories: Windows 11 - Tags: featured-top-left, News, Windows 11 - Article Type: News Microsoft has announced the release of the Windows 11 2024 Update, which is also known as Windows 11 version 24H2. This major feature update enhances user experience with refined performance, new tools, and a range of quality-of-life upgrades. What’s new in the Windows 11 2024 Update The Windows 11 2024 Update first started rolling out to new Copilot+ PCs back in June. It brings several key improvements, including an enhanced battery saver, upgrades to File Explorer, and support for Wi-Fi 7. Below is a summary of the main new features included in this release: Energy Saver Microsoft has introduced an enhanced Energy Saver mode that is designed to reduce power consumption even when Windows 11 devices are plugged in. The goal is to make PCs more energy efficient and reduce carbon footprint. Once enabled, users will see a new energy-saver icon in the system tray. Microsoft has also added more power settings to the Power and battery section in the new Settings app. Users can now adjust the settings for the lid and power button, and also set a specific time for their PC to enter hibernate mode. Wi-Fi 7 support Microsoft highlighted that Wi-Fi 7 support is one of the biggest additions for networking in Windows 11 version 24H2. This new standard offers several enhancements over previous versions, including higher speeds and reduced latency. Wi-Fi 7 can deliver speed over 40 Gbps, which is more than four times faster than Wi-Fi 6. This feature requires computers to have a... --- ### Microsoft Unveils New AI-Powered Search, Click to Do, Other Features for Windows 11 Copilot+ PCs - Published: 2024-10-01 - Modified: 2024-10-01 - URL: https://petri.com/microsoft-updates-windows-11-copilot-pcs/ - Categories: Windows 11 - Tags: copilot, News, Windows 11 - Article Type: News Microsoft has announced new AI-powered experiences coming to its new Copilot+ PCs. The company plans to launch these new features in preview on Copilot+ PCs in November. Windows Recall Microsoft has overhauled the controversial Windows Recall feature with a bigger focus on privacy and security. It allows users to quickly find documents, apps, messages, and more that were previously used on the device. The Recall feature was first supposed to debut with Copilot+ PCs back in June. However, cybersecurity researchers found that Recall stores data in unencrypted format, making it easier for hackers to steal sensitive information. In response to security concerns, Microsoft has made Recall an optional feature and is now disabled by default on Copilot+ PCs. Moreover, users will also be able to completely remove it from their systems. Microsoft has also improved Recall’s security with encryption and Windows Hello authentication. Additionally, Recall’s data is now isolated in VBS Enclave, and it’s no longer accessible to other users and third-party apps. Microsoft has added a new security feature to automatically filter out sensitive information such as credit card details and passwords. “Following the announcement in May, we listened to our community emphasizing the need for additional default security layers. We have taken the time to make Recall even more secure by default, ensuring our customers feel confident that their data is safe and secure, right from the start,” said John Cable, Vice President, Program Management, Windows Servicing and Delivery. Windows Recall Settings (Image Credit: Microsoft) Microsoft is just... --- ### Microsoft Confirms Latest Windows 11 Preview Update Causes Reboots and BSODs - Published: 2024-09-30 - Modified: 2024-10-01 - URL: https://petri.com/windows-11-kb5043145-update-reboots-bsods/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is currently investigating an issue causing unexpected reboots and Blue Screens of Death (BSODs) on Windows 11 devices. The company detailed in a support document that the problem stems from the September optional update (KB5043145) affecting Windows 11 versions 22H2 and 23H2. What issues are caused by the Windows 11 KB5043145 optional update? Several users on Reddit reported that the KB5043145 update causes some Windows 11 devices to get stuck in an endless reboot loop and automatically open the recovery screen. This update also blocks access to the Windows Subsystem for Linux 2 (WSL 2), though a Microsoft employee confirmed that this issue might be limited to specific CPUs. “After installing this update, some customers have reported that their device restarts multiple times or becomes unresponsive with blue or green screens,” Microsoft explained. “According to the reports, some devices automatically open the Automatic Repair tool after repeated restart attempts. In some cases, BitLocker recovery can also be triggered. ” On the Feedback Hub, users reported that the KB5043145 update disrupted WLAN connections on their Windows 11 devices. Moreover, those who installed the patch found that their microphones and keyboards stopped working. Microsoft pulls the Windows 11 KB5043145 update Microsoft released the optional KB5043145 patch for Windows 11 on September 26. This update brings some improvements to the Start menu, taskbar, and lock screen on Windows 11 PCs. Microsoft has also added the sign-out command to the account manager in the Start Menu. Additionally, Microsoft notes that users will no longer... --- ### How to List Active Directory Users with PowerShell - Published: 2024-09-30 - Modified: 2024-09-30 - URL: https://petri.com/powershell-list-active-directory-users/ - Categories: Active Directory (AD) - Article Type: How To In this article, I'll show you how to list Active Directory users with PowerShell. While you can also list Active Directory (AD) users in Active Directory Users and Computers, PowerShell provides a much faster way. Check out how to list Active Directory Users with ADUC on Petri if you would prefer to perform this action using a GUI tool. PowerShell - list Active Directory users Let's look at the main method to list Active Directory users - PowerShell, or, more accurately, the Active Directory Module for Windows PowerShell. Check out this article on Petri if you need to install the Active Directory Module for PowerShell. In Administrative Tools, we have the Active Directory Module for Windows PowerShell (Image Credit: Petri. com/Michael Reinders) Finding all Active Directory users with the PowerShell Get-AdUser cmdlet First off, let's try listing Active Directory users with PowerShell, and format them in table format with the Get-AdUser command Get-ADUser -filter * | ft List Active Directory users with PowerShell (Image Credit: Petri. com/Michael Reinders) We used the '-filter' command and chose '*' for all. Then, we 'piped' | the output to Format-Table (ft) format. Filtering results with PowerShell Now, let's filter for all the wonderful people in the Reinders clan. We only need the Name and SamAccountName for each, so we'll add attributes at the end, meaning we ONLY want to see those items. Get-ADUser -Filter 'Name -like "*Reinders*"' | ft Name,SamAccountName The Reinders Family... in Active Directory (Image Credit: Petri. com/Michael Reinders) Piece of cake. Let's get a... --- ### What’s new in Microsoft Intune - September 2024 - Published: 2024-09-30 - Modified: 2024-09-30 - URL: https://petri.com/microsoft-intune-september-2024/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has introduced several new features aimed at simplifying app management for IT administrators in September. This time around, the company highlighted updates for Enterprise App Management, a redesigned Company Portal and expanded support for Apple devices. Last year, Microsoft introduced Enterprise App Management as an add-on for its Intune Suite to simplify the management of applications within an organization. The latest update brings a new experience for managing and updating apps in the catalog. IT admins will see a new title on the overview page that provides one-click access to available application updates. Microsoft has also streamlined the process for configuring app updates in Microsoft Intune. Administrators will need to click the Update button to launch the app creation flow and then edit key app properties. It’s also possible for IT admins to configure apps to automatically update whenever an older version is detected on an enrolled device. This capability will be available for Government Community Cloud (GCC) High and U. S. Department of Defense (DoD) in early 2025. Microsoft Intune Enterprise Application Management (Image Credit: Microsoft) A redesigned Microsoft Intune Company Portal app Additionally, Microsoft has released a redesigned Company Portal app for Windows. The latest version brings an improved user experience for the Home, Devices, and Downloads & updates pages. “Users with auto updates configured for Microsoft Store apps will get the new version automatically, and Intune admins can assign the app as needed. The update includes a more intuitive design that makes it clearer when there’s an action... --- ### Ransomware Group Uses Stolen Microsoft Entra ID Credentials to Breach Hybrid Cloud Environments - Published: 2024-09-30 - Modified: 2024-09-30 - URL: https://petri.com/ransomware-microsoft-entra-id-credentials/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Entra ID, Microsoft Entra ID, News - Article Type: News Microsoft has warned that the threat actors Storm-0501 has shifted its focus to exploiting vulnerabilities in hybrid cloud environments. The company detailed in a security advisory that this group is now leveraging Entra ID credentials to target organizations. Storm 0501 was first discovered in 2021 as a ransomware-as-a-service (RaaS) affiliate for the Sabbath ransomware operation. This group has also been involved in deploying Hive, BlackCat (ALPHV), Hunters International, and LockBit. Storm 0501 has targeted multiple sectors, including government hospitals, manufacturing, law enforcement, and transportation. Cloud compromise leading to backdoor access Microsoft recently discovered that the Storm-0501 group is deploying the Embargo ransomware. The attackers used stolen Entra ID credentials to move from on-premises systems to cloud environments. Specifically, Storm-0501 compromised Entra Connect Sync service accounts, which synchronize data between on-premises Active Directory (AD) and Microsoft Entra ID. This breach could allow the hackers to set or change the Entra ID passwords for any hybrid account. "We can assess with high confidence that in the recent Storm-0501 campaign, the threat actor specifically located Microsoft Entra Connect Sync servers and managed to extract the plain text credentials of the Microsoft Entra Connect cloud and on-premises sync accounts," the Microsoft Threat Intelligence team explained. Additionally, Storm-0501 has also employed a tactic involving the compromise of an on-premises Domain Admin account that also exists in the cloud environment. This account lacks multifactor authentication (MFA) and holds a global administrator role. It enables the threat actor to gain persistent access by creating a new federated... --- ### Microsoft to Begin Testing Windows Recall Feature with Security and Privacy Improvements in October - Published: 2024-09-27 - Modified: 2024-09-27 - URL: https://petri.com/microsoft-windows-recall-october/ - Categories: Windows 11 - Tags: News, Windows Recall - Article Type: News Microsoft announced today that it will start testing the controversial Recall feature with Windows Insiders in October. The company also detailed some substantial changes it’s making to Recall to address data security and privacy concerns ahead of its public release. What is Windows Recall? Recall is a Windows feature that automatically captures screenshots of user activity, scans them using optical character recognition (OCR), and stores both the images and text on the PC. It’s designed to help users quickly locate images, websites, documents, and other content. Microsoft had originally planned to introduce Recall as one of the flagship AI features of its first wave of Copilot+ PCs that launched back in June. However, cybersecurity experts raised concerns that users and attackers with remote or physical access could easily view or steal the stored screenshots and data. As a result, Microsoft delayed the rollout indefinitely to rework the feature before releasing it for testing with Windows Insiders. Recall Security Architecture (Image Credits: Microsoft) Microsoft to let users uninstall Recall on Windows 11 Copilot+ PCs To address privacy concerns, Microsoft has made key changes to how the controversial Recall feature operates on Copilot+ PCs. The company says that Recall will now be disabled by default, and users must manually enable it during the setup experience. Moreover, this feature can now be removed completly from a system through the "optional features" in Windows Settings. Users will also have the option to delete screenshots in bulk, based on specific time frames, apps, or websites... . --- ### Microsoft Outlook Mobile App to Get New Online Archive Feature for Seamless Email Management - Published: 2024-09-27 - Modified: 2024-09-30 - URL: https://petri.com/microsoft-outlook-mobile-online-archive/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is about to add a new Online Archive feature to its Outlook mobile app. This update will allow users to seamlessly access archived emails right from the folder list on iOS and Android devices. The Online Archive folder is a feature that’s designed to help users manage their email storage efficiently. It allows users to store older emails in a separate cloud mailbox to free up space in the primary mailbox. Unlike the traditional archive folder, the Online Archive folder is accessible from anywhere with an Internet connection. Currently, Microsoft Outlook users must rely on the search functionality to access their archived emails on Android and iOS devices. With the upcoming release, users will be able to easily locate their archived emails directly in the Online Archive folder. “An Outlook online archive mailbox can store older email messages where they won't occupy space in the user's primary mailbox. This specialized mailbox appears with your other mailbox folders in Outlook. After this rollout, if you have enabled Mailbox archive for your users, the Online Archive mailbox will appear in the folder list, which users can access by tapping their profile in the top left of their screen,” the company explained in a message on the Microsoft 365 admin center. Online Archive feature in Outlook (Image Credit: Microsoft) IT Configuration Requirements for Online Archive feature Microsoft plans to roll out the new Online Archive feature for all Outlook users on iOS devices next month. The update has already started rolling out... --- ### First Ring Daily: Google Files Microsoft Antitrust Complaint in the EU - Published: 2024-09-27 - Modified: 2024-09-27 - URL: https://petri.com/frd-google-files-microsoft-antitrust-complaint-in-eu/ - Categories: Cloud Computing, Microsoft - Tags: cloud computing, First Ring Daily, Google, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the antitrust complaint Google filed with the EU Commission this week regarding Microsoft’s anti-competitive cloud licensing practices. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the antitrust complaint Google filed with the EU Commission this week regarding Microsoft’s anti-competitive cloud licensing practices. --- ### The Ultimate List of Free Active Directory Tools - Published: 2024-09-27 - Modified: 2024-12-18 - URL: https://petri.com/the-ultimate-list-of-free-active-directory-tools/ - Categories: Active Directory (AD), Identity Management While there are numerous paid solutions available, many IT professionals overlook the relative abundance of free Active Directory tools that can streamline management tasks. Besides making your CFO happy, these tools offer robust features that can simplify complex administrative tasks and enhance security. In this blog post, we’ll explore why IT pros should consider integrating free Active Directory tools into their workflows and how these tools can assist in their day-to-day tasks. List of free Active Directory tools Let's get started with our list of free Active Directory (AD) tools: 1. BeyondTrust PowerBroker Auditor The first free Active Directory tool on our list is BeyondTrust's PowerBroker Auditor - a comprehensive security auditing solution that offers organizations visibility into potential security issues with user activity inside Active Directory. PowerBroker Auditor empowers IT teams to analyze and monitor risky user behaviors, ensure compliance with regulatory bodies, and identify security risks. The tool captures login attempts, password updates, privileged escalations, and other resource access records. Its proprietary engine analyzes this data to pinpoint anomalies, suspicious activity, and other security threats. This product offers comprehensive reporting to demonstrate compliance with data types like HIPAA, PCI DSS, and GDPR. Also, PowerBroker Auditor can be integrated with other solutions to provide a more holistic view of a company's security environment and status. 2. ManageEngine's 12-tool bundle ManageEngine, makers of identity and access management software like AD Manager Plus and M365 Manager Plus, offers 12 free tools as a bundle in AD Manager Plus. These tools... --- ### Microsoft Introduces OneDrive Support for RemoteApp in Azure Virtual Desktop - Published: 2024-09-26 - Modified: 2024-09-26 - URL: https://petri.com/onedrive-remoteapp-azure-virtual-desktop/ - Categories: OneDrive - Tags: Microsoft 365, News - Article Type: News Microsoft has rolled out a new update that introduces OneDrive support for RemoteApp in Azure Virtual Desktop. This feature allows users to quickly access and synchronize their files while using RemoteApp, enhancing their productivity and collaboration in virtual environments. Until now, Microsoft OneDrive was compatible with Azure Virtual Desktop only when using non-persistent desktops. These are virtual desktops that don’t retain user data or settings after the session ends. However, the OneDrive app was not available for RemoteApp, which allows users to access individual applications without needing a full desktop environment. “Once configured, when a user launches a RemoteApp, the OneDrive icon is integrated in the taskbar of their local Windows device. If a user launches another RemoteApp from the same host pool on the same session host, the same instance of OneDrive is used and another doesn't start,” Microsoft explained. How to use OneDrive with a RemoteApp in Azure Virtual Desktop? To configure Microsoft OneDrive to launch with a RemoteApp, Azure Virtual Desktop users will need to follow the steps mentioned below: Install the latest version of the OneDrive sync app on the session host. If the session hosts are connected to Entra ID, configure OneDrive user accounts to enable automatic sign-in to the app. Install the latest Windows Update on the session host and then configure the following policy: Local Computer Policy\Computer Configuration\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Remote Session Environment\Enable enhanced shell experience for RemoteApp Set the following registry value using enterprise deployment tools like Microsoft... --- ### Microsoft Updates New Planner App in Teams with Accessibility Features - Published: 2024-09-26 - Modified: 2024-09-26 - URL: https://petri.com/microsoft-planner-teams-accessibility-features/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has released several new capabilities and improvements for the Planner app in Microsoft Teams. The company has added a new labels column in the basic plans’ Grid view, designed to help users better organize and categorize tasks with greater efficiency. Earlier this year, Microsoft started rolling out the new Planner experience in Teams to all commercial customers. It integrates various task management and planning tools, including Microsoft Planner, Microsoft To Do, and Microsoft Project, into a single, unified platform within Microsoft Teams. This new Planner app also includes a Copilot integration to help users with task management and planning. Microsoft highlighted that the labels column in Grid view was one of the top requests that should make it easier for Planner users to track and manage their projects. “Try it out by navigating to Grid view for any basic plan and selecting “Add label” for any task in the Labels column. You can edit the name of the label by selecting the label on the task, and filter by label to get a more granular view of your plan,” Microsoft explained. Labels column in Grid view (Image Credit: Microsoft) Microsoft Planner app in Teams adds plan accessibility improvements Microsoft has also rolled out a couple of improvements for the Planner app in Microsoft Teams. The latest update makes it easier for users to understand and use the label menu in the task details page. Additionally, users can now use the keyboard to edit start and due dates associated with a... --- ### Microsoft Intune Admin Center to Get New Dell Management Portal Integration Next Month - Published: 2024-09-26 - Modified: 2024-09-26 - URL: https://petri.com/microsoft-intune-admin-center-dell-management-portal/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft is set to integrate a new Dell Management Portal within the Intune admin center this October. This portal will provide administrators with streamlined access to Dell-specific Windows device management capabilities. The Dell Management Portal will enable administrators to recover per-device credentials such as current and previous BIOS passwords and BitLocker recovery keys. It allows Microsoft Intune admins to access device hardware, OS, and storage information, as well as per-device assigned-user information. Microsoft mentioned that the Dell Management Portal provides secure access to the latest version of some Dell enterprise applications. Administrators can deploy these apps to users’ devices across their organization and monitor their update status. “A few years back, we launched the Surface Management Portal in the Intune admin center. In April 2023, we announced HP Connect would be joining Surface in the Partner portals tab of the Intune admin center. This extended the depth of features HP devices could access,” the Microsoft Intune team explained. Dell Management Portal (Image Credit: Microsoft) At launch, this portal will provide access to the Dell Command - Monitor/End Point Configure for Microsoft Intune/Update, Dell Support Assist for Business PCs, and Dell Trusted Device. There is also a device reporting feature that provides the latest information about the devices every 30 minutes. How to access the Dell Management Portal in the Intune admin center To access the Dell Management Portal, IT administrators will need to navigate to Partner portals tab in the Devices blade of the Intune admin center. A connection wizard... --- ### Google Files EU Antitrust Complaint Against Microsoft's Cloud Licensing Practices - Published: 2024-09-25 - Modified: 2024-09-25 - URL: https://petri.com/google-eu-antitrust-complaint-microsoft/ - Categories: Google Cloud Platform, Microsoft Azure - Tags: Google Cloud, Microsoft Azure, News - Article Type: News Google has officially lodged an antitrust complaint with the European Commission against Microsoft. The company alleged that Microsoft's software licensing practices are anti-competitive and effectively force customers to remain loyal to its Azure cloud services. In 2019, Microsoft introduced software licensing changes that increased the costs for customers running Windows, Windows Server, and Office on competing cloud platforms. In response, the Cloud Infrastructure Services Providers in Europe (CISPE) and a European not-for-profit trade association filed an antitrust complaint with the European Commission in 2022. In July, Microsoft reached a successful $22 million settlement with a group of CISPE members to avoid a formal investigation into its dominance in the global cloud computing market. This agreement aimed to enable European cloud providers to offer Microsoft applications and services on their local infrastructures. However, Amazon Web Services (AWS) contended that Microsoft's concessions are limited and only apply to some CISPE members. Google claims €1 billion annual cost to European businesses due to Microsoft’s licensing practices In its complaint to the European Commission, Google stated that European businesses and public sector organizations are compelled to pay up to €1 billion annually to run Microsoft software on non-Azure cloud infrastructures. The company is urging EU regulators to require Microsoft to lift its existing restrictions on using cloud services from competitors. “One, repurchase the software at a much higher price with a 400 percent plus markup, and get a limited product to run on Google or AWS or a lot of other cloud providers. Or... --- ### Remote Desktop Manager Adds Azure PIM Integration, Other New Features - Published: 2024-09-25 - Modified: 2024-09-26 - URL: https://petri.com/remote-desktop-manager-azure-pim/ - Categories: Remote Desktop - Tags: News, Remote Desktop Manager - Article Type: News Devolutions has announced the release of a new version of Remote Desktop Manager. The latest update brings several new capabilities and improvements such as integration with Azure Privileged Identity Management (PIM), support for Delinea Secret Server proxy for RDP and SSH, and more. Devolutions has introduced integration with Azure Privileged Identity Management (PIM), allowing operators and administrators to easily enable or disable privileged accounts directly within Remote Desktop Manager. Moreover, this update brings support for One Identity Safeguard, which enables users to retrieve credentials and seamlessly inject them into RDM sessions. The latest Remote Desktop Manager update adds support for new RDP and SSH sessions that are designed to utilize Delinea’s Secret Server proxy. Customers can use a proxy with Delinea’s conditional access policies to ensure that only authorized users are allowed to establish RDP and SSH connections. Remote Desktop Manager has introduced support for Proton Pass password manager, making it easier for users to automatically fill in their login details when connecting to remote systems. Support for Delinea Secret Server proxy for RDP and SSH (Image Credit: Devolutions) Devolutions has announced that users can now use the Barracuda NAC VPN as an add-on within Remote Desktop Manager. The latest release also brings a new feature that prompts users to enter a ticket number from ServiceNow. This capability is currently only available for connections to SQL Server databases. Key improvements in Remote Desktop Manager 2024. 3 In addition to the new features, Devolutions detailed several improvements for its Remote Desktop Manager... --- ### Microsoft Intune Update Lets IT Admins Control Apple Intelligence Features on iOS and macOS Devices - Published: 2024-09-25 - Modified: 2024-09-25 - URL: https://petri.com/microsoft-intune-update-apple-intelligence/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft Intune has added a new feature that enables administrators to configure and manage the availability of Apple Intelligence features on Apple devices. The new MDM controls let IT admins customize the usage of these AI-powered capabilities to suit their specific environments. Apple Intelligence is a suite of advanced features that use AI and machine learning to improve the user experience on iOS, macOS, and iPadOS devices. In its public beta, it includes AI-powered writing tools for emails and documents, as well as photo tools like "Clean Up," which allows users to remove unwanted parts of an image. Siri also gets several upgrades, enabling more natural and contextual conversations. Currently, Apple Intelligence is available only in U. S. English. “For Apple managed supervised devices (ADE enrolled iOS/iPadOS and all macOS), Intune supports new settings for Apple Intelligence in the Restrictions payload and Math Settings declaration,” Microsoft explained. “For personal or bring-your-own (BYO) iOS /iPadOS devices there are no MDM provided controls. For customers looking for control on BYO or non-supervised devices, we support Intune MAM controls on both managed and unmanaged devices. ” Microsoft Intune MDM controls for iOS, iPadOS and macOS devices Microsoft Intune offers a range of configuration controls for iOS 18. 1, iPadOS 18. 1, and macOS Sequoia 15. 1. The list includes Allow Genmoji, Allow Image Playground, Allow Image Wand, Allow Personalized Handwriting Results, Allow Writing Tools, Intelligence (Skip Key), Math Notes Mode, and System Behavior > Math Notes. For Intune MAM-protected applications on iOS 18. 1 and later, Microsoft Intune will... --- ### Microsoft Releases New File Integrity Monitoring Tool Integrated with Defender for Endpoint - Published: 2024-09-24 - Modified: 2024-09-24 - URL: https://petri.com/file-integrity-monitoring-defender-for-endpoint-2/ - Categories: Security - Tags: Microsoft Defender for Endpoint, News - Article Type: News Microsoft announced yesterday the release of a new File Integrity Monitoring (FIM) solution based on Microsoft Defender for Endpoint. This updated version offers enhanced real-time monitoring of critical file paths and system files, ensuring greater security and compliance for organizations. The new version of File Integrity Monitoring is designed to replace the legacy version that's based on the Log Analytics Agent (MMA). It introduces several enhancements, including built-in support for essential security regulatory compliance standards. Additionally, this updated FIM version simplifies the onboarding process, requiring customers to have only Defender for Endpoint installed, and it removes the need for extra configurations and rules for data collection. File Integrity Monitoring now captures additional metadata whenever a file change occurs, detailing who made the change and the process used. This capability will help security teams more easily detect and respond to unauthorized or malicious file alterations. Moreover, the data generated by FIM counts towards the 500 MB data allowance for Defender for Servers Plan 2 customers. “While we have introduced multiple improvements in the new FIM version powered by Defender for Endpoint, we’ve also promised the preservation of its core capability: continuous real-time monitoring. This key capability is crucial, providing instance monitoring on critical file paths and registries,” Microsoft explained. Start the migration for one subscription (Image Credit: Microsoft) Migrate to the new File Integrity Monitoring experience powered by MDE Microsoft encourages organizations to transition to the new FIM version powered by Defender for Endpoint. Administrators can begin this process by accessing... --- ### Microsoft Launches New VDI Solution for Teams with Performance Improvements - Published: 2024-09-24 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-teams-vdi-solution/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Earlier this year, Microsoft announced the public preview of Microsoft Teams optimized for virtual desktop infrastructure (VDI), which is now generally available to customers using Azure Virtual Desktops and Windows 365. This enhanced VDI solution offers improved functionality and performance for virtual environments. Microsoft Teams for VDI has been completely redesigned to improve performance on Azure Virtual Desktops and Windows 365. Microsoft has ditched WebRTC, an open-source technology that’s used for audio and video streaming in many collaboration platforms, in favor of SlimCore. What are the benefits of the new SlimCore-based optimization? According to Microsoft, adopting SlimCore will help bring Teams for VDI in line with the features of the native Teams desktop app. The new SlimCore-based optimization provides better performance, faster call setup, more reliable screen sharing, less downtime and faster case resolutions. “This new architecture brings the Teams’ user experience to a closer alignment between physical and virtual desktops. By introducing a new media engine (same one used by the Teams native Windows app) that is decoupled from the Remote Desktop client, and always up to date, we can introduce features faster without requiring VDI infrastructure upgrades,” Microsoft explained. New optimization architecture for Microsoft Teams for VDI (Image Credits: Microsoft) The new optimization also introduces support for features like Gallery View (3x3 and 7x7), Presenter mode, and noise suppression. Additionally, it offers Teams Premium features such as watermarks, townhalls, and background customization. Users will need to restart Microsoft Teams to switch from the old WebRTC-based to the new... --- ### Microsoft Releases First Secure Future Initiative Report, Showcasing Key Security Enhancements - Published: 2024-09-23 - Modified: 2024-09-23 - URL: https://petri.com/microsoft-first-secure-future-initiative-report/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Microsoft published this morning its first Secure Future Initiative report. The company touted that it has made several key improvements to boost security across its products and services. Microsoft launched its Secure Future Initiative (SFI) back in November 2023. This initiative is aimed at creating a coordinated effort within the company to enhance cybersecurity across all Microsoft products and services. In May, Microsoft announced a set of plans to enhance its cybersecurity practices. The SFI is guided by three core principles secure by design, secure by default, and secure operations. Moreover, Microsoft committed to prioritizing security by tying cybersecurity performance to the compensation of its Senior Leadership Team. Microsoft also plans to make security a core focus in the performance reviews for all employees. the Secure Future Initiative (SFI) (Image Credit: Microsoft) Microsoft's progress across six key pillars of the Secure Future Initiative (SFI) Microsoft highlighted today its progress across six key pillars that are meant to address weaknesses in Microsoft’s systems and development practices. Here is a list of the latest updates across those areas. Microsoft has released a couple of updates for Entra ID and Microsoft Account (MSA) for public and US government clouds. These systems can now generate, store, and automatically rotate access tokens signing keys through the Azure Managed Hardware Security Module (HSM) service. Microsoft’s standard identity SDKs now support over 75 percent of the tokens issued by Microsoft Entra ID for its own applications. “We completed enforcement of the use of phishing-resistant credentials in our... --- ### Microsoft Announces WSUS Deprecation: What IT Admins Need to Know - Published: 2024-09-23 - Modified: 2024-09-23 - URL: https://petri.com/microsoft-deprecates-windows-server-update-services/ - Categories: Windows Server - Tags: News, Windows Server Update Services - Article Type: News Microsoft has announced the deprecation of Windows Server Update Services (WSUS), marking the end of new feature development for the popular update management tool. While the WSUS tool will no longer receive new capabilities, its existing functionality will remain supported moving forward. What is Windows Server Update Services (WSUS)? Windows Server Update Services (WSUS) is a tool that helps administrators manage and distribute Microsoft product updates across a network. It allows IT admins to approve or delay updates and decide which devices receive specific ones. WSUS also supports automation via PowerShell and integrates with Group Policy for easier management. Multiple Independent WSUS Servers (Image Credit: Microsoft) Microsoft has announced that WSUS is being deprecated and will no longer be actively developed or enhanced in the future. However, this doesn’t mean the feature is being removed. The deprecation won’t impact its existing functionality or support for Microsoft Configuration Manager. “Specifically, this means that we are no longer investing in new capabilities, nor are we accepting new feature requests for WSUS. However, we are preserving current functionality and will continue to publish updates through the WSUS channel. We will also support any content already published through the WSUS channel,” Microsoft explained. Microsoft suggests migration to cloud-based update management solutions The deprecation of WSUS is a big deal for many administrators who depend on the tool to manage and distribute updates in enterprise environments. “Congratulations, you must made centralized automated patching subject to internal politics and budget constraints. I survived the era of... --- ### How To Use The Active Directory Administrative Center - Published: 2024-09-23 - Modified: 2024-09-23 - URL: https://petri.com/active-directory-administrative-center/ - Categories: Active Directory (AD) - Tags: featured-top-right - Article Type: How To The Active Directory Administrative Center (ADAC) is a powerful, modern tool for managing Active Directory. Learn how to use it efficiently with our step-by-step guide and tips. What is Active Directory Administrative Center (ADAC)? The Active Directory Administrative Center (ADAC) is a tool designed for IT administrators and IT Pros to manage Active Directory. Users, groups, Organizational Units (OUs), printers, and password policies can be managed with ADAC. Repetitive tasks can be scripted or handled in bulk in various parts of the tool. ADAC is a graphical user interface (GUI) that sits on top of PowerShell cmdlets (Command-lets) that run behind the scenes. IT Pros are free to use the command-line shell of PowerShell to perform the same steps. However, many admins do prefer the 'efficiency' of a GUI. How does the Active Directory Administrative Center (ADAC) differ from Active Directory Users and Computers (ADUC)? There are many similarities between the Active Directory Administrative Center (ADAC) and the legacy Active Directory Users and Computers (ADUC) Microsoft Management Console (MMC) tool. Although the layout and design of each tool's GUI are rather different, you can perform the same tasks in both. The 'Active Directory Administrative Center - Overview' (Image Credit: Michael Reinders/Petri. com) ADAC offers some exclusive features. Here is the main list: Active Directory Recycle Bin - Enabling this feature allows for the recovery of deleted objects, preserving all group memberships, attributes, and permission tokens (SIDs). Windows PowerShell History Viewer - displays the PowerShell commands the GUI executes. This helps administrators understand... --- ### Microsoft Announces Public Preview of Hotpatching Support for Windows Server 2025 - Published: 2024-09-23 - Modified: 2024-09-23 - URL: https://petri.com/microsoft-preview-hotpatching-windows-server-2025/ - Categories: Windows Server - Tags: News, Windows Server 2025 - Article Type: News Microsoft has announced that hotpatching support is available in public preview for the Standard and Datacenter editions of Windows Server 2025. This feature allows organizations to apply OS security patches seamlessly, without the need for disruptive reboots. Previously, hotpatching was only available for Windows Server 2022 Datacenter: Azure Edition and required running a virtual machine in Azure or on Azure Stack HCI. Typically, a system reboot is needed to apply patches and update system files. However, with hotpatching, administrators can update in-memory code on running processes to ensure continuous system availability without the need for reboots. “The real change is how and where you get those security updates. Hotpatching will be available as an option through the power of Azure Arc. Azure Arc enables management and allows the Windows Server internal licensing service for Hotpatch to run so that Hotpatch updates are delivered to customers,” Microsoft explained. Windows update showing a hotpatch (Image Credit: Microsoft) What are the benefits of hotpatching? With hotpatching, customers will only need to reboot their systems quarterly, reducing the number of reboots to just four times a year. Occasionally, a reboot might still be required when hotpatches are applied. These updates are smaller and more efficient, resulting in faster downloads, quicker installations, and lower disk space and CPU usage. Microsoft noted that managing and coordinating patches can be complex and time-consuming. Hotpatching simplifies this process to make it easier to manage and control updates across servers. It also integrates with Azure Update Manager to offers... --- ### Microsoft Entra Internet Access: A Secure Web Gateway with Advanced Protection for SaaS Applications - Published: 2024-09-20 - Modified: 2025-01-06 - URL: https://petri.com/microsoft-entra-internet-access/ - Categories: Identity Management - Tags: Microsoft Entra, News - Article Type: News Microsoft has announced the general availability of its Entra Internet Access service that launched in preview back in July. This new Internet Access solution is a Secure Web gateway (SWG) that provides secure access to all Internet and SaaS applications and is a part of Microsoft Global Secure Access. “Our solution integrates seamlessly with Microsoft Entra ID, eliminating the need to manage users, groups, and apps in multiple locations. It protects users, devices, and resources with capabilities such as universal Conditional Access, context aware network security, and web content filtering, so you no longer need to manage multiple disconnected network security tools,” Microsoft explained. Microsoft Entra Internet Access combines conditional access policies with network conditions to protect organizations against malicious traffic and threats. It also provided advanced security capabilities (like data exfiltration controls) for Entra ID federated applications. Microsoft Entra Internet Access (Image Credit: Microsoft) Microsoft Entra Internet Access lets customers use web category filtering to allow/block websites based on pre-populated categories. Moreover, administrators can apply fully qualified domain name (FQDN) filtering for specific endpoint policies or to override general web category policies. Microsoft plans to enhance the service with new features like TLS inspection, URL filtering, and Threat Intelligence (TI) filtering. Microsoft Entra Internet Access adds Compliant Network control The new Compliant Network Control boosts security by ensuring network compliance and preventing token replay attacks for Microsoft Entra ID apps. Additionally, universal tenant restrictions (TRv2) can be enabled to prevent data exfiltration within enterprise environments. Universal tenant restrictions (Image... --- ### Microsoft's New Windows App Now Generally Available Across All Platforms - Published: 2024-09-19 - Modified: 2024-09-19 - URL: https://petri.com/microsoft-windows-app-generally-available/ - Categories: Windows, Windows 365 - Tags: News, Windows 365, Windows app - Article Type: News Microsoft has officially released its new Windows App for Windows, macOS, iPadOS, and the web, with a public preview now available on Android. This all-in-one app serves as a centralized hub, allowing users to seamlessly access Windows 365, Azure Virtual Desktop, Microsoft Dev Box, or their personal Remote Desktop PC. The Windows app acts as a customizable home screen that incorporates all of Microsoft’s existing Cloud PC services as well as Remote Desktop and RDP connections. It supports features like multi-monitor setups, peripheral and device redirection, dynamic display resolutions, and optimizations for Microsoft Teams. Additionally, the app includes advanced security options, such as multifactor authentication. “Whether you are an IT administrator or an end user, Windows App provides immense value. IT admins benefit from enhanced security and streamlined management, while end users can tailor their experience to fit their personal workflows,” Microsoft explained. Windows App (Image Credit: Microsoft) What new features are included in the Windows App? Microsoft also announced today several enhancements that should make it easier for users to access and manage Windows resources. The company has made account switching easier when using a Microsoft Entra account on macOS and iOS devices. Additionally, the Windows app now supports Relayed Remote Desktop Protocol (RDP) Shortpath to enhance connectivity and performance for remote sessions. Other capabilities include device and app actions, in-app feedback, and support for Windows 365 Frontline Cloud PCs. Currently, the new Windows app is only available for customers with work and school accounts. Microsoft says this app... --- ### Microsoft Teams to Add New Default Voice and Face Enrollment Policy in Early 2025 - Published: 2024-09-19 - Modified: 2024-09-19 - URL: https://petri.com/microsoft-teams-default-voice-face-enrollment-policy/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is about to introduce a new policy for voice and face enrollment in Microsoft Teams, which will be enabled by default. This policy will enable several features such as voice isolation as well as enhanced speaker recognition in meeting rooms. In Microsoft Teams, face and voice enrollment is designed to enhance the audio quality and user experience during calls and meetings. Users have control over their face and voice data and can delete their profiles at any time. IT admins can choose to enable or disable these features for specific users or groups within the organization. “This adjustment provides greater control over managing these features, allowing organizations to tailor to their needs. Voice and face biometric enrollment will be enabled by default, enabling voice isolation and speaker recognition in meeting rooms and enhancing intelligent meeting recaps and Microsoft Copilot for meetings,” Microsoft explained. How to prepare for this new voice and face enrollment policy? Microsoft will begin rolling out this new voice and face enrollment policy in early January 2025. To prepare for this change, Microsoft advises administrators to adjust settings according to their organization's needs. They can review the new policy and choose to disable face and voice enrollment until mid-January 2025. The new csTeamsAIPolicy will replace the current csTeamsMeetingPolicy and introduce two separate settings for face and voice enrollment: EnrollFace and EnrollVoice. These upcoming updates are designed to simplify how organizations manage and enroll voice data. In related news, Microsoft is introducing support for administrative units (AUs)... --- ### Microsoft Intune Gets New Alerts to Streamline Windows Update Tracking - Published: 2024-09-19 - Modified: 2024-09-19 - URL: https://petri.com/microsoft-intune-alerts-windows-update/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has introduced two new alerts for Windows updates in Microsoft Intune. These new alerts are designed to give administrators insights into device management and help ensure that devices are updated and functioning correctly. Microsoft emphasizes the importance of administrators having a clear and accurate view of all devices within an organization. Windows diagnostic data plays a key role in tracking each device's progress during deployment, identifying any issues, and triggering alerts. These alerts offer detailed insights into what may be preventing devices from updating properly. The DeviceDiagnosticDataNotReceived alert is designed to flag devices that aren’t sending diagnostic data, causing their status to be inaccurately reported. This issue can stem from various factors, including incorrect diagnostic data configuration, lack of configuration for sending diagnostic data, or blocked network endpoints. “The DeviceDiagnosticDataNotReceived alert does not mean that the device is incapable of installing the updates offered to it. The report simply cannot represent the true state of the device since it’s dependent on receiving diagnostic data from the device,” Microsoft explained. The Error devices full details flyout for a selected alert message (Image Credit: Microsoft) The MinimumOSBuildNotMet alert allows IT admins to track devices that don't meet the minimum servicing requirements for report enrollment. These devices may not function properly and could miss critical updates if the requirements aren't met. Integration with Microsoft Intune reporting In Microsoft Intune, administrators can find these new alerts in the main status report and failure reports. The alerts are also available in the Azure Workbook... --- ### Microsoft Rolls Out New Copilot Experience with Enterprise Data Protection for Windows 11 Pro and Enterprise PCs - Published: 2024-09-18 - Modified: 2024-09-18 - URL: https://petri.com/microsoft-copilot-experience-windows-11-pro-enterprise/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced an enhanced Copilot experience for organizations using managed Windows 11 Pro and Enterprise PCs. Starting later this month, users who sign in with work or school accounts will gain access to this upcoming Copilot update, designed to boost productivity and streamline workflows across enterprise environments. First off, Microsoft Copilot will offer enterprise data protection (EDP) capabilities at no additional cost to all users signed in with an Entra account. “This is a significant step in strengthening data protection for Microsoft Copilot as the enhanced security, privacy, and compliance controls and commitments available for Microsoft 365 Copilot will now extend to Microsoft Copilot prompts and responses,” Microsoft explained. Microsoft Copilot integration within the Microsoft 365 app (Image Credit: Microsoft) Microsoft has also announced that users with work or school accounts can now access the Copilot AI assistant directly within the Microsoft 365 app. However, users or IT admins will need to pin Copilot in the app. Going forwards, Microsoft will focus on updates to improve the Copilot integration within the Microsoft 365 app for commercial customers. When these changes are coming to the Copilot experience on Windows PCs? Microsoft plans to roll out these changes to Windows 11 users with a preview release on September 24. The new Copilot experience will be available for all supported versions of Windows 11 starting October 8, with support for Windows 10 to follow in November. Microsoft notes that IT admins can use the TurnOffWindowsCopilot policy to enable Copilot for users within... --- ### Hackers Exploited Windows Spoofing Vulnerability in Zero-Day Attacks - Published: 2024-09-18 - Modified: 2024-09-18 - URL: https://petri.com/hackers-zero-day-windows-spoofing-flaw/ - Categories: Security - Tags: Microsoft, News, spoofing - Article Type: News Microsoft has disclosed a new Windows spoofing vulnerability that was addressed in the September 2024 Patch Tuesday updates. The company warned that cybercriminals had already exploited this flaw in zero-day attacks earlier in the year. The vulnerability, tracked as CVE-2024-43461, is a spoofing flaw in the Windows MSHTML platform with a CVSS score of 8. 8. It specifically impacts Internet Explorer mode in the Microsoft Edge browser. This bug was discovered and reported by Peter Girnus from Trend Micro's Zero Day Initiative (ZDI) on July 19, and it allows remote attackers to execute code on unpatched Windows systems. However, for the attack to succeed, hackers must trick victims into visiting a malicious website or opening a harmful file. “The specific flaw exists within the way Internet Explorer prompts the user after a file is downloaded. A crafted file name can cause the true file extension to be hidden, misleading the user into believing that the file type is harmless. An attacker can leverage this vulnerability to execute code in the context of the current user,” the Zero Day Initiative explained. How does the attack chain work? Microsoft initially disclosed the CVE-2024-43461 security flaw on September 10. At that time, the company said that the vulnerability was not being actively exploited in the wild. However, it was later discovered that the advanced persistent threat (APT) group Void Banshee had exploited the flaw, along with another MSHTML spoofing vulnerability (CVE-2024-38112), to target Windows devices. Void Banshee exploited the zero-day flaw to launch Internet... --- ### Microsoft Teams to Bring AI-Powered Voice Isolation to macOS Users - Published: 2024-09-17 - Modified: 2024-09-17 - URL: https://petri.com/microsoft-teams-voice-isolation-macos/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is set to introduce voice isolation support to its Teams desktop app for macOS next month. This feature leverages artificial intelligence to filter out background noise, providing a clearer and more focused audio experience for video calls and meetings. Microsoft Teams rolled out voice isolation support for Windows users in November 2023. This feature uses a voice profile stored on the local device to remove unwanted sounds during calls and meetings. Moreover, IT admins have the ability to control whether this feature is available to end users within their organization. “With voice isolation in Microsoft Teams, you can enjoy clear and uninterrupted calls or meetings, no matter where you are. Voice isolation is an AI-based advanced noise suppression feature that eliminates unwanted background noise, including other human voices. The technology recognizes your voice profile and ensures only your voice is transmitted,” the company explained in a message on the Microsoft 365 admin center. Admin controls for Microsoft Teams’ voice isolation Microsoft notes that administrators will first need to enable the "enrollUserOverride policy" and the "Voice isolation feature" policy through the Teams admin center. Once enabled, Microsoft Teams users will need to enroll their voice profile by clicking the Recognition tab in Settings. Meanwhile, it will be up to the IT admins to disable this feature within their organization by using the "Set-CsTeamsMeetingPolicy" PowerShell cmdlet. The voice isolation feature in Teams will be rolled out to targeted release customers in mid-October, with a general availability expected by late-October. This capability... --- ### Microsoft Enhances Windows 11 Enrollment: Quality Updates to Install Automatically During Initial Setup - Published: 2024-09-17 - Modified: 2024-09-17 - URL: https://petri.com/windows-11-quality-updates-initial-setup/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has announced some important changes coming to the Windows MDM enrollment process for Intune-managed devices. Starting with the October 2024 Windows update, quality updates will now be automatically installed during the Out-of-Box Experience (OOBE) on PCs running Windows 11, version 22H2 and above. How does it work? When a Windows 11 device is connected to the Internet, it will automatically check for new quality updates. If updates are available, users will see a message on the updates page indicating that the updates are being installed. These updates are downloaded and installed in the background, after which the device will reboot. Once restarted, users will be able to proceed to the Windows desktop and complete any remaining enrollment steps by signing in. “Quality updates are monthly updates that provide security and reliability fixes, as well as enhancements to existing features. These updates are critical for the performance and security of your devices, and we want to make sure they’re delivered as soon as possible,” the Microsoft Intune team explained. What does this change mean for IT admins? Microsoft will not provide all monthly updates during the Out-of-Box Experience (OOBE) when setting up a new Windows 11 device. The company will choose updates based on their importance and relevance to the device's initial setup. However, feature updates won’t be installed during OOBE, and will instead be managed later by the MDM solution according to the organization’s policies. Keep in mind that installing quality updates during the OOBE may extend the setup... --- ### Microsoft Office LTSC 2024 Now Available for Businesses - Everything You Need to Know - Published: 2024-09-17 - Modified: 2024-09-17 - URL: https://petri.com/microsoft-office-ltsc-2024-available/ - Categories: Office - Tags: News, Office LTSC 2024 - Article Type: News Microsoft has officially launched Office LTSC 2024, the latest version of Office for the Long-Term Servicing Channel. This release offers commercial and government customers a perpetual license, allowing them to use Office applications without the need for a subscription. Microsoft Office 2024 LTSC entered public preview for commercial customers on Windows and macOS in April this year. This non-subscription version of Office is designed for organizations with devices without internet connectivity. It’s aimed at regulated devices that can’t receive feature updates, manufacturing process control devices that are disconnected from the Internet, and other equipment that is locked in time. What's new in Office LTSC 2024? Office LTSC 2024 provides access to Office applications, including Microsoft Word, Outlook, PowerPoint, and Excel. This particular release includes new meeting creation options and an enhanced search experience for email, calendars, and contacts in Outlook. In Excel, Microsoft has added 14 new text and array functions to help users manipulate text and arrays within their worksheets. Users can reference Dynamic Arrays in charts to visualize datasets of variable length. Microsoft has also improved performance, accessibility, and security in Office LTSC 2024. The latest Office LTSC release lacks support for cloud-based capabilities such as real-time collaboration and AI-powered automation. The company emphasized that Microsoft 365 remains the best option for users needing access to the Copilot AI assistant and cloud-backed security features. “Microsoft 365 offers the most secure, productive, and cost-effective solution for most organizations, and positions customers to unlock the transformative power of AI with... --- ### Microsoft Enhances SIEM Migration with Context-Aware Tools for Seamless Splunk to Sentinel Transition - Published: 2024-09-16 - Modified: 2024-09-16 - URL: https://petri.com/microsoft-siem-migration-splunk-sentinel/ - Categories: Microsoft Sentinel - Tags: Microsoft Sentinel, News - Article Type: News Microsoft has announced some important updates coming to the SIEM Migration experience. These new capabilities are designed to more context-aware translations to streamline the process of moving from Splunk to Microsoft Sentinel. The Schema mappings feature is designed to help customers migrate from Splunk to Microsoft Sentinel. It allows administrators to define how each type of data from Splunk will correspond to the tables in Microsoft Sentinel. This feature automatically maps known sources like Splunk CIM schemas & data models to ASIM Schemas. “The other custom sources queried in the detections are listed without being mapped and these will require manual mapping with existing Microsoft Sentinel/Azure Log Analytics tables. All mappings can then be reviewed, modified or new sources added. Mapping schemas is hierarchical, i. e. , the Splunk sources map 1-1 with Sentinel tables in addition to the fields within these sources,” Microsoft explained. Schema mapping in SIEM migration (Image Credit: Microsoft) Translation support for Splunk Loopups and Macros Microsoft has added translation support for Splunk Lookups to enhance the SIEM migration experience for customers. Splunk Lookups are tables with field value pairs that can be used to enrich event data. The translation process involves converting Splunk Lookups used in SPL (Search Processing Language) queries into Sentinel Watchlists used in KQL (Kusto Query Language) queries. Currently, the translation support is limited to the “lookup” and “inputlookup” keywords. However, this feature doesn’t work with the “outputloopup” operation, and IT admins will need to configure an Automation Rule in Microsoft Sentinel to handle... --- ### Microsoft Introduces Copilot Pages and Agents to Streamline Business Collaboration and Automation - Published: 2024-09-16 - Modified: 2024-09-16 - URL: https://petri.com/microsoft-copilot-pages-agents/ - Categories: Microsoft 365, Microsoft Copilot - Tags: Microsoft 365, News - Article Type: News Microsoft has started rolling out new Copilot Pages to improve the Business Chat experience for commercial customers. It’s a dynamic and persistent canvas designed to enhance collaboration by allowing users to edit and share AI-generated content with their colleagues. Microsoft Copilot Business Chat is an AI-powered chatbot experience that launched in December 2023 to facilitate collaboration within enterprise environments. It integrates with Microsoft 365 apps to provide intelligent insights, automate responses, and manage workflows. Users can access the chatbot through Microsoft365. com, Microsoft Teams, and Bing when signed in with a work account. “Pages takes ephemeral AI-generated content and makes it durable, so you can edit it, add to it, and share it with others. You and your team can work collaboratively in a page with Copilot, seeing everyone’s work in real time and iterating with Copilot like a partner, adding more content from your data, files, and the web to your Page,” said Jared Spataro, CVP for AI at Work. Copilot Pages (Image Credit: Microsoft) Getting started with Copilot Pages To access Copilot Pages, users will need to click the “Edit in pages” button available at the bottom of a Copilot response. This action will create a page and open it next to the chat. Microsoft expects to make Copilot Pages available to commercial customers later this month. The company is also bringing this feature to the free Copilot users signed in with a Microsoft Entra account in the coming weeks. Copilot Agents Last year, Microsoft introduced Copilot Studio to... --- ### Microsoft Enhances Copilot Capabilities Across Outlook, Teams, and Word - Published: 2024-09-16 - Modified: 2024-09-16 - URL: https://petri.com/microsoft-copilot-capabilities-outlook-teams/ - Categories: Microsoft 365, Microsoft Copilot - Tags: Microsoft 365, News - Article Type: News Microsoft announced today several new capabilities to enhance the Copilot AI assistant in its Microsoft 365 apps. The first big change is that Copilot in Outlook has added a new prioritize my inbox feature to help users tackle email overload more efficiently. Copilot in Outlook reviews emails by analyzing their content and the user's role, then generates concise summaries that highlight the importance of each message. Later this year, users will be able to ask Copilot in Outlook to prioritize emails based on specific topics, keywords, or people. Prioritize my inbox (Image Credit: Microsoft) Copilot in Word In Microsoft Word, Copilot for Microsoft 365 will soon be able to quickly reference multiple data sources, including web data, Word documents, PowerPoint files, PDFs, encrypted documents, as well as content from emails and meeting notes. This feature will be available to customers later this month. Microsoft has also announced the general availability of a new on-canvas startup experience with suggested prompts. Additionally, the inline collaboration feature allows users to work with Copilot directly within specific sections of a document. Copilot in Excel Microsoft has introduced several new features for Copilot in Excel, including support for unformatted data, text data, formulas like XLOOKUP and SUMIF, as well as conditional formatting. Users can also collaborate with Copilot to refine visualizations like charts and PivotTables. Additionally, Copilot in Excel with Python lets customers use natural language commands to perform advanced analysis such as machine learning, forecasting, risk analysis, and visualizing complex data. This feature is... --- ### Microsoft to Boost Windows Security to Prevent Future CrowdStrike-Style Outages - Published: 2024-09-13 - Modified: 2024-09-16 - URL: https://petri.com/microsoft-windows-security-crowdstrike-outages/ - Categories: Windows, Windows 11 - Tags: News, Windows 11 - Article Type: News Earlier this week, Microsoft held its Windows Endpoint Security Ecosystem Summit at its Redmond headquarters, bringing together CrowdStrike, cybersecurity partners, and government officials. The summit aimed to address critical issues in cyber resilience and infrastructure security, fostering discussions on strengthening defenses against future threats. On July 19, CrowdStrike released a faulty sensor update for its Falcon endpoint security platform that crashed around 8. 5 million Windows devices. This incident resulted in billions of dollars in damages, disrupting hospital appointments, grounding thousands of flights, and raising regulatory concerns about third-party access to the Windows kernel. In response, Microsoft called for changes to Windows to enhance its resilience and prevent similar incidents. Microsoft’s Windows Endpoint Security Ecosystem Summit served as a platform for Microsoft and security vendors to discuss designing resilient systems, improving security, and adopting safe deployment practices. Microsoft is also working on enabling security solutions to operate outside the Windows kernel. “Both our customers and ecosystem partners have called on Microsoft to provide additional security capabilities outside of kernel mode which, along with safe deployment practices, can be used to create highly available security solutions,” said David Weston, vice president of enterprise and OS security at Microsoft. What's Microsoft’s strategy to avoid another CrowdStrike-like incident? Microsoft detailed its efforts to address the performance needs and challenges of operating outside kernel mode, which is crucial for avoiding the performance issues and conflicts associated with the kernel. The Summit also underscored the importance of anti-tampering protections to prevent malicious interference with security products. Microsoft... --- ### First Ring Daily: The Windows PC Has a Future - Published: 2024-09-13 - Modified: 2024-09-13 - URL: https://petri.com/first-ring-daily-the-windows-pc-has-a-future/ - Categories: Hardware, Windows - Tags: AMD, First Ring Daily, Intel, News, Qualcomm, Windows on ARM - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss how Qualcomm's new Snapdragon X Plus 8-core chip and the latest CPUs from Intel and AMD for Copilot+ PCs will make the PC ecosystem exciting again. --- ### Microsoft Rolls Out Fix for Performance Issues Affecting Windows Server 2019 - Published: 2024-09-12 - Modified: 2024-09-12 - URL: https://petri.com/microsoft-fix-performance-issues-windows-server-2019/ - Categories: Windows Server 2019 - Tags: News, Windows Server 2019 - Article Type: News Microsoft has issued a fix for a bug that was previously causing performance issues on Windows Server 2019. The company confirmed on the Windows release health dashboard that this issue affected users who installed the August 2024 Patch Tuesday updates. Last month, IT administrators began reporting that the KB5041578 update causes certain Windows Server machines to slow down, become unresponsive, and experience high CPU usage, especially with Cryptographic Services. This bug primarily affects enterprise devices running antivirus scans on the Windows system folder. “A limited number of organizations reported that the issue was observed when the device was running an Antivirus software which performs scans against the ‘%systemroot%\system32\catroot2’ folder for Windows updates, due to an error with catalog enumeration. Our investigations so far indicate that this issue is limited to some specific scenarios,” Microsoft explained. According to Microsoft, Windows admins might notice increased CPU usage, disk latency, and overall reduced performance on their Windows Server 2019 devices. Additionally, Cryptographic Services (CryptSVC) may fail to start, which can affect security-related functions. Administrators might also see issues such as a black screen at boot, prolonged startup times, or unresponsiveness. How to fix Windows Server 2019 performance issues On September 10, Microsoft released a patch (KB5043050) to fix performance issues on all affected Windows Server 2019 machines. The company advises IT admins to install this latest security update to resolve this problem on their devices. Microsoft also suggests that IT admins use the Group Policy Editor to apply the fix manually. To do... --- ### Microsoft Loop Now Supports Word, Excel, PowerPoint, and PDF File Uploads - Published: 2024-09-12 - Modified: 2024-09-13 - URL: https://petri.com/microsoft-loop-file-uploads-workspaces/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has rolled out a new update that enables users to upload Word, PowerPoint, Excel, and PDF files directly into Loop workspaces. This new file upload feature is available in preview for Microsoft Loop users. Microsoft Loop is a collaborative productivity app that provides a flexible canvas to brainstorm ideas and manage tasks together. It allows users to create and share interactive components such as lists, tables, and notes across different platforms, including Microsoft Teams, Outlook, and Word. The latest Microsoft Loop update now allows users to upload various file formats, including Word documents, PowerPoint presentations, Excel spreadsheets, and PDFs. While files larger than 250 GB are not supported, users can upload multiple files at once for seamless collaboration. “According to your feedback, many of you work across multiple file types (including Loop files) to collaborate with teammates, manage projects, or just collect knowledge around a topic. Now you can bring all these files together in a Loop Workspace using the “Upload a file” option,” Microsoft explained. Upload files to Loop workspaces (Image Credit: Microsoft) How to upload files to a Microsoft Loop workspace Microsoft says that users can upload a file to a Loop workspace by following the steps mentioned below: Open the Microsoft Loop app and navigate to the specific workspace. Click the “+ Create New” option and select Upload a file to access files stored on the device and network shares. Choose the file to upload to the Microsoft Loop workspace and click “Open. ” The file will... --- ### New Microsoft Planner Web App to Launch Next Month - What to Expect - Published: 2024-09-11 - Modified: 2024-09-11 - URL: https://petri.com/new-microsoft-planner-web-app-launch/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is set to launch a new Planner app that will replace the existing web version, aligning it with the Planner experience introduced in Teams earlier this year. The new app is designed to provide a central hub to let users access all their plans, projects, and to do lists. The new Microsoft Planner app offers various plan views (such as Grid, Board, Charts, Schedule) to help team members manage and coordinate work. It also provides some premium capabilities such as the Copilot AI assistant, Timeline (Gantt) view, sprints, dependencies, task history, team workload, custom fields, and goals management. “The new Microsoft Planner for the web brings together the simplicity of Microsoft To Do, the collaboration of Planner, the power of Microsoft Project, and the intelligence of Copilot for Microsoft 365 into a simple, scalable solution that spans individual task management to professional project management,” Microsoft explained. New Microsoft Planner app (Image Credit: Microsoft) At launch, the new Planner web app will lack several features, including the ability to open plans linked to Loop tasks, undo task deletions, and use the Board view in the "Assigned to me" section. Additionally, users won’t be able to add "Assigned to me" tasks or plans to an external calendar via iCalendar links. Microsoft plans to introduce these capabilities in early 2025. Deprecated features in Microsoft’s New Planner web app Microsoft has deprecated several features in the new Planner app due to low usage. These removed features include charts for pinned plans in Planner... --- ### Microsoft to Begin Forced Upgrades to Windows 11 version 23H2 Next Month - Published: 2024-09-11 - Modified: 2024-09-11 - URL: https://petri.com/microsoft-forced-upgrades-windows-11-version-23h2/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is preparing to roll out Windows 11 version 23H2 to users who are still running outdated versions of the OS. The company announced on the Windows Health Dashboard that this forced upgrade will affect systems running the Home and Pro editions of Windows 11 version 22H2, as well as the Enterprise, Education, and IoT Enterprise editions of Windows 11 version 21H2. Microsoft will release the final security update for these Windows 11 devices next month. After that, customers will be exposed to potential security threats and vulnerabilities. That’s why Microsoft will automatically upgrade Windows 11 21H2 and 22H2 users to version 23H2. “The upcoming October 2024 security update, to be released on October 8, 2024, will be the last update available for these editions. After this date, devices running these editions will no longer receive monthly security and preview updates containing protections from the latest security threats,” Microsoft explained. Microsoft notes that automatic updates will only apply to non-managed Windows 11 PCs. This means IT administrators must manually update their systems to protect users from emerging security threats. What’s new in Windows 11 version 23H2 Microsoft originally released the Windows 11 version 23H2 in October last year. The main new features in this update include Copilot in Windows, a modernized File Explorer, a new Windows Backup app, Wi-Fi 7 support, and a System Components page in Settings. Additionally, the Windows 365 Boot feature lets employees sign in directly to their Cloud PCs, while Windows 365 Switch enables access to... --- ### Microsoft Loop Vs OneNote: A Comprehensive Comparison - Published: 2024-09-11 - Modified: 2024-09-20 - URL: https://petri.com/loop-vs-onenote/ - Categories: 365 Apps - Tags: featured-top-right - Article Type: Overview Microsoft Loop vs OneNote, which is the right note-taking and collaboration tool for you? In this article, we will look at these two tools from Microsoft. Microsoft Loop is a new collaboration platform that integrates seamlessly with the Microsoft ecosystem of applications for real-time collaboration. OneNote on the other hand is a staple for personal and professional note-taking for Microsoft users. What is Microsoft Loop? Microsoft Loop is a collaboration platform for teamwork and productivity across Microsoft 365 apps. Loop enables cross-application collaboration through Loop components (previously Fluid Framework) that sync with other Microsoft 365 apps in real time. Whether you are a small business or a large enterprise, Microsoft Loop offers several features to enhance productivity. It is built around three core elements: Microsoft Loop (Image Credit: Sukesh Mudrakola/Petri. com) Loop components: These are portable pieces of content that stay in sync across all the places that they have been shared. Loop components such as lists, tables, and paragraphs can be shared and edited in real-time across multiple apps like Microsoft Teams, Outlook, and Word. Loop components stay in sync wherever they are used, ensuring everyone is always on the same page. Loop pages: Pages are flexible, collaborative places where teams can organize and share Loop components, files, links, and more. These pages serve as dynamic canvases for brainstorming, planning, and tracking projects. Loop workspaces: These are shared spaces where teams can gather all their Loop pages and components related to a specific project or initiative. Workspaces make it easy... --- ### Microsoft's September 2024 Patch Tuesday Update Fixes 79 Vulnerabilities - Published: 2024-09-11 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-september-2024-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Office 365, Windows 10 - Article Type: News Microsoft released yesterday the September 2024 Patch Tuesday updates for all supported versions of Windows 10 and Windows 11. This time around, Microsoft has addressed 79 new vulnerabilities in Windows, Office, Windows Hyper-V, Mark of the Web (MOTW), and other components. September 2024 Patch Tuesday updates fix 7 critical vulnerabilities According to the Zero Day Initiative, Microsoft has released a total of 71 security patches, with fixes for 7 critical vulnerabilities. CVE-2024-38014: This is a Windows Installer elevation-of-privilege vulnerability with a CVSS score of 7. 8 that affects Windows desktop and server systems. A successful exploit could give attackers unwanted privileges on the device. CVE-2024-38226: This is a security bypass vulnerability in Microsoft Publisher with a CVSS rating of 7. 3. It allows an attacker to bypass Office macros that protect users against untrusted and malicious files. CVE-2024-38217: This is a Windows Mark of the Web (MOTW) security feature bypass flaw that blocks harmful files and content downloaded from the Internet. Threat actors could exploit this flaw by convincing the victim to download and open a malicious file to evade MOTW protections in Windows. CVE-2024-43491: The zero-day Windows Update remote-code execution vulnerability affects PCs running Windows 10 version 1507. Microsoft dropped support for Windows 10 version 1507 back in May 2017. However, Windows 10 Enterprise 2015 LTSB and Windows 10 IoT Enterprise 2015 LTSB will remain supported until October 2025. Microsoft has addressed this flaw in the September 2024 Servicing stack update and the Windows security update. CVE-2024-38018 and CVE-2024-43464: The two... --- ### Microsoft and Oracle Strengthen Cloud Partnership with Major Updates to Oracle Database@Azure - Published: 2024-09-10 - Modified: 2024-09-10 - URL: https://petri.com/microsoft-updates-oracle-databaseazure/ - Categories: Microsoft Azure - Tags: Microsoft, News, Oracle - Article Type: News Microsoft and Oracle have announced a slew of updates for the Oracle Database@Azure service. This solution allows customers to run Oracle Database workloads within the Microsoft Azure environment. Microsoft has announced the public preview of new Fabric integration with OCI GoldenGate. Microsoft Fabric is a new analytics and data platform that combines various services like Power BI, Azure Synapse Analytics, and Azure Data Factory. On the other hand, OCI GoldenGate is a real-time data integration and replication service that is offered by Oracle Cloud Infrastructure (OCI). "The combination of OCI GoldenGate's continuous, low-latency data availability in Microsoft Fabric's comprehensive data and analytics tools, like Power Bl and Copilot, enables customers to connect their essential data sources -- both Oracle and non-Oracle -- to drive better insights and decision-making," said Brett Tanzer, Vice President, Product Management for the Azure Solutions & Ecosystem Team. Oracle Database@Azure integration with Microsoft Sentinel Microsoft has introduced a new integration between Oracle Database@Azure and Microsoft Sentinel. This new integration allows organizations to extend their threat intelligence tools in order to protect Oracle Exadata Database Service and the infrastructure supporting Oracle Database@Azure and the Oracle Database services. Furthermore, Microsoft has launched new Oracle Database@Azure’s certifications for privacy, payment services, and healthcare. These certifications are designed to help customers meet regulatory requirements. Oracle Database@Azure regional expansion (Image Credit: Microsoft) Microsoft has announced that the Oracle Zero Data Loss Autonomous Recovery Service is now generally available for businesses. This data protection solution is designed for Oracle Database@Azure users running... --- ### Parallels Desktop 20 for Mac Launches with New AI Toolkit and Management Tools for Businesses - Published: 2024-09-10 - Modified: 2024-09-10 - URL: https://petri.com/parallels-desktop-20-for-mac/ - Categories: Artificial Intelligence - Tags: News, Parallels Desktop 20 for Mac - Article Type: News Parallels has announced the release of Parallels Desktop 20 for macOS. Parallels Desktop for Mac lets Mac users run macOS, Windows, and various Linux distributions in virtual machines, and it's currently the only officially supported solution for using Windows 11 on Apple Silicon Macs. Parallels Desktop 20 for Mac includes a new Parallels AI package, which provides a pre-configured virtual machine with 14 AI development toolsets, sample code, as well as detailed instructions. The AI VM works completely offline and lets users disable network access and customize resources according to their needs. “As PCs become more AI-capable, we believe AI will soon be standard on every desktop. This shift challenges developers to update their applications to fully leverage AI-enabled PCs,” said Prashant Ketkar, CTO at Parallels. “That’s why we created the Parallels AI Package: to equip development teams—whether experts or beginners—with accessible AI models and code suggestions. This enables ISVs to build AI-enabled applications in minutes, significantly boosting productivity for every software development team using a Mac. ” The new Parallels AI package is included at no extra cost for customers with Parallels Desktop for Mac Business and Enterprise editions. It is also available for free to Parallels Desktop for Mac Pro users throughout 2024. Parallels Desktop 20 (Image credit: Parallels) According to Parallels, users running Windows 11 version 24H2 VMs on Apple Silicon Macs should experience up to an 80 percent performance boost for certain workloads. Moreover, the latest version of Parallels Desktop for Mac brings a new shared folders... --- ### Microsoft Intune Gets New Management Features for iOS 18 and macOS 15 - Published: 2024-09-10 - Modified: 2025-02-10 - URL: https://petri.com/microsoft-intune-updates-ios-18-macos-15/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft Intune has introduced a suite of new features to support Apple’s iOS/iPadOS 18. 0 and macOS 15 Sequoia. With these updates, Intune will discontinue Apple User Enrollment via the Company Portal. Microsoft advises administrators to switch to alternative enrollment methods, such as account-driven User Enrollment. While existing devices will continue to work, users won’t be able to enroll any new devices. Microsoft also recommends using the new web-based device enrollment for iOS/iPadOS for a more seamless experience. Microsoft Intune adds new settings and payloads Microsoft has updated the Apple settings catalog to support the latest iOS/iPadOS and macOS configurations for mobile device management (MDM) and declarative device management (DDM). The new DDM settings include options for External/Network storage, private browsing, and allowing standard users to update the OS. Additionally, the MDM settings now include features such as a grace period for Platform SSO authentication, allowing ESIM outgoing transfers, and enabling XProtect malware uploads. Later this month, Microsoft will add new DDM settings such as Calculator, Basic Mode, Add Square Root, Input Modes - Unit Conversion, and System Behavior - Math Notes. Moreover, new MDM settings will include features like Non-Removable System Extensions, Non-Removable System Extensions UI, and the ability to hide Deny List URLs. Updates to ADE Setup Assistant screens The latest Microsoft Intune update enhances the Automated Device Enrollment (ADE) Setup Assistant screens within enrollment policies. Administrators can choose to show or hide the iOS/iPadOS Safety (Emergency SOS) setup pane, Action button configuration pane, and Intelligence setup pane. These... --- ### 3 Ways to Reduce Shadow IT - Published: 2024-09-09 - Modified: 2024-09-20 - URL: https://petri.com/3-ways-to-reduce-shadow-it/ - Categories: Security - Tags: featured-top-left - Article Type: Overview In this article, I look at three easy ways to help prevent shadow IT becoming a problem in your business. Shadow IT isn’t a new problem facing IT departments. But with the explosion in remote working, cloud Software-as-a-Service (SaaS) solutions, and generative AI it’s become harder than ever to mitigate the risks. What are the risks of Shadow IT? Shadow IT, as the name suggests, is the practice of employees using software that hasn’t been officially sanctioned by the business. It poses several challenges to IT departments and risks to the business. Discovering and controlling use of shadow IT can be difficult for IT departments. And businesses face several risks such as: data loss data breaches unauthorized access to data compliance issues reputational damage and much more. Shadow IT can even extend to unauthorized hardware use. But the biggest challenge is how to control use of unsanctioned apps and software. Here are three ways you can quickly get a handle on the risks of shadow IT. 1. Discover shadow IT in your organization You don’t know what you don’t know, right? The first step to mitigating the risk of shadow IT is to make sure you can monitor what software and apps employees are using. It’s important to remember that you have to go beyond auditing apps that are installed on end-user devices. Employees could be using cloud services that aren’t officially sanctioned by the business and many endpoint auditing solutions aren’t able to detect software use beyond what’s... --- ### Microsoft Introduces Enhanced File Integrity Monitoring with Defender for Endpoint - Published: 2024-09-09 - Modified: 2024-09-09 - URL: https://petri.com/file-integrity-monitoring-defender-for-endpoint/ - Categories: Security - Tags: Microsoft Defender for Endpoint, News - Article Type: News Microsoft has released a new version of File Integrity Monitoring (FIM) based on Defender for Endpoint in public preview for commercial customers. File Integration Monitoring is a security feature that analyzes the integrity of critical files to prevent any unauthorized changes. “To provide File Integrity Monitoring (FIM), Microsoft Defender for Endpoint collects data from machines according to collection rules. When the current state of your system files is compared with the state during the previous scan, FIM notifies you about suspicious modifications,” Microsoft explained. With File Integration Monitoring, administrators can track changes made to critical files and Windows registries from a predefined list. Additionally, they can examine the audited changes in a designated workspace. FIM also provides pre-configured settings and templates that align with specific regulatory requirements. The FIM feature is designed to notify users about potentially suspicious activities. These include the creation or deletion of files and registry keys, changes to files, and modifications to the registry. The alert also provides details about the change, including the source and account details. How to enable File Integrity Monitoring in the Azure portal To enable File Integrity Monitoring in the Azure portal, IT administrators will need to follow the steps listed below: Sign in to the Azure portal and select Microsoft Defender for Cloud. Click the Defender for Cloud menu and then select Environment settings. Choose the relevant subscription, find the Defender for Servers plan, and click Settings. Turn on the File Integrity Monitoring toggle button and select the “Edit configuration”... --- ### Office 2024 to Block ActiveX Controls by Default to Protect Users from Malware - Published: 2024-09-09 - Modified: 2024-09-09 - URL: https://petri.com/office-2024-block-activex-controls/ - Categories: Office - Tags: News, Office 2024 - Article Type: News Microsoft is set to disable ActiveX controls by default in its upcoming Office 2024 suite that will launch in October. This new security measure will affect popular Office desktop apps such as Microsoft Word, PowerPoint, Excel, and Visio. Microsoft introduced ActiveX in 1996, allowing developers to embed interactive controls in web pages and applications. In Office, ActiveX controls added interactive features like buttons and list boxes to documents. While modern browsers no longer support ActiveX, it can still be used in the Internet Explorer mode of Microsoft Edge. “Starting in new Office 2024, the default configuration setting for ActiveX objects will change from Prompt me before enabling all controls with minimal restrictions to Disable all controls without notification,” the company explained on the Microsoft 365 admin center. “Users will no longer be able to create or interact with ActiveX objects in Office documents when this change is implemented. " ActiveX Controls in Microsoft Excel (Image Credit: Microsoft) Microsoft explains that while some existing ActiveX objects will still appear as static images in Office documents, users will no longer be able to interact with them. Microsoft says that the apps will display the following message in the non-commercial versions of Microsoft Office: “The new default setting is equivalent to the existing DisableAllActiveX group policy setting” How to re-enable ActiveX controls in Office 2024 To re-enable these ActiveX controls, Office users will need to revert to the previous default configuration by adjusting specific settings in the Trust Center, the registry, or group policy... . --- ### Microsoft 365 Admin Center to Get Support for Continuous Access Evaluation (CAE) - Published: 2024-09-09 - Modified: 2024-09-09 - URL: https://petri.com/microsoft-365-admin-center-continuous-access-evaluation/ - Categories: Microsoft 365 - Tags: News - Article Type: News Microsoft is getting ready to add support for continuous access evaluation (CAE) to the Microsoft 365 admin center. The CAE feature will proactively terminate active user or admin sessions, prompt reauthentication, and enforce policy changes without relying on token expiration. What is continuous access evaluation? In Microsoft Entra ID, Continuous Access Evaluation (CAE) is a security feature that enforces access policies in real-time. Unlike traditional methods that rely on token expiration, CAE responds instantly to changes in user conditions, such as account compromises, network location changes, or password updates. “OAuth 2. 0 authentication (open authentication) traditionally relies on access token expiration to revoke a user's access to modern cloud services. Users or admins whose access rights have been terminated still have access to resources until the access token expires. For the Microsoft 365 admin center, this access can be as long as an hour, by default. With continuous access evaluation, a user's critical events and network location changes are continuously evaluated,” the company explained on the Microsoft 365 admin center. Continuous access evaluation - User revocation event flow (Image Credit: Microsoft) Key benefits of continuous access evaluation With continuous access evaluation, administrators can enforce IP location policies and track user-critical events to mitigate insider and data exfiltration threats. Additionally, it enables IT admins to reset passwords or disable compromised accounts instantly to prevent unauthorized access. CAE also provides the ability to immediately revoke user or admin access to organizational resources. Microsoft plans to roll out continuous access evaluation (CAE) support for... --- ### Microsoft’s Inflection AI Deal Gets Green Light from UK Regulator - Published: 2024-09-06 - Modified: 2024-09-06 - URL: https://petri.com/microsofts-inflection-ai-green-light-uk-regulator/ - Categories: Artificial Intelligence - Tags: AI, Microsoft, News - Article Type: News The UK’s Competition and Markets Authority has given the green light to Microsoft's acquisition of employees from Inflection AI. The antitrust regulator found that this "acquihire" of the AI startup’s team doesn’t affect competition in the enterprise AI space. The Competition and Markets Authority (CMA) shared the results of its investigation in a summary published this week. The CMA concluded that Microsoft’s acquisition of certain assets from Inflection AI qualifies as a "relevant merger situation. " This means that similar deals could face scrutiny for potential competition issues in the future. "Prior to the transaction, Inflection had a very small share of UK domain visits for chatbots and conversational AI tools and ... had not been able to materially increase or sustain its chatbot user numbers," the CMA wrote. "Competitors did not regard Inflection's capabilities with regard to EQ or other product innovation as a material competitive constraint. " Why is the CMA investigating Microsoft, Inflection AI deal? Inflection AI is a California-based artificial intelligence startup that was founded in 2022 by Reid Hoffman, Mustafa Suleyman, and Karén Simonyan. The company created Pi, an AI-powered personal assistant designed to offer emotional support and assistance. Pi engages in interactive conversations with users while providing personalized advice tailored to their unique interests and needs. Pi assists users with everyday tasks like studying and coding, helps brainstorm ideas, and encourages exploring new concepts. It’s available across multiple platforms, including the web and mobile. Pi was initially created... --- ### New Microsoft Planner App Gets Goals Feature to Enhance Task Management and Tracking - Published: 2024-09-06 - Modified: 2024-09-06 - URL: https://petri.com/new-microsoft-planner-app-goals/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has released an update for the new Planner app that brings a new Goals feature that helps users set, track, and manage goals. This update provides tools for organizing tasks, monitoring progress, and managing team contributions. In the Board view, the new Microsoft Planner users can organize tasks according to specific goals, making it easier to manage and align them with overall objectives. Users can also filter tasks by goal to focus on subtasks that directly support the goal. In the People view, Microsoft Planner users can group or filter tasks by goal to see who is responsible for each goal. In the Grid view, users can add a column to view the goal associated with each task, making it easier to understand the connection between tasks and goals. The Charts view lets users apply filters to view data related to specific goals. This feature helps users track progress and make informed decisions to ensure goals are met effectively. Goals in the new Microsoft Planner (Image Credit: Microsoft) How does the goals feature work in the new Microsoft Planner? To get started with the goals feature, Microsoft Planner users will need to follow these steps: In Microsoft Planner, open a premium plan and click Goals in the header to navigate to the Goals view. Now create goals by clicking the "Add goals" option and entering details such as the title, status, and end date. Select a goal and then add a description, priority, and start date. Select the "Connect... --- ### Windows Autopatch Adds PowerShell Scripts Support for Automated Policy Conflict Resolution - Published: 2024-09-06 - Modified: 2024-09-06 - URL: https://petri.com/windows-autopatch-powershell-scripts/ - Categories: PowerShell - Tags: News, PowerShell, Windows Autopatch - Article Type: News Microsoft has rolled out a new update that enables administrators to use PowerShell scripts with Windows Autopatch to resolve policy conflicts more efficiently. Windows Autopatch is a cloud-based service that helps organizations automate the update process for Windows, Microsoft 365 Apps for Enterprise, Microsoft Edge, and Microsoft Teams. What causes policy conflicts? Microsoft explains that policy conflicts can arise when multiple policies exist within a tenant, potentially blocking the successful deployment of Windows quality and feature updates. This issue is particularly common in environments that use Configuration Manager and Group Policy Objects (GPOs). When Windows Autopatch detects a policy conflict, it sends a notification to inform administrators about the issue. The alert includes details about the conflicting policy, its settings, and the associated Entra ID group. It also offers suggestions on how to resolve the policy conflict. How to use PowerShell scripts to remediate policy conflicts with Windows Autopatch? PowerShell scripts can automatically detect and resolve policy conflicts that might interfere with how Windows updates are applied within enterprise environments. For example, IT admins can use detection scripts to identify and log specific Windows Update policy settings that may cause deployment issues. The remediation scripts can also be used to remove certain registry keys that are responsible for conflicts with Windows Update policies. “The remediation script prepares a log file, defines a file name, and sets up a directory for logging the script’s output, or creates a log directory if one does not yet exist. Once you resolve the conflict,... --- ### Microsoft Entra ID Enhances Security with FIDO2 Provisioning APIs for Simplified Onboarding - Published: 2024-09-05 - Modified: 2024-09-05 - URL: https://petri.com/microsoft-entra-id-fido2-provisioning-apis/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Microsoft Entra ID has released FIDO2 provisioning APIs in public preview, allowing administrators to pre-configure security keys for employees. This update aims to simplify the onboarding process and strengthen defenses against phishing attacks. Microsoft emphasizes the need for businesses to adopt phishing-resistant methods, such as passkeys and certificate-based authentication (CBA), to safeguard users from Adversary-in-the-Middle (AitM) phishing and social engineering attacks. Previously, users had to manage the registration of their own security keys, but that is no longer the case. “While customers can still deploy security keys in their default configuration to their users, or allow users to bring their own security keys which requires self-service registration by a user, the APIs allow keys to be pre-provisioned for users, so users have an easier experience on first use,” Microsoft explained. How does Entra ID FIDO2 provisioning work? Microsoft has updated the FIDO2 passkey APIs to enable administrators to request data from Entra ID (formerly Azure Active Directory) needed to create a WebAuthn credential. This data can then be used to generate and register a passkey that allows users to authenticate without a password. Steps required to register a security key (Image Credit: Microsoft) Microsoft has also collaborated with 10 leading Credential Management System (CMS) providers to ensure that their platforms support the FIDO2 provisioning APIs. These include Yubico, Versasec, Axiad, HID, Selectec, Thales, and more. Microsoft Entra admin center to add more provisioning features In recent years, Microsoft has been improving its FIDO2 passkey capabilities and plans to add more... --- ### Microsoft Word Now Uses Copilot AI Assistant to Automatically Summarize Documents - Published: 2024-09-05 - Modified: 2024-09-05 - URL: https://petri.com/microsoft-word-copilot-summarize-documents/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has released an update that uses AI to automatically summarize documents in Microsoft Word. Powered by Copilot for Microsoft 365, this new feature generates clear and concise summaries as soon as a file is opened. Currently, Copilot AI doesn’t generate summaries for files opened in Word desktop apps. With this update, a summary created by Copilot will appear at the top of the document to help users quickly grasp the main points. Users can choose to hide the summary or open the Copilot chat pane to ask specific questions about the document. “We live in a world of content abundance, so we’re constantly looking for more efficient ways to process information. Microsoft Copilot can help alleviate this situation by providing an automatic summary at the top of your Word documents,” Microsoft explained. The automatic summary appears above the Word document (Image Credit: Microsoft) How does the automatic summary generation feature work in Microsoft Word? To try out this new feature, Microsoft Word users will need to follow the steps mentioned below: Open an existing Microsoft Word document to view the automatic summary that appears between the ribbon and the document. Click the View more button to expand the summary. Select the ^ icon at the top right corner of the dialog box to collapse the summary. Microsoft Word users who edit or update a document will need to click the “Check for new summary” button. Copilot for Microsoft 365 will then assess the changes to decide if a new... --- ### Microsoft's New Windows App to Bring Seamless Cloud Access Across All Devices This Fall - Published: 2024-09-05 - Modified: 2024-09-05 - URL: https://petri.com/microsoft-windows-app-general-availability-this-fall/ - Categories: Windows - Tags: News, Windows - Article Type: News Microsoft has announced that its new Windows App will be generally available on Windows, macOS, iOS, and the web this Fall. The company says that Android users can also look forward to accessing the app in public preview later this year. Microsoft launched the new Windows App in public preview back in November 2023. This app provides a central hub that allows users to access Windows 365, Azure Virtual Desktop, Remote Desktop, Microsoft Dev Box, as well as a remote PC. The Windows App provides support for custom display resolutions and scaling as well as device redirection for peripherals like storage devices, webcams, and printers. The Windows App also supports advanced security features such as single-sign on to ensure seamless and robust connection to Cloud PCs. It also provides passwordless authentication capabilities, including biometrics and FIDO security keys, tamper protection, watermarking, as well as screen capture blocking. Windows App on a desktop (Image Credit: Microsoft) What's new with the Windows App GA? Microsoft says that the new Windows App will replace the existing Windows 365 App on Windows PCs. “Employees can expect a smooth update process that ensures full feature parity, modern user experience (UX), and no functional regressions. This update will be available through the Microsoft Store,” Microsoft explained. The Windows App will replace the Remote Desktop app on macOS, iPhone, and iPad. It will be available through the Apple app store for iOS and macOS devices. Meanwhile, web users will get the new experience automatically upon accessing the... --- ### How to Mount an Exchange Database on a Different Server? - Published: 2024-09-04 - Modified: 2024-09-04 - URL: https://petri.com/mount-exchange-database-on-different-server/ - Categories: Exchange Server - Tags: featured-top-right, NoAD, NoAds - Article Type: How To, Sponsored Sometimes, situations arise when an Exchange Server administrator needs to mount an Exchange database on a different server. Here are a few examples: When migrating to another server, you need to physically transfer the database and re-mount it on the server. The Exchange Server has failed and after rebuilding it using recovery mode, you need to re-mount the databases on the server. Issues with a service hindering the databases from being mounted. Third-party software, like antivirus and backup, might have locked the files and are not allowing the database to be mounted. Since the Exchange Server standard license only allows mounting five databases, you need to move a database to a secondary server. Now, let’s look at how to mount an Exchange database on a different server. Process for mounting an Exchange database on a different server Start by making sure that the integrity of the Exchange database is good and that no transaction logs are missing or corrupted. Here’s the step-by-step process to mount the database on a different server. 1. Meet the prerequisites To run the commands for mounting an Exchange database, you should have the Databases role on the Exchange Server. This can be assigned from the Permissions node and the Admin Roles tab. Exchange Server database permissions (Image Credit: Bharat Bhushan/Petri. com) To rebuild the server, you should have the following media available: The operating system installation media. Installation media of the same installed version of Exchange Server. Up-to-date documentation for the server is also required... --- ### Qualcomm Launches New 8-Core Snapdragon X Plus Chip for Budget-Friendly Windows Laptops - Published: 2024-09-04 - Modified: 2024-09-04 - URL: https://petri.com/qualcomm-8-core-snapdragon-x-plus-chip/ - Categories: Hardware - Tags: 8-Core Snapdragon X Plus, News, Qualcomm - Article Type: News Qualcomm has announced today its first 8-core Snapdragon X Plus chip at IFA in Berlin. This new Snapdragon X SoC variant will power a more affordable range of Copilot+ PCs from all major hardware manufacturers. In June, Qualcomm launched its first wave of Snapdragon X processors called the 10-Core Snapdragon X Plus and 12-Core Snapdragon X Elite. These chips are designed for premium Windows PCs that start at $999. Now, Qualcomm plans to bring Snapdragon to a more affordable range of devices. The new 8-core Snapdragon X Plus chip will power new Copilot+ PCs from Acer, Asus, Dell, HP, Lenovo, and Samsung, with these laptops expected to start at prices as low as $800. "Copilot+ PCs, powered exclusively today by Snapdragon X Series platforms, launched the new generation in personal computing, made possible by our groundbreaking NPU. We are now bringing these transformative AI experiences, along with best-in-class performance and unprecedented battery life, to more users worldwide with Snapdragon X Plus 8-core," said Cristiano Amon, President and Chief Executive Officer, Qualcomm Incorporated. "We're proud to be working with our global OEM partners to restore performance leadership to the Windows ecosystem. " Qualcomm's 8-core Snapdragon X Plus chip outperforms competitors in benchmarks Qualcomm has reduced the cache size of this new 8-core chip (X1P-42-100) to just 30MB, compared to the 42MB that is available in all the Snapdragon X chips available in the market. This new chip is available for customers in two variants. The first one comes with a 1. 7 TFLOPS... --- ### Microsoft's Surface Laptop 7th Edition and Surface Pro 11th Edition Are New Copilot+ PCs for Businesses - Published: 2024-09-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-surface-laptop-7th-edition-surface-pro-11th-edition-for-business/ - Categories: Hardware - Tags: News, Surface Laptop, Surface Pro - Article Type: News Microsoft announced this morning its latest lineup of Surface devices tailored for business customers, including the Surface Laptop 7th Edition, Surface Pro 11th Edition, and the Surface Pro 10 with 5G. These new Surface devices are powered by Intel Core Ultra and Snapdragon X Elite and Plus processors, along with integrated Neural Processing Units (NPUs), designed to enhance both current and future AI-driven experiences in Windows 11. "We've been working closely with customers to evaluate and test these new devices, and the feedback has been incredible. Customers are seeing the value not only in fundamentals like performance and battery life but also in the new opportunities unlocked by 5G connectivity and AI experiences that can be unlocked with the Neural Processing Unit," said Nancie Gaskill, GM of Surface Business. https://www. youtube. com/watch? v=EPJJXgxmCXY New Surface Copilot+ PCs for Business Microsoft introduced today its new Surface Copilot+ PCs for businesses that are powered by Snapdragon X Elite and Plus processors. These new devices come with Microsoft Pluton security chips to help businesses protect their sensitive data against sophisticated threats. Surface Pro 11th Edition Microsoft claims that the Surface Pro for Business (11th Edition) is a 2-in-1 laptop that is designed to deliver more AI processing power than the iPad Pro M4. It supports various Copilot+ experiences like Windows Studio Effects, Live Captions with live translation, Image Creator and Restyle Image in Photos, and Windows Recall. Additionally, the enhanced voice focus leverages the Neural Processing Unit (NPU) to reduce background noise during video calls and... --- ### Windows 365 Enterprise Adds Enhanced Data Protection and Monitoring Capabilities - Published: 2024-09-03 - Modified: 2024-09-03 - URL: https://petri.com/windows-365-enterprise-updates-august-2024/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft has released some important updates for its Windows 365 Enterprise customers. The company has announced that Windows 365 support for Microsoft Purview Customer Key is now generally available for enterprise customers. Microsoft Purview Customer Key is a security feature designed to boost data protection in Microsoft 365 services. It allows customers to manage their own encryption keys for securing data at rest. This feature is available for SharePoint Online, Exchange Online, OneDrive for Business, and Windows 365 Cloud PCs. Encryption ciphers used to encrypt keys for Exchange Online (Image Credit: Microsoft) Microsoft highlights that this security feature uses customer-managed keys to encrypt disks, snapshots, and images of Windows 365 Cloud PCs. Customers can manage these keys using Azure Key Vault. This added layer of security helps protect against unauthorized access and supports compliance with regulatory requirements. Windows 365 Cloud PCs get Azure Monitor support and other updates Microsoft has introduced Azure Monitor support on Windows 365 Cloud PCs. This release lets administrators install Azure Monitor Agent on Windows 365 Enterprise and Windows 365 Government Cloud PCs. The Azure Monitor Agent tool is used to collect monitoring data from the guest operating system of Azure and hybrid virtual machines. Lastly, Microsoft has introduced a remote session lock feature that administrators when single sign-on is enabled between the default disconnect behavior and displaying the remote lock screen. This feature automatically locks a remote desktop session after a period of inactivity, enhancing security, especially in environments where users access sensitive information remotely... . --- ### Microsoft Teams Gets New Time-Based Prompts, Town Hall Graph APIs - Published: 2024-09-03 - Modified: 2024-09-03 - URL: https://petri.com/microsoft-teams-time-based-prompts-town/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft Teams introduced a host of new features that enhance collaboration and user experience in August 2024. The highlights include time-based prompts in Copilot in chat, channel cards, Town hall Graph APIs, and updates for Teams Rooms and devices. Chat & collaboration features For starters, Microsoft has added support for time-based prompts to Copilot in chat. This new feature allows users to include a clear time frame within their prompts to get targeted results, such as last month or December 2023. The AI assistant will only provide insights into information from messages sent within the specified time period. Additionally, Microsoft Teams users can now request to join a shared channel via a URL, with approval or denial managed by the channel owners. Microsoft has also introduced channel cards, which display key details such as the channel description, team name, last activity time, and membership information. The latest Microsoft Teams update allows external users to access applications in group chats. The installation of apps within group chats will adhere to the app policies of the hosting user's organization. Moreover, users can now show/hide the Discover feed in Teams channels by going to Settings > General. Time-based prompts - Image Credit: Microsoft Meetings features Microsoft has added support for intelligent meeting recap with AI-generated notes and tasks for GCC customers. The intelligent meeting recap feature also lets unscheduled town hall participants to search for meeting recordings by speaker name and topic title on Android devices. This capability requires a Teams premium license... . --- ### New Hotpatching Feature for Windows Server 2025 Evaluation VMs in Azure Cuts Downtime for Critical Updates - Published: 2024-08-30 - Modified: 2024-08-30 - URL: https://petri.com/hotpatching-windows-server-2025-evaluation-vms-in-azure/ - Categories: Windows Server - Tags: News, Windows Server 2025 - Article Type: News Microsoft has announced the public preview of Hotpatching support on Windows Server 2025 Evaluation virtual machines running in Azure. This new feature allows administrators to install security updates on supported VMs without system reboots. The Hotpatch feature begins by setting a baseline with the current Cumulative Update (CU) for Windows Server. Microsoft then releases a new CU periodically to update this baseline, followed by Hotpatches for the next two months. This approach ensures systems receive the latest fixes and security patches while minimizing downtime and disruption. "Hotpatches contains updates that don't require a reboot. Because Hotpatch patches the in-memory code of running processes without the need to restart the process, your applications are unaffected by the patching process. This action is separate from any potential performance and functionality implications of the patch itself," Microsoft explained. What are the advantages of the Hotpatching feature? Microsoft highlighted several benefits of Hotpatching for supported virtual machines. With Hotpatching, VMs need to install fewer binaries, resulting in smaller and quicker updates that use less storage space and processing power. Hotpatching also enables security updates to be applied without restarting the VMs, allowing IT admins to protect systems against vulnerabilities more quickly and without downtime. Administrators can use tools like Azure Update Manager to streamline the management and deployment of patches across multiple systems. To get started with Hotpatch, IT admins will need to create an Azure or Azure Stack HCI VM and then choose one of the following VMs: Windows Server 2022 Datacenter: Azure... --- ### First Ring Daily: Little ARMs - Published: 2024-08-30 - Modified: 2024-08-30 - URL: https://petri.com/first-ring-daily-little-arms/ - Categories: Hardware - Tags: copilot, First Ring Daily, News - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss recent reports suggesting the upcoming release of cheaper Copilot+ PCs, which may use a less powerful version of Qualcomm's ARM-based Snapdragon X Plus chip.  On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss recent reports suggesting the upcoming release of cheaper Copilot+ PCs, which may use a less powerful version of Qualcomm's ARM-based Snapdragon X Plus chip.   --- ### U.S. Agencies Sound Alarm on Rising Ransomware Attacks by Iranian Fox Kitten Group - Published: 2024-08-30 - Modified: 2024-08-30 - URL: https://petri.com/iranian-fox-kitten-ransomware-attacks/ - Categories: Security - Tags: CISA, News, Ransomware - Article Type: News The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have issued a warning that the Iranian state-sponsored Fox Kitten threat group is aggressively targeting organizations across the US and other nations. These cybercriminals are exploiting vulnerabilities in VPN and firewall devices to steal sensitive data and deploy ransomware. Fox Kitten, also known as Pioneer Kitten, UC757, Parisite, Lemon Sandstorm, and Rubidium, began its operations in 2017. CrowdStrike suspects that this threat actor is likely working as a contractor for the Iranian government. Federal agencies believe the group uses the Iranian firm "Danesh Novin Sahand" as a cover for its cyber-espionage activities and intelligence gathering on behalf of Iran. The FBI and CISA report that the threat actor continues to infiltrate networks across multiple sectors, including healthcare, defense, education, and finance. These hackers steal technical data and information from US defense contractors, as well as from organizations in the United Arab Emirates, Azerbaijan, and Israel. Image Source: Twitter What are the tactics used by the Fox Kitten group? According to the joint cybersecurity advisory, the Iranian threat group is helping ransomware operators (such as ALPHV (BlackCat), Ransomhouse, and NoEscape) gain initial access to compromised networks. Fox Kitten then receives a percentage of the ransom collected by these ransomware operators. The threat actor also collaborates with ransomware affiliates to encrypt the victim's networks. "A significant percentage of the group's US-focused cyber activity is in furtherance of obtaining and maintaining technical access to victim networks to enable future ransomware... --- ### Microsoft to Phase Out Azure Classic Administrator Roles on August 31 - Published: 2024-08-29 - Modified: 2024-08-29 - URL: https://petri.com/microsoft-retire-azure-classic-administrator-roles/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Microsoft is notifying commercial customers that Azure classic administrator roles will be retired on August 31, 2024. On the same date, the company also plans to phase out all Azure classic resources and Azure Service Manager. Azure classic administrator roles belong to the older Azure management model and include three main types: Account Administrator, Service Administrator, and Co-Administrator. The Account Administrator can create, manage, and cancel subscriptions, while the Service Administrator has full access to manage all services within the Azure portal. The Co-Administrator role has the same access as the Service Administrator but cannot change subscription associations. Microsoft plans to phase out Azure classic administrator roles in favor of Azure Role-Based Access Control (RBAC), which offers more granular and flexible access management. "You may continue using these Azure classic admin roles until they're retired. However, starting 3 April 2024, you'll no longer be able to add new Co-Administrator roles through the Azure portal," Microsoft wrote in an email sent to IT admins. What are the key benefits of Azure Role-Based Access Control (RBAC)? Azure Role-Based Access Control (RBAC) enhances security by assigning precise access levels based on roles to prevent unauthorized access. It also simplifies permission management to make it easier for IT admins to handle dynamic cloud environments. Additionally, RBAC provides detailed access control and audit capabilities to help organizations meet compliance requirements. It also offers granular access management to ensure end users have only the necessary permissions and centralizes access management across all Azure resources. Microsoft advises... --- ### Exchange Server 2016 and Dynamics 365 PSA to Reach End of Support in 2025 — Plan Your Migration Now - Published: 2024-08-29 - Modified: 2024-08-29 - URL: https://petri.com/exchange-server-2016-dynamics-365-psa-end-of-support/ - Categories: Exchange Server - Tags: Exchange Server 2016, News - Article Type: News Microsoft has revealed that Exchange Server 2016 and Dynamics 365 Project Service Automation (PSA) will reach the end of their support lifecycle in 2025. While Exchange Server 2016 already reached end of mainstream support in October 2020, its extended support phase will end on October 14, 2025. Microsoft will stop providing technical support, bug fixes, and security patches for Exchange Server 2019. The next version of Exchange Server is slated for release in the third quarter of 2025. For those maintaining on-premises environments, Microsoft recommends upgrading to Exchange Server 2019, with an in-place upgrade option to Exchange Server Subscription Edition (SE) available once it is released. Exchange architecture (Image Credits: Microsoft) How to prepare for the end of support for Exchange Server 2016 Microsoft has outlined steps for administrators to transition from Exchange Server 2016 to Exchange Server 2019. This involves updating third-party applications, reconfiguring client access services, and migrating all Exchange 2016 mailboxes to the newer version. After completing the migration, Microsoft recommends placing Exchange 2016 servers in maintenance mode for one week to check for any issues. If no problems arise, administrators can proceed with uninstalling the legacy servers. They will need to perform some post-uninstallation tasks depending on the organization's operational requirements. These include removing the Exchange 2016 accounts from Active Directory, deleting Exchange 2016 servers as targets for other services, removing Exchange 2016 name records from DNS, and more. Microsoft to kill off Dynamics 365 PSA in March 2025 Microsoft has announced that support for Dynamics... --- ### Microsoft's Entra Connect Servers Get New Defender for Identity Sensor to Combat Cyber Threats - Published: 2024-08-29 - Modified: 2024-08-29 - URL: https://petri.com/entra-connect-servers-defender-for-identity-sensor/ - Categories: Security - Tags: Microsoft Defender for Identity, News - Article Type: News Microsoft has released a new Defender for Identity sensor tailored for Entra Connect servers, enhancing security measures against credential theft and privilege escalation. This new offering provides organizations with advanced tools to monitor, detect, and respond to potential security threats. Microsoft Entra Connect is a tool that enables organizations to link their on-premises directories with Entra ID (previously Azure Active Directory). It offers single sign-on capabilities, allowing seamless access to both on-premises and cloud resources. Entra Connect supports multiple sign-in methods, including pass-through authentication, password synchronization, and integration with third-party identity providers. "The new Microsoft Defender for Identity sensor for Entra Connect servers provides comprehensive monitoring of synchronization activities between Entra Connect and Active Directory, offering crucial insights into potential security threats and unusual activities," Microsoft explained. Entra Connect sensor on Identities Settings page (Image Credits: Microsoft) New detections and posture recommendations Microsoft Defender for Identity now offers new security alerts and posture recommendations for Entra Connect. There is a new feature that helps administrators detect unusual or suspicious login attempts on Entra Connect servers. This makes it easier to respond to potential threats like credential theft and other malicious activities. The Defender for Identity tool can also monitor when permissions are used in unauthorized or harmful ways. Additionally, Microsoft Defender for Identity detects suspicious writeback activities by Entra Connect on sensitive user accounts. Writeback refers to the process of syncing changes made in the cloud back to the on-premises Active Directory. This security feature helps prevent unauthorized password resets... --- ### How Microsoft Evolved from Active Directory Red Forest to the Enterprise Access Model > Learn about the history of Active Directory Red Forest and how the enterprise [hybrid] landscape dictated Microsoft's new privileged access management model. - Published: 2024-08-29 - Modified: 2024-09-20 - URL: https://petri.com/active-directory-red-forest/ - Categories: Active Directory (AD), Identity Management - Article Type: Overview Over ten years ago, Microsoft announced the EASE or Active Directory Enhanced Security Admin Environment. Otherwise known as your Active Directory Red Forest, it isolates your privileged access administrative accounts in Active Directory (AD). Over the last four years, Microsoft has accounted for the retirement of the ESAE in favor of a more modern privileged access strategy called the Enterprise Access Model (EAM). Learn about the history of Active Directory Red Forest and how the enterprise landscape dictated Microsoft's new privileged access management model. What is Active Directory Red Forest? The Active Directory Enhanced Security Admin Environment has a few 'aliases' you may know - 'Active Directory Red Forest', 'Admin Forest', or even 'Hardened Forest. ' This is Microsoft's legacy architecture built to secure your Windows Server Active Directory environment - namely your privileged accounts. These include accounts in the Schema Admins, Enterprise Admins, Domain Admins, etc. security groups. Microsoft Active Directory Red Forest (Image Credit: Microsoft) The purpose was to create an isolated Active Directory forest to house these important accounts. All of your 'Tier-0' (or critically important and vulnerable) accounts were stored here. However, it is important to note that around four years ago, Microsoft announced the retirement of this architecture and no longer recommends it. Why was the EASE retired? Microsoft retired this approach mainly due to the changing and evolving landscape of enterprise networks. Because this solution was built ten years ago when Active Directory on-premises was the mainstream, its limitations, and failings became apparent... --- ### Microsoft's OneDrive Web App to Add New Search Capabilities to Improve File Discovery and Management - Published: 2024-08-28 - Modified: 2024-08-28 - URL: https://petri.com/microsoft-onedrive-new-search-experience/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is about to add a new search experience to its OneDrive web app next month. This new search results page will feature advanced filters and a clickable location column to quickly locate files across OneDrive, shared folders, and document libraries. Currently, Microsoft OneDrive users face issues while filtering search results by date or file type and locating files with similar names. The upcoming release will address these issues by introducing new filters for file types and modification dates. It should help users quickly narrow down results and find files created or updated within a specific timeframe. Additionally, users will be able to switch easily between different views, such as My Files, All Files, Current Folder, and Current Document Library. "We understand that searching within a folder or document library is important to you, and for that, we have simplified scoping options that will enable precise searches within folders, sites, or document libraries. We've also visually updated the interface with more metadata, ensuring you effortlessly identify the right files every time," the company explained on the Microsoft 365 roadmap. New search results page (Image Credits: Microsoft) New search experience coming to the OneDrive web app in September Microsoft plans to roll out the new search experience to OneDrive users in late September, with general availability expected by late October. This update will enhance users' ability to manage their files more efficiently, saving time and reducing frustration. In related news, Microsoft plans to begin archiving unlicensed OneDrive user accounts after 90... --- ### Hackers Exploit Microsoft Sway in New QR Code Phishing Campaign - Published: 2024-08-28 - Modified: 2024-08-28 - URL: https://petri.com/microsoft-sway-qr-code-phishing-campaign/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Cybersecurity researchers have identified a sophisticated phishing campaign that uses malicious QR codes to steal Office credentials by redirecting users to fake Microsoft Sway pages. This campaign employs tactics like transparent phishing and Cloudflare Turnstile to bypass security measures and trick users. It primarily affects victims in Asia and North America across sectors like manufacturing, technology, and finance. Cybersecurity researchers have uncovered a new phishing campaign using malicious QR codes to steal Office credentials, potentially luring users into fake Microsoft Sway pages. This tactic allows hackers to deceive victims with convincing, yet fraudulent, login prompts, putting sensitive information at risk. QR code phishing is a cyberattack where hackers create malicious QR codes that direct users to fake websites. These sites often appear legitimate and may ask for sensitive information like credit card details, personal data, or login credentials. Hackers can then use the stolen information for activities such as financial fraud, identity theft, and unauthorized account access. Sway is a free Microsoft 365 app that lets users create dynamic, interactive presentations, newsletters, blogs, and resumes. It's designed for easy and engaging content creation, with real-time collaboration features that allow multiple users to work on a project together simultaneously. How does the QR code phishing campaign work? The QR code phishing campaign was first spotted by Netskope Threat Labs in July 2024. It has primarily targeted victims in Asia and North America across various industries, including manufacturing, technology, and finance sectors. Hackers exploit various sharing methods, like email, links,... --- ### Microsoft Teams Gets New Admin Control to Block External Access in Trial-Only Tenants - Published: 2024-08-27 - Modified: 2024-08-27 - URL: https://petri.com/microsoft-teams-block-external-access-trial-only-tenants/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Last month, Microsoft announced plans to introduce a new admin control to restrict external access from trial-only tenants. This new Tenant Federation setting is now generally available to help organizations safeguard against malicious activities. What is a trial-only tenant? A trial-only tenant refers to a Teams service plan that includes trial subscriptions. Microsoft has discovered that threat actors frequently exploit these free Teams trials to conduct phishing or abuse attacks. The new “ExternalAccessWithTrialTenants” setting adds an extra layer of protection to safeguard users from these types of cyberattacks. With this release, Microsoft Teams will block all external access from users with trial-only subscriptions. These users will not be able to search for people and contact employees through calls, chats, or meetings. Microsoft Teams will also remove these users from existing chats. "This new setting only controls external communication with trial-only tenants within the same Microsoft 365 cloud environment. When enforcement starts, users from trial-only tenants in public clouds will be blocked by default from external communication with users in other Microsoft 365 cloud environments and with Microsoft Skype for Business server users," the company explained in a message on the Microsoft 365 admin center. How this new Tenant Federation setting will affect your organization? Microsoft states that this new Tenant Federation setting will block all external communication with trial-only tenants by default. However, IT admins can modify this setting by installing the latest PowerShell package (version 6. 4. 0) and running the following command: Set-CsTenantFederationConfiguration -ExternalAccessWithTrialTenants "Blocked. " It's important to note that... --- ### Microsoft Intune Gets Resource Performance Report, Other New Features - Published: 2024-08-26 - Modified: 2024-08-27 - URL: https://petri.com/microsoft-intune-resource-performance-report/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has rolled out a couple of new features and capabilities for Intune customers to enhance device performance management and customization. The company highlighted a new resource performance report, expanded support for Microsoft Managed Home Screen, and other new features. First off, Microsoft has introduced a new resource performance report that provides visibility into the performance of processors and RAM on physical Windows devices. This report consolidates data into a Resource performance score and offers a list of insights and recommendations for improvements. Administrators can access this report with the Advanced Analytics standalone add-on or Microsoft Intune Suite. "This comprehensive view enables admins to identify and address performance issues caused by CPU or RAM spikes, evaluate device performance across models, and make informed decisions about hardware replacements. Purchasing departments may even bring these reports to the negotiating table with original equipment manufacturers (OEMs)," Microsoft explained. Resource performance report (Image credits: Microsoft) Microsoft Intune adds expanded support for Microsoft Managed Home Screen Microsoft Intune has received a new update that brings support for Managed Home Screen (MHS) on Android Enterprise fully managed devices. This enterprise launcher app allows organizations to customize devices and control user access. The Managed Home Screen experience enables IT admins to give end users access to just the apps they need via a customizable launcher. Microsoft says that this capability was previously only available for user-less kiosk or shared devices. Last but not least, Microsoft has added new updated settings for declarative device management and mobile device... --- ### Microsoft to Host Windows Security Summit Following CrowdStrike Outage - Published: 2024-08-26 - Modified: 2024-08-26 - URL: https://petri.com/microsofts-windows-security-summit/ - Categories: Windows - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft will host the Windows Endpoint Security Ecosystem Summit at its Redmond headquarters next month. This upcoming summit will focus on enhancing Windows security in collaboration with government representatives and leading cybersecurity companies like CrowdStrike. Microsoft and its cybersecurity partners will explore innovative solutions such as eBPF technology and memory-safe programming languages. Microsoft is gearing up to host a summit on Windows security at its Redmond headquarters in September. The Windows Endpoint Security Ecosystem Summit will bring together government representatives and cybersecurity companies such as CrowdStrike to discuss ways to make the Windows operating system more resilient. Last month, CrowdStrike released a buggy content configuration update for its Falcon sensor that crashed 8. 5 million Windows devices globally. This major outage severely impacted Delta Air Lines by grounding thousands of flights and allegedly costing the company $500 million, prompting them to consider legal action against both Microsoft and CrowdStrike. The incident has sparked concerns among regulators and business leaders about the level of access third-party software vendors have to the Windows kernel. On September 10, Microsoft's engineers and key security partners will discuss ways to enhance Windows security and establish best practices for third-party software to prevent similar incidents in the future. The summit participants will also explore shifting applications to rely on user mode rather than the more vulnerable privileged kernel mode on Windows PCs. "The CrowdStrike outage in July 2024 presents important lessons for us to apply as an ecosystem," said Aidan Marcuss, CVP for Microsoft Windows... --- ### First Ring Daily: Authentic Windows - Published: 2024-08-23 - Modified: 2024-08-23 - URL: https://petri.com/first-ring-daily-authentic-windows/ - Categories: Windows, Windows 11 - Tags: First Ring Daily, News, Windows 11, Windows Recall - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss their issues with the Microsoft Authenticator app and the AI-powered Recall feature scheduled to enter public testing with Windows 11 Insiders in October. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss their issues with the Microsoft Authenticator app and the AI-powered Recall feature set to enter public testing with Windows 11 Insiders in October. --- ### Microsoft Releases New Message Recall Capabilities for Exchange Online Customers - Published: 2024-08-23 - Modified: 2024-08-23 - URL: https://petri.com/exchange-online-message-recall-updates/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Key Takeaways: Administrators can enable notifications to inform recipients when a message has been recalled. IT admins can set a time limit for recalling messages and now have support for recalling emails in complex routing scenarios. The Message Recall updatea is rolling of to all Exchange Online customers. Microsoft has rolled out several improvements for the Message Recall feature in Exchange Online. The latest update brings new capabilities like optional recall notifications, configurable recall limits, and support for external round-trip routing. Microsoft released the new cloud-based Message Recall feature for Exchange Online customers in February 2023. It's more than twice as effective as the classic version, with a higher success rate in recalling messages. This feature eliminates the need for recipients to have the Outlook for Windows app open for the recall to work. It can recall messages that have already been read, though IT admins can choose to disable this capability if needed. Recall notifications for recipients Previously, recalled messages were silently deleted from the recipient's mailbox without any notification. This sudden disappearance often caused confusion for those who had already seen or read the message. To address this issue, administrators can now enable recall notification emails for recipients. Once activated, recipients will receive an email informing them of the recall. IT admins can customize these notifications to apply to all recalled messages or only to those that have already been read. Optional Recall Notifications for Recipients (Image Credits: Microsoft) New Maximum Recallable Message Age setting Microsoft has introduced... --- ### Microsoft's Latest Update Causes Crashes on Dual-Boot Windows and Linux Devices - Published: 2024-08-22 - Modified: 2024-08-22 - URL: https://petri.com/microsofts-update-dual-boot-windows-linux/ - Categories: Windows - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft's August Patch Tuesday update has inadvertently caused boot issues on dual-boot systems running both Windows and Linux, leading to crashes during startup. The issue arises from a Windows security update intended to patch a vulnerability in the GRUB bootloader. Microsoft is collaborating with Linux partners to resolve the problem on affected systems. Microsoft is currently investigating a critical issue that is causing crashes on select dual-boot Windows and Linux machines. The company detailed on the Windows Health dashboard that the problem stems from the August 2024 Patch Tuesday updates and impacts systems running Windows 11, Windows 10, and Windows Server. Last week, Microsoft issued a security update to address a two-year-old vulnerability in the GRUB open-source bootloader, which is critical for the startup of many Linux devices. The flaw, identified as CVE-2022-2601 and rated 8. 6 out of 10 on the CVSS scale, could allow hackers to bypass secure boot protections and inject malicious code during the system's startup process. In its security advisory, Microsoft mentioned that the update would apply a Secure Boot Advanced Targeting (SBAT) value exclusively to devices configured to run only Windows, with no intended impact on dual-boot systems running both Linux and Windows. However, reports from various forums indicate that the security patch was mistakenly applied to some dual-boot devices. Microsoft has warned that Windows users who installed the latest security updates may face the following error when booting Linux: "Verifying shim SBAT data failed: Security Policy Violation. Something has gone seriously wrong:... --- ### Microsoft's Controversial Recall AI Feature Coming to Windows Insiders in October - Published: 2024-08-22 - Modified: 2024-08-28 - URL: https://petri.com/microsofts-recall-feature-windows-october/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is set to roll out its controversial Recall AI feature to Windows Insiders in October. This feature, which was originally scheduled for release with the first wave of Copilot+ PCs in June, was postponed indefinitely due to security and privacy concerns. What is Windows Recall and how does it work? The AI-powered Recall feature in Windows 11 periodically captures screenshots of everything users do on their Copilot+ PCs. These screenshots are processed with optical character recognition (OCR) and saved, along with the text, in a searchable database on the computer. Recall is designed to help users quickly locate documents, images, websites, emails, and more. In June, security researchers discovered that Recall data was stored in plain text within the OCR database. This meant that hackers, whether with physical or remote access to the PC, could potentially view and export the unencrypted snapshots and database. Windows Recall (Image Credits: Microsoft) What are the security concerns about Recall? To address privacy concerns, Microsoft announced significant changes to Windows Recall in an upcoming update. The AI-powered feature will be disabled by default when it launches on Copilot+ PCs. Additionally, the database will be encrypted at rest and require Windows Hello authentication each time users access it. Now, Microsoft announced that Windows Insiders will be able to access a preview of Recall sometime in October. However, the company did not provide additional details on the changes beyond what was previously shared in June. "As previously shared on June 13, we have adjusted our... --- ### Microsoft's New MDTI Premium Data Connector for Sentinel Boosts Threat Detection Capabilities - Published: 2024-08-21 - Modified: 2024-08-21 - URL: https://petri.com/microsofts-mdti-premium-data-connector-sentinel/ - Categories: Security - Tags: Microsoft Defender Threat Intelligence, News - Article Type: News Key Takeaways: Microsoft's new MDTI Premium data connector allows access to a vast repository of raw and finished intelligence to offer a broader view of potential security risks. This new tool is integrated into the Unified Security Operations Platform and Microsoft Sentinel. The MDTI Premium data connector's dynamic incident enrichment feature allows security teams to scale their response efforts effectively. Microsoft has introduced a new MDTI data connector within its Unified Security Operations Platform and standalone Sentinel experiences. This new tool advanced threat intelligence capabilities to help organizations analyze and address cyber threats more effectively. Microsoft Defender Threat Intelligence (MDTI) is a service that provides detailed insights into cyber threats. It offers high-fidelity Indicators of Compromise (IoCs) to help security teams enhance their threat detection, investigation, and response capabilities. Microsoft highlighted several use cases for the MDTI premium data connector in Sentinel. This tool allows for rapid threat detection by cross-referencing URLs, domains, and IPs with a constantly updated list of known bad indicators of compromise (IoCs). It also uses dynamic incident enrichment to help administrators manage and respond to security threats more effectively at scale. Additionally, Security teams can leverage the initial IoCs to dig deeper into MDTI's repository of raw and finished intelligence, including activity snapshots, articles, and Intel Profiles about actors tooling and vulnerabilities. Finished intelligence provides important information such as TTPs (tactics, techniques, and procedures), targeting information, and additional IoCs. "Customers can also explore advanced internet data sets created by amass collection network that maps threat... --- ### Microsoft Loop 2.0 Debuts with Revamped UI and New Collaboration Features - Published: 2024-08-21 - Modified: 2024-08-23 - URL: https://petri.com/microsoft-loop-2-0-ui-collaboration-features/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Loop 2. 0 introduces several notable features, including a streamlined UI and a new URL. The update also adds a new left-side navigation menu, making it easier to access favorites, recent items, and meeting notes. The new Loop features are gradually rolling out to all commercial customers. Microsoft has announced the release of Loop 2. 0 that brings several new features and enhancements to the productivity app. This update introduces a streamlined UI and a new URL, which is designed to reduce sign-in prompts and delays. Microsoft Loop is a collaborative app designed to help teams work together more effectively. It features Loop components (such as tables, lists, and notes) that can be shared and edited in real time across different Microsoft 365 apps. It's designed to compete with new productivity tools such as Notion and Coda. What's new in Microsoft Loop 2. 0? Microsoft Loop 2. 0 comes with a new left-side navigation menu that offers easier access to favorites, recent items, and meeting notes. A new "Create" button lets users add workspaces and draft ideas from anywhere within the app. This feature makes it more convenient for users to start a new project or jot down ideas without navigating to the Loop homepage. Additionally, Microsoft has added a new Favourites tab in the sidebar to help users quickly access frequently used workspaces. The new Recent tab also allows users to find their latest loop pages and components across all Microsoft 365 apps, including Teams, Outlook, OneNote, and Whiteboard. The... --- ### New Unified Microsoft Teams App Now Available for Personal and Work Accounts - Published: 2024-08-20 - Modified: 2024-08-20 - URL: https://petri.com/unified-microsoft-teams-personal-work-accounts/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The unified Microsoft Teams client allows users to easily toggle between personal and work accounts. IT administrators can configure policies within the new Teams app to enforce sign-in restrictions. The new Teams experience is being automatically rolled out to all Windows 11, Windows 10, and macOS users. Microsoft has launched a new unified Teams app on Windows 11, Windows 10, and macOS. This new version of Microsoft Teams is designed to let users switch between personal and work accounts easily. Microsoft started testing its new unified Teams client with Windows Insiders back in March this year. The company mentioned that this update is based on feedback from both consumers and commercial customers, who wanted a single desktop app for seamless switching between multiple accounts. This new unified Microsoft Teams app uses separate windows for both personal and work accounts. Users can manage and switch between accounts by clicking the profile picture in the upper right corner of the app. It also allows users to choose their preferred account when joining meetings and enables joining as a guest without needing to sign in. Microsoft highlighted that the new app lets users with personal accounts schedule free Teams meetings and create communities similar to those on Discord. These communities can be used for chatting, file sharing, and group video calls with friends and family. " All users, including those on Windows 10 and Mac, can now connect and collaborate with anyone, anytime - for free - when signing in with... --- ### New Vulnerabilities in Microsoft Apps Compromise User Privacy on macOS - Published: 2024-08-20 - Modified: 2024-08-20 - URL: https://petri.com/microsoft-apps-vulnerability-macos/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Researchers have found new vulnerabilities in major Microsoft apps for macOS, including Teams, Outlook, and Word. These security flaws allow hackers to access users' microphones and cameras, record data, and escalate privileges without consent. Microsoft has addressed the issue in some apps like Teams and OneNote, but others, including Word and Excel, remain vulnerable. Cybersecurity researchers have disclosed eight critical vulnerabilities in Microsoft apps for macOS. This new security flaws expose users to potential attacks where hackers could steal sensitive data, secretly record video and audio, and gain elevated control over the Mac device. A new report from cybersecurity group Cisco Talos reveals that new vulnerabilities affecting eight major Microsoft apps for macOS, including Microsoft Teams, Outlook, PowerPoint, Word, OneNote, and Excel, could allow hackers to access users' microphones and cameras without permission. These exploits enable attackers to inject malicious code into the apps' running processes in order to compromise user privacy and security. Apple's security model relies on the Transparency, Consent, and Control (TCC) framework, which manages and enforces privacy settings for user data and services on Mac devices. The TCC framework also regulates app permissions and controls access to system features like location services, microphones, cameras, photo libraries, and other files. Each application requests permissions from the TCC framework through entitlements. Researchers discovered that the exploits allow malicious software to misuse the permissions granted to Microsoft apps. For example, hackers could exploit these vulnerabilities to perform malicious activities like recording audio and video or sending emails... --- ### Microsoft Offers Workaround to Fix Bug Causing Classic Outlook to Crash at Startup - Published: 2024-08-19 - Modified: 2024-08-19 - URL: https://petri.com/microsoft-bug-classic-outlook-crash/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has cofirmed that a bug in the classic Outlook for Windows (version 2407 or higher) is causing the app to crash during startup or in Safe Mode. The company has provided a workaround that to address this problem until a permanent fix is released. Microsoft has also acknowledged a separate issue preventing classic Outlook users from signing in or adding Gmail accounts. Microsoft is working to fix a critical bug that causes the classic Outlook for Windows to crash during startup or when launching in Safe Mode. The company detailed in a support document that this issue affects users running version 2407 (Build 17830. 20138 or higher). Microsoft advises users to check if they're affected by this issue by looking for crash Event 1000 or Event 1001 in the Windows Event Viewer Application Log. Several users reported that this problem specifically impacts Office 365 accounts and cannot be resolved by reverting to an earlier build. “After updating to Version 2407 Build 17830. 20138 or higher you find that Outlook may unexpectedly close at start up. Outlook will also close if you test in Safe Mode,” Microsoft explained. “This issue has been found to occur if the server-based rules for the M365 email account are corrupted or that Outlook cannot process. ” Microsoft Outlook crash error (Image Credits: Microsoft Tech community forums/John211wapiti) Workaround to fix Outlook startup crashes Microsoft is working on an update to fix the bug, which will be released to customers in the coming weeks. In the meantime,... --- ### Microsoft to Mandate Multifactor Authentication for Azure Sign-Ins - Published: 2024-08-19 - Modified: 2024-08-19 - URL: https://petri.com/microsoft-mandate-multifactor-authentication-azure/ - Categories: Microsoft Azure - Tags: Azure, multifactor authentication, News - Article Type: News Key Takeaways: Microsoft will begin enforcing multifactor authentication (MFA) for all Azure sign-ins starting October 15, 2024. Microsoft has recommended administrators to enable MFA for seamless access to Azure and admin portals. Microsoft has provided the option to postpone enforcement until April 2025 for organizations needing more time. Microsoft is set to enforce multifactor authentication (MFA) for all Azure sign-ins. The company has urged administrators to activate MFA for their tenants ahead of the October 15 deadline to avoid disruptions in accessing Azure and admin portals. Microsoft first announced its plans to implement automatic enforcement of multifactor authentication by default in May this year. This policy change is part of Microsoft's broader initiative to strengthen digital security, complementing its planned $20 billion investment in security over the next five years. Microsoft's research shows multifactor authentication can block 99. 2% of account compromise attacks. The company is committed to using securely managed, phishing-resistant MFA to protect all Azure accounts. “One of the pillars of Microsoft’s Secure Future Initiative (SFI) is dedicated to protecting identities and secrets—we want to reduce the risk of unauthorized access by implementing and enforcing best-in-class standards across all identity and secrets infrastructure, and user and application authentication and authorization,” Microsoft explained. What is Microsoft's two-phase MFA rollout plan? Microsoft plans to roll out the mandatory multifactor authentication requirement in two phases. Starting in October, IT admins will be required to use MFA when signing into the Microsoft Azure portal, Microsoft Entra admin center, and Microsoft Intune admin center... . --- ### Microsoft Copilot to Add Enterprise Data Protection Capabilities for Entra Accounts - Published: 2024-08-16 - Modified: 2024-08-16 - URL: https://petri.com/microsoft-copilot-enterprise-data-protection-entra-users/ - Categories: Microsoft Copilot - Tags: Microsoft Copilot, News - Article Type: News Key Takeaways: Microsoft Copilot is getting an update that includes enterprise data protection (EDP) capabilities for users with Entra accounts. Microsoft assures that Copilot won’t use user data for training AI models, and all access controls and policies set by organizations will be applicable. Microsoft has introduced a new ad-free user interface tailored for work and school accounts. Microsoft Copilot will add enterprise data protection (EDP) capabilities for users with Entra accounts next month, offering robust security features at no additional cost. This update will not only bolster data privacy and compliance but also introduce an ad-free interface tailored for work and educational environments. Microsoft Copilot is an AI assistant that helps users create content, find information, and generate images, among other tasks. It provides free access to OpenAI’s GPT-4 and DALL-E 3 models through a web browser, allowing users to access web data. On the other hand, Copilot for Microsoft 365 not only accesses web data but also integrates with Microsoft Graph and Microsoft 365 apps. “EDP refers to controls and commitments, under the Data Protection Addendum and Product Terms, that apply to customer data for users of Copilot for Microsoft 365 and Microsoft Copilot. This means that security, privacy, and compliance controls and commitments available for Copilot for Microsoft 365 will extend to Microsoft Copilot prompts and responses,” Microsoft explained. What are the advantages of enterprise data protection? Microsoft emphasized the key benefits of enterprise data protection in its Copilot service, which helps safeguard customer data through encryption,... --- ### Microsoft Unveils New Admin Policy for Seamless Transition to New Outlook for Windows - Published: 2024-08-15 - Modified: 2024-08-15 - URL: https://petri.com/microsoft-policy-new-outlook-for-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft’s new policy will allow IT administrators to transition users from the classic Outlook desktop app to the new Outlook for Windows client. The policy includes settings to re-initiate the migration process for users who revert to classic Outlook. Administrators will be able to set policies to manage the interval between migration attempts. Microsoft is set to introduce a new admin policy that will streamline the transition from the classic Outlook desktop app to the new Outlook for Windows. The company announced on the Microsoft 365 admin center that this new 'Admin-Controlled Migration to New Outlook' policy will become generally available later this month. With the new migration policy, administrators will be able to switch users from the classic version of Outlook to the new Outlook for Windows app in three steps. Essentially, each step will be triggered during a new app launch session, with prompts and messages guiding users through the migration process. In the first step, users will receive a notification encouraging them to switch to the new Outlook client. If they don't make the switch, a banner message will appear in the next session stating: “Your organization recommends using the new Outlook for Windows. If you skip this now, you’ll be taken to the new experience the next time you start Outlook. ” Lastly, the classic version of Outlook will display a prompt urging users to switch to the new Outlook for Windows. However, users will still be able to revert to classic Outlook at any... --- ### Microsoft Patches BitLocker Recovery Issue Affecting Windows 11 and 10 PCs - Published: 2024-08-15 - Modified: 2024-08-15 - URL: https://petri.com/microsoft-fixes-bitlocker-recovery-windows/ - Categories: Windows 10 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has fixed a bug that caused Windows PCs to boot into BitLocker recovery mode. The BitLocker recovery issue particularly impacted Windows 11, Windows 10, and Windows Server machines. Users are advised to install the latest update to resolve the problem on Windows systems. Microsoft has fixed an issue that was causing Windows PCs to boot into BitLocker recovery mode. The company recommends all affected customers to install the latest update on their Windows machines to fix the problem. What is BitLocker? BitLocker is a full disk encryption feature included with certain Windows versions. It’s designed to protect data by encrypting the entire drive using strong encryption algorithms such as AES (Advanced Encryption Standard). This security feature helps to prevent any unauthorized users from accessing any sensitive information stored on the Windows device. BitLocker recovery is the process of restoring access to a computer or drive encrypted with BitLocker. To recover an encrypted drive, users need a BitLocker Recovery Key or other recovery information, especially in cases like hardware changes, a lost or damaged TPM, or data corruption. Windows automatically saves a copy of the recovery key in the user's Microsoft account. What is the problem? Last month, Microsoft confirmed on the Windows release health dashboard that users might see a BitLocker recovery screen following the installation of the July 2024 Patch Tuesday updates. This problem particularly affected customers with the Device Encryption feature enabled on machines running Windows 10 and Windows 11 and multiple versions of Windows... --- ### Microsoft Lists Gets New Drag and Drop Feature to Reorder List Items - Published: 2024-08-14 - Modified: 2024-08-14 - URL: https://petri.com/microsoft-lists-drag-and-drop-reorder-list-items/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Lists has added a new drag and drop feature that allows users to easily reorder list items. The feature supports multiple views, such as gallery, grid, and board, and is compatible with screen readers. The drag-and-drop function is disabled when a sort order is applied, and users cannot undo or redo drag-and-drop actions. Microsoft has released a new update to make list organization easier and more intuitive in its Lists app. This new highly anticipated drag and drop feature allows users to quickly rearrange list items to suit their workflow. The Microsoft Lists app is designed to help users track and organize information. It offers customizable lists, built-in templates, and seamless integration with Teams, SharePoint, and other Microsoft 365 apps. Users can also set up rules and alerts as well as access their lists from any device. In Microsoft Lists, the new drag-and-drop feature supports different views, including gallery view, grid view, and board view. This capability also works with the group by and filter options in the Lists app. “You will now be able to drag and drop seamlessly with this new feature for Microsoft Lists! You can easily start using this option on any new or existing list to arrange your items. You can also drag and drop multiple items at once to reorder them, giving you more ways to organize and stay on top of your work,” Microsoft explained. Drag and drop items in Microsoft Lists (Image Credits: Microsoft) How to use drag and... --- ### Microsoft Releases August 2024 Patch Tuesday Updates for Windows 11 and Windows 10 - Published: 2024-08-14 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-august-2024-patch-tuesday-updates/ - Categories: Windows 10 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft released the August 2024 Patch Tuesday updates, addressing 90 vulnerabilities, including seven critical ones, such as remote code execution and privilege escalation flaws. The August 2024 update introduces the ability for users to drag app shortcuts from the Start menu to the Taskbar in Windows 11. Windows 11 version 22H2 Home and Pro editions will reach end of support on October 8, 2024. Microsoft has released the August 2024 Patch Tuesday updates for Windows 11 and Windows 10. This month, Microsoft addressed 90 new vulnerabilities in Windows, Office, Azure, Co-Pilot, and other components. Microsoft is reminding customers that the Home and Pro editions of Windows 11 version 22H2 will reach end of support on October 8. The company recommends users to upgrade to the latest version of Windows 11 to continue receiving security and non-security updates. August 2024 Patch Tuesday Updates fix 90 vulnerabilities According to the Zero Day Initiative, Microsoft has released a total of 90 security patches, with fixes for seven critical vulnerabilities. Here’s a list of the most important security flaws you should know about this month: CVE-2024-38189: This is a Microsoft Project remote code execution vulnerability with an 8. 8 CVSS rating. It affects organizations that have disabled the VBA Macro Notification Settings on their computer systems. This flaw requires an attacker to execute arbitrary code remotely by tricking a user into opening a malicious Microsoft Office Project file. CVE-2024-38178: This is a memory corruption vulnerability in Windows Scripting Engine memory or Script Host... . --- ### Not Able to Connect to Microsoft Azure Arc and Azure Stack HCI Endpoints > Since mid-June 2024, some customers were not able to connect to Microsoft Azure services like Azure Arc Resource Bridge and Azure VMware Solution. In this article, Microsoft's Flo Fox looks at what you can do to resolve the issues. - Published: 2024-08-13 - Modified: 2024-09-20 - URL: https://petri.com/not-able-to-connect-to-microsoft-azure-arc-stack-hci/ - Categories: Azure Stack HCI, Microsoft Azure - Tags: Azure Arc, Azure Stack HCI - Article Type: How To Since mid-June 2024, some Microsoft customers have been reporting Azure Arc and Azure Stack HCI connectivity issues from on-premises devices to the cloud service endpoints. Devices were not able to connect to Microsoft Azure services like Azure Arc Resource Bridge and Azure VMware Solution. The issues have mostly been reported by customers with restrictive firewall or proxy rules, using IP address ranges or restrictive URL filtering. In this article, I’ll look at what you can do to resolve the issues. Not able to connect to Microsoft Azure services The issues and connectivity limitations are caused by changes Microsoft made to Azure Arc on June 17, 2024. Microsoft moved the Azure Arc services to Azure Front Door instead of simple load balancing and gateways. Azure Front Door makes sense for a solution like Azure Arc with global inbound connections and  an endless volume of clients and systems. It allows for better performance, scalability, and reliability over regular load balancers and single endpoints. What is Azure Front Door? Azure Front Door is a content delivery network based on 192 and more Microsoft edge locations with Points of Presence in 109 metropolitan areas. It also adds additional features like DDoS prevention and additional Web Application Firewall features. Azure Front Door also makes use of Microsoft’s own threat intelligence, which is used to protect cloud services like Microsoft 365, Xbox, and other services. https://www. youtube. com/watch? v=-4FQYxV9mAE What is Azure Front Door? (Video credit - Microsoft) As all Microsoft’s services are automated with nearly zero human... --- ### Microsoft Entra Verified ID Gets New Face Check Feature to Strengthen Protection Against Digital Impersonation - Published: 2024-08-13 - Modified: 2024-08-13 - URL: https://petri.com/microsoft-entra-verified-id-face-check-feature/ - Categories: Active Directory (AD) - Tags: Microsoft Entra, News - Article Type: News Key Takeaways: Microsoft's Face Check feature uses Azure AI to perform real-time facial matching with trusted identity documents to offer stronger protection against impersonation. Organizations can easily set up, issue, and customize verifiable credentials to meet various needs. Face Check is a premium feature with accessible pricing, including a free trial with limited verifications and a pay-as-you-go model. Microsoft has announced that the new Face Check feature is now generally available for Entra Verified ID customers. This new service allows organizations to securely issue verifiable credentials for validating essential claims such as education, employment, residence, and certifications. Microsoft Entra Verified ID is a decentralized service that enables businesses and organizations to securely issue and verify digital credentials. It allows users to manage their credentials in a digital wallet on their personal devices. Organizations can quickly configure and issue credentials, which can be customized to meet specific needs. Microsoft highlighted the growing importance of identity verification in response to increasingly sophisticated impersonation tactics like deepfakes. The company says that traditional methods like CAPTCHA are becoming easier for impersonators to bypass, which makes advanced verification essential for enterprise customers. How does the Face Check feature work? Microsoft launched Face Check in public preview for its Entra Verified ID service back in February 2024. This feature uses Azure AI Face API to match a person's real-time selfie with a trusted identity document like a driving license, an employment ID, or passport. The Verified ID feature in the Authenticator app generates a confidence score... --- ### How Hackers Could Exploit Microsoft Copilot's Vulnerabilities for Cyberattacks - Published: 2024-08-13 - Modified: 2024-08-13 - URL: https://petri.com/microsoft-copilots-vulnerabilities-cyberattacks/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Michael Bargury, CTO of Zenity, exposed multiple security flaws in Microsoft Copilot. He showcased how Copilot's vulnerabilities could be used for data exfiltration, altering financial information, and redirecting users to phishing sites. Organizations should monitor Copilot interactions closely and track potential prompt injections to mitigate security risks. The CTO of AI security firm Zenity has uncovered major security vulnerabilities within Microsoft Copilot, showing how cybercriminals could exploit these flaws to compromise organizational security. Michael Bargury's findings demonstrate the potential for threat actors to leverage Copilot's weaknesses to launch targeted attacks. Last week, Michael Bargury highlighted the security flaws in Microsoft Copilot during two sessions at the Black Hat security conference in Las Vegas. In his first presentation, he explained how developers using Copilot Studio could unintentionally create custom enterprise chatbots capable of exfiltrating data or bypassing security measures. The second session, titled “Living off Microsoft Copilot,” focused on the risks of Copilot chatbots, such as prompt injection. New Red-Team tool to enhance Copilot security Bargury launched a new LOLCopilot tool for Microsoft Copilot, Copilot Studio, and Power Platform. This red teaming tool enables ethical hackers to alter the default Copilot configuration using prompt injection. It allows them to directly inject prompts into a Copilot chatbot, bypassing built-in security measures to modify parameters and instructions within the model. In his Black Hat presentation, Bargury demonstrated how an attacker could manipulate Copilot to change banking information and steal money from a victim’s account. Additionally, the hacker could access limited information... --- ### Microsoft Discovers Security Vulnerabilities in OpenVPN – What You Need to Know - Published: 2024-08-12 - Modified: 2024-08-12 - URL: https://petri.com/microsoft-security-vulnerabilities-openvpn/ - Categories: Security - Tags: News, OpenVPN - Article Type: News Key Takeaways: Microsoft has disclosed multiple security flaws in OpenVPN that could enable remote code execution and unauthorized access on various platforms. The vulnerabilities affect OpenVPN versions older than 2. 5. 10 and 2. 6. 10. Microsoft advises updating to the latest OpenVPN versions and disconnecting affected clients from the Internet. Microsoft has disclosed a series of security vulnerabilities in OpenVPN that could allow attackers to execute remote code and gain unauthorized access to targeted endpoints. These newly discovered flaws present significant risks to the integrity and confidentiality of affected systems. What is OpenVPN? OpenVPN is open-source software designed to create a secure virtual private network (VPN). It enables users to safely connect remote computers to a company’s internal network. OpenVPN supports all major platforms, including macOS, Windows, Linux, Android, and iOS. OpenVPN client-server model (Image Credits: Microsoft) How do hackers exploit OpenVPN vulnerabilities? Microsoft first reported the medium-severity vulnerabilities to OpenVPN back in March 2024. The first flaw (tracked as CVE-2024-27459) impacts the openvpnserv component, which could cause Denial of service (DoS) and local privilege escalation (LPE) on Windows PCs. The second vulnerability (CVE-2024-24974) allows unauthorized access to Windows machines. Furthermore, the third security flaw (CVE-2024-27903) can be exploited by hackers to deploy malicious plugins on Android, iOS, macOS, and BSD. Lastly, CVE-2024-1305 can be exploited to launch DoS attacks via the Windows TAP driver. “All the identified vulnerabilities can be exploited once an attacker gains access to a user’s OpenVPN credentials, which could be accomplished using credential theft techniques, such as purchasing... --- ### Microsoft to Impose Fees on Unlicensed OneDrive for Business Accounts - Published: 2024-08-12 - Modified: 2024-08-12 - URL: https://petri.com/microsoft-fees-unlicensed-onedrive-accounts/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft OneDrive will automatically archive user accounts that have been unlicensed for more than 90 days. Organizations will incur fees for storing and reactivating these archived accounts. Microsoft advises IT admins to identify and manage unlicensed accounts before the new changes take effect in January 2025. Microsoft has announced some important changes to its storage policies for unlicensed OneDrive accounts. Starting in January 2025, Microsoft OneDrive will automatically archive any user accounts that have remained unlicensed for over 90 days. Causes and risks of unlicensed OneDrive accounts According to Microsoft, unlicensed accounts can exist within a tenant for several reasons. For instance, these accounts are retained because they fall under a retention policy that prevents their deletion. In some cases, the user may no longer have a valid OneDrive license, such as when the license is removed, but the user isn’t deleted from Microsoft Entra ID. Microsoft warns that unlicensed accounts can create significant security and compliance risks in enterprise environments. Additionally, these accounts could cause confusion and lead to file duplication. Microsoft to auto-archive unlicensed OneDrive accounts in 2025 Once archived, Microsoft OneDrive users will lose access to unlicensed accounts. Administrators will be required to enable unlicensed account billing in the Microsoft 365 admin center in order to retrieve these archived files. It will be applicable to all unlicensed OneDrive accounts within the organization. “There is a fee of $0. 05/GB/month to store unlicensed accounts in the Microsoft 365 Archive, and a fee of $0. 60/GB to reactivate accounts... --- ### First Ring Daily: Google's Illegal Search Monopoly - Published: 2024-08-09 - Modified: 2024-08-09 - URL: https://petri.com/first-ring-daily-googles-illegal-search-monopoly/ - Categories: Cloud Computing - Tags: First Ring Daily, Google, Google Search, News, Search - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Google losing its US antitrust case over its search monopoly, and how the company's search deals with Apple and Mozilla may have made it impossible for Microsoft and other companies to create better search engines. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Google losing its US antitrust case over its search monopoly, and how the company's search deals with Apple and Mozilla may have made it impossible for Microsoft and other companies to create better search engines. --- ### New Windows Update Flaw Lets Hackers Downgrade Fully Patched PCs - Published: 2024-08-09 - Modified: 2024-08-09 - URL: https://petri.com/windows-update-downgrade-pcs/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: A newly discovered vulnerability in Windows Update allows attackers to downgrade critical OS components. This security flaw makes fully patched systems susceptible to thousands of previously fixed vulnerabilities. Microsoft is actively working on mitigations and advises users to follow security recommendations to reduce the risk of exploitation. Cybersecurity researchers have uncovered a critical vulnerability in Windows Update that could be exploited to downgrade Windows PCs to older, insecure versions. These zero-day flaws could potentially allow attackers to gain complete control over a system. SafeBreach security researcher Alon Leviev discovered this vulnerability and unveiled it at the Black Hat conference in Las Vegas. He developed a proof-of-concept tool called "Windows Downdate" that can compromise the Windows Update process and downgrade critical OS components like dynamic link libraries (DLLs) and the NT Kernel. “I was able to make a fully patched Windows machine susceptible to thousands of past vulnerabilities, turning fixed vulnerabilities into zero-days and making the term ‘fully patched’ meaningless on any Windows machine in the world,” Leviev explained in a SafeBreach post. “After these downgrades, the OS reported that it was fully updated and was unable to install future updates, while recovery and scanning tools were unable to detect issues. ” The SafeBreach researcher also discovered that this exploit could target the entire virtualization stack in Windows. Leviev successfully downgraded Hyper-V’s hypervisor, Credential Guard’s Isolated User Mode Process, and the Secure Kernel. He also identified multiple methods to disable Windows' Virtualization-Based Security (VBS). The AFD. sys driver reverted to a... --- ### CrowdStrike to Give Customers Better Control Over Falcon Sensor Updates - Published: 2024-08-08 - Modified: 2024-08-08 - URL: https://petri.com/crowdstrike-control-falcon-sensor-updates/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: A faulty update in CrowdStrike's Falcon sensor feature led to the crash of more than 8. 5 million Windows systems worldwide. The crash was caused by an out-of-bounds memory read issue due to an extra input field in a content configuration update, which exceeded the system’s expected parameters. CrowdStrike plans to enhance its content configuration system with improved testing, deployment controls, and third-party code reviews. CrowdStrike has published a comprehensive investigation into a faulty update that caused the crash of over 8. 5 million Windows systems globally. In response, the company has outlined new measures to empower customers with greater control over the deployment of Rapid Response Content updates. According to CrowdStrike, the problem that caused the massive IT outage originates from a recent content update to a new Falcon sensor feature that was released in February 2024. This feature is designed to detect and analyze new attack techniques that exploit certain Windows mechanisms. Falcon sensor uses a specific template with a predefined set of 20 separate input fields. However, the July 19 content configuration update provided 21 input fields, which caused Windows machines to crash with BSOD errors. This issue impacted organizations across multiple sectors, including healthcare, airlines, financial services, manufacturing, and government. “Sensors that received the new version of Channel File 291 carrying the problematic content were exposed to a latent out-of-bounds read issue in the Content Interpreter,” CrowdStrike explained. “The Content Interpreter expected only 20 values. Therefore, the attempt to access the 21st value produced an out-of-bounds... --- ### Microsoft Rolls Out AI-Powered Copilot in OneDrive to Boost Productivity and Collaboration - Published: 2024-08-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-rolls-out-copilot-in-onedrive/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Copilot in OneDrive is designed to help users extract, summarize, and format information from their files using natural language commands. This new feature enhances productivity by enabling users to quickly understand, improve, and share document contents. The AI assistant supports various file types and multiple languages, including English, French, German, and more. Earlier this year, Microsoft unveiled that its OneDrive app would be enhanced with new Copilot capabilities this summer. The company has now started rolling out Copilot in OneDrive to commercial customers with a Copilot for Microsoft 365 subscription. The Copilot AI assistant is accessible on the OneDrive web app and the file viewer in Microsoft Teams, SharePoint, and OneDrive. It appears as a sidebar where users can ask open-ended questions about their files using natural language commands. This feature also lets users extract relevant information from files and format it in a table or document. “Copilot in OneDrive helps you do just this, offering you a quick and intuitive way to extract answers from your documents, presentations, spreadsheets, and other files. Simply give Copilot in OneDrive a prompt, and it will fetch what you need from your files, saving you time by giving you instant access to information contained deep within your files,” Microsoft explained. Copilot in OneDrive (Image Credits: Microsoft) Generate file summaries with Copilot in OneDrive With Copilot in OneDrive, users can also summarize the content of single or multiple files, including PDF documents. This feature is designed to help users quickly understand document... --- ### Hackers Exploit Design Flaws in Windows Smart App Control and SmartScreen for Malware Attacks - Published: 2024-08-07 - Modified: 2024-08-07 - URL: https://petri.com/hackers-flaws-windows-security-malware-attacks/ - Categories: Security, Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Security researchers have identified design flaws in Windows Smart App Control and SmartScreen. These vulnerabilities allow threat actors to bypass security warnings and run malicious apps on Windows devices. The study underscores the necessity for organizations to implement enhanced security measures to block malware attacks. Cybersecurity researchers have uncovered critical design flaws in Windows Smart App Control and SmartScreen. These vulnerabilities could potentially allow cybercriminals to run malicious apps without triggering security warnings on Windows devices. A new research study by Elastic Security Labs reveals that cybercriminals have devised several methods to bypass built-in protection mechanisms like Windows SmartScreen and Smart App Control (SAC). These methods include using digitally signed malware tools, reputation hijacking, reputation tampering, and specially crafted LNK files. How do Windows SmartScreen and Smart App Control features work? Windows SmartScreen is a security feature that helps to protect users against phishing websites and downloads. It uses a reputation-based protection mechanism to evaluate the safety of applications and files. Windows SmartScreen is also integrated into the Microsoft Edge web browser. In Windows 11, Microsoft introduced Windows Smart App Control to block potentially unwanted or malicious applications. This feature uses Microsoft’s intelligent cloud-powered security to assess whether an app is safe to run. If threat intelligence cannot make a clear determination, Windows Smart App Control relies on signature verification to evaluate the app’s trustworthiness. Techniques used to bypass reputation-based security mechanisms in Windows Specifically, security researchers have identified a vulnerability in how Windows handles shortcut files (LNK)... . --- ### Microsoft Teams Now Lets Users Enable/Disable the Discover Feed - Published: 2024-08-06 - Modified: 2024-08-06 - URL: https://petri.com/microsoft-teams-update-discover-feed/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Teams has introduced a new update that allows users to toggle the Discover feed on or off in channels. The Discover feed provides a personalized stream of important announcements and updates within Teams channels. The new Discover feed feature is now available in public preview for Microsoft Teams. Microsoft has released a new update that allows users to show or hide the Discover feed in Microsoft Teams. This new toggle setting is currently available for all users in the new Microsoft Teams client for Windows and macOS. Microsoft Teams introduced the new Discover feed for channels back in May 2024. It’s a personalized feature that helps users stay updated with important announcements they might have missed. Users can easily like, comment, and share posts directly from this feed within Teams channels “The Discover feed aims to make it easier for you to stay informed and engaged with the content that matters most to you in Microsoft Teams. Its purpose is to improve information discovery and awareness by delivering a personalized, relevance-based feed of Teams channel content. This feed helps you stay on top of important conversations you might otherwise miss due to information overload,” Microsoft explained. Discover feed in Microsoft Teams (Image Credits: Microsoft) How to show or hide the Discover feed in Microsoft Teams To show or hide the Discover feed, Microsoft Teams users will need to follow the steps mentioned below: Click the "Settings and more" button next to the profile picture in Microsoft Teams... --- ### Microsoft Entra ID vs Azure AD - What's the Difference? > As an IT Pro in the Microsoft online landscape, you've certainly been seeing 'Microsoft Entra ID' more often. What is this? Is there a difference between Entra ID vs Azure AD? It's actually very simple. Read on to find out more! - Published: 2024-08-06 - Modified: 2024-09-20 - URL: https://petri.com/entra-id-vs-azure-ad/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Microsoft Entra ID - Article Type: Overview As an IT Pro in the Microsoft online landscape, you've certainly been seeing 'Microsoft Entra ID' more often. What is this? Is there a difference between Entra ID vs Azure AD? It's actually very simple. Read on to find out more! Entra ID vs Azure AD So, what is Microsoft Entra ID? Well, it's very simple - it's the new name for Azure AD! Microsoft Entra ID - (Image Credit: Microsoft) As you can see, it is the new name for Azure AD. That is it. There are no functional changes in any portal websites, there are no backend or updated PowerShell commands directly related to this change. It is simply the new name - Microsoft Entra ID. But what is Microsoft Entra ID (Azure AD)? Microsoft Entra ID, previously Azure Active Directory (AAD), is Microsoft's cloud-based Identity and Access Management (IAM) solution. It allows organizations to manage and secure identities across users, groups, devices, and other applications. Here are some key features Microsoft Entra ID offers organizations of almost any size: Single Sign-On (SSO): This allows users to sign in once with their Entra ID credentials and access a multitude of applications without needing to keep signing in. Multi-Factor Authentication (MFA): This is a crucial layer of security every company should be using - when signing in, users enter their passwords and then utilize an additional factor or token (push notification, etc. ) to verify they are who they say they are. Conditional Access: This very welcome feature allows... --- ### Microsoft Enhances Windows 365 with Cross-Region Disaster Recovery and AI Recommendations - Published: 2024-08-05 - Modified: 2024-08-05 - URL: https://petri.com/windows-365-cross-region-disaster-recovery/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Key Takeaways: The cross-region disaster recovery feature creates temporary copies of Cloud PCs in geographically distant regions. Microsoft has launched GPU-enabled Cloud PCs for Windows 365 Enterprise and Frontline workers. Microsoft has released new security features like Purview Insider Risk Management and data encryption to ensure robust protection. Microsoft is celebrating the third-year anniversary of its Windows 365 service this month. The company also announced several new updates, including cross-region disaster recovery, GPU-enabled Cloud PCs, and enhanced security features. Microsoft originally launched Windows 365 for commercial customers back in July 2021. This service enables users to access Windows 10 and Windows 11 PCs on any device via a web browser. Users can also access Cloud PCs through the Windows 365 app on Windows 11 devices. Windows 365 is available in different editions such as Enterprise, Business, Government, and Frontline to cater to different organizational needs. Microsoft has introduced support for cross-region disaster recovery and data resilience for Windows 365 Cloud PCs. This feature creates temporary copies of Cloud PCs in different regions, ensuring users can continue working even if their primary region faces an outage. “This cross-region disaster recovery feature is easily configurable and integrated into existing reports and workflows, providing administrators with robust resilience and streamlined management to ensure business continuity even during challenging scenarios. It also reduces the risk of data loss and allows IT admins to quickly respond to unexpected disruptions,” said Scott Manchester – Vice President for Windows Cloud. Additionally, GPU-enabled Cloud PCs are now generally... --- ### First Ring Daily: Microsoft’s FY24 Q4 Earnings  - Published: 2024-08-02 - Modified: 2024-08-02 - URL: https://petri.com/first-ring-daily-microsofts-fy24-q4-earnings/ - Categories: Microsoft - Tags: First Ring Daily, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's FY24 Q4 earnings, which also wrap up Microsoft's first full fiscal year of the AI era. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's FY24 Q4 earnings, which also wrap up Microsoft's first full fiscal year of the AI era. --- ### Microsoft's New Outlook for Windows Now Generally Available for Commercial Customers - Published: 2024-08-02 - Modified: 2024-08-02 - URL: https://petri.com/new-outlook-for-windows-generally-available/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The new Outlook for Windows includes productivity enhancements such as Copilot integration, real-time collaboration with Loop components, and new meeting management options. Some key features from the classic version, like support for COM add-ins, are not yet available in the new Outlook for Windows. Microsoft plans to replace the classic Outlook app with the new version by 2029. Microsoft’s new web-based Outlook for Windows client is now generally available for commercial customers. This new app is still an opt-in experience that users can seamlessly enable within the classic Outlook desktop application. Microsoft launched the new Outlook for Windows in public preview in May 2022. This version includes Copilot capabilities, which are also available in classic Outlook, allowing users to draft emails, schedule meetings, and summarize recent conversations. Organizations need to pay $30 per user per month in addition to a Microsoft 365 commercial subscription to access the Copilot AI assistant in the new Outlook for Windows. Moreover, users can pin emails at the top of their inbox and drag emails to MY Day to convert them into tasks. “We’ve taken the familiarity and reliability of classic Outlook and improved it with a modern architecture that reduces device-resource consumption and drastically shortens the time required to deliver fixes and new capabilities to just weeks. This helps you spend less time resolving issues thanks to automatic updates that apply as soon as Outlook is opened,” Microsoft explained. Ask Copilot to draft an email or summarize recent emails (Image Credits: Microsoft)... --- ### Outlook: How to Convert OST to PST - Published: 2024-08-01 - Modified: 2024-09-20 - URL: https://petri.com/convert-ost-to-pst/ - Categories: Exchange Server, Microsoft 365, Outlook - Tags: Exchange Server, Outlook - Article Type: How To, Sponsored In this guide, you will learn about Outlook OST and PST files, why you might need to convert OST files to a PST, and how to convert OST files to PST format. What is an OST file? An OST file, or Offline Storage Table file, is a data file that is created by Microsoft Outlook when you add, or sign in using, an IMAP, Exchange, Outlook. com, or Microsoft 365 account. OST files allow users to work offline and synchronize offline changes to the mailbox server once the Internet connection is restored. They contain a user's mail items, such as emails, contacts, and calendar events, etc. OST files are by default encrypted using MAPIEntryID, making it difficult to open or import them into another Outlook profile or account. Therefore, you must convert the OST file to a PST (Personal Storage Table) file to access the OST file mail items in another account or profile. Below are some key points to remember about OST files: OST files store a local synchronized copy of all the mailbox data on the mailbox server. They enable Outlook users to have offline access to their emails, calendar items, contacts, and more. The file is commonly used in corporate or business environments where Microsoft Exchange (on-premises) or Microsoft 365 accounts are used. OST files improve Outlook performance as mail items are stored locally in the file and changes are synchronized to the mail server periodically. OST files cannot be accessed, opened, or imported into any application... --- ### Microsoft Teams Gets New Meeting Gallery, Custom Emojis and Reactions - Published: 2024-08-01 - Modified: 2024-08-01 - URL: https://petri.com/microsoft-teams-updates-july-2024/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has introduced a new meeting gallery view for Teams meetings. New capabilities for Teams events include drag-and-drop customization of presenter lists, content management for town halls and webinars. Microsoft Teams Premium users can now access built-in event templates. Last month, Microsoft Teams released a host of new features aimed at enhancing user experience and functionality. Highlights include an upgraded gallery view for meetings, new customization options for event organizers, and updates for Teams Rooms and devices. Microsoft Teams has introduced a new gallery view that automatically sizes tiles equally for all meeting participants. This gallery view displays 16 participants by default, but users can expand it to show up to 49 people. Users also have the option to remove or hide themselves from the main gallery. New gallery view (Image Credits: Microsoft) Furthermore, Microsoft has added new features for Teams events, including a drag-and-drop tool for organizers to customize the presenter list on webinar event pages. Organizers can also control what content participants see during town halls or webinars. Government customers can now host town hall events with up to 20,000 attendees. Microsoft Teams Premium customers can now use built-in event templates in Microsoft Mesh and rejoin past events using old links. Microsoft Mesh users can also access new avatar reactions and set personal boundaries. Chat & collaboration features Microsoft has introduced a feature in Teams chats that lets users create and upload custom emojis and reactions. Administrators can control this feature or restrict who can create... --- ### Microsoft 365 Backup Goes Live > Microsoft 365 Backup Goes Live: Advanced Backup and Recovery Solution for OneDrive, SharePoint, and Exchange Data - Published: 2024-08-01 - Modified: 2025-02-21 - URL: https://petri.com/microsoft-365-backup-solution/ - Categories: Microsoft 365 - Tags: featured-top-right, Microsoft 365, News - Article Type: News Key Takeaways: Microsoft 365 Backup provides businesses with a robust solution to back up and recover all OneDrive, SharePoint, and Exchange data. It's designed to ensure protection against ransomware attacks, accidental deletions, and other data loss scenarios. Microsoft 365 Backup operates on a pay-as-you-go model. Microsoft has officially launched its Microsoft 365 Backup solution for commercial customers. The new offering provides businesses with a robust way to quickly back up and recover their OneDrive, SharePoint, and Exchange data. Microsoft emphasized the importance of data protection for businesses due to the annual rise in ransomware attacks. Earlier this year, Microsoft 365 Backup was launched in public preview to help customers tackle these increasing threats. How does Microsoft 365 Backup work? Microsoft 365 Backup is a robust solution that offers comprehensive data protection by backing up OneDrive accounts, SharePoint sites, and Exchange mailboxes. It ensures fast recovery from common business continuity and disaster recovery (BCDR) scenarios, such as ransomware attacks, accidental deletions or overwrites, and malicious employee actions. “Microsoft 365 Backup provides business continuity peace of mind while offering fast backup with frequent recovery points and low average recovery times at mass scale. Many customers will see average speeds for mass restores that are 20 times faster than traditional means of backing up and restoring large volumes of Microsoft 365 data,” Microsoft explained. https://www. youtube. com/watch? v=gZxVOdQcilo With Microsoft 365 Backup, organizations can restore files, sites, and mailbox items individually or in batches. Customers can recover an entire SharePoint site, a specific OneDrive account, or select... --- ### Microsoft Sentinel Now Integrates with 1Password for Streamlined Security Management - Published: 2024-07-31 - Modified: 2024-07-31 - URL: https://petri.com/microsoft-sentinel-integration-1password/ - Categories: Security - Tags: Microsoft Sentinel, News - Article Type: News Key Takeaways: The new 1Password integration with Microsoft Sentinel allows IT admins to import 1Password Events API data into Sentinel. This integration provides real-time alerts and a customizable dashboard for tracking security events. The solution consolidates 1Password logs into Sentinel, offering insights into user adoption, item modifications, and file uploads. Microsoft has announced that a new 1Password integration is now generally available for Sentinel customers. This new tool enables organizations to import 1Password Events API data directly into Sentinel, enhancing their security oversight and management. 1Password is a secure password manager that allows users to store their passwords and sensitive information in an encrypted vault. It offers various features such as secure sharing, password generation, and automatic form filling. 1Password ensures the protection of users’ data with end-to-end encryption and two-factor authentication. “This brings visibility to 1Password audit events, sign-in activity, and shared item usage, with the full power of Microsoft Sentinel. You can get started right away with alerts and a dynamic, customizable dashboard thanks to out-of-the-box analytics rules and workbooks,” 1Password explained. The new 1Password integration with Microsoft Sentinel lets administrators monitor security events, such as failed login attempts and account changes, with real-time alerts. It also offers actionable suggestions to help proactively identify and address potential security threats and attacks. Additionally, 1Password for Microsoft Sentinel provides insights into user adoption, item changes, and file uploads, improving transparency and accountability in enterprises. It also offers a streamlined reporting experience by consolidating 1Password logs directly within Microsoft Sentinel. Proactive... --- ### Microsoft Confirms DDoS Attack Behind Latest Microsoft 365 and Azure Outage - Published: 2024-07-31 - Modified: 2024-07-31 - URL: https://petri.com/microsoft-365-azure-outage-ddos-attack/ - Categories: Microsoft 365, Microsoft Azure - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Azure experienced a major outage caused by a distributed denial-of-service (DDoS) attack, affecting several key services for nearly 10 hours. Impacted services included Microsoft 365 admin center, Entra, Intune, Power BI, and Power Platform. Microsoft's initial defense mechanisms against the DDoS attack inadvertently amplified its impact, leading to significant disruptions. Microsoft announced yesterday that its Azure cloud services experienced another major outage. The company confirmed that this widespread disruption was caused by a distributed denial-of-service (DDoS) attack. According to Microsoft, customers began reporting issues around 5 AM PST, stating they couldn't access several Microsoft 365 and Azure services. The company noted on its Azure Service status page that users may experience latency while performing actions or operations on the affected services. This major Azure outage, which lasted nearly 10 hours, impacted the Microsoft 365 admin center, Entra, Intune, Power BI, and Power Platform. However, Microsoft clarified that some services, including Microsoft Teams, Exchange Online, SharePoint Online, and OneDrive for Business, were not affected. Downdetector. com (Image Credits: Rabia Noureen/Petri. com) What caused the Microsoft 365 and Azure outage? Microsoft announced this morning that the recent Azure outage was initially caused by a distributed denial-of-service (DDoS) attack. A DDoS attack disrupts a server, service, or network by overwhelming it with excessive Internet traffic. Microsoft noticed a sudden spike in usage, which caused their Azure Front Door and Azure Content Delivery Network (CDN) services to underperform, leading to errors, timeouts, and delays for users. It's important to note that most companies... --- ### Microsoft to Add AI-Powered Intelligent Recap Feature to New Outlook for Windows - Published: 2024-07-30 - Modified: 2024-07-30 - URL: https://petri.com/microsoft-intelligent-recap-new-outlook-for-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft will soon integrate the AI-powered Intelligent Recap feature into the new Outlook for Windows. This feature will allow users to access AI-generated meeting notes, tasks, and other artifacts directly from their calendar. The new Outlook for Windows client will become generally available on August 1. Microsoft is set to enhance meeting productivity with its new AI-powered Intelligent Recap integration in the Outlook for Windows client. This feature allows meeting participants to effortlessly access AI-generated notes and tasks directly from their Outlook calendar. The Intelligent Recap feature uses AI to create summaries of key points, action items, and tasks discussed during Teams meetings. It offers personalized timeline markers for when a participant was mentioned, joined or left the meeting, and when screens were shared. This feature provides AI-generated notes and suggested tasks to help users quickly review and follow up on meetings. Currently, the Intelligent Recap feature is not available for users in the new Outlook for Windows client. However, the upcoming release will allow participants to automatically access all meeting artifacts in the new Outlook calendar shortly after a Microsoft Teams meeting ends. These artifacts include AI-generated meeting notes, name mentions, follow-up tasks, speaker identification, chapters, topics, and more. How to access Intelligent Recap in New Outlook for Windows According to Microsoft, users will be able to access the Intelligent Recap feature from the new Outlook calendar in two ways: Select a meeting in the Outlook calendar and click the View recap option to access the meeting... --- ### Microsoft Teams Enhances New Planner App with Quick Sharing, Persistent Filters, and More - Published: 2024-07-30 - Modified: 2024-07-30 - URL: https://petri.com/microsoft-teams-planner-quick-sharing/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has added new features to the Planner app in Microsoft Teams, including easy plan sharing via links and persistent filter and sorting options. Users can now view associated plans directly from task details and quickly create new tasks from the "Assigned tasks" card in the Viva Connections dashboard. The updates aim to enhance workflow efficiency and task management, with more features expected to be introduced in the coming months. Microsoft has introduced several new features to enhance the new Planner app within Microsoft Teams. These updates include streamlined sharing options, persistent filters for improved workflow efficiency, and the ability to view plans associated with specific tasks directly from the task details. Microsoft Teams began rolling out the new Planner experience in April 2024. This app unifies various task management and planning tools, such as Microsoft Planner, Microsoft Project, and Microsoft To Do, into one seamless experience. It lets Premium customers use Copilot in Planner to break down tasks into subtasks and gain insights on project status. Microsoft has introduced a new feature that lets users quickly share a plan without sending multiple emails. Users can simply copy a link to a specific plan and share it with their colleagues. This feature is accessible by clicking on a plan’s overflow menu on the My Plans page and selecting the "Copy link to plan” option. Copy Link to Plan (Image Credits: Microsoft) Microsoft has released a feature that lets users easily view the plan associated with a specific task... --- ### Microsoft Calls for Windows Kernel Access Restrictions Following Major CrowdStrike Outage - Published: 2024-07-29 - Modified: 2024-07-29 - URL: https://petri.com/microsoft-windows-changes-crowdstrike/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft is considering changes to Windows that would restrict third-party cybersecurity vendors from accessing the Windows kernel following the recent CrowdStrike outage. Microsoft has deployed over 5,000 IT support engineers to mitigate the issue for affected customers. Microsoft emphasizes the need for close cooperation with partners and the broader security community. Microsoft has hinted at some important changes to Windows aimed at preventing cybersecurity vendors from accessing the Windows kernel. In response to the recent CrowdStrike update fiasco, the company mobilized over 5,000 IT support engineers to assist affected customers in mitigating the widespread impact. According to CrowdStrike, the faulty sensory configuration update was released to its Falcon Platform on July 19. This software update caused a massive IT outage, leading to millions of Windows systems crashing with the infamous blue screen of death (BSOD) error messages. The outage affected TV networks, call centers, healthcare, banks, financial systems, and other critical systems worldwide. What caused the CrowdStrike outage? CrowdStrike attributed the issue to a bug in their testing software, which failed to properly validate the content update for its Falcon software. Falcon uses a special driver that operates at the kernel level to detect malicious behavior across the Windows operating system. While these kernel drivers are designed to enhance performance and prevent tampering with security solutions, they can also negatively impact the resilience of Windows devices. To address this issue, Microsoft tried to restrict third-party apps from accessing the kernel in Windows Vista back in 2006. However, this... --- ### Microsoft Confirms New BitLocker Recovery Mode Bug Affecting Windows PCs - Published: 2024-07-26 - Modified: 2024-07-26 - URL: https://petri.com/bitlocker-recovery-bug-windows/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has confirmed that some Windows devices are unexpectedly booting into the BitLocker recovery screen after the July 2024 Patch Tuesday updates. The BitLocker recovery bug affects Windows PCs that installed the July 2024 security update released on July 9. Microsoft is currently investigating the issue and working on a permanent fix. Microsoft is investigating a new issue that causes some Windows devices to enter the BitLocker recovery screen when booting up. The company acknowledged on the Windows Release Health Dashboard that the bug impacts users who installed the July 2024 Patch Tuesday updates. BitLocker is a full-disk encryption feature that helps users protect sensitive data or information from unauthorized access on Windows devices. The BitLocker recovery mode allows users to regain access to the encrypted device if they encounter issues during startup or when trying to access the data. It’s triggered under certain conditions, such as invalid TPM (Trusted Platform Module) information, forgotten BitLocker password, or changes to startup configuration. Microsoft notes that users affected by this issue will need to provide the BitLocker recovery key to regain access to their Windows devices. This bug affects all supported versions of Windows, including Windows 11 versions 23H2 and 22H2, Windows 10 version 21H2, Windows Server 2008, and Windows Server 2022. “This screen does not commonly appear after a Windows update. You are more likely to face this issue if you have the Device Encryption option enabled in Settings under Privacy & Security -> Device encryption. Resulting from this... --- ### First Ring Daily: The Real Y2K - Published: 2024-07-26 - Modified: 2024-07-26 - URL: https://petri.com/first-ring-daily-the-real-y2k/ - Categories: Microsoft, Windows - Tags: First Ring Daily, Microsoft, News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott look back at the impact of the massive CloudStrike outage that affected millions of Windows PCs. They also discuss Microsoft not taking the blame after being forced by the European Commission to open up Windows to third-party security companies. --- ### Microsoft Intune Gets New Copilot Integration to Simplify Device Data Retrieval - Published: 2024-07-26 - Modified: 2024-07-26 - URL: https://petri.com/microsoft-intune-copilot-device-data/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft Intune now uses Copilot to generate Kusto Query Language (KQL) queries, making it easier for IT admins to access real-time device data. IT admins can allow macOS users to download unmanaged apps directly through the Intune Company Portal app. A new update for the Windows 365 security baseline offers an improved reporting experience and faster deployment of baseline updates. Microsoft has unveiled several enhancements to its Intune service, aimed at streamlining endpoint management for commercial customers. These updates reduce the time spent on routine tasks, allowing administrators to focus on other priorities. Earlier this year, Microsoft introduced a device query feature in Intune Advanced Analytics that allows administrators to access real-time data on device status and configuration. This feature uses device queries written in Kusto Query Language (KQL), which is a specialized language not all IT admins may know. To simplify this process, Microsoft Intune admins can now use Copilot to request device information and context. The Copilot AI assistant generates KQL queries that can be used in Intune device queries. For example, admins can ask, "Show me expired certificates on this device" or "Does this device support TPM 2. 0? " This feature is currently available in public preview for customers with an Intune Advanced Analytics license. “This equips admins without comprehensive knowledge of KQL to get the data they need more quickly—and is an ideal example of how Copilot can and will continue to empower IT admins of all skill levels to perform advanced tasks with ease,... --- ### CrowdStrike to Overhaul Testing and Deployment Procedures to Prevent Massive Outages - Published: 2024-07-25 - Modified: 2024-07-25 - URL: https://petri.com/crowdstrike-overhaul-testing-prevent-outages/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: A flawed update from CrowdStrike led to the crash of approximately 8. 5 million Windows PCs, causing widespread disruption including emergency response systems and flight cancellations. The issue stemmed from a bug in CrowdStrike's Content Validator, which failed to detect corrupted content in a Rapid Response update, triggering system crashes and Blue Screen of Death (BSOD) errors. CrowdStrike has promised to enhance its testing protocols and implement staggered deployment strategies. Cybersecurity firm CrowdStrike has released a post-incident report detailing how a flawed update last week crashed around 8. 5 million Windows PCs. The company attributed the massive global IT outage, which disrupted emergency response systems and caused flight cancellations, to a bug in its test software. What led to the CrowdStrike outage? On July 19, CrowdStrike released a configuration update for its Falcon Sensor software, designed to gather information on current and ongoing security incidents. This sensor is a crucial component of the Falcon platform, which uses sensor data to identify security threats and system vulnerabilities. CrowdStrike usually tests its Rapid Response Content updates with the Content Validator before a wider deployment. However, in this case, a bug in the Content Validator failed to catch issues in the Rapid Response update, leading to the crash of millions of Windows machines. "Rapid Response Content is delivered as 'Template Instances,' which are instantiations of a given Template Type. Each Template Instance maps to specific behaviors for the sensor to observe, detect or prevent. Template Instances have a set of fields that can... --- ### Microsoft Improves Copilot in Planner (Preview) with Suggested Prompts and Other New Features - Published: 2024-07-24 - Modified: 2024-07-24 - URL: https://petri.com/microsoft-updates-copilot-in-planner-preview/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Copilot in Planner (preview) is now generally available for customers with a Project Plan 3 or Project Plan 5 subscription in the new Planner app in Microsoft Teams. The Copilot AI assistant allow users to set goals, break down tasks, and create detailed project plans using natural language prompts. Microsoft has introduced new suggested prompts and streamlined processes for adding subtasks and linking task. Microsoft announced that Copilot in Planner (preview) is generally available in the new Planner app in Microsoft Teams. The company has also incorporated user feedback to introduce several new features and capabilities to enhance the overall Copilot in Planner experience. Microsoft started rolling out the Copilot digital assistant in preview for the new Planner app in Teams in May 2024. This feature leverages generative AI to enhance project management by streamlining planning, execution, and tracking. It helps users set goals, break down tasks, and create detailed project plans based on natural language prompts. “With the power of generative AI, Copilot in Planner streamlines the planning, management, and execution of your work, keeping you informed as you achieve your goals. Copilot in Planner helps teams transform the way they work and collaborate on projects together,” Microsoft explained. Copilot in Planner (Image Credits: Microsoft) What's new in Copilot in Planner? Microsoft has added a new feature in Copilot for Planner that allows users to return to their previous chats. Moreover, the new suggested prompts help users better understand the question-and-answer features available in Copilot for Planner... . --- ### Microsoft Expands Copilot Dashboard to Copilot for Microsoft 365 Customers - Published: 2024-07-24 - Modified: 2024-07-24 - URL: https://petri.com/copilot-dashboard-copilot-for-microsoft-365/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The Microsoft Copilot Dashboard gives administrators an extensive overview of the AI assistant usage, integrated with Viva Insights to drive adoption and measure impact within their organization. Microsoft has introduced new settings in the Microsoft 365 Admin Center to let IT admins control access to the dashboard and manage organizational data. Microsoft is gradually rolling out the Copilot Dashboard to all Copilot for Microsoft 365 customers. Microsoft has started the rollout of its Copilot Dashboard for customers with a Copilot for Microsoft 365 subscription. This new tool provides administrators with a detailed, comprehensive view of Copilot AI assistant usage within their organizations. Microsoft launched its new Copilot Dashboard for commercial customers in April 2024. This tool is integrated with Viva Insights and helps organizations deploy Copilot, drive its adoption, and measure its impact on workplace behavior. The dashboard also provides actionable insights across key areas such as Readiness, Adoption, Impact, and Sentiment. “Users will now see data for all Copilot license holders, not just those users with a Viva Insights license. By including every employee with a Copilot license in the analyzed population, organizations gain a better understanding of the workforce to make data-driven decisions that support AI transformation,” Microsoft explained. Microsoft Copilot Dashboard – Impact Report (Image Credits: Microsoft) Microsoft 365 Admin Center gets new Copilot Dashboard settings Microsoft has also consolidated all Copilot Dashboard settings for the Global Administrator within the Microsoft 365 Admin Center. The new settings allow IT admins to control who can access... --- ### CISA Warns of Phishing Scams Exploiting CrowdStrike Outage Chaos - Published: 2024-07-23 - Modified: 2024-07-23 - URL: https://petri.com/cisa-phishing-scams-crowdstrike-outage/ - Categories: Security - Tags: News, Phishing, Security - Article Type: News Key Takeaways: Cybercriminals are capitalizing on the disruption caused by CrowdStrike's faulty update to target affected organizations. CISA warned that hackers are deploying fraudulent domains to distribute malware and execute phishing attacks. It's highly recommended to avoid clicking on suspicious links or emails and following only legitimate instructions to prevent further compromise. The Cybersecurity and Infrastructure Security Agency (CISA) has alerted that cybercriminals are seizing the turmoil from the recent CrowdStrike outage to launch attacks on affected businesses. The agency warns that these malicious actors are using malicious domains to distribute malware and compromise corporate networks. Last week, cybersecurity firm CrowdStrike released a faulty update for its Falcon Sensor software that caused a major IT outage worldwide. Users reported that the update triggered "blue screen of death" (BSOD) errors on their Windows systems, affecting critical sectors such as airports, banks, hospitals, and government organizations. CrowdStrike has since rolled back the update and deployed a fix to address the BSOD bug on affected computers. Microsoft reports that it has been collaborating with CrowdStrike to resolve the technical issue. The flawed update impacted approximately 8. 5 million Windows devices, which is less than 1 percent of all Windows machines worldwide. System administrators estimate that recovery could take several days, and in some cases, potentially a week or more for larger organizations. Phishing attacks surge following CrowdStrike outage According to CISA, hackers exploit the CrowdStrike outage by using fake domains to impersonate the company and send phishing emails to affected customers. These phishing campaigns... --- ### How to Recover Deleted Emails in Microsoft Exchange Server - Published: 2024-07-23 - Modified: 2024-07-23 - URL: https://petri.com/recover-deleted-emails/ - Categories: Exchange Online, Exchange Server, Microsoft 365 - Tags: Exchange Server, featured-top-right, NoAD, NoAds, Recovery - Article Type: How To, Sponsored In this article, Bharat Bhushan shows you how to recover deleted emails in Exchange Server. This article is sponsored by Stellar Info. Key takeaway It is simple to restore deleted emails from the Deleted Items folder in Outlook and Outlook on the Web (OWA). Follow these steps: Open the Deleted Items folder in Outlook. Find the deleted email, right-click on the email, and click Restore. Users may delete emails or other mailbox items accidentally while freeing space in their mailbox or data file. However, deleted items don’t get purged or permanently deleted immediately. Users can easily restore items from the Deleted Items folder in Outlook, within the retention period specified by your organization. When the retention period is over, deleted items can still be retrieved in Exchange Server. But before you can recover deleted items, you need to understand the places/folders where you can find the them. Where can you find deleted items in Exchange Server? In a Microsoft Exchange Server environment, there are three places where you can find deleted items and recover them. These are: Deleted Items folder: This folder is in the user’s Outlook. When an item is deleted, the user can simply restore it from this folder without any intervention from an administrator. Recover deleted items from server (Recoverable Items folder): This folder is also in the user’s Outlook. This folder is like a Recycle Bin for deleted items. When a user empties the Deleted Items folder, they can find and retrieve the items from... --- ### Microsoft Adds New Dynamic Watermarking Feature to Enhance Data Protection in Word, Excel, and PowerPoint - Published: 2024-07-23 - Modified: 2024-07-23 - URL: https://petri.com/microsoft-365-apps-dynamic-watermarking/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has introduced dynamic watermarking for Microsoft 365 apps like Word, Excel, and PowerPoint. This security feature displays the reader's email address and timestamp on the file content to prevent unauthorized sharing and data leaks. Dynamic watermarks won't appear in exported Office files or certain experiences like PowerPoint Live. Microsoft has announced the public preview of dynamic watermarking for Microsoft 365 apps, including Word, Excel, and PowerPoint. This new security feature allows administrators to configure sensitivity labels that display the reader’s email address and a date/timestamp directly on the file content, providing an additional layer of protection against unauthorized sharing and data leaks. Microsoft Purview Information Protection provides sensitivity labels to help IT admins classify and secure their organization’s data. These labels restrict access to sensitive files and prevent users from performing unauthorized actions. However, the sensitivity labels don't stop users from taking pictures of sensitive files or presentations shared online or during in-person meetings. Microsoft's new dynamic watermarking feature helps organizations prevent data leaks and unauthorized sharing within their organizations. “Dynamic watermarking is already supported in Teams meetings , and each participant will see their own email address overlaid on the meeting video or shared content. This deters participants from taking unauthorized screenshots or pictures of the meeting content,” Microsoft explained. Microsoft Word file with dynamic watermarking enabled (Image Credits: Microsoft) How to enable dynamic watermarking for Word, Excel, and PowerPoint To apply a sensitivity label with dynamic watermarking in Microsoft Word, users will need to follow... --- ### Microsoft Releases New Recovery Tool to Fix Windows Systems Hit by CrowdStrike Outage - Published: 2024-07-22 - Modified: 2024-07-22 - URL: https://petri.com/microsoft-crowdstrike-recovery-tool-windows/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has released a Recovery Tool to quickly restore Windows machines affected by the recent CrowdStrike outage. The CrowdStrike bug caused a widespread IT outage, affecting around 8. 5 million Windows devices globally. The new tool eliminates the need for manual steps to streamline the recovery process for organizations with numerous affected devices. Microsoft has released a new Recovery Tool designed to help IT administrators quickly restore Windows machines impacted by the recent CrowdStrike outage. This tool automates the recovery process by creating a bootable USB to expedite the restoration of affected devices. Last week, cybersecurity firm CrowdStrike released a buggy update for its Falcon security software, causing Windows systems to crash with a blue screen of death (BSOD) error message. The company confirmed that the bug doesn’t affect macOS and Linux machines. Microsoft estimates the outage impacted around 8. 5 million Windows devices globally, disrupting TV networks, airlines, 911 call centers, and other businesses worldwide. On Friday, CrowdStrike announced that it had identified the issue and rolled out an update to fix the bug that had caused the massive IT outage. Microsoft noted that some customers had to reboot their affected machines up to 15 times to apply the CrowdStrike update. However, some organizations reported that they still haven't received the automatic update. It's important to note that this requires administrators to manually boot into Safe Mode and delete the corrupted file from each computer. This process can be particularly time-consuming for organizations with hundreds of affected Windows devices... . --- ### First Ring Daily: Crowd Struck - Published: 2024-07-19 - Modified: 2024-07-19 - URL: https://petri.com/first-ring-daily-crowd-struck/ - Categories: Windows, Windows 10, Windows 11 - Tags: Microsoft, News, Outage, Windows, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the botched CloudStrike update that triggered a massive worldwide outage impacting Microsoft’s infrastructure and many other organizations. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the botched CloudStrike update that triggered a massive worldwide outage impacting Microsoft’s infrastructure and many other organizations. --- ### [Updated] Global IT Outage Linked to CrowdStrike Update Disrupts Critical Services Worldwide — What You Need to Know - Published: 2024-07-19 - Modified: 2024-08-01 - URL: https://petri.com/crowdstrike-update-global-it-outage/ - Categories: Windows - Tags: News, Windows - Article Type: News Key Takeaways: A recent CrowdStrike update has caused Blue Screen of Death (BSOD) errors on thousands of Windows machines, affecting critical sectors like airlines, banks, and emergency services globally. CrowdStrike has identified the problem, reverted the faulty update, and provided a workaround for affected Windows devices. The incident led to a significant drop in CrowdStrike's share price by over 19% in premarket trading. Cybersecurity provider CrowdStrike has acknowledged that a recent update is causing Blue Screen of Death (BSOD) errors on thousands of Windows machines globally. This outage has significantly disrupted organizations across diverse sectors, including airlines, banks, railway networks, news organizations, and emergency services. What is CrowdStrike? CrowdStrike is a cybersecurity technology company that provides cloud-delivered protection against security threats. The company was founded in 2011 and it’s known for its endpoint security, threat intelligence, and cyberattack response services. Essentially, CrowdStrike’s flagship product (called the Falcon platform) uses artificial intelligence (AI) to detect, prevent, and respond to security incidents in real time. The services of CrowdStrike are designed to help organizations protect their IT infrastructure by monitoring and analyzing security data, identifying vulnerabilities, and providing automated responses to potential threats. What is the cause and impact of the CrowdStrike outage? The issue was first noticed by Australian banks, airlines, and TV broadcasters and has since spread to businesses in Europe and other parts of the world. In the UK, the BSOD bug is disrupting services at the London Stock Exchange, Ryanair, and Edinburgh Airport. Additionally, airports in Berlin, Schiphol,... --- ### Exchange Online Gets Inbound SMTP DANE with DNSSEC to Strengthen Email Security - Published: 2024-07-18 - Modified: 2024-07-18 - URL: https://petri.com/exchange-online-inbound-smtp-dane-with-dnssec/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Key Takeaways: Microsoft introduced Inbound SMTP DANE with DNSSEC for Exchange Online, aiming to protect email communications against TLS-downgrade and man-in-the-middle attacks. This new capability is available at no additional cost for enterprise and consumer email offerings. The feature will be generally available worldwide in October, with IT admins needing to enable it manually via the Exchange Online management module. Microsoft has announced the public preview of Inbound SMTP DANE with DNSSEC support for Exchange Online, marking a significant step in bolstering email security. This feature aims to protect against TLS downgrade and adversary-in-the-middle attacks to ensure secure, unaltered communication. SMTP DANE (DNS-based Authentication of Named Entities) is a security protocol that uses DNS records to verify certificates used to protect email communication with Transport Layer Security (TLS). This protocol is designed to prevent spoofing and Man-in-the-Middle (MITM) attacks. On the other hand, DNSSEC (Domain Name System Security Extensions) adds cryptographic signatures to DNS records to ensure responses come from legitimate authoritative servers. It prevents several types of attacks related to DNS data integrity and authenticity, including DNS spoofing and domain hijacking. In March 2022, Microsoft added outbound support for SMTP DANE with DNSSEC to Exchange Online. However, this feature required commercial customers to have Microsoft 365 E5 licenses, which surprised many and led to widespread criticism. What are the benefits of Inbound SMTP DANE with DNSSEC? In Exchange Online, Inbound SMTP DANE with DNSSEC will help customers protect their email domains from impersonation. Additionally, it ensures that encrypted messages... --- ### Microsoft Purview Data Governance Solution to Launch on September 1 - Published: 2024-07-17 - Modified: 2024-07-17 - URL: https://petri.com/microsoft-purview-data-governance-september/ - Categories: Data Management - Tags: Microsoft Purview Data Governance, News - Article Type: News Key Takeaways: Microsoft's Purview Data Governance solution tackles challenges in data management, including quality control, security, and compliance with regulations. The solution integrates AI capabilities to enhance data visibility and management, offering intuitive tools like natural language queries for ease of use. New features include Copilot for enterprise catalog management and deeper integration with Microsoft Fabric, promising expanded data modeling and management capabilities. Microsoft has announced that the new Purview Data Governance solution will become generally available on September 1. This new AI-powered offering is designed to help enterprise customers address governance and security challenges. Organizations face several challenges when implementing data governance solutions, such as maintaining consistent data quality, ensuring security, and complying with regulations. This process also includes time-consuming manual tasks like data classification, metadata management, and compliance reporting. Microsoft emphasized that the launch of its new Purview Data Governance solution is part of its ongoing efforts to tackle issues in data management and AI deployment. The service introduces AI-powered features that enhance data visibility and management, allowing users to interact with data governance tools using natural language queries. AI-powered data discovery in Microsoft Purview Data Governance (Image Credits: Microsoft) Additionally, the Purview Data Governance solution offers a business-friendly browsing experience in the Data Catalog. It reduces the need for fragmented point solutions many enterprise customers have deployed in their data management strategy. This new offering centralizes labeling, audit logging, data classification, lineage, and management over multiple platforms. “This experience is designed to help today’s data leaders solve... --- ### Microsoft Guarantees Faster, Smaller Downloads with Checkpoint Cumulative Updates for Windows 11 - Published: 2024-07-17 - Modified: 2024-07-17 - URL: https://petri.com/microsoft-checkpoint-cumulative-updates-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft plans to introduce checkpoint cumulative updates for Windows 11 version 24H2 and Windows Server 2025. These updates will be quicker to download and install, saving time, bandwidth, and hard drive space by only fetching and installing changes since the last checkpoint. IT admins managing updates with tools like Windows Update for Business and WSUS won't need to make changes. Microsoft is set to enhance the Windows update process with the introduction of checkpoint cumulative updates for Windows 11 version 24H2 and Windows Server 2025, promising faster and more efficient updates. This new system aims to reduce bandwidth usage and installation time by delivering smaller, incremental updates based on the last checkpoint. Cumulative updates (CUs) are monthly updates released on Patch Tuesday for all supported versions of Windows. Each cumulative update grows in size because it includes compressed versions of every component and binary that has changed since Windows was released, potentially using too much bandwidth. Microsoft previously introduced differential downloads to reduce the size of Windows Updates. This system only fetches and installs the parts of updates that are missing on the Windows device, which Microsoft claims can reduce the size of most updates by around 35 percent. What are the benefits of checkpoint cumulative updates? Microsoft plans to significantly shrink the size of Windows updates with checkpoint cumulative updates in Windows 11 version 24H2. The company will release a milestone update called a checkpoint cumulative update. After that, Microsoft will periodically deliver smaller patches that only... --- ### Install SQL Server Reporting Services 2022 - Published: 2024-07-17 - Modified: 2024-09-30 - URL: https://petri.com/install-sql-server-reporting-services/ - Categories: SQL Server - Tags: SQL Server - Article Type: How To In this article you’ll learn how to install SQL Server Reporting Services 2022 (SSRS) and configure it. It’s important to realize that you must have a previously installed instance of SQL Server running in order to install and use SSRS. Introduction to Microsoft SQL Server Reporting Services Microsoft SQL Server Reporting Services, along with SQL Server Analysis Services (SSAS) and SQL Server Integration Services (SSIS), make up the core business intelligence (BI) components in the current SQL Server 2022 release. SSRS is a set tools and services that enable you to create, deploy, and manage printed, web, email and mobile reports. SSRS reports can retrieve data from SQL Server databases and SQL Server Analysis Services, as well as other relational databases such as Oracle, MySQL, and Azure SQL Database. These reports can be incorporated into web and Windows-based applications as well as viewed in SharePoint, Power BI dashboards and mobile devices like Android and iOS. Install SQL Server Reporting Services The SSRS installation used to be part of the main SQL Server installer up through SQL Server 2016. Starting with SQL Server 2017, the installation has been moved into its own separate installer. The new SSRS installation media can be downloaded from the Microsoft Download Center and it is named SQLServerReportingServices. exe. Running the SQLServerReportingServices. exe installation program displays the following setup dialog. SQL Server Reporting Services 2022 setup dialog (Image Credit: Michael Otey/Petri. com) This initial setup dialog allows you to choose the edition of SQL Server 2022 where you want... --- ### Microsoft Enhances Draft with Copilot in Word with New Content Transformation and Organization Capabilities - Published: 2024-07-16 - Modified: 2024-07-16 - URL: https://petri.com/microsoft-updates-draft-with-copilot-word/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has enhanced the Draft with Copilot feature in Word to enable users to rewrite, refine, or paraphrase selected text. This feature helps transform content into different formats, styles, or languages, making it easier to adapt text for various audiences. Microsoft Word users can now organize their content automatically with headings, paragraphs, and bullet points. Microsoft has announced several enhancements coming to Copilot in Word. The Draft with Copilot experience now allows users to rewrite, refine, or paraphrase a selection of text, making it easier to transform content for different formats, styles, and audiences. In Word, Draft with Copilot uses AI to help users create and enhance content with natural language commands. This feature allows users to summarize documents, generate tables, rewrite paragraphs, and refine content to be more concise or fit specific styles. With this release, Microsoft has enhanced Draft with Copilot to allow users to refine, rewrite, or paraphrase selected text in Word documents. This new capability makes it easier to transform content into different formats or languages. “Sometimes, you may need to transform your content into different formats or languages, such as converting a paragraph into a bullet list, or translating a paragraph into another language. For example, you may need to take a list and expand it to a paragraph with some added context or take notes and turn them into well-formed thoughts with references and statistics,” Microsoft explained. A highlighted section of copy with a Draft with Copilot output in the document (Image... --- ### Microsoft Teams to Introduce New Administrative Units for Streamlined Management - Published: 2024-07-16 - Modified: 2024-07-16 - URL: https://petri.com/microsoft-teams-administrative-units/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft will soon add administrative units (AUs) in Teams admin center to facilitate delegated administration based on location, department, or business unit. AUs enable role-based access control (RBAC) for Teams administrators, allowing them to manage users, groups, devices, and policies at a granular level within their designated units. This feature will become generally available for commercial customers in September 2024. Microsoft is set to add support for administrative units (AUs) in the Teams admin center. This new feature will allow organizations to delegate administrative roles to a subset of users based on specific criteria such as location, department, or business unit, streamlining management processes effectively. Administrative units are a way to partition an organization into smaller and more manageable units. This capability makes it easier to manage resources and apply policies at a granular level. For instance, administrative units could be used to delegate permissions to IT admins for each school within a university. Currently, Microsoft Teams admins cannot delegate administration to role-based access control (RBAC) roles. However, this upcoming release will allow Global admins to assign various RBAC roles to administrative units, such as Teams Administrator, Teams Device Administrator, Teams Communication Administrator, Teams Communication Support Engineer, Teams Communication Support Specialist, and Teams Telephony Administrator. These roles will exclusively manage users, groups, and devices within their designated administrative units. Manage policy assignments from the User details page in the Teams admin center (Image Credits: Microsoft) How Microsoft Teams admins will manage administrative units? The RBAC roles will have... --- ### How to Add Comments to Your PowerShell Code and Scripts - Published: 2024-07-15 - Modified: 2024-11-19 - URL: https://petri.com/powershell-comment/ - Categories: PowerShell - Tags: Automation, featured-top-left, PowerShell - Article Type: How To In this guide, you will learn about using PowerShell comments to help you better document your code and provide comment-based help capabilities for your PowerShell functions. By the end of this guide, you will be proficient and immediately effective at creating PowerShell comments to enhance readability and create documentation for your PowerShell scripts. Ready? Let's get started! Have you ever tried to use a product that didn't come with a user manual? Not only is it frustrating to stumble your way through using the product, but not having the manual on its use can lead to undesired results. You could try to go behind the scenes to figure it out, but without some behind-the-scenes commentary, you may find yourself lost. PowerShell comments are behind-the-scenes commentary. Not only do they serve as a sort of manual for your script, but comments can help you, the script creator, remember specific reasoning for doing things a certain way in your code. Comments are documentation. Understanding comments in PowerShell It is important to remember that as you get started with PowerShell comments, be clear and concise. Professionals, novices, or you yourself may read the comments! However, using comments is better than making no comments at all. You may ask yourself, "How do PowerShell comments help enhance scripts? Below are the key reasons for PowerShell comments. Clarification and understanding Explanation of Code: Comments allow you to explain what specific code snippets do, making it easier to understand complex scripts or concepts. Here's an example... --- ### New Config Refresh Feature in Windows 11 Bolsters Security and Policy Compliance - Published: 2024-07-15 - Modified: 2024-07-15 - URL: https://petri.com/microsoft-config-refresh-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Config Refresh allows administrators to schedule automatic reapplication of policies on Windows 11 devices. The feature enables policy settings to reset as frequently as every 30 minutes and can be paused for maintenance or troubleshooting. Config Refresh helps organizations improve compliance and protect against unauthorized changes to system settings. Microsoft has introduced a new security feature for Windows 11 called Config Refresh, which allows administrators to automatically reapply policies on a set schedule without needing to check in with Microsoft Intune or reboot devices. This new mobile device management (MDM) feature ensures that system settings remain secure and intact, even if altered by unauthorized applications or user modifications. Microsoft started testing Config Refresh with Windows Insiders in September 2023. By default, this feature resets PolicyCSP settings every 90 minutes, with the option to adjust the interval to as often as every 30 minutes. This helps organizations ensure that settings remain as configured by enterprise administrators in order to maintain security and compliance. Config Refresh also allows administrators to pause the feature during maintenance or troubleshooting. This capability gives them time to investigate and resolve issues without the risk of overwriting policies. Config Refresh automatically resumes after 24 hours, or an IT admin can manually reactivate it at any time. “Config Refresh helps improve security and compliance for MDM-managed PCs. By default, the Group Policy refreshes every 90 minutes, and MDM policy refreshes every eight hours. With Config Refresh, you can now configure policy refresh timing to be as... --- ### Microsoft Entra Suite Debuts with Enhanced Capabilities to Combat Security Threats - Published: 2024-07-12 - Modified: 2024-07-12 - URL: https://petri.com/microsoft-entra-suite-combat-security-threats/ - Categories: Identity Management - Tags: Microsoft Entra, Microsoft Entra Suite, News - Article Type: News Key Takeaways: Microsoft Entra Suite integrates identity management and network security on a single platform to bolster protection against unauthorized access in on-premises and cloud environments. Microsoft Entra Suite introduces features such as the Face Check for real-time identity verification and aims to replace traditional security solutions like VPNs. The unified security operations platform allows organizations to remediate threats and automatically disrupt in-progress cyberattacks. Microsoft has announced the general availability of the Microsoft Entra Suite and the integration of Microsoft Sentinel with the Microsoft Defender portal. These new offerings aim to help organizations achieve and manage zero-trust environments more effectively. Microsoft Entra Suite combines identity management and network security on a single platform. It allows security teams to apply conditional access policies to every application within their corporate network. This capability boosts protection against unauthorized access in both on-premises and cloud environments. Microsoft Entra Suite enables security teams to ensure the least privilege access for all users accessing all resources and apps. Microsoft Entra Verified ID has introduced a new Face Check feature that lets organizations perform real-time verification of the identity of end users. Moreover, Microsoft Entra Suite can potentially replace traditional legacy security solutions like on-premises identity governance, traditional VPNs, and on-premises Secure Web Gateway. “The Microsoft Entra Suite delivers a complete cloud-based solution for workforce access. It brings together identity and network access that secures employee access to any cloud or on-premises application and resource from any location, consistently enforces least privilege access, and improves the employee... --- ### Microsoft's New Azure VM Migration Tool Boosts Uptime and Disaster Recovery - Published: 2024-07-11 - Modified: 2024-07-11 - URL: https://petri.com/azure-vm-migration-tool-uptime-disaster-recovery/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News, virtua, virtual machine - Article Type: News Key Takeaways: The Azure VM Regional to Zonal Move feature allows regional VMs to be moved to zonal configurations, improving application resiliency and ensuring a 99. 99% uptime SLA. The feature performs a thorough analysis of dependent resources and validates SKU availability, providing alternative recommendations if needed. Microsoft has added the capability to move over 250 VMs in a single operation. Microsoft has announced that the "Azure VM Regional to Zonal Move" feature is now generally available for commercial customers. This new capability enables seamless transitions of virtual machines (VMs) from regional to zonal configurations within the same region. “This capability allows you to move your existing regional VMs into availability zones that were not available when the VM was created in your region of choice, and increase application resiliency and availability supported by 99. 99% uptime SLA for virtual machines, that have two or more instances deployed across two or more availability zones,” Microsoft explained. How does the Azure VM Regional to Zonal Move feature work? The Azure VM Regional to Zonal Move feature starts by analyzing the VM to identify dependent resources such as VNET, Public IPs, and NICs. It then creates a copy of the source VM and its disk in the chosen availability zone. Additionally, this feature shuts down the source VM while keeping its configuration intact to ensure a seamless rollback experience and prevent data loss. Microsoft notes that IT admins may experience a few minutes of downtime during the move process. Azure VM Regional to Zonal... --- ### Career Advice: Are Microsoft Certifications Worth It For IT Pros in 2024? > Are Microsoft certifications worth it? And do the benefits outweigh the costs? As a certified IT Pro, I'll answer these questions and more. - Published: 2024-07-11 - Modified: 2024-07-11 - URL: https://petri.com/are-microsoft-certifications-worth-it/ - Categories: Career Skills - Tags: featured-top-left, Microsoft certification - Article Type: Opinion I passed my first exam and achieved my initial Microsoft certification status in September of 1999 - Microsoft Certified Professional (MCP). Are Microsoft certifications worth it? Did passing it and many more certifications for Microsoft products assist me in my job duties as an IT Pro? And do the benefits outweigh the costs (money, time, commitment, etc. )? I'll answer all of these questions and more so you can decide if getting (and maintaining) one or more Microsoft certifications is in your best interest. What are certifications and why you should get certified as an IT Pro Certifications, or more precisely, IT certifications show your (book smart) qualifications, demonstrating your competency and skill in specific areas of the IT world. In the Microsoft universe, passing one or more exams in a specific software technology earns you a certification. As I mentioned above, passing the 'Configuring Windows 7' exam back in the day earned you the 'Microsoft Certified Professional' (MCP) certification. Did obtaining a professional certification help? It certainly did, at least for me. Besides being a valuable asset on my resume (listed under certifications and competencies), these certifications furthered my IT career by broadening my skills. Going through the 'problem and solution' aspect of taking various Microsoft certification exams shows my value and worth to employers. Getting certified highlights to an employer or potential prospect that you have demonstrated your ability to show your skills, express your willingness to stand out, and achieve a higher level of accomplishment in specific... --- ### Microsoft's New Outlook for Windows App to Hit General Availability on August 1 - Published: 2024-07-11 - Modified: 2024-07-11 - URL: https://petri.com/new-outlook-for-windows-general-availability/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft's new Outlook for Windows will be generally available to commercial customers on August 1. IT administrators can control the availability of the new Outlook client within their organizations. The new Outlook for Windows app does not support COM add-ins and requires a transition to web add-ins. The new Microsoft Outlook for Windows client that launched in public preview last year will become generally available for commercial customers on August 1. The company announced today on the Microsoft 365 Admin Center that this milestone won’t impact existing customers who continue to use the classic Outlook desktop application. Compared to the UWP Mail and Calendar apps, the new Outlook for Windows offers several new features and improvements, such as enhanced Calendar tools, the Copilot AI assistant, and meeting chat integration. However, it lacks some capabilities available in classic Outlook, including Offline access and Web add-ins support for secondary accounts. Microsoft notes that the new Outlook for Windows client will remain an opt-in experience for organizations. However, the upcoming general availability of the app will facilitate customers' migration plans. “Please note that this update does not change any settings for your organization, will not automatically switch users from the classic version of Outlook for Windows, and will not introduce any disruptive changes,” Microsoft explained. New Outlook for Windows (Image Credits: Microsoft) Microsoft acknowledges that some organizations have unique needs and constraints that may prevent them from switching to the new Outlook for Windows client. To address these concerns, the company... --- ### Microsoft Expands AI-Powered Speaker Recognition to All Teams Rooms on Windows Devices - Published: 2024-07-10 - Modified: 2024-07-10 - URL: https://petri.com/microsoft-speaker-recognition-teams-rooms-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft’s speaker recognition technology is now accessible for all Teams Rooms on Windows devices. The technology leverages voice isolation to suppress background noise and ensures accurate speaker attribution in meeting transcripts. Microsoft emphasizes the encryption of users' voice and face data as well as maintaining strict security and privacy measures. Microsoft's AI-powered speaker recognition technology is now available for all Teams Rooms on Windows devices. The company announced yesterday that this feature is no longer limited to Microsoft Teams Rooms equipped with intelligent speakers. Microsoft highlighted several advantages of the speaker recognition capability in Teams Rooms on Windows devices. This feature leverages voice isolation to suppress background noise during video calls and meetings. Additionally, speaker recognition enables intelligent recap and Copilot for Microsoft 365, ensuring that speakers' contributions are accurately attributed in the meeting transcript. “With speaker recognition, Teams Rooms can identify speakers during live transcription in shared meeting rooms, ensuring clear and precise voice capture for every participant. This allows you to effortlessly track who said what during the meeting through the meeting transcript and to enable intelligent meeting recap and Copilot,” Microsoft explained. Results with speaker recognition (Image Credits: Microsoft) How to get started? Microsoft notes that users can easily set up their voice profiles in the Teams desktop app on Windows and macOS devices. However, IT administrators must first use Teams meeting policy and PowerShell scripts to enable voice enrollment for end users. Microsoft has provided a couple of enrollment scripts to configure voice profiles,... --- ### Microsoft Releases July 2024 Patch Tuesday Updates - Published: 2024-07-10 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-july-2024-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft addressed 142 security vulnerabilities in the July 2024 Patch Tuesday updates, including five critical ones. These vulnerabilities impact various components such as Windows Hyper-V, Windows MSHTML platform, . NET version 8. 0, Visual Studio 2022, Microsoft SharePoint Server, and Windows Remote Desktop Licensing Service. Windows 11 users received new features and bug fixes, including a Copilot app, support for new file compression formats, a new account manager in the Start menu, enhancements for File Explorer, Windows Share, and the Snipping tool. Microsoft has released the July 2024 Patch Tuesday updates for all supported versions of Windows 11 and Windows 10. This month, Microsoft fixed 142 security vulnerabilities in Windows, Office, and other components, and users can also expect the usual bug fixes and quality improvements. Microsoft has rolled out a couple of new features, improvements, and bug fixes for Windows 11 users. The company is also reminding customers that Windows 11 version 22H2 will reach end of support on October 8, 2024. Microsoft advises users to switch to a newer version of Windows to continue receiving updates. July 2024 Patch Tuesday updates fix over 140 vulnerabilities As pointed out by the Zero Day Initiative, Microsoft released 142 security patches yesterday, with fixes for five critical vulnerabilities. CVE-2024-38080: This is a privilege escalation flaw in Microsoft’s Windows Hyper-V virtualization technology that affects Windows 11 and Windows Server 2022. It could enable unauthenticated hackers to execute code with system-level privileges on affected systems. This security flaw received a CVSS rating of... --- ### Microsoft to End Support for Windows 11 Versions 21H2 and 22H2 in October - Published: 2024-07-09 - Modified: 2024-07-09 - URL: https://petri.com/windows-11-versions-21h2-and-22h2-end-support/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft will end support for Windows 11 versions 21H2 and 22H2 on October 8, 2024, meaning no more security patches or bug fixes after this date. Users are encouraged to upgrade to Windows 11 version 23H2 to continue receiving necessary updates and protections. Microsoft will automatically update non-managed business PCs to ensure continued security and productivity. Microsoft is reminding customers that it will end support for multiple editions of Windows 11, versions 21H2 and 22H2, in 90 days. The company will officially end mainstream support on October 8, 2024, and after that date, it will no longer provide security patches and bug fixes for these versions of the operating system. Windows 11 version 21H2 Home and Pro editions have already reached the end of support in October 2023. Microsoft has announced that October 8 will mark the end of support for the Enterprise, Education, and IoT Enterprise editions of the original Windows 11 release. On the same day, Microsoft will also stop supporting Windows 11 version 22H2 Home and Pro editions. Microsoft reiterated that the October 2024 security update will be the last one available for PCs running Windows 11 versions 21H2 and 22H2. After that, all affected computers will be more vulnerable to malware attacks and other security threats. “The upcoming October 2024 security update, to be released on October 8, 2024, will be the last update available for these editions. After this date, devices running these editions will no longer receive monthly security and preview updates... --- ### Azure Virtual Desktop Insights Gets New Tool to Monitor Connection Health - Published: 2024-07-08 - Modified: 2024-07-08 - URL: https://petri.com/azure-virtual-desktop-insights-connection-reliability/ - Categories: Microsoft Azure - Tags: Azure Virtual Desktop, News - Article Type: News Key Takeaways: The new Connection Reliability tab in Azure Virtual Desktop Insights enables administrators to track and improve the stability of user connections to Azure Virtual Desktop host pools. The feature provides visual graphs and tables to help admins analyze disconnection events, understand the root causes of connectivity issues, and identify patterns based on client versions and IP ranges. The Connection Reliability tab helps IT admins reduce downtime and improve overall system reliability. Microsoft has introduced a new Connection Reliability tab in Azure Virtual Desktop Insights. This feature empowers administrators to closely monitor and enhance the connection stability between users and Azure Virtual Desktop host pools. Azure Virtual Desktop Insights is a dashboard that helps IT professionals understand their Azure Virtual Desktop environments. It offers key metrics like user activity, host performance, and resource utilization. This dashboard also provides insights into the number of active sessions, CPU and memory usage, as well as latency. Microsoft emphasized that connection reliability is crucial for smooth application interactions, minimal disruptions, and uninterrupted work. Azure Virtual Desktop Insights allows customers to analyze disconnection events and identify error patterns that affect the end-user experience. The new Connection Reliability tab offers two main visuals to help users understand their connection reliability. The first visual is a graph that displays the number of disconnections compared to the concurrent connections within a specific time frame. “This allows administrators to easily detect clusters of disconnects that are impacting connection reliability. Administrators can also analyze connection errors by different pivots—for... --- ### Microsoft 365 Apps Get Support for OpenDocument Format 1.4: What You Need to Know - Published: 2024-07-08 - Modified: 2024-07-08 - URL: https://petri.com/microsoft-365-apps-opendocument-format-1-4/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft 365 apps now save files in the OpenDocument Format (ODF) 1. 4 by default, ensuring better compatibility with other applications that support ODF. The latest ODF version adds several new features, such as inserting tables within shapes in Word and text rotation within table cells in PowerPoint. Microsoft has rolled out ODF 1. 4 support to Microsoft 365 customers in the Current Channel. Microsoft has announced that its Microsoft 365 apps now support OpenDocument Format (ODF) 1. 4 by default. The latest version brings a host of new features and improvements to Word, Excel, and PowerPoint that are already supported by the Open Office XML format. In Microsoft Word, users can now insert tables within shapes. Additionally, ODT files support all number list formats available in Word. With certain languages enabled, users can also use new writing modes in tables within paragraphs for . docx files. Furthermore, Microsoft has made minor adjustments to how error values are saved in ODS files in Excel. Additionally, ODS files now support saving color filter settings with certain restrictions. Microsoft has also rolled out some minor enhancements to load text rotated 90° clockwise or counterclockwise. In Microsoft PowerPoint, ODP files now support slide numbering starting from 0. Moreover, ODP files now allow text rotation within table cells at 90° and 270° angles. Microsoft has also introduced a new accessibility attribute to mark objects as purely decorative, allowing them to be ignored by assistive technologies. ODF File in Microsoft Word (Image Credits: Microsoft) How to save... --- ### First Ring Daily: Laptop lore - Published: 2024-07-05 - Modified: 2024-07-05 - URL: https://petri.com/first-ring-daily-laptop-lore/ - Categories: Hardware, Microsoft - Tags: First Ring Daily, Microsoft, News, Surface Laptop 7 - Article Type: News In this episode of First Ring Daily, Paul Thurrott discusses his experience using the Qualcomm-powered Surface Laptop 7 and how this first generation of Copilot+ PCs is making Windows on ARM exciting again. In this episode of First Ring Daily, Paul Thurrott discusses his experience using the Qualcomm-powered Surface Laptop 7 and how this first generation of Copilot+ PCs is making Windows on ARM exciting again. --- ### Microsoft Entra PowerShell Module: Streamlining IT Resource Management and Automation - Published: 2024-07-05 - Modified: 2024-07-05 - URL: https://petri.com/microsoft-entra-powershell-module-public-preview/ - Categories: PowerShell - Tags: Microsoft Entra PowerShell, News - Article Type: News Key Takeaways: The Microsoft Entra PowerShell module allows IT administrators to programmatically manage and automate Entra resources. The module offers backward compatibility with the deprecated AzureAD module, facilitating a smoother transition to the new system while retaining existing scripts and commands. Future updates to the Entra PowerShell module will introduce new cmdlets for managing Entitlement Management, Privileged Identity Management (PIM), and more. Microsoft has recently announced the public preview of its Entra PowerShell module, a new command-line tool designed for IT administrators. This module enables the programmatic management and automation of Microsoft Entra resources, streamlining administrative tasks and enhancing efficiency. The new Microsoft Entra PowerShell module is built on and fully interoperable with the Microsoft Graph PowerShell SDK. It also offers backward compatibility with the deprecated AzureAD module. This feature accelerates the migration process by allowing organizations to continue using their existing scripts and commands while gradually transitioning to the new module. “Microsoft Entra PowerShell is a part of our increased investment in Microsoft Graph PowerShell SDK. It brings high-quality and scenario-optimized Entra resource management to the Microsoft Graph PowerShell SDK. Still, it keeps all the benefits of Microsoft Graph PowerShell SDK for authorization, connection management, error handling, and (low-level) API coverage,” Microsoft explained. What are the benefits of the Microsoft Entra PowerShell module? The Microsoft Entra PowerShell module features human-readable parameters that simplify scripting and automation tasks. It also includes deliberate parameter set specifications, inline documentation, and adheres to core PowerShell fundamentals like pipelining. As an open-source tool, it... --- ### Microsoft to Retire Office 365 Connectors Feature in Microsoft Teams - Published: 2024-07-04 - Modified: 2024-07-04 - URL: https://petri.com/microsoft-teams-retire-office-365-connectors/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft will retire the Office 365 connectors feature in Microsoft Teams, starting August 15, 2024, with all existing connectors ceasing to function by October 1, 2024. Users are advised to switch to the Workflows app in Microsoft Teams, which leverages Power Automate for deeper integration capabilities and improved security. The Workflows app offers pre-configured templates and customizable workflows. Microsoft is set to deprecate the Office 365 connectors feature in Microsoft Teams. The company encourages customers to transition to Power Automate workflows for enhanced functionality and security. Office 365 connectors in Microsoft Teams facilitate seamless integration between third-party services and Teams channels. These connectors allow users to receive real-time updates from popular services like Azure DevOps Services, Trello, Wunderlist, and GitHub. Microsoft Teams users can add connectors to specific channels to help team members stay informed and collaborate efficiently without leaving the app. Microsoft plans to gradually implement this change in two phases. Starting on August 15, users will no longer be able to create new Office 365 connectors across all clouds. In the second phase, all existing connectors will stop working on October 1, 2024. Microsoft recommends that commercial customers switch to the Workflows app in Microsoft Teams. “Power Automate workflows not only offer a much deeper catalog of Office connectors but also ensure that your integrations are built on an architecture that can grow with your business needs and provide maximum security of your information. Users currently utilizing Office 365 connectors should transition to Power Automate to... --- ### Microsoft Entra Certificate-Based Authentication Gets New Issuer Hints Feature to Simplify Certificate Selection - Published: 2024-07-04 - Modified: 2024-08-06 - URL: https://petri.com/microsoft-entra-certificate-based-authentication-enhancements/ - Categories: Identity Management - Tags: Microsoft Entra, News - Article Type: News Key Takeaways: Microsoft has introduced an issuer hints feature in public preview for Entra ID, simplifying the selection of the appropriate certificate for authentication. Microsoft Entra CBA now supports additional username bindings, including IssuerAndSerialNumber, IssuerAndSubject, and Subject. Microsoft Entra CBA now offers advanced options within Conditional Access. Microsoft has released a new issuer hints feature in public preview for Entra certificate-based authentication (CBA). Additionally, several other capabilities, including username bindings and advanced Conditional Access options, have reached general availability, offering users greater flexibility and control over their authentication processes. What is Microsoft Entra certificate-based authentication (CBA)? Microsoft Entra certificate-based authentication is a security feature that allows customers to authenticate to Entra ID (formerly Azure AD) using certificates. It integrates seamlessly with Entra ID and provides secure access to Microsoft 365, Azure, and other applications that rely on Entra ID for authentication. CBA lets users authenticate using smart cards, virtual smart cards, and other certificate-based devices. This feature is particularly useful in environments where a high level of security is required, including financial institutions, government agencies, and other regulated industries. How does the issuer hints feature work? Microsoft has released a new issuer hints feature that makes it easier for Entra ID customers to select the appropriate certificate for authentication. As part of the TLS (Transport Layer Security) handshake, Microsoft Entra ID sends back a Trusted CA Indication, which ensures that the chosen certificate is from a trusted source. “The trusted Certificate Authority (CA) list will be set to subject of the... --- ### Microsoft Teams Now Supports Custom Sound Notifications - Published: 2024-07-03 - Modified: 2024-07-03 - URL: https://petri.com/microsoft-teams-custom-sound-notifications/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The new Microsoft Teams desktop client now allows users to customize notification sounds. Users can assign different sounds to various types of notifications, enhancing their ability to prioritize tasks and messages efficiently. This feature is available for both desktop and web users of Microsoft Teams. Microsoft has released a new update that allows users to personalize their notification sounds in the new Microsoft Teams desktop client. This new feature offers a tailored approach to managing alerts and staying productive amidst meetings and tasks. “To help you stay focused, prioritize tasks and messages quickly, and avoid distractions, you can now adjust the sound on your Teams notifications. You can assign different sounds to different kinds of notifications, such as urgent messages. Or you can mute notification sounds when you’re busy or in a meeting,” Microsoft explained.   custom sound notifications in Microsoft Teams (Image Credits: Microsoft) How to set custom sound notifications in the new Microsoft Teams client To set custom sound notifications in Microsoft Teams, you will need to follow the steps mentioned below: Open Microsoft Teams and click the three dots menu in the upper right corner to access Settings. Navigate to the "Notifications and activity" menu and under Sound, you can: Enable sound for standard notifications by checking the “Play sounds with notifications” box and choosing from options like Default, Vibe, Nudge, Tap, Flick, Pluck, Summon, or Ping. Set urgent and priority contact notification sounds by clicking the “Play sounds with urgent and priority contact notifications”... --- ### Microsoft Intune Enhances Device Security with New Windows Corporate Identifier Feature - Published: 2024-07-03 - Modified: 2024-07-03 - URL: https://petri.com/microsoft-intune-windows-corporate-identifier/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft Intune's new Windows Corporate Identifier feature allows administrators to easily identify and manage corporate Windows devices. A new enrollment restriction experience lets IT administrators use specific device properties as filters to prevent unauthorized devices from enrolling. Currently, the feature supports Windows 11 version 22H2 and later, with plans to extend support to Windows 10 on July 9. Microsoft has released a new Windows corporate identifier feature for its Microsoft Intune service. This new feature is designed to enhance enrollment restrictions by ensuring that only corporate devices can access the network. Microsoft emphasized the importance of administrators to ensure that only authorized devices access corporate resources. This requires identifying both company-owned and personal devices. However, managing a large fleet of devices with different operating systems can be challenging due to each platform's unique management requirements and security considerations. How does the Windows corporate device identifier feature work? The new Windows corporate identifier feature simplifies the identification and management of corporate Windows devices. It allows administrators to upload a CSV file with details such as serial numbers, manufacturer information, and device models of their corporate PCs. Once the enrollment process is complete, these Windows devices are marked as corporate in the Microsoft Intune admin center, and the appropriate policies and settings are applied. This feature supports only Windows 11 version 22H2 and later. Creating a filter in the Intune admin center with model and manufacturer device properties (Image Credits: Microsoft) How to get started? To use the Windows corporate... --- ### Silver SAML: Active Directory Attack Technique Explained - Published: 2024-07-02 - Modified: 2024-09-04 - URL: https://petri.com/silver-saml-active-directory/ - Categories: Active Directory (AD), Identity Management, Security - Tags: Golden SAML, NoAD, NoAds, SAML, Silver SAML - Article Type: Overview, Sponsored In this blog post, you'll be introduced to Silver SAML, a variant of Golden SAML. Golden SAML is a sophisticated attack technique used by hackers to bypass MFA (multifactor authentication) and gain access to sensitive data. Silver SAML operates similarly, but targets Microsoft Entra ID rather than on-premises Active Directory. Thanks to Semperis for sponsoring this post. What is Golden SAML?   CyberArk Labs discovered a sophisticated attack vector in 2020 called Golden SAML. It affected SolarWinds and enabled an attacker to create a forged SAML (Security Assertion Markup Language) authentication object that gave the attacker access to authenticate various services that use the SAML 2. 0 protocol for SSO (single sign-on) purposes.   In a Golden SAML attack, an attacker gains unauthorized privileges (a Golden Ticket) to a company's network. The attack involves an exploit of the ADFS (Active Directory Federation Services) certificate from an on-premises ADFS server.    Next, they use the certificate to forge SAML authentication responses. This enables the attacker to impersonate any user identity within that organization and acquire access across services (e. g. , applications) that use SAML for authentication.   What is Silver SAML?   Silver SAML is a variant of Golden SAML. Whereas Golden SAML is known for extracting certificates from ADFS, Silver SAML exploits a more modern system: Entra ID.   Many companies use Entra ID as their identity provider (IdP) for SaaS (Software as a Service) and other applications. Entra ID provides a self-signed certificate for SAML response signing. This certificate is the target of Silver SAML attacks.    Entra... --- ### Microsoft Teams to Block Federated Communications with Trial-Only Tenants - Published: 2024-07-02 - Modified: 2024-07-02 - URL: https://petri.com/microsoft-teams-block-communications-trial-only-tenants/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams will soon feature a new setting to block federated communications with trial-only tenants by default. The new setting will prevent users from trial-only tenants from initiating chats, calls, or meetings with other Microsoft Teams users. IT administrators can override this default setting and allow communication with trial-only tenants using a PowerShell command. Microsoft Teams is getting a new setting that will allow IT admins to block federated communications with trial-only Microsoft 365 tenants. This enhanced control aims to help organizations safeguard their users from phishing and abuse attacks by malicious actors. A trial-only tenant is a tenant with a Teams service plan that exclusively uses trial subscriptions and has no purchased licenses. These temporary tenants can be exploited for malicious activities due to their lack of oversight. Threat actors can create trial tenants to send spam emails or phishing messages and even gain unauthorized access to sensitive organizational data. To address this issue, Microsoft will block external access for trial-only tenants starting on July 29. This new setting, called ExternalAccessWithTrialTenants, will be set to "Blocked" by default. It will prevent users from these trial-only tenants from searching for or connecting with other users through Microsoft Teams chats, calls, or meetings. Additionally, Microsoft Teams users from trial-only tenants will be removed from any existing chats. This new setting will not affect shared channels, guest access, or Anonymous Meeting joins in Teams. “This new setting only controls external communication with trial-only tenants within the same Microsoft 365 cloud... --- ### Microsoft Unveils Cross-Region Disaster Recovery for Windows 365 Enterprise - Published: 2024-07-02 - Modified: 2024-07-02 - URL: https://petri.com/windows-365-enterprise-cross-region-disaster-recovery/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Key Takeaways: Microsoft has introduced cross-region disaster recovery for Windows 365 Enterprise, providing an additional layer of protection against regional outages. During a disaster recovery event, users receive temporary devices that retain their complete user context. The cross-region disaster recovery feature is easily configurable and integrated into existing reports and workflows. Microsoft has introduced support for cross-region disaster recovery for Windows 365 Enterprise. This new optional service allows organizations to safeguard their Cloud PCs and data against regional outages. The cross-region disaster recovery feature creates a copy of the users’ Windows 365 Cloud PCs in an alternate region. This copy utilizes the most recent restore point for each Cloud PC and all installed applications, user settings, and data. “These snapshots are placed in customer-defined, geographically distant locations, and they can be recovered to Cloud PCs running in the selected location during a disaster recovery event. Windows 365 Cross-region Disaster Recovery is especially relevant for industries and organizations that are highly regulated, or that have users or workflows that require geographic distance between primary and backup locations,” Microsoft explained. Once the cross-region disaster recovery feature is activated, users signing in to Windows 365 Cloud PCs will receive a temporary device. This device retains the full user context, including configuration settings, locally stored data, and user-installed applications, up to the latest restore point. When the cross-region disaster recovery feature is deactivated, the temporary device is discarded. Users are then returned to their primary devices, but any data saved to the Local OS... --- ### How to Fix Exchange Database Failed to Mount Error? > Learn the reasons that may lead to the Exchange database failed to mount error and ways to fix it. - Published: 2024-07-01 - Modified: 2024-07-01 - URL: https://petri.com/exchange-database-failed-to-mount-error/ - Categories: Exchange Server - Tags: Exchange Server, featured-top-left, NoAD, NoAds - Article Type: How To, Sponsored When mounting a database on Exchange Server, you may face a situation where the database does not mount and an error message appears, saying, “Failed to mount the database. ” An Exchange database may fail to mount for various reasons. In this article, we will be discussing the reasons that may lead to the ‘Exchange database failed to mount’ error and ways to fix it. This article is sponsored by Stellar Info. Reasons for Exchange database mounting error There are several reasons that can cause the Exchange Server database mounting error. Here are some of the most common: Lack of disk space where the database is stored. The database might be corrupt or damaged. This can happen due to sudden loss of power, hardware failure, sudden shutdown of the server, etc. Antivirus software, backup software, or any other third-party software, which is not compatible with the version of Exchange Server installed. Third-party software might lock or delete important Exchange Server files, damaging the integrity of the database. Issue with licensing. For example, you have the Standard license of Exchange Server, which allows mounting of five databases but you’re trying to mount an additional database. Methods to resolve the Exchange database mounting error Here are some solutions you can try to troubleshoot and resolve the Exchange database mounting error. Note: Before attempting to troubleshoot the error, make a backup of the Exchange database. Also, run the Exchange HealthChecker script to see the overall configuration and health status of your Exchange Server... . --- ### Microsoft Teams Gets New Copilot Integration, Multi-Tenant Organization Improvements - Published: 2024-07-01 - Modified: 2024-07-01 - URL: https://petri.com/microsoft-teams-copilot-integration/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft introduced a new Copilot integration in Teams, allowing users with a Copilot for Microsoft 365 subscription to customize draft messages. Microsoft also announced new capabilities and enhancements for multi-tenant organization (MTO) customers. IT admins can now block permissions to download meeting transcript files. Microsoft unveiled a range of new features and improvements for its Teams collaboration service in June 2024, enhancing chat, meeting experiences, Teams Rooms, and Teams Phones. Highlights include the new Copilot integration for customizing messages, intelligent message translation, and several updates for multi-tenant organizations. Chat & collaboration features Microsoft has introduced a new Copilot integration in Microsoft Teams. Customers with a Copilot for Microsoft 365 subscription can use the AI assistant to customize their draft messages in Teams chats and channels. Moreover, the new intelligent message translation capabilities let users translate chat messages into their preferred language. In Microsoft Teams, the new Slash commands feature allows users to perform quick actions, including opening a chat in a new window, adding code blocks, and recording a video clip. Additionally, Microsoft has added a new Meet Now button in group chats to let users quickly join a group call. It’s also possible to use Loop components to share and co-edit code in Microsoft Teams. Compose with Copilot (Image Credits: Microsoft) Microsoft has released several new capabilities for multi-tenant organization (MTO) customers. Furthermore, users will no longer see the external label when collaborating with people from other MTO tenants. Microsoft Teams now lets users share files with... --- ### Microsoft to Phase Out WSUS Driver Synchronization in 2025 - Published: 2024-07-01 - Modified: 2024-07-01 - URL: https://petri.com/microsoft-phase-out-wsus-drive-synchronization/ - Categories: Active Directory (AD) - Tags: News - Article Type: News Key Takeaways: Microsoft will deprecate the driver synchronization feature in WSUS on April 18, 2025, and advise customers to transition to cloud-based driver services. Only 34% of WSUS users utilize the driver synchronization feature, with many already seeking alternative solutions. Administrators can switch to tools like Microsoft Intune and Windows Update for Business for driver updates. Microsoft has announced its plans to phase out the drive synchronization feature in Windows Server Update Services (WSUS) on April 18, 2025. The company has advised commercial customers to migrate to the new cloud-based driver services. WSUS driver synchronization allows administrators to automate the process of distributing driver updates within their organizations. They can approve and deploy specific driver updates to enhance the stability and hardware compatibility of Windows devices. This service offers bandwidth optimization by downloading updates once to the WSUS server. While WSUS driver synchronization offers various benefits, it also comes with limitations. WSUS primarily focuses on Microsoft drivers, and it may not cover third-party hardware components or specialized drivers. Additionally, manual approval of driver updates by IT admins can be time-consuming, which could potentially cause deployment delays. WSUS also requires significant storage space for storing driver updates, particularly impacting customers with large networks. In a recent survey, Microsoft found that only 34% of participants use the tool to manage driver update distribution. Interestingly, most commercial customers are now exploring alternative solutions for managing their updates. “Out of the participants who use WSUS, only 34% reported that they use it to synchronize... --- ### First Ring Daily: ARM-Mageddon - Published: 2024-06-28 - Modified: 2024-06-28 - URL: https://petri.com/first-ring-daily-arm-mageddon/ - Categories: Microsoft - Tags: copilot, First Ring Daily, News, Windows on ARM - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the various ARM-powered Copilot+ PCs on the market and how their exclusive AI features aren't really making a difference as of today. On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the various ARM-powered Copilot+ PCs on the market and how their exclusive AI features aren't really making a difference as of today. --- ### New VDI Solution for Microsoft Teams Launches with Enhanced Performance and Advanced Meetings Features - Published: 2024-06-28 - Modified: 2024-06-28 - URL: https://petri.com/microsoft-teams-vdi-solution-preview/ - Categories: Active Directory (AD) - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: The new VDI solution for Microsoft Teams enhances performance and aims to achieve feature parity with the native desktop client. The update brings advanced meeting capabilities such as new Gallery views, custom meeting backgrounds, and noise suppression. The SlimCore media engine updates automatically and eliminates the need for user prompts or reboots. Microsoft has announced the public preview of a new optimization architecture for Microsoft Teams on virtual desktop infrastructure (VDI). This preview is now accessible to Teams users on Azure Virtual Desktop, Windows 365, and Citrix DaaS, as well as Virtual Apps and Desktops for Windows endpoints. This new VDI solution for Microsoft Teams has been completely rebuilt to enhance performance. The new native media engine, called SlimCore, replaces WebRTC, an open-source technology used for audio and video streaming in many collaboration platforms. Microsoft believes that adopting SlimCore will help achieve feature parity between the native Microsoft Teams desktop client and Teams for VDI. “Last year we released a fully revamped Teams app, built on the premise of speed, performance, flexibility, and intelligence, providing a foundation for game-changing new AI-powered tools. Now we are bringing a new media engine that will elevate the user experience in virtual desktops with new features, and further quality, performance and reliability improvements,” Microsoft explained. New optimization architecture for Microsoft Teams for VDI (Image Credits: Microsoft) Microsoft emphasized that this new solution brings the same quality and reliability improvements found in the native Teams desktop app. Users should see significant performance enhancements... --- ### Microsoft Loop Now Supports External Sharing for Seamless Collaboration - Published: 2024-06-27 - Modified: 2024-06-27 - URL: https://petri.com/microsoft-loop-external-sharing/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Loop now supports guest/external sharing, allowing users to share workspaces, pages, and components with external collaborators. This feature requires a Microsoft 365 Enterprise, Education, or SMB license and is currently available only for organizations that do not use sensitivity labels. Microsoft says that administrators need to enable guest sharing within their organization. Microsoft has released a new update that introduces guest/external sharing support for its Loop app. This new feature enhances collaboration by allowing users to share workspaces, pages, and components with external collaborators. “Workspaces can only be shared with users that have an existing guest account in your tenant. If Business-to-business Invitation Manager is enabled, users can share a page or component with a guest user which will enable the flow to create a guest account for the user,” Microsoft explained. How to enable guest/external sharing in Microsoft Loop Microsoft Loop users can share workspaces, pages, and components with guest users by following these steps: Open the Loop workspace or page that needs to be shared. In Microsoft Loop, navigate to the top right corner of the screen and open the share menu. Choose whether to share the page or the workspace. Enter the email address of the guest user for sharing. Finally, click the “Send” or “Invite” button. Microsoft notes that external participants must use their guest accounts to access shared Loop workspaces, pages, and components. However, keep in mind that standard accounts will not have access to this shared content. Requirements Microsoft has outlined... --- ### PingCastle - A Free Tool to Assess Active Directory Security - Published: 2024-06-26 - Modified: 2024-07-01 - URL: https://petri.com/pingcastle-active-directory-tool/ - Categories: Active Directory (AD) - Tags: Active Directory, featured-top-right, free tool, Security - Article Type: How To Are you looking to improve the security of your Active Directory environment? Learn how to set up the PingCastle Community Pack and strengthen your network defenses. What is PingCastle? PingCastle is a free, open-sourced tool designed to assess the security level of your Active Directory environment quickly. It’s based on a methodology focusing on risk assessment and a maturity framework. The goal of PingCastle is to offer an efficient report to assist with remediation, not a perfect, silver bullet. How does PingCastle help me learn about Active Directory vulnerabilities? PingCastle uses several methods to assist you in learning about your security issues in AD and tips on how to resolve them. Here are some examples. Perform Security Controls Periodically - PingCastle ensures that a consistent set of actions are performed regularly. This includes checking for basic issues like provisioning, deletion, privileged accounts management, AD interconnections (trusts), and other vulnerabilities. Know Your Environment!  - One of PingCastle's first steps is to identify your Active Directory domains, assign them an owner (accountable for security), and check if all trusts to external parties have been removed or are at least secure. Document Processes - The tool helps document the processes that are already in place. This means the process to find hackers is in place and vulnerabilities are limited by a hardening project. Continuous Improvement - In this final step, the 'well-oiled machine' moniker comes into play as you're provided with a method to keep new attacks at bay, and a constant periodic scanning schedule is put... --- ### Microsoft Defender XDR Gets New Copilot for Security Integration for Enhanced Threat Intelligence - Published: 2024-06-26 - Modified: 2024-06-26 - URL: https://petri.com/defender-xdr-copilot-for-security-ti-embedded-experience/ - Categories: Endpoint Protection - Tags: Copilot for Security, Microsoft Defender XDR, News - Article Type: News Key Takeaways: Microsoft has introduced the Copilot for Security threat intelligence embedded experience in the Defender XDR portal. This new feature leverages AI to provide contextualized and summarized threat intelligence from MDTI and threat analytics. The tool helps organizations identify, prioritize, and respond to cybersecurity threats relevant to their specific attack surfaces. Microsoft has announced the general availability of the Copilot for Security threat intelligence (TI) embedded experience in the Defender XDR portal. The new AI-powered tool is designed to contextualize and summarize intelligence from Microsoft Defender Threat Intelligence (MDTI) and threat analytics. The new Microsoft Copilot for Security TI embedded experience enables customers to access and use threat intelligence through natural language commands. These prompts allow users to ask important questions about the data and content provided by Microsoft Defender Threat Intelligence (MDTI). The responses offer the latest information on indicators of compromise (IoCs), intelligence articles, intel profiles, and guidance. “Defender XDR customers will see a handy AI-powered sidecar in the Threat Analytics, intel profiles, intel explorer, and intel projects tabs in the threat intelligence blade, which returns, contextualizes, and summarizes intelligence from across MDTI and Threat Analytics about threat actors, threat tooling, and indicators of compromise (IoCs) related to their vulnerabilities and security incidents," Microsoft explained. The embedded experience on the right-hand side of the Defender XDR portal (Image Credits: Microsoft) What are the key capabilities of the Copilot for Security TI Embedded Experience? Microsoft has detailed several features of the Copilot for Security TI embedded experience in... --- ### New Microsoft Teams PWA Now Available for All Windows and macOS Users - Published: 2024-06-26 - Modified: 2024-06-26 - URL: https://petri.com/new-microsoft-teams-pwa-windows-macos/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has launched the web version of its Microsoft Teams client as a PWA, available for both Windows and Mac devices. The new Teams PWA supports functionalities such as pinning to the taskbar and Start menu and auto-start on device login. IT admins can manage the new Microsoft Teams PWA through specific browser policies. Microsoft has announced that its new Teams client is now available as a progressive web app (PWA) for both Windows and Mac devices. Starting today, web users can install the new Microsoft Teams PWA directly from their browser's address bar. In this new Teams web client, Microsoft has replaced the resource-heavy Electron framework and the React framework and Edge WebView 2. The company claims the app is now two times faster and uses 50 percent less memory. The new Microsoft Teams web app has also been slightly redesigned, with various stability and performance improvements. Microsoft mentioned that this release aligns Windows and macOS more closely with the existing Teams PWA experience available for Linux users, offering the same features as the new Teams web client. The new Teams PWA supports various web app functionalities, including pinning to the taskbar and Start menu, creating desktop shortcuts, and auto-starting on device login. New Microsoft Teams PWA (Image Credits: Petri/Rabia) How to install the new Microsoft Teams PWA To install the new Microsoft Teams PWA, web users should be using Google Chrome and Microsoft Edge as their browsers. They can simply navigate to the browser’s address bar... --- ### Microsoft Faces EU Antitrust Charges for Bundling Teams with Office 365 - Published: 2024-06-25 - Modified: 2024-06-25 - URL: https://petri.com/microsoft-teams-eu-bundling-antitrust/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The European Commission has accused Microsoft of antitrust violations for bundling Microsoft Teams with its Office 365/Microsoft 365 subscriptions. Despite Microsoft's concessions to decouple Teams from these subscriptions, the EC remains concerned that these actions are insufficient to restore fair competition. If found guilty of breaching EU competition law, Microsoft could face a fine of up to 10 percent of its global annual turnover. The European Commission has issued new antitrust charges against Microsoft concerning the bundling of Microsoft Teams with Office 365/Microsoft 365 commercial subscriptions. This move follows the EC's preliminary findings from an antitrust investigation that started back in July 2023. “In particular, the Commission is concerned that Microsoft may have granted Teams a distribution advantage by not giving customers the choice whether or not to acquire access to Teams when they subscribe to their SaaS productivity applications,” the EU Commission explained. “This advantage may have been further exacerbated by interoperability limitations between Teams’ competitors and Microsoft’s offerings. The conduct may have prevented Teams’ rivals from competing, and in turn innovating, to the detriment of customers in the European Economic Area. ” The Intensifying Battle for Workplace Dominance: Microsoft Teams vs Slack Back in 2020, Slack filed a formal antitrust complaint against Microsoft with the European Commission. Slack argued that Microsoft was misusing its market dominance by illegally bundling its Teams collaboration tool with its Office suite, making it impossible to remove and obscuring the true costs for businesses. Last year, Microsoft agreed to stop bundling Microsoft... --- ### Microsoft to Rebrand Outlook for Windows as "Outlook (Classic)" - Published: 2024-06-25 - Modified: 2024-06-25 - URL: https://petri.com/microsoft-rebrand-outlook-for-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft will rename its existing Outlook for Windows app to "Outlook (classic)" in July 2024. The name change will begin with version 2407 or later and will be completed for all channels by early 2025. The renaming to "Outlook (classic)" will specifically affect how the app appears in the Start menu and installed apps list, with no changes to the app icon or executable file name. Microsoft will soon rename its existing Outlook for Windows app to "Outlook (classic)," starting with customers using version 2407 or later. This rebranding aims to clearly distinguish the classic app from the new Outlook for Windows client. Microsoft announced in a message on the Microsoft 365 admin center that this change will only affect the app name as it appears in the Start menu and pinned apps list. However, the app icon and executable file name of the existing Outlook desktop app will remain unchanged. “Starting in July 2024, Microsoft will change the app name of the current Outlook for Windows for all customers as it appears in the Start menu now from "Outlook" to “Outlook (classic)”. This is not a change in status or support for the classic Outlook app,” Microsoft explained. “This naming convention now also aligns with how it is referred to in support documentation. ” Microsoft will start rolling out this name change to customers in the Current Channel in late July, with completion expected by early August. The update will be available for the Monthly Enterprise Channel in... --- ### Microsoft Intune Adds New RAC Feature for Seamless Device Troubleshooting - Published: 2024-06-24 - Modified: 2024-06-24 - URL: https://petri.com/microsoft-intune-rac-device-troubleshooting/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft Intune is set to introduce the Remove apps and configuration (RAC) feature in July. Microsoft is also adding Windows enrollment attestation support to enhance the security of device enrollment in Intune. The new granular endpoint security access controls offer specific permission sets for application control, attack surface reduction, and endpoint detection and response. Microsoft Intune is set to introduce a new Remove apps and configuration (RAC) feature next month. The new troubleshooting tool allows IT admins to quickly diagnose and resolve issues by temporarily removing apps and configurations from managed mobile devices. “Before RAC, removing settings involved excluding devices from policy assignments or removing users from groups, and then waiting for devices to check in. After diagnosing the device, those assignments and group memberships would need to be restored one by one,” Microsoft explained. The new Remove apps and configuration (RAC) feature offers real-time monitoring capabilities to track the removal or restoration of specific policies and apps during troubleshooting. It also allows for the selective restoration of individual apps and policies, rather than requiring all settings to be restored at once. With the RAC feature, IT admins can temporarily remove apps and policies from a device for 8 to 24 hours, automatically restoring them afterward. This capability helps in pinpointing problematic apps or policies. Furthermore, the RAC feature safeguards the device’s policy assignments and group memberships, ensuring they remain unaffected during troubleshooting. Microsoft plans to launch the new RAC feature for Intune customers in early July, with... --- ### US Government Imposes Ban on Kaspersky Antivirus Software Over Russian Espionage Risks - Published: 2024-06-24 - Modified: 2024-06-24 - URL: https://petri.com/us-ban-kaspersky-antivirus-software/ - Categories: Security - Tags: Kaspersky Labs, News - Article Type: News Key Takeaways: Starting in July, the Biden administration will ban the sale of Kaspersky antivirus software in the US. The US Department of Commerce's Bureau of Industry and Security (BIS) cited potential exploitation by the Russian government to steal sensitive information and compromise critical IT systems as the primary reason for the ban. US businesses and consumers are urged to transition to alternative cybersecurity solutions before September 29, 2024. Last week, the Biden administration declared a ban on all US sales of Kaspersky antivirus software starting in July, citing national security concerns. Kaspersky will also be prohibited from issuing updates and security patches for its products beginning in October. According to the Department of Commerce’s Bureau of Industry and Security (BIS), the Russian government could exploit Kaspersky Lab to steal sensitive information from US citizens. Additionally, the BIS pointed out that Kaspersky could be manipulated to install malicious software and prevent security patches from being delivered to critical IT systems. The integration of Kaspersky tools into third-party solutions could also pose a potential security risk. “Today’s Final Determination and Entity Listing are the result of a lengthy and thorough investigation, which found that the company’s continued operations in the United States presented a national security risk—due to the Russian Government’s offensive cyber capabilities and capacity to influence or direct Kaspersky’s operations—that could not be addressed through mitigation measures short of a total prohibition,” the press release reads. US to enforce Kaspersky software ban starting in July Starting on July 24,... --- ### Microsoft to Retire SharePoint News Connector Service - Published: 2024-06-21 - Modified: 2024-06-21 - URL: https://petri.com/microsoft-retire-sharepoint-news-connector/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, SharePoint - Article Type: News Key Takeaways: Microsoft will retire the SharePoint News Connector service in July, after which new connectors cannot be created, and existing ones will stop sending notifications in August. The decision is driven by Microsoft's aim to enhance the integration and real-time collaboration capabilities within Microsoft Teams and SharePoint. Microsoft advises customers to use alternatives to SharePoint News connector. Microsoft is getting ready to retire its SharePoint News connector service next month. The company recommends customers to switch to more advanced tools to continue receiving SharePoint team site news notifications in Microsoft Teams. The SharePoint News Connector allows customers to integrate SharePoint news updates directly into Microsoft Teams channels. Currently, IT admins need to configure connectors between SharePoint News and Teams channels. This feature lets users view news posts from a SharePoint team site as part of a channel conversation in Microsoft Teams. It helps team members stay informed and engaged with important updates. Microsoft plans to deprecate the SharePoint News Connector service on July 22. After this date, IT admins will no longer be able to create new connectors. Starting on August 26, existing connectors will stop sending SharePoint News updates to Microsoft Teams channels. “Our decision to move beyond the SharePoint News connector is driven by our commitment to providing a seamless and collaborative environment. With current advancements in Microsoft Teams and SharePoint, we can leverage alternatives, ensuring real-time updates and discussions within Teams channels,” Microsoft explained. SharePoint News Connector (Image Credits: Microsoft) What are the alternatives to SharePoint... --- ### First Ring Daily: Vertical Powers - Published: 2024-06-21 - Modified: 2024-06-21 - URL: https://petri.com/first-ring-daily-vertical-powers/ - Categories: Hardware - Tags: First Ring Daily, News, Windows 11, Windows on ARM - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the first Copilot+ PCs being off to a good start and Apple remaining very competitive thanks to vertical integration. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the first Copilot+ PCs being off to a good start and Apple remaining very competitive thanks to vertical integration. --- ### Microsoft Enhances Teams Rooms with Intelligent Recaps, Other New Features - Published: 2024-06-20 - Modified: 2024-06-20 - URL: https://petri.com/microsoft-teams-rooms-intelligent-recaps/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is adding intelligent meeting recap and Copilot capabilities to Teams Rooms, leveraging detailed transcripts and AI to generate summaries, insights, and action items. A new AI-driven automatic camera switching feature will optimize camera views in meetings. The Teams Rooms Pro Management service now supports BYOD rooms and bookable desks, providing data-driven insights and remote configuration capabilities. Microsoft has announced a slew of updates for Teams Rooms and devices at InfoComm 2024, to enhance how meetings are conducted with AI-powered features. From intelligent meeting recaps to automatic camera switching, these enhancements aim to create a more seamless and engaging experience for both in-room and remote participants. Microsoft is enhancing Teams Rooms devices with intelligent meeting recap and Copilot capabilities. These features use detailed transcripts with speaker attribution to generate summaries, insights, and action items. Additionally, the speaker recognition feature is now available in public preview for Teams Rooms devices. Later this year, Microsoft will launch a new Team Copilot experience, making the AI assistant even smarter to better facilitate meetings. This Team Copilot feature will be able to take notes during meetings directly from the room. Team Copilot in Microsoft Teams Rooms (Image Credits: Microsoft) Microsoft announced the upcoming addition of automatic camera switching for the IntelliFrame feature in Teams Rooms. This AI-powered feature will select the best camera from multiple sources, such as in-room and laptop cameras, to optimize the viewing experience for remote participants. Remote participants will also have the option to manually switch between different... --- ### Microsoft's New Surface Laptop 7 and Surface Pro 11 Copilot+ PCs Now Available - Published: 2024-06-18 - Modified: 2024-06-18 - URL: https://petri.com/microsofts-surface-laptop-7-surface-pro-11-copilot-pcs/ - Categories: Hardware, Windows 11 - Tags: News, Surface Laptop 7, Surface Pro 11, Windows 11 - Article Type: News Key Takeaways: Microsoft has launched its new Copilot+ PCs, including the Surface Pro 11 and Surface Laptop 7, featuring Qualcomm Snapdragon X Elite and Plus chips. The Surface Pro 11 promises a 90% performance boost over its predecessor, offering options for LCD or OLED displays and an ultrawide front-facing camera. The Surface Laptop 7 is up to 86% faster than its predecessor and it comes with redesigned bezels, extended battery life, and AI-powered camera features. Microsoft has officially launched its new Copilot+ PCs today, which are now available for purchase at the Microsoft Store and other leading retailers. The Surface Pro 11 and Surface Laptop 7, powered by Qualcomm’s Snapdragon X Elite and Plus chips, support advanced AI-powered experiences across the operating system. Surface Pro 11 Microsoft claims that its new Surface Pro 11 should be 90% faster than its predecessor, the Surface Pro 9. It offers a choice between two models: one with Snapdragon X Plus and an LCD display, and another with Snapdragon X Elite and an OLED screen. The Surface Pro 11 also includes an ultrawide front-facing camera, supports Wi-Fi 7 (with optional 5G), and features a detachable Surface Pro Flex keyboard. Surface Pro 11 is available with 16GB or 32GB of memory and up to 1TB of storage. The pricing for the Snapdragon X Plus model with an LCD display starts at $999. 99 and the Snapdragon X Elite model with an OLED display starts at $1,499. https://www. youtube. com/watch? v=jg1ZxdBFEYg Surface Laptop 7 Microsoft’s all-new Surface Laptop 7, which... --- ### Microsoft to Retire DirectAccess in Favor of Always On VPN - Published: 2024-06-18 - Modified: 2024-06-18 - URL: https://petri.com/microsoft-retire-directaccess-always-on-vpn/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft will discontinue DirectAccess in upcoming Windows versions, advising users to transition to Always On VPN. Always On VPN offers enhanced security and functionality, including support for modern authentication methods and seamless integration with existing VPN infrastructure. Microsoft recommends a phased migration approach and provides detailed steps and resources for a smooth transition to Always On VPN. Microsoft has unveiled its plans to phase out DirectAccess in future Windows versions, urging commercial users to switch to Always On VPN for improved security and performance. This change aims to leverage the advanced capabilities of Always On VPN, ensuring a more robust and seamless remote access experience. What is DirectAccess? Microsoft introduced DirectAccess in Windows 7 and Windows Server 2008 R2 to offer seamless, always-on, and secure remote access to corporate networks without traditional VPN connections. This feature boosts remote employee productivity by providing continuous and secure access to corporate resources. What are the benefits of Always On VPN? The Always On VPN (AOVPN) feature, introduced with Windows 10 and Windows Server 2016, is a modern remote access solution designed to replace DirectAccess. It provides secure, seamless, and persistent VPN connections for both domain-joined and non-domain-joined devices. Always On VPN enhances performance and flexibility by supporting split tunneling and various VPN protocols. It also accommodates modern authentication methods, including Windows Hello for Business, multi-factor authentication (MFA), and conditional access policies. Furthermore, this feature integrates with existing VPN infrastructure and supports a wide range of VPN protocols. Microsoft has not yet... --- ### Microsoft Loop Adds New Commenting Capabilities to Tables and Boards - Published: 2024-06-17 - Modified: 2024-06-17 - URL: https://petri.com/microsoft-loop-comments/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Loop, News - Article Type: News Key Takeaways: Microsoft Loop now supports comments on tables and boards, allowing users to ask questions, provide feedback, and discuss issues directly within these components. The commenting feature facilitates asynchronous communication, enabling team members to share ideas and solutions without needing to be online simultaneously. Microsoft now allows users to print Loop pages and export them as PDF files. Microsoft has released a new update that adds support for comments to Loop tables and boards. This new feature allows users to ask questions, add contextual feedback, as well as discuss and address issues. Microsoft Loop, the company’s alternative to Notion launched in public preview back in March 2023. It provides a collaborative canvas that enables multiple users to co-create using Loop components that can be shared across other Microsoft 365 apps, such as Microsoft Teams and Outlook. These Loop components (such as tables, task lists, and paragraphs) update in real time across all these apps. With this release, Microsoft Loop allows users to add new comments to cells in tables or boards and reply to existing comments. This feature enables team members to share ideas, provide feedback, and communicate effectively without needing to be online simultaneously. Comments can also be used to highlight issues, ask questions, and offer solutions related to specific items. Comments in Loop tables and boards (Image Credits: Microsoft) How to add comments to Microsoft Loop tables and boards Microsoft Loop users will need to follow these steps to add a new comment to tables and boards:... --- ### Windows Autopatch Gets Policy Conflict Alerts and Post-Update Reliability Reports - Published: 2024-06-17 - Modified: 2024-06-17 - URL: https://petri.com/windows-autopatch-policy-conflict-alerts/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has launched a public preview of alerts for Windows Autopatch policy conflicts. The update reports feature now provides detailed views and summaries of conflicting policies, affected devices, and specific recommendations for resolution. A new reliability report feature offers insights into the performance of Windows updates, including a reliability score and common issues, to help maintain device health post-update. Microsoft has announced the public preview of alerts for policy conflicts in Windows Autopatch. The Windows Autopatch service is designed to simplify the update management process for Windows, Microsoft 365 Apps for enterprise, Microsoft Edge, and Microsoft Teams. Microsoft has enhanced the update reports feature to help administrators identify devices with conflicting policies, which could cause issues with device management. This new feature provides a detailed view of all devices impacted by conflicting policies. Additionally, IT admins can view a list of all Windows Autopatch policies that conflict with other policies within the same tenant. The feature also offers a summarized report detailing conflicting policies, affected devices, and open alerts. These alerts provide specific details about conflicting policies, their settings, and the Microsoft Entra ID groups. Windows Autopatch continuously monitors policies and generates alerts for missing policies or any changes that affect services. These alerts also include detailed recommendations about actions for resolving these issues. Microsoft notes that IT admins can access the new policy health experience in the Intune admin center. “Windows Autopatch uses Microsoft Intune policies to set configurations and deliver services. IT admins must respond to... --- ### First Ring Daily: Recall Needs More Work - Published: 2024-06-14 - Modified: 2024-06-14 - URL: https://petri.com/first-ring-daily-recall-needs-more-work/ - Categories: Windows, Windows 11 - Tags: First Ring Daily, News, Windows 11, Windows Recall - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to delay the release of Recall, the company's flagship new AI feature that was set to launch on new Qualcomm-powered Copilot+ PCs next week. On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to delay the release of Recall, the company's flagship new AI feature that was set to launch on new Qualcomm-powered Copilot+ PCs next week. --- ### Microsoft Delays Recall AI Feature for Copilot+ PCs to Address Privacy Concerns - Published: 2024-06-14 - Modified: 2024-06-14 - URL: https://petri.com/microsoft-delays-recall-copilot-pcs/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft has delayed the launch of its Recall feature for Copilot+ PCs due to security and privacy concerns. The Recall feature will first be available in preview to users enrolled in the Windows Insider Program, allowing for additional feedback and testing. Microsoft is addressing security issues by making Recall an opt-in feature, requiring Windows Hello authentication, and encrypting the search index database. Microsoft has postponed the rollout of its controversial Recall feature for Copilot+ PCs, and it will now be released first in preview to members of the Windows Insider Program in the coming weeks. This AI-powered tool will undergo additional testing to address privacy and security concerns. Last month, Microsoft unveiled the AI-based Recall feature for upcoming Copilot+ PCs. Recall will create an explorable timeline to help users find previously viewed content on their PCs, including images, documents, apps, and websites. And it will do so by periodically capturing screenshots of users’ screens on Windows devices. Microsoft originally planned to ship Recall with the first wave of Copilot+ PCs coming on June 18. However, security researchers identified vulnerabilities in this feature and raised concerns Recall capturing sensitive information on Copilot+ PCs without keeping the database file encrypted. To address these concerns, Microsoft promised to make the Recall feature opt-in rather than enabled by default. Additionally, the company will implement further security measures, including authentication through Windows Hello and encrypting the search index database. Windows Recall (Image Credits: Microsoft) Microsoft to test Recall with Windows Insiders before broader... --- ### Cloud Backup vs Local Backup - Choosing the Right Backup for Your Organization > In this article, I will explain the differences between cloud backup vs local backup, plus when you should choose one over the other, or sometimes both. - Published: 2024-06-14 - Modified: 2024-07-16 - URL: https://petri.com/cloud-backup-vs-local-backup/ - Categories: Backup & Storage - Tags: Backup, Cloud Storage, Disaster Recovery, featured-top-right, storage - Article Type: Overview Protecting your organization's strategic resources from data loss due to user error, system failure, malware or natural disasters is critically important. Today’s businesses have two main backup method options to consider when they are choosing a backup strategy: cloud backup vs local backup. In this article, I will explain the differences between cloud and local backup, plus when you should choose one over the other, or sometimes both. Cloud backup vs local backup Cloud and local backup can be mutually exclusive or used together to increase the benefits of just choosing one or the other. Let's take a look at each in turn. What is local backup? Local backup is the traditional time-tested method of backing up your data to on-premises storage that uses backup storage from your own location or data center; and usually a third-party backup solution. Sometimes locally backed up data can be replicated from an on-premises device to offsite storage.   What is cloud backup? Public cloud backup is a somewhat newer option although it has been around since about 2006 when Amazon first released their EC2 and S3 cloud computing options. Since that time, other cloud vendors like Microsoft Azure and Google have embraced cloud storage and many backup vendors have added cloud backup service options to their offerings.   Like its name implies, with cloud backup your critical data is stored in cloud-based servers rather than on-premises. Let’s take a closer look at the advantages and disadvantages of cloud backup versus local backup. Local... --- ### Microsoft Adds Copilot for Microsoft 365 Chat to Classic Outlook for Windows - Published: 2024-06-13 - Modified: 2024-06-14 - URL: https://petri.com/microsoft-copilot-classic-outlook-for-windows/ - Categories: Microsoft 365, Microsoft Copilot - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is rolling out new Copilot capabilities to the classic Outlook for Windows client, which is currently available to commercial customers in the Current and Monthly Enterprise Channels. The classic Outlook for Windows client is getting a new Copilot for Microsoft 365 chat experience. A Copilot for Microsoft 365 license is required to access Copilot features in classic Outlook for Windows. Microsoft is enhancing the classic Outlook for Windows app with new Copilot capabilities this month. The company has announced that it's adding a new Copilot for Microsoft 365 chat experience to the classic Outlook app for Windows. According to Microsoft, commercial customers will be able to access the Copilot AI assistant from the left app bar in classic Outlook. Users will need to click on it to open the chat experience that also incorporates work content. This new feature will start rolling out to customers in the Current Channel in June, followed by the Monthly Enterprise Channel in August 2024. “We also know that our customers still rely on the classic version of Outlook for a lot of their work and to improve their Copilot experience we have been rolling out Copilot features into classic Outlook over the last few months,” Microsoft explained. “For future Copilot features, we will continue to release first in the new Outlook for Windows and web, with Mac and mobile fast following, and classic releasing between 3 and 12 months after the first roll out. ” Copilot can be accessed in classic Outlook... --- ### Microsoft Teams Chats to Simplify File Management with New Shared Tab - Published: 2024-06-12 - Modified: 2024-06-12 - URL: https://petri.com/microsoft-teams-chats-shared-tab/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams is renaming the Files tab to Shared, which will now display both files and links shared in chats. The Shared tab will include recent files, all files, and links, with support for image previews and keyword search coming soon. This update will be available for Microsoft Teams desktop app users on Windows and macOS starting in July 2024. Microsoft Teams is getting a new update to simplify how users discover content in chat messages. The app will rename the existing Files tab to Shared, which will show all the files and links shared within the Teams chat. In Microsoft Teams, the Files tab offers a simple interface where users can see a single list of files that have been shared within a chat. However, it doesn’t include links to any external resources or documents. This means users have to search through chat messages to find these links. With the new Shared tab, users will be able to find recent files, all files, and links all in one place. Microsoft says this update will be enabled by default for all users, but it won't affect the Channels experience in Microsoft Teams. Links view in Microsoft Teams Chat (Image Credits: Microsoft) New features coming to the Shared tab in Microsoft Teams chats Microsoft will soon add support for image previews and a keyword search experience to the Shared tab in Microsoft Teams chats. Additionally, the Shared tab will allow users to find media links, including images, videos, and... --- ### Microsoft Releases June 2024 Patch Tuesday Updates - Published: 2024-06-12 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-june-2024-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has patched a critical flaw in Microsoft Message Queuing (MSMQ) that allows an attacker to take over a vulnerable system. Microsoft also fixed a vulnerability in Microsoft Outlook that could be exploited via the email preview pane. The KB5039212 update for Windows 11 versions 22H2 and 23H2 introduced improvements to the Windows Share menu. Microsoft released yesterday the June 2024 Patch Tuesday updates for Windows 11 and Windows 10 devices. This month, the company has released security patches to address 49 vulnerabilities in Windows, Office, and other components. On the quality and experiences update front, Microsoft has released a couple of improvements for the Windows Share menu in Windows 11 versions 22H2 and 23H2. The company has also introduced a new Snipping tool feature on Windows 10. 49 vulnerabilities fixed with the June 2024 Patch Tuesday updates As pointed out by the Zero Day Initiative, Microsoft has addressed 49 vulnerabilities, including a critical flaw in Microsoft Message Queuing (MSMQ) technology. Here’s a list of the most important vulnerabilities Microsoft fixed this month. CVE-2024-30080: This is a critical remote code execution (RCE) vulnerability in Microsoft Message Queuing (MSMQ) with a CVSS score of 9. 8. MSMQ is a synchronous messaging feature used to deliver and read messages from queues in Windows. This flaw could allow an unauthenticated hacker to completely take over a vulnerable Windows system by sending a specially crafted malicious MSMQ packet. It affects all versions of Windows, including Windows 10 and Windows Server 2008. CVE-2023-50868: This... --- ### New Microsoft Teams Client Lets Users Mute and Unmute from the Windows Taskbar - Published: 2024-06-11 - Modified: 2024-06-11 - URL: https://petri.com/microsoft-teams-mute-unmute-windows-taskbar/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: The new Microsoft Teams now allows users to mute and unmute their microphones directly from the Windows taskbar. This new feature makes it easier to manage audio settings while multitasking during meetings. The feature is being rolled out to commercial customers in the Teams public preview program. The latest update to the new Microsoft Teams desktop client brings a highly anticipated feature that simplifies managing audio input during video calls and meetings. Microsoft Teams users can now quickly mute and unmute their microphones directly from the Windows taskbar, enhancing multitasking efficiency during meetings. In Microsoft Teams, users often stay muted to avoid unwanted interruptions or background noise during meetings. Previously, unmuting required clicking the microphone icon in the meeting controls or pressing the Ctrl+Shift+M keys. However, this process involved switching between windows when multitasking on Windows devices. With this update, Microsoft Teams allows users to control their microphones directly from the Windows taskbar by simply clicking the microphone icon. “We know there are times during a Teams call when you need to switch to a different screen on your device. In the new Teams experience on Windows, thanks to your feedback, you can now check and see if you’re on mute right in the Windows taskbar,” Microsoft explained. The microphone icon appears during a Teams call or a meeting (Image Credits: Microsoft) How to mute/unmute audio from the Windows taskbar in Microsoft Teams There are two ways users can mute or unmute their microphones during calls or meetings... --- ### Microsoft Defender for Cloud Apps Now Tracks Unauthorized SaaS Apps on macOS - Published: 2024-06-11 - Modified: 2024-09-09 - URL: https://petri.com/microsoft-defender-for-cloud-apps-saas-apps-macos/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Cloud Apps, News - Article Type: News Key Takeaways: Microsoft has announced that the Shadow IT discovery capabilities in Defender for Cloud Apps now support macOS. The new integration with Defender for Endpoint makes it easier to detect and remediate risky behaviors on SaaS apps on macOS. The update includes support for Podman and Syslog-tls receiver types, allowing for comprehensive log collection and insight into Shadow IT on various platforms, including AKS and Linux containers. Microsoft has released an update for its Defender for Cloud Apps, extending its Shadow IT discovery capabilities to macOS devices. This enhancement enables organizations to monitor and manage unauthorized SaaS applications on Mac machines. What is Shadow IT? Shadow IT refers to the use of technology systems, software, applications, services, and devices without the IT department’s approval or knowledge. These unapproved tools could introduce major security vulnerabilities and often lead to data breaches and other cybersecurity issues. Shadow IT also makes it harder for administrators to keep track of where data is stored and how it’s being used within the organization. Key features and benefits Microsoft Defender for Cloud Apps offers various features to help customers discover SaaS apps and assess risks in order to enhance overall security. Previously, IT admins could only use network logs to discover SaaS apps on Windows devices. With the new Defender for Endpoint integration, Microsoft Defender for Cloud apps now supports the discovery of Shadow IT SaaS apps on macOS devices. This makes it easier to detect and remediate risky or unusual behaviors on SaaS apps... --- ### Microsoft to Disable Windows Recall By Default Amid Security Concerns - Published: 2024-06-10 - Modified: 2024-06-10 - URL: https://petri.com/microsoft-disable-recall-by-default/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft will disable the AI-powered Recall feature by default on new Copilot+ PCs. Recall snapshots will now be encrypted and accessible only through Windows Hello authentication. IT administrators will be able to disable the snapshot-saving feature but cannot enable it on behalf of users. Microsoft has committed to making changes to Recall before its launch on new Copilot+ PCs later this month, opting to disable the AI-powered Copilot feature by default for all Windows users. This decision follows privacy and security concerns raised by researchers regarding the potential misuse of the controversial Recall feature. Last month, Microsoft announced the Recall feature for the new Copilot+ Windows PCs. This feature takes a snapshot of each user’s action on the screen every few seconds. It stores these images locally and analyzes them with an AI model to enhance search results. Microsoft assured that user data would not be used to train these models. However, security researchers pointed out that Recall could be exploited to access and steal a user’s entire PC usage history. The data was stored in an easily accessible, non-encrypted SQLite database, potentially exposing sensitive information. Microsoft overhauls Recall functionality In response to these concerns, Microsoft will now disable Recall by default on Copilot+ PCs, and users must activate it during the out-of-box experience. Moreover, the company will require enrollment in Windows Hello in order to use Recall. Users will also need to authenticate each time they open the Recall app to view their timeline. “Even before making... --- ### How Does RAID Data Recovery Work? What to Expect? - Published: 2024-06-10 - Modified: 2024-06-10 - URL: https://petri.com/raid-data-recovery/ - Categories: Hardware - Tags: featured-top-left, NoAD, NoAds, RAID - Article Type: How To This article will provide an overview of the most common RAID levels and the process of RAID data recovery in the event of a failure. RAID, or Redundant Array of Independent Disks, is a virtual storage technology that combines two or more hard drives in a single enclosure to act as one logical unit. There has been exponential growth in RAID technology when it comes to data storage, capacity, and rendering performance. This article is sponsored by Stellar Info. Hybrid or nested RAID levels are also available, along with traditional RAID levels, which require less technical expertise to configure the RAID arrays. Even NAS (Network Attached Storage) and DAS (Direct-Attached Storage) have started implementing RAID in their server to boost performance, availability, and fault tolerance through redundancy. Although RAID is considered a better solution for performance and data protection through redundancy, it's still not immune to data loss. However, data recovery from RAID is possible (except RAID 0). Further, recovering from a complicated RAID data storage structure can be challenging and time-consuming unless you know the best way to do it. Common RAID levels: Several RAID levels are available, including RAID 0, RAID 1, RAID 5, and RAID 6. Hybrid RAID levels are also available, including RAID 10, RAID 50, and RAID 60. Let's discuss these RAID levels in a bit more detail: RAID 0: This RAID level requires configuring at least two drives. It is based on a striping data storage mechanism that spreads data across the drives... --- ### Microsoft Unveils Major Enhancements for Copilot for Microsoft 365 - Published: 2024-06-07 - Modified: 2024-06-07 - URL: https://petri.com/microsoft-updates-copilot-for-microsoft-365/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft's Copilot Studio now supports connectors for Microsoft SharePoint, OneDrive, Dataverse tables, Fabric OneLake, Microsoft Graph, and third-party apps. Restricted SharePoint Search enables administrators to review and audit site permissions, enhancing security and control over shared content. The Catchup feature provides users with proactive suggestions, document updates, and activity summaries. Microsoft introduced several new features for Copilot in Microsoft 365 in May 2024. The company has highlighted new admin and management capabilities, including new Copilot connectors, Restricted SharePoint Search, and Microsoft Purview AI Hub. Microsoft’s Copilot Studio now supports Copilot connectors, allowing businesses to use specific data sources like Microsoft SharePoint, OneDrive, Dataverse tables, Fabric OneLake, Microsoft Graph, and third-party apps. Later this month, IT admins will be able to curate and manage these connectors within their organizations. Last month, Microsoft introduced Copilot extensions, enabling customers to tailor the AI assistant to their specific business needs. In July, a new feature will allow administrators to create these extensions with Graph connectors directly from the Microsoft 365 admin center. This will enable customers to use predefined prompts for natural language queries, targeted searches, and custom communication on semantically indexed third-party data in Microsoft Graph. Microsoft has announced the general availability of Restricted SharePoint Search, which allows administrators to review and audit site permissions. The company has also launched a new AI Hub in Microsoft Purview, providing insights into generative AI activity for Copilot in Microsoft 365 and third-party AI apps. IT admins can track confidential information disclosed to Copilot,... --- ### Microsoft Launches Azure Bastion Premium SKU with Advanced Security and Monitoring Features - Published: 2024-06-06 - Modified: 2024-06-06 - URL: https://petri.com/microsoft-azure-bastion-premium/ - Categories: Microsoft Azure - Tags: Azure Bastion, News - Article Type: News Key Takeaways: The new Azure Bastion Premium SKU offers advanced monitoring, recording, and auditing capabilities, providing robust security for organizations with highly sensitive workloads. The Premium SKU includes a Private Only Azure Bastion feature, allowing secure access to Azure virtual machines via a private endpoint. Organizations can benefit from graphical session recording to help administrators detect anomalies and potential security breaches. Microsoft has launched a new Premium SKU in public preview for its Azure Bastion service. This new offering is designed to deliver advanced monitoring, recording, and auditing capabilities tailored for organizations managing highly sensitive workloads. Azure Bastion is a fully managed service that enables organizations to securely access Azure virtual machines (VMs) via a private Internet connection. It’s an agentless service that does not require any additional software for Remote Desktop Protocol (RDP) or Secure Shell Protocol (SSH). Azure Bastion is available in Developer, Basic, Standard, and Premium SKUs, catering to various functionality and cost requirements. Microsoft emphasized that the new Azure Bastion Premium SKU offers several security features to protect sensitive organizational data. A new Private Only Azure Bastion feature allows customers to access their Azure VMs through a private endpoint. This capability eliminates the need to secure public IP addresses in enterprise environments. Additionally, Azure Bastion Premium offers more recording and recording capabilities for organizations. The graphical session recording feature logs every VM session activity initiated through an Azure Bastion connection. Users will be able to access these recordings in the Azure Bastion resource blade. It should... --- ### Microsoft Shifts from NTLM to Kerberos to Strengthen Windows Authentication - Published: 2024-06-05 - Modified: 2024-06-05 - URL: https://petri.com/microsoft-deprecates-ntlm-kerberos/ - Categories: Windows - Tags: News, Windows - Article Type: News Key Takeaways: Microsoft has deprecated the NT LAN Manager (NTLM) user authentication protocol in Windows and Windows Server. This change intends to encourage the adoption of the more secure Kerberos protocol. Microsoft recommends using the Negotiate protocol as a fallback mechanism, allowing seamless interoperability between NTLM and Kerberos. Last year, Microsoft detailed plans to phase out NT LAN Manager (NTLM) user authentication to promote the adoption of the more robust Kerberos protocol. Now, the company has taken a definitive step by officially deprecating NTLM authentication in both Windows and Windows Server environments. NTLM is an authentication protocol that enables a client to connect to a server with a username and password. It’s a part of the Windows security architecture and uses a challenge/response mechanism for authentication. The server initiates negotiation, prompting the client to respond with an authentication message, encrypted with the hash of the user’s password. Microsoft replaced NTLM with Kerberos as the default authentication mechanism protocol in Windows 2000 and subsequent Active Directory domains, primarily due to Kerberos offering enhanced cryptography and server authentication. However, NTLM is widely used in certain scenarios, mainly for backward compatibility with legacy systems. Nevertheless, NTLM poses security vulnerabilities, including susceptibility to man-in-the-middle, relay, and pass-the-hash attacks. Moreover, NTLM lacks support for modern authentication methods like biometrics, multifactor authentication, and FIDO keys. Microsoft advises organizations to switch to modern authentication mechanisms to bolster security against cyber threats. According to Microsoft, NTLM will continue to work on Windows 11 version 24H2 and Windows Server... --- ### New Outlook for Windows to Add Offline Mode with Performance Improvements - Published: 2024-06-05 - Modified: 2024-06-05 - URL: https://petri.com/new-outlook-for-windows-offline-mode/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook for Windows - Article Type: News Key Takeaways: The new Offline mode in Outlook for Windows will allow users to view emails, calendar events, and contacts without an internet connection. The new feature should improve performance and enable actions such as composing, flagging, moving, and deleting emails offline. IT administrators have the ability to control the Offline mode by disabling it through the settings. Microsoft is getting ready to roll out new offline capabilities for the new Outlook for Windows client later this month. This new Offline mode was first announced in November 2023, and it will allow users to access emails, calendar events, and contacts without needing an internet connection. With Offline mode, the new Outlook for Windows app will store emails, calendar events, and contacts locally on the user’s device. Users will be able to perform key actions such as flagging, moving, and deleting emails, and composing new messages even when not connected to the internet. “After a user connects to the internet, actions performed on emails while offline will synchronize back to the server and emails sent while offline will complete sending, moving from the Outbox to Sent Items,” Microsoft explained. “By saving items on the user’s device, the performance of the new Outlook will be improved, because interacting with items saved on the device is faster than interacting with items loaded via a network connection. ” Microsoft mentioned that the new Outlook for Windows client will require additional storage on the user’s device because items are stored locally. The storage impact will vary... --- ### Microsoft Partners with Broadcom to Streamline Cloud Migration for VMware Customers - Published: 2024-06-04 - Modified: 2024-06-10 - URL: https://petri.com/microsoft-broadcom-license-portability-vmware/ - Categories: Microsoft Azure, VMware - Tags: Microsoft Azure, News, vmware - Article Type: News Key Takeaways: Microsoft and Broadcom have announced an expanded collaboration that will allow VMware Cloud Foundation (VCF) customers to use their licenses on Azure VMware Solution. This new partnership provides VCF license holders with the ability to use their licenses across both Azure VMware Solution and their own data centers. It provides IT professionals with enhanced flexibility and efficiency in managing and migrating VMware workloads. Last week, Microsoft announced an expansion of its partnership with Broadcom, poised to bring significant benefits to VMware Cloud Foundation (VCF) customers. This new collaboration will enable seamless migration and flexibility by allowing VCF license holders to use their licenses on Azure VMware Solution. Understanding Azure VMware Solution and VMware Cloud Foundation Microsoft launched Azure VMware Solution in 2019, enabling customers to extend and migrate their existing VMware Private Clouds to run natively on Azure. This service offers a dedicated infrastructure, VMware vSphere clusters, and managed services, ensuring seamless integration of VMware workloads with Azure. VMware Cloud Foundation (VCF) is an integrated software platform that combines compute, storage, networking, and management services to create software-defined data centers. It is designed for both private and hybrid cloud environments. VCF simplifies IT operations with automated provisioning, offers intrinsic security, and supports multi-cloud strategies. Broadcom enables VCF portability to Google Cloud VMware Engine Microsoft aims to attract more customers, especially those using VMware Cloud Foundation, amidst growing competition, notably from Google Cloud's VMware Engine. In February, Broadcom announced plans to support license portability of VMware Cloud Foundation to... --- ### A Guide To Microsoft Office 2024 (LTSC): What You Need To Know > Learn about the new version of Microsoft Office 2024 LTSC. We'll dive into new features, pricing, expected availability, and the main reasons you should choose this perpetual version vs the subscription model. - Published: 2024-06-03 - Modified: 2024-06-03 - URL: https://petri.com/microsoft-office-2024-guide/ - Categories: Office - Tags: featured-top-right, Microsoft 365, Microsoft Office, Productivity - Article Type: Overview Learn about the new version of Microsoft Office 2024 on the Long Term Service Channel (LTSC). We'll dive into new features, pricing, expected availability, and the main reasons you should choose this perpetual version vs the hyped Microsoft 365 subscription model. Stay up to date and make informed decisions with this guide. What is Office 2024? Office 2024 for Windows and Mac is the next version of Office offered to customers by Microsoft for specialized use cases that require a long-term servicing channel instead of the license subscription model (Microsoft 365 Apps). This release is an upgrade for Office 2021 which will include a new set of features. More on that soon. The 'About' screen for Office 2024 LTSC Professional Plus LTSC Preview (Image Credit: Michael Reinders/Petri. com) Office LTSC will be supported for five years according to their fixed lifecycle policy in parallel with the upcoming Windows 11 LTSC release. Here is the list of apps included in the various suites: Word, Excel, PowerPoint, Outlook, Access, OneNote The release will also include options for Microsoft Project Professional and Microsoft Visio Professional Here are the main SKUs available to purchase: Microsoft Office LTSC Standard Microsoft Office LTSC Professional Plus (includes Access) What is new in Office 2024? Several new features and enhancements will be released in the 2024 version. Here are some highlights: This update includes new options for creating meetings and refined search capabilities in Outlook Dozens of new Excel features like new Dynamic Charts and Arrays - these are significant... --- ### Microsoft Releases Windows Server 2025 in Public Preview with Enhanced Storage, Security, and Hyper-V Capabilities - Published: 2024-06-03 - Modified: 2024-06-03 - URL: https://petri.com/windows-server-2025-public-preview/ - Categories: Windows Server - Tags: News, Windows Server 2025 - Article Type: News Key Takeaways: Windows Server 2025 introduces significant updates such as advanced Active Directory functionalities, hotpatching, and improved encryption protocols. The new hotpatching feature allows IT admins to apply security updates without system reboots. The latest version includes storage enhancements with a 70% performance increase for NVMe storage and GPU partitioning for better resource utilization in Hyper-V. Microsoft has announced the public preview of Windows Server 2025, including a host of new features and enhancements to optimize server performance and security. The major highlights of this release include Active Directory updates, hotpatching capabilities to minimize downtime, and GPU partitioning for Hyper-V. Hotpatching Microsoft has introduced Arc-enabled hotpatching support in Windows Server 2025. It’s one of the top-requested features that allows IT admins to apply security updates without a system reboot. This capability should help to minimize downtime and improve the efficiency of maintaining server environments. The hotpatching feature is available for the Standard and Datacenter editions of Windows Server 2025. Microsoft says that administrators will need to enable hotpatching via Azure Portal. However, accessing this feature requires a monthly subscription, prompting many organizations to reconsider their patch management strategies. Hotpatching in Windows Server 2022 Azure Edition (Image Credits: Microsoft) Next-generation Active Directory Microsoft highlighted that Windows Server 2025 brings major enhancements to Active Directory, including a new functional level as well as security and performance improvements. Specifically, the latest release supports a new domain and forest functional level in Windows Server Active Directory. A functional level allows administrators to specify which... --- ### First Ring Daily: AI Bedfellows - Published: 2024-05-31 - Modified: 2024-05-31 - URL: https://petri.com/first-ring-daily-ai-bedfellows/ - Categories: Microsoft - Tags: artificial intelligence, Azure, First Ring Daily, Microsoft, News, OpenAI - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the impact of a possible Apple/OpenAI partnership on Microsoft, which invested billions of dollars into the ChatGPT maker and obtained an exclusive license on GPT-4 and all other OpenAI models. Apple starting to use OpenAI technology on its products could also have big implications for Azure, which is now OpenAI's main cloud provider. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the impact of a possible Apple/OpenAI partnership on Microsoft, which invested billions of dollars into the ChatGPT maker over the years and obtained an exclusive license on GPT-4 and all other OpenAI models. Apple starting to use OpenAI technology on its products could also have big implications for Azure, which is now OpenAI's main cloud provider. --- ### New Microsoft Teams Client Now Alerts Users When Colleagues Are Available - Published: 2024-05-31 - Modified: 2024-05-31 - URL: https://petri.com/new-microsoft-teams-notify-when-available/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: The new Microsoft Teams client is getting the "Notify when available" feature, allowing users to receive notifications when a colleague becomes available. This feature improves communication efficiency by reducing the need to repeatedly check colleagues' status indicators. Users can manage subscriptions to "Notify when available" through the app settings. Microsoft is adding a highly anticipated “Notify when available” feature to the new Teams desktop app, enhancing real-time communication among colleagues. This update intends to streamline connectivity by notifying users when team members become available. The “Notify when available” feature in Microsoft Teams helps users stay informed about their colleagues' availability. This feature is handy when trying to reach team members who are currently unavailable or busy. It helps to save time by eliminating the need to check their status indicators constantly. Previously, this feature was only available in the classic Microsoft Teams desktop client. Once enabled, users will receive a banner notification within Teams when a colleague's status changes to available. This feature ensures timely follow-ups with team members whose input is critical to their work. Notify when available feature in new Microsoft Teams (Image Credits: Microsoft) Microsoft Teams users can subscribe to get these notifications via the chat list or the "People" section in settings. Moreover, users can choose to turn off this “Notify when available” feature or manage all subscriptions in app settings. Microsoft has started rolling out this update to targeted release customers in the new Teams desktop app. The “Notify when available” feature is... --- ### Microsoft to Launch New Converged Platform to Streamline Cloud Access Management - Published: 2024-05-30 - Modified: 2024-05-30 - URL: https://petri.com/microsoft-converged-platform/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra, Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft's new converged platform integrates AI and machine learning to streamline risk discovery and remediation. The upcoming platform will provide administrators with advanced tools to manage and secure identities and permissions across enterprise environments. Microsoft Entra ID has added support for device-bound passkeys and external authentication methods. Microsoft has announced a new converged platform to enhance risk management within enterprise environments. This new platform aims to streamline risk discovery and remediation, offering administrators insights and control over identities and permissions. This new converged platform will be built on Microsoft’s existing Entra ID products, including Privileged Identity Management (PAM), Permissions Management (CIEM), ID Governance (IGA), and Workload ID (IAM for workloads). Microsoft also plans to incorporate AI and machine learning to improve these technologies. It should help organizations identify major risks and develop effective remediation strategies to safeguard cloud environments. Microsoft emphasizes that the new platform will give administrators comprehensive insights into all identities and permissions, making detecting and addressing risky permissions easier. Moreover, the service will offer recommendations for remediating these risks. The converged platform will allow IT admins to access appropriate permissions for specific roles and durations. They will also be able to use automated policies to ensure continuous compliance. “At Microsoft, we’re committed to bringing this vision to life for our customers through the advancement and innovation of our newly converged platform, designed to secure access to resources in any cloud. Additionally, this vision extends to securing access to resources anywhere, including on-premises and business apps,”... --- ### Microsoft Delays Teams Live Events Retirement, Eases Transition to Town Halls - Published: 2024-05-29 - Modified: 2024-05-29 - URL: https://petri.com/microsoft-teams-live-events-retirement/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has decided to extend the support for Teams Live Events beyond the previously announced retirement date of September 30, 2024. Microsoft aims to ensure a smooth transition to the new Town Halls feature, which supports up to 10,000 participants. Upcoming improvements to the Town Halls experience will include features like live reactions, raise hands and advanced production options. Microsoft is backtracking on its plans to retire Teams Live Events in September 2024. Last year, the company warned commercial customers that this feature would be deprecated by September 30, but those plans unexpectedly changed this week. Microsoft Teams introduced the town hall experience in Fall 2023. It allows organizations to host different types of internal and external events, including global team meetings, internal broadcasts, fireside chats, all hands, company-wide town halls, and more. The town hall feature supports 10,000 participants, AI-generated Live transcription, Live translation captions, and attendee reporting capabilities. Additionally, Microsoft Teams Premium customers will gain access to advanced features, including support for up to 20,000 attendees and Microsoft eCDN. They will also be able to host up to 50 concurrent events within a single tenant. Based on customer feedback, Microsoft has decided to extend support for Teams Live Events beyond the previously announced retirement date. This change allows organizations to continue using Teams Live Events and upgrade to Town Halls at their convenience, making the transition smoother and easier to manage. “We’ve spoken with customers and understand how important it is to ensure a smooth transition... --- ### How to Resolve Exchange Dirty Shutdown Error? A Comprehensive Guide > Learn to identify, troubleshoot, and fix Dirty Shutdown error in Microsoft Exchange. Also, know expert tips, FAQs, and much more to ensure smooth operation of your Exchange Server. - Published: 2024-05-28 - Modified: 2024-07-01 - URL: https://petri.com/exchange-dirty-shutdown/ - Categories: Exchange Server - Tags: ESEUTIL, Exchange Server, NoAD, NoAds - Article Type: How To, Sponsored In this guide, Bharat Bhushan shows you how to diagnose and resolve an Exchange dirty shutdown error and help you to bring the Exchange database back to a clean shutdown state. Thanks to Stellar Info for sponsoring this post. The Exchange Server logs serve as the backbone of data integrity and disaster recovery in Exchange Server. The server log files maintain and record every database transaction. These log files are then committed to the Exchange database. This ensures a proper activity trail within the database. In fact, this meticulous recording process ensures that the database, in the event of a disruption, can be restored to its last consistent state by replaying the logs. However, sometimes, the log files are not committed to the database for various reasons. In such cases, the database gets dismounted and displays the Dirty Shutdown error. The Dirty Shutdown issue occurs when the Exchange database has not been closed properly and the transactions recorded in the log files are not committed to the database. This can potentially lead to data loss and email service disruption. Causes of an Exchange Dirty Shutdown error Following are a few reasons which can lead to the dirty shutdown of the database: Power Failures: Power failures cause the Exchange service to stop immediately, resulting in incomplete transactions. Server Crash: Hardware failures or software bugs may crash the server. So, the database might not be shut down properly. Abrupt Termination of Services: Manually stopping Exchange Server services without following a proper procedure... --- ### Microsoft Unveils Next-Gen Windows Autopilot Device Preparation Experience for Faster, Scalable Deployments - Published: 2024-05-28 - Modified: 2024-05-28 - URL: https://petri.com/windows-autopilot-device-preparation/ - Categories: Endpoint Management - Tags: Build 2024, News, Windows 10, Windows 11, Windows Autopilot - Article Type: News Key Takeaways: The new Windows Autopilot device preparation experience offers improved scalability and faster deployments. IT administrators gain access to a new real-time reporting feature that provides granular details about the deployment process. Microsoft plans to introduce additional features such as self-deploying and pre-provisioning modes, customizable out-of-box experiences (OOBE). Microsoft has recently announced a new Windows Autopilot device preparation experience for commercial customers. Built on a re-engineered architecture, this new solution delivers enhanced scalability, accelerated deployments, and support for cloud-based instances such as Windows 365 and Azure Virtual Desktops. What is Windows Autopilot? Microsoft first launched Windows Autopilot back in June 2017. It's a tool that enables IT administrators to pre-configure and set up new devices in enterprise environments. This solution leverages cloud-based services to manage devices from initial deployment to end-of-life, enhancing user experience and reducing IT workload. Windows Autopilot offers various key capabilities such as zero-touch experience as well as automatic connectivity to Microsoft Entra ID and MDM services. It supports both Windows 10 and Windows 11 devices. “To keep delivering Windows Autopilot to existing users without disruption, this next iteration was built alongside the current Windows Autopilot technology. The features you know and love in Windows Autopilot aren't going anywhere! We're offering the reliability of it and innovations of device preparation in tandem until the experience can be totally unified with the new, more capable architecture,” Microsoft explained. Windows Autopilot device preparation is accessible from the Windows enrollment blade (Image Credits: Microsoft) What are the benefits of... --- ### Microsoft Intune Gets Big Update to Enhance Device Management and Security - Published: 2024-05-24 - Modified: 2024-05-24 - URL: https://petri.com/microsoft-intune-update-device-management-security/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft introduces a re-engineered Windows Autopilot experience with faster, more configurable self-deployment capabilities. Microsoft now allows users to retrieve their BitLocker recovery keys directly from the Company Portal website. Microsoft introduces enrollment time grouping to accelerate the assignment of app policies and scripts for new Windows devices. Microsoft is set to enhance its Intune solution with a suite of new capabilities designed to optimize both administrative and user experiences across various platforms. Key features include the next-generation Windows Autopilot experience, advanced management tools for shared devices, improved security baselines, and streamlined device enrollment processes. Windows Autopilot device preparation Microsoft has launched the next-generation Windows Autopilot experience, known as device preparation. This new Windows Autopilot option features a completely re-engineered architecture, providing faster and more customizable self-deployment capabilities. “We based this new capability on re-engineered architecture that will allow us to accommodate more devices, deliver more efficient results, and allow provisioning of cloud instances like Windows 365 and Azure Virtual Desktops,” Microsoft explained. The new device preparation experience will be available alongside the existing Windows Autopilot technology. Microsoft plans to eventually unify these experiences under the new architecture, though there is no ETA yet. Windows Autopilot device preparation (Image Credits: Microsoft) Enhanced frontline worker (FLW) device management Microsoft has announced new features to help administrators manage shared devices for frontline workers. The release includes enhancements for the Managed Home Screen application, which allows IT admins to customize and standardize user experiences on Android devices. These improvements include a new... --- ### First Ring Daily: The Best Thing Announced - Published: 2024-05-24 - Modified: 2024-05-24 - URL: https://petri.com/first-ring-daily-the-best-thing-announced/ - Categories: Microsoft - Tags: Build 2024, copilot, First Ring Daily, Microsoft, News, Windows 11, Windows on ARM - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discussed the most interesting announcements from Microsoft this week as the company's annual Build developer conference was coming to a close. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the most interesting announcements from Microsoft this week as the company's annual Build developer conference was coming to a close. Paul and Brad discuss the new Snapdragon dev box that was announced at the pre-event Build and how it might be a better option than a Mac Mini for Windows on ARM development. The Seattle-Tacoma International Airport (SeaTac) comes under fire as security there is always a mess and worse than Newark. Recall feature in Windows 11: Paul and Brad are skeptical about the Windows Recall feature that uses AI to take screenshots and find files based on user queries. They think it is unsophisticated and privacy invasive. Nvidia's impressive earnings get praise and their GPU performance. Brad and Paul joke about the Scarlett Johansson AI that was used to demonstrate the power of Nvidia's GPUs. And finally Brad and Paul aren't very tempted by the new Sonos headphones that support Dolby Atmos and lossless audio. They wish they could connect directly to Wi-Fi and integrate with the Sonos system at home. --- ### Microsoft to Start VBScript Deprecation in Windows Later This Year - Published: 2024-05-23 - Modified: 2024-05-23 - URL: https://petri.com/microsoft-retire-vbscript-windows/ - Categories: Windows, Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft will begin the deprecation process for VBScript in the second half of 2024, with plans to completely remove it in future Windows versions. The deprecation will occur in phases, starting with making VBScript an optional feature in Windows 11 version 24H2, followed by disabling it by default in 2027, before its complete removal. Microsoft advises users to transition their VBScript-based applications and processes to modern alternatives to ensure continued functionality and security. Last year, Microsoft unveiled its plans to end support for VBScript, a scripting language that has been a staple for Windows administrators for nearly three decades. The company announced yesterday that the deprecation process for this legacy tool will begin in the second half of 2024. Microsoft introduced VBScript (Visual Basic Script) back in 1996. It’s primarily used to automate common administrative tasks in Windows environments, including file manipulation, configuration, and system management. VBScript also allows administrators to write simple scripts to test and prototype applications and system behaviors. In recent years, cybercriminals have increasingly misused VBScript for malicious activities. They have crafted scripts that run natively on Windows machines, delivering remote access Trojans, downloaders, and other harmful software. This misuse allows hackers to steal sensitive data from compromised systems and move laterally across networks. VBScript deprecation plan Microsoft has recently detailed its plan to deprecate VBScript in three phases. In the first phase, starting in the second half of 2024, VBScript will be available by default as an optional feature in Windows 11 version... --- ### Free Tool - Use Purple Knight to Get an Active Directory Security Assessment - Published: 2024-05-23 - Modified: 2024-05-24 - URL: https://petri.com/purple-knight/ - Categories: Active Directory (AD) - Tags: Active Directory, free tool, Microsoft Entra ID, Purple Knight, Security, Semperis - Article Type: Overview Learn about the benefits of the Purple Knight Active Directory (AD) security assessment and how it can help improve the security of your directory services organization, detect potential vulnerabilities, and protect your assets from ransomware, cyber attacks, data breaches, and potential data integrity emergencies. What is Purple Knight? Purple Knight is a purpose-built free security assessment tool from Semperis. It is designed to analyze your Windows Server Active Directory, Microsoft Entra ID, and Okta environments for common security vulnerabilities in an efficient and easy-to-understand manner. Here are the tool's four main functions: Identify Indicators of Exposure (IoEs) and Indicators of Compromise (IoCs): This helps your organization discover IoEs and IoCs in your hybrid AD environment. (AD and Entra ID). IoEs are high-risk configuration settings that hackers can easily exploit, while IoCs can signal a real-time cyberattack. Scan for Vulnerabilities: Purple Knight scans your on-premises Active Directory, your cloud Entra ID tenant, and Okta environments and gives you a security score based on your environment across seven categories. Tracks Security Posture Over Time: You can set up periodic automatic scans with Purple Knight to stay proactive in your security fight. If left unchecked, and forgotten, you could open your environment to penetrations. Provide Remediation Guidance: The free tool offers expert, prioritized guidance on remediating found vulnerabilities. As an example, it can help you address old admin accounts that are set with un-expiring passwords. What common security vulnerabilities does Purple Knight scan for? Let me give you more examples of what vulnerabilities... --- ### Build 2024: Microsoft SharePoint Embedded Now Generally Available to Streamline Document Management - Published: 2024-05-22 - Modified: 2024-05-22 - URL: https://petri.com/microsoft-sharepoint-embedded-generally-available/ - Categories: Microsoft 365 - Tags: Build 2024, Microsoft 365, News, SharePoint Embedded - Article Type: News Key Takeaways: Developers can use SharePoint Embedded to integrate advanced Microsoft 365 capabilities into their applications. SharePoint Embedded allows enterprise customers to run apps within their own Microsoft 365 tenants. Microsoft announced a public preview of custom Copilots in SharePoint. SharePoint Embedded, the new Microsoft Graph API-powered service that launched in public preview in November 2023 is now generally available. The company has also announced the public preview of SharePoint Embedded custom copilot experiences. SharePoint Embedded is a new API-based version of SharePoint that allows developers and ISVs to integrate advanced Microsoft 365 capabilities into their file and document-centric applications. These SharePoint Embedded apps offer core content management and collaboration features such as Copilot, co-authoring, searching, sharing, and support for any file type and folder structure. Microsoft emphasizes that SharePoint Embedded allows organizations to run these apps within their own Microsoft 365 tenants. These apps use Graph API to store files and documents in "File Storage Containers. " Moreover, access to these containers is restricted to SharePoint Embedded apps to enhance the security of sensitive files and documents. “SharePoint Embedded delivers Microsoft 365 superpowers as part of any app and consolidates all files and documents within a universal document layer. Apps that manage files and documents with SharePoint Embedded have a common set of collaboration, compliance, security, and AI capabilities, all designed to delight users and admins,” Microsoft explained. https://www. youtube. com/watch? v=G76IufvQLnM Microsoft has been utilizing SharePoint Embedded to provide document management capabilities in apps like Microsoft Loop and Designer. This service has... --- ### Build 2024: Microsoft Teams and Loop Add New Collaboration Features - Published: 2024-05-21 - Modified: 2024-05-21 - URL: https://petri.com/microsoft-teams-loop-collaboration/ - Categories: Microsoft Teams - Tags: Build 2024, Microsoft Loop, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams will soon support custom emojis and reactions, a highly requested feature that will enhance user expression in chats. New slash commands in the compose box enable users to perform various tasks quickly, such as adding code blocks, controlling presence indicators, and muting chats. Microsoft Loop has added support for code blocks and Adaptive Card-based Loop components. Microsoft detailed today several new features coming to Microsoft Teams and Loop to help users collaborate more effectively with colleagues. The company is adding support for custom emojis and reactions in public preview to Microsoft Teams chats next month. Custom emojis and reactions In Microsoft Teams, custom emoji support is one of the top-requested features that rival collaboration platforms like Slack and Discord had for many years. This new capability will allow employees to better express themselves while collaborating in Microsoft Teams chats. Microsoft says that it will be up to the IT admins to give permission to users to create, delete, and disable custom emojis in Microsoft Teams. Slash commands in the compose box Microsoft Teams has added support for slash (/) commands to the message compose box for both chats and channel conversations. It will allow users to add a code block or a loop component to their message, control their presence indicator, mute a chat, navigate to settings, and perform other frequent tasks. This feature is supported in the Microsoft Teams desktop, web, and mobile clients. Unfurling permalinks When a developer shares a code snippet using a... --- ### Build 2024: Microsoft Teams Premium Gets New AI Features and Data Protection Capabilities - Published: 2024-05-21 - Modified: 2024-05-21 - URL: https://petri.com/microsoft-teams-premium-ai-features/ - Categories: Microsoft Teams - Tags: Build 2024, Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has announced AI-powered features and enhanced data protection for Microsoft Teams Premium customers. Microsoft is also adding new admin controls to prevent content sharing in externally hosted meetings. Microsoft has announced updates for custom app experiences in Teams, including sharing SharePoint files, PowerPoint Live support, and Live reactions. Microsoft unveiled several updates for its Microsoft 365 suite of services at the annual Build developer conference. The company announced today several new AI-powered features and additional data protection capabilities for Microsoft Teams Premium customers. Microsoft Teams will add intelligent recap support for meetings with only transcription enabled. It will allow meeting participants to access AI-generated tasks, meeting notes, and name mentions. Microsoft plans to make this new feature generally available in Teams Premium and Copilot for Microsoft 365 in June 2024. Microsoft Teams Premium is getting a new feature that will enable organizers to control who can record and transcribe when scheduling meetings. Organizers will be able to select from two meeting options: organizers and co-organizers or organizers, co-organizers and presenters. This capability will be available for all Microsoft Teams Premium customers in June 2024. Microsoft has introduced new admin controls that prevent attendees from sharing content in externally hosted meetings. This feature provides an additional layer of protection against potential data exfiltration from external participants. Updates for custom app experiences connected to Microsoft Teams In addition to the new Premium capabilities, Microsoft announced new features for custom apps and website experiences connected to Microsoft Teams. It’s now... --- ### Build 2024: Microsoft Unveils New Team Copilot to Boost Productivity with Process Automation - Published: 2024-05-21 - Modified: 2024-05-21 - URL: https://petri.com/microsoft-team-copilot-collaboration/ - Categories: Microsoft 365, Microsoft Copilot - Tags: Build 2023, Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is expanding its Copilot AI assistant beyond personal use to support entire teams, departments, or companies. Microsoft is enhancing Copilot Studio to allow developers to create custom copilots for automating business processes. Microsoft says that all extensibility features for Copilot are being consolidated into Copilot extensions. Microsoft continues to improve Copilot for Microsoft 365 which became generally available for commercial customers in November 2023. The company is getting ready to introduce new Team Copilot to help teams enhance collaboration and streamline project management. “Team Copilot expands Copilot beyond a personal assistant to act on behalf of a team, a department, oran entire company. And of course, you’re always in control – assigning tasks or responsibilities to Copilotso the whole team can be more productive, collaborative, and creative, together,” explained Jared Spataro - CVP, AI at Work, Microsoft. With this release, Team Copilot will be available for customers in Microsoft Teams, Loop, Planner, and other Microsoft 365 apps. The Copilot AI assistant will serve as a meeting facilitator by automatically managing the agenda and taking notes in Teams meetings. Additionally, Copilot for Microsoft 365 will work as a group moderator in Microsoft Teams chats. Users will be able to use natural language commands to ask questions and summarize important information to catch up on lengthy conversations. In Microsoft Planner, the AI assistant will automatically create and assign tasks, track deadlines, as well as alerts team members when their input or action is required on a task. https://www. youtube. com/watch? v=4k2T5sfGIP4 Microsoft... --- ### Build 2024: Microsoft Launches Fluid Framework 2.0 in Preview - Published: 2024-05-21 - Modified: 2024-05-21 - URL: https://petri.com/microsoft-fluid-framework-2-0/ - Categories: Microsoft 365 - Tags: Build 2024, Microsoft 365, News - Article Type: News Key Takeaways: Fluid Framework 2. 0 enables developers to easily add real-time collaboration features to new and existing applications. The new Fluid Framework 2. 0 supports Microsoft SharePoint Embedded, allowing developers to store collaboration data within Microsoft 365 tenants. Microsoft expects to make Fluid Framework 2. 0 generally available this summer. Microsoft has announced a public preview of the new Fluid Framework 2. 0 today at its Build 2024 conference. The latest update to the company’s open-source platform is designed to let developers quickly build real-time collaborative apps. Microsoft’s Fluid Framework debuted back in 2019. It enables developers to build low-latency applications that support real-time collaboration across Office apps. Fluid Framework is designed to change the way people collaborate and update content in Office 365. The framework powers Microsoft Loop, Whiteboard, Microsoft Teams Live Share, and other Microsoft and third-party apps. Fluid Framework 2. 0 offers a schematized data model called a SharedTree Distributed Data Structure (DDS) to add collaboration capabilities to new and existing applications. This new model provides an intuitive programming interface for working with different data types, including arrays, objects, and maps. “The SharedTree data model is defined by a schema, which enables developers to use Fluid data structures like other TypeScript/JavaScript data structures. This means developers can continue to follow the same programming paradigms for developing local-first apps, while getting the benefits of real-time collaboration through Fluid Framework,” Microsoft explained. Fluid Framework (Image Credits: Microsoft) Fluid Framework 2. 0 supports SharePoint Embedded In addition to Azure Fluid Relay, Fluid Framework 2. 0 introduces... --- ### Build 2024: Microsoft Edge for Business Gets New Security Features to Prevent Data Leaks - Published: 2024-05-21 - Modified: 2024-05-21 - URL: https://petri.com/microsoft-edge-for-business-security-features/ - Categories: Microsoft Edge - Tags: Build 2024, Microsoft Edge for Business, News - Article Type: News Key Takeaways: Microsoft Edge for Business will add new screenshot prevention capabilities to protect against data leaks. A new Edge management service will help IT admins track outdated browser instances to patch zero-day vulnerabilities. Microsoft Edge will soon offer real-time video translation for popular websites like YouTube and LinkedIn. At its Build conference this morning, Microsoft unveiled new security features coming to its Edge for Business experience that launched in August 2023. These new capabilities are designed to protect organizations against data leaks and security vulnerabilities. Microsoft Edge for Business is a new dedicated work experience that allows users to better separate their better separate private browsing activities from work-related tasks. The feature is enabled by default for all commercial customers that use the Microsoft Entra ID service for signing into the browser. Microsoft Edge for Business offers AI-powered features, enterprise-grade security, productivity, and manageability capabilities. Microsoft Edge for Business (Image Credits: Microsoft) Screenshot Prevention First off, Microsoft Edge for Business is getting new screenshot prevention capabilities to prevent data exfiltration in the browser. This security feature will block users from taking screenshots on select web pages that are labeled as protected or sensitive. Microsoft says that IT admins will be able to configure screenshot prevention policies across Microsoft 365, Microsoft Intune Mobile Application Management, Microsoft Defender for Cloud Apps, and Microsoft Purview. The screenshot prevention feature will become generally available in the coming months. Stay up to date With the Edge management service, IT admins will be able to... --- ### Build 2024: Microsoft Announces New Azure Virtual Machines for AI and Cloud-Native Workloads - Published: 2024-05-21 - Modified: 2024-05-21 - URL: https://petri.com/azure-virtual-machines-ai-cloud-native-workloads/ - Categories: Microsoft Azure, Virtualization - Tags: Azure Virtual Machine, Build 2024, News, virtual machine - Article Type: News Key Takeaways: Microsoft announced the public preview of the Cobalt 100 Arm-based virtual machines. The new Azure ND MI300X VM series is now generally available and is optimized for AI and high-performance computing workloads. Microsoft introduced the Azure Compute Fleet in public preview, designed to streamline the provisioning and management of compute resources across various VM types and availability zones. Microsoft announced this morning the public preview of the Cobalt 100 Arm-based virtual machine (VM). The company has also announced the general availability of the new Azure ND MI300X v5 VM series. Microsoft first unveiled its Arm-powered chip Cobalt 100 chip for general-purpose and cloud-native workloads in November last year. The Azure Cobalt CPU is a 128-core processor that’s built on an Arm Neoverse CSS design. Microsoft has already tested its Cobalt 100 chip on workloads like Microsoft Teams and SQL server. The company claims that the Cobalt CPU has performed 40 percent better than Azure’s existing Arm-based chips. The new Cobalt 100-based VMs should offer efficiency and performance improvements for workloads such as web apps, microservices, and open-source databases. Microsoft claims that users can expect up to 40 percent better performance compared to the previous generation of Arm-based VMs. https://www. youtube. com/watch? v=yTvtfizNFNo ND MI300X virtual machines now generally available Microsoft has also announced the general availability of the ND MI300X VM series. The company highlighted that these new VMs are optimized for demanding AI and high-performance computing workloads. For instance, users can build large models from scratch, run inference on pre-trained... --- ### Build 2024: Microsoft Expands Copilot for Azure Preview to All Customers - Published: 2024-05-21 - Modified: 2024-05-21 - URL: https://petri.com/microsoft-expands-copilot-for-azure-preview/ - Categories: Microsoft Azure - Tags: Build 2024, Microsoft Copilot for Azure, News - Article Type: News Key Takeaways: Microsoft is expanding the preview of Microsoft Copilot for Azure to all customers. Microsoft Copilot for Azure leverages natural language commands to help administrators troubleshoot issues, optimize IT environments, and streamline management tasks. Copilot for Azure now supports additional features, including new skills for Azure Kubernetes Service and natural language to SQL conversion for Azure SQL databases. Microsoft is broadening access to Copilot for Azure preview to all customers, promising enhanced cloud management capabilities. This expansion comes with a host of new features designed to streamline operations, optimize IT environments, and bolster security. Microsoft Copilot for Azure enables customers to ask questions, write commands, and design and configure services. It leverages data from across Azure services to help administrators troubleshoot problems. Additionally, it provides recommendations for optimizing IT environments, particularly in terms of spending. “We created Microsoft Copilot in Azure to act as an AI companion, helping your teams manage operations seamlessly across both cloud and edge environments. By using natural language, you can ask Copilot questions and receive personalized recommendations related to Azure services. Simply ask, “Why is my app slow? ” or “How do I fix this error? ” and Copilot will navigate a customer through potential causes and fixes,” explained Omar Khan, GM of Azure Infrastructure Marketing. Microsoft Copilot for Azure (Image Credits: Microsoft) With this release, Microsoft will let administrators provide access to Copilot for Azure to all end users or select users or groups within a tenant. This capability should help IT admins to comply... --- ### Microsoft's New Copilot+ PCs Boast Advanced AI Experiences - Published: 2024-05-20 - Modified: 2024-05-20 - URL: https://petri.com/microsofts-copilot-plus-pcs/ - Categories: Hardware - Tags: Microsoft, News, Windows - Article Type: News Key Takeaways: Microsoft has announced new Copilot+ PCs powered by Snapdragon X Elite and X Plus chips. The new PCs include advanced AI features like Recall, Live Captions with translation, and advanced Windows Studio Effects. Microsoft plans to start shipping its first Copilot+ PCs in June 2024. Microsoft has just unveiled its new Copilot+ PCs, a new category of devices powered by Snapdragon X Elite and X Plus chips optimized for AI workloads. The company also announced several new AI-powered experiences set to debut with these Copilot+ PCs this summer. “Copilot+ PCs are the fastest, most intelligent Windows PCs ever built,” said Yusuf Mehdi – Executive Vice President for Consumer Chief Marketing Officer. “With powerful new silicon capable of an incredible 40+ TOPS (trillion operations per second), all–day battery life and access to the most advanced AI models, Copilot+ PCs will enable you to do things you can’t on any other PC. ” https://youtu. be/5JmkWJNng2I Microsoft highlighted several new AI-powered features that will be available on the new Copilot+ PCs: Recall The new AI-powered Recall feature lets users scroll through their timeline to quickly find apps, documents, messages, web pages, images, and videos they previously accessed on the Copilot+ PCs. It also offers contextual suggestions based on what's currently displayed on their screen. Recall offers enhanced privacy controls to let users choose which information the feature can capture on the device. Moreover, IT admins can prevent the Recall from capturing any snapshots with Microsoft Intune. Microsoft also plans to introduce new policies... --- ### Microsoft to Enforce MFA for All Azure Customers in July - Published: 2024-05-20 - Modified: 2024-05-20 - URL: https://petri.com/microsoft-enforce-mfa-azure-customers/ - Categories: Microsoft Azure - Tags: Microsoft Azure, Multi-Factor Authentication, News - Article Type: News Key Takeaways: Microsoft will enforce MFA for all Azure customers in July 2024. The rollout will begin with the Azure portal and extend to CLI, PowerShell, and Terraform, but won't affect apps, websites, or services hosted on Azure. Administrators can tailor MFA requirements using Entra ID Conditional Access policies, and monitor MFA adoption and status with dedicated reports and tools. Microsoft is stepping up its security game for Azure customers by mandating multi-factor authentication (MFA) starting in July 2024. This move aims to bolster account protection by requiring users to verify their identity through multiple methods, significantly reducing the risk of unauthorized access and data breaches. Multi-factor authentication (MFA) is a security feature that requires users to provide two or more verification methods to gain access to a system, application, or account. It adds an extra layer of security to make it difficult for attackers to compromise accounts and steal sensitive data. Multi-factor authentication helps to prevent unauthorized access due to credential stuffing, phishing, brute force, and password reuse attacks. Starting in July, Microsoft will gradually introduce a new security setting that requires multi-factor authentication (MFA) for all users signing into the Azure portal. After this rollout is complete, the company will implement a similar enforcement policy for CLI, PowerShell, and Terraform. Microsoft plans to provide additional information about specific rollout dates through official emails and notifications. “Students, guest users and other end-users will only be affected if they are signing into Azure portal, CLI, PowerShell or Terraform to administer... --- ### First Ring Daily: Building on the Road - Published: 2024-05-17 - Modified: 2024-05-17 - URL: https://petri.com/frd-building-on-the-road/ - Categories: Windows - Tags: Build 2024, First Ring Daily, Microsoft, News, Windows on ARM - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's upcoming Build developer conference starting next week, as well as the various Windows on ARM announcements from Microsoft and other PC manufacturers that are expected on Monday. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's upcoming Build developer conference starting next week, as well as the various Windows on ARM announcements from Microsoft and other PC manufacturers that are expected on Monday. The use of React Native in Windows 11. Research shows how Microsoft is using React Native, a web technology created by Facebook, to build some of the new features in Windows 11, such as the recommended section in the Start menu. Microsoft controls the desktop version of React Native and is using it everywhere. The challenges of modern app development on Windows. Paul and Brad discuss how Microsoft has failed to provide a consistent and easy framework for app development on Windows, and how they have to resort to different technologies such as WinUI, XAML Islands, and WPF. They speculate that Microsoft might move on from WinUI 3 and that WPF might make a comeback. The trend of web-based technologies for cross-platform development. Paul and Brad compare the situation of Microsoft with that of Google, which is also using web-based technologies, such as Flutter and Dart, to create apps that run on multiple platforms. They suggest that web technologies are becoming the common way to get to the web, regardless of the language or framework used. --- ### Hackers Exploit Windows Quick Assist App to Deploy Black Basta Ransomware - Published: 2024-05-17 - Modified: 2024-05-17 - URL: https://petri.com/windows-quick-assist-black-basta-ransomware/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Cybercriminals are abusing Microsoft's Quick Assist app to perform social engineering attacks, tricking users into granting remote access to their computers. The financially motivated threat actor, Storm-1811, has been using this method to spread Black Basta ransomware since April 2024. Microsoft advises administrators to uninstall or block Quick Assist if not in use and implement privilege access management solutions. Microsoft has warned customers about a new wave of social engineering attacks where cybercriminals exploit its Quick Assist app. The company acknowledged that a financially motivated threat actor (tracked as Storm-1811) has been deploying Black Basta ransomware since mid-April, posing a significant threat to users. Quick Assist is a remote assistance tool that helps to connect two PCs over the Internet. It allows IT support teams to remotely view and control another user’s computer to diagnose and fix technical issues. The Quick Assist app is installed by default on Windows 11, and it encrypts the connection between the two computers to maintain data privacy. In a new threat intelligence report, Microsoft revealed that hackers are leveraging social engineering campaigns to trick victims into granting access to their computers via Quick Assist. The attackers pose as IT support to bombard targets with spam emails and flood their inboxes with subscribed content. They then use voice phishing (vishing) to convince victims to address the spam issue. “During the call, the threat actor persuades the user to grant them access to their device through Quick Assist. The target user only needs to... --- ### Microsoft Teams Gets New Channel Management Capabilities - Published: 2024-05-16 - Modified: 2024-05-16 - URL: https://petri.com/microsoft-teams-channel-management/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams users can now enjoy streamlined processes for creating and joining teams and channels. The AI-powered Discover feed in Teams enhances content consumption by offering users a personalized hub to catch up on the most relevant channel updates. Microsoft has introduced new admin controls to prevent users from finding private teams. Microsoft has announced a slew of updates to streamline channel management in its Teams collaboration service. The company has reduced the number of steps that were previously required to create and join teams and channels in Microsoft Teams. Microsoft mentioned that “create a team from scratch” is now the default experience in Microsoft Teams. Users will need to click “More create team options” to select a template from the template library. Microsoft has also introduced a new Create channel option in the menu for creating a new team. Additionally, Microsoft Teams now allows users to find and join public and private teams. There are also new settings that let IT admins control whether users will be able to find a private team. Later this year, Microsoft Teams will enable users to choose to show only the channels that are relevant to them when joining a team. Discover public and private teams (Image Credits: Microsoft) New Discover Feed enhances collaboration in Microsoft Teams channels Microsoft Teams has introduced a new AI-powered Discover feed that allows users to catch up on the most relevant content from channels. This new Discover feed helps to easily catch up on news... --- ### VMware Makes Workstation Pro and Fusion Pro Free for Personal Use - Published: 2024-05-15 - Modified: 2024-11-19 - URL: https://petri.com/vmware-workstation-pro-fusion-pro-free-personal-use/ - Categories: VMware - Tags: News, vmware - Article Type: News Key Takeaways: VMware has made its Workstation Pro and Fusion Pro desktop hypervisor products free for personal use. VMware is also discontinuing its Workstation Player and Fusion Player solutions. VMware has simplified its paid offerings to a single SKU called Desktop Hypervisor for commercial customers, priced at $120 per year. VMware announced yesterday that its Workstation Pro and Fusion Pro desktop hypervisor products are now free for personal use. Starting this week, VMware will offer two license models for its Pro apps: a Free Personal Use or a Paid Commercial Use subscription for organizations. According to VMware, customers should notice consistent functionality across both free and paid subscription models. However, the free version will display the message "This product is licensed for personal use only" on the screens. VMware Workstation Pro and Fusion Pro are virtualization products that enable customers to create and operate virtual machines (VMs) on their computers. These services let users run multiple VMs to facilitate testing, development, and other virtualization tasks. VMware Workstation Pro is available for PCs running Windows and Linux, while VMware Fusion Pro is tailored for macOS. “VMware Desktop Hypervisor products Fusion and Workstation are used by millions of people every day to run virtual machines on their Windows, Linux, and Mac computers,” VMware explained. “They give users the ability to quickly and easily build ‘local virtual’ environments to install other operating systems, learn about technology, build and test software, complex systems, browsers, apps, games, and more. ” VMware Workstation (Image Credits: VMware) How... --- ### Microsoft's May 2024 Patch Tuesday Updates Fix Two Zero-Day Vulnerabilities - Published: 2024-05-15 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-may-2024-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft's May 2024 Patch Tuesday updates address 59 vulnerabilities, including two zero-day flaws already being exploited by attackers. Microsoft has fixed a high-severity security feature bypass vulnerability in the Windows MSHTML platform and an elevation of privilege flaw in Windows DWM Core Library. Microsoft has introduced minor changes to Widgets icons on the taskbar and enhancements to lock screen widgets on Windows 11. Microsoft has released the May 2024 Patch Tuesday updates for Windows 11 and Windows 10. This month, Microsoft fixed a total of 59 security vulnerabilities in Windows and other components, and there are two zero-day flaws that are already being exploited by attackers. On the quality and experience updates front, Microsoft has released some changes to the Widgets icons on the taskbar and widgets cards on the lock screen on Windows 11. The latest update also fixes a known issue that was causing the Settings app to become unresponsive on Windows 11 PCs. 59 vulnerabilities fixed in the May 2024 Patch Tuesday updates As highlighted by the Zero Day Initiative, Microsoft's May 2024 Patch Tuesday Updates include fixes for 59 vulnerabilities. Among these, only one is categorized as “Critical,” 57 are deemed “Important,” and one carries a “Moderate” severity rating. CVE-2024-30040: This is a high-severity security feature bypass vulnerability in the Windows MSHTML platform that received an 8. 8 CVSS score. The flaw could allow attackers to deceive users into opening a harmful file and then bypass OLE mitigations in Microsoft 365 and Microsoft Office to... --- ### PSA: Windows 10 version 21H2 Enterprise and Education Editions Set to Reach End of Support Next Month - Published: 2024-05-14 - Modified: 2024-05-14 - URL: https://petri.com/windows-10-version-21h2-end-support/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Key Takeaways: Windows 10 version 21H2 will reach end of support in June 2024. Microsoft recommends users to upgrade to Windows 10 version 22H2 for continued security patching. Microsoft will automatically install Windows 10 version 22H2 on non-managed business PCs in the coming weeks to facilitate the transition. Microsoft is warning customers still using Windows 10 version 21H2 that it will soon reach end of support. The consumer editions of Windows 10 version 21H2 already reached end of servicing last year, and June 2024 will mark the end of support for enterprise and education customers for the operating system. Microsoft plans to release the last security update for enterprise, education, and IoT enterprise editions of Windows 10 version 21H2 on June 11. After this date, the company will no longer provide security patches and bug fixes for affected Windows 10 devices. However, Microsoft will continue to support Windows 10 Enterprise LTSC 2021 and Windows 10 IoT Enterprise LTSC 2021 until January 12, 2027. Microsoft advises customers currently running Windows 10 version 21H2 to upgrade to version 22H2 to continue receiving security patches beyond June 2024. These security updates help to ensure protection against critical vulnerabilities on Windows 10 PCs. Microsoft will begin force-installing Windows 10 version 22H2 on non-managed business PCs in the next few weeks. “To help keep you protected and productive, Windows Update will automatically initiate a feature update for Windows 10 business devices not managed by IT departments when these are nearing end of servicing. Moving to... --- ### Microsoft Places Uses AI to Enhance Workplace Coordination - Published: 2024-05-14 - Modified: 2024-05-14 - URL: https://petri.com/microsoft-places-workplace-coordination/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Places, a new AI-powered application, facilitates seamless coordination of in-office schedules by leveraging data from Microsoft Teams and Outlook. The new Places app offers various features to help employees efficiently manage their in-office time and connect with colleagues. The upcoming integration with Microsoft Copilot promises further optimization by enabling automatic booking of shared desks and meeting rooms. Microsoft has announced the public preview of a new application called Microsoft Places. This new AI-powered app leverages insights from Microsoft Teams and Outlook to help employees synchronize their in-office time. Microsoft first unveiled the new Places app during its Ignite conference in October 2022. With Microsoft Places, users can specify their office hours and locations, and coordinate schedules with colleagues seamlessly. This feature works like the "set your work location" functionality available in Google Calendar. “AI innovation is already improving how you work; improving where you work is the next opportunity, “ said Jared Spataro, CVP for AI at Work. With Microsoft Places, an app that reimagines flexible work, AI can make coordinating in-office time and connecting with coworkers even easier. In addition to fostering improved coordination and connection, Places optimizes the effectiveness and engagement of the workplace. ” Microsoft Places location plan (Image Credits: Microsoft) Microsoft Places includes a location planning section that allows employees to set and monitor their own and their colleagues' location schedules. Additionally, the team guidance feature lets managers designate priority days for in-office activities. All location information seamlessly syncs with Outlook calendars to help... --- ### Microsoft to Launch System Center 2025 Later This Year - Published: 2024-05-13 - Modified: 2024-05-13 - URL: https://petri.com/microsoft-launch-system-center-2025/ - Categories: System Center - Tags: News, System Center - Article Type: News Key Takeaways: Microsoft has announced that System Center 2025, the next LTSC release, arrives in Fall 2024. Key improvements focus on modernizing infrastructure, managing heterogeneous environments, and enhancing security. Microsoft will add support for TLS 1. 3 for data transmission security and securely storing passphrases in Azure Key Vault. System Center 2025, the next release of Long-Term Servicing Channel (LTSC) will be released in Fall 2024. Microsoft has announced that the latest versions of Center Operations Manager (SCOM), Virtual Machine Manager (VMM), Service Manager (SM), System Center Orchestrator (SCO), and Data Protection Manager (DPM) will be available later this year. System Center is a suite of management tools that helps organizations to manage large-scale IT infrastructure. The service offers a comprehensive set of solutions to deploy, configure, manage, monitor, and automate datacenters, hybrid cloud infrastructures, and virtualized environments. Microsoft highlights that System Center 2025 brings several improvements that should help organizations modernize infrastructure, manage heterogeneous infrastructure, and boost security. “By delivering System Center 2025 (VMM, DPM, SCOM, SM & SCO) together with Windows Server 2025, we are bringing you management support for the latest Windows Server version right from Day 0,” Microsoft explained. Microsoft plans to add managing and monitoring support for Azure Stack HCI 23H2 clusters with VMM & SCOM 2025. This release should also make it easier for administrators to convert VMware VMs to Windows Server via VMM. Microsoft plans to introduce support for the latest versions of Linux distros when System Center Virtual Machine Manager (SCVMM) 2025 hits... --- ### Microsoft Teams' New Presenter Window Elevates Virtual Meetings - Published: 2024-05-13 - Modified: 2024-05-13 - URL: https://petri.com/microsoft-teams-presenter-window/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams has introduced enhanced Presenter window features for improved meeting interaction. Meeting notifications are now prominently displayed at the center of the screen. Users have enhanced control and flexibility with the ability to manage meeting options directly from the Presenter window. Microsoft Teams meetings are about to get a lot more interactive with the latest enhancements to the Presenter window. Now, users can effortlessly keep track of up to four participants, active speakers, raised hands, and shared content previews. In Microsoft Teams, the extended Presenter window enables users to view meeting notifications at the center of the screen. This feature makes it easier for presenters to monitor the participants’ activity during Teams meetings. “These enhancements help you stay aware of what’s happening in your meeting and make it easier to engage with other attendees while you’re screensharing. You can also manage actions in your meeting such as lowering raised hands and muting participants,” Microsoft explained. Expanded Presenter window (Image Credits: Microsoft) How the new Presenter window works in Microsoft Teams Join a Microsoft Teams meeting and click Share > Screen or Window. Microsoft Teams users will notice that the new Presenter window now shows up to 4 participants. This new Presenter window can be moved around on the screen as well as minimized or resized. Users can click the arrow button to expand the self-video title at the bottom of the Presenter window. The self-video tile also allows users to change the presenter layout during the screen... --- ### What is Single Sign-On (SSO): Everything You Need to Know > In this article, IT consultant Chester Avey explains what single sign-on is and why IT departments should consider enabling it to make life easier for users. - Published: 2024-05-13 - Modified: 2024-05-13 - URL: https://petri.com/what-is-single-sign-on/ - Categories: Security - Tags: featured-top-right, Security - Article Type: Overview When it comes to cloud services and security technology, IT and systems administrators should seriously consider having SSO implemented for greater convenience and security. What is single sign-on (SSO)? SSO is an authentication method that allows users to securely access multiple SaaS (Software-as-a-Service) applications, websites, and other digital resources with a single set of login credentials. As opposed to remembering and entering separate usernames and passwords for each service, SSO enables users to authenticate themselves once and then be granted access to all authorized systems and applications. Microsoft SSO, in particular, has become a pivotal centerpiece in its evolutionary, security- and AI-led approach across its entire ecosystem. At its core, SSO establishes a trusted relationship between a user and one or more service providers (SPs). The user is responsible for providing the credentials, the service then creates an authentication token that validates the user as verified. This token is stored either in a browser or within the SSO vendor’s servers. The SSO vendor then passes the user’s token details to any apps on the server and the user is granted access without the need to enter their details again. SSO plays a crucial role in securely managing access and authentication across geographically distributed teams and infrastructure. It allows organizations to manage user identities and access permissions from a centralized platform, simplifying the switching between various tools and services without the need to re-authenticate, fostering more efficient and streamlined workflows. Additionally, organizations can use SSO to validate users’ attempts to... --- ### First Ring Daily: Outlook Frustrations and Microsoft's PR Struggles - Published: 2024-05-10 - Modified: 2024-05-10 - URL: https://petri.com/outlook-frustrations-microsofts-pr-struggles/ - Categories: Microsoft, Outlook - Tags: Apple, First Ring Daily, iPad Pro, News, Outlook, Outlook for Windows - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the persisting feature gap between the new Outlook for Windows and the classic app, as well as Apple's new iPad lineup. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the persisting feature gap between the new Outlook for Windows and the classic app, Microsoft having a bad week PR-wise, and the new iPad lineup Apple revealed earlier this week. --- ### Stay Ahead of Threats: Microsoft Entra ID Protection Enhances Security Capabilities - Published: 2024-05-10 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-entra-id-protection-security-capabilities/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft Entra ID Protection has introduced streamlined deployment of risk policies and robust defense mechanisms against sophisticated security threats. The new Identity Protection risk analysis workbook allows IT admins to comprehensively analyze the impact of activating risk-based Conditional Access Policies. Microsoft Entra ID Protection offers improved prevention, investigation, and remediation capabilities, including on-premises password reset. Microsoft has announced some important updates for its Entra ID Protection service. The new feature offers administrators streamlined deployment of risk policies, comprehensive impact analysis, and robust defense mechanisms against sophisticated security threats. Last year, Microsoft announced its plans to enable Entra ID Conditional Access policies by default for select Microsoft 365 tenants. The company is gradually rolling out these Microsoft-managed policies, which are aimed at encouraging organizations to switch to using multifactor authentication. Microsoft has just released a new Identity Protection risk analysis workbook to help administrators understand the implications of these changes on their environments. This workbook lets IT admins analyze the impact of activating risk-based Conditional Access Policies, which could potentially block user sign-ins, mandate multifactor authentication, or facilitate secure password changes. To access the new workbook, users will need to sign in to the Microsoft Entra admin center as at least a Reports Reader. Navigate to Identity > Monitoring & health > Workbooks, and then choose the “Impact analysis of risk-based access policies workbook” option available under Identity Protection. Microsoft Entra ID Protection dashboard is now generally available Microsoft has announced the general availability of a new Entra ID... --- ### Microsoft Introduces New Sentinel SOC Optimization Feature for Enhanced Cybersecurity - Published: 2024-05-09 - Modified: 2024-05-09 - URL: https://petri.com/microsoft-sentinel-soc-optimization/ - Categories: Microsoft Sentinel, Security - Tags: Microsoft Sentinel, News - Article Type: News Key Takeaways: Microsoft Sentinel’s SOC optimization offers tailored recommendations to identify gaps in data utilization and detect diverse cyberattacks, enhancing organizational security. This new feature aims to assist security teams in effectively managing risks without compromising operational efficiency. IT admins can discover this SOC optimization feature in the new unified security operations platform and the Azure portal. Microsoft announced yesterday a public preview of SOC optimization for Microsoft Sentinel customers. The feature provides actionable tailored recommendations, allowing organizations to pinpoint data utilization gaps and thwart various cyber threats. Microsoft emphasized the importance of security teams optimizing both processes and outcomes. They should consistently adjust their security controls to adapt to evolving threat landscapes and business priorities. The new SOC optimization recommendations feature is designed to help security teams close coverage gaps against security threats without having to spend time on manual analysis and research. “SOC optimizations are high-fidelity and actionable recommendations to help you identify areas where you can reduce costs, without affecting SOC needs or coverage, or where you can add security controls and data where its found to be missing. SOC optimizations are tailored to your environment and based on your current coverage and threat landscape,” Microsoft explained. Currently, the SOC optimizations feature provides two types of recommendations: data value optimizations and threat-based optimizations. The data value optimizations feature allows security teams to gain deep insights into their data usage patterns. It provides actionable suggestions to maximize security value from ingested data or propose improvements to the data... --- ### Microsoft Teams Compose Box to Add Support for Slash Commands - Published: 2024-05-09 - Modified: 2024-05-09 - URL: https://petri.com/microsoft-teams-compose-box-slash-commands/ - Categories: Microsoft 365 - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams will soon add slash commands support into the compose message box. The integration of slash commands aims to enhance efficiency and simplify task completion within Microsoft Teams. This feature will be available across all major platforms, including Windows, macOS, and the web. Microsoft Teams is set to introduce support for slash commands directly within the compose message box. The company has announced on the Microsoft 365 Admin Center that this new feature will start rolling out to Teams users across Windows, macOS, and the web later this month. Slash commands is something that other professional messaging apps like Slack and Google Chat had for many years. Currently, the Microsoft Teams desktop client offers slash command support within the command box at the top of the app. There, users can use these commands to quickly initiate calls, access files, and navigate teams and channels. In the Compose box, slash commands will allow Teams users to add content to their messages, control their presence settings, and more. This is something that power users will probably appreciate. Here are some common tasks that can be performed with slash commands: /code: This command lets users add a code block to their message. /loop: This command can be used to add a loop component to a message. /away: This command allows users to set their presence indicator to away. /setting: This command helps users navigate to settings. /mute: This command can be used to mute a chat. Slash commands in the... --- ### Exchange Server Subscription Edition to Launch in Summer 2025 - Published: 2024-05-08 - Modified: 2024-05-08 - URL: https://petri.com/exchange-server-subscription-edition-q3-2025/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Key Takeaways: Exchange Server Subscription Edition (SE) is set to launch in Q3 2025, marking a shift towards subscription-based licensing for on-premises deployments. Organizations will need subscription licenses for future Exchange Server releases to access updates, security patches, and technical support. Microsoft plans to discontinue support for legacy perpetual server and Client Access Licenses (CALs) with Exchange Server SE. Microsoft has revealed that Exchange Server Subscription Edition (SE) will debut in the third quarter of 2025. This upcoming on-premises release will require organizations to get subscription licenses for accessing product updates, security patches, and technical support. According to Microsoft, Exchange Server SE will be “code equivalent” to Exchange Server 2019 CU15, but it would bring some minor changes. First of all, Microsoft plans to update the license agreement to reflect the new SKU. Additionally, the system name will be rebranded from Microsoft Exchange Server 2019 to Microsoft Exchange Server Subscription Edition. Microsoft will also update the build and version numbers. Microsoft mentioned that Exchange Server SE will support two types of upgrades from previous versions. Customers will be able to perform an in-place upgrade from Exchange Server 2019 CU15. Microsoft says that this upgrade process would be identical to installing a cumulative update. Exchange Server SE will also support legacy updates, which will require customers to build a new infrastructure and then migrate namespaces and mailboxes to the new infrastructure. Microsoft notes that customers still running Exchange Server 2016 will be required to perform a legacy upgrade to Exchange Server... --- ### Microsoft Outlook Gets Support for Copilot with Graph-Grounded Chat - Published: 2024-05-08 - Modified: 2024-05-08 - URL: https://petri.com/microsoft-outlook-copilot-graph-grounded-chat/ - Categories: Microsoft 365, Microsoft Copilot - Tags: Copilot for Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has announced that support for Copilot with Graph-grounded chat is now available in Outlook. Copilot in Word now offers advanced capabilities such as refining specific document sections and summarizing selected text. Copilot for Microsoft Excel introduces the ability to generate multiple formula columns simultaneously with a single prompt. Microsoft has published a recap of all the new features and improvements added to Copilot for Microsoft 365 during the month of April 2024. The company highlighted several notable improvements tailored to enhance productivity and efficiency across desktop, mobile, and web platforms. Later this month, Microsoft will add support for Graph-grounded Copilot chat to classic Outlook, the new Outlook for Windows client, and the Outlook web app. The AI assistant will allow users to find enterprise data (such as chats, meetings, emails, and documents) that are stored in the Microsoft cloud. Users will be able to ask questions and receive responses by clicking the Copilot icon at the top of the Outlook window. Microsoft will also let Copilot for Microsoft 365 customers to ground Copilot chat in the local files stored on their computers. Users will also be able to easily share file links from OneDrive and SharePoint with Copilot for better conversations. Copilot chat box in Outlook Copilot in Word Microsoft has also announced several improvements for Copilot in Word. The Copilot AI assistant can use Graph-grounded data to answer questions, fine-tune specific sections of a document, and summarize selected text only. It’s also possible to use Draft... --- ### Microsoft Purview and Defender for Cloud Add New Security Features to Protect AI Applications - Published: 2024-05-07 - Modified: 2024-05-07 - URL: https://petri.com/microsoft-purview-security-features-ai-apps/ - Categories: Security - Tags: Microsoft Purview, News - Article Type: News Key Takeaways: Microsoft's new Purview AI Hub provides IT administrators with valuable insights into the usage of AI applications within their organization. Microsoft has added AI compliance assessments and security posture management features to let organizations better safeguard their AI applications. Microsoft's unified security operations platform offers administrators valuable recommendations and suggestions to enhance the investigation and response process. Microsoft has unveiled a host of new capabilities for its Microsoft Purview and Defender for Cloud solutions. The new features help IT administrators in efficiently managing, protecting, and governing AI applications within enterprise environments. First off, Microsoft has launched a new Purview AI Hub in public preview. This new service enables IT admins to gain insight into how AI applications are being used within their organization. This capability helps to detect and mitigate data security and data compliance risks within their organization. Customers can access the new AI Hub through the Microsoft Purview portal or the Microsoft Purview compliance portal. Microsoft Purview has also introduced new AI compliance assessments to help organizations govern AI usage to comply with regulatory policies. The four new Compliance Manager assessment templates are currently available in public preview for commercial customers. Microsoft Defender for Cloud updates Microsoft has rolled out new AI security posture management capabilities for Defender for Cloud customers. This release enables customers to identify new AI attack surfaces, strengthen AI security posture, and protect AI apps against security threats. Microsoft says that AI security posture management capabilities are supported across different platforms, including... --- ### Microsoft Expands Secure Future Initiative to Counter Rising Cyber Threats - Published: 2024-05-06 - Modified: 2024-05-06 - URL: https://petri.com/microsoft-expands-secure-future-initiative/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Microsoft is prioritizing security to protect its infrastructure and customers from cyber threats, expanding its Secure Future Initiative (SFI) to reinforce defenses. Microsoft's security approach encompasses six key pillars, including measures like multifactor authentication, network isolation, and enhanced threat detection, aiming to address vulnerabilities across its systems and processes. Microsoft is instituting measures to hold senior leadership accountable for security goals. Microsoft has announced plans to make security its top priority to better protect its infrastructure and customers against sophisticated cyberattacks. The company has recently detailed in a blog post that it's expanding the Secure Future Initiative (SFI) to ensure robust protection measures. Last year, Microsoft announced its Secure Future Initiative (SFI) to boost the built-in security of its products and services. It's aimed at tackling software and vulnerability issues exploited by cybercriminals in recent high-profile security breaches. As part of the SFI, Microsoft outlined several plans and changes to its security practices, with some already put into action. The company explained that this expanded SFI approach will be driven by three security principles: Secure by design, Secure by default, and Secure operations. “Microsoft plays a central role in the world’s digital ecosystem, and this comes with a critical responsibility to earn and maintain trust,” said Charlie Bell, Executive Vice President for Microsoft Security. "We’re expanding the scope of SFI, integrating the recent recommendations from the CSRB as well as our learnings from Midnight Blizzard to ensure that our cybersecurity approach remains robust and adaptive to the evolving... --- ### Microsoft Entra External ID Simplifies Customer Identity Access Management - Published: 2024-05-03 - Modified: 2024-05-03 - URL: https://petri.com/microsoft-entra-external-id-launch-may-15/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft Entra External ID will become generally available on May 15. This new service provides customers with the ability to create secure sign-in interfaces for customer-facing web apps and pages. Microsoft offers free access to Entra External ID features for commercial customers until July 1, 2024. Microsoft Entra External ID, the new customer identity access management solution (CIAM) that the company announced last year, is set to officially launch on May 15. This new service allows organizations to create sign-in interfaces for customer-facing Web apps and pages. Microsoft mentioned that it could be challenging for IT admins to manage external identities (such as customers, partners, and business clients) as well as their access protocols. The new Entra External ID capabilities enable employees to collaborate with business partners and guests seamlessly. This feature facilitates secure access for external identities to corporate apps and resources through either invitation or self-service sign-up. “With External ID, you can consolidate all identity management under the security and reliability of Microsoft Entra. Microsoft Entra provides a unified and consistent experience for managing all identity types, simplifying identity management while reducing costs and complexity,” Microsoft explained. Microsoft Entra External ID (Image Credits: Microsoft) Secure collaboration Microsoft highlights that cross-tenant access settings let administrators manage external collaborators' access to corporate resources. The ID Governance for External ID feature facilitates automatic review and revocation of access after periods of inactivity or project completion. This capability helps IT admins to ensure that only authorized external users have access... --- ### New Microsoft Planner App in Teams Gets Copilot Integration to Streamline Collaboration - Published: 2024-05-01 - Modified: 2024-05-01 - URL: https://petri.com/new-microsoft-planner-teams-copilot/ - Categories: Microsoft 365 - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has added Copilot to the new Planner app in Teams to streamline project planning, management, and tracking. The Copilot feature is rolling out gradually to commercial customers with Project Plan 3 or Project Plan 5 subscriptions. Microsoft has announced the general availability of the new Planner experience in Teams. Microsoft has started rolling out the Copilot AI assistant to the new Planner app in Teams. The new Copilot integration allows team members to plan, manage, and track projects directly within the Teams desktop and web apps. Microsoft highlights that Copilot in Planner enables team members to use natural language commands to generate a plan, including goals, tasks and subtasks, and buckets. Users can also ask the digital assistant to create comprehensive plans for their upcoming projects. With Copilot in Planner, customers can effectively manage their plans. The Copilot AI assistant can provide suggestions about tasks based on new goals. It can also help users add new goals to their plan and automatically generate tasks aimed at accomplishing those goals. The Copilot feature also lets users ask questions about the progress, priorities, and workload to stay informed on complex plans. “With the power of generative AI, Copilot in Planner streamlines the planning, management, and execution of your work, keeping you informed as you achieve your goals. Copilot in Planner helps teams transform the way they work and collaborate on projects together,” Microsoft explained. Copilot in new Planner (Image Credits: Microsoft) The new Copilot in Planner experience is rolling... --- ### Copilot in Microsoft Teams Now Supports Multi-Turn Conversations - Published: 2024-05-01 - Modified: 2024-05-01 - URL: https://petri.com/copilot-microsoft-teams-multi-turn-conversations/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams has added support for multi-turn conversations with Copilot, live translated captions for webinars, and custom profile pictures. Microsoft Teams meetings are getting features like multi-account support, the ability to hide the general channel, and context-based file attach suggestions. Microsoft Teams Phones now support AI voice isolation, call history sharing, and a busy on busy end user setting. Microsoft has published a recap of all the new capabilities added to Teams during the month of April 2024. The company has enhanced the chat and meeting experience with multi-turn conversations with Copilot, live translated captions for webinars, custom profile pictures, and more. Chat and collaboration features For starters, Microsoft detailed a couple of enhancements to the chat and collaboration experience in Microsoft Teams. The Copilot AI assistant in Teams chats and channels has added support for multi-turn conversations. The feature allows users to ask follow-up questions to a Copilot response such as “Explain the second point in the summary. ” Microsoft Teams has introduced multi-account support for government customers. Microsoft Teams allows users to hide general channels in order to reduce clutter in the channel list. Moreover, users can set a custom profile picture for Teams group chats, making it easier to find a specific chat. Microsoft Teams now offers context-based file attach suggestions from OneDrive and SharePoint. Multi-turn conversation with Copilot in chats and channels (Image Credits: Microsoft) Enhancements to Teams meetings Microsoft Teams has added a new feature that allows users to manage calendar notifications for upcoming... --- ### Microsoft Intune Gets New Device Management Capabilities - Published: 2024-04-30 - Modified: 2024-04-30 - URL: https://petri.com/microsoft-intune-device-management/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft has added new device management capabilities to Intune this month. The updated app supersedence feature lets IT admins easily keep Win32 applications up to date. The new remote diagnostics feature aims to simplify the process of obtaining diagnostics from Microsoft 365 apps running on Android and iOS devices. Microsoft released several new device management capabilities for its Intune solution in April 2024. The company highlighted several improvements, including streamlined app updates for better security and productivity and simplified troubleshooting for Microsoft 365 apps. Microsoft has introduced updated app supersedence to help administrators keep Win32 applications up to date. The supersedence feature lets IT admins update and replace existing Win32 apps with new versions of the same app or a different Win32 app. They can now add an app to Intune and create a supersedence relationship with an existing app. This capability eliminates the need to monitor app updates and manually update applications. The new remote diagnostics feature is designed to simplify the process of getting diagnostics from Microsoft 365 apps running on Android and iOS devices. IT admins can configure this feature by navigating to the Intune admin center >> Tenant administration >> Device diagnostics and setting the ”Diagnostics for Microsoft 365 applications... ” option to enabled. Remote diagnostics (Image Credits: Microsoft) Microsoft Intune adds Windows update distribution report The new Windows update distribution report in Intune provides a summarized report on what quality updates are running on which devices. It consists of three separate organizational reports that... --- ### Microsoft OneDrive Starts Rolling Out New Offline Mode for Work and School Accounts - Published: 2024-04-30 - Modified: 2024-04-30 - URL: https://petri.com/microsoft-onedrive-offline-mode/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has introduced an Offline mode for the OneDrive web app, enhancing accessibility and productivity for work and school accounts. Users can now access, manage, and modify files via web browsers even without an internet connection. The new Offline mode brings significant performance improvements, offering users a smoother and faster experience. Last year, Microsoft unveiled its plans to introduce a new Offline mode for the OneDrive web app. Now, the company has announced the rollout of new Offline capabilities for work and school accounts. With this new Offline mode, OneDrive lets users access their files via a web browser when offline and then automatically sync back any changes once the Internet connection is restored. Moreover, the feature allows users to navigate to different sections such as Home, My files, Shared, Favorites, People, and Meeting. Users can also rename, sort, move, copy, and delete files without Internet access. Additionally, the new Offline mode allows users to perform certain actions that previously required using File Explorer on Windows and Finder on macOS. For instance, it’s possible to mark files available offline as well as conserve local storage space simply by marking them as "online only. ” Microsoft claims that the new Offline mode also brings performance improvements for users with internet connectivity. Users should notice 3x faster loading times when viewing files in the OneDrive web app and the OneDrive experience in Teams or Outlook. “By accessing your content from your local cache instead of fetching it from a cloud server,... --- ### Microsoft Introduces Trusted Signing Solution: Simplifying App Development for Developers - Published: 2024-04-29 - Modified: 2024-04-29 - URL: https://petri.com/microsoft-trusted-signing-solution/ - Categories: Compliance, Security - Tags: News, Trusted Signing - Article Type: News Key Takeaways: Microsoft has launched the Trusted Signing solution, offering a fully managed end-to-end signing service aimed at simplifying app development and distribution processes. The solution supports both public and private trust signing scenarios and incorporates modern security features like Smart App Control and SmartScreen. Developers and ISVs can take advantage of a free trial of the Trusted Signing solution until June 2024. Microsoft has recently announced the public preview of its new Trusted Signing solution. This fully managed end-to-end signing service is designed to streamline processes, allowing developers to effortlessly build and distribute apps. “The service supports both public and private trust signing scenarios and includes a timestamping service. With Trusted Signing, users enjoy a productive, performant, and delightful experience on Windows with modern security protection features enabled such as Smart App Control and SmartScreen,” Microsoft explained. Microsoft highlights that the new solution offers an intuitive experience in Azure to simplify the signing process. Moreover, it helps to manage the full certificate lifecycle and key storage that is FIPS 140-2 Level 3 compliant. The service also offers support for different profile types such as Public Trust, Private Trust, and Test. Creating a Trusted Signing Account (Image Credits: Microsoft) Additionally, the new trusted signing solution integrates with popular developer toolsets like SignTool. exe, GitHub, and Visual Studio. For Private Trust, it provides PowerShell cmdlets for IT admins to sign Windows Defender Application Control (WDAC) policies. Microsoft plans to offer potential integrations with IT endpoint management solutions in the future. Trusted Signing... --- ### Microsoft Outlook will Let Users Follow Teams Meetings - Published: 2024-04-29 - Modified: 2024-04-29 - URL: https://petri.com/microsoft-outlook-follow-teams-meeting/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is introducing a new meeting response option called "Follow" for the new Outlook for Windows and the Outlook web app. The "Follow" response enables users to stay informed about meeting events even if they can't attend, fostering greater engagement and collaboration. This feature aims to cater to individuals with busy schedules and conflicting meetings. Microsoft Outlook is about to add a new meeting response option (RSVP) to the new Outlook for Windows and the Outlook web app. The new "Follow" option for meeting responses will provide users with a way to stay engaged even when they can't attend. The new follow feature will inform organizers that the user won't attend the meeting but still wants to remain informed and access post-meeting information. The Follow response will also remind the organizer to record the meeting and take collaborative notes. The attendees will be able to access the meeting chat, recordings, and transcripts. Moreover, the attendees' calendars will show the time as free, enabling them to manage their schedules more effectively. “Follow is a new meeting response (RSVP) option that goes beyond the traditional Accept, Tentative and Decline choices geared towards individuals with high meeting loads and conflicting meetings each day. Follow is the ideal RSVP option for meetings you can't attend but still want to stay engaged and receive info about. Other attendees will be able to see if you are following a meeting,” Microsoft explained. Meeting invitation email with new Follow option (Image Credits: Microsoft) Microsoft Outlook's... --- ### First Ring Daily: Big Numbers - Published: 2024-04-26 - Modified: 2024-04-26 - URL: https://petri.com/first-ring-daily-big-numbers/ - Categories: Microsoft - Tags: artificial intelligence, First Ring Daily, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's FY24 Q3 earnings beating all expectations as the company's huge bet on Copilot and generative AI continues to pay off. --- ### Microsoft 365 Multi-Tenant Organization Capabilities Generally Available for Enhanced Cross-Tenant Collaboration - Published: 2024-04-26 - Modified: 2024-04-26 - URL: https://petri.com/microsoft-365-multi-tenant-organization-generally-available/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has introduced multi-tenant organization (MTO) capabilities for Entra ID customers to enhance cross-tenant collaboration in Microsoft Teams and Viva Engage. MTO allows up to five Entra ID tenants to share resources and collaborate, which is beneficial for organizations with multiple Microsoft 365 tenants. Participation in multi-tenant organizations requires Entra ID Premium P1 licenses for users. Microsoft has announced the general availability of the new multi-tenant organization (MTO) capabilities for Entra ID customers. The new feature is designed to enhance the cross-tenant collaboration experience in Microsoft Teams and Viva Engage. A multi-tenant organization is a group of up to five Entra ID tenants that are linked together by cross-tenant access policies to let users collaborate and share resources. This solution could be useful for organizations that span multiple Microsoft 365 tenants and need to share information. Microsoft first announced released of the new Entra ID multi-tenant organization feature in public preview in mid-2023. It allows users to share applications and engage across tenants with Microsoft Teams and Viva Engage. “As your organization evolves, you may need to integrate multiple tenants to facilitate collaboration,” said Joseph Dadzie, Partner Director of Product Management.  “With disparate identity management systems, it can be costly and complex for admins to manage multiple tenants while ensuring users across tenants have access to resources to collaborate. ” Multi-tenant organization capabilities Why should you use multi-tenant organization capabilities? Microsoft has highlighted several key benefits of a multi-tenant organization. In the new Microsoft Teams desktop client, employees can use chat,... --- ### Microsoft Reduces Size of Windows 10 Updates for Faster Downloads - Published: 2024-04-25 - Modified: 2024-04-25 - URL: https://petri.com/microsoft-reduces-size-windows-10-updates/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Key Takeaways: Microsoft is shrinking the size of update packages for Windows 10 version 22H2. This change promises faster downloads, minimized network traffic, and better performance on Windows 10 PCs. Users will find that recent Windows 10 Cumulative Updates (CUs) have shrunk by 22%, making updating less burdensome and more manageable. Microsoft has announced its plans to significantly reduce the size of its updates for Windows 10 version 22H2. The company has introduced an improved cumulative update (CU) technology that promises expedited downloads, reduced network congestion, and optimized performance, particularly benefiting users on slower connections. In 2021, Microsoft detailed its efforts to cut down the size of Windows 11 update by around 40 percent. Specifically, Microsoft no longer includes the reverse-differential bits in Windows 11 cumulative updates. The company found a way to generate these bits only in cases where they are needed. Microsoft also changed the internal structure of the cumulative update to deliver smaller CUs to Windows 11 devices. Now, Microsoft is bringing the same compression technology to reduce the size of monthly cumulative updates on Windows 10 devices. "Starting April 23, 2024, the LCU will no longer have the reverse differentials. The client will generate the reverse update data. This change will help to reduce the LCU package size by about 20%. This change also offers a few advantages," Microsoft explained. Microsoft highlighted notable reductions in the size of its latest cumulative update (LCU) Windows packages. For example, the KB5036892 and KB5036979 updates, released earlier this month,... --- ### Microsoft to Retire Classic Teams on July 1, 2024 - Published: 2024-04-25 - Modified: 2024-04-25 - URL: https://petri.com/microsoft-retire-classic-teams-july-2024/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has announced the retirement of the classic Teams desktop app, with end of support scheduled for July 1, 2024. Microsoft says access to classic Teams will be blocked on Windows 7, 8, 8. 1, and Mac OS Sierra in October. Microsoft recommends IT admins to transition users to the new Teams to receive new features and improvements. Microsoft will soon officially retire the classic version of Microsoft Teams. The company has announced on the Microsoft 365 admin center that the classic Teams desktop app will reach end of support in July this year. Starting July 1, 2024, Microsoft will begin informing its commercial customers through periodic in-app dialog messages that classic Teams is no longer supported. The classic Microsoft Teams desktop client will stop getting any new features and improvements. Microsoft says the informational messages will urge users to switch to the new Teams desktop client. When will classic Teams reach end of availability? Microsoft plans to block customers from accessing classic Teams on October 23, 2024. This change will impact Windows 7, Windows 8, Windows 8. 1, and Mac OS Sierra (10. 12). However, the app will continue to work for users with configuration issues on Windows 10, macOS versions Big Sur(11) or lower until July 1, 2025. After that date, the new Teams web app will be available on supported browsers as an alternative. “This gives admins more time to address any issues encountered during this process. We do ask that users update their OS and address any... --- ### Dropbox Introduces New Real-Time Co-Authoring Support for Microsoft 365 Apps - Published: 2024-04-24 - Modified: 2024-04-24 - URL: https://petri.com/dropbox-real-time-co-authoring-microsoft-365/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Real-time co-authoring capabilities allow Dropbox customers to collaboratively edit Word, PowerPoint, and Excel documents. Dropbox also announced enhanced security features, including end-to-end encryption and advanced data protection tools. IT admins can now manage team membership and invites from a central dashboard. Dropbox and Microsoft are teaming up to more closely integrate the cloud storage service into Microsoft 365. The company has announced today several new features aimed at improving organization and collaboration for Microsoft 365 customers. Microsoft Teams already allows users to search, preview, upload, and share files and other content stored in Dropbox. The latest update now lets customers use Dropbox’s plugin extension for Copilot for Microsoft 365 to answer questions and summarize documents. Dropbox is also getting real-time co-authoring support for Office files, allowing team members to collaboratively edit Word, PowerPoint, and Excel documents. This top-requested feature is available in beta for all desktop, mobile, and web users. Additionally, Dropbox has introduced a new integration called Dropbox Replay for OneDrive. Dropbox Replay is a tool that helps to streamline the process of video reviews and approvals. This new feature enables users to bring media files from OneDrive directly into Dropbox Replay for efficient reviews and approvals. Users can sign up for the Co-Authoring beta and access the Dropbox Replay for OneDrive integration on this page. Real-Time Co-Authoring beta (Image Credits: Microsoft) Security features Dropbox has also announced several advanced data protection capabilities for commercial customers. The company has added end-to-end encryption support to provide an additional... --- ### Microsoft's Configuration Manager Update 2403 Brings Diagnostic Dashboard, Other New Features - Published: 2024-04-24 - Modified: 2024-04-24 - URL: https://petri.com/microsofts-configuration-manager-update-2403/ - Categories: Endpoint Management - Tags: Configuration Manager, News - Article Type: News Key Takeaways: A new monitoring dashboard within Configuration Manager enhances administrators' ability to detect and address software update issues efficiently. Microsoft has announced the discontinuation of support for Windows Server 2012/2012 R2 operating system site system roles. Microsoft also released improvements to BitLocker key escrow verification to prevent data loss. Microsoft has announced the release of the update 2403 for Configuration Manager (Current Branch). Among its notable features are the rebranding of Azure Active Directory to Microsoft Entra ID, a new monitoring dashboard for detecting software update issues, streamlined search capabilities, and more. Microsoft Configuration Manager is a software management suite that lets organizations manage large numbers of computers running macOS, Windows, Linux, and mobile operating systems. The service offers various tools to streamline software deployment, compliance monitoring, patch management, and remote administration. Microsoft has rebranded Azure Active Directory (Azure AD) to Microsoft Entra ID within Configuration Manager. Additionally, a new dashboard in the monitoring workspace facilitates easier detection of software update issues. The Configuration Manager console now includes a search box to enhance search efficiency and consolidate access to important information. This feature saves time and effort previously spent navigating through various nodes or sections. Software update health dashboard (Image Credits: Microsoft) Folder support for scripts The latest Configuration Manager update allows administrators to use folders to organize and manage scripts. This feature is available for both full administrators and operations administrators. Additionally, Microsoft has deprecated HTTP-only communication, advising customers to opt for HTTPS or Enhanced HTTP for client... --- ### Microsoft Intune Remote Help Gets Full Control Support for macOS Devices - Published: 2024-04-23 - Modified: 2024-04-23 - URL: https://petri.com/microsoft-intune-remote-full-control-macos/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft Intune Remote Help now offers full control support for macOS devices. The new feature allows IT help desk agents to gain complete control over Mac systems to reduce time to mitigation. This capability streamlines troubleshooting processes, allowing help desks to tackle problems quickly and efficiently. Microsoft Intune Remote Help has introduced full control support for macOS devices. The new feature allows IT help desk agents to quickly address issues by gaining full control over any Mac device. Microsoft Intune Remote Help is a cloud-based solution that provides secure help desk connections. It uses role-based access controls to let support agents remotely troubleshoot issues on employees’ computers. Remote Help can be used to improve efficiency, mitigate security risks, and support workers. It’s available as an add-on to all Microsoft 365 plans that include Intune. Microsoft emphasizes that this release is part of its broader initiative to provide cross-platform support, allowing administrators to manage any device using Microsoft Intune. The Remote Help app for macOS now offers both view-only and full control capabilities. This new feature enables support staff to remotely control the mouse and keyboard on Mac devices. “With this new functionality, IT help desks can now not only view Mac devices, but also take full control of them, streamlining troubleshooting and reducing time to mitigation. Whether it's configuring settings, troubleshooting software glitches, or assisting information workers, help desks can tackle problems quickly and efficiently,” the Microsoft Intune team explained. The Intune admin console (Image Credits: Microsoft) How... --- ### Russian Hackers Exploit Critical Windows Vulnerability to Deploy 'GooseEgg' Malware - Published: 2024-04-23 - Modified: 2024-04-23 - URL: https://petri.com/hackers-windows-vulnerability-gooseegg-malware/ - Categories: Security, Windows - Tags: Malware, News, Windows - Article Type: News Key Takeaways: Russian hackers are exploiting a Windows print spooler flaw to gain elevated privileges and steal credentials in compromised enterprise networks. The hacker uses a custom tool named GooseEgg to target organizations, indicating a sophisticated and deliberate approach to cyber infiltration. Microsoft advises applying patches and implementing to mitigate the risk of cyberattacks. Microsoft has warned customers about the exploitation of a Windows print spooler vulnerability by Russian hackers, enabling them to elevate privileges and pilfer credentials within compromised enterprise networks. The Russian hacking group is using a custom tool known as GooseEgg to target a range of organizations. What is Windows Print Spooler vulnerability? Microsoft patched the print spooler elevation of privilege vulnerability (CVE-2022-38028) in October 2022. The security flaw, which carries a CVSS rating of 7. 8, allows attackers to attackers to remotely execute code with system-level privilege on vulnerable machines. The Windows print spooler service manages the printing process in Windows environments. On Monday, Microsoft disclosed that Forest Blizzard (aka Fancy Bear) has been exploiting the CVE-2022-38028 vulnerability in the Windows Print Spooler service since at least June 2020. The hacking group has been linked by the US and UK governments to the Russian General Staff Main Intelligence Directorate (GRU). Microsoft found that the Russian-backed threat actor exploited the security flaw to gain unauthorized access to a target Windows device. The attackers use a simple batch script to deploy the GooseEgg executable and establish persistence on the compromised system. “While a simple launcher application, GooseEgg is capable... --- ### Microsoft Advises Against iPerf3 Usage for Network Testing on Windows - Published: 2024-04-22 - Modified: 2024-04-22 - URL: https://petri.com/microsoft-iperf3-network-testing-windows/ - Categories: Windows - Tags: News, Windows - Article Type: News Key Takeaways: Microsoft discourages the use of iPerf3 on Windows devices due to compatibility issues and performance concerns. Microsoft warns that older versions of iPerf3 may limit network benchmarking capabilities on Windows machines. Microsoft recommends alternative tools like ntttcp and ctsTraffic for network performance testing. Microsoft has issued an advisory against using the iPerf3 tool on Windows devices, citing compatibility and performance concerns. The company highlights issues with iPerf3's reliance on Cygwin emulation layer and potential discrepancies in network testing. iPerf is a popular tool that is used for measuring network bandwidth and performance across different platforms. It’s maintained by Energy Sciences Network (ESnet) and enables users to assess their network’s capabilities and ensure optimal performance. Why you shouldn't use iPerf3 on Windows? Microsoft has outlined three main reasons why it discourages the use of iPerf3 on Windows PCs. First of all, ESnet officially supports CentOS 7 Linux, FreeBSD 11, and macOS 10. 12, and does not extend its support to running iPerf3 on Windows. The company recommends customers to use iPerf2 for monitoring network performance on Windows devices. Secondly, Microsoft notes that iPerf3 does not make native API calls on Windows machines. The tool uses Cygwin as an emulation layer to work on Windows, and it causes significant performance issues. Microsoft also mentioned that some advanced iPerf3 features for network testing are either not supported or may trigger unexpected issues on Windows PCs. “The iPerf3 calls are sent to Cygwin, which translates them to Windows APIs calls. Only then does... --- ### Microsoft Purview Launches Audit Search Graph API for Seamless Data Monitoring - Published: 2024-04-22 - Modified: 2024-04-22 - URL: https://petri.com/microsoft-purview-audit-search-graph-api/ - Categories: Identity Management - Tags: Microsoft Purview, Microsoft Purview Audit, News - Article Type: News Key Takeaways: Microsoft has announced a public preview of the Purview Audit Search Graph API. The new API provides organizations with a more efficient and reliable way to search and retrieve audit logs. The Purview Audit Search Graph API is expected to hit general availability in June 2024. Microsoft has launched its new Purview Audit Search Graph API in public preview for commercial customers. This new API allows IT administrators to programmatically search and retrieve audit logs, improving how organizations track and secure their data usage. Microsoft Purview Audit is a feature that lets IT administrators monitor and track data usage and access within their organizations. It offers various capabilities like generating audit reports, logging data access events, and monitoring activities across data sources and platforms. “The Microsoft Audit Search Graph API is designed to provide a more efficient and reliable way to search audit logs, making it easier for customers and partners to monitor and investigate security incidents. With this new feature, users can expect faster search times, more complete search results, and a more robust and reliable search experience,” Microsoft explained. The new Microsoft Purview Audit Search Graph API offers various search, reliability, and performance improvements over the existing Search-UnifiedAuditLog PowerShell cmdlet. For starters, the API provides an asynchronous Audit search experience with automation capabilities for both apps and end users. It’s also designed to offer enhanced search completeness and reduce timeouts. Microsoft Purview Audit Search Graph API introduces enhanced granular permissions Microsoft has introduced new granular permissions... --- ### 5 Ways to Get Things Done More Efficiently in Microsoft 365 - Published: 2024-04-22 - Modified: 2024-05-07 - URL: https://petri.com/5-ways-to-get-things-done-microsoft-365/ - Categories: Microsoft 365, Microsoft Teams, Planner - Tags: featured-top-left, Microsoft 365, Microsoft Planner, Microsoft Teams - Article Type: Overview It can seem at times we all have an overwhelming amount of things to do and information to deal with. Solutions like Microsoft 365 are supposed to help us collaborate and be more productive. But unless you understand the tools and how to best create a process that works for you and your team, it can still be difficult to stay on top of your workload. In this article, I look at 5 ways you can get things done in Microsoft 365. 1. Keep as much information as possible in Microsoft 365 to avoid costly context switching between apps Frequent context switching between applications is known to drive down productivity. And it can be frustrating to have to search for information across many different systems. Microsoft has an article What context switching is and how it’s messing up your workday with more information about the negative impact of context switching. Keeping as much of your data inside Microsoft 365 has several advantages: Firstly, you can search all your organization’s information from one place, regardless of whether it arrived by email, is in a Teams chat or channel, or in a document, using Microsoft 365 Search. Search is deeply integrated into Microsoft 365 and it is accessible in many different places, including in apps, on the Office. com homepage, and it’s even integrated with search in Windows (taskbar and File Explorer). Make sure you add your Microsoft 365 account to Windows so you have access to search your organization’s tenant. Search... --- ### First Ring Daily: Did Copilot Do That? - Published: 2024-04-19 - Modified: 2024-04-19 - URL: https://petri.com/first-ring-daily-did-copilot-do-that/ - Categories: Windows Server - Tags: copilot, First Ring Daily, News, Windows Server - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft accidentaly pushing Copilot on Windows on Windows Server builds, how Microsoft could make Copilot more useful for IT admins and security experts, and wonder if they could really trust AI to make changes for them. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft accidentaly pushing Copilot on Windows on Windows Server builds, how Microsoft could make Copilot more useful for IT admins and security experts, and wonder if they could really trust AI to make changes for them. --- ### Microsoft Launches Office LTSC 2024 in Preview for Windows and Mac Devices - Published: 2024-04-19 - Modified: 2024-06-03 - URL: https://petri.com/microsoft-office-ltsc-2024-preview-windows-mac/ - Categories: Office - Tags: News, Office LTSC 2024 - Article Type: News Key Takeaways: Office LTSC 2024 is available for commercial preview on Windows and macOS, offering users a glimpse into its new features. The Long-Term Servicing Channel version of Office will receive 5 years of support on Windows 11 and Windows 10. Office LTSC 2024 provides enhanced capabilities compared to previous versions, but it lacks certain features like Microsoft Teams and Publisher. Microsoft has announced that Office 2024 is now available as a commercial preview for Windows and macOS users. The next release of Office for the Long-Term Servicing Channel will receive 5 years of support on both Windows 11 and Windows 10 operating systems. The Office Long-Term Servicing Channel (LTSC) caters to businesses and government customers seeking a one-time payment option for Office applications, rather than a recurring subscription fee for Microsoft 365. It provides a subset of the features included in Microsoft 365 Apps for enterprise. The LTSC version is intended for regulated devices that cannot receive regular feature updates, as well as process-control devices in manufacturing that lack internet connectivity. Office LTSC 2024 offers various new capabilities and enhancements compared to its predecessor. These include improved search capabilities in Outlook, new meeting creation options, new Excel features such as arrays and dynamic charts, and more. However, the latest release doesn’t ship with Microsoft Teams and Microsoft Publisher. The former is available as a separate download and the latter will soon be retired. Office LTSC 2024 lacks support for cloud-based features Microsoft notes that Office LTSC 2024 doesn’t support... --- ### Cybercriminals Exploit OpenMetadata Flaws to Target Kubernetes Clusters - Published: 2024-04-18 - Modified: 2024-04-18 - URL: https://petri.com/openmetadata-flaws-kubernetes-clusters/ - Categories: Active Directory (AD) - Tags: cybersecurity, Kubernetes, News - Article Type: News Key Takeaways: Microsoft has identified critical vulnerabilities within OpenMetadata, posing a significant security risk to unpatched Kubernetes clusters. These vulnerabilities could potentially enable cybercriminals to execute remote code attacks. Organizations are urged to promptly update their OpenMetadata workloads and implement robust security measures to mitigate the risk of exploitation. Microsoft has recently unveiled critical vulnerabilities within OpenMetadata's open-source metadata repository. The security flaws could allow cybercriminals to execute remote code attacks on unpatched Kubernetes clusters. OpenMetadata is an open-source platform that offers a centralized metadata management solution for data lakes, pipelines, and warehouses. It enables businesses to discover, understand, and govern their data assets across different data platforms. The ingestion framework of OpenMetadata supports connectors for various services, including Atlas, Apache NiFi, Airflow, Amundsen, and Athena. Kubernetes RCE Attack flow In mid-March, Microsoft's researchers discovered several critical vulnerabilities (CVE-2024-28255, CVE-2024-28847, CVE-2024-28253, CVE-2024-28848, CVE-2024-28254) impacting OpenMetadata versions 1. 2. 4 and 1. 3. 1. Since early April, threat actors have been actively exploiting these flaws to target unpatched Internet-exposed OpenMedata workloads. These vulnerabilities allow hackers to gain access to vulnerable Kubernetes environments, which they can then exploit for cryptocurrency mining. "Once they identify a vulnerable version of the application, the attackers exploit the mentioned vulnerabilities to gain code execution on the container running the vulnerable OpenMetadata image," the Microsoft Threat Intelligence team explained. "Once the attackers confirm their access and validate connectivity, they proceed to download the payload, a cryptomining-related malware, from a remote server. " Additional cryptomining-related malware in the attacker’s server (Image credits:... --- ### Microsoft Defender for Endpoint Rolls Out Offline Security Intelligence Update Feature for Linux Devices - Published: 2024-04-18 - Modified: 2024-04-18 - URL: https://petri.com/microsoft-defender-for-endpoint-offline-security-update/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News - Article Type: News Key Takeaways: Microsoft Defender for Endpoint has introduced the offline security intelligence update feature in public preview, catering specifically to Linux devices. It enables organizations to use a local hosting server to manage and distribute security intelligence updates. Administrators gain granular control over the update process, with options to manage the frequency of updates and test signatures before deployment. Microsoft Defender for Endpoint has added a new Offline Security Intelligence Update feature in public preview for Linux devices. This functionality enables organizations to update security intelligence even when internet connectivity is limited or unavailable, by utilizing a local hosting server. Microsoft has highlighted several key benefits of the new offline security intelligence update feature for Defender for Endpoint customers. The feature lets administrators manage the frequency of signature updates downloaded on the local server. They can also test the downloaded signatures in a controlled environment before deploying them widely. The offline security intelligence update feature offers a significant reduction in network bandwidth usage by consolidating downloads to a single local server. Moreover, the local server can operate on any operating system (Mac, Windows, Linux) and doesn’t require the installation of Defender for Endpoint. If the offline update fails, administrators have the option to opt for online updates from the Microsoft cloud. High level process flow diagram (Image credits: Microsoft) How does the offline security intelligence update feature work? First up, customers will need to set up a local Web/NFS server (Mirror Server) to connect with the Microsoft cloud for downloading... --- ### PSA: Microsoft Office 2016 and 2019 to Reach End of Support in October 2025 - Published: 2024-04-17 - Modified: 2024-06-03 - URL: https://petri.com/office-2016-2019-end-support-2025/ - Categories: Office, Office 2016 - Tags: News, Office 2016, Office 2019 - Article Type: News Key Takeaways: Microsoft Office 2016 and Office 2019 are slated to lose extended support on October 14, 2025. Microsoft will no longer provide security patches, bug fixes, or technical support after this date. Microsoft recommends customers to migrate to the subscription-based Microsoft 365 service. Microsoft is reminding customers that Office 2016 and Office 2019 apps and productivity servers will reach end of support on October 14, 2025. After this date, the company will no longer provide security patches, bug fixes, and technical support to both consumers and organizations. Microsoft announced the end of mainstream support for Office 2016 and 2019 in October 2020 and October 2023, respectively. The October 2025 date will mark the end of extended support for these two Office productivity suites. The end of extended support means that customers who continue to use these products would be vulnerable to security and compliance issues. Microsoft urges migration from Office 2016 and 2019 to Microsoft 365 Microsoft recommends users of Office 2016 and Office 2019 to migrate to the subscription-based Microsoft 365 service for accessing these productivity apps. The company highlights that the Microsoft 365 E3 subscription plan includes productivity and collaboration features, zero-trust security, and endpoint management tools. “We recommend migrating devices running end of support products to the cloud with Microsoft 365 E3 to stay continuously supported. Microsoft 365 E3 includes familiar Microsoft 365 apps—such as Word, Excel, PowerPoint, Outlook, Teams, and more—along with online services like SharePoint and Exchange,” Microsoft explained. What are other options for... --- ### Microsoft Loop Adds New Filtering Capabilities to Tables and Boards - Published: 2024-04-17 - Modified: 2024-11-13 - URL: https://petri.com/microsoft-loop-filters-tables-boards/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Loop has added support for filters to Tables and Boards. Users can now easily organize and analyze large quantities of data within Loop Tables and Boards. The filters feature also extends to Board components and third-party integrations such as JIRA and Trello. Microsoft has released a new update for its Loop app that should make it easier for users to find and access relevant information. Microsoft Loop users can now apply filters to the content in Loop Tables and Boards. Microsoft first announced its Loop app in November 2021. The new productivity app, which is built on the Fluid framework, helps users manage tasks, projects, and documents with team members. Microsoft Loop has three main elements: Loop components, Loop workspaces, and Loop pages. Microsoft highlights that the new filters feature is designed to promote efficient data exploration and analysis within Loop Tables and Boards. Filters improve the overall user experience and promote deeper insights extraction from large quantities of data. Microsoft Loop filters (Image credits: Microsoft) How to use filters in Microsoft Loop Tables and Boards To use filters in Microsoft Loop Tables and Boards, users will need to follow the steps mentioned below: Log into the Microsoft Loop app and select a table-based component in an existing Loop page or create one. Navigate to the operations bar at the top of the Table and click the Filter option. Choose a column, condition, and value to create one or more rules for the filter. Create rules for... --- ### Microsoft Graph Activity Logs Redefine Security Monitoring - Published: 2024-04-16 - Modified: 2024-04-16 - URL: https://petri.com/microsoft-graph-activity-logs/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra, News - Article Type: News Key Takeaways: Microsoft Graph activity logs feature provides organizations with comprehensive insights into HTTP requests processed within their tenant. This feature extends beyond traditional sign-ins and audit logs, enabling threat hunting, security analysis, and detailed application activity tracking. Administrators can access activity logs through Azure Monitor Logs integration with Microsoft Entra. Microsoft has announced the general availability of the activity logs feature in Microsoft Graph. This capability enables organizations to gain insights into all HTTP requests that the Microsoft Graph service received and processed for a specific tenant. Microsoft Graph is an API that collects user and organizational data from various Microsoft services, including Microsoft 365, Enterprise Mobility and Security services, Entra ID, and Windows. It lets developers to build apps that can interact with users' data stored such as emails, calendars, contacts, tasks, and files. Up until now, the Microsoft Graph service only allowed administrators to access data about sign-ins and audit logs. Now, Microsoft Graph activity logs enable customers to gain broader visibility. These logs facilitate threat hunting, security analysis, and tracking of application activity within a tenant. “With Microsoft Graph activity logs, you can now investigate the complete picture of activity in your tenant – from token request in sign-in logs, to API request activity (reads, writes, and deletes) in Microsoft Graph activity logs, to ultimate resource changes in audit logs,” Microsoft explained. Microsoft Graph activity logs in Log Analytics (Image Credits: Microsoft) What are the common use cases for Microsoft Graph activity logs? Microsoft Graph activity... --- ### Microsoft Bolsters Exchange Online Security with New External Recipient Rate Limit Feature - Published: 2024-04-16 - Modified: 2024-04-16 - URL: https://petri.com/exchange-online-external-recipient-rate-limit/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Key Takeaways: Microsoft's Exchange Online service will introduce a daily limit of 2,000 external recipients in 2025. New Exchange Online customers will see the external recipient limit enforced in January 2025, followed by existing tenants in July 2025. Basic authentication for client submission (SMTP AUTH) will be deprecated in September 2025. Microsoft takes a pivotal step in improving security with the introduction of a daily external recipient limit for Exchange Online customers. Starting in January 2025, the company will enforce a daily Exchange Online bulk email limit of 2,000 external participants to curb spamming and misuse of resources. The recipient rate limit is a security feature in Exchange Online designed to prevent users and applications from sending excessive amounts of emails from a single mailbox. Currently, the recipient rate limit is set at 10,000 individual recipients per day for both internal and outbound messages. It's worth noting that each distribution list or Microsoft 365 group is counted as one recipient. The new external recipient rate (EER) limit feature is designed to prevent spamming and misuse of Exchange Online resources. Microsoft intends to implement this limit for cloud-hosted mailboxes of new customers starting on January 1, 2025, followed by existing tenants in July 2025. However, the company didn't clarify whether this limit also applies to emails sent through a connector to Exchange on-premises servers in hybrid environments. “Exchange Online enforces a Recipient Rate limit of 10,000 recipients. The 2,000 ERR limit will become a sub-limit within this 10,000 Recipient Rate limit... . --- ### Microsoft Lifts Windows 11 Upgrade Block for PCs with Intel SST Drivers - Published: 2024-04-15 - Modified: 2024-04-15 - URL: https://petri.com/windows-11-upgrade-block-intel-sst-drivers/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft has removed a Windows 11 upgrade block for Windows 10 devices with Intel SST drivers. Microsoft says that affected users must update to the latest Intel SST driver versions through Windows Update. IT admins can use tools such as Windows Autopatch for managing driver updates in enterprise environments. Microsoft has removed an upgrade block that was previously in place for Windows 10 PCs with certain Intel Smart Sound Technology drivers. The company has recently updated the Windows Health Dashboard to indicate that the compatibility hold has been removed, and these PCs can now upgrade to Windows 11. In 2021, Microsoft discovered a compatibility issue with certain versions (10. 29. 0. 5152 and 10. 30. 0. 5152) of the Intel Smart Sound Technology (SST) driver and Windows 11. The company acknowledged that the bug caused some Windows 10 users to experience Blue Screen of Death (BSOD) crashes. As a result, Microsoft placed a safeguard hold to prevent Windows 10 PCs with incompatible Intel SST drivers from upgrading to Windows 11. Windows 11 now available for PCs with Intel SST drivers If you haven’t been able to get Windows 11 on your PCs with Intel Smart Sound Technology drivers, you should be able to grab it now through Windows Update. However, keep in mind that Windows 10 users affected by the issue will need to update the Intel SST drivers to version 10. 29. 00. 5714 and 10. 30. 00. 5714 or later before upgrading to Windows 11. “If your device still encounters this safeguard hold 48 hours after updating your... --- ### CISA Alerts: Russian Hackers Infiltrate US Government Emails - Published: 2024-04-15 - Modified: 2024-04-15 - URL: https://petri.com/cisa-russian-hackers-government-emails/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Russian hackers breached Microsoft's email system, gaining access to emails from multiple US government agencies. CISA issued an emergency directive instructing federal agencies to enhance protection for their email accounts in response to the breach. Federal agencies impacted by the breach are required to reset passwords and fortify security systems within a week. The US Cybersecurity and Infrastructure Security Agency (CISA) has warned that Russian hackers, who penetrated Microsoft's email system last year, have now successfully stolen emails from numerous US government agencies. In response, CISA has promptly issued an emergency directive, mandating federal agencies to bolster protection for their email accounts. Microsoft recently confirmed that its senior executives' email accounts were hacked by the "Midnight Blizzard" hacking group, also known as Cozy Bear and APT29. The company warned that these Russian state-sponsored hackers not only spied on the email accounts but also managed to steal source code and gain unauthorized access to internal systems. Earlier this month, CISA warned that the cyberattack allowed the hackers to exfiltrate email communications between Federal Civilian Executive Branch (FCEB) agencies and Microsoft. The stolen emails contained critical authentication details such as credentials, passwords, tokens, and API keys. Consequently, federal agencies that were affected by this breach are required to reset their passwords and secure their security systems within a week. “Midnight Blizzard’s successful compromise of Microsoft corporate email accounts and the exfiltration of correspondence between agencies and Microsoft presents a grave and unacceptable risk to agencies. This Emergency Directive requires agencies... --- ### Microsoft Copilot Dashboard Launches to Enhances Workplace Productivity - Published: 2024-04-12 - Modified: 2024-04-12 - URL: https://petri.com/microsoft-copilot-dashboard-generally-available/ - Categories: Microsoft 365, Viva - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has introduced a new Copilot Dashboard that offers actionable insights to maximize Copilot's value for Microsoft 365 customers. The dashboard covers metrics in categories such as Readiness, Adoption, Impact, and Sentiment, providing visibility into technical eligibility, adoption rates, and productivity improvements. Microsoft has also launched Copilot Academy that provides curated content to help employees master Copilot for Microsoft 365. Microsoft has launched a new Copilot Dashboard for Microsoft 365 customers. Powered by Viva Insights, the new dashboard provides actionable insights about Copilot adoption across an organization. “The Microsoft Copilot Dashboard in Viva Insights helps organizations maximize the value of Copilot for Microsoft 365. It provides actionable insights to help your organization get ready to deploy AI, drive adoption based on how AI is transforming workplace behavior, and measure the impact of Copilot,” Microsoft explained. The Microsoft Copilot Dashboard covers various categories of metrics, including Readiness, adoption, impact, and sentiment. The Readiness tab provides visibility into Copilot technical eligibility, licensing, and activation status. The Readiness tab provides enables organizations to analyze their overall readiness for Copilot for Microsoft 365. Moreover, the adoption tab helps to understand how many employees are using the Copilot AI assistant within Microsoft 365 apps. Microsoft Copilot Dashboard Readiness tab (Image credits: Microsoft) With the Impact tab, managers can assess how Copilot is adding value to improve the productivity of employees within their organization. It provides a summary of Copilot actions and behavioral shifts across meetings, emails, chats, documents, and searches. Microsoft Copilot Dashboard... --- ### First Ring Daily: Intel Does AI - Published: 2024-04-12 - Modified: 2024-04-12 - URL: https://petri.com/intel-does-ai/ - Categories: Hardware, Windows, Windows 11 - Tags: ARM, artificial intelligence, First Ring Daily, Intel, News - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott reflect on Intel's recent talks about new AI, discuss why ARM continues to be the hope, and wonder if neural processing units (NPUs) really matter. On this episode of First Ring Daily, Brad Sams and Paul Thurrott reflect on Intel's recent talks about new AI, discuss why ARM continues to be the hope, and wonder if neural processing units (NPUs) really matter. --- ### Microsoft Streamlines Log Ingestion with New Sentinel AWS S3 Connector - Published: 2024-04-12 - Modified: 2024-04-12 - URL: https://petri.com/microsoft-sentinel-aws-s3-connector/ - Categories: Amazon Web Services, Microsoft Sentinel - Tags: Amazon Web Services, Microsoft Sentinel, News - Article Type: News Key Takeaways: Microsoft has released the AWS S3 connector for Microsoft Sentinel. The new Microsoft Sentinel AWS S3 connector can ingest logs from various AWS services, facilitating monitoring and threat detection across AWS environments. Administrators have the flexibility to configure the AWS S3 connector either through a PowerShell script or manually. Microsoft has announced the general availability of the Amazon Web Services (AWS) S3 connector for Microsoft Sentinel. This new connector allows organizations to ingest service logs from various AWS services directly into Sentinel. Microsoft Sentinel is a security solution that provides a central hub for monitoring security events, automating responses, and providing insights into security threats. The service collects data from various sources such as on-premises systems, Microsoft Azure, and other platforms. Microsoft Sentinel makes it easier to investigate suspicious activities, identify previously undetected threats, and minimize false positives. What are AWS Connectors? AWS connectors allow customers to provide Microsoft Sentinel access to their AWS resource logs. These connectors can be configured to establish a trust relationship between Microsoft Sentinel and Amazon Web Services. Currently, there are two versions of the AWS connector available: the legacy AWS CloudTrail connector and the new AWS S3 connector. The AWS CloudTrail connector is designed to integrate Amazon Connect with AWS CloudTrail to record Amazon Connect API calls. It logs events related to resource changes and requester details, providing identity insights, continuous monitoring, and governance support. Microsoft Sentinel AWS S3 connector architecture How does the Microsoft Sentinel AWS S3 connector work? The new... --- ### Microsoft SharePoint Exploits Pose Risk of Document Theft - Published: 2024-04-11 - Modified: 2024-04-11 - URL: https://petri.com/microsoft-sharepoint-exploits/ - Categories: SharePoint - Tags: News - Article Type: News Key Takeaways: Cybersecurity researchers have identified two new techniques that enable hackers to steal data from Microsoft SharePoint. Threat actors could abuse SharePoint's logging mechanisms and mask file downloads as access or synchronization events. Microsoft has categorized these exploits as moderate security issues not requiring immediate patching. Cybersecurity researchers have discovered two new techniques that could enable hackers to steal data from Microsoft SharePoint. Microsoft SharePoint is a web-based platform used for collaboration, content management, and business process automation within organizations. It integrates with other Microsoft products like Office 365. According to a report from Varonis Threat Labs, these methods cybercriminals could abuse these methods to trick SharePoint into logging downloads of exfiltrated files as access or synchronization events. This technique lets hackers evade detection by cloud access security and data loss prevention tools, which would typically identify the intrusion. The first technique exploits the 'Open in App Method' feature within Microsoft SharePoint. This enables attackers to open SharePoint files using applications like Microsoft Word rather than a web browser. By doing so, a local copy of the document is created, and this action does not trigger a 'FileDownloaded' event in SharePoint's audit logs. " This tactic allows threat actors to download SharePoint files either using a PowerShell script or manually. “This script can be extended to map an entire SharePoint site and, using automation, download all the files to the local machine. While this method does not generate download logs, it does create access logs, which can be used to... --- ### Install and Use SQL Server Report Builder - Published: 2024-04-10 - Modified: 2024-11-19 - URL: https://petri.com/sql-server-report-builder/ - Categories: SQL Server - Tags: featured-top-left, SQL Server, SQL Server Report Builder, SQL Server Reporting Services - Article Type: How To In this article, Michael Otey shows you how to use SQL Server Report Builder. SQL Server Report Builder and Reporting Services Microsoft SQL Server Reporting Services (SSRS) enables you to create, deploy, and manage printed, web, email, and mobile reports using data from SQL Server databases and Analysis Services (SSAS) as well as other relational database such as Oracle, MySQL, and Azure SQL Database. SSRS is one of tools in the Microsoft Business Intelligence (MSBI) suite. The other MSBI tools include Microsoft SQL Server Analysis Services and Microsoft SQL Server Integration Services. Reporting Services reports are based on query results and they provide insights into operational and management data. SSRS reports can be incorporated into web and Windows-based applications as well as viewed in SharePoint, Power BI dashboards and mobile devices like Android and iOS. SQL Server Reporter Builder versus Report Designer Microsoft supplies two different tools for building reports with SSRS: Reporter Builder and Report Designer. Report Designer is a somewhat more powerful tool that’s now supplied as an extension to Visual Studio in the form of SQL Server Data Tools (SSDT). In past releases, Report Designer was a part of Business Intelligence Development Studio (BIDS). In contrast, Report Builder is a somewhat more user-friendly standalone tool. Both tools build SSRS reports that consist of Report Definition Language (RDL) which is an XML based format. The reports that are produced by either tool can be viewed and modified using the other report building tool. These reports are saved... --- ### Microsoft Fabric Adds New Security Features, Copilot Improvements - Published: 2024-04-10 - Modified: 2024-04-10 - URL: https://petri.com/microsoft-fabric-security-features/ - Categories: Data Management - Tags: Microsoft Fabric, News - Article Type: News Key Takeaways: Microsoft Fabric has introduced enhanced data security features through integration with Microsoft Purview. Copilot in Fabric now boasts streamlined data analysis with the addition of DAX query view support. Microsoft Fabric is getting new third-party integrations, including shortcuts to cloud-based data sources. Microsoft has recently announced a slew of new capabilities coming to Microsoft Fabric. The company highlighted improvements aimed at bolstering data security, analytics, and governance for commercial customers. Microsoft Fabric is an end-to-end data analytics platform that allows businesses to manage their data analytics needs and workflows. The service is built around a data lake called OneLake, and it brings together various new and pre-existing data tools and technologies from Azure Synapse, Power BI, and Azure Data Factory into a single solution. Microsoft Fabric is designed for developers, data scientists/engineers, administrators, managers, and business/data analysts. Improve data security with Microsoft Purview Last year, Microsoft announced a new Fabric integration with the Microsoft Purview Data Governance solution. The company has now detailed its plans to bring Purview's data loss prevention capabilities to Microsoft Fabric. Microsoft will first roll out this capability to Fabric Lakehouses. Microsoft will soon release a new feature that will let administrators enforce access permissions to protect sensitive information in Microsoft Fabric. Additionally, the data analytics platform is getting support for Microsoft Purview Insider Risk Management capabilities. Updates for Copilot in Fabric Microsoft has also announced some new capabilities coming to Copilot in Fabric. The DAX query view feature has added support for the... --- ### April 2024 Patch Tuesday Updates Fix SmartScreen Security Bypass Vulnerability - Published: 2024-04-10 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-april-2024-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft addressed 149 security vulnerabilities in Windows, Microsoft Office, and other components, with seven of them being rated as "Critical" and 90 rated as "Important" in severity. Microsoft fixed a security feature bypass vulnerability in Windows SmartScreen and remote code execution flaws in Microsoft Defender for IoT and Windows DNS Server. The "Moment 5" update is now available for all Windows 11 users with accessibility features, intelligent snap suggestions, and voice access improvements. Microsoft released yesterday the April Patch Tuesday updates for Windows 11 and Windows 10. This month, the company addressed 149 security vulnerabilities in Windows, Microsoft Office, and other components, with one already being exploited. On the quality and experience updates front, Microsoft released the KB5036893 update that enables the “Moment 5” features for all Windows 11 users. These include new accessibility features, intelligent snap suggestions, voice access improvements, and more. 149 vulnerabilities fixed in the April Patch Tuesday updates Microsoft has released new security patches to fix 149 security flaws. Among these, seven have been deemed 'Critical' and 90 are rated as 'Important' in severity. The Zero Day Initiative also pointed out that none of the bugs disclosed over Teams during Pwn2Own Vancouver are being addressed with the April Patch Tuesday updates. Here’s a list of the most important patches you should know about this month: CVE-2024-29988: This is a security feature bypass vulnerability in Windows SmartScreen with a CVSS score of 8. 8. Microsoft says this security flaw hasn’t been actively exploited or publicly disclosed... . --- ### Microsoft Intune Endpoint Privilege Management Gets New Support-Approved Elevations Feature - Published: 2024-04-09 - Modified: 2024-12-06 - URL: https://petri.com/endpoint-privilege-management-support-approved-elevations/ - Categories: Endpoint Management - Tags: News - Article Type: News Key Takeaways: Microsoft's Intune Endpoint Privilege Management now offers a new support-approved elevations capability. This release lets standard users request temporary administrative privileges for specific tasks or applications. The new support-approved elevations feature ensures greater flexibility for end-users while maintaining security protocols. Microsoft has introduced a new support-approved elevation feature within its Intune Endpoint Privilege Management solution. The new capability allows standard users to request temporary administrative privileges for specific tasks or applications. Microsoft Intune Endpoint Privilege Management (EPM) is a solution that enables organizations to give end users the ability to complete tasks that require elevated privileges. These tasks include updating device drivers, application installs, and running Windows diagnostics. This service helps administrators to ensure that a broad user base is running with the least privileges. Endpoint Privilege Management is available as an add-on to Microsoft 365 subscriptions that include Microsoft Intune. Previously, IT administrators were required to set up elevation rules for the most commonly used applications within their organizations. However, when end-users requested special permissions to access applications for which predefined rules had not been configured, their requests were automatically rejected. Consequently, they were forced to file a help desk ticket to proceed with the request. How does the support-approved elevations feature work? According to Microsoft, the new feature allows IT admins to request support approval directly from the app's context menu if a standard user wants to perform a task that requires elevated privileges. However, end users will be required to provide a justification and validate... --- ### Microsoft Discontinues ISV Studio Analytics Portal - Published: 2024-04-09 - Modified: 2024-04-09 - URL: https://petri.com/microsoft-discontinues-isv-studio/ - Categories: Power Apps - Tags: News - Article Type: News Key Takeaways: Microsoft is discontinuing ISV Studio, an analytics portal for Independent Software Vendors (ISVs). Microsoft cited input from ISV partners as a primary factor in discontinuing ISV Studio. ISV partners are encouraged to explore alternative solutions such as Partner Center for collaboration. Microsoft has announced its decision to deprecate the ISV Studio feature this month. The company has updated its support page to notify ISV partners that support for the analytics portal officially ended on April 1st. Microsoft first launched ISV Studio in preview in April 2021 as a tool to help Independent Software Vendors (ISV) monitor and manage their applications. It provides insights into usage, telemetry, and a consolidated view of applications across different customers. ISV Studio supports Power Apps and various Dynamics 365 modules, including Marketing, Sales, Talent, and Service. Microsoft has decided to retire ISV Studio based on feedback received from ISV partners. The company says that existing users will be able to view analytics related to their AppSource solutions as well as access the connector certification wizard until May 31, 2024. “Thanks to our ISV partners for trying out ISV Studio during the preview. After careful consideration and extensive review of partner feedback, we recognize the limitations of the service over time and acknowledge that it hasn't provided value as expected. At this stage of preview, we decided to remove the feature,” Microsoft explained. Microsoft recommends Partner Center for seamless collaboration and sales management Microsoft recommends ISV partners to use the reporting features available in... --- ### Microsoft Introduces New Entra Recommendations to Fortify Application Defenses - Published: 2024-04-08 - Modified: 2024-04-08 - URL: https://petri.com/microsofts-entra-recommendations-application-defenses/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra, News - Article Type: News Key Takeaways: Microsoft has announced new Entra recommendations that provide actionable steps to mitigate security risks. The Microsoft Entra recommendations feature allows organizations to remove unused credentials from applications to prevent unauthorized access. A new Microsoft Entra recommendation helps to identify applications utilizing Azure AD Graph APIs. Microsoft has announced several new and upcoming recommendations for Entra ID customers. These recommendations enable organizations to improve the health and security of their applications. The Microsoft Entra recommendations feature enables customers to track all settings and resources within their organization. This feature simplifies the monitoring of the tenant's status, ensuring it remains secure and healthy. The first new Microsoft Entra recommendation enables administrators to remove any unused credentials from applications. An application credential refers to a piece of information used by an application to authenticate itself when interacting with other apps or services. This new recommendation helps to prevent any unauthorized access to sensitive resources in case an application's credential is compromised and enhances the overall security posture of the system. Additionally, the second Entra recommendation highlights expiring application and service principal credentials to minimize the risk of downtime. Another new recommendation focuses on removing unused applications to mitigate the potential for hackers to compromise sensitive corporate data. Microsoft has also introduced a new recommendation to identify applications and service principals that have recently utilized Azure AD Graph APIs. Microsoft announced its plans to phase out the Azure AD Graph service in 2020, advising users to transition service principals to Microsoft Graph... . --- ### First Ring Daily: The Future of Windows on ARM - Published: 2024-04-05 - Modified: 2024-04-05 - URL: https://petri.com/first-ring-daily-the-future-of-windows-on-arm/ - Categories: Hardware, Windows, Windows 11 - Tags: First Ring Daily, News, Qualcomm, Windows 11, Windows on ARM - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss what Paul learned from a recent briefing with Qualcomm about the company's Snapdragon X Elite chips, which will power a new wave of ARM-based AI PCs coming later this year. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss what Paul learned from a recent briefing with Qualcomm about the company's Snapdragon X Elite chips, which will power a new wave of ARM-based AI PCs coming later this year. --- ### Microsoft’s Unified Security Operations Platform Delivers Comprehensive End-to-End Protection - Published: 2024-04-05 - Modified: 2024-04-05 - URL: https://petri.com/microsofts-unified-security-operations-platform/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Microsoft has unveiled a unified security operations platform, which integrates tools such as Microsoft Sentinel, Defender XDR, and Copilot for Security into a single solution. This platform offers enhanced visibility, automation capabilities, and deeper insights into security incidents. Microsoft says that early adopters have reported significant benefits, including up to an 80 percent reduction in security incidents. Microsoft has launched its new unified security operations platform in public preview for commercial customers. This platform combines essential security tools like Microsoft Sentinel, Defender XDR, and Copilot for Security, offering organizations a streamlined approach to managing and protecting corporate data. Microsoft's unified security operations platform has been available in limited preview since November 2023. This platform offers a new analyst experience that provides visibility into exposure, assets, incidents, threat intelligence, and security reporting. It provides robust security capabilities to help customers protect their enterprise environments. The integration of Microsoft Sentinel and Defender XDR offers several benefits to organizations. It enables security professionals to access an improved reporting experience, deploy automations more effectively, and gain deeper insights from different data sources. Moreover, Microsoft Defender XDR customers can reduce repetitive processes by running custom security orchestration, automation, and response (SOAR) playbooks on security incidents. Additionally, the unified security operations platform provides customers with a complete view of their attack surface to prevent security breaches. This capability enables them to identify overprivileged access, misconfigurations, software vulnerabilities, and evolving threats more easily. Security teams can also use attack path modeling to prevent unauthorized access... --- ### New AI-Powered Planner App Starts Rolling Out to All Microsoft Teams Users - Published: 2024-04-04 - Modified: 2024-04-04 - URL: https://petri.com/new-planner-app-microsoft-teams/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft is updating the existing Tasks by Planner and To Do app in Microsoft Teams to the new Planner app. The new Planner app in Teams offers premium features such as a Timeline (Gantt) view and team workload tracking. Microsoft plans to add Copilot in Planner to let users create plans, tasks, and goals. Last month, Microsoft announced a public preview of the new Planner experience in Microsoft Teams. The company has started rolling out the new Planner app in Teams to all commercial customers this week. The new Planner experience combines various task management and planning tools, such as Microsoft Planner, Microsoft To Do, and Microsoft Project, into a unified experience within Microsoft Teams. It provides a central location for users to manage all their tasks, plans, projects, and to-do lists across Microsoft 365 applications. The new Planner app also lets users access a list of all assigned tasks and switch between Board, List, and Grid views. “The new Planner allows you to scale from simple work management for individuals to collaborative work management with your team, and all the way to enterprise scale project management, empowering everyone to manage their work in one place and accelerate business outcomes,” Microsoft explained. https://youtu. be/dcCLWfeENo4 Microsoft has added new premium features to the app, which include a Timeline (Gantt) view, dependencies, team workload, custom fields, sprints, and managing goals. To access these premium capabilities, users can click on the diamond icon within the app to start a free 30-day trial... --- ### Prepare or Pay: Microsoft Sets Prices for Windows 10 Extended Security Updates - Published: 2024-04-04 - Modified: 2024-04-04 - URL: https://petri.com/windows-10-extended-security-updates-price/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has disclosed the pricing structure for Extended Security Updates (ESUs) for Windows 10. Businesses have the option to choose ESU licenses priced at $61 per device for the first year, with costs doubling annually thereafter. The Windows 10 ESU program offers organizations a temporary solution to keep their devices protected beyond the end of support in October 2025. Microsoft has unveiled the pricing details for Extended Security Updates (ESUs) as Windows 10 approaches its end of support in October 2025. This Windows 10 ESU program offers organizations and consumers a means to protect their devices if they're not yet prepared to upgrade to Windows 11. Microsoft notes that commercial customers will have different ways to get Windows 10 Extended Security Updates. The first one is the 5-by-5 activation method, which enables businesses to purchase ESU licenses for each Windows 10 device they plan to use after the end of support date next year. Organizations will be required to pay $61 per device for the first year of security updates. The cost will increase to $122 for the second year, and then $244 for the third year. If customers join the ESU program in year three, they will also be charged for the previous two years of security updates. Microsoft has not yet announced the ESU pricing for consumers. “Extended Security Updates are not intended to be a long-term solution but rather a temporary bridge,” Microsoft explained. “You can purchase ESU licenses for Windows 10 devices that you... --- ### How to Use Role-Based Access Control with Windows Admin Center > Windows Admin Center RBAC and how to control access. In this article, I'll explain what role-based access control (RBAC) is and how to configure it in Windows Admin Center. - Published: 2024-04-03 - Modified: 2024-04-03 - URL: https://petri.com/windows-admin-center-rbac/ - Categories: Windows Admin Center, Windows Server - Tags: cloud computing, featured-top-right, Windows Admin Center, Windows Server - Article Type: How To In this article, I'll explain what role-based access control (RBAC) is and how to configure it in Windows Admin Center. Next, I will cover topics such as creating roles, assigning permissions, and adding users and groups. I'll include best practices and tips for managing access to your resources with Windows Admin Center. Windows Admin Center RBAC In Windows Admin Center, Role-Based Access Control (RBAC), works by configuring your managed servers with a PowerShell 'Just Enough Administration' endpoint. The configuration process involves installing PowerShell scripts and using the 'Desired State Configuration' to finish the configuration. This endpoint defines the roles, including what criteria of the system each role is allowed to manage. By default, users need local admin privileges on the servers they wish to manage with WAC. However, you may come across more junior admins or focused IT Pros on your team that you'd rather not give full administrator rights to. You can use RBAC in Windows Admin Center to provide those users with more limited access to the machine. I'll go into greater detail on how this all works very soon. How to Control Access to the Windows Admin Center Gateway Windows Admin Center allows you to manage what users have various access levels to the gateway and the servers managed. There are two roles: Gateway users - these users can connect to Windows Admin Center to manage servers through the gateway. However, they cannot change any access permissions or the authentication type used to authenticate to the gateway. Gateway... --- ### Microsoft Priva Adds New Tools to Bolster Privacy Management - Published: 2024-04-03 - Modified: 2024-04-03 - URL: https://petri.com/microsoft-priva-tools-privacy-management/ - Categories: Security - Tags: Microsoft Priva, News - Article Type: News Key Takeaways: Microsoft Priva has added new capabilities that allow organizations to manage personal data efficiently and ensure compliance with evolving privacy regulations. Microsoft Priva's Privacy Assessments feature automates the management of personal data usage. The Microsoft Priva Tracking Scanning service can automatically monitor web tracking technologies. Microsoft has announced several new automated tools for its Priva platform. The new offerings are designed to help organizations efficiently manage personal data and stay compliant with dynamic privacy regulations. Microsoft Priva is a privacy management solution that launched in 2021. It’s a set of solutions that enable organizations to proactively identify and protect against privacy risks. The security solution detects critical privacy risks, automates risk mitigation, and lets employees make informed data-handling decisions. Microsoft Priva Privacy Assessments Microsoft Priva Privacy Assessments enables customers to automate the management of personal data usage across an organization. The solution makes it easier for administrators to automate monitoring for changes in data processing activities and evaluate privacy risks. Microsoft Priva Tracker Scanning The Microsoft Priva Tracking Scanning service allows organizations to automatically monitor and evaluate tracking technologies such as pixels, cookies, and beacons across all websites. It helps to effectively detect and mitigate potential compliance issues. Microsoft Priva Subject Rights Requests The Priva Subject Rights Requests tool enables organizations to discover and subject rights requests in their on-premises, hybrid, and multi-cloud environments, including Microsoft Azure, Amazon Web Services, and Google Cloud Platform. It’s also possible to create low-code agents to automatically handle personal data requests via... --- ### Hackers Exploit XZ Utils Vulnerability to Infiltrate Linux Systems - Everything You Need to Know - Published: 2024-04-03 - Modified: 2024-04-03 - URL: https://petri.com/xz-utils-vulnerability-linux-systems/ - Categories: Security - Tags: News - Article Type: News Key Takeaways: Microsoft disclosed a critical vulnerability in XZ Utils, a widely used open-source data compression utility on Linux systems. The backdoor could enable hackers to bypass secure shell authentication, potentially leading to unauthorized access and exploitation of infected systems. The vulnerability affects various Linux distributions, including Fedora 41, Kali Linux, and openSUSE variants. Microsoft has recently disclosed a new vulnerability in an open-source data compression utility present in almost all Linux distributions. The backdoor in XZ Utils could enable hackers to bypass secure shell (sshd) authentication and gain unauthorized access to an infected system. What is XZ Utils? XZ is a command-line utility that provides lossless data compression on virtually all Unix-like operating systems, including Linux. It offers critical functionalities required for compressing and decompressing data across various operations. The XZ utility is commonly used to compress large files and directories to save bandwidth or disk space when transferring files over the Internet. What does the XZ Backdoor Util do? Microsoft developer Andres Freund recently discovered the backdoor in XZ Utils while performance issues on some Debian installations. He found that the problem was triggered by updates that had been made to XZ Utils. On March 29, Freund disclosed that someone had been intentionally injecting malicious code into the compression software. According to Freund, the backdoor (tracked as CVE-2024-3094) is present in XZ Utils versions 5. 6. 0 and 5. 6. 1. It affected the upstream XZ repository and associated archived download packages (called "tarballs"). The vulnerability could allow remote hackers to deploy... --- ### Microsoft's Exchange Online 'High Volume Email' Service Expands Sending Limits - Published: 2024-04-02 - Modified: 2024-04-02 - URL: https://petri.com/exchange-online-high-volume-email/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Key Takeaways: Microsoft has introduced High Volume Email (HVE) service in public preview for Microsoft 365 customers. HVE increases the outbound message limit to 100,000 recipients per day and removes previous message rate restrictions. Microsoft plans to add per-account controls for IT admins later this year. Microsoft has announced the public preview of a new High Volume Email (HVE) service for Microsoft 365 customers. The new offering enables commercial users to send large volumes of emails beyond the current limits of Exchange Online. Up until now, Exchange Online allowed users to send emails to a maximum of 10,000 internal recipients per day. Additionally, users were limited to sending a maximum of 30 messages per minute via SMTP from Exchange Online. The new High Volume Email service increases the outbound message limit to 100,000 recipients per day (per tenant). Additionally, Microsoft has removed the previous limitation of 30 messages per minute, giving users more freedom to send emails without encountering any message rate restrictions. “HVE is a new service designed primarily for line of business applications and other high-volume SMTP Auth submissions that enables you to send internal messages beyond the current limits of Exchange Online. Customers using on-premises servers in an Exchange hybrid configuration to send a large volume of internal messages can use this service instead and decommission their on-premises servers,” the Exchange team explained. High Volume Email Mailbox Limits (Image credits: Microsoft) High Volume Email supports SMTP Basic Authentication With High Volume Email, Exchange Online customers can create... --- ### Microsoft Copilot for Security Launches with Flexible Pricing Model - Published: 2024-04-02 - Modified: 2024-04-02 - URL: https://petri.com/microsoft-copilot-security-pricing-model/ - Categories: Security - Tags: Copilot for Security, News - Article Type: News Key Takeaways: Microsoft launches Copilot for Security, an AI-powered tool to aid security professionals in defending against cyberattacks. The tool offers real-time insights, threat summaries, and actionable recommendations, potentially freeing up 40% more time for security teams. Copilot for Security introduces a consumption-based pricing model, allowing businesses to start small and scale up as needed. Microsoft has announced the general availability of its new Copilot for Security solution. The new AI-powered service is designed to assist security professionals in fortifying defenses against cyber threats. Microsoft first announced its Copilot for Security tool back in March 2023. Powered by OpenAI’s GPT-4 and Microsoft’s own security-specific model, Copilot for Security offers real-time insights on security incidents, summaries of security threats, and recommendations to help organizations enhance security practices. Microsoft claims that the tool could help security teams free up 40 percent more time that would be spent on other routine security operations tasks. Additionally, Copilot for Security offers support for vulnerability and patch management. The feature pulls version information and cross-checks it with known issues from threat intelligence data to help security analysts detect vulnerable endpoints. Copilot for Security also includes a pinboard section to enhance collaboration between cybersecurity professionals. Provision SUCs in the Copilot for Security Portal (Image Credits: Microsoft) Starting today, cybersecurity analysts can access Copilot for Security in two ways. It integrates with Microsoft’s existing security products, including Microsoft Entra, Microsoft Intune, Microsoft Sentinel, Microsoft Purview, and Microsoft Defender XDR. The AI-powered security tool is also available as a... --- ### Copilot for Microsoft 365 Gets New Productivity Features and Improvements - Published: 2024-04-01 - Modified: 2024-04-01 - URL: https://petri.com/what-s-new-copilot-for-microsoft-365/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has released updates to improve the integration of Copilot for Microsoft 365 in Outlook, Word, Excel, and PowerPoint. Users can interact with Copilot for Microsoft 365 directly in the new Outlook for Windows and the Outlook web app. Copilot in Loop now provides users with more information when they inquire about a file. Microsoft has recently published a roundup of all the new features and capabilities added to Copilot for Microsoft 365 in March 2024. The company highlighted several improvements such as a new Copilot integration into Outlook and the addition of a Microphone feature in Copilot in Excel. Microsoft has announced that Copilot for Microsoft 365 will be able to create prompts grounded in their work content across chats, meetings, and emails when using the AI assistant in Outlook, Word, PowerPoint, and Excel. When responding to user prompts, Copilot will enhance its understanding by gathering relevant information from Microsoft 365 repositories through Graph requests. Microsoft expects to roll out this feature later this month. Additionally, Microsoft now lets users access Copilot in the Microsoft 365 mobile app to ask questions about enterprise data across chats, meetings, and emails. The Copilot tool lets users quickly catch up on conversations, document updates, and meetings. Users can also ask Copilot to summarize content, explain documents, and translate files. Copilot for Microsoft 365 can be used to create work documents, blogs, presentations, and emails. Enterprise admins can use Microsoft Intune or any third-party tool to deploy the Copilot and Microsoft... --- ### Microsoft to Unbundle Teams from its Office 365 Commercial Plans Globally - Published: 2024-04-01 - Modified: 2024-04-01 - URL: https://petri.com/microsoft-unbundle-teams-office-365-globally/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is discontinuing the bundling of its Microsoft Teams app with the Office productivity suite globally. The change will provide businesses with the option to purchase more affordable Microsoft 365 subscription plans without Teams. This move comes in response to antitrust concerns, particularly a complaint filed by Slack, alleging market dominance abuse by Microsoft through the integration of Teams with its Office suite. Microsoft has decided to stop bundling its Microsoft Teams app with the Office productivity suite globally. This unbundling offers businesses the opportunity to purchase more cost-effective Microsoft 365 subscription plans that do not include Teams. Slack filed an antitrust complaint against Microsoft before the European Commission in July 2020. The company alleged that Microsoft is abusing its market dominance to crush competitors by tying Teams with its Office productivity suite. It allowed Microsoft to force install the app, block its removal, and hide its true cost to enterprise customers. Last year, Microsoft agreed to sell its Microsoft 365/Office 365 commercial plans without Teams in the EU and Switzerland to address concerns from the European Commission. The company said that customers will also be able to buy a standalone version of Microsoft Teams at a price of €5 per month or €60 per year. Microsoft agrees to unbundle Teams from Office globally to address regulator concerns According to a new report from Reuters, Microsoft has decided to start unbundling Teams from its Office suite globally to appease EU regulators. The company will introduce a new version... --- ### Microsoft Intune Boosts Security with Enhanced Policy Targeting and Dell BIOS Management - Published: 2024-03-29 - Modified: 2024-03-29 - URL: https://petri.com/microsoft-intune-update-march-2024/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft Intune has introduced enhanced granular policy targeting capabilities for Windows Mobile Application Management (MAM). Microsoft now allows administrators to manage and configure BIOS settings directly within Microsoft Intune. Microsoft Intune streamlines the process for deploying and configuring Microsoft Defender for Endpoint. Microsoft has unveiled all the new features it introduced in Microsoft Intune during the month of March 2024. The company announced today enhanced granular policy targeting capabilities for Windows Mobile Application Management (MAM). Last year, Microsoft introduced support for app assignment filters for iOS and Android devices. This update allows IT admins to customize Mobile Application Management (MAM) policy deployments according to specific usage scenarios. With the latest release, Microsoft has extended support for the managed app assignment filters to Windows devices. This feature gives administrators greater control over application protection and configuration policies. This capability will also be available for GCC High and DoD customers that use Microsoft Intune. “For example, specific device models can be excluded from application protection policies and application configuration policies, or you can make a policy so that Windows devices have the latest security updates for their installed OS, be it Windows 11 or Windows 10. The rule builder streamlines the filter property definition process and a filter preview lets you see the endpoints that will be affected,” Microsoft explained. Configuring and updating Dell BIOS settings Microsoft has partnered with Dell to introduce a new feature that enables administrators to manage and configure BIOS settings directly within Microsoft Intune. With... --- ### Microsoft Intune Enhances Onboarding Experience for Defender for Endpoint - Published: 2024-03-28 - Modified: 2024-03-28 - URL: https://petri.com/microsoft-intune-onboarding-defender-for-endpoint/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News - Article Type: News Key Takeaways: The latest Microsoft Intune updates facilitate seamless integration with Defender for Endpoint, simplifying the onboarding process for organizations. Administrators gain enhanced capabilities for monitoring and protecting devices against sophisticated threats through centralized management. The consolidated dashboard and reporting features offer valuable insights into device security status, enabling proactive measures against potential vulnerabilities. Microsoft is making some improvements to the way Intune deploys and manages Microsoft Defender for Endpoint on devices. This release enables organizations to use a unified device management service for monitoring and protecting their devices with cloud-based threat detection and response capabilities. “The single-pane of glass for these capabilities will be Intune. This assures streamlined simplification, and any connections required for on-premises managed Windows assets, like servers, only requires a simple attach configuration joining Intune with Microsoft Configuration Manager for Defender for Endpoint management,” the Microsoft Intune team explained. According to Microsoft, IT administrators are now able to access both summary and detailed reports about the deployment status of Microsoft Defender for Endpoint across their organizations. Additionally, the new consolidated dashboard-reporting feature offers valuable insights into device signals running Microsoft Defender for Endpoint workloads, such as firewall status, detected malware, and antivirus status. It’s also possible to access additional dashboarding and reporting through the Defender portal. Additionally, IT admins can easily access quick results on reports and policy enforcement status for all Defender for Endpoint devices along with their current timestamps. The Device Query feature in Intune’s Advanced Analytics also allows users to gain real-time insights... --- ### Microsoft Entra ID Now Supports External to Internal User Account Conversion - Published: 2024-03-27 - Modified: 2024-03-27 - URL: https://petri.com/microsoft-entra-id-convert-external-accounts-internal/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft Entra ID now allows IT administrators to convert external accounts into internal ones seamlessly, facilitating smoother transitions within organizations. This feature should be helpful for enterprises undergoing mergers, reorganizations, or acquisitions. The conversion process can be easily initiated through the Entra ID Portal or Microsoft Graph API. Microsoft has released a new "convert to internal user" feature in preview for its Microsoft Entra ID service. The latest release allows IT administrators to seamlessly convert external accounts into internal ones to ensure a smooth transition without disrupting user access and workflows. Microsoft mentioned that most enterprise customers use a combination of internal and external accounts. Specifically, Internal accounts are accounts that authenticate with the local tenant. Meanwhile, external accounts use other methods to complete the authentication process, including Microsoft account, Google Federation, and Microsoft Entra ID. According to Microsoft, organizations may need to change existing external users into internal users in certain scenarios. This new "convert to internal user" feature could be useful for organizations going through mergers, reorganizations, and acquisitions. Microsoft notes that administrators can perform external user conversion via the Entra ID Portal or Microsoft Graph API. “External user conversion handles the conversion of external users into internal members without the need to delete existing user objects and create new ones. The preservation of the user objects allows users to keep their original account and their access isn’t disrupted. A converted user's account maintains its history of activities intact as their relationship with the host organization... --- ### Microsoft Teams Gets New Discover Feed and Voice Isolation Features - Published: 2024-03-27 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-discover-feed-voice-isolation/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams has introduced a new Discover Feed that allows users to catch up on channel content as well as like, comment, and share posts. Microsoft Teams' chats and meetings now support collaborative notes, new channel organization features, and more notification sounds. Updates for Microsoft Teams Phones include support for click-to-call, shared call history for call delegation, and configurable call routing for external calls. Microsoft has published a detailed roundup of the latest enhancements to its Teams collaboration service during the month of March 2024. The company has launched a unified Microsoft Teams app, allowing users to seamlessly switch between their work and school accounts. First off, Microsoft Teams has introduced a new Discover Feed that allows users to catch up on important topics and content from channels. Users can like, comment, and share posts from the Discover Feed. However, this capability is currently only available in the new Microsoft Teams client. There is also a new voice isolation feature that leverages AI to suppress unwanted background noise during Teams calls and meetings. Microsoft has also released a new update that lets employees use the Copilot AI assistant to compose messages on their behalf in chats and channels. The company plans to roll out this feature in Spring for customers with a Copilot for Microsoft 365 license. Later this year, the Calls app in Teams will provide AI-generated notes and action items from VoIP and PSTN calls as long as transcription services are enabled. This capability would require... --- ### What Is Windows Admin Center? A Quick Overview > What is Windows Admin Center? In this article, Michael Reinders explains Microsoft's modern server management tool, it's capabilities, and why you should use it over legacy tools like MMC and Server Manager. - Published: 2024-03-26 - Modified: 2024-04-03 - URL: https://petri.com/what-is-windows-admin-center/ - Categories: Windows Admin Center, Windows Server - Tags: Windows Admin Center, Windows Server - Article Type: Overview Windows Admin Center (WAC) is the modern evolution of "in-box" management tools, like MMC (Microsoft Management Console) and Server Manager for Windows Server management. WAC provides wizards to guide users through its deployment and deploying Windows Servers and other cluster solutions. Learn more about what Windows Admin Center features and capabilities might be useful to you in this overview. What is Windows Admin Center? IT Pros with decades of experience are more than likely familiar with traditional computer management tools and UI/UXs such as Microsoft Management Console (MMC) and Server Manager. These are considered legacy, relatively insecure, and outdated. At Microsoft's Ignite conference in 2017, I attended the session where they announced Project Honolulu, which was to become the Windows Admin Center. The old style Microsoft Management Console (MMC) - Image Credit (Michael Reinders/Petri) Microsoft engineers and developers set out to build a new modern management solution from the ground up to complement other tools, like System Center, with more modern technology and security, front and center. Windows Admin Center (WAC) is a website for managing local and remote servers, computers, Hyper-V hosts and VMs (including in Azure), and other hyper-converged technologies. How does it work? Windows Admin Center utilizes PowerShell Remoting and Windows Management Instrumentation (WMI) using WinRM (Windows Remote Management). After you install the Gateway on a Windows 10/11 workstation (for smaller environments) or a Windows Server (for larger environments), admins can log in to the website interface, set up new connections to existing objects, then browse,... --- ### How to Use Windows Admin Center - Published: 2024-03-26 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-windows-admin-center/ - Categories: Windows Admin Center, Windows Server - Tags: Windows Admin Center, Windows Server - Article Type: How To In this article, I will demonstrate how to use Windows Admin Center (WAC) to remotely manage your servers. If you haven't already, check out my article on how to download and install Windows Admin Center before starting with the tutorial below. How to Use Windows Admin Center When you launch Windows Admin Center, you'll see something similar to this screen. The Windows Admin Center 'homepage' If you were installing this from scratch, the only difference is that you wouldn't see any connections... yet.   Click the '+ Add' button and you'll see this: Next, click the 'Add' button under Servers. Start typing in the name of the server and WAC should 'find' it for you. Check the 'Add the server name exactly as entered' checkbox if you are OK with how the object will look. Adding a new server to Windows Admin Center In addition to adding servers one at a time, you can also import from a . txt or . csv file, or search your Active Directory. I typed in my server name, it found it, and I clicked Add. The server now shows up on my list of connections. Let's click on it and see what we get. (At the first login per session, it will ask for credentials to gain access to the server). You can also control access to Windows Admin Center using role-based access control (RBAC). Viewing the Overview tool for our newly managed server... --- ### Microsoft Adds New Copilot and AI Features to Teams Meetings and Teams Rooms - Published: 2024-03-26 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-ai-features-teams-meetings-teams-rooms/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has released new AI capabilities for Copilot in Teams to enhance hybrid meetings, promising significant productivity improvements and time savings. The list of new features includes insights from meeting transcripts and chats, intelligent call recaps, and improved meeting experiences in Teams Rooms. Microsoft also announces enhancements for Teams Phones service, including call management features and partnerships with more telecom providers. Microsoft has announced a slew of new AI capabilities coming to Copilot in Teams to make hybrid meetings even better. Microsoft's latest research study indicates that the Copilot AI assistant boosts users' productivity by up to 70 percent and helps to save over 10 hours per month. Copilot update brings automated insights and details summary to Teams meetings For starters, Microsoft is updating Copilot in meetings to provide users with insights and details from the meeting transcript and chat. Users will need to open the AI assistant in the meeting chat to get an overview of what was discussed during the Teams meeting. Moreover, the Copilot in Teams chat compose box will allow users to generate new messages based on the context in the Microsoft Teams chat. Copilot in meetings Teams Premium users getting intelligent VoIP and PSTN call recap feature in Q2 2024 Microsoft also announced that the intelligent call recap feature will become generally available in Microsoft Teams in Q2 2024. The feature leverages AI to offer insights and recaps of VoIP and PSTN calls in Microsoft Teams. However, this capability is only available for... --- ### Microsoft Teams Desktop Client to Improve Chat Experience With Intelligent Message Translation Capabilities - Published: 2024-03-25 - Modified: 2024-03-25 - URL: https://petri.com/microsoft-teams-chats-intelligent-message-translation/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: The Microsoft Teams desktop app is integrating intelligent message translation capabilities, aiming to enhance the chat experience. Users will now receive translation suggestions automatically when they receive messages in different languages. Microsoft is also planning to extend Live Share support to the Chat, Channel, and Collaborative Stageview experiences within Microsoft Teams. Microsoft is set to introduce intelligent message translation capabilities to enhance the chat experience in its Microsoft Teams desktop app. The new feature will allow users to see translation suggestions whenever they receive a message in a different language. Currently, the intelligent message translation capabilities are only available for Microsoft Teams for Android and iOS devices. The feature uses account preferences to notify desktop users when translation would be helpful and personalize chat translation accordingly. “In Microsoft Teams, when you get a message in a different language, you will see translation suggestions to help you understand the message. In settings, you can select which languages you do not want to translate and whether to translate messages automatically,” the company explained in a message on the Microsoft 365 admin center. How to enable intelligent message translation in Microsoft Teams chats Microsoft Teams users will need to click the “Translate” option to translate the message into their preferred language. Moreover, they can select "Never translate (language)" to prevent the app from showing the option to translate that specific language. Users can also click the ellipsis menu (... ) > Translate, and then select “Turn on auto-translation” to automatically... --- ### Microsoft to Drop Support for 1024-bit Windows RSA Keys - Published: 2024-03-25 - Modified: 2024-03-25 - URL: https://petri.com/microsoft-1024-bit-windows-rsa-keys/ - Categories: Security, Windows - Tags: News, Windows - Article Type: News Key Takeaways: Microsoft is discontinuing Windows RSA keys shorter than 2048 bits to promote stronger encryption methods for server authentication. Internet standards and regulatory bodies have already disallowed the use of 1024-bit keys since 2013, advocating for 2048 bits or longer for RSA keys. Microsoft says that organizations relying on legacy software and devices with 1024-bit RSA keys will likely be affected. Microsoft has announced plans to discontinue Windows RSA keys shorter than 2048 bits. The company explains that this step aims to prompt organizations to abandon weaker encryption methods in favor of stronger ones for server authentication. Rivest-Shamir-Adleman (RSA) keys are the cryptographic keys used in the RSA encryption algorithm. RSA involves the use of a public and private key to encrypt data for secure communications over an enterprise network. RSA keys are utilized in Windows for a variety of purposes including server authentication, data encryption, and ensuring the integrity of communications and software updates. Microsoft mentioned that RSA encryption has faced numerous challenges due to recent advancements in quantum computing and other cryptographic techniques. As a result, many organizations are now transitioning towards more secure encryption schemes to minimize the risks associated with RSA vulnerabilities. “Internet standards and regulatory bodies disallowed the use of 1024-bit keys in 2013, recommending specifically that RSA keys should have a key length of 2048 bits or longer, Microsoft explained. “This deprecation focuses on ensuring that all RSA certificates used for TLS server authentication must have key lengths greater than or equal to... --- ### First Ring Daily: Stoic Surface - Published: 2024-03-22 - Modified: 2024-03-22 - URL: https://petri.com/first-ring-daily-stoic-surface/ - Categories: Hardware, Microsoft - Tags: First Ring Daily, News, Surface - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott look back at yesterday's Surface and AI event yesterday from Microsoft and discuss why the company needs to do a better job at convincing organizations that its Copilot assistant is about to change how we work forever. In this episode of First Ring Daily, Brad Sams and Paul Thurrott look back at yesterday's Surface and AI event yesterday from Microsoft and discuss why the company needs to do a better job at convincing organizations that its Copilot assistant is about to change how we work forever. --- ### Latest Windows Server Updates Cause LSASS Memory Leaks and Reboots on Domain Controllers - Published: 2024-03-22 - Modified: 2024-03-22 - URL: https://petri.com/windows-server-lsass-memory-leaks-domain-controllers/ - Categories: Windows Server - Tags: News, Windows Server - Article Type: News Key Takeaways: Microsoft has acknowledged a new LSASS memory leak bug affecting Windows Server machines that could cause Domain Controllers (DCs) to crash. The problem affects Windows Server versions 2012 R2, 2016, 2019, and 2022. Microsoft engineers are working on a fix that will arrive as an update in an upcoming release. Microsoft has confirmed a new issue that is currently plaguing Windows Server machines. The company detailed on the Windows Health Dashboard that the latest Patch Tuesday Update may cause Domain Controllers (DCs) to stop working or automatically restart. Specifically, Microsoft has warned that customers installing the latest Windows Server updates could experience a memory leak vulnerability with the Local Security Authority Subsystem Service (LSASS). The bug could cause LSASS to crash or trigger unexpected reboots of the Domain Controllers. The LSASS memory leak issue affects Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, and Windows Server 2022. “Following installation of the March 2024 security update, released March 12, 2024 (KB5035857), Local Security Authority Subsystem Service (LSASS) may experience a memory leak on domain controllers (DCs). This is observed when on-premises and cloud-based Active Directory Domain Controllers service Kerberos authentication requests,” Microsoft explained. What is Local Security Authority Subsystem Service (LSASS)? The Local Security Authority Subsystem Service (LSASS) is a Windows process that is responsible for enforcing the security policy on the operating system. It manages authentication, authorization, credential management, security policy enforcement, security token generation, and other security-related functions. LSASS helps to prevent unauthorized access and... --- ### New Surface Pro 10 and Surface Laptop 6 Get Intel AI NPU and 53% Performance Boost - Published: 2024-03-21 - Modified: 2024-03-21 - URL: https://petri.com/microsoft-surface-pro-10-surface-laptop-6-businesses/ - Categories: Hardware - Tags: News, Surface Laptop 6, Surface Pro 6 - Article Type: News Key Takeaways: Microsoft has officially announced the Surface Pro 10 for Business and Surface Laptop 6 for Business. These AI-powered PCs boast enhanced performance, improved battery life, and innovative features like an ultrawide front-facing camera and anti-reflective display technology. Microsoft has also announced a new Surface IT Toolkit app for commercial customers. Microsoft unveiled two new Surface devices during its business-focused digital event today: The Surface Pro 10 for Business and the Surface Laptop 6 for Business. The company has also announced a new Surface IT Toolkit, which offers a unified hub for configuration and technician tools. It has been two years since Microsoft released the Surface Pro 9 and Surface Laptop 5, and it is time for an upgrade. These are exclusive Surface AI PCs designed for businesses, equipped with a new Copilot key integrated into the keyboards. The latest models are powered by the latest Intel Core Ultra processors and have powerful NPUs (Neural Processing Units) to provide significantly improved performance for AI-related tasks. The Surface Pro 10 for Business keeps the same chassis as its predecessor, but it includes a brighter OLED display with an anti-reflective coating. It also comes with a built-in NFC reader, up to 64 GB of RAM, and up to 1 TB of storage. Microsoft promises up to 19 hours of battery life and up to 53 percent faster performance than the Surface Pro 9 models. The company plans to launch Surface Pro 10 with support for 5G connectivity later this year. Surface... --- ### Copilot in Windows Adds New Copilot for Microsoft 365 Integration, Accessibility Features > Microsoft highlights efforts to simplify user access to the new Copilot AI assistant on Windows devices. - Published: 2024-03-21 - Modified: 2024-03-21 - URL: https://petri.com/windows-copilot-microsoft-365-integration/ - Categories: Microsoft Copilot, Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft has announced updates to streamline access to the Copilot AI assistant on Windows 11 PCs. Copilot in Windows is getting new Copilot for Microsoft 365 capabilities, allowing users to seek help with tasks like writing emails and summarizing meetings. Copilot in Windows is getting new accessibility features, such as Live captions and text size adjustment. Microsoft is hosting its Surface and Windows AI event today, where the company has announced several updates coming to Windows 11 and Windows 365. The company also highlighted its efforts to simplify user access to the new Copilot AI assistant on Windows devices. Copilot in Windows allows users to ask questions in natural language commands, troubleshoot issues, and change Windows settings. To access the tool, users can simply click on the Copilot icon located on the Windows taskbar. Users can also press the dedicated Copilot key to launch the tool on the new Surface for business devices. Microsoft explains that pressing the Copilot key will open Windows Search when Copilot for Windows is not enabled on the device. Currently, Copilot in Windows is available for customers in select markets, and the company plans to expand its availability to other regions over time. “Copilot in Windows is an AI orchestrator, taking on tasks across apps, files, settings, data, and the web, so people can get better answers faster, grow their skills, and let Copilot do more of the busy work. This enables employees to focus on strategic work and get things done faster,”... --- ### Windows 365 Gets New AI Features and Advanced Security Protections - Published: 2024-03-21 - Modified: 2024-03-21 - URL: https://petri.com/windows-365-ai-features-security-protections/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Key Takeaways: Microsoft has released a range of security enhancements for Windows 365, including single sign-on (SSO) and passwordless authentication support. Windows 365 now offers GPU support in public preview, catering to resource-intensive tasks like image rendering and 3D modeling. The new Windows 365 AI Recommender helps to find the optimal configuration and licensing for Cloud PCs based on utilization and performance needs. Microsoft is holding its “Advancing the New Era of Work” digital event and the company made some big announcements for IT Pros. The company has unveiled a slew of security features and other improvements for Windows 365 customers to help organizations in advancing this new era of work. Microsoft has announced the general availability of Single sign-on (SSO) and passwordless authentication support for Windows 365 and Azure Virtual Desktop (AVD). With the SSO feature, customers can leverage Microsoft Entra authentication methods for seamless login to Windows 365 Cloud PCs and Azure Virtual Desktop machines. Windows 365 is also getting advanced security features, including tamper protection, watermarking, and screen capture protection. The new capabilities are designed to help organizations thwart unauthorized access to critical corporate data. Windows 365 supports watermarking protection (Image credits: Microsoft) Microsoft has announced that Windows 365 GPU support is currently available in public preview for customers using Cloud PCs for resource-intensive tasks. This is one of the top-requested features that is intended for image and video rendering, graphic design, 3D modeling, and other GPU-dependent workloads. Windows 365 AI Cloud PC resizing Microsoft is also... --- ### How to Enable Microsoft Copilot Effectively: A Quick Guide > In this article, I’ll outline everything you need to know to enable Microsoft Copilot in Microsoft 365. - Published: 2024-03-21 - Modified: 2024-06-12 - URL: https://petri.com/enable-microsoft-copilot/ - Categories: Microsoft 365, Microsoft Copilot - Tags: copilot, Copilot for Microsoft 365, Copilot in Windows, featured-top-right, Microsoft 365, Productivity - Article Type: Overview The buzz around Microsoft Copilot has been well-documented. Since its inception, this intelligent AI assistant tool has offered users access to a wealth of information and resources to help them work more efficiently and effectively. It’s certainly part and parcel of Microsoft’s continued excellence in responsible AI integration across its estate.  In this article, I’ll outline everything you need to know to enable Microsoft Copilot in Microsoft 365. Copilot was developed using the latest version of the OpenAI Large Language Model (LLM) technology - the same model that underpins generative AI giant ChatGPT - to intuitively make tailored suggestions for users in real time. It allows users to bring the best parts of generative AI into their everyday workflows and processes, and, with most versions of Copilot now generally available, another side of generative AI’s augmentation is ready to be discovered. As an emerging technology, however, effectively enabling Copilot involves addressing a handful of concerns and considerations around responsible AI use, supervision, privacy, and security. Users new to Copilot may need a few tips on how to enable Copilot effectively for cross-departmental efficiency across teams. This short guide covers the essential steps you need to take to enable Copilot across an incumbent Microsoft ecosystem. Getting access to Copilot Copilot is generally available for Windows, Microsoft 365 apps, and Dynamics 365, along with an impending Copilot solution for Viva. Statistically, according to recent survey data, 70% of Copilot users felt more productive, 68% of which have said it had directly improved... --- ### Microsoft Unveils New Billing Experience for Commercial Customers - Published: 2024-03-20 - Modified: 2024-03-20 - URL: https://petri.com/microsoft-billing-experience/ - Categories: Microsoft 365 - Tags: News, Windows 365 - Article Type: News Key Takeaways: Microsoft has released updates to improve the billing experience for businesses, including billing accounts, profiles, and a revised invoice format. These changes provide organizations with greater control over their payments and subscriptions. The new billing updates allow organizations to choose from multiple billing frequencies, including monthly, annually, or once every three years. Microsoft has recently released a slew of updates aimed at enhancing the billing experience for its commercial customers. These updates include billing accounts and profiles, an updated invoice format, flexible billing frequencies, and a new cancellation policy. The Microsoft Customer Agreement (MCA) is a legal contract between Microsoft and its customers. It’s a digital agreement that is automatically updated when users purchase new products and services, including Microsoft Azure, Office 365, and Dynamics 365. The MCA outlines the terms and conditions governing the use of Microsoft's products and services. It also deals with issues such as payment, privacy, and security concerns. First off, Microsoft says that organizations now have a billing account, which serves as a central hub for managing account settings, payment methods, invoices, and purchases. The billing accounts come with specific roles that allow users to perform various tasks such as assigning billing account permissions, viewing/editing accounts, and signing agreements. Additionally, each account will be associated with a billing profile containing information about the payment method and invoices. The billing profile roles enable users to handle bill payments, manage or view the billing profile group, and utilize the billing profile for making purchases. Other... --- ### Microsoft Teams Gets New Features to Boost App Adoption and Engagement - Published: 2024-03-19 - Modified: 2024-03-19 - URL: https://petri.com/microsoft-teams-app-adoption-engagement/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams now offers more than 2,000 downloadable applications in its app store. Microsoft has improved app management and usage with new features like real-time enforcement of policies and settings and simplified app installation processes. Microsoft has introduced tools to help Teams administrators better manage user app requests. Microsoft has announced several updates to enhance the adoption and engagement of apps in Microsoft Teams. The company highlighted that the Teams app store now boasts over 2,000 downloadable applications. Microsoft has made some improvements to the way organizations can view and handle requests for apps. Specifically, the company has added a new "User Requests" tab to the App Details page in the Teams Admin Center. This tab provides IT administrators with more information about app requests, including the requester's name, job title, email address, and the date the request was made. Users will also receive notifications about the status of their request, whether it has been approved or denied. App request flow improvements Currently, administrative actions like permitting, blocking, and pinning of apps could take up to 48 hours to be completely enforced on the client side. Microsoft is introducing real-time enforcement of policies and settings to improve the app availability and management experience. Additionally, Microsoft Teams admins can now manage resource-specific consent permissions for apps on the Entra ID admin portal. Microsoft has released a new feature for the Teams app store that enables users to rate and review apps. This feature will help users to discover new... --- ### What's New in SharePoint Server Subscription Edition Version 24H1 - Published: 2024-03-18 - Modified: 2024-03-18 - URL: https://petri.com/sharepoint-server-subscription-edition-24-h1/ - Categories: SharePoint Subscription Edition - Tags: News, SharePoint Server Subscription Edition - Article Type: News Key Takeaways: SharePoint Server Subscription Edition version 24H1 brings the ability for organizations to tailor their search experience. The OpenID Connect (OIDC) certificate management experience lets IT admins gain greater control over authentication token security. Microsoft plans to end support for SharePoint Server 2016 and 2019 in June 2026. Microsoft has announced the release of SharePoint Server Subscription Edition (SE) version 24H1, marking a significant step forward in collaborative tools for modern organizations. This update introduces several enhancements aimed at bolstering security, simplifying management, and enhancing user experience. Microsoft launched SharePoint Server Subscription Edition in preview for on-premises customers in July 2021. It offers several new features to enhance security posture, simplify management, and streamline updates compared to the earlier versions of SharePoint Server. Microsoft releases feature updates for SharePoint Server Subscription Edition twice per year. Microsoft introduced support for OpenID Connect (OIDC) authentication in the original release of SharePoint Server SE. The modern authentication protocol allows commercial customers to integrate applications and devices with their existing identity and authentication management solutions. With SharePoint Server SE version 24H1, organizations can manage the certificate life cycle of the OIDC nonce cookie certificate. This certificate is important for maintaining the security of OIDC authentication tokens. “SharePoint farm administrators can use the SharePoint certificate management feature to manage the full lifecycle of the OIDC nonce cookie certificate, including deployment of the certificate to all servers in the farm and automatic configuration of the necessary permissions. A new SharePoint Health Analyzer health rule has... --- ### Microsoft Office LTSC 2024 to Launch in Preview Next Month - Published: 2024-03-18 - Modified: 2024-06-03 - URL: https://petri.com/microsoft-office-ltsc-2024/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is set to roll out Office 2024 LTSC for commercial users on Windows and macOS next month. Office LTSC 2024 will lack cloud-based features found in Microsoft 365 apps, including Microsoft Copilot. Microsoft also plans to release Office 2024 for consumers later this year. Microsoft has recently announced that Office 2024 LTSC will be available for commercial customers on Windows and macOS in April. The company has also detailed its plans to launch Office 2024 for consumers later this year. The Long-Term Servicing Channel (LTSC) of Microsoft Office is tailored for organizations that prefer a consistent release schedule with fewer updates. Microsoft offers long-term support for LTSC releases, which includes security patches, bug fixes, and other critical updates. Microsoft highlighted that Office LTSC 2024 will come with several new features and improvements compared to the previous LTSC version. However, it's important to note that Office LTSC 2024 doesn't support the cloud-based features of Microsoft 365 apps. This means users won't be able to access Microsoft Copilot, cloud-based collaboration capabilities, as well as related security and compliance functionalities. “New features for Office LTSC 2024 include new meeting creation options and search enhancements in Outlook, dozens of new Excel features and functions including Dynamic Charts and Arrays; and improved performance, security, and accessibility. Office LTSC 2024 will not ship with Microsoft Publisher, which is being retired, or with the Microsoft Teams app, which is available to download separately,” Microsoft explained. Microsoft to raise the price of Office LTSC 2024... --- ### Microsoft Azure Joins AWS and Google in Scrapping Egress Fees - Published: 2024-03-15 - Modified: 2024-03-15 - URL: https://petri.com/microsoft-azure-egress-fees/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Key Takeaways: Microsoft has announced the removal of egress fees for business customers transferring data out of its Azure cloud infrastructure. Customers must initiate the transfer process by creating a support request and providing the necessary information for migration. The upcoming European Data Act is driving cloud providers like Microsoft, AWS, and Google to adjust their policies. Microsoft has announced that business customers will no longer need to pay an egress fee to remove data from its Azure cloud infrastructure. This decision aligns with similar actions taken by competitors, including Amazon Web Services (AWS) and Google Cloud. Google announced in January that it will no longer charge businesses for transferring their data to another cloud provider or an on-premises data center. However, the fee waiver will only apply to customers who cancel their accounts once the migration is complete. Last week, AWS also announced similar plans to waive egress fees, but unlike Google, it does not require account cancellation. Previously, Microsoft allowed customers to transfer up to 100GB of data out of Azure environments monthly at no additional cost. This has changed, as customers can now migrate an unlimited amount of data and move to another cloud provider. “We support customer choice, including the choice to migrate your data away from Azure,” Microsoft explained. “Azure now offers free egress for customers leaving Azure when taking their data out of the Azure infrastructure via the internet to switch to another cloud provider or an on-premises data center. ” Microsoft streamlines data migration... --- ### First Ring Daily: Another New Teams App - Published: 2024-03-15 - Modified: 2024-03-15 - URL: https://petri.com/first-ring-daily-another-new-teams-app/ - Categories: Windows, Windows 11 - Tags: First Ring Daily, Microsoft Teams, News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's unified Teams client that just entered public testing with Windows Insiders, and the consequences of Microsoft not completely killing the Windows 10 taskbar in Windows 11. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's unified Teams client that just entered public testing with Windows Insiders, and the consequences of Microsoft not completely killing the Windows 10 taskbar in Windows 11. --- ### Microsoft Brings Copilot for Microsoft 365 to Businesses of All Sizes - Published: 2024-03-15 - Modified: 2024-03-15 - URL: https://petri.com/copilot-for-microsoft-365-businesses/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is extending the availability of Copilot for Microsoft 365 to a wider range of commercial customers. Copilot Pro subscribers can now use the AI assistant within the free Microsoft 365 web apps. Microsoft is offering a one-month free trial of Copilot Pro via the Copilot app on Android and iOS. Microsoft is expanding the availability of its Copilot for Microsoft 365 to more commercial customers. Additionally, Copilot Pro subscribers can now access the AI-powered assistant within Microsoft 365 web apps. Copilot for Microsoft 365 became generally available for commercial customers in November 2023. The AI assistant allows users to ask work-related questions, draft emails, catch up on Teams meetings, generate PowerPoint presentations, and more. It offers enterprise-grade security, privacy, and compliance to ensure that all data processing happens within Microsoft 365. Copilot for Microsoft 365 is priced at $30 per user per month on top of a Microsoft 365 commercial subscription. Microsoft has announced that its Copilot for Microsoft 365 is now available for organizations of all sizes. It’s available in the Copilot web app, Microsoft Teams, Microsoft Edge, and other Microsoft 365 apps. “Customers that have Microsoft 365 F3 and F1, Office 365 E1, Business Basic, and more will be eligible to purchase Copilot for Microsoft 365 in the coming weeks. That’s in addition to previously announced availability on Microsoft 365 E3 and E5, Office 365 E3 and E5, Business Standard, and Business Premium plans,” said Divya Kumar, General Manager of Search and AI Marketing. Microsoft’s... --- ### Microsoft Loop to Get B2B Guest Sharing Support for Enhanced Collaboration - Published: 2024-03-14 - Modified: 2024-03-14 - URL: https://petri.com/microsoft-loop-guest-sharing/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is bringing B2B guest sharing to its Loop app, enabling users to collaborate with individuals outside their organization. This feature allows sharing of Loop workspaces, pages, and components with external partners. IT admins will be able to enable guest sharing by configuring organization-level external sharing settings in the SharePoint admin center. Microsoft is set to add support for business-to-business (B2B) guest sharing to its new Loop app. The new feature will allow users to share Loop workspaces, pages, and components with people outside their organization. Microsoft Loop is a powerful collaboration and productivity tool designed to enhance teamwork. It combines workspaces, pages, and components to help users work together and manage projects. The Loop app allows users to effortlessly create meeting notes, generate documentation, track issues, and brainstorm ideas. “With this change, if allowed by administrator policy, users within your organization will be able to share Loop workspaces, pages, and components with people outside of your tenant via B2B guest sharing. Pages and components can be shared outside your tenant via Specific People share links. Guest users cannot create Loop workspaces,” the company explained on the Microsoft 365 admin center. How to enable guest sharing in Microsoft Loop To share Loop workspaces, pages, and components with guest users, IT admins will need to follow the steps mentioned below: Login to the SharePoint admin center. Configure the organization-level external sharing settings for SharePoint to allow content sharing with new and existing guest users. Finally, enable the B2B invitation... --- ### Microsoft Starts Testing Unified Teams Client for Personal and Work Accounts - Published: 2024-03-14 - Modified: 2024-03-14 - URL: https://petri.com/windows-11-unified-microsoft-teams-client/ - Categories: Microsoft 365 - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft is developing a unified version of Microsoft Teams for both personal and work or school accounts. The new Teams experience is currently available for Windows Insiders in the Canary and Dev channels. Microsoft is also bringing other improvements such as updated notifications and easier access to meetings. Last month, Microsoft announced its plans to roll out a unified version of Microsoft Teams, catering to both personal and work or school accounts. The company has started testing the new Teams client with Windows Insiders in the Canary and Dev channels. Microsoft has long offered two separate Teams desktop apps for Windows users. There is a free version of Teams that comes pre-installed on Windows 11 and is designed for personal Microsoft accounts. The other is a separate application that supports work or school accounts. Naturally, customers who use both personal and work accounts experience confusion. It's one of the reasons why a unified Teams client has been a top requested feature from users, who will no longer need to switch between separate applications. Now, Microsoft has launched an updated version of its Teams app that enables users to switch between different accounts by selecting the profile picture located at the top-right corner. The new version of Teams currently lets Windows Insiders use the app with both personal and work accounts, featuring separate icons on the taskbar. “We received consistent feedback from personal and work users: you prefer a single Teams app that allows you to easily access and... --- ### Active Directory Backup vs Replication (And Why You Need to Be Clear on the Difference Now) > Learn how the backup vs replication argument relates to Active Directory (AD) and protecting it. Michael Reinders outlines why you should understand the differences when dealing with Active Directory. - Published: 2024-03-13 - Modified: 2024-09-04 - URL: https://petri.com/backup-vs-replication/ - Categories: Active Directory (AD), Backup & Storage - Tags: Active Directory, Backup, Disaster Recovery, featured-top-left - Article Type: Overview Backup and replication are common data protection concepts, but they serve different purposes. Learn more about their differences and how they can benefit your data management strategy, especially how the backup vs replication argument relates to Active Directory (AD) and protecting it. What are backup and replication? Although backup and replication are both methods of protecting data and preventing data loss, there are some important differences. Everyone wants to protect their data in case of an unforeseen event or downtime. This data backup strategy forms the basis of what's called Disaster Recovery (DR). Backup and replication are both used to make copies of your data in an alternate location on alternate storage vs your original location. Choosing what to back up also requires design. Do you include your desktops, your production servers, virtual machines (VMs)? You must determine what should be considered a critical application, if you need to set up continuous data protection, and how often to schedule backups. I'll cover some of these in more detail below. Active Directory backup vs replication How do backup and replication, and other protection strategies, apply to Active Directory (AD). There are backup and replication options available to protect AD. backup lets you restore Active Directory, or an object in the AD database, to a point in time. replication provides high availability for your domain controllers. If one DC stops responding, there should always be another on hand to process the request. Backup Windows Server Backup, a built-in free backup tool... --- ### Microsoft Copilot for Security to Launch on April 1 with New Capabilities - Published: 2024-03-13 - Modified: 2024-03-13 - URL: https://petri.com/microsoft-copilot-for-security-launch/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Microsoft's Copilot for Security solution is transitioning from preview to general availability for commercial customers on April 1st. Microsoft has added several new features such as customizable prompts, multi-language support, and integrations with external attack surface management tools. The introduction of a pay-as-you-go licensing model offers flexibility for organizations to scale usage and costs according to their specific needs and budgets. Microsoft announced this morning some important updates for its Copilot for Security solution. The new AI assistant that launched in preview last year will become generally available for commercial customers starting on April 1. Microsoft Copilot for Security is a new AI-powered service that can assist organizations in improving their security posture. Security professionals can use natural language commands to get a summary of vulnerabilities, URLs, or code snippets for more comprehensive analysis. It's also possible to request incident and alert information from other security products. “Security and IT professionals can see threats comprehensively, respond in a fraction of the time, reduce alert fatigue, and grow their security skillset. The most consistent comment we get from early users of Copilot for Security is ‘Wow! ’ and we agree. We look forward to delivering more Copilot ‘wow’ in the months to come,” said Vasu Jakkal, CVP for Security. Image credits: Microsoft (Incident investigation) Copilot for Security to add support for custom prompts Microsoft has introduced a range of new features for its Copilot for Security solution. Among the new capabilities is the ability for security professionals to create and... --- ### March 2024 Patch Tuesday Updates Fix Critical Hyper-V Vulnerabilities - Published: 2024-03-13 - Modified: 2024-03-13 - URL: https://petri.com/march-2024-patch-tuesday-updates/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft's March 2024 Patch Tuesday updates for Windows 11 and Windows 10 addressed two critical Hyper-V vulnerabilities. Microsoft has also fixed a remote code execution vulnerability in Microsoft Exchange. Microsoft introduced quality and experience updates, such as support for USB 80Gbps and improved cellular to Wi-Fi switching reliability. Microsoft released yesterday the March 2024 Patch Tuesday updates for Windows 11 and Windows 10 devices. The latest update includes fixes for two critical vulnerabilities in the Windows Hyper-V virtualization technology. This month’s Patch Tuesday updates address 60 security flaws in Windows and other components. There are 18 remote code execution (RCE) vulnerabilities and several privilege escalation flaws that target Windows PCs. 60 vulnerabilities fixed in the March 2024 Patch Tuesday updates The most critical vulnerabilities fixed in the March 2024 Patch Tuesday updates are listed below: CVE-2024-21407: The remote-code execution vulnerability could allow hackers to execute arbitrary code on the compromised virtual machines hosted on the Hyper-V server. A successful attack could compromise the availability, integrity, and confidentiality of the system. CVE-2024-21408: The denial-of-service vulnerability could let hackers crash the Hyper-V service. Microsoft did not provide additional details about the nature of the flaw, but exploitation only requires basic privileges to disrupt the system. CVE-2024-21390: This is an elevation of privilege flaw in the Microsoft Authenticator app with a CVSS score of 7. 1. It could enable hackers to gain unauthorized access to multi-factor authentication (MFA) codes. The threat actors could also steal data from sensitive accounts and redirect users... --- ### Microsoft Commits to Supporting Classic Outlook for Windows Client Until 2029 - Published: 2024-03-12 - Modified: 2024-03-12 - URL: https://petri.com/microsoft-classic-outlook-for-windows-2029/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is giving businesses a long runway to move to the new Outlook for Windows client, with support for the classic version lasting until at least 2029. The migration will happen gradually, allowing users to switch at their own pace and test the new features before being automatically transitioned. Microsoft plans to add features like drag-and-drop and PST file support in the coming months. Microsoft has recently shared more details about its plans for moving commercial customers to the new Outlook for Windows client. The company plans to support the classic version of the Outlook app until at least 2029. Microsoft plans to deploy the new Outlook for Windows client in three phases. Currently, the app is in the opt-in stage, where users can switch to the new Outlook for Windows experience via a toggle button. The new Outlook will become generally available for everyone during this phase. The new Outlook for Windows will reach the "opt-out" stage, where users will be transitioned to the new experience automatically. However, users will still be able to switch back to classic Outlook if needed. Microsoft plans to notify commercial customers 12 months in advance before formally moving to the next stage. New Outlook for Windows isn't quite ready for everyone In the final "cutover" stage, the new Outlook client will be deployed and users will no longer be able to switch back to classic Outlook. However, Microsoft will continue to support existing installations of classic Outlook for Windows through perpetual... --- ### SQL Server Essentials: What Is a Relational Database? - Published: 2024-03-12 - Modified: 2024-03-12 - URL: https://petri.com/what-is-a-relational-database/ - Categories: SQL Server - Tags: databases, featured-top-left, SQL Server - Article Type: Overview SQL Server is a relational database. But what is a relational database exactly? Mike Otey, our resident SQL Server expert, explains in this article. What is a relational database? A relational database is a type of data storage mechanism that organizes data into tables where each table consists of rows and columns. It is typically used as backend data storage for programs and services. The relational database model The relational database model was initially defined by E. F Codd at IBM in 1970. The relational model uses structured data in multiple tables that are related to each other through common data elements in the table columns. Relational database schema A predefined schema defines the structure of the data and the relationships between different database entities. Tables have two different kinds of keys: primary and foreign: Primary keyForeign keyContains related data and are typically used for efficient data retrievalDefines relationships between different tablesTable 1 - Relational database primary key vs foreign key The image below shows a table for products, one for product reviews, and how a foreign key is used to pass product data into the reviews table. What is a relational database? Table design in a relational database model (Image Credit: Microsoft) What is Structured Query Language (SQL)? Relational databases use SQL (Structured Query Language) to work with data in the relational data model. SQL is the standard programming language for interacting with all relational database management systems. There are two types of SQL statements: DDL (Data Definition Language)... --- ### Russian State-Sponsored Hackers Stole Microsoft Source Code - Published: 2024-03-11 - Modified: 2024-03-11 - URL: https://petri.com/russian-hackers-microsoft-source-code/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Russian state-sponsored hackers, identified as Midnight Blizzard, breached Microsoft's corporate email servers earlier this year, raising concerns about cybersecurity vulnerabilities. The hackers have now escalated their attack by compromising Microsoft's source code and other internal systems, potentially accessing sensitive information. Microsoft urges customers to enhance security measures, including enabling multifactor authentication, in response to the ongoing threat posed by the hackers. Earlier this year, Microsoft disclosed a breach in its corporate email servers by Russian state-sponsored hackers. Now, the company revealed that the same hackers, known as Midnight Blizzard, have infiltrated Microsoft’s source code and other internal systems. In January, Microsoft unveiled that Midnight Blizzard had successfully gained unauthorized access to the email accounts of some of its senior leadership team members in late November 2023. The hackers used password spray attacks to target Microsoft's non-production test accounts. The goal of the attack was to obtain information about what Microsoft knew regarding the hacking group. In a recent blog post, Microsoft detailed that the hacking group has used stolen data from compromised emails to access some of its source code repositories. The hackers have also increased their brute force attacks by ten times since the initial attacks. This technique, known as password spraying, involves attempting common passwords across multiple accounts to gain unauthorized access. However, Microsoft assured that the attack may not have impacted its services to customers. "It is apparent that Midnight Blizzard is attempting to use secrets of different types it has found. Some of these... --- ### First Ring Daily: Goodbye Windows Subsystem for Android - Published: 2024-03-08 - Modified: 2024-03-08 - URL: https://petri.com/goodbye-windows-subsystem-for-android/ - Categories: Windows, Windows 11 - Tags: News, Windows 11, Windows Subsystem for Android - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to drop support for the Windows Subsystem for Android and the Amazon App Store on Windows 11 in March 2025. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's decision to drop support for the Windows Subsystem for Android and the Amazon App Store on Windows 11 in March 2025. --- ### New Restricted SharePoint Search Feature Enhances Data Access Controls in Copilot for Microsoft 365 - Published: 2024-03-08 - Modified: 2024-03-08 - URL: https://petri.com/restricted-sharepoint-search-copilot-for-microsoft-365/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft will soon introduce Restricted SharePoint Search support for Copilot in Microsoft 365, allowing organizations to control access to SharePoint sites. The new feature offers enhanced security by allowing IT administrators to protect sensitive information within their organization. Microsoft plans to roll out Restricted SharePoint Search to Copilot for Microsoft 365 subscribers next month. Microsoft has announced a new Restricted SharePoint Search feature for Copilot for Microsoft 365 customers. The new setting will allow administrators to control the SharePoint sites accessible to Copilot users within their organization. Microsoft has acknowledged that some organizations may have sensitive or confidential information stored in their SharePoint sites that they don’t want to appear in Copilot experiences. For instance, the legal department may have a SharePoint site that contains sensitive documents that should only be accessed by authorized users. With Restricted SharePoint Search, IT administrators will be able to exclude specific sites from appearing in the search results and Copilot suggestions. They will be able to choose up to 100 SharePoint Online sites that Copilot users will be allowed to access. It should help to ensure that only relevant and appropriate information is available to end users. “Restricted SharePoint Search allows you to disable organization-wide search, and to restrict both Enterprise Search and Copilot experiences to a curated set of SharePoint sites of your choice. Additionally, whether you have enabled Enterprise Search or Restricted SharePoint Search, users in your organization will still be able to interact with files and content they own... --- ### Microsoft Launches Windows 365 Customer Lockbox for Enhanced Data Access Control - Published: 2024-03-07 - Modified: 2024-03-07 - URL: https://petri.com/windows-365-customer-lockbox/ - Categories: Windows 365 - Tags: featured-top-right, News, Windows 365 - Article Type: News Key Takeaways: Windows 365 Customer Lockbox is now available for commercial customers, offering enhanced control over user content access during support interactions. This feature allows organizations to manage data access requests from Microsoft support engineers, ensuring confidentiality and security. IT administrators can enable Customer Lockbox controls in the Microsoft 365 admin center to regulate data access approval processes. Microsoft has launched Windows 365 Customer Lockbox for its commercial customers. This feature provides organizations with tools to control access to user content, especially when Microsoft support engineers need to resolve support issues. Microsoft support engineers usually rely on telemetry and debugging tools to troubleshoot problems with their services. However, there may be times when they require access to a user's content, like a Word document or a SharePoint Online document, to accurately identify the root cause of the problem. The Customer Lockbox feature requires a Microsoft engineer to request access to perform a specific operation in order to resolve issues with Windows 365 Cloud PCs. It allows IT administrators to approve or reject data access requests for their organization. Customer Lockbox currently supports various Microsoft 365 services, including SharePoint Online, Exchange Online, Microsoft Teams, Windows 365, and OneDrive for Business. “After you approve a Customer Lockbox request, the Microsoft engineer granted these necessary privileges to access customer content by using pre-approved cmdlets. Actions taken by Microsoft engineers in response to Customer Lockbox requests are logged and accessible in the audit log in the Security & Compliance Center,” Microsoft explained. The Microsoft... --- ### How Microsoft's Secure Future Initiative Leverages AI to Transform Software Development - Published: 2024-03-06 - Modified: 2024-03-06 - URL: https://petri.com/microsoft-secure-future-initiative-updates/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Microsoft's Secure Future Initiative (SFI) aims to bolster cybersecurity capabilities and protect customers from emerging threats. Microsoft is embracing "Continuous SDL," a new software development approach that integrates security measures throughout the development, testing, deployment, and operation phases. Microsoft is leveraging tools like CodeQL for semantic code analysis to identify and address security risks. Last November, Microsoft introduced its Secure Future Initiative (SFI) to deal with cybersecurity threats. The company announced today the launch of a regular series to track the milestones and progress of the SFI, demonstrating a commitment to transparency and resilience. Microsoft Secure Future Initiative is a comprehensive effort to bolster security capabilities and protect customers from emerging threats. The company-wide initiative focuses on three areas: AI-based cyber defenses, advances in fundamental software engineering, and advocacy for strong application of international norms to protect civilians from cyber threats. In a blog post today, Microsoft detailed that it has decided to move towards a new software development approach called “Continuous SDL. ” This method will continuously integrate the latest security measures as it develops, tests, deploys, and operates its systems and services. As a part of its Continuous SDL effort, Microsoft will use the CodeQL semantic code analysis engine to check code across 100 percent of commercial products. The CodeQL tool is designed to identify security risks and vulnerabilities within the source code. Microsoft has started using CodeQL to cover 86 percent of the Azure DevOps code repositories from its commercial businesses. “We are expanding this further... --- ### Microsoft Defender for Endpoint Adds New Investigation and Response Capabilities - Published: 2024-03-05 - Modified: 2024-03-05 - URL: https://petri.com/microsoft-defender-for-endpoint-investigation-response/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News - Article Type: News Key Takeaways: Microsoft Defender for Endpoint has added new advanced investigation and response capabilities. The file collection feature enables security analysts to gather malicious files to speedup the investigation and response process. The troubleshooting mode allows IT administrators to investigate issues (such as application compatibility and resource consumption) on macOS. Microsoft has introduced advanced investigation and response capabilities within its Defender for Endpoint service. The latest release brings support for file collection and investigation package collection response actions in public preview for macOS and Linux devices. According to Microsoft, security professionals should have a clear view of compromised devices to identify the malicious activities that lead to cyberattacks. They need to gather device telemetry data and malicious files to determine the cause of an attack in enterprise environments. The new security features are designed to streamline the process for security teams to enhance protection against security breaches. “Analysts with the relevant permissions will be able to download files identified on the device and . zip packages that provide additional context about the device's current state for further analysis of the affected device and a better understanding of the tools and techniques employed by the attacker,” Microsoft explained. The file collection feature enables security analysts to quickly gather any malicious files for investigation and response purposes. Additionally, the investigation package serves as a collection of forensic data, providing in-depth insights into security incidents. It includes important information such as network activity data, process histories, and system logs. Microsoft Defender for Endpoint adds... --- ### Lazarus Group Exploits Windows Zero-Day Flaw in Rootkit Attacks - Published: 2024-03-05 - Modified: 2024-11-19 - URL: https://petri.com/lazarus-windows-flaw-rootkit-attacks/ - Categories: Security - Tags: News, Windows, Windows 10 - Article Type: News Key Takeaways: Avast has discovered a new security vulnerability that could allow hackers to launch rootkit attacks on vulnerable systems. The Lazarus Group exploited the flaw with their advanced rootkit, FudModule, demonstrating evolving threat tactics and the need for ongoing cybersecurity vigilance. Windows users who haven't patched their computers yet should install the February 2024 Patch Tuesday updates. Microsoft has recently addressed a zero-day vulnerability within the Windows AppLocker driver. The security flaw has been exploited by the North Korean threat group Lazarus for privilege escalation to carry out rootkit attacks. The security flaw (tracked as CVE-2024-21338) was first discovered by the cybersecurity firm Avast last year. The Avast researchers created a proof-of-concept (PoC) exploit and shared a description of the zero-day with Microsoft in August 2023. Subsequently, Microsoft released the February 2024 Patch Tuesday updates to mitigate the vulnerability on Windows PCs. The North Korean threat group Lazarus exploited the security vulnerability to interact with the Windows kernel. The hackers then used an updated version of its proprietary rootkit malware called "FudModule" to gain administrative-level privileges on vulnerable systems. A rootkit is a type of malware that is developed to obtain unauthorized access to a computer, manipulate system functions, and hide its presence from the operating system. The latest version of the FudModule rootkit comes with several enhancements to infiltrate vulnerable computer systems while remaining undetected. It’s designed to bypass various security measures, including the AhnLab V3 Endpoint Security, Windows Defender, CrowdStrike Falcon, and HitmanPro security software. Previously, Lazarus... --- ### Microsoft Loop Adds New Automation Capabilities to Streamline Workflows - Published: 2024-03-04 - Modified: 2024-03-04 - URL: https://petri.com/microsoft-loop-automation-rule/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Loop, News - Article Type: News Key Takeaways: Microsoft Loop's latest update introduces Power Automate-backed rules for task automation. The automation rule feature in Microsoft Loop saves time and effort spent on repetitive tasks. The new automation capability is available to all Microsoft 365 subscribers. Microsoft continues to improve its Loop app that launched in preview back in March 2023. The company has released a new update that allows users to automate time-consuming tasks with Power Automate-backed rules. According to Microsoft, the new automation feature is designed to enhance user productivity by saving time and effort previously devoted to repetitive tasks. This capability is supported in tables, board-based components, and table-based components (such as voting tables and task lists). What is Microsoft Loop? Microsoft first announced its Loop app at the Ignite 2021 event. It’s a productivity app that allows users to collaborate with their colleagues in real time using Loop components. Users can share these components across Microsoft Outlook, Teams, Word, Excel, PowerPoint, and other Microsoft 365 apps. Microsoft’s AI-powered Copilot assistant is also available which allows users to draft text and summarize pages within Microsoft Loop. However, a Copilot for Microsoft 365 license is required to use Copilot in Loop. The Microsoft Loop app is available for customers on the Web, iOS, and Android. How to create automation rules in Microsoft Loop To create automation rules, Microsoft Loop users will need to follow the steps listed below: Navigate to the Microsoft Loop web app and create a new table-based component on a Loop page... --- ### How to Build Guest Clusters on Hyper Converged Infrastructure (HCI) > In this article, I explain how to build a guest HCI cluster and why traditional approaches don’t work. - Published: 2024-03-04 - Modified: 2024-11-19 - URL: https://petri.com/build-guest-hci-cluster/ - Categories: Azure Stack HCI - Tags: Azure Stack HCI, featured-top-right, Hyper-V, Virtualization, Windows Server - Article Type: Overview With Hyper Converged Infrastructure (HCI) solutions becoming more common, many customers are now concerned with building clusters on top of those environments. In this article, I’ll explain how to build a guest HCI cluster and why traditional approaches don’t work. In the past, customers built redundancy and resilience based on virtualization and Storage Area Networks (SAN), which were fully redundant and resilient. So, you had one virtual machine (VM) hosting your application and then hoped that your virtualization cluster and SAN kept it running during outages. As those solutions have become cost-intensive in recent years, there has been a move towards HCI. Because most HCI solutions don’t support or leverage classic SAN technologies, like Fiber Channel Storage Area Networks, sharing storage infrastructure with your application is not possible because the storage used for the HCI and virtualization layer is exclusively for the hypervisor and it no longer supports additional workloads. When using legacy solutions, you often have VMs that are acting as a clustered environment on top of your fabric infrastructure. Normally, or with a more classic converged approach, these clusters would share the same cluster storage as your virtualization infrastructure, so they would directly connect to your SAN. The diagram shown below illustrates the classic application and virtualization cluster approach. Classic application and virtualization cluster approach (Image Credit: Petri/Flo Fox) What is a guest HCI cluster? To solve this problem, a solution and strategy came in the form of guest clusters and infrastructure independent applications like Kubernetes and... --- ### Microsoft Teams Gets New Copilot App and Other Big Updates - Published: 2024-03-04 - Modified: 2024-03-05 - URL: https://petri.com/microsoft-teams-copilot-updates/ - Categories: Microsoft Copilot, Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Last month, Microsoft Teams added 37 new features and capabilities aimed at optimizing user experience and bolstering remote collaboration. The new Copilot experience in Teams offers personalized prompts and access to Copilot Chat history. Microsoft Teams Rooms on Android now provide advanced meeting protection features for Premium customers, including end-to-end encryption and sensitivity labels. Microsoft released 37 new features and capabilities for its Teams collaboration platform in February 2024. These updates include a new Copilot experience in chat, improvements to webinars and town halls, and updates tailored for Teams Rooms & devices. Microsoft has launched a new Copilot experience in Microsoft Teams Chat. The new version offers various advantages over the existing Microsoft 365 Chat application, such as personalized prompts and access to Copilot Chat history. The new Copilot app provides access to a library of prompts via Copilot Lab. This capability is available for customers with a Microsoft 365 Copilot license. Microsoft Teams has released a few new features that aim to improve the overall user experience. Firstly, users can now remove items from the activity feed to prioritize important conversations. They can also adjust notification settings from the activity card. Moreover, there is a new Together Mode layout that displays all video participants in a horizontal pane at the bottom of the screen. This feature enhances collaboration between remote participants and people in a meeting room. Updates for Webinars and Town halls Microsoft has released some updates to enhance the Webinars and Town hall experience in... --- ### First Ring Daily: The Moment Has Arrived - Published: 2024-03-01 - Modified: 2024-03-01 - URL: https://petri.com/first-ring-daily-the-moment-has-arrived/ - Categories: Windows, Windows 11 - Tags: copilot, First Ring Daily, News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the first big update for Windows 11 in 2024, which brings new Copilot features and accessibility improvements. --- ### Microsoft OneDrive to Add Copilot AI Assistant to Enhance File Management - Published: 2024-03-01 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-onedrive-copilot/ - Categories: Microsoft 365, Microsoft Copilot - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is bringing the Copilot AI assistant to its OneDrive cloud storage service. It will allow users to ask questions and retrieve information from their online files using natural language commands. Copilot in OneDrive will offer features such as generating summaries, locating recent files, and suggesting improvements. Microsoft is gearing up to integrate the AI-powered Copilot tool into its OneDrive cloud storage service. This new feature will enable users to ask questions and retrieve information from their online files. According to Microsoft, users will have access to Copilot through the file viewer in Microsoft Teams, OneDrive, SharePoint, and the OneDrive Web app. Users will be able to use natural language commands to get answers to any queries they may have regarding their files. For instance, the AI assistant will help users locate recent files and offer suggestions to improve existing ones. Additionally, Copilot will be able to scan documents, identify important points, and summarize the contents. It will also be able to generate tables, FAQs, and outlines based on file content. Copilot in OneDrive will let users create automated summaries when sharing files with their colleagues. The feature will initially be available for the Word web app, with support for the desktop and mobile apps to follow later this year. “These summaries, included in the document sharing notification, give your recipients immediate context around a document and a quick overview of its content without needing to open the file. Sharing summaries increase document engagement while helping coworkers prioritize... --- ### Windows 11 Moment 5 Update Brings Improvements for Copilot and Windows Autopatch - Published: 2024-02-29 - Modified: 2024-02-29 - URL: https://petri.com/windows-11-moment-5-update/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: The Windows 11 Moment 5 update brings several consumer-focused features such as Windows Copilot improvements and intelligent suggestions for multi-app layouts. Microsoft plans to unify Windows Autopatch and the Windows Update for Business deployment service into a single update management solution. A new dedicated mode for Windows 365 Boot allows users to log into their Cloud PCs through passwordless authentication. Microsoft has announced the release of a new feature update (which is codenamed “Moment 5”) for Windows 11. This release brings a range of new capabilities and improvements for both consumers and enterprise customers — Here's a look at what it brings to Windows 11. New consumer features Microsoft announced that Copilot in Windows is getting support for new plugins next month, including Shopify, Klarna, and Kayak. Windows Copilot is an intelligent assistant that users can pin on the right side of their desktop. Copilot in Windows is getting better with several new skills in late March 2024. The upcoming update will allow users to change settings, get quick access to tools, and view device information. For instance, users will be able to perform actions like turning the battery saver on/off, launching Live Captions, or emptying the Recycle Bin. The Snap Layouts feature is getting better with intelligent suggestions for multi-app layouts to enhance multitasking efficiency. The new personalized layout suggestions should make it easier for users to organize open apps on their Windows 11 PCs. Additionally, the new Widgets board experience allows users to organize their widgets... --- ### Microsoft Extends Availability of Optional Updates for Windows 11 version 22H2 - Published: 2024-02-29 - Modified: 2024-02-29 - URL: https://petri.com/windows-11-version-22h2-optional-updates/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft has decided to extend the deadline for delivering non-security optional updates for Windows 11 version 22H2 beyond the previously communicated date of February 2024. Users of Windows 11 version 22H2 will now have access to non-security updates until June 2024. This decision comes in response to user feedback, allowing more customers to benefit from continuous innovations before transitioning to receiving only cumulative monthly security updates. Microsoft is backtracking on its plans to block non-security optional updates for Windows 11 version 22H2 beyond February 2024. The company has quietly extended the deadline for delivering these updates to both consumers and enterprise customers. Essentially, Microsoft releases optional Windows updates during the fourth week of each month. These updates are non-critical for system functionality and focus instead on performance enhancements, feature improvements, and bug fixes. Users can manually review and select the updates they want to install on Windows PCs. Microsoft intends to release optional updates for Windows 11 version 22H2 until June 26, 2024. This means non-security patches will remain accessible for Windows 11 22H2 Home, Pro, Pro Education, and Pro for Workstations editions until mid-2024. Additionally, Windows 11 22H2 Enterprise, Education, IoT Enterprise, and Enterprise multi-session editions will continue to receive these updates until June 24, 2025. “After these dates, only cumulative monthly security updates will continue for the supported editions of Windows 11, version 22H2. The initial date communicated for this change was February 27, 2024. Based on user feedback, this date has been changed so more... --- ### Microsoft Releases New Conditional Access Policy to Require Reauthentications - Published: 2024-02-29 - Modified: 2024-02-29 - URL: https://petri.com/microsoft-conditional-access-policy-reauthentication/ - Categories: Microsoft Entra ID (Azure AD) - Tags: News - Article Type: News Key Takeaways: Microsoft has introduced a new reauthentication policy called "sign-in frequency – every time" for Entra Conditional Access. The new policy requires users to perform a fresh authentication before accessing corporate resources. Microsoft has highlighted various scenarios necessitating interactive reauthentication, including accessing high-risk resources through a VPN. Microsoft has announced a new reauthentication policy for its Microsoft Entra Conditional Access service. The new "sign-in frequency – every time" policy allows organizations to require users to perform a fresh authentication each time they access critical applications or perform sensitive actions. Single sign-on is an authentication method that lets users access multiple applications or services with a single set of credentials. It requires users to authenticate once and access all authorized resources without needing to re-authenticate. Single sign-on is designed to enhance security by reducing the risk of credential reuse. The "sign-in frequency – every time" policy is tailored for organizations using single sign-on (SSO) yet desiring occasional reauthentication prompts for users accessing corporate resources. For instance, IT administrators can configure risk-based reauthentication policies to address suspicious sign-in activities, mitigating token theft risks in enterprise environments. What are the other scenarios where interactive reauthentication is necessary? Microsoft detailed the following scenarios where administrators might want to require a fresh authentication: Accessing high-risk resources behind a VPN. Performing sensitive actions such as updating credentials and Microsoft Intune enrollment Privileged role elevation in Privileged Identity Management (PIM). Signing into Azure Virtual Desktop machines. Microsoft advises that the "sign-in frequency – every time" policy... --- ### GitHub Copilot Enterprise: AI-Powered Coding Companion Tailored for Large Organizations - Published: 2024-02-28 - Modified: 2024-02-28 - URL: https://petri.com/github-copilot-enterprise-available/ - Categories: Developer - Tags: Developer, GitHub, GitHub Copilot, News - Article Type: News Key Takeaways: GitHub has introduced Copilot Enterprise, an AI-powered coding assistant specifically designed for large enterprises. The tool offers customization to fit the unique codebases and workflows of organizations, enhancing productivity and code quality. Copilot Enterprise integrates with internal knowledge bases and Bing Search, prioritizing security and privacy while revolutionizing development processes. Microsoft-owned GitHub has announced the general availability of Copilot Enterprise. The new offering is tailored to enable large enterprises to leverage artificial intelligence for their coding projects. GitHub Copilot Enterprise is a tool that helps developers generate code suggestions, answer queries, and summarize changes based on their organization's coding standards. This AI-powered assistant integrates into the user's development environment and provides real-time code suggestions as they type. It also allows developers to ask questions about public and private code using natural language commands. GitHub Copilot Enterprise can access internal knowledge bases to provide more comprehensive suggestions. Bing Search is also directly integrated into Copilot Chat, which makes it easier for developers to search for software-related information. Additionally, users will soon have the option to fine-tune Copilot’s models based on the existing codebase. Other capabilities include slash commands and context variables, enterprise-grade security, as well as safety and privacy. “Copilot Enterprise streamlines code navigation and comprehension for developers, enabling faster feature implementation, issue resolution, and code modernization. It empowers junior developers to contribute quicker, assists senior developers in handling live incidents, and aids in modernizing aging codebases by offering clear code summaries, relevant suggestions, and quick answers to queries... --- ### Microsoft Releases Internal Security Tool 'PyRIT' to Protect Generative AI Systems - Published: 2024-02-27 - Modified: 2024-02-27 - URL: https://petri.com/microsoft-security-pyrit-generative-ai-systems/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Microsoft's PyRIT (Python Risk Identification Toolkit) is a newly released tool to help security teams mitigate security risks within generative AI systems. The toolkit offering a practical solution to automate routine tasks and enhance risk detection and mitigation processes. PyRIT is not intended to replace manual red teaming and it complements existing expertise by providing a streamlined approach to risk assessment. Last week, Microsoft introduced its Python Risk Identification Toolkit for generative AI (PyRIT) The new tool provides security teams and machine learning engineers with tools to identify and mitigate risks within AI systems. In 2022, Microsoft introduced PyRIT to help its AI red team identify security risks within its generation AI systems, such as Copilot. A red team is a group of skilled professionals responsible for simulating cyberattacks on a corporate network or infrastructure. The primary goal is to detect security vulnerabilities and improve security measures. Microsoft emphasized that the red-teaming process for these systems differs from classical AI or traditional software. This is because Microsoft must account for both responsible AI risks and typical security risks. Consequently, analyzing these various risks can be a slow, tedious, and time-consuming process. How does the PyRIT toolkit work? The PyRIT toolkit is designed to help security teams automate time-consuming routine tasks, such as the creation of malicious prompts in bulk. It comprises five primary components: targets, datasets, scoring engine, attack strategies, and memory. Additionally, the PyRIT toolkit offers two distinct attack styles. In the single-turn strategy, PyRIT sends a... --- ### Microsoft to Launch Unified Teams Client for Windows and macOS - Published: 2024-02-27 - Modified: 2024-02-27 - URL: https://petri.com/microsoft-unified-teams-client-windows-macos/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is planning to launch a unified Teams client for Windows and macOS. The new feature will allow users to access work, school, and personal accounts within a single Microsoft Teams desktop application. This release addresses user frustration with having to manage separate versions of Microsoft Teams. Microsoft is preparing to launch a new unified Teams client for Windows and macOS. The company has announced on the Microsoft 365 admin center that this release will allow users to access their work, school, and personal accounts in a single desktop application. Microsoft has long provided two separate Teams desktop applications for consumers and commercial customers. Users have expressed frustration with the inconvenience of switching between these two versions of Microsoft Teams. Fortunately, Microsoft is planning to address this problem for Windows and macOS users. With this release, Microsoft Teams users will be able to add any type of additional account by simply clicking on their profile picture. Microsoft will roll out a routine update to seamlessly transition classic Teams users to the new Teams desktop experience. This means users will no longer need a separate Microsoft Teams app to access personal accounts on Windows 11 PCs. “With this capability, we are also introducing changes to how you join meetings. Teams will allow users to view or change the identity that they want to use for meetings, right on the meeting pre-join screen. These changes follow all meeting privacy and security policies,” Microsoft explained. Microsoft notes that users already using... --- ### What’s New in Microsoft Intune - February 2024 - Published: 2024-02-26 - Modified: 2024-02-26 - URL: https://petri.com/microsoft-intune-february-2024/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft Intune has added the awaited final configuration feature for macOS automated device enrollment to streamline the onboarding process for company-owned devices. Microsoft has introduced a new feature that lets IT Pros approve driver updates in bulk. The addition of a new setting in Autopilot deployments enables administrators to install critical updates. Microsoft has published a list of all the new features added to its Microsoft Intune service during the month of February 2023. The company highlighted that these updates should help administrators to improve security and productivity for end users. Microsoft has announced the general availability of await final configuration support for macOS automated device enrollment. The automated device enrollment (ADE) feature is designed to streamline the process of enrolling company-owned devices into Mobile Device Management (MDM). The “await final configuration” feature enables a locked experience at the end of Setup Assistant to ensure that critical device configuration policies (such as VPN and WiFi profiles) are installed on devices. This setting is applied once during the out-of-box Apple automated device enrollment experience within the Setup Assistant. Microsoft has added a new setting in Autopilot deployments that enables administrators to install critical updates. The feature is designed to enhance the provisioning experience for both administrators and end users. “The new setting allows administrators to block only for selected apps and continue if other applications fail to install during the technician phase. For those non-blocking applications, the installation will be tried again when the user signs in for the... --- ### First Ring Daily: Surface Peaks - Published: 2024-02-23 - Modified: 2024-02-23 - URL: https://petri.com/first-ring-daily-surface-peaks/ - Categories: Hardware, Microsoft - Tags: Microsoft, News, Surface - Article Type: News As Microsoft is expected to refresh its Surface lineup with new AI features later this year, this episode of First Ring Daily has Brad Sams and Paul Thurrott discussing Microsoft's "peak Surface" moment. As Microsoft is expected to refresh its Surface lineup with new AI features later this year, this episode of First Ring Daily has Brad Sams and Paul Thurrott discussing Microsoft's "peak Surface" moment. --- ### Microsoft's Entra ID License Utilization Portal: Simplifying License Management for Businesses - Published: 2024-02-23 - Modified: 2024-02-23 - URL: https://petri.com/microsoft-entra-id-license-utilization-portal/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft has announced the public preview of the Entra ID License utilization portal. The new portal enables organizations to track and monitor the usage of Entra ID P1 and P2 licenses. Currently, the Entra ID License utilization portal provides support for features such as Conditional Access and risk-based Conditional Access usage. Microsoft has launched a new Entra ID license utilization portal in public preview for commercial customers. The long-awaited feature is designed to offer commercial customers insights into premium feature usage for optimizing Entra ID Premium licenses. Microsoft Entra ID (formerly known as Azure Active Directory) is a cloud-based identity and access management service. It allows customers to streamline access to Microsoft services and various third-party applications. The service helps organizations enhance their cybersecurity posture and prevent unauthorized data access. With the Entra ID License utilization portal, administrators can easily track the number of Entra ID P1 and P2 licenses they have, along with monitoring the usage of corresponding features. Currently, the feature only supports Conditional Access and risk-based Conditional Access usage as part of Entra ID license utilization. Microsoft plans to expand support to additional SKUs and features in the coming months. Conditional Access is a security feature that enables organizations to control resource access based on factors like location, device type, or user risk level. With risk-based Conditional Access, IT admins can dynamically adjust access controls according to the risk level associated with a user's sign-in or behavior. Entra ID Premium P1 feature usage on License... --- ### Enhanced Task Management: Microsoft Teams to Get New AI-Powered Planner Experience - Published: 2024-02-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-planner-experience/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The new Planner app in Microsoft Teams will incorporate AI-powered capabilities to enhance productivity and streamline workflow management. The Copilot AI assistant will allow users to easily find tasks and scheduling tools required for project planning. The rollout of the new Planner experience in Microsoft Teams is set to begin next month. Microsoft is getting ready to introduce the new Planner experience within Microsoft Teams. The company will begin updating the existing Tasks by Planner and the To Do apps in Teams to the new Planner application in March 2024. Microsoft first unveiled its plans to launch the new Planner app in Teams at Ignite 2023. The company highlighted that it will combine some of its existing task management and planning tools (such as Microsoft Planner, Microsoft To Do, and Microsoft Project) into a work management experience under the name Microsoft Planner. “It brings together the simplicity of Microsoft To Do, the collaboration of Planner, the power of Microsoft Project, and the intelligence of Microsoft Copilot for Microsoft 365 into a single, simple solution that spans from individual task management and frontline task management to enterprise and professional project management,” the company explained on the Microsoft 365 admin center. Microsoft Teams' new Planner app to hit GA in May In Microsoft Teams, the new Planner app will include new AI-powered capabilities, designed to enhance productivity and streamline workflow management. It will enable users to easily find tasks and scheduling and resourcing tools required for project planning. Microsoft Copilot... --- ### What Is Windows Server? > What is Windows Server exactly and how much do you know about it? Why would you want to install it and use it in your environment? Read on to find out! - Published: 2024-02-22 - Modified: 2024-02-22 - URL: https://petri.com/what-is-windows-server/ - Categories: Windows Server - Tags: Windows Server - Article Type: Overview You've probably heard about Windows Server - Microsoft's enterprise server counterpart to its end-user client Windows 10 and 11 operating systems. But what is Windows Server exactly and how much do you know about it? Why would you want to install it and use it in your environment? What are the current supported versions and their requirements? What's coming next? Read on to find out! What is Windows Server? Windows Server is a server operating system developed by Microsoft. Windows Server is designed for use in client-server enterprise computing environments where client devices request resources from a server, such as files or access to a virtual machine. Like other server operating systems, such as IBM AIX and VMS, Windows Server is designed to be used on server hardware, which is usually a specialized computer with powerful components. In the last ten years or so, Windows Server has only been supported on Intel x86/AMD64 CPU hardware architectures. In the past, Windows NT 3. 1 supported DEC Alpha - this was dropped in Windows 2000 Server. MIPS was also supported in the past but has since been phased out. PowerPC was going to be supported but never made it off the drafting table. "Your trusted operating system for 30 years". This is how Microsoft describes its enterprise server operating system. Windows Server 2022, the most recently released version, is the platform for building infrastructures of networks, applications, and services. What is Windows Server? (Image Credit: Petri. com) Although Windows Server has been the... --- ### Microsoft Starts Auto-Upgrading Eligible PCs to Windows 11 version 23H2 - Published: 2024-02-22 - Modified: 2024-02-22 - URL: https://petri.com/microsoft-windows-11-version-23h2/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft is automatically updating eligible devices running older versions of Windows 11 to version 23H2. Windows 11 version 23H2 introduces over 150 new features, including Windows Copilot, a modernized File Explorer, and passkey support. Microsoft is targeting devices currently on Windows 11 versions 21H2 and 22H2 to deliver automatic updates. Microsoft has started pushing Windows 11 version 23H2 to users who are still running older versions of Windows 11. The company announced on the Windows release health dashboard that it will automatically update all eligible devices to Windows 11 version 23H2. Microsoft announced the general availability of Windows 11 version 23H2 in October last year. This release brings over 150 new features, including the Copilot in Windows preview, a modernized File Explorer, passkey support, and a new Windows Backup app. There are also new Windows 365 features and AI-powered capabilities in apps such as Snipping Tool, Photos, and Paint. The automatic updates will target devices currently running Windows 11 versions 21H2 and 22H2. The original version of the operating system (21H1) reached end of support for Home and Pro users on October 10, 2023. Moreover, Windows 11 version 21H2 will reach its end of servicing deadline on October 8, 2024. After this date, Microsoft will no longer provide security updates and other improvements for the unsupported version of Windows. Microsoft uses Machine Learning to ensure smooth Windows 11 updates Microsoft plans to use a machine learning-based approach to gradually start updating consumer and non-managed PCs running Home and... --- ### Microsoft Teams to Bolster Meeting Security with Updated Labels for External Participants - Published: 2024-02-21 - Modified: 2024-02-21 - URL: https://petri.com/microsoft-teams-meeting-updated-labels/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams is getting a new "unverified" label for external participants lacking a trusted relationship with the meeting organizer. These labels will be visible to both organizers and participants attending meetings with users from external organizations. The new feature will roll out next month for in-meeting participant views in Microsoft Teams. Microsoft is set to roll out updated participant labels to bolster security in Teams meetings. The new 'unverified' label will be displayed next to participants who do not have a trusted relationship with the meeting organizer. “All participants who are not part of the organizer's organization but are configured as a trusted relationship with the organizer will continue to be termed as External. Additionally, we are ensuring that all areas within Team meetings - lobby, participant roster, meeting chat, and so on - will consistently show accurate user labels,” the company explained on the Microsoft 365 admin center. Microsoft states that the upcoming label changes will be visible to both organizers and participants attending meetings with users from outside of their external organizations. The following three labels will reflect the trust level between attendees and the meeting organizer: No label: Microsoft Teams will not display any label for participants belonging to the same organization. External: This label will be visible next to all participants who have a trusted relationship with the organizer or their organization. Unverified: The "unverified" label will be applicable to all other participants, such as Microsoft Entra ID users without explicit external access setup... --- ### SharePoint Premium Translation Generally Available for Commercial Customers - Published: 2024-02-21 - Modified: 2024-02-21 - URL: https://petri.com/sharepoint-premium-translation/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has expanded its SharePoint Premium service, introducing SharePoint Translation to facilitate document translation for commercial customers. The new feature allows users to translate documents stored in SharePoint document libraries while maintaining the original format and structure. Organizations can translate up to one million characters for free each month until the end of June 2024. Microsoft has recently rolled out some important updates for its SharePoint Premium service. The company announced that SharePoint Translation is now generally available for all commercial customers. Microsoft launched its new SharePoint Premium service back in November 2023. It’s an advanced content management platform that combines the capabilities of SharePoint and Syntex. SharePoint Premium provides AI-powered solutions for content management, workflow automation, and content preparation. Organizations can leverage governance capabilities along with advanced content controls to manage content effectively throughout its lifecycle. With SharePoint Translation, customers can translate a selected file or a set of files stored in a SharePoint document library. The feature preserves the original format and structure while translating a document. SharePoint Translation supports various languages, including English, German, French, Spanish, and Japanese. Microsoft highlights that the new feature aims to enhance collaboration and communication for teams operating across various regions. Additionally, businesses can leverage the feature to localize content in order to expand their global reach and ensure compliance with local and national laws. “One of our customers recently experienced the power of SharePoint Premium translation – they needed to translate thousands of documents to comply with a Canadian... --- ### Top 5 Features to Look for in On-Premises Veeam Storage > Learn the top five most important features to look for in an on-premises Veeam storage solution for your backups. - Published: 2024-02-20 - Modified: 2024-06-14 - URL: https://petri.com/top-features-on-premises-veeam-storage/ - Categories: Backup & Storage - Tags: Backup, Disaster Recovery, NoAD, NoAds, storage - Article Type: Overview, Sponsored In this article, we’ll examine some of the main challenges of today’s backup and disaster recovery procedures. Then, we’ll dive into the top five most important features to look for in an on-premises Veeam storage solution for your backups. Data protection is one of the most critical tasks for IT administrators, and there is no doubt that it is continually growing more complex. Data volumes are rapidly increasing in size, and the threats to that data are growing both in number and severity. Ensuring that your data backups are involatile and can be rapidly restored is vital to meeting your availability requirements and ensuring that you can recover data quickly in the event of a systems failure or cyberattack. Many businesses use the Veeam Data Platform to protect critical data backups for their backup and replication data protection needs. Veeam is an enterprise-level backup solution with several advanced features, allowing it to integrate closely with Amazon cloud storage and take advantage of S3 buckets with immutability. While cloud storage offers several benefits, it typically does not provide the backup and restore speeds attainable with on-premises storage appliances. Today, businesses need a purpose-built, ransomware-proof, on-premises storage solution that integrates seamlessly with Veeam’s object storage support and guarantees the immutability of its backups. Object First offers Ootbi (out-of-the-box immutability), their backup storage appliance, to meet these requirements. Object First provides a simple, high-performance ransomware-proof primary storage target designed to be the best storage for Veeam. Object First significantly reduces Recovery Time... --- ### Broadcom and Google Unveil New VMware License Portability Plan for Businesses - Published: 2024-02-20 - Modified: 2024-02-20 - URL: https://petri.com/broadcom-vmware-license-portability-plan/ - Categories: Virtualization, VMware - Tags: News, vmware - Article Type: News Key Takeaways: Broadcom and Google have partnered to introduce a license portability plan, allowing enterprise customers to run VMware workloads on Google Cloud. The license portability scheme allows customers to migrate their virtual machines and workloads to Google Cloud VMware Engine. License portability is expected to be available in the second quarter of 2024. Broadcom and Google have announced a new license portability plan that will allow enterprise customers to run VMware workloads on Google Cloud. Broadcom is also actively advocating for the benefits of the changes to its VMware products among partners and customers. In the new license portability scheme, customers who purchased VMware Cloud Foundation software from Broadcom can now use their subscriptions not only on Google Cloud VMware Engine but also within their own on-premises data centers. Additionally, they have the option to bring their existing VMware Cloud Foundation subscriptions to Google Cloud VMware Engine. Organizations will also be able to migrate their virtual machines and workloads to Google Cloud. This license portability scheme promises enhanced operational efficiency and security for businesses. It’s expected to be available in the second quarter of 2024. “Through this model, our customers can realize the unique benefits of Google Cloud VMware Engine, such as four 9’s cluster-level uptime, deeply integrated networking and a unified Google experience along with the full portfolio of Google Cloud services across AI/ML, data analytics, security, and more,” said Mark Lohmeyer, Vice President and General Manager, Compute and ML Infrastructure at Google Cloud. Broadcom's $61 Billion VMware... --- ### What Is an Access Control List (ACL)? > An access control list, or ACL, is a set of rules that determines the level of access a user or system has to a particular network or resource. Learn more about ACLs and how they are used in computer security. - Published: 2024-02-19 - Modified: 2024-02-19 - URL: https://petri.com/what-is-an-access-control-list-acl/ - Categories: Windows Server - Tags: featured-top-right, File and Print Services, Security, Windows Server - Article Type: Overview An access control list (ACL) is a fundamental component of computer security. ACLs help to control and manage access permissions to organizational resources.  In this article, I will explain in detail what an access control list is and how you can use them to secure access to local and networked resources. ACLs are an integral part of enterprise cybersecurity strategies, aiding IT Administrators in not only controlling access to network and file resources but also ensuring only authorized entities gain access to specific resources. ACLs also help in maintaining the confidentiality, integrity, and availability of sensitive data and network resources. What is an access control list? Access control lists are made up of a set of rules used to configure and control access to resources such as files, directories, or network devices. These rules define who can access a particular resource and what operations they are then allowed to perform, usually defined as a permit or deny permission.   ACLs can be configured at various levels, including file system level, firewall level, or device level providing granular control over resource access. ACLs typically consist of access rules and permissions for different users, groups, or network addresses that define the access to system resources. This flexibility and granularity allows system administrators to enforce security policies tailored to the organizational needs. Types of access control lists While there are several classifications and types of access control lists, they can be broadly classified into four major types based on their working mechanism: Standard ACL... --- ### Microsoft and SAP Collaborate to Drive Entra ID Migration - Published: 2024-02-19 - Modified: 2024-02-19 - URL: https://petri.com/microsoft-sap-entra-id-migration/ - Categories: Microsoft Entra ID (Azure AD) - Tags: News - Article Type: News Key Takeaways: Microsoft and SAP have announced a new partnership aimed at transitioning SAP IDM customers to Microsoft Entra ID. SAP plans to discontinue its IDM solution by 2027, with extended support until 2023. Microsoft encourages organizations to strategize migrations to Microsoft Entra ID, which offers seamless integration with various SAP solutions and robust identity management capabilities. Microsoft has announced a new strategic partnership with enterprise software giant SAP. The companies are currently working to develop a solution that will encourage SAP customers to transition from SAP Identity Management (SAP IDM) to Microsoft Entra ID. Earlier this month, SAP announced its plans to sunset its IDM solution in 2027. The SAP IDM service allows administrators to manage user identities, roles, and access rights within an organization. It offers various features such as multi-factor authentication, policy enforcement, and segregation of duties (SoD) to boost security and mitigate risks associated with unauthorized access. SAP intends to offer extended support to SAP IDM customers until 2023. Meanwhile, the company urges organizations to strategize migrations of their identity management systems to Microsoft Entra ID. Microsoft emphasizes that its Entra ID service is already seamlessly integrated into various SAP solutions, making it a logical choice for identity and access management needs. In July 2023, Microsoft rebranded its Azure Active Directory (Azure AD) service as Entra ID. This service allows organizations to efficiently manage identities and access to applications across hybrid and multi-cloud environments. Microsoft Entra ID lets customers customize access policies to suit their unique... --- ### First Ring Daily: Local AI, Cloud AI, and a Build of AI - Published: 2024-02-16 - Modified: 2024-02-16 - URL: https://petri.com/first-ring-daily-local-ai-cloud-ai-and-a-build-of-ai/ - Categories: Cloud Computing, Microsoft - Tags: copilot, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss how Microsoft’s Build 2024 conference will be all about AI and Copilots, and how AI technology could become the next big data harvesting tool.  In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft teasing AI and Copilot announcements at its upcoming Build 2024 conference on May 21-23, and how AI technology could become the next big data harvesting tool.   --- ### Microsoft to Discontinue Support for its Publisher App in 2026 - Published: 2024-02-16 - Modified: 2024-02-16 - URL: https://petri.com/microsoft-kill-off-publisher/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is ending support for its Publisher desktop publishing application in October 2026. The decision comes as Microsoft plans to integrate Publisher's features into other Microsoft 365 applications. Microsoft 365 commercial customers can continue to use the Publisher app with its existing functionality until the support ends in 2026. Microsoft is pulling the plug on its Publisher desktop publishing application. The company will discontinue support for the tool on October 13th, 2026, and it will no longer be available for Microsoft 365 commercial customers. Microsoft Publisher was first launched in 1991 as a desktop publishing application. It allows Office users to create professional documents, such as newsletters, brochures, greeting cards, flyers, invitations, and more. The app provides various pre-designed templates for users, and can be customized with their own images, content, and branding. Microsoft Publisher provides a variety of tools to simplify the creation process for individuals, small businesses, and organizations who need to produce professional-looking documents. Microsoft plans integration of Publisher features across Office apps Microsoft announced the upcoming retirement of the Publisher app in a message on the Microsoft 365 Admin Center yesterday. The company stated that most of the Publisher features can already be found in other Microsoft 365 applications. For instance, Microsoft Word and PowerPoint provide similar functionality to create customized calendars, business cards, envelopes, and branded templates. “You can continue to use Publisher with its current functionality until October 2026. Support for the perpetual version of Publisher will end in October 2026, when... --- ### Microsoft Warns About New Zero-Day Exchange Server Privilege Escalation Vulnerability - Published: 2024-02-16 - Modified: 2024-02-16 - URL: https://petri.com/microsoft-exchange-server-vulnerability/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Key Takeaways: Microsoft has identified a zero-day flaw in Exchange Server that lets remote hackers relay Windows NT Lan Manager (NTLM) hashes to impersonate legitimate users. Microsoft released a new Cumulative Update for Exchange Server 2019 to address the security vulnerability. The latest update enables the Extended Protection feature by default in Exchange Server 2019 to block man-in-the-middle (MitM) attacks. Microsoft has released an advisory regarding a critical vulnerability in Exchange Server. The company disclosed this zero-day flaw in the February 2024 Patch Tuesday updates and cautioned that it is currently being actively exploited in the wild. The security vulnerability, tracked as CVE-2024-21410, could allow hackers to relay NT LAN Manager (NTLM) hashes and impersonate legitimate users. The vulnerability is a privilege escalation flaw, and it has received a CVSS score of 9. 8. NTLM relay attacks let cybercriminals steal hashed versions of user passwords to gain unauthorized access to corporate resources. “An attacker could target an NTLM client such as Outlook with an NTLM credentials-leaking type vulnerability. The leaked credentials can then be relayed against the Exchange server to gain privileges as the victim client and to perform operations on the Exchange server on the victim's behalf,” the Exchange team explained. Microsoft enables Exchange Server Extended Protection to block NTLM relay attacks Microsoft released the Cumulative Update 14 (CU14) update to address the CVE-2024-21410 vulnerability on all Exchange Server 2019 machines. This release enables NTLM relay protections or Extended Protection for Authentication (EPA) by default. Exchange Server Extended Protection is... --- ### Microsoft Collaborates with OEMs to Update Windows Secure Boot Keys - Published: 2024-02-15 - Modified: 2024-02-15 - URL: https://petri.com/microsoft-windows-secure-boot-keys/ - Categories: Hardware, Windows - Tags: News, UEFI, UEFI Secure Boot, Windows - Article Type: News Key Takeaways: Microsoft is updating Secure Boot on Windows UEFI PCs in collaboration with OEM partners. The update aims to address firmware bugs that could cause startup issues or overlook important database updates. Users can expect a controlled rollout of updates, with Microsoft blocking updates on devices with known issues until fixes are available. Microsoft has announced its plans to update Secure Boot on Windows Unified Extensible Firmware Interface (UEFI) PCs. The company is collaborating with its equipment manufacturer (OEM) partners to issue new Secure Boot keys starting this year. Secure Boot is a security feature that was first implemented in Windows 8 machines, particularly those running on the Unified Extensible Firmware Interface (UEFI). UEFI is a specification for a software program that connects a firmware to its operating system (OS) on a computer. The Secure Boot feature is designed to ensure that only trusted software is executed during the boot process. It verifies the digital signatures of the boot components to prevent rootkit and bootkit malware from making any unauthorized system changes before the PC boots up. Microsoft requires OEMs to install three certificates to enable the Secure Boot feature on Windows devices. These include the Key Exchange Key (KEK), the Allowed Signature Database (DB), and the Disallowed Signature Database (DBX). These Microsoft-managed certificates are set to expire in 2026. Microsoft announces phased rollout for new Secure Boot certificates Earlier this week, Microsoft announced that it is collaborating with its OEM partners to release replacement certificates. These certificates aim... --- ### Petri.com’s New Active Directory Outage and Disaster Recovery Survey - Published: 2024-02-15 - Modified: 2024-08-26 - URL: https://petri.com/ad-forest-outage-survey-2024/ - Categories: Active Directory (AD) - Tags: Active Directory, NoAD, NoAds - Article Type: Sponsored Petri. com was recently asked by Cayosoft to conduct a survey amongst our audience regarding Active Directory (AD) downtime and disaster recovery strategies. Petri. com's extensive experience in the marketplace, coupled with our standing as a representative voice for IT Professionals, allows us to bring distinct insights into prevailing trends and their evolution over time. The survey, which was conducted in Q4 2023, surfaces some surprising information about the state of Active Directory disaster recovery preparedness today. Even though AD is now more than 20 years old, and it is often the primary Identity and Authentication Management (IAM) solution for on-premises IT resources, our survey results revealed that many organizations do not understand its importance in business operations. The survey resulted in two pieces of research that you can download today. The first is Cayosoft's analysis of the survey data. As leaders in the Active Directory recovery space, Cayosoft is able to provide insight into the specific challenges in backing up and restoring large, complex Active Directory infrastructures. Secondly, Petri. com Research Lab is presenting the raw results from our survey with some editorial commentary to help you put it into context, which you can download here. Active Directory survey highlights alarming trend Since Cayosoft last commissioned a similar survey in 2021, there's been a 172% increase in AD forest-wide outages. And 18% of enterprises reported that "all or most" of their line-of-business systems are reliant on Active Directory (AD). But according to the survey, 94% of enterprises (84% of everyone) cannot... --- ### Microsoft Unveils Improved Controls for Windows Autopatch Management - Published: 2024-02-15 - Modified: 2024-02-15 - URL: https://petri.com/microsoft-unveils-improved-controls-for-windows-autopatch-management/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Organizations can now import their Microsoft Intune Update rings for Windows 10 and later into Windows Autopatch management. Windows Autopatch is also getting the ability to set service-level patch objectives based on the organization's defined update rings. Microsoft has also improved patch compliance reporting with a refreshed cycle of every 30 minutes. Microsoft has announced notable enhancements for its Windows Autopatch service. The biggest change in this release is the ability for commercial customers to use their existing update rings with Windows Autopatch. Microsoft has introduced a new feature that enables organizations to import their existing Intune Update rings for Windows 10 or later into Windows Autopatch management. It lets customers make use of Windows Autopatch's reporting and device readiness without having to redeploy or modify existing update rings. Keep in mind that all devices associated with an imported ring will be automatically registered into Windows Autopatch. Windows Autopatch is a service that allows administrators to manage updates for end users in their organization. With the update ring feature, Windows updates can be tested with a smaller group of users ahead of the broader deployment. IT admins can create up to 15 unique deployment rings for different groups of devices. How to import update rings for Windows 10 and later into Windows Autopatch To import Update rings for Windows 10 and later, Microsoft says that IT administrators will need to follow the steps mentioned below: Go to the Microsoft Intune admin center and select Devices from the left... --- ### Microsoft's February 2024 Patch Tuesday Updates Fix Two Zero-Day Windows Flaws - Published: 2024-02-14 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-february-2024-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft addressed two zero-day flaws actively exploited by attackers, underlining the importance of prompt patching to mitigate security risks. The February 2024 Patch Tuesday updates fixed 72 vulnerabilities, with five rated critical and 65 labeled as important. Microsoft fixed a critical Windows SmartScreen security feature bypass flaw that could lead to remote code execution. Microsoft released yesterday the February 2024 Patch Tuesday updates for Windows 11 and Windows 10. As usual, the company addressed several vulnerabilities across a wide range of its products, including two zero-day flaws that are actively being exploited by attackers. In addition to the zero-day vulnerabilities, Microsoft advises administrators to patch critical flaws in the Exchange Server and Microsoft Outlook. The company has also addressed an older Windows AppX installer spoofing vulnerability. February 2024 Patch Tuesday updates fix 72 vulnerabilities Microsoft has released updates to address 72 vulnerabilities in Windows, Microsoft Office, Exchange Server, Azure Active Directory, and other components. The company says that five security flaws are rated “critical," and 65 are labeled as “important” in severity. Here’s a list of the most important vulnerabilities you should know about. CVE-2024-21412: The internet shortcut file security feature bypass vulnerability affects Windows desktop and server machines. It enables threat actors to send a maliciously crafted shortcut file to a target user. The user needs to click the file to trigger the next stage of the attack without causing the security checks to appear on the screen. CVE-2024-21351: This is a Windows SmartScreen security feature bypass... --- ### 5 Reasons to Consolidate Active Directory Domains and Forests > In this article, we explain why it is necessary to consolidate Active Directory forests and domains to improve security and management. - Published: 2024-02-14 - Modified: 2024-04-16 - URL: https://petri.com/consolidate-active-directory-domains-forests/ - Categories: Active Directory (AD) - Tags: Active Directory, featured-top-right, NoAD, NoAds - Article Type: Sponsored A Windows Server Active Directory (AD) forest is the topmost logical container in an AD configuration. In this article, Michael Otey explains the role forests play in an AD configuration and why it is necessary to consolidate Active Directory forests and domains to improve security and management. Every Active Directory deployment contains at least one forest, the parent container in the hierarchy. AD forests contain domains, users, computers, Organizational Units (OUs), Group Policy Objects (GPOs), and other objects that represent IT resources. This article is sponsored by Semperis. Active Directory is structured in a top-down, logical tree. Businesses can end up with multiple domains and forests due to a variety of historical, organizational, and technical reasons. However, complex hierarchies with multiple forests and domains can be problematic. Multiple AD forests and domains can have security, operational, and usability concerns that cause organizations to consider consolidating domains and forests. Let’s take a closer look at the top five reasons why Active Directory consolidation might be the right move for you and how it can improve security, usability, and reduce management requirements. 1.   Complex Active Directory hierarchies increase the AD attack surface Large organizations may create separate AD domains and forests for different business units. They often have offices or subsidiaries in different geographic locations and set up separate AD domains or forests for each location to optimize network performance. Likewise, as an organization grows through mergers, acquisitions, or expansion into new regions, it might inherit or create several AD domains and forests to accommodate the different IT infrastructures. In some cases, separate domains or forests are created for technical reasons, such as creating... --- ### Microsoft and OpenAI Adopt AI-Driven Strategy to Counter Nation-State Cyber Threats - Published: 2024-02-14 - Modified: 2024-02-14 - URL: https://petri.com/microsoft-openai-cyber-attacks/ - Categories: Security - Tags: cyberattacks, Microsoft Secure, News - Article Type: News Key Takeaways: Microsoft Security Copilot shows 44% better accuracy for threat hunting and incident response Microsoft's Cyber Signals report underscores the alarming trend of nation-state threat actors exploiting generative AI for malicious activities. Microsoft is actively exploring the deployment of AI-powered defenses to enhance cybersecurity measures and combat evolving threats. Microsoft's latest Cyber Signals 2024 report reveals the alarming trend of nation-state threat actors harnessing generative AI for malicious purposes. Microsoft has also outlined its proactive measures in deploying AI-powered defenses to tackle the ever-evolving threat landscape. Microsoft Threat Intelligence team has reported that over 300 threat actors are currently using AI and Language Model Models (LLMs) in their attack operations. Cybercriminals are utilizing LLM technology to develop more sophisticated attack techniques such as automated attacks and deep fakes for phishing campaigns. Microsoft is closely monitoring the attack activity and has shared its findings with OpenAI to help detect and block AI-powered cyber operations. Microsoft has outlined various methods it uses to safeguard customers from AI-assisted cyber threats. For example, it leverages behavior analysis and machine learning algorithms to identify and flag risky sign-ins and malware. Additionally, AI-based threat detection techniques are utilized to track any changes in resource usage and network traffic. Device health verification is performed to ensure safety before connecting to corporate networks. “The use of LLMs in cybersecurity is a testament to AI’s potential. These models, when used for good, can analyze vast amounts of data to uncover patterns and trends in cyber threats, adding valuable... --- ### Streamline Application Deployment with Microsoft Intune Enterprise App Management > Intune Enterprise App Management is a service set to make the way businesses deploy software easier. And it is part of the Microsoft Intune Suite. Learn about how it works in this article. - Published: 2024-02-13 - Modified: 2024-02-13 - URL: https://petri.com/intune-enterprise-app-management/ - Categories: Endpoint Management - Tags: featured-top-right, intune, Microsoft Intune - Article Type: Overview Packaging and rolling out third-party applications to Windows endpoints has traditionally been a daunting task. It often involves a significant amount of testing and trial and error, and it can become a major time sink for IT Professionals. Recognizing this challenge, Microsoft announced a solution at its Ignite conference - a service set to make the way businesses deploy software easier in the form of Intune Enterprise App Management, which is part of the Microsoft Intune Suite. What is Intune Enterprise App Management? Microsoft's new service offers a catalog of pre-packaged third-party applications that are prepared for deployment. Applications, which previously required a lot of effort to deploy, such as Dropbox, Adobe Acrobat Reader, and other non-Microsoft software, can now be rolled out effortlessly to devices managed by Intune. The service allows IT department to streamline their workflows and free up valuable time for other important tasks. Manage apps through their full lifecycle using Enterprise App Management The benefits of Intune’s Enterprise Application Management extend beyond initial deployment. It also addresses one of the biggest challenges of software management: keeping applications up to date. Every time an app is updated or receives a bug fix, it means another round of testing and packaging by the IT department. With Intune Enterprise Application Management, this burden is shifted to Microsoft. Microsoft takes responsibility for ensuring that once an application is deployed, it remains current with the latest updates and security patches. Microsoft Intune Enterprise App Management app catalog (Image Credit: Microsoft)... --- ### Cybercriminals Compromise Senior Executives' Azure Accounts - Everything You Need to Know - Published: 2024-02-13 - Modified: 2024-02-13 - URL: https://petri.com/cybercriminals-senior-executives-azure-accounts/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Key Takeaways: A sophisticated cyber campaign is actively targeting Microsoft Azure corporate accounts, posing a significant risk to organizations' sensitive data and financial assets. The attack is particularly aimed at senior executives, with malicious tactics such as phishing emails and multi-factor authentication manipulation used to compromise their Azure accounts. Security researchers emphasized the need for continuous monitoring and proactive security measures to thwart potential cyber threats. Cybersecurity researchers have revealed an ongoing campaign targeting Microsoft Azure corporate accounts. The malicious campaign is leading to the theft of sensitive corporate data and financial assets from numerous organizations. Specifically, Proofpoint researchers first spotted the ongoing activity back in November 2023. The threat actors used malicious emails with shared documents to target employees with access to corporate resources across affected organizations. Some of these documents included embedded links that redirect users to malicious phishing pages. “The affected user base encompasses a wide spectrum of positions, with frequent targets including Sales Directors, Account Managers, and Finance Managers. Individuals holding executive positions such as “Vice President, Operations”, "Chief Financial Officer & Treasurer" and "President & CEO" were also among those targeted,” Proofpoint researchers explained. After the initial breach, the attackers utilize different forms of multi-factor authentication to prevent the victims from regaining access to their compromised accounts. In some instances, the hackers registered their own phone number or authenticator app to receive verification codes. They also perform lateral movement within affected organizations through Exchange Online. Examples of MFA manipulation events Additionally, the attackers managed to... --- ### Microsoft Teams Gets New Copilot Experience with Personalized Prompts - Published: 2024-02-13 - Modified: 2024-02-13 - URL: https://petri.com/microsoft-teams-copilot-experience/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams now integrates a new Copilot experience that replaces the existing Microsoft 365 Chat app. Users can expect improved functionality with this update, including personalized prompts and insights tailored to individual needs. The new Copilot app in Teams also allows users to access their chat history. Microsoft has started rolling out a new AI-powered Copilot experience in Microsoft Teams. The new app brings new features and improvements to replace the existing Copilot application in Teams, previously known as Microsoft 365 Chat. Last year, Microsoft Teams introduced a new Copilot integration to improve productivity and collaboration during meetings. The AI assistant can create meeting drafts, generate real-time summaries, suggest action items, and help catch up on missed meetings. It can also answer specific questions related to chats, summarize them, and identify key information. Copilot can also pull out important discussion points from a conversation to help users create lists or tables. Microsoft highlights that the new Copilot experience is better than the existing Microsoft 365 Chat app in Teams. “The new Copilot in Teams is easier to find, to use, and has better functionality for a better experience. This will give you the same Copilot experience in Teams as you get from microsoft365. com, Bing, and copilot. microsoft. com,” Microsoft explained. The new Copilot app in Teams allows users to access their chat history and a library of prompts via Copilot Lab. This Copilot Lab service is designed for Microsoft 365 commercial customers who want to learn how to be more... --- ### Microsoft to Fix Outlook Syncing Issues Caused by Broken Exchange ActiveSync Connections - Published: 2024-02-12 - Modified: 2024-02-12 - URL: https://petri.com/microsoft-outlook-exchange-activesync-connections/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has acknowledged a new issue that is currently preventing some Outlook users from connecting to email servers via Exchange ActiveSync. The bug impacts all Outlook users who installed Office 365 version 2401, which was released last month. Microsoft has provided a temporary workaround to help affected users address the problem on their computers. Microsoft has acknowledged a new issue affecting select Outlook users, which prevents the desktop apps from connecting to email servers through Exchange ActiveSync. The company confirmed that this issue impacts Office 365 customers who have installed the update (version 2401) released on January 9. Exchange ActiveSync (EAS) is a protocol that allows mobile devices to synchronize data with Microsoft Exchange Server. It enables users to access information such as contacts, emails, calendars, and tasks even when they are offline. The protocol helps to ensure that any changes made on one device are reflected across all devices that are connected to Exchange Server. EAS also supports various security features to protect sensitive data in case a device is lost or stolen. According to a Reddit thread, several users have been complaining about the broken ActiveSync connections since the beginning of February 2024. Users reported that they've been experiencing a problem recently where their emails aren't syncing properly with the email server. In some cases, the email messages automatically disappear from users’ inboxes after a few days. Fortunately, Microsoft is investigating the problem and a fix is expected to be available in the coming weeks. “After... --- ### What is Azure AD B2B? - Published: 2024-02-12 - Modified: 2024-12-03 - URL: https://petri.com/what-is-azure-ad-b2b/ - Categories: Identity Management, Microsoft Entra ID (Azure AD) - Tags: Azure AD, featured-top-right, Identity Management, Microsoft Entra ID - Article Type: Overview Discover the benefits of using Azure AD B2B in your organization. Learn how it can improve collaboration and streamline access for external partners, and boost your users' productivity, safely and securely. What is Azure B2B? Microsoft Entra B2B (formerly Azure AD B2B) is a feature/service within the Microsoft Entra ID that allows collaboration between your users and trusted guests from outside organizations. The biggest benefit is the seamless and secure framework for your partners, clients, and vendors to access your resources and applications. B2B is enabled by default in all Microsoft Entra ID tenants, but no connections exist at tenant creation. There are many administrative settings and controls to manage your connection to other companies. What are the differences between Azure AD Federation and Azure B2B? Azure AD Federation is focused on single sign-on (SSO) and identity federation between your on-premises Active Directory and Microsoft Entra ID (Azure AD). This is performed when you want to extend your on-premises AD with Azure AD. It allows for seamless integration and SSO for your users in on-premises AD and Azure AD. Azure AD Federation lets you use protocols like SAML (Security Assertion Markup Language) and OpenID Connect to create trusts between environments. This can be a rather complicated setup as it involves enabling Active Directory Federation Services (AD FS) on Windows Servers in your on-premises Active Directory. Microsoft highly recommends moving away from this 'legacy' technology and embracing Microsoft Entra ID. I'll offer more information on this later. The main difference... --- ### Microsoft's New Outlook for Windows Adds Teams Chat Feature to Enhance Real-Time Collaboration - Published: 2024-02-12 - Modified: 2024-02-12 - URL: https://petri.com/microsoft-teams-chat-outlook-for-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has added a new Teams chat experience into the new Outlook for Windows client. The new feature allows users to send a quick message to meeting participants directly from Outlook. Microsoft will soon let users open email messages saved in . eml, . msg, and . oft files directly within the new Outlook for Windows client. Microsoft has started rolling out an update that brings a new Teams chat integration into the new Outlook for Windows. The new feature allows users to send a quick Teams message to meeting participants or review a chat without leaving the Outlook desktop app. According to Microsoft, Outlook users can start Teams chats from meeting details, calendar peek, My Day, the context menu, reminders, and other entry points. The meeting chat will open in the web version of Microsoft Teams if the user doesn’t have the desktop app installed on their Windows devices. The new feature aims to enhance real-time discussions for users who often participate in Teams meetings. It should streamline collaboration for organizers and participants as well as eliminate the need to send emails back and forth. Microsoft Teams chat integration in the new Outlook for Windows respects meeting policies Microsoft notes that the policies for Teams meeting chat set by IT administrators will also be applicable when a user enters a meeting through the new Outlook for Windows. This means that if the organizer has disabled the chat feature until the meeting begins, the said policy will apply to all users... --- ### Microsoft Enters Talks with CISPE to Address Cloud Licensing Complaints - Published: 2024-02-09 - Modified: 2024-02-09 - URL: https://petri.com/microsoft-talks-cispe-cloud-licensing/ - Categories: Cloud Computing, Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Key Takeaways: Microsoft is in talks with the Cloud Infrastructure Services Providers in Europe (CISPE) to address concerns about anti-competitive licensing policies. CISPE lodged a formal complaint with the European Commission against Microsoft in November 2022. CISPE has set a deadline for Microsoft to make substantial progress by the first quarter of 2024. Microsoft has recently started talks with the Cloud Infrastructure Services Providers in Europe (CISPE) to address an ongoing antitrust case. These discussions aim to resolve concerns regarding the company's anti-competitive licensing policies. The Cloud Infrastructure Service Providers in Europe (CISPE) association is an organization that represents cloud infrastructure providers based in Europe. It includes both local European businesses and larger cloud service providers such as Amazon Web Services (AWS). In 2019, Microsoft introduced a new policy requiring customers to purchase an additional license if they wanted to use their on-premises licensing on any cloud platform. CISPE launched a formal complaint with the European Commission against Microsoft back in November 2022. The complaint alleged that Microsoft is making it expensive for customers to run Windows, Windows Server, or Office on cloud infrastructure apart from Azure. Microsoft made a series of changes to its licenses to make it more cost-effective for EU customers to run its software on other cloud platforms back in August 2022. However, these changes only apply to independent cloud providers and do not include Amazon Web Services, Google, and Alibaba. CISPE demands progress on cloud licensing policies Now, Microsoft is taking proactive measures to address... --- ### First Ring Daily: Copilot Gets Bigger - Published: 2024-02-09 - Modified: 2024-02-09 - URL: https://petri.com/first-ring-daily-copilot-gets-bigger/ - Categories: Windows, Windows 10, Windows 11 - Tags: copilot, News, Windows 10, Windows 11 - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft making Copilot on Windows open in an expanded window, and how the built-in version of the AI assistant still needs some work. On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft making Copilot on Windows open in an expanded window, and how the built-in version of the AI assistant still needs some work. --- ### Microsoft's New PC Manager App Now Available to Let Users Monitor Their Computer's Health - Published: 2024-02-08 - Modified: 2024-02-08 - URL: https://petri.com/microsoft-pc-manager-app-available/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft's PC Manager app is now available for all Windows 10 and 11 users after being in public beta in select regions since 2022. The app offers a range of features including system resource optimization, issue fixing, malware detection, and performance improvement. PC Manager also provides quick access to various Windows tools including a screenshot tool, calculator, currency converter, and Notepad. Microsoft’s new PC Manager app is now available for all users on Windows 10 and Windows 11 devices. The app has been available in public beta in select regions since 2022, allowing users to free up system resources and address performance issues on their Windows PCs. Microsoft developed PC Manager as an alternative to CCleaner to help users speed up and clean up their computers with a few clicks. Additionally, PC Manager can help detect any potential issues with the Windows operating system such as malware, viruses, and other security threats. “It integrates Windows antivirus engine, comprehensively building a computer protection system,” Microsoft explained. “Based on user pain points, it provides a one-stop computer problem-solving solution, addressing issues such as malicious system tampering, insufficient computer space, system lag, and excessive pop-up ads, creating a native Windows system experience for users. ” The PC Manager application offers a Smart Boost feature that automatically improves the system's performance when RAM usage reaches a certain threshold or when the temporary files folder exceeds the 1 GB file size limit. Moreover, the app enables users to scan their Windows PC for various... --- ### Enhanced Data Governance: Microsoft Purview Now Supports Scanning Fabric Items - Published: 2024-02-08 - Modified: 2024-02-08 - URL: https://petri.com/microsoft-purview-fabric-items/ - Categories: Identity Management - Tags: Microsoft Purview, News - Article Type: News Key Takeaways: Microsoft Purview has introduced support for Fabric items to enhance data governance capabilities for organizations. The new feature allows IT admins to easily visualize data lineage within their Fabric workspaces. It helps customers gain insights into asset relationships, upstream and downstream dependencies and ensures data integrity. Microsoft has recently added support for Fabric items to its Microsoft Purview service. The new feature allows IT admins to scan a Fabric tenant and view metadata and lineage from Fabric items such as Power BI. Microsoft Fabric is a new end-to-end data and analytics platform built on Microsoft’s OneLake Data Lake. It offers various features (such as Synapse Data Activator, OneLake Data Factory, and Power BI) to let customers create, analyze, and govern data insights. Additionally, there is a new no-code developer experience that lets administrators monitor data in real-time as well as trigger actions and alerts based on incoming information. Microsoft Purview is a cloud-based solution that allows organizations to manage and govern their data. It provides a central location to discover, catalog, and understand data across on-premises, multi-cloud, and software-as-a-service environments. “When a Fabric is scanned, Microsoft Purview writes information about Fabric items to the Purview data map, and access to that metadata is governed by Microsoft Purview access control. This allows administrators to give users metadata access for data discovery or governance, without requiring those users to have read permissions on the underlying data sources,” Microsoft explained. How to get lineage from Fabric items into Microsoft Purview To... --- ### What is Azure AD B2C? > Provide external users with seamless sign up and logins for your apps. Learn more about the features and benefits of Azure AD B2C in this article. - Published: 2024-02-07 - Modified: 2024-02-12 - URL: https://petri.com/what-is-azure-ad-b2c/ - Categories: Identity Management, Microsoft Entra ID (Azure AD) - Tags: Azure AD, Azure AD B2C, featured-top-right, Microsoft Entra ID - Article Type: Overview Azure Active Directory (Azure AD) B2C is a cloud-based customer identity and access management service that provides business-to-customer (B2C) Identity-as-a-Service. It allows organizations to secure and manage their customer-facing applications - so external parties can seamlessly sign up and log in. Learn more about the features and benefits of Azure AD B2C below. What is Azure AD B2C? Azure AD B2C is a Customer Identity Access Management (CIAM) offering from Microsoft that is based on Azure Active Directory (now Microsoft Entra ID). The solution provides business-to-consumer Identity-as-a-Service. It lets your customers use their preferred identities to get single sign-on (SSO) access to your tenant and applications with appropriate permissions. You can set up and maintain this access easily in the Azure Portal. What is Azure AD B2C (Image Credit: Microsoft) Because Azure AD B2C is a Platform-as-a-Service (PaaS), Microsoft takes care of supporting millions of users and billions of authentications per day offering stability, monitoring, and security peace of mind. Azure AD B2C features and benefits Azure AD B2C provides many features and benefits for your organization when managing the identities and access of your external users, specifically consumers, partners, and others who interact with your web-based applications. Azure AD B2C features Here are some highlights of Azure AD B2C: Flexible authentication protocols: You can support a diverse myriad of authentication methods like OAuth, OpenID Connect, SAML, and other authentication protocols for a seamless customer experience. Fine-grained access control: Implement access control policies based on user attributes, context, and... --- ### Microsoft Entra Verified ID Gets Face Check Support for Enhanced Identity Verification - Published: 2024-02-07 - Modified: 2024-02-07 - URL: https://petri.com/microsoft-entra-verified-id-face-check/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft's Entra Verified ID service has added Face Check support, allowing organizations to verify a user's identity by matching selfies with trusted documents. The integration of Face Check adds a crucial layer of security to identity verification processes while preserving user privacy. The Face Check feature operates on a consent-based mechanism, setting it apart from traditional facial recognition technologies employed in surveillance. Microsoft has introduced new Face Check support to its Entra Verified ID service. The feature allows organizations to verify a user's identity by matching their selfie with trusted documents like government IDs or employee credentials. Microsoft Entra Verified ID is a managed service based on open standards that is used to create free verifiable credentials. The service uses a decentralized blockchain electronic ledger to let users submit their identity details and revoke them. Verified ID helps customers to verify workplace credentials, certifications, education status, and citizenship. It’s available for free for all Entra ID customers. How does the Face Check service work? The Face Check feature leverages Microsoft’s Azure AI services to match the user’s real-time selfie to their verified photo ID. Microsoft Authenticator’s Verified ID feature derives a confidence score and shares it with the organization that requested the information. However, it doesn’t share any sensitive information, including the user’s photo. “Face Check adds a critical layer of trust by performing facial matching between a user’s real-time selfie and a photo. The facial matching is powered by Azure AI services. By sharing only the match... --- ### Microsoft's Universal Print App Now Available for macOS Users - Published: 2024-02-06 - Modified: 2024-02-06 - URL: https://petri.com/microsofts-universal-print-macos/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft's new Universal Print Mac app is now available to download on the App Store. The new app enables users to find and print to their organization's cloud printers from Mac devices. IT administrators have the option to use MDM or Intune to automatically provision the Universal Print Mac app for end users. Microsoft has released a new Universal Print app for macOS devices. The preview version of the app enables users to find and print to their organization's cloud printers from Mac devices. The new Universal Print Mac app allows users to print documents from any location using a Mac device connected to the Internet. Moreover, it provides an intuitive search experience that lets users quickly and easily find the printers. They can also receive their print jobs by scanning a QR code with their iPhones. “Universal Print boosts your productivity by offering streamlined location-based printer discovery when finding and installing printers. When it comes time to print something, there’s zero learning curve – print the same way you already print today,” Microsoft explained. Universal Print Mac app prerequisites Microsoft says that users can download the Universal Print app from Apple’s App Store. They will need to sign into their Entra ID accounts to find and install printers on macOS devices. However, keep in mind that users need to have macOS Ventura 13. 3 (or later) installed on their machines. Additionally, IT admins can use Mobile Device Management (MDM) or Intune to provision the Universal Print Mac app... --- ### Microsoft and AI: What Is the Copilot Semantic Index and How Does It Work? > Copilot Semantic Index uses vectorized indices to build a conceptual map of data by linking it together in meaningful ways, much like the human brain does. Find out how it works in this article! - Published: 2024-02-06 - Modified: 2024-03-21 - URL: https://petri.com/copilot-semantic-index/ - Categories: Microsoft 365, Microsoft Copilot - Tags: AI, Microsoft 365, Microsoft 365 Copilot - Article Type: Overview Microsoft recently announced that it is taking a significant step forward by enhancing its search indexing capabilities with AI technology in the form of Copilot Semantic Index, which is part of Copilot for Microsoft 365. A semantic index uses vectorized indices to build a conceptual map of data by linking it together in meaningful ways, much like the human brain does. It uses information such as keywords and personalization, and social matching capabilities that are already built into Microsoft 365 to make connections between separate pieces of information. Using these connections, a semantic index improves how businesses interact with and leverage their data, offering a more intuitive, efficient, and effective way to navigate through the vast amounts of information stored within corporate environments. In this article, I’ll look in more detail at how semantic indexing works and the potential benefits for organizations. The challenge with current indexing technologies Traditional indexing methods, while useful, often fall short when it comes to understanding the context and conceptual connections between different data points. Microsoft 365's existing index is no exception. Despite its capability to organize and make data searchable, it occasionally struggles with delivering the precision and relevancy users need. The introduction of the Copilot Semantic Index aims to address these limitations by providing a more refined and human-like approach to data association and retrieval. What is the Copilot Semantic Index? Could it be a game-changer for data search The Copilot Semantic Index is not just an incremental update; it represents a... --- ### Windows Copilot Gets New Integration with Copilot for Microsoft 365 - Published: 2024-02-06 - Modified: 2024-02-06 - URL: https://petri.com/windows-copilot-copilot-for-microsoft-365/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft 365 for Copilot is now available within the Copilot for Windows sidebar. Copilot for Microsoft 365 brings Graph-grounded chat capabilities to Copilot in Windows, such as asking questions and writing emails. Users can switch toggle between the regular Copilot experience and Copilot for Microsoft 365. Microsoft announced yesterday a new Copilot for Microsoft 365 integration within the Copilot for Windows sidebar experience. The new feature is currently rolling out to all commercial customers with Copilot for Windows enabled and a Copilot for Microsoft 365 license. Copilot for Windows is an AI-powered digital assistant that is integrated into Windows 11 and Windows 10. It works with a button on the right side of the taskbar and lets users open the chatbot to answer queries and generate text. The AI assistant also allows Windows 11 users to perform tasks like creating content, organizing windows, and changing various system settings. Once enabled, the new Copilot for Microsoft 365 experience in the Windows sidebar appears as a toggle button between Work and Web options. The feature allows users to create documents, summarize emails, catch up on Teams meetings, and ask work-related questions. “In the Copilot in Windows sidebar, this appears as a toggle between “Work” and “Web”, allowing users to choose between leveraging the capabilities of Copilot for Microsoft 365 or Copilot with commercial data protection (formerly known as Bing Chat Enterprise). This offers a new, easy way for users to access Copilot in Microsoft 365 features in addition to existing... --- ### Microsoft to Add Linux-Like Sudo Command to Windows Server 2025 - Published: 2024-02-05 - Modified: 2024-02-05 - URL: https://petri.com/windows-server-2025-sudo-command/ - Categories: Windows Server - Tags: News, Windows Server, Windows Server 2025 - Article Type: News Key Takeaways: Microsoft seems to be working on bringing sudo command support to Windows Server 2025. The new feature will allow users to execute administrative commands without logging in as the root user. The latest Windows Server preview build includes a new setting for enabling sudo with three configurable options. Microsoft appears to be working on adding sudo command support to Windows Server 2025. The new feature has been spotted in the latest Windows Server preview build and it was shared by the X/Twitter account Albacore last week. The sudo (superuser do) command allows users to execute commands with administrative privileges on a user account. It allows regular users to perform administrative tasks on a system without having to log in as the root user. For example, the sudo apt update command can be used to update system packages on Debian-based Linux distros. As shown in the screenshot below, Microsoft has started testing a new feature that gives users three options for configuring sudo behavior. The first option allows users to execute the sudo command in a new window. The second option could temporarily disable input from the mouse or keyboard to prevent unauthorized actions. And the third option, called "inline", allows the Sudo command to execute within the existing window. New sudo settings in Windows Server 2025 Windows Server 2025 to receive five years of mainstream and extended support Microsoft plans to release Windows Server 2025 for commercial customers in the second half of 2024. It will be available... --- ### Azure Virtual Desktop for Azure Stack HCI Now Generally Available - Published: 2024-02-05 - Modified: 2024-02-05 - URL: https://petri.com/azure-virtual-desktop-for-azure-stack-hci-generally-available/ - Categories: Azure Stack HCI - Tags: Azure Stack HCI, Azure Virtual Desktop, News - Article Type: News Key Takeaways: Azure Virtual Desktop for Azure Stack HCI is designed for organizations seeking to run virtualized desktops and applications in on-premises environments. The new service aims to enhance performance in regions with limited Azure cloud connectivity by placing session hosts closer to users. However, certain features like autoscale and Azure Virtual Desktop Insights may not be available in this deployment scenario. Microsoft has announced the general availability of Azure Virtual Desktop for Azure Stack HCI. The new service enables commercial customers to run virtualized desktops and applications in on-premises environments. Azure Virtual Desktop is a cloud-based service that enables users to access virtualized Windows desktops and applications on multiple devices. The service is designed to be fully optimized for Windows 11 and Windows 10 multi-session capabilities, which enables users to share a virtual machine while ensuring isolation between user sessions. Azure Stack HCI is a virtualized workload solution that allows organizations to run Windows and Linux apps and services in a hybrid environment. The service makes it easier for businesses to move their on-premises workloads to the cloud. Azure Stack HCI provides support for virtualization technologies such as Hyper-V, which allows users to run multiple virtual machines on a single server. Azure Virtual Desktop for Azure Stack HCI enables organizations to provide session hosts closer to their users’ location. This helps to improve performance for regions with limited connectivity to the Azure public cloud. The solution also allows organizations to maintain residency requirements by keeping their user and app... --- ### First Ring Daily: Windows New Setup - Published: 2024-02-02 - Modified: 2024-02-02 - URL: https://petri.com/windows-new-setup/ - Categories: Windows Client OS, Windows Server - Tags: First Ring Daily, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the new setup process coming to Windows and Windows Server. In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the new setup process coming to Windows and Windows Server. --- ### Microsoft Intune Suite Gets Enterprise App Management and Advanced Analytics - Published: 2024-02-02 - Modified: 2024-02-13 - URL: https://petri.com/microsoft-intune-suite-enterprise-app-management/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft has introduced three new solutions to its Intune Suite: Enterprise Application Management, Advanced Analytics, and Microsoft Cloud PKI. The Enterprise Application Management feature addresses security risks associated with outdated applications by streamlining the process of app discovery, packaging, deployment, and updates. Microsoft Cloud PKI is a new cloud-based solution facilitating certificate management for devices without the need for on-premises infrastructure. Microsoft has introduced three new solutions to its Intune Suite: Enterprise Application Management, Advanced Analytics, and Microsoft Cloud PKI. These services aim to enhance security, optimize user experiences, and streamline IT and security operations within enterprise environments. Microsoft launched its new cloud-based Intune Suite for commercial customers in March 2023. It’s designed to help organizations streamline their endpoint management experience and enhance security posture. Microsoft Intune Suite provides a collection of tools for configuring, monitoring, and securing endpoints (such as computers, mobile devices, and servers) within an organization. Enterprise Application Management Microsoft Intune Enterprise App Management provides a secure enterprise app catalog that helps administrators simplify the process of discovering, packaging, deploying, and updating first and third-party apps on devices. This service makes it easier for enterprises to mitigate security risks and vulnerabilities that can arise from outdated apps. The Enterprise Application Management add-on is available for enterprise customers at a cost of $2 per user per month. “Enterprise App Management streamlines and consolidates the application update process by providing a comprehensive view of all apps that need an update from a single, easy-to-use screen. A list... --- ### Microsoft Adds New Expedite Readiness Report to Windows Update for Business Deployment Service - Published: 2024-02-01 - Modified: 2024-11-19 - URL: https://petri.com/wufb-deployment-service-expedite-readiness/ - Categories: Endpoint Management - Tags: News, Windows Update for Business - Article Type: News Key Takeaways: The new device readiness test feature allows organizations to assess the eligibility of their devices for Windows quality updates before the actual deployment. This capability enables administrators to resolve any issues promptly, enhancing confidence in the overall deployment process. Microsoft's new device readiness test feature is available through Microsoft Graph. Microsoft has released a new device readiness test feature for its Windows Update for Business deployment service. This release allows organizations to evaluate their devices' eligibility for Windows quality updates before the actual deployment process. The Windows Update for Business deployment service allows administrators to approve, schedule, and monitor updates delivered to managed devices through Windows Updates. The cloud-based service works seamlessly with existing Windows Update for Business reports and policies. It helps to ensure that problematic updates are not delivered to devices that could lead to downtime and productivity loss. Microsoft added a new expedite capability to Windows Update for Business in December 2022. This feature enables organizations to speed up the delivery of monthly patches that are considered critical. For example, IT administrators can prioritize the patching of security vulnerabilities that are deemed a high priority for their organization. The expedited updates capability only applies to Windows 11 and Windows 10 security patches. However, commercial customers will require an E3 or E5 license to use the expedited quality updates feature in Microsoft Intune. How does the new device readiness test feature work? Previously, the Windows Update for Business deployment service only allowed administrators to receive post-deployment... --- ### Microsoft Teams Gets New Immersive Spaces and Collaborative Notes Improvements - Published: 2024-02-01 - Modified: 2024-02-01 - URL: https://petri.com/microsoft-teams-updates-january-2024/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams has added support for immersive spaces, powered by Microsoft Mesh, providing a more engaging and interactive meeting experience. A new collaborative notes feature in Teams generates People Specific Links (PSL) by default, catering to organizations with specific file-sharing policies. The external domain activity report details communication with managed domains, while new controls allow administrators to prevent chat message copying and forwarding. Microsoft has published a monthly roundup of all the new features and capabilities added to its Teams collaboration service in January 2024. The company highlighted enhancements like immersive spaces, improved collaborative notes, management features, and new Teams Rooms devices. Chat and meetings features Microsoft Teams has recently introduced a new feature that allows users to participate in immersive 3D meetings. This feature is powered by Microsoft Mesh, which is now out of preview and integrated into Teams. It requires customers to have a Microsoft Teams Essentials, Microsoft 365 Business Basic, Microsoft 365 Business Standard, or Microsoft 365 E3/E5 enterprise subscription. Additionally, Microsoft is expanding the Intelligent Recap capability to Copilot for Microsoft 365 subscribers. This feature will enable the Copilot assistant to provide an AI-powered meeting summary with timeline markers, screen-sharing information, and mentions of participants' names. It will also let users access AI-generated tasks and meeting notes. Microsoft is introducing a new collaborative notes component that will generate a People specific link (PSL) by default. The feature should be useful for organizations that have the file-sharing policy set as specific people. Moreover, Microsoft added... --- ### How to Minimize Your Active Directory Attack Surface - Published: 2024-02-01 - Modified: 2024-05-23 - URL: https://petri.com/active-directory-attack-surface/ - Categories: Active Directory (AD) - Tags: NoAD, NoAds - Article Type: How To, Overview, Sponsored When newly installed, Active Directory’s (AD) default configuration is designed to be easy to use. As a result, attackers can exploit AD to take over your entire network with relative ease. Here’s what you can do to further protect your organization by reducing your Active Directory attack surface. This article is sponsored by Semperis. Securing beyond the default settings to reduce Active Directory attack surface Active Directory is a Microsoft Windows directory service that was first introduced in Windows 2000 towards the end of 1999. It allows IT administrators to manage users, computers, printers, data, and other resources of an organization’s overall network. However, because of its popularity and integration throughout the enterprise, it is a prime target for attackers, threat actors, and cybercriminals. If a bad guy can gain access to your AD, they could potentially access all of your user accounts, applications, databases, and other business information. Microsoft typically touts how they’ve made its ‘default, out-of-box’ configurations more secure over the years, especially for reducing Active Directory attack surface. So why should you make your fresh install of AD more secure? Because hackers can utilize the out-of-the-box AD defaults and discover easily exploitable ingresses in a standard configuration. Therefore, it is vital to review your AD configuration and update it to match your organization’s security and compliance guidelines. CISA / NSA issues guidance on common cybersecurity misconfigurations CISA and the NSA have issued guidance on addressing the most common cybersecurity misconfiguration in large government organizations. These misconfigurations... --- ### Microsoft Outlook to Introduce New Microsoft 365 Groups Experience - Published: 2024-01-31 - Modified: 2024-01-31 - URL: https://petri.com/microsoft-365-groups-outlook/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The revamped Microsoft 365 Groups experience will offer a centralized hub with a new home page, providing quick links to emails, files, events, and members. Users will be able to easily access frequently used groups, recent files, and discover new groups based on their interests. The new Groups experience will begin rolling out to the Outlook web app and the new Outlook for Windows next month. Microsoft plans to release a new update that will allow users to switch from old Microsoft 365 Groups to a new Groups experience in the Outlook web app and the new Outlook for Windows. The new Groups experience will be available in the apps via a toggle button in mid-February. The Microsoft 365 Groups service enables users to collaborate with their colleagues when creating spreadsheets, writing documents, sending emails, and scheduling meetings. Microsoft is revamping the existing experience in Outlook to offer a central hub that will surface important information from the users’ groups. “A new home page, where users can find quick links to emails, files, events, and members to help stay updated on their groups. Users can quickly access frequently used groups, recent files across the groups, discover new groups based on their interests,” Microsoft explained in a message on the Microsoft 365 Admin Center. Microsoft highlights that the new Groups experience will allow users to easily create and share information related to a group as well as manage events and members. Additionally, users will be able to send emails... --- ### Microsoft Entra ID Gets Advanced Customization Options for Certificate-Based Authentication - Published: 2024-01-31 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-entra-id-certificate-based-authentication-customization/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft's Entra ID Conditional Access service now offers advanced controls over certificate-based authentication methods. The authentication strength feature allows IT administrators to specify MFA methods for accessing network resources. Microsoft says that administrators can customize authentication strengths based on properties like Policy OID or issuer. Microsoft has released a new update for its Entra ID Conditional Access service that provides more granular controls over certificate-based authentication (CBA) methods. The advanced CBA options are currently in preview, allowing access to specific resources based on certificate Issuer or Policy Object Identifiers (OIDs) properties. Microsoft Entra ID Conditional Access is a service that lets administrators control access to corporate resources based on specific conditions. They can enforce Conditional Access policies with requirements (such as multifactor authentication (MFA)) to access websites and services. In October 2022, Microsoft introduced the authentication strength feature for its Entra ID Conditional Access service. This feature allows IT administrators to specify the combination of multifactor authentication (MFA) methods that can be used to access network resources. They can choose from various options such as certificate-based authentication, Windows Hello for Business, or FIDO2 methods. Microsoft had previously announced plans to allow administrators to scope authentication methods to specific users and groups. The new granular controls fulfill this promise by providing advanced controls that can be used to customize authentication strengths with certificate-based authentication. The authentication strength feature offers greater control over the use of MFA methods based on factors such as user risk, sensitive resource access, and location... . --- ### Microsoft to Enable Automatic Conditional Access Policies for Entra ID Customers - Published: 2024-01-30 - Modified: 2024-01-30 - URL: https://petri.com/microsoft-enable-conditional-access-policies/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft will enable new automatic Conditional Access (CA) policies for Entra ID customers in February and March 2024. The current implementation of the policies is in a report-only mode, providing administrators with a crucial 90-day period to thoroughly review and make necessary adjustments to the settings before the policies transition into full enforcement. The CA policies address MFA requirements, focusing on Microsoft admin portals, legacy per-user MFA implementation, and mandatory MFA for high-risk sign-ins. Microsoft announced the automatic rollout of new Conditional Access (CA) policies for select Microsoft 365 licenses in November 2023. As of today, these policies are only available in report-only mode, with the activation for commercial customers set for February and March 2024. The report-only mode enables policies to log policy results without enforcing them. Microsoft says administrators had 90 days to review and, if necessary, change or opt out of the CA policies before they became automatically enabled for all organizations. These policies are in place for Microsoft 365 E3 and E5, as well as Microsoft 365 Business Premium subscribers. Microsoft explained that the first policy requires IT admins to complete MFA when signing Microsoft admin portals like Microsoft 365 admin center, Azure, and Exchange admin center. It applies to Entra ID Premium Plans 1 and 2. The second policy is aimed at customers who are still using the legacy per-user multifactor authentication implementation. According to this policy, MFA is mandatory for accessing all cloud applications. The third policy mandates the use of multi-factor... --- ### Top 10 Events to Audit in Active Directory to Uncover Security Risks > In this article, I will show you the top 10 events to audit in Active Directory when laying out your plan. - Published: 2024-01-30 - Modified: 2024-05-10 - URL: https://petri.com/top-10-events-to-audit-in-active-directory/ - Categories: Active Directory (AD) - Tags: featured-top-right, NoAD, NoAds - Article Type: Overview, Sponsored Audit your Active Directory environment to ensure the security of your company’s most valuable assets. Here are the top 10 events to audit in Active Directory to identify risks. Why audit Active Directory? Active Directory provides authentication, account management, and authorization services that are critical for strong access governance. To quickly detect insider threats, organizations should audit the creation of new accounts and security groups, and any modifications to existing users and groups. Preventing attackers from gaining access to Active Directory is crucial for the protection of data and line-of-business applications because it controls access to all your organization’s critical data, infrastructure, and applications. Failure to protect data and applications can lead to costly downtime, reputational damage, and hefty fines from regulatory bodies and government. Depending on the auditing settings, the Event Log of a domain controller can become cumbersome to review.   Generally, utilizing a product such as Semperis Directory Services Protector or Microsoft System Center Operations Manager (SCOM) is advised. Semperis can actively monitor AD changes and identify indicators of compromise.   SCOM can be configured to selectively collect specific events from the Event Viewer to limit the amount of “information overload” one can get when reviewing security logs in Windows.  In both cases, integration with a SIEM (Security Information and Event Management) can greatly simplify the data you have collected. Splunk, Azure Log Analytics, and Microsoft Sentinel are just a few common options that can allow administrators to create useful dashboards to present data taken from the event logs and turn it into something that can help quickly identify, for... --- ### Microsoft Teases New Features with First Windows Server 2025 Preview Build - Published: 2024-01-29 - Modified: 2024-01-29 - URL: https://petri.com/microsoft-windows-server-2025/ - Categories: Windows Server - Tags: News, Windows Server, Windows Server 2025 - Article Type: News Key Takeaways: Microsoft has announced the release of the first Windows Server 2025 Preview Build for IT admins enrolled in the Windows Insider program. Windows Server 2025 will include features such as SMB over QUIC, Active Directory enhancements, hotpatching support, and storage improvements. Microsoft has also introduced a new Windows Server flighting feature, allowing administrators to upgrade systems seamlessly through an in-place OS upgrade. Microsoft has recently announced the release of Windows Server Insider Preview Build 26040. The company also revealed the official branding for the upcoming Windows Server product called Windows Server 2025. In November, Microsoft announced that Windows Server 2025 should include several new capabilities for enterprise customers. The release will introduce features like SMB over QUIC, Active Directory page sizing improvements, hotpatching support, storage enhancements, and a new pay-as-you-go subscription option for enterprise users. A new feature will also let administrators block NTLM authentication for SMB connections. Windows Server 2025 System Properties Last week, Microsoft also announced the launch of flighting for Windows Server Insiders. It enables IT administrators to install new builds via an in-place OS upgrade rather than performing a clean installation. An in-place OS upgrade helps to preserve applications, data, and user settings to make the transition to the new version less disruptive for end users. "From now on, we plan to publish each new build to Windows Update (aka "flighting") at the same time we publish the familiar ISO to our Windows Server insider community. It's your choice to upgrade using Setup as... --- ### Microsoft Provides More Details About 'Midnight Blizzard' Attacks - Published: 2024-01-29 - Modified: 2024-01-29 - URL: https://petri.com/microsoft-midnight-blizzard-attacks/ - Categories: Security - Tags: cybersecurity, Microsoft, News - Article Type: News Key Takeaways: Microsoft has recently disclosed that the Russian state-sponsored hacking group, Midnight Blizzard, employed sophisticated tactics to breach its corporate systems. The attackers created malicious OAuth applications, manipulated user accounts, and utilized residential proxy networks to obfuscate their activities. Microsoft recommends organizations to adopt robust security measures, including auditing privileges and enforcing controls to mitigate the risks posed by state-sponsored hacking groups. Microsoft has recently published an initial analysis of the cyber-attack that was carried out by Russian state-sponsored hackers in late November of 2023. The company has raised concerns that the same threat actor is currently targeting other organizations and has provided detailed guidance to help organizations strengthen their defenses. Last week, Microsoft disclosed that a Russian state-sponsored hacking group called Midnight Blizzard (aka Cozy Bear) used password spray attacks to breach its corporate systems. The attackers compromised the email accounts of several senior executives and employees working in the cybersecurity, legal, and other teams. In a recent blog post, Microsoft has shared further information about the intrusion into its corporate systems. The company says that the hackers managed to gain access by exploiting a legacy test OAuth application that had privileged access to Microsoft's corporate IT environment. OAuth is a popular open standard for token-based authentication, which allows users to sign into apps and services without a password. The attackers also created additional malicious OAuth applications as part of their attack. Additionally, Midnight Blizzard created a new user account to grant their OAuth apps access to the... --- ### First Ring Daily: More Layoffs at Microsoft and Big iOS Changes in the EU - Published: 2024-01-26 - Modified: 2024-01-26 - URL: https://petri.com/first-ring-daily-more-layoffs-at-microsoft-and-big-ios-changes-in-the-eu/ - Categories: Active Directory (AD) - Tags: First Ring Daily, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott Microsoft laying off 1,900 employees in its Gaming division, and Apple announcing big changes for iOS and the App Store in Europe to comply with the Digital Markets Act. In this episode of First Ring Daily, Brad Sams and Paul Thurrott Microsoft laying off 1,900 employees in its Gaming division, and Apple announcing big changes for iOS and the App Store in Europe to comply with the Digital Markets Act. --- ### Microsoft Intune's Latest Update Streamlines Device Management - Published: 2024-01-26 - Modified: 2024-01-26 - URL: https://petri.com/microsoft-intune-update-device-management/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft has released a new UI update to enhance the devices workload experience in Microsoft Intune. Microsoft has also added new device query and Battery Health report features to Intune Advanced Analytics, offering IT administrators detailed insights into device properties and health. Microsoft has extended mobile application management (MAM) for Windows support for U. S. government cloud customers. Microsoft has published a roundup of all the enhancements it made to its Microsoft Intune solution during the month of January 2024. The improvements include an updated device workload experience, new analytics capabilities, and mobile application management support for U. S. government cloud environments. Microsoft has updated the devices workload experience in Microsoft Intune. The company has added additional controls that help reduce the number of clicks required to perform common management and monitoring tasks. Moreover, this release makes it simpler for IT administrators to access metrics and reports. Microsoft plans to make this new devices workload experience available to all public and government cloud customers by the end of February. Microsoft Intune Advanced Analytics gets two new features Microsoft has announced that the device query feature and Battery Health report features will become generally available for Intune customers on February 1. These capabilities will be available as an add-on or as part of the Intune Suite Advanced Analytics. The service enables customers to monitor device health to detect user experience and productivity issues within their organization. With the device query feature, IT admins can use the Kusto Query Language in order... --- ### Microsoft Confirms Windows 10 Optional Update Causes Sysprep Validation Errors - Published: 2024-01-25 - Modified: 2024-01-25 - URL: https://petri.com/windows-10-update-sysprep-validation-errors/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Key Takeaways: Microsoft has acknowledged a bug in Windows 10 version 22H2 that affects users who installed the optional patch (KB5032278) released in November 2023. This bug could trigger 0x80073cf2 errors when using the System Preparation (Sysprep) tool. Microsoft is actively working on a fix expected to be available in a future update. Microsoft has acknowledged a new issue in Windows 10 version 22H2, affecting users who installed the optional patch (KB5032278) released in November 2023. The company detailed on the Windows release health dashboard that the bug could trigger 0x80073cf2 errors when using the System Preparation (Sysprep) tool. The System Preparation tool (or sysprep. exe) is a utility that allows administrators to prepare an installation of Windows for auditing, duplication, and customer delivery. It’s primarily used in enterprise environments where IT admins need to install a customized Windows image on multiple PCs. Sysprep helps to avoid conflicts that could arise from having multiple systems with identical identifiers. Microsoft has confirmed that the problem happens when running the Sysprep tool in audit mode on Windows 10 devices. The audit mode lets IT admins add additional drivers and applications to a Windows installation before it’s prepared and shipped for mass deployment. It helps to streamline the process of setting up new systems in enterprise environments. "After installing updates released November 30, 2023 KB5032278 or later, some Windows devices might be unable to complete preparation using System Preparation Tool (Sysprep. exe) due to issues with the status of a Microsoft Edge package. Affected Windows... --- ### Microsoft Teams Adds Support for 3D Immersive Meetings to Enhance Collaboration - Published: 2024-01-25 - Modified: 2024-01-25 - URL: https://petri.com/microsoft-teams-3d-immersive-meetings/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams users can create 3D immersive spaces with features like avatars and spatial audio, fostering interactive and engaging discussions. The no-code editor allows organizations to customize the virtual environment according to their specific preferences and requirements. Microsoft says that IT admins can manage immersive spaces in Teams through the Teams admin center. Microsoft has announced the general availability of Mesh experiences in Microsoft Teams. The new feature has been available in public preview since November, allowing users to conduct Teams meetings in 3D immersive experiences. Microsoft Mesh allows commercial customers to create 3D spaces for virtual meetings to foster team connections. The immersive spatial audio feature enables participants to have small-group discussions during brainstorming sessions. Microsoft Teams users can create their own 3D avatars, use chat and live reactions, as well as access shared content. The 3D immersive meetings feature is available in Microsoft Teams for Windows or on Meta Quest VR devices. It requires Windows PCs to have 4 cores and 8GB RAM to access immersive spaces. Commercial customers can customize immersive spaces via the no-code editor by adding a logo or video feed. Moreover, it’s possible to use the Mesh Toolkit to create new immersive experiences. “Mesh in Teams elevates engagement in Teams meetings with ready-made 3D immersive spaces crafted to suit your needs, whether it’s a team social gathering, brainstorming session, or a round-table discussion,” said Nicole Herskowitz, Vice President of Microsoft Teams. Microsoft says that Accenture, BP, Takeda, Mercy Ships, and other large... --- ### Microsoft Now Lets Users Preview Links in the Word Web App - Published: 2024-01-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-word-for-the-web-preview-links/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft's latest update for the Word web app introduces a feature that allows users to preview linked pages, bookmarks, and headings within their documents. It helps users to assess the legitimacy of links by reviewing important information such as URLs before deciding to open them. The new feature helps prevent potential malware downloads and phishing attempts. Microsoft has started rolling out a new feature in the Word web app that lets users preview linked pages, bookmarks, and headings within the document. The new feature enhances user convenience and security by enabling users to assess linked pages within their documents without opening them separately. Previously, users had to leave the document to view an embedded link, such as other Office files or webpages in the Word web app. The new feature users to make informed choices and significantly reduces the risk of falling victim to malicious downloads or phishing schemes. Additionally, Microsoft has added buttons to the preview window, which make it easier to perform actions like copying, editing, and removing the link. “It also helps you assess the legitimacy of links by showing relevant information such as the URL of the webpage.   Based on that information, you can decide whether you want to leave the document you’re in and review the linked information, or just skip and continue with the review of the document you are in,” Microsoft explained. How to preview links in the Word web app To try out the new feature, Microsoft Word users will need... --- ### Microsoft's Migration Manager Update Enhances Data Migration for Businesses - Published: 2024-01-24 - Modified: 2024-01-24 - URL: https://petri.com/microsofts-migration-manager-update/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft's Migration Manager tool has received a series of updates to enhance security and streamline the migration process for organizations. Migration Manager now allows IT administrators to migrate Google Forms definitions and results to Microsoft Forms. Other capabilities include file-level permissions support and the ability to manage multiple migrations simultaneously. Microsoft announced yesterday a slew of updates to enhance its Migration Manager solution. The new features focus on bolstering security and ensuring a smoother migration experience for commercial customers. Migration Manager is a powerful tool that allows organizations to migrate their data from various sources (like on-premises file shares, Google Drive, BOX, and Dropbox) to Microsoft 365. It lets customers configure one or more computers or virtual machines (VMs) as migration “agents” to streamline the management of large file share migrations. First off, Migration Manager has added a new feature that allows IT admins to migrate Google Forms definitions and results to Microsoft Forms. This capability should make it easier for enterprise customers to move to Microsoft Forms. Microsoft has recently released a new tool that enables administrators to identify incompatible formulas and invalid embedded links in Google Sheets during the scanning phase of the migration process. The "Sheet scan" feature can be enabled in the Migration Manager project settings for a more thorough scanning of Google Sheets. Customers have the option to download sheet scanning reports for reviewing and addressing the identified issues. Additionally, Migration Manager now supports the migration of file-level permissions. Microsoft says that IT... --- ### Microsoft Teams Gets New Default Gallery Experience, Other Meeting Features - Published: 2024-01-23 - Modified: 2024-01-23 - URL: https://petri.com/microsoft-teams-new-default-gallery-experience/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams has introduced a new default gallery view, optimizing the display of meeting participants in a visually appealing 16:9 aspect ratio. Microsoft Teams is also simplifying meeting joins with a redesigned invite layout and shortened meeting links. Microsoft Teams free users will now retain access to chat even after the meeting concludes. Microsoft Teams continues to set the pace with a slew of new features and capabilities aimed at improving the meetings experience. The first new feature the company highlighted today is a new default gallery experience that will be available in public preview later this month. Microsoft says that the new default gallery experience displays all meeting attendees in tiles that have a 16:9 aspect ratio. The new gallery view will be available for all types of meetings, irrespective of the size or content being shared. Microsoft Teams uses AI to optimize the viewpoint of virtual attendees who speak or raise their hands during a meeting. Microsoft Teams meetings now give users the ability to customize the number of participants that are visible on their screens. Users have the option to select from 4, 9, 16, and 49 participants based on their personal preferences. In addition, Microsoft Teams allows attendees to hide their own video tile from the gallery view to reduce distractions. New default gallery experience Updates to the meeting join experience Microsoft has announced that it will be making improvements to the meeting join process in Microsoft Teams. A new simplified meeting invite will... --- ### Microsoft Defender Vulnerability Management Gets New Tool to Target Vulnerable Software Components - Published: 2024-01-23 - Modified: 2024-01-23 - URL: https://petri.com/microsoft-defender-vulnerability-management-update/ - Categories: Security - Tags: Microsoft Defender Vulnerability Management, News - Article Type: News Key Takeaways: Microsoft's new Vulnerable Components Inventory feature provides IT admins with a comprehensive tool to identify and manage vulnerabilities within their software components. This integration enhances the organization's ability to discover, prioritize, and remediate security threats. Microsoft plans to expand the coverage for software components to ensure robust protection against emerging risks. Microsoft has released a new dedicated inventory in public preview for its Defender Vulnerability Management solution. The new Vulnerable Components Inventory feature allows IT administrators to actively detect and address known vulnerabilities in software components used within their enterprise environments. Microsoft Defender Vulnerability Management is a security solution that enables organizations to discover, prioritize, and remediate security threats and misconfigurations across endpoints and cloud workloads. The service provides integration with the Endpoint Detection and Response (EDR) solution and offers other security capabilities such as application block, threat intelligence, and agent-based or agentless scanning. The Vulnerable Components Inventory feature enables IT administrators to proactively identify affected devices, prioritize security risks, and take measures to mitigate them. It is designed to enhance the overall security posture and prevent cyberattacks. This inventory includes a comprehensive list of software components that have a history of critical vulnerabilities. Currently, the vulnerable components inventory feature supports various components, such as Apache Log4j, Apache Commons Text, Apache Struts, WebP (libwebp), OpenSSL, Spring Framework, and LiteDB. Security teams can view basic information for each vulnerable component, including its name, vendor, active threats or alerts, and the impact on the overall exposure score. Microsoft is actively... --- ### Microsoft Teams to Let Meeting Participants Create Collaborative Notes - Published: 2024-01-22 - Modified: 2024-01-22 - URL: https://petri.com/microsoft-teams-meeting-collaborative-notes/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft is improving the collaborative notes feature in the Microsoft Teams desktop app. Participants will be able to add meeting agendas, notes, and follow-up tasks on the Teams calendar details page before, during, and after the meeting. The feature is expected to roll out to commercial customers in February 2024. Microsoft is set to improve the collaborative notes experience within its Microsoft Teams desktop client. The new feature will allow all participants to create collaborative notes and agendas to enhance productivity during Teams meetings. Microsoft Teams offers a collaborative meeting notes feature that enables users to create and edit notes with other meeting participants. This feature is helpful because it allows users to plan meeting agendas, write important details, and allocate tasks during and after a Teams meeting. Collaborative notes are powered by Loop components, which sync across Word, Outlook, Whiteboard, and other Microsoft 365 apps. Currently, only meeting organizers can create collaborative notes in Microsoft Teams meetings. However, in the upcoming release, all meeting attendees will be able to add the meeting agenda, notes, and follow-up tasks on the Teams calendar details page before, during, and after the meeting. However, the option to hide the meeting notes will only be available to the organizers. “The Meeting notes will be shown on the right pane of the meeting window, and they can be opened in the browser or on a second monitor. Participants can continue real-time collaboration in meetings. When participants are assigned a task, they will also... --- ### Microsoft’s Corporate Email Accounts Breached in Russian Espionage Attacks - What You Need to Know - Published: 2024-01-22 - Modified: 2024-01-22 - URL: https://petri.com/microsofts-corporate-emails-russian-attacks/ - Categories: Security - Tags: cyberattacks, Microsoft, News - Article Type: News Key Takeaways: Microsoft exposed a recent cyberattack by Russian state-sponsored hackers, Midnight Blizzard, who successfully exploited a weak password to breach the company's corporate network. The hack provided unauthorized access to the email accounts of senior executives working in legal and cybersecurity teams. Microsoft detected the security breach on January 12 and emphasized that it did not affect customer accounts. Last week, Microsoft disclosed that Russian state-sponsored hackers exploited a weak password to infiltrate its corporate network. The threat actor (dubbed Midnight Blizzard) gained unauthorized access to the email accounts of its senior executives and employees working in legal and cybersecurity teams. Microsoft detailed that the Russian hacking group (also known as Nobelium or APT29) used password spray attacks to compromise its corporate systems in November 2023. The attackers managed to gain access to a legacy non-production Microsoft test account. The compromised account didn’t use multifactor authentication (MFA), which allowed the attackers to use commonly used passwords to breach the account. The hackers managed to infiltrate a limited number of Microsoft's top-level and sensitive employee accounts. They were able to obtain a few email messages, files, and attachments from the corporate mailboxes. Microsoft's preliminary investigation indicates that the attackers wanted to discover information the company had about their activities. Russian espionage attack didn’t affect Microsoft’s customer accounts Microsoft first detected the security breach on January 12, 2024. The company claims that the attack did not impact customer accounts, source code, AI systems, or production systems. However, some cybersecurity experts noted... --- ### Microsoft Defender for Cloud Gets New Agentless Malware Scanning Capabilities for VMs - Published: 2024-01-19 - Modified: 2024-01-19 - URL: https://petri.com/microsoft-defender-for-cloud-agentless-malware-scanning/ - Categories: Security - Tags: Microsoft Defender for Cloud, News - Article Type: News Key Takeaways: Microsoft Defender for Cloud has added support for agentless malware scanning for servers hosting virtual machines, extending vulnerability assessment coverage without the need for a dedicated assessment agent. The new capability works seamlessly across virtual machines hosted on AWS, Azure, and GCP. The agentless malware scanning capability is enabled by default for organizations with Microsoft Defender for Servers Plan 2 subscriptions. Microsoft Defender for Cloud has introduced support for agentless malware scanning for servers hosting virtual machines. The new feature is designed to help organizations assess software vulnerabilities on VMs without requiring the installation of Defender for Endpoint. Microsoft Defender for Cloud already supports various agent-based vulnerability assessment solutions, such as Qualys, BYOL, and Microsoft Defender Vulnerability Management (MDVM). Agent-based vulnerability scanning is a technique that allows users to install an agent on the target machine. The agent collects data about the machine and sends it the scanning tool for further analysis. How does agentless malware scanning work? Agentless scanning extends the vulnerability assessment coverage to server workloads. It uses the Microsoft Defender Vulnerability Management engine to analyze security flaws in the software installed on their virtual machines. For example, organizations may have misconfigurations and security issues in older or new virtual machine setups. “While traditional Endpoint Detection & Response security agent (EDR) offers unparalleled depth in threat prevention, detection and response, agentless scanning for cloud VMs stands out as a flexible, lightweight option, particularly effective for rapid deployment in new environments, temporary workloads, or for providing initial... --- ### First Ring Daily: Over 700 Trackers in the New Outlook for Windows - Published: 2024-01-19 - Modified: 2024-01-19 - URL: https://petri.com/first-ring-daily-over-700-trackers-in-the-new-outlook-for-windows/ - Categories: Microsoft 365, Outlook - Tags: First Ring Daily, News, Outlook - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott share more than 700 reasons you probably won't want to use the new Outlook app. Indeed, a recent report from competitor Proton described the new web-based Outlook app as a “surveillance tool for targeted advertising. ” --- ### CISA: Androxgh0st Malware Poses Serious Threat to Microsoft 365 and AWS Credentials - Published: 2024-01-19 - Modified: 2024-01-19 - URL: https://petri.com/androxgh0st-malware-microsoft-365-aws/ - Categories: Security - Tags: AWS, cybersecurity, Microsoft 365, News - Article Type: News Key Takeaways: The US Cybersecurity and Infrastructure Security Agency (CISA) and FBI have jointly issued a warning about the emergence of the Androxgh0st malware. This Python-based malware focuses on vulnerable Apache webservers and websites that utilize the Laravel Web application framework. The CISA and FBI have urged administrators to adhere to recommended best practices to mitigate the potential impact of Androxgh0st malware attacks. The US Cybersecurity and Infrastructure Security Agency (CISA) and FBI have issued a warning regarding the recently discovered Androxgh0st malware. This malicious campaign empowers threat actors to steal credentials and deploy malicious payloads, specifically targeting vulnerable Apache web servers and websites. The malware dubbed "Androxgh0st" was first discovered by the cybersecurity firm Lacework back in December 2022. The Python-based malware is designed to target Apache webservers and websites using the Laravel Web application framework. It enables attackers to steal data (like credentials and API keys) from Laravel . env files and deploy Web shells on vulnerable systems. Laravel . env files are used to store sensitive information that can be used to access Microsoft 365, Amazon Web Services (AWS), and other high-profile applications. "If the . env file is exposed, threat actors will issue a GET request to the /. env URI to attempt to access the data on the page," the CISA and FBI explained. "Alternatively, Androxgh0st may issue a POST request to the same URI with a POST variable named 0x containing certain data sent to the Web server. " According to the CISA and FBI, the threat actors are... --- ### Latest Windows Server 2022 Update Breaks Google Chrome and Apps for Some Users - Published: 2024-01-18 - Modified: 2024-01-18 - URL: https://petri.com/windows-server-2022-update-breaks-google-chrome/ - Categories: Windows Server 2022 - Tags: News, Windows Server 2022 - Article Type: News Key Takeaways: The latest Windows Server 2022 update appears to break popular browsers and apps, leading to blank screens and loading errors. Users have reported issues related to the graphics subsystem, causing browsers to fail to open or start as a blank white box. Microsoft has not acknowledged the bug, and there is no information on when a fix will be available for Windows Server 2022 machines. Microsoft's latest update for Windows Server 2022 has inadvertently caused problems for users trying to browse the web. The KB5034129 update seems to be breaking popular browsers like Google Chrome, leading to blank screens and loading errors. Microsoft released the KB5034129 update for Windows Server 2022 on January 9, 2024. This release fixed an issue that was previously preventing users from signing in to hybrid join devices that are not connected to the Internet. The update also fixed a bug that affected the Windows Local Administrator Password Solution (Windows LAPS) and certain network functions on VMs. In a Reddit thread, several users have reported that the latest Windows Server 2022 update has broken their web browsers and apps, including Google Chrome, Microsoft Edge, Mozilla Firefox, and the Windows Snipping Tool. The problem is apparently related to the graphics subsystem and is causing the browser to either fail to open or start as a blank white box. Users who tried to update Google Chrome or run it without hardware acceleration have encountered similar issues. “The issue is Chrome opens to a blank screen. Enabled... --- ### Microsoft Introduces New Copilot Integration to Enhance Viva Engage and Power BI - Published: 2024-01-18 - Modified: 2024-01-18 - URL: https://petri.com/microsoft-copilot-for-viva-engage/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has announced the public preview of Copilot in Viva Engage and Power BI. Copilot in Viva Engage uses AI to suggest content based on user activity and trending topics, improving engagement and supporting participation in campaigns. Copilot in Power BI helps users create reports and suggests topics and visual summaries. Microsoft has announced the public preview of Copilot in Viva Engage and Power BI. The Copilot in Viva Engage experience offers personalized suggestions and facilitates post creation and editing to enhance organizational engagement. Viva Engage is a platform that enables employees to connect with their colleagues, leaders, and communities. It is an evolution of the Yammer Communities app in Teams and helps to engage with co-workers, as well as share experiences and knowledge. Viva Engage comes with a Storyline feature that allows users to view relevant posts from people across the organization as well as from people they choose to follow. Meanwhile, Stories is a Facebook-like feature that lets users post short expiring videos, or images to celebrate an achievement or promote an ongoing event. How does Copilot in Viva Engage work? In Viva Engage, the Copilot AI assistant provides personalized suggestions based on the users’ activity and trending topics to improve engagement within the organization. It also offers suggestions to help users participate in Viva Engage campaigns. Copilot in Viva Engage lets users write, edit, and receive feedback on their posts. Microsoft notes that IT admins can enable Copilot in Viva Engage through the Viva Engage... --- ### Microsoft Teams to Let IT Admins Block Users From Joining Externally Hosted Meetings - Published: 2024-01-17 - Modified: 2024-01-17 - URL: https://petri.com/microsoft-teams-externally-hosted-meetings/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams will soon allow IT admins to block certain users from participating in externally hosted meetings. The new feature is geared towards preventing potential data exposure, addressing security concerns, and aligning with the organization's compliance requirements. The new admin policy is expected to be generally available for the Microsoft Teams desktop apps by March 2024. Microsoft Teams is set to receive an update that will allow IT administrators to block select users from joining externally hosted meetings. This release should help to enhance security by preventing potential data exposure and ensuring compliance with organizational requirements. As of today, Microsoft Teams allows users to join externally hosted meetings using either their work credentials or as anonymous participants. The accessibility of this feature is dependent on the external access policies set by administrators within the organization. To provide more control over user access, Microsoft is planning to introduce a new policy called "People can join meetings hosted by. " It will enable IT admins to manage which meetings users can attend on the Microsoft Teams desktop clients. “After this capability is launched, this configuration will provide an added layer of protection and regulate whether or not the users can join externally hosted meetings while using the Teams desktop app or web client,” the company explained on the Microsoft 365 admin center. Microsoft Teams to add admin controls for managing externally hosted meetings next month Microsoft notes that IT administrators will need to identify specific users or groups that would be... --- ### Enhanced Cloud Protection: Microsoft's Defender for Cloud Gets New Integration with Defender XDR - Published: 2024-01-17 - Modified: 2024-01-17 - URL: https://petri.com/microsofts-defender-for-cloud-integration-defender-xdr/ - Categories: Security - Tags: cybersecurity, Microsoft Defender, News - Article Type: News Key Takeaways: Microsoft has announced the integration of Defender for Cloud with its Microsoft Defender XDR solution. This capability provides organizations with improved tools to protect cloud-based applications and respond to threats across enterprise environments. Microsoft Sentinel customers are advised to make specific configuration changes to prevent duplicate alerts and incidents. Microsoft has announced the general availability of Defender for Cloud’s integration with Microsoft Defender XDR. This release offers administrators direct access to investigate and manage Defender for Cloud alerts and incidents within the Microsoft Defender portal. Microsoft Defender for Cloud is a security solution that enables organizations to protect cloud-based applications from security threats and vulnerabilities. It offers various capabilities such as code security remediation, attack path analysis, and security posture monitoring. Moreover, Microsoft Defender XDR (formerly Microsoft 365 Defender) is a unified experience that allows administrators to detect, prevent, investigate, and respond to threats in enterprise environments. The service automatically blocks the attack and mitigates issues with affected user identities, endpoints, and mailboxes. Microsoft announced the public preview of Defender for Cloud's integration with Microsoft Defender XDR in November last year. This feature provides detailed insights to security teams regarding any suspicious or malicious events that occur within their cloud environments. Additionally, the integration of Defender for Cloud incidents and alerts into Microsoft Defender XDR's public API makes it easier to export security alert data to any system. These capabilities allow organizations to improve their overall operational efficiency significantly. What is the impact on Microsoft Sentinel users? Microsoft... --- ### New Phemedrone Malware Exploits Windows Defender SmartScreen Flaw to Steal Sensitive Data - Published: 2024-01-16 - Modified: 2024-05-22 - URL: https://petri.com/windows-defender-smartscreen-phemedrone-malware/ - Categories: Security - Tags: cybersecurity, News, Windows - Article Type: News Key Takeaways: Cybersecurity researchers have identified a Windows Defender SmartScreen bypass vulnerability (CVE-2023-36025) exploited by hackers to deploy the Phemedrone Stealer malware. The vulnerability enables cybercriminals to harvest sensitive data from web browsers, cryptocurrency wallets, and messaging apps. Hackers persistently exploit the vulnerability to target Windows devices that have not been patched yet. Cybersecurity researchers have disclosed a serious threat to Windows users, as hackers exploit a Windows Defender SmartScreen bypass vulnerability to deploy the Phemedrone Stealer malware. It could enable hackers to harvest sensitive information (such as cookies, passwords, and authentication tokens) from Windows machines. The security flaw, which is tracked as CVE-2023-36025, has a CVSS score of 8. 8/10. This vulnerability can enable the Phemedrone Stealer malware to steal sensitive information like authentication codes, passwords, and other data from web browsers, cryptocurrency wallets, and messaging apps such as Discord, Telegram, and Stream. It allows hackers to track the operating system data, location, and hardware details of the Windows PC. The stolen data is then transferred through Telegram or sent to a remote command-and-control server. Cybercriminals may deceive users into downloading and opening a specially crafted internet shortcut file (URL) hosted on cloud services like Discord. This file exploits CVE-2023-36025 to bypass the built-in Windows Defender SmartScreen security protections. Users don’t receive any notification that the downloaded file is from an untrusted source, and their Windows devices become infected with Phemedrone malware. “Microsoft Windows Defender SmartScreen should warn users with a security prompt before executing the . url file from an... --- ### Copilot for Microsoft 365 Now Available for Small Businesses and Individuals - Everything You Need to Know - Published: 2024-01-16 - Modified: 2024-02-06 - URL: https://petri.com/copilot-for-microsoft-365-small-businesses/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has announced that Copilot for Microsoft 365 is available for organizations with Microsoft 365 Business Premium, Microsoft 365 Business Standard, Microsoft 365 E3 and E5, or Office 365 E3 and Office E5 subscriptions. Commercial customers can purchase Copilot for Microsoft 365 through Microsoft Cloud Solution Provider partners. A new Copilot Pro subscription, priced at $20 per person per month, extends the generative AI capabilities to consumers. Microsoft announced yesterday that Copilot for Microsoft 365 is now available for small and medium-size (SMBs). Indeed, the company is now expanding the service to organizations with 300 or fewer employees. In November, Microsoft announced that Copilot for Microsoft 365 is generally available for enterprise customers. Previously, businesses needed a Microsoft 365 subscription and a minimum of 300 licenses to use Copilot. However, Microsoft has now dropped this requirement, and the service is available for organizations with Office 365 E3 and E5 licenses. Moreover, Microsoft 365 Business Premium and Business Standard subscribers can purchase between one and 299 seats for $30 per user per month. “Copilot for Microsoft 365 is even more powerful for organizations because it works across your entire universe of data at work — including emails, meetings, chats, documents and more, plus the web. With natural language prompts like “Tell my team how we updated the product strategy,” Copilot can generate a status update based on the morning’s meetings, emails and chat threads,” said Yusuf Mehdi, Executive Vice President, Consumer Chief Marketing Officer. Copilot for Microsoft 365 offers... --- ### Critical Microsoft SharePoint Flaw Exploited: CISA Issues Warning for Organizations to Act Swiftly - Published: 2024-01-15 - Modified: 2024-01-15 - URL: https://petri.com/cisa-microsoft-sharepoint-vulnerability/ - Categories: Security - Tags: cybersecurity, News, SharePoint - Article Type: News Key Takeaways: CISA has issued a warning about the exploitation of a critical vulnerability (CVE-2023-29357) in Microsoft SharePoint. The flaw allows unauthenticated attackers to attain administrative privileges on unpatched servers. Microsoft released the June 2023 Patch Tuesday updates to address the privilege escalation vulnerability affecting SharePoint servers. The Cybersecurity and Infrastructure Security Agency (CISA) has raised concerns about the active exploitation of a critical vulnerability in Microsoft SharePoint. The security flaw (tracked as CVE-2023-29357) allows unauthenticated attackers to gain administrative privileges on unpatched servers. The Microsoft SharePoint vulnerability was first discovered by STAR Labs researcher Nguyễn Tiến Giang (Jang) during Vancouver's Pwn2Own contest in March 2023. He exploited the flaw with another vulnerability to perform unauthenticated remote code execution on a SharePoint server. Specifically, CVE-2023-29357 is a critical privileges escalation vulnerability that carries a 9. 8 severity score and affects SharePoint Server 2016 and 2019. It enables hackers to use spoofed JSON Web Token (JWT) authentication tokens to gain administrative access to a target server. JSON Web Tokens are a URL-safe means of representing claims, which ensure the integrity and authenticity of information transmitted between two parties. “An attacker who has gained access to spoofed JWT authentication tokens can use them to execute a network attack which bypasses authentication and allows them to gain access to the privileges of an authenticated user. The attacker needs no privileges nor does the user need to perform any action,” Microsoft explained. https://youtu. be/x0DPpVh8fO4 Ransomware group creates exploit for critical SharePoint vulnerability Microsoft released a patch... --- ### Microsoft's New Dev Home App Now Available on Windows 10 PCs - Published: 2024-01-12 - Modified: 2024-01-12 - URL: https://petri.com/microsoft-dev-home-windows-10/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Key Takeaways: Microsoft's new Dev Home App is now available in preview on Windows 10 devices. The Dev Home app provides features like GitHub integration, customizable dashboards for project tracking, and real-time performance data for memory, network, CPU, and GPU. Microsoft plans for additional settings to provide developers with more control over their Windows PCs in future updates. Microsoft has recently rolled out an update for its Dev Home app that launched in preview on Windows 11 last year. This updated version now extends its support to Windows 10 PCs and can be easily downloaded from the Microsoft Store. Microsoft introduced its Dev Home app to help developers manage their projects and track different workflows. It allows developers to use a winget (Windows Package Manager) configuration file to easily set up their developer environments. This capability should help to speed up the configuration process of Windows dev machines. With Dev Home, developers can easily connect to their GitHub account, track relevant repositories, and install tools and packages. The app provides a customizable dashboard to track changes and updates to their projects. It also offers real-time data about memory, network, CPU, and GPU performance. Developers can create a specialized Resilient File System (ReFS)-based Dev Drive that enables a special performance mode for Microsoft Defender to improve build times for I/O operations by up to 30 percent. Moreover, developers can create custom extensions for Dev Home. Dev Home version 0. 9 brings improvements and bug fixes Microsoft explained that widgets will not persist... --- ### First Ring Daily: Windows or AI - Who Wins? - Published: 2024-01-12 - Modified: 2024-01-12 - URL: https://petri.com/first-ring-daily-windows-or-ai-who-wins/ - Categories: Windows, Windows 10, Windows 11 - Tags: artificial intelligence, News, Windows 10, Windows 11, Windows 12 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the future of Windows 10 and what really matters for Microsoft: Will the company want to push Windows users to Windows 12, or is it more important for Microsoft to get them on board with AI? --- ### Microsoft Rolls Out New Features for Windows 365 Boot and Switch - Published: 2024-01-12 - Modified: 2024-01-12 - URL: https://petri.com/windows-365-boot-switch-features/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Key Takeaways: Windows 365 Boot has added a new Dedicated mode that allows passwordless authentication to streamline logins to Cloud PCs. Windows 365 Switch is getting new desktop indicators, providing users with clear visual cues to better differentiate between their Cloud and local PCs. Windows 365 Boot has introduced a fail-fast mechanism that notifies users about potential issues before completing the sign-in process. Microsoft has released several improvements for Windows 365 Boot and Windows 365 Switch, which are currently in public preview for enterprise customers. Windows 365 is a cloud-based service that allows users to securely stream their Windows 11 or Windows 10 PCs to any device. The Windows 365 Boot feature lets users log in directly to their Windows 365 Cloud PC from a Windows 11 device. Moreover, Windows 365 Switch lets users easily switch between a Cloud PC and their local Windows 11 desktop. First off, Microsoft has introduced a new Dedicated mode for Windows 365 Boot that allows users to log in to their Cloud PCs with Windows Hello for Business. “You can now log in to your Windows 365 Cloud PC from your designated company-owned device. You’ll be able to seamlessly log in to your Windows 365 Cloud PC from Windows 11 login screen using passwordless authentication methods like Windows Hello for Business,” Microsoft explained. Fast account switching with Windows 365 Boot The Dedicated mode comes with a fast account switching experience that allows users to easily log in to Windows 365 Cloud PCs. There is... --- ### Fluid Framework 2.0 Launches in Open Beta for Building Collaborative Apps - Published: 2024-01-11 - Modified: 2024-01-15 - URL: https://petri.com/fluid-framework-2-0-open-beta/ - Categories: Developer - Tags: featured-top-left, Microsoft 365, Microsoft Loop, News - Article Type: News Key Takeaways: Fluid Framework 2. 0 provides an intuitive programming interface for developers to work with data. It supports SharePoint Embedded, which allows developers to build file and document-focused applications. Microsoft plans to make Fluid Framework 2. 0 generally available later in the summer. Microsoft has announced that Fluid Framework 2. 0 is now available as an open beta for developers. This latest version of the open-source platform is tailored to help developers build collaborative applications and services. Microsoft first unveiled its Fluid Framework back in 2019. It’s a collaborative platform that enables real-time collaboration on documents and allows users to work together across various Office apps. The Fluid Framework allows content authors to work with intelligent agents that can suggest edits, fetch content, and translate text. It powers various Microsoft apps and third-party applications, including Microsoft Loop and Whiteboard. Fluid Framework 2. 0 introduces a new object type called a SharedTree Distributed Data Structure (DDS). It offers an intuitive programming interface to let developers work with data, and supports arrays, maps, objects, and other data types. “Fluid Framework 2. 0 is an open-source platform for rapidly building powerful collaborative experiences. It offers an intuitive programming model that makes it simple for developers to synchronize shared state between clients in real-time,” Microsoft explained. “It offers a schematized data model, so developers can continue to use their existing data model and quickly make their apps collaborative. ” https://www. youtube. com/watch? v=uL2nMYk6WTQ Fluid Framework 2. 0 supports SharePoint Embedded In addition to the existing Azure Fluid Relay Service, Fluid Framework 2. 0 brings... --- ### Microsoft Defender for Endpoint Gets New Dynamic Tagging Feature to Simplify Device Management - Published: 2024-01-11 - Modified: 2024-01-11 - URL: https://petri.com/microsoft-defender-for-endpoint-dynamic-tagging/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News - Article Type: News Key Takeaways: Microsoft has announced the general availability of dynamic rules for tagging devices in its Defender for Endpoint solution. The dynamic rules feature allows administrators to automatically assign tags and device values based on specific conditions. Microsoft says that IT admins can create dynamic rules defining conditions using multiple attributes. Microsoft has announced that support for dynamic rules for tagging devices is now generally available for its Microsoft Defender for Endpoint solution. This feature allows organizations to create and manage rules, allowing the automatic assignment and removal of tags from devices according to user-defined criteria directly within the Microsoft Defender portal. Microsoft explained that managing device tags might pose a significant challenge, especially given the dynamic nature of the security landscape. The constant change in device attributes and evolving security requirements may give rise to potential errors, increased complexity, and inefficiencies in security operations. With dynamic rules, IT administrators can automatically assign tags and device values based on specific conditions. For example, tags can be assigned to devices based on an operating system version. It’s also possible to assign specific values to devices that follow a particular naming convention. “Admins can now create dynamic rules that define certain conditions using multiple attributes. As devices meet or do not meet these specified criteria, the associated tags are automatically applied or removed. This fluid approach ensures that device tags stay up-to-date, relevant, and aligned with the organization's evolving security requirements,” Microsoft explained. Rule-based tagging Why you should use dynamic tagging? Microsoft... --- ### What Is IAM? A Guide to Identity and Access Management > Find out more about Identity and Access Management (IAM) solutions, which offer enterprise-wide controls and visibility over identity management functions. - Published: 2024-01-11 - Modified: 2024-04-08 - URL: https://petri.com/what-is-iam/ - Categories: Identity Management - Tags: Active Directory, Azure Active Directory, Identity, Identity Management, Microsoft Entra ID - Article Type: Overview Identity and Access Management (IAM), is a crucial cybersecurity framework that governs and secures digital access to resources. It plays a pivotal role in helping organizations control and secure their digital resources such as apps, files, user identities, permissions, and all other organizational data. IAM also helps ensure the confidentiality and integrity of sensitive information. What is IAM? IAM, at its core, is a comprehensive framework consisting of policies and business processes paired with technology to manage and secure organizational digital identities. It involves defining the access privileges for systems and individuals in an organizational ecosystem to safeguard sensitive and critical data and resources.   IAM policies and processes are usually established and configured by organizational security administrators or professionals. Their role is to enforce necessary security policies and to help mitigate the risks associated with data breaches or unauthorized access. IAM policies not only help enhance data and resource security but also aid in streamlining business operations and in adherence to regulatory compliances like the General Data Protection Regulation (GDPR) or HIPAA. How does IAM work? Identity and Access Management works by regulating and orchestrating access to digital resources and data based on the identity and access of users and systems. The core of IAM involves authentication and authorization to help secure digital resources. IAM performs user or system authentication using passwords or biometrics like fingerprints. And subsequently checks for their authorization to determine access.   Authentication vs authorization (Image Credit: Sukesh Mudrakola/Petri) What is an example of IAM? IAM... --- ### Microsoft to Retire its Readiness Toolkit for Office Add-ins and VBA - Published: 2024-01-10 - Modified: 2024-01-11 - URL: https://petri.com/microsoft-readiness-toolkit-for-office-add-ins-and-vba/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is discontinuing its Readiness Toolkit for Office add-ins and VBA, with an end-of-support date set for March 31, 2024. The toolkit will no longer be available for download on the Microsoft Download Center. Enterprise customers are advised to generate advanced reports before the deadline to ensure ongoing compatibility with Microsoft 365 Apps. Microsoft is getting ready to retire its Readiness Toolkit for Office add-ins and VBA. The toolkit will reach end of support on March 31, and it will also be removed from the Microsoft Download Center. Microsoft launched the Readiness Toolkit for Office add-ins and VBA back in 2017. It's a set of resources and tools that allow organizations to detect compatibility issues with the Microsoft Visual Basic for Applications (VBA) macros and add-ins used with Office. The Readiness Report Creator tool analyzes Office documents and creates an Excel report to help organizations assess their readiness to switch to Microsoft 365 Apps. The Readiness Report Creator is designed to check compatibility with multiple Office apps, including Excel, Word, Outlook, PowerPoint, Visio, Project, Publisher, and Access. It also helps to check for certain types of add-ins used with Microsoft Office. “After March 31, 2024, the Readiness Toolkit for Office add-ins and VBA will no longer be available for download from the Microsoft Download Center. Additionally, attempts to generate advanced reports will result in an error message stating that no readiness information could be acquired, and only a basic report will be generated,” Microsoft explained in a message... --- ### Microsoft's January 2024 Patch Tuesday Updates Fix 49 Windows Vulnerabilities - Published: 2024-01-10 - Modified: 2024-01-10 - URL: https://petri.com/microsofts-january-2024-patch-tuesday-updates/ - Categories: Windows - Tags: News, Windows, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft released Patch Tuesday updates for Windows 11 and Windows 10, addressing 49 security vulnerabilities in various products, including Windows, Microsoft Office, Azure, and SQL Server. Microsoft also addressed issues such as unexpected shutdowns on Windows 11 and Windows 10 PCs. Microsoft announced the end of mainstream support for Exchange Server 2019, but extended support will continue until October 14, 2025. Microsoft has released yesterday the January 2024 Patch Tuesday updates for Windows 11 and Windows 10 devices. This month’s Patch Tuesday includes fixes for 49 security vulnerabilities in Windows, Microsoft Office, Azure, SQL Server, and more. Microsoft also announced the end of mainstream support for Exchange Server 2019 on January 9. However, it will continue to receive extended support until October 14, 2025. “Per the Exchange Server 2019 lifecycle, Exchange Server 2019 is now in Extended support. But, as we said last November, a lot more is coming for Exchange Server 2019. There are still two more CUs for Exchange Server 2019: CU14 and CU15. CU14 is in its final stages of testing and validation and will be released as soon as that's finished. CU15 will be released later this year,” the Exchange team explained. 2 critical vulnerabilities fixed with the January 2024 Patch Tuesday updates Among the 49 security flaws, two are rated “Critical” and there are also 47 vulnerabilities that are rated “Important” in severity. However, Microsoft confirmed that these flaws are not currently being exploited by attackers. Let’s take a look at some of... --- ### Microsoft Teams to Let Free Users Join Work Meetings without a Web Browser - Published: 2024-01-09 - Modified: 2024-01-09 - URL: https://petri.com/microsoft-teams-free-work-meetings/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams is getting a new feature to let users with personal Microsoft accounts join work meetings directly from the desktop app. The feature will allow free users to retain access to the chat even after the meeting ends. Organizations will be able to maintain control over chats and meetings federation with free users. Microsoft Teams is getting a new update that will allow users with personal Microsoft accounts (MSA) to join work meetings directly from within the Teams desktop app (or vice versa). This update eliminates the current requirement for free users to join meetings as anonymous guests via a web browser and ensures continued access to chats after the meeting ends. Currently, Microsoft Teams (free) users need to join work meetings as anonymous meeting guests through a web browser. Moreover, these participants are removed from the chat after the Teams meeting has ended. Starting in February, Microsoft will introduce a new feature that will allow free users to participate in work meetings with their personal account directly from the Teams client. These users will also be able to retain access to the meeting chat after it has ended. Similarly, users with work accounts will be able to join Microsoft Teams (free) hosted meetings. “Once this feature is made available, users of Microsoft Teams (Free) will be able to join Teams for work (or school) meetings in one click, they no longer will be redirected to browser, asked to fill in their name/surname and they will be... --- ### Microsoft to Deprecate Search-Mailbox Cmdlet in Exchange Online – What You Need to Know - Published: 2024-01-09 - Modified: 2024-01-09 - URL: https://petri.com/microsoft-retire-search-mailbox-cmdlet-exchange-online/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Key Takeaways: Microsoft is deprecating the Microsoft 365 Purview eDiscovery standard search-mailbox cmdlet in March 2024. The Search-Mailbox cmdlet allows administrators to search and export mailbox data for legal and compliance purposes. Microsoft advises users to switch to the New-ComplianceSearch and New-ComplianceSearchAction cmdlets. Microsoft is set to retire the Microsoft 365 Purview eDiscovery standard search-mailbox cmdlet. The company has recently announced in a message on the Microsoft 365 Admin Center that this change will go into effect in March this year. The Search-Mailbox cmdlet is a PowerShell command that allows administrators to search for particular items in Exchange mailboxes. It helps retrieve different types of mailbox data such as calendar items, messages, and tasks. This cmdlet is particularly useful for eDiscovery and compliance scenarios, as well as for removing spam and malicious content from user mailboxes. In 2020, Microsoft first announced its plans to deprecate the search-mailbox cmdlet, along with various other search and compliance features exclusive to Exchange Online. However, the company had to delay the retirement of the cmdlet due to the absence of similar capabilities in the Security and Compliance Center. Last week, Microsoft announced that it's ready to proceed with the retirement plan for the Search-Mailbox cmdlet. The retirement process will begin on March 1, 2024, and it’s expected to be completed across all tenants by the end of March. “Originally announced in 2020, this was postponed as this cmdlet has been a valuable tool for searching and exporting mailbox data for legal and compliance purposes... . --- ### What’s New in Azure Stack HCI 23H2 - Published: 2024-01-09 - Modified: 2024-01-08 - URL: https://petri.com/azure-stack-hci-23h2/ - Categories: Azure Stack HCI - Tags: Azure, Azure Stack HCI, featured-top-left, News - Article Type: Overview In this article, I will give you an overview of Azure Stack HCI 23H2, which is currently in preview. With the release of 23H2, Microsoft is adding a lot of customer-requested features and enhancements. So, let’s dive in!   When will Azure Stack HCI 23H2 be released (general availability)? The most pressing question I get from my customers is why Azure Stack HCI 23H2 was released in preview and not made general available (GA) in 2023? Normally, Microsoft releases final non-preview versions of Azure Stack HCI during its Ignite conference in November. In 2023, the release date for version 23H2 changed to the first quarter of 2024. The new release cycle - or better to say the change of the current cycle - was due to a lot of customer feedback. In past years, Microsoft released Azure Stack HCI before partners were ready to support the product in GA. So, we often see that it took another 3 months before vendors like Dell, Lenovo, HPE, and DataON were able to support the latest Azure Stack HCI version on their hardware. That left customers with only a few months to upgrade their systems to the newest release. Such a rush to upgrade often results in issues and mistakes. That’s why Microsoft agreed with their partners to hand them the GA bits first and hold the official release until Microsoft’s OEM Partners are ready to deploy and support the product. Azure Stack HCI 23H2 brings a focus on server fleet and edge... --- ### Microsoft Teams Now Lets Users Forward Chat Messages - Published: 2024-01-08 - Modified: 2024-01-08 - URL: https://petri.com/microsoft-teams-forward-chat-messages-2/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams has started rolling out a new feature that allows users to forward chat messages with a single click. Microsoft Teams users can forward messages to 1:1 chats, group chats, and meeting chats. The forward message feature will be generally available for Microsoft Teams desktop, web, and mobile users later this month. Microsoft Teams has started rolling out a new update that allows users to forward messages from one chat to another with a single click. The new feature is currently available across all platforms, including desktop, mobile, and the web. Specifically, Microsoft Teams users can now forward messages to 1:1 chats, meeting chats, and group chats. This feature is similar to the "forward messages" feature in Slack and allows users to share important information with colleagues without having to copy and paste text from messages. However, it's important to note that currently, only one message can be forwarded to one chat at a time. To try out this new feature, Microsoft Teams users will need to click the Forward button in the right-click menu (overflow menu). They can select the recipient of the forwarded message from the people picker menu in the compose dialog box. Additionally, users can add additional text to a forwarded message to provide more context to the recipient. Microsoft Teams' forward message feature to reach government customers next month Microsoft Teams’ new forward message feature will become generally available for commercial customers later this month. Moreover, Microsoft expects to roll out the... --- ### Streamlining Cloud Migration: Microsoft's AppCAT Tool Simplifies Migration from .NET Apps to Azure Cloud - Published: 2024-01-05 - Modified: 2024-01-05 - URL: https://petri.com/microsoft-appcat-azure-cloud/ - Categories: Azure - Tags: Microsoft Azure, News - Article Type: News Key Takeaways: Microsoft's AppCAT tool facilitates the migration of on-premises . NET applications to the Azure cloud by assisting developers in assessing source code, binaries, and configurations. AppCAT identifies potential issues and recommends cloud-native solutions for enhanced scalability, performance, and security during the migration process. The tool is available as both a . NET CLI tool and a Visual Studio extension. Microsoft has announced the release of the Azure Migrate application and code assessment tool (AppCAT). The new tool is aimed at simplifying the migration of on-premises . NET applications to the Azure cloud for developers. The AppCAT tool is designed to help developers assess their . NET source code, binaries, and configurations. It enables them to detect potential issues that may arise during the migration process. The tool also helps developers to identify any challenges that may be faced when moving their applications to Azure. Additionally, AppCAT suggests cloud-native solutions that can improve the scalability, performance, and security of the application. After running the analysis, the tool provides a report that highlights the necessary changes required to ensure that an application works properly when it’s migrated from on-premises environments to Azure. “AppCAT discovers application technology usage through static code analysis of your code and its dependencies. It will also allow you to jump to a line that requires your attention, address issues and mark them as fixed, save the current state of the issues and the report so you or your coworkers can start exactly where you left off and effectively collaborate,” said... --- ### First Ring Daily: It's 2024 - Published: 2024-01-05 - Modified: 2024-01-05 - URL: https://petri.com/first-ring-daily-its-2024/ - Categories: Microsoft - Tags: Microsoft, News - Article Type: News In this first 2024 episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft changing an app install process on Windows, the opportunity for the company to build a "Copilot phone," and Google ruining the smart home experience for Nest users. In this first 2024 episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft changing an app install process on Windows, the opportunity for the company to build a "Copilot phone," and Google ruining the smart home experience for Nest users. --- ### Windows Server Backup: A Step-by-Step Guide - Published: 2024-01-05 - Modified: 2024-06-14 - URL: https://petri.com/windows-server-backup/ - Categories: Backup & Storage, Windows Server - Tags: Backup, Disaster Recovery, Restore, Windows Server - Article Type: How To How familiar are you with Windows Server Backup? You may be surprised by its value in your organization. I'll explain what its main purpose is and how to use Windows Server Backup to back up Windows Server file servers and an Active Directory (AD) domain controller. What is Windows Server Backup? Windows Server has had a built-in backup application since Windows Server 2008. I know, right? As far as I recall, Microsoft had an agreement with Seagate back in the day to offer a 'simple' version of a basic backup application/feature in Windows Server. Like Active Directory, they haven't offered a lot of updates to this core feature in the product. However, it does have value in certain real-world scenarios. Windows Server Backup provides a set of wizards to guide IT Pros through to accomplish data protection in an isolated or AD-based domain. You can use WSB to back up a full server (bare metal recovery). individual files and folders, and remote servers and computers. You can also recover volumes, folders, files, and even the System State. Is Windows Server Backup any good? The consensus is this - Windows Server Backup is a basic data protection solution. It does do a very good job of backing up a single server and being able to back up and restore sets of folders/files, and/or the server's system state. It is free, so, you can make a valid assumption that it doesn't provide the same features and stability of a true enterprise... --- ### Microsoft Teams Adds Improved Search Experience, Other New Features - Published: 2024-01-04 - Modified: 2024-01-04 - URL: https://petri.com/microsoft-teams-improved-search-experience/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams added several new features in December 2023, including an improved search experience in chats and channels, a new OneDrive app in Teams, and Loop components in channels. Microsoft also announced the general availability of the new Teams app for virtual desktop infrastructure (VDI) customers. Microsoft released a couple of Teams Phone updates, including new calling shortcuts for efficient task execution and a group chat call confirmation alert to prevent accidental calls. Microsoft has published its roundup of all the enhancements made to Teams during the month of December 2023. The company highlighted an enhanced search experience in chats and channels, a OneDrive app in Teams, Loop components in channels, updates to Teams Phones, and much more. Chat and Collaboration Starting off with enhancements to chat and collaboration, Microsoft has added support for Loop components to Teams channels. The feature allows users to create, share, and edit components (such as lists, tables, or progress trackers) to collaborate with their colleagues within channel conversations. Microsoft Teams users can copy/paste Loop components between chats, channels, Outlook emails, and other supported Microsoft 365 apps. Last month, Microsoft made some improvements to the in-chat and channel search experience in Microsoft Teams. Users can now view the search results in the right pane of the screen in a chat or channel. Additionally, Microsoft Teams is getting support for custom channel backgrounds. This release allows Teams Premium and Microsoft 365 Copilot customers to use generative AI to create personalized background images. New search... --- ### Microsoft Copilot Key is Coming to the Keyboard of New Windows 11 PCs - Published: 2024-01-04 - Modified: 2024-01-04 - URL: https://petri.com/microsoft-copilot-key-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft is introducing a new Copilot key to the PC keyboard, the first such addition in nearly three decades since the introduction of the Windows key. The key requires a Microsoft account to launch the Copilot tool on Windows 11 PCs. This new Copilot key is set to be available on new Windows 11 PCs later this month through Spring 2024. Microsoft is getting ready to add a new Copilot key to the Windows keyboard. The company announced today that the new Copilot key will be available on new Windows 11 PCs later this month, including on upcoming Surface devices. Microsoft introduced its new Copilot AI assistant on Windows 11 back in September 2023. It lives in a sidebar to the right side of the screen and can be launched with the Windows Key + C keyboard shortcut or a right-click. The AI assistant allows users to control parts of the desktop experience with voice or text commands. For example, Copilot in Windows can enable dark mode, organize windows, launch apps, take screenshots, answer queries, and summarize content from the web. It is worth noting that the Copilot key is the first new key to be added to the PC keyboard since the introduction of the Windows key about 30 years ago. The Windows key is mainly used to open the Start menu and perform various keyboard shortcuts for quick access to different features and applications. “The introduction of the Copilot key marks the first significant change to... --- ### Microsoft Outlook Now Lets Users Preserve Declined Meetings on the Calendar - Published: 2024-01-03 - Modified: 2024-01-03 - URL: https://petri.com/microsoft-outlook-preserve-declined-meetings/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Outlook, News - Article Type: News Key Takeaways: Microsoft Outlook has rolled out a new update that lets users preserve declined meetings on their calendars. The new calendar setting helps users track information and attachments associated with these events. The feature is not enabled by default and requires users to manually turn it on in Outlook settings. Microsoft has recently introduced a new calendar setting that allows users to view declined meetings within Outlook calendars. These declined events will remain on the users’ calendars, making it easier to track information and attachments associated with them. Previously, when an Outlook user chose to decline a meeting invitation, the event would be moved to the Deleted Items folder and would not show up in their calendar. Furthermore, any details related to the declined meeting were removed to ensure that the calendar remained clear and available for scheduling other events. “In Settings, once you turn on the feature, Declined events will no longer disappear but remain on your calendar so you can easily recollect related info or docs, find associated chats, or even take actions like updating your previous response (RSVP) and forwarding it to someone else; all while keeping your agenda free at that time slot,” Microsoft explained. Microsoft says that the new feature will only retain the calendar events that are sent through the new Outlook for Windows, Outlook for Mac, Outlook on the web, Outlook mobile clients, and Microsoft Teams. However, keep in mind that meetings declined from the classic Outlook for Windows will not be... --- ### GitHub Launches Copilot Chat - Your AI Programming Assistant for Enhanced Developer Productivity - Published: 2024-01-02 - Modified: 2024-01-02 - URL: https://petri.com/github-copilot-chat-generally-available/ - Categories: Developer - Tags: GitHub, GitHub Copilot, News - Article Type: News Key Takeaways: Copilot Chat, a programming-centric chatbot similar to ChatGPT, is generally available for all users. Copilot Chat is still powered by GPT-4, OpenAI's flagship generative AI model, specifically fine-tuned for development scenarios. Users can prompt Copilot Chat in natural language for real-time guidance, including tasks like explaining concepts, detecting vulnerabilities, or writing unit tests. Microsoft-owned GitHub has announced that its new Copilot Chat feature is now generally available for all users. The AI-powered programming assistant is available at no additional cost to customers within Visual Studio and Visual Studio Code. GitHub first rolled out Copilot Chat in limited beta to enterprise customers and organizations earlier this year. It's powered by OpenAI’s GPT-4 model fine-tuned specifically for software development. Copilot Chat helps developers solve coding problems without the need to switch contexts. Developers can open Copilot Chat in their integrated development environment (IDE) and ask relevant questions. With Copilot Chat, developers can use natural language commands to receive real-time guidance. It also lets users understand complex coding concepts, translate code, analyze code, detect security vulnerabilities, and write unit tests. “From explaining complex coding concepts to detecting security vulnerabilities and writing unit tests, Copilot Chat can help every developer innovate at the speed of thought,” Shuyin Zhao, VP of product management at GitHub. “Copilot Chat is personalized to each developer and their unique coding practices, so it’s really up to you to decide where and when to use it. ” https://youtu. be/a2DDYMEPwbE? si=DEPWK1X_rbyEFJQm GitHub Copilot faces up to $80/user monthly loss According to a... --- ### Microsoft Disables MSIX Protocol Handler Amid Rising Malware Threats - Published: 2023-12-29 - Modified: 2024-01-03 - URL: https://petri.com/microsoft-disables-msix-protocol-handler-amid-rising-malware-threats/ - Categories: Windows - Tags: featured-top-left, News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has disabled the MSIX ms-appinstaller protocol handler by default due to ongoing exploitation by threat actors. Cybercriminals exploit the ms-appinstaller protocol handler to distribute malware through malicious websites. Microsoft recommends installing App Installer version 1. 21. 3421. 0 to block exploitation attempts. Microsoft has disabled the MSIX ms-appinstaller protocol handler by default due to active exploitation by financially motivated threat groups. The Windows feature, intended for installing applications directly from web servers, now acts as a pathway for deploying malware on Windows systems. The ms-appinstaller protocol is a Windows feature that allows users to install applications directly from a web server. When a user clicks on an ms-appinstaller link, the Windows system downloads a small XML file containing information about the app (the name, publisher, and version) and a link to the app’s MSIX package. In recent months, Microsoft has observed that cybercriminals (including groups like Storm-0569, Storm-1113, Storm-1674, and Sangria Tempest) exploit the ms-appinstaller protocol handler to distribute malware. These hackers use malicious advertisements to lure users into visiting websites from where they distribute malicious MSIX application packages. Additionally, attackers use Microsoft Teams to launch phishing campaigns. "Multiple cybercriminals are also selling a malware kit as a service that abuses the MSIX file format and ms-app installer protocol handler," the Microsoft Threat Intelligence team explained. “The observed activity includes spoofing legitimate applications, luring users into installing malicious MSIX packages posing as legitimate applications, and evading detections on the initial installation files. ” A malicious landing page spoofing Zoom accessed via... --- ### First Ring Daily: The AI Battle of 2024 - Published: 2023-12-29 - Modified: 2023-12-29 - URL: https://petri.com/first-ring-daily-the-ai-battle-of-2024/ - Categories: Cloud Computing - Tags: artificial intelligence, copilot, Microsoft, News, OpenAI - Article Type: News In the last episode of First Ring Daily for this year, Brad Sams and Paul Thurrott discuss their issues with networking and smart home devices and how the New York Times suing Microsoft and OpenAI for copyright infringement could impact the development of generative AI technology in 2024. In the last episode of First Ring Daily for this year, Brad Sams and Paul Thurrott discuss their issues with networking and smart home devices and how the New York Times suing Microsoft and OpenAI for copyright infringement could impact the development of generative AI technology in 2024. --- ### Microsoft Details Windows Single Sign-on Changes to Comply with EU’s Digital Markets Act - Published: 2023-12-28 - Modified: 2023-12-28 - URL: https://petri.com/microsoft-details-windows-single-sign-on-changes-to-comply-with-eus-digital-markets-act/ - Categories: Windows - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft plans to introduce a single sign-on (SSO) option in Windows 10 and Windows 11 to comply with the European Union's Digital Markets Act (DMA). Users in the EU will see a new prompt, asking whether they wish to sign in to Microsoft apps using Windows credentials. The new single sign-on (SSO) notice will be available for Windows 10 and 11 users in January 2024. Microsoft is planning to add a new single sign-on (SSO) option to Windows 10 and Windows 11 in January 2024. This update aims to make the operating system compliant with the European Union's Digital Markets Act (DMA). Single sign-on (SSO) is an authentication service that allows Windows users to access multiple apps or services with a single set of login credentials. It eliminates the need to remember multiple sets of login credentials and enables users to log in once and gain access to all authorized resources. SSO is commonly used in enterprise environments to simplify the login process for employees. Microsoft has announced that users in the European Union will see a new single sign-on (SSO) prompt that will ask if they want to sign in to applications with Windows credentials. If the user selects the 'Continue' option, the notification will not reappear unless they don't sign in for 90 days or re-add a cloud account to Windows. “The notice appears the first time a user uses an app that enables sign-in with a personal Microsoft account, or work or school Entra ID,... --- ### Microsoft to Introduce New Secure Printing Experience on Windows 11 - Published: 2023-12-27 - Modified: 2023-12-27 - URL: https://petri.com/microsoft-secure-printing-experience-windows/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft has started testing a new Windows Protected Print Mode (WPP) to prevent security risks (such as PrintNightmare) on Windows PCs. Windows Protected Print Mode (WPP) improves security by restricting third-party driver installations and blocking malicious code. Microsoft has rolled support for WPP to Windows Insiders in the Canary Channel. Microsoft is planning to introduce a new Windows Protected Print Mode in Windows 11. The new feature eliminates the need for third-party printer drivers and brings several security enhancements for Windows PCs. The Microsoft Offensive Research & Security Engineering (MORSE) team has collaborated with the Windows Print team to make the built-in printing experience more secure on Windows machines. The company has acknowledged that the Windows Print System has been vulnerable to attacks by threat actors (such as PrintNightmare and other Print Spooler vulnerabilities) for a long time. It’s challenging to secure the print stack mainly due to the reliance on third-party drivers. There are certain compatibility issues between legacy drivers and modern security mitigations, including Control-Flow Enforcement Technology (CET), Control Flow Guard (CFG), and Arbitrary Code Guard (ACG). Microsoft depends on printer manufacturers to update these drivers, making the print service vulnerable to modern exploits. Microsoft recommends organizations to switch to Internet Printing Protocol (IPP) based printing, which operates in conjunction with driverless printing. It offers several advantages, such as built-in encryption, access control, simplification of code, and authentication. However, it's worth noting that IPP-based printing currently still runs alongside driver-based printing, which can limit the implementation... --- ### How Microsoft Defender for Office 365 Protects Organizations Against QR Code Phishing Attacks - Published: 2023-12-26 - Modified: 2023-12-26 - URL: https://petri.com/microsoft-defender-for-office-365-qr-code-phishing/ - Categories: Security - Tags: Microsoft Defender for Office 365, News - Article Type: News Key Takeaways: Microsoft has noticed a surge in QR code phishing attacks, with hackers embedding malicious QR codes in emails to trick users into downloading malware. Microsoft Defender for Office 365 uses advanced technologies to detect and block QR code phishing attacks. Microsoft advises IT admins to enhance protection with Defender XDR and Defender for Endpoint against QR code phishing campaigns. Microsoft has recently shared details about how Defender for Office 365 is effectively countering the rise of QR code phishing attacks. A QR code (Quick Response code) is a two-dimensional barcode capable of storing different types of information (such as product details, contact information, and website URLs). It can be easily scanned with smartphones or other mobile devices. Over the past few years, Microsoft has observed a significant rise in QR code phishing attacks. This technique allows hackers to insert QR code images that link to harmful content either directly into the email body or as an attachment. Once scanned, the code redirects the user to a fake website that can download malware or steal sensitive information. “A QR code can be easily manipulated to redirect unsuspecting victims to malicious websites or to download malware in exactly the same way as URLs, only by putting the URL in a more difficult-to-detect location. Adversaries craft QR codes to look legitimate, for example a message coming from an IT Administrator, and when scanned will ask the user to verify their account via their credentials or download a malicious file onto the... --- ### First Ring Daily: Time to LLM - Published: 2023-12-22 - Modified: 2023-12-22 - URL: https://petri.com/first-ring-daily-time-to-llm/ - Categories: Cloud Computing, Windows - Tags: artificial intelligence, featured-top-right, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott dive deep into Large Language Models (LLMs), getting started with Windows AI Studio, and more. In this episode of First Ring Daily, Brad Sams and Paul Thurrott dive deep into Large Language Models (LLMs), getting started with Windows AI Studio, and more. --- ### Microsoft Teams Channels to Get New Discover Feed - Published: 2023-12-22 - Modified: 2023-12-22 - URL: https://petri.com/microsoft-teams-channels-discover-feed/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams is getting new a Discover Feed to let users catch up quickly on relevant channel conversations. Microsoft Teams users will have the ability to tailor the Discover Feed to their preferences. Microsoft is introducing new audio and video flyouts for Teams meetings in January 2024. Microsoft Teams is about to add a new Discover Feed for channels, which will roll out to desktop and web users next month. This new feature aims to provide a personalized feed for users to stay updated on important announcements, eliminating the need to navigate various Teams channels. “We are bringing users a personalized channel feed from people and topics users care about. Instead of going through each channel listed to catch up on what's happening in the org, users can come to Discover Feed in Teams to catch up quickly on relevant channel conversations,” Microsoft explained on the Microsoft 365 Admin Center. Microsoft Teams users will be able to customize the Discover Feed by selecting the "Do not show post from X person/channel” button. Moreover, users will have the option to provide feedback on whether a post appearing in their feed is helpful or not. Microsoft Teams' Discover Feed to hit general availability in February Microsoft expects to start rolling out this new feature in late January, and all Microsoft Teams users should have it by February 2024. It’s one of the top requested features, which consolidates all interesting content from different Teams channels. In addition to the Discover Feed,... --- ### Microsoft's Azure Monitor Enhances Container Insights with Multi-Line Logging - Published: 2023-12-21 - Modified: 2023-12-21 - URL: https://petri.com/azure-monitor-container-insights-multi-line-logging/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Key Takeaways: Microsoft has rolled out Multi-Line Logging support for Azure Monitor – Container Insights. This Multi-Line Logging feature allows IT administrators to collect and store multiple lines of log data into a single entry. This capability could be particularly beneficial for identifying and resolving issues in containerized applications. Microsoft has announced that Multi-Line Logging support is generally available in Azure Monitor – Container Insights. The new feature enables IT administrators to collect and store multiple lines of log data in a single entry for streamlined analysis of containerized applications. Azure Monitor is a service that allows organizations to collect, analyze, and monitor data from cloud and on-premises environments. Its Container Insights feature provides detailed insights into the performance and health of applications running in containers. This capability lets administrators collect container logs as well as memory and processor metrics from controllers, containers, and nodes. Microsoft mentioned that logs are crucial for monitoring and resolving issues in containerized applications. However, the challenge lies in analyzing logs that are spread over multiple lines. For example, when an error occurs in a . NET or Go application, the relevant stack trace could be spread across several log entries. “With this feature enabled, previously split container logs are stitched together and sent as single entries to the ContainerLogV2 table. This will also help customers save on cost as it is reducing the metadata added on multiple lines. Customers are able see container log lines up to 64 KB (up from the existing 16 KB... --- ### Microsoft Rolls Out Fix for Wi-Fi Connectivity Issues on Windows 11 PCs - Published: 2023-12-21 - Modified: 2023-12-21 - URL: https://petri.com/microsoft-fix-wi-fi-connectivity-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft has confirmed that the latest Windows 11 updates cause Wi-Fi connectivity issues, particularly on public, enterprise, and education networks. Microsoft has released a Known Issue Rollback (KIR) to address the problem on Windows 11 versions 23H2 and 22H2. However, enterprise customers will need to use Group Policy to apply the fix manually. Microsoft has acknowledged an issue with the most recent Windows 11 updates, which cause Wi-Fi connectivity issues on public, enterprise, and education networks. The problem happens after installing the Patch Tuesday updates released on December 12, and it affects Windows 11 versions 23H2 and 22H2. According to multiple reports on Reddit and Microsoft community forums, Windows 11 users may experience issues while connecting to wireless networks enabled with fast transition/fast roaming. The feature allows users to ensure seamless wireless connectivity while moving from one access point to another. However, this issue won't affect Windows 11 devices connected to a home network. Microsoft has released a fix with a Known Issue Rollback (KIR), which will enable the operating system to revert to a previous version of the code to address the problem. However, it is important to note that this is only a temporary workaround, and Microsoft plans to provide a comprehensive fix in a future update. “Please note that it might take up to 24 hours for the resolution to propagate automatically to consumer devices and non-managed business devices. Restarting your Windows device might help the resolution apply to your device faster,” Microsoft explained. Configure... --- ### Microsoft Adds Two-Way Trust Relationships Support to Entra Domain Services - Published: 2023-12-20 - Modified: 2023-12-20 - URL: https://petri.com/microsoft-entra-domain-services-two-way-trust-relationships/ - Categories: Identity Management - Tags: Domain Services, News - Article Type: News Key Takeaways: Microsoft has announced that support for two-way trust relationships is now available in Entra Domain Services. The new feature gives organizations greater control over hybrid identity environment management. Microsoft encourages organizations to participate in the private preview program. Microsoft has added support for two-way trust relationships in its Entra Domain Services solution. The new feature provides organizations with increased control over the management of hybrid identity environments. Microsoft Entra Domain Services is a cloud-based solution that offers managed domain services, including group policy, domain joining, LDAP, and Kerberos/NTLM authentication. This service enables organizations to move legacy applications from an on-premises environment to a managed domain in the cloud without maintaining their own infrastructure. Customers can use trust relationships to integrate their cloud and on-premises resources. In Microsoft Entra Domain Services, trust relationships provide secure access to resources across multiple domains or forests. Organizations might consider creating a trust relationship to address hybrid identity management or merger and acquisition scenarios. What are two-way trust relationships? Until now, Microsoft Entra Domain Services allowed organizations to create one-way outbound trusts from managed domains to on-premises forests or domains. This capability lets on-premises customers access resources in the managed domain, but not the other way around. Microsoft explained that the new feature allows administrators to create trust with Domain Services in three directions: two-way, one-way outgoing, and one-way incoming. They can select the trust direction based on their organization's collaboration, security, and migration needs. Two-way: Users in the managed and on-premises domains... --- ### Critical Perforce Server Vulnerability Opens Doors for Full System Control - Published: 2023-12-20 - Modified: 2023-12-20 - URL: https://petri.com/microsoft-critical-perforce-server-vulnerability/ - Categories: Security - Tags: cybersecurity, News - Article Type: News Key Takeaways: Microsoft has discovered four security vulnerabilities in the Perforce Helix Core Server. The highest severity vulnerability (CVE-2023-45849) could be exploited by remote attackers to execute code from the LocalSystem account. Microsoft urges organizations to update to the patched version of Perforce Server immediately. Microsoft has recently disclosed four vulnerabilities in the Perforce Helix Core Server. These security flaws could enable threat actors to remotely execute commands in order to gain privileged access to the local Windows systems. The Perforce Helix Core Server (also known as Perforce Server) is a version control system that helps software development teams manage and track changes to source code. It allows multiple users to work on the same project simultaneously. Perforce Server is used to manage the software development life cycle across various industries such as technology, military, government, gaming, and retail. In August 2023, Microsoft reported four security vulnerabilities in the Perforce Helix Core Server. These vulnerabilities allow hackers to carry out malicious activities, such as denial-of-service (DoS) and remote code execution (RCE) attacks. The first vulnerability (tracked as CVE-2023-45849) has a high severity rating of 9. 0 out of 10 on the CVSS. Remote attackers can exploit this flaw to execute code from the LocalSystem account. LocalSystem is a highly privileged account used by Windows services and system processes to access resources on the local system without requiring specific user credentials. Microsoft warned that the vulnerability lets malicious actors gain full control over a system running a vulnerable version of the Perforce... --- ### Microsoft Teams Channels Now Let Users Create Loop Components - Published: 2023-12-19 - Modified: 2023-12-19 - URL: https://petri.com/microsoft-teams-loop-components-channels/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has introduced support for Loop components in channels in the new Microsoft Teams client. The feature allows users to create, edit, and share Loop components between chats, channels, Outlook emails, and other Microsoft 365 apps. Loop components created in Teams channels are stored in the channel's SharePoint site. The new Microsoft Teams client that launched earlier this year now supports Loop components within channels. The feature allows users to create, edit, and share Loop components without leaving their channel conversations. Microsoft first introduced support for Loop components in Teams chats back in November 2021. Loop components are portable pieces of content (such as a list, table, or paragraph) that enable users to co-create and collaborate with other team members. The latest release lets Microsoft Teams users create, copy, and paste Loop components between chats, channels, Outlook emails, and other Microsoft 365 apps. “Loop components created in Teams channels are stored in the channel's SharePoint site allowing people in the channel to access the component and making the component easy to find later. If a component is created and sent within the channel, you can access it in the Files tab. If a component is pasted and sent within the channel, you can access it from within the Microsoft 365 ecosystem,” Microsoft explained. To try out the new feature, open a channel in the new Microsoft Teams client. Compose a message and click the Loop icon to create a new Loop component in a new post or reply... . --- ### Microsoft Cracks Down on Websites Generating Millions in Fraudulent Accounts - Published: 2023-12-19 - Modified: 2023-12-19 - URL: https://petri.com/microsoft-websites-fraudulent-accounts/ - Categories: Security - Tags: cyberattacks, cybercrime, cybersecurity, News - Article Type: News Key Takeaways: Microsoft's Digital Crimes Unit successfully disrupted Storm-1152, a cyber threat group based in Vietnam, by seizing domains crucial to their operation. Microsoft took down several websites selling identity verification bypass tools and seized platforms marketing these services. The cybercriminals used various tactics such as scripts, automation, DevOps practices, and AI to bypass security measures. Last week, Microsoft disrupted a Vietnam-based threat group called Storm-1152. Microsoft’s Digital Crimes Unit (DCU) gained control of the domains used by the group to sell millions of fraudulent Microsoft accounts to other cybercriminals. The DCU team has obtained a court order from the Southern District of New York to take down the US-based digital infrastructure of the cybercrime-as-a-service group. As part of this operation, Microsoft has disabled several websites that were selling identity verification bypass tools, such as 1stCAPTCHA, AnyCAPTCHA, and NoneCAPTCHA. The company has also seized a website that was selling fake Outlook accounts known as Hotmailbox. me, as well as social media sites that were being used to market these illegal services. "Storm-1152 runs illicit websites and social media pages, selling fraudulent Microsoft accounts and tools to bypass identity verification software across well-known technology platforms," said Amy Hogan-Burney, General Manager for Microsoft's DCU. "These services reduce the time and effort needed for criminals to conduct a host of criminal and abusive behaviors online. " Storm-1152’s illicit websites How Storm-1152 bypassed security measures to create scam Microsoft accounts According to Microsoft, the cybercriminal group (Storm-1152) utilized a combination of scripts, automation, DevOps practices, and... --- ### Microsoft Releases New Printer Metadata Troubleshooter Tool to Fix Printer Renaming Issues - Published: 2023-12-18 - Modified: 2023-12-18 - URL: https://petri.com/microsoft-printer-metadata-troubleshooter-tool/ - Categories: Windows 10, Windows 11 - Tags: News, Windows, Windows 1.0, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has released the Printer Metadata Troubleshooter Tool to fix the Windows bug that was previously causing printer renaming to HP LaserJet. This tool restores the original printer information and removes the unwanted HP Smart application. However, it may take a couple of hours for the icon and metadata changes to reflect on their Windows devices. Microsoft recently acknowledged an issue where the HP Smart App was being installed, and printers were getting renamed on Windows 11 and Windows 10 PCs. Now, the company has released the Microsoft Printer Metadata Troubleshooter Tool, providing an easy solution for affected users to fix the printer bug on their Windows devices. Last month, many users reported that the HP Smart printer app was automatically installed on their Windows 10 and 11 PCs, even if they did not have an HP printer. Additionally, the bug was causing the icons and names of the printers to change to HP LaserJet M101-M106. This problem affects all supported versions of Windows 11, Windows 10, and Windows Server. To address this issue, Microsoft has introduced a new tool that allows users to scan their systems and restore any previously downloaded model information and icons. The troubleshooter tool also removes the HP Smart application if specific conditions are met. “It will restore any previously downloaded model information and icons and will remove HP LaserJet M101-M106 model information, icons, and application associations from printers that do not match this name and model. This tool will uninstall the HP... --- ### Microsoft Details FIDO2 Security and Certificate-Based Authentication Updates - Published: 2023-12-18 - Modified: 2023-12-19 - URL: https://petri.com/microsoft-fido2-security-certificate-based-authentication/ - Categories: Microsoft Entra ID (Azure AD) - Tags: News, Security - Article Type: News Key Takeaways: Microsoft has announced a new feature that will let Entra ID users register and sign in using device-bound passkeys managed in Microsoft Authenticator. The Microsoft Authenticator app for Android devices is now compliant with FIPS 140 security standards. Microsoft has also released some updates for Entra ID Certificate-Based Authentication (CBA). Microsoft has detailed its efforts to enable phishing-resistant authentication methods for organizations. The company is implementing several security features, including device-bound passkeys, FIDO2 support for iOS and macOS apps, and Certificate-Based Authentication updates, to enhance the overall protection for all Entra ID customers. Microsoft has announced that it will soon introduce a new feature for its Entra ID customers. It will allow users to register and sign in to their accounts using device-bound passkeys managed in Microsoft Authenticator. A passkey is a digital credential that eliminates the need for usernames and passwords. Microsoft says that passkey support will be added to the Authenticator app in the first half of 2024. “This is a cost-effective, phishing-resistant credential available to anyone with the Authenticator app! Passkeys provide you with the latest and greatest security enhancements that will come to the FIDO standard over the next many years – and Authenticator integration lets you take advantage of the security innovations and advanced features Authenticator provides,” Microsoft explained. Passkey managed in the Microsoft Authenticator app Microsoft Authenticator to become phishing-resistant The latest version of the Microsoft Authenticator app for Android devices is now compliant with the US government's Federal Information Processing Standards... --- ### Microsoft Teams to Retire Legacy Chat Infrastructure in March 2024 - Published: 2023-12-18 - Modified: 2023-12-18 - URL: https://petri.com/microsoft-teams-retire-legacy-chat-infrastructure/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft will drop support for the legacy chat messaging infrastructure in Microsoft Teams by the end of March 2024. Microsoft Teams users relying on older versions may experience message delivery delays in one-on-one chats, group chats, and channel posts. Microsoft encourages desktop and mobile users to update to the latest version of Teams. Microsoft has decided to discontinue support for the legacy chat messaging infrastructure in Microsoft Teams. This change will go into effect in March 2024, and users are advised to update their Teams client to avoid any potential communication issues caused by using older versions. Microsoft Teams users who continue to use a version older than three months may experience delayed delivery of messages in one-on-one chats, group chats, and channel posts. This change will impact the Microsoft Teams desktop, iOS, Android, and Virtual Desktop Interface (VDI) clients. According to Microsoft, the upcoming change won’t affect Teams Phone devices, Surface Hub, Panels, and meeting rooms. Moreover, the Microsoft Teams web app is designed to automatically update itself, ensuring it remains up-to-date without user intervention. It's important to note that Microsoft Teams follows the Modern Lifecycle Policy, which requires users to use the latest version of the app. The automatic updates are intended to improve the reliability, security, and performance of Microsoft Teams. “Microsoft is constantly investing into innovations and improvements for more effective, reliable, and secure communication infrastructure. The latest improvements for chat messaging scenarios are enhancing the resiliency of message delivery in Microsoft Teams,” Microsoft... --- ### NTFS Permissions: A Comprehensive Guide - Published: 2023-12-18 - Modified: 2024-02-22 - URL: https://petri.com/ntfs-permissions/ - Categories: Windows - Tags: File Server, NTFS, Windows, Windows Server - Article Type: How To Windows allows users to assign permissions to files and folders, for added security and to control which users can perform specific actions on files and folders. Learn all you need to know about basic permissions, folder permissions, user permissions, explicit permissions, and much more. What are NTFS permissions? NTFS permissions, first introduced with Microsoft Windows NT, are one of two types of access controls built-in to Windows systems formatted with the NTFS file system (New Technology File System). The other type is 'Share' permissions. These permissions can be used to restrict who can access files and folders on Windows computers using allow or deny permissions. NTFS permissions are inherited from a root folder (parent folder) to files beneath it. However, this inheritance can be disabled. There is a lot of granularity available, but it can quickly become an administrative nightmare. How do NTFS permissions differ from Share permissions? NTFS permissions are set on NTFS volumes, which are logical areas of a physical disk. NTFS permissions control access to files and folders. Share permissions are set on shared folders and help you control access at the share level. Share permissions are evaluated before NTFS permissions. You will discover more granularity with NTFS permissions, allowing you to grant finer control to your users. On the other hand, share permissions are simpler to manage, but offer less granularity. You essentially have three Share permissions: Full Control Change Read You'll find MANY more levels with NTFS permissions later in this article. How to... --- ### Microsoft Entra Permissions Management Gets New Capabilities and APIs - Published: 2023-12-15 - Modified: 2023-12-15 - URL: https://petri.com/microsoft-entra-permissions-management-features/ - Categories: Identity Management - Tags: Microsoft Entra Permissions Management, News - Article Type: News Key Takeaways: Microsoft Entra Permissions Management is getting a new ServiceNow integration and support for Okta and AWS IAM Identity Center. The permissions analytic report offers a detailed examination of findings across identities and resources in supported cloud environments. Microsoft has introduced new MS-Graph APIs in public preview for Permissions Management. Microsoft has announced several new features for its Entra Permissions Management service. The cloud infrastructure entitlement management (CIEM) tool enables organizations to effectively monitor and control permissions for various identities and resources across different cloud services. Microsoft Entra Permissions Management is getting a new ServiceNow integration that will let organizations manage their multi-cloud permissions. It allows users to request, approve, revoke, and audit their permissions with automated ServiceNow workflows. The ServiceNow app helps to track permissions in a dashboard as well as generate reports and audit logs to monitor and verify permissions. Additionally, Microsoft has added new Permission Management capabilities to its Defender for Cloud solution. The new integration enables organizations to prevent security breaches that happen due to misconfigurations and excessive permissions in cloud environments. It provides actionable insights to address permissions risks across Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP). Microsoft has introduced Okta and AWS IAM Identity Center support for Microsoft Entra Permissions Management. It allows IT administrators to get a centralized view of identities and their corresponding permissions. Okta and AWS IAM Identity Center support Microsoft has released a new permissions analytic report that details findings across identities and resources. The... --- ### First Ring Daily: Intel's New Core Ultra CPUs and AI PCs - Published: 2023-12-15 - Modified: 2023-12-15 - URL: https://petri.com/first-ring-daily-intels-new-core-ultra-cpus-and-ai-pcs/ - Categories: Hardware - Tags: artificial intelligence, CPU, Intel, News - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Intel showing off its new "Meteor Lake" Core Ultra mobile CPUs, neural processing units (NPUs) arriving on laptops, and changes to the desktop. On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Intel showing off its new "Meteor Lake" Core Ultra mobile CPUs, neural processing units (NPUs) arriving on laptops, and changes to the desktop. --- ### Microsoft Teams Enhances File Management with New OneDrive App - Published: 2023-12-15 - Modified: 2023-12-15 - URL: https://petri.com/microsoft-teams-new-onedrive-app/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: The new Microsoft Teams client is replacing the existing Files app with a new OneDrive application. The OneDrive app for Teams offers new views, filters, and AI-powered recommendations to help users quickly locate files and other content. Microsoft plans to extend the new OneDrive experience to the classic Microsoft Teams app in early 2024. Microsoft has started rolling out a new OneDrive app to replace the existing Files app in the new Microsoft Teams client. This new OneDrive experience aims to streamline file storage, organization, and retrieval for users across Microsoft 365. “The OneDrive app will soon replace the Files app in Teams, giving you consistent and familiar file management experience across all of Microsoft 365. The new OneDrive app takes advantage of all the recent updates made to OneDrive and SharePoint library experiences, bringing you the benefits of performance improvements, new views, and feature enhancements in OneDrive,” Microsoft explained. The OneDrive app is a central hub for file management that allows for easy sharing and collaboration without switching between different applications. Microsoft Teams users can easily find relevant files by browsing through them by people, file type, or meetings. OneDrive app for Teams What's new in the OneDrive app for Microsoft Teams? The new OneDrive Home experience enables users to easily access their recently viewed files and content, including Lists, Loop components, and Whiteboard. In addition, the For You section shows AI-generated file recommendations with activity updates and thumbnails. With the Shared view, users can easily access... --- ### Strategic IT Planning in Complex Organizations - Published: 2023-12-15 - Modified: 2023-12-13 - URL: https://petri.com/strategic-it-planning-in-complex-organizations/ - Categories: IT Infrastructure - Tags: featured-top-right, IT strategy - Article Type: Interview In the ever-changing world of IT, aligning strategic objectives with evolving user needs and business goals is a formidable challenge, especially in large, multifaceted organizations. In a recent interview on Petri's UnplugIT podcast, Tim Aberle, a principal IT architect at a Fortune 500 entertainment company, shed light on this intricate process. The insights he provided lay out a roadmap for navigating the complexities of IT strategy and rapid technological change. Understanding user needs and context A critical starting point in IT strategy is a deep understanding of user needs. A user-centric approach requires IT Professionals to step into the shoes of users, to understand their daily challenges and requirements beyond the technical specifications of a project. “We’re building things to help the various folks who actually do the work within our organizations succeed,” Tim said. Aligning IT solutions with business goals Aligning IT solutions with overarching business goals is another pivotal strategy. Tim highlights this alignment as a cornerstone of his employer’s IT initiatives: “Our primary focus... is to be the IT outsourcer of choice internally. ” Such alignment ensures that IT solutions not only solve technical problems but also contribute to the business’s broader objectives, creating a synergy between technology and business strategy. https://www. youtube. com/watch? v=IJFNTR4bKOM Managing IT in an organization that spans multiple industries, from banking to hospitality, adds layers of complexity. IT needs to be versatile so that it can adapt to the unique needs and regulations of different sectors, ensuring IT infrastructures are robust and flexible. User feedback is... --- ### What's New in Microsoft Entra Certificate-Based Authentication - Published: 2023-12-14 - Modified: 2023-12-14 - URL: https://petri.com/microsoft-entra-certificate-based-authentication-updates/ - Categories: Identity Management - Tags: Microsoft Entra, News - Article Type: News Key Takeaways: Microsoft Entra CBA now boasts increased flexibility with support for three additional username bindings. CBA affinity binding lets IT admins configure protection levels by leveraging certificate attributes during the user authentication process. Microsoft has integrated CBA into the Most Recently Used (MRU) methods. Microsoft has detailed new features and capabilities added to its Entra certificate-based authentication (CBA) since its launch in October 2023. The company highlighted support for three additional username bindings, CBA affinity binding, CBA as Most Recently Used (MRU), and various other improvements. Microsoft Entra certificate-based authentication (CBA) helps organizations configure phishing-resistant MFA that complies with US federal requirements. The service is designed to encourage customers to migrate their on-premises implementations to the cloud. Microsoft Entra can be either single-factor (SF) or multifactor (MF) based on the tenant configuration. First off, Microsoft has added support for three additional username bindings to Entra certificate-based authentication (CBA). The list includes IssuerAndSerialNumber, IssuerAndSubject, and Subject Only. “The username binding policy allows admins to customize how Entra ID will match the certificate being presented by the user with their user account in Entra ID. By default, we map Principal Name in the subject Alternative Name (SAN) attribute of the certificate to UserPrincipalName in the user object. An admin can override the default and create a custom mapping,” Microsoft explained. Microsoft Entra CBA Authentication policy rules Microsoft Entra CBA authentication policy rules allow administrators to configure protection levels for certificates. These protection levels help Entra ID determine whether a certificate is... --- ### Cybercriminals Exploit OAuth Apps for BEC and Phishing Attacks - Published: 2023-12-14 - Modified: 2023-12-14 - URL: https://petri.com/oauth-apps-bec-phishing-attacks/ - Categories: Security - Tags: Microsoft, News - Article Type: News Key Takeaways: Microsoft has warned that hackers are exploiting OAuth for automated financial cyberattacks. Threat actors use various tactics such as password spraying and phishing to compromise user accounts and launch attacks. Organizations are urged to implement multifactor authentication and dynamic conditional access policies to boost security against OAuth attacks. Microsoft has issued a warning about cybercriminals exploiting OAuth for automated financial cyberattacks. The Threat Intelligence team has identified that threat actors are creating malicious OAuth apps to carry out password spraying, phishing, and crypto mining activities. OAuth (Open Authorization) is an open standard designed to offer secure third-party access to user resources on a website or application without the need to share credentials. It uses tokens (such as refresh tokens or access tokens) to effectively manage the authorization process securely. The Microsoft Threat Intelligence team has recently published a blog post highlighting a series of campaigns that aimed to compromise user accounts and conceal malicious activity by creating, modifying, and granting high privileges to OAuth apps. The attackers primarily targeted user accounts that lacked strong authentication mechanisms. Microsoft revealed that the hackers utilized password spraying, crypto mining, and business email compromise (BEC) techniques to execute the attacks. The Storm-1283 hacking group infiltrated an account to develop an OAuth application, which they then used to deploy virtual machines for crypto mining. As a result, the targeted organizations were charged Azure compute fees ranging from $10,000 to $1. 5 million. OAuth application for cryptocurrency mining attack chain In addition, Microsoft's researchers discovered... --- ### Here's How Run Command Simplifies Management Operations on Azure Arc-Enabled Servers - Published: 2023-12-13 - Modified: 2023-12-13 - URL: https://petri.com/run-command-azure-arc-enabled-servers/ - Categories: Microsoft Azure - Tags: News - Article Type: News Key Takeaways: Microsoft has released Run Command support that allows administrators to remotely execute scripts on Azure Arc-enabled servers. It helps to perform various server management tasks, such as diagnostics, security enforcement, and application management. Run Command streamlines the process of installing security updates and makes task automation easier. Microsoft has introduced Run Command support in public preview for Azure Arc-enabled servers. This new feature enables administrators to remotely execute scripts on Azure Arc-enabled servers with the Connected Machine agent. Azure Arc-enabled servers enable IT administrators to manage Windows and Linux physical servers hosted outside of Azure, whether on corporate networks or in other cloud environments. Once a hybrid machine establishes a connection with Azure, it becomes a connected machine and is recognized as a resource within the Azure environment. “This feature is a game-changer for remotely and securely managing your Azure Arc-enabled servers,” Microsoft explained. “Run Command is built in the Connected Machine agent and supports not just the ability to run scripts but to centralize script management across creation, update, deletion, sequencing, and listing operations. ” Key scenarios to use Run Command With Run Command, IT admins can perform various server management tasks, including diagnostics, security, and application management. It helps to run health checks, install or update software, troubleshoot issues, and configure firewall rules. Microsoft highlighted that the Run Command feature simplifies the process of applying security updates, mitigating vulnerabilities, and enforcing compliance policies on Azure Arc-enabled servers. It also helps organizations to automate tasks (like encrypting data,... --- ### Microsoft Leads the Way in Responsible AI Integration and ESG Compliance > Chester Avey dissects how AI can apply to all aspects of ESG compliance and how companies like Microsoft are shining examples of how to integrate responsible AI and do it methodically. - Published: 2023-12-13 - Modified: 2023-12-13 - URL: https://petri.com/microsoft-responsible-ai-esg-compliance/ - Categories: Artificial Intelligence - Tags: AI, ChatGPT, featured-top-right - Article Type: Opinion Artificial intelligence (AI) has rapidly evolved from a sci-fi fantasy to a part of the everyday vernacular for individuals and businesses alike. The guidance and insights in this blog post dissect how AI can apply to all aspects of ESG compliance and how companies like Microsoft are shining examples of how to integrate responsible AI and do it methodically. Generative AI in particular has gained a lot of traction in the last year alone, most notably Microsoft’s prototype ChatGPT, with persuasively human-like conversations now commonplace, making it hard to differentiate from genuine human writing and images.   Behind the scenes, the integration of AI - a technology notorious for its deep learning capabilities - has seen businesses thrive and achieve productivity improvements. AI products, at a glance, can aggregate large datasets, analyze metrics, generate swathes of assets, and facilitate administrative workloads on businesses across all sectors. However, the advancement of this technology has led to rumblings of widespread disruption around the principles of responsible AI adoption. In the main, the concerns center around the responsible use of AI trust - ethics, transparency and controlled input. Potential barriers of AI It was only recently that the EU agreed on new laws and top-level aims and goals for AI regulation, citing human protection and reassurance as its number one priorities. However, even with such an alarming lack of regulation in its current form, AI capabilities continue to expand at a rapid pace. Even ChatGPT - the de-facto face of generative AI -... --- ### Microsoft Releases December 2023 Patch Tuesday Updates for Windows 11 and 10 - Published: 2023-12-13 - Modified: 2023-12-13 - URL: https://petri.com/december-2023-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has released the December 2023 Patch Tuesday updates to fix 33 vulnerabilities in Windows 11 and Windows 10. The KB5033375 update brings enhancements for Windows 11 23H2 and 22H2, allowing users to access the Copilot AI assistant across multiple monitors. Microsoft announced the public rollout of Copilot on non-managed Windows 10 devices. Microsoft released its monthly Patch Tuesday updates for Windows 11 and Windows 10 yesterday. The company rolled out 33 new patches to fix several vulnerabilities in Windows, Microsoft Office, Windows Defender, and other components. The December Patch Tuesday release is usually small, and this month follows suit with fewer security patches compared to recent months. On the quality and experience updates front, Microsoft has introduced a couple of enhancements for Windows 10 and Windows 11 versions 23H2 and 22H2. 33 vulnerabilities fixed in the December 2023 Patch Tuesday updates This month, Microsoft addressed a total of 33 vulnerabilities, four of which were deemed Critical. Additionally, there are 29 security flaws rated as "Important" in terms of severity. Here’s a list of the most notable vulnerabilities Microsoft addressed in December: CVE-2023-35628: This is a critical remote code execution flaw in the Windows MSHTML platform. The bug has a severity rating of out of 10 on the CVSS scale. Threat actors could exploit this vulnerability by sending a specially crafted email and tricking the user to click on the malicious link. CVE-2023-20588: The speculative leaks vulnerability affects some AMD processors, and it was first disclosed in August... . --- ### Enhancing Cloud Security: Microsoft Details Best Practices to Thwart Identity Compromise - Published: 2023-12-12 - Modified: 2023-12-12 - URL: https://petri.com/microsoft-best-practices-identity-compromise/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: cloud computing, Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft emphasizes the need to move away from Active Directory Federation Services (AD FS) due to significant security risks. Organizations using hybrid authentication should avoid syncing privileged admin accounts from Active Directory to Microsoft Entra ID. Microsoft advises using phishing-resistant methods to safeguard privileged accounts. Microsoft has released a comprehensive guide to assist IT administrators in promptly and effectively responding to security breaches within their organizations. The Microsoft Incident Response team detailed best practices to protect workloads in cloud, on-premises, and hybrid environments. Decommission AD FS Microsoft explained that the Active Directory Federation Services (AD FS) could pose a significant risk to enterprise environments. This service enables users to access multiple systems or applications with a single set of credentials across security boundaries. However, Microsoft has warned that a single misconfiguration could compromise the entire identity infrastructure. Additionally, threat actors have been targeting on-premises federation servers to steal Token Signing Certificates. This allows hackers to create forged SAML tokens and gain unauthorized access to Microsoft Entra ID. To mitigate this risk, Microsoft recommends that organizations move away from AD FS and adopt an Entra ID-based authentication method instead. “Microsoft IR strongly recommends moving to native Microsoft Entra ID authentication and decommissioning AD FS (or other federated identity providers) where possible. This reduces the overall complexity of the organization's identity plane and makes it easier to secure identities,” Microsoft explained. Avoid syncing privileged admin accounts from Active Directory Organizations that use hybrid authentication mechanisms usually synchronize their user accounts... --- ### Log4j Saga Continues: Lazarus Hackers Exploit 2-Year-Old Flaw to Deploy New RAT Malware - Published: 2023-12-12 - Modified: 2023-12-12 - URL: https://petri.com/lazarus-log4j-flaw-rat-malware/ - Categories: Security - Tags: Apache Log4j, News - Article Type: News Key Takeaways: Security researchers reveal ongoing exploitation of the Log4j vulnerability by the Lazarus hacking group, showcasing the persistent and widespread nature of the threat. Lazarus leverages the security flaw to deploy remote access Trojans (RATs) written in Dlang. Cybersecurity researchers found that a significant 32% of applications are still running vulnerable versions of Log4j. Security researchers have disclosed that hackers are persistently exploiting the Log4j vulnerability to infiltrate organizations globally. The infamous Lazarus hacking group has recently exploited this flaw to launch a fresh wave of cyberattacks, deploying new remote access Trojans (RATs) coded in the D programming language. What is Log4j? The Log4j vulnerability, also known as Log4Shell, was discovered in December 2021. This security flaw (CVE-2021-44228) exists in the Apache Log4j 2 library, which is a widely used Java-based logging utility. It lets hackers execute arbitrary code by exploiting the log4j library's ability to process users' data in log messages. The Log4j vulnerability received a severity rating of 10 out of 10 on the CVSS bug severity scale. It impacts several applications and services that use Log4j for logging purposes. As a result, cybersecurity researchers recommend that organizations should update their systems and applications to a patched version of Log4j. Last week, cybersecurity firm Veracode revealed that around 32 percent of applications are still running vulnerable versions of Log4j. Log4j2 1. 2x reached end of support in August 2015, and it no longer receives security patches. “Veracode analyzed data from software scans over 90 days between August 15... --- ### [Updated] New Archive Channels Feature Coming to Microsoft Teams - Published: 2023-12-11 - Modified: 2023-12-12 - URL: https://petri.com/microsoft-teams-archive-channels/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft plans to release a new update that will allow owners and administrators to archive Teams channels. Users will be able to access and read the content in the archived channels. However, members won't be able to take any actions within these channels until they are restored. Update - 12 Dec 2023 (1:17 AM PT): Microsoft has updated the Microsoft 365 Admin Center message to communicate that the feature will start rolling out to targeted release customers in early February 2024 (previously early January). Microsoft Teams is getting a new update that will allow owners and administrators to archive channels. Microsoft announced the feature through a message on the Microsoft 365 Admin Center, and the rollout is planned for Teams desktop and web users in February 2024. Microsoft Teams users will still be able to access and read the content (such as messages, files, and tabs) in the archived channels. However, channel members will not be able to take any action on these archived channels. Microsoft notes that channel owners will be able to restore them by heading to teams >> channels. “Archiving channels will be available for Teams users. You, as a channel owner or administrator can archive a channel you own. By archiving the channel, it will not be available in your and channel members teams and channels list anymore and no more actions will be allowed on the channel like messaging, reacting, commenting, editing etc,” Microsoft explained. Microsoft Teams archive channels feature to hit general availability... --- ### Microsoft Entra ID Can Now Record Timestamp for Last Successful User Sign-ins - Published: 2023-12-11 - Modified: 2023-12-11 - URL: https://petri.com/microsoft-entra-id-last-successful-user-sign-ins/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Entra ID, News - Article Type: News Key Takeaways: Microsoft has announced that Entra ID can now record the last successful sign-in activity for user accounts. The new lastSuccessfulSignInDateTime property is accessible through the Graph beta endpoint. The feature requires customers to have Microsoft Entra ID P1 licenses. Microsoft has announced that Entra ID customers can now track the last successful sign-in activity for user accounts. This new feature streamlines user account management and provides a solution to reduce the frustrations previously associated with relying solely on sign-in logs. The signInActivity resource is a component of the Microsoft Graph API that allows Entra ID customers to retrieve information about the last sign-in attempts made by a specific user. This resource provides details about both interactive and non-interactive sign-in attempts, making it easier to manage inactive user accounts. Previously, the signInActivity resource type supported the LastSignInDateTime property for reviewing user account activity. Microsoft Entra ID customers had to go through sign-in logs to find the last successful sign-in of a user within their Microsoft 365 tenants. Moreover, this process required IT administrators to filter out failed sign-in attempts to identify successful ones, leading to frustration. Microsoft explained that the lastSuccessfulSignInDateTime property captures data of the most recent successful interactive sign-in activity for each user account. It stores this data in the user object and is not subject to the 30-day limit imposed by sign-in logs. LastSuccessfulSignInDateTime Limitations Microsoft notes that organizations need to have a Microsoft Entra ID P1 license to access sign-in reports through the Graph. Currently,... --- ### New Outlook for Windows Now Lets Users Dictate Emails - Published: 2023-12-08 - Modified: 2023-12-08 - URL: https://petri.com/new-outlook-for-windows-voice-dictation/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has released voice dictation capabilities for Outlook for Windows and Outlook on the web. The voice typing feature is already available in Outlook for Windows and Mac clients. The service supports over 50 languages and maintains privacy by not storing speech data. Microsoft has started rolling out voice dictation capabilities to new the Outlook for Windows and Outlook on the web. The voice typing feature, which is powered by AI-based Microsoft Azure Speech, is already available in the Outlook for Windows and Mac clients. Microsoft Outlook uses text-to-speech technology to help users write emails and send responses. However, users will need to ensure their PC has a microphone and a reliable Internet connection. Microsoft says that the service does not store any speech data or transcription results. “The Dictate feature removes typing constraints and harnesses the power of AI-backed voice commands to help you effortlessly articulate your messages. It currently supports over 50 languages and ensures your thoughts flow freely, transforming the way you communicate,” Microsoft explained. It's important to note that Windows 10 and 11 come with built-in dictation features. However, some apps offer their own native dictation options. The addition of voice dictation support aims to improve discoverability, especially for non-power users. To try out the Dictate feature, you will need to create a new email or reply to an existing conversation. Then, place the cursor within the message body, select Message, and click the Dictate option. Once the Dictate option is enabled, you can... --- ### First Ring Daily: The Windows 12 AI Vision - Published: 2023-12-08 - Modified: 2023-12-08 - URL: https://petri.com/first-ring-daily-the-windows-12-ai-vision/ - Categories: Windows - Tags: artificial intelligence, News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss what to expect from the next Windows release coming next year, how Microsoft could use AI across "Windows 12", and more. --- ### Microsoft Unveils New Features for Windows 365 Cloud PCs - Published: 2023-12-08 - Modified: 2023-12-08 - URL: https://petri.com/microsoft-features-windows-365/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Key Takeaways: Microsoft has started testing new features for Windows 365 Boot, such as a dedicated mode and a customized company logo/name. Windows 365 Switch is set to get an improved disconnect experience and desktop indicators. These improvements are currently available for Windows Insiders in the Dev Channel. Microsoft is testing updates for its Windows 365 Cloud PC service, which are available for Insiders in the Dev Channel. The enhancements include a dedicated login mode for Windows 365 Boot, an improved disconnect experience for Windows 365 Switch, access to local PC settings from the Cloud PC, and more. Microsoft first launched its Windows 365 Cloud PC service for enterprise and business customers in 2021. It’s a cloud-based service that allows users to stream a Windows desktop to any device. Microsoft says that IT admins have complete control over Windows 365 Cloud PCs in the same way as they control regular PCs. The Windows 365 Boot feature lets users log directly into their Cloud PC as the primary Windows experience. Moreover, Windows 365 Switch allows users to switch between their local PC and Cloud PC easily. First up, Windows 365 Boot is getting a new dedicated mode, allowing users to log in to their Windows 365 Cloud PCs from any designated company-owned device. The login experience supports Windows Hello for Business and other passwordless authentication methods. Moreover, organizations will be able to add a custom name and logo on the login screen. Dedicated mode for Windows 365 Boot Microsoft is introducing... --- ### Microsoft 365 App Now Lets Users Categorize Files with Tags - Published: 2023-12-07 - Modified: 2023-12-07 - URL: https://petri.com/microsoft-365-app-categorize-files-tags/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Users can now assign private tags to files in the "My Content" section of the Microsoft 365 app. Microsoft 365 app integrates with Copilot, an AI assistant that helps users generate text, summarize content, and prepare for upcoming meetings. The Microsoft 365 app now enables native discovery of Graph connector content. Microsoft has shared a roundup of updates made to its Microsoft 365 app that launched in November 2022. The app provides a central hub for accessing Office apps, shared documents, meetings, and personalized content. Microsoft introduced its new Microsoft 365 app to replace the all-in-one Office apps on Windows, mobile, and the office. com portal. It comes with a couple of new features like content templates, a personalized feed of ongoing projects and collaborators, as well as new ways to access content. The Microsoft 365 app has added a new feature that allows users to assign private tags to files in the "My Content" section. This feature helps users organize their files for easier retrieval of important information. It is available to both desktop and web users. Google Drive for work or schools has a similar labels feature, though Google only allows admins to create these labels. Dropbox users can also apply tags to individual folders, files, or in bulk. Microsoft has also announced a new Copilot integration for its Microsoft 365 app. The Copilot AI assistant allows users to generate text, summarize content, and prepare for upcoming meetings. Copilot for Microsoft 365 is available for enterprise customers... --- ### LogoFAIL Attack Exploits UEFI Logos, Posing Risks to Enterprise and Consumer Devices - Published: 2023-12-07 - Modified: 2023-12-09 - URL: https://petri.com/logofail-attack-consumer-enterprise-devices/ - Categories: Security - Tags: linux, News, Vulnerability, Windows - Article Type: News Key Takeaways: Security researchers at Binarly have identified a new firmware vulnerability named LogoFAIL, affecting both Windows and Linux machines. It enables attackers to replace legitimate logos with specially crafted images, leading to the execution of malicious code during the boot process. The majority of consumer and enterprise-grade computer models are vulnerable to LogoFAIL attacks. Security researchers have disclosed a new firmware vulnerability named LogoFAIL, which is capable of infiltrating a wide array of Windows and Linux machines. The attack allows threat actors to use malicious logo images to potentially compromise the security of devices from major vendors, including Intel, Acer, and Lenovo. Cybersecurity company Binarly has discovered a security flaw in the image parsers used by the UEFI firmware to display logos on the device screen during the boot process. The researchers presented the details of the LogoFAIL attack at the Black Hat Europe conference on Wednesday. Mode of LogoFAIL attack The LogoFAIL attack allows hackers to replace the legitimate logo with a specially crafted image. This can lead to the execution of malicious code during the Driver Execution Environment (DXE) phase of the boot process. The DXE phase loads and executes UEFI drivers that manage hardware components such as network interfaces and storage controllers. This method helps the threat actor to compromise the entire computer system and bypass built-in security protections like Secure Boost. “Once arbitrary code execution is achieved during the DXE phase, it’s game over for platform security,” researchers from Binarly, the security firm that discovered... --- ### New Microsoft Teams Client Now Generally Available for Virtual Desktop Infrastructure - Published: 2023-12-06 - Modified: 2023-12-06 - URL: https://petri.com/new-microsoft-teams-virtual-desktop-infrastructure/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: The new Microsoft Teams app is designed to be twice as fast and consume 50 percent less memory than its predecessor. The new Teams provides a faster scrolling experience and seamless switching between chats, channels, and activities. Microsoft plans to discontinue support for the classic Teams client in VDI on June 30, 2024. Microsoft has announced that the new version of its Teams app is now generally available for virtual desktop infrastructure (VDI) customers. The new Teams client has been rebuilt from the ground up with a focus on improved performance, a simplified interface, and reduced memory footprint Microsoft says that the new Teams is two times faster and it consumes 50 percent less memory than the classic Teams desktop application. Users should notice a faster scrolling experience and instant switching between chats, channels, as well as activities. “The new Teams App in VDI has feature parity with classic Teams app and also has improved performance, reliability, and security. Additionally, we are grateful to our committed customers who gave us feedback during public preview, which helped us improve several VDI specific features and enhance the basics to guarantee smooth updates to the new Teams app,” Microsoft explained. The new Microsoft Teams app comes with new AI-powered experiences and multi-tenant organization capabilities. Copilot in Teams will allow users to get AI-generated summaries, action items, and decisions based on their conversations. The Copilot AI assistant will also let participants catch up on missed Teams meetings. Support for classic Teams for... --- ### Microsoft to Fix Windows Bug that Renames Printers to HP LaserJet - Published: 2023-12-06 - Modified: 2023-12-06 - URL: https://petri.com/microsoft-windows-bug-printers-hp-laserjet/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has acknowledged a new issue that causes automatic installation of the HP Smart App on Windows PCs without users’ permission. A related bug renames all installed printers as HP LaserJet models, regardless of manufacturer. Microsoft confirmed that the issue affects all supported versions of Windows 11, Windows 10, and Windows Server. Microsoft has acknowledged a new issue plaguing Windows PCs, where the HP Smart App is being automatically installed without user consent. Simultaneously, a separate bug that renames all the installed printers as HP LaserJet M101-M106 has emerged. Microsoft detailed on the Windows release health dashboard that the problem is caused by a bug that incorrectly labels hardware printers connected to Windows devices with incorrect metadata. Users have observed that the printer names and icons are automatically changed to HP LaserJet M101-M106, regardless of the original manufacturer. Additionally, the HP Smart App unexpectedly installs on Windows 10 and 11 devices through the Microsoft Store without user interaction. The application allows users to scan, print, and share documents with HP printers. “Our investigations indicate that this issue is not caused by an HP update. Also, printing processes are not expected to be affected by this issue. It should be possible to queue printing jobs as usual, as well as other features such as copying or scanning. Printers on the device will continue to use the expected drivers for printer operations,” Microsoft explained. HP Smart App HP printer issues affect Windows 10, Windows 11, and Windows Server According to... --- ### Do I Need Antivirus on Azure Stack HCI? > As Azure Stack HCI becomes more common in datacenters and at the network edge, I would like to highlight some frequently asked questions about software and Azure Stack HCI antivirus. - Published: 2023-12-06 - Modified: 2023-12-06 - URL: https://petri.com/azure-stack-hci-antivirus/ - Categories: Azure Stack HCI - Tags: Azure Stack HCI, featured-top-right - Article Type: Overview As Azure Stack HCI becomes more common in datacenters and at the network edge, I would like to highlight some frequently asked questions I have encountered during the last few months about software and Azure Stack HCI antivirus. Does Microsoft support third-party software on Azure Stack HCI? In general, you can say “Microsoft does not support any 3rd party software” on Azure Stack HCI. But that’s common, as a vendor, Microsoft cannot support applications developed by another company. Microsoft only supports their own product, which is in the case of Azure Stack HCI for example: Windows Defender Azure Monitoring Azure Backup etc. Every other third party must be supported by the software vendor and they need to support the software on the platform, i. e. Azure Stack HCI. Microsoft Partners like Datadog and Veeam support their products on Azure Stack HCI. Not every partner is listed by Microsoft, in fact it’s rarely documented who supports a platform. So, your research normally should start with your third-party software vendor. Most of them are very open which platforms they support, like Altaro and Dell, who are not shy to state they support Azure Stack HCI. For other partners, you may need to search more or contact a technical representative. Azure Stack HCI antivirus: Do I need additional antivirus solutions for Azure Stack HCI? And which ones are supported? As already explained, Microsoft does not support or recommend any third-party antivirus solutions. They can harm your system. Here is an example from Sophos: Figure... --- ### Microsoft Announces Paid Extended Security Updates for Windows 10: What You Need to Know - Published: 2023-12-05 - Modified: 2023-12-05 - URL: https://petri.com/windows-10-extended-security-updates/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Key Takeaways: Microsoft has announced its plans to offer paid Extended Security Updates (ESUs) for Windows 10. The ESU program will allow consumers and organizations to continue receiving critical security patches after the planned end of support in October 2025. However, enterprise customers opting for ESUs will not receive new features, non-security updates, or technical support. Microsoft announced today that it will offer Windows 10 Extended Security Updates (ESUs) to both consumers and organizations. The company plans to end support for Windows 10 in October 2025 and will no longer release security updates and bug fixes beyond that date. Microsoft is reminding customers that Windows 10 version 22H2 will receive monthly security updates until October 14, 2025. Companies can opt for the Windows 10 ESU program to pay for critical and important security patches for up to three years. However, customers won't receive new features, non-security updates, or technical support. “Like the Windows 7 ESU program, your organization will be able to purchase a yearly subscription to security updates. The yearly commitment is renewable for three years. Devices enrolled in ESUs will receive monthly security updates to keep these Windows 10 PCs secure,” said Jason Leznek, Principal Product Manager for Windows Servicing and Delivery. Windows 10 continues to dominate Windows 11 in market share Since its launch, Microsoft has encouraged enterprise customers to upgrade their eligible devices to Windows 11. This latest version of Windows comes with several security features, such as Local Security Authority (LSA) protection and Smart App... --- ### Set-ExecutionPolicy – Mastering PowerShell Execution Policy > Learn how to manage PowerShell security with the Set-ExecutionPolicy cmdlet. Bill Kindle guides you through execution policies and how to set them. - Published: 2023-12-05 - Modified: 2024-11-19 - URL: https://petri.com/set-executionpolicy/ - Categories: PowerShell - Tags: featured-top-right, PowerShell, Security - Article Type: How To PowerShell is considered secure by default due to various design principles and features that Microsoft incorporated into its architecture. These measures aim to ensure that PowerShell provides a robust, yet safe, scripting environment for system administration tasks. One feature of PowerShell that contributes to this are known as execution policies, which can be set using the Set-ExecutionPolicy cmdlet. What is a PowerShell execution policy? Execution policies in Windows PowerShell are not all-out security safeguards. Instead, envision them as protective switch covers. Their purpose is to prevent unintended script runs, especially from unverified sources. Let’s first look at and get a good understanding of what each policy can do. Execution Policies are not intended to be your only security protection when using PowerShell scripts. Cyber security experts and PowerShell pros will tell you that execution policies alone are not foolproof. It’s quite literally the option to remove the guardrails and safety nets. With great power comes great responsibility and all that. Understanding PowerShell execution policies There are 7 execution policies that Windows PowreShell can apply. Each one provides a very specific set of rules that determine what Windows PowerShell can do when trying to run a script. Default All Windows clients are set to the restricted policy, and all Windows servers are set to remote signed by default. It’s important to consider this default setting when you are developing scripts on each Windows OS. AllSigned Only runs scripts signed by a trusted publisher. If the source isn’t already trusted, you’re prompted... --- ### Russian Hackers Exploit Outlook Flaw to Breach Exchange Accounts - Published: 2023-12-05 - Modified: 2023-12-05 - URL: https://petri.com/russian-hackers-outlook-flaw-exchange-accounts/ - Categories: Security - Tags: Exchange Server, News - Article Type: News Key Takeaways: Microsoft has issued a warning about Forest Blizzard (STRONTIUM), a Russian state-sponsored hacking group, actively exploiting a critical Outlook flaw to gain unauthorized access and steal sensitive data. The hackers persist in targeting unpatched Exchange Servers, focusing on government, transportation, energy, and non-government organizations in the US, Europe, and the Middle East. Microsoft urges organizations to apply patches and enforce multi-factor authentication. Microsoft has warned customers that a Russian state-sponsored hacking group (dubbed Forest Blizzard (STRONTIUM)) is actively exploiting an Outlook flaw to target Exchange Servers. The vulnerability could potentially unlock unauthorized access to emails and pave the way for the pilfering of sensitive information. In March, Microsoft disclosed a critical vulnerability in Outlook for Windows that attackers could potentially exploit to gain elevated privileges. The security flaw, tracked as CVE-2023-23397, allows threat actors to send a specially crafted message that can steal NTLM hashes. These hashes can then be used to launch NTLM relay attacks for remote authentication without user intervention. Microsoft released the March Patch Tuesday updates to address a zero-day flaw that was found on vulnerable machines. However, it has been observed that Russian hackers are still exploiting the privilege escalation vulnerability against unpatched instances. The Forest Blizzard hacking group is targeting government, transportation, energy, and non-government organizations in the US, Europe, and the Middle East. “Forest Blizzard continually refines its footprint by employing new custom techniques and malware, suggesting that it is a well-resourced and well-trained group posing long-term challenges to attribution and tracking... --- ### New Outlook for Windows to Let Users Save Files Where They Want - Published: 2023-12-04 - Modified: 2023-12-04 - URL: https://petri.com/new-outlook-for-windows-local-folder-attachments/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook for Windows - Article Type: News Key Takeaways: Microsoft is set to introduce a feature in the new Outlook for Windows client that will let users choose a specific folder when saving attachments. Microsoft says the new feature is designed to streamline the process of saving attachments. Microsoft plans to roll out the update to commercial customers in January 2024. Microsoft will soon introduce a new feature in the new Outlook for Windows client, which will allow users to choose a specific folder when saving attachments. The company announced in a message on the Microsoft 365 Admin Center that the upcoming update will begin rolling out to commercial customers in mid-January 2024. As of today, the Outlook for Windows client automatically saves all downloaded attachments to a default folder. It requires users to manually relocate the files to a specific location on their systems. However, with the upcoming update, Outlook users will be able to seamlessly access, browse, and save files directly to a preferred folder on Windows PCs. “This feature is designed to streamline the process of saving attachments, reducing the number of steps and making it more efficient. It's a small change, but one that we believe will make a big difference in your daily workflow,” the company explained. New Outlook for Windows to add Copilot AI features in 2024 Microsoft started testing the redesigned Outlook for Windows app in May 2022. While the new web-based app supports multiple accounts, the current version doesn't provide the ability to create unified inboxes. Microsoft plans to... --- ### Microsoft Copilot Hits General Availability with Commercial Data Protection - Published: 2023-12-04 - Modified: 2023-12-04 - URL: https://petri.com/microsoft-copilot-generally-available/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Copilot, an AI-powered chatbot based on OpenAI's GPT-4 model, has transitioned from preview to general availability. Microsoft Copilot provides commercial data protection for businesses with select Microsoft 365 subscriptions. Microsoft plans to extend the availability of Copilot with commercial data protection to all Entra ID users, though there's no ETA yet. Microsoft Copilot, the AI-powered chat tool that launched in preview earlier this year, is now generally available for both consumers and commercial customers. Built upon OpenAI’s GPT-4 model, this AI assistant seamlessly searches the web and integrates the findings into its responses. Microsoft Copilot (previously known as Bing Chat and Bing Chat Enterprise) is available on the web, the Edge sidebar, and the new Copilot experience on Windows 11. The chatbot allows users to ask questions, learn new skills, draft emails, generate images, as well as summarize documents and articles. “Since Microsoft Copilot (formerly Bing Chat and Bing Chat Enterprise) launched in preview in February, people around the world have embraced it as their everyday AI companion. It’s been used to generate billions of prompts and responses, helping people be more creative and productive in their lives,” Microsoft explained. Microsoft first launched the enterprise version of the AI chatbot in preview in July this year. It offers a similar user experience to Bing Chat with the addition of commercial data protection. The feature is designed to provide a higher level of data protection for businesses with security and privacy concerns. Microsoft Copilot commercial data protection: Licensing... --- ### First Ring Daily: Evernote's Death Spiral and Amazon's New Enterprise-Focused Q Assistant - Published: 2023-12-01 - Modified: 2023-12-01 - URL: https://petri.com/first-ring-daily-evernotes-death-spiral-and-amazons-new-enterprise-focused-q-assistant/ - Categories: Announcements, Cloud Computing - Tags: Amazon, artificial intelligence, Evernote, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Evernote significantly restricting its feature set for free users, Amazon launching a new AI chatbot for the enterprise, and more. --- ### Microsoft Releases New Windows 10 Optional Update With AI-Powered Copilot - Published: 2023-12-01 - Modified: 2023-12-01 - URL: https://petri.com/windows-10-optional-update-copilot/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Key Takeaways: Microsoft has released an optional update, which adds the Copilot AI assistant directly on the taskbar for unmanaged Windows 10 Home and Pro PCs running version 22H2. The feature allows users to ask questions and create content but lacks some functionalities compared to the Windows 11 version. Microsoft acknowledged a bug related to Copilot in multi-monitor setups, causing desktop icons to move unexpectedly between monitors. Microsoft rolled out a new optional update (KB5032278) for Windows 10 version 22H2 yesterday. The major highlight of this release is Windows Copilot, which has been available in preview for Insiders since last week. On Windows 10, the Copilot button appears on the right side of the taskbar, which lets users open the chatbot to answer queries, create content, and perform other actions. However, the Windows 10 Copilot experience lacks some features that are supported on Windows 11 devices. For instance, users won't be able to use the AI assistant to open applications or customize operating system-related preferences and settings. To preview Copilot in Windows 10, users will need to enable the "Get the latest updates as soon as they're available" in Settings > Update & Security > Windows Update. For now, the feature will only be available for unmanaged devices running Windows 10 Home and Pro version 22H2. Microsoft says that the AI-powered Copilot tool is currently available in select global markets to a “small audience” before it hits general availability in the next few months. Microsoft confirms new Copilot bug on... --- ### Microsoft's Outlook on the Web to Drop Support for Activity-Based Authentication Timeout - Published: 2023-11-30 - Modified: 2023-11-30 - URL: https://petri.com/outlook-on-the-web-activity-based-authentication-timeout/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft will discontinue support for activity-based authentication timeout in Outlook on the Web in January 2024. Microsoft advises Outlook users to switch to idle session timeout settings instead. The idle session timeout feature allows IT admins to set a tenant-wide policy specifying the duration of inactivity after which users must re-enter login credentials. Microsoft is discontinuing support for activity-based authentication timeout in Outlook on the Web. Starting in January 2024, the company will replace the feature with idle session timeout settings for Microsoft 365 commercial customers. Microsoft introduced the idle session timeout feature for Microsoft 365 Web apps in June 2022. This feature enables IT admins to create a tenant-wide policy that specifies the duration of inactivity, after which end-users need to re-enter their login credentials to access Microsoft 365 Web apps. The supported apps include Word, Excel, Outlook on the Web, OneDrive for the Web, PowerPoint for the Web, Office. com, SharePoint, and Microsoft 365 admin center. “Idle Session Timeout is already available and provides the same functionality as Activity-Based Authentication Timeout with the benefit of allowing the configuration not only for Outlook on the web, but for a range of other Microsoft 365 web apps,” the company explained in a message on the Microsoft 365 admin center. How to enable idle session timeout Microsoft recommends customers to turn on the idle session timeout setting within their tenants. To implement the policy, navigate to the Org setting section of the Microsoft 365 admin center, click the Security &... --- ### Microsoft Unveils Azure Expert Assessment: Your Personalized Path to Seamless Cloud Adoption - Published: 2023-11-30 - Modified: 2023-11-30 - URL: https://petri.com/microsoft-azure-expert-assessment/ - Categories: Microsoft Azure - Tags: Azure, Cloud Adoption Framework, News - Article Type: News Key Takeaways: Microsoft has introduced Azure Expert Assessment, a free personalized service to assist organizations in planning their cloud adoption. The Certified Azure Expert evaluates the readiness of the existing IT infrastructure for cloud migration, providing tailored recommendations to facilitate a seamless transition. The service provides access to tools and best practices to expedite the implementation of cloud solutions. Microsoft has unveiled Azure Expert Assessment, a free one-to-one service enabling enterprises to strategize their cloud adoption journey collaboratively with a Certified Azure Expert. The Azure expert evaluates current IT infrastructure readiness, providing tailored recommendations for a smooth transition to the cloud. Microsoft has introduced Azure Expert Assessment as a new addition to its existing Solution Assessment Program. The new offering aims to assist participants in developing a better understanding of their current IT infrastructure's readiness for migration to the cloud. Azure Expert Assessment should make it easier to identify the best cloud solutions and estimate the costs, savings, and ROI. Additionally, the service offers access to tools, resources, and best practices to simplify the implementation of cloud solutions. “It is designed with automation in every step of the engagement to expedite your unique assessment needs, whether it be SQL server migration, Windows server migration, FinOps and the Azure Well-Architected Review. The assessment will provide you with a clear technical roadmap and a comprehensive business case to support your cloud strategy,” Microsoft explained. How to apply for Azure Expert Assessment? Microsoft’s new Azure Expert Assessment service is available in public preview... --- ### Microsoft Delays Final Exchange Server 2019 Cumulative Updates Until 2024 - Published: 2023-11-29 - Modified: 2023-11-29 - URL: https://petri.com/exchange-server-2019-final-cumulative-updates-2024/ - Categories: Exchange Server - Tags: Exchange Server 2019, News - Article Type: News Key Takeaways: Microsoft has delayed the release of cumulative updates (CUs) for Exchange Server 2019 until 2024. Microsoft intends to release two cumulative updates after Exchange Server 2019 reaches end of support on January 9, 2024. The upcoming CU14 release for Exchange Server 2019 is anticipated to include support for TLS 1. 3, Extended Protection enabled by default, and more. Microsoft has unveiled plans to postpone the rollout of new cumulative updates (CUs) for Exchange Server 2019, extending the release timeline to accommodate the upcoming Christmas holidays. The last two cumulative updates are expected to be rolled out to commercial customers after January 9, 2024. Last year, Microsoft announced that Exchange Server cumulative updates are switching to a new biannual release schedule. These updates will be released in the first and second half of each calendar year. However, Microsoft may not strictly adhere to this schedule, as release dates will be influenced by factors like patch priorities and the quality of cumulative updates. “Our release dates are driven by the payload and quality, and other work that might take priority, such as releasing an SU,” the Exchange team explained. “Today we are announcing that because there are less than 2 weeks remaining in November, and because we don’t release CUs in December, there won’t be an H2 2023 CU. We took a similar approach last year. ” On May 3, Microsoft rolled out the H1 2023 cumulative update (CU13) for Exchange Server 2019, which includes modern authentication support. This release also eliminates... --- ### Microsoft Expands Enhanced User Analytics Support to Teams, Outlook, and OneDrive - Published: 2023-11-29 - Modified: 2023-11-29 - URL: https://petri.com/microsoft-enhanced-user-analytics-teams-outlook/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The enhanced user analytics feature now covers a broader range of Microsoft 365 apps like Outlook, OneDrive, and Teams. It provides detailed insights into how users across the organization are utilizing search functionality. Enhanced user analytics enable customers to compare user engagement and identify adoption gaps across search applications. Microsoft is expanding its enhanced user analytics capabilities to support popular Microsoft 365 apps such as Outlook, Teams, and OneDrive. The enhanced user analytics feature, available in the Search & Intelligence admin portal, offers detailed insights to IT admins to help them understand how users across the organization are utilizing the search functionality. With this release, the enhanced user analytics feature now extends its support beyond Microsoft Search in Bing, Microsoft365. com, and SharePoint. It now covers Teams, Outlook, OneDrive, Word, PowerPoint, Excel, and Windows Search. To access the report, users can navigate to Microsoft 365 Admin Center > Settings > Search & Intelligence > Insights tab. “The main view shows a snapshot of usage over the past 28 days with number of users who searched, users searching weekly, and users that are not searching. The latter metric shows users that accessed one or more applications that offer search but didn’t use the search feature. That number represents productivity potential in new users taking advantage of time savings by using Microsoft Search,” Microsoft explained. Determine the usage of individual search apps with enhanced user analytics The "Search users by application graph" allows administrators to assess the usage of specific search... --- ### Microsoft Sunsets Defender Application Guard for Office: Here's What You Need to Know - Published: 2023-11-28 - Modified: 2023-11-28 - URL: https://petri.com/microsoft-defender-application-guard-for-office/ - Categories: Security - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has officially announced the deprecation of Defender Application Guard for Office. Microsoft Defender Application Guard for Office utilized hardware-based containerization to isolate and run potentially harmful Office files in a secure environment. Microsoft advises users to migrate to Defender for Endpoint attack surface reduction rules and other security solutions. Microsoft has announced that it’s deprecating Defender Application Guard for Office this month. The company has quietly updated its support article to indicate that the security feature will no longer receive updates. “Microsoft Defender Application Guard for Office is being deprecated and is no longer being updated. This deprecation also includes the Windows. Security. Isolation APIs that are used for Microsoft Defender Application Guard for Office,” Microsoft explained. What is Microsoft Defender Application Guard for Office? Microsoft Defender Application Guard for Office is a security feature that helps to protect users against malicious documents. It leverages hardware-based containerization to run potentially harmful Office files in an isolated environment. The feature provides an additional layer of security against phishing attacks targeting Office apps such as Word, Excel, and PowerPoint. Microsoft Defender Application Guard for Office is available for enterprise customers running Windows 10 and Windows 11. The feature integrates with Windows Defender Advanced Threat Protection (ATP) to help IT admins enhance the overall security posture. Source: Microsoft Microsoft encourages migration to robust security solutions Going forward, Microsoft recommends customers to switch to Defender for Endpoint and other security solutions. "We recommend transitioning to Microsoft Defender for Endpoint attack surface reduction rules... --- ### Microsoft's New SharePoint Embedded Service Launches to Build Custom Business Apps - Published: 2023-11-28 - Modified: 2023-11-28 - URL: https://petri.com/microsoft-sharepoint-embedded/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: SharePoint Embedded enables enterprise customers to build custom apps seamlessly integrated into their Microsoft 365 tenants. The service allows businesses to create apps that comply with advanced security and compliance requirements. SharePoint Embedded is expected to reach general availability in mid-2024. Microsoft announced SharePoint Embedded at the European SharePoint Conference in Amsterdam today. The new offering empowers businesses to craft tailor-made applications that store content with their existing Microsoft 365 tenants. SharePoint Embedded is a highly scalable platform that leverages the same technology stack as OneDrive and SharePoint. It helps businesses develop applications supporting various Microsoft 365 apps and services. The service can be used to embed content management capabilities into their apps, including coauthoring in Word and PowerPoint, search, content preview, and version tracking. “Enterprises can use SharePoint Embedded to power line of business apps, creating a unified and familiar experience for both app users and system administrators charged with managing these new apps. ISVs can use this same scalable and performant technology to deliver Microsoft 365 content management capabilities as part of every enterprise app they build,” Microsoft explained. SharePoint Embedded Architecture With SharePoint Embedded, the custom content apps can leverage autoscaling, disaster recovery, Microsoft 365 Archive, Microsoft 365 Backup, and other business continuity capabilities. The service also lets businesses integrate various SharePoint Premium features (like content assembly, eSignature, and document processing) into their applications. SharePoint Embedded Availability and Licensing The SharePoint Embedded builds on the Graphs API and lets businesses build apps that comply with... --- ### Microsoft Defender for Cloud Simplifies Onboarding with New Terraform Module - Published: 2023-11-28 - Modified: 2023-11-28 - URL: https://petri.com/microsoft-defender-for-cloud-terraform-module/ - Categories: Security - Tags: Microsoft Defender for Cloud, News - Article Type: News Key Takeaways: Microsoft has introduced a Terraform module aimed at simplifying the onboarding process for Microsoft Defender for Cloud (MDC). It facilitates the configuration of MDC plans for subscriptions or management groups using just a few lines of code. The new Terraform module eliminates the need to engage with multiple Microsoft Defender for Cloud ARM APIs. Microsoft has introduced a new Terraform module aimed at simplifying the onboarding process for Microsoft Defender for Cloud (MDC). This module enables organizations to configure MDC plans for their subscriptions or management groups using a minimal amount of code. Microsoft Defender for Cloud is a security solution that allows customers to protect cloud-based applications against various cyber threats and vulnerabilities. It provides tools to enhance cloud security posture, mitigate cyber-attacks, and streamline security management. Previously, security teams had to engage with multiple Microsoft Defender for Cloud ARM APIs to onboard the service successfully. The new Terraform module provides a portal-like experience, making it easier to onboard single, multiple, or all subscriptions. Additionally, the module helps to onboard MDC plans for all subscriptions within a specific management group. “The module is specifically designed to streamline the onboarding process, providing a new and improved onboarding experience with Terraform. This module is easy to use and supports configuration at both the subscription and tenant levels. It enables customers to verify that their security posture is running the correct Defender for Cloud plans, simplifying the process and providing additional oversight over securing their entire environment,” Microsoft explained. Getting... --- ### Upgrade to Windows 11 – The Road Ahead - Published: 2023-11-28 - Modified: 2023-11-28 - URL: https://petri.com/upgrade-to-windows-11/ - Categories: Windows 11 - Tags: featured-top-left, NoAD, NoAds, Windows 11 - Article Type: Overview In this article, you’ll learn some strategies to upgrade to Windows 11. Including learning about the planning and readiness phase. At times, I feel like the lion in Narnia - Aslan - being lectured and roaring back: Do Not Cite The Deep Magic To Me... I Was There When It Was Written. But I was there when DOS was introduced, when DOS became Windows, when the Start Menu came to be in Windows 95, when Windows NT 4. 0 and Windows 2000 arrived, and continuing to Windows XP, Windows Vista, Windows 7, Windows 8, Windows 10, and now Windows 11. There have been Windows versions that felt great at first sight, like Windows 7 and Windows 10, and versions that did not feel great, like Windows 8. To me, Windows 11 is somewhere in between. I kind of like Windows 11, but I also don’t. I like the security changes behind the scenes despite tough hardware requirements. I like the many new features for IT Pros that were added, but I dislike the step backward in customization options. And don’t get me started on including more consumer apps in an Enterprise version of Windows or popups for things I do not need... I don’t like that at all. Upgrading to Windows 11 – planning and readiness But it doesn’t matter if you and I fully embrace Windows 11; we don’t have a choice. By October 2025, we better have upgraded our machines because that’s when the support for Windows 10... --- ### Microsoft Teams Updates App Gets New Collaboration Features, Onboarding Experience - Published: 2023-11-27 - Modified: 2023-11-27 - URL: https://petri.com/microsoft-teams-updates-app-collaboration-features/ - Categories: Microsoft Teams - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The Updates app in Microsoft Teams has added a modern onboarding experience to simplify the creation of requests and submission of reports. A new feature allows users to export all update submissions to an Excel file. Microsoft Teams users can also engage in discussions, leave comments, and provide feedback. Microsoft has released several new features and improvements for the Updates app in Microsoft Teams. This app provides a centralized hub to streamline the processes of creating, submitting, and reviewing updates. Additionally, it offers a convenient way to track check-ins and reports. Microsoft has released a modern onboarding experience for the Updates app in Teams. “To help customers better understand the Updates app's value and streamline the team reporting process, we have upgraded the product's appearance and user experience. This makes it easier to convey the product's value and applicable scenarios while simplifying the process of creating requests and submitting reports,” Microsoft explained. New design in a chat group The Updates app is also getting a new feature that allows users to export all update submissions to an Excel file. It’s one of the top requested features that should make it easier for users to analyze, archive, and share data with their colleagues. Updates app in Microsoft Teams adds summary view of received submissions Microsoft has introduced a new feature that allows users to access a summary of content related to a specific topic. It’s also possible to customize the data statistics to highlight important content on the screen... . --- ### Microsoft Loop Now Lets Users Export Tables to Excel Spreadsheets - Published: 2023-11-27 - Modified: 2023-11-27 - URL: https://petri.com/microsoft-loop-export-tables-excel/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Loop has released a new update that allows users to export tables to Excel spreadsheets. The feature is currently in preview and available for Microsoft 365 E3/E5 commercial customers. Microsoft has also introduced a new feature that lets users filter Loop tables to focus on important information. Microsoft has released a new update for its Loop app, allowing users to export Loop tables directly to Excel spreadsheets. The new feature is currently available in preview for all Microsoft 365 E3/E5 commercial customers. Based on the Fluid Framework, Microsoft Loop provides tools that allow users to co-create and share content in real-time with their colleagues. Users can create Loop components (such as tables, lists, and paragraphs) that can sync across other Microsoft 365 apps like Teams and Outlook. Changes made to a Loop component in one location will instantly reflect in all places where the component is embedded. “When you’re collaborating as a team on a project, you may choose to add Loop tables to gather data and perform calculations. You can now export the tables to applications such as Excel so you can leverage its capabilities to perform any needed calculations. To ensure compatibility, Loop’s table data type is mapped to the most relevant format in Excel,” Microsoft explained. How to export Loop tables to Excel To export a Loop table, users will need to follow the steps mentioned below: Open the web browser and navigate to loop. microsoft. com. Now, create a new table or open an existing... --- ### First Ring Daily Thanksgiving Edition: Full of AI - Published: 2023-11-24 - Modified: 2023-11-24 - URL: https://petri.com/first-ring-daily-thanksgiving-edition-full-of-ai/ - Categories: Microsoft - Tags: artificial intelligence, Microsoft, News, NVIDIA, OpenAI - Article Type: News In this special Thanksgiving edition of First Ring Daily, Brad Sams and Paul Thurrott discuss everything that happened at OpenAI this week, why Nvidia remains a key player in the current AI boom, and they also imagine a world where Apple would sell its M-Series chips to PC manufacturers. --- ### Here's How Researchers Bypassed Windows Hello Fingerprint Authentication on Dell, Lenovo, and Surface Laptops - Published: 2023-11-24 - Modified: 2023-11-24 - URL: https://petri.com/windows-hello-fingerprint-authentication-bypass/ - Categories: Security - Tags: News, Windows Hello - Article Type: News Key Takeaways: Security researchers have identified critical security flaws in Windows Hello fingerprint authentication on laptops from major manufacturers, including Dell, Lenovo, and Microsoft. The fingerprint sensors on these laptops use "Match on Chip" technology for biometric verification on internal microprocessors, yet this approach doesn't inherently protect against potential spoofing attacks. The researchers recommend manufacturers to enable Microsoft's Secure Device Connection Protocol (SDCP) to ensure encrypted communication with fingerprint sensors. Cybersecurity researchers from Blackwing HQ have managed to bypass Windows Hello fingerprint authentication on three different laptops from Dell, Lenovo, and Microsoft. The penetration tests were carried out at the request of Microsoft to assess the security of the fingerprint sensors used in these devices. Windows Hello is a biometric authentication feature that allows users to login to their devices with a PIN (Personal Identification Number), fingerprint recognition, and facial recognition. Once configured, the fingerprint authentication feature allows users to verify their identity and access Windows devices using their fingerprints. The fingerprint scanners use the "Match on Chip" (MoC) technology, which comes with internal storage and a microprocessor for data storage. This eliminates the need to store sensitive biometric information on the host machine. The communication between the operating system and the chip is encrypted, providing an extra layer of security to prevent unauthorized access by hackers. How the cybersecurity researchers hacked Windows Hello Fingerprint authentication Security researchers from Blackwing HQ conducted penetration tests on various devices, including a Lenovo ThinkPad T14, a Dell Inspiron 15, and the Microsoft Surface... --- ### New Microsoft Defender Bounty Program Offers up to 20K Rewards - Published: 2023-11-22 - Modified: 2023-11-22 - URL: https://petri.com/microsoft-defender-bounty-program/ - Categories: Security - Tags: News - Article Type: News Key Takeaways: Microsoft has launched the Defender Bounty Program to incentivize security researchers in discovering vulnerabilities in its security solution. The Microsoft Defender Bounty Program offers rewards ranging from $500 to $20,000 based on the severity of the identified issues. The program initially focuses on Microsoft Defender for Endpoint APIs, with plans to expand coverage over time. Microsoft announced yesterday the launch of its new Defender Bounty Program. The new program is aimed at enticing security researchers to unearth new vulnerabilities in the security solution in exchange for rewards between $500 and $20,000. The submissions must specify the severity (Critical or Important) and step-by-step instructions to reproduce the issue in the fully patched version of the product. Microsoft will assess the severity, impact, and quality of vulnerability submissions to determine the final reward amount. The highest reward will be granted to security researchers who submit high-quality reports of critical severity remote code execution flaws. “The Microsoft Defender Bounty Program invites researchers across the globe to identify vulnerabilities in Defender products and services and share them with our team. The Defender program will begin with a limited scope, focusing on Microsoft Defender for Endpoint APIs, and will expand to include other products in the Defender brand over time,” the Microsoft Security Response Center team explained. Microsoft Defender Bounty Program targets XSS, CSRF, SSRF, and other vulnerabilities The new bounty program allows security researchers to discover various security vulnerabilities in Microsoft Defender for Endpoint APIs. The list includes Cross-site scripting (XSS), Cross-site... --- ### Microsoft Defender XDR Now Lets IT Admins Get Email Notifications for Response Actions - Published: 2023-11-22 - Modified: 2023-11-22 - URL: https://petri.com/microsoft-defender-xdr-email-notifications-actions/ - Categories: Security - Tags: Microsoft Defender XDR, News - Article Type: News Key Takeaways: Microsoft Defender XDR now supports email notifications for both manual and automated response actions. The feature provides visibility into critical activities to enhance the ability to respond promptly to potential security threats that require immediate attention. Security teams can strategically customize email-based notifications for specific scenarios. Microsoft has introduced email notifications support for its Microsoft Defender XDR service. The feature allows IT admins to configure the security solution to receive notifications through email for both manual and automated response actions. Microsoft Defender XDR (formerly Microsoft 365 Defender) is a managed extended detection and response service designed to help customers prevent, detect, investigate, and respond to sophisticated cyberattacks. It leverages AI-powered automatic actions and playbooks to facilitate the remediation of affected systems, restoring them to a secure state. Manual actions involve security teams taking steps to block security threats and investigate attacks. On the other hand, automated response actions are inherent features in Microsoft Defender XDR that autonomously disrupt and investigate security attacks. Key scenarios for automatic email notifications Microsoft detailed some critical scenarios for creating email-based notifications in Microsoft Defender XDR. For instance, security teams will receive automated emails when the service automatically disrupts ransomware attacks, isolates devices, and blocks compromised accounts. It’s also possible to configure a rule to get notified when a sensitive action is carried out on critical assets. “When there is an important incident, it is crucial to ensure that key stakeholders on the team are promptly informed. Providing immediate notifications for critical activities... --- ### Making Microsoft Azure Penetration Testing Work to Combat Threats - Published: 2023-11-21 - Modified: 2023-11-21 - URL: https://petri.com/microsoft-azure-penetration-testing/ - Categories: Microsoft Azure - Tags: featured-top-right, Microsoft Azure - Article Type: Overview This short guide explains how Microsoft Azure penetration testing solutions can work to enhance a native public cloud platform within Azure, and what IT professionals can do to proactively defend against evolving numbers of serious threats, thus bolstering their security posture. As far as public cloud infrastructure solutions go, there is perhaps none more versatile or worthwhile than Microsoft Azure. The growth in Microsoft Azure usage across enterprises is apparent, with a 26% growth in Q4 2023; it’s no wonder why the platform now occupies a huge portion of the cloud infrastructure services market share. It’s estimated that the total number of worldwide Azure users borders around 1 billion, with the platform generating over $75. 3 billion last year alone.   Despite Azure services being entrusted by numerous organizations to build scalable environments for applications, storage, networking, and many others, the inherent security issues that lie within public cloud services remain. For every scalable Azure configuration that an organization deploys comes increased cyber risks and threat vectors that demand proactive, responsive solutions without compromising data integrity or environmental stability. IT professionals and experts must also comply with stringent and demanding protection standards, regulations and legislation if they are to avoid scrutiny and hefty fines.   Microsoft Azure penetration testing One of the most proactive solutions to bolster cyber posture is by utilizing penetration testing, which minimizes a business’s attack surface and combines incumbent Azure resources and controls with strengthened external validation.   Microsoft Azure market share Q1 2022 The need for validation testing... --- ### Microsoft Releases Fix for Office 365 'Something Went Wrong' Sign in Errors - Published: 2023-11-21 - Modified: 2023-11-21 - URL: https://petri.com/microsoft-fix-office-365-sign-in-errors/ - Categories: Microsoft 365 - Tags: News, Office 365 - Article Type: News Key Takeaways: Microsoft has released a fix for the 'Something Went Wrong ' errors affecting users signing into Office 365 desktop apps. The issue, attributed to security software blocking the WAM plug-in or user profile management problems, has been addressed in the November 14 update for the Current and Monthly Enterprise Channel. Microsoft is actively investigating additional root causes and encourages users experiencing issues to submit support tickets with MSOAID logs. Microsoft has released a fix for 'Something Went Wrong ' errors plaguing users attempting to sign into Office 365 desktop apps. The bug was previously affecting Word, Excel, Outlook, PowerPoint, and the Office mobile apps. Microsoft acknowledged the issue in a support article published on November 17. The company explained that the problem is caused by user profile management issues or security software blocking the WAM plug-in (AAD. BrokerPlugin). The plugin is required to manage the authentication process and provide Single Sign-On capabilities for Office 365 apps. Microsoft has already fixed the bug in an update that was released to the Current and the Monthly Enterprise Channel (MEC) on November 14. However, the update only contains fixes for select Office sign-in error scenarios. Microsoft is still investigating Office 365 sign in errors Microsoft is still investigating the issue to identify other potential root causes. The company urges customers to submit support tickets with Microsoft Office Authentication/Identity Diagnostic (MSOAID) logs. “The Microsoft 365 teams are investigating this issue by analyzing logs provided by some affected users. If you see this issue,... --- ### Microsoft Defender for APIs is Now Generally Available - Published: 2023-11-21 - Modified: 2023-11-21 - URL: https://petri.com/microsoft-defender-for-apis-generally-available/ - Categories: Security - Tags: Ignite 2023, Microsoft Defender, News - Article Type: News Key Takeaways: Microsoft Defender for APIs provides organizations with comprehensive protection for business-critical APIs and sensitive data, addressing evolving cyber threats throughout the API lifecycle. The service prioritizes vulnerability fixes and facilitates quick detection and response to sophisticated security threats. Microsoft Defender for APIs integrates with Security Incident and Event Management (SIEM) platforms (like Microsoft Sentinel) to streamline the investigation process for security alerts. Microsoft has announced the general availability of its Defender for APIs security solution. This new offering has been in preview as part of the Microsoft Defender for Cloud service since April, allowing organizations to safeguard their business-critical APIs and sensitive data from evolving cyber threats. Microsoft Defender for Cloud is designed to offer security and compliance protections across hybrid cloud workloads. Microsoft Defender for APIs provides complete lifecycle protection, detection, and response coverage. The service integrates with Microsoft Defender Cloud Security Posture Management (CSPM) to detect and address security recommendations related to unauthenticated and unused APIs. “Defender for APIs helps you to gain visibility into business-critical APIs. You can investigate and improve your API security posture, prioritize vulnerability fixes, and quickly detect and respond to active real-time threats. You can Integrate security alerts directly into your Security Incident and Event Management (SIEM) platform like Sentinel for investigation and triage,” Microsoft explained. API attack path analysis The API attack path analysis feature monitors lateral data movement and offers actionable insights and recommendations for detecting security risks. The labeling provides visibility into the classified API assets of an... --- ### [Updated] Microsoft's Copilot Assistant is Coming to Windows 10 PCs - Published: 2023-11-21 - Modified: 2024-09-05 - URL: https://petri.com/microsoft-copilot-windows-10/ - Categories: Windows 10 - Tags: News, Windows 10, Windows Copilot - Article Type: News Key Takeaways: Microsoft has started rolling out the Copilot tool to Insiders with eligible devices running Windows 10 version 22H2 Home and Pro editions. IT admins will be able to use policies to manage the Copilot experience on Windows 10. Microsoft plans to update Windows 11 version 23H2 and Windows 10 version 22H2 to comply with the Digital Markets Act (DMA) in the European Economic Area. Update November 21, 2023 - 9:10 AM PT: Microsoft has started rolling out the new Copilot AI assistant to Windows 10 Insiders in the Release Preview Channel. Insiders on non-managed devices will need to head over to Windows Update, turn on the ”Get the latest updates as soon as they’re available” toggle and check for updates to test Copilot on Windows 10 Home and Pro editions. Microsoft is rolling out the feature in a staggered manner through a controlled feature rollout (CFR). Microsoft has just started rolling out a new Windows 10 build to Insiders enrolled in the Release Preview Channel. The company also announced today that Windows Copilot is coming soon in preview to testers with eligible devices running Windows 10 version 22H2. The upcoming Windows 10 build will introduce a new Windows Copilot button on the taskbar, which has been available on Windows 11 for a couple of weeks. The AI assistant allows users to ask questions with natural language commands, create content, and summarize a website in Microsoft Edge. The feature is still in preview for select customers in North America,... --- ### Windows Admin Center 2311 Public Preview: A Deep Dive into Azure Hybrid Services and Tool Advancements - Published: 2023-11-20 - Modified: 2023-11-20 - URL: https://petri.com/windows-admin-center-version-2311/ - Categories: Windows Server - Tags: News, Windows Admin Center - Article Type: News Key Takeaways: Windows Admin Center version 2311 is currently available for public preview, featuring enhancements to Azure hybrid services and a host of other improvements. The update enables a streamlined onboarding experience for Azure Arc, allowing users to integrate multiple machines through the All Connections page simultaneously. The latest Windows Admin Center version also includes significant tool updates, such as improved virtual machine import capabilities. Microsoft has announced that Windows Admin Center version 2311 is available in public preview for commercial customers. The latest update brings new experiences for Azure Arc and Azure Migrate, coupled with enhancements to widely-used tools. “Windows Admin Center provides an Azure Arc for servers onboarding experience through our Azure hybrid center. New in this release, we’ve extended this experience and made it available on our All Connections page—the first page you see when you open Windows Admin Center. Now you can select multiple machines and, with a few simple clicks, onboard them all to Azure Arc for Servers at once,” Microsoft explained. Microsoft has also added a new column to the All Connections page that helps to track the Azure Arc status of their machines. The status updates every fifteen minutes and makes it easier to view more details directly on the page. However, keep in mind that the new experience doesn’t support the onboarding cluster connection type. Moreover, Azure VM connections are already onboarded to Azure Arc Servers, and customers don’t need to onboard them manually. It’s also required to register the Windows Admin... --- ### Microsoft's AI-Infused SharePoint Premium Solution Redefines Content Management - Published: 2023-11-20 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-sharepoint-premium-solution/ - Categories: Microsoft 365 - Tags: Ignite 2023, Microsoft 365, News - Article Type: News Key Takeaways: SharePoint Premium introduces new content experiences, such as an integrated file viewer supporting 400+ file types, and a Business Documents app in Teams. The Data Access Governance features filter overshared files, Site Access Reviews identify at-risk content, and a Restricted Access Control policy prevents unauthorized access. Microsoft to add new Pay-as-You-Go features such as automatic translation in 2024. Microsoft has announced SharePoint Premium, a new AI-powered solution designed to transform content management for Microsoft 365 customers. SharePoint Premium is currently in public preview and will become generally available for commercial customers in early 2024. “SharePoint Premium brings AI, automation, and added security to your content experiences, processing, and governance. With SharePoint Premium we’ll be transitioning the services already released as part of Syntex, including SharePoint Advanced Management, to join the growing family of SharePoint services along with brand new content experiences. ” Microsoft explained. https://www. youtube. com/watch? v=ghNgzh13ac4 Content experiences Microsoft has introduced new content experiences to make it easier for employees to discover, interact, and collaborate on hundreds of file types. SharePoint Premium has an integrated file viewer that supports over 400 file types with inking capabilities. There is also a new Business Documents app in Microsoft Teams that alerts customers about contracts that are expiring soon or require attention. The new SharePoint Premium service comes with a document portal that allows organizations to share content with external parties. Other capabilities include a new AI-driven rules deviation engine to track contract changes and an AI-driven clause analyzer to detect high-risk contracts... --- ### SMB Over QUIC Integration in Windows Server 2025: A Leap for Datacenter Connectivity - Published: 2023-11-17 - Modified: 2023-11-17 - URL: https://petri.com/smb-over-quic-windows-server-2025-editions/ - Categories: Windows Server - Tags: featured-top-right, News, Windows Server - Article Type: News Key Takeaways: Microsoft is planning to integrate SMB over QUIC into all editions of Windows Server 2025. SMB over QUIC creates a secure "SMB VPN," offering encrypted communication and enhanced performance for users. The feature is currently being tested in Windows Server Insider Datacenter and Standard editions. Microsoft is planning to add the Server Message Block (SMB) over QUIC technology to all editions of Windows Server 2025. The company is currently testing the feature with select users in Windows Server Insider Datacenter and Standard editions. What is SMB over QUIC? SMB (Server Message Block) is a network file-sharing protocol that allows users to share printers, files, and other resources among computers. On the other hand, QUIC (Quick UDP Internet Connections)is a transport layer protocol that uses User Datagram Protocol (UDP) rather than Transmission Control Protocol (TCP). It supports security features (such as encryption and enhanced performance) to provide low-latency communication. Microsoft introduced SMB over QUIC in Windows Server 2022 Azure Edition as an alternative to TCP/IP and RDMA (Remote Direct Memory Access). SMB over QUIC can serve as a file transfer-specific virtual private network (VPN) between on-premises servers and Azure. The protocol is designed to prevent spoofing and man-in-the-middle attacks. Currently, SMB over QUIC is only limited to Windows Server 2022 Azure Editions. Microsoft says that the upcoming release will allow customers to configure SMB over QUIC on all editions of Windows Server 2025, including Datacenter and Standard. “SMB over QUIC offers an "SMB VPN" for telecommuters, mobile device users,... --- ### Windows Autopatch Adds New Driver and Firmware Controls, Simplifies Update Management - Published: 2023-11-17 - Modified: 2023-11-17 - URL: https://petri.com/windows-autopatch-driver-firmware-controls/ - Categories: Windows - Tags: Ignite 2023, News, Windows, Windows Autopatch - Article Type: News Key Takeaways: Microsoft is consolidating Windows Autopatch and Windows Update for Business into a single update management solution. Microsoft is introducing granular controls for firmware and driver updates within Windows Autopatch. Windows Autopatch will be generally available for frontline workers in late 2023. Microsoft held its Ignite 2023 conference in Seattle this week, and the company unveiled some big updates for Windows Autopatch. The company has announced that it’s consolidating Windows Autopatch and Windows Update for Business into a single update management solution for enterprise customers. Windows Autopatch is a cloud-based service that enables IT admins to automate the update management process for Windows PCs, Microsoft Edge, Microsoft Teams, and other Microsoft 365 apps. Moreover, Windows Update for Business is a set of management features in Windows 11 and Windows 10 that lets administrators control the deployment of updates within their organizations. “We've used your feedback to help inform adjustments that will make the update ecosystem easier to understand. With this effort, we are unifying our update management offering for enterprise organizations. Windows Autopatch and Windows Update for Business deployment service will now be a single service for enterprise customers to update and upgrade Windows devices, Microsoft 365 Apps, Microsoft Teams, and Microsoft Edge,” Microsoft explained. Microsoft is also updating the interface to help users quickly find and use the update management features. Customers will now see a dashboard that organizes the features into four categories: Update policies, Update groups, Update status, and Update reports. However, Microsoft won’t change the... --- ### New Microsoft Planner Experience to Launch with Copilot Integration in 2024 - Published: 2023-11-16 - Modified: 2024-09-04 - URL: https://petri.com/new-microsoft-planner-experience-2024/ - Categories: Microsoft 365 - Tags: Ignite 2023, Microsoft 365, News, Planner - Article Type: News Key Takeaways: Microsoft is combining To Do, Planner, and Project into a new unified Planner app, launching in Microsoft Teams in 2024. The new Planner integrates intelligent features to help small businesses and enterprises manage tasks and projects across Microsoft 365 apps. Microsoft renames Tasks by Planner and To Do app in Teams to Planner. At the annual Microsoft Ignite conference, Microsoft announced that it’s bringing together some existing task management and planning tools such as Microsoft To Do, Microsoft Planner, and Microsoft Project into a unified experience. The new Planner app will debut in Microsoft Teams in Spring 2024, followed by a web version at a later date. In 2016, Microsoft introduced the Planner app as part of the Microsoft 365 suite. However, the application has not undergone significant updates since its initial launch. It’s designed to help individuals and teams to create and assign tasks, collaborate on projects, and track progress. Users can comment on tasks, attach files, and have discussions within the Planner app. Microsoft highlighted that the new Planner experience will include AI-powered features and enhancements to help small businesses and enterprise customers keep track of work. It provides a centralized hub to let users manage all their plans, tasks, projects, and to-do lists across Microsoft 365 apps. “We’re bringing together the simplicity of Microsoft To Do, the collaboration of Microsoft Planner, the power of Microsoft Project for the web and the intelligence of Microsoft Copilot into a simple, familiar experience. Discover a new way to... --- ### GET-IT: Submit Your Questions for Microsoft Teams Product Manager Anupam Pattnaik - Published: 2023-11-16 - Modified: 2023-11-16 - URL: https://petri.com/microsoft-teams-ama/ - Categories: Microsoft Teams - Tags: featured-top-left, Microsoft 365, Microsoft Teams, NoAD, NoAds - Article Type: News As usual, we are looking forward to our annual Microsoft Teams free 1-day virtual conference, this year coming up November 30. In addition to the customary sessions presented by industry professionals and Microsoft MVPs on everything from managing users in the Admin Center to driving collaboration with proper governance, Petri’s Chief Technology Officer, Stephen Rose, is hosting an Ask Me Anything (AMA) with Senior Product Manager for Microsoft Teams, Anupam Pattnaik. Microsoft Teams AMA with Anupam Pattnaik If you’d like to ask Microsoft directly about how Teams currently works, what the plans are for the future, and anything you would like to know about Teams from either Stephen or Anupam, then submit your questions below using the form and we’ll get through as many as possible! You can submit up to 3 questions. Loading... You can also chat live with Stephen and Anupam if you attend the live broadcast November 30, 2023. Optionally, you can listen to the answer to your questions on demand. GET-IT 1-day virtual conference sessions Stephen Rose will be opening the conference with a session on the new Teams client, which recently hit general availability, how AI will be integrated into Teams, and the future of Microsoft 365 as a productivity platform. Jasper Oosterveld will be looking at how proper governance can drive collaboration using Teams and Microsoft 365. Often an overlooked subject, Jasper will be offering insights into best practices that you should be implementing now. João Ferreira will be delving into Viva Connections and... --- ### Microsoft's November 2023 Patch Tuesday Updates Fix 63 Windows Flaws - Published: 2023-11-16 - Modified: 2023-11-16 - URL: https://petri.com/november-2023-patch-tuesday-updates/ - Categories: Windows, Windows 10, Windows 11 - Tags: News - Article Type: News Microsoft released the November 2023 Patch Tuesday Updates for all supported versions of Windows 11 and Windows 10. This month, Microsoft addressed a total of 63 vulnerabilities, including three that are actively being exploited by threat actors. 3 Critical vulnerabilities addressed in the November 2023 Patch Tuesday updates Specifically, Microsoft released security patches to fix three Critical flaws in its November 2023 Patch Tuesday updates. In addition, 56 more vulnerabilities are rated “Important,” and four are rated “Moderate” in severity. You can find more details about all of them below: CVE-2023-36025: This security bypass flaw allows hackers to bypass security checks in Windows Defender SmartScreen. This means that the warnings would not appear when a Windows user attempts to open a malicious website or a potentially harmful file or application. It’s possible to exploit the vulnerability without any user interaction. CVE-2023-36033: This is a privilege escalation vulnerability in the Windows Desktop Manager (WDM) Core Library. It’s relatively easy to exploit and could enable hackers to gain system-level privileges on vulnerable systems. The security flaw is currently being exploited by hackers, and the method of exploitation is publicly known. CVE-2023-3606: This is another privilege escalation flaw in the Windows Cloud Files Mini Filter Driver. The driver is used to manage cloud-based files and it’s installed by default on almost all Windows systems. The vulnerability affects all supported versions of Windows and Windows Server. CVE-2023-36038: This denial-of-service vulnerability affects ASP. NET Core which could lead to total loss of availability. It impacts . NET... --- ### Ignite 2023: Microsoft Teams Gets Voice Isolation, Immersive Experiences, Other New Features - Published: 2023-11-15 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-voice-isolation/ - Categories: Microsoft Teams - Tags: Ignite 2023, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams is introducing an intelligent voice isolation feature to enhance communication by suppressing background voices during calls and meetings. A new AI-powered feature will let Microsoft Teams Premium customers create custom background images to hide messy backgrounds during video calls. Microsoft Mesh and Immersive spaces will be available for all commercial customers in January 2024. Microsoft has announced a bunch of new productivity and collaboration features coming to Microsoft Teams at Ignite 2023. The company confirmed that the app continues to enjoy momentum, boasting over 320 million users worldwide. Microsoft Teams is introducing a new AI-powered voice isolation feature. This new capability learns the user's voice and autonomously suppresses background voices, effectively filtering out noise during Teams calls and meetings. This ensures that the speaker's voice remains clear and prominent for an improved communication experience. The feature is currently rolling out, and it’s expected to become generally available in early 2024. Microsoft is also introducing a new feature that will allow meeting participants to hide their messy backgrounds. Users will be able to leverage generative AI to create background images for video calls and meetings. The feature will be available for Microsoft Teams Premium customers in early 2024. Microsoft Mesh and the immersive spaces feature will become generally available for all commercial customers in January 2024. Immersive spaces allow participants to transform their meetings into a 3D experience. It offers features such as avatars, 3D environments, seat assignments, spatial audio and audio zones, interactive activities, and Live... --- ### Ignite 2023: Microsoft Unveils Copilot Studio, New Features for Copilot for Microsoft 365 - Published: 2023-11-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-copilot-studio/ - Categories: Microsoft 365 - Tags: Ignite 2023, Microsoft 365, News - Article Type: News Key Takeaways: Microsoft has introduced Copilot Studio, a low-code tool enabling customization of Copilot for Microsoft 365 and the development of standalone Copilots. Bing Chat and Bing Chat Enterprise have been rebranded as Copilot, offering content generation, question-answering, and data interpretation. Copilot for Microsoft 365 is getting new updates to enhance collaboration in Teams, Outlook, Word, PowerPoint, and Microsoft Loop. Microsoft announced at its Ignite 2023 conference today Microsoft Copilot Studio, a low-code tool that allows users to customize Copilot for Microsoft 365 and build standalone Copilot solutions. The new service is designed to give Copilot access to the data stored within ERP, CRM, and other line of business solutions. “It brings together a set of powerful conversational capabilities—from Custom GPTs, to generative AI plugins, to manual topics. You can customize Copilot for Microsoft 365 with your own enterprise scenarios; build, test, and publish standalone copilots and custom GPTs; and manage and secure your customizations and standalone copilots with the right access, data, user controls, and analytics,” said Colette Stallbaumer - General Manager for Microsoft 365 and Future of Work. Microsoft Copilot Studio seamlessly integrates with Azure AI Studio and other Azure services, providing users access to advanced features like entity extraction, sentiment analysis, and speech recognition. It includes a prompt builder for creating custom prompts, and the plugin builder assists in creating, managing, and testing plugins. https://youtu. be/WVn57PXoFPE Starting today, the Copilot Studio tool is available for commercial customers, and its integration with Copilot for Microsoft 365 is also available... --- ### Ignite 2023: Microsoft Loop Now Generally Available with New Capabilities and Improvements - Published: 2023-11-15 - Modified: 2023-11-15 - URL: https://petri.com/microsoft-loop-generally-available/ - Categories: Microsoft 365 - Tags: featured-top-right, Ignite 2023, Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Loop app is now available for commercial customers on web and mobile platforms. The Loop app added a new Workspace status feature to let users track changes and deadlines. Power Automate integration with Microsoft Loop helps to streamline the task tracking and project management process. Microsoft announced this morning the general availability of its Microsoft Loop app for commercial customers (Microsoft 365 Business Standard, Business Premium, E3/E5) on both web and mobile platforms. The new Loop app offers several additional capabilities designed to enhance the collaborative experience for employees. “Today we announced the general availability of the Microsoft Loop app, the app built for the new way of working, with a flexible canvas for collaboration between people and generative AI to create a center of gravity for your projects and a space for your team and Copilot to think, plan, and create together,” said Colette Stallbaumer, General Manager for Microsoft 365 and Future of Work. Workspace status Microsoft Loop has added a new Workspace status feature that allows users to stay informed about status changes and upcoming deadlines. This feature is currently available in public preview for Microsoft Loop users. https://www. youtube. com/watch? v=9CLJdlsspDM Workspace descriptions Microsoft Loop will now use AI to suggest relevant files when creating a new workspace. Users can enhance the accuracy of these suggestions by incorporating a descriptive prompt within the workspace title. Power Automate integration The Microsoft Loop app is getting a new Power Automate integration to streamline the task tracking and project management... --- ### Ignite 2023: Windows 365 Gets New AI Features and GPU Support - Published: 2023-11-15 - Modified: 2023-11-15 - URL: https://petri.com/microsoft-updates-windows-365-azure-virtual-desktop/ - Categories: Windows 365 - Tags: Ignite 2023, News, Windows 365 - Article Type: News Key Takeaways: Microsoft enhances Windows 365 and Azure Virtual Desktop with AI capabilities, streamlining management and security for Cloud PCs. Microsoft has released new security features like watermarking and Customer Lockbox to prevent unauthorized access in Windows 365. Azure Virtual Desktop introduces Personal Desktop Autoscale for efficient VM management. As Microsoft is kicking off its Ignite 2023 conference this morning, the company detailed several updates coming to Windows 365 and Azure Virtual Desktop. These enhancements aim to improve the productivity of IT administrators and employees in enterprise environments. “Windows 365 and Azure Virtual Desktop are cloud-based solutions that allow you to access your Windows desktop from any device, anywhere. They offer flexibility, security, and scalability for your personal or professional needs,” said Harjit Dhaliwal, Senior Product Marketing Manager, Windows Enterprise. Windows 365 AI capabilities First up, Microsoft has announced new AI capabilities that help users to increase efficiency, reduce costs, and streamline the management and security of Windows 365 Cloud PCs. The new AI-powered features will be available in public preview soon. Microsoft has also announced the general availability of Single-sign on (SSO), passwordless authentication, and third-party IDP support for Azure Virtual Desktop and Windows 365. Windows App Microsoft has released a new Windows app that allows users to easily access applications or devices across Azure Virtual Desktop, Windows 365, Remote Desktop, Microsoft Dev Box, and Remote Desktop Services. The Windows app is currently available in public preview through the Microsoft Store, the web, or TestFlight for Apple devices. Security... --- ### Ignite 2023: Microsoft 365 Universal Print Gets macOS Support, Security Features - Published: 2023-11-15 - Modified: 2023-11-15 - URL: https://petri.com/microsoft-365-universal-print-macos-support/ - Categories: Active Directory (AD) - Tags: Ignite 2023, News - Article Type: News Key Takeaways: Microsoft announced macOS support for its Universal Print service at Ignite 2023. Universal Print introduces pull printing functionality to let users securely release print jobs from any corporate printer. IT admins can now delegate printer management responsibilities to others, allowing for more efficient task handling. Microsoft announced some important updates for the Universal Print service at its Ignite 2023 conference today. The cloud-based print service is getting macOS support, allowing users to print from any Mac app without installing third-party drivers or software. Universal Print now supports the pull printing functionality that lets employees securely release their print jobs from any corporate printer. The feature is available in public preview for macOS users. It’s also possible to use a PIN code or a mobile device for authentication at the printer. The secure release feature allows users to send their print jobs to a printer and ensure that the documents are only printed when they are physically present to collect them. This capability could be handy in environments with privacy and data security concerns. “You can use the Microsoft 365 mobile app, scan a QR code, use a PIN code, or an employee badge to authenticate yourself at the printer and release your print job. This way, you can avoid wasting paper or toner from unretrieved print jobs and prevent confidential information from being exposed in print trays,” said Harjit Dhaliwal, Senior Product Marketing Manager, Windows Enterprise. Universal Print settings on a macOS device Microsoft has also made it... --- ### Ignite 2023: Microsoft Introduces New Unified Security Operations Platform, Security Copilot Features - Published: 2023-11-15 - Modified: 2023-11-15 - URL: https://petri.com/microsoft-unified-security-operations-platform/ - Categories: Security - Tags: Ignite 2023, Microsoft Security Copilot, News - Article Type: News Key Takeaways: Microsoft is merging Sentinel, Defender XDR, and Security Copilot into a unified security operations platform. Microsoft is embedding Security Copilot into various security solutions, such as Microsoft Purview, Microsoft Entra, Microsoft Defender for Cloud, and Microsoft Intune. The Security Copilot standalone experience gains new Defender EASM capabilities to provide insights into external attack surfaces. It’s been a couple of months since Microsoft introduced Security Copilot, an AI-powered assistant that’s designed to help cybersecurity professionals detect breaches. At its Ignite 2023 conference, the company announced a slew of new updates coming to Security Copilot and the expansion of AI-powered capabilities across all clouds and platforms. Vasu Jakkal, CVP of Security, Compliance, Identity & Privacy at Microsoft, shared the results of a recent controlled trial conducted to assess the impact of Security Copilot. The new security tool delivered responses that were 44 percent more accurate and incident reports that were 11 percent more precise. Participants also observed that the Copilot tool offered remediation steps that were 73 percent more appropriate. Microsoft unveiled that it’s combining Sentinel, Defender XDR (formerly Microsoft Defender 365), and Security Copilot into a unified security operations platform to help customers manage and protect corporate data. “With a single set of automation rules and playbooks enriched with generative AI, coordinating response is now easier and quicker for analysts of every level. In addition, unified hunting now gives analysts the ability to query all SIEM and XDR data in one place to uncover threats and take appropriate remediation... --- ### Get-ADComputer: The PowerShell Command for Managing Active Directory Computers > The Get-ADComputer PowerShell cmdlet is a powerful tool for managing AD computers. Learn how it can be used to retrieve information about computer objects. - Published: 2023-11-15 - Modified: 2023-11-15 - URL: https://petri.com/get-adcomputer/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, featured-top-left, PowerShell - Article Type: How To The Get-ADComputer PowerShell cmdlet is a powerful tool for managing AD computers. It can be used to retrieve information about computer objects, search for computer objects based on specific criteria, and perform various actions on computer objects. What is Get-ADComputer used for? Get-ADComputer is a PowerShell cmdlet that retrieves one or more computers from Active Directory. It can be used to retrieve a single computer by specifying its distinguishedname, GUID, security identifier (SID), or SAMaccountname. Alternatively, it can be used to search for and retrieve multiple computers by using the Filter or LDAPFilter parameters. I'll touch on those later on. The basics of Get-ADComputer Whether you're a network administrator, IT professional, or just curious about your network's computer infrastructure, Get-ADComputer can provide essential insights. It is a powerful tool that can be used to perform a variety of tasks, such as: Listing all computers in a domain Finding computers that meet specific criteria, such as operating system, location, or department Exporting computer information to a file or database Managing computer objects The Get-ADComputer cmdlet, part of the Active Directory module (RSAT), has a number of parameters that can be used to control its output. For example, the Identity parameter can be used to specify a specific computer object's name or distinguished name. The Filter parameter can be used to search for computers that meet specific criteria. The Properties parameter can be used to specify the properties that should be returned for each computer object. We'll dig deeper into these... --- ### First Ring Daily: Copilot on Windows 10? - Published: 2023-11-15 - Modified: 2023-11-15 - URL: https://petri.com/first-ring-daily-copilot-on-windows-10/ - Categories: Windows, Windows 10, Windows 11 - Tags: copilot, First Ring Daily, News, OneDrive - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss a recent report claiming Microsoft's Copilot assistant is headed to Windows 10, as well as Microsoft forcing some OneDrive users on Windows to fill out a survey on why they decided to close the sync client. --- ### New Microsoft Search User Analytics Reports Now Cover Teams, Outlook, and Office - Published: 2023-11-14 - Modified: 2023-11-14 - URL: https://petri.com/microsoft-search-user-analytics-reports/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft's recent updates to the Search Analytics reports expand coverage to include applications like Microsoft Teams, Outlook, and Windows Search. The enhanced user analytics capabilities enable IT admins to validate key metrics for active and inactive end users. The improved user analytics capabilities are expected to become generally available in late November. Microsoft has announced some updates for the Search Analytics reports in the Search & Intelligence Admin Center. The user analytics improvements expand coverage to all search applications, spanning platforms such as Microsoft Teams, Outlook, and Windows Search. Microsoft Search Usage Reports provide valuable insights into user interactions with the search capabilities in Microsoft 365. The feature lets IT admins analyze search patterns over time to discover trends, detect changes in user behavior, and optimize the search experience as needed. The Microsoft Search Usage Reports page provides search data through user analytics, query analytics, connection analytics, and answer analytics reports. “You will have a better opportunity to analyze search adoption and search activity in regions, departments and occupations across all your search applications. Query Analytics is available in the Search & Intelligence Admin Center and require Tenant Admin, Search Admin or Search Editor roles,” the company explained in a message on the Microsoft 365 admin center. New user analytics usage scenarios Microsoft notes that the new user analytics improvements enable IT admins to validate key metrics for end users who actively engage in searches as well as those with no user activity. These improvements also aim to... --- ### Microsoft to Offer Three More Years of Windows Server 2012 Extended Security Updates - Published: 2023-11-14 - Modified: 2023-11-14 - URL: https://petri.com/windows-server-2012-extended-security-updates/ - Categories: Windows Server 2012 - Tags: News, Windows Server 2012 - Article Type: News Key Takeaways: Microsoft has announced that administrators will receive an extra three years of Extended Security Updates (ESUs) for Windows Server 2012. Customers still on Windows Server 2012 can opt for ESUs until October 13, 2026, providing businesses with an extended timeframe to secure their systems. Microsoft recommends upgrading to Windows Server 2022 or migrating databases and applications to Azure Virtual Machines (VMs). Microsoft has announced that it would provide three additional years of Windows Server 2012 Extended Security Updates (ESUs). This move is aimed at granting IT administrators extra time to upgrade or transition their workloads to Azure. Microsoft officially ended mainstream support for Windows Server 2012 in October 2018. The company offered extended support for all editions of Windows Server 2012 and Windows Server 2012 R2 until October 10, 2023. Consequently, customers are no longer eligible to receive security updates and bug fixes for their Windows Server machines. Starting this week, businesses have the option to pay Microsoft to receive Windows Server 2012 Extended Security Updates until October 13, 2026. It should help to mitigate security risks for organizations requiring additional time to migrate their databases and applications to supported versions of Windows Server. “If you've already moved to Azure to protect your Windows Server 2012 and R2 workloads, you might be enjoying free Extended Security Updates. If your organization is unable to migrate, you can purchase and seamlessly deploy Windows Server 2012 Extended Security Updates enabled by Azure Arc on premises and in hosted environments without keys,... --- ### How to Create a Dockerfile Step by Step > Learn how to use a Dockerfile to create a Docker image with a specific configuration in this quick and easy step-by-step tutorial. - Published: 2023-11-14 - Modified: 2023-11-14 - URL: https://petri.com/dockerfile/ - Categories: DevOps - Tags: DevOps, Docker, featured-top-right - Article Type: How To Docker is a popular software platform that developers can use to run applications inside a lightweight environment known as a Docker container. You can run Docker containers using standard Docker images found on the Docker hub. However, you can also use a Dockerfile to create a Docker image with a specific configuration. In this article, I will explain how to create a Dockerfile step by step. What is a Dockerfile? To understand what a Dockerfile is, you first need to be familiar with how Docker containers and Docker images work. Moreover, to follow along this tutorial, you’ll need to have the following installed: Ubuntu with Docker installed. This tutorial uses a device running Ubuntu 21. 10. Docker v19. 03. 8 installed. How Docker containers and Docker images work? A Docker image is a package of multiple components (code, runtime, system tools, system libraries and settings) required to run an application. Docker images are either stored privately in own repository or publicly stored in the Docker Hub library, which provides access to over 100,000 container images. To find Docker images on the Docker hub, you just need to enter the name of the Docker Image you need in the search box. As an example, you can see the Docker image for the Nginx webserver below. Docker image for the Nginx webserver (Image Credit: Petri/Sagar) Docker applications run inside a lightweight environment known as a Docker container, which is a runnable instance of a Docker image. A Docker container is different from a virtual... --- ### Microsoft Intune Gets New Feature to Streamline Windows 11 Upgrade Experience - Published: 2023-11-13 - Modified: 2023-11-13 - URL: https://petri.com/microsoft-intune-windows-11-upgrade/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft has introduced a new feature in Intune and Windows Update for Business that allows organizations to deploy Windows 11 and Windows 10 version 22H2 feature updates together in a single deployment. The new capability eliminates the need for IT admins to create and manage eligibility groups. Administrators can now ensure that devices incompatible with Windows 11 are automatically updated to the latest Windows 10 version. Microsoft has introduced a new feature in Intune and the Windows Update for Business deployment service to streamline the Windows 11 upgrade experience. The latest update allows administrators to seamlessly deploy Windows 11 alongside Windows 10 version 22H2 on devices within their organization. Microsoft highlights that the new feature helps customers to save the time and effort that was previously required to create and manage eligibility groups for devices. It lets administrators ensure that devices incompatible with Windows 11 are automatically updated to the latest version of Windows 10. “Today, you can bundle a Windows 11 upgrade and Windows 10, version 22H2 feature update together in a single deployment. Simply create your Windows 11 deployment as usual and opt to install the latest Windows 10 update when a device isn’t eligible for Windows 11. Those devices will automatically get offered the latest Windows 10, version 22H2 update without the need for additional steps,” Microsoft explained. Intune reports for Windows 10 and later feature updates How to deploy and monitor Windows updates with Microsoft Intune To deploy and monitor Windows updates, you will... --- ### GitHub Unveils Copilot Enterprise to Let Organizations Customize Codebase - Published: 2023-11-13 - Modified: 2023-11-13 - URL: https://petri.com/github-copilot-enterprise-customize-codebase/ - Categories: Developer - Tags: Developer, GitHub Copilot, News - Article Type: News Key Takeaways: GitHub Copilot Chat, powered by OpenAI's GPT-4, will be generally available in December for both individuals and enterprise customers. GitHub's new Copilot Enterprise tier is launching in February 2024, providing an enterprise-grade subscription for organizations. The service allows companies to personalize Copilot Chat for their codebase and fine-tune underlying models. Microsoft’s owned GitHub has announced the general availability plans for GitHub Copilot Chat. The company has also unveiled previews of GitHub Copilot Enterprise and new AI-powered security capabilities. GitHub first announced Copilot Chat back in March, and it will become generally available for both individuals and enterprise customers in December. The chatbot is powered by OpenAI's GPT-4 and can be placed within an integrated development environment (IDE) such as Visual Studio and Visual Studio Code. It lets developers use natural language commands to ask questions about the existing code. GitHub has announced several new capabilities coming to the Copilot Chat service, including enhanced code suggestions, explanations, and suggestions. There is also an inline capability that allows developers to chat about specific lines of code. Microsoft is also introducing support for slash commands and context variables. The AI-powered tool is available as a part of the standard Copilot subscription, which costs $19/month for businesses and $10/month for individuals. GitHub Copilot Enterprise to launch in February 2024 GitHub has also announced a new enterprise-grade Copilot subscription called GitHub Copilot Enterprise. The new service enables organizations to personalize Copilot Chat for their codebase and fine-tune the underlying models. It helps developer... --- ### New Outlook for Windows to Get Copilot Integration, Offline Support, Other New Features - Published: 2023-11-09 - Modified: 2023-11-09 - URL: https://petri.com/new-outlook-for-windows-copilot-offline/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The new Outlook for Windows is set to integrate several new features, including Copilot integration, offline access, Message Recall, POP3 account support, and dictation. Microsoft is committed to ongoing performance improvements and visual enhancements, addressing specific feedback on features and overall user experience. The transition from the classic Outlook desktop app to the new Outlook client is expected to take place within two years for organizations. Earlier this year, Microsoft launched its new web-based Outlook for Windows client, which combines the functionalities of email and calendar in a unified application. The company has recently outlined a range of upcoming features slated for integration into the new Outlook experience in the next year. Specifically, the new Outlook for Windows will support auto capitalization, conditional formatting, Copilot integration, and dictation. Microsoft will also introduce a file tab in Outlook search, EML/PST/MSG file support, folder reordering, offline access, Outbox folder, Message Recall, S/MIME, POP3 account support, and picture formatting. Other capabilities include: Shared calendar notifications for work accounts Save as for attachments Preserve declined meetings Teams tab in search Drag and drop emails and attachments to the desktop Save as for attachments (choose folder to save to) Collapsible headers in the message list Inking (Draw tab) while composing an email “In addition to features and capabilities, we also hear and highly value feedback about performance and the overall experience. We are deeply invested across our teams in dedicated and ongoing performance improvements, ranging from focused optimizations to larger platform investments. We... --- ### Report: Microsoft Plans to Bring AI-Powered Copilot Assistant to Windows 10 - Published: 2023-11-09 - Modified: 2023-11-09 - URL: https://petri.com/microsoft-copilot-assistant-windows-10/ - Categories: Windows 10 - Tags: News, Windows 10, Windows Copilot - Article Type: News Key Takeaways: Microsoft is reportedly planning to integrate its new Copilot AI assistant into Windows 10, featuring a dedicated taskbar button and a sidebar experience. Microsoft sees bringing Copilot to a broader audience as a strategic move, given the over 1 billion monthly active devices running Windows 10. Microsoft could also incorporate select features and services (previously exclusive to Windows 11) into the older Windows 10 operating system. Microsoft is reportedly planning to bring its new Copilot AI assistant to Windows 10. According to a new report from Windows Central’s Zac Bowden, an upcoming Windows 10 update is expected to introduce the Copilot button to the taskbar, accompanied by a sidebar experience. Windows 10 currently holds a significant market share with around 1 billion monthly active devices. According to internal Microsoft data, over 400 million monthly active devices now run Windows 11, and the number is expected to hit the 500 million milestone in early 2024. In terms of usage, the adoption rate of Windows 11 is slower as compared to the nearly eight-year-old Windows 10 operating system. There is still a long way to go before it becomes the most popular version of Windows. Microsoft sees the extensive Windows 10 user base as a big opportunity to bring Windows Copilot to more customers. “Microsoft has been putting its Copilot in front of every user it can, but there's still a large chunk of PC users on the older Windows 10 OS which hasn't seen any of Microsoft's recent AI... --- ### Microsoft to Provide Startups with Free Access to Azure AI Infrastructure for Running LLMs - Published: 2023-11-08 - Modified: 2023-11-08 - URL: https://petri.com/microsoft-startups-azure-ai-infrastructure/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Key Takeways: Microsoft is offering high-growth startups free access to Azure AI services, providing them with the resources to accelerate the development of large language models and deep learning models. Startups will gain exclusive access to high-end GPU virtual machine clusters, allowing them to train and run generative AI models. Microsoft's time-limited access to virtual machine clusters encourages startups to experiment and test their AI operations. Microsoft has announced plans to support the growth of select startups by providing free access to its Azure AI services. This move will enable these companies to access high-end GPU virtual machine clusters, accelerating the training and deployment of large language models (LLMs) and deep learning models (DLMs). Microsoft has updated its startup program to let Y Combinator startups use high-end GPU virtual machine clusters in order to train and run generative AI models. It will allow a limited number of companies to gain access to the clusters in private preview. “Microsoft Azure offers cloud-based scalable AI infrastructure, built for and with the world’s most sophisticated AI workloads, from delivering the largest and most complex AI models including GPT-4 and ChatGPT through Azure OpenAI Service to developers to infuse AI capabilities into many apps,” said Charlotte Yarkoni, Microsoft’s president of commerce and ecosystems for cloud and AI. Microsoft explained that startups will also be able to access features and tools through Azure Machine Learning. The platform also makes it easier for companies to train low-code and code-based training of custom models. It’s also possible... --- ### Microsoft Expands Protection: Enterprise IoT Security Now Part of Microsoft 365 E5 and E5 Security Plans - Published: 2023-11-08 - Modified: 2023-11-08 - URL: https://petri.com/enterprise-iot-security-microsoft-365-e5/ - Categories: Security - Tags: Microsoft 365, News, Security - Article Type: News Key Takeaways: Microsoft has introduced enterprise IoT (eIoT) security capabilities for organizations with Microsoft 365 E5/E5 security subscriptions. Microsoft has integrated the Enterprise IoT security experience into the Defender portal, streamlining the process for security teams to manage both IT and eIoT endpoints from a single location. Microsoft has made changes in the payment model for Defender for IoT, moving from consumption-based to per-device per-month licensing. Microsoft has announced that enterprise IoT (eIoT) security capabilities are now available for organizations with Microsoft 365 E5/E5 security subscriptions. This release makes it easier for enterprise customers to monitor unmanaged enterprise IoT devices, detect anomalies, and improve security posture. Enterprise IoT (eIoT) security offers visibility and security for internet-connected devices and networks in business environments. It helps to protect enterprise IoT devices (such as cameras, printers, VOIP phones, smart TVs, and other devices) against unauthorized access and cyberattacks. With this release, Microsoft 365 Defender provides real-time insights, including risk and exposure levels, alerts, recommendations, and vulnerabilities. It offers a centralized hub for simplifying the visualization and monitoring of eIoT endpoints within corporate networks. Security teams can also get vulnerability assessments and tailored recommendations to protect vulnerable devices. “To help security teams evolve their endpoint security approach to include eIoT devices, we have merged the Enterprise IoT security experience directly into the Defender portal. This simplified experience removes the need to navigate across additional portals – helping security teams see, monitor, and harden their IT and eIoT endpoints from one place,” Microsoft explained. How... --- ### Expert Guide to Azure Stack HCI Network Requirements: Hardware Essentials – FAQ Part 1 > Azure Stack HCI expert Flo Fox answers your most burning questions about Azure Stack HCI network requirements, including switched vs switchless configurations and mixing networking equipment from different vendors. - Published: 2023-11-08 - Modified: 2024-01-08 - URL: https://petri.com/azure-stack-hci-network-requirements-1/ - Categories: Azure Stack HCI - Tags: Azure Stack HCI, featured-top-right - Article Type: How To, Overview As Azure Stack HCI becomes more widely deployed in datacenters and at the edge, I would like to highlight some frequently asked questions I have encountered during the last few months on Azure Stack HCI network requirements. Azure Stack HCI Network Requirements This series will focus on frequently asked questions about Azure Stack HCI and add some additional context on the videos my community peers and I created. So, let’s get started! Azure Stack HCI Switch Requirements When working with Azure Stack HCI, you will encounter lots of additional switch and protocol environments. While I’m not focusing on the explanation of all requirements in this article, I want to highlight when they are used. As we are focusing on Azure Stack HCI 22H2 and Azure Stack HCI 23H2, you will see the following scenarios covered. Management Network Interconnect Storage Network Interconnect (when using switched configurations) Compute without Software Defined Network Features enabled Compute with Software Defined Network Features enabled The table below shows you the requirements for your switch to meet different usage scenarios. RequirementManagementStorageCompute (Standard)Compute (SDN)Virtual LANS✓✓✓✓Priority Flow Control✓Enhanced Transmission Selection✓LLDP Port VLAN ID✓LLDP VLAN Name✓✓✓LLDP Link Aggregation✓✓✓✓LLDP ETS Configuration✓LLDP ETS Recommendation✓LLDP PFC Configuration✓LLDP Maximum Frame Size✓✓✓✓Maximum Transmission Unit✓Border Gateway Protocol✓DHCP Relay Agent✓Table 1 - Azure Stack HCI 22H2 and 23H2 Role Requirements Source: Physical network requirements for Azure Stack HCI - Azure Stack HCI | Microsoft Learn You should choose a switch according to the requirements for your Azure Stack HCI deployment. You can learn more about... --- ### Microsoft Authenticator Now Blocks Suspicious MFA Notifications - Published: 2023-11-07 - Modified: 2023-11-07 - URL: https://petri.com/microsoft-authenticator-suspicious-mfa-notifications/ - Categories: Authenticator - Tags: Microsoft Authenticator, News - Article Type: News Key Takeaways: Microsoft Authenticator has introduced a new security feature to enhance user security and combat MFA (Multi-Factor Authentication) fatigue attacks. The new security configuration suppresses notifications for risky login attempts, prompting users to manually approve sign-ins within the app. This approach has successfully blocked over 6 million unnecessary notifications in the past two months. Microsoft has recently introduced a new feature in its Authenticator app, designed to enhance user security and combat MFA fatigue attacks. The new security configuration was rolled out in September, allowing users to suppress pop-up notifications for potentially suspicious login requests. Previously, users who attempted to log into an account or a service would receive a pop-up notification to approve the sign-in request. Now, Microsoft Authenticator will automatically suppress the pop-up notification if it detects anomalous signals during the login attempt. Users will receive a prompt to open the app and input a verification code. Microsoft Authenticator will also display the user's location and the name of the app that initiated the request. “Following the deployment of this feature, we now suppress Authenticator notifications when a request displays potential risks, such as when it originates from an unfamiliar location or is exhibiting other anomalies. This approach significantly reduces user inconvenience by eliminating irrelevant authentication prompts,” explained Alex Weinert, VP Director of Identity Security at Microsoft. Microsoft Authenticator blocks over 6 million unnecessary MFA notifications Microsoft highlights that adopting this approach has helped to reduce the frequency of unusual notifications sent to customers. It should boost... --- ### Microsoft Entra ID to Get Automatic Conditional Access Policies This Month - Published: 2023-11-07 - Modified: 2023-11-07 - URL: https://petri.com/microsoft-entra-id-automatic-conditional-access-policies/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Microsoft Entra ID, News - Article Type: News Key Takeaways: Microsoft has unveiled new automatic Conditional Access policies aimed at safeguarding organizations from cyberattacks. These policies cover a range of security measures, from requiring multifactor authentication for admin portals to enhanced protection for high-risk sign-ins. Microsoft plans to combine machine learning-based policy insights and recommendations with automated policy rollout to boost security. Microsoft has announced plans to introduce new Conditional Access policies that will automatically protect customers against potential cyberattacks. Starting next week, the company will begin rolling out the new policies to all eligible commercial customers. “We’ve designed these policies based on our deep knowledge of the current cyberthreat landscape to help our customers strengthen their security baseline, and we’ll adapt them over time to keep the security bar high. These policies are part of a broader initiative to strengthen security, which includes key engineering advances,” said Alex Weinert, Vice President, Identity Security. Microsoft plans to roll out the following three policies to all eligible tenants: Require multifactor authentication for admin portals: This policy requires multifactor authentication (MFA) from administrators when signing into any Microsoft admin portal (like Microsoft 365, Microsoft Entra, Azure, and Exchange). It will be enabled for all eligible Entra ID customers. MFA for per-user MFA users: This policy is for existing per-user multifactor authentication customers, and it makes multifactor authentication mandatory for all cloud applications. It’s designed to make it easier for organizations to switch to Conditional Access. MFA for high-risk sign-ins: This policy requires multifactor authentication and reauthentication during sign-ins with a... --- ### Microsoft Deprecates Three Features in Windows 11 Version 23H2 - Published: 2023-11-06 - Modified: 2023-11-06 - URL: https://petri.com/microsoft-deprecates-features-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Microsoft has deprecated three features in Windows 11 version 23H2: Computer Browser, Webclient (WebDAV) Service, and Remote Mailslots. These features are considered outdated or insecure and, as a result, are no longer suitable for use on Windows PCs. The legacy services will no longer be actively developed and will be likely removed in future versions of Windows. Last week, Microsoft started rolling out the Windows 11 2023 Update, which introduces Windows Copilot and several new features that were released as an optional update on September 26. The company has also shared a list of features that have been deprecated in Windows 11 version 23H2. “Each version of Windows client adds new features and functionality. Occasionally, new versions also remove features and functionality, often because they've added a newer option,” the company explained in a support page. Microsoft has deprecated three legacy features in Windows 11: Computer Browser, Webclient (WebDAV), and Remote Mailslots. Computer Browser The Computer Browser service is a component that was used in older versions such as Windows NT and Windows 7. The service enabled users to browse the local area network (LAN), and access shared resources (such as shared folders and printers). Microsoft removed support for Secure Message Block version 1 (SMB1) and disabled the Computer Browser service by default in Windows 10. Webclient (WebDAV) Service The WebDAV API is an extension of the HTTP (Hypertext Transfer Protocol) that allows users to access and manipulate files on remote servers with Windows Explorer and other file... --- ### Microsoft Exchange Vulnerabilities: Zero-Days Pave Way for Remote Code Execution - Published: 2023-11-06 - Modified: 2023-11-06 - URL: https://petri.com/microsoft-exchange-remote-code-execution/ - Categories: Security - Tags: Microsoft Exchange, News - Article Type: News Key Takeaways: Trend Micro's Zero Day Initiative (ZDI) disclosed four zero-day vulnerabilities in Microsoft Exchange, with CVSS scores ranging from 7. 1 to 7. 5. Microsoft has already released updates to address one of the vulnerabilities and is currently evaluating the remaining ones for patching. Organizations are advised to restrict engagement with Exchange apps and enforce multi-factor authentication for added security. Trend Micro's Zero Day Initiative (ZDI) has disclosed four zero-day vulnerabilities in Microsoft Exchange. The security flaws could enable threat actors to run arbitrary code and disclose sensitive information on victims’ machines. According to ZDI, the critical vulnerabilities were reported to Microsoft in September 2023, with CVSS scores ranging from 7. 1 to 7. 5. Surprisingly, Microsoft's security engineers chose to postpone addressing these issues and stated that they did not deem them critical enough to require immediate action. The first one (ZDI-23-1578) is a remote code execution (RCE) vulnerability in the 'ChainedSerializationBinder' class that causes user data validation issues. It allows hackers to deserialize untrusted data and execute arbitrary code with high-level system privileges on Windows systems. Moreover, the second (ZDI-23-1579) flaw enables threat actors to access sensitive information from Exchange servers. The third (ZDI-23-1580) vulnerability originates from improper URI validation in the 'DownloadDataFromOfficeMarketPlace' method. It could potentially lead to unauthorized information disclosure on affected installations of Microsoft Exchange. Additionally, ZDI-23-1581 resides in the CreateAttachmentFromUri method, further exposing sensitive data to security risks. Hackers require authentication to exploit Microsoft Exchange flaws Microsoft has already addressed the ZDI-23-1578 vulnerability through the August 2023... --- ### Microsoft Unveils New Azure Integration with Canonical’s Snapshot Service - Published: 2023-11-03 - Modified: 2023-11-03 - URL: https://petri.com/microsoft-azure-canonical-snapshot-service/ - Categories: Microsoft Azure - Tags: linux, Microsoft Azure, News - Article Type: News Key Takeaways: Microsoft and Canonical have partnered to simplify Linux OS updates and enhance security for Canonical workloads on Azure. Microsoft Azure is the first cloud provider to integrate with Canonical's snapshot service. The Azure Guest Patching Service (AzGPS) and Azure Kubernetes Service (AKS) now offer the ability to apply the same package update from a specific date across all regions. Microsoft has collaborated with Canonical to simplify Linux OS updates and bolster security for Canonical workloads on Azure. This partnership marks a significant milestone, with Microsoft Azure becoming the first cloud provider to integrate with Canonical's snapshot service. Microsoft mentioned that deploying security updates on Linux-based operating systems can be challenging for organizations in order to address vulnerabilities. The new feature allows the Azure Guest Patching Service (AzGPS) and Azure Kubernetes Service (AKS) services to apply the same package update from a specific date across all regions. Azure Guest Patching Service (AzGPS) is an automatic patching service for Azure virtual machines (VMs). The service offers health monitoring capabilities to help customers detect patching failures, and it’s available for Windows and Linux VMs as well as flexible scale sets. Azure Kubernetes Service (AKS) is a service that is designed to streamline the deployment process of a managed Kubernetes cluster in Azure. It provides a unified experience for managing and governing Kubernetes clusters across on-premises, edge, and multi-cloud environments. "To tackle the issue of inconsistent updates, we are introducing the Ubuntu snapshot service. Available at snapshot. ubuntu. com, it provides a complete archive... --- ### New Microsoft Teams Web Client Starts Rolling Out in Preview to Edge and Chrome Users - Published: 2023-11-03 - Modified: 2023-11-03 - URL: https://petri.com/new-microsoft-teams-web-client-preview/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has started rolling out a new version of its Microsoft Teams web client, initially available for Microsoft Edge and Google Chrome users in preview. The new Teams web client aims to provide a similar experience to the desktop app, offering faster load times, enhanced chat and channel switching, and reduced memory usage. Microsoft plans to expand availability to Safari and Firefox browsers in March 2024. Microsoft has started rolling out the new version of its Microsoft Teams web client today. The company has posted a new message on the Microsoft 365 admin center to indicate that the new Teams app is available in preview for Microsoft Edge and Google Chrome users. Last month, Microsoft announced the general availability of the revamped Teams desktop app on Windows and macOS. Compared to the classic Teams client, this new version of Microsoft Teams is up to two times faster and consumes 50 percent less memory. Microsoft has optimized the app for faster load times and easier switching between chats and channels. “Our goal for the new Teams web app is to bring a near-identical experience to our new Teams desktop app. Both the new Teams web client and desktop clients share the same underlying infrastructure built to improve load times, improve channel and chat switches, and reduce memory usage,” the company explained in a message on the Microsoft 365 admin center. Microsoft mentioned that the new Teams client offers all the same features as the classic Teams web app, including... --- ### Microsoft Announces New Secure Future Initiative to Counter Evolving Cyberthreats - Published: 2023-11-02 - Modified: 2023-11-02 - URL: https://petri.com/microsoft-secure-future-initiative/ - Categories: Security - Tags: News, Vulnerability - Article Type: News Key Takeaways: Microsoft has announced a new Secure Future Initiative to enhance its threat intelligence capabilities and provide AI-powered security tools to detect and mitigate cyberthreats at scale. Microsoft is introducing mandatory multi-factor authentication, securing identity signing keys, and accelerating the mitigation of cloud vulnerabilities. Microsoft advocates for stronger international standards to protect against state-sponsored cyberattacks. Microsoft announced this morning its new Secure Future Initiative (SFI) to protect customers against the evolving threat landscape. The initiative comprises three pillars of advanced protection, focusing on: AI-based cyber defenses software engineering advancements and industry-setting standards for a more secure future. Microsoft Vice Chair and President Brad Smith highlighted that ransomware attacks have increased by over 200 percent. Since September 2022, threat actors have increasingly targeted small businesses, schools, hospitals, and local governments. It is important to note that over 80 percent of successful ransomware attacks stem from unmanaged devices. “Whether they work for geopolitical or financial motives, these nation states and criminal groups are constantly evolving their practices and expanding their targets, leaving no country, organization, individual, network, or device out of their sights,” Microsoft President Brad Smith said today. “They require a new response based on our ability to utilize our own resources and our most sophisticated technologies and practices. ” The executive detailed the following new initiatives to protect customers and civilians against state-backed cyber-attacks: AI-powered cyber defense mechanism Microsoft has once again emphasized its commitment to implementing cyber defense mechanisms to safeguard its customers worldwide. The company is extending its... --- ### Microsoft Teams Gets New Meet App, Live Translated Transcripts, Other New Features - Published: 2023-11-02 - Modified: 2023-11-02 - URL: https://petri.com/microsoft-teams-updates-october-2023/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams introduced a Meet app for streamlined meeting management, catering to users who want to catch up on missed details and access meeting-related content effortlessly. The latest Microsoft Teams desktop app for Windows and Mac delivers enhanced performance, featuring a 50% reduction in battery consumption. Microsoft Teams Premium customers can now benefit from live translated transcripts in over 30 languages during meetings. Microsoft announced a slew of enhancements for its Teams collaboration service in October 2023. Notable additions include the Meet app for efficient meeting management, live translated transcripts for Teams Premium users, a new Teams desktop app, enhanced management features, and much more. Meetings features Microsoft has introduced a new Meet app that is designed to make it easier for users to track and manage meeting activities. It allows users to catch up on missed details and quickly access chats, agendas, and files shared in recent meetings. The Meet app lets participants view invites and address meeting-related issues with a single click. Microsoft Teams mobile app is getting support for collaborative notes, allowing participants to work together on the notes, meeting agenda, and action items. Microsoft Teams Premium customers can now view live translated transcripts in the side panel during meetings. The feature supports over 30 languages and aims to increase productivity and inclusivity. Microsoft Teams is also getting a new Town hall experience that allows users to host large-scale events across an organization. It supports up to 15 concurrent events, 10,000 attendees, green room, third-party... --- ### SQL Server - How to Add a Table Using SQL CREATE TABLE - Published: 2023-11-02 - Modified: 2023-11-02 - URL: https://petri.com/sql-create-table/ - Categories: SQL Server - Tags: SQL Server - Article Type: How To Once you have created a user database, you can begin to create tables using the SQL CREATE TABLE statement. Databases typically have many different tables. If you haven't yet created your first database in SQL Server, check out this article on Petri about how to create a SQL database using the SQL CREATE DATABASE statement. Tables are structures that contain raw data.  Table names are descriptive, and their data is organized by rows and columns. You can access this data using T-SQL queries. Columns and data types in an SQL Server table Each column in an SQL Server table has a specified column name and data type that represents the values that will be stored in the column. This is essentially the column definition. A data type is an attribute that specifies the type of data that the column can hold. Some of the most common data types include: Int  Stores whole numbersBigint  Stores whole numbers larger than the standard integerSmallint  Stores small integers to save storage spaceBit  Stores 0, 1, or NULLDecimal  Stores fixed precision decimal numbersNumeric  Stores fixed precision numbersMoney  Stores monetary dataFloatStores floating precision numbers  Real  Stores larger floating precision numbersDatetime  Stores date and time values from January 1, 1753 to December 31, 9999Date  Stores only date from January 1, 0001 to December 31, 9999Time  Stores only time only values with an accuracy of 100 nanosecondsCharStores fixed width character strings with a maximum of 8,000 charactersVarchar  Stores variable width character strings with a maximum of 8,000 charactersVarchar (max)  Stores variable width character strings with a maximum of 1,073,741,824 charactersTextStores variable width character... --- ### SQL Server Essentials: Create a SQL Database > Learn how to create a SQL database with our easy-to-follow guide. Michael Otey shows you the simplest way to create a database with the T-SQL CREATE DATABASE command and other methods. - Published: 2023-11-02 - Modified: 2023-12-20 - URL: https://petri.com/create-sql-database/ - Categories: SQL Server - Tags: SQL Server - Article Type: How To Databases are the primary containers for your SQL Server relational database objects. Some of the main relational database objects that are contained in SQL Server databases include: tables, schema, indexes, views, logins, security and roles.  You can create a SQL database plus there are a number of built-in SQL system databases including the master, model, msdb and tempdb databases. Technically, SQL Server supports a maximum of 32,767 databases but in practice you will never use anywhere near that many. Let’s take a closer look at SQL Server databases and explore some of the different ways that you can create SQL databases. Create SQL Database SQL Server databases can be created in a variety of ways.  SQL Server Management Studio’s (SSMS) has an option that enables you to create a table interactively. Likewise, Azure Data Studio also provides an interactive option for creating databases. PowerShell can create databases using the Invoke-SqlCmd cmdlet. In addition, you can use SQL Management Objects (SMO) to create SQL Server databases. However, the most basic way to create databases and other database objects is by executing T-SQL commands. T-SQL commands are text based and they are executed using the SSMS Query Editor, Azure Data Studio or sqlcmd. Let’s look at a few examples of each of these create database methods. Using SQL Server Management Studio Microsoft offers SQL Server Management Studio (SSMS) as a tool for managing SQL Server databases. You can use it to carry out a number of tasks including navigating databases, writing and running SQL queries, and like you might expect for creating and modifying databases. To create a database using SSMS,... --- ### Microsoft 365 Copilot is Now Generally Available - Published: 2023-11-01 - Modified: 2023-11-02 - URL: https://petri.com/microsoft-365-copilot-generally-available/ - Categories: Microsoft 365 - Tags: featured-top-right, Microsoft 365, News - Article Type: News Key Takeaways: Microsoft 365 Copilot, an AI-powered assistant that launched in preview earlier this year, is now generally available for organizations. The Copilot tool allows users to draft emails in Outlook, summarise documents in Word, and catch up on missed Teams messages. Microsoft 365 Copilot is available for $30 per user per month as an add-on for Microsoft 365 E3 and E5 commercial customers. Microsoft 365 Copilot, the new AI-powered assistant that launched in public preview earlier this year, is now generally available. Microsoft 365 commercial customers will now need to pay an additional $30 per user per month to access the Copilot feature. In March, Microsoft announced Microsoft 365 Copilot to improve productivity by integrating Artificial Intelligence (AI) in its suite of Office applications. It provides generative AI capabilities across Microsoft 365 apps like Word, Excel, PowerPoint, Outlook, Teams, Loop and more. The AI-powered tool allows users to interact with Office apps with natural language commands. “Microsoft 365 Copilot is your AI assistant at work. It builds on Bing Chat Enterprise but is in a class all its own. It includes enterprise-grade security, privacy, compliance, and responsible AI to ensure all data processing happens inside your Microsoft 365 tenant—using technology Microsoft 365 customers have relied on for years,” said Jared Spataro, CVP of Modern Work & Business Applications. https://www. youtube. com/watch? v=S7xTBa93TX8 How does Microsoft 365 Copilot work? In Microsoft Outlook, the Microsoft 365 Copilot lets users draft replies, summarize emails, and integrate data from other sources such as Excel. It can... --- ### Classic Microsoft Teams Users will Auto-Update to New Teams Desktop Client in Early 2024 - Published: 2023-11-01 - Modified: 2023-11-01 - URL: https://petri.com/classic-microsoft-teams-auto-update-new-teams-2024/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft will automatically upgrade classic Teams users to the new Teams desktop client for Windows and macOS after March 31, 2024. The new Teams desktop client replaces the resource-intensive Electron framework with the more efficient React framework and Edge WebView 2, promising enhanced reliability and a simplified, faster experience for users. IT administrators should prepare for this change by configuring Teams update policies to ensure a smooth transition within their organizations. Microsoft is gearing up to begin automatic updates for classic Teams users, transitioning them to the new Teams desktop client for Windows and macOS. This change was announced via the Microsoft 365 admin center yesterday, and it's slated to take effect after March 31, 2024. Last month, Microsoft announced the general availability of its new Teams desktop client for Windows and Mac users. The new app replaces the resource-intensive Electron framework with the React framework and Edge WebView 2. Microsoft claims that users should notice improved performance and reduced disk space usage, especially on Windows PCs. “The new Teams app is reimagined from the ground up to deliver improved performance and enhanced reliability, security, and IT management. The result is a faster, simpler, smarter, and more flexible app that is up to two times faster while using 50% less memory,” Microsoft explained. “With the move to general availability, new features, capabilities, and enhancements to existing features are available exclusively on new Teams. ” The new Microsoft Teams also supports several features like breakout rooms, 7x7 video view, third-party... --- ### Microsoft Releases Windows 11 Version 23H2: Everything You Need to Know - Published: 2023-10-31 - Modified: 2023-10-31 - URL: https://petri.com/windows-11-version-23h2/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key Takeaways: Windows 11 version 23H2 (the Windows 11 2023 Update) brings a few enhancements, including Windows Copilot and a modernized File Explorer. IT Pros will find new tools and policies in this update, including the ability to remove passwords, configure Windows Firewall, and manage trusted apps more effectively. IT admins can use a new policy to remove passwords from Windows 11 devices with FIDO2 security keys or Windows Hello for Business. Microsoft has just announced the release of Windows 11 version 23H2 (also known as the Windows 11 2023 Update). The new version of the operating system is available as a small enablement package for PCs already running Windows 11 version 22H2. Starting today, Windows 11 users with eligible devices will be able to see Windows 11 version 23H2 in Windows Update. However, Microsoft will use telemetry to monitor the rollout for major issues and problems. “As Windows 11, version 23H2 shares the same code base and servicing branch as Windows 11, version 22H2, we will deliver this feature update using servicing technology (like that used for the monthly update process), providing a fast installation experience,” explained John Cable, Vice President, Program Management, Windows Servicing and Delivery. What’s new in Windows 11 version 23H2 Windows 11 version 23H2 includes all new features released on September 26 with some additional capabilities. First off, Microsoft has made it easier for users to manage their applications on Windows 11. The “All apps” section in the Start menu now clearly tags System Components... --- ### CISA Releases New 'Logging Made Easy' Tool to Detect Security Threats - Published: 2023-10-31 - Modified: 2023-10-31 - URL: https://petri.com/cisa-logging-made-easy-tool-security-threats/ - Categories: Security - Tags: News - Article Type: News Key Takeaways: CISA has released a new Logging Made Easy (LME) tool to cater to organizations without access to a security operations center or a comprehensive SIEM solution. LME equips security teams with event-driven logs and elastic security detection rules, empowering them to detect and counter advanced threats. The release of Logging Made Easy (LME) currently supports Windows-based devices in on-premises environments. The Cybersecurity and Infrastructure Security Agency (CISA) has recently released a new Logging Made Easy (LME) solution. The free tool is strategically tailored to address the unique needs of small businesses that may not have access to a dedicated security operations center or a comprehensive security information and event management (SIEM) solution. The LME tool provides Event-driven logs that should make it easier for organizations to detect and mitigate security threats. It provides built-in elastic security detection rules that can support analysts in safeguarding their corporate assets. “Logging is critical for proactive monitoring of threats and retroactive investigation and remediation in the event of an incident. Logging Made Easy is a tested and reliable solution that can help organizations with limited resources needing a centralized logging capability,” said Chad Poland, PM for Cyber Shared Services. “CISA is excited to offer this shared service capability to U. S. and international organizations that can help them mitigate risk and identify vulnerabilities. ” According to CISA, LME uses free software such as Docker, Ubuntu, and Elastic. The cybersecurity agency will keep a close eye on updates made by software providers to ensure uninterrupted... --- ### Top Azure Cloud Security Controls to Understand > Explore essential Azure cloud security controls and best practices in our concise guide. Learn to bolster your security posture with key deployment strategies. - Published: 2023-10-31 - Modified: 2024-01-08 - URL: https://petri.com/azure-cloud-security-controls/ - Categories: Microsoft Azure - Tags: Azure, cloud computing, Security - Article Type: How To, Overview This short guide will provide a top-level overview of the crucial Azure cloud security controls and best practices to be aware of. The highlighted suggestions will provide you with options worth considering for deployment across your estate to strengthen your security posture and mitigate the evolving number and severity of cloud-based threats and risks that exist. Microsoft Azure is one of the most widely used and versatile cloud computing platforms on the market today. Recent statistics suggest that 41% of organizations entrust ‘significant’ workloads to Azure in some capacity, with the platform witnessing an 8% growth over the last two quarters, maintaining almost a third of the cloud infrastructure services market share. One of Azure’s primary strengths is in software-as-a-service (SaaS), offering many enterprise-grade tools and offerings, which range from data management, storage and networking to advanced analytics, IoT applications and even machine learning and artificial intelligence capabilities. It also offers infrastructure-as-a-service (IaaS) and platform-as-a-service (PaaS) solutions, which combine to create a robust, flexible, and scalable environment to host applications. Despite the convenience and benefits of this public cloud infrastructure, there comes a plethora of security risks that need proper, proactive mitigation. IT professionals and key decision-makers in businesses worldwide have a duty to uphold ‌data integrity and compliance with relevant data protection standards. This is why it’s crucial for them to understand the key Azure security controls available to deploy to their incumbent, native cloud environments. Native Azure cloud security controls Azure provides a number of native security... --- ### Supercharging Collaboration: New Microsoft Teams Channels Experience Now Generally Available - Published: 2023-10-31 - Modified: 2023-10-31 - URL: https://petri.com/new-microsoft-teams-channels-experience/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft has introduced a new channels experience in Teams desktop apps to enhance collaboration by helping users focus on important information, connect with the stakeholders, and find relevant content. The new channels experience includes features like a conversation view for quick access to recent conversations, the ability to pop out channel conversations. The new channels experience is available for all channel types, including standard, private, and shared channels. Microsoft announced yesterday that the new channels experience is now generally available for the classic and new Teams desktop apps. The new channels experience is designed to help users focus on important information, connect with the audience, and effortlessly locate relevant content. “Channels make it possible for teams and workgroups of all sizes to collaborate in a dedicated virtual workspace organized by topic. Yet, our observations revealed that many customers were not using channels to their full capacity. In developing the new channels experience, we embraced customer feedback, user research input, and trends across communication platforms to transform channels and improve workgroup productivity,” Microsoft explained. Microsoft Teams has introduced a new conversation view in channels that lets users quickly read recent conversations, find content, and reply to a thread. It’s also possible to pop out channel conversations into a separate window. The new pop-out experience works similarly to the one that’s already available in 1:1 chats. Users can also pin posts to highlight important announcements in the channel. With the new channels experience, Microsoft Teams users can choose to show... --- ### Microsoft: Octo Tempest Group Exploits Social Engineering Tactics to Target Organizations - Published: 2023-10-30 - Modified: 2023-10-30 - URL: https://petri.com/microsoft-octo-tempest-social-engineering/ - Categories: Security - Tags: Microsoft, News, Phishing - Article Type: News Key Takeaways: Octo Tempest, a hacking group, is actively targeting organizations with data extortion and ransomware attacks, posing a significant cybersecurity threat. Microsoft has unveiled Octo Tempest's tactics, including SMS phishing and advanced social engineering, to infiltrate corporate networks, highlighting the need for robust security measures. Microsoft recommends the implementation of FIDO-compliant multi-factor authentication alongside additional security measures. Microsoft has recently published details about a hacking group dubbed Octo Tempest that uses advanced social engineering techniques, SIM swapping, and occasional physical threats to target organizations. Their activities have raised alarms and prompted Microsoft to release recommendations for organizations to strengthen their defenses against this emerging threat. According to the Microsoft Incident Response and Threat Intelligence team, the threat actor first started targeting telecom and business process outsourcing companies with SIM-swapping attacks in early 2022. The group sold the data to let other cybercriminals gain unauthorized access to accounts and steal cryptocurrency. In the second phase, the hackers began targeting telecom companies as well as email and tech service providers with data extortion attacks. Earlier this year, the Octo Tempest hacking group joined forces with the ALPHV/BlackCat ransomware. Their latest campaign aims to compromise both Windows and Linux systems, with a particular emphasis on VMWare ESXi servers. It targeted various industries such as technology, hospitality, manufacturing, law, retail, natural resources, consumer products, gaming, and financial services. "In recent campaigns, we observed Octo Tempest leverage a diverse array of TTPs to navigate complex hybrid environments, exfiltrate sensitive data, and encrypt data," Microsoft... --- ### Streamlining SaaS Governance: How Nudge Security Simplifies Compliance and Security Management for Cloud Apps - Published: 2023-10-30 - Modified: 2023-11-03 - URL: https://petri.com/nudge-security/ - Categories: Cloud Computing, Security - Tags: AWS, cloud computing, featured-top-left, Google Cloud, Microsoft Azure, NoAD, NoAds, Security - Article Type: Overview Nudge Security provides a simple and easy to implement solution to a challenging problem for organizations managing compliance, security, and governance of third-party cloud apps and services. Its simplicity encourages governed use of SaaS apps and the ability to monitor new apps and user signups. Nudge Security is a powerful alternative to complex products like Microsoft Defender for Cloud Apps, making it a compelling alternative. Balancing employee freedom and IT governance for third-party SaaS In the past, IT departments held extensive control over every aspect of business computing, often leading to delays and reduced agility due to strict oversight, including use of administrator rights. For instance, I knew of a bank where a request to use a piece of already licensed software could take 6 weeks. I contracted into an IT service provider where a laptop had to be supplied by the business and it took 8 weeks to be prepared. Clearly, the controls of IT were affecting the ability of employees to work. However, the rise of the cloud disrupted this paradigm, granting employees the power to quickly adopt new solutions with just a web browser, internet access, and a credit card! This shift swung the pendulum from extreme control to extreme freedom, allowing employees to leverage various cloud services without considering important factors like data security, usage auditing, and compliance with legal requirements. This transformation has created a challenging dilemma for organizations as they navigate the delicate balance between empowering employees with newfound freedom and maintaining some... --- ### IT Admins Can Now Disable Roaming Signatures in Outlook on the Web and New Outlook for Windows - Published: 2023-10-30 - Modified: 2023-10-30 - URL: https://petri.com/microsoft-disable-roaming-signatures-outlook/ - Categories: Outlook - Tags: News, Outlook for Windows, Outlook on the Web - Article Type: News Key Takeaways: Microsoft has started rolling out a new policy to let IT administrators disable roaming signatures in Outlook on the web and the new Outlook for Windows. The new policy eliminates the previous reliance on support tickets, giving IT Pros direct control over the management of roaming signatures. The new policy is expected to be made available to all commercial customers in mid-November. Microsoft has introduced a new policy that allows IT admins to disable roaming signatures for Outlook on the web and the new Outlook for Windows. The company has started rolling out the update, and it’s expected to become generally available for commercial customers in mid-November. Roaming signatures is a convenient feature that lets users save their email signatures in the cloud instead of locally on their Windows devices. This means that users only need to create their signatures once, and they will be synced to all other devices where they have configured the same email account. This feature is beneficial for users who frequently switch between multiple devices. It saves time and effort that was previously required to manually configure signatures on each device separately. “This change provides an option for admins to disable roaming signatures themselves. Previously, the only way to disable roaming signatures in Outlook on the web was to open a support ticket and ask to have Outlook roaming signatures disabled in your organization. Going forward, this support ticket process will be discontinued as admins can now disable roaming signatures themselves,” the company... --- ### First Ring Daily: Microsoft's FY2024 Q1 Earnings - Published: 2023-10-27 - Modified: 2023-10-27 - URL: https://petri.com/first-ring-daily-microsofts-fy2024-q1-earnings/ - Categories: Microsoft - Tags: First Ring Daily, Microsoft, News, Satya Nadella - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott look at Microsoft's first quarter earnings for its fiscal year 2024, as well as a long interview of Satya Nadella looking back at his biggest regrets as the CEO of Microsoft. In this episode of First Ring Daily, Brad Sams and Paul Thurrott look at Microsoft's first quarter earnings for its fiscal year 2024, as well as a long interview of Satya Nadella looking back at his biggest regrets as the CEO of Microsoft. --- ### What’s New in Microsoft Intune - October 2023 - Published: 2023-10-27 - Modified: 2023-10-27 - URL: https://petri.com/microsoft-intune-updates-october-2023/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key Takeaways: Microsoft Intune's October service release (2310) introduces a new feature that enables IT admins to seamlessly manage line-of-business (LOB) applications on devices running the Android Open Source Project (AOSP). Administrators can now mandate the installation of Apple device management software updates within a specified time frame. The addition of web enrollment with Just in Time (JIT) registration streamlines the onboarding experience for personal devices. Microsoft has released a slew of new capabilities and improvements for Microsoft Intune. The first new feature that the company highlighted today enables IT admins to install and remove line-of-business (LOB) applications on devices running Android Open Source Project (AOSP). Up until now, IT admins had to use third-party applications to manage AOSP line-of-business required apps within their organizations. LOB apps are applications that an organization needs to perform specific business operations. The Android Open Source Project (AOSP) is the source code repository that lets developers create custom versions of the Android operating system. “Admins can now leverage the existing LOB app flow in Intune, used to manage and protect applications used for all other devices, and select AOSP as the targeted platform after uploading the app. This is particularly useful for organizations who use specialty devices such as the Meta Quest family of immersive headsets and frontline wearables RealWear,” Microsoft explained. Declarative device management software updates Microsoft Intune now allows administrators to mandate the installation of Apple device management software updates within a designated time frame. The device will natively handle the downloading... --- ### Microsoft Teams to Let Users Forward Chat Messages - Here's How - Published: 2023-10-27 - Modified: 2023-10-27 - URL: https://petri.com/microsoft-teams-forward-chat-messages/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams is getting a new feature that will allow users to forward messages to 1:1 chats, meeting chats, and group chats. The forward messages feature simplifies the sharing of important information and facilitates tracking of discussions for future reference. The forward messages will be rolled out to targeted release customers in late November, with general availability expected in February 2024. Microsoft Teams is set to release a new update that will allow users to forward messages between chat conversations. The new feature will let users forward messages to 1:1 chats, meeting chats, and group chats, accessible on the Microsoft Teams desktop, web, and mobile apps. The forward messages feature aims to simplify the process of sharing important information like announcements, messages, or updates with team members who were not originally part of the conversation. Additionally, it should be useful to keep track of important decisions, discussions, and instructions for future reference. “In the compose dialog, users will have the option to select from the people picker menu who the message will be forwarded to. A message can be forwarded to an existing named group chat, a new group chat, a meeting chat or a 1:1 chat. Currently, users will only be able to forward one message to one chat at a time,” the company explained in a message on the Microsoft 365 admin center. How to forward chat messages in Microsoft Teams To forward a chat message, Microsoft Teams users will need to click the Forward button... --- ### Microsoft Defender for Endpoint Gets Streamlined Device Connectivity Experience - Published: 2023-10-26 - Modified: 2023-10-26 - URL: https://petri.com/microsoft-defender-for-endpoint-device-connectivity/ - Categories: Endpoint Protection, Security - Tags: Microsoft Defender for Endpoint, News - Article Type: News Key Takeaways: The streamlined device connectivity experience reduces the complexity of managing Defender for Endpoint services by consolidating and replacing multiple URLs with a simplified domain. Security teams can now opt for static IP ranges dedicated to Defender for Endpoint or subscribe to Azure service tags. The update includes a Defender for Endpoint client analyzer tool, allowing IT Pros to test the new connectivity mechanism in pre/post-onboarding scenarios. Microsoft has released a new update that streamlines the device connectivity and onboarding experience for Microsoft Defender for Endpoint. The new feature is currently available in public preview for Windows PCs, with macOS and Linux support to follow in the coming months. Up until now, security teams were required to separately set up and manage Microsoft Defender for Endpoint services within enterprise networks. Microsoft anticipates that this update will significantly cut down the Defender for Endpoint URL set, reducing it by more than 60 percent. The simplified domain (*endpointsecuritymicrosoftcom) will consolidate and replace URLs for various Defender for Endpoint services. This change will be applicable to malware sample submission storage, cloud-delivered protection (MAPS), automated investigation and remediation sample storage, Defender for Endpoint command and control, as well as Endpoint detection and response cyber data. Microsoft Defender for Endpoint expands network configuration options Microsoft is enhancing network configuration options by allowing the use of Defender for Endpoint-dedicated IP ranges instead of relying on URLs. The latest update is designed to streamline the configuration process for customers using older firewall devices that don't support... --- ### Microsoft Expands Passwordless Experience to Entra ID-Joined Windows 11 Devices - Published: 2023-10-26 - Modified: 2023-10-26 - URL: https://petri.com/microsoft-passwordless-entra-id-joined-windows-11/ - Categories: Windows 11 - Tags: Microsoft Intune, News, Windows 11 - Article Type: News Key Takeaways: Microsoft implemented a new policy that brings passwordless authentication to Entra ID-joined Windows 11 devices. The new policy enables organizations to use secure authentication methods like Windows Hello for Business or FIDO2 security keys, which are resistant to phishing attempts. A new web sign-in experience lets users log in with SAML-P federated identity or the Microsoft Authenticator application. Microsoft has introduced a new policy that enables organizations to bid farewell to passwords and embrace the era of passwordless authentication on Entra ID-joined Windows 11 devices. The passwordless authentication experience rolled out to commercial customers with the September 2023 update for Windows 11 version 22H2. “Phish-resistant credentials like Windows Hello for Business or FIDO2 security keys are both passwordless solutions and can protect user identities by removing the need to use passwords from day one. Commercial organizations can now set the EnablePasswordlessExperience MDM policy from Intune or another MDM to enable a fully passwordless user experience on Microsoft Entra ID joined machines,” Microsoft explained. Once the policy is enabled, employees will no longer need to enter their passwords when signing into their Windows 11 PCs. Additionally, the password prompt won’t be required for User Account Control (UAC), “Run as” admin scenarios, as well as in-session authentications through a web browser. Moreover, Windows 11 users won't find the “Change password” option in the Settings app. Users will need to use the Ctrl + Alt + Del keys to change their passwords instead. Passwordless authentication reinforces security for organizations The new... --- ### Microsoft Dynamics 365 Customer Service Gets New Copilot Capabilities - Published: 2023-10-25 - Modified: 2023-10-25 - URL: https://petri.com/microsoft-dynamics-365-copilot-capabilities/ - Categories: Dynamics 365 - Tags: Dynamics 365, News - Article Type: News Key Takeaways: Microsoft's new Copilot features in Dynamics 365 Customer Service improve customer service interactions by enabling agents to ask questions in natural language and receive AI-powered responses. Copilot integration allows agents to create intelligent email responses using predefined prompts. Microsoft Dynamics 365 Customer Service offers historical analytics reports that help service managers monitor Copilot usage across an organization. Microsoft has introduced new Copilot features in Dynamics 365 Customer Service, improving the way customer service agents interact with their clients. These enhancements allow agents to ask questions in natural language, draft personalized email responses, and monitor Copilot usage across an organization. “Copilot provides real-time, AI-powered assistance to help customer support agents solve issues faster by relieving them from mundane tasks—such as searching and note-taking—and freeing their time for more high-value interactions with customers,” said Jeff Comstock, CVP for Dynamics 365 Customer Service. Microsoft highlights that the latest update allows users to ask questions with natural language commands. The Copilot tool will scan all company resources and then provide a response. The customer support agents can also check the sources and give feedback on the responses. This feature is designed to help agents save time and effort that was previously required for lengthy investigations. The Copilot integration allows agents to use predefined prompts to create intelligent email responses. This capability could be handy for common support activities like requesting more information, suggesting a call, resolving the customer’s problem, and empathizing with feedback. The Copilot feature leverages the conversation’s context, case notes,... --- ### 5 Ways to Clean the AppData Folder in Windows - Published: 2023-10-25 - Modified: 2023-10-24 - URL: https://petri.com/appdata-folder/ - Categories: Windows - Article Type: How To The inner workings of the Windows operating system are a labyrinth of files and folders, each with its own specific role and significance. Among these, the AppData folder is a critical yet often overlooked, or possibly misunderstood component. In this article, we will delve into the AppData folder in Windows, exploring its purpose, structure, and importance in the realm of the system and user data management. We'll also offer some guidance on cleaning it up, safely! What is the AppData folder? The existence of the hidden folder - AppData - goes all the way back to Windows Vista in 2009! It has been included in every Windows version since, including Windows 11. This folder, which is stored in the root of every user profile under C:\Users, contains all the settings, application settings, and other information and data needed by Windows and all installed applications, mostly 'Win32' apps. If you just went to find it on your system, you may have missed it, or didn't see it - it is hidden by default. Read on to discover its inner workings and secrets. Where is the AppData folder located? (and how to unhide it) As I just mentioned above, the AppData folder is stored in the root of each user profile stored on the computer under the C:\Users folder. In C:\Users, there will be a folder for each username with a local profile. However, by default, the AppData folder is one of the hidden items in Windows. The AppData folder under... --- ### Microsoft Outlook to Let Users View Declined Events on the Calendar - Published: 2023-10-25 - Modified: 2023-10-25 - URL: https://petri.com/microsoft-outlook-declined-events-calendar/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft Outlook is getting a new feature that enables users to retain declined events within their calendars. Meetings that have been declined currently land in the Deleted Items folder, posing difficulties when users unintentionally decline or overlook scheduled meetings. The new setting will start rolling out to commercial customers in the second half of November 2023. Microsoft is set to introduce a new time management feature in Microsoft Outlook. This update will allow users to retain declined events within their calendars, offering a streamlined solution for easily viewing and tracking information related to these events. Currently, when events are declined, they are relocated to the Deleted Items folder in Microsoft Outlook in order to maintain a clean and clutter-free calendar. As a result, users must manually retrieve declined event invitations from the Deleted Items folder. This process can become incredibly inconvenient when a user unintentionally declines a meeting invitation and later forgets about it. Microsoft is taking steps to resolve this issue by introducing a new setting in Microsoft Outlook. This feature will allow users to display declined events on their calendars, making it easier to avoid accidentally missing important meetings and appointments. Users can conveniently reschedule declined events by changing their responses directly within the calendar. “In Settings, once you turn on the feature, declined events will no longer disappear but remain on your calendar so you can easily recollect related info or docs, find associated chats, or even take actions like updating your previous response (RSVP) and forwarding... --- ### Qualcomm Unveils Snapdragon X Elite: A Powerhouse for Windows on Arm PCs, Outperforming Apple's M2 Max with 30% Less Power - Published: 2023-10-24 - Modified: 2023-10-25 - URL: https://petri.com/qualcomms-snapdragon-x-elite/ - Categories: Hardware, Windows - Tags: featured-top-left, Hardware, News, Windows - Article Type: News Key Takeaways: Qualcomm announced the Snapdragon X Elite chip for high-end Windows on Arm PCs, offering 2x better CPU and GPU performance than existing x86 processors. Qualcomm claims single-core CPU performance exceeds Apple's M2 Max at 30% less power consumption The Snapdragon X Elite features a 4nm System-on-a-Chip architecture, 12 high-performance cores, LPDDR5x RAM support, and Adreno GPU with 4. 6 TFLOPs. Qualcomm has just kicked off its Snapdragon 2023 Summit in Hawaii, and the company announced the new Snapdragon X Elite chip designed from the ground up for high-end Windows on Arm PCs. Snapdragon X Elite multi-threaded performance The Snapdragon X Elite features the custom integrated Oryon CPU and Qualcomm claims that it offers 2x better CPU (and GPU) multi-threaded performance than Intel's post popular 10 (i7-1335U) and 12-core (i7-1360P) CPUs with 68% less power consumption. Qualcomm also claimed that Oryon beats Intel's i7-13800H high-performance 14-core CPU with 60% faster performance and 65% less power usage. Qualcomm claims that the Snapdragon X Elite will offer 50 percent better multithreaded performance than Apple’s M2 chip - but didn't specify at what cost to power consumption. Snapdragon X Elite single-threaded performance At the keynote, CEO Cristiano Amon said Oryon's single-core CPU performance exceeds Apple's M2 Max and if you want to match that performance, it can do it with 30% less power consumption. Oryon single-threaded performance also beats the leading x86 CPU, which was shown as the Intel i9-13980HX during the presentation. Qualcomm Oryon CPU 4nm manufacturing process The Snapdragon X Elite... --- ### Windows LAPS Introduces Microsoft Entra ID and Intune Support to Boost Protection - Published: 2023-10-24 - Modified: 2023-10-24 - URL: https://petri.com/windows-laps-microsoft-entra-id-intune/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Microsoft Intune, News, Windows LAPS - Article Type: News Key Takeaways: Microsoft has added support for Microsoft Entra ID and Intune into Windows LAPS, enhancing the capability of organizations to configure and bolster local administrator password policies for Windows devices. Windows LAPS facilitates automated password backups to Active Directory and Azure Active Directory, and boosts security against pass-the-hash and lateral-traversal attacks through password rotation. Microsoft plans to add more features like automatic account creation and just-in-time controls for password recovery. Microsoft has introduced support for Microsoft Entra ID and Microsoft Intune in its Windows LAPS solution. This update enables organizations to easily configure local administrator password policies to protect Windows devices against cyberattacks. Microsoft started rolling out Windows Local Administrator Password Solution (Windows LAPS) in April 2023. The solution replaces the legacy LAPS implementation (Microsoft LAPS) that was released back in 2016. It allows organizations to manage and protect their local administrator account passwords on Windows client devices. The service automatically backups the passwords to Active Directory and Microsoft Entra ID (formerly called Azure Active Directory). Windows LAPS also rotates the passwords to thwart pass-the-hash and lateral-transversal attacks. The feature is available for Microsoft Entra ID-joined and hybrid-joined devices. Windows LAPS offers access control list and password encryption options, which are supported through Microsoft Entra ID. Microsoft has recently added support for audit logs and Entra ID role-based access control policies. Microsoft suggests that administrators should activate the Windows LAPS feature within their organization. IT professionals can manage Windows LAPS using Microsoft Intune or manually deploy the policy through... --- ### Microsoft Syntex Adds Taxonomy and Image Tagging, Other Content Management Features - Published: 2023-10-23 - Modified: 2023-10-23 - URL: https://petri.com/microsoft-syntex-updates/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Syntex's taxonomy tagging and image tagging capabilities are now generally available for to all pay-as-you-go customers. Microsoft has released new Syntex features in preview for pay-as-you-go customers, including content query, universal annotation, and taxonomy services. The Syntex optical character recognition (OCR) feature now supports PDF and TIFF files. Microsoft Syntex has announced several new capabilities to improve content management and discovery for Syntex pay-as-you-go customers. The major highlights include Syntex taxonomy tagging and image tagging, extended support for optical character recognition (OCR), and much more. Microsoft Syntex is a service that uses AI and machine learning to find, organize, and classify documents in Microsoft Teams, SharePoint libraries, and OneDrive for Business. The service offers AI-powered summarization, translation, auto-assembly, and annotations incorporated into Microsoft 365 apps. Microsoft Syntex also supports backup, archiving, analytics, and management tools for documents. First off, Microsoft announced that Syntex taxonomy tagging and image tagging capabilities are now generally available for all Syntex pay-as-you-go customers. The Syntex taxonomy tagging feature automatically tags documents with descriptive keywords. This capability should make it easier for users to search, sort, filter, and manage documents. The Syntex Image Tagging feature helps users categorize and search for specific images in SharePoint libraries, OneDrive, and embedded documents. Microsoft Syntex pay-as-you-go customers are getting a set of capabilities that were previously only available to organizations with a SharePoint Syntex seat license. These include content query, universal annotation, accelerators, taxonomy services, content processing rules, and PDF merge/extract. “If you’re not yet a... --- ### Microsoft Teams Premium Gets Major Enhancements to Boost Collaboration - Published: 2023-10-23 - Modified: 2023-10-23 - URL: https://petri.com/microsoft-teams-premium-collaboration/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams Premium now offers improved AI-powered intelligent recaps with the introduction of chapters and topics. Meeting organizers can access valuable insights into audience interaction through the new Engagement Analytics capabilities. Microsoft Teams Premium lets IT admins configure policies for automatic background blur and proactively monitor meeting quality. Microsoft Teams Premium is getting a new update with a suite of new features to improve the meeting and collaboration experience. From AI-enhanced meeting recaps to advanced engagement analytics and more customizable control for IT admins, these additions promise to streamline communication for organizations. Microsoft Teams Premium is an add-on license that provides AI-powered capabilities to improve the meeting experience for organizations. The new premium tier includes intelligent meetings and webinars, virtual appointments, and advanced management and reporting capabilities for IT administrators. It also offers several security features, like watermarking support and labeling sensitive content during meetings. Microsoft Teams has enhanced the AI-powered intelligent recap experience by introducing chapters and topics. The feature will also add support for several new languages in November, including French, Arabic (Preview), Italian, Spanish, Portuguese, Japanese, German, Simplified Chinese, and Hebrew (Preview). Microsoft has added a new feature that will let participants view live translated meeting transcripts on the transcript side pane during Teams meetings. Furthermore, Microsoft Teams Premium is getting new engagement analytics capabilities that enable meeting organizers to gain insights into audience interaction. The Attendance tab will let organizers view information like raised hands, total reactions, chats, unmutes, and cameras turned on. Microsoft... --- ### Microsoft Purview Audit Extends Default Retention Period for Activity Logs - Published: 2023-10-20 - Modified: 2023-10-20 - URL: https://petri.com/microsoft-purview-audit-retention-activity-logs/ - Categories: Security - Tags: Microsoft Purview, News - Article Type: News Key Takeaways: Microsoft has extended the default retention period for activity logs in Microsoft Purview Audit, allowing organizations to access historical audit log data for up to 180 days. Customers with Purview Audit (Standard) licenses now have access to an additional 30 audit logs for various Microsoft 365 services. Microsoft is introducing new features in December, including the ability for customers to access the new asynchronous Audit Search experience programmatically. Microsoft recently unveiled updates to the default retention period for activity logs in Microsoft Purview Audit. This change is designed to enable organizations to access historical audit log data for longer periods, helping them better investigate security breaches and related incidents. Microsoft Purview Audit is a service that allows organizations to search for audit records for activities performed in Microsoft 365. It provides intelligent insights to help administrators determine the scope of compromise and support investigations. "Starting in October 2023, we began rolling out changes to extend default retention to 180 days from 90 for audit logs generated by Audit (Standard) customers. Audit (Premium) license holders will continue with a default of one year, and the option to extend up to 10 years,” explained Rudra Mitra, Corporate Vice President for Microsoft Data Security and Compliance. Microsoft plans to roll out the retention changes to Purview customers with standard licenses in the next few weeks. This update should be available for enterprise customers later this month, with government customers to follow in November. New Microsoft Purview Audit Logs to boost security... --- ### How to Properly Secure and Govern Microsoft Entra ID Apps - Published: 2023-10-19 - Modified: 2024-11-19 - URL: https://petri.com/secure-microsoft-entra-id-apps/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud computing, featured-top-left, Microsoft Entra ID, NoAD, NoAds, Security - Article Type: How To, Sponsored Microsoft Entra ID, formerly Azure Active Directory (AD), is Microsoft’s cloud-native identity management platform. It only takes one compromised Entra ID user account to consent to a rogue app that siphons all the user’s Microsoft 365 data or to take over their mailbox. Business Email Compromise (BEC) amounts to $8 million in losses on a daily basis globally. This article is sponsored by ENow Software. In this article, Sander Berkouwer - a Microsoft security MVP and long-time identity management expert – explains how misconfigured Entra ID application registrations and enterprise apps can lead to data compromise, and then 3 questions you need to answer to detect and remediate incorrectly configured Entra ID apps. Microsoft Entra ID: establishing an app governance strategy Microsoft Entra ID is an industry-leading identity management platform for authenticating and authorizing access to applications and resources. But it requires adequate oversight to ensure that your organization stays secure. One challenge I commonly see organizations struggle to address is implementing an effective application governance strategy. Whether internal developers are creating applications or employees are purchasing 3rd party Shadow IT solutions, many organizations are continuously - and unknowingly! - integrating these apps into Entra ID. However, admins must to be able to say with confidence that you have a solid grip on the applications your organization uses in the cloud. You need to know what applications users have deployed inside your tenant, and be able to provide the organization with a list of admin-approved applications. While this may... --- ### Microsoft Entra ID App Registration and Enterprise App Security Explained - Published: 2023-10-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-entra-id-app-registration-explained/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud computing, featured-top-right, Microsoft Entra ID, NoAD, NoAds, Security - Article Type: How To, Sponsored One of the main reasons that application governance is often overlooked, as it relates to an organization’s cloud security posture, is because the topic is not fully understood. . However, it is vitally important to understand the fundamentals of Microsoft Entra ID (formerly Azure Active Directory)  - tenants, app registrations, enterprise apps, and consent – and how they function properly together, so you can elevate your organizations security posture by implementing strategies to protect your cloud data. This article is sponsored by ENow Software. The fact is, it only takes one compromised user account to consent to a rogue app that syphons all the user’s SharePoint data or take over their mailbox. Business Email Compromise (BEC) amounts to $8 million in losses on a daily basis globally. Understanding Microsoft Entra ID app registration and enterprise apps In this article I explain the essential concepts of Microsoft Entra ID app registration and enterprise apps, and why this is important in terms of overall Microsoft Entra ID application governance. Microsoft Entra ID vs Windows Server Active Directory Microsoft Entra ID is an identity provider and management platform that you can use to authenticate users and authorize access to corporate applications. But it’s important to understand that Entra ID is different from Windows Server Active Directory (AD). The latter can be seen as an identity provider (IdP) that organizations install on their own on-premises servers, which they manage themselves, and it only serves their organization. Entra ID is Microsoft’s cloud-based identity and... --- ### Experience the Future of Security Operations Now with the Microsoft Security Copilot Early Access Program - Published: 2023-10-19 - Modified: 2023-10-19 - URL: https://petri.com/microsoft-security-copilot-early-access-program/ - Categories: Security - Tags: Microsoft Security Copilot, News - Article Type: News Key Takeaways: Microsoft is expanding its Microsoft Security Copilot through the Early Access Program, leveraging OpenAI's GPT-4 AI capabilities to enhance threat response. The Security Copilot empowers cybersecurity teams with natural language commands to analyze vulnerabilities, URLs, and code snippets. New features include integration with Microsoft 365 Defender to provide real-time malware analysis. Microsoft is taking cybersecurity to the next level with its expansion of Microsoft Security Copilot. The company has launched the Security Copilot Early Access Program, allowing cybersecurity professionals to detect potential threats, assess risk exposure, and fortify their defences against security breaches. What is Microsoft Security Copilot? Microsoft Security Copilot launched in private preview back in March this year. The new AI-based chat tool is designed to help cybersecurity professionals better understand potential threats and assess risk exposure to prevent security breaches. Security teams can use natural language commands to ask questions about their environments. For instance, the service can summarise a specific vulnerability, URLs, and code snippets for analysis. Under the hood, Security Copilot is designed to ingest the 65 billion signals Microsoft collects every day to help hunt down sophisticated threats. The AI-based tool also integrates with other products, including Microsoft Sentinel and Microsoft Defender. https://www. youtube. com/watch? v=XsibTe4dj3E Microsoft Security Copilot Early Access Program Since March, Microsoft has been testing its new Security Copilot with various enterprise customers. Based on customer feedback, the service will move from limited testing to a broader customer base through a Microsoft Security Copilot Early Access Program. “Security Copilot is already helping... --- ### Boosting Efficiency: Microsoft's New Feature Simplifies Management of Azure Role Permissions - Published: 2023-10-19 - Modified: 2023-10-19 - URL: https://petri.com/microsoft-management-azure-role-permissions/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Key Takeaways: Microsoft's new tool called “AuthorizationResources table” provides organizations with real-time visibility into Azure role permissions. The tool offers clear insights into role assignments and user allocations, helping organizations optimize resource utilization within strict assignment limits. Azure Cloud Services (classic) will retire in 2024, urging organizations to transition to Azure Cloud Services (extended support) within Azure Resource Manager for improved security and efficiency. Microsoft has announced a new security tool that enables IT admins to clean up their Azure role-based access control (RBAC) permissions. The AuthorizationResources table, which is available via Azure Resource Graph (ARG), allows organizations to efficiently manage Azure access control permissions, optimize role assignments, and enhance security. The AuthorizationResources table helps administrators to monitor the number of roles assigned and the users assigned to specific roles. Microsoft allows a maximum of 4,000 role assignments per Azure subscription and up to 5,000 custom roles within a directory. The AuthorizationResources ARG queries also help to determine how many roles are actually being used within an organization. “With this table, you’ll be able to quickly answer questions such as “how many users are using a role definition? ” or “how many role assignments are used? ” or “how many role definitions are used? ”. Then, you can act on the results to clean up unused role definitions, remove redundant role assignments, or optimize your existing role assignments using AAD Groups,” Microsoft explained. Cleaning Up Unused Role Definitions Microsoft to retire Azure Cloud Services (classic) in 2024 Microsoft has also reminded customers about... --- ### Microsoft Teams Admin Center Gets Rule-Based Monitoring Alerts to Enhance Meeting Quality - Published: 2023-10-18 - Modified: 2023-10-18 - URL: https://petri.com/microsoft-teams-admin-center-rule-based-monitoring-alerts/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeways: Microsoft has introduced rule-based monitoring alerts in the Teams admin center, reducing the need for manual troubleshooting by proactively notifying administrators of call quality issues. These alerts automatically detect anomalies in network parameters during ongoing meetings and provide detailed troubleshooting information through the Real-time telemetry dashboard. The feature is available for commercial customers with a Microsoft Teams Premium subscription, with plans to extend it to government customers in the coming months. The Microsoft Teams admin center has introduced a new feature – rule-based monitoring alerts – aimed at simplifying the task of monitoring and addressing potential call quality issues within Teams meetings. The new capability eliminates the requirement for manual intervention, as it proactively notifies administrators when quality problems emerge during ongoing meetings. The Teams Admin Center provides various tools (such as the Call Quality Dashboard, Real-time Telemetry, and Call Analytics) to help IT Pros monitor meeting issues. However, the troubleshooting process previously required constant admin involvement. The new rule-based monitoring alerts make it easier to continuously monitor multiple meetings within an organization. This means that IT admins only need to step in and take action when there are problems with the quality of a specific meeting in Microsoft Teams. The notifications will be delivered to the designated Team and Channel if network parameters exceed specific thresholds. Moreover, IT admins will need to click on the “View details” tab to view more details about the issue on the Real-time telemetry dashboard. “The feature allows admins to proactively oversee... --- ### Microsoft Updates Teams PowerShell Module to Version 5.7.0 - Published: 2023-10-18 - Modified: 2023-10-18 - URL: https://petri.com/microsoft-teams-powershell-module-version-5-7/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams PowerShell module version 5. 7. 0 empowers IT administrators with enhanced control over user management, reporting, and organizational policy enforcement. The latest version adds new ParticipantNameChange and AutoRecording parameters to the "New-CsTeamsMeetingPolicy" and "Set-CsTeamsMeetingPolicy" cmdlets. Microsoft also addresses various bugs to ensure a smoother experience for IT professionals using PowerShell for Teams management. Microsoft has announced the release of version 5. 7. 0 of the Microsoft Teams PowerShell module. This release introduces several new features aimed at providing IT administrators with enhanced control over user management, reporting, and adherence to organizational policies, among other improvements. Microsoft Teams PowerShell module is a set of cmdlets that enables IT admins to manage Microsoft Teams with PowerShell scripts. It helps administrators perform various tasks like user and group management, Teams and channel management, messaging and meeting policies, guest access, as well as compliance and auditing. Microsoft explained that the output of the Get-CsOnlineUser cmdlet now includes a reference to the user's Administrative Unit membership. The Get-CsOnlineUser cmdlet allows users to retrieve information about user accounts. Microsoft Entra ID (Azure AD) Administrative Units are containers that allow organizations to better manage subsets of users. Microsoft Teams PowerShell module version 5. 7. 0 adds two new parameters to the "New-CsTeamsMeetingPolicy" and "Set-CsTeamsMeetingPolicy" cmdlets. The AutoRecording parameter helps to ensure that the meeting recording starts automatically without any manual intervention. Moreover, the ParticipantNameChange parameter lets IT admins control whether participants can change their display names during Teams meetings. What’s new in Microsoft Teams PowerShell Module version 5. 7. 0 You... --- ### Latest Windows Server Updates Trigger Hyper-V VM Boot Problems - Published: 2023-10-18 - Modified: 2023-10-18 - URL: https://petri.com/windows-server-updates-hyper-v-vm/ - Categories: Windows Server - Tags: News, Windows 10, Windows 11 - Article Type: News Key Takeaways: Microsoft has acknowledged a new issue affecting Windows Server 2022 and Windows Server 2019. The bug is caused by the October 2023 Patch Tuesday updates, resulting in virtual machines (VMs) running on Hyper-V hosts failing to start. Microsoft is actively investigating the problem, and affected users are advised to uninstall the problematic October 2023 Patch Tuesday updates. Microsoft has acknowledged a new issue that is currently affecting Windows Server 2022 and Windows Server 2019. Found in the latest Patch Tuesday updates released on October 10, this new bug breaks virtual machines (VMs) running on Hyper-V hosts. Specifically, Microsoft says that users might notice that the virtual machines fail to start or are not found on affected systems. The problem can occur after installing the KB5031361 and KB5031364 updates on Windows Server 2019 and Windows Server 2022 machines. “After installing this update on guest virtual machines (VMs) running Windows Server 2022 on some versions of VMware ESXi, Windows Server 2022 might not start up. Only Windows Server 2022 VMs with Secure Boot enabled are affected by this issue. Affected versions of VMware ESXi are versions vSphere ESXi 7. 0. x and below,” Microsoft explained. Users who attempt to start a virtual machine on a Hyper-V system will see the following error messages in the event viewer: Failed to Power on with 'Incorrect function' error. Failed to open attachment 'vhdx_path'. Error: 'Incorrect function. ' Failed to start virtual machine tools. Error: 'TOOLS' failed to start. Source: X/Twitter Temporary workaround to fix issues with... --- ### Mitigate Security Threats: Monitor HTTP Requests with M365 Graph Activity Logs - Published: 2023-10-17 - Modified: 2023-10-17 - URL: https://petri.com/microsoft-graph-activity-logs-public-preview/ - Categories: Microsoft 365 - Tags: Azure Active Directory, featured-top-left, Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Graph Activity Logs introduces comprehensive monitoring of HTTP requests within the Microsoft 365 ecosystem, offering detailed insights into API interactions and client application behaviors. This new service allows IT admins to detect and mitigate potential security threats, such as suspicious API usage and unauthorized privilege escalations. The Microsoft Graph Activity Logs service comes with limitations, including the inability to view the activities of multitenant applications in other tenants and the lack of filtering capabilities in Azure Monitor for Microsoft Graph activity logs. Microsoft has announced the public preview of Microsoft Graph Activity Logs. This new offering is designed to provide organizations with granular insights into HTTP requests processed within the Microsoft Graph service for a particular tenant. Microsoft Graph Activity Logs offers detailed monitoring of all API requests from various Microsoft 365 apps, SDKs, API clients, and the Microsoft Entra admin center. The service provides valuable insights about the request and client application. “You’re currently able to collect SignIn logs to analyze authentication activity and Audit logs to see changes to important resources. With Microsoft Graph Activity Logs, you can now investigate the complete picture of activity in your tenant – from token request in SignIn logs, to API request activity (reads, writes, and deletes) in Microsoft Graph Activity Logs, to ultimate resource changes in Audit logs,” Microsoft explained. Common use cases of Microsoft Graph Activity Logs The Microsoft Graph Activity Logs service enables IT admins to monitor all the activities that have been performed by a... --- ### Microsoft Intune Endpoint Privilege Management Support Now Available for Windows 365 Cloud PCs - Published: 2023-10-17 - Modified: 2023-10-17 - URL: https://petri.com/microsoft-intune-endpoint-privilege-management-windows-365/ - Categories: Windows 365 - Tags: Microsoft Intune, News, Windows 365 - Article Type: News Key Takeaways: Microsoft Intune Endpoint Privilege Management support is now available for Windows 365, allowing IT administrators to manage application elevations on Windows 365 Cloud PCs. Microsoft Intune Endpoint Privilege Management enables the controlled and time-limited elevation of privileges for specific tasks. Microsoft plans to extend Intune Endpoint Privilege Management support to Azure Virtual Desktop single-session VMs. To strengthen security measures for businesses, Microsoft has introduced Intune Endpoint Privilege Management support for Windows 365 devices. The latest release gives IT administrators the ability to manage application elevations on Windows 365 Cloud PCs with Endpoint Privilege Management. Microsoft Intune Endpoint Privilege Management is a solution that allows organizations to manage the elevation of privileges for standard users on Windows devices. It lets IT Pros create rules to elevate the privileges for certain tasks that require administrative privileges. These include installing applications, updating device drivers, and running Windows diagnostics. The service also helps to review and audit privilege elevations happening across an organization. “Elevated privileges are offered for a discrete task, allowing employees to run as administrator for specific, authorized applications and keeping the scope and time limited. This allows enterprises to run standard users more efficiently and stay secure. It limits the organization's attack surface while improving efficiency for IT teams and removing friction to accomplish work and achieve business goals,” Microsoft explained. To apply EPM policies to Windows 365 Cloud PCs, IT admins will need to include the devices in their EPM policy assignment. However, this capability is only available... --- ### Enhanced Collaboration: Loop Components Coming to Microsoft Teams Channels - Published: 2023-10-16 - Modified: 2023-10-16 - URL: https://petri.com/microsoft-teams-channels-loop-components/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft is adding support for Loop components in Teams channels. This update will allow users to create, share, and edit content like lists, tables, and notes directly within the Teams channel. Loop components will be stored in the SharePoint site of the respective Teams channel and will be accessible across Microsoft 365 apps. The feature is set to roll out in November and will be available across all types of Teams channels, including standard, private, and shared. Microsoft is set to introduce support for collaborative Loop components in Teams channels next month. While the feature is currently limited to Teams chats, the upcoming update will enable users to seamlessly create, share, and edit Loop components right within Teams channels. Microsoft Loop is a collaboration tool that helps users to streamline content creation across most of the Microsoft 365 apps. Loop components are portable pieces of content (such as lists, tables, and notes) that stay organized across all the places that they have been shared. Loop components can be created across Microsoft 365 apps such as Teams, Outlook, and Whiteboard. “Users can create, share, and edit components to collaborate synchronously and asynchronously on ideas without leaving the context of their conversation. You can now copy and paste Loop components between channels, chats, Outlook emails, and other supported Microsoft 365 apps. No matter where people are collaborating the Loop, the component will always show the latest updates,” the company explained in a message on the Microsoft 365 admin center. https://www. youtube. com/watch? v=Ifl5ESBldHg... --- ### Master the Power of File and Directory Management with Get-ChildItem in PowerShell - Published: 2023-10-16 - Modified: 2023-10-16 - URL: https://petri.com/get-childitem/ - Categories: PowerShell - Tags: PowerShell, Windows - Article Type: How To The Get-ChildItem PowerShell cmdlet is a powerful tool for listing files and folders in a variety of ways. In this blog post, we will explore the different features of the Get-ChildItem cmdlet and show you how to use it to get the most out of your PowerShell experience. What is Get-ChildItem? At a high level, the Get-ChildItem PowerShell returns a list of all the items in a specified location. The items can be files, folders, or other objects such as registry keys, or certificates. When I discover and research these commands in PowerShell, I can see the overall vision and purpose for them. Everyone (in the Windows world) knows what 'dir' does. But, as the underlying technology behind the command itself remains stagnant (for the most part) over the years, PowerShell allows developers, engineers, and product managers to build new tools from the ground up. PowerShell can be used to offer the features IT Pros have been clamoring for. Windows Terminal is a wonderful example of what you can do when you start fresh! Basic Get-ChildItem usage and examples Let me go through and start with the most basic examples of what you can do with Get-ChildItem. After this, we will delve a little deeper into filtering your results, and then more advanced techniques to handle your environment's unique needs. How to use the Get-ChildItem for basic file retrieval To begin, we start with our PowerShell prompt. Let's start with the most basic possible - just run Get-ChildItem by... --- ### Enhancing Security: Microsoft to Phase Out Default Outbound Access for Azure VMs - Published: 2023-10-16 - Modified: 2023-10-16 - URL: https://petri.com/microsoft-retire-default-outbound-access-azure-vms/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News, virtual machine - Article Type: News Key Takeaways: Microsoft is deprecating default outbound access for Azure virtual machines (VMs) in September 2025 to boost protection against cyberattacks. New VMs will no longer have unrestricted Internet access by default and organizations need to use explicit outbound connectivity methods like Azure NAT Gateway or Azure Load Balancer outbound rules. Existing VMs with default outbound access won't be affected, but IT admins are encouraged to transition to explicit methods for better control and to avoid disruptions. Microsoft is introducing a significant change to Azure that will impact how virtual machines (VMs) connect to the Internet. Starting in September 2025, default outbound access for new VMs will no longer include unrestricted Internet access. In Microsoft Azure, outbound Internet access is enabled by default for resources within a virtual network (VNet). This default configuration permits virtual machines and other Azure resources to establish connections with external services and websites on the Internet. For example, it enables a web browser to perform TLS/SSL certificate revocation checks or allows a DNS server to make queries to external authoritative DNS servers. Microsoft has decided to disable default outbound access to enhance security and protect organizations from ransomware attacks and other security threats. This measure prevents threat actors from exploiting vulnerable virtual machines to establish connections with malicious destinations, which could lead to unauthorized access to sensitive data and system encryption. Furthermore, Microsoft maintains control over the default outbound access Internet Protocol (IP) (which may change), and any dependency changes could lead to future complications... . --- ### Boosting Ransomware Defenses: Microsoft Introduces Multi-User Authorization for Azure Backup Vaults - Published: 2023-10-13 - Modified: 2023-10-16 - URL: https://petri.com/azure-backup-vaults-multi-user-authorization/ - Categories: Microsoft Azure - Tags: Azure Backup, News - Article Type: News Key Takeaways: MUA works in conjunction with Azure Resource Guard to add an extra layer of authorization. Multi-User Authorization (MUA) enhances security for Azure Backup vaults in a similar way to how MUA currently works with Recovery Services vaults. Resource Guard and vault can be placed in different tenants for maximum protection. Microsoft has released a new security feature, Multi-User Authorization (MUA), for Azure Backup vaults. Azure Backup is a cloud-based service that allows users to perform backup and restore data, from various Azure services and on-premises Windows Server, in the Azure cloud. MUA enhances protection by providing an additional layer of security, a Resource Guard, to which the user must also have sufficient rights on to change a critical Azure Backup setting. MUA for Azure Backup provides authorization in a similar way to how MUA currently works for Azure Recovery Services vaults. Adding this extra layer of protection to backups is designed to further help organizations defend themselves against ransomware. Configure MUA for Azure Backup using Resource Guard Azure Backup leverages Resource Guard to ensure only authorized users perform critical operations. A critical operation is an action that could potentially affect the integrity, availability, and security of the backed-up data. These include disabling soft delete, disabling MUA protection, modifying backup policy, modifying protection, stopping protection with delete data, as well as changing Microsoft Azure Recovery Services (MARS) agent security PIN. When Resource Guard is configured to provide additional protection for an Azure Backup vault, the owner of the Resource... --- ### Microsoft Confirms Chinese State-Backed Atlassian Confluence Attacks - Published: 2023-10-13 - Modified: 2023-10-13 - URL: https://petri.com/microsoft-chinese-atlassian-confluence-attacks/ - Categories: Security - Tags: Atlassian, News - Article Type: News Key Takeaways: The Chinese-backed threat group (Storm-0062) is actively exploiting a zero-day vulnerability (CVE-2023-22515) in Atlassian's Confluence Server and Data Center. Proof-of-concept exploits for this critical vulnerability are publicly available, heightening the risk of mass exploitation by unauthorized users who can gain administrative access to affected Confluence platforms. Atlassian has already released a patch and recommends that organizations upgrade to secure versions or disconnect vulnerable installations from the Internet. Microsoft has revealed that a Chinese-backed threat group, known as Storm-0062, is currently exploiting a critical zero-day vulnerability in Atlassian Confluence Server and Confluence Data Center. The proof-of-concept exploits for this vulnerability are now publicly available, raising the alarming possibility of mass exploitation. Last week, Atlassian acknowledged the remotely exploitable privilege-escalation vulnerability (CVE-2023-22515) that affects on-premises instances of the platforms. The vulnerability could enable a remote hacker to create unauthorized administrator accounts to access Confluence servers. The zero-day security flaw has been actively exploited in the wild since September 14. Now, the Microsoft Threat Intelligence team has shared more information about the China-sponsored advanced persistent threat (APT) behind these attacks. The company identified four IP addresses that have been sending exploit traffic to target the critical privilege escalation vulnerability. “The four IP addresses below were observed sending related CVE-2023-22515 exploit traffic: 192. 69. 9031; 104. 128. 8992; 23. 105. 208154; 199. 193. 127231,” the Microsoft Threat Intelligence team explained. “any device with a network connection to a vulnerable application can exploit CVE-2023-22515 to create a Confluence administrator account within the application. " Atlassian's Confluence: A prime target for cyberattackers Fortunately,... --- ### Microsoft Defender for Endpoint Now Automatically Blocks Human-Operated Attacks - Published: 2023-10-12 - Modified: 2023-10-12 - URL: https://petri.com/microsoft-defender-for-endpoint-human-operated-attacks/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News - Article Type: News Key Takeaways: Microsoft Defender for Endpoint gets new "contain user disruption" capabilities to automatically counter human-operated attacks. The security feature rapidly identifies and isolates compromised user accounts across all devices, preventing unauthorized access and data breaches. The contain user disruption capabilities are currently in public preview for Microsoft Defender for Endpoint customers. Microsoft Defender for Endpoint is getting a security feature designed to thwart human-operated attacks automatically. The introduction of new "contain user disruption" capabilities empowers organizations to swiftly isolate compromised user accounts and put a stop to lateral movement during hands-on keyboard attacks. Microsoft Defender for Endpoint is a security solution that enables customers to detect, investigate, and block advanced security threats. The service uses machine learning to detect suspicious activities and minimize the potential entry points for attackers. Microsoft Defender for Endpoint works seamlessly with other security products and third-party solutions. The automatic attack disruption capability is designed to block hackers as soon as they break into the system. The feature quickly identifies and isolates compromised users across all devices, which should help to prevent further damage. This means that the threat actors won’t be able to steal passwords, access sensitive data, and encrypt systems in enterprise environments. “Automatic attack disruption uses signal across the Microsoft 365 Defender workloads (identities, endpoints, email, and software as a service apps) to disrupt advanced attacks with high confidence. Basically, if the beginning of a human-operated attack is detected on a single device, attack disruption will simultaneously stop the campaign on... --- ### Essential Guide to Mastering Get-ADGroupMember (AD User Management) > Dive into the capabilities of Get-ADGroupMember, explore its common parameters, and provide practical examples to showcase its power and versatility in managing your Active Directory environment. - Published: 2023-10-12 - Modified: 2023-10-12 - URL: https://petri.com/get-adgroupmember-and-get-adgroup/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, featured-top-left, PowerShell, Windows Server - Article Type: How To Get-ADGroupMember is a useful PowerShell cmdlet for retrieving the members of Active Directory (AD) groups. In this article, we'll delve into the capabilities of Get-ADGroupMember, explore its common parameters, and provide practical examples to showcase its power and versatility in managing your Active Directory environment. We'll also touch on a related cmdlet - Get-ADGroup and how it can be used together with Get-ADGroupMember. What does Get-ADGroupMember do? Get-ADGroupMember is part of the Remote Server Administration Tools (RSAT) PowerShell module - a PowerShell cmdlet that belongs to the Active Directory module, which must be installed and imported to use this cmdlet. Its primary purpose is to retrieve the members of an AD group, whether they are users, other groups, or computer objects. This cmdlet offers a versatile approach to gathering information about members of the AD group and group memberships within your AD domain. On a related note, Get-ADGroup is a PowerShell command (cmdlet) used to retrieve Active Directory group objects from your domain. You can extract a single group or multiple groups using filters and scripts. How to use Get-AdGroupMember? - Practical examples Let me go through some examples of what Get-AdGroupMember can do for your IT Pro needs and your organization. Just a refresher - to get PowerShell warmed up, open Windows Terminal and first run this command: import-module ActiveDirectory Then you can start running the commands throughout the remainder of this post. How do I get members of an AD group? In this example, we'll use Get-ADGroupMember to retrieve the... --- ### Microsoft Discontinues NTLM Authentication in Windows 11: What You Need to Know - Published: 2023-10-12 - Modified: 2023-10-12 - URL: https://petri.com/microsoft-disable-ntlm-windows-11/ - Categories: Windows 11 - Tags: featured-top-right, News, Windows, Windows 11 - Article Type: News Key Takeaways: Microsoft has decided to kill off NT LAN Manager (NTLM) user authentication support in favor of Kerberos in Windows 11. Microsoft is actively working on implementing IAKerb and a local Key Distribution Center (KDC) for Kerberos, both designed to tackle protocol limitations. Microsoft is also taking steps to enhance NTLM management controls and modify Windows components to adopt the Negotiate protocol. Microsoft is getting ready to say goodbye to NT LAN Manager (NTLM), a long-standing authentication support system, in favor of the more robust and secure Kerberos protocol. This transition is also bringing two new fallback mechanisms into play, aimed at addressing existing limitations within the protocol. What is NTLM? NT LAN Manager (NTLM) is a suite of Microsoft security protocols designed to provide authentication, integrity, and confidentiality to end-users. NTLM utilizes a challenge-response mechanism for authentication. The server sends a challenge to the client, encrypted with the user's password, and the response is then returned to the server. Essentially, Kerberos is considered a more secure and modern authentication mechanism. However, NTLM remains popular and offers several advantages over Kerberos. For instance, it doesn't require a local network connection to the Domain Controller (DC) and eliminates the need to know the identity of the target server. To leverage these benefits, developers hardcode NTLM into their applications and services. That said, there are various vulnerabilities associated with NTLM that could lead to Pass-the-hash or Relay attacks. Microsoft recommends that customers switch to more secure solutions like Kerberos to ensure... --- ### Microsoft Plans to Deprecate VBScript in Windows to Block Malware - Published: 2023-10-11 - Modified: 2023-10-11 - URL: https://petri.com/microsoft-deprecate-vbscript-windows/ - Categories: Windows 11 - Tags: News, Windows - Article Type: News Key Takeaways: Microsoft has announced plans to deprecate VBScript due to its legacy nature and concerns about security vulnerabilities that have been exploited in the past. Before its complete removal, Microsoft will transition VBScript to be an optional feature in Windows, ensuring users have a grace period to adjust and prepare for its eventual retirement. The deprecation of VBScript aligns with Microsoft's goal to enhance the security of future Windows versions. VBScript, once the go-to tool for Windows enthusiasts and IT professionals, is gradually inching towards its sunset. Microsoft has quietly updated its list of deprecated features to indicate that it's planning to completely remove the scripting language in future versions of Windows. VBScript (also called Visual Basic Scripting Edition) is a scripting language that allows users to automate tasks and add new capabilities to Windows applications. The feature is often used to manage administrative tasks such as configuring system settings, managing files and folders, and interacting with Windows Registry. It’s also possible to create scripts that interact with Windows apps and components, including Active Directory and Windows Management Instrumentation (WMI). In 2019, Microsoft disabled VBScript by default in Internet Explorer 11 (IE11) on Windows 10. The company explained that VBScript is a legacy scripting language with security vulnerabilities, and it has been used in various malicious activities to spread malware. In recent years, many organizations have transitioned to other scripting languages such as PowerShell. To tackle these issues, Microsoft intends to phase out VBScript in upcoming Windows versions. Going... --- ### Microsoft's October 2023 Patch Tuesday Updates Fix 103 Security Flaws - Published: 2023-10-11 - Modified: 2023-10-11 - URL: https://petri.com/microsoft-october-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Patch Tuesday, Windows 10, Windows 11 - Article Type: News Key takeaways: Microsoft has released the October 2023 Patch Tuesday updates to address a total of 103 security vulnerabilities on Windows PCs. The updates come with a range of critical and important patches, addressing various vulnerabilities across Windows, Office, Exchange Server, Azure, Skype for Business, and more. Microsoft has officially ended support for Windows Server 2012 and Windows Server 2012 R2, but enterprise customers can still receive security updates through the Extended Security Update (ESU) program until October 13, 2026. Microsoft announced the release of the October 2023 Patch Tuesday updates for Windows 10 and Windows 11 yesterday. This month, the company has addressed 103 security vulnerabilities, including three actively exploited zero-day flaws affecting Microsoft WordPad, Skype for Business, and the HTTP/2 protocol. October 2023 Patch Tuesday updates fix over 100 vulnerabilities In October, Microsoft released a total of 103 patches to address several vulnerabilities in Windows, Office, Exchange Server, Office, Azure, Skype for Business, and other components. 13 of them are rated critical, and there are also 90 security flaws rated “Important” in severity. Here’s a list of the most important vulnerabilities that were fixed this month: CVE-2023-41763: This elevation of privileges vulnerability affects Skype for Business. It could allow threat actors to make malicious calls to a vulnerable Skype for Business server and steal sensitive information. However, the hackers won’t be able to modify the data and restrict access to the affected resource. CVE-2023-36563: This is an information disclosure vulnerability in the WordPad word processing program that affects... --- ### Microsoft Introduces New Search & Intelligence Admin Portal Experience - Published: 2023-10-10 - Modified: 2023-10-10 - URL: https://petri.com/microsoft-search-intelligence-admin-portal-experience/ - Categories: Microsoft 365 - Tags: Microsoft Search, News - Article Type: News Key Takeaways: Microsoft has introduced a new home page experience for its Search and Intelligence admin portal. The new admin experience provides easier access to all search features, such as user feedback and Graph connectors. The new home page offers different tiles to simplify various tasks like creating new connections, viewing feedback, accessing learning resources, and tracking search performance analytics. Microsoft has started rolling out a new home page for its Search and intelligence admin portal. The new homepage provides a centralized hub to help enterprise customers access all search capabilities, including user feedback and Graph connectors. Microsoft Search is a unified search experience that allows enterprise customers to search across Microsoft 365 apps and services. It leverages the power of AI to provide relevant and personalized search results. Microsoft Search lets users find documents, people, and data from within Office apps such as Word, Excel, and PowerPoint. The new Search & Intelligence admin portal experience provides different titles that make it easier for IT admins to view and access important information. These include the connectors tile, user feedback tile, learning title, analytics title, and answers title. “The new homepage is designed to be intuitive and user-friendly, allowing you to quickly access and view the necessary information to make your organization successful with the power of Microsoft Search. You can easily navigate and interact with the different tiles and, in the future, customize your homepage by pinning your favorite tiles,” Microsoft explained. The connectors title allows administrators to create new... --- ### Microsoft 365 Admins Warned About Google's New Strict Anti-Spam Rules - Published: 2023-10-10 - Modified: 2023-10-10 - URL: https://petri.com/microsoft-365-admins-google-anti-spam-rules/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Google has announced a new set of requirements for bulk senders to prevent unwanted emails and protect Gmail users. Microsoft has warned that Microsoft 365 admins should authenticate outbound messages to improve deliverability. Microsoft recommends email authentication, discourages using Microsoft 365 for bulk emails, and provides guidance on outbound spam protection. Last week, Google made headlines with its announcement of new requirements for bulk email senders, signalling a renewed commitment to safeguarding Gmail users from the deluge of unwanted emails. In a similar vein, Microsoft has now chimed in, urging administrators to authenticate outbound messages to ensure continuous email delivery. Google explained that the new policies are aimed at organizations that send large volumes of emails. The company will enforce a clear spam rate threshold to prevent bulk email senders from bombarding users with unwanted emails. Bulk senders are customers who send over 5,000 messages to Gmail accounts each day. Additionally, Google will require organizations to implement SPF/DKIM and DMARC email authentication for domains. Bulk senders will also need to provide a one-click option to let Gmail recipients unsubscribe from commercial emails. However, these requests should be processed within two days. Google plans to impose the new requirements on bulk senders in February 2024. Microsoft mentioned in its security advisory that emails from senders who fail to adhere to the new policies will be sent directly to the spam box. This move is designed to protect customers against phishing attacks. “By setting up email authentication for your domain,... --- ### Azure Arc-Enabled System Center Virtual Machine Manager Gets New Management Features - Published: 2023-10-09 - Modified: 2023-10-09 - URL: https://petri.com/azure-arc-enabled-scvmm-management-features/ - Categories: Microsoft Azure - Tags: Azure Arc, News, virtual machine - Article Type: News Key Takeaways: Microsoft has released new Azure management features for Azure Arc-enabled System Center Virtual Machine Manager (SCVMM). The integration of Microsoft Defender for Cloud safeguards SCVMM VMs to ensure robust protection against potential threats. The Azure Monitor tool provides comprehensive performance monitoring and analysis for IT administrators. Microsoft has released new Azure management capabilities tailored for Azure Arc-enabled System Center Virtual Machine Manager (SCVMM). This latest update enables customers to oversee their virtualized workloads operating on-premises or cloud environments. Azure Arc-enabled System Center Virtual Machine Manager (SCVMM) is a solution that allows organizations to manage virtualized workloads running on on-premises or cloud environments. The service also allows IT admins to connect their VMM environment and perform VM lifecycle operations (like start, stop, pause, and delete VM) through the Azure portal. Additionally, Azure Arc-enabled SCVMM provides the ability to use Azure role-based access controls for administrator permissions. It also helps to discover and onboard existing SCVMM managed VMs to Azure. Microsoft highlighted that the latest release allows customers to use Defender for Cloud to protect their SCVMM VMs. Moreover, IT admins can view and monitor performance through the Azure Monitor portal. It’s also possible to use Azure Update Manager to streamline the patching process for virtual machines. “All the Azure management capabilities that are available for Arc-enabled servers are now available for Arc-enabled SCVMM. With the ability to install Azure Arc agents at-scale directly from Azure, our customers can accelerate and scale the adoption of Azure services for their entire... --- ### Windows Server vNext Update: Key Enhancements in Active Directory Upgrade - Published: 2023-10-09 - Modified: 2023-10-10 - URL: https://petri.com/windows-server-ad-forest-domain-functional-level/ - Categories: Windows Server - Tags: Active Directory, featured-top-right, News, Windows Server - Article Type: News Key Takeaways: The Windows Server Insider Build 25951 brings several new features, including support for a new AD Forest and Domain Functional Level. This release also adds NUMA support that lets Active Directory Domain Services utilize CPUs across all processor groups. Microsoft has introduced robust security measures, including LDAP support for TLS 1. 3 and Kerberos support for AES SHA256/384. Microsoft has recently announced the release of the Windows Server Insider Preview build 25951. The new build introduces several enhancements for Active Directory Domain Services (AD DS) and Active Directory Lightweight Domain Services (AD LDS), including support for a new forest and domain functional level. What are Windows Server Active Directory functional levels? Functional levels are controls that allow IT admins to specify which advanced features can be used in Windows Server Active Directory environments. It helps to manage the domain and forest features of the Active Directory Domain Services (AD DS) within their organizations. Furthermore, IT admins must ensure that all domain controllers in a forest or domain are running on a version of the operating system that supports the specific functional level. Once a functional level is raised, it’s impossible to roll it back to a lower level without restoring the backup or rebuilding the domain. New forest and domain functional level Microsoft has started testing support for a new domain and forest functional level in Windows Server Active Directory. Since its release in Windows 2000, AD DS and AD LDS have always used an 8k database page size... . --- ### Microsoft Cloud for Sovereignty Launches in Public Preview - Published: 2023-10-06 - Modified: 2023-10-06 - URL: https://petri.com/microsoft-cloud-for-sovereignty-public-preview/ - Categories: Azure, Cloud Computing - Tags: Microsoft Azure, News - Article Type: News Key Takeaways: Microsoft has announced the public preview of the Microsoft Cloud for Sovereignty, enabling government customers to meet data compliance and security requirements. The new solution offers sovereign controls, allowing sensitive data to be protected through encryption at rest, in transit, and in use. The Microsoft Cloud for Sovereignty includes Sovereign Landing Zone, Transparency Logs, and automated workload templates. Microsoft has announced the public preview of its Microsoft Cloud for Sovereignty solution tailored specifically for the public sector. The new offering marks a significant step towards empowering government entities to navigate the complex landscape of data compliance and security requirements with confidence. Microsoft first unveiled Cloud for Sovereignty at its annual Inspire partner conference in July 2022. It allows customers to run their workloads in over 60 data center regions, access all Microsoft cloud services, and enable residency options to meet their regulatory requirements. There are also sovereign controls to protect and encrypt sensitive data at rest, in transit, and in use. “Our principled approach to digital sovereignty in the cloud builds on our principled approach to data privacy in the cloud. We understand that sovereignty can mean different things for different scenarios, and as we work with customers and partners around the world the common thread is a need to determine for themselves where their data resides and how it’s protected, including who has access to that data,” said Corey Sanders, CVP for Microsoft Cloud for Industry. Microsoft has introduced a couple of new capabilities for government customers... . --- ### Hackers Abuse SQL Server Flaw to Breach Azure Cloud VMs - Published: 2023-10-06 - Modified: 2023-10-06 - URL: https://petri.com/microsoft-sql-server-flaw-azure-cloud-vms/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Key Takeaways: Microsoft disclosed that hackers have attempted to use a compromised SQL Server instance to breach the Azure cloud platform. This security incident underscores the growing challenges in cloud security and highlights the need for robust measures to safeguard sensitive data. Microsoft recommends proactive security measures, including the use of advanced tools like Defender for Cloud and Defender for Endpoint, along with strategic practices to fortify Azure against similar attacks. Microsoft's security experts have recently discovered a highly sophisticated attempt to target cloud environments. Hackers managed to exploit a compromised SQL Server instance to breach Microsoft's Azure cloud platform, indicating a concerning evolution in their tactics. According to the Microsoft Threat Intelligence team, threat actors have previously used this method to target several cloud services, including Kubernetes clusters and virtual machines (VMs). However, this is the first time the method has been used with SQL Server. Specifically, the hackers first abused an SQL injection vulnerability in an application on the victim’s machine. It allowed the hackers to access the SQL Server instance deployed in an Azure VM and extract sensitive data. These include details about databases, table names, schemas, database versions, permissions, and network configurations. Additionally, the threat actors tried to gain access to additional cloud resources in the corporate network. However, Microsoft’s researchers observed that the attackers failed to perform lateral movement due to some errors. The final step involves deleting temporary tables and downloaded tools to remove any traces of the cyberattack. How to protect Azure cloud... --- ### New Microsoft Teams Client Launches on Windows and macOS - Published: 2023-10-05 - Modified: 2023-10-05 - URL: https://petri.com/new-microsoft-teams-windows-macos/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: The new Microsoft Teams desktop app is now generally available for Windows and Mac users. The new version of Teams consumes 50% less memory and 70% less disk space, offering a significantly faster experience. The new Microsoft Teams client boasts feature parity with the classic Teams app, integrating AI-powered experiences like intelligent meeting recaps and Copilot. The new Microsoft Teams desktop app that launched in preview earlier this year is now generally available for Windows and macOS. The company has also started rolling out the new version of Teams to Virtual Desktop Infrastructure (VDI) and government cloud customers. Since its launch in 2017, Microsoft has been listening to user feedback about Teams being a resource hog and problematic. The new Microsoft Teams client has been built on the React framework and Edge WebView 2 to improve speed and performance over the classic Teams app. Microsoft touts that the new Teams should consume 50 percent less memory and 70 percent less disk space. “We have made notable progress since the launch of new Teams in public preview. New Teams now has full feature parity for almost all features, including custom line-of-business apps, third-party apps, breakout rooms, 7x7 video, call queues, PSTN calling, contextual search in chats and channels, cross-post a channel conversation, and more,” said Jeff Teper, President – Collaborative Apps and Platforms at Microsoft. In addition to the performance improvements, the new Microsoft Teams client brings AI-powered experiences such as intelligent meeting recaps. The app also supports Multi-tenant... --- ### Microsoft Entra Privileged Identity Management Gets New Capabilities - Published: 2023-10-05 - Modified: 2023-10-05 - URL: https://petri.com/microsoft-entra-privileged-identity-management-updates/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra, News - Article Type: News Key Takeaways: Microsoft has released two new capabilities for Entra Privileged Identity Management. The PIM for Groups feature lets IT admins enable just-in-time access for all resources that support security group or Microsoft 365 group assignments. PIM Integration with Conditional Access allows administrators to enforce granular policies, ensuring strong authentication methods and device compliance. Microsoft continues to raise the bar in cybersecurity by introducing two new features in its Entra Privileged Identity Management (PIM) solution. The latest update brings support for PIM for Groups and PIM integration with Conditional Access. Microsoft Entra Privileged Identity Management is a service that allows IT admins to manage, control, and track access to sensitive corporate resources. It’s part of the Microsoft Entra ID Governance solution that helps customers to ensure compliance with security policies. The service provides just-in-time access to Microsoft Entra and Azure resources to mitigate the risk of unauthorized access and data leaks. PIM for Groups The new PIM for Groups capability enables IT admins to specify just-in-time group membership and ownership. The feature allows members to use group membership to access various resources in Microsoft Entra ID, Microsoft 365, Microsoft Intune, and other services. “With the new just-in-time group membership capability, you can now further simplify least privilege access by enabling just-in-time access for all resources that support security group or Microsoft 365 group assignments. This includes support for a wide range of roles such as Microsoft Entra roles, Azure resource roles, Microsoft Intune and non-Microsoft application roles and services,” Microsoft... --- ### Microsoft Loop Now Lets Office Insiders Add Planner Boards - Published: 2023-10-04 - Modified: 2023-10-04 - URL: https://petri.com/microsoft-loop-planner-boards/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft Loop users can now integrate Planner boards directly into Loop pages. The feature allows users to view and update a plan with the Planner's board view directly within the Loop app. The new Planner component is available for Office Insiders in Loop for the web, with support for Loop-enabled apps to follow later. Microsoft has started testing a new Planner component within its Loop web app. This integration simplifies teamwork by allowing Loop users to add links to Planner boards to Loop pages and update them directly from the app. Microsoft Loop is a popular collaboration platform that launched in preview back in March this year. It allows users to collaborate on projects in real time with Loop components. These components can be shared across Teams, Outlook, Word, and other Microsoft 365 apps. “If you’re actively using tasks. office. com (Planner), you can bring all your existing Planner board views into your Loop workspaces. You can copy and paste Planner links into your emails, whiteboards, Teams channels and chats, and start collaborating from there. We’ll introduce new features like recurring tasks and new views to enhance your experience over time,” the Office Insider team explained. Microsoft explained that users can paste the different Planner links to view multiple Planner boards on the same Loop page. Users can also add new tasks and buckets to their Planner board directly from Microsoft Loop. Additionally, the new Planner integration lets users add/remove members, assign tasks to other people, edit task details, and... --- ### Master SQL Server: SQL Server Management Studio Tutorial - Published: 2023-10-04 - Modified: 2024-12-03 - URL: https://petri.com/sql-server-management-studio-tutorial/ - Categories: SQL Server - Tags: featured-top-right, SQL Server - Article Type: How To In this SQL Server Management Studio tutorial (SSMS), I will show you the primary database management and development capabilities provided by the tool. Microsoft SQL Server Management Studio (SSMS) is the primary management and development tool for SQL Server and has been since its release back with SQL Server 2000. SSMS provides a graphical interface for database management and it only runs on Windows. Microsoft provides Azure Data Studio (ADS) for Linux and Mac clients. However, ADS is primarily a development tool and it does not contain the range of management capabilities that are provided by SSMS. The current release of SSMS is version 19. 1, which can connect to SQL Server 2022 and has backward compatibility with SQL Server 2014 and higher. It also supports working with the latest cloud databases like Azure SQL Database, Azure Synapse Analytics, and Microsoft Fabric. SSMS is not a part of SQL Server you need to download SQL Server Management Studio. SSMS is a separate but free download for SQL Server. After downloading SSMS you need to run its setup program. The installation process is straightforward but it takes several minutes. You can learn more about installing SSMS at SQL Server Essentials: Installing SQL Server Management Studio and Azure Data Studio. SQL Server Management Studio tutorial - SSMS basics SSMS allows you to view and manage SQL Server database components like databases, security, linked servers, replication and scheduled jobs. If you look at the SSMs navigation pane in the left side of the... --- ### Microsoft OneDrive Gets Big Update with New Copilot Integration, File Management Capabilities - Published: 2023-10-04 - Modified: 2023-10-04 - URL: https://petri.com/microsoft-onedrive-copilot-integration/ - Categories: Microsoft 365 - Tags: News - Article Type: News Key Takeaways: Microsoft has announced a significant update to its OneDrive cloud storage service, featuring a Fluent Design refresh and enhanced file management capabilities. Microsoft OneDrive now integrates with Copilot, an AI-powered assistant, enhancing user productivity by simplifying file management tasks and providing intelligent recommendations. Microsoft has added several new features for IT admins to streamline user management and improve data governance. Microsoft unveiled yesterday OneDrive 3. 0, a significant overhaul of its cloud storage service. This latest update includes a sleek Fluent Design makeover, integration with AI-powered Copilot, and enhanced file management features tailored for both businesses and consumers. “The next generation of OneDrive includes new file views, governance controls, creation tools, and Copilot to help you quickly search, organize, and extract information from your files. And, these new experiences aren’t just ‘in’ OneDrive, they are coming to Teams and Outlook for a consistent and rich file experience across Microsoft 365,” said Jason Moore, VP of Product for OneDrive. New OneDrive Home experience First off, Microsoft has introduced a new OneDrive Home experience that should make it easier for users to find and access files. Users will see AI-powered file recommendations in the “For You” section that appears at the top of the home page. There are also new filters that let users quickly find PDF, PowerPoint, Excel, and Word files. Microsoft is adding a new Add New button with built-in templates to help OneDrive users create professional-looking documents and presentations. This update also brings new personalization features that let... --- ### Microsoft Unveils New OneDrive Sync Features for Business Customers - Published: 2023-10-03 - Modified: 2023-10-03 - URL: https://petri.com/microsoft-onedrive-sync-features/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, OneDrive for Business - Article Type: News Key takeaways: Microsoft's latest OneDrive Sync update introduces a safeguard mechanism to prevent accidental deletions and data loss. The revamped File Explorer categorizes files into Recommended, Recent, and Favorites sections, enhancing user accessibility. IT administrators gain advanced control with the ability to configure syncing rules for specific file types and implement privacy policies. Microsoft has recently announced some important updates coming to the OneDrive Sync client. The new capabilities are designed to boost protection against accidental deletions, improve File Explorer, and make Sync Settings navigation easier for enterprise customers. For starters, Microsoft has released a new feature that should help to prevent accidental deletion of files in OneDrive and SharePoint. The company has added a new dialog box that appears when a user attempts to delete a shared file. It will trigger an alert that the shared file will be deleted for all users. Microsoft has also rolled out some updates to improve the “Add to OneDrive” feature for Microsoft 365 customers. Moreover, users who delete a shortcut to shared content can still access the original file or folder. “Moving forward, when you delete a file or folder shortcut to shared content, OneDrive will only remove the shortcut from your OneDrive, keeping the shared files intact for everyone else to use. And, in the case that you want to remove the shortcut and the shared file, you can do that in the File Context Menu,” the OneDrive team explained. File Explorer enhancements Microsoft has also released improvements that make accessing... --- ### Microsoft to Shut Down Business Connectivity Services in Microsoft 365 in 2024 - Published: 2023-10-03 - Modified: 2023-10-03 - URL: https://petri.com/business-connectivity-services-microsoft-365/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft plans to retire Business Connectivity Services (BCS) for Microsoft 365 customers in September 2024. IT admins will be able to block BCS features in their tenants starting from October 30, 2023. The end of BCS support applies only to Microsoft 365 customers, with SharePoint Server 2016 and SharePoint Server 2019 remaining unaffected until July 14, 2026. Microsoft recommends organizations to transition to Power Apps as an alternative, offering a modern, cloud-first external data connectivity experience. Microsoft has announced its plans to bid farewell to Business Connectivity Services (BCS) for Microsoft 365 customers in September 2024. After that date, IT admins will no longer be able to enable BCS through Settings or PowerShell commands. Business Connectivity Services is a feature that lets customers connect SharePoint solutions to external data sources like web services, databases, and custom applications. The service enables users to read data from external sources and integrate it into SharePoint lists, libraries, and workflows. Business Connectivity Services retirement schedule Microsoft plans to use a phased approach to retire Business Connectivity Services for Microsoft 365 customers. The company will let IT admins set a property to block BCS capabilities in their tenants on October 30, 2023. Moreover, the blocking will start the features for all new Microsoft 365 customers and organizations who haven’t used them in the past few months on January 8, 2024. Microsoft will completely retire all Business Connectivity Services features in SharePoint on September 30, 2024. These include external lists, external columns, external content... --- ### Microsoft Deprecates Remote PowerShell Support in Exchange Online - Published: 2023-10-03 - Modified: 2023-10-03 - URL: https://petri.com/exchange-online-remote-powershell/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Key Takeaways: Microsoft has permanently discontinued Remote PowerShell Protocol (RPS) for Exchange Online, requiring users' migration to the Exchange Online PowerShell version 3 module. The retirement of RPS aligns with Microsoft's commitment to fortify Exchange Online's security against cyber threats. The new PowerShell v3 module enhances performance and reliability and introduces multifactor authentication (MFA), providing an added layer of security against unauthorized access. In a decisive move toward bolstering cybersecurity, Microsoft is permanently turning off Remote PowerShell Protocol (RPS) for Exchange Online this month. The company urges customers to move to the REST-based Exchange Online PowerShell version 3 module instead. Remote PowerShell Protocol (RPS) is a feature that allows IT admins to run PowerShell commands or scripts on a remote computer. It helps to perform various administrative tasks on remote machines, such as managing mailboxes, distribution groups, contacts, and public folders. Remote PowerShell supports Basic Authentication that lacks support for multifactor authentication, and it’s subject to password spray attacks. Last year, Microsoft announced its plans to deprecate Remote PowerShell for Exchange Online. In the first step, the company started blocking RPS connections for new tenants created after April 1, 2023. Microsoft began blocking it for Exchange Online customers in June, with an option to re-enable it until September 2023. Microsoft asks Exchange Online customers to switch to the PowerShell version 3 module Starting October 1, Microsoft is pulling the plug on RPS for Exchange Online, and organizations can no longer opt-out or continue to use the module. The company plans... --- ### Azure VMware Solution – Maximizing Security and Control with Customer-Managed Keys - Published: 2023-10-03 - Modified: 2023-10-10 - URL: https://petri.com/azure-vmware-solution-customer-managed-keys/ - Categories: Microsoft Azure, Virtualization, VMware - Tags: featured-top-right, Security, Virtualization, vmware - Article Type: Overview In this article, I look at Azure VMware Solution, a Microsoft virtual machine (VM) service, verified by VMware, that runs on Microsoft Azure infrastructure. And specifically, how you can add a second layer of encryption to your datastore and ensure Microsoft cannot read or write any data within your private cloud. Data security is a top priority for many organizations, especially when it comes to sensitive and regulated data. Encryption is one of the most effective ways to protect data from unauthorized access, but not all encryption solutions are created equal. Azure VMware Solution – what is customer-managed keys? Some encryption solutions rely on service providers to manage the encryption keys, which may not meet the compliance and governance requirements of some industries and customers. That’s why Azure VMware Solution, a first-party Azure service that provides private clouds containing VMware vSphere clusters built from dedicated bare-metal Azure infrastructure, now supports encryption with customer-managed keys. Rahi Patel, a Senior Technical Program Manager in the Azure VMware Solution product group at Microsoft, has made a significant contribution to the field of cloud computing with his innovative development of the Customer-Managed Keys feature. This feature is a critical point in the field of data security and compliance, providing customers with an unparalleled degree of control and security. Azure VMware Solution topology (Image Credit: Microsoft) Customer-managed keys give customers maximum control over their encrypted vSAN data on Azure VMware Solution. Customers can use Azure Key Vault to generate customer-managed keys and centralize the... --- ### Microsoft Entra ID Protection Updates Password Change Remediations - Published: 2023-10-02 - Modified: 2023-10-02 - URL: https://petri.com/microsoft-entra-id-protection-password-change/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Key Takeaways: Microsoft's Entra ID Protection update introduces automated user risk remediation in hybrid environments, streamlining security by automatically addressing risks when passwords are changed on-premises. IT administrators can confidently deploy user risk policies, ensuring secure operations for hybrid employees. Entra ID Protection seamlessly integrates machine learning to detect and counter identity-based risks. Microsoft has released a new update for its Entra ID Protection service. The security feature is designed to let IT admins automatically remediate user risk when on-premises password changes happen in hybrid environments. Microsoft Entra ID Protection (formerly called Azure AD Identity Protection) is a security tool that allows customers to detect, investigate, and mitigate identity-based risks. The service uses machine learning to detect malicious activities such as anonymous IP address usage, leaked credentials, and password spray attacks. It’s also possible to integrate Entra ID Protection with other security solutions. “While we recommend mastering password changes in Entra ID to take advantage of Password Protection, hybrid customers who do password changes on-premises found it challenging to enable user risk policies. Users would get blocked when becoming risky and could not self-remediate by resetting passwords on-premises because the password change wasn't visible to Entra ID, and so couldn't dismiss the risk,” said Alex Weinert, VP and Director of Identity Security at Microsoft. Microsoft highlighted that the new feature allows hybrid users to mitigate risks when a password is changed in on-premises environments. Moreover, IT Pros can confidently deploy user risk policies that require password changes to protect hybrid... --- ### What is New with Power Platform - September 2023 - Published: 2023-10-02 - Modified: 2023-10-02 - URL: https://petri.com/what-is-new-with-power-platform-september-2023/ - Categories: Power Platform - Tags: featured-top-right, News, power apps, Power Automate, Power BI, Power Platform - Article Type: News Happy back-to-school season Makers! This month we’re looking at some features across Canvas Apps, Power BI, and Power Automate.    One click and your Canvas App is offline ready  Built-in offline mode for canvas apps is moving from Experimental Preview to Public Preview in September 2023! Makers will be able to quickly take their canvas app offline by simply enabling the feature in the General Settings in the Power Apps Maker Studio. Once the setting is enabled, makers can set up what are known as offline profiles. Offline profiles are a set of filters and restrictions applied to the data loaded into the app. Makers can create complex profiles, if necessary, but the Power Apps team was kind enough to give us an auto-generated mode, so makers won’t need to worry about offline profiles unless they have a complex app. Once the offline profiles are set up, the app works in an offline-first approach, regardless of whether the user is offline or online. The app reads and writes data locally, but the app changes and server changes are synchronized when the network is available.    There are a few limitations to be aware of regarding this feature.    It only works with Dataverse.    Dataverse Files and Images are not currently supported but the team is working on this feature.    Microsoft is looking for feedback so if this is a feature you’re interested in, make your opinion heard by filling out this Microsoft form.    Power Automate plugin for ChatGPT  This week the Power... --- ### Microsoft Teams Now Supports 1,000 Standard/Shared Channels - Published: 2023-10-02 - Modified: 2023-10-02 - URL: https://petri.com/microsoft-teams-1000-channels/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key takeaways: Microsoft Teams introduced several notable enhancements in September 2023. Users can create up to 1,000 standard or shared channels per team. Microsoft Teams now enables users to join meetings hosted in different Microsoft clouds without navigating complex tenant switches. New management features allow configuration of hotline phones, virtual front desks, and streamlined call log management on iOS devices. Microsoft has detailed a roundup of new capabilities added to its Teams collaboration service in September. These updates are designed to enhance various aspects of the platform, including webinars, chat and collaboration, IT administration and security, as well as the Teams Rooms and Devices experience. First off, Microsoft has released several updates to improve the chat and collaboration experience in Microsoft Teams. It’s possible to create up to 1,000 standard or shared channels in new and existing teams. Microsoft is also expanding the guest access feature, allowing users to participate in meetings, chats, channels, and teams between tenants across Microsoft clouds. IT admins can use Entra B2B and Cross Tenant Access Settings to configure trust policies between tenants. Similarly, Microsoft Teams allows users to join a meeting hosted in another Microsoft cloud without switching between different tenants. However, meeting participants won’t be able to access other data stored on the host tenant. The latest update also allows users to blur backgrounds and record screens in video clips or send audio-only clips. Microsoft has released a new on-demand recording experience for Teams webinars. The feature allows organizers to publish the associated... --- ### Exchange Online to Introduce SMTP DANE with DNSSEC Support for Inbound Emails - Published: 2023-09-29 - Modified: 2023-09-29 - URL: https://petri.com/exchange-online-smtp-dane-with-dnssec-inbound-emails/ - Categories: Security - Tags: Exchange Online, News - Article Type: News Key Takeaways: Microsoft is getting ready to introduce Inbound SMTP DANE with DNSSEC support for Exchange Online in 2024. The implementation of the security protocols should ensure encrypted and authenticated email communications as well as boost protection against adversary-in-the-middle attacks. Microsoft recommends IT admins to prepare for the change, and the company will also provide tools to assist in the migration process. Microsoft announced this week plans to release the public preview of Inbound SMTP DANE with DNSSEC support for Exchange Online in 2024. The new tamper protection capabilities aim to bolster defenses against adversary-in-the-middle attacks in email communications. Specifically, Microsoft will enable two internet protocols for Exchange Online, including the DNS-based Authentication of Named Entities (DANE) for SMTP and the Domain Name System Security Extensions (DNSSEC). DANE for SMTP is designed to verify certificates used to protect email communication with TLS (Transport Layer Security). Meanwhile, DNSSEC helps to ensure cryptographic verification of DNS records to block DNS spoofing and adversary-in-the-middle attacks. Microsoft introduced outbound support for both security protocols in March 2022. Now, the second phase will enable this capability for outbound emails using Exchange Online in March 2024. As a part of this change, Microsoft will begin switching all “A record” domains used with Exchange Online to the new mx. microsoft subdomains. “To support inbound SMTP DANE with DNSSEC, we built new DNS infrastructure for Exchange Online that will be secured by DNSSEC. This new architecture will impact legacy Exchange Online DNS infrastructure, specifically the domain mail. protection. outlook. com which is... --- ### First Ring Daily: Bing Gets Bargained - Published: 2023-09-29 - Modified: 2023-09-29 - URL: https://petri.com/first-ring-daily-bing-gets-bargained/ - Categories: Microsoft - Tags: First Ring Daily, Google, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's attempt to sell Bing to Apple, and Google's recent hardware announcements ahead of the company's event next week. --- ### Microsoft Teams Gets New Town Halls Experience, Retires Teams Live Events - Published: 2023-09-29 - Modified: 2023-09-29 - URL: https://petri.com/microsoft-teams-town-halls/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key Takeaways: Microsoft Teams is getting a new Town Halls feature that will let users host internal and external events. The new virtual events experience offers support for up to 10,000 participants, co-organizers, eCDN support, green rooms, and attendee reporting. Microsoft Teams Premium customers benefit from several advanced capabilities, including support for 50 concurrent events, up to 20,000 attendees, and AI-generated live transcription. Microsoft Teams Town Halls, launching on October 5, will replace the existing Teams Live Events functionality. Microsoft Teams continues to improve the meeting experience, and starting next month the collaboration platform is getting a new Town Halls feature with support for up to 10,000 attendees. The new virtual event experience will replace the Teams Live Events functionality, which is set to retire on September 30, 2024. With Town Halls, commercial customers will be able to host and deliver different types of internal and external events. These include fireside chats, internal broadcasts, global team meetings, all hands, company-wide town halls, and more. Organizers will have access to advanced production features and a streamlined process for engaging attendees. “Town halls in Microsoft Teams enable customers to extend their reach to scale their message and connect with audiences around the world; create professionally produced, studio-quality events that deliver a more dynamic experience; and structure and manage audience engagement to maximize participation and maintain focus on the event,” Microsoft explained. What's new in Microsoft Teams Town Halls According to Microsoft, the Town Halls feature will provide several basic capabilities for Microsoft... --- ### New ZeroFont Phishing Technique Lets Hackers Show Fake AV Scans in Outlook Emails - Published: 2023-09-28 - Modified: 2023-09-28 - URL: https://petri.com/zerofont-phishing-fake-av-scans-outlook/ - Categories: Security - Tags: News, Phishing, Security - Article Type: News Key Takeaways: Hackers are using the zero-point font obfuscation technique to target Microsoft Outlook users. These phishing emails are designed to deceive recipients by appearing trustworthy rather than evading automated detection. This emerging phishing tactic underscores the need for organizations to educate employees about recognizing and countering such scams, bolstering their cybersecurity defenses. Security researchers have discovered that hackers are now employing a new zero-point font obfuscation technique to target Microsoft Outlook users. Unlike traditional phishing emails that try to evade automated detection, this novel approach aims to deceive recipients by making emails appear more trustworthy. In a recent report published by the SANS Internet Storm Center, cybersecurity analyst Jan Kopriva found a new phishing email that used text written in a font with zero-pixel size. ZeroFont Phishing is an obfuscation technique that lets hackers insert hidden words written in zero font size throughout the email body. Typically, the ZeroFont technique is used to make it harder for automated phishing detection tools to flag suspicious email messages. However, the phishing campaign identified by the security researcher was designed for a completely different purpose. “Nevertheless, the “invisible” text in the e-mail which was delivered to our handler e-mail address last Friday did not serve the usual purpose – it wasn’t intended to hinder automated scanners from identifying the message as potentially fraudulent/malicious, but instead to make the message appear more trustworthy to the recipient,” Kopriva explained. Hidden fake antivirus scans in Outlook raise security concerns In Microsoft Outlook, the email listing... --- ### Microsoft Mesh for Teams Launching in Public Preview Next Month - Published: 2023-09-28 - Modified: 2023-09-28 - URL: https://petri.com/microsoft-mesh-for-teams-public-preview/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key takeaways: Microsoft Mesh integration is arriving in public preview for Teams meetings in October. Users can expect innovative features like customizable avatars, 3D meeting environments, spatial audio, interactive games, and live reactions to enhance virtual interactions. Microsoft Mesh in Teams will be accessible across various enterprise subscriptions, including Microsoft 365 Business Basic, Microsoft 365 Business Standard, Microsoft 365 Business Premium, Microsoft 365 E3/E5, Office 365 E1/E3/E5, as well as Microsoft Teams Essentials. Microsoft Mesh integration in Teams is set to launch in public preview in October. The upcoming release should bring a wave of fresh meeting experiences to Microsoft Teams users, including avatars, 3D meeting environments, spatial audio and audio zones, interactive games, and live reactions. Microsoft Mesh is a new mixed-reality platform that was announced back in 2021. It’s a collaboration service that lets people in different physical locations share holographic experiences together. Microsoft Mesh has been available in public in private preview since May 2023, and the company has been encouraging developers to build custom immersive virtual experiences that bring together hybrid and remote workers. It can be accessed through a PC or virtual reality (VR) headset. “Microsoft Mesh is not merely another innovation, but a solution that enables your distributed workforce to connect like never before in a 3D immersive space, helping virtual meetings and events feel more like face-to-face connections,” said Nicole Herskowitz, Vice President for Microsoft Teams. Key capabilities included in Microsoft Mesh for Teams Microsoft highlighted that the new Mesh integration brings several... --- ### Windows Terminal Preview 1.19 Adds Broadcast Input, Web Search, Other New Features - Published: 2023-09-27 - Modified: 2023-09-27 - URL: https://petri.com/windows-terminal-preview-1-19-broadcast-input/ - Categories: Developer - Tags: News - Article Type: News Key takeaways: Windows Terminal 1. 19 Preview introduces several new features for developers, including "Broadcast Input" for real-time content sharing and a "Web Search" feature for quick internet searches. The new "Suggestions UI" offers intuitive auto-complete suggestions, which can be further enhanced with command history and sendInput actions. The latest update also brings significant performance and usability improvements for Windows Terminal users. Microsoft's latest release, Windows Terminal 1. 19 Preview, is making waves in the developer community with its array of new features, including Suggestions UI, Broadcast Input, and Web Search. Windows Terminal 1. 18 is also available as a stable release with all the capabilities that were previously available in preview. Windows Terminal Preview 1. 19 brings a new feature that allows developers to broadcast the contents of one Terminal pane to another pane in real time. Broadcast Input was a top-requested feature from the developer community, which can be enabled by clicking the “Toggle broadcast input to all panes” option available in the Command Palette. Microsoft has also introduced a new Web Search feature that allows developers to perform a search on the Internet based on selected text in the terminal window. The search results will open in a web browser with more details about the highlighted text. However, developers will need to configure the settings. json file in order to enable the Web Search capability. The latest Windows Terminal update brings a new Suggestions UI that offers auto-complete suggestions as the user types. However, it requires users to configure Shell Integration to... --- ### Mastering Active Directory OU: A Comprehensive Guide to Organizational Units > Explore Active Directory OU (Organizational Units): their functions, benefits, best practices, and differences from AD groups in our guide. - Published: 2023-09-27 - Modified: 2023-10-24 - URL: https://petri.com/active-directory-ou/ - Categories: Active Directory (AD) - Tags: Active Directory - Article Type: Overview If you've been an IT Pro for many years (OK, decades), you likely know what an Active Directory OU (Organizational Unit) is. But, what if you're new to the IT field or new to Microsoft Active Directory? No need to fret or get flustered - read my post to find out about OUs, what they are, and best practices for using them! What is an Active Directory OU (Organizational Unit)? An Organizational Unit (OU) in Active Directory is a container object used to organize and manage resources within a domain, such as users, groups, computers, printers, and other network objects. OUs provide a hierarchical structure that helps administrators logically group and delegate management of resource objects. Benefits of using Active Directory OUs Organizational Units (OUs) offer a number of benefits, including: Improved organization: OUs can be used to group objects in your Active Directory domain based on their function, department, location, or other criteria. This can make it easier to find and manage specific objects and to apply consistent Group Policy Objects (GPO) and settings.  OU design can be daunting - take the time in the beginning to plan it out right. Delegated administration: OUs can be used to delegate administrative tasks to specific users or groups. This can help reduce the workload on IT staff and improve administration efficiency, especially when managing Group Policy settings. Security: OUs can be used to isolate objects from each other, and to restrict access to certain resources by way of Group Policy assignments. Group Policies are applied at the OU level. This allows you, as... --- ### Microsoft Planner to Add Support for New Personal Plans Next Month - Published: 2023-09-27 - Modified: 2023-09-27 - URL: https://petri.com/microsoft-planner-personal-plans/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key takeaways: Microsoft is adding support for "Personal plans" in Microsoft Planner next month. Personal plans are designed for exclusive use by the creator, ensuring privacy and control, and can be later shared with Microsoft 365 groups if necessary. Some limitations include a lack of support for attachments, links to SharePoint/OneNote, and task comments in Personal plans. Microsoft is gearing up to introduce support for Personal plans in Microsoft Planner. These new Personal plans will provide users with a more tailored approach to managing tasks, granting creators exclusive ownership and access to their plans. Microsoft Planner is a popular task management service that allows enterprise teams to create, assign, and organize work in order to execute projects. As of today, Microsoft Planner supports two types of plans: Group-based plans and Lightweight plans. Group-based plans are associated with Microsoft 365 groups and Microsoft Teams. These plans allow users to collaborate within a group or team. Lightweight plans are individual plans that are not connected with any specific group or team. They are shared via a list of members stored in Microsoft Planner (rosters). Currently, all plans must be contained by a Microsoft 365 group or a roster. With this release, Microsoft will introduce a new type of container in the Planner service called “user containers” The user who creates the Personal plan will be the only member/owner, and these plans will be associated with Planner user containers. Basic Functionalities of Personal Plans in Microsoft Planner Microsoft Planner users will be able... --- ### Microsoft Releases Big Windows 11 Fall Update With Copilot in Preview > The Windows 11 Fall Update is now available as an optional update for Windows 11 version 22H2, and it includes over 200 new features such as Copilot in Windows and a new File Explorer. - Published: 2023-09-27 - Modified: 2023-09-27 - URL: https://petri.com/windows-11-fall-update-version-23h2-preview-release/ - Categories: Windows, Windows 11, Windows Client OS - Tags: copilot, Microsoft Copilot, News, Windows 11 - Article Type: News Key takeaways: The Windows 11 Fall Update is now available as an optional update for Windows 11 version 22H2, and it includes over 200 new features such as Copilot in Windows and a new File Explorer. Most of the new features will be enabled by default in the October 2023 optional non-security preview release for Windows 11, version 22H2. Windows 11 version 23H2, a separate update coming later this year, is also available to download. It includes all of the features included in the Fall update plus a new Teams for Consumers app. Microsoft released yesterday a big update for Windows 11 version 22H2 with over 200 new features. The company announced this update during its special event last week, and one of the main highlights is the new Copilot assistant that can be pinned right on the desktop.   Copilot provides access to the same Bing Chat experience that’s available on the web, but organizations with the right license can also enable the Bing Chat Enterprise experience for free and take advantage of commercial data protection. The Windows 11 Fall Update also introduced a new version of File Explorer, new developer features such as Dev Home and Dev Drive, and IT pros are not forgotten with new security and management features.   This Windows 11 Fall Update, which is pretty much another “Moment” update for Windows 11 version 22H2, should not be confused with the upcoming Windows 11 version 23H2, which Microsoft is also calling the “Windows 11 2023 update. ”... --- ### Microsoft Defender for Cloud Adds New Features to Boost Multi-Cloud Data Protection - Published: 2023-09-26 - Modified: 2023-09-26 - URL: https://petri.com/microsoft-defender-for-cloud-adds-new-features-to-boost-multi-cloud-data-protection/ - Categories: Security - Tags: Microsoft Defender for Cloud, News - Article Type: News Key takeaways: Microsoft Defender for Cloud is getting a unified cloud data security dashboard, making it easier for organizations to monitor and assess security risks across multi-cloud data resources. Microsoft has also added new sensitive data discovery capabilities to Microsoft Defender Cloud Security Posture Management (CSPM). This release allows IT admins to automatically scan Azure and AWS databases for critical data. This simplifies the task of identifying and protecting sensitive information. Microsoft has announced some important updates for its Defender for Cloud solution. This latest release introduces a new unified cloud data security dashboard and sensitive data discovery capabilities that promise to improve how organizations protect corporate data. First off, Microsoft has launched a new data security dashboard in public preview for its Defender for Cloud solution. Previously, IT admins were required to put in manual effort in order to understand their security risks and threats. The new experience is designed to help customers detect security threats and prevent security breaches. Additionally, the data security dashboard provides a unified hub to monitor the complete multi-cloud data estate across managed and hosted data resources. It also makes it easier for administrators to understand protection coverage and identify gaps across data resources. The dashboard provides insights about protected data resources that contain sensitive data. The data security dashboard enables IT admins to focus on sensitive data resources that need attention. It also comes with built-in data query templates that should help organizations to better analyze their security posture. Microsoft Defender for Cloud... --- ### Microsoft is Sunsetting its Azure Database for MariaDB Service in 2025 - Published: 2023-09-26 - Modified: 2023-09-26 - URL: https://petri.com/microsoft-sunsetting-azure-database-for-mariadb/ - Categories: Microsoft Azure - Tags: Azure Database for MariaDB, News - Article Type: News Key takeaways: Microsoft is phasing out its Azure Database for MariaDB service in favor of Azure Database for MySQL - Flexible Server. The deprecation of Azure Database for MariaDB is scheduled for September 9, 2025. Users are encouraged to plan their migrations to Azure Database for MySQL - Flexible Server to avoid potential disruptions in business workflows. Microsoft is set to retire its Azure Database for MariaDB service, making way for Azure Database for MySQL - Flexible Server. This shift was announced yesterday, with the service scheduled for deprecation on September 9, 2025. Azure Database for MariaDB is a relational database service based on the open-source MariaDB Server engine. It offers a fully managed database platform in the Azure cloud that allows customers to easily deploy, manage, and scale their MariaDB database. Azure Database for MariaDB offers a scalable, secure, and high-performance platform for hosting applications in the cloud. To prepare for the upcoming change, Microsoft recommends Azure Database for MariaDB customers to switch to Azure Database for MySQL - Flexible Server instead. It’s a fully managed database service that launched in November 2021 and offers more granular control over database management functions as well as configuration settings. “As we continue to invest in Azure Database for MySQL and focus our efforts on Flexible Server to make it the best destination for your open-source MySQL workloads, we’ve decided to retire the Azure Database for MariaDB service in two years (September 2025). This will help us focus on Azure Database for... --- ### Microsoft's Remote Help Solution Gets Support for macOS - Published: 2023-09-25 - Modified: 2023-09-25 - URL: https://petri.com/microsofts-remote-help-macos/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key takeaways: Microsoft Intune's September update brings several new features, including Remote Help support for macOS devices. The update includes improvements to Intune's settings catalog, offering IT admins more control and customization options for iOS/iPadOS and macOS devices. The integration of Zebra LifeGuard OTA enhances security for Android devices, and Endpoint Privilege Management support for Windows 365 devices provides a security measure by granting specific administrative privileges to approved applications. Microsoft has announced its September service release (2309) for Microsoft Intune with a focus on convenience and security. The major highlight of this release is the expansion of the Remote Help service to macOS, simplifying IT troubleshooting for remote Mac devices. Remote Help is a new cloud-based service that enables IT admins to remotely troubleshoot issues on employees’ Mac devices. Microsoft has also introduced a new feature that allows administrators to remotely launch Remote Help for Windows directly from the Microsoft Intune admin center. “Previously, both the helpdesk and the user had to launch Remote Help on their devices manually. With the new capability, the user receives a notification on their device that the helpdesk agent wants to begin a Remote Help session making it a more streamlined experience,” Microsoft explained. Microsoft has announced some updates to enhance the Intune experience on Apple devices. Specifically, the company has updated the settings catalog and simplified settings updates for both end users and IT administrators. The latest release brings over 30 new settings to help IT admins prepare for the iOS/iPadOS 17... --- ### What Is SQL Server?: Understanding SQL Server and its Different Editions > SQL Server is a relational database management system (RDBM) developed by Microsoft. This article details what is SQL Server and how its key subsystems and services work. - Published: 2023-09-25 - Modified: 2024-03-12 - URL: https://petri.com/what-is-sql-server/ - Categories: SQL Server - Tags: featured-top-right, SQL Server - Article Type: Overview SQL Server is a relational database management system (RDBM) developed by Microsoft that competes with Oracle, IBM DB2, MySQL, PostgreSQL, and other RDBMs. In this article, I'll explain in detail what SQL Server is and go through its release history over the past three decades. I'll also detail what are the different SQL Server versions you can download and use today. What is SQL Server? SQL Server is an enterprise relational database platform, and its main purpose is to provide a data store for various applications and services. In the past, relational database management systems (RDBMs) were primarily for online transaction processing (OLTP) applications like order entry, invoicing, shipping, and retail sales. However, the scope of relational database systems has evolved over time. They are now the backend for most websites as well as the data store for business intelligence and online analytical processing (OLAP) decision support applications. Modern enterprise data platforms like SQL Server also have ties to Big Data and NoSQL datastores as well. The SQL Server enterprise data platform supports several different languages for various functions, but the primary two are T-SQL (Transact-SQL) and MDX (Multidimensional Expressions). T-SQL is a proprietary extension of the standard ANSI SQL (Structure Query Language) language. SQL uses data definition language (DML) statements to create database objects and data manipulation language (DDL) statements to query data. The vast majority of SQL Server queries, stored procedures, triggers, and functions are written using T-SQL. MDX is a query language developed by Microsoft for... --- ### New Outlook for Windows Now Available to Download on the Microsoft Store - Published: 2023-09-25 - Modified: 2023-09-25 - URL: https://petri.com/new-outlook-for-windows-11-devices/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key takeaways: Microsoft's new web-based Outlook for Windows client is now available on the Microsoft Store for Windows 11 devices. However, it's still in preview for work and school accounts. The new Outlook for Windows app is still missing support for an offline mode, Outlook data (. pst) files, COM add-ins, and other features. Microsoft has added new IT controls that let administrators manage the new Outlook for Windows app to align with their organization's specific requirements. Microsoft has announced that its new web-based Outlook for Windows client is now generally available for consumers. The new app is also available to download on the Microsoft Store for commercial customers, and it will be shipped in tomorrow's optional update, as well as Windows 11 version 23H2. In a separate blog post for IT admins, Microsoft explained that users will be able to recognize the new Outlook for Windows through a refreshed icon. The company will remove the “PRE” label, though it’s still in preview for both enterprise and education customers. Microsoft encourages organizations to test the new Outlook for Windows app and provide their feedback until it hits general availability. “The new Outlook for Windows is enterprise-ready and it brings together the speed of web development with the reliability of a desktop app. We recommend organizations to start or keep testing the new Outlook for Windows so they can provide feedback to help us prioritize our development work,” the Outlook team explained. The new Outlook for Windows lets users sign into multiple... --- ### GitHub Announces the General Availability of Passkey Support - Published: 2023-09-22 - Modified: 2023-09-22 - URL: https://petri.com/github-general-availability-passkey/ - Categories: Developer - Tags: GitHub, News, Passkeys - Article Type: News Key takeaways: GitHub has officially launched passkey support for passwordless authentication, enhancing online security for its users. Passkeys offer a secure and user-friendly way to access GitHub accounts, combining PINs and biometric authentication methods like facial recognition and fingerprints. This move aligns with the broader industry trend of promoting passwordless authentication across various platforms. In a world where online security is paramount, GitHub has just announced the general availability of passkey support for passwordless authentication. This new security feature, which launched in public beta in July, now offers developers a more secure and convenient way to access their GitHub accounts. Passkey is a security feature that allows users to authenticate and authorize access to a device, system, or network. It’s often used in password-based authentication systems to sign into online services and apps through PINs and biometric authentication (such as facial recognition and fingerprints). According to GitHub, passkeys provide several benefits such as easier configuration and enhanced recoverability. The feature also makes it easier for developers to protect GitHub accounts and minimize the risk of lockouts. Passkeys help to protect developers against unauthorized access and data breaches. “Since the launch of passkeys in beta in July, tens of thousands of developers have adopted them. Now, all users on GitHub. com can use passkeys to protect their account. This continues our commitment to securing all contributors with 2FA by the end of 2023 and strengthening security across the platform—without compromising user experience,” said Hirsch Singhal, Staff Product Manager at GitHub. How to... --- ### First Ring Daily: The Biggest Week in Microsoft's History - Published: 2023-09-22 - Modified: 2023-09-26 - URL: https://petri.com/first-ring-daily-ep-1517-biggest-week-in-microsofts-history/ - Categories: Microsoft - Tags: First Ring Daily, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the unexpected departure of Microsoft's Chief Product Officer Panos Panay, the company's special event about AI and Surface yesterday, and the UK's CMA provisionally approving Microsoft's Activision Blizzard acquisition. --- ### Microsoft Unveils New Security Features for Windows 11, Microsoft Intune, and More - Published: 2023-09-22 - Modified: 2023-09-22 - URL: https://petri.com/microsoft-security-updates-windows-11-microsoft-intune/ - Categories: Windows 11 - Tags: Microsoft Intune, News, Windows 11 - Article Type: News Key takeaways: Microsoft unveiled enhanced security features at its Surface and AI event in New York yesterday. These updates include passwordless access with Passkey support in Windows 11, app control for business in Microsoft Intune, and a Config Refresh feature for IT admins. Microsoft is expanding OneDrive Advanced Security to Microsoft 365 Basic, introducing credit monitoring and privacy protection in Microsoft Defender for Individuals, and preparing for the Windows 11 Fall update on September 26. Microsoft held its Surface and AI event where the company unveiled several new security features and updates set to transform the digital landscape. With a commitment to a 'security-first' mindset, Microsoft is forging ahead with advancements in Windows 11, Microsoft Intune, Microsoft 365, and Microsoft Defender. “As we rapidly iterate and improve technology, it’s imperative that we do so with a security-first mindset. This means both building products that are secure by default and ensuring that we are adopting and deploying new technologies, like AI, in a secure and responsible way,” said Vasu Jakkal, Corporate Vice President for Security, Compliance, Identity, and Management. Enhanced passkey support in Windows 11 Microsoft plans to add a new feature that will make it possible to use Windows Hello to sign into any application or website with their fingerprint, face, or device PIN. However, users will first need to create a passkey for a passwordless experience on Windows 11 PCs. Microsoft says that users will be able to use passkeys to access several services like DocuSign. com, GitHub. com, and more... . --- ### Understanding Multi-Tenant Organizations in Microsoft 365 > A multi-tenant organization (MTO) is a group of up to 5 Entra ID tenants linked together to improve collaboration across Microsoft 365. Here's everything you need to know about MTOs. - Published: 2023-09-22 - Modified: 2023-09-22 - URL: https://petri.com/microsoft-365-multi-tenant-organization/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, multi-tenant organization - Article Type: Overview Multi-tenant organizations (MTOs) are a new feature in Microsoft 365 and Entra ID (formerly Azure Active Directory) that has reached the public preview stage in mid-2023. An MTO is a group of up to five Entra ID tenants linked together to offer your users seamless collaboration and the sharing of resources. In this article, I'll discuss the benefits and limitations of multi-tenant organizations in Microsoft 365, and I'll also briefly show you how to get started with creating a new MTO in your organization. What is a multi-tenant organization in Microsoft 365? As I previously mentioned, a multi-tenant organization in Microsoft 365 is a group of up to five Entra ID tenants that are linked together so that users in each tenant can collaborate and share resources more efficiently. This can be useful for organizations with multiple subsidiaries, business units, or departments that need to be able to work together seamlessly. As of this writing, there are a few limitations you will want to be aware of with MTOs. The number of tenants that can be included in a multi-tenant organization is limited to five. The number of users per tenant is limited to 100,000. Not all Microsoft 365 features are supported in multi-tenant organizations. The benefits of a multi-tenant organization At this early stage of development and execution, multi-tenant organizations offer a handful of benefits for your organization, but there are very few 'real-world' applications and features taking advantage of this new technology. However, as time goes on and... --- ### Microsoft Announces Windows 11 Fall Update With Copilot in Windows and New Cloud PC Features > The Windows 11 Fall update is coming on September 26 as an optional update for Windows 11 version 22H2, and it will add over 200 new features including Copilot for Windows. - Published: 2023-09-22 - Modified: 2023-09-22 - URL: https://petri.com/windows-11-fall-update-copilot-coming-september-26/ - Categories: Windows, Windows 11 - Tags: News, Windows 11, Windows 365, Windows Copilot - Article Type: News Key takeaways The Windows 11 Fall update is coming on September 26 as an optional update for Windows 11 version 22H2, and it will add over 200 new features. This update brings Copilot in Windows, a new AI assistant that will be available in all markets except the EU, Russia, Belarus, and China There are also new options for IT admins to enforce passwordless authentication methods on Windows 11. Microsoft held a special event in New York yesterday where the company detailed new features coming to Windows on September 26. The highlight of this Windows 11 Fall update is Windows Copilot, which has been available in preview for Insiders since June. This update will also introduce new Cloud PC experiences with Windows 365 Boot and Windows 365 Switch, Passkey support, and more.   As we’re now getting close to the release of Windows 11 version 23H2, the next annual update for the OS, there was a bit of confusion regarding this upcoming update yesterday. The update coming next week on September 26 is actually the optional September preview update for Windows 11 version 22H2, which will include all of the aforementioned features.   “On September 26th, Copilot in Windows will start to roll out in September 2023 optional non-security update for Windows 11, version 22H2--and will be available behind the commercial control for continuous innovation,” the company explained on the Windows IT Pro blog yesterday. “It will later be included in Windows 11, version 23H2, the annual feature update for Windows 11, which... --- ### Microsoft 365 Copilot to Be Available for Enterprise Customers on November 1 - Published: 2023-09-21 - Modified: 2023-09-21 - URL: https://petri.com/microsoft-365-copilot-launch-november-1/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key takeaways: Microsoft is launching Microsoft 365 Copilot on November 1, an AI assistant powered by OpenAI's technology for enterprise customers. Microsoft 365 Copilot brings generative AI capabilities to Microsoft Office apps and can summarize emails, analyze data, and rewrite content. Microsoft also announced Microsoft 365 Chat, Copilot Lab for training, and Bing Chat Enterprise support for Microsoft Edge mobile users. Microsoft is gearing up to launch Microsoft 365 Copilot to enterprise customers, with a scheduled launch on November 1. The company announced this morning that this AI-powered assistant will be accessible to specific Microsoft 365 business and enterprise plans, with a pricing set at $30 per user per month. Microsoft 365 Copilot is powered by cutting-edge AI technology from OpenAI, and it brings generative AI capabilities to Word, Excel, PowerPoint, Outlook, and Teams. It allows users to summarize Outlook emails, analyze data in Excel, and rewrite content in Word. Microsoft 365 Copilot scans an organization’s content (such as agendas, emails, files, as well as chat messages) to deliver responses. Currently, Microsoft is testing the AI-powered tool with select organizations through its early access program. At launch, Microsoft 365 Copilot will only be available for commercial customers with Microsoft 365 E3, E5, Business Standard, and Business Premium subscriptions. Microsoft 365 Chat Microsoft also announced today a chat experience that is coming to Microsoft 365 Copilot. With Microsoft 365 Chat, it’s possible to ask questions and quickly find important content in files. The chatbot also integrates with other Microsoft 365 apps... --- ### Microsoft to Finalize Entra ID Name Change in 2024 - Published: 2023-09-21 - Modified: 2023-09-21 - URL: https://petri.com/microsoft-entra-id-name-change-2024/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key takeaways: Microsoft's rebranding of Azure Active Directory to Entra ID is now expected to be finalized in 2024 for on-premises software. This name change signifies Microsoft's commitment to simplifying the differentiation between on-premises and multi-cloud identity solutions, ensuring a seamless transition without impacting Azure AD capabilities, pricing, or essential features. Microsoft reaffirms its plans to keep supporting Windows Server Active Directory for on-premises identity and access management. Microsoft unveiled its plans to rebrand Azure Active Directory (Azure AD) to Entra ID back in July. Fast forward to today, and the company has provided an update on this transformative journey, with the name changes set to be finalized for on-premises customers in 2024. Microsoft announced the launch of the Entra product family back in May this year. The new offering includes all of Microsoft’s identity and access management solutions, including Permissions Management and Verified ID as well as Azure AD. Since its launch, Microsoft added several new tools to the Entra suite such as Workload ID, ID Governance, Private Access, and Internet Access. In a recent blog post, Microsoft detailed that enterprise customers can expect to see the service plan name changes on October 1. This means Azure AD Free, Azure AD Premium P1 or P2, and Azure AD External Identities will become Microsoft Entra ID Free, Microsoft Entra ID P1 or P2, and Microsoft Entra External ID, respectively. Microsoft originally planned to complete the change in content and product experiences by the end of 2023. Now, the company says... --- ### GitHub Copilot Chat Now Available in Preview for Individual Users - Published: 2023-09-21 - Modified: 2023-09-21 - URL: https://petri.com/github-copilot-chat-individual-users/ - Categories: Active Directory (AD) - Tags: GitHub Copilot, News - Article Type: News Key takeaways: GitHub is expanding its AI-powered Copilot Chat tool to all GitHub Copilot individual subscribers in Visual Studio and Visual Studio Code. Copilot Chat aims to streamline the development process, allowing users get answers to coding questions and troubleshoot bugs without leaving the IDE. The chatbot is available for free to existing GitHub Copilot subscribers, with a subscription priced at $10 per month or $100 per year. Microsoft-owned GitHub has just unveiled an expansion of its AI-powered Copilot Chat service that promises to enhance developers' productivity. The company announced that a public beta of the coding chatbot is now available for all GitHub Copilot individual subscribers in Visual Studio and Visual Studio Code. GitHub first started testing Copilot Chat with business customers back in July 2023. It’s designed to provide context-specific and real-time coding assistance for software developers. GitHub Copilot Chat leverages advanced natural language processing (NLP) to provide answers to questions within the integrated development environment (IDE). Additionally, the Copilot Chat tool provides real-time guidance such as best coding practices, useful tips, as well as solutions for specific coding challenges. The service also performs code analysis and suggests remediations for security fixes in the code. and makes debugging easier for developers. “Now, teams of developers and individuals alike can use GitHub Copilot Chat to learn new languages or frameworks, troubleshoot bugs, or get answers to coding questions in simple, natural language outputs—all without leaving the IDE. By reducing the need for context switching, it streamlines the development process,... --- ### How to Find and Block Breached Passwords in Active Directory > There are multiple ways to find compromised passwords in Active Directory. This article explores how to that using a manual password audit and automated tools. - Published: 2023-09-20 - Modified: 2024-04-16 - URL: https://petri.com/compromised-passwords-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, IT security, NoAD, NoAds, password protection, passwords - Article Type: How To, Sponsored Cybercriminals love passwords. They’re simple to guess, easy to steal, and can offer unfettered access to a goldmine of data to hold for ransom or sell to other cybercriminals. For those same reasons, compromised passwords are a constant headache for IT teams, who spend far longer than they’d like helping users reset them and fixing problems related to credential theft. Verizon estimates that almost half (49%) of all breaches involving external actors involve stolen credentials. This post is sponsored by Specops Software However, passwordless authentication is some way off being affordable and effective enough to roll out across the average organization. Essentially, passwords are the best tools businesses have to authenticate users in Active Directory. So instead of bemoaning them, we need ways to make sure organizations aren’t at risk from passwords that have already been compromised by cybercriminals. The good news is there are ways to root out breached passwords from Active Directory. I’ll explain why detecting compromised passwords is such a key security step, then walk you through two ways you can find and block breached passwords. Why track down compromised passwords? Let’s say you’ve got a strong password policy (which hopefully you do! ) that stops users from creating weak passwords that are too short, lack complexity, or are iterations of ones they’ve used before. The problem is that even strong passwords can become compromised through phishing attacks. Devices can become infected with malware, and human error can lead to data breaches. This risk is amplified when... --- ### Microsoft Teams Premium to Retain Real-time Telemetry Data for Up To Seven Days - Published: 2023-09-20 - Modified: 2023-09-20 - URL: https://petri.com/microsoft-teams-premium-real-time-telemetry/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key takeaways: Microsoft's upcoming update will allow IT admins to retain real-time telemetry data for Teams meetings for up to seven days. The new feature is designed to help IT admins detect and resolve call quality issues. This update will start rolling out to Microsoft Teams Premium subscribers in late October. Microsoft is set to enhance how organizations harness real-time data during Teams meetings with an upcoming update. The Real-Time Analytics feature will enable IT administrators to retain telemetry data for up to seven days, empowering them to swiftly detect and address call quality issues. In Microsoft Teams, Real-Time Analytics allows IT administrators to view details about meetings for each end user. It also provides insights about audio, video, content sharing, devices as well as network-related issues in both scheduled and Meet Now meetings. These details make it easier for IT admins to detect potential issues, and take action to remediate them during ongoing meetings. Currently, IT admins need to manually enable the setting to capture the real-time telemetry data for in-progress meetings in the Teams admin center. With the upcoming update, the Real-Time Analytics feature will store the telemetry data by default for all users for up to seven days. “In the current public preview, Real-time telemetry is only stored for users when administrators explicitly subscribe (go to user's meeting history and click on specific meeting) to it during ongoing meetings. This prevents admins from troubleshooting the issue if the meeting is already over and telemetry is not captured... --- ### Microsoft to Kill Off Exchange Web Services in October 2026 - Published: 2023-09-20 - Modified: 2023-09-20 - URL: https://petri.com/microsoft-exchange-web-services-2026/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Key takeaways: Microsoft has announced the retirement of the Exchange Web Services API, with EWS requests from non-Microsoft applications to Exchange Online set to be blocked starting in October 2026. Developers are encouraged to transition to the Microsoft Graph API as an alternative to EWS, although some important features may be missing in the new API. The retirement of EWS only applies to Microsoft 365 and Exchange Online, while it will continue to be supported for Exchange Servers, ensuring continuity for existing on-premises environments. Microsoft has recently sent ripples through the developer community with its announcement of the retirement of the Exchange Web Services API. The company will begin blocking EWS requests from non-Microsoft applications to Exchange Online starting in October 2026. Exchange Web Services (EWS) is a cross-platform managed API that allows developers to build custom applications that can access data from Microsoft Exchange Server. It allows developers to perform various tasks such as managing appointments, sending and receiving emails, accessing mailbox data, and more. The API enables apps to access these resources from Exchange Online and on-premises versions of Exchange. In 2018, Microsoft announced that it would stop investing resources into EWS APIs for Exchange Online. The company further demonstrated its commitment to bolstering security for enterprise customers by deprecating 25 less-utilized APIs in March 2022. Now, Microsoft is planning to shut down Exchange Web Services on October 1, 2026. Microsoft recommends developers to switch to Microsoft Graph API Microsoft confirmed that the retirement of EWS only applies... --- ### Microsoft 365 Defender Gets Multi-Tenant Support in Public Preview - Published: 2023-09-20 - Modified: 2023-09-20 - URL: https://petri.com/microsoft-365-defender-gets-multi-tenant-support-in-public-preview/ - Categories: Security - Tags: Microsoft 365 Defender, News - Article Type: News Key takeaways Microsoft 365 Defender introduces multi-tenant support for incident investigations and advanced threat hunting. It consolidates incident views, device inventory, and vulnerability management, eliminating the need to switch between accounts. This feature streamlines security operations, making it easier for IT professionals to track and respond to emerging threats across multiple tenants. Microsoft has introduced multi-tenant support in public preview for Microsoft 365 Defender. This feature simplifies the lives of IT pros by providing a unified view for investigating incidents and conducting advanced threat hunting across multiple tenants. Microsoft 365 Defender is a security solution that allows IT Pros to protect data across Microsoft 365 environments. The service provides various security tools to enhance protection against phishing attacks, malware, data breaches, and other threats. “This addition marks the first wave of improvements, with a focus on global SOC investigation flows, including a consolidated view of incidents across tenants, device inventory, vulnerability management, the ability to perform advanced hunting across data in multiple tenants, and more,” Microsoft explained. Microsoft detailed several key features of multi-tenant management in Microsoft 365 Defender. The feature provides all the details that security teams need to investigate incidents across multiple tenants. It eliminates the need for constant switching between different accounts. The multi-tenant support feature is also designed to streamline the threat-hunting process. The feature enables security teams to proactively look for security threats with Microsoft 365 Defender's advanced hunting capabilities. Lastly, the new multi-tenant management experience makes it easier for partners to gain insights about... --- ### Microsoft AI Researchers Accidentally Leaked 38TB of Sensitive Data - Published: 2023-09-19 - Modified: 2023-09-19 - URL: https://petri.com/microsoft-leaked-38tb-sensitive-data/ - Categories: Security - Tags: Data Security, News - Article Type: News Key takeaways: A 38TB storage bucket containing private data was accidentally leaked by a Microsoft employee due to a misconfigured GitHub repository. The breach exposed sensitive information, including passwords, secret keys, and internal messages, emphasizing the critical need for robust data security measures. Microsoft advised organizations to enhance monitoring of Shared Access Signature (SAS) tokens and follow best practices to minimize the risk of unauthorized access. Cybersecurity researchers have uncovered a 38TB storage bucket containing private data inadvertently leaked by a Microsoft employee. The breach, attributed to a misconfigured GitHub repository within Microsoft's AI research team, exposed sensitive information including passwords, secret keys, and internal messages. In a report published this week, Wiz researchers explained that they discovered a misconfigured GitHub repository belonging to the Microsoft AI research team while looking for misconfigured storage containers. The repository contained a misconfigured URL that allowed access to a SAS Account token. A SAS token is a signed URL that grants specific access to Azure Storage resources. The Wiz researchers claimed that the misconfiguration provided access to full backups of two Microsoft employee workstations. It also exposed personal data such as secret keys, passwords of Microsoft services, and over 30,000 internal Microsoft Teams messages. Wiz researchers notified the Microsoft Security Response Center about the exposure on June 22. Microsoft subsequently revoked the over-permissioned SAS Account token on June 24. Microsoft details SAS security recommendations to prevent abuse Microsoft’s Security Response Center said that there is no evidence that customers' data was exposed. However,... --- ### Azure Update Manager is Now Generally Available - Published: 2023-09-19 - Modified: 2023-09-19 - URL: https://petri.com/azure-update-manager-generally-available/ - Categories: Microsoft Azure - Tags: Azure Update Manager, News - Article Type: News Key takeaways: Microsoft introduces Azure Update Manager, a powerful Software as a Service (SaaS) solution for managing software updates on Windows and Linux machines across Azure, on-premises, and multi-cloud environments. Azure Update Manager empowers IT admins with features like tracking update compliance, instant deployment of critical updates, and management of extended security updates (ESUs) for Azure Arc-enabled virtual machines. Microsoft plans to enhance Azure Update Manager with upcoming capabilities, such as pre and post-update deployment scripts and the ability to create alerts based on updates data. Microsoft has announced the general availability of Azure Update Manager for enterprise customers. This tool simplifies and enhances the update management process for IT professionals across diverse environments. “Azure Update Manager provides a SaaS solution to manage and govern software updates to Windows and Linux machines across Azure, on-premises, and multi-cloud environments. It is an evolution of Azure Automation Update management solution with new features and functionality, for assessment and deployment of software updates on a single machine or on multiple machines at scale,” Microsoft explained. Azure Update Manager allows IT Pros to track update compliance of their fleet of machines in Azure, on-premises, and other cloud environments. The service also lets administrators instantly deploy critical updates in order to secure their systems. It’s possible to manage extended security updates (ESUs) for their Azure Arc-enabled virtual machines. Additionally, IT admins can use scheduled patching to define recurring time windows for the deployment of updates and reboots. It’s also possible to configure a common patching... --- ### Microsoft 365 Lighthouse Gets Support for Alerts and Notifications - Published: 2023-09-18 - Modified: 2023-09-18 - URL: https://petri.com/microsoft-365-lighthouse-alerts-notifications/ - Categories: Active Directory (AD) - Tags: News - Article Type: News Key takeaways: Microsoft 365 Lighthouse now offers alerts and notifications support, empowering Managed Service Providers (MSPs) to enhance their service delivery. MSPs can configure customized email alerts for end-users, groups, or third-party ticketing systems. The platform currently supports various alert types, including identifying risky users and non-compliant devices, with plans to expand this feature in the future. Microsoft has announced the release of a new update for Microsoft 365 Lighthouse. This latest update brings support for alerts and notifications designed to empower Managed Service Providers (MSPs) with enhanced control and responsiveness. Microsoft 365 Lighthouse is a unified portal that allows Managed Service Providers (MSPs) to deliver services to customers and grow their business. The portal makes it easier to secure and manage devices, users, and data at scale for small and medium-sized businesses (SMBs). Microsoft 365 Lighthouse is available to all partners enrolled in the Cloud Solution Provider (CSP) program. “Lighthouse can configure customized email alerts for delivery to your users, groups, or third-party ticketing systems. Offering alerting capabilities on several key scenarios, we've made it easier than ever for Managed Service Providers (MSPs) to integrate multi-tenant alerts into their everyday workflows with configuration directly in Lighthouse without configuring these alerts in multiple admin portals,” Microsoft explained. According to Microsoft, customers can modify the sample alert types to notify end users within the Managed Service Provider (MSP). It’s also possible to target specific tenants by name with custom rules. Moreover, IT admins can use tags to organize their tenants into... --- ### Microsoft Patches Critical XSS Flaws in Azure HDInsight Analytics Service - Published: 2023-09-18 - Modified: 2023-09-18 - URL: https://petri.com/microsoft-xss-flaws-in-azure-hdinsight/ - Categories: Security - Tags: Microsoft Azure, News - Article Type: News Key takeaways: Eight critical cross-site scripting (XSS) vulnerabilities were identified in Microsoft's Azure HDInsight service, posing potential threats to data security and user privacy. Security researchers identified inadequate input sanitization and output encoding as the root causes of these vulnerabilities. Microsoft released patches to address these vulnerabilities in August Patch Tuesday updates. It's also recommended to implement best security practices, including input validation and the principle of least privileges. Microsoft has recently patched eight cross-site scripting (XSS) vulnerabilities impacting Azure HDInsight. These vulnerabilities could have allowed unauthorized access, session hijacking, and the deployment of malicious code. Azure HDInsights is a fully managed service that lets organizations use open-source frameworks for big data analytics, management, and processing. They can use the frameworks to create optimized clusters for Apache Spark, Apache Kafka, Hadoop, HBase, and Interactive Query (LLAP) on Microsoft Azure. The service provides Azure Monitor logging integration to let IT admins monitor HDInsight clusters. In a recent report, Orca Security published details about eight critical vulnerabilities in various Apache services in Azure HDInsight. These were cross-site scripting (XSS) vulnerabilities that could be exploited to hack Web sessions and steal user data. Cross-site scripting (XSS) is a type of attack that lets hackers execute malicious code within a victim's browser. “All 8 XSS vulnerabilities discovered in various platforms and components in Azure HDInsight primarily resulted from the lack of proper input sanitization. This omission allowed malicious characters to be rendered once the dashboard was loaded, demonstrating inadequate output encoding that fails to... --- ### Microsoft Unveils New Partnership to Bring Oracle Cloud Hardware to Azure Datacenters - Published: 2023-09-15 - Modified: 2023-09-15 - URL: https://petri.com/microsoft-oracle-database-azure/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News, Oracle - Article Type: News Key takeaways: Microsoft and Oracle strengthen their partnership with Oracle Database@Azure, making Microsoft Azure the sole platform for Oracle's database services. This collaboration offers organizations the opportunity to expedite AI model training by providing seamless access to data stored in Oracle databases. The service initially launches in select regions, with Microsoft and Oracle aiming to expand its availability worldwide. Microsoft is expanding its existing partnership with Oracle, one that has the potential to reshape how businesses harness the power of data and artificial intelligence (AI). This move aims to provide enterprise customers with easier access to Oracle's database services, hosted on Oracle Cloud Infrastructure (OCI) and deployed within Microsoft Azure data centers. Microsoft CEO Satya Nadella said that the expanded partnership will make Microsoft Azure the only cloud provider to run Oracle's database services. The collaboration between the companies should help to move more Oracle customers to the cloud. It will let organizations speed up the process of training AI models with data that resides in Oracle databases. “We have a real opportunity to help organizations bring their mission-critical applications to the cloud so they can transform every part of their business with this next generation of AI,” said Satya Nadella, Chairman and CEO of Microsoft. “Our expanded partnership with Oracle will make Microsoft Azure the only other cloud provider to run Oracle’s database services and help our customers unlock a new wave of cloud-powered innovation. ” At the moment, the Oracle Database@Azure solution supports various existing Oracle database services. The... --- ### EU to Reportedly Push Ahead with Microsoft Teams Antitrust Probe - Published: 2023-09-15 - Modified: 2023-09-15 - URL: https://petri.com/eu-microsoft-teams-antitrust-probe/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key takeaways: The European Commission is reportedly initiating a formal antitrust investigation into Microsoft's bundling of Teams with its Office 365 suite, triggered by a complaint filed by Slack in 2020. Microsoft's decision to address antitrust concerns by unbundling Teams from Office 365 in Europe have not appeased EU regulators. The EC is preparing a statement of objections to send to Microsoft in the next few months. The European Commission is gearing up for a formal antitrust investigation into Microsoft's contentious bundling of Teams with its Office 365 suite. According to a report from Bloomberg, the EC is preparing a statement of objections to send to Microsoft in the coming months. In July 2020, Slack filed an anti-competitive complaint against Microsoft with the European Commission. The company alleged that Microsoft is using its dominance to crush competitors by bundling Teams with its Office 365 subscriptions. Last month, Microsoft announced that it would start unbundling Teams from its Microsoft 365/Office 365 commercial suites in EU markets on October 1, 2023. This change will let enterprise customers in Europe and Switzerland purchase a Microsoft 365/Office 365 subscription at a lower monthly price without Microsoft Teams. They will also be able to buy a standalone Teams subscription for €5 per month or €60 per year. According to Bloomberg, Microsoft’s proposed plan failed to satisfy regulators and the European Commission. The executive and regulatory branch of the EU is getting ready to send a statement of objections to Microsoft. “Microsoft’s recent proposal to split... --- ### First Ring Daily: The EU is Not Happy - Published: 2023-09-15 - Modified: 2023-09-15 - URL: https://petri.com/first-ring-daily-eu-microsoft-teams-unbundling/ - Categories: Active Directory (AD) - Tags: First Ring Daily, Microsoft Teams, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the EU Commission reportedly preparing a formal complaint against Microsoft despite the company's plan to unbundle Teams from its Microsoft 365/Office 365 commercial subscriptions in Europe next month. --- ### Microsoft Releases SharePoint Server Subscription Edition Update 23H2 - Published: 2023-09-14 - Modified: 2023-09-14 - URL: https://petri.com/microsoft-sharepoint-server-subscription-edition-23h2/ - Categories: SharePoint Subscription Edition - Tags: News, SharePoint Server Subscription Edition - Article Type: News Key takeaways: Microsoft's 23H2 update for SharePoint Server SE introduces AMSI protection, enhancing security by scanning web requests for potential threats before reaching SharePoint Server. The update includes a new SharePoint health analyzer rule and LDAP support in the People Picker. IT administrators can now manage feature release rings through PowerShell, offering greater deployment flexibility. Microsoft has announced the release of a new feature update (23H2) for SharePoint Server Subscription Edition (SE). Among the highlights is the integration of Antimalware Scan Interface (AMSI) protection, which is now enabled by default across all supported SharePoint Server products. “It allows SharePoint Server to work with AMSI-compatible antimalware solutions such as Microsoft Defender to scan all web requests sent to SharePoint Server. Antimalware solutions examine each web request against their own signatures and heuristics to determine if a request is potentially malicious. If it's determined to be potentially malicious, they will block the web request before it's handed off to SharePoint Server to be processed,” Microsoft explained. Microsoft highlights that this approach allows customers to quickly update and distribute antimalware signatures. This eliminates the need for end users to install the updates manually in order to protect their systems against old and emerging security threats. This capability is available for SharePoint Server 2016, SharePoint Server 2019, and SharePoint Server SE. AMSI health analyzer rule Microsoft has added a new SharePoint health analyzer rule for SharePoint Server Subscription Edition, 2019, and 2016. The feature sends "simulated web requests" to actively verify that AMSI is... --- ### Microsoft to Add SMB NTLM Blocking Support to Windows 11 - Published: 2023-09-14 - Modified: 2023-09-14 - URL: https://petri.com/microsoft-smb-ntlm-blocking-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key takeaways: Windows 11 Preview Build 25951 bolsters network security by allowing administrators to block NTLM for outbound connections, thwarting potential attacks. The update also simplifies SMB dialect management by allowing administrators to prevent the use of older and potentially vulnerable SMB protocols within their organization. IT administrators can configure these security features through various methods like Group Policy, PowerShell, and NET USE. Microsoft has announced the release of a new Windows 11 Preview Build 25951 to the Canary Channel. This release comes with notable improvements to the Server Message Block (SMB) protocol, SMB NTLM Blocking, and SMB Dialect Management, offering practical enhancements in the realm of network security. The first major change that Microsoft highlighted today is the ability to use the SMB client to block NTLM for remote outbound connections. The legacy behavior allowed Windows SPNEGO to negotiate Kerberos, NTLM, and other mechanisms with destination servers. This release now allows IT admins to block outbound NTLM over SMB. According to Microsoft, the new security feature offers additional protection against password cracking, pass-the-password, and brute-force attacks. It eliminates the need to shut down NTLM usage in Windows completely. “With this new option, an administrator can intentionally block Windows from offering NTLM via SMB. An attacker who tricks a user or application into sending NTLM challenge responses to a malicious server will no longer receive any NTLM data and cannot brute force, crack, or pass a password, as they will never be sent over the network,” the Windows Insider team... --- ### PowerShell Crescendo 1.1.0 is Now Generally Available - Published: 2023-09-13 - Modified: 2023-09-13 - URL: https://petri.com/microsoft-powershell-crescendo-1-1-0/ - Categories: PowerShell - Tags: News, PowerShell Crescendo - Article Type: News Key takeaways: Microsoft has announced the general availability of PowerShell Crescendo 1. 1. 0. The latest PowerShell Crescendo version brings a host of enhancements, including a new cmdlet, improved error handling, and argument value transformation support. Users should ensure they are running PowerShell 7. 2 or higher to utilize PowerShell Crescendo's capabilities. Microsoft has announced the general availability of PowerShell Crescendo 1. 1. 0 for all its customers. This latest iteration brings several improvements, such as a brand-new cmdlet, enhanced error handling capabilities, a new method to bypass output handling, and support for argument value transformations, among other exciting features. “Crescendo is a development accelerator enabling you to rapidly build PowerShell cmdlets that leverage existing command-line tools. Crescendo amplifies the command-line experience of the original tool to include object output for the PowerShell pipeline, privilege elevation, and integrated help information,” Microsoft explained. Microsoft has added three new members to the Parameter class in the Crescendo schema, including ArgumentTransformType, ArgumentTransform, and ExcludeAsArgument. This means that the schema will now offer tooltips and IntelliSense in tools like Visual Studio Code. PowerShell Crescendo 1. 1. 0 also brings a new Export-CrescendoCommand cmdlet that creates JSON configuration files for Crescendo Command objects. The cmdlet provides a NoClobberManifest switch parameter to prevent overwriting of the module manifest. Previously, PowerShell Crescendo used to send native command errors directly to the users. This release adds two internal functions (Push-CrescendoNativeError and Pop-CrescendoNativeError) to capture the generated command error output. Microsoft says that Crescendo will use the default handler in case an output handler is not... --- ### Microsoft Launches Enhanced Windows 365 App Experience to Boost Productivity on Android Devices - Published: 2023-09-13 - Modified: 2023-09-13 - URL: https://petri.com/microsoft-windows-365-app-experience-android/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Key takeaways: Microsoft and Motorola have joined forces to introduce an enhanced Windows 365 App experience for Android users. This collaboration allows ThinkPhone devices to seamlessly access Windows 365 Cloud PCs when connected to an external display. The result is a simplified and efficient way to transform your smartphone into a productive workspace, offering flexibility and multitasking capabilities. Microsoft has partnered with Motorola to launch an enhanced Windows 365 App experience for Android devices. The new built-in feature is designed to enable seamless connectivity between Lenovo ThinkPhone and Windows 365 Cloud PCs. Microsoft launched the Windows 365 app in public preview in March this year. It allows users to directly access their Cloud PCs from the taskbar or Start menu on Windows 11 PCs. The Windows 365 app offers support for Entra ID and Microsoft Authenticator multi-factor authentication (MFA). “The magic happens when you connect your device to a larger external display using a USB-C or HDMI cable, along with an external keyboard and mouse. This simple setup transforms your smartphone into a portable productivity hub, enabling you to work efficiently wherever you are. The compatibility with various monitors and peripherals and even the built-in virtual trackpad on the phone further enhances the Windows Cloud PC experience,” Microsoft explained. https://www. youtube. com/watch? v=4KixnEvLlME To get started, users will need to sign into their Microsoft Entra ID account and connect the phone to an external display. Then, select the Windows 365 app from the home screens to view all assigned cloud PCs with a... --- ### Microsoft Details Roll Out Plan for New Outlook for Windows Client - Published: 2023-09-13 - Modified: 2023-09-13 - URL: https://petri.com/microsoft-roll-out-plan-outlook-for-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook for Windows - Article Type: News Key takeaways: Microsoft is planning a gradual shift from the classic Outlook desktop application to a web-based Outlook for Windows client, which will take at least two years for commercial customers. The new Outlook for Windows aims to leverage artificial intelligence (AI) to enhance productivity for users. Commercial customers will receive a one-year advance notice of these changes, allowing Microsoft to address concerns and improve the product before phasing out the classic Win32 version of Outlook for Windows. Microsoft has unveiled its strategy to replace the classic Outlook desktop application, but the transition won't be a swift one. In a recent announcement, the company confirmed that this monumental shift will be a gradual process, stretching over at least a couple of years for its commercial customers. Last week, Microsoft published a new YouTube video that outlines the rollout process planned for the new Outlook for Windows client. The company said that the timing would be determined based on the overall readiness of the product, and the transition could take a little over two years. Microsoft also highlighted that the new Outlook should offer AI-powered features to boost productivity. Furthermore, Microsoft officials addressed some concerns of IT admins about the timeline. https://youtu. be/Qt3TugLOD8g Microsoft plans to give a one-year advance notice of the disruptive changes for commercial customers via the Microsoft 365 Message Center. The company will eventually deprecate the classic Win32 version of Outlook after addressing major feedback and feature gaps. “But at some point, we will decide that we think... --- ### Using Microsoft Sentinel to Automate and Reduce Security Alerts > Microsoft Sentinel, the company's SIEM solution can generate a lot of security notifications. Here's how to take back control and make Microsoft Sentinel reduce alerts. - Published: 2023-09-13 - Modified: 2023-09-13 - URL: https://petri.com/microsoft-sentinel-reduce-alerts/ - Categories: Microsoft 365, Security - Tags: Microsoft 365 Defender, Microsoft Sentinel - Article Type: Overview Microsoft 365 Defender, Identity Protection, and Microsoft Sentinel generate an avalanche of security incidents that require attention. In this article, I will give you an overview of what tools are at your disposal, what incidents are useful, and how to make Microsoft Sentinel reduce alerts. Security incidents in a single pane of glass Today’s security systems aren’t perfect. They generate many false-positive alerts, which need to be investigated to verify whether they are indeed malicious. Some incidents are more useful than others, which will make your life hard. If you are just starting out, getting your bearings is difficult. There are so many different portals and screens. The most important thing to know is how to see an overview of all open security incidents within your environment. There are two options for that, Microsoft 365 Defender and Microsoft Sentinel. Microsoft 365 Defender Microsoft 365 Defender is the XDR (Extended Detection and Response) tool from Microsoft that monitors the following elements in your environment: Email and file collaboration tools (Exchange, SharePoint, Teams, and OneDrive) Cloud applications such as Dropbox and Google Drive Antivirus and Endpoint Detection and Response (EDR) On-premises Active Directory (AD) Cloud identities and their sign-ins In the Microsoft 365 Defender portal, you can navigate to the Incidents blade to see all active security incidents in your environment. Incident overview in Defender (Image credit: Petri/ Thijs Lecomte) Microsoft Sentinel While using Microsoft 365 Defender, you are limited to the incidents and data sources Microsoft provides. If you want... --- ### Microsoft Releases September 2023 Patch Tuesday Updates for Windows 11 and Windows 10 > The September 2023 Patch Tuesday updates for Windows 11 and Windows 10 fix a total of 65 vulnerabilities, and IT Pros also get a new policy to control optional updates on Windows 11. - Published: 2023-09-13 - Modified: 2024-11-19 - URL: https://petri.com/september-2023-patch-tuesday-updates/ - Categories: Windows, Windows 10, Windows 11, Windows Client OS - Tags: News, Patch Tuesday, Windows 10, Windows 11 - Article Type: News Key takeaways The September 2023 Patch Tuesday updates fix a total of 65 vulnerabilities, including two security flaws already being exploited by attackers. A new "Enable Optional Updates" policy gives IT pros more granular controls over optional updates and Controlled Feature Rollouts (CFRs) on Windows 11 PCs. Microsoft fixed an authentication issue when using a smart card to join or rejoin a computer to an Active Directory domain might fail. Microsoft released the September 2023 Patch Tuesday updates for Windows 11 and Windows 10 yesterday. The monthly updates were quite easy to miss yesterday as Apple’s iPhone 15 event pretty much dominated the news cycle, but there's actually quite a lot to discuss this month. This month, Microsoft fixed a total of 65 vulnerabilities in Windows, Exchange, Office, and other components, with two security flaws already being used by attackers. On Windows 11 version 22H2, Microsoft is also adding a new “Enable optional updates” policy that gives IT admins more control over optional Windows updates, including what Microsoft calls Controlled Feature Rollouts (CFRs).   September 2023 Patch Tuesday Updates fix 65 vulnerabilities As pointed out by the Zero Day Initiative, the two security flaws that are already being exploited by attackers include a Microsoft Word vulnerability and an elevation of privilege vulnerability affecting the Microsoft Streaming Service Proxy. Additionally, there are five critical vulnerabilities affecting Internet Connection Sharing (ICS), the Microsoft Azure Kubernetes Service, and Visual Studio.   Here is what you should know about these CVEs:  CVE-2023-36761: This Microsoft Word Information... --- ### Microsoft to Sunset Outlook REST API v2.0 in 2024 - Published: 2023-09-12 - Modified: 2023-09-12 - URL: https://petri.com/microsoft-sunset-outlook-rest-api-2024/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Outlook, News - Article Type: News Key takeaways: Microsoft is deprecating the Outlook REST API v2. 0 in 2024 due to feedback from customers and partners. The transition aims to encourage developers to migrate to Microsoft Graph for improved security, reliability, and performance. Microsoft has provided guidance to assist customers and developers in planning a successful migration to Microsoft Graph. In a notable shift for developers, Microsoft has revealed its plan to retire the Outlook REST API v2. 0 in 2024. This decision stems from feedback received from customers and partners. The Outlook REST API is undergoing this transition to make way for a smoother and more secure future with Microsoft Graph. The Outlook REST API is a web-based API that allows developers to access and interact with Microsoft Outlook data and services. It enables developers to integrate Outlook functionality into their applications, such as calendar, email, and contacts. The Outlook REST API lets custom apps access data from Office 365, Outlook. com, and Exchange Server. Microsoft originally unveiled its plans to kill off the Outlook REST API beta in November 2020. The company has considered it a legacy surface since 2020 and has been encouraging developers to switch to Microsoft Graph instead. However, Microsoft found that it would require changes to the legacy code, and customers were not ready to let go of the API completely. Consequently, the company decided to delay the deadline for deprecation until 2023. “In January 2023 we announced the decision to delay the final decommissioning date for Outlook REST API v2. 0 and corresponding... --- ### Microsoft's Bing Chat Enterprise Service Adds New Deployment Controls - Published: 2023-09-12 - Modified: 2023-09-12 - URL: https://petri.com/microsoft-bing-chat-enterprise-deployment-controls/ - Categories: Microsoft 365 - Tags: Bing Chat Enterprise, News - Article Type: News Key takeaways: Microsoft has launched a new Bing Chat Enterprise service plan for commercial customers. The new service plan allows IT admins to enable or disable Bing Chat Enterprise for specific users or groups. The new service plan is not available for education customers with A3 and A5 subscriptions. Microsoft has launched a new Bing Chat Enterprise service plan that gives organizations more control over who can access the service. The new offering allows IT admins to test the service with a small group of testers prior to broader deployment. Microsoft started rolling out the new Bing Chat Enterprise service in preview back in July. The AI-powered chat tool is designed to offer a higher level of data protection for organizations with security and privacy concerns. It provides verifiable answers to questions asked in natural language with citations and visual solutions like charts and graphs. Bing Chat Enterprise is available at no additional cost for customers with Microsoft 365 E3, E5, Business Standard, and Business Premium subscriptions. https://www. youtube. com/watch? v=8tN4Y5JV8NI Bing Chat Enterprise service plan Up until now, Microsoft allowed IT Pros to enable or disable Bing Chat Enterprise for all end users in their Microsoft 365 tenants. The new Bing Chat Enterprise Service Plan enables administrators to roll out the service via ring-based deployment. Once enabled, users will be able to access Bing Chat Enterprise when signed into Bing. com and Microsoft Edge with their work (Microsoft Entra ID) accounts. However, it may take up to 48 hours for the changes to... --- ### W3LL Phishing Group Breaches Thousands of Microsoft 365 Corporate Accounts - Published: 2023-09-11 - Modified: 2023-09-12 - URL: https://petri.com/w3ll-phishing-microsoft-365-accounts/ - Categories: Security - Tags: featured-top-right, News - Article Type: News Key takeaways: W3LL, a sophisticated cyber threat group, has successfully targeted more than 8,000 Microsoft 365 corporate accounts across the US, Europe, and Australia. W3LL's tactics include bypassing multifactor authentication (MFA) and employing convincing Microsoft Outlook animations to deceive victims into opening malicious attachments. To defend against such threats, organizations are urged to implement FIDO 2. 0 authentication solutions, enforce strict access policies, and bolster email protection tools. Security researchers have discovered a new threat actor that has been using a highly advanced phishing kit to bypass multifactor authentication (MFA) safeguards. The cyber threat group has successfully compromised over 8,000 Microsoft 365 corporate accounts across the US, Europe, and Australia. According to a report released by Group-IB, the hackers had built a highly sophisticated phishing kit (W3LL Panel) with multifactor authentication (MFA) bypass capabilities. The security researchers believe that the custom tools were used to breach over 56,000 Microsoft 365 accounts between October 2022 and July 2023. Group-IB found that the cyber threat group targeted several industries, including IT, healthcare, legal services, manufacturing, consulting, and financial services. The researchers estimate that the W3LL crew had generated more than $500,000 during the last 10 months. The attacker first gained access to a mailing list of potential victims and used the W3LL custom email validator tool to scan the list. Then, the hackers used additional custom tools (such as link stagers and phishing kits) to create a phishing lure. "Once the victim has downloaded and accessed an attachment, a new blank browser window... --- ### Microsoft Entra ID Gets Conditional Access Overview Dashboard and Templates - Published: 2023-09-11 - Modified: 2023-09-11 - URL: https://petri.com/microsoft-entra-id-conditional-access-overview-templates/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key takeaways: Microsoft's new Conditional Access overview dashboard lets IT Pros get a comprehensive view of their Conditional Access posture. It helps administrators track unprotected sign-ins, non-compliant/unmanaged devices, and malicious sign-in alerts. The Conditional Access templates make it easier for IT admins to deploy policies aligned with Microsoft recommendations. In today's constantly evolving digital landscape, finding the perfect harmony between strong security measures and seamless access for a hybrid workforce can prove to be quite a daunting task. To simplify this challenge, Microsoft has introduced a new Conditional Access overview dashboard, designed to assist Entra ID customers in effortlessly navigating this intricate terrain. The Conditional Access overview is a built-in dashboard that allows organizations to gain detailed insights about their Conditional Access posture. It’s the default landing page that lets administrators create new policies with Conditional Access templates. The Conditional Access overview dashboard helps to track unprotected sign-ins, non-compliant/unmanaged devices, and malicious sign-in alerts. “As an administrator, it provides a concise summary of your policies, identifies any gaps in your policy coverage, and provides valuable insights based on sign-in activity within your tenant. This feature enables you to swiftly pinpoint areas where you can enhance the enforcement of Zero Trust principles, ultimately bolstering your defense mechanisms,” Microsoft explained. Conditional Access templates are designed to make it easier for IT admins to deploy new policies aligned with Microsoft recommendations. The templates help to ensure that the policies provide maximum protection for corporate assets as well as promote optimal and secure access... --- ### Protect Your Organization's Assets: Disaster Recovery with Azure Backup > Here's how Azure Backup can keeps your data and workloads safe by backing them up to the Azure cloud for disaster recovery. - Published: 2023-09-11 - Modified: 2023-09-12 - URL: https://petri.com/azure-backup/ - Categories: Azure, Backup & Storage - Tags: Azure, Azure Backup, Disaster Recovery, featured-top-left - Article Type: How To Azure Backup can be used to back up not only an organization’s critical cloud workloads but also all types of on-premises resources, even if they are running on Azure Stack HCI or Azure Stack Hub. Before explaining how Azure Backup can be set up and used for disaster recovery (DR), I want to get a common backup misconception out of the way: Backup is not the same as disaster recovery. Backup vs. disaster recovery In the case of Azure, Azure Backup keeps your data and workloads safe and recoverable by backing them up to the Azure cloud. For example, if a user deletes a file from an Azure File Share, you can restore that file; or if a virtual machine (VM) is no longer responsive or bootable, you can restore it from a backup. In addition to Azure Backup, there is Azure Site Recovery, which serves as a cloud disaster recovery solution. It allows you to replicate workloads running on physical servers or VMs, both inside and outside of Azure, from a primary site to a secondary location. In the event of an outage at your primary site, you can fail over to the secondary location, access all applications and workloads from the secondary site, and subsequently fail back to the primary site once it is operational again. Resilience in hybrid environments To achieve comprehensive resiliency in a hybrid environment, it is vital to ensure the high availability of all your resources in addition to implementing backups and disaster... --- ### RDP Server Security Enhanced by Bullwall's New Solution Against Ransomware Attacks - Published: 2023-09-08 - Modified: 2023-09-08 - URL: https://petri.com/bullwall-server-intrusion-protection-ransomware/ - Categories: Security - Tags: News - Article Type: News Key takeaways: BullWall Server Intrusion Protection offers a robust solution to the pressing issue of unauthorized access during Remote Desktop Protocol (RDP) sessions. The integration of multi-factor authentication (MFA) and the BullWall Ransomware Containment system not only blocks unauthorized access but also provides an effective means of containing and neutralizing ransomware attacks at their inception. BullWall Server Intrusion Protection represents a proactive and practical solution for organizations seeking to enhance their server security. Bullwall announced the launch of its new Server Intrusion Protection solution this week. In an age where remote access is integral to business operations and security concerns loom large, this solution aims to prevent unauthorized access during Remote Desktop Protocol (RDP) sessions due to compromised credentials. BullWall is a cybersecurity solution provider that allows organizations to block ransomware attacks targeting corporate data and critical IT infrastructure. The company offers specialized solutions to protect servers against unauthorized intrusion in enterprise environments. According to BullWall, Remote Desktop Protocol (RDP) has historically been a common attack vector for ransomware and other cyberattacks. It lets threat actors deploy ransomware on vulnerable machines that could lead to data encryption and exfiltration. How BullWall Server Intrusion Protection works? BullWall Server Intrusion Protection leverages the BullWall Ransomware Containment service to contain ransomware on the systems. It provides a multi-factor authentication challenge (such as a traditional MFA or a token grid). The service blocks the intrusion and prevents unauthorized access in case the MFA challenge fails. It initiates the BullWall Response Protocol that triggers an... --- ### Microsoft to Protect Copilot Commercial Customers Against Copyright Lawsuits - Published: 2023-09-08 - Modified: 2023-09-08 - URL: https://petri.com/microsoft-protect-copilot-customers-copyright-lawsuits/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key takeaways: Microsoft is taking a proactive stance in defending commercial customers against copyright infringement lawsuits related to its AI-powered Copilot services. Microsoft is offering protection and financial support for those who utilize the tool to generate content. The Copilot Copyright Commitment covers Microsoft 365 Copilot, Bing Chat Enterprise, Windows Copilot, GitHub Copilot, Microsoft Security Copilot, and other products. Microsoft has announced that it will defend customers of its AI-powered Copilot services from the daunting specter of copyright infringement lawsuits. This initiative, part of the company's unwavering dedication to customer satisfaction, seeks to alleviate the concerns that have long loomed over the utilization of the Copilot tool for content generation. The Microsoft Copilot Copyright Commitment promises to protect organizations and pay related fines or settlements. This policy applies to commercial customers who have used the built-in content filters and safety measures as well as the paid versions of the products. “If a third party sues a commercial customer for copyright infringement for using Microsoft’s Copilots or the output they generate, we will defend the customer and pay the amount of any adverse judgments or settlements that result from the lawsuit, as long as the customer used the guardrails and content filters we have built into our products,” said Microsoft President Brad Smith and Chief Legal Officer Hossein Nowbar. Microsoft also pledged to address the concerns of authors whose content is used to train machine learning models. “We believe the world needs AI to advance the spread of knowledge and help... --- ### Microsoft Opens Registrations for its Ignite Conference on November 14-17 > Microsoft's Ignite 2023 conference will be held in Seattle on November 14-17, and you can already register for the in-person or free online event. - Published: 2023-09-08 - Modified: 2023-09-08 - URL: https://petri.com/microsoft-opens-registrations-ignite-2023/ - Categories: Microsoft - Tags: Ignite, Ignite 2023, Microsoft, News - Article Type: News Key takeaways: Microsoft's Ignite 2023 conference will be held in Seattle on November 14-17, and you can already register for the in-person or free online event. The theme of the conference will be "AI transformation", continuing what's been a very important theme for Microsoft this year. Ignite 2023 will be preceded by a special Microsoft event on September 21 and a OneDrive-themed event on October 3. Microsoft has now opened registrations for its Ignite 2023 conference, which will be held in Seattle on November 14-17. This year, the theme of the conference for IT pros is “AI transformation,” so you can expect Microsoft to continue its streak of AI announcements that started with GitHub Copilot two years ago.   While the full session catalog for Ignite 2023 isn’t available yet, Microsoft already announced that there will be over 140 sessions this year. The list of featured speakers includes CEO Satya Nadella, EVP of Experiences and Devices Rajesh Jha, EVP of the Cloud + AI Group Scott Guthrie, and Microsoft 365 Collaborative Apps and Platforms lead Jeff Teper. If you want to attend the event in person in Seattle, Microsoft is offering a $1,525 early-bid pricing ($300 off) until October 11. Everyone else can already register for the free online sessions on November 15-16, which is when the live in-person keynotes are scheduled.   https://twitter. com/MS_Ignite/status/1699507702349677002 Microsoft has been making huge investments in AI this year, with the Microsoft 365 Copilot launching earlier this year via an early access program. The productivity assistant will... --- ### First Ring Daily: Google Goes to Court and the EU Lists Out "Gatekeepers" - Published: 2023-09-08 - Modified: 2023-09-08 - URL: https://petri.com/first-ring-daily-google-court-battle-eu-gatekeepers/ - Categories: Active Directory (AD) - Tags: First Ring, First Ring Daily, Google, Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Google's upcoming antitrust battle in the US, as well as the EU designating Alphabet, Amazon, Apple, ByteDance, Meta, and Microsoft as the six “gatekeepers” following the adoption of the Digital Markets Act. --- ### Microsoft to Drop Support for Third-Party Printer Drivers on Windows PCs - Published: 2023-09-07 - Modified: 2023-09-07 - URL: https://petri.com/microsoft-third-party-printer-drivers-windows/ - Categories: Windows - Tags: News, printers, Windows - Article Type: News Key takeaways: Microsoft is discontinuing support for third-party printer drivers via Windows Update, shifting towards Printer Support Apps distributed through the Microsoft Store. The transition will be implemented gradually over the next few years, with existing drivers still available through the Windows Hardware Compatibility Program (WHCP) until 2026. Microsoft will continue to provide security updates for the existing printer driver platform on all supported Windows versions. Microsoft is set to bid farewell to third-party printer drivers offered via Windows Update. This change, scheduled for a staggered rollout, will let printer manufacturers harness the UWP development framework to create Printer Support Apps available through the Microsoft Store. Microsoft explained that the upcoming change will eliminate the need for printer manufacturers to distribute their drivers through Windows Update. They will be able to use the UWP development framework to build Printer Support Apps and distribute them via the Microsoft Store. It should bring performance and reliability improvements for Windows users. Microsoft also notes that printer manufacturers will no longer need to build separate solutions for different versions of Windows. “With the release of Windows 10 21H2, Windows offers inbox support for Mopria compliant printer devices over network and USB interfaces via the Microsoft IPP Class Driver. This removes the need for print device manufacturers to provide their own installers, drivers, utilities, and so on.   Device experience customization is now available via the Print Support Apps that are distributed and automatically installed via the Windows Store,” the company wrote. Microsoft understands that the... --- ### How Immutable Backups Protect Against Ransomware > In this article, we explore how immutable backups and immutable storage can protect your organization against data loss and ransomware. - Published: 2023-09-07 - Modified: 2024-04-16 - URL: https://petri.com/immutable-storage-ransomware-backups/ - Categories: Backup & Storage - Tags: Immutable Storage, NoAD, NoAds, Ransomware, Veeam - Article Type: Sponsored Ransomware protection is one the most important topics for IT Pros and C-Level technology executives. Learn how immutable backups and immutable storage help to protect your organization against data corruption and loss, malware, viruses, and ransomware – and how to implement them.   This post is sponsored by Object First Veeam 2023 Ransomware trends report – most ransomware targets backups In May 2023, Veeam – a software company specializing in backup and recovery – released a large global report on recent ransomware trends. They describe the lessons learned from 1,200 victims and nearly 3,000 cyberattacks. This quote from the Veaam 2023 Ransomware Trends Report highlights the increased risk of seeing backups being targeted by ransomware: "Targeting backups has become standard operating procedure" - "Over 93% of ransomware attacks explicitly target backups" - "And over 3 out of 4 backup repositories are affected in a ransomware attack! " These findings are rather scary. Everyone, including all IT Pros, should take notice. But what can you do to alleviate the security threats mounting and growing at astonishing rates? Immutable backup technology can help protect against the ever-increasing dangers posed by ransomware. What is immutable backup? Immutable backups are a form of data protection that prevents any alteration, deletion, or modification of backed-up data for a specified period. This approach ensures that even if the primary data is compromised or encrypted due to a ransomware attack, the unaltered backups, or immutable data, can be readily restored, effectively thwarting data loss and ransom demands. The immutability of backups is achieved through various means, such as using write-once-read-many (WORM) storage technology, cryptographic techniques, or backup solutions that integrate... --- ### Microsoft Explains How Chinese Hackers Breached US Government Email Accounts - Published: 2023-09-07 - Modified: 2023-09-07 - URL: https://petri.com/microsoft-chinese-hackers-breached-email-accounts/ - Categories: Exchange Online, Security - Tags: Azure Active Directory, Exchange Online, News - Article Type: News Key takeaways: In July, Microsoft disclosed that Chinese hackers breached US government email accounts within around 25 organizations. The Storm-0558 hacking group exploited a software crash dump containing the expired Exchange signing key to gain unauthorized access. Microsoft responded by revoking the compromised keys and launching a new framework for applications. Microsoft recently disclosed a cyber-espionage campaign that allowed Chinese hackers to steal a signing key and breach sensitive US government email accounts. The company launched an investigation into the security incident, which led to the publication of detailed findings in a report released on Wednesday. In July, Microsoft detailed that a Chinese hacking group (tracked as Storm-0558) had gained access to Entra ID (formerly Azure AD) and Exchange accounts. The threat actors obtained a Microsoft account consumer signing key and used it to forge tokens for the Azure AD cloud service. This approach allowed the hackers to access emails from around 25 organizations, including government agencies. In a recent blog post, Microsoft admitted that the hackers stole the digital key from a software crash dump after a consumer signing system crashed in April 2021. The threat actors compromised a Microsoft engineer’s corporate account and accessed the crash dump as well as the expired Exchange signing key. “Our investigation found that a consumer signing system crash in April of 2021 resulted in a snapshot of the crashed process (“crash dump”). The crash dumps, which redact sensitive information, should not include the signing key. In this case, a race condition allowed... --- ### What's New With Microsoft's Power Platform – August 2023 > The Power Platform updates for August 2023 include a PowerBI layout switcher, the ability to choose a launch item in the PowerBI mobile app, and more. - Published: 2023-09-07 - Modified: 2023-09-07 - URL: https://petri.com/microsoft-power-platform-august-2023-updates/ - Categories: Power Apps, Power Automate, Power Platform, PowerBI - Tags: News, power apps, Power Automate, Power Platform, PowerBi - Article Type: News It was a busy August and I took the long weekend off, so I'm a few days late to cover everything that's new with Microsoft's Power Platform in August 2023. Either way, let's get started with the most interesting Power Platform updates that came in August, say goodbye to the summer, and here is hoping for a fabulous fall. Get your geek on: The Power Platform AI global hack Ready to dive into a world of innovation and AI-powered solutions? Join Hack Together: Power Platform AI Global Hack, a virtual event where you can learn, experiment, and collaborate with the latest Copilot and AI features in the Power Platform. From September 14th to 28th, 2023, this worldwide online hackathon will welcome all levels of tech enthusiasts.  Flying solo or forming a team of up to three, you'll have to create solutions that leverage Copilot and AI features in Power Apps, Power Automate, Power Virtual Agents, Power Pages, and AI Builder. With Copilot as your guide, crafting apps, flows, bots, and more should be a breeze thanks to natural language inputs and AI-driven assistance. Judges will evaluate solutions based on innovation, real-world impact, usability, and technical excellence. The cherry on top? Prizes include a $150 gift card, Power Platform branded swag, and a special edition of Code Magazine. Winners will be announced during the week of October 23rd.   Let the innovation begin! The Power Platform Global AI Hack will be held on September 14-28 (Image credit: Microsoft) Pick your power, shape your... --- ### MSI Releases New BIOS Updates to Fix Unsupported Processor BSOD Errors on Windows 11 - Published: 2023-09-06 - Modified: 2023-09-06 - URL: https://petri.com/msi-fix-unsupported-processor-bsod-errors-windows-11/ - Categories: Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Key takeaways: MSI has rolled out new BIOS updates, specifically aimed at resolving BSOD unsupported processor errors for Windows users with Intel 700 and 600 Series motherboards. The issue was traced to a firmware setting in Intel's Hybrid Architecture, impacting 13th Gen Core i9 processors. The BIOS updates are not yet available to all users, but MSI plans to gradually expand them to more motherboard models this week. Microsoft recently acknowledged a technical hiccup causing Blue Screen of Death (BSOD) unsupported processor errors on Windows 11 and 10. To combat this issue, MSI has collaborated with Intel to release BIOS updates specifically aimed at their Intel 700 and 600 Series motherboards. In a recent blog post, MSI explained that it has worked with Intel to determine the root cause for the BSOD errors. The companies found that the issue specifically impacts Intel’s 13th Gen Core i9 processors running on Intel 700 and 600 series motherboards. It was caused by a firmware setting in the Intel Hybrid Architecture that got triggered following the installation of the latest Windows 11 and Windows 10 updates. MSI to issue BIOS updates for more motherboard models in late September MSI has released BIOS updates to fix the BSOD issue affecting several Intel 600 and 700 Series motherboards. These include MEG Z790 ACE, MPG Z790 CARBON WIFI, MPG Z790 EDGE WIFI, MAG Z790 TOMAHAWK WIFI, PRO Z790-A WIFI, PRO Z790-P WIFI, PRO Z790-P, PRO Z690-A WIFI, and PRO Z690-A. “The new BIOS coming will include an... --- ### Azure Firewall Gets Explicit Proxy Support and Other New Features - Published: 2023-09-06 - Modified: 2023-09-06 - URL: https://petri.com/microsoft-azure-firewall-explicit-proxy/ - Categories: Microsoft Azure - Tags: Azure Firewall, News - Article Type: News Key takeaways: Microsoft's "Explicit proxy mode" for Azure Firewall offers direct proxy configuration within sending applications, simplifying traffic routing. Single-click upgrade/downgrade support for Azure Firewall Premium subscriptions streamlines subscription management, enabling IT administrators to focus on critical tasks with minimal service disruption. Azure Firewall services are now available in Poland Central, extending their global reach to 52 regions worldwide. Microsoft has introduced a new Explicit proxy mode for Azure Firewall that allows direct proxy configuration within sending applications. The latest update also brings a seamless single-click upgrade/downgrade experience for Azure Firewall subscriptions. “With this mode enabled, you have the option to configure a proxy setting directly on the sending application, such as a web browser, with Azure Firewall acting as the designated proxy. This configuration allows traffic from the sending application to be directed to the private IP address of the firewall, facilitating direct egress from the firewall without the need for a UDR," Microsoft explained. The new Explicit proxy mode is available in addition to the default mode, and it currently supports HTTP/S traffic. It’s possible to use a proxy auto-config (PAC) file or manually configure the IP address on the application or browser. Azure Firewall adds new single-click upgrade/downgrade experience Microsoft has announced the general availability of single-click upgrade/downgrade support in Azure Firewall. The feature enables customers to upgrade or downgrade their Azure Firewall Premium subscriptions with a single click. This should make it easier for IT admins to focus on important tasks and minimize service downtime. The... --- ### PSA: Microsoft to Disable Older TLS Protocols in Windows - Published: 2023-09-05 - Modified: 2023-09-05 - URL: https://petri.com/microsoft-disable-older-tls-protocols-windows/ - Categories: Security, Windows - Tags: News, TLS, Windows - Article Type: News Key takeaways: Microsoft is phasing out TLS 1. 0 and 1. 1 protocols, enhancing security on future Windows operating systems, with the changes beginning in Windows 11 Insider Preview Builds in September 2023. While this change won't affect Windows 11 Home users, enterprise customers need to prepare, as some applications like SQL Server 2016 and SQL Server 2012 may be impacted. Microsoft's move to disable older TLS protocols represents a proactive step toward bolstering cybersecurity, as these outdated encryption protocols are susceptible to vulnerabilities. Microsoft is set to bids farewell to outdated Transport Layer Security (TLS) 1. 0 and 1. 1 protocols in Windows. The company plans to drop support for the encryption protocols starting with Windows 11 Insider Preview Builds in September. Transport Layer Security (TLS) is a cryptographic protocol that ensures secure data transmission over a computer network. It encrypts data for confidentiality, ensures data integrity to detect tempering, and provides authentication to confirm server identity. TLS relies on digital certificates issued by trusted Certificate Authorities, and it’s widely used to secure web traffic, VPN connections, email communication, and more. “This change applies only to future new Windows operating systems, both client and server editions. Windows versions that have already been released will not be affected by this change. Windows 11 Insider Preview builds starting in September 2023 will have TLS versions 1. 0 and 1. 1 disabled by default. There is an option to re-enable TLS 1. 0 or TLS 1. 1 for users who need to maintain compatibility,” Microsoft explained. Which Windows apps would... --- ### What’s New in Microsoft Teams - August 2023 - Published: 2023-09-05 - Modified: 2023-09-05 - URL: https://petri.com/whats-new-microsoft-teams-august-2023/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key takeaways: Microsoft Teams has recently introduced significant improvements such as the ability to join webinars on up to three devices. IT admins now have real-time meeting quality monitoring and enhanced controls for better management. Microsoft Teams Rooms added support for video segmentation, spatial audio, as well as face and voice recognition. In the fast-paced world of digital collaboration, Microsoft continues to raise the bar with its latest enhancements to Microsoft Teams in August 2023. The major highlights include an updated compact chat view, dynamic meeting backgrounds, new admin controls, as well as updates for Microsoft Teams Rooms and devices. Chat & collaboration features First off, Microsoft has released new chat and collaboration capabilities for Microsoft Teams. The company has made some improvements to the chat message hover menu that should make it easier for users to quickly reply to a specific message. There is also a dedicated edit button that appears when a user hovers over a sent message. Microsoft has updated the compact chat view to let users view extra line breaks, time stamps, as well as indicators in conversations. Moreover, tasks added to Loop components can now sync with Microsoft To Do and Planner. Microsoft has released a new dynamic backgrounds feature to make the meeting experience more immersive for the meeting participants. Additionally, it’s now possible for attendees to join public webinars with up to three concurrent devices. Management features Microsoft also announced that IT admins can proactively monitor the meeting quality through real-time telemetry. This... --- ### Securing Enterprise Devices: Embracing Zero Trust Security > In an era where data security is of significant importance for all businesses, AirDroid Business offers a sophisticated MDM solution to ensure businesses' security, management, and productivity. - Published: 2023-09-05 - Modified: 2024-04-17 - URL: https://petri.com/airdroid-business-zero-trust-security/ - Categories: Mobile, Security - Tags: AirDroid Business, Android, featured-top-left, Mobile Device Managment, NoAD, NoAds, Zero Trust - Article Type: Sponsored The excessive use of digital devices in enterprises and their exposure to various networks have increased the probability of cyber-attacks. Enterprise-owned devices contain confidential data that hackers can easily access if devices are not controlled efficiently, and that can cause damage to the values and reputation of the organizations. Thus, data security is now of significant importance in all businesses, but this is where a mobile device management (MDM) solution like AirDroid Business can help. This post is sponsored by AirDroid. What is zero trust security? Zero trust is an advanced high-security implementation model for insider and outsider threats to the organization's devices. It ensures access to the organization's network and devices only by authorized and authenticated end-users with continuous evaluation to secure all the business endpoints. The model is based on the latest technology to overcome remote working issues, malicious attacks, and other modern challenges that today's businesses face. It is incorporated by following critical factors of NIST recommendations like continuous verification of devices, automation, and limiting the blast radius. Zero trust framework ensures identity verification using various latest terminologies like multi-factor authentication, cloud, and mobile security. Why does your business need zero trust security? Businesses need a zero trust security model to ensure data security and streamline processes. Here are some incredible benefits to explain the need for zero trust security. Enhanced security Devices are secured using the proactive approaches of zero trust security. Zero trust works on the principle that no device or system can be trusted... --- ### Microsoft Releases Improvements for Entra ID Cross-Tenant Access Settings - Published: 2023-09-01 - Modified: 2023-09-01 - URL: https://petri.com/microsoft-updates-entra-id-cross-tenant-access-settings/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Key takeaways: Microsoft has announced a series of updates for Entra ID cross-tenant access settings. IT administrators will now have greater control over cross-tenant collaboration with the ability to configure custom roles. A new storage model enables IT admins to seamlessly configure policies for as many partners as needed. Microsoft is improving the collaboration experience with updates to Entra ID cross-tenant access settings. These enhancements include support for custom roles in cross-tenant access settings, protected actions, the removal of partner limits, and more. Microsoft announced the commercial release of Entra ID cross-tenant collaboration settings in preview last year. The feature is designed to make it easier for organizations to share access with trusted organizations. The new settings allow organizations to control how users collaborate with other Microsoft 365 tenants. There are also inbound and outbound settings to control access on an application, group, or tenant-wide basis. With this release, Microsoft has released a new feature that lets organizations configure custom roles for IT admins managing cross-tenant access settings. Moreover, it’s possible for IT Pros to use Conditional Access policies to protect management actions. For instance, a policy requires admins to perform Multi-Factor Authentication (MFA) before making any changes to the default settings for B2B collaboration. “Today, you need to use either a Global or Security admin to fully manage cross-tenant access settings. Now you can use custom roles to create roles that meet the requirements you have. We’ve seen customers create a full cross-tenant access administrator, a partner administrator, and... --- ### What is a Roaming User Profile on Windows? - Published: 2023-09-01 - Modified: 2023-10-24 - URL: https://petri.com/roaming-profiles/ - Categories: Virtualization, Windows 10, Windows 11, Windows Client OS - Tags: Roaming Profiles, Windows - Article Type: Overview Roaming profiles are a Windows feature that allows user profiles to be used across multiple workstations within a network. A user profile contains personalized application settings, desktop configurations, application preferences, and other user-specific data. In this article, I will show you how to deploy roaming user profiles in your Windows environment so that users have the same experience when logging into any computer in your domain. Understanding how roaming profiles work With roaming profiles, users can enjoy a consistent experience regardless of the computer they're using. Their settings and data follow them from one machine to another when they log in with their username. Their profile data is typically saved on a central file share on the corporate network. This is especially useful in environments where users regularly switch between different computers or locations. Although there are a good number of efficiency benefits and productivity-related boosts when using roaming profiles, the feature has not been the most reliable feature in Windows since its inception several decades ago. I have almost always experienced reliability issues with roaming profiles when providing consulting and troubleshooting value to customers over the years. Let's learn more about how roaming profiles work: Profile creation: When a user logs into a computer for the first time, Windows creates a user profile on that computer. This profile includes personal settings, documents, and other user-specific data. Roaming profile setup: In a network environment with Active Directory, administrators and IT Pros can configure roaming profiles. This involves designating a network location,... --- ### New Microsoft Teams for Mac Client to Launch in Preview This Month - Published: 2023-09-01 - Modified: 2023-09-01 - URL: https://petri.com/microsoft-teams-for-mac-client/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Key takeaways: Microsoft is launching a public preview of its new Teams client for Mac this month, featuring improved performance and efficiency. The new Microsoft Teams desktop app replaces the resource-intensive Electron framework with Microsoft's WebView2 technology, resulting in a faster and less memory-intensive application. The new Teams client will be available on Mac devices running macOS Big Sur (11) or higher. Microsoft is gearing up to release the public preview of its new Teams client for macOS later this month. The revamped Microsoft Teams for Mac aims to enhance performance and efficiency, shedding the resource-intensive Electron framework in favor of Microsoft's WebView2 technology. Microsoft launched a significant revamp of its Teams app in public preview on Windows back in March 2023. The current Teams client is built on the Electron framework, which is notorious for resource utilization and poor performance. Since its launch, Microsoft has been continuously working on improvements for Teams to reduce RAM and CPU usage, especially on low-end or older hardware. Fortunately, Microsoft has now ditched Electron and moved toward the WebView2 technology instead. The primary goal of the new Microsoft Teams desktop client was to make it faster and less resource-intensive. Microsoft boasts that the app is two times faster and uses 50 percent less memory compared to the previous version. It also supports new AI-powered features, multi-tenant collaboration, and seamless switching between different tenants and accounts. “With multi-tenant organization (MTO), users in organizations that manage employees across multiple tenants will have the ability to... --- ### New Group Policy Analytics Tool Lets IT Admins Assess MDM Migrations - Published: 2023-08-31 - Modified: 2023-08-31 - URL: https://petri.com/microsoft-group-policy-analytics-tool/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key takeaways: Microsoft has announced the general availability of its new Group Policy analytics tool. The tool can help IT admins understand their current GPO environment and detect any potential conflicts or issues. This information can be used to make informed decisions about how to migrate to Intune. The total size of the imported XML file must be less than 4 MB. Microsoft has released a new Group Policy analytics tool that lets organizations import, analyze, and migrate on-premises GPOs to Microsoft Intune. The new offering provides a detailed report for each GPO and includes a migration wizard that helps IT admins move supported settings to mobile device management (MDM) tools. Specifically, the Group Policy analytics tool provides a detailed report for each GPO with information about the settings, usage, conflicts, as well as Intune equivalent policy. “Group Policy analytics helps you import your GPOs, analyze the settings through sharable reports, and migrate settings from your GPO to Intune. From here, the settings can be managed just like a standard Intune device configuration policy,” Microsoft explained. The Group Policy analytics tool shows various settings supported by Microsoft Intune and other cloud-based MDM providers. It also allows administrators to remove Windows client dependencies on on-premises Active Directory and move to Microsoft Intune management instead. Group Policy migration readiness report With the Group Policy analytics tool, IT admins can view a migration readiness report with details about Group Policy Objects (GPOs) that could have conflicts with Intune policies. The report also makes... --- ### What’s New in Windows Autopatch - August 2023 - Published: 2023-08-31 - Modified: 2023-08-31 - URL: https://petri.com/windows-autopatch-updates-august-2023/ - Categories: Windows - Tags: News, Windows Autopatch - Article Type: News Key takeaways: Microsoft has published a roundup of all the new capabilities added to Windows Autopatch in the past few weeks. IT admins are getting finer control over Windows updates with the ability to pause and resume updates for specific Autopatch groups or rings. Microsoft added a new registry conflict detection feature, allowing IT admins to identify and resolve potential update-blocking conflicts. Microsoft has rolled out a series of Windows Autopatch enhancements designed to redefine how organizations approach updates and device management. The major highlights include a new Autopatch deployment guide, finely-tuned update controls, registry conflict detection, and support for self-serve device deregistration. Microsoft has created a new deployment guide that helps IT admins to plan their migrations to Windows Autopatch. It explains some common objectives and suggests a recommended deployment plan. Moreover, the Windows Autopatch deployment guide details some migration considerations for Windows Update for Business (WUfB) and Microsoft Configuration Manager. The guide also provides suggested business case benefits and stakeholder communications. New IT controls for pausing Windows updates Additionally, Microsoft has added a new feature that gives IT admins better control when pausing quality updates on Windows Autopatch-managed devices. It’s now possible to pause/resume updates for individual/multiple Autopatch groups or at the ring level. The feature lets IT admins view a list of all deployment rings that would be affected as a result of pausing Windows updates. Registry conflict detection Microsoft has introduced a new capability that helps administrators to detect conflicts during the device registration process. The... --- ### First Ring Daily: Ahead of AI - Published: 2023-08-31 - Modified: 2023-08-31 - URL: https://petri.com/first-ring-daily-ep-1503-ahead-of-ai/ - Categories: Windows, Windows 11 - Tags: First Ring Daily, Microsoft, News, Windows 11 - Article Type: News On this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's upcoming special event on September 21, why AI could be a big part of it, and they also look back at an app that didn't ship. --- ### Microsoft is Unbundling Teams From its Microsoft 365/Office 365 Commercial Subscriptions in Europe > Microsoft will start unbundling Teams from its Microsoft 365/Office 365 commercial suites in the EU and Switzerland on October 1, 2023.  - Published: 2023-08-31 - Modified: 2023-08-31 - URL: https://petri.com/microsoft-unbundling-teams-microsoft-office-365-europe/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News, Office 365 - Article Type: News Key takewaways: Microsoft will offer cheaper Microsoft 365/Office 365 commercial suites in the EU and Switzerland that don't include Teams starting on October 1, 2023. Customers who already pay for a Microsoft 365 or Office 365 subscription that includes Teams will be available to continue doing so. Microsoft will also create new documentation for developers interested in integrating their apps with Teams, and make it easy to integrate Office web apps in third-party solutions. After the European Commission started investigating Microsoft’s bundling of Teams with its Microsoft 365 and Office 365 commercial subscriptions last month, Microsoft is ready to address the concerns of EU regulators. This morning, the company announced that will start unbundling Teams from its Microsoft 365/Office 365 commercial suites in the EU and Switzerland on October 1, 2023.   The European Union opened a formal investigation of Microsoft’s bundling practice after Slack, one of the main competitors to Microsoft Teams filed an anti-competite complaint with the European Commission back in 2020. At the time, David Schellhase, General Counsel at Slack accused Microsoft of using the same tactics it previously used to block competition in the web browser space at the beginning of the century. “They created a weak, copycat product and tied it to their dominant Office product, force installing it and blocking its removal, a carbon copy of their illegal behavior during the ‘browser wars’,” the Slack exec said.   Today, Microsoft did try to justify why it makes sense to include Teams with Microsoft 365 and Office... --- ### OneDrive for Business Kills Unlimited Storage Option for Commercial Customers - Published: 2023-08-30 - Modified: 2023-08-30 - URL: https://petri.com/onedrive-for-business-unlimited-storage/ - Categories: Microsoft 365, OneDrive - Tags: News, OneDrive for Business - Article Type: News Key takeaways: Microsoft's OneDrive for Business service no longer offers the unlimited cloud storage option. New commercial customers will need to sign up for OneDrive for Business (Plan 1) with 1 TB of storage for $5 per user/month. However, existing subscribers of OneDrive for Business (Plan 2) would remain unaffected by the change. Microsoft has quietly discontinued its once-generous unlimited cloud storage option for the OneDrive for Business service. Indeed, all new commercial customers are now limited to OneDrive for Business (Plan 1), which offers 1 TB of storage for $5 per user per month. Up until now, Microsoft used to offer OneDrive for Business (Plan 2) with 1 TB of default storage for around $10 per user per month. It was possible for IT administrators to increase the storage limit to 5 TB per user. However, organizations were required to contact Microsoft's support team to claim an additional 25 TB of storage per user and a 25 TB SharePoint team site. This was intended to free large organizations from needing to worry about storage quotas. According to a new report from TechRadar Pro, Microsoft has ditched its OneDrive for Business (Plan 2) offering sometime in July. This means that new commercial customers can only sign up for OneDrive for Business (Plan 1) with 1 TB of storage for $5 per user/month. It’s also possible for IT admins to increase the storage limit to 5 TB per user. However, this capability is only available for organizations with five or more... --- ### Microsoft to Introduce Platform SSO Support for Mac Devices - Published: 2023-08-30 - Modified: 2023-08-30 - URL: https://petri.com/microsoft-platform-sso-mac-devices/ - Categories: Active Directory (AD) - Tags: Microsoft Entra ID, News - Article Type: News Key takeaways: Microsoft will soon roll out Platform Single Sign-On (SSO) capabilities for Mac devices. The feature streamlines the authentication process for Entra ID accounts, providing a unified SSO experience for supported applications and websites. Platform SSO simplifies the employee onboarding process for IT administrators. Microsoft is getting ready to enhance the user experience for Mac devices with its upcoming Platform Single Sign-On (SSO) capabilities. The new feature will offer a seamless and secure way for macOS users to access their Entra ID accounts across various applications and websites. Microsoft launched its Enterprise Single Sign-On (SSO) plug-in for Apple devices back in June. Single sign-on is an authentication technique that lets users access multiple apps and websites with a single credential through a web browser. The SSO extension allows users to sign into their macOS devices with passwordless credentials or Entra ID-managed passwords. It provides a seamless and consistent device-wide single sign-on (SSO) experience for Entra ID (formerly Azure AD) accounts across all supported applications and websites. Microsoft’s new Platform SSO feature is an improvement to the existing SSO extension capabilities available for Mac devices. It’s designed to eliminate the need for security keys and other hardware for user authentication on Mac devices. “Enabled by Platform SSO and powered by Microsoft’s Enterprise SSO plug-in, Platform Credentials for macOS allow users to go passwordless by using Touch ID to unlock their device and be signed into Entra ID under the hood using a device bound cryptographic key. It uses phishing-resistant credentials,... --- ### Microsoft Purview Gets OCR Support and Other New Data Loss Prevention Capabilities - Published: 2023-08-30 - Modified: 2023-08-30 - URL: https://petri.com/microsoft-purview-data-loss-prevention-capabilities/ - Categories: Security - Tags: Microsoft Purview, News - Article Type: News Key takeaways: Microsoft Purview Data Loss Prevention has added new features, including Optical Character Recognition (OCR) support to protect sensitive information. The latest updates also extend document fingerprinting support to Microsoft Teams, Exchange Online, OneDrive, SharePoint Online, and Windows Endpoint. IT admins can gain valuable insights into device health and configuration status, as well as the ability to enforce DLP policies based on attributes like department and geographical region. In a leap towards fortifying data security, Microsoft has unveiled several enhancements for Microsoft Purview Data Loss Prevention. These latest updates boost protection, expand DLP capabilities across platforms, and facilitate seamless day-to-day tasks for administrators. First off, Microsoft has introduced optical character recognition (OCR) support in public preview in Microsoft Teams and Exchange Online. The security feature extracts text from images and prevents end users from sharing sensitive information, including social security numbers and credit card details. Additionally, Microsoft is bringing document fingerprinting support to Teams, OneDrive, SharePoint Online, and Windows Endpoint. The feature converts a standard form into a sensitive information type (SIT) that can be used in the rules configured for DLP policies. Moreover, the label detection capability, which is available for Exchange customers, will add support for . pfile filetype in the coming months. Microsoft Purview Data Loss Prevention is getting a new feature that prevents employees from pasting sensitive information to select websites. Moreover, IT admins can now configure DLP policies to enforce DLP protection for sensitive files stored on network shares. Microsoft has also released new security... --- ### How to Protect Windows Devices with Microsoft Defender for Endpoint > Here's how to enable Microsoft Defender for Endpoint to protect Windows devices from risky activities and potential attacks. - Published: 2023-08-30 - Modified: 2023-09-07 - URL: https://petri.com/microsoft-defender-for-endpoint/ - Categories: Endpoint Protection, Security - Tags: Endpoint security, Microsoft Defender for Endpoint, Security - Article Type: How To Endpoint security plays a vital role in safeguarding enterprise cybersecurity, particularly in the context of remote work scenarios. As the number of endpoints accessing corporate networks rises with the growth of remote work, the need for robust endpoint security becomes increasingly paramount, enabling a secure environment for users on the move. In this article, I will detail how you can protect Windows devices using Microsoft Defender for Endpoint, the company's enterprise endpoint security platform. What is Microsoft Defender for Endpoint? Defender for Endpoint is a comprehensive solution that encompasses a wide range of capabilities designed to counter advanced threats on various devices, including Windows, Linux, macOS, iOS, and Android platforms. It leverages behavioral sensors, cloud security analytics, and threat intelligence to deliver robust protection against cyberthreats. In addition to its advanced threat protection capabilities, Microsoft Defender for Endpoint offers a suite of features, such as vulnerability management and assessment, attack surface reduction, automatic investigation and remediation, and managed hunting services. It is available in two plans, Plan 1 and Plan 2, with the option to add a vulnerability management feature. I should be clear that Microsoft Defender for Endpoint is an integral part of Microsoft 365 Defender, which is an Extended Detection and Response (XDR) solution. This comprehensive security solution provides unified visibility and protection across endpoints, identities, emails, and cloud applications, offering enhanced security and centralized management for organizations. By combining its powerful threat detection and response capabilities with its integration into Microsoft 365 Defender, Microsoft Defender for... --- ### Microsoft to Enable Extended Protection By Default on Exchange Server - Published: 2023-08-29 - Modified: 2023-08-29 - URL: https://petri.com/microsoft-extended-protection-exchange-server/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Key takeaways: Microsoft is introducing default Extended Protection on Exchange Server, elevating security against cyberattacks. Extended Protection strengthens NTLM protocol to counter credential theft and man-in-the-middle attacks. Microsoft will let Exchange Server administrators opt out of the default configuration. Microsoft has announced its plans to enable Extended Protection by default on Exchange Server later this year. Scheduled to roll out with the 2023 H2 Cumulative Update, the new security feature will help organizations to boost protection against credential theft and man-in-the-middle attacks. Windows Extended Protection is a security feature that is designed to secure communication between client and server devices. It strengthens the NTLM (Windows NT LAN Manager) protocol that is used to authenticate users in Windows environments. The Extended Protection feature helps to protect users against various types of attacks, including credential theft and man-in-the-middle (MiTM) attacks. Last year, Microsoft introduced Extended Protection support to mitigate specific vulnerabilities in Exchange Online. Currently, IT admins need to manually enable Extended Protection support on Exchange Servers in their tenants. Starting with the 2023 H2 Cumulative Update (CU), Microsoft will enable Extended Protection by default for Exchange Server 2019. “EP allows a binding to occur within Windows Authentication in IIS between the auth information passed at the Application layer and the TLS encapsulation at the lower levels of the protocol stack. Auth information is also supplemented by adding the namespace the client is accessing in the connection,” the Exchange team explained. Microsoft to let Exchange Server admins opt out of the default... --- ### New Microsoft Teams Client Gets a Big Update to Enhance Multi-Tenant Collaboration - Published: 2023-08-29 - Modified: 2023-09-07 - URL: https://petri.com/microsoft-teams-multi-tenant-collaboration/ - Categories: Microsoft Teams - Tags: featured-top-right, Microsoft Teams, News - Article Type: News Key takeaways: Microsoft has rolled out updates for the new Microsoft Teams desktop client. The new multi-tenant organization (MTO) capabilities empower seamless collaboration across tenants, enabling chat and meeting participation in different tenants simultaneously. The updates also refine search results and enhance meeting experiences, with plans to expand these features to other platforms in the future. Microsoft has started rolling out a set of updates for its new Teams desktop client designed to take employee collaboration in multi-tenant environments up a notch. The focus is on refining chat, calling, meetings, search, and content-sharing experiences to address the needs of today's diverse workplace dynamics. The new Microsoft Teams desktop app launched in public review in late March. It leverages the WebView2 technology to offer 2x faster performance and consume fewer resources than the classic Microsoft Teams desktop app. Microsoft plans to make the new Teams client the default experience for Windows users in September this year. The new Microsoft Teams desktop app is getting a new feature that allows employees to work across multiple tenants and accounts in side-by-side windows. This capability lets users compose chat messages in their tenant as well as join a meeting in another tenant. The Microsoft Teams app also allows users to view cross-tenant notifications for all accounts and tenants. Microsoft has also released some updates to improve the search experience in the new Teams desktop client. Users will now view a single result with the home tenant's name while searching for a colleague in a... --- ### Five Tactics Towards Achieving Zero Trust with Microsoft Entra ID (Azure Active Directory) > In this article, you'll learn about five Microsoft Zero Trust tactics for securing Azure Active Directory, starting with Conditional Access. - Published: 2023-08-29 - Modified: 2024-06-03 - URL: https://petri.com/microsoft-zero-trust/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, featured-top-left, Microsoft Entra ID, Zero Trust - Article Type: Overview For any modern enterprise that uses Microsoft Entra ID (previously Azure Active Directory) to manage user and service access to cloud resources, it’s hard to escape the term Zero Trust (ZT), which implies that your organization must have a layered approach to security. In this article, you'll learn about five Microsoft Zero Trust tactics for securing Azure AD while also considering how to achieve a better administrator and end-user experience. Let’s kick off with the most important driver of Azure AD security: Conditional Access. Control authentication with Conditional Access Conditional Access (CA) can be described as an if this, then that processor for authentication in Azure AD. Administrators specify assignments (if this), that if all are satisfied, are treated with access controls (then that). It requires Azure AD Premium P1. For example, you can have policies that achieve the following: Assignments (if... )Access controls (then... )Users sign in under any conditionsRequire Multi-Factor Authentication (MFA)Users sign in from geo-IPs or OSs we do not supportBlock accessAdministrators sign inRequire a compliant privileged access workstation (PAW) and FIDO2 authenticationUsers sign in to Microsoft 365 on BYOD phonesRequire app protection policies to protect organizational dataUsers sign in to Microsoft 365 on BYOD desktopsLimit access to the web apps (no desktop apps) and block downloads This is visualized in Figure 1. 1 below Conditions / assignments Access controlsUser App Device Location Risk=>MFA type Managed device Managed app Force password resetFigure 1. 1. Conditional Access Now that you know what Conditional Access is, consider the following important points for implementation:... --- ### Microsoft's New Remote Help Service Adds Support for Android Devices - Published: 2023-08-28 - Modified: 2023-08-28 - URL: https://petri.com/microsoft-remote-help-for-android/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Key takeaways: Microsoft's August (2308) service release for Intune introduces "Remote Help for Android," expanding remote IT assistance to Android Enterprise dedicated devices. The feature allows help desk agents to diagnose and resolve technical issues with a user’s desktop and mobile devices. The update also brings AI-powered "Settings insights" to enhance device management, anomaly detection for proactive security, and a device attestation solution for Samsung Galaxy devices. Microsoft continues to evolve its offerings with the latest August (2308) service release for Microsoft Intune. A notable highlight is the much-anticipated Remote Help for Android support, a cloud-based solution that promises to enhance the way technical issues are diagnosed and resolved. The Remote help service enables IT admins to remotely diagnose and resolve technical issues with users’ devices in real-time. It’s available as an add-on for the Microsoft Intune Suite and requires a Microsoft Intune Plan 1 license. Up until now, the service was only accessible to Windows users, but it's now also available on Android Enterprise dedicated devices. With Remote Help for Android, IT admins can manage and support FLW Android devices as well as track compliance issues. Currently, the service only supports Samsung and Zebra devices enrolled with Android Enterprise Dedicated. Remote Help includes several key capabilities such as secure cloud-based helpdesk-to-device connections, role-based access controls, and unattended access. It also lets administrators gain session insight reports and audit logs to maintain control of all endpoints. “With Remote Help for Android, you can unlock and control devices for faster fixes,... --- ### Carderbee Hackers Abuse Microsoft Signing Keys in Supply Chain Attacks - Published: 2023-08-28 - Modified: 2023-08-28 - URL: https://petri.com/carderbee-hackers-supply-chain-attacks/ - Categories: Security - Tags: hackers, Malware, News - Article Type: News Key takeaways: The Carderbee hacking group employed a novel supply chain attack, leveraging legitimate software to infiltrate around 100 computers with the malicious PlugX backdoor. The attackers managed to compromise Microsoft's digital keys to sign their rootkit malware and gain access to enterprise networks. The attack showcased a high level of strategic planning, with Carderbee selectively deploying their payload on only a fraction of compromised computers. Security researchers have exposed a new supply chain attack that targeted entities across Asia, with a particular focus on Hong Kong. An unidentified hacking group, named Carderbee, employed an ingenious tactic — exploiting legitimate software — to infect around 100 computers with the PlugX/Korplug backdoor. According to the Symantec Threat Hunter Team, the hackers hijacked Microsoft’s digital keys to sign the rootkit malware. They used a compromised version of Cobra DocGuard to gain access to victims’ corporate networks. The tool is developed by EsafeNet and it allows users to encrypt and decrypt applications to prevent tampering. Then, the hacking group delivered the signed version of the PlugX backdoor (also known as Korplug) to Cobra DocGuard customers. The backdoor allowed the attackers to run commands, enumerate files and run processes, download files, open firewall ports, as well as log keystrokes. “It seems clear that the attackers behind this activity are patient and skilled actors,” Symantec researchers wrote. “They leverage both a supply chain attack and signed malware to carry out their activity in an attempt to stay under the radar. The fact that they appear... --- ### AWS Unveils New Dedicated Local Zones Service for Critical Workloads - Published: 2023-08-25 - Modified: 2023-08-25 - URL: https://petri.com/aws-unveils-dedicated-local-zones/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Key takeaways: Amazon Web Services (AWS) announced the launch of its new Dedicated Local Zones this week. It's a robust solution for handling sensitive data and critical workloads while adhering to regulatory and compliance requirements. These zones boost efficiency by allowing multi-tenancy across AWS accounts, reducing operational burdens, and promoting collaborative cloud adoption. Amazon Web Services (AWS) recently made waves with the announcement of a new service called Dedicated Local Zones. This new on-premises cloud offering is a strategic response to the evolving needs of organizations in the public sector and other industries with stringent regulatory and compliance needs. AWS Dedicated Local Zones provide a cloud computing infrastructure that is completely managed by the cloud vendor. It operates in a customer-specified data center or location, and it’s exclusively used by the customer. The new service aims to cater to organizations that have sensitive data and applications that should run on physically separate infrastructure. The new Dedicated Local Zones offer similar capabilities that are already available for Local Zones, including scalability, elasticity, and pay-as-you-go pricing. Moreover, the service provides several security and governance features such as controls to limit infrastructure access and data access monitoring and audit programs. It’s also possible to apply security clearance and other criteria on local AWS operating personnel. “With Dedicated Local Zones, customers can use the multitenancy features of the cloud to efficiently enable adoption across multiple AWS accounts created by a customer’s community of agencies and business units, and reduce the operational overhead of managing... --- ### Microsoft Teams Premium Self-Service Trial Licenses to be Available Next Month - Published: 2023-08-25 - Modified: 2023-08-26 - URL: https://petri.com/microsoft-teams-premium-self-service-trial/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Key takeaways: Microsoft Teams users will soon be able to initiate a self-service Teams Premium trial with their Entra ID credentials. Microsoft Teams Premium, powered by OpenAI's GPT-3. 5, offers intelligent meeting recaps, real-time translations in 40 languages, and advanced security protections. The Microsoft Teams Premium self-service trial licenses will only be available for commercial customers. Microsoft has announced the imminent launch of the self-service Teams Premium trial for commercial customers. Scheduled for a global rollout in September, the self-service trial feature will give users a hands-on experience with the AI-powered Microsoft Teams Premium capabilities. What is Microsoft Teams Premium? Microsoft launched the new Teams Premium add-on for commercial customers back in October 2022. The new offering is powered by OpenAI’s GPT-3. 5 AI language model, and it includes more personalized and intelligent meeting experiences. The premium tier offers an intelligent recap feature that automatically generates notes, tasks, and highlights of meetings. Additionally, Microsoft Teams Premium provides AI-powered real-time translations from 40 spoken languages. Other meeting capabilities include custom meeting templates, branded meetings, as well as organization backgrounds and together mode scenes. Moreover, the Microsoft Teams Premium tier supports new webinar features such as virtual green rooms, registration waitlists, and customizable start and end times. Microsoft Teams Premium also brings advanced meeting protections for businesses. These include end-to-end encryption for meetings, watermarks, and support for custom user policy packages. It’s also possible to restrict users from recording meetings and copying text from the meeting chat. Microsoft Teams Premium self-service trial Once rolled... --- ### First Ring Daily: AI Boom Helps Nvidia Double its Quarterly Revenue - Published: 2023-08-25 - Modified: 2023-08-25 - URL: https://petri.com/first-ring-daily-ai-boom-nvidia-chips/ - Categories: Cloud Computing - Tags: AI, First Ring Daily, News, NVIDIA - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Nvidia doubling its revenue in Q2 thanks to high demand for AI chips, and Microsoft not planning to cut prices for Xbox hardware. --- ### Microsoft Acknowledges New "Unsupported Processor" BSOD Errors on Windows 11 - Published: 2023-08-24 - Modified: 2023-08-24 - URL: https://petri.com/microsoft-bsod-error-issues-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Key takeaways: Microsoft's optional update, KB5029351 can trigger 'Blue Screen of Death' (BSOD) errors with an "UNSUPPORTED_PROCESSOR" message for some users Users, particularly those with MSI motherboards, reported encountering the BSOD issue on Windows 10 versions 22H2 and Windows 11 versions 21H2 and 22H2. Microsoft has initiated an investigation into the matter, urging affected users to provide error reports to assist in identifying the root cause. Microsoft's latest optional update for Windows 11 version 22H2, KB5029351, designed to bring improved features and experiences, has instead left some users staring at the familiar 'Blue Screen of Death' (BSOD) accompanied by an 'UNSUPPORTED_PROCESSOR' error message. The company acknowledged the issue on the Windows Health Dashboard yesterday. “Microsoft has received reports of an issue in which users are receiving an “UNSUPPORTED_PROCESSOR” error message on a blue screen after installing updates released on August 22, 2023 ( KB5029351) and then restarting their device. KB5029351 might automatically uninstall to allow Windows to start up as expected,” Microsoft explained. In a Reddit thread, several users reported that the BSOD issue seems to specifically affect PCs with some MSI motherboards, particularly when the latest BIOS updates have been installed. Microsoft confirmed that the problem not only impacts Windows 11 version 22H2, but the version 21H2 of the OS and Windows 10 version 22H2 as well. Microsoft released these optional preview updates for Windows 11 and Windows 10 on August 22. On Windows 11 version 22H2, the company introduced a new “Enable optional updates” policy that lets IT... --- ### SQL Server Essentials: Using the SQL GROUP BY Clause > Here's how to use the SQL GROUP BY clause to arrange data into groups and perform calculations with grouped data. - Published: 2023-08-24 - Modified: 2024-12-03 - URL: https://petri.com/sql-group-by/ - Categories: SQL Server - Tags: featured-top-left, SQL Server - Article Type: How To SQL Server's T-SQL query language has a plethora of data retrieval options. That includes the ability to query a SQL database, as well as providing a sum function, a count aggregate function, and grouping columns. The SQL GROUP BY clause can make use of all of these capabilities. In this article, I'll show you how the GROUP BY clause can be used by itself or in conjunction with one of the aggregate functions to perform calculations based on the grouping. How does the SQL GROUP BY clause work? The SQL GROUP BY clause is used with the SELECT statement to arrange data into groups of identical data. It follows clause follows the WHERE clause in a SELECT statement.   This clause is most often used with aggregate functions like SUM, COUNT, AVG, MAX, or MIN, which allow you to perform calculations with grouped data. You can group the data by any of the different column types including numbers like product IDs, dates, or characters like descriptions. The basic GROUP BY syntax is quite simple: SELECT column1, aggregate_function(column2) FROM table_name GROUP BY column1; Here, you can see the GROUP BY clause used with a basic SELECT statement. The SELECT statement retrieves two columns, and the second column uses an aggregation function. The use of an aggregation function is not technically required, but it's a very common adjunct to the GROUP BY clause. The grouping will be performed on the data contained in the first column. Let’s dive in deeper and... --- ### Microsoft Entra ID Gets API-Driven Provisioning Support in Public Preview - Published: 2023-08-23 - Modified: 2023-08-23 - URL: https://petri.com/microsoft-entra-id-api-driven-provisioning/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Key takeaways: Microsoft introduces API-driven provisioning support for Microsoft Entra ID. The feature allows integration with various authoritative systems of record like HR apps, payroll apps, SQL tables, and spreadsheets. The API-driven provisioning capability is available in public preview for enterprise customers. Microsoft has announced API-driven provisioning support for Microsoft Entra ID (formerly Azure Active Directory). This new release allows businesses to seamlessly integrate their authoritative system of record with Azure AD provisioning, encompassing everything from HR and payroll apps to SQL tables and spreadsheets. The API-driven provisioning feature is designed to help organizations ensure that the HR data managed in various systems of record is synced with Microsoft Entra ID. It makes it easier for businesses to improve their security posture and stay compliant with regulatory requirements. “Customers and partners can use any automation tool of their choice to retrieve workforce data from the system of record and ingest it into Azure AD. The IT admin has full control on how the data is processed and transformed with attribute mappings. Once the workforce data is available in Azure AD, the IT admin can configure appropriate joiner-mover-leaver business processes using Lifecycle Workflows,” Microsoft explained. Microsoft Entra ID API-driven provisioning use cases Microsoft highlighted that the API-driven provisioning system could be useful for several enterprise HR integration scenarios. For instance, it enables IT admins to use any automation tool (like PowerShell scripts or Azure Logic Apps) to import HR data from sources, such as flat files, CSV files, and SQL staging... --- ### Cameyo Unveils New Solution to Run Windows Apps on ChromeOS - Published: 2023-08-23 - Modified: 2023-08-23 - URL: https://petri.com/cameyo-windows-apps-chromeos/ - Categories: Chrome OS, Windows - Tags: ChromeOS, News, Windows - Article Type: News Key takeaways: Cameyo's new integration of Virtual App Delivery with ChromeOS enables Windows and Linux apps to seamlessly operate on ChromeOS devices. This integration streamlines app accessibility, optimizing resource usage and cutting TCO by 54%. The service also enhances security, employing a Zero Trust model for isolated interactions, safeguarding users and data while enabling versatile app utilization. Cameyo has a new app accessibility feature with this latest update: a seamless integration of its Virtual App Delivery (VAD) service with ChromeOS. The service empowers organizations to traverse platform boundaries, unleashing the potential to run Windows and Linux applications on ChromeOS devices. Cameyo is a technology company that provides application virtualization solutions for organizations. It offers a platform that allows developers to package Windows applications into standalone executable files. This approach allows remote users to access these virtualized apps from any device without traditional installation. The new integration allows organizations to deploy any app (such as Windows, Linux, SaaS, and internal web apps) on Chromebooks and Chromeboxes. The service will run these applications as progressive Web apps (PWAs) alongside other apps already installed on the device. This means that users can access local files and folders within the virtual instances. Users can stream the virtual apps from the cloud or on-premises data centers. “The ChromeOS Virtual App Delivery with Cameyo service separates apps from the device, running apps completely from the cloud, enabling the service to dynamically provide the right level of resources needed to run any app. This enables organizations to... --- ### Microsoft Releases New Policy to Control Optional Updates on Windows 11 > The August optional update for Windows 11 version 22H2 introduces a new "Enable optional updates" policy giving IT pros more control over optional updates and CFRs. - Published: 2023-08-23 - Modified: 2023-08-23 - URL: https://petri.com/windows-11-enable-optional-updates-policy/ - Categories: Windows, Windows 11 - Tags: News, Windows 11 - Article Type: News Key takeaways The August optional update for Windows 11 version 22H2 introduces a new "Enable optional updates" policy for IT pros This policy can enable all optional updates, including controlled feature rollouts (CFRs) on managed devices. This policy also lets Windows 11 users can select what optional updates they want to install. Microsoft is giving IT pros more control over the optional updates available on commercial devices running Windows 11 version 22H2. That also includes what Microsoft calls “Controlled Feature Rollouts” (CFRs), which some organizations may want to keep disabled by default to maintain some stability.   These CFRs are the new Windows 11 features that Microsoft releases throughout the year. “Moment” updates for Windows 11 are part of this new "continuous innovation" paradigm, with Microsoft now releasing new Windows 11 features when they're ready. Yesterday, Microsoft released the optional non-security update for Windows 11 version 22H2 (KB5029351), and this update adds a new policy called “Enable optional updates. ” This policy will give IT pros more granular controls over how Windows 11 users will receive optional non-security updates.   Earlier this year, Microsoft introduced a new policy named “Enable features introduced via servicing that are off by default. " This policy allowed IT pros to turn on select new features that Microsoft intentionally disabled by default on managed commercial devices to not disrupt organizational productivity.     The new “Enable optional updates” policy that Microsoft introduced yesterday provides more granular controls. IT pros can choose to have users automatically receive optional updates (including Controlled... --- ### WinRAR Patches Flaw That Lets Attackers Run Malicious Code When Opening RAR Files - Published: 2023-08-22 - Modified: 2023-08-22 - URL: https://petri.com/winrar-patches-flaw-rar-files/ - Categories: Security - Tags: News, Vulnerability, WinRAR - Article Type: News Key takeaways: RARLAB has released an update for its popular WinRAR compression tool to address a high-severity security vulnerability. This flaw, discovered by the Zero Day Initiative team, allows hackers to execute arbitrary code when users open a RAR file. The security vulnerability stems from a lack of proper validation of user-supplied data within the processing of recovery volumes, enabling attackers to execute code within the current process. RARLAB has released a crucial update aimed at addressing a high-severity security loophole within its popular WinRAR compression and archiving tool. This flaw enables threat actors to execute arbitrary code upon the launch of a RAR file, thus raising significant concerns about user data safety and system integrity. The WinRAR vulnerability, tracked as CVE-2023-40477, was first discovered by the Zero Day Initiative (ZDI) team on June 8. The security flaw has been deemed critical with a CVSS severity rating of 7. 8. It enables hackers to create a RAR file and use it to execute code in the context of the current process. “The specific flaw exists within the processing of recovery volumes. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process,” Zero Day Initiative explained. Security researcher "goodbyeselene" reported the vulnerability to RARLAB in early June 2023. However, the flaw was publicly disclosed several days after the vendor released... --- ### Microsoft Edge Version 116 is Out With New Edge for Business Experience - Published: 2023-08-22 - Modified: 2023-08-23 - URL: https://petri.com/microsoft-edge-for-business-available/ - Categories: Microsoft Edge - Tags: Microsoft Edge, Microsoft Edge for Business, News - Article Type: News Key takeaways: Microsoft Edge version 116 introduces a new Edge for Business experience for enterprise customers. The feature includes enhanced IT controls encompassing compliance measures, data loss prevention, and secure access through virtual private networks (VPNs) on mobile devices. The latest update includes a novel feature to attach the Edge sidebar to the Windows desktop. Microsoft Edge has just rolled out version 116, and it's not just another humdrum update. This new version takes the enterprise experience up a notch with "Edge for Business," blending the power of secure access, enhanced IT controls, and a sidebar that users can pin to their desktops. Microsoft Edge for Business is a dedicated work experience that allows users to better separate their personal and work web browsing experiences. It comes with a dedicated icon and other visual elements to set it apart from the traditional Edge interface. The feature automatically opens all work-related sites as well as sites that require a work login will open in Edge for Business. However, automatic switching is an optional feature and it's currently limited in functionality. “With native enterprise grade security, productivity, manageability, and AI built in, Edge for Business enables organizations to maximize productivity and security, and offers the ability to create separation between work and personal browsing with automatic switching between the lightly managed personal browser window (MSA profile) and the work browser window (Microsoft Entra ID),” Microsoft explained in the release notes. With Microsoft Edge for Business, IT admins can get access to compliance... --- ### How to Use the PowerShell Get-MessageTrace Command in Office 365 > Here's how to use the PowerShell Get-MessageTrace command to manage and analyze email message traces in Office 365. - Published: 2023-08-22 - Modified: 2023-08-22 - URL: https://petri.com/powershell-get-messagetrace/ - Categories: Microsoft 365, PowerShell - Tags: Exchange Online, Office 365, PowerShell - Article Type: How To The PowerShell Get-MessageTrace command can help Office 365 admins track down the delivery and processing of email messages that may not be getting into their users' mailboxes. In this article, I'll show you how to use the Get-MessageTrace command to manage and analyze email message traces in Office 365. Using PowerShell Get-MessageTrace with Exchange Online The Get-MessageTrace cmdlet is the default method for administrators to analyze and manage email traffic within Exchange Online. However, this PowerShell command is only available in Exchange Online (part of Office 365) environments. In an Exchange on-premises environment, the Get-MessageTrace PowerShell command is not available, and your alternative is the Get-MessageTrackingLog cmdlet. The Get-MessageTrace PowerShell command provides similar functionality to its on-premises counterpart, but again, this cmdlet is specifically designed for cloud-based Office 365 environments. Exchange on-premises vs. Exchange Online message tracing: Key differences Environment: Exchange on-premises deals with an organization's own servers, while Exchange Online is a cloud-based service provided by Microsoft. Integration: In Exchange Online, the Get-MessageTrace command seamlessly integrates with Office 365's security and compliance features, while in on-premises environments, the Get-MessageTrackingLog cmdlet must be used. Authentication: The authentication methods and PowerShell sessions are managed differently due to the cloud-based nature of Exchange Online. Scalability: Exchange Online's scalability is designed to handle large email workloads without the need for on-premises hardware upgrades. Connecting to Exchange Online Here's a quick refresher: to use any Exchange Online cmdlets, you need to establish a remote PowerShell session with your Office 365 environment. Open Windows PowerShell and run the following command. Connect-ExchangeOnline Using Connect-ExchangeOnline to get connected to... --- ### Windows VMs Get Improved Microsoft Intune Support in Parallels Desktop 19 for Mac > Parallels Desktop 19 is ready for the upcoming macOS Sonoma, and it brings new ways to enrolling Windows 11 virtual machines in Microsoft Intune. - Published: 2023-08-22 - Modified: 2023-08-22 - URL: https://petri.com/parallels-desktop-19-for-mac-intune-integration/ - Categories: Virtualization, Windows - Tags: macOS, News, Parallels Desktop, Virtualisation - Article Type: News Key takeaways Parallels Desktop 19 for Mac is now available and it adds new device management capabilities for IT admins. Windows VMs created with Parallels Desktop can now be enrolled to Microsoft Intune more easily. This release also adds new developer features including x86 emulation support on ARM-based Linux VMs.   Parallels Desktop 19 for Mac is now available on macOS Mojave or newer, and it introduces more ways to manage Windows virtual machines (VMs) on Macs. Parallels Desktop for Mac is now an officially supported solution for running Windows 11 on Apple Silicon Macs (in addition to Windows 365 Cloud PCs), and for organizations interested in adding Apple Silicon Macs to their fleet, Parallels continues its work to make device management even more seamless thanks to better integrations with Microsoft Intune. Parallels Desktop 19 is ready for the upcoming macOS Sonoma, and it comes with new mass deployment options for Windows VMs on Apple Silicon Macs. For IT pros, enrolling Windows 11 virtual machines in Microsoft Intune can now be done in 3 different ways: By using Parallels deployment packages, by using Parallels My Account Configuration Profiles, or by prepackaging VMs and sharing them as a file. "Previously, to ensure that virtual Windows devices used by end-users in an organization can be enrolled in Microsoft Intune, an IT admin could use only the mass deployment scenario, which is not convenient for some types of organizations.  Parallels Desktop 19 for Mac Business Edition brings the ability to enroll Windows 11 in Intune when... --- ### Microsoft Brings Windows 365 Cloud PCs to VMware Horizon Cloud - Published: 2023-08-21 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-windows-365-vmware-horizon-cloud/ - Categories: Windows 365 - Tags: News, vmware, Windows 365 - Article Type: News Key Takeaways: Microsoft has announced a new partnership with VMware to bring its Windows 365 Cloud PCs to more customers. Microsoft launched a new solution that integrates the Windows 365 service with VMware Horizon Cloud. The integration enables users to access virtual Windows 10 or Windows 11 desktops remotely on any device. Microsoft has unveiled an ambitious new chapter in its partnership with none other than VMware. The company announced today a new solution that blends the Windows 365 service seamlessly into VMware Horizon Cloud. VMware Horizon Cloud is a managed Desktop-as-a-service (DaaS) that allows organizations to provide virtual desktops and applications to end users. It enables IT admins to create virtual instances of desktop operating systems, which can be accessed by users remotely. The service can be deployed on a variety of cloud platforms, including Microsoft Azure and Amazon Web Services (AWS). Other capabilities included in VMware Horizon Cloud are integration with existing systems, simplified management, and much more. With the new integration, enterprise customers can now access their virtual Windows 10 or Windows 11 desktops on any device remotely. Microsoft Intune lets IT admins deploy, configure, as well as manage Cloud PCs. It also helps to automate the installation process of the Horizon agent. “This collaboration brings the VMware Blast Extreme protocol and VMware gateway to Windows 365 Cloud PCs by using the same simple deployment and management capabilities that current Windows 365 customers expect—all while taking advantage of VMware's remoting features and hybrid deployment capabilities. Microsoft Intune... --- ### Microsoft Loop to Become Enabled By Default for More Customers - Published: 2023-08-21 - Modified: 2023-08-21 - URL: https://petri.com/microsoft-loop-enabled-by-default-more-customers/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Key Takeaways: Microsoft is planning to expand the availability of its Loop app to more commercial customers. The Loop app will be gradually enabled by default for Microsoft 365 Business Standard/Premium/E3/E5 customers in late September. Microsoft says IT admins can proactively control the Loop app using new compliance features. Step aside old-school collaboration tools, Microsoft's Loop app is getting ready for its debut to a broader range of Microsoft 365 users next month. Loop is set to change up the way people work with Microsoft 365, evolving the nature of work and emphasizing seamless, real-time collaboration. Microsoft Loop is a revamped version of the Microsoft Fluid technology, and it's designed with a specific focus on hybrid and remote work. The app makes it easier for team members to collaborate with each other in real time. Currently, Microsoft Loop is accessible from the web, iOS, and Android. Microsoft Loop combines three critical elements (Components, Workspaces, and Pages) into a collaborative space. Loop components are portal pieces of content that can be shared across other Microsoft 365 apps (such as Teams, Outlook, and Word on the web. Moreover, Loop pages are shared digital canvases that let users organize text, images, files, and related information. Loop workspaces are virtual spaces that allow teams to view and access shared resources related to a project. Starting in late September, Microsoft plans to begin enabling the Loop app with workspaces by default for Microsoft 365 Business Standard/Premium/E3/E5 customers. The upcoming release will let users create and... --- ### CISA Issues Advisory on Critical File Transfer Flaw in Citrix ShareFile - Published: 2023-08-18 - Modified: 2024-11-19 - URL: https://petri.com/cisa-file-transfer-flaw-citrix-sharefile/ - Categories: Security - Tags: CISA, News, Vulnerability - Article Type: News Key Takeaways: US Cybersecurity and Infrastructure Security Agency (CISA) has raised a red flag about a critical vulnerability in Citrix ShareFile. The flaw could be exploited by an unauthenticated attacker to compromise cloud-based Citrix ShareFile storage zones controllers. CISA has directed all federal agencies to apply patches for the vulnerability by September 6, 2023. US Cybersecurity and Infrastructure Security Agency (CISA) has warned about a critical vulnerability present in Citrix ShareFile. CISA has mandated that all federal agencies undertake necessary measures to apply patches for the security flaw by September 6, 2023. Citrix ShareFile is a cloud-based file sharing and storage platform that enables organizations to securely store, sync, and share files and documents. The service provides a secure environment to manage and share files with internal and external users. Citrix ShareFile offers several features such as access controls, file synchronization, audit trails, encryption, as well as integration with different productivity tools. Citrix researchers first disclosed the security vulnerability (tracked as CVE-2023-24489) back in June 2023. It ranks 9. 8 out of 10. 0 on the CVSS scale, making it critical in severity. The researchers warned that the flaw could let an unauthenticated attacker remotely compromise the cloud-based Citrix ShareFile storage zones controllers. The tool allows organizations to store and manage files in on-premises environments. GreyNoise detects a spike in attacker activity The Threat intelligence startup GreyNoise observed a significant spike in exploitation activity this week. As it turns out, the hackers can exploit a design flaw in the implementation of ShareFile’s... --- ### Microsoft Now Lets IT Admins Assign Sponsors to Entra ID Guest Accounts - Published: 2023-08-18 - Modified: 2023-08-18 - URL: https://petri.com/microsoft-entra-id-guest-accounts-sponsors/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Key Takeaways: Microsoft has released a new feature that lets IT admins assign sponsors to Entra ID guest accounts. The sponsor is a responsible individual or group that can track guest account usage within an organization. IT admins can add up to five sponsors, including a combination of accounts and groups, while inviting a new guest user. Microsoft has released a new update that enables IT admins to designate sponsors for Entra ID guest accounts. The feature launched in public preview in July, allowing organizations to appoint individuals or groups as sponsors for their guest accounts (via Office 365 for IT Pros). A sponsor is a “responsible individual” who tracks each guest account within the organization. The sponsor tracks the usage of the guest account and what access they have to corporate data. Sponsors can choose to retain the guest account or request for its removal from the tenant. “The Sponsors field on the user object refers to the person or a group who invited the guest user to the organization. You can use this field to track who invited the guest user and to help with accountability. Being a sponsor doesn't grant administrative powers for the sponsor user or the group, but it can be used for approval processes in Entitlement Management,” Microsoft explained. Microsoft notes that administrators can add up to five sponsors while inviting a new guest user, and it can be a combination of accounts and groups. If there are no sponsors in the payload, the... --- ### First Ring Daily: Bing Isn't Growing, But AI Still Has a Place - Published: 2023-08-18 - Modified: 2023-08-18 - URL: https://petri.com/first-ring-daily-bing-isnt-growing/ - Categories: Cloud Computing, Microsoft - Tags: AI, Bing, Bing Chat, First Ring Daily, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Bing's stagnating market share despite Microsoft investing over 10 billion dollars into OpenAI. --- ### Researchers Disclose PowerShell Gallery Design Flaws Vulnerable to Supply Chain Attacks - Published: 2023-08-17 - Modified: 2023-08-17 - URL: https://petri.com/microsoft-powershell-gallery-flaws/ - Categories: Security - Tags: News, PowerShell, Vulnerability - Article Type: News Key Takeaways: Security researchers have identified three vulnerabilities in the PowerShell Gallery, an online repository for PowerShell code modules, that could be exploited by hackers to upload malicious packages. The vulnerabilities could be abused for typosquatting attacks and supply chain attacks. Despite being reported to Microsoft by Aqua Nautilus researchers almost a year ago, the vulnerabilities remain unfixed, potentially leaving users exposed to security risks. Attention all IT Pros! Security researchers have unveiled three design flaws within the PowerShell Gallery, an online platform for distributing PowerShell code modules. These vulnerabilities have the potential to let malicious hackers upload harmful packages onto the repository, introducing risks such as typosquatting and supply chain attacks. Specifically, researchers at Aqua Nautilus first discovered and reported the security flaws to Microsoft almost a year ago. The company claimed that it had fixed the vulnerabilities in February 2022 and January 2023, respectively. However, the researchers found that these issues still remain unfixed. The PowerShell Gallery is a popular repository that allows users to find, publish, and share scripts, PowerShell code modules, and state configuration (DCS) resources. The packages available on the registry have been published by legitimate entities (like Microsoft, VMware, and AWS) as well as community members. It’s important to note that more than 10 billion packages have been downloaded from the repository to date. Aqua discovered that the PowerShell Gallery doesn’t protect users against typosquatting attacks. It’s a social engineering technique that lets hackers trick users into downloading malicious PowerShell modules from public repositories... . --- ### Microsoft Defender for Identity Adds New Sensor to Detect Certificate Abuse - Published: 2023-08-17 - Modified: 2023-08-17 - URL: https://petri.com/microsoft-defender-for-identity-sensor-certificate-abuse/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Key Takeaways: Microsoft Defender for Identity has introduced a new AD CS sensor to enhance the detection of suspicious certificates. Microsoft says IT admins can access alerts and recommendations through the Secure Score dashboard. The new sensor is designed to identify instances where threat actors attempt to relay NTLM authentication to AD CS servers. Microsoft Defender for Identity has added a cutting-edge addition to its toolkit – a new sensor now deployable on Active Directory Certificate Services (AD CS) servers. The sensor augments the existing capabilities, significantly enhancing the detection mechanisms for identifying questionable certificates within enterprise environments. Active Directory Certificate Services (AD CS) is a Windows Server role that allows organizations to issue digital certificates. These certificates are used to authenticate users and devices as well as ensure the integrity of data in Entra ID (formerly Azure Active Directory) environments. This capability should be particularly useful for various tasks, including securing websites with HTTPS and encrypting email communications. Microsoft explained that the new sensor enables IT admins to view alerts and recommendations through the Secure Score dashboard. Moreover, it helps to detect when threat actors relay NTLM authentication to AD CS for impersonation purposes. Additionally, Microsoft Defender for Identity now makes it easier to track audit configuration changes. It helps to prevent attempts from hackers to disable the logs to perform malicious actions. The AD CS sensor also detects and triggers alerts about the suspicious deletion of certificate requests. Microsoft Defender for Identity to detect suspicious ADCS modifications Microsoft... --- ### Microsoft Defender for Endpoint Gets Device Tagging Support for iOS and Android - Published: 2023-08-17 - Modified: 2023-08-17 - URL: https://petri.com/microsoft-defender-for-endpoint-device-tagging/ - Categories: Security - Tags: Microsoft Defender for Endpoint, News - Article Type: News Key takeaways: Microsoft Defender for Endpoint adds device tagging support in public preview for mobile devices. The feature allows IT admins to label and categorize iOS and Android devices during onboarding. These tags can be used to group devices by location, which should be helpful for administrators working across various geographical areas. Microsoft Defender for Endpoint has introduced device tagging support in public preview for mobile devices. This capability allows IT admins to tag iOS and Android devices during the onboarding process. Microsoft highlighted that tags enable administrators to label and classify devices in enterprise environments. The feature is designed to enhance searching and organization capabilities and streamlines the process of assigning rules to specific categories or groups. “In today’s reality where SOC analysts are decentralized across multiple geographical locations, this capability helps admins designate and group devices by location while ensuring that the correct role-based access control permissions are assigned to the SOC analysts responsible for that location. Tags are unique keywords set by admins to be assigned to particular devices. Admins then create device groups based on these tags,” Microsoft explained. According to Microsoft, the process to assign tags to Android and iOS devices is pretty straightforward. Specifically, IT admins can use configuration policies to configure the device tags through Microsoft Intune and then add them to mobile devices. Once installed, the Microsoft Defender app passes the tags to the Security Portal. These device tags are visible in the device inventory against onboarded devices. Microsoft notes that IT... --- ### Microsoft Releases New Exchange Server Security Updates to Fix Localization Issues - Published: 2023-08-16 - Modified: 2023-08-16 - URL: https://petri.com/microsoft-exchange-server-security-updates/ - Categories: Exchange Server - Tags: News - Article Type: News Microsoft has released a new version of the August 2023 security updates for Exchange Server. The company pulled the updates from its Windows Update servers and enterprise update channels following reports about issues with the non-English installations of Exchange Server. Microsoft released the Patch Tuesday updates for on-premises Exchange Server 2016 and 2019 on August 8, 2023. The security updates were intended to address six vulnerabilities, including an elevation of privileges flaw and two remote code execution flaws. Microsoft also fixed a spoofing vulnerability that could let malicious actors launch an NTLM Relay attack. In an updated blog post, Microsoft acknowledged that the Exchange services failed to start after installing the August 2023 security updates on non-English servers. The problem was caused by a localization issue in the Exchange Server security update installer. Microsoft provided a temporary workaround to enable the Windows servers and start Exchange Server. Microsoft released yesterday an updated August 2023 security update for Exchange Server 2016 and 2019. The company explained that IT admins would need to take actions based on their specific environment. “The updated SUs resolve the localization issue, but if you were affected by the issue and used the workaround to install the original release, you need to act,” Microsoft explained. Latest Exchange Server updates reportedly cause certificate issues In a comment on the Techcommunity post, an IT admin reported that they were unable to renew the certificate after installing version 2 of Exchange Server updates. However, there are some suggestions about how... --- ### Hackers Exploit Critical Citrix Flaw to Compromise 2,000 NetScaler Instances - Published: 2023-08-16 - Modified: 2023-08-16 - URL: https://petri.com/hackers-citrix-flaw-2000-netscaler-instances/ - Categories: Security - Tags: News, Vulnerability - Article Type: News Security researchers have disclosed a new campaign that exploited a critical Citrix NetScaler vulnerability to infect thousands of devices. They found that hackers have abused the security flaw to target around 2,000 NetScaler instances in Europe. Last month, Citrix disclosed a zero-day vulnerability, tracked as CVE-2023-3519, which impacts NetScaler Citrix Application Delivery Controller (ADC) and Gateway devices. These devices are designed to provide VPN connectivity and ensure secure application delivery in enterprise environments. Citrix warned that the remote code execution vulnerability lets attackers drop web shells on vulnerable ADC and Gateway appliances that are configured as a gateway or AAA virtual server. The company released security updates to address the vulnerability on July 18, and urged IT admins to deploy the patches in their organization. Now, British information assurance firm NCC Group has found the automated exploitation campaign, which launched between 20 and 21 July, affected over 1,950 NetScaler instances. The researchers have identified 2,500 dormant web shells on the compromised devices. The Dutch Institute of Vulnerability Disclosure notified all impacted organizations on August 10. The cybersecurity firm found that most compromised customers were based in European countries, including France, Germany, and Switzerland. It’s important to note that around 69 percent of the backdoored NetScaler instances were already patched at the time of mass exploitation. “This indicates that while most administrators were aware of the vulnerability and have since patched their NetScalers to a non-vulnerable version, they have not been (properly) checked for signs of successful exploitation. Thus, administrators may... --- ### Is AI Going to Change Backup and Recovery Strategies? > In IT, a rapidly growing number of software vendors now have some type of AI capabilities built into their tools, and this should definitely be of interest to IT pros. - Published: 2023-08-16 - Modified: 2023-08-16 - URL: https://petri.com/ai-for-backup-and-recovery/ - Categories: Backup & Storage - Tags: AI, artificial intelligence, Backup, backup and recovery, featured-top-left - Article Type: Overview If you're following industry trends, there’s no doubt that generative AI is the hottest new technology of the past year. And with Microsoft, Google, and other major tech companies jumping on this generative AI bandwagon, this trend isn’t going to be abated anytime soon. In IT, a rapidly growing number of software vendors now have some type of AI capabilities built into their tools, and this should definitely be of interest to IT pros. ChatGPT breaks the AI barrier Ever since ChatGPT managed to pass a legal bar exam, the floodgates were opened and acceptance for generative AI tools skyrocketed.  Only two months after its launch in late November of 2022, ChatGPT had reached 100 million monthly active users by January 2023. ChatGPT is a chatbot created by OpenAI, a San Francisco-based company that was co-founded by Elon Musk. Microsoft has a long-term partnership with OpenAI through a multiyear, multibillion-dollar investment to accelerate the development of AI. ChatGPT provides a conversational text-based chat interface that can be used to ask questions as well as create a huge variety of documents including job applications, curriculums, academic papers, and more. It can also be used to address education and finance problems, and it can even provide healthcare and customer service responses to common problems. ChatGPT can do a lot of things (Image credit: Petri) In addition to working with text, ChatGPT can also write and test programming code in various languages. At this current time, ChatGPT does have one significant limitation: Its... --- ### Microsoft Loop Now Lets Users Add Jira and Trello Boards > Microsoft Loop users can now add Jira and Trello boards to Loop pages and update them right from the app.  - Published: 2023-08-16 - Modified: 2023-08-16 - URL: https://petri.com/microsoft-loop-jira-trello-integration/ - Categories: Microsoft 365 - Tags: Jira, Microsoft 365, Microsoft Loop, News - Article Type: News Microsoft Loop, the company’s new online collaboration app that launched in public preview earlier this year now integrates with two popular Atlassian products, Jira and Trello. Microsoft Loop users can now add Jira and Trello boards to Loop pages and update them right from the app.   Jira, which is Atlassian’s flagship product, is a popular bug-tracking system that developers can also use for project management. Trello, which was acquired by Atlassian back in 2017, is a collaboration tool that lets teams organize projects into boards. The app is very similar to Microsoft Planner.   https://twitter. com/MicrosoftLoop/status/1691087283477229568 Microsoft Loop works as a collaborative canvas where people can collaborate in real-time using Loop components. These components can be shared across other Microsoft 365 apps such as Teams, Outlook, and Word on the web, where they will continue to update in real time. As of today, Microsoft Loop is accessible from the web, Android, and iOS. The app supports both personal Microsoft accounts and Azure AD accounts, though it needs to be enabled by IT admins. Even though Microsoft Loop is still in preview, the company recently made the app easier to deploy, and it’s also now available to download as a PWA from the Microsoft Store.   Microsoft Loop to get more integrations with third-party apps “This is just the first step towards more exciting integrations coming your way,” the Microsoft Loop team said in the Twitter/X message announcing the news. In the replies to this message, the team teased that Microsoft Loop users may... --- ### AWS CodePipeline Introduces Support for GitLab - Published: 2023-08-15 - Modified: 2023-08-15 - URL: https://petri.com/aws-codepipeline-support-gitlab/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Amazon Web Services (AWS) has introduced support for GitLab in its AWS CodePipeline service. This release allows developers to leverage their GitLab. com source repository to build, test, and deploy code changes with AWS CodePipeline. AWS CodePipeline is a fully managed continuous integration and continuous delivery (CI/CD) service. It’s designed to automate and streamline the process of building, testing, and deploying software applications. It also lets developers gain detailed insights into release status, integrate the apps with their preferred tools, and perform other actions. Additionally, AWS CodePipeline offers several features to increase the speed, efficiency, and productivity of software developers. These include workflow modeling capabilities, parallel execution, as well as support for custom plugins, notifications, and access control. Up until now, AWS CodePipeline supported integrations with a variety of source code repositories such as Bitbucket Cloud, AWS CodeCommit, GitHub. com, and GitHub Enterprise Server. The latest release allows developers to use AWS CodeStar Connections to connect their GitLab. com accounts. The feature detects the changes in the repository and automatically starts pipeline execution. AWS CodePipeline’s GitLab support availability Amazon Web Services mentioned that the new GitLab integration is available in several AWS CodePipeline-supported regions. However, the feature is not available in Europe (Zurich), Africa (Cape Town), the Asia Pacific (Hong Kong), the Middle East (Bahrain), AWS GovCloud (US-East), and AWS GovCloud (US-West) Regions. Overall, GitLab integration is a welcome addition that should make it easier for developer teams to collaborate and streamline the software development process. We invite you to check out this... --- ### Azure Firewall Adds New Resource Health and Latency Probe Metric Features - Published: 2023-08-15 - Modified: 2023-08-15 - URL: https://petri.com/azure-firewall-resource-health-latency-probe-metric/ - Categories: Microsoft Azure - Tags: Azure Firewall, News - Article Type: News Microsoft has announced some new monitoring and logging capabilities for Azure Firewall. The first new feature that the company highlighted today is a public preview of the new Resource Health section. Azure Resource Health enables IT admins to monitor the overall health of their Azure Firewall system. The feature makes it easier for administrators to detect and address service problems that may impact their Azure resources. Azure Firewall Resource Health performs several checks based on the resource type. These checks are designed to deal with three types of issues, including unplanned events, planned events, and events triggered by user actions. “Resource Health allows IT teams to receive proactive notifications regarding potential health degradations and recommended mitigation actions for each health event type. For instance, you can determine if the firewall is running as expected with an "Available" status or if there was downtime due to platform events with an "Unavailable" status,” Microsoft explained. Microsoft also announced that the Latency Probe metric feature is generally available for Azure Firewall. It lets IT admins measure the overall latency and gain insights into the health of the Azure Firewall service. The new tool, which is powered by the Ping Mesh technology, measures the average latency of the ping packets to the firewall. Azure Firewall adds Embedded Firewall Workbooks in public preview Last but not least, Microsoft has released the Azure Firewall Workbook in public preview for commercial customers. The feature helps administrators to gain valuable insights from Azure Firewall events and examine network... --- ### Microsoft 365 Universal Print Gets QR Code Scanning Support on Android and iOS - Published: 2023-08-15 - Modified: 2023-08-16 - URL: https://petri.com/universal-print-qr-code-scanning-android-ios/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has released a new update that brings enhancements to its Universal Print service. The company announced that the secure release feature now supports QR codes on Android and iOS devices. Universal Print is a cloud-based service that allows IT admins to centralize print management within their organization. They can control which employees have access to specific printers, view printer properties, as well as manage default settings. The service eliminates the need for on-premises print servers and printer management in cloud or hybrid environments. The secure release feature requires employees to go to the printer and verify their identity with attestation methods (such as a PIN). They can use the Microsoft 365 app to scan a QR code attached to the printer and release a print job on Android or iOS devices. “Unlike other secure release solutions like badge release, which require high-end printers and badge readers, QR code release works as long as your end-users have the Microsoft 365 app on their mobile devices and are authenticated to Microsoft Entra ID (Azure AD),” Microsoft explained. Microsoft highlighted that secure release should reduce toner and printer waste from unnecessary printing. Moreover, the feature offers a couple of security and privacy benefits for enterprise customers. It prevents unauthorized people from accessing potentially sensitive data exposed in a print pile. How to enable Universal Print secure release with QR code To enable secure release with QR code support, IT admins will need to configure the release type for the printer in the... --- ### US Government to Investigate Chinese Hack That Breached Exchange Online - Published: 2023-08-14 - Modified: 2023-08-14 - URL: https://petri.com/us-government-investigate-exchange-online-breach/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News The Cyber Security Review Board (CSRB) has recently announced that it will investigate the recent compromise of Exchange Online used by the US government. The board also plans to conduct a review of the identity and authentication infrastructure used by cloud providers. Last month, Microsoft confirmed that China state-backed hackers (dubbed 'Storm-0558') breached the email accounts of 25 organizations. The threat actors stole a sensitive signing key that allowed unauthorized access to government and enterprise email accounts. The China-based threat actor had operated since May 15, but the FCEB agency detected the activity and notified Microsoft in mid-June. The security incident reportedly impacted US Commerce Secretary Gina Raimondo and other State and Commerce Department officials. In response to the criticism, Microsoft announced that it would provide all customers free access to cloud security logs in September. CSRB's findings to help bolster cloud security CSRB plans to explore how organizations and government agencies can improve cloud-based identity management and authentication. CISA director Jen Easterly said the findings would help to boost cyber security across cloud environments. “Organizations of all kinds are increasingly reliant on cloud computing to deliver services to the American people, which makes it imperative that we understand the vulnerabilities of that technology,” said Secretary of Homeland Security Alejandro N. Mayorkas. “Cloud security is the backbone of some of our most critical systems, from our e-commerce platforms to our communication tools to our critical infrastructure. ” Two years ago, President Biden formed the Cyber Safety Review Board (CSRB) to review... --- ### What is Azure Data Studio? > Here's how Azure Data Studio works, how it differs from SQL Server Management Studio, and how you can download and install it on your PC. - Published: 2023-08-14 - Modified: 2023-08-15 - URL: https://petri.com/azure-data-studio/ - Categories: Azure, Cloud Computing - Tags: Azure, Azure Data Studio, SQL Server - Article Type: Overview Azure Data Studio is a database management tool from Microsoft. It offers a modern and user-friendly UI for performing several database operations and building customizable dashboards. In this article, I’ll explain how Azure Data Studio works, how it differs from SQL Server Management Studio, and how you can download and install it on your PC. What is Azure Data Studio? Azure Data Studio is a free, open-source, and cross-platform database tool. It works with both on-premises and cloud-based data platforms, and it provides developers and organizations with a unified interface to work with different data sources. Azure Data Studio supports several data platforms such as Azure SQL Database, PostgreSQL, Microsoft SQL Server, MySQL, and more. The list of supported languages also includes SQL, T-SQL, PowerShell, Python, KQL, Apache Spark, and PySpark. On top of providing many data-related features, Azure Data Studio also supports code editing, source control, and extension support for customization. Moreover, the app’s modern query editor can help you in simplifying data-related workflows and visualize complex data. The Azure Data Studio database dashboard (Image credit: Microsoft) Azure Data Studio also offers advanced security protections to safeguard sensitive information. Other built-in features include keyword completion, code snippets, code navigation, and source control integration What is Azure Data Studio used for?       Many data engineers, analysts, and system admins use Azure Data Studio as an end-to-end database management tool. The app also offers developer-friendly features such as version controlling, code management, and more. Below are the main use cases... --- ### Microsoft Defender for Endpoint Now Supports Mixed Licensing Scenarios - Published: 2023-08-14 - Modified: 2023-08-14 - URL: https://petri.com/microsoft-defender-for-endpoint-mixed-licensing/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News - Article Type: News Microsoft has introduced support for mixed licensing in its Microsoft Defender for Endpoint solution. The new capability allows IT admins to control how licenses are applied to client devices in enterprise environments. Microsoft Defender for Endpoint is a security solution that provides threat detection and response capabilities to protect endpoints (such as laptops, computers, and servers). Up until now, Microsoft Defender for Endpoint didn’t provide support for mixed licensing scenarios. The highest functional subscription would be given priority in the case of multiple subscriptions. With mixed licensing support, customers can use different Microsoft Defender for Endpoint licenses on different devices without configuring multiple subscriptions. This means that organizations can use a combination of Defender for Endpoint Plan 1 and Plan 2 licenses. IT administrators can access a report with information about the current license state and usage. According to Microsoft, mixed licensing support should help organizations to optimize license usage and save costs. The new capability also makes it easier to ensure compliance with licenses in enterprise environments. Microsoft Defender for Endpoint’s mixed licensing support available in preview Microsoft has acknowledged a couple of limitations as well. Currently, mixed-mode settings only apply to client endpoints. Moreover, it’s not possible to assign user licenses in the Microsoft 365 admin center for mixed-licensing scenarios. Microsoft noted that mixed-license scenarios are not supported for Microsoft Defender for Business. Microsoft says that mixed-licensing support is currently available in public preview for Defender for Endpoint. However, organizations should have active trial or paid licenses for... --- ### Microsoft Integrates Copilot into Dynamics 365 Field Service App for Frontline Workers - Published: 2023-08-11 - Modified: 2023-08-11 - URL: https://petri.com/microsoft-copilot-dynamics-365-field-service/ - Categories: Dynamics 365 - Tags: Dynamics 365, Microsoft 365, News - Article Type: News Microsoft has announced that it’s bringing the Copilot AI assistant to apps used by frontline workers. The company has launched a public preview of Copilot integration in its Dynamics 365 Field Service application. Microsoft explained that the new Copilot for Dynamics 365 Field Service helps frontline workers (such as technicians and retail workers) save time while creating work orders. The Copilot works with Microsoft Outlook to pull together relevant data into draft work orders. “Copilot pre-populates relevant data, including summaries of customer escalations, into draft work orders for managers to review in their flow of work. Once saved, these work orders automatically sync to Microsoft Dynamics 365 Field Service,” said Microsoft’s Lili Cheng, CVP for business applications and platform. Later this fall, Copilot for Dynamics 365 Field Service will offer scheduling recommendations based on details like availability, travel time, and skillset. Moreover, the tool will be able to provide a summary of customer messages. Frontline workers will also be able to interact with the chatbot in Microsoft Teams. Microsoft unveils new Dynamics 365 Field Service mobile experience Microsoft unveiled a new Dynamics 365 mobile experience for frontline workers. It offers Dynamics 365 Guides integration, access to Dynamics 365 Remote Assist, and step-by-step guides with images and videos. Microsoft Dynamics 365 Remote Assist is also accessible via the Teams app on Android and iOS devices. It uses 3D annotations to let frontline workers access remote experts. Microsoft has also announced a new Shifts plugin for Microsoft 365 Copilot. It will let... --- ### How to Install SQL Server Containers on Linux Using Docker > One of the advantages of running an application like SQL Server in a container is that no installation is required. Here's how to configure SQL Server Docker containers on Linux. - Published: 2023-08-11 - Modified: 2023-08-11 - URL: https://petri.com/sql-server-docker/ - Categories: Linux, SQL Server - Tags: Docker, SQL Server - Article Type: How To Microsoft has officially supported running SQL Server in a container since SQL Server 2017. Today, most support is for SQL Server on Linux containers, and Microsoft only supports SQL Server 2022 on Linux containers for production workloads. In this article, I'll show you how to configure SQL Server Docker containers on Linux. Why would you want to install SQL Server containers with Docker? Over the past several years, containerization platforms like Docker have emerged as a popular way to run various applications. Containers are essentially like virtualization at the application level. Unlike a virtual machine that provides virtualization at the hardware level, containers provide virtualization at the application level, and all containers that run on a given system share the same underlying hardware and operating system. This makes containers a much lighter-weight implementation than a VM. One of the big advantages of running an application like SQL Server in a container is that no installation process is required. A SQL Server database instance can be up and running as soon as the container starts. Another big advantage is the container image is always the same whenever the container starts. Applications like SQL Server persist data outside of the container by using external volume storage. For SQL Server 2022, SQL Server deployments in Windows containers are not supported. You can create your own custom SQL Server Windows containers but they should be restricted to development and testing. Installing Docker on Ubuntu 20. 04 Ubuntu is one of the most popular platforms... --- ### Remote Help to Add Support for Android Devices This Month - Published: 2023-08-11 - Modified: 2023-08-11 - URL: https://petri.com/remote-help-support-android-devices/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Last year, Microsoft introduced a new Remote Help solution for the Microsoft Intune Suite. The company announced yesterday that the Remote Help app is coming to Android devices this month. Remote Help is a cloud-based solution that allows helpdesk agents to remotely connect to the user’s device and troubleshoot issues. The service is available as an add-on for the Microsoft Intune Suite, and it requires a Microsoft Intune Plan 1 license. The Remote Help app will only support Samsung and Zebra devices enrolled with Android Enterprise Dedicated. It will provide several key capabilities, including Role-based access control (RBAC) and permissions. The feature will let IT admins ensure that only authorized personnel have access to sensitive information on Android devices. It will also be possible to define allowed actions and set parameters for a specific helpdesk associate's role. Unattended access The Remote Help app will add support for unattended access on Android devices. The feature will allow IT teams to connect to devices even when the user is not present on the device. The unattended access feature should make it easier to troubleshoot issues and perform maintenance activities outside of business hours. Remote access setup Microsoft notes that administrators can deploy the Remote Help app through the Intune admin center without any user interaction. However, users will first need to activate the Knox license and provide remote access permissions on Samsung devices. Similarly, Zebra users will need to use OEMConfig to grant remote access permissions on their devices. Remote Help to... --- ### First Ring Daily: Selling the Chips - Published: 2023-08-11 - Modified: 2023-08-11 - URL: https://petri.com/first-ring-daily-selling-the-chips/ - Categories: Hardware - Tags: First Ring Daily, Intel, News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss the new 'Downfall' vulnerability affecting older Intel CPUs, Microsoft's modernized File Explorer on Windows 11, and the company's potential trick for selling more new PCs. --- ### Microsoft Entra ID to Start Delivering MFA Text Messages Through WhatsApp - Published: 2023-08-10 - Modified: 2023-08-10 - URL: https://petri.com/microsoft-entra-id-mfa-text-messages-whatsapp/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Microsoft Entra ID will soon start delivering multifactor authentication (MFA) text messages through WhatsApp. The company announced on the Microsoft 365 Admin Center yesterday that this update will begin rolling out to customers in select markets next month. As of today, the Microsoft Entra ID Multifactor Authentication feature uses text messages to send one-time passcodes (OTPs). Users can access the messages in the default messaging app on their Android and iOS devices. They need to enter the OTP into the sign-in page to complete the verification process. Starting in September, Microsoft Entra ID customers will begin receiving Multifactor Authentication text messages via WhatsApp. “Only users that are enabled to receive MFA text messages and already have WhatsApp on their phone will get this experience. The initial set of users will receive the update by mid-October, however further rollout is expected to take an extended period of time,” the company explained on the Microsoft 365 admin center. “The sender agent in WhatsApp where users will see the OTPs will be branded as Microsoft with a verified checkmark. ” Microsoft Entra ID to expand WhatsApp message verification support later this year At launch, the new WhatsApp MFA message verification support will only be available for enterprise customers in India, Indonesia, and New Zealand. Microsoft says that IT admins will be able to block this capability by disabling text messages as an authentication method in their tenants. Meanwhile, the company plans to expand support to other countries in October or November. Last month, Microsoft... --- ### Microsoft Defender for Cloud Adds New Security Features to Block Threats - Published: 2023-08-10 - Modified: 2023-08-10 - URL: https://petri.com/microsoft-defender-for-cloud-security-features/ - Categories: Security - Tags: Microsoft Defender for Cloud, News - Article Type: News Microsoft announced yesterday several new capabilities coming to Microsoft Defender for Cloud. The latest updates are designed to help organizations proactively reduce risks and respond to security threats. Microsoft Defender Cloud Security Posture Management will extend its data-aware security posture, advanced agentless scanning, attack path analysis, and cloud security graph capabilities to Google Cloud Platform (GCP) on August 15. This release will offer a single contextual view of cloud risks across Microsoft Azure, Amazon Web Services (AWS), GCP, and hybrid environments. Microsoft also plans to bring sensitive data discovery capabilities to GCP Cloud Storage. “With this advancement, customers will be able to discover all their GCP Cloud Storage buckets, identify more than 100 sensitive information types, and assess their data security posture through cloud security graph queries and attack path analysis. Now customers can identify potentially sensitive data exposure risks across Azure, AWS, and GCP storage resources and harden their multi-cloud data security posture,” Vasu Jakkal, CVP, Security, Compliance, Identity, and Management. Malware scanning capabilities coming to Microsoft Defender for Storage The malware scanning feature, which is currently in preview, will become generally available for Microsoft Defender for Storage on September 1. The security feature provides an additional layer of security to project storage accounts against malware infection. It automatically scans all content uploaded to Azure Blob Storage for metamorphic and polymorphic malware. Microsoft Defender Vulnerability Management is now available as a standalone solution. This release lets organizations purchase it separately to secure managed and unmanaged devices. Microsoft has announced... --- ### How to Add, Change, and Remove Mailbox Folder Permissions With PowerShell in Office 365 > how to add, change, and remove mailbox folder permissions using the PowerShell Add-MailboxFolderPermission and Set-MailboxFolderPermission cmdlets. - Published: 2023-08-10 - Modified: 2023-08-10 - URL: https://petri.com/mailboxfolderpermission/ - Categories: Microsoft 365 - Tags: mailboxes, Microsoft 365 - Article Type: How To For IT administrators managing Office 365 and Exchange Server, having control over mailbox folder-level permissions is a crucial task. PowerShell, a powerful scripting language developed by Microsoft, offers a convenient and efficient way to control access to specific mailbox folders for users within an organization, including the calendar folder. In this article, I will detail how to add, change, and remove mailbox folder permissions using the PowerShell Add-MailboxFolderPermission and Set-MailboxFolderPermission cmdlets. Understanding mailbox folder permissions Before we dive into PowerShell commands, let me explain how mailbox folder permissions work in Office 365. Mailbox folder permissions refer to the rights granted to users to access specific folders and subfolders within another user's mailbox. These permissions can range from simple read-only access to full control, depending on the level of access required. Remember that calendar permissions are included here as the "Calendar" is simply another folder in a user's mailbox. The primary mailbox folder permission types Here are the primary types of mailbox folder permissions: ReadItems: Allows the user to read items within the folder. FolderVisible: This enables the user to see the folder in the mailbox's folder list. CreateItems: Permits the user to create items within the folder. EditOwnedItems: Grants the user the ability to edit items they've created within the folder. DeleteOwnedItems: Allows the user to delete items they've created within the folder. EditAllItems: Provides the user with the capability to edit all items within the folder. DeleteAllItems: Permits the user to delete all items within the folder. FolderContact:... --- ### Microsoft Entra ID Conditional Access Gets Protected Actions Support to Boost Security - Published: 2023-08-09 - Modified: 2023-08-09 - URL: https://petri.com/microsoft-entra-id-conditional-access-protected-actions/ - Categories: Active Directory (AD) - Tags: Microsoft Entra ID, News - Article Type: News Microsoft has announced that Conditional Access for protected actions support is now generally available for Entra ID (Azure AD) customers. The new security feature enables IT admins to use Conditional Access policies to protect critical administrative operations. In Microsoft Entra ID (previously known as Azure AD), the Protected Actions feature provides additional protection by assigning Conditional Access policies to specific permissions. The Protected Actions feature helps organizations to reduce the risk of unauthorized access and potential security breaches. “With Conditional Access for protected actions, organizations can now add an extra layer of protection to these sensitive operations by defining granular policies that specify the conditions under which users can perform protected actions. For example, organizations can require administrators to complete phishing-resistant multi-factor authentication (MFA), use a compliant device, or be in a trusted location before modifying a conditional access policy,” Microsoft explained. Microsoft Entra ID supports a limited set of protected actions Currently, protected actions can be applied to a limited set of permissions in Microsoft Entra ID. These include Conditional Access policy management, custom rules that define network locations, and protected action management. Microsoft will continue to listen to customer feedback to expand the set of protected actions, including Cross-tenant access settings management and Microsoft Entra Connect management. Microsoft highlighted that the new Conditional Access for protected actions support should help organizations to enhance their overall security posture. The feature prevents threat actors from changing federation trust settings, adding credentials to an application, or altering conditional access policies. If... --- ### Windows 365 Switch Now Available in Public Preview - Published: 2023-08-09 - Modified: 2023-08-09 - URL: https://petri.com/windows-365-switch-public-preview/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft has announced the public preview of its Windows 365 Switch service. The new offering allows users to switch between their Windows 365 Cloud PC and physical device on Windows 11. “Windows 365 Switch provides the ability to easily move between a Windows 365 Cloud PC and the local desktop using the same familiar keyboard commands, as well as a mouse-click or a swipe gesture. Windows 365 Switch enables a seamless experience from within Windows 11 via the Task view feature. Windows 365 will be required on the endpoint, after which all relevant elements will show up automatically inside the Task view feature,” Microsoft explained. How to set up Windows 365 Switch To get started with Windows 365 Switch, users will need to enroll their local and Cloud PCs into the Windows Insider Beta Channel. Then, Windows 11 users will install the Windows 365 app (version 1. 3. 177. 0 or newer) from the Microsoft Store. IT admins can choose to deploy the app through Microsoft Intune. However, users may need to wait for a couple of hours to use the Windows 365 Switch experience on their PCs. Once installed, Windows 11 users will need to click the Connect icon at the bottom of the screen to launch the Windows 365 Cloud PC. Similarly, they can use the Task view to switch back to the local PC within a few seconds. Microsoft notes that the Windows 365 Switch experience is available for Windows 11 Pro or Enterprise customers. This capability should be useful... --- ### August 2023 Patch Tuesday Updates are Now Available on Windows 11 and Windows 10 > Microsoft has released today the August 2023 Patch Tuesday updates for Windows 11 and Windows 10, which include fixes for over 80 vulnerabilities. - Published: 2023-08-08 - Modified: 2024-11-19 - URL: https://petri.com/august-2023-patch-tuesday-windows-11/ - Categories: Windows, Windows 10, Windows 11 - Tags: News, Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released today the August 2023 Patch Tuesday updates for Windows 11 and Windows 10. This month, Microsoft fixed 86 vulnerabilities in Windows, Office, and other components, and you can also expect the usual bug fixes and quality improvements. After the July Patch Tuesday update for Windows 11 version 22H2 enabled the new “Moment 3” features on the latest version of Windows, we’ll likely need to wait until Windows 11 version 23H2 ships later this fall to see new features come to the OS. Microsoft already announced that the next annual update for Windows 11 will be released as an enablement package, which should guarantee a seamless update process for organizations August 2023 Patch Tuesday updates fix over 80 vulnerabilities As pointed out by the Zero Day Initiative, Microsoft released a total of 86 patches today, with fixes for six critical vulnerabilities. None of them are already being exploited by attackers, however.   Here are the most important vulnerabilities you should know about this month: CVE-2023-35385/36910/36911: These three Microsoft Message Queuing Remote Code Execution vulnerabilities could allow unauthenticated attackers to remotely execute code on the target server. However, the Windows message queuing service needs to be enabled to make systems vulnerable, and this feature can be enabled from the Control Panel.   CVE-2023-29328/29330: These two Microsoft Teams Remote Code Execution vulnerabilities require attackers to trick victims into joining a Teams meeting which would enable them to perform remote code execution. CVE-2023-21709: This Microsoft Exchange Server Elevation of Privilege vulnerability could allow... --- ### Microsoft Releases New Windows 365 Features for Enterprise Customers - Published: 2023-08-08 - Modified: 2023-08-08 - URL: https://petri.com/microsoft-windows-365-enterprise/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft has released the July 2023 update for its Windows 365 Enterprise service. The company announced that the new Move Cloud PC feature is now generally available for commercial customers. Microsoft first released the Move Cloud PC feature in public preview back in June. It enables administrators to move their Windows 365 Cloud PCs to a new region or Azure network connection (ANC). “The best time to perform moves is over the weekend to make sure the impact to users is minimized. Cloud PC's will be shutdown during the move process, so you should notify your users before the move so that they can save their work and sign-off. New Cloud PCs created by the edited provisioning policy are assigned to the new region or ANC,” Microsoft explained. Microsoft has introduced a new setting that lets users reprovision their own Cloud PCs. Once enabled, users in the assigned group will see a Reset option in the Windows 365 app and web portal. The feature will automatically delete all apps and user data stored on the Windows 365 Cloud PC. Windows 365 web client adds camera support in preview Microsoft released a new feature that allows Windows 365 Cloud PCs to access their physical device’s camera. This release makes it easier for users to participate in video calls and virtual meetings. As of this writing, camera support is available in public preview for the Windows 365 web client. Last month, Microsoft rolled out a new Windows 365 Boot feature in public... --- ### Bing Chat Enterprise Service Plan Coming to Microsoft 365 Subscriptions Next Month - Published: 2023-08-08 - Modified: 2023-08-08 - URL: https://petri.com/bing-chat-enterprise-service-plan/ - Categories: Active Directory (AD) - Tags: Microsoft 365, News - Article Type: News Last month, Microsoft launched its new Bing Chat Enterprise service in preview for commercial customers. The company has announced on the Microsoft 365 Admin Center that the Bing Chat Enterprise service plan will be available for Microsoft 365 subscribers next month. Bing Chat Enterprise is an AI-powered chatbot that offers business-focused data privacy and governance controls. It provides a high level of protection for organizations with security and privacy concerns. The chatbot is designed to ensure that sensitive corporate data remains secure within the organization. According to Microsoft, Bing Chat Enterprise provides relevant and detailed responses based on current information. For instance, employees can ask questions about internal documents, create product sheets, as well as write code. “Just like Bing Chat, Bing Chat Enterprise is grounded in web data and provides complete, verifiable answers with citations, along with visual answers that include graphs, charts and images, and is designed in line with our AI principles,” Microsoft explained. Bing Chat Enterprise to be enabled by default Later this month, Microsoft plans to enable Bing Chat Enterprise by default for commercial customers. As part of the rollout, the company will update Microsoft 365 subscriptions with the new Bing Chat Enterprise service plan. This release will let employees access the chatbot when signed into Bing. com/chat and Microsoft Edge with work accounts. The service plan will also enable IT admins to control access to Bing Chat Enterprise at the user level. The new Bing Chat Enterprise service plan will begin rolling out to organizations... --- ### Microsoft Syntex Gets New Features, Drops Price for Unstructured Document Processing - Published: 2023-08-07 - Modified: 2023-08-08 - URL: https://petri.com/microsoft-syntex-unstructured-document-processing/ - Categories: Microsoft 365 - Tags: featured-top-right, Microsoft 365, News - Article Type: News Last year, Microsoft launched its new Syntex service that uses AI to organize large sets of data and unorganized content for searching. Now, the company has announced several new features and enhancements for Microsoft Syntex. Microsoft has reduced the cost of unstructured document processing from $0. 10 to $0. 05 per page. The company has also released a new Syntex add-on service called SharePoint Advanced Management (SAM). It’s currently available as a per-user license with advanced security and content management capabilities for organizations. “With the exponential content growth across every industry, it’s increasingly important to manage and govern your digital estate diligently. SAM addresses access permissions and content lifecycle management, particularly given organizational challenges such assite content sprawl and oversharing,” Microsoft explained. SharePoint Advanced Management Microsoft Syntex gets new pay-as-you-go services Microsoft has announced the general availability of several pay-as-you-go services in Microsoft Syntex. With Syntex Content Assembly, organizations can streamline their repetitive content generation processes such as business proposals, invoices, and statements. The Syntex Image Tagging feature lets customers assign descriptive keywords to images to speed up the searching process. The Syntex Taxonomy tagging feature analyzes the content and the taxonomy to automatically identify tags for SharePoint documents. This capability is expected to become generally available in the next few weeks. Microsoft has added support for Syntex Optical Character Recognition (OCR) in public preview. It allows users to extract text from images shared in Teams messages, OneDrive, Exchange, and SharePoint. Later this year, Syntex Translation will let customers translate documents in... --- ### GitHub Copilot Adds New Code Referencing Feature in Private Beta - Published: 2023-08-07 - Modified: 2024-11-19 - URL: https://petri.com/github-copilot-code-referencing/ - Categories: Developer - Tags: development, GitHub, GitHub Copilot, News - Article Type: News Microsoft-owned GitHub has released a new code referencing tool for GitHub Copilot. The new feature will inform developers when AI-powered code suggestions are taken from public repositories. GitHub first unveiled the Copilot tool back in June 2021. The AI programming assistant allows developers to get code suggestions with natural language commands. Copilot has been trained on billions of lines of code from public repositories and other sources. The tool has been found to reproduce long sections of licensed code without providing credits to its authors. Microsoft, GitHub, and OpenAI have been sued for violating federal copyright law and state business laws. The developers argued that GitHub Copilot generates code suggestions that are identical to its training data. How GitHub Copilot code referencing feature works? With code referencing, GitHub Copilot checks code suggestions against all public repositories on the platform. The feature shows code matches with information about each repository in the editor’s sidebar. It’s up to the developers to either accept or reject the suggestion or ask GitHub Copilot to rewrite the code. “Some want to learn from others’ work, others may want to take a dependency rather than introduce new app logic, and still others want to give or receive credit for similar work. Whatever the reason, it’s nice to know when similar code is out there,” GitHub explained in a blog post. According to GitHub, the code matches would occur in less than 1 percent of GitHub Copilot's suggestions. However, the code referencing tool should help to improve... --- ### Microsoft Patches Critical Azure Flaw Following Criticism for 'Irresponsible' Security Practices - Published: 2023-08-07 - Modified: 2023-08-07 - URL: https://petri.com/microsoft-patches-azure-flaw-criticism/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News, Security - Article Type: News Microsoft has fixed a critical vulnerability that could let hackers gain unauthorized access to sensitive data and cross-tenant applications managed by Azure AD. The fix comes shortly after security researchers criticized Microsoft for its "grossly irresponsible" cybersecurity practices. In a post on LinkedIn, Amit Yoran, the CEO of the security firm Tenable, called out Microsoft for failing to address a vulnerability in its Azure platform. It enabled Chinese state-sponsored hackers to steal hundreds of thousands of emails from cloud customers. They obtained an encryption key that granted access to various other Microsoft cloud services. The Tenable security team discovered and reported the security issue to Microsoft back in March. The researchers found that it could give threat actors access to sensitive information, including bank details. Microsoft took over three months to partially address the security vulnerability. The company initially planned to deploy a comprehensive fix by the end of September. Attack flow Power Platform bug (Source: Tenable) Microsoft says Azure vulnerability affected a small subset of customers Last week, Microsoft rolled out a fix to address the issue for all Azure customers worldwide. The Microsoft Security Response Center team explained that the flaw impacted a "small subset" of customers, but it could lead to unintended information disclosure. Microsoft has notified all impacted organizations through the Microsoft 365 Admin Center. However, the Tenable security team believes that the fix is only applicable to new Power Apps and Power Automation custom connectors. “Microsoft also appreciates the security community’s research and disclosure of... --- ### How to Increase the Attachment Size Limit in Microsoft Outlook > Microsoft's Outlook app limits the size of email attachments by default. Here's how to increase the Outlook attachment size limit using Regedit and PowerShell - Published: 2023-08-07 - Modified: 2023-08-07 - URL: https://petri.com/outlook-attachment-size-limit/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, Microsoft Outlook, Outlook - Article Type: How To By default, Microsoft Outlook prevents users from sending emails with attachments larger than 20 MB. This means that users may receive an error message while attaching files that exceed the allowed limit. In this guide, I will detail different methods to increase the Outlook attachment size limit. How to increase the Outlook Attachment Size Limit in the Registry Editor Microsoft Outlook and other popular email providers limit the size of files that can be attached to email messages. This limit is imposed by default because email servers have limited resources such as processing power and storage space. Moreover, sending and receiving large files increases bandwidth consumption, and that could slow down the email delivery and retrieval process. This situation could be problematic in enterprise environments where there is a heavy load on email servers. To increase the Outlook attachment size limit via the Registry Editor, you will need to follow the steps listed below: First, press Windows + R to open the Run dialog box. Type regedit and click the OK button. Opening the Registry Editor (Image credit: Petri/Rabia Noureen) At this point, you may be prompted to allow the Registry Editor to make changes to the registry. Select Yes. In the Registry Editor, navigate to the following keys in the registry tree that corresponds to the installed version of Microsoft Outlook: Outlook 2016: HKEY_CURRENT_USER \ Software \ Microsoft \ Office \ 16. 0 \ Outlook \ Preferences Outlook 2013: HKEY_CURRENT_USER \ Software \ Microsoft \ Office \ 15. 0 \... --- ### Subscribe to 'This Week in IT' on YouTube - Published: 2023-08-04 - Modified: 2023-08-04 - URL: https://petri.com/subscribe-this-week-in-it-youtube/ - Categories: Microsoft 365, Windows - Tags: featured-top-left, Microsoft 365, SharePoint, Windows, Windows 11, Windows Server This Week in IT now has its own YouTube Channel! If you have been watching This Week in IT since it started more than a year ago, you will probably realize that home was the Petri IT Knowledgebase YouTube channel. This Week in IT on YouTube We recently decided that it would be nice to give the show its own identity and shake up the show a little. As part of the branding exercise, I will be covering news on Microsoft 365 and Windows - instead of the wider tech focus that it had previously. Each show covers news from the past week and lasts around 10 minutes. I will be looking at all the important announcements from Microsoft 365, Windows, and Windows Server. Including changes rolling out to Microsoft 365 tenants, upcoming features added to Windows Insider builds and Stable Channel releases of the OS, and all the important news that might affect the day-to-day work of IT Pros. This Week in IT episode 75 - Microsoft Teams: Deploy Teams 2. 0 with M365 Apps! In this week's episode, I discuss news about Teams version 2. 0! Microsoft has announced plans to make the new client app more widely available. Plus, SharePoint gets a makeover, say goodbye to insecure protocols in Windows 11, and much more... Microsoft Teams: Deploy Teams 2. 0 with M365 Apps! So, check out This Week in IT and make sure you subscribe and hit the bell icon to get notified when new episodes are available! Transcript Teams... --- ### CISA Warns About New Ivanti EPMM Vulnerabilities - Published: 2023-08-04 - Modified: 2023-08-04 - URL: https://petri.com/cisa-ivanti-epmm-vulnerabilities/ - Categories: Security - Tags: CISA, Ivanti, News, Vulnerability - Article Type: News The Cybersecurity and Infrastructure Security Agency (CISA) has warned about two vulnerabilities in Ivanti's Endpoint Manager Mobile (EPMM). The security flaws allowed threat actors to compromise 12 Norwegian government agencies. Ivanti’s Endpoint Manager Mobile is a solution that lets IT admins secure and manage mobile devices in enterprise environments. They can enforce policies, deploy applications, and manage corporate data on various mobile platforms. It provides access to various tools such as Mobile Application Management (MAM), Mobile Content Management (MCM), and Mobile Device Management (MDM). The security vulnerability (tracked as CVE-2023-35078) allows hackers to gain access to specific API paths without authorization and collect personal information. The flaw could also let malicious actors make configuration changes on compromised systems. "Threat actors with access to these API paths can access PII such as names, phone numbers, and other mobile device details of users on the vulnerable system; make configuration changes to vulnerable systems; push new packages to mobile endpoints; and access Global Positioning System (GPS) data if enabled," CISA explained in its security advisory. Last month, Ivanti disclosed another vulnerability (CVE-2023-35081) in Endpoint Manager Mobile (EPMM). The flaw could enable malicious actors to upload arbitrary files to an EPMM web app server. Ivanti released security updates to address the vulnerability on July 28. CISA advises organizations to upgrade Ivanti EPMM versions According to CISA, hackers can chain both security vulnerabilities to gain administrative privileges, deploy web shells, and execute commands on compromised systems. They can bypass authentication, upload malicious files, and take... --- ### Windows 11 to Get Support for Microsoft Azure Attestation Service - Published: 2023-08-04 - Modified: 2023-08-04 - URL: https://petri.com/microsoft-azure-attestation-service-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is getting ready to introduce support for the Microsoft Azure Attestation (MAA) service on Windows 11. The company announced yesterday that the feature will begin rolling out to all commercial customers in mid-August. Currently, Windows 11 and Windows 10 use the Windows Device Health Attestation (DHA) service for client device attestation. The configuration service provider (CSP) collects boot logs and auditing information from Trusted Platform Module (TPM) on Windows devices. TPM is a hardware-based security component that helps to protect the Windows boot-up process from rootkit or bootkit malware. The device health attestation data is then forwarded to DHA-Enabled mobile device management solutions. Microsoft explained that the new Azure Attestation service offers a simplified approach to attestation on Windows 11. The unified solution is designed to remotely verify the trustworthiness of a platform. This release will also bring several improvements for mobile device management solutions providers. “If you set any of the Windows 10/11 Compliance policy - Device Health settings, Windows 11 devices will begin to use a MAA attestation provider based on your Intune tenant location. You may need to ensure there are no firewall policies preventing access to the new Intune MAA attestation providers for Windows 11. Windows 11 devices with assigned compliance policies using any of the device health settings will fall out of compliance if they are unable to reach the MAA attestation endpoints for their location,” Microsoft explained. Microsoft Azure Attestation service doesn’t support Windows 10 Microsoft only plans to add Azure Attestation support... --- ### How to Grant Full Mailbox Access to Users in Office 365 and Exchange Server > Here's how to grant full mailbox access in both Office 365 and Exchange Server environments using the Exchange Admin Center and PowerShell Add-MailBoxPermission. - Published: 2023-08-04 - Modified: 2023-08-08 - URL: https://petri.com/powershell-add-mailboxpermission/ - Categories: Microsoft 365 - Tags: Exchange Server, featured-top-right, mailbox, Ofice 365, shared mailbox - Article Type: How To In Office 365 (Exchange Online) and Exchange Server environments, granting 'Full Mailbox' access to a user is a common administrative task, especially when dealing with shared mailboxes, delegation, or troubleshooting. In this article, we will explore step-by-step procedures for granting Full Mailbox access to users in both Office 365 and Exchange Server environments. I will cover various scenarios, including giving access using the Exchange Admin Center and the PowerShell Add-MailBoxPermission cmdlet. I will also detail how to manage permissions for shared mailboxes and resource mailboxes. How to grant Full Access permissions in Exchange Server with PowerShell Add-MailBoxPermission There are many parameters surrounding user mailboxes and permissions in Exchange. For this post, we will focus on the 'Full Access' access right, which allows a user to use Outlook to view, send, and manage another user's mail, calendar events, contacts, and other mailbox items. There are other access rights I'll cover in future posts like 'Send As' and 'Send on Behalf. ' For on-premises Exchange Server deployments, you can grant full mailbox access to users using PowerShell. There are several PowerShell cmdlets that can perform the tasks we need, but again, this article will focus on adding permissions for mailboxes. Open the Exchange Management Shell on the Exchange Server. Use the Add-MailboxPermission PowerShell command to grant full mailbox access: Add-MailboxPermission -Identity "MailboxName" -User "UserAlias" -AccessRights FullAccess -InheritanceType All Replace "MailboxName" with the mailbox to which you want to grant access and "UserAlias" with the user's alias you want to grant access. That's... --- ### First Ring Daily: AI on the Desktop - Published: 2023-08-04 - Modified: 2023-08-04 - URL: https://petri.com/first-ring-daily-ai-on-the-desktop/ - Categories: Windows, Windows 11 - Tags: AI, Cortana, News, Windows 11, Windows Copilot - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft killing off the Cortana app on Windows 11, what the new Windows Copilot brings to the table, and more. --- ### Microsoft Revises Cloud Licensing Policies for Running Office on AWS - Published: 2023-08-03 - Modified: 2023-08-04 - URL: https://petri.com/microsoft-cloud-run-office-aws/ - Categories: Amazon Web Services, Cloud Computing, Office - Tags: AWS, Microsoft Office, News - Article Type: News Microsoft is making some minor changes to its cloud licensing policies for specific customers that run Microsoft Office on AWS. This move comes a week after the European Commission opened an antitrust investigation of Microsoft Teams bundling with Office 365/Microsoft 365 subscriptions. In 2019, Microsoft announced new licensing terms that made it more expensive to run Office, Windows, and Windows Server in non-Microsoft Azure clouds. This change required customers with perpetual licenses to renew their contracts in order to run Microsoft software on Google Cloud, AWS, or other competitor cloud platforms. They were required to purchase an additional license that added millions to their total cost. Last year, Microsoft agreed to change its cloud licensing practices to avoid an antitrust probe by the EU Commission. However, the changes didn’t apply to US-based customers and failed to address cost-related concerns. According to a report from Mary Jo Foley, Microsoft detailed new licensing terms to help AWS cloud customers worldwide on August 1. The company says that users with select licenses can now run Microsoft Project, Visio, and Microsoft 365 apps for enterprise/business on Amazon WorkSpaces. "The licenses that will be eligible under this revised policy include Microsoft 365 E3/E5/A3/A5 and Microsoft 365 Business Premium. If you currently have any of these licenses, starting from August 1, you will be able to utilize these Microsoft applications on Amazon WorkSpaces virtual desktop infrastructure," Microsoft explained. AWS customers can run Office apps on WorkSpaces services Earlier this week, Amazon Web Services (AWS) introduced a... --- ### Russian Hackers Used Microsoft Teams to Target Government Agencies - Published: 2023-08-03 - Modified: 2023-08-03 - URL: https://petri.com/russian-hackers-microsoft-teams-government/ - Categories: Security - Tags: Hacking, Microsoft Teams, News, Security - Article Type: News Microsoft has issued a security advisory about a new Russia-linked hacking group dubbed Midnight Blizzard. The threat actors used Microsoft Teams chat to launch social engineering campaigns (which started in late May) that affected dozens of organizations. According to the Microsoft threat intelligence team, the hackers (known as APT29) pretend to be technical support staff to compromise Microsoft 365 accounts. They used Microsoft Teams messages to send lures to manipulate users into approving multi-factor authentication (MFA) prompts. For instance, malicious actors attempted to trick the victims to enter a code into the Authenticator app on their mobile devices. “To facilitate their attack, the actor uses Microsoft 365 tenants owned by small businesses they have compromised in previous attacks to host and launch their social engineering attack. The actor renames the compromised tenant, adds a new onmicrosoft. com subdomain, then adds a new user associated with that domain from which to send the outbound message to the target tenant,” Microsoft explained. Once hacked, the hacking group performed a series of post-compromise activities, including exfiltrating sensitive information from the Microsoft 365 tenant. The hackers also used Microsoft Entra ID (formerly Azure Active Directory) to add a device to the organization as a managed device. The researchers found that the group has been using various techniques such as password spray, brute force, and authentication spear phishing. The Microsoft threat intelligence team has traced a “surgical cyberespionage operation” against 40 organizations based in the U. S. and Europe. The attacks target customers in the government, IT... --- ### What’s New in Windows – July 2023 - Published: 2023-08-02 - Modified: 2023-08-02 - URL: https://petri.com/whats-new-in-windows-july-2023/ - Categories: Windows 11 - Tags: AI, featured-top-left, Microsoft Edge, News, Windows 11 - Article Type: News With the exception of Windows 11 Moment 3 landing for everyone in July, it’s been a fairly quiet month. But Insiders did get access to Windows Copilot and the new Outlook for Windows client and Microsoft revealed more about Windows 11 version 23H2. Let’s get started! Windows 11 Moment 3 generally available with July Patch Tuesday updates The new “Moment 3” features for Windows 11 are now available to all 22H2 users with the July Patch Tuesday update (KB5028185). It feels like Microsoft made a meal of releasing Moment 3, with it being rolled out in stages but with nobody ever quite being sure who should have access. Moment 3 brings several new features, like: seconds in the system tray clock a VPN status icon in the system tray access key shortcuts in File Explorer a new settings page for USB4 devices and presence sensors support for extra languages in live captions. The update also changes how some existing features work. The Print Screen button now opens the Snipping Tool by default. But you can change it back to the previous action. And Windows now displays a maximum of 20 recent tabs when using Alt + Tab and Snap Assist. Previously, it could be an unlimited number of recent tabs. Windows Copilot and New Outlook come to the Dev Channel for Insiders Windows 11 Insider build 23506 for Insiders on the Dev Channel comes with the Windows Copilot Preview. According to Paul Thurrott, Windows Copilot is a bit rubbish. And... --- ### Microsoft Managed Desktop Service to Retire in July 2024 - Published: 2023-08-02 - Modified: 2023-08-02 - URL: https://petri.com/microsoft-managed-desktop-sunsetting-2024/ - Categories: Cloud Computing - Tags: Microsoft Managed Desktop, News - Article Type: News Microsoft is planning to sunset its Microsoft Managed Desktop service next year. The company has quietly updated its support document to indicate that the service will be deprecated on July 31, 2024. Microsoft Managed Desktop (MMD) is a cloud-based device management service that includes Windows 10/11 Enterprise and Microsoft Office apps. It provides a simplified and streamlined approach to managing the lifecycle of devices in enterprise environments. Microsoft Managed Desktop offers various security features to protect devices, including advanced threat protection and automatic updates. The service also allows IT admins to manage devices remotely, apply policies, and ensure compliance. “As we enter a new growth phase for managed services at Microsoft, Microsoft Managed Desktop will transition to end-of-life (EOL) on July 31, 2024. We're committed to working closely with each customer to provide support and guidance to make the transition as smooth as possible,“ Microsoft explained in a support document. Microsoft Managed Desktop to retain existing configurations Microsoft notes that organizations that use Microsoft Managed Desktop will retain existing configurations in their computing environments. However, Microsoft’s engineers will no longer be able to address service requests from customers. Additionally, the Microsoft Managed Desktop Security Operations Center will drop support for monitoring and responses. This means that businesses will need to migrate to alternative security solutions instead. As Microsoft had said very little about Microsoft Managed Desktop since its launch in 2018, it’s no surprise that the service had to go away at some point. Microsoft has promised to help administrators... --- ### Microsoft to Disable TLS 1.0 and 1.1 Support By Default on Windows 11 - Published: 2023-08-02 - Modified: 2023-08-02 - URL: https://petri.com/microsoft-disable-tls-1-0-and-1-1-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft announced yesterday that it will soon deprecate Transport Layer Security (TLS) versions 1. 0 and 1. 1 on Windows 11. The company plans to drop support for the encryption protocols by default on the latest Windows 11 Insider Preview Builds in September. TLS is a cryptographic protocol that’s designed to provide communication security over a computer network. It enables customers to ensure the privacy, integrity, and authenticity of data exchanged between client and server systems. TLS allows encrypted transmission of sensitive data and prevents tampering by threat actors. Microsoft had previously killed off TLS 1. 0 and 1. 1 support from its Microsoft Edge and Internet Explorer 11 browsers in 2020. Now, the company is ready to pull the plug on the legacy security standards in Windows 11. Microsoft says this change is part of its broader strategy to make the operating system more secure. “Over the past several years, internet standards and regulatory bodies have deprecated or disallowed TLS versions 1. 0 and 1. 1, due to a variety of security issues. We have been tracking TLS protocol usage for several years and believe TLS 1. 0 and TLS 1. 1 usage data are low enough to act,“ explained Jessica Krynitsky, Program Manager at Microsoft. Microsoft to remove TLS 1. 0 and 1. 1 support in future versions of Windows Ultimately, Microsoft plans to go even further and remove TLS 1. 0 and 1. 1 support from all future versions of the operating system. “To increase the security posture of Windows customers and encourage modern protocol adoption, TLS versions 1. 0... --- ### SQL Server Essentials: How to Install SQL Server 2022 and Azure Data Studio on Linux - Published: 2023-08-02 - Modified: 2023-09-25 - URL: https://petri.com/install-sql-server-on-linux/ - Categories: SQL Server - Tags: featured-top-right, SQL - Article Type: How To Starting with SQL Server 2017, Microsoft has supported SQL Server on Linux, which has the same underlying database engine as the Windows version. In this article, I'll show you how to install SQL Server on Linux, as well as Azure Data Studio. The most recent release of SQL Server is SQL Server 2022, which offers the same core relational database management features on both Windows and Linux. Installing SQL Server on Linux: Before you start By adding Linux support for SQL Server a couple of years ago, Microsoft allowed its platform to better compete with other native Linux database platforms such as Oracle, MySQL and PostgreSQL. To enable Linux compatibility, SQL Server uses a platform abstraction layer (PAL) that separates platform specific code from the rest of the codebase, enabling the core database engine to be operating system agnostic. SQL Server 2022 editions on Linux If the core database capabilities are the same across Windows and Linux, there are still some differences between the Linux version of SQL Server 2022 and the Windows version. However, just like the Windows editions SQL Server on Linux comes in the following editions: Enterprise: The premium edition. It provides the maximum performance, unlimited virtualization and enterprise level availability options. Standard: This edition delivers basic data management and BI support for departments and small organizations. It supports a maximum of 4 sockets or 24 cores and 128 GB of RAM. Web: This edition provides a low total-cost-of-ownership option for Web hosters, and it's limited... --- ### What’s New with Microsoft’s Power Platform in July 2023 - Published: 2023-08-02 - Modified: 2023-08-02 - URL: https://petri.com/microsoft-power-platform-updates-july-2023/ - Categories: Power Platform, PowerApps - Tags: featured-top-right, News, power app, Power Automate, Power BI, Power Platform - Article Type: News Summer is in full swing, and it is hot out there! Speaking of hot things, Microsoft just released last month the 2023 Release Plan Wave 2 for its Power Platform, which details updates coming between October 2023 and March 2024. Let’s take a look at what's in the pipeline!    Power Apps: More upcoming AI-assisted features Obviously, the most exciting thing for Power Apps is what’s coming with Copilot. Two features are coming in public preview in October 2023 with no GA date set as of this writing. First, makers will be able to use Copilot to write Power Fx formulas using natural language. Instead of spending hours figuring out that complex nested formula, you'll be able to ask Copilot to help! This feature was previously available as Power Apps Ideas, but it's getting updated and combined with Copilot for updates and consistency.     The second upcoming feature is the ability to use Copilot to build and edit apps, primarily regarding design. Instead of manually updating all the labels in an app to have a font size of 18, you'll be able to tell Copilot to do it. Want to add a screen or a button? Again, Copilot will be able to do it for you. This truly seems to be a game-changer!      Now let’s talk about some long-awaited updates to Power Apps. How many times have you fought with the size of the Power Fx bar in your Power Apps career? I’ve fought it more often than I’d like to... --- ### Microsoft Fixes WSUS Bug Preventing Updates Distribution on Windows 11 version 22H2 - Published: 2023-08-01 - Modified: 2023-08-01 - URL: https://petri.com/microsoft-wsus-bug-windows-11-version-22h2/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has released updates to fix a bug that was previously impacting the Windows Server Update Services (also known as WSUS). The company detailed on the Windows Health Dashboard that the issue prevented the distribution of updates to client devices running Windows 11 version 22H2 as well as Windows Server 2022. Windows Server Update Services is a service that lets IT admins manage the deployment of updates and patches for products (such as Microsoft Office, Exchange Server, and SQL Server). The service downloads updates from Microsoft’s servers and distributes them to client devices on the corporate network. It helps organizations to reduce bandwidth usage and improve network security and stability. “Updates released February 14, 2023 or later might not be offered from some Windows Server Update Services (WSUS) servers to Windows 11, version 22H2. The updates will download to the WSUS server but might not propagate further to client devices,” Microsoft explained. “This issue is caused by the accidental removal of required Unified Update Platform (UUP) MIME types during the upgrade to Windows Server 2022 from a previous version of Windows Server. ” According to Microsoft, the issue only impacts WSUS servers running Windows Server 2022 that have been upgraded from Windows Server 2019/Windows Server 2016. However, the company confirmed that the bug doesn’t affect Microsoft Configuration Manager. Microsoft offers a workaround to fix the WSUS bug on Windows 11 version 22H2 Microsoft has also provided a temporary fix for customers who haven’t installed the July 2023 Patch Tuesday updates on... --- ### Azure Virtual Desktop Introduces Watermarking Support to Protect Sensitive Data - Published: 2023-08-01 - Modified: 2023-08-01 - URL: https://petri.com/azure-virtual-desktop-watermarking-sensitive-data/ - Categories: Virtualization - Tags: Azure Virtual Desktop, News - Article Type: News Earlier this year, Microsoft released watermarking support in public preview for Azure Virtual Desktop (AVD). The company detailed in a blog post yesterday that the security feature is now generally available for all commercial customers. Azure Virtual Desktop (AVD) is a cloud-based virtual desktop and application virtualization solution that runs in Microsoft Azure. The managed service comes with several built-in various security capabilities (like Reverse Connect) to protect data in enterprise environments. Microsoft explained that watermarking is an optional security feature that’s designed to protect sensitive data from being captured and shared on client devices. Once enabled, users will see QR codes with the embedded user’s session Activity ID on their screens. The watermarking feature allows IT admins to trace a data leak back to its original source before it can expose more information. They can either query Azure Monitor Log Analytics or use Azure Virtual Desktop Insights to find session information from the QR code. “When you enable watermarking, QR code watermarks appear as part of remote desktops. The QR code contains the connection ID of a remote session that admins can use to trace the session. Watermarking is configured on session hosts and enforced by the Remote Desktop client,” Microsoft explained. Getting started with watermarking in Azure Virtual Desktop Previously, the watermarking feature was exclusively accessible on the Windows desktop app. Now, Microsoft has expanded its availability to cover the Azure Virtual Desktop web client as well. The company has also provided a couple of administrative templates to... --- ### Microsoft Entra ID Protection Gets New Dashboard, Advanced Detections - Published: 2023-08-01 - Modified: 2023-08-01 - URL: https://petri.com/microsoft-entra-id-protection-dashboard/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News - Article Type: News Microsoft announced yesterday a new update for its Microsoft Entra ID Protection service. This release brings a new dashboard, advanced detection capabilities, integration with Microsoft 365 Defender, and more. The Microsoft Entra ID Protection service leverages machine learning to detect, investigate, and remediate identity-based sign-in risks and unusual activities. It uses risk-based adaptive access policies and phishing-resistant authentication methods to prevent identity compromise in enterprise environments. First off, Microsoft has rolled out a new dashboard experience in preview for Microsoft Entra ID Protection. The feature is designed to help IT admins understand their security posture and boost protections against cyberattacks. They can visualize common identity-based attack patterns detected within the past 30 days. The new dashboard also offers actionable recommendations based on the risk exposure. Additionally, there are two high-fidelity detections to block potential cyberattacks at an early stage. With verified threat actor ID, security teams can track sign-in attempts made by known cybercrime groups and nation-state actors. The Azure AD threat intelligence detection allows organizations to revoke compromised sessions and require password resets. The new detections are available for all Microsoft Entra ID Protection customers. Entra ID Protection gets real-time Azure AD threat intelligence Microsoft Entra ID Protections now provides real-time Azure AD threat intelligence detections to protect organizations against identity-based attacks. Administrators can secure their identities with risk-based conditional access (CA) policies. It's also possible to view the risk detection report available in ID Protection for further investigation. Lastly, Microsoft announced that Entra ID Protection integration with Microsoft... --- ### Microsoft's Clipchamp Video Editor is Adding Support for Work Accounts > Clipchamp, the video editing app that Microsoft acquired back in 2021 will soon be available for Microsoft 365 commercial customers via the Targeted Releasd program. - Published: 2023-08-01 - Modified: 2023-08-21 - URL: https://petri.com/microsoft-clipchamp-work-accounts-support/ - Categories: Microsoft 365 - Tags: Clipchamp, Microsoft 365, News - Article Type: News Clipchamp, the video editing app that Microsoft acquired back in 2021 will soon be available for Microsoft 365 commercial customers. The cloud-based video editor is adding support for work accounts, and it will also seamlessly integrate with OneDrive, SharePoint, Teams, and other Microsoft productivity apps.   Microsoft believes that Clipchamp can become a great resource for employees looking to create videos at work, whether that’s how-to videos or product demos. The app’s core tools are easy-to-use, and Clipchamp also offers centralized security and controls for organizations. “Clipchamp is built on OneDrive and SharePoint and is integrated with your other everyday Microsoft productivity apps. The videos you export from Clipchamp can be shared through Microsoft Stream, embedded and played in Microsoft Teams, in emails with Outlook, and on Microsoft Viva Engage, seamlessly modernizing your workflows,” the company explained yesterday.   https://www. youtube. com/watch? v=UksuVFUvcac These synergies with existing Microsoft apps are likely going to help to drive adoption. Video is pretty much everywhere these days, and Microsoft, which at some point considered a purchase of TikTok in the United States, lacked a competent video editor in its Microsoft 365 productivity arsenal.   Clipchamp is coming to commercial customers through Targeted release  Later this month, Clipchamp will become available for Microsoft 365 customers via the Targeted Release program. The app will be available in the Microsoft 365 app launcher, and a new "Clipchamp video" option will also be available in the Add New menu in OneDrive and SharePoint. If you previously used Clipchamp with a personal Microsoft account, you won’t be... --- ### AWS to Start Charging for Public IPv4 Addresses in February 2024 - Published: 2023-07-31 - Modified: 2023-07-31 - URL: https://petri.com/aws-public-ipv4-addresses-2024/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Amazon Web Services (AWS) is planning to charge organizations for the use of public IPv4 addresses. Starting on February 1, 2024, AWS customers will need to pay $0. 005 per IP address per hour for all public IPv4 addresses. According to AWS, the cost of purchasing a single IPv4 address increased by over 300 percent during the past five years. The upcoming change may have significant implications for numerous businesses that have extensive cloud workloads. AWS has advised its customers to migrate to IPv6 to prevent a substantial increase in their monthly bills. “As you may know, IPv4 addresses are an increasingly scarce resource and the cost to acquire a single public IPv4 address has risen more than 300% over the past 5 years. This change reflects our own costs and is also intended to encourage you to be a bit more frugal with your use of public IPv4 addresses and to think about accelerating your adoption of IPv6 as a modernization and conservation measure,” explained Jeff Barr AWS Chief Evangelist. The new price for public IPv4 addresses applies to all AWS services AWS notes that the charges will be applicable to all AWS services, including Elastic Kubernetes Service (EKS) nodes, Relational Database Service (RDS) database instances, and Amazon Elastic Compute Cloud (Amazon EC2). Furthermore, the public IPv4 address price will apply across all AWS regions. For the first 12 months, AWS clients who have the free EC2 tier will receive 750 hours of usage for public IPv4 addresses per month... . --- ### Microsoft Entra ID Introduces Strict Location Enforcement To Block Stolen Token Access - Published: 2023-07-31 - Modified: 2023-07-31 - URL: https://petri.com/microsoft-entra-id-strict-location-enforcement/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has released a public preview of a new continuous access evaluation (CAE) setting for the Entra ID Conditional Access service. The new feature enables IT admins to strictly enforce location policies for network access in enterprise environments. Continuous Access Evaluation is a mechanism that offers real-time evaluation of Conditional Access policies for certain apps. The feature allows apps (like Exchange Online, SharePoint Online, and Microsoft Teams) to learn about changes in user accounts in almost real-time. This capability could be useful in situations when a user account has been disabled, network location changes, or password changes. How does strict location enforcement work? The new strictly enforce location policies mode allows Entra ID (formerly Azure AD) customers to block client’s access to a resource if the IP address doesn’t match based on location. It’s designed to block sophisticated cyberattacks that could happen with a stolen token. “With our ability to strictly enforce location policies and CAE, CAE enabled applications like Exchange Online, SharePoint, Teams, and Microsoft Graph can now revoke tokens in near real-time in response to network change events noticed by the app – preventing stolen tokens from being replayed outside the trusted network,” said Alex Weinert, Vice President of Identity Security at Microsoft. Microsoft notes that the strictly enforce location policies are the most secure, but they require well-understood network paths. The company urges IT admins to test the setting in order to ensure it doesn't inadvertently block end users. “This option is the highest security modality of... --- ### Microsoft Intune Gets Support for Uninstalling Apps in the Company Portal for Windows - Published: 2023-07-31 - Modified: 2023-07-31 - URL: https://petri.com/microsoft-intune-uninstalling-apps-company-portal/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has started rolling out the July 2023 service release (2307) for Microsoft Intune. The latest update brings several new capabilities to enhance support for App management, Device configuration, security, and more. Microsoft has introduced a top-requested feature that lets standard users uninstall Win32 and Microsoft Store apps from within the Company Portal for Windows. This option is already enabled by default for all Microsoft Store apps. However, it will be up to the IT admins to enable/disable the feature for Win32 apps in their tenants. Microsoft says the update is rolling out gradually, and it’s expected to be available in the coming weeks. “Our first capability we’re highlighting this month enables users to uninstall apps in the Intune Company Portal for Windows themselves rather than relying on help desk support to get it done. Customers have requested this capability for a while; and it even received a standing ovation from customers when we announced at a conference that it was in development,” Microsoft explained. https://youtu. be/rLJU9ERO81Y Microsoft streamlines unified security settings management Microsoft has released a new unified experience to streamline endpoint security settings management across macOS, Windows, and Linux. In Microsoft Defender for Endpoint, the native security settings management capabilities integrate with Microsoft Intune’s admin experience. This release also removes the requirement for all devices to be registered with Azure AD to streamline the onboarding process. Lastly, Microsoft has announced a new PKG installer workflow to expand the range of apps that can be installed on macOS. Previously, IT... --- ### AWS Certifications: A Complete Guide > AWS Certifications are industry-recognized credentials that demonstrate your expertise with AWS. Here's a comprehensive overview of AWS certifications to help you advance your IT Pro career. - Published: 2023-07-31 - Modified: 2024-11-19 - URL: https://petri.com/aws-certifications/ - Categories: Amazon Web Services - Tags: Amazon, Amazon Web Services, AWS, certifications - Article Type: Overview In today's rapidly evolving technology landscape, Amazon Web Services (AWS) remains one of the biggest players in the cloud computing industry. For most IT pros, AWS certifications have become a crucial stepping stone for career advancement. These certifications validate professionals' expertise with AWS services and indicate their ability to design, deploy, and manage applications on the AWS platform. In this article, I will give you a comprehensive overview of AWS certifications so you can identify which ones are the best to help you advance your IT Pro career. What are AWS Certifications? AWS Certifications are industry-recognized credentials that help to assess someone's expertise with Amazon Web Services (AWS). These certifications help to demonstrate proficiency in various AWS tools and services, AWS architecture design, and the deployment and management of AWS applications. As of today, AWS certifications play a vital role in career advancement as organizations all around the globe are increasingly relying on AWS for their cloud infrastructure needs. By staying up-to-date with the latest AWS technologies and becoming certified, you can enhance your credibility and competitiveness in the dynamic world of cloud computing. What are the benefits of being AWS Certified? Getting certified can help you boost your career growth while helping you grow your skill set. Here are the main benefits of getting AWS certified. Career opportunities AWS certifications may significantly enhance your career prospects by opening the doors to a wide range of job opportunities. Employers actively seek certified AWS professionals to grow their businesses, and... --- ### Microsoft Defender for Storage to Add Malware Scanning Support in September - Published: 2023-07-28 - Modified: 2023-07-28 - URL: https://petri.com/microsoft-defender-for-storage-malware-scanning/ - Categories: Security - Tags: Malware, Microsoft Defender for Storage, News, Security - Article Type: News Microsoft has announced that the malware scanning capability will become generally available on September 1. The new agentless SaaS solution will be available as an add-on for Microsoft Defender for Storage customers and will cost $0. 15 (USD)/GB of data scanned. Microsoft Defender for Storage is a security solution that identifies unusual attempts to access or exploit storage accounts. The service uses AI-powered security capabilities to offer contextual security alerts and recommendations to investigate and remediate threats. Previously, Microsoft Defender for storage offered protection against data corruption, sensitive data exfiltration, and malicious file uploads. The malware scanning feature, which is currently in preview, lets customers configure their apps to only read non-malicious files. Once detected, it automatically moves or deletes infected files from the system. “Malware Scanning in Defender for Storage helps protect your Blob storage accounts from malicious content by performing a full, built-in, agentless malware scan on uploaded content in near real time, using Microsoft Defender Antivirus capabilities. It scans all file types and allows you to detect and prevent malware distribution events,” Microsoft explained. Use-cases for Malware Scanning in Microsoft Defender for Storage Microsoft detailed several benefits of the malware scanning capability for Defender for Storage customers. It helps to protect storage accounts from malicious content uploaded from untrusted sources (such as CDN and content hub). The security feature also lets organizations adhere to compliance standards (like NIST, SWIFT, and GDPR) that require on-upload malware scanning for non-compute sources. Additionally, the malware scanning feature makes it easier for... --- ### Microsoft and Samsung Unveil New Mobile Device Attestation Solution for Businesses - Published: 2023-07-28 - Modified: 2023-07-28 - URL: https://petri.com/microsoft-samsung-mobile-device-attestation/ - Categories: Security - Tags: mobile device, News, Security - Article Type: News Microsoft has announced a new strategic partnership with Samsung to enhance mobile security for business customers. The companies have unveiled a new mobile hardware-backed device attestation solution that works seamlessly on company-owned and personal Samsung Galaxy devices. Device attestation is a security process used to verify the authenticity and integrity of a device before allowing it to access certain resources, networks, and services. It helps to ensure that the device is genuine, trusted, and has not been compromised. A trusted authority (such as a service or a remote server) performs a series of checks and validations to prove its identity and security posture. For enterprises, the new solution lets organizations only allow authorized Samsung devices and applications to access sensitive corporate data. Intune MAM client responses are signed and encrypted to add a layer of protection against tampering and replay attacks. According to Microsoft, a defense-grade mobile security platform (Samsung Knox) is already installed on Samsung Galaxy devices. The integration of the Samsung Knox device attestation API with Microsoft Intune app protection policies should boost security against cyberattacks. “This is a breakthrough development for highly regulated organizations that want to enable employees to bring their own devices (BYOD) for work. It opens up opportunities for Galaxy smartphone users to use their preferred device securely and privately for both work and play – while still empowering them with the flexibility and versatility to optimize their productivity,” Microsoft explained. Microsoft’s mobile device attestation supports managed and unmanaged Samsung Galaxy devices Typically, device... --- ### How to Use PowerShell If Statements to Add Conditional Logic to Your Scripts > PowerShell If statements are used to perform the conditional execution of code. Here's how If, Else, and Elseif statements can make you a better PowerShell scriptwriter. - Published: 2023-07-28 - Modified: 2024-12-03 - URL: https://petri.com/powershell-if-statement/ - Categories: PowerShell - Tags: featured-top-left, PowerShell - Article Type: How To PowerShell is a powerful scripting language for many reasons. One such reason is its support for conditional logic, which can help you supercharge your PowerShell scripts to make them even more efficient and effective. In this article, I’m going to teach you how to use If, Else, and Elseif conditional logic and explain how this can help you as a PowerShell scriptwriter. How to use the PowerShell If statement PowerShell If statements are used to perform the conditional execution of code. They allow you to test a condition and execute different blocks of code based on whether the condition evaluates to true or false. Let's start with two examples showing how to use PowerShell If statements. Example 1: Checking if a number is positive or negative In the following example, we have a variable, $number, set to 10. The If statement checks whether the value of $number is greater than 0 using the -gt operator. When the condition is true, it executes the block of code within the first set of curly braces, which in this case prints “The number is positive. ” When the condition is false, it moves to the Elseif block and checks if the number is less than 0 using the -lt operator. If the condition is true, it executes the code within the second set of curly braces, printing “The number is negative. ” If both conditions are false, it executes the code within the else block, printing “The number is zero. ” $number = 10 if... --- ### Importing Windows Updates into WSUS Now Requires PowerShell - Published: 2023-07-27 - Modified: 2023-07-28 - URL: https://petri.com/microsoft-import-updates-wsus-powershell-script/ - Categories: Windows - Tags: News - Article Type: News Microsoft has announced some important changes coming to Windows Server Update Services (WSUS). The company detailed in a blog post that customers will now have to use a PowerShell script to import updates for Windows devices. Windows Server Update Services (WSUS) is a solution that allows IT admins to manage the distribution and installation of updates and patches for Windows and other Microsoft products. The service is designed to streamline the update deployment process and ensure that all Windows PCs are updated in a timely manner. It offers features like centralized management, automatic update synchronization, approval process, and as well reporting and monitoring capabilities. Up until now, Windows Server Update Services allowed administrators to import updates from the Microsoft Update Catalog website. Microsoft says the Import Updates function was created using the legacy ActiveX technology. The company has now dropped ActiveX support in favor of modern technologies like HTML5 and JavaScript. Starting this week, Windows Server Update Services will automatically redirect customers to a support page that contains a PowerShell script to import updates. “Regularly updating your devices and doing so in safest ways possible will help keep devices at your organization even more protected,” Microsoft explained. How to use a PowerShell script to import updates into WSUS To use the PowerShell script to import Windows updates into WSUS, IT admins will need to follow these steps: Saving the script as "ImportUpdatesIntoWSUS. ps1" on their computers. Opening the Microsoft Update Catalog site and searching for the updates that they want to... --- ### Microsoft Defender Vulnerability Management Gets Firmware Security Advisories - Published: 2023-07-27 - Modified: 2023-07-27 - URL: https://petri.com/microsoft-defender-vulnerability-management-firmware-security-advisories/ - Categories: Security - Tags: Microsoft Defender Vulnerability Management, News, Security - Article Type: News Microsoft announced yesterday that firmware security advisories are now available for the Microsoft Defender Vulnerability Management service. The new feature enables organizations to continuously monitor firmware security advisories based on information from vendors’ websites and inventories as well as third-party websites. Microsoft Defender Vulnerability Management is a service that allows customers to discover critical vulnerabilities and misconfigurations on macOS, Windows, Linux, Android, and iOS. It continuously monitors and detects risks even when devices are disconnected from the corporate network. The service also provides recommendations that should help to mitigate the biggest security flaws present in critical assets. “With the ability to filter on exposed devices and view advisories that affect the customer environment, security teams can quickly identify potential vulnerabilities and take action to mitigate them. This is especially important in today's rapidly evolving threat landscape, where firmware vulnerabilities can be exploited by attackers to gain access to sensitive data or systems,” Microsoft explained. The firmware security advisories feature allows IT admins to view details about the specific version of the affected software or device. It also provides instructions to update the firmware version and steps to mitigate security threats. The detailed insights let organizations protect their devices against firmware vulnerabilities targeting enterprise networks. Microsoft Defender Vulnerability Management supports firmware security advisories from Dell, HP, and Lenovo Currently, the new feature only allows organizations to collect security advisories from Lenovo, HP, and Dell. These advisories include details such as Advisory ID, Related CVEs, Severity, Advisory link, Age, Vendor, published/updated date,... --- ### EU Starts Antitrust Probe into Microsoft Teams Bundling with Office 365 - Published: 2023-07-27 - Modified: 2023-07-27 - URL: https://petri.com/eu-antitrust-probe-microsoft-teams/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News The European Commission (EC) has launched a formal probe into Microsoft’s bundling of the Teams app with Office 365 and Microsoft 365. The EU regulators plan to conduct an in-depth investigation into whether Microsoft violated the EU’s competition rules “as a matter of priority. ” Microsoft’s rival Slack lodged a complaint with the European Commission back in 2020. The company alleged that the way Microsoft Teams is bundled with other Office products gives Microsoft an unfair advantage against the competition. Slack also said that Microsoft was forcing millions of customers to install Teams, blocking its removal, and hiding the true cost from organizations. Back in April, Microsoft agreed to unbundle Microsoft Teams and the Office suite to avoid an EU antitrust investigation. The company is reportedly planning to charge different prices for its Office productivity suite with or without Teams. However, the implementation mechanism remains unclear. Additionally, Microsoft has recently decided to kill off the built-in Chat experience in Windows 11. The Chat app is powered by Microsoft Teams, and it’s currently only available for consumers. In this new case, the EU regulators will investigate whether Microsoft is leveraging its market power to eliminate the competition. If the allegations are true, the company could face a fine of up to 10 percent of its global annual turnover. “The Commission is concerned that Microsoft may grant Teams a distribution advantage by not giving customers the choice on whether or not to include access to that product when they subscribe to their productivity... --- ### First Ring Daily: Microsoft Releases its FY23 Q4 Earnings - Published: 2023-07-27 - Modified: 2023-07-27 - URL: https://petri.com/first-ring-daily-microsoft-fy23-q4-earnings/ - Categories: Microsoft - Tags: Microsoft, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's financial results for the last quarter of its fiscal year 2023, and they take a closer look at the company's Windows and Surface businesses. --- ### Planning for a Successful Office 365 Tenant to Tenant Migration Project > Here are the essential steps to plan for a successful Office 365 tenant to tenant migration project, covering pre-migration preparation, data assessment, and more. - Published: 2023-07-26 - Modified: 2023-07-30 - URL: https://petri.com/office-365-tenant-to-tenant-migration/ - Categories: Microsoft 365 - Tags: Microsoft 365, Office 365 - Article Type: Overview An Office 365 tenant to tenant migration can be a complex undertaking that requires careful planning and execution. Whether due to mergers, acquisitions, or organizational restructuring, a tenant to tenant migration project involves transferring data, applications, and configurations while ensuring minimal user disruption. In this article, I will guide you through the essential steps to plan for a successful Office 365 tenant to tenant migration project, covering pre-migration preparation, data assessment, migration strategy selection, user communication, and post-migration tasks. I will also mention some of the biggest challenges you are likely to encounter throughout that process. Preparing for an Office 365 tenant to tenant migration I am currently part of a selected group (my day job) of IT engineers, project managers, end-user testers, etc. taking part in a multi-phased migration project. Due to an acquisition, we'll be moving groups of users and their critical information from one Office 365 tenant to another. We just completed our pilot group and learned many lessons from the experience. This post's main focus and scope will be to offer you how we prepped for the pilot, the high-level steps during the final cutover, and the issues discovered with future mitigations planned. The first step in planning an Office 365 tenant to tenant migration project is thorough pre-migration preparation. You should start by conducting a comprehensive inventory of your Office 365 environment, including users, licenses, groups, and shared resources. You also need to identify any dependencies on third-party applications or integrations. Determining the scope... --- ### Microsoft Entra ID Enhanced Sign-In Branding Now Generally Available - Published: 2023-07-26 - Modified: 2023-07-26 - URL: https://petri.com/microsoft-entra-id-enhanced-sign-in-branding/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory - Article Type: News Microsoft has announced the general availability of improved company branding functionality for enterprise customers. The new feature launched in preview last year, allowing organizations to customize the sign-in experiences of Microsoft Entra ID (Azure AD) and Microsoft 365 apps. “With enhanced company branding, you’ll be able to create a custom look and feel for the default sign-in pages, as well as pages targeting specific browser languages. In addition, you can now customize self-service password reset (SSPR), footer hyperlinks, and browser icon, style sign-in experiences using cascading style sheets (CSS) and enable header and footer using one of the pre-defined templates,” said Levent Besik, VP of Product Management, Microsoft identity.   With this release, IT Admins will be able to use a pre-defined template to specify the placement of web page elements on the sign in page. Moreover, it’s possible to show, hide, or customize the link that appears under the sign-in page text for password resets. This release also lets customers use a custom logo that appears in the header of the sign-in page. Other capabilities include the ability to customize footer hyperlinks and Favicon (web icon). How to customize the sign-in experience for Entra ID customers To access the new company branding experience, IT admins will first need to sign in to the Azure portal. Now, head over to Azure Active Directory >> Company branding and then click the Customize option. Microsoft has divided the sign-in experience process into different sections. Finally, make all the customizations and click the Submit button to... --- ### Microsoft Teams to Add New Meet App to Manage Meeting Activities and Content - Published: 2023-07-26 - Modified: 2023-07-26 - URL: https://petri.com/microsoft-teams-new-meet-app/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new Meet app that should make it easier for users to track and manage meeting activities and content. The company announced the new app on its Microsoft 365 Admin Center yesterday, and it will exclusively become available for customers on the new Microsoft Teams (preview) client next month. The Meet app will provide a centralized hub to help users prepare for meetings, catch up on missed details, and find meeting content, chats, notes, agenda, and recaps. Once installed, users will see the "Up next" and "Recent sections" in the app. The Up Next section offers content suggestions powered by AI to assist users in finding relevant files and documents quickly. It will also enable participants to view meeting invites and alerts, as well as resolve meeting-related issues with a single click. These include request recording, no RSVP, and notifying co-workers about running late to a meeting via meeting chat. In the Recent section, Microsoft Teams users will be able to view a list of meetings scheduled within the last 30 days. It’s also possible to find invitees, transcripts, recordings, and attached/presented/shared files. Users can quickly access past meetings with filters, meeting labeling, and a search box. Microsoft Teams Meet App to bring AI meeting insights to premium customers With the Meet app, Microsoft Teams Premium customers will be able to view AI-powered meeting insights. These include personalized suggested tasks, mentions, and missed meetings. If you haven’t done it yet, you can sign up for a... --- ### Microsoft 365 Defender Adds New URL Page to Block Phishing Attacks - Published: 2023-07-25 - Modified: 2023-07-25 - URL: https://petri.com/microsoft-365-defender-url-page-phishing-attacks/ - Categories: Security - Tags: featured-top-right, Microsoft 365 Defender, News - Article Type: News Microsoft has launched a URL page for its Microsoft 365 Defender solution. The new page provides a unified hub that lets security teams investigate URLs and domains as well as take remediation actions. “Whether it’s pivoting to emails, user clicks, or devices associated with URLs and fully qualified domain names (FQDNs), the enhanced functionality of the URL page reduces the need for context switching and ultimately enables faster investigation and response times. If you want to dive deeper into related entities like emails or users, you can seamlessly pivot to the relevant tabs and continue the investigation from there,” Microsoft explained. Microsoft mentioned that the new page allows administrators to tag and report a particular URL as a malicious, phishing, or clean entity. It’s also possible to add URLs to Defender for Office 365 block list or the Defender for Endpoint indicator list with a single click. With the URL page, Microsoft 365 Defender customers can gain detailed insights into the reputation and popularity of URLs. This capability provides all the necessary details required to make informed decisions to secure enterprise environments. How to access the new URL page in Microsoft 365 Defender Microsoft notes that the URL and domain page is accessible through the Incident attack story tab, the device timeline via advanced hunting, or from the email side panel and page. From there, IT Admins will need to click the "Search" icon and press "Enter" to view details about the URL. In addition to the URL page, Microsoft... --- ### AMD 'Zenbleed' CPU Flaw Exposes Passwords and Encryption Keys to Hackers - Published: 2023-07-25 - Modified: 2023-07-25 - URL: https://petri.com/amd-zenbleed-flaw-ryzen-cpus/ - Categories: Security - Tags: AMD, News, Security - Article Type: News Tavis Ormandy, a Google Security researcher has discovered a new vulnerability affecting AMD’s Zen 2 processors. Dubbed Zenbleed, the security flaw could let attackers steal passwords, cryptographic keys, and other sensitive information from software running on vulnerable machines. In a recent blog post, Ormandy detailed that the Zenbleed vulnerability (CVE-2023-20593) was first reported to AMD back in mid-May. It allows threat actors to run malicious code remotely via JavaScript on a webpage and doesn’t require physical access to the affected system. The exploit can be used to transfer data at a rate of at least 30kb per core per second. “The vulnerability in AMD's Zen 2-architecture-based CPUs, wherein data from another process and/or thread could be stored in the YMM registers, a 256-bit series of extended registers, potentially allowing an attacker access to sensitive information. This vulnerability is caused by a register not being written to 0 correctly under specific microarchitectural circumstances. Although this error is associated with speculative execution, it is not a side channel vulnerability,” Cloudflare explained. The Zenbleed vulnerability affects the following AMD Zen 2 processors: AMD Ryzen 3000 Series CPUs AMD Ryzen PRO 3000 Series CPUs AMD Ryzen Threadripper 3000 Series CPUs AMD Ryzen PRO 4000 Series CPUs AMD Ryzen 4000 Series CPUs with Radeon Graphics AMD Ryzen 5000 Series CPUs with Radeon Graphics AMD Ryzen 7020 Series CPUs with Radeon Graphics AMD EPYC “Rome” Processors AMD to patch the Zenbleed vulnerability affecting Ryzen processors AMD has since published a security advisory that describes the security... --- ### Microsoft Defender for IoT Gets New Firmware Analysis Capabilities - Published: 2023-07-25 - Modified: 2023-07-25 - URL: https://petri.com/microsoft-defender-for-iot-firmware-analysis/ - Categories: Security - Tags: Microsoft Defender for IoT, News - Article Type: News Microsoft has released a new firmware analysis feature for Microsoft Defender for IoT. The new capability conducts an automated analysis of a binary firmware image that runs on an IoT device to identify potential security threats and vulnerabilities. With firmware analysis, IT admins can view a detailed listing of open-source packages found in the firmware image. The feature helps security teams to scan the firmware components for publicly known Common Vulnerabilities and Exposures (CVEs). This information can then be passed on to organizations and device manufacturers. Secondly, the firmware analysis feature detects binaries that haven't enabled select security flags during the compilation process. These include position-independent executables, buffer overflow protection, and other popular binary hardening methods. Firmware analysis detects weak user accounts In Microsoft Defender for IoT, the firmware analysis capability detects built-in user accounts and the cryptographic algorithms used for the encryption of password hashes. It enables IT admins to detect vulnerable IoT devices in corporate networks. Firmware analysis also makes it easier to identify cryptographic material embedded in the devices. “Adversaries commonly target these materials as entry points. For example, expired, revoked, or self-signed SSL certificates can compromise communication from a device to a cloud service, potentially leaking organizational data or opening the device up to exploitation. Another potential threat vector are public and private keys that were inadvertently left in the device by the developers and grant attackers access to the device or cloud service,” Microsoft explained. Getting started with firmware analysis To get started with firmware... --- ### Report: Stolen Microsoft Key Gave Chinese Hackers Widespread Access to Cloud Services - Published: 2023-07-24 - Modified: 2023-07-24 - URL: https://petri.com/microsoft-key-chinese-hackers-access-cloud-services/ - Categories: Exchange Online, Security - Tags: Exchange Online, News, Security - Article Type: News Microsoft has recently disclosed a security breach that allowed Chinese hackers to access the email accounts of around two dozen organizations. Now, security researchers have found that the stolen security key provided access to far beyond Outlook and Exchange Online email accounts. According to Microsoft, the Chinese hacking group (dubbed Storm-0558) used forged authentication tokens and a stolen consumer signing key to log into Microsoft Cloud email accounts. The list of victims includes US government agencies, including the State Department. As it turns out, the Wiz security team found that the Chinese hackers could have used the private key to access several other Microsoft products. The attack potentially affected all Microsoft apps that utilize OpenID v2. 0 access tokens for account authentication. “Our researchers concluded that the compromised MSA key could have allowed the threat actor to forge access tokens for multiple types of Azure Active Directory applications, including every application that supports personal account authentication, such as SharePoint, Teams, OneDrive, customers’ applications that support the “login with Microsoft” functionality, and multi-tenant applications in certain conditions,” said Shir Tamari, Head of Research at Wiz. Microsoft revokes the encryption key to protect Exchange Online and Outlook accounts Microsoft has now blocked all tokens signed with the compromised encryption key. The company has also published a list of indicators of compromise to help IT admins detect and mitigate the impact in their organizations. However, the researchers mentioned that the token authentication process would make it harder for customers to detect if malicious actors... --- ### Microsoft to Start Windows Mail and Calendar to Outlook Migration Next Month > Microsoft will start to migrate some users of the Windows Mail and Calendar apps to the new Outlook for Windows in August. - Published: 2023-07-24 - Modified: 2023-07-25 - URL: https://petri.com/mail-and-calendar-apps-migrate-outlook-for-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook for Windows, Windows 11 - Article Type: News Last month, Microsoft unveiled its plans to replace Windows 11’s Mail and Calendar apps with the new web-based Outlook for Windows client in September 2024. The company later detailed that it’s re-evaluating the timeline and implementation of this change. In a recent update posted on the Microsoft 365 Admin Center, Microsoft indicated that it would begin auto-migrating some users to the new Outlook for Windows in August. However, users will still be able to switch back to the Mail and Calendar apps via a toggle button. Microsoft said that the upcoming changes won’t impact the classic Outlook for Windows desktop app. Microsoft has already started notifying consumers and enterprise customers that it would kill off the UWP Mail and Calendar apps in 2024. The company recommends users to migrate to the new Outlook for Windows experience. “At the end of 2024 we will be ending support for the Mail and Calendar apps for Windows. The new Outlook for Windows helps people be more productive and in control of their inbox,” Microsoft explained. “Users within your tenant, who have accounts signed into the Mail and Calendar app, should already see a toggle in the application. Clicking that toggle will bring users to the new Outlook for Windows. ” Source: Twitter/@jerrynixon Microsoft’s new Outlook for Windows respects conditional access policies Microsoft has been testing the new Outlook for Windows app for quite a while now. The new version should bring AI-powered features to help users write better emails. It offers support for Microsoft... --- ### Mastering Microsoft 365 Administration: A Guide to Microsoft's Various Admin Centers > This article details the Office 365 portal and other admin centers available in Microsoft 365 to empower IT pros to harness the full potential of the platform. - Published: 2023-07-24 - Modified: 2023-07-25 - URL: https://petri.com/office-365-portal/ - Categories: Microsoft 365 - Tags: Exchange Admin Center, featured-top-left, Microsoft 365, Microsoft 365 Admin Center, Microsoft 365 Defender, Microsoft Entra, Microsoft Purview, Microsoft Teams, SharePoint - Article Type: How To Microsoft provides a comprehensive suite of tools for effectively administrating and managing various aspects of the Microsoft 365 platform. There's not just one Office 365 portal, IT pros actually have access to various admin centers, each tailored to manage specific aspects of the platform. In this article, we will explore the key admin centers available in Microsoft 365 and discuss their functionalities, empowering administrators to harness the full potential of the platform. Introduction - Microsoft 365 Administration Scope Office 365 and Microsoft 365 have revolutionized the way businesses operate, offering a comprehensive suite of productivity tools and services. Effective administration of Microsoft 365 is essential for optimizing workflows, ensuring security, and maximizing productivity. To streamline administrative tasks, Microsoft provides I will explain the different methods here and offer some recommendations and best practices. I will go over the core Microsoft 365 services here. There are a few dozen total services with 'GUI' admin centers and portals offered by Microsoft. You can read more about the additional ones towards the end of my post. Microsoft 365 productivity portals I will describe a few high-level categories of portals managing Microsoft 365 - Productivity/Core, Security and Compliance, and miscellaneous with PowerShell. The Microsoft 365 Admin Center (formerly Office 365 portal) The Microsoft 365 Admin Center (previously Office 365 admin center) serves as the central hub for administering Microsoft 365. It provides a unified interface to manage user accounts, licenses, domains, and subscriptions. From this dashboard, administrators can monitor service health, access reports,... --- ### Microsoft Azure Boost Launches to Offload Virtualization Processes - Published: 2023-07-21 - Modified: 2023-07-21 - URL: https://petri.com/azure-boost-offload-virtualization-processes/ - Categories: Microsoft Azure - Tags: Azure Boost, News - Article Type: News Microsoft has announced a public preview of Azure Boost for enterprise customers this week. The new offering is designed to offload virtualization processes onto dedicated hardware and software. The new Azure Boost service enables customers to access experimental SKUs. This release should make it easier to test integrations with their existing virtual machines (VMs) ahead of the general availability in the coming months. “By separating hypervisor and host OS functions from the host infrastructure, Azure Boost enables greater network and storage performance at scale, improves security by adding another layer of logical isolation, and reduces the maintenance impact for future Azure software and hardware upgrades,” Microsoft explained. Microsoft’s new Azure Boost service offers various benefits to meet the specific needs of customers. Azure Boost virtual machines provide significant performance improvements over existing Azure VMs with up to 200 Gbps networking throughput. It's powered by the Microsoft Azure Network Adapter (MANA) to ensure stability, higher network availability, and faster data transfers. According to Microsoft, Azure Boost brings improved storage performance similar to Ev5 and Dv5 virtual machines. The service also brings enhancements to existing storage capabilities, including disk caching support for Azure Premium SSDs. Azure Boost improves protection against cyberattacks Microsoft mentioned that Azure Boost runs storage and networking processes on dedicated hardware to boost security for organizations. It comes with robust hardware-based secure boot and attestation features to reduce the potential attack surface. Moreover, the new offering reduces maintenance downtime in enterprise environments. Microsoft notes that Azure Boost should be... --- ### SQL Server Essentials: Downloading and Installing SQL Server Data Tools for Visual Studio > Here's how to download and install the latest version of SQL Server Data Tools for Visual Studio on your PC. - Published: 2023-07-21 - Modified: 2023-08-02 - URL: https://petri.com/sql-server-data-tools-for-visual-studio/ - Categories: SQL Server - Tags: SQL Server, Visual Studio - Article Type: How To SQL Server Data Tools for Visual Studio 2022 (SSDT) is the modern replacement for Business Intelligence Development Studio (BIDS), which was introduced with SQL Server 2005. SQL Server Data Tools for Visual Studio 2022 is now delivered as a part of Visual Studio 2022, and it enables you to create and modify new projects for Analysis Services, Integration Services, and Reporting Services. In this article, I'll show you how to download and install the latest version of SQL Server Data Tools for Visual Studio on your PC. The origins of SQL Server Data Tools for Visual Studio As I briefly explained in the introduction, SSDT for Visual Studio is the successor to Microsoft's Business Intelligence Development Studio (BIDS). Let me share a bit more details about how the transition from BIDS to SSDT for Visual Studio happened. BIDS provided a specialized development environment for creating business intelligence solutions using SQL Server Integration Services (SSIS), SQL Server Analysis Services (SSAS), and SQL Server Reporting Services (SSRS). BIDS was initially included with SQL Server and was installed when you selected client tools during the SQL Server installation. Internally, BIDS was essentially an integrated version of Visual Studio 2005 with project templates specifically designed for SQL Server BI development. It allowed developers to create and manage SSIS packages, Analysis Services cubes, and Reporting Services reports for business intelligence solutions. Starting with SQL Server 2012, BIDS was replaced by SQL Server Data Tools (SSDT) for BI development. SQL Server Data Tools (SSDT) was... --- ### GitHub Copilot Chat Now Available in Public Preview for Businesses - Published: 2023-07-21 - Modified: 2023-07-21 - URL: https://petri.com/github-copilot-chat-public-beta-businesses/ - Categories: Developer - Tags: GitHub, GitHub Copilot, News - Article Type: News Microsoft-owned GitHub has announced the limited public beta release of GitHub Copilot Chat for enterprise customers and organizations. This release brings a context-aware conversational coding assistant into Visual Studio and Visual Studio Code development environments. GitHub launched the chatbot as a part of the Copilot X initiative to extend its code completion tool to more use cases back in March. Up until now, GitHub Copilot Chat was only available through a private preview program. The feature allows developers to interact with the chatbot with natural language commands. With GitHub Copilot Chat, developers can ask specific coding questions as well as troubleshoot errors and bugs. It can also provide code analysis and suggest remediations to fix security issues in code. GitHub highlighted that the chatbot should help to reduce the amount of time previously required to build applications and debug codebases. “This new evolution turns GitHub Copilot into a context-aware conversational assistant right in the IDE, allowing developers to execute some of the most complex tasks with simple prompts. Every developer on your team, from the least to the most experienced, will be able to build entire applications or debug vast arrays of code in a matter of minutes instead of a matter of days,” said Mario Rodriguez, Vice President of Product for GitHub. How to sign up for GitHub Copilot Chat beta To get started, GitHub Copilot for Business customers will need to sign up for the beta program on the official website. The conversational coding assistant will be available... --- ### The Dirty Truth About IT Offboarding Automation > Nudge Security’s IT offboarding playbook can help organizations save up to 90% of the time and effort in SaaS offboarding by streamlining time-consuming tasks. - Published: 2023-07-21 - Modified: 2024-05-10 - URL: https://petri.com/it-offboarding-automation-nudge-security/ - Categories: Cloud Computing, Security - Tags: NoAD, NoAds - Article Type: Sponsored Every system administrator dreams of building the perfect Rube Goldberg machine of IT automation to manage the employee IT lifecycle, end to end, including IT offboarding. A new hire joins the company, HR files a ticket, and BAM! In an instant, all of the birthright accounts, access, and permissions are granted in a glorious cascade of provisioning magic. Then, when an employee exits the organization, another beautifully orchestrated IT workflow instantly revokes all access and protects corporate data from waltzing out the door. This is the promised land of IT automation, and yet, to date, it hasn’t been delivered. In a recent survey of 375 IT professionals by Nudge Security, one-third of respondents said they have automated 75% or more of their IT offboarding process. However, respondents’ IT automation investments didn’t directly translate to significant time savings or higher levels of confidence in the efficacy of their IT offboarding process. The reality is that IT organizations are still spending about five hours per employee to identify and offboard a departing employee’s cloud and SaaS access. Despite that effort, 70% of the respondents in our survey have experienced the consequences of incomplete offboarding: security incidents, business disruption, and wasted SaaS spending, to name a few. This post is sponsored by Nudge Security Here’s where conventional IT automation has fallen short when it comes to offboarding employees’ cloud and SaaS access, and how IT organizations can address these failures: Discovering SaaS assets—managed and unmanaged Thanks to the ease with which cloud and... --- ### Splunk Announces New Partnership with Microsoft to Boost Digital Resilience - Published: 2023-07-20 - Modified: 2023-07-20 - URL: https://petri.com/splunk-partnership-microsoft-digital-resilience/ - Categories: Cloud Computing, Microsoft Azure - Tags: cloud computing, Microsoft Azure, News - Article Type: News Splunk Inc. announced this week a new strategic partnership with Microsoft. The new deal will enable both companies to build Splunk’s enterprise security and observability solutions on Microsoft Azure. Splunk is a popular platform that enables customers to search, analyze, and visualize machine-generated data in real-time. It collects and processes data coming from a wide variety of data sources like server logs, network devices, security systems, applications, and more. Splunk also provides various visualization tools to create dashboards and reports to enhance data interpretation. With this partnership, Microsoft will collaborate with Splunk to help customers migrate, modernize, and grow their enterprise environments. It should make it easier for organizations to identify potential security risks to protect customers against cyberattacks. “Splunk’s strategic partnership with Microsoft to build Splunk natively on Azure demonstrates our commitment to advancing digital resilience and meeting our customers where they are, and how they want to buy. We are excited by the benefits of adding greater flexibility to how our customers deploy Splunk and bring to bear our AI-powered unified security and observability solutions to keep their mission-critical systems secure and reliable,” Splunk explained. Splunk solutions now available on the Microsoft Azure Marketplace Splunk also announced that the new deal will let customers purchase its solutions through the Microsoft Azure Marketplace. These include Splunk Enterprise, Splunk Enterprise Security (ES) as well as Splunk IT Service Intelligence (ITSI). Splunk says that the aforementioned solutions are currently available in the US, with a global release to follow next month... . --- ### New Microsoft 365 Backup Solution to Launch in Preview for Exchange, SharePoint, and OneDrive - Published: 2023-07-20 - Modified: 2025-02-21 - URL: https://petri.com/microsoft-365-backup-exchange-sharepoint-onedrive/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft 365 backup, News - Article Type: News Microsoft unveiled a couple of new additions to the Microsoft 365 ecosystem at its Inspire 2023 conference this week. The company plans to introduce Microsoft 365 Backup and Microsoft 365 Achieve solutions to help enterprise customers to protect and manage large volumes of data. Microsoft 365 Backup is a new service that will let organizations recover large volumes of OneDrive, SharePoint, and Exchange data at an unparalleled speed. It will also be possible to restore files, sites, and mailbox items at scale or in a granular manner. Microsoft 365 Backup enables customers to use metadata (like item/site names, event types, and owners) to search/filter content in their backups. “The rise in ransomware encryption attacks and security breaches means organizations are making cybersecurity a priority to safeguard themselves from losing data and sensitive information. Organizations need to have a system to help them meet regulatory requirements,” Microsoft explained. https://www. youtube. com/watch? v=fJIPPHDX1SA&pp=ygUVTWljcm9zb2Z0IDM2NSBCYWNrdXAg Microsoft 365 Backup comes with a restore service level agreement (SLA) and keeps within the Microsoft 365 security boundary. Microsoft plans to roll out the service in public preview for Exchange, SharePoint, and OneDrive in the coming months. Microsoft 365 Archive Later this year, Microsoft 365 Archive will launch in public preview to let enterprise customers store inactive/aging data within SharePoint. The cost-effective solution will help to ensure that the data is stored without compromising security or compliance requirements. Users will be able to easily archive and reactivate content in the SharePoint UI. https://www. youtube. com/watch? v=oJWo7PYtRLc Microsoft says that users will be able to... --- ### Microsoft Expands Free Access to Cloud Security Logs Following Exchange Hacks - Published: 2023-07-20 - Modified: 2023-07-20 - URL: https://petri.com/microsoft-free-access-cloud-security-logs/ - Categories: Cloud Computing, Security - Tags: cloud computing, Microsoft Purview Audit, Security - Article Type: News Microsoft announced yesterday that it will provide organizations access to expanded cloud logging data at no additional cost to prevent potential cyberattacks. The announcement comes in response to criticism the company faced regarding the lack of security logs for select cloud licenses. Last week, Microsoft confirmed a series of attacks from a Chinese hacking group that breached the Exchange email accounts of around 25 organizations. The researchers found that Storm-0558 acquired an inactive MSA consumer signing key and used it to gain access to email accounts in Outlook Web Access in Exchange Online and Outlook. com. The espionage campaign highlighted that organizations should have detailed logging data to collect evidence of compromise. Going forward, Microsoft plans to provide standard subscribers with a wide range of cloud logs within Microsoft Purview Audit. Customers will have deeper visibility into detailed logs for email access and 30 other types of log data. Up until now, this capability was only available for Purview premium subscribers. Microsoft to roll out expanded logging access in September Microsoft will also extend the retention time for logs from 90 days to 180 days. It should provide access to historical data to help with incident response investigations. Microsoft has collaborated with the US Cybersecurity and Infrastructure Security Agency (CISA) to boost protection against cyberattacks. “While we recognize this will take time to implement, this is truly a step in the right direction toward the adoption of Secure by Design principles by more companies. We will continue to work with all... --- ### First Ring Daily: Microsoft's AI Now Has a Price - Published: 2023-07-20 - Modified: 2023-07-20 - URL: https://petri.com/first-ring-daily-microsoft-365-copilot-pricing/ - Categories: Cloud Computing, Microsoft - Tags: First Ring Daily, Microsoft 365 Copilot, News - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's pricing model for the Microsoft 365 Copilot, as well as how Microsoft's proposed acquisition of Activision Blizzard will impact the company financially. --- ### Microsoft Launches Sales Copilot, Teases New Customer Insights Tools - Published: 2023-07-19 - Modified: 2023-07-19 - URL: https://petri.com/microsoft-sales-copilot-customer-insights-tools/ - Categories: Dynamics 365 - Tags: Dynamics 365, Microsoft 365, News - Article Type: News Microsoft has announced the general availability of its Sales Copilot at Inspire 2023 conference. The company is also bringing new AI-powered features to the Dynamics 365 customer insights platform to help organizations enhance customer engagement and sales. Microsoft Sales Copilot is an AI-based digital assistant designed for sales teams. The new service can generate content, suggest ideas, recap meetings, and reduce the burden of administrative tasks. It’s possible to access Sales Copilot in Microsoft Teams, Outlook, and Dynamics 365. “Sales Copilot saves sellers time with CRM task automation, auto-generated email or meeting summaries, and more. Sellers can go from one customer meeting to the next feeling prepared, armed with AI-powered, real-time insights such as top opportunities and customer opportunity summaries. Sales Copilot also helps sellers with customer follow-up by generating AI-assisted content and recommendations, such as contextual emails based on Outlook and CRM data,” said Emily He, CVP for Business Applications Marketing. Microsoft has also unveiled several new features coming to Sales Copilot. The digital assistant can now automatically generate sales opportunity summaries within Dynamics 365 Sales. It should help sellers to track important changes, progress, and status information. The new feature should also make it easier to write contextual emails with details about the customer, product, and opportunity. Additionally, Sales Copilot provides a new summary view to help sellers prepare for customer meetings. They can gain access to recent notes, account information, customer news, as well as issues/concerns directly within Microsoft Teams, Outlook, and Dynamics 365 Sales. Sales Copilot... --- ### Microsoft Releases Hotpatch Support for Windows Server Virtual Machines with Desktops - Published: 2023-07-19 - Modified: 2023-07-19 - URL: https://petri.com/hotpatch-windows-server-virtual-machines-with-desktops/ - Categories: Windows Server - Tags: News, Windows Server - Article Type: News Microsoft has announced that hotpatch support is now generally available for Windows Server Azure Edition VMs running the Desktop experience. This release enables organizations to patch and install updates to Windows Server virtual machines on Azure without rebooting. The Hotpatch feature accomplishes this goal by applying the patch in-memory code of running processes without restarting the process. Hotpatch is designed to improve the availability of critical systems as well as minimize interruptions and downtime. “Hotpatches contains updates that don't require a reboot. Because Hotpatch patches the in-memory code of running processes without the need to restart the process, your applications are unaffected by the patching process. This action is separate from any potential performance and functionality implications of the patch itself,” Microsoft explained. Previously, the Hotpatch feature was only available for the Server Core installation option for Windows Server virtual machines. Now, it should work if the Windows Server virtual machine is installed with the Desktop experience, which offers graphical UI management capabilities. You can see how hotpatch works in the video below: https://www. youtube. com/watch? v=X7RoU5ZOnjg Hotpatch for virtual machines ensures faster deployment of updates Microsoft highlighted several benefits of the hotpatch capability for supported VMs. The operating system updates should now install faster and consume less storage and CPU resources. Moreover, hotpatch provides better protection and reduces the time exposed to security risks. Microsoft noted that customers will still need to reboot VMs in order to install updates that are currently not included in the hotpatch program. These include . NET updates,... --- ### Troubleshooting Guide: Fixing the "User Profile Service Failed The Sign-In" Error > Here's how to fix "User profile service failed the sign-in" errors and regain access to your user account on Windows 10. - Published: 2023-07-19 - Modified: 2024-09-26 - URL: https://petri.com/user-profile-service-failed-the-sign-in-error/ - Categories: Windows, Windows 10 - Tags: Windows, Windows 10 - Article Type: How To Encountering the "User profile service failed sign-in" error message can be frustrating and prevent you from accessing your logon user account on Windows. This error typically occurs due to issues with the user profile, and it can affect both local and domain accounts. In this article, I will provide a comprehensive troubleshooting guide to help you resolve this error and regain access to your user account. Causes of "User profile service failed the sign-in" error There are many reasons Windows will disrupt your day and give this "User Profile Service Failed the Sign-In" error message upon signing in. Hopefully, the primary reason is not to bug us. That would be not warm-hearted. However, this error can cause significant angst and really slow down a user's productivity. Without gaining access to their profile, they won't have (easy) access to their desktop icons, documents, etc. This is actually another prime reason to remind your users NOT to save documents or pictures on their Desktop or My Documents folders... if they are stored in OneDrive, they are ALWAYS accessible. Let's go through the most common causes of this User Profile Service Failed the Sign-In" error message. Then, later on, I'll offer some fixes to resolve it Local permission issues If any permission entries (ACLs) on the local profile folders are not set correctly, you will likely see these types of errors. You can run the Get-Acl PowerShell command to verify the 'Default' folder is correct. (Get-Acl "c:\users\Default"). Access | ft Using Get-ACL to... --- ### Microsoft to Distribute Llama 2, Meta's Open-Source Alternative to OpenAI LLM Models > Microsoft will be Meta’s preferred partner to distribute Llama 2, the company’s next-gen and open-source large language model (LLM) designed for commercial use. - Published: 2023-07-19 - Modified: 2023-07-19 - URL: https://petri.com/microsoft-to-distribute-meta-llama-2-ai-model/ - Categories: Azure, Cloud Computing - Tags: artificial intelligence, Azure, featured-top-right, Microsoft, News - Article Type: News Microsoft announced at its Inspire conference yesterday that it’s expanding its AI partnership with Meta to accelerate innovation in that field. Microsoft will be Meta’s preferred partner to distribute Llama 2, the company’s next-gen and open-source large language model (LLM) designed for commercial use.   Over the past couple of months, the AI conversation has mostly revolved around OpenAI and ChatGPT, the company’s partnership with Microsoft, and Google’s efforts to catch up. Microsoft used OpenAI technology to create its Bing Chatbot, Microsoft 365 Copilot, and Windows Copilot, and the company is also making OpenAI’s GPT-4 model available to commercial customers via its new Azure OpenAI service.   With this expanded partnership with Meta, Microsoft shows that it won’t fully rely on OpenAI to offer AI tools to its customers. As for Meta, the company is also teaming up with Amazon and other providers to distribute its Llama 2 open-source AI model, even though Microsoft is currently the company’s “preferred” provider. What is Meta’s Llama 2? Llama 2 is the latest generation of Meta’s open-source large language model. It follows the public release of LLama 1 in February 2023, which according to the company received more than 100,000 requests from researchers to access it.   Meta explained that it was trained on 40% more data than Llama 1 using publicly available online data sources, and it also has double the context length. If Llama 2 is available free of charge for research and commercial use, Meta does have an acceptable use policy to ensure... --- ### Microsoft Announces Bing Chat Enterprise and Microsoft 365 Copilot Pricing - Published: 2023-07-18 - Modified: 2023-07-18 - URL: https://petri.com/microsoft-365-copilot-monthly-cost/ - Categories: Microsoft 365 - Tags: Microsoft 365 Copilot, News - Article Type: News Microsoft announced this morning the pricing details of its Microsoft 365 Copilot tool alongside a new version of its Bing chatbot for enterprise users. The Microsoft 365 Copilot will be available as an add-on for $30 per user per month for all enterprise customers with Microsoft 365 E3, E5, Business Standard, and Business Premium subscriptions. Microsoft first unveiled its Copilot service to overhaul the Office apps in March 2023. The AI-powered Copilot tool allows enterprise customers to write emails, summarize documents and meetings, as well as enhance data analytics in Microsoft Excel. Over the past few months, around 600 organizations have internally tested Microsoft 365 Copilot during a paid early access program, including KPMG, Lumen, and Emirates NBD. Microsoft plans to share more details about its general availability in the next few months. “By grounding answers in business data like your documents, emails, calendar, chats, meetings and contacts, and combining them with your working context – the meeting you’re in now, the emails you’ve exchanged on a topic, the chats you had last week – Copilot delivers richer, more relevant and more actionable responses to your questions,” said Frank X. Shaw, Chief Communications Officer at Microsoft. It’s important to note that the Microsoft 365 E3 license already costs $36 per user per month. It includes Microsoft Teams, OneDrive, SharePoint, and several other Office apps. This means that some organizations would face a significant increase in the cost of their monthly subscriptions. However, generative AI technologies that leverage large language models... --- ### Nasuni Unveils New Features, Integration with Microsoft Sentinel to Protect File Data Against Security Threats - Published: 2023-07-18 - Modified: 2023-07-18 - URL: https://petri.com/nasuni-integration-microsoft-sentinel/ - Categories: Microsoft Sentinel - Tags: Microsoft Sentinel, News, Security - Article Type: News Nasuni has announced a new integration with Microsoft Sentinel. This release enables organizations to automatically detect security threats and initiate responses in enterprise environments. Nasuni’s file data platform offers a cloud-native solution to help organizations manage and store their data. The unified platform combines primary file storage, backup, disaster recovery, and file-sharing capabilities. Some key capabilities of Nasuni include data protection, built-in security features, versioning and file-locking support, and more. With Microsoft Sentinel integration, IT admins can now collect and monitor security and other risk events at each Nasuni edge device. All high-priority events (such as major changes to data or deleted files) coming from Edge devices can trigger security protocols within the Microsoft Sentinel tool. "By integrating Microsoft Sentinel with Nasuni's cloud-native ransomware protection, Nasuni events are automatically captured, consolidated, and sent to Microsoft Sentinel for analysis, providing SecOps teams with better protection for the vast amount of data in their company file shares," said Eric Burkholder, Senior Program Manager for Microsoft Sentinel Growth and Ecosystem at Microsoft. Microsoft Sentinel helps administrators to scan logs, send admin alerts, and disable flagged user accounts. Additionally, the integration with Nasuni provides interoperability with Sentinel data connectors, Microsoft Defender for Endpoint, and other Azure services. Nasuni Ransomware Protection gets new targeted restore capabilities Nasuni has also announced new targeted restore capabilities for its Ransomware Protection service. The feature is designed to reduce investigation time and speed up recovery from cyberattack attacks. The targeted restore feature enables IT admins to minimize the impact... --- ### Microsoft Edge Workspaces Now Generally Available for Enterprise Customers - Published: 2023-07-18 - Modified: 2023-07-19 - URL: https://petri.com/microsoft-edge-workspaces-enterprise-customers/ - Categories: Microsoft Edge - Tags: featured-top-right, Microsoft Edge, News - Article Type: News Microsoft has announced that the Edge Workspaces feature is now generally available for enterprise customers. The new collaboration experience launched in public preview back in April, and it lets users work together in a shared workspace within the web browser. Microsoft Edge Workspaces allow users to share a set of tabs and favorites with their colleagues. The enterprise feature lets participants make changes to the shared tabs in real-time related to a specific project such as trip planning. The enterprise feature is designed to help employees stay better organized and productive. “With a workspace, users and teams can easily "pause and resume" working on their project, meaning they can close the workspace with all their tabs and confidently open it later to access their tabs again. They can also invite additional teammates to join their workspace for a shared experience where teams can browse together,” the company explained on the Microsoft 365 admin center. Currently, the Workspaces feature is available in Microsoft Edge version 114 or higher on Windows and macOS. Users will need to be signed in with their Microsoft Entra ID (formerly called Azure AD) accounts to access Workspaces within Microsoft Edge. How to create Workspaces in Microsoft Edge To create a new workspace, users will need to click the dedicated icon in the top left corner of Microsoft Edge. Now, open the browser tabs relevant to the research and share them with anyone who might want to contribute to the project. It’s also possible to add or... --- ### Microsoft Shares More Details About Chinese Cyberattack That Breached Exchange Email Accounts - Published: 2023-07-17 - Modified: 2023-07-17 - URL: https://petri.com/microsoft-hack-exchange-email-accounts/ - Categories: Exchange Online - Tags: Azure Active Directory, Exchange Online, News - Article Type: News Last week, Microsoft confirmed that Chinese hackers gained unauthorized access to email accounts of U. S. government agencies and other sensitive organizations. On Friday, the company detailed a blog post to explain the cause of the security breach that compromised Exchange Online email services. According to Microsoft’s Threat Intelligence team, the Storm-0558 hacking group abused three vulnerabilities in Exchange Online and Azure Active Directory (Azure AD). The threat actors started exploiting zero-day flaws in the Microsoft cloud services on May 15. They gained access to email data from 25 organizations and other consumer accounts. The researchers explained that Storm-0558 first acquired an inactive Microsoft accounts (MSA) consumer signing key. Then, the hackers managed to use it to forge email authentication tokens for Azure AD. The researchers noted that Storm-0558 used the token to access Exchange email accounts through Outlook Web Access (OWA). “Once authenticated through a legitimate client flow leveraging the forged token, the threat actor accessed the OWA API to retrieve a token for Exchange Online from the GetAccessTokenForResource API used by OWA. The actor was able to obtain new access tokens by presenting one previously issued from this API due to a design flaw,” the Microsoft Threat Intelligence team explained. Python code snippet of the token refresh functionality Microsoft revokes MSA signing keys to block Exchange email attacks Microsoft said that it was informed about the intrusion on June 16. The company has since blocked the tokens issued with the stolen signing key to address the issue for all... --- ### SQL Server Essentials: Using SQL COALESCE > The SQL COALESCE expression can help you to process Null values that are returned by your queries. Here's how to use this function to enhance the data presentation of your queries. - Published: 2023-07-17 - Modified: 2023-07-19 - URL: https://petri.com/sql-coalesce/ - Categories: SQL Server - Tags: featured-top-left, SQL Server - Article Type: How To When working with SQL Server databases, the SQL COALESCE expression is commonly used to detect null values and provide a fallback or default value when dealing with nullable columns or expressions in SQL queries. It’s like a syntactic shortcut for the CASE expression, and it's typically used to make subsequent calculations easier. In this article, I'll detail how the SQL COALESCE expression works and how it can be used in your applications. SQL COALESCE and NULL values SQL SELECT queries allow you to retrieve, manipulate and transform data. However, one of the problems that you may run into is that not all columns in your database have data. It’s essential to understand how to work with missing values in query results. Missing values can impact calculations, the display of data on reports, and other data accrual and transformation operations. You need to understand how you can avoid allowing null values to negatively impact your query and reporting results. In Structured Query Language (SQL), Null (or NULL) is a unique marker that informs you that a data attribute does not exist in the database. In other words, Null is used to indicate that there is no data in a particular column or result. Fortunately, SQL Server contains a number of specialized expressions that are designed to make your job of manipulating and processing data easier. In the T-SQL language, the COALESCE expression and the ISNULL function are used to deal with Null values. COALESCE vs. ISNULL The ISNULL function and... --- ### Microsoft Intune Lets IT Admins Configure Windows 365 Alerts for Cloud PCs in Grace Periods - Published: 2023-07-17 - Modified: 2023-07-17 - URL: https://petri.com/microsoft-intune-windows-365-alerts-grace-periods/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft has added support for new system-based alerts in public preview for Windows 365 Enterprise customers. The new feature enables IT admins to keep track of Windows 365 Cloud PCs that are in a grace period. With this release, the Windows 365 IT admin alerts feature triggers an email when a Cloud PC enters the grace period state. This should make it easier for administrators to make informed decisions about reprovisioning or ending the grace period for select Windows 365 Cloud PCs. They can define alert rules by choosing from the available options and selecting frequency, thresholds, and notification channels. “Windows 365 Enterprise users are granted a seven-day grace period to continue using a Cloud PC once it enters that state. After the grace period elapses, the user is logged off, loses access to the Cloud PC, and the Cloud PC undergoes deprovisioning. Deprovisioning is a significant and irreversible action. By proactively notifying IT admins, unnecessary deprovisioning of Cloud PCs can be mitigated,” Microsoft explained. How to view Windows 365 Alerts in Microsoft Intune To access Windows 365 alerts, IT admins will need to head over to Microsoft Intune admin center >> Tenant administration >> Alerts. Administrators can review the alert history and monitor the Cloud PC alert event status with date, state, severity, and other information. Additionally, IT admins can view more details about the specific alert on the event summary page. These alert insights should help organizations to investigate issues and analyze their impact in Windows 365 environments... . --- ### Microsoft Entra ID Adds Restricted Management Administrative Units in Preview - Published: 2023-07-14 - Modified: 2023-07-14 - URL: https://petri.com/microsoft-entra-id-restricted-management-administrative-units/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Microsoft Entra ID, News, Security - Article Type: News Microsoft has introduced restricted management administrative units support in public preview for Microsoft Entra ID. The new role-based access control (RBAC) feature lets organizations allow only select IT admins, security teams, or devices to access specific resources. “Restricted management administrative units allow you to protect specific objects in your tenant from modification by anyone other than a specific set of administrators that you designate. This allows you to meet security or compliance requirements without having to remove tenant-level role assignments from your administrators,” Microsoft explained. Why organizations should use restricted management administrative units? According to Microsoft, restricted management administrative units help administrators to manage access in their Microsoft Entra ID tenants. For instance, the security feature protects accounts of highly privileged accounts in enterprise environments (such as senior executives). Furthermore, organizations can ensure country-level administration of specific security groups and user accounts. Restricted Management Administrative Units can restrict unauthorized people from updating the membership of security groups used to secure sensitive information. Licensing requirements and limitations Microsoft also detailed some limitations for restricted management administrative units. The company says that IT admins won’t be able to apply the restricted management setting after creating an administrative unit. Moreover, it’s impossible to change the membership once role-assignable groups are added to restricted management administrative units. Microsoft notes that organizations should have an Azure AD Premium P1 license to manage each administrative unit. The feature also requires administrative unit members to have Azure AD free licenses. You can learn more about how to... --- ### What is Amazon Kinesis Data Firehose? - Published: 2023-07-14 - Modified: 2023-07-14 - URL: https://petri.com/what-is-amazon-kinesis-data-firehose/ - Categories: Amazon Web Services - Tags: Amazon, Amazon Web Services - Article Type: Overview Amazon Kinesis Data Firehose is a fully managed service for efficiently streaming data from virtually any data source to your AWS applications. It provides near-real-time ingestion capabilities for building real-time data applications. In this article, we’ll detail how Amazon Kinesis Data Firehose works and the best use cases for it. What is Amazon Kinesis Data Firehose? Amazon Kinesis Data Firehose is a fully-managed streaming ETL (extract, transform, and load) service that can ingest streaming data from various sources, optionally transform it into new formats and deliver it into data lakes and data warehouses for analysis. It can combine data from multiple sources such as AWS EC2 or AWS DynamoDB, transform it for analytics purposes, and then load it to destination services such as Amazon S3, Amazon Redshift, Splunk, or other HTTP endpoint partners. Let’s dive into what happens during the extract, transform, and load processes. Ingesting data from multiple sources Amazon Kinesis Data Firehose can capture logs, financial data, sales orders, and other types of data. Data Sources can include logs coming from Amazon EC2 instances or data from mobile apps and IoT devices. There are different ways to connect data sources to Amazon Kinesis Data Firehose: The Amazon Kinesis Data Firehose API: leverages AWS SDK for Java, . NET, Node. js, Python, or Ruby to send data to a Kinesis Data Firehose delivery stream. Amazon Kinesis Data Streams: This serverless streaming data service can capture and load data into Amazon Kinesis Data Firehose Native integrations: AWS Cloudwatch, AWS EventBridge, AWS IoT,... --- ### Microsoft Edge for Business to Be Enabled By Default Next Month - Published: 2023-07-14 - Modified: 2023-07-14 - URL: https://petri.com/microsoft-edge-for-business-enabled-by-default/ - Categories: Microsoft Edge - Tags: Microsoft Edge for Business, News - Article Type: News Microsoft Edge for Business will soon become the default experience for all enterprise customers. Microsoft has announced its plans to release version 116 of its Edge browser with the new dedicated work experience next month. Microsoft Edge for Business launched in public preview back in May 2023. This release allows users to better separate their personal and private browsing experiences. It comes with a dedicated logo, company branding, and an icon on the taskbar. Microsoft Edge for Business supports automatic switching between work and personal browser windows. Users can also choose to configure personal and work-related settings in Microsoft Edge. “When logging in with AAD, users will receive Edge for Business, a visually distinct work browser with rich enterprise controls for secure data access and leak prevention. Edge for Business will automatically separate work and personal browsing into dedicated browser windows with their own separate caches and storage locations, so information stays separate,” the company explained in a message on the Microsoft 365 admin center. Microsoft Edge for Business comes with compliance controls and other management features Microsoft Edge for Business provides access to various compliance controls that can be applied to personal and work browser sessions. Microsoft says that IT admins can configure information rights management and data loss prevention to enhance security and compliance. However, it will require organizations to have E5 licensing. Additionally, Microsoft Edge for Business support Unmanaged Bring Your Own Personal Computer (BYOPC). This capability provides secure access to work resources on personal devices with... --- ### Windows 11 Version 23H2 to be Released as an Enablement Package in Q4 2023 > Microsoft announced yesterday that Windows 11 version 23H2 will be released as an enablement package in the fourth quarter of 2023. - Published: 2023-07-14 - Modified: 2023-07-14 - URL: https://petri.com/windows-11-version-23h2-enablement-package/ - Categories: Windows, Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has started discussing its plans regarding Windows 11 version 23H2, the next annual update for the OS to be released later this fall. On its Windows IT Pro blog yesterday, the company announced that Windows 11 version 23H2 will be released as an enablement package in the fourth quarter of 2023. “The upcoming Windows 11, version 23H2 shares the same servicing branch and code base as Windows 11, version 22H2. What does it mean for you? If you're running Windows 11, version 22H2, it will be a simple update to version 23H2 via a small enablement package (eKB),” explained Jason Leznek, Principal Product Manager in the Windows Servicing & Delivery team.   In the second half of 2024, Microsoft will also plans to make a Windows 11 LTSC release available for organizations.  "If you're waiting for a Windows 11 LTSC release, you can begin planning and testing your applications and hardware on the current General Availability (GA) Channel release, Windows 11, version 22H2," Leznek said yesterday. Microsoft promises a seamless update process for Windows 11 version 23H2 Microsoft has previously used enablement packages to release annual Windows updates: This first happened in 2019 with the transition from Windows 10 version 1903 to 1909. Microsoft has also been using this same shared servicing model to release Windows 10 versions 21H2 and 22H2, which share the same source code as version 20H2. Because Windows 11 versions 23H2 and 22H2 will use the same code base and servicing branch, IT pros won’t have to worry about application... --- ### Microsoft Defender for Endpoint Adds Device Isolation and Antivirus Scanning Support on Linux and macOS - Published: 2023-07-13 - Modified: 2023-08-30 - URL: https://petri.com/microsoft-defender-for-endpoint-device-isolation/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News, Security - Article Type: News Microsoft Defender for Endpoint has announced that Device isolation and Antivirus scanning capabilities are now available in preview for macOS and Linux devices. The new response actions should help to protect organizations against security threats. The device isolation feature blocks the compromised device from connecting to the corporate network. Meanwhile, Microsoft Defender for Endpoint continues to monitor the device and detect any malicious activities. It’s also possible to take the response action during a Live Response session and through the macOS API. “In situations where the severity of an attack calls for immediate action, the Isolate device response action offers a crucial line of defense. By isolating a compromised device from the network, you can prevent attackers from controlling the device and engaging in activities such as data exfiltration and lateral movement,” Microsoft explained. Microsoft Defender for Endpoint can now run antivirus scans Additionally, Microsoft Defender for Endpoint has introduced the Run Antivirus Scan response action for Linux and macOS. The feature lets users remotely scan, detect, and remediate malware on compromised devices. Customers can choose to run a quick or a full scan on their devices. Microsoft Defender for Endpoint will trigger alerts and notifications in case malware is detected on the Mac or Linux machine. Microsoft says that the new capabilities should let IT admins quickly and effectively respond to security threats. “We are excited to offer these capabilities to our Linux and Mac communities so that security teams can be better equipped to protect and respond to... --- ### Microsoft Says Chinese Hackers Compromised Exchange Email Accounts - Published: 2023-07-13 - Modified: 2023-07-13 - URL: https://petri.com/microsoft-hackers-exchange-email-accounts/ - Categories: Exchange Online - Tags: Exchange Online, Security - Article Type: News Microsoft has disclosed that Chinese hackers breached the email accounts of US government employees. The hacking group (tracked as Storm-0558) exploited a flaw in Microsoft’s cloud email service to gain unauthorized access to email systems. Microsoft found that the threat actors used forged authentication tokens to access affected user accounts through Outlook Web Access in Exchange Online (OWA) and Outlook. com. The hackers first used stolen consumer (MSA) keys to forge tokens and access Outlook. com and OWA. Secondly, they abused a token validation flaw to impersonate Azure AD customers and get unauthorized access to enterprise mail. Microsoft mitigates attack on Exchange Online According to the Washington Post, the US government shared the details about the security vulnerability with Microsoft on June 16. Since then, the company has successfully mitigated the flaw for all affected customers. Microsoft confirmed that it had blocked access to compromised email accounts. “Our telemetry indicates that we have successfully blocked Storm-0558 from accessing customer email using forged authentication tokens. No customer action is required. As with any observed nation-state actor activity, Microsoft has contacted all targeted or compromised organizations directly via their tenant admins and provided them with important information to help them investigate and respond,” the MSRC team explained. The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI said in a security advisory that Storm-0558 only managed to access unclassified email data. The hacking group didn’t breach emails connected to the intelligence community, military, and Pentagon. CISA has not disclosed the overall impact of... --- ### GitHub Adds Support for Passkeys in Public Beta for Passwordless Authentication - Published: 2023-07-13 - Modified: 2023-07-13 - URL: https://petri.com/github-passkeys-passwordless-authentication/ - Categories: Developer - Tags: GitHub, News - Article Type: News GitHub announced this morning that it has added support for passkeys in public beta. The passkeys feature is a standardized new way that lets users seamlessly and securely access GitHub. com. A passkey is a sequence of characters that helps to ensure that only authorized users gain access to sensitive resources. The security feature is used along with email addresses or usernames to verify users' identity. Passkeys are more secure as compared to alternate methods, including one-time code delivered over SMS. How GitHub passkeys work? According to the FIDO Alliance team, passwords are the root cause of more than 80 percent of security breaches worldwide. Passkeys are designed to protect users against credential theft, phishing campaigns, and social engineering attacks. “Passkeys on GitHub. com require user verification, meaning they count as two factors in one—something you are or know (your thumbprint, face, or knowledge of a PIN) and something you have (your physical security key or your device). Because of this strength of authentication, we don’t need your password to trust that it’s really you signing in,” explained Hirsch Singhal, Staff Product Manager at GitHub. How to use passkeys in a GitHub account? To enable passkeys on a Google account, click the “Feature Preview” tab available in the Settings sidebar and then select the “enable passkeys” option. Users will now be able to register new passkeys and upgrade eligible security keys to passkeys. It’s recommended that users should register passkeys on several devices to avoid the risk of account lockouts. GitHub explained... --- ### First Ring Daily: Amazon Opens its App Store on Windows 11 to All Android Apps - Published: 2023-07-13 - Modified: 2023-07-14 - URL: https://petri.com/first-ring-daily-amazon-app-store-windows-11-android-apps/ - Categories: Windows 11 - Tags: Amazon, Amazon App Store, Android, First Ring Daily, Microsoft Teams, News, Windows 11, Windows Subsystem for Android - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft Teams 3D avatars reaching general availability and Amazon allowing all developers to release their Android apps on its App Store on Windows 11. --- ### Microsoft Rebrands Azure AD to Microsoft Entra ID - Published: 2023-07-12 - Modified: 2023-07-12 - URL: https://petri.com/azure-ad-rebrand-microsoft-entra-id/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, featured-top-right, Microsoft Entra, News - Article Type: News Microsoft has announced that it will soon rebrand Azure Active Directory (Azure AD) as Entra ID. The name change will be a gradual process, and it’s expected to be rolled out to all Microsoft products and experiences in the second half of 2023. The Microsoft Entra product family first made its debut back in May 2022. The new suite is designed to offer identity and access management, cloud infrastructure management as well as identity verification capabilities to businesses. At launch, it included Azure AD, Microsoft Entra Verified ID, and Microsoft Entra Permissions Management. Since then, Microsoft Entra added two new product categories; Microsoft Entra ID Governance and Microsoft Entra Workload ID. Microsoft explained that the rebranding reflects the fact that Azure AD is now a product in the Microsoft Entra portfolio. It should also help customers to understand and use its capabilities to protect different identities and access points. “Unifying all identity and access capabilities under the Microsoft Entra name will make it easier to navigate and use all products and capabilities in our expanded portfolio, ensuring that you have the strongest protections for any access point. We’re also standardizing the use of the term “ID” for all our identity products: Microsoft Entra ID, ID Protection, ID Governance, External ID, Workload ID and Verified ID,” Microsoft explained. What does the Azure AD rebranding mean for IT admins? As a part of this change, Microsoft plans to rename the standalone license names for Azure AD. The company will rebrand Azure AD... --- ### Nested Microsoft 365 Groups: What You Need to Know > Nested Microsoft 365 groups are a new feature available in Azure Active Directory. They refer to the practice of creating a group within another group using Azure AD dynamic groups. - Published: 2023-07-12 - Modified: 2023-07-13 - URL: https://petri.com/nested-microsoft-365-groups/ - Categories: Microsoft 365 - Tags: featured-top-left, Microsoft 365, Microsoft 365 Groups - Article Type: Overview Nested Microsoft 365 groups refer to the practice of creating a group within another group in the Microsoft 365 ecosystem using the dynamic functionality in Azure AD. For IT admins, this practice lets them organize groups in a hierarchical manner, enabling a more structured approach to managing access, permissions, and collaboration within an organization. Membership of the dynamic group is handled by syntax in Azure AD. Instead of managing a flat list of members, dynamic rules handle that administration for you. What is a nested Microsoft 365 group? Nested Microsoft 365 groups are a new feature available in preview in Azure Active Directory (Azure AD), now part of Microsoft Entra. They allow admins to create Azure AD dynamic groups and administrative units that can add members from other groups using the 'memberOf' attribute. Apps that previously couldn't read group-based membership in Azure Active Directory can now read the entire membership of these new groups. These dynamic Azure AD security groups can be used for apps as well as licensing assignments. The following diagram courtesy of Microsoft explains how you can create a dynamic group with members of both Security-Group-X and Security-Group-Y, all while preventing members of the sub-groups within these two groups to members of a dynamic group. How dynamic groups work in Microsoft 365 (Image credit: Microsoft) You can create a parent-child relationship by nesting groups, where the parent group contains one or more child groups. The parent group can define broad permissions and settings that apply to... --- ### Microsoft Defender for Endpoint Lets IT Admins Natively Manage Security Settings - Published: 2023-07-12 - Modified: 2023-08-30 - URL: https://petri.com/microsoft-defender-for-endpoint-manage-security-policies/ - Categories: Endpoint Management - Tags: Microsoft Defender for Endpoint, News - Article Type: News Microsoft has released a new update that enables IT admins to manage security configuration settings directly in Microsoft Defender for Endpoint. The native security management capabilities are available in public preview on Windows, macOS, and Linux. Previously, IT administrators had to depend on external tools for handling endpoint security settings. This approach often resulted in delays and caused various forms of confusion. For instance, Microsoft Intune and Configuration Manager might refer to the same security configurations with different names. With this release, Microsoft has integrated Intune’s endpoint security experience into Microsoft Defender for Endpoint. It provides a unified security settings management experience that lets IT admins manage endpoint security settings from a single portal. Additionally, Microsoft Intune can automatically sync the policies to ensure coordination between IT and security teams. “All data is shared, always in sync and therefore ensures that IT and security teams share single source of truth for both IT administrators using Microsoft Intune and Security administrators – thanks to this integration, both administrators will see the same data between their portals, preventing confusion, misconfigurations and potential security gaps,” Microsoft explained. Microsoft Defender for Endpoint streamlines device onboarding Microsoft has made an enhancement by eliminating the need for devices to be Azure Active Directory hybrid joined in order to be managed with Microsoft Defender for Endpoint. This change should help IT admins streamline the device onboarding process and quickly deploy security configurations. The latest update should also make it easier for all existing customers to switch to... --- ### July Patch Tuesday Updates Are Out With 'Moment 3' Features > Microsoft’s July Patch Tuesday updates include fixes for 130 vulnerabilities, and the 'Moment 3' features are now enabled by default on Windows 11 version 22H2. - Published: 2023-07-11 - Modified: 2024-11-19 - URL: https://petri.com/july-2023-patch-tuesday-windows-11-moment-3/ - Categories: Windows, Windows 10, Windows 11, Windows Client OS - Tags: featured-top-right, News, Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released today the July Patch Tuesday updates for Windows 11 and Windows 10. The KB5028185 patch for Windows 11 version 22H2 brings the new “Moment 3” features that Microsoft previously made available in the optional update released in the last week of June.   Microsoft’s patches for July 2023 also include fixes for 130 vulnerabilities in Windows, Office, Visual Studio, and other components. Five of these vulnerabilities are already being exploited by attackers, which is pretty high. July 2023 Patch Tuesday updates fix 130 vulnerabilities As pointed out by the Zero Day Initiative today, Microsoft releasing 130 security fixes this month is “the highest we’ve seen in the last few years, although it’s not unusual to see Microsoft ship a large number of patches right before the Black Hat USA conference. ” In addition to five “important” security flaws already being exploited by attackers, the list also includes nine vulnerabilities labeled as “critical”.   Here is what you know about the five vulnerabilities that are already being exploited by attackers: CVE-2023-36884: This Office and Windows HTML Remote Code Execution vulnerability requires attackers to create a specially crafted Microsoft Office document to perform remote code execution. CVE-2023-35311: This Microsoft Outlook Security Feature Bypass vulnerability requires users to click on a specially crafted URL to have their device compromised by the attacker. CVE-2023-36874: Windows Error Reporting Service Elevation of Privilege vulnerability requires attackers to have local access to the targeted machine to gain administrator privileges.   CVE-2023-32046: This Windows MSHTML Platform Elevation of Privilege... --- ### Microsoft to End Windows 11 version 21H2 Support on October 10 - Published: 2023-07-11 - Modified: 2023-07-11 - URL: https://petri.com/microsoft-end-support-windows-11-version-21h2/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 21H2 - Article Type: News Microsoft is getting ready to end support for Windows 11 version 21H2. The company updated its support life cycle page to remind customers that the original version of the operating system will reach the end of servicing deadline on October 10, 2023. Microsoft detailed that the upcoming end of support affects the Home, Pro, Pro Education, and Pro for Workstations editions of Windows 11 version 21H2. This means that these versions of the OS would be vulnerable to malware and other security threats. Microsoft recommends customers to upgrade their PCs to Windows 11 version 22H2 (the Windows 11 2022 Update). “These editions will no longer receive security updates after October 10, 2023. Customers who contact Microsoft Support after this date will be directed to update their device to the latest version of Windows 11 to remain supported,” Microsoft explained. Microsoft begins auto-updating Windows 11 version 21H2 PCs to version 22H2 Earlier this year, Microsoft announced that it will begin automatically updating Windows 11 users to version 22H2. However, the automatic updates will happen gradually on consumer and non-managed business Windows 11 devices. Microsoft has also published a guide to help customers address any issues during the upgrade process. Microsoft is expected to announce a new version of Windows 11 later this year. This update should bring some significant changes such as Windows Copilot, a revamped File Explorer, taskbar ungrouping support, an improved backup and restore experience, and a Windows Spotlight feature. This release will also include a new Dev Drive and Dev... --- ### Microsoft Entra Gets New Identity and Access Management Solutions - Published: 2023-07-11 - Modified: 2023-07-11 - URL: https://petri.com/microsoft-entra-updates/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, Microsoft Entra - Article Type: News Microsoft has announced a slew of updates for its Microsoft Entra product family. The company detailed two new security offerings, Microsoft Entra Internet Access and Microsoft Entra Private Access, to protect organizations against cyberattacks. “In the last twelve months, we saw an average of more than 4,000 password attacks per second, an almost threefold increase from the 1,287 attacks per second we saw the previous year. We’re also seeing far more sophisticated attacks, including ones that manage to evade critical defenses, such as multifactor authentication, to steal access tokens, impersonate a rightful user, and gain access to critical data,” Microsoft explained. With Microsoft Entra Internet Access, customers can ensure secure access to SaaS, internet, and Microsoft 365 apps and services. The service allows IT admins to configure network conditions to block malicious traffic and other security threats. The Microsoft Entra Private Access security solution lets users securely connect to private apps from any network or device. The service lets administrators set up Conditional access policies to protect individual apps. They can also enforce controls like MFA and device compliance on legacy applications. The new security service edge (SSE) solutions are currently available in preview for enterprise customers. Microsoft plans to unveil the pricing details when the new solutions will become generally available in the coming months. Microsoft Entra ID Governance updates Microsoft Entra ID Governance is getting a few updates to boost protection against sophisticated attacks. There is a new dashboard that enables IT admins to monitor security posture, attack... --- ### Microsoft Dev Box Goes Out of Preview - Published: 2023-07-11 - Modified: 2023-07-11 - URL: https://petri.com/microsoft-dev-box-cloud-workstation/ - Categories: Cloud Computing - Tags: Microsoft Dev Box, News - Article Type: News Microsoft launched its Dev Box cloud-powered workstations in public preview back in August 2022. The company announced yesterday that it has decided to make the service generally available following successful testing in multiple organizations. Microsoft first teased Dev Box at its Build developer conference last year. The new offering provides secure access to pre-configured developer workstations in the cloud. Microsoft Dev Box comes pre-installed with certain development tools and utilities to help users begin coding without worrying about the lengthy deployment process. Microsoft Dev Box provides integration with Azure Development, allowing developers to use existing templates to get started quickly. The solution also offers built-in integrations with Visual Studio to optimize the development experience. IT admins can manage Dev Box through Microsoft Endpoint Manager and Microsoft Intune. Currently, Microsoft allows developer teams to choose between a variety of Dev Box SKUs. For starters, the service provides machines with 32GB RAM, 8vCPU, and 256GB storage. The hardware configurations go all the way up to 128GB RAM, 32 vCPU, and 2TB storage. Microsoft Dev Box licensing Interestingly, Microsoft originally planned to offer a pay-as-you-go model for Dev Box. However, some developers wanted to opt for full-time use at a maximum fixed monthly rate. “To accommodate different use cases, we’ve introduced a predictable monthly price for full-time Dev Box usage while keeping consumption-based, pay-as-you-go pricing that charges up to a monthly price cap. This model strikes a balance between the extremes of full consumption or subscription-only pricing, ensuring devs can optimize their spend... --- ### Clickstream Analytics on AWS Launches to Enhance Data Visualization in Mobile and Web Apps - Published: 2023-07-10 - Modified: 2023-07-10 - URL: https://petri.com/clickstream-analytics-on-aws-mobile-web-apps/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Amazon Web Services (AWS) has announced a new end-to-end solution called Clickstream Analytics on AWS. The new service enables customers to collect, ingest, analyze, and visualize clickstream data within their web and mobile applications. Clickstream Analytics on AWS is built on standard AWS services. The company says that clickstream data plays a vital role in analyzing user behavior, managing customer data, conducting marketing analysis, and other business analytics use cases. This data offers comprehensive insights into how an app or website is used, making it easier to understand user preferences, navigation, and engagement levels. Additionally, Clickstream Analytics on AWS provides a backend solution that facilitates data ingestion, processing, and visualization of clickstream data. Customers can deploy the AWS CloudFormation template into their accounts. “In addition to the backend component, the solution provides you with purpose-built Java and Swift SDKs to integrate into your mobile applications. The SDKs automatically collects data and provide developers with an easy-to-use API to collect application-specific data. They manage the low-level tasks of buffering the data locally, sending them to the backend, managing the retries in case of communication errors, and more,” AWS explained. Clickstream Analytics on AWS architecture Benefits of Clickstream Analytics on AWS Clickstream Analytics on AWS is designed to improve the deployment process. The solution enables customers to deploy a scalable and reliable data pipeline in a couple of minutes. Moreover, it’s a cost-effective service that automatically adjusts to accommodate varying data volumes, and eliminates the need to allocate any resources. Clickstream Analytics... --- ### Visual Studio Code 1.80 is Out with Terminal Image Support and More - Published: 2023-07-10 - Modified: 2023-07-10 - URL: https://petri.com/visual-studio-code-1-80/ - Categories: Developer - Tags: News, Visual Studio Code - Article Type: News Microsoft has announced the release of the latest version of Visual Studio Code. The July 2023 Update (version 1. 80) comes with a few enhancements, such as terminal image support, accessibility improvements, and more. Last month, Microsoft added terminal image support in public preview in Visual Studio Code. Now, the feature is enabled by default that lets users view images directly in the integrated terminal. It converts the image pixel data into text and then sends it to the terminal through a special escape sequence. Currently, the terminal only supports the sixel and iTerm inline image protocols. However, developers will need to use the imgcat python package or imgcat script with PNG, GIF, or JPEG files. Another new feature in this release is support for preview-only slash commands in the chat view. This capability enables users to create projects and notebooks as well as search for text in their workspace. Developers can use the /createWorkspace command to create workspaces for popular project types with Copilot. Accessibility improvements in Visual Studio Code 1. 80 Microsoft has also introduced support for a new Open Accessible View (Alt+F2) command. The feature lets users inspect content by character and line by line. The latest release also improves the GitHub Copilot chat experience with audio cues. Other features in the new release include: Better editor group and tab resizing: Set min tab size, avoid unnecessary editor group resizing. Skip subwords when expanding selection: Control whether to use camel case for selection. Python extensions for mypy and debugpy:... --- ### Cisco Discloses New Flaw in Enterprise Switches That Lets Hackers Intercept Encrypted Traffic - Published: 2023-07-07 - Modified: 2023-07-07 - URL: https://petri.com/cisco-nexus-9000-series-vulnerability/ - Categories: Security - Tags: News, Security - Article Type: News Cisco has recently warned customers about a new high-severity vulnerability that affects select data center switch models. The security flaw, which is tracked as CVE-2023-20185, could enable unauthenticated attackers to read or modify encrypted traffic. “This vulnerability is due to an issue with the implementation of the ciphers that are used by the CloudSec encryption feature on affected switches. An attacker with an on-path position between the ACI sites could exploit this vulnerability by intercepting intersite encrypted traffic and using cryptanalytic techniques to break the encryption,” Cisco explained. CloudSec encryption is a feature that enables secure communication between websites for Cisco ACI Multi-Site deployments. It uses encrypted connections between the spine switches that leverage an external IP network to link different sites. According to Cisco, the security vulnerability affects Cisco 9000 Series Fabric Switches in ACI mode running version 14. 0 and newer. Moreover, the switches need to have the CloudSec encryption feature enabled and be a part of the multi-site topology. The flaw also impacts Cisco Nexus 9332C, 9364C, and 9500 spine switches with Nexus N9K-X9736C-FX line card. Cisco has yet to patch the vulnerability in Nexus 9000 switches As of this writing, Cisco hasn’t released security patches to mitigate the vulnerability in enterprise environments. The Product Security Incident Response Team (PSIRT) didn’t find any evidence that the flaw is under active exploitation in the wild. In the meantime, Cisco suggests IT admins to disable the ACI multi-site CloudSec encryption feature in vulnerable data center switches. It’s also recommended that... --- ### How To Enable Archive Mailboxes In Office 365 > Here's how to enable archive mailboxes in Office 365 to allows users to offload and preserve older emails, documents, and other data using in-place archiving. - Published: 2023-07-07 - Modified: 2023-08-11 - URL: https://petri.com/enable-archive-mailbox-office-365/ - Categories: Microsoft 365 - Tags: archive mailbox, Microsoft 365, Office 365 - Article Type: How To In the ever-evolving digital landscape, organizations are generating an increasing volume of emails and other electronic communications. Efficiently managing this growing influx of messages while maintaining compliance with regulatory requirements has become a critical aspect of modern business operations. One effective solution offered by Microsoft's Office 365 suite is the archive mailbox feature. In this tutorial, I'll show you how to enable archive mailboxes in Office 365. What is an archive mailbox in Office 365? An archive mailbox is an additional mailbox storage space within Office 365. It allows users to offload and preserve older emails, documents, and other data using in-place archiving while keeping their primary mailbox uncluttered. This feature is particularly beneficial for organizations that need to retain emails for extended periods due to legal, regulatory, or business reasons. Exchange admin center - Mailboxes view (Image credit: Petri/Michael Reinders) To handle your compliance and retention needs, you can create retention policies for your organization. As an example, after archive mailboxes are created, you can create a policy that will take emails from a user's mailbox that match certain retention criteria (age, etc. ) and move them to the user's archive mailbox. Advantages and disadvantages of using archive mailboxes in Office 365 Enabling archive mailboxes in Office 365 provides several advantages. It helps streamline mailbox management by separating active emails from older, less frequently accessed messages, enhancing overall mailbox performance and search capabilities. Furthermore, archive mailboxes ensure compliance with data retention policies, facilitating legal discovery processes and regulatory audits... . --- ### Windows Autopatch Gets New Capabilities for its First Anniversary - Published: 2023-07-06 - Modified: 2023-07-07 - URL: https://petri.com/microsoft-updates-windows-autopatch/ - Categories: Windows - Tags: featured-top-right, News, Windows Autopatch - Article Type: News Microsoft has detailed several updates to celebrate the first anniversary of Windows Autopatch. The new capabilities that are designed to help IT admins improve productivity and security will become generally available on July 25. Microsoft launched its Windows Autopatch back in July 2022. It’s a cloud-based service that allows customers to automate the patching of Windows, Microsoft Edge, Teams, Outlook, and other Microsoft 365 apps. Windows Autopatch enables IT admins to automatically organize Windows devices into groups depending on hardware and software configurations. They can test updates with select devices before making them available to all end users. “Over the last year we've heard positive feedback from customers about the time and effort they save updating Windows, Microsoft 365, Microsoft Edge, and Microsoft Teams apps,” Microsoft explained. “Over the last year we've heard positive feedback from customers about the time and effort they save updating Windows, Microsoft 365, Microsoft Edge, and Microsoft Teams apps. ” With this release, IT admins will be able to create discrete Autopatch groups within their organization. It’s possible to apply Windows feature and quality updates to up to 50 deployment rings and custom cadence groups. Windows Autopatch to get an updated reporting experience and other new features Windows Autopatch is also getting new settings to give organizations more control over the deployment of Windows 11 updates. This release allows IT admins to use phased deployment to seek comprehensive feedback. Furthermore, Microsoft is adding support for automated deployment of recommended driver and firmware updates. Other capabilities include... --- ### Windows 365 Frontline is Now Generally Available for Hybrid Workforces - Published: 2023-07-06 - Modified: 2023-07-07 - URL: https://petri.com/microsoft-windows-365-frontline/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft announced yesterday the general availability of its Windows 365 Frontline service. The new offering launched in public preview in April, allowing organizations to offer Cloud PCs to frontline, shift, and part-time workers. With Windows 365 Frontline, customers can purchase a certain number of Cloud PC licenses that can be shared among different employees. The service has already been used across various industries, such as healthcare, customer support, and sales. “As employees log on, the Frontline Cloud PC is powered on and a license is used for the duration of their work. As they log off, the shared license is returned to the pool of shared licenses, and their Frontline Cloud PC is powered off. Any of the users within a defined group can access their Frontline Cloud PC without requiring a set schedule,” Microsoft explained. Microsoft notes that IT Pros can manage Windows 365 Frontline Cloud PCs via Microsoft Intune. It’s possible to monitor the usage of Cloud PCs through a centralized dashboard that shows data of up to 28 days. The dashboard provides detailed insights like the total number of Cloud PCs, the maximum concurrency limit, and warnings. The concurrency report helps to understand the usage trends for ensuring Cloud PC access during peak hours. Licensing requirements Windows 365 Frontline is available for organizations with Windows 10 Enterprise/Windows 11 Enterprise, Azure AD P1, and Microsoft Intune subscriptions. The licenses are also included in the Microsoft 365 E3/E5/F3/G3/G5/A3/A5 plans. Frontline workers can access their Cloud PCs via the web... --- ### What's New With Microsoft's Power Platform in June 2023 > This month's Power Platform additions include delegation improvements for Power Apps, coauthoring in model-driven App Designer, and more. - Published: 2023-07-06 - Modified: 2023-07-06 - URL: https://petri.com/microsoft-power-platform-june-2023-updates/ - Categories: Power Automate, Power Platform - Tags: dataverse, model-driven apps, Powerapps, powerfx - Article Type: News As Microsoft is still busy implementing AI-powered Copilot experiences across all of its cloud services, this month we’re going to take a look at some of the quieter features Microsoft added to its Power Platform to help makers be more efficient and secure when building apps. Delegation improvements for Power Apps Anybody who’s ever built a Power App runs into delegation issues at some point, so any enhancements to delegation are exciting news in the community. This month, Microsoft announced 3 new features to be aware of. Power Fx expressions that require asynchronous evaluation will now be delegated Prior to this feature, makers had to break up expressions into smaller, separate formulas for the expression to be correctly delegated. Now, the pieces of the expression that need separate evaluation are done automatically.   More functions are now delegable Microsoft is still working to support more functions and operators with delegation, and the following functions are now delegable: IsToday Now Rand RandBetween Today These first two features rolled out in commercial regions the last week of June 2023 Experimental preview of UpdateIf This last feature is going into experimental preview and will roll out to all commercial regions by July 2023. "UpdateIf will request the set of records that meet the If criteria and then also expand delegation range to be the greater of the (500/2000) row limit or the page size limit. Additionally, it will fully delegate to the back-end data source when it is supported," the Power Apps... --- ### Critical FortiGate Vulnerability Affects 336,000 Vulnerable Firewalls - Published: 2023-07-05 - Modified: 2023-07-07 - URL: https://petri.com/fortigate-vulnerability-firewalls/ - Categories: Security - Tags: featured-top-right, Fortigate, News, Security - Article Type: News Researchers have developed an exploit for a new critical vulnerability in the FortiGate firewall that affects around 336,000 Internet-exposed devices. The security advisory warned that IT admins have yet to install the patches released in June 2023. The heap-based buffer overflow vulnerability (tracked as CVE-2023-27997) has a severity rating of 9. 8 out of 10. It enables a remote attacker to execute arbitrary code and completely take over vulnerable devices. The security vulnerability affects multiple versions of FortiOS and FortiProxy SSL-VPN software. Bishop Fox's research team, who discovered the vulnerability, found that it affects all SSL VPN appliances running FortiOS. Fortinet quietly released security updates to address the flaw on June 8. At the time, the company confirmed that it may have been exploited in a limited number of attacks targetting government, manufacturing, and other critical infrastructure sectors. 69 percent of devices remain unpatched against FortiGate vulnerability Bishop Fox researchers said that around 69 percent of affected devices exposed on the Internet still remain unpatched. They also discovered that the most vulnerable FortiGate devices hadn’t been updated for the past eight years. Bishop Fox researchers said that these machines are vulnerable to critical security flaws. “Bishop Fox’s Capability Development team built an exploit for CVE-2023-27997 that we’re continuously using to test Cosmos customers. In the screen capture, our exploit smashes the heap, connects back to an attacker-controlled server, downloads a BusyBox binary, and opens an interactive shell,” said Caleb Gross, Director of capability development at Bishop Fox. It’s highly recommended that... --- ### How to Use Microsoft 365 Dynamic Groups to Streamline Access Management - Published: 2023-07-05 - Modified: 2023-07-13 - URL: https://petri.com/microsoft-365-dynamic-groups/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, featured-top-right, Microsoft 365 - Article Type: How To In today's dynamic business landscape, managing user access to resources is critical for organizations. Azure Active Directory (AAD), a comprehensive identity and access management solution from Microsoft, offers a powerful feature called dynamic groups. These dynamic user groups provide a flexible and automated approach to managing user access based on predefined rules and user attributes. In this article, I'll explore the benefits of dynamic groups and delve into the steps for effectively using dynamic groups within Azure Active Directory and Microsoft 365. What are Microsoft 365 dynamic groups? Dynamic groups in Azure Active Directory enable organizations to automate user access management by dynamically updating group membership based on specified criteria. Unlike static groups that require manual updates, dynamic groups evaluate rules against user attributes in real time, ensuring that users have the appropriate access as their details change. This dynamic approach streamlines administration, enhances security, and reduces the risk of errors associated with manual group management. You can use this functionality for dynamic distribution groups and Microsoft 365 Groups. The benefits of using dynamic groups in Microsoft 365 The main benefits of utilizing dynamic groups are the time your admins will save and the robustness of your group membership. Let me go into more detail here and describe these benefits. Automated membership management Dynamic groups eliminate the need for manual updates by automatically adding or removing users based on predefined rules. This automation saves time and effort, especially in organizations with a large number of users or where attributes... --- ### Microsoft Teams 2.0 to Become Default Client on Windows in September - Published: 2023-07-05 - Modified: 2023-07-05 - URL: https://petri.com/microsoft-teams-2-0-default-client-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is getting ready to make its new Teams 2. 0 client available for all users. As of today, the new app is available via a toggle in public preview, but the same toggle will become generally available for customers in September. Microsoft launched the new Teams 2. 0 client in public preview in March 2023. The app has been rebuilt from the ground up to make it two times faster and consume 50 percent less memory as compared to the classic Teams desktop app. Microsoft Teams 2. 0 is no longer an Electron-based application, and it leverages Microsoft’s Webview2 technology instead. At launch, the preview version of the new Teams 2. 0 client lacked several features that are available in the classic Teams desktop app. Since then, Microsoft has been working to add support for third-party apps, line-of-business (LOB) applications, and advanced calling and meeting capabilities. These include 7x7 video, breakout rooms, call queues and voice-enabled channels, as well as survivable branch appliance (SBA). Microsoft Teams 2. 0 deployment schedule Later this month, end users will be able to switch between the new Teams client and the classic app with a toggle button. This change will be applicable to tenants where the admin policy setting of "UseNewTeamsClient" is set to Microsoft default. Microsoft will let IT admins deploy new Teams directly to all devices in their organization in mid-July. "We’re still working on this version, so some things aren’t available yet. It's easy to toggle back and forth between using the classic and new... --- ### Microsoft Entra Workload Identities Service Adds Support for App Health Recommendations - Published: 2023-07-03 - Modified: 2023-07-03 - URL: https://petri.com/microsoft-entra-workload-app-health-recommendations/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has introduced support for app health recommendations in Microsoft Entra Workload Identities. The feature provides insights with actionable guidance to help organizations prevent outages and secure their Azure AD environments. Microsoft Entra Workload Identities launched back in November 2022. It’s an identity and access management (IAM) solution that enables IT admins to configure Conditional Access policies to protect apps and services. The service simplifies the process of identifying and reducing risks associated with non-human identities. How does the app health recommendations feature work? The app health recommendations feature allows customers to improve app hygiene in their organization. For instance, administrators can remove apps that haven’t been used for over 30 days. It’s also possible to remove unused credentials and ensure the timely renewal of expiring ones. “Removing unused applications and unused app credentials improves the security posture of a workload identity portfolio and promotes good identity hygiene. It reduces the risk of compromise- for example, by a bad actor discovering an unused application and abusing it. Depending on the permissions granted to the unused identity, this could lead to exposure of sensitive organizational data or enable lateral movement to further the actor’s objectives,” Microsoft explained. Currently, Microsoft Entra Workload Identities supports three types of app health recommendations. These include unused applications, unused application credentials, and expiring application credentials. It’s possible to update the status of a recommendation automatically or manually. Getting started with app health recommendations Sign in to the Azure AD or Microsoft Entra admin center and click... --- ### SQL Server Essentials: Using the SQL LIKE Operator > Here's how the SQL LIKE operator can enhance the power and flexibility of the SQL SELECT statement by letting you select rows that are based on partial values. - Published: 2023-07-03 - Modified: 2023-07-03 - URL: https://petri.com/sql-like/ - Categories: SQL Server - Tags: SQL Server - Article Type: How To The T-SQL LIKE operator is one of the most useful additions to the SQL SELECT statement. The latter retrieves a result set, and you can easily filter the results using equality operators and the WHERE clause to select certain specific conditions. But what about those times when you might want to select rows that are based on partial values? That’s where the SQL LIKE statement comes into play, and I'll show you how to use it in this tutorial. SQL LIKE Syntax You can see the basic syntax of the LIKE operator in the following listing: First, you supply the expression that you want to match. This is typically a column name. Next, you can optionally specify NOT to make this expression work for all conditions that do not match. Using the NOT LIKE condition is not the most common way to use the LIKE operator. You then need to supply the pattern to match. This can be a literal or it can include wildcard characters that make the matching process much more flexible. This can optionally be followed by an Escape character that can be used to help search for wildcard characters. If any of the arguments isn't a character string data type, SQL Server will convert it to a character string data type. match_expression LIKE pattern SQL LIKE and wildcard characters Before we dive into details, you should know that SQL LIKE pattern matching can include regular characters as well... --- ### Microsoft Teams Meetings Get New Spatial Audio Experience, Together Mode Improvements - Published: 2023-07-03 - Modified: 2023-07-03 - URL: https://petri.com/microsoft-teams-june-2023-updates/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Microsoft has shared the latest round of updates made to its Teams collaboration platform in June 2023. The company released 45 new features to improve meetings, chats, Teams Rooms devices, and much more. Here’s a look at everything you need to know. Meeting and calling features Last month, Microsoft introduced a new Spatial audio feature for Teams meetings. The new audio experience is designed to make it easier to follow conversations when multiple participants are speaking together. The feature is available for users with supported devices on Windows and macOS. Microsoft added a new feature that lets users customize captions in Microsoft Teams meetings. Users can change the color and font size, customize the caption window, and view recent captions. Moreover, the Together Mode view shows the name labels for status icons like active speaker, pin, or spotlight. Users can now view reactions and raised hands directly in Together Mode. Other updates include a new lobby policy that lets up to 10,000 users in a distribution list bypass the lobby in Teams meetings. Up until now, this capability was only available for 1,000 participants. Microsoft Teams Together Mode improvements New chat features in Microsoft Teams Microsoft released a new chat feature that allows users to mark all unread activities as read. The latest update also allows compact mode users to hide message previews in their chat list. Additionally, Microsoft Teams enables IT admins to manage external call routings for VoIP and PSTN calls for Teams Phones users. Users can now... --- ### How Microsoft Teams Meeting Notes Can Supercharge Your Meeting Efficiency > Here's how to use the new Microsoft Teams Meeting Notes to record the agenda, create discussion points, action items, and share important information with colleagues. - Published: 2023-06-30 - Modified: 2023-06-30 - URL: https://petri.com/microsoft-teams-meeting-notes/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams - Article Type: How To Microsoft Teams Meeting Notes is a feature in the Teams and Outlook apps that allows you to take collaborative notes during meetings in Microsoft Teams. Meeting Notes are Loop components stored in the chat transcript for the meeting, so you can easily access them later or share them elsewhere. In this article, I will show you how to take advantage of these new collaborative meeting notes in Teams meetings. The main use cases for Microsoft Teams Meeting Notes Meeting Notes is in public preview and is just starting to roll out for Microsoft 365 customers. It is scheduled to be in standard release by the end of summer 2023. You can use new capabilities in Meeting Notes to record the agenda, discussion points, action items, and other important information from your Microsoft Teams meetings. There are a few different ways to take Meeting Notes in Teams. You can: Start taking notes during the meeting: To do this, open the chat transcript for the meeting and select the Meeting Notes tab. You can then start typing your notes. The collaborative meeting notes will be saved in the meeting owner Onedrive. Pre-populate the meeting notes: If you know what you want to discuss in the meeting, you can pre-populate the meeting notes before the meeting starts. To do this, open the chat transcript for the meeting and select the Meeting Notes tab. Then, click Start taking meeting notes and type in your agenda or other important discussion points. Transcribe the meeting: If you want to have a transcript of your... --- ### Microsoft, Moody's Partner to Empower Financial Services with Generative AI Tools - Published: 2023-06-30 - Modified: 2023-06-30 - URL: https://petri.com/microsoft-moodys-generative-ai/ - Categories: Data Management - Tags: Azure OpenAI Service, Moody's, News - Article Type: News Microsoft has announced a new strategic partnership with New York-based financial risk assessment firm Moody’s. The company explained that the deal will enable Moody’s to bring generative AI capabilities to its enterprise solutions. Moody’s plans to use Azure OpenAI service to build new research and risk assessment products and services in order to improve data and risk management. The company has deployed a new internal tool called “Moody’s CoPilot” to its 14,000 employees worldwide. The AI-powered research assistant will make it easier for employees to query and access data with large language models (LLMs). According to Microsoft, Moody’s Copilot will let customers quickly summarize information from different data sources. For instance, the tool will combine economic forecasts, credit indicators, risk and reputational profiles, and firmographic data to generate a detailed analysis of a specific sector or organization. The integration of Moody’s data with AI models will also enable users to receive contextual and informative answers to their questions. Moody’s has also announced its plans to embrace the Microsoft Fabric data management platform that launched in May 2023. It’s a comprehensive suite of tools that enables enterprise customers to store, manage and analyze data. Microsoft Fabric integrates with Power BI, Azure Data Factory, and Azure Synapse Analytics. Moody’s adopts Microsoft Teams to improve productivity and collaboration Last but not least, Moody’s will use Microsoft Teams to create a new collaboration platform for its employees and customers. The app will help to streamline and automate manual workflows and summarize information from multiple... --- ### Microsoft Confirms New Windows Bug Affecting Some Endpoint Security Tools - Published: 2023-06-30 - Modified: 2023-06-30 - URL: https://petri.com/microsoft-windows-bug-security-tools/ - Categories: Windows 10, Windows 11, Windows Server 2022 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has acknowledged a new compatibility issue with Trellix's endpoint security software and some Windows 11 and Windows 10 devices. The company detailed on the Windows Health dashboard that the bug prevents users from opening Microsoft Office and third-party apps. According to Microsoft, the problem is caused by the latest Patch Tuesday updates released on June 13. The company says that some users who installed the recent OS updates were unable to launch Microsoft Outlook, other Office apps, and third-party software. The problem affects Windows 11 versions 21H2 and 22H2, Windows 10 versions 21H2 and 22H2, as well as Windows Server 2022. “This issue only occurs with 32-bit apps running on 64-bit Windows with Trellix Endpoint Security version earlier than 35. 31. 25. When attempting to open an affected app, Event Log indicates an access violation with the error "module is unknown". This issue is not likely to be encountered by consumers using Windows devices in their home,” Microsoft explained. Microsoft recommends customers to update Trellix Endpoint Security Agent to version 35. 31. 25 and newer to mitigate the compatibility issue on Windows 11 and 10 devices. Meanwhile, customers who are experiencing problems with other anti-malware apps are advised to contact their security software providers. The June 2023 Windows updates also break Google Chrome Furthermore, some users reported that the KB5027231 security update blocks access to Google Chrome on Windows PCs. Malwarebytes confirmed that its Exploit Protection module prevents users from fully loading the web browser. The KB5027231 update is also incompatible with security... --- ### Windows Copilot Preview is Now Available for Insiders > The first Windows Copilot preview is now available for a subset of Insiders on the Dev Channel. Microsoft plans to add new features to its new AI Assistant on Windows 11. - Published: 2023-06-30 - Modified: 2023-07-26 - URL: https://petri.com/windows-copilot-preview-dev-channel-insiders/ - Categories: Windows, Windows 11 - Tags: News, Windows Copilot, Windows Insider - Article Type: News Microsoft has started testing Windows Copilot, its new AI Assistant for Windows 11 with Windows Insiders yesterday. The first Windows Copilot preview is available for a subset of Insiders who will install the Dev Channel build 23493, and Microsoft plans to expand to other Insiders channels over time.   Windows Copilot was first announced during Microsoft’s Build developer conference last month. This year, AI was a pretty big focus and Windows Copilot will bring the same technology from OpenAI that powers ChatGPT, the Bing Chatbot, and the Microsoft 365 Copilot to a new built-in assistant on Windows 11.   Yesterday, Microsoft made it pretty clear that “not everything shown at Build for Windows Copilot is included in this first, early preview. ” Microsoft is still working on adding third-party plugin support, and the company announced at Build that it’s working with OpenAI to make ChatGPT plugins compatible with its own Copilot offerings, including the Microsoft 365 Copilot. What to expect from the Windows Copilot Preview? Again, even if you install the Dev Channel build 23493 today, Windows Copilot isn’t available for all Dev Channel testers yet as Microsoft plans to monitor feedback before expanding access to it. The Windows Copilot Preview also requires Microsoft Edge Beta version 115. 0. 1901. 150 or higher. If you land in the pool of Dev Channel Insiders who get early access to Windows Copilot, the AI assistant can be launched from a new button in the taskbar, or by pressing Win + C. The Copilot then appears as a sidebar... --- ### Microsoft Rebrands Yammer Web Experience to Viva Engage - Published: 2023-06-29 - Modified: 2023-06-29 - URL: https://petri.com/microsoft-rebrands-yammer-viva-engage/ - Categories: Viva, Yammer - Tags: News, Viva Engage, Yammer - Article Type: News Earlier this year, Microsoft unveiled its plans to ditch the Yammer brand in favor of Viva Engage. Now, the company has announced that the Yammer. com web experience has been renamed to Viva Engage. Yammer was initially launched as a startup at a TechCrunch startup event back in 2008. It was designed to help organizations create internal social networks for employees. Microsoft acquired Yammer more than a decade ago for $1. 2 billion. The company later integrated the enterprise-focused social networking tool with its core Office suite of products such as Microsoft Teams. On the other hand, Viva Engage is a relatively new addition to the Viva employee experience platform. Microsoft described it as an “evolution” of the Yammer Communities app for Microsoft Teams, which provides "consumer-like social networking" features for organizations. Viva Engage is available within Microsoft Teams alongside other Microsoft Viva modules. Microsoft explained that keeping two different social platforms was confusing for enterprise customers. So, the company is eliminating the Yammer brand and going all-in on Viva Engage instead. Microsoft noted that it has already renamed Outlook notifications, Yammer Embed, Yammer SharePoint web part, and Yammer mobile app to Viva Engage. “When existing Yammer Desktop PWA users open the app, they’ll get a prompt asking them to reinstall the app. Users will have to click “OK” and the app will reinstall and renamed to “Viva Engage (Yammer)”. If the prompt doesn't display the Engage logo and shows the Yammer logo, users will have to uninstall the app and reinstall... --- ### Microsoft Adoption Score Feature Now Generally Available for Commercial Customers - Published: 2023-06-29 - Modified: 2023-06-29 - URL: https://petri.com/microsoft-adoption-score-commercial-customers/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has released new updates to improve Adoption Score, Usage Reports, and Experience insights in the Microsoft 365 admin center. The company announced yesterday that the Adoption Score feature is now generally available for all commercial customers. The Adoption Score feature uses metrics to help customers understand how Microsoft 365 software gets used in enterprise environments. It also provides insights and recommended actions to improve productivity and efficiency within an organization. Adoption Score pulls usage data from Microsoft Teams, OneDrive, Exchange, Word, PowerPoint, Outlook, Yammer, Skype, OneNote, SharePoint, and Exchange. Microsoft explained that the Adoption Score feature is enabled by default for all organizations. IT admins will be able to access it by heading to the Microsoft 365 admin center >> Reports >> Adoption Score. Moreover, it’s possible to access Microsoft 365 adoption insights by user segments with Group Level Aggregates in Adoption Score. The Group Level Aggregates dropdown menu Additionally, Microsoft has added organizational messages to select Adoption Score people experiences. This release lets IT admins send actionable and targeted messages directly into users’ workflow. For instance, organizational messages can be used to inform employees about new features and send reminders to use products. Updates coming to Experience insights preview Microsoft’s Experience insights feature is available in preview for commercial customers with 2000+ licenses (Office 365 and Microsoft 365 E3 and E5). It allows IT Pros to gain insights about in-product feedback, help article consumption data, and usage of Microsoft 365 apps. “Experience insights offers several key features including... --- ### Microsoft Partners with Rubrik to Enhance Incident Response with Generative AI - Published: 2023-06-29 - Modified: 2023-06-29 - URL: https://petri.com/microsoft-rubrik-incident-response/ - Categories: Security - Tags: News, Security - Article Type: News Microsoft has announced a new partnership with Zero Trust cybersecurity vendor Rubrik. The deal will allow enterprise customers to utilize natural language processing and generative AI to speed up security response times during cyber attacks. Rubrik is a cybersecurity company that focuses on enhancing data security and operational resilience for organizations. It offers a platform that supports ransomware investigation, incident containment, sensitive data discovery, orchestrated application recovery, and Zero Trust data protection. “In a time when bad actors are becoming increasingly inventive, organizations must lean on AI to turn the tables on attackers,” said Charlie Bell, EVP of Security, Compliance, Identity, and Management at Microsoft. “Working with Rubrik establishes a counterpoint to the modern threats that our customers are facing and allows organizations to react to incidents more quickly. Through the speed of AI, we believe security defenders will be able to identify and stop attacks faster than ever before. ” Rubrik explained that the new integration with Azure OpenAI Services would help security teams in the following ways: Streamline incident creation: It detects malicious activities within Rubrik Security Cloud and automatically creates an incident in Microsoft Sentinel. Recommend Task Workstreams: It provides recommendations for incident response activities to help IT admins expedite the investigation of security incidents. Accelerate Cyber Recovery: It generates code for the investigation of incidents in Microsoft Sentinel. The Rubrik Anomaly Detection service will use AI to ensure real-time monitoring of data backups and detection of file activity within the system. Subsequently, it identifies anomalies and forwards... --- ### First Ring Daily: Windows 11 Moment 3 Approaches, Windows Copilot Still MIA - Published: 2023-06-29 - Modified: 2023-07-14 - URL: https://petri.com/first-ring-daily-windows-11-moment-3-windows-copilot-mia/ - Categories: Windows, Windows 11 - Tags: News, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Windows 11 Moment 3 now being available as an optional update, and Windows Copilot still missing in action despite Microsoft promising a June preview release. --- ### Grafana Patches Critical Azure AD Authentication Bypass Vulnerability - Published: 2023-06-28 - Modified: 2023-07-17 - URL: https://petri.com/grafana-azure-ad-authentication-bypass-flaw/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, Grafana, News - Article Type: News Grafana has recently released new security updates to patch a critical vulnerability in its application. The flaw could enable threat actors to hijack Grafana accounts that use Azure Active Directory (recently renamed Microsoft Entra ID) for authentication. Grafana is a popular analytics and visualization service that enables IT admins to monitor and analyze time-series data. It provides access to real-time dashboards with interactive charts, graphs, and notifications. Grafana helps organizations to gain insights into the performance of their systems, visualize metrics, and monitor key performance indicators. The critical security vulnerability (tracked as CVE-2023-3128) received a CVSS v3. 1 score of 9. 4. Grafana mentioned that the flaw exists in the email claim-based validation of Azure AD accounts. “Grafana validates Azure Active Directory accounts based on the email claim. On Azure AD, the profile email field is not unique across Azure AD tenants. This can enable a Grafana account takeover and authentication bypass when Azure AD OAuth is configured with a multi-tenant Azure AD OAuth application,” Grafana explained in a security advisory. Upgrade to the latest Grafana version Grafana confirmed that the security flaw impacts all deployments that leverage Azure AD OAuth to authenticate users. It’s highly recommended that customers should upgrade to Grafana 10. 0. 1 or later to protect their organizations against cyberattacks. The company has also collaborated with Microsoft, Amazon, and other cloud vendors to upgrade Grafana Cloud to the latest version. Meanwhile, Grafana detailed a couple of mitigation strategies for organizations that are unable to immediately upgrade their instances. The company... --- ### Implementing Access Controls using Microsoft Intune > Here's how organizations can significantly minimize their exposure by controlling access privileges with Microsoft Intune. - Published: 2023-06-28 - Modified: 2025-01-27 - URL: https://petri.com/microsoft-intune-suite-endpoint-management/ - Categories: Endpoint Management, Endpoint Protection - Tags: Identity Management, intune, Microsoft Intune - Article Type: Overview Implementing identity and access management processes is an effective way to protect sensitive corporate data. It allows organizations to regulate user access and prevent instances of identity theft, data breaches, and unauthorized access to confidential corporate information. In this article, we'll detail how organizations can significantly minimize their exposure by controlling access privileges with Microsoft Intune. The problem with local administrator privileges Access management is a fundamental aspect of modern IT security operations for corporate devices. While the practice of providing non-privileged user accounts to users has long been established, it is increasingly important to protect sensitive corporate data. The growing reliance on technology and the rising threat of cyber-attacks are just two factors here. Providing users with local administrator privileges is a common practice in many organizations, but it can create significant security risks. Local administrator privileges provide users with extensive control over their devices. This can include the ability to modify system settings and install or remove software in the System context or for all users. This level of access can make it easy for users to accidentally or intentionally introduce malware or other security threats to corporate devices by clicking malicious links or deliberately tampering with system settings to allow unauthorized access. Often, users are granted local administrator privileges to reduce the burden on IT support teams. It is thought that by allowing users to install their own software, helpdesk tickets will reduce in volume. In reality, with admin privileges, users may be more likely to experience system... --- ### Microsoft Reportedly Working on Windows 365 Cloud PC Offering for Consumers - Published: 2023-06-28 - Modified: 2024-11-19 - URL: https://petri.com/windows-365-cloud-pc-consumers/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft could be working to launch a consumer version of its Windows 365 Cloud PC service. According to a new report from Windows Central, the company unveiled its plans in an internal document released to the public as part of Microsoft's legal battle with the Federal Trade Commission. Microsoft introduced its Windows 365 offering back in July 2021. It’s a cloud-based virtualization service that builds on top of Azure Virtual Desktop. Windows 365 allows users to stream a Windows machine to any device (such as a PC, tablet, or smartphone) via a web browser. Currently, the service is only available for commercial customers, and it costs anywhere between $20 to $162 per user per month. In an internal “State of the Business” presentation from June 2022, Microsoft detailed its long-term goal to reach more Windows customers via cloud PCs. This hints that consumers might be able to stream and use Windows 11 on any device. “Move Windows 11 increasingly to the cloud: Build on Windows 365 to enable a full Windows operating system streamed from the cloud to any device. Use the power of the cloud and client to enable improved AI-powered services and full roaming of people’s digital experience,” Microsoft explained. Microsoft could introduce a Windows 365 Family subscription for consumers Previously, Windows Central’s Zac Bowden spotted an internal document that suggests features for Windows 365 for consumers. For instance, a Windows 365 Family subscription would let parents log into their kid’s cloud PC session. Microsoft has recently invested... --- ### June 2023 Preview Release Brings 'Moment 3' Features to Windows 11 > Microsoft made the Windows 11 Moment 3 update available with the optional June 2023 preview release yesterday. - Published: 2023-06-28 - Modified: 2023-07-14 - URL: https://petri.com/windows-11-moment-3-june-2023-preview-release/ - Categories: Windows, Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft made the Windows 11 ‘Moment 3’ update available with the optional June 2023 preview release yesterday. This update (KB5027303) was previously rolled out to Insiders on the Release Preview channel earlier this month, and the new features will roll out to the general Windows 11 version 22H2 audience with next month’s Patch Tuesday.   Microsoft’s ‘Moment’ updates for Windows 11 (a term that the company isn’t using publicly) are part of the company’s new “continuous innovation” paradigm, which promises new features to Windows 11 throughout the year in addition to annual updates coming in the fall season. While consumers may like the idea of getting new features more frequently, Microsoft is giving organizations the choice to keep these new features off by default to maintain a stable environment. For consumers, the Moment 3 update actually started rolling out in May using Controlled Feature Rollout (CFR) technology. There’s a new toggle in Windows Update for getting the latest features as soon as they’re available, but it’s disabled on managed devices.   New features in Windows 11 Moment 3 The ‘Moment 3’ update for Windows 11 brings accessibility improvements, taskbar changes, as well as some new features for developers and IT pros. Here are the main highlights: Live Captions: The accessibility feature that launched with Windows 11 version 22H2 is getting support for Chinese, French, German, Italian, Japanese, Portuguese, Spanish, Danish, English, and Korean Voice Access improvements: Microsoft is adding new commands for selecting and editing text, and the in-app voice access... --- ### Microsoft Details Onboarding Requirements for Microsoft 365 Copilot - Published: 2023-06-27 - Modified: 2023-06-29 - URL: https://petri.com/microsoft-365-copilot-requirements/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft 365 Copilot, News - Article Type: News Last month, Microsoft announced the launch of its Microsoft 365 Copilot Early Access Program. Now, the company has detailed a lengthy blog post to inform potential customers about how to prepare for Microsoft 365 Copilot. Microsoft 365 Copilot uses large language models to help users write/edit documents, organize data, and analyze information. Users can leverage natural language commands to interact with Office apps such as Microsoft Teams, Outlook, Word, Excel, PowerPoint, Viva, and more. The Copilot tool uses Microsoft Graph data to let users access files across an organization for content generation. Licensing requirements Microsoft explained that the AI-powered Copilot assistant would be available to organizations with Microsoft 365 E3 or Microsoft 365 E5 licenses. However, Mary Jo Foley recently confirmed that the tool will be a paid add-on for enterprise customers. Small businesses with Microsoft 365 Business or Business Premium licenses will also be eligible to access Microsoft 365 Copilot. Microsoft added that customers will need an Azure AD account and enroll in the Current Channel or the Monthly Enterprise Channel for Microsoft 365 apps for enterprise. IT admins will also need to enable Microsoft Teams plug-ins and unblock WebSockets connections from users’ endpoints. https://youtu. be/oeX0lsMA69U Microsoft 365 Copilot technical requirements Microsoft 365 Copilot doesn’t store user data, and it respects the complaint requirements of organizations. “Copilot experiences use the organizational content in your Microsoft 365 tenant, including users' calendars, emails, chats, documents, meetings, contacts, and more -- all from within the Microsoft 365 compliance boundary. Copilot does not use... --- ### Microsoft Teams Adds New Notetaking Experience to Channels - Published: 2023-06-27 - Modified: 2023-06-27 - URL: https://petri.com/microsoft-teams-notes-tab-channels/ - Categories: Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Microsoft has started rolling out a new Notes tab to Microsoft Teams for Enterprise customers. Powered by OneNote, the Notes tab will be automatically added when a user creates new standard channels in Microsoft Teams. OneNote is a digital notetaking app that is available for Microsoft 365 customers. It lets users capture, organize and share notes in different formats, including text, audio, and images. The OneNote app allows users to access and sync their notes across all platforms. Microsoft notes that the new notetaking experience will allow users to easily collaborate with their colleagues. It also makes it easier to organize and view all channel notes within a single notebook. The OneNote app also provides rich editing capabilities with support for ink annotations, typing, file attachments, and highlighting. “Previously, this capability was powered by Wiki, which is set to retire from Teams. If you are an existing Wiki user, you can choose to export your notes to OneNote from the Wiki tab itself. You can experience the above notetaking capabilities in OneNote by migrating from Wiki. Also, we will retain a read-only copy for you in the Wiki app, so you don’t lose anything,” Microsoft explained. Notes tab available in new standard channels in Microsoft Teams The new Notes tab in Microsoft Teams is rolling out gradually to all enterprise customers worldwide. However, the feature is currently only available on standard channels, and it’s not supported on shared or private channels. Microsoft has recently introduced a new collaborative notes experience... --- ### Microsoft Teams External Access Vulnerability Lets Attackers Deliver Malware - Published: 2023-06-26 - Modified: 2023-06-26 - URL: https://petri.com/microsoft-teams-external-access-vulnerability/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Security researchers have recently discovered a new vulnerability in Microsoft Teams. The flaw could enable threat actors to deliver malware to Teams users through a federated chat. The vulnerability was originally discovered by security researchers Max Corbridge and Tom Ellson from the JUMPSEC Labs' Red Team. The researchers found that the flaw exists in the External Access feature in Microsoft Teams. It allows users to communicate with individuals outside their organization via Teams chat and video calls. The Microsoft Teams vulnerability enables external users to inject malware into files sent to an employee's inbox. The file comes with a specially crafted message that tricks users into opening it on their computers. The security flaw lets attackers bypass built-in security measures that protect Teams users against malware and phishing campaigns. It affects all enterprise customers that use the app in its default configuration. "Exploitation of the vulnerability was straightforward using a traditional IDOR technique of switching the internal and external recipient ID on the POST request," Corbridge explained in a security advisory. "When sending the payload like this, it is actually hosted on a SharePoint domain and the target downloads it from there. It appears, however, in the target inbox as a file, not a link. " Microsoft Teams' external access flaw won’t be quickly patched The security researchers contacted Microsoft about the vulnerability before disclosing the details publicly. Microsoft, for its part, believes the exploit "does not meet the bar for immediate servicing. " The researchers advised that IT admins should disable... --- ### Microsoft Intune Adds Mobile Application Management Support for Microsoft Edge - Published: 2023-06-26 - Modified: 2023-06-27 - URL: https://petri.com/microsoft-intune-mam-for-edge-on-windows/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has announced the release of the June 2023 service release (2306) for Microsoft Intune. The latest update brings Mobile Application Management (MAM) support for Microsoft Edge for Business on Windows. Mobile Application Management (MAM) is a feature that enables organizations to protect and manage mobile apps installed on tablets and smartphones. It helps IT admins to secure corporate data on devices that are not even enrolled in a full MDM solution. The MAM feature supports app protection policies, app deployment, conditional access, and other capabilities. Microsoft mentioned that the MAM capability is a long-requested feature from enterprise customers. This release should help organizations to improve their overall security posture and protect sensitive data from unauthorized access on Windows PCs. “Using MAM, Microsoft Edge for Business provides users with secure access to organizational data on personal Windows devices with a customizable user experience. We've combined the familiar security features of app protection policies (APP), Windows Defender client threat defense, and conditional access, all anchored to Azure AD identity to ensure unmanaged devices are healthy and protected before granting data access,” the Microsoft Intune team explained. Microsoft has published a video that briefly demonstrates how MAM for Microsoft Edge for Business on Windows works: https://youtu. be/sU56UTnn-74 Getting started with MAM for Microsoft Edge for Business on Windows Microsoft says that MAM for Microsoft Edge for Business on Windows is available in public preview for organizations. Customers can participate in the public preview by signing up on this page. However, keep in mind... --- ### Microsoft Confirms New High CPU Usage Bug in Windows 11 File Explorer - Published: 2023-06-26 - Modified: 2023-06-26 - URL: https://petri.com/microsoft-high-cpu-usage-windows-11-file-explorer/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has acknowledged a new issue that causes high CPU usage in Windows 11 versions 21H2 and 21H2. The File Explorer bug only impacts users who had installed the KB5026368 and KB5026372 updates released on May 9. Effective Access is a feature that determines permissions and privileges that a user or user group has to access resources (like files, folders, or shared resources) on Windows devices. It helps IT admins to troubleshoot access issues, ensure security configurations, and verify user permissions. According to Microsoft, the File Explorer bug prevents administrators from viewing access permissions toshared files and folders on Windows 11 PCs. They will likely notice high CPU usage in File Explorer even if the Effective Access menu is closed in the "Advanced Security Settings" dialog box. “On affected devices, when the "View effective access" button is selected, you will receive the message "Computing effective access... . " but the results of the query might not be displayed and explorer. exe might continue to use CPU after the Advanced Security settings dialog is closed. This issue is unlikely to be experienced by consumers using Windows devices in their home, " Microsoft explained on the Windows Health Dashboard. Microsoft has confirmed that the File Explorer bug will not affect consumers using Windows 11 versions 21H2 and 21H2. This is because the Effective Access feature primarily caters to enterprise customers. Microsoft to fix Windows 11 File Explorer bug later this month If you’re currently experiencing high CPU utilization, Microsoft recommends signing out or rebooting the... --- ### Mitigating Identity-Related Risks With Windows Hello for Business and Seamless Single Sign-On (SSO) > Here's how Windows Hello for Business and seamless single sign-on (SSO) can help organizations to mitigate many identity-related risks. - Published: 2023-06-26 - Modified: 2023-06-26 - URL: https://petri.com/windows-hello-for-business-single-sign-on/ - Categories: Endpoint Protection, Security - Tags: Endpoint security, Security, Windows Hello, Windows Hello for Business - Article Type: Overview These days, document theft and data siphoning are common for most ransomware gangs. Because digital theft is different from analog theft, digital security should be different from analog security. In this article, we'll explore how Windows Hello for Business and seamless single sign-on (SSO) can help organizations to mitigate many identity-related risks. We’re holding on to technology from the sixties The world of digital business is far different than what it was a couple of decades ago. In the past, popular soda brands could protect their recipes by locking their vaults and Xerox machines. To compartmentalize the usage of mainframes, user accounts were created. Because time on mainframes was valuable, passwords were introduced. A simple, yet effective, way for a system to compare a value stored in computer memory to a value typed on a keyboard by a person. However, we’re still using the same method today when we sign in, mostly. We’ve scaled it up and met our doom What’s worse: on average we’re using 100 accounts for all sorts of different apps, services, and systems. One might think that the passwords used on Facebook, Snapchat, and PlayStation are of no concern to IT admins. However, when these credentials leak, they may also impact organizational credentials, because the only thing that we could agree on to identify us globally and uniquely is our email addresses. As Microsoft’s recommended practice is to use the same address for email as for sign-ins, this puts organizational credentials at risk. Combining leaked... --- ### Microsoft Patches Critical 'nOAuth' Flaw in Azure AD Apps - Published: 2023-06-23 - Modified: 2023-07-17 - URL: https://petri.com/microsoft-noauth-flaw-azure-ad-apps/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News, Vulnerability - Article Type: News Microsoft has patched a new security vulnerability that was discovered in some applications leveraging Azure Active Directory (recently renamed Microsoft Entra ID). The authentication bypass flaw could allow threat actors to completely take over the victim’s account. The security vulnerability, dubbed nOAuth, was first discovered by the security researchers at Descope. It lets threat actors modify email attributes in Azure AD accounts and abuse the "Log in with Microsoft" feature for authorization on the website or application. This could allow hackers to hijack the target account, establish persistence, and explore lateral movement. "If the app merges user accounts without validation, the attacker now has full control over the victim's account, even if the victim doesn't have a Microsoft account," Descope explained. "After successful login, the attacker has an open field depending on the nature of the app or site they have taken over. They can establish persistence, exfiltrate data, explore if lateral movement is possible, and so on. " You can see how the potential exploitation works in the video below: https://youtu. be/ceeA3FmKxtM How to protect Azure AD apps against 'nOAuth' Attacks The Descope security team reported the Azure AD authentication bypass vulnerability to Microsoft in April and won a $75,000 bug bounty. The company has since deployed mitigations to protect customers against nOAuth attacks. Microsoft has since published guidance to help developers address the flaw in vulnerable apps. The company highly recommends that email claims should not be used for primary user identification purposes or authorization purposes. Microsoft suggests developers to... --- ### Microsoft 365 Customers Locked Out of Outlook, Teams, and Other Apps - Published: 2023-06-23 - Modified: 2023-06-24 - URL: https://petri.com/microsoft-365-customers-locked-out-outlook-teams/ - Categories: Microsoft 365 - Tags: featured-top-right, Microsoft 365, Microsoft Outlook, Microsoft Teams, News - Article Type: News If you have recently encountered issues accessing Microsoft Teams, Outlook, and other Microsoft 365 apps, you’re not alone. Several IT admins detailed on Reddit and Microsoft support forums that the problem started affecting customers worldwide on June 19 (via Bleeping Computer). Specifically, IT admins received reports that some Outlook users are unable to access the app or experienced delayed email delivery. Microsoft Teams users also encounter an error message that says “You’re missing out! Ask your admin to enable Microsoft Teams for. ” The ongoing issue also appears to be affecting Microsoft Word, OneDrive for Business, and Excel. "Have a few users who are unable to sign in and authenticate with desktop apps. Some connection to Microsoft appears completely down for them... even the defender scan when installing new software reports it is not able to connect. The weather widget is down. OneDrive, Teams, Word... all down. But they can use browser versions," an IT admin wrote on Reddit. Image credit: Petri/Rabia Noureen Workaround to fix sign-in issues in Microsoft Teams and Other Microsoft 365 services As of this writing, Microsoft has yet to acknowledge the problem and deploy a fix to address it across all Microsoft 365 tenants. In the meantime, some administrators have suggested a couple of workaround solutions to help customers resolve the issue in their organization. First, IT admins should ensure that Microsoft 365 apps such as Outlook and SharePoint are enabled for users in their Azure Active Directory (Azure AD) tenants. It’s also recommended to remove... --- ### What is AWS Lambda? > AWS Lambda is an event-driven serverless computing platform on the AWS cloud. Learn how AWS Lambda works and what are the best use cases for this platform. - Published: 2023-06-23 - Modified: 2023-06-23 - URL: https://petri.com/what-is-aws-lambda/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, AWS Lambda, Lambda - Article Type: Overview AWS Lambda is an event-driven, serverless compute service offered by Amazon Web Services (AWS). It enables developers to run code in response to events without having to manage the computing resources and infrastructure needed to run these applications. In this article, I’ll explain how AWS Lambda works and detail the best use cases for this platform.   What is AWS Lambda? AWS Lambda allows developers to run event-driven code for almost every type of service, application, or framework. The platform can auto-scale to handle varied workloads and allow developers to focus solely on writing code for their applications. AWS Lambda relies on Lambda functions, which can be written in different programming languages and triggered by events such as changes in data or user actions. The serverless architecture of AWS Lambda provides a cost-efficient platform to customers who will only be charged for the actual usage of their function without any idle time or upfront costs. The major components of AWS Lambda Here are the major components of AWS Lambda you should know about to get started with the serverless computing platform. Lambda functions: Lambda stores the code written by developers in a function that can be invoked by various triggers. Lambda functions define the logic and all the actions to be executed when the function is triggered, and they’re a crucial component of Lambda. Triggers: A trigger is an event that can synchronously or asynchronously invoke a Lambda function. Synchronous or asynchronous invocation for AWS Lambda functions (Image credit:... --- ### Dev Home Preview 0.2 Now Available With Several Improvements and Bug Fixes - Published: 2023-06-22 - Modified: 2024-11-19 - URL: https://petri.com/dev-home-preview-0-2-release/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has announced the release of the 0. 2 preview version of the Dev Home app for Windows 11. The latest update brings several quality improvements and bug fixes to enhance the overall experience for developers. Microsoft launched the new Dev Home app for Windows 11 in preview at its annual Build developer conference. The new app is designed to make it easier for developers to set up their developer environment with a winget configuration file. Dev Home provides a customizable dashboard that lets developers keep track of their projects. It’s also possible to connect GitHub accounts to monitor the latest issues, pull requests, and more. First of all, Microsoft has introduced a new WinGet YAML configuration file for NodeJS. The new configuration file is designed to streamline the management process for NodeJS dependencies. Users will now see a new loading progress ring while accessing widgets from the Dev Home dashboard. Microsoft has also released some enhancements for the repository cloning tool in Dev Home. The app now shows a list of cloned repositories to help Windows 11 users manage and access their projects. You can find the full list of improvements included in Dev Home Preview 0. 2 below: What's new in Dev Home Preview 0. 2? Miscellaneous improvements 🛠️ A WinGet YAML configuration file for NodeJS has been added to the repository. 🛠️ The dashboard now displays a loading progress ring while loading widgets (Thanks @aksoftware98! ). 🛠️ System widget graphs now use antialiasing for a smoother appearance. 🛠️ Core widgets now work on Arm64... --- ### Google Takes on Microsoft with New Antitrust Complaint Over Cloud Practices - Published: 2023-06-22 - Modified: 2023-06-22 - URL: https://petri.com/google-microsoft-antitrust-cloud-practices/ - Categories: Cloud Computing - Tags: cloud computing, Google Cloud Platform, Microsoft Azure, News - Article Type: News Google has officially filed an antitrust complaint against Microsoft with the Federal Trade Commission (FTC), according to a report from The Information. The company claimed that Microsoft abused its dominant position in the enterprise software market to push more customers toward its cloud services. In a letter to the FTC, Google explained that Microsoft used the licensing terms in its Office and Windows Server products to keep customers locked into its cloud computing business. The company argued that this approach prevents customers from switching to competitors’ products. Google also said that Microsoft’s control presents a major national security risk. The company highlighted several security incidents where threat actors targeted Microsoft products, including SolarWinds attacks. This is not the first time that Microsoft has been accused of anticompetitive practices. Last year, Microsoft agreed to change its cloud-computing practices to avoid an antitrust probe from the European Commission. The complaints were made by several European cloud vendors, including OVHcloud, Aruba, and CISPE. The licensing changes made it easier for customers to move their existing software to other cloud providers. However, it didn’t affect businesses based in the US. Microsoft continues to grow in the cloud computing space The letter was sent in response to an FTC request for comment on the business practices of cloud computing companies. Specifically, FTC detailed that it’s seeking information about how it could impact competition, data security, as well as select industries like e-commerce and defense. "Cloud providers once focused on customer retention via innovation and customer... --- ### How to Import PST Files to Office 365 > Here's how to import PST files to Office 365 using either Outlook or the Microsoft Purview Compliance portal and Azure AzCopy. - Published: 2023-06-21 - Modified: 2023-07-24 - URL: https://petri.com/import-pst-to-office-365/ - Categories: Microsoft 365 - Tags: Office 365, Outlook - Article Type: How To As an IT pro, the process of exporting users' mailboxes to PST is rather straightforward. However, importing PST email and calendar items into new mailboxes can be tricky. In this article, I will detail how to import PST files to Office 365 using either Outlook or the Microsoft Purview Compliance portal and Azure AzCopy. How to import PST files to Office 365: Before you start PST files are personal storage files that are used to store Outlook data, such as emails, contacts, and calendars. If you have PST files that you want to import into Office 365, perhaps from a company merger or acquisition, there are a few different ways to do it. In any case, you'll want to move the information in these PST files into Exchange Online as soon as possible. PST files can become corrupt somewhat quickly – for this reason, it's not safe to use PST files for long-term email storage. Also, PST files are generally local on a user's computer. If that device is broken or stolen, your emails are gone! One way to import PST files to Office 365 is to use the Import/Export Wizard in Outlook. I'll explain how to do this in the next section.  However, a more robust method to import PST files to Office 365 is to use the Microsoft Purview Compliance portal and a nifty little tool called Azure AzCopy. This method is preferred, especially for more significant imports with many employees or PST files. I'll demonstrate how this... --- ### Microsoft to Fix Slow Startup or Freezing Issues in Outlook - Published: 2023-06-21 - Modified: 2023-06-21 - URL: https://petri.com/microsoft-outlook-slow-startup-freezing/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is working to fix a bug causing Outlook to become unresponsive on the startup screen for a while before launching normally. The company acknowledged the issue in a support document published on June 19. According to Microsoft, the Outlook desktop app syncs the entire offline data file (. ost) during the startup process. “Investigation of profile and OST file names will show new OST files are not being created (this would also appear in the Application Event Logs if it were the cause). Customers often report that if they cancel Outlook opening and try again, it will open up without delay,” Microsoft explained. Microsoft also mentioned that the Outlook app fails to start in some instances when the Airplane mode is enabled on systems. Users will see the following error message “Cannot start Microsoft Outlook. Cannot open the Outlook window. The set of folders cannot be opened. The attempt to log on to Microsoft Exchange has failed. ” Microsoft found that the Outlook startup issues could be caused by cache re-priming. It’s a process where the cache is refreshed with the data that was previously evicted. Its purpose is to ensure faster access to that data in the future. Cache re-priming occurs when users create new profiles or disable shared calendar improvements. Workaround: How to fix slow startup/freezing issues in Microsoft Outlook Microsoft is currently working on a permanent fix for these Outlook startup issues. The company says that the problem happens when the app fails to determine the default state... --- ### ASUS Routers Get New Firmware Updates to Patch Critical Vulnerabilities - Published: 2023-06-20 - Modified: 2023-06-20 - URL: https://petri.com/asus-routers-firmware-updates-vulnerabilities/ - Categories: Hardware - Tags: Asus, Security, Vulnerability - Article Type: News ASUS has rolled out a new set of firmware updates to address critical vulnerabilities in its several router models. The company published a security advisory yesterday recommending customers to apply the security patches or restrict WAS access. Specifically, the latest firmware updates aim to fix two critical vulnerabilities with a 9. 8 severity rating out of 10. Tracked as CVE-2018-1160, the first flaw could enable threat actors to gain arbitrary code execution. Meanwhile, the second vulnerability (CVE-2022-26376) could be triggered with a “specially-crafted HTTP” request that leads to memory corruption. According to ASUS, the security flaws have impacted around 20 router models. The list includes GT6, GT-AXE16000, GT-AX11000 PRO, GT-AXE11000, GT-AX6000, GT-AX11000, GS-AX5400, GS-AX3000, XT9, XT8, XT8 V2, RT-AX86U PRO, RT-AX86U, RT-AX86S, RT-AX82U, RT-AX58U, RT-AX3000, TUF-AX6000, and TUF-AX5400. ROG Rapture GT-AXE16000 ASUS advises customers to urgently patch vulnerable WiFi routers ASUS has urged customers to patch all affected router models to prevent hackers from gaining unauthorized access. However, people who are not yet ready to install the updates should disable services accessible through WAN. “If you choose not to install this new firmware version, we strongly recommend disabling services accessible from the WAN side to avoid potential unwanted intrusions. These services include remote access from WAN, port forwarding, DDNS, VPN server, DMZ, and port trigger,” ASUS explained. It’s highly recommended that customers should regularly audit their network equipment to mitigate potential security risks. The company also suggests setting up separate passwords for the router admin panel and the wireless network. We... --- ### Microsoft Bookings Mobile Apps to Be Retired Next Month - Published: 2023-06-20 - Modified: 2023-07-14 - URL: https://petri.com/microsoft-bookings-mobile-apps-retire/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is getting ready to sunset its Bookings mobile apps next month. The apps will be retired on July 15, and users will no longer be able to access Microsoft Bookings through Android and iOS devices. Microsoft Bookings is an appointment scheduling and booking management service that launched in March 2017. The tool is primarily designed to help small businesses track, manage, and organize their appointments and calendars. It’s possible to create an online booking page that lets customers view available timeslots and create appointments. The scheduling tool integrates with other Microsoft 365 services like Teams and Outlook. Microsoft had already removed the Bookings mobile apps from the App Store and Google Play Store back in February this year. However, the apps continue to work for existing users who have already installed them on their mobile devices. With Microsoft Bookings mobile apps shutting down soon, users will no longer be able to access the service on iOS and Android phones. The company suggests customers use the Bookings app via the web browser. “We have launched the mobile friendly web version for users to access Bookings web page (https://book. ms) on their mobile browser. We recommend users who are using the mobile Apps to transition to the mobile web version,” the company explained in a message on the Microsoft 365 admin center. Microsoft Bookings web app will remain available on mobile Microsoft didn’t explain why it’s retiring the Bookings mobile apps, but it seems likely that the decision is driven by low... --- ### The Ultimate Guide to Web Application Firewalls (WAF) - Published: 2023-06-20 - Modified: 2024-05-10 - URL: https://petri.com/web-application-firewall/ - Categories: Cloud Computing, Security - Tags: cloud computing, NoAD, NoAds, Security, WAF, Web Application Firewall - Article Type: Sponsored An often-overlooked element of security is the Web Application Firewall (WAF), especially in cloud computing. In this article, I explain what a WAF does, the different kinds of WAF, and I discuss why you should deploy one or more WAFs in your architecture. What is a Web Application Firewall (WAF)? A Web Application Firewall, often referred to as a WAF, is a special kind of firewall that inspects and filters network traffic to web applications. A web application can come in many forms, but it typically is something that presents itself as an HTTP or HTTPS service that is accessed, either on private networks or the Internet, by remote clients. Some examples might include: A static website. A web application with dynamic content. An application host that shares a client application, such as a React-based client. An API server There are many ways that malicious actors start attacks on organizations, like: Physical attacks start on the physical premises of the intended victim. This might include placing a listener appliance or simply looking for Post-its with passwords. Social engineering is where the attacker impersonates someone of importance to try to gain something like a password reset. Identity theft to get credentials on a network, maybe through the use of phishing. Obtaining network entry through the use of malware. Attacking a web application to damage an organization. The job of a WAF is to deal with that last attack vector, which is the one we often think of when we consider... --- ### Microsoft Azure Firewall Adds New Upgrade/Downgrade Experience - Published: 2023-06-20 - Modified: 2023-06-20 - URL: https://petri.com/azure-firewall-upgrade-downgrade/ - Categories: Microsoft Azure, Security - Tags: Azure Firewall, News - Article Type: News Microsoft has released a new upgrade/downgrade experience for Azure Firewall. The feature allows customers to switch between the Azure Firewall Standard and Premium offers with a single click. Azure Firewall is a cloud-native security solution for Azure environments. It enables customers to protect their network resources and applications against unauthorized access and security threats. Azure Firewall supports network security, intrusion detection and prevention system, application fallback, and outbound source network address translation. The service also provides integration with Azure Monitor to support logging and analytics capabilities. Microsoft offers three Azure Firewall SKUs: Basic, Standard, and Premium. Azure Firewall Basic is designed for small and medium-sized businesses. The Standard offering is ideal for customers with up to 30Gbps of throughput requirement. Azure Firewall Premium helps organizations protect highly sensitive apps with TLS inspection, intrusion detection and prevention, URL filtering, and other security features. “The feature simplifies the upgrade/downgrade process by automating the entire process. It automatically upgrades all Azure firewall instances, one after the other. It also ensures that the upgrade process does not impact your network traffic, ensuring business continuity. It allows you to automatically upgrade your standard policy to a premium so it will match your upgraded Premium SKU,” Microsoft explained. Microsoft explained that the new upgrade/downgrade feature is easily accessible through the Azure portal or via PowerShell, and Terraform. It lets customers quickly upgrade their firewall and policy to a Premium SKU. Other capabilities include improved security features and time-saving capabilities. How to use the Azure Firewall upgrade/downgrade... --- ### First Ring Daily: New Outlook to Replace Mail and Calendar Apps in 2024 - Published: 2023-06-20 - Modified: 2023-07-14 - URL: https://petri.com/first-ring-daily-outlook-windows-11-mail-app/ - Categories: Outlook, Windows 11 - Tags: News, Outlook, Outlook for Windows, Windows 11 - Article Type: News In this episode of First Ring Daily, Brad Sams and Paul Thurrott discuss Microsoft's plan to replace the Windows 11 Mail and Calendar apps with the new web-based Outlook for Windows in September 2024. --- ### Microsoft Defender for Endpoint Eases Enrollment Requirements for Devices Managed via Intune - Published: 2023-06-19 - Modified: 2023-08-30 - URL: https://petri.com/microsoft-defender-for-endpoint-device-enrollment-intune/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, Microsoft Intune, News, Windows - Article Type: News Microsoft has announced some changes coming to the security settings management capabilities in Microsoft Defender for Endpoint this month. The company plans to remove the Azure Active Directory (AD) join or Hybrid Azure AD join enrollment requirement for Windows devices. Last year, Microsoft released a new feature called Security Management for Microsoft Defender for Endpoint. It’s designed to streamline the management of devices that are not managed by Microsoft Intune. Up until now, this capability was only available for Azure AD joined or hybrid Azure AD joined devices. Microsoft explained that it’s updating this requirement to streamline the enrollment process for Windows devices. This change should let IT admins protect more devices such as Domain Controllers (DCs) or kiosks. “With Microsoft Defender for Endpoint, you can now deploy security configurations from Microsoft Intune directly to your onboarded devices without requiring a full Microsoft Intune device enrollment,” Microsoft explained. “With this capability, devices that aren’t managed by a Microsoft Intune service can receive security configurations for Microsoft Defender for Endpoint directly from Intune. ” Microsoft Defender for Endpoint to roll out updated enrollment requirements in preview The new settings management experience will be available for organizations enrolled in the Microsoft Defender for Endpoint public preview program later this month. To get started, IT admins will need to head over to the Microsoft Defender for Endpoint portal and click Settings >> Endpoints >> Advanced features >> Preview features. Customers will also need to deploy the latest updates on their Windows devices. Microsoft notes... --- ### How To Block Senders in Office 365 > Here are all the different methods IT pros can use to block senders in Office 365, including using the the Tenant Allow/Block List in the Microsoft 365 Defender portal - Published: 2023-06-19 - Modified: 2023-06-19 - URL: https://petri.com/microsoft-office-365-block-sender/ - Categories: Microsoft 365 - Tags: Exchange Online Protection, Microsoft 365, Microsoft 365 Defender, Office 365 - Article Type: How To There are quite a few methods IT Pros can use to block malicious and harmful emails from flowing into their organizations. Similar to my previous post on adding a whitelist email address or domain to your Microsoft 365 settings, I'm going to detail different methods to block senders in Officer 365 and offer some commentary and recommendations for each of them. What can IT Pros do to block senders in Office 365? Let's start off by going back to the basics and defining the fundamentals of an email message. First of all, you have a message envelope and the message content. The message envelope contains all the delivery information required to send from one SMTP server to another. You can think of it as a TCP/IP packet header – a small bit of info designed to help the email message flow from sender to recipient. The recipient never sees the message header as it is dynamically created during the message transmission process, then discarded. Blocked sender lists and blocked domain lists in anti-spam policies in Exchange Online Protection (EOP) only inspect the 'From address' of the email message. They do not inspect the 'MailFrom' address which is used by the sending SMTP server. The number one recommended option for blocking mail from specific senders or domains is the Tenant Allow/Block List. I will explain how to add entries to the Microsoft 365 Defender portal website. The steps are similar to creating whitelists for email addresses and domains. I will... --- ### Microsoft Confirms Recent Cloud Outages Caused By Storm-1359 DDoS Attacks - Published: 2023-06-19 - Modified: 2023-08-02 - URL: https://petri.com/microsoft-outages-ddos-attacks/ - Categories: Cloud Computing, Microsoft Azure - Tags: Microsoft 365, Microsoft Azure, Microsoft Teams, News, OneDrive, Outlook - Article Type: News Earlier this month, Microsoft confirmed a major outage that affected Azure, Outlook, Teams, and other Microsoft 365 services. The company has now acknowledged that the disruption to its services was caused by a distributed denial of service (DDoS) attack. On June 5th, Microsoft tweeted about an outage that prevented thousands of users from accessing its cloud services. The company later reported that it had detected an unusual spike in network traffic that impacted the Azure cloud computing platform. At the time, a threat actor called Anonymous Sudan claimed responsibility for the cyberattack. However, Microsoft didn’t share any technical details and started a formal investigation into the incident. In a blog post released on Friday, Microsoft confirmed that the early June outages were triggered by a Layer 7 (application layer) DDoS attack. The hacking group Storm-1359 used various botnets and tools to target Microsoft’s services. They leveraged Virtual Private Servers (VPS), DDoS tools, and cloud infrastructure to launch sophisticated DDoS attacks. Specifically, the threat actors employed a tactic to overload the system with millions of HTTP(S) requests originating from IP addresses worldwide. They also utilized the cache bypass technique to evade the CDN layer. Lastly, the attackers carried out Slowloris attacks to exhaust the web server's resources, resulting in a denial of service. “Microsoft hardened layer 7 protections including tuning Azure Web Application Firewall (WAF) to better protect customers from the impact of similar DDoS attacks. While these tools and techniques are highly effective at mitigating the majority of disruptions, Microsoft... --- ### [Updated] Microsoft's New Outlook for Windows Client to Replace Mail and Calendar Apps in 2024 - Published: 2023-06-16 - Modified: 2023-06-17 - URL: https://petri.com/outlook-for-windows-replace-mail-and-calendar-apps/ - Categories: Microsoft 365 - Tags: News, Outlook for Windows, Windows 11 - Article Type: News Microsoft is getting ready to replace the UWP Mail and Calendar apps with the new Outlook desktop client for Windows. The company announced in a message on the Microsoft 365 Admin Center that the web-based app will be shipped with all new Windows 11 devices starting in September 2024. Microsoft started testing its redesigned Outlook for Windows app with Office Insiders enrolled in the Beta channel in May 2022. The new client offers new AI-powered features to help users write better emails. It also reminds users to follow up on important email conversations. Other updates include multi-account support, new emails and calendar management capabilities, and phishing and scam protection. With this change, users will no longer be able to download or use the built-in Mail and Calendar applications on Windows 11 devices. The new web-based Outlook for Windows client will be available for Office 365/Microsoft 365 subscribers. Consumers with personal email accounts (such as Gmail or Outlook. com) will also be able to use the app on their PCs. “Beginning in 2024, new Windows 11 devices will be shipped with the new Outlook for Windows as the default mailbox application free for all to use. The Mail and Calendar applications will continue to be available via download in the Microsoft Store through the end of 2024. On existing devices, users can switch to the new Outlook for Windows from a toggle in the Mail and Calendar applications,” Microsoft explained. Microsoft asks Windows 11 users to move to the new Outlook for... --- ### The Role of Identity Threat and Detection Response in Zero Trust Security - Published: 2023-06-16 - Modified: 2024-05-10 - URL: https://petri.com/the-role-of-identity-threat-and-detection-response-in-zero-trust-security/ - Categories: Active Directory (AD) - Tags: NoAD, NoAds - Article Type: Sponsored I recently spoke to Sean Deuby, who is Principal Technologist at Semperis and an Identity expert. Sean told me about the importance of protecting identities in the current landscape and how Identity Threat Detection and Response (ITDR) is a critical component of the Zero Trust security model. https://www. youtube. com/watch? v=C7UOZZGcnIs The emergence of cloud computing and the shift towards remote work has significantly altered the cybersecurity landscape. Identity has emerged as an important cornerstone for security, particularly within Zero Trust frameworks. --- ### Microsoft Teams Gets New Collaborative Meeting Notes Experience - Published: 2023-06-16 - Modified: 2023-07-24 - URL: https://petri.com/microsoft-teams-collaborative-meeting-notes/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new collaborative meeting notes feature to improve the meeting experience. This release enables participants to collaborate on notes with their colleagues during Teams meetings. In Microsoft Teams, the collaborative meeting notes feature allows users to take notes, create agendas, as well as generate action items. It eliminates the need to take notes in the chat or a separate application. “Using the Collaborative notes Loop component, you can collaborate with others and keep everyone updated as notes as synchronized across all devices. Also note tasks assigned using Collaborative notes are automatically synchronized with To Do and Planner, providing an efficient way to manage tasks and streamline workflows,” the Microsoft Teams public preview team explained. How to use collaborative meeting notes in Microsoft Teams To try out collaborative meeting notes, participants will need to click the “Add an agenda everyone can edit” option while scheduling a meeting. Now, join a Teams meeting and click the Notes button available in the toolbar. Users can create or review an agenda, take notes, or track tasks in the meeting notes pane. As of this writing, the collaborative meeting notes feature is not accessible for external and guest participants. Additionally, users might see error messages while attending a meeting with more than 100 participants. The error messages could also appear for attendees of over 300 Teams meetings that include tasks. Limitations Microsoft has acknowledged a couple of limitations as well. Currently, the collaborative meeting notes feature lacks support for “Meet Now”... --- ### Microsoft Adds New Copilot AI Capabilities to Dynamics 365 ERP - Published: 2023-06-16 - Modified: 2023-06-16 - URL: https://petri.com/dynamics-365-erp-copilot-ai-capabilities/ - Categories: Dynamics 365 - Tags: Dynamics 365, News - Article Type: News Microsoft has announced new AI-powered Copilot features for Microsoft Dynamics 365 enterprise resource management (ERP) solutions. The new Copilot capabilities are available in public preview for Dynamics 365 Project Operations, Finance, and Supply Chain Management. “Complex and rigid processes within ERP create more work for people, and repetitive manual data entry overwhelms departments. Dynamics 365 Copilot promises to help finance managers, collections agents, project managers, and procurement professionals complete time-consuming tasks and get insights faster,” said Stephanie Dart, Sr. Director, Product Marketing – ERP, Finance and Supply Chain. Microsoft is bringing its Copilot tool to its Dynamics 365 Project Operations service. This release should help to significantly reduce the time spent on tasks such as task planning, risk analysis, and project status reports. The Copilot integration will allow project managers to generate project plans with natural language commands quickly. It also makes it easier to identify risks and create mitigation plans. Additionally, Microsoft unveiled that the new Copilot integration is also coming to Dynamics 365 Finance. It should also improve collaboration and productivity for procurement professionals and collections agents. The Copilot feature lets collection agents easily access credit and payment history to enhance customer services. Microsoft Dynamics 365 Supply Chain Management gets Copilot integration Lastly, Microsoft Dynamics 365 Supply Chain Management uses the Copilot tool to help procurement teams manage changes to purchase orders. The feature leverages AI to assess potential risks and optimize procurement decisions in enterprise environments. “With Copilot, you’re in control as it is grounded in your... --- ### How to Get Started With Exchange Online Archiving > Exchange Online Archiving allows your users to continue to work when their email storage becomes an issue. Here's how to enable Exchange Online Archiving with the GUI and PowerShell. - Published: 2023-06-16 - Modified: 2023-08-11 - URL: https://petri.com/enable-exchange-online-archiving/ - Categories: Exchange Online - Tags: Exchange Online, Exchange Online Archiving - Article Type: How To Microsoft Exchange Online Archiving allows you to alleviate issues your users run into when their mailboxes approach their allocated quota. As an IT admin, Exchange Online Archiving is a really powerful tool that should not be overlooked. In this article, I'll examine why archiving is necessary and how to enable Exchange Online Archiving to help your users. What is Exchange Online Archiving and why do you need it? Every Exchange Server-based mailbox has a mailbox quota. Administrators have granular control to set said quotas for on-premises Exchange Server 2019, 2016, and 2013. With Exchange Online, IT pros essentially have two options: 50 GB (Exchange Online Plan 1) and 100 GB (Exchange Online Plan 2). So, what happens when a user's mailbox size approaches one of these quotas? They start to receive email alerts typically when their mailbox hits either 90% or 95% capacity. Instead of asking your users to delete emails (trust me, 90% of them will refuse... ), you can enable Exchange Online Archiving to create an archive mailbox for them. The feature sets in the plans I'll detail below are very similar. For efficiency, and to show you as much 'hands-on' information and screenshots as I can, I will use my Microsoft 365 Developer sandbox which includes a Microsoft 365 tenant with about 15 users or so, each with a Microsoft 365 E5 license. This will come in handy when we get to the Auto-expanding archive feature, but let's not get ahead of ourselves. What's the difference between... --- ### Microsoft Introduces Win32 App Isolation Support to Boost Security on Windows 11 - Published: 2023-06-16 - Modified: 2023-06-16 - URL: https://petri.com/win32-app-isolation-windows-11/ - Categories: Windows 11 - Tags: featured-top-left, News, Security, Windows 11 - Article Type: News Microsoft unveiled its plans to introduce Win32 app isolation support in Windows 11 at its Build 2023 conference. The company announced yesterday that the feature is now available in public preview for Windows 11 users. With this release, Windows 11 users can run Win32 apps in an isolated environment to protect other parts of the operating system against potentially malicious software. The new security feature is designed to prevent hackers from gaining access to critical Windows components and subsystems. It’s also a sandbox security capability for Windows 11 users similar to Microsoft Defender Application Guard and Windows Sandbox. “Win32 app isolation is built on the foundation of AppContainers (and more). AppContainers are specifically designed to encapsulate and restrict the execution of processes, helping to ensure they operate with limited privileges, commonly referred to as low integrity levels,” explained David Weston, Vice President of OS Security and Enterprise at Microsoft. Microsoft highlighted several benefits of Win32 app isolation support in Windows 11. First, the security feature allows users to run apps with low privileges to minimize the impact of potential cyberattacks. Win32 app isolation also makes it easier for developers to update their applications. They can use the Application Capability Profiler (ACP) to better understand all permission requirements. Win32 app isolation ensures a seamless user experience on Windows 11 Lastly, Win32 app isolation is designed to improve the user experience on Windows 11 PCs. The security feature requires apps to leverage the “isolatedWin32-promptForAccess” functionality. It prompts users to provide consent to... --- ### Intel Reveals New Core Branding For its Upcoming Meteor Lake CPUs > Intel will simplify the branding of its Meteor Lake CPUs by dropping the “i” letter for processor tiering, and it’s also creating a new Ultra label for premium models. - Published: 2023-06-16 - Modified: 2023-06-16 - URL: https://petri.com/intel-meteor-lake-cpus-branding-changes/ - Categories: Hardware - Tags: featured-top-right - Article Type: News Intel announced this week a new branding structure that the company will start to use with its upcoming 14th gen Meteor Lake CPUs. The company will simplify the branding of its Core processors by dropping the “i” letter for processor tiering, and it’s also creating a new Ultra label for its most advanced processors.   Intel sees its upcoming Meteor Lake CPUs as “an inflection point for design, manufacturing, and architecture. These upcoming CPUs will be the first to use the new Intel 4 process node, and in addition to improved power efficiency and graphics performance, Meteor Lake CPUs will also include a dedicated AI engine.   According to Intel, its new branding structure will make it easier for customers to differentiate its most advanced “Ultra” CPUs from its mainstream “Core” offerings. The company also wants to emphasize “the prominence of the Intel Core brand that has been a staple of the PC industry for nearly two decades. ” New Intel Core and Intel Core Ultra processor brands In practice, Intel is dropping the “i” letter from processor tiering, so there will no longer be Core i3/i5/i7/i9. With the new differentiation between “Core” and “Core” Ultra processors, here’s how the Meteor Lake lineup will look like with this new two-tiered brand: Mainstream CPUs: Intel Core 3/Core 5/Core 7 (no Core 9 model) Premium CPUs: Intel Core Ultra 5/Core Ultra 7/Core Ultra 9 (no Core Ultra 3 model)   It’s not exactly clear yet how Intel’s Core Ultra Meteor Lake CPUs will differ from... --- ### Microsoft Now Sells  Replacement Parts for Surface Tablets, Laptops, and All-in-Ones > To improve the repairability and durability of its various Surface devices, Microsoft has started selling official Surface replacement parts on its Microsoft Store. - Published: 2023-06-16 - Modified: 2023-06-16 - URL: https://petri.com/microsoft-now-sells-surface-replacement-parts/ - Categories: Hardware - Tags: Microsoft Surface, Surface - Article Type: News To improve the repairability and durability of its various Surface devices, Microsoft has started selling official Surface replacement parts on its Microsoft Store. The dozens of components currently available include batteries, SSDs, screens, keyboards, and more. Microsoft makes Surface devices for both consumers and professionals and in recent years, the company significantly improved their repairability by using removable SSDs and not gluing as many components as before. Between 2017 and 2022, iFixit went from describing to original Surface Laptop as “glue-filled monstrosity” to labeling the recent Surface Pro 9 as “the most repairable Surface in years. " Yes, we’ve really come a long way.   "While we have always offered world-class warranty and repair services via Microsoft support, we have been working to increase repair options by designing products that are easier to repair and by expanding our network of Authorized Service Providers. As part of this larger initiative, we are excited to offer replacement components to technically inclined consumers for out-of-warranty, self repair,” wrote Tim McGuiggan – VP Devices Services & Product Engineering at Microsoft yesterday.   Microsoft is now offering Surface replacement parts on its Microsoft Store (Image credit: Microsoft) What you need to know about Surface replacement parts As of today, Surface replacement parts are available for purchase on the Microsoft Store in the US, Canada, and France. Commercial resellers in all Surface markets will also have access to these repair parts through existing channels. Surface replacement parts come with collateral components such as screws, but repair tools are available to... --- ### Microsoft Releases Azure Firewall Structured Logs Feature to Troubleshoot Network Issues - Published: 2023-06-14 - Modified: 2023-06-14 - URL: https://petri.com/microsoft-azure-firewall-structured-logs/ - Categories: Azure, Microsoft Azure - Tags: Microsoft Azure, networking, News - Article Type: News Microsoft has announced the general availability of Azure Firewall structured logs. The new feature brings an improved logging experience for firewall events and makes it easier to search, filter, and analyze network traffic data. “Azure Firewall's structured logs provide a more detailed view of firewall events. They include information such as source and destination and action taken by the firewall. They also include more metadata, such as the time of the event and the name of the Azure Firewall instance,” Microsoft explained. With Azure Firewall structured logs, IT admins can get detailed insights about firewall events, including protocols, IP addresses, port numbers, and actions. The feature also makes it easier to view additional metadata such as the Azure Firewall instance’s name and the time at which the event occurred. “Customers will be able to choose using Resource Specific Tables instead of the existing AzureDiagnostics table. In case both sets of logs are required, at least two diagnostic settings would need to be created per firewall. When Resource specific mode is selected by the user, ‘Structured Logs’ are enabled and individual tables in the selected workspace are created for each category selected in the diagnostic setting,” Microsoft explained. Microsoft has introduced support for several new diagnostic log categories in Azure Firewall. These include the Application rule log, Network rule log, DNS proxy log, NAT rule log, Threat Intelligence log, Flow Trace, and more. How to enable structured logs in Azure Firewall To enable the structured logs setting in Azure Firewall, customers... --- ### Microsoft Drops Support for Windows 10 Version 21H2 - Published: 2023-06-14 - Modified: 2023-06-16 - URL: https://petri.com/microsoft-support-windows-10-version-21h2/ - Categories: Windows 10 - Tags: featured-top-right, News, Windows 10 - Article Type: News Microsoft has officially dropped support for Windows 10 version 21H2. The company announced yesterday that it will no longer ship monthly security updates and bug fixes to PCs running Home and Pro editions of the operating system. Microsoft launched Windows 10 version 21H2 in the second half of 2021. It was a pretty minor update with several features geared toward business customers. The main highlights of this release include support for WPA3 H2E to improve Wi-Fi security and GPU compute support in Windows Subsystem for Linux (WSL). Windows 10 version 21H2 also introduced simplified deployment of passwordless Windows Hello-enabled systems in enterprise environments. Microsoft provided support for Windows 10 version 21H2 Home, Professional, Professional Education, and Professional for Workstations SKUs for around 18 months. Meanwhile, the company plans to service the Education and Enterprise editions of the operating system until June 2024. Microsoft to force upgrade Windows 10 version 21H2 PCs to version 22H2 Last month, Microsoft announced that it will automatically update all PCs that are approaching end of support to Windows 10 version 22H2. The forced upgrade will affect both consumer and non-managed business devices running Windows 10 version 21H2. It should help to protect users against security threats and vulnerabilities. "This keeps your device supported and receiving monthly updates that are critical to security and ecosystem health. For these devices, you will be able to choose a convenient time for your device to restart and complete the update. " Microsoft explained. Microsoft confirmed that Windows 10 version 22H2... --- ### SQL Server Essentials: Installing SQL Server Management Studio and Azure Data Studio > Here's how to download and install SQL Server Management Studio and Azure Data Studio, which are the two primary management and development tools for SQL Server. - Published: 2023-06-14 - Modified: 2023-10-04 - URL: https://petri.com/install-sql-server-management-studio/ - Categories: SQL Server - Tags: Azure Data Studio, SQL Server, SQL Server Management Studio - Article Type: How To Microsoft's SQL Server Management Studio (SSMS) is the primary tool for working with SQL Server databases. In this article, I'll guide you through the steps you need to follow to download and install SQL Server Management Studio on your PC. What is SQL Server Management Studio? SQL Server Management Studio provides an integrated environment that includes graphical tools like Object Explorer, which allows you to browse, select, and work with all of the objects on the server. There's also Query Editor, which enables you to develop and run T-SQL commands and scripts. A short history of SQL Server Management Studio Microsoft first launched SQL Server Management Studio with SQL Server 2005. It is the successor to Enterprise Manager, which was delivered as a part of SQL Server 2000 and earlier. In June 2015, Microsoft announced that future versions of SSMS would be released independently of SQL Server itself. Users now need to download and install SSMS separately from SQL Server. The current release of SSMS is version 19. 1, which can connect to SQL Server 2022 and has backward compatibility with SQL Server 2014 and higher. It also supports working with the latest cloud features in Azure SQL Database, Azure Synapse Analytics, and Microsoft Fabric. What is Azure Data Studio? Beginning with SSMS 18. 7, Azure Data Studio (ADS) is now automatically installed alongside SSMS. Prior to this, ADS was a separately downloaded product.   Unlike SSMS, which is a Windows-specific offering, ADS is a cross-platform and open-source desktop app that is... --- ### Microsoft Releases June 2023 Patch Tuesday Updates > The June 2023 Patch Tuesday updates for Windows 11 and Windows 10 include fixes for 69 vulnerabilities. Microsoft is also adding support for Bluetooth Low Energy audio on Windows 11. - Published: 2023-06-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-releases-june-2023-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has just released the June 2023 Patch Tuesday updates for Windows 11 and Windows 10. On the security front, the software giant has fixed more than 60 vulnerabilities in Windows, Office, and other components, with six security flaws being rated as "critical. " On the quality and experiences update front, Microsoft is adding Bluetooth Low Energy (LE) Audio support on Windows 11 version 22H2, and the company also addressed various bugs affecting Narrator, the touch keyboard, and more. Microsoft is also slightly tweaking how the taskbar searchbox works on Windows 10. 69 vulnerabilities fixed with the June 2023 Patch Tuesday updates As pointed out by the Zero Day Initiative, Microsoft has fixed 69 new vulnerabilities this month, including six critical ones, though none of them are currently being exploited by attackers. Let’s take a look at the most important vulnerabilities Microsoft fixed this month: CVE-2023-24897: This is a critical . NET, . NET Framework, and Visual Studio Remote Code Execution Vulnerability. CVE-2023-29357: This critical Microsoft SharePoint Server Elevation of Privilege Vulnerability allows attackers who gained access to spoofed JWT authentication tokens to execute a network attack that bypasses authentication, allowing them to gain access to the privileges of an authenticated user. CVE-2023-32013: Microsoft said that the attack complexity for this critical Windows Hyper-V Denial of Service Vulnerability is high, and it requires an attacker to “prepare the target environment to improve exploit reliability. ” CVE-2023-29363: This critical Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability can allow attackers to trigger malicious code... --- ### Microsoft Says Recent Azure Outage Was Caused By 'Huge Spike' in Network Traffic - Published: 2023-06-13 - Modified: 2023-06-13 - URL: https://petri.com/microsoft-azure-outage-spike-traffic/ - Categories: Azure, Microsoft Azure - Tags: Microsoft Azure, News, Outage - Article Type: News Last week, Microsoft acknowledged an issue that triggered connectivity issues on its Azure portal. Now, the company has confirmed that the outage was caused by an "anomalous spike" in Azure traffic. Specifically, Microsoft reported that the incident started at 8:00 A. M PT on June 9. They saw the “We’re working to restore all services as soon as possible” error messages while trying to access the Azure Portal. The problem also affected various other Microsoft services, such as the Entra Admin center and Microsoft Intune. Subsequently, a threat actor Anonymous Sudan claimed a DDoS attack that allegedly targeted Azure services. In a preliminary post-incident report, Microsoft explained that its telemetry data shows a huge spike in network traffic that caused the recent connectivity issues. The bug prevented hundreds of customers from using the service properly. Microsoft detailed that its engineers quickly adjusted firewall rules to block the traffic. They also updated traffic throttling rules, added Azure portal server instances, as well as restarted unhealthy Azure portal instances to mitigate the impact of the Azure outage. However, Microsoft didn’t mention the source of the sudden Azure traffic. "We identified a spike in network traffic which impacted the ability to manage traffic to these sites and resulted in the issues for customers to access these sites," Microsoft explained. "We engaged in different workstreams applying load balancing processes in addition to the auto-recovery operations in place in order to mitigate the issue. Additionally, we are continuing to monitor the platform health. " Source: Downdetector Microsoft... --- ### UnplugIT Episode 2 - In The Loop - Published: 2023-06-13 - Modified: 2023-06-16 - URL: https://petri.com/unplugit-episode-2-in-the-loop/ - Categories: UnplugIT - Tags: featured-top-left, Microsoft 365, Microsoft Loop, NoAD, UnplugIT - Article Type: Video In this episode, I sit down with Microsoft MVP, Darrell (As A Service) Webster where we deep dive into Microsoft Loop. Microsoft Loop is free, a real time collaboration app that makes simple tasks like agendas, polling and more across Teams, Outlook, Whiteboard and easier and considerably more engaging. From understanding the difference between a Loop element, page and the soon to be released workspaces, we demo using Loop across apps, to managing and securing Loop elements, we cover it all in this episode. Transcript Stephen Rose  Hey, everybody. Welcome to episode two of Petri. com’s Unplug IT. I'm your host, Stephen Rose, thank you so much for joining me today. I have seen a lot of cool things in the 14 years that I spent at Microsoft. I saw a ton of cool software and hardware, things like Groove Music and Sway. For those who remember Sway, the Zune, MMS Conference, Surface Party, Kaizala, so much more.   But you know, what's interesting is that Microsoft has had just as many misses as they have had hits, as have most companies. But with that said, I've been using Loop for the past six months and I can say it is absolutely in the win column for Microsoft. It is a great tool to help you and your coworkers collaborate and work synchronously at a whole new level.   So I thought, you know, I could talk about this myself and I'm super excited, but I thought I should invite a guest. And... --- ### Microsoft Defender for Endpoint Adds New Monthly Security Summary Report - Published: 2023-06-13 - Modified: 2023-06-13 - URL: https://petri.com/microsoft-defender-endpoint-monthly-security-summary/ - Categories: Security - Tags: Microsoft Defender for Endpoint, News - Article Type: News Microsoft Defender for Endpoint has introduced a new monthly security summary report in public preview. The new tool enables IT admins to gain detailed insights into the performance and security posture of their organization. “The report helps organizations get a visual summary of key findings and overall preventative actions taken to enhance the organization's overall security posture completed in the last month. It helps you identify areas of strength and improvement, track your progress over time, and prioritize your actions based on risk and impact,” Microsoft explained. Microsoft explained that the monthly security summary report contains six different sections. Microsoft Security Score is designed to help IT admins better understand the security posture of their organization. It’s also possible to monitor the company’s performance as compared to industry standards and other organizations. Additionally, the monthly security summary report provides details about the number of devices onboarded in the last 30 days. Moreover, it provides information about the devices that haven’t been onboarded yet. The report also offers detailed insights to track protection against ransomware and phishing attacks. The incidents card allows IT Pros to detect any suspicious and malicious activities to protect sensitive data in their organization. The web content monitoring and filtering feature shows the number of malicious URLs blocked by Microsoft Defender for Endpoint. How to access the monthly security summary report Microsoft notes that IT admins can head over to the navigation pane >> Reports >> Endpoints >> Monthly Security Summary to access the monthly security summary... --- ### IT Admins Can Now Set Up Multi-App Kiosk Mode on Windows 11 PCs - Published: 2023-06-13 - Modified: 2023-06-15 - URL: https://petri.com/multi-app-kiosk-mode-windows-11/ - Categories: Windows, Windows 11 - Tags: News, Windows 11 - Article Type: News Last year, Microsoft started testing a new multi-app kiosk mode for Windows 11. The company announced yesterday that the new feature is now generally available with the latest configuration update for Windows 11 version 22H2. In Windows 11, kiosk mode allows IT admins to convert a traditional device into a single-purpose device that runs only one or more applications. The feature first made its debut in Windows 10 with support for single-app kiosk mode only. It lets IT admins configure a locked-down experience for different account types. With multi-app kiosk mode, Windows 11 users can only access pre-selected applications (such as Microsoft Edge and File Explorer). However, the feature will block access to restricted areas via the notification bar, system tray icons, or context menus. “Ideal for shared devices, multi-app kiosk mode can create different configurations for different users, ensuring they have access to only what is needed to use the device as intended. The locked down configurations present users with the Windows desktop with which they are already familiar, while limiting their access to reduce distractions and potential for inadvertent uses,” Microsoft explained. The kiosk mode is especially beneficial in educational and business environments, where a single device is used by multiple individuals. For instance, organizations can set up a Windows 11 device as a kiosk machine to demo a product or promote their business. Microsoft Intune support for multi-app kiosk mode coming soon to Windows 11 Multi-app kiosk mode follows the Windows 11 design principles, and it doesn’t... --- ### GitHub Enterprise Importer Tool Launches to Make Cloud Migrations Easier - Published: 2023-06-12 - Modified: 2024-11-19 - URL: https://petri.com/github-enterprise-importer-tool/ - Categories: Developer - Tags: Developer, GitHub, News - Article Type: News Microsoft-owned GitHub has launched a new GitHub Enterprise Importer tool. The new service enables developer teams to migrate their code, collaborations, and history to GitHub Enterprise Cloud. GitHub highlighted that its GitHub Enterprise Importer tool has already been used by more than 2,000 organizations. The self-service tool has helped developers to migrate over 400,000 repositories to GitHub Enterprise Cloud. “GitHub Enterprise Importer migrates your code, but the code is the easy bit—it also brings all your conversations and collaboration history with you. That means things like pull requests, reviews and comments. This is a game changer when you need to understand not just the history of your code, but the “why” behind that history,” the GitHub team explained. https://www. youtube. com/watch? v=37eO6e8lHM8 GitHub Enterprise Importer: supported migration paths The GitHub Enterprise Importer tool currently supports migrations from various data sources to GitHub Enterprise Cloud. These include Azure DevOps (ADO) Cloud, Bitbucket Server and Bitbucket Data Center 5. 14+, GitHub Enterprise Server (GHES) 3. 4. 1+, and GitHub. com. GitHub mentioned that organizations can run migrations through a simple command line interface (CLI) or fully-featured API. The company recommends customers to use the GitHub CLI to streamline the migration process. GitHub claims that it takes around 70 seconds to perform an average migration. However, the API is suitable for enterprise customers that require heavy customizations. Earlier this year, GitHub introduced a new feature that lets enterprises migrate their CI/CD pipelines from previous automation tools to GitHub Actions. The GitHub Actions Importer tool now supports migrations from Atlassian’s Bamboo... --- ### Microsoft Teams Certified Devices Let Users Join Meetings From the Pre-Join Screen - Published: 2023-06-12 - Modified: 2023-06-12 - URL: https://petri.com/microsoft-teams-certified-devices-updates/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has released two new capabilities for Microsoft Teams certified devices. The first feature allows participants to use the Teams certified audio device with a button to quickly join a meeting directly from the pre-join screen. With this release, Microsoft Teams lets users bring the meeting window to the foreground during meetings joined on certified audio devices. It should be useful for people who frequently need to jump between different windows to chat or virtually raise their hands. This feature is supported on devices with a dedicated Microsoft Teams button. “A button with both the Microsoft Teams logo and the call hangup/switchhook function will not be compatible with this enhancement,” Microsoft explained. “A multi-purpose button will usually have the Microsoft Teams logo and another logo or symbol. ” How the new features work in Microsoft Teams certified devices Users will need to tap the Teams button on the Teams certified device twice to join the meeting from the pre-join screen. To bring the meeting window to the foreground, users can simply press the dedicated Teams button on their certified devices. Microsoft notes that the new features are available in preview on the Microsoft Teams desktop app on Windows and macOS. However, keep in mind that the update is rolling out gradually, and it’s not available for everyone just yet. Microsoft Teams is also getting a new feature that will let users zoom in and out while viewing content shared on screens during calls and meetings. Microsoft has also released a new... --- ### Microsoft 365 Defender Now Supports Threat-Informed Security Posture Recommendations - Published: 2023-06-12 - Modified: 2023-06-12 - URL: https://petri.com/microsoft-365-defender-security-posture-recommendations/ - Categories: Security - Tags: News - Article Type: News Microsoft has released a new threat-informed security posture recommendations feature for Microsoft 365 Defender. This capability provides recommendations to help IT admins bolster their security posture and block repetitive cyberattacks. “Bringing posture recommendations available via Microsoft Secure Score into the threat analytics and incident views, Microsoft 365 Defender now maps the techniques used by the attacker to the vulnerabilities or misconfigurations that led to the breach. This gives security analysts the information within the context of an incident and helps implement a prioritized and threat-driven security posture plan,” said Israel Cohen, Senior PM for Microsoft 365 Defender. Microsoft 365 Defender first researches and analyzes techniques used in previous attacks against the organization. Once done, the tool automatically maps the miscreants' techniques to the company’s security posture. The mapping process is done based on the information available in the threat analytics report. Microsoft explained that the new feature also helps IT admins understand their resilience against security threats. Then, navigate to the Threat analytics section available in the Microsoft 365 Defender. From there, administrators can track the severity of exploited misconfigurations and affected assets for each threat. It’s possible to view and take action based on recommended actions directly within an incident or threat analytics page in Microsoft 365 Defender. Getting started with threat-informed security posture recommendations in Microsoft 365 Defender Microsoft says that IT admins will need to enable the preview features in Microsoft 365 Defender to use threat-informed security posture recommendations. The feature should help enterprise customers to gain... --- ### How To Export An Office 365 Mailbox To PST: A Complete Guide > Here's how export an Office 365 mailbox to PST using eDiscovery content search and the Outlook for Windows client. - Published: 2023-06-12 - Modified: 2024-08-01 - URL: https://petri.com/export-mailbox-to-pst/ - Categories: Microsoft 365 - Tags: export process, mailbox, Microsoft 365 - Article Type: How To Microsoft has modified the procedures for IT Pros and Exchange Administrators to export mailbox items to a PST file. In an on-premises Exchange Server environment, it is quickly done from the Exchange Admin Center (EAC). However, in Office 365, it's a little more complicated. Actually, it's rather involved. Fear not – In this guide, I'll explain all the different ways to export an Office 365 mailbox to PST, starting with eDiscovery content search. History of exporting mailboxes to PST: What changed? Exchange Server (on-premises) has historically had a very straightforward process to export a user's mailbox to a PST file. Using the Exchange Admin Center (EAC), you need to go to Recipients -> Mailboxes. From there, you need to search for your user, select them, click the '... ' (ellipsis) button, then click Export to a PST file. A wizard would open with a few questions including requesting a network UNC path for the location of the PST file. That was it! As security steadily became more at the forefront of compliance and role-based administration, Microsoft has moved this 'easily-accessed' task deeper into the Microsoft 365 Security and Compliance landscape. As you'll see below, there are quite a few steps IT pros must perform to export a mailbox to a PST file. Let's get started, we're in for a wild trip! How to export an Office 365 mailbox to PST via eDiscovery content search As I mentioned above, Microsoft has moved the primary access method to export the contents of... --- ### Microsoft's Outlook Web App to Retire Calendar Board View This Month - Published: 2023-06-09 - Modified: 2024-09-05 - URL: https://petri.com/microsoft-outlook-calendar-board-view/ - Categories: Microsoft 365, Outlook - Tags: Calendar Board View, News, Outlook on the Web - Article Type: News Microsoft is getting ready to deprecate the calendar board view (aka Project Moca) in the Outlook web app. The company has quietly announced that this change will go into effect for both Microsoft 365 commercial customers and consumers (Outlook. com) on June 26, 2023. The calendar board view (formerly known as Project Moca) was launched back in July 2021. The feature allows users to organize different pieces of information on a Kanban-style board that’s connected to their Outlook calendar. It’s designed to help Outlook users keep their emails, tasks, notes, calendar events, and other content in one place. Microsoft will inform users about the retirement of the calendar board view via in-app notifications. The company says that users will be able to export the metadata of the boards by going to Outlook settings >> Privacy and data. “In June 2023, calendar board view will be retired. When this happens, you will no longer be able to access your boards and you will be redirected to a supported calendar view,” the company explained on a support page. Low usage for the Outlook calendar board view Microsoft has not mentioned the reason behind this decision. However, the company is no longer releasing new updates to improve the calendar board view, and its usage remains quite low. Microsoft highlights that there are several note-taking apps available for Microsoft 365 customers such as OneNote and Microsoft To Do. The new Microsoft Loop app also allows teams to collaborate on content and tasks across devices. Microsoft... --- ### Microsoft Defender for IoT Switches to New Site-Based Licensing Model - Published: 2023-06-09 - Modified: 2023-06-09 - URL: https://petri.com/microsoft-defender-iot-site-based-licensing/ - Categories: Security - Tags: Microsoft Defender for IoT, News - Article Type: News Microsoft has introduced a new site-based licensing model for its Microsoft Defender for IoT solution. This change aims to help organizations better protect their operation technology (OT) environments against sophisticated cyber attacks. Microsoft Defender for IoT is a security solution that’s designed to secure Internet of Things (IoT) devices. The key features include real-time threat detection, vulnerability management, as well as security analytics & reporting capabilities. Microsoft Defender for IoT also integrates with various other security tools, including Microsoft 365 Defender and Microsoft Sentinel. How does the site-based licensing model work? According to Microsoft, new customers can no longer opt for its Azure consumption model. They can either choose to stick to the consumption model or switch to the new site-based licensing model. A site is a physical location such as an office building, facility, hospital, or campus. Microsoft’s new site-based licensing model provides more control to effectively manage security costs within their organization. “Organizations that want to secure their OT environments with Defender for IoT will now be able to purchase annual licenses with standard pricing based on the maximum number of OT devices they wish to protect at each individual site. Prices are flat rates for each site size and are not prorated based on the numbers of devices. Site sizes are determined by the maximum number of devices per site,” Microsoft explained. For instance, there is a company with 90, 700, and 25 OT devices across three different sites. The organization will need to purchase an extra-small... --- ### Google Password Manager to Add Support for Biometric Authentication for Desktop Users - Published: 2023-06-09 - Modified: 2023-06-09 - URL: https://petri.com/google-password-manager-biometric-authentication/ - Categories: Security - Tags: Google Password Manager, News, passwords - Article Type: News Google has released several new security features to improve the built-in Password Manager in its Chrome browser. As of today, Google Password Manager offers biometric authentication support on iOS and Android, and it’s coming soon to desktop users. “If you enable this feature, you can require an additional layer of security before Chrome autofills your password, like fingerprint recognition, facial recognition or other methods supported by your computer’s operating system,” said Patrick Nepper, Group Product Manager for Google Chrome. Google Chrome users will now be able to see the Password Manager shortcut in the settings menu. Additionally, they can access the tool by clicking the "Manage passwords" option when an autofill prompt appears on the screen. It’s also possible to create a Google Password Manager shortcut on the desktop. Google Password Manager now allows users to import their passwords from other credential managers in CSV format. These passwords will sync across all devices logged in with the same Google account. The latest update lets users add notes to login credentials saved in the Google Password Manager. This capability should make it easier to remember relevant details connected with the same account (such as a membership number or a PIN code). Last but not least, Google announced a few improvements for mobile devices. The Password Checkup tool is finally coming to iOS devices in the next few months. The security feature alerts users about weak, reused, or compromised passwords to protect users against credential theft. Google also added a larger autofill... --- ### How to Connect to Exchange Online Using PowerShell > Exchange Online PowerShell is a command-line tool that allows you to manage your Exchange Online mailboxes and users. Here's how to connect to Exchange Online PowerShell. - Published: 2023-06-09 - Modified: 2023-12-05 - URL: https://petri.com/connect-to-exchange-online-powershell/ - Categories: Exchange Online, PowerShell - Tags: Exchange Online, PowerShell - Article Type: How To Exchange Online PowerShell is a command-line tool that allows you to manage your Exchange Online mailboxes and users. It can be used to perform a variety of tasks, such as creating and managing mailboxes, configuring mail flow rules, and managing user permissions. In this guide, we'll show you how to install and connect to Exchange Online PowerShell. If you're an IT Pro with Microsoft 365 administrative duties in the Exchange Online service, this guide is for you! How to install and connect to Exchange Online PowerShell As an IT Pro, your Microsoft 365 admin duties likely cover Exchange Online. Although a large majority of these tasks can be accomplished using the Exchange Admin Center website, there are great efficiencies available via the command line, especially scripting! Prerequisites You can connect to Exchange Online like any other Office 365 service by using the standard Connect-* cmdlet. However, there are a couple of prerequisites to keep in mind when installing and utilizing Exchange Online PowerShell. There have been several versions of these modules over the years. Version 2. 0. 5 and earlier are referred to as the Exchange Online PowerShell V2 module (EXO V2). Version 3. 0. 0 and later is known as the Exchange Online PowerShell V3 module (EXO V3). We will focus on this newer module as it supports multi-factor authentication (MFA), it includes performance improvements over its predecessors, and it's also more secure! Plus, it is supported on the latest PowerShell Version 7. x versions. In addition, a host of newer cmdlets (EXO-*)... --- ### Microsoft to Retire Old Exchange Admin Center for Exchange Online Customers This Month - Published: 2023-06-08 - Modified: 2023-06-08 - URL: https://petri.com/microsoft-retire-old-exchange-admin-center/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft unveiled its plans to retire the old Exchange Admin Center (EAC) in 2021. The company has announced that the new EAC has reached feature parity with the classic portal, which will be fully retired on June 20, 2023. Microsoft announced the general availability of its new EAC back in April 2021. Since then, the company has released several new features to offer a more secure and faster management experience for organizations. These include a personalized dashboard, reports, insights, a support assistant, a global search option, quick access to Azure Cloud Shell, OWA mailbox policies, and role assignment policies. Furthermore, Microsoft introduced support for various types of migrations in the new EAC. These include automation support for G-Suite/Google Workspace migrations and cross-tenant migrations that could be useful in acquisition and merger scenarios. Microsoft also added a redesigned Settings page that should make it easier to manage Exchange Online settings. “In September 2021, we announced that the classic EAC would be deprecated for customers in our WW cloud in September 2022. Our customers gave us lots of feedback on the new design, performance of the new portal, and feature parity, so we took some additional time to address their feedback,” the Exchange team explained. New Exchange Admin Center (EAC) Limitations Microsoft notes that customers can access the new Exchange Admin Center here. However, the company confirmed that it lacks UI support for add-ins and auditing reports. The company recommends IT admins to use alternative workarounds via PowerShell. We invite you to... --- ### Microsoft Launches New C# Dev Kit for Visual Studio Code in Preview - Published: 2023-06-08 - Modified: 2023-06-08 - URL: https://petri.com/microsoft-c-dev-kit-visual-studio-code/ - Categories: Visual Studio - Tags: C#, News, Visual Studio Code - Article Type: News Microsoft has announced the release of a preview version of the C# Dev Kit for Visual Studio Code. It’s a new extension that brings several capabilities to enhance the C# developer experience on Windows, macOS, and Linux devices. Microsoft’s new C# Dev kit is a part of three extensions that make it easier for developers to build projects in VS Code. The C# Dev kit includes various features such as a new test explorer, a multi-project solution explorer, and fast syntax highlighting. In addition to this, an “IntelliCode for C# Dev Kit” extension offers AI-powered code completion and prediction capabilities to help developers write code faster. There is also an updated Language Server Protocol (LSP) to improve error detection in the code editor. “It works together with the C# extension, which has been updated to be powered by a new fully open-source Language Server Protocol (LSP) host, creating a performant, extensible, and flexible tooling environment that easily integrates new experiences into C# for VS Code. The source repo for this extension is in the process of being migrated and will be available later this week,” said Tim Heuer, Principal Product Manager for . NET and Visual Studio. C# Dev kit for Visual Studio Code: Licensing requirements The C# Dev kit is available to download on the Visual Studio Marketplace. However, keep in mind that customers will need to purchase a Visual Studio license to access it. The extension is available for free for individuals, educational customers, and small businesses with up... --- ### Microsoft Releases Azure OpenAI Service for Government Customers - Published: 2023-06-08 - Modified: 2023-06-08 - URL: https://petri.com/azure-openai-service-government-customers/ - Categories: Microsoft Azure - Tags: AI, Azure OpenAI Service, News - Article Type: News Microsoft announced yesterday that its Azure OpenAI Service is now available for Azure Government customers. The new service will allow government agencies to use generative AI capabilities in a way that meets security and privacy requirements. According to Microsoft, the new service enables federal, state, and local government agencies to use GPT-3, GPT-4, and Embeddings via the Azure OpenAI Service REST APIs. This capability should help to improve natural language-to-code translation, semantic search, content generation, and summarization. What are the features included in Azure OpenAI Service? Microsoft explained that the Azure OpenAI Service lets users quickly analyze field reports, analysts, and articles. Users can also automatically generate responses based on project or project inquiries. It should help team members to save time and effort and prioritize important tasks to improve productivity. Additionally, Microsoft Azure OpenAI Service is designed to optimize semantic search. The feature uses machine learning to enhance the accuracy and relevance of search results. Azure OpenAI Service offers a simplified code generation process to make custom app development easier. It lets developers communicate with the underlying models to retrieve information for code documentation. “Access to the Azure OpenAI Service is available through the Azure Government environment. Azure Government peers directly with the commercial Azure network and doesn’t peer directly with the public internet or the Microsoft corporate network,” said Bill Chappell, Microsoft’s CTO for Strategic Missions and Technologies. “Connection to Azure OpenAI is over the Microsoft backbone network to access and operationalize advanced AI models and algorithms securely... --- ### Google Opens Pre-Orders for Duet AI for Google Workspace Enterprise > Google has opened pre-orders for Duet AI for Google Workspace Enterprise, a new collection of generative AI features for its cloud-based productivity suite. - Published: 2023-06-08 - Modified: 2023-06-08 - URL: https://petri.com/duet-ai-for-google-workspace-enterprise-preorders/ - Categories: Cloud Computing - Tags: Duet AI, Google, Google Duet AI, Google Workspace - Article Type: News Google has opened pre-orders for Duet AI for Google Workspace Enterprise, a new collection of generative AI features for its cloud-based productivity suite. With this new offering, Google said that it has taken into account the feedback the company received when it announced the Duet AI for Google Workspace public beta at its annual I/O developer conference last month. “We’ve received a lot of helpful feedback from the thousands of organizations and hundreds of thousands of users enrolled in Workspace Labs. We’ve incorporated this feedback into a new offering we’re launching today, Duet AI for Google Workspace Enterprise, which is now available for pre-order and will be generally available in all regions where Workspace is sold later this year, explained Steve Holt, VP of strategy for Google Workspace. For now, organizations interested in pre-ordering Duet AI for Google Workspace Enterprise can fill out a form to express their interest. Google has yet to make pricing details public, but the company said that it will share more details on availability for SMBs, education, and consumers in the coming months.   Duet AI for Google Workspace will add new generative AI features in Google Docs, Sheets, Slides, Meet, and Gmail. Here are the main features that will be available at launch: In Google Docs and Gmail, Duet AI will provide ChatGPT-like capabilities for helping users write and refine content. Google Sheets will help users to classify data and create custom plans for projects. Duet AI in Google Slides will allow users to create original... --- ### Microsoft Entra ID Governance Service is Now Generally Available - Published: 2023-06-07 - Modified: 2023-06-07 - URL: https://petri.com/microsoft-entra-id-governance/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure AD, Microsoft Entra, News - Article Type: News Microsoft announced this morning the general availability of Microsoft Entra ID Governance service. The new cost-effective solution is designed to help organizations improve employee productivity and meet compliance and regulatory requirements. “ID Governance extends the market-leading identity and access management platform in Azure Active Directory. It’s easy to deploy, and includes capabilities for meeting compliance requirements with ML powered access review recommendations, a no-code/low-code approach for extensibility, workflows for automating identity lifecycle management tasks, and access provisioning for SaaS and on-premises applications,” Microsoft explained. With Microsoft Entra ID Governance, customers can govern the identity/access lifecycle as well as secure privileged access across apps and services in on-premises cloud environments. They can use Microsoft Entra access reviews to control group membership and application access. The Microsoft Entra entitlement management feature also lets IT Pros automate access assignments, reviews, access request workflows, and expiration. They can use a time and approval-based role activation mechanism to block excessive access to sensitive resources. Getting started with Microsoft Entra Identity Governance To get started, IT admins will need to sign in to the Azure portal and click the “Getting started tab” of Identity Governance. From there, administrators can access various features such as access reviews, Privileged Identity Management, and entitlement management. Microsoft Entra ID Governance solution is currently available for organizations with Azure AD Premium P1 or P2 subscriptions. Starting on July 1, Microsoft will let customers buy the ID Governance solution from the official website or via Microsoft sales teams and licensing partners. The... --- ### Google Workspace Introduces Passkey Support to Protect Users Against Phishing Attacks - Published: 2023-06-07 - Modified: 2024-09-04 - URL: https://petri.com/google-workspace-passkey/ - Categories: Cloud Computing, Security - Tags: Google Workspace, Security - Article Type: News Last month, Google introduced passkey support for consumer Google accounts. The company has now expanded the passwordless login solution to Google Workspace business accounts. Passkeys is a passwordless authentication mechanism developed by the FIDO Alliance, including Google, Microsoft, and Apple. The feature allows users to log in to their phones or computers with a PIN, fingerprint, as well as face unlock, etc. Google explained that the feature is four times more secure compared to traditional passwords, 2FA, and SMS verification. “Passkeys have also been designed with user privacy in mind. When a user signs in with a passkey to their Workspace apps, such as a Gmail or Google Drive, the passkey can confirm that a user has access to their device and can unlock it with a fingerprint, face recognition, or other screen-lock mechanism,” Google explained. Google highlighted several advantages of the new passkey support for Google Workspace customers. The passkey feature helps enterprises to improve the security of user accounts, and prevents the reuse of passwords across different websites. Passkeys also provide stronger protection against phishing and other social engineering attacks. Google Workspace to roll out passkey support over the next few weeks Google plans to roll out passkey support to all Workspace customers in a staggered manner over the next 15 days. The company says that enterprises will be able to use passkeys with password protection by default. However, administrators will need to head over to the Google Admin console to allow the use of passkeys as an... --- ### Microsoft Lets IT Admins Move Windows 365 Cloud PCs to Another Region - Published: 2023-06-07 - Modified: 2023-06-07 - URL: https://petri.com/microsoft-move-windows-365-cloud-pcs/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft has released a new update for its Windows 365 Enterprise service. The company detailed a new feature that allows IT admins to move their Cloud PCs to a new region or Azure network connection (ANC). “By editing a provisioning policy, you can move existing Cloud PCs from their current region or Azure network connection (ANC) to a new one,” Microsoft explained. “The best time to perform moves is over the weekend to make sure the impact to users is minimized. Cloud PC's will be shutdown during the move process, so you should notify your users before the move so that they can save their work and sign-off. ” Microsoft notes that IT Pros will only be able to move up to 100 Cloud PCs at a time. The feature is currently available in preview for all enterprise customers. Device management features The Windows 365 Cloud PC service lets users share single or multiple restore points to an Azure Storage account. Customers can also use Remote Desktop Protocol (RDP) Shortpath for private networks with Windows 365 Cloud PCs. The feature leverages the TCP connection to provide an alternate direct connection between the Windows 365 Cloud PC and the Remote Desktop client. Windows 365 App Now Supports Dark Mode Microsoft has also released some updates to enhance the new Windows 365 App. The company introduced support for dark mode. Users can choose between dark and light themes or let the app match the system settings. Moreover, it’s possible to change multiple monitor... --- ### SQL Server Essentials: Using SQL Cross Joins > SQL Cross Join queries generate a paired combination of each row of a first table with each row of a second table. Here's how to use an SQL Cross Join. - Published: 2023-06-07 - Modified: 2023-06-07 - URL: https://petri.com/sql-cross-join/ - Categories: SQL Server - Tags: SQL Server - Article Type: How To SQL CROSS JOIN queries are used to generate a paired combination of each row of the first table with each row of the second table. This kind of result is called a Cartesian product. In this article, I'll show you how to use an SQL CROSS JOIN. How does an SQL Cross Join work? The CROSS JOIN is a somewhat uncommon type of SQL JOIN. As I explained earlier, an SQL CROSS JOIN query gives a Cartesian product, where the number of rows in the result set is the product of the number of rows of the two tables. In other words, it produces a result set where each row from the first table is combined with every row from the second table, resulting in all possible combinations. An SQL CROSS JOIN is often used without a WHERE clause: In that case, it's like an INNER JOIN where every condition evaluates to 'true'. However, if a WHERE clause is used with an SQL CROSS JOIN query, it will act like a standard INNER JOIN. You can see an overview of how an SQL CROSS JOIN query works in the following figure How an SQL CROSS JOIN query works (Image credit: Petri/Michael Otey) How to use an SQL Cross Join You can use a SQL CROSS JOIN when you want to generate all possible combinations between two or more tables without any specific condition for the join. But as you might guess, this query can potentially generate a large number... --- ### Microsoft Teams Adds New Visio App to Improve the Diagramming Experience - Published: 2023-06-06 - Modified: 2023-06-06 - URL: https://petri.com/microsoft-teams-visio-app/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced today that Visio is now available as a personal app in Microsoft Teams. The new app comes pre-installed for all enterprise customers, with new features to enhance the diagramming experience in Teams. “With a private workspace, users will be able to view, edit, and create Visio files in a central location without leaving Teams. We’re integrating the Visio app into where work happens to help streamline and improve collaboration on business processes, org charts, product launch timelines, and so much more,” Microsoft explained in a blog post. Microsoft highlighted that users can pin the Visio app for easier access in Microsoft Teams. Additionally, they can pop out the app in a separate window to support multi-tasking between document editing and Teams chats. Users can also click the plus (+) button at the top of a Teams chat or channel to add a Visio file as a dedicated tab. Getting started with the Visio app in Microsoft Teams To access the Visio app in Microsoft Teams, users will need to click the More added apps (... ) icon. Then, click the Visio icon to create a new file or view favorites as well as recently opened/recommended/shared files. Users can also use the built-in templates to create Visio diagrams based on specific needs. Microsoft’s new Visio app is currently available in preview for all organizations with Microsoft 365 commercial and Visio Plan 1 and Visio Plan 2 licenses. The Visio app lets users create files in 31 different languages. Microsoft... --- ### Microsoft Loop Components to Sync Task Lists with Planner and To Do - Published: 2023-06-06 - Modified: 2023-06-06 - URL: https://petri.com/loop-components-task-lists-planner-to-do/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Loop, News - Article Type: News Microsoft has announced a new integration that will let users sync their task lists between Loop components and Microsoft Planner and To Do. This release should make it easier for users to manage their tasks from Microsoft 365 applications. Microsoft introduced Loop components at its Build developer conference back in 2019. Microsoft Loop components are based on the Fluid Framework to let users collaborate on notes, tables, or lists (tasks) in emails, chats, and documents. Task lists in Loop components allow users to create collaborative lists of tasks and assign them to people with @ mentions. It’s also possible to set due dates and track the status of tasks. Currently, task lists in Loop components are available in Microsoft Teams and Outlook. Users can add them to their chat and email conversations via the “Loop Components” menu. The new integration will allow users to edit the tasks (such as the title, due date, or assignees) via Microsoft Planner. In Microsoft To Do, users will be able to view their tasks in the‘Assigned to me’ section. “With this change, all tasks created in these lists will automatically sync and be visible in Planner, and assigned tasks will show up in To Do in the 'Assigned to me' smart list. These tasks will also be visible in all apps that show Planner and To Do tasks such as the Tasks app in Microsoft Teams,” the company explained on the Microsoft 365 Admin center. Loop components task lists integration with Microsoft Planner and... --- ### [Update] Microsoft 365 Services Hit With Another Outage Causing Connectivity Issues - Published: 2023-06-06 - Modified: 2023-06-07 - URL: https://petri.com/microsoft-365-outage/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News, Outlook.com - Article Type: News Microsoft Outlook went down for almost 8 hours on Monday, along with Teams, OneDrive for Business, SharePoint Online, and other Microsoft 365 services. Microsoft confirmed on Twitter this morning that the problem has popped up again. In a Reddit thread, several Microsoft 365 users reported that the first outage started hitting organizations at around 10:00 ET on Monday. The reports on various social media platforms suggest users could not access emails or other Microsoft 365 services. Microsoft rolled back the problematic update that caused the technical problem and reported a service improvement. However, Microsoft 365 services were hit again just after a couple of hours. Microsoft acknowledged the second outage in a tweet at around 16:15 ET and deployed a fix within three hours. Downdetector indicates that the first outage affected around 18,000 users at the peak of the problem. Meanwhile, the website reported more than 5,000 complaints from customers impacted by the second glitch at its peak. Unfortunately, Microsoft 365 apps and services are facing issues again today. Microsoft first acknowledged the issue at 05:06 ET, though it looks like the problem started even before that. At the time of writing, it’s not clear how widespread the Microsoft 365 outage is or whether it’s affecting all Microsoft 365 services. “We're seeing a recurrence of the issue and a drop in service availability, so we're applying mitigations to provide relief for the affected users, while we continue to investigate the root cause. We'll be providing updates related to this event... --- ### Apple's M2 Ultra Mac Pro Completes the Mac Transition to Apple Silicon > Apple unveiled yesterday a new M2 Ultra chip that is coming to its desktop workstations, the Mac Studio and the Mac Pro. - Published: 2023-06-06 - Modified: 2023-06-07 - URL: https://petri.com/apple-m2-ultra-chip-mac-pro/ - Categories: Hardware - Tags: Apple, Apple M2, Mac, Mac Pro, MacBook Air, macOS - Article Type: News Apple unveiled yesterday a new M2 Ultra chip that is coming to its desktop workstations, the Mac Studio and the Mac Pro. The latter was also the last Mac model that had yet to make the transition from Intel chips to Apple Silicon, and this is finally happening almost three years after the introduction of Apple’s first M1 chip in the fall of 2020.   Even though Apple’s PC market share dropped from 8. 6% to 7. 2% between Q1 2022 and Q2 20233 according to IDC, Apple’s M-series chips continue to deliver an unmatched level of performance per watt. And even though Apple isn’t going as hard on AI as its competitors these days, M-Series chips also come with a powerful neural engine for running complex AI workloads.   New Mac Studio with M2 Max and M2 Ultra Chips The original Mac Studio that Apple launched last year was the most powerful Mac ever with its M1 Max and M1 Ultra chips. The base model is now being upgraded with the same M2 Max chip that first launched on the new 14-inch and 16-inch MacBook Pros earlier this year.   The M2 Max offers 12 CPU cores, up to 38 GPU cores, and up to 96GB of unified memory with 400GB/s of memory bandwidth. Overall, Apple promises up to 50 percent faster performance compared to the previous Mac Studio model with M1 Max.   The Mac Studio can also be configured with Apple’s brand new M2 Ultra chip, which combines two M2 Max chips together... --- ### Microsoft Teams Meetings Get New Zoom Controls to Improve Screen Sharing - Published: 2023-06-05 - Modified: 2023-06-05 - URL: https://petri.com/microsoft-teams-zoom-controls-meetings/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has released a new zoom controls feature in preview for Microsoft Teams. This update allows participants to zoom in and out while viewing content on a shared screen in Teams meetings and calls. Up until now, Microsoft Teams only allowed meeting attendees to use pinch to zoom gesture on trackpads or other shortcuts to view content such as Excel Spreadsheets or PowerPoint presentations. The new zoom controls should be a welcome addition for people with low vision or visual impairment. “Users in a Teams call or meeting will now see new buttons to zoom in, zoom out and restore the original size of the incoming screen share. This will greatly enhance the experience of users viewing screen share,” the Office Insider team explained. To try out zoom controls, IT admins will have to sign up for the Microsoft Teams public preview program. They will need to configure an update policy in the Microsoft Teams admin center. However, keep in mind that meeting participants will not be able to view zoom controls while using the watermarking feature during Teams meetings. Microsoft Teams zoom controls available for desktop and web users As of this writing, the feature is only available in the Microsoft Teams app for Windows, macOS, and web app. It remains to be seen if Microsoft plans to add zoom controls to the Teams mobile clients. In related news, Microsoft is getting ready to make the new Teams 2. 0 client the default experience on Windows later this year. Last... --- ### Microsoft to Block Outlook Web App on Unsupported Browsers in Fall 2023 - Published: 2023-06-05 - Modified: 2023-06-05 - URL: https://petri.com/microsoft-outlook-web-app-unsupported-browsers/ - Categories: Outlook - Tags: Microsoft 365, News, Outlook on the Web - Article Type: News Microsoft plans to redirect all users with unsupported browsers to the light version of the Outlook web app. The company has now started notifying IT admins that this change will begin rolling out to customers in Fall 2023. Microsoft Outlook Lite is a version of the regular Outlook web app with faster performance for low-end devices on any network. The app provides basic email features compared to the standard version of Outlook. The Outlook Lite app lacks support for tasks and notes, an offline mode, multiple Exchange email accounts, inbox rules, retention policies, and other capabilities. With this change, web users will legacy browsers will be automatically redirected to the Outlook Lite app. Microsoft explained that this change aims to align the Outlook web app with the minimum browser support requirements of Microsoft 365 web apps. “This initial communication is to notify customers that starting in Fall 2023 (September 2023), users using unsupported bowsers will be redirect to the light version of Outlook on the web. This will align with the experience with other Microsoft 365 web applications,” Microsoft explained in a message on the Microsoft 365 Admin center. Microsoft to roll out Outlook web app browser restriction in September 2023 Microsoft notes that this change will impact customers who use unsupported web browsers, including Brave and Opera. The company warned that it could potentially cause disruptions for both small businesses and organizations. Microsoft recommends IT admins to upgrade their fleet of devices to a supported browser (like Microsoft Edge,... --- ### How to Whitelist a Domain in Office 365 > Here's how to whitelist a domain in Office 365 using a mail flow rule, the Microsoft 365 Defender portal, and PowerShell. - Published: 2023-06-05 - Modified: 2023-07-24 - URL: https://petri.com/whitelist-domain-office-365/ - Categories: Exchange Online, Microsoft 365 - Tags: Exchange Online, Microsoft 365 - Article Type: How To As an IT Pro, it is crucial to your organization to make sure that your users receive legitimate emails. Sometimes, Exchange Online Protection (EOP) can flag these emails as spam. Safely creating whitelists for specific domains/email addresses allows you to efficiently manage email flow in your organization and protect your users from malicious activity. In this guide, I will show you how to whitelist a domain in Office 365 using a mail flow rule, the Microsoft 365 Defender portal, and PowerShell. Why you may need to whitelist a domain in Office 365? A typical scenario encountered by IT pros managing Exchange Online is to have users complain that important emails are "hiding" in their 'Junk Email' folder in Outlook. There are two main reasons why this can occur: Users have configured Outlook's Junk Mail Options feature and added the sender's email address or entire domain to the Blocked Senders tab. The Exchange Online Protection (EOP) feature that comes with the Exchange Online service has flagged the email as spam using Microsoft's score-based algorithm. You can determine this by doing a Message Trace in the Exchange Admin Center. The log entry will show the final status as 'FilteredAsSpam. ' The first reason is specifically tied to the Outlook desktop application. The important point is that the feature only works when Outlook is open. I will be covering the second reason here in this post. Before the email ever gets to the user's mailbox, the protection service acts on the email. It... --- ### Microsoft to Enable SMB Signing By Default to Boost Security on Windows 11 - Published: 2023-06-05 - Modified: 2023-06-15 - URL: https://petri.com/microsoft-smb-signing-by-default-windows-11/ - Categories: Windows, Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has announced some important changes coming to Server Message Block (SMB) signing on Windows 11 Enterprise edition. Starting with the latest Windows 11 Insider Canary Build, SMB signing is now required by default for all connections. Server Message Block is a client-server communication protocol that allows users to share access to resources such as files, printers, and serial ports on a network or remote servers. Meanwhile, SMB signing is a security feature in Windows that adds a digital signature to authenticate communication between the client and server. Microsoft explained that the SMB signing requirement changes should help to protect Windows 11 users against NTLM relay attacks. The SMB signing feature is designed to prevent threat actors from tempering SMB packets during data transmission. “This changes legacy behavior, where Windows 10 and 11 required SMB signing by default only when connecting to shares named SYSVOL and NETLOGON and where Active Directory domain controllers required SMB signing when any client connected to them. This is part of a campaign to improve the security of Windows and Windows Server for the modern landscape,” explained Microsoft Principal Program Manager Ned Pyle. Source: Microsoft SMB signing requirement changes could impact performance Microsoft notes that the upcoming changes could potentially impact the performance of SMB copy operations on Windows 11 PCs. Users will be able to address the problem by buying a faster CPU or adding more CPU cores/virtual CPUs. Additionally, Microsoft warned that users might encounter errors (such as 0xc000a000 and -1073700864) while connecting... --- ### Microsoft Starts Testing New Search Experience in Word, Excel, and PowerPoint for Mac - Published: 2023-06-02 - Modified: 2023-06-07 - URL: https://petri.com/search-experience-word-excel-powerpoint-for-mac/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Excel, microsoft word, News - Article Type: News Microsoft has started rolling out a new search experience in preview to Microsoft Word, Excel, and PowerPoint for Mac. The new feature should make it easier for users to find information across multiple sources. According to Microsoft, the revamped search experience offers smart search suggestions to help users improve productivity and save time. Users can also search for web results, commands, help articles, and commands. Microsoft has also released some enhancements for people with low vision or blindness. These include better keyboard navigation within groups and VoiceOver support in Word, Excel, and PowerPoint for Mac. How the new search experience works in Word, Excel, and PowerPoint for Mac Open a presentation, document, or worksheet. Click the Search box and select the search suggestions option. Now, type the phrase or keyword in the Search box. Users can also type the command name in the Search box to find it. Click the Find in this document option to find specific information within the file. Finally, users can click the Open Search pane to find web or media results in any document, presentation, or worksheet. Additionally, Microsoft notes that Office users can access the improved search experience through keyboard shortcuts. Users can use them to open the search pane (Cmd + Ctrl + L), search dropdown (Cmd + Ctrl + U), and find content in the document (Cmd + F). Enhanced search experience available for Office Insiders To try out the new search experience, users will need to join the Office Insider program... . --- ### How to Enable Auto Login on Windows 10 > Here's how to auto login Windows 10 to reach the desktop environment without requiring users to enter a username and password. - Published: 2023-06-02 - Modified: 2023-07-19 - URL: https://petri.com/auto-login-windows-10/ - Categories: Windows 10 - Tags: passwords, Windows 10 - Article Type: How To In this article, I will explain how to auto login Windows 10 to reach the desktop environment without having to enter a username and password. I'll also outline the pros and cons associated with configuring auto login on this version of Windows. What is auto login on Windows 10? Windows 10 provides robust security features to help users to protect their personal data, including the protection of user accounts by passwords. It's generally not recommended to remove a password for a Windows device that is being used by an individual. However, configuring Windows to provide a passwordless experience could be appropriate in specialized cases, such as kiosk PCs with multiple users. Windows auto login is a feature that automatically signs a user into a Windows 10 PC without entering a username and password. It enables users to bypass the login screen and directly access the specified user's desktop. What are the advantages of setting up Windows 10 auto login? There are a few reasons you may want to set up the auto login on Windows 10. Let’s have a quick overview of some of the main benefits of this feature, though keep in mind that auto login should be used with caution. User convenience Auto login eliminates the need to manually enter credentials to log in to a user account during system startup on Windows 10. The feature could be particularly useful for users who don’t share their PC with anyone else. Bear in mind that unless you can... --- ### Microsoft's New Authentication Strength Feature Provides More Control Over CA Policies - Published: 2023-06-02 - Modified: 2023-08-29 - URL: https://petri.com/conditional-access-authentication-strength/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, multifactor authentication, News - Article Type: News Microsoft has announced the general availability of Conditional Access authentication strength policies for Azure Active Directory (Azure AD). The new feature allows IT admins to choose which multifactor authentication (MFA) methods can be used while accessing network resources. Multifactor authentication (MFA) is a security feature that allows customers to use two or more methods of verification to prove their identity and gain access to a system. It helps to protect users against cyberattacks such as password guessing and credential theft. How does Conditional Access authentication strength work? Azure Active Directory's Conditional Access feature already lets organizations enforce specific access controls based on predefined conditions to protect data and resources. The Authentication Strength feature provides an additional level of protection by allowing IT Pros to mention the type of MFA methods that should be used. “With Conditional Access authentication strength, administrators can define a minimum level of authentication strength required for access, based on factors such as the user's sign-in risk level or the sensitivity of the resource being accessed. This can be especially useful for organizations that operate in highly regulated industries or have strict compliance requirements,” Microsoft explained. Microsoft notes that customers can choose between three built-in Authentication Strength methods such as Temporary Access Pass or password. They can also choose to set up custom authentication strength policies based on specific needs. MFA strength: It’s the set of combinations (like Microsoft Authenticator and Certificate-based authentication) that could be used to meet the "Require multifactor authentication" setting. Passwordless MFA strength:... --- ### What's New With Microsoft's Power Platform – May 2023 > At its Build developer conference, Microsoft showed us how its powerful AI Copilot is making its way into various Power Platform and Microsoft 365 products. - Published: 2023-06-02 - Modified: 2023-06-02 - URL: https://petri.com/microsoft-power-platform-may-2023-updates/ - Categories: Power Platform - Tags: copilot, power apps, Power Automate, Power Platform, Power Virtual Agents - Article Type: News As a true Power Platform guy, I watched the breaking headlines from Microsoft Build 2023 last month and came away with 2 words to caption the bulk of it: Copilot Everywhere! Microsoft’s powerful AI service is making its way into various Power Platform and Microsoft 365 products. Imagine having an intelligent assistant at your fingertips that integrates with the tools you’ve grown comfortable using and the data that drives your company?  That's what Microsoft is trying to achieve with its various Copilot announcements. Copilot integration with Power Platform products  The new Copilot for Power Pages is designed to assist with copy-editing and text and layout generation using natural language prompts. You'll even be able to embed a Power Virtual Agent (PVA) chatbot into your Power Pages that uses natural language models to have a more free-flowing conversation with your site visitors. What is truly amazing about Copilot's integration into our favorite and even lesser-used products is that it can take your prompt and help you to build the solution you want, even if you don't necessarily have the time or know-how to build it yourself.    The Microsoft 365 Copilot, which is currently available in private preview, will be able to sit over all your data, and then you will interact with it just like prompting ChatGPT or Bing Chat. However, there’s a distinction here I don’t want you to miss: We’re traditionally trained to think of these AI assistants as natural-language search engines. It used to be that you would... --- ### Microsoft Discloses New 'Migraine' Flaw That Bypasses Built-In Protections on macOS - Published: 2023-06-01 - Modified: 2023-06-02 - URL: https://petri.com/microsoft-migraine-flaw-macos/ - Categories: Security - Tags: macOS, News, Vulnerability - Article Type: News Microsoft has discovered a new macOS vulnerability dubbed Migraine. The company detailed in its security advisory that the flaw allows attackers to bypass System Integrity Protection (SIP) and perform malicious operations on macOS machines. Apple first launched System Integrity Protection (SIP) in macOS Yosemite back in 2014. The feature is designed to prevent threat actors from making any changes to important system files and folders on Mac devices. System Integrity Protection (SIP) helps users to block unwanted modifications that could impact the system's stability and security. According to Microsoft, the "Migraine" security vulnerability (CVE-2023-32369) exploits the Migration Assistant app that lets users transfer files from Windows to macOS. Microsoft’s researchers used an Apple script that caused the tool to import a malicious Time Machine backup and infect the host system. “By focusing on system processes that are signed by Apple and have the com. apple. rootless. install. heritable entitlement, we found two child processes that could be tampered with to gain arbitrary code execution in a security context that bypasses SIP checks,” the Microsoft Threat Intelligence team explained. Apple releases patches to fix the Migraine vulnerability on macOS Microsoft warned that the security flaw could be used to gain physical access to sensitive data, computer accessories, and devices. The technique shares similarities with the method employed in 2021 to exploit the Shrootless vulnerability. Microsoft disclosed the vulnerability to Apple, which released a security update to mitigate it on May 18. Microsoft emphasized that organizations should use security tools (such as Microsoft Defender for Endpoint)... --- ### Microsoft Teams Adds Active Speaker View, 3D Avatars, and Other New Features - Published: 2023-06-01 - Modified: 2023-06-01 - URL: https://petri.com/microsoft-teams-active-speaker-view-3d-avatars/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has detailed all the improvements made to its Teams collaboration service in May 2023. The major highlights include a new active speaker view, 3D avatars, offline meetings, as well as management and security features. Here’s a look at everything you need to know. Active speaker view for Microsoft Teams meetings Microsoft Teams has introduced a new Speaker View for both desktop and web users. The feature enables participants to easily track active speakers during Teams meetings. The meeting stage will prominently display the active speaker and shared content at the center, while the remaining participants will be shown at the top. Speaker View could be particularly useful for training sessions, town hall meetings, and lectures. Last week, Microsoft released a new avatars feature in the Teams desktop client for Windows and macOS. The feature is only available for organizations with Microsoft 365 Business and Enterprise licenses. Microsoft Teams is also getting a new meeting recap experience that lets attendees view shared content, meeting notes, and transcripts. Other features include organizer support for Breakout Rooms on VDI and control for profanity filters in Live Captions. Expanded view for profile card Microsoft released some enhancements to improve the profile card in Microsoft Teams. Just like Microsoft Outlook, the feature allows users to view contact details, organizational chart, LinkedIn tab, birthday, and other relevant information. It’s now possible for Microsoft Teams users to schedule offline (in-person) meetings, including lunch breaks and personal appointments. Additionally, Microsoft Teams added a new Files experience that... --- ### What's New in Windows – May 2023 > Last month was packed with Windows announcements as Microsoft announced Windows Copilot, Dev Home, and more at its annual Build developer conference. - Published: 2023-06-01 - Modified: 2023-06-01 - URL: https://petri.com/whats-new-windows-may-2023/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Windows, Windows 10, Windows 11 - Article Type: News Last month was packed with Windows announcements as Windows 11 did get a lot of stage time during Microsoft’s annual Build developer conference. With Windows Copilot, Microsoft will integrate a new AI assistant into the OS, and Windows Insiders will get to test it first later this month.   The software giant also made various announcements for Windows developers including Dev Home, a new developer-focused experience that’s now available in preview. The company also detailed what to expect from the upcoming “Moment 3” update for Windows 11 that's coming in June. May 2023 Patch Tuesday added a new Windows Update toggle Last month’s Patch Tuesday update for Windows 11 version 22H2 introduced a new toggle in Windows Update that lets users get the latest non-security updates, fixes, and improvements as soon as they roll out. This toggle is disabled by default on managed devices.   Windows 11’s “Moment 3” update is coming soon   Windows 11 is getting another “Moment” update this spring. The optional update for Windows 11 version 22H2 released on May 24 already includes some of the upcoming “Moment 3” features, such as support for Bluetooth Low Energy (LE) audio.   This month, Microsoft will start rolling out the rest of the “Moment 3” quality of life updates, and there’s quite a lot: Highlights include a new VPN status icon in the system tray, the option to display seconds in the system tray clock, new access key shortcuts in File Explorer, live kernel memory dump (LKD) collection in Task... --- ### Microsoft Releases Cross-Tenant Synchronization for Seamless Azure AD B2B Collaboration - Published: 2023-05-31 - Modified: 2023-07-17 - URL: https://petri.com/cross-tenant-synchronization-azure-ad/ - Categories: Active Directory (AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has announced the general availability of cross-tenant synchronization for Azure Active Directory (recently renamed Microsoft Entra ID) customers. The new feature allows IT admins to automate the creation of user accounts across tenants in their organization. Microsoft launched the public preview of cross-tenant synchronization for Azure AD back in January. Cross-tenant synchronization helps to save the time and effort previously required to manage consent prompts and redemption process in Azure AD B2B collaboration. “Cross-tenant synchronization automates creating, updating, and deleting B2B collaboration users. Users created with cross-tenant synchronization are able to access both Microsoft applications (such as Teams and SharePoint) and non-Microsoft applications (such as ServiceNow, Adobe, and many more), regardless of which tenant the apps are integrated with,” Microsoft explained. Under the hood, the feature uses the Azure AD B2B functionality and provides integration with conditional access, cross-tenant access settings, and other security and governance capabilities. It lets IT admins limit access to content and resources to a specific group of users within the organization. This capability helps to reduce the likelihood of potential administrative errors and security threats. License requirements for cross-tenant synchronization As of this writing, the cross-tenant synchronization feature is only available for commercial cloud customers. Microsoft says that it’s designed to improve intra-organization cross-tenant application access. However, the feature doesn’t support cross-cloud synchronization (such as public cloud to Azure Government). Keep in mind that customers will need to purchase an Azure AD Premium P1 subscription to access cross-tenant synchronization as a source tenant. Microsoft... --- ### Amazon Security Lake is Now Generally Available - Published: 2023-05-31 - Modified: 2023-05-31 - URL: https://petri.com/amazon-security-lake/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Amazon Web Services (AWS) has announced that Amazon Security Lake is hitting general availability this week. The new service enables organizations to create a specialized data lake to aggregate, normalize, and store security data. Security teams often face difficulties in gathering scattered security data within an organization. This is primarily because identity providers, firewalls, and applications each maintain their own event data and logs. It’s time-consuming and costly to create processes to normalize data across multiple sources. With Amazon Security Lake, customers can store, analyze, and understand the security data coming from both on-premises and cloud infrastructure. The service converts security data into the Open Cybersecurity Schema Framework (OCSF) standard. It should help security engineers quickly identify, investigate and respond to security incidents. “Security Lake centralizes security data from Amazon Web Services (AWS) environments, software as a service (SaaS) providers, on-premises, and cloud sources into a purpose-built data lake that is stored in your AWS account. With Open Cybersecurity Schema Framework (OCSF) support, the service normalizes and combines security data from AWS and a broad range of security data sources,” Amazon Web Services explained. What are the use cases of Amazon Security Lake? Amazon Security Lake is designed to help organizations improve their overall security posture. The service also helps to streamline the compliance monitoring and reporting process as well as unify security data management across hybrid environments. Additionally, Amazon Security Lake aggregates data from different AWS services, like GuardDuty, CloudTrail, AWS Firewall Manager, AWS Security Hub, and Lambda. The... --- ### How to Enable Azure AD Password Protection: A Step-by-Step Guide > Azure AD Password Protection prevents users in your tenant from using simple or known-hacked passwords. Here's a complete guide for implementing this solution. - Published: 2023-05-31 - Modified: 2024-11-19 - URL: https://petri.com/azure-ad-password-protection/ - Categories: Azure, Microsoft Entra ID (Azure AD) - Tags: Azure, Azure Active Directory, Azure AD Password Protection - Article Type: How To As an IT admin, preventing your users from using simple or known-hacked passwords has become critical for the overall security of your enterprise. An excellent step to take is to plan for and deploy Azure AD Password Protection. In this article, I'll walk you through installing the Proxy service and DC agent in your on-premises Active Directory, then register them with your Azure Active Directory (recently renamed Microsoft Entra ID) tenant. What is Azure AD Password Protection? More often than you want to admit, users in your organization often create passwords using common local words like a birthday, a child's name, a school, or even a famous person. Because these passwords are easy to guess, they open up your enterprise to hackers and major security risks. To enforce strong and complex passwords in your environment, Azure AD Password Protection provides a global and automatically downloaded banned password list. A local password change request will fail if a user attempts to use a banned password from the file. The first steps to implement Azure AD Password Protection include installing the proxy service and domain controller (DC) agent software on a few of your on-premises servers. Then you register these with your Azure Active Directory tenant. There are two modes that the solution runs in, Audit mode and Enforce mode: Audit mode is used to monitor and log infractions from your users changing their passwords. After you pilot the software for a while, you can switch to Enforce mode which will... --- ### Microsoft Teams Premium Adds New AI-Powered Intelligent Recap Feature for Meetings - Published: 2023-05-31 - Modified: 2023-05-31 - URL: https://petri.com/microsoft-teams-premium-intelligent-recap/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Microsoft announced yesterday that the AI-based intelligent recap feature is now generally available for Microsoft Teams Premium subscribers. Powered by OpenAI’s GPT-3. 5 model, the feature provides an overview of the most important information discussed during Teams meetings. In Microsoft Teams, the intelligent recap feature can automatically generate meeting notes, recommended tasks, and personalized highlights. Users will also see timeline markers to quickly catch up on what was shared or discussed in the meeting. The feature eliminates the need to switch between apps/screens to view AI-powered insights, including meeting recordings, transcripts, shared content, and more. “With intelligent recap, you can focus on the meeting discussion itself and not on capturing notes. AI-generated notes allow users to see key points and takeaways after the meeting, automatically created and powered by GPT. And follow-up is easy with AI-generated tasks and action items automatically suggested for you,” Microsoft explained. The intelligent recap feature also provides a full transcript that highlights the speaker’s contributions in a timeline of topics and chapters. Microsoft Teams users can access intelligent recaps in the new “Recap” tab available in the Teams chat and calendar. The feature respects the organization’s security, privacy, and compliance policies for Microsoft Teams. Microsoft has also released some enhancements to improve the existing meeting recap experience for all Teams users. “The new meeting recap will also be available on the ‘Recap’ tab and will enable users to watch the meeting recording directly within Teams, as well as provide co-created collaborative meeting notes, meeting transcript, and... --- ### Microsoft Will Make Teams 2.0 the Default Client Later This Year > The new Microsoft Teams 2.0 client that Microsoft made available in public preview in late March will become the default app for Windows users later this year. - Published: 2023-05-30 - Modified: 2023-05-30 - URL: https://petri.com/microsoft-teams-2-0-default-windows-client/ - Categories: Microsoft Teams - Tags: Microsoft Teams, Microsoft Teams 2.0 - Article Type: News The new Microsoft Teams 2. 0 client that Microsoft made available in public preview in late March will become the default app for Windows users later this year. Anupam Pattnaik, the Product Lead for Teams 2. 0 detailed the company’s plans in the first episode of UnplugIT, our new IT pro podcast hosted by Microsoft veteran Stephen Rose.   Microsoft Teams 2. 0 has been rebuilt from the ground up to make it 2x faster and consume fewer resources than the “classic” Teams desktop app. The new Teams 2. 0 client leverages the same WebView2 technology that already powers the new Teams for Consumers client that made its debut with Windows 11 last year.   “Right now, the classic Teams is the default because we do not have all the features that we support in classic Teams in the new Teams,” Pattnaik explained. “That’s the reason we have right now classic Teams as the default option, but sometime later this calendar year, we’ll make the new Teams the default option when we have feature parity, and when we feel confident that users can switch to the new Teams. ” Pattnaik also confirmed that the new Teams 2. 0 client will launch in preview on non-Windows platforms later this year. “We plan to make the preview of the new Teams available to our Mac, VDI, and web users later this calendar year. We also do plan to roll it out to our other customer segments like EDU, and Government Cloud later this calendar year,” the Product Lead for Teams said... . --- ### Unplugging What’s Next for Teams 2.0 - Published: 2023-05-30 - Modified: 2023-05-31 - URL: https://petri.com/unplugging-whats-next-for-teams-2-0/ - Categories: UnplugIT - Tags: NoAD - Article Type: Video In this first episode, Stephen talks to Microsoft’s Anupam Pattnaik, Product Lead for Teams. In this inaugural show, Stephen and Anupam discuss how IT can control access to the new Teams experience for end users, when Teams 2. 0 will become the default experience for everyone, when the new client will reach feature parity with classic Teams, and when Teams 2. 0 will be available for other platforms, like MacOS and web. And more! Transcript Stephen Rose Hey everybody, I'm Stephen Rose, and thank you for joining this brand new show, Unplug IT here on Petri.   We're going to be sitting down, taking a look at what topics are important to IT Pros, digging into really what you need to know to be successful as you pilot, deploy, secure, manage, and drive adoption within your own organizations. One of the top products that's out right now that so many of you are asking questions on is the new Teams or Teams. 2. 0. So I thought there's nobody better to answer those questions than my friend, Anupam Pattnaik. Hey, Anupam, how are you?   Anupam Pattnaik  I'm doing great, Stephen. How are you?   Stephen Rose I'm good. You are the senior product marketing manager for Teams 2. 0 at Microsoft, and take a moment, explain your role, and then we'll dig in and start talking about the new product and what that means for folks.   Anupam Pattnaik  Sure. So, my name is Anupam Pattnaik and I'm actually driving the product marketing work for Teams desktop... --- ### Stephen L Rose Joins Petri.com as Chief Technology Strategist - Published: 2023-05-30 - Modified: 2023-05-31 - URL: https://petri.com/stephen-l-rose-joins-petri-com-as-chief-technology-strategist/ - Categories: Announcements - Tags: NoAD, NoAds - Article Type: News I’m delighted to announce that Stephen L Rose has joined Petri. com as Chief Technology Strategist. For those who don’t know Stephen, for fourteen years he led Microsoft deployment, adoption, and usage of Windows, Office, OneDrive, and Teams and Co-Pilot for IT professionals worldwide. And Stephen currently holds over 15 Microsoft and CompTIA technical certifications. As part of his new role as Chief Technology Strategist at Petri, Stephen will be producing a new twice-monthly podcast, UnplugIT, where he will be interviewing a range of guests from across the industry, including leaders and decision makers at Microsoft and many of the clients that he’s worked with over the years. Here’s more about the new Petri. com podcast: UnplugIT! with host Stephen Rose UnplugIT! is an IT professional focused webcast hosted by IT influencer, 15-year Microsoft veteran, and Petri. com Chief Technology Strategist, Stephen Rose. Stephen focused on leading the efforts to help IT pros, technical decision makers, developers, understand the ins and outs of piloting, deploying, managing, securing, and driving adoption of technologies like Windows, Office 365, OneDrive, Microsoft Teams, and other products. https://www. youtube. com/watch? v=P9xXiwYFhZs His previous webcast, “Inside Microsoft Teams”, where he sat down with IT leaders from Lego, Polaris, Special Olympics, AEG, Kent State University, and more garnered over 2 million views in just over 18 months. In these new webcasts, Stephen goes beyond just Teams and sits down with industry experts to explore the latest trends, best practices to help our audience understand first-hand, the do’s, don’ts, and gotchas to get the... --- ### Microsoft Releases Tenant Restriction v2 to Ensure Secure External Collaboration - Published: 2023-05-30 - Modified: 2023-05-30 - URL: https://petri.com/microsoft-tenant-restriction-v2/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has recently announced the release of tenant restrictions version 2 (TRv2) for commercial cloud customers. The latest release enables IT admins to control whether end users can use externally issued identities to access external apps from org-owned devices or corporate networks. The tenant restriction feature builds on the cross-tenant access settings that launched in preview for Azure Active Directory users in February 2022. It allows administrators to control how employees can securely collaborate with people from other organizations. Up until now, tenant restrictions only used an on-premises proxy server to perform cloud authentication with Azure Active Directory (Azure AD). “We've been hearing that data exfiltration is a big concern for our customers moving to M365 cloud services, especially those with a need to collaborate across organizational boundaries.  TRv2 addresses those concerns by preventing information leaks due to token infiltration, anonymous access of external SharePoint online data, or anonymous join of external Teams meetings, and enables secure external collaboration,” Microsoft explained. What are the benefits of Tenant Restrictions V2 (TRv2)? Microsoft highlighted several key features of tenant restrictions V2 (TRv2). This release gives IT admins more control over external tenant access within their organization. It’s also possible to create granular partner-specific collaboration policies for external tenants. Additionally, tenant restrictions V2 makes it easier for IT Pros to manage externally issued user identities. Other capabilities include improved security as well as seamless configuration and management. Microsoft explained that tenant restrictions V2 allows IT admins to define granular access controls on a per-organization,... --- ### First Ring Daily - Stephen Rose Talks Build 2023 - Published: 2023-05-30 - Modified: 2023-05-30 - URL: https://petri.com/first-ring-daily-stephen-rose-talks-build-2023/ - Categories: Artificial Intelligence - Article Type: Video In this episode of First Ring Daily, Stephen Rose, Petri's Chief Technology Strategist, talks to Paul and Brad about the most interesting news from Build 2023. --- ### Microsoft Authenticator Lite is Now Generally Available for Outlook Mobile Apps - Published: 2023-05-30 - Modified: 2023-05-30 - URL: https://petri.com/microsoft-authenticator-lite-outlook-mobile/ - Categories: Microsoft Entra ID (Azure AD), Outlook - Tags: Azure Active Directory, Microsoft Outlook, News - Article Type: News Microsoft released the public preview of Authenticator Lite for its Outlook mobile apps back in March 2023. The company has announced that the feature is now generally available on Android and iOS devices. Microsoft’s Authenticator Lite feature allows users to approve multifactor authentication requests for work or school accounts directly in the Outlook mobile app. Users will receive push notifications with time-based one-time passwords (TOTP) via the Authenticator Lite app. Additionally, Authenticator Lite prompts end users to enter a number displayed on the screento block multifactor authentication (MFA) fatigue attacks. It’s a social engineering technique that involves bombarding a target victim with MFA push notifications. The Authenticator Lite feature aims to enhance security for users who have not already installed the Microsoft Authenticator app. “We strongly recommend moving your users off phone transports for authentication and towards more secure methods such as push notifications. Authenticator Lite (in Outlook) expands the opportunity to convert users by bringing the enhanced security of push notifications to devices that have not yet downloaded the Microsoft Authenticator App,” Microsoft explained. Microsoft to enable "Managed Setting" for Authenticator Lite in June Microsoft notes that IT admins can configure and manage Authenticator Lite capabilities in the Microsoft Entra portal and via MS Graph. However, the company plans to enable the Microsoft-managed setting for all organizations next month. It will let Azure Active Directory choose to turn on or off certain features for customers. “Until June 9, leaving the feature set to ‘Microsoft managed’ will have no impact... --- ### Nvidia Announces New Hardware and Services for Enterprise AI at Computex > Nvidia announced several new AI products at Computex including the Nvidia DGX GH200 AI supercomputer and the Nvidia MGX modular server specification. - Published: 2023-05-30 - Modified: 2023-06-30 - URL: https://petri.com/computex-nvidia-dgx-gh200-ai-supercomputer/ - Categories: Cloud Computing, Hardware - Article Type: News Nvidia announced several new AI products at the Computex annual trade show in Taipei, Taiwan. The biggest announcements made by the chip maker include the Nvidia DGX GH200, a new supercomputer designed for enterprise AI, an accelerated networking platform for hyperscale generative AI, as well as a new modular server architecture optimized for AI workloads. As Google and Microsoft both filled their recent annual developer conferences with various generative AI announcements, Nvidia is positioning itself as a leading provider of hardware, software, and services to power this new AI revolution.   “We’re now at the tipping point of a new computing era with accelerated computing and AI that’s been embraced by almost every computing and cloud company in the world,” said Nvidia founder and CEO Jensen Huang at the company’s Computex keynote. According to the exec, 40,000 large companies and 15,000 startups are now leveraging Nvidia technologies such as the company’s CUDA parallel computing platform. Nvidia announces new DGX GH200 AI supercomputer The Nvidia DGX GH200 is a new AI supercomputer designed for generative AI, data processing, and recommender systems. It provides 1 exaflop of computing performance and 144 terabytes of shared memory, which is approximately 500x more than the DGX A100 supercomputer Nvidia announced back in 2020.   The Nvidia DGX GH200 (Image credit: Nvidia) The DGX GH200 is powered by 256 Nvidia GH200 Grace Hopper chips, which combine an Arm-based Nvidia Grace CPU with an Nvidia H100 Tensor Core GPU. All this computing power will help customers such as Google Cloud, Meta, and... --- ### Microsoft Outlook, Edge, and Viva Engage Now Available on Shared Android Devices - Published: 2023-05-26 - Modified: 2023-05-26 - URL: https://petri.com/microsoft-outlook-shared-device-mode-android/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced that Microsoft Outlook, Edge, Viva Engage, and Power Apps are generally available on shared Android devices. The shared device mode allows frontline workers to securely access these apps on shared Android devices enrolled via Microsoft Intune. Microsoft introduced shared device mode support for Edge, Outlook, Viva Engage, and Power Apps on Android devices in preview in January this year. It’s an Azure Active Directory (Azure AD) feature that allows frontline workers to seamlessly sign into and out of supported Microsoft 365 apps while using shared devices. Up until now, shared device mode was available for the Microsoft Teams and Managed Home Screen apps. “Once signed into a shared Android device, frontline workers can immediately send and receive emails on Outlook to communicate with team members and their leadership team.  Many organizations are automating manual and fragmented processes with the help of Power Apps to save frontline workers’ time to focus more on customers,” the company explained. How does the shared device mode work in Microsoft Edge and Viva Engage? The shared device mode feature enables frontline workers to access any web-based app on Microsoft Edge. Moreover, frontline workers can use Viva Engage to stay connected with other people across their organizations. It’s possible to view announcements and notifications, learn valuable skills as well as participate in Q&A sessions. Microsoft notes that the shared device mode lets frontline workers sign out globally on the Android device at the end of their shifts. This means that their sensitive data will no longer be accessible... --- ### SQL Server Essentials: How to Create a Simple Backup Job in SQL Server > Read this tutorial to learn how to create SQL Server backup jobs using SQL Server Management Studio (SSMS). - Published: 2023-05-26 - Modified: 2023-07-24 - URL: https://petri.com/create-sql-server-backup-job/ - Categories: SQL Server - Tags: SQL Server - Article Type: How To Creating backups is one of the most important duties of an SQL Server database administrator, and there are a number of different ways to back up your most important databases. In this article, I'll explain how to create a simple SQL Server backup job using SQL Server Management Studio (SSMS). The different ways to create SQL Server backup jobs Database backups are different from regular system or storage backups as databases are not just simple files. They have internal objects like users, permissions, indexes, views, and transactions. While the end result of a database backup is a backup file that can be restored, the actual backup process needs to be database-aware in order to maintain complete consistency after a restore operation. There are three main types of SQL Server backups: Full database backup: A full database backup is created by the BACKUP DATABASE statement, as we'll see below. When you restore this backup, the entire database is restored to the state when the backup was taken. Transaction log backup: This backup type can only be created after having performed a full database backup. As you can guess, it only backs up the transaction log, which is backed up from the last successfully executed log backup at the current end of the log. Log backups can also be restored to a specific time or transaction. Differential backup: This backup type only includes the portions of the database or files that changed since the last full backup. It usually takes up... --- ### Microsoft Warns Chinese Volt Typhoon Hacking Group Infects Critical US Infrastructure - Published: 2023-05-26 - Modified: 2023-05-26 - URL: https://petri.com/microsoft-volt-typhoon-critical-us-infrastructure/ - Categories: Security - Tags: News, Security, Volt Typhoon - Article Type: News Microsoft has discovered that a Chinese government hacking group dubbed Volt Typhoon is targeting critical infrastructure environments in the United States. The campaign is designed to steal network credentials and sensitive data to disrupt critical communications with the Asia Pacific region. According to Microsoft, the Volt Typhoon group has been actively targeting companies in Guam and other parts of the United States for at least two years. The campaign affected various industries such as manufacturing, construction, communications, government, maritime, education, information technology, utility, and transportation. The Chinese hackers use the "living off the land" technique to manually control tools already installed on the victim's computers. Additionally, the threat actors use home and small office network equipment (such as firewalls, routers, and VPN hardware) to hide their communications with infected devices. “Volt Typhoon achieves initial access to targeted organizations through internet-facing Fortinet FortiGuard devices,” the Microsoft Threat Intelligence team explained. “The threat actor attempts to leverage any privileges afforded by the Fortinet device, extracts credentials to an Active Directory account used by the device, and then attempts to authenticate to other devices on the network with those credentials. ” Volt Typhoon attack diagram How to protect organizations against Volt Typhoon attacks Microsoft detailed indicators of compromise that could help IT admins identify whether their enterprise network is infected by Volt Typhoon attacks. The company urges customers to close or change the credentials of all compromised user accounts. It’s also recommended to monitor the activity of these accounts to prevent further damage. Microsoft... --- ### Microsoft is Investigating File Copying/Saving Failures on Windows 11 - Published: 2023-05-25 - Modified: 2023-05-25 - URL: https://petri.com/windows-11-file-copying-saving-failures/ - Categories: Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft is investigating a new issue that causes failures while copying and saving files on Windows devices. The company has confirmed that the bug only impacts 32-bit apps that are large address aware and use the CopyFile API on Windows 11 and Windows 10. CopyFile API is a set of functions that allow developers to copy an existing file to a new file. The API can also be used to perform other operations, including canceling the copy operation and callback function. Moreover, large address aware files can gain access to over 2GB of memory while running on 32-bit Windows machines. “Windows devices are more likely to be affected by this issue when using some commercial/enterprise security software which uses extended file attributes. We are not receiving reports that copying files using File Explorer is affected, but CopyFile API used within apps might be affected,” Microsoft explained on the Windows release health dashboard. Additionally, Microsoft explained that the bug also affects 32-bit versions of Microsoft Office applications. This means that Office users might experience “Document not saved” errors while copying or saving files on their PCs. However, the problem doesn’t impact Windows 11 consumer or managed commercial devices. Microsoft to fix File Copying/Saving Issues on Windows 11 22H2 Fortunately, Microsoft issued a Known Issue rollback to address the file copying/saving failures on Windows 11 version 21H2 and Windows 10. However, enterprise customers who have already installed a buggy update will need to deploy/configure a Group Policy to mitigate the issue on... --- ### Build 2023 - AI Hype or Should You Adopt Early? - Published: 2023-05-25 - Modified: 2023-05-25 - URL: https://petri.com/build-2023-ai-hype-or-should-you-adopt-early/ - Categories: Artificial Intelligence - Tags: AI, Build 2023, Microsoft Fabric, This Week in IT, video, Windows 11, Windows Copilot - Article Type: Video This Week in IT, Stephen Rose meets Richard Campbell, host of RunAs Radio, to discuss all the major AI announcements at Microsoft Build 2023. Including, Windows Copilot, Microsoft Fabric, AI plugins, privacy and security, and the AI hype cycle. --- ### Microsoft Introduces New Dev Home App to Boost Developer Productivity - Published: 2023-05-25 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-introduces-dev-home/ - Categories: Windows 11 - Tags: Dev Home, News, Windows 11 - Article Type: News Microsoft has unveiled several new tools and capabilities for Windows 11 at its Build 2023 developer conference this week. One of the biggest announcements is Dev Hub, a new open-source app that provides a centralized dashboard for all development needs. With Dev Home, developers can use the WinGet configuration file to set up their development machines with a single command. The configuration file can be used to install apps, tools, and packages in a repeatable way. The Dev Home app works as a central hub to track projects, workflows, GitHub issues, pull requests, as well as CPU and GPU performance. Developers can also use Microsoft Dev Box and GitHub Codespaces to set up coding environments. “Life as a developer involves constantly juggling manual dev machine set up with too many clicks, multiple tool sign-ins, navigating sub-optimal filesystem performance and context switching, and we know that these disruptions can significantly impact your productivity,” said Panos Panay, Chief Product Officer, Windows and Devices. Dev Home Microsoft’s Dev Home app comes with a new feature called Dev Drive. It’s a dedicated storage volume based on the ReFS file system that’s tailored specifically for developer workloads. Microsoft claims that Dev Drive boosts security and offers up to 30 percent better file system performance. The feature is more secure as compared to file or folder exclusions in Microsoft Defender. The new Dev Home experience is currently available in preview, and can be downloaded from the Microsoft Store. Dev Drive Windows Terminal gains GitHub Copilot integration... --- ### Microsoft Entra Introduces New Identity and Access Management Capabilities - Published: 2023-05-24 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-entra-external-id-preview/ - Categories: Security - Tags: Microsoft Entra, Microsoft Entra External ID, News - Article Type: News Microsoft announced yesterday that its Entra External ID solution will hit general availability this summer. The new service seamlessly integrates Azure AD and Azure AD B2C, allowing organizations to select an identity provider that effectively manages user identities and application access. “Microsoft Entra External ID was purpose-built to personalize and secure access to applications while protecting any external identity and effectively controlling which resources they can access. It delivers a flexible, unified identity platform, personalized customer experiences, adaptive access policies, and built-in identity governance,” said Joy Chik, President of Identity & Network Access at Microsoft. Microsoft Entra Verified ID Wallet SDK Microsoft also announced that the Entra Verified ID Wallet Software Development Kit library is expected to become generally available in June 2023. The feature will allow customers to integrate verifiable credentials wallets into their mobile applications. It enables organizations to provide verifiable credentials to create self-service account processes, streamline app sign-ins, prevent fraudulent activities, and other scenarios. Microsoft Purview gets new data automation and compliance features The Microsoft Purview Information Protection service allows IT admins to discover, classify, and protect sensitive data in their organization. Microsoft has recently improved the service with a new machine learning-enabled source code classifier. The feature enhances the detection of embedded and partial source code by offering support for over 23 programming languages and 70 file extensions. Microsoft noted that customers can now automate compliance workflows with the new Microsoft Graph APIs for Microsoft Purview eDiscovery. If you’re interested to learn more about the... --- ### Microsoft Lets Users Boot Windows 11 Devices Straight into Windows 365 Cloud PCs - Published: 2023-05-24 - Modified: 2023-05-24 - URL: https://petri.com/windows-365-boot-public-preview/ - Categories: Windows 365 - Tags: Microsoft Intune, News, Windows 11, Windows 365 - Article Type: News Microsoft kicked off its Build developer conference yesterday, where it unveiled several new features for enterprise customers. The company also announced a preview of Windows 365 Boot, which lets users log directly into their Cloud PCs at startup instead of the local install of Windows 11. Windows 365 Boot is designed for Windows devices that are shared between multiple people (such as frontline workers and temporary employees). The feature eliminates the need for IT admins to configure Windows PCs for individual users. “When you power on your device, Windows 365 Boot will take you to your Windows 11 login experience. After login, you will be directly connected to your Windows 365 Cloud PC with no additional steps. This is a great solution for shared devices, where logging in with a unique user identity can take you to your own personal and secure Cloud PC,” Microsoft explained. Microsoft is testing the Windows 365 Boot feature with Windows Insiders in the Dev Channel. It’s only available for Windows 11 Enterprise and Pro editions and requires a Windows 365 Cloud PC license and Microsoft Intune Administrator rights. Microsoft has also detailed a step-by-step guide to deploy Windows 365 Boot to Windows 11 endpoints with Microsoft Intune. Organizational messages coming to Windows 11 Windows 365 Boot isn’t the only improvement that was announced at Build 2023. Microsoft mentioned that organizational messages will become generally available on May 31st. The company released a preview of this feature in November, which allows IT Pros to send... --- ### How to Enhance your Home Lab with the Microsoft 365 Developer Program > The Microsoft 365 Developer Program is a free program that gives developers the tools, and support they need to build great solutions for Microsoft 365. - Published: 2023-05-24 - Modified: 2023-05-24 - URL: https://petri.com/microsoft-365-developer-program/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft 365 Developer Program, Sandbox - Article Type: Overview As an IT pro, enhancing your home lab with new capabilities should be a continual process. Being able to simulate and get hands-on experience is crucial, and this is where the Microsoft 365 Developer Program lends you a helping hand. After joining the program, you can sign up for a free, renewable Microsoft 365 E5 instant sandbox. Keep reading to understand its purpose and how it can benefit your home lab and career. What is the Microsoft 365 Developer Program? The Microsoft 365 Developer Program is a free program that gives developers access to the tools, resources, and support they need to build great solutions for Microsoft 365. As a subscriber of the program, you can get early access to new Microsoft 365 features and technologies, build and test your solutions in a sandbox environment, and get help from Microsoft experts if needed. The program also lets you connect with other developers in the community and share your solutions with the world. It's open to all developers, regardless of skill level or experience. The Microsoft 365 Developer Program home page (Image credit: Microsoft) To join the Microsoft 365 Developer Program, simply visit the dedicated website and sign up.   The main benefits of the M365 Developer Program If you're looking to get hands-on experience with various services included with Microsoft 365, then you should join the Microsoft 365 Developer Program. It's free, easy to join, and has a lot of benefits. Early access to new Microsoft 365 features and technologies As a... --- ### Microsoft Announces New Native Developer Tools on Windows on ARM > Microsoft Announced at its Build developer conference today that new developer tools are available natively on Windows on ARM PCs. - Published: 2023-05-23 - Modified: 2023-05-23 - URL: https://petri.com/microsoft-build-2023-windows-on-arm-updates/ - Categories: Windows 11, Windows Client OS - Tags: Build 2023, Visual Studio, Windows 11, Windows on ARM - Article Type: News Microsoft is continuing its work to make Windows on ARM a better platform for app developers. Last year, the company announced at Build 2022 a complete development toolchain for Windows on ARM that includes native versions of Visual Studio 2022 and VSCode, Windows Terminal, and the Windows Subsystem for Linux and Windows Subsystem for Android.   The company followed up in October 2022 with the launch of the Windows Dev Kit 2023 (Project Volterra), a mini PC powered by a Qualcomm Snapdragon 8cx Gen 3 Compute Platform. While it’s too early to say if last year’s announcement already help Windows on ARM to get any momentum, this week’s Build conference brings us news about new developer tools available natively on ARM-based Windows PCs. New developer tools get native ARM support Microsoft announced that Visual Studio 17. 6 will soon ship with MAUI support for ARM. Additionally, the ARM version of Visual Studio 17. 71 Preview 1 added support for Linux development with C++. The rest of the announcements include the LLVM Compiler Infrastructure Project getting support for cross-compile and native compile options for ARM devices with version 12. 0 and onwards. WiX installer version 4. 0 also lets developers create native ARM64 installers, while the version 20. 0. 0 of Node. js is now available with native ARM support. Lastly, Microsoft announced that a native ARM version of the AI-powered photo editing app Luminar Neo is now available from the Microsoft Store. Developers using the Unity Player middleware engine will also get access to an ARM64 version in... --- ### Microsoft Dev Box Adds New Features Ahead of its General Availability in July > Microsoft Dev Box, the Azure-based service that lets developers access a cloud-based workstation is getting new features ahead of its July 2023 availability. - Published: 2023-05-23 - Modified: 2023-05-23 - URL: https://petri.com/microsoft-dev-box-new-features-july-2023-availability/ - Categories: Cloud Computing, Microsoft Azure - Tags: Build 2023, Microsoft Dev Box - Article Type: News Microsoft Dev Box, the company’s new Azure service that provides access to a developer workstation in the cloud is getting new features ahead of its general availability. Following the launch of a public preview back in August, Microsoft announced at its Build developer conference today that Microsoft Dev Box will become generally available in July 2023.   So far, Microsoft says that it has been testing its Dev Box solution with more than 9,500 engineers internally who’ve been using the cloud-based workstations as their primary work machine. Moreover, over 50 organizations across financial services, retail, automotive, and other industries have provided feedback to Microsoft about its new Dev Box solution.   “At Microsoft, we’re actively transitioning to Dev Box, and already, the onboarding process that used to take days now takes me about 20 minutes," emphasized Anthony Cangialosi, Group Product Manager, Developer Division. For organizations, Microsoft Dev Box provides pre-built images will all the tools developers need to start working immediately. As for management, the cloud-based workstations also support Intune enrollment and project-based virtual networks.   New Microsoft Dev Box capabilities to boost productivity When Microsoft Dev Box goes out of preview in July, developers will get access to two new high-end Dev Box configurations: One will offer 16 vCPUs and 64 GB RAM and the other one will have 32 vCPUs and 128 GB RAM. Moreover, Microsoft is also adding a new 2TB SSD storage option. Organizations can now configure higher-powered Microsoft Dev Box SKUs (Image credit: Microsoft) To help get developers... --- ### Microsoft's Azure Deployment Environments Service Now Generally Available - Published: 2023-05-23 - Modified: 2023-05-23 - URL: https://petri.com/microsoft-azure-deployment-environments/ - Categories: Microsoft Azure - Tags: Azure Deployment Environments, Build 2023, Microsoft Azure - Article Type: News Microsoft has announced the general availability of Azure Deployment Environments. It’s a new managed service that lets developers use infrastructure-as-code templates to quickly spin up on-demand app deployment environments. Microsoft highlighted three key factors for effectively managing cloud-based infrastructure in enterprise environments: speed, usability, and governance. The company has incorporated customer feedback to build Azure Deployment Environments that provide self-service capabilities with standardized project-based templates. Moreover, developers can choose to submit custom templates through pull requests. “Our journey to Azure Deployment Environments didn’t just start last year at Build—today’s announcement represents the culmination of over seven years of learning, starting way back in 2016 with Azure DevTest Labs. For a long time, we’ve noticed the inefficiencies around how developers gain access to infrastructure, and these challenges have only gotten worse,” explained Sagar Lankala, Senior Product Manager for Developer Division. Microsoft’s Azure Deployment Environments service provides a centralized management and governance experience to development infrastructure teams. It eliminates the time and effort that was previously required to manually provision development environments. IT Pros can pre-define policies for the role-based deployment of the sandbox, dev, test, staging, pre-prod, and production environments. Microsoft launches new custom developer portal Microsoft has launched a custom developer portal to streamline the process of creating and managing development environments. The portal also lets developers view, manage, and spin up cloud-based workstations available via Microsoft Dev Box. Last but not least, Microsoft announced that Terraform customers can now directly import existing templates into Azure Deployment Environments. The company... --- ### Microsoft Fabric Brings New AI-Powered Data Analytics Features to Boost Productivity - Published: 2023-05-23 - Modified: 2023-05-23 - URL: https://petri.com/microsoft-fabric-data-analytics/ - Categories: Microsoft Azure - Tags: Build 2023, Microsoft Fabric, News - Article Type: News Microsoft kicked off its Build 2023 conference today, and the company announced several updates for its products and services. Arun Ulagaratchagan, CVP of Azure Data, unveiled Microsoft Fabric, an end-to-end data analytics platform that incorporates Data Factory, Synapse, and Power BI into a unified solution. “With Microsoft Fabric, customers can use a single product with a unified experience and architecture that provides all the capabilities required for a developer to extract insights from data and present it to the business user. And by delivering the experience as Software as a Service (SaaS), everything is automatically integrated and optimized, and users can sign up within seconds and get real business value within minutes,” Ulagaratchagan explained. Microsoft Fabric brings together all data analytics tools required for data integration, data engineering, data warehousing, data science, real-time analytics, business intelligence, and more. The service provides the following core workloads that are currently available in preview: Data Factory - It offers over 150 connectors to integrate data from both on-prem and cloud data sources. Synapse Data Engineering - It improves authoring experiences for Apache Spark and collaboration. Synapse Data Science - It’s a complete workflow that enables data scientists to build, train, deploy, and manage AI models. Synapse Data Warehousing - It offers better SQL performance on open data formats for data warehouse scenarios. Synapse Real-Time Analytics - It lets developers analyze large volumes of semi-structured data coming from IoT devices, telemetry, logs, and other sources. Power BI - Microsoft Fabric provides integration with Power... --- ### GitHub Expands Security Tools to Protect Azure DevOps - Published: 2023-05-23 - Modified: 2023-05-23 - URL: https://petri.com/github-advanced-security-azure-devops/ - Categories: DevOps - Tags: Build 2023, DevOps, News - Article Type: News Microsoft has launched GitHub Advanced Security for Azure DevOps in public preview today. The new service is designed to help developers embed automated security checks into the platform to protect their application code and supply chain. Microsoft first introduced GitHub Advanced Security in private preview back in November 2022. The service allows customers to address the most common threats (secrets, keys, and passwords) in the software development life cycle. The secret scanning feature helps to block code pushing containing secrets into Azure repositories. “Exposed credentials are implicated in over 50% of security breaches. GitHub Advanced Security for Azure DevOps can not only help you find secrets that have already been exposed in Azure Repos, but also help you prevent new exposures by blocking any pushes to Azure Repos that contain secrets. All with a single click,” explained Aaron Hallberg, VP of Product Management, GitHub. Code Scanning GitHub Advanced Security for Azure DevOps also uses the CodeQL static analysis engine to detect code vulnerabilities, such as authorization bypass and SQL injection attacks. The code scanning feature supports popular programming languages, including Python, C++, C#, Java, Go, and JavaScript/TypeScript. Dependency Scanning Lastly, GitHub Advanced Security for Azure DevOps scans the source code to find direct and transitive dependencies for open-source packages. It also provides information to help developers upgrade the packages in order to mitigate security issues within the application code. GitHub Advanced Security for Azure DevOps pricing details Overall, Microsoft’s GitHub Advanced Security service should help to bolster Azure DevOps security... . --- ### Microsoft Mesh Mixed-Reality Collaboration Platform Enters Private Preview - Published: 2023-05-23 - Modified: 2023-05-23 - URL: https://petri.com/microsoft-mesh-private-preview/ - Categories: Microsoft 365, Microsoft Teams - Tags: Build 2023, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has unveiled a range of new updates for its Microsoft 365 ecosystem at its annual Build developer conference. The company announced that Microsoft Mesh, a new mixed reality (MR) platform, is available in private preview starting today. Microsoft Mesh is a new Azure-powered service that was first announced in March 2021. It enables remote and hybrid teams to interact and share content with each other in a Teams meeting or an immersive virtual space. It can be accessed through a PC or virtual reality (VR) headset. Microsoft Mesh allows coworkers to engage with eye contact, facial expressions, and physical gestures. “With Microsoft Mesh, developers can build experiences that extend beyond the bounds of the physical world, enhancing experiences like remote and hybrid town halls, employee training, new employee onboarding, and virtual tours and simulations,” Microsoft explained. Microsoft Teams Mesh avatars Microsoft announced that Mesh avatars are now generally available in the Microsoft Teams desktop app. The feature debuted in private preview in October 2022, allowing users to create an animated version to represent themselves in both 2D and 3D meetings. Starting this week, the feature is available for customers with Microsoft 365 Business and Enterprise subscriptions. https://youtu. be/Pk5BVxlKL5w New immersive spaces for Microsoft Teams Microsoft has also launched new Mesh-powered immersive spaces for Microsoft Teams in private preview. This release allows participants to create virtual meeting spaces within Microsoft Teams. The new experience lets attendees use apps to collaborate on projects or socialize with games. Microsoft says that users can... --- ### Microsoft Edge for Business Launches with New Enterprise Features - Published: 2023-05-23 - Modified: 2023-05-23 - URL: https://petri.com/microsoft-edge-for-business-preview/ - Categories: Microsoft Edge - Tags: Build 2023, Microsoft Edge, News - Article Type: News Microsoft has announced a slew of improvements coming to its Edge browser at Build 2023. The new features include Microsoft Edge for Business (preview), Microsoft Edge management service, Microsoft 365 Copilot integration in Edge, and more. Microsoft has introduced a dedicated workspace called Microsoft Edge for Business. The new experience features an app icon, the organization’s name as well as other visual references. Microsoft Edge for Business brings a new set of productivity and security capabilities as well as enterprise controls for organizations. It will soon become the standard browser experience for Azure Active Directory (Azure AD) customers. “This calls for a new browser model that enhances users’ privacy while maintaining crucial, enterprise-grade controls set at the organizational level. Microsoft Edge for Business honors the needs of both end users and IT Pros as the browser that automatically separates work and personal browsing into dedicated browser windows with their own separate caches and storage locations, so information stays separate,” said Lindsay Kubasik, Group Product Manager, Edge Enterprise. With Microsoft Edge for Business, users can automatically switch between different work and personal browser windows. It’s also possible to configure personal and work-related in Microsoft Edge’s settings. The new feature will help IT Pros to protect users against phishing and cyberattacks. Microsoft Edge for Business supports information rights management, built-in data loss prevention, and other enterprise features to improve security and compliance. Microsoft Edge for Business is currently available in preview on managed devices. The company also plans to bring the new... --- ### Windows Copilot Brings AI Personal Assistant to Windows 11 - Published: 2023-05-23 - Modified: 2024-09-11 - URL: https://petri.com/windows-copilot-build-2023/ - Categories: Windows 11 - Tags: AI, artificial intelligence, Bing Chat, ChatGPT, Microsoft Store, News, Windows 11, Windows Copilot - Article Type: News Today at Build 2023, Microsoft announced Windows Copilot for Windows 11. As the first PC operating system to include integrated artificial intelligence (AI) capabilities, like those found in ChatGPT and Bing Chat, Microsoft is centralizing AI features already available in Bing Chat as a new capability in Windows 11. It will also allow users to expand out-of-the-box functionality with first and third-party plugins. Windows 11 already has, although somewhat limited, integration with Bing Chat in the taskbar search box. Because of the limited screen real estate, and nature of how the flyout search panel works, Microsoft has opted to flesh out its generative AI capabilities in a separate app – Windows Copilot. Like the generative AI features in Bing Chat, Edge, and Designer, Microsoft says that Windows Copilot will help users bring their ideas to life, and complete projects with coworkers faster – as opposed to working across multiple applications. Windows Copilot will integrate with Microsoft 365 so it can be used as a collaborative tool and not just an app that generates ideas that then need to be manually shared elsewhere. Windows Copilot for Windows 11 (Image Credit: Microsoft) What is Windows Copilot? Windows Copilot will be an application in Windows 11 that provides users with personalized answers to questions using natural language queries – much like ChatGPT and Bing Chat today. It can also perform actions on a user’s behalf, like changing a setting, starting a playlist, and opening an app. Windows Copilot will be aware of... --- ### Microsoft 365 Copilot Gets Support for Plugins - Published: 2023-05-23 - Modified: 2023-05-23 - URL: https://petri.com/microsoft-365-copilot-plugins/ - Categories: Microsoft 365 - Tags: Build 2023, Microsoft 365, Microsoft 365 Copilot, News - Article Type: News At its Build 2023 developer conference, Microsoft detailed some important updates for its Microsoft 365 apps. The company announced this morning that developers can now use plugins to integrate their apps and services into Microsoft 365 Copilot. “Developers can now integrate their apps and services into Microsoft 365 Copilot with plugins and reach hundreds of millions of people where they work every day. Plugins are tools that augment the capabilities of AI systems, enabling them to interact with APIs from other software and services to retrieve real-time information, incorporate company and other business data, and perform new types of computations,” said Rajesh Jha, Executive Vice President, Experiences & Devices. What plugins does Microsoft 365 Copilot support? Microsoft 365 Copilot supports three types of plugins in private preview. These include existing ChatGPT plugins, Teams message extensions, and Power Platform connectors. Microsoft is also working with OpenAI to create an open standard for plugins. It will let developers build plugins that work with both the Microsoft 365 Copilot and ChatGPT. Currently, Microsoft is providing more than 20 plugins to customers enrolled in the Microsoft 365 Copilot early access program. These include Atlassian, ServiceNow, Adobe, Move Works, Thomson Reuters, and Mural. Meanwhile, Microsoft plans to add support for thousands of Teams message extensions and Power Platform connectors in the Microsoft 365 Copilot in the coming months. Additionally, the Microsoft Teams Toolkit for Visual Studio enables developers to create, test, and debug new plugins for Microsoft 365 Copilot. Microsoft has announced the general availability... --- ### Microsoft Teams to Add New Collaborative Stageview for Virtual Meetings - Published: 2023-05-22 - Modified: 2023-05-22 - URL: https://petri.com/microsoft-teams-collaborative-stageview/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is working on a new Collaborative Stageview feature for Microsoft Teams. The company has announced on the Microsoft 365 admin center that this update will allow meeting participants to pop out app content into a separate window. “With Collaborative Stageview, app content opens in a new Teams window where users can engage with content and chat with other team members, side-by-side. Collab Stage lets users share links and collaborate on content, right from within Teams,” Microsoft explained. According to Microsoft, the new feature will be available for select apps built to support the Collaborative Stageview experience. Users will be able to click on the eligible adaptive cards to open and engage with app content in a large Teams window. There is also a side panel that lets meeting participants continue conversations with their colleagues. Microsoft plans to roll out the new Collaborative Stageview to Microsoft Teams users next month. It’s designed to boost productivity for remote teams that work in collaborative environments. However, the feature will only be available for the Microsoft Teams desktop app, and it won’t support the web client. Microsoft Teams Breakout Rooms get new participant shuffle feature Microsoft Teams is also getting a new update that allows organizers to randomly assign participants to Breakout Rooms. It’s possible to shuffle all participants or only unassigned participants before or during a Teams meeting. The new Breakout Rooms participant shuffle feature is already available in preview for desktop users enrolled in the Microsoft Teams public preview program. The... --- ### Amazon Detective Gets New Features to Bolster Analysis of AWS Security Findings - Published: 2023-05-22 - Modified: 2023-05-22 - URL: https://petri.com/amazon-detective-aws-security-findings/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Last week, Amazon Web Services (AWS) announced that its Amazon Detective service is getting a new integration with AWS Security Hub. The new feature allows organizations to quickly and efficiently investigate AWS security issues. Amazon Detective is a service that enables organizations to investigate security issues and suspicious activities in their AWS resources and accounts. The security service collects log data from Amazon GuardDuty, Amazon CloudTrail, Amazon Virtual Private Cloud (VPC) Flow Logs, and other AWS services. Amazon Detective uses AI to create visualizations that provide detailed insights into security incidents. With this release, security teams can use Amazon Detective to find the root cause and impact of findings coming from both GuardDuty and Security Hub. The list of new data sources includes Amazon Macie, Amazon Inspector, and AWS Identity and Access Management (IAM) Access Analyzer. How to enable AWS Security Findings in the Amazon Detective Console To get started, customers will need to head over to the Detective Management Console in order to configure AWS Security Findings investigations. From there, click Settings >> General >> Edit to enable Detective for AWS Security Findings. The feature will analyze relevant data to detect connections between log events and activities. Pricing details and limitations Amazon Detective investigation support is accessible to both new and existing customers in AWS Regions where the service is currently available. This release aims to help IT admins to detect potential security threats and vulnerabilities in their corporate networks. The pricing depends on how much data the service... --- ### How Destructive Testing Can Make Your Disaster Recovery Plans More Robust > If you don’t implement disaster recovery testing, you won’t know if your DR plans will work when needed. You should also break your DR plans to improve them. - Published: 2023-05-22 - Modified: 2023-05-22 - URL: https://petri.com/disaster-recovery-testing/ - Categories: Backup & Storage - Tags: Disaster Recovery - Article Type: Overview If most organizations understand the need to have a robust disaster recovery (DR) plan, IT Pros should also know that testing these plans is essential. If you don’t implement disaster recovery testing, you won’t know if your plans will work when you need them. And to properly test your DR plans, you may want to break them. Some notable companies, like Google, are famed for implementing their entire DR procedures regularly – switching their production workloads to a backup infrastructure and then switching it all back again. This ensures that the DR plans work and that they are continually updated. While that level of testing is beyond most organizations, it does underline the importance some businesses place on testing. Why do you need to break your disaster recovery plans? There’s no doubt that regular disaster recovery testing is important. However, one thing that you can always count on is Murphy’s Law: If something can go wrong, it will go wrong. As an IT Pro, DR testing can avoid the biggest and most obvious problems and errors that you might encounter. However, what about those other unexpected things that can potentially cause disaster recovery failures? While you can’t control everything, one situation you don’t want to encounter while in the midst of attempting a recovery is an unexpected error. When you consider the situation, which prompted the disaster recovery in the first place, it might not be unreasonable to expect to run into other problems. IT Pro preparing for a DR test... --- ### Microsoft Lets IT Admins Remove Internet Explorer References From Windows 10 - Published: 2023-05-19 - Modified: 2023-05-19 - URL: https://petri.com/microsoft-internet-explorer-references-windows-10/ - Categories: Active Directory (AD) - Tags: Internet Explorer, News, Windows 10 - Article Type: News Microsoft released an update to permanently disable Internet Explorer 11 (IE11) on Windows 10 back in February. Now, the company has provided an update about the next steps to completely remove the last bits of the legacy web browser on Windows devices. Microsoft unveiled its plans to deprecate Internet Explorer 11 in favor of Edge on Windows 10 in June 2022. The company released updates to permanently kill off Internet Explorer and redirect users to the new Chromium-based Edge browser. Microsoft advised organizations to use the IE mode to run legacy websites that still need Internet Explorer features. Additionally, Microsoft mentioned that users may still see IE11 icons and references on their Windows 10 systems. The company previously planned to remove the visual references with an update in June 2023. However, Microsoft has since made some changes to its Internet Explorer 11 app retirement plan. Internet Explorer 11 to remain accessible in "exceptional scenarios" on Windows 10 devices Microsoft has announced that it will no longer remove visual references (such as Start Menu and Taskbar icons) via Windows Update. The company says that it will be up to the IT admins to remove the last bits of the legacy Internet Explorer browser from Windows 10 PCs via the Disable IE policy. Microsoft also mentioned that users will still be able to access IE11 in Microsoft Edge in case of "exceptional scenarios". “Additionally, changes will be made over the next coming months to redirect a small subset of exceptional scenarios where... --- ### How to Install and Configure Docker on Ubuntu 22.04 > Learn how to install Docker on Ubuntu 22.04 and everything you need to get started with Docker images and containers. - Published: 2023-05-19 - Modified: 2023-05-19 - URL: https://petri.com/install-docker-ubuntu/ - Categories: DevOps - Tags: DevOps, Docker, linux, Ubuntu - Article Type: How To In this tutorial, I’ll show you how to install Docker on Ubuntu 22. 04 and detail what you need to get started with containers and images. How to Install Docker on Ubuntu 22. 04 We’re going to install the latest stable version of Docker from the official repository. However, before we proceed, we need to update our Linux system packages. Update your system repositories First, run apt update in a terminal session: Log in to your Ubuntu machine using your favorite SSH client. Update your existing list of packages by running the apt update command: sudo apt update Updating your system repositories (Image credit: Petri/Sagar) Install the prerequisite packages After updating our system packages, we need to add a few important packages that are required to install Docker. To do that, we’ll use the following apt install command with sudo privileges. The command allows Ubuntu to securely connect to external repositories to retrieve the packages we need.   sudo apt install apt-transport-https ca-certificates curl software-properties-common  Installing the prerequisite packages (Image credit: Petri/Sagar) When asked to continue, type ‘y’ to complete the installation of the prerequisite packages. Add Docker’s GPG key to your system To install Docker from the official repository, you need to add Docker’s GPG (GNU Privacy Guard) key to your system. This is required to enable the safe exchange of information with the Docker repository. You can use the curl command below to add Docker’s GPG key: curl -fsSL https://download. docker. com/linux/ubuntu/gpg | sudo apt-key add - Adding Docker's GPG key (Image... --- ### Microsoft Releases AI-Powered Code Optimizations to Monitor .NET Apps - Published: 2023-05-19 - Modified: 2023-05-19 - URL: https://petri.com/microsoft-code-optimizations-net-apps/ - Categories: Microsoft Azure - Tags: Azure Monitor, News - Article Type: News Microsoft has announced the public preview of Code Optimizations for Azure Monitor. The new AI-powered service enables customers to detect CPU and memory usage performance issues with their . NET apps and services. Microsoft first introduced the Code Optimizations feature (previously called Optimization Insights) in a limited preview back in March 2022. It’s part of the Azure Application Insights extension that uses telemetry data for application performance monitoring tasks. How does Code Optimization work? Code Optimizations works with Application Insights Profiler and utilizes advanced AI algorithms to track performance issues, including high CPU, memory usage, and incorrect API usage. It analyzes the application’s profile traces to offer insights and recommendations to enhance performance. “By learning from these traces, the model can glean patterns corresponding to various performance issues seen in . NET applications and learn from the expertise of performance engineers at Microsoft. This enables our AI model to pinpoint with accuracy a wide range of performance issues in your app and provide you with actionable recommendations on how to fix them,” Microsoft explained. Microsoft highlighted the Code Optimizations feature helps to save the time and effort that was previously required to find complex performance issues. It should also enhance the reliability and speed of the . NET application or cloud service. Code Optimizations enables customers to make informed decisions about optimizing the source code. How to use Code Optimizations in Azure Monitor? To get started with Code Optimizations, users will need to follow the steps listed below: First, sign up to use... --- ### AWS to Invest $12.7 Billion into Indian Cloud Infrastructure by 2030 - Published: 2023-05-18 - Modified: 2023-05-18 - URL: https://petri.com/aws-invest-12-7-billion-india/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Amazon Web Services (AWS) has announced its plans to invest $12. 7 billion into cloud infrastructure in India by 2030. The company highlighted that this new initiative should help to meet the increasing demand for cloud services across various industries. In a press release, Amazon Web Services explained that it had already made an investment of $3. 7 billion between 2016 and 2022. The company claimed that the funding “has a ripple effect” to boost the economy of India in different sectors. These include training, sustainability initiatives, community engagement, workforce development, and more. It’s important to note that AWS currently operates two data center regions in India. The company launched these infrastructure regions in Mumbai and Hyderabad to provide customers with more options to securely run their cloud workloads. AWS to create 39,500 full-time jobs for India’s digital workforce AWS estimates that its total investment in India is expected to hit the $16. 4 billion milestone by the end of the decade. It’s expected to create around 39,500 full-time jobs in local businesses on an annual basis. The new initiative will support a wide range of roles in industries like telecommunications, engineering, facility maintenance, construction, and more. “AWS is committed to driving positive social and economic impact in India. In addition to building cloud infrastructure and helping local customers and partners digitally transform, we have trained more than four million people in India with cloud skills since 2017, and invested in six utility-scale renewable energy projects to meet our global 100% renewable energy... --- ### New Microsoft 365 Defender Feature Automatically Blocks Adversary-in-the-Middle Campaigns - Published: 2023-05-18 - Modified: 2023-05-18 - URL: https://petri.com/microsoft-365-defender-adversary-in-the-middle-attacks/ - Categories: Security - Tags: Microsoft 365 Defender, News, Security - Article Type: News Microsoft 365 Defender is getting a new update that enables customers to detect and block adversary-in-the-middle (AiTM) attacks. The company explained that the AiTM protection feature builds on top of the existing automatic attack disruption (XDR) capabilities that launched in February 2023. Adversary-in-the-Middle (AiTM) is a phishing technique that enables threat actors to hijack session cookies by bypassing multifactor authentication (MFA). It intercepts communications between the victim and the service to steal sensitive information like credit card data and login credentials. It’s comparatively challenging to detect AitM attacks because it doesn’t rely on a spoofed email or website. How Microsoft’s XDR automatically contains AiTM attacks? Microsoft claims that the security feature allows Microsoft 365 Defender customers to detect AiTM campaigns with "high confidence" based on various Microsoft 365 Defender signals. The tool will automatically take necessary actions to disrupt the attack, including blocking the compromised account or revoking stolen session cookies. According to Microsoft, IT admins will be able to view details about the contained AiTM incident on the Microsoft 365 Defender incident page. They will see a dedicated attack disruption tag that appears next to affected incidents. The automatic attack disruption feature helps organizations to block lateral movement within enterprise networks at the initial stages. This should make it easier for the security teams to investigate and mitigate the AiTM attacks. Licensing requirements Microsoft notes that the new AiTM feature will be available as a part of its automatic attack disruption capability for Microsoft 365 Defender subscribers. Meanwhile, automatic... --- ### Latest Red Hat Enterprise Linux Release Brings New Features to Streamline IT Management Tasks - Published: 2023-05-18 - Modified: 2023-05-18 - URL: https://petri.com/red-hat-enterprise-linux-releases/ - Categories: Linux - Tags: linux, News, Red Hat Enterprise Linux - Article Type: News Red Hat has recently announced the general availability of Enterprise Linux 9. 2 and the upcoming release of Red Hat Enterprise Linux 8. 8. The latest release brings new features to streamline complex Linux platform tasks across hybrid cloud environments. “The latest versions of the world’s leading enterprise Linux platform bring greater automation to help IT teams extend their reach across the hybrid cloud while at the same time making it easier to embrace innovation, whether containers or new hardware architectures,” said Gunnar Hellekson, VP and GM of Red Hat Enterprise Linux. Red Hat has introduced a new realmd RHEL system role that should make it easier for IT admins to manage security and compliance within their organizations. It allows administrators to automate the integration of RHEL systems with Azure Active Directory (Azure AD). Moreover, Red Hat Enterprise Linux (RHEL) 9. 2 adds support for Ansible DevOps content to improve system checks following the guidelines established by the Center for Internet Security (CIS). The RHEL web console lets IT admins automatically configure encrypted disk unlocking on root filesystems with Network-Bound Disk Encryption (NBDE) deployments. This capability should make it easier for organizations to protect sensitive data and information at rest. The new Linux distros include support for the latest languages, toolkits, and databases for software developers. The includes PostgreSQL 15, Performance Co-Pilot (PCP), Python 3. 11, as well as Grafana version 9. 0. 9. There are also updates to LLVM Toolset v15. 0. 7, Go v1. 19. 6, and Rust v1. 66. Red Hat has also introduced a new open-source tool... --- ### Microsoft is Caught Scanning Password-Protected Zip Files on SharePoint Online > A security researcher shared his surprise after Microsoft flagged some password-protected zip files he had stored on SharePoint Online as malware. - Published: 2023-05-18 - Modified: 2023-05-18 - URL: https://petri.com/microsoft-password-protected-zip-files-sharepoint/ - Categories: SharePoint Online - Tags: Microsoft, Security, SharePoint, SharePoint Online - Article Type: News Microsoft has been caught scanning for malware in password-protected zip files stored on SharePoint Online. Andrew Brandt, a security researcher who uses Microsoft’s cloud services to save copies of malware in password-protected zip files shared his surprise after Microsoft had flagged some of his files that had been uploaded into a SharePoint directory as malware.   In a Mastodon post that summarized his findings, Brandt said that he “totally understand doing this for anyone other than a malware analyst,” but added that “this kind of nosy, get-inside-your-business way of handling this is going to become a big problem for people like me who need to send their colleagues malware samples. " For security researchers, using cloud services to back up and share malware in protected files is a pretty common practice. Brandt also said in the Mastodon thread that he started to keep malware in passworded zips last year after the OneDrive app on his work laptop decided to back up his files, then deleted them from both his hard drive and the cloud after they had been flagged as malware.   How can Microsoft scan password-protected zip files? While Microsoft has good reasons to scan files stored on its cloud services for malware, doing so on password-protected files may go a step too far for some customers. “The available space to do this just keeps shrinking and it will impact the ability of malware researchers to do their jobs,” Brandt said.   Kevin Beaumont, another security researcher (and ex-Microsoft employee) chimed in... --- ### Microsoft Acknowledges Slow VPN Connection Issues on Windows 11 - Published: 2023-05-17 - Modified: 2023-05-17 - URL: https://petri.com/microsoft-slow-vpn-connection-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Last week, Microsoft rolled out a new set of Patch Tuesday updates for all supported versions of Windows 10 and Windows 11. The company has acknowledged that the latest updates are causing problems with L2TP/IPsec VPN connections on Windows 11 PCs. Last week, the issue was first reported by several Windows users and IT admins on Reddit. Users reported that installation of the KB5026372 cumulative update leads to slower speeds in both download and upload activity on L2TP/IPsec VPN. Layer 2 Tunneling Protocol with Internet Protocol Security (L2TP/IPsec VPN) combines two protocols to create secure virtual private network (VPN) connections. This VPN connection is typically used to connect remote employees to enterprise networks. "No problems connecting to the VPN, just once you get in the speeds are extremely slow and RDP basically just times out. A quick search of the web confirms that KB5025305 causes speed issues on L2TP/IPsec VPN," an IT admin explained on Reddit. It’s important to note that some users have reported the issue with only Wi-Fi connections on Windows 11 devices. It seems like slower VPN performance problems don’t impact computers with wired internet connections. In addition to VPN performance issues, users reported that the May 2023 Patch Tuesday updates also trigger several other issues on Windows 11. These include forced reboots, BitLocker automatic activation, SSD slowdowns, and more. Microsoft to issue fix for slow VPN speed problems on Windows 11 PCs As reported by Bleeping Computer, Microsoft is aware of the problem and it will... --- ### Azure AD System-Preferred Multifactor Authentication is Now Generally Available - Published: 2023-05-17 - Modified: 2023-05-17 - URL: https://petri.com/azure-ad-system-preferred-multifactor-authentication/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, MFA, News - Article Type: News Last year, Microsoft introduced the public preview of a system-preferred multifactor authentication (MFA) for Azure Active Directory (Azure AD). The company announced yesterday that the feature is now generally available for all commercial customers. What is system-preferred MFA authentication? With system-preferred authentication enabled, Azure AD evaluates all authentication methods registered for a user account, and selects the most secure option available for end users. As shown in the example below, the strongest authentication method is to approve a sign in request on Microsoft Authenticator. In this case, users won’t be able to select any other methods unless the app is unavailable. “This system prompts the user to sign in with the most secure method they’ve registered and the method that’s enabled by admin policy. This will transition users from choosing a default method to use first to always using the most secure method available. If they can’t use the method they were prompted to use they can choose a different MFA method to sign in,” Microsoft explained. Microsoft explained that the system-preferred MFA feature dynamically chooses the most secure method for user authentication. The company updates the method based on the changes in the "security landscape. " The order of precedence of MFA methods is listed below: Temporary Access Pass Certificate-based authentication FIDO2 security key Microsoft Authenticator push notifications Time-based one-time password (TOTP) Telephony Microsoft to enable system-preferred MFA by default in July At launch, system-preferred MFA is enabled by default for all Azure AD customers. The company recommends IT admins... --- ### Azure Firewall Adds New Logging and Metrics Features to Enhance Traffic Analysis - Published: 2023-05-17 - Modified: 2023-05-17 - URL: https://petri.com/azure-firewall-logging-metrics/ - Categories: Microsoft Azure - Tags: Azure Firewall, Microsoft Azure, News - Article Type: News Microsoft has announced new network traffic analysis capabilities for its Azure Firewall solution. The latest logging and metric improvements enable customers to view detailed insights about the traffic processed by the firewall. Azure Firewall is a cloud-based network firewall security solution that helps IT admins to protect cloud workloads running in Microsoft Azure. The service works as a bridge between the application server and end user to control traffic data and security policies. Azure Firewall provides various security capabilities to prevent attackers from gaining unauthorized access to cloud resources. Latency Probe Metric Powered by the Pingmesh technology, the Latency Probe metric tool lets administrators measure and analyze network interactions in large data centers. The feature doesn’t measure the end-to-end latency, and it can only track the average latency of Azure Firewall. “The Latency Probe metric measures the overall latency of Azure Firewall and provides insight into the health of the service. IT administrators can use this metric for monitoring and alerting if there is observable latency and diagnosing if Azure Firewall is causing latency in a network. If Azure Firewall is experiencing latency, it could be due to various reasons such as high CPU utilization, traffic throughput, or networking issues,” Microsoft explained. Flow Trace Logs Azure Firewall allows users to log different data types, including threat intelligence, application, and network. However, it doesn’t provide insights into the complete TCP handshake process. This release lets IT Pros first monitor the SYN packet network logs and then configure Flow Trace to detect... --- ### Azure Container Storage Now Available in Public Preview - Published: 2023-05-16 - Modified: 2023-05-16 - URL: https://petri.com/azure-container-storage-preview/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Microsoft has announced the release of its Azure Container Storage solution. The new cloud-based service enables organizations to create and manage block storage volumes for container applications and workloads. Previously, customers had to use individual container storage interface (CSI) drivers in order to offer cloud storage for containers. It caused various operational issues related to application availability, performance, cost, usability, and stability. “Azure Container Storage is a cloud-based volume management, deployment, and orchestration service built natively for containers. It integrates with Kubernetes, allowing customers to dynamically and automatically provision persistent volumes to store data for stateful applications running on Kubernetes clusters,” Microsoft explained. What are the benefits of Azure Container Storage? Microsoft has highlighted the following advantages of its Azure Container Storage service: Reduce total cost of ownership (TCO): Azure Container Storage lets customers increase the scale of persistent volumes supported per pod/node to enhance cost efficiency. Boost VM-to-container initiatives: With this release, Azure block storage offerings (such as ephemeral disk and Azure Elastic SAN) are now available for containers. Up until now, these features were only available for virtual machines (VMs). Streamline volume management with Kubernetes: Azure Container Storage lets IT admins use the Kubernetes control plane to deploy and manage volumes within Kubernetes. Getting started with Azure Container Storage Microsoft’s new Azure Container Storage service supports three block storage types, including Azure Elastic SAN, Azure Disks, and Ephemeral Disk. It’s up to the IT admins to select any block storage solution based on their specific performance and pricing... --- ### EU Launches Informal Antitrust Probe into Microsoft Azure Cloud Services - Published: 2023-05-16 - Modified: 2023-05-16 - URL: https://petri.com/eu-antitrust-probe-microsoft-azure/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News The European Union has opened an informal probe against Microsoft Azure cloud services. According to a report from Bloomberg, the antitrust watchdog is planning to investigate Microsoft over alleged anticompetitive behavior with Microsoft Azure. Specifically, the European Commission is soliciting feedback from Microsoft’s customers on whether or not to move to a deeper investigation. The regulators’ probe will look at if Microsoft was using confidential business information to gain an unfair advantage over rival cloud service providers. “Microsoft may be abusing its access to business-sensitive information belonging to cloud firms it has commercial dealings with, according to documents seen by Bloomberg. EU antitrust enforcers want to know whether Microsoft then leverages such confidential information to compete with cloud-service providers on the market, said two people familiar with the matter, who spoke on condition of anonymity,” Bloomberg wrote. The investigation follows complaints from several cloud vendors, including Cloud Infrastructure Services Providers in Europe (CISPE). It is important to note that Amazon Web Services is also a member of CISPE. The European not-for-profit trade association alleged that Microsoft abused its market dominance to move European customers to its Azure cloud infrastructure. The company had reportedly agreed to change its cloud computing practices to avoid an antitrust investigation in April 2023. “The market share of European cloud infrastructure providers has halved in the last 5 years even as the overall market has grown. Microsoft’s share of the same market has outperformed all other players who kept stable market shares, growing at the expense,... --- ### Microsoft Outlook Now Supports Improved Interoperability With Google Calendar > Google announced this week that Calendar Interoperability improvements are now available for users of Microsoft Outlook. - Published: 2023-05-16 - Modified: 2023-05-16 - URL: https://petri.com/outlook-google-calendar-interoperability-improvements/ - Categories: Outlook - Tags: Google Calendar, Outlook - Article Type: News Google announced this week that Calendar Interoperability improvements are now available for users of Microsoft Outlook. Calendar Interoperability is what allows Google Calendar and Microsoft Exchange to seamlessly work together, allowing users of both systems to share their schedules and view availability information. It used to be true that Outlook works best with Microsoft Exchange accounts, while Google Workspace users could get the best calendar experience using Google’s own apps. While Google certainly built a lot of unique Gmail features to simplify email management, Calendar Interoperability really helped to make Google Calendar play nice with Outlook. As of today, Calendar Interoperability needs to be configured by IT admins for a Google Workspace domain. It currently works with Microsoft Exchange 2023 or newer, as well as Outlook and other email clients that support Exchange Online.   Three recent improvements to Calendar Interoperability in Outlook First of all, people using the same email address with Google Calendar and Microsoft Outlook can now receive Google Calendar invitations and RSVPs within Outlook. It’s no longer necessary to switch apps to accept these invitations. Additionally, Outlook users will also receive meeting reminders when an event they’ve been invited to has been created in Google Calendar. Lastly, Google said that non-Google Calendar recurring events will now be “more systematically and accurately updated in Google Calendar. ”  These three improvements to Calendar Interoperability are available for all Google Workspace Customers, legacy G Suite Basic and Business customers, as well as users with personal Google accounts. Google noted that there is... --- ### Microsoft Teams Chats and Channels to Get an Improved Search Experience - Published: 2023-05-15 - Modified: 2023-05-15 - URL: https://petri.com/microsoft-teams-chats-channels-search-experience/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft Teams, News, Search - Article Type: News Microsoft has announced some improvements coming to the search experience in Microsoft Teams chats and channels. The company highlighted a new search pane on the sidebar to let users easily find messages, files, and URLs shared within a particular chat or channel. Currently, the Microsoft Teams desktop app provides a search bar located in the top navigation pane. Users can use the convenient Ctrl+F (Windows) or Cmd +F (Mac) shortcuts to activate it. The search results appear in a sidebar on the left side of the screen. However, it prevents users from viewing chats and channels, but that’s changing soon. Microsoft explained that the new search experience will allow Teams users to view search results alongside chats/channels. This feature will also work with pop-out chats in Microsoft Teams. “The new in-chat and in-channel Search experience will now be available in the right handrail, making it possible to see your chat/channel list and your new search results in one single view. The initiation can be done using the keyboard shortcut Ctrl+F(win) or Cmd +F (Mac),” Microsoft explained in a message on the Microsoft 365 admin center. Microsoft Teams to add a ‘Find in channel’ button Additionally, the Microsoft Teams channel info pane is getting a new “Find in Channel” button. The feature will let users initiate the contextual search which should make it easier to find relevant information in chats and channels. Microsoft will also add support for improved captioning and keyword highlighting to help users quickly scan search results. Microsoft... --- ### PSA: Microsoft to End Support for Windows 10 Version 21H2 in June - Published: 2023-05-15 - Modified: 2023-05-15 - URL: https://petri.com/microsoft-end-support-windows-10-version-21h2/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft is reminding customers that Windows 10 version 21H2 will reach end of support next month. The company updated its Windows Health Dashboard to indicate that Windows 10 Home, Pro, Pro Education, and Pro for Workstations editions will no longer receive updates after June 13, 2023. “The upcoming June 2023 security update, to be released on June 13, 2023, will be the last update available for this version. After this date, devices running this version will no longer receive monthly security and preview updates containing protections from the latest security threats,” Microsoft explained. Microsoft to start auto-upgrading Windows 10 21H2 PCs Microsoft will begin its process to automatically update users that are on Windows 10 version 21H2 to version 22H2. This change will apply to all consumer and non-managed enterprise PCs that have reached the end of servicing deadline. Meanwhile, Microsoft says that users with devices that meet the minimum hardware requirements can choose to upgrade to Windows 11 version 22H2. It was a minor upgrade released on September 20, 2022, and will remain supported until October 8, 2024. Windows 10 version 22H2 will be the final version of the OS Last month, Microsoft announced that Windows 10 version 22H2 will be the final version of the operating system. In other words, the company will no longer provide feature updates, but the OS will continue to receive security updates until October 14, 2025. Microsoft plans to support Windows 10 Enterprise LTSC 2021 and Windows 10 IoT Enterprise LTSC 2021 until... --- ### Google Announces Duet AI But Can It Compete with Microsoft 365 Copilot? - Published: 2023-05-12 - Modified: 2023-05-12 - URL: https://petri.com/google-announces-duet-ai-but-can-it-compete-with-microsoft-365-copilot/ - Categories: Productivity and Collaboration - Tags: artificial intelligence, Google Duet AI, Google Workspace, Microsoft 365, News - Article Type: Video Google shows off its competitor to Microsoft 365 Copilot, Duet AI, at its I/O conference this week. I look at what Google announced and what Microsoft also revealed about its own AI tech recently as it enters wider testing. More Google I/O news on Petri: Google Introduces Duet AI With Generative AI Features for Workspace Users Duet AI for Google Cloud Brings Code and Chat Assistance to Developers --- ### Azure AD Conditional Access Gets Token Protection for Sign-In Sessions in Preview - Published: 2023-05-12 - Modified: 2023-05-12 - URL: https://petri.com/azure-ad-conditional-access-token-protection/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News, Windows 10, Windows 11 - Article Type: News Microsoft has recently introduced Token Protection for sign-in sessions support for its Azure AD Conditional Access service. The new feature is designed to help organizations protect their critical resources against token theft. Last fall, Microsoft’s Detection and Response Team (DART) reported an increase in adversary-in-the-middle (AitM) phishing attacks to compromise organizational resources. This technique allows users to gain unauthorized access to sensitive data stored in user mailboxes, SharePoint Online sites, and other services without MFA. “Token Protection ensures that tokens can only be used on the intended device. When enforced through Conditional Access policies, tokens authorizing access to resources must come from the device where the user originally signed in. This provides the best available protection for your high-value users and data against breaches involving token theft,” Microsoft explained. Limitations Microsoft mentioned that the Token Protection for sign-in sessions feature will make it easier for IT admins to prevent, detect, and respond to cloud token theft. As of this writing, it only supports Office 365 apps, including SharePoint sites and Exchange mailboxes. Additionally, the feature allows users to block stolen Windows native client Refresh Tokens. Microsoft plans to bring this capability to other apps, data & token types, as well as client platforms in the future. The preview feature will also add support for Microsoft Teams and other services. Token Protection for sign-in sessions preview supports Windows 10 and Windows 11 Microsoft notes that Token Protection for sign-in sessions is currently available in preview on Windows 11 and Windows 10... --- ### SQL Server Essentials: Using SQL Self Joins > An SQL self join can be used for demonstrating relationships within a single SQL Server table database. Here's how and when to use an SQL self join. - Published: 2023-05-12 - Modified: 2023-05-15 - URL: https://petri.com/sql-self-join/ - Categories: SQL Server A self join in SQL Server is a useful statement to use for demonstrating relationships within a single SQL Server table database. In this tutorial, I'll show you when and how to use an SQL self join. To do that, I'll be detailing an sql self join example where I'll list the supervisors for all employees in the Northwind Employees sample table.   What is the SQL self join for? The self join is a special and somewhat uncommon type of SQL join. While most joins like the INNER JOIN link two or more different tables by their common columns, a self join links a table to itself. Unlike regular join operations, the same table is used as both the left and right tables in the join operation. For example, you might use a self join to find all employees who have the same manager. Here you might match a manager's ID with an employee id. Alternatively, you could use a self join to find all of customers who have orders for the same products. SQL self join example The following query shows an example of the SQL code for a self join using the Northwind sample database. The table name is 'Employees' and as you might guess, it contains employee data. USE Northwind SELECT e1. EmployeeID, e1. FirstName, e1. LastName, e1. ReportsTo,     e2. FirstName as ManagerFirstName, e2. LastName as ManagerLastName FROM Employees e1 LEFT OUTER JOIN Employees e2 on e1. ReportsTo = e2. EmployeeID This SQL self join example will show the names of the supervisors... --- ### Microsoft Delivers Another Fix to Patch Outlook Privilege Escalation Vulnerability - Published: 2023-05-12 - Modified: 2023-05-12 - URL: https://petri.com/microsoft-outlook-privilege-escalation-vulnerability/ - Categories: Outlook - Tags: News, Outlook for Windows, Security - Article Type: News Microsoft has released a security update to address a critical Outlook vulnerability that affects all versions of Windows. The new security flaw (CVE-2023-29324) allowed threat actors to bypass patches for the original Outlook bug that was already patched in March 2023. Microsoft disclosed the privilege escalation flaw (CVE-2023-23397) in Outlook for Windows back in March. It enables attackers to send a malicious email to a vulnerable Outlook version to steal the NTLM password hash. The threat actors could use the hash to authenticate as the user and launch NTLM relay attacks. Microsoft has confirmed that Russian APT28 state hackers exploited CVE-2023-23397 to target around 14 organizations from mid-April to December 2022. The hackers specifically launched attacks on the government, military, energy, and transportation sectors. On March 14, Microsoft released a bunch of security patches to address the vulnerability in Outlook 2016 and Outlook 2013. The company also released a PowerShell script to help IT admins track and fix suspicious items in on-premises and cloud environments. Researchers bypass Outlook privilege escalation flaw mitigation Interestingly, Akamai security researcher Ben Barnea has found another issue in a related Internet Explorer component. It allowed the researcher to bypass the March 2023 patch and trigger the Outlook for Windows client to connect to the attacker-controlled server. "Our research indicates that the new vulnerability allows exploitation of a critical vulnerability that has been observed in the wild and exploited by APT (Advanced Persistent Threat) operators. We continue to believe that our discovery is of great consequence... . --- ### New Memory Integrity Scan Tool Lets Users Check for Compatibility Issues on Windows PCs - Published: 2023-05-11 - Modified: 2024-11-19 - URL: https://petri.com/memory-integrity-scan-tool-windows/ - Categories: Windows 10, Windows 11, Windows Server - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has recently released a new tool that enables Windows users to detect compatibility issues with memory integrity (also known as hypervisor-protected code integrity (HVCI)). The memory integrity scan tool is available to download on Windows 10, Windows 11, and Windows Server machines. What is memory integrity? Memory integrity is a built-in feature that helps to protect Windows 11 users against cyber attacks that target high-security processes. It uses virtualization-based security to make it harder for malicious code to access critical parts of the operating system. The feature provides an additional layer of security against sophisticated cyberattacks, including driver exploitation, kernel data modification, and code injection. Microsoft has enabled memory integrity by default on all new Windows 11 machines. It’s designed to ensure that all drivers installed on a computer are safe to use. However, the company warned that some virtualization features could impact gaming performance or trigger other problems on Windows 11 PCs. How to download the memory integrity scan tool on Windows 10 and 11 Microsoft notes that users can download the memory integrity scan tool from Microsoft’s official download center website. It supports Windows 11, Windows 10, Windows Server 2022, Windows Server 2019, and Windows Server 2016. Microsoft has released two separate versions of its memory integrity scan tool for Windows devices with ARM and AMD processes. The company recommends running the hvciscan. exe file with administrative privileges or via PowerShell commands. Last week, Microsoft released a new feature that allows IT admins to get notifications about issues... --- ### Google Cloud Launches New A3 Supercomputers to Train Large AI Models - Published: 2023-05-11 - Modified: 2023-05-11 - URL: https://petri.com/google-cloud-a3-supercomputers/ - Categories: Google Cloud Platform - Tags: Google Cloud Platform, machine learning, News, Supercomputer - Article Type: News Google announced the launch of its new A3 supercomputer virtual machines at Google I/O 2023. The company explained that the new offerings are designed to cater to the needs of the resource-intensive Large Language Models (LLMs). Google explained that its A3 supercomputer virtual machines (VMs) are powered by Nvidia’s H100 GPUs built on the Hopper architecture. Each machine will offer 2TB of RAM and 3. 6 TB/s bisectional bandwidth across the GPUs through NVLink 4. 0 and NVSwitch. The A3 virtual machines also integrate with fourth-generation Intel Xeon Scalable processors to manage administrative tasks. “Google Cloud's A3 VMs, powered by next-generation NVIDIA H100 GPUs, will accelerate training and serving of generative AI applications,” said Ian Buck, vice president of hyperscale and high performance computing at NVIDIA. “On the heels of Google Cloud’s recently launched G2 instances, we're proud to continue our work with Google Cloud to help transform enterprises around the world with purpose-built AI infrastructure. ” Google's A3 supercomputers are built to boost performance According to Google, the new A3 supercomputers can deliver up to 26 exaFlops of power. It should help to reduce the time and cost required to train machine learning models. It’s the first production-level deployment of its GPU-to-GPU interface that lets users share data at 200 Gbps. Google claims that the data transfer between the CPUs should be 10 times faster compared to A2 VMs. Google says that customers who are interested to use A3 virtual machines will need to sign up for a preview waitlist. The company... --- ### Duet AI for Google Cloud Brings Code and Chat Assistance to Developers > With Duet AI for Google Cloud, Google gives developers an always-on AI assistant that can provide code suggestions and more. - Published: 2023-05-11 - Modified: 2023-05-11 - URL: https://petri.com/duet-ai-for-google-cloud-code-assistance/ - Categories: Google Cloud Platform - Tags: artificial intelligence, Duet AI, Google, Google Cloud Platform - Article Type: News Google kicked off its annual I/O developer conference yesterday by showing it was very serious about catching up to competitors in the AI space. Duet AI is the new name of Google’s generative AI efforts, and the company detailed yesterday what to expect from Duet AI in Google Workspace, as well as Duet AI for Google Cloud.   Just like Microsoft is preparing to roll out its Microsoft 365 Copilot across many of its cloud services, Google also wants Duet AI to become the AI-powered collaborator GPC customers rely on every day. And the company certainly needs its Google Cloud Platform to become easier to use if it wants to better compete with AWS and Microsoft Azure.   “Powered by Google's state-of-the-art generative-AI foundation models, Duet AI for Google Cloud is an always-on AI collaborator that provides help to users of all skill levels where they need it. With Duet AI, we’re on a mission to deliver a new cloud experience that’s personalized and intent-driven, and can deeply understand your environment to assist you in building secure, scalable applications, while providing expert guidance,” Google said yesterday.   What can you do with Duet AI for Google Cloud? Google introduced yesterday a couple of AI-powered features that are now available in limited preview for Google Cloud customers. For now, the company is focusing on improving developer workloads with AI assistance.   Here are the main features provided by Duet AI for Google Cloud today: Code assistance: Developers and data engineers working with the Google Cloud can... --- ### Google Introduces Duet AI With Generative AI Features for Workspace Users - Published: 2023-05-11 - Modified: 2023-05-12 - URL: https://petri.com/google-workspace-duet-ai/ - Categories: Google Cloud Platform - Tags: Duet AI, Google, Google Workspace, News - Article Type: News Google has announced major updates for its Google Workspace suite of apps at the annual I/O conference. Dubbed Duet AI for Google Workspace, the new generative AI tools are coming to Google Docs, Sheets, and Slides apps. “Duet AI already works behind the scenes in Workspace to help you write — whether it’s refining existing work or helping you get started in both Gmail and Docs. Now we’re bringing this experience to Gmail mobile — imagine being on your phone and having the ability to draft complete responses with just a few words as a prompt,” said Aparna Pappu, GM and Vice President of Google Workspace. Google Slides In Google Slides, the new Duet AI will allow users to create original images from text-based prompts. Users will be able to enter the text prompts in the “Help me visualize” side panel. Moreover, users can choose between various styles, such as none, illustration, photography, background, clip art, and flat lay. Google Docs Later this month, Google Docs users will be able to use Duet AI to create documents with natural language prompts. They can summon the AI assistant to proofread entire documents and provide contextual suggestions. The proofreading capabilities will begin rolling out to Google Workspace commercial users in the next few months. Google Sheets With Duet AI, Google Sheets users can use the “Help me organize” field to automatically create tables in the spreadsheet software. For instance, users can provide a roaster of customers and then generate a spreadsheet. The... --- ### Microsoft Entra Boosts Security New Tools and Capabilities to Thwart Cyberattacks - Published: 2023-05-10 - Modified: 2023-05-10 - URL: https://petri.com/microsoft-entra-updates-cyberattacks/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, Microsoft Entra, News, Security - Article Type: News Microsoft has recently released several new security tools and features for its Microsoft Entra product family. These updates are designed to help organizations improve their security posture and protect against sophisticated cyber-attacks. “With the ever-increasing sophistication of cyber-attacks and the increasing use of cloud-based services and the proliferation of mobile devices, it is essential that organizations have effective tools in place to manage their scope of security,” Microsoft explained. “With these new features, Microsoft is aiming to provide their customers with a comprehensive security solution that covers all aspects of their organization's security needs. ” Microsoft has released a new Azure Active Directory (Azure AD) recommendations feature that helps to monitor and optimize Azure AD deployments. It enables IT admins to analyze usage data and resource configurations to improve the security, reliability, and performance of their Azure resources. Additionally, Microsoft released a new feature that provides granular device management capabilities with custom roles in Azure Active Directory. This update allows IT admins to enable/disable devices, delete devices, read BitLocker recovery key/metadata/device registration policies, and update device registration policies. Microsoft Authenticator gets passwordless sign-in on iOS devices Microsoft Authenticator now allows users to enable passwordless phone sign-in for multiple accounts on all supported iOS devices. However, the new passwordless phone sign-in experience doesn’t support guest accounts. Last but not least, Microsoft announced that IT admins can now use cloud settings to enableAzure AD B2B collaboration. This capability is available for Azure commercial cloud and government customers worldwide. Overall, the addition of new... --- ### What Is a Home Lab and Do You Need One? > If you're wondering what is a home lab this article explains what you need to set one up and how it can help you to progress throughout your IT pro career. - Published: 2023-05-10 - Modified: 2023-05-10 - URL: https://petri.com/what-is-a-home-lab/ - Categories: Career Skills - Tags: Hyper-V, Virtualization, Windows, Windows Server - Article Type: Opinion Having a 'home lab' as an IT pro offers multiple methods to add value and efficiency to your job duties and responsibilities. In this article, I'll look at what is a home lab, what you need to set one up, and how it can help you to progress throughout your IT pro career. What is a home lab? A home lab is one or more physical or virtual computers that are isolated from your organization's production systems. In an isolated environment, you can safely install software and experiment with different configurations. A home lab isn't a replacement for a proper pre-production testing environment at work. Pre-production systems are used for formal testing of changes proposed for production environments. They should accurately mirror the configuration of production environments so that the impact of any changes you propose to make can be properly assessed. Why you need a home computer lab Using an isolated but live environment, you can test Windows feature updates and see what happens when you install an add-on to a Microsoft 365 app. You can even run a pilot to convert file shares to Microsoft 365 – all while taking snapshots and checkpoints along the way. With a home lab, you can quickly and easily revert a change if something goes awry. In this article, I will also explain how Hyper-V can assist you and offer you other virtual environment options. You don't necessarily need to spend a lot of money on your home lab. Getting started... --- ### Microsoft Releases Updates to Fix Secure Boot Flaw on Windows 10/11 and Windows Server - Published: 2023-05-10 - Modified: 2023-05-10 - URL: https://petri.com/microsoft-fix-secure-boot-flaw-windows/ - Categories: Windows 10, Windows 11, Windows Server - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released new security patches to address the BlackLotus UEFI security flaw in all supported versions of Windows 11 and 10 as well as Windows Server. The vulnerability (CVE-2023-24932) could enable threat actors to bypass Secure Boot and other advanced protections on fully updated Windows machines. The Secure Boot feature allows users to prevent Windows devices from running unauthorized programs and applications. BlackLotus is a stealthy malware that abuses the CVE-2022-21894 flaw to bypass Secure Boot and establish persistence. It lets attackers disable the built-in security mechanisms (such as Windows Defender and BitLocker encryption) on the victim’s system. “This vulnerability allows an attacker to execute self-signed code at the Unified Extensible Firmware Interface (UEFI) level while Secure Boot is enabled. This is used by threat actors primarily as a persistence and defense evasion mechanism. Successful exploitation relies on the attacker having physical access or local admin privileges on the targeted device,” Microsoft explained. Microsoft provides deployment guidelines to fix the BlackLotus flaw Currently, the Secure Boot bug fix is disabled by default on Windows 11, Windows 10, and Windows Server machines. Microsoft has detailed a couple of steps to manually install the updates on Windows PCs. First of all, users will need to install the May Patch Tuesday updates on all supported versions of Windows and reboot their machines. They will need to ensure that the bootable media is updated with the security patches rolled out on or after May 9, 2023. Finally, users will need to apply Windows... --- ### Webinar: Learn How to Keep Critical Web Apps Online and Sensitive Data Secure - Published: 2023-05-09 - Modified: 2023-05-09 - URL: https://petri.com/keep-web-apps-online-data-secure/ - Categories: Security - Tags: AlertLogic, NoAD, NoAds, Security, Web Application Firewall, Web Apps, webinar - Article Type: Overview Do you know your WAF from your WAAP? Or your RASP from your WAF? This week, Petri is hosting a webinar with Fortra, which looks at how to protect your web apps from advanced web attacks. Join myself and Fortra’s Josh Davies, an experienced senior security analyst, who will explain some advanced techniques attackers use to hack web apps, how a Web Application Firewall (WAF) can actively block attacks, and the level of protection different technologies, like WAF, WAAP, and RASP, bring to the table.     Attacks are increasing and becoming more sophisticated, especially as A. I. goes mainstream. And vulnerabilities can go unpatched as testing is carried out or zero-days wait for a fix. Learn how to secure your organization’s apps and data and keep critical line of business apps online by blocking advanced web attacks in this 1-hour webinar. Defending apps against advanced web attacks is critical for ensuring the availability of critical line-of-business apps, protecting your wider network against ransomware, securing sensitive data, maintaining user trust, and for meeting regulatory compliance standards. Josh will also look at how you can quickly cut through the noise generated by WAFs, saving you time and improving security simultaneously. During this webinar you will learn: how advanced attack techniques work through real-world examples the difference between WAF, WAAP, and RASP the key features of WAFs how to save time by optimizing WAFs to filter out false-positive alerts Get one step ahead of attackers and register now for "Blocking Advanced Web Attacks... --- ### Microsoft Releases May 2023 Patch Tuesday Updates for Windows 11 and Windows 10 > The May 2023 Patch Tuesday updates for Windows 11 and Windows 10 fix 38 vulnerabilities, and Microsoft also addressed Windows LAPS interoperability issues. - Published: 2023-05-09 - Modified: 2024-11-19 - URL: https://petri.com/may-2023-patch-tuesday-updates-windows-11-10/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has just released the May 2023 Patch Tuesday updates for Windows 11 and Windows 10.   This month, Microsoft fixed a total of 38 security flaws in Windows and other components, and there are seven critical vulnerabilities in the list.   On the quality and experience updates front, Microsoft has fixed an interoperability issue between the new Windows Local Administrator Password Solution (LAPS) and legacy LAPS policies. On Windows 11 version 22H2, this update also introduces a new setting for receiving the latest non-security updates as soon as they’re available. Let’s take a look at the most important vulnerabilities Microsoft fixed in the May 2023 Patch Tuesday updates.   38 vulnerabilities fixed in the May 2023 Patch Tuesday updates This month, Microsoft has patched seven critical vulnerabilities, including a Windows OLE remote code execution vulnerability that has already been disclosed to the public. There’s also one Win32k elevation of privilege vulnerability labeled “important” that is already being exploited by attackers.   According to the Zero Day Initiative, this total of 38 patches is the lowest amount of fixes Microsoft released on Patch Tuesday since August 2021. Anyway, here are the main vulnerabilities you should know about:  ProductImpactMax SeverityArticleDownloadDetailsMicrosoft SharePoint Server Subscription EditionSpoofingImportant5002390Security UpdateCVE-2023-24950Microsoft SharePoint Server 2019SpoofingImportant5002389Security UpdateCVE-2023-24950Microsoft SharePoint Enterprise Server 2016SpoofingImportant5002397Security UpdateCVE-2023-24950Windows 10 Version 22H2 for 32-bit SystemsElevation of PrivilegeImportant5026361Security UpdateCVE-2023-24949Windows 11 Version 22H2 for x64-based SystemsElevation of PrivilegeImportant5026372Security UpdateCVE-2023-24949Windows 11 version 21H2 for ARM64-based SystemsElevation of PrivilegeImportant5026368Security UpdateCVE-2023-24949Windows Server 2022 (Server Core installation)Elevation of PrivilegeImportant5026370Security UpdateCVE-2023-24949Windows Server 2022 (Server Core installation)Elevation... --- ### AWS User Notifications Service Lets IT Admins View Notifications from Over 100 AWS Services - Published: 2023-05-09 - Modified: 2023-05-09 - URL: https://petri.com/aws-user-notifications-service/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, News - Article Type: News Amazon has announced that AWS User notifications support is now generally available for enterprise customers. The new feature enables IT Pros to create actionable push notifications across AWS services, accounts, and regions. With AWS User notifications, IT admins can centrally manage and view notifications from more than 100 AWS services. These include AWS Health Dashboard events, Amazon CloudWatch alarms, AWS Support case updates, Amazon Simple Storage Service (Amazon S3) objects events, and Amazon Elastic Compute Cloud (Amazon EC2) instance state changes. It’s also possible to select chat, email, push notifications, and other delivery channels. “You can now use AWS User Notifications to create actionable push notifications from AWS services, such as CloudWatch, to be delivered to your mobile device when a resource requires your attention. You can then receive push notifications, and learn more about events while on-the-go without needing to return to your computer,” Amazon explained. Moreover, Amazon notes that mobile users can access relevant details about notifications from their lock screens. To do so, they will need to tap the notification and complete the authentication process to view the information within the app. Getting started with AWS User Notifications To turn on AWS user notifications, users will need to head over to the Notifications Center by clicking the bell icon available on the Console header. Then, navigate to the Notifications Configurations page, set up configurations for specific events, notifications frequency, and channels. Users can choose to receive notifications either immediately, within 10 mins, or within 12 hours. The... --- ### Microsoft to Throttle Email Connections From Outdated Exchange Servers - Published: 2023-05-09 - Modified: 2023-05-09 - URL: https://petri.com/microsoft-throttle-email-exchange-servers/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Microsoft has detailed its plans to protect organizations against persistently vulnerable Exchange Servers. Starting on May 10, the company is introducing a new transport-based enforcement system that will block email traffic from unpatched or out-of-support Exchange Server instances. Microsoft explained that it will implement the new transport-based enforcement system in eight stages. The service will first detect email flow from an unpatched server, and then send a report to the Exchange Admin Center portal. There will be a delay in email traffic for vulnerable Exchange Servers that haven't been patched for 30 days. Microsoft will eventually block emails in case there has been no remediation within 60 days. “The system is designed to alert an admin about unsupported or unpatched Exchange servers in their on-premises environment that need remediation (upgrading or patching). The system also has throttling and blocking capabilities, so if a server is not remediated, mail flow from that server will be throttled (delayed) and eventually blocked,” the Exchange team explained. Microsoft first plans to roll out the new transport-based enforcement system to customers still using Exchange Server 2007. The company will send a 30 days notice before the change is implemented in enterprise environments. Going forwards, Microsoft will likely introduce the blocking mechanism in other Exchange Server versions, including Exchange 2016 and Exchange 2019. Exchange Server email throttling to safeguard customers against malicious messages Microsoft has clarified that its new transport-based enforcement system is intended to safeguard organizations against malicious messages originating from outdated Exchange Servers. The... --- ### Microsoft’s Work Trend Index Highlights Growing Need to Adapt to AI-Driven Work Landscape - Published: 2023-05-09 - Modified: 2023-05-09 - URL: https://petri.com/microsofts-work-trend-index-report-ai/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft 365 Copilot, News - Article Type: News Microsoft has released its latest Work Trend Index report, which highlights data and insights about how work is changing in this new era of artificial intelligence (AI). The research study was published in conjunction with the latest updates to its Microsoft 365 Copilot tool. The report, “Will AI Fix Work? ,” is based on data collected from 31,00 people across 31 different countries. Specifically, Microsoft analyzed labor trends from the LinkedIn Economic Graph along with trillions of aggregated Microsoft 365 productivity signals. The data collected points to three important steps business leaders should take to quickly and responsibly adopt AI. 1. Digital debt hinders creativity & innovation Microsoft’s research defines digital debit as the continuous influx of emails, notifications, meetings, and data. Microsoft’s Work Trend Index report suggests that around 64 percent of employees experienced problems in managing work tasks due to the lack of adequate energy and time. Additionally, these people are 3. 5 percent more likely to report insufficient critical thinking and innovation. Microsoft says that around 60 percent of business leaders have expressed concern about the lack of innovation within their organizations. The research found that workers spend 43 percent of their time creating documents, presentations, and spreadsheets. And 57 percent is now devoted to chat, meetings, and email-based communications. The data shows that the amount of time spent in Microsoft Teams meetings and calls has risen by 192 percent since February 2020. Microsoft’s findings clearly demonstrate that organizations need to take steps to make meetings more productive for... --- ### Microsoft 365 Copilot Early Access Program Now Available - Published: 2023-05-09 - Modified: 2024-02-06 - URL: https://petri.com/microsoft-365-copilot-early-access-program/ - Categories: Microsoft 365 - Tags: artificial intelligence, ChatGPT, Microsoft 365, Microsoft 365 Copilot, News - Article Type: News Microsoft announced today the launch of its Microsoft 365 Copilot Early Access Program, which is an invitation-only paid preview of the ChatGPT-based AI features it announced for Microsoft 365 apps and services in March this year. The program will be available to 600 customers worldwide. Microsoft 365 Copilot Early Access Program expands on initial trial of AI technology In a blog post, Microsoft said they have been testing Copilot with 20 enterprise customers, learning from their feedback, and are now ready to test the technology with a wider audience. Guy Moore, Workforce Enablement Lead at Chevron, said: “The potential of Microsoft 365 Copilot is undeniable, and it’s energizing to explore the possibilities as we couple the ingenuity of our people with the functionality of the tool. Early access has given us visibility into how it can further streamline processes, speed insights, spark ideas, enhance productivity and evolve the way we work. We’re proud to team with Microsoft as we continue to achieve new levels of innovation and advance the future of energy. ” Microsoft adds that feedback from the initial 20 customers shows that AI integration is a potential gamechanger for meetings and the way people create. Semantic Index for Microsoft 365 Copilot For Microsoft 365 E3 and E5 customers, there will be a new feature called the Semantic Index for Copilot. The index is a complex map of your tenant’s user and company data. Semantic Index for Copilot in Teams will be for E3 and E5 customers and was announced... --- ### Microsoft Lists Gets Big Update with Performance Improvements and Other New Features - Published: 2023-05-08 - Modified: 2023-05-08 - URL: https://petri.com/microsoft-lists-performance-improvements/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Lists, News - Article Type: News Microsoft has recently released a major update for its Microsoft Lists app. The company detailed that the latest update brings several new capabilities and performance optimizations for Microsoft List users. Under the hood, Microsoft has made various enhancements to make the Lists app twice as fast as before. Users should now notice faster loading times, better responsiveness, and smoother scrolling while using the app. “We’ve supercharged Lists in the browser, in the PWA, and inside Teams to load in half the time. Whether you’re driving Lamborghinis or Lists, performance is the ultimate feature. So if you stop reading here, and don’t change a thing about how you work with Lists, you’re still going to enjoy a summer of lightning-fast views, forms, and fields,” the company explained. Additionally, Microsoft unveiled a set of UI and UX optimizations to make Lists more consistent with other Microsoft 365 apps. Microsoft Lists now features a modern and cleaner look to improve the usability and accessibility of the app. The company has introduced support for different views, filtering and sorting options, as well as conditional formatting and rules. Calendar view improvements Microsoft Lists Calendar view is getting a new top-requested week layout feature. This means that users can now choose between the month and week views to visualize list information. The new week layout enables users to get a more detailed view of tasks that are scheduled for the week. Microsoft Lists to get a new forms experience Microsoft has released a new forms experience... --- ### Azure Stack HCI Deployment: Choosing Between Large Clusters vs. Smaller Specialized Clusters > To make an Azure Stack HCI deployment successful, you need to consider the initial investments and maintenance costs required for large clusters vs. smaller clusters. - Published: 2023-05-08 - Modified: 2024-10-07 - URL: https://petri.com/azure-stack-hci-deployment-clusters/ - Categories: Azure, Azure Stack HCI - Tags: Azure, Azure Stack HCI When planning for an Azure Stack HCI environment, many organizations may struggle to decide if they should go for a large Azure Stack HCI cluster or plan for smaller, use-case-specific clusters. Today, I would like to detail the ups and downs of both solutions. To do that, I’ll be discussing the required initial investments, maintenance costs, workload-specific needs, and more for large clusters vs. small specialized clusters. Azure Stack HCI deployment: Initial investments If you decide to invest resources in an Azure Stack HCI environment, a large cluster can often make more sense from an investment point of view. You normally plan for a stamp – a group of servers within a cluster – that has a specified number of active nodes plus one or two nodes for redundancy and maintenance purposes. If you start with a big stamp, the initial investment can be lower due to the smaller required number of cluster nodes. In the table below, you can see that a large cluster can be created with just one unified cluster with 12 nodes plus two additional ones for redundancy and maintenance purposes. Cluster deploymentLarge ClusterSmaller ClustersUnified Cluster12 + 2 nodes4 + 1 nodesDatabase cluster 2 + 1 nodesStretched cluster 4 nodesTest Cluster 2 + 1 nodesTotal number of nodes14 Nodes15 nodes If you chose to deploy smaller specialized clusters, however, the initial number of nodes is superior because we have 4 different clusters. If you need to use more clusters, you'll also need more nodes for redundancy purposes. If you... --- ### Microsoft Authenticator Enables Number Matching By Default to Block MFA Fatigue Attacks - Published: 2023-05-08 - Modified: 2023-05-08 - URL: https://petri.com/microsoft-authenticator-number-matching-feature/ - Categories: Authenticator - Tags: Microsoft Authenticator, News, Security - Article Type: News Last year, Microsoft released support for number matching in push notifications for its Microsoft Authenticator app. Starting today, the number matching feature will become the default experience for all Authenticator users worldwide. Microsoft’s Authenticator app’s number matching feature requires users to type the number displayed on the sign-in screen to approve access requests. It helps to counter Multi-Factor Authentication (MFA) fatigue attacks that rely on push notification spam. MFA fatigue attacks occur when a threat actor spams the victim with MFA push notifications. It’s a social engineering tactic that is used to gain unauthorized access to a corporate network. With this release, Microsoft will enable the number matching feature for all supported cloud services. Users will also see additional context (such as the app’s name and the login location) to prevent accidental approvals. “Number matching is a key security upgrade to traditional second factor notifications in Microsoft Authenticator. We will remove the admin controls and enforce the number match experience tenant-wide for all users of Microsoft Authenticator push notifications starting May 8, 2023,” Microsoft explained. Microsoft suggests users to upgrade to the latest version of Microsoft Authenticator on their mobile devices. However, the authentication process will fail for users running older versions of the app that lack support for number matching. Microsoft Authenticator number matching won’t be available for Apple Watch users According to Microsoft, the number matching security protection will also be required for Self Service Password Reset (SSPR) and combined registration flows. The AD FS adapter will also... --- ### Microsoft Brings Modern Authentication Support to Exchange Server 2019 - Published: 2023-05-05 - Modified: 2023-05-05 - URL: https://petri.com/microsoft-modern-authentication-exchange-server-2019/ - Categories: Exchange Server - Tags: Exchange Server 2019, News - Article Type: News Microsoft has announced the release of its new cumulative update (CU13) for Exchange Server 2019. The latest update brings modern authentication support to Outlook for Windows in Exchange Server 2019 and addresses around 200 bugs. Specifically, the 2023 H1 cumulative update adds support for modern authentication to on-premises Exchange Server 2019 environments. The security feature uses ADFS to issue and manage the OAuth 2. 0 tokens. It lets organizations use stronger authentication mechanisms such as certificate-based authentication, smart cards, MFA, and third-party identity solutions. “When Modern auth is enabled for a user, their Outlook client is redirected to ADFS. Users can then authenticate by providing credentials or performing multi-factor authentication. Once ADFS authenticates a user, it generates access tokens. These access tokens are validated by Exchange Server to provide client access to the user’s mailbox," the Exchange team explained. Source: Microsoft Modern authentication support coming to other Outlook clients in Exchange Server 2019 Additionally, Microsoft explained that IT admins can now configure authentication policies to allow or block modern authentication for user accounts. The company says that administrators can use PowerShell commands to manage authentication policies. As of this writing, modern authentication support is only available for Outlook for Windows (version 16327. 20200 or later). The company plans to bring this capability to Outlook for macOS, the Outlook mobile apps, and other clients later this year. Going forwards, Microsoft may opt to make modern authentication the default setting and gradually phase out basic authentication from on-premises servers. The company has already implemented... --- ### What’s New in Windows – April 2023 - Published: 2023-05-05 - Modified: 2023-05-05 - URL: https://petri.com/whats-new-windows-april-2023/ - Categories: Windows 11 - Tags: HoloLens, Microsoft Edge, News, Windows 10, Windows 11, Windows Insider Program - Article Type: News This month, Windows is getting memory safe Rust code in the kernel, Microsoft announces Windows 11 LTSC edition to launch late 2024, Windows 12 could be getting a special edition to support Arm and A. I. features, plus lots of updates for Insider Program builds. Windows gets support for Rust in the Windows kernel At the BlueHat security conference in Israel last month, Microsoft Vice President David Weston announced that some parts of the Windows kernel would be rewritten in Rust. Rust is a memory safe language that delivers improved security while maintaining the performance of C and C++. Weston said that we will see Windows booting with Rust in the kernel in the coming weeks and months. It wasn’t clear whether he was referring to Insider builds or the stable channel. Microsoft has written 36,000 lines of Rust code in the Windows kernel to date. Weston says that there is a system call in the kernel written in Rust, which allows apps to interact with Kernel level functions. The DirectWrite Core library has already been recoded with 152,000 lines of Rust as a proof of concept. And it is available today in the Windows App SDK. We can also expect some Rust work on Windows GDI components in the near future. Despite these changes, Weston noted that Microsoft isn’t planning to rewrite Windows in its entirety. Check out Windows 11 Gets Rusty in the Name of Security for more details about updates to the Windows 11 kernel. Microsoft is... --- ### Microsoft Launches Azure AD Certificate-Based Authentication (CBA) on Mobile Devices - Published: 2023-05-05 - Modified: 2023-05-05 - URL: https://petri.com/azure-ad-certificate-based-authentication-mobile/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News, Security - Article Type: News Last year, Microsoft released a public preview of Azure Active Directory certificate-based authentication (CBA) on mobile. The company announced yesterday that Azure AD CBA support is now generally available on iOS and Android devices. The new security solution allows IT admins to provision certificates with a hardware security key for authentication on mobile devices. The company explained that its FIPS Federal Information Processing Standards)-certified helps to protect users against phishing attacks. “We support both on-device certificates and external hardware security keys, like YubiKeys over USB or NFC on iOS and Android devices. With Bring Your Own Device (BYOD) on the rise, this feature will give you the ability to require phishing-resistant multi-factor authentication (MFA) on mobile without having to provision certificates on the user’s mobile device,” explained Vimala Ranganathan, Product Manager for Microsoft Entra. According to Microsoft, Android users can leverage the latest MSAL support to enable Azure AD CBA support on their mobile devices. They can use the USB to plug in their YubiKey, select a certificate and, enter the PIN to access the app. How the Azure AD certificate-based authentication (CBA) feature works? On iOS, users will first need to register through the Yubico Authenticator app. Then, they can copy YubiKey's public certificate into the iOS keychain. Finally, iOS users can choose the YubiKey certificate for authentication and enter a unique PIN code. Azure AD CBA on iOS mobile with YubiKey  Microsoft’s Azure Azure AD CBA feature should help to prevent credential theft via social engineering or phishing attacks... --- ### How to Add Microsoft Store Apps to Intune > Here's how the recent Microsoft Store repository integration in Intune works and how to add Microsoft Store apps to Intune. - Published: 2023-05-05 - Modified: 2023-05-05 - URL: https://petri.com/add-microsoft-store-apps-to-intune/ - Categories: Endpoint Management, Windows 10, Windows 11, Windows Client OS - Tags: intune, Microsoft Endpoint Manager, Microsoft Intune, Windows, Windows 10, Windows 11, WinGet - Article Type: How To Microsoft has recently unveiled the Intune Microsoft Store repository integration, which is intended to replace the current Microsoft Store for Business integration with Intune and provide a more consumer-like experience for employees. Microsoft has also released the WinGet Windows Package Manager, which allows IT pros to manage apps and updates through the Microsoft Store repository integration. In this article, I will explain how the Intune integration with the Microsoft Store works and how to add Microsoft Store apps to Intune. What is the Intune integration with the Microsoft Store? This Intune integration with the Microsoft Store was announced in conjunction with the retirement of the Microsoft Store for Business and Education, which was scheduled to occur on March 31, 2023. However, Microsoft recently updated their announcement post to announce that the retirement of the Microsoft Store for Business will occur in several stages ending on September 15, 2023. The Microsoft Store repository integration is expected to offer a number of improvements over the current Microsoft Store for Business integration such as enhanced app deployment, better update controls, and the ability to easily install and uninstall apps. In the current Microsoft Store for Business integration, apps must be manually synced in order to be made available in Intune, and there is no native update control for store apps. The Microsoft Store repository integration, on the other hand, will automatically make new apps available and offer more control over app update deployments from Intune, as well as custom install and uninstall... --- ### Google Adds Support for Passkeys to Protect Google Accounts - Published: 2023-05-04 - Modified: 2023-05-04 - URL: https://petri.com/google-support-passkeys-google-accounts/ - Categories: Security - Tags: Google, News, Passkeys - Article Type: News Google has started rolling out its passkey technology to Google accounts across all platforms. The feature allows users to log into any of their accounts with passkeys instead of passphrases and multifactor authentication (MFA). A passkey is an authentication feature that enables users to securely access apps and services. It’s designed to let users authenticate through a facial or fingerprint ID or PIN on computers or phones. Passkeys rely on a robust security mechanism that links login credentials to their device. Previously, Google allowed users to utilize passkeys as a part of the two-factor authentication process for their accounts. The latest update enables users to use passkeys to sign into Google websites. Currently, passkeys work alongside other authentication mechanisms, such as hardware security keys and passwords. Why Google accounts should be protected with passkeys? Unlike passwords, passkeys bring several security benefits to secure Google accounts. The feature helps to protect devices against brute force attacks, phishing campaigns, and other security threats. Moreover, it’s a convenient authentication method that eliminates the need to remember passwords. The passkeys are stored locally on the device, which ensures that the data is not shared with Google or any other third-party entities. "Passkeys are still new and it will take some time before they work everywhere. However, creating a passkey today still comes with security benefits as it allows us to pay closer attention to the sign-ins that fall back to passwords. Over time, we'll increasingly scrutinize these as passkeys gain broader support and familiarity,"... --- ### Microsoft Now Provides Email Alerts About Known Issues for Windows Admins - Published: 2023-05-04 - Modified: 2023-05-04 - URL: https://petri.com/microsoft-email-alerts-known-issues-windows/ - Categories: Windows 10, Windows 11, Windows Server 2022 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released a new email alerts feature that should make it easier for IT admins to keep track of known issues in Windows PCs. The highly requested feature enables administrators to sign-up for email notifications about Windows bugs via Microsoft 365 admin center. Essentially, known issues are problems that impact the user experience, security, and performance of different versions of Windows. Up until now, Microsoft used to provide information about known issues affecting Windows 11/10 and Windows Server 2022 on the Windows release health dashboard. However, IT admins often do not have sufficient time to keep up with any new announcements on the page. How does the Windows email alert feature work? According to Microsoft, the email alerts feature will enable eligible IT admins to receive email notifications for Windows update-related issues. These include changes in issue status, new workarounds as well as resolutions. “The notification body will include the full content published about the issue in the Windows release health section of the Microsoft 365 admin center. With a quick glance, you'll be informed of the status of the issue, as well as versions affected. You'll find links to view the message in the admin center,” Microsoft explained. How to subscribe for Windows known issue email alerts Microsoft says that users will need to sign-up for email notifications about known Windows issues by following these steps: Go to Windows release health in the Microsoft 365 admin center. Select Preferences >> Email and click “Send me email notifications about... --- ### Microsoft's Bing Chatbot Launches in Open Preview and Will Get Third-Party Plugins > Microsoft is removing the waitlist for its Bing chatbot today, and the company also detailed several upcoming features including chat history and visual search. - Published: 2023-05-04 - Modified: 2023-05-04 - URL: https://petri.com/microsoft-bing-chatbot-open-preview-chat-history/ - Categories: Microsoft, Microsoft 365 - Tags: Bing, Microsoft Bing, Microsoft Edge - Article Type: News Microsoft is removing the waitlist for its new AI-powered Bing today, and the company also detailed several new features to enhance the search experience with AI. The software giant also plans to turn its Bing chatbot into a platform and let developers create third-party plugins for it, echoing the recent launch of the first plugins for OpenAI’s ChatGPT. In just three months, Microsoft says that its new Bing AI has gained real momentum: The company observed over a half billion chats, over 200 million images created with Bing Image Creator, and over 100 million daily active users for the search engine. By recently integrating its Bing AI into the Windows taskbar, Microsoft also claims that it’s now able to reach over 500 million users every month.     “Thanks to tremendous customer adoption, engagement and feedback, we’re ready to take the next step and are announcing the new Bing is now in Open Preview and no longer has a waitlist. This means that it will now be easier than ever for everyone to try the new Bing and Edge by simply signing into Bing with your Microsoft Account,” explained Yusuf Mehdi, CVP and Consumer Chief Marketing Officer at Microsoft. Microsoft’s AI-powered Bing is getting image results, chat history, and more If everyone can now try the new AI-powered Bing, a lot of new features are also in the pipeline. Here’s everything Microsoft announced today:  More languages for Bing Image Creator: The Bing Image Creator, which lets users create images with a simple description now... --- ### Poly Partners with Pexip to Provide Secure Video Collaboration Solutions - Published: 2023-05-03 - Modified: 2023-05-03 - URL: https://petri.com/poly-partners-pexip-secure-video-collaboration/ - Categories: Hardware, Microsoft Teams - Tags: News - Article Type: News Polly has teamed up with video technology provider Pexip to launch new cloud-based and on-premises communications services. The new offerings are designed to meet the business communication and privacy needs of the public, government, and private customers. Specifically, Poly has integrated Pexip's technology into its products to provide three communication solutions. These include Poly PrivateConnect powered by Pexip, Poly CloudConnect powered by Pexip, and Poly FedConnect powered by Pexip. The company says its new offerings could be particularly useful for the healthcare and financial sectors. “We are introducing three offerings that prioritize better user experiences, deeper customization, higher levels of interoperability, and alliance strength while adhering to robust security protocols. These solutions will be a replacement for Poly’s existing Clariti and RealConnect offerings for on-premise and cloud-based communications,” said Chris Moss, Product and Portfolio Management, HP Hybrid Systems. Poly PrivateConnect powered by Pexip Poly has announced a secure video technology service called Poly PrivateConnect powered by Pexip. It offers a unified, flexible, and scalable meetings experience, all while maintaining strict security measures. The solution provides interoperability modules to let users connect with Google Meet or Microsoft Teams. Poly CloudConnect powered by Pexip Moreover, Poly launched another cloud-based video technology platform dubbed “Poly CloudConnect powered by Pexip. ” The service offers interoperability for Google Meet and Microsoft Teams to enhance customization, user experiences, and management capabilities. Poly FedConnect powered by Pexip Lastly, Poly FedConnect powered by Pexip is a FedRAMP-authorised solution for US government organizations. The SaaS-based video conferencing service provides a... --- ### Microsoft Outlook and Teams to Open Web Links in Microsoft Edge By Default - Published: 2023-05-03 - Modified: 2023-05-03 - URL: https://petri.com/microsoft-outlook-teams-web-links-edge/ - Categories: Microsoft Teams, Outlook - Tags: Microsoft Teams, News, Outlook, Outlook for Windows - Article Type: News Microsoft is planning to make web links in Microsoft Outlook and Teams to open by default in its Edge browser. The company is giving IT admins a 30 days notice that this change will be gradually rolled out in Outlook for Windows for all business customers. Microsoft first announced the web link behavior change for consumers with Microsoft 365 Personal or Family subscriptions in February 2023. The company claimed that it should make it easier for users to stay focused on important tasks. It should also eliminate the need to switch between different applications. Now, Microsoft is getting ready to roll out the behavior change to commercial customers with Azure Active Directory (AAD) and Microsoft (MSA) accounts. Microsoft says that the Outlook desktop client will open web links in Microsoft Edge’s sidebar by default. This means that the app will completely ignore the default browser selected in Windows Settings. Microsoft has already rolled out similar changes that impact the search experience and widgets in Windows 11. “Web links from emails in the Outlook for Windows app will open side-by-side with the email in Microsoft Edge so users can easily reference the link and email without switching back and forth between apps. The email will open in the Outlook app in the Edge sidebar. Links will open in Microsoft Edge even if it is not the system default browser in Windows,” the company explained on the Microsoft 365 admin center. Going forwards, Microsoft plans to roll out the new default behavior... --- ### Microsoft Teams Adds Auto Install Approved Apps Feature, Webinar Reminders - Published: 2023-05-03 - Modified: 2023-05-03 - URL: https://petri.com/microsoft-teams-auto-install-approved-apps/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft published a detailed roundup of all the new features added to Microsoft Teams in April 2023. This time around, the company highlighted improvements to meetings, webinars, management capabilities, Teams Rooms devices, and much more. Let’s dive in! Meetings features Starting with meetings, Microsoft has released a new feature that will automatically lower a participant’s raised hands after speaking in the meeting. Users can choose to keep their hands raised by clicking the “Keep it raised” button. This capability is only available for desktop users, and it helps organizers to focus on unanswered questions. Microsoft has also added a new ultrasound howling detection feature to eliminate the feedback loop and echo in Teams meetings. When a user joins a Microsoft Teams meeting and other participants are physically present in the same room, the app will automatically mute your microphone and speakers. This feature is only supported on the Teams desktop client for Windows and macOS. Microsoft has introduced closed captions support for embedded videos in PowerPoint Live for Teams. Microsoft Teams now supports a new green screen feature that enhances virtual background effects. The feature helps users to increase the sharpness and definition of the backgrounds around the user’s face, ears, hair, and head. Reminder Emails for Webinars As for webinars, Microsoft has introduced support for reminder emails to drive excitement and attendance for the event. All registered webinar participants will receive the emails at a specific date and time. These automated reminder emails will include webinar details and a... --- ### How to Configure Windows LAPS in an Microsoft Entra ID (Azure AD) Scenario > Here's how to configure Windows LAPS in an Azure Active Directory scenario and how to manage it from Microsoft Entra. - Published: 2023-05-03 - Modified: 2024-06-03 - URL: https://petri.com/configure-windows-laps/ - Categories: Microsoft 365, Windows 10, Windows 11 - Tags: Azure Active Directory, LAPS Tool, Microsoft Entra, Microsoft LAPS, Windows LAPS - Article Type: How To Windows Local Administrator Password Solution (Windows LAPS) is a powerful tool that allows organizations to better manage and protect their local administrator account passwords on Windows devices. This feature is available on Azure Active Directory-joined or Windows Server Active Directory-joined devices. In this article, I will explain how to configure Windows LAPS in an Microsoft Entra ID (previously Azure AD) scenario and how to manage it from Microsoft Entra, the company's new identity and access management platform. Windows LAPS vs. Microsoft LAPS: What's the difference? Windows LAPS is currently in public preview, with much of the capability available for all Azure Active Directory (Azure AD) customers. While the legacy Microsoft LAPS is still available for download, Windows LAPS offers several advantages over its predecessor. Firstly, Windows LAPS is an entirely separate implementation that is native to Windows. Windows LAPS also includes several new features not available in legacy Microsoft LAPS, such as the ability to back up passwords to Azure AD, encrypt passwords in Windows Server Active Directory, and store password history. Since Windows LAPS is now included in Windows, additional licensing is not required to take advantage of it. It's also possible to use with the Azure AD free tier, meaning Azure AD Premium licensing is not required. The vast adoption of legacy Microsoft LAPS over the previous decade means that this new solution will need to offer a migration procedure that's as simple as possible. The migration process that Microsoft recommends to organizations is a side-by-side approach:... --- ### SharePoint is Getting a New Copilot Experience and Other Updates > Microsoft detailed yesterday several new updates coming to its SharePoint platform over the coming months, including a new AI-powered Copilot experience. - Published: 2023-05-03 - Modified: 2023-05-03 - URL: https://petri.com/new-copilot-experience-sharepoint/ - Categories: SharePoint - Tags: copilot, Microsoft Copilot, SharePoint - Article Type: News Microsoft detailed yesterday several new updates coming to its SharePoint platform over the coming months, including a new AI-powered Copilot experience. Microsoft has an ambitious product roadmap for SharePoint sites and pages this year, and advanced image editing features and a new integration of Sharepoint pages into emails will roll out first in the next couple of months.   According to Adam Harmetz, Vice President of Product Management at Microsoft, the following SharePoint roadmap is “the biggest step we’ve ever taken in the 22-year history of the product to reimagine how sites, pages, and new types of content are created in SharePoint. ”  Microsoft's SharePoint product roadmap for 2023 (Image credit: Microsoft) We’ll start with the new Copilot experience in SharePoint, which is expected to launch in preview by the end of 2023.   New Copilot in SharePoint The new Copilot experience in SharePoint will simplify the creation of SharePoint sites with generative AI features. Users will be able to use Copilot when creating sites from scratch from the SharePoint Start page. “With only a brief prompt, Copilot in SharePoint creates a starter site for you, brings in information from across your organization as needed, and automatically aligns to your organization’s brand," explained Harmetz. Copilot will also be able to assist users looking to turn an existing document or presentation into a SharePoint page. Again, using a simple prompt such as “Create an employee onboarding site for Product Managers using this PowerPoint as a base” will be able to get the Copilot ball rolling.   The new... --- ### What's New With Microsoft's Power Platform in April 2023 > This month, we’re seeing Microsoft's Power Platform lean into AI enhancements, and many of these new AI-powered features are genuinely useful. - Published: 2023-05-03 - Modified: 2023-05-03 - URL: https://petri.com/microsoft-power-platform-april-2023-updates/ - Categories: Power Apps, Power Platform - Tags: copilot, power apps, Power Automate, Power BI, Power Platform - Article Type: News This month, as promised, we’re seeing the Microsoft Power Platform lean into AI enhancements. Many of these new AI-powered features are genuinely useful, and they should certainly improve as users provide feedback to the company. As I always advise, you shouldn't use experimental features in production apps, but once they cross the threshold to preview, that means that Microsoft is going to be rolling them out to all users in the future. Certainly, you should try out experimental features in non-production apps to get a feel for them yourselves. Anyway, let’s peek at some of the new Power Platform features introduced in April 2023. Improved variables and collections experience in Canvas Designer The Power Apps Canvas Designer now includes a side-rail tab for variables and collections. Much like how the “Tree viewer” allows the selection of individual controls, you can now select your variable and then view the code where it’s defined and used in your app. Selecting the code section also brings it up in your formula bar for easy editing. This function allows you to view variables of all types, including collections, without leaving your canvas screen. The new variables pane in Canvas Designer (Image credit: Microsoft) Power Apps gets better at implicit type conversion Power Apps has just gotten smarter at what Microsoft is calling "implicit type conversion," or "coercion. " What does that mean? It means that you won’t need to define the specific data type for your function anymore. Power Apps is now smart enough to... --- ### Microsoft OneDrive to Get New Web Experience with AI-Powered File Recommendations - Published: 2023-05-02 - Modified: 2023-05-02 - URL: https://petri.com/microsoft-onedrive-new-web-experience/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced a new version of the OneDrive web app for business and education customers. The company highlighted today that the updated app will include a new home experience that reduces the time required to find important files and documents. With this release, the OneDrive web app is getting a new “For you” section that leverages AI-powered file recommendation features to surface personalized and relevant content. Microsoft plans to roll out the feature in the coming months. “We’ve also added rich, context-based organization, such as views that show you recent, shared, and favorite and files from meetings. These views help you get back to content quickly. And lastly, inline activity updates let you catch up on files at a glance or jump right to comments in files that you want to address,” the OneDrive team explained. Shared view Microsoft is adding a new Shared view to the OneDrive web app. The new feature will provide a central hub to view all internal and external files shared with the OneDrive user. The company will begin rolling out the new Shared experience later this quarter. People view Another important update for OneDrive is a new People view that will let users organize files by people and view recent file activity. Users will be able to pin specific people to the top of the page for easier access. The new People view will be available in the OneDrive web app later this year. New meetings view and other updates coming to OneDrive... --- ### Windows Autopatch May 2023 Update Adds Support for Autopatch Groups - Published: 2023-05-02 - Modified: 2023-05-02 - URL: https://petri.com/windows-autopatch-groups/ - Categories: Windows 10, Windows 11 - Tags: News, Windows Autopatch - Article Type: News Microsoft has detailed a bunch of new features added to its Windows Autopatch service in May 2023. The company explained that this is the most “impactful” update since Windows Autopach was launched back in May 2023. Windows Autopatch is a cloud-based service that enables IT admins to automate the patching of Windows, Microsoft 365 apps, Microsoft Teams, and Microsoft Edge. Microsoft highlighted that its Windows Autopatch has helped businesses to save more than $1 million. These include $470,000 in on-site infrastructure costs and $848,000 in efficiency improvements. “The theme of this release is responding to real enterprise needs – all because we've heard from Autopatch customers and would-be customers about what they want from the service. So here they are: new capabilities, controls, and reports, all geared towards helping IT administrators improve security and productivity with less effort,” Microsoft explained. Up until now, the deployment of Windows feature updates was a resource-intensive process for organizations. The latest Windows Autopatch update gives customers greater control over feature updates on client devices. Microsoft says that IT admins can configure updates to specific Windows Autopatch groups called "Deployment rings" within their tenant. It’s also possible to roll out these updates in a staggered manner. Windows Autopatch gets policy health alerts and new notifications Microsoft has introduced support for alerts and notifications about missed and modified policies in Windows Autopatch. This release lets IT admins view and track the details within the Tenant Management section. They can initiate action for the Autopatch service to... --- ### Microsoft Teams Meetings Now Let Small Businesses Request Payments from Clients - Published: 2023-05-02 - Modified: 2023-05-02 - URL: https://petri.com/microsoft-teams-payments-app/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Microsoft has partnered with Stripe, PayPal, and GoDaddy to launch a new Payments app for Microsoft Teams. The app allows small businesses in the US and Canada to accept payments for webinars, one-on-one sessions, classes, appointments, and events within Teams meetings. “We have partnered with leading players in the payments space to combine the core collaboration capabilities in Teams with powerful commerce features in this first-of-its-kind app. With a mutual focus on helping SMBs prosper, we are excited to partner with GoDaddy, PayPal, and Stripe to make it even easier for customers to interact with you and help you get paid faster,” said Brenna Robinson, GM of Microsoft 365, Small and Medium Business. Microsoft mentioned that the new Payments app is aimed at 11 million small businesses that use Microsoft Teams. This app could be useful for various professionals such as consultants, teachers, and real estate agents. Microsoft's new Payments app is available to download from Microsoft's AppSource repository. Once installed, customers can configure the app to connect with any third-party payment provider. Then, users can send payment requests, and customers can use their digital wallet, debit or credit card, or other methods to send money. It’s also possible to track received and outstanding payments in Microsoft Teams. Microsoft Teams Payments app to get integration with GoDaddy The new Payments app is available for free in public preview for Teams Essentials ($4 per month) and Microsoft 365 business (from $6 per month) subscribers based in the US and Canada. As... --- ### Google Authenticator to Get End-to-End Encryption Support - Published: 2023-05-01 - Modified: 2023-05-01 - URL: https://petri.com/google-authenticator-end-to-end-encryption/ - Categories: Security - Tags: Google Authenticator, News - Article Type: News Last week, Google announced account synchronization support for its Authenticator app. On April 25, the security research team Mysk highlighted on Twitter that the feature lacks support for end-to-end encryption (E2EE). The security researchers found that the network traffic used to sync the credentials is not end-to-end encrypted. This means that the seed used to generate 2FA codes is transmitted in a format that is likely visible to both Google and attackers. The researchers warned that there is no setting that allows users to protect their synced 2FA codes. Additionally, Google could potentially use the information linked to users’ accounts to show personalized advertisements. The security researchers recommended that users should not enable the new syncing feature until it adds support for end-to-end encryption. Google product manager Christiaan Brand announced on Twitter that its Authenticator app will gain support for end-to-end encryption. However, he emphasized that users should not be concerned because the company encrypts data in transit and at rest across all its products. “To make sure we’re offering users a full set of options, we’ve started rolling out optional E2E encryption in some of our products, and we have plans to offer E2EE for Google Authenticator down the line,” Brand explained. “Right now, we believe that our current product strikes the right balance for most users and provides significant benefits over offline use. However, the option to use the app offline will remain an alternative for those who prefer to manage their backup strategy themselves. ” Use Google Authenticator... --- ### AWS Launches New Verified Access Service to Replace VPN - Published: 2023-05-01 - Modified: 2023-05-03 - URL: https://petri.com/aws-verified-access-service/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Amazon has announced the general availability of its AWS Verified Access service. The service enables IT admins to provide secure access to enterprise applications without using a Virtual Private Network (VPN). AWS Verified Access originally launched in public preview in November at AWS re:Invent 2022. The service allows customers to create, configure and manage a collection of policies and criteria for accessing private applications. The feature provides an additional layer of security to prevent users from sharing corporate data through insecure VPN servers. “Built using AWS Zero Trust principles, customers can use Verified Access to reduce the risks associated with remote connectivity. IT administrators and developers can define fine-grain access per application using real-time contextual signals, including identity and device posture. Verified Access also simplifies security operations. Customers can manage policies for each application all in one place,” Amazon explained. Benefits of Verified Access Amazon highlighted several advantages of its AWS Verified Access service, including security posture improvement. It evaluates each application access request to grant access to users that meet specific security requirements. AWS Verified Access also integrates with identity and device management services to maintain access logs. It should make it easier for administrators to troubleshoot issues. AWS Verified Access gets two new features Amazon has also added two new security features to AWS Verified Access. The service is getting a new AWS Web Application Firewall (WAF) integration to block application-layer attacks (such as SQL injection) targeting web applications. It helps to protect various resources such as AWS App... --- ### SQL Server Essentials: Using SQL Joins - Published: 2023-05-01 - Modified: 2023-06-12 - URL: https://petri.com/sql-join/ - Categories: SQL Server - Tags: SQL Join, SQL Server - Article Type: How To In relational databases like SQL Server, the SQL JOIN statement is used to query, connect and retrieve data from multiple tables based on data relationships between those tables. You can use the SQL JOIN statement with two or more tables, and it essentially returns records that have matching values in the different tables. In this tutorial, I will explain how to use the most common SQL JOIN types including the SQL INNER JOIN, the SQL LEFT JOIN, the SQL RIGHT JOIN, and the SQL OUTER JOIN. SQL Joins are an essential feature to use when working with relational databases. They are mainly executed using the SQL SELECT statement. You can learn more about getting started with the T-SQL SELECT statement in my previous SQL Servers article: Using SQL SELECT and the WHERE and HAVING Clauses to Retrieve Data. SQL INNER JOIN The SQL INNER JOIN operation creates a result set by combining rows that have matching values in two or more tables. This is probably the most commonly used join operation in T-SQL. SQL INNER JOIN only returns rows that have matching values, and it's used to retrieve data that appears in all tables. The following diagram illustrates how an SQL INNER JOIN operation works with two tables. How an SQL INNER JOIN operation works with two tables (Image credit: Petri/Michael Otey) The syntax for an INNER JOIN is pretty straightforward. As part of your SELECT statement, you specify the two tables to join and the columns to use... --- ### Azure Virtual Desktop Adds New Security Features, Storage Enhancements - Published: 2023-05-01 - Modified: 2023-05-01 - URL: https://petri.com/azure-virtual-desktop-updates/ - Categories: Virtualization - Tags: Azure Virtual Desktop, News - Article Type: News Microsoft has announced some new capabilities for its Azure Virtual Desktop service. The top requested feature should help organizations to enhance endpoint security, configuration, storage, and employee experience. Microsoft has introduced FSLogix profiles support for Azure AD-joined VMs in Azure Virtual Desktop. The feature lets users access file shares from Azure AD-joined VMs in order to store FSLogix profile containers. The VHD Disk Compaction feature lets users automatically decrease the storage space of a user's container during the sign-out process. “Next, we’ve added a new process during the sign-out phase which creates an AppX package manifest for employees. This enables faster app launch experiences the next time they sign in as the manifest is used to re-register the AppX applications. And lastly, when employees delete data from a session, we now roam their Recycle Bin which allows them to restore it from another session,” Microsoft explained. Configure new endpoint security policies Microsoft has announced the general availability of Microsoft Intune user scope configuration for Azure Virtual Desktop multi-session Virtual Machines (VMs). The feature enables IT Pros to configure user certificates, PowerShell scripts, and settings catalog. Azure Virtual Desktop Insights at scale Additionally, Azure Virtual Desktop Insights at Scale feature is now generally available for customers. The feature provides a central hub to view insights from different resources. For instance, IT admins can simultaneously monitor diagnostic and connection details for multiple subscriptions. Security features Microsoft has added watermarking support in public preview on Azure Virtual Desktop. The security feature is designed... --- ### Apache Superset Auth Bypass Flaw Exposes Vulnerable Servers to RCE Attacks - Published: 2023-04-28 - Modified: 2023-04-28 - URL: https://petri.com/apache-superset-flaw-rce-attacks/ - Categories: Security - Tags: Apache Superset, News - Article Type: News Apache Superset has released fixes to patch a security flaw in the default configuration that could lead to remote code execution. Tracked as CVE-2023-27524, the vulnerability allows threat actors to potentially steal sensitive data, harvest credentials, and then execute malicious code. Apache Superset is an open-source data exploration and virtualization solution. It enables users to create interactive dashboards, graphs, and charts based on NoSQL databases, SQL databases, flat files, and other data sources. Apache Superset provides various advanced analytics capabilities such as ad-hoc data analysis, custom SQL queries, and integration with machine learning models. In a recent advisory, Security firm Horizon3. ai explained that Apache Superset signs authentication session cookies with a default Flask Secret Key. The attacker could use the value of the default key to generate and sign cookies for authentication purposes. “The security of the web application depends critically on ensuring the SECRET_KEY is actually secret. If the SECRET_KEY is exposed, an attacker with no prior privileges could generate and sign their own cookies and access the application, masquerading as a legitimate user,” explained Naveen Sunkavally, Chief Architect at Horizon3. ai. Horizon3. ai releases script to discover the Apache Superset flaw The security firm found that around 2,000 vulnerable Superset instances relied on the default configuration, including government agencies, corporations, and universities. As a result, any attacker with administrative privileges can log in to the vulnerable servers. The researchers notified some organizations to address the vulnerability and protect their enterprise networks. Horizon3. ai has released a script to help IT admins... --- ### Microsoft Sentinel Gets New Workspace Manager and Hunts Feature - Published: 2023-04-28 - Modified: 2023-04-28 - URL: https://petri.com/microsoft-sentinel-workspace-manager-hunts/ - Categories: Security - Tags: Microsoft Sentinel, News - Article Type: News Microsoft announced some new updates for its Microsoft Sentinel solution this week. The company has highlighted a new Workspace Manager feature, Hunts feature to identify security threats, and other improvements. Specifically, Microsoft Sentinel is getting a new Workspace Manager that enables IT admins to manage multiple Sentinel workspaces from a central workspace. The feature supports both single and multi-tenant scenarios with Azure Lighthouse. However, Workspace Manager is ideal for multitenant customer management scenarios that deal with distributed workloads. Microsoft explained that the Workspace Manager supports various active content types. These include workbooks, analytics rules, automation rules (excluding Playbooks), hunting and livestream queries, as well as Parsers, Saved Searches and Functions. Microsoft Sentinel Workspace Manager architecture Microsoft Sentinel’s Workspace Manager offers three different architectures to accommodate different scenarios. For instance, Direct-link provides a central workspace that lets IT admins control all member workspaces. Moreover, Co-Management is designed for situations requiring more than one central workspace to manage a member workspace. N-Tier supports complex scenarios that involve hierarchical controls. Microsoft notes that customers will need at least two Microsoft Sentinel workspaces to use Workspace Manager. It also requires the Microsoft Sentinel Contributor role assignment for managing central and member workspaces. Microsoft has provided a step-by-step guide to enable the Workspace Manager feature on the central workspace. Microsoft Sentinel to get new Hunts feature in May Microsoft is also planning to add a new Hunts threat-hunting feature in Microsoft Sentinel next month. It will allow security analysts to generate bookmarks, custom hunting queries,... --- ### Managing Group Policy Objects: Create GPOs, Link GPOs, and Edit GPOs - Published: 2023-04-28 - Modified: 2025-03-07 - URL: https://petri.com/create-gpo-link-gpo-edit-gpo/ - Categories: Active Directory (AD) - Tags: Active Directory, group policy, Group Policy Management Console, group policy objects - Article Type: How To If you're an IT pro working with Active Directory, you can use Group Policy to configure the Windows environments of your users' computers and your enterprise servers using Group Policy Objects (GPO). However, the struggle to reach an intuitive and secure environment is real. In this article, I will explain how to create a GPO, and how to link, delete, and disable them. When we're done, you should better understand the nuances of the wonderfully complex world of Group Policy. Working with GPOs There are two ways to work with GPOs: You can either use the Local Group Policy Editor to adjust the policies on a local computer or use the Group Policy Management Console (GPMC) to work on your enterprise environment. Because local policies are processed first (before domain policies) and to sustain and design a robust environment, we will focus on the enterprise scenario in this article. Installing the Group Policy RSAT Tool The Group Policy Management Console is part of the traditional Remote Server Administration Tool (RSAT) toolset. It is an MMC-based (Microsoft Management Console) tool that is installed with the modern Windows Settings app in Windows. I'll show you how to install it next. On a domain controller (DC), Group Policy settings are stored in the 'SYSVOL' shared folder and replicated to all other DCs in the domain (and forest, if you are set up that way). This describes the built-in redundancy of Group Policy infrastructure. To show you how to install the Group Policy... --- ### Microsoft to Release Windows 11 LTSC in the Second Half of 2024 - Published: 2023-04-28 - Modified: 2023-04-28 - URL: https://petri.com/windows-11-ltsc-coming-in-2024/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Windows 10, Windows 11, Windows 11 LTSC - Article Type: News Microsoft announced updates for its Windows 11 and Windows 10 support roadmaps yesterday, and the biggest news is that a Long-Term Servicing Channel (LTSC) version of Windows 11 will be released in the second half of 2024. This should be good news for organizations that have been waiting to upgrade their PCs to Windows 11 before Windows 10 reaches end of support in 2025. The Redmond giant also revealed yesterday that Windows 10 version 22H2, the latest feature update for the OS released back in October 2022 will be the final version of the OS. In other words, there won’t be a 23H2 update for Windows 10 later this fall.   Windows 11 LTSC is coming in the second half of 2024 For organizations waiting for a Windows 11 LTSC release, Microsoft said that Windows 11 Enterprise LTSC and Windows 11 IoT Enterprise LTSC will be available in the second half of 2024. The company plans to share more details closer to release.   LTSC editions of Windows are best used on special use devices that don’t need to receive updates as frequently as other devices. LTSC versions of Windows also receive updates for a longer period of time.   Microsoft is already recommending organizations preparing to upgrade their PC fleets to Windows 11 to start testing their apps on devices using Windows 11 version 22H2. “It's important for organizations to have adequate time to plan for adopting Windows 11,” the company emphasized. Windows 10 version 22H2 will be the final version... --- ### Microsoft Defender for Cloud Apps to Get App Governance Add-On in June - Published: 2023-04-27 - Modified: 2023-04-27 - URL: https://petri.com/microsoft-defender-for-cloud-apps-app-governance/ - Categories: Security - Tags: Microsoft 365 Defender, News - Article Type: News Microsoft has announced that its App Governance add-on will soon be a part of the Microsoft Defender for Cloud Apps service. Starting on June 1, the feature will be available for all customers with an E5 Security/Microsoft 365 E5 or any other subscription at no additional cost. Microsoft highlighted that threat actors are increasingly targeting enterprise customers with app-based attacks. The App Governance add-on is a security feature that enables organizations to protect OAuth-enabled apps connected to Azure Active Directory (Azure AD). It provides actionable insights to give IT admins complete visibility into how third-party apps access sensitive data stored in Microsoft 365 services. “Because we are seeing a continued rise in app-based attacks, we believe this is a foundational capability for customers. That’s why today, we are excited to announce that going forward the App Governance add-on will be included in Defender for Cloud Apps at no additional cost. On June 1, 2023, new and existing customers will be able to start the opt-in process to begin using these capabilities,” Microsoft explained. How does the App governance add-on work? The App Governance add-on provides a single dashboard that enables IT admins to view, react, and respond to the apps’ status and alert activities. It also lets them create governance policies for app and user patterns to block non-compliant or malicious applications. App Governance provides detection and mitigation strategies to protect end users against suspicious in-app activities and risky apps. Microsoft will cancel subscriptions for all existing App Governance customers... --- ### Microsoft Designer Enters Public Preview with New A.I. Features - Published: 2023-04-27 - Modified: 2023-04-27 - URL: https://petri.com/microsoft-designer-public-preview/ - Categories: Microsoft 365 - Tags: AI, Canva, Microsoft 365, Microsoft Designer, News - Article Type: News Today, Microsoft Designer goes into public preview and it adds new A. I. features. Like Canva, Designer offers a collection of templates and elements like graphics, photos, and video so that you can easily create eye-catching content for your social media channels. What is Microsoft Designer? Essentially a clone of popular graphic design tool Canva, Microsoft Designer brings drag-and-drop design features allowing you to quickly create designs for social media content, like Instagram posts and Facebook ads. Microsoft Designer was originally announced at the Ignite conference in October 2022. Use Microsoft Designer to create visuals and social media posts using A. I. One key difference with Canva is that the free version of Microsoft Designer lets you create graphics using a natural language model driven by Artificial Intelligence. For example, you could ask it to draw a YouTube thumbnail for a video about Microsoft Designer. If you don’t like the results, you can give the A. I. more context and slowly have it refine the design for you. It's worth noting that natural language generative A. I. could become a premium feature when Designer is made generally available. If you would prefer to get started without the help of A. I. , you can work with a blank canvas from where you can drag elements, such as photos and illustrated graphics, to build your perfect design. Microsoft Designer AI generates captions, hashtags, and copy also part of the deal A. I. isn’t just used in the visuals. Microsoft has also included tools that harness A. I. to help... --- ### Latest Windows 11 Update Fixes Windows LAPS Interop Issues - Published: 2023-04-27 - Modified: 2023-04-27 - URL: https://petri.com/windows-laps-interop-issues-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has released the optional April 2023 security patches for Windows 11 versions 21H2 and 22H2. The optional updates (KB5025298 and KB5025305) address interoperability issues between Windows LAPS and legacy LAPS policies. Microsoft recently announced the native integration of Windows LAPS (Local Administrator Password Solution) on Windows 11, Windows 10, and Windows Server 2019. The tool allows IT Pros to manage passwords on Windows Server Active Directory-joined and Azure Active Directory-joined devices. It helps administrators to regularly rotate and backup passwords to on-premises Active Directory. Microsoft highlighted that the native integration eliminates the need to download and install an MSI file to use the Windows LAPS tool. Moreover, Windows LAPS gets serviced monthly like all other Windows components. However, many IT admins found that installing the latest Patch Tuesday updates break the new Windows LAPS and legacy LAPS tools. Microsoft acknowledged the issue and provided a temporary workaround solution. Thankfully, Microsoft has now released an update to address the Windows LAPS interoperability bug on Windows 11 PCs. “This update addresses an issue that affects the legacy Local Administrator Password Solution (LAPS) and the new Windows LAPS feature. They fail to manage the configured local account password. This occurs when you install the legacy LAPS . msi file after you have installed the April 11, 2023, Windows update on machines that have a legacy LAPS policy,” Microsoft explained. Install Windows 11 preview updates to fix compatibility issues between Windows LAPS and legacy LAPS policies If you’re running Windows 11 22H2 or Windows... --- ### What is Group Policy in Active Directory? - Published: 2023-04-27 - Modified: 2025-02-05 - URL: https://petri.com/what-is-group-policy/ - Categories: Active Directory (AD) - Tags: Active Directory, group policy, Group Policy Management Console, group policy objects - Article Type: Overview Group Policy is an infrastructure feature in Active Directory that allows IT pros to manage their users' Windows environments and servers. In this article, I will explain in detail what is Group Policy, what is a Group Policy Object (GPO), and how to adjust the policy settings to meet your security needs and compliance requirements. Creating a streamlined and consistent user experience is a beautiful plus. What is Group Policy in Active Directory? Group Policy was released with Active Directory back in 1999 with the release of Windows 2000 Server. It was developed to provide enterprises with a secure and streamlined method to facilitate a consistent desktop experience for users (and servers). You use Group Policy to control the environment of user and computer accounts. This is the most important distinction of how Group Policy was developed – User (based) policies and Computer (based) policies. User policies (user configuration) are applied when a user logs in to a computer on the domain. Computer policies (computer configuration) are applied during computer startup. Separating these two core buckets allows IT admins to target specific user settings and computer settings, separately, including group policy preferences. Both computer and user policies are further divided into three more buckets: Software settings and Windows settings configure local DLL files on the machine. Administrative templates are settings that configure the local registry of the machine. You can add more options to administrative templates by right clicking it and choose . ADM files. Many programs that are installed on the computer add their . ADM files to %systemroot%/inf folder so you... --- ### New cloud.microsoft domain Will Simplify Access to Microsoft 365 Web Apps   - Published: 2023-04-27 - Modified: 2023-04-27 - URL: https://petri.com/microsoft-365-web-apps-cloud-dot-microsoft-domain/ - Categories: Microsoft, Microsoft 365 - Tags: Microsoft 365 - Article Type: News Microsoft announced this week that it’s planning to move its various Microsoft 365 web apps to a unified cloud. microsoft domain. This should really help to simplify access to Microsoft 365 apps and services on the web as the various subdomains Microsoft currently uses result in an inconsistent experience for users.   “As Microsoft cloud services have grown over the years, the domain space they live on has grown as well – into the hundreds. Over time, this fragmentation has created increasing challenges for end user navigation, administrative simplicity, and the development of cross-app experiences,” the Microsoft 365 team explained yesterday.   Microsoft has too many different domains (image credit: Microsoft) Microsoft obtained exclusive rights for the . microsoft top-level domain, which will help to ensure trustworthiness. However, the company opted to use the cloud. microsoft unified domain to provide access to its various Microsoft 365 apps in a consistent and secure manner.   “There are also anti-spoofing and integrity benefits to hosting such experiences on an exclusive, purposefully-managed TLD like . microsoft vs. a generic TLD like . com,” the company explained. This is also why the company didn’t want to make any changes to its microsoft. com domain, which will continue to be exclusively used for marketing, support, and e-commerce. How the unified cloud. microsoft domain will work. Soon, instead of using outlook. office365. com to access the Outlook web app and teams. microsoft. com to access the Teams web app, users will need to visit outlook. cloud. microsoft and teams. cloud. microsoft, respectively. Microsoft says that this will be a gradual transition and that “only... --- ### Microsoft Loop Adds Support for Personal Accounts on iOS and Android - Published: 2023-04-26 - Modified: 2023-04-26 - URL: https://petri.com/microsoft-loop-personal-accounts-ios-android/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Loop, News - Article Type: News Microsoft has started rolling out support for personal accounts in its Microsoft Loop app on mobile devices. Indeed, the company announced yesterday that the feature is now available in preview on iOS and Android. Microsoft officially launched its new Loop app in public preview in March this year. The app provides a real-time collaboration experience that lets teammates work together on tasks, documents, and projects. It allows users to share specific pieces of content (like Loop components, pages, and workspaces) with both internal and external users. Microsoft Loop comes with new AI-powered features with the integration of the Microsoft 365 Copilot tool. The app makes it easier to keep projects organized and has integrations with other Microsoft services such as PowerPoint and Word. Up until now, the Microsoft Loop app only supported work accounts on mobile devices. However, Microsoft promised that support for personal accounts would be available soon. Rebecca Keys, the project manager of Microsoft Loop, confirmed on Twitter that users can now access Microsoft Loop on Android and iOS. Microsoft Loop opens a limited number of spots for iOS users To test the new support for personal accounts in Microsoft Loop, Android users will need to download the app from the Google Play Store. On iOS, Microsoft Loop is only available for select users who have enrolled in Apple's TestFlight program. Keep in mind the app is still under development, and users might encounter some unexpected issues. Microsoft invites testers to use the Loop app and provide their... --- ### Microsoft Changes Windows Server 2022 Licensing Policies - Published: 2023-04-26 - Modified: 2023-04-26 - URL: https://petri.com/windows-server-2022-licensing-policies/ - Categories: Cloud Computing, Windows Server 2022 - Tags: News, Windows Server 2022 - Article Type: News Microsoft is changing its Windows Server 2022 licensing policies to better compete with rivals. Earlier this month, the company quietly updated the Product Terms page with three major changes that should help organizations to reduce costs and drive cloud adoption (via The Register). Microsoft explained that customers no longer need a minimum of 16 core licenses to use virtual machines (VMs) or the Azure Hybrid Benefit. Secondly, the company is easing the Azure Hybrid Benefit requirements to let customers align the licensed cores with the actual core count of their virtual machine. Until now, a 20-core virtual machine required three sets of eight licenses. However, IT admins no longer need to comply with these criteria while licensing a VM with more than 8 cores. Microsoft has also updated licensing requirements for companies that buy Windows Server subscriptions via cloud service providers (CSPs). It’s now possible to use Standard licenses with Windows Server Datacenter virtual machines. This capability is available for customers running VMs in on-premises data centres or with Authorized Outsourcers. Lastly, Microsoft notes that organizations won’t need Windows Server CALs or External Connector licenses to access Windows Server software managed by a CSP-Hoster partner. Windows Server 2022 licensing changes aim to reduce costs Microsoft is making these changes to maintain its Windows Server market share and better compete with open-source alternatives such as Linux. It’s important to note that many organizations are now running Linux distributions on Azure servers to reduce licensing costs. These new licensing terms are aimed... --- ### Microsoft Defender for APIs Now Available in Preview - Published: 2023-04-26 - Modified: 2023-04-26 - URL: https://petri.com/microsoft-defender-for-apis-preview/ - Categories: Security - Tags: Microsoft Defender for Cloud, News - Article Type: News Microsoft has announced the public preview of its new Microsoft Defender for APIs solution. The new powerful tool enables organizations to improve the security and management of their "business-critical APIs. " Microsoft explained that Defender for APIs is available as part of its Microsoft Defender for Cloud service. It’s a security solution that protects cloud-native applications against identity-based attacks. “Now through the integration of Defender for APIs with Azure API Management, security teams can use the Defender for Cloud portal to gain visibility into these business-critical Azure APIs, understand their security posture, prioritize vulnerability fixes, and detect and respond to active runtime threats within minutes – using machine-learning powered anomalous and suspicious API usage detections,” Microsoft explained. Microsoft’s new Defender for APIs solution enables IT admins to monitor all managed APIs in a single dashboard. It also leverages AI to analyze details about external, unused, or unauthenticated APIs. The feature makes it easier to detect security flaws and protect APIs in enterprise environments. Additionally, Microsoft Defender for APIs enables administrators to monitor threat intelligence feeds and runtime traffic as well as access threat detection alerts. It provides security recommendations to let customers enhance their API security posture. This capability should help to harden API configurations to mitigate critical security risks. Other capabilities include API data classification that could be useful for risk prioritization tasks. Microsoft Defender for APIs provides SIEM Integration Microsoft Defender for APIs integrates with several security information and event management (SIEM) systems to facilitate threat mitigation activities. The... --- ### Google Authenticator Now Lets Users Back Up 2FA Codes to the Cloud - Published: 2023-04-25 - Modified: 2023-04-25 - URL: https://petri.com/google-authenticator-back-up-2fa-codes-cloud/ - Categories: Security - Tags: News, Security - Article Type: News Google has released a new much-awaited feature for its Authenticator app on Android and iOS. The latest update allows users to sync their two-factor authentication codes (2FA) to Google accounts. Google launched its Authenticator app for mobile users back in 2010. It’s designed to help customers protect their online accounts with two-factor authentication (2FA). The app generates unique one-time passwords (OTPs) that let users securely log in to online services. Until now, the Google Authenticator app used to store OTPs only on the primary device. This meant that if a user lost access to their device, they wouldn't be able to access any of their accounts secured with the 2FA mechanism. This issue was a significant drawback of the app, and Google has finally taken steps to address the problem. “With this update we’re rolling out a solution to this problem, making one time codes more durable by storing them safely in users’ Google Account. This change means users are better protected from lockout and that services can rely on users retaining access, increasing both convenience and security,” said Christiaan Brand, Group Product Manager a Google. How to sync 2FA codes in Google Authenticator To use the cloud syncing feature, Google Authenticator users will need to install the latest update from the App Store or Google Play Store. Once enabled, users will see a cloud icon at the top right corner of the screen. It indicates that all codes will be automatically backed up to users’ Google Accounts. However, keep... --- ### Microsoft Intune Gets New Windows Defender Firewall Management Features - Published: 2023-04-25 - Modified: 2023-04-25 - URL: https://petri.com/microsoft-intune-windows-defender-firewall-management/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has introduced several new features to its Microsoft Intune admin center. The company highlighted that these updates should help IT admins boost security and improve Defender Firewall management. Microsoft announced that Windows Defender Application Control (WDAC) Application ID tagging support is now available with Intune Firewall Rules policy. It enables customers to scope firewall rules to a specific app or group of applications. The feature is currently available for Windows 11 devices, with support for Windows 10 version 20H2 (and newer) to follow later this month. “The WDAC AppID functionality adds an administrator defined tag to the given process token. By using these tags, the Firewall Rules policy won't need to rely on an absolute file path or use of a variable file path that can reduce the rule security. Use of this capability requires you to have WDAC policies in place, which include AppId tags,” Microsoft explained. Microsoft has also added endpoint security firewall policy support for network list manager settings. This capability lets IT admin identify if an Azure AD device is connected to subnets within their on-premises domain. Moreover, it’s now possible to use the IcmpTypesAndCodes setting to set up inbound and outbound rules for Internet Control Message Protocol (ICMP). IT admins can access the setting in the Microsoft Defender Firewall rules profile on Windows Server, Windows 11, and Windows 10. Finally, Microsoft released a new feature that enables administrators to configure firewall logging options in the endpoint security Firewall policy. The list of new settings... --- ### Linux File Permissions: Everything You Need to Know > This article explains how Linux file permissions work, including how to change file permissions and file ownership using the chmod and chown commands. - Published: 2023-04-25 - Modified: 2023-04-25 - URL: https://petri.com/linux-file-permissions/ - Categories: Linux - Tags: linux - Article Type: How To This article explains how Linux file permissions work, including how to change file permissions and file ownership using the chmod and chown commands. If you’re working as a Linux administrator or have just started learning the basics, then it’s essential to understand how file permissions work. In this tutorial, I will detail everything you need to know about Linux access control lists (ACLs), including how to change file permissions and file ownership. How Linux file permissions work On Linux, file permissions let you control the level of access users have to files. And file ownership is used to determine who has overall jurisdiction over a file. All files in Linux belong to an owner and a group. Understanding how groups and owners are assigned and used to manage access to files and folders is important. Permissions are rarely determined by assigning individual user accounts to files and folders because it’s too difficult to manage at scale. The 3 levels of permission in Linux Here are the three different levels of permission that are used in Linux: Owner: This group gives members complete control over a file. Group: You can assign a group of users to a file or directory and give the group a specific set of permissions. All users: This permission group applies to all other users. This is probably the group you want to keep an eye on the most for security reasons. The 3 permission types on Linux On Linux, there are three different permission types for files and directories: r: The read permission means that the file/directory is readable. w: The write permission means that the file/directory can... --- ### Google Takes on Microsoft's Security Copilot With New Cloud Security AI Workbench - Published: 2023-04-25 - Modified: 2023-04-25 - URL: https://petri.com/google-cloud-security-ai-workbench/ - Categories: Security - Tags: cloud security, Google, Google Cloud Platform, Microsoft Security Copilot, Security - Article Type: News Google has just announced at the RSA Conference 2023 its new Cloud Security AI Workbench, which will offer various AI-powered tools to help cybersecurity experts address security threats. The Google Cloud Security AI Workbench relies on a new large language model (LLM) named Sec-PALM, and it also leverages technology from Mandiant, a cybersecurity company Google acquired last year. “Recent advances in artificial intelligence (AI), particularly large language models (LLMs), accelerate our ability to help the people who are responsible for keeping their organizations safe,” explained said Sunil Potti, VP/GM, Google Cloud Security. “These new models not only give people a more natural and creative way to understand and manage security, they give people access to AI-powered expertise to go beyond what they could do alone. " Google’s Cloud Security AI Workbench announcement echoes Microsoft’s recent Security Copilot announcement from March. Microsoft’s AI-powered cybersecurity assistant is powered by OpenAI’s GPT-4 and Microsoft’s own proprietary security models, and it’s currently available in private preview with select enterprise customers.   Google Cloud Security AI Workbench Features Google’s Cloud Security AI Workbench will apply Sec-PaLM, the company’s security-focused LLM to new security tools. The AI-powered cybersecurity suite will also let customers extend and customize the platform with plugins.   The platform will also let customers make their private data available to the platform at inference time; ensuring we honor all our data privacy commitments to customers,” explained Potti. “Because Security AI Workbench is built on Google Cloud’s Vertex AI infrastructure, customers control their data with enterprise-grade capabilities such as data isolation, data... --- ### Microsoft to Separate Teams From Office to Avoid EU Antitrust Scrutiny - Published: 2023-04-25 - Modified: 2023-04-25 - URL: https://petri.com/microsoft-separate-teams-office-eu/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft Teams, News, Slack - Article Type: News Microsoft has decided to unbundle Microsoft Teams with its Office software. According to a report from the Financial Times, this move could potentially help to avoid an formal antitrust investigation by EU regulators. Slack lodged an anticompetition complaint against Microsoft with the European Commission (EC) back in July 2020. The company argued that Microsoft “illegally” includes the Microsoft Teams app with its popular Office productivity suite. Slack claimed that Microsoft abused its market dominance to force millions of users to install Teams, without providing a way to remove it. “Microsoft is reverting to past behavior. They created a weak, copycat product and tied it to their dominant Office product, force installing it and blocking its removal, a carbon copy of their illegal behavior during the ‘browser wars. ’ Slack is asking the European Commission to take swift action to ensure Microsoft cannot continue to illegally leverage its power from one market to another by bundling or tying products,” explained David Schellhase, General Counsel at Slack. Microsoft Teams to become optional for customers in the EU Microsoft will now reportedly allow organizations to choose to buy Microsoft Office with or without Teams. However, it’s not clear yet how the company plans to go ahead with its plans, and the matter is still under discussion. It’s possible that Microsoft could sell a special version of Office for customers based in the European Union. Microsoft did not confirm the report, but the company acknowledged that discussions are still ongoing. Microsoft said that it’s open... --- ### 5 New Features in Linux 6.3 Kernel - Published: 2023-04-25 - Modified: 2023-04-25 - URL: https://petri.com/5-new-features-linux-6-3-kernel/ - Categories: Linux - Tags: DevOps, linux, performance, Security - Article Type: News The latest Linux kernel is now available, and it comes with some important new features. Linux Kernel 6. 3 is a minor release and it shouldn’t cause any major problems when you get round to upgrading. But like any change you introduce into your environment, it should be properly tested. So, let’s look at the most important features in this update. 1. User-mode Linux support for Rust Rust support was added in Linux kernel 6. 1, which was released back in December 2022. And this new release brings support for Rust code in user-mode. Essentially, these updates to the kernel make Rust an officially supported language for Linux kernel development, along with C as the primary language. 2. Updated support for Intel and AMD CPUs and graphics hardware The updated kernel supports technology to be released in upcoming AMD and Intel CPUs and graphics processors. Although some of the changes will also affect current hardware. Kernel 6. 3 supports AMD Indirect Branch Restricted Speculation (IBRS). It is a new mitigation for Spectre that doesn’t involve such a hit on performance compared to Retpoline speculative execution. 3. ARM and RISC-V power management RISC-V architectures now have accelerated string function support thanks to the Zbb bit manipulation extension, which aims to bring code size reduction, performance improvement, and energy reduction to the table. And ARM gets Scalable Matrix Extension (SME) 2 instructions, which build on previous scalable vector extensions to add new capabilities and performance to improve matrix multiplications that are commonly used in scientific... --- ### Amazon GuardDuty Gets New Threat Detection Capabilities - Published: 2023-04-24 - Modified: 2023-04-24 - URL: https://petri.com/amazon-guardduty-threat-detection-capabilities/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News Amazon announced this morning some important updates for Amazon GuardDuty. The service has added support for Amazon EKS Runtime Monitoring, RDS Protection for Amazon Aurora, and Lambda Protection. Amazon DutyGuard is a managed security monitoring service that uses machine learning to detect potential threats that can compromise Amazon Web Services (AWS) environments. It analyzes different data sources such as Amazon Virtual Private Cloud (VPC) Flow Logs, domain name system (DNS) logs, and AWS CloudTrail for potentially unauthorized and malicious activities. “GuardDuty’s new capabilities build on this powerful foundation to expand security detection and monitoring even further, to where customers tell us they need it most: containers’ runtime monitoring, databases, and serverless applications. We’ve now more than tripled the number of managed detections since we introduced GuardDuty,” said Jon Ramsey, VP for Security Services at AWS. Amazon GuardDuty has introduced support for Amazon EKS Runtime Monitoring. The feature leverages a GuardDuty security agent to offer insights about network connections, process execution, file access, and other container runtime activities. It helps customers to identify and monitor compromised EKS clusters and privilege escalation attempts. With Amazon GuardDuty RDS Protection, IT admins can detect potential threats to sensitive data stored in Aurora databases. The feature analyzes and profiles RDS login activity to detect security risks like suspicious logins and high-severity brute force attacks. IT Pros can view the threat alerts in the GuardDuty console as well as via other services like Amazon Detective, AWS Security Hub, and Amazon EventBridge. Amazon GuardDuty adds Lambda Protection... --- ### Canonical Releases Ubuntu 23.04 with Azure Active Directory Support - Published: 2023-04-24 - Modified: 2023-04-24 - URL: https://petri.com/ubuntu-23-04-azure-active-directory/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News, Ubuntu - Article Type: News Last week, Canonical announced the release of Ubuntu 23. 04. The latest version of its Linux distribution includes improved Azure Active Directory support, a new desktop installer, and other enterprise-focused features. Codenamed Lunar Lobster, Ubuntu Desktop 23. 04 provides native user authentication with Azure Active Directory (Azure AD). This release enables Microsoft 365 enterprise customers to authenticate their Ubuntu Desktops with a common set of credentials. Canonical will continue to listen to user feedback before backporting Azure AD support to Ubuntu 22. 04 Long-Term Support (LTS) later this year. "This Ubuntu milestone release demonstrates our progress in raising the bar for the enterprise developer desktops, thanks to our best-in-class Linux integration with Active Directory (AD) Domain Services and now Azure Active Directory," explained Canonical CEO Mark Shuttleworth. Canonical also announced that the latest release adds support for the Active Directory Bridging Toolsuite's Samba winbind domain service. It lets customers use Ubuntu with AD on Amazon Workspaces and older AD configurations. Other capabilities include support for network shares, app confinement, and enterprise proxy. However, keep in mind that some enterprise features may require an Ubuntu Pro license. Ubuntu 23. 04 adds a new installer and snap improvements Ubuntu Desktop 23. 04 adds a new desktop installer called Subsiquity. It’s a streamlined installer designed to help IT admins with enterprise deployment and image customization at scale. Canonical has introduced an updated Snap package manager that allows users to download updates in the background and install them automatically when the desktop app is closed. Last but not least,... --- ### Microsoft Announces Windows LAPS Support for Azure AD Joined Devices - Published: 2023-04-24 - Modified: 2023-07-17 - URL: https://petri.com/windows-laps-azure-ad-joined-devices/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News, Windows LAPS - Article Type: News Microsoft has announced a public preview of Windows LAPS with Azure Active Directory (recently renamed Microsoft Entra ID). The new long-awaited feature enables IT admins to rotate and backup passwords using Azure Active Directory. Windows Local Administrator Password Solution (LAPS) is a tool that enables IT admins to automatically manage and back up passwords for local administrator accounts. Previously, Windows LAPS was only available as a standalone solution for enterprise customers. Microsoft has recently unveiled that the tool is now natively integrated into Windows and Windows Server devices. The native version brings support for automatic password rotation, password history, and password encryption. It helps to minimize the risk of password theft as well as Pass-the-Hash (PtH) and lateral traversal attacks. Windows LAPS management via Microsoft Intune available in preview With this release, Microsoft is making Windows LAPS available for Azure AD joined and hybrid Azure AD joined devices managed by Microsoft Intune. It enables IT admins to store passwords in Microsoft Azure, recover them, and configure settings via Microsoft Intune. It’s also possible to view audit logs, create Azure AD role-based access control (RBAC) policies, and configure Conditional Access policies. “Windows LAPS has been revamped to integrate into the Windows platform to securely rotate and backup passwords using Microsoft Entra, Azure Active Directory (Azure AD). IT admins can use the first-class management experiences built into Intune to configure Windows LAPS and leverage the capabilities that are now available,” the Intune Support team explained. Windows LAPS for Azure Active Directory: Configuration... --- ### Microsoft Improves Windows Update Process on Windows 11 and 10 PCs - Published: 2023-04-21 - Modified: 2023-04-25 - URL: https://petri.com/microsoft-windows-update-windows-11-10/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, Windows Update - Article Type: News Microsoft has released an updated version of Windows Update Health Tools for Windows 11 and Windows 10. The company detailed in a support document that the new update is designed to improve the reliability of the Windows update process. Specifically, the new KB4023057 intends to address issues that could prevent the installation of critical updates on Windows 11 and 10 PCs. It’s available for PCs running Windows 11 versions 21H2 and 22H2 as well as Windows 10 versions 21H2 and 22H2. According to Microsoft, the new update will be delivered automatically to consumer devices through Windows Update. Alternatively, it's also possible to manually download Update Health Tools from the Microsoft Download Center. “This update should automatically install if your device is connected to Windows Updates services and allows automatic updates. If your device isn't regularly receiving quality updates, because of low disk space or have low activity, this may prevent the device from installing the Update Health Tools. If you currently don't have the client installed, you can then try triggering a normal Windows Update scan,” Microsoft explained. How to deploy Update Health Tools via Windows Update for Business (WUfB) Microsoft recommends IT admins to deploy the update in enterprise environments via Windows Update for Business (WUfB). However, the update will not be offered to devices that are managed via Windows Server Update Services (WSUS). Microsoft notes that commercial customers can confirm the installation of Microsoft Update Health Tools by checking the contents of the following folder: C:\Programme\Microsoft Update Health... --- ### Microsoft’s New Azure Storage Mover Makes Cloud Migrations Easier - Published: 2023-04-21 - Modified: 2023-04-21 - URL: https://petri.com/microsofts-azure-storage-mover/ - Categories: Microsoft Azure - Tags: Azure Storage Mover, Microsoft Azure, News - Article Type: News Microsoft has announced that its Azure Storage Mover is now generally available for enterprise customers. The new tool intends to make it easier to migrate files and folders from on-premises systems to Azure cloud storage. Microsoft’s Azure Storage Mover made its debut in public preview in December last year. The managed cloud migration service enables IT admins to plan, launch and monitor workload migrations directly via the Azure Portal, CLI, or PowerShell. It’s useful for customers who need an efficient and cost-effective way to move large amounts of data to the cloud. “You can use Storage Mover for different migration scenarios such as lift-and-shift, and for cloud migrations that you have to repeat occasionally. Azure Storage Mover also helps maintain oversight and manage the migration of all your globally distributed file shares from a single storage mover resource,” Microsoft explained. Currently, Azure Storage Mover supports the migration of an on-premises network file system (NFS) share to an Azure blob container. It leverages virtual machines (VMs) as migration agents that can be deployed close to the source storage. The agents include details regarding metrics, job migration run and copy logs. Moreover, IT admins can manage all agents in a single place in Azure. Azure Storage Mover minimizes workload downtime Microsoft emphasizes that the new Azure Storage Mover service is designed to reduce workloads' downtime during repeated source and target migrations. This tool is a part of Microsoft’s ongoing efforts to make going migrations easier for businesses. It will compete with existing... --- ### What is AWS Amplify? - Published: 2023-04-21 - Modified: 2023-06-23 - URL: https://petri.com/what-is-aws-amplify/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, AWS Amplify - Article Type: Overview AWS Amplify is an Amazon Web Services (AWS) application development framework that organizations can use to develop and deploy web and mobile applications. It’s an end-to-end solution for creating an app backend and a frontend UI in just a couple of hours. In this article, I will explain how AWS Amplify works and how it can help organizations create cloud-based mobile and web apps in a more efficient way. What is AWS Amplify? AWS Amplify includes an extensive set of tools allowing developers to build full-stack applications on AWS. It also provides pre-built UI components and code libraries for connecting apps to new or existing AWS services. Moreover, a powerful command-line interface (CLI) is also available to configure an app with just a couple of commands. The major components of AWS Amplify Here are the major components of AWS Amplify you should know about before getting started with the development platform. Amplify CLI Toolchain: This is a set of command-line interface tools allowing developers to create their apps, integrate them with other AWS services, and deploy them with ease.   Amplify Studio (formerly Admin UI): This is a visual interface for managing backend services and resources for your apps. Amplify Libraries: AWS Amplify provides a set of libraries allowing developers to easily connect their apps to new and existing AWS backends. Amplify UI components: This is an open-source design system offering cloud-connected components for building your apps. Amplify Web Hosting: This is a fully managed CI/CD and hosting service for... --- ### Microsoft Office 2013 Reaches End of Support - Published: 2023-04-20 - Modified: 2023-04-20 - URL: https://petri.com/microsoft-office-2013-end-support/ - Categories: Office - Tags: News, Office 2013 - Article Type: News Microsoft announced yesterday that Office 2013 reached its end of support on April 11, 2023. The company has warned that it will no longer provide security patches and technical support for the perpetual-license product. Microsoft originally released Office 2013 back in January 2013. The company dropped mainstream support for the product on April 20, 2018. Since then, Microsoft has only been offering security updates and bug fixes for Office 2013. In a recent blog post, Microsoft announced the end of its 10-year product support phase for Office 2013. The core functionality of the product may continue to work, but it won’t receive any new security patches. Microsoft reiterated that it would potentially increase the organization’s exposure to security risks and vulnerabilities. Microsoft suggests organizations to migrate to its Microsoft 365 E3 services. Customers can choose to pay for the subscription-based version of Office on a monthly or annual basis. It gives users access to Microsoft Outlook, Word, PowerPoint, Excel, Teams, and OneNote. Going forward, Microsoft will no longer test Office 2016 and Office 2019 connections to Microsoft 365. The company has confirmed that users might experience performance and reliability issues on their systems. “Connecting Office 2016 and Office 2019 to Microsoft 365 reaches end of support on October 10, 2023. After this end date we won’t block these Office versions from connecting to Microsoft 365 services if they are kept up to date. But after October 10, 2023, improvements to Microsoft 365 services will no longer be tested with these... --- ### Microsoft Viva is Getting a New AI-Powered Copilot Experience - Published: 2023-04-20 - Modified: 2024-11-19 - URL: https://petri.com/copilot-in-microsoft-viva/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Copilot, Microsoft Viva - Article Type: News Microsoft is bringing its new AI-powered Copilot to Microsoft Viva. The employee experience platform integrated within Microsoft Teams offers different modules such as Viva Goals and Viva Engage, and all of them will get new generative AI features once Copilot in Microsoft Viva ships later this year. The Microsoft 365 Copilot that the company announced last month will combine large language models from OpenAI with organizational data surfaced by the Microsoft Graph. If this Microsoft 365 Copilot will soon bring “generative AI” capabilities to the Office apps, Microsoft Teams, Power Automate, and other apps, the new Copilot in Microsoft Viva is designed to boost workforce engagement and, ultimately, performance. “Our latest research reveals the most successful organizations are those that prioritize both productivity and employee engagement – businesses with an engaged workforce performed twice as well financially compared to those with a disengaged workforce,” said Kirk Koenigsbauer, CVP for Microsoft 365. “With Copilot, Microsoft Viva takes advantage of next-generation AI to accelerate this new performance equation, where engagement and productivity together lead to better business outcomes and success. ” How the new Copilot in Microsoft Viva works The new Copilot in Microsoft Viva will offer specific experiences across the different Viva modules. In Viva Goals, the integrated goal-setting and management solution, Copilot will be able to suggest objectives and key results (OKR) recommendations based on the organization’s documents. It will also be able to check the status of OKRs and make suggestions to improve processes.   The new Copilot in Microsoft Viva... --- ### Microsoft Sentinel All-in-One v2 is Now Available to Streamline Deployments - Published: 2023-04-20 - Modified: 2023-04-20 - URL: https://petri.com/microsoft-sentinel-all-in-one-v2/ - Categories: Microsoft Sentinel - Tags: Microsoft Sentinel, News, Security - Article Type: News Microsoft has announced the release of Microsoft Sentinel All-in-One v2. The latest version is designed to help customers reduce costs and speed up the deployment and configuration process. Microsoft Sentinel is a cloud-based Security Information and Event Management (SIEM) solution for Microsoft 365 and Microsoft Azure. Formerly known as Azure Sentinel, the tool allows customers to collect and analyze event logs from multiple sources to detect security threats. Microsoft Sentinel integrates with other security products and third-party tools to help organizations improve their security posture. Microsoft launched the first version of its Microsoft Sentinel All-in-One back in February 2021. It’s available in two flavors called PowerShell and Azure Resource Manager. The company explained that the revamped version includes several new features and capabilities for organizations. Specifically, Microsoft Sentinel All-in-One version 2 automates various tasks to improve productivity, including creating resource groups and the Log Analytics workspace. It also enables health diagnostics capabilities for Automation Rules, Data Connectors, and Analytics Rules. Microsoft says that the latest update installs the Microsoft Sentinel service on top of the workspace. “Microsoft Sentinel All-in-One is aimed at helping customers and partners quickly set up a full-fledged Microsoft Sentinel environment that is ready to use by customers speeding up deployment and initial configuration tasks in few clicks, saving time and simplifying Microsoft Sentinel setup,” Microsoft explained. Microsoft Sentinel All-in-One v2 enables Data Connectors Microsoft Sentinel All-in-One v2 also enables several Data Connectors. The list includes Office 365, Dynamics 365, Microsoft Defender for Cloud, Microsoft 365 Defender,... --- ### Microsoft Releases Hotpatching Windows Server Azure Edition with Desktop Experience - Published: 2023-04-19 - Modified: 2023-04-19 - URL: https://petri.com/hotpatching-windows-server-azure-edition/ - Categories: Windows Server 2022 - Tags: Hotpatching, News, Windows Server 2022 - Article Type: News Microsoft has released Hotpatching support for Windows Server Azure Edition VMs running the Desktop Experience installation mode. The company originally introduced Hotpatching for Server Core in February 2022, and this capability is now available in preview for the Desktop Experience. Hotpatching is a feature that is used to apply security patches to Windows devices without requiring a reboot. It enables users to update critical components of the operating system without stopping services and applications. Hotpatching allows for the replacement of old code with new code while the system is still running. Microsoft highlights that customers can use Hotpatching capabilities to speed up the deployment of updates and minimize reboots. It could also be useful in scenarios where a security update must be applied immediately to address critical vulnerabilities. “With this new support, all Windows Server 2022 Azure Edition VMs in Azure (including Azure Stack HCI) can take advantage of rebootless updates using Preview images! This marks our continued investment in making Azure the best destination to run Windows Server, with many capabilities that optimize your server management through services such as Azure Automanage,” Microsoft explained. You can see how Hotpatching works in the video below: https://www. youtube. com/watch? v=X7RoU5ZOnjg How to create a new Windows Server VM with Hotpatch To get started, IT admins will need to create a Windows Server 2022 Datacenter: Azure Edition Desktop Experience virtual machine with pre-configured Hotpatch. Microsoft has provided a step-by-step guide to create the VM from the Azure portal or programmatically with an ARM template and... --- ### Microsoft's Azure Virtual Desktop App is now Available on the Microsoft Store - Published: 2023-04-19 - Modified: 2023-04-19 - URL: https://petri.com/azure-virtual-desktop-app-microsoft-store/ - Categories: Microsoft Azure, Virtualization - Tags: Azure Virtual Desktop, News, Windows 10, Windows 11 - Article Type: News Microsoft’s new Azure Virtual Desktop app is available to download from the Microsoft Store. The company announced the app’s availability in public preview yesterday, and it runs on both Windows 11 and Windows 10 PCs. Until now, the only way to access Azure Virtual Desktop resources was to download the Microsoft Remote Desktop application. Additionally, it’s possible to use the service via a web browser across all platforms, including Windows, Mac, and Linux. Microsoft explained that the new Azure Virtual Desktop app provides the same features available in the existing Remote Desktop for Windows client. However, the Microsoft Store version of the application also brings some new capabilities for Windows users. First off, the Azure Virtual Desktop app utilizes its own auto-update mechanism, which eliminates the need for manual downloads to get new features and releases. Users can also pin the Azure Virtual desktops and apps to the Start Menu on their Windows devices. To do this, they will need to right-click on any app or desktop and click the Pin to Start Menu button. “Azure Virtual Desktop is a cloud VDI service that delivers secure remote desktop and app experiences from virtually anywhere. It provides the flexibility and control organizations need with exclusive support for Windows 11 and Windows 10 multi-session cost-savings capabilities and the built-in security and reliability of Azure. Company data is safe and secure because it lives in the cloud and not on your personal devices,” Microsoft explained. Enterprise deployment of the Azure Virtual Desktop Store... --- ### Three Ways to Load Balance Applications Running on Azure Stack HCI - Published: 2023-04-19 - Modified: 2023-04-19 - URL: https://petri.com/azure-stack-hci-load-balancing/ - Categories: Azure, Azure Stack HCI - Tags: Azure, Azure Stack HCI - Article Type: Overview When you virtualize an Azure Stack HCI cluster, you may want to load balance applications running on it to optimize server utilization. While there are various built-in options to do that, they may be quite limited depending on your usage scenarios. In this article, I’ll discuss the various options you have to implement Azure Stack HCI load balancing, and I'll also detail all the opportunities and drawbacks they may come with. Using an external load balancer with Azure Stack HCI Using external load balancer appliances with your Azure Stack HCI cluster is a very classic way to evenly distribute incoming traffic across your resources. These external load balancer appliances can be either hardware-based or virtualized. The purpose of these appliances is to load balance your applications and forward traffic to the fabric infrastructure and into the virtualization environment. You can load balance applications running in different clusters and in different locations, and you can see how such an infrastructure works in the image below. Using an external load balancer with Azure Stack HCI (Image credit: Petri/Flo Fox) Using external load balancers with your Azure Stack HCI cluster can really help to improve the overall reliability and availability of your infrastructure. However, this solution also comes with some drawbacks: You’ll always need some external components, and you’ll also need to make additional investments in hardware and/or licenses. External load balancers can also include a cloud-based load balancer such as Azure Traffic Manager, which is a DNS-based traffic load balancer. Azure... --- ### Microsoft Adopts Weather-Themed Threat Actor Naming Taxonomy - Published: 2023-04-19 - Modified: 2023-04-19 - URL: https://petri.com/microsoft-weather-themed-threat-actor-naming-taxonomy/ - Categories: Security - Tags: Microsoft, Security - Article Type: News Microsoft is adopting a new weather-themed taxonomy to describe threat actors across the world. Some nation-state actors such as Russia, North Korea, China, and Iran will be designated with a specific weather event in the new threat actor naming taxonomy, and the company will do the same for more specific threat actor groups.   Microsoft currently tracks over 300 threat actors across the globe, and soon, the company’s threat research group will use terms such as “Midnight Blizzard” or “Hazel Sandstorm” to describe threat actors. And no, this really isn’t a late April Fool's joke.   “With the new taxonomy, we intend to bring better context to customers and security researchers that are already confronted with an overwhelming amount of threat intelligence data,” explained John Lambert, Distinguished Engineer and CVP, Microsoft Threat Intelligence. “It will offer a more organized, memorable, and easy way to reference adversary groups so that organizations can better prioritize threats and protect themselves.   How Microsoft’s new threat actor naming taxonomy works Microsoft acknowledged that other security vendors use their own taxonomies to describe threat actors, and the company is committed to making its new system easy to understand for customers already familiar with other taxonomies. “We will strive to also include other threat actor names within our security products to reflect these analytic overlaps and help customers make well-informed decisions,” Lambert said. You can see below the different threat actor groups that Microsoft tracks with the type of weather event assigned to them.   Actor categoryTypeFamily NameNation stateChinaTyphoonIranSandstormLebanonRainNorth KoreaSleetRussiaBlizzardSouth... --- ### Microsoft Defender for Endpoint Can Now Discover Internet-Facing Devices - Published: 2023-04-19 - Modified: 2023-04-19 - URL: https://petri.com/microsoft-defender-for-endpoint-internet-facing-devices/ - Categories: Security - Tags: Microsoft Defender for Endpoint, News - Article Type: News Microsoft Defender for Endpoint is getting a new update that will enable IT admins to discover internet-facing devices. The new feature leverages the existing network telemetry and RiskIQ integration to automatically map all onboarded devices that are connected to the internet. Microsoft has clarified that identifying and prioritizing internet-facing devices to address potential security threats can be a challenging task for organizations. This is due to the fact that many customers use different classification logics, data sources, and public IP ranges to cross-reference devices in enterprise networks. It makes it difficult for IT admins to verify the accuracy of insights collected across their digital assets. “Microsoft Defender for Endpoint will automatically map and flag onboarded devices that are exposed to the internet in the Microsoft 365 Defender portal, providing more context to security teams and deeper insights into device exploitability. By providing a view into internet-facing devices, security teams can better prioritize alerts, recommendations and incidents as internet-facing devices oftentimes become an adversary's entry point into the corporate network,” Microsoft explained. How does internet-facing device mapping enhance security in Microsoft Defender for Endpoint? As shown in the screenshot above, IT admins can view the classified internet-facing devices on the device inventory page. The information is also available through Advanced Hunting. Microsoft says that administrators can view internet-facing properties in the device pane. Microsoft notes that the ability to identify internet-facing devices is available in public preview for Microsoft Defender for Endpoint customers. It should help organizations remediate vulnerabilities within the... --- ### Researchers Uncover New LockBit Ransomware Created to Encrypt Files on macOS - Published: 2023-04-18 - Modified: 2023-04-18 - URL: https://petri.com/lockbit-ransomware-encrypt-files-macos/ - Categories: Security - Tags: News, Security - Article Type: News Security researchers have discovered a new LockBit ransomware that's designed to target macOS devices. The MalwareHunterTeam detailed on Twitter that the malware enables threat actors to encrypt files stored on Arm-powered Macs. LockBit is a Russian-based group that has historically targeted Windows PCs, Linux, and virtual host machines. The gang has been running ransomware-as-a-service (RaaS) operations since 2019. Over the years, the LockBit group has deployed its malware against many high-profile targets in several countries. Interestingly, Twitter user vx-underground found that the macOS variant of the LockBit ransomware has been available since November 2022. The malware has infected around 1,000 organizations worldwide. Security researchers believe that the LockBit gang managed to steal tens of millions of dollars from the victims. https://twitter. com/malwrhunterteam/status/1647520640268746752? ref_src=twsrc%5Etfw LockBit ransomware doesn’t pose a real threat to Mac devices Apple security expert Patrick Wardle has performed a detailed analysis of the macOS version of LockBit. He found that the malware can encrypt files on macOS, but it currently doesn’t pose any real threat. Wardle also pointed out that LockBit uses an invalid digital signature, and it can’t run easily on a Mac device. The built-in security features (such as System Integrity Protection (SIP) and Transparency, Consent, and Control (TCC)) will help to significantly reduce its impact. “While this may be the first time a large ransomware group created ransomware capable of running on macOS, it’s worth noting that this sample is far from ready for prime time. From its lack of a valid code-signing signature to its ignorance... --- ### Cyberattacks Increased 38% in 2022 - Secure Active Directory Now - Published: 2023-04-18 - Modified: 2023-04-18 - URL: https://petri.com/cyberattacks-increased-38-in-2022-secure-active-directory-now/ - Categories: Webinar - Tags: Active Directory, ITDR, NoAD, NoAds, Security - Article Type: Overview According to a recent report, cyberattacks increased by 38% in 2022 compared to 2021, meaning that it’s more important than ever to be vigilant when it comes to cybersecurity. One way to strengthen operational resilience against cyberattacks is by mastering Identity Threat Detection and Response (ITDR). As Gartner notes, “misused credentials are now the top technique used in breaches... . attackers are targeting Active Directory and the identity infrastructure with phenomenal success. ” Windows Server Active Directory is a legacy technology that is still used by 80% of organizations today. But because it was often poorly implemented and the IT organization has limited expertise on its incident response team, AD poses a significant risk. Some of the biggest concerns are detecting attacks not surfaced by security monitoring tools, vulnerabilities in AD, failure to regularly test a recovery plan, and detecting attacks that move from Windows Server AD to Azure AD. ITDR and operational resilience In this expert-led webinar, 18-time Microsoft Valuable Professional (MVP) Gil Kirkpatrick, Chief Architect for products at Semperis, walks you through the connection between ITDR and operational resilience, recent identity-related cyberattacks, how threat actors breach AD and Azure AD, and how you can close common attack entry points. In this session, you’ll learn: Why ITDR is key to operational resilience Common tactics that threat actors use to target AD/Azure AD as an entry point into your environment How to detect vulnerabilities in hybrid AD environments, including indicators of exposure (IOEs) and indicators of compromise (IOCs) How to guard against... --- ### Microsoft Defender Boosts Threat Intelligence with File Hash and URL Search Capabilities - Published: 2023-04-18 - Modified: 2023-04-18 - URL: https://petri.com/microsoft-defender-file-hash-url-search-intelligence/ - Categories: Security - Tags: Microsoft Defender, News, Security, Threat Intelligence - Article Type: News Microsoft has announced new File Hash and URL Search capabilities for its Microsoft Defender Threat Intelligence solution. It’s a top-requested feature that enables customers to get detailed insights about specific hashes or URLs identified within their enterprise network. Microsoft Defender Threat Intelligence (Defender TI) is a cloud-based service that provides real-time data about threats and vulnerabilities across IT environments. It leverages machine learning and AI capabilities to identify patterns and anomalies and track malicious activities. The service integration with other security solutions to help organizations improve security posture and protect against sophisticated cyber attacks. “Defender TI leverages Microsoft's threat intelligence through static and dynamic analysis of files and URLs within and outside its ecosystem, providing comprehensive coverage of potential threats. The static study examines the file's code without executing it, while dynamic analysis involves executing it in a controlled environment to observe its behavior,” Microsoft explained. How Microsoft Defender's URL and Hash Search Intelligence works? Microsoft highlights that this dual approach lets the Defender TI tool to use static analysis techniques to detect and categorize potential threats. The service also uses dynamic analysis methods to identify and analyze the actual behavior. For instance, IT admins can use the search bar to search any URL or hash value. They will be able to view the reputation score and basic details about the file hash or URL entities. Moreover, the Data tab shows threat intelligence data directly from the MDTI tool. With the increasing incidence of cyberattacks, Microsoft emphasizes the importance of... --- ### Microsoft Teams Now Lets Authorized Users Manage Call Queue and Auto Attendant Greetings - Published: 2023-04-17 - Modified: 2023-04-17 - URL: https://petri.com/microsoft-teams-call-queue-auto-attendant-greetings/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams has introduced support for user-managed call queue and auto-attendant greetings. The long-awaited calling feature lets IT admins designate authorized users to manage greetings and announcements for their respective call queues and auto attendant directly within Microsoft Teams. In Microsoft Teams, the call queues feature is a waiting area that allows incoming calls to be routed to agents who are responsible to answer them. Moreover, auto attendants are automated voice menus that route incoming calls based on caller input. Previously, Microsoft Teams did not give users the ability to manage call queues and auto attendants. IT Pros had to grant specific Teams admin permissions to fulfill this requirement. The latest update now enables designated users to manage greetings without leaving Microsoft Teams. “Changing business conditions often require adjustments to call queue/auto attendant greetings and announcements. However, it can be difficult to identify the right Teams admin to make these changes, and addressing high request volumes can be time-consuming for the responsible admins,” Microsoft explained. How to enable user-managed call queue and auto attendant greetings in Microsoft Teams To get started, IT admins will first need to designate authorized users by creating Voice application policies in the Teams admin center or via PowerShell cmdlets. Once configured, Microsoft Teams users will be able to update the call queue for auto attendant greetings. To do so, click the three dots (... ) menu >> Settings, and scroll down to select the auto attendant or call queue to update the greetings. The new user-managed... --- ### Windows 365 Cloud PCs Now Protected with Host-Based Encryption - Published: 2023-04-17 - Modified: 2023-04-17 - URL: https://petri.com/windows-365-cloud-pcs-encryption-at-rest/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft has announced that all new Windows 365 PCs will now be encrypted at rest. Starting this month, the new security feature will be available for all Windows 365 Cloud PC SKUs at no additional cost. Windows 365 is a cloud-based service that allows users to access a virtual computer from any device with an active internet connection. It lets users create a secure Windows 10 or Windows 11 cloud PC to access their applications and files remotely. Microsoft offers Windows 365 Business and Enterprise Editions on a per-user, per-month subscription basis. “All data is encrypted at rest and flows encrypted from the host to the storage service, where it’s persisted. Essentially, encryption at the host encrypts your data from end-to-end. Encryption at host doesn’t use your Cloud PC's CPU and doesn't impact your Cloud PC's performance,” Microsoft explained. “It’ll also be in addition to the storage encryption that already exists for Cloud PC data at rest today. ” The Windows 365 end-to-end encryption feature uses platform-managed keys to encrypt Temporary disks and ephemeral OS disks at rest. It’s up to the IT Pros to use the customer-managed or platform-managed keys in order to encrypt the OS and data disk caches. Limitations of host-based encryption in Windows 365 Cloud PCs Microsoft notes that customers will need to enable encryption at rest for their new Windows 365 Cloud PCs in the Azure Portal. However, keep in mind that the feature support isn’t available for legacy VM Sizes and ultra disks or premium... --- ### Use PowerShell Functions to Quickly Simplify Your Scripts - Published: 2023-04-17 - Modified: 2024-07-15 - URL: https://petri.com/powershell-functions/ - Categories: PowerShell - Tags: Functions, PowerShell - Article Type: How To Are you creating PowerShell scripts for the first time? One important skill to master is how to write PowerShell functions, which work as a block of code that you can easily reuse. In this article, you will learn about the basics of building your first function and how to call it when you need it. If you want to follow along with the article, you will want to use either Windows PowerShell ISE or Microsoft Visual Studio Code with the PowerShell extension. Ready? Let’s learn about PowerShell functions! What is a PowerShell function? Imagine for a moment that you have a toolbox with a hammer, a wrench, and a pencil. Each tool performs a specific task. We can use independently these tools or in combination with each other to complete a task. PowerShell functions are the tools in your toolbox. A PowerShell function is a block of code that performs a specific task or set of tasks. Functions in PowerShell are like functions in other programming languages and can encapsulate a piece of code that can be called multiple times from within a script or from the PowerShell console. What makes PowerShell functions useful PowerShell functions are very useful for three main reasons: reusability, modularization, and abstraction. Reusability Functions allow you to encapsulate a specific piece of code that can be used repeatedly throughout your PowerShell scripts or modules. Once you define a function, you can call it multiple times with different inputs to perform the same action without... --- ### Outlook for Mac Adds Support for Email Profiles in Preview - Published: 2023-04-14 - Modified: 2023-04-14 - URL: https://petri.com/outlook-for-mac-adds-email-profiles/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, News, Outlook for Mac Microsoft has started testing support for profiles in its Outlook for Mac app. Until now, it wasn’t possible to mute notifications by account, but the new feature helps to create a distraction-free user experience across several accounts. Microsoft highlighted that this release will let Outlook users switch between profiles by pressing the Control + Tab keys. It’s also possible to use Siri automation to switch between personal and work profiles at a scheduled time. “In Outlook Mac, you can now create profiles – for example, one for your work account, and another for your personal account. You can then select your work profile and Outlook will not bother you with any notifications from your personal email accounts. Similarly, if you select your personal profile at home, Outlook will not bother you with work-related emails,” the Office Insider team explained. In Outlook for Mac, the new Profiles feature enables users to apply different themes to their work and personal accounts. It also lets macOS users connect their email accounts to Apple’s Focus Filters. How to create profiles in Outlook for Mac To try out the new feature, users will need to create a new profile in Outlook for Mac by clicking the Globe icon on the navigation bar. Now, follow the on-screen instructions to create a work or personal profile. The new profiles will show up in the navigation bar, and users will be able to edit the default profile preferences by selecting Profiles >> Manage Profiles. Microsoft says that the... --- ### Microsoft Confirms Interoperability Issues Between New Windows LAPS and Legacy LAPS Policies - Published: 2023-04-14 - Modified: 2023-04-14 - URL: https://petri.com/microsoft-interoperability-issues-windows-laps-legacy-laps-policies/ - Categories: Windows 10, Windows 11, Windows Server - Tags: LAPS Tool, News, Windows - Article Type: News Microsoft is investigating an interoperability issue between the new Windows Local Administrator Password Solution (LAPS) and legacy LAPS policies. The company has confirmed that installing the April 2023 Patch Tuesday updates will break the functionality of both Windows LAPS and legacy LAPS on Windows devices. Earlier this week, Microsoft announced the native integration of Windows Local Administrator Password Solution (LAPS) on Windows 11, Windows 10, and Windows Server. The feature allows IT admins to manage local account passwords on Windows PCs. LAPS supports both Active Directory and Azure Active Directory (Azure AD) environments. Windows LAPS policies can be managed with Group Policy templates or the CSP interface on Windows. Up until now, Windows Local Administrator Password Solution was available as a free download on the Microsoft Download Center. Going forwards, the tool will continue to exist as an optional download, but it will now be called “Legacy LAPS. ” “There is a legacy LAPS interop bug in the above April 11, 2023 update. If you install the legacy LAPS GPO CSE on a machine patched with the April 11, 2023 security update and an applied legacy LAPS policy, both Windows LAPS and legacy LAPS will break. Symptoms include Windows LAPS event log IDs 10031 and 10032, as well as legacy LAPS event ID 6,” Microsoft explained. How to fix legacy LAPS interop bug on Windows Fortunately, Microsoft says that it’s working to resolve the problem, and a fix should be available in the near future. In the meantime, the company has... --- ### How to Set an Out Of Office Message in Microsoft Outlook > Outlook can send out-of-office replies when you are unable to respond. Here's how to set up out-of-office messages in Outlook for Windows, Mac, and the web. - Published: 2023-04-14 - Modified: 2023-04-14 - URL: https://petri.com/out-of-office-message-outlook/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, Microsoft Outlook, Outlook, Outlook for Mac, Outlook for Windows - Article Type: How To If you’re planning to go on a vacation, you might want to set automatic out-of-office (OOO) replies in Microsoft Outlook. OOO replies send automated email responses when you are unable to respond. In this article, I’ll explain how to set up out-of-office messages in Outlook for Windows, Mac, and the web. Typically, OOO messages inform the sender that the recipient is away and they may contact someone else in case of any emergency. It’s possible to schedule out-of-office replies in Outlook for a specific timeframe and customize them to suit your needs. How to create out-of-office messages in Outlook for Windows Users can create an out-of-office reply in Outlook for Windows by following these steps: Launch the Outlook for Windows app and click the File tab. Navigate to the top-left corner, select Info, and then click Automatic Replies. Accessing Automatic Replies options in Outlook for Windows (Image credit: Petri/Rabia Noureen) In the Automatic Replies window, select Send automatic replies and enter the message in the text box. Users click the Only send during this time range checkbox to schedule the reply. Select the start and end dates and times respectively. Choose a specific time range for your out-of-office messages (Image credit: Petri/Rabia Noureen) Alternatively, users can choose to disable the out-of-office reply manually by clicking the Do not send automatic replies option in this window. Finally, click the OK button to apply the changes. You can disable out-of-office replies manually (Image credit: Petri/Rabia Noureen) Outlook lets you enable automatic... --- ### Amazon Bedrock Brings Generative AI Capabilities to AWS > Amazon announced yesterday Amazon Bedrock, a new platform allowing organizations to build and scale generative AI applications in the likes of OpenAI’s ChatGPT. - Published: 2023-04-14 - Modified: 2023-06-30 - URL: https://petri.com/amazon-bedrock-generative-ai-aws/ - Categories: Amazon Web Services - Tags: AI, Amazon, Amazon Bedrock, Amazon Web Services, artificial intelligence - Article Type: News Amazon announced yesterday Amazon Bedrock, a new platform allowing organizations to build and scale generative AI applications in the likes of OpenAI’s ChatGPT. Despite being the leading cloud provider with Amazon Web Services, the company was a bit late to join the generative AI race but it’s well positioned to catch up.   “At AWS, we have played a key role in democratizing ML and making it accessible to anyone who wants to use it, including more than 100,000 customers of all sizes and industries. AWS has the broadest and deepest portfolio of AI and ML services at all three layers of the stack,” emphasized Swami Sivasubramanian, VP, Database, Analytics and ML at AWS.   Amazon Bedrock lets companies build and scale generative AI applications With Bedrock, Amazon isn’t interested in building its own version of ChatGPT. Instead, the company will allow other companies to build generative AI apps using foundation models (FMs) from AI startups including AI21 Labs, Anthropic, and Stability AI, as well as Amazon’s own Titan FMs. Amazon Bedrock is currently available in limited preview, but the company claims that it will be “the easiest way to build and scale generative AI applications with FMs” due to the variety of foundation models available to developers. As an example, Amazon’s two Titan models are optimized for summarization, text generation, and detecting harmful content in data, but other models from AI partners are optimized for other things including text processing tasks and image generation. For developers using AWS to train... --- ### Microsoft Provides Guidance to Detect and Block BlackLotus Campaigns - Published: 2023-04-13 - Modified: 2023-04-13 - URL: https://petri.com/microsoft-guidance-blacklotus-campaigns/ - Categories: Security - Tags: News, Security Microsoft has published guidance to help businesses protect their Windows devices against the BlackLotus UEFI bootkit. The company also detailed some mitigation strategies to recover from BlackLotus attacks in enterprise environments. BlackLotus is a sophisticated malware that allows attackers to target the UEFI (Unified Extensible Firmware Interface). It enables threat actors to bypass Secure Boot and hijack the boot process even on updated Windows 11 machines. BlackLotus modifies the registry files to disable OS security mechanisms, including Windows Defender, BitLocker encryption, and Hypervisor-protected Code Integrity (HVCI). Essentially, BlackLotus exploits the CVE-2022-21894 vulnerability to bypass Secure Boot and other advanced protections. Microsoft fixed this vulnerability in January 2022, but the signed binaries still need to be included in the UEFI revocation list “It is critical to note that a threat actor’s use of this bootkit is primarily a persistence and defense evasion mechanism. It is not a first-stage payload or an initial access vector and can only be deployed to a device to which a threat actor has already gained either privileged access or physical access,” the Microsoft Incident Response team explained. Microsoft has detailed a couple of artifacts that should be analyzed to track BlackLotus infections in enterprise environments. The company suggests IT admins to use the mountvol command-line utility to mount the boot partition, and find recently created and locked bootloader files. The Microsoft Incident Response team also recommends security teams to examine registry keys, network logs, Windows Event logs, and boot configuration files. Effective strategies for recovery and... --- ### Microsoft Releases Version 2303 of Microsoft Configuration Manager - Published: 2023-04-13 - Modified: 2023-04-13 - URL: https://petri.com/microsoft-configuration-manager-version-2303/ - Categories: Endpoint Management - Tags: Microsoft Configuration Manager, News Microsoft has released version 2303 of the Microsoft Configuration Manager for the Current Branch. The company announced that Microsoft Endpoint Configuration Manager is now branded as Microsoft Configuration Manager. Microsoft has made improvements to the Cloud Sync feature in Microsoft Configuration Manager. Specifically, IT admins can view collection member sync status (such as success, in progress, and failed) in the Collection Cloud Sync dashboard. In the Monitoring workspace, Microsoft has introduced dedicated dashboards to show the Cloud Sync status for user and device collections. IT Pros can now view Endpoint Security reports With Configuration Manager version 2303, Microsoft added support for Endpoint Security reports in Intune admin center to show insights about tenant-attached devices. Microsoft has introduced audit messages support for authorization failure in the admin service. Up until now, the authorization failure messages used to be logged in log files. Microsoft has added SQL Server 2022 RTM version support for Microsoft Configuration Manager. It’s possible to use the SQL Server version with the central administration site, a primary site, and a secondary site. The Unified update platform (UUP) is now generally available Microsoft has started offering on-prem Unified Update Platform (UUP) that promises smaller and faster uploads of Windows updates. However, the first UUP update will require a one-time 10GB download for businesses to on-premises Windows 11 22H2 devices. Microsoft recommends using the Configuration Manager Current Branch version 2203 or higher, and supported versions of Windows Server Update Services (WSUS). Continuous innovation control integration with Configuration Manager 2303 Microsoft... --- ### LinkedIn Gets Free Profile Verification Features to Prove Identity and Employment - Published: 2023-04-12 - Modified: 2023-04-12 - URL: https://petri.com/linkedin-profile-verification-features/ - Categories: Security - Tags: Linkedin, News Microsoft-owned LinkedIn has announced some new features that will let users verify their identity and current jobs on the professional networking platform. The new identity verification capabilities are available for free and don’t require any paid subscription plans. “On LinkedIn, when you show that you're the real you, you'll have an even greater chance of finding the professional opportunities that matter to you and your community. That’s why we introduced verification options in October 2022, and starting today, we’re rolling out three additional ways to verify your identity and where you work,” said Oscar Rodriguez, VP of Product Management at LinkedIn. LinkedIn has partnered with the electronic identity verification platform CLEAR. It allows employees to securely confirm their identity using a US government-issued ID and phone number. The verification badge (a blue or green check) will appear next to the profile name on LinkedIn. Additionally, LinkedIn now allows users to verify their identity on the platform using their company email addresses. However, this feature is currently available for more than 4,000 organizations. LinkedIn plans to expand support to more companies, though there is no ETA yet. LinkedIn Identity verification with Microsoft Entra Verified ID LinkedIn has announced that users will be able to use a Microsoft Entra Verified ID credentials for verification purposes. Microsoft Entra Verified ID is based on open standards, and the verified ID credentials could be used for rewards programs, background checks, loan applications, and much more. It’s now included with an Azure Active Directory (Azure AD)... --- ### Cohesity Unveils New Partnership with Microsoft to Protect Businesses from Cyber Threats - Published: 2023-04-12 - Modified: 2023-04-12 - URL: https://petri.com/cohesity-announces-partnership-microsoft/ - Categories: Microsoft Azure, Security - Tags: News Cohesity, a data security and management service provider, has announced an expanded partnership with Microsoft. The deal includes new software integrations on both platforms that should help to protect businesses against ransomware threats and cybersecurity attacks. First off, Cohesity has announced the integration of its DataProtect backup and recovery solution with Microsoft Sentinel. It will enable customers to access AI-powered anomaly detection capabilities for incident reporting and ransomware alerts. Cohesity also provides seamless integration with Azure Active Directory (Azure AD) and multi-factor authentication (MFA). It makes it easier for IT admins to securely manage and access the Cohesity Data Cloud and Cohesity Cloud Services. "This expanded collaboration will make it simple for thousands of Microsoft customers and ecosystem partners to access Cohesity's award-winning platform, including its differentiated benefits of scalability, simplicity, and security, in hybrid-cloud or multicloud scenarios," said Sanjay Poonen, CEO and president, Cohesity. Cohesity has also teamed up with data management provider BigID. Powered by BigID, Cohesity data classification enables customers to leverage actionable data intelligence for discovery, security, privacy, and governance across Microsoft environments. Cohesity cloud services now available on Microsoft Azure Additionally, Cohesity has announced that its popular Cohesity Cloud Services are now available on Microsoft Azure, including Cohesity FortKnox. This release lets organizations protect their sensitive data in multi-cloud and hybrid environments. Microsoft plans to announce the general availability of FortKnox on Azure in the coming months. Last but not least, Cohesity has introduced Microsoft 365 support in its DataProtect backup as a service (BaaS)... . --- ### SQL Server Essentials: Using SQL SELECT and the WHERE and HAVING Clauses to Retrieve Data > Here's how to use the SQL SELECT statement to retrieve data from one or more SQL Server tables, and how to filter rows with the SQL WHERE and HAVING clauses. - Published: 2023-04-12 - Modified: 2023-08-24 - URL: https://petri.com/sql-select-where-clause/ - Categories: SQL Server - Tags: SQL Server - Article Type: How To In this article, I’ll cover the basics of using the SQL SELECT statement to retrieve data from one or more SQL Server tables. I’ll also detail how to retrieve selected columns, as well as how to use the SQL WHERE and HAVING clauses to filter rows. The samples in this article all use the AdventureWorksLT2019 sample database. In the previous article of this series, I explained how to populate SQL Server tables using the INSERT, UPDATE, and DELETE statements. These Structured Query Language (SQL) statements modify the contents of a table, but the SQL SELECT statement has a different purpose.   How to use a simple SQL SELECT statement The SQL SELECT statement is used to query data from a table. The following code illustrates the most basic syntax of the SELECT statement. SELECT columns FROM schema_name. table_name; As you should know, table data is organized in a row-and-column format. Each row represents a unique record in a table, and each column represents a field in the data set. The first agreement of the SELECT statement is a list of the column names that will be retrieved. Here, you specify a list of comma-separated columns from which you want to retrieve data. Next, the FROM clause specifies the source table and its schema name if that's required. SQL Server uses schemas to logically group tables and other database objects. The default schema for every database is dbo, and because it's the schema that’s being used here it can be omitted... . --- ### Microsoft Warns IT Admins to Block Shared Key Access in Azure Storage Accounts - Published: 2023-04-12 - Modified: 2023-04-12 - URL: https://petri.com/microsoft-shared-key-access-azure-storage-accounts/ - Categories: Security - Tags: Azure Active Directory, Microsoft Azure, News, Security Security researchers have discovered a design flaw in Microsoft Azure. The vulnerability could enable threat actors to get access to storage accounts and gain full control of the environment. According to Orca Security researchers, the design flaw exists in a mechanism known as Shared Key authorization. Shared Key authorization is enabled by default while creating storage accounts, and it can be exploited easily. Microsoft claims that Azure automatically generates two 512-bit storage account access keys while setting up a storage account. The access keys, which are utilized for granting data access, have a total length of 512 bits. The data access can be provided either via Shared Key authorization or with SAS tokens signed with the shared key. Orca Security found that threat actors could manipulate Azure Functions to steal access tokens of highly privileged identities. This means that a hacker who gains access to the Storage Account Contributor role could potentially access sensitive business assets, and execute remote code (RCE) on virtual machines. “At this point stealing credentials and Escalating Privileges, as scary as it may sound, is fairly easy. Once an attacker locates the Storage Account of a Function App that is assigned with a strong managed identity, it can run code on its behalf and as a result acquire a subscription privilege escalation (PE),” Orca Security explained. Microsoft: Shared Key authorization is a "by-design flaw" in Azure Storage accounts The Microsoft Security Response Center investigated the problem and concluded that it's a design flaw rather than a... --- ### Windows LAPS is Now Natively Integrated on Windows 11, Windows 10, and Windows Server > The April 2023 Patch Tuesday updates make Windows LAPS an inbox feature on Windows 11, Windows 10, and Windows Server 2019 and newer. - Published: 2023-04-12 - Modified: 2023-05-03 - URL: https://petri.com/windows-laps-integration-windows-11-10-server/ - Categories: Windows 10, Windows 11, Windows Client OS, Windows Server - Tags: LAPS Tool, Microsoft LAPS, Windows 10, Windows 11 - Article Type: News Microsoft’s new Windows Local Administrator Password Solution (LAPS) is now natively integrated into Windows 11, Windows 10, and Windows Server. Windows LAPS lets IT Pros secure local administrator accounts on Windows devices, and it supports on-premises Active Directory and Azure Active Directory scenarios.   With the release of the April 2023 Patch Tuesday updates yesterday, Windows LAPS is now an inbox feature that will be updated via the normal Windows patching process. The existing Microsoft security product known as Local Administrator Password Solution (LAPS), which is an optional download, continues to exist but Microsoft now refers to it as “Legacy LAPS. ”  Windows LAPS brings new features for on-premises AD and Azure AD scenarios The native version of Windows LAPS adds support for password encryption, password history, and automatic password rotation. Windows LAPS also adds Directory Services Restore Mode (DSRM) backups to improve the security of domain controllers. Windows LAPS supports rich policy management via both Group Policy and Configuration Service Provider (CSP), and a new PowerShell module also gives IT pros better password management capabilities. Additionally, Windows LAPS adds support for hybrid-joined devices.   The new PowerShell module for Windows LAPS (image credit: Microsoft) If you’re not ready yet to migrate over to the new features, Windows LAPS also offers an emulation mode. “We do strongly recommend adopting the new features in order to take advantage of the new security improvements,” Microsoft explained yesterday on the Windows IT Pro blog. “Doing this will be much more secure for these sensitive passwords, especially... --- ### Microsoft Releases April 2023 Patch Tuesday Updates for Windows 11 and Windows 10 > The April 2023 Patch Tuesday updates for Windows 11 and Windows 10 bring fixes for 97 vulnerabilities, and they also make the new Windows LAPS an inbox feature - Published: 2023-04-11 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-releases-april-2023-patch-tuesday-updates-for-windows-11-and-windows-10/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released today the April 2023 Patch Tuesday updates for Windows 11 and Windows 10. This month, Microsoft fixed 97 vulnerabilities in Windows and other components, with one of them being already exploited by attackers.   On the quality and experience updates front, Microsoft is making the new Windows Local Administrator Password Solution (LAPS) an inbox feature on Windows 11, Windows 10, and Windows Server 2019 or newer. The feature is now natively integrated and will be serviced via the normal Windows patching process.   Let’s start with the long list of security flaws Microsoft released this month, which includes a good amount of remote code execution vulnerabilities. 97vulnerabilities fixed in the March Patch Tuesday updates Among the 97 security vulnerabilities addressed with the April 2023 Patch Tuesday updates, 7 are rated “Critical” and the rest are rated “Important. ” The Zero Day Initiative also pointed out that none of the bugs disclosed during the recent Pwn2Own Vancouver are being addressed with these updates.   Here are the most important patches you should know about this month:  CVE-2023-28252: This is a Windows Common Log File System Driver Elevation of Privilege Vulnerability that’s already being exploited by attackers to gain SYSTEM privileges.   CVE-2023-28231: This DHCP Server Service Remote Code Execution Vulnerability can be exploited by an authenticated attacker using a specially crafted RPC call to the DHCP service. CVE-2023-28219: This Layer 2 Tunneling Protocol Remote Code Execution Vulnerability requires an unauthenticated attacker to send a specially crafted connection request to a RAS server... . --- ### Microsoft's New Viva Engage App Now Available on iOS and Android - Published: 2023-04-11 - Modified: 2023-04-11 - URL: https://petri.com/microsoft-viva-engage-app-ios-android/ - Categories: Viva - Tags: Microsoft Viva, News, Viva Engage Microsoft announced yesterday that its Yammer mobile apps for iOS and Android have now been rebranded as Viva Engage. The new app should make it easier for employees to connect with coworkers, find and share content and engage in communities. Viva Engage is an evolution of the Yammer Communities app in Microsoft Teams that launched back in July 2022. The new service is designed to enable organizations to connect and engage with their employees. Viva Engage provides several tools to help employees with community building, self-expression, knowledge sharing, and leadership engagement. Microsoft has decided to eliminate the Yammer brand because having two separate social platforms was confusing for enterprise customers. This situation also made it challenging for IT admins to promote adoption and provide clarity for end users. “With the new Viva Engage app on iOS and Android, you can stay connected with your colleagues, get updates on important projects, and share information easily, all from your mobile device. The app comes with a modern interface, support for device-specific features, and an improved user experience,” Microsoft explained. Getting started with the Viva Engage mobile app Microsoft highlights that the new Viva Engage app lets users view important announcements and messages directly from their mobile devices. It also makes it easier for users to participate in org-wide communities on the go. The Viva Engage app lets users upload videos and photos and react to messages from the notifications. It’s also possible to participate in Live Events while using other applications. Microsoft... --- ### Microsoft Ends Support for SharePoint Server 2013 Today - Published: 2023-04-11 - Modified: 2023-04-11 - URL: https://petri.com/microsoft-sharepoint-server-2013-support-end/ - Categories: SharePoint 2013 - Tags: News, SharePoint 2013 Microsoft is officially killing off its extended support for SharePoint Server 2013 today. It’s been a long time coming, but today marks the end of updates for SharePoint Server 2013 and SharePoint Server 2013 Service Pack 1 (SP1). Microsoft initially released SharePoint Server 2013 back in January 2013. It’s a content management and collaboration platform that included various features and capabilities, including social networking. It also supported a powerful search experience, business intelligence, and automated business processes and workflows. Microsoft ended mainstream support for SharePoint Server 2013 five years ago on April 10, 2018. Starting today, the company will no longer offer feature and security updates, bug fixes, and other technical support for SharePoint Server 2013. Microsoft suggests upgrading to SharePoint 2019 or SharePoint Online Microsoft recommends customers to migrate their content to SharePoint Server 2019 or SharePoint Server Subscription Edition in on-premises environments. The company plans to provide extended support for SharePoint 2019 until January 9, 2024. Alternatively, Microsoft notes that organizations can also choose to switch to the cloud to leverage the new features of SharePoint Online. It should help to reduce the resources required to maintain the platform in on-premises environments. What happens to organizations still using SharePoint Server 2013? Microsoft has warned that customers who will continue to run SharePoint Server 2013 would be vulnerable to cyberattacks. They will need to deploy additional security solutions (such as advanced firewalls and intrusion detection systems) to protect their unsupported environments. Microsoft noted that organizations running SharePoint Server 2013... --- ### Windows Autopatch Now Lets IT Admins Customize Quality Updates Deployment Cadence - Published: 2023-04-11 - Modified: 2023-04-11 - URL: https://petri.com/windows-autopatch-customize-quality-updates-deployment-cadence/ - Categories: Windows 10, Windows 11 - Tags: News, Windows Autopatch Microsoft has announced several new capabilities added to its Windows Autopatch service this month. The company has introduced a new feature that enables customers to set custom schedules for the deployment of quality updates for each ring in their tenants. Specifically, IT admins can now configure deadline-driven or scheduled install settings in Microsoft Intune. The scheduled install feature lets IT Pros apply updates outside of working hours on Windows machines. Deadline-driven customizations enable customers to modify deadlines, deferrals, and grace periods within 14 days. Last month, Microsoft unveiled a new Windows Autopatch feature that lets IT admins block updates for Microsoft 365 Apps. The company has announced that this capability is now generally available for all enterprise customers. “Since Windows Autopatch currently sets enrolled devices to Microsoft 365 App updates via the Monthly Enterprise Channel, this feature allows organizations subscribed to different channels to still take advantage of Windows Autopatch,” Microsoft explained. Microsoft has also announced some enhancements coming to the Tenant management blade. The company will alert IT admins about expired licenses that need to be replaced or renewed to retain access to Windows Autopatch. Windows Autopatch to add new reporting features and much more Microsoft has also announced several new capabilities that will soon be available in public preview in Windows Autopatch. First up, IT admins will be able to use Windows Autopatch to deploy Windows 11 updates. Additionally, they will be able to utilize Autopatch groups to apply various cadences and ring configurations to a specific set... --- ### Microsoft Teams Adds New Snapchat Lenses to Spice Up Virtual Meetings - Published: 2023-04-10 - Modified: 2023-04-10 - URL: https://petri.com/microsoft-teams-snapchat-lenses-meetings/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News Microsoft Teams has added a new feature that should make it easier for users to spice up their virtual meetings. Indeed, Microsoft has partnered with Snap to bring new Snapchat Lenses to Microsoft Teams meetings. With this release, Microsoft Teams users can now access a collection of 26 popular Snapchat Lenses during meetings. Participants can use the Lenses to transform themselves into cartoon characters and add a variety of backgrounds to their video feeds. The feature eliminates the need to use third-party apps to use these Lenses in Teams. “Lenses allow users to add augmented reality (AR) effects to video calls, bringing livelier human interaction to meetings. AR captures and processes information about our physical environment and then overlays it with virtual objects and information, allowing us to see and experience the world in a different way. Since AR uses cameras, sensors, and displays, which are already built into video conferencing, it is a perfect and seamless fit with Teams,” Microsoft explained. How to enable Snapchat Lenses in Microsoft Teams To turn on Snapchat Lenses before a meeting, Microsoft Teams users will need to click Video Effects and select the More Video Effects option. Navigate to the right pane and click Snapchat under the Filters category. Select any Lens and then click the Join Now button. Alternatively, Microsoft Teams users can turn on Snapchat Lenses during an ongoing meeting. To do this, click the More (... ) menu at the top of the screen and select Video Effects. Navigate... --- ### 5 Strategies for Blocking Cyberthreats in Windows - Published: 2023-04-10 - Modified: 2023-04-17 - URL: https://petri.com/fim-and-system-hardening-block-detect-cyberthreats-in-windows/ - Categories: Webinar - Tags: File Integrity Monitoring, NoAD, NoAds, Security, System Hardening, Windows, Windows Server - Article Type: Overview Register for our webinar on April 12th to discover how to establish hardened configurations for your Windows servers and endpoints, and how to monitor file activity to spot potential attacks in progress. Dirk Schrader, VP of Security Research at Netwrix, will cover: Using best-practice benchmarks to establish hardened configurations across your IT estate. Tuning baselines to fit your needs and risk tolerance. Monitoring file activity while avoiding alert fatigue. Promptly remediating configuration drift. And how to maintain and prove regulatory compliance. Most compliance regulations and security frameworks recommend implementing system hardening and FIM whenever possible. So, this webinar is essential for organizations that need to be compliant or want to avoid security breaches and disruptions to business processes. System hardening and FIM System hardening involves changing the out-of-box configuration of Windows and Windows Server to a more secure default that helps protect against common threats. You should establish secure baselines that provide additional protection but also don't break important functionality. File Integrity Monitoring (FIM) checks operating system and application files to ensure they haven't been modified or are corrupted. Comparing files to a known and trusted baseline allows IT to establish whether changes might indicate a problem or malicious activity. FIM is an important component of Windows change auditing and it is required to meet some compliance mandates. In the webinar, you will learn how FIM can help with system hardening, and block and detect malware and other cyberthreats that might endanger your environment. Register now! --- ### Microsoft Warns About New Destructive 'Mercury' Attacks on Hybrid Environments - Published: 2023-04-10 - Modified: 2023-04-11 - URL: https://petri.com/microsoft-destructive-attacks-hybrid-environments/ - Categories: Security - Tags: Azure Active Directory, News, Security Microsoft has warned that an Iranian state-backed threat actor dubbed Mercury has been carrying out destructive attacks in hybrid environments. The Microsoft Threat Intelligence team has found that the attackers teamed up with another hacking group code-named DEV-1084 to target both on-premises and cloud customers. According to Microsoft, Mercury first exploited the log4j vulnerability to gain initial access to the system. The threat actors established persistence and then moved laterally throughout the enterprise network. Once done, Mercury handed out network access to the DEV-1084 group that launched two separate attacks against on-premises resources and Microsoft Azure. Specifically, the threat actor leveraged Group Policy Objects (GPO) to interfere with the security tools and distribute ransomware in the NETLOGON shares on Active Directory domain controllers (DCs). Additionally, the hacking group used the AADInternals tool to harvest credentials for the Azure AD Connector account. They also used RDP to compromise another Global Administrator account and bypass MFA. "Azure AD Connector account and the compromised administrator account were then used to perform significant destruction of the Azure environment—deleting within a few hours server farms, virtual machines, storage accounts, and virtual networks. We assess that the attacker’s goal was to cause data loss and a denial of service (DoS) of the target’s services,” the Microsoft Threat Intelligence team explained. How to block destructive attacks in on-prem and Azure AD environments Microsoft has detailed a couple of recommendations to protect organizations against similar attacks. Customers should enable Tamper protection features in Microsoft Defender for Endpoint to... --- ### Microsoft Exchange Online Delays Deprecation of Client Access Rules Until 2024 - Published: 2023-04-10 - Modified: 2023-04-10 - URL: https://petri.com/exchange-online-delay-client-access-rules-deprecation/ - Categories: Exchange Online - Tags: Exchange Online, News Last year, Microsoft unveiled that it would phase out Client Access Rules (CARs) in Exchange Online in September this year. Now, the company has announced that it has delayed the deprecation of CARs, and it’s expected to be complete until September 2024. Client Access Rules (CARs) is a feature that enables IT admins to allow or block client connections to Exchange Online based on various parameters, including user agents, IP addresses, and authentication methods. The feature lets administrators configure policies to protect Exchange Online resources against security risks, security risks, and ensure compliance with regulatory requirements. Last October, Microsoft disabled CARs for Exchange Online customers who were not using the cmdlets. This change was aimed at encouraging organizations to switch to more secure methods like continuous access evaluation (CAE) and Azure Active Directory (Azure AD) conditional access. Microsoft has acknowledged that some enterprise customers are facing challenges while migrating certain CARs to conditional access and CAE. This means that these organizations won’t be able to complete the migration process until September this year. “We have been working with customers to learn how they use CARs and how they can migrate to these newer features, but we have encountered a few scenarios where it's not possible to migrate current rules. For these scenarios, we will allow the use of CARs beyond the previously announced September 2023 deadline until we can support them,” the Exchange team explained. Microsoft Exchange team to help IT admins with Client Access Rules migration plans Microsoft explained... --- ### How to Install WSL2 on Windows 10 and Windows 11 > Here's how to install WSL2 on Windows 10 and Windows 11 to run Linux repositories natively on your PC, no virtual machine required. - Published: 2023-04-10 - Modified: 2023-04-11 - URL: https://petri.com/install-wsl2-windows/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Windows 10, Windows 11, Windows Subsystem for Linux, WSL, WSL 2 The Windows Subsystem for Linux 2 (WSL2) allows Windows 10 and Windows 11 users to run a Linux distribution without using a virtual machine. Recent versions of Windows 10/11 make it very easy for developers to get started with WSL2 and run Linux repositories natively. In this article, I'll explain how to install WSL2 on Windows 10 or Windows 11, and I'll also show you everything you can do with WSL2 on Windows. Install WSL2 on Windows 10 and Windows 11 You can install WSL2 on Windows 10 or Windows 11 by running the following PowerShell command (with admin privileges): wsl --install This command will install WSL2, the virtual machine platform, as well as the Ubuntu Linux distribution for you. Reboot your PC to see them appear in your Start Menu. Keep reading for more detailed instructions on how to install WSL2 on a virtual machine or on an older version of Windows 10 version 1909 or older. What is the Windows Subsystem for Linux 2 (WSL2)? Many people across various user bases cried joy when Microsoft announced the Windows Subsystem for Linux in 2016. This developer-focused feature allows a wide variety of users to run a Linux environment natively in Windows 10 and Windows 11 without needing to dual boot or use a virtual machine. All the required technology is now a part of Windows. There are two versions available: WSL1 and WSL2. In May of 2019, WSL2 was announced with some significant new features, most notably a... --- ### Microsoft Entra Entitlement Management to Update User Admin Role - Published: 2023-04-07 - Modified: 2023-04-07 - URL: https://petri.com/microsoft-entra-entitlement-management-user-admin-role/ - Categories: Identity Service - Tags: News Microsoft has announced some important changes coming to its Microsoft Entra Entitlement Management service. Starting on May 3, employees in the user admin role won’t be able to perform identity governance tasks such as managing Entitlement Management catalogs and access packages. Microsoft Entra Entitlement management is an identity management feature that lets customers manage and control access to applications and resources. It helps to automate access requests, access assignments, reviews, and expiration workflows. Entitlement management makes it easier for IT admins to ensure that only authorized internal and external users have access to groups, applications, and SharePoint Online sites. Essentially, an access package is a bundle that comprises all the necessary resources that a user requires to carry out their tasks. These access packages are defined within containers called catalogs. User Admin role updates in Microsoft Entra Entitlement Management Going forwards, Microsoft says that organizations will need to use the Identity Governance Administrator role for daily management tasks. It’s highly recommended that IT admins should ensure that only those users have permission to manage Entitlement Management catalogs and access packages. “We want to ensure minimal customer impact when we remove Entitlement Management permissions from the User Administrator role. By assigning admins the Identity Governance Administrator role, they will have the necessary permissions to continue managing catalogs and access packages,” Microsoft explained in a message on the Microsoft 365 admin center. Microsoft explained that IT admins will be able to manage role assignments through the Azure Active Directory admin center or... --- ### Microsoft Edge Gets New Browser Essentials Tool to Monitor Security and Performance Issues - Published: 2023-04-07 - Modified: 2023-04-07 - URL: https://petri.com/microsoft-edge-browser-essentials-tool/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News Microsoft has started testing a new Browser Essential feature in Microsoft Edge. The new tool provides a unified dashboard that enables users to monitor the performance and security of the web browser. Microsoft explained that users can click on the Browser Essentials toolbar icon to view key performance metrics in Microsoft Edge. It provides insights about features such as the Performance Detector, Sleeping Tabs, and Sleeping Tabs. “We know it can be difficult to understand whether a browser is really giving you a great experience. For that reason, we’ve improved upon the previous Performance Hub and created Browser essentials to reveal how Microsoft Edge’s performance and security features make your everyday browsing fast, efficient, and safe,” the Microsoft Edge team explained. Microsoft Edge uses the SmartScreen service to protect users from phishing and malware websites and applications. Browser Essentials includes reports that offer insights into the harmful websites and downloads that have been scanned and blocked within the browser. Last but not least, the Performance Detector feature helps to detect performance issues (such as high RAM and CPU usage of background tabs) in Microsoft Edge. It uses Browser Essentials to provide recommended actions to reduce memory usage and other resources. Microsoft plans to add support for more recommendations in future releases. How to access Browser Essentials in Microsoft Edge? Currently, the Browser Essentials tool is only available to all Edge Insiders in the Canary Channel and select testers in the Dev Channel. Browser Essentials will eventually replace the existing Performance... --- ### SQL Server Essentials: SQL Server Sample Databases > Here's how everything you need to know about installing and using SQL Server sample databases including Northwind, AdventureWorks, and WideWorldImporters. - Published: 2023-04-07 - Modified: 2024-11-19 - URL: https://petri.com/sql-server-sample-databases/ - Categories: SQL Server - Tags: Microsoft SQL Server, SQL Server - Article Type: How To SQL Server sample databases can be very useful for learning new techniques or trying out various samples of code. In this article, I’ll detail what you can do with the main SQL Server sample databases including Northwind, AdventureWorks, and WideWorldImporters. I'll also show you how to find these SQL Server sample databases and install them. What are SQL Server sample databases? SQL Server sample databases contain fictitious information that can be safely used for testing and development. However, no sample databases have been installed during the SQL Server installation process since SQL Server 2005. At some point, Microsoft felt that sample databases were a potential security exposure, and that's why they removed them from the SQL Server code base. That said, over the years Microsoft has provided several sample databases for the SQL Server relational database management system and Analysis Services. The main sample databases available today are Pubs, Northwind, AdventureWorks, and WideWorldImporters. As you'll see throughout this article, these different sample databases give you different types of data you can use for your testing and development scenarios. Pubs and Northwind sample databases Pubs is the first sample publisher database that came with SQL Server, and it was originally developed by Sybase. It's based on a publishing company tracking books, authors, and sales. The Pubs sample databse used to be available as an option as a part of the SQL Server installation process until the SQL Server 2005 release. However, many SQL Server users thought it was too simple... --- ### Windows 365 Frontline Cloud PC Service Brings New Capabilities for Shift and Part-Time Workers - Published: 2023-04-06 - Modified: 2023-04-06 - URL: https://petri.com/microsoft-windows-365-frontline-cloud-pc/ - Categories: Windows 365 - Tags: News, Windows 365 Microsoft announced this morning that its Windows 365 Cloud PC service is now available in public preview for frontline workers. The new offering is designed to provide secure and personalized experiences for shift workers, seasonal staff, and part-time employees. Microsoft introduced its Windows 365 Cloud PC service back in July 2021. It enables users to remotely access their Windows 10 and Windows 11 PCs on any device through a web browser. Microsoft’s new Windows 365 Frontline offering lets organizations use a single license to configure up to three Cloud PCs. “With Windows 365 Frontline, each license you purchase enables three people to access a Cloud PC during their work hours. This means that instead of purchasing a license for every shift worker, you can purchase only enough licenses for the number of active employees at a given time,” explained Wangui McKelvey, GM for modern work apps at Microsoft. Windows 365 Frontline lets IT admins set session time limits Microsoft highlighted that Windows 365 Frontline also includes some additional capabilities to meet the needs of businesses with shift or part-time workers. First up, IT admins can use the automatic lock screen feature to set up a configuration that will log users out of their Cloud PCs after a specific period of inactivity. It helps to protect sensitive data and confidential information from unauthorized access. Microsoft has introduced the ability to automatically sign out users at the end of their shifts. There are also some new management features to deploy Windows updates... --- ### Amazon GuardDuty Adds Support for Amazon EKS Runtime Monitoring - Published: 2023-04-06 - Modified: 2023-04-06 - URL: https://petri.com/amazon-guardduty-amazon-eks-runtime-monitoring/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News Amazon GuardDuty has introduced Amazon EKS Runtime Monitoring support this week. The new capability enables organizations to detect runtime threats from more than 30 security findings to protect EKS clusters. Amazon launched the Amazon GuardDuty feature back in 2017. It’s a threat detection service that uses AI and other security tools to monitor AWS accounts for suspicious activities and potential security threats. Amazon GuardDuty provides detailed insights and real-time alerts to help security teams investigate and remediate potential security issues. The new EKS Runtime Monitoring capability utilizes a fully managed EKS add-on to provide insights into the specific container runtime activities. These include network connections, file access, and process execution. These insights make it easier for IT admins to detect and contain potential threats before they escalate. “GuardDuty can now identify specific containers within your EKS clusters that are potentially compromised and detect attempts to escalate privileges from an individual container to the underlying Amazon EC2 host and the broader AWS environment. GuardDuty EKS Runtime Monitoring findings provide metadata context to identify potential threats and contain them before they escalate,” Amazon explained. Amazon EKS runtime monitoring pricing details Amazon is offering a free 30-day trial of GuardDuty for EKS Runtime Monitoring for all existing GuardDuty accounts at no additional cost. However, customers will be required to pay for the service after the completion of the trial period. It is important to note that the cost is based on the number and size of protected EKS workloads, and it’s measured in... --- ### Microsoft Edge Workspaces Now Available in Preview to Streamline Collaboration - Published: 2023-04-06 - Modified: 2023-04-06 - URL: https://petri.com/microsoft-edge-workspaces-limited-preview/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News Microsoft has announced that the Workspaces feature is now available in limited public preview in Microsoft Edge. The new collaboration enables users to share a set of browser tabs and favorites with multiple people. Microsoft first unveiled the Workspaces feature for its Edge browser at Ignite 2022. Up until now, it was only available in public preview for enterprise customers. With Edge Workspaces, consumers can now collaborate in a group space within the browser. The shared tabs are updated in real-time as people work within a workspace. According to Microsoft, the Workspaces feature enables Microsoft Edge users to plan trips, organize activities, and more. It also makes it easier for managers to add new people to a project. “In Workspaces, you can create a single, shared view of your group’s web pages and documents within a unique browser window, with real-time updates. For that trip you’re planning, you can invite those in your group to view the same pages, share flights, lodging options, and even create a shared document to collaborate on trip activities and plans,” Microsoft explained. Microsoft clarified that it had introduced some privacy and security controls to protect customer data. This means that the Workspaces feature won’t share private information (such as passwords, collections, extensions, cookies, and downloads) with others who can access the shared workspace. How to get access to the Microsoft Edge Workspaces preview Microsoft Edge Workspaces are available for users on macOS and Windows devices. However, users will need to be signed in to... --- ### What’s New in Windows – March 2023 - Published: 2023-04-06 - Modified: 2023-04-17 - URL: https://petri.com/whats-new-in-windows-march-2023/ - Categories: Windows 11 - Tags: Microsoft Edge, Windows, Windows 10, Windows 11, Windows Insider - Article Type: News Apart from the release of Windows 11 22H2 Moment 2, it’s been a fairly quiet month. But not for Windows Insiders, where there’s been a ton of new features added. So, let’s get started! Windows 11 22H2 Moment 2 now generally available The primary change in this update is to the Search box in the taskbar, which is now typable. There’s also partial integration with Bing A. I. While you can’t interact with the Bing A. I. chatbot directly in Windows 11, you do get the option to open Bing Chat when searching. Other updates include the ability to access Windows Studio Effects from Quick Settings, assuming you have a compatible device. And the taskbar has been optimized for 2-in-1 devices. There’s now a swipe gesture to switch between collapsed and expanded states. For users who have joined their Windows 11 device to Azure Active Directory (Azure AD), there are also A. I-powered recommendations in the bottom half of the Start menu. As a reminder, Recommended on the Start menu displays files in Microsoft 365. I’ve read in several places that search is now faster in File Explorer and that it should better surface recommended local and cloud files. In my testing, it seems as slow as ever. Quick Assist has got a minor design makeover and it is now installed by default on Windows 11 22H2 devices. It is also now available by default on the Start menu. But again, that doesn’t appear to be the case on devices that are... --- ### Microsoft Releases Azure Firewall Updates to Troubleshoot Network Performance Issues - Published: 2023-04-05 - Modified: 2023-04-05 - URL: https://petri.com/microsoft-azure-firewall-updates/ - Categories: Microsoft Azure - Tags: Azure Firewall, News Microsoft has announced some new logging and metric improvements to provide more insights into Microsoft Azure Firewall traffic. The Latency Probe metric feature enables IT admins to monitor the overall latency and health of Azure Firewall to troubleshoot app performance issues. “In the case that Azure Firewall is experiencing latency, this can be due to various reasons, such as high CPU utilization, traffic throughput, or networking issues. As an important note, this tool is powered by Pingmesh technology, which means that the metric measures the average latency of the firewall itself. The metric does not measure end-to-end latency or the latency of individual packets,” Microsoft explained. Previously, the firewall logs didn’t show the complete journey of the packet in the TCP handshake. Microsoft has introduced Flow Trace logs that allow IT administrators to monitor all packets traversing through the firewall. The capability makes it possible to view the return packet, failed connections, and unrecognized packets. Microsoft Azure Firewall now supports Top Flow logs The Top Flows log feature shows the top connections that are responsible for the maximum data transfer in a specific time frame through the firewall. IT admins can monitor the top traffic to detect any unexpected or anomalous traffic. The Top Flows log also helps to allow or block network traffic based on the results. Microsoft says that the new logging and metric capabilities are available in public preview for Azure Firewall customers. You can check out this support page to learn more about configuring Flow Trace... --- ### Microsoft Teams Adds New My Day View in 'Tasks by Planner and To Do' App - Published: 2023-04-05 - Modified: 2023-04-05 - URL: https://petri.com/microsoft-teams-my-day-view-tasks-by-planner-and-to-do/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News Microsoft has released a new My Day view in the Tasks by Planner and To Do app for Microsoft Teams. The feature enables users to consolidate their task lists to effectively organize and prioritize important workflows. “'My Day' view brings together tasks from various sources such as Microsoft To Do, Microsoft Planner (tasks assigned to you in Plans), and flagged emails from Microsoft Outlook. Now, you can view all your tasks in a single, unified interface. If you’re concerned about a task today, just add it to My Day by right-clicking the tasks and selecting the ‘Add to My Day’ option,” Microsoft explained. Microsoft highlights that the My Day view lets users sort tasks by priority level and due date. The feature also makes it easier for the users to track their progress throughout the day. Moreover, the My Day view provides an option to mark tasks as completed to declutter their workspace. How to access the My Day view in the 'Tasks by Planner and To Do' App for Microsoft Teams Microsoft Teams users can access the My Day view by following the steps listed below: Launch Microsoft Teams and navigate to the sidebar and click the Apps tab. Use the search bar to find and install the Tasks by Planner and To Do app. It’s also possible to pin the app in the left navigation bar in Microsoft Teams. To do so, users will need to right-click on the app and select the Pin option. Users can access... --- ### Outlook for Windows Preview App Starts Adding Support for Third-Party Accounts > Microsoft Outlook for Windows preview app now supports Gmail accounts. iCloud, Yahoo, and other IMAP accounts are next, and so is offline support. - Published: 2023-04-05 - Modified: 2023-04-05 - URL: https://petri.com/outlook-for-windows-preview-gmail-support/ - Categories: Outlook - Tags: Microsoft 365, Office Insider, Outlook, Outlook for Windows Microsoft has started rolling out support for third-party accounts in its Outlook for Windows preview app, which is currently available for Office Insiders. The web-based version of Outlook now lets users add a Gmail account in addition to personal Microsoft accounts and work and school accounts, and the preview client also supports displaying calendars and contacts from Google accounts.   “Longtime Outlook for Windows users will note that third-party account support has also been improved over the classic client experience, which didn’t have Google Calendar or Contacts support. Now people can use their Gmail email, Google Calendar and Contacts within the new Outlook for Windows preview. This has been a popular ask and is made possible by our modern codebase in the new Outlook for Windows,” the Outlook team said yesterday.   Outlook for Windows preview now supports Gmail accounts (Image credit: Microsoft) Outlook for Windows Preview will soon support more third-party email accounts Support for Gmail accounts will roll out gradually to beta testers, and a pop up will warn them when the ability to add a Google account becomes available to them. The calendar experience also supports adding multiple shared calendars, multiple time zones, as well as displaying daily weather in the Calendar view.   If Gmail is one of the most popular email services out there, the Outlook for Windows preview will soon add support for Yahoo, iCloud, and other IMAP email accounts. Native support for . ics files is also in the pipeline, along with offline support. Outlook for... --- ### What's New With Microsoft's Power Platform in March 2023 > Microsoft's Power Platform added new generative AI features in March including a New AI Copilot for Power Apps and AI Builder and Copilot in Power Automate. - Published: 2023-04-05 - Modified: 2023-04-05 - URL: https://petri.com/microsoft-power-platform-march-2023-updates/ - Categories: Power Platform - Tags: copilot, power apps, Power Automate, Power BI Did someone say it’s already Spring? It sure feels like it with all of the Microsoft Power Platform changes and new AI-enhanced features that the company touted in March. Don’t worry though, we’ll whet your appetite and provide some links below. New Microsoft 365 Copilot If you missed the announcement of the Microsoft 365 Copilot last month, then you may have been visiting another galaxy. Copilot is entering the fray across Microsoft Office to assist you in creating, synthesizing, linking, sharing, and much more for the Microsoft 365 products we use at work every day. It is designed to be a virtual assistant that you can interact with using use natural language. The new Microsoft 365 Copilot (Image credit: Microsoft) New AI Copilot for Power Apps Microsoft also announced last month a new AI Copilot for Power Apps that you can sign up for, if you live in the United States and have an environment in English, as an experimental feature. In short, it's a very quick way for someone with very little app-building experience to create an app, with sample data, built right on top of Dataverse. Yes, that will make it a premium feature, but the possibility of empowering your entire organization as Power Apps makers is looking more realistic. I’ve personally tried and demonstrated Copilot for Power Apps, and it works! Microsoft also has a new AI Copilot for Power Apps (Image credit: Microsoft) As Microsoft held its Business Applications Business Applications Launch Event yesterday, you... --- ### Microsoft's Surface Thunderbolt 4 Dock Replaces Surface Connect With USB-C Port > Microsoft introduced yesterday its latest Surface Dock with Thunderbolt 4, which now uses a USB-C port to connect to Surface devices instead of Microsoft’s proprietary Surface Connect port. - Published: 2023-04-05 - Modified: 2023-04-05 - URL: https://petri.com/microsoft-surface-thunderbolt-4-dock/ - Categories: Hardware - Tags: Microsoft, Surface, Surface Dock, Thunderbolt Microsoft introduced yesterday its latest Surface Dock with Thunderbolt 4, which now uses a USB-C port to connect to Surface devices instead of Microsoft’s proprietary Surface Connect port. The Surface Thunderbolt 4 dock should be a good companion device for the latest Surface devices that also support Thunderbolt 4, and it’s also compatible with Windows OEM devices and Apple Macs.   The new Surface Thunderbolt 4 Dock is already available for purchase at the Microsoft Store where it’s priced at $299. 99. It allows users to connect up to two 4K monitors at up to 60Hz, transfer data with up to 40Gbps speeds, and charge laptops using up to 96W of power.   Thanks to Thunderbolt 4 and USB4 support, this new Surface Dock supports higher data transfer speeds and there are also built-in management and security features for enterprise users.   Surface Thunderbolt 4 dock ports Microsoft’s latest Surface Dock is slightly slimmer than previous models, and it also features a more inclusive design with raised tactile indicators above the rear ports. In addition to the main USB4/Thunderbolt 4 USB-C cable that supports up to 96 watts of power passthrough, there is one USB-C port and one USB-A 3. 1 Gen 2 on the front of the dock. The front ports on the Surface Thunderbolt 4 dock (Image credit: Microsoft) On the back, there are 2 USB-C ports, 2 USB-A ports, a 3. 5mm audio jack, a 2. 5 Gigabit Ethernet port, and a DC power port. All USB-C ports on the dock support high-speed USB4/Thunderbolt 4,... --- ### Microsoft Defender 365 Gets New Threat Intelligence Capabilities - Published: 2023-04-04 - Modified: 2023-04-04 - URL: https://petri.com/microsoft-defender-365-threat-intelligence/ - Categories: Security - Tags: News, Security Microsoft has recently unveiled several updates to improve threat intelligence in its existing products and services. The company has introduced a new Defender TI integration in Microsoft 365 Defender to protect enterprise customers against sophisticated cyberattacks. Microsoft explained that Defender TI capabilities are now directly available to licensed customers within the Microsoft 365 Defender portal. It provides detailed insights about emerging security threats to facilitate the investigation process. Microsoft Defender Threat Intelligence now offers a new Intel Profiles feature that provides contextual information about threat actors, infrastructure, and exploits used in cyberattacks. “Intel profiles combine 65 trillion threat signals with the expertise of over 8,500 dedicated security professionals to translate that global threat landscape into immediately actionable insights. By comprehending their tactics, infrastructure, and methods of operation, security teams can take proactive steps to prevent threat actors from breaching their organization's defenses,” Microsoft explained. Microsoft Defender TI API is now available to respond to threats at scale Additionally, Microsoft has released a new Defender Threat Intelligence (TI) API that provides insights gathered from various tools, threat actors, and vulnerabilities. The API enables security teams to understand entities involved in an incident, automate triage efforts, and integrate with security tools like Microsoft Sentinel. Microsoft Sentinel playbooks can also use the API to find indicators of compromise in a security incident. Microsoft highlights that IT admins can leverage Microsoft Sentinel Data Connector and Microsoft Threat Intelligence analytics rule to protect their users against the latest threats. Customers will get free access to... --- ### Microsoft Changes Release Schedule for Configuration Manager to Bi-Annual Updates - Published: 2023-04-04 - Modified: 2023-04-13 - URL: https://petri.com/microsoft-configuration-manager-bi-annual-updates/ - Categories: Windows 10, Windows 11 - Tags: Configuration Manager, News, Windows Microsoft announced some changes yesterday to its release schedule for Microsoft Configuration Manager updates. The company is switching the product from its usual tri-annual updates to a bi-annual release cycle. Microsoft Configuration Manager is a tool that enables IT admins to manage large groups of Windows machines. It helps to deploy applications, automate patch management and software updates, and monitor system health. Microsoft Configuration Manager lets administrators generate reports on software and hardware inventory and system compliance. Going forward, Microsoft plans to release Configuration Manager updates in the Spring and Fall of every year. The company explained that this change aims to better align with the release schedule of Windows updates that arrive once per year. The new update cycle should make it easier to prioritize top customer feature requests. Moreover, IT admins will now need to manage fewer deployments annually. “With this change and the longer development cycle, the Configuration Manager 2309 update will be able to address key customer asks around policy sync, software update troubleshooting, improved alerts, dashboarding, and more. Hotfix rollups and security updates will continue to be made available as necessary to address any critical bugs,” Microsoft explained. Microsoft Configuration Manager to get four technical previews annually Microsoft plans to roll out the change with the release of baseline version 2303 of Microsoft Configuration Manager later this year. The company will roll out four technical previews per year through an "in-console update and servicing process. " It’s important to note that Microsoft isn’t making any changes... --- ### Microsoft to Add New Windows Autopatch Alerts About Expired Licenses and Access Issues - Published: 2023-04-04 - Modified: 2023-04-04 - URL: https://petri.com/microsoft-windows-autopatch-alerts-expired-licenses/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, Windows Autopatch Microsoft has announced several new features coming to Windows Autopatch next month. These enhancements will notify IT admins about expiring licenses and access issues related to Windows Autopatch. Windows Autopatch is a new cloud service that enables customers to automate the patching of Windows, Microsoft 365 apps, Microsoft Edge and Microsoft Teams. The managed service eliminates the need for IT admins to plan and operate the Windows update process. The service is designed to minimize disruptions and improve security across an organization. With this release, the Tenant management blade will alert IT admins that the expired licenses should be renewed/replaced to continue using Windows Autopatch. It will also inform administrators to resolve access-related issues with the service. Microsoft advises organizations to take action immediately for potential issues to avoid any disruptions in the workflows. “We are also introducing the ability to mark the Windows Autopatch section of your tenant as “inactive” if there are any actions that need to be taken. To know if action is required, visit the Tenant management section and select the banner displayed within the Windows Autopatch Devices blade that alerts you to take action,” Microsoft explained. Microsoft adds support for Windows Autopatch Groups Microsoft has also introduced several new features to help customers better manage their Windows environments. The Windows Autopatch Groups feature will let IT admins set up their own deployment rings and release frequency. Microsoft is updating the existing reporting experience with details about deployment status, update failures, and update compliance. Lastly, Microsoft... --- ### Microsoft Teams Adds New Green Screen Background Effect for Meetings - Published: 2023-04-03 - Modified: 2023-04-03 - URL: https://petri.com/microsoft-teams-green-screen-effect/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News Last month, Microsoft unveiled that it’s adding green screen background support to improve Teams meetings. The company announced this morning that the new feature is now available in the Microsoft Teams desktop app for Windows and macOS. “Microsoft Teams now supports a green screen feature which provides an enhanced virtual background effect. Green screen improves the sharpness and definition of the virtual background effect around your face, head, ears, and hair. It also allows you to show a prop or other object in your hand to be more visible to other meeting participants,” Microsoft explained. Microsoft explains that the meeting attendees should have a flat screen or a clean background behind them. The participants should also ensure that the screen or wall doesn’t have stains or imperfections. Moreover, the background color should not match their clothing or props. How to enable the green screen effect in Microsoft Teams meetings To enable the green screen feature, Microsoft Teams desktop users will need to follow the steps mentioned below: Navigate to the meeting toolbar, click the More icon, and then select video effects. Click the Green Screen Settings link available under the Backgrounds section. Go to the Settings page and turn on the Green Screen toggle button. Click the backdrop icon to manually select a background color and return to the meeting. Microsoft notes that the green screen effect is available for Teams meeting on Windows and macOS with Intel CPUs. The feature uses Advanced Vector Extension (AVX), and it doesn’t support... --- ### Microsoft Incident Response Retainer Service is Now Generally Available - Published: 2023-04-03 - Modified: 2023-04-03 - URL: https://petri.com/microsoft-incident-response-retainer/ - Categories: Security - Tags: News, Security Microsoft has introduced a new Incident Response Retainer service for enterprise customers. The new service provides flexible pre-paid hours for specialized incident response and recovery before, during, and after a security attack. Microsoft Incident Response is a process that enables organizations to identify and respond to security incidents in their network. It aims to streamline incident management with various tools and technologies, including security information and event management (SIEM). Microsoft Incident Response Retainer offers several AI-powered investigation capabilities. These include malware analysis support, threat investigation, log analysis, attacker containment, and digital forensics. Moreover, an assigned security delivery manager will be responsible for proactively scheduling services throughout the year. Additionally, Microsoft Incident Response Retainer assists in the recovery and remediation of critical systems. It enables IT admins to restore full administrative control and improve security posture to prevent security breaches. “It’s contracted on an annual basis and the retainer hours can be used in any combination of proactive and reactive services. If additional hours are needed, customers can easily uplift extra hours as requirements change. This service provides our fastest response times and direct access to our global team of experts. It was designed to work with cyber insurance vendors and has flexible delivery options that meet the unique needs of each customer,” Microsoft explained. Microsoft Incident Response Retainer provides quarterly threat briefings Microsoft incident response experts help customers to mitigate an active security incident. The service also delivers quarterly threat intelligence briefings with insights on the latest threats and analysis/validation... --- ### What is Microsoft Stream? > Microsoft Stream is a video creation and collaboration service for Microsoft 365. Learn how to record your screen with it and catch up on Teams meetings. - Published: 2023-04-03 - Modified: 2023-03-31 - URL: https://petri.com/what-is-microsoft-stream/ - Categories: Microsoft 365 Microsoft Stream, which is part of Microsoft 365, is a video creation and collaboration service available with nearly all license and pricing plans. Learn about its noteworthy features including the ability to record your screen and yourself, catch up on your company's Teams meeting recordings, and distribute your videos across your Microsoft 365 tenant. What is Microsoft Stream? The Microsoft Stream service is the video recording and sharing tool available to all Microsoft 365 colleagues in the enterprise. When your organization utilizes the full breadth of key features, you and your users will be able to upload videos to the service and use the following features: Search: Find the content you need with video search across your organization Watch: Users can view videos from across the org using the latest accessibility features including transcription, closed captions, noise suppression, chapters, and speed controls. Manage: As an IT Pro, you can manage online videos in your tenant just like documents. Your benefits include security, administration controls, retention, and compliance across Microsoft 365. Originally built on a legacy video platform (Classic), the newer Stream is built on SharePoint and allows for a richer video viewing experience and rich media experiences for files stored on SharePoint and OneDrive for Business. The Microsoft Learn website has a detailed article about the differences between the old and new Stream. Why use Microsoft Stream? Why should be using Microsoft Stream instead of Loom or YouTube to share videos across your enterprise? Well, the strongest reason to... --- ### AWS Chatbot Integration Now Available in Microsoft Teams - Published: 2023-03-31 - Modified: 2023-03-31 - URL: https://petri.com/aws-chatbot-microsoft-teams/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News Amazon Web Services has announced the general availability of AWS Chatbot for Microsoft Teams. The new integration allows customers to securely monitor and troubleshoot their AWS infrastructure directly from Microsoft Teams channels. AWS Chatbot was first announced back in 2019. The service enables IT admins to receive real-time alerts about their AWS resources within the chat applications. AWS Chatbot is a powerful tool that helps to streamline workflows, improve collaboration and manage AWS infrastructure. With this release, enterprise customers can implement ChatOps for AWS within their Microsoft Teams channels. The integration between Amazon CloudWatch and Amazon Simple Notification Service lets users receive notifications from more than 200 AWS services within Teams channels. Amazon EventBridge also integrates with Amazon Simple Notification Service to send event-related information. “AWS Chatbot allows you to receive predefined CloudWatch dashboards interactively and retrieve Logs Insights logs to troubleshoot issues directly from the chat thread. You can also directly type in the chat channel most AWS Command Line Interface (AWS CLI) commands to retrieve additional telemetry data or resource information or to run runbooks to remediate the issues,” AWS explained. AWS Chatbot for Microsoft Teams lets users ask questions in natural language Additionally, AWS Chatbot for Microsoft Teams enables users to ask questions using natural language commands. It scans AWS documentation and support articles to provide relevant answers directly within Teams channels. If you’re interested, you can download AWS Chatbot from the Microsoft Teams app at no additional cost. You can find the step-by-step guide about configuring... --- ### Microsoft Azure Flaw Could Let Hackers Control Bing Search and Office 365 Data - Published: 2023-03-31 - Modified: 2023-03-31 - URL: https://petri.com/microsoft-azure-flaw-bing-office-365-data/ - Categories: Microsoft Azure, Security - Tags: Microsoft Azure, News Security researchers have discovered a new vulnerability in Microsoft Azure Active Directory (Azure AD). The security flaw allowed users to modify Bing search results and access users’ private data, including Outlook emails, calendars, and Microsoft Teams messages. Dubbed BingBang, the misconfiguration in Azure Active Directory (Azure AD) was first discovered by Wiz researchers back in January. It was caused due to an authorization misconfiguration in Microsoft’s multi-tenant apps in Azure AD. These applications allow logins from potentially any Azure user, and it’s the developers’ responsibility to perform additional authorization checks. Wiz researchers have found that approximately 25 percent of multi-tenant applications they scanned lacked proper validation. Specifically, the researchers created a new account and signed in to the Bing Trivia application. They accessed the Content Management System (CMS) and manipulated the Bing search results. Security researchers have also discovered that the flaw could be exploited to initiate cross-site scripting (XSS) attacks. Moreover, Bing’s Work section allows users to search Office 365 data of other employees. These include emails, calendars, Teams messages, OneDrive files, and SharePoint documents. “A malicious actor with the same access could’ve hijacked the most popular search results with the same payload and leak sensitive data from millions of users. According to SimilarWeb, Bing is the 27th most visited website in the world, with over a billion pageviews per month – in other words, millions of users could’ve been exposed to malicious search results and Office 365 data theft,” Wiz researchers explained. Microsoft releases fix for a flaw... --- ### Cloud Conversations: Iain Smith on Unified Communications & The Pace of AI > Iain Smith is a 9-time Microsoft MVP and a much-respected figure in the field of Unified Communications. He discusses the history of UC and much more. - Published: 2023-03-31 - Modified: 2023-03-31 - URL: https://petri.com/cloud-conversations-episode-71-iain-smith/ - Categories: Video - Tags: AI, Cloud Conversations Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations: Iain Smith on Unified Communications & The Pace of AI Iain Smith is a 9-time Microsoft MVP and a much-respected figure in the field of Unified Communications. Iain joins Azure and Peter on the show this week to discuss: The history of Unified Communications, from MSN Messenger & Sync to MS Teams The current state of play with Teams from a UC viewpoint His thoughts on what's next AI: Is the current pace of progress appropriate or concerning? And much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product... --- ### Microsoft Now Lets Users Pin Windows 365 Cloud PCs to the Windows 11 Taskbar - Published: 2023-03-30 - Modified: 2023-03-30 - URL: https://petri.com/microsoft-pin-windows-365-cloud-pcs-windows-11-taskbar/ - Categories: Windows 365 - Tags: News, Windows 365 Microsoft has released a new update for its Windows 365 Cloud PC service this week. The company announced that this release brings a new pinning experience for the Windows 365 app, security enhancements, and much more. Windows 365 is a cloud-based PC solution that allows users to access a virtual Windows desktop from a web browser on any device. The service is intended to make it easier for enterprise customers to manage their desktop environments. The service is designed to meet the needs of temporary and seasonal workers like contractors and interns. Windows 365 Cloud PC is available on all devices, including Android, iPads, and Macs. What's new in Windows 365 Enterprise? Microsoft has introduced a new feature that enables users to create templates that automatically generate unique names for new Windows 365 Cloud PCs. The Windows 365 app now allows users to pin their Cloud PC to the taskbar on Windows 11 machines. It should help users quickly launch the Cloud PC directly from the taskbar. Additionally, Microsoft introduced support for FQDN tags to help IT admins secure Windows 365 environments. It’s designed to streamline the process of configuring and maintaining the rules for Azure Firewall. Windows 365 Gov now supports higher Cloud PC screen resolution Lastly, Microsoft has started rolling out two new features for Windows 365 Government. It’s a specialized version of the service that is designed to meet the needs of Government Community Cloud (GCC) and GCC-High customers. Microsoft notes that government customers can now transfer... --- ### AWS Application Migration Service Gets New Import and Export Features - Published: 2023-03-30 - Modified: 2023-03-30 - URL: https://petri.com/aws-application-migration-service-import-and-export/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News Amazon has announced some important updates for its Application Migration Service. The latest release includes a new server migration metrics dashboard, import and export features, and additional post-launch modernization actions. AWS Application Migration Service is a fully managed service that enables IT admins to migrate their on-premises applications to the cloud. It supports automated application discovery, application testing, and server migration. Application Migration Service is designed to reduce the time and effort required to migrate on-premises applications to the cloud. Amazon has introduced a new import feature that enables customers to import their inventory list into Application Migration Service with a CSV file. It’s also possible to export source server inventory for scenarios such as offline reviews and updates, reporting purposes, and bulk configuration changes. Additionally, the new Server migration metrics dashboard provides a central hub to view the migration lifecycle status of the source server. It also allows customers to view associated alerts and get a quick overview of the data replication status. Application Migration Service now supports additional post-launch actions Finally, Application Migration Service added support for eight new predefined post-launch actions. IT admins can apply the actions after launching the migrated applications on AWS. The list of new actions includes convert MS-SQL license, create AMI from instance, upgrade Windows version, conduct EC2 connectivity checks, validate volume integrity, validate volume integrity, CloudWatch agent installation, and join Directory Service domain. Amazon says that the new features are available for all customers in all Application Migration Service-supported regions worldwide. The... --- ### Logpoint's Converged SIEM Platform Adds New Case Management Interface and Other New Features > Logpoint Converged SIEM is getting a new Case Management interface, a new "AgentX" endpoint security agent, and various new features to improve security. - Published: 2023-03-30 - Modified: 2023-03-30 - URL: https://petri.com/logpoint-converged-siem-case-management-interface-agentx/ - Categories: Security Cybersecurity vendor Logpoint detailed this week a new update for Converged SIEM, the company’s new platform that combines SIEM (Security information and event management), SOAR (Security orchestration, automation and response), User Entity and Behavior Analytics (UEBA), and business-critical security in a single offering.   Logpoint Converged SIEM became generally available back in March 2022 as a SaaS-delivered service or on-premises. The cloud-based solution offers organizations an all-in-one platform with threat detection, advanced security analytics, automated investigation, and response across different endpoints. “With the latest update of Logpoint’s Converged SIEM security analysts receive a wide set of new and improved features that provide enhanced observability and the added advantage of decreasing the time to respond to threats," the company explained yesterday.   New Case Management interface for Logpoint's Converged SIEM platform The new Case Management interface in Logpoint Converged SIEM will allow security teams to quickly get an overview of ongoing cases. Related incidents are intelligently grouped into the same case, which allows analysts to implement more efficient actions within a case.   “These capabilities make it easier for SOC teams of all sizes to efficiently manage cases and resolve incidents faster,” Logpoint said about its new Case Management interface.   The new Case Management interface on Logpoint Converged SIEM (Image credit: Logpoint) New AgentX endpoint security agent and other updates Logpoint’s Converged SIEM platform is also adding AgentX, a new endpoint security agent. AgentX can collect logs and telemetry from various endpoints, bring them to the SIEM, and investigate and find remedies to potential threats... --- ### Microsoft Postpones Remote PowerShell Deprecation in Exchange Online - Published: 2023-03-29 - Modified: 2023-03-29 - URL: https://petri.com/exchange-online-postpones-remote-powershell-deprecation/ - Categories: Exchange Online - Tags: Exchange Online, News Last year, Microsoft announced its plans to deprecate Remote PowerShell (RPS) in Exchange Online in June 2023. Now, the company has decided to delay the deprecation of the RPS protocol until October this year. Remote PowerShell is a feature that allows IT admins to connect to their Exchange Online through PowerShell commands. It lets administrators perform various tasks, including managing distribution groups, mailboxes, public folders, and contacts. Remote PowerShell depends on Basic Authentication which makes it vulnerable to cyberattacks. Microsoft is killing off the Remote PowerShell connections for all existing Exchange Online customers in May this year. However, the company will still let IT admins re-enable RPS in these tenants until September. Microsoft says that all new tenants created on April 1 will also be able to re-enable the protocol until June 2023. This capability will not be available for new subscribers coming on board after July 1. Microsoft releases the RPS self-service tool for Exchange Online Microsoft has made this decision based on the initial feedback received from organizations. It should give customers sufficient time to migrate to the REST-based PowerShell v3 module that launched in September 2022. The latest v3 module is more secure because it supports certificate-based authentication. “We have released a self-service tool in the Microsoft 365 admin center and the Exchange admin center that admins can use to request an extension or re-enablement of RPS. We are adding this tool to help you minimize disruptions as you transition away from using RPS. We want you... --- ### Microsoft Teams Gets Collaboration Security to Block Phishing Attacks - Published: 2023-03-29 - Modified: 2023-03-29 - URL: https://petri.com/microsoft-teams-collaboration-security/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News Microsoft has announced a new Collaboration Security feature for Microsoft Teams. The new set of capabilities provides preventive, detective, and protective features that ensure end-to-end security for select Microsoft Teams customers. “With 71% of companies admitting that sensitive and business-critical data is regularly shared via collaboration tools like Microsoft Teams, organizations are increasingly realizing the need to make collaboration security an integral part of their overall SOC strategy. That’s why we are bringing the full feature set that customers use to protect their email environments across prevention, detection, and response to Microsoft Teams,” Microsoft explained. https://www. youtube. com/watch? v=xx00_Ww-8J4&feature=youtu. be First up, the Collaboration Security feature allows users to report suspicious messages and files directly within Microsoft Teams. Microsoft says that security teams can review the reported messages for further investigation within the Microsoft 365 Defender portal. Additionally, Microsoft has introduced Zero-Hour Auto Purge (ZAP) support to its Teams collaboration platform. The security feature scans all delivered messages to detect and quarantine phishing or malicious messages. IT admins can review and manage these quarantined messages in Microsoft 365 Defender. It’s also possible to release messages that are deemed safe for sharing in Microsoft Teams. Microsoft Teams adds support for advanced hunting Microsoft is also bringing advanced hunting capabilities that should make it easier to proactively identify security threats. It’s a query-based threat-hunting tool that lets security teams explore 30 days of data to locate indicators of threat across email, endpoints, identities, SaaS apps, and DLP. Last but not least, Microsoft notes that IT admins... --- ### SQL Server Essentials: Modifying Table Data With SQL Insert, SQL Update, SQL Delete and Truncate > Here's how to modify data from a SQL Server table using the SQL INSERT, T-SQL UPDATE, T-SQL DELETE and TRUNCATE statements. - Published: 2023-03-29 - Modified: 2023-11-02 - URL: https://petri.com/sql-insert-update-delete-truncate/ - Categories: SQL Server - Article Type: How To Tables are one of the core components of every relational database system and SQL Server is no different. Tables store the data that the relational database engine uses for queries, reports, and other operations. In this article, I'll show you how to modify data from a SQL Server table using T-SQL INSERT, T-SQL UPDATE, T-SQL DELETE and TRUNCATE. In my previous article, Essential SQL Server: Creating Databases and Tables, I showed how you can create basic SQL Server databases and tables. In this article, we’ll take a look at how you populate those tables by adding, updating, and deleting rows. I created the following table in my previous article. The syntax from this simple example DDL command shows that the table has three columns and each of them uses a different data type: CREATE TABLE dbo. myLogins  (      id INT NOT NULL PRIMARY KEY,     name VARCHAR (20),     login_date DATETIME  ); In this article, we’ll look at adding data to a table using the INSERT statement, modifying data in a table using the UPDATE statement, and deleting data using the DELETE statement. Data in a table can be deleted in a couple of different ways, so we’ll also cover the difference between using the DELETE statement and the TRUNCATE statement. Adding rows using T-SQL INSERT You can add data to a SQL Server table in a number of ways: You can use SQL Server Management Studio’s (SSMS) interactive Query Designer to add rows to a table You can... --- ### Microsoft Announces New Surface Hub 2S With Teams Rooms on Windows Experience > Microsoft will release a second-gen Surface Hub 2S later this year that will be running a new Teams Rooms on Windows experience. - Published: 2023-03-29 - Modified: 2023-03-29 - URL: https://petri.com/microsoft-surface-hub-2s-teams-rooms-on-windows-experience/ - Categories: Hardware - Tags: Microsoft Teams, Surface, Surface Hub, Surface Hub 2S - Article Type: News Microsoft announced yesterday a second-generation Surface Hub 2S digital whiteboard that will be available later this year. The new digital whiteboard will be running a new Teams Rooms experience that will differ from the existing Windows 10 Team Edition that powers the existing Surface Hub 2S. The Surface Hub 2S was originally released back in 2019, and it’s currently available in 50-inch and 85-inch sizes. The device is designed for meeting rooms and its large multitouch screen allows multiple people to brainstorm using Microsoft Whiteboard and other apps. The Surface Hub 2S is also certified for Microsoft Teams and can be coupled with Teams Rooms devices, but the second-gen version coming later this year will make it a Teams Rooms device on its own.   “The future of Surface Hub will meet the realities of modern work, combining the latest Teams Rooms features with the iconic Surface Hub 2S design and premium hardware – a thin edge and bezel, dual active inking, and 20-point multi-touch – and providing users with a natural experience for enhanced collaboration,” Microsoft explained.   New Surface Hub 2S will run Teams Rooms on Windows The new Teams Rooms on Windows experience on the upcoming Surface Hub 2S will add support for the latest Teams Rooms features including Front Row. Microsoft promises feature parity with other Teams Rooms on Windows devices, as well as a “best-in-class” Whiteboard experience. In addition to the built-in Teams Rooms features, the second-gen Surface Hub 2S will make it just as easy to... --- ### Microsoft's New Security Copilot Tool Uses GPT-4 to Quickly Respond to Threats - Published: 2023-03-28 - Modified: 2023-03-28 - URL: https://petri.com/microsofts-security-copilot-tool/ - Categories: Security - Tags: Microsoft Security Copilot, News Microsoft announced the release of a new Security Copilot tool for cyber security professionals. The AI-powered chat assistant is designed to help analysts better understand potential threats and assess risk exposure to prevent security breaches in their environments. Microsoft’s Security Copilot feature is based on OpenAI’s GPT-4 generative AI and its own proprietary security models. The service integrates with other security products (such as Microsoft Defender and Microsoft Sentinel) to create a summary of potentially malicious activities in natural language. It also provides step-by-step incident remediation guidance to quickly respond to threats. “Our cyber-trained model adds a learning system to create and tune new skills. Security Copilot then can help catch what other approaches might miss and augment an analyst’s work. In a typical incident, this boost translates into gains in the quality of detection, speed of response and ability to strengthen security posture,” said Vasu Jakkal, CVP, Security, Compliance, Identity, and Management. How does Security Copilot work to provide end-to-end protection? Microsoft highlighted that Security Copilot can help to reverse engineer security vulnerabilities. The AI-powered tool can also surface potential threats in real time, predict the next move of attackers, and answer security questions. Microsoft Security Copilot can also provide recommendations to help researchers improve their skills. https://youtu. be/g1HoXNoP3V0 Microsoft acknowledged that its new Security Copilot solution could potentially make mistakes. However, the company emphasized that customer data would be protected by enterprise compliance controls. Microsoft also promised that user data or business processes won’t be used to train its... --- ### Microsoft Outlook Adds New Authenticator Lite Feature on iOS and Android - Published: 2023-03-28 - Modified: 2023-03-28 - URL: https://petri.com/microsoft-outlook-authenticator-lite/ - Categories: Outlook - Tags: Microsoft 365, Microsoft Outlook, News Microsoft has started rolling out a new Authenticator Lite feature in preview for its Outlook mobile app. The company announced on the Microsoft 365 admin center that it allows users to sign into their work or school accounts where MFA is enabled via the Outlook app on iOS and Android devices. Multifactor authentication (MFA) is a security feature that allows customers to use multiple forms of authentication (such as a PIN or one-time code) to access a service. It adds an extra layer of security and makes it difficult for unauthorized users to access sensitive data. The Microsoft Authenticator app already allows users to verify their sign-in for Microsoft 365 apps on mobile devices. The app generates a unique 6-digit code that can be used to approve authentication requests for Microsoft accounts and third-party services. Microsoft explained that Authenticator Lite is designed to boost security for users who have not installed the Microsoft Authenticator app on their mobile devices. The feature lets users get code directly within the Outlook app on both Android and iOS. For now, it only supports push notifications with number matching and one-time codes. “Microsoft Authenticator Lite is another surface for Azure Active Directory (Azure AD) users to complete multifactor authentication by using push notifications or time-based one-time passcodes (TOTP) on their Android or iOS device. With Authenticator Lite, users can satisfy a multifactor authentication requirement from the convenience of a familiar app,” Microsoft explained. Microsoft Authenticator Lite to hit general availability next month Microsoft notes... --- ### Azure AD Custom Claims Providers Feature Let Users Customize Authentication Flows - Published: 2023-03-28 - Modified: 2024-12-03 - URL: https://petri.com/azure-ad-custom-claims-providers/ - Categories: Active Directory (AD) - Tags: Azure AD, News, Security - Article Type: News Microsoft has announced the public preview of a new custom claims provider feature for Azure Active Directory (Azure AD). The custom extension allows organizations to call an API and map custom claims into the security token during the authentication process. The custom extensions feature enables Azure Active Directory (Azure AD) users to interact with external systems. It provides a way to store additional data in Azure AD on user objects, groups, tenant details, service principles, and other directory objects. Custom extensions let users build custom solutions to meet their unique business requirements. “A custom claims provider lets you call an API and map custom claims into the token during the authentication flow. The API call is made after the user has completed all their authentication challenges, and a token is about to be issued to the app. We heard from many of you that you need to return additional claims into the tokens sent to your apps so that they could function as intended,” Microsoft explained. Microsoft explained that organizations often store user data (such as sensitive information and billing details) in external systems. It’s possible that some IT admins might want to configure custom claim providers to keep identity data in on-premises environments. The new feature eliminates the need to use legacy identity systems, including Active Directory Federation Services (AD FS) and LDAP directory. Azure AD custom claims provider integrates with other data stores Currently, it’s not possible to synchronize attributes to Azure AD due to data residency or... --- ### Microsoft Teams Gets New Files App, 3D Mesh Avatars, and Other New Features - Published: 2023-03-27 - Modified: 2023-03-27 - URL: https://petri.com/microsoft-teams-files-app-3d-mesh-avatars/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News As Microsoft is kicking off its Enterprise Connect conference this morning, the company announced a new Teams desktop client that brings big performance improvements for Windows users. Microsoft has also unveiled several new features and capabilities coming to Microsoft Teams this month. The new version of Microsoft Teams has been built from the ground up, and it consumes 50 percent less memory and 70 percent less storage space. Microsoft claims that launching the app or joining meetings should now be two times faster. Users should experience 1. 7 times faster performance while switching between chats and channels. The Microsoft Teams desktop client brings multi-account support for enterprise customers. The app supports AI-powered experiences such as Copilot for Microsoft Teams and intelligent recaps for meetings. Microsoft has introduced customizable group chats, threaded conversations, and interactive emojis. Other capabilities include an updated gallery view, screen-sharing support, and a pre-join experience. Mesh Avatars for Microsoft Teams Microsoft has released a new update that allows users to create animated Mesh Avatars for Teams meetings. The feature is similar to the existing 3D avatars available in Zoom, Apple Facetime, and Meta’s Horizon Worlds platform. Microsoft has been testing Mesh Avatars since October 2022, and the feature is finally available in public preview. https://www. youtube. com/watch? v=Pk5BVxlKL5w Microsoft Teams gets a new Channel experience Microsoft has introduced a new channel experience that’s designed to be a bit more intuitive and modern to drive engagement. This release moves the compose box and recent posts to the top of the window to... --- ### Get Ready to Transform Your Organization's IT Security: Join Our Free 1-Day Virtual Conference - Published: 2023-03-27 - Modified: 2023-03-28 - URL: https://petri.com/stop-security-incidents-and-ransomware-now/ - Categories: GET IT - Tags: NoAD, NoAds - Article Type: Overview This week, March 30th at 9. 20am ET, Petri is hosting its first free virtual 1-day conference of the year on identity management and privileged access management (PAM). In our 2023 audience survey, IT Pros cited security as their number one concern. And because identity and privilege management form the basis of good security and a zero-trust security model, it’s essential that you and your organization is on top of how to properly manage user identities and manage the level of access users have once they have access. Join me and our experts as we navigate the topic. Plus, we’ll be taking a first look at Microsoft Intune Elevation Rules for the first time as they enter public preview. You can register for free to get access to the sessions live on the day or on-demand for three months after conference day. Registrants will also be able to download an exclusive eBook that contains the most important information from each session. How to implement and manage hybrid identities with Azure AD Connect - Michael Reinders Michael Reinders, a regular contributor at Petri, kicks off the sessions at 9. 30am ET with a look at how to manage hybrid cloud identities using Windows Server Active Directory, Azure AD, and Azure AD Connect. Michael explains how these technologies work together for easy identity management and a single sign-on experience for end users. Michael will walk through how to configure Azure AD Connect so you can also get your on-premises identities synchronizing to the cloud... . --- ### Microsoft Teams 2.0 Client Drops in Public Preview - Published: 2023-03-27 - Modified: 2023-03-27 - URL: https://petri.com/microsoft-teams-2-client-public-preview/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News It’s been a long time coming for long-suffering Microsoft Teams users. Today, Microsoft is launching access to a public preview of its new client software for Teams on Windows. The new client, which is officially version 2. 1, will bring x2 faster performance while using 50% less memory. https://www. youtube. com/watch? v=CT7nnXej2K4 The current Teams client is Electron based, a cross-platform programming framework, which while bringing an easy way for Microsoft to code once and have it run on multiple platforms, Electron apps are notorious for poor performance and resource utilization. So, if you are running the current Teams client on a notebook or poorly-spec’d device, then interacting with the app is likely a painful experience that drains the battery quickly. That’s all set to change. Microsoft says about the updated client: We have been listening to your feedback which has culminated in a reimagining of Teams from the ground up. The new app is built on a foundation of speed, performance, flexibility, and intelligence — delivering up to 2x faster performance while using 50% less memory so you can save time and collaborate more efficiently. We have also streamlined the user experience so that it is simpler to use and easier to find everything in one place. These enhancements also provide the foundation for game changing new AI-powered experiences such as Copilot for Microsoft Teams, announced earlier this month. New Microsoft Teams 2. 0 client based on WebView2 The new Teams client is based on Microsoft’s WebView2 technology, which itself is based on Chromium... --- ### Microsoft to Raise the Price of Cloud Services in Europe on April 1 - Published: 2023-03-27 - Modified: 2023-03-27 - URL: https://petri.com/microsoft-raise-price-cloud-services-europe/ - Categories: Microsoft 365 - Tags: cloud computing, Microsoft 365, Microsoft Azure, News - Article Type: News Microsoft unveiled its plans to increase the price of its cloud services in the European Union (EU) in January 2023. Indeed, Microsoft’s cloud offerings (including Microsoft 365 and Microsoft Azure) will become up to 15 percent more expensive for European commercial customers on April 1, 2023. Microsoft explained that it’s working to standardize the prices of its cloud services worldwide. Starting next month, all new or renewed product subscriptions (whether monthly, annual, or tri-annual) will be charged at a higher price in certain regions. As a result, the new price for Microsoft cloud services will be increased by 15 percent for customers in Sweden. Moreover, Norway, Denmark, and other European countries will experience a price hike of 11 percent. Microsoft says that UK-based customers will need to pay 9 percent more for these services. Microsoft announces bi-annual pricing reviews for cloud services Going forwards, Microsoft plans to review the prices of Microsoft 365, Microsoft Azure, Exchange Online, and other cloud services in local currency twice a year. The company will take into account exchange rate fluctuations against the US dollar to adjust the prices accordingly. This change should help to increase transparency and predictability for commercial customers. “The Microsoft Cloud continues to be priced competitively, and Microsoft remains deeply committed to the success of its customers and partners. We will continue to invest to enable customers to innovate, consolidate and eliminate operating costs, optimize business performance and efficiency and provide the foundation for a strong security strategy that customers around... --- ### How to Use Microsoft's Hybrid Azure AD Connect Cloud Sync Software > Here's how to configure Azure AD Connect cloud sync and implement it into your Active Directory/Azure AD infrastructure. - Published: 2023-03-27 - Modified: 2023-07-17 - URL: https://petri.com/install-azure-ad-connect-cloud-sync/ - Categories: Azure, Microsoft Entra ID (Azure AD) - Article Type: How To Many of you have been using Azure Active Directory Connect to manage your hybrid identities and synchronization of users from Active Directory to Azure Active Directory (recently renamed Microsoft Entra ID). This modern technology is called Azure AD Connect cloud sync. In this article, I'll walk you through the installation and basic configuration of Azure AD Connect cloud sync and explain how to implement it into your Active Directory/Azure AD infrastructure. What is Azure Active Directory Connect cloud sync? Many IT Pros are familiar with Azure AD Connect – the syncing software you use to sync your identities from your on-premises Active Directory to Azure Active Directory and offer seamless single sign-on. The next evolution is to bring everything to the cloud. So, Microsoft has moved from a software application installed on a domain-joined server in your on-premises environment to a simple provisioning agent. A much lighter footprint as all the 'heavy lifting' is now done in Azure. No more need for a database on-premises – this is all done in the cloud. Lightweight agents have been the way to go recently. This is a boon if you have gone through a merger or an acquisition recently or are planning for one. Azure AD Connect cloud sync is designed to meet and accomplish your hybrid identity goals by syncing your users, contacts, groups, devices, and more to Azure AD. An important note – you can use Azure AD Connect side-by-side with the cloud sync provisioning agent! What are the... --- ### CISA Releases New Free Tool to Identify Threats in Microsoft Cloud Services - Published: 2023-03-24 - Modified: 2023-03-24 - URL: https://petri.com/cisa-tool-identify-threats-microsoft-cloud/ - Categories: Security - Tags: cloud computing, News, Security - Article Type: News The U. S. Cybersecurity and Infrastructure Security Agency (CISA) has released a new open-source incident response tool. The Python-based utility is designed to help organizations track vulnerabilities in Microsoft cloud environments. Specifically, CISA has teamed up with the U. S. Department of Energy's Sandia National Laboratories to develop the Untitled Goose Tool. It utilizes different sophisticated hunting queries to detect the signs of exploitation in Microsoft 365, Microsoft Azure, and Azure Active Directory (AAD). The utility can also be used with other Microsoft security solutions to identify and mitigate security threats. CISA detailed that the Untitled Goose Tool allows IT admins to perform the following operations: Export and review AAD sign-in and audit logs, M365 unified audit log (UAL), Azure activity logs, Microsoft Defender for IoT (internet of things) alerts, and Microsoft Defender for Endpoint (MDE) data for suspicious activity. Query, export, and investigate AAD, M365, and Azure configurations. Extract cloud artifacts from Microsoft’s AAD, Azure, and M365 environments without performing additional analytics. Perform time bounding of the UAL. Extract data within those time bounds. Collect and review data using similar time bounding capabilities for MDE data. Getting started with the Untitled Goose Tool CISA says that customers can download and install the Untitled Goose Tool on Windows, macOS, and Linux machines. However, it requires users to install Python version 3. 7, 3. 8, or 3. 9 to run on their systems. Earlier this month, the Cybersecurity and Infrastructure Security Agency (CISA) released a free tool called Decider. Its purpose is to help security teams... --- ### Microsoft to Block Unsupported Exchange Servers from Sending Emails to Exchange Online - Published: 2023-03-24 - Modified: 2023-03-24 - URL: https://petri.com/microsoft-block-emails-old-exchange-servers-exchange-online/ - Categories: Exchange Online, Exchange Server - Tags: Exchange Online, Exchange Server, News - Article Type: News Microsoft is introducing a transport-based enforcement system in Exchange Online that will throttle and block emails from old Exchange Servers. The company explained that this change aims to encourage organizations to upgrade to a supported version of Exchange Server. Microsoft has found that thousands of on-premises customers are running outdated versions of Exchange Servers. The list includes Exchange 2007, Exchange 2010, and Exchange 2013 which will become unsupported next month. Moreover, unpatched Exchange 2016 and Exchange 2019 servers are also persistently vulnerable to known attack vectors, including the Hafnium hacks that started in March 2021. Microsoft plans to address the problem by implementing a transport-based enforcement system in Exchange Online on June 26, 2023. Initially, it will report, throttle, and block messages sent from Exchange 2007 Servers over an inbound OnPremises type of connector. However, the change will not impact emails coming from unsupported servers via a different pathway. “The system is designed to alert an admin about unsupported or unpatched Exchange servers in their on-premises environment that need remediation (upgrading or patching). The system also has throttling and blocking capabilities, so if a server is not remediated, mail flow from that server will be throttled (delayed) and eventually blocked,” the Exchange team explained. What are the throttling-blocking enforcement stages? Microsoft plans to implement the enforcement in a progressive manner to include other Exchange Server versions. The company will begin notifying all customers with vulnerable servers that they will be subject to throttling within 60 days. The enforcement process will... --- ### How to List All Groups in Linux - An IT Pro's Tips and Tricks > In this article, we detail different ways to list all groups on a Linux machine. We also explain how to list all users and show the groups they belong to. - Published: 2023-03-24 - Modified: 2024-07-03 - URL: https://petri.com/linux-list-all-groups/ - Categories: Linux - Tags: Groups, linux - Article Type: How To Here's how to list all groups on a Linux machine, how to list all users, and how to see the groups they belong to. As a Linux administrator or DevOps engineer, it’s important to understand how Linux groups work as each folder, directory, or file is linked to specific users and groups. In this tutorial, I’ll show you how to list all groups on a Linux machine, how to list all users, and how to see the groups they belong to. How to list all groups on Linux There are multiple commands you can use to find all the groups that are present on Linux. But first of all, let’s start with an explainer about Linux groups. What are groups on Linux? Groups on Linux-based operating systems are used to assign a set of privileges to a group of users. There are mainly two types of groups in the Linux distribution operating systems. Whenever a Linux user creates a file or directory, then the files within it are allocated to a primary group, which has the same name as the one of the current user. Every user has at least one primary group associated with them. Whenever a new user is created, it is allocated within a primary group. Apart from their primary group, Linux users can also belong to other groups known as secondary groups. Listing all groups with the groups command By using the groups command, we will see all the primary groups that are present on a Linux machine. groups The groups command shows all primary groups on Linux (Image credit: Petri/Sagar) Listing all groups with... --- ### Intel Unveils its 13th Gen vPro CPUs > Intel's 13th gen vPro CPUs for business PCs bring a new process technology and more cores, as well as silicon-based virtualization security on Windows 11. - Published: 2023-03-24 - Modified: 2023-03-24 - URL: https://petri.com/intel-13th-gen-vpro-cpus/ - Categories: Hardware - Tags: Intel, Intel vPro - Article Type: News Intel introduced yesterday its 13th gen vPro CPUs for business PCs. Intel’s vPro platform offers advanced security and management features for organizations, and the company’s 13th gen Core CPUs bring an improved hybrid architecture with a combination of Performance and Efficient cores.   “With our new 13th Gen Intel Core processors, the Intel vPro platform remains the premier business computing foundation, providing the best in security, business management and performance for organizations of all sizes,” said Stephanie Hallford, Intel vice president and general manager of the Commercial Client Division.   Intel’s 13th gen vPro CPUs: Performance updates Intel’s 13th Gen vPro CPUs use a new process technology with redesigned Performance cores and an increased number of Efficient cores on select models. As an example, the top-of-the-line Core i9-13900 CPU now comes with 8 Performance cores and 16 Efficient cores, while the 12th gen Core i9-12900 had 8 Performance Core and only 8 Efficient Cores.   On the performance front, Intel’s Thread Director technology also does a better job at assigning tasks to the right type of cores. The Intel Dynamic Tuning technology should also provide better energy efficiency. Overall, Intel promises up to 65% faster Windows application performance with its Core i9-13900 CPU compared to a PC with a 3-year-old Core i9-10900 CPU. Intel 13th Gen vPro CPUs offers lots of benefits for business PCs (Image credit: Intel) Intel’s 13th Gen vPro CPUs also include the Intel Connectivy Performance suite, which can optimize wireless performance and improve video and sound quality on a... --- ### Microsoft Teams to Get New Files App Next Month - Published: 2023-03-23 - Modified: 2023-03-23 - URL: https://petri.com/microsoft-teams-new-files-app/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News The Microsoft Teams desktop client is about to get a new Files app on Windows and macOS. The new experience will replace the existing Files app, and it will make it easier to find and organize content across chats, channels, meetings, and other Microsoft 365 apps. “Securely store, organize, and collaborate on all your files anytime, from anywhere and across all of your devices with the new files app experience in Teams. The new files app brings a modern experience to all of your content from your chats, channels or meetings including any location from OneDrive or SharePoint,” Microsoft explained in a message on the Microsoft 365 Admin Center. Microsoft will introduce an updated menu bar that will help users quickly navigate to the desired content. The Home and My files tabs will let users view recently opened files and access personal documents stored on OneDrive. There is also a dedicated tab that should make it easier to find shared content. The new Files app will include a Quick Access pane to access channel files and pinned document libraries. New Files app coming to Microsoft Teams in preview According to the Microsoft 365 roadmap, the new Files app is currently in development, and it’s expected to be released in preview later this month. Microsoft plans to make it generally available for all enterprise customers in mid-April. Microsoft Teams is also getting a new green screen feature that will provide an improved virtual background effect in meetings. It will work on... --- ### Microsoft Confirms Latest Defender Update Causes LSA Protection Alerts on Windows 11 - Published: 2023-03-23 - Modified: 2023-03-23 - URL: https://petri.com/microsoft-lsa-protection-alerts-windows-11/ - Categories: Windows 11 - Tags: News, Security, Windows 11 - Article Type: News Microsoft is currently investigating a persistent issue related to the latest security update for Windows 11 PCs. The company has confirmed that the recent Defender update triggers a warning that the Local Security Authority (LSA) feature is disabled, and their device is vulnerable to cyberattacks. Local Security Authority (LSA) is a Windows feature that helps to manage security operations and policies, including authentication, authorization, auditing, and password management. It’s a critical component of the Windows security architecture that ensures consistent enforcement of security policies across the system. The LSA feature is designed to protect users from unauthorized access and data breaches. “After installing "Update for Microsoft Defender Antivirus antimalware platform - KB5007651 (Version 1. 0. 2302. 21002)", you might receive a security notification or warning stating that "Local Security protection is off. Your device may be vulnerable. " and once protections are enabled, your Windows device might persistently prompt that a restart is required,” Microsoft explained on the Windows Health Dashboard. In a Reddit thread, many users complained that the KB5007651 update shows the LSA protection is off message and prompts to reboot the device. The restart notifications appear on PCs running Windows 11 versions 22H2 and 21H2. “Basically a yellow triangle appeared on the Windows Security iron, a week ago. It says that Local Security Authority protection is off. Your device may be vulnerable. There is no option to turn the protection on in the Device Security panel, there is only "dismiss" option,” the post reads. Source: Reddit Microsoft to fix the LSA... --- ### Nvidia Unveils H100 NVL Inference Platform Optimized for Large Language Model Deployments > Nvidia unveiled this week four new inference platforms optimized for generative AI applications such as OpenAI’s ChatGPT. - Published: 2023-03-23 - Modified: 2023-03-23 - URL: https://petri.com/nvidia-h100-nvl-inference-platform-large-language-model-deployments/ - Categories: Artificial Intelligence, Hardware - Tags: AI, artificial intelligence, ChatGPT, NVIDIA - Article Type: News Nvidia unveiled this week four new inference platforms optimized for generative AI applications such as OpenAI’s ChatGPT. The new platforms include Nvidia’s latest GPU innovations and inference software to deliver optimal performance for AI-based workloads such as large language model (LLM) deployment, image creation, and AI-powered video.   “The rise of generative AI is requiring more powerful inference computing platforms,” said Jensen Huang, founder and CEO of NVIDIA. “The number of applications for generative AI is infinite, limited only by human imagination. Arming developers with the most powerful and flexible inference computing platform will accelerate the creation of new services that will improve our lives in ways not yet imaginable. ” For those unfamiliar with it, AI inferencing is what happens after a neural network has been trained using existing data. The next step is to confront this trained neural network to real-world data and see if it can successfully apply what it previously learned to this new data.   AI inferencing is what happens after a neural network has been trained (Image credit: Nvidia) Just like deep neural network training, AI inferencing requires a lot of GPU power. However, Nvidia has a new H100 NVL platform that’s optimized for generative AI inference workloads.   NVIDIA’s H100 NVL inference platform is optimized for Large Language Model Deployments The Nvidia H100 NVL is one of the four new inference platforms that Nividia announced earlier this week. “The new H100 NVL with 94GB of memory with Transformer Engine acceleration delivers up to 12x faster inference... --- ### GitHub Unveils New GPT-4-Powered Copilot Tool with Chat and Voice Support - Published: 2023-03-23 - Modified: 2024-11-19 - URL: https://petri.com/github-releases-copilot-x-tool/ - Categories: Developer - Tags: ChatGPT, GitHub Copilot, News - Article Type: News Microsoft's GitHub has released a new GPT-4 powered version of its Copilot programming assistant. Copilot X expands the tool’s capabilities to add a ChatGPT-style experience to code editors, pull request support, and AI-powered answers for software documentation. GitHub launched its original Copilot tool back in 2022. The AI-based service is based on OpenAI’s Codex model and works within the text editor to autocomplete lines or sections of code. Copilot also allows developers to generate code based on natural language requests. Microsoft claims that the tool generates 46 percent of the code and lets users program up to 55 percent faster. “GitHub Copilot Chat is not just a chat window. It recognizes what code a developer has typed, what error messages are shown, and it’s deeply embedded into the IDE. A developer can get in-depth analysis and explanations of what code blocks are intended to do, generate unit tests, and even get proposed fixes to bugs,” explained Thomas Dohmke, the CEO of GitHub. GitHub Copilot X adds a ChatGPT-like experience Microsoft explained that GitHub Copilot X support is now available throughout the entire software development life cycle. It adds a new ChatGPT-like chat experience within an IDE sidebar chat window, such as Visual Studio and VS Code. It allows developers to use text or voice-based commands to interact with the chatbot. GitHub Copilot X can recognize typed code and show error messages. Copilot for pull requests Additionally, the new service enables developers to create AI-generated descriptions for pull requests on GitHub... . --- ### Researchers Discover Privacy Flaw in Windows 11 Snipping Tool That Could Leak Sensitive Data in Screenshots - Published: 2023-03-22 - Modified: 2023-03-22 - URL: https://petri.com/windows-11-snipping-tool-acropalypse-flaw/ - Categories: Windows 11 - Tags: News, Vulnerability, Windows 11 - Article Type: News Security researchers have found a new vulnerability in the Snipping Tool app available in Windows 11. The security flaw dubbed aCropalypse could allow threat actors to reveal sensitive information blurred or cropped out in screenshots. Snipping Tool is a built-in screenshot-capturing tool that comes with the Windows operating system. In Windows 11, Microsoft introduced a new version that replaced the legacy Snipping Tool and Snip & Sketch apps. The new Snipping Tool app provides more features and options for taking and editing screenshots without using third-party software. The aCropalypse vulnerability was first discovered by software engineers Chris Blume and David Buchannan in the Windows 11 Snipping Tool. As it turns out, the Snipping Tool doesn’t delete the original information from the edited file. Typically, the data is appended at the end of the edited screenshots in such a way that it remains invisible to Windows 11 users. However, any threat actor could exploit the vulnerability to retrieve the hidden information. Microsoft to fix the Windows 11 Snipping Tool vulnerability Fortunately, Microsoft’s engineers are investigating the security flaw and a fix should be available soon. "We are aware of these reports and are investigating. We will take action as needed to help keep customers protected," a Microsoft spokesperson said in a statement to BleepingComputer. In the meantime, it’s highly recommended to use alternative image editing tools (such as Adobe Photoshop) on Windows 11 PCs. It’s also important to implement access controls and encryption measures to block unauthorized access to sensitive information... . --- ### Microsoft Loop Public Preview - Everything You Need to Know > The Microsoft Loop app is available in public preview starting today. But what is Loop for and can it compete with productivity solutions like Notion? - Published: 2023-03-22 - Modified: 2023-03-24 - URL: https://petri.com/microsoft-loop-app-public-preview/ - Categories: Microsoft 365 - Tags: collaboration, Fluid Framework, Loop Components, Microsoft Loop, News, Notion, Productivity - Article Type: News After years of development, Microsoft Loop is finally available in public preview starting today. But what is Loop for? And can it compete with productivity incumbent Notion? Let’s find out more. What is Microsoft Loop? Microsoft Loop is a feature and app in Microsoft 365. Based on the Fluid Framework, Loop components can be created across Microsoft 365 apps, like Teams and Outlook. Loop components blur the lines between apps and content. For instance, if you want to insert a table into an email, instead of opening Excel, creating a table, and then pasting it into your email, you can create a table using the Loop Table component right in Outlook. That might not sound very exciting on its own. But Loop components can be edited after the fact by you or team members you choose to share the component with. And unlike content that is simply copied and pasted between apps, Loop components support co-authoring. Jumpstart a Microsoft Loop workspace Components are saved separately as a . fluid file (soon to be renamed . loop) and they can also be inserted into other documents. Loop components are portable pieces of content that stay synchronized across all the places that they have been shared. In addition to sharing individual components, you can share whole pages as a link or live page. Currently Microsoft Loop supports the following components: Bulleted list Checklist Numbered list Paragraph Table Task list Which Microsoft 365 apps support Loop components? Loop components are currently supported across these... --- ### Microsoft Integrates GPT-4 into Azure OpenAI Service - Published: 2023-03-22 - Modified: 2023-03-22 - URL: https://petri.com/microsoft-gpt-4-azure-openai-service/ - Categories: Microsoft Azure - Tags: Azure OpenAI Service, GPT-4, Microsoft Azure, News - Article Type: News Microsoft has announced that it’s adding OpenAI’s GPT-4 to its Azure OpenAI Service. The new integration will enable organizations to utilize the large language model for building AI applications and services. Microsoft launched the Azure OpenAI service back in January 2023. It’s designed to provide access to OpenAI’s powerful language models, such as GPT-3, Codex, and DALL-E. The models can be used to build applications that perform specific tasks, including text summarization, content generation, semantic search, and more. GPT-4 is a large multimodal model that has been improved over its predecessor to accept both text and image-based inputs. It can handle more than 25,000 words and understand content in multiple languages. The GPT-4 model provides more accurate responses that are natural and contextual. “GPT-4 has the potential to take this experience to a whole new level using its broader knowledge, problem-solving abilities, and domain expertise. With GPT-4 in Azure OpenAI Service, businesses can streamline communications internally as well as with their customers, using a model with additional safety investments to reduce harmful outputs,” Microsoft explained. How to get started with GPT-4 in Azure OpenAI Service Microsoft highlights that some companies are already using the Azure OpenAI GPT-4 model to improve their apps and services. For instance, Coursera has used it to create personalized learning experiences for end users. It helped Epic Healthcare’s physicians and nurses to investigate medical data. Microsoft says that GPT-4 support is currently available in preview, and existing Azure OpenAI customers can signup to join the waitlist... --- ### Why You Need a Domain Controller Outside of Your Azure Stack HCI Cluster > Here's why you need to have a domain controller outside of your Azure Stack HCI cluster to make it easier to restart a cluster in case of a failure. - Published: 2023-03-22 - Modified: 2023-03-22 - URL: https://petri.com/set-up-domain-controller-outside-azure-stack-hci-cluster/ - Categories: Azure, Azure Stack HCI - Tags: Azure, Azure Stack HCI, domain controllers, Windows Server - Article Type: Overview Failover clustering in Windows Server and Azure Stack HCI can help to reduce disruptions in service within an organization. In this article, I’m going to explain why you need to have a Windows Server Active Directory domain controller outside of your Azure Stack HCI cluster. I will also detail how to deploy this domain controller in an edge scenario. Why do you need a domain controller outside of your Azure Stack HCI cluster? If you’re using Azure Stack HCI and cluster accounts in Active Directory, there is still a legacy requirement for organizations to have DNS and sometimes Active Directory available to start the failover cluster service. Active Directory computer accounts are later used to manage cluster ownership and permissions. Without the required Active Directory computer accounts, your cluster will not start. If you’re using Azure Stack HCI, that’s a hard condition as storage with the Storage Spaces Direct feature heavily depends on the failover cluster service to operate. Without Storage Spaces Direct running, Hyper-V will not be able to start any virtual machine. So, if your only domain controllers are deployed on the Azure Stack HCI clustered stage, you have a chicken-and-egg problem: You cannot start the clustered storage service to start your domain controllers because they are stored on storage that cannot be used. You may want to start or restart a complete cluster after deployment for a couple of reasons, such as the maintenance of power grids or power outages forcing you to shut down your... --- ### Microsoft Changes its Release Schedule for Optional Windows Updates > Starting in April 2023, Microsoft will target the fourth week of the month to release optional non-security preview patches for Windows 11 and Windows 10. - Published: 2023-03-22 - Modified: 2023-03-22 - URL: https://petri.com/microsoft-changes-optional-windows-patches-release-schedule/ - Categories: Windows 10, Windows 11 - Tags: Patching, Windows 10, Windows 11 - Article Type: News Microsoft announced some changes yesterday regarding its release schedule for Windows monthly updates. While nothing changes for the “Patch Tuesday” updates released on the second Tuesday of each month, the company announced a new release window for optional non-security preview patches released later in the month.   Starting next month, Microsoft will now target the fourth week of the month to release these optional non-security preview patches for Windows 11 and Windows 10. These optional patches used to be called either “C” or “D” releases, and they include all fixes coming in the following monthly security update release. In some cases, these optional non-security preview releases also include new Windows features, as was the case with File Explorer tabs or Search highlights.   Why Microsoft is changing its release schedule for optional non-security updates “We have found this to be the optimal time for us to publish and for you to consume these updates,” Microsoft said about the new release schedule on the Windows IT Pro blog. "That's two weeks after your latest monthly security update and about two weeks before you'll see these features become part of the next mandatory cumulative update. We're excited for this improvement as it is meant to optimize the validation of payloads, improve consistency, and enhance the predictability of your testing, update, and upgrade experience. " In practice, this isn’t going to be much of a change. In recent months, these optional Windows patches have been released either in the third week of the month (as... --- ### Microsoft Teams Green Screen Feature to Let Users Personalize Video Call Backgrounds - Published: 2023-03-21 - Modified: 2023-03-22 - URL: https://petri.com/microsoft-teams-green-screen-meetings/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is set to introduce a new green screen feature on Windows and macOS. The company has announced on the Microsoft 365 Admin center that the green screen technology will allow desktop users to replace their backgrounds with custom images in Teams meetings. “Green screen improves the sharpness and definition of the virtual background effect around your face, head, ears, and hair. It also allows you to show a prop or other object in your hand to be more visible to other participants in a call. The virtual background with a green screen provides the best virtual background effect, consuming fewer system resources, allowing your Teams to run smoother,” Microsoft explained. To get started, participants will first need to enable the feature in Settings and place a solid-colored screen or a clean background wall behind them. Users will be able to select a specific background effect and a backdrop color to experience better video quality. Microsoft Teams green screen technology won’t support Mac M1/M2 devices Microsoft notes that the green screen feature is compatible with existing Teams features such as background effects, Presenter modes, and PowerPoint Live Standout. It will automatically disable Together Mode and background blur in Teams meetings. Keep in mind that the feature will only support Windows and macOS devices with Intel processors. However, it won’t be available for Mac machines with M1 and M2 chips. Microsoft plans to release the green screen feature for Teams meetings in public preview later this month. The company plans... --- ### Microsoft Defender for IoT Gets Cloud-Powered Security Features to Protect Enterprise Networks - Published: 2023-03-21 - Modified: 2023-03-21 - URL: https://petri.com/microsoft-defender-iot-enterprise-networks/ - Categories: Security - Tags: Microsoft Defender for IoT, News, Security - Article Type: News Microsoft has announced that its Microsoft Defender for IoT solution is now generally available for enterprise customers. The new cloud-powered solution helps IT Pros manage network assets, monitor security threats, and control risks across their organization. “With Microsoft Defender for IoT, you can achieve faster time-to-value, improve agility and scalability, increase visibility, and strengthen the resiliency of your network and infrastructure without making significant changes. The Defender for IoT cloud is designed to augment your on-premises processing power while providing a source of centralized management for global security teams—raising the bar for OT defense,” Microsoft explained. Microsoft explained that cloud-powered IoT and OT security tools provide several advantages over traditional solutions. It supports the end-to-end discovery of assets and reduces the time required for detecting and responding to security threats. The solution utilizes AI to detect threats in real time, provide recommendations and safeguard against known and unknown security threats. Microsoft Defender for IoT allows customers to create and manage tailored compliance reports. The service also provides cloud-to-cloud integrations that make it easier for users to access data from different sources. Microsoft Defender for IoT provides simplified integration for end-to-end protection Microsoft has introduced Device inventory support that lets IT admins manage OT devices via the Microsoft Azure Portal. It provides a comprehensive view of assets to proactively mitigate security vulnerabilities. Device inventory Microsoft Defender for IoT works in conjunction with Microsoft Sentinel to deliver security information and Event Management (SIEM) for OT and IT environments. The solution also shares... --- ### Microsoft to Start Rolling Out On-Prem UUP-Style Updates to Windows 11 22H2 Devices Next Week - Published: 2023-03-21 - Modified: 2023-03-21 - URL: https://petri.com/microsoft-on-prem-uup-updates-windows-11-22h2/ - Categories: Windows 11 - Tags: News, Unified Update Platform, Windows, Windows 11 - Article Type: News Microsoft will start offering on-prem Unified Update Platform (UUP) updates to Windows 11 PCs on March 28. The company is recommending organizations to prepare for a one-time 10GB download to receive future updates via UUP. Microsoft’s Unified Update Platform (UUP) technology is designed to reduce the size of Windows updates. The on-prem UUP interoperates with management tools such as Windows Service Update Services (WSUS) and Microsoft Configuration Manager. Microsoft touts that the servicing change should bring several benefits for organizations managing Windows 11 version 22H2. The UUP mechanism promises 30 percent smaller and faster client update downloads for enterprises. The on-prem UUP also integrates cumulative updates with feature updates. It should enable organizations to get both in a single reboot. Microsoft highlighted that Features on Demand and Language Packs will be retained during feature updates. Moreover, the operating system will be automatically healed during the update process without any need for manual intervention. Microsoft's on-premises Unified Update Platform (UUP) to hit GA on March 28 On March 28, Microsoft will release a security update (KB5023706) to enable future UUP updates on all eligible Windows 11 devices. However, this update will not be available for users who have already installed the KB5023706 update released on March 14. “To summarize, UUP is the future of Windows 11, version 22H2 updates. If your WSUS or Microsoft Configuration Manager is configured to sync, your organization will start syncing the extra 10GB download after March 28th. It's just a one-time download to distribution points. Thereafter,... --- ### Windows 11 Version 22H2's Latest Patch Tuesday Update May Degrade SSD Performance > The March Patch Tuesday update for Windows 11 version 22H2 may be causing some new SSD performance issues, according to various user reports. - Published: 2023-03-21 - Modified: 2023-03-21 - URL: https://petri.com/windows-11-version-22h2-patch-tuesday-ssd-performance-issues/ - Categories: Windows 11 - Tags: Patch Tuesday, Windows 11 - Article Type: News The March Patch Tuesday update for Windows 11 version 22H2 may be causing some new SSD performance issues, according to various user reports. This is the “Moment 2” update that introduced various new features to Windows 11 including a search box in the taskbar as well as AI-powered recommendations in the Start Menu.   Since the release of Windows 11 version 22H2 last fall, Microsoft has acknowledged a known issue causing slowdowns when copying files on devices running the latest version of Windows 11. Microsoft is still working on a fix for this bug that affects both local copies and network share via the SMB protocol. However, the SSD performance issues reported by users since the release of this month’s Patch Tuesday update appear to be unrelated to this already-known bug. Windows 11 users point out SSD speeds and longer boot times after installing this month's Patch Tuesday In the Reddit thread related to this month’s Patch Tuesday updates, the top comment from user mesp1 mentions an SSD performance degradation issue after installing this month’s KB5017389 patch for Windows 11 version 22H2.   “Tanked my SSD nvme reading and writing speeds, like A LOT. Went from 7000 to 3000, sometimes 1000 using the balance energy profile in my Legion 5 2021. ” The Reddit user also mentioned that his SSD speeds went back to normal after uninstalling the update.   In the same Reddit thread, another popular comment from user sebascq also pointed out a similar issue on their device after installing this month's... --- ### Microsoft Releases Semantic Kernel SDK for Building AI-Powered Applications - Published: 2023-03-20 - Modified: 2023-03-20 - URL: https://petri.com/microsoft-semantic-kernel-sdk-ai-applications/ - Categories: Developer - Tags: development, News, Semantic Kernel - Article Type: News Last week, Microsoft announced the release of Semantic Kernel (SK). The new open-source framework enables developers to integrate artificial intelligence (AI) and Large Language Models (LLMs) into their applications. Semantic Kernel is a lightweight software development kit (SDK) that helps developers to incorporate new experiences such as OpenAI’s ChatGPT-powered natural language responses directly into applications. For instance, Semantic Kernel allows users to summarize lengthy chat conversations, plan a vacation, or add important tasks to their to-do list. “With their increasing ability to understand complex intents, LLM AIs are enabling a more "goal-oriented" approach to problem solving. Therefore, SK was created to start with an "ASK" in mind. An ASK is driven to a dynamically informed outcome with the orchestration capabilities of the kernel. Starting from a user's ask to GET-ting what they want can be represented as a flow of connected parts,” Microsoft explained. What are the key benefits of Semantic Kernel (SK)? Microsoft mentioned that Semantic Kernel offers several key benefits for developers. The SDK provides fast integration with any application and connects with external services and data sources. Semantic Kernel also allows software developers to use complex prompts. Other capabilities include the availability of native code for prompt engineering and more. Currently, Microsoft’s Semantic Kernel works with conventional programming languages like Python and C#. The company will keep listening to user feedback to add support for TypeScript and other languages in the future. Microsoft’s Semantic Kernel is currently available to download on the GitHub repository. The company has... --- ### Amazon Linux 2023 is Now Available with New Security Features and Long-Term Support - Published: 2023-03-20 - Modified: 2023-03-20 - URL: https://petri.com/amazon-linux-2023-security-long-term-support/ - Categories: Amazon Web Services - Tags: Amazon Linux 2023, Amazon Web Services, linux, News - Article Type: News Amazon has recently announced the general availability of Amazon Linux 2023. The latest cloud-optimized Linux distribution is designed to improve security and delivers a predictable lifecycle as well as deterministic updates. Amazon Linux 2023 introduces new pre-configured security policies to help customers adhere to industry standards. IT administrators can configure these policies at launch or runtime for end users in their organizations. Amazon has also turned on several Linux kernel hardening features by default to boost security. Additionally, Amazon has announced its plans to release major updates to its operating system every two years. The bi-annual updates should include security and performance enhancements for customers. The company also expects to release significant changes to the kernel, OpenSSL, toolchain, GLib C, and other utilities and system libraries. Amazon has also promised to release quarterly updates with new capabilities, security updates, and bug fixes. The quarterly updates might bring software packages like Docker/Ansible and language runtimes such as Java or Python. “Each major version, including 2023, will come with five years of long-term support. After the initial two-year period, each major version enters a three-year maintenance period. During the maintenance period, it will continue to receive security bug fixes and patches as soon as they are available. This support commitment gives you the stability you need to manage long project lifecycles,” Amazon explained. The lifecycle of Amazon Linux distributions Lastly, Amazon Linux 2023 uses versioned repositories to provide deterministic updates. The company has used Fedora's dnf instead of yum to implement the... --- ### Microsoft Edge 111 Brings New Copilot Experience to the Sidebar > Microsoft Edge 111 added a new Bing button at the right side of the Edge toolbar, which integrates the new Edge Copilot experience. - Published: 2023-03-20 - Modified: 2023-03-20 - URL: https://petri.com/microsoft-edge-111-copilot-experience-bing-button/ - Categories: Microsoft Edge - Tags: Bing, Microsoft Edge - Article Type: News Microsoft released Edge version 111 on Windows, macOS, and Linux last week, and this update brought a noticeable UI change: There’s now a big Bing button at the right side of the Edge toolbar, which integrates the new Edge Copilot experience that leverages Microsoft’s Bing chatbot powered by OpenAI’s ChatGPT.   Clicking the Bing icon in the toolbar opens the new Edge Copilot experience within the Edge sidebar (if users have signed up for the Bing preview). From there, users can ask questions to the Bing Chatbot or use its “generative AI” capabilities to create content about any topic. The new Edge Copilot experience in the sidebar (Image credit: Petri/Laurent Giret) The “Insights” tab of the Edge Copilot experience can also identify relevant information about the web page that’s currently open. At the bottom, users can also get more information about the website including traffic information.   Clicking on the Bing icon makes the Edge sidebar and the Edge Copilot experience stick, but you can also just hover your mouse over the Bing icon to make the sidebar appear. This new auto-hide feature is nice, though the new Bing icon may look slightly intrusive for Edge users.   IT admins can still customize the Edge sidebar experience As of today, IT Pros can use the HubsSidebarEnabled policy to allow or block the sidebar for Edge users. There are 3 options with this policy: Not configured: Edge users will have access to the Sidebar and Edge Copilot experience and be able to always show the sidebar... --- ### What is Microsoft Lists? A Productivity Guide - Published: 2023-03-20 - Modified: 2024-12-03 - URL: https://petri.com/what-is-microsoft-lists/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Lists, SharePoint Lists - Article Type: Overview Microsoft Lists is the evolution of the SharePoint List feature. Several years ago, the Microsoft brain trust set out to make this ultra-powerful tool more accessible to the masses. By removing 'SharePoint' from the marketing pages, and making it 'an app', they succeeded in surprisingly productive ways. In this article, I will explain what is Microsoft Lists and give you an overview of everything you can do with this new Microsoft 365 app. What is Microsoft Lists? Microsoft Lists is a free Microsoft 365 app that helps you organize your workflows and track information across your enterprise. Lists are flexible, simple, and smart, so you are always in the know of what matters most to your team. Using the robust feature set and templates available, you can track issues, contacts, assets, inventory, and more using customizable views and intelligent rules to alert you to changing and dynamic environments. Want to get an email when someone creates a new desktop asset? Piece of cake! How to access Microsoft Lists If you've read my other articles here on Petri demonstrating some of the main apps in Microsoft 365, you'll know that the access methods for many of them are similar - making it easy for your users to utilize them with a minimal learning curve. The Microsoft 365 App Launcher Let's start at the beginning. We can log into office. com (or microsoft365. com) and access the App Launcher. Using the App Launcher in Microsoft 365 to find Microsoft Lists (Image credit: Petri/Michael Reinders) We can click... --- ### Microsoft Releases PowerShell Scripts to Fix WinRE BitLocker Flaw on Windows 11 and 10 - Published: 2023-03-17 - Modified: 2023-03-17 - URL: https://petri.com/microsoft-powershell-scripts-winre-bitlocker-flaw/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released new PowerShell scripts to address a BitLocker security vulnerability on Windows PCs. The PowerShell scripts are designed to automate the Windows Recovery Environment (WinRE) update process on Windows 11 and Windows 10. BitLocker is a built-in security feature that helps users to protect data stored on their computers from unauthorized access. Once enabled, the feature requires a password or a smartcard to decrypt the entire disk or individual files or folders. BitLocker protection is particularly useful to protect sensitive data on portable devices like USB drives and Windows laptops. Microsoft confirmed the BitLocker vulnerability (CVE-2022-41099) back in November 2022. It enables threat actors to bypass the BitLocker encryption protection to access sensitive information on vulnerable Windows devices. Microsoft released a security update to address the security flaw in January this year. However, IT admins had to manually install the update into the Windows Recovery Environment. How to use the PowerShell scripts to address the BitLocker bypass vulnerability Microsoft explained that the new PowerShell scripts should help administrators to automatically update WinRE images on both operating systems. The company says that IT Pros will need to run these scripts with administrative privileges to protect affected devices against cyberattacks. Microsoft recommends enterprise admins to install the PatchWinREScript_2004plus. ps1 script on Windows 11 and Windows 10 version 2004 and newer. The company emphasized that it’s comparatively more robust than the second script. Additionally, the PatchWinREScript_General. ps1 is designed mainly for Windows 10 version 1909 or earlier, but it can also run on... --- ### Google Workspace Gets 20% More Expensive for Monthly Subscribers - Published: 2023-03-17 - Modified: 2023-03-17 - URL: https://petri.com/google-workspace-price-hike/ - Categories: Productivity and Collaboration - Tags: Google Workspace, News - Article Type: News Last month, Google unveiled some important pricing changes for Google Workspace customers. The company announced this week that it's increasing the monthly cost of several Google Workspace offerings this week. Steve Holt, Vice President for Google Workspace, penned a lengthy blog post to justify the price hike impacting multiple Workspace tiers. The pricing update follows the newly announced generative AI features coming to Gmail, Google Docs, Sheets, and Slides. “The updates range from improvements to our world-class security and reliability that are required by our largest customers, to tools that increase the simplicity and helpfulness desired by smaller teams. The power of our apps running in the cloud is that these enhancements are immediately available to all our customers, increasing the value we deliver,” Steve Holt explained. Here are all the details about the pricing changes that will impact three main business editions of Google Workspace: Business Starter plans are going from $6 per account per month to $7. 2 Business Standard plans are going from $12 to $14. 40 Business Plus plans are going from $18 to $21. 60 Google Workspace launches annual plans Google has (re)launched an annual billing option that will let customers commit to a year of Workspace at a fixed cost. Previously, organizations had to call a corporate sales representative to purchase an annual plan. However, IT admins can now sign up for an annual plan directly online. Google says that existing flexible plan customers can easily switch to the annual plan through the Admin Console. Additionally, Google... --- ### Cloud Computing and the Energy Crisis: Is Building More Data Centers Sustainable? > The impact of cloud computing on the energy sector is getting an increasing amount of attention. Is migrating more workloads to the cloud really sustainable? - Published: 2023-03-17 - Modified: 2023-03-17 - URL: https://petri.com/cloud-computing-data-centers-energy-crisis/ - Categories: Cloud Computing - Tags: Cloud, cloud computing, data centers - Article Type: Opinion In this post, I want to discuss a topic that is getting an increasing amount of attention in Europe: the impact of cloud computing on the energy sector. This was already a concern before the current energy crisis started, but the power consumption of cloud computing is rarely out of the news now. First of all, my knowledge of this topic is skewed toward Microsoft’s data centers in Ireland. However, the issue is not restricted to Ireland or Microsoft; everything I'll be discussing here includes all of the big cloud service providers and their data centers around the world. The core issue: The power consumption of data centers Cloud computing requires a lot of power. Did you know that the power consumption of data centers is measured by megawatts? A cloud data center is even bigger and denser, driving huge amounts of storage and power-intensive hardware such as GPUs which are required for graphics, machine learning, high-performance computing, and simulation workloads. According to Ireland's Central Statistics Office, data center power consumption in the country is greater than the one from the entirety of rural Ireland. Rural Ireland is approximately 1. 8 million people or approximately 35% of the population of the country. Imagine that one industry consumes more power than 35% of the population of an entire country! The cloud computing industry pays its way Is that really a problem if the cloud computing industry is paying its fair share of taxation to cover the impact of energy consumption? Unfortunately,... --- ### Microsoft 365 Copilot - Everything You Need to Know > Learn how Microsoft 365 Copilot will improve your productivity using natural language to generate content and analyze information faster. - Published: 2023-03-16 - Modified: 2023-03-17 - URL: https://petri.com/microsoft-365-copilot-everything-you-need-to-know/ - Categories: Microsoft 365 - Tags: A.I., ChatGPT, cloud computing, Copilot Business Chat, Microsoft 365, Microsoft 365 Copilot, Office, OpenAI - Article Type: News Thursday 16, March, at its Reinventing Productivity with A. I. event, Microsoft announced Microsoft 365 Copilot, a new set of Artificial Intelligence (A. I. ) integrations in its suite of Office applications, powered by ChatGPT and technology it has developed using the Microsoft Graph and large language models (LLMs). Introducing Microsoft 365 Copilot Office apps already have A. I. features today, like PowerPoint’s Designer, where it suggests design layouts for your slides. But Copilot takes A. I. integration a step further by allowing you to interact with apps using natural language. And Copilot is able to analyze information not only in the current document, but also other relevant documents stored in your Microsoft 365 tenant. Microsoft 365 Copilot for PowerPoint (Image Credit: Microsoft) The Copilot system is an orchestration engine that harnesses the power of information via the Microsoft Graph and large language models (LLMs). It’s not just ChatGPT bolted on to Microsoft 365 apps. Microsoft demonstrated how Copilot can analyze sales information in an Excel spreadsheet and identify key trends. And dig deeper to surface more detailed information in a table and graph on a new sheet. That’s not trivial. Especially if your Excel skills are limited. Microsoft said during the presentation: ‘Most people use no more than ten percent of what PowerPoint can do. Copilot unlocks the other ninety percent. ’ And that applies across the board with Microsoft’s productivity apps. Outlook Copilot will help you separate important information from noise by triaging your inbox. And on mobile, it can summarize long email... --- ### Azure Firewall Basic Now Available to Protect Small Businesses Against Cyberattacks - Published: 2023-03-16 - Modified: 2023-03-16 - URL: https://petri.com/azure-firewall-basic-protect-small-businesses/ - Categories: Security - Tags: Azure Firewall - Article Type: News Microsoft has announced the general availability of Azure Firewall Basic. The affordable SKU launched in preview in October 2022 to help small and medium-sized businesses (SMBs) protect their Azure cloud environments. Azure Firewall is a cloud-based solution that provides an additional layer of security to protect Azure Virtual Network resources from external and internal threats. Microsoft says that customers have widely adopted Azure Firewall Basic since its launch in public preview. The company has now added a new feature that lets users deploy Azure Firewall within a virtual hub. “Deploying Azure Firewall in a virtual network is recommended for customers who plan to use traditional hub-and-spoke network topology with a Firewall on the hub. Whereas, deploying on a virtual hub is recommended for customers with large or global network deployments in Azure where global transit connectivity across Azure regions and on-premises locations is needed,” explained Mark Gakman, Senior Product Manager for Azure Networking. In addition to the Basic plan, Azure Firewall is available in two other SKUs to meet the specific needs of businesses. Azure Firewall Standard is designed for customers that need Layer 3–Layer 7 firewall protection with threat intelligence, custom DNS, Domain Name System (DNS) proxy, and other features. Moreover, Azure Firewall Premium helps organizations protect highly sensitive workloads. Azure Firewall Basic: A cloud-native network firewall security solution Microsoft has highlighted several key capabilities included in Azure Firewall Basic. It provides built-in high availability, network and application traffic filtering, as well as threat intelligence features to detect malicious... --- ### Microsoft Releases Updates to Patch Critical Outlook NTLM Vulnerability - Published: 2023-03-16 - Modified: 2023-03-16 - URL: https://petri.com/microsoft-patch-outlook-ntlm-vulnerability/ - Categories: Security - Tags: Microsoft Outlook, News, Outlook for Windows, Vulnerability - Article Type: News Microsoft has released patches to address a critical security flaw in Outlook for Windows. The company confirmed that a Russian hacking group exploited the NTLM vulnerability to target several European and military organizations in 2022. The zero-day flaw (CVE-2023-23397) was first reported discovered by Ukraine’s Computer Emergency Response Team (CERT-UA). It’s a privilege escalation vulnerability with a 9. 8 CVSS score affecting all supported versions of Outlook for Windows. Essentially, the vulnerability lets remote attackers send a specially crafted email to a vulnerable system to access the victim's NTLM password hash. Windows New technology LAN Manager (NTLM) is a suite of security protocols that use hashed login credentials for authentication in Windows domains. Once stolen, the NTLM password hash can be used for authentication purposes. “CVE-2023-23397 is a critical EoP vulnerability in Microsoft Outlook that is triggered when an attacker sends a message with an extended MAPI property with a UNC path to an SMB (TCP 445) share on a threat actor-controlled server,” Microsoft explained. “The connection to the remote SMB server sends the user’s NTLM negotiation message, which the attacker can then relay for authentication against other systems that support NTLM authentication. ” It is important to note that the Outlook Web app doesn’t use NTLM to authenticate users. Microsoft has confirmed that the NTLM vulnerability only impacts customers running Outlook for Windows clients. Microsoft details mitigation strategies to block Outlook NTLM attacks Microsoft recommends its customers to install the latest security updates available for Outlook for Windows to address the... --- ### AWS Releases Application Composer to Visualize and Build Serverless Applications - Published: 2023-03-15 - Modified: 2023-03-15 - URL: https://petri.com/aws-application-composer-build-serverless-applications/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Microsoft has announced the general availability of AWS Application composer. First introduced in December 2022, the new low-code tool enables developers to visually design and build serverless applications from multiple AWS services. “You can drag, drop, and connect AWS services into an application architecture by using AWS Application Composer’s browser-based visual canvas. AWS Application Composer helps you focus on building by maintaining deployment-ready infrastructure as code (IaC) definitions, complete with integration configuration for each service,” the company explained. AWS has also made some improvements to the Application Composer tool based on customer feedback. The service now provides better integration with Amazon SQS (Simple Queue Service). AWS Application Composer also introduced zoom controls and smaller resource cards that let users view more details on a single screen. A new change inspector feature helps to track changes when resources are connected. How to get started with AWS Application Composer To get started, users will need to head to the AWS Management Console and select the Open demo option. They will see a simple cart app with various resources such as AWS Lambda, Amazon DynamoDB, and Amazon API Gateway. Users can drag and drop AWS services from the left Resources panel onto the canvas to expand their architecture. It’s possible to connect resources in the middle Canvas panel. https://www. youtube. com/watch? v=txzU1Go9oxc AWS highlighted that AWS Applicatio be useful in various scenarios. For instance, developers can use the tool to build a prototype of serverless applications. It also helps to create diagrams for documentation or onboard... --- ### Microsoft Warns About New MFA Bypass Tool Used in AiTM Phishing Campaigns - Published: 2023-03-15 - Modified: 2023-03-15 - URL: https://petri.com/microsoft-mfa-bypass-aitm-phishing-campaigns/ - Categories: Security - Tags: MFA, News, Phishing, Security - Article Type: News Microsoft has warned customers about Adversary-in-the-Middle (AiTM) phishing kit available for sale on a popular cybercrime forum. The software is designed to make it easier for attackers to deploy phishing campaigns to target enterprise accounts. According to the Microsoft Threat Intelligence team, this phishing kit is an open-source tool that is developed by a hacking group called DEV-1101. Last year, cybercriminals started selling the Adversary-in-the-Middle (AiTM) phishing kit for $300 for a standard version and VIP licenses for $1,000. Microsoft explained that the tool provides various advanced features that support the deployment of phishing campaigns in enterprise environments. Specifically, it gives threat actors the ability to bypass multi-factor authentication (MFA). The security feature requires users to provide one or more forms of authentication to access a service. It makes it difficult for hackers to gain unauthorized access to users’ accounts. Interestingly, the AiTM kit leverages different techniques to avoid detection. First up, it enables threat actors to insert a CAPTCHA into the phishing process, which lets humans access the final phishing page. There is also a feature that uses antibot functionality that triggers an href redirection to a benign page. It makes it easier to bypass blocklists maintained for malicious URLs. “These attributes make the kit attractive to many different actors who have continually put it to use since it became available in May 2022. Actors using this kit have varying motivations and targeting and might target any industry or sector,” the Microsoft Threat Intelligence team explained. The AiTM phishing... --- ### Using Affinity and Anti-Affinity Rules in Azure Stack HCI and Windows Server Hyper-V > This article details what are affinity and anti-affinity rules and how to use them with Azure Stack HCI and Windows Server Hyper-V. - Published: 2023-03-15 - Modified: 2023-04-20 - URL: https://petri.com/azure-stack-hci-affinity-rules/ - Categories: Azure Stack HCI - Tags: Azure, Azure Stack HCI, Windows Server - Article Type: Overview In this article, I will explain what are affinity and anti-affinity rules and how to use them with Azure Stack HCI and Windows Server Hyper-V. If you’ve been using other hypervisors, you may already be familiar with affinity and anti-affinity rules, which are used to define the relationship between virtual machines and hosts. What are affinity and anti-affinity rules? Affinity and anti-affinity rules describe how virtual machines on a hypervisor are placed next to each other when deployed and in operation. Let’s dive into details about how they work. Affinity Rules When configuring the relationship between two virtual machines with an affinity rule, you want to keep them as close as possible. In the best case, you want to keep them on the same hypervisor host. You can use an affinity rule to keep two VMs as close as possible (Image credit: Flo Fox/Petri) Normally, you use affinity rules to keep systems close to each other. That is often required for virtual machines that need very fast and reliable communication with each other. A good use case could be a high-performance compute cluster where very fast communication for calculations is more important than redundancy. Another example could be frontend and backend systems where the frontend needs very fast communication with the backend system. An affinity rule can ensure very fast communication in a high-performance compute cluster (Image credit: Flo Fox/Petri) Anti-affinity rules Anti-affinity rules are the direct opposite of affinity rules: Those rules are used to ensure that virtual... --- ### March Patch Tuesday Updates Bring New Windows 11 Features and Fixes for 74 Vulnerabilities > The March 2023 Patch Tuesday updates mark the public rollout of the “Moment 2” update for Windows 11, which brings a new taskbar search box and more. - Published: 2023-03-14 - Modified: 2024-11-19 - URL: https://petri.com/windows-11-march-2023-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has just released the March 2023 Patch Tuesday updates for Windows 11 and Windows 10. For Windows 11 users, today marks the public rollout of the “Moment 2” feature update that brings a new search box to the taskbar and many other new features.   On the security front, this month’s Patch Tuesday updates include fixes for 74 vulnerabilities in Windows and other components. Two of them are currently being exploited by attackers, including an Outlook spoofing vulnerability.   74 vulnerabilities fixed in the March Patch Tuesday updates Here are the most critical vulnerabilities fixed with this month’s Patch Tuesday updates: CVE-2023-23397: This Microsoft Outlook Elevation of Privilege Vulnerability is already being exploited by attackers sending specially crafted emails that are triggered automatically when they’re retrieved and processed by the email server. CVE-2023-24880: This Windows SmartScreen Security Feature Bypass Vulnerability has been publicly disclosed and is also being exploited by attackers. It requires a malicious malicious file that would evade Mark of the Web (MOTW) defenses. CVE-2023-23392: This HTTP Protocol Stack Remote Code Execution Vulnerability could allow an unauthenticated attacker to send a specially crafted packet to a targeted server utilizing the HTTP Protocol Stack (http. sys) to process packets. CVE-2023-23415: This Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability could allow an attacker to send a low-level protocol error containing a fragmented IP packet inside another ICMP packet in its header to the target machine. CVE-2023-23411: This Windows Hyper-V Denial of Service Vulnerability could allow a Hyper-V guest to affect... --- ### Google Workspace to Get New ChatGPT-Like Generative AI Capabilities - Published: 2023-03-14 - Modified: 2023-03-14 - URL: https://petri.com/google-workspace-generative-ai-capabilities/ - Categories: G Suite - Tags: Gmail, Google Docs, Google Workspace, News - Article Type: News Google announced this morning new ChatGPT-like generative AI capabilities for its Google Workspace productivity suite. The new AI-based features will begin rolling out in the Google Docs and Gmail apps for select users later this month. In Google Docs, the new AI generative capabilities will enable users to create outlines for new documents. For instance, HR professionals will be able to create an outline for a job description with a brief prompt. Going forward, Google plans to introduce the ability to proofread, brainstorm, write, and rewrite text directly within documents. Google has announced that new AI-powered features are coming to Gmail. Users will be able to draft and summarize emails, adjust the tone, and split the content into bullet lists. The feature will also let Gmail users create longer drafts based on short prompts. Additionally, Gmail is getting the “I am feeling lucky” feature that will generate email content based on existing information. “We’re designing our products in accordance with Google’s AI Principles that keep the user in control, letting AI make suggestions that you’re able to accept, edit, and change. We’ll also deliver the corresponding administrative controls so that IT is able to set the right policies for their organization,” explained Johanna Voolich Wright, Vice President of Google Workspace. https://www. youtube. com/watch? v=6DaJVZBXETE Google teases generative AI features coming to other Google Workspace products Google teased that AI-powered features can be integrated into other products such as the Sheets, Slides, Chat, and Meet apps. For example, Google Meet could automatically create meeting... --- ### Microsoft 365 Defender Adds Real-Time Custom Detections Support in Preview - Published: 2023-03-14 - Modified: 2023-03-14 - URL: https://petri.com/microsoft-365-defender-real-time-custom-detections/ - Categories: Security - Tags: Microsoft 365 Defender, News, Security - Article Type: News Microsoft has introduced support for near real-time custom detections in its Microsoft 365 Defender solution. The new Continuous (NRT) feature enables customers to create custom detection rules that run in near real-time to block sophisticated attacks. Microsoft 365 Defender allows customers to create custom detection rules to monitor specific threats, activities, and misconfigured endpoints. These rules are based on the specified conditions and can be used to trigger alerts, notifications, and response actions. Microsoft 365 Defender also provides a set of pre-defined detection rules that can be customized to meet specific requirements. “These detections can be integrated with the broad set of Microsoft 365 Defender across email, endpoint, and identity, leading to faster response times and faster mitigation of threats. This means your custom logic will run and evaluate all available signals and alerts faster than ever before and will trigger your predefined response action immediately, once a match is detected,” the Microsoft 365 Defender team explained. Microsoft 365 Defender can now monitor recent vulnerabilities Microsoft has emphasized that enterprise customers are facing a growing number of online threats. Therefore, organizations must implement strong security measures to address these threats and protect sensitive data. These custom detections and automated response capabilities will help IT admins to monitor recent vulnerabilities. The feature also makes it easier for administrators to detect and remove unwanted emails. Microsoft says that the near real-time detection capabilities are available in preview for all businesses. The company encourages customers to provide feedback to improve threat detection and... --- ### Microsoft's Web-Based Outlook for Windows App to be Available for all Users Next Month - Published: 2023-03-14 - Modified: 2023-03-14 - URL: https://petri.com/microsoft-outlook-for-windows-app/ - Categories: Active Directory (AD) - Tags: Microsoft 365, News, Outlook, Outlook for Windows - Article Type: News Microsoft is set to release its long-awaited unified Outlook for Windows app for all users. The new web-based experience has been available for Office Insiders since May 2022, and it will begin rolling out to users on the Current Channel in early April. Microsoft has confirmed that the new Outlook for Windows client will first be available for personal Microsoft accounts and Exchange Online accounts. However, the toggle button to switch to the web-based Outlook app will not show up for Microsoft 365 subscribers. Microsoft plans to add support for more account types in the coming months. “With a wealth of feedback from these early adopters, we are excited to expand access to users in Current Channel. The experience is an option to try, and nothing will change without end users taking action. We will give notice before any required changes occur, after the preview has received sufficient usage and feedback,” the company explained on the Microsoft 365 Admin Center. Microsoft’s new Outlook app for Windows features a simplified ribbon with quick actions to make navigation easier. It also supports dynamic calendar column widths to help users easily view details of all events on their schedule. The new Outlook experience offers better integration with Microsoft Teams. What you should do to prepare for the release of the new Outlook for Windows client Microsoft notes that conditional access (CA) policies will also apply to the unified Outlook client for Windows. Moreover, the app won’t support COM/VSTO add-ins, and IT admins are... --- ### Cloud Conversations: Katie McMillan on Information Security vs. Legacy Technology and Mentoring > This week's Cloud Conversations episode welcomes Katie McMillan, a rising star in the tech community who specialises in Information Security. - Published: 2023-03-14 - Modified: 2023-03-14 - URL: https://petri.com/cloud-conversations-episode-70-katie-mcmillan/ - Categories: Video - Tags: Cloud Conversations, Security - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations: Katie McMillan on Information Security vs. Legacy Technology and Mentoring Katie McMillan is a rising star in the tech community and specialises in Information Security across all platforms, but with a more recent focus on Microsoft. In addition to being an inspiring mentor, Katie is also a passionate advocate for women in the tech industry and is a TechWomen100 Winner - 2021, and a Women In Tech Excellence Finalist - 2021. Katie McMillan joins Kat and Peter on the show this week to discuss: Katie's career journey How legacy technologies are the biggest challenge to implementing modern security principles Mentorship Women in tech And much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the... --- ### Microsoft Removes Edition Checks for AppLocker Deployment on Windows 10 and 11 - Published: 2023-03-13 - Modified: 2023-03-13 - URL: https://petri.com/microsoft-removes-edition-checks-applocker-windows/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has made some changes to the way the AppLocker application control policies work on Windows PCs. The company has quietly removed the checks that were previously used to identify the specific edition of Windows 11 or 10 installed on a system AppLocker is a security feature that enables IT Pros to enforce policies to manage applications that users can run on their systems. These policies can be configured to allow or block specific packaged apps, installers, scripts, EXE, and DLL files. AppLocker policies can be configured to allow or block specific applications, scripts, installers, and DLLs. Administrators can create the policies with the Group Policy Editor or PowerShell. The AppLocker rules can be applied on a per-user or per-group basis. AppLocker rule enforcement IT Admins can now apply AppLocker policies across all Windows editions Previously, AppLocker application control policies were enforced based on the Windows edition and the endpoint management method. “For instance, systems managed by mobile device management (MDM) enforced AppLocker policies on all editions of Windows 10 and Windows 11. Also, systems managed by Group Policy only enforced AppLocker policies on Windows 10 and Windows 11 Enterprise or Education editions,” Microsoft explained. According to Microsoft, IT admins can now deploy the policies across Windows 11 versions 22H2 and 21H2 as well as Windows 10 versions 2004, 20H2, and 21H1. The change allows administrators to enforce AppLocker policies on more managed Windows 10 and 11 PCs. Moreover, it can help to free up some extra time to focus... --- ### How to Enable Hyper-V in Windows 10 > Here's how to enable Hyper-V on Windows 10 using PowerShell or the Windows GUI. We also detail how to create your first VM and how nested virtualization works. - Published: 2023-03-13 - Modified: 2023-03-13 - URL: https://petri.com/enable-hyper-v/ - Categories: Hyper-V, Windows 10 - Tags: Hyper-V, Nested Virtualization, Virtualization, Windows 10 - Article Type: How To Windows 10 Pro, Enterprise, and Education editions contain a free virtualization software named Hyper-V. The underlying code works nearly the same as what's provided in Windows Server. In this article, I will discuss how to enable Hyper-V on Windows 10, how to create your first virtual machine, and briefly talk about nested virtualization. How to enable Hyper-V on Windows 10 You can enable Hyper-V on Windows 10 by using PowerShell or the Windows GUI. PowerShell is probably the easiest way to do it, and here's two proceed: Open a PowerShell console with elevated permissions. Run the following command: Enable-WindowsOptionalFeature -Online -FeatureName Microsoft-Hyper-V –All Reboot your Windows 10 PC when prompted. You can now access Hyper-V and create your first virtual machine! Keep reading for more detailed instructions on how to enable Hyper-V using either PowerShell or the Windows GUI. What is Hyper-V? Hyper-V is Microsoft's free virtualization software in all editions and versions of Windows Server and Windows 10/11 Pro, Enterprise, and Education SKUs. Whether you're an IT professional, a software developer, or a technology enthusiast, I imagine you would prefer to run multiple, independent operating systems on one computer instead of having to purchase a computer for each one. That can get expensive! Virtual machines running in Hyper-V run on what's called virtual hardware. Hard disks, switches, and DVD Drives are virtualized and presented to your guest OS. The guest VM doesn't necessarily know it's running as a virtual machine. Hyper-V system requirements There are a few technical and specific... --- ### GitHub to Start Rolling Out Two-Factor Authentication (2FA) to All Contributors Today - Published: 2023-03-13 - Modified: 2023-03-13 - URL: https://petri.com/github-two-factor-authentication/ - Categories: Security - Tags: GitHub, News, Security, two factor authentication - Article Type: News Microsoft’s owned GitHub has recently announced that it will soon require two-factor authentication (2FA) for developers who contribute code on the platform. Starting today, the company will begin rolling out the 2FA requirement to all software developers worldwide. GitHub first unveiled its plans to enroll all contributors in 2FA by the end of 2023. The company made the 2FA requirement mandatory for maintainers of the top 100 npm packages in February 2022. Then, GitHub expanded this policy to include all maintainers of popular packages with more than 500 dependents or over one million weekly downloads. GitHub explains that this move is part of its efforts to improve account security to secure the software development process. These compromised accounts could be used to roll out malicious changes or steal private code. “Our 2FA initiative is part of a platform-wide effort to secure software development by improving account security. Developers’ accounts are frequent targets for social engineering and account takeover (ATO). Protecting developers and consumers of the open source ecosystem from these types of attacks is the first and most critical step toward securing the supply chain,” GitHub explained. GitHub to gradually expand 2FA requirement roll out to minimize disruption GitHub plans to roll out the 2FA policy in a staggered manner to minimize disruption in the workflows. Initially, the company will begin notifying smaller developer groups, and it will scale the requirements to larger groups over the course of this year. GitHub has not detailed any specific criteria for inclusion in... --- ### Microsoft Loop App to Launch in Public Preview This Month - Published: 2023-03-10 - Modified: 2023-03-11 - URL: https://petri.com/microsoft-loop-launch-public-preview/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Loop, News - Article Type: News Microsoft is getting ready to launch its Microsoft Loop app in public preview later this month. Microsoft Loop has been available in private preview since November, allowing users to collaborate with their colleagues across Microsoft 365 apps. Microsoft Loop is based on Microsoft’s Fluid Framework, and it has three main structural elements: Loop components, Loop pages, and Loop workspaces. First up, Loop components are live pieces of content that work across multiple Microsoft 365 apps. These include tables, checklists, bulleted lists, and numbered lists. Loop components are updated in real time and can be shared in Microsoft Teams and Outlook. Additionally, a Loop page is a document that allows users to share and collaborate on one or more Loop components. Loop workspaces make it easier for users to track and organize their Loop pages. For instance, users can organize related Loop pages in different groups or sections, which is particularly useful for large projects. Microsoft says that multiple users will be able to collaborate on Loop pages and workspaces. How to prepare for the public preview of Microsoft Loop? For now, Microsoft Loop will be disabled by default, and it will be up to the IT admins to enable it in their tenants. “The Loop app is entering a public preview phase. It is default off and does not yet meet all of Microsoft's compliance capabilities. Regulated organizations will note that we are still working on features such as eDiscovery, Sensitivity labeling, and others. A more complete list of these... --- ### Microsoft Warns that Business Email Compromise Attacks Can Hijack Accounts in Hours - Published: 2023-03-10 - Modified: 2023-03-10 - URL: https://petri.com/microsoft-business-email-compromise-attacks/ - Categories: Security - Tags: Microsoft 365 Defender, News - Article Type: News Microsoft has warned that threat actors are increasingly using business email compromise campaigns to target enterprise customers. The company has found that it could be challenging for the victims to identify and mitigate the attacks on time. Business email compromise (BEC) is a type of cyberattack that lets hackers use phishing emails to request payments or gain access to sensitive information. The threat actor impersonates a trusted individual (like an executive or customer) to convince the target to take a specific action. The FBI 2021 Internet Crime Report revealed that BEC attacks increased by 65 percent from July 2019 to December 2021. Microsoft explained that the attacker used a phishing technique called adversary-in-the-middle (AiTM) to get the session cookie and bypass multi-factor authentication (MFA). They signed in to the target account and spent two hours searching for email threads to hijack. The next step involves using homoglyph characters to register deceptive domains similar to the legitimate website. The cybercriminals made a rule to move and hide emails in a different folder. They also emailed the business partner and asked them to send money to an account they owned. After that, the threat actors deleted the email so the compromised user wouldn’t notice. Microsoft says that its Microsoft 365 Defender alerted about the BEC attacks around 20 minutes after the email was deleted from the mailbox. The solution disabled the compromised account to mitigate the cyberattack. Timeline of the BEC campaign Microsoft 365 Defender disrupted 38 BEC attacks Microsoft highlighted that... --- ### What is the Intel vPro Platform? > Here's how the Intel vPro platform works and how its features like Active Management Technology allow IT pros to remotely manage devices in a secure manner. - Published: 2023-03-10 - Modified: 2023-03-14 - URL: https://petri.com/intel-vpro-platform/ - Categories: Hardware - Tags: CPU, Hardware, Intel, Intel vPro, Laptop, PC - Article Type: Overview The Intel vPro platform was first announced by the chip maker back in 2007, and it designates a collection of advanced CPU technologies for business PCs. As of today, it provides various features to increase security and manageability to support IT departments in organizations of all sizes. In this article, I'll explain how the Intel vPro platform works and how features like Active Management Technology (AMT) allow IT pros to remotely manage devices in a secure manner. What is the Intel vPro platform? Intel vPro is a platform that provides a set of hardware and software technologies designed to enhance the security and manageability of business PCs. It is supported by a wide range of business-class devices from major computer manufacturers. Over the years, vPro has become an important platform for businesses that require high levels of security, manageability, and performance for their computer fleets. It combines hardware-level security and remote management capabilities with advanced performance features such as Intel's Thread Director technology (more on that below). Intel's vPro platform is designed for business PCs (image credit: Intel) Intel vPro vs EVO: What’s the difference? Both Intel vPro and the more recent Intel EVO brand offer several unique features that cater to different target audiences. While the Intel vPro platform is targeting business users, the EVO platform is targeting mainstream consumers and "prosumers. " Here are some of the key differences between them both. FeatureIntel vProIntel EVOSecurityOffers very comprehensive hardware-level security featuresProvides security features such as hardware-based threat detection and identity... --- ### Cloud Conversations: Fabian Bader on Protecting Azure AD Hybrid Identity and Microsoft Defender > Fabian Bader is a cyber-security architect and Microsoft MVP. In this week's Cloud Conversations episode, he discusses protecting Azure AD Hybrid Identity and Microsoft Defender - Published: 2023-03-10 - Modified: 2023-03-10 - URL: https://petri.com/cloud-conversations-episode-69-fabian-bader/ - Categories: Video - Tags: Azure Active Directory, Azure Active Directory Identity Protection, Cloud Conversations, Microsoft Defender for Identity - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations: Fabian Bader: Protecting Azure AD hybrid identity and Microsoft Defender Fabian Bader is a cyber-security architect and Microsoft MVP. In this week's Cloud Conversations episode, he joins Ru Campbell to talk about: Changing tactics to protect domain controllers and on-premises Active Directory Microsoft Defender for Identity as part of your hybrid identity security Why FIDO2 is critical and a level up compared to traditional MFA The intricacies of Defender for Endpoint exclusions and tamper protection More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who... --- ### Microsoft's Azure OpenAI Service Gets New ChatGPT Integration in Preview - Published: 2023-03-09 - Modified: 2023-03-09 - URL: https://petri.com/azure-openai-service-chatgpt-integration/ - Categories: Microsoft Azure - Tags: Azure OpenAI Service, News - Article Type: News Microsoft has just announced a new ChatGPT integration coming to its Azure OpenAI Service. This release enables developers to add custom AI-powered capabilities to build their next-generation applications. Microsoft partnered with OpenAI to launch the Azure OpenAI Service in private preview in November 2021. It’s a cloud-based solution that allows developers to access OpenAI’s powerful language models (GPT-3 and Codex) and create data-driven applications. Azure OpenAI Service helps with natural language processing tasks, including semantic search, code generation, and content summarization. Microsoft highlights that the new ChatGPT integration will help developers to create intelligent solutions for businesses. Some common scenarios include improving existing chatbots, automated claims processing, and recapping call center conversations. Microsoft says businesses can also create new ad copies with personalized offers for customers. “Customers and partners can also create new intelligent apps and solutions to stand out from the competition using a no-code approach in Azure OpenAI Studio. Azure OpenAI Studio, in addition to offering customizability for every model offered through the service, also offers a unique interface to customize ChatGPT and configure response behavior that aligns with your organization,” said Eric Boyd, Corporate Vice President for AI Platform. https://www. youtube. com/watch? v=3t3qZu1Dy1k How much does it cost to use ChatGPT in Azure OpenAI Service? Microsoft notes that the new ChatGPT integration is currently available in preview in Azure OpenAI Service. The feature is priced at $0. 002/1k tokens and provides improved security, compliance, and lower latency for enterprise customers. The company plans to begin billing for ChatGPT usage on March... --- ### Windows Update for Business Reports Now Help IT Admins Monitor Bandwidth Usage - Published: 2023-03-09 - Modified: 2023-03-09 - URL: https://petri.com/windows-update-for-business-delivery-optimization-report/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has announced the general availability of Delivery Optimization in Windows Update for Business reports. The new Delivery Optimization report provides important data points that enable customers to track the performance of Windows update delivery across an organization. Windows Update Delivery Optimization is a feature that enables Windows devices to download and share software updates with other PCs on the same network. This feature utilizes peer-to-peer networking technology to distribute updates, which ultimately helps to reduce bandwidth consumption. Microsoft launched Windows Update for Business reports back in November 2022. It’s a cloud-based solution that allows IT admins to track the deployment status of feature, quality, and security updates on Windows 10 and 11 devices. The service also provides valuable insights to identify devices that are not up-to-date and troubleshoot issues. The Delivery Optimization Window Update for Business report provides insights about how software updates got delivered during the last 28 days. It includes Delivery Optimization stats such as total bandwidth savings, download volume, and device count. “We genuinely appreciate those of you who participated in the public preview! You helped us verify the accuracy of the new data tables and revise the layout. Your responses helped us identify and address all critical issues, so it can now be offered to all Delivery Optimization users,” Microsoft explained. IT admins can customize the Delivery Optimization Window Update for Business reports Microsoft says that IT admins can customize the Windows content delivery data into dashboard views. The report shows the peering status as... --- ### Microsoft Edge to Let Enterprise Customers Securely Save Files to OneDrive on Mobile Devices - Published: 2023-03-09 - Modified: 2023-03-09 - URL: https://petri.com/microsoft-edge-save-files-onedrive-mobile/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News, Security - Article Type: News Microsoft Edge is getting a new update that will allow enterprise customers to securely save files to OneDrive on mobile devices. The new security feature is currently available for Edge Insiders in version 111 on iOS and Android devices. Previously, some organizations prohibited users from saving files to local device storage on mobile devices. This measure helped IT administrators in preventing malicious actors from gaining unauthorized access to sensitive enterprise data. Microsoft aims to address the problem by providing a secure way to save, access, and share files from the Edge mobile app. “We heard time and again from customers that their users needed a way to save files without compromising security. Saving files to OneDrive (instead of locally) offers a simple solution that allows users to easily save, access, and share files from the Edge mobile app while respecting security parameters set their enterprise,” the Edge Insider team explained. According to Microsoft, the new file-saving experience joins the existing security features available in the Edge browser. For instance, Microsoft allows IT Pros to manage the Edge mobile app with Intune’s App Protection Policy (APP). It’s also possible to restrict the sharing of browser data with Outlook, OneDrive, and other Microsoft 365 apps. How to enable the secure file-saving experience in Microsoft Edge Microsoft has detailed a couple of prerequisites to use this new security feature in the Edge mobile app. First of all, enterprise customers will need to use their Azure AD accounts to log on to the Microsoft... --- ### Microsoft Adds New Open-Source Capabilities to Azure AI - Published: 2023-03-08 - Modified: 2023-03-08 - URL: https://petri.com/microsoft-open-source-capabilities-azure-ai/ - Categories: Azure - Tags: artificial intelligence, Azure, Azure AI, News - Article Type: News Microsoft announced yesterday several new features for developers at its Azure Open Source Day 2023. The company explained that these capabilities enable software developers to quickly build intelligent applications. “Most companies have leveraged AI to improve efficiency and costs. Large AI applications leveraging natural language processing (NLP), automatic speech recognition (ASR), and text-to-speech (TTS) are becoming prevalent, but what powers these applications is the underlying infrastructure optimized for large AI workloads. Azure is the best place to build AI workloads,” explained Eric Boyd, CVP for AI Platform. First up, Microsoft has announced the public preview of new Vision Services that help developers to create computer vision apps across industries. Vision Services provide several features such as background removal, smart cropping, automatic captioning, image search, model customization, and video summarization. Microsoft has also introduced new AI controls to help users with real-time alerts, environment analysis, and movement tracking. Microsoft announced its plans to launch foundation models in Azure Machine Learning. The new service will enable users to deploy pre-trained open-source foundation models for various machine-learning tasks, such as multi-modality and natural language processing. It eliminates the need for users to manage and optimize dependencies manually. Microsoft unveils new Responsible AI Toolbox additions Microsoft has recently introduced two new open-source tools to increase the adoption of responsible AI practices. The Responsible AI Mitigations Library makes it easier to mitigate errors in Machine Learning models. Finally, the Responsible AI Tracker extension lets users view models, code, and visualization artifacts within the same framework... . --- ### Exchange Online to Block Remote PowerShell Connections for New Tenants Next Month - Published: 2023-03-08 - Modified: 2023-03-08 - URL: https://petri.com/exchange-online-block-remote-powershell-connections/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft has announced that it’s deprecating Remote PowerShell (RPS) for Exchange Online in new tenants next month. The company will begin blocking RPS connections for all new Exchange Online customers on April 1, 2023. “Today, we are announcing that starting April 1, 2023, we will start blocking RPS connections for all tenants created on or after April 1, 2023. After April 1, 2023, new tenants will not be able to use RPS when connecting to Exchange Online and will have to use the v3 module with REST cmdlets instead,” Microsoft explained. Microsoft originally announced its plans to deprecate the use of the Exchange Online PowerShell v2 module in December 2022. The company built RPS to let IT admins use local workstations for managing Exchange 2010 on-premises servers. However, Remote PowerShell uses Basic Authentication that is subject to password spray attacks in organizations. Moreover, it also lacks support for the multifactor authentication (MFA) mechanism. Microsoft launched the new REST-based Exchange Online management v3 module to boost security in September 2022. The company has already started deprecating Remote PowerShell for Exchange Online v2 in favor of v3, with a complete cut-off in July 2023. However, Microsoft found that many IT admins still use RPS to communicate with Exchange Online. Update to Exchange Online PowerShell v3 module Microsoft recommends Exchange Online customers to switch to the v3 PowerShell module as soon as possible instead. The company claims that the latest version supports modern authentication and it’s more secure as compared to the older... --- ### Optimizing the VDI User Experience with FSLogix Containers and Application Masking  > Here's how Microsoft's FSLogix technology can be used to optimize remote and virtual desktop environments by leveraging Profile Container and App Masking. - Published: 2023-03-08 - Modified: 2023-03-10 - URL: https://petri.com/fslogix-profile-container-application-masking/ - Categories: Virtualization - Tags: Azure Virtual Desktop, FSLogix, Virtualization - Article Type: Overview Remote and virtual desktop solutions provide a flexible way for users to access remote services securely while maintaining control of how the users access those services. In this article, I'll explain how FSLogix can optimize remote and virtual desktop environments by leveraging Profile Containers and Application Masking. I'll also detail the FSLogix features allowing users to provide customized, user-based access to applications in a virtual desktop environment.   How FSLogix Profile Container and Application Masking optimize the VDI experience  Providing a consistent experience as users log into non-persistent or shared desktops is an essential factor in the success of a remote and virtual desktop environment.  Microsoft acquired FSLogix in 2018, and it is the recommended way to manage user profiles in Azure Virtual Desktop environments. FSLogix is not limited to use with Microsoft solutions. It is available to use with Citrix, VMware Horizon, and other virtual desktop infrastructure (VDI) platforms to manage user profiles and the desktop experience.   There are three main components included with FSLogix:   Profile Container Application Masking  Java Version Control  FSLogix Profile Container creates a container on a network share that holds the user’s profile. The profile is available as the user moves between different computers in a remote or virtual desktop environment, providing a consistent desktop experience with non-persistent and multi-user desktops.   Departments or business units within an organization require access to unique combinations of applications. Managing images with different collections of applications can be time-consuming in these environments. FSLogix Application Masking simplifies image management by dynamically... --- ### Microsoft Releases Azure AD System-Preferred Authentication Policy in Preview - Published: 2023-03-07 - Modified: 2023-03-07 - URL: https://petri.com/microsoft-azure-ad-system-preferred-authentication/ - Categories: Identity Service, Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, MFA, News - Article Type: News Microsoft has started rolling out a new system-preferred authentication policy in preview for Azure AD customers. The feature enables the system to evaluate which authentication method should be used when a user signs in to Azure AD. With system-preferred authentication, Azure AD will check all authentication methods registered for an account and only show the strongest option. However, the system will continue to use usernames/passwords for accounts that don’t have a registered MFA method. “For example, if a user registered both SMS and Microsoft Authenticator push notifications as methods for MFA, system-preferred MFA prompts the user to sign in by using the more secure push notification method. The user can still choose to sign in by using another method, but they're first prompted to try the most secure method they registered,” Microsoft explained. Microsoft notes that the new system-preferred authentication policy will be disabled by default. It will be up to the IT admins to turn on this feature for users in their tenant with MSGraph API. In April, Microsoft will add a new toggle to let administrators configure the policy through the Azure AD admin center. Microsoft to enforce system-preferred authentication for all Azure AD accounts in July Overall, the system-preferred authentication policy is a part of Microsoft’s ongoing efforts to improve the security of Azure AD accounts in organizations. Last year, Microsoft warned about the increasing use of MFA fatigue attacks by threat actors to target enterprise customers. The Microsoft Authenticator app recently added support for number matching... --- ### Microsoft's Outlook for Mac Email Client is Now Free to Use on macOS - Published: 2023-03-07 - Modified: 2023-03-07 - URL: https://petri.com/outlook-for-mac-free-download/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook for Mac - Article Type: News Microsoft has announced that its Outlook for Mac client is now available as a free app on Apple’s App Store. The company detailed yesterday that users no longer need a Microsoft 365 subscription or paid license to use the macOS version of the Outlook app. “The Outlook for Mac app complements Outlook for iOS – giving people a consistent, reliable, and powerful experience that brings the best-in-class experience of Outlook into the Apple ecosystem that so many love,” Microsoft explained. “We are rebuilding Outlook for Mac from the ground up to be faster, more reliable, and to be an Outlook for everyone. ” Microsoft is continuing to improve the new Outlook for Mac experience that launched in February 2022. The company mentioned that it has optimized the Outlook for Mac app to run faster on Apple Silicon devices. The design language of the app is consistent with the macOS and it supports unified mailboxes. It provides support for Gmail, Outlook. com, Microsoft 365, Yahoo Mail, POP, IMAP, and iCloud. Outlook for Mac to add support for new Outlook Profiles feature Microsoft has also announced several new features coming to the Outlook for Mac app. The company is adding a new feature that will let users view their upcoming events in Outlook. Microsoft is also planning to integrate a new Outlook Profiles feature with the Focus mode on macOS. It will enable users to assign specific accounts to different profiles to avoid distractions. Outlook Profiles Microsoft has been testing its new web-based Outlook... --- ### Pure Storage's FlashBlade//E Blade Server Aims to Make Flash-Based Storage More Affordable > Pure Storage recently announced FlashBlade//E, a new cost-effective solution for managing unstructured data using flash storage. - Published: 2023-03-07 - Modified: 2023-03-07 - URL: https://petri.com/pure-storage-flashblade-e-blade-server/ - Categories: Backup & Storage - Tags: Backup, On-Premises, storage - Article Type: News Pure Storage, the US-based company known for its innovative flash-based storage solutions recently unveiled FlashBlade//E, a new cost-effective solution for managing unstructured data using flash storage. The new offering follows the launch of the FlashBlade//S family last year that brought a modular architecture that separates compute from capacity. “Where FlashBlade//S is tuned for critical, high-performance workloads that consistently require cutting-edge high performance, FlashBlade//E addresses capacity of all unstructured repository workloads while helping you address cost and power utilization,” explained Amy Fowler, VP & General Manager, FlashBlade at Pure Storage. Pure Storage promises that organizations interested in moving away from disk-based systems due to management and budget reasons now have a more sustainable and scalable alternative with FlashBlade//E. The company compared the transition to disk-based storage to all-flash unstructured data storage as “the shift from incandescent to LED,” with FlashBlade//E using one-fifth of the space and power and improving reliability by a 10x-20x factor.   How Pure Storage’s FlashBlade//E works FlashBlade//E is a scalable system that starts with 2 chassis, with one EC chassis mixing storage and compute and another EX chassis for storage. Each chassis takes 5U of rack space, and there are also two external fabric modules (XFMs) taking 1U each.   How Pure Storage’s FlashBlade//E works (Image credit: Pure Storage) With this basic configuration, organizations get 4 petabytes of storage space with up to 16x100GbE connectivity. As FlashBlade//E is highly scalable, customers will be able to add more chassis and storage at under $0/20 per GB. Pure Storage announced that FlashBlade//E will be generally... --- ### Microsoft Teams Channels vs. Chat > Microsoft Teams is a complex collaboration tool. In this article, I’m going to help you understand Microsoft Teams channels vs chat. - Published: 2023-03-07 - Modified: 2023-03-07 - URL: https://petri.com/microsoft-teams-channels-vs-chat/ - Categories: Microsoft Teams - Tags: collaboration, Microsoft 365, Microsoft Teams - Article Type: Overview As Microsoft puts it, teams and channels are where ‘real work gets done’. Let’s look more closely at Teams channels vs chats. Microsoft Teams is a complex tool that allows users to collaborate using a mixture of apps provided by Microsoft 365, like OneDrive files, SharePoint libraries, Microsoft Lists, Planner, Approvals, and many others. In this article, I’m going to help you understand Microsoft Teams channels vs. chat. What is a team in Microsoft Teams? A team is a collaboration space for internal groups and you can set who has access to each team. For instance, you might give everyone in your organization access to a team or restrict it to specific people. Teams are subdivided into channels. There will always be at least one channel in a team. A SharePoint portal added as a tab in a team channel (Image Credit: Petri/Russell Smith) Teams are good for organizing work that happens over a long period of time and they allow you to: Create channels to organize files, apps, and posts Add tabs for managing access to information or apps. You might add a tab that contains access to a Planner board for instance. All channels have a Files tab by default. This allows you to organize files that are associated with a project and work on them together individually or in real time. You can link meetings to your team You can share channels with other organizations and add external users Because teams need to be set up... --- ### Microsoft's Windows Insider Program Adds New Canary Channel > Microsoft is launching a new Canary channel for its Windows Insider Program today, and the existing Dev channel is getting a “reboot.” - Published: 2023-03-06 - Modified: 2023-03-06 - URL: https://petri.com/windows-11-insider-program-canary-channel/ - Categories: Windows 11, Windows Client OS - Tags: Windows 11, Windows Insider - Article Type: News Microsoft’s Windows Insider Program, which lets consumers and business users test new Windows 11 features ahead of their public release is getting an overhaul. Microsoft is launching a new Canary channel today while the existing Dev channel is getting a “reboot. ” Microsoft originally launched its Windows Insider Program back in the fall of 2014, almost a year before the release of Windows 10. The program has evolved quite a lot over the years, and Microsoft is probably aware that keeping up with Windows Insider updates isn’t exactly easy even for Windows enthusiasts.   Back in 2020, the company replaced the existing “rings” systems with “channels": The Fast & Skip Ahead rings became the Dev channel, while the Slow ring became the Beta channel. Starting today, Microsoft is adding a new Canary channel to the mix.   What is the new Windows Insider Canary channel? According to Microsoft, the new Canary channel will be used to preview “platform changes” that require significant testing, including major changes to the Windows kernel, new APIs, and more. The company will use this Canary channel to test new features and improvements that may never ship. In practice, Microsoft says that “this is very similar to what we’ve been flighting to the Dev Channel in the past. ” Starting today, all devices that are currently receiving Dev channel builds will be moved to the new Canary channel, and they’ll continue to receive Windows 11 builds from the 25000 series. All Dev channel Insiders will be notified about this change... --- ### Microsoft Dynamics 365 Copilot Brings Generative AI to Business Applications - Published: 2023-03-06 - Modified: 2023-03-06 - URL: https://petri.com/microsoft-dynamics-365-copilot/ - Categories: Dynamics 365 - Tags: Dynamics 365, Microsoft 365, News - Article Type: News Microsoft announced this morning a new Microsoft Dynamics 365 Copilot solution. The new AI-powered tool allows customers to automate repetitive tasks for customer relationship management (CRM) and enterprise resource planning (ERP). “Dynamics 365 Copilot takes advantage of recent advancements in generative AI to automate these tedious tasks and unlock the full creativity of the workforce. Dynamics 365 Copilot puts CRM and ERP to work for business users to accelerate their pace of innovation and improve business outcomes in every line of business,” said Charles Lamanna, CVP of Business Applications and Platform. https://www. youtube. com/watch? v=GMwtXDx-JUI The new Copilot capabilities in Dynamics 365 Sales and Viva Sales let businesses write customers' email responses and summarize Microsoft Teams meetings in Outlook. The AI-powered feature can also draft contextual answers to customers' questions. Moreover, Copilot enables marketing teams to gain insights into customer segments. The data could be used to create target email campaigns in Dynamics 365 Customer Insights and Dynamics 365 Marketing. In Dynamics 365 Business Central, the Copilot integration allows customers to quickly create e-commerce product listings. It’s possible to publish these product details on Shopify with a couple of clicks. Microsoft Supply Chain Center gets new AI-powered Copilot features Microsoft Supply Chain Center is also getting new Copilot capabilities to help organizations respond to potential supply chain issues. The tool automatically composes emails to notify impacted partners about disruptions such as weather, geography, and finances. Lastly, Microsoft has introduced generative AI capabilities in Power Virtual Agents and AI Builder. A new conversation booster... --- ### Microsoft Updates Teams PowerShell Module to Version 5.0 - Published: 2023-03-06 - Modified: 2023-03-06 - URL: https://petri.com/microsoft-teams-powershell-module-5-0/ - Categories: Microsoft Teams, PowerShell - Tags: Microsoft Teams, News, PowerShell - Article Type: News Microsoft has announced the release of version 5. 0 of the Microsoft Teams PowerShell module. The latest release brings major performance improvements and new filtering capabilities for the Get-CsOnlineUser cmdlet. The Get-CsOnlineUser cmdlet is a PowerShell command that is used in Microsoft Teams to retrieve information about user accounts. It fetches information about the user name, email address, and more. Microsoft Teams PowerShell module 5. 0 improves performance while retrieving accounts with filters. Microsoft has also introduced several new properties for filtering user accounts. Additionally, Microsoft has added support for new filtering operators in the Get-CsOnlineUser cmdlet. The server-side filtering capability makes it easier for users to retrieve information. Microsoft has also introduced a new feature that lets IT admins get details of unlicensed users for 30 days. What’s new in Microsoft Teams PowerShell Module version 5. 0 You can find the highlights for this 4. 5. 0 release below: Performance improvements especially with "-Filter" scenarios like using wildcard operator (*), OnPrem* and Timestamp attributes. New attributes have now been introduced in the output to ensure parity with scenarios involving the "-Identity" parameter: CountryAbbreviation, SipProxyAddress, TeamsMediaLoggingPolicy, UserValidationErrors, WhenCreated. These attributes are now enabled for filtering: Alias, City, CompanyName, CompanyName, HostingProvider, UserValidationErrors, OnPremEnterpriseVoiceEnabled, OnPremHostingProvider, OnPremLineURI, OnPremSIPEnabled, SipAddress, SoftDeletionTimestamp, State, Street, TeamsOwnersPolicy, WhenChanged, WhenCreated, FeatureTypes, PreferredDataLocation, LastName. These filtering operators have been reintroduced into Get-CsOnlineUser: "-like" operator now supports use of wildcard operators in 'contains' and 'ends with' scenarios. Example: Get-CsOnlineUser -Filter "DisplayName -like 'abc'" "-contains" can now be used for filtering on properties that are an... --- ### Microsoft Releases New Azure AD Property Lock Feature to Prevent Changes to App Credentials - Published: 2023-03-06 - Modified: 2023-03-07 - URL: https://petri.com/microsoft-azure-ad-property-lock-app-credentials/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News, Security - Article Type: News Microsoft has introduced a new feature that allows customers to configure an app instance property lock for Azure AD enterprise applications. The new capability helps organizations prevent attackers from making any changes to sensitive properties of multi-tenant application objects. OAuth is a security protocol that enables users to share information about their accounts with third-party websites. It uses a token-based authentication process to provide access to resources and data, without requiring users to share their usernames and passwords. OAuth is widely used by all major tech companies such as Microsoft, Facebook, and Google. Previously, threat attackers have exploited credentials such as X. 509 certificates to take control of enterprise applications. The technique allows hackers to gain access to organizations' cloud environments and steal sensitive information. With property lock, IT admins can block any modifications to select or all sensitive properties of an app after it has been provisioned in a new tenant. “This feature provides application developers with the ability to lock certain properties if the application doesn't support scenarios that require configuring those properties,” Microsoft explained. How to configure app instance property lock for Azure AD apps Microsoft detailed a couple of steps that can be used to configure an app instance lock with the Azure portal. Sign in to the Azure portal. Navigate to the top menu and click the Directories + subscriptions filter to switch to the specific tenant. Select Azure Active Directory >> App registrations and then click the Azure AD application. Select Authentication, navigate to the... --- ### Microsoft Defender Vulnerability Management Adds New Premium Capabilities to Uncover Security Risks - Published: 2023-03-03 - Modified: 2023-03-03 - URL: https://petri.com/microsoft-defender-vulnerability-management-premium-capabilities/ - Categories: Security - Tags: Microsoft Defender Vulnerability Management, News - Article Type: News Microsoft has released an update that brings new premium capabilities for Microsoft Defender Vulnerability Management. The new security features provide comprehensive assessments to help IT admins track and mitigate security risks in their most critical assets. Microsoft Defender Vulnerability Management is a security tool that uses AI to detect, analyze, prioritize, and fix vulnerabilities in enterprise networks. It provides a centralized dashboard and automated patch management capabilities that make tracking and managing known vulnerabilities easier. With this release, IT admins can use customized profiles to analyze and monitor all endpoints against STIG, CIS, and other industry security benchmarks. The security baselines assessment helps to detect changes in real time and eliminates the need to run time-consuming compliance scans. “Microsoft Defender Vulnerability Management has provided foundational vulnerability management capabilities such as device discovery, inventory and vulnerability and configuration assessments. Our new generally available premium capabilities provide advanced assessments to give in-depth visibility into the potential exposure to your assets,” Microsoft explained. Microsoft Defender Vulnerability Management hardware and firmware assessment provides details about device manufacturer, processors, and BIOs information. It should help to protect customers against increasing hardware and firmware-level attacks. Moreover, the network share configuration assessment aims to ensure secured access to files and folders shared with people on the network. The authenticated scan feature enables IT admins to run scans on unmanaged Windows devices and mitigate software vulnerabilities. It’s also possible to gain entity-level visibility into digital certificates and browser extensions installed across endpoints within the organization. Microsoft Defender Vulnerability... --- ### BlackLotus Malware Bypasses UEFI Secure Boot on Windows 11 PCs - Published: 2023-03-03 - Modified: 2023-03-03 - URL: https://petri.com/blacklotus-bypasses-secure-boot-windows-11/ - Categories: Windows 11 - Tags: News, Security, Windows 11 - Article Type: News The security researchers at ESET issued a security advisory about the BlackLotus vulnerability this week. The research warned that the BlackLotus flaw can now bypass Secure Boot even on fully updated Windows 11 PCs. Secure Boot is a security feature that prevents unauthorized software (malware) from running on Windows machines. Almost all modern hardware with UEFI firmware supports this feature, which ensures that Windows PCs will only boot with trusted programs from the Original Equipment Manufacturer (OEM). Kaspersky first discovered the BlackLotus bootkit back in October 2022. It exploits a year-old CVE-2022-21894 vulnerability to bypass the secure boot process on Windows systems. Microsoft patched the security flaw in January last year. Moreover, a proof-of-concept for the vulnerability has been publicly available since August 2022. According to ESET malware analyst Martin Smolár, the flaw can still be exploited because the signed binaries have not been added to the UEFI revocation list. The attackers leverage the CVE-2022-21894 vulnerability to deploy the bootkit’s files to the EFI system partition (ESP). It allows the hackers to disable various security tools on the victim’s machines. These include Windows Defender, Hypervisor-protected Code Integrity (HVCI), and BitLocker encryption. BlackLotus execution overview Additionally, BlackLotus enables malicious actors to deliver a kernel driver and an HTTP downloader. The kernel driver prevents users from removing the bootkit files from ESP. Moreover, the HTTP downloader is designed to download and execute payloads. What are the mitigations and remediation strategies to block the BlackLotus malware? ESET recommends that organizations should keep their... --- ### What’s New in Windows – February 2023 - Published: 2023-03-03 - Modified: 2023-03-03 - URL: https://petri.com/whats-new-in-windows-february-2023/ - Categories: Windows 11 - Tags: Apple, News, Windows 11 - Article Type: News It’s been a busy month. Microsoft started testing the next Windows 11 ‘moment’, plus the Unified Update Platform (UUP) is coming to WSUS and ConfigMgr at the end of March. And Microsoft is now officially supporting Windows on Arm on Apple silicon. And much more! So, let’s get started. Windows 11 ‘Moment’ drops Microsoft announced February 28 that it was releasing its next ‘moment’ update for Windows 11. It’s available for testing as an optional download via Windows Update but it won’t be pushed out more generally until mid-March. And only for those on Windows 11 22H2. Let’s take a look at what it includes. Updated search experience The biggest change is that the Search box on the taskbar is now ‘typable’. Before, you clicked Search and it would open a dialog where you start typing your query. Now, you can type your query directly in the Search box on the taskbar and press ENTER to open the dialog to get a list of results. Additionally, the dialog has been updated to accommodate Prometheus, the new Bing A. I. search engine that is currently available in preview to users who have signed up. More on Petri: Microsoft Bing ‘Prometheus’ – A First of Its Kind A. I. Model Updated Search in Windows 11 22H2 Moment (Image Credit: Microsoft) Interestingly, Microsoft says that the search box is one of the most widely used features on Windows. It has more than half a billion users every month. So, it’s no wonder Microsoft won’t... --- ### What's New With Microsoft's Power Platform in February 2023 > Microsoft unveiled several new features for PowerBI and Dataverse in February and published its Power Platform 2023 release wave 1 plan. - Published: 2023-03-03 - Modified: 2023-03-03 - URL: https://petri.com/microsoft-power-platform-february-2023-updates/ - Categories: Power Platform - Tags: dataverse, Power Platform, Powerapps, powerautomate, PowerBi - Article Type: News As part of Microsoft's ongoing investment in its Power Platform, the company recently published its Power Platform 2023 release wave 1 plan, which details new features that will be released between April and September 2023. In the meantime, the company introduced several new features for PowerBI and Dataverse in February, so let's take a look at the main highlights. Power BI gets new reporting features and more New reporting features have been added to Power BI, such as conditional formatting based on string fields. Formatting rules can be set up to color columns in a bar chart based on the string value specified. In this example from Microsoft, the rule checks to see if the string value is "Audio" and colors the bar red if it evaluates to true. Additionally, users can format image height and width in a table or matrix, add indentation capabilities in a text box, and access new accessible report themes. You can check out some examples on the PowerBI blog. Formatting rules can be set up to color columns in a bar chart (Image credit: Microsoft) An upcoming security feature for Power BI is the enhancement of sensitivity labels and a Power BI app for Teams. Microsoft will support sensitivity labels in the service to classify and restrict data traveling from Power BI to Office, for example in an export or live connection in Excel.  This will apply to sharing, dashboards and reports, and embedded visuals. One way your security admin will be able to set this up... --- ### Cloud Conversations: Paul Huijbregts, Justen Graves, and Joe Anich on Microsoft Defender for Endpoint > In this week's Cloud Conversations episode, Paul Huijbregts, Justen Graves, and returning guest Joe Anich talk about Microsoft Defender for Endpoint in-depth. - Published: 2023-03-03 - Modified: 2023-03-03 - URL: https://petri.com/cloud-conversations-episode-68-paul-huijbregts-justen-graves-joe-anich/ - Categories: Video - Tags: Cloud Conversations, Microsoft Defender for Endpoint - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations: Paul Huijbregts, Justen Graves, and Joe Anich on Microsoft Defender for Endpoint Paul Huijbregts, Justen Graves, and returning guest Joe Anich join Ru Campbell to talk about Microsoft Defender for Endpoint in-depth. They have a new book that offers a comprehensive guide to building a deeper understanding of Defender for Endpoint, its capabilities, and successful implementation. They also talk about: Microsoft Defender for Endpoint product history, going all the way back to the 90s The cool tips and advice the book offers Hidden gems and misunderstandings of Defender for Endpoint And much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts... --- ### Microsoft's New Azure Operator Nexus Solution Now Available in Public Preview - Published: 2023-03-02 - Modified: 2023-03-02 - URL: https://petri.com/microsofts-azure-operator-nexus/ - Categories: Microsoft Azure - Tags: Azure Operator Nexus, News - Article Type: News Microsoft has launched the public preview of its Azure Operator Nexus service. It’s a next-generation hybrid cloud platform that allows communication service providers (CSPs) to run their workloads both on-premises and on Microsoft Azure. Microsoft’s Azure Operator Nexus platform debuted in private preview in 2022. It’s designed for customers performing network functions, including virtual radio access network (vRAN), packet core, subscriber data management, and more. Azure Operator Nexus expands on Azure Operator Distributed Services that launched last year. It provides features like Hybrid AKS, Mariner Linux, Arc, observability, and life cycle management. Azure Operator Nexus offers support for NUMA Alignment, CPU Pinning, and Layer 2 Networking. These capabilities are not available in other cloud services such as Azure IaaS. “Operator Nexus enables operators to use cloud technology to modernize and monetize their network investments—lowering total cost of ownership (TCO), driving operational efficiency and resiliency with advanced AI and automation, improving the security of highly distributed, software-based networks,” explained Jason Zander, Executive Vice President for Strategic Missions and Technologies. Additionally, Microsoft has announced its new Azure Operator Nexus Ready program. It allows network operators to integrate containerized network functions (CNF) and virtual network functions (VNF) into their mobile networks. Microsoft announced the public preview of two AIOps services Microsoft released Azure Operator Insights and Azure Operator Service Manager in public preview. Azure Operator Insights leverages AI to analyze large amounts of data collected from network operations and troubleshoot health issues. Moreover, the Azure Operator Service Manager tool enables network operators to... --- ### Microsoft's New Windows 365 App Brings Cloud PCs into Windows 11 - Published: 2023-03-02 - Modified: 2023-03-02 - URL: https://petri.com/microsofts-windows-365-app-windows-11/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft announced the release of the latest major update for Windows 11 this week. The company also announced the general availability of its Windows 365 app for Windows 10 and Windows 11. Windows 365 is a virtualization service that enables business customers to access Cloud PCs from anywhere. It’s only available for business and enterprise customers. Up until now, users had to access Windows 365 desktops through a web browser. However, the new app integrates the service more deeply with Windows 11. Microsoft first launched its Windows 365 app in public preview back in October 2022. It allows users to access their Cloud PCs directly from the taskbar or Start menu. It can be used in a window or in fullscreen mode. The Windows 365 app provides support for Microsoft Authenticator and Azure Active Directory multi-factor authentication. “With the Windows 365 app, you can go from your desktop straight to your Cloud PC, which provides you with a personalized experience tailored to your settings, profile, and work style. It also reduces friction for IT administrators who can enable employees with single sign-on experience,” Microsoft explained. Windows 365 gets new device management and provisioning capabilities Microsoft has also announced some new capabilities for the Windows 365 web client. The latest update adds multimedia redirection (MMR) support to improve video playback performance on Cloud PCs. Microsoft explained that hardware acceleration is now turned on by default, which should help improve motion performance during video playback, moving windows, and scrolling. Lastly, Microsoft released... --- ### Microsoft Teams Added New Premium Features, Schedule Send Suggestions in February - Published: 2023-03-02 - Modified: 2023-03-02 - URL: https://petri.com/microsoft-teams-premium-features-february/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has published a round-up of all the new features rolled out to Teams users during the month of February. The highlights include a new Microsoft Teams Premium plan, schedule send suggestions, Teams-certified devices, and management features. Here’s a look at everything you need to know: Microsoft Teams Premium Microsoft introduced its OpenAI’s GPT-3. 5 powered Teams Premium plan last month. The new premium tier of Microsoft Teams includes an intelligent recap feature that automatically generates recommended tasks, meeting notes, and highlights of meetings. Microsoft is also making Live translated captions available to premium customers. The feature will be available for a 60-day grace period for existing Microsoft Teams users. Additionally, Microsoft Teams Premium enables IT admins to create custom meeting templates. This capability could be useful for scenarios like help desk calls, brainstorming meetings, and client calls. Moreover, it’s possible to define rules for different employee groups with custom user policy packages. The new premium version also provides support for branded meetings, organizational backgrounds, and together mode scenes. Meeting templates Microsoft Teams Premium also brings advanced meeting protection capabilities for remote meetings. These include end-to-end encryption (E2EE), Microsoft Purview-powered sensitivity labels, and watermarking support for screen sharing. There are new controls to prevent participants from copying text and recording meetings. Other features include new Advanced webinars and Virtual appointment capabilities, and you can find more details in our previous post. What’s new in Microsoft Teams (non-premium) Microsoft announced several new features for the non-premium version of Microsoft Teams. The company... --- ### Microsoft Launches New Intune Suite to Simplify Endpoint Management - Published: 2023-03-01 - Modified: 2023-03-01 - URL: https://petri.com/microsoft-launches-new-intune-suite/ - Categories: Endpoint Management - Tags: Microsoft Intune, News - Article Type: News Microsoft has launched a new cloud-based Microsoft Intune Suite for enterprise customers. It’s a cost-effective plan that brings advanced endpoint management solutions, including Remote Help, Endpoint Privilege Management, advanced endpoint analytics capabilities, and Microsoft Tunnel for Mobile App Management. “Microsoft Security and Microsoft 365 deeply integrated with the Intune Suite will empower IT and security teams with data science and AI to increase automation, helping them move simply and quickly from reactive to proactive in addressing endpoint management and other security challenges,” said Michael Wallent, CVP for Enterprise Mobility Management Products. Microsoft Endpoint Privilege Management Microsoft has announced the public preview of its Endpoint Privilege Management solution. The service is designed to reduce the burden on IT admins by providing temporary administrative rights to employees. It allows users to perform specific tasks on Windows devices such as installing software, setting up local printers, and managing other peripheral devices. Endpoint Privilege Management is expected to hit general availability next month. It will be included in the Intune Premium Suite and also available as an add-on for Microsoft Intune subscribers. Remote Help to add support for Android and Mac devices Microsoft launched its Remote Help solution on Windows back in April 2022. The tool enables IT admins to remotely log into any joined domain or Microsoft account desktop and troubleshoot issues. Microsoft has announced that Remote Help support is coming to Android and Mac devices. This release should make it easier for customers to manage Android devices used by frontline workers. Microsoft... --- ### What IT Pros Need to Know About the Latest Windows 11 Feature Update > Microsoft released the first big update of the year for Windows 11 yesterday, and IT pros will be able to control what's being rolled out in their organization.  - Published: 2023-03-01 - Modified: 2023-03-01 - URL: https://petri.com/windows-11-moment-2-update-it-pros/ - Categories: Windows 11 - Tags: Windows 11 - Article Type: News Microsoft released the first big update of the year for Windows 11 yesterday. The update improves the search experience on the taskbar by adding a new search box that integrates Microsoft’s new Bing AI, but there are other notable changes for the taskbar, the Start Menu, and more.   As of today, this feature update is available as an optional update for Windows 11 version 22H2. All the new features will roll out to all users with next month’s Patch Tuesday update. However, IT pros will be able to control what is being rolled out in their organization.   What’s new in this Windows 11 feature update? I’ve detailed yesterday the biggest new features in this new Windows 11 features, but here are the main highlights: A new search box in the taskbar that provides access to the new Bing AI (if you’re enrolled in the preview). Windows Studio Effects are now available from Quick Settings in the taskbar. A new touch-optimized taskbar for 2-in-1 tablets that support two states: collapsed and expanded. The Start Menu now displays AI-powered recommendations on devices that are joined to Azure Active Directory. Enhanced support for braille devices and improvement for Voice Access. New Energy recommendations in Settings. Some of the new features that Microsoft announced yesterday such as Tabs in Notepad and the new screen recorder in Snipping Tool will roll out via Microsoft Store app updates. Microsoft is also improving its Your Phone app with new features for owners of high-end Samsung Galaxy phones,... --- ### Microsoft Adds Pod Sandboxing to Azure Kubernetes Service (AKS) - Published: 2023-02-28 - Modified: 2023-02-28 - URL: https://petri.com/microsoft-pod-sandboxing-azure-kubernetes-service-aks/ - Categories: Virtualization - Tags: Azure Kubernetes Service, News - Article Type: News Last week, Microsoft released a new update that adds pod sandboxing support to its Azure Kubernetes Service (AKS). The new feature allows organizations to run modern applications on AKS in an isolated and secure environment. Microsoft explained that it’s a standard practice to use Kubernetes for hosting and managing modern applications in cloud environments. However, one of the major drawbacks is that the service doesn’t provide robust support for multi-tenancy capabilities. This makes it impossible to host multiple customers or workloads within a single instance of Kubernetes. According to Microsoft, modern applications that are bundled together as containers use the same operating system. Each container works like a separate process running on the computer which makes it challenging to keep the containers isolated from each other. This problem could be resolved by running each pod (a collection of containers) on a dedicated VM. However, this approach causes significant performance issues for customers. To address this problem, Microsoft has developed a lightweight virtual machine (VM) infrastructure called Kata Containers. It’s compatible with Kubernetes and the container runtime interface (CRI) specifications. Microsoft explained that pods that target Kata Containers are treated by Kubernetes like all other containers. However, the process involves adding the containers to a lightweight virtual machine. “Kata Containers on AKS are built on top of a security-hardened Azure hypervisor using Mariner Linux AKS Container Host (MACH). The isolation per pod is achieved by using a nested lightweight Kata VM that carves out resources from a parent VM node. In... --- ### Microsoft Defender App Starts Force Installing on Windows 10 and 11 PCs - Published: 2023-02-28 - Modified: 2023-02-28 - URL: https://petri.com/microsoft-defender-force-installing-windows/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has started force-installing its Microsoft Defender for individuals app on Windows 10 and Windows 11 PCs. The company is sending out emails to inform Microsoft 365 subscribers that the app will now be automatically installed while installing or updating Microsoft 365 apps. Microsoft launched its new cross-platform Defender app for consumers with Microsoft 365 Personal and Family subscription in June 2022. It provides a central hub for managing and monitoring the security status of all devices linked with a Microsoft account. The app can continuously scan new and existing security threats and provides real-time security alerts and tips to protect each device. Up until now, the Microsoft Defender app worked as a complement to the built-in antivirus protection on Windows PCs. This means it was up to Microsoft 365 subscribers to download and install it from the Microsoft Store. Over the weekend, some users reported that Microsoft quietly began automatic installations of the Defender app on Windows 10 and Windows 11 devices. “Starting in late February of 2023, the Microsoft Defender app will be included in the Microsoft 365 installer. That means that when you install the Microsoft 365 apps on your Windows device, the Microsoft Defender app will automatically be installed for you along with the other apps,” Microsoft explained in a support document. Source: Twitter Microsoft 365 app update to auto-install Microsoft Defender on Windows devices Microsoft also mentioned that an upcoming update for the Microsoft 365 apps may automatically install Microsoft Defender on Windows PCs that... --- ### Windows 11 Version 22H2 "Moment" Update Brings AI-Powered Bing to the Taskbar > A major update for Windows 11 version 22H2 is available today. It introduces a new search box in the taskbar that integrates Microsoft's new AI-powered Bing. - Published: 2023-02-28 - Modified: 2023-03-02 - URL: https://petri.com/windows-11-moment-update-taskbar-searchbox-bing-ai/ - Categories: Windows 11, Windows Client OS - Tags: AI, Bing, taskbar, Windows 11 - Article Type: News Microsoft is releasing today a major update for Windows 11 version 22H2. This update introduces a new search box in the taskbar that integrates the new AI-powered Bing that Microsoft started testing earlier this month.   Despite Windows 11 now receiving major updates once a year (the latest one being the version 22H2 released last fall), Microsoft now releases new Windows features throughout the year when they’re ready. The company reportedly refers to these updates as “Moment” updates internally, and we had an example of such an update back in November when Microsoft rolled out File Explorer tabs, a new overflow menu UI on the taskbar, and other new features.   Today’s update for Windows 11 is available as an optional update for users running Windows 11 version 22H2, and all the new features will be available for all users with next month’s Patch Tuesday Update. Let’s dive into all the biggest changes in this update.   Microsoft brings back a search box to the taskbar with a Bing tweak  The biggest change coming with today’s update for Windows 11 version 22H2 is that Microsoft is bringing back a typable search box in the taskbar, similar to how Windows Search looks on Windows 10. However, this new search box integrates Microsoft’s new Bing chatbot.   “It’s a first step to see how the idea of a copilot comes to life for you on Windows for everything you will do on the PC,” said Microsoft’s Chief Product Officer Panos Panay. The exec added that this new... --- ### C-Facts Unveils New Partnership with Ingram Micro to Streamline Cloud Cost Management - Published: 2023-02-27 - Modified: 2023-02-27 - URL: https://petri.com/c-facts-announces-partnership-ingram-micro/ - Categories: IT Infrastructure - Tags: cloud computing - Article Type: News Last week, C-Facts announced a new partnership with Ingram Micro. The companies have signed a five-year agreement to provide C-Facts Cloud Cost Management services to Ingram Micro Cloud Partners and their clients worldwide. C-Facts is a popular cloud cost management solution that enables organizations to monitor and control their spending on cloud services. The tool provides real-time insights that make it easier to optimize usage and reduce costs in enterprise environments. It offers multi-cloud support for Microsoft Azure, Google Cloud, AWS, Oracle Cloud, and Microsoft 365. The new deal will enable Ingram Micro Cloud Partners to provide an intuitive and shareable dashboard to customers. The dashboard lets IT admins view detailed information that helps to make informed business decisions and increase organization-wide cost awareness. C-Facts Cloud Cost Management will allow customers to automate cross-charging to select apps, projects, departments, countries, and other cost centers. C-Facts to launch cloud optimization module for Ingram Micro Partners C-Facts highlights that the new long-term partnership should be beneficial for both companies. It expects to increase international sales and deliver valuable services to both cloud partners and customers. "My Team has their roots in the Cloud and managed services business. We speak the same language as the Ingram Micro Cloud Partners, so we are very well positioned to help the Managed Service Providers optimize their services to the end-customers. I love that part of our job," said Martijn van Zoeren, CEO of C-Facts. C-Facts has also announced its plans to release a new cloud optimization... --- ### Microsoft Now Lets IT Admins Enable Suspicious Activities Reporting in Azure AD - Published: 2023-02-27 - Modified: 2023-07-17 - URL: https://petri.com/microsoft-suspicious-activities-reporting-azure-ad/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Azure AD, News - Article Type: News Microsoft has introduced a new Report Suspicious Activity feature in Azure Active Directory (recently renamed Microsoft Entra ID). Suspicious activity reports provide detailed information about unusual sign-in attempts to help organizations detect and respond to potential security threats. According to Microsoft, the new feature enables users to report suspicious activities for unknown authentication requests. Users can report the fraudulent attempt via the Microsoft Authenticator app or their phone call. IT Admins can then review the activity logs to investigate and take necessary action to protect their data and resources. “Administrators can use risk-based policies to limit access for these users, or enable self-service password reset (SSPR) for users to remediate problems on their own. If you previously used the Fraud Alert automatic blocking feature and don't have an Azure AD P2 license for risk-based policies, you can use risk detection events to identify and disable impacted users and automatically prevent their sign-in,” Microsoft explained. Source: Microsoft How to enable the Report suspicious activity feature in Azure AD To enable the Report Suspicious Activity feature, administrators will need to follow the steps mentioned below: Sign in to the Azure portal and select Azure Active Directory >> Security >> Authentication Methods >> Settings. Enable the Report Suspicious Activity option. Select if the new setting applies to all end users or a specific group. Once enabled, IT admins will be able to view the risk detection report by heading to Azure Active Directory >> Security >> Identity Protection >> Risk detection. The risk... --- ### How to Use OneDrive for Business: A Complete Guide > OneDrive for Business can help your users be more productive with their cloud-based files. Here's everything you need to know about using OneDrive for Business. - Published: 2023-02-27 - Modified: 2023-02-28 - URL: https://petri.com/how-to-use-onedrive-for-business/ - Categories: Microsoft 365, OneDrive - Tags: OneDrive, OneDrive for Business - Article Type: How To Using OneDrive for Business will help your users be more productive with their files, from any place with an Internet connection. Do they know how to access the OneDrive website? Do they know how to use the OneDrive sync app in Windows? Read on to discover everything you need to know about how to use OneDrive for Business. How to use OneDrive for Business: The basics By early 2023, every IT pro knows what Microsoft's OneDrive is: OneDrive is Microsoft's file-sharing service for consumers and enterprises in the cloud. There is a distinction between consumer and business accounts, however. What is OneDrive for Business? As a consumer, you use a Microsoft account to access your files in OneDrive. OneDrive for Business is the marketing term for the business/enterprise crowd – here, you use your Microsoft 365 work or school account. Although there are very few GUI changes between OneDrive and OneDrive for Business (which is by their design, of course), there are subtle differences. As this is an IT knowledgebase website, we will focus on OneDrive for Business. Instead of continuing to manage traditional, old, and costly on-premises fileserver infrastructures, hobbling your users by requiring them to be in the office or having a secure connection to your network, you can set them free and encourage them to use OneDrive for Business. The most unique advantage (at least to me as an IT Pro AND an end user) is the ability to access my files anywhere on various applications... --- ### Microsoft Syntex to Launch New Pay-As-You-Go Licensing Model for Document Processing - Published: 2023-02-24 - Modified: 2023-02-24 - URL: https://petri.com/microsoft-syntex-pay-as-you-go-licensing-model/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Syntex, News - Article Type: News Microsoft is getting ready to release a pay-as-you-go licensing option for its Microsoft Syntex service. The new plan will include unstructured and prebuilt document processing, and it will become generally available for customers on March 7. Microsoft Syntex is an AI-powered service that lets organizations automatically analyze unstructured content (like documents, images, and videos) and extract information relevant to business needs. It allows organizations to automate manual tasks and streamline business processes. Microsoft Syntex is designed to seamlessly integrate with other Microsoft 365 services. The service is available as an add-on product for Microsoft 365 subscribers. Microsoft explained that Syntex usage will be billed to the customers’ Azure subscriptions. “This will enable all users in your organization to create and apply unstructured and prebuilt document processing models, and customers can upload documents to libraries configured to use Syntex. This is charged on a pay-per-use basis, specifically charging for the total number of pages processed,” Microsoft explained. Microsoft Syntex pay-as-you-go model currently supports document processing Microsoft clarified in the FAQs section that the pay-as-you-go licensing will only apply to document processing in Microsoft Syntex. Currently, the model doesn’t provide support for AI Builder, Universal annotation, Syntex content assembly, Content query, and other Syntex services. Microsoft has introduced a new tool called the Syntex cost calculator, which can assist organizations in understanding usage trends and estimated costs. The company has also launched a new Microsoft Syntex training module. It’s designed to explain how IT admins can use the service to automate time-consuming... --- ### Microsoft Advises IT Admins to Remove Some Exchange Server Antivirus Exclusions - Published: 2023-02-24 - Modified: 2023-02-24 - URL: https://petri.com/microsoft-remove-exchange-server-antivirus-exclusions/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Microsoft has published an advisory recommending IT admins to remove select antivirus exclusions in Exchange Servers. The company explained that this configuration change should help IT admins to improve the security posture of their organizations. Up until now, Microsoft recommended Exchange Server admins to configure antivirus solutions to protect their systems. It is also a good practice to enable exclusions for specific file types, processes, and paths. It helps to reduce the chances of unexpected failures (such as unexpected database dismounts) caused by restricted access to a file or folder. Microsoft detailed that IT administrators should remove certain objects from the exclusion list. These objects include the PowerShell and w3wp processes as well as the Temporary ASP. NET Files and Inetsrv folders. Microsoft warned that these exclusions could allow attackers to deploy malware in vulnerable Exchange Server environments. “We’ve found that some existing exclusions, namely the Temporary ASP. NET Files and Inetsrv folders, and the PowerShell and w3wp processes - are no longer needed, and that it would be much better to scan these files and folders. Keeping these exclusions may prevent detections of IIS webshells and backdoor modules, which represent the most common security issues,” the Exchange team explained. Which antivirus exclusions should you remove from Exchange Server? Here’s the list of folder and process exclusions that should be removed from Exchange Server 2016 and Exchange Server 2013. Folders1) %SystemRoot%\Microsoft. NET\Framework64\v4. 0. 30319\Temporary ASP. NET Files2) %SystemRoot%\System32\InetsrvProcesses1) %SystemRoot%\System32\WindowsPowerShell\v1. 0\PowerShell. exe2) %SystemRoot%\System32\inetsrv\w3wp. exe Microsoft notes that removing the exclusions should not cause stability or performance issues for customers using... --- ### How to Install Windows 11 on a Mac with Parallels Desktop > Here's how to install Windows 11 on Mac using Parallels Desktop 18 for Mac. The app supports both Intel-based Macs and Apple Silicon Macs with M1 and M2 chips. - Published: 2023-02-24 - Modified: 2023-02-24 - URL: https://petri.com/install-windows-11-mac-m1-parallels/ - Categories: Virtualization, Windows 11 - Tags: macOS, Parallels Desktop, Virtualization, Windows 11 - Article Type: How To Windows 11 is the first version of Windows that Mac users can’t install natively on Mac. That’s because Intel-based Macs don’t need the minimum requirements for the new OS, while Apple Silicon Macs have dropped support for Apple's Boot Camp multi-boot utility. In this article, I’ll explain how to install Windows 11 on Mac using Parallels Desktop 18 for Mac, which is now an officially-supported scenario.   Parallels Desktop for Mac is the most popular virtualization solution for virtualizing Windows and Linux on a Mac. Parallels Desktop for Mac added support for Windows 11 back in 2021, but Microsoft didn’t recognize it as a supported scenario for running the latest version of Windows until February 2023. How to install Windows 11 on a Mac with Parallels Desktop (article snippet) Here's how to install Windows 11 on a Mac with Parallels Desktop in a couple of easy steps: Download Parallels Desktop for Mac from the company's website Install Parallels Desktop on your Mac Let the Installation Assistant in Parallels Desktop install Windows 11 in a virtual machine Once Windows 11 is installed, create your free Parallels Desktop account. You're now ready to use Windows 11 virtual machine on your Mac! Parallels Desktop offers a 14-free trial, but after that, you'll need to pay for a license. If you want to use Windows 11 without any restrictions, you'll also need an activation key. Can you install Windows 11 natively on Intel or Apple Silicon Macs? Unfortunately, it’s not possible to install Windows... --- ### Cloud Conversations: Merethe Stave on ChatGPT, Community, and Viva Explorers > Merethe Stave is a Senior Cloud Architect at Cloudway and a Microsoft MVP. In this week's episode, she joins Femke and Peter to discuss ChatGPT, Viva Explorers, and more. - Published: 2023-02-24 - Modified: 2023-02-24 - URL: https://petri.com/cloud-conversations-episode-67-merethe-stave/ - Categories: Video - Tags: ChatGPT, Cloud Conversations, Viva - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations: Merethe Stave on ChatGPT, Community, and Viva Explorers Merethe Stave is a Senior Cloud Architect at Cloudway and a Microsoft MVP. In this week's episode, she joins Femke and Peter to discuss: ChatGPT Viva Explorers Working at Cloudway Tech community events in Norway And much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Microsoft Releases SharePoint Workflow Manager for SharePoint Server - Published: 2023-02-23 - Modified: 2023-02-23 - URL: https://petri.com/microsoft-sharepoint-workflow-manager-sharepoint-server/ - Categories: SharePoint - Tags: News, SharePoint, SharePoint Workflow Manager - Article Type: News Microsoft has recently announced the release of SharePoint Workflow Manager. The new workflow engine powers the SharePoint 2013 Workflow platform and replaces the Service Bus and Microsoft Workflow Manager for Windows Server. SharePoint Server uses Microsoft Workflow Manager and Service Bus to facilitate business processes in on-premises environments. These components could be particularly useful to support critical activities like project task management and document collaborations. Microsoft launched its SharePoint Workflow Manager service in preview back in December last year. The new workflow engine works with SharePoint 2013, 2016, 2019, and Subscription Edition. Going forward, Microsoft plans to shift its investments and maintenance efforts toward SharePoint Workflow Manager. Microsoft advises SharePoint Server users to switch to SharePoint Workflow Manager Microsoft has removed the Service Bus and Microsoft Workflow Manager installers from the Microsoft Web Platform Installer (WebPI). The company is suggesting organizations to switch to the SharePoint 2013 Workflows platform before July 14, 2026. “Microsoft will continue to provide technical support for existing deployments of Service Bus and Microsoft Workflow Manager until the version of SharePoint Server they're being used with reaches end of support, or until July 14, 2026, whichever comes first,” Microsoft explained. If you haven’t done it yet, you can follow this step-by-step guide to install or upgrade to SharePoint Workflow Manager. However, customers will first need to uninstall the previous Workflow Manager (client) and Service Bus installations. Microsoft has also reiterated its commitment to release new features to meet the specific needs of SharePoint Server customers. “We... --- ### Microsoft 365 Defender Now Supports Automatic Disruption of Business Email Compromise Attacks - Published: 2023-02-23 - Modified: 2023-02-23 - URL: https://petri.com/microsoft-365-defender-automatic-disruption-bec-attacks/ - Categories: Security - Tags: Microsoft 365 Defender, News, Security - Article Type: News Microsoft introduced a new automatic attack disruption feature in its Microsoft 365 Defender solution at Ignite 2022. The company announced yesterday that the feature can now protect enterprise customers against business email compromise (BEC) campaigns. Automatic attack disruption leverages extended detection and response (XDR) technology to contain ongoing ransomware campaigns or other sophisticated attacks across identities, endpoints, email, and SaaS applications. The feature immediately suspends all compromised accounts and isolates infected devices to reduce the attack's impact. Previously, Microsoft 365 Defender’s automatic attack disruption feature only provided protection against human-operated ransomware attacks. The latest release adds support for detecting and disrupting business email compromise (BEC) campaigns. It’s a type of phishing attack that enables attackers to steal sensitive data and money from target organizations. “BEC attacks commonly involve cybercriminals impersonating a company's executives or vendors to trick employees into transferring money or sensitive information - causing financial losses and reputational damage. Automatic attack disruption can help detect these attacks and remove the attacker’s access to the environment by disabling the compromised account, limiting their ability to send a fraudulent email, and preventing money transfers and financial losses,” Microsoft explained. Automatic attack disruption How automatic attack disruption works in Microsoft 365 Defender Microsoft explained that the automatic attack reduction feature works in 3 phases. First of all, Microsoft 365 Defender uses AI-driven detection capabilities to detect malicious activities. Secondly, it analyzes the malicious activities and flags the assets controlled by the hackers. Finally, the service triggers automatic response actions against compromised... --- ### What is Tauri? - Published: 2023-02-23 - Modified: 2023-02-23 - URL: https://petri.com/what-is-tauri/ - Categories: DevOps - Tags: Electron, Rust, Tauri - Article Type: Overview Tauri is a cross-platform programming framework based on Rust. In this article, you’ll learn why Tauri might take over from Electron as the cross-platform framework of choice and how the framework is used. What is the Tauri framework? Tauri is a relatively new cross-platform application framework. Many apps we use day-to-day, like Slack, Microsoft Teams, and Discord run on a framework called Electron. But you might have noticed that those apps, Teams I’m looking at you, are slow and clunky. Electron-based apps can be a real resource hog, partly because they require Chromium, the rendering engine used by the Google Chrome and Microsoft Edge browsers. It’s easy for programmers to create cross-platform applications with Electron. You code once and your app can run on Windows, Mac, and Linux. Electron works with simple coding languages like HTML, CSS, and JavaScript. But the disadvantage of Electron is that because each app needs to carry a complete version of the Chromium source code with it, it’s intensive in terms of disk space. And Chromium is not very efficient when it comes to processor and memory usage. Tauri aims to bring solve these issues with the simplicity of Electron but closer performance to a native app. What language does Tauri use? Tauri is based on Rust and it comprises of two components: Tau handles creating windows and managing icons. For example, icons on the taskbar and system tray, tasks like that. Wry is an engine that's similar to WebView. It gives programmers the... --- ### Microsoft Releases Visual Studio 2022 17.5 with AI-Powered Coding Suggestions and More - Published: 2023-02-22 - Modified: 2023-03-02 - URL: https://petri.com/microsoft-releases-visual-studio-2022-17-5/ - Categories: Visual Studio - Tags: News, Visual Studio - Article Type: News Microsoft has announced the release of a new update for Visual Studio 2022. The version 17. 5 of the IDE brings new AI-powered coding suggestions, an Accessibility Checker feature, improved code search experience, and much more. Microsoft has introduced support for AI-powered “Intent-based” suggestions in Visual Studio 2022. The new feature uses Machine Learning algorithms to automatically provide edit suggestions to code within the editor based on recent changes. This release also brings a new Accessibility Checker feature that allows developers to detect potential accessibility issues in XAML-based desktop applications. The tool supports MAUI, WinUI, WPF, and WinForms. Intent-Based Suggestions Additionally, Visual Studio 2022 17. 5 adds a new search experience that enables developers to find files, types, and members in their code. Users can turn on the feature by heading to Tools >> Manage Preview Features >> New Visual Studio Search experience. Once enabled, developers will need to restart the Visual Studio app. Microsoft has announced a native Clang Arm64 toolset for its LLVM workload in Visual Studio 2022. This release brings native compilation support that results in better performance on Arm64 devices. Microsoft has also made some improvements to the threads window to ensure a faster debugging experience. Visual Studio 2022 version 17. 5 adds Winget integration Furthermore, Microsoft has added a new Winget integration that allows developers to install Visual Studio via the Windows Package Manager. There's also a new feature that allows Visual Studio to update automatically upon closing. Last but not least, Microsoft released the first preview of... --- ### VMware Releases ESXi Update to Fix Secure Boost Issues in Windows Server 2022 VMs - Published: 2023-02-22 - Modified: 2023-02-22 - URL: https://petri.com/vmware-esxi-update-fix-secure-boost-windows-server-2022-vms/ - Categories: VMware, Windows Server 2022 - Tags: News, virtual machines, vmware, Windows Server 2022 - Article Type: News VMware has released vSphere ESXi update to address the Secure Boot issue with Windows Server 2022 virtual machines. Microsoft acknowledged the problem following the release of the security update to Windows Server 2022 on February 14. According to Microsoft and VMware, some users who installed the KB5022842 update failed to boot virtual machines (VMs) that are enabled with Secure Boot. The Secure Boot feature is designed to prevent malicious software from loading on system start-up. The issue affected ESXi versions vSphere ESXi 7. 0x and vSphere ESXi 6. 7 U2/U3. VMware explained that the security update injects a new type of digital signature that is mistakenly rejected by UEFI Secure Boot. This could cause virtual machines to be unable to find an operating system and fail to boot up. “If you already face the issue, after patching the host to ESXi 7. 0 Update 3k, just power on the affected Windows Server 2022 VMs. After you patch a host to ESXi 7. 0 Update 3k, you can migrate a running Windows Server 2022 VM from a host of version earlier than ESXi 7. 0 Update 3k, install KB5022842, and the VM boots properly without any additional steps required,” VMware explained. Source: Borncity Workaround to fix Secure Boot error on Windows Server 2022 VMs Additionally, VMware has provided a temporary workaround for affected organizations that can’t immediately deploy the vSphere ESXi update. The company is recommending customers to update the ESXi Host to version 8. 0 or disable the Secure Boot option on the virtual machines. Users... --- ### Securing Azure Virtual Desktop with Azure Active Directory Conditional Access > Here's how to secure Azure Virtual Desktop by focusing on Identity Access Management, which can be achieved using Azure AD Conditional Access policies.  - Published: 2023-02-22 - Modified: 2023-02-22 - URL: https://petri.com/secure-azure-virtual-desktop/ - Categories: Microsoft Entra ID (Azure AD), Security, Virtualization - Tags: Azure, Azure Active Directory, Azure Active Directory Conditional Access, Azure Virtual Desktop - Article Type: Overview Azure Virtual Desktop (AVD) is a Platform-as-a-Service (PaaS) to provide access to Windows 10 and Windows 11 desktops and applications virtually anywhere. It's a solution hosted by Microsoft, which makes it secure by design, even though there is a lot of responsibility on the customer to ensure services are secure. In this article, I will explain how to secure Azure Virtual Desktop by focusing on Identity Access Management (IAM), which can be achieved using Azure Active Directory Conditional Access policies.   Security Aspects of Azure Virtual Desktop In a traditional virtual desktop infrastructure (VDI) environment, for example, Windows Server Remote Desktop Services (RDS), which is hosted on-premises, ensuring that the RD Gateway and RD Broker services are secure can be challenging. And it requires additional infrastructure and configuration.    Security services and responsibilities  With Azure Virtual Desktop, this is all taken care of, which makes it secure by design.  However, the following table shows the security services within AVD that are still the responsibility of the customer:  Security Service Responsibility IAM (Identity Access Management) Customer Devices Customer Application Security Customer Deployment Customer Session Host Operating System Customer Network management Customer Physical Hosts Microsoft Physical Network Microsoft Access to Datacentre Microsoft Control Pane  Microsoft Table 1 – Security services and responsibilities  Before I explain how to use Azure AD Conditional Access to secure Azure Virtual Desktop, I want to highlight other security aspects of AVD. Securing the Azure native services used by Azure Virtual desktop To secure Azure Virtual Desktop, you'll need to secure the Azure native services it uses such as Azure virtual machines, Azure Storage, and Azure Virtual Network (VNet) Azure virtual machines:... --- ### Microsoft To Do to Add New Admin Controls for Restricting Personal Accounts on Android Devices - Published: 2023-02-21 - Modified: 2023-02-21 - URL: https://petri.com/microsoft-to-do-restrict-personal-accounts-android/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft To Do, News - Article Type: News Microsoft To Do is about to get a new update that will enable IT admins to block personal accounts on Android devices. The company has announced on the Microsoft 365 admin center that the new security feature will be available for users next month. The Microsoft To Do app introduced support for multiple accounts back in 2019. The feature makes it convenient for users to switch between work/school accounts without having to sign out and log in manually. However, Microsoft acknowledged that this capability this feature could pose a security risk for enterprise customers. With this release, Microsoft Intune administrators will be able to limit access to only allow work/school accounts and block access to personal accounts on managed devices. Once configured, users who attempt to add a personal account would receive the “Your organization doesn’t allow this account to sign in to this app” error message. “With the growing popularity of multi-account support in Android, users can add their personal and work accounts to their device, which can lead to data transfer between the two accounts and compromise security. To address this issue, we have implemented the control at the admin level to allow org only accounts,” Microsoft explained. Microsoft To Do to support organization-only accounts in March Microsoft says the new security feature will become generally available for users in early March. The company highlighted that it should help IT Pros to ensure the protection of sensitive data within an organization. However, IT admins will first need to... --- ### Hackers Steal Data Center Logins for Microsoft, Amazon, and Other Big Companies - Published: 2023-02-21 - Modified: 2023-02-21 - URL: https://petri.com/hackers-steal-data-center-logins-microsoft-amazon/ - Categories: Security - Tags: Amazon, Apple, Microsoft, News, Security - Article Type: News Security researchers have disclosed a campaign that allowed hackers to gain access to data center logins for Microsoft, Amazon, Apple, and several other big companies. According to a new report from Bloomberg, the stolen credentials could potentially allow threat actors to gain physical access to clients’ servers. Cybersecurity research firm Resecurity Inc. first discovered the attacks back in September 2021. The security researchers detailed that the threat actors breached two largest third-party data center operators based in Asia to steal emails and passwords for the customer support systems of around 2,000 companies. They also obtained the logins of 30,000 CCTV cameras used to monitor data center environments. “The information included credentials in varying numbers for some of the world’s biggest companies, including Alibaba Group Holding Ltd. , Amazon. com Inc. , Apple Inc. , BMW AG, Goldman Sachs Group Inc. , Huawei Technologies Co. , Microsoft Corp. , and Walmart Inc. , according to the security firm and hundreds of pages of documents that Bloomberg reviewed,” Bloomberg explained. According to Resecurity, the hackers managed to log into the accounts of at least 5 customers of GDS Holdings and ST Telemedia Global Data Centers in January 2023. At that time, both companies quickly mitigated the attacks with forced password resets for all users. Last month, however, the threat actors posted the login credentials for sale on the dark web for $175,000. Source: Resecurity Leaked login credentials could allow physical access to data centers GDS and STT GDC investigated the incident and found no evidence that the attacks impactedcustomer support... --- ### Amazon Launches New Resource Map Feature for Visualizing VPC Resources - Published: 2023-02-21 - Modified: 2023-02-21 - URL: https://petri.com/amazon-announces-vpc-resource-map/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Amazon announced earlier this month the general availability of Amazon Virtual Private Cloud (Amazon VPC) resource map. The new feature provides a central hub that enables customers to view all VPC resources and connections in a visual format to get a better understanding of their VPC architecture. Amazon Virtual Private Cloud (Amazon VPC) is a service that lets developers create a virtual network for AWS resources in a logically isolated area of the AWS cloud. It provides an additional layer of security to protect data and workloads. Amazon VPC allows users to define network configurations (like IP address range and route tables) as well as manage subnets and network gateways. Last year, Amazon launched a new VPC creation experience that makes it easier to create and connect VPC resources. The feature is designed to eliminate the manual steps that were previously required for creating and configuring a VPC for use with AWS Directory Service. Amazon says that users were previously unable to access the interactive diagram that provided a visual representation of the resources and relationships after VPC creation. “Resource map shows interconnections between resources within a VPC and the flow of traffic between subnets, NAT gateways, internet gateway and gateway endpoints. With resource map, you can better understand the architecture of your Amazon VPC, view the number of subnets, see which subnets are associated with which route tables, and observe which route tables have routes to NAT Gateways, internet gateways, and gateway endpoints, all in a single diagram,” Amazon... --- ### Microsoft Teams Will Reportedly Get a Big Performance Boost in March - Published: 2023-02-20 - Modified: 2023-02-22 - URL: https://petri.com/microsoft-teams-performance-boost-march/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is getting ready to launch its revamped Microsoft Teams desktop app that will bring significant performance improvements by ditching the Electron framework in favor of Edge Webview 2. The company has reportedly started testing the new Teams (2. 0 or 2. 1) app internally, and it should be available in preview in March (via The Verge). Microsoft first unveiled its plans to update the architecture of its Microsoft Teams platform back in June 2021. The company claimed that the new Microsoft Teams client should consume 50 percent less memory when compared to the existing desktop application. It should also help to improve battery life and make the app less taxing on the CPU (especially on older hardware). Rish Tandon, Former Corporate VP for Microsoft Teams, detailed on Twitter that the app is moving away from Angular to use the Javascript-based library React. This change should bring UI enhancements and several new features such as support for multiple accounts. It will allow users to sign into the app with multiple work accounts. “With this change, we are taking a major step in Microsoft Teams architecture. We are moving away from Electron to Edge Webview2. Teams will continue to remain a hybrid app but now it will be powered by Microsoft Edge. Also Angular is gone. We are now 100% on reactjs,” said Rish Tandon. “This architecture will help us add support for multiple accounts, work life scenarios, release predictability, and scale up for the client. It will be a journey but with... --- ### Atlassian Claims Data Breach Linked to Third-Party Workplace Platform Envoy - Published: 2023-02-20 - Modified: 2023-02-20 - URL: https://petri.com/atlassian-data-breach-envoy/ - Categories: Security - Tags: Atlassian, News, Security - Article Type: News Last week, Atlassian confirmed a security breach that exposed the sensitive data of thousands of thousands of Atlassian employees. The company claimed that hackers couldn't access Atlassian’s product and customer information. According to a new report by Cyberscoop, a threat actor named SiegedSec announced on Telegram that it hacked the enterprise software company Atlassian. The hacking group claimed to access sensitive data such as names, email addresses, contact numbers, and other information of around 13,200 Atlassian employees. The leaked data also included floor plans of Atlassian’s offices in Sydney and San Francisco. Atlassian is still investigating the security incident, but it claimed that the stolen data is associated with the third-party vendor Envoy. Basically, the company uses Envoy to organize its office spaces. Atlassian emphasized that the customer and product data is secure and it’s not accessible via the Envoy app. "On February 15, 2023 we learned that data from Envoy, a third-party app that Atlassian uses to coordinate in-office resources, was compromised and published. Atlassian product and customer data is not accessible via the Envoy app and therefore not at risk. The safety of Atlassians is our priority, and we worked quickly to enhance physical security across our offices globally. We are actively investigating this incident and will continue to provide updates to employees as we learn more," Atlassian explained. According to Envoy founder Larry Gadea, there is no evidence that the hackers have breached its internal systems. However, an initial investigation revealed that the hackers had stolen employee... --- ### Windows File Sharing with SMB: Port 445, 139, 138, and 137 Explained > SMB is the most prevalent protocol for sharing files on Windows. This article examines how Windows file sharing works over ports 445, 139, 138, and 137. - Published: 2023-02-20 - Modified: 2024-06-18 - URL: https://petri.com/smb-port-445-139-138-137/ - Categories: Windows 10, Windows Client OS - Tags: File Sharing, SMB, SMB 3.0, SMB1, Windows - Article Type: Overview Many IT pros probably take for granted sharing files on their predominantly Windows environments and local area networks. Although several protocols are available, Server Message Block (SMB) is clearly the most prevalent. This article examines how Windows file sharing works over ports 445, 139, 138, and 137. How does file sharing via the SMB protocol work? SMB is a network file-sharing protocol that allows applications on networked computers to read and write files and request services from 'server' programs. The SMB protocol can be used on top of the TCP/IP protocol along with other network protocols. The set of network traffic packets that defines a specific version of the protocol is called a dialect. The Common Internet File System (CIFS) Protocol is one such dialect and is very old. CIFS and SMB (v1) are essentially the same and are not recommended for usage, especially on the Internet. They contain severe security vulnerabilities and are not installed by default in Windows. In fact, Microsoft is (slowly) phasing this functionality out of Windows – as soon as we IT pros remove it completely from our environments! SMB Protocol Dialects The bulk of this post will be describing the various SMB dialects in use throughout enterprises. As Microsoft developed newer versions of Windows over time, they, in tandem, introduced more robust, secure, and performant versions of SMB. Let's go through each of these one by one. SMB 1. 0 The original Server Message Block (SMB 1. 0) protocol is over 30 years old! In the OSI... --- ### Microsoft Releases New Driver and Firmware Controls for Windows Update for Business - Published: 2023-02-17 - Modified: 2023-02-17 - URL: https://petri.com/microsoft-driver-firmware-controls-windows-update-for-business/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: News, Windows Update for Business - Article Type: News Microsoft has released a new update that brings driver and firmware management capabilities for the Windows Update for Business deployment service. This release gives organizations better control over the deployment of updates to eligible cloud-attached Windows client devices. Windows Update for Business (WUfB) is a deployment service that enables IT admins to manage and distribute updates to Windows machines. They can create deployment rings to test Windows updates with a select group of users before being rolled out to all devices. It also allows administrators to delay the installation of updates for a specific period. Microsoft emphasizes the importance of driver servicing as hardware vendors frequently release new updates and fixes to address security vulnerabilities. The company has collaborated with popular OEMs (like Dell, HP, and Lenovo) to ensure that all drivers are delivered via Windows Update. With this release, IT Pros can view a list of the best drivers for all enrolled devices. It’s also possible to control the rollout or pause problematic drivers on specific machines. Administrators can use Windows Update for Business reports to track deployment status and find client devices that might require attention. "Our customers consistently ask us for more, and better, control over drivers and firmware updates. We are excited to collaborate with the Windows Update for Business deployment service, to bring these management controls to our Windows E3 and E5 customers, leveraging Microsoft Graph, in Intune later this year. We look forward to our continued partnership with the Windows team in helping organizations... --- ### Microsoft's Azure Virtual Desktop Adds Watermarking Support to Prevent Data Leaks - Published: 2023-02-17 - Modified: 2023-02-17 - URL: https://petri.com/azure-virtual-desktop-watermarking/ - Categories: Virtualization - Tags: Azure Virtual Desktop, News, Windows - Article Type: News Microsoft has introduced watermarking support for Azure Virtual Desktop (AVD). The company announced that the new security feature is designed to protect sensitive information on client devices. Microsoft explained that users can now enable the watermarking feature on Azure Virtual Desktops. Once enabled, users can scan the QR codes to find the connectionID and session information through AVD Insights or Azure Monitor Log Analytics. However, the feature doesn’t support remote applications. “Once watermarking is enabled on a session host, only clients that support watermarking can connect to that session host. If you try to connect from an unsupported client, the connection will fail and you'll get an error message that is not specific,” Microsoft explained in a support document. AVD watermarking How to enable watermarking in Azure Virtual Desktop First up, download the Administrative template for Azure Virtual Desktop and deploy it on your Domain Controllers (DCs). Now, open the Enable watermarking policy setting and enable it. Run the Group Policy update or Intune device sync to apply the policy settings to session hosts. Users can connect to the remote session to view the QR codes on the screen. However, they will need to reconnect to the session to see any updated policy changes applied to the session host. According to Microsoft, it could be challenging for organizations to protect sensitive content that’s shared on remote desktops. The watermarking feature should be a welcome addition that can help to prevent unauthorized usage, theft, and modification of sensitive content on Azure... --- ### Windows 365 vs. Azure Virtual Desktop: Which Virtualization Solution Should You choose? > Here's an overview of the main differences between Windows 365 and Azure Virtual Desktop to help you understand which solution is best for your organization. - Published: 2023-02-17 - Modified: 2023-03-09 - URL: https://petri.com/windows-365-vs-azure-virtual-desktop/ - Categories: Azure, Windows 365 - Tags: Azure, Azure Virtual Desktop, Windows 365 - Article Type: Overview Both Windows 365 and Azure Virtual Desktop perform a similar function for end users, which is providing access to a Windows desktop. From the IT admin perspective though, they are fundamentally different solutions.  In this article, we’ll walk through the major differences between Windows 365 and Azure Virtual Desktop so that you can understand which solution, if any, may be a good fit for your organization.   Windows 365 vs. Azure Virtual Desktop: Technical architectures One of the main benefits of Azure Virtual Desktop is its flexibility and customization capabilities. As for Windows 365, we're going to detail the two flavors of it, Windows 365 Business and Windows 365 Enterprise. Azure Virtual Desktop There is no right way to configure Azure Virtual Desktop, although there are common approaches that have been adopted to provide a good admin and user experience.   The typical architecture of Azure Virtual Desktop (image credit: Microsoft)  To support the most basic implementation of Azure Virtual Desktop, an organization needs:  One host pool to host user sessions  One Azure subscription to host the host pool  One Azure tenant to be the owning tenant for the subscription and identity management  While these are the most basic requirements, Azure Virtual Desktop's flexibility permits organizations to choose to use multiple host pools and/or multiple subscriptions to support their business requirements.  We also explained in a separate article how to secure Azure Virtual Desktop with Azure Active Directory Conditional Access.   Windows 365 Business  Windows 365 Business is the most basic and simple implementation... --- ### Exchange Online Gets New Cloud-based Message Recall Feature to Retrieve Read Emails - Published: 2023-02-16 - Modified: 2023-02-16 - URL: https://petri.com/exchange-online-cloud-based-message-recall/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft has released a new update that brings improvements to the Message Recall functionality in Exchange Online. The company has announced that the cloud-based feature enables customers to recall read messages. The classic Message Recall feature enables users to retrieve unread emails from the mailboxes of the recipients. However, it doesn’t support recalling read messages and only works if the recipient also uses Outlook for Windows. Microsoft also mentioned that the average success rate of the classic feature is about 50 percent. Microsoft has made several improvements that should significantly improve the recall success rates. According to the company's internal testing, the new feature is more than twice as effective in successfully recalling messages. Moreover, the recall process now takes place in the cloud, which allows recipients to use any email client synced with an Exchange Online mailbox. “With millions of users with mailboxes in Microsoft 365, we're now able to improve message recall by performing the recall directly against the recipients’ cloud mailboxes. So it will no longer matter which email client the recipient uses, the recall will happen in their cloud mailbox, and when the recipient’s email client syncs with their cloud mailbox, the message will be gone,” Microsoft explained. In addition to the recipient's inbox, the feature lets senders retrieve emails from any folder or sub-folder. Microsoft has also introduced a web-based message recall status report that makes it easier to monitor the recall status for all recipients. However, the report is currently limited to less than... --- ### Parallels Desktop is Now Officially Supported for Running Windows 11 on ARM on Apple Silicon Macs > Microsoft has finally recognized Parallels Desktop for Mac as a supported solution for running Windows 11 on ARM on Apple Silicon Macs. - Published: 2023-02-16 - Modified: 2023-02-24 - URL: https://petri.com/parallels-desktop-mac-windows-11-official-support/ - Categories: Virtualization, Windows 11 - Tags: macOS, Parallels Desktop, Virtualization, Windows 11, Windows on ARM - Article Type: News Microsoft has finally recognized Parallels Desktop for Mac as a supported solution for running Windows 11 on ARM on Apple Silicon Macs. Back in 2021, Parallels Desktop for Mac 17 was the first version of the virtualization software to add support for Windows 11 on macOS, though Microsoft said at the time that it was “not a supported scenario. ” Well, fast forward to 2023, Microsoft now says that there are two supported options for running Windows 11 on a Mac: Windows 365 and Parallels Desktop for Mac. “Parallels Desktop version 18 is an authorized solution for running Arm versions of Windows 11 Pro and Windows 11 Enterprise in a virtual environment on its platform on Apple M1 and M2 computers,” the company explained.   Unfortunately, it’s still not possible to run Windows 11 on ARM natively on Apple Silicon Macs. All Macs with M1 and M2 chips have dropped support for Boot Camp, Apple’s multi-boot utility that allows owners of Intel-based Macs to install Windows.   Using Windows 11 with Parallels Desktop for Mac has some limitations I’ve been using Parallels Desktop for Mac to run Windows 11 on ARM on my Apple Silicon Mac for a while, and it works really well. However, running Windows 11 on ARM in a virtual machine on macOS has several limitations: Any app or game that requires DirectX 12 or OpenGL 3. 3 or newer won’t work. If 64-bit ARM apps or emulated x64 or x86 apps work fine, 32-bit ARM apps are not supported. Nested... --- ### Researchers Find New ESXiArgs Ransomware Variant that Makes Data Recovery Nearly Impossible - Published: 2023-02-16 - Modified: 2023-02-16 - URL: https://petri.com/researchers-new-esxiargs-ransomware-variant-recovery-impossible/ - Categories: Security - Tags: News, Ransomware, Security - Article Type: News Last week, the US Cybersecurity and Infrastructure Security Agency (CISA) released a script to help enterprise customers recover from widespread ESXiArgs ransomware attacks. The threat actors have now created a new variant of the malware that can’t be decrypted with the data recovery script. According to a report from Malwarebytes, CISA leveraged the publicly available information on the malware's working to create the ESXiArgs-Recover tool. Unlike the original version, the new variant of ransomware is capable of encrypting large data chunks on vulnerable VMware ESXi virtual machines. “Where the old encryption routine skipped large chunks of data based on the size of the file, the new encryption routine only skips small (1MB) pieces and then encrypts the next 1MB. This ensures that all files larger than 128 MB are encrypted for 50%. Files under 128MB are fully encrypted which was also the case in the old variant,” explained Pieter Arntz, a malware analyst at Malwarebytes. Additionally, security researchers found that the new ESXiArgs ransomware variant no longer mentions a Bitcoin address. The ransomware informs victims to contact the threat actors through an encrypted messaging service dubbed “Tox Chat. ” This method should prevent the payments from being tracked, which could otherwise reveal the hackers’ identity. How to block ransomware attacks on unpatched ESXi hypervisors? CISA recently confirmed that the original ESXiArgs ransomware has infected over 3,800 vulnerable servers worldwide. Attackers have already used it to encrypt . vmdk, . vmxf, . nvra, . vmx, and . vmsd files stored on vulnerable ESXi servers. Malwarebytes highly recommends... --- ### Microsoft Confirms VM Secure Boot Issue Causing Boot Failures on Windows Server 2022 - Published: 2023-02-16 - Modified: 2023-02-16 - URL: https://petri.com/microsoft-vm-secure-boot-windows-server-2022/ - Categories: Active Directory (AD) - Tags: News, VM, Windows Server, Windows Server 2012 - Article Type: News Microsoft has acknowledged a new issue that might prevent virtual machines (VMs) from booting up on Windows Server 2022. The company detailed on the Windows Health Dashboard that the problem triggers on Windows Server machines that installed the latest Patch Tuesday Updates released on February 14. According to Microsoft, the issue only impacts virtual machines with the Secure Boot option enabled running on vSphere ESXi version 6. 7 U2/U3 or vSphere ESXi version 7. 0. x. Secure Boot is a security feature that helps to prevent malware (rootkits and bootkits) from taking over Windows devices at boot time. It’s designed to block all programs that don’t have a valid signature from running on the computer. “After installing KB5022842 on guest virtual machines (VMs) running Windows Server 2022 on some versions of VMware ESXi, Windows Server 2022 might not start up. Only Windows Server 2022 VMs with Secure Boot enabled are affected by this issue,” the company explained. Microsoft suggests a workaround to fix boot failures on Windows Server 2022 VMs Microsoft is investigating the issue, but there is no fix available at the moment for affected virtual machines. However, the company provided a couple of temporary workaround solutions to mitigate the problem. Microsoft suggested that the issue can be fixed by upgrading to vSphere ESXi 8. 0. Alternatively, Microsoft notes that customers can resolve the problem by disabling Secure Boot on Windows Server machines. The company warned that customers should not install the KB5022842 update on virtual machines until a fix is available. Did... --- ### Cloud Conversations: Dwayne Natwick on SC-100 Exam Guide & Working with Multi-Cloud Solutions > Microsoft Security MVP Dwayne Natwick returns to the show this week to discuss multi-cloud solutions, his new SC-100 Exam Guide, and much more. - Published: 2023-02-16 - Modified: 2023-02-16 - URL: https://petri.com/cloud-conversations-episode-66-dwayne-natwick/ - Categories: Video - Tags: cloud computing, Cloud Conversations, hybrid cloud - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations: Dwayne Natwick on SC-100 Exam Guide & Working with Multi-cloud Solutions Dwayne Natwick is a Global Principal Cloud Security Technical Lead at Atos and a Microsoft Security MVP. He returns to the show this week to talk with Ru Campbell and Peter Rising about the following topics: Working with multi-cloud solutions His new SC-100: Microsoft Cybersecurity Architect exam guide Changing to the new Microsoft MVP security category And much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft... --- ### 5 Tips for Reducing IT-Related Energy Costs - Published: 2023-02-15 - Modified: 2024-11-19 - URL: https://petri.com/5-tips-for-reducing-it-related-energy-costs/ - Categories: IT Infrastructure - Article Type: Overview As energy prices continue to soar and IT departments are squeezed even tighter, many IT organizations are looking at how they can reduce energy costs in their datacenters and across their PC fleets. If you are still running outdated server hardware, haven’t blown the dust out of your rack cooling systems, and are still using PCs from eight years ago then it might be time to take a look at how your IT department can become more energy efficient. 1. Replace outdated server hardware A 10-year-old washing machine might still work but it’s not likely to be the most power-efficient device in your household. The same applies to servers. If you are running old hardware in your datacenter or server room, it might be time to look at replacing it. While servers are said to be processing more than six times the amount of data than ten years ago, the power they consume hasn’t increased significantly because of improvements in power efficiency. That can be more efficient power supplies, processors, cooling systems, and more. And modern CPUs are designed to boost processing capabilities without substantial increases in power draw. If your server hardware is more than 5 years old, then it could be time to look into investing in new equipment. It might not only enable you to reduce energy bills but also benefit from the improved capacity and performance that new hardware provides. Servers using Arm or AMD Ryzen CPUs are your best bets if power-efficiency is a... --- ### Microsoft to End Support for Exchange Server 2013 in April - Published: 2023-02-15 - Modified: 2023-02-15 - URL: https://petri.com/microsoft-end-support-exchange-server-2013-april/ - Categories: Exchange 2013 - Tags: Exchange Online, Exchange Server, Exchange Server 2019, News - Article Type: News Microsoft is reminding customers that it’s ending extended support for Exchange Server 2013. After April 11, 2023, the older version of Exchange Server will no longer receive any new security patches, technical support, time zone updates, and bug fixes. Microsoft launched Exchange Server 2013 back in January 2013. The company ended its mainstream support four years ago, but April 11 marks the end of extended security updates for Exchange Server 2013. Microsoft has warned that the older version will continue to run, but it would be vulnerable to security risks. “Exchange Server 2013 will continue to run after this date, of course; however, due to the risks listed above, we strongly recommend that you migrate from Exchange Server 2013 as soon as possible. If you haven't started your migration from Exchange Server 2013 to Exchange Online or Exchange Server 2019, get going now,” the Exchange team explained. Plan your migrations to Exchange Server 2019 or Exchange Online Microsoft plans to release the next version of Exchange Server in 2025. In the meantime, the company strongly recommends customers to migrate to Exchange Server 2019 or Exchange Online. Exchange Server 2019 includes several security capabilities, data loss prevention features, and improvements to compliance. It’s suitable for organizations that want to maintain their systems in on-premises environments. Alternatively, Microsoft says that organizations can also choose to migrate to Exchange Online. It offers new tools such as Viva Insights and focused inbox, larger mailboxes, as well as improved antimalware and spam protection. Microsoft has... --- ### Microsoft Promises Faster .NET Framework Updates with UUP on Windows 11 22H2 - Published: 2023-02-15 - Modified: 2023-02-15 - URL: https://petri.com/microsoft-net-framework-updates-uup-windows-11-22h2/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Microsoft has announced some important updates to improve the . NET Framework update experience on Windows 11 version 22H2. The company has integrated . NET updates into the Unified Update Platform (UUP) to minimize the number of reboots and provide organizations with greater control over optional updates. Microsoft introduced the Unified Update Platform (UUP) back in 2016 and its engineers have been making efforts to speed up the downloads. Previously, . NET Framework updates were not automatically installed while downloading the latest feature update via Windows Update. Users had to reboot their devices twice to apply the feature update and install . NET Framework updates. Microsoft notes that the updates will now happen automatically in the background and should require a separate reboot. “We've integrated . NET Framework updates into the Unified Update Platform or UUP-based feature update. Moving to Windows 11, version 22H2 via Windows Update will now automatically help secure your device with the latest . NET Framework updates. You'll now experience one less reboot! Moreover, enable Dynamic Update and experience this improvement of media-based feature updates,” Microsoft explained. IT Admins get better control over optional . NET Framework updates Microsoft has also announced that IT admins now have better control over optional . NET Framework updates on Windows 11 PCs. Users can head over to Settings >> Windows Update >> Advanced options >> Optional updates page to download the updates on their machines. Last week, Microsoft announced that it will enable its Unified Update Platform (UUP) for customers that use on-premises tools to update Windows... --- ### GitHub’s Copilot for Business Now Available with a Powerful AI Model, VPN Proxy Support - Published: 2023-02-15 - Modified: 2023-02-15 - URL: https://petri.com/github-copilot-business-powerful-ai-model/ - Categories: Developer - Tags: Developers, GitHub Copilot, News - Article Type: News Microsoft has announced the general availability of GitHub Copilot for Business. The AI-powered programming assistant costs $19 per user per month, and it includes organization-wide policy management, license management, additional privacy features, and corporate proxy support. Microsoft launched GitHub Copilot for Business in preview back in December 2022. Powered by OpenAI Codex, the tool enables developers to use natural language prompts to suggest whole functions or code snippets and complete code based on the current context. GitHub Copilot is available as a plugin for Visual Studio and Visual Studio Code, and it supports various languages, including JavaScript, Ruby, and Python. At launch, over 400 companies are already utilizing Copilot for Business to boost productivity, and there is a significant interest in the service. “Back i​n June 2022, we reported that GitHub Copilot was already generating 27% of developers’ code. Today, we’re seeing this happen more and more with an average of 46% of code being built using GitHub Copilot across all programming languages, and 61% among developers using Java,” said GitHub’s CEO Thomas Dohmke. GitHub Copilot for Business now supports AI-based security vulnerability filtering Microsoft also announced that its programming assistant is now powered by an improved OpenAI-powered model. It’s designed to reduce latency and improve the quality of code suggestions provided to software developers. GitHub Copilot for Business has also introduced support for AI-based security vulnerability filtering. The feature helps to detect and block insecure coding patterns and makes GitHub Copilot suggestions more secure. Moreover, GitHub Copilot for Business... --- ### Zero Trust: How Azure Active Directory and Identity Management Enable Cloud Security  >  In this article, we detail how Microsoft's Zero Trust approach leverages Azure Active Directory and Identity and Access Management to enable cloud security. - Published: 2023-02-15 - Modified: 2023-08-29 - URL: https://petri.com/zero-trust-security-azure-ad-identity-management/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, conditional access, Identity Protection, Microsoft Intune, Security, Zero Trust - Article Type: Overview After the successful SolarWinds attack in 2020 where attackers gained access to Microsoft’s systems, Microsoft changed its approach and aligned with the National Institute of Standards and Technology's (NIST) zero trust architecture.  In this article, we're going to detail how Microsoft's zero trust approach leverages Azure Active Directory and Identity and Access Management to enable cloud security. In contrast to previous security models, in Microsoft’s defense in-depth approach – and especially for cloud applications, security and systems – Identity and access are the first layer of defense.  This changes the way we do identity management. Identity and Access Management (IAM) used to consist of the three As (Authentication, Authorization, and Auditing), but within the Zero Trust security model, a fourth A becomes apparent: Administration.   What is zero trust?   Zero trust can best be described as the approach to achieving an IT environment where all access is governed by explicit verification and the lack of implicit trust. It’s based on three pillars:  Verify explicitly Use the least privileged access Assume breach Why zero trust matters for identity management  What’s also different from five years ago is that everything is connected to the Internet. Organizations no longer have the luxury of operating off the grid. Employees want and may need to work from any location. People who access applications and data from your organization are no longer just your employees.    Partner collaboration and consumer services require them to access your data too. VPNs just won’t do. Your old firewall and perimeter network no... --- ### Microsoft's February Patch Tuesday Updates Fix 75 Windows Vulnerabilities > The Windows Patch Tuesday updates for February fixes dozens of security vulnerabilities, including two flaws that are already being exploited by attackers. - Published: 2023-02-14 - Modified: 2023-02-14 - URL: https://petri.com/windows-patch-tuesday-february-2023/ - Categories: Windows 10, Windows 11 - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released today the February 2023 Patch Tuesday updates for Windows 11 and Windows 10. As usual, the company fixed dozens of vulnerabilities in Windows and other components, including two security flaws that are already being exploited by attackers. On the quality and experiences update front, Microsoft has brought some fixes to Windows Search on Windows 11 version 22H2. For Windows 11 users still running the version 21H2 of the OS, there are also some notable changes in the Settings apps.     Let’s take a closer look at the main security fixes Microsoft released today.   75 vulnerabilities fixed with the February 2023 Patch Tuesday updates The full list of CVEs released by Microsoft for the month of February includes two undisclosed vulnerabilities rated “Important” that are already being exploited by attackers. Here are the most important fixed vulnerabilities you should know about.   CVE-2023-21715: This Microsoft Publisher Security Features Bypass Vulnerability is already being exploited by attackers. It requires users to open specially crafted files allowing attackers to bypass Office macro policies used to block untrusted or malicious files. CVE-2023-23376: This Windows Common Log File System Driver Elevation of Privilege Vulnerability is also already being exploited by attackers to gain system privileges. CVE-2023-21689: This is a Remote Code Execution Vulnerability in the Microsoft Protected Extensible Authentication Protocol (PEAP) that could allow attackers to trigger malicious code in the context of the server's account through a network call. CVE-2023-21529: This Microsoft Exchange Server Remote Code Execution Vulnerability could allow authenticated attackers to target... --- ### Microsoft OneDrive to Get New Shared Experience on the Web This Month - Published: 2023-02-14 - Modified: 2023-02-14 - URL: https://petri.com/microsoft-onedrive-update-shared-experience/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, OneDrive - Article Type: News Microsoft has announced some improvements coming to the Shared experience in OneDrive on the web. The new feature is designed to make it easier for users to find files and folders shared by colleagues through chats, meetings, and emails across Microsoft 365 apps. “The refreshed OneDrive Shared with you view will show files and folders shared across various Microsoft 365 apps so that users can find files shared with them over email, chats, and meetings all in one place. In addition, users can identify updates to files by using the activity column, as well as leverage filter pills to easily find files,” the company explained on the Microsoft 365 admin center. Microsoft plans to begin rolling out the new Shared experience to targeted release customers later this month. However, the feature is expected to become generally available for all commercial customers in mid-April. Microsoft introduces OneDrive customer office hours Microsoft has announced that the OneDrive team now offers monthly customer office hours meetings for both commercial and education customers. The company notes that IT admins and partners can join the one-hour Teams meeting to discuss and view a demo of new features coming to the OneDrive service. Additionally, the meeting participants can share quick feedback, report bugs and ask questions during the Q&A session. Keep in mind that OneDrive customer office hours is not an official support service. Microsoft suggests IT administrators to report their issues and problems via support tickets. Microsoft says that the OneDrive office hours meetings will... --- ### PSA: Microsoft to Permanently Kill Off Internet Explorer 11 on Windows 10 PCs Today - Published: 2023-02-14 - Modified: 2023-02-14 - URL: https://petri.com/microsoft-permanently-disable-internet-explorer-11-windows-10/ - Categories: Windows 10 - Tags: Internet Explorer, Internet Explorer 11, News, Windows 10 - Article Type: News Microsoft is finally killing off its out-of-support Internet Explorer 11 (IE11) desktop application today. Indeed, the company will release a Microsoft Edge update to permanently disable Internet Explorer on certain versions of Windows 10. Microsoft started phasing out support for Internet Explorer 11 on Windows 10 devices back in June last year. Previously, the company planned to permanently disable IE 11 via a Windows Update. However, Microsoft later clarified that the change would arrive through an update for Microsoft Edge. It should help to make the transition easier for Windows 10 users. Microsoft will roll out the Edge update to all consumers and commercial customers. Starting today, Windows 10 users who try to open the browser or any IE-based app will be automatically directed to Microsoft Edge. The redirection will be included in all Microsoft Edge updates, and users won’t be able to revert the change on Windows 10 devices. Microsoft says the Edge browser will import users’ browsing data from Internet Explorer 11. IE 11 prompt Additionally, Microsoft plans to remove all visual references to Internet Explorer from Windows 10 on June 13, 2023. This means that users will not see IE icons on the taskbar or Start menu after installing the June Patch Tuesday updates on their PCs. Microsoft advises Internet Explorer users to switch to Microsoft Edge Microsoft emphasized that its new Edge browser comes with a built-in IE mode on Windows 10. The feature enables customers to open websites and applications designed for the legacy web... --- ### Microsoft to Rebrand Yammer as Viva Engage - Published: 2023-02-14 - Modified: 2023-02-14 - URL: https://petri.com/microsoft-rebrand-yammer-viva-engage/ - Categories: Viva - Tags: Microsoft Teams, News, Viva Engage, Yammer - Article Type: News Microsoft has announced that it’s rebranding the Yammer app to Viva Engage. The new branding changes will begin rolling out to the Yammer mobile apps and the Communities app in Outlook next month, with the Yammer web experience to follow in Summer 2023. Microsoft explained that the first stage of the rebranding effort began with the rebranding of the Yammer Communities app for Teams in August 2022. In March, Yammer users will see a new logo, app icon, and name on mobile and the existing Communities integration in Outlook on desktop. This change aims to unify Viva Engage across all platforms, including Microsoft Teams, Outlook, mobile, and the web. “Over the next year, Yammer experiences will be rebranded to Viva Engage to better align with Microsoft Viva and become a key pillar of the Microsoft Employee Experience Platform,” Microsoft explained. “This change is a direct result of the feedback we’ve heard from you, our customers, and it will help us deliver an integrated experience and a single Viva Engage platform across apps and endpoints—wherever you choose to engage. ” In April, Yammer. com will show a banner to inform users about the Viva Engage rebrand happening in the next few months. Microsoft plans to update all Yammer. com URLs and roll out redirection for legacy URLs later this year. Viva Engage adds Leadership Corner, campaigns, and other new features Microsoft has also announced the general availability of several new features in Viva Engage. First up, the Leadership Corner tab helps leaders connect with... --- ### Microsoft Edge 110 Adds New IT Policies and Ends Support for Windows 7 and Windows 8.1 - Published: 2023-02-13 - Modified: 2023-02-13 - URL: https://petri.com/microsoft-edge-110-policies-windows-7-windows-8-1/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News, Windows 7, Windows 8.1 - Article Type: News Microsoft has recently started rolling out version 110 of its Edge web browser. This month’s update ends support for Windows 7 and Windows 8. 1, and it comes with a new Drop feature as well as two new policies for IT admins. Microsoft explained in the changelog that Edge version 110 enables syncing capabilities for Azure Active Directory signed-in customers. The feature lets users sync open tabs, passwords, favorites, browsing history, collections, extensions, apps, and settings across all signed-in instances of Microsoft Edge. Microsoft says that the default setting will not be applicated to organizations using the SyncDisabled policy. “For Azure Active Directory users who have sync turned off, after the browser is launched they'll see a notification prompt and have sync turned on for all signed in instances of Microsoft Edge. This sync enablement includes other devices where they're signed in. Additionally, if a user’s other devices don’t have history and open tabs sync on, those two toggles will be turned on,” the company explained. Microsoft has also introduced two new Immersive Reader policies for IT administrators. These policies should help IT Pros manage the availability of Picture Dictionary and Grammar Tools within Immersive Reader for end users in their organization. Microsoft Edge version 110 new Drop feature Lastly, Microsoft Edge 110 brings a new Drop feature that should make it easier to share files and notes across devices. Microsoft Edge users can use the sidebar (edge://settings/sidebar) to manage the Drop feature in the browser. However, Microsoft notes that IT... --- ### Microsoft to Launch UUP On-Premises for 30% Smaller, Faster Windows Updates in March - Published: 2023-02-13 - Modified: 2023-02-13 - URL: https://petri.com/microsoft-uup-on-premises-faster-windows-updates/ - Categories: Windows 11 - Tags: News, Windows 11, Windows Update - Article Type: News Microsoft is getting ready to launch its Unified Update Platform (UUP) for on-premises environments in March. The company says this feature should help to ensure a smaller and faster download experience for Windows Updates. Microsoft announced the public preview of on-premises UUP (Unified Update Platform) for commercial organizations. It integrates with Microsoft Endpoint Configuration Manager and Windows Server Update Services to enable IT admins to maintain control over feature and quality updates on Windows 10 and Windows 11 PCs. Starting on March 28th, Microsoft will update all devices running Windows 11 version 22H2 using UUP in premises environments. The company claims that this release aims to make Windows Update downloads smaller by up to 30 percent. Microsoft noted that it should automatically result in faster download speeds. “UUP is becoming the default and only way to download quality updates. This means that you should plan for an additional 10GB download to distribution points (not endpoint clients) with the March 28th update. That's a one-time 10GB download for updates for Windows 11, version 22H2 per architecture (AMD64 and ARM64),” Microsoft explained. What are the other benefits of UUP on-premises updates? Microsoft has also highlighted that UUP on premises reduces some work that was previously required for maintaining Windows 11 and Windows 10 environments. For instance, IT Pros would no longer need to create custom images or complex task sequences. Moreover, it will be possible to upgrade the operating system with one reboot. Microsoft mentioned that OS upgrades will retain the previously... --- ### LDAP, OpenLDAP, and Active Directory: What's the Difference? > LDAP, OpenLDAP, and Active Directory are the most used identity and access management solutions today. In this article, we'll explain how they work and help you determine which one is the right choice for your network. - Published: 2023-02-13 - Modified: 2023-02-14 - URL: https://petri.com/ldap-openldap-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, LDAP - Article Type: Overview LDAP, OpenLDAP, and Active Directory are the most used identity and access management solutions today. In this article, we'll explain how they work and help you determine which one is the right choice for your network. LDAP vs. Active Directory: What's the difference? In general, there's a pretty good chance that you're more familiar with 'Active Directory' vs. 'LDAP. ' Active Directory is a database set of services Microsoft introduced with Windows 2000 to manage users and computers in a domain/network environment. LDAP, however, is a software protocol that lets users locate an organization's data and resources. Whereas LDAP is the protocol that services authentication between a client and a server, Active Directory is a software implementation built on top of it. Let me dive deeper to explain the main differences between LDAP and Active Directory. What is LDAP? Again, LDAP (Lightweight Directory Access Protocol) is an underlying protocol that allows the transfer of domain information between a database and users' access. It is used to manage and access directory services. Over the past few decades, LDAP has been enhanced to meet the current requirements of IT pros and what security dictates. The LDAP protocol facilitates authorization and user authentication of your network resources including servers, applications, networks, file servers, printers, and more. Vendors have created software utilizing LDAP that includes interfaces, tooling, and other functions. Back in the nineties, Tim Howes, a software engineer developed LDAP along with some colleagues, to create a low-overhead version of the X. 500 directory... --- ### Microsoft Sentinel Adds Azure DDoS Protection to Automate Attack Response - Published: 2023-02-10 - Modified: 2023-02-10 - URL: https://petri.com/microsoft-sentinel-azure-ddos-protection/ - Categories: Microsoft Sentinel - Tags: Azure DDoS Protection Service, Microsoft Sentinel, News - Article Type: News Microsoft has released a new Azure DDoS Protection solution for Microsoft Sentinel. The new service leverages Azure DDoS Protection logs to automatically track and block DDoS sources to mitigate sophisticated attacks. Microsoft Sentinel is a cloud-based security solution that allows security teams to detect and mitigate threats, monitor security events, and analyze data in their environments. It also offers intelligent security analytics to help organizations improve overall security posture. Moreover, Azure DDoS Protection is a security feature that protects against distributed denial of service (DDoS) attacks at the network level. “Microsoft Sentinel and Azure DDoS Protection services offer rich integration to easily ingest DDoS Protection logs and view and analyze this data in Sentinel to create custom alerts and improve their security posture, investigation, and response processes. Specifically, customers can correlate DDoS smokescreen attacks with events from different sources to detect advanced attacks, such as data theft, and to automatically block them,” Microsoft explained. Microsoft explained that its new Azure DDoS Protection solution comes with three major components. First up, it includes an Azure DDoS Protection data connector and workbook. Moreover, the solution provides alert rules to help security teams find the source DDoS attackers. There is also a Remediation IP Playbook that lets IT admins automatically create remediation in Azure Firewall for blocking them. How to get started with Azure DDoS protection Overall, this release should make it easier for organizations to protect their apps and resources against sophisticated DDoS attacks (such as smokescreen attacks). If you’re interested, you... --- ### Microsoft to Reportedly Announce ChatGPT-Like Tools for Office Apps in March - Published: 2023-02-10 - Modified: 2023-02-10 - URL: https://petri.com/microsoft-chatgpt-tools-office-apps/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook, PowerPoint, Word - Article Type: News Microsoft's partnership with OpenAI may soon accelerate with new ChatGPT-like tools coming to Office. According to The Verge, Microsoft may announce new AI-powered capabilities for Word, PowerPoint, and Outlook in March this year. Until now, Microsoft has remained tight-lipped about the new ChatGPT-like features coming to its core Office apps. However, Microsoft’s engineers have been reportedly working to develop tailored AI tools for writing emails and documents for over a year. Microsoft has recently announced a new feature that leverages the Azure OpenAI Service and GPT to generate e-mail responses to customer questions. According to The Verge, Microsoft Office users will be able to use the Prometheus Model and ChatGPT to generate text with simple prompts. Moreover, Microsoft could integrate the technology to improve search results in Outlook inboxes. Microsoft PowerPoint is also getting a new feature that will let users generate graphics and graphs in presentations. This news comes a few days after Microsoft announced its new AI-powered Bing search engine and Edge browser. The latest version of Microsoft Bing leverages a next-generation language model to make the search experience more intuitive for users. For now, Microsoft has made the new Bing available in a limited preview, and more than 1 million users have signed up to join the waitlist in 48 hours. Microsoft Bing New ChatGPT-powered Microsoft Office features to boost productivity Interestingly, Microsoft believes that it’s far ahead of Google in terms of its AI technology. “Internally, a number of Microsoft executives are confident they’re way ahead... --- ### Microsoft to Add New Commercial Policy to Enable Hidden Features on Windows 11 - Published: 2023-02-10 - Modified: 2023-02-10 - URL: https://petri.com/microsoft-commercial-policy-enable-features-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11, Windows Insider - Article Type: News Microsoft has announced the release of a new Windows 11 build for Insiders in the Dev channel. The company has started testing a new client policy for enterprise/commercial customers to enable features released through servicing updates that are disabled by default on Windows Update-managed devices. According to Microsoft, the new commercial policy allows IT admins to control features that add inbox applications or new experiences/UIs to Windows PCs. It’s also possible to remove some existing capabilities or override previously configured settings. “Improvements that are not behind temporary control will be rolled out through a controlled feature rollout to unmanaged devices before being included in a monthly quality update (LCU) for organizations. All features shipped in the LCU will be included in a complementary knowledge base (KB) article, which will delineate those features still in the process of being rolled out and those that are switched off by default for organizations,” Microsoft explained. Microsoft says that customers who are interested to test the new features delivered via servicing will need to configure the "Enable features introduced via servicing that are off by default" policy. Once enabled, users will need to reboot their machines to see all new features on Windows 11. Microsoft to release the new commercial policy via an optional update in February Currently, there are no new features that are disabled by default in the Dev channel. However, Microsoft says that this policy is coming soon to the Beta channel to let IT admins enable new features hidden behind... --- ### Microsoft Starts Rolling Out New Home Experience for Viva Connections - Published: 2023-02-09 - Modified: 2023-02-09 - URL: https://petri.com/microsoft-new-home-experience-viva-connections/ - Categories: Viva - Tags: Microsoft, Microsoft Viva, News, Viva Connections - Article Type: News Microsoft has released a new home experience that should make it easier for desktop users to get started with Viva Connections. The latest Viva Connections update has started rolling out to targeted release customers, which surfaces important tasks and personalized content as well as provides easier access to other Viva apps. “On desktop, Connections introduces a rich, new experience that aligns with what is currently available on mobile by prominently surfacing dashboard, feed, and resource components. This new experience will be the default layout for the Connections experience on desktop,” Microsoft explained. Microsoft explained that the Viva Connections dashboard provides cards that allow employees to quickly access important information and tools. For instance, users can use these cards to submit a support ticket or approve an expense report. Additionally, Microsoft says that employees can view a personalized feed with relevant information from across their organization. The feed has tight integrations with SharePoint news, Yammer, and Stream, and gradually adapts to users’ specific preferences. Microsoft Viva Connections Resources are navigational links that let users quickly access the latest news, frequently visited sites, and followed sites. It’s possible to set up and customize various navigational elements such as background image, dashboard content, app icon, label, and resources. The new Viva Connections home experience New Viva Connections Home experience to hit GA in late March Microsoft has also dropped the previously mandatory requirement of a SharePoint home site to deploy Viva Connections. “Customers with home sites already can rest assured that they will... --- ### Microsoft to Kill Off Windows Support Diagnostic Tool (MSDT) in 2025 - Published: 2023-02-09 - Modified: 2023-02-09 - URL: https://petri.com/microsoft-windows-support-diagnostic-tool-msdt/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is planning to retire its Microsoft Support Diagnostic Tool (MSDT) and its related troubleshooters for Windows 11. The company has announced that it will begin the depreciation process in the next major release of Windows 11 later this year. The Microsoft Support Diagnostic Tool (MSDT) is a service that is designed to diagnose and troubleshoot problems with Microsoft products. It collects data from the computer to help Microsoft support agents remotely help users resolve issues on their PCs. It collects performance data, system configuration information, and error logs. Last year, security researchers discovered a critical vulnerability in the Microsoft Support Diagnostic Tool. The flaw allowed attackers to install programs, create new user accounts, and access/modify/delete sensitive data stored on Windows devices. Microsoft has since issued a workaround that involves disabling MSDT in the Windows registry. Now, Microsoft has decided to deprecate the Microsoft Support Diagnostic Tool in 2025 to help users protect their PCs against cyberattacks. However, the company says that the retirement will take place gradually over the course of the next three years. “Microsoft is retiring the Windows legacy inbox Troubleshooters, such as Keyboard troubleshooter and Speech troubleshooter, and the Microsoft Support Diagnostic Tool (MSDT) that runs them. The legacy inbox Windows Troubleshooters are built-in tools that, when launched, automatically diagnose and correct common problems for a variety of Windows features,” the company explained. Microsoft announces three-phase plan for the MSDT troubleshooter deprecation Microsoft plans to start redirecting select MSDT troubleshooters to the new Get Help troubleshooting... --- ### Cloud Repatriation: Is It a Risk For Microsoft Azure? > Cloud repatriation appears to be one of the new IT hot topics in 2023. In this article, I explain why cloud repatriation is being part of more and more IT-related conversations this year, what the concerns are for customers, and how recent news might cause Microsoft Azure to lose customers. - Published: 2023-02-09 - Modified: 2023-02-09 - URL: https://petri.com/cloud-repatriation-risks-for-microsoft-azure/ - Categories: Azure, Cloud Computing - Tags: Azure, cloud computing, Cloud repatriation - Article Type: Opinion Cloud repatriation appears to be one of the new IT hot topics of 2023. For companies that invested time and money into transferring some of their workloads to the cloud, why would it now make sense to bring some of them back to on-premises resources? Well, I'll explain in this article why cloud repatriation is being part of more and more IT-related conversations this year, what the concerns are for customers, and how recent news might cause Microsoft Azure to lose customers. What is cloud repatriation? Watch out: 2023 is another one of those "year of ... " years. I'm still waiting on my Linux desktop hosted on a Citrix server (and my jetpack, hovercraft, and flying car), but one of those "year of ... " articles caught my interest in early January. I was sitting in a meeting room, waiting to start a few days of strategizing about business strategy with colleagues, and I started browsing the news. One article on InfoWorld, 2023 Could Be The Year Of Cloud Repatriation caught my attention and had me thinking "what the heck is cloud repatriation? " I wrongly assumed, at first, that it was about moving services and data to a more local instance of the cloud. I started to read and the sub-heading wrapped up the article nicely: With cloud costs and complexity higher than expected, many enterprises are making a U-turn and putting applications and data back in traditional systems. InfoWorld - 2023 Could Be The Year Of Public Cloud Repatriation... --- ### Microsoft to Sunset Teams Free (Classic) in Favor of Paid Plans - Published: 2023-02-08 - Modified: 2023-02-08 - URL: https://petri.com/microsoft-to-sunset-teams-free-classic-in-favour-of-paid-plans/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has recently announced that it’s retiring the free version of Microsoft Teams for businesses on April 12. The company recommends customers to switch to its Microsoft Teams premium plan to keep chats, documents, and other important information. Microsoft launched the free version of its Teams collaboration service in 2018. It’s designed to meet the collaboration needs of groups and small businesses. However, Microsoft Teams free (classic) lacks support for some features, including recording or transcriptions, breakout rooms, webinars, and more. With this change, Microsoft has provided two paid options to help customers preserve their channels, files, chats, teams, and permissions. The company suggests moving to Microsoft Teams Essentials for $4 per user/month. It’s a new standalone launched for small and medium-sized businesses (SMBs) in December. Microsoft Teams Essentials lets users hold meetings for up to 30 hours with up to 300 participants. Other features include 10GB of cloud storage per user, group chat templates, and support for calendar integration for Outlook and Google Calendar. Alternatively, Microsoft notes that customers can choose to switch to Microsoft 365 Business Basic for $6 per user/month. The plan includes all features included in Microsoft Teams Essentials as well as meetings recordings with transcripts, support for Bookings, and 1TB of cloud storage per user. It also provides the web and mobile versions of Microsoft 365 productivity apps. Microsoft Teams hits 280 million monthly active users Microsoft says that those who want to stay on a free tier will need to manually migrate their data... --- ### CISA Releases New Tool to Recover from Ransomware Attacks on Unpatched VMware ESXi Servers - Published: 2023-02-08 - Modified: 2023-02-08 - URL: https://petri.com/cisa-releases-tool-recover-vmware-esxi-ransomware/ - Categories: Security - Tags: News, Security, vmware - Article Type: News VMware has warned about a large-scale global ransomware campaign that is currently targeting vulnerable VMware ESXi servers worldwide. The hypervisor maker disclosed that threat actors are exploiting a two-year old vulnerability in its ESXi hypervisor and components to deploy ransomware. VMware ESXi is a service that enables companies to host multiple virtualized systems running different operating systems on a single physical server instance. Over the weekend, several customers reported that attackers infected over 3,200 unpatched VMware ESXi servers with a ransomware variant called “ESXiArgs. ” They have used it to encrypt . vmsd, . vmx, . nvra, . vmxf, and . vmdk files stored on vulnerable ESXi servers. According to the French computer emergency response team CERT-FR, the cybercriminals are leveraging the CVE-2021-21974 flaw that was disclosed and patched in February 2021. The vulnerability had a severity rating of 8. 8 and it could be exploited by anyone with access to the same network segment. The proof-of-concept exploit code has been publicly available for the past two years. Cybersecurity and Infrastructure Security Agency (CISA) investigated the campaign and recommends customers to upgrade to the latest version of vSphere components. Meanwhile, VMware advises customers to disable the OpenSLP service in older versions of ESXi. Download the "ESXiArgs-Recover" script to recover VMs from ransomware attacks CISA also released a new "ESXiArgs-Recover" script to help customers recover virtual machines from the ESXiArgs ransomware attacks. “CISA is aware that some organizations have reported success in recovering files without paying ransoms. CISA compiled this tool based on publicly available resources, including a... --- ### How to Secure Sensitive Data in Microsoft 365 > Too many organizations putting their data in the Microsoft cloud may assume that controls for data security and privacy are present, enabled, and configured by default. In this article, we explain the main ways to secure sensitive data within Microsoft 365. - Published: 2023-02-08 - Modified: 2024-10-15 - URL: https://petri.com/secure-data-microsoft-365/ - Categories: Cloud Computing, Microsoft 365, Security - Tags: Data Loss Prevention, Microsoft 365, Microsoft Purview, Microsoft Purview. Data Protection, Multi-Factor Authentication, sensitivity labels, Zero Trust - Article Type: How To We’ve come a long way since those days and have seen technology evolve to support data stored in business cloud platforms such as Microsoft 365. In recent years, the digital revolution has made data more portable and more accessible, but crucially it has also made that data more vulnerable in many ways.  Fortunately, if your organization use the Microsoft cloud, you have several ways to secure sensitive data with Microsoft 365. Still, many organizations are still unaware of the risk posed when they store their data in the cloud, and they may assume that controls for data security and privacy are present, enabled, and configured by default. This is a dangerous assumption, and the lines can get quite blurred.  In this article, I'll explain why you should secure authenticated access to Microsoft 365 services by following the principles of Zero Trust security. Why you should secure your data in Microsoft 365 Data is the lifeblood of any organization – I’m sure this is a phrase you will have heard, and it is absolutely accurate in my opinion.   Businesses have always relied on data, which is collected, analyzed, processed, stored, and eventually disposed of.     When I started my first job at a law firm in the late 1980s, the technology that we use today was not available. Yet data still flowed through the organization in the form of memos, internal envelopes, while you were out messages, printed time sheets, and storage boxes full of client files. If such physical data assets were... --- ### Microsoft is Ready to Take on Google With AI-Powered Bing > Microsoft launched yesterday a new version of its Bing search engine that leverages a next-generation OpenAI model. Microsoft Edge is also getting new Chat and Compose capabilities powered by OpenAI. - Published: 2023-02-08 - Modified: 2023-02-08 - URL: https://petri.com/microsoft-ai-powered-bing/ - Categories: Microsoft, Microsoft Edge - Tags: Microsoft Bing, Microsoft Edge, OpenAI - Article Type: News Microsoft held a media event yesterday to announce a new version of its Bing search engine that leverages a next-generation OpenAI model. The new AI-powered Bing is launching as a limited preview, and Microsoft believes that it will redefine what we should expect from search engines.   “There are 10 billion search queries a day, but we estimate half of them go unanswered. That’s because people are using search to do things it wasn’t originally designed to do,” emphasized Yusuf Mehdi, CVP and Consumer Chief Marketing Officer at Microsoft. Since its launch back in November, OpenAI’s ChatGPT has become one of the fastest-growing apps of all time and recently crossed 100 million users. Microsoft, which just announced a new multibillion-dollar investment in the company is planning to integrate OpenAI technologies into all of its consumer and enterprise products. This has already started with a new ChatGPT integration in Viva Sales.   Microsoft wants its new AI-powered Bing to be “your copilot for the web,” and what Microsoft introduced yesterday is indeed a massive upgrade for a search engine that has been playing catchup with Google since launch.   How the new AI-powered Bing works The new Bing still provides a familiar user experience, but the search box can now accept up to 1,000 characters. The new Bing also continues to provide a traditional list of search results, and Microsoft says that applying AI to its core search algorithm has led to “the largest jump in relevance in two decades. ” In addition to... --- ### Latest Skype Insider Update Brings Native Support for Apple Silicon Macs - Published: 2023-02-07 - Modified: 2023-02-07 - URL: https://petri.com/skype-update-native-apple-silicon-macs/ - Categories: Skype - Tags: News, skype - Article Type: News Microsoft has started testing a native Apple Silicon version of its Skype desktop app. The company says that the update is already available for Skype Insiders, and it should offer a significant performance boost to all users with Apple Silicon Macs. Microsoft explained that a native Skype client was one of the top requests from the Skype community. Microsoft claims this release should ensure seamless communication with friends and colleagues during audio and video calls on Mac devices. “Skype’s optimized performance for the Apple Silicon M1 chip is designed to provide an unparalleled experience, delivering maximum performance and reliability. With this native Apple M1 support, Skype delivers faster and more reliable call connections, so you can stay connected with the people who matter most to you,” the Skype team wrote in a blog post. In addition to this, Microsoft has addressed a couple of issues with this preview release. Specifically, the company resolved a bug that caused problems with opening and reading documents. Microsoft also addressed an issue that was blocking Skype notifications in Microsoft Edge. Furthermore, the latest Skype Insider build brings fixes for an issue that prevented user names from appearing in some chats on Windows, iOS, and Android. Microsoft addressed app crashing issues while navigating to the gallery and clicking web links on iOS devices. Microsoft Teams surpassed Skype as a more popular business communication tool In recent years, Microsoft Teams has surpassed Skype in popularity, particularly during the Covid-19 pandemic. Microsoft recently revealed a significant overhaul... --- ### FireCompass Raises $7 Million to Improve its CART and ASM Capabilities > FireCompass, a SaaS platform for Continuous Automated Red Teaming (CART) and External Attack Surface Management (EASM) is raising $7 million to expand to more international markets and hire more talent. - Published: 2023-02-07 - Modified: 2023-02-07 - URL: https://petri.com/firecompass-investment-round-cart-asm-capabilities/ - Categories: Security - Tags: cloud security, Security - Article Type: News FireCompass, a SaaS platform for Continuous Automated Red Teaming (CART) and External Attack Surface Management (EASM) announced today that it was raising $7 million to expand to more international markets and hire more talent. This Series A investment comes four years after the creation of the company headquartered in Boston, Massachusetts, but FireCompass also has offices in Bangalore, India.   If you're unfamiliar with that term, red teaming is the process of creating a group that will rigorously test a company's security systems to make proactive recommendations. FireCompass can automate this process and uses evolving reconnaissance techniques to identify a company's weakest security points. “With the funding, FireCompass plans to continue innovating on its platform and expand its team across engineering, research and sales,” the company said in a press release. It's already been used by several top Fortune Companies including T-Mobile, and it’s also been recognized by the Gartner Hype Cycle for Security Operations. How FireCompass aims to help companies mitigate risks faster Being a SaaS platform, FireCompass requires no hardware, software, or agents. And with its automated red teaming and attack surface discovery capabilities, the self-described “ethical hacking platform” can scan for security blind spots and help companies test their attack surface with multi-stage attacks.   FireCompass says that its main differentiator compared to other External Attack Surface Management platforms is that it conducts real attacks that don’t stop when a vulnerability point has been discovered. The company has developed proprietary attacker-centric playbooks that include network attacks, application attacks, and... --- ### Microsoft Purview Adds Adaptive Protection to Dynamically Mitigate Risks - Published: 2023-02-07 - Modified: 2023-02-07 - URL: https://petri.com/microsoft-purview-adaptive-protection-risks/ - Categories: Security - Tags: Microsoft Purview, News, Security - Article Type: News Microsoft yesterday announced the launch of Adaptive Protection support in Microsoft Purview. The new solution leverages machine learning to help organizations detect potential malicious activities and mitigate insider risks with data loss prevention (DLP) controls. Last year, Microsoft announced a new product rebranding to bring together its Azure Purview data governance service with Microsoft 365 compliance solutions. The new service enables customers to control and manage their data regardless of where it’s stored. It provides tools to let IT admins protect sensitive information and risks across apps, clouds, and endpoints. The new Adaptive Protection feature in Microsoft Purview enables companies to create policies to manage insider risks, including data leakage, IP theft, and other security breaches. It helps security teams to ensure that role-based access controls and audit logs are in place to maintain a balance between data protection and productivity. “With Adaptive Protection, DLP policies become dynamic, ensuring that the most effective policy—such as blocking data sharing—is applied only to high-risk users, while low-risk users can maintain their productivity. The result: your security operations team is now more efficient and empowered to do more with less,” Vasu Jakkal, Microsoft’s CVP of security, compliance, identity, and management. Key features included in Adaptive Protection Microsoft highlighted that Adaptive Protection uses content and activity data to quickly identify the most critical risks without affecting business processes. Moreover, IT Pros can use dynamic controls to enforce stronger security measures on high-risk users while maintaining work efficiency. The feature also provides automated mitigation capabilities... --- ### [Update] Microsoft Confirms Outlook.com is Currently Down for Some Users - Published: 2023-02-07 - Modified: 2023-02-07 - URL: https://petri.com/microsoft-outlook-outage-emails/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Office, News, Outlook - Article Type: News Microsoft has acknowledged a new issue with its Outlook. com webmail service. The company confirmed on its service health website that the problem is currently preventing many Outlook users from sending, receiving, and searching for emails. Microsoft explained that the issue started at around 6 AM UTC on Tuesday morning, and it was caused by a recent change in the infrastructure. However, the company has yet to share details about the change that caused this massive disruption. The data on Downdetector indicates that the Outlook outage is primarily affecting customers in North America and some other regions worldwide. Microsoft detailed on the service health page that users might encounter a 500 error while logging into their Outlook. com email inboxes. The issue also impacts some additional functionalities related to Outlook. com. For instance, the Calendar APIs used by Microsoft Teams and various other Microsoft 365 services. Microsoft Expedites Recovery Efforts for Outlook outage Microsoft indicates that it has taken necessary measures to restore the Outlook. com webmail service in affected regions. However, Microsoft’s engineers have not provided an estimated time for full restoration. "We're applying targeted mitigations to a subset of affected infrastructure and validating that it has mitigated impact. We're also making traffic optimization efforts to alleviate user impact and expedite recovery," the company explained. Last month, Microsoft also acknowledged a major outage that hit several Microsoft cloud services. These include Exchange Online, Outlook, Microsoft Teams, OneDrive for Business, SharePoint Online, Microsoft Graph, Microsoft Intune, Power BI, and M365 Admin Portal. Microsoft later... --- ### Microsoft Claims Windows 11 Update to Scan Older Office Versions Won't Access Private Data - Published: 2023-02-06 - Modified: 2023-02-06 - URL: https://petri.com/microsoft-windows-11-update-scan-older-office-versions/ - Categories: Windows 11 - Tags: Microsoft Office, News, Windows 11 - Article Type: News Last month, Microsoft quietly released a new update to determine the number of users running older versions of Office on their Windows 11 devices. The company has recently explained that the update respects user privacy while collecting data about Office installations that are either no longer supported or approaching the end of support on Windows PCs. In mid-January, Microsoft rolled out the KB5021751 update to users running Windows 11 version 22H2 in the Windows Release Preview Channel. The company has recently released the update to all customers via an optional Windows update. Microsoft noted that the update is targeting Windows 11 users who have Office 2007, 2010, or 2013 installed. Microsoft has updated its support document to clarify that the KB5021751 update should only run once, and it won’t leave any files on the Windows 11 machine. Moreover, the company claims that it doesn’t access any private information regarding users, licenses, and third-party products. Microsoft emphasized that update only intends to ensure that the Windows device is not infected by any malware. “This update gathers diagnostic and performance data to estimate the usage of installed Office versions to determine how best to support and service these systems. This data is gathered from registry entries and APIs. The update does not gather licensing details, customer content, or data about non-Microsoft products. Microsoft values, protects, and defends privacy,” Microsoft explained. Source: Windows 11 forums Microsoft Advises Windows 11 Users to Install KB5021751 Update Microsoft explained that users will not need to reboot... --- ### Atlassian Releases Patches for Critical Authentication Vulnerability in Jira Software - Published: 2023-02-06 - Modified: 2023-02-06 - URL: https://petri.com/atlassian-critical-vulnerability-jira-software/ - Categories: Security - Tags: Atlassian, Jira, News - Article Type: News Atlassian has released fixes to patch a new critical vulnerability in Jira Service Management Server and Data Center. The security flaw could enable threat actors to impersonate Jira users and gain unauthorized access to affected instances. The security vulnerability is tracked as CVE-2023-22501, and it has a critical severity score(CVSS score) of 9. 4. The company has acknowledged that the flaw impacts Jira versions 5. 3. 0, 5. 3. 1, 5. 3. 2, 5. 4. 0, 5. 4. 1, and 5. 5. 0. “This advisory discloses a critical severity security vulnerability which was introduced in version 5. 3. 0 of Jira Service Management Server and Data Center,” Atlassian explained. “With write access to a User Directory and outgoing email enabled on a Jira Service Management instance, an attacker could gain access to signup tokens sent to users with accounts that have never been logged into. ” According to Atlassian, the attackers could get access to tokens if they’re included in Jira issues or requests. It’s also possible that the hacker gains unauthorized access to sensitive emails with “View Request” links. Atlassian emphasized that these attacks particularly target bot accounts created to work with Jira Service Management. The vulnerability might also affect external customer accounts in instances with single sign-on. However, it doesn’t impact Jira sites accessed via an atlassian. net domain (Atlassian Cloud instances). Atlassian urges customers to update their Jira installations Atlassian has released security updates to address the authentication vulnerability in versions 5. 3. 3, 5. 4. 2, 5. 5. 1, and 5. 6. 0 of Jira Service Management Server and Data Center. The company has recommended customers to install the latest update... --- ### How To Find Windows 10 Stop Codes and Fix Errors Quickly > In this guide, we explain how to find Windows 10 stop codes retroactively. This will help you to find the reasons behind Windows 10 crashes and guide you to solidify your Windows reliability across your enterprise. - Published: 2023-02-06 - Modified: 2024-07-04 - URL: https://petri.com/windows-stop-codes/ - Categories: Windows 10, Windows Client OS - Tags: Error Handling, Most Popular, stop codes, Windows 10, Windows 11 - Article Type: How To Windows 10 doesn't reliably give you easy access to stop codes when it crashes. Plus, these codes may flash on your screen for just half a second! In this guide, we’ll show you how to find Windows 10 stop codes, find the reasons behind Windows 10 crashes, and guide you to solidify your Windows reliability across your enterprise. What is a Windows stop code? Windows stop codes or crashes can be a major pain for PC users. As an IT Pro, we usually focus 2% of our resources on the error code and how to resolve it going forward and 98% on getting back to getting our job done! However, it would behoove us all to learn a bit more about what they are and develop an understanding of how to avoid them altogether in our Windows environments. Windows stop codes, or bug checks, are arbitrary unique numbers that identify what's called a 'stop' error. Yes, we're talking about the "Blue Screen of Death" (or Green Screen of Death if you happen to be running a Windows Insider build in your testing), which is also sometimes referred to as a blue screen error. Why are you getting a Windows stop code? When Windows gets to a point where it either can't continue or shouldn't continue, it will halt the system (this terminology was used decades ago). When that occurs, Windows will cease all activity and write a small debug dump file to the Event Viewer documenting what went wrong... . --- ### Microsoft Teams Adds Native Elgato Stream Deck Integration for Managing Meetings and Webinars - Published: 2023-02-03 - Modified: 2023-02-03 - URL: https://petri.com/microsoft-teams-meetings-elgato-streamdeck/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced a new Elgato Stream Deck integration with Microsoft Teams. Indeed, the company has released a new Teams plugin that enables users to manage their meetings with the streaming tool. The Elgato Stream Deck is a customizable control pad that is quite popular for Twitch live-streaming sessions. Microsoft explained that the Elgato Stream Deck Teams plugin allows participants to toggle their camera and microphone on and off with the touch of a button. Moreover, it lets users blur their messy backgrounds, raise/lower virtual hands, start/stop recordings and leave Teams meetings. Additionally, the Elgato Stream Deck plugin for Microsoft Teams allows attendees to post live emoji reactions, including laugh, like, wow, and applause. This capability could be particularly useful for quickly approving or disapproving an idea during meetings and webinars. How to setup Microsoft Teams on Elgato Stream Deck To install the Microsoft Teams plugin on the Elgato Stream Deck, you’ll need to follow the steps mentioned below: First of all, download the Teams plugin from Elgato’s app store. Launch the Microsoft Teams desktop app, navigate to Settings >> Privacy, and select Manage API. Click the Enable API toggle button to generate the API token. Now, copy and paste the API token into the Stream Deck software to connect it to Microsoft Teams. Finally, join any meeting to use the new Teams meeting controls on the Elgato Stream Deck. https://www. youtube. com/watch? v=K1a8OSxSacU It’s important to note that native support for the Elgato Stream Deck is only available for 1:1 calls and... --- ### Microsoft Releases New Update to Improve Universal Print Reports - Published: 2023-02-03 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-update-improve-universal-print-reports/ - Categories: Microsoft 365 - Tags: News, Universal Print - Article Type: News Microsoft has announced the release of a new update that brings improvements to reports in its Universal Print service. The company has made it easier for IT administrators to monitor print activity in their organization by updating the Usage and Reports page with new graphs, charts, and data points. Microsoft launched the Universal Print service at its Ignite 2021 conference. It’s a cloud-based solution that eliminates the need for IT admins to manually set up print servers and manage print drivers in their tenants. Universal Print enables IT admins to control access to specific printers, manage default settings, and view printer properties. The service supports printer models from popular vendors such as HP, Epson, Toshiba, Brother, Canon, and Xerox. With this release, IT admins can track the total number of registered active printers, printer shares, and connectors in Universal Print reports. There are also new line charts representing the total number of daily print jobs completed successfully and pages printed during a specific timeframe. “Organizations need immediate reporting that keeps usage, cost, and infrastructure health front and center when managing print deployments as Universal Print deployments grow. Fortunately, the Usage and Reports dashboard now has five new data points, graphs, and charts with the option to view data from the previous day, week, or month,” the company explained. Universal Print usage chats visualize Color vs. Black and White printed pages and more Microsoft has added a new donut chart to give an overview of the total number of black and... --- ### Everything You Should Know About AWS EC2 Instances Types - Published: 2023-02-03 - Modified: 2023-02-03 - URL: https://petri.com/aws-ec2-instances-types-pricing/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, AWS EC2 - Article Type: Overview Amazon Elastic Compute Cloud (Amazon EC2) is a service that provides scalable cloud capacity in the Amazon Web Services (AWS) cloud. With Amazon EC2, organizations can choose between a wide variety of instances that are optimized for different cloud computing use cases. In this tutorial, we’ll explain everything you need to know about the different EC2 instance types and their pricing model. What is an AWS EC2 instance? With AWS EC2, you can choose between different instance types and scale up and down the resources (CPU, memory, storage, networking capacity, etc. ) you need to run your applications in the cloud. With AWS EC2, you’ll just need to pay for the time you use your instances. AWS EC2 instances are secure as you’ll connect to them using SSH keys. You can create or launch your instance using the AWS Command Line Interface or the AWS Management Console. Moreover, you can view all your EC2 instances in the AWS Management Console. You can manage your EC2 instances from the AWS Management Console (Image credit: Petri. com/Sagar) Why use AWS EC2 instances? For organizations, using AWS EC2 instances for their various cloud computing needs offers various advantages. Here are the main benefits you should know about: You can launch instances quickly without having to deal with complex hardware configuration and setup. You can securely log in to your instance using AWS key pairs. You can align persistent volume for your data using Amazon Elastic Block Store (EBS). You can easily scale the size... --- ### AWS CTO Takes on ChatGPT Over Cybersecurity > In spite of its surging popularity, not everyone is a fan of OpenAI's ChatGPT chatbot. This week, AWS CTO Werner Vogels took to Twitter to criticize ChatGPT regarding its answer to one of his questions regarding cloud cybersecurity. - Published: 2023-02-03 - Modified: 2023-02-03 - URL: https://petri.com/aws-cto-criticizes-chatgpt-over-cybersecurity/ - Categories: Amazon Web Services, Cloud Computing - Tags: AI, AWS, ChatGPT - Article Type: News ChatGPT has rapidly ushered AI into mainstream technology in a big way. Launched in November of 2022, ChatGPT has already garnered millions of users with its natural language AI-based responses to a huge variety of queries that range from writing term papers, articles, and software to answering emails, creating song lyrics, and even debugging many types of programming code. In case you were wondering, ChatGPT stands for Chat Generative Pre-Trained Transformer. It is a chatbot launched by OpenAI and it's built on top of OpenAI's GPT-3 family of large language models. Microsoft is one of the main backers of OpenAI. Satya Nadella, Chairman and CEO of Microsoft has stated that “We formed our partnership with OpenAI around a shared ambition to responsibly advance cutting-edge AI research and democratize AI as a new technology platform. ” He continued, “In this next phase of our partnership, developers and organizations across industries will have access to the best AI infrastructure, models, and toolchain with Azure to build and run their applications. ” Sam Altman, CEO of OpenAI added that “The past three years of our partnership have been great.   Microsoft shares our values and we are excited to continue our independent research and work toward creating advanced AI that benefits everyone. ” ChatGPT was indeed trained on the Microsoft Azure supercomputing platform. ChatGPT gained quite a bit of notoriety by generating passing grades on law exams at the University of Minnesota. However, ChatGPT is not a search engine like Google or Bing: Search engines index the... --- ### Microsoft to Let IT Admins Customize the Search Experience on the Windows 11 Taskbar - Published: 2023-02-03 - Modified: 2023-02-03 - URL: https://petri.com/microsoft-customize-search-box-windows-11-taskbar/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is adding a new policy that enables IT admins to customize the Windows Search experience on the Windows 11 taskbar. The company announced yesterday that the feature is already available in the latest Windows 11 preview builds for Insiders in the Beta and Dev channels. Microsoft recently started testing improvements to the search experience on the taskbar to help users find documents, apps, settings, and important information. “After shipping Windows 11 with a search icon on the taskbar, we received feedback that some didn't find it discoverable or engaging enough. Based on this feedback, we are adding the ability for users to search directly from the taskbar,” Microsoft explained. With the new policy, IT Pros can hide the taskbar's search icon by default on Windows 11 PCs. Moreover, administrators can also hide the search icon with or without an accompanying label. Microsoft says that it’s also possible to only show a search box similar to the one found on the taskbar in Windows 10. How to customize the search experience on the Windows 11 taskbar Microsoft notes that Windows admins can configure the new search experience on the taskbar through Configuration Service Provider (CSP) or Group Policy. Notably, the feature will respect the default settings on Windows 11 devices in tenants where IT admins have either not configured or turned off the policy. Meanwhile, Windows 11 users will be able to change the search experience in taskbar settings. To do this, head over to the Settings app and click... --- ### Viva Sales Gets New GPT-3.5 Integration to Write Emails for Sales Teams - Published: 2023-02-02 - Modified: 2023-02-02 - URL: https://petri.com/viva-sales-gpt-integration-write-emails/ - Categories: Viva - Tags: News, Viva Sales - Article Type: News Microsoft has introduced new generative AI-based capabilities to improve the customer service experience in Viva Sales. Powered by OpenAI’s GPT 3. 5, the new AI tool will automatically generate preformatted email responses with personalized text, promotion offers, pricing details, and deadlines. Microsoft’s new research indicates that an average seller spends more than 66 percent of their time managing emails. The new GPT seller experience in Viva Sales is designed to help sellers save time and effort. It should make it easier to concentrate on the most important tasks and boost productivity. According to Microsoft, the email responses will be generated based on Microsoft Graph and customer relationship management (CRM) data such as Dynamics 365 and Salesforce. Viva Sales users can generate suggested replies with personalized text prompts or a predefined list of response categories. The sales teams can modify the suggested reply to fit their specific requirements. “Viva Sales will now generate suggested email content for a variety of scenarios—such as replying to an inquiry or creating a proposal—complete with data specifically relevant to the recipient, such as pricing, promotions, and deadlines. By auto-suggesting customizable content, sellers can spend less time composing emails and searching for sales data from colleagues and databases,” explained Lori Lamkin, the CVP for Dynamics 365 Customer Experience Platform. Auto-generated responses in Viva Sales Viva Sales to add more AI-powered features later this year Microsoft emphasized that the auto-generated email content in Viva Sales should be a welcome addition for companies looking to drive customer engagement. Later... --- ### What’s New in Windows – January 2023 - Published: 2023-02-02 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-in-windows-january-2023/ - Categories: Windows 11 - Tags: Microsoft Edge, News, Notepad, Windows 10, Windows 11 - Article Type: News Windows has had a slow start to 2023. But nevertheless, there are some interesting pieces of news to share, including a 39 percent drop in Windows revenue from PC makers in FY2023 Q2, tabs coming to Notepad, an updated design for File Explorer, and more. So, let’s get started. Windows revenue plummets 39 percent in FY2023 Q2 There was a 39% drop in revenue for Windows and Windows-related services from PC makers in Q2 of financial year 2023. During the pandemic, the move to remote working required organizations to hurriedly adapt to the new circumstances. In the rush to find solutions that worked on scale for remote access, organizations purchased new hardware for workers that were previously exclusively office based. And post pandemic, as we head back to some kind of normality, the demand for PC hardware has declined sharply. So, the drop in revenue is an adjustment back to pre-pandemic levels and it shouldn’t be a cause for alarm. Windows hasn’t been an important business for Microsoft for years. Windows 11 22H2 rolling out automatically to non-managed devices Non-managed Windows 11 users, i. e. those devices not part of an enterprise environment, on the original release from fall 2021 will see devices upgraded to version 22H2. The original release of Windows 11 reaches end of support October 10, 2023. Microsoft no longer selling Windows 10 downloads Microsoft updated its Windows 10 product page to state that it will no longer sell downloads of Windows 10. Retailers will continue to... --- ### Microsoft Introduces Fully-Managed Azure Load Testing Service for Developers - Published: 2023-02-02 - Modified: 2023-02-02 - URL: https://petri.com/microsoft-introduces-azure-load-testing/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Microsoft announced yesterday the general availability of its Azure Load Testing service. The new fully managed service is designed to help developers and quality assurance (QA) teams optimize the performance and scalability of their apps and services. Load testing is a technique that enables developers to test the performance of their applications under real-life conditions. It lets them put high demand on any network, database, and application to evaluate a system's ability to handle a large number of simultaneous users. Load testing is necessary for situations when any code changes occur that might impact the performance of the application. Microsoft’s new Azure Load Testing service helps developers to test the resilience of their apps and services to cope with unexpected increases in customer traffic. It lets customers automate regression testing by running load tests in GitHub Actions and Azure Pipelines. Then, they can analyze test results across various load tests to understand behavior changes. “Our goal at Microsoft is to help developers do more with less effort. When performance, scalability, or resiliency issues are identified in production or even close to production they can be extremely difficult and costly to resolve. With Azure Load Testing developers can catch issues closer to code authoring time as part of their developer workflows saving them valuable time and energy,” explained Mandy Whaley, Partner Director of Product for Azure Dev Tools. Azure Load Testing provides performance insights with client and service side metrics Microsoft Azure Load Testing also provides integrations with related products such... --- ### Microsoft Teams Premium Launches with New OpenAI's GPT Powered Features to Boost Productivity - Published: 2023-02-02 - Modified: 2023-02-03 - URL: https://petri.com/microsoft-teams-premium-subscription/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced that Teams Premium is now generally available for enterprise customers. The new add-on subscription, powered by OpenAI’s GPT-3. 5 technology, brings advanced webinar capabilities to improve the collaboration and meeting experience in Microsoft Teams. Microsoft unveiled Teams Premium with a host of other new features at its Ignite 2022 conference in October last year. The new add-on SKU rolled out in public preview as a free 30-day trial in December. Microsoft Teams premium includes new AI-powered features such as meeting guides, recommended tasks, intelligent search, and Live translated captions in over 40 spoken languages. It also provides support for custom meeting branding with together mode scenes and organizational backgrounds. “Built on the familiar, all-in-one collaborative experience of Microsoft Teams, Teams Premium brings the latest technologies, including Large Language Models powered by OpenAI’s GPT-3. 5, to make meetings more intelligent, personalized, and protected—whether it’s one-on-one, large meetings, virtual appointments, or webinars,” said Nicole Herskowitz, VP for Microsoft Teams. Microsoft highlights that its Teams Premium offering brings new advanced Virtual appointment capabilities to help organizations schedule, manage, and track appointments with their clients. It also supports custom waiting rooms, SMS reminders, and analytics for virtual appointments. Additionally, Microsoft’s Teams Premium add-on provides access to advanced webinar capabilities for businesses. These include support for manual registration waitlist and manual approvals, customizable start and end times, and dedicated virtual greenrooms for speakers and presenters. It’s also possible for meeting organizers to send automated reminder emails to participants ahead of a live event or... --- ### What is Microsoft Sentinel and How Does It Protect Cloud and On-Premises Resources?  > Microsoft Sentinel, which was previously known as Azure Sentinel, is a Security Information and Event Management (SIEM) solution for Azure and Microsoft 365. In this article, we explain how Microsoft Sentinel works and how it can help organizations to protect their cloud and on-premises resources. - Published: 2023-02-02 - Modified: 2023-09-13 - URL: https://petri.com/what-is-microsoft-sentinel/ - Categories: Azure, Security - Tags: Azure Sentinel, Microsoft Sentinel, Sentinel - Article Type: Overview Microsoft Sentinel, which was previously known as Azure Sentinel, is a Security Information and Event Management (SIEM) solution for Azure and Microsoft 365. Just like other SIEM solutions, it combines Security Information Management (SIM) and Security Event Management (SEM). In this article, we're going to explain how Microsoft Sentinel works and how this solution can help organizations to protect their cloud and on-premises resources. What is Microsoft Sentinel? There are several great SIEM solutions available on the market, but Microsoft Sentinel is one that stands out when we talk about cloud computing. Microsoft Sentinel was originally launched as Azure Sentinel back in 2019, and at the time the focus was clearly on Azure services. However, as Microsoft started building a multi-cloud strategy and introduced connectors to other cloud vendors, the platform was rebranded to Microsoft Sentinel.   As of today, Microsoft Sentinel allows organizations to collect event logs from different systems and analyze them to identify evolving threats. Microsoft Sentinel also leverages behavioral analytics and machine learning to improve the detection of evolving threats. What are the main features of Microsoft Sentinel? There are six requirements SIEM solutions must satisfy:  Data aggregation  Dashboards  Alerts  Correlation  Retention  Forensics analysis  Let’s take a closer look at these requirements for SIEM solutions and see how Microsoft Sentinel implements them.   Data aggregation  Data aggregation is the process of collecting data from multiple sources at a time. Almost 100 data connectors are available with Microsoft Sentinel, allowing organizations to easily ingest data from almost anywhere.   ... --- ### Microsoft Relaunches Uncovering Hidden Risks Podcast - Published: 2023-02-02 - Modified: 2023-02-02 - URL: https://petri.com/microsoft-relaunches-uncovering-hidden-risks-podcast/ - Categories: Information Security - Tags: data governance, Data Security, Microsoft 365, Microsoft Purview. Data Protection, NoAD, NoAds, Security - Article Type: News Uncovering Hidden Risks is a new monthly podcast from the Microsoft Security team that looks at taking the data security conversation beyond compliance and classifications. How do you protect data but still make sure people are productive? Host Erica Toelle talks to Microsoft and industry experts about reducing the risk of data breaches by taking a holistic approach to data governance and protection. As organizations face increased cybersecurity risk due to employees working remotely, internal and external threats, and increasingly sophisticated malware, Erica and guests explore the end-to-end data protection story across organizations. People, places, processes, and products all need to be part of the conversation. Uncovering Hidden Risks podcast While IT organizations might have tools like Microsoft Purview and others, understanding how to use them for effectively reducing risk can be challenging. And the complexity of the task at hand can be overwhelming. Issues like: unprotected and ungoverned data insiders saying or doing things that they shouldn’t changing compliance regulations ... require IT to develop an effective strategy for data protection and governance with the limited financial and human resources at their disposal. Transitioning to a holistic approach to data protection In the first episode, Talhah Mir - Principal PM at Microsoft for Insider Risk, who was involved in the first incarnation of Uncovering Hidden Risks, joins Erica in a conversation with Bret Arsenault, CVP, CISO at Microsoft. Bret Arsenault Bret outlines three steps that IT should take in developing a holistic approach to securing data: Use tooling to understand... --- ### Microsoft Warns About New Consent-Phishing Attacks Used to Steal Data - Published: 2023-02-01 - Modified: 2023-02-01 - URL: https://petri.com/microsoft-consent-phishing-attack/ - Categories: Security - Tags: Microsoft 365, News, Security - Article Type: News Security researchers have discovered a phishing campaign that tricked users into authorizing permissions for malicious OAuth applications. Microsoft has disabled several fraudulent Microsoft Partner Network (MPN) accounts that breached organizations' cloud environments. Microsoft explained in a security advisory that the security firm Proofpoint discovered the campaign in early December. The threat actors initially impersonated legitimate organizations while joining Microsoft's Cloud Partner Program (MCPP). Once enrolled, Microsoft abused the fake partner accounts to add a verified publisher to the OAuth registrations created in Azure Active Directory (Azure AD). According to Microsoft, these phishing attacks tricked target victims to grant permissions to third-party malicious applications, such as file access and email reading permissions. These permissions could enable hackers to access emails, contacts, files, mailbox settings, and other sensitive information. "The potential impact to organizations includes compromised user accounts, data exfiltration, brand abuse of impersonated organizations, business email compromise (BEC) fraud, and mailbox abuse," the Proofpoint researchers explained. "The attack was less likely to be detected than traditional targeted phishing or brute force attacks. Organizations typically have weaker defense-in-depth controls against threat actors using verified OAuth apps. " App info details for a malicious app Microsoft acknowledged that the consent phishing campaign targeted select enterprise customers based in Ireland and the UK. In reaction, the company disabled the malicious applications and notified affected organizations. Microsoft takes actions to block consent phishing attacks Moreover, Microsoft has also taken several steps to reduce the risk of similar consent phishing attacks in the future. Microsoft also noted... --- ### What You Need to Know About Microsoft's Power Platform Updates in January 2023 > In January, Microsoft announced an update for the Power Automate embed pay-as-you-go program, a new Shared Device Mode feature for Power Apps on Android, and a new virtual tables wizard to easily integrate external data from SharePoint and SQL into Dataverse. - Published: 2023-02-01 - Modified: 2023-02-01 - URL: https://petri.com/power-platform-january-2023-updates/ - Categories: Power Apps, Power Platform - Tags: ChatGPT, OpenAI, power apps, Power Automate, Power Platform - Article Type: News There have been some exciting new developments within the Power Apps and Power Automate spaces in January. We've had an interesting spin on pay-as-you-go licensing, a new Shared Device Mode for frontline workers, a cool new way to work with SharePoint data in Dataverse, plus that big AI revolution that everyone is talking about. Overall, January has kicked 2023 off in high-tech style! DocuSign takes an interesting approach Independent software vendors (ISVs) such as DocuSign now have the ability to make their Premium Power Automate connectors available to their customers in such a way that the customer doesn’t need a Premium Power Automate license to make use of the connector. Instead, the ISV covers the cost of the premium usage. This program is part of the ISV Cloud Embed Program, and the Power Automate option is now in public preview. This is a great evolution of the pay-as-you-go model, and it means savings for customers and fewer hurdles for ISVs to get their Premium connectors into makers’ hands. Shared Device Mode makes frontline workers’ lives a little easier Earlier this month Microsoft also announced that a new Shared Device Mode feature for Power Apps on Android was launching in public preview. This mode enables a frontline worker using a shared Android device (like a kiosk or a shared handheld device) to quickly and easily log out of key Microsoft 365 apps such as Power Apps, Outlook, Teams, Edge, and Yammer. Shared Device Mode should put an end to what has... --- ### Microsoft Stops Selling Windows 10 Digital Downloads - Published: 2023-02-01 - Modified: 2023-02-01 - URL: https://petri.com/microsoft-stops-selling-windows-10-downloads/ - Categories: Windows 10 - Tags: News, Windows 10, Windows 11 Microsoft has officially stopped selling downloadable licenses for Windows 10 Home and Professional editions on its website. Indeed, the company has discontinued sales of the Windows 10 product keys and is redirecting customers to Windows 11 product pages instead. Last week, Microsoft quietly updated its Windows 10 product pages with an alarming message that January 31 would be the final cut-off date for sales. The company will continue to release new security updates for the OS until it reaches end of servicing deadline. However, customers will only be able to get new physical and digital copies of Windows 10 through other retailers (like Best Buy, Amazon, or Newegg) until their digital stock remains available. Microsoft mentioned on its official Windows 11 retail page that “Windows 11 delivers continuous innovations that make the everyday easier and help keep your PC running securely and efficiently. ” Moreover, the company has detailed minimum system requirements, FAQs, and a step-by-step guide for upgrading to Windows 11. The product page also provides a list of official vendors to help customers purchase a Windows 11-compatible device. Windows 11 product page Microsoft will continue supporting Windows 10 with yearly feature updates until 2025 It’s worth mentioning that Microsoft will still allow customers to download free Windows 10 ISO files on its support website. This change will only affect the sales of official product keys and is likely to be disappointing for those building new Windows 10 machines. Microsoft intends to release feature updates for Windows 10 until October... --- ### Microsoft Teams Rooms on Windows to Get a Visual Refresh, New Features for IT Admins - Published: 2023-01-31 - Modified: 2023-01-31 - URL: https://petri.com/microsoft-teams-rooms-windows-visual-refresh/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced a new design for Microsoft Teams Rooms on Windows. The company announced yesterday that the upcoming update (version 4. 16) should bring a new look and feel to align with the user interface of Teams Rooms on Android devices. “Users will first notice the vivid new ambient screens and a refreshed calendar on consoles and front-of-room displays. They will also enjoy improved visual cues throughout the experience that make it easier and more intuitive to interact with the console. On the calendar, users will be able to scroll down on the calendar to see the schedule for the entire day,” Microsoft explained. Console and calendar Additionally, Microsoft is set to introduce updated buttons on the Windows console that should provide quick access to some popular features. Users will be able to make a call, start a new meeting, and share local HDMI content. Moreover, this release will allow participants to join a Teams video call via meeting ID. The company plans to add support for Direct Guest Join interoperability in late 2023. Microsoft Teams Rooms on Windows to add new customization features Microsoft Teams Rooms on Windows version 4. 16 will include five new themes and an updated view switcher menu. The company will also enable users to customize the Front Row view in Teams Rooms on Windows. For instance, participants will be able to customize their view by showing the meeting chat and the list of raised hands on the right and left panels. For IT admins, the... --- ### Microsoft Launches Office 365 Government Secret Cloud to Handle Classified Data - Published: 2023-01-31 - Modified: 2023-01-31 - URL: https://petri.com/microsoft-office-365-government-secret-cloud/ - Categories: Cloud Computing, Microsoft 365 - Tags: cloud computing, News, Office 365 - Article Type: News Microsoft has announced the general availability of its Office 365 Government Secret service. The new cloud SKU supports Impact Level 6 (IL6) and helps to meet the security and compliance requirements of the US government agencies and partners that manage classified data. Microsoft first unveiled Office 365 Government Secret back in March 2022. At that time, the new offering was under the US government accreditation reviews, and the company planned to release it in the second half of 2022. Office 365 Government Secret joins the existing family of Azure clouds available to government customers, including Azure Government Secret and Top Secret clouds. Microsoft touts that the new SKU delivers the security capabilities required for highly-sensitive operations. It offers a secure infrastructure to support the data processing needs of the Department of Defense (DoD), US Federal Civilian, Intelligence Community (IC), and US government partners. Office 365 Government Secret an Impact Level 6 (IL6) environment Microsoft’s new Office 365 Government Secret provides access to its secret productivity software-as-a-service apps, such as Outlook, Exchange, and Microsoft 365 apps. Moreover, it helps government customers to meet the Level 6 (IL 6) criteria. The top classification level ensures that mission-critical workload is kept separate from non-DoD tenants. “Coupled with the availability of Azure Government Secret and Top Secret, national security mission leaders can use the full cloud experience to not only establish an infrastructure platform to collect, process, and operationalize data, but to enable cloud-based collaboration and communication in the classified environment,” said Paul Lorimer,... --- ### Microsoft Defender for Endpoint Adds Device Isolation Support for Linux Machines - Published: 2023-01-31 - Modified: 2023-01-31 - URL: https://petri.com/microsoft-defender-endpoint-device-isolation-linux/ - Categories: Security - Tags: Microsoft Defender for Endpoint, News, Security - Article Type: News Microsoft Defender for Endpoint has introduced device isolation support in public preview on onboarded Linux machines. The security feature enables IT admins to isolate Linux machines manually via the Microsoft 365 Defender portal or API requests. According to Microsoft, the threat actors will no longer be able to remotely connect with the isolated Linux devices. This action should help to block hackers from getting unauthorized access and stealing sensitive data from compromised Linux systems. “Some attack scenarios may require you to isolate a device from the network. This action can help prevent the attacker from controlling the compromised device and performing further activities such as data exfiltration and lateral movement. Just like in Windows devices, this device isolation feature disconnects the compromised device from the network while retaining connectivity to the Defender for Endpoint service, while continuing to monitor the device,” Microsoft explained. Microsoft notes that administrators can isolate a Linux device manually by heading to the Microsoft 365 Defender portal. Then, navigate to the device page of the Linux device and click “Isolate Device. ” Alternatively, IT Pros can use the APIs to isolate a Linux device from accessing the external network. Microsoft Defender for Endpoint offers device isolation for all Linux-supported distros Once the device is isolated, IT Pros can mitigate the threat and click the "Release from isolation" button to reconnect the device to the network. Microsoft has also detailed steps to revert the isolation of the Linux device through the “unisolate” HTTP API request. Microsoft Defender for... --- ### Chance To Win $250 in Petri 2023 Audience Survey - Published: 2023-01-31 - Modified: 2023-01-31 - URL: https://petri.com/petri-2023-audience-survey/ - Categories: Announcements - Tags: Audience Survey, NoAD - Article Type: News At Petri, we are committed to delivering quality content and an engaging experience for our readers. To do that, we commission an audience survey every year to help us understand what is important to our audience. The Petri 2023 Audience Survey is your chance to help shape the future of Petri and let us know what are your pain points, which technologies you are looking to deploy and learn, and how you deploy Microsoft and other solutions in your organization. Win a $250 Amazon gift card (or equivalent) The answers you provide will help us determine the areas in which we should develop content in 2023. And as a thank you, when you submit a completed survey, you have the option to be entered into a prize draw where you could win a $250 Amazon gift card or equivalent depending on where you live. So, if you have a few minutes to spare and would like to be entered into the drawing, then we’d appreciate your time in completing this year’s audience survey! Editorial Director of Petri. com,Russell Smith. --- ### Microsoft 365 Outage Caused by WAN Router IP Address Change, Says Microsoft - Published: 2023-01-30 - Modified: 2023-01-30 - URL: https://petri.com/microsoft-365-outage-wan-router-ip-change/ - Categories: Microsoft 365 - Tags: Azure, Exchange Online, Microsoft 365, News - Article Type: News Last week, Microsoft confirmed a multi-hour outage that prevented users from accessing Azure, Microsoft Teams, and other Microsoft 365 services. The company has since published a preliminary post-incident report to update customers about the root cause of the issue. Microsoft explained that the disruption was caused by a router IP address change during a planned maintenance update on January 25. It had broken connections between client devices and Azure. The problem impacted Exchange Online, Teams, Outlook, OneDrive for Business, SharePoint Online, Microsoft Intune, PowerBi, Microsoft Graph, M365 Admin Portal, Microsoft Defender for Identity, and Microsoft Defender for Cloud Apps. "As part of a planned change to update the IP address on a WAN router, a command given to the router caused it to send messages to all other routers in the WAN, which resulted in all of them recomputing their adjacency and forwarding tables. During this re-computation process, the routers were unable to correctly forward packets traversing them,” Microsoft wrote on the Azure status history page. Microsoft takes a proactive approach to prevent global Microsoft 365 outages Microsoft’s engineers reviewed the recent changes and identified the problematic command that caused the domain name service (DNS) and WAN issues. The company later rolled back the network change to mitigate the issue across all Microsoft 365 tenants worldwide. Microsoft's services were fully back online around 12:43 UTC on 25 January after a downtime of more than four hours. The company confirmed that the global outage also affected Azure Government cloud services. Microsoft... --- ### Microsoft Releases Optional Update to Fix Remote Desktop Bug in Windows 11 - Published: 2023-01-30 - Modified: 2023-01-30 - URL: https://petri.com/microsoft-fix-remote-desktop-bug-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has released a new optional patch to fix a bug that caused the Remote Desktop application to crash on Windows 11. The company was previously affecting users running Windows 11 version 22H2 (also known as the Windows 11 2022 Update) on their systems. According to Microsoft, several users reported that the Remote Desktop app stops responding while establishing a connection via a Remote Desktop gateway or Remote Desktop Connection Broker. Microsoft says that the problem affects enterprise customers and it shouldn’t impact most home users. “This issue can be observed when the client is at the "Loading virtual machine" or "Configuring remote connection" steps, and might occur regardless of the OS version installed on the remote computer. In some cases, the error message "Your Remote Desktop Services session has ended" can appear. If the application becomes unresponsive, it might need to be terminated using Windows Task Manager,” the company explained on the Windows Health Dashboard. Last week, Microsoft rolled out the KB5022360 preview cumulative update to address the Remote Desktop freezing problem on Windows 11 PCs. This release should also fix a bug with select languages that use multibyte character sets, including Chinese, Korean, and Japanese. Latest update fixes issues with Windows Server 2022 domain controllers Microsoft mentioned in the release notes that the latest update addresses a bug that caused Windows Server 2022 domain controllers (DCs) to stop working when processing Lightweight Director Access Protocol (LDAP) requests. This update also includes fixes for issues affecting the Domain Name... --- ### Microsoft Intune Gets Troubleshooting Pane Update and Other New Features - Published: 2023-01-30 - Modified: 2023-01-30 - URL: https://petri.com/microsoft-intune-troubleshooting-pane-update/ - Categories: Endpoint Management - Tags: Microsoft Endpoint Manager, Microsoft Intune, News - Article Type: News Microsoft has released a new troubleshooting pane update for Microsoft Intune. The new experience is designed to provide information about users’ devices, applications, policies, and deployment status to help IT admins address help requests in their organization. Microsoft Intune’s new troubleshooting pane experience enables customers to export, filter, and sort all reports. It also provides the option to filter to a specific user’s device or by excluding applications and policies. Moreover, the troubleshooting pane update shows information regarding available device diagnostics as well as disabled and offline devices. “Organizations that include a help desk can assign the Help desk operator role to a group of Intune users. The help desk operator role can use the Troubleshooting + support pane help end users,” Microsoft explained. “Details about the issue and suggested remediation steps can help administrators and help desk operators troubleshoot problems. Certain enrollment issues aren't captured and some errors might not have remediation suggestions. ” Microsoft notes that IT admins can access the troubleshooting pane by signing into the Microsoft Endpoint Manager admin center. Then, select Troubleshooting + support >> Troubleshoot. Click the “Preview upcoming changes to Troubleshooting and provide feedback” option, and select Try it now to view the Troubleshooting preview pane. Source: Microsoft Microsoft Intune adds support for enrollment notifications and more Microsoft has announced the general availability of enrollment notifications on Windows, Android, and iOS devices. The company also introduced attack surface reduction policy support for devices managed via the MDE Security configuration. This change applies to Windows... --- ### What Are the UPN and sAMAccountName User Account Attributes? > This article explains what the UPN and sAMAccountName are user account attributes in Active Directory, and how the username and user logon name can be used in your organization. - Published: 2023-01-30 - Modified: 2023-02-01 - URL: https://petri.com/upn-samaccountname-user-account-attributes/ - Categories: Active Directory (AD) - Tags: Active Directory, UPN, UserPrincipalName - Article Type: Overview The UPN and sAMAccountName are user account attributes in Active Directory. In this article, I'll explain how these two user account attributes work and how the username and user logon name can be used in your organization. What are user naming attributes in Active Directory? In the world of Active Directory, there are two core user naming attributes - UserPrincipalName (UPN) and the sAMAccountName (SAM). These identify user objects such as logon names and IDs used for security purposes. Essentially, a user object is a security principal object. The configuration of your Active Directory will dictate how your users use these various objects when authenticating to their computers. What is the sAMAccountName attribute? The sAMAccountName (or sam account name) attribute was utilized with the birth of Windows NT way back in the day. It was also the default used with previous versions of Windows at the time, like Windows 95 and Windows 98 to name a few. It is a logon name to support clients and servers that had a hard limitation of 20 characters and was required to be unique among all security principal objects within your domain. What is the purpose of the sAMAccountName attribute? This user object identifier was used pre-Windows 2000. You've seen this when viewing user objects in the Active Directory Users and Computers snap-in (ADUC). A User in Active Directory - the 'Account' tab. Note the UPN and sAMAccountName (Image Credit: Petri/Michael Reinders) And here is similar information in the more modern Active... --- ### Microsoft Earnings Report FY2023 Q2 - Published: 2023-01-27 - Modified: 2023-01-27 - URL: https://petri.com/microsoft-earnings-report-fy2023-q2/ - Categories: Microsoft - Tags: Microsoft, News - Article Type: News This week, during its quarterly earnings call, Microsoft reported that revenue is up two percent year-on-year. But there were definitely some winners and fairly major losers. Not to diminish the layoffs that Microsoft announced the week before but the future looks solid. Windows revenue from PC makers plummets What might have been a shock for some was the 39% drop in revenue for Windows and Windows-related services from PC makers. But it probably shouldn't be that much of a surprise. During the pandemic, there was a massive shift to working from home. So, organizations needed to enable that quickly. There was a big scramble to not only find solutions that worked on scale for remote access, but also the hardware that people needed to suddenly work from home if they were previously exclusively an office worker. So, naturally post pandemic, things started to cool down as we head back to some kind of normality and the demand for PC hardware declines significantly. Winners and losers There were also some other big losers. Device revenue was down 34%. And Xbox was down 12%. Azure growth slows A hot topic on the earnings call was Azure growth, which grew 31 percent year-on-year but growth is slowing. Azure is one of the biggest moneymakers for Microsoft. So, what did Satya Nadella have to say to those who were on the earnings call? From his point of view, the slowdown demonstrates how organizations that invested heavily in the cloud during the pandemic are now... --- ### Microsoft Recommends IT Admins to Patch Exchange Servers - Published: 2023-01-27 - Modified: 2023-01-27 - URL: https://petri.com/microsoft-patch-exchange-servers/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Microsoft has recommended customers to deploy the latest January 2023 security updates on on-premises Exchange servers. The company urges IT admins to keep their Exchange servers patched to protect their organization from cyberattacks and security threats. In a Techcommunity blog post, Microsoft raised an alarm that malicious actors are increasingly leveraging vulnerabilities to compromise unpatched Exchange servers in on-premises environments. It enables attackers to take complete control over unpatched Exchange instances and steal sensitive information. Moreover, they could access the address book to launch social engineering attacks. “To defend your Exchange servers against attacks that exploit known vulnerabilities, you must install the latest supported CU (as of this writing, CU12 for Exchange Server 2019, CU23 for Exchange Server 2016, and CU23 for Exchange Server 2013) and the latest SU (as of this writing, the January 2023 SU). Exchange Server CUs and SUs are cumulative, so you only need to install the latest available one. You install the latest CU, then see if any SUs were released after the CU was released. If so, install the most recent (latest) SU,” the Exchange team explained. How to protect Exchange Servers against attacks Microsoft has detailed several steps that should be performed after installing an update on on-premises Exchange servers. First of all, IT admins are advised to run the Exchange Server Health Checker tool to find potential configuration issues that could impact the performance. It identifies unpatched Exchange servers and provides instructions about manual actions that need to be performed for updating... --- ### Cloud Conversations: Tom Arbuthnot on Empowering.Cloud, Unified Communications, and Microsoft Teams > Tom Arbuthnot is a Microsoft MVP, a Microsoft Certified Master, and the co-founder of Empowering.Cloud. In this week's episode, Tom joins Peter Rising on the show to discuss unified communications, the evolution to Teams from Lync and Skype for Business, co-founding Empowering.Cloud, and more. - Published: 2023-01-27 - Modified: 2023-01-27 - URL: https://petri.com/cloud-conversations-episode-65-tom-arbuthnot/ - Categories: Video - Tags: Cloud Conversations, Lync, Microsoft Teams, Skype for Business - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations: Tom Arbuthnot on Empowering Cloud, Unified Communications, and Microsoft Teams Tom Arbuthnot is a Microsoft MVP, a Microsoft Certified Master, and the co-founder of Empowering. Cloud. In this week's episode, Tom joins Peter Rising on the show to discuss: Unified Communications The evolution to Teams from Lync and Skype for Business His career journey Co-Founding Empowering. Cloud The importance of community Work/life balance and education And much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service,... --- ### Five Essential Disaster Recovery Test Scenarios > Many organizations that have disaster recovery plans may still lag in disaster recovery testing. In this article, we take a look at 5 essential disaster recovery test scenarios that all organizations should perform to guarantee that their disaster recovery plans will be effective when required. - Published: 2023-01-27 - Modified: 2023-05-24 - URL: https://petri.com/essential-disaster-recovery-test-scenarios/ - Categories: Backup & Storage - Tags: Disaster Recovery - Article Type: Overview Almost every business knows that having a disaster recovery (DR) plan is essential. However, it’s equally important to test your disaster recovery plans, and not every business follows through on that point. In this article, I'm going to detail five essential disaster recovery test scenarios that your organization should consider to guarantee that its disaster recovery plans are going to work when they're needed the most. There are a lot of reasons why businesses lag in disaster recovery testing. The testing process isn’t fun, it’s resource intensive, and it takes away resources from other ongoing business initiatives. Some notable companies like Google regularly perform full disaster recovery tests where they move their entire production workloads to their backup infrastructure, and then later move them back. That’s obviously more than most businesses need to do. Fortunately, most businesses can just periodically test different components of their disaster recovery plans. Let's take a look at the most essential test scenarios that all organizations should perform. Disaster recovery test scenario #1: Communication with critical DR team members One of the easiest yet most often ignored aspects of disaster recovery testing is the ability to communicate with the different team members that are part of your DR plan. The inability to contact your DR team members will quickly render any plan ineffective. Here you need to be sure you have updated and current contact information including phone numbers, email, text, and Microsoft Teams/Slack/Zoom contact IDs. Effective communication is a key aspect of disaster... --- ### Microsoft Starts Force Upgrading Windows 11 Users to version 22H2 - Published: 2023-01-27 - Modified: 2023-01-30 - URL: https://petri.com/microsoft-upgrading-windows-11-version-22h2/ - Categories: Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has started the process of automatically upgrading users that are on Windows 11 version 21H2 to version 22H2. The company announced on the Windows Health Dashboard (via Neowin) yesterday that the latest version of Windows 11 will be applied to all consumer and non-managed business devices running the Home and Pro editions. Microsoft first intends to automatically upgrade PCs that installed 21H2 at the earliest, but the rollout of the automatic updates will happen over time. However, the company might block the update on select devices with compatibility issues. “Today we begin to automatically update consumer and non-managed business devices running Windows 11, version 21H2 Home and Pro editions to Windows 11, version 22H2. Since Windows 10, we have been helping Windows users stay up to date and secure with supported versions of Windows through automatic updates. We are utilizing this same approach for Windows 11 to help you stay protected and productive,” the company explained. It is important to note that Windows 11 version 22H1 will reach end of servicing on October 10. This means that the operating system will no longer receive feature updates and security patches. Microsoft says the latest version of Windows 11 should help to protect customers against security threats and will be supported until October 8, 2024. Windows 11 version 22H2 includes new productivity, accessibility, and security features Microsoft started rolling out Windows 11 version 22H2 back in October 2022. The latest feature update brings several new features, including Start menu improvements, Tabs... --- ### Microsoft Plans to Block All Downloaded Excel XLL Add-Ins - Published: 2023-01-26 - Modified: 2023-01-26 - URL: https://petri.com/microsoft-block-downloaded-excel-xll-add-ins/ - Categories: Microsoft 365 - Tags: Excel, Microsoft 365, Microsoft Office, News - Article Type: News Microsoft is planning to make its Office apps more secure by blocking all Excel XLL add-ins downloaded from the internet. The company explained that this move should help to prevent malicious actors from abusing this popular avenue to target Microsoft 365 customers worldwide. Essentially, XLL files are dynamic-link libraries (DLLs) that enable users to use third-party tools and functions in Microsoft Excel. These files provide additional functionalities (such as dialog boxes, toolbars, and custom functions) that aren’t natively a part of the software. Last year, Microsoft announced that it’s blocking Visual Basic for Applications (VBA) macros default in Word, Excel, and PowerPoint. Since then, threat actors have been looking for alternative methods (like LNK files and Excel XLL files) to deploy malware payloads. Security researchers have warned that attackers are increasingly using these techniques for data theft, ransomware attacks, and other cybercrime. "For quite some time after that, the usage of XLL files is only sporadic and it does not increase significantly until the end of 2021, when commodity malware families such as Dridex and Formbook started using it," explained Vanja Svajcer, Outreach Researcher for Talos. Microsoft to close malware backdoors by blocking Excel XLL files To address this problem, Microsoft will soon block all Excel XLL add-ins downloaded from the internet in its Office apps. “In order to combat the increasing number of malware attacks in recent months, we are implementing measures that will block XLL add-ins coming from the internet,” the company said on the Microsoft 365 roadmap... . --- ### Microsoft Offers Temporary Fix for Start menu or UWP App Freezing Issues on Windows 11 and 10 - Published: 2023-01-26 - Modified: 2023-01-26 - URL: https://petri.com/microsoft-fix-start-menu-app-freezing-windows/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has acknowledged an issue that could cause problems with the Start menu, Windows Search, and various UWP applications. The company has updated its Windows Health Dashboard to indicate that the bug affects Windows 11 versions 22H2 and 21H2 as well as Windows 10 versions 22H2, 21H2, and 20H2. More specifically, Microsoft has warned that users might notice that the Start menu has become unresponsive, and some apps might not work as expected. The company claims the latest problem is unrelated to the recent Patch Tuesday updates. Instead, it might be related to some third-party applications that rely on Microsoft Office (such as ClickShare). “Affected Windows devices might have damaged registry keys or data which might affect apps using Microsoft Office APIs to integrate with Windows, Microsoft Office, or Microsoft Outlook or Outlook Calendar. An example of an app affected by this issue is ClickShare. The underlying Issue is not caused by the installation of an update to Windows and might be exposed by an update to an affected app,” the company explained on the Windows Health Dashboard. Microsoft suggests users to uninstall affected apps to fix unresponsive Start menu and apps issues Microsoft notes that its engineers are investigating the bug and expect to deliver a fix in an upcoming release. In the meantime, the company advises users to uninstall problematic apps that integrate with Windows, Microsoft Office, and Outlook. It is also recommended to contact app developers for the latest updates and troubleshooting guidance. Last week, Microsoft also... --- ### Windows Terminal Preview 1.17 Adds Process Restart and Mica Support - Published: 2023-01-25 - Modified: 2023-01-25 - URL: https://petri.com/windows-terminal-preview-1-17/ - Categories: Windows 11 - Tags: News, Windows 11, Windows Terminal - Article Type: News Microsoft has updated the preview release of Windows Terminal to version 1. 17. The latest update brings several new features and enhancements based on customer feedback, including Mica and process restart support, dropdown menu customizations, an updated color schemes page, and much more. First off, Microsoft has added support for dropdown menu customization to help users organize their Profiles in Windows Terminal. The latest update lets users add separators, folders, and profiles by editing the settings. json file. Furthermore, Windows Terminal allows users to restart a terminated process by pressing the Enter key. In addition to this, Microsoft touted that Windows Terminal allows users to use Mica as background material on Windows 11 PCs. It’s possible to enable Mica support by setting the “useMica” attribute to true in the settings. json file. Microsoft has also introduced the ability to set the launch position parameters in Settings. Windows Terminal Preview 1. 17 introduces color schemes page updates and more Microsoft released color schemes page updates to make the experience more intuitive for customers. Users will now be navigated to the edit scheme page while adding a new scheme or clicking on a color scheme in the list view. Moreover, Windows Terminal Preview 1. 17 enables users to view a preview of the color scheme before choosing it. Other updates include visual, accessibility, as well as usability improvements, and you can check out the full changelog below: Other Color Scheme Improvements You can now configure a color scheme (per profile) to apply in System Light theme and... --- ### Azure Native New Relic Service Provides Full Stack Observability To Boost Digital Transformation - Published: 2023-01-25 - Modified: 2023-01-25 - URL: https://petri.com/microsoft-azure-native-new-relic-service/ - Categories: Microsoft Azure - Tags: News - Article Type: News Microsoft has announced that its Azure Native New Relic service is now available for customers in the Microsoft Azure Marketplace. The company explained that this release should help to drive cloud migrations and accelerate multi-cloud initiatives in enterprise environments. New Relic is a cloud-based platform that helps developers and IT admins monitor the performance and health of their applications. The service provides real-time insights for real-user monitoring, error tracking, infrastructure monitoring, and log management. It has integrations with various enterprise tools, including Slack, Atlassian Jira, Lighthouse, and Microsoft Azure. Microsoft notes that Azure customers previously had to follow a complex process for setting up credentials, event hubs, and custom code. This release lets IT Pros use the New Relic service to seamlessly collect telemetry data for monitoring, troubleshooting, and optimizing cloud applications and Azure workloads. "Observability is essential in today's modern, multicloud world. Whether our customers are running applications on data centers, embracing the public cloud, or running things at the edge, they need observability to take a look across all those systems. Today's news brings together more than a decade of innovation between New Relic and Microsoft, to bring the power of full stack observability to Microsoft developers, so they can accelerate enterprise cloud migration and multi-cloud initiatives,” said Bill Staples, the CEO of New Relic. Getting started with Azure Native New Relic Service To get started, IT administrators will need to head over to the Azure marketplace to subscribe to the Azure Native New Relic Service. They will... --- ### How to Run a Successful Microsoft Teams Meeting, Live Event, or Webinar > Microsoft Teams meetings, live events, and webinars are the three main video conferencing options in Microsoft Teams, but which one should you choose? In this article, we give you an overview of the different features of each option and provide recommendations and guidance on when to use each. - Published: 2023-01-25 - Modified: 2023-01-25 - URL: https://petri.com/microsoft-teams-meeting-live-event-webinar/ - Categories: Microsoft 365, Microsoft Teams - Tags: meetings, Microsoft 365, Microsoft Teams, Microsoft Teams Meetings - Article Type: How To The world of hybrid meetings, hybrid working, meetings, webinars, and live events is firmly upon us. As of today, organizations have three options for creating a new video conference within Microsoft Teams: meetings, webinars, and live events. In this article, I will give you an overview of the different features of each option and provide recommendations and guidance on when to use each.   Best practices for running a Microsoft Teams meeting, live event, or webinar Microsoft Teams allows organizations to set up hybrid meetings. Here, "hybrid" simply means that we can consider at least one remote participant as a hybrid meeting.  The biggest piece of advice I can give you regarding hybrid meetings is to ensure that you make the most of asynchronous communication. Asynchronous communication  If a portion of your team or attendees are working from the office while others are remote, it’s easy to treat remote attendees as if they are disengaged. To prevent them from feeling left out of important conversations, you should adopt an asynchronous mindset.  In practice, instead of hosting a meeting on-site, you can make a Microsoft Teams meeting online and actively involve everyone. Collecting information in advance  Collecting information from your colleagues before the meeting before its starts gives you time to prepare for any response. This also allows you to tailor your meeting to what participants are going to ask and require. Where applicable, you should send out any important notes, or meeting outputs, where it's relevant to do so.     Translation and transcription  With... --- ### Microsoft Confirms Global Network Outage Hits Teams, Outlook, and Azure - Published: 2023-01-25 - Modified: 2023-01-25 - URL: https://petri.com/microsoft-network-outage-teams-outlook-azure/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is investigating a network configuration issue that is currently preventing users from accessing Microsoft Teams, Outlook, Azure, and other Microsoft 365 services. The company confirmed on the Microsoft Azure status page that the problem impacts customers in Europe, Asia Pacific, the Middle East as well as Africa. Specifically, users all over the world started reporting at around 2:30 AM ET on January 25 that they are unable to send/receive emails and join Microsoft Teams meetings. Some IT admins complained that the global outage causes latency and timeouts when connecting to Exchange Online, Microsoft Graph, OneDrive for Business, Microsoft Intune, M365 Admin Portal, PowerBi, Microsoft Defender for Identity, and Microsoft Defender for Cloud Apps. Microsoft acknowledged that the problem is caused by a networking configuration change, and also said that it’s working on a fix. "We've determined the network connectivity issue is occurring with devices across the Microsoft Wide Area Network (WAN). This impacts connectivity between clients on the internet to Azure, as well as connectivity between services in datacenters, as well as ExpressRoute connections,” the company explained. Source: Downdetector Microsoft blames a Wide Area Network update for the Microsoft 365 outage In a subsequent update, Microsoft explained that a recent Wide Area Network (WAN) update is the root cause behind this global outage. Fortunately, Microsoft’s engineers have rolled back the update and actively monitoring the impact to bring back the services online. "We have identified a recent WAN update as the likely underlying cause, and have taken steps to... --- ### AWS Launches New Cloud Computing Region in Melbourne - Published: 2023-01-24 - Modified: 2023-01-24 - URL: https://petri.com/aws-launches-cloud-region-melbourne/ - Categories: Amazon Web Services - Tags: AWS, cloud computing, News - Article Type: News Amazon Web Services (AWS) has announced the launch of its second cloud region in Melbourne, Australia. The new Asia Pacific region (codenamed: ap-southeast-4) will consist of three Availability Zones, and it should help customers comply with data residency and regulatory requirements. AWS first announced its plans to open the new Melbourne region back in December 2020. The company plans to invest $4. 5 billion in the country by 2037. This AWS cloud region is expected to drive economic development by creating more than 25,000 full-time job opportunities for local people annually. It will provide services such as storage, compute, networking, developer tools, business applications, data analytics, security, and more. “The AWS Asia Pacific (Melbourne) region adds to our ongoing infrastructure expansion and investments in Australia since we launched the AWS Asia Pacific (Sydney) region in 2012. We are proud to deepen our investment by driving local job creation, building cloud skills, and creating opportunities for growth and collaboration with our local customers and AWS Partners,” said Prasad Kalyanaraman, VP of Infrastructure Services at AWS. Additionally, AWS has pledged to become a carbon-negative organization by 2040. Moreover, the company highlighted three projects that will generate 717,000 megawatt-hours of renewable energy annually to support 115,000 Australian households. AWS continues to invest in the cloud computing space Since 2017, AWS has announced various programs (like AWS Academy, AWS Educate, and AWS Industry Quest) to train more than 200,000 Australian citizens with cloud skills. The company has announced a new “Victorian Digital Skills” program to... --- ### Microsoft Releases Update to Streamline Exchange Online License Assignments - Published: 2023-01-24 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-exchange-online-license-assignments/ - Categories: Exchange Online, Microsoft 365 - Tags: Exchange Online, News - Article Type: News Microsoft has released a new feature that adds support for concurrent license assignments in Exchange Online. The latest release enables organizations to assign more than one Exchange Online license to each Azure Active Directory (Azure AD) user. Previously, the Microsoft 365 admin center and Azure AD PowerShell restricted IT admins from allocating concurrent Exchange Online licenses to the same Azure AD user. This means that administrators were required to remove the old license before making any new assignments. Specifically, the license assignment wasn’t permitted for any combination of the following plans: Exchange Online Essentials, Exchange Online Kiosk, Exchange Online Plan 1, Exchange Online Plan 2, Microsoft /Office 365 (F1, F2, F3, E1, E3, E5, A1, A3, A5), Microsoft 365 Business packages, as well as select Microsoft Teams and Project licenses. With this release, Microsoft has now introduced the ability for IT admins to stack licenses for Exchange Online customers. This capability has been available for both SharePoint Online and Microsoft Teams for quite some time now. Microsoft notes that the license that supports more features (such as protocol access, transport limits, and mailbox quotas) will take higher precedence over the other assigned plan. “For example, if the user has E3 and Kiosk assigned, but E3 is then removed from the AAD user, then Exchange Online will ensure the corresponding Mailbox User or Mail User will be granted access to Kiosk features only. If the user is later also assigned E5, Exchange Online will grant the user access to all the... --- ### Microsoft Announces New Multibillion-Dollar Investment in OpenAI - Published: 2023-01-23 - Modified: 2023-01-23 - URL: https://petri.com/microsoft-multibillion-dollar-investment-openai/ - Categories: Active Directory (AD) - Tags: Azure, ChatGPT, Microsoft, News, OpenAI - Article Type: News Microsoft has announced a new multibillion-dollar partnership with OpenAI. The company explained that the deal marks the beginning of the third phase of its existing partnership with the ChatGPT-maker, following two previous investments in 2019 and 2021, respectively. In a press release, Microsoft highlighted that this new partnership should enable both companies to create AI-powered experiences to help developers and organizations build and run their workloads. Microsoft has yet to disclose the terms of its extended partnership with OpenAI, but some previous reports indicated that it planned to invest around $10 billion and take a 49 percent stake. Microsoft has detailed several benefits of its multibillion-dollar deal with OpenAI. First off, the company aims to make Azure OpenAI’s exclusive cloud provider that will power all workloads across API services, products and research. Microsoft will also support OpenAI’s research with the deployment of specialized supercomputers. Microsoft will deploy OpenAI models to its consumer and enterprise products Additionally, Microsoft will integrate OpenAI’s technology into its various enterprise and consumer-focused products. The company is reportedly looking to integrate ChatGPT into the Office applications, such as Word, PowerPoint, and Outlook. Microsoft also plans to leverage ChatGPT to make its Bing search engine more competitive with Google. “We formed our partnership with OpenAI around a shared ambition to responsibly advance cutting-edge AI research and democratize AI as a new technology platform,” said Microsoft CEO Satya Nadella. “In this next phase of our partnership, developers and organizations across industries will have access to the best AI... --- ### Install Windows 11/Server 2022 in VMware Workstation 17 Pro - Published: 2023-01-23 - Modified: 2023-01-23 - URL: https://petri.com/install-windows-in-vmware-workstation-pro/ - Categories: Virtualization - Article Type: How To In this article, I’ll show you how to successfully install Windows 11 or Windows Server 2022 in VMware Workstation 17 Pro. It’s taken more than a year for VMware to release a new version of VMware Workstation Pro that officially supports Windows 11. But there are still some issues that haven’t been resolved since the previous release, version 16. For example, Workstation Pro detects you are installing Windows from an ISO file but Windows Server 2022 setup fails because the default hardware configuration assigned to the virtual machine (VM) doesn’t work with Windows Server. But the solution is simple and I’m going to share it with you below. Before you can follow the instructions below, you’ll need an Internet connection to download the relevant image files for the version of Windows that you want to install. And you’ll need either a trial version or licensed version of VMware Workstation Pro installed on your local PC. How to install Windows 11 on VMware Workstation 17 Pro Before you can install Windows in a virtual machine powered by VMware Workstation Pro, you are going to need to download the latest image file (ISO) for Windows. Download an evaluation version of Windows or Windows Server All currently supported versions of Windows and Windows Server are available to download from the Microsoft Evaluation Center. Microsoft Evaluation Center (Image Credit: Petri/Russell Smith) Select the version of Windows you want to download from Microsoft’s website. In this example, I’m going to download and install Windows... --- ### Microsoft Teams Rolls Out New Video Filter Effects for Meetings - Published: 2023-01-23 - Modified: 2023-01-23 - URL: https://petri.com/microsoft-teams-video-filter-effects-meetings/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams has introduced a set of new video filters in preview to enhance video calls and meetings. The Microsoft Teams desktop app already supports brightness and soft-focus filters, but the latest update now lets participants apply frames and styles before and during meetings. “Video Filters are a new feature in Microsoft Teams meetings that will allow participants to augment their video stream with visual effects, such as frames and styles. These filters are built on the Teams Platform infrastructure and provided by Microsoft first- and third-party partners as apps and displayed as a collection of filters,” the company explained in a message on the Microsoft 365 Admin Center. To apply the new video filters, attendees will need to provide consent to install the Custom Filters app to process data about their facial features. Once enabled, Microsoft Teams users can enable video filters from the quick tray available on the pre-join screen. It’s also possible to apply video effects during the meeting by clicking the More menu and selecting the Video effects button. IT admins can use the Custom Filters App to control video filter effects Microsoft notes that video filters are enabled by default for all commercial and GCC customers. Administrators can head to the Teams admin center to disable them for end users in their organization. Meanwhile, the feature is turned off in education tenants, and it’s up to the IT admins to allow meeting participants to apply video effects with an app permission policy. It is important... --- ### How to Export Active Directory Users to CSV With PowerShell and ADUC > IT Pros sometimes need to extract task-specific information about a subset or all of their users from Active Directory. In this article, we explain how to export Active Directory users to a CSV file using PowerShell and Active Directory Users and Computers (ADUC). - Published: 2023-01-23 - Modified: 2023-01-23 - URL: https://petri.com/export-active-directory-users-csv-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, Active Directory Users and Computers, PowerShell - Article Type: How To In this article, I'll show you how to export Active Directory users to a CSV file using PowerShell and Active Directory Users and Computers (ADUC). Using PowerShell is recommended as IT Pros can use it to extract task-specific information about a subset or all of their users from Active Directory. This can be really helpful when you need to export all of your user information for access into other systems like an HR import or third-party authentication systems. There is a myriad of commands, cmdlets, and other functions that allow you to obtain said information with ease. This article will demonstrate the most common tasks you'll come across when exporting AD information and the intricacies of these cmdlets to finish the job. How to export Active Directory users to CSV The easiest way to export a list of users in Active Directory to a . CSV file is to use PowerShell Export-CSV cmdlet. Here's the command you need to use to export all of your users to a CSV file. Get-ADUser -filter * -Properties * | export-csv -path AllUsers. csv Exporting all of your users to a CSV file with the 'Export-CSV' cmdlet Keep reading if you would like to learn other commands to export a specific set of users from Active Directory! How to export Active Directory users to CSV with PowerShell Before we get started, you'll need to be using a computer account that has read permissions to your Active Directory, and an appropriate shell to accommodate this. You... --- ### Microsoft Confirms System Restore Breaks Apps on Windows 11 Version 22H2 - Published: 2023-01-20 - Modified: 2023-01-20 - URL: https://petri.com/microsoft-system-restore-breaks-apps-windows-11-22h2/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Microsoft has confirmed that the System Restore feature could break some apps on Windows 11 version 22H2. The company detailed that the problem affects select first and third-party applications that use the MSIX Windows app package format, including Microsoft Office, Windows Terminal, Cortana, Notepad, and Paint. In Windows 11, System Restore is a recovery tool that allows users to revert their computer’s state to an earlier point in time without losing their files. It's designed to help users recover certain files and folders (such as registry keys, drivers, installed programs, and system files) to previous versions and settings. This is a useful feature that can undo system changes in case of critical problems or instability issues. Microsoft explained in a support document that restoring the operating system from a system restore point causes instability issues for some Windows applications on Windows 11 devices. For instance, the app may fail to launch with the "This app can't open" error message. Moreover, Windows 11 users could see duplicate entries of the app on the Start menu. Additionally, Microsoft says it’s possible that the app triggers an I/O error, becomes unresponsive, and then crashes on Windows PCs. The bug impacts the latest versions (22H2) of Windows 11 SE, Windows 11 Home and Pro, Windows 11 Enterprise Multi-Session, Windows 11 Enterprise and Education, and Windows 11 IoT Enterprise. Microsoft suggests a workaround to fix "This app can't open" errors on Windows 11 version 22H2 Microsoft has suggested a potential workaround for customers who run... --- ### Collaborating with Microsoft 365: File Sharing, Real-Time Co-Authoring, and Microsoft Loop Components > Microsoft 365 includes powerful collaboration features that allow teams to work on and share Office documents. This article takes you through the basics of file sharing and collaboration in Microsoft 365, including how to use Microsoft 365 Groups and the new dynamic Microsoft Loop components.  - Published: 2023-01-20 - Modified: 2023-01-20 - URL: https://petri.com/microsoft-365-file-sharing-loop-components/ - Categories: Microsoft 365, Productivity and Collaboration - Tags: collaboration, Microsoft 365, Microsoft 365 Groups, Microsoft Loop - Article Type: Overview Microsoft 365 includes powerful collaboration features that allow teams to work on and share Office documents more easily than ever before. But do you understand how file sharing works within Microsoft 365 and how to manage and secure your files?   In this article, we'll take you through the basics of file sharing and collaboration in Microsoft 365, and how you can control who can share what, and with whom, in the Microsoft 365 Admin Center. We'll also be discussing Microsoft 365 Groups, what they're for, and how to boost your productivity with them.  You will also learn how Microsoft's new dynamic Loop components work and how Office and OneDrive for Business facilitate file sharing and co-authoring.   The benefits of using Microsoft 365 to share files  The best way to demonstrate the benefits of using Microsoft 365's file sharing and collaboration features in your organization is to compare the old (not so good) way of doing it, and the new (wonderful! ) way. First, let's try to envision how we shared files in the past (and still do... ).   How we shared files in the past Imagine sending an Excel spreadsheet as an attachment to ten employees in your organization. You ask each of them, as heads of specific teams, to leave feedback about the decommissioning process of a few dozen legacy servers.    To accomplish your task to remove unused and obsolete servers safely, you need to gather feedback from several individuals in varying areas of your organization. Imagine a situation where:   Employee A... --- ### Cloud Conversations: Eswar Prakash on Physical Computing with Power Platform - Published: 2023-01-20 - Modified: 2024-11-19 - URL: https://petri.com/cloud-conversations-episode-64-eswar-prakash/ - Categories: Video - Tags: Cloud Conversations, Power Platform - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations: Eswar Prakash on Physical Computing with Power Platform Eswar Prakash is a Technical Development Lead in Power Platform at Resonate. In this episode, Eswar joins Azure and Peter to discuss: Unified Communications Power Platform Early computers Mathematics The Internet of Things His passion for Science Fiction and food More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Microsoft Rebrands the Office Insider Program as Microsoft 365 Insider - Published: 2023-01-19 - Modified: 2023-01-19 - URL: https://petri.com/microsoft-office-insider-program-microsoft-365-insider/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft 365 Insider, News, Office Insider - Article Type: News Microsoft has announced that it’s rebranding the Office Insider program as the Microsoft 365 Insider program. The company says that this name change aligns with the rebranding of the Office app to Microsoft 365 on Windows, iOS, Android as well as the office. com web portal. Microsoft launched its Office Insider program about seven years ago. It’s designed to allow users to get early access to improvements and changes for Office applications, including Microsoft Word, PowerPoint, Excel, and Outlook. The program provides the opportunity to try out new features and submit feedback about bugs and potential issues. According to Microsoft, the new Microsoft 365 Insider branding doesn’t bring any changes for the participants enrolled in the program. Microsoft notes that Office Insiders will continue to receive updates in the Current Channel (Preview) and Beta Channel. However, the company has updated the name of the program on the official portal and changed the Twitter handle to @MSFT365Insider. Additionally, Microsoft indicated that it has moved the Release Notes of the program to the Microsoft Learn website. “You may have noticed that we’ve been publishing blog posts about offerings beyond the traditional Office apps. We will continue to expand our blog coverage of features, apps, and services under the Microsoft 365 umbrella moving forward,” the Office Insider team explained. When will the Microsoft 365 Insider branding changes happen? The Microsoft 365 Insider branding changes started rolling out yesterday, and the updates will become generally available in March 2023. Microsoft emphasizes that it’s not completely... --- ### Microsoft to End Sale of Windows 10 Home and Pro Licenses This Month - Published: 2023-01-19 - Modified: 2023-01-19 - URL: https://petri.com/microsoft-block-sale-windows-10-licenses/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has finally decided to stop selling Windows 10 licenses to consumers and enterprise customers by the end of this month. The company has quietly announced on the Windows 10 product pages that it will block digital downloads of the Home and Pro editions of the OS on January 31, 2023. “January 31, 2023 will be the last day this Windows 10 download is offered for sale. Windows 10 will remain supported with security updates that help protect your PC from viruses, spyware, and other malware until October 14, 2025,” the company explained on the Windows 10 Home and Pro product pages. Customers can still buy Windows 10 Home and Pro licenses from third-party retailers It is important to note that this move is a part of Microsoft’s efforts to push more Windows 10 users to upgrade to its new Windows 11 operating system. Going forwards, customers who want to purchase Windows 10 licenses will need to contact third-party retailers until their digital stock remains available. For instance, online retailers like Amazon and websites like Kinguin will continue to sell OEM copies of Windows 10 Home and Windows 10 Pro. Microsoft released Windows 10 all the way back in 2015. The company allowed Windows 7 and Windows 8 users with genuine license keys to upgrade to Windows 10 at no additional cost. However, Microsoft ended support for Windows 7 ESU and Windows 8. 1 on January 10, 2023. This means that these operating systems will no longer receive security updates or... --- ### Microsoft Patches Four SSRF Vulnerabilities in Azure Cloud Services - Published: 2023-01-19 - Modified: 2023-01-19 - URL: https://petri.com/microsoft-ssrf-vulnerabilities-azure-services/ - Categories: Azure - Tags: Azure, News, Security - Article Type: News Microsoft has patched vulnerabilities in four different Azure cloud services. The security flaws could enable attackers to perform a server-side request forgery (SSRF) attack to gain unauthorized access to cloud resources. The security vulnerabilities were first discovered by researchers from Orca Security between mid-October and mid-December last year. The flaws affect various Microsoft cloud services such as Azure Functions, Azure API Management, Azure Digital Twins, and Azure Machine Learning. Microsoft introduced new security features to block SSRF attacks back in 2020. However, the researchers exploited the flaws in Azure Functions and Azure Digital Twins to gain unauthorized access to sensitive information. A Server-side request forgery (SSRF) attack allows a threat actor to send malicious requests to another system via a vulnerable web server. It lets an attacker target a web application to read or update internal resources and send sensitive data to external sources. This attack could be harmful because it provides access to the Cloud Instance Metadata Service (IMDS) of the host in cloud environments. “The discovered Azure SSRF vulnerabilities allowed an attacker to scan local ports, find new services, endpoints, and files – providing valuable information on possibly vulnerable servers and services to exploit for initial entry and the location of potential information to target,” Orca researcher Lidor Ben Shitrit explained. Protection and mitigation strategies to block SSRF attacks Fortunately, the researchers couldn’t exploit the SSRF vulnerabilities in Azure to reach IMDS endpoints. It’s because Microsoft already has the necessary mitigations in place to reduce the potential impact... --- ### Microsoft to Block SMB Guest Authentication By Default in Windows 11 Pro - Published: 2023-01-18 - Modified: 2023-01-18 - URL: https://petri.com/microsoft-block-smb-guest-authentication-windows-11-pro/ - Categories: Windows 11 - Tags: Authentication, News, SMB, Windows 11 - Article Type: News Microsoft is planning to disable insecure SMB (Server Message Block) guest authentication fallbacks by default in Windows 11 Pro. The company has announced that this security improvement is already included in the Windows 11 Insider Preview Build 25276 released this month According to Microsoft, the guest authentication method doesn’t provide support for inspection trails and other security mechanisms like certificates and signing. This makes it easier for attackers to exploit the flaws through man-in-the-middle attacks and gain access to enterprise networks. Moreover, attackers could abuse the guest authentication feature to get read or copy access over the entire network. Notably, the guest access feature has been disabled by default in the operating system since Windows 2000. Moreover, PCs running Windows 10 Education and Enterprise editions prevent SMB2 and SMB3 from fallback to guest authentication due to invalid login attempts. However, Microsoft notes that only a legitimate third-party remote device may require guest access by default. Microsoft plans to disable default guest access for network shares in the next major release of Windows 11 Microsoft notes that users with network-attached storage (NAS) using the guest authentication access will see the following error in future versions of Windows 11 Pro. “You can't access this shared folder because your organization's security policies block unauthenticated guest access. These policies help protect your PC from unsafe or malicious devices on the network. ” Users might also encounter the “0x80070035” and “The network path was not found” errors. “The recommended solution when seeing these errors is to... --- ### How to Use Microsoft Lists For Work Management and Tracking > Microsoft Lists is an evolution of SharePoint Lists that can be used to aggregate all the lists you have in Microsoft 365. In this article, we'll explain how to get started with Microsoft Lists and use it for work management and tracking. - Published: 2023-01-18 - Modified: 2023-03-20 - URL: https://petri.com/microsoft-lists-work-management-tracking/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Lists, SharePoint List - Article Type: How To Microsoft Lists is a new application that was created as an evolution of SharePoint lists. It helps users in the corporate and consumer markets to track, share and organize their work in an online platform that is available on the web and mobile devices. In this article, we'll explain how to get started with Microsoft Lists and explore the different options to create and view your different lists.   How to use Microsoft Lists If you have never used SharePoint lists before, you can think about this new platform as a lightweight database where anyone can create, customize, and adjust tables as work requirements change over time.  Microsoft Lists not only stores data but also formats it and allows you to apply conditions to easily see what is more relevant at any given time.   In your life, I am sure you have used a lot of lists, from simple things like a to-do list on paper to more complex lists assembled in a spreadsheet using Excel. With Microsoft Lists and its free table schema, you will be able to create and migrate all these lists to an online and always-available platform. Accessing Microsoft Lists  Before getting started with the app, you need to know how to access it. The app is available from several locations in the Microsoft 365 ecosystem and it can be accessed from a web browser, SharePoint, Microsoft Teams, or from a mobile device using the dedicated application.   The Lists application acts as an aggregator of all the... --- ### Git Releases New Security Updates to Block Remote Code Execution Attacks - Published: 2023-01-18 - Modified: 2023-01-18 - URL: https://petri.com/git-security-updates-block-remote-code-execution/ - Categories: Security - Tags: GIT, News, Vulnerability - Article Type: News Git has recently released new updates to address two critical security vulnerabilities that could allow hackers to launch remote code execution attacks. The company has also patched another Windows-specific flaw affecting the Git GUI tool. Security researchers from X41 and the GitLab Security Research Team first identified the security vulnerabilities as part of an audit of the Git codebase. The first two flaws (CVE-2022-41903) and (CVE-2022-23521) exist in the commit formatting mechanism and . gitattributes parser. The security vulnerabilities specifically affect Git versions 2. 39 and older as well as GitLab Community Edition (CE) and Enterprise Edition (EE). The third vulnerability (CVE-2022-41953) is caused by an issue in the untrusted search path. It could let threat actors execute arbitrary code when cloning repositories with Git GUI. The company has yet to address the flaw, but it advises users to avoid cloning repositories with the Git GUI software or untrusted sources. “The most severe issue discovered allows an attacker to trigger a heap-based memory corruption during clone or pull operations, which might result in code execution. Another critical issue allows code execution during an archive operation, which is commonly performed by Git forges. Additionally, a huge number of integer related issues was identified which may lead to denial-of-service situations, out-of-bound reads or simply badly handled corner cases on large input,” explained X41 security experts. Git recommends users to upgrade to the latest version Git urges all IT admins and customers to upgrade to Git version 2. 39. 1 in order to protect against security vulnerabilities... . --- ### Apple Unveils New M2-Powered MacBook Pro and Mac Mini Devices - Published: 2023-01-17 - Modified: 2023-01-17 - URL: https://petri.com/apple-m2-macbook-pro-mac-mini-devices/ - Categories: Hardware - Tags: Apple, Mac mini, MacBook Pro, News - Article Type: News Apple has finally announced its much-anticipated MacBook Pro and Mac Mini models powered by new M2 Pro and M2 Max chips. The next-generation processors are much more powerful, which bring performance and energy efficiency improvements compared to the M1 chips previously seen in the 2021 MacBook Pro. According to Apple, the new M2 Max chip features up to 12 CPU cores, 38 GPU cores, up to 96GB of memory, and it also supports 8TB of SSD storage and four 8K external displays. Meanwhile, Apple’s M2 Pro chip offers up to 12 CPU cores, 19 GPU cores, up to 32GB of unified memory, and it also supports 8TB of SSD storage and two external 8K displays. “Only Apple is building SoCs like M2 Pro and M2 Max. They deliver incredible pro performance along with industry-leading power efficiency,” said Johny Srouji, Apple’s Senior VP of Hardware Technologies. “With an even more powerful CPU and GPU, support for a larger unified memory system, and an advanced media engine, M2 Pro and M2 Max represent astonishing advancements in Apple silicon. ” Source: Apple As for the design of the new MacBook Pros, these devices look pretty much the same when compared to the M1 Pro and M1 Max models that debuted in 2022. However, Apple claims that the new Macs feature three Thunderbolt 4 ports and offer up to 22-hour battery life on a single charge. https://www. youtube. com/watch? v=6Ij9PiehENA However, these new MacBook Pros come with a big price tag: the 14” model starts at $1,999, and... --- ### Microsoft to Expand ChatGPT Capabilities to Azure OpenAI Service - Published: 2023-01-17 - Modified: 2023-01-17 - URL: https://petri.com/microsoft-expand-chatgpt-azure-openai/ - Categories: Artificial Intelligence, Azure - Tags: Azure, ChatGPT, News - Article Type: News Microsoft has announced the general availability of its Azure OpenAI service. Microsoft CEO Satya Nadella also unveiled its plans to launch OpenAI’s ChatGPT chatbot as a service to make it accessible to more customers. Microsoft launched its Azure OpenAI service back in November 2021. It enables businesses to integrate powerful AI tools (such as GPT-3. 5, Codex, and DALL-E) with their apps and workloads. Developers have used the service for customer support, customization, as well as data extraction and classification. It also helps them to gain insights in order to improve search results. “With Azure OpenAI Service now generally available, more businesses can apply for access to the most advanced AI models in the world—including GPT-3. 5, Codex, and DALL•E 2—backed by the trusted enterprise-grade capabilities and AI-optimized infrastructure of Microsoft Azure, to create cutting-edge applications,” explained Boyd CVP for AI Platform. https://youtu. be/3t3qZu1Dy1k ChatGPT is coming soon to Azure OpenAI and other Microsoft products Microsoft announced an exclusive partnership with OpenAI in July 2019. The company invested $1 billion in OpenAI to develop new AI technologies for its Azure cloud platform. Microsoft is reportedly planning an additional $10 billion investment in the startup to incorporate AI tools like ChatGPT into all its products. Microsoft already leverages its Azure OpenAI service and the image generator DALL-E 2 to power GitHub Copilot and Microsoft Designer, respectively. A recent report from the Information suggests that the company plans to integrate ChatGPT into its Office applications. Microsoft will also use the chatbot to make the Bing... --- ### Microsoft Releases a Script to Recover Some Windows App Shortcuts Deleted on Friday 13 - Published: 2023-01-16 - Modified: 2023-01-16 - URL: https://petri.com/microsoft-script-recover-windows-app-shortcuts/ - Categories: Windows 10, Windows 11 - Tags: Microsoft Defender, News, PowerShell, Windows 10, Windows 11 - Article Type: News Last week, Microsoft confirmed a new issue that caused application shortcuts to disappear from the Taskbar and Start Menu on Windows PCs. Microsoft has recently released a PowerShell script that helps IT admins to restore some deleted Windows application shortcuts. On January 13, several IT admins reported on Reddit and Twitter that a buggy attack surface reduction (ASR) rule is removing Windows shortcut (. lnk) files. Some administrators addressed the issue by setting the “Block Win32 API calls from Office macro” rule to Audit Only. Microsoft also issued a Defender update to deploy a fix but warned that IT Pros will need to recover the deleted shortcuts manually. In a blog post published on the Microsoft Tech Community website, Microsoft detailed advanced hunting queries (AHQs) that make it easier for sysadmins to find affected application shortcuts. Additionally, the company provided a PowerShell script to recreate shortcuts for some deleted applications on Windows machines. “Microsoft has confirmed steps that customers can take to recreate start menu links for a significant sub-set of the affected applications that were deleted. These have been consolidated into the PowerShell script below to help enterprise administrators take recovery actions in their environment,” Microsoft explained. The PowerShell script is available to download on GitHub, which scans the Registry to check if the listed programs are installed on the Windows device. If so, the script recreates the corresponding shortcuts for all apps that don’t exist in the Start Menu. The company notes that IT admins can restore shortcuts for... --- ### RAID 5 vs. RAID 10: What's the Difference and Which One Is Best? > If you need help choosing between RAID 5 and RAID 10 for your IT environment, this article explains the intricacies of how RAID 5 and RAID 10 work and what their advantages and disadvantages are based on overall business and IT needs in your enterprise. - Published: 2023-01-16 - Modified: 2024-07-31 - URL: https://petri.com/raid-5-vs-raid-10/ - Categories: Hardware - Tags: RAID 10, RAID 5, storage - Article Type: Overview Key takeaway: RAID 5 provides good read performance and it can tolerate one disk failure in a minimum 3-disk array. RAID 10 provides fast read and write performance and it can potentially tolerate up to 2 drive failures in a minimum 4-disk array. RAID 5 and RAID 10 are two different redundant array of independent disks (RAID) technologies that organizations can use to combine multiple physical drives to create large data stores. In this article, we'll explain the main differences between RAID 5 and RAID 10 and help you determine the best RAID configuration to use for your IT environment. If you read my previous article discussing RAID 0 and RAID 1, this is a continuation of sorts on similar RAID configurations. However, if RAID 0 and 1 were fairly similar, RAID 5 and RAID 10 are actually separate beasts altogether. RAID 5 vs RAID 10: What are the main differences? To start off, you can peruse my table below to get a feel for the differences and general makeup of these two types of RAID. I will explain this in more detail throughout the remainder of this post. Operations/FeaturesRAID 10RAID 5Minimum number of physical disks required43Focus areaPerformance and fault toleranceStorageFlexible in structureYesNoRead/WriteFast for bothFast reads - slow writesIdeal for backupNoYesUses parityNoYesComplexityLowHighHardware or software implementationWorks well on any hardware controllerCan be implemented through software or hardwareTable 1 - RAID 10 vs RAID 5 What is RAID 5? RAID 5, traditionally, has been one of the poster children for decent,... --- ### Amazon RDS Now Supports Custom SQL Server Images > Amazon Relational Database Service (RDS) now supports creating custom SQL Server database images using a Custom Engine Version (CEV). OS customizations can now persist across database instances without requiring businesses to redo their customizations. - Published: 2023-01-16 - Modified: 2023-01-17 - URL: https://petri.com/amazon-rds-custom-sql-server-images/ - Categories: Amazon Web Services - Tags: Amazon RDS, Amazon Web Services, AWS - Article Type: News Amazon Relational Database Service (RDS) now supports creating custom SQL Server database images using a Custom Engine Version (CEV). Businesses can use Amazon RDS Custom for SQL Server using Custom Engine Version to build new custom images based on an Amazon Machine Image (AMI) with the required Windows operating system (OS), database customizations, and third-party software. They can then create RDS custom images for SQL Server instances using these new golden images. Previously, any OS customizations implemented using RDS Custom for SQL Server could not be persisted. This caused problems for cases like disaster recovery scenarios requiring businesses to manually restore all of their customizations. With the new CEV capability, OS customizations can persist across database instances without requiring businesses to redo their customizations. RDS Custom for SQL Server enables database administrators to customize the OS and database environment enabling SQL Server workloads to run legacy and packaged applications that require specialized customizations. For example, customizations can allow SQL Server to access sysadmin, xp_cmdshell, or third-party agents as well as applications like Microsoft Sharepoint and Microsoft Dynamics. These customizations are persistent and can be made into images. Viewing CEV details for Amazon RDS Custom for SQL Server (image credit: Amazon. com) Main advantages of using RDS Custom for SQL Server with a CEV Some of the main advantages of using Amazon RDS customizations include: Ability to customize the OS, database configuration, and third-party drivers and applications. Automating administrative requirements needed to apply customizations. Support for unique application requirements. Facilitating the migration... --- ### Cloud Conversations - Femke de Vroome on Favourite Teams Features and Teams Governance > Femke de Vroome is a Productivity Engineer at Wortell. In this week's Cloud Conversations episode, she joins Kat Beedim and Femke Cornelissen to discuss her favorite Teams features, simplifying the Teams governance customer journey, and more. - Published: 2023-01-16 - Modified: 2023-01-16 - URL: https://petri.com/cloud-conversations-episode-63-femke-de-vroome/ - Categories: Video - Tags: Cloud Conversations, Governance, Microsoft Teams - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Femke de Vroome on Favourite Teams Features and Teams Governance Femke de Vroome is a Productivity Engineer at Wortell. In this week's episode, she joins Kat Beedim and Femke Cornelissen to discuss: Her favorite Teams features Simplifying the Teams governance customer journey Governance vs. control Should Teams Premium be in E5? Women in tech Unconscious bias Her typical workday More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an... --- ### [Updated] Microsoft to Fix Defender Bug Deleting Windows Apps Shortcuts from Taskbar - Published: 2023-01-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-defender-bug-windows-apps-shortcuts/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft is investigating a new bug that’s currently removing application shortcuts from the Taskbar and Start Menu on Windows PCs. The company has acknowledged that the problem affects enterprise customers using Microsoft Defender for Endpoint to block malware attacks. In a Reddit thread, several enterprise admins reported that a false positive triggered by a buggy attack surface reduction (ASR) rule deletes shortcuts of Microsoft apps and third-party applications from the Start Menu and Taskbar. The issue is reportedly caused by the latest update (1. 381. 2140. 0) to the Microsoft Defender threat detections. "We recently onboarded our estate to Defender for Endpoint and we’ve had a number of reports this morning that their program shortcuts (Chrome, Firefox, Outlook have all vanished following a reboot of their machine, which has also occurred for me too. It seems to be blocking from the rule: 'Block Win32 API calls from Office macro'," an IT admin explained on Reddit. According to the reports, the Microsoft Defender update instantly deletes all shortcut (. Ink) files stored in ProgramData\Microsoft\Windows\Start Menu\Programs on Windows 10 and 11 devices. Some IT admins managed to address the problem by changing the ASR rule to "Audit only," while others had to delete the rules. Microsoft provides a workaround to fix Windows app shortcuts bug Microsoft said on Twitter that it has identified the problem, and reverted the ASR rule to minimize the impact on affected Windows machines. The company has recommended administrators to set the rule to Audit only via PowerShell, Microsoft InTune, or Group... --- ### Microsoft FastTrack Now Helps IT Admins Deploy Windows Autopatch at No Additional Cost - Published: 2023-01-13 - Modified: 2023-01-13 - URL: https://petri.com/microsoft-fasttrack-deploy-windows-autopatch/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, Windows Autopatch - Article Type: News Microsoft has announced some new features added to its Windows Autopatch service this month. Windows Autopatch is a cloud-based tool that enables organizations to automate patch management for Windows 10, Windows 11, Microsoft Teams, Edge, and other Microsoft 365 services. For starters, Microsoft announced that FastTrack support is now available to help enterprise customers adopt Windows Autopatch at no additional cost. The FastTrack service remotely provides resources and one-one consultations to organizations that need support to onboard devices. “These added resources enable the Customer Acceleration Team to go deeper into enterprise-specific issues. The result is a virtuous circle – learnings from Customer Acceleration Team engagements will be added to FastTrack resources, enriching your support experience, and the Customer Acceleration Team will be able to learn from more deep dives,” Microsoft explained. https://www. youtube. com/watch? v=wToCZNyiLt8 Windows Autopatch lets IT admins opt out of expedited and Microsoft 365 Apps updates Additionally, Microsoft has made it easier to retain control over expedited quality updates and Microsoft 365 Apps updates. Indeed, it’s now possible for IT admins to opt out of expedited updates and deploy through the standard ring progression cadence. To do this, navigate to the “Devices” blade in Microsoft Intune and select the Release management option available under Windows Autopatch. Finally, use the toggle button to block expedited quality releases. Microsoft introduced a new feature in preview that lets IT Pros opt out of updates for Microsoft 365 applications. Microsoft expects to make this feature generally available for all customers by the end of... --- ### How to Create Flows with Power Automate to Automate Workflows Between Apps - Published: 2023-01-13 - Modified: 2023-01-19 - URL: https://petri.com/power-automate-create-flows/ - Categories: Power Apps, Power Automate, Power Platform - Tags: Power Automate - Article Type: How To Power Automate is a workflow service that allows you to automate many different actions across common apps and services.  You can use it to automate just about anything you do by using what we call “flows”, which are a series of instructions you tell Power Automate to do for you. In this article, we'll show you how to create flows with Power Automate to automate workflows between apps.     The brilliant thing about Power Automate is that with 500+ connectors, it is a gateway to all of your IT systems!  There are hundreds of ways to connect data in Power Automate using connectors.  When you build a flow, you string together a few of these 500+ connectors to perform actions on your data.   How to create flows with Power Automate The thing that kicks off a flow with Power Automate is called a trigger.   Triggers  Power Automate supports several different triggers.  Some triggers are automated, meaning that something happening to your data will automatically start the flow.     Other triggers are scheduled, or they happen whenever you put them on a calendar to happen. That could be once a year, once a second, or tied to a particular date and time.    Another type of trigger is an instant (or button) flow, which is manually kicked off by a user.   Simple example flow  A practical example of a simple-to-build flow is one that triggers when an item is created in a SharePoint list and sends an email to a designated user. The trigger is “When... --- ### Microsoft Planner Now Lets Users Create Recurring Tasks - Published: 2023-01-12 - Modified: 2023-01-12 - URL: https://petri.com/microsoft-planner-recurring-tasks/ - Categories: Planner - Tags: Microsoft 365, Microsoft Planner, News - Article Type: News Microsoft has released some much-anticipated updates for Microsoft Planner this week. The company announced that its popular task management tool is getting support for a new recurring tasks feature and Grid view. The recurring tasks feature should be a welcome addition for people who need to create dedicated tasks for daily scrum meetings, weekly progress reviews, monthly reports, quarterly planning, and yearly review and planning. “You can reduce extra work by easily setting up automatic repeating tasks for daily, weekly, or monthly recurrence – and many other interval options – with custom repeat settings,” the Microsoft Planner team explained. Recurring tasks in Planner How to create recurring tasks in Microsoft Planner To specify a recurring task, Microsoft Planner users will need to follow the steps listed below: In Board view, click the task card in order to open the Details panel. Use the Start date and Due date fields to set task timing parameters. Open the Repeat menu by clicking the adjacent Repeat field. Now, select a recurrence interval such as Daily, Weekdays (M-F), Weekly, Monthly, or Yearly. Select Custom to open the Custom repeat pane that provides customization options to create recurring tasks that occur on a specific date, week, month, or year. Custom repeat Recurrence rules Microsoft detailed a couple of recurrence rules for creating Planner tasks. Users can only see one occurrence for a recurring task, and an upcoming task will be visible in the Schedule tab after the completion of the previous one. Moreover, Microsoft Planner... --- ### ManageEngine ADSelfService Plus: Protect On-Premises and Cloud Services from Password Attacks with Multi-factor Authentication - Published: 2023-01-12 - Modified: 2024-04-17 - URL: https://petri.com/manageengine-adselfservice-plus-mfa/ - Categories: Active Directory (AD) - Tags: Active Directory, NoAD, Security - Article Type: Sponsored Advanced password attacks, like brute force and those launched by malicious insiders, are devastating the security of today’s enterprises and cloud services. ADSelfService Plus from ManageEngine can protect web properties from such attacks with multi-factor authentication (MFA). Multi-factor authentication is the best way to protect Active Directory and cloud-based user accounts As the impacts of cybersecurity attacks have increased, and the vectors malicious actors utilities  continue to grow, it is important to keep one step ahead in network security and enterprise environments. This includes your Active Directory (AD) and cloud-based identity solutions like Microsoft 365/Azure Active Directory (AAD). This post is sponsored by ManageEngine Multi-factor authentication is a relatively intuitive acronym. Think of a factor as an identifier you use to prove who you are. The most common factor is a password. When you sign in with a username, you need to prove to the authentication engine that you are authorized to use that username. And only you. And that the associated password matches that held for the account in the database. Going back to how things were from the start, the password was essential and it was the only factor you needed to access 'secure' systems. Today, passwords can be impersonated, guessed, and cracked. So, we progressed logically by inventing and eventually requiring a second (or third) factor, thus multi-factor authentication was born. The additional factors can be push notifications to the Microsoft Authenticator app, a physical security key (YubiKey, for example), a fingerprint, or an SMS text... --- ### Microsoft to Add IPv6 Support to Azure Active Directory in March - Published: 2023-01-12 - Modified: 2023-01-12 - URL: https://petri.com/microsoft-ipv6-support-azure-active-directory/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure AD, News - Article Type: News Microsoft has announced that it’s bringing Internet Protocol version 6 (IPv6) support to its Azure Active Directory services. The company plans to roll out IPv6 support to all enterprise customers in a staggered manner on March 31. With this release, users will be able to access Azure Active Directory (AD) services through IPv6, IPv4, or dual-stack endpoints. “We're excited to bring IPv6 support to Azure Active Directory (Azure AD), to support customers with increased mobility, and help reduce spending on fast-depleting, expensive IPv4 addresses,” Microsoft explained. How to prepare for the upcoming IPv6 change in Azure AD Microsoft says that IPv6 support might be a major change for some customers, and recommends IT administrators to prepare in advance. First, customers who use named locations will need to determine egress IPv6 addresses, and then update Review and update existing named locations to add the identified IPv6 ranges. Meanwhile, organizations that use Conditional Access (CA) policies should first identify the usage of named locations as a condition. Then, they will need to update existing CA location-based policies to meet compliance requirements. Microsoft explained that Exchange Online accounts for the majority of the IPv6 traffic that’s proxied to Azure Active Directory. “When available, Exchange will prefer IPv6 connections. So if you have any Conditional Access policies for Exchange, that have been configured for specific IPv4 ranges, you’ll want to make sure you’ve also added your organizations IPv6 ranges,” Microsoft added. It is important to note that IPv6 addresses could automatically get triggered in... --- ### How to Easily Edit the Hosts File in Windows 11 - Published: 2023-01-12 - Modified: 2024-09-04 - URL: https://petri.com/easily-edit-the-hosts-file-in-windows-11/ - Categories: Windows 11, Windows Client OS - Tags: DNS, hosts file, Windows, Windows 11 - Article Type: How To In this article, you will learn how to edit the Windows 11 hosts file. There are several easy ways that you can edit the file, and in this article, I will take you through each method step-by-step. In the early days of the Internet, there was just one 'hosts' file that was used to match computer names to IP addresses. All devices connected to the Internet are represented by an IP address. An IP address might look something like this: 172. 217. 23. 238. As you can see, it would be difficult to remember the IP address of every device connected to the Internet! So, the hosts file contained a phonebook-like directory of IP addresses mapped to computer hostnames. As the Internet developed and more devices were connected in different geographical locations, it was no longer practical to maintain a single hosts file. The Domain Name System (DNS) was created in 1984 to provide devices connected to the Internet with a way to look up hostnames by querying a set of distributed servers. And that is how the Internet works to this day. Perhaps the easiest way to view and/or edit the hosts file is to use the new Hosts File Editor in Microsoft PowerToys. But if you want more information about what the Hosts file is and how to edit it manually, skip to the next section. Quickly view and edit the hosts file using Microsoft PowerToys Hosts File Editor tool PowerToys is a free set of tools for sysadmins and... --- ### Microsoft 365 to Launch New $1.99/Month Basic Subscription with 100 GB of OneDrive Storage - Published: 2023-01-11 - Modified: 2023-01-11 - URL: https://petri.com/microsoft-launch-1-99-month-basic-subscription/ - Categories: Active Directory (AD) - Tags: Microsoft 365, News - Article Type: News Microsoft has announced its plans to launch a new Microsoft 365 Basic tier later this month. The affordable plan costs $1. 99 per month (or $19. 99 per year), and includes 100GB of OneDrive cloud storage as well as an ad-free experience in the Outlook web app, with additional security features to follow later this year. Microsoft highlighted that Microsoft 365 Basic subscribers will get access to the web-based Office apps. Users will also be able to contact support for Windows 11 and Microsoft 365 via phone and online chat. However, it doesn’t include the Office desktop apps already available for Microsoft 365 Personal and Family subscribers. “Initially, Microsoft 365 Basic will include essential peace of mind benefits like 100 gigabytes (GB) of cloud storage, ad-free and secure email with Outlook, and access to support experts for help with Microsoft 365 and Windows 11. And we plan to make Microsoft 365 Basic even better with advanced security features like ransomware recovery and password-protected sharing links in OneDrive later in 2023,” said Liat Ben-Zur, CVP for Modern Life, Search, and Devices. Microsoft 365 Basic to launch later this month It is important to note that Microsoft 365 Basic will replace Microsoft’s 100 GB OneDrive plan on January 30. The company will automatically upgrade all subscribers of its standalone OneDrive plan to Microsoft 365 Basic. However, this change will not impact Microsoft 365 Personal and Microsoft 365 Family plans. Microsoft mentioned that it will roll out a simplified experience to let users view, upgrade,... --- ### Microsoft to Add Some Popular Teams Features to a New Premium Subscription - Published: 2023-01-11 - Modified: 2023-01-11 - URL: https://petri.com/microsoft-teams-features-premium-subscription/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Last month, Microsoft launched a new Teams Premium plan in preview as an add-on for commercial customers. Now, the company has quietly announced that it’s moving some existing features available for Microsoft 365 subscribers to the costly Premium edition (via The Register). Microsoft first unveiled its Teams Premium add-on at its Ignite 2022 conference in October last year. It comes with new AI-powered features such as custom meeting branding, intelligent meeting recap, and live translations. There are also some new security features that let users add watermarks to protect sensitive content. Microsoft has recently updated its licensing documentation to indicate that Microsoft Teams Premium will soon provide exclusive access to several popular features. The list includes live translated captions, custom Together Mode scenes, and timeline markers in Teams recordings for participants joining or leaving the meeting. Microsoft Teams Premium will also include virtual appointment options like SMS notifications, scheduled queue view, and organizational analytics. “When Teams Premium becomes generally available to purchase, there will be a 30-day grace period for admins to purchase Teams Premium. After the 30-day grace period, users will lose access to features previously available in Teams without the Teams Premium add-on, unless the admin purchases and assigns Teams Premium licenses for their users,” Microsoft explained on a support page. Virtual appointments Microsoft Teams Premium pricing details will be revealed next month The Microsoft Teams Premium offering is currently available with a free 30-day trial. However, Microsoft could charge $10 per user per month once it hits... --- ### Microsoft Releases Exchange Server Updates to Improve Security of PowerShell Payloads - Published: 2023-01-11 - Modified: 2023-01-11 - URL: https://petri.com/microsoft-exchange-server-updates-powershell-payloads/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Microsoft has released yesterday the January 2023 Security Updates (SUs) for all supported versions of the Exchange Server. The latest updates aim to address critical security vulnerabilities that could allow attackers to gain system privileges in Exchange Server 2013, 2016, and 2019. Microsoft also highlighted that the January 2023 updates for Exchange Server should improve the security for PowerShell payloads. The company has introduced a new feature that lets IT admins configure certificate-based signing of PowerShell serialization payloads. It’s designed to protect customers against cyber attacks on serialized data. “Serialization is the process of converting the state of an object into a form (stream of bytes) that can be persisted or transmitted to memory, a database, or a file. PowerShell, for example, uses serialization (and its counterpart deserialization) when passing objects between sessions,” the Exchange team explained. Update paths How to enable certificate signing of PowerShell serialization payload Microsoft notes that it’s up to the IT admins to manually enable the certificate-based signing feature in Exchange Server 2013, 2016, and 2019. However, administrators will need to ensure that the January 2023 security updates are installed on all Exchange-based servers. Additionally, Microsoft warned that those who turn on the feature before updating the servers might encounter deserialization failures or other problems. The Exchange team plans to enable certificate signing of PowerShell serialization payload by default in an upcoming update. Microsoft has acknowledged a known issue with the latest Exchange Server security updates. Specifically, the bug causes rendering issues with web page... --- ### Microsoft's January Patch Tuesday Updates Fix 98 Windows Vulnerabilities > This month’s Patch Tuesday updates include fixes for 98 vulnerabilities in Windows, Office, Microsoft Exchange Server, and more. Yesterday also marked the end of support for Windows 7, Windows 8.1, and Windows RT 8.1. - Published: 2023-01-11 - Modified: 2023-01-20 - URL: https://petri.com/windows-patch-tuesday-updates-january-2023/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released yesterday the January Patch Tuesday updates for Windows 11 and Windows 10. Yesterday also marked the end of support for Windows 7, Windows 8. 1, and Windows RT 8. 1. Microsoft had already ended support for Windows 7 back in January 2020, but the company is now sunsetting its Extended Security Updates program for the OS released back in 2009.   This month’s Patch Tuesday updates include fixes for 98 vulnerabilities in Windows, Office, Microsoft Exchange Server, and more. The company also addressed an issue affecting the Local Session Manager (LSM), and it also fixed a known issue that was preventing apps that use Microsoft Open Database Connectivity (ODBC) SQL Server Driver (sqlsrv32. dll) to connect to databases. 98 vulnerabilities fixed with the January 2023 Patch Tuesday updates Among the 98 vulnerabilities that Microsoft fixed this month, 11 are rated “Critical,” and there’s also one “Important” vulnerability that is already being exploited by attackers. “This volume is the largest we’ve seen from Microsoft for a January release in quite some time,” the Zero Day Initiative emphasized yesterday. Let’s take a closer look at some of the most important vulnerabilities Microsoft fixed this month: CVE-2023-21674: This Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability is already exploited by attackers to gain SYSTEM privileges. CVE-2023-21561: This Microsoft Cryptographic Services Elevation of Privilege Vulnerability could be exploited by attackers to execute code or access resources at a higher integrity level than that of the AppContainer execution environment. CVE-2023-21743: This SharePoint Server Security... --- ### Microsoft Discontinues Support for Windows 7 ESUs and Windows 8.1 - Published: 2023-01-10 - Modified: 2023-01-10 - URL: https://petri.com/microsoft-ends-support-windows-7-windows-8-1/ - Categories: Windows 7, Windows 8 - Tags: News, Windows 7, Windows 8 - Article Type: News Microsoft is finally ending support for Windows 7 Extended Security Updates (ESUs) and Windows 8. 1. This means that the company will no longer provide software updates and technical assistance to PCs running legacy versions of Windows operating systems. Microsoft announced the end of mainstream support of Windows 7 in January 2020. However, the company introduced an extended security update (ESU) program for businesses that were not ready to upgrade to Windows 10. It allowed customers to pay for crucial security updates and technical support for three additional years. Starting today, Microsoft is ending support for these extended security updates for Windows 7 Professional and Enterprise editions. Users who will continue to run Windows 7 would be vulnerable to security vulnerabilities and other threats. Microsoft advises Windows 7 and Windows 8. 1 users to upgrade to Windows 10 or 11 Meanwhile, Microsoft is discontinuing support for Windows 8. 1 today. The company isn’t providing an ESU program for these operating systems due to low usage. It is highly recommended that Windows 7 and 8. 1 users should upgrade their PCs to Windows 10 or 11. Keep in mind that most Windows 7 or 8. 1 devices don’t support the minimum hardware requirements for Windows 11. This means that affected customers would need to purchase a new Windows 11 machine. "If devices do not meet the technical requirements to run a more current release of Windows, we recommend that you replace the device with one that supports Windows 11," Microsoft explained in a support document. It... --- ### Microsoft Teams, Viva, and Outlook Add New Collaboration Features for Shared Devices - Published: 2023-01-10 - Modified: 2023-01-10 - URL: https://petri.com/microsoft-updates-teams-viva-outlook/ - Categories: Microsoft 365 - Article Type: News Microsoft has announced a handful of new features across Microsoft Teams, Viva, and other Microsoft 365 apps. The new solutions are designed to help retailers and frontline workers streamline operations, improve communication, and boost security for shared devices. First off, Microsoft has released new updates to improve the Walkie-Talkie feature in Microsoft Teams. The prompt to join feature can now automatically select the last channel used by the Walkie-Talkie device. The transmission usage report feature will allow IT admins to get insights about call quality and overall usage next month. These Walkie-Talkie features will be available for devices sold by popular vendors like Zebra Technologies, Samsung, and Honeywell. Microsoft has partnered with a human capital and workforce management firm UKG to launch a Teams Shifts connector for UKG Dimensions. It's designed to make it easier for frontline workers to perform various tasks such as clock in and out, view and accept open shifts, and request time off. The Teams Shifts connector for UKG Dimensions Microsoft announced some improvements for the Updates app that launched in Microsoft Teams in May 2022. The Updates app is getting support for deep link sharing that will let IT admins create links for particular updates and share them with end users. Next month, the Updates Power Automate connector will help organizations to automate their workflows with triggers and actions. Viva Engage adds support for Stories Microsoft unveiled a couple of enhancements coming to its Viva employee experience platform. The company has released a new Stories... --- ### Microsoft Acquires Fungible to Bolster Azure Networking and Storage - Published: 2023-01-10 - Modified: 2023-01-10 - URL: https://petri.com/microsoft-acquires-fungible/ - Categories: Microsoft Azure - Tags: cloud computing, Microsoft Azure, News - Article Type: News Microsoft has announced the acquisition of Fungible, a start-up selling composable disaggregated infrastructure solutions for data centers. The company plans to use the Fungible technology and team to boost the Microsoft Azure cloud infrastructure. Fungible launched its data processing unit (DPU) back in 2016 to enhance the efficiency of data-centric computations within server nodes in scaled-out data centers. DPUs are programmable processors used to decouple network and communication tasks from processing tasks. It helps to reduce the workload on CPUs to focus on data processing tasks such as network routing and security. Microsoft explained that the Fungible team will join its own data center infrastructure engineering teams as a part of the deal. The company already uses DPUs in Azure, but this new acquisition should improve network and storage performance in data center infrastructure. “Fungible’s technologies help enable high-performance, scalable, disaggregated, scaled-out data center infrastructure with reliability and security,” said Girish Bablani, CVP of Microsoft’s Azure Core division. “Today’s announcement further signals Microsoft’s commitment to long-term differentiated investments in our data center infrastructure, which enhances our broad range of technologies and offerings including offloading, improving latency, increasing data center server density, optimizing energy efficiency and reducing costs. ” Fungible is Microsoft's second data center-centric acquisition in recent months Microsoft has yet to disclose the terms of the deal, and it remains unclear when Fungible’s DPU technology would be integrated into Microsoft’s data centers. Fungible's solutions have already been used by popular companies such as VMware and IBM. We hope that Microsoft’s... --- ### What Are the Best Hyperconverged Infrastructure (HCI) Solutions on the Market? > Hyperconverged infrastructure platforms allow businesses to virtualize servers, storage, and underlying networks and implement a software-driven control of their IT environment. In this article, we look at the top 5 HCI platforms and explain how they can help to reduce your overall IT costs. - Published: 2023-01-09 - Modified: 2024-11-19 - URL: https://petri.com/top-5-hyperconverged-infrastructure-platforms/ - Categories: Cloud Computing, Hardware, Networking - Tags: Azure, Azure Stack HCI, Hyperconverged Infrastructure - Article Type: Overview Hyperconverged infrastructure (HCI) is a software-defined infrastructure that virtualizes and packages all the components of a conventional data center including network, storage, and computing resources. Hyperconverged infrastructure platforms allow businesses to virtualize servers, storage, and underlying networks and implement a software-driven control of their IT environment. In this article, we’ll look at the top 5 hyperconverged infrastructure platforms and explain how they can help to reduce your overall IT costs. What are the benefits of using hyperconverged infrastructure (HCI) platforms? Hyperconverged infrastructure platforms allow businesses to reduce their operational, infrastructure setup, and maintenance costs. Here are some of the other key benefits of using HCI. Easy management Managing, operating, and monitoring an hyperconverged infrastructure platform is much easier than handling a traditional infrastructure. Since it is software-driven, IT admins can configure the HCI system to auto-assign resources, perform redundant tasks, eliminate management siloes, and perform data backup and restoration. Scalability Adding or removing nodes from an HCI cluster is easy and convenient. You can start small when your business is in its starting phases and scale out as you grow. Hyperconverged infrastructure platforms allow you to do these configuration changes without heavy upfront infrastructure and maintenance expenses. Moreover, as HCI nodes are pre-configured and pre-optimized, IT admins can easily add or remove them from the clusters without any integration challenges. Performance Hyperconverged infrastructure platforms are capable of running multiple different applications and application types simultaneously. The software-defined nature of HCI platforms can help you to easily accommodate changing performance... --- ### Microsoft is Reportedly Bringing ChatGPT Features to Outlook, Word, and PowerPoint - Published: 2023-01-09 - Modified: 2023-01-09 - URL: https://petri.com/microsoft-chatgpt-outlook-word-powerpoint/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook, PowerPoint, Word - Article Type: News Microsoft is reportedly planning to integrate OpenAI’s ChatGPT technology into its Office applications. A new report from The Information suggests that the new AI-powered features will allow users to automatically generate text with natural language prompts in Outlook, Word, and PowerPoint. OpenAI first made its ChatGPT tool available for public testing back in November 2021. It’s a natural language processing service that lets users have human-like conversations and generate answers across a variety of topics. Some people have also used it to create cover letters, resumes, college essays, poems, and lyrics. However, OpenAI has acknowledged that ChatGPT sometimes tends to generate inaccurate information. A separate report published last week claimed that Microsoft is collaborating with OpenAI to bring ChatGPT capabilities into Bing search. Now, The Information reports that the company has already leveraged OpenAI’s text-generating GPT model to improve the autocomplete feature in Microsoft Word. Microsoft has also incorporated this technology to enhance the search results in Outlook. “Microsoft has worked on incorporating OpenAI’s language-understanding model, GPT, to provide more useful search results when Outlook email customers look for information in their inboxes,” The Information explained. “For instance, GPT can figure out what emails the customer might be searching for even if they don’t type the exact keywords that are in the relevant emails, two people with direct knowledge of the plan said. ” Microsoft could grow Office market share with OpenAI’s ChatGPT technology Interestingly, Microsoft also analyzed how OpenAI’s GPT technology could be used to enhance suggested replies in emails... . --- ### Amazon Cuts 18,000 Jobs From its Global Workforce > Amazon has announced that it was laying off 18,000 of its employees. The 18,000 layoffs represent roughly 6 percent of Amazon’s workforce, and most of the cuts will affect the company's consumer retail business and human resources divisions. - Published: 2023-01-09 - Modified: 2023-01-09 - URL: https://petri.com/amazon-cuts-18000-jobs/ - Categories: Cloud Computing - Tags: Amazon, AWS - Article Type: News Further fueling fears of a coming recession, Amazon has announced that it was laying off 18,000 of its employees. The 18,000 layoffs represent roughly 6 percent of Amazon’s workforce. Amazon, headquartered in Seattle, is the second largest employer in the US behind Walmart. The online retailer employs 1. 5 million people globally. Most of the cuts will come from its consumer retail business and its human resources divisions. The profitable Amazon Web Services (AWS) cloud division was essentially untouched by this round of layoffs. In addition, hourly warehouse workers are not included in the layoffs -- those jobs are typically continually cut back through high attrition. Amazon hired a lot of new employees during the pandemic (image credit: Amazon. com) Why is Amazon laying off all these employees? Some analysts say the layoffs were inevitable because of the overly aggressive hiring that Amazon did to deal with the pandemic. Amazon recorded $127. 1 billion in sales for the third quarter, which was up 15 percent from the prior year, showing that the nation’s high inflation did not reduce consumer spending. Amazon was also profitable, making $2. 9 billion after two quarters of losses. However, this past October, Amazon disappointed Wall Street with a holiday season forecast that missed analysts’ expectations. As a result, Amazon’s stock fell about 50% last year. Amazon also recently cautioned investors that future growth could weaken to its slowest rate since 2001. In a memo to its employees Andy Jassy, Amazon CEO, stated, “This year’s review has been more difficult... --- ### Amazon Simple Storage Service (Amazon S3) Now Encrypts New Objects By Default - Published: 2023-01-06 - Modified: 2023-01-06 - URL: https://petri.com/amazon-s3-encrypt-objects-by-default/ - Categories: Amazon Web Services - Tags: Amazon Web Services, encryption, News - Article Type: News Amazon Web Services announced yesterday that Amazon Simple Storage Service (Amazon S3) can now encrypt all new objects by default. The company says that S3 can automatically apply server-side encryption (SSE-S3) for each new object without any performance degradation. Amazon Simple Storage Service (also known as Amazon S3) is a web-based cloud storage service. It’s designed to securely back up and archive applications and data on Amazon Web Services. It provides support for several security and compliance certifications and helps to make web-scale computing easier for developers. Some popular use cases include software delivery, disaster recovery, application hosting, and more. Currently, AWS provides three encryption methods that enable customers to encrypt their objects. These include default S3 default encryption (SSE-S3), AWS Key Management Service keys (SSE-KMS), and customer-provided encryption keys (SSE-C). It’s also possible to protect the client side with add an additional layer of encryption using the Amazon S3 encryption client and other libraries. AWS server-side encryption How does the Amazon S3 Server Side Encryption work? Previously, IT Pros had to ensure that SSE-S3 is properly configured on all new S3 buckets. The latest update brings a “zero-click” approach to apply the base level of encryption on each bucket. Moreover, it makes it easier for organizations to meet their compliance requirements. “Amazon S3 Server Side Encryption handles all encryption, decryption, and key management in a totally transparent fashion. When you PUT an object and request encryption (in an HTTP header supplied as part of the PUT), we generate a... --- ### Microsoft Offers Workaround for Bug Breaking Database Connections for Windows Apps - Published: 2023-01-06 - Modified: 2023-01-06 - URL: https://petri.com/microsoft-bug-database-connections-windows-apps/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Last month, Microsoft acknowledged that some Windows applications might experience problems while connecting to databases through ODBC (Open Database Connections). Now, the company has provided a workaround solution to address this problem on Windows 11 and Windows 10 PCs. Microsoft says that the OBDC SQL Server bug specifically affected users who installed the November Patch Tuesday updates released on Windows PCs. Users reported that apps that use the ODBC SQL Server Driver failed to access databases with an error message "Message: Protocol error in TDS Stream" or "Message: Unknown token received from SQL Server. " The problem impacted client machines running Windows 11 versions 22H2 and 21H2, Windows 10 versions 22H2, 21H1, and 20H2, Windows 8. 1, and Windows 7 SP1. Moreover, it affected Windows Server 2022, 2019, and 2016, Windows Server 2012 and 2012 R2, Windows Server 2008 R2 SP1, and Windows Server 2008 SP2. How to fix SQL Server database connection issues on Windows PCs Fortunately, Microsoft has provided a workaround to help users mitigate the problem on their Windows PCs. Users will need to install Microsoft ODBC Driver 17 for SQL Server and choose it for use with the application using Data Source Name (DSN). However, the apps that are unable to use DSN should be modified to use it for selecting ODBC connections or users will need to install the latest ODBC driver. Microsoft says that it’s working to address this issue and a fix should arrive in the near future... . --- ### Using Autodesk Drive to Collaborate on Design and Model Data in the Cloud - Published: 2023-01-06 - Modified: 2023-01-06 - URL: https://petri.com/what-is-autodesk-drive/ - Categories: Cloud Computing - Tags: AutoCAD, Autodesk, cloud computing, storage - Article Type: Overview Autodesk Drive is a cloud storage platform that allows individuals and small teams to collaborate on design data in the cloud. In this article, we’ll detail how Autodesk Drive works and how to get started with the popular storage and collaboration tool. Autodesk Drive is available on the web, but there’s also an Autodesk Desktop Connector app for Windows that provides access to your cloud files while maintaining file relationships. You'll need a subscription to use the service, and we’ll have more details on pricing below. What is Autodesk Drive? Autodesk Drive is a cloud-based platform designed for sharing and collaborating on design files. The service supports more than 60 file types, and users can edit them, organize them into folders, and download them if needed. The service supports a wide range of 2D and 3D file formats including DWG, IAM, RVT, IPT, DWF, PDF, JPG, and more. It's also designed to manage the workflows of your CAD (Computer-Aided Design)/CAM (Computer-Aided Manufacturing) and BIM (Building information modeling) projects. A focus on CAD/CAM and BIM projects Autodesk Drive allows individuals and teams of any size to work on 2D/3D design files and model data in the cloud. Its team collaboration features also include external sharing, which means you can easily provide access to your projects to external parties. Being a CAD-aware cloud solution, Autodesk Drive enables organizations to work on data models and designs within a web browser without installing any plug-ins. In the construction field, engineers may need to... --- ### Windows Server 2012 Extended Support Ends in October - Published: 2023-01-05 - Modified: 2023-01-05 - URL: https://petri.com/windows-server-2012-extended-support-ends-october/ - Categories: Windows Server 2012 - Tags: News, Windows, Windows Server 2012 - Article Type: News Microsoft is set of end extended support for Windows Server 2012 and Windows Server 2012 R2 in October 2023. The company is reminding customers that it will no longer provide software updates, security patches, and technical support after this date. It's been more than four years since Microsoft announced the end of mainstream support for Windows Server 2012. However, the company decided to offer extended support to customers that were not yet ready to upgrade to a newer version of Windows Server. It provided small businesses and organizations some extra time to plan their migrations. “Windows Server 2012 and Windows Server 2012 R2 will end on October 10, 2023. After this date, these products will no longer receive security updates, non-security updates, bug fixes, technical support, or online technical content updates.  Microsoft has migration guidance for both cloud and on-premises solutions,” the company explained. Microsoft recommends its on-premises customers to move to Windows Server 2022. Those who continue to use outdated versions will leave their machines vulnerable to phishing attacks, malware, and other security threats. Meanwhile, organizations can choose to pay for Extended Security Updates (ESUs) that should provide access to critical security fixes for up to three years. However, they will need to pay annually to receive ESUs, with the prices going up every year until October 13, 2026. Microsoft offers free ESUs to Windows Server 2012 customers migrating to Azure Meanwhile, Microsoft says that customers can also choose to migrate their workloads to Azure VMs in order to qualify for... --- ### What's New with Microsoft Power Platform in December 2022 > As we all move into the new year, let's take a look at the latest updates Microsoft announced for its Power Platform in December including Power BI Interface changes and real-time app co-authoring in model-driven apps. - Published: 2023-01-05 - Modified: 2023-01-05 - URL: https://petri.com/microsoft-power-platform-december-2022-updates/ - Categories: Power Apps, Power Platform - Tags: power apps, Power Automate, Power BI - Article Type: News Happy new year, Power Platform Community!  As we all move into the new year, let's take a look at the latest updates Microsoft announced for its Power Platform in December. We'll be highlighting the ones we are most excited about in this article. Power BI Slicer Type The Power BI team has moved the Slicer Type formatting option to the Format pane instead of accessing it through the visual header. Before, we would hover over the visual to choose between Dropdown or List, for example. Now, we change the slicer type in the Format pane. Not only is this change more intuitive, but it will also be more efficient when changing between slicer types. And for all you mobile users, this move to the Format Pane allows access to this setting. New slicer type formatting location For astute readers, you may have noticed a new slicer type here: Microsoft has listened to our user feedback and renamed the horizontal orientation of a slicer to “Tile. ” Power BI DAX functions Many of us who are familiar with SQL will recognize the concept of three new functions, INDEX, OFFSET, and WINDOW. The added benefit of evaluation context using DAX means that we can perform comparison calculations as they relate in some way to our current row. INDEX uses absolute positioning, OFFSET uses relative positioning, and WINDOW uses either. For example, if we want to find the highest-paid NFL players by position for the Kansas City Chiefs, we could use INDEX to order... --- ### PyTorch Discloses Internal Dependency Compromised with Malicious Code - Published: 2023-01-04 - Modified: 2023-01-04 - URL: https://petri.com/pytorch-dependency-attack-malicious-code/ - Categories: Developer, Security - Tags: linux, News, Python, Security - Article Type: News Last week, PyTorch identified a supply chain attack that potentially caused developers to download a compromised PyTorch dependency. The PyTorch team published an advisory to warn developers that the package includes malicious code to steal system data. PyTorch is an open-source framework that allows Python developers to build machine-learning applications. It was mainly developed by the Facebook AI Research team and is widely used in industry and academia. PyTorch helps organizations and researchers to perform high computing tasks such as reinforcement learning, computer vision, and natural language processing. On 26 December 2022, an unknown malicious actor uploaded a compromised torchtriton package (an internal dependency) with a duplicate name to the Python Package Index (PyPI) repository. It was designed to harvest system data and sensitive files from the victim’s machine and then send it to a specific domain via encrypted DNS queries. “Since the PyPI index takes precedence, this malicious package was being installed instead of the version from our official repository. This design enables somebody to register a package by the same name as one that exists in a third party index, and pip will install their version by default. This malicious package has the same name torchtriton but added in code that uploads sensitive data from the machine,” the PyTorch team wrote. Interestingly, the person who claims to be behind this incident stated that his actions were a part of ethical research. He has since acknowledged his mistake and apologized to all affected developers. Mitigations for python environments affected... --- ### How To Use Microsoft PowerToys to Improve Productivity - Published: 2023-01-04 - Modified: 2023-01-04 - URL: https://petri.com/microsoft-powertoys/ - Categories: Windows 11 - Tags: PowerToys - Article Type: Overview Microsoft PowerToys is a free download for Windows that adds features for power users that are not included in Windows 10 or Windows 11 by default. In this article, I'll show you my favorite PowerToys tools and why once you start using them, you won't be able to live without them. What is Microsoft PowerToys? Microsoft PowerToys is a free set of tools for Windows 10 and Windows 11. The tools are designed to improve your workflows in Windows for increased productivity. You can download PowerToys from GitHub. Alternatively, PowerToys can also be installed using the Microsoft Store. Download PowerToys from the Microsoft Store (Image Credit: Petri/Russell Smith) What tools are included in PowerToys? Currently, PowerToys includes 17 tools: Always On TopAwakeColor PickerFancyZonesFile LocksmithFile Explorer add-onsHosts File EditorImage ResizerKeyboard ManagerMouse utilitiesPowerRenamePowerToys RunQuick AccentScreen RulerShortcut GuideText ExtractorVideo Conference Mute17 tools that make up Microsoft PowerToys Most of the tools are self-explanatory from their name. But others require a little explanation. FancyZones FancyZones is useful for those with large displays. It’s a window manager the lets you customize layouts for arranging and snapping windows, and to restore your layouts quickly. Awake Awake lets you override the selected power plan settings in Windows to make sure your PC doesn’t go to sleep while you’re performing an important task. File Locksmith File Locksmith lets you check which files are currently in use, and by which processes, through a Windows shell extension. File Locksmith (Image Credit: Petri/Russell Smith) Hosts File Editor If you don’t... --- ### Microsoft Introduces Automate Tab in Excel for Windows and Mac - Published: 2023-01-04 - Modified: 2023-01-04 - URL: https://petri.com/microsoft-excel-automate-tab-windows-mac/ - Categories: Microsoft 365 - Tags: macOS, Microsoft 365, Microsoft Excel, News, Windows - Article Type: News Microsoft announced yesterday that it has started rolling out the Automate tab to Excel for Windows and macOS. The latest update lets desktop users create and edit Office scripts to automate their repetitive spreadsheet tasks or workflows. Up until now, the Automate tab was only available for customers in Excel on the web. With this release, the Excel desktop app helps users to record their actions as a reusable script and then play that script when needed to boost efficiency. “Enhance your workbook by connecting popular applications like Microsoft Teams or SharePoint to build workflows with Power Automate. Combine these productivity technologies to have Power Automate schedule your Office Script. This tab represents the first stage of uniting automation solutions across platforms. We’re eager to hear your feedback! ,” Microsoft explained. https://www. youtube. com/watch? v=2-247I8DEAU How to create Office scripts to automate tasks in Excel for Windows and macOS To create a new Office script in Excel for Windows or macOS, users will need to open a workbook and navigate to the Automate tab. Then, click the New Script button to create a new script. Users can also select the Edit option available on the script’s details page to modify an existing Office script. Once created, Excel users can view and run scripts by clicking the Automate tab. Now, choose any script from the All Scripts task pane or gallery. Finally, click the Run button available on the script’s detail page. Microsoft says that this update is currently rolling out to all businesses with a Microsoft... --- ### How to Create Conditional Access Policies using PowerShell > This article explains how to create Conditional Access policies using PowerShell instead of the graphical user interface. By using PowerShell, IT Pros can easily replicate the same Conditional Access policies across multiple tenants. - Published: 2023-01-04 - Modified: 2023-01-04 - URL: https://petri.com/powershell-create-conditional-access-policies/ - Categories: Endpoint Protection, Microsoft Entra ID (Azure AD), PowerShell, Security - Tags: Azure Active Directory, Azure Active Directory Conditional Access, conditional access, Endpoint security, PowerShell When working in a Microsoft 365 environment, IT pros can use Conditional Access policies to control access to their tenant. In this article, we’ll detail how to create Conditional Access policies using PowerShell instead of the graphical user interface, and why using PowerShell to do that can help you save some time Conditional Access policies can assist IT and security teams to further secure all access and control to a tenant, enforcing items such as multi-factor authentication.  In a previous article, I explained why organizations should restrict access to Office 365 using conditional access policies, and you may want to check it out before reading further. The advantages of creating Conditional Access policies with PowerShell Conditional access policies are straightforward if-then statements. For example, if a user needs to access SharePoint Online, they must complete a security action. Conditional access policies make decisions based on signals such as users or group memberships, IP location information, the devices or applications used to connect to services, and many others. In addition to providing a final decision for granting or blocking access to a tenant, Conditional Access policies also enforce extra checks. The possible requirements you can configure include multi-factor authentication, restricting access to devices marked as compliant, requiring Hybrid Azure AD joined devices, using an approved client app, or utilizing an app protection policy. You can create Conditional Access policies using the graphical user interface within Azure Active Directory and Microsoft Endpoint Manager. However, you can also use PowerShell, Microsoft Graph PowerShell,... --- ### Bitwarden – An Open-Source Alternative to LastPass for Business and Personal Use - Published: 2023-01-03 - Modified: 2023-01-24 - URL: https://petri.com/bitwarden-alternative-to-lastpass/ - Categories: Security - Tags: Bitwarden, LastPass, password manager, Security - Article Type: Overview I’ve been using Bitwarden for the last couple of years and in this overview, I’ll look at why you might consider Bitwarden as an alternative to proprietary solutions like LastPass and 1Password. And I’ll give an outline of the pricing, architecture, and features for business and personal use. What is Bitwarden? Bitwarden is an open-source password manager. Password managers let you easily create and securely store long and complex passwords for your websites and applications. It’s important that on each site you register for, that you use a unique password. And preferably one that is long and complex; think 16 characters or more with a mixture of upper and lower case, numbers, and special characters. Using a different password for each site reduces your exposure should a password be compromised. And long, complex passwords are harder for hackers to guess in brute force attacks. It would be impossible to remember a different password for each site. That is why many people use the same password every time they register on a website. Is Bitwarden better than Google Chrome’s built-in password manager? Most browsers have some kind of password management solution built-in. For example, Microsoft Edge uses an app called Authenticator, which gives you access to all your passwords on iOS and Android, and in the browser. Google Chrome also has a built-in password manager. The primary advantage of using a third-party password manager like Bitwarden is that you don’t get locked into a particular browser. Password managers work with... --- ### Microsoft Teams Added New Delete Chat Feature and 800+ Emoji Reactions in December 2022 - Published: 2023-01-03 - Modified: 2023-01-03 - URL: https://petri.com/microsoft-teams-delete-chat-december-2022/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has recently detailed the latest round of updates made to its Teams collaboration service in December 2022. It’s been a quiet month for Microsoft due to the holiday season, but the company announced some interesting improvements like a delete chat feature, over 800 emoji reactions, new Adobe Acrobat integration, updates for Teams devices, and more. So, let’s dive in! New chat features in Microsoft Teams First off, Microsoft has introduced a new feature that finally allows users to delete chat conversations in Microsoft Teams. The delete chat feature is available for 1:1, group, and meeting chats in the Teams desktop, web, and mobile clients. Another new capability for chats is the ability to react to messages with over 800 emojis. Microsoft has also added the ability to add new chat participants with @mentions. There is a new AI-powered feature that helps users initiate new chats by recommending participants based on previous collaborations. Microsoft is also expanding support for the resource-specific consent (RSC) permissions model to chat and channel messages. Other updates include a new Sign Language View and always-on captions in meetings. New features for Teams devices There are several improvements for Microsoft Teams Rooms devices. Indeed, Microsoft introduced new features to improve the touch and collaboration experience in Teams Rooms on Android. The list includes Microsoft Whiteboard updates, a redesigned share menu, hardware occupancy sensor integration, and more. Chat bubbles are now supported during meetings in Microsoft Teams Rooms on Android. Speaking of devices, Microsoft unveiled a few... --- ### What’s New in Windows – December 2022 - Published: 2022-12-30 - Modified: 2022-12-30 - URL: https://petri.com/whats-new-in-windows-december-2022/ - Categories: Windows 11 - Article Type: News December was relatively quiet as Microsoft shuts down for the last two weeks of the year. But we did get some interesting information about updates coming to Windows 11 in 2023, OneNote for Windows will get support for vertical tabs, Microsoft Edge 110 will drop support for Windows 7 and Windows 8/8. 1, and more! So, let’s get started! Windows 11 getting new ‘Moment’ update in early 2023 In some Windows 11 news, and as expected, Microsoft is planning to roll out the next ‘moment’ update for Windows 11 in February/March 2023. According to Zac Bowden of Windows Central, the moment could include: changes to the taskbar that are being tested now in Insider builds, like a tablet-optimized taskbar, redesigned Search button, Windows Studio Effects in Quick Settings, and some changes to the System Tray overflow menu energy recommendations in the Settings app full-screen Widget board support search in Task Manager voice access improvements Bowden also expects that another ‘moment’ will follow early summer. Windows 11 23H2 may not contain any major new features But most interesting, Bowden claims that Windows 11 23H2 likely won’t contain any major new features and it may be shipped as a small cumulative update much like ‘moments’ have been. Microsoft testing tabs in Notepad Spotted by Windows Central, a Senior Product Manager at Microsoft tweeted that ‘Notepad in Windows 11 now has tabs’. The tweet was quickly deleted. Microsoft has made various improvements to Notepad over the last years. And tabs has been a... --- ### Microsoft Teams Gets Co-organizer Support for Managing Breakout Rooms - Published: 2022-12-30 - Modified: 2022-12-30 - URL: https://petri.com/microsoft-teams-co-organizer-breakout-rooms/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that brings co-organizer support for managing breakout rooms. The company has recently announced that this feature is rolling out in public preview to the Windows and macOS desktop apps. Just like meeting organizers, Microsoft Teams now allows co-organizers to create and manage Breakout Rooms. The feature also enables co-organizers to add/remove rooms, open/close rooms, rename rooms, assign attendees, and make announcements. Co-organizers can configure Breakout Rooms settings to select additional managers and perform other tasks. “Users assigned as the co-organizers in the main meeting can create and manage breakout rooms on behalf of the organizer. They are also automatically assigned the co-organizer role in breakout room meetings and can access/modify meeting options for any breakout rooms. When rooms are opened, co-organizers will be treated like organizers with regards to the ability to join and move freely between Breakout Rooms,” Microsoft explained. Breakout Rooms in Microsoft Teams Microsoft has also detailed some limitations that are worth noting. At the moment, it’s not possible to create Breakout Rooms ahead of the meeting and pre-assign participants. This capability is only available for co-organizers during Microsoft Teams meetings. Microsoft Teams adds a new paging feature for video gallery in meetings Additionally, Microsoft has announced that support for paging on video gallery is now available in Teams meetings. As shown in the screenshot below, desktop users can use navigation controls to view video feeds that couldn’t fit on the first page of the meeting stage. However, the number... --- ### Report: Windows 11 to Add a Full-Screen Widgets Panel and Other New Features in Early 2023 - Published: 2022-12-29 - Modified: 2022-12-29 - URL: https://petri.com/windows-11-update-full-screen-widgets-panel-2023/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is working on a slew of notable improvements for Windows 11 that are expected to arrive with different “Moment” updates in 2023. Indeed, a new report from Windows Central suggests that the company plans to release the first update for Windows 11 PCs in February or March of next year. Microsoft officially announced the release of Windows 11 version 22H2 (also called the Windows 11 2022 update) in September 2022. It’s the first major feature update to Windows 11 that addresses a lot of early complaints with the initial OS release in October last year. The latest update introduced some most anticipated changes like tabs in File Explorer, a new Photos app, and support for swipe gestures for the notifications and Quick Settings panels. According to Windows Central’s Zac Bowden, the upcoming “Moment 2” update should bring a couple of enhancements to the Taskbar. These include updates to the System Tray overflow menu, a tablet-optimized taskbar experience, and a full-screen widget panel. Microsoft is also expected to add a new Search experience in Task Manager, Voice Access updates, and other minor improvements. Moreover, Microsoft is reportedly working on a Moment 3 update that is scheduled for release in May or June 2023. The company has yet to share details about the new features, but Bowden believes that it will include improvements for dual-screen devices and a better Windows Search interface. Microsoft may also ship the new web-based Outlook desktop client, which should replace the existing Mail and Calendar app... --- ### What Are the Network Requirement Changes in Azure Stack HCI Version 22H2? > Azure Stack HCI version 22H2 brought some significant storage network capacity changes and new network equipment requirements. In this article, we give you a quick overview of the changes IT pros need to take into consideration to implement the latest version of Azure Stack HCI. - Published: 2022-12-28 - Modified: 2023-11-08 - URL: https://petri.com/azure-stack-hci-version-22h2-network-requirements/ - Categories: Azure Stack HCI - Tags: Azure, Azure Stack HCI - Article Type: Overview It’s been more than a month since Azure Stack HCI version 22H2 became generally available. With this latest update for Microsoft’s hyper-converged infrastructure cluster solution, there are some significant changes in storage network capacity and network equipment requirements. In this article, I would like to give you a quick overview of the changes IT pros need to take into consideration to implement the latest version of Azure Stack HCI. Storage network capacity changes with Azure Stack HCI version 22H2 With the release of Azure Stack HCI version 21H2 last year, Microsoft recommended a 25 Gbps bandwidth between all storage network interfaces, even in smaller clusters. With Azure Stack HCI version 22H2, this recommendation has been removed. The minimum interface bandwidth for Azure Stack HCI storage interfaces is now at 10 Gbps. Depending on the cluster size, it often makes sense to have a 25 Gbps bandwidth per interface, especially if you’re using flash storage with clusters above two to three nodes. For medium to larger clusters, a 10 Gbps RDMA (remote direct memory access) connection often becomes a bottleneck for storage replication. Network switch requirements with Azure Stack HCI version 22H2 With the new features coming to Azure Stack HCI version 22H2 such as enhanced Software Defined Networking, Microsoft introduced additional requirements for the switches you use to interconnect Azure Stack HCI nodes. Please be aware that not all of these requirements are necessary for all use cases and scenarios, but if your switch does not support required features,... --- ### PSA: Microsoft to Switch Off Basic Authentication in Exchange Online in January - Published: 2022-12-28 - Modified: 2022-12-28 - URL: https://petri.com/microsoft-switch-off-basic-authentication-exchange-online/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft is once again reminding customers that it will permanently turn off Basic Authentication in Exchange Online in early January. The company is pushing organizations to adopt Modern Authentication (OAuth 2. 0) as soon as possible. Three years ago, Microsoft announced its plans to deprecate Basic Authentication support in favor of secure user authentication techniques. Since then, the company has released security updates to move several Microsoft 365 apps to Modern Authentication, including the Outlook desktop and mobile clients. Microsoft started disabling Basic Authentication support in random Microsoft 365 tenants worldwide in October of this year. Up until now, millions of companies have already moved away from the insecure authentication method, but it seems like many customers are still not ready for the change despite multiple warnings. Consequently, Microsoft allowed IT admins to re-enable select protocols in Exchange Online until the end of the year. Now, Microsoft has issued a final warning that Basic Authentication will be permanently turned off for various protocols in the first week of January 2023. The change will apply to seven email connection protocols, such as POP, IMAP, MAPI, RPC, Offline Address Book, Remote PowerShell, Exchange Web Services, and Exchange ActiveSync. “Beginning in early January, we will send Message Center posts to affected tenants about 7 days before we make the configuration change to permanently disable Basic auth use for protocols in scope. Soon after basic auth is permanently disabled, any clients or apps connecting using Basic auth to one of the affected protocols will receive... --- ### Security Researchers Discover Critical Linux Kernel Flaw Affecting SMB Servers - Published: 2022-12-27 - Modified: 2022-12-27 - URL: https://petri.com/linux-critical-kernel-flaw-smb-servers/ - Categories: Linux - Tags: linux, News, Security, Vulnerability - Article Type: News The security research firm Zero Day Initiative (ZDI) has disclosed a critical vulnerability in the Linux kernel server. The new security exploit, which has a CVSS score of 10, could allow attackers to remotely execute code on vulnerable SMB servers. The Thalium Team vulnerability research team originally discovered the Linux kernel security flaw back in July 2022. It affects the ksmbd module that was introduced in the Linux kernel version 5. 15. The vulnerability exists in the way the SMB2_TREE_DISCONNECT commands are processed. It is caused because ksmbd doesn't validate the existence of an object before performing any operations. Ksmbd is an open-source Linux kernel module that implements a Server Message Block (SMB) server for sharing files and IPC services over a network. “This is not meant to replace Samba, but rather be an extension to allow better optimizing for Linux, and will continue to integrate well with Samba user space tools and libraries where appropriate,” the Samba team explained. The security flaw affects Linux kernel version 5. 15 or above According to the Zero-Day Initiative, the security vulnerability potentially affects Linux kernel 5. 15 or higher. The list includes Ubuntu 22. 04 and above as well as Deepin Linux 20. 3. Security researcher Shir Tamari explained on Twitter that the flaw doesn’t impact customers who are still stuck with Samba. https://twitter. com/shirtamari/status/1606031277236187136 If you’re still using the experimental ksmbd module, it’s highly recommended to update to Linux kernel version 5. 15. 61 or newer. The update was released in August and it includes fixes for many other... --- ### How to Choose Between RAID 0 Vs. RAID 1 > The main differences between RAID 0 and RAID 1 include performance, redundancy, and cost. In this article, we'll help you determine how to choose the best RAID level for your projects based on the advantages and disadvantages of each type. - Published: 2022-12-27 - Modified: 2024-07-04 - URL: https://petri.com/raid-0-vs-raid-1/ - Categories: Hardware - Tags: Hardware, Most Popular, RAID 0, RAID 1, storage - Article Type: Overview RAID 0 and RAID 1 are two of the standard RAID storage levels that you can use to create large data stores by combining multiple disk drives. In this article, we'll explain the main differences between RAID 0 and RAID 1 and help you determine how to choose the best RAID level for your projects. The main differences between RAID 0 and RAID 1 include performance, redundancy, and cost. We will discuss these three core attributes throughout this article in greater detail. Based on the advantages and disadvantages of each type, and the overall business needs of the data you are storing or planning to store, we'll offer recommendations on which RAID level is the best for your environment strategy. RAID 0 vs. RAID 1: What are the main differences? Let me offer some more nuanced data to give you an at-a-glance snapshot of the main differences between RAID 0 and RAID 1: FeaturesRAID 0RAID 1Primary operationIn RAID 0, disk striping is the primary operation. In RAID 1, disk mirroring or duplication is key. CostsCosts are lower. Costs are doubled for disks. Storage capacityThe outright storage availability is 100%. The relative storage capacity is only 50%. Speed and performanceData access speed is key. The overall performance is higher. Data redundancy is key. The read and write performance and speed are slower than RAID 0. Data redundancyThere is no data redundancy or fault tolerance. You will get redundancy, mirroring, and fault tolerance. Data recoveryData is unrecoverable. Data can be quickly recovered in a disaster recovery program.  Table 1: RAID 0 vs. RAID... --- ### LastPass Confirms Hackers Stole Personal Data and Encrypted Password Vaults - Published: 2022-12-23 - Modified: 2022-12-23 - URL: https://petri.com/lastpass-hackers-stole-encrypted-password-vaults/ - Categories: Security - Tags: LastPass, News, password, Security - Article Type: News Back in August, LastPass announced that its systems were compromised in a security incident. Now, LastPass CEO Karim Toubba disclosed that the threat actors managed to copy encrypted passwords and other data stored in customer vaults. In a blog post published yesterday, LastPass revealed that hackers accessed customer data such as names, telephone numbers, email addresses, IP addresses, and some billing information. The threat actors also copied customer vault data with encrypted and unencrypted information, including website URLs, user credentials, form data, and secure notes. “These encrypted fields remain secured with 256-bit AES encryption and can only be decrypted with a unique encryption key derived from each user’s master password using our Zero Knowledge architecture. As a reminder, the master password is never known to LastPass and is not stored or maintained by LastPass. The encryption and decryption of data is performed only on the local LastPass client,” LastPass CEO Karim Toubba explained. In its investigation, LastPass didn’t find any evidence that the hackers managed to access unencrypted credit card details. The company says that the threat actors couldn’t access the specific cloud storage environment where it stores customers’ credit card information. LastPass says that the hackers would need the user’s master password to decrypt the stolen files. However, it’s still possible to perform several brute-force attempts to decrypt the harvested data, but it would require massive amounts of resources. What should LastPass customers do to prevent security breaches? Furthermore, LastPass warns that phishing attacks are increasingly targeting both individuals... --- ### How Does eDiscovery Work Within Microsoft 365? > For organizations working with Microsoft 365, content sprawl may become inevitable as users start to store data across various services. In this article, we explain how to use eDiscovery within Microsoft 365 to manage risk levels for organizational data. - Published: 2022-12-23 - Modified: 2022-12-23 - URL: https://petri.com/microsoft-365-ediscovery/ - Categories: Compliance, Microsoft 365, Security - Tags: Compliance, eDiscovery, Microsoft 365 - Article Type: Overview Content sprawl causes IT and security administrators many problems and complicates the management and control of information. However, Microsoft 365 provides tools to prevent content sprawl from happening. These tools are part of the Microsoft Purview eDiscovery services. In this article, we'll explain how eDiscovery works within Microsoft 365. When working with Microsoft 365, content sprawl may become inevitable within an organization. It will eventually happen as users store documents and files within multiple services such as SharePoint Online, OneDrive for Business, Microsoft Teams, and every other app that allows users to save content. If your organization ever needs to identify specific types of content across all Microsoft 365 services as part of a legal challenge or litigation, the Microsoft Purview eDiscovery services can come to the rescue. However, before you start exploring these specific tools, you first need to understand what is eDiscovery. What is eDiscovery in Microsoft 365? eDiscovery is short for electronic discovery in the context of a legal case or investigation. As part of legal proceedings, organizations may need to provide relevant information, records, and any other electronic evidence related to a case. You can conduct eDiscovery either offline, on a specific computer, or on a computer network. The data collected during an eDiscovery process may include any type of electronic information including documents, emails, texts, and even social media posts. So, why should you care about eDiscovery? Well, because Microsoft 365 supports such a wide variety of data sources, you need to ensure that your organization... --- ### Amazon Web Services (AWS): A 2022 FAQ > Amazon Web Services (AWS) remains the world’s leading cloud services provider, but not everyone may be familiar with its various services. In this article, we'll try to answer some of the most common questions you may have about Amazon Web Services in 2022. - Published: 2022-12-22 - Modified: 2023-02-03 - URL: https://petri.com/aws-faq-2022/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon CloudFront, Amazon EC2, Amazon EC2 Auto-scaling, Amazon Lambda, Amazon RDS, Amazon S3, Amazon VPC, Amazon Web Services, AWS Elastic Beanstalk - Article Type: Overview Amazon Web Services (AWS) is without a doubt the world’s leading cloud services provider, and it's still racing ahead of Microsoft's Azure cloud and the Google Cloud Platform. However, not everyone may be familiar with AWS and its various services. In this article, we'll try to answer some of the most common questions you may have about Amazon Web Services. What are the top AWS services? There are about 200+ AWS services offered by Amazon. Some of the most frequently used AWS services include: Amazon EC2: Amazon Elastic Compute Cloud (EC2) provides virtual servers to run various workloads in the cloud. The EC2 Auto-scaling service can also scale computing capacity to meet user demands by automatically adding or removing EC2 instances. Amazon S3: Amazon Simple Storage System (S3) is a highly scalable object storage AWS service Amazon Aurora – The Aurora service provides a MySQL and PostgreSQL-compatible relational database Amazon DynamoDB: The DynamoDB service provides a serverless NoSQL database Amazon RDS: Amazon Relational Database Service (RDS) provides MySQL, PostgreSQL, Oracle, SQL Server, and MariaDB database support. Amazon Lambda: This is a serverless event-driven computing AWS service. It can run code without the need to deploy servers or clusters. Amazon VPC: Amazon Virtual Private Cloud (VPC) provides an isolated cloud network with security rules for inbound and outbound connections Amazon CloudFront: Amazon's CloudFront service delivers global web content with security and high-performance streaming AWS Elastic Beanstalk: This service supports running and managing web applications with capacity provisioning, load balancing, and... --- ### Samsung Releases Server-Side Fixes for Microsoft Intune Android 13 Enrollment Issues - Published: 2022-12-22 - Modified: 2022-12-22 - URL: https://petri.com/samsung-fixes-microsoft-intune-android-13-enrollment-issues/ - Categories: Active Directory (AD) - Tags: android 13, Microsoft Intune, News, Samsung - Article Type: News Microsoft this week confirmed that the Android 13 update caused enrollment issues with Microsoft Intune on some Samsung phones. The company announced that Google and Samsung released a fix for users of the Samsung Galaxy S22 and S21 devices. Microsoft Intune is a popular cloud-based unified endpoint management solution. It enables IT departments to manage fleets of Windows, macOS, Android, and iOS operating systems. The app protection policy of the service uses Azure Active Directory identity to separate personal and corporate data. The exact cause of the problem is unclear. However, Microsoft explained that the Android 13 update prevents IT admins from enrolling Samsung Galaxy S22 and S21 devices while creating a Work Profile. The enrollment fails with the “Can't setup device. Contact your IT admin for help” error. “We were recently alerted to an issue where Samsung devices are unable to enroll as personally-owned Work Profile on Android 13. Users may see a dialog box saying that the profile was unable to be created. S21 and S22 devices are confirmed to be affected, but impact on other models may be possible. We have been working with Samsung and Google friends, who have issued a fix,” Microsoft explained. Microsoft suggests rebooting devices before proceeding with Microsoft Intune enrollment In a support document, Samsung also confirmed that it has issued server-side fixes to address enrollment issues with Samsung phones. The company recommended that users will need to restart their devices to automatically install the Android Device Policy app required to complete... --- ### AWS Launches New Local Zones in Bangkok and Kolkata - Published: 2022-12-21 - Modified: 2022-12-21 - URL: https://petri.com/aws-launches-local-zones-bangkok-kolkata/ - Categories: Amazon Web Services - Tags: Amazon Web Services, News - Article Type: News Amazon Web Services (AWS) has announced the launch of its two new Local Zones in Bangkok and Kolkata. The company claims that the new Local Zones will enable customers to deploy applications with local data processing and single-digit millisecond latency performance requirements. AWS Local Zones is an infrastructure deployment service that brings specific Amazon cloud services (such as compute, storage, and database) closer to a specific geographic area. The service is useful for apps like video streaming, online gaming, and machine learning inference that require low latency connections. Earlier this year, AWS announced a major expansion of its original set of 16 Local Zones. Previously, AWS Local Zones were only available in the U. S. Over the next two years, the new zones will launch in several cities across 26 countries worldwide. These include Auckland, Delhi, Athens, Berlin, Amsterdam, Bangkok, Brussels, Munich, Prague, Toronto, Perth, Kolkata, Oslo, Buenos Aires, Bogotá, Nairobi, Lisbon, Copenhagen, Bengaluru, Rio de Janeiro, Querétaro, Helsinki, Chennai, Brisbane, Manila, Johannesburg, Vienna, Hanoi, Santiago, Warsaw, Vancouver, and Lima. AWS Local Zones to offer low latency applications for government and private organizations AWS highlights that the launch of the new zones should be helpful for education and government customers as well as non-profit organizations who want to host latency-sensitive applications. “For applications that require single-digit millisecond latency, the location of cloud infrastructure matters. AWS Local Zones are a type of infrastructure deployment that places AWS compute, storage, database, and other services near large population, industry, and information technology (IT) centers⁠,... --- ### Microsoft Releases Fix for Hyper-V VM Issues in Windows Server - Published: 2022-12-21 - Modified: 2022-12-21 - URL: https://petri.com/microsoft-fix-hyper-v-vm-issues-windows-server/ - Categories: Windows Server - Tags: News, Windows Server 2019, Windows Server 2022 - Article Type: News Microsoft released yesterday out-of-band updates for Windows Server 2019 and Windows Server 2022. The updates are meant to address an issue that prevents users from creating virtual machines (VMs) on some Hyper-V hosts. The company previously explained that the problem could arise after installing the December Patch Tuesday updates on Hyper-V hosts that use Software Defined Networking (SDN) and are managed by System Center Virtual Machine Manager (SCVMM). Several users reported that new VMs can no longer be created and existing VMs have issues with Ethernet connections. Microsoft recommends Windows Server users to install the latest cumulative updates on all affected Hyper-V hosts in their environments. For Windows Server 2019 and Windows Server 2022, the new updates are labeled as KB5022554 and KB5022553, respectively. The out-of-band updates include fixes to resolve errors that might trigger in the following situations: Creating a new network adapter for an existing virtual machine (VM) that is joined to a VM network Creating a new VM that has a network adapter that is joined to a VM network. Latest Windows Server updates for the Hyper-V bug available via the Microsoft Update Catalog Microsoft notes that the out-of-band updates are not available via Windows Update. Instead, customers will need to download the standalone packages from the Microsoft Update Catalog and install them manually. Microsoft has also warned that the new cumulative updates may cause issues with ODBC connections. Specifically, some apps might experience problems when connecting to databases using Microsoft ODBC (Open Database Connections) via the... --- ### Introduction to Microsoft Teams Premium > Microsoft Teams Premium aims to make every meeting — from 1:1 reunions to large meetings to virtual appointments to webinars — more personalized, intelligent, and secure. In this article, we'll explain everything you need to know about Microsoft Teams Premium. - Published: 2022-12-21 - Modified: 2023-01-25 - URL: https://petri.com/microsoft-teams-premium/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft Teams - Article Type: Overview Microsoft Teams Premium is a new add-on SKU that provides a better way to meet. Built on Microsoft Teams' familiar, all-in-one collaboration experience, Microsoft Teams Premium aims to make every meeting — from 1:1 reunions to large meetings to virtual appointments to webinars — more personalized, intelligent, and secure. In this article, we'll explain everything you need to know about Microsoft Teams Premium. Microsoft Teams Premium is now available in public preview for commercial customers. IT admins can currently assign 25 free trial licenses to end users in their organization for 30 days, which is a good way to evaluate this new Premium add-on. What is Microsoft Teams Premium? Microsoft introduced the Teams Advanced Communications add-on back in 2020. This add-on included new features such as the ability to scale Microsoft Teams meetings to up 20,000 participants. However, when meetings were over 1,000 users, the solution would then become “View-only” for participants, with advanced controls for admins giving them the ability to design the meeting lobby with their own branding. Microsoft Teams Premium leverages this existing functionality and builds upon it significantly. Microsoft Teams Premium pricing and availability Microsoft Teams Premium will officially be available starting in February 2023. The availability of new artificial intelligence capabilities such as intelligent meetings will also begin rolling out in the first half of 2023. Microsoft Teams Advanced Communications was $12 per user per month. Despite the increased functionality with Microsoft Teams Premium, the new add-on will cost just $10 per user per... --- ### Microsoft Confirms New Issue Causing BSOD Errors on Windows 10 PCs - Published: 2022-12-20 - Modified: 2022-12-20 - URL: https://petri.com/microsoft-bug-bsod-errors-windows-10/ - Categories: Windows 10 - Tags: News, Patch Tuesday, Windows, Windows 10 - Article Type: News Microsoft has acknowledged a new bug that causes some Windows 10 devices to receive an error with a Blue Screen of Death (BSOD). The company detailed on the Windows Health Dashboard that the issue affects users who installed the KB5021233 cumulative update released with the December Patch Tuesday updates. According to Microsoft, the problem affects all users running Windows 10 versions 22H2, 21H2, 21H1, and 20H2. “After installing KB5021233, there might be a mismatch between the file versions of hidparse. sys in c:/windows/system32 and c:/windows/system32/drivers (assuming Windows is installed to your C: drive), which might cause signature validation to fail when cleanup occurs,” the company explained. Microsoft suggests a workaround to fix BSOD on Windows 10 Microsoft says that its engineers are working on a fix that will arrive in an upcoming release. In the meantime, the Blue Screen of Death errors can be resolved by following the steps mentioned below: First of all, the user will need to enter Windows Recovery Environment (WinRE). Users can follow the steps mentioned on this support page to forcefully call WinRE (if needed). In the Windows Recovery Environment, click the Troubleshooting button and then select “Start Recovery, Troubleshoot and Diagnostic Tools. ” Click the Advanced Options button and then select Command Prompt. Now, wait for the Windows 10 device to restart. Users might need to sign into the device with their password to open the Command Prompt window. Run the following command to copy the updated driver file to the Windows system32 folder: xcopy C:\windows\system32\drivers\hidparse. sys... --- ### Google Workspace Extends Client-Side Encryption to Gmail - Published: 2022-12-20 - Modified: 2022-12-20 - URL: https://petri.com/google-workspace-client-side-encryption-gmail/ - Categories: Security - Tags: Gmail, Google Workspace, News - Article Type: News Google has recently announced client-side encryption support for Gmail on the web. The long-awaited security feature is currently available in public beta and lets Google Workspace users send and receive encrypted emails. With client-side encryption enabled, Gmail on the web now lets IT admins secure email communication within and outside their domain. The feature fully encrypts the body of the email, inline images, and attachments. However, it doesn’t encrypt email headers, the subject, recipients, and time stamps. “Google Workspace already uses the latest cryptographic standards to encrypt all data at rest and in transit between our facilities. Client-side encryption helps strengthen the confidentiality of your data while helping to address a broad range of data sovereignty and compliance needs,” Google explained in a blog post. How to turn on client-side encryption in Gmail on the web Google notes that IT admins will first need to turn on client-side encryption by navigating to the Admin console >> Security >> Access and data control > Client-side encryption. Once enabled, Gmail users can click on the lock icon in the message compose box and select the Turn on option under Additional encryption. Finally, compose the message, add attachments (if any) and then send the email. The recipient should have client-side encryption enabled and valid certificates in order to receive encrypted emails. It is worth noting that client-side encryption support is already available in several other Google Workspace products. These include Google Drive, Google Meet, Google Sheets, Google Slides, and Google Docs. Moreover, the... --- ### Microsoft Intune Gets New Controls to Configure Expedited Windows Feature and Quality Updates - Published: 2022-12-19 - Modified: 2022-12-19 - URL: https://petri.com/microsoft-intune-expedited-windows-feature-quality-updates/ - Categories: Endpoint Management - Tags: Microsoft Intune, News, Windows 10, Windows 11, Windows Update for Business - Article Type: News Microsoft has released a new update that enables customers to configure policies for Windows feature updates and expedited quality updates in Microsoft Intune. These capabilities leverage the Windows Update for Business service to give IT admins more control over the deployment of updates to Windows PCs across an organization. First up, Microsoft has introduced a new feature that allows organizations to configure policies that control which feature update is delivered to Windows devices. Specifically, IT admins can deploy updates immediately, on a specific date, and gradually to all Windows 10 and Windows 11 clients. Moreover, it’s possible to deliver new OS releases via a phased rollout to specific user groups and choose the time interval between the group updates. The ability to configure Windows Update for Business feature update policies is available for Windows 10 and 11 Pro, Enterprise, and Education editions. However, it doesn’t support Enterprise long-term service channel releases of the operating systems. How to configure expedited quality updates in Microsoft Intune Microsoft has also announced that Windows Update for Business allows IT admins to speed up the rollout of quality updates on Windows 10 and Windows 11. Essentially, quality updates are security patches that are released on the second Tuesday of every month. “Whether you use them in the context of a zero-day vulnerability or an urgent quality fix for a set of devices, expedited updates temporarily override deferrals and other settings to install updates as quickly as possible. Once completed, they restore to the normal settings... --- ### What Is Notion? A Guide For Beginners - Published: 2022-12-19 - Modified: 2022-12-19 - URL: https://petri.com/what-is-notion-a-guide-for-beginners/ - Categories: Productivity and Collaboration - Tags: collaboration, Notion, Productivity - Article Type: Overview Notion is a cloud-based productivity and collaboration all in-one workspace tool. In this article, I'll answer the question 'what is Notion? ' and provide some examples of how it can be used for productivity, real-time collaboration, and project management in your organization. Notion allows small teams of people to work together in real-time on documents, tasks, notes, wikis, and databases from different devices.  For example, you could create a Notion workspace where your team will work on a project. The workspace can be used to store all the documentation related to the project. And team members can update the documents in real-time together. In addition to being a productivity tool, Notion can be used for project management. For example, you could create a task list, a calendar for important events, a Kanban board to track the status of projects, and databases for work management. The Notion app competes with other productivity and collaboration platforms. There are many Notion alternatives, like Microsoft 365, Microsoft Teams, Asana, Monday. com, Trello, ClickUp, note-taking app Evernote, and the list goes on. Notion is primarily an app that works in your web browser but there is also a mobile app available for iOS and Android. One of the key differences between Notion and Microsoft Teams, is that Notion allows you to freely organize to-do lists, databases, calendars, documents, and other components on a single page. This is in contrast to Microsoft 365, where apps like Planner and Lists are siloed from each other. Although that is gradually changing in... --- ### Microsoft to Permanently Disable Internet Explorer 11 in February 2023 - Published: 2022-12-19 - Modified: 2022-12-19 - URL: https://petri.com/microsoft-disable-internet-explorer-11-windows-10/ - Categories: Windows 10 - Tags: Internet Explorer 11, Microsoft Edge, News, Windows 10 - Article Type: News Microsoft has announced some changes in its plans to kill off Internet Explorer (IE11) on Windows 10. The company detailed that it will release a Microsoft Edge update to permanently disable the legacy Internet Explorer desktop app on select versions of Windows 10 in February 2023. Previously, Microsoft announced that it would disable Internet Explorer 11 through a Windows update on Windows 10 devices. The company started to gradually redirect all IE11 users toward its Edge browser on June 15, 2022. However, Microsoft didn’t reveal when this process will be completed. Microsoft explained that it will redirect all remaining Windows 10 devices through a Microsoft Edge update on February 14, 2023. It should ensure a better user experience and make the transition easier for enterprise customers. However, this change will not impact organizations that have already ditched Internet Explorer. Microsoft highlights that its new Chromium-based Edge comes with a dedicated IE Mode. The feature enables customers to keep using their legacy IE-based sites and apps that were previously designed to run on Internet Explorer. “Users will see a dialogue box when they are transitioned to Microsoft Edge. When they try to click any IE11 icons or other entry points, they will be redirected to Microsoft Edge. Users’ browsing data will be automatically brought over to Microsoft Edge from IE11 so they can seamlessly continue browsing,” Microsoft explained. How to prepare for the permanent disablement of Internet Explorer Microsoft plans to completely remove all Internet Explorer references from Windows 10 machines... --- ### Microsoft Teams Premium Add-on Arrives with New AI-Powered Meeting Features - Published: 2022-12-19 - Modified: 2022-12-19 - URL: https://petri.com/microsoft-teams-premium-add-on-preview/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft unveiled its plans to launch Microsoft Teams Premium as an add-on at its Ignite 2022 conference. Now, the company has announced that the new offering is available in public preview for commercial customers. Microsoft Teams Premium is a new version for organizations that need some additional capabilities to make the meetings more personalized, intelligent, and secure. First up, IT admins can now brand the meeting experience with custom templates, themes, meeting backgrounds, and together mode scenes. Additionally, Microsoft Teams Premium includes AI-powered features such as intelligent meeting recaps, live translations, meeting guides, as well as live translations for captions. The new offering also supports AI-generated tasks and insights to help users quickly catch up on missed meetings. Virtual appointments Microsoft also mentioned that Teams Premium supports advanced webinar capabilities. These include a custom logo, manual approvals, registration waitlist, registration date & time limit, presenter bio, and a virtual green room. In B2C environments, Teams Premium helps customers manage advanced virtual appointments with SMS notifications, branded lobbies, scheduled and on-demand appointment queues, and analytics. Lastly, Microsoft’s new Premium offering improves the security of Teams meetings with end-to-end encryption. It also allows users to add watermarks to protect sensitive information shared during meetings. Moreover, it’s possible to use sensitivity labels to prevent participants from copying/pasting the meeting chat and recording meetings. Watermarks Microsoft Teams Premium licensing To get started, head over to the Microsoft 365 admin center and navigate to the Purchase services section. Now, search for Teams Premium under Collaboration... --- ### Should You Upgrade to Office 2021 LTSC or Microsoft 365 Apps? > With Office 2013, 2016, and 2019 soon reaching end-of-support, IT pros need to offer their managers recommendations on how to proceed. In this article, we detail the pros and cons of upgrading to Office 2021 LTSC or migrating to the subscription model, Microsoft 365 Apps for enterprise. - Published: 2022-12-19 - Modified: 2023-01-17 - URL: https://petri.com/office-2021-ltsc-or-microsoft-365-apps/ - Categories: Microsoft 365 - Tags: LTSC, Microsoft 365, Office 2021 - Article Type: Opinion With earlier versions of Microsoft Office reaching end-of-support milestones throughout 2023, IT Pros need to offer their managers recommendations on how to proceed – Upgrade to Office 2021 LTSC or migrate to the subscription model, Microsoft 365 Apps for enterprise? Read this article to find out. We all know that Microsoft has steadily increased the rate at which they release 'new' anything into the business technology world. The speed at which they iterate features (and fixes) in Microsoft Teams is staggering. The monthly blog posts that Jared Spataro, Corporate Vice President of Microsoft 365, publishes highlighting and showcasing new features across the myriad of Microsoft 365 apps and services might put Steven Sinofsky to shame. However, as Microsoft's engineers continue to innovate at this pace, they need to track all the endpoints and client machines that connect to these services. To be a global leader in this realm of innovation, you need to ask your customers to stay up-to-date with their software packages, namely Microsoft Office. Why you should plan to upgrade to Office 2021 LTSC or Microsoft 365 Apps? Regarding Microsoft Office, there are two critical end-of-support measures occurring in 2023 – these will certainly play a part in your company's discussions about your current Office licensing infrastructure, and when you may need to make some changes – notably upgrading Office versions or migrating 'to the cloud. ' Office 2013 will reach the end of Extended Support on April 11, 2023 If you are running the Office 2013 suite... --- ### Microsoft to Fix New Bug Breaking Hyper-V VMs in Windows Server - Published: 2022-12-16 - Modified: 2022-12-16 - URL: https://petri.com/microsoft-fix-hyper-v-vms-windows-server/ - Categories: Windows Server - Tags: News, Windows Server, Windows Server 2019, Windows Server 2022 - Article Type: News Earlier this week, Microsoft released the December 2022 Patch Tuesday updates for various supported versions of Windows. Now, the company has warned that the latest Windows Server updates could prevent IT admins from creating new virtual machines (VMs) in some Hyper-V hosts. “After installing KB5021249 on Hyper-V hosts managed by Software Defined Networking (SDN) configured System Center Virtual Machine Manager (VMM), you might receive an error on workflows involving creating a new Network Adapter (also called a Network Interface Card or NIC) joined to a VM network or a new Virtual Machine (VM) with a Network Adapter joined to a VM network,” Microsoft explained on the Windows Health Dashboard. Specifically, IT admins could encounter Ethernet connection errors while creating a new virtual machine or a network adapter on an existing virtual machine. Additionally, these errors might appear when the SLB Load Balancer or SDN RAS Gateway services fail. Administrators may also see Ethernet connection warning messages during live migrations of non-highly available VMs. The issue only affects new network adapters created after installing the latest Patch Tuesday updates (KB5021237 and KB5021249) on Windows Server 2019 and Windows Server 2022. However, it doesn’t cause connection issues for existing VMs with network adapters. Microsoft provides a workaround to address Hyper-V issues in Windows Server Thankfully, Microsoft says that its engineers are currently working on a fix that should be arriving in the near future. As a workaround, Microsoft suggests users to run the following commands in PowerShell with administrator privileges: $lang =... --- ### Microsoft Exchange Online To Deprecate Remote PowerShell Support in June 2023 - Published: 2022-12-16 - Modified: 2023-07-24 - URL: https://petri.com/exchange-online-deprecate-remote-powershell/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft announced yesterday that it’s blocking the use of Remote PowerShell (RPS) protocol for Exchange Online in June 2023. The company recommends organizations to plan their migrations to the latest Exchange Online PowerShell module. In October, Microsoft started killing off Basic Authentication support for Exchange Online customers to prevent password spray attacks. This change applies to seven email connection protocols including RPC, Exchange Web Services (EWS), MAPI, Exchange ActiveSync (EAS), Offline Address Book (OAB), IMAP, POP, and Remote PowerShell (RPS). However, many IT admins still use RPS with Basic Authentication to communicate with Exchange Online. Microsoft released the REST-based Exchange Online PowerShell v3 module back in September 2022. The company claims that it’s more secure as compared to older modules (v1 and v2) because it supports modern authentication. Moreover, the Exchange Online PowerShell v3 module is reliable because it comes with a query retry feature and brings performance improvements. “As we continue to enhance the security of our cloud, our plan is to move the Exchange Online admin experience to REST-based APIs. As part of that plan, we will be deprecating the legacy RPS protocol. The RPS deprecation plan applies to all Exchange Online customers using RPS in any way (using PS module or otherwise),” the Exchange team explained. Microsoft to block feature updates for Exchange Online PowerShell v1 and v2 modules Microsoft has already started the deprecation of the Exchange Online PS v1 and v2 modules versions 1 and 2. Going forward, the company will no longer release feature... --- ### How to Use Managed Metadata Within SharePoint Online > SharePoint Online provides content types, managed metadata, and sensitivity labels to classify data. In this article, we’ll explain how you can use SharePoint managed metadata to control how users add metadata to content across sites in an organization. - Published: 2022-12-16 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-managed-metadata/ - Categories: Microsoft 365, SharePoint, SharePoint Online - Tags: managed metadata, Microsoft 365, SharePoint, SharePoint Online - Article Type: How To When organizations decide to migrate data from on-premises file servers or other platforms to SharePoint on-premises or SharePoint Online, they need to determine how tagging and classifying content should work. In this article, we’ll explain how you can use Sharepoint managed metadata to control how users add metadata to content across SharePoint sites in an organization. SharePoint Online provides content types, managed metadata, and sensitivity labels to classify data. For organizations migrating content to SharePoint, content types are critical for the security and searching of the content. What is SharePoint metadata? SharePoint metadata is all the information that is attached to your data in SharePoint. As Microsoft describes it, metadata is simply “information about information. " In SharePoint, content types are the core building blocks of content classification, but not security. A content type is simply the "type of content" you define. Each content type contains multiple columns that allow end-users to either manually enter or select values to help describe their content. Content types are the core building blocks of content classification in SharePoint What is SharePoint managed metadata? In SharePoint, managed metadata is a service that provides a formal classification system that lets IT pros manage hierarchical collections of terms that can be used as attributes for items in SharePoint sites.   Taxonomy versus folksonomy Taxonomy is a formal structured classification system managed by teams that can include record managers. Folksonomy, however, is an informal classification system that evolves as users add words, labels, and terms. Folksonomy is a... --- ### Microsoft to Roll Out EU Data Boundary Plan for Cloud Services on January 1 - Published: 2022-12-15 - Modified: 2022-12-15 - URL: https://petri.com/microsoft-eu-data-boundary-plan-january-1/ - Categories: Cloud Computing, Microsoft Azure - Tags: cloud computing, Microsoft Azure, News - Article Type: News Microsoft has announced a new EU Data Boundary plan for its cloud services. Starting in January 2023, the new data localization offering will allow public sector and commercial customers to store and process customer data within the European Union (EU). Microsoft first announced its plans to launch the EU Data Boundary initiative back in May 2021. This move will help local organizations to comply with General Data Protection Regulation (GDPR) requirements. GDPR protects user privacy restrictions in organizations that control how data is moved across international boundaries. “Beginning on January 1, 2023, Microsoft will offer customers the ability to store and process their customer data within the EU Data Boundary for Microsoft 365, Azure, Power Platform and Dynamics 365 services. With this release, Microsoft expands on existing local storage and processing commitments, greatly reducing data flows out of Europe and building on our industry-leading data residency solutions,” Microsoft explained. Microsoft's EU Data Boundary plan to include service and logging data Microsoft plans to expand the EU Data Boundary plan to include the localization of additional data categories in future releases. The next phases will include service data, logging data, and other data types. Microsoft expects to complete the second and third rollout phases at the end of 2023 and in 2024, respectively. Overall, the EU Data Boundary solution will bring peace of mind to EU customers who need data residency and localization commitments. However, the company didn’t provide any details about how the EU Data Boundary solution will exactly work... . --- ### Skype Now Supports Real-Time Video Call Translations With Your Own Voice - Published: 2022-12-15 - Modified: 2022-12-15 - URL: https://petri.com/skype-truvoice-real-time-video-call-translations/ - Categories: Skype - Tags: News, skype, Windows - Article Type: News Microsoft has announced a new update to improve real-time translations in Skype. The company released a new AI-powered TruVoice feature that lets Skype users translate speech in video calls to another language while imitating their own voice. “This is done using a combination of speech recognition technology and natural language processing, which are able to understand and interpret the spoken words and translate them into the desired language. On top of that, if you activate the use of your natural voice, we will use AI to sample your words and tune the translation to sound like you, making the conversation more human,” the Skype team explained. Microsoft highlights that the integration of this new TruVoice technology is a significant milestone that should make it easier for users to communicate with other people. The feature eliminates the need for a human translator and could be useful in conducting interviews and meetings. https://youtu. be/qrTZ2IQpwi0 How to turn on real-time voice translations in Skype To enable the real-time voice translation feature, start a video call and click the three dots “More” menu. Now, select the “Translate” option to begin the translation process. The app will guide both meeting participants to translate their conversations. Users can also choose to turn off TruVoice and use generic or robotic voices for translations. The AI-powered voice translation feature is supported in several languages, including English, German, French, Spanish, and Chinese. This capability is currently only available for 1:1 video calls in the Skype desktop and mobile apps. However,... --- ### AWS Announces Amazon Comprehend for Intelligent Document Processing > Amazon Comprehend for Intelligent Document Processing (IDP) is a new natural language processing service that can uncover relationships and connections in various document types. It can classify and extract data from PDF documents, Microsoft Word files, and more without extracting the text first. - Published: 2022-12-15 - Modified: 2022-12-15 - URL: https://petri.com/aws-announces-amazon-comprehend-for-intelligent-document-processing/ - Categories: Amazon Web Services - Tags: Amazon, Amazon Web Services, AWS Amazon Web Services announced earlier this month Amazon Comprehend for Intelligent Document Processing (IDP). This is a new natural language processing (NLP) service that uses machine learning (ML) to uncover relationships and connections in various document types. Amazon Comprehend for IDP enables you to classify and extract entities from PDF documents, Microsoft Word files, and images directly without requiring you to extract the text first. Previously, businesses would typically need to pre-process those documents and convert them into some type of machine-readable text which can reduce the quality of the document context. Some of the things that businesses can do with Amazon Comprehend for IDP include: Automating the extraction of insights from packets of legal briefs like contracts and court records. Securing documents by identifying and redacting Personally Identifiable Information (PII). Detecting customer sentiment and analyzing customer interactions. Automatically categorizing inbound support requests. Analyzing documents and indexing key phrases and entities. Classifying and extracting entities from financial services documents such as insurance claims. The previous process vs. the new procedure with Amazon Comprehend for IDP How to get started with Amazon Comprehend for IDP You can use Amazon Comprehend for IDP from the AWS Management Console, AWS SDKs, or the AWS Command Line Interface (CLI). Amazon Comprehend offers a free tier covering 50K units of text (5M characters) per API per month. Eligible APIs for the free tier include Key Phrase Extraction, Sentiment, Targeted Sentiment, Entity Recognition, Language Detection, Event Detection, Syntax Analysis, Detect PII, and Contains PII. Beyond the free tier, Amazon... --- ### Microsoft Rolls Out Fix for LSASS Memory Leak Bug Affecting Windows Server - Published: 2022-12-14 - Modified: 2022-12-14 - URL: https://petri.com/microsoft-fix-lsass-memory-leak-bug-windows-server/ - Categories: Windows Server - Tags: News, Windows, Windows Server - Article Type: News Microsoft has released a fix for a memory leak bug in LSASS that could have caused some domain controllers to automatically restart or stop working. The company first acknowledged the issue following the release of the November 2022 Patch Tuesday updates last month. Local Security Authority Subsystem Service (LSASS) is a Windows process on an Active Directory domain controller that allows IT admins to enforce the security policy on Windows PCs. LSASS is responsible for user authentication, managing password changes, and creating access tokens. LSASS is an important tool that helps to prevent threat actors from accessing enterprise networks. Microsoft explained that the LSASS memory leak bug might cause operational failures as well as performance and reliability issues. The problem affects Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and 2012 R2, Windows Server 2016, as well as Windows Server 2019. Install December Patch Tuesday updates to fix Windows Server LSASS memory leaks The December 2022 Patch Tuesday updates should address the LSASS memory leak problem on Windows Server machines. Meanwhile, Microsoft has provided a workaround for admins who have yet to patch their domain controllers. It requires IT Pros to open Command Prompt as administrator to set the registry key KrbtgtFullPacSignature to "0" by running the following command: reg add "HKLM\System\CurrentControlSet\services\KDC" -v "KrbtgtFullPacSignature" -d 0 -t REG_DWORD “Once you have installed the patch that resolves this known issue, you should either remove this value or set KrbtgtFullPacSignature to a higher setting depending on what your environment will... --- ### Microsoft Releases Windows Updates to Fix Quick Assist Installation Issues - Published: 2022-12-14 - Modified: 2022-12-14 - URL: https://petri.com/microsoft-windows-updates-fix-quick-assist-installation-issues/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released new updates to improve the Quick Assist experience on Windows 10 and Windows 11. This release also addresses an issue that previously prevented some enterprise customers from installing the app from the Microsoft Store. Quick Assist is a remote access tool that allows users to connect two Windows 10 or Windows 11 devices over the internet. The app helps IT admins take full control of the client’s PC to diagnose technical issues and fix them. For instance, administrators can uninstall a troublesome hardware driver and run an anti-malware program. It’s also possible to demonstrate to the other person how to perform a particular task. Microsoft announced in June that Quick Assist is available to download from the Microsoft Store. This means that Quick Assist is no longer available as a native app on Windows 10 and 11. It comes pre-installed with Windows PCs and receives updates via Microsoft Store. However, this change prevented some users with managed devices from downloading Quick Assist due to the lack of organizational permissions. Microsoft’s Quick Assist app now available on all Windows PCs Fortunately, Microsoft has decided to address this problem with the December 2022 and January 2023 Windows quality updates. The Quick Assist app is now available for all devices running Windows 11 version 21H2 and Windows 10 version 20H2, 21H1, 21H2, and 22H2. The company plans to support the original Quick Assist app until these Windows versions reach end of support. “After you install the update, the original version... --- ### Microsoft's December 2022 Patch Tuesday Updates Fix 52 Windows Vulnerabilities > With Microsoft's December 2022 Patch Tuesday updates, the company fixed a total of 52 vulnerabilities in Windows, Office, and other components. There are also minor new features for both Windows 11 versions 22H2 and 21H2 this month. - Published: 2022-12-14 - Modified: 2022-12-14 - URL: https://petri.com/windows-december-2022-patch-tuesday-updates/ - Categories: Windows 10, Windows 11 - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft released its monthly “Patch Tuesday” updates for Windows 11 and Windows 10 yesterday. In December, the company released a total of 52 patches to fix vulnerabilities in Windows, Office, and other components.   There are also several notable changes on the quality and experience updates front. There are minor new features for both Windows 11 versions 22H2 and 21H2, and there are also some taskbar changes for Windows 10 users. This month also marks the end of support for Windows 11 version 21H1, and Microsoft recommends affected users upgrade to the version 22H2 released this Fall. 52 vulnerabilities fixed in the November 2022 Patch Tuesday updates This month, Microsoft fixed a total of 52 vulnerabilities. Six of them are rated critical, and there’s also one vulnerability rated “Moderate” that is already being publicly exploited in the wild.   Let’s take a look at some of the most notable vulnerabilities Microsoft fixed in December: CVE-2022-44698: This Windows SmartScreen Security Feature Bypass vulnerability is already being exploited by attackers. It requires them to craft a malicious file to evade Mark of the Web (MOTW) defenses. CVE-2022-44710: This DirectX Graphics Kernel Elevation of Privilege vulnerability has already been publicly disclosed, but Microsoft says it isn’t being exploited yet.   CVE-2022-44690: This Remote Code Execution vulnerability in Microsoft SharePoint Server allows authenticated attackers with Manage List permissions to execute code remotely on a SharePoint Server. CVE-2022-41076: This PowerShell Remote Code Execution vulnerability allows authenticated attackers to escape the PowerShell Remoting Session Configuration and run unapproved commands... --- ### What Are Azure ArcBox and Azure Stack HCI Jumpstart? > Microsoft announced at its latest Ignite conference the public preview for Azure Jumpstart HCIBox, as well as Azure Jumpstart ArcBox for DataOps. We explain in this article how IT pros can use these sandbox environments in their Azure Arc learning journey. - Published: 2022-12-14 - Modified: 2024-11-19 - URL: https://petri.com/azure-arc-jumpstart-arcbox/ - Categories: Azure, Cloud Computing - Tags: Azure, Azure Arc, Azure Stack HCI - Article Type: Overview During its latest Ignite 2022 conference for IT pros in October, Microsoft announced the public preview for Azure Jumpstart HCIBox, as well as Azure Jumpstart ArcBox for DataOps. In this article, I’ll be explaining what these new products are for, and I’ll also guide you to the required resources to get you started with them. Before we dive into details, I’ll give you a refresher on Azure Arc Jumpstart, a program that Microsoft launched back in September 2020 to help IT pros get on board with Azure Arc. What is Azure Arc Jumpstart? Azure Arc Jumpstart started originally as an internal Microsoft collection of PowerShell scripts for deploying Azure Arc into test and demo environments. Due to high customer demand for these environments, it evolved into its own program and product within the Azure portfolio. Microsoft imagined several different usage scenarios for this program, here are some examples below: Azure Arc-enabled servers: For onboarding various Windows and Linux server distributions as Azure Arc-enabled servers. Azure Arc-enabled VMware vSphere: For managing VMware vSphere resources with Azure Arc. Azure Arc-enabled Kubernetes: For onboarding various Kubernetes distributions as Azure Arc-enabled Kubernetes clusters. My most favored scenarios now are the new Jumpstart ArcBox and Jumpstart HCIBox. Both sandbox environments are meant to be deployed as virtual machines on Azure and enable customers, partners, and others to easily deploy and test both solutions. Many organizations may be struggling in their Azure Arc learning journey, so Microsoft created scripts and best practices to help IT... --- ### Microsoft Authenticator to End Support for the Apple Watch in January 2023 - Published: 2022-12-13 - Modified: 2022-12-13 - URL: https://petri.com/microsoft-authenticator-end-support-apple-watch/ - Categories: Security - Tags: Apple Watch, Microsoft Authenticator, News - Article Type: News Microsoft is getting ready to discontinue support for its Authenticator app on the Apple Watch in January 2023. The company quietly announced in a support document (via 9to5Mac) that an upcoming update will remove the Microsoft Authenticator companion app from watchOS. The Microsoft Authenticator companion app allows Apple Watch users to securely log into services that use Microsoft and third-party accounts. Users can tap on their watch to approve sign-in notifications sent to the app to authenticate their login requests. Microsoft explained that the Apple Watch operating system has some compatibility issues with the security features in Microsoft Authenticator. It’s a major reason that the company decided to sunset the watchOS app. Microsoft has advised existing users to delete the app from their Apple Watch by the end of this month. “In the upcoming Authenticator release in January 2023 for iOS, there will be no companion app for watchOS due to it being incompatible with Authenticator security features. This means you won't be able to install or use Authenticator on Apple Watch. We therefore recommend that you delete Authenticator from your Apple Watch,” Microsoft explained. How to delete the Microsoft Authenticator app from Apple Watch Apple has provided step-by-step instructions to help users delete Microsoft Authenticator from their Apple Watch. Press the Digital Crown and then touch & hold the display until the View Options screen appears on the screen. Tap Edit Apps and select the Delete icon on the Microsoft Authenticator app. Finally, tap the Delete App option to... --- ### Microsoft Releases New Customization Features for Sign-In Experiences in Azure AD - Published: 2022-12-13 - Modified: 2022-12-13 - URL: https://petri.com/microsoft-customization-features-sign-in-experiences-azure-ad/ - Categories: Active Directory (AD), Microsoft 365 - Tags: Azure AD, Microsoft 365, News - Article Type: News Microsoft has released a new update to improve the Azure Active Directory-based user sign-in experience for enterprise customers. The latest release brings customization features that enable organizations to create a custom look and feel for Azure AD and Microsoft 365 applications. According to Microsoft, IT admins can configure company branding with a customized logo and page background color. Moreover, administrators can choose to show, hide or customize the self-service password reset link that appears on the user interface of the sign-in page. It’s also possible to customize the header and footer elements. Additionally, customers can upload a Cascading Style Sheet (CSS) to replace the default style of the page. There is also an option to customize the sign-in page based on the browser language. “The new experience controls apply to sign-in for users in the directory and for external users, including use cases for B2B, B2E and first-party applications running on Azure AD,” explained Robin Goldstein, Director of Product Management at Microsoft identity. “For those building customer facing apps, we know from our experience on the B2C platform that a beautifully branded experience is critical in building a trusted relationship. ” How to configure the sign-in experience in Azure AD Microsoft notes that IT admins can configure the customer experience by heading to the Azure portal. Select Azure Active Directory >> Company branding and click the Customize button. Now, follow the onscreen instructions to configure settings to automatically show custom branding after users authenticate for the first time. It is important... --- ### GitHub Copilot for Business is Now Available with Admin Controls - Published: 2022-12-12 - Modified: 2022-12-12 - URL: https://petri.com/github-copilot-for-business-available-admin-controls/ - Categories: Developer - Tags: GitHub, GitHub Copilot, News - Article Type: News GitHub has launched a business version of its GitHub Copilot AI-based coding assistant. The new GitHub Copilot for Business plan is now available for enterprise customers for $19 per user per month, and it comes with privacy features, organization-wide policy controls, and license management capabilities. Microsoft-owned GitHub teamed up with OpenAI to introduce its Copilot tool for individuals and educators in June 2021. It leverages AI to generate entire lines of code and functions directly within an integrated development environment (IDE) such as Visual Studio Code, JetBrains IDEs, and Neovim. Specifically, GitHub Copilot for Business includes several capabilities for organizations. It provides a central hub for managing user licenses across large teams of developers. Microsoft has also introduced new policy controls that let IT admins prevent the Copilot tool from suggesting code that matches public code repositories. “At GitHub, we believe that just like the rise of compilers and open source, AI-assisted coding will revolutionize how we build software. And by bringing GitHub Copilot to organizations of all sizes with improved admin controls, we’re confident in the power of AI to improve the developer experience, increase productivity and satisfaction, and accelerate innovation,” the GitHub team explained. GitHub Copilot for Business launches amid legal challenges GitHub claims that Copilot for Business doesn’t retain and share users’ code snippets regardless of the fact that the data is collected from public/private/non-GitHub repositories or local files. However, it transmits engagement data such as editing actions, errors, latency, and more. Last month, lawyer and developer... --- ### Microsoft Acquires Hollowcore Fiber Cable Maker Lumenisity to Bolster Cloud Infrastructure - Published: 2022-12-12 - Modified: 2022-12-12 - URL: https://petri.com/microsoft-acquires-lumenisity/ - Categories: Cloud Computing - Tags: cloud computing, News - Article Type: News Microsoft has announced the acquisition of Lumenisity, a UK-based maker of hollow core fiber (HCF) cable for global networking infrastructure. The company plans to leverage the HCF technology to bolster its global cloud services infrastructure. Microsoft notes that Lumenisity was founded back in 2017. It’s basically a spin-off of the Optoelectronics Research Centre (ORC) at the University of Southampton in the United Kingdom. Its HCF technology provides significant benefits over conventional solid glass fibers, including a 50 percent faster data transmission rate, improved security & intrusion detection, higher bandwidth, lower costs, and extended reach. Moreover, Lumenisity won the best Fibre Component category award for its hollow-core CoreSmart product at the European International Conference on Optical Communications (ECOC) held in 2021 and 2022. It utilizes nested antiresonant nodeless fiber (NANF) technology to provide performance improvements over single-mode fiber. Microsoft aims to reduce latency and improve the security of its cloud platform Microsoft highlights that this acquisition will help to ensure lower latency and better security for its cloud platform and services customers. The HCF technology should make it easier to meet the demands of the government, financial services, healthcare, manufacturing, as well as retail industries. “Organizations within these sectors could see significant benefit from HCF solutions as they rely on networks and datacenters that require high-speed transactions, enhanced security, increased bandwidth and high-capacity communications. For the public sector, HCF could provide enhanced security and intrusion detection for federal and local governments across the globe, said Girish Bablani, Corporate Vice President, Azure... --- ### Recession Proof Your IT: How to Reduce IT Costs Without Compromising Service - Published: 2022-12-12 - Modified: 2022-12-12 - URL: https://petri.com/recession-proof-your-it-how-to-reduce-it-costs-without-compromising-service/ - Categories: Webinar - Tags: NoAD, NoAds - Article Type: Overview With talk of a recession just around the corner, IT departments need to find ways to do more with less as budgets get tightened. As we move more towards automated technologies, tools designed to lessen the burden on manual operations, and artificial intelligence (A. I. ), tech often available to IT departments in large enterprises, the organization needs to review tools and processes to ensure that operations and compliance demands can be met with less resources. Wednesday, December 14, 2022, at 12:00 PM EST, I will be hosting a free webinar with Tom McGrath, Director of Content, and Dave Wagner, Product Marketing Manager at Nexthink. Tom and Dave will be discussing how enterprise IT departments can change their approach to operations with reduced budgets. They will be revealing how large enterprises can implement cost-efficient IT strategies without affecting the employee experience. Instead of being a cost center, this webinar will look at how IT can instead contribute to cost reductions and be considered a value driver that supports the business through difficult times. More specifically, Tom and Dave will look at examples including software licensing, hardware refresh, and being proactive with your service desk. Nexthink is a software company whose mission is to help IT departments facilitate smart and productive workplaces for employees. Nexthink solutions are designed to help organizations unlock the potential in IT. Register for the live webinar today! --- ### Microsoft Edge to End Support for Windows 7 and Windows 8/8.1 in January 2023 - Published: 2022-12-12 - Modified: 2022-12-12 - URL: https://petri.com/microsoft-edge-end-support-windows-7-windows-8-8-1/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News, Windows 7, Windows 8, Windows 8.1 - Article Type: News Microsoft Edge is finally dropping support for Windows 7 and Windows 8/8. 1 in January 2023. Microsoft has announced in a blog post that Microsoft Edge and Webview2 Runtime version 109 will be the last release to support these older operating systems. Microsoft’s announcement is a reminder that it’s planning to end support for Windows 7 Extended Security Updates and Windows 8/8. 1 on January 10, 2023. The company also warned that Microsoft 365 apps running on legacy operating systems would also stop receiving security updates. Naturally, ending support for Microsoft Edge will inevitably push business customers toward the newer version of Windows. “Both Microsoft Edge version 109 and Webview2 Runtime version 109 are scheduled for release the week of January 12th, 2023. While Microsoft Edge and Webview2 Runtime versions 109 and earlier will continue to work on these operating systems, those versions will not receive new features, future security updates, or bug fixes,” the Microsoft Edge team explained. Microsoft Edge 110 to kill off support for some older versions of Windows Server Additionally, Microsoft has announced some important changes for IT Pros. The company notes that Microsoft Edge 109 will be the last version to support Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2. However, Internet Explorer will continue to work until the operating systems reach end of support deadline. Microsoft is suggesting Windows 7 and Windows 8. 1 customers to update to Windows 10 or 11. The company acknowledges that this change might impact some developers, but... --- ### How to Use Windows File Recovery to Recover Lost Files > Windows File Recovery is a free command-line utility for recovering deleted files in Windows 10 version 2004 and newer. If you have lost any files on your PC after accidentally deleting them, this article explains how to use Windows File Recovery to recover them in a couple of steps. - Published: 2022-12-12 - Modified: 2023-01-17 - URL: https://petri.com/windows-file-recovery/ - Categories: Windows Client OS - Tags: data recovery, Windows, Windows 10, Windows 11, Windows File Recovery - Article Type: How To Windows File Recovery is a free command-line utility for recovering deleted files in Windows. If you have lost files on your PC after accidentally deleting them, this article explains how to use Windows File Recovery to recover them in a couple of steps. Windows File Recovery (WFR) is a newer file restore utility Microsoft released around the time of Windows 10 version 2004 (approximately May 2020). The application is available to download from the Microsoft Store on Windows 10 and Windows 11. What is Windows File Recovery? If you can't find a lost file on your C: drive and you're without a backup, Windows File Recovery may come to your rescue. But, it would help if you act fast... I'll get to that in a bit. Windows File Recovery can restore files deleted from your local SSD drive, USB sticks, memory cards (sd card), and even external hard drives, and ZIP drives. How's that for a blast from the past? A command line app Just a reminder that there is no official GUI application for Windows File Recovery. It is a command-line-only program. Hopefully, you're an IT Pro who is in a Windows Terminal shell often throughout your workday. It will make learning how to use Windows File Recovery and being adept at it much easier. However, if you're brand new to command-line shells and utilities, this post will get you onboard quickly and easily. Let's move on to the engineering of what happens when you delete a file,... --- ### Microsoft Authenticator for iOS Gets FIPS 140 Compliance to Support U.S. Federal Agencies - Published: 2022-12-09 - Modified: 2022-12-09 - URL: https://petri.com/microsoft-authenticator-ios-fips-140-compliance/ - Categories: Authenticator - Tags: Microsoft Authenticator, News - Article Type: News Microsoft has announced that its Authenticator app for iOS is now compliant with the Federal Information Processing Standards (FIPS 140) security standard. The company says FIPS 140 compliance support is available for customers running Microsoft Authenticator version 6. 68 and higher on iOS devices. Microsoft Authenticator is a popular two-factor authentication solution that helps users to secure their online accounts. It provides password-less login support for Microsoft accounts and adds an extra layer of security for third-party apps and services. The Authenticator app also offers additional account management capabilities for Microsoft personal, work, and school accounts. According to Microsoft, the Microsoft Authenticator app for iOS can now utilize the native Apple cryptographic techniques approved by U. S. government agencies. FIPS 140 compliance is enabled by default for Azure Active Directory (AAD) authentications. These include time-based one-time passcodes (TOTP), Passwordless Phone Sign-In (PSI), as well as push multifactor authentications (MFA). “Microsoft maintains an active commitment to meeting the 140-2 requirements, having validated cryptographic modules since the standard's inception in 2001. Microsoft validates its cryptographic modules under the National Institute of Standards and Technology (NIST) Cryptographic Module Validation Program (CMVP),” Microsoft explained in a support document. Microsoft Authenticator to bring FIPS 140 compliance to Android devices Microsoft detailed that its several cloud platforms and services use these cryptographic modules. The list includes Office 365, Office 365 U. S. Government, Dynamics 365, Dynamics 365 Government, Office 365 U. S. Government Defense, as well as Azure and Azure Government. For now, Microsoft Authenticator has achieved compliance with the US... --- ### How to Install and Configure Apache Web Server on Ubuntu 22.04 > Apache web server is one of the most popular tools for serving web pages and deploying web applications using UNIX and Windows operating systems. In this tutorial, I’ll show you how to install and configure Apache web server on Ubuntu Linux 22.04. - Published: 2022-12-09 - Modified: 2022-12-09 - URL: https://petri.com/install-apache-ubuntu-linux/ - Categories: DevOps - Tags: Apache, linux, Ubuntu - Article Type: How To Apache web server, also known as Apache HTTP server, is one of the most popular web servers for UNIX and Windows operating systems. In this tutorial, I’ll show you how to install and configure Apache web server on Ubuntu Linux 22. 04. Apache web server allows you to serve web pages and deploy web applications. It can also be used as a reverse proxy server. Apache web server is easy to work with, and it has many similarities with Nginx web server. How to install Apache on Ubuntu Linux 22. 04 The latest version of the Apache HTTP Server is 2. 4. 54. The new-generation branch tends to use less memory than the 2. 2. x branch, and it also allows users to define variables in Apache configuration files. Here are the prerequisites for installing Apache on an Ubuntu 22. 04 machine: A minimum of 4GB RAM and at least 5GB of storage. Java version 8 or newer. To verify if Java is installed, you can use the java --version command on your device. The installation of Apache web server can be done using non-root user with sudo privileges. Updating the system repository Before performing any software installation on Ubuntu, the first action you need to perform is to update the system repository to ensure that the OS has all of the latest packages available for installation. Log in to your Ubuntu machine using your SSH client. Next, run the sudo apt update command to update the APT package index to the latest version (sudo is... --- ### Microsoft's New Azure Storage Mover Tool Makes Cloud Migrations Easier - Published: 2022-12-09 - Modified: 2022-12-09 - URL: https://petri.com/microsofts-azure-storage-mover-tool/ - Categories: Azure, Microsoft Azure - Tags: Azure Storage, Azure Storage Mover, News - Article Type: News Back in February, Microsoft announced an Azure file migration program that provides popular migration tools to customers at no additional cost. Now, the company has launched a new Azure Storage Mover service that lets organizations migrate their files and folders to Azure Storage. Azure Storage is a managed cloud storage solution that provides accessible, scalable, secure, and durable storage services. These include storage structures for data objects, message storage, disks for virtual machines, file storage, as well as NoSQL storage. Microsoft’s Azure Storage Mover enables customers to migrate their on-premises network file system (NFS) share to an Azure blob container. The service leverages agents (virtual machines) to perform migration tasks. IT admins can design the migration plan in Azure and then track migrations directly from PowerShell, CLI, and the Azure portal. It’s possible to use the service for one-time or repeated data migration projects. “You can use Storage Mover for different migration scenarios such as lift-and-shift, and for cloud migrations that you'll have to repeat occasionally. Azure Storage Mover also helps maintain oversight and manage the migration of all your globally distributed file shares from a single storage mover resource,” said Jurgen Willis, VP of Azure Optimized Workloads and Storage. Storage Mover to add support for additional source and target combinations The Azure Storage Mover tool is currently available in private preview for business customers. Microsoft plans to improve its Azure Storage Mover service to minimize downtime and manage migrations on a large scale. It will add support for additional sources... --- ### Cloud Conversations – Will Rowe on Careers in Tech > Will Rowe is a well-known figure in the Microsoft community and is Director at MS Talent. In this week's Cloud Conversations episode, Will joins Femke and Peter to discuss launching MS Talent, the great resignation, the state of the talent pool, and much more. - Published: 2022-12-09 - Modified: 2022-12-09 - URL: https://petri.com/cloud-conversations-episode-62-will-rowe/ - Categories: Video - Tags: Cloud Conversations - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Will Rowe on Careers in Tech Will Rowe is a well-known figure in the Microsoft community and is Director at MS Talent, which he has built to work with and place people with the right skills in fantastic roles working for amazing companies, usually industry-leading Microsoft Gold Partners. In this week's Cloud Conversations episode, Will joins Femke and Peter to discuss: Launching MS Talent Will's 12 Christmas tips The great resignation The state of the talent pool Knowing what you want from a tech career And much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen... --- ### Microsoft Releases PowerShell Crescendo 1.1.0-preview01 - Published: 2022-12-08 - Modified: 2022-12-08 - URL: https://petri.com/microsoft-powershell-crescendo-1-1-0-preview01/ - Categories: PowerShell - Tags: News, PowerShell, PowerShell Crescendo - Article Type: News Microsoft has announced the release of PowerShell Crescendo 1. 1. 0-preview01. The latest version brings error-handling improvements, a new schema, argument value transformation support, a new way to bypass the output handler, and more. PowerShell Crescendo is a popular platform that helps to create PowerShell cmdlets for command line applications. It improves the original command-line experience with features such as privilege elevation, integrated help information, and a PowerShell pipeline. The main components of the Crescendo framework are a JSON configuration file and Output handler functions. Microsoft has updated the Crescendo schema to add support for two new members to ArgumentTransform, ArgumentTransformType, and Parameter class. Crescendo schema is designed to improve the authoring experience in Visual Studio Code and other supported tools. Additionally, the Export-CrescendoModule cmdlet can now prevent overwriting of the module manifest with a NoClobberManifest switch parameter. Up until now, PowerShell Crescendo wasn’t able to capture native command errors. This release lets Crescendo capture the generated command error output (stderr). It’s possible to use the new Pop-CrescendoNativeError function to access the error messages queue in the output handler. PowerShell Crescendo now supports argument value transformation Moreover, Microsoft introduced support for argument value transformation in PowerShell Crescendo. This capability should be useful for scenarios where it is required to translate the input values provided to a Crescendo wrapped command to another value. “We updated the schema to add two new members to the Parameter class, ArgumentTransform and ArgumentTransformType. Use these members to transform parameter arguments inline or invoke a script block that... --- ### Bitwarden Adds Passwordless Authentication Support to Secure Web Vault - Published: 2022-12-08 - Modified: 2022-12-08 - URL: https://petri.com/bitwarden-passwordless-authentication-web-vault/ - Categories: Security - Tags: News, Passwordless authentication, passwords, Security - Article Type: News Bitwarden has recently announced passwordless authentication support for its web vault. The new feature allows users to log into their Bitwarden vaults with a one-time code, biometric authentication, or security key. Bitwarden is an open-source password management solution for individuals, teams, and businesses. It enables users to store their bank card details, login credentials, and other files and folders in the web vault. The tool encrypts data with salted hashing, AES-256 bit encryption, and PBKDF2 SHA-256. Bitwarden supports macOS, Windows, Android, and iOS, and it’s also available as a browser extension. With this release, Bitwarden users can now use the mobile app to authenticate web vault sign-in requests. The app prompts users that an email address is attempting to log in to their account. The notification includes details such as fingerprint phrase, device type, login attempt time, and the IP address of the computer. Users can choose to allow or deny the authentication request based on these parameters. “Passwordless authentication will be adopted by individuals and businesses as the preferred method of logging into accounts. A member of the FIDO Alliance, which is developing passwordless technologies and standards like passkeys, Bitwarden is committed to the future of passwordless and a safer internet for everyone,” Bitwarden explained. Bitwarden’s passwordless authentication feature to block credentials theft This announcement comes as credential theft continues to rise. Threat actors can leverage phishing methods or social engineering scams to steal user credentials and gain access to sensitive information. It’s one of the reasons that password... --- ### Microsoft Adds RDP Shortpath Support to Azure Virtual Desktop - Published: 2022-12-07 - Modified: 2022-12-07 - URL: https://petri.com/microsoft-rdp-shortpath-azure-virtual-desktop/ - Categories: Active Directory (AD) - Tags: Azure Virtual Desktop, News, RDP - Article Type: News Microsoft has announced the general availability of RDP Shortpath support for public networks in Azure Virtual Desktop. The RDP Shortpath feature is designed to establish a direct UDP-based transport between the client and session host to improve the reliability of Azure Virtual Desktop connections. Microsoft first started rolling out the RDP Shortpath feature back in September. Essentially, there are four major components required to establish the RDP Shortpath data flow for public networks. These include Remote Desktop client, session host, Azure Virtual Desktop Gateway, and Azure Virtual Desktop STUN Server. “When connecting to Azure Virtual Desktop using a public network, RDP Shortpath uses a standardized set of methods for traversal of NAT gateways. As a result, user sessions directly establish a UDP flow between the client and session host. More specifically, RDP Shortpath uses Simple Traversal Underneath NAT (STUN) protocol to discover the external IP address of the NAT router,” Microsoft explained. You can see how the RDP Shortpath feature works for public networks in the screenshot below: RDP Shortpath enhances transport reliability for Azure Virtual Desktop The RDP Shortpath feature provides several key benefits for Azure Virtual Desktop connections. It removes extra relay points to improve connection reliability and user experience for latency-sensitive applications. Moreover, the transport is based on the Universal Rate Control Protocol (URCP) which helps to improve the performance of UDP. Microsoft notes that RDP Shortpath is enabled by default for all connections, and it doesn’t require any additional configurations. However, the company recommends IT admins... --- ### Microsoft Teams Introduces Communities for Consumers and Small Businesses - Published: 2022-12-07 - Modified: 2022-12-07 - URL: https://petri.com/microsoft-teams-communities-consumers-small-businesses/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has started rolling out a new Communities feature in Microsoft Teams for Consumers and Teams Essentials. This release enables users and small businesses to connect, share ideas as well as collaborate with groups and teams. Up until now, Microsoft Teams for Consumers allowed users to send chat messages, start video calls and share files/images with their friends and families. The new Communities feature lets users post announcements for all group members, organize community events, and share documents. Users can also filter content to easily access images, videos, links, and events. “Whether your group is a recreational sports team, event planning committee, parent-teacher association, or even a small business, this new experience gives groups of all kinds a digital space to stay connected before, during, and after gatherings. Communities is currently rolling out in the free version of Microsoft Teams,” said Manik Gupta, CVP for Microsoft Teams Product. With Communities, users can now organize in-person, virtual, and hybrid events in Microsoft Teams. For example, organizers can add new events to their community calendar, send invitations to attendees, and track attendance. Microsoft Teams will also get a new SignUpGenius integration in 2023. It’s a popular signup tool that helps to organize group events with built-in payment processing, email and SMS reminders, and other features. This release will let users hire volunteers, coordinate events, and manage the signup process. Small businesses can create customer communities in Microsoft Teams Microsoft highlights that Communities should be a welcome addition for small and medium-sized businesses... --- ### What’s New in Windows – November 2022 - Published: 2022-12-07 - Modified: 2022-12-07 - URL: https://petri.com/whats-new-in-windows-november-2022/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News It’s been a relatively quiet month what with Thanksgiving in the U. S. and Microsoft slowly winding down for the holiday season. Nevertheless, Windows 11 officially got File Explorer tabs in the November Patch Tuesday update, Qualcomm announced new Arm technology for Windows on Arm PCs, and Microsoft released its last Windows Insider preview build of 2022. Windows 11 officially gets File Explorer tabs and more As part of November’s Patch Tuesday cumulative update (CU), Windows 11 22H2 users got an updated version of File Explorer that now includes a tabbed interface and a new Favorites section where you can pin individual files. Additionally, app overflow is now supported on the taskbar. Windows 11 File Explorer tabs Other features in File Explorer include improved OneDrive integration, where you can see the syncing status of a folder and quickly access OneDrive settings, recycle bin, and view the folder online. The update naturally comes with the usual array of security and reliability fixes. Windows 10 version 22H2 now ready for broad deployment While we’re still not sure exactly what this update contains apparently, Microsoft announced that the Windows 10 22H2 update is now ready for broad deployment. Such announcements are not usually made until 6 months after release. But considering this is such a minor update, this time round it’s happened faster. The update is optional for users running Windows 10 version 20H2 or newer. Microsoft says it includes ‘a scoped set of features’, but it has never shared more details. My... --- ### Microsoft Confirms New Windows Bug Causing Database Connection Issues with Some Apps - Published: 2022-12-06 - Modified: 2022-12-06 - URL: https://petri.com/microsoft-windows-bug-database-connection-issues-apps/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has acknowledged a new issue with the latest batch of Patch Tuesday updates released on November 8. The company warned that the bug may prevent certain database connections from working on Windows 10 and Windows 11 PCs. On the Windows Heath Dashboard, Microsoft noted that users might encounter database connectivity problems with some applications that use ODBC (Open Database Connections) via the Microsoft ODBC SQL Server driver. The bug affects Windows 11, Windows 10, Windows 8. 1, and Windows 7 machines. “You might receive an error within the app or you might receive an error from SQL Server, such as "The EMS System encountered a problem" with "Message: Protocol error in TDS Stream" or "Message: Unknown token received from SQL Server," Microsoft explained. Upcoming updates to fix database connection problems with Windows apps Microsoft has not provided any temporary workaround solution to address database connection issues with apps on Windows devices. However, users can check whether their PC is running any app that's using the problematic SQL Server driver. To do this, open the app and run the following command in the Command Prompt: tasklist /m sqlsrv32. dll Meanwhile, Microsoft is working on a fix and it’s expected to be delivered with the December Patch Tuesday updates. It’s still unclear if this bug affected many Windows users who installed last month’s Patch Tuesday. However, it’s really unfortunate to see Microsoft once again dealing with buggy Windows patches. The company is already investigating another LSASS... --- ### Microsoft Teams Lets Users Set Adobe Acrobat As the Default PDF Viewer - Published: 2022-12-06 - Modified: 2022-12-06 - URL: https://petri.com/microsoft-teams-set-adobe-acrobat-default-pdf-app/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has released a new Adobe Acrobat integration in Microsoft Teams. The latest update allows users to set Acrobat as the default app to view and edit PDF files in the Teams desktop and web clients. With this release, Microsoft Teams can open all PDF files shared in the chats and channels within the Adobe Acrobat app. This new integration lets users search, view, comment, and annotate PDF files without purchasing an Adobe Acrobat subscription. However, an Acrobat Standard or Pro account is required for creating, combining, organizing, and exporting PDFs. “People can stay in the flow of work by securely accessing and collaborating on PDFs directly from within the Acrobat viewer in Teams. This includes the ability to share and review PDFs, collaborate in real time with comments and annotations, get notifications of comments, and easily access PDFs that are stored in Microsoft SharePoint and OneDrive,” the company explained. How to allow Adobe Acrobat in your tenant To get started, IT admins will need to allow the Adobe Acrobat app by following the steps mentioned below: In the Microsoft Teams admin center, head over to Teams app >> Manage apps. Search for the Adobe Acrobat app and click on it to navigate to the app details page. Click the Permissions tab >> select Review permission >> Accept. Org-wide permissions How to install the Adobe Acrobat app for all end users Once done, administrators can make the Acrobat app available on users’ Teams clients by following these steps: Login to the Teams... --- ### Action1 Review – Free Cloud-Native Patch Management for Windows - Published: 2022-12-05 - Modified: 2024-04-16 - URL: https://petri.com/action1-review-patch-management-windows/ - Categories: Windows 10, Windows 11, Windows Server - Tags: Microsoft, NoAD, NoAds, Patch Management, Windows, Windows 10 - Article Type: Sponsored In this review, we show you how you can use Action1's free platform to patch Windows and third-party applications. See how it works here. What is Action1 and why do I need it? Action1 is a class-leading patch management software with a robust feature set that automates the deployment of security updates and patches to your endpoints. IT professionals know that new security vulnerabilities are discovered daily, so it is vital to stay on top of patching to keep your devices and data secure. This post is sponsored by Action1. The move to a hybrid work environment for many organizations has created an additional layer of complexity. Patching devices that aren’t directly connected to your corporate intranet can be challenging. Action1 provides a solution. How does Action1 work? Action1 offers a comprehensive suite of remote patch management functionality in a single cloud-native platform. Internal IT teams and MSPs can efficiently support the modern in-office, remote, and hybrid workforce infrastructures prevalent today. Through a fully cloud-based management interface, you can deploy the agent to your endpoints regardless of their location. You can then use the core features of Action1 to keep endpoints secure, up-to-date, and protected from today's dynamically changing vulnerability landscape. What is cloud-native patch management? Action1 is a cloud-native platform, so you don't need any servers or infrastructure in your on-premises environment. And, regardless of endpoint location, you can manage them from anywhere. No virtual private networks (VPNs) and no on-premises local area network (LAN) access is needed... . --- ### Cloud Conversations: Ana Ines Urrutia on Viva Explorers, Travel and Flying planes > Ana Inés Urrutia is a Dynamics 365 Human Resources specialist and a Microsoft Business Applications MVP. In this new Cloud Conversations episode, she joins Azure and Peter to chat about travel and her career with Dynamics 365 and Human Resources. - Published: 2022-12-05 - Modified: 2022-12-02 - URL: https://petri.com/cloud-conversations-episode-61-ana-ines-urrutia/ - Categories: Video - Tags: Cloud Conversations, Microsoft Viva - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Ana Inés Urrutia on Viva Explorers, Travel and Flying planes Ana Inés Urrutia is a Dynamics 365 Human Resources specialist and a Microsoft Business Applications MVP. In this new Cloud Conversations episode, she joins Azure and Peter to chat about travel and her career with Dynamics 365 and Human Resources. They also chat about: FashionFlying planesThe Viva ExplorersAnd much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise... --- ### PowerShell Set Environment Variable - A Step-By-Step Guide > Environment variables allow you to access command line tools and control the execution of programs on Windows. In this article, we’ll explain how environment variables work and the different ways to set an environment variable with PowerShell. - Published: 2022-12-05 - Modified: 2024-01-30 - URL: https://petri.com/powershell-set-environment-variable/ - Categories: PowerShell - Tags: PowerShell, Windows, Windows 10, Windows 11 - Article Type: How To Environment variables are essential for accessing command line tools and controlling program execution in operating systems. In Windows, PowerShell provides a convenient way to manage and access environment variables. You can set the environment path, edit existing paths, and handle the user profile on your computer. In this step-by-step guide, we'll explore what environment variables are, their scopes, and how to set environment variables using PowerShell. What are environment variables in Windows? Environmental variables often contain critical configuration information for the operating system and its modules, such as current user information, directory paths, or the location of certain core files for the operating system to function. Environment variables store string data and can be passed down to child processes, making them useful for implementing hierarchical processes. Environment variables can be accessed and managed in multiple ways including Windows Explorer, text editors like Notepad, the command prompt, and PowerShell. PowerShell allows you to manage and access the environment variables in several supported operating systems and lets you access, change, clear, and even delete them when needed. Different Scopes of Environment Variables In a Windows operating system, there are three different scopes for the environment variables. These scopes follow a hierarchy (Machine -> User -> Process). And each of these scopes is capable of overwriting the parent if needed.   Machine (System) scope Machine or System scope contains all the environment variables that are related to the system and are associated with the Windows instances. System variables can be seen and accessed... --- ### Microsoft Exchange Online Adds Support for Role Based Access Control for Applications - Published: 2022-12-02 - Modified: 2022-12-02 - URL: https://petri.com/microsoft-exchange-online-role-based-access-control-for-applications/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft has introduced role-based access control (RBAC) support for applications in Exchange Online. The new security feature brings a new set of “resource-scoped permissions” to help organizations better protect access to email, contacts, and calendar data. The role-based access control model was first introduced in Exchange 2010 and it is used in Exchange Server and Exchange Online. It allows IT admins to manage and delegate permissions for Exchange administrative tasks. Role-based access control is particularly useful for organizations that work with third parties and contractors which makes it harder to monitor network access. “RBAC for Applications allows admins to grant permissions using a role assignment to an application that accesses Exchange Online data without user involvement. Admins can limit the data an application can access using a resource scope. This feature extends our current RBAC model and will replace the current Application Access Policy feature,” the Exchange Online team explained. The role assignment configuration allows IT Pros to define the scope of an app/Service Principal to perform any action against some resources. For instance, a room booking system is allowed to access calendar data in select geographical regions. RBAC for applications in Exchange Online to hit GA In 2023 Microsoft added that the RBAC for applications feature is available in preview for enterprise customers, and it is expected to hit general availability in H1 2023. Currently, IT admins can use Exchange Online PowerShell for management tasks, with support for the Azure Active Directory admin center and Microsoft Graph PowerShell to... --- ### Microsoft Syntex to Launch New PAYG Backup and Restore Solution for Exchange, OneDrive, and SharePoint - Published: 2022-12-02 - Modified: 2022-12-02 - URL: https://petri.com/microsoft-syntex-backup-restore-solution/ - Categories: Microsoft 365 - Article Type: News Microsoft relaunched its Syntex service with a broad set of AI-powered tools to automate content creation, indexing, and discovery at Ignite 2022. The company also plans to introduce a Pay-as-You-Go (PAYG) backup and restore service for Exchange, OneDrive, and SharePoint as part of its Syntex suite. With this release, Microsoft Syntex will enable users to back up their content across OneDrive for Business, SharePoint Online, and Exchange Online. Enterprise customers will use an Azure subscription to pay for the resource consumption required for performing backup and restore operations. Microsoft ensures the high availability of backups and tight integration with the content policies of the organization. “Whether you need malware protection or preserved file copies from a particular point in time, Syntex backup can help. It preserves the state of your cloud—across Syntex, SharePoint, OneDrive, and Exchange—so that you can get back to information from the last quarter, the last month, or the last decade with ease, keeping your backup stored conveniently in the Microsoft Cloud,” explained Seth Patton, General Manager for Microsoft 365. Content restore in Syntex Microsoft Syntex backup and restore tool vs third-party services There are several advantages of using the Syntex backup and restore solution for Microsoft 365 customers. First up, the OneDrive, SharePoint, and Exchange data is stored in Microsoft’s data centers which should speed up the backup and recovery process as compared to third-party services. Moreover, it will help to reduce operational costs and the price for organizations. Microsoft can also improve the functionality of... --- ### How to Enable Windows 11 Config Lock on Secured-Core PCs > Windows 11 config lock is a new system-level feature to protect secured-core PCs from unintentional misconfiguration. In this article, I'll be detailing how Windows 11 config lock works and how you can configure it in the Intune Admin Center. - Published: 2022-12-02 - Modified: 2022-12-02 - URL: https://petri.com/windows-11-config-lock/ - Categories: Security, Windows Client OS - Tags: Configuration Lock, Secured-Core PCs, Security, Windows 11 - Article Type: How To Windows 11 Secured-core configuration lock (config lock) is a new system-level feature on the Windows 11 2022 Update to protect secured-core PCs from unintentional misconfiguration. When enabled, Windows 11 config lock should guarantee that secured-core PCs won't be affected by configuration drift. In this article, I'll be detailing how config lock works and how you can configure it in the Intune Admin Center. When Microsoft revealed the minimum supported hardware requirements for Windows 11, the software giant made its security focus very clear. By removing support for chips and chipsets that do not support Windows 11's improved performance, reliability, and security features, the company made purposeful strides toward a security-first product. How Windows 11 config lock works To understand how Windows 11 config lock works, you'll first need to understand what is a "secured-core PC," which sounds a little bit like a marketing term – and it is. What is a secured-core PC? A secured-core PC is a device that conforms to a series of best practices that provide protection against sophisticated attacks. With secured-core PCs, Microsoft has begun to address one of the more common attack vectors in modern operating systems – the kernel. Recent malware has leveraged vulnerable kernel drivers to gain direct access to the operating system itself, bypassing the usual security controls that are designed to protect computers. As this type of attack can go undetected and disable security protections such as Microsoft Defender, it is a particularly big deal when it comes to threat... --- ### Azure Stack HCI Gets New Network HUD Feature to Detect Networking Issues - Published: 2022-12-01 - Modified: 2022-12-01 - URL: https://petri.com/azure-stack-hci-network-hud-detect-networking-issues/ - Categories: Azure Stack HCI - Tags: Azure Stack, News - Article Type: News Microsoft has released a new Network HUD feature that allows IT administrators to identify and mitigate networking issues in Azure Stack HCI. The latest update is available for enterprise customers running Azure Stack HCI versions 21H2 and 22H2. The Network HUD feature can proactively detect and prevent operational networking issues that cause stability issues and performance degradation. Network HUD version 1. 0. 0 can automatically identify problems such as PCIe bandwidth oversubscription, inbox drivers/out-of-date drivers, and missing Network ATC intent types. It also makes the detection of unstable adapters that frequently disconnect or reset easier. “Network HUD analyzes the information coming from event logs, performance counters, tooling like Pktmon, network traffic, and the physical network devices in real-time to identify issues BEFORE they happen. In many cases, it will PREVENT issues from occurring by modifying your system to ensure that issues are not exacerbated,” the company explained. https://youtu. be/GqOq3oBbRrM Additionally, the feature can send notifications with actionable messages to help IT admins address these problems. Going forward, Microsoft will add learning capabilities to improve Network HUD. For instance, it will be able to detect high and low traffic times to ensure a smooth maintenance experience. According to Microsoft, Network HUD sends alerts to IT Pros through the Windows Admin Center or Azure Portal interfaces. However, they will need to configure Azure Insights for their Azure Stack HCI cluster and action groups in the portal. Network HUD installs updates like a cloud-service Microsoft notes that Network HUD installs updates like other Azure services. “The... --- ### What’s New with Microsoft’s Power Platform in November 2022 > Microsoft has just updated its Power Automate desktop app with a new client update and process mining features. In November, we’re also getting a preview of a PowerFX formula repair tool and Power Apps developer tools. - Published: 2022-12-01 - Modified: 2022-12-01 - URL: https://petri.com/microsoft-power-platform-november-2022-updates/ - Categories: Power Platform - Tags: Dynamics 365, power apps, Power Automate, power automate desktop - Article Type: News After a series of exciting Power Platform announcements from Ignite in October, Microsoft has been focusing on its Power Automate desktop app this month with a new client update and process mining features. In November, we’re also getting a preview of a PowerFX formula repair tool and Power Apps developer tools. Microsoft also had an exciting announcement for everyone in the logistics and warehousing industries with its Supply Chain Platform.   Power Automate Desktop Update  The November 2022 update for Power Automate for desktop brings some new UI changes. The desktop interface now includes a home page that displays helpful links and guides users through the desktop console. The new Power Automate Desktop home page. The update also brings in more SharePoint connection actions such Get Lists, Get file content, and Get file metadata. Additionally, warnings will now be displayed in the Power Automate desktop app in pop outs and via the banner. Lastly, license requests to admins can also now be sent using the desktop client as well as prompting trials or extensions. Capturing UI elements is also receiving a performance boost.   You can download the latest release (version 2. 26) here.   Power Automate Process Mining  Back in March, Microsoft announced the acquisition of Minit, a provider of process mining solutions. Since then, Microsoft has been working to incorporate Minit’s technology into Power Automate and Power Virtual Agents, and new process mining capabilities are now available in preview. Process mining is not a new feature by itself: users have been able... --- ### Microsoft Releases Azure AD Authentication Support for Windows Admin Center in Azure - Published: 2022-12-01 - Modified: 2022-12-01 - URL: https://petri.com/microsoft-azure-ad-authentication-windows-admin-center-azure/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure AD, Microsoft Azure, News - Article Type: News Microsoft has recently announced that Azure Active Directory authentication support is generally available for organizations using Windows Admin Center in the Azure management console. This feature is designed to make it easier for customers to manage their domain and non-domain joined server infrastructure. Last year, Microsoft announced that Windows Admin Center can now help IT admins manage their Azure Arc-enabled infrastructure directly from the Azure portal. The feature lets them manage Arc-enabled Windows Servers and virtual machines as well as Azure Stack HCI systems. It should enhance security and eliminates the need to remotely access servers or clusters via public IP address, VPN, and inbound connectivity. Up until now, Windows Admin Center in Azure allowed IT Pros to use their local admin password to sign in and manage Windows virtual machines (VMs). With Azure Active Directory authentication support in Windows Admin Center, administrators can use Azure AD credentials to log into their Windows Server VMs. “This enables single sign-on (SSO) and seamless management for your Windows Server instances using Azure AD authentication with Windows Admin Center in Azure. If your Azure AD identity is part of the “Windows Admin Center Administrator Login” Azure RBAC role, you get access to the full suite of management capabilities that Windows Admin Center provides in the Azure Portal,” explained Alex Weinert, Director of identity security at Microsoft. Managing Windows Server machines Getting started with Azure AD authentication support for Windows Admin Center in Azure Keep in mind that this capability is only available for... --- ### Microsoft Teams Adds Scheduled Messages and Other Chat Features - Published: 2022-11-30 - Modified: 2022-11-30 - URL: https://petri.com/microsoft-teams-updates-november-2022/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has just published a roundup of new features added to its Teams collaboration service in November 2022. The list of recent updates includes scheduled messages, instant polls, new Teams devices, and management features. Here’s what you need to know: Scheduled messages First up, Microsoft introduced a new chat feature that allows desktop and mobile users to schedule messages in Teams chat. The latest update enables users to choose when the message will be delivered to their coworkers. It should help them to collaborate at the right time and respect off days and work-life balance. Microsoft Teams is getting a new feature that lets users accept or reject group chat invites from external (unmanaged users). This capability has been available for 1:1 chats for a while and it’s now coming to group chats. The Microsoft Teams desktop app allows users to filter unread notifications in the Activity tab. Additionally, it’s possible to start a chat with Mail-enabled Security Groups, Office 365 Groups, and Distribution Groups with up to 250 participants. Microsoft has improved the search experience to show the full context of the message in the conversation history. Another new feature lets users attach OneDrive files in e-signature approval requests. Instant polls for meetings Microsoft Teams now allows organizers to quickly gather feedback from attendees with instant meeting polls. They will be able to create polls with binary responses such as Yes/No, thumbs up/thumbs down, etc. Moreover, the app can automatically switch to Large Gallery view to show up to... --- ### Why You Should Have a Fabric Domain and Network for Azure Stack HCI > Microsoft's hyperconverged infrastructure (HCI) cluster solution can be pretty complex to implement and secure. In this article, we explain how IT pros can create a fabric domain and network to keep Azure Stack HCI separated from the rest of the application services hosted by their organization. - Published: 2022-11-30 - Modified: 2023-05-08 - URL: https://petri.com/azure-stack-hci-fabric-domain-network/ - Categories: Azure, Azure Stack HCI - Tags: Azure, Azure Stack HCI, networking - Article Type: How To While working with customers using Microsoft’s Azure Stack HCI solution, I often hear concerns about the security, identity management, and Internet access aspects of this platform. In this article, I’m going to detail a methodology allowing IT pros to make their Azure Stack HCI environment more secure by creating a fabric domain and network. More often than not, customers may want to set up security and accessibility rules for their servers that won’t work with hybrid services and systems such as Azure Stack HCI. In most cases, those regulations may include Internet access using Proxy servers, delegated control in Active Directory, or IP-based firewall rule sets.  The purpose of the methodology I’m going to describe in this article is to keep Azure Stack HCI separated from the rest of the application services hosted by an organization. How can a fabric domain and network benefit your Azure Stack HCI environment? Microsoft's hyperconverged infrastructure (HCI) cluster solution can be pretty complex (and costly) to implement, but a fabric domain and network can increase security between your fabric domain and user applications services. What is a fabric domain and network? A fabric domain and network is an encapsulated part of your network with a separate Windows Server Active Directory or Lightweight Directory Access Protocol (LDAP) domain that’s only used for virtualization and hosting purposes. Such a network normally contains one or more virtual local area networks (VLAN) and a separate domain for both fabric machines, as shown below. You may have one... --- ### Windows 11 Optional Update Adds New MDM Policy for Organizational Messages - Published: 2022-11-30 - Modified: 2022-11-30 - URL: https://petri.com/windows-11-optional-update-policy-organizational-messages/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has released a new optional patch (KB5020044) for Windows 11 version 22H2. The latest release brings some new features and improvements for Windows 11 users, such as Windows Spotlight theme integration and updates for OneDrive storage in the Settings app. For starters, Microsoft has introduced a new mobile device management (MDM) policy to manage organizational messages. This release will allow IT admins to onboard client Windows devices in their tenant. Microsoft recently released the organizational messages feature that enables administrators to send important messages to users on their lock screens, desktops, or above the taskbar on Windows 11 PCs. Moreover, OneDrive users will now see storage alerts in the System section in Settings. These alerts will appear when users are running low on cloud storage space in their Microsoft accounts. Users can also manage OneDrive storage capability and buy additional cloud storage if needed. Microsoft adds detailed storage usage information to Windows 11 Settings Microsoft has also added detailed storage usage information to the Accounts page in the Settings app. This means that Windows 11 users will be able to view the total storage capacity of all OneDrive subscriptions. Microsoft has also added a new Windows Spotlight integration with Themes in Personalization settings. Additionally, the latest Windows 11 updates include bug fixes to address an issue that affected app installations on some enterprise devices. Microsoft has also fixed an issue that caused File Explorer to stop working while closing context menus and menu items. This release brings fixes for... --- ### Here Are The Main Highlights From Amazon's AWS re:Invent 2022 Conference - Published: 2022-11-30 - Modified: 2022-11-30 - URL: https://petri.com/aws-reinvent-2022-conference-highlights/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS re:Invent - Article Type: News Last week, Amazon held its AWS re:Invent 2022 conference in Las Vegas. Re:Invent is Amazon’s premier conference for Amazon Web Services announcements, and this year’s re:Invent was a hybrid conference with the company streaming significant parts of the conference for free. As usual, this year’s re:Invent conference was packed with new AWS announcements. Here are highlights from the array of AWS news Amazon announced last week. AWS re:Invent 2022 analytics announcements AWS Glue 4. 0 now provides updated engines and support for more data formats. The new version of AWS Glue includes Python 3. 10 and Apache Spark 3. 3. 0, plus native support for the Cloud Shuffle Service plugin for Spark.   Amazon Transcribe is also adding support for real-time analytics for live calls: APIs provide real-time call analytics enabling developers to accurately transcribe live calls and identify customer experience issues and sentiment in real-time. AWS re:Invent 2022 compute and container announcements Microsoft Office Amazon Machine Images (AMIs) on Amazon EC2 now come with AWS-provided licenses: AWS now provides AMIs that are complete with fully licensed versions of Microsoft Office, making it easier for businesses to deploy Microsoft Office on EC2. AWS Marketplace for Containers also added support for direct deployment to Amazon EKS Clusters. Support for direct deployment of containers from the AWS Marketplace to Amazon EKS clusters makes it easier for businesses to find third-party Kubernetes software from the Amazon EKS console and deploy it to their EKS clusters. Using Proactive Compliance with AWS Config (source: aws. com) AWS re:Invent 2022 management tools... --- ### Microsoft Defender Vulnerability Management Now Supports Firmware Assessments - Published: 2022-11-29 - Modified: 2022-11-29 - URL: https://petri.com/microsoft-defender-vulnerability-management-firmware-assessments/ - Categories: Security - Tags: Microsoft Defender Vulnerability Management, News, Security - Article Type: News Microsoft has released a new update for its Microsoft Defender vulnerability management service. The latest release enables IT admins to assess the firmware security of client devices in their organization. Microsoft Defender vulnerability management was launched back in May this year. It’s a built-in module in Defender for Endpoint that can discover vulnerabilities and misconfigurations across on Windows, macOS, Linux, iOS, and Android. The Defender vulnerability management tool continuously prioritizes critical vulnerabilities and provides recommendations to mitigate security risks. “Microsoft Defender Vulnerability Management new firmware assessments feature provides customers with full visibility into device manufacturer, processor and BIOS information. Customers who have access to Microsoft Defender Vulnerability Management add-on will be able to see their organization’s exposure to firmware vulnerabilities, remediation instructions and recommended firmware versions to deploy,” the company explained. The new hardware and firmware assessments feature allows IT admins to view a list of hardware and firmware in all client devices. Moreover, it provides information about the inventory of BIOS, processors, and systems. The feature details the number of weaknesses and exposed devices as well as shows threat insights. To access the hardware and firmware assessment page, IT admins will need to head over to the Microsoft 365 Defender portal. Select Inventories >> Hardware & Firmware under the Vulnerability management navigation menu. Microsoft Defender Vulnerability Management protects client devices against firmware attacks Microsoft highlights that threat actors are increasingly targeting hardware and firmware components. The new feature should provide complete visibility into the security posture of these components... --- ### Microsoft Entra Workload Identities Service is Now Generally Available - Published: 2022-11-29 - Modified: 2022-11-29 - URL: https://petri.com/microsoft-entra-workload-identities-generally-available/ - Categories: Compliance, Identity Service, Security - Tags: Microsoft Entra, News - Article Type: News Microsoft has announced the general availability of its Entra Workload Identities service. The new solution is designed to manage identity and access for software workloads and Certificate-based Authentication. A workload identity is an identity that allows an application or service principles to access other services and resources. However, it’s a bit challenging to secure workload identities as compared to user identities. For instance, workloads identities can’t perform multi-factor authentication (MFA). Moreover, organizations have no formal process for managing access to resources and there is a higher potential for leaked credentials. Microsoft notes that these challenges make it harder for IT admins to manage workload identities. As workload identities are facing an increasing number of cyber attacks, Microsoft is extending its capabilities to secure these workloads. Microsoft Entra Workload Identities is an identity and access management service that offers security controls for applications and services and helps manage their lifecycle. The key capabilities included in the Microsoft Entra Workload Identities solution include conditional access, identity protection, and access reviews. “With Microsoft Entra Workload Identities, you can apply enhanced security to your workload identities by implementing conditional access, containing threats proactively, and getting more insight into workload identities lifecycles,” Microsoft explained. https://www. youtube. com/watch? v=k-QytUPPstI The conditional access feature lets IT admins configure location or risk-based policies for workload identities. Moreover, the identity protection feature helps to track compromised credentials, suspicious sign-in attempts, and changes to accounts. It’s also possible to create access reviews for workload identities. Getting started with Microsoft Entra Workload Identities Additionally,... --- ### Cloud Conversations – Meron Gebremedhin on the Pathfinders Power Platform Community > In this week's Cloud Conversations episode, Meron Gebremedhin, a Senior System Engineer who founded the Pathfinders Power Platform community joins Azure and Peter to discuss her journey into tech, working across the Power Platform, and cyber security. - Published: 2022-11-29 - Modified: 2022-11-29 - URL: https://petri.com/cloud-conversations-meron-gebremedhin-pathfinders-power-platform/ - Categories: Video - Tags: Cloud Conversations, Power Platform - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Meron Gebremedhin on the Pathfinders Power Platform Community Meron Gebremedhin is a Senior System Engineer who founded the Pathfinders Power Platform community. In this week's episode, Meron joins Azure and Peter to discuss her journey into tech, working across the Power Platform and cyber security. They also chat about: MentorshipCertificationsThe Pathfinders Power Platform CommunityAnd much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They’re joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise... --- ### Microsoft Defender for Endpoint Gets New Zeek Integration to Detect Network-Based Threats - Published: 2022-11-28 - Modified: 2022-11-28 - URL: https://petri.com/microsoft-defender-endpoint-zeek-integration-network-based-threats/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News - Article Type: News Microsoft has partnered with Corelight to add a new Zeek integration to its Defender for Endpoint solution. The new integration helps to reduce the time required to detect sophisticated network-based threats in enterprise environments. Zeek is an open-source tool that monitors network traffic packets to detect malicious activity within a network. Microsoft Defender for Endpoint can now inbound and outbound traffic with a new Zeek engine that can aggregate network protocol data across an entire TCP/UDP session. According to Microsoft, these insights help to improve the detection of network-based attacks. It can also detect attacks on non-default ports and respond to emerging network-based threats such as Log4Shell and PrintNightmare. “The integration of Zeek into Microsoft Defender for Endpoint provides a powerful ability to detect malicious activity in a way that enhances our existing endpoint security capabilities, as well as enables a more accurate and complete discovery of endpoints & IoT devices,” the company explained. Microsoft Defender for Endpoint currently provides two Zeek-based detection capabilities for enterprise customers. The first feature allows IT admins to identify PrintNightmare exploitation attempts in their network. Moreover, Microsoft Defender for Endpoint can show alerts for proprietary password spray attacks. PrintNightmare Alert Microsoft Defender for Endpoint adds new device discovery enhancements Additionally, Microsoft says that the latest update brings improvements to passive device discovery capabilities in Microsoft Defender for Endpoint. This release brings out-of-the-box support for several popular device discovery protocols such as NTLM, SSH, and FTP. Microsoft notes that the new Zeek integration doesn’t replace... --- ### What is ClickUp? - Published: 2022-11-28 - Modified: 2022-12-20 - URL: https://petri.com/what-is-clickup/ - Categories: Productivity and Collaboration - Tags: ClickUp, project management, Task Management - Article Type: Overview ClickUp is a cloud-based project management tool that provides various collaboration features. In this article, we’ll explain how ClickUp works and how it can help organizations of all sizes to improve how they operate with a full-featured project management platform. The ongoing COVID-19 pandemic has pushed businesses all over the world to look for better tools to improve collaboration between employees, whether they’re working on-site or at home. As you’ll see in this article, ClickUp offers a broad range of task management and collaboration tools on the same unified platform. What are the main use cases for ClickUp? ClickUp is designed as an all-in-one productivity platform with various features to help businesses to operate more efficiently. It competes with productivity tools like Notion and Microsoft 365. Here are the main use cases for ClickUp for organizations of all sizes. Project management The multi-level hierarchy of views allows organizations to plan, organize, and track progress on multiple projects more efficiently. Depending on the scope and size of your projects, ClickUp lets you build custom workflows for each of them. You can create multiple lists and tasks and assign each of them to individuals or teams. The platform also allows you to automatically track the time employees spend on a particular task. You can export detailed time tracking sheets at an individual or project level and use that information for billing or work tracking purposes. Collaboration and communication With most organizations now allowing their employees to work remotely, it has become... --- ### Microsoft Launches New Windows Update for Business Reports Service - Published: 2022-11-28 - Modified: 2022-11-28 - URL: https://petri.com/microsoft-windows-update-for-business-reports/ - Categories: Windows 10, Windows 11 - Tags: News, Security, Windows 10, Windows 11 - Article Type: News Microsoft has recently announced the general availability of Windows Update for Business reports. The new solution that enables customers to view device and software-update compliance information for Windows 11 and Windows 10 PCs. Microsoft released this service as Azure Workbooks for Update Compliance in public preview back in August. It allows IT admins to monitor feature, quality, and security updates across all Windows 10 and 11 machines. Moreover, the tool includes reports on devices with update compliance issues and bandwidth savings within an organization. “Windows Update for Business reports is a cloud-based solution that provides information about your Azure Active Directory-joined devices' compliance with Windows updates. Windows Update for Business reports is offered through the Azure portal, and it's included as part of the Windows 10 or Windows 11 prerequisite licenses,” the company explained. https://youtu. be/RchQB94q-yc To get started with Windows Update for Business reports, users will need to sign into the Azure Portal. Select Monitor >> Workbooks >> Windows Update for Business reports >> Get started >> Windows Update for Business reports enrolment. Choose the Subscription and Azure Log Analytics Workspace and click Save settings. The Windows Update for Business reports enrollment flyout Windows Update for Business reports to replace the Update Compliance solution in 2023 Microsoft has confirmed that Windows Update for Business will eventually replace Microsoft’s Update Compliance solution. All existing customers will be able to use the legacy service for now, but it will no longer be available to download for new users starting next month. Microsoft... --- ### Best Black Friday Hardware, Software, and Security Deals for IT Pros - Published: 2022-11-25 - Modified: 2024-11-19 - URL: https://petri.com/best-black-friday-2022-deals-it-pros/ - Categories: Hardware - Tags: Antivirus, News, printers, Security, Surface - Article Type: Overview The shopping season is finally here. That’s right, Black Friday deals and offers are already live at popular online retailers such as Amazon, Best Buy, the Microsoft Store, and more. This means that it’s the best opportunity to purchase all kinds of technology products such as Wi-Fi routers, printers, laptops, peripherals, security cameras, antivirus software, and various other subscriptions. To help you find the best promotions out there, we have compiled a list of the popular Black Friday 2022 deals below: Microsoft 365 Business Deal for Small Businesses Microsoft has announced that small and medium-sized businesses (SMBs) can save up to 10 percent on their first full year of Microsoft 365 Business Standard and Microsoft 365 Business Premium. However, this offer is available for new US-based Microsoft 365 commercial customers between November 21 and December 30. The Microsoft 365 suite is a cost-effective and secure cloud-based solution that makes it easier for small businesses to collaborate and communicate with their team and customers. Moreover, it comes with built-in security features (such as email protection and access control) to help small businesses protect their data and endpoints against sophisticated security threats without a dedicated IT department. Microsoft's Surface Deals Microsoft has just announced new Black Friday deals with some pretty cool discounts on select Surface devices. Moreover, the company is also offering discounts on various Surface accessories. We have listed some of the interesting deals below, and we invite you to add the Black Friday Deals page on the Microsoft Store... --- ### Latest Patch Tuesday Updates Cause Freezes, Reboots on Domain Controllers - Published: 2022-11-25 - Modified: 2022-11-25 - URL: https://petri.com/patch-tuesday-updates-freezes-reboots-domain-controllers/ - Categories: Windows Server - Tags: News, Windows Server - Article Type: News Earlier this month, Microsoft rolled out a new set of Patch Tuesday updates for Windows Server. The company has recently confirmed that it’s investigating a new LSASS memory leak bug caused by the latest Windows updates that may trigger freezes and reboots on some domain controllers (DCs). Local Security Authority Subsystem Service (LSASS) is a service that allows users to manage local security, user logins, and permissions. It’s responsible for enforcing security policy on Windows machines. “After installing KB5019966 or later updates on Domain Controllers (DCs), you might experience a memory leak with Local Security Authority Subsystem Service (LSASS,exe). Depending on the workload of your DCs and the amount of time since the last restart of the server, LSASS might continually increase memory usage with the up time of your server and the server might become unresponsive or automatically restart,” Microsoft explained. Additionally, Microsoft has confirmed on the Windows Health Dashboard that the problem affects Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2 SP1, and Windows Server 2008 SP2. How to fix LSASS memory leak issues on domain controllers Microsoft is working to fix the LSASS memory leak issue on domain controllers. In the meanwhile, there’s a temporary workaround solution that will help IT Pros to remediate the problem in enterprise environments. To do this, run the command prompt as administrator and run the following command to set the registry key "KrbtgtFullPacSignature" value to 0: reg add "HKLM\System\CurrentControlSet\services\KDC" -v "KrbtgtFullPacSignature" -d... --- ### Windows Subsystem for Linux Drops its Preview Tag on the Microsoft Store - Published: 2022-11-23 - Modified: 2022-11-23 - URL: https://petri.com/windows-subsystem-for-linux-microsoft-store/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, WSL, WSL 2 - Article Type: News Microsoft has announced that the Windows Subsystem for Linux (WSL) is now generally available on the Microsoft Store. The new Windows Subsystem for Linux version 1. 0 includes support for Linux GUI apps that is available for all users running Windows 10 version 21H1, 21H2, or 22H2. According to Microsoft, the Microsoft Store version of Windows Subsystem for Linux was one of the top requested features from the community. The company has also highlighted that the Store version has become the default experience on Windows 10 PCs and it will receive faster updates. Microsoft has also introduced support for new commands that let users install the specific Windows Subsystem for Linux distro on their PCs. Users can either choose to turn on the built-in version or manually install the WSL 1 optional Windows component. It’s also possible to block the installation of Ubuntu during the installation of Windows Subsystem for Linux. “With this update our goal is to simplify our versioning story. Since WSL 2 is the default distro type, and the Store version of WSL is the default install location, you can just say: WSL is an app in the Microsoft Store that lets you run actual Linux that integrates directly into Windows,” explained Craig Loewen Program Manager II, Windows Developer Platform. The Microsoft Store version of Windows Subsystem for Linux brings systemd support Additionally, the Microsoft Store version of Windows Subsystem for Linux adds support for systemd. It’s a suite of building blocks that controls how services start on... --- ### Microsoft to Fix New Windows 11 22H2 Bug Breaking Remote Desktop Connections - Published: 2022-11-23 - Modified: 2022-11-23 - URL: https://petri.com/microsoft-windows-11-22h2-remote-desktop-connections/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Microsoft has acknowledged a new issue that’s currently affecting Windows 11 version 22H2 (or the Windows 11 2022 Update). The company detailed on the Windows 11 Health Dashboard that some users may experience crashes or freezing issues when trying to use the Windows Remote Desktop app to connect to Windows 11 PCs. “After installing Windows 11, version 22H2 (also called Windows 11 2022 Update), the Windows Remote Desktop application might stop responding when connecting via a Remote Desktop gateway or Remote Desktop Connection Broker. An example of this connection scenario is when connecting to a Remote Desktop Services collection. RemoteApp and Desktop Connections are ways in which this connection is accomplished,” the company explained. Naturally, the issue shouldn’t affect home users/consumers because the connection problem is different by default. Microsoft has recommended that users can resolve the issue by terminating the Remote Desktop app with Task Manager in Windows 11. To do so, users will need to browse the Process tab of Task Manager, find the mstsc. exe process, and then kill it. How to fix Remote Desktop freezing issues on Windows 11 22H2 Additionally, Microsoft notes that IT admins can configure a group policy to disable UDP on affected Windows 11 devices. However, users may experience performance degradation when using the Remote Desktop app over WAN. The company advises administrators to revert the group policy change as soon as a fix is available in a future update. Open the Group Policy Management Console or the Group Policy Editor. Navigate to Computer... --- ### How to Install Google Drive for Desktop (Install & Set Up) > Google Drive is a cloud-based storage platform with seamless file-sharing and synchronization features. In this guide, we explain how to install Google Drive for desktop, how to pause or check the sync status on a Windows or Mac device, and how to integrate Google Drive with Microsoft Office. - Published: 2022-11-23 - Modified: 2023-01-09 - URL: https://petri.com/install-google-drive-for-desktop/ - Categories: Cloud Computing, Windows Client OS - Tags: Cloud Storage, Google Drive, Windows, Windows 10, Windows 11 - Article Type: How To Google Drive is a popular cloud-based storage platform. It offers file-sharing and synchronization features that help users create, manage, and share documents across apps such as Google Docs, Slides, and Sheets. In this guide, I’ll explain how to install Google Drive for desktop, and how to pause or check the sync status on a Windows or Mac device. I’ll also discuss how to integrate Google Drive with Microsoft Office. Google Drive provides a downloadable client that allows users to synchronize files and folders from their computers to the cloud and vice versa. It’s an ideal solution for keeping important documents in the cloud so that they can be accessed easily from any device and for real-time collaboration. How to install Google Drive for PC or Mac Here’s how to quickly install Google Drive for desktop on your Windows or Mac device: Head over to the Google Drive downloads page and follow the on-screen instructions to download the setup file. Navigate to the bottom of the screen (Windows) or the top Menu bar (Mac) and click the GoogleDriveSetup. exe file to install the app. You can find more detailed instructions about the installation of Google Drive for desktops below. Why you should install Google Drive for desktop The Google Drive for desktop app provides several key features for users on Windows and macOS. First up, it enables users to directly access Google Drive from their local system without opening a web browser. The app also lets users back up photos (RAW... --- ### Amazon Announces $4.4B Investment in India with New AWS Region - Published: 2022-11-22 - Modified: 2022-11-22 - URL: https://petri.com/amazon-announces-cloud-region-india/ - Categories: Cloud Computing - Tags: AWS, cloud computing, News - Article Type: News Amazon has announced the launch of a new AWS region in Hyderabad, India. The company says the new infrastructure region will help to drive digital transformation with approximately $4. 4 billion investment in the South Asian market by 2030. Specifically, AWS first started working on this new cloud region Hyderabad region in late 2020. The company claimed that it will create more than 48,000 full-time jobs annually in businesses such as engineering, telecommunication, construction, facility maintenance, and more. Moreover, the construction and operation costs of the data center will add around $7. 6 billion to India’s GDP by 2023. AWS already has several major clients in India, such as HDFC Bank, Axis Bank, Acko, PhysicsWallah, and Niti Aayog. “Customers and partners in India will now have additional regional infrastructure to deploy applications with greater resilience, availability, and even lower latency. We are proud to invest in the future of the Indian technology community and workforce, and we are committed to helping organizations across industries increase agility and drive innovation,” said Prasad Kalyanaraman, VP of Infrastructure Services at AWS. AWS continues to invest in the cloud computing space It is important to note that AWS now has 96 availability zones across 30 geographic regions worldwide. The company has recently launched a new cloud region in Switzerland, with a pledge to invest $5. 9 billion by 2036. Meanwhile, AWS is also working on five more regions in Canada, Australia, New Zealand, Australia, and Thailand. It’s a part of the company’s efforts to strengthen its dominance... --- ### Microsoft Defender for Endpoint Gets New Removable Storage Management Capabilities - Published: 2022-11-22 - Modified: 2022-11-22 - URL: https://petri.com/microsoft-defender-for-endpoint-gets-new-removable-storage-management-capabilities/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News, Windows - Article Type: News Microsoft has introduced several new removable storage management features in Defender for Endpoint (MDE). The latest release makes it easier for organizations to protect removable storage devices on Windows PCs. More specifically, Microsoft Defender for Endpoint helps IT admins to control how employees read, write, and execute specific files on removable storage. For instance, it’s possible to enable settings to block files with extensions such as EXE, CMD, BAT, INK, BIN, COM, CPL, and CHM. Microsoft has also added support for AD Object and Azure AD Object Id in Defender for Endpoint. It enables customers to only allow specific end users to interact with certain removable storage devices on authorized machines. Moreover, IT admins can now configure a policy to keep track of all files moved to a removable storage device. File information for removable storage event Over the last few months, Microsoft has also made some improvements to the removable storage access control investigation experience in Defender for Endpoint. Users will see a new removable storage access control event on the machine timeline page available under Microsoft 365 security portal >> Devices >> Device page >> Timeline. Additionally, the Advanced Hunting Device Control reports can now document the file path and name triggered by a file-level policy. Microsoft has also reduced the time required to update the Device Control report with data and visualizations. Machine timeline page Microsoft Defender for Endpoint now supports network location as a condition Lastly, Microsoft released a new feature that helps customers to improve... --- ### Microsoft Says Windows 10 version 22H2 is Now Ready for Broad Deployment - Published: 2022-11-22 - Modified: 2022-11-22 - URL: https://petri.com/windows-10-version-22h2-ready-broad-deployment/ - Categories: Windows 10 - Tags: News, Windows 10, windows 10 version 22H2 - Article Type: News Microsoft has announced that Windows 10 version 22H2 is now ready for broad deployment in business environments. The company has quietly updated the Windows Health Dashboard to indicate that all Windows 10 users checking for updates should be able to find and install this version on their machines. “The Windows 10, version 22H2 feature update is entering its final rollout phase and is now designated for broad deployment. As part of the broad deployment phase, Microsoft is offering this update to an expanded set of eligible devices running Windows 10, version 20H2 and later versions,” the company explained on the Windows Health Dashboard. Microsoft announced the rollout of Windows 10 version 22H2 (which is also known as the Windows 10 2022 Update) back in October. The company explained that this release brings a limited set of productivity and management features, but it did not go into details about what's new in Windows 10 22H2. According to Microsoft, the latest release will get 18 months of servicing on Pro and Home editions. Meanwhile, Windows 10 enterprise and education customers will get 30 months of support. How to install Windows 10 version 22H2 To install the Windows 10 22H2 update, you’ll need to head to the Settings app, then choose Updates & security, and click Check for updates. The new update should show up as an optional update in Windows Update for all Windows 10 customers. The update process from Windows 10 version 21H2 to 22H2 should be pretty quick as it... --- ### Cloud Conversations – Season 3 Launch Episode With Femke Cornelissen > After a bit of a break, this week marks the launch of Cloud Conversations Season 3. The team is back with new content and a brand-new hosting team member, Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. - Published: 2022-11-22 - Modified: 2022-11-22 - URL: https://petri.com/cloud-conversations-season-3-launch-femke-cornelissen/ - Categories: Video - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Season 3 Launch Show With Femke Cornelissen After a bit of a break, this week marks the launch of Cloud Conversations Season 3. The team is back with new content and a brand-new hosting team member, Femke Cornelissen. Femke is an Adoption and Modern Workplace Team Leader at Tredion ICT & Telecom. She's also a Microsoft 365 blogger and the Co-Founder and Community Manager of Dutch Women in Tech. For the launch of Season 3, the Cloud Conversations hosting team discusses about: What they've been up toThe importance of taking time offMovies, books, and travelUpcoming community eventsAnd much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors. They're joined by Azure McFarlane, a Microsoft MVP, Data Analyst, and Power Platform Consultant, and Femke Cornelissen, an Adoption and Modern Workplace Team Leader and Microsoft 365 blogger. Each week, Peter, Ru, Kat, Azure, and Femke speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on... --- ### Microsoft Teams Meetings Get New Sign Language View and Accessibility Pane - Published: 2022-11-21 - Modified: 2022-11-21 - URL: https://petri.com/microsoft-teams-meetings-get-new-sign-language-view-and-accessibility-pane/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams has recently introduced a new accessibility feature called “sign language view. ” This release enables participants who are deaf or hard of hearing and their interpreters to prioritize each other during video calls and meetings. Up until now, Microsoft Teams’ organizers had to manually pin interpreters and enable live captions for each meeting. The new sign language view lets organizers pre-assign interpreters (from within the organization) or add external interpreters within a meeting. It keeps the video feeds of interpreters and other signers in one consistent location. The feature can be enabled for all meetings or individual meetings. “With sign language view turned on, the video feeds of the individuals you have designated stay visible on center stage as long as their video is on. Other participants can also be pinned or spotlighted without encroaching on the sign language interpreter,” Microsoft explained. “When someone shares content in the meeting, the prioritized signer video shifts positions, but remains high quality and at a larger size than the video feeds of other participants. ” Microsoft Teams adds a new Accessibility settings pane In addition to the sign language view, Microsoft Teams has added a new sticky Accessibility pane. The feature allows users to easily enable/disable the sign language view and live captions by default within the pane. The meeting participants also can set preferred signers. According to Microsoft, the new sign language view and accessibility pane are currently available for Microsoft Teams desktop and web users enrolled in the public preview program... . --- ### Microsoft Authenticator to Enable Number Matching Security Feature by Default in February 2023 - Published: 2022-11-21 - Modified: 2022-11-21 - URL: https://petri.com/microsoft-authenticator-number-matching-by-default/ - Categories: Security - Tags: Microsoft Authenticator, News, Security - Article Type: News Last month, Microsoft introduced support for number matching to its Authenticator app. The company has announced on the Microsoft 365 admin center that the new security feature will be enabled by default for all Microsoft Authenticator users worldwide in February 2023. With number matching enabled, the Microsoft Authenticator app requires users to type a number displayed on the screen to complete the authentication process. Microsoft notes that the feature helps to prevent accidental approvals and provides protection against multi-factor authentication (MFA) fatigue attacks. Moreover, the additional context feature enables users to view extra information while approving a sign-in request in Microsoft Authenticator. These include the app’s name and the login location based on the device’s IP address. Microsoft says that these additional details help users to understand the validity of a sign-in request. Additional Context & Number Matching Currently, Microsoft allows IT admins to configure number matching for end users in their tenant. However, the company is making number matching a default experience in its Authenticator app on February 27, 2023. At that point, the admin controls to enable or disable the feature will be removed from the Azure AD admin center. Microsoft Authenticator will require users to do number matching otherwise their authentication will fail. Number matching improves Microsoft Authenticator’s resistance against MFA fatigue attacks Microsoft recommends users to install the latest version of the Authenticator app on their Android or iOS devices. However, keep in mind that the number matching feature isn’t supported on Apple Watch. Users will... --- ### How to Enable and Use the Active Directory Recycle Bin > The Active Directory Recycle Bin allows IT pros to easily recover deleted objects without any enterprise software solutions or multiple-step processes. In this article, I'll explain how to enable the Active Directory Recycle Bin with the Active Directory Administrative Center and PowerShell. - Published: 2022-11-21 - Modified: 2023-01-17 - URL: https://petri.com/active-directory-recycle-bin/ - Categories: Active Directory (AD) - Tags: Active Directory - Article Type: How To The Active Directory Recycle Bin is a tool that IT pros can use to recover lingering objects on a network. In this article, I'll explain how to enable and use the Active Directory Recycle Bin and recover objects without the need to use System State backups. There are two main ways to enable the Active Directory Recycle Bin on a network. You can do that using PowerShell commands, but you can also use the GUI and the Active Directory Administrative Center. How to Enable and Use the Active Directory Recycle Bin The Active Directory Administrative Center (ADAC) is where you can see if the Active Directory Recycle Bin is already enabled. If not, you can enable the AD Recycle Bin in just a couple of clicks. Here's how to proceed: Open the ADAC from the Administrative Tools folder. locate the root of your domain on the left and right-click on it. Click 'Enable Recycle Bin  Click OK on the pop-up message. You'll need to wait until all the domain controllers in your forest have replicated the Recycle Bin configuration change. Once it's done, you can re-open ADAC and you'll see the Deleted Objects container. Keep reading for more details on how to enable and use the Active Directory Recycle Bin! What is the Active Directory Recycle Bin? First introduced as an optional feature in Windows Server 2008 R2, the Active Directory Recycle Bin changes the way deleted objects are stored in your Active Directory (AD) database. This feature creates a new hidden container... --- ### Amazon Launches AWS Resource Explorer With Unified Search Capabilities > This AWS Resource Explorer is a new tool that lets IT Pros search through the AWS resources in their account across all different Regions. It's now available for all customers at no additional charge. - Published: 2022-11-18 - Modified: 2022-11-18 - URL: https://petri.com/amazon-aws-resource-explorer/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, AWS Resource Explorer - Article Type: News Amazon announced earlier this month the availability of the AWS Resource Explorer. This new Amazon Web Services tool enables you to search through the AWS resources in your account across all different Regions. If you have a substantial AWS cloud deployment, then you probably know that finding specific resources in your environment can be a challenge. This is especially true if you have many different types of resources and use multiple AWS Regions. To make that task easier, the AWS Resource Explorer allows you to search for resources using metadata such as names, tags, and IDs. When you find a resource in the AWS Management Console, you can immediately go to the corresponding service console and Region and begin working with it. You can also use the AWS Command Line Interface (CLI) or the AWS SDKs to find resources in your environment. How the AWS Resource Explorer Works Usually, the administrator of the account is the person who will begin using the AWS Resource Explorer. On startup, the tool will create and maintain indexes that will help provide faster response times to your search queries. To run a query, you'll need a view that gives access to an index. If the view is using an aggregator index, then the query can search across all indexed Regions. If the view is using a local index, then the query only has access to the resources in that Region. Be aware that it can take up to 36 hours for the AWS Resource... --- ### Microsoft Releases Fix for Kerberos Authentication Issues on Domain Controllers - Published: 2022-11-18 - Modified: 2022-11-18 - URL: https://petri.com/microsoft-fix-kerberos-authentication-domain-controllers/ - Categories: Windows Server - Tags: Domain Controller, News, Windows Server - Article Type: News Microsoft has started rolling out an out-of-band update to address a bug that was previously causing Kerberos authentication issues on Windows domain controllers (DCs). Microsoft has recently confirmed the problem on the Windows release health dashboard following the release of the November Patch Tuesday updates last week. According to Microsoft, the issue leads to failures while performing different activities, including domain user sign-in and connecting to Remote Desktops. Moreover, it may prevent users from performing printing operations that require domain user authentication. Users may also be unable to access shared folders on workstations and share files on servers. Microsoft recommends users to install the latest cumulative updates on Windows Domain Controllers as soon as possible. These updates are available for Windows Server 2022 (KB5021656), Windows Server 2019 (KB5021655), Windows Server 2016 (KB5021654), Windows Server 2012 R2 (KB5021653), Windows Server 2012 (KB5021652), and Windows Server 2008 SP2 (KB5021657). “This issue was resolved in out-of-band updates released November 17, 2022 for installation on all the Domain Controllers (DCs) in your environment. You do not need to install any update or make any changes to other servers or client devices in your environment to resolve this issue. If you used any workaround or mitigations for this issue, they are no longer needed, and we recommend you remove them,” Microsoft explained on the Windows health dashboard. Microsoft to address Kerberos Authentication problems for Windows Server 2008 R2 SP1 next week It is worth noting that Microsoft has yet to provide an update for Windows... --- ### Microsoft Now Lets IT Admins Send Messages to Windows 11 Lock screen, Desktop, or Taskbar - Published: 2022-11-18 - Modified: 2022-11-18 - URL: https://petri.com/microsoft-send-organizational-messages-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Back in April, Microsoft announced a new organizational messages feature that allows companies to send messages to users on their desktops, lock screens, or above the taskbar on Windows 11 PCs. The organizational messages feature is now available in public preview for Insiders on the Release Preview Channel in Windows 11 22H2. Specifically, IT admins can configure these messages in Microsoft Endpoint Manager. It’s also possible to customize messages with a logo and URL, assign them to users, and select the frequency of the messages. Microsoft Intune provides built-in message templates for the taskbar, notification area, and the Get Started app. The taskbar messages allow IT admins to deliver important notifications to employees, such as critical software updates. Moreover, the notification area messages help to deliver informational messages, including employee training and optional updates. The Get Started app messages are designed to onboard new employees and provide resources such as support information, policies, and device tips. “With organizational messages, you can leverage Microsoft Intune to configure and send branded messages to help people learn about their organization or ramp up for new roles. You can also notify users about organizational updates and trainings,” the company explained. Source: Microsoft How to get started with organizational messages in Windows 11 IT admins can configure organizational messages in the Microsoft Endpoint Manager admin center by following the steps mentioned below: Head to Tenant administration >> Organizational messages, and then click the Message tab. Click the Create button, choose the message type and message theme,... --- ### How to Migrate an Azure ExpressRoute Connection > Azure ExpressRoute is Microsoft’s solution for extending an on-premises network into the Microsoft cloud with a private connection. In this article, we explain how to migrate an Azure ExpressRoute connection to another tenant or another connectivity provider without any downtime. - Published: 2022-11-18 - Modified: 2022-11-18 - URL: https://petri.com/azure-migrate-expressroute/ - Categories: Azure, Microsoft Azure, Networking - Tags: Azure, Azure ExpressRoute, Cloud, networking - Article Type: How To Azure ExpressRoute is Microsoft’s solution for extending an on-premises network into the Microsoft cloud with a private connection. In this article, I’ll be explaining how you can migrate an Azure ExpressRoute connection without experiencing any downtime. There are two possible scenarios for the migration of an Azure ExpressRoute connection. Your first option is to migrate this connection to another Azure subscription or resource group under the same subscription. The second option is to migrate it to another connectivity provider. How to migrate an Azure ExpressRoute connection to another tenant Let's start with the situation where you would like to migrate an Azure ExpressRoute connection to another tenant. Why you need to raise a support ticket To migrate an Azure ExpressRoute to another tenant, you’ll need help from Microsoft Support. While most resources within Azure can be migrated by customers themselves, that’s not the case for Azure ExpressRoute connections. That’s due to some backend integrations between the resource provider and the physical routers used by an organization. If you try to migrate an Azure ExpressRoute yourself on the Azure portal, you will see the following message: It's not possible to migrate an Azure ExpressRoute connection on your own To migrate an Azure ExpressRoute connection to another tenant or Azure subscription, you’ll need to raise a support ticket on the Azure portal, as shown below. Raising a support ticket to migrate an Azure ExpressRoute connection Planning for the migration You should plan for the migration and raise the support ticket at... --- ### Microsoft's New One Outlook Email Client Now Supports Multiple Accounts - Published: 2022-11-17 - Modified: 2022-11-17 - URL: https://petri.com/microsofts-one-outlook-supports-multiple-accounts/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, News, Outlook, Windows - Article Type: News Microsoft’s new unified Outlook app for Windows (aka One Outlook) is finally getting support for multiple accounts (via Thurrott). As of today, Outlook users can add personal Microsoft accounts as well as work and school accounts within the same app. Microsoft first started testing the new web-based Outlook for Windows client with Office Insiders in the Beta channel back in May. The new Outlook experience is now available for all testers on the Current Channel (Preview) with a few more improvements. These include a simplified ribbon for quick actions, new tips & Quick Steps features, and more. Image credit: Michael Reinders How to add multiple accounts to Outlook for Windows app (One Outlook) To add a new email account, users can click the Settings icon available at the top of the app and then click “view all Outlook settings. ” Select Accounts >> Email accounts and then click the “Add account” button. Finally, type your email address and follow the on-screen instructions to complete the process. Currently, the new Outlook for Windows app doesn't support third-party email accounts, such as iCloud, Gmail, Yahoo, and more. Microsoft is also working on adding offline support that will let users access their emails without an internet connection. Moreover, users will get the ability to search through their folders, support for ICS files, and web add-ins such as Zoom and Salesforce. Microsoft plans to add these capabilities in the coming months. Interestingly, some users reported on Twitter that the Outlook for Windows app got stuck... --- ### Microsoft to Disable Basic Authentication for the Autodiscover Protocol in Exchange Online - Published: 2022-11-17 - Modified: 2022-11-17 - URL: https://petri.com/microsoft-disable-autodiscover-protocol-exchange-online/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft started switching off Basic Authentication support for Exchange Online customers back in October. The company announced yesterday that it’s killing off Basic Authentication for the Autodiscover service on December 31, 2022. The Autodiscover protocol allows client applications to get the configuration data required to communicate with the Exchange Server. It’s used by Outlook, Exchange ActiveSync, and other Exchange Web Services (EWS) clients. For instance, the protocol gets invoked when a user adds a new Exchange account to Microsoft Outlook. The user provides their email address and password, and Outlook uses Autodiscover to retrieve all other details required to set up the client. Last year, security researchers discovered a design flaw in the Autodiscover protocol that allowed attackers to harvest domain credentials. Microsoft claims that this upcoming change should help to secure customers’ accounts and sensitive information. Getting ready for the Autodiscover protocol deprecation in Exchange Online However, it’s important to note that Microsoft is not deprecating the Autodiscover protocol itself. This release will only remove the capability that allows users to authenticate to the protocol via insecure methods like username and password. “We’re starting right away with the tenants with no Basic auth usage at all in 2022, and then in early 2023 (as Basic auth for related protocols is permanently disabled), we will move on to everybody else. If you re-enabled Basic auth in your tenant, or took the option to request more time, we’ll turn off Basic auth for Autodiscover after that extension expires. It’s going to... --- ### Microsoft Partners with Nvidia to Build Azure-Powered AI Supercomputer - Published: 2022-11-16 - Modified: 2022-11-16 - URL: https://petri.com/microsoft-nvidia-build-ai-supercomputer/ - Categories: Cloud Computing, Microsoft Azure - Tags: cloud computing, Microsoft Azure, News - Article Type: News Microsoft has announced a new “multi-year” deal with Nvidia to build an AI supercomputer hosted in Microsoft Azure and powered by tens of thousands of Nvidia GPUs. The new partnership should enable organizations to train, deploy and scale AI applications and services. “AI is fueling the next wave of automation across enterprises and industrial computing, enabling organizations to do more with less as they navigate economic uncertainties,” said Scott Guthrie, executive VP of the Cloud + AI Group at Microsoft. “Our collaboration with NVIDIA unlocks the world’s most scalable supercomputer platform, which delivers state-of-the-art AI capabilities for every enterprise on Microsoft Azure. ” According to Microsoft, the Azure instances on this supercomputer already comes with Nvidia’s Quantum 200Gb/s InfiniBand networking and A100 GPUs. In the future, Microsoft plans to boost performance with Nvidia’s Quantum-2 400Gb/s InfiniBand networking and H100 GPUs. Nvidia claims that the H100 chip features a dedicated “Transformer Engine” for machine learning workloads. Compared to the A100 chip, it helps to reduce power consumption and enhance performance by up to 1. 5 and 6 times. Microsoft to work with Nvidia to optimize its DeepSpeed library Microsoft also plans to collaborate with Nvidia to optimize its DeepSpeed library, which should eventually minimize memory usage and computing power during training large language models. Moreover, Microsoft is bringing its software development suite to Azure enterprise customers, though there is no ETA yet. “Our collaboration with Microsoft will provide researchers and companies with state-of-the-art AI infrastructure and software to capitalize on the transformative power... --- ### Microsoft Teams Now Lets Users Play Minesweeper and Solitaire During Virtual Meetings - Published: 2022-11-16 - Modified: 2022-11-16 - URL: https://petri.com/microsoft-teams-casual-games-meetings/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has launched a new Games for Work app that allows users to play casual games during Teams meetings. The company announced this morning that the new app is only available for Microsoft Teams enterprise and education customers. The Microsoft Casual Games team, a part of Xbox Game Studios, has built the new Games for Work app for Teams. It includes a collection of iconic interactive and multiplayer games such as Solitaire, Minesweeper, Wordament, and IceBreakers. Microsoft is positioning games as a new way to improve cognitive development and foster communication between team members. For instance, the IceBreakers game can help employees get to know their coworkers during video calls. Moreover, Wordament is a mobile-friendly game that challenges users to find words among a grid of letters. “Over 3 billion people around the world play games, serving a crucial role in bringing people together – especially during these last few years,” said Jill Braff, General Manager of Integrations and Casual Games, at Microsoft. “Games promote creativity, collaboration and communication in powerful and unique ways, and we can’t wait to see the how the Games for Work app on Microsoft Teams inspires productivity and helps foster connections in the workplace. ” It is important to note that IT admins will have to turn on access to apps in Microsoft Teams to let employees play these games in meetings. The Games for Work app is available in Teams on desktop and mobile devices. Microsoft Teams to expand its collection of casual games in... --- ### New Microsoft 365 App Starts Rolling Out on the Web - Published: 2022-11-16 - Modified: 2022-11-16 - URL: https://petri.com/new-microsoft-365-app-rolling-out-the-web/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Office, News - Article Type: News Last month, Microsoft announced at its Ignite 2022 conference that a Microsoft 365 app would replace the existing Office app on Windows, mobile, and the web. A new message posted on the Microsoft 365 Admin Center yesterday indicates that the new Microsoft 365 web app has started rolling out this week, with Windows and mobile apps to follow in January 2023. This new Microsoft 365 app provides a central hub for accessing Microsoft’s services and apps for both business customers and consumers. It lets users start a new document, access files and shared content as well as view personalized insights and recommendations. The app has integrations with third-party applications and storage services and eliminates the need to switch between different apps. Additionally, the new Microsoft 365 experience brings a couple of new features for Office. com users, including a new Microsoft 365 branding, background, and styles. “This experience replaces the Office. com experience and aligned with the Office apps for web, Windows, and mobile. The change includes a rebranding of Office. com as well as various enhancements. Customers can expect to see a new URL, new visual style, and a new favicon,” the company explained. Microsoft notes that the new Microsoft 365 app automatically replaces the existing Microsoft Office web experience, and users can head to www. microsoft365. com to access it. The company plans to automatically redirect all Office. com traffic to the new domain, though there is no ETA yet. https://www. youtube. com/watch? v=CbLMS2Fhcsk Microsoft expects to make its new Microsoft 365 app generally available for everyone... --- ### RAID 5 vs. RAID 6: How to Choose the Best RAID Configuration > RAID 5 and RAID 6 are two of the most used RAID levels for data storage projects. In this article, we explain the major differences between RAID 5 and RAID 6 and how to choose the right RAID level for your project. - Published: 2022-11-16 - Modified: 2023-01-16 - URL: https://petri.com/raid-5-vs-raid-6/ - Categories: Data Management - Tags: Data, Data Protection, RAID 5, RAID 6, storage - Article Type: Overview Redundant Array of Independent Disks (RAID) is a data storage technique that groups multiple physical storage disks (HDDs or SSDs) to work together as a single virtual storage drive. In this article, we’ll be detailing two of the most used RAID levels - RAID 5 and RAID 6. We’ll be highlighting the major differences between them and explaining how to choose the right RAID level for your project. RAID technology enables you to build reliable, performant, and fault-tolerant storage media due to the presence of multiple physical disks in a single drive. The set of features that RAID 5 and RAID 6 offer is tied to the configuration of the underlying physical disks. As a result, organizations should aim to use the RAID level that suits them the best. RAID 5 vs RAID 6: What are the key differences? Although both RAID 5 and RAID 6 are known to offer high data availability, redundancy, and fault tolerance, there are several key differences between these two RAID levels. You can see an overview of the key differences between RAID 5 and RAID 6 below. FeaturesRAID 5RAID 6Minimum number of disks required34Working MechanismData striping with distributed parityData striping with double parityFault ToleranceCan handle one underlying physical disk failureDouble parity allows RAID 6 to handle two simultaneous disk failures. Capacity Utilization(N-1)/N; where N represents the number of physical disks in the configuration(N-2)/N; where N is the number of physical disks in the configurationRAID configurationSupports both software and hardware RAID configurationSupports only hardware configurationMaximum... --- ### Microsoft's All-In-One Office Mobile App to Retire Two File-Sharing Capabilities - Published: 2022-11-15 - Modified: 2022-11-15 - URL: https://petri.com/microsoft-office-mobile-app-retire-file-sharing-capabilities/ - Categories: Microsoft 365, Office - Tags: Android, iOS, Microsoft 365, News - Article Type: News Microsoft has announced its plans to deprecate some file-sharing capabilities in its Office mobile apps. The company detailed in a blog post yesterday that the Nearby Share and Transfer Files features will stop working on December 31, 2022. The Nearby Share feature provides a streamlined and simple process to easily share files between two Android devices. It uses a Bluetooth connection to create a peer-to-peer Wi-Fi network between the devices. However, the feature only works when both users are in close proximity. “We made this decision as we continue to reassess the value our users derive from the Office app, and we aim to offer experiences that are consistent, reliable and allow our users to be productive across their devices. It is in this pursuit of streamlining our solutions that we have decided to sunset this feature,” the company explained in a blog post yesterday. Microsoft’s Office mobile app to retire File Transfer in favor of OneDrive The all-in-one Office mobile app is also dropping support for the File Transfer feature at the end of this year. This capability allows people to use a QR code to send files from their mobile devices to a computer, or vice-versa. “Rest assured that files that have been sent and received using the Transfer Files feature will remain in the Office app and will be unaffected by this change,” Microsoft added. Microsoft encourages users to switch to OneDrive for sharing content between mobile devices and their computer systems. The file-sharing functionality is already... --- ### Microsoft Addresses DirectAccess Connectivity Issues on Windows 10 and 11 - Published: 2022-11-15 - Modified: 2022-11-15 - URL: https://petri.com/microsoft-directaccess-connectivity-windows-10-and-11/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, Windows Server - Article Type: News Microsoft has confirmed a new bug that causes problems with the Direct Access remote connectivity feature on Windows 10 and Windows 11. The company has updated the Windows Health Dashboard to mention that the recent updates have been rolled back due to the DirectAccess connection issues affecting Windows PCs. The DirectAccess feature allows remote users to access private network resources on the corporate network without traditional Virtual Private Network (VPN) connections. It helps to ensure real-time connectivity of remote clients and eliminates the need to start and stop connections. The feature lets IT admins manage remote client machines via Group Policy settings. According to Microsoft, some Windows 10 or 11 users that install the latest security updates might experience issues while reconnecting to DirectAccess. This problem occurs after temporarily losing network connectivity or switching between Wi-Fi networks or access points. Right now, the bug only affects client systems running (Windows 11 versions 22H2 and 21H1), Windows 10 (versions 22H2, 21H1, 20H2), Windows 10 Enterprise LTSC 2019, Windows Server 2022, and 2019. The DirectAccess issue doesn’t impact other remote access solutions like VPN (Remote Access Server) and Always On VPN (AOVPN) as of yet. Microsoft released a Known Issue rollback to mitigate the problem on Windows 10 and 11 devices. However, it may take up to 24 hours before the update makes its way to non-managed business machines. Meanwhile, Microsoft recommends IT admins to download and configure a special group policy to address DirectAccess remote connectivity problems on enterprise-managed Windows devices... . --- ### Microsoft Teams will Let Users Delete Chats Next Month - Published: 2022-11-15 - Modified: 2022-11-15 - URL: https://petri.com/microsoft-teams-update-delete-chats/ - Categories: Microsoft 365, Microsoft Teams - Article Type: News Last month, Microsoft unveiled that it’s working on a new feature to let users delete chats permanently from their list in Teams. Now, Microsoft has announced that this update will begin rolling out to all Microsoft Teams desktop and mobile clients in December. “Users can now delete 1:1 chats, group chats, and meeting chats if they are a participant in Microsoft Teams. This permanently deletes the chat only for the user, other people in the chat and conversation history for them is not impacted,” the company explained in a message on the Microsoft 365 admin center. To permanently delete a conversation, Microsoft Teams users will first need to navigate to the chat and click the ellipsis menu. Then, select the Delete chat option available at the bottom of the list. Meanwhile, mobile users will tap the chat and select the Delete option. Microsoft Teams to enable the delete chat feature for all users Microsoft notes that the delete chat feature will be enabled by default for all Microsoft Teams users. However, it will be up to the IT admins to disable this functionality in their tenant by heading to the Microsoft Teams admin center >> messaging policies. Once disabled, the delete chat option will not be available for users in their tenant. According to the Microsoft 365 roadmap, the delete chat feature will begin rolling out to all Microsoft Teams users in early December. The company expects to complete the rollout process by mid-December. In addition to the delete chat... --- ### Microsoft Unveils Next-Gen Azure VMs with AMD's EPYC Chips - Published: 2022-11-14 - Modified: 2022-11-15 - URL: https://petri.com/microsoft-next-gen-azure-vms-amds-epyc-chips/ - Categories: Azure, Virtualization - Tags: cloud computing, Microsoft Azure, News, Virtualization - Article Type: News Last week, Microsoft announced two new virtual machines (VMs) for Azure HPC customers. The new HX-series and HBv4-series VMs are powered by 4th Gen AMD EPYC processors that promise cost efficiency and higher performance. Azure HPC is a purpose-built cloud service that delivers storage, computing and data management services for high-performance computing (HPC) applications. Azure’s HPC tools enable users to perform large-scale mathematical tasks, time-based simulations, and statistical analyses. The new virtual machines feature 400 Gb/s NVIDIA Quantum-2 CX7 InfiniBand, 800 GB/s of DDR5 memory bandwidth, and 80 Gb/s Azure Accelerated Networking. The HX-series and HBv4-series VMs also come with PCIe Gen4 NVMe SSDs. The new offerings deliver 2x performance improvements as compared to the HBv3 series. Moreover, the VMs also perform around 4-5x better than the four-year-old HPC server. Azure HPC Performance Azure virtual machines bring performance improvements for HPC workloads The new VMs are optimized for various scenarios, such as finite element analysis, computational fluid dynamics (CFD), rendering, computational geoscience, frontend and backend electronic design automation (EDA), AI inference, weather simulation, financial risk analysis, and molecular dynamics. “With the introduction of HX-series VMs, Azure is enhancing its differentiation with a VM purpose-built for even larger models becoming commonplace among chip designers targeting 3, 4, and 5 nanometer processes. HX VMs will feature 3x more RAM than any prior H-series VM, up to nearly 60 GB of RAM per core, and constrained cores VM sizes to help silicon design customers maximize ROI of their per-core commercial licensing investments,” said... --- ### Microsoft Releases Point-In-Time Restore Feature for Windows 365 Cloud PCs - Published: 2022-11-14 - Modified: 2022-11-14 - URL: https://petri.com/microsoft-point-in-time-restore-windows-365-cloud-pcs/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft has announced that a new point-in-time feature is generally available for Windows 365 Enterprise customers. The feature first launched in preview in March, and it enables organizations to restore their cloud PCs from a backup to a previous state. Windows 365 is a subscription service that allows business customers to access their cloud PCs from anywhere on almost any device. Windows 365 comes in two SKUs: Windows 365 Business and Windows 365 Enterprise. The Windows 365 Business plan is designed for smaller companies with less than 300 employees. Moreover, Windows 365 Enterprise is aimed at large organizations that need to create cloud PCs for unlimited employees. Point-in-time restore options for Windows 365 Enterprise The point-in-time feature works similarly to the system restore setting available on Windows devices. Microsoft says that there are two ways to restore a cloud PC in Windows 365. It’s possible to use the Microsoft Endpoint Manager admin center to restore a single cloud PC to a previous state. There is also a bulk restore option for people who want to revert the state of multiple cloud PCs to an earlier time. “You can choose to save short-term restore points every 4, 6, 12, 16, or 24 hours. Each Cloud PC will have 10 restore points saved at the intervals that you define in the user setting. For example, if you chose four hour intervals, a Cloud PC will have 10 restore points spread out every four hours over the last 40 hours,” the company explained... . --- ### How to Use Local Administrator Password Solution (LAPS) with Active Directory and Azure AD > Microsoft has updated its Local Administrator Password Solution (LAPS) tool and plans to integrate it into the OS. In this article, I'll explain how this new version of LAPS works and how you can use it to manage local admin account passwords in your Active Directory and Azure AD environments. - Published: 2022-11-14 - Modified: 2023-09-19 - URL: https://petri.com/local-administrator-password-solution/ - Categories: Active Directory (AD), Windows Client OS - Tags: Active Directory, Azure Active Directory, LAPS Tool, local admin, Microsoft LAPS, Password Management, passwords, Windows 11, Windows Server - Article Type: How To Microsoft's Local Administrator Password Solution (LAPS) is a legacy Windows tool that IT admins can use to manage account passwords of domain-joined computers. The company has finally updated LAPS this year and plans to bring it natively into Windows in 2023. In this article, I'll explain how this new native version of LAPS works and how you can use it to manage local admin account passwords in your Active Directory and Azure Active Directory environments. As of this writing, the new native version of Windows LAPS is available for Windows Insiders running the Dev Channel build 25145 or newer. It's also available in the Windows Server vNext Insider build 25151 or newer. Using Local Administrator Password Solution to manage local admin account passwords in Active Directory and Azure AD Microsoft's Local Administration Password Solution (LAPS) is shipped several years ago as an MSI installer package, and the add-on solution has been heavily adopted by Microsoft enterprise customers. If the current version of LAPS lets IT pros manage local account passwords of domain-joined computers, it's starting to show its age. If passwords are stored in Active Directory (AD) and protected by an access control list (ACL), the current version of LAPS has no support for password storage in Azure. The new version of LAPS that Microsoft is baking into Windows 11 will include support for managing your on-premises Active Directory member servers, your Azure Active Directory-joined servers, and even Directory Services Repair Mode (DSRM) passwords on your domain controllers. Every... --- ### AWS Launches New Cloud Region in Switzerland, Unveils 15-Year $5.9B Investment - Published: 2022-11-11 - Modified: 2022-11-11 - URL: https://petri.com/aws-launches-cloud-region-switzerland/ - Categories: Cloud Computing - Tags: AWS, cloud computing, News - Article Type: News Amazon Web Services (AWS) has announced the launch of a new cloud computing region in Switzerland. The Europe AWS region will enable the company to create 2,500 full-time jobs annually in various industries such as engineering, telecommunications, facility maintenance, and construction through 2036. According to AWS, the new cloud region in the beautiful city of Zurich consists of three availability zones. The data centers in each availability zone have access to independent power, physical security, a cooling mechanism, and a connection to a low-latency network. These availability zones should provide better fault tolerance to ensure minimal service interruption for high-availability applications. AWS plans to invest $5. 9 billion into the local economy through 2036. The 15-year investment plan will help to drive local cloud adoption and add $16. 3 billion to the Swiss GDP. This investment will support the construction of data centers, operational expenses, purchases, and more. “With the new AWS Europe (Zurich) Region, we have seven AWS Regions and 21 Availability Zones across Europe in Frankfurt, Ireland, London, Milan, Paris, Stockholm, and now Zurich. This is a continuation of our investment to support customers of all kinds, help startups scale and grow, enable technical skills development, and help organizations create cloud-powered applications that reinvent services for end users,” said Prasad Kalyanaraman, Vice President of Infrastructure Services at AWS. AWS continues to dominate the cloud computing space The cloud service provider has worked with large and small local companies, startups, and public sector organizations to drive innovation in the region. These... --- ### Microsoft Defender for Endpoint Adds Network Protection on iOS and Android - Published: 2022-11-11 - Modified: 2022-11-11 - URL: https://petri.com/microsoft-defender-for-endpoint-network-protection/ - Categories: Security - Tags: Microsoft Defender for Endpoint, News, Security - Article Type: News Microsoft has announced that mobile network protection is now generally available in Defender for Endpoint. The feature first launched in public preview back in July to help organizations protect iOS and Android devices against Wi-Fi-related threats in enterprise networks. “As the world continues to make sense of the digital transformation, networks are becoming increasingly complex and provide a unique avenue for nefarious activity if left unattended. To combat this, Microsoft offers a mobile network protection feature in Defender for Endpoint that helps organizations identify, assess, and remediate endpoint weaknesses with the help of threat intelligence,” the company explained. The mobile network protection feature provides security against rogue hardware (Hak5 Wi-Fi Pineapple devices) and Wi-Fi-related threats. There is also an in-app guided experience that helps to ensure that users connect their mobile devices to secure networks. However, if a suspicious network is detected, the feature recommends users to switch to a secure network connection. How to enable network protection on iOS and Android According to Microsoft, Android users need to allow location permissions to let Defender for Endpoint monitor networks and send notifications about security threats. Moreover, Microsoft Defender for Endpoint requires onboarding permissions on iOS devices. Microsoft recommends users to turn on location permissions to detect Wi-Fi-related security threats on mobile devices. Keep in mind that Microsoft Defender for Endpoint can only protect from bogus certificates if a user refuses to provide location permissions. The network protection feature is disabled by default in Microsoft Defender for Endpoint. Microsoft says that... --- ### What is a Software-Defined Perimeter? > A software-defined perimeter (SDP) is a modern network security framework that organizations can use to protect their IT environment from outsiders. In this article, I’ll explain how a software-defined perimeter works and what are the main use cases for this new computer security approach. - Published: 2022-11-11 - Modified: 2022-11-11 - URL: https://petri.com/software-defined-perimeter/ - Categories: Security - Tags: Security, software defined perimeter, Zero Trust - Article Type: Overview A software-defined perimeter (SDP) is a modern network security framework for creating a virtual network perimeter to protect an organizational infrastructure from outsiders. In this article, I’ll explain how a software-defined perimeter works and what are the main use cases for this new computer security approach. With increasingly complex network and application security requirements, a traditional hardware-defined network perimeter may not be good enough for some organizations these days. As we'll see in this article, a software-defined perimeter can provide better protection against cyberattacks and other risks related to untrusted access inside a network perimeter. What is a software-defined perimeter? A software-defined perimeter is a network security framework designed to hide your Internet-connected organizational infrastructure from external attackers. This approach is also known as a “black cloud” as it hides your organizational systems within the virtual perimeter. A software-defined perimeter allows you to control and distribute access to internal applications, services, and other resources based on users’ identities. An SDP serves as an intermediary between users and an organization’s endpoints, and the infrastructure acts as an authenticator and authorizer. An SDP can also micro-segment network access and dynamically create one-to-one connections between users and organizational resources such as applications or services. Moreover, an SDP provides fine-grained access controls to your IT environment, and it can offer better protection from several types of cyber threats and attacks. This includes denial-of-service attacks, man-in-the-middle attacks, port scanning, brute scanning, and lateral movement attacks. A software-defined perimeter can help to protect your company's... --- ### Microsoft Defender for Business Adds Server Protections for SMBs - Published: 2022-11-10 - Modified: 2022-11-10 - URL: https://petri.com/microsoft-defender-business-server-protections/ - Categories: Security - Tags: linux, Microsoft Defender for Business, News, Security, Windows Server - Article Type: News Microsoft launched a preview of new server protection capabilities in its Defender for Business solution back in July. The company announced this week that this feature is now generally available to help small businesses protect Windows and Linux servers. Microsoft Defender for Business is an endpoint security solution for small and medium-sized businesses (SMBs) with up to 300 users. The service offers attack surface reduction, threat management, antimalware protections, as well as automatic investigation and remediation features. With this release, Microsoft Defender for Business includes a threat and vulnerability management (TVM) feature that helps customers to quickly detect and address vulnerabilities. IT admins can view security recommendations for Windows and Linux servers in the Threat and Vulnerability Management dashboard. “Onboarding devices and servers into Defender for Business is a fast way to understand the security posture of your endpoints. Threat and vulnerability management (TVM) equips you with insights into risks that are impacting your devices and servers. Continuous vulnerability discovery and intelligent prioritization brings together business and threat context to provide you with actionable recommendations to improve security posture,” Microsoft explained. Up until now, Endpoint Detection and Response (EDR) solutions have been expensive and typically deployed by larger organizations. Microsoft Defender for Business now helps to track security incidents across users, devices, servers, processes, and files. It provides real-time monitoring to automatically mitigate security issues. Microsoft Defender for Business add-on costs for servers The server protection feature is available as an add-on for customers with Microsoft 365 Business Premium and... --- ### GitHub Expands AI-Powered Copilot Tool to Business Customers - Published: 2022-11-10 - Modified: 2022-11-10 - URL: https://petri.com/github-expands-copilot-business-customers/ - Categories: Developer - Tags: Developers, development, News - Article Type: News GitHub announced yesterday that it’s bringing the AI-powered Copilot coding assistant to business customers. The pair programming tool has been available for individuals since June, and the new offering will help larger teams of developers to improve their speed and productivity. With this release, enterprise customers will be able to purchase and manage GitHub Copilot licenses for their employees. GitHub Copilot for business provides admin controls to let IT Pros configure settings on behalf of the organization. “We’ve measured the impact GitHub Copilot has on developer happiness since it launched for individuals. Because of how GitHub Copilot understands natural language and code, it gives you WAY more than just a productivity boost. It helps you focus on business logic-over-boilerplate, and discover ideas you might not have otherwise considered. All from the comfort of your editor,” GitHub CEO Thomas Dohmke explained. GitHub Copilot has also introduced a new "Hey GitHub" feature to enable voice-based interactions for developers with disabilities. It allows developers to input voice commands to generate the desired code. The feature is available in beta and only works with Visual Studio Code. Developers can sign up on this page to join the Hey, GitHub! Waitlist. Additionally, GitHub announced that Codespaces are now generally available for individuals. It’s a cloud-powered development environment that provides access to popular languages, tools, and utilities. GitHub is offering access to 60 hours of Codespaces to all users for free every month. GitHub has teamed up with JetBrains to enable developers to use their preferred... --- ### Zoom Adds New Email and Calendar Products to Improve Collaboration - Published: 2022-11-09 - Modified: 2022-11-09 - URL: https://petri.com/zoom-adds-email-calendar-services/ - Categories: Active Directory (AD), Messaging - Tags: calendar, email, News, Zoom - Article Type: News Zoom has announced the release of the beta version of its mail and calendar services. Zoom Mail and Zoom Calendar are baked into the Zoom desktop client, which eliminates the need to switch between different applications. “These new products work together with the communication and collaboration offerings already available within Zoom Meetings, Phone, Whiteboard, and Team Chat. Now, teams can move quickly and seamlessly from email to a video meeting, elevate a chat message to a phone call, collaborate on projects, and early next year, they can share out whiteboards, all without ever leaving the Zoom app,” explained Zoom Chief Product Officer Oded Gal. The new Zoom Mail and Calendar products are free to use in the desktop app. Users can connect their third-party email and calendar accounts starting today. Zoom-hosted Mail and Calendar services Zoom has also launched new Zoom-hosted Mail and Calendar services in beta this week. The Zoom Mail service helps to ensure end-to-end encryption for emails sent between Zoom Mail service users. It’s designed to target small and medium-sized businesses that need private and secure communication channels. Moreover, the Zoom Calendar service enables customers to schedule and follow up on important meetings. It also supports other useful features such as appointment booking, notes, meeting recordings, and attachments. The Zoom-hosted email and calendar service are currently available for paid customers in the United States and Canada. It requires customers to purchase Zoom One Pro or Zoom Standard Pro subscriptions. Zoom even allows higher-tier customers to use a... --- ### Microsoft Releases .NET 7 with Performance Enhancements and More - Published: 2022-11-09 - Modified: 2022-11-10 - URL: https://petri.com/microsoft-releases-net-7/ - Categories: Developer - Tags: Developers, development, Microsoft, News - Article Type: News Microsoft announced the general availability of . NET 7 at its . NET Conf 2022 virtual event. The latest version of the open-source software development platform brings performance enhancements, container and cloud-native tools, and improvements to . NET libraries and frameworks. “. NET 7 brings your apps increased performance and new features for C# 11/F# 7, . NET MAUI, ASP. NET Core/Blazor, Web APIs, WinForms, WPF, and more. With . NET 7, you can also easily containerize your . NET 7 projects, set up CI/CD workflows in GitHub actions, and achieve cloud-native observability,” Microsoft explained. Microsoft highlights that . NET 7 enables developers to build cloud-native applications and deploy them across Linux machines. Specifically, this release brings native support for ARM64, . NET integration with Ubuntu, and improvements to . NET MAUI (Multi-platform App UI). Additionally, the latest . NET 7 update adds Native AOT support for console applications to boost start-up time and reduce deployment size. This means that it produces standalone executable binaries in the platform-specific file format (such as ELF on Linux, COFF on Windows, and Mach-O on macOS). . NET 7 lets developers accomplish more with less code Microsoft also announced major additions to its core programming languages, including C# 11 and F#7. Other improvements in . NET 7 include One BCL (base class library) and enhancements to minimal APIs for cloud-native apps. Moreover, Microsoft introduced new features and improvements to existing frameworks such as Windows Forms, Windows Presentation Foundation (WPF), and Microsoft Orleans. The update also improves the WebAssembly debugging experience in the Blazor web apps development tool. You... --- ### Microsoft's November Patch Tuesday Updates Fix 69 Windows Flaws > Microsoft fixed a total of 69 Windows vulnerabilities in the November 2022 Patch Tuesday Updates. Windows 11 is also receiving its first "Moment" update with several taskbar improvements and the much-anticipated File Explorer tabs. - Published: 2022-11-09 - Modified: 2022-11-09 - URL: https://petri.com/november-2022-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released yesterday the November 2022 Patch Tuesday for all supported versions of Windows 11 and Windows 10, including the freshly-released versions 22H2 of the two operating systems. This month, Microsoft fixed a total of 69 Windows vulnerabilities, with six of them already being exploited by attackers. On the quality and experience updates front, Windows 11 version 22H2 is getting new tabs for File Explorer tabs as well as minor improvements for the taskbar. This is the first “Moment” update for Windows 11 following the release of the 2022 Update in October.     69 vulnerabilities fixed in the November 2022 Patch Tuesday updates Among the 69 Windows vulnerabilities Microsoft fixed this month, 11 are rated "Critical" and 3 of them are already being exploited by attackers. Three more vulnerabilities rated “Important” are also being exploited in the wild, and you can find more details about all of them below: CVE-2022-41091: This Windows Mark of the Web Security Feature Bypass public vulnerability allows attackers using a malicious file to bypass Mark of the Web (MOTW) defenses,resulting in a limited loss of integrity and availability of security features such as Protected View in Microsoft Office. CVE-2022-41040: This Microsoft Exchange Server Elevation of Privilege vulnerability allows authenticated attackers to run PowerShell commands on the system. CVE-2022-41082: This Microsoft Exchange Server Remote Code Execution vulnerability allows authenticated attackers to trigger malicious code in the context of the server's account through a network call. CVE-2022-41128: This Windows Scripting Languages Remote Code Execution vulnerability affects the JScript9 scripting... --- ### How to Troubleshoot Microsoft 365 Login Problems > A number of things can go wrong during the Microsoft 365 (formerly Office 365) login process. In this guide will outline the best practices for troubleshooting Microsoft 365 login problems so you can get to the bottom of the issue as quickly as possible.  - Published: 2022-11-09 - Modified: 2022-11-09 - URL: https://petri.com/microsoft-365-login-problems/ - Categories: Microsoft 365 - Tags: Microsoft 365, Office 365 - Article Type: How To A number of things can go wrong during the Microsoft 365 (formerly Office 365) login process, turning what should be a simple task into somewhat of a headache. Issues such as lost credentials and account lockouts can grind your workday to a halt. This guide will outline the best practices for troubleshooting Microsoft 365 login problems so you can get to the bottom of the issue as quickly as possible.   Microsoft 365 is one of the most popular collections of cloud-based services and software in the world. It encompasses programs such as Word, Excel, Powerpoint, as well as reputable online services such as Outlook, Teams, and OneDrive. Needless to say, not being able to login to your 365 account presents a major dilemma that must be remedied quickly.   How to troubleshoot Microsoft 365 login problems: Basic tips Sometimes, the problem could be something extremely simple, so let’s look at some of the most basic issues that could prevent you from logging in.   Are you using the correct Microsoft 365 account? A common cause for Microsoft 365 login problems is another person using your desktop computer or mobile device to log in to their account. This results in their credentials still appearing the next time you attempt to access Microsoft 365.   One simple way to prevent that is to always double-check the account’s username when entering your password if your device is being used by multiple people. Check if you are using the correct password For security reasons, individuals are... --- ### Azure VMware Solution Gets Support for Stretched Clusters and Customer-Managed Keys - Published: 2022-11-08 - Modified: 2023-10-03 - URL: https://petri.com/azure-vmware-solution-stretched-clusters-customer-managed-keys/ - Categories: Azure, Virtualization, VMware - Tags: Azure, News, Virtualization, vmware - Article Type: News Microsoft has announced the release of a big update for its Azure VMware Solution (AVS). This release brings support for stretched clusters, customer-managed keys, Azure NetApp Files Datastores, and much more. “Azure VMware Solution is an easy way to extend and migrate existing VMware Private Clouds to run them natively on Azure. Azure VMware Solution offers symmetry with on-premises environments, which helps to accelerate datacenter migrations, so customers recognize the benefits of the cloud sooner,” said Ram Gowrishankar, Microsoft's Partner Director for Product Management. Microsoft has introduced support for stretched clusters in Azure VMware Solution. The feature is designed to ensure 99. 99 percent uptime for mission-critical apps. It automatically moves virtual machines (VMs) and enterprise applications to an availability zone that has not been affected by the problem. The stretched clusters feature helps organizations to focus on core application features and requirements. Stretched Clusters Additionally, Microsoft has announced a new Azure NetApp Files integration in Azure VMware Solution. This release enables customers to run their most demanding enterprise file workloads (such as SAP, databases, and high-performance computing application on Azure VMware Solution. Azure VMware Solution adds support for customer-managed keys The latest update brings the ability for customers to use customer-managed keys (CMKs) managed by customer-owned Azure Key Vault to encrypt VMware vSAN Key Encryption Keys (KEKs). Microsoft has added support for two new node sizes (AV36P and AV52) in Azure VMware Solution. It enables organizations to optimize their workloads for memory and storage as well as reduce transaction costs... --- ### Microsoft Teams PWA is Now Available for Linux Machines - Published: 2022-11-08 - Modified: 2022-11-08 - URL: https://petri.com/microsoft-teams-pwa-linux-machines/ - Categories: Linux, Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced that a new Teams Progressive Web App (PWA) is now available for Linux machines. The company says that the PWA brings support for desktop-like features and helps to bridge the gap between the Teams client available on Windows and Linux. In August, Microsoft announced its plans to retire the Teams desktop client for Linux back in early December. The company released several updates for the app since its launch in 2019, but it has never reached feature parity with Windows. Microsoft claims that the Teams PWA will help to deliver new desktop-like features faster for Linux machines. Specifically, the Microsoft Teams PWA allows Linux users to use custom backgrounds for video calls and meetings. It also provides support for reactions, the raise-a-hand feature, large gallery & Together mode views, and more. Additionally, the app supports native OS notifications, application auto-start, a dock icon with respective controls, and easier access to system app permissions. Microsoft Teams PWA for Linux supports conditional access policies Microsoft says that IT admins can use Microsoft Endpoint Manager to configure the web and PWA clients on Linux devices. “The Microsoft Teams PWA for Linux can be used with Conditional Access configuration, applied through Endpoint Manager, to enable Linux users to access the Teams web application while securely using Edge. This helps organizations use an industry-leading, unified endpoint management solution for Teams from Linux endpoints with security and quality built in,” Microsoft explained. Microsoft recommends all Linux customers to switch to the PWA version... --- ### Microsoft's GitHub Copilot Hit with Lawsuit for Software Piracy - Published: 2022-11-07 - Modified: 2022-11-07 - URL: https://petri.com/github-copilot-lawsuit-software-piracy/ - Categories: Developer - Tags: GitHub, Microsoft, News - Article Type: News A programmer has filed a lawsuit against Microsoft, GitHub, and OpenAI, claiming that their AI-powered coding assistant violates copyright laws. Lawyer and developer Matthew Butterick initiated the lawsuit on November 3 in the District Court of Northern California in San Francisco. Microsoft announced the general availability of GitHub Copilot in June 2022. GitHub Copilot is a cloud-based intelligent tool that analyzes existing code to suggest lines of code and entire functions in real-time directly within the editor. The extension is available in integrated development environments such as Visual Studio, Visual Studio Code, Neovim, and JetBrains IDEs. GitHub Copilot is available for all developers for $10/month and $100/year. Since its launch, the developer community has heavily criticized Microsoft’s GitHub Copilot due to potential copyright violations. Last month, Matthew Butterick announced that he would collaborate with the Joseph Saveri Law Firm to investigate this issue. He claims that Microsoft has violated various code usage requirements, such as GitHub's policies, attribution, DMCA 1202, and the California Consumer Privacy Act. "This is the first step in what will be a long jour­ney. As far as we know, this is the first class-action case in the US chal­leng­ing the train­ing and out­put of AI sys­tems. It will not be the last. AI sys­tems are not exempt from the law. Those who cre­ate and oper­ate these sys­tems must remain account­able," said Butterick. GitHub Copilot scraps code without proper attribution Last month, Tim Davis, Professor of computer science at Texas A&M University, said on Twitter that the... --- ### Microsoft Teams to Get a New Webinars Experience Next Month - Published: 2022-11-07 - Modified: 2022-11-07 - URL: https://petri.com/microsoft-teams-new-webinars-experience/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced a new Webinars experience for its Teams collaboration service. The updated Webinars experience is based on the customers' feedback, and it will begin rolling out to all Microsoft Teams users in late November. Microsoft Teams introduced support for interactive webinars for up to 1,000 attendees back in May 2021. The feature provides an end-to-end solution that supports the same controls as regular Teams meetings. It also lets users access attendee reporting and bring the data to CRM solutions. The new Teams Webinars experience brings additional controls to address registration, scalability, and branding issues. Specifically, Microsoft will add an updated webinar template that should help organizers create and manage webinars. This release should also bring new customization capabilities and give users better control over the registration process. “This experience is an intuitive end-to-end webinar solution addressing key feedback received since the initial webinar launch last year and is built to scale for advanced webinars in the future. The new webinar will be found by clicking the New Meeting dropdown in the calendar app and selecting Webinar,” the company explained in a message on the Microsoft 365 admin center. IT Admin Policy change for the new Webinars experience on Microsoft Teams Microsoft is also introducing a new policy (AllowWebinars and EventAccessType controls) that will allow IT admins to control the new Webinars experience in their organization. However, customers who want to continue using the original experience will need to set the AllowMeetingRegistration meeting policy to "True. " “In the future,... --- ### How to List Active Directory Users with ADUC > Learn how to list and export all Active Directory users in your environment using the GUI and the Active Directory Users and Computers applications. We also explain how to narrow down the list using various filters available in PowerShell. - Published: 2022-11-07 - Modified: 2024-09-30 - URL: https://petri.com/list-active-directory-users/ - Categories: Active Directory (AD) - Tags: Active Directory, Active Directory Users and Computers, LDAP, PowerShell - Article Type: How To This article will offer you a straightforward way to list Active Directory users with Active Directory Users and Computers (ADUC). I'll show you how to do that using the graphical user interface (GUI) with the ADUC tool. Check out how to list Active Directory Users with PowerShell on Petri if you would prefer to perform this action programmatically. How to list all users in Active Directory using the GUI There are several methods you, as an IT pro, can use the Active Directory Users and Computers (ADUC) application to find all your user accounts in Active Directory. Let me first start with some simple searches to find user accounts. The different 'UserAccountControl' types One important aspect to keep in mind is the dizzying number of 'UserAccountControl' types. Here is a table that shows all the available types. Property flagValue in hexadecimalValue in decimalSCRIPT0x00011ACCOUNTDISABLE0x00022HOMEDIR_REQUIRED0x00088LOCKOUT0x001016PASSWD_NOTREQD0x002032PASSWD_CANT_CHANGEYou can't assign this permission by directly modifying the UserAccountControl attribute. For information about how to set the permission programmatically, see the Property flag descriptions section. 0x004064ENCRYPTED_TEXT_PWD_ALLOWED0x0080128TEMP_DUPLICATE_ACCOUNT0x0100256NORMAL_ACCOUNT0x0200512INTERDOMAIN_TRUST_ACCOUNT0x08002048WORKSTATION_TRUST_ACCOUNT0x10004096SERVER_TRUST_ACCOUNT0x20008192DONT_EXPIRE_PASSWORD0x1000065536MNS_LOGON_ACCOUNT0x20000131072SMARTCARD_REQUIRED0x40000262144TRUSTED_FOR_DELEGATION0x80000524288NOT_DELEGATED0x1000001048576USE_DES_KEY_ONLY0x2000002097152DONT_REQ_PREAUTH0x4000004194304PASSWORD_EXPIRED0x8000008388608TRUSTED_TO_AUTH_FOR_DELEGATION0x100000016777216PARTIAL_SECRETS_ACCOUNT0x0400000067108864All the mind-numbing account types in Active Directory As account attributes are modified, these values get assigned to the user account itself. You can use the adsiedit. msc snap-in if you want to view these. But, let's do some searches now. Searching for Active Directory user accounts in ADUC Open Active Directory Users and Computers from Administrative Tools. Active Directory Users and Computers (ADUC) - Image Credit (Petri. com/Michael Reinders) Right-click on the domain root (reinders. local) and click Find... Searching for user accounts - Image Credit... --- ### Microsoft Teams Gets a Performance Boost with Framework Upgrade - Published: 2022-11-04 - Modified: 2022-11-04 - URL: https://petri.com/microsoft-teams-performance-framework-upgrade/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft claims that it has optimized the Microsoft Teams desktop app to reduce latency in key scenarios, such as switching between chats, channels, and activity feed. The company detailed in a blog post that these under-the-hood improvements are a result of an upgraded Teams framework introduced this month. According to Microsoft, the performance upgrades are available for all Microsoft Teams users on Windows and macOS. "The upgraded Teams framework provides technical benefits including rendering the HTML tree faster, running JavaScript and serializing arrays more efficiently," explained Jeff Chen, Principal PM Manager for Microsoft Teams. Microsoft highlights that these updates have made navigation between Teams chats and channels 32 percent and 39 percent faster, respectively. In addition, performance enhancements released for the app in June further enhanced switching between chat threads by up to 20 percent and channel threads by up to 28 percent. Microsoft is also touting that there should be a noticeable improvement in response times and joining times during Teams meetings. “We are excited to share that the framework upgrade improved the join time by 21%, and responsiveness during meetings has improved. For example, the latency of raising your hand has improved by 16%,” Chen added. When will Microsoft Teams 2. 0 arrive? The latest performance upgrades complement Microsoft’s continuous efforts to reduce latency and load times in Teams during key resource-intensive scenarios, including messaging, meetings, and video calls. Back in February, Microsoft claimed that the app now uses up to 50 percent less power during meetings. Last year,... --- ### Microsoft to Drop Support for Distribution List Migration to Microsoft 365 Groups - Published: 2022-11-04 - Modified: 2022-11-04 - URL: https://petri.com/microsoft-distribution-list-migration-microsoft-365-groups/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft announced yesterday that it would deprecate the distribution list migration feature in the legacy Exchange admin center (EAC) in February 2023. The company recommends customers to use a manual conversion process to move distribution lists to Microsoft 365 Groups. Back in 2017, Microsoft introduced the distribution list migration feature to let organizations upgrade their DLs to Microsoft 365 Groups. The company positioned the release as an important milestone to boost Azure B2B collaboration. However, the launch of Microsoft Teams significantly changed how people collaborate with each other. It’s now one of the fastest-growing applications in the Microsoft 365 ecosystem, which has seen unprecedented growth during the past few years. Microsoft announced that the app had crossed 270 million monthly active users in January 2022. Manually convert old distribution lists to Microsoft 365 Groups Microsoft believes that the importance of Microsoft 365 Groups has disappeared over time. Essentially, the primary task of these groups is to coordinate group resources and act as a membership service for Microsoft Teams. Moreover, the distribution list migration functionality is only available for simple lists and doesn't support dynamic DLs. “This feature was designed to provide continuity for DL users and to enable continued collaboration without having to make new groups from scratch. As Microsoft 365 Groups is now a mature feature, we are deprecating the feature for migrating DLs to Groups. The deprecation will happen on February 1, 2023,” the Microsoft 365 Groups team explained. Going forward, Microsoft has advised organizations to convert eligible... --- ### Why You Need to Create an Incident Response Plan > To effectively handle various types of security break-ins, many organizations have created an incident response plan. In this article, I'll explain how an incident response plan differs from a disaster recovery plan, and what steps you need to follow to create an effective IR plan. - Published: 2022-11-04 - Modified: 2024-11-19 - URL: https://petri.com/incident-response-plan/ - Categories: Backup & Storage, Information Security, Security - Tags: Incident Response Plan, Security - Article Type: Overview To effectively handle various types of security break-ins, many organizations have created an incident response (IR) plan. In this article, I'll explain what is an incident response plan, how it differs from a disaster recovery plan, and what steps you need to follow to create an effective IR plan for your organization. While most businesses have some type of disaster recovery plan in place to handle potential downtimes, organizations are rarely prepared for cyberattacks or other security breaches. These may or may not cause downtime, which is why they don’t exactly fit within the scope of a typical DR plan. What is an incident response plan? While an incident response plan is similar to a disaster recovery (DR) plan, they have very different purposes: A DR plan is intended to get the business up and running again in the event of unexpected downtime. In contrast, an IR plan is intended to halt unauthorized security breaches. In many cases, there might not be any downtime associated with a security breach. However, it still must be responded to immediately to prevent data loss, further exposure, or the possible disruption of services. Like a DR plan, an IR plan is essentially a checklist of the actions and assigned roles and responsibilities that the organization should take in the event of security exposure. If you can catch a security breach in a timely fashion and respond to it appropriately, you can prevent or at least reduce the damages and possibly prevent future attacks... . --- ### Microsoft Adds New File Locksmith and Hosts File Editor Tools to PowerToys - Published: 2022-11-03 - Modified: 2022-11-03 - URL: https://petri.com/microsoft-file-locksmith-hosts-file-editor-powertoys/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released a new update for its PowerToys suite of tools. The version 0. 64 of the app brings a new File Locksmith utility that helps to find the active process or app that’s preventing users from deleting files and folders on Windows PCs. The File Locksmith tool provides a list of processes (with details such as user and process ID) that are accessing the file or folder. Users can click the "End task" button to terminate the process and then delete the file manually. “File Locksmith is a Windows shell extension for checking which files are in use and by which processes. After installing PowerToys, right-click on one or more selected files in File Explorer, and then select What's using this file? from the menu,” the PowerToys team explained. PowerToys 0. 64 adds a new Hosts File Editor utility PowerToys version 0. 64 also brings a Hosts File Editor tool that allows users to edit the Hosts file in Windows 11 or Windows 10. The feature eliminates the need to use Notepad and provides a convenient way to edit the hosts file configuration. This capability could be particularly useful for scenarios like moving a website to a new domain name or a hosting provider. Additionally, Microsoft has introduced a new feature that allows users to back up and restore settings. The feature is designed to help users easily migrate their settings across Windows devices. PowerToys also received new Group Policy settings that let users enable and disable utilities on managed devices... . --- ### Microsoft to Block OneDrive and SharePoint on Internet Explorer 11 in January 2023 - Published: 2022-11-03 - Modified: 2022-11-03 - URL: https://petri.com/microsoft-block-onedrive-sharepoint-internet-explorer-11/ - Categories: Microsoft 365 - Tags: Internet Explorer, Microsoft 365, News, OneDrive, SharePoint Online - Article Type: News Microsoft is getting ready to block access to OneDrive and SharePoint Online from Internet Explorer (IE 11). The company recently posted a message in the Microsoft 365 admin center to inform customers that this change will begin rolling out in mid-January 2023. Last year, Microsoft 365 apps and services dropped support for Internet Explorer 11. While support from Microsoft ended in August 2021, the applications didn’t immediately stop working on IE 11. However, Microsoft warned that new features will not be available for IE 11 users. Those who continue to use Microsoft 365 apps and services on the legacy browser may notice connection issues or have a degraded experience. Currently, IE 11 redirects users to a screen with an “It’s time to upgrade your browser” message while accessing OneDrive and SharePoint Online. As shown in the screenshot, the existing soft block experience prompts users to upgrade their browser or continue with Internet Explorer 11. Current soft block experience SharePoint and OneDrive to deploy hard block for Internet Explorer 11 With this release, Microsoft will deploy a hard block that will cause connection requests to fail. This means that users will no longer be able to access SharePoint Online and OneDrive through Internet Explorer 11. They will be no notified to switch to a modern browser, such as Microsoft Edge, to continue using these services. Future hard block experience Microsoft officially ended support for the legacy IE 11 browser back in June of this year. Since then, the company has been... --- ### Microsoft Defender Vulnerability Management Now Detects OpenSSL 3.0 Vulnerabilities - Published: 2022-11-03 - Modified: 2022-11-03 - URL: https://petri.com/microsoft-defender-vulnerability-management-openssl-vulnerabilities/ - Categories: Security - Tags: Microsoft Defender Vulnerability Management, News, Security - Article Type: News Last week, the OpenSSL team patched two high-severity security vulnerabilities in its open-source cryptography tool. Microsoft announced yesterday that organizations can use Defender Vulnerability Management to detect vulnerable devices in their organization and monitor their patching process to reduce security threats. OpenSSL is a popular cryptography library that provides open-source implementations of both SSL and TLS protocols. OpenSSL version 3. 0. 7 was announced last week to address both CVE-2022-3602 and CVE-2022-3786. The OpenSSL team explained that it's a pair of buffer overflow vulnerabilities that could lead to crashes. The security flaws could be triggered by sending a malicious email with an X. 509 certificate in client or server Linux builds. The OpenSSL security team advised IT admins to monitor their environments for vulnerable instances and install the latest update. "We still consider these issues to be serious vulnerabilities and affected users are encouraged to upgrade as soon as possible," the OpenSSL team said. "We are not aware of any working exploit that could lead to remote code execution, and we have no evidence of these issues being exploited as of the time of release of this post. " Microsoft Defender Vulnerability Management identifies vulnerable assets and tracks patching According to Microsoft, the Microsoft Defender Vulnerability Management solution enables IT admins to find flaws in the software installed on their machines. The service also provides an option to track the patching progress of exposed devices. Microsoft Defender Vulnerability Management is a set of tools that delivers continuous vulnerability assessment, risk-based prioritization, and remediation capabilities... --- ### Microsoft Exchange Online Adds Support for Cross-Tenant User Data Migration - Published: 2022-11-02 - Modified: 2022-11-02 - URL: https://petri.com/microsoft-exchange-online-cross-tenant-user-data-migration/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft has released cross-tenant migration capabilities for Exchange Online. The latest update brings new cross-tenant mailbox migration and cross-tenant OneDrive migration features for commercial customers. Specifically, the new features provide a faster and cost-effective solution to help organizations migrate user data between tenants. The cross-tenant mailbox migration feature lets IT admins move end users to a new tenant via Exchange Online PowerShell and the Mailbox Replication Service (MRS). “Cross-tenant mailbox moves use an invitation and consent model to establish an Azure Active Directory application used for authentication between tenants. Using Azure Enterprise Application with Mailbox Migration permissions and a client secret, admins can now manage the authorization and scoping of Exchange Online mailbox migrations from one tenant to another,” the company explained. Cross-tenant OneDrive migration enables IT Pros to leverage tools such as SharePoint Online PowerShell to transition employees to the new organization. It’s possible to schedule the migration of up to 4,000 accounts, and each account can have a maximum size of 2 TB. https://youtu. be/RGb__c9xhSw Cross-tenant User Data Migration licensing requirements Currently, the cross-tenant user data migration features are available as an add-on for business customers. Customers are required to have the following subscription plans: Microsoft 365 Business Basic/Business Standard/Business Premium/F1/F3/E3/A3/E5/A5, Office 365 F3/E1/A1/E3/A3/E5/A5, OneDrive for Business, Exchange Online, and SharePoint Online. Microsoft notes that cross-tenant user data migration support should be a welcome addition for companies going through acquisitions, mergers, splits, or divestitures. However, these features are still available in public preview for Government Community Cloud (GCC), GCC... --- ### Microsoft Releases Azure AD Certificate-Based Authentication Support on iOS and Android - Published: 2022-11-02 - Modified: 2022-11-02 - URL: https://petri.com/microsoft-azure-ad-certificate-based-authentication-ios-android/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure AD, News - Article Type: News Microsoft today announced the release of Azure AD Certificate-based authentication (CBA) on mobile devices. As of today, YubiKey is the only external device that provides CBA support on iOS and Android to protect organizations against phishing attacks. Microsoft announced the public preview of Azure AD certificate-based authentication (CBA) back in February for desktop users. It’s a robust service that leverages a digital certificate to validate a user or a device before granting access to a network or an application. According to Microsoft, the new CBA feature lets customers with smart cards to authenticate Azure AD when connecting to Office mobile apps such as Microsoft Word. CBA is used across various industries because it helps organizations simplify the authentication process and reduce infrastructure costs. "On mobile, while customers can provision user certificates on their personal mobile device to be used for authentication, this is primarily feasible for managed mobile devices. But this new public preview unlocks support for BYOD. Customers can now provision certificates on a hardware security key which can then be used for authentication with Azure AD on iOS and Android devices," Microsoft explained. How to set up Azure AD CBA on mobile with YubiKey Overall, the new CBA support makes it harder for threat actors to gain unauthorized access to sensitive resources. To get started, IT admins are required to configure CBA on Azure and install the Microsoft Authenticator app on iOS and Android. Additionally, iOS users will need to download the YubiKey authenticator application. Azure AD CBA... --- ### What is the Microsoft Digital Contact Center Platform? > The Microsoft Digital Contact Center Platform is a new customer care solution that the company introduced back in July 2022. In this article, we’ll explain how the Microsoft Digital Contact Center Platform works and how organizations of any size can leverage it to engage with customers. - Published: 2022-11-02 - Modified: 2022-11-09 - URL: https://petri.com/microsoft-digital-center-platform/ - Categories: Microsoft 365 - Tags: Dynamics 365, Microsoft 365, Microsoft Digital Contact Center Platform - Article Type: Overview The Microsoft Digital Contact Center Platform is a new customer care solution that the company introduced back in July 2022. It pulls upon Dynamics 365, Microsoft Azure, Microsoft 365, and Nuance AI to provide a full-featured contact center suite. In this article, we’ll explain how the Microsoft Digital Contact Center Platform works and how organizations of any size can leverage it to engage with customers. The Microsoft Digital Contact Center Platform provides customers and agents with various tools to help reduce resolution times and improve customer satisfaction. This new customer care solution is currently limited to Dynamics 365 customer support, however, it’s likely to grow and expand into other areas within Dynamics 365. Following Microsoft’s acquisition of Nuance earlier this year, organizations can also access AI-powered conversational, automation, and security features. How does the Microsoft Digital Contact Center Platform work? Microsoft has been working with many third-party application providers to bring contact center solutions into Microsoft Teams. These solutions require special integration and configuration, and they can increase the sophistication for customers. With the Microsoft Digital Contact Center Platform, Microsoft now offers a full Microsoft-hosted solution for contact centers. Multi-channel communication The Microsoft Digital Contact Center Platform allows for communication across multiple channels.  As of today, most consumers use multiple channels to communicate with a brand, including text messages, applications, to phone calls. The solution provides the following capabilities to organizations: A hyper-personalized omnichannel service across voice, digital, and video embedded inside the Dynamics 365 customer service. Allows customers to be intelligently... --- ### Microsoft Teams Added New Chat Features and More in October - Published: 2022-11-01 - Modified: 2022-11-01 - URL: https://petri.com/microsoft-teams-chat-features-october/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has shared a roundup of improvements made to its Teams collaboration service in October 2022. The major highlights of this release are suggested replies for group chats, pop-out support for shared content in meetings, new Teams-certified devices, and management features, so let’s dive into it. First up, Microsoft detailed new chat and collaboration features added to Teams. The suggested replies feature that was previously available in 1:1 chats is now coming to group chats. The video clips feature is now generally available in the Microsoft Teams desktop app, and it’s coming to iOS and Android users by the end of this year. The feature allows users to record, edit and send short video messages in Teams chats. Additionally, Microsoft is rolling out the ability to pop out the scheduling form in a separate window. It eliminates the need to jump between apps for multitasking in the Microsoft Teams calendar. IT administrators can now set Adobe Acrobat as the default experience in the Teams admin center. This release lets users view and edit PDF files without purchasing an Adobe Acrobat subscription. Pop-out shared meeting content Microsoft Teams rolled out a new update that allows users to pop out shared meeting content into a separate window. Microsoft has released another new feature that lets presenters and organizers assign seats to meeting participants. Microsoft Teams introduced new AI-powered Live translated captions support in 40 different languages. The Live translated captions feature is currently available for all customers. However, Microsoft plans to limit... --- ### What's New With Microsoft's Power Platform in October 2022 - Published: 2022-11-01 - Modified: 2022-11-01 - URL: https://petri.com/whats-new-with-microsofts-power-platform-in-october-2022/ - Categories: Power Automate, Power Platform - Tags: power apps, Power Automate, Power BI, Power Platform - Article Type: News After a whirlwind of news from the first annual Microsoft Power Platform Conference in September, we now have all the news from Microsoft Ignite 2022! We’ve got previews for creating Power Automate flows with natural language, creating complex Power Automate expressions by feeding it examples, the general availability of 2022 Release Wave 2 for Dynamics 365, as well as a lot of exciting updates with Power BI report and dataset interactions and management.   Power Automate expressions by example   While creating cloud flows in Power Automate, we can now get some help transforming our data by using simple examples directly without having to write any expressions ourselves. Expressions by Example is another example of Microsoft using AI to improve the efficiency of creating complex automation solutions and lowering the barrier to entry for citizen developers who may be turned off by the manual way of writing expressions. This feature is currently in preview.   Power Automate expressions by example leverage AI to improve the efficiency of creating complex automation solutions Managed Environments for Power Platform  The Power Platform has attracted a wave of citizen developers to create applications and automation solutions for their business operations. With that comes some work for traditional IT management and governance. With Managed Environments, your IT department can rest easy with weekly rundowns of highly used and unused apps and automations, sharing limitations to make sure applications don’t get in the wrong hands (or too many hands), and environment-scoped Data Loss Protection (DLP). This feature can be... --- ### Azure AD Conditional Access Policies Get Support for App Filters - Published: 2022-11-01 - Modified: 2022-11-01 - URL: https://petri.com/azure-ad-conditional-access-policies-app-filters/ - Categories: Microsoft Entra ID (Azure AD) - Article Type: News Microsoft has added support for application filters to Azure AD conditional access (CA) policies. This release enables organizations to use an app filter based on custom security attributes to restrict access to specific applications. Currently, it’s possible for IT admins to apply conditional access policies to individual or all apps. However, this process may prove challenging for companies that have a large number of apps with multiple conditional access policies. The new Application filters feature enables IT Pros to tag service principals with custom security attributes (such as highly important). These custom attributes are then added to a conditional policy to allow or block applications. “With filters for apps, admins can tag applications with custom security attributes and apply Conditional Access policies based on those tags, rather than individually selecting apps. With this approach, there is no limit on the number of apps covered, and new apps you add with the attributes are automatically included in the policies,” the company explained. Conditional Access filters for apps available in public preview Overall, the latest update eliminates the need to edit a conditional access policy to add new or additional apps. It’s a helpful feature for big organizations that need to manage hundreds or thousands of applications. The new Application filters feature is currently available in public preview for enterprise customers. For now, app filters in conditional access policies can only use string custom security attributes. IT admins can combine app filters with any other controls available in a policy. You can... --- ### Microsoft Rolls Out Fix for OneDrive Crashing Issues on Windows 10 - Published: 2022-10-31 - Modified: 2022-10-31 - URL: https://petri.com/microsoft-fix-onedrive-crashing-windows-10/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has confirmed and issued a fix for a bug in Windows 10, which could cause OneDrive to crash or close unexpectedly. The problem first appeared after the latest Patch Tuesday updates, which rolled out on October 11, and it affects all supported versions of Windows 10. Last week, Microsoft updated the Windows Health Dashboard to mention that Windows 10 users might encounter issues while signing out or unlinking their account in the OneDrive sync app. The problem may also occur while trying to unlink Microsoft Teams and SharePoint sites or folders from syncing to their PCs. Additionally, the Windows 10 bug prevents users from uninstalling the OneDrive sync application. According to Microsoft, the KB5020953 cumulative update should address the OneDrive crashing issues on Windows 10 devices. This release is available for Windows 10 versions 22H2, 21H2, 21H1, and 20H2. "It addresses an issue that causes Microsoft OneDrive to stop working. This occurs after you unlink your device, stop syncing, or sign out of your account," Microsoft explained. Download updates from the Microsoft Update Catalog to fix OneDrive crashes on Windows 10 Microsoft says that the out-of-band update is not available through Windows Update. Instead, users will need to install it from the Microsoft Update Catalog manually. If you’re an enterprise customer needing an immediate fix, you can import the update to Windows Server Update Services (WSUS) and Microsoft Endpoint Configuration Manager. This isn’t the only issue that Microsoft confirmed with the October Patch Tuesday Updates. Earlier this month, the... --- ### What Are the Different Windows Logon Types? > As IT pros, we've all 'logged onto computers', servers, network devices, etc. This article will explain the basics of Windows logon types, how authentication plays a role, and then describe the various types of logons built into Windows. - Published: 2022-10-31 - Modified: 2023-07-19 - URL: https://petri.com/windows-logon-types/ - Categories: Security, Windows Client OS - Tags: Authentication, LastLogonTime, Security, Windows A logon is an event in Windows that shows a user account being granted some access to a workstation/server/computer. This article will explain the basics of Windows logon types, how authentication plays a role, and then describe the various types of logons built into Windows. As IT pros, we've all 'logged onto computers', servers, network devices, etc. But, what exactly does logging on mean in Windows? Are there many types of logins supported in Windows? There sure are, probably more than you realize. Understanding Windows logon types As I alluded to earlier, there are a plethora of login types in Windows. However, logging on and being authenticated in Windows are separate functions/events. Logon vs. authentication A Windows logon occurs on the workstation a user is attempting to access. However, Windows authentication is performed by the computer where the user account is stored. Yes, it's a subtle difference, especially when you get into local, interactive, and network logons and authentication. Diagram showing how logons and authentications work in Windows (image credit: Microsoft. com) In Windows-based computers, all authentications are processed as one of the logon types below. This is true regardless of which authentication protocol or authenticator is used. Interactive logons with local or domain accounts An interactive logon is a logon whereby a user uses a local keyboard and mouse to enter credentials in the logon screen in Windows. They can log on with a local account against a local SAM (Security Accounts Manager) account database using the computer name... --- ### Microsoft Warns Attackers Now Leveraging Raspberry Robin to Distribute Clop Ransomware - Published: 2022-10-31 - Modified: 2022-10-31 - URL: https://petri.com/microsoft-raspberry-robin-clop-ransomware/ - Categories: Security - Tags: News, Security, WORM - Article Type: News Microsoft has warned users that threat actors have deployed a Clop encryption malware to encrypt enterprise networks affected by the Raspberry Robin worm. The company detailed in a security advisory that the payload had infected around 3,000 devices in 1,000 organizations in the last month. Security firm Red Canary first discovered the Raspberry Robin worm in September 2021. It’s a sophisticated malware that infects machines via malicious USB drives containing a Windows shortcut file that looks like a legitimate folder. The Raspberry Robin has previously been used to deploy the Lockbit ransomware, and Bumblebee, IcedID, and Truebot malware. According to Microsoft's Security Threat Intelligence unit, Raspberry Robin is now a part of the complex malware ecosystem with connections to other ransomware infections. The attackers are leveraging the worm to provide unauthorized access to infected Windows devices to deploy ransomware. The data connected by Microsoft Defender for Endpoint indicated that almost 3,000 systems in 1,000 companies had detected at least one threat alert in the past 30 days. “Raspberry Robin’s infection chain is a confusing and complicated map of multiple infection points that can lead to many different outcomes, even in scenarios where two hosts are infected simultaneously. There are numerous components involved; differentiating them could be challenging as the attackers behind the threat have gone to extreme lengths to protect the malware at each stage with complex loading mechanisms,” Microsoft researchers noted. How to defend against Raspberry Robin infections Microsoft’s security experts found some similarities between the code of Raspberry... --- ### Outlook for Windows to Finally Get Support for Cloud Signatures - Published: 2022-10-28 - Modified: 2022-10-28 - URL: https://petri.com/outlook-for-windows-cloud-signatures/ - Categories: Microsoft 365, Outlook - Tags: News - Article Type: News Microsoft is getting ready to release an update for the Outlook for Windows client that will let users store their Signature settings in the cloud. The company has been testing this feature with Office Insiders in the Beta channel for quite some time to incorporate user feedback before making it generally available for everyone. Microsoft first announced its plans to add support for Signature cloud settings (roaming signatures) in Outlook for Windows in 2020. Currently, signatures are stored locally on Windows PCs, and users have to recreate them every time they reinstall the email client or move to a new device. With this release, Microsoft says that email signatures will be stored inside the user’s mailbox in the cloud. Users will create their email signatures once to get them synced across all devices where they have configured the same Microsoft 365 account. The Signature cloud settings feature should ensure a consistent experience when users access Outlook for Windows on any of their PCs. It will help to avoid situations where users send emails with outdated signatures. “Upgrades to how your email signatures are managed will be launching soon. These enhancements change where the signature data is stored from per-device to per-account. This means the same set of signatures will be available on any Windows (Microsoft 365) or Web version of Outlook, and you will no longer need to reconfigure your signatures when getting a new device,” Microsoft explained on the Microsoft 365 admin center. Outlook for Windows to store email... --- ### Microsoft Confirms Server Manager Disk Resets Could Cause Data Loss - Published: 2022-10-28 - Modified: 2022-10-28 - URL: https://petri.com/microsoft-server-manager-disk-resets-data-loss/ - Categories: Windows Server - Tags: News, Windows, Windows 11, Windows Server - Article Type: News Microsoft is investigating a new issue that could cause data loss when resetting virtual disks using the Server Manager Management console in some versions of Windows Server. The company has confirmed that the problem affects systems running Windows Server 2019 and Windows 11 version 22H2. The Windows Server management console is a tool that enables IT admins to manage local and remote Windows-based servers directly from their desktops. It eliminates the need to enable Remote Desktop Protocol (RDP) connections or have physical server access. Microsoft introduced the feature in Windows Server 2008, and it’s installed by default in Windows Server 2012 and Windows Server 2012 R2. Over the years, Microsoft has updated the tool to let users manage remote multi-server environments. The company also increased the number of servers the administrator can manage. According to Microsoft, the data corruption problem happens when IT admins try to clear a virtual disk through the Community Virtual Driver tool. It might inadvertently cause the wrong disk to be reset, with an error message "Found multiple disks with the same ID. Please update your storage driver and then try again. " “When you use the Community Virtual driver, there are virtual disks that might have the same UniqueId. This might create issues when you initiate a reset operation. The reset operation will reset the first disk that it finds. However, this might not be the disk you want to reset. Because of this, that disk will lose data,” Microsoft explained. How to fix the Server... --- ### How to Enable AWS Direct Connect Redundancy Using Azure ExpressRoute > AWS Direct Connect and Azure ExpressRoute let you set up a private interconnection to your on-premises resources. In this article, I’ll explain how you can enable AWS Direct Connect redundancy with Microsoft's Azure ExpressRoute by using physical or virtual connections. - Published: 2022-10-28 - Modified: 2024-11-19 - URL: https://petri.com/aws-direct-connect-azure-expressroute-redundancy/ - Categories: Amazon Web Services, Azure, Cloud Computing, Microsoft Azure, Networking - Tags: Amazon Web Services, AWS, AWS Direct Connect, Azure, Azure ExpressRoute - Article Type: How To If you are working in a multi-cloud environment involving Microsoft Azure and Amazon Web Services, you may be using AWS Direct Connect or Azure ExpressRoute to set up a private interconnection to your on-premises resources. In this article, I’ll explain how you can enable AWS Direct Connect redundancy with Microsoft's Azure ExpressRoute by using physical or virtual connections. Even if you don’t use the full capacity of those expensive private connections, it’s important to set up redundancy just in case something goes wrong in your cloud environment. This article will focus on building a redundant AWS Direct Connect connection using Azure ExpressRoute, as this is the most common scenario. However, the solution I’m going to detail should also work with the Google Cloud Platform and other cloud providers. How to Build Redundant AWS Direct Connect Connections Using Azure ExpressRoute When enabling private connections to AWS or Azure in your multi-cloud environment, AWS Direct Connect and Azure ExpressRoute are the way to go. Setting up AWS Direct Connect and Azure ExpressRoute connections AWS Direct Connect lets you set up a private connection between your on-premises resources to the AWS cloud, and Azure ExpressRoute does the same with Microsoft's Azure cloud. With these private connections set up, your cloud environment will look like the one shown below. Setting up AWS Direct Connect and Azure ExpressRoute private connections Adding redundancy in your environment As soon as you make progress with your multi-cloud environment, you should be looking into creating redundancy for the... --- ### Microsoft's OneNote Desktop App is Now Available on the Microsoft Store - Published: 2022-10-27 - Modified: 2022-10-27 - URL: https://petri.com/microsofts-onenote-desktop-app-microsoft-store/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, OneNote - Article Type: News Microsoft has announced that its OneNote desktop app is now available to download on the Microsoft Store. Microsoft’s UWP version of OneNote (also known as OneNote for Windows 10) will no longer show up in the search results, but the app will continue to work until it reaches the end of support deadline in 2025. “With this change, OneNote for Windows 10 will no longer be available in the Microsoft Store. It will continue to work, but it will not get new feature updates and will reach end-of-support in October 2025. We recommend you switch over to the OneNote app as soon as you’re comfortable doing so. As we get closer to the end of support date, you will see reminders to try out the OneNote app,” the OneNote team explained. Microsoft unveiled its plans to consolidate the OneNote experience on Windows back in August 2021. Over the past year, the company modernized the visual experience of the unified OneNote app for Windows. The company has also released several updates to add the "most loved features" of OneNote for Windows 10 to the new OneNote desktop app, including ink-to-shape conversion and dictation support. Additionally, Windows 11 version 22H2 introduced some enhancements to the OneNote desktop app. It’s now possible for users to write a quick note by pressing the button at the top of the Surface Slim Pen 2. Both OneNote apps will continue to coexist for now Microsoft has acknowledged that the transition could be a bit confusing for... --- ### Microsoft Releases New Windows Update to Fix Vulnerable Driver Blocklist Sync Issue - Published: 2022-10-27 - Modified: 2022-10-27 - URL: https://petri.com/microsoft-windows-update-fix-vulnerable-driver-blocklist-sync-issue/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released a new optional update for Windows 10 and Windows 11 version 22H2. This release brings bug fixes for a critical security issue that was previously preventing the Windows kernel vulnerable driver blocklist from being synced to older versions of Windows. The hypervisor-protected code integrity (HVCI) feature is designed to protect Windows users from driver vulnerabilities. The feature uses data from the Microsoft Vulnerable and Malicious Driver Reporting Center to automatically block known vulnerable drivers from running on Windows PCs. HVCI requires specific hardware support and prevents threat actors from gaining complete control over the system. Earlier this month, some security researchers discovered that the vulnerable driver blocklist has not been updated since 2019 on some Windows 10 and Windows Server machines. This potentially allowed the attackers to compromise vulnerable machines via bring-your-own-vulnerable-driver (BYOVD) attacks. A BYOVD attack typically tricks users into installing a known-vulnerable driver that could be exploited to gain privileged access to the Windows kernel. Microsoft identified that malicious actors have been abusing vulnerable drivers to spread malware infections, such as Sauron, GrayFish, and RobbinHood. In 2020, the company unveiled its Secured Core PCs with HVCI enabled by default to block vulnerable driver attacks. In the Windows 11 2022 Update, Microsoft has also turned on vulnerable driver blocking by default on all devices. The vulnerable driver blocklist now syncs across Windows 10 and 11 Microsoft recently said in a statement to Ars Technica that it’s updating the vulnerable driver list on a regular basis. However,... --- ### Microsoft 365 Defender Introduces New Identity Protection Alerts - Published: 2022-10-26 - Modified: 2022-10-26 - URL: https://petri.com/microsoft-365-defender-identity-protection-alerts/ - Categories: Security - Tags: Microsoft 365 Defender, News, Security - Article Type: News Microsoft has introduced a new Azure Active Directory Identity Protection alerts feature in Microsoft 365 Defender. The feature is designed to help organizations prevent threat actors from gaining unauthorized access to enterprise networks via compromised accounts. With this release, IT admins can now configure policies to trigger Identity Protection alerts when one or more user accounts appear to have been compromised. The feature takes into account the behavior, location, and other factors to generate an alarm. This capability should be useful in blocking suspicious activities. “Identity Protection alerts are now correlated into related incidents along with alerts from the other security domains, and can be reviewed directly in Microsoft 365 Defender for a full view of the end-to-end attack. No need to switch portals! This helps drive efficiency and simplicity for security teams investigating incidents to understand the full scope of the attacker’s activity and take action in one place,” the company explained. Microsoft notes that Identity Protection alerts leverage "trillions of detection signals" to find compromised Azure AD accounts. The feature can trigger warnings for leaked credentials, anonymous IP address & locations, suspicious sign-in attempts, and more. Security teams can investigate these alerts to detect the root cause, identify compromised accounts and mitigate security risks. Identity Protection alerts could detect high-profile attacks Microsoft claims that the Azure AD Identity Protection alerts feature is designed to help organizations protect their users from high-profile attacks such as the Nobelium case. The company detailed an example where the hacking group managed to... --- ### Paul Thurrott’s Short Takes: Microsoft Earnings Special Edition (October 2022) - Published: 2022-10-26 - Modified: 2024-05-29 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-19/ - Categories: Microsoft - Tags: Earnings, Short Takes - Article Type: Overview Because it’s that time of the quarter, this special edition of Short Takes will focus exclusively on Microsoft’s latest quarterly earnings report. Because it’s that time of the quarter, this special edition of Short Takes will focus exclusively on Microsoft’s latest quarterly earnings report. Note: Tuesday, Microsoft reported that it earned a net income of $17. 1 billion on revenues of $50. 1 billion, a year-over-year gain of 16 percent, in the quarter ending September 30. Before diving into the details, I would like to remind everyone that most of the commentary below is based on Microsoft’s post-earnings conference call, which has historically provided a lot more information than its formal financial reports and press releases. This quarter was no different, but I was struck by what was clearly a good cop/bad cop routine by CEO Satya Nadella and CFO Amy Hood, which is probably usually the case but was very pronounced and obvious in this call. That is, Nadella stuck to the good news, and Hood was forced to counter with all the bad news, in many cases, because this quarter was financially difficult but, ultimately, I think, a sign of strong health and resiliency for a company that wisely diversified itself many years ago. Also, for the first time, I’m going to break this down according to Microsoft’s three major business segments with a quick diversion to account for the Microsoft Cloud, a made-up business that’s comprised of individual businesses that Microsoft cherry-picks because they’re doing well in a given quarter. Enjoy! --Paul Microsoft Cloud UFOs, bigfoot, and Microsoft Cloud Mr. Nadella noted that Microsoft expects its broader commercial business to grow... --- ### Microsoft Authenticator Gets Number Matching and Additional Context Support - Published: 2022-10-26 - Modified: 2022-10-26 - URL: https://petri.com/microsoft-authenticator-number-matching/ - Categories: Security - Tags: Microsoft Authenticator, News, Security - Article Type: News Microsoft has announced the general availability of several new security capabilities in its Microsoft Authenticator app. The first new feature that the company highlighted today is number matching support, which prompts users to enter a number displayed on the sign-in screen to verify their identities. Last month, Microsoft warned about the rise in MFA fatigue attacks targeting enterprise customers. A multifactor authentication (MFA) fatigue is a technique that allows attackers to make multiple login attempts to log into users’ accounts. The number matching feature helps IT admins prevent accidental approvals in the Authenticator app and protect users against MFA fatigue attacks. As of today, it’s possible for IT admins to disable number matching in Microsoft Authenticator push notifications. However, Microsoft plans to turn on the feature by default for all customers by Feb 28, 2023. “To protect you, we’ll automatically enable critical security features to tackle ever-changing threat vectors. At the end of February 2023, we’ll enable number matching for all Authenticator users. We highly recommend that you leverage the rollout controls and deploy these exciting security upgrades to Microsoft Authenticator,” Microsoft explained. Microsoft Authenticator shows additional context in approval requests Microsoft Authenticator is also getting a new security feature that lets users view additional context in approval notifications. Once enabled, users can identify the name of the application and the sign-in location based on the IP address. In addition, Microsoft has announced the release of updated Admin UX and APIs. The latest update also brings a highly-requested feature that... --- ### AWS Doubles the Compute Power of its Snowball Edge Device > Amazon has doubled the computing power of its Snowball Edge device. The rugged device is designed for bringing AWS computing services such as Amazon EC2, Amazon EBS, and Amazon S3 to your edge environments. - Published: 2022-10-26 - Modified: 2022-10-26 - URL: https://petri.com/aws-snowball-edge-double-compute-power/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon Web Services, AWS, AWS Snowball Edge - Article Type: News Amazon may have been a bit late to the hybrid cloud party, but their latest Amazon Web Services announcements leave no doubt that it has become a big deal for them. This past October 2022, the company announced that they have essentially doubled the computing power of its Snowball Edge device. Snowball Edge is a secure, rugged device that brings AWS computing services such as Amazon EC2, Amazon EBS, and Amazon S3 to your edge environments. Snowball Edge devices are designed for environments with intermittent connectivity as you often find in the manufacturing, industrial, and transportation industries. They are also used in military and maritime environments. The latest release of Amazon's Snowball Edge Compute Optimized device doubles the compute capacity, which now goes up to 104 vCPUs. It also doubled the memory capacity which now goes up to 416GB RAM, and the device now provides 28TB of NVMe storage. As you can see, the latest AWS Snowball Edge is a significant high-performance computing platform. The company states that it’s intended for workloads like AI/ML inference, video analytics, or deploying private 5G wireless networks. How Amazon Snowball works (source: Amazon. com) Two device types for AWS Snowball Edge AWS Snowball Edge is available in two device types: The Snowball Edge Compute Optimized version provides higher computing capabilities and is designed for high-performance workloads. The Snowball Edge Storage Optimized version provides more storage capacity, and it's designed for large-scale data migrations and capacity-intensive workloads. With AWS Snowball, you pay only for your use... --- ### 3CX Full Contact Center Solution Adds Voice, Text, and Live Chat - Published: 2022-10-26 - Modified: 2024-04-16 - URL: https://petri.com/3cx-full-contact-center-solution/ - Categories: Messaging - Tags: 3CX, NoAD - Article Type: Sponsored The number of phone calls we make has been decreasing globally over the past several years. And there is a growing trend in using text-based messaging solutions, like WhatsApp, for contacting sales and support teams. This post is sponsored by 3CX Omnichannel is a term used within eCommerce and retail to define a business strategy that aims to provide a seamless shopping or support experience across all channels, including in-store, mobile, and online. An example of this would be speaking to a service provider over WhatsApp. Introducing 3CX as a full contact center solution 3CX builds on its award-winning phone system to provide a modern contact center solution. It enables customers to connect with organizations in multiple ways, including from different devices and using a range of communication methods, like voice, text, and video. 3CX is an enormously powerful tool for office-based users and hybrid/remote workers alike. It allows users to work remotely using a web-based interface as well as native tooling on iOS and Android. Agents can easily see the status of their colleagues in remote offices and communicate with them.   Agents can answer customer calls, messages (including Facebook, SMS & WhatsApp) and live chats all from one central interface. Let’s have a look at some of the most important contact center features in 3CX. Call queues and routing The solution allows for multiple call queues and includes an Interactive Voice Response (IVR) system.   Callers can be directed to the right person using skill-based routing. This ensures that the... --- ### Microsoft Releases New Phishing Prevention Tools to Block Credential Theft - Published: 2022-10-25 - Modified: 2022-10-26 - URL: https://petri.com/microsoft-phishing-prevention-tools-credential-theft/ - Categories: Security - Tags: Microsoft, News, Phishing, Security - Article Type: News Microsoft has partnered with Yubico to announce new security solutions to help organizations prevent phishing attacks against Azure, Office 365, and remote desktop environments. The new security tools are designed to make it harder for malicious actors to target privileged Azure customers. YubiKey is a USB-like hardware authentication device that lets users secure access to computer systems, online services, and networks. It works with several consumer, developer, and enterprise applications that support authentication methods such as one-time passwords. The Certificate-based Authentication (CBA) feature allows organizations with existing smart cards and public-key infrastructure to authenticate Azure AD even without using a federated server. It’s now possible to use the YubiKey for authentication, which makes it easier to ditch on-premises solutions such as Active Directory Federation Services. Microsoft has released a new conditional access authentication strength feature that allows enterprises to configure their YuBiKeys for select user authentication policies. These include certificate-based authentication, FIDO-based passwordless support, and phishing-resistant Multi-Factor Authentication (MFA). The security feature helps to protect privileged Azure users from credential theft and phishing campaigns. Microsoft Azure Virtual Desktop gets support for FIDO authenticators Finally, Microsoft has introduced FIDO-based passwordless authentication for its Azure Virtual Desktops (AVD) service. This release enables employees to use YubiKeys and Azure AD passwordless credentials to connect to their cloud-based PCs. “Providing new identity solutions to protect our customers is paramount in the fight to stop phishing,” explained Sue Bohn, VP of product management for Microsoft’s Identity and Network Access (IDNA) group. “We’re excited to launch... --- ### Microsoft Announces Expedited Windows Updates to Address Zero-Day Security Flaws - Published: 2022-10-25 - Modified: 2022-10-25 - URL: https://petri.com/microsoft-expedited-windows-updates/ - Categories: Windows 10, Windows 11 - Tags: News, Security, Windows 10, Windows 11 - Article Type: News Microsoft has released a new feature for Windows Update for Business (WUfB) that lets IT admins speed up the installation of the latest security updates on Windows PCs managed with Intune. The feature helps organizations keep their Windows 10 and Windows 11 devices up-to-date to protect them against zero-day vulnerabilities. With this release, it’s possible for IT admins to expedite the rollout process of quality updates without pausing or editing their existing monthly servicing policies. This feature could be helpful in scenarios where it is important to mitigate a critical security threat with the recent patch Tuesday or out-of-band security updates. “To speed installation, expedite updates uses available services, like WNS and push notification channels, to deliver the message to devices that there's an expedited update to install. This process enables devices to start the download and install of an expedited update as soon as possible, without having to wait for the device to check in for updates,” the company explained. Expedited Windows updates to add support for non-security releases It is important to note that the expedited Windows updates feature is available for all supported Windows 10 and 11 editions. However, this capability doesn't work with the Beta and Dev channel builds. You can find the list of all prerequisites in this support document. Microsoft highlights that this release also allows IT admins to monitor the health and update status of their devices as well as track potential issues via Microsoft Intune. The company advises IT admins to test... --- ### Microsoft Introduces the On-Premises Unified Update Platform for Seamless Windows Updates - Published: 2022-10-25 - Modified: 2022-10-25 - URL: https://petri.com/microsoft-on-premises-unified-update-platform-2/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has announced a public preview of the Unified Update Platform (UUP) for on-premises environments. The company first started testing UUP with commercial customers in private preview in July, and it’s designed to create a seamless update experience. The Unified Update Platform (UUP) helps IT admins manage feature and quality updates on Windows 10 and Windows 11 machines. It provides integration between Windows Server Update Services (WSUS) and Microsoft Configuration Manager. Specifically, UUP on-premises brings several features to enhance the Windows Update process, such as the ability to install optional features and language packs and update the operating system with a single reboot. It also brings a streamlined content management experience through servicing techniques. “The Unified Update Platform (UUP) is the next iteration of our system for delivering Windows OS quality and feature updates. It offers improved delivery technologies in response to IT admin requests for more seamless updates, more control over installation time, more battery life, and lighter download size,” Microsoft explained. UUP on-premises general availability timeline Microsoft's Unified Update Platform on-premises to hit GA in early 2023 Microsoft will replace its existing Windows Update platforms with UUP on-premises in early 2023. Going forward, the company plans to deliver all Windows 11 22H2 (or later) updates through UUP. UUP updates will be automatically available for all organizations that have already switched to the Software Updates model. However, they will need to remove any previously-required feature update steps. Commercial customers interested in testing the Unified Update Platform for on-premises management... --- ### Microsoft’s New Windows Dev Kit 2023 'Project Volterra' Now Available for Developers - Published: 2022-10-24 - Modified: 2022-10-24 - URL: https://petri.com/microsoft-windows-dev-kit-2023-project-volterra/ - Categories: Hardware, Windows 11 - Tags: News, Project Volterra, Windows 11, Windows Dev Kit 2023 - Article Type: News Microsoft has launched Windows Dev Kit 2023 (codenamed “Project Volterra”), a new Snapdragon-powered desktop PC designed for data scientists and developers. The device was first unveiled at Build 2022, and it features a powerful neural processing unit (NPU) that lets developers build and test ARM native Windows applications. “The Windows Dev Kit 2023 is powered by the Snapdragon® 8cx Gen 3 compute platform, and sports 32 GB RAM and 512 GB fast storage, along with multiple ports: built-in Wi-Fi 6, physical ethernet, 3x USB-A and 2x USB-C, a mini-display port for easy and flexible connectivity to your devices, displays and networks,” the company explained. Along with Project Volterra, Microsoft has also released a fully Arm64-compatible developer toolchain for Windows in public preview. This includes popular apps such as Visual Studio 17. 4, Windows App SDK with native Arm support, . NET 7, VC++ Runtime, Arm64EC, and Azure VMs. Microsoft notes that . NET Framework 4. 8. 1 is available by default with Windows 11 version 22H2 launched last week. Microsoft released a preview of Visual Studio 2022 for Windows back in June. It’s the first version of Visual Studio that runs natively on Arm devices running Windows 11. This build supports workloads for creating desktop apps with C++ and C#, Windows SDK and Windows App SDK, Node. js, UWP, and Web or game development. Additionally, . NET 7 optimizes performance to target server throughput and latency on ARM devices. This release enables developers to run their existing x64 and x86 apps and tools on the Windows Dev... --- ### Microsoft Edge Gets Efficiency Mode Improvements to Extend Battery Life - Published: 2022-10-24 - Modified: 2022-10-25 - URL: https://petri.com/microsoft-edge-efficiency-mode-battery-life/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News - Article Type: News Earlier this month, Microsoft started rolling out Edge version 106 to all users in the Stable channel on Windows, macOS, and Linux. Now, the company has announced that the latest update brings some enhancements to the built-in efficiency mode feature in Microsoft Edge. Microsoft first added the efficiency mode feature in its Edge browser back in April. It’s designed to enhance battery life and reduce system resource usage. The feature puts background tabs to sleep after 5 minutes of inactivity. Microsoft claims that the efficiency mode helps users save 25 minutes of battery life. “With our latest improvements, when your laptop detects that you are on battery, efficiency mode kicks in, enabling power saving features when you’re both interacting and not interacting with the browser. There are multiple options for efficiency mode and each option will behave differently,” the Edge Insider team explained. Microsoft Edge's efficiency mode adds Balanced and Maximum Savings settings Specifically, Microsoft Edge users can now choose between the Balanced and Maximum Savings options. The browser uses the Balanced Savings mode by default, and it takes moderate steps to help users save battery without experiencing any performance issues. It also takes extra measures to improve battery life when the device is on a low battery level. Additionally, Microsoft Edge users can opt for the Maximum Savings mode to take additional power-saving measures when the system is unplugged or on low battery. Once enabled, users will see a “heart pulse” icon in the browser’s toolbar. However, Microsoft has... --- ### How to Use a PowerShell Foreach Loop > The PowerShell Foreach statement can be used to execute a command or a set of commands for each item in a collection. In this article, I will explain three different ways to use the PowerShell Foreach keyword: the Foreach loop, the ForEach object cmdlet, and the ForEach method. - Published: 2022-10-24 - Modified: 2022-10-24 - URL: https://petri.com/powershell-foreach/ - Categories: PowerShell - Tags: PowerShell, Powershell Loops - Article Type: How To The PowerShell Foreach statement is useful when working with collections of items. It can be used to execute a command or a set of commands for each item in a collection. In this article, I will explain three different ways to use the Foreach keyword: the Foreach loop, the ForEach object cmdlet, and the ForEach method. What is the PowerShell Foreach keyword for? With PowerShell, there are different ways to process a collection of items. A collection could be retrieved from files using commands such as Get-Content for text files, Import-CSV for comma-separated value files, and Import-CliXML for hierarchical data stored in an XML file, etc. The collection could also be the result of a command execution or a filtered result using the Where-Object cmdlet. When you need to perform an action against the members of this collection, you will be using the Foreach statement, which can be used as a loop, a cmdlet, or a method. In general, loops in PowerShell allow you to repeat a command or a set of commands until a condition is met. If you use a Foreach loop, the operations will repeat until all items in the collection are processed. This reduces the size of the code and makes it more readable. How to use a PowerShell Foreach loop A PowerShell Foreach loop will move through the items in a collection and execute a command or a set of commands for each of them.  The syntax you need to use is pretty simple. Syntax... --- ### VirtualBox 7.0 Adds Windows 11 TPM and Full Encryption Support - Published: 2022-10-21 - Modified: 2022-10-21 - URL: https://petri.com/virtualbox-7-0-windows-11-tpm-full-encryption/ - Categories: Virtualization - Tags: News, Oracle, VirtualBox - Article Type: News Last week, Oracle announced the release of VirtualBox 7. 0 on all supported platforms. The latest major release of the cross-platform virtualization software brings several new features and enhancements, such as support for Windows 11 via TPM, full virtual machine encryption, cloud virtual machines, and Apple Silicon Macs. First up, VirtualBox 7. 0 brings Secure Boot and TPM 1. 2/2. 0 support that makes it easier to run Windows 11 on virtual machines (VMs) without using any registry hacks. It also adds integration with Oracle Cloud Infrastructure (OCI). This feature enables users to centrally manage the development and production of VMs either running on OCI instances or on-premises environments. Additionally, Oracle has made it possible to run virtual machines with full encryption, including logs, saved states, and configuration files. However, the feature is only available through the command line at the moment. This release adds DirectX 11 support to improve 3D graphics on Windows PCs. VirtualBox 7. 0 brings a developer preview for ARM-based Macs The latest VirtualBox update also brings support for ARM-based Macs. With VirtualBox 7. 0, users can now create and run virtual machines on Apple’s M1 and M2-powered Mac devices. However, Oracle noted that the feature is still under development and it may not work as expected. The latest VirtualBox update introduces several other improvements across all platforms. These include a performance monitoring tool for guests and the integration of the Wizard tool with an unattended guest installation feature to automate the creation of virtual machines. Moreover, it brings bug fixes for... --- ### Microsoft Starts Rolling Out New AI-Powered Image Creator Tool to Bing - Published: 2022-10-21 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-image-creator-tool-bing/ - Categories: Microsoft 365 - Tags: Bing, Microsoft 365, Microsoft Edge, News - Article Type: News Image Creator, the new AI-based art generator tool that Microsoft announced at Ignite 2022, is now available in Microsoft Bing. The new Image Creator app is only rolling out in preview to Bing in select markets, with an integration with Microsoft Edge to follow later this month. Powered by OpenAI’s DALL-E 2 technology, Image Creator allows users to create an original image based on natural language descriptions. It’s also possible to provide additional contexts, such as location, activity, or art style, to automatically generate an image. “Users have always been able to search Bing Images for an image that exists on the web, but with Image Creator they’re now able to create the images they want to see. Within Edge, users can use Image Creator in their sidebar. They’re able to create an image to share a life update with their friends online and drag and drop it within their main working page, all without losing focus on their workflow,” Microsoft explained. You can see how the new Image Creator app works in the video below: https://www. youtube. com/watch? v=tQCfFatI6Ws Microsoft’s new Image Creator tool blocks objectionable content Microsoft says that Image Creator is completely free to use and accessed via the Bing Images tab or the bing. com/create URL. However, the company acknowledged that AI-powered tools come with some risks (such as potential abuse or hate speech), and it will take a measured approach to roll out the app. Microsoft has used filters to prevent Image Creator from generating images that violate its... --- ### How to Change an Email Signature in Outlook > Email signatures are an important tool to build brand awareness, generate leads and create direct contact with clients and partners. In this guide, I'll explain how to change an email signature in Outlook for Windows, Outlook for Mac, Outlook on the web, and the Outlook mobile apps. - Published: 2022-10-21 - Modified: 2023-03-05 - URL: https://petri.com/how-to-change-email-signature-outlook/ - Categories: Microsoft 365, Outlook - Tags: email, Email signature, Microsoft 365, News, Outlook, Outlook for Android, Outlook for Mac, Outlook for Windows, Outlook on the Web - Article Type: How To In this guide, I'll explain how to change an email signature in Outlook for Windows and other platforms. For business users, a professional email signature is an important tool to build brand awareness, generate leads and create direct contact with clients and partners. It can also help to drive traffic to your website and social media accounts. An email signature is a customized block of text that appears at the bottom of messages as a footer. It often includes the sender’s name, company name, job title, website URL, and professional contact information (such as telephone numbers, email addresses, and social media accounts). Outlook can save all this information for you so you don't have to enter it in every email. How to change an email signature in Outlook Here’s how to quickly change your email signature in Outlook. In the Outlook desktop app, click File > Options > Mail > Signatures. Select the signature to edit and change it in the Edit signature box. To complete the process, select Save > OK. For more detailed instructions regarding the different versions of Outlook, keep reading below. Why should you change your email signature? An email signature allows recipients to verify the sender's identity, which is why it's important to ensure that the information is up-to-date. An Outlook user may want to update their email signature’s contents in various situations, such as changing a phone number or job title. Despite the rise of social media and communication platforms such as Slack... --- ### Microsoft Confirms Customer Data Breach Caused by Misconfigured Server - Published: 2022-10-20 - Modified: 2022-10-20 - URL: https://petri.com/microsoft-customer-data-breach-misconfigured-server/ - Categories: Microsoft Azure, Security - Tags: Azure, News, Security - Article Type: News Microsoft has published an advisory about a server misconfiguration that may have compromised the sensitive data of some potential customers. The leak, dubbed "BlueBleed," was first discovered by security researchers at threat intelligence firm SOCRadar on September 24. The Microsoft Security Response Center explained that the misconfigured Azure Blob Storage instance made data related to the interactions between Microsoft and potential clients publicly accessible. The breach exposed confidential information like the customer’s name, email address, email content, file attachments, organization name, and contact numbers. “The issue was caused by an unintentional misconfiguration on an endpoint that is not in use across the Microsoft ecosystem and was not the result of a security vulnerability.   We are working to improve our processes to further prevent this type of misconfiguration and performing additional due diligence to investigate and ensure the security of all Microsoft endpoints,” the company explained. Microsoft disputes the scope of the BlueBleed data leak Notably, Microsoft claims that the security firm exaggerated the facts and declared it one of the largest B2B data breaches that affected over 65,000 entities in 111 countries worldwide. However, the company analyzed the data set and found duplicate information about users, email addresses, and projects. Microsoft notes that it’s an attempt by SOCRadar to promote its threat detection tool, "BlueBleed," which could make organizations vulnerable to security risks. It advises that security companies developing similar solutions should design a good verification process to ensure data protection. As of now, Microsoft has found no evidence that the... --- ### Budget for Operational Resilience in 2023 > I’m joined by Jim Doggett and Sean Deuby from Semperis to discuss how IT organizations can budget for operational resilience in 2023. - Published: 2022-10-20 - Modified: 2024-04-16 - URL: https://petri.com/budget-for-operational-resilience-in-2023/ - Categories: Active Directory (AD), Cloud Computing, Microsoft Entra ID (Azure AD), Petri Dish - Tags: NoAD - Article Type: Sponsored With budgets tightening and a recession predicted to dominate the economic outlook in 2023, and a shift in the way we all work, IT is under more pressure than ever to make apps and services available anytime, anyplace – while meeting demands to keep devices and data secure. This video is sponsored by Semperis As part of cybersecurity month, I’m joined by Jim Doggett and Sean Deuby from Semperis to discuss how IT organizations can budget for operational resilience in 2023. I also talk to Sean and Jim about the free security tool Purple Knight. --- ### Microsoft Announces New Azure DDoS IP Protection SKU for Small Businesses - Published: 2022-10-20 - Modified: 2022-10-20 - URL: https://petri.com/microsoft-ddos-ip-protection-small-businesses/ - Categories: Microsoft Azure - Tags: DDOS, Microsoft, Microsoft Azure, News - Article Type: News Microsoft has released its new Azure DDoS IP Protection SKU in public preview. It’s a cost-effective enterprise-grade endpoint security solution aimed at protecting small and midsize businesses (SMBs) against distributed denial-of-service (DDoS) attacks. “It offers the same essential capabilities as Azure DDoS Network Protection to protect your resources and applications against evolving DDoS attacks, including L3/L4 automatic attack detection and mitigation, metrics and alerts, mitigation flow logs, mitigation policies tuned to customer applications, and tight integration with Azure Firewall Manager, Microsoft Sentinel, and Microsoft Defender for Cloud,” explained Amir Dahan, Senior Product Manager for Azure Networking. The key features in Azure DDoS IP Protection include attack analytics, metrics, and logging, as well as integrations with Azure Firewall Manager, Microsoft Defender for Cloud, and Microsoft Sentinel. The service also enables customers to protect their workloads against the largest and most sophisticated DDoS attacks. The adaptive tuning feature considers the app’s scale and actual patterns to minimize false negatives. Getting started with Azure DDoS IP Protection As small and medium-sized businesses are facing an increasing number of cyberattacks, Microsoft has designed the DDoS IP Protection SKU for companies with a couple of public IP resources. It’s recommended for customers with a limited budget and qualified IT staff to mitigate massive DDoS attacks. The company also provides an enterprise offering (DDoS Network Protection) for large organizations with additional capabilities such as DDoS Rapid Response, cost protection, and Azure Web Application Firewall discounts. Microsoft’s new DDoS IP Protection feature is currently available in preview... --- ### Microsoft Partners with AMD, Google, & NVIDIA to Announce "Caliptra" Open-Source Root of Trust - Published: 2022-10-20 - Modified: 2022-10-20 - URL: https://petri.com/microsoft-caliptra-open-source-root-of-trust/ - Categories: Azure - Tags: Azure, cloud computing, News, Security - Article Type: News Microsoft has partnered with Google, AMD, and NVIDIA to create a new open specification for a silicon Root of Trust (RoT), dubbed Caliptra. What is silicon root of trust? Silicon root of trust, sometimes referred to as hardware root of trust, creates a chain of trust starting in the hardware used to boot a device. For example, if the firmware that’s used to start the operating system bootloader is trusted, then the subsequent code, in this case the OS bootloader, can use the same credentials because they are already trusted. The credentials are passed on to run the next piece of code, probably Windows or another operating system. Caliptra Open-Source Root of Trust Caliptra is designed to meet the enhanced security requirements of modern Edge and confidential computing scenarios. “Caliptra is a forward-looking approach casting transparency into hardware security. As a reusable open source, silicon-level block for integration into systems on a chip (SoCs)—such as CPUs, GPUs, and accelerators—Caliptra provides trustworthy and easily verifiable attestation,” explained Rani Borkar, CVP for Azure Hardware Systems and Infrastructure. Microsoft highlights that Caliptra offers essential security properties that boost the integrity of security protections for confidential workloads. It helps to ensure that only trusted firmware can execute on the chipset. The list of security properties includes Identity, Compartmentalization, Measurement, Renewable security, Ownership, and Attestation. According to Microsoft, the Caliptra RoT standard is a significant improvement over previous standards that had a separate implementation from the SoC. Moreover, it will help to standardize the security... --- ### How to Use a PowerShell Array > A PowerShell array is what you need to use whenever you need to gather or even manipulate multiple pieces of data. In this article, we'll explain how PowerShell arrays work, how to use an array of objects, and everything you need to know about PowerShell arrays to become a power user. - Published: 2022-10-19 - Modified: 2022-10-24 - URL: https://petri.com/powershell-array/ - Categories: PowerShell - Tags: PowerShell, PowerShell Array - Article Type: How To A PowerShell array is a data structure designed to store an item or a collection of items. These item types can be the same or of varying types. In this article, we'll explain how PowerShell arrays work, how to use an array of objects, and everything you need to know about PowerShell arrays to become a power user. What is a PowerShell array? As you may already know, arrays are used by most programming languages. Starting with PowerShell 3. 0, a collection of zero or an object has at least some properties of arrays. A PowerShell array is your answer whenever you need to gather or even manipulate multiple pieces of data, especially when you're using PowerShell scripting. That's because when working with an array, you can use a single command to perform the same service on a collection of items or individually manipulate them. It provides a beautiful and adaptable tool in this regard. Data types in a PowerShell array There are several different data types you can have in an array including Object and Int32. Each of the items in an array can contain any number of these data types. This is precisely what makes them so versatile. Each of the data items has an index. Somewhat strangely, the index starts at 0. The first item in an array will be given an index of zero, and the next, 1. And so on... We'll learn more about the different types of arrays and their syntax throughout the remainder... --- ### Windows 11 version 22H2 Gets File Explorer Tabs and Taskbar Improvements - Published: 2022-10-19 - Modified: 2022-10-19 - URL: https://petri.com/windows-11-version-22h2-file-explorer-tabs/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has released several new features for Windows 11 version 22H2. The new features rolled out to Windows 11 devices via a cumulative update include File Explorer tabs, suggested actions, an improved taskbar, Sharing experience, and much more. In Windows 11, File Explorer now allows users to open multiple folders in tabs simultaneously within a single window. This has been one of the top-requested features from users, which makes it easier to manage files and switch between folders. There is also a redesigned left navigation pane that moves OneDrive storage to the top of the list and an updated favorites section that lets users pin important files. File Explorer tabs The suggested actions feature allows users to take quick actions based on their recent activities. If a user copies a date or a phone number, Windows 11 will prompt them to make a phone call with Teams, Skype, or Phone Link or create a calendar event. However, the feature is only available for customers in select regions, including the United States, Canada, and Mexico. Microsoft has also introduced a new overflow menu that allows users to view all pinned and open apps that couldn’t fit on the taskbar. Moreover, this release brings back the Task Manager shortcut to the Windows 11 taskbar. This means that users can now right-click on the taskbar to launch Task Manager. Taskbar Overflow menu The latest update brings some improvements to the Sharing experience in Windows 11. It is now possible to share files from... --- ### Microsoft Starts Rolling Out the Windows 10 2022 Update with a "Scoped Set" of Productivity Features - Published: 2022-10-18 - Modified: 2022-10-18 - URL: https://petri.com/microsoft-windows-10-2022-update/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has started rolling out Windows 10 version 22H2, also known as the Windows 10 2022 Update, to all Windows 10 users. The latest feature update will be rolled out gradually via Windows Update, and the installation process should be pretty quick for users already running Windows 10 21H2 Windows 10 22H2 has been in testing with Windows Insiders for a couple of months now, and it’s a minor update that brings a “scoped” set of productivity and management features for users. Unfortunately, Microsoft has yet to detail any new features included in this release. “Based on customer feedback we are providing a limited scope of new features and functionality delivered via a familiar, fast and reliable update experience. Version 22H2 will continue the recent Windows 10 feature update trend of being delivered in an optimized way using servicing technology,” said John Cable, VP of Program Management, Windows Servicing and Delivery. If your PC is already running Windows 10 21H2, you can check if Windows 10 version 22H2 is available by heading to Settings >> Update & Security >> Windows Update and then clicking "Check for updates. ” Microsoft says that Windows 10 devices that meet the minimum hardware requirements may also see an option to upgrade to Windows 11. Meanwhile, enterprise customers can deploy the feature update via Windows Update for Business, Windows Server Update Services (including Configuration Manager), and the Volume Licensing Service Center (VLSC). Microsoft plans to offer 18 months of support on Windows 10 Home and Pro... --- ### Oracle Alloy Now Lets Enterprises Become Cloud Service Providers - Published: 2022-10-18 - Modified: 2022-10-18 - URL: https://petri.com/oracle-alloy-enterprises-cloud-service-providers/ - Categories: Cloud Computing - Tags: cloud computing, News, Oracle - Article Type: News Oracle has launched a new Oracle Alloy platform that enables organizations to host and deliver custom cloud services with Oracle Cloud Infrastructure (OCI). The solution allows customers to use Oracle cloud services without losing control over operational decisions. With this release, enterprise customers can create applications and services to meet the specific needs of select markets, industries, and regulatory requirements. The service also offers access to more than 100 infrastructure and platform services provided by the OCI public cloud. Additionally, Oracle Alloy enables organizations to operate their cloud service independently of a cloud service provider to reduce risks associated with third-party solutions. Enterprise customers can keep their workloads in a single geographical location in specific regions with heavier regulatory requirements (such as healthcare and finance). "Giving our partners and customers more choice has long been a primary focus for OCI. Today, we're going one step further by providing our partners with the option to become cloud providers so that they can build new services faster and address specific market and regulatory requirements," said Clay Magouyrk, executive VP of Oracle Cloud Infrastructure. "As cloud providers, our partners have more control over the customer experience for their targeted customer or industry, including where the workloads reside and how their cloud is operated. " The Oracle Alloy solution should help the company to attract more customers and compete with major cloud service providers such as Microsoft Azure and AWS. It should also provide organizations with more control over their cloud environments. Oracle Cloud expands... --- ### Top Microsoft 365 Tools for Simplified Project Management - Published: 2022-10-18 - Modified: 2024-05-10 - URL: https://petri.com/top-microsoft-365-tools-for-simplified-project-management/ - Categories: Microsoft 365 - Tags: NoAD - Article Type: Sponsored Effective project management is essential for businesses of all shapes and sizes. Project management can help your organization to better manage project timelines, deliverables, and budgets while giving increased visibility into the status of a project. As well as into a project’s costs, risks, and team members. This post is sponsored by Brightwork The role of project management has been changing within today’s organizations. Project management is no longer just for specialized project managers working with complex software. Projects are now typically owned by each different team. The tools and processes used to deliver projects have also changed. Today, light-touch and easy-to-use project management applications are becoming more popular. Project management solutions There are a number of ways that businesses can implement project management. Businesses can try to use basic Excel spreadsheets, implement complex project management solutions, or even attempt DIY solutions. Each of these methods has its own advantages, challenges, and limitations. Excel spreadsheets Excel spreadsheets can be inflexible and fragile – they are easily broken by changing business conditions. Spreadsheets provide limited visibility into projects, and they can also be difficult to share. DIY project management solutions Some businesses also attempt to build their own project management solutions using tools they already have like the Microsoft 365 platform. However, they often find that building their own project management system isn’t that easy. Let’s take a closer look at using Microsoft 365 for project management. BrightWork 365, a unique and advanced project management software, leverages the Microsoft 365 platform... --- ### Microsoft Releases Fix for TLS/SLS Connection Issues on Windows PCs - Published: 2022-10-18 - Modified: 2022-10-18 - URL: https://petri.com/microsoft-tls-sls-connection-issues-windows/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 Microsoft is rolling out an out-of-band update to address an issue that causes Transport Layer Security (TLS)/ Secure Sockets Layer (SSL) handshake failures on Windows PCs. The company has acknowledged on the Windows release health dashboard that the October Patch Tuesday updates trigger network connectivity problems on various supported versions of Windows. “We address an issue that might affect some types of Secure Sockets Layer (SSL) and Transport Layer Security (TLS) connections. These connections might have handshake failures. For developers, the affected connections are likely to receive one or more records followed by a partial record with a size of less than 5 bytes within a single input buffer. If the connection fails, your app will receive the error, “SEC_E_ILLEGAL_MESSAGE”,” the company explained. According to Microsoft, the fix is currently available for Windows 11 21H2 (KB5020387), Windows 10 (KB5020435), Windows 8. 1, Windows 7, and Windows Server. However, Microsoft is still working to address the network connectivity issues on Windows 11 22H2. Windows updates for SSL/TLS connection issues are available via the Microsoft Update Catalog Microsoft notes that IT admins won’t be able to deploy the updates via Windows Updates, Windows Update for Business, or Windows Server Update Services (WSUS). The optional updates are only available to download in the Microsoft Update Catalog and must be installed manually. Earlier this month, Microsoft confirmed that it’s investigating an issue that causes slower SMB read performance for large files in Windows 11 version 22H2 and slower speeds for local copies. As a workaround,... --- ### Cloud Conversations – Ru Campbell and Peter Rising Share Ignite Highlights at South Coast Summit > In this week's Cloud Conversations episode, Peter Rising and Ru Campbell meet for the first time at the South Coast Summit in Southampton, UK, and they discuss their conference highlights and also dive into the Ignite Book of News and pick out some of their favorite announcements. - Published: 2022-10-17 - Modified: 2022-10-17 - URL: https://petri.com/cloud-conversations-ru-campbell-peter-rising-ignite-highlights/ - Categories: Video - Tags: Cloud Conversations, Ignite, Ignite 2022 - Article Type: Video Cloud Conversations is a regular podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Ru Campbell and Peter Rising Share Ignite Highlights at South Coast Summit This week, Peter Rising and Ru Campbell, two hosts of the Cloud Conversations podcast meet for the first time at the South Coast Summit in Southampton, UK. In this episode, they will discuss their conference highlights and also dive into the Ignite Book of News and pick out some of their favorite announcements from the event. More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a... --- ### Microsoft Finds New Prestige Ransomware Targeting Polish and Ukrainian Businesses - Published: 2022-10-17 - Modified: 2022-10-17 - URL: https://petri.com/microsoft-prestige-ransomware-ukraine/ - Categories: Security - Tags: News, Security - Article Type: News Microsoft has recently discovered a new ransomware campaign that's targeting organizations within the transportation and logistics industries across Poland and Ukraine. The novel Prestige ransomware strain was first found on October 11, and the attackers targeted a wide range of systems within an hour. The Microsoft Threat Intelligence Center (MSTIC) explained that it has been unable to track the hacking group behind the ransomware attacks. The security researchers observed that the ransomware campaign is similar to previous attacks by Russian state-backed threat actors that impacted Ukraine government agencies. However, the Prestige ransomware is explicitly targeting the networks of Ukrainian enterprises. Microsoft is tracking the ransomware campaign as DEV-0960, a term used for previously unidentified threat actors. The hacking group abused several publicly available tools for remote-code execution to steal highly privileged administrator credentials within the victim’s network. Specifically, the attackers used three different methods to obtain privileged access to the compromised environment to deploy the Prestige payload. Once deployed, the operators dropped a ransom note called “README. txt” in the root directory of each encrypted drive on the target device. "For this DEV-0960 activity, the methods used to deploy the ransomware varied across the victim environments, but it does not appear to be due to security configurations preventing the attacker from using the same techniques. This is especially notable as the ransomware deployments all occurred within one hour," the Microsoft Threat Intelligence Center explained. Prestige attack methods Microsoft details indicators of compromise to detect the Prestige ransomware Microsoft suggests that organizations... --- ### Microsoft Adds Authentication Strength Support to Conditional Access Policies - Published: 2022-10-17 - Modified: 2022-10-17 - URL: https://petri.com/microsoft-authentication-strength-conditional-access-policies/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has released a new setting for conditional access policies that enables organizations to define the authentication strength of accepted connections. This release brings the ability to specify a combination of multifactor authentication (MFA) methods that allow external users to access a particular resource. Conditional access policies let IT admins create a set of rules and configurations that control how a user gets access to the requested resources. These policies leverage contextual information to determine the risk level and apply the most appropriate level of security to each login attempt. According to Microsoft, the new authentication strength feature helps administrators to restrict external access to sensitive Microsoft 365 apps in enterprise environments. Azure Active Directory (AD) currently offers three types of built-in authentication strengths. These include Multifactor authentication strength, phishing-resistant MFA strength, and passwordless MFA strength. Moreover, it is possible to create custom authentication strengths based on specific requirements. “Authentication strength is based on the Authentication methods policy, where administrators can scope authentication methods for specific users and groups to be used across Azure Active Directory (Azure AD) federated applications. Authentication strength allows further control over the usage of these methods based upon specific scenarios such as sensitive resource access, user risk, location, and more,” the company explained. Azure AD authentication methods How to choose an authentication strength To choose an authentication strength, IT admins will first need to sign in to the Azure portal. Navigate to Azure Active Directory >> Security >> Authentication methods >> Authentication strengths (Preview). Select... --- ### Choosing between 2.4 GHz and 5 GHz Wi-Fi > 2.4 GHz and 5 GHz Wi-Fi bands play an important role in a wireless local area network's range, strength, and penetrative abilities. In this article, I'll help you to better understand the main differences between 2.4 GHz and 5 GHz Wi-Fi as well as the pros and cons of each band. - Published: 2022-10-17 - Modified: 2024-12-03 - URL: https://petri.com/2-4ghz-vs-5ghz-wifi/ - Categories: Networking - Tags: networking, Wi-Fi, WIFI - Article Type: Overview Wi-Fi is one of the most widely used wireless local area network protocols across the world. You may not be aware of it, but your devices may be alternatively using the 2. 4 GHz or 5 GHz Wi-Fi bands to transmit data depending on your environment. In this article, I will help you to better understand the main differences between 2. 4 GHz and 5 GHz Wi-Fi as well as the pros and cons of each band. As we’ll see, Wi-Fi bands play an important role in a wireless local area network's range, strength, and penetrative abilities. In the enterprise world, Wi-Fi is a key technology enabling remote workers to do their jobs from anywhere using reliable wireless networks. It's a key driver for the ongoing digital transformation, though there are several advantages and trade-offs associated with 2. 4 GHz and 5 GHz Wi-Fi bands. 2. 4 GHz vs. 5 GHz Wi-Fi: Why are there separate bands? Wi-Fi frequencies represent designated frequency bands in the wireless radio spectrum that are used to transmit data between devices. As of today, the most common Wi-Fi frequency bands that are in widespread use are 2. 4 GHz and 5 GHz. 2. 4 GHz and 5 GHz are the two Wi-Fi frequency bands that are in widespread use today. Single-band vs. dual-band Wi-Fi Starting with the Wi-Fi 4 standard (802. 11n) adopted in 2008, the MIMO (Multiple-Input and Multiple-Output) architecture combined with wider-bandwidth channels made dual-band Wi-Fi the new norm. Wi-Fi 4-certified routers could now transmit data using either or both 2. 4... --- ### Microsoft Teams Meetings to Let Users Request Payments Next Month - Published: 2022-10-14 - Modified: 2022-10-16 - URL: https://petri.com/microsoft-teams-meetings-payments-app/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new app that will allow users to request payments during meetings. As of today, Google Meet and Zoom let users accept payments from clients via third-party integration, and this capability is now coming to Microsoft Teams in public preview in November. “The Payments app in the Microsoft Teams app store will help you to get paid by customers for appointments, classes, or events hosted on Teams. The Payments app is free to use with your Teams or M365 subscription as a tool for small businesses – or businesses of any size – looking to grow their revenue. ,” the company explained in a message on the Microsoft 365 admin center. Once the Payments app launches, users will be able to install it from the Microsoft Teams store. Then, they will need to connect the app to any third-party service such as Stripe or PayPal to request payments during Teams meetings. Microsoft Teams’ Payments app only limited to US-based customers Microsoft says that IT admins will be able to manage the Payments app by configuring policies in the Teams admin center. At launch, the app will only be available for registered business customers in the United States and Canada across all platforms. However, there is no word yet on whether this new payment integration will also be coming to other regions. Earlier this week, Microsoft unveiled several updates for its Teams collaboration platform. The company announced new chat and collaboration features, a public preview of Mesh avatars,... --- ### Microsoft Syntex Gets New AI-Powered Content Management Tools - Published: 2022-10-14 - Modified: 2022-10-18 - URL: https://petri.com/microsoft-syntex-ai-powered-content-management-tools/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Planner, News - Article Type: News Microsoft has announced Microsoft Syntex, a new set of apps and services that use AI to analyze and organize large data sets and unorganized content. Microsoft's President for Collaborative Apps and Platforms, Jeff Teper, explained that more than 1. 6 billion documents are added to Microsoft 365 daily, and organizations spend $46 billion per year on content management tasks. “Syntex automatically reads, tags, and indexes high volumes of content and connects it where it’s needed—in search, in applications, and as reusable knowledge. It manages your content throughout its lifecycle with robust analytics, security, and automated retention,” explained Seth Patton, GM for Microsoft 365. Microsoft Syntex supports more than 300 different types of content, and it brings 11 core capabilities for customers. Specifically, the enhance tool help to improve the content to make it easier for users to understand and structure information. There is also a content assembly feature that enables users to automatically generate documents with templates and metadata. Microsoft Syntex includes a connect tool that provides AI-powered search capabilities to help users discover and reuse content. Other capabilities include document processing, images, audio & video processing, summarization, E-signature, search, annotation, content rules processor, and accelerators and templates. It is important to note that select Microsoft Syntex features have started rolling out now to customers, with more services to follow in early 2023. Microsoft plans to introduce a consumption business model for Syntex to let users scale up the services to meet their business needs. Microsoft Planner and Microsoft Project updates... --- ### Azure Active Directory Premium P1 vs. P2: A Features Comparison > In this article, we'll break down the differences between Azure Active Directory Premium P1 and P2 licensing to help you decide which plan provides the best suite of identity products for your organization. - Published: 2022-10-14 - Modified: 2023-07-17 - URL: https://petri.com/azure-active-directory-premium-p1-vs-p2/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory - Article Type: Overview In this article, we'll be comparing Microsoft's Azure Directory Premium P1 and P2 plans to help you choose the best suite of identity products for your organization. We'll help you understand the different features between the Azure Active Directory (recently renamed Microsoft Entra ID) Premium P1 and P2 plans, as well as the pricing tiers for each offering. Part of Microsoft's newly branded identity and access suite, Microsoft Entra, Azure Active Directory (Azure AD) is the identity and access management (IAM) platform that underpins all Microsoft 365 services (Exchange Online, SharePoint Online. OneDrive for Business, Microsoft Teams, Dynamics 365 and so on). For an IT pro, using a centralized identity provider such as Azure Active Directory for all of an organization's applications makes it possible to secure all the identities that needs to be managed in a one place. Azure Active Directory also allows the extension of traditional on-premises Windows Server Active Directory (WAD) servers using Azure AD Connect. This allows orgnizations to enable single sign-on to Microsoft cloud applications, as well as other vendor SaaS applications that support modern cloud authentication protocols such as OATH 2. 0 and SAML. With Azure Active Directory. Azure Active Directory Premium P1 vs. P2: Features comparison Every organization that has at least one licensed Microsoft 365 user (with an E1, E3, E5, F1, and F3 subscription) or uses Microsoft cloud services such as Azure or Intune also has an Azure Active Directory tenant. There are, however, different editions of Azure AD licenses that... --- ### Windows 365 App is Now Available on the Microsoft Store for Windows 11 - Published: 2022-10-13 - Modified: 2022-10-13 - URL: https://petri.com/windows-365-app-available-microsoft-store-windows-11/ - Categories: Windows 365 - Tags: News, Windows 11, Windows 365 - Article Type: News Microsoft announced yesterday that a new Windows 365 application is now available in public preview on the Microsoft Store. The new app, which was first unveiled back in April, allows employees to access their Windows 365 Cloud PCs directly from the taskbar on Windows 11. “With Windows 365 app, you can access your Windows 365 Cloud PC from the taskbar or the Start menu, enjoying a full Windows 11 experience while moving between your local and Cloud PCs. Supported by all Windows 11 devices, the app delivers high-performing and reliable experiences optimized for Microsoft Teams and your other Microsoft 365 apps,” the company explained. Additionally, Microsoft has introduced a new Windows 365 Government SKU. This plan is designed to cater to the needs of Government Community Cloud (GCC) and GCC-High customers, including federal contractors and employees. There is also a new Citrix HDX Plus add-on for Windows 365 that lets end users access Windows 365 in their Citrix environments. This release brings support for a wide range of endpoint devices and peripherals. Windows 11 to add support for organizational messages in November Microsoft noted that the organizational messages feature will be available in public preview on Windows 11 PCs in November. This capability will let IT admins send messages to a Windows 11 lock screen, desktop, or taskbar. According to Microsoft, administrators will be able to configure these messages in Microsoft Endpoint Manager. This feature could be useful for sharing training material with new employees or making company-wide announcements. Lastly,... --- ### Microsoft Announces New Security and Identity Management Solutions - Published: 2022-10-13 - Modified: 2022-10-13 - URL: https://petri.com/microsoft-security-identity-management-solutions/ - Categories: Security - Tags: Ignite 2022, Microsoft Defender for Cloud, Microsoft Defender for Endpoint, News - Article Type: News Microsoft announced several new security features and services at its Ignite 2022 conference this week. Specifically, the company introduced two new security solutions called Defender for DevOps and Defender Cloud Security Posture Management. Microsoft Defender for DevOps is a service that enables developers to detect and remediate code vulnerabilities during the software development life cycle. It can help organizations reduce the risk of cloud misconfigurations to protect enterprise customers from cyberattacks. "Too often, cybersecurity and development teams within organizations operate entirely apart from each other," said Vasu Jakkal, Micorosft's CVP of Security, Compliance, Identity, and Management. "With more bad actors exploiting vulnerabilities in the code itself, it's critically important to build security in from the beginning. Microsoft believes secure code development should be the industry standard. " Microsoft has also announced the public preview of Defender Cloud Security Posture Management (CSPM). It’s a new tool that can help organizations track potential attack paths and address vulnerabilities in enterprise environments. The service also integrates other workload protection solutions, including Defender for DevOps and Defender External Attack Surface Management. Microsoft Entra Identity Governance and other security features Microsoft announced that its Entra Identity Governance service is now available in preview. The service brings a couple of new capabilities to make identity management and governance easier across devices, apps, and clouds. The list includes Workload Identities, conditional access authentication context, and certificate-based authentication. Meanwhile, Microsoft 365 Defender is getting new security features that will let customers automatically disrupt ransomware attacks. It isolates the compromised... --- ### Microsoft Office will Soon be Rebranded as Microsoft 365 - Published: 2022-10-13 - Modified: 2022-10-13 - URL: https://petri.com/microsoft-office-rebrand-microsoft-365/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, Microsoft Office, News - Article Type: News Microsoft introduced a new Microsoft 365 app at its Ignite conference yesterday. This app will replace the all-in-one Office app available on Windows and mobile devices, as well as the office. com web portal. But that wasn't the whole story. On the microsoft365. com home page, Microsoft detailed that “Office is becoming Microsoft 365. ” This requires a bit of clarification, as Microsoft 365 and Office are not exactly the same products. Microsoft introduced Microsoft 365 back in July 2017, as a combined offering of Office 365, Windows 10, and Enterprise Mobility + Security. The company has already replaced the Office 365 consumer subscriptions with the Microsoft 365 Personal and Home brand a couple of years ago, and it's apparently not done with the rebranding effort. “Microsoft 365 is our cloud-powered productivity platform that includes apps like Microsoft Teams, Word, Excel, PowerPoint, Outlook, OneDrive, and so much more,” the company explained in a FAQ document. “Over the last couple years, Microsoft 365 has evolved into our flagship productivity suite, so we are creating an experience to help you get the most out of Microsoft 365. " The new Microsoft 365 logo and the name change will first begin rolling out to Office. com in November. Moreover, the all-in-one Office apps on Windows, Android, and iOS will be rebranded as Microsoft 365 in January 2023. The Office brand isn't going away entirely It is important to note that the new Microsoft 365 branding doesn't bring any changes to the existing Office 365 subscriptions. Going forward, Microsoft... --- ### AWS Announces Amazon File Cache > Amazon File Cache, a new high-speed cache service on Amazon Web Services can now be used by AWS customers for processing file data stored in the cloud and on-premises. - Published: 2022-10-13 - Modified: 2022-10-13 - URL: https://petri.com/aws-announces-amazon-file-cache/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon File Cache, Amazon S3, AWS Direct Connect, NFS, VPN - Article Type: News Amazon File Cache, a new high-speed cache service on Amazon Web Services (AWS) was announced by Amazon in late September. This new AWS offering is designed for processing file data stored in the cloud and on-premises. "File Cache accelerates and simplifies your most demanding cloud bursting and hybrid workflows by giving your applications access to files using a fast and familiar POSIX interface, no matter if the original files live on premises on any file system that can be accessed through NFS v3 or on Amazon Simple Storage Service (Amazon S3)," Amazon explained in the announcement. Amazon File Cache delivers sub-millisecond latencies, up to hundreds of GB/s of throughput, and up to millions of operations per second. The performance it delivers will depend on the size of the cache: It can be expanded to petabyte scale, with a minimum size of 1. 2 TiB. How Amazon File Cache works Amazon File Cache creates a file system–based cache in front of either NFS v3 file systems or S3 buckets in one or more regions. It transparently loads file content and metadata from the original file system and presents it to your applications as a POSIX file system. It also automatically releases the less recently used cached files to ensure that the most active files are available in the cache for your applications. You can link up to eight NFS file systems or eight S3 buckets to a cache, and they will be exposed as a unified set of files and directories. You can access the cache from... --- ### Microsoft Edge Gets Workspaces, Website Typo Protection, and More - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-edge-workspaces-website-typo-protection/ - Categories: Microsoft Edge - Tags: Ignite 2022, Microsoft Edge, News - Article Type: News At Ignite 2022, Microsoft unveiled several new updates coming to its Edge browser. The biggest addition is a new Microsoft Edge Workspaces feature, which allows users to collaborate on a shared set of browser tabs and relevant files with their colleagues in real time. The Workspaces feature is currently available in preview for Edge Insiders. “For example, let’s say a new team member is being brought on to an existing project. Instead of overwhelming them with links and files over email, the team can share one link to their Microsoft Edge Workspaces, which has all their relevant files and links open as browser tabs. As the team works together, tabs are updated in real-time, so everyone stays on the same page,” explained Frank X. Shaw, CVP for Communications at Microsoft. In addition to the Workspaces, Microsoft highlighted some new security capabilities in Microsoft Edge. These features are designed to protect Windows users from phishing attacks and malware. Website typo protection prevents users from navigating to fraud or malicious websites. Microsoft Edge users can also enable Enhanced Security Mode to ensure a safe browsing experience on unknown websites. It disables the Just-In-Time compilation to protect users from memory-related vulnerabilities. Microsoft Edge adds new accessibility features Microsoft has also announced the general availability of a couple of new accessibility features in its Edge browser. It is now possible to view live captions while watching videos in the web browser. Narrator integration in Microsoft Edge is getting better with contextual information about buttons... --- ### Microsoft Announces New Hybrid Work Features for Outlook - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-hybrid-work-features-outlook/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Outlook, News - Article Type: News Microsoft just kicked off its Ignite 2022 conference this morning, where Microsoft 365 CVP Jared Spataro announced some important updates for Microsoft 365 apps and services. The company has unveiled a “working hours and location” feature coming to Outlook and Teams to help users schedule in-person meetings. “The new working hours and location feature will allow users to organize their week to let teammates know what hours they’ll be available and where they’ll be working, so they can plan meetings better. Additionally, if a sudden change comes up during their day people have the flexibility to easily change their location for only that day from Microsoft Teams, Outlook desktop or Teams mobile without impacting the rest of their week,” Microsoft explained. Microsoft Outlook is getting a meeting recap feature that will enable employees to easily catch up on important information they might have missed. With this release, Outlook users will be able to access the meeting recordings directly from the calendar event. Microsoft Outlook is also getting support for message reactions. Microsoft is also adding a new feature to Outlook and Teams to let users choose a specific time to send an email or chat message. Moreover, Outlook on the web is getting new Context IQ-powered capabilities that will allow employees to use @mentions to surface relevant people and documents in the emails based on the context. Microsoft plans to release the aforementioned feature by the end of this year. Microsoft has also announced that Outlook for Mac is getting... --- ### Microsoft to Release New Intune Premium Suite in March 2023 - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-intune-premium-suite-2023/ - Categories: Endpoint Management - Tags: Microsoft Endpoint Manager, News - Article Type: News Microsoft has announced its plans to roll out a new Advanced Management Suite in March 2023. The cloud-based Microsoft Intune Premium Suite is a cost-effective premium endpoint management plan, which will include Endpoint Privilege Management, Remote Help, Microsoft Tunnel for Mobile App Management as well as advanced endpoint analytics capabilities, with support for more features to be added in the following months. “The capabilities delivered within the Intune Premium Suite will allow organizations to centralize and consolidate the tools they use to provide remote assistance, remove the risks of local admin users, support a BYOD device model with secure access for unenrolled mobile devices, improve the health and performance of Windows endpoints, and reduce the complexity and effort of app deployments and updates,” the company explained. Remote Help for Windows and Android The Microsoft Intune Premium Suite will improve the Remote Help solution that launched on Windows in April. These include a new ServiceNow integration, improved compliance messaging, enhanced elevation, and support for Android devices. This release will also enable IT admins to hear audio from the employee while providing remote assistance. Microsoft Endpoint Privilege Management In early 2023, Microsoft is also introducing a new Endpoint privilege management solution in public preview. The service will automatically manage and elevate standard users’ permissions to admin status to let them perform specific tasks on Windows cloud-connected and co-managed endpoints. For instance, employees will be able to install applications, printers, and other peripheral devices. Microsoft Endpoint privilege management will be available as an... --- ### Microsoft Teams Gets New Channel Experience and Much More - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-teams-new-channel-experience/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced a range of new chat and meetings features for Teams at its Ignite 2022 event. The biggest news is that Microsoft plans to release some updates to improve the existing channel experience in Microsoft Teams. For starters, Microsoft is moving the recent posts and compose box to the top of the page, making it easier for users to focus on important topics and conversations. Users will also be able to pin important announcements and pop out channel conversations. There is also a new streamlined info pane to help channel members find pinned posts and recent updates. Microsoft Teams channels will introduce several post types to help organizations better engage with their employees. For instance, managers can create an announcement post to celebrate an important milestone. The app is also getting the ability to customize the channel header to better align with the organization’s brand. Microsoft Teams to add new delete chat feature Microsoft is adding a slew of new chat and collaboration features to Microsoft Teams. A new delete chat feature will allow users to remove themselves from a one-on-one or group chat conversation. Microsoft Teams is also making it possible to mention everyone in a group chat. It should eliminate the need to individually mention everyone to send notifications. Schedule Send Later this year, Microsoft Teams chats will add new zero-state people recommendations to help users save some time and effort. Specifically, the app will ML models to suggest users to start a new chat based... --- ### Microsoft Teams Premium Plan to Bring New AI-Powered Meeting Features for Businesses - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-teams-premium-plan/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is set to introduce a new service plan called “Microsoft Teams Premium” for commercial customers. The company announced the new Teams Premium add-on at its Ignite 2022 conference this morning, which will bring several new features to make the meeting experience more personalized and secure. The core meeting features in the Microsoft Teams Premium SKU include intelligent recaps, AI-generated tasks, intelligent playbacks for recordings, an improved search experience for transcripts, and AI-powered live translations for captions. The new service plan will also bring the ability for IT admins to brand meetings with custom logos or backgrounds for the Teams lobby and customized scenes for Together mode. Additionally, Microsoft Teams Premium will provide new meeting guides that automatically configure the right meeting options for scenarios such as help desk support and client call. Microsoft notes that IT admins will be able to customize and manage these guides at the tenant level. The plan will also bring personalized insights highlighting important moments in a meeting recording, including screen sharing, users joining or leaving the meeting, and more. Microsoft Teams intelligent recaps Microsoft Teams Premium adds advanced webinar and virtual appointment features The Microsoft Teams Premium add-on will add new advanced webinar capabilities for businesses. These include support for automated email reminders, registration waitlist & manual approvals, a virtual green room for both presenters & hosts, as well as the ability to manage meeting content. There are also some updates to improve the virtual appointments experience, such as a branded lobby, pre-appointment... --- ### Microsoft to Launch New Microsoft 365 App on Windows, Mobile, and the Web - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-365-app-windows-mobile-web/ - Categories: Microsoft 365 - Tags: Ignite 2022, Microsoft 365, News - Article Type: News Microsoft is getting ready to release a new Microsoft 365 app available for Windows, mobile, and web users. The new app will be an evolution of the existing all-in-one Office app, and it will provide a central hub for launching Office apps, surface shared documents, meetings, and other organizational content personalized for each user. “Microsoft 365 comes alive in the new Microsoft 365 app, home to all your favorite productivity apps—Teams, Word, Excel, PowerPoint, and Outlook—along with new apps for creation and expression, like Loop, and third-party apps you choose. It’s a secure, integrated, experience built on the Microsoft Graph that brings together all your documents, files, contacts, meetings, and more—with intelligent, Graph-powered recommendations personalized for you,” explained Jared Spataro, CVP for Modern Work at Microsoft. Just like the existing Office app, this new Microsoft 365 experience will enable users to create new documents from built-in templates. It will also make it easier to access files or other content created or shared by the user. Moreover, users will be able to pin apps and tools to improve discovery. Additionally, the new Microsoft 365 app provides recommendations based on assigned tasks, meetings, and document activity. The app also includes a menu that will let users perform quick actions on the documents without switching between different applications. The new Microsoft 365 app brings a new Feed, Apps module, and more The new Microsoft 365 app will also bring several new features for users across all platforms. Specifically, users will see a new... --- ### Microsoft Releases New Loop App in Preview, Updates Loop Components - Published: 2022-10-12 - Modified: 2022-10-18 - URL: https://petri.com/microsoft-loop-app-preview/ - Categories: Microsoft 365 - Tags: Ignite 2022, Microsoft 365, News - Article Type: News Microsoft kicked off its Ignite 2022 conference today, and there’s some big news regarding the Microsoft 365 ecosystem. The company announced the private preview of Microsoft Loop, a new collaborative canvas that lets employees collaborate across Microsoft 365 apps. “The Microsoft Loop app, in private preview, will help teams to think, plan and create together. Customers can use the Loop app to work on projects collaboratively. The Loop app features workspaces, pages and components that sync across Microsoft 365. Microsoft will be working with customers in private preview to incorporate their feedback as it continues developing the app,” Microsoft explained. Microsoft also announced that Loop components will soon start rolling out to Outlook for Windows, Word for the web, and Microsoft Whiteboard. Loop components are built on Microsoft’s Fluid Framework open-source platform. These live pieces of content (such as lists and tables) can be embedded across other Microsoft 365 apps. Microsoft Loop components to add support for more data types In addition, Microsoft is bringing support for more data types to Loop components. First up, Microsoft Word for the web will let users insert a poll, checklist, or task list into a document. Microsoft is also making it possible to copy existing Loop components into the Whiteboard app available on the desktop, web, and Microsoft Teams. Another important addition is a new Polls component type that will enable users to create quizzes, surveys, and word clouds that sync in real-time with the Outlook and Word web apps. A new Q&A... --- ### Microsoft Announces New Creator Tools Coming to Microsoft 365, Edge, and Bing - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-creator-tools-microsoft-365-edge-bing/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has announced a new Designer app that provides AI-powered design suggestions to let Microsoft 365 subscribers quickly create invitations, graphics, social media posts, digital postcards, and much more. The new graphic design app is an evolution of the Designer feature that is already available in PowerPoint. “Our cutting-edge AI supercharges your ideas. With Designer, there’s no need to spend time building cards or social media posts from scratch. And you no longer need to search through thousands of pre-made templates. Designer invites you to start with an idea and let the AI do the heavy lifting,” explained Liat Ben-Zur, CVP of Modern Life, Search & Devices at Microsoft. Going forward, Microsoft plans to integrate the Designer app into Microsoft Edge. This release will enable users to improve their social media posts and other visual content directly within the web browser. If you’re interested, you can sign up to get early access to the new Microsoft Designer app on this page. Microsoft will keep listening to feedback about the current experience of the app, and the company will add more features over time. Keep in mind that Microsoft Designer will be available as a free application once it reaches general availability. However, Microsoft 365 Personal and Family subscribers will get access to additional premium features. Microsoft Create website Microsoft has also launched a new Microsoft Create website that enables users to create videos, documents, presentations, and graphic designs. “Create is a space to help any type of creator get started... --- ### Microsoft Announces Surface Laptop 5, Surface Studio 2+, and Surface Pro 9 - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-surface-laptop-5-surface-studio-2-surface-pro-9/ - Categories: Hardware - Tags: Ignite 2022, News, Surface Laptop 5, Surface Pro 9, Surface Studio 2+ - Article Type: News Microsoft has officially announced new Surface devices this morning, a new Surface Laptop 5, Surface Studio 2+ all-in-one PC, as well as a better version of Surface Pro with Thunderbolt 4 support and new AI-powered features. First off, Microsoft finally took the wraps off its new Surface Laptop 5, which is an iterative update over the Surface Laptop 4 that launched back in April 2021. With the 13. 5″ and 15″ Surface Laptop 5 configurations, Microsoft allows customers to choose between 12th gen Intel Core i5/i7 CPUs with Intel Iris Xe Graphics. Both Surface Laptop 5 models come with up to 32GB of RAM and 1TB of SSD storage. The design of the Surface Laptop 5 is identical to its predecessor, with the addition of a new “Sage” finish. Microsoft is promising up to 18 hours of battery life on a single charge on the 13. 5″ Surface Laptop 5 model. “From the effortless opening and fast log-in with Windows Hello, to the touchscreen, precision touchpad, and perfect typing experience, Surface Laptop 5 offers the craftsmanship, comfort, and capabilities to jump in and produce your best work,” explained Microsoft’s Chief Product Officer, Panos Panay. “It now offers Thunderbolt™ 4, and with the latest Intel® Evo™ platform, Surface Laptop 5 is over 50% more powerful than its predecessor. ” Surface Pro 9 Microsoft is also extending the Surface Pro family with the Surface Pro 9, which is a minor iteration over the previous generation. The device ships with a 13” PixelSense Flow display, up... --- ### How to Use Microsoft Teams Shared Channels > Shared channels in Microsoft Teams allow organizations to welcome external users in a channel without giving them access to a whole team. In this article, we will explore how to enable shared channels in Teams and the various advantages of using them for an organization. - Published: 2022-10-12 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-teams-shared-channels/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft Teams, Microsoft Teams Connect, Shared Channels - Article Type: How To Microsoft recently announced a new channel type in Teams: shared channels. Microsoft Teams shared channels allow organizations to create more flexible teams that can welcome people who don't work together regularly. This article will explore how to enable shared channels and the advantages of using them. With shared channels, you can invite people from other teams and outside contacts such as vendors, customers, or partners on an ad hoc basis. Shared channels work like any other Teams channel—you can add tabs, message extensions, and bots, share conversations, use video chat, and more! What are Microsoft Teams shared channels? You can use Microsoft Teams shared channels to collaborate with your team members and keep your work organized. A shared channel is where anyone from your organization or external partners can post content and access the channel resources without being added to the team. A new type of Teams channel In Microsoft Teams, you can create different types of channels, and each of them has specific purposes. Organizations use channels for project collaboration, department collaboration, and more. Standard channels are public channels everyone on the team can see. Here, team members can post messages, edit content, and interact with apps like Microsoft Planner. Moreover, a standard channel does not create a separate SharePoint site for its files. Private channels are only visible to those who have received an invite to participate. A private channel is a great place for personal conversations and updates about things in your team that might not... --- ### October 2022 Patch Tuesday Updates Fix 85 Windows Vulnerabilities > The October 2022 Patch Tuesday that Microsoft released yesterday fix 85 vulnerabilities on all supported versions of Windows. The updates also bring minor changes to the Taskbar on Windows 11 and Windows 10. - Published: 2022-10-12 - Modified: 2022-10-12 - URL: https://petri.com/october-2022-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows, Windows 10, Windows 11 - Article Type: News Microsoft has released yesterday the October 2022 Patch Tuesday updates for all supported versions of Windows. This includes Windows 11 version 22H2, the latest version of the OS that has just started rolling out to more users.   Overall, Microsoft fixed 85 security flaws in Windows, and there are also 11 fixes for Microsoft Edge vulnerabilities this month. Among the 85 Windows vulnerabilities addressed by Microsoft, 15 of them are rated Critical. The company also warned that there’s one zero-day vulnerability affecting the Windows COM+ event system service that’s already being exploited in the wild. As pointed out by the Zero Day Initiative, Microsoft has yet to fix two Exchange Server vulnerabilities that have been actively exploited for the past two weeks. Organizations can still protect themselves by disabling remote PowerShell access for non-admin users in their organization. You can learn more details about current mitigations on the Microsoft Security Response Center blog post. 85 vulnerabilities fixed in the October 2022 Patch Tuesday updates Here are some of the most important fixed vulnerabilities you should be aware of in this month’s Patch Tuesday updates:  CVE-2022-41033: This is an Elevation of Privilege vulnerability affecting the Windows COM+ event system service. This is the only security flaw that Microsoft identified as already being exploited in the wild.  CVE-2022-41043: This is a Microsoft Office vulnerability that has been publicly disclosed, but it has yet to be exploited. Attackers could leverage it to obtain user tokens and other potentially sensitive information. CVE-2022-41038: This critical Remote Code Execution... --- ### Google Announces New Cloud Regions, Dual Run Mainframe Migration Service - Published: 2022-10-11 - Modified: 2022-10-11 - URL: https://petri.com/google-announces-new-cloud-regions/ - Categories: Google Cloud Platform - Tags: Google Cloud, Google Cloud Platform, News - Article Type: News Google has announced plans to bring its physical cloud infrastructure to more customers worldwide. Indeed, the company is opening Google Cloud regions in five new countries, including Austria, Greece, Norway, South Africa, and Sweden. Back in August, Google unveiled that it’s adding new cloud regions in New Zealand, Malaysia, Thailand, and Mexico. This latest announcement will bring the total number of live and pending regions to 49. Google believes that the new cloud regions will help organizations to ensure data sovereignty. The initiative will also boost the local economy, create new job markers, and support digital transformation in these countries. “These cloud regions help bring innovations from across Google closer to our customers around the globe, and provide a platform that enables organizations to transform the way they do business,” said Sachin Gupta, Vice President and GM, Infrastructure. Google's Dual Run service eases mainframe migration to the cloud Google has also announced a “Dual Run” service that should make it easier for organizations to migrate their data to the cloud. It lets customers run workloads simultaneously on existing mainframe systems and Google Cloud. The new service is built on top of the technology developed by a popular Spanish bank, Banco Santander. Google highlights that the Dual Run service could be handy for mainframe modernization projects in financial services, retail, healthcare, and other industries. It helps companies to move their data to the cloud without disrupting business operations. “Dual Run for Google Cloud introduces a set of new capabilities that eliminate... --- ### Google Announces New Tools and Services to Boost Cloud Security - Published: 2022-10-11 - Modified: 2022-10-11 - URL: https://petri.com/google-announces-tools-boost-cloud-security/ - Categories: Google Cloud Platform - Tags: Google Cloud, News, Security - Article Type: News Google Cloud has announced several new security tools, products, and services to help organizations better protect their cloud environments. The company is introducing a new fully managed software supply chain security product dubbed Software Delivery Shield (SDS). The Software Delivery Shield solution is designed to help developers, DevOps, and security teams protect their cloud applications. It supports various services, including Cloud Code, Cloud Deploy, Artifact Registry, GKE, Cloud Build, as well as Binary Authorization. Software Delivery Shield also comes with a new Assured Open Source Software service that launched in preview in May 2022. “This service now provides over 250 curated packages across Java and Python, with verified provenance. It automatically generates Software Bill of Materials (SBOM) – an inventory of all components and dependencies involved in the application development and delivery – identifying where there could be a potential risk,” explained Michael McGrath, VP of Engineering, Application Ecosystem. Confidential Space Google also unveiled a new confidential computing service called Confidential Space. The feature helps organizations to improve collaboration without exposing sensitive and regulated data to partners or cloud service providers. With Confidential Space, customers can run workloads in a Trusted Execution Environment (TEE) and use the hardened version of Container-Optimized OS (COS) to maintain control over their data. It helps customers to analyze sensitive information such as intellectual property and personally identifiable information (PII). Chronicle Security Operations Lastly, Google released its Chronicle Security Operations software suite in preview. It’s a new family of solutions (Chronicle SOAR and Chronicle SIEM)... --- ### Microsoft Teams Now Supports Group Chat with Distribution Lists and Other Groups - Published: 2022-10-11 - Modified: 2022-10-11 - URL: https://petri.com/microsoft-teams-group-chat-with-distribution-lists/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that enables users to start a group chat with Exchange Online distribution lists, mail-enabled security groups, or Microsoft 365 groups. The company has started rolling out this feature in preview to the Microsoft Teams desktop, mobile, and web clients. “When starting a new chat, users will now be able to select these groups and start chatting with members of the group. Limits for the maximum number of members in a chat are honored - an error will be displayed if adding a group causes this limit to be exceeded. When expanding groups, all nested groups will be expanded and the unique set of members in the groups will be added,” the company explained. How to start a chat with distribution lists in Microsoft Teams To start a group chat with group members, Microsoft Teams users will need to click on the “New Chat” icon. Navigate to the address bar and type the name of the group. Finally, select the group name from the list to add its members as recipients. It is important to note that Microsoft Teams can only import up to 250 participants from a distribution group. The app will show a notification when a user selects a group that exceeds the maximum recipient limit for a Teams chat. Limitations Currently, it is not possible to create group chats with dynamic distribution groups. Moreover, users can’t add participants from a distribution list, Microsoft 365 group, or mail-enabled security group to an... --- ### Azure Firewall Basic Now Available in Preview for Small Businesses - Published: 2022-10-10 - Modified: 2022-10-10 - URL: https://petri.com/azure-firewall-basic-preview-small-businesses/ - Categories: Azure, Microsoft Azure - Tags: Azure Firewall, News - Article Type: News Last week, Microsoft released the Basic edition of its Azure Firewall service in public preview. It’s an affordable plan designed for small and medium-sized businesses (SMBs) who want to protect their Azure cloud environments. Microsoft launched Azure Firewall with a Standard SKU in 2018. It’s a cloud-based network security service that helps users to protect their Azure Virtual Network resources. The solution offers integration with several other Azure services, including Microsoft Sentinel, Azure Monitor, Azure Events Hub, as well as Microsoft Defender for Cloud. The Standard tier provides threat intelligence-based filtering capabilities (such as threat intelligence and DNS proxy) that let IT admins block traffic from malicious IP addresses. The Standard edition is recommended for customers who need to handle “peak traffic periods of up to 30 Gbps. ” Moreover, the Azure Firewall Premium SKU offers advanced capabilities for customers working in highly sensitive and regulated environments. These include IDPS, TLS Inspection, URL filtering, web category inspection, and more. It’s ideal for large organizations with scalability needs of up to 100 Gbps. Azure Firewall Basic brings enterprise-grade security built for SMBs According to Microsoft, the Azure Firewall Basic plan is aimed at customers who have not deployed the service because of the higher cost of the Standard and Premium SKUs. It’s designed for small businesses with maximum throughput requirements of less than 250 Mbps. Some key features included in the Basic plan are network and application traffic filtering, threat intelligence, and central management. “Azure Firewall Basic includes Layer 3–Layer 7 filtering... --- ### Microsoft Issues Fix for Outlook Bug Causing Crashes on Startup - Published: 2022-10-10 - Modified: 2022-10-10 - URL: https://petri.com/microsoft-fix-outlook-bug-crashes-startup/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, News, Outlook, Windows - Article Type: News Microsoft has recently released a fix to address a bug in Outlook for Windows, which was previously causing the app to crash or become unresponsive on startup. The company announced that the update is currently rolling out to all users in the current and semi-annual enterprise channels. Microsoft first acknowledged the Outlook freezing issues in a support document published back in August 2022. The company detailed that the particular problem was caused by a blank Registry setting. In this case, the Outlook desktop app was unable to assign email address values in the registry key. “When you start Outlook Desktop, it gets past loading profile and processing, briefly opens, and then stops responding. You can confirm if this is the issue when Outlook stops by looking at the Windows Event Viewer Application Log for Event 1000 or Event 1001,” Microsoft explained. “This issue occurs when the EmailAddress string data value under the Office identity is blank. ” Outlook closes Microsoft has since updated the support document to mention that the Outlook crashing issue has been fixed. However, the rollout process will take place in a staggered manner, and all users will receive the fix in the near future. “This issue is fixed in Current Channel Version 2209 (Build 15629. 20156) and Semi-Annual Enterprise Channel (Preview) Version 2208 (Build 15601. 20158). As these builds get to the other channels the fixes will follow,” Microsoft added. Microsoft suggests workarounds to fix Outlook crashes In the meantime, Microsoft has suggested a couple of temporary workarounds to... --- ### Filtering with PowerShell Where-Object: Easy Examples > In this guide, we explain how to use the PowerShell Where-Object cmdlet to filter objects and data. We illustrate this with a series easy examples showing you how to filter files by name or date, how to filter processes by status or CPU usage, and more. - Published: 2022-10-10 - Modified: 2023-10-16 - URL: https://petri.com/powershell-where-object/ - Categories: PowerShell - Tags: PowerShell, Where method, where-object - Article Type: How To In this article, I'll explain how to use the PowerShell Where-Object cmdlet to filter objects and data. I'll provide a series of easy examples showing you how to filter files by name or date, how to filter processes by status or CPU usage, and more. When using PowerShell, you will often receive an extremely large amount of data when querying your environment. For example, If you run the Get-AzureADUser cmdlet against an Azure Active Directory database with 100,000 users, you will get... well, 100,000 results. That may take some time to output to your console! Normally you won't need to get all that information. The Where-Object cmdlet is an extremely helpful tool that will allow you to filter your results to pinpoint exactly the information you're looking for. What is the PowerShell Where-Object command? PowerShell Where-Object is by far the most often-used tool for filtering data. Mostly due to its power and, at the same time, simplicity. It selects objects from a collection based on their property values. There are other cmdlets that allow you to filter data. The Select-Object cmdlet selects objects (! ) or object properties. Select-String finds text in strings and files. They both are valuable and have their niche in your tool belt. Here are some brief examples for you. Select-Object commands help in pinpointing specific pieces of information. This example returns objects that have the Name, ID, and working set (WS) properties of process objects. Get-Process | Select-Object -Property ProcessName, Id, WS This other example does a... --- ### Lazarus APT Abuses Vulnerable Dell Drivers to Bypass Windows Security - Published: 2022-10-07 - Modified: 2024-11-19 - URL: https://petri.com/lazarus-vulnerable-dell-drivers-windows/ - Categories: Security - Tags: News, Security, Windows 10, Windows 11 - Article Type: News Last week, cybersecurity researchers warned that the North Korean hacking group “Lazarus” exploited Dell hardware drivers to deploy a Windows rootkit. The phishing campaign was discovered by security firm ESET in the Fall of 2021, and it targeted Aerospace experts and political journalists in Europe. According to the ESET’s report, the North Korean state-backed advanced persistent threat (APT) group impersonated Amazon to send fake job offers to the victims via emails. These phishing emails contained malicious Amazon-themed documents. Lazarus managed to trick targets into opening these files and deploy malicious tools (such as droppers, loaders, fully featured HTTP(S) backdoors, and HTTP(S) uploaders) on the victim’s computer. Specifically, the Lazarus group leveraged the BYOVD (Bring Your Own Vulnerable Driver) technique to abuse the CVE–2021–21551 vulnerability in Dell DBUtil drivers to gain administrative control of the target computer. Moreover, the threat actor exploited the vulnerability to disable Windows protections and install an advanced backdoor called Blindingcan. Blindingcan is a remote-access trojan that lets attackers execute malicious commands, create and terminate processes as well as steal sensitive information. It can also capture screenshots from compromised systems. "For the first time in the wild, the attackers were able to leverage CVE-2021-21551 for turning off the monitoring of all security solutions," explained ESET researcher Peter Kálnai. "It was not just done in kernel space, but also in a robust way, using a series of little- or undocumented Windows internals. Undoubtedly this required deep research, development, and testing skills. " BYOVD attacks can bypass protections against vulnerable... --- ### Windows 11 version 22H2 Causes Issues with Provisioning Packages - Published: 2022-10-07 - Modified: 2022-10-07 - URL: https://petri.com/windows-11-22h2-issues-provisioning-packages/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Microsoft started rolling out Windows 11 version 22H2 to all eligible PCs last month. While the feature update introduces several new features and improvements, it also comes with a few issues and bugs. The company has identified a new issue on Windows 11 22H2 that might prevent the provisioning package from working properly. A provisioning package (. ppkg) is a container for a collection of configuration settings. It enables IT admins to configure new Windows devices for use on the organization’s networks without any user intervention. The configuration can be used for large-scale enrollment of corporate-owned devices in a matter of minutes. Microsoft has acknowledged on the Windows Health Dashboard that the provisioning package may not be fully installed during the initial setup process on PCs running Windows 11 version 22H2. This problem could lead to certain misconfigurations and unexpected restarts. “Windows might only be partially configured, and the Out Of Box Experience might not finish or might restart unexpectedly. Provisioning packages are . PPKG files which are used to help configure new devices for use on business or school networks. Provisioning packages which are applied during initial setup are most likely to be impacted by this issue,” Microsoft explained. Microsoft notes that the provisioning issue doesn’t impact consumers, enterprise, and education customers that use Windows Autopilot. The company is currently working on a fix, though there is no ETA available yet. Microsoft recommends IT admins to roll out the deployment packages on new Windows devices before upgrading to Windows 11 version... --- ### How to Install And Get Started With the Azure CLI > In this article, we explain how to download, install, and get started with the Azure CLI. We also detail which Azure services you can manage with the Azure CLI and how you can add extensions to complement native commands. - Published: 2022-10-07 - Modified: 2022-10-07 - URL: https://petri.com/install-azure-cli/ - Categories: Azure, Cloud Computing - Tags: Azure, Azure CLI, Azure Cloud Shell, Docker, linux, macOS, Windows - Article Type: How To The Azure Command-Line Interface (CLI) is a cross-platform command line tool allowing IT pros to connect to Azure services and execute administrative commands within the tenant. After installing the Azure CLI locally, you can execute commands using the terminal of your choice. In this article, we’re going to detail how to download, install, and get started with the Azure CLI. We’ll explain which Azure services you can manage with the Azure CLI and how you can add extensions to complement native commands. Microsoft hosts the Azure CLI as an open-source project, and it's available on macOS, Linux, and Windows devices. On Windows, the Azure CLI works within the Windows command prompt, Bash, and PowerShell. It’s also available via a browser through the Azure Cloud Shell, and you can also run it inside a Docker container. How to install the Azure CLI On a Windows PC, you can get the MSI installer for the Azure CLI from this direct download link. Once you've installed it, you can use the Azure CLI via the Windows Command Prompt or PowerShell. There are different ways to install the Azure CLI on Windows, macOS and Linux. You can also access it from the Azure Cloud Shell or a Docker container. Keep reading for more details! What Azure Services can you manage with the Azure CLI? The Azure CLI can be used to manage most Azure services available across most Azure services. You can check all the supported applications and services on the Microsoft Learn... --- ### Microsoft Adds Linux Desktop Management Support to Intune - Published: 2022-10-06 - Modified: 2022-10-06 - URL: https://petri.com/microsoft-intune-linux-desktop-management/ - Categories: Endpoint Management - Tags: linux, Microsoft Endpoint Management, News - Article Type: News Microsoft has announced that Linux desktop management support is generally available in Microsoft Intune. The new Intune management experience will initially be available for Ubuntu LTS desktops (versions 22. 04 and 20. 04), with support for other Linux OS distributions to follow later this year. Microsoft Intune already allows organizations to manage Windows, macOS, Android, and iOS devices. This update will let IT admins leverage compliance policies, device configurations, and reporting to manage Linux desktops. Additionally, administrators will be able to use conditional access to protect Microsoft 365 web apps on Linux devices. “The Intune, Microsoft Entra, and Microsoft Edge teams have partnered together to bring support for device registration, endpoint management, and secure web access to Microsoft 365 and Microsoft Azure resources for Linux Ubuntu LTS. With the October release of Microsoft Intune, organizations will be able to, in one place, include Linux desktops as endpoints in their device management and security workloads,” the company explained. You can see how the new Linux management works with Microsoft Endpoint manager in the video below: https://www. youtube. com/watch? v=ss6N1xyavNw Pre-defined scripts support planned for Linux desktop management Later this year, Microsoft will release a new feature to let IT admins create Bash scripts for Linux device configurations. This means that customers will be able to deploy Wi-Fi profiles and certificates to Linux devices and perform other actions. Moreover, Microsoft plans to add support for pre-defined scripts at some point in the future. Microsoft has also announced a new Teams progressive Web app for Linux desktops. The... --- ### Microsoft to Replace Teams Linux Client with New Progressive Web App - Published: 2022-10-06 - Modified: 2022-10-06 - URL: https://petri.com/microsoft-replace-teams-linux-client-progressive-web-app/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced that it’s working on a new Teams progressive web app (PWA) for Linux. The new app will replace the existing Microsoft Teams desktop client for Linux, and it’s expected to arrive in the coming months. Microsoft launched the Teams Linux client in December 2019. The company has released several updates for the app since launch, but it still lacks feature parity with the other Teams desktop clients. The Microsoft Teams app for Linux doesn’t support custom background effects for video calls and meetings. It also failed to gain traction due to performance issues and other noticeable problems. Microsoft plans to retire the existing Teams Linux desktop client in December 2022. Going forward, Microsoft plans to move all Linux users to the new lightweight PWA version, which will be accessible through Microsoft Edge or Google Chrome. The app will provide several popular features to improve the existing user experience, such as background effects, gallery view, and support for native OS notifications. “The PWA does not require installation, is lightweight, and offers access to more capabilities, including custom backgrounds, gallery view, reactions, and raise hand in meetings, as well as large gallery and together mode views. PWA also provides desktop-like app features such as system notifications for chat and channel, dock icon with respective controls, application auto-start, and easy access to system app permissions,” the company explained. Microsoft Teams PWA client for Linux to support conditional access configuration Microsoft highlights that its new Teams progressive web app will help... --- ### Microsoft Starts Rolling Out the Windows 11 2022 Update to More PCs - Published: 2022-10-05 - Modified: 2022-10-05 - URL: https://petri.com/microsoft-windows-11-2022-update-more-pcs/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Microsoft has started rolling out the Windows 11 2022 Update to more PCs this week. The company updated the Windows Health Dashboard to indicate that the latest feature update should now be available for more users with eligible devices that meet the minimum hardware requirements. “We are entering a new phase of the rollout for Windows 11, version 22H2 and we are increasing its availability to all who check for updates on eligible Windows devices. Note that, if we detect that your device might have an issue, such as an application incompatibility, we might put a safeguard hold in place and not offer the update until that issue is resolved,” Microsoft explained. If you have been waiting for the Windows 11 2022 Update, you can head to Settings >> Windows Update and click the Check for updates button. As usual, Microsoft is using telemetry to determine all eligible devices that are ready to install the update. However, users who don’t see the prompt and want to skip the waiting list can use the Windows 11 Media Creation tool to upgrade their devices. Windows 11 version 22H2 blocked on some PCs due to compatibility issues Keep in mind that Microsoft is investigating two compatibility issues that might prevent users from installing the Windows 11 2022 Update. The company has placed a safeguard hold on PCs with printers using Microsoft IPP Class Drivers or Universal Print Class Drivers. Additionally, the latest release is blocked on devices with specific Intel SST drivers. Microsoft... --- ### Microsoft Warns About Spike in Password Spray Attacks Targeting Exchange Online - Published: 2022-10-05 - Modified: 2022-10-05 - URL: https://petri.com/microsoft-password-spray-attacks-exchange-online/ - Categories: Exchange Online - Article Type: News Microsoft has released an advisory to warn Exchange Online users about increasing password spray attacks. The company has recommended enterprise customers to set up authentication policies to protect users and sensitive information in their organizations. Microsoft started disabling Basic Authentication support for Exchange Online customers on October 1, 2022. The legacy authentication method is being removed for MAPI, RPC, Offline Address Book (OAB), Exchange Web Services (EWS), IMAP, POP, and Remote PowerShell protocols. However, this change doesn’t affect SMTP Authentication, allowing customers to continue using multi-function devices, scripts, and programs for sending emails via Exchange Online. Microsoft believes that the deprecation of Basic Authentication should prevent password spray attacks that commonly target popular protocols. “A password spray attack is a type of brute force attack in which the attacker tries a large number of usernames with a list of common passwords against a target system to see if any will work. It’s often hard to detect as the username keeps changing; accounts don’t get locked because the account being attacked changing,” the Exchange Online team explained. Microsoft plans to gradually turn off Basic Authentication for all tenants by the end of this year. The company is recommending customers to switch to Modern Authentication (OAuth 2. 0) as soon as possible. Modern Authentication provides access to various security tools like smart cards, mobile access management, and certificate-based authentication. How to use Authentication Policies to block password spray attacks Microsoft is urging customers that have yet to disable Basic Authentication should configure Exchange... --- ### Amazon Workspaces Now Supports Ubuntu Virtual Desktops > Amazon WorkSpaces added support for Ubuntu-based virtual desktops last week, with support for expanded security patching for 10 years. Developers and engineers can now access an Ubuntu virtual environment via Workspaces and enjoy a wealth of open-source tools and libraries. - Published: 2022-10-05 - Modified: 2022-10-05 - URL: https://petri.com/amazon-workspaces-now-support-ubuntu/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon Workspaces, Ubuntu - Article Type: News Amazon WorkSpaces added support for Ubuntu-based virtual desktops last week. If you're unfamiliar with WorkSpaces, it's an Amazon Web Services solution that enables you to securely provision and distribute virtual desktops to your workforce. This can be useful for scenarios like securely enabling remote workers or quickly provisioning desktops for contractors. Previously, customers could only choose between Microsoft Windows or Amazon Linux virtual desktops. The addition of Ubuntu desktops gives developers and engineers a familiar and compatible environment with access to a wealth of open-source tools and libraries. Ubuntu WorkSpaces includes support for expanded security patching for 10 years. “We’ve brought Ubuntu Desktop to WorkSpaces so developers can streamline the design, coding, pipelines, and deployment of Ubuntu-based workloads, whether instances or containers, all within the AWS environment,” said Alex Gallagher, VP Cloud for Canonical. How Ubuntu desktops on Amazon Workspaces work The new Ubuntu virtual desktops use the version 22. 04 LTS of the OS. Canonical has optimized the base image for cloud development use cases, and the AWS CLI and SDK are preinstalled. You can select from the Value, Standard, Performance, Power, or Power Pro bundles. These bundles provide you with computer configurations starting at 1 vCPU and 2 GB of RAM, with up to 8 vCPUs and 32 GB of RAM. An Ubuntu virtual desktop running on Windows 10 with Amazon Workspaces You can connect to Ubuntu on Workspaces using the Windows or web-based Workspaces clients. Linux and macOS clients will be supported at a later point. Likewise, the GPU-based Graphics. g4dn... --- ### AWS Managed Active Directory vs. Self-Hosted AD: Which Solution is Best For Your Company? > In this article, we explore two options for deploying Active Directory-dependent workloads on AWS. Organizations can either use AWS Managed Active Directory or choose to self-host AD on AWS EC2 instances. - Published: 2022-10-05 - Modified: 2022-10-07 - URL: https://petri.com/aws-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Amazon Web Services, AWS, AWS EC2, EC2 - Article Type: Overview In this article, we'll explore what you need to take into account when moving workloads that require a directory service like Active Directory (AD) on Amazon Web Services (AWS). As we'll see, there are currently two options for deploying Active Directory-dependent workloads on AWS, using AWS Managed Active Directory or self-hosting Active Directory on AWS EC2 instances. Active Directory is a widely-used directory service that helps to manage the authentication of user and device objects. Workloads migrated to SaaS (Software as a Service) platforms are likely to take advantage of modern directory services such as Azure Active Directory. However, workloads remaining on IaaS that are directory-aware are likely to still require a traditional directory service such as Active Directory. If you want to use Amazon Web Services to host IaaS (Infrastructure as a Service) workloads, we'll explain what you need to know about AWS Managed AD and how it differs from a self-hosted AD. What is AWS Managed Active Directory? Amazon Web Services provides Active Directory as a managed service for customers using its platform. Once provisioned, at least 2 domain controllers are provisioned into your Virtual Private Cloud (VPC) network. Directory-aware applications are then able to join this domain and use AD features as they normally would. A service built on actual Active Directory AWS Managed Active Directory is underpinned by Windows Server 2012 R2 servers, which although now several versions behind and due to reach end-of-life in October 2023, include the bulk of new AD features used... --- ### Microsoft Defender for Individuals Gets New Identity Theft Monitoring Capabilities - Published: 2022-10-04 - Modified: 2022-10-04 - URL: https://petri.com/microsoft-defender-for-individuals-identity-theft-monitoring/ - Categories: Security - Tags: Microsoft 365, Microsoft Defender for Individuals, News, Security - Article Type: News Microsoft has partnered with Experian to bring identity theft protection monitoring capabilities to its Microsoft Defender for individuals solution. The feature enables Microsoft 365 subscribers to monitor personal and family identity details for security breaches on the public internet and the dark web. Microsoft Defender for individuals launched back in June to help users manage and monitor security protections across all platforms. It's available on Windows, macOS, Android, and iOS for all customers with a Microsoft 365 for Personal or Family subscription plan. “Identity theft monitoring addresses one of the biggest challenges in preventing identity theft: visibility. We’ve partnered with Experian® to leverage their powerful identity monitoring technology to detect, track, and alert you whenever we find any identity information on the internet, the dark web, and less common sources like file sharing, chat rooms and many other places,” Microsoft explained. In Microsoft Defender, the identity theft monitoring feature can help users track and monitor up to 64 types of identity details for each security breach. These include email addresses, passwords, social security numbers, residential addresses, national IDs, passport numbers, bank account details, credit card details, and more. The feature can be used by parents who have set up a Family profile to manage breaches for all family members. Once personal details are spotted in a breach, Microsoft Defender customers will receive a notification and detailed report. It will provide contextual information about the security incident, potential risks, and mitigation solutions. It’s also possible for customers to get 24/7 support... --- ### What's New for Windows – September 2022 - Published: 2022-10-04 - Modified: 2022-12-02 - URL: https://petri.com/everything-about-windows-september-2022/ - Categories: Windows 11 - Tags: Config Lock, Microsoft Edge, Smart App Control, WebView2, Windows 11, WinGet - Article Type: News The big news this month is the availability of the Windows 11 2022 Update. But there are also lots of changes coming to Windows 11 via updates to builds in the Insider program. Plus, an update to WinGet, and WebView2 is now generally available for developers. Windows 11 2022 Update (22H2) rolls out September 20th saw Microsoft make the Windows 11 2022 Update (22H2) generally available to ‘seekers’ via Windows Update. The update is also available via all the usual channels for Microsoft’s corporate customers. This version of Windows 11 brings refinement to the UI plus some new features. This feature update is a full operating system install, not just a cumulative update like many recent feature updates to Windows 10. That means there’s probably some changes under the hood. In his announcement on Microsoft’s website, Panos Panay - Chief Product Officer for Windows and Devices –, mentioned that the 2022 Update brings ‘performance and battery optimizations’. Taskbar There’s the long-awaited support for drag and drop on the taskbar. Snap Layouts are now more discoverable, including better touch navigation and the ability to snap browser tabs in Edge. Task Manager Windows 11 2022 Update brings a completely redesigned Task Manager. Although, there’s still no right click access from the taskbar. That’s coming though in a future release. File Explorer – Home, Quick Access, or Favorites? Take your pick... File Explorer Quick Access is now called Home. There’s better integration with OneDrive. Favorites – not to be confused with folders... --- ### Microsoft Confirms Windows 11 2022 Update Causes Performance Issues When Copying Large Files - Published: 2022-10-04 - Modified: 2022-10-04 - URL: https://petri.com/windows-11-2022-update-performance-issues-large-files/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has confirmed a new issue that is currently affecting PCs running the Windows 11 2022 Update (or version 22H2). Yesterday, the company warned that users might experience slower SMB read performance when copying large files from a remote computer to a Windows 11 machine. “There is a performance regression in 22H2 when copying larger files from a remote computer down to a Windows 11 computer. A large (multi-GB file) might see as much as 40% less throughput over SMB when copying down (reading). Copying that same file to a non-22H2 machine (writing) won't see this problem,” explained Ned Pyle, Principal Program Manager in the Windows Server engineering group. Microsoft notes that the problem is not exclusively related to the SMB protocol, and Windows 11 users may also notice slower speeds while copying local files. The company says that it’s working to address the issue in a future update. Meanwhile, it has recommended that affected customers should run copy operations using the robocopy or xcopy commands with the /J parameter. Windows 11 2022 Update is blocked on PCs with printing issues Microsoft started rolling out the Windows 11 2022 Update to eligible Windows 10 and Windows 11 devices last month. The company recently acknowledged a problem that might prevent some printers from working properly with the latest Windows 11 release. According to Microsoft, the bug affects Windows 11 PCs experiencing connectivity issues with printers using Microsoft IPP Class Driver or Universal Print Class Driver. Microsoft has placed a compatibility hold... --- ### What's New for Microsoft's Power Platform – September 2022 > The latest updates for Microsoft's Power Platform include Co-authoring support and an integrated virtual agent in Power Apps, Named Formulas for Power Fx, and a New Automation Kit for Power Platform to help your organization build an Automation Center of Excellence. - Published: 2022-10-04 - Modified: 2022-10-04 - URL: https://petri.com/microsoft-power-platform-september-2022-updates/ - Categories: Power Platform - Tags: power apps, Power Automate, Power BI, Power Platform, SAP - Article Type: News The Microsoft Power Platform Conference in Orlando, Florida was on fire last week. The energy and excitement were off the chart and I had a marvelous time getting selfies with so many other enthusiasts. We were privileged to be there live when many of the new features I’m going to write about had their unveiling. So, let’s jump right in and see what was new with Microsoft's Power Platform in September. First of all, There were three big enhancements for Power Apps that got the spotlight. Co-authoring in Power Apps Coauthoring in Power Apps is being rolled out now if it’s not already in your tenant. For the first time, app makers can work on an app simultaneously. That’s right, multiple authors can build on the same app at the same time! You can comment and tag other users as you work as well, and you’ll have visibility on what they’re working on while you’re working.   Coauthoring is now available in Power Apps Card support in Power Apps Another enhancement touted was that cards have been added to Power Apps. You can design them and quickly export them to Outlook or Microsoft Teams. By leveraging Microsoft's Adaptive Cards framework, it’s never been easier to build interactive cards in Power Apps! Cards created in Power Apps can be embedded in Outlook or Microsoft Teams Integrated virtual agent in Power Apps The third big enhancement introduced last month was an integrated virtual agent in Power Apps. The premise of this is that... --- ### Microsoft Teams Added Native Apple Silicon Support and More in August and September - Published: 2022-10-03 - Modified: 2022-10-03 - URL: https://petri.com/microsoft-teams-updates-august-september/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Cameo in PowerPoint Live Microsoft has detailed several improvements made to its Teams collaboration service during the months of August and September. The company highlighted native support for Apple Silicon Macs, Cameo in PowerPoint Live, intelligent chat translation support for mobile, new management features, and much more. Microsoft Teams gets native support for Apple Silicon Macs First up, Microsoft announced that its Teams app now runs natively on Apple Silicon Macs. The company claims that the update should bring significant performance improvements for Mac devices with Apple's M1, M1 Pro, M1 Max, M1 Ultra, and M2 processors. Microsoft started rolling out the new version of Teams back in August, and it should be available for all macOS users in the coming months. Cameo in PowerPoint Live Microsoft released a new Cameo feature that allows users to integrate their Teams video feed directly into a PowerPoint presentation. The company has also introduced collaborative annotations that let participants add notes, shapes, text, and reactions to shared content in a Microsoft Teams meeting. Microsoft Teams added support for language interpretation that enables professional interpreters to translate meetings in real-time. It’s now possible for meeting organizers and presenters to set a together mode scene for all participants. Moreover, Microsoft Teams users can convert a Word or PDF form into Microsoft Forms with a single click. Another important feature is the ability to pre-assign channel members to breakout rooms and leave meetings on all devices. Other updates include ranking polls, automatic transcriptions, improved in-meeting notifications, as well as background... --- ### How to Run Commands and Programs Remotely Using PsExec - Published: 2022-10-03 - Modified: 2023-11-15 - URL: https://petri.com/psexec/ - Categories: Windows Client OS - Tags: Remote Access, remote management, Windows - Article Type: How To PsExec is a command-line utility program for Windows written by none other than Mark Russinovich, the current CTO of Microsoft Azure. It's still being updated as part of the SysInternals suite of utilities. PsExec allows you to run programs locally, and, more importantly, on remote computers. You can even kick off similar commands on multiple servers at the same time! I'll show you how to do that and more in this article. PsExec is certainly privileged to be in any IT pros 'top 10 toolbelt of utilities. ' I recently updated my 'The Complete Guide to Robocopy' post – PsExec is just like Robocopy in terms of its sheer sense of power and flexibility. How to install PsExec The only core prerequisite on your local computer is to be running a modern, supported version of Windows. PsExec will even run on Windows XP, but, we know that is not a good idea, don't we? There are a few more items to be aware of when running commands on remote computers. I'll get to those in a bit. The most common way to install PsExec is to download it from the Sysinternals website and install it. To make it easy for you, here is a direct link to the PsTools. zip file. Setting up remote computers In order for remote computers to accept your PsExec commands, you need to make sure of two items – 'File and Printer Sharing', and the 'admin$' share. File and Printer Sharing uses the TCP port 445... . --- ### Microsoft Warns About New Zero-Day Vulnerabilities in Exchange Server - Published: 2022-09-30 - Modified: 2022-09-30 - URL: https://petri.com/microsoft-zero-day-vulnerabilities-exchange-server/ - Categories: Exchange Server - Tags: Exchange Server, News - Article Type: News Microsoft has issued an advisory about two new zero-day vulnerabilities affecting Exchange Server. The critical flaws, which were discovered by a Vietnamese cybersecurity company GTSC last month, impact on-premises installations of Microsoft Exchange Server 2013, 2016, and 2019. Microsoft’s Security Response Center (MRSC) detailed that the two vulnerabilities are tracked as CVE-2022-41040 and CVE-2022-41082. The first one is a server-side request forgery (SSRF) flaw and the second vulnerability allows remote code execution on vulnerable Exchange installations via PowerShell. Microsoft has not shared any details about the security flaws, but it believes that the threat actor requires authenticated access to Exchange Server for successful exploitation. Moreover, GTSC found that the attackers abused these vulnerabilities to target the victim's systems and infect enterprise networks. “After successfully mastering the exploit, we recorded attacks to collect information and create a foothold in the victim's system,” GTSC explained. “We detected webshells, mostly obfuscated, being dropped to Exchange servers. Using the user-agent, we detected that the attacker uses Antsword, an active Chinese-based opensource cross-platform website administration tool that supports webshell management. ” Microsoft Exchange Server flaws are being used in cyberattacks Unfortunately, Microsoft has yet to release a patch to address the zero-day vulnerabilities in on-premises environments. However, security researcher Kevin Beaumont said on Twitter that the flaws are being actively exploited by attackers in the wild, which have already infected several Exchange Servers. Microsoft has detailed a few temporary mitigation methods to help enterprise customers prevent attacks on Exchange Servers. The company has advised that IT... --- ### Microsoft Blocks Windows 11 2022 Update on Select PCs Due to Printing Issues - Published: 2022-09-30 - Modified: 2022-09-30 - URL: https://petri.com/microsoft-blocks-windows-11-2022-update-printing-issues/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Microsoft started rolling out the Windows 11 2022 Update (22H2) last week, but the company was forced to put some upgrade blocks in place due to bugs and other problems. Microsoft has just discovered new compatibility issues that affect devices with printers that use the Microsoft IPP Class Driver or Universal Print Class Driver. On the Windows Health Dashboard, Microsoft explained that the bug prevents affected Windows 11 devices from accessing some printer-specific features, including paper size and type settings. “Windows needs connectivity to the printer to identify all the features of the printer. Without connectivity, the printer is set up with default settings and in some scenarios might not get updated once connectivity to the printer is restored. You might be affected by this issue if your printer is unable to use printer specific features such as color, two-sided/duplex printing, paper size or type settings, or resolutions higher than 300x300dpi,” Microsoft explained. Microsoft has placed an upgrade block to prevent PCs running the affected printer drivers from installing the Windows 11 2022 Update. The company has also recommended that users should not upgrade their devices manually. How to fix Windows 11 2022 Update printing issues Microsoft says that it’s currently working on a fix that should be available in an upcoming update. In the meantime, it has provided the following workaround to help users mitigate the problem on affected systems. IT admins will need to uninstall all printers that are using the Microsoft IPP Class Driver or Universal Print... --- ### How to Use Chmod Recursive to Change File Permissions on Linux and macOS > In this guide, we'll show you how to use chmod recursive to easily change file permissions for all files inside a directory and its subdirectories on macOS and Linux. We'll also explain how to use the "X" argument to preserve file execution privileges. - Published: 2022-09-30 - Modified: 2023-03-31 - URL: https://petri.com/chmod-recursive-file-permissions/ - Categories: Linux - Tags: file management, linux, macOS - Article Type: How To When you need to manage file permissions on Linux or macOS, the chmod command is the way to go. However, the chmod recursive option lets you apply the chmod command to all files inside a directory and its subdirectories. In this article, we'll explain how to use chmod recursive to easily change file permissions on macOS and Linux. We'll also explain how to use the "X" argument to preserve file execution privileges and show you everything you need to know to use the chmod command like a pro. How to use chmod recursive to change file permissions on macOS and Linux If you're just looking for a quick answer, here's how to use the chmod command to set permissions for folders and files separately. In the example below, files are made executable for owners only if they had an executable bit before the permission change. find . -type d -exec chmod 755 {} + # gives owners read, write, and execute permissions, everyone else just read and execute ones find . -type f -exec chmod u=rw,og=r {} + #gives owners read and write permissions, read permissions to others Need a bit more detail? Read on. Understanding a basic recursive chmod If you just want to change permissions inside a folder and all its subfolders (and subfolders without those, and so on), you can simply use chmod with the -R flag: chmod -R 755 . When using using the ls command to show file permissions, we see that chmod -R gives the owner group... --- ### Outlook on the Web Gets New Contact Management Features - Published: 2022-09-29 - Modified: 2022-09-29 - URL: https://petri.com/outlook-on-the-web-contact-management/ - Categories: Microsoft 365, Outlook - Tags: News, Outlook, Outlook for Windows - Article Type: News Microsoft has announced new contact management features for its Outlook web app. The latest update brings a new self-updating contact feature that helps enterprise users to keep their contacts updated automatically with shared information from the organization directory. “All the new contacts you add from the people card of a person belonging to your organization will be self-updating contacts. These contacts automatically stay up to date based on the organization directory. Any modifications made to contact details, such as phone number, department designation, etc. , will automatically be updated in the contact,” the company explained. Another important new update for the Outlook web app is the ability to organize contacts into desired categories. Microsoft says that users can add categories to each contact from the people card in the calendar, mail, or in the People hub. Moreover, Outlook on the web will now show existing folders as categories in the left navigation pane. Microsoft has also introduced a new contact editor that makes it easier for users to manage their contacts. It allows Outlook users to create, edit and categorize contacts as well as manage them from the email, calendar, and People hub. Outlook on the web adds a new People hub Lastly, Microsoft announced a new People hub that lets users create and manage personal contact lists. People hub also provides an option to mark important contacts as favorites, as well as quickly call, message, and email contacts or contact lists. “Our goal is to make it easier for you... --- ### Microsoft to Retire Client Access Rules Support in Exchange Online in 2023 - Published: 2022-09-28 - Modified: 2022-09-28 - URL: https://petri.com/microsoft-retire-client-access-rules-exchange-online/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft is getting ready to end support for Client Access Rules (CARs) in Exchange Online. The Exchange team has warned customers that support for this feature will be removed from the service in September 2023. Client Access Rules allow IT admins to control access to their Exchange servers based on client properties or client access request types. CARs are not defined in Office 365 tenants by default, and administrators can manage them at the Exchange Management Shell level. “Client Access Rules are like mail flow rules (also known as transport rules) for client connections to your Exchange Online organization. You can prevent clients from connecting to Exchange Online based on their IP address (IPv4 and IPv6), authentication type, and user property values, and the protocol, application, service, or resource that they're using to connect,” the company explained. CARs deprecation timeline Deprecation of Client Access Rules in Exchange Online to begin next month Microsoft will start disabling Client Access Rules in organizations that no longer use it in October this year. The company plans to complete the migration process for all other tenants until September 2023. In the meantime, Microsoft will help customers migrate from Client Access Rules to new access control capabilities like continuous access evaluation (CAE). The feature allows Azure Active Directory applications to subscribe to critical events. It helps IT admins to improve the security posture of their environment. CAE also reduces the amount of time before end users lose access to resources due to certain critical events... . --- ### Microsoft's New One Outlook App Now Available for All Office Insiders - Published: 2022-09-28 - Modified: 2022-09-28 - URL: https://petri.com/microsoft-new-outlook-for-windows-office-insiders/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, Outlook, Outlook for Windows, Windows - Article Type: News Back in May, Microsoft started testing a beta version of the revamped Outlook desktop app for Windows (Codenamed "Project Monarch"). The company announced this morning that all Office Insiders enrolled in the Current Channel (Preview) can now opt-in to test the new One Outlook app. The new Outlook client is a web-powered application that is a major step toward Microsoft’s strategy to create a consistent user experience across all platforms. Microsoft also plans to make the new Outlook experience available to Windows Insiders within the built-in UWP Mail app in the next few weeks. “This new Outlook for Windows is designed to provide a contemporary yet familiar Outlook experience that helps to improve personal productivity and email organization for users,” the Office Insider team explained. "In the coming weeks, this experience will also be made available for Windows Insiders in a similar toggle within the Windows Mail app. " Support for Microsoft Accounts With this release, Microsoft has incorporated user feedback to bring some new features and performance enhancements to improve the new Outlook for Windows experience. For starters, the app now supports personnel Outlook. com, Hotmail, and Windows Live accounts. A new Quick Steps feature also provides customized triage actions to help users organize their Outlook inbox and easily access important documents and newsletters. Microsoft Accounts Simplified ribbon options The new Outlook app now allows users to adjust the width of columns in the calendar. Microsoft says that the update should make it easier for users to view the details of... --- ### Windows 11 Smart App Control Explained: What It Is and How It Works > Windows 11 Smart App Control is a new security feature on the version 22H2 of the OS. It can block malicious and untrusted apps on your PC, just like Microsoft Defender Application Control for enterprise users. Learn how Windows 11 Smart App Control works and how you can enable it in this article. - Published: 2022-09-28 - Modified: 2022-09-29 - URL: https://petri.com/windows-11-smart-app-control/ - Categories: Windows 11 - Tags: Smart App Control, Windows 11 - Article Type: How To Windows 11 Smart App Control is a new feature that Microsoft introduced in Windows 11 version 22H2, also known as the 2022 Update. Smart App Control is a system-level feature that can help to protect your Windows 11 PC by blocking malicious and untrusted apps. In this article, we'll explain how Windows 11 Smart App Control works and how you can enable it on your PC. If the feature can complement antivirus software and other protections, we'll also detail some of its current limitations. What is Windows 11 Smart App Control? For a number of years, Microsoft Defender Application Control has allowed business customers to protect their users from untrusted and unwanted apps. Managed by an MDM app such as Intune or Microsoft Endpoint Configuration Manager, this feature leverages Microsoft's "Intelligent Security Graph" to determine an app's trustworthiness. Until now, these security capabilities have not been available for consumers using Windows PCs... and this is fine, right? Windows 11 Home users should be able to run any apps they want, even if they could be considered "untrusted". However, there are many users – I'm thinking non-tech users really – who aren't usually able to spot a malicious app.  The problem is that, unlike on iOS, Android, and Chrome OS, Windows users exist in a world that isn't a "closed app ecosystem". Home and personal users can typically install any app from any source – Microsoft doesn't need to approve these apps as Apple and Google do. Windows 11 Smart App... --- ### Petri Dish: Cybersecurity vs IT Security with Devolutions - Published: 2022-09-28 - Modified: 2022-09-29 - URL: https://petri.com/petri-dish-cybersecurity-vs-it-security-with-devolutions/ - Categories: Petri Dish, Podcast, Security - Tags: Devolutions, Remote Access, Security - Article Type: Overview Russell Smith, Editorial Director of Petri, talks to Maurice Cote from Devolutions about the difference between cybersecurity and IT security and what it means for IT departments. --- ### Microsoft Adds SSO and Passwordless Authentication Support to Azure Virtual Desktop - Published: 2022-09-27 - Modified: 2022-09-27 - URL: https://petri.com/microsoft-sso-passwordless-authentication-azure-virtual-desktop/ - Categories: Microsoft Azure, Virtualization - Tags: Azure Virtual Desktop, Windows 10, Windows 11, Windows Server - Article Type: News Microsoft has announced Azure AD-based single sign-on and passwordless authentication support for Azure Virtual Desktop. These new capabilities are currently available in public preview for Windows 11, Windows 10, and Windows Server 2022 session hosts. Azure Virtual Desktop is a cloud-based virtualization solution that allows organizations to deploy desktops and applications for end users. It allows customers to access virtual desktops and remote apps from any device. Microsoft Azure Virtual Desktop is available as a free service for certain Microsoft 365 and Azure subscribers, and it helps businesses to improve efficiency and reduce infrastructure costs. Single sign-on is an authentication method that lets users log in to multiple enterprise applications with one set of credentials. Moreover, passwordless authentication is a feature that enables users to access their computer systems without using a password. Some examples of passwordless authentication include authenticator apps, physical security keys, and biometrics. How to get started with SSO and passwordless authentication for Azure Virtual Desktop Microsoft says that single sign-on now works with both Azure AD-joined and Hybrid Azure AD-joined session hosts on the Windows and web clients. However, users can only use passwordless authentication to sign into hosts with Azure AD, as well as within each session while using the Windows client. It is also possible to sign into hosts with third-party Identity providers that have integrations with Azure AD. Microsoft notes that customers will need to install the September Cumulative Update Preview to test Azure AD passwordless authentication and SSO support in Azure Virtual... --- ### Microsoft Reveals Attackers Used Malicious OAuth Apps to Hack Exchange Online - Published: 2022-09-27 - Modified: 2022-09-27 - URL: https://petri.com/microsoft-oauth-apps-hack-exchange-online/ - Categories: Exchange Online - Tags: Exchange Online, News, Phishing - Article Type: News Microsoft has unveiled a recent cybersecurity attack that allowed the threat actors to compromise Exchange Online. The attacker abused unsecured administrator accounts to gain access to the cloud tenants and created malicious OAuth applications to reconfigure the victim's email server to send phishing emails. OAuth is an open-standard authorization protocol that enables users to share specific data with third-party services without revealing their usernames and passwords. First of all, the threat actors targeted administrator accounts that didn’t have multi-factor authentication (MFA) enabled. With this unauthorized access, they created a registered Azure Active Directory (AD) application. The hackers added the Exchange. ManageAsApp permission to the OAuth app’s service principal and assigned the global administrator and Exchange administrator roles. It allowed the app to manage Exchange Online and Microsoft 365 apps and services. The threat actors also updated the app’s credentials for authentication purposes. Microsoft says the hackers then used the app to connect to the Exchange Online PowerShell module and change Exchange settings. Finally, the email server routed spam from their IP addresses to trick recipients into providing credit card details. In some cases, the attacker left the app in place for months and used it multiple times for running spam campaigns. "After each spam campaign, the actor deleted the malicious inbound connector and transport rules to prevent detection, while the application remained deployed in the tenant until the next wave of the attack (in some cases, the app was dormant for months before it was reused by the threat actor)," the... --- ### Amazon Announces the Ability to Deploy EKS Clusters on AWS Outposts > Amazon is giving AWS customers the ability to host an entire Amazon EKS cluster on AWS Outposts. Previously, IT pros could only use AWS Outposts to deploy Kubernetes cluster nodes and pods to an on-premises infrastructure. - Published: 2022-09-27 - Modified: 2024-09-04 - URL: https://petri.com/amazon-deploy-eks-clusters-on-aws-outposts/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon EKS, Amazon Outposts, Amazon Web Services, AWS, AWS Outposts - Article Type: News Amazon announced last week the availability of local clusters for Amazon Elastic Kubernetes Service (Amazon EKS) on AWS Outposts. Amazon EKS is a managed Kubernetes service that enables you to use the open-source container orchestration platform on AWS and on-premises data centers. As for AWS Outposts, it's a family of on-premises fully managed solutions that deliver a hybrid Amazon Web Services infrastructure and services for your business. Previously, IT pros could use AWS Outposts to deploy Kubernetes cluster nodes and pods to an on-premises infrastructure. This allowed those Kubernetes applications to benefit from low latency on-premises services and data. IT pros could also manage the cluster using the same AWS API, CLI, or AWS console that they would use for managing an AWS cloud-based cluster. In this scenario, you would first create an Amazon EKS cluster in the AWS cloud. Then, you could deploy the cluster nodes on your local Outpost devices. In this hybrid cluster scenario, the Kubernetes control plane runs in the cloud in the parent region of your Outpost device. However, existing AWS EKS customers reported that they had trouble managing site disconnects. Site disconnects cannot be controlled, especially in areas with poor or intermittent network connections. When the on-premises AWS Outpost is temporarily disconnected from the Internet, the Amazon EKS control plane running in the cloud is unable to communicate with the nodes and the pods running on the local Outpost device. Although the nodes and pods will continue to work on a local network, the Kubernetes control plane in... --- ### Microsoft Teams to Make It Easier to Filter Unread Items in Activity Feed - Published: 2022-09-26 - Modified: 2022-09-26 - URL: https://petri.com/microsoft-teams-filter-unread-items-activity-feed/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is planning to make it easier for users to catch up on important Activity feed notifications in Teams. The Microsoft Teams desktop app is getting a new toggle button that will let users view all unread items in the Activity feed with a single click. The Activity feed in Microsoft Teams allows users to keep track of unread messages, replies, likes, @mentions, and other relevant activities in channels. As of today, it is possible to filter unread activities by selecting the More options (... ) menu and choosing the “Unread” option. However, this process may not be convenient for some users. To make the Activity feed more useful, Microsoft Teams will soon allow users to enable a toggle button to quickly view all the unread activities. “Unread Toggle will help the user review only unread items on the activity feed easily and efficiently,” the company explained on the Microsoft 365 roadmap. How to filter unread Activity feed notifications in Microsoft Teams To filter unread activities in Teams, users will need to click the activity option in the sidebar and enable the “Unread only” toggle button. Once clicked, the activity pane will show all unread notifications (filtered and ordered by date). However, users will see a “You’re all caught up! ” message in case there are no unread activities. It's also possible to mark certain notifications as unread to deal with them later. Microsoft highlights that the new filtering capabilities will help users better manage their activity feed. It should... --- ### September Patch Tuesday Updates Cause Group Policy Issues on Windows PCs - Published: 2022-09-26 - Modified: 2022-09-26 - URL: https://petri.com/windows-update-cause-group-policy-issues/ - Categories: Windows 10, Windows 11, Windows Server - Tags: News, Windows 10, Windows 11, Windows Server - Article Type: News Microsoft has acknowledged a new issue with the recent Windows updates, which prevents users from copying or moving files/shortcuts via Group Policy Object (GPO). The issue is caused after installing the September Patch Tuesday updates, and it affects all supported versions of Windows. Earlier this month, several IT admins complained that the GPO could no longer create or keep shortcuts used by end users on Windows PCs. Microsoft has confirmed that the problem impacts Windows 11 (version 22H2 and 21H2), Windows 10 (version 21H2, 21H1, and 20H2), and Windows Server version 2008 SP2 and up to Windows Server 2022. “After installing KB5017328, file copies using Group Policy Preferences might fail or might create empty shortcuts or files using 0 (zero) bytes. Known affected Group Policy Objects are related to files and shortcuts in User Configuration -> Preferences -> Windows Settings in Group Policy Editor,” Microsoft explained on the Windows Health Dashboard. In a Reddit thread, some IT admins noted that they managed to address the problem by manually uninstalling the buggy cumulative updates. However, this approach is not recommended because it removes the fixes released to patch security vulnerabilities on Windows devices. Microsoft provides a workaround to fix Group Policy Issues on Windows devices Microsoft is investigating the issue and promises to provide a fix in an upcoming release. In the meantime, the company has recommended users to uncheck the "run in user security context" setting to address the broken desktop shortcuts problem. First up, uncheck the "Run in logged-on... --- ### How to View the Attribute Editor in Active Directory > In this guide, I'll show you how to view the Attribute Editor in Active Directory Users and Computers. This hidden tab let you view and edit almost every attribute of every object in Active Directory. - Published: 2022-09-26 - Modified: 2023-01-30 - URL: https://petri.com/active-directory-view-attribute-editor/ - Categories: Active Directory (AD) - Tags: Active Directory, Active Directory Users and Computers The Attribute Editor in Active Directory Users and Computers (ADUC) is a hidden tab that contains a list of all attributes and their values. This tab lets IT pros view and edit almost every attribute of every object in Active Directory. In this guide, I'll show you how to view the Attribute Editor in Active Directory Users and Computers and how you can use it together with search. Moreover, I'll be detailing how you can access the Attribute Editor in the Active Directory Administrative Center (ADAC). How to view the Attribute Editor in Active Directory Users and Computers (ADUC) When you open an object in the Active Directory Users and Computers console, you can see a couple of information tabs. These tabs include the user account's properties, user attributes, and AD attributes. Viewing a user account in Active Directory Users and Computers (ADUC) However, there are a lot of hidden attributes you don't see. In order to see all the attributes of the object, you need to perform one essential step and discover a separate attribute editor tab. In the ADUC View menu, click on Advanced Features. Enabling the 'Attribute Editor' tab After switching on Advanced Features, you can see that other organizational units (OUs) and containers are also visible. After switching on Advanced Features, more hidden containers are visible With that enabled, I can go back to Billy Reinders's record, and see the new Attribute Editor tab. Now, the Attribute Editor tab is shown! What you can see with the Attribute Editor in... --- ### Microsoft Starts Rolling Out Loop Components to Outlook for Windows - Published: 2022-09-23 - Modified: 2022-09-27 - URL: https://petri.com/microsoft-loop-components-outlook-windows/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, News, Outlook, Outlook for Windows - Article Type: News Earlier this year, Microsoft announced its plans to add support for Loop components to its Outlook email client. Loop components are already available in Microsoft Teams and the Outlook web app, and Microsoft has now started rolling out this feature in preview to Outlook for Windows. Microsoft announced the Loop application last year to support real-time and asynchronous collaboration in its Office apps. It’s a lightweight app with components that can exist across multiple apps, such as Microsoft Teams, Outlook, and OneNote. Microsoft Loop components include a table, numbered list, bulleted list, paragraph list, and task list. “Loop components are live, interactive, collaborative objects that you can embed in team chats and now also on emails. When you send a Loop component, everyone in the email can edit it inline—and see changes instantly. That means you can collaborate right inside an email message,” the company explained. How to insert Loop components in Outlook emails To use Loop components, Outlook users can compose a new email or reply to an existing message. Click the Loop icon available in the toolbar and select any component to insert into the email. Once added, users can collaborate with their colleagues by copying and pasting components between Teams chats and email. Microsoft is gradually expanding the availability of Loop components in its Microsoft 365 apps. The integration of these components in Outlook for Windows should make it easier for remote teams to collaborate across different time zones. Microsoft says that the new integration of Loop... --- ### Microsoft to Enable SMB Authentication Rate Limiter By Default in Windows 11 - Published: 2022-09-23 - Modified: 2022-09-28 - URL: https://petri.com/microsoft-smb-authentication-rate-limiter-windows-11/ - Categories: Windows 11 - Tags: News, SMB, Windows, Windows 11 - Article Type: News Back in March, Microsoft started testing a new SMB authentication rate limiter feature in Windows 11 and Windows Server. Now, the company has enabled this feature by default in the latest Windows 11 preview build 25206 for Insiders in the Dev Channel. The Server Message Block (SMB) protocol is a network protocol that lets users communicate with remote computers or servers. It allows apps to read and write files and request services from server programs. Moreover, the NT LAN Manager (NTLM) is a suite of security protocols used to authenticate a client to a resource on an Active Directory domain. According to Microsoft, an attacker can intercept the NTLM credentials during communication between client and server. It is also possible to use open source tools for sending multiple local or Active Directory (AD) NTLM logon requests to the SMB server. This technique makes it easier for hackers to guess the password and move laterally across the corporate network. Windows 11 gets better protection against brute force attacks With this release, the SMB server now adds a 2-second timeout limit on each failed NTLM authentication attempt by default. This should help to reduce the attack surface and provide additional protection against brute-force attacks on Windows 11 machines. “This means if an attacker previously sent 300 brute force attempts per second from a client for 5 minutes (90,000 passwords), the same number of attempts would now take 50 hours at a minimum. The goal here is to make a machine a very... --- ### A Guide to Azure Certification > Getting an Azure certification can really help to future-proof your IT career in a time of economic uncertainty. In this post, I will explain why there is value in getting certified for Microsoft Azure, the available qualifications, and how to prepare for the different exams. - Published: 2022-09-23 - Modified: 2022-09-27 - URL: https://petri.com/azure-certification-guide/ - Categories: Azure, Career Skills, Microsoft Azure - Tags: Azure, Career, Career Advice, certifications - Article Type: Opinion As we're currently going through times of economic uncertainty, an Azure certification can really help IT pros stay ahead of the curve. You may think that getting IT certifications are not worth the time and effort. However, if you're interested in Azure and willing to future-proof your career, getting an Azure certification can really help. In this post, I will explain why there is value in getting certified for Microsoft Azure, the available qualifications, and how to prepare for the different exams. I recently passed two Microsoft Azure exams – for partner competencies and self-measure – so I will share some of my experience here. What is Azure certification? I am aware that, like all things cloud-related, this article will be out of date as soon as the editors publish it. However, I’ve recently discovered Azure exams that I’ve never seen mentioned before, and I'll tell you everything you need to know. There are a lot of Azure exams falling into different tracks. Most of you reading me are probably an infrastructure/platform engineer like me, and you should focus on the Azure administrator (AZ-104/AZ-10x) exam and maybe the Azure networking solutions (AZ-700) exam. You will find a developer track, a security track (which includes a lot of Microsoft 365 content), and more. Some of the exams, such as the ones I have mentioned, are quite general but there are also specialized exams. An example of such an exam is the Azure Virtual Desktop Speciality (AZ-140). What is an Expert... --- ### Microsoft Viva Gets New Pulse Module And Other Updates - Published: 2022-09-22 - Modified: 2022-09-22 - URL: https://petri.com/microsoft-announces-viva-pulse/ - Categories: Microsoft 365, Viva - Tags: Microsoft 365, Microsoft Viva, News - Article Type: News Microsoft has announced the integration of new apps and services in its Viva employee experience platform. The company is launching today a new app called Viva Pulse that enables team leads and managers to get regular employee feedback directly within Microsoft Teams. “Viva Pulse uses smart templates and research-backed questions to help managers pinpoint what’s working well and where to focus, and also provides suggested learning and actions to address team needs. This is complementary and additive to robust company-wide engagement tools like Glint, which will be coming to Viva next year,” explained Jared Spataro, CVP for Modern Work at Microsoft. Viva Goals updates Microsoft has also released some new Viva Goals integrations that should help to bring goals into the workflow of employees. Users can now check in and collaborate with their colleagues directly within the activity feed in Microsoft Teams. Viva Goals is also getting new integrations with project management tools (such as Microsoft Project and Planner) to provide automatic updates. Employees can now connect to Power BI datasets to track Key Results and KPIs as well as leverage the Azure DevOps extension to finish work items. Viva Engage gets a new Leadership Corner Microsoft has added new features for Viva Engage to make it easier for managers to connect with employees. The new Leadership Corner in the app lets managers post news/surveys and create Ask Me Anything (AMA) events. It is also possible to use the dashboard to get real-time insights about key metrics and employee sentiments... . --- ### Stop MFA Fatigue with Additional Context and Number Matching for Microsoft Authenticator - Published: 2022-09-22 - Modified: 2022-09-22 - URL: https://petri.com/mfa-fatigue-additional-context-microsoft-authenticator/ - Categories: Authenticator, Security - Tags: authenticator, MFA, News, Security - Article Type: News Last week, Uber confirmed a major cybersecurity attack that compromised its internal communications and engineering systems. The company believes that someone affiliated with the hacking group Lapsus$ leveraged the MFA fatigue attack technique to compromise an Uber employee account. According to the New York Times, the hackers social engineered the company’s worker after discovering his WhatsApp number. The intruders sent a direct message to the employee pretending to be an Uber IT staffer. They used the phishing technique to steal passwords and repeatedly sent multifactor authentication (MFA) login notifications. The Uber employee eventually accepted one of those login requests. After gaining initial access, the attackers sent messages to a company-wide Slack channel announcing the massive security breach and reconfigured Uber's OpenDNS. The screenshots revealed that the hackers had access to various internal systems, including G Suite accounts, Amazon Web Services, and code repositories. https://twitter. com/vxunderground/status/1570611979169202179 What is MFA fatigue? An MFA fatigue attack is “the process of sending a high volume of push requests to the target’s mobile device until the user accepts, either accidentally or simply to attempt to silence the repeated push notifications they are receiving. ” Threat actors are increasingly using this technique to target large organizations, such as Microsoft and Cisco. How to enable additional context in the Azure AD portal to block MFA fatigue attacks Security researchers have advised organizations to add additional context (such as the application name and geographic location) in MFA push notifications to prevent MFA fatigue attacks. It is also recommended to combine... --- ### Microsoft Defender for Endpoint to Enable Tamper Protection for All Customers - Published: 2022-09-21 - Modified: 2022-09-21 - URL: https://petri.com/microsoft-defender-endpoint-tamper-protection/ - Categories: Endpoint Protection - Tags: Microsoft Defender for Endpoint, News, Security - Article Type: News Microsoft Defender for Endpoint will soon turn on tamper protection by default for all existing enterprise customers. The tamper protection feature prevents malicious apps from making unwanted changes to important security configuration settings on Windows, Windows Server, and macOS. Microsoft introduced tamper protection in its enterprise endpoint security solution back in 2019. Currently, the feature is turned on by default for new customers with an active Microsoft 365 E5 or Defender for Endpoint Plan 2 subscription. With this release, Microsoft also plans to enable it for all existing enterprise customers. “Tamper protection in Microsoft Defender for Endpoint protects your organization from unwanted changes to your security settings. Tamper protection helps prevent unauthorized users and malicious actors from turning off threat protection features, such as antivirus protection. Tamper protection also includes the detection of, and response to, tampering attempts,” Microsoft explained in a blog post. How to opt out of the tamper protection default setting Microsoft will send notifications to organizations that haven’t configured tamper protection in their tenants. These notifications will alert customers that it will be switched on in 30 days. Microsoft encourages businesses to turn on the feature to prevent security threats such as human-operated ransomware attacks. However, there is also an option to explicitly opt out of this change by following the steps mentioned below: Head to security. microsoft. com and log in. Navigate to Settings >> Endpoints >> Advanced features, enable the tamper protection toggle button and click the Save preferences button. Now, disable the tamper protection option and click... --- ### What is Data Management As a Service (DMaaS)? > Data Management as a Service (DMaaS) describes the growing number of cloud-based services allowing organizations to manage data from different sources. In this article, we'll explain how DMaaS can help organizations to address the challenges associated with data collection, processing, and security. - Published: 2022-09-21 - Modified: 2024-11-19 - URL: https://petri.com/what-is-dmaas/ - Categories: Data Management - Tags: Cloud, Cloud Storage, Data, data governance - Article Type: Overview Data Management as a Service (DMaaS) is a new IT term used to describe cloud-based solutions for managing data from different sources on one central platform. The “as-a-service” component describes the pay-per-usage model that DMaaS platforms use. In this post, I will explain how Data Management as a Service works and why it can make sense for organizations to outsource their data management to a third-party company. I'll be covering the biggest benefits DMaaS solutions can bring to your business. Moreover, I'll also detail the main possible use cases for DMaaS across various industries Data management is a complex process that involves the collection and processing of data coming from multiple sources. As we'll see in this article, DMaaS platforms can really help organizations to reduce complexity and make better use of all their data. What is Data Management as a service (DMaaS)? Data Management as a Service (DMaaS) describes cloud-based services that allow organizations to manage data from different sources. DMaaS platforms can centralize data coming from files, applications, database servers, virtual machines, as well as individual devices. DMaaS platforms can also offer monitoring capabilities with real-time security alerts, and they can scale as needed. The ‘as-a-service’ paradigm of DMaaS platforms allows organizations to save money by paying for what they really use. In addition to centralized data collection, DMaaS solutions can simplify backup and recovery. This can make it easier for companies to be compliant with the latest security standards.   DMaaS platforms allow organizations to manage... --- ### Microsoft Adds Smart App Control, More Security Features to the Windows 11 2022 Update - Published: 2022-09-20 - Modified: 2022-12-02 - URL: https://petri.com/windows-11-2022-update-security-features/ - Categories: Windows 11 - Tags: News, Security, Windows 11 - Article Type: News The just-released Windows 11 2022 Update is bringing several new security features to the OS. The first major update for Windows 11 brings a new Smart App Control feature that lets users automatically block potentially dangerous apps from running on Windows 11 PCs. “This feature creates an AI model using intelligence, based on the 43 trillion security signals gathered daily, to predict if an app is safe,” explained David Weston, Vice President, Enterprise and Operating System Security. “Windows 11 uses the power of AI to generate a continually updated app control policy which allows common and known safe apps to run while blocking unknown apps often associated with new malware. ” Smart App Control is available on new devices that ship with the Windows 11 2022 Update. Moreover, existing users will need to clean install the latest update to use Smart App Control on their devices. It is also possible for IT admins to use Microsoft Intune with Windows Defender Application Control to apply policies. Many other new security features and management tools coming with the Windows 11 2022 Update were originally announced during Microsoft's hybrid work event back in April. Let's dive into the details below. Hypervisor-Protected Code Integrity Microsoft has announced that virtualization-based security (VBS) capabilities are now enabled by default on all new Windows 11 devices. These include a hypervisor-protected code integrity (HVCI) feature that helps to prevent malware from being injected into the Windows kernel. Moreover, the Microsoft vulnerable driver block list policy is now on by... --- ### Here Are the Main New Features in the Windows 11 2022 Update - Published: 2022-09-20 - Modified: 2022-09-20 - URL: https://petri.com/windows-11-2022-update-new-features/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Following months of testing with Windows Insiders, Microsoft has finally started rolling out the Windows 11 2022 Update to all customers worldwide. The first major update for Windows 11 brings several new accessibility, productivity, and meeting features, with more new experiences coming in a separate update next month. Windows Studio Effects First up, Microsoft has introduced new intelligent meeting features called Windows Studio Effects to improve the video calling experience in Windows 11. This update also brings hardware-based features such as Voice focus, Background blur, Automatic framing, and Eye Contact. "New Windows Studio camera and audio effects help you look and sound your best on conference calls, enabled by advanced AI – with Voice Focus to filter out background noise and make sure you are heard, Background Blur so only you are seen, Eye Contact to help you make a better connection with people you’re talking to and Automatic Framing so the camera stays with you as you move," said Panos Panay, Executive VP & Chief Product Officer, Windows and Devices. System-wide Live Captions Windows 11 is getting a new accessibility feature called system-wide Live Captions. It enables users to generate captions for audio content coming from a website, a native Windows app, and Microsoft Teams. Microsoft is also introducing a new voice access feature in preview on Windows 11 devices. The new speech-recognition feature lets users control their PCs with voice commands. For instance, users can use their voice to author text, switch between apps and perform other actions... . --- ### Microsoft Starts Rolling Out the Windows 11 2022 Update - Published: 2022-09-20 - Modified: 2022-09-28 - URL: https://petri.com/microsoft-rolling-out-windows-11-2022-update/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has started rolling out the Windows 11 2022 Update today, which is also known as Windows 11 version 22H2. This is the first major Windows 11 release since the launch of the new operating system last year, and Microsoft will be taking a measured approach to offer the update via Windows Update to ensure a reliable download experience for everyone. “We will initially ramp up the offering availability in the first weeks as we monitor quality signals. If we detect that your device may have an issue, such as an application incompatibility, we may put a safeguard hold in place and not offer the update until that issue is resolved,” explained John Cable, Vice President, Program Management, Windows Servicing and Delivery. How to get the Windows 11 2022 Update today Microsoft reiterates that it will continue to release major Windows 11 feature updates in the second half of each year. Additionally, the company plans to release regular updates with new features for all Windows 11 users, called 'Moments', throughout the year. Windows 11 version 22H2 will get 24 months of support for Home and Pro users, while Education and Enterprise customers will get 36 months of support. If you’re running Windows 11 version 21H2, you’ll need to open your Windows Update settings (Settings >> Windows Update) and select Check for updates. If your PC is eligible, you may see an option to install Windows 11 version 22H2. In addition to Windows Update, the major feature update is available through... --- ### Microsoft Defender for Endpoint Adds Support for Android Enterprise COPE devices - Published: 2022-09-20 - Modified: 2023-08-30 - URL: https://petri.com/microsoft-defender-for-endpoint-android/ - Categories: Endpoint Protection - Tags: Android, Microsoft Defender for Endpoint, News - Article Type: News Microsoft has launched its Defender for Endpoint solution on Android Enterprise (AE) company-owned personally enabled (COPE) devices. The company says that organizations can deploy this update with Microsoft Intune. Microsoft Defender for Endpoint is an enterprise endpoint security solution that helps to protect businesses from advanced threats. With this release, Android Enterprise COPE devices can now leverage all security capabilities, such as network protection, malware scanning, phishing and web protection, and more. The COPE model allows organizations to provide their employees with mobile computing devices. The devices are primarily intended for work purposes, but individuals can also use them in a personal capacity. It’s possible for both IT admins and employees to install applications on organization-owned mobile devices. “Cope architecture uses containerization tools like a work profile to maintain separation between personal and work data, and the applications used for each. This provides admins full management control within the work profile while only limited visibility into the personal profile. This practice helps admins continue to enforce policies while maintaining employee privacy,” the company explained. IT Pros can deploy Microsoft Defender for Endpoint on Android Enterprise enrolled devices with Microsoft Intune Microsoft notes that this update builds on the existing support available for enrolled devices for AE fully managed modes, the legacy Device Administrator mode, AE bring your own device (BYOD) as well as the unenrolled mobile application management (MAM) devices. You can find more details about the deployment of Microsoft Defender for Endpoint on Android Enterprise enrolled devices on this... --- ### Microsoft Moves SharePoint Server Subscription Edition to Bi-Annual Release Schedule - Published: 2022-09-19 - Modified: 2022-09-19 - URL: https://petri.com/microsoft-sharepoint-server-subscription-edition-bi-annual-updates/ - Categories: SharePoint, SharePoint Subscription Edition - Tags: News, SharePoint, SharePoint Server Subscription Edition - Article Type: News Microsoft announced a major change to how it delivers new releases of SharePoint Server Subscription Edition. Indeed, Microsoft will now switch to a biannual release schedule that will allow the company to release new feature updates twice a year. Microsoft launched SharePoint Server Subscription Edition in July last year. It's an on-premises version of SharePoint that provides security, reliability, and management capabilities for business customers. “To ensure we’re meeting those needs, we will bundle new feature experiences for SharePoint Server Subscription Edition together in feature updates so they can be introduced on a predictable schedule. Feature updates will be incorporated into the monthly public updates, alongside the typical security and quality updates that you are already familiar with,” the SharePoint team explained. Microsoft plans to adopt a new "feature release rings" approach to release feature updates to SharePoint Server Subscription Edition. Organizations will be able to choose between the Early release and Standard release rings. The Early release ring allows IT admins to test all new features before making them generally available for all customers in the Standard release. SharePoint Server Subscription Edition version 22H2 Additionally, Microsoft has announced the release of the September 2022 Public Update (version 22H2) for SharePoint Server Subscription Edition. This latest release brings support for release rings and Windows Antimalware Scan Interface (AMSI) integration. The AMSI standard allows applications and services to integrate with antimalware solutions to block potentially malicious requests. SharePoint Server Subscription Edition version 22H2 also includes other improvements such as bulk editing... --- ### Microsoft Teams Adds Support for Scheduling Chat Messages - Published: 2022-09-19 - Modified: 2022-09-19 - URL: https://petri.com/microsoft-teams-schedule-chat-messages/ - Categories: Microsoft Teams - Tags: Microsoft 365 - Article Type: News Microsoft Teams is getting a new schedule send feature that allows users to choose a specific time to send a chat message. The feature was spotted by Petri Jämsen, a Microsoft 365 consultant, and it’s rolling out gradually in public preview for the Teams desktop and web apps. First announced at Ignite 2021, the schedule send feature is one of the top requests from Microsoft Teams users. It’s similar to the delay delivery option in Outlook and lets users schedule chat messages to be sent at a time convenient to their colleagues. Users can also edit and delete messages before they are delivered to the recipient. “All scheduled messages can only be delivered no more than 7 days in the future and cannot be flagged as urgent or important. Inline images and attached files will only be accessible by others in the chat once the message has been delivered,” the company explained on the Microsoft 365 admin center. The schedule send feature is designed to improve work-life balance, and prevent users from disturbing their colleagues outside of working hours. Microsoft expects to make it available for all commercial customers in mid-October, though the timeline is subject to change. How to schedule a chat message in Microsoft Teams To schedule a message in Teams, desktop users will need to right-click on the Send button and choose a date and time within seven days. Review the schedule details in the message compose box and click the Send at scheduled time button to... --- ### Microsoft: Token-Mining Vulnerability in Teams is Not Critical to Fix - Published: 2022-09-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-vulnerability-tokens/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Security researchers have recently identified a vulnerability in the Microsoft Teams desktop app. The security flaw could allow attackers to access authentication tokens and accounts with multi-factor authentication (MFA) enabled. According to the cybersecurity company Vectra, Microsoft Teams stores user authentication tokens in plain text on the device. It would allow threat actors with local access to an affected system to steal the tokens and remotely sign in to the compromised account. The vulnerability affects the desktop versions of Microsoft Teams on Windows, Mac, and Linux. “Anyone who installs and uses the Microsoft Teams client in this state is storing the credentials needed to perform any action possible through the Teams UI, even when Teams is shut down. This enables attackers to modify SharePoint files, Outlook mail and calendars, and Teams chat files,” Vectra researchers explained. The researchers added that attackers could use the vulnerability to hijack accounts of high-profile employees (such as the CEO or CFO). It makes it easier to launch phishing campaigns and potentially disrupt the operations of an entire organization. Microsoft to patch the Teams flaw in a future update Vectra first discovered the security flaw and disclosed it to Microsoft in August this year. However, Microsoft believes that the exploit doesn’t meet its severity criteria for immediate patching, and it plans to fix the bug in a future update. "The technique described does not meet our bar for immediate servicing as it requires an attacker to first gain access to a target network. We appreciate... --- ### How to Restore Active Directory > As an IT pro, it is critical that you know how to restore Active Directory to prevent any possible interruptions to your environment. In this guide, I will walk you through the most common methods of restoring system state backups, which include all the authoritative objects of Active Directory. - Published: 2022-09-19 - Modified: 2022-09-19 - URL: https://petri.com/how-to-restore-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Directory Services, domain controllers, System State, Windows Server, Windows Server Backup - Article Type: How To After you've built a solid, robust, and redundant Active Directory infrastructure, it is critical that you know how to restore Active Directory to prevent any possible interruptions to your environment. As an IT pro, it's your job to prepare for the unexpected and to know how to get back on your feet. In this guide, we'll give you a step-by-step guide for restoring your Active Directory environment. I will walk you through the most common method(s) of restoring system state backups — these include all the authoritative objects of Active Directory. First, I'll show you how to boot one of our domain controllers (DCs) into what's called 'Directory Services Restore Mode' and restore a recent Active Directory backup made with Windows Server Backup. Let's get started! How to restore Active Directory There are many scenarios that require you to restore your Active Directory environment. Of course, hopefully, you never run into any of them. But it is always best to be prepared. Where we are - current state In case you haven't read my previous post about how to back up Active Directory, let me get you up to my current state. I installed the 'Windows Server Backup' feature using Server Manager on one of my four domain controllers in my Windows Server 2022 Active Directory Hyper-V lab environment. In my previous post, I also demonstrated how to perform full backups and system state backups. Using a recent system state recovery point, we'll be able to choose the 'Recover... '... --- ### Microsoft to End Windows 10 version 21H1 Support in December - Published: 2022-09-16 - Modified: 2023-06-16 - URL: https://petri.com/microsoft-end-windows-10-21h1-support/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Windows 10 version 21H1, also known as the Windows 10 May 2021 Update, will reach end of support in three months. The company is reminding customers that it will stop providing support to all editions of Windows 10 version 21H1 on December 13, and it will no longer receive security patches after that date. Microsoft started rolling out Windows 10 version 21H1 to all users back in May last year. It was a pretty minor update, with fewer notable features than the previous releases. These include multi-camera support for Windows Hello and Windows Defender Application Guard improvements. This update also added enhancements for the Windows Management Instrumentation Group Policy Service. If you’re still running Windows 10 version 21H1, Microsoft recommends installing version 21H2 (the November 2021 Update) or Windows 11 to continue getting quality and security updates on your PCs. Windows 10 version 21H2 doesn’t include any significant changes, and the migration process should take less than 10 minutes. Microsoft detailed on its product lifecycle page that the update will get 18 months of support. Windows 10 version 22H2 is coming soon Microsoft is also getting ready to release Windows 10 version 22H2 in the next few weeks. The company is already testing this update with insiders in the Release Preview ring, but the new features aren't live yet. Microsoft will keep releasing "major" Windows 10 updates every year in the fall through 2025. Moreover, Microsoft plans to service Windows 10 until October 14th, 2025, for users who can’t upgrade... --- ### What is a Hybrid Cloud Architecture? > A hybrid cloud architecture is an environment that combines private computing resources with a public cloud. In this article, we'll explain how a hybrid cloud architecture works and what are the main advantages and use cases for this type of IT environment. - Published: 2022-09-16 - Modified: 2022-11-23 - URL: https://petri.com/hybrid-cloud-architecture/ - Categories: Azure, Cloud Computing, Hybrid Cloud - Tags: AWS, Azure, cloud computing, Cloud Storage, Hybrid, hybrid cloud - Article Type: Overview A hybrid cloud architecture is an environment that combines private computing resources with a public cloud. A public cloud is a cloud computing platform provided by a third-party company, and a good example would be Microsoft Azure, Amazon Web Services, or the Google Cloud Platform. In this article, we'll explain how a hybrid cloud architecture works and how it differs from more traditional IT environments. We'll also detail the advantages of using hybrid cloud storage, as well as some specific use cases such as disaster recovery plans and data processing. In recent years, many organizations have adopted hybrid cloud architectures to make their IT environment more scalable. Hybrid clouds are indeed well suited for most workloads, though many organizations may still have some concerns regarding security and compliance. As we’ll see in this article, there are also some situations where using a hybrid cloud isn’t really recommended. What is a hybrid cloud architecture? In general, a hybrid cloud architecture is an environment built on a public cloud service like Microsoft Azure or Amazon Web Services, with the addition of an on-premises component. A hybrid cloud architecture combines private and public computing resources A hybrid cloud is generally understood as a private cloud environment combined with some public cloud services like the ones we’ve mentioned above. This slightly outdated definition is still shared by the National Institute of Standards and Technology (NIST) today. The cloud infrastructure is a composition of two or more distinct cloud infrastructures (private, community, or public) that... --- ### Microsoft Introduces New Group Policy to Control IE Retirement - Published: 2022-09-15 - Modified: 2022-09-15 - URL: https://petri.com/microsoft-group-policy-control-ie-retirement/ - Categories: Windows 10 - Tags: Microsoft Edge, News, Windows, Windows 10, Windows Update - Article Type: News Microsoft has introduced a new Group Policy that should make it easier to control the Internet Explorer (IE) retirement process in enterprise environments. The “Disable IE Policy” configuration lets IT admins choose when to permanently disable IE for all end users instead of waiting for the gradual rollout. Back in June, Microsoft announced the long-awaited end of support for its IE11 legacy browser. The company decided to gradually move users away from IE instead of dropping support altogether. Interestingly, Microsoft plans to phase out IE usage in two stages. In the first stage, all users will be automatically redirected to Microsoft Edge. Moreover, the second stage involves permanently disabling IE on all PCs via Windows Update. Microsoft has released the new Disable IE Policy for organizations that want to transition all IE11 users simultaneously. Once enabled, it will redirect all IE activities to the Edge browser and remove the icons from the taskbar and the Start Menu. “The Disable IE Policy is our strongly recommended option to control the timing and rollout of the IE retirement process for their users. Using this policy gives you the ability to set your own schedule with your users and to communicate the transition accordingly. You can dictate precisely when IE is retired in your environment,” the company explained. How to disable Internet Explorer 11 with group policy First up, IT admins will need to check if the pre-requisite operating system updates are installed on Windows PCs. Now, open the Group Policy Editor and navigate... --- ### Microsoft Teams Gets New Remixed Ringtone for Video Calls - Published: 2022-09-15 - Modified: 2023-06-16 - URL: https://petri.com/microsoft-teams-calls-remixed-ringtone/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has released a remixed version of its default Teams ringtone, which is now available for all desktop, web, and mobile users. The company has partnered with a popular TikTok influencer “Calum Newton” (also known as CandyMoore. mp3), to create the remixed ringtone for Microsoft Teams. “Calum Newton, who goes by CandyMoore. mp3 on social media, created an incredible remix of the ringtone, so we reached out and asked him to create a version that we could share with you. His remix is now available for users to customize their Teams experience, and it hits hard enough to make you want to dance,” said Surbhi Lohia, a Product Manager for Microsoft Teams. https://twitter. com/MicrosoftTeams/status/1570079987306471425? How to enable the new remixed ringtone in Microsoft Teams To test the remixed ringtone, you will need to install the latest update available for the Microsoft Teams desktop app. Once updated, navigate to Settings and then select the Calls option. Click the dropdown menu under the “Ringtones” section and select Remix from the list. It is important to note that users can change the default ringtone on both desktop and web versions of Microsoft Teams. However, the change will be automatically reflected across all endpoints, including mobile devices. In recent months, Microsoft has introduced several new features to improve the collaboration experience in hybrid meetings. Microsoft says that the number of weekly meetings has increased by around 153 percent since the beginning of the COVID-19 pandemic. The company found in a research study that these back-to-back meetings often... --- ### VMware to Launch New vCenter Converter Tool in Beta - Published: 2022-09-14 - Modified: 2022-09-14 - URL: https://petri.com/vmware-vcenter-converter-tool/ - Categories: Virtualization, VMware - Tags: News, Security, vmware - Article Type: News vCenter Converter, the former physical to virtual (p2V) machine migration assistant that WMware retired in 2019 is set to officially make a comeback later this year. VMware has announced its plans to launch a beta version of its revamped vCenter Converter tool for enterprise customers. Essentially, vCenter Converter is a solution that allows users to convert their Windows and Linux-based servers or third-party formats to VMware virtual machines. It also provides an option to configure existing virtual machines in their vCenter Server environment. Back in February, VMware removed the tool from the VMware download website due to security and stability concerns. The company didn't detail the security issues, but it unveiled plans to release an updated vCenter Converter tool in the future. However, VMware didn’t provide any specific timeframe for its release. Now, the vCenter Converter team has confirmed that it's about to release a beta version of vCenter Converter. "The initial scope of this first re-release of vCenter Converter is to bring feature parity with the last supported version of vCenter Converter, which was the 6. 2 release," said William Lam, a Senior Staff Solution Architect at VMware. VMware to add more migration features to vCenter Converter For now, the vCenter Converter development team is focused on launching the tool in beta. However, VMware has promised to add new features and enhancements that should make it easier for users to convert and migrate their workloads from various platforms. In the meantime, VMware encourages customers to provide feedback to help prioritize... --- ### Microsoft's September 2022 Patch Tuesday Updates Fix 64 Windows Vulnerabilities > Microsoft fixed a total of 64 security flaws in the September 2022 Patch Tuesday updates for Windows 11 and Windows 10, including two vulnerabilities that are already being exploited in the wild. This month's updates bring improvements to language support and SMB compression on Windows 11. - Published: 2022-09-14 - Modified: 2022-09-14 - URL: https://petri.com/september-2022-windows-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released yesterday the September 2022 Patch Tuesday updates for Windows 11 and Windows 10. This month, the company fixed 64 security vulnerabilities, with six of them being rated critical. On the new features front, Microsoft Defender for Endpoint is getting a boost on Windows 11 and Windows 10, and there are also other improvements related to language support and SMB compression. Let’s dive into the details below! 64 vulnerabilities were fixed in the September 2022 Patch Tuesday updates Microsoft fixed a total of 64 vulnerabilities in Windows 11 and Windows 10 with this month's Patch Tuesday updates. Six of them are rated critical, but there are also two non-critical vulnerabilities that are already being exploited in the wild.   Here are the most important fixed vulnerabilities you should be aware of in this month's Patch Tuesday updates:  CVE-2022-37969: This Windows Common Log File System Driver Elevation of Privilege Vulnerability has been publicly disclosed and is already being exploited. However, attackers must already have access and the ability to run code on the target system to gain System privileges. CVE-2022-23960: This is a cache speculation vulnerability affecting ARM CPUs. This is another variant of the Spectre processor vulnerability that was discovered a couple of years ago. CVE-2022-3075: This is a Chromium vulnerability caused by insufficient data validation in Mojo, a collection of runtime libraries used by Chrome and other Chromium-based browsers. This vulnerability is already being exploited in the wild, though the latest versions of Microsoft Edge and Chrome are no longer vulnerable. CVE-2022-34718:... --- ### Windows Terminal 1.16 Preview Adds New Text Rendering Engine and Themes - Published: 2022-09-14 - Modified: 2022-09-15 - URL: https://petri.com/windows-terminal-1-16-preview/ - Categories: Windows 10, Windows 11 - Tags: News, Windows, Windows Terminal - Article Type: News Microsoft has announced the release of Windows Terminal version 1. 16, which brings a couple of significant improvements to the user experience. First off, Microsoft has introduced a new feature that lets users customize their Windows Terminal windows. Specifically, Windows Terminal users can modify themes in the Settings JSON file and then enable them in the appearance settings. However, it is only possible to customize some pre-determined theme objects such as the application theme, the background, as well as the tab, and the tab row. You can find more details in this support document. Microsoft also announced that the Windows Terminal app now uses dark mode by default, instead of the system theme. This means users will have to manually enable the light theme if needed. Moreover, the latest release brings a new text rendering engine that first debuted in Windows Terminal Preview 1. 13. “In version 1. 13, we released the new, experimental text rendering engine under an experimental feature you could enable for a profile. In this release, we are making this new renderer the default text renderer for all profiles. The new renderer is more performant and now supports additional pixel shaders (including the retro effect), bold text, and underline/overline/hyperlink lines,” the Windows Terminal team explained. Latest Windows Terminal Preview update brings redesigned color schemes page In addition to this, Windows Terminal Preview 1. 16 brings some updates to the settings UI color schemes page. Microsoft has also added a new “Set as default” button that enables users to set a... --- ### How to Recession-Proof your IT Career - Published: 2022-09-14 - Modified: 2022-09-23 - URL: https://petri.com/how-to-recession-proof-your-it-career/ - Categories: Career Skills - Tags: Career, Career Advice, certification, IT pro, Skills - Article Type: Opinion In this article, I will share my recommendations on how to build a recession-proof career and protect it against the effects of an economic downturn. In summary: Assess your current position. Update your skills. Get certified. Winter is coming – recession proof your career now! You don't need to be a Stark to understand what is happening in the world right now. The news at the moment reminds me of what I heard in 2007-2008 before Lehman Brothers signaled the start of the last global recession. Microsoft executives are "changing" recruitment. Facebook is telling employees that job cuts are coming. Google is going to have a "hiring slowdown". Subscription services are seeing subscribers leave. Console game sales aren't doing as well as they were. The cost of living is rapidly increasing (inflation). To "calm" down inflation, central banks are increasing interest rates - crippling normal people and small/medium businesses. The purchase/rental cost of property has returned to or near record levels. All of the above is a perfect storm for a recession. I grew up in an Ireland that many alive today might not recognize if they only know Ireland from the last 25-or-so years. Most people were poor. Unemployment was common. Even though many never completed secondary or high school, education was seen as a way to elevate oneself. But many college graduates found they had to leave the country to get a job. I was lucky to enter the job market just as the tech industry helped the Irish economy turn the corner. But even with... --- ### How to Schedule an Email in Outlook > In this guide, we’ll show you how to schedule an email in Outlook for Windows, Outlook for Mac, and Outlook on the web. We'll also explain how to schedule emails with Outlook on iOS and Android, as this feature is currently not supported natively. - Published: 2022-09-14 - Modified: 2023-04-14 - URL: https://petri.com/how-to-schedule-an-email-in-outlook/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, Outlook, Outlook for Android, Outlook for iOS, Outlook for Mac, Outlook for Windows - Article Type: How To In this guide, we’ll show you how to schedule an email in Outlook for Windows and other platforms. This is a really handy feature that gives you the flexibility to send emails at a specific time. Instead of creating reminders to send some of your emails, Outlook can schedule them for you at the time you want, and this feature works across almost all platforms. Scheduling emails with Outlook also enables you to better communicate with people across different time zones. It’s usually best to send emails when people are likely to read them, as this can prevent your messages from getting lost in the void. This is especially important if you happen to work in marketing or communication. How to schedule an email in Outlook on the desktop The process for scheduling emails with Outlook on the desktop is quite straightforward. However, there are a couple of differences between Outlook for Windows and Outlook for Mac. Scheduling emails in Outlook for Windows Scheduling an email in Outlook for Windows can be done in just a few clicks. Here are the steps you need to follow: Open Outlook for Windows and create a new email. While you’re writing your email, click on the Message options button located next to the Tags group in the Outlook ribbon. The email scheduling option in Outlook for Windows is hidden in Message options (Image credit: Petri: Siji Roy) This will open the Properties pop-up window. In the Delivery options section, check the Do... --- ### Microsoft Teams Lets Users View Full Chat Conversation Thread in Search Results - Published: 2022-09-13 - Modified: 2022-09-13 - URL: https://petri.com/microsoft-teams-view-full-chat-conversation-thread/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting an improved search experience, which will allow users to see message threads right from search results. The updated search experience is currently available in public preview for the Teams desktop and web apps. Users can notice these changes in message results on the contextual search results and the Search results page (SERP). You can see how this new search experience looks in the screenshot below: “When users search for a chat message in Teams and click on a message result from a chat which is older than 14 days, they are taken to a single-message-view of the chat, rather than the entire chat thread,” Microsoft explained. “We have addressed this issue. Now whenever users click on a chat message search result, they get dropped into the entire message thread, regardless of the age of the message. ” The change should make understanding the context of the message easier to avoid any misunderstanding or confusion. Microsoft expects to start rolling out the new search experience to all Teams users in early October 2022, with Government Community Cloud (GCC) customers to follow later this year. Microsoft Teams meetings make it easier to sign documents Microsoft has also developed a proof of concept that brings digital signatures to Teams meetings. This means that users will be able to share any document with other participants directly within the meeting window. The feature should be particularly useful in scenarios such as NDAs, invoices, and purchase agreements. The source code for the in-meeting... --- ### IT Admins Can Now Manually Create Incidents in Microsoft Sentinel - Published: 2022-09-13 - Modified: 2023-02-02 - URL: https://petri.com/it-admins-can-now-manually-create-incidents-in-microsoft-sentinel/ - Categories: Microsoft Sentinel - Tags: Microsoft Sentinel, News, Security - Article Type: News Microsoft announced yesterday some important updates for Microsoft Sentinel. This release brings a new feature that allows IT admins to manually create incident reports for investigation and remediation. Microsoft Sentinel is a cloud-based security information and event manager (SIEM) solution that helps organizations to analyze large volumes of data in enterprise environments. It leverages threat intelligence and machine learning technologies to detect and investigate security threats and proactively prevent sophisticated attacks. Microsoft Sentinel makes it easier for administrators to manage all their on-premises servers, devices, and applications. Up until now, Microsoft Sentinel was able to automatically generate incidents based on the logs and alerts pulled from connected data sources such as Microsoft 365 Defender. However, some employees may report security breaches through other means like emails or phone calls. This release enables security analysts to manually create incident reports for any type of security event to document investigations. It is also possible to manually delete duplicate or faulty security incidents if needed. “With the "manual incident creation" feature, analysts can now create an incident manually in the Sentinel portal and also by using the new "Create incident (preview)" LogicApp action,” Microsoft explained. “If an incident was mistakenly logged, or is an exact duplicate of another incident, it can now be deleted from the grid using the new "delete" option or using an API - leaving only audit information in the Log Analytics table. ” Manual incident creation in Microsoft Sentinel is available in public preview The new incident creation and deletion... --- ### Microsoft 365 apps Can Now Install Updates on Idle or Locked Windows Devices - Published: 2022-09-13 - Modified: 2022-09-13 - URL: https://petri.com/microsoft-365-apps-updates-idle-locked-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Windows - Article Type: News Microsoft has introduced a new “update under lock” feature to streamline the update experience in its Microsoft 365 apps. The latest update enables users to install pending Office updates in idle or locked mode on Windows PCs. “Update under lock helps you reach compliance within your timeframes without disrupting your internal users, and potentially reduces the need for abrupt forced updates, making updates more reliable by saving app state before closing. Zero notifications, zero disruptions! ,” the company explained. If a user is running an Office app, the update under lock feature will close the application to apply the pending updates automatically. Once installed, it will restore the app to its previous state to avoid any disruptions to the users' workflow. Microsoft says the entire update process will be completed within a few minutes. According to Microsoft, the new update under lock feature leverages the Click-To-Run technology. It uses virtualization to let customers begin using Office apps even before the whole suite has been downloaded. The Click-To-Run is designed to reduce the time required to install and launch Office products. IT Admins can not disable the update under lock feature in Microsoft 365 Apps It is important to note that the Office apps will not shut down in case there are any unsaved changes. Moreover, it is not possible for IT admins to disable the update under lock feature in their tenants. “Microsoft is always optimizing your updates experience, and this thoroughly tested feature lives under the hood to make your... --- ### Google Finalizes $5.4 Billion Mandiant Acquisition - Published: 2022-09-12 - Modified: 2022-09-12 - URL: https://petri.com/google-mandiant-acquisition/ - Categories: Google Cloud Platform - Tags: Google, Google Cloud Platform, News, Security - Article Type: News Google announced this morning that its $5. 4 billion acquisition of cybersecurity provider Mandiant has officially closed. The deal brings the company directly under the Google Cloud umbrella, but it will retain the Mandiant brand. Google first announced its plans to acquire Mandiant back in March 2022. At that time, Microsoft was also in discussions to buy the threat intelligence firm, but it reportedly backed out from the negotiations. This deal is the second largest purchase by Google, after its $12. 5 billion acquisition of Motorola’s phone division “Mobility” in 2011. The all-cash acquisition will allow Google Cloud to deliver an end-to-end security operations suite and advisory services. Mandiant offers popular incident response (IR) solutions, threat intelligence tools, security validation, attack surface management, as well as automated and managed defense services. It also provides strategic readiness and technical assurance to help enterprises to enhance their security posture across cloud and on-premise environments. “The completion of this acquisition will enable us to deliver a comprehensive and best-in-class cybersecurity solution,” said Thomas Kurian, CEO of Google Cloud. “We believe this acquisition creates incredible value for our customers and the security industry at large. Together, Google Cloud and Mandiant will help reinvent how organizations protect themselves, as well as detect and respond to threats. ” Google's Mandiant acquisition can challenge Microsoft’s cybersecurity dominance Microsoft has been dominating the cybersecurity landscape for the past several years. It provides an extensive suite of security solutions and analytics tools for business applications, cloud workloads, and endpoints. With this acquisition,... --- ### Researchers Warn About New Shikitega Malware Targeting Linux Endpoints and IoT Devices - Published: 2022-09-12 - Modified: 2022-09-12 - URL: https://petri.com/shikitega-malware-linux-endpoints-iot-devices/ - Categories: Security - Tags: linux, Malware, News, Vulnerability - Article Type: News Security researchers have unveiled a new malware that is infecting Linux endpoints and Internet-of-things (IoT) devices. The malware allows attackers to gain persistent access to the compromised system and deploy crypto-mining software. The stealthy malware dubbed "Shikitega" was first discovered by cybersecurity researchers at AT&T Alien Labs. The malware is delivered in a multi-stage infection chain via polymorphic encoding. This technique enables the malware to mutate its code, making detection extremely difficult by antivirus tools. "Threat actors continue to search for ways to deliver malware in new ways to stay under the radar and avoid detection," explained AT&T Alien Labs. "Shikitega malware is delivered in a sophisticated way, it uses a polymorphic encoder, and it gradually delivers its payload where each step reveals only part of the total payload. In addition, the malware abuses known hosting services to host its command and control servers. " Shikitega malware lets attackers install crypto miner payloads Additionally, Shikitega downloads a harmful Metasploit package called “Mettle. ” It lets threat actors take control of attached webcams, control processes, execute shell commands, steal credentials, and much more. The malware also exploits two critical Linux vulnerabilities (CVE-2021-4034 and CVE-2021-3493) to install and run the XMRig cryptocurrency miner. The software allows the attackers to secretly mine the Monero cryptocurrency on affected devices. “To achieve persistence, the malware will download and execute a total of 5 shell scripts. It persists in the system by setting 4 crontabs, two for the current logged in user and the other two for the... --- ### How to Add a Domain Controller to an Existing Domain (Server Manager) - Published: 2022-09-12 - Modified: 2024-11-14 - URL: https://petri.com/how-to-add-domain-controller-to-existing-domain/ - Categories: Active Directory (AD) - Tags: Windows Server 2016, Windows Server 2019, Windows Server 2022, Windows Server 2025 - Article Type: How To As an IT Pro, it is highly likely that you've needed to add additional domain controllers (DCs) to your Active Directory environment. In this guide, we'll demonstrate how to add a domain controller to an existing domain. This article applies to: Windows Server 2016, Windows Server 2019, Windows Server 2022, and Windows Server 2025. How to add a new domain controller to an existing domain There are several reasons you may want to add a new domain controller to an existing domain: Adding redundancy, migrating a DC from old hardware to a fresh new server, etc. I'll take you through those different steps first. Initial configuration I've built a new Windows Server 2022 Datacenter server (WS22-DC4) and added it to my domain - reinders. local. Here, the only prerequisites are that you need to have an existing domain with domain controllers. I know... but I wanted it stated for completeness. If you are not sure how to add a server to a domain, check out How to Add Computers to a Domain Using PowerShell on Petri. com. Our new, soon-to-be domain controller... Installation The first step we'll do is click the Start button, then click on Server Manager, then click the '(2) Add roles and features' link. Using Server Manager to add the Active Directory Domain Services role You can click Next three times to move through the introductory screens and choose the option to make changes to the local server. After placing a checkmark in 'Active Directory Domain Services', you... --- ### Microsoft Adds Facebook-Like Storyline Feature to Viva Engage and Yammer - Published: 2022-09-09 - Modified: 2022-09-09 - URL: https://petri.com/microsoft-adds-storyline-viva-engage/ - Categories: Microsoft 365, Viva - Tags: Microsoft 365, News, Viva, Viva Engage - Article Type: News Last month, Microsoft launched its Viva Engage social networking platform for commercial customers. Now, the company has introduced a Facebook-like storyline feature in Viva Engage. It gives employees a personalized feed of content shared by co-workers across the organization and people they choose to follow. “Storyline empowers everyone within your organization to connect and contribute, and enables your leaders to reach and engage employees. Through storyline, people can share updates, experiences, and perspectives to reach followers and colleagues across the organization. You can find, follow, and share to storylines from the applications you use every day including Outlook, Microsoft Teams, Yammer, and Microsoft Viva,” the Microsoft Viva team explained. https://www. youtube. com/watch? v=r3h7d8QQghI How to get started with Storyline Microsoft says that the storyline feature is currently available in public preview for organizations. Moreover, IT Pros can enable it for end users in their tenants by selecting the “Manage storyline” option available on Yammer. com and the Viva Engage app. Once enabled, users can access their storyline feeds by clicking the “storylines” link in Yammer or the “storylines” tab in the Viva Engage app. Users can upload a short video or create posts to introduce themselves, showcase their skills and achievements, and share content with others. It is important to note that the storyline content will only be visible to internal employees, and guest users won’t be able to see it. Moreover, IT departments can choose to disable it for all employees in their organization. Microsoft also plans to launch the stories feature in... --- ### Microsoft Addresses Sign-In Issues on Windows 11 PCs - Published: 2022-09-09 - Modified: 2022-09-09 - URL: https://petri.com/microsoft-fix-sign-in-bug-windows-11/ - Categories: Windows 11 - Tags: News, Windows, Windows 11 - Article Type: News Microsoft has released a patch to address an issue that prevents users from signing in after adding a new Microsoft account to their Windows 11 PCs. The bug was discovered following the release of the Windows 11 preview build 22000. 918 that started rolling out on August 25, 2022. According to Microsoft, the problem currently affects systems running Windows 11 version 21H2. However, it doesn’t affect customers with Active Directory user accounts and Azure Active Directory (Azure AD) accounts. "After installing KB5016691 and adding a new Microsoft account user in Windows, you might be unable to sign in for a brief time after the first restart or sign out. The issue only affects the newly added Microsoft account user and only for the first sign in," Microsoft wrote on the Windows Health dashboard. Microsoft says it has used the Known Issue Rollback method to address the problem on affected Windows 11 PCs. However, it may take up to 24 hours for Windows 11 users to be able to sign into their systems again with a Microsoft account. IT Pros can configure Group Policy to fix the Windows 11 22H2 sign-in bug Meanwhile, it is also possible for IT admins to manually configure a special Group policy to mitigate the issue in enterprise environments. To do this, they will need to navigate to Computer Configuration >> Administrative Templates >> KB5016691 220722_051525 Known Issue Rollback >> Windows 11 (original release). Microsoft notes that administrators can head to the official website to download the... --- ### Microsoft Teams Meetings Now Let Users Collaborate on Excel Spreadsheets - Published: 2022-09-09 - Modified: 2022-09-09 - URL: https://petri.com/microsoft-teams-meetings-excel-live/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Back in July, Microsoft unveiled a new Excel Live feature to make real-time collaboration easier within Microsoft Teams. The company has finally started rolling out Excel Live in public preview, allowing users to edit Excel workbooks simultaneously with other meeting participants. Excel Live is built on top of the Live Share feature in Teams that Microsoft announced at Build 2022 earlier this year. Previously, presenters were required to open Excel documents on their desktops and share their screen during meetings. However, this technique leads to conflicts that negatively impact users' productivity. With this release, Microsoft Teams users can co-edit Excel files directly within the meeting window. The Excel Live feature eliminates the need to switch between windows and saves time spent on consolidating content after meetings. “Excel Live supports Sheet Views, which allows everyone co-editing the workbook to create customized views to sort or filter information however needed (without disrupting anyone else’s view). The workbook loads for each participant at the optimized zoom level with flexibility to adjust zoom based on their preferences,” Microsoft explained. How to present with Excel Live in Microsoft Teams To try out the Excel Live feature in Teams, you will need to follow the steps mentioned below: First up, join a Microsoft Teams meeting, click the Share button and then navigate to the Excel Live section. Choose the Excel workbook to collaborate with your colleagues during a meeting. However, the presenter should have full sharing permissions of that file with other people. Finally, click the Share... --- ### What is Azure Data Factory? > Azure Data Factory can collect data from multiple sources and perform various data engineering operations in a code-free and cost-effective way. In this guide, we explain the major components of Azure Data Factory and detail the best use cases for your business. - Published: 2022-09-09 - Modified: 2022-09-09 - URL: https://petri.com/azure-data-factory/ - Categories: Azure, Microsoft Azure - Tags: Azure, Azure Data Factory, cloud computing, Microsoft Azure - Article Type: Overview Azure Data Factory is a cloud-based data integration platform from Microsoft. It allows organizations to gather data from multiple sources and perform various data engineering operations in a code-free way. For organizations struggling to manage and extract insights from exponentially increasing amounts of data, ADF can be a more efficient and cost-effective way to do that. In this post, I’ll explain in detail what Azure Data Factory is and how its major components work. It’s a featured-packed platform, but this guide will help you identify the best use cases for your business. What is Azure Data Factory? Azure Data Factory (ADF) is a cloud-based data pipeline orchestrator and data engineering tool. It’s part of Microsoft’s Azure cloud ecosystem and you can access it on the web. There are currently two versions of ADF, version 1 and version 2. In this article, we’ll be covering the version 2 of the platform, which added support for more data integration scenarios. A cloud-based data integration platform Azure Data Factory is a fully-managed serverless data integration platform. It can help organizations build data-driven workflows by integrating data from multiple heterogeneous sources. With over 100 different built-in and easy-to-maintain data connectors, you can build scalable and reusable pipelines that integrate different data sources, all without having to code. ADF lets you extract data from on-premises, hybrid, or multi-cloud sources. You can load all of it into your data warehouse or data stores for transformation. ADF also provides an easy-to-use console to track data integrations... --- ### Microsoft to Retire Meeting Scheduler Service in 2023 - Published: 2022-09-08 - Modified: 2022-09-08 - URL: https://petri.com/microsoft-retire-meeting-scheduler/ - Categories: Microsoft 365 - Tags: Microsoft, Microsoft 365, News - Article Type: News Microsoft is getting ready to retire its Scheduler service for Microsoft 365. The company announced this week on the Microsoft 365 Admin center that it would retire support for Scheduler on September 1, 2023. Microsoft launched the AI-powered Scheduler service in June 2021 to make it easier for users to organize their meetings. It’s a backend service that delegates the appointment and meeting scheduling tasks to Cortana. Scheduler enables Cortana to find a suitable meeting time, send calendar invites and reschedule or cancel meetings. Scheduler is a valuable tool that saves the time required to organize meetings, and lets users focus on more critical tasks. However, customers have complained about the higher pricing structure since its launch. It also requires organizations to pay additional costs for configuring a dedicated Scheduler assistant mailbox with an Exchange Online license. Microsoft may add Scheduler features to a new product Microsoft didn’t explain why it’s shutting down Scheduler, but the low usage of the service is probably a major factor behind this decision. Microsoft already provides a similar "FindTime" feature for its Outlook app. Moreover, the Scheduler add-on was designed to target high-profile employees who often need to schedule complex meetings with participants across different time zones. Microsoft has hinted that it “may bundle some of these features with another offering in the future,” though there is no ETA yet. The company could launch a rebranded service with a lower price tag to bundle with high-end products. However, it will be interesting to see... --- ### Windows Autopatch Gets Application-Based Authentication Support and More - Published: 2022-09-08 - Modified: 2022-09-08 - URL: https://petri.com/windows-autopatch-application-based-authentication/ - Categories: Microsoft 365, Windows Client OS - Tags: Microsoft 365, News, Windows 10, Windows 11, Windows Autopatch - Article Type: News Microsoft has detailed some new features added to its Windows Autopatch service in the month of September. The major highlights of this release include a new application-based authentication method, enhancements for the device registration flow, as well as reporting capabilities. Microsoft first unveiled the Windows Autopatch service back in April and made it available in preview in June this year. It’s a cloud-based offering that enables organizations to automate the patching process of Windows, Microsoft Edge, Microsoft Teams, and Microsoft 365 apps for Enterprise. Windows Autopatch allows administrators to create testing rings, monitor rollouts, and roll back changes. First off, Windows Autopatch now supports certificate-based authentication via the Modern Workplace Management application. This release helps to improve the security posture and streamline the tenant enrollment process. It also reduces the workload involved in password rotation as well as removes a few service accounts, groups, and Conditional Access (CA) policies. These changes should make it easier for customers to deploy the Windows Autopatch service in their tenants. Microsoft has also released some updates to simplify the post-registration device readiness process. IT admins can now head to the new "Not registered" tab to track devices that don’t meet the prerequisites for Windows Autopatch. Moreover, the "Not ready" tab shows a list of devices with conflicting Windows Update policies. Windows Autopatch gets new Reporting capabilities Last but not least, Microsoft has made it possible for IT admins to create reports (such as update status and update history) for devices enrolled in Windows Autopatch... . --- ### Microsoft's New eCDN Enhances Live Video Streaming in Teams - Published: 2022-09-07 - Modified: 2022-09-07 - URL: https://petri.com/microsofts-ecdn-live-streaming-teams/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has launched a new WebRTC-based enterprise content delivery network (eCDN) solution. The new standalone offering is a result of Microsoft’s acquisition of Peer5 in August 2021, and it optimizes network performance to enhance live video streaming in Microsoft Teams. Microsoft Teams has become a popular tool for conducting large corporate webcasts and org-wide training sessions in enterprise environments. The company says that live broadcasts are critical for engaging with employees in the new hybrid work era. However, these live events require higher bandwidth and could lead to connection failures, poor video quality, and eventually, a lack of productivity. Microsoft eCDN helps IT admins address these challenges by alleviating congestion in corporate networks. This should help to ensure an enhanced video streaming and broadcasting experience for a large audience. “Microsoft eCDN does this by optimizing network performance for video streaming within an enterprise network. Using browser-based technology, with no additional installation required, Microsoft eCDN allows each viewer to strengthen the network for additional viewers,” the company explained. You can see how the new Microsoft eCDN works in the screenshot below: Microsoft highlights that its eCDN solution uses fewer network resources to deliver high-quality video streams. Administrators can use analytics tools to track video/network-related issues and troubleshoot these problems before and during Microsoft Teams Live events. How to enable Microsoft eCDN Follow the steps listed below to configure Microsoft eCDN in your tenant: Login to the Teams Admin Center and head to the Live events settings page. Select Microsoft eCDN in the... --- ### Microsoft Announces New Teams Rooms Pro and Basic Plans - Published: 2022-09-07 - Modified: 2022-09-07 - URL: https://petri.com/microsoft-announces-teams-rooms-pro/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Last month, Microsoft announced that it’s revising the pricing structure of the Teams Rooms subscriptions. The company unveiled yesterday new Teams Rooms Pro and Teams Rooms Basic offerings, which replace the existing Standard and Premium plans. Microsoft Teams Rooms Basic is a free tier designed to meet the needs of small and medium-sized businesses. It offers basic meeting experiences for Teams Rooms devices, including support for scheduling/joining meetings and content sharing. However, the Basic license doesn’t include advanced management and hybrid meeting features. According to Microsoft, Teams Rooms Basic is bundled free with the purchase of a Teams Rooms device. Moreover, IT admins can only assign up to 25 Basic licenses to users in their tenant. "A Teams Rooms Basic license can be used to license a single certified Teams Rooms device in a room. If you want to log into more than one device in a room using the same resource account (for example, a Teams Rooms console, a Surface Hub, and a Teams panel), you need to use a Teams Rooms Pro license," the company explained. Microsoft Teams Rooms Pro is now available at $40 per user/month The Microsoft Teams Rooms Pro plan includes all the existing features available for the Teams Rooms devices. It also brings several new meeting capabilities, such as the Front Row layout, the large gallery view, dual-screen support, bandwidth optimization, and noise suppression. There are also some engagement features like content sharing, chat bubbles, raise hand and live reactions. Moreover, Microsoft Teams Rooms... --- ### VMware Cloud on AWS Now Integrates with Amazon FSx for NetApp ONTAP > Amazon and VMware announced last week the general availability of the VMware Cloud on AWS integration with Amazon FSx for NetApp ONTAP. - Published: 2022-09-07 - Modified: 2022-09-07 - URL: https://petri.com/vmware-cloud-on-aws-amazon-fsx-for-netapp-ontap-integration/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon EFS, Amazon FSx, Amazon S3, NetApp ONTAP, VMware Cloud on AWS - Article Type: News Amazon and VMware announced last week the general availability of the VMware Cloud on AWS integration with Amazon FSx for NetApp ONTAP. This new integration builds on the latest addition to the Amazon FSx family of fully-managed and highly-performant file systems that Amazon launched last year. For those unfamiliar, VMware Cloud on AWS provides the ability to run applications across VMware vSphere-based public, private, and hybrid cloud environments by bringing VMware’s Software-Defined Data Center (SDDC) to AWS. Amazon FSx for NetApp ONTAP, on the other hand, provides fully managed shared storage in the AWS cloud with the data access and management capabilities of ONTAP, a popular enterprise data management offering. "Prior to this announcement, customers could only use VMware VSAN where they could scale datastore capacity with compute. Now, they can scale storage independently and SDDCs can be scaled with the additional storage capacity that is made possible by FSx for NetApp ONTAP," Amazon explained in the announcement. Customers have previously been able to add storage by purchasing additional hosts or by adding AWS native storage services such as Amazon S3, Amazon EFS, and Amazon FSx to virtual machines (VMs) on existing hosts. However, this new VMware Cloud on AWS integration with Amazon FSx for NetApp ONTAP provides the flexibility to add data storage by connecting to external storage without the need to purchase more hosts. Ultimately, this integration should provide a cost-effective way to incrementally add storage capacity without increasing compute expenses. VMware Cloud on AWS now integrates with Amazon FSx for NetApp ONTAP Connectivity options for the... --- ### What is PowerShell and How to Get Started With It? > PowerShell is a cross-platform object-oriented language and shell that IT Pros can use to manage computers running Windows, Linux, and macOS. PowerShell can automate tasks across thousands of computers simultaneously. Learn what PowerShell is and how to use it in this article. - Published: 2022-09-07 - Modified: 2024-03-22 - URL: https://petri.com/what-is-powershell/ - Categories: PowerShell - Tags: PowerShell, Powershell 7, PowerShell Core, PowerShell ISE, Powershell Loops, PowerShell Remoting - Article Type: Overview PowerShell is a cross-platform object-oriented language and shell that IT pros can use to manage computers running Windows, Linux, and macOS. PowerShell can automate tasks across thousands of computers simultaneously. If you’ve ever wondered what PowerShell is and what it’s for, this article aims to answer some of the most common questions you may have about Microsoft's versatile command-line shell. PowerShell's roots lie in system administration, and it's a favorite tool among IT pros to manage computers and their resources. However, we'll explain in this post how you can use PowerShell for many other tasks as well. What is PowerShell? PowerShell is a program, but the "PowerShell" name actually designates multiple things. First, it’s the name of the familiar blue-colored shell you use to execute commands. This shell is the interface used to interact with the PowerShell language. It also supports many modern programming concepts like object orientation, tab completion for parameters, command-line history, and the use of a “pipeline” to send data from one command to another. PowerShell is also the name of the cross-platform language that IT pros can use to manage computers running Windows, Linux, and macOS. The PowerShell scripting language is used to automate tasks, and we’ll share more details about that later. What's the difference between Powershell and command prompt? PowerShell is much more than a simple replacement for the Command Prompt (Cmd. exe) you see in Windows or Linux operating systems. PowerShell is a robust automation solution that comprises three main parts: A command-line... --- ### Microsoft Teams to Show Up To 49 Meeting Participants by Default - Published: 2022-09-06 - Modified: 2022-09-06 - URL: https://petri.com/microsoft-teams-49-meeting-participants/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is working on a new update that will improve the meeting experience for desktop and web users. The feature will allow users to automatically view the video feed of up to 49 participants on their screens by default. Currently, the Microsoft Teams app displays up to 9 videos during meetings. However, users in meetings with a higher number of attendees can manually enable the Large Gallery view to see all participants simultaneously. With this release, Microsoft is updating Teams to make it display the 49-person view by default without any user interaction. The company notes that the actual number of video feeds shown on the screen will depend on the specific hardware capabilities and Internet bandwidth. It will also depend on whether the user has popped out the meeting content in a separate window. According to the Microsoft 365 roadmap listing, the feature will begin rolling out to all Teams users by the end of this month. Microsoft plans to share more details about the hardware requirements in the next few weeks. Microsoft Teams to add custom backgrounds support for Citrix and VMware Microsoft has also announced some new features for VDI (virtual desktop infrastructure) environments. Microsoft Teams users on VDI for Citrix and VMware will benefit from custom backgrounds support this month. This release will let users blur their messy backgrounds or even replace them with custom backdrops. In other news, Microsoft Teams will soon enable IT admins to deploy up to 500 teams with pre-built or... --- ### Microsoft Blocks Unmanaged Azure AD Guest Accounts - Published: 2022-09-06 - Modified: 2022-09-06 - URL: https://petri.com/microsoft-unmanaged-azure-ad-accounts/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, MFA, Microsoft, News - Article Type: News Microsoft has released an update that blocks the use of unmanaged Azure AD accounts in organizations. The company has provided a set of tools to help IT admins find existing unmanaged accounts and reset their redemption status. In 2016, Microsoft introduced a self-service sign-up feature that allowed external users to sign up as guest members in managed tenants based on their email domain. This capability made it easier for guest users to access resources without an Azure AD-based identity. At the same time, it created compliance issues for several customers. “However, this sometimes means that users would create accounts in a tenant not managed by the IT department of their organization. This has several unintended consequences such as challenges with user lifecycle management, support costs due to password reset issues and information disclosure between users in the Azure Portal,” the company explained. Starting this month, it’s no longer possible to create unmanaged Azure AD guest accounts. Microsoft has released some tools to help admins detect and clean up such accounts in their tenants. The unmanaged accounts will continue to work, but will be configured to use alternative sign-up methods such as Google federation or One-Time Passcode (OTP). Microsoft releases Azure Multifactor Authentication (MFA) Server Migration Utility Additionally, Microsoft has released a new Azure Multifactor Authentication (MFA) Server Migration Utility for enterprise customers. The service lets administrators migrate MFA settings for users from the on-premises Azure Server to Azure AD MFA. It enables them to complete the MFA process without re-enrolling... --- ### How to Back Up Active Directory > In this guide, we'll explain how to back up Active Directory by performing a full server backup or a system state backup. If you're running some of your Active Directory DCs as VMs in Microsoft Azure, we'll also explain how to set up Azure Backup to protect them. - Published: 2022-09-06 - Modified: 2022-09-19 - URL: https://petri.com/how-to-back-up-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Azure Backup, Windows Server Backup - Article Type: How To In this guide, we'll explain how to back up Active Directory (AD) by performing a full server backup, a system state backup, or by using Azure backup. Active Directory is a key component of your Microsoft Windows network, and you really need to protect it by performing regular backups. It's really essential to have a backup of your Active Directory in case one of your domain controllers (DCs) fails, or any other issues prevent your users to log in to their computers. How to back up Active Directory One of the easiest ways (and least expensive) to back up Active Directory is to use the Windows Server Backup feature that comes with Windows Server (since 2016). This allows you to do manual, scheduled (automatic), and custom backups of your Active Directory database and environment. Here are the basic steps for performing a full server backup: Install Windows Server Backup program from the Server Manager dashboard. Open Windows Server Backup and Click the 'Local Backup' link on the left tree view. In the Local Backup wizard, choose 'Full server (recommended)' option. Specify the destination type (local drive or remote shared folder). Check all settings on the Confirmation Screen, then click on Backup. Voila! Check all settings on the Confirmation Screen, then click on Backup. Voila! Keep reading to get more details about how to back up Active Directory with Windows Server Backup! Is it necessary to back up Active Directory? Regardless of your environment, and how many Active Directory domain controllers (DCs) you have,... --- ### ESPC22 Conference Discount for Petri Readers - Published: 2022-09-06 - Modified: 2024-11-19 - URL: https://petri.com/espc22-conference-discount-for-petri-readers/ - Categories: Azure, Microsoft 365, SharePoint - Tags: Microsoft 365, Microsoft Azure, Office 365, SharePoint - Article Type: Overview It’s time for you and your team to take a short break from your busy work demands and deadlines to refresh, revitalize and invest in yourselves at ESPC22, Nov 28 – Dec 1 - Europe's premier Microsoft technologies conference. ESPC22 offers you the choice of 9 expert-led full-day Microsoft 365 and Azure tutorials. This is a real chance to dive deep into your chosen topic while learning from some of the industry’s foremost speakers. With 4 Microsoft Corporate Keynotes and 120+ sessions catering to a wide variety of levels, topics and interests, there is value for each team member to gain at ESPC22. Spend dedicated time with your teammates digesting the latest Microsoft technologies advancements and learning key skills to help you succeed together faster. 4 Microsoft Corporate Keynotes at ESPC22 Take a trip to ESPC22 to refuel your energy, spark inspiration, build your professional network, enhance your skillsets, find better ways of working, stay up to date and most of all enjoy some team bonding. Don’t worry, ESPC22 is not all work and no play! Delegates will be able to attend a variety of social activities including EXPO Drinks, networking lunches, SharePint and more. Details on the exclusive ESPC22 party night will be revealed shortly. Act fast and secure your Early Bird Tickets before Sep 29th. Petri readers can enjoy a 10% Discount Code. Simply enter ESPC22Petri at checkout. Early bird tickets for ESPC22 P. S. We are delighted to announce the return of the ESPC Community Awards. The aim... --- ### What’s New with Windows – August 2022 - Published: 2022-09-06 - Modified: 2022-09-06 - URL: https://petri.com/whats-new-windows-august-2022/ - Categories: Windows 10, Windows 11 - Tags: Microsoft Edge, Windows 10, Windows 11, Windows Insider, Windows Subsystem for Android - Article Type: News August was relatively quiet as Microsoft prepares to begin rolling out Windows 11 22H2 in the coming month or two. But nevertheless, there are some important updates to Windows 11 on Arm, the Windows Subsystem for Android, and Insider builds. So, let’s get started. Microsoft Edge 104 released and new sidebar rolling out Microsoft released a new version of its Edge browser to the stable release channel, version 104. The update brings an option to import Chrome data when you open Edge for the first time, regardless of whether Chrome is installed on your device. This feature works by letting users log into their Google account to import Chrome favorites and passwords etc. Edge’s enhanced security mode, which is disabled by default and runs some sites without just-in-time (JIT) JavaScript compilation, gets new support for Hardware Enforced Stack Protection, Arbitrary Code Guard (ACG), and Control Flow Guard (CFG). Microsoft also announced that Edge is getting a new sidebar. While it wasn’t part of version 104, it has been rolling out to users during August. The bar gives users access to Bing, Outlook. com emails, and games. Updated release notes for Edge 104 state: “The Microsoft Edge sidebar lets users access Microsoft Edge features side-by-side with their browsing window. Available features include Discover, Bing search, Outlook, Office, Games, and Tools such as a unit converter and Internet speed test” Users can enable or disable the sidebar in Settings. There’s also a new policy that allows IT departments to block access to... --- ### Register Now for Petri’s GET-IT Virtual Desktop Infrastructure Conference - Published: 2022-09-05 - Modified: 2022-09-07 - URL: https://petri.com/register-vdi-conference/ - Categories: GET IT - Tags: Activities, Azure Virtual Desktop, cloud computing, VDI - Article Type: News As more organizations look to consolidate infrastructure in the cloud, Petri is hosting a 1-day conference in September where industry experts will guide you through the technologies and best practices for deploying VDI in the cloud and migrating an on-premises VDI to Azure. Conference sessions and speakers The lineup of speakers for the conference includes Microsoft Certified Trainer, Dean Ellerby, who will be kicking things off with a look at the differences between Windows 365 and Azure Virtual Desktop, and how to choose the best solution for your organization’s needs. Neil McLouglin, who has plenty of experience with Azure Virtual Desktop in a previous life working for Microsoft, will be hosting a session on the best practices you should follow for modernizing an existing on-premises VDI by migrating it to Azure. Including making sure you adequately plan for managing identity, storage, applications, host sizing, and much more. Conference speaker - Neil McLouglin Travis Roberts, a Cloud Infrastructure Architect at RBA Consulting, Microsoft MVP and MCT, will be hosting a session on how to provide a consistent user experience with FSLogix, whether users are logging into persistent or shared desktops. FSLogix is a technology that was acquired by Microsoft and is now part of Azure Virtual Desktop. It provides a portable user profile container that moves with the user, allowing organizations to configure customized, user-based access to applications. Conference speaker - Travis Roberts Vadim Vladimirskiy will be looking at strategies you can use to reduce the cost of Azure Virtual Desktop... --- ### Latest Visual Studio Code Update Brings Merge Editor Improvements and Snap Layouts Support - Published: 2022-09-02 - Modified: 2022-09-02 - URL: https://petri.com/latest-visual-studio-code-update-brings-merge-editor-improvements-and-snap-layouts-support/ - Categories: Visual Studio - Tags: development, News, Visual Studio Code - Article Type: News Microsoft has announced the release of version 1. 71 of its Visual Studio Code editor. The latest update brings some improvements for the merger editor, UI changes, and support for snap layouts on Windows 11. With this release, developers can now click the "Open in Merge Editor" button to quickly switch between the text and merge editors while resolving file conflicts. Microsoft has also made it possible to activate the old conflict decorators with a single click. "The old inline conflict decorators are no longer disabled, so the merge editor and inline experience can be used together. When the merge editor opens, you can get the previous experience with a single click in the editor toolbar," the company explained. OPENING THE MERGE EDITOR FROM FILES WITH CONFLICTS Additionally, Microsoft has introduced support for a couple of new FFmpeg codecs. In addition to the FLAC codec, the FFmpeg library in VS Code also supports WAV, H. 264, Vorbis, MP3, VP8, as well as Ogg. This release will enable developers to playback more audio and video file formats. Visual Studio Code 1. 71 makes it easier to rename files with keyboard shortcuts. Once the rename action has started, developers can press the F2 key to switch between the file name, extension, or entire selection. The company has released a new Code Action control UI that makes it easier to find required actions. It is also possible to view additional information, such as finding the reason for disabled Code Actions. Visual Studio Code gets Window controls... --- ### Understanding Network Basics: What is TCP, Subnetting, and More - Published: 2022-09-02 - Modified: 2022-10-17 - URL: https://petri.com/what-is-tcp-subnetting/ - Categories: Networking - Tags: Internet, Network, networking, subnetting, TCP/IP - Article Type: Overview In this article, we'll explain the basics of networking, networking architecture, networking types, and networking security. We'll also detail what is TCP, subnetting, and all other core networking technologies you should know about. Sharing data and resources between individuals, and across industries and countries, is a significant part of daily life. Establishing a computer network provides a reliable solution for exchanging resources, though it can be quite complex if you don't have sufficient knowledge about core networking technologies. What is TCP? The TCP or Transmission Control Protocol is the standard communication protocol used to enable data communication over a network between devices. It's one of the core pillars of the Internet protocol suite, alongside the Internet Protocol (IP) and the User Datagram Protocol (UDP). We commonly use TCP/IP to refer to the Internet protocol suite. HTTP is another important networking protocol used to receive information on the public Internet. It can transfer data in various formats like video, audio, hypertext, and more. We'll share more details about how the Internet works later. What is a computer network? A computer network is a group of computers and other devices that are interconnected either through cables or Wi-Fi. The connected devices can send and receive data and share resources. The network involves hardware components like switches, routers, cables, and wireless access points. And software components like operating systems. The computer network facilitates you to communicate effectively and share software and databases among computers and other devices. The existence of the Internet, live-streaming, e-commerce, etc. , depends on the computer network.   Computer networks and the Internet The Internet is a type of computer network (WAN) that... --- ### Microsoft to Let Admins Temporarily Pause Exchange Online Basic Auth Deprecation - Published: 2022-09-02 - Modified: 2022-09-02 - URL: https://petri.com/microsoft-exchange-online-basic-authentication/ - Categories: Exchange Online - Tags: Exchange Online, News - Article Type: News Microsoft is once again notifying customers that it will finally disable basic authentication support in Exchange Online starting October 1, 2022. The company is also giving organizations an option to pause the deprecation of select email connection protocols until the end of this year. In 2019, Microsoft first announced its plans to retire basic authentication to protect Exchange Online customers from password spray attacks. This change will affect select protocols such as RPC, MAPI, IMAP, POP, Exchange Web Services (EWS), Offline Address Book (OAB), Remote PowerShell, and Exchange ActiveSync (EAS). However, there is an exception for the SMTP AUTH protocol. Microsoft has been reminding users about this end-of-life date for quite some time and also encouraging them to plan migrations to modern authentication. Despite all the warnings, hundreds of customers are either unaware or not yet ready for this configuration change. The impending retirement of basic authentication will prevent them from connecting to mailboxes with an HTTP 401 error. Summary of timelines and actions Microsoft gives the last chance to re-enable Exchange Online Basic Authentication To address this issue, Microsoft has decided to let customers request a three-month extension for using basic authentication in their tenant. This means that IT admins will be able to re-enable one or more of the affected protocols via the self-service diagnostic tool. These protocols will continue to work until December 31, but will be permanently disabled in the first week of January 2023. “This effort has taken three years from initial communication until now,... --- ### What's New for Microsoft's Power Platform – August 2022 - Published: 2022-09-02 - Modified: 2022-09-02 - URL: https://petri.com/microsoft-power-platform-august-2022-updates/ - Categories: Power Apps, Power Automate, Power Platform - Tags: model-driven apps, power apps, Power Platform, SharePoint Syntex - Article Type: News September is shaping up to be a month of working smarter and not harder. This month, Microsoft introduced their collaboration applications into model-driven Power Apps as well as inline (bulk) editing. SharePoint Syntex is also utilizing Power Automate to populate Microsoft Word templates, and Power Apps’ error handling is now a developer's dream come true. Let's dive into all the new features that landed in Microsoft's Power Platform in August 2022. Microsoft 365 collaboration controls in model-driven apps The evolution of Power Apps’ model-driven apps has been incredible over the course of 2022 – all I can say is WOW. I found the former developer interface to be chunky, clunky, and painful. Now, I’m excited to see the interface more in line with the canvas app experience. The addition of Microsoft 365 collaboration applications is the “cherry on top”.   Seeing these included will certainly make any developer’s day.   You can now create and manage tasks, set up meetings, and even send and store files for approval all within the Teams experience. The collaboration controls are now available in preview. Figure 1: Power Apps model-driven collaboration (Preview) Bulk editing of model-driven apps SharePoint users have been spoiled with the grid control experience for about a year or so, and it has finally arrived in the model-driven Power Apps world. With a click of the button, the grid will open the browser for inline (bulk) editing of the records (for those with editing permissions). This eliminates the need for the user to... --- ### AWS Launches New Cloud Region in the United Arab Emirates - Published: 2022-09-01 - Modified: 2022-09-01 - URL: https://petri.com/aws-cloud-region-united-arab-emirates/ - Categories: Amazon Web Services - Tags: AWS, Data Center, News - Article Type: News Amazon Web Services (AWS) has announced the launch of a new data center in the United Arab Emirates (UAE). Over the next 15 years, the company plans to invest around $5 billion in the country to support business growth and accelerate innovation. AWS opened its first Middle East cloud region in Bahrain in July 2019. The new data center will allow local businesses, nonprofit organizations, and governments with data residency constraints to store their data within their home country. Organizations can take full advantage of the services such as cloud computing, storage, database, networking, machine learning, analytics, IoT, and more. The press release also mentions that the new AWS region will include three availability zones, ensuring low latency for high-availability applications. The data center will help to boost UAE’s economy by creating 6,000 full-time job opportunities for the local people. The jobs should support the AWS supply chain across industries, including engineering, construction, telecommunications, and maintenance “With the launch of the AWS Middle East (UAE) Region, we are making it possible for even more customers to harness the power of the cloud to drive innovation across the UAE, while also investing in the local economy through job creation, training for highly sought-after technology skills, and education resources to further advance the UAE’s strategic priorities,” said Prasad Kalyanaraman, VP of Infrastructure Services at AWS. AWS has 87 availability zones worldwide Amazon Web Services has 87 availability zones located in 27 geographic regions worldwide. The company has been rapidly expanding its data... --- ### Microsoft's New Azure Managed Grafana Service Improves Data Visualizations - Published: 2022-09-01 - Modified: 2023-06-16 - URL: https://petri.com/microsoft-azure-managed-grafana-service/ - Categories: Microsoft Azure - Tags: Azure, Microsoft Azure, News - Article Type: News Microsoft’s Azure Managed Grafana service that launched in preview back in April is now generally available for enterprise customers. The new data visualization solution brings together charts, alerts, and logs that enable IT admins to analyze application and infrastructure telemetry data in a single dashboard. Grafana is an open-source platform that lets organizations unify, collect, and visualize data collection from their applications. Previously, Microsoft Azure customers used the open-source product to deploy Grafana in their environments. However, it was a resource-intensive process that required customers to manage everything in-house. Last year, Microsoft and Grafana Labs announced a strategic partnership to make Grafana natively compatible with the Azure cloud platform. Microsoft’s new Azure Managed Grafana service has native integrations with several cloud services, including Azure Monitor and Azure Data Explorer. It makes it possible to connect to any resource and observe all telemetry information in the Grafana dashboard. "With Azure Managed Grafana, you can seamlessly and securely connect with and scale to businesses’ existing Azure services, enhancing observability and cloud management,” Microsoft explained. Azure Managed Grafana adds new integrations with Azure services Microsoft has updated Azure Managed Grafana to version 9. 0, which adds an improved alerting tool to notify IT admins about potential technical issues. This release also brings support for an API key and zone redundancy. In addition, Microsoft has also introduced new out-of-the-box dashboards for Azure Monitor. For instance, the Availability Tests Geo Map dashboard lets IT admins monitor the availability and responsiveness of their app based on geographic... --- ### Microsoft is Investigating Azure Outage Affecting Ubuntu VMs - Published: 2022-08-31 - Modified: 2022-08-31 - URL: https://petri.com/microsoft-azure-outage-ubuntu-vms/ - Categories: Azure, Microsoft Azure - Tags: Microsoft Azure, News, virtual machines - Article Type: News Microsoft has acknowledged that customers may experience domain name system (DNS) issues while accessing some Azure cloud services. The company confirmed that the problem is specifically affecting users running Canonical Ubuntu 18. 04 on Azure virtual machines (VMs). According to Microsoft, the Azure outage started at around 2 AM ET on August 30. It impacted several Azure cloud services, including Azure Container Apps (ACA), Azure Kubernetes Service (AKS), Azure Database for PostgreSQL, Application Insights, Log Analytics, and the Azure VMware solution. "Starting at approximately 06:00 UTC on 30 Aug 2022, a number of customers running Ubuntu 18. 04 (bionic) VMs recently upgraded to systemd version 237-3ubuntu10. 54 reported experiencing DNS errors when trying to access their resources. Reports of this issue are confined to this single Ubuntu version," the company wrote on the Microsoft Azure Service Health page yesterday. Microsoft’s engineering team has already released a fix for Azure Kubernetes Service (AKS) clusters, which helped to recover most of the impacted clusters back to a healthy state. However, the auto-remediation detection didn’t resolve the issue in some AKS nodes. As a result, the Azure Kubernetes Service and Azure Container Apps services are not working properly. Microsoft advises customers to reboot impacted Ubuntu virtual machines Microsoft says that its engineers are working to fix the bug in all the clusters across Azure regions worldwide. Meanwhile, the company is recommending Ubuntu users to disable automatic security updates until the issue is resolved. However, those who have already installed the buggy Ubuntu patch should “reboot the... --- ### Microsoft Teams to Let Admins Deploy Up To 500 Teams Using Templates and PowerShell - Published: 2022-08-31 - Modified: 2022-08-31 - URL: https://petri.com/microsoft-teams-deploy-500-teams/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that will enable IT admins to deploy and manage teams at scale. Microsoft has announced in a message on the Microsoft 365 admin center that administrators will be able to create up to 500 teams with built-in or custom templates via Teams PowerShell cmdlet. Specifically, Microsoft Teams will allow IT Pros to add up to 25 users to teams as members or owners. The upcoming update will also make it possible to add or remove members from existing teams. Moreover, admins will be able to send email notifications about the deployment status of each batch to up to 5 people. Microsoft Teams' new feature will make team management easier for IT admins According to Microsoft, the ability to create and manage large numbers of teams at a time should help to significantly reduce deployment time. It will also make it easier for organizations to meet the specific scalability needs of their organization. “Your organization may have a lot of teams that you use to drive communication and collaboration among your frontline workforce, who are spread across different stores, locations, and roles. Currently, there isn't an easy solution to deploy, set up, and manage these teams and users at scale,” the company explained on the Microsoft 365 admin center. Microsoft notes that this feature is currently under development, and it will become available for Microsoft Teams users in preview by mid-September. However, keep in mind that the timeline is subject to change. Microsoft is... --- ### Microsoft's Arm-based Azure VMs with Ampere Altra Chips Are Now Generally Available - Published: 2022-08-31 - Modified: 2022-08-31 - URL: https://petri.com/microsofts-arm-azure-vms-ampere-altra-chips/ - Categories: Azure, Microsoft Azure, Virtualization - Tags: Microsoft Azure, News, virtual machines, Windows, Windows 11 - Article Type: News Microsoft launched a preview of Arm support on Azure virtual machines (VMs) in April this year. Now, the company has announced that the Ampere Altra Arm-powered Azure VMs would become generally available on September 1. Microsoft claims that the Arm-based virtual machines deliver up to 50 percent better performance than similar instances running on x86 processors. Customers have used the VMs for running computing workloads such as open-source databases, web and application servers, Java and . NET applications, microservices, media servers, and gaming. Customers will be able to include the ARM-based instances in Kubernetes clusters managed using the Azure Kubernetes Service (AKS). "The general availability of Microsoft Azure VMs on Arm marks an important milestone in redefining what is possible in cloud computing. Through market-leading scalable efficiency and the liberty to innovate, Arm Neoverse is enabling Azure customers to embrace the increasing diversity of workloads with better overall TCO and cleaner cloud service operations," said Chris Bergey, Senior VP and GM, Infrastructure Line of Business, Arm. Microsoft's Arm-based Azure VMs memory-intensive workloads The Azure Arm-based VMs feature up to 64 virtual CPU cores, 8 GB of memory per core, and 40 Gbps of networking bandwidth. These VMs also support local and attachable SSD storage, including Standard SSDs, Standard HDDs, Premium SSDs, and Ultra Disk Storage. Moreover, IT admins will be able to use Azure Monitor and Azure Backup to monitor the health data and performance metrics of the VMs. Microsoft says the new ARM-based VMs will be accessible in 10 Azure... --- ### How to Install Grammarly for Word and Outlook > Here's how to install Grammarly for Word and Outlook, a popular AI-powered writing assistant that can help users check spelling, punctuation, grammar, clarity, and improve their writing style. - Published: 2022-08-31 - Modified: 2022-09-02 - URL: https://petri.com/grammarly-for-word-outlook/ - Categories: Microsoft 365 - Tags: Microsoft 365, Office, Office 365, Outlook, Word - Article Type: How To In this article, we'll explain how to install Grammarly for Word and Outlook and why it can be a great writing assistant for both students and professional writers. Grammarly is a popular AI-powered writing assistant that allows users to check spelling, punctuation, grammar, clarity, and writing style in their documents. How to install Grammarly for Word and Outlook Grammarly is available as a browser extension, desktop and mobile application, and an add-on for Microsoft Office. On all these platforms, the add-in can provide real-time suggestions that can help to improve readability, flow, vocabulary, and coherence. To install Grammarly, go to the official Grammarly website and click the Get the add-in button to download the free Grammarly plugin for MS Office. Once the download is complete, double-click on the GrammarlyAddInSetup. exe file to begin the installation process. Now, click the Get Started option in the installation window. Select the check box next to Grammarly for Word and Grammarly for Outlook and click the Install button. The installation will take a couple of minutes, and users will see a confirmation message. Click the Finish button. Once you start using Grammarly in Word or Outlook, the add-in will automatically review the text and provide suggestions to fix grammar or spelling issues. Users can click on the text in the document/email message or in the Grammarly pane to accept each suggestion. There is also an option to click the “Dismiss” button to reject suggestions and keep the original text. How to use Grammarly with... --- ### Microsoft Adds New To Do Integration to Outlook for Windows - Published: 2022-08-30 - Modified: 2022-08-30 - URL: https://petri.com/microsoft-to-do-integration-outlook-for-windows/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook, Outlook for Windows - Article Type: News Microsoft has started rolling out a new update for Outlook for Windows. The latest release brings a new integration with the Microsoft To Do service, allowing users to access their tasks and lists right from their Outlook app. Microsoft To Do is a cloud-based task management service that lets users stay organized and manage their day-to-day tasks. The Outlook web app already has a To Do shortcut, and the shortcut will now be available besides the Mail, Contacts, Calendar, and Tasks options in Outlook for Windows. “We’re excited to announce that To Do is rolling out to Outlook for Windows for the Current Channel users (starting with Current Channel version 2207). With this release, you can use the To Do app right from Outlook for Windows to plan your work and commitments effectively and stay focused on the tasks at hand,” the company explained in a blog post. Outlook for Windows can now convert flagged emails to To Do tasks Microsoft highlights that the latest update lets users automatically turn flagged emails into tasks. It should help users to follow up on important emails directly from the To Do tab in Outlook for Windows. Users can enable the flagged email list feature by heading to To Do Settings >> Connected Apps and turning on the Flagged email toggle. The new Microsoft To Do integration in Outlook also syncs with Planner. Users will be able to find and manage all tasks assigned to them in the Assigned to me list. Microsoft... --- ### How to Create And Connect to an AWS RDS MySQL Database > If you want to deploy MySQL databases in the cloud, this guide explains how to create and connect to an AWS RDS MySQL database. Amazon RDS is a scalable solution that lets you do that in minutes, and you’ll only need to pay for what you use. - Published: 2022-08-30 - Modified: 2022-08-30 - URL: https://petri.com/how-to-connect-aws-rds-mysql/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, MySQL, RDS - Article Type: How To In this guide, we’ll explain how to create and connect to an AWS RDS MySQL database. Amazon RDS is a service that lets you easily set up and configure relationship databases with various types of database instances in the Amazon Web Services cloud. With Amazon's relational database service, you don’t have to manage databases on-premises. There’s no need to manage servers, operating systems, software, and install databases. Amazon handles all the installation and management tasks for you. If you want to deploy MySQL databases in the cloud, Amazon RDS is a scalable solution that lets you do that in minutes. It’s free to try and you’ll only need to pay for what you use. How to create an AWS RDS MySQL database Before we get started with the creation of our MySQL RDS instance, here’s what you’ll need to use: An AWS account to use the AWS RDS service. A MySQL client to connect to our MySQL database in the AWS cloud. For this tutorial, we’ll be using MySQL Workbench. A Windows PC where we’ll install MySQL Workbench. Setting up your AWS account Let's kick off this tutorial by setting up the AWS account required to create our RDS instance. If you already have an AWS account, you can just skip to the next section. Creating an AWS account is pretty straightforward. Here are the steps that you need to follow: Navigate to the Amazon Web Services website. Click on the Create an AWS Account button. If you’re already signed into AWS,... --- ### Microsoft Changes Licensing Policies to Support Small Cloud Vendors - Published: 2022-08-30 - Modified: 2022-08-30 - URL: https://petri.com/microsoft-changes-cloud-licensing-policies/ - Categories: Azure, Cloud Computing, Google Cloud Platform - Tags: AWS, Azure, cloud computing, Google Cloud Platform, Microsoft, News - Article Type: News Microsoft has announced some important changes to its restrictive software licensing policies that should reduce the price of running Microsoft software on non-Azure clouds. The new licensing terms, which will go into effect on October 1, 2022, aim to address complaints from rival European cloud providers about Microsoft’s anti-competitive tactics. “We recognize the importance of a competitive environment in the European cloud provider market, in which smaller competitors can thrive. It is therefore critical for us to remain mindful of our responsibilities as a major technology company,” explained Microsoft CVP Nicole Dezen. Microsoft introduced some changes to its outsourcing license agreement in 2019. As a result, several European customers complained that Microsoft made it expensive to run Office, Windows, and Windows Server on non-Azure clouds such as Google Cloud Platform and Amazon Web Services (AWS). Last year, OVHcloud and some other cloud service providers filed lawsuits with the European Commission against Microsoft’s unfair licensing practices. Back in May, Microsoft President Brad Smith acknowledged that he had listened to the criticism from European vendors, and some of these claims were valid. Smith pledged to make it easier for partners and customers to run Microsoft software on competing cloud services but didn’t mention when these changes would take effect. Microsoft's new cloud licensing terms to help partners build affordable solutions In a blog post yesterday, Microsoft outlined several initiatives to help its partners build affordable solutions to support customers’ needs. Moreover, these policies should also enable partners to grow their businesses. “Partners... --- ### Microsoft Releases Windows 365 Endpoint Analytics Reports for Performance Monitoring of Cloud PCs - Published: 2022-08-29 - Modified: 2022-08-29 - URL: https://petri.com/microsoft-windows-365-endpoint-analytics-reports/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Last year, Microsoft released two new Windows 365 Endpoint analytics reports in preview to help IT admins proactively monitor their Cloud PCs. Now, the company has announced that the Resource performance and Remoting connection reports are generally available for organizations. “Resource performance and Remoting connection give admins rich, proactive, and out-of-the-box analytics on key performance metrics while enabling them to take proactive actions to improve end user performance. This not only helps improve the end user experience and Productivity Score, but also reduces support ticket volume and your total cost of ownership (TCO),” the company explained. Essentially, the Resource performance report enables IT admins to optimize RAM and vCPU usage on Windows 365 PCs in their organization. It helps to allocate resources to users based on specific needs, track performance, detect issues, and take proactive steps to address performance issues. For instance, administrators can add more computing resources to devices with low resource performance scores. Windows 365 Endpoint Analytics: Remoting connection report Meanwhile, the Remoting connection report provides insights into connection quality and how it impacts the overall user experience. It includes two important charts; round trip time (ms) and sign-in time (sec). The sign-in time history provides information on the total time taken for users to connect to the Windows 365 Cloud PCs. Moreover, the round trip time history report shows the time a packet takes from users' devices to reach Cloud PC and return to the source. Microsoft notes that the Resource performance and Remoting connection reports are... --- ### Microsoft is Sunsetting Kaizala Messaging Service in Favor of Teams in 2023 - Published: 2022-08-29 - Modified: 2022-08-29 - URL: https://petri.com/microsoft-sunsetting-kaizala-service/ - Categories: Microsoft 365, Microsoft Teams - Tags: News - Article Type: News Microsoft is getting ready to sunset its Kaizala group messaging service next year. The company has informed its partners that it plans to retire the Kaizala platform on August 31, 2023, and transition all existing customers to Microsoft Teams (via ZDNet). “Kaizala will be retired on August 31, 2023. Between now and then, current Kaizala customers will experience no change in service and may add new users to existing tenants as needed. However, as of August 26, 2022, no new tenants will be onboarded to Kaizala and new Microsoft 365 customers will be onboarded directly to Teams for chat, meetings, and calling,” Microsoft explained on the product lifecycle page. Microsoft first launched its Kaizala service as an experimental Garage project for the Indian market in 2016. It’s a secure messaging and work management app that lets users collaborate with coworkers, distributors, partners, and customers. Kaizala offers useful collaboration features such as instant messaging, meeting invites, polls and surveys, task tracking, location sharing, and more. Based on the feedback, Microsoft made the Kaizala service available to Microsoft 365 commercial customers in 2019. The company also planned to integrate Kaizala into Microsoft Teams, but it was eventually delayed due to the Covid-19 pandemic. Since then, Kaizala has been available as a standalone product as a part of some Microsoft 365 subscriptions. Microsoft provides free Teams Exploratory licenses to Kaizala users Microsoft didn’t explain why it’s shutting down Kaizla, but the service had a far smaller user base since most of its features made... --- ### Microsoft Introduces New Adoption Score Tool to Measure People and Technology Experiences - Published: 2022-08-26 - Modified: 2022-08-26 - URL: https://petri.com/microsoft-adoption-score/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has launched a new tool to help IT admins understand and optimize Microsoft 365 usage patterns within their organization. Adoption Score replaces the controversial Productivity Score dashboard and brings new features designed to support managers in generating better results from their teams. “We are pleased to introduce Adoption Score, a set of metrics and tools for Microsoft 365 admins and IT leaders to improve the everyday experiences of their workforce and to help organizations get the most out of their investment in Microsoft 365,” Microsoft explained. “The anonymized metrics in Adoption Score help IT admins understand and optimize Microsoft 365 usage patterns in support of their digital transformation journey. ” Microsoft Adoption Score brings a new Time Trends feature that helps administrators understand historical insights data across the organization. It provides metrics, insights, and recommendations to measure people and technology experiences. The people experiences show how the organization uses Microsoft 365 capabilities to improve communication, content collaboration, mobility, teamwork, and meetings. Adoption Score provides metrics for these categories across Microsoft Teams, OneDrive, Exchange, SharePoint, PowerPoint, Word, Yammer, Skype, Excel, Outlook, and OneNote. Moreover, the technological experiences give insights into areas that can help to improve user experiences with Microsoft 365 apps. Adoption Score measures the experiences across three categories endpoint analytics, network connectivity and Microsoft 365 apps health. Microsoft Adoption Score ensures user privacy In 2019, Microsoft released a Productivity Score feature that was heavily criticized by privacy advocates. They warned that it's a workplace surveillance tool that lets organizations... --- ### LastPass Confirms Internal Source Code Compromised in Security Breach - Published: 2022-08-26 - Modified: 2022-08-26 - URL: https://petri.com/lastpass-source-code-compromised-breach/ - Categories: Security - Tags: Hacking, News, Password Management, Security - Article Type: News LastPass has announced that its development environment was recently compromised in a security breach. The password manager maker detailed in a blog post that hackers had stolen their internal source code and technical documentation. LastPass is a popular password manager that allows users to store their credentials and personal information in an encrypted vault. It also makes creating secure and unique passwords for their online accounts easier. LastPass secures information and syncs to any mobile device or computer. The password manager has more than 25 million users and 80,000 business customers worldwide. Karim Toubba, the CEO of LastPass, explained that the security incident took place about two weeks ago. The threat actors used a compromised developer account to gain unauthorized access to their systems. They managed to steal some proprietary source code and technical documentation. The company contained the security breach, deployed mitigations, and contacted cybersecurity experts for a detailed investigation. LastPass says users’ master passwords or password vaults are still safe LastPass claims there is no evidence that the security incident breached customer data, master passwords, or encrypted password vaults. At this point, users and IT administrators are not required to take any action to secure their password vaults. “In response to the incident, we have deployed containment and mitigation measures, and engaged a leading cybersecurity and forensics firm. While our investigation is ongoing, we have achieved a state of containment, implemented additional enhanced security measures, and see no further evidence of unauthorized activity,” explained Karim Toubba. It’s great... --- ### What is the Microsoft Teams Exploratory License, And When Should You Use It? > The Microsoft Teams Exploratory experience is a free trial license that organizations can use to get started with Office 365. In this article, we'll explain why it can be a great option for customers who want to evaluate the Teams in their organization. - Published: 2022-08-26 - Modified: 2022-08-26 - URL: https://petri.com/microsoft-teams-exploratory/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams - Article Type: Overview The Microsoft Teams Exploratory experience is a free trial license that Microsoft has implemented to help new businesses and startups to get started with Office 365. It gives access to all the same features as Microsoft Teams, but with a limited number of users. In this article, we'll explain why the Teams Exploratory experience can be a great option for customers who want to evaluate the app in their organization. What is the Microsoft Teams Exploratory experience? The Microsoft Teams Exploratory experience is a free version of Microsoft Teams. It allows you to test the software for 12 months and learn how it works before purchasing a paid license. Microsoft Teams is a versatile communication and collaboration tool that the company launched in 2017. It's currently used by over 200 million users worldwide including companies such as Coca-Cola and Monsanto, which have all praised its benefits. Microsoft designed this new communication app a single platform where users can chat, share files, and collaborate on projects. It's simple enough that even non-technical users can get the hang of it quickly, but power users can also set up automated notifications or bots to automate repetitive tasks. What's included in the Teams Exploratory experience With a Microsoft Teams Exploratory license, you can access all the enterprise-grade features of Teams as well as various Office 365 services, including: Exchange Online (Plan 1)Flow for Microsoft 365 or Office 365Insights by MyAnalyticsMicrosoft Forms (Plan E1)Microsoft PlannerMicrosoft SearchMicrosoft StaffHubMicrosoft Stream for Microsoft 365 and Office 365... --- ### Report: Microsoft and Amazon Halt Plans to Build New Irish Data Centers Amid Power Shortages - Published: 2022-08-25 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-amazon-halt-irish-data-centers/ - Categories: Cloud Computing, Data Management - Tags: Amazon, cloud computing, Data Center, Microsoft, News - Article Type: News Microsoft and Amazon have reportedly halted their plans to build new data center projects in Dublin. According to a report from The Times, the companies are exploring alternative locations because the state-owned electricity grid operator EirGrid imposed a ban on new connections due to power constraints. Last year, Microsoft received permission to open two new data centers in the Grange Castle Business Park in Dublin. Previous reports revealed that the company initially planned to complete this project in 2023. Meanwhile, Amazon planned to build a site in the region, but EirGrid has yet to grant licenses to connect to Ireland’s grid station. A spokesperson from EirGrid told The Times that it no longer provides licenses for new grid connections in the Dublin area. This decision was made following Ireland's Commission for Regulation of Utilities (CRU) issued directives in November 2021. “EirGrid is now applying these criteria to all data center applicants, many of which have decided not to progress their developments,” the spokesperson said. Microsoft and Amazon plan to open new data center facilities in London Consequently, Amazon has decided to open its data center near London instead. Microsoft has also started exploring alternative locations in London, Madrid, and Frankfurt. The report states that EirGrid is not expected to grant new grid connections until 2028, and it had to postpone a data center project in Dublin due to a lack of grid connections. Microsoft and Amazon have yet to confirm or deny the news about halting new data centers in... --- ### Microsoft Teams to Support Chats with Distribution Lists and Other Groups - Published: 2022-08-25 - Modified: 2022-08-25 - URL: https://petri.com/microsoft-teams-chats-distribution-lists/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that will enable users to start a group chat by inviting members of distribution lists, Microsoft 365 groups, or mail-enabled security groups. The feature will respect the limit for a group chat membership, which is currently set to 250 people. A distribution group (also known as a distribution list) is a list of email addresses bundled into a single contact. It lets users send emails to a group of people without typing each email address separately. Moreover, mail-enabled security groups are used to give users access to resources such as SharePoint. As of today, Microsoft Teams lets users create tags to ping a specific group of people within a group chat, but tag management could be challenging in particular scenarios. The upcoming update will let users choose a distribution list to broadcast information and send notifications within Teams. This should make it easier to organize chats based on a particular discussion subject, such as marketing, sales, and support. “Organizations rely on Distribution Lists (DLs) as a tool to create groups of users that mirror organizational knowledge and workflows. Bringing this awareness to target audiences for specific content will enhance the core Teams experience. Allowing our customers to leverage DLs can increase workflow efficiency and bridge the gap between legacy knowledge of organization structure and a new Teams structure,” the company explained on the Microsoft 365 admin center. Microsoft Teams will let users chat with distribution lists in September Overall, the new feature should... --- ### Get Free AWS Training at AWS Innovate on September 28 > AWS Innovate is a one-day virtual event that’s scheduled for Wednesday, September 28, 2022. The event will offer five different tracks with 30+ business and technical sessions for IT pros interested in developing their skills. - Published: 2022-08-25 - Modified: 2022-08-25 - URL: https://petri.com/aws-innovate-conference-september-28/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Amazon Web Services, AWS, AWS Innovate - Article Type: News If you can’t make it to this year’s AWS re:Invent conference in Las Vegas on Nov. 28 - Dec. 2 but you still want to learn more about Amazon Web Services, you might consider attending this year’s AWS Innovate conference. Unlike AWS re:Invent, which is an in-person event (and is also a bit pricy), AWS Innovate is an entirely free virtual conference. AWS Innovate is a one-day virtual event that’s scheduled for Wednesday, September 28, 2022. The conference is designed to help IT pros interested in developing the skills required to deploy and operate infrastructure and applications. The virtual event will feature various high-profile AWS execs discussing what you can do with the platform. The list of featured speakers includes Tiffany Wissner, Product Marketing General Manager, Rodrigo Gazzaneo, Storage Specialist, Ali Spittel, Developer Advocacy Manager, and more. Five different tracks with 30+ sessions at AWS Innovate This year, AWS Innovate will offer five different tracks with 30+ business and technical sessions. Questions will be answered live by AWS architects, developers, customers, and partners. The AWS Innovate 2022 tracks and sessions are the following: Track 1 – Running any type of workload in the cloud What's new with EC2? Get the best price-performance ratio for your applications with AWS GravitonMilliseconds matter: Using edge networking to turbocharge your Internet-facing applications (part 1)Milliseconds matter: Using edge networking to turbocharge your Internet-facing applications (part 2) Track 2 – Scale and innovate with AWS global infrastructure Design considerations when building highly available online applicationsPushing the boundary... --- ### VMware Carbon Black Releases Fix for BSOD and Boot Loop Issues on Windows - Published: 2022-08-24 - Modified: 2022-08-24 - URL: https://petri.com/vmware-carbon-black-bsod-boot-loop-windows/ - Categories: VMware - Tags: News, vmware, Windows 10, Windows Server - Article Type: News VMware has acknowledged a new issue with its Carbon Black Endpoint Detection and Response (EDR) solution. The company confirmed in a security advisory that Carbon Black EDR is causing blue screens of death (BSOD) and boot loops on Windows machines. Carbon Black is an incident response and threat hunting tool that uses machine learning and analytics to find, investigate, and mitigate security threats. The solution offers several incident response features and makes it easier for security teams to detect malicious activities quickly. According to cybersecurity researcher Tim Geschwindt, the BSOD bug started appearing on Windows 10 and Windows Server machines at 02:30 PM UTC yesterday. The problem currently affects devices running Carbon Black sensor 3. 7. 0. 1253 in around 50 organizations. Several users and IT admins reported on Reddit that their servers and workstations failed to boot with the “PFN_LIST_CORRUPT” error. VMware confirms Carbon Black BSOD crashes caused by a buggy update to rulesets VMware confirmed that the problem was caused by a recent update to Carbon Black's threat research rulesets. Specifically, the update was rolled out to VMware customers in the EU, Asia Pacific, and the US East regions. “Updated Threat Research rulesets were rolled out to Prod01, Prod02, ProdEU (aka Prod06), ProdSYD, and ProdNRT after internal testing showed no signs of issues,” the company explained. Fortunately, VMware has used the update rollback policy to address the issue on affected Windows PCs. The company has recommended customers to place affected devices into bypass mode via the Carbon Black Cloud Console to... --- ### Avast Gets New Ransomware Shield to Protect Small Businesses - Published: 2022-08-24 - Modified: 2022-08-24 - URL: https://petri.com/avast-ransomware-shield-small-businesses/ - Categories: Security - Tags: Antivirus, News, Ransomware - Article Type: News Avast has launched a new Ransomware Shield to protect small businesses and organizations from ransomware attacks. The new solution prevents unauthorized programs from editing, deleting, or encrypting files and folders stored on Windows and macOS devices. Avast is a popular security solution that helps users to protect their computers from malware and viruses. In addition to basic antivirus protection, it comes with a wide range of security features such as a webcam shield, password protection, device lock, sandbox, and more. Avast offers free and premium pricing plans to suit the specific needs of customers. The new Ransomware Shield works alongside the existing File Shield, Behavior Shield, and Web Shield tools in Avast antivirus. It helps businesses to add an additional level of protection for blocking malicious activities. It is possible for IT admins to choose select applications that have permission to access sensitive files on Windows and macOS devices. Avast's Ransomware Shield is enabled by default In Q2 2022, Avast security researchers detected an increase of 24 percent in ransomware attacks globally. The company found that small and medium-sized businesses (SMBs) are the biggest victims of cyber threats, including ransomware. “Small businesses are facing a growing threat from ransomware, with cybercriminals increasingly targeting smaller organizations to encrypt crucial business data and disrupt operations. The results can be devastating for small businesses that lack the financial and technical resources to rebound from such attacks,” explained Filip Hlinka, VP of Product at Avast. Avast says that the new Ransomware Shield is enabled... --- ### Microsoft Makes Teams Voice and Video Calling Features Available to Custom Business Apps - Published: 2022-08-24 - Modified: 2022-08-24 - URL: https://petri.com/microsoft-makes-teams-voice-and-video-calling-features-available-to-custom-business-apps/ - Categories: Microsoft Azure - Tags: Microsoft Azure, News - Article Type: News Microsoft has announced the general availability of Azure Communication Services (ACS) for Teams. The new service enables developers to integrate Microsoft Teams capabilities within their custom business applications with just a few lines of code. Microsoft's Azure Communication Services first launched in public preview back in 2020. The goal of this release was to provide customers and partners with the same audio, video, chat, and screen-sharing features that power Microsoft Teams. Microsoft highlights that developers can use the integrated services to build apps for various scenarios such as healthcare, call centers, retail, and education-specific apps. It should eliminate the need to switch between business apps and Teams while collaborating with external partners and colleagues. “With Azure Communication Services, our goal is to continue to help businesses transform their communication experiences to meet the needs of their customers and their employees. More specifically, Azure Communication Services interoperability with Microsoft Teams provides the flexibility and scalability needed to build custom app experiences that connect people to the Teams platform, getting more value out of their communication investments,” the company explained. According to Microsoft, this release enables developers to bring calling features into low-end devices that lack native support for the Microsoft Teams desktop client. It also helps to implement workflows that need custom management of Teams phone calls. Microsoft releases two SDKs for Azure Communication Services Developers can use Azure Communication Services APIs along with Microsoft Graph API features. This capability makes it possible to add and manage chats, channels, and meetings,... --- ### How to Configure Windows Autopatch: A Step-by-Step Guide > In this guide, we'll show how to get configure Windows Autopatch, a new Microsoft service that manages the automated patching of Windows, Microsoft 365 apps for Enterprise, Microsoft Edge, and Microsoft Teams in your organization. - Published: 2022-08-24 - Modified: 2022-08-25 - URL: https://petri.com/windows-autopatch/ - Categories: Microsoft 365, Windows Client OS - Tags: Microsoft Endpoint Manager, Windows, Windows Autopatch, Windows Update for Business Windows Autopatch is a new Microsoft service that organizations can use to automate the patching of Windows, Microsoft 365 apps for Enterprise, Microsoft Edge, and Microsoft Teams.  It aims to complete patching cycles within the least amount of time, whilst keeping downtime to a minimum. In this guide, we'll show you how to configure Windows Autopatch in your organization. Before we go into the details about how the service works, though, we'll briefly cover why we patch, and what we patch. What is Windows Autopatch?  There are three main reasons we patch Windows devices and apps that run on them: Security: Fixing vulnerabilities and protecting the OS from evolving threats. Quality: Fixing issues or bugs that impede the user experience. Features: New capabilities that Microsoft adds to Windows over time. These three reasons match nicely with the 2 types of updates that Microsoft provides: Quality & security udpates and Feature updates. Quality & security updates are released each month, usually on the second Tuesday of the month. Feature updates are released less regularly – roughly every 12 months. As IT pros, we typically apply patches to the Windows operating system and Microsoft 365 Apps for Enterprise: This includes apps like Word, Excel, PowerPoint, Microsoft Edge, and Microsoft Teams, as well as non-Microsoft apps that are installed on a device. As Microsoft's update services do not support patching of third-party apps, Windows Autopatch will only manage updates for the core Windows operating system, Microsoft 365 Apps for Enterprise, Microsoft Edge, and Microsoft Teams. The origins of... --- ### Microsoft Teams Gets New Facebook-Like Social Network 'Viva Engage' - Published: 2022-08-23 - Modified: 2022-08-23 - URL: https://petri.com/microsoft-teams-viva-engage/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft unveiled its plans to integrate Viva Engage within Teams at Inspire 2022. The company announced this morning that the Facebook-like enterprise social networking platform is now generally available for customers. Viva Engage is built on Yammer, and it helps employees connect with their colleagues, ask questions, and share news and strategies. It also provides several other features such as virtual events, pinned conversations, and the ability to send notifications to Outlook, Teams, and Viva Connections. Viva Engage to add storyline & stories In September, the Viva Engage app will add a storyline section that features posts, short videos, images, and other content. It should help employees to share news, achievements, and personal interests. Users will be able to see stories posts within a storyline view in the app. The stories feature will be available in public preview in the next few months. “Viva Engage also brings new features—storyline and stories—which enable employees to connect with colleagues by sharing their thoughts, knowledge, and experiences through conversations and videos. On the Storylines tab, the feed shows posts from peers and popular posts from across the network, and the Following feed lets you catch up on updates from people you follow,” the company explained. https://www. youtube. com/watch? v=r3h7d8QQghI How to get started with Viva Engage The new Viva Engage app, storyline, and stories are enabled by default for all Microsoft 365 commercial customers. Meanwhile, IT admins can head to the Teams Admin Center to deploy the app in their organization. Additionally, administrators can use Teams... --- ### Cloud Conversations – Kat Beedim on Introversion, Microsoft Inspire, and Viva Engage > In this week's Cloud Conversations episode, we welcome back our co-host Kat Beedim following her wedding in Las Vegas. We also talk about being introverted or extroverted, our highlights from Microsoft Inspire, Viva Engage, Yammer, eDiscovery Premium & searching for cloud attachments, and much more. - Published: 2022-08-23 - Modified: 2022-08-23 - URL: https://petri.com/cloud-conversations-episode-57-kat-beedim/ - Categories: Video - Tags: Cloud Conversations, eDiscovery, Microsoft Inspire, Viva Engage, Yammer - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Kat Beedim on Introversion, Microsoft Inspire, and Viva Engage Kat Beedim is a Microsoft MVP and Microsoft Solutions Specialist. She's also one of the co-hosts of the Cloud Conversations podcast and a Petri contributor. In this episode, she comes back after being married in Las Vegas, and she joins Peter to talk all about her amazing wedding experience. She also chats about: Being introverted or extrovertedHighlights from Microsoft InspireViva EngageYammereDiscovery Premium & searching for cloud attachmentsAnd much more! More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Beedim, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and... --- ### Microsoft Adds Co-Authoring Support for Protected Office Documents on iOS and Android - Published: 2022-08-23 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-co-authoring-protected-office-documents-mobile/ - Categories: Microsoft 365 - Tags: Android, Information Protection, iOS, Microsoft 365, News - Article Type: News Microsoft has announced that real-time co-authoring support for protected Office documents is now generally available on both Android and iOS devices. The feature has been available in public preview since March, allowing multiple users to collaborate seamlessly on encrypted Word, Excel, and PowerPoint files on the go. According to Microsoft, the new co-authoring feature is designed to enhance employees' productivity in hybrid and remote work scenarios. When a user edits files protected by a sensitivity label with encryption, the Office mobile apps will remove the exclusive lock and then reapply the protection when the editing session ends. The co-authoring capability is already available for Windows, macOS, and web users. “With Microsoft Purview Information Protection, we are building a unified set of capabilities for data classification, labeling, and protection not only in Office Apps, but also in other popular productivity services where information resides (e. g. , SharePoint Online, Exchange Online, and Microsoft Teams), as well as endpoint devices,” said Paras Kapadia, Principal Product Manager for Microsoft 365 Apps. You can see how co-authoring on an encrypted Office document works on an iPad and Android device in the screenshot below: How to co-author Office files protected by sensitivity labels on mobile devices Overall, the new co-authoring experience should be a welcome addition for employees who use iOS and Android tablets. To try out this feature, users will need to install the latest Office app update (or Word/Excel/PowerPoint) on Android (version 16. 0. 14931 or higher) and iOS (version 2. 58. 207 or higher) devices. However, Microsoft notes... --- ### Google to Disable Calendar Interop with Exchange Online in October - Published: 2022-08-23 - Modified: 2022-08-23 - URL: https://petri.com/google-disable-calendar-interop-exchange-online/ - Categories: Exchange Online - Tags: Exchange Online, Google, Microsoft 365, News - Article Type: News Google has announced an important configuration change for Google Workspace customers. The company recommends that organizations should enable OAuth 2. 0 to continue using Google Calendar Interop with Exchange Online after Microsoft disables Basic Authentication in October. Google Calendar Interop is a useful tool that allows Exchange Online and Google Calendar to work together. The feature lets users sync events, availability status, and calendar resources across both services to schedule meetings accordingly. Back in May, Microsoft reminded customers that it would disable Basic Authentication support in Exchange Online in October. This change will affect protocols such as POP, IMAP, RPC, MAPI, Remote PowerShell, Offline Address Book (OAB), and Exchange Web Services (EWS). The goal is to improve the security of the email service by preventing hackers from compromising user accounts with password spray attacks. Currently, the interoperability between Google Calendar and Exchange Online is available through Basic Authentication. However, Google Workspace customers who have configured this feature will no longer be able to sync calendars across both services after October 1, 2022. Google urges customers to upgrade to OAuth 2. 0 to avoid disruptions Google advises that organizations using Basic Authentication should switch to modern authentication (OAuth 2. 0 token-based authorization) to avoid disruptions. IT admins can configure OAuth 2. 0 within Google Calendar Interop by heading to Admin console >> Apps >> G Suite >> Settings for Calendar >> Calendar Interop Management. It is important to note that the end of Basic Authentication support will be rolled out gradually to all Exchange Online... --- ### How to Recover Your PC Using System Restore on Windows 10 > In this guide, we'll show you how to use System Restore on Windows 10 and fix potential issues by going back to a previous restore point. We'll also explain how to address the various problems that can be encountered during the restore process. - Published: 2022-08-23 - Modified: 2025-02-03 - URL: https://petri.com/system-restore-windows-10/ - Categories: Windows 10, Windows Client OS - Tags: Backup, backup and recovery, Backup and Restore, backup tool, System Restore, Windows 10 - Article Type: How To System Restore on Windows 10 is a crucial backup feature included in the OS. It lets you create restore points before installing any new apps, drivers, and Windows updates. If something you installed on your PC starts causing issues, you'll always have the option to go back to a previous restore point and get your PC back up and running. In this guide, we'll show you how to use System Restore on Windows 10 and how to manage your different restore points. We'll also explain how to address the various problems that can be encountered during the restoration process. How to use System Restore on Windows 10 Well, we've got a decent idea of what System Restore is and what it's used for. Let's go through all the steps to make sure the feature is enabled, check the configuration options, show how to take a manual snapshot aside, and then go through a restore operation ourselves. I'll also show how you can choose which restore point to use, how to restore individual files and folders, and explain the other system triggers that warrant an automatic snapshot procedure. How to access and turn on System Restore on Windows 10 There are a few methods of opening the System Restore GUI in Windows 10. The fastest way (in my opinion) to access it is to click the Start button and type in 'recovery. ' Choose the 'Recovery' Control Panel item, and the 'Advanced recovery tools' menu opens up. Opening Recovery Control Panel... --- ### Mandiant Warns Hackers Now Use New Trick to Bypass MFA - Published: 2022-08-22 - Modified: 2022-08-23 - URL: https://petri.com/mandiant-hackers-bypass-mfa/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, MFA, News, Security - Article Type: News Cybersecurity company Mandiant has discovered that hackers are using a new technique to target enterprise networks. The researchers warned that threat actors exploit multifactor authentication (MFA) to gain unauthorized access to dormant Microsoft accounts. According to cybersecurity researchers at Mandiant, the exploit is being used in hacking campaigns by APT29 to bypass authentication. APT29 is a group of elite hackers working for the Russian Foreign Intelligence Service (SVR). The cybercriminals also operate under the names Cozy Bear, the Dukes, and Nobelium. Specifically, the APT29 group is abusing the self-enrollment process for MFA in Azure AD and other platforms. The threat actor managed to access a list of emails and guess the password of an account that was initially set up but never used by the employee. The attacker was able to use this dormant account to access the VPN infrastructure of the victim. “When an organization first enforces MFA, most platforms allow users to enroll their first MFA device at the next login,” Mandiant explained. “In Azure AD and other platform’s default configuration, there are no additional enforcements on the MFA enrollment process. In other words, anyone with knowledge of the username and password can access the account from any location and any device to enroll MFA, so long as they are the first person to do it. ” How to prevent MFA takeover of dormant accounts Mandiant recommends that organizations must have security measures in place to verify a user's identity when enrolling a new device. Microsoft recently introduced a... --- ### Microsoft Acknowledges Secure Boot Fix Causes BitLocker Issues on Windows 11 - Published: 2022-08-22 - Modified: 2022-08-22 - URL: https://petri.com/microsoft-bitlocker-issues-windows-11/ - Categories: Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has acknowledged a new issue with the recent security update for Secure Boot DBX (KB5012170) and Windows 11, which causes some devices to boot into BitLocker recovery. The company explained on the Windows Health Dashboard that the bug prompts users to enter their BitLocker recovery keys at boot time. BitLocker is a drive encryption feature that is designed to protect user data on Windows PCs. Microsoft provides BitLocker device encryption support on a wide range of Windows 10 and Windows 11. The BitLocker recovery key is a unique 48-digit numerical password that lets users restore access to data stored on a protected drive. “Some devices might enter BitLocker Recovery on the first or second restart after attempting to install Security update for Secure Boot DBX ( KB5012170), released August 9, 2022. Note: This issue only affects the Security update for Secure Boot DBX ( KB5012170) and does not affect the latest cumulative security updates, monthly rollups, or security only updates released on August 9, 2022,” the company explained. Source: The Register Microsoft has provided a temporary workaround solution to address the problem on affected machines. Users who have already installed the KB5012170 update will need to enter the BitLocker Recovery key on Windows start-up. They can follow this step-by-step guide to find their BitLocker recovery key in Windows. Meanwhile, users who have yet to install KB5012170 or restart their Windows PCs after deploying the update are advised to temporarily disable BitLocker by following these steps: Run Command Prompt as... --- ### Microsoft Defender for Endpoint Adds Network and Web Protection on macOS and Linux - Published: 2022-08-22 - Modified: 2022-08-22 - URL: https://petri.com/microsoft-defender-endpoint-network-web-protection-macos-linux/ - Categories: Endpoint Management, Security - Tags: linux, macOS, Microsoft Endpoint Manager, News - Article Type: News Microsoft has released a new update for its Microsoft Defender for Endpoint solution. The latest release brings the network and web protection features that first launched on Windows to macOS and Linux machines. Network protection is a feature that enables organizations to reduce the attack surface of their Linux and Mac devices against web threats such as exploits and phishing scams. This capability is already supported on Windows 10 or 11 PCs (running Pro or Enterprise editions). It uses Microsoft Defender SmartScreen to prevent employees from accessing malicious websites through apps. Microsoft Defender for Endpoint uses network protection to show indicators of compromise to help security teams detect sophisticated attacks. “When an end user attempts to access monitored domains on macOS/Linux, their navigation effort will be audited/blocked (depending on Network Protection policy). On macOS, the user will also be informed by Microsoft Defender for Endpoint via toast,” the company explained. Microsoft Defender for Endpoint now protects devices from web threats Meanwhile, the web protection feature protects devices against web-based threats and malicious content. It comes with web content filtering, web threat protection, and custom indicators to help IT admins with investigations. It’s also possible to configure Allow, Block, and Warn policies for specific domains and IPs. Microsoft notes that the security features are currently available in preview for devices running macOS version 11 (Big Sur). These capabilities are also supported on popular Linux distributions, including Ubuntu, Fedora, and Red Hat. You can find the full list on this support page. If... --- ### Google Cloud Mitigated a Record-Breaking HTTPS DDoS Attack - Published: 2022-08-19 - Modified: 2022-08-19 - URL: https://petri.com/google-cloud-blocks-ddos-attack/ - Categories: Google Cloud Platform - Tags: DDOS, Google Cloud, Google Cloud Platform, News, Security - Article Type: News Google has announced that it blocked the largest distributed denial-of-service (DDoS) attack. The attack peaked at 46 million requests per second (rps), which is 76 percent larger than the previous DDoS attack that targeted Cloudflare in June. The company explained in its blog post that the HTTPS DDoS attack began targeting one of its Google Cloud customers at around 09:45 AM PT on June 1. The attackers initially directed 10,000 rps toward the victim’s HTTP/S Load Balancer, and the number increased to 100,000 rps within eight minutes. The attack peaked at 46 million rps when it reached the ten-minute mark. According to Google’s security researchers, the Cloud Armor Adaptive Protection service detected the signs of a threat, notified the customer, and suggested a rule to block the malicious signature configured in their security policy. The DDoS attack finally started to slow down and ended at 10:54 AM PT. “The attack leveraged encrypted requests (HTTPS) which would have taken added computing resources to generate. Although terminating the encryption was necessary to inspect the traffic and effectively mitigate the attack, the use of HTTP Pipelining required Google to complete relatively few TLS handshakes,” Google explained. Google detailed that the record-breaking DDoS attack was launched from a relatively small botnet delivered via 5,256 source IP addresses spread over 132 countries. The attack on the Google Cloud customer was carried out with HTTPS requests. In comparison to the HTTP counterparts, these attacks are more expensive because they require more computing power to create secure... --- ### How to Share Files in Teams (And Understand Where They Are Stored) - Published: 2022-08-19 - Modified: 2023-01-20 - URL: https://petri.com/how-to-share-files-in-teams/ - Categories: Microsoft 365, Microsoft Teams - Tags: cloud computing, Microsoft Teams - Article Type: How To In this article, I will show you how to share files in Teams. Not only that, but I will also explain how file sharing in Microsoft Teams actually works and where your files are stored after you share them. For those of us who learned how to use a computer before the cloud era, the concept of sharing files in the cloud can be a little confusing. You might be used to knowing exactly where your files are stored. For example, in your My Documents folder on your PC's system drive. So, today I’m going to demystify where Teams stores your files when you share documents in chats and channels. How to share files in Teams one-to-one or groups chats The process of sharing files in Teams channels and chats is basically the same. But there are a couple of minor differences. Bear in mind that external guest users cannot upload files to a chat. When you upload a file from your local computer to a Teams chat, it is stored in the Microsoft Teams Chat Files folder in your personal OneDrive for Business. Share a file from your local computer You can share a file from your local computer by dragging the file to the message box in Teams or by clicking the attach icon below the message box. Method 1 – drag and drop Drag and drop the file you want to share from your desktop or File Explorer. Open File Explorer by pressing WIN + E... . --- ### 5 Tips for Using the Microsoft Teams Admin Center > In this article, I'll give you 5 tips to help you manage the Microsoft Teams admin center as efficiently as possible in your organization. Learn how to customize messaging policies, manage external access, create templates for your teams, and more. - Published: 2022-08-19 - Modified: 2022-08-19 - URL: https://petri.com/microsoft-teams-admin-center-tips/ - Categories: Microsoft 365, Microsoft Teams - Tags: Admin Center, Microsoft 365, Microsoft Teams, Teams - Article Type: Overview The Microsoft Teams admin center is a convenient tool for performing an array of administrative tasks, from creating and editing team policies and meeting settings to reassigning ownership to unowned teams. In this article, I'll give you 5 tips to help you manage the Teams admin center as efficiently as possible in your organization. What can you do with the Microsoft Teams admin center? Microsoft Teams is a popular team collaboration tool to help teams work together, share documents, and discuss ideas in a group conversation. Suppose your organization has set up teams for collaboration. In that case, you may need to review or update them from time to time. You may also need to perform remediation actions, like reassigning the owners of an ownerless team or updating meeting policies. You can accomplish such administration tasks through either a PowerShell module or the Microsoft Teams admin center. There are several Teams admin roles available to different administrators to help manage the area of Microsoft Teams they oversee. These roles include Teams Communications Support Specialist, Teams Device Administrator, and Teams Administrator. As an admin, you have the typical Global Administrator which provides access to all areas of the Teams admin center, but other team members may need more limited access to manage Teams daily. The Microsoft Teams admin center is an essential resource for IT pros working in a Microsoft 365 environment, and here are my 5 tips to help you get the most of it. Tip 1: Customize messaging... --- ### Microsoft Sysmon 14.0 Brings New Security Feature to Block Malware - Published: 2022-08-19 - Modified: 2022-08-19 - URL: https://petri.com/microsoft-sysmon-14-0-block-malware/ - Categories: Security - Tags: Microsoft, News, Sysmon 14 - Article Type: News Microsoft has announced the release of version 14. 0 of Sysmon. The latest release brings a new feature that lets IT admins prevent processes from creating harmful executable files in certain locations. System Monitor (Sysmon) is a free tool that allows administrators to monitor systems for malicious activities to detect advanced threats. It provides details about several system events like possess creations, network connections, registry activities, and file changes. IT admins can view these activities in the Windows Event Log. The latest version of Sysmon introduces a new event type called “FileBlockExecutable. ” Once enabled, the feature considers the name, path, hash, and malicious program to block the creation of executable files such as DLL, EXE, and SYS. “Sysmon now impedes executables, based on the file header from being written to the filesystem according to the filtering criteria. This can be a very powerful feature into blocking certain programs writing malicious files to disk,” the Sysinternals team explained. Here's an example that illustrates how this feature works to block malicious downloads on affected systems: Additionally, Sysmon will add an 'Event 27, Sysmon' entry in Event Viewer. Users will see valuable information in the event logs, including process id, user name, name of the malicious program, as well as details about the blocked file and its hash. Microsoft Sysmon’s new feature already bypassed The new security feature is a welcome addition that can help organizations to protect their enterprise networks from malicious payloads. However, security researcher Adam Chester has already bypassed the FileBlockExecutable... --- ### Microsoft to Reduce Price for Teams Rooms Plans in September - Published: 2022-08-18 - Modified: 2022-08-18 - URL: https://petri.com/microsoft-reduce-price-teams-rooms/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced some important pricing changes regarding Microsoft Teams Rooms plans, which will go into effect on September 1, 2022. The company is set to introduce a new Teams Rooms Pro plan for commercial customers, which will replace the existing Standard and Premium subscriptions. Microsoft Teams Rooms are certified video conferencing solutions that provide access to video meetings, chat features, voice-over-IP, and more. Currently, the Standard subscription for Microsoft Teams Rooms is priced at $15 per device per month, and the Premium license costs $50 per device per month. The core features in Microsoft Teams Rooms Pro will include AI-powered meeting features such as audio or video conferencing and multiscreen support. It will also offer device management capabilities for IT admins. At $40 per month, Microsoft believes that Teams Rooms Pro is an ideal licensing option to meet the needs of large enterprises and small companies. “It’s the appropriate license for the Enterprise segment and for smaller organizations with larger room counts or more advanced needs. Microsoft Teams Rooms Pro licenses will be listed at an estimated retail price of USD40 per room per month and made available in all channels where Standard and Premium are currently offered,” the company explained. Microsoft to introduce a free Basic tier for SMBs Microsoft has also announced that it will retire the existing Standard license in favor of Microsoft Teams Rooms Basic. The free version of the product is designed for small and medium-sized businesses (SMBs). It includes core meeting experiences such... --- ### Microsoft Adds Time-Based One-Time Passcode Support to Azure AD - Published: 2022-08-18 - Modified: 2023-07-17 - URL: https://petri.com/microsoft-entra-totp-based-mfa-azure-ad/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure AD, Microsoft Entra, News - Article Type: News Microsoft has released time-based one-time passcode (TOTP) support for Azure Active Directory (recently renamed Microsoft Entra ID) customers. The new security feature allows end users to validate their identity with temporary one-time passcodes generated by an authenticator app. Time-based password (TOTP) is one of the most popular multi-factor authentication (MFA) methods. It’s a temporary numeric passcode created by a standardized algorithm that uses the current time of the day as an input. Users are required to enter the passcode within a specific time (30 to 90 seconds) before it expires. It can help to prevent hackers from gaining access to sensitive data in enterprise environments. “Integrating a time-based OTP with an authenticator app as a second factor in B2C scenarios user flows enables a higher level of security compared to existing email and phone factors,” Microsoft explained. “This can help users by eliminating the need for users to wait for codes to arrive in email or text messaging apps. The short lifespan of OTP codes also makes them very hard for attackers to intercept. ” Time-based OTP supports all popular authenticator apps Once the TOTP-based MFA is enabled, users will need to install an authenticator app on their devices. They can use the app to scan the QR code or enter it manually while signing up or logging in for the first time. However, users will be required to enter a TOTP code that appears on the authenticator app during subsequent sign-in attempts. Microsoft notes that the security feature works with... --- ### Latest Windows Server 2022 Update Improves Protection Against Ransomware Attacks - Published: 2022-08-17 - Modified: 2022-08-21 - URL: https://petri.com/windows-server-2022-kb5016693/ - Categories: Windows Server, Windows Server 2022 - Tags: News, Windows Server, Windows Server 2022 - Article Type: News Microsoft has released the optional patch (KB5016693) for Windows Server 2022. The new cumulative update brings enhancements to the Microsoft Defender for Endpoint, storage replication, file compression, and bug fixes. First up, Microsoft Defender for Endpoint is getting some improvements that should make it better at preventing ransomware attacks on Windows Server machines. There is also a new feature that can compress all files (regardless of size) on devices with Server Message Block (SMB) Compression enabled. In addition, Microsoft has addressed a bug that caused BitLocker performance issues on Windows Server 2022. This release also brings fixes for another problem with BitLocker that previously prevented certain devices from working properly. The company has resolved bugs affecting Windows Update and Remote Desktop Session. What’s new in Windows Server 2022 build 20348. 946 Here are all the improvements and bug fixes Microsoft listed in the release notes for the KB5016693 patch: New!  Enhances Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks. New!  Compresses a file regardless of its size if you have configured Server Message Block (SMB) Compression. New!  Improves storage replication that occurs over low bandwidth or congested wide area networks (WAN). Addresses an issue that prevents the Startup Task API from working as expected for certain apps. Addresses an issue that causes Kerberos authentication to fail. The error is 0xc000009a (STATUS_INSUFFICIENT_RESOURCES “Insufficient system resources exist to complete the API”). This occurs when a client uses the Remote Desktop Protocol (RDP) to connect to a device that has enabled Remote... --- ### Microsoft Partners with Canonical to Add Native .NET 6 Support to Ubuntu 22.04 - Published: 2022-08-17 - Modified: 2022-08-17 - URL: https://petri.com/microsoft-canonical-net-6-ubuntu-22-04/ - Categories: Developer - Tags: .NET, .NET 6, Microsoft, News, Ubuntu - Article Type: News Microsoft has partnered with Canonical to bring native . NET 6 support to Ubuntu 22. 04. This update should facilitate the development of . NET applications on the popular Linux distribution. Specifically, developers can now install the . NET 6 SDK by running the "apt install dotnet6" command in the terminal to download all necessary packages. It is also possible to install ASP. NET Core and the . NET Runtime packages on Ubuntu 22. 04. “. NET as an Ubuntu . deb package is the result of a close collaboration between Microsoft and Canonical. The two companies are working together to deliver timely security patches and new releases to Ubuntu. This is the foundation for more capabilities to follow for the open-source framework on Ubuntu, for hosts and minimised container images,” said Richard Lander, Microsoft's . NET Program Manager. It is important to note that there are no ARM64 builds for Ubuntu 22. 04 yet, but Canonical plans to make them available in the near future. Currently, . NET 7 packages are not available, and developers will need to wait until it hits general availability in November. Microsoft bundles . NET 6 with Ubuntu Chiseled Containers Additionally, Microsoft has announced that . NET 6 is being bundled with Ubuntu Chiseled Containers. These Chiseled Containers enhance security by eliminating the need for a package manager and shell. The Chiseled Ubuntu image is 100MB smaller than the standard packages. It is one of the reasons that make Chisels ideal for cloud container environments. Microsoft is collaborating with Canonical to align the latest versions of . NET with... --- ### Which Azure AD Connect Versions Are Currently Supported? > We detail here the Azure AD Connect versions that are going out of support on August 31, 2022 and in March 2023. With Microsoft now retiring 2.x versions of Azure AD Connect 12 months after their release, you'll want to plan your upgrades/migrations to supported versions as soon as possible. - Published: 2022-08-17 - Modified: 2023-07-17 - URL: https://petri.com/azure-ad-connect-versions/ - Categories: Azure, Microsoft Azure, Microsoft Entra ID (Azure AD) - Tags: Azure, Azure Active Directory, Azure AD, Azure AD Connect - Article Type: Overview This article will detail the different versions of Microsoft's Azure AD Connect (AADC) sync software that are going out of support this month (August 2022) and in March 2023. If you're still using one of these soon-to-be-deprecated Azure AD (recently renamed Microsoft Entra ID) Connect versions, you'll want to plan your upgrades/migrations to supported versions of Azure AD Connect 2. x as soon as possible. Status of Azure AD Connect versions 1. x As of August 31, 2022, all 1. x versions of Azure AD Connect will be retired. The main technical reason is that they include SQL Server 2012 components and Azure AD Authentication Library (ADAL) components – these technologies will no longer be supported as of 8/31/2022. If you are running any 1. x versions of Azure AD Connect, especially in your production environments, you should certainly be knee-deep in your migration plans to the most recent 2. x versions of the software, or to the newer Azure AD Connect cloud sync. Can you keep running Azure AD Connect 1. x after August 31? Essentially, Microsoft stated earlier this year that if you're running versions of Azure AD Connect sync on the 1. x product line, the software may unexpectedly stop working. You also won't necessarily have the latest security fixes, performance improvements, and troubleshooting and diagnostic tools available to you. Honestly, this is similar to when Windows XP, Windows 7, Exchange 2007, etc. went out of support. You're on your own for support, and, eventually, it probably WILL stop working. That's why you... --- ### Microsoft Opens New Datacenter Region in Doha, Qatar - Published: 2022-08-16 - Modified: 2022-08-16 - URL: https://petri.com/microsoft-datacenter-region-qatar/ - Categories: Microsoft Azure - Tags: cloud computing, Microsoft Azure, News - Article Type: News Microsoft has announced the launch of a new datacenter region in Doha, Qatar. The new cloud region will help to accelerate digital transformation and attract more businesses and partners into the country. Microsoft first unveiled its plans to open a cloud region in Qatar back in December 2019. The new Azure region was initially slated to be available in 2021. However, the company had to push back the launch date to 2022. With the new datacenter region, Microsoft plans to create 24,000 jobs across various functions within the public and private sectors. There is also a skill development program to train 50,000 Qatari citizens in cloud-based technologies over the next five years. This move is a part of Microsoft’s commitment to helping local people improve their technical expertise. “We are launching our newest datacenter region in Qatar. The new datacenter region includes Azure Availability Zones, which offer you additional resiliency for your applications by designing the region with unique physical datacenter locations with independent power, network, and cooling for additional tolerance to datacenter failures,” Microsoft explained. Microsoft opens new offices in Qatar Microsoft has recently opened new local offices at the Burj Al Fardan in Lusail. The state-of-the-art facility includes a Customer Innovation Center, which will hold workshops to drive cloud adoption across various industries. Microsoft says it will play an important role in supporting tech startups, students, and businesses in the middle east. “Microsoft has been deeply rooted in Qatar and our commitment to help grow Qatar’s innovation economy has... --- ### Microsoft Defender for Endpoint Adds Tamper Protection on macOS - Published: 2022-08-16 - Modified: 2022-08-16 - URL: https://petri.com/microsoft-defender-for-endpoint-tamper-protection-macos/ - Categories: Security - Tags: Microsoft, Microsoft Defender for Endpoint, News - Article Type: News Microsoft has announced that Tamper Protection is now generally available for Defender for Endpoint customers on macOS devices. The new feature prevents malicious software and unauthorized users from modifying security settings that might put a system at risk. With Tamper Protection enabled, third-party apps won’t be able to uninstall Microsoft Defender for EndPoint from Mac machines. The feature also helps to protect important security files, configuration settings, and processes. “Tamper protection brings an additional layer of protection in Microsoft Defender for Endpoint to elevate the endpoint security posture of organizations. Reliably securing endpoints is crucial for any organization. Enhanced tamper resilience across prevalent platforms is a great advantage for organizations seeking to continuously enhance their endpoint security,” the company explained. How to enable Microsoft Defender for Endpoint Tamper Protection on macOS Organizations can configure Tamper Protection on macOS devices manually or via Microsoft Intune. Once it has been set up, Microsoft Defender for EndPoint monitors tamper attempts and creates event logs to alert IT admins about potential security threats. Microsoft notes that Tamper Protection ships with audit mode enabled by default, and it’s up to the IT admins to disable it in their tenants. The audit mode will log tampering operations such as the creation, deletion, renaming, and modification of files. In audit mode, administrators will be able to view Tamper Protection signals in local on-device logs or via Advanced Hunting. Moreover, users can run the “mdatp health” command in order to check the status of the feature on their... --- ### Microsoft’s New Dev Box Developer Workstation Service Launches in Preview - Published: 2022-08-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-dev-box-developer-workstation/ - Categories: Cloud Computing, Microsoft Azure - Tags: Microsoft Azure, Microsoft Dev Box, News - Article Type: News Microsoft has launched a public preview of its Microsoft Dev Box managed service. The new cloud-based offering provides developers easier access to a preconfigured virtual developer workstation without having to set up their physical machines. The Dev Box service was first announced at Microsoft’s annual Build developer conference in May. It’s designed for developers who work on different projects with specific configurations and conflicting dependencies. They can configure dev boxes with any integrated development environment (IDE), software development kit (SDK), and internal tools that run on Windows. "With Microsoft Dev Box, developers can focus on writing the code only they can write instead of trying to get a working environment that can build and run the code. Dev boxes are ready-to-code and preconfigured by the team with all the tools and settings developers need for their projects and tasks," explained Anthony Cangialosi, Principal Group PM at Microsoft. According to Microsoft, Dev Boxes are ideal for mobile, desktop, IoT, and game development projects. It is also possible to build cross-platform apps with the Windows Subsystem for Linux and Windows Subsystem for Android. Developers can choose from 4 vCPUs with 16 GB of storage to 32 vCPUs and 128 GB of storage based on their specific needs. Microsoft Dev Box builds on top of the Azure Virtual Desktop service. Its integration with Windows 365 Cloud PC lets IT admins manage Dev Boxes with management tools such as Intune and the Microsoft Endpoint Manager. They can provide access to source code for individual... --- ### Microsoft Teams Starts Rolling Out New 'Video Clip' Feature in 1:1 Chats - Published: 2022-08-15 - Modified: 2022-08-15 - URL: https://petri.com/microsoft-teams-video-clip-feature-chats/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams has started rolling out a new Video Clip feature in public preview that was announced at Inspire 2022 last month. The tool allows users to record, edit and view short video messages directly within one-to-one chats. The Video Clip feature could be helpful in scenarios where users may want to leave a message for a co-worker who is in a different time zone. These video messages can be up to a minute long, and the recipient will be able to play them at their convenience. It is similar to the clips feature that launched in Slack last year. To try out the feature, Microsoft Teams users can click the small video camera icon available in the chat box. Press the Record button in the new pop-out window to record a video clip. Once recorded, users can click the Review button to playback or edit the video before posting it into the Teams chat. As noted by Microsoft 365 consultant Petri Jämsen on LinkedIn, the Video Clip feature is gradually rolling out to public preview users. Microsoft expects to make it generally available for all desktop, mobile, and web users in September. Pre-assign channel members to Breakout Rooms in Microsoft Teams Microsoft has also released an update that allows meeting organizers to pre-assign channel members to Breakrooms. To do this, select the Breakout rooms tab in the Channel Meeting's meeting details and then click the Assign participants button. Keep in mind that the pre-assignment capability is available in preview... --- ### Microsoft Sentinel Now Lets IT Admins Detect Low and Slow Password Spray Attacks - Published: 2022-08-15 - Modified: 2023-02-02 - URL: https://petri.com/microsoft-sentinel-low-slow-password-spray-attacks/ - Categories: Microsoft Sentinel, Security - Tags: Microsoft Sentinel, News, Security - Article Type: News Microsoft has released a new guided hunting notebook for its Microsoft Sentinel solution. The notebook enables organizations to leverage machine learning to detect, investigate as well as block low and slow password spray campaigns. Password spraying is a type of brute force attack that allows malicious actors to gain unauthorized access to computer systems. Hackers use a dictionary of commonly used passwords to log in to a large number of user accounts within an organization. Microsoft explains that many businesses use modern security mechanisms to block traditional password spraying attacks. It is one of the reasons that state-sponsored attacks have switched to low and slow techniques to prevent account lockouts. They use open source tools to automate these attacks and free or paid proxy services to avoid detection. “Low and slow sprays are a variant on traditional password spray attacks that are being increasingly used by sophisticated adversaries such as NOBELIUM, STRONTIUM and HOLMIUM. These adversaries can randomize client fields between each sign in attempt, including IP addresses, user agents and client application,” Microsoft’s threat intelligence team explained. Microsoft Sentinel uses ML to identify potential password spray attempts The new Microsoft Sentinel notebook uses data analytics and machine learning techniques to hunt low and slow password spray attacks. It lets IT admins detect and cluster anomalous fields for each failed sign-in attempt and analyze them to find invariant properties. Lastly, Sentinel incidents are created based on the results and sent for further investigation and response. https://www. youtube. com/watch? v=OJTSHaY-t54 To get started, Microsoft... --- ### How to Install Office LTSC 2021 > This how-to guide will detail all the steps you need to follow to install Office 2021 LTSC, the latest perpetual version of Office for commercial and government customers on your computer. - Published: 2022-08-15 - Modified: 2022-12-19 - URL: https://petri.com/install-office-2021/ - Categories: Microsoft 365, Office - Tags: Office, Office 2021 - Article Type: How To Office LTSC 2021 is the latest perpetual version of Office for commercial and government customers. This how-to guide will detail all the steps you need to follow to install Office 2021 LTSC on your computer. Installing Office LTSC 2021 will give you access to Word, Excel, PowerPoint, Outlook, and OneNote, as well as Access and Publisher if you have Windows PC. However, if Office 2021 LTSC does have more features than earlier versions of on-premises Office, it doesn't have the same set of features as the version of Office that's available through Microsoft 365. How to Install Office LTSC 2021 Here are the high-level steps you'll take to install Office LTSC 2021 on your computer: Download the Office Deployment Tool from the Microsoft Download Center Configure/Create your 'configuration. xml' file Download the Office LTSC 2021 installation files (optional step) Install Office LTSC 2021 by using the Office Deployment Tool What is Office LTSC 2021? Traditionally, we IT Pros have known the various versions of the Office productivity apps and all the different versions of it... Office 2003 Standard Edition, Office 2013 Professional Plus, and Office 2016/2019, including Project and Visio apps. In recent years, Microsoft has rebranded the way they release and service Windows and Office. Last year, they released Office LTSC Professional Plus 2021, among other versions. This is the latest version of their software available to enterprises with a volume licensing agreement. Now, Microsoft would just assume you subscribe to their subscription product, Microsoft 365 Apps for enterprise... . --- ### Cloud Conversations – Al Eardley on Microsoft Technology Center and Microsoft Certifications > Al Eardley is a Modern Work and Security Technical Architect at Microsoft. He returns to Cloud Conversations this week to chat with Peter Rising about working at the Microsoft Technology Center in London, Microsoft certifications, evangelizing leading technology such as AI and IoT, and much more. - Published: 2022-08-15 - Modified: 2022-08-15 - URL: https://petri.com/cloud-conversations-episode-56-al-eardley/ - Categories: Video - Tags: artificial intelligence, certifications, Cloud Conversations, IoT - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Al Eardley on Microsoft Technology Center and Microsoft Certifications Al Eardley is a Modern Work and Security Technical Architect at Microsoft. He returns to Cloud Conversations in this week's episode to chat with Peter Rising about: Working at the Microsoft Technology Center in LondonEvangelizing leading technology such as AI and IoTMicrosoft certificationsWork/life balance & wellbeingSouth coast summit security & compliance workshopAnd much more More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Microsoft Outlook to Move Mail, Calendar, and Other Apps to A New Location - Published: 2022-08-13 - Modified: 2022-08-13 - URL: https://petri.com/microsoft-outlook-move-mail-calendar-apps/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook, Outlook for Windows - Article Type: News Microsoft announced this week that it’s changing the default location of apps in Outlook for Windows. As of today, the Mail, Calendar, People, and To-Do apps appear at the bottom of the folder pane within the Outlook window. This will change next month with an update that will move these Outlook modules to the left navigation pane. Microsoft has been testing this change as an opt-in experience with users in the Current Channel since March 2022. However, the Outlook desktop app will soon remove the option to revert to the old horizontal navigation bar. “The Outlook team recognizes this is a big user experience change and it will take time to get used to the new location for Mail, Calendar, etc. Because this new experience replaces the previous navigation experience and adds new functionality, there isn't an option available for returning to the old navigation experience,” the company explained. Microsoft has detailed a couple of benefits of the upcoming layout in Outlook for Windows. First of all, the new default experience provides more vertical space that will let users pin more apps. Moreover, this release should offer a consistent user experience for switching apps across Outlook for Windows, Microsoft Teams, and Outlook on the web. Reactions to the new vertical navigation bar in Outlook for Windows have been quite ambivalent Overall, it’s a good step for making it easier for users to open popular apps such as Word, PowerPoint, and Excel without switching between windows. However, some people complained that... --- ### How To Install Active Directory Users And Computers (ADUC): A Step-by-Step Guide > In this guide, we'll show you how to install Active Directory Users and Computers (ADUC) on Windows. We'll also show you the basics of working with it so you can manage Active Directory user accounts, computer accounts, groups, and OUs. - Published: 2022-08-12 - Modified: 2024-12-18 - URL: https://petri.com/install-active-directory-users-and-computers/ - Categories: Active Directory (AD) - Tags: Active Directory, Active Directory Users and Computers, Most Popular, Windows 10, Windows 11 - Article Type: How To In this guide, we'll show you how to install Active Directory Users and Computers (ADUC) and the basics of working with it so you can manage Active Directory. Active Directory Users and Computers (ADUC) is built as an add-on for the Microsoft Management Console (MMC), and it's the go-to tool for IT Pros to manage their Windows Server Active Directory (AD) environments. You can use ADUC to: Create AD objects like users, groups, organizational units (OUs), and even printers. Make changes to existing users, groups, OUs, etc. Delegate permissions Move FSMO roles Raise the domain functional level Work with advanced features like the LostAndFound container, NTDS Quotas, Program Data, and System information. How to install Active Directory Users (ADUC) and Computers To install Active Directory Users and Computers on Windows 10 and Windows 11: Open the Settings app and go into Apps. From there, add the 'RSAT: Active Directory Domain Services and Lightweight Directory Services Tools' optional feature. Keep reading to learn in more detail about the various methods you can use to install ADUC on your computer. Why you should install ADUC on a management workstation Before we proceed, I want to make the point, as I have in previous articles, that it is highly recommended to install the Active Directory Domain Services tools on your workstation or whatever management workstation you use for daily tasks. Although the tool is installed automatically on your domain controllers (DCs) when you add the Active Directory Domain Services role, it is... --- ### AWS Licenses Visual Studio with EC2 > Amazon now lets organizations run Microsoft Visual Studio on Amazon EC2 instances with a user-based license model. AWS-licensed installations of Visual Studio have a per-user subscription fee on their EC2 instances, and administrators have the ability to modify end-user access on a monthly basis. - Published: 2022-08-12 - Modified: 2023-02-03 - URL: https://petri.com/amazon-licenses-visual-studio-aws-ec2/ - Categories: Amazon Web Services, Cloud Computing, Visual Studio - Tags: Amazon EC2, Amazon Web Services, AWS, Visual Studio - Article Type: News Amazon recently announced the general availability of license-included Visual Studio software on Elastic Cloud Compute (EC2) instances. This means that organizations no longer need to separately purchase and install Visual Studio for their EC2 instances, which are the Amazon Web Services versions of cloud-based virtual machines. "Amazon EC2 provides a broad choice of instances, and customers not only have the flexibility of paying for what their end users use but can also provide the capacity and right hardware to their end users," the company explained in the announcement. You can now launch these EC2 instances using license-included Amazon Machine Images (AMIs), and multiple authorized users can connect to these EC2 instances using remote desktop software. This allows businesses to provision standardized development machines managed by IT with full control over security and compliance. How to run Visual Studio on AWS EC2 Instances Preconfigured AMIs come with Visual Studio Enterprise 2022 or Visual Studio Professional 2022 preinstalled. These AMIs are available from the Amazon EC2 console and on the AWS Marketplace. The AWS-licensed installations of Visual Studio have a per-user subscription fee on their EC2 instances. Administrators have the ability to modify end-user access on a monthly basis. IT administrators manage Visual Studio access for their end users using the AWS License Manager. As a prerequisite, your administrator needs to create an instance of AWS Managed Microsoft Active Directory and allow the AWS License Manager to onboard to it by accepting permission. Customers using this feature will be billed per vCPU for the EC2 license-included... --- ### Google Workspace Adds Stronger Protections to Sensitive Accounts - Published: 2022-08-11 - Modified: 2022-08-11 - URL: https://petri.com/google-workspace-stronger-protections-sensitive-accounts/ - Categories: Security - Tags: Google, Google Workspace, News, Security - Article Type: News Google has released a new update that should help to prevent unauthorized changes to Workspace user accounts. This security feature brings identity verification prompts to protect high-risk customers from malicious attacks in enterprise environments. With this release, Google Workspace has introduced a new “Verify it’s You” prompt to block suspicious account activities. Users will need to provide an additional verification method (such as multi-factor authentication (MFA)) to perform sensitive actions. These include changing the account name or password, exporting account data, disabling two-step verification, and more. Google highlights that this release aims to provide additional protection to high-profile user accounts that are frequently targeted by criminals. The feature prevents attackers from making any changes that would negatively impact the account owner or the organization. “This added layer of security helps to intercept bad actors who have gained access to a user's account, further protecting their data and your organization's sensitive information. Additionally, these challenge attempts will be logged as an audit event allowing for further admin investigation,” Google explained in a blog post. https://www. youtube. com/watch? v=z_GEd0vLiXo IT admins can disable login challenges for Google Workspace users According to Google, IT admins can temporarily turn off login challenges, and other security prompts for users stuck behind login prompts. To do this, admins will need to navigate to the Admin console under Users >> “UserName” >> Security. Keep in mind that it will remove all security protections on the user’s account, and Google recommends that administrators should use a video call to confirm their... --- ### How to Find a Substring In PowerShell - Published: 2022-08-11 - Modified: 2024-11-13 - URL: https://petri.com/powershell-substring/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To Need to search for or extract a substring inside a PowerShell string? Never fear, PowerShell substring is here! In this article, I guide you through how to ditch objects and search inside strings. The PowerShell substring Although you'll hear me go on and on about object in the pipeline, there's nothing wrong with parsing strings if that's what you need. There are plenty of log files out there that need parsing, and PowerShell can help. Search for a substring in a string In this case, I'm assuming some sort of log file is in play. I don't know what the entire log looks like or what the overall goal is. That's OK. We can learn a lot from the immediate task. Let's say you have a string that looks like this: Mailbox:9WJKDFH-FS349-1DSDS-OIFODJFDO-7F21-FC1BF02EFE26 (O'Hicks, Jeffery(X. )) I've changed the values a little bit and modified my name to make it more challenging. The goal is to grab the name from the string. I want to end up with: O'Hicks, Jeffery(X. ) There are several different ways you can accomplish this. The right way probably depends on your level of PowerShell experience and what else you might want to accomplish. I'll start by assigning this string to variable $s. Using the PowerShell split operator When I am faced with string parsing, sometimes it helps to break the string down into more manageable components. To do that I can use the split operator. There is also a split method for the string class. I... --- ### Microsoft 365 Experience Insights Dashboard Now Available in Preview - Published: 2022-08-11 - Modified: 2022-08-11 - URL: https://petri.com/microsoft-365-experience-insights-dashboard/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft has launched a new Experience Insights dashboard this week. It is designed to give organizations an overview of several user experience metrics for Microsoft 365 apps and services. “You’ve told us that in large organizations, it’s often challenging to measure and manage employees’ end user experience with cloud services like Microsoft 365, because data such as utilization and technical support queries live in different places or previously was not even available. This in turn can make it difficult to identify areas where users may need assistance,” the company explained. The new Experience insights dashboard shows detailed data about product usage, Net Promoter Score (NPS), and feedback provided by end users. It is also possible to get detailed information about specific apps and services. For instance, IT admins can view usage data of Microsoft Teams, such as daily active users, feature-specific usage, and percentage of overall product usage. Additionally, the dashboard provides NPS rankings for Microsoft 365 apps. It is a metric that is typically used to measure customer experience with a product. Microsoft typically uses surveys to collect feedback from around 5 percent of Microsoft 365 users in order to calculate NPS scores. IT admins can also view data on the popular help articles viewed by employees for a Microsoft 365 app or service. This should help organizations to design personalized training sessions and awareness campaigns for employees. Microsoft emphasized that the Experience insights dashboard doesn’t collect user-level data and it only shows data at the tenant level. “The... --- ### What is AWS IoT? - Published: 2022-08-11 - Modified: 2024-11-19 - URL: https://petri.com/what-is-aws-iot/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, IoT - Article Type: Overview In this article, we will explore in detail what AWS IoT is, what components it offers, and how developers can start building solutions with AWS IoT at the core. AWS IoT is a collection of Amazon cloud services that organizations can use to connect Internet of Things (IoT) devices to other devices and the Amazon Web Services (AWS) cloud. Organizations across various industries can use AWS IoT to analyze data from their edge devices and get insights on how to improve their workloads. The reality today is that IoT covers a broad array of hardware and software-based capabilities. Developers can use IoT to create applications and real business solutions to get insights into the world we’re all living in.   What is AWS IoT? AWS has a plethora of components and services from its hyper-scale platform that are all offered as ‘serverless’ capabilities. These services can be spun up so that customers only pay for what they use. They’re not left with a bill to stand up the required hardware, and they also don't have the burden of maintaining the platforms to support their IoT solution. The available services that comprise AWS IoT can be viewed as managed services. As a developer, you simply register for an AWS account, configure the services you need for your IoT solution, then you're free to experiment without having to maintain any hardware or software. AWS IoT gives organizations using IoT products the ability to quickly jump in and start exploring and developing IoT... --- ### Microsoft Visual Studio 2022 17.3 Brings Support for .NET MAUI and Azure Container Apps - Published: 2022-08-10 - Modified: 2022-08-10 - URL: https://petri.com/microsoft-visual-studio-2022-17-3-net-maui/ - Categories: Visual Studio - Tags: News, Visual Studio, Visual Studio 2022 - Article Type: News Microsoft has announced the release of Visual Studio 2022 17. 3. The latest update brings a slew of new features for developers such as support for . NET Multi-platform App UI (. NET MAUI), a new Teams Toolkit, and Azure Container Apps. First up, Microsoft has introduced support for . NET Multi-platform App UI (MAUI) support in Visual Studio 2022. This top-requested feature was previously available in public preview, and it should help developers quickly build cross-platform apps from a single codebase. “We’ve built tools to help you develop your . NET MAUI apps without slowing you down. Hot Reload, Live Visual Tree and XAML Live Preview speed up your development time by allowing you to apply code changes and see them immediately. With XAML Hot Reload you can make changes to your UI and see them in the running app right away. With . NET Hot Reload you can make changes to your code, save, and see those changes as well,” the Visual Studio team explained. Microsoft has also released a new Teams Toolkit for Visual Studio 2022. It enables developers to create new applications for Microsoft Teams. For instance, it is possible to build a notification bot for posting important messages in chats and channels. Developers can also create a command bot for responding to chat commands. Visual Studio 2022 17. 3 adds C++ improvements and Azure Container Apps support The latest Visual Studio update brings a new feature that introduces low-priority builds for C++. This feature is designed to reduce CPU usage during the... --- ### Microsoft's OneDrive Gets A Revamped Home Page and New File Sharing Experience - Published: 2022-08-10 - Modified: 2022-08-10 - URL: https://petri.com/microsofts-onedrive-revamped-home-page/ - Categories: Microsoft 365, OneDrive - Tags: Microsoft 365, News, OneDrive - Article Type: News Microsoft is celebrating 15 years of its OneDrive cloud storage service this month. The company has unveiled a refreshed OneDrive Home page that will surface the most recent and relevant documents as well as Activity updates. “We’ve redesigned the OneDrive Home experience to help you easily resume your work and catch up on what you missed while you were away. Soon, OneDrive will surface your most relevant files and list your most recent files along with any activity updates, so you can see everything at a glance and quickly prioritize where to start working,” explained Seth Patton, General Manager, Microsoft 365. Specifically, the new OneDrive Home page features a personalized “For you” section that shows files that are most relevant to the user. Moreover, users will see a list of recent files under this section with an option to filter documents by type. There is also a new Quick access section in the left navigation pane that lets users pin important document libraries. https://www. youtube. com/watch? v=CPX2pDe2nSY Microsoft notes that OneDrive users will be able to view all their files in the My Files section. It contains an Activity column that makes it easier to keep track of recent activity on files, including @mentions, assigned tasks, and comments. Microsoft plans to make the new OneDrive Home experience available to all web users with work or school accounts in the coming months. Microsoft OneDrive to add a consistent file-sharing experience In addition to the new Home page, Microsoft has also detailed several new features... --- ### August Patch Tuesday Updates Fix 121 Vulnerabilities and Improve Focus Assist > The August 2022 Patch Tuesday updates address 121 vulnerabilities in Windows, with 17 of them rated critical. Microsoft also improved the Focus Assist feature on Windows 11 and Windows 10 and added an option for easily updating to the latest version of Windows 11 at startup. - Published: 2022-08-10 - Modified: 2024-11-19 - URL: https://petri.com/august-2022-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released yesterday the August 2022 Patch Tuesday updates for all supported versions of Windows. This time, the company fixed no less than 121 vulnerabilities in Windows, which is quite important for what is a usually quiet month This month's Patch Tuesday updates also bring improvements for the Focus Assist feature on Windows 11 and Windows 10. On Windows 11, Microsoft also added a new option for easily updating to the latest version of the OS at startup. Critical vulnerabilities fixed in the August 2022 Patch Tuesday updates Among the 121 Windows vulnerabilities Microsoft fixed this month, 17 of them rated critical and 102 of them rated important. Notably, two of these vulnerabilities are publicly known, and one of them is already being exploited in the wild.   Let’s have a look at some of the most important critical vulnerabilities Microsoft fixed this month:  CVE-2022-34713: This Remote Code Execution (RCE) vulnerability in the Microsoft Windows Support Diagnostic Tool (MSDT) has been publicly disclosed and is already being exploited. The exploitation of the vulnerability requires that users open a specially crafted file. CVE-2022-30134: This Microsoft Exchange Server Elevation of Privilege vulnerability has also been publicly disclosed, but it’s not being exploited yet. According to Microsoft, Customers vulnerable to this issue would need to enable Extended Protection in order to prevent this attack, and you can find more details about that on the Exchange blog. CVE-2022-30133: This RCE vulnerability in the Windows Point-to-Point Protocol (PPP) could be exploited by an unauthenticated attacker... --- ### Google to Open Three New Cloud Regions in Malaysia, Thailand, and New Zealand - Published: 2022-08-10 - Modified: 2022-08-10 - URL: https://petri.com/google-cloud-malaysia-thailand-new-zealand/ - Categories: Cloud Computing, Google Cloud Platform - Tags: cloud computing, Google Cloud, Google Cloud Platform, News - Article Type: News Google has announced that it’s building three new cloud regions in Malaysia, Thailand, and New Zealand. The launch of these new Google Cloud sites is a part of a wider move to expand its presence in Asia-Pacific, which will bring the total number of regions to 37 worldwide. Google Cloud's Asia-Pacific Vice President Karan Bajwa explained that these cloud regions come as demand for digital services keeps increasing. Specifically, cloud adoption is steadily rising across industries in these markets, especially in telecommunications, manufacturing, financial services, and retail sectors. With the new cloud regions in Asia-Pacific, Google should be able to help support the growing need for data insights, online connectivity as well as digital transformation. At launch, the new Google Cloud regions will offer three zones to better protect customers' data against unplanned downtime or service outages. “The new Google Cloud regions will help to address organizations’ increasing needs in the area of digital sovereignty and enable more opportunities for digital transformation and innovation in Asia Pacific. With this announcement, Google Cloud is providing customers with more choices in accessing capabilities from local cloud regions while aiding their journeys to hybrid and multi-cloud environments," said Daphne Chung, Research Director, Cloud Services and Software Research, IDC Asia/Pacific. Cloud spending in Asia-Pacific to reach $282 billion by 2025 A report from Information Services Group highlighted that organizations in the Asia-Pacific region spent over 84 percent of their IT budgets on cloud services in Q3 2021. Moreover, the latest research from IDC reveals... --- ### Microsoft Entra Verified ID Service is Now Generally Available - Published: 2022-08-09 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-launches-entra-verified-id-service/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure AD, Microsoft Entra Verified ID, News - Article Type: News Microsoft has announced that its Entra Verified ID service is now generally available for commercial customers. The new decentralized identity offering enables organizations to easily create, issue, and verify the credentials of users to provide proof of education, employment, and other claims. “Microsoft’s Microsoft Entra Verified ID (Azure AD VC) service enables you to trust proofs of user identity without expanding your trust boundary. With Azure AD VC, you create accounts or federate with another identity provider. When a solution implements a verification exchange using verifiable credentials, it enables applications to request credentials that aren't bound to a specific domain,” the company explained. According to Microsoft, the user owns and controls the cryptographic keys that are used to sign the verifiable credentials. The Entra Verified ID service includes APIs that enable apps to request and verify credentials from any organization.   Additionally, developers can use these APIs to integrate verifiable credentials into their existing apps and services hosted in on-premises environments or on Microsoft Azure, Google Cloud Platform (GCP), or Amazon Web Services (AWS). Employees can use the Microsoft Authenticator app to manage credentials. It is also possible to easily recover lost credentials with a passphrase. Microsoft has collaborated with IBM, Ping, Mattr, and Workday to build an interop profile that lets developers build compatible digital wallets. Microsoft partners with leading identity verification providers Microsoft highlights that it has partnered with 10 popular identity verification providers worldwide. This should make it easier for enterprise customers to remotely verify identity attributes across... --- ### Test Network Connectivity with PowerShell Test-Connection > Jeff Hicks shows you how to test network connectivity between two endpoints using the PowerShell Test-Connection cmdlet. For IT pros, the PING utility that has existed since forever. It still works, and you can even use it in PowerShell. But you get text output that's hardly useful for scripting. - Published: 2022-08-09 - Modified: 2024-09-04 - URL: https://petri.com/powershell-test-connection/ - Categories: PowerShell - Tags: networking, PowerShell - Article Type: How To In this article, I will show you how to test network connectivity between two endpoints using the PowerShell Test-Connection cmdlet. PowerShell Test-Connection vs Ping Since the first time computers were networked together, people have had to test their connections. Just like a dial tone that tells you the phone is ready to use, many IT pros want to make sure they have a remote connection before beginning their 'call'. For IT pros, this has traditionally meant using the PING utility that has existed since forever. It still works, and you can even use it in PowerShell. But when used in PowerShell, you get text output that's hardly useful for scripting. So, let me give you some additional options. Test-Connection is a wrapper for the Win32_PingStatus WMI class The PING utility works by sending a special type of packet, an Internet Control Message Protocol echo request (ICMP), to a remote computer. Similar to the way a sonar pings another submarine, PING sends out a probe and waits for a response. The PowerShell equivalent is the Test-Connection cmdlet. Test-Connection is actually a wrapper for the Win32_PingStatus WMI class, but it's easier to use because it's a cmdlet. How to use PowerShell Test-Connect All you need to do is specify a remote computer name or IP address. The assumption is that you are testing a connection to another computer in your domain. Using the PowerShell Test-Connection cmdlet in Windows PowerShell. (Image Credit: Jeff Hicks) Send out more or less 'pings' using the... --- ### Start Planning for AWS re:Invent 2022 in Las Vegas on Nov. 28 – Dec. 2 > This year’s AWS re:Invent 2022 conference will be an in-person event in Las Vegas from November 28 to December 2, and there will be over 1,500 breakout sessions on a variety of AWS topics including cloud architecture, continuous deployment, large-scale migrations, machine learning, and more. - Published: 2022-08-09 - Modified: 2022-08-09 - URL: https://petri.com/aws-reinvent-2022/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon Aurora, Amazon EC2, Amazon RDS, Amazon Redshift, Amazon S3 - Article Type: News The AWS re:Invent 2022 conference is the main AWS technical conference that’s put on by Amazon this year. Unlike most recent tech conferences which have been virtual, this year’s AWS re:Invent 2022 will be an in-person event in Las Vegas from November 28 to December 2. Attended by approximately 50,000 to 60,000 IT professionals, AWS re:Invent enables visitors to learn more about and make better use of core AWS services such as Amazon EC2, Amazon S3, Amazon RDS, Amazon Redshift, and Amazon Aurora. Typically, there are also several announcements of new AWS products and services made during the event. On the keynote front, the first one will be delivered by Adam Selipsky, CEO of Amazon Web Services and former President and CEO of Tableau Software. Additional keynotes will be delivered by Swami Sivasubramanian, VP in charge of all Amazon AI and machine learning services, Peter DeSantis, SVP of AWS Utility Computing & Apps, Ruba Borno, VP of Worldwide Channels & Alliances for AWS, and Dr. Werner Vogels, VP and CTO at Amazon. com. AWS CEO Adam Selipsky will handle the introducing AWS re:Invent 2022 keynote Over 1,500 breakout sessions at AWS: re:Invent 2022 This year, there will be over 1,500 breakout sessions on a variety of AWS topics including cloud architecture, continuous deployment, large-scale migrations, machine learning, and more. You can also get hands-on experience at the technical boot camps, self-paced labs, and two-hour workshops. If you’re considering going to ASW re:Invent 2022, now’s the time to start planning. The registration fee... --- ### Microsoft Brings Windows 11's Universal Print Capabilities to Windows 10 - Published: 2022-08-09 - Modified: 2022-08-09 - URL: https://petri.com/microsoft-universal-print-windows-10/ - Categories: Windows 10 - Tags: News, Universal Print, Windows 10 - Article Type: News Microsoft has announced that new Universal Print capabilities that debuted on Windows 11 last year are coming to Windows 10. This release introduces a new feature that lets users add a PIN (personal identification number) to a print job. The new PIN integration should help to enhance security and reduce toner and paper waste in enterprise environments. “PIN entry in the print dialog box when the printer reports it supports PIN release through the IPP standard. As of writing this blog, Epson, and Sharp offer PIN release with their Universal Print ready printer models,” Microsoft explained. Microsoft has also added support for Print Support Application (PSA) on Windows 10 PCs. It allows printer manufacturers to customize the printing experience with additional features and workflows such as an accounting code or a watermark. This capability eliminates the need to download custom drivers, and IT admins can install these PSA directly from the Microsoft Store. Microsoft Endpoint Manager adds Universal Print settings In addition to PSA support, this update enables organizations to configure Universal Print settings in Microsoft Endpoint Manager. This feature makes it easier for administrators to provision Universal Print printers to each Windows 10 machine. They can track the progress of printer provisioning policies via the Microsoft Endpoint Manager admin portal. Lastly, Microsoft has announced that native support for PDF, PWG-Raster, and PCLm printers is now available for Windows 10 devices. Moreover, this release brings consistent support for the standards-based Mopria printing protocol. It provides seamless printing and scanning functionality... --- ### Slack Releases Fix for Critical Bug That Exposed Hashed Passwords for Years - Published: 2022-08-08 - Modified: 2022-08-08 - URL: https://petri.com/slack-bug-exposed-hashed-passwords/ - Categories: Security - Tags: News, passwords, Security, Slack, Vulnerability - Article Type: News Slack has confirmed that a security vulnerability accidentally exposed the hashed passwords of around 0. 5 percent of its customers. The company patched the bug last month and notified impacted users that it had reset their passwords. The vulnerability was first discovered by a security researcher and it was reported to Slack on July 17, 2022. The flaw was present in the shared invite link feature that allows users to join a specific workspace. It revealed the passwords of all users who created or revoked shared invitation links during the past five years. Slack has confirmed that the encrypted passwords were not visible to other members of the workspace within the client. However, these passwords could be stolen by hackers actively monitoring the encrypted traffic data from Slack's servers. “Upon receiving the report from the security researcher, we immediately fixed the underlying bug and then began investigating the potential impact of this issue on our customers. We have no reason to believe that anyone was able to obtain plaintext passwords because of this issue. However, for the sake of caution, we have reset affected users’ Slack passwords,” Slack explained in its security advisory. Slack recommends customers to enable two-factor authentication Hashing is a cryptographic technique that is used to store sensitive data securely. Slack claims that these encrypted passwords can’t be used for authentication purposes and it’s practically impossible to extract them. However, the company mentioned in the security advisory sent to affected customers that hackers could use brute-force methods to... --- ### Microsoft Edge 104 Brings Enhanced Security Mode Improvements and New Policies - Published: 2022-08-08 - Modified: 2022-08-08 - URL: https://petri.com/microsoft-edge-104-enhanced-security-mode/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News, Security - Article Type: News Microsoft has started rolling out Edge version 104 to the Stable channel. This new update brings some improvements to the enhanced security mode to make the browsing experience more secure on less popular websites, and some new policies for IT admins. The enhanced security mode (previously known as the Super Duper Secure mode) launched in Microsoft Edge in November 2021. The feature helps to protect users from security threats while browsing the Internet. It primarily disables the JavaScript just-in-time (JIT) compiler to reduce the attack surface and provide additional protection against memory-related vulnerabilities. Microsoft Edge 104 improves the enhanced security mode with the addition of a new Basic setting which is now enabled by default. The new Basic option will be available besides the existing Balanced and Strict modes in Settings. "Basic mode is a static mode that only applies these security mitigations to less visited sites. This mode doesn't take a user’s behavior into account and only enables the feature on less visited sites,” Microsoft explained. To enable the enhanced security mode, head to Settings and more >> Settings >> Privacy, search, and services in Microsoft Edge. Navigate to the Security section and turn on the Enhance your security on the web toggle button. Additionally, IT admins can use Group Policy settings to configure the enhanced security mode feature for all end users in their organization. There is also the ability to create an exception list for certain trustworthy websites. Microsoft Edge version 104 brings new policies for IT... --- ### Cloud Conversations – Femke Cornelissen on Dutch Women in Tech, Twitter Spaces, and M365 Adoption > Femke Cornelissen is an Adoption and Modern Workplace Team Leader at Tredion ICT & Telecom, as well as a Community manager Dutch Women in Tech. In this week's Cloud Conversations episode, she joins Peter Rising to chat about her career in M365 Adoption and Modern Work. - Published: 2022-08-08 - Modified: 2022-08-08 - URL: https://petri.com/cloud-conversations-episode-55-femke-cornelissen/ - Categories: Video - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Femke Cornelissen on dutch women in Tech, Twitter Spaces, and M365 adoption Femke Cornelissen is an Adoption and Modern Workplace Team Leader at Tredion ICT & Telecom, as well as a Community manager Dutch Women in Tech. In this week's episode, she joins Peter Rising to chat about her career in M365 Adoption and Modern Work. We also talk about: Dutch Women in TechBlogging in the Dutch languageThe importance of communityChanging to a tech career from photography More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy... --- ### How to Use the PowerShell Exit Keyword to Terminate Scripts > The PowerShell exit keyword allows you to terminate scripts without closing your current console session. In this guide, we explain all the different ways to use PowerShell exit to break the execution of a script, function, loop, or switch statement. - Published: 2022-08-08 - Modified: 2023-07-31 - URL: https://petri.com/powershell-exit/ - Categories: PowerShell - Tags: PowerShell, Powershell Loops, scripts - Article Type: How To PowerShell’s built-in exit keyword allows you to terminate scripts without closing your PowerShell session. There are different ways to use PowerShell exit to break the execution of a script, function, loop, or switch statement. But it’s important to understand how the exit keyword works if you want to use it effectively. In this guide, I will explain how you can also use the break and return keywords to control the execution of your code in PowerShell. Each of these methods has its own use cases, so keep reading if you want to know more! How to use the PowerShell exit keyword The PowerShell exit keyword is used to exit what’s running in the console. Depending on what you’re doing, this could either be a script or your current PowerShell console session. Closing the PowerShell console with exit If you open a PowerShell console session and type exit, the console session will terminate. Terminating a PowerShell script with exit If you execute the exit keyword inside of a PowerShell script, it will only terminate the script and the commands that follow it won’t be executed. Write-Host Script Start Write-Host Executing exit command exit Write-Host Script End After running the exit command here, the script was indeed terminated. We returned to the PowerShell console session and the rest of the commands were not executed. Understanding PowerShell exit codes When the exit command is executed successfully, it returns an exit code: 0 means normal termination. While 1 means failure. The error code... --- ### Microsoft's New Azure Fluid Relay Service Lets Developers Build Collaborative Apps - Published: 2022-08-05 - Modified: 2022-08-05 - URL: https://petri.com/microsofts-azure-fluid-relay-collaborative-apps/ - Categories: Azure, Microsoft Azure - Tags: Azure Fluid Relay, Microsoft Azure, News - Article Type: News Microsoft has announced the general availability of its Azure Fluid Relay service. It’s a managed cloud offering that enables web developers to use the Fluid Framework for building enterprise-grade collaborative applications. The Fluid Framework was announced at Microsoft’s Build developer conference back in 2019. It’s an open-source web-based platform that allows users to create discrete pieces of content (such as tables, graphs, and dynamic lists) that can be edited by several users in real-time. The powerful tool enhances collaboration in apps (such as Microsoft Whiteboard) where team members have to co-author documents. “The service enables developers to build and deploy enterprise-ready collaborative applications that perform at industry-leading speed and scale. Azure Fluid Relay takes care of all details of Fluid collaboration while you as developers focus your attention on your app and end user experience,” Microsoft explained. Microsoft has highlighted some key features of its Azure Fluid Relay service. It offers built-in support for scalability and coauthoring and data synchronization in applications. The service also helps developers build reliable, secure, and low-latency collaborative experiences with cloud-native Azure storage and hosting tools. Additionally, Azure Fluid Relay comes with a built-in Fluid server that makes it easier to provision and manage collaborative apps. It should reduce the time and effort that was previously required for building custom Fluid servers. Microsoft also emphasizes that this service is designed to comply with legal, business, as well as regulatory requirements. https://youtu. be/j0DH9GXOVwk Microsoft Azure Fluid Relay is available in around 10 Azure regions To get started,... --- ### Error Handling With PowerShell Try Catch Blocks > In this article, Adam Bertram shows you how to use PowerShell try catch, a built-in error handling feature, to help you debug scripts when there are problems. Plus, there's information on new error handling features in PowerShell 7! - Published: 2022-08-05 - Modified: 2024-09-04 - URL: https://petri.com/powershell-try-catch/ - Categories: PowerShell - Tags: Error Handling, PowerShell - Article Type: How To Windows PowerShell has a robust error handling capability with PowerShell try catch blocks. And PowerShell 7 introduced new features, making troubleshooting even easier. In this article, I will show you how to use PowerShell's built-in error handling features to help debug your scripts when there are problems. Understanding PowerShell Try Catch error handling First, it helps to have a good understanding of errors within PowerShell. A common operation is to test the network connection to another system using the Test-Connect cmdlet. The example is using a computer name of fakesystem, that isn’t going to work, and only 1 ICMP ping is being sent to simplify testing (default is 4 ICMP pings). ​Test-Connection "fakesystem" -Count 1 PowerShell Test-Connection cmdlet Adding a try-catch block to your code As expected the operation failed, but it would be nice to output a nicer error message then that. To “catch” the error, we use a try-catch block. By wrapping our code in this block, any error will be caught and we can then output an appropriate message or take some other action. Let’s give this a try below. You should expect to see Error in the output. ​Try { Test-Connection "fakesystem" -Count 1 } Catch { "Error" } Test-Connection with PowerShell Try Catch Terminating vs. non-terminating PowerShell errors Instead you see the same error message as before, ... No such host is known... , but shouldn’t we see Error? The Test-Connection cmdlet outputs something called a non-terminating error. There are two types of errors, Terminating and... --- ### How to Set Up Amazon FSx for Windows File Server > AWS FSx for Windows File Server is for organizations looking to use AWS to get highly available storage for their Windows applications with full Server Message Block (SMB) support. In this guide, we'll go through the steps required to set up Amazon FSx for Windows File Server. - Published: 2022-08-05 - Modified: 2022-10-05 - URL: https://petri.com/aws-fsx-for-windows/ - Categories: Amazon Web Services, Windows Client OS - Tags: Amazon Web Services, AWS, Windows - Article Type: How To For organizations looking to use Amazon Web Services to get highly available storage for their Windows applications with full Server Message Block (SMB) support, AWS FSx for Windows File Server is the platform's native option. Typical use cases are client-mapped drives, file shares for application integrations, and user home directories. In this guide, we'll go through the steps required to set up Amazon FSx for Windows File Server. What is Amazon FSx for Windows File Server? Even though SMB file shares are typically used within Windows enterprise environments, it is also possible to use AWS FSx for Windows File Server to provide file systems for Linux and macOS. Amazon FSx for Windows File Server provides high levels of throughput and IOPS and consistent sub-millisecond latency. Performance can be further improved for end-users by using Amazon FSx File Gateway. This tool optimizes access to FSx file shares from on-premises environments by maintaining a local cache of frequently accessed data. Data stored on the file system is automatically encrypted at rest, with encryption keys stored in the AWS Key Management Service (AWS KMS). Data in transit is also automatically encrypted using SMB Kerberos session keys, a standard component of the SMB protocol. Overall, AWS FSx for Windows File Server provides enough options to help your organization meet its regulatory requirements (ISO, HIPAA, and so on). When choosing high availability options, there are two possible choices, just like for most AWS services: Single Availability Zone (AZ) file systems provide a 99. 5% Service... --- ### Smart App Control Can Now Block More File Types on Windows 11 - Published: 2022-08-04 - Modified: 2022-09-28 - URL: https://petri.com/smart-app-control-block-file-types-windows-11/ - Categories: Windows 11 - Tags: News, Security, Windows, Windows 11 - Article Type: News Microsoft has unveiled some security enhancements for the Smart App Control feature in Windows 11. David Weston, Microsoft's VP for Enterprise and OS Security, announced yesterday that Smart App Control has been updated to support more malicious file types, including ISO and LNK files. Microsoft started testing the Smart App Control feature with Insiders in Windows 11 build 22567 in March. It enables users to automatically block potentially untrusted or malicious applications from running on Windows 11 devices. The feature uses AI and code signing to intelligently predict malicious behavior that could cause the device to run slowly, show ads, and install bloatware. In addition to ISO and LNK, Bleeping Computer notes that Smart App Control can block the execution of several other file extensions. These include IMG, VDH, VHDX, . appref-ms, BAT, CMD, CHM, CPL, JS, JSE, MSC, MSP, REG, VBE, VBS, and WSF files. Once blocked, Windows 11 users will see the following message on the screen: "Smart app Control blocked an app that may be unsafe. This file was blocked because files of this type from the internet can be dangerous. " Windows 11's Smart App Control update boosts protections against phishing campaigns Microsoft has yet to provide details about file types that are blocked by Smart App Control on Windows 11. On Twitter, Microsoft's Jeffery Sutherland said that a full list of all restricted file extensions will be published soon. https://twitter. com/j3ffr3y1974/status/1554580790570323970? s=20&t=UQ5k3MzuptmmIe_ZKuKOqg It is important to note that this move comes shortly after Microsoft blocked VBA macros by default... --- ### Microsoft Defender Experts for Hunting Lets Businesses Proactively Hunt Security Threats - Published: 2022-08-04 - Modified: 2022-08-04 - URL: https://petri.com/microsoft-defender-experts-hunting/ - Categories: Security - Tags: Microsoft, Microsoft Defender Experts for Hunting, News, Security - Article Type: News Back in May, Microsoft unveiled a new Defender Experts for Hunting solution to help organizations proactively hunt for security threats. The company has announced that the new managed security service is now generally available for enterprise customers. Microsoft Defender Experts for Hunting is aimed at companies with existing security operations centers. The service combines data from Microsoft Defender, endpoints, Office 365, cloud apps, as well as identity for threat hunting and analysis. Microsoft security experts will then investigate the findings and provide mitigations via notifications published in the Microsoft 365 Defender portal. Additionally, Microsoft provides a detailed summary report with insights about its threat findings. Customers can also get in touch with a security expert for recommendations about boosting their existing security operations. Moreover, there is a "Experts on Demand" feature that lets users chat with Microsoft's security experts. “Microsoft is uniquely positioned to help customers meet today’s security challenges. We secure devices, identities, apps, and clouds—the fundamental fabric of our customers’ lives—with the full scale of our comprehensive multicloud, multiplatform solutions. Plus, we understand today’s security challenges because we live this fight ourselves every single day,” the company explained. Microsoft has published an explainer video on how its threat hunting service could help administrators track sophisticated threats. https://www. youtube. com/watch? v=4t1JgE0X0jc How to get started with Microsoft Defender Experts for Hunting Microsoft notes that interested companies can sign up on this page to subscribe to the managed threat hunting service. It is sold separately from other Microsoft 365 Defender products, but the... --- ### VMware Releases Updates to Address Critical Authentication Bypass Flaw - Published: 2022-08-03 - Modified: 2022-08-03 - URL: https://petri.com/vmware-fixes-critical-authentication-bypass-flaw/ - Categories: Security, VMware - Tags: News, Security, vmware, Vulnerability - Article Type: News VMware has released new security updates to address a critical authentication bypass vulnerability present in its multiple products. The company warned that the bug could enable threat actors to gain administrative privileges on target systems. Tracked as CVE-2022-31656, the flaw was discovered by the security researcher Petrus Viet. VMware assigned the authentication bypass vulnerability a CVSS severity score of 9. 8, and it impacts VMware Workspace ONE Access, Identity Manager, and vRealize Automation. According to VMware, CVE-2022-31656 targets local domain users, and an attacker needs network access to a vulnerable user interface to make a successful exploitation attempt. Once achieved, hackers can abuse the vulnerability to bypass authentication and get admin-level control over a remote system. The flaw enables hackers to exploit two remote code execution (RCE) flaws dubbed CVE-2022-31658 and CVE-2022-31659. Both bugs have a CVSS score of 8. 0, which allow anyone with administrator and network access to remotely deploy malicious code on victims’ devices. In addition to these vulnerabilities, VMware has patched several other bugs in the aforementioned products. These include three privilege-escalation vulnerabilities tracked as CVE-2022-31660, CVE-2022-31661, and CVE-2022-31664. There is also a path traversal vulnerability (CVE-2022-31662) and a URL injection vulnerability (CVE-2022-31657). Patch the critical authentication bypass bug VMware says it hasn’t found evidence of the vulnerabilities being exploited in the wild. However, security researchers urge administrators to immediately deploy the patches to protect their enterprise networks. “Organizations that practice change management using the ITIL definitions of change types would consider this an “emergency change. ” All environments... --- ### Microsoft Teams Gains Native Support for Apple Silicon Macs - Published: 2022-08-03 - Modified: 2022-08-04 - URL: https://petri.com/microsoft-teams-apple-silicon-macs/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams for macOS is finally getting native support for Apple Silicon devices. The company has just announced that the new Teams app has started rolling out to all users with M1/M2-powered Macs. Microsoft highlights that a native version of Teams has been one of the highly requested features from Mac users on its feedback hub. It offers significant performance enhancements compared to the emulated version that is available for Mac devices that run on Apple Silicon. “We are rolling out a production grade universal binary version of Teams, which means it will run natively on the entire Mac lineup, including those with Apple silicon. For Mac users, this means a significant boost in performance, ensuring efficient use of device resources and an optimized Teams experience even when using multiple high-resolution monitors during calls or meetings,” the company explained. A pre-released version of the new Microsoft Teams app was spotted online back in April 2022. However, the company discouraged users from installing the beta app on their devices due to potential performance issues and other bugs. Microsoft Teams to get native Apple Silicon Support via the usual update process Microsoft plans to automatically upgrade all existing Mac devices to the latest version. However, the Teams macOS desktop app will be available in a Universal Binary package for all new users which will run natively on Macs with M1/M2 processors and Intel devices. According to the Microsoft 365 roadmap, the new Microsoft Teams client is expected to become generally available for... --- ### Microsoft Confirms Uber Receipt Emails Bug Crashing Outlook for Windows - Published: 2022-08-03 - Modified: 2022-08-03 - URL: https://petri.com/microsoft-uber-receipt-emails-outlook/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, News, Outlook, Outlook for Windows - Article Type: News Microsoft is investigating a new issue that is causing the Outlook desktop app to crash when opening emails containing complicated tables such as Uber receipts. The bug was first identified in the Current Channel version 2206 (build 15330. 20196 and higher), but it also impacts the preview builds in the Current Channel as well as the Beta Channel. “When opening, replying, or forwarding some emails that include complex tables, Outlook stops responding. The same table contents will also cause Word to stop responding,” Microsoft explained in a support document published on July 29. You can see an example of the Outlook bug triggered while viewing an Uber receipt email on Windows in the screenshot below: Fortunately, the Microsoft Word team has addressed the issue and a patch will soon be rolled out to the Beta channel for testing. However, Microsoft plans to release the fix to Outlook users in the production channel as a part of the August Patch Tuesday updates coming next week. How to fix Outlook crashes caused by Uber receipt emails on Windows PCs As a workaround, Microsoft recommends users to rollback to a previous version of Microsoft Office. To do this, open a Command Prompt window with Administrator privileges on your Windows machine. Now, copy and paste the following two commands and hit the Enter key after each of them: cd %programfiles%\Common Files\Microsoft Shared\ClickToRunofficec2rclient. exe /update user updatetoversion=16. 0. 15225. 20288 Last month, Microsoft also confirmed an issue that was breaking Outlook Search on Windows 11 devices. The problem prevented recent... --- ### A Simple Guide to Linux Shell Scripting With Bash > This shell scripting tutorial for beginners will go over the basics of Linux shell scripting with Bash, including creating and running a script, as well as working with strings and loops. - Published: 2022-08-03 - Modified: 2023-05-02 - URL: https://petri.com/shell-scripting-bash/ - Categories: Linux - Tags: Automation, Bash, linux, Shell Scripting - Article Type: How To Ever found yourself wanting to learn more about Linux shell scripting, but you weren't sure where to begin? Are you relatively new to the world of Unix-based operating systems and want to extend your skills to do some basic shell programming? This tutorial for beginners will go over the basics of Linux shell scripting with Bash, including creating and running a script, as well as working with strings and loops. Shell scripting is used to automate common administrative tasks Regardless of the operating system, shell scripts are used to automate repetitive administrative tasks. For example, in Windows you can rename files using File Explorer. But if you need to rename many files, it would be a time-consuming task to use the graphical shell. PowerShell allows you to automate the task and repeat it reliably. In Linux-based operating systems, Bash and other shells are used to automate tasks like working with files, modifying system configuration, and many other tasks that could otherwise be performed by typing single commands. What you need to learn Bash shell scripting To write and run a Bash script, you only need three things: Any plain text editor, such as Notepad, Text Editor, TextEdit, vi, emacs, or Visual Studio Code. A terminal emulator, an application that comes preinstalled with most operating systems and is often called Terminal, Console, or Command Prompt. Bash itself. The terminal emulator is where you'll type commands and run them by hitting Enter or Return. As for Bash, whether you have it pre-installed will depend... --- ### Microsoft Defender Gets New Security Tools Powered By RiskIQ's Threat Intelligence - Published: 2022-08-02 - Modified: 2022-08-02 - URL: https://petri.com/microsoft-defender-security-tools-threat-intelligence/ - Categories: Security - Tags: Microsoft Defender, News, Security, Threat Intelligence - Article Type: News Microsoft has announced two new security services to enhance the threat intelligence capabilities of its Microsoft Defender platform. The new Defender Threat Intelligence and Defender External Attack Surface Management tools are a result of Microsoft’s acquisition of the cybersecurity company RiskIQ in July 2021. First up, the Microsoft Defender Threat Intelligence (MDTI) service provides enterprise customers access to real-time threat intelligence data obtained from Microsoft's security signals. It should help security teams to enhance their security strategies and proactively protect their infrastructure against online threats. According to Microsoft, RiskIQ’s data provides an additional layer of security on top of its own security products such as Microsoft Defender and Microsoft Sentinel. The service also brings access to a library of raw threat intelligence from Microsoft’s security experts. These unique insights make it easier for organizations to find, remove, and block security issues within their environments. “Organizations can proactively hunt for threats more broadly in their environments, empower custom threat intelligence processes and investigations, and improve the performance of third-party security products,” explained Vasu Jakkal, Microsoft’s CVP for Security, Compliance, Identity, and Management. Microsoft Defender External Attack Surface Management Additionally, the new Microsoft Defender external attack surface management service provides customers with a comprehensive view of their attack surface. It enables security teams to discover agentless and unmanaged internet-facing assets that could be vulnerable to cyber-attacks. The tool enables organizations to block potential attack vectors and mitigate risks. “With a complete view of the organization, customers can take recommended steps to mitigate... --- ### How to Use PowerShell Grep: Select-String and RegEx Real World Examples > PowerShell grep: Learn how to get your text string into a PowerShell object, and then use Select-String to search the string for patterns. Jeff Hicks uses a real world example where you will parse a log file and then format and display the output according to your needs. - Published: 2022-08-02 - Modified: 2024-09-04 - URL: https://petri.com/powershell-grep-select-string/ - Categories: PowerShell - Tags: Grep, PowerShell, REGEX, Select-String - Article Type: How To Grep (Global Regular Expression Print) is a commonly used Linux command for searching strings of characters in text files. There's is no such thing as PowerShell grep. But naturally, you can get the same functionality in PowerShell. You'll just need to use the Select-String cmdlet instead. In this article, I'll show you how to get your text string into a PowerShell object, and then use Select-String to search the string for patterns. PowerShell grep - Can I grep in PowerShell? Grep is used in Linux to search for regular expressions in text strings and files. There's no grep cmdlet in PowerShell, but the Select-String cmdlet can be used to achieve the same results. The Windows command line has the findstr command, a grep equivalent for Windows. But it's better to use Select-String when working with PowerShell. Once you have objects, you can then take full advantage of PowerShell. I'll admit that using regular expressions (RegEx) can be a bit vertigo-inducing, so let's look at using the Select-String cmdlet first. We'll cover RegEx later. Related article: Use a PowerShell Substring to Search Inside a String The assumption is that the text output is in a predictable and known format, where you don't have any null or empty values. I'm going to use a text file that has RAID and disk information. This is what the file looks like: Text-Based Output. (Image Credit: Jeff Hicks) ​$file = "c:workraidreport. txt" Return limited set of objects using Select-String I only want the last part... --- ### Microsoft Teams Adds Viva Goals to Help Employees Track Objectives and Key Results - Published: 2022-08-02 - Modified: 2022-08-02 - URL: https://petri.com/microsoft-teams-viva-goals-module/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Viva Goals, a new goal-setting and management tool that launched in private preview back in May is now generally available. The new Viva Goals app aims to help employees and organizations track progress towards their predefined goals with Objectives and Key Results (OKRs). Essentially, OKR is a performance management framework that allows companies to set and communicate ambitious goals with measurable outcomes. Microsoft emphasizes that individuals and teams are often unclear as to how specific tasks contribute to the overall success of the business. Viva Goals is designed to address this problem by providing more visibility into the organization’s daily workflows and strategic goals. A customizable dashboard provides real-time insight into long-term goals with contextual data, built-in notifications, and other automated tools. “We help business leaders build higher performing teams, HR leaders improve employee experience, and employees feel a sense of purpose and belonging at work,” the company explained. “Viva Goals supports the OKR (Objectives and Key Results) goal-setting framework, popularized at Google, Intel, and other Fortune 500 companies for alignment it naturally creates between the work teams are doing and an organization’s top business priorities. ” Microsoft Viva Goals licensing details To get started, organizations will need to purchase either the Microsoft Viva Goals SKU or Microsoft Viva SKU. Currently, Viva Goals is available as an application in Microsoft Teams and it’s also accessible on the web. Keep in mind that customers who want to use the app via Teams also should have any of the following licenses: Microsoft... --- ### Microsoft Launches Faster Outlook Lite Android App in Select Markets - Published: 2022-08-02 - Modified: 2022-08-02 - URL: https://petri.com/microsoft-launches-outlook-lite-android/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, News, Outlook, Outlook for Android - Article Type: News Last month, Microsoft announced its plans to launch a new smaller and faster Outlook Lite app for Android. The Lite version of Outlook is finally available in select markets and it's specifically designed for low-end mobile devices. Microsoft highlights that Outlook Lite brings performance improvements for lightweight phones with low storage and only 1GB of RAM. It is optimized to use less battery power as compared to the existing Outlook Android app. Outlook Lite is supported on all network types, including 2G and 3G networks. “We are thrilled to announce the availability of Outlook Lite in select markets to empower more individuals, schools, universities, and small businesses with a solution for their lightweight mobile devices. Outlook Lite brings the main features of Microsoft Outlook in a smaller-sized app with fast performance for lightweight devices on any network,” Microsoft explained. The Outlook Lite app provides quick access to emails, calendars, and contacts in the bottom navigation pane. However, Microsoft has moved the search icon to the top right corner of the app. Outlook Lite to add support for third-party accounts and multi-account support Currently, Outlook Lite only supports Microsoft 365, Microsoft Exchange, Outlook. com, Live, Hotmail, and MSN accounts. Microsoft says that third-party accounts and multi-account support will be added in upcoming releases. “Outlook Lite currently does not support Android Work Profile and Mobile Application Management (MAM), it is only applicable to organizations that do not require the same,” Microsoft added. Notably, the new Outlook Lite app for Android is only available... --- ### What’s New in Windows – July 2022 > This month, Microsoft is apparently pushing back the next big release of Windows to 2024, the Windows Autopatch service is now generally available, Windows 10 22H2 will be getting some new features, and there are tons of updates to Insider Preview builds of Windows 11. - Published: 2022-08-02 - Modified: 2022-08-24 - URL: https://petri.com/whats-new-in-windows-july-2022/ - Categories: Windows 11 - Tags: Microsoft Edge, Windows 11, Windows Insider Program - Article Type: News As I sat down to write this month’s installment of What’s New in Windows, I thought that there hadn’t been much news in July. That is until I started checking the updates to builds in the Insider Program. It really is a lot. So, let’s get started with the most important news for Windows users in the real world – and finish up with all the changes coming to a PC near you soon. Next major update to Windows pushed back to 2024 While there’s been no official word from Microsoft, Windows Central’s Zac Bowden reported this month that according to his sources, Microsoft is planning to push the next big update to Windows back to 2024. Originally, Sun Valley 3 had been planned to drop in 2023. But Bowden reports that the next big update is codenamed Next Valley and it is coming in 2024. The frequency at which Microsoft delivers features to users on current versions of Windows will increase. According to Bowden, beginning with Windows 11 22H2, which is due this fall, Microsoft plans to start a new ‘Moments’ engineering initiative to deliver features and ‘experiences’ to users before the arrival of major Windows releases. Check out my video on the subject for more information: https://youtu. be/eZmYyvv4kFU Windows 10 version 22H2 has ‘scoped set of features’ We’ve known for some time that Windows 10 users are getting an update (version 22H2) this fall. But it wasn’t clear if the update would include any new features. Microsoft updated... --- ### What's New for Microsoft's Power Platform – July 2022 > The July 2022 updates for Microsoft's Power Platform include a new Search pane in Canvas apps, a new way to embed a canvas app in Teams, and 44 new connectors. - Published: 2022-08-02 - Modified: 2022-08-02 - URL: https://petri.com/microsoft-power-platform-july-2022-updates/ - Categories: Power Platform - Tags: power apps, Power Automate, Power BI, Power Platform, Teams - Article Type: News It’s that time of year when the lightning strikes and the thunder rolls. I have to say the same for all the updates made this past month in the Power Platform, which includes a new Search pane in Canvas apps, a new way to embed a canvas app in Teams, and 44 new connectors. Keep reading to learn more about these latest additions. Find and replace in Canvas apps This is my favorite thing this month, heck maybe even this year. In Power Apps Canvas apps, you can now find and replace. That's right, using the Search pane on the left-hand side of the studio, you can search for formulas, variables, collections, media, flows, components... basically everything. This is a feature we have asked for since cavemen invited fire so HOORAY! In new apps, the Search pane will just show up but in your existing apps, you will need to go to Settings> Upcoming features and enable Search under Preview. Learn more about searching for objects across your apps by checking out my video on the Search Pane or Microsoft’s documentation. Adding your apps to Teams got easier Integrating your apps into Microsoft Teams has become much easier with the addition of the web player for Canvas apps! You can launch and pin your favorite apps into Teams straight from within the web player. Learn more about embedding your app in Microsoft Teams here. You can now embed an existing app created using Power Apps into Microsoft Teams. Power Automate... --- ### Amazon CloudFront Vs. Cloudflare: How to Choose the Right CDN > Cloudflare and Amazon CloudFront are among the most renowned and reliable CDNs on the market. In this Amazon CloudFront vs. Cloudflare comparison, we'll detail the key differentiators for both CDNs to help you determine what the most relevant service to use for your business.  - Published: 2022-08-02 - Modified: 2022-08-02 - URL: https://petri.com/aws-cloudfront-vs-cloudflare/ - Categories: Cloud Computing - Tags: Amazon Web Services, AWS, CDN, Cloudflare - Article Type: Overview Cloudflare and Amazon CloudFront are two of the most renowned and reliable content delivery networks (CDNs) on the market. In addition to speeding up your content delivery and load times, they can both provide great benefits to your organization. In this Amazon CloudFront vs. Cloudflare comparison, we'll walk you through the features, cost, performance, and other key differentiators to take into account when choosing the best CDN for your business. Amazon CloudFront vs. Cloudflare: What is a content delivery network (CDN)? Content delivery networks are used all over the world by industries such as digital content, e-commerce, media/publishing, and SaaS companies for their everyday operations. All these organizations are leveraging CDNs to speed up load times, improve scalability, minimize risks associated with traffic surges, and improve the overall service performance of websites. CDNs can do that by leveraging a network of nodes and servers spread out across multiple Internet backbones. Cloudflare is one of the most popular CDNs out there, and it’s capable of increasing the security and speed of websites, applications, APIs, and corporate networks.  In addition to its CDN offering, Cloudflare offers other application services such as DNS, load balancing, video streaming, DDoS attacks protection, web application firewall (WAF), analytics, domain registry, and more.   Amazon CloudFront is the CDN service launched by Amazon Web Services back in 2008, two years before Cloudflare launched its own CDN. Amazon CloudFront offers built-in security and low latency with high transfer speeds, and it also supports handy integrations with almost all AWS services.   While both Cloudflare and Amazon CloudFront can help you achieve your organizational goals and meet your requirements from... --- ### Microsoft's Move to Block Office Macros Leads Hackers to Find New Attack Vectors - Published: 2022-08-01 - Modified: 2022-08-01 - URL: https://petri.com/microsofts-block-office-macros-malware/ - Categories: Office - Tags: Macros, Malware, Microsoft Office, News - Article Type: News Last week, Microsoft started rolling out an update to block all Office VBA macros obtained from the internet by default to prevent phishing attacks. Now, the threat actors are using container files and other tactics to distribute malicious payloads. A macro is an automated input sequence that enables users to automate frequently used tasks in Microsoft Office. It’s one of the popular ways used by hackers and scammers to steal sensitive data and distribute ransomware. The new default behavior aims to protect enterprise systems by preventing users from opening malicious files with a single click. Here's how threat actors are adapting to a post macro world According to the security firm Proofpoint, researchers have found that the VBA macro-based attacks decreased by 66 percent between October 2021 and June 2022. However, the hackers are increasingly using other file formats (such as RAR, ISO, and ZIP) to send macro-enabled documents to a potential victim through emails. The number of malware campaigns abusing container files increased by around 175 percent over the same period. “When downloaded, the ISO, RAR, etc. files will have the MOTW attribute because they were downloaded from the internet, but the document inside, such as a macro-enabled spreadsheet, will not. When the document is extracted, the user will still have to enable macros for the malicious code to automatically execute, but the file system will not identify the document as coming from the web,” the Proofpoint Threat Research Team explained. Additionally, threat actors could use container files to... --- ### What's New in Microsoft Teams – July 2022 - Published: 2022-08-01 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-microsoft-teams-july-2022/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has detailed a round-up of new features that were added to Teams during the month of July. The company highlighted a new LinkedIn integration in chats, a Polls app for meetings, management & security features, Teams devices, and much more. Here's a look at everything you need to know. Microsoft Teams gets a new Polls app Microsoft is replacing the Forms app in Teams with a new Polls app. This change should make it easier for users to find the app while creating polls in meetings and chats. The company has also made some enhancements to the UI of the poll suggestions pane. These include the poll results view and a new entry point to the Polls portal. The suggested polls list has been moved from the bottom to the side pane. Rating poll question type Additionally, there are some minor changes to the Polls app, such as a new poll question type called “Rating,” an option to reuse older polls, and a new animation that appears during response submission. Moreover, the Polls app provides a better poll result view with dynamic results and color indication. Remove a call from history Microsoft also released some new features for calls in July. It is now possible for users to hide specific calls from their call history. This capability is available on both desktop and mobile devices. Microsoft Teams can also play call recording announcements in users’ default language. Meanwhile, the Redmond giant has released several improvements for the Common Area... --- ### VMware Fusion 22H2 Tech Preview Adds Windows 11 Support to Apple Silicon Macs - Published: 2022-07-29 - Modified: 2022-07-29 - URL: https://petri.com/vmware-fusion-22h2-windows-11-apple-silicon/ - Categories: Virtualization, Windows 11 - Tags: News, Virtualization, vmware, Windows 11 - Article Type: News VMware has announced the release of the Fusion 22H2 Tech Preview for Mac devices. This release adds the much-anticipated support for Windows 11 to Macs with Apple Silicon and Intel-based processors. “Many new enhancements and capabilities came together to bring Windows 11 to the Mac desktop with Fusion, and while they were designed with Windows 11 in mind, the tools can be used for other VMs as well,” said Michael Roy, Product Line Manager at VMware. According to VMware, it is now possible for Mac users to create virtual machines (VMs) that meet the minimum hardware requirements for Windows 11. This update adds a fast encryption mode to the virtual TPM 2. 0 module. With fast encryption, VMs can now encrypt sensitive files that require TPM support. It can help to boost the performance of VMs while preventing security breaches. Additionally, VMware Fusion has introduced the ability to automatically generate users’ passwords. It stores the encryption key in the local keychain that eliminates the need to manually type passwords. Fusion 22H2 preview adds improved Linux VM support to Apple Silicon Windows on ARM virtual machines are getting graphics improvements with support for 2D graphics drivers. It enables users to run their VMs in 4K and higher resolutions. Moreover, VMware Fusion improves support for Linux VMs on Apple Silicon Macs. The company has made some improvements to the Mesa SVGA graphics driver to add support for 3D hardware acceleration and OpenGL 4. 3 + GLES 3. 1. It is important to note that this... --- ### Microsoft Teams Now Lets Meeting Organizers Assign Seats in Together Mode - Published: 2022-07-29 - Modified: 2022-07-29 - URL: https://petri.com/microsoft-teams-assign-seats-together-mode/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Earlier this month, we reported that Microsoft Teams is adding a new feature in Together Mode to let meeting organizers assign seats to all participants. The company announced yesterday that this update is now available in public preview in the Teams desktop app for macOS and Windows users. Microsoft introduced the Together mode feature in Teams back in July 2020. It uses AI to place all participants in a meeting in a virtual space. Up until now, the Teams desktop app only allowed users to assign a seat to the organizer or presenter while creating custom Together Mode scenes. However, this customization option was previously not available for other participants. Microsoft says that meeting organizers will now see an option to assign seats to attendees either while enabling Together Mode or when selecting a scene. “Meeting organizer can assign seats to meeting invitees and all the participants currently in the meeting by dragging the user to the preferred seat. Once assigned, organizer can apply the newly created layout and everyone in the meeting will see the participants organized by the seating assignment,” Microsoft noted. How to assign a seat in Microsoft Teams' Together Mode To assign seats to participants, the meeting organizer will need to follow the steps mentioned below: First, join a Teams meeting as an organizer and turn on Together Mode by clicking View >> Together Mode. A new Teams window will appear on the screen with options to choose scenes and make other Together Mode configurations. Select the... --- ### Windows 11 to Add New Multi-App Kiosk Mode for IT Admins - Published: 2022-07-29 - Modified: 2022-07-29 - URL: https://petri.com/windows-11-multi-app-kiosk-mode-it-admins/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, Windows Insider - Article Type: News Microsoft has released the Windows 11 preview build 25169 for Insiders in the Dev channel. The latest update brings two notable features including a new multi-app kiosk mode for IT administrators as well as improvements to Windows Spotlight. First up, Microsoft is introducing a new kiosk mode on Windows 11 that enables IT Pros to run specific apps on a Windows 11 PC while all other functionalities will be restricted. This feature has been available in previous Windows versions and it turns a regular PC into a single-purpose device that can run only one application. The multi-app kiosk mode feature is designed for business and educational scenarios where a device is used by different people. Currently, administrators can use PowerShell and WMI Bridge to enable kiosk mode on Windows 11 machines. Meanwhile, Microsoft plans to add support for Intune/MDM and provisioning package configuration in upcoming releases. Additionally, Microsoft has released some enhancements to the Windows Spotlight feature for desktop wallpapers. It’s now possible to turn on the option directly from the "Personalization" section of the Settings app. Moreover, users can create custom themes with a selection of rotating images in Windows Spotlight. Windows 10 22H2 preview is now available for enterprise customers Microsoft has also announced the release of its first Windows 10 version 22H2 preview build for Insiders in the Release Preview Channel. The software giant is inviting business customers to test the new update on their devices before its commercial release later this year. “Commercial devices configured for... --- ### Windows Autopilot Deployment: A Step-by-Step Guide > In this Windows Autopilot deployment step-by-step guide, we explain how IT pros can use this solution to simplify the process of pre-configuring Windows devices before handing them out to users in their organization. - Published: 2022-07-29 - Modified: 2025-03-03 - URL: https://petri.com/windows-autopilot-deployment-step-by-step/ - Categories: Microsoft 365, Windows Client OS - Tags: intune, Microsoft Intune, Windows, Windows 10, Windows Autopilot - Article Type: How To Windows Autopilot is a new Microsoft tool that IT pros can use to pre-configure, reset, or repurpose Windows devices. It's a great tool to automate the process of deploying Windows devices in an organization. In this Windows Autopilot deployment step-by-step guide, we'll explain how to get started with Windows Autopilot and set up new devices before handing them out to users in your organization. How does Windows Autopilot deployment work? Windows Autopilot is a collection of technologies that help to get devices up and running from the Out of Box Experience (OOBE). After being powered up for the first time, all Windows devices start by allowing a user to create a username and password, or to sign in with a personal, work, or school Microsoft account. This is known as Windows Enrollment. Included as part of Azure AD Premium, Windows Autopilot allows computers to be directed to the correct Mobile Device Management (MDM) platform during the OOBE, allowing IT admins to ensure that users follow a streamlined process for their new computer.   Is Windows Autopilot a Microsoft Intune feature? As Windows Autopilot is a feature of Azure AD Premium, not Intune, it isn't accurate to refer to it as "Microsoft Intune Autopilot". In most cases, the MDM that organizations choose to use is Intune, but it really could be any of the MDMs supported by Azure Active Directory.   When Microsoft announced Microsoft Endpoint Manager as an overarching product above both Microsoft Intune and Configuration Manager, there was much confusion. According to some, Intune became... --- ### AWS Adds New Security Features to Elastic Block Store and Kubernetes Service - Published: 2022-07-28 - Modified: 2022-07-28 - URL: https://petri.com/aws-security-malware-protection-features/ - Categories: Amazon Web Services - Tags: AWS, News, Security - Article Type: News Amazon has released new security updates for its Amazon Elastic Block Store (EBS) and Amazon Elastic Kubernetes Service (EKS) services. First of all, Amazon GuardDuty is getting new malware protection capabilities to detect malicious files stored on container workloads or customer instances running on Amazon EC2. For those unfamiliar, Amazon GuardDuty is a managed cloud security solution that continuously monitors AWS accounts, workloads, and resources for malicious activities and threats. The AI-powered service comes with built-in anomaly detection and threat intelligence to perform this real-time analysis and initiate automated responses. “Amazon GuardDuty Malware Protection adds file scanning for workloads utilizing Amazon Elastic Block Store (EBS) volumes to detect malware that can be used to compromise resources, modify access permissions, and exfiltrate data. Malicious files that contain trojans, worms, crypto miners, rootkits, bots, and the like can be used to compromise workloads, repurpose resources for malicious use, and gain unauthorized access to data,” Amazon explained. To enable the GuardDuty Malware Protection feature, IT admins will need to head to the GuardDuty console or use the GuardDuty API. Once the threat is detected, the security findings will be sent to Amazon Detective, Amazon EventBridge, and AWS Security Hub. Amazon Detective Now supports security investigations for Kubernetes Workloads Additionally, Amazon Detective is bringing its security investigation capabilities to container workloads running on Amazon EKS clusters. Amazon Detective is a service that lets IT admins quickly detect and investigate potential security issues across one or more AWS accounts. With the latest update, the Amazon... --- ### Understanding PowerShell Objects > I have taught PowerShell objects to many people over the last 10 years and it is not as difficult as people make it out to be. In this article, I will take you through the basics of working with objects. Plus, real-world examples of how to simplify complex code using objects. - Published: 2022-07-28 - Modified: 2024-09-04 - URL: https://petri.com/powershell-objects/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To One of the features that both makes PowerShell so easy to use yet sometimes difficult to learn is its focus on objects. I have taught PowerShell objects to many people over the last 10 years and this is not as difficult as people make it out to be. That is to say, I think many beginners get it into their heads that because PowerShell is based on the . NET Framework, and there is all this talk about objects, that they need to start thinking like a developer. Absolutely not. Understanding PowerShell Objects I always teach PowerShell as a management tool first. PowerShell is made up of numerous building blocks; it is up to you to combine the building blocks into an expression or series of expressions that accomplishes a given task. The big paradigm jump is to realize that when you are running PowerShell commands, you are working with objects and not text output. So let's take a quick look at objects in PowerShell. What is a PowerShell object? A PowerShell object is some thing that was created by a developer. Objects have a name, properties, and methods. Properties describe the object and methods are actions you can perform on it. We don't care how the object was developed or how it works internally. It is essentially a black box. There are additional elements, like events, but those are advanced features that you aren't likely to need. Let's look at this from the perspective of a real-world object, a boat... . --- ### Microsoft Releases Updates for Azure AD Certificate-Based Authentication - Published: 2022-07-28 - Modified: 2022-07-28 - URL: https://petri.com/microsoft-updates-azure-ad-certificate-based-authentication/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Microsoft, Microsoft Entra, News - Article Type: News Microsoft announced the public preview of Azure Active Directory Certificate-Based Authentication (CBA) back in February. Now, the software giant has released some enhancements for the new service based on customer feedback. Certificate-based authentication (CBA) is a robust service that lets organizations validate a user’s identity with X. 509 certificates against Azure Active Directory (Azure AD). It eliminates the need to use a federation service, like the Active Directory Federation Service (ADFS). This helps to simplify management and reduce infrastructure costs in enterprise environments. Microsoft has launched a new Azure portal that makes it easier to configure certificate authorities. Instead of using PowerShell, IT Pros can now use the Azure Portal to upload certificate authorities to Azure AD, view them, and delete invalid CAs. It is also possible to easily view the validity of these certificates. Azure AD CBA gets support for Windows logon and mobile platforms Microsoft has added a new feature that lets users authenticate on Windows 11 22H2 PCs via X. 509 certificates on smartcards. This release provides joined or hybrid-joined devices with single sign-on access to all Azure AD integrated apps. Microsoft also plans to bring this feature to all Windows 10 and Windows Server machines in upcoming releases. The latest Azure AD CBA update also brings support for certificates provisioned on users’ iOS and Android devices. This capability is currently available for native browsers and select Microsoft apps. These include Microsoft Teams, OneDrive, Outlook, Office mobile apps, the Azure Information Protection app, and the Microsoft Intune Company Portal,... --- ### Microsoft Exchange Servers Hit By Stealthy IIS Backdoors - Published: 2022-07-27 - Modified: 2022-07-27 - URL: https://petri.com/microsoft-exchange-servers-iis-backdoors/ - Categories: Exchange Server, Security - Tags: Exchange Server, IIS, Malware, News - Article Type: News Microsoft has published a security advisory about a new wave of malware attacks that target Exchange Servers. The company has warned IT admins that threat actors are increasingly using malicious Internet Information Services (IIS) modules to install backdoors and steal credentials. For those unfamiliar, Internet Information Services (IIS) is a web server that lets developers host websites and applications. It has been a core part of Windows for years and can be extended via various add-ons called modules. IIS modules offer an ideal way to install malicious backdoors into web-facing applications. These attacks typically enable the attacker to abuse a critical vulnerability in the application to deploy a web shell. Once installed, the IIS module lets threat actors to get persistent access to target servers. In a recent campaign, Microsoft observed that attackers are infecting Exchange servers with customized IIS modules. They managed to run commands, steal credentials, access sensitive data, and deliver additional payloads to the victim's machines. "Once registered with the target application, the backdoor can monitor incoming and outgoing requests and perform additional tasks, such as running remote commands or dumping credentials in the background as the user authenticates to the web application," Microsoft noted. How to protect Exchange Servers against malicious IIS backdoors Microsoft says malicious actors will continue to use IIS backdoors in the coming months. It is important that organizations should follow best security practices to protect their servers. The company has provided some insights that can help IT admins to detect and remove... --- ### Paul Thurrott’s Short Takes: Microsoft Earnings Special Edition (July 2022) - Published: 2022-07-27 - Modified: 2024-05-29 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-18/ - Categories: Microsoft - Tags: Earnings, News - Article Type: News Because Microsoft announced its quarterly and annual earnings this week, I’m back with a new edition of Short Takes that looks exclusively at the results across all of the software giant’s major business units. Because Microsoft announced its quarterly and annual earnings this week, I’m back with a new edition of Short Takes that looks exclusively at the results across all of the software giant’s major business units. Note: On Tuesday, Microsoft reported a net income of $16. 7 billion (up 2 percent year-over-year) on revenues of $51. 87 billion (up 12 percent YOY) in the quarter ending June 30. Because it was the end of its fiscal year, the software giant also reported a net income of $72. 7 billion (up 19 percent YOY) on revenues of $198. 3 billion (up 18 percent YOY) for fiscal year 2022. The quarterly results were below Microsoft’s revised guidance, suggesting that things collapsed even further towards the end of the quarter. But thanks to a strangely rosy outlook, Microsoft’s stock price surged in aftermarket trading. –Paul Microsoft’s three big businesses did great, great, and OK Microsoft has three top-level business units, and Intelligent Cloud, which includes Azure and Server, was the biggest in the quarter with $20. 9 billion in revenues. Productivity and Business Processes, home of Microsoft 365 and Office, came in second with $16. 6 billion in revenues. And then there was More Personal Computing, which belied the double-digit growth of its siblings (20 and 13 percent, respectively) with just 2 percent growth and $14. 4 billion in revenues. This is the business unit with Windows, Xbox, and Surface, so that’s probably a clue about what went wrong. “Microsoft returns to in-person tech events in October with Ignite” And you thought... --- ### Microsoft Launches New On-Premises Unified Update Platform To Manage Windows Updates - Published: 2022-07-27 - Modified: 2022-07-27 - URL: https://petri.com/microsoft-on-premises-unified-update-platform/ - Categories: Active Directory (AD) - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has launched a new Unified Update Platform (UUP) that brings on-premises update management capabilities for commercial customers. UUP on premises is designed to streamline Windows 11 upgrades for organizations that manage employee devices with management tools such as WSUS and Microsoft Endpoint Configuration Manager. The Redmond giant first started testing the Unified Update Platform (UUP) technology in Windows 10 back in 2016. It aimed to make new feature updates to reduce the size of Windows 10 feature updates by around 35 percent. Microsoft highlights that the new on-premises UUP service helps IT admins to manage both feature and quality updates on Windows devices. The UUP capabilities are currently in private preview for businesses. Starting in early 2023, all new Windows 11 updates delivered through WSUS and Configuration Manager will be available in the UPP format. “The Unified Update Platform (UUP) is a single publishing, hosting, scan, and download model for OS quality and feature updates for all Windows-based operating systems. It offers improved delivery technologies in response to IT admin requests for more seamless updates, more control over installation time, more battery life, and lighter download size,” the company explained. Unified Update Platform simplifies Windows 11 upgrades Microsoft notes that UUP on-premises helps to reduce some additional work previously required for maintaining Windows 10 and Windows 11 devices. It’s now possible to upgrade the operating system with one reboot. Additionally, IT admins no longer need to use "media-based task sequences" for Windows upgrades. Windows 10 PCs will retain features... --- ### How to Fix The "Trust Relationship Between This Workstation And The Primary Domain Failed" Error > The “trust relationship between this workstation and the primary domain failed” error occurs when a computer cannot access a network because it is offline, or when it lost its membership to the Active Directory domain. Learn how to repair your device's trust relationship with Active Directory here. - Published: 2022-07-27 - Modified: 2024-03-13 - URL: https://petri.com/trust-relationship-between-this-workstation-and-the-primary-domain-failed-error/ - Categories: Active Directory (AD), Windows Client OS - Tags: Active Directory, Windows, Windows 10 - Article Type: How To The “trust relationship between this workstation and the primary domain failed” error means that the computer cannot access a network because it is offline, or that it has lost its membership to the Active Directory (AD) domain. This guide will help you understand what's happening behind the scenes when this error occurs, and we'll go through different methods to troubleshoot this issue. As you will see, there are quite a few possible solutions to fix the “ trust relationship between this workstation and the primary domain failed". Notably, there's one that's quicker than the traditional – 'disjoin from the domain, reboot, rejoin to domain, reboot... ' fun. Let's get started! Understanding the "trust relationship between this workstation and the primary domain failed" error The "trust relationship between this workstation and the primary domain failed" error message is definitely one of the most annoying ones that IT pros encounter when working with Active Directory-joined devices. It seems to pop up out of nowhere just to put up a roadblock in your daily tasks to get things done. How can you encounter this error? When you join a workstation to an Active Directory domain, a computer account is created in AD. And just like with a user account, this computer account has a password, which is good for 30 days before it is updated. Note – You do have the option of modifying the registry to change the 'maximum machine account password age' attribute. If you so desire, open Regedit. exe and modify... --- ### iCloud for Windows Now Lets Users Generate 2FA Codes - Published: 2022-07-26 - Modified: 2022-07-26 - URL: https://petri.com/icloud-for-windows-2fa-code-generator/ - Categories: Active Directory (AD) - Article Type: News Apple has released a new update that brings a much-anticipated feature for its iCloud app on Windows. First spotted by a Reddit user, the latest version of the app now lets users generate two-factor authentication codes. Two-factor authentication (2FA) is a security method that adds an extra layer of protection while logging into apps or websites. Once enabled, the 2FA feature prompts users to enter a one-time code to prevent authorized people from accessing their accounts. These are time-based codes and refresh every 30 seconds. Apple first introduced support for 2FA in ‌iCloud‌ Keychain on macOS Monterey and iOS 15 last year. With the latest update, the company is bringing the same capability to all Windows 10 and Windows 11 devices. It eliminates the need to use third-party applications for generating 2FA codes. It is important to note that iCloud Passwords currently only supports Google Chrome and Microsoft Edge on Windows PCs. This means that users will have to open iCloud Passwords whenever they want to generate a 2FA code while using any other web browser (such as Mozilla Firefox). iCloud for Windows gets Password Notes support In addition to 2FA codes, Apple has added Password Notes support to its iCloud app for Windows. The Password Notes feature enables users to add and view notes to passwords saved in their iCloud Keychain. This update should help to store important account details (such as security questions and account numbers) along with the credentials. Apple debuted the all-new version of its iCloud... --- ### Microsoft Releases Emergency Fix for Windows 11 Start Menu Issues - Published: 2022-07-26 - Modified: 2022-07-26 - URL: https://petri.com/microsoft-fix-windows-11-start-menu/ - Categories: Windows 11 - Tags: News, Start Menu, Windows 11 - Article Type: News Microsoft has acknowledged a new issue that is currently preventing users from opening the Start menu on some Windows 11 PCs. The company has notified that it applied the Known Issue Rollback mechanism to address the problem. For those unfamiliar, the Known Issue Rollback capability allows users to quietly roll back buggy non-security fixes delivered via Windows Update. It is designed to help users prevent or address potential issues on Windows machines. “After installing this update, we have received reports that a small number of devices might be unable to open the Start menu. On affected devices, clicking or selecting the Start button or using the Windows key on your keyboard might have no effect,” the company explained on the Windows health dashboard. How to fix the Start menu bug via Group Policy on Windows 11 PCs Microsoft notes that IT admins will need to install and configure a specific KIR Group Policy to fix the Start menu bug on enterprise-managed devices. To do this, head to Computer Configuration >> Administrative Templates >> KB5014668 220721_04201 Known Issue Rollback > Windows 11 (original release). You can find more details about the configuration process on Microsoft’s website. Microsoft has confirmed that the Start menu issues also impact the June preview update (KB5015882). This release enables users to update to a new Windows 11 version on startup and fixes a bug that was previously causing File Explorer to freeze. In the meantime, Microsoft has warned that the updates released on June 28 (KB5014666... --- ### Using PowerShell Select-Object > In this article, PowerShell expert Jeff Hicks takes you through the different ways you can use the PowerShell Select-Object cmdlet. PowerShell is an object-oriented shell. And as such, you will need to understand how to work with objects to get the best out of PowerShell. - Published: 2022-07-26 - Modified: 2024-09-04 - URL: https://petri.com/powershell-select-object/ - Categories: PowerShell - Tags: PowerShell, PowerShell Select-Object, select-object - Article Type: How To PowerShell is an object-oriented shell for Windows, Linux, and macOS. And as such, you will need to understand how to work with PowerShell objects to get the best out of it. In this article, PowerShell expert Jeff Hicks takes you through the different ways you can use the PowerShell Select-Object cmdlet. I think by nature most people are picky. In PowerShell, this is actually a positive attribute. PowerShell is designed to give you a lot of information. Sometimes more than you really need. PowerShell is also designed to display command results that someone from Microsoft, or a vendor in the world of third-party cmdlets, thought you would most likely want to see or use. Of course, you know that there is always much more to the picture than what you see. Once you discover what you can use, you can afford to be a bit pickier. And the cmdlet that makes this easy is Select-Object. If you are new to using PowerShell objects, read Introduction to Objects in PowerShell on Petri. 2 ways to use the PowerShell Select-Object cmdlet There are a few ways to use Select-Object. Perhaps the most important way is to use it to display a subset of object properties. 1. Display a subset of object properties You should know that properties you see when you run a command like Get-Process are not the only properties. In some cases, what you see isn't even the actual property name. The best way is to use Get-Member to discover... --- ### Microsoft Releases Azure Active Directory Cross-Tenant Access Settings - Published: 2022-07-25 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-azure-ad-cross-tenant-access-settings/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure AD, News - Article Type: News Microsoft has announced the general availability of new Azure AD cross-tenant collaboration settings. The feature was first announced back in February, and it lets IT Pros control how end users can securely collaborate with external organizations. With this release, IT administrators can access the new settings in the External identities section of the Azure AD admin center. There are currently three settings to control external collaboration within a tenant. These include inbound access settings, outbound access settings, and Trust settings. The inbound access settings control who can access internal resources and apps. Similarly, the outbound access settings let IT admins specify if employees can access external resources from other tenants. There are also inbound trust settings to trust security claims from external organizations, such as Multi-factor Authentication (MFA) and device compliance. This release helps organizations reduce support costs by eliminating the need for managing MFA registrations for external users. The inbound cross-tenant access settings also let companies enforce Azure AD Conditional Access policies on complaint/hybrid Azure AD joined devices. “With inbound cross-tenant access settings, more of you are trusting security claims from external Azure AD organizations for MFA to ensure external users perform MFA in their home tenant when required by Conditional Access polices. This eliminates the need for users to complete a second MFA when accessing resources in another tenant, which significantly reduces friction for them,” the company explained. Seamless collaboration on Microsoft Teams Shared Channels Microsoft highlights that cross-tenant collaboration policies also apply to Teams Shared Channels. The... --- ### Latest Windows Server Updates May Cause Printing and Scanning Issues - Published: 2022-07-25 - Modified: 2022-07-25 - URL: https://petri.com/windows-server-updates-printing-issues/ - Categories: Windows Server - Tags: Microsoft, News, Printing, Windows Server - Article Type: News Last year, Microsoft released security updates to address Windows Server printing issues in some business printers and scanners that use a smart card for authentication purposes. Now, the company has rolled out new optional updates to disable the temporary fix on Windows Server 2019 machines. In an updated support document, Microsoft warned that installation of these updates on Active Directory domain controllers (DCs) could potentially cause printing and scanning failures in enterprise environments. The problem specifically affects printers, scanners, and multifunctional devices (MFDs) that are not compliant with the authentication specification RFC 4556. “There will be no further fallback option in later updates. All non-compliant devices must be identified using the audit events starting January 2022 and updated or replaced by the mitigation removal starting in late July 2022. After July 2022, devices which are not compliant with the RFC 4456 specification and CVE-2021-33764 will not be usable with an updated Windows device,” the company explained. Additionally, Microsoft plans to remove these temporary mitigations on all supported versions of Windows Server with next month’s Patch Tuesday updates. These updates will be rolled out to Windows Server 2019, Windows Server 2016, Windows Server 2012, as well as Windows Server 2008. Windows Server 20H2 reaches end of support next month The software giant is also reminding customers that Windows Server 20H2 and the Semi-Annual Channel (SAC) for the server product will reach end of support on August 9. This means that Windows Server 20H2 devices will no longer receive monthly security and... --- ### Securing IoT with Azure Sphere > IoT expert John Lunn takes a look at what Azure Sphere is and how it is helping to protect Internet of Things (IoT) devices with additional security overlay. Learn about the 3 components of Azure Sphere, including Azure Sphere OS, and how Microsoft's Pluton chip is used to secure devices. - Published: 2022-07-25 - Modified: 2024-11-19 - URL: https://petri.com/azure-sphere/ - Categories: Internet of Things (IoT), Microsoft Azure, Security - Tags: Azure, Azure Sphere, Azure Sphere OS, cloud computing, IoT, Security - Article Type: Overview In this article, we are going to take a brief look at what Azure Sphere is and how it is helping to protect Internet of Things (IoT) devices with additional security overlay. In today’s world, we are surrounded by billions of devices - all with microcontrollers embedded in them for control and to add logic. More and more, these devices are connecting to the Internet to extend the their functionality. And to enable manufacturers to send over-the-air (OTA) updates or receive logging and metrics. Connecting devices to a network, let alone the Internet, is not without risks. We have all heard about hackers breaking into enterprise networks via small microcontroller devices that were connected to the corporate intranet. This absolutely can and does happen. But how can you prevent these kinds of attacks? Clearly the benefit of such devices connecting to a network is huge, especially in the climate and rise of IoT. Looking for a way to protect and secure microcontroller unit (MCU) based devices, Microsoft came up with an ingenious way to manage their security. What is Azure Sphere and Azure Sphere OS? Azure Sphere is not exactly a single product; it is a collection of 3 core items that are known as ‘Azure Sphere’. The MCU - A microcontroller unit that is secured and can connect to the Internet. The OS - A customized Linux-based operating system. The Cloud Based Security Service – A platform that provides a continuous security service for authentication, authorization, and renewal of security... --- ### Microsoft to Resume Blocking Office VBA Macros By Default on July 27 - Published: 2022-07-22 - Modified: 2022-07-22 - URL: https://petri.com/microsoft-resume-block-office-vba-macros/ - Categories: Microsoft 365 - Tags: Macros, Microsoft, Microsoft 365, Microsoft Office, News - Article Type: News Back in February, Microsoft announced that it would begin blocking Visual Basic for Applications (VBA) macros by default in its Office apps. The company started rolling out this change to Office Insiders in April before pausing it to incorporate user feedback. In a recent update to the Microsoft 365 message center, Microsoft notified IT admins that it’s moving forward with the new policy after making some usability improvements. The software giant now plans to start auto-disabling VBA macros in popular Office apps (such as PowerPoint, Excel, Access, Word, and Visio) from July 27, 2022. “We're resuming the rollout of this change in Current Channel. Based on our review of customer feedback, we've made updates to both our end user and our admin documentation to make clearer what options you have for different scenarios. For example, what to do if your users have files on SharePoint or files on a network share,” the company explained on the Microsoft 365 admin center. Security Banner Security experts have applauded the move and stated it's an essential step in preventing malware from infecting home and enterprise networks. However, this new policy will prevent users from enabling macros with a simple click, and the Office apps will show a new security banner with a "Learn More" button linked to a support page. How to unblock VBA macros in Office files Users will be able to turn on Office macros by manually selecting an unblock option in the properties of each file, and these additional steps... --- ### AWS Porting Assistant Moves VB.NET Apps to .NET Core > The new AWS Porting Assistant for .NET supports assessment and porting of legacy VB.NET applications to .NET Core. The AWS Porting Assistant for .NET translates VB.NET class libraries, web APIs, and console applications to .NET Core 3.1, .NET 5, or .NET 6 applications. - Published: 2022-07-22 - Modified: 2022-07-22 - URL: https://petri.com/aws-porting-assistant-vb-net/ - Categories: Amazon Web Services, Cloud Computing - Tags: .NET Core, Containers, linux, VB.NET - Article Type: News VB. NET is a Windows-only technology. So, moving these applications to other platforms can be difficult. But Amazon has come to the rescue with its new AWS Porting Assistant. Over the years a lot of businesses have developed all sorts of applications in VB. NET. And today, many of them are looking for ways to modernize these applications – sometimes moving them into containers or to other platforms like Linux. AWS Porting Assistant comes to the rescue The new AWS Porting Assistant for . NET supports assessment and porting of legacy VB. NET applications to . NET Core. Although widely used, VB. NET only runs on Windows. While the newer . NET Core is supported on both Windows and Linux. The AWS Porting Assistant for . NET translates VB. NET class libraries, web APIs, and console applications to . NET Core 3. 1, . NET 5, or . NET 6 applications. Install the AWS Porting Assistant for VB. Net The Porting Assistant for . NET is an open source analysis tool that reduces the manual effort of porting VB. NET applications. There are two versions of the assistant. There is a standalone tool that runs from the command line. And the Porting Assistant for . NET Visual Studio IDE extension. Like you might guess, the Porting Assistant for . NET Visual Studio IDE extension makes it possible to use the Porting Assistant for . NET functionality from within Visual Studio. The assistant scans . NET projects, analyzes the source code and package dependencies, and generates an assessment report that highlights incompatible APIs and packages. It provides replacement suggestions for incompatible packages and APIs. It... --- ### Microsoft Retires Windows Information Protection in Favor of New Purview Service - Published: 2022-07-22 - Modified: 2022-07-22 - URL: https://petri.com/microsoft-retires-windows-information-protection-purview-service/ - Categories: Security, Windows 10, Windows 11 - Tags: Microsoft Purview, News, Security, Windows, Windows 10, Windows 11 - Article Type: News Microsoft has announced its plans to retire the built-in Windows Information Protection (WIP) feature in its client operating system. The software giant has decided to sunset the data leak prevention capability in favor of its paid subscription service, Microsoft Purview. Windows Information Protection (previously known as enterprise data protection (EDP) is a useful feature that helps to prevent potential data leakage in enterprise environments. It enables IT Pros to keep personal and work data separate on employees’ devices. WIP also lets administrators identify which apps can access corporate data and whether end users can copy and paste the data into personal documents. Meanwhile, Microsoft Purview is a unified data governance platform that enables IT admins to gain visibility into data assets across their organization. The Microsoft Purview suite includes a Data Loss Prevention (DLP) service that helps to detect, classify and protect sensitive data. It can scan files and email messages for sensitive information and lets IT Pros take necessary actions. The Microsoft Purview Data Loss Prevention (DLP) solution significantly overlaps with WIP and works across endpoints, Microsoft 365 apps, and services. It is one of the reasons that the company has decided to discontinue the built-in WIP feature. “Over time, many of you have expressed a need for a data protection solution that works across heterogenous platforms, and that allows you to extend the same sensitive data protection controls on endpoints that you have for the various SaaS apps and services you rely upon every day,” the company explained... . --- ### New Features in SQL Server 2022 > SQL expert Mike Otey introduces you to all the most important SQL Server 2022 new features in the latest release of Microsoft's relational database. New features include SQL Ledger backed by blockchain, integration with AWS S3 storage, and Link to Azure SQL Managed Instance. - Published: 2022-07-22 - Modified: 2024-11-19 - URL: https://petri.com/sql-server-2022-new-features/ - Categories: SQL Server - Tags: SQL Server 2022 - Article Type: Overview SQL Server is Microsoft’s premier enterprise database platform. But in today’s world of rapid-fire releases and continuous updates, the new SQL Server 2022 release seems like it has been a long time in coming. But it includes some great new features. SQL Server 2019 was the last major release of SQL Server. With every release, Microsoft continues to optimize the core SQL Server engine. Today, most SQL Server innovations start off in the Azure cloud and then make their way to the on-premises editions of SQL Server. Let’s take a closer look at the upcoming editions of SQL Server 2022 and their new features. SQL Server 2022 new features The new features in SQL Server 2022 include: Parameter Sensitive Plan Optimization Query Store enhancements Link to Azure SQL Managed Instance Contained Availability Groups Azure Synapse Link for SQL Multi-Write Replication Azure Active Directory authentication Azure Purview integration SQL Server Ledger AWS S3 storage integration Now let's look at each one in detail. Parameter Sensitive Plan Optimization This is a new intelligent query processing enhancement that’s designed to improve the performance of existing workloads without changes to the application code. Previously, SQL Server cached a single plan per each stored procedure. This was based on a set of parameters and it was called parameter sniffing. However, some parameterized queries are sensitive to the input parameter values that are used. And the generated plan was not optimal for all possible values those parameters can take. The new Parameter Sensitive Plan Optimization... --- ### Windows 12 Won't Be a Big Bang Release. Here's Why. - Published: 2022-07-22 - Modified: 2022-07-22 - URL: https://petri.com/windows-12-2024/ - Categories: Windows - Tags: Microsoft, Windows 11, Windows 12, Windows Update - Article Type: Video Microsoft is apparently scrapping next year's big update for Windows 11. And instead, aiming for a major update in 2024. Which will be 3 years after Windows 11 first launched. So, why the change of plans and what can we expect to see in Microsoft's next big Windows release? Windows 12 due in 2024? What do you think Microsoft is going to focus on in the next big release of Windows, due in 2024? Check out my latest video and let me know in the comments on YouTube! Windows 11 search highlights was added in a recent update About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Microsoft to Enable Brute Force Attack Protection By Default in Windows 11 - Published: 2022-07-21 - Modified: 2022-09-28 - URL: https://petri.com/windows-11-brute-force-protection/ - Categories: Windows 11 - Tags: News, Security, Windows 11 - Article Type: News Microsoft has unveiled a new security feature that is set to arrive in Windows 11 later this year. David Weston, Microsoft's VP for Enterprise and OS Security, announced on Twitter that the Windows 11 Insider build 22528. 1000 brings a new default setting to protect users against brute force attacks. For those unfamiliar, a brute force attack is a trial and error approach that allows threat actors to decode sensitive data and information. It is commonly used to gain unauthorized access to systems by cracking login credentials and encryption keys. The attackers often use bots and scripts to carry out these attacks. Microsoft explains that human-operated ransomware attacks use the brute-force technique to breach Windows PCs via Remote Desktop Protocol (RDP) and other methods. The account lockout policy is a built-in security feature in Windows that can automatically lock the system after ten unsuccessful login attempts. This approach can help IT admins eliminate the effectiveness of brute-force password attacks. New brute force protection setting is expected to arrive in Windows 11 22H2 It is important to note that the Account Lockout Policy is also available on Windows 10 PCs, but it’s disabled by default for all users. It is possible to manually configure this policy in the Group Policy Management Console. To do this, navigate to Computer Configuration\Policies\Windows Settings\Security Settings\Account Policies\Account Lockout Policy. Overall, this is a big step forward that can help to make the Windows 11 operating system more secure, especially for enterprise customers. We hope that the new... --- ### Atlassian Releases Patches to Fix Critical Confluence Flaw - Published: 2022-07-21 - Modified: 2022-07-21 - URL: https://petri.com/atlassian-fix-critical-confluence-flaw/ - Categories: Security - Tags: Atlassian, News, Security, Vulnerability - Article Type: News Atlassian has disclosed a new critical flaw in its Confluence Server and Data Center products. The company explained in its security advisory that the vulnerability (CVE-2022-26138) lets unauthorized users use hardcoded credentials to get full access to Confluence. According to Atlassian, the flaw exists in its Questions for Confluence app. It is designed to help employees share knowledge and connect with their co-workers via questions and answers. The app provides searching, filtering, and sorting options to make it easier for users to find relevant information. It is currently deployed on more than 8,000 Confluence servers worldwide. Essentially, the Questions for Confluence app creates a default user account with a hard-coded user name and password "disabledsystemuser. " This approach helps to facilitate data migrations from the app to the cloud. However, the hard-coded password could be abused by hackers to log in to vulnerable servers. “The disabledsystemuser account is created with a hardcoded password and is added to the confluence-users group, which allows viewing and editing all non-restricted pages within Confluence by default. A remote, unauthenticated attacker with knowledge of the hardcoded password could exploit this to log into Confluence and access any pages the confluence-users group has access to,” the company explained. Atlassian recommends updating to a patched version Atlassian has confirmed that the problem affects all companies using the Questions for Confluence app version 2. 7. x and 3. 0. x. However, it doesn’t impact Confluence Cloud customers. The company recommends that organizations should install the latest Questions for Confluence update (versions 2. 7. x >=... --- ### Oracle Teams Up with Microsoft to Launch New Database Service for Azure - Published: 2022-07-21 - Modified: 2022-07-21 - URL: https://petri.com/microsoft-oracle-database-service-for-azure/ - Categories: Azure, Cloud Computing, Microsoft Azure - Tags: Azure, cloud computing, Microsoft, News, Oracle - Article Type: News Microsoft has teamed up with Oracle to launch a new service called “Oracle Database Service for Azure. ” The latest offering provides Microsoft Azure customers access to databases running in Oracle Cloud Infrastructure (OCI). Microsoft explained that enterprise customers can now provision and manage Oracle-hosted database services directly within the Azure cloud dashboard. The service lets users quickly create and migrate apps from Azure to Oracle Database Services. Once migrated, it is possible to connect both cloud environments and share Azure Active Directory (Azure AD) identities. Additionally, the service provides an Azure-like portal that should make it easier for customers to manage Oracle database services on OCI. The dashboard integrates with Azure Application Insights to support performance monitoring of web applications. Microsoft and Oracle use a collaborative support model to help users troubleshoot and resolve issues. Oracle Database Service for Azure offers low-latency connectivity Oracle Database Service for Azure builds on a three-year-old partnership between Microsoft and Oracle. Both companies launched an interconnect service in 11 regions back in 2019, which makes it easier for enterprises to run workloads across Oracle Cloud and Microsoft Azure. Oracle claims that users can achieve a latency of fewer than two milliseconds for workloads in multi-cloud environments. “There’s a well-known myth that you can’t run real applications across two clouds. We can now dispel that myth as we give Oracle and Microsoft customers the ability to easily test and demonstrate the value of combining Oracle databases with Azure applications. There is no need for deep... --- ### Microsoft Releases Update Management Center in Public Preview - Published: 2022-07-20 - Modified: 2022-07-20 - URL: https://petri.com/microsoft-releases-update-management-center/ - Categories: Azure, Microsoft Azure - Tags: cloud computing, Microsoft, Microsoft Azure, News - Article Type: News Microsoft has launched a new Update Management Center (UMS) in public preview. The new service is designed to make it easier for IT admins to manage updates for all Azure and Linux machines on Azure and Azure Arc-enabled servers. Essentially, Update Management Center is the latest iteration of Microsoft's Azure Automation Update Management solution. For those unfamiliar, the older toolset helps manage the operating system updates on Microsoft Azure and on-premises Linux and Windows devices. “UMC eases this process of managing and automating patching of Windows and Linux Operating systems. It provides a consolidated view to centrally manage the process of patching on Azure virtual machines and devices in on-premises or other public clouds (via Azure Arc). It facilitates you to assess and install patches on a single VM or at scale,” Microsoft explained. Update Management Center Overview Microsoft’s new Update Management Center ditches Log Analytics and Azure Automation in favor of native functionality on Azure Compute and Azure Arc for Servers. This new approach eliminates the multi-step onboarding process. Moreover, UMC provides granular access control at an individual resource level that "allows RBAC and roles based of ARM in Azure. " Lastly, UMS lets organizations deploy patches on a flexible schedule. It provides flexible patching options such as customizable maintenance schedules, hot patching support, and automatic VM guest patching in Azure. Getting started with Update Management Center After deploying Azure virtual machines (VMs) or non-Azure VMs via Azure Arc, IT admins can access the Update Management solution in the “updates”... --- ### New Optional Patch Fixes Freezing Issues in Windows Server 2022 - Published: 2022-07-20 - Modified: 2022-07-20 - URL: https://petri.com/microsoft-update-freezing-issues-windows-server-2022/ - Categories: Windows Server 2022 - Tags: News, Windows Server, Windows Server 2022 - Article Type: News Microsoft has released the optional July 2022 non-security patch (KB5015879) for Windows Server 2022. This optional update reduces resource contention in scenarios that require high input/output operations per second (IOPS). The latest Windows Server 2022 optional patch addresses a bug that was previously causing Windows to freeze due to Windows Defender Application Control. This update also includes a fix for an issue that prevents some troubleshooting tools from opening and triggers lockout policies faster while using Remote Desktop Protocol (RDP). Here are the main improvements Microsoft highlighted in the release notes for this KB5015879 optional patch for Windows Server 2022: Improves the reliability of a push-button reset after an OS upgrade. Addresses an issue that makes the tenant restrictions event logging channel inaccessible if you remove the EN-US language pack. Updates the Remove-Item cmdlet to properly interact with Microsoft OneDrive folders. Addresses an issue that prevents certain troubleshooting tools from opening. Addresses an issue that causes port mapping conflicts for containers. Addresses an issue that causes Code Integrity to continue trusting a file after the file has been modified. Addresses an issue that might cause Windows to stop working when you enable Windows Defender Application Control with the Intelligent Security Graph feature turned on. Addresses an issue that triggers lockout policies faster when you use Remote Desktop Protocol (RDP) with fast reconnect and Network Level Authentication (NLA) is disabled. This issue occurs when you call LogonUser with a blank password. Provides the option to configure an alternate login ID for an Azure Multi-Factor Authentication (MFA) Active Directory Federation Services (AD FS) adapter for... --- ### How to Use the Icacls Command to Manage File Permissions > Icacls is a Windows command-line utility that IT admins can use to change access control lists on files and folders. In this guide, you'll learn how to quickly and easily modify access control lists from the command line. - Published: 2022-07-20 - Modified: 2024-02-19 - URL: https://petri.com/icacls-command/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: file management, permissions, Windows, Windows 10, Windows 11 - Article Type: How To Icacls is a Windows command-line utility that IT admins can use to change access control lists on files and folders. One of the most common tasks that an IT Pro or system administrator performs is modifying permission on a file server. Using the icacls command is a very efficient way to do that, and we'll explain how to use this command in this guide. How to use the icacls command Based on my own personal experience, modifying file permissions on Windows is usually done using File Explorer. For many IT folks, it's very intuitive to open File Explorer, browse to the network location causing issues for some users' access, and change their permissions from 'Read' to 'Read/Modify' or something similar. Nice and quick, fairly easy to use. However, there are countless scenarios encompassing varying levels of scope where the GUI just isn't as robust as we'd like. If we're going to change permissions on 22 million files and folders, we want to do it right! What is an access control list (ACL)? In Windows and NTFS filesystems, each file object (file, folder) has an access control list. This list is made up of access control entries (ACE). The list contains all the users and/or other security container objects (groups, etc. ) that have some level of permission to said file object. What is an access control entry? One moment... What is an access control entry (ACE)? An access control entry (ACE) is an individual record or permission rule which controls... --- ### Inspire 2022: Microsoft Launches Cloud for Sovereignty to Protect Government Customers - Published: 2022-07-19 - Modified: 2022-07-19 - URL: https://petri.com/microsoft-launches-cloud-for-sovereignty/ - Categories: Cloud Computing, Security - Tags: cloud computing, Dynamics 365, Inspire 2022, Microsoft, Microsoft Azure, Microsoft Cloud for Sovereignty, News, Security - Article Type: News Microsoft is launching today Microsoft Cloud for Sovereignty, a new cloud offering for the government sector. The new cloud solution is meant to help government and public sector customers build, move, and operate sensitive data and workloads in the cloud while supporting the highest security and compliance standards. A sovereign cloud is a cloud infrastructure that is built to operate in a particular region or country. It lets organizations control the storage and processing of highly sensitive workloads and data in cloud environments. The Microsoft Cloud for Sovereignty provides more transparency and control over data and brings new capabilities to accelerate the digital transformation of government customers. “Government customers will have the power of the public cloud, addressing low cost, agility and scale expectations, with the full breadth of capabilities like modern developer services, agile infrastructure, secure DevOps, open-source platforms, modern collaboration and low-code development,” explained Corey Sanders, CVP for Microsoft Cloud for Industry & Global Expansion Team. Microsoft Cloud for Sovereignty protects workloads from local attacks The Microsoft Cloud for Sovereignty offers an additional layer of security to help customers protect their organizations from local cyber attacks. These security features are available across the entire cloud infrastructure, Microsoft 365, Power Platform, and Dynamics 365. It leverages Azure Confidential Computing to protect data in use by performing processing in isolated and encrypted memory called hardware-based Trusted Execution Environment (TEE). Additionally, Microsoft will provide a Sovereign Landing Zone that should recommend and enforce compliance options. The Microsoft Cloud for Sovereignty expands... --- ### Inspire 2022: Microsoft Celebrates Windows 365 One Year Anniversary with New Features - Published: 2022-07-19 - Modified: 2022-07-19 - URL: https://petri.com/microsoft-updates-windows-365/ - Categories: Windows 365 - Tags: cloud computing, Inspire 2022, News, Windows 365 - Article Type: News Microsoft is celebrating the one-year anniversary of its Windows 365 Cloud PC service that launched back in July 2021. The company has highlighted some new enhancements in Windows 365 that should help to boost cloud transformation across multiple industries. Windows 365 is a cloud-based service that enables employees to access their Windows desktops from any device or location via a web browser. It delivers a full Windows 11 or Windows 10 experience for each user, with personalized settings, apps, and data. The service integrates with management tools like Microsoft Endpoint Manager and supports Azure Active Directory (AAD) sign-in and multi-factor authentication (MFA). Windows 365 Business updates First off, Microsoft has recently released some updates for its Windows 365 Business offering. These improvements aim to streamline the signup and login process for employees using a Microsoft account. First announced in March, the Point-in-Time restore feature enables IT Pros to restore Cloud PCs from a backup. This capability should be helpful in scenarios such as data corruption or malware. Additionally, Windows 365 is getting a new feature to let IT admins enroll their Cloud PCs in Microsoft Endpoint Manager. This release will make it easier to manage Windows 10 or 11 Cloud PCs alongside other physical devices. Citrix HDX Plus for Windows 365 Later this year, Microsoft is bringing new Citrix's "high-definition user experience" (HDX) integrations to Windows 365. HDX is a suite of technologies that adds support for high-definition experiences for virtual desktop users, such as 3D graphics applications. This release... --- ### Inspire 2022: Microsoft Digital Contact Center Platform Brings New AI Tools to Modernize Customer Service - Published: 2022-07-19 - Modified: 2022-11-02 - URL: https://petri.com/microsoft-digital-contact-center-platform/ - Categories: Dynamics 365, Microsoft Teams - Tags: Inspire 2022, Microsoft Digital Contact Center Platform, News - Article Type: News Microsoft launched today the Digital Contact Center Platform, a new flexible and collaborative contact center solution. The new service brings together Microsoft Teams, Dynamics 365, Power Platform, and Nuance conversational AI, and it provides intelligent tools to modernize the customer care experience. “With the Microsoft Digital Contact Center Platform, contact centers are equipped with modern digital tools to engage customers across voice, video, and other digital engagement channels," explained Charles Lamanna, CVP of Business Applications & Platform. "Best-in-class Al powers self-service experiences, live customer engagements, collaborative agent experiences, business process automation, advanced telephony, and fraud prevention capabilities. ” The Microsoft Digital Contact Center Platform packs intelligent customer self-service capabilities that let companies automate repetitive tasks and transactions. The platform also makes connecting clients to virtual customer service agents easier. It offers live hyper-personalized omnichannel service engagement across voice and digital channels, such as popular social messaging apps. Additionally, the Microsoft Digital Contact Center Platform uses AI-based analytics tools to analyze and predict customers’ buying patterns. This information enables businesses to increase customer engagement with real-time offers. The service also delivers personalized recommendations to help customers choose products. Companies can use it to inform customers about special promotions to boost revenues. Agent Desktop Experience Microsoft Digital Contact Center Platform increases productivity and revenue Microsoft highlights that the new solution offers unique capabilities to improve the productivity of sales agents. They can access customers’ details, call transcripts, open cases, and AI-recommended knowledge articles to quickly resolve the issues of customers. The platform has... --- ### Inspire 2022: Microsoft Teams Gets Excel Live Experiences, Video Clips, and Viva Engage - Published: 2022-07-19 - Modified: 2022-07-19 - URL: https://petri.com/microsoft-teams-adds-excel-live-video-clip/ - Categories: Microsoft 365, Microsoft Teams - Tags: Inspire 2022, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has unveiled a bunch of Microsoft 365 updates at its annual Inspire partner conference, which just kicked off this morning. Microsoft Teams is also getting several capabilities to make hybrid meetings more engaging, productive & inclusive, and one of the major highlights is a new collaboration feature called Excel Live. As you may recall, Microsoft introduced a Live Share feature back in May, allowing attendees to edit, create, or watch content simultaneously during Teams meetings. With Excel Live, meeting participants can now collaborate on workbooks with their colleagues. Developers and ISVs can use preview extensions available for the Teams Client SDK to develop apps with the new capabilities. Video Clip Microsoft Teams is also getting a new Video Clip feature that enables users to record, send and view short videos from desktop or mobile. The new video creation tool will let enterprise users quickly capture videos to convey important messages in Teams chats to the recipient with a single click. It can help to reduce meeting fatigue caused by back-to-back meetings. Microsoft Teams Connect Shared Channels Microsoft is also announcing today the general availability of Teams Connect Shared Channels. For those unfamiliar, Shared Channels enable users to work together with internal and external partners without switching tenants. Users can schedule a meeting, chat, share & co-author files, and collaborate on apps. Collaborative Annotations The collaborative annotations feature in Teams, which launched in preview last month, is now generally available for everyone. Powered by Microsoft Whiteboard, the feature allows participants... --- ### DHS Review Board Warns Log4j Flaw to Affect Vulnerable Systems Until At Least 2032 - Published: 2022-07-18 - Modified: 2022-07-18 - URL: https://petri.com/dhs-log4j-flaw-affect-systems-2032/ - Categories: Security - Tags: Log4j, News, Security, Vulnerability - Article Type: News The US Department of Homeland Security has issued a security advisory about the risks associated with Log4j vulnerabilities. The DHS' Cyber Safety Review Board (CSRB) warned that the security flaw is expected to affect federal agencies and organizations until at least 2032. For those unfamiliar, Apache Log4j is a popular open-source Java-based logging framework. It enables developers to collect and manage information about system activity. The critical Log4j vulnerability (known as Log4Shell) was first disclosed in December 2021, and it lets malicious actors gain full control of affected systems. The Log4j system-logging code library is widely used in enterprise applications and cloud services. The vulnerability impacted several popular products sold by Oracle, IBM, VMware, SolarWinds, Cisco, and other vendors. At the time, the Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to patch their internet-facing network assets immediately. CSRB has investigated the critical Apache Log4J flaw and published a report which suggests that it will continue to plague vulnerable systems for many years. "Most importantly, however, the Log4j event is not over. The board assesses that Log4j is an 'endemic vulnerability' and that vulnerable instances of Log4j will remain in systems for many years to come, perhaps a decade or longer. Significant risk remains," CSRB said. According to the report, CSRB is unaware of any major Log4j-based attacks against critical infrastructure. However, organizations still had to spend money and allocate human resources to locate implementations of the Log4j library in their products and suppliers' software to protect their networks. Recommendations... --- ### Microsoft Teams Meetings Now Let Users Pop Out Shared Content - Published: 2022-07-18 - Modified: 2022-07-18 - URL: https://petri.com/microsoft-teams-meetings-pop-out-shared-content/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams has released some new features for public preview users. The software giant has announced that the Teams desktop app now lets meeting participants pop out shared content into a separate window. According to Microsoft, the ability to pop out shared meeting content (such as PowerPoint Live, Whiteboard, and screen sharing) should be a welcome addition for people who use a multi-monitor setup. These windows can be resized and repositioned as needed. However, the new pop out experience in Microsoft Teams is supported on modern Windows and macOS devices with specific hardware capabilities. The company plans to bring this feature to more devices in the future. “Majority of modern devices with medium and high-end hardware will support popping out content into a shared window while in meetings,” the company explained. How to pop out shared content in Microsoft Teams meetings To try out this feature, users will need to join a meeting from the Microsoft Teams desktop apps (Windows or macOS) as a presenter or an attendee. After the presenter shares the content, click the Pop out button available on the meeting toolbar. Users can click the "X" button in the upper right to pop in the shared content window. Alternatively, it is also possible to click the Dismiss button that appears after the content sharing is ended by the presenter. Usability Improvements to In-Meeting Notifications The Microsoft Teams desktop app has also rolled out usability improvements for in-meeting notifications. As shown in the screenshot below, the notifications now... --- ### How to Install Active Directory PowerShell Module > Learn how to install the Active Directory PowerShell module on any version of Windows, starting with Windows 7. Importing AD module gives IT pros convenient and secure remote access to administer their AD environments, all without having to interactively log into their domain controllers. - Published: 2022-07-18 - Modified: 2024-09-23 - URL: https://petri.com/install-active-directory-powershell-module/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell, PowerShell Remoting, Remote Server Administration Tools, Windows, Windows Server - Article Type: How To In this guide, we'll show you how to install the Active Directory PowerShell module on almost any version of Windows. Installing the Active Directory (AD) module in PowerShell offers IT pros convenient and secure remote access to administer their AD environments, all without having to interactively log into their domain controllers. Microsoft does not recommend the very prevalent and pervasive practice of interactively logging into Active Directory domain controllers (DCs) to work in Active Directory. It is a fundamental security risk and is inefficient, to name two cons. The best practice recommended by Microsoft is to remotely and securely use the Remote Server Administration Tools (RSAT) arsenal, including the Active Directory module for Windows PowerShell. Install Active Directory PowerShell module I will assist you in the installation of this rather powerful module on the varying Windows Server and Windows client operating systems. Hopefully, this guide will help you be more efficient, especially when it comes to PowerShell scripting and productivity gains. Windows 7 (Windows Server 2008 R2) Wait... hasn't Windows 7 been out of support by Microsoft for around two and a half years (at the time of this writing)? Well, yes... you're right. No one should be using Windows 7. But, as we are ALL aware, the vast majority of enterprises and SMBs certainly have some Windows 7 machines peeking from behind the curtains. Download and install the Remote Server Administration Tools (RSAT) for Windows 7 First, you will need to download and install the Remote Server Administration... --- ### Cloudflare Issues Advisory About Mantis Botnet Behind the Most Powerful DDoS Attack - Published: 2022-07-15 - Modified: 2022-07-15 - URL: https://petri.com/cloudflare-mantis-botnet-ddos-attack/ - Categories: Security - Tags: Cloudflare, DDOS, News, Security - Article Type: News The internet infrastructure firm Cloudflare has released an advisory about a powerful botnet dubbed Mantis. The botnet was behind the largest-ever HTTPS-based distributed-denial-of-service (DDoS) attack in June 2022 and has targeted around 1,000 customers in the past few weeks. Cloudflare explained that its security team mitigated the record-breaking DDoS attack last month that reached a peak of 15. 3 million requests-per-second (rps). The Mantis botnet utilizes a small fleet of bots (more than 5,000) to disrupt businesses. Interestingly, these HTTPS-based DDoS attacks require more computing power due to the higher cost of establishing a secure TLS connection over the internet. It’s one of the reasons that the botnet uses virtual machines (VMs) and servers to launch the attack rather than relying on home gateways and Internet of Things (IoT) devices. “Mantis is the next evolution of the Meris botnet. The Meris botnet relied on MikroTik devices, but Mantis has branched out to include a variety of VM platforms and supports running various HTTP proxies to launch attacks. The name Mantis was chosen to be similar to "Meris" to reflect its origin, and also because this evolution hits hard and fast,” Cloudflare said. How to prevent Mantis and other DDoS attacks As reported by Cloudflare researchers, the Mantis botnet has successfully compromised 36 percent of customers in the internet and telecommunications sector. It has also targeted 15 percent of news organizations, followed by games publishers and finance firms (around 12 percent). Additionally, Cloudflare notes that more than 20 percent of victims are... --- ### Google's Chrome OS Flex Converts Old Macs, PCs into Reliable Chromebooks - Published: 2022-07-15 - Modified: 2022-07-15 - URL: https://petri.com/chrome-os-flex-converts-macs-pcs-chromebooks/ - Categories: Chrome OS - Tags: Chrome OS Flex, Google, Google Chrome OS Flex, News - Article Type: News Google has officially launched Chrome OS Flex, a free version of Chrome OS that can be installed on almost any PC and Mac. The company first began testing the new Chrome OS experience back in February, and it’s finally available for all schools, businesses, and consumers. Chrome OS Flex is a lightweight, user-friendly, and secure operating system that enables users to modernize their old hardware. It’s designed primarily to run on outdated devices that are no longer compatible with the latest versions of Windows and macOS. Chrome OS Flex supports several features such as Nearby Share, Family Link accounts, Google Assistant, Instant Tethering, and the Smart Lock. Google highlights that Chrome OS Flex offers seamless background updates, power-saving features, and built-in malware and ransomware protection capabilities. Moreover, IT Pros can manage devices running Chrome OS Flex through the Google Admin Console. In addition to these features, Google has introduced stability enhancements and additional device compatibility support based on the feedback received from testers during an early access preview. “Chrome OS Flex is just the sunscreen your legacy devices need. And thanks to everyone who has participated in our early access program, we’ve been able to significantly improve the product in many areas while continuously certifying devices to run Chrome OS Flex,” explained Thomas Riedl, Director of Product, Enterprise and Education at Google. Chrome OS Flex minimum hardware requirements Unlike Chrome OS, which only runs on specific hardware, Chrome OS Flex can run on a wide range of Macs and PCs... . --- ### Azure Bastion Native Client Support - Log Into VMs With the Windows RDP Client > In this article, Azure expert Aidan Finn shows you how to log into VMs protected by an Azure Bastion Host using the native Remote Desktop Protocol (RDP) client in Windows. This method brings some advantages over using the Azure Portal, including the ability to cut and paste to the remote device. - Published: 2022-07-15 - Modified: 2022-10-07 - URL: https://petri.com/azure-bastion-native-client-support/ - Categories: Azure - Tags: Azure, Azure Bastion, Azure Virtual Machines, Remote Desktop Protocol - Article Type: How To Azure Bastion native client support provides a secure way to log into Windows and Linux virtual machines (VMs) using the Remote Desktop Protocol (RDP) or Secure Shell (SSH). There's no need to expose the VMs to the Internet, or even to your network. That means you can "air gap" the virtual machines to prevent zero-day vulnerabilities in remoting protocols from being attacked by compromised networks. In this post, you are going to learn how to log into Azure virtual machines with the native Windows RDP client through Azure Bastion. How to use Azure Bastion native client support to log into virtual machines with the Windows RDP client Log in to Azure using the Azure CLI so you can access Azure Bastion native client support. Launch the native Remote Desktop client using the az network bastion rdp command as shown below to connect to virtual machines in the same virtual network as Azure Bastion. az network bastion rdp --name "" --resource-group "" --target-resource-id "" Keep reading if you want more details about how to use Azure Bastion with the Windows RDP client to log into Azure VMs. Why you need the new Azure Bastion Standard SKU Our own Russell Smith previously wrote a post about securing remote virtual machines using Azure Bastion. The technology has improved quite a bit since it first launched, with added support for hub-and-spoke network designs to allow the reuse of potentially expensive resources. Azure Bastion Standard, a new tier with additional features, including session... --- ### Backup Power Supplies and Strategies to Recover from Power Outages > In this article, we look at backup power solutions and the different kinds of power outages you need to protect your critical IT systems against. Plus, learn about strategies for avoiding downtime when the worst happens. - Published: 2022-07-15 - Modified: 2024-09-05 - URL: https://petri.com/backup-power-supplies/ - Categories: Azure, Backup & Storage, Cloud Computing - Tags: Disaster Recovery, UPS - Article Type: Overview Depending on what part of the country you’re in, coping with power outages and having backup power may or may not play a big part in your disaster recovery plans. While it’s often overlooked, power is the one thing that all computing activities require, whether it is desktops, datacenters, or cloud computing. Backup power supplies and strategies for your business If the power goes out, there is no computing until it is returned. Let’s take a closer look at some of the different types and sources of power problems and then what you can do to help protect against them. Different types of power problems Power outages can come from a wide range of different sources, and they can also extend from the level of an individual server to an entire geographical region. Failures at the individual server level are fairly common. They can be caused by external factors, like a disruption of power, to internal factors like a failed power supply. Site-level power outages Next, power outages at the site level are less common. They can be caused by failure of a building power infrastructure or an external disruption like an accident involving incoming power lines. One example that sticks out for me was my experience in a manufacturing plant based in southern California. The area this plant was in was well known for periodic brown outs. To combat this problem, and keep the plant’s manufacturing equipment running during these brown outs, the management purchased a high-powered generator... . --- ### Microsoft Teams is Getting Native Support for Apple Silicon Macs in September - Published: 2022-07-14 - Modified: 2022-07-14 - URL: https://petri.com/microsoft-teams-native-support-apple-silicon-macs/ - Categories: Microsoft 365, Microsoft Teams - Tags: macOS, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced that it’s bringing support for Apple M1/M2 processors in its Microsoft Teams app for macOS. The company recently updated its Microsoft 365 roadmap to indicate that the new Teams version is expected to be generally available in September. Currently, the Microsoft Teams desktop app runs as an Intel application on Apple Silicon Macs. It uses Apple’s Rosetta 2 emulation when running on the new M1/M2-powered Macs. Microsoft Teams’ native Apple Silicon support has been one of the top requests on Microsoft’s feedback portal. Microsoft says that its new Teams “Universal” app for M1/2 Macs should perform better than the existing client for Intel-based devices. “Teams now comes as a Universal Binary Mac so it runs natively on both Intel and Apple Silicon based Mac devices,” the company explained on the Microsoft 365 roadmap. Microsoft Teams 'Universal app' for Apple M1/M2 Macs available in beta version Notably, a pre-release version of Teams optimized for Apple Silicon Macs leaked online back in April this year. Since then, many Mac users have been able to download the app from Microsoft's website to test it on their machines. However, the company has warned against using the “unvalidated/ unsupported” beta version because it could lead to bugs or performance issues. “Recently some sites have published articles about a Microsoft Teams Beta release of a Universal Binary application that runs natively on both M1 and Intel based processors. The information in these articles is inaccurate, and they have no backing from Microsoft," Microsoft’s... --- ### Microsoft Releases New Azure AD Group Writeback Updates - Published: 2022-07-14 - Modified: 2022-07-14 - URL: https://petri.com/microsoft-releases-azure-ad-group-writeback-updates/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure, Azure Active Directory, News - Article Type: News Microsoft has recently announced some important updates for Azure AD Connect Group Writeback. This release enables organizations to write back Microsoft 365 groups (assigned & dynamic) to their on-premises Active Directory as a security group, mail-enabled security group, or distribution list. For those unfamiliar, Group Writeback is a useful tool that enables IT Pros to use the Azure AD Connect Sync client for synchronizing cloud groups with on-premises environments. It makes it easier to manage cloud groups as well as control access to on-premises resources and apps. Up until now, the Group Writeback feature only allowed IT admins to write Microsoft 365 groups as universal distribution groups. to on-premises Active Directory. It was primarily used for keeping Exchange Online Address Lists and Address Books up to date. However, this is about to change now. “With this public preview, we’ve expanded what groups can be written back, added the ability to manage groups for writeback in MS Graph and the Azure Admin Portal, and added a feature in Azure AD Connect to make it easier to find your groups on-prem,” Microsoft explained. Azure AD Connect adds new group writeback features Microsoft has also made it possible to write Azure Active Directory (AD) security groups (assigned and dynamic) as a security group. Furthermore, customers can decide for each group whether it should be written back into the on-premises environment. It is important to note that the new Group Writeback enhancements are available tenant-wide, rather than per Azure Active Directory Connect server. Additionally, IT... --- ### Microsoft Defender for Business Gets Protections for Windows and Linux Servers - Published: 2022-07-14 - Modified: 2022-07-14 - URL: https://petri.com/microsoft-defender-for-business-windows-linux-servers/ - Categories: Security - Tags: linux, Microsoft Defender for Business, News, Windows - Article Type: News Microsoft has released server protection capabilities for its Defender for Business solution. The new security feature is available in preview for small and medium businesses (SMBs) and supports both Windows and Linux servers. Microsoft Defender for Business is a new endpoint security offering designed especially for businesses with up to 300 employees. It provides attack surface reduction and antimalware protection, threat management, as well as automatic investigation and remediation. The affordable solution protects customers against malware, phishing, and ransomware attacks on Windows, macOS, Android, and iOS. How to configure and onboard servers to Microsoft Defender for Business To get started with the new server protections, you will need to head to the Microsoft 365 Defender portal and follow the steps listed below: In the navigation pane, click Settings >> Endpoints >> Advanced features and then turn on the Preview features toggle. Navigate to Settings >> Endpoints >> Configuration management >> Enforcement scope to enable the enforcement scope for Windows Server. Select the Use MDE to enforce security configuration settings from MEM option, click Windows Server, and then Save to apply the changes. Once enabled, you will need to onboard Windows Server and Linux Server endpoints by using scripts detailed on this support page. Microsoft notes that Microsoft 365 Lighthouse provides a single admin experience that lets CSP partners view incidents, security notifications, incidents, and the device list for multiple customers. In Microsoft 365 Lighthouse, partners will be able to view details about Linux and Windows servers on the Device Security page. Pricing and... --- ### Google Cloud Announces First Arm-based VMs for High-Performance Workloads - Published: 2022-07-13 - Modified: 2022-07-13 - URL: https://petri.com/google-cloud-first-arm-based-vms/ - Categories: Google Cloud Platform - Tags: cloud computing, Google Cloud, Google Cloud Platform, News, Virtualization - Article Type: News Google Cloud today announced Tau T2A, its first virtual machines (VMs) based on the Arm architecture. The company has also unveiled a fully-managed job scheduling service dubbed Google Cloud Batch. In a press release, Google explained that the latest Tau T2A virtual machines are powered by Ampere Altra Arm-based processors. The VMs comes in various pre-defined offerings with up to 4GB of memory per vCPU and 48 vCPUs per VM. In addition, Tau T2A VMs provide up to 32 Gbps networking bandwidth and support a bunch of network-attached storage options. The new VM family is specifically created to target high-end computing workloads like web servers, media transcoding, data-logging applications, and more. “We are excited to extend the rich choices we already offer with Intel and AMD and enter the Arm ecosystem to provide our customers with even more choice and flexibility. We have support for a broad ecosystem of operating systems, databases, programming languages and other tools,” said Sachin Gupta, Google Cloud’s VP and GM for infrastructure. https://www. youtube. com/watch? v=LZoy6jpzfqA Google Cloud's new Arm-based VMs are available in select regions The new ARM-based virtual machines are currently available in preview for customers in a small number of regions, including Europe, North America, and Asia. The company has promised to expand the availability of Tau T2A VMs to more data centers over time. In addition to the VMs, Google has also launched a new fully managed job scheduling system called Batch. The service, which is available in preview, lets users provision, schedule, and... --- ### July Patch Tuesday Updates Fix 84 Vulnerabilities and LDAP Gets TLS 1.3 > Microsoft fixed 84 Windows vulnerabilities with this month's Patch Tuesday updates, and four of them are rated critical. The July Patch Tuesday Updates also mark the public rollout of the Search Highlights feature Microsoft previously introduced on Windows 10. - Published: 2022-07-13 - Modified: 2022-07-13 - URL: https://petri.com/windows-july-2022-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: LDAP, Patch Tuesday, TLS 1.3, Windows 10, Windows 11 - Article Type: News Microsoft released the July 2022 Patch Tuesday updates yesterday for all supported versions of Windows. Even though you may want to lay back and relax during the summer, Microsoft fixed no less than 84 vulnerabilities this month, so you may not want to skip the company’s latest patches.   Critical Windows vulnerabilities in July Patch Tuesday updates This month, Microsoft addressed 84 Windows vulnerabilities, and four of them are rated critical. As pointed out by the Zero Day Initiative, though, Microsoft has yet to fix the security flaws in Windows 11 and Microsoft Teams that have been discovered during the recent Pwn2Own competition in May.   Anyway, here’s what you need to know about the four critical vulnerabilities Microsoft fixed this month: CVE-2022-22047: This critical elevation of privilege vulnerability in the Client/Server Runtime Subsystem could allow an attacker who successfully exploited it to gain SYSTEM privileges. Microsoft said that this vulnerability is already being exploited in the wild, even though it hasn’t been publicly disclosed. CVE-2022-30216: This critical tampering vulnerability in the Windows Server Service could allow an authenticated attacker to remotely upload a certificate to the Server service. Microsoft said that this tampering vulnerability hasn’t been exploited yet. CVE-2022-22029: This remote code execution vulnerability in the Windows Network File System could be exploited over the network by attackers making an unauthenticated, specially crafted call to a Network File System (NFS) service. CVE-2022-22038: According to Microsoft, the attack complexity for this critical Procedure Call Runtime remote code execution vulnerability is high and “requires an... --- ### Microsoft Warns About New Large-Scale Phishing Campaign Bypassing MFA - Published: 2022-07-13 - Modified: 2022-07-13 - URL: https://petri.com/microsoft-phishing-campaign-bypassing-mfa/ - Categories: Security - Tags: MFA, Microsoft, News, Phishing, Security - Article Type: News Microsoft has discovered a new massive AiTM phishing campaign that can steal credentials even if the user account is protected with multi-factor authentication (MFA). The company has warned that the threat actors have targeted over 10,000 organizations since September 2021. According to Microsoft researchers, the AiTM campaign involves inserting a proxy server between a target user and the website the victim intends to visit. Once the user logins to the proxy site, the attackers hijack session cookies sent by the legitimate website. This technique lets them get authenticated regardless of the sign-in method used by the victim. Sample phishing landing page In the phishing campaign observed by Microsoft, the victim received an email with an HTML attachment that led to the proxy server. The threat actor took less than five minutes to complete the authentication process on the user’s behalf to perform secondary attacks within the targetted organization. "From our observation, after a compromised account signed into the phishing site for the first time, the attacker used the stolen session cookie to authenticate to Outlook online (outlook. office. com)," the Microsoft 365 Defender Research Team and the Microsoft Threat Intelligence Center explained. "In multiple cases, the cookies had an MFA claim, which means that even if the organization had an MFA policy, the attacker used the session cookie to gain access on behalf of the compromised account. " AiTM phishing campaign Over the next few days, the attackers accessed business emails and confidential files in order to commit payment frauds. They managed to... --- ### Microsoft 365 Apps to End Support for Windows 8.1 and Windows 7 in January - Published: 2022-07-13 - Modified: 2022-07-13 - URL: https://petri.com/microsoft-365-apps-end-support-windows-8-1-windows-7/ - Categories: 365 Apps, Microsoft 365 - Tags: Microsoft 365, News, Windows 7, Windows 8.1, Windows Server 2008 R2 - Article Type: News Microsoft is preparing to drop support for its Microsoft 365 apps on some older versions of Windows next year. The software giant has announced that Microsoft 365 apps will no longer support Windows 7, Windows 8. 1, and Windows Server 2008 R2 after January 10, 2023. The recent blog post follows Microsoft’s previous announcement made last month that it would start sending reminders to Windows 8. 1 users that support will end in 2023. The OS will receive its final update on January 10, and the July Patch Tuesday updates bring end of support notifications for Windows 8. 1 PCs. Microsoft originally sunset Windows 7 support back in January 2020, but the company offered Extended Security Updates (ESU) for enterprise customers who were not yet ready to upgrade. The ESU program will end on January 10, 2023, and support for Microsoft 365 apps on Windows 7 or Windows Server 2008 R2 machines will also be retired on the same date. “Microsoft 365 Apps is supported under the Modern Lifecycle Policy. Therefore, the apps are supported continuously given that customers stay current per the servicing and system requirements.  These requirements include using Microsoft 365 Apps on an operating system currently in support,” the company explained. Microsoft advises users to move to Windows 10 or 11 Once the end of support date arrives, Microsoft 365 apps running on older Windows versions will stop receiving new feature, security, and other quality updates. This means that organizations would be vulnerable to security risks and no longer meet compliance requirements. Additionally,... --- ### Azure Stack HCI Pricing – Is Full OPEX Possible? > Flo Fox, a Senior Fast Track Engineer at Microsoft, looks at Azure Stack HCI pricing. Including whether full OPEX is possible, the cost structure of Windows Server licences, Azure Stack HCI hardware, Azure support, and more. - Published: 2022-07-13 - Modified: 2022-11-30 - URL: https://petri.com/azure-stack-hci-pricing/ - Categories: Azure, Azure Stack HCI - Tags: Azure, Azure Arc, Azure Stack, Azure Stack HCI - Article Type: Overview In the past few months, Azure Stack HCI pricing has been a hot topic in discussions with customers. Including the possibility of using Azure Stack HCI as a pay-as-you-go full OPEX solution. That’s an interrogation you may have had as well if you’ve ever worked with Azure Stack Edge, which is a hardware solution provided by Microsoft as a first-party Azure service. Azure Stack HCI is Microsoft’s hyper-converged infrastructure operating system for hosting virtualized Windows and Linux workloads. Today, I would like to discuss if using Azure Stack HCI as a full OPEX solution is possible, and if so, why you may be interested in going down that route. Before we go forward, let me first explain the OPEX or CAPEX financial terms: CAPEX (or Capital Expenditure) are investment costs, which means you buy for example your server as a one-time investment. OPEX (or Operational Expenditure) are recurring costs like electricity or human resource costs. Businesses normally prefer OPEX costs as they are easier to plan and manage. On the other hand, CAPEX costs often need a budget and spending plan. Now that we’ve clarified these basic terms, let’s dig deeper into our topic. Azure Stack HCI pricing is already an OPEX As you may already know, the Azure Stack HCI operating system is already an OPEX. I. e. , You currently pay $10 per CPU core a month against your Azure subscription. You can find more details about Azure Stack HCI pricing on Microsoft's Azure website. After 60 days, your fees... --- ### Microsoft Defender for IoT Protects Unmanaged Enterprise IoT Devices - Published: 2022-07-12 - Modified: 2024-09-05 - URL: https://petri.com/microsoft-defender-for-iot-unmanaged-enterprise-iot-devices/ - Categories: Security - Tags: Microsoft Defender for IoT, News, Security - Article Type: News Microsoft has announced the general availability of new enterprise IoT security capabilities in its Defender for IoT solution. The company says that these features should help businesses better secure their unmanaged IoT devices connected to enterprise networks. Microsoft Defender for IoT (Formerly known as Azure Defender for IoT) is a security offering that protects enterprise Internet of Things (IoT) devices such as Voice over Internet Protocol (VoIP) phones, smart conferencing systems, printers, and scanners. The service also helps organizations to secure operational technology (OT) in various industries, including manufacturing, oil & gas, as well as energy and water. Microsoft highlights that this release brings support for several new security protections for enterprise IoT devices, including threat detection and vulnerability management. These features were previously only available for managed endpoints and OT devices in enterprise environments. “Defender for IoT now delivers comprehensive security for all endpoint types, applications, identities, and operating systems. The new capabilities allow organizations to get the visibility and insights they need to address complex multi-stage attacks that specifically take advantage of IoT and OT devices to achieve their goals,” explained Michal Braverman-Blumenstyk, Microsoft’s CVP and CTO of cloud and AI security. Microsoft has also announced new integrations with Microsoft 365 Defender designed to help make enterprise IoT security more accessible for businesses. This release should help customers to quickly discover and secure IoT devices in corporate networks. Microsoft Defender for IoT (Image Credit: Microsoft) Microsoft Defender for IoT secures misconfigured & unpatched IoT systems against threats Microsoft... --- ### IT Admins Can Now Monitor Microsoft 365 with New Service Health Dashboard - Published: 2022-07-12 - Modified: 2022-07-12 - URL: https://petri.com/microsoft-365-admin-health-dashboard/ - Categories: Microsoft 365 - Tags: Admin, Microsoft 365, Microsoft 365 Admin Center, News - Article Type: News Microsoft has launched a new Health dashboard in public preview for small or medium-sized organizations. The software giant says that the dashboard is designed to provide IT Pros a complete view of the health status of Microsoft 365 apps and services. The Microsoft 365 Health dashboard lets customers view insights about the service status, software update status, as well as security compliance. It also shows critical alerts about general service incidents and billing issues. “The dashboard is designed to do more than show the health status of cloud services—it gives you a full picture of the health of your environment. You can see how well your organization is keeping desktop software up to date, following best practices for security, and using the products you’ve paid for,” Microsoft explained. Microsoft 365 Health dashboard shows usage data, recommended actions & more In addition to critical alerts, the Service health and usage section on the Health dashboard shows the current service health status, the average daily usage, and license utilization of each Microsoft 365 service. There is also a Microsoft 365 app updates section that makes it easier for IT admins to ensure that all Office apps such as Excel, Word, and PowerPoint are up to date. It can help to protect enterprise devices from security vulnerabilities. Moreover, the Health dashboard offers recommended actions to address various issues. Specifically, IT Pros can use the recommendation cards to turn on multi-factor authentication, enable monthly updates for Office, and share OneDrive training with employees. According... --- ### Microsoft's New Windows Autopatch Service is Now Generally Available - Published: 2022-07-12 - Modified: 2022-08-24 - URL: https://petri.com/microsofts-new-windows-autopatch-service-is-now-generally-available/ - Categories: Microsoft 365, Windows 10, Windows 11 - Tags: Microsoft 365, News, Windows 10, Windows 11, Windows Autopatch, Windows Update for Business - Article Type: News Windows Autopatch, an enterprise service that launched in public preview back in May, is now generally available for customers with Windows Enterprise E3 and E5 licenses. Microsoft’s new managed service enables IT Pros to automate the planning and deployment of Windows and Office updates. Essentially, Windows Autopatch uses deployment tools such as Windows Update for Business to manage updates for Windows 10, Windows 11, Microsoft Edge, Microsoft Teams, and other Microsoft 365 apps. It lets IT admins divide users into small groups called testing rings, monitor roll-out progress, and pause/roll back if needed. Microsoft says that it will continue to roll out updates for all supported versions of Windows on the second Tuesday of each month. With Windows Autopatch, Microsoft aims to “streamline updating operations and create new opportunities for IT pros. " Windows Autopatch licensing requirements Microsoft explained that Windows Autopatch could be enabled by organizations that meet specific requirements. Windows Autopatch supports all PCs running Windows 10 and Windows 11 Enterprise and Professional editions. Additionally, customers will need Azure Active Directory Premium and Microsoft Intune subscriptions in order to use the Autopatch service. Furthermore, Windows devices should be either Azure AD joined or Hybrid Azure AD joined. The Windows Autopatch service doesn’t provide support for local (on-premises) domain-joined machines. Currently, Autopatch isn’t available for education (A3/A5) and government cloud (GCC) customers. How to get started with Windows Autopatch Microsoft has detailed a couple of steps to help IT admins enroll devices into the service. First of all, log in... --- ### AWS Announces Streamlined Deployment for .NET Apps > The new AWS Toolkit for Visual Studio and AWS Deploy Tool for .NET enable you to seamlessly deploy .NET applications on Amazon Web Services without needing a lot of AWS expertise.. - Published: 2022-07-12 - Modified: 2022-07-12 - URL: https://petri.com/aws-streamlined-dot-net-applications-deployment/ - Categories: Amazon Web Services, Cloud Computing, Visual Studio - Tags: Amazon ECS, AWS Deploy Tool for .NET, AWS Toolkit for Visual Studio - Article Type: News This past July 6, 2022, Amazon announced the release of two new technologies that enable the streamlined deployment of . NET applications on Amazon Web Services. The new AWS Toolkit for Visual Studio as well as the new AWS Deploy Tool for the . NET CLI enable you to get your . NET application up and running in just a few steps without needing a lot of expertise in AWS. These new tools allow you to deploy ASP. NET Core applications, long-running services, scheduled tasks, and Web Assembly applications that are built with . NET Core 3. 1 and above including the . NET 7 preview. They can also be used to deploy any cloud-native . NET applications to AWS. However, . NET Lambda functions are not supported at this time. "At the time of this release, we support deployments to Amazon Elastic Container Service (Amazon ECS) using AWS Fargate compute engine, AWS App Runner, and AWS Elastic Beanstalk. We also support hosting Blazor WebAssembly applications in Amazon S3 using Amazon CloudFront as a content delivery network (CDN)," the company explained in the announcement. Getting started in Visual Studio and the . NET CLI The AWS Toolkit for Visual Studio works within the Visual Studio graphical development environment by providing a new Publish to AWS wizard. The same deployment functionality is also available in the . NET CLI by installing the AWS Deploy Tool for . NET.   Both . NET tools provide the following capabilities: Recommend the AWS compute requirements that are best suited for your application. Generate a Dockerfile if required by your AWS compute requirements. Build and package your application as required... --- ### Microsoft Teams to Automatically End Stale Meetings with Only One Participant - Published: 2022-07-11 - Modified: 2022-07-11 - URL: https://petri.com/microsoft-teams-end-stale-meetings/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting an update that will automatically end stale meetings. The new feature will prompt users to end the meeting 10 minutes after it has reached the scheduled end time, and only one participant is left. Currently, Microsoft Teams meetings don't end until the last attendee leaves the meeting or the presenter clicks the end meeting button. The situation eventually increases the size of recordings in scheduled meetings. This is about to change soon, as the upcoming update will automatically remove the user from these meetings. “If a user is the sole participant in a meeting 10 minutes after the scheduled meeting end time has passed, then a dialog will appear in the call prompting them to end the call or dismiss the notification. If no action is taken on the dialog within 3 minutes, the meeting will automatically end,” the company explained last week on the Microsoft 365 Admin Center. However, keep in mind that the Microsoft Teams desktop app will not show the prompt again if the attendee chooses to dismiss it. Moreover, this change will not apply to meetings with more than one participant. Microsoft expects to start rolling out this new feature in early August, and all Teams users should have it by early September. This update will be available for Government Community Cloud (GCC) customers worldwide in October. Microsoft Teams Together Mode will let organizers assign seats to participants The Redmond giant is also bringing some improvements to the Together Mode feature in... --- ### Microsoft Launches Visual Studio Code Server in Preview - Published: 2022-07-11 - Modified: 2022-07-12 - URL: https://petri.com/microsoft-visual-studio-code-server/ - Categories: Developer, Visual Studio - Tags: Developer, Microsoft, News, Visual Studio, Visual Studio Code - Article Type: News Microsoft has recently released a new update (version 1. 69) for Visual Studio Code. The big highlight of this release is a private preview of the Visual Studio Code Server, a backend service that lets developers securely connect to the editor via a web browser. The CLI of the VS Code Server creates a tunnel between the remote machine and the Visual Studio Code client. Microsoft says that the tunneling process helps to ensure the secure transmission of data between networks. “You can install the server wherever you like (a local development machine, a VM in the cloud, etc. ) and access it securely through the browser using VS Code for the Web (also known as vscode. dev), without the hassle of setting up SSH or https (although you can do that if you want as well,” said Brigit Murtaugh, Program Manager on the Microsoft VS Code team. Microsoft has detailed a few use cases of this new Visual Studio Code Server service. It provides a development environment on a device (such as a Chromebook or an iPad/tablet) that doesn’t let users install the Visual Studio Code desktop application. Secondly, the tool enables developers to use VS Code on a remote machine with limited SSH support. As of right now, the Visual Studio Code Server is available in private preview for software developers. Microsoft plans to gradually add accounts to the preview program throughout July, and those interested in testing the service can sign up on this page. “This is just the first... --- ### Microsoft to Fix Bug Breaking Outlook Search on Windows 11 - Published: 2022-07-11 - Modified: 2022-07-11 - URL: https://petri.com/microsoft-outlook-search-bug-windows-11/ - Categories: Microsoft 365, Windows 11 - Tags: email, News, Outlook, Windows, Windows 11 - Article Type: News Microsoft is investigating a new Windows 11 bug that is currently preventing the Outlook desktop app from displaying recent emails in the search results. The software giant has confirmed in a support document that the problem impacts Windows 11 users with IMAP, POP as well as offline Exchange accounts. “This problem mostly affects users with POP, IMAP, and offline Exchange accounts due to the search feature primarily using the local Windows Search service to index email. Email hosted by Microsoft 365 and connected Exchange accounts use Service Search for a majority of search scopes, which is not affected by this issue,” Microsoft explained. Microsoft is actively investigating the Outlook search issues and plans to issue a fix in an upcoming release. In the meantime, the company has published a workaround, which involves temporarily disabling the Windows Desktop Search service. This solution will force the Outlook app to use its built-in search functionality. How to fix Outlook search bug on Windows 11 PCs To disable the Windows Desktop Search service for Microsoft Outlook, you will need to follow the steps listed below: First up, press Win + R simultaneously and type regedit to open the Registry Editor. Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows and then select Edit >> New >> Key. Now, name the new registry key Windows Search. Click the new Windows Search key and select Edit >> New >> DWORD Value. Name the DWORD PreventIndexingOutlook and hit the Enter button. Right-click the ”PreventIndexingOutlook” value and select the Modify option. Set its value to 1 and then click the OK button... --- ### How to Install Git on Ubuntu 20.04 > Learn how how to install Git on Ubuntu 20.04 step by step so that you can manage your repositories quickly and easily from the command line. After installing Git, you'll be able to automate common tasks for your repositories stored on GitLab, GitHub and similar platforms. - Published: 2022-07-11 - Modified: 2024-11-19 - URL: https://petri.com/install-git-ubuntu/ - Categories: DevOps - Tags: DevOps, GIT, linux, Ubuntu - Article Type: How To In this guide, we’ll explain how to install Git on Ubuntu 20. 04 step by step so that you can manage your repositories quickly and easily from the command line! You can then go on to learn the Git commands, which will allow you to automate common tasks, like the ability to create, check out, and merge repositories. To quickly install Git on Ubuntu using the apt package manager, run the following two commands. For more details, keep reading! sudo apt updatesudo apt install git Git is an open-source version control system that developers and DevOps engineers can use with online code repositories such as Bitbucket or GitLab. There’s nothing to stop you from creating and managing your cloud-based repos directly in the browser on platforms like GitLab and GitHub. But the constant ‘click here, click there’ monotony gets tiresome quickly. Git allows you to manage many projects and repositories stored on GitLab, GitHub, and other SaaS-based platforms.  To manage your repositories efficiently, you’ll need to install the Git client on your local machine or server.  You can install the client on any Unix-based operating system and Windows, but this tutorial will focus on Ubuntu 20. 04. Meet these prerequisites before you install Git on Ubuntu To follow our step-by-step tutorial, here’s what you need:  This tutorial uses Ubuntu 20. 04. 3 LTS with a root user, but any Ubuntu version above 14 should work.  A GitHub account with one private and one public repository containing a hello. py Python file.   Install Git on Ubuntu using the APT package manager  There are different ways to install the Git client on Ubuntu, and the first is to use the APT package manager. Here’s how to do it step by... --- ### Microsoft's Entra Permissions Management Solution Goes Out of Preview - Published: 2022-07-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-entra-permissions-management-solution/ - Categories: Identity Service, Security - Tags: Identity Protection, Microsoft Entra, News, Security - Article Type: News Microsoft has announced that its Entra Permissions Management solution is now generally available for enterprise customers. It’s a cloud-based infrastructure entitlement management (CIEM) service that provides insights into permissions for all user and workload identities in multi-cloud environments. Microsoft Entra Permissions Management (formerly known as Cloud Knox Security) launched in public preview back in February. This release brings several improvements to the tool, such as automated onboarding, global localization, and GDPR compliance. It is currently supported across all various cloud services, including Microsoft Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS). “By continuously monitoring permission usage, Permissions Management allows you to enforce the principle of least privilege at cloud scale using historical data so that your organization can improve its security posture without interrupting productivity,” the company explained. “This is just the beginning! We're actively expanding our integrations and features and will begin rolling them out later this year. ” https://youtu. be/L2vNHMrwL0g Microsoft Entra Permissions Management use cases and pricing Microsoft has highlighted three important use cases of its Entra Permissions Management product. It allows IT Pros to analyze permission risks for identities, actions, and resources across all major cloud platforms. It is also possible to remediate these risks by right-sizing/granting permissions and automating access to cloud-based resources. Lastly, the Microsoft Entra Permissions Management tool provides AI-powered anomaly detection notifications and detailed forensic reports. The capabilities allow continuous monitoring of unused and excessive permissions and help to speed up the investigation and remediation process. Microsoft Entra Permissions Management is available... --- ### Manage Microsoft Teams Faster With The New Admin App! - Published: 2022-07-08 - Modified: 2022-07-08 - URL: https://petri.com/microsoft-teams-admin-app/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: Video Microsoft recently announced a new Teams app called Admin, which brings a subset of the most commonly accessed admin settings to Teams in the form of a convenient app! So, let's take a look! About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Microsoft Updates Teams PowerShell Module to Version 4.5 - Published: 2022-07-08 - Modified: 2022-07-08 - URL: https://petri.com/microsoft-teams-powershell-module-version-4-5/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News, Teams PowerShell - Article Type: News Microsoft has released version 4. 5. 0 of the Teams PowerShell module. This update doesn’t bring any big changes but it includes a set of bug fixes and enhancements for IT administrators. The Microsoft Teams PowerShell module was released in April 2019. It allows IT admins to manage users, Teams, policies, and configuration through PowerShell. For instance, IT Pros can either create a new Team or convert an existing group into a team. It is also possible to delete a team or a channel within a team. With this release, the Get-CsOnlineUser cmdlet has added support for a SoftDeletedUsers parameter that lists soft-deleted Azure AD accounts enabled for Microsoft Teams. Currently, there is no cmdlet for restoring a soft-deleted account in the Microsoft Teams module. To do this, IT admins will need to use a cmdlet such as Restore-MgDirectoryDeletedItem. Additionally, the latest Microsoft Teams PowerShell module update brings support for the Get-CsHybridTelephoneNumber cmdlet. It lets users show details about one or more hybrid telephone numbers that are used for Audio Conferencing with Direct Routing for government tenants. What's new in Microsoft Teams PowerShell Module 4. 5 You can find the highlights for this 4. 5. 0 release below: Supports IncludeResources parameter for the Get-CsAutoAttendantStatus cmdlet. Supports SoftDeletedUsers parameter for the Get-CsOnlineUser cmdlet. Releases -CsTeamsMediaLoggingPolicy cmdlets. Supports AuthorizedUsers optional parameter for the -CsAutoAttendant & -CsCallQueue cmdlets. Fixes shared voicemail prompt parameters where prompt type couldn't be switched after they have been set for Set-CsCallQueue cmdlet. Fixes -CsOnlineSchedule cmdlets to work in the European date-time format. Releases -CsTeamsVoiceApplicationsPolicy cmdlets. Releases Get-CsHybridTelephoneNumber cmdlet. Releases modernized versions... --- ### Microsoft Rolls Back Default VBA Macro Block in Office Apps - Published: 2022-07-08 - Modified: 2022-07-08 - URL: https://petri.com/microsoft-rolls-back-vba-macro-block-office/ - Categories: Microsoft 365 - Tags: Macros, Microsoft, Microsoft 365, Microsoft Office, News - Article Type: News Microsoft is set to backtrack on its decision to block Visual Basic for Applications (VBA) macros by default across all currently-supported Office apps. Indeed, the software giant has announced in the Microsoft 365 Admin Center that it is rolling back this change based on user feedback. Back in February, Microsoft unveiled its plans to turn off VBA macros in files downloaded from the internet on Windows PCs. It affected various Office apps, including PowerPoint, Access, Excel, Visio, and Word. The company explained that this decision was made to protect Office users from malicious attacks. The cybersecurity industry appreciated it because threat actors use Office documents with malicious macros to distribute malware and ransomware via emails. Source: Microsoft Microsoft released the update in preview to Office Insiders enrolled in the Current Channel in April before rolling it out to all Microsoft 365 customers. However, it looks like this big change potentially affected some legitimate use cases for VBA macros. It prevented Office users from enabling some content by simply clicking a button. Microsoft's decision to revert the default Office macro block is 'temporary' As spotted by BleepingComputer, Microsoft has recently informed IT Pros that it has started rolling back the VBA macro block based on feedback received from Office users. “Based on feedback, we’re rolling back this change from Current Channel. We appreciate the feedback we’ve received so far, and we’re working to make improvements in this experience. We’ll provide another update when we’re ready to release again to Current Channel... . --- ### How to Fix the "Remote Desktop Connection - An Internal Error Has Occurred" Error > The "Remote Desktop Connection: An internal error has occurred" message can show up when a Remote Desktop Protocol client is unable to make a connection with an RDP server. Learn how to troubleshoot this issue with a step-by-step guide for checking the most important RDP settings on your Windows PC. - Published: 2022-07-08 - Modified: 2022-07-08 - URL: https://petri.com/remote-desktop-connection-an-internal-error-has-occurred/ - Categories: Windows Client OS - Tags: RDP, Remote Desktop, Remote Desktop Connection, Remote Desktop Protocol, Remote Desktop Services, Windows, Windows 10, Windows 11 - Article Type: How To The "Remote Desktop Connection: an internal error has occurred" message can show up on a Windows PC when the Remote Desktop Protocol (RDP) client is unable to make a connection with an RDP server. The error is due to one or more configuration issues related to RDP and security. In this guide, we'll help you troubleshoot this issue with a step-by-step tutorial. Throughout the different steps, we'll be taking a look at the most important RDP settings you can check on your Windows PC. As an IT pro, and especially as a server engineer for almost the last twenty years, I take 'RDP'ing into a server for granted ALL the time. That is, using Remote Desktop Connection (or similar front-end software tools) to remotely log in to another server or computer, be it at my workplace, in Azure, etc. Not surprisingly, there is a hell of a lot of technical environment variables that have to be just right in place in order for that Windows login screen to appear, showing you logging into that server. Oftentimes, especially when setting up a new server or a new Remote Desktop Host, you can run into errors trying to make that connection. How to fix the "Remote Desktop Connection: An internal error has occurred" error Let's go through the most common RDP settings and configuration snafus that can cause the "Remote Desktop Connection: an internal error has occurred" message to appear. Then, we'll show you how to solve them! 1. Allow remote... --- ### Latest Windows Server vNext Insider Build Brings Support for LAPS - Published: 2022-07-07 - Modified: 2022-07-07 - URL: https://petri.com/windows-server-local-administrator-password-solution-laps/ - Categories: Windows Server - Tags: LAPS Tool, News, Windows Server - Article Type: News Last week, Microsoft announced the release of the Windows Server vNext Insider build 25151. This new preview build of the Server OS comes with a couple of new features and changes, including support for the legacy Local Administrator Password Solution (LAPS) product and more. LAPS, which was previously available as a separate download, has now become a native part of Windows Server. The legacy tool was first rolled out to Windows Insiders last month, and it enables IT admins to manage local account passwords of Active Directory domain-joined PCs. It includes some new features and IT Pros will have to download the latest Insider build to use the new DSRM account password backup capability on Active Directory domain controllers. To get started, users will need to open the Group Policy editor and then head over to Computer Configuration >> Administrative Templates >> System >> LAPS. Keep in mind that Azure AD support is still limited to select Windows Server Insiders. Local Administrator Password Solution (LAPS) Windows Server 2022 containers now work on VNext builds The new Windows Server preview build also introduces a new desktop pop-up that should make it easier for users to manage Windows Server machines with Windows Admin Center (WAC), ARC, and Azure Automanage. Additionally, Microsoft notes that Windows Server 2022 containers now support Windows Server VNext builds. “We’d like your help in testing out your Windows Server 2022 container workloads on the latest Windows Server VNext Insider builds. Expanding test coverage to include customer workloads will... --- ### Microsoft Azure Reportedly Experiencing Capacity Shortages Amid Global Supply Chain Issues - Published: 2022-07-07 - Modified: 2022-07-07 - URL: https://petri.com/microsoft-azure-capacity-issues-supply-chain/ - Categories: Azure, Cloud Computing - Tags: cloud computing, Microsoft, Microsoft Azure, News - Article Type: News Microsoft's Azure cloud is experiencing capacity issues due to ongoing supply chain constraints. According to a new report from The Information, over two dozen Azure datacenters worldwide are currently operating with limited server capacity. In March 2020, Microsoft started experiencing an increased demand for its cloud services due to the COVID-19 pandemic. Specifically, Microsoft Teams saw unprecedented growth when the global pandemic forced thousands of employees to work from home. At that time, the software giant said that it was actively working to increase cloud capacity in order to meet the demand spikes for cloud services and Azure infrastructure. The company has since expanded its worldwide Azure datacenter footprint to increase overall capacity. Microsoft is the second-largest cloud provider, with more than 200 datacenters located in 60 different regions. However, the new report indicates that these initiatives did not solve the problem and that capacity problems are affecting Azure customers in Washington State, Asia, and Europe. A Microsoft Insider also claims that the server capacity limitations are expected to last until early 2023. Synergy's cloud market share data (Q1 2022) A separate report from The Telegraph has stated that Azure UK South and UK West regions no longer offer subscriptions for Cosmos DB and virtual machine services to new customers. The publication claims that the software giant is struggling to cope with the growing demand due to its commitments to support Ukraine as well as the persistent IT supply chain issues (including semiconductor shortage) worldwide. Microsoft puts Azure capacity restrictions... --- ### Microsoft's New Outlook for Mac to Add Support for Retention Policies and Reactions - Published: 2022-07-06 - Modified: 2022-07-06 - URL: https://petri.com/microsofts-outlook-for-mac-retention-policies-reactions/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, News, Outlook, Outlook for Mac - Article Type: News Microsoft has announced some important updates that should improve the new Outlook for Mac experience that launched in Fall 2020. First of all, the new Outlook for Mac is getting support for retention policies this month. Retention policies allow organizations to control how long messages will be saved within an Outlook folder. Microsoft says this release will let IT admins apply this policy to all emails in the users’ mailbox. The Microsoft 365 listing suggests that the retention policies feature should become generally available for all macOS users by the end of this month. “If you already defined the retention policy on your tenant and use that in Outlook Windows and Outlook on the web, now you could see them available in New Outlook for Mac on the message list view context menu and message item context menu,” the company explained on the Microsoft 365 Admin Center. Outlook for Mac to gain email reactions and handoff feature Another important addition in the new Outlook for Mac is support for email reactions. With this feature, Outlook users will be able to quickly express their emotions without having to send incremental emails. Microsoft notes the email client will let users choose from a variety of reactions, including a thumbs-up, heart, laugh, shed a tear, and celebrate. Reactions could be a handy way that lets multiple people show if they like or dislike an idea. Lastly, the Outlook for Mac app is getting a new handoff feature next month. Handoff is part of... --- ### Microsoft Detects Raspberry Robin Windows Worm in Hundreds of Enterprise Networks - Published: 2022-07-06 - Modified: 2022-07-06 - URL: https://petri.com/microsoft-detects-raspberry-robin-windows-worm/ - Categories: Endpoint Protection, Security - Tags: Malware, Microsoft, Microsoft Defender for Endpoint, News, Windows - Article Type: News Microsoft has warned customers about a new high-risk worm called "Raspberry Robin" that is infecting Windows PCs. The software giant has privately informed some Microsoft Defender for Endpoint users that the malware has been discovered in hundreds of enterprise networks across various industries (via Bleeping Computer). The Red Canary cybersecurity researchers first discovered Raspberry Robin in September last year. The researchers found that the worm spreads to new Windows machines via infected USB that contains a . LNK file. Once the user clicks on the file, the malware uses the command prompt to create a "msiexec" process and runs another malicious file on the compromised PC. Additionally, the worm establishes a connection with its command and control (C2) server and uses Windows utilities to install additional malicious payloads on the victim’s system. The DLL files then attempt to communicate with Tor nodes. Raspberry Robin worm infection flow (Source: Red Canary) Microsoft explained in its security advisory that the Raspberry Robin worm has been connecting to several IP addresses on the TOR network. However, the attackers have yet to exploit this vulnerability in order to deploy ransomware or steal sensitive data from vulnerable Windows devices. Microsoft categorizes Raspberry Robin as a high-risk campaign Microsoft has classified Raspberry Robin as a high-risk campaign because it could allow the threat actors to infect entire corporate networks. The researchers have detailed some indicators to help IT admins detect the Raspberry Robin malware. “To detect suspicious use of msiexec. exe by Raspberry Robin or other threats, it’s... --- ### Microsoft Announces Ephemeral OS Disk Support for Confidential Azure VMs - Published: 2022-07-06 - Modified: 2022-07-06 - URL: https://petri.com/microsoft-ephemeral-os-disk-confidential-azure-vms/ - Categories: Azure, Virtualization - Tags: linux, News, virtual machine, Windows - Article Type: News Microsoft has announced Ephemeral OS disk support for Azure confidential virtual machines (VMs). The new feature enables organizations to use Azure hardware-based trusted execution environments (TEEs) in order to protect sensitive data while is being processed from unauthorized access. Azure confidential computing was first announced at Microsoft's Ignite conference in 2017. These confidential VMs are designed for organizations that handle highly sensitive workloads in the cloud. Confidential VMs use hardware-protected encryption keys to ensure that customer data remains encrypted in memory, in transit (over a network), and at rest (in storage). It helps to protect sensitive information from hackers, government warrants, as well as Microsoft's administrators. Key features of Ephemeral disks With this release, Microsoft says that OS disk data will be lost when the VMs are resized, redeployed, restarted, or maintained (using healing or live migration). The company highlights several unique features offered by Ephemeral disks, such as support for Azure Compute Gallery, custom images, and Marketplace. Additionally, Ephemeral OS disks allow users to fast reset/reimage virtual machines as well as scale set instances back to the original boot state. Other capabilities include stateless application support, lower latency, and more. “Ephemeral OS disks work well for stateless workloads, where applications are tolerant of individual VM failures but are more affected by VM deployment time or reimaging of individual VM instances. With Ephemeral OS disk, you get lower read/write latency to the OS disk and faster VM reimage,” Microsoft explained. Ephemeral OS disks support is available for free in all... --- ### 5 Essentials for Successful Cloud Adoption > In this post, I’ll detail five essential principles for successful cloud adoption. You will learn how to approach adopting a cloud solution, including who should be involved, how processes need to be changed, and how using a Cloud Adoption Framework can get you on the right path to cloud success! - Published: 2022-07-06 - Modified: 2022-07-07 - URL: https://petri.com/cloud-adoption-essentials/ - Categories: Cloud Computing - Tags: Cloud, cloud computing, cloud services - Article Type: Overview In this post, I'll detail five essential principles for successful cloud adoption. Note that while I am biased towards Microsoft Azure, these essentials are the same for cloud projects targeting Amazon Web Services, Google Cloud Platform, and so on. Cloud adoption experience I have had the opportunity to work with public and private sector clients during their cloud projects, working as a Principal Consultant with a focus on Azure governance, security, management, deployment, and migration. The range of experiences from those projects has taught me and my colleagues quite a bit. What is a cloud? The American National Institute of Standards and Technology (NIST) has an awesome definition of cloud computing. In it, they define the 5 essential characteristics of a cloud: On-demand self-service: Developers and operators have the ability to deploy resources and configurations as needed, without having to create work requests from a central provider. Broad network access: Services and features are available over wide types of media and with sufficient connectivity. Resource pooling: Many tenants share a huge pool of resources. Rapid elasticity: You can use as little or as much of the pooled resources as you need for your current requirements. Measured service: You pay for what you use, while you use it. Cloud adoption versus cloud deployment There is a huge difference between a deployment or migration project and cloud adoption. I have been a part of and seen projects where a client has successfully deployed to the cloud or migrated their data center to the cloud. There... --- ### CISA Advises Federal Agencies to Patch Windows LSA Flaw Affecting Domain Controllers - Published: 2022-07-05 - Modified: 2022-07-05 - URL: https://petri.com/cisa-patch-windows-lsa-flaw-domain-controllers/ - Categories: Active Directory (AD), Security - Tags: Domain Controller, News, Vulnerability, Windows, Windows Server - Article Type: News Back in May, the Cybersecurity & Infrastructure Security Agency (CISA) temporarily removed a Windows flaw from its Known Exploited Vulnerability (KEV) Catalog due to Active Directory (AD) certificate authentication issues. CISA has now re-added the security vulnerability to KEV, and it’s encouraging IT admins to patch it by deploying the June Patch Tuesday updates by 22 July. As a reminder, Microsoft released the May 2022 updates to patch a Windows Local Security Authority (LSA) spoofing flaw (CVE-2022-26925). The high severity vulnerability allows attackers to force the domain controller (DC) to authenticate them via Windows NT LAN Manager (NTLM). NTLM is a legacy security protocol that is used for authentication between clients and server machines. As it turns out, these security patches also caused authentication problems on Windows Server domain controllers. “These changes break certificate authentication for many federal agencies, due to the way Personal Identity Verification (PIV)/Common Access Card (CAC) certificates are created and used. Active Directory now looks for the account’s security identifier (SID) in the certificate or for a strong mapping between the certificate and account,” CISA explained. Now, CISA has provided a new step-by-step guide with mitigation steps to help organizations prevent authentication issues on domain controllers. The guidance recommends IT admins to configure two registry keys that let them control if the domain controller is in "Compatibility Mode" or "Full Enforcement Mode. " Microsoft to move Windows Server devices to Full Enforcement mode in 2023 Microsoft explained in its support document that the May 2022 update switches... --- ### What’s New with Microsoft's Power Platform – June 2022 > The release of a streamlined and user-friendly maker experience for model-driven apps was one of the highlights of the June 2022 updates for Microsoft's Power Platform. There have been many other updates last month including new metrics in Power BI, Search coming to Power Apps in preview, and more. - Published: 2022-07-05 - Modified: 2022-07-05 - URL: https://petri.com/microsoft-power-platform-june-2022-updates/ - Categories: Power Platform - Tags: power apps, Power Automate, Power Platform - Article Type: News There have been many exciting updates for Microsoft's Power Platform last month, including a new look for model-driven apps, new metrics in Power BI, as well as Search and Find and Replace capabilities coming to Power Apps. On the connectors front, Microsoft also added introduced 13 new connectors and updated 14 existing ones. Let's dive into the main updates for Microsoft's Power Platform released throughout June 2022! New look for model-driven apps On fire! And I’m not talking about the heat outside, but the Power Platform! The release of a streamlined and user-friendly maker experience for model-driven apps is definitely on fire.   Canvas app makers will be familiar with the navigational experience and layout. Expect to see improvements in performance as well as the addition of component libraries.   New metrics in Power BI  Some exciting news for business analysts from Power BI folks! What was previewed, a year ago, as goals in Power BI has been renamed to metrics in Power BI. The metric scorecards roll data into hierarchies so that data is presented in a more granular view.    Power Apps for Windows  You can now install Power Apps for Windows to run canvas and model-driven apps, with your favorite connectors! The same capabilities that you are used to using like the camera, geo-location, and many more are available in Power Apps for Windows. To learn more, check out the Microsoft documentation.   Search comes to Power Apps in preview  Let’s face it, we have waited a long time for Search... --- ### Microsoft Teams Simplifies IT Management with New Admin App - Published: 2022-07-05 - Modified: 2022-08-17 - URL: https://petri.com/microsoft-teams-releases-admin-app/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced the release of a new Admin App for Microsoft Teams. The app provides a central hub that makes it easier for Teams admins to access settings and perform key management tasks across Microsoft 365 and Teams. Specifically, the new Admin app enables Teams admins to optimize Microsoft Teams meetings, webinars, messages, and other content for all end-users in their organization. It also helps to manage teams or team members as well as find advanced settings, support, and training resources. “You can add and remove users, manage licenses, update settings for teams, meetings, messages and more, directly from Microsoft Teams. We recommend that you get started exploring the app today to take advantage of the tailored recommendations and resources,” the company explained in a message on the Microsoft 365 admin center. How to install the Admin app in Microsoft Teams To get started with the new Admin app experience, you will first need to head to the Microsoft Teams app store. Then, search for “Admin” and download the app in Microsoft Teams. Keep in mind that the Admin app is available for all users in the App Store, but you must have administrative rights to use it. https://youtu. be/CmYxHbmAZk4 As of this writing, the Microsoft Teams Admin Center does not support managing the new Admin app with the Manage Apps or the App Permission Policies features. However, Microsoft has promised to bring these management capabilities in a future release. Microsoft keeps adding new features to make its Teams collaboration... --- ### Microsoft Defender for Endpoint Now Detects Network Threats on Android and iOS Devices - Published: 2022-07-05 - Modified: 2022-07-05 - URL: https://petri.com/microsoft-defender-for-endpoint-mobile-network-protection/ - Categories: Security - Tags: Android, iOS, Microsoft Defender for Endpoint, News, Security - Article Type: News Microsoft has released a new mobile network protection feature for its Microsoft Defender for Endpoint (MDE) solution. The new capability helps organizations protect Android and iOS devices against security threats originating from wireless connections. The mobile network protection feature is designed to offer protection against malicious attacks and bogus certificates targeting Wi-Fi networks in enterprise environments. Microsoft Endpoint Manager Admin Center allows IT admins to add the root Certificate Authority (CA) and private root CA certificates. “As the world continues to make sense of the digital transformation, networks are becoming increasingly complex and provide a unique avenue for nefarious activity if left unattended. To combat this, Microsoft offers a mobile network protection feature in Defender for Endpoint that helps organizations identify, assess, and remediate endpoint weaknesses with the help of robust threat intelligence,” the company explained. Additionally, this release brings a guided experience to help users connect to secure networks. The feature also notifies users if a Wi-Fi-related threat is detected on their mobile devices. The network protection requires Android users to grant location permissions so that Microsoft Defender for Endpoint can scan and alert users about Wi-Fi-related threats. Moreover, MDE also needs onboarding permissions for storage and notifications on iOS devices. Microsoft recommends Android users to turn on location permissions to detect and mitigate network-related threats. However, Microsoft Defender for Endpoint will only protect users against bogus certificates if the user does not grant these permissions. How to configure mobile network protection in Microsoft Defender for Endpoint It is... --- ### How to Select Hardware for Azure Stack HCI > Azure Stack HCI is Microsoft’s hyper-converged infrastructure cluster solution for hosting virtualized Windows and Linux workloads. In this guide, we'll explain the network components and hardware required to run virtualized workloads on-premises with Azure Stack HCI. - Published: 2022-07-05 - Modified: 2024-11-19 - URL: https://petri.com/azure-stack-hci-hardware/ - Categories: Azure, Azure Stack HCI, Microsoft Azure - Tags: Azure, Azure Stack, Azure Stack HCI - Article Type: How To Azure Stack HCI is Microsoft’s hyper-converged infrastructure cluster solution for hosting virtualized Windows and Linux workloads. In this guide, we’ll tell you everything you need to know about the network components and hardware required to run virtualized workloads on-premises with Azure Stack HCI. How to select the correct network components for Azure Stack HCI Before we start with the actual server hardware you need for Azure Stack HCI, we need to discuss the required network components. What you need to consider is whether to order a new switch for your Azure Stack HCI setup or not, because there are a lot of new features used in networking with Azure Stack HCI. You have new technologies like Remote Direct Memory Access (RDMA) added with Azure Stack HCI and Storage Spaces Direct. With larger Azure Stack HCI clusters, it could also be necessary to upgrade your storage network to 25 Gbit/s or even more. Let us look a bit deeper into the RDMA topic: RDMA comes with two protocol options, the Internet Wide Area RDMA Protocol (iWARP) and RDMA over Converged Ethernet (RoCE). If your network adapters only support RoCE and you are not able to use iWARP, your switches need to support Data Center Bridging (IEEE 802. 1Qbb). You can find a selection of switches tested by Microsoft on this Microsoft support page. There are also additional requirements for the switches listed in this other support page from Microsoft. The good news here, if you are planning for a cluster with... --- ### What’s New with Windows – June 2022 - Published: 2022-07-05 - Modified: 2022-07-05 - URL: https://petri.com/whats-new-with-windows-june-2022/ - Categories: Windows 10, Windows 11 - Tags: Internet Explorer, Microsoft Surface, News, Surface Laptop Go 2, Windows 10, Windows 11, Windows Insider Program - Article Type: News This month, there was a lot of activity for Windows Insiders, Internet Explorer was finally retired, and could Microsoft be preparing to release another version of Windows 10 this fall? Internet Explorer retired It shouldn’t have come as a shock to anyone but after more than 25 years, Internet Explorer (IE) was officially retired on June 15th. And that means that IE is no longer supported by Microsoft. Most of you will no doubt be glad to see the back of Internet Explorer. While Sean Lyndersay, General Manager for Microsoft Edge Enterprise, wrote about Internet Explorer with some fondness this month, the truth is that most people will remember IE as a slow and buggy browser that was completely crushed by Google Chrome. Of course, Microsoft’s modern web browser, Edge, is a completely different story. It may have got off to a false start. But when Microsoft decided to use Chromium as the rendering engine in Edge, instead of its own proprietary solution that had been the foundation for IE, things started to change. Edge now has 10 percent of the browser market and it has received praise from users and IT pundits alike. For enterprises that still rely on IE for legacy webapps, Edge provides IE Mode. It allows enterprises to open apps in Edge but use the old IE rendering engine to ensure compatibility. Could Microsoft release a new version of Windows 10 this year? When Microsoft launched Windows 11 in 2021, it stated that there would... --- ### Microsoft to Launch a Faster Outlook Lite App for Android Users - Published: 2022-07-01 - Modified: 2022-07-01 - URL: https://petri.com/microsoft-outlook-lite-app-android/ - Categories: Microsoft 365 - Tags: Android, Microsoft 365, Microsoft Outlook, News, Outlook app - Article Type: News Microsoft is getting ready to launch a new Outlook Lite app for Android. The software giant announced the new version of Outlook on the Microsoft 365 roadmap yesterday, and it is expected to become generally available worldwide later this month. Microsoft says that Outlook Lite should bring performance improvements for Android devices as compared to the regular version of the app. "An Android app that brings the main benefits of Outlook in a smaller app size with fast performance for low-end devices on any network," the company explained on the Microsoft 365 roadmap. According to German blog Dr. Windows, the . apk file of Microsoft’s lightweight Outlook app has been circulating for a while, but the company is now planning to make it available for all Android users. Dr. Windows installed the app and shared some screenshots (as shown below). Source: Dr. Windows Microsoft’s Outlook Lite App for Android doesn’t support work/school accounts Microsoft mentioned in its support document that the Outlook Lite app for Android supports only one personal Microsoft account (i. e. , Outlook, MSN, Live, and Hotmail). Currently, the app doesn’t allow users to log in with their school or work accounts. Overall, the new Outlook Lite client should be a welcome addition for Outlook users with low-end Android devices or people with limited internet connectivity. Microsoft plans to add support for more account types, dark mode, as well as multiple accounts in future updates. As a reminder, Microsoft is also testing a new web-based Outlook app (Project Monarch) for Windows PCs. The... --- ### Kaspersky Discloses New 'SessionManager' Backdoor Targetting Microsoft Exchange Servers - Published: 2022-07-01 - Modified: 2022-07-01 - URL: https://petri.com/kaspersky-sessionmanager-backdoor-microsoft-exchange-servers/ - Categories: Exchange Server - Tags: Exchange Server, Malware, News, Security - Article Type: News Security vendor Kaspersky has warned about a new malware that allows attackers to backdoor Microsoft Exchange servers. Dubbed SessionManager, the malicious tool has been used for the past 15 months to target NGOs, government agencies, military as well as industrial organizations across Europe, South America, Asia, and Africa. As reported by the Kaspersky researchers, the SessionManager malware was first spotted in March 2021. The malicious software acts as a legitimate module for Microsoft's Internet Information Services (IIS) web server. For those unfamiliar, IIS comes pre-installed on Microsoft Exchange servers. Kaspersky found that the threat actors exploit the ProxyLogon flaw in Microsoft Exchange servers to infect vulnerable systems with SessionManager. Once deployed, the malicious IIS module lets SessionManager operators steal credentials and collect sensitive data and emails stored in the memory. It can also be used to deliver more payloads, including ProcDump, PowerSploit-based reflective loader, and Mimikat SSP. “Such malicious modules usually expect seemingly legitimate but specifically crafted HTTP requests from their operators, trigger actions based on the operators’ hidden instructions if any, then transparently pass the request to the server for it to be processed just like any other request,” Kaspersky researcher Pierre Delcher explained in the security advisory. Source: Kaspersky Gelsemium hacker group linked to Exchange servers attacks Kaspersky believes that the malware is operated by a hacker group called Gelsemium. The researchers noticed certain similarities between SessionManager and OwlProxy, a backdoor variant that the threat actor previously used as a part of its attacks. Furthermore, Kaspersky has observed... --- ### Is VMware Doomed After Broadcom's $61B Takeover Bid? - Published: 2022-07-01 - Modified: 2022-07-01 - URL: https://petri.com/is-vmware-doomed-after-broadcoms-61b-takeover-bid/ - Categories: Video, Virtualization - Tags: Broadcom, Virtualization, vmware - Article Type: News Broadcom announced that it was planning to acquire VMware in May. And since then, it has laid out its plans for the company. But can Broadcom be trusted considering its history of killing off companies that it's purchased in the past? And could the EU save VMware from an uncertain fate? Let's dig deeper. About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Understanding Office 365 Quarantine - Published: 2022-07-01 - Modified: 2023-07-24 - URL: https://petri.com/office-365-quarantine/ - Categories: Microsoft 365 - Tags: Exchange Online, Exchange Online Protection, Microsoft 365, Office 365 - Article Type: Overview Microsoft's Office 365 Quarantine is a new service designed to keep organizations safer by moving all suspicious messages to a secure location. In this guide, we'll explain how Office 365 Quarantine works and how IT admins can use it to protect users in an organization from malicious files and messages. What is Office 365 Quarantine? Office 365 Quarantine helps to safeguard your organization against potentially dangerous or unwanted messages. The reasons for quarantining these messages range from unwanted (spam) messages to potentially dangerous ones like phishing emails, where a bad actor tries to get you to click on a link or reveal certain information. Office 365 Quarantine will prevent your or your users’ quarantined messages from being delivered to your users’ mailboxes by holding them for a certain period of time. Office 365 Quarantine isn’t a single product, it is made up of several services which mainly sit under Microsoft’s Defender for Office 365 and Exchange Online Protection. The figure below shows a high-level architectural illustration of how Office 365 Quarantine works. Figure 1: Microsoft Defender for Office 365 and Exchange Online Protection diagram (Image credit: Microsoft) Protecting users from potentially dangerous or unwanted messages Even the best cybersecurity awareness campaigns and end-user training will only go so far. Protecting users and organizations from potentially dangerous and unwanted messages has become an endless battle. Automated spam filters, which are part of any half-decent email solution will get rid of the majority of unwanted messages without users even realizing it,... --- ### What’s New in Microsoft Teams – June 2022 - Published: 2022-07-01 - Modified: 2022-07-01 - URL: https://petri.com/whats-new-microsoft-teams-june-2022/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has published a roundup of all the new features and enhancements rolled out to Microsoft Teams in the month of June. The company has made a couple of notable changes, such as new Teams chat integration with Dynamics 365, chat bubbles support on mobile, new policies for IT admins, and so much more. Live captions and transcriptions for Teams on the web, chat controls for IT admins & more First up, Microsoft Teams on the web now supports live captions and transcriptions in 27 languages. The list of six newly added languages includes Turkish, Hebrew, Czech, Vietnamese, Portuguese, and Thai. This feature is designed to make it easier to follow meetings for people who are deaf or hard of hearing. The company has also added support for external CART (Communication Access Realtime Translation) captions in Teams on the web. Additionally, Microsoft has introduced a new policy that enables IT Pros to display the join information in meeting invites in up to two languages. This capability is available across all email platforms and can be applied at the user, group, as well as organizational levels. Moreover, IT admins can configure a policy that prevents anonymous or unauthenticated meeting participants from sending chat messages. Another interesting feature is the ability for organizers to assign the new "co-organizer" role to up to 10 meeting participants. Microsoft Teams has added a new multi-tasking panel for Teams meetings on the iPad. It lets users view chat, participants, and other content side-by-side on the meeting... --- ### Microsoft Office App for Android Gets New Quick Access Filters - Published: 2022-06-30 - Modified: 2022-06-30 - URL: https://petri.com/microsoft-office-app-android-quick-access-filters/ - Categories: Microsoft 365, Office - Tags: Android, Microsoft 365, News, Office App - Article Type: News Microsoft has started rolling out a new Quick Access filters experience in its unified Office app for Android. The feature helps users to increase their productivity by making it easier to locate files, images, videos, and other content. “With Quick Access, you can utilize multiple filters to view different content types. Content-usage filters, such as, “RECENT”, “SHARED”, and “OPENED” help users find their content based on interactions, while content-type filters, such as, “WORD”, “EXCEL”, and “PDF” make it easier to filter by file type. Users can personalize their home screen by adding, removing, or organizing these filters for quick access,” the Office team explained. How to use Quick Access filters in the Microsoft Office app for Android Microsoft says that the Quick Access options will appear on the top of the home screen when users open the Office app on their Android devices. Users will need to tap on a Quick Access option to view content based on the selected filter type. They can also tap the More button to customize these options (if needed) on the Quick Access bar. Quick Access support is live in the Office app for Android version 16. 0. 5102. 20000 and later. Notably, these filters have replaced the "Shared" and "Recent" options that were previously available on the home screen. Microsoft’s Office mobile app for Android and iOS is also getting a new Video Creation tool. This release will let users record short video clips, edit and share them with their colleagues. The Video Creation feature... --- ### Microsoft Defender Vulnerability Management Adds New CVE Reporting Feature - Published: 2022-06-30 - Modified: 2022-06-30 - URL: https://petri.com/microsoft-defender-vulnerability-management-cve-reporting-feature/ - Categories: Security - Tags: Microsoft Defender Vulnerability Management, News, Security - Article Type: News Microsoft Defender Vulnerability Management is getting a new update that allows IT Pros to gain insights about vulnerable software and devices. The new CVE reporting feature is currently available in public preview for all commercial customers. For those unfamiliar, Common Vulnerabilities and Exposures (CVE) is a database of publicly disclosed software vulnerabilities. The Microsoft Defender Vulnerability Management solution allows IT admins to address critical vulnerabilities and configuration issues across their organization. It helps to reduce cybersecurity risks by providing assessment tools, asset visibility, and remediation solutions. These capabilities are supported across all platforms (including macOS, Windows, Linux, iOS, and Android) and network devices. Microsoft Defender Vulnerability Management is available in preview for Microsoft Defender for Endpoint Plan 2 subscribers and E5 customers. With this release, IT Pros can now view the CVEs by clicking the new "Weaknesses" tab in the Microsoft Defender Vulnerability Management portal. As shown in the screenshot below, the "Update Availability" column shows the availability status of security updates for each CVE on the Exposed devices and Related software tabs. “This new feature will show security update availability information for each CVE and actively exclude software lacking updates from the recommendations tab. (Note: Before the introduction of this feature, CVEs missing security updates were not shown in the Defender Vulnerability Management portal. Once a customer enables this feature in public preview, these CVEs will be reported in the Inventory and Weaknesses pages. ),” Microsoft explained. Microsoft Defender Vulnerability Management gets updated Recommendations tab In addition to the Weaknesses... --- ### Microsoft Delays End of Auto-Renewals of Legacy CSP Subscriptions - Published: 2022-06-30 - Modified: 2022-06-30 - URL: https://petri.com/microsoft-delays-end-legacy-csp-auto-renewals/ - Categories: Dynamics 365, Microsoft 365, Power Automate, Windows 365 - Tags: cloud computing, Microsoft, News - Article Type: News Microsoft has indefinitely delayed its plans to block auto-renewals of monthly subscriptions that are currently sold by Cloud Solution Providers (CSPs). CSPs are partners that can directly provision, manage, and support customer subscriptions for Microsoft products. The software giant had planned to begin blocking automatic monthly renewals for older accounts on July 11. It planned to replace monthly renewals with the New Commerce Experience (NCE), which substitutes monthly subscriptions with annual plans. Microsoft first announced the New Commerce Experience (NCE) back in 2019 for Microsoft Azure. The new subscription model intends to eliminate the monthly payment option available for Microsoft's services and pushes customers toward annual payment plans. This change will impact various services, including Microsoft 365, Dynamics 365, Windows 365, and the Power Platform (Power Automate, Power BI, Power Apps). Unlike the previous CSP model, the New Commerce Experience requires companies to purchase licenses for the entire year. This means that customers will no longer be able to return these licenses within that time frame. Microsoft is still offering a monthly payment plan for organizations that refuse to switch to NCE. However, these customers will need to pay a 20 percent premium price in that case. An update that follows pushback from customers Microsoft blocked companies from ordering the older CSP subscriptions on March 10, 2022. It was a part of an effort to encourage all CSP partners to bring their customers onto the New Commerce Experience subscription model. However, some CSPs created a Change. org petition urging the company... --- ### Microsoft Releases Patches to Address Azure FabricScape Flaw Affecting Linux Workloads - Published: 2022-06-29 - Modified: 2022-09-09 - URL: https://petri.com/microsoft-azure-fabricscape-flaw-linux-workloads/ - Categories: Azure, Security - Tags: linux, Microsoft Azure, News, Security - Article Type: News Microsoft has patched a critical in Azure Service Fabric dubbed "FabricScape" that affects containerized workloads on Linux. The software giant urges customers to upgrade their clusters as soon as possible to prevent successful exploits. Azure Service Fabric is basically a distributed systems platform that allows developers to build and host microservices-based cloud apps. It powers several Microsoft services, including Microsoft Intune, Skype for Business, Cortana, Dynamics 365, Azure Event Hubs, Azure SQL Database, Azure Cosmos DB, and Azure Data Factory. Cybersecurity researchers from Palo Alto Networks first disclosed the security vulnerability (CVE-2022-30137) in January this year. The flaw enables threat actors to perform a privilege escalation attack on the host Service Fabric node and potentially take over the entire cluster. Microsoft noted that attackers will need Runtime access to the container to exploit this vulnerability, which is unfortunately granted by default. The company has also detailed the steps that can be taken for a successful attack, and you can check out the security advisory for technical details. The Redmond giant confirmed that the bug is present in both Windows and Linux, but the problem only affects Linux containers. “Though the bug exists on both Operating System (OS) platforms, it is only exploitable on Linux; Windows has been thoroughly vetted and found not to be vulnerable to this attack,” the company explained. Update Azure Service Fabric clusters Microsoft released security patches to address the FabricScape vulnerability on June 14. The company says that customers with automatic updates enabled should have already... --- ### Google Creates New Division to Accelerate Public Cloud Adoption - Published: 2022-06-29 - Modified: 2022-06-29 - URL: https://petri.com/google-public-sector-cloud-adoption/ - Categories: Google Cloud Platform - Tags: Google, Google Cloud, Google Cloud Platform, News - Article Type: News Google is creating a new division that will focus on helping US public sector organizations to accelerate the adoption of Google Cloud technologies. The company says that Google Public Sector caters to the growing needs of federal, state, and local governments, as well as educational institutions. This new Google Public Sector division specifically aims to rapidly expand the Google Cloud Platform (GCP) and Google Workplace productivity suite to government entities. Google Public Sector will offer specialized services such as sales, customer engineering, customer support, channel and partner programs, customer success and services, security operations, and compliance. Google already has a significant presence in the public sector. The company already has contracts with the US Air Force, Navy, the State of West Virginia, the US Postal Service, the US Department of Energy, as well as the U. S Forest Service. Meanwhile, the U. S Patent and Trademark Office uses Google’s AI tools to quickly perform patent searches. In its press release, Google announced that Google Cloud CTO Will Grannis is appointed as interim Chief Executive Officer of its new subsidiary. Moreover, the Google Public Sector division will have a dedicated board of directors. Google Public Sector to protect public sectors from cyber attacks Additionally, Google plans to offer its cybersecurity solutions to protect public sector customers from sophisticated attacks and data breaches. The company noted that training employees on cloud services would remain its top priority. “With Google Public Sector, our plan is to continue down the path of achieving the highest levels... --- ### Microsoft 365 Web Apps Get New Idle Session Timeout Feature to Prevent Data Leaks - Published: 2022-06-29 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-365-web-apps-idle-session-timeout-feature/ - Categories: 365 Apps, Microsoft 365 - Tags: Microsoft 365, News, Web Apps - Article Type: News The idle session timeout feature, which the company announced for its Microsoft 365 web apps back in March, is now generally available for customers. The new capability lets IT admins configure a policy to automatically sign out inactive employees from Microsoft 365 web apps. Previously, the idle session timeout setting was only available for Outlook on the Web and SharePoint Web apps (on a per-app basis). Microsoft has now expanded this feature to support all Microsoft 365 Web apps. However, the setting doesn't affect desktop and mobile users. Microsoft highlights that configuring a tenant-wide policy should make it easier to prevent unauthorized access that can lead to information exposure on unmanaged or shared devices. It can also help to ensure compliance and a consistent user experience in session timeouts across all Microsoft 365 web apps. The idle session timeout feature is currently supported in select Microsoft 365 web apps. These include Office. com, Outlook on the web, PowerPoint for the web, Excel, Word, OneDrive for the web, SharePoint, as well as Microsoft 365 admin center. “Based on multiple customer conversations and feedback sessions, it became evident that our customers were looking for a more predictable and coherent solution covering the entirety of Microsoft 365 web apps. Idle session timeout is one of the many controls you can use with Microsoft 365 to balance user productivity and security to meet your organizational security requirements,” Microsoft explained. How to enable idle session timeout for Microsoft 365 web apps To turn on the Idle... --- ### Using Windows Boot Manager to Fix Startup Errors on Windows - Published: 2022-06-29 - Modified: 2024-03-13 - URL: https://petri.com/windows-boot-manager-fix-startup-errors/ - Categories: Windows Client OS - Tags: boot options, Most Popular, Windows, Windows 10 - Article Type: How To Windows PCs may sometimes encounter issues during startup, and that can happen when Windows fails to load properly. In this post, we’ll explain how you can use Windows Boot Manager to troubleshoot boot errors and get your PC up and running again. What is Windows Boot Manager? Windows Boot Manager (Bootmgr. exe) is Microsoft’s proprietary Unified Extensible Firmware Interface (UEFI) application. It is loaded from the volume boot code of your device’s hard drive, and it enables you to set up the boot environment, i. e. what happens when you first turn on your device. Windows Boot manager also lets you choose a specific operating system to load if your system contains multiple operating systems.  It can also provide access to several boot applications before loading Windows, which let you update, reset, or format your device. These applications can also help you flash the device with a new OS image and to capture and save crash dumps along with the associated logs to better understand any Windows issues. Understanding the boot process To boot a computer means to initiate the process of starting it. In any computing device, all the essential files, the operating system, its associated libraries and dependencies, along with system-critical data are stored on a hard disk drive. However, when you turn on your computer, these files need to be loaded into memory (RAM) and executed for the OS to load.   Source: Microsoft. com Here are the four major phases involved in the boot process: Phase 1 - PreBoot In this phase, the computer’s firmware settings are loaded through a power-on self test (POST) process. Once this process is completed,... --- ### Microsoft Teams Adds New Web Features for Small Businesses - Published: 2022-06-28 - Modified: 2022-06-28 - URL: https://petri.com/microsoft-teams-new-web-features-small-businesses/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News, Web App - Article Type: News Microsoft announced a big update for Teams on the web that's aimed at small and medium businesses. The latest release brings some much-anticipated features that are already available in the desktop versions of Microsoft Teams. First of all, Microsoft has announced that custom backgrounds support is now available for all web users. Microsoft Teams first introduced the background effects feature for desktop users back in 2020. It allows users to blur their messy backgrounds or choose from pre-set background images during video calls and meetings. The Microsoft Teams web app now provides Live Captions with speaker attribution in 27 new spoken languages. The list of newly added languages includes German, Hindi, Japanese, and Portuguese (Brazil). The feature is designed to make Teams meetings more inclusive for participants who have different levels of language proficiency or hearing disabilities. Live transcription Microsoft Teams on the web has also introduced Live transcription support in all languages. With the Live transcription feature, attendees can see a written record of the spoken text during a Teams meeting in real-time. The text appears alongside the video feed with the speaker’s name and a time stamp. It helps people who missed the meeting or joined late to catch up on important discussions. Microsoft Teams on the web gets CART captioning support Lastly, Microsoft has added communication access real-time translation (CART) captioning to its web app. The service allows attendees to see real-time captions coming from a third-party provider within the meeting window. CART captions are an alternative... --- ### Microsoft Starts Rolling Out Edge WebView2 to Windows 10 PCs - Published: 2022-06-28 - Modified: 2022-07-06 - URL: https://petri.com/microsoft-edge-webview2-windows-10-pcs/ - Categories: Microsoft Edge, Windows 10, Windows Client OS - Tags: Microsoft, Microsoft Edge, News, Windows 10 - Article Type: News Microsoft has started rolling out the Edge WebView2 Runtime to Windows 10 consumer devices. The Microsoft Edge WebView 2 control allows developers to embed web-based content into their applications. For those unfamiliar, Edge WebView2 is used by a wide range of applications, including Microsoft 365 apps. It helps developers to keep a consistent look and feel of apps across all platforms. Microsoft is also working on a new Teams 2. 0 that should bring significant performance enhancements by ditching the Electron framework in favor of Edge Webview 2. Microsoft highlighted that the new Windows 11 OS comes with built-in support for the WebView2 Runtime. Up until now, developers had to spend some extra time and effort to integrate the control into their Windows 10 applications. Microsoft says that the WebView2 runtime is already installed on more than 400 million Windows 10 PCs. The latest update now allows developers to reduce the cost of including relevant dependencies in their apps. Microsoft to bring Edge WebView2 to enterprise Windows 10 devices According to Microsoft, the WebView2 Runtime support should have a minimal impact on the performance of Windows 10 devices. The firm also emphasizes that Microsoft Edge and the WebView2 Runtime are "hard-linked" and only utilize the storage space of one product. "The WebView2 Runtime and Microsoft Edge browser are "hard-linked" together, which means they only occupy the disk space of one product when they are on the same version. This ensures that the WebView2 Runtime installation has minimal impact to your device,"... --- ### IT Admins Get New Azure AD Temporary Access Pass Feature to Create Time-Limited Passcodes - Published: 2022-06-28 - Modified: 2022-06-28 - URL: https://petri.com/it-admins-create-azure-ad-temporary-access-pass/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has announced that Temporary Access Pass (TAP) is generally available for commercial customers. The Temporary Access Pass feature enables users to securely sign in to their accounts without a password. Microsoft launched the public preview of Temporary Access Pass in Azure Active Directory earlier this year. It could be useful in scenarios where the old credentials are lost, or the device is stolen. The TAP feature can also be used to set up new Windows PCs for employees. “TAP is a time-limited passcode that basically temporarily enables users to sign-in. That sign-in is focused on getting users up-and-running with passwordless authentication and on helping users recover access to their account. And all of that without the usage of a password, as TAP satisfies the needed strong authentication requirements,” the company explained. Notably, IT teams will be able to configure and manage the Temporary Access Pass feature for users in their organization. First up, IT admins with Global Admin or Authentication Policy Admin permissions will need to enable TAP for users in their tenants. Next, they should create a Temporary Access Pass for a particular end-user in Azure AD. How to use a Temporary Access Pass Once the TAP is created, the user can use it to sign in and register a secure authentication method by following these steps: Open a web browser and head to Microsoft's security portal. Enter the UPN of the account associated with the Temporary Access Pass (such as tapuser@contoso. com). The user will be prompted to enter their... --- ### Microsoft Addresses Windows 11 Wi-Fi Hotspot Issues in New Optional Update - Published: 2022-06-27 - Modified: 2022-06-27 - URL: https://petri.com/microsoft-addresses-windows-11-wi-fi-hotspot-issues/ - Categories: Windows 11 - Tags: News, Windows, Windows 11 - Article Type: News Microsoft has released the KB5014668 update for Windows 11, a new optional patch that fixes the Wi-Fi hotspot feature broken by the June Patch Tuesday updates. This release also brings a new Search Highlights feature to Windows 11 PCs as well as several other bug fixes. The Search Highlights feature first made its debut on Windows 10 back in March. It enables users to see highlights of historical events related to that particular day in Windows Search. The feature shows holidays, anniversaries, trending searches, and more in that specific region. For enterprise customers, Search Highlights can surface important as recent as recent documents in their organization. Microsoft says the feature will be rolled out to all Windows 11 users over the next few weeks. Microsoft fixes Windows 11 upgrade bug and more In addition to the Wi-Fi hotspot issues, Microsoft addressed a bug that previously prevented users from upgrading to Windows 11. The optional update also brings fixes for another bug that caused Bluetooth connection issues with some audio devices after restarting. There are some fixes aimed at the Your Phone app & Microsoft's Surface Dial, and you can find the full changelog on this support page. It is important to note that the Wi-Fi hotspot issue also affects all supported versions of Windows 10. It is possible to mitigate the problem by disabling the Wi-Fi hotspot feature on Windows 10 PCs. However, the company is already working on a more permanent fix that will be available in a future... --- ### Microsoft Defender for Identity Can Now Detect Insecure Domain Configurations - Published: 2022-06-27 - Modified: 2022-06-27 - URL: https://petri.com/microsoft-defender-for-identity-detect-insecure-domain-configurations/ - Categories: Identity Service, Security - Tags: Microsoft Defender for Identity, News, Security - Article Type: News Microsoft Defender for Identity is getting a new update that enables IT admins to identify insecure domain configurations in their environments. These security capabilities aim to protect businesses from Kerberos resource-based constrained delegation relay attacks. Specifically, Microsoft Defender for Identity provides real-time monitoring to detect two default configurations that are vulnerable to security breaches. These insecure domains could allow threat actors to gain system privileges by exploiting the Kerberos relaying (KrbRelayUp) hacking tool. “Configuring Active directory optimal security has always been top of mind for the Microsoft Defender for Identity team and its research them, recent attacks, such as KrbRelayUp, had repeatedly shown us how certain, often default, settings can be used against their intended purpose and result in an identity compromise,” said Or Tsemah, Senior Product Manager for Microsoft Defender for Identity. Microsoft highlighted that the "Set ms-DS-MachineAccountQuota" configuration lets attackers configure up to 10 accounts on the target network. The evaluation capability for this default configuration is now available for all users. Additionally, Microsoft advises IT Pros to enforce the "Require signing" LDAP policy setting because “unsigned network traffic” is subject to man-in-the-middle (MITM) attacks. Basically, LDAP is a directory service protocol that lets users access files, servers, apps, and other IT resources. The firm plans to release the LDAP configuration detection capability within the “next two weeks. ” Microsoft Defender for Identity to add support for configurations To get started with the new security assessment tool, IT admins can head to the Secure Score section of the Microsoft... --- ### Amazon CodeWhisperer is Now Available in Public Preview > Amazon CodeWhisperer is a code development tool that uses machine learning (ML) and artificial intelligence (AI) to help developers write better code and reduce routine and repetitive work. It's now available in preview form with support for multiple IDEs and languages. - Published: 2022-06-27 - Modified: 2022-06-27 - URL: https://petri.com/amazon-codewhisperer-preview/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon CodeWhisperer - Article Type: News At its past re:MARS conference last week, Amazon announced that Amazon CodeWhisperer is now available in preview. Amazon CodeWhisperer is a code development tool that uses machine learning (ML) and artificial intelligence (AI) to help developers write better code and reduce routine and repetitive work. Thinking back to my early developer days, I remember how much I loved the Visual Studio IntelliSense feature that provided help with syntax, data types, and object references. Amazon CodeWhisperer takes this same idea several steps further by incorporating machine learning models that have been trained with billions of lines of code. CodeWhisperer can also help developers to write code that accesses various AWS services, and the company promises that this new tool should get better over time. "We trained (and continue to train) CodeWhisperer on billions of lines of code drawn from open source repositories, internal Amazon repositories, API documentation, and forums," said Jeff Barr, Chief Evangelist for Amazon Web Services. How Amazon CodeWhisperer works Amazon CodeWhisperer can accelerate the development process in several key ways. First, developers can simply write comments in their IDE’s code editor, and CodeWhisperer will automatically analyze them and determine which cloud services and public libraries are best suited to perform specified tasks. CodeWhisperer then recommends a code snippet and puts it directly in the source code editor. Next, Amazon CodeWhisperer provides security scans for Java and Python code to help developers detect vulnerabilities and create more secure applications.  It also includes a reference tracker that detects whether a code... --- ### What is a Virtual Machine? > A virtual machine (VM) is an emulated or digital version of a physical computer. In this guide, we explain some of the most important use cases for virtual machines, including cross-platform software development and malware investigation. - Published: 2022-06-27 - Modified: 2022-06-27 - URL: https://petri.com/what-is-a-virtual-machine/ - Categories: Virtualization - Tags: virtual machine, virtual machines, Virtualization - Article Type: Overview A virtual machine (VM) is an emulated or digital version of a physical computer. Virtual machines can be used to run different operating systems and applications, store data, connect to networks, as well as perform other tasks like a physical device. Virtual machines run on a physical device called a host or parent server. And a virtual machine is called a guest or child. In this article, I'll explain how virtual machines work and how they differ from containers. I'll also detail some of the most important use cases for virtual machines, including cross-platform software development and malware investigation. How does a virtual machine work? Essentially, virtualization technology allows users to create and run multiple virtual machines simultaneously on a single host. For instance, a Windows host is capable of running different virtual machines with Windows, CentOS, Ubuntu, and other Linux distributions. A virtual server uses hypervisor software to interact with the underlying physical hardware. It makes it possible to keep VMs separate and evenly allocate host resources (CPUs, storage, and memory) to each VM guest as needed. The hypervisor can also schedule operations to prevent deadlocks. Source: Microsoft The two types of hypervisors There are two primary types of hypervisors that are used in virtualization. Type 1 Hypervisors (Process VM) First up, a type 1 hypervisor, also called a bare-metal hypervisor, runs natively on the physical computer. Typically, a separate management tool is required for creating/managing virtual machines and managing permissions on the hypervisor. Microsoft Hyper-V and Citrix... --- ### Microsoft to Start Notifying Windows 8.1 Users About Upcoming End of Support - Published: 2022-06-24 - Modified: 2024-09-05 - URL: https://petri.com/microsoft-windows-8-1-users-end-of-support-notifications/ - Categories: Windows 10, Windows 11, Windows 8 - Tags: News, Windows 10, Windows 11, Windows 8.1 - Article Type: News Microsoft is getting ready to end support for its almost 9-year-old Windows 8. 1 operating system on January 10, 2023. The software giant will begin pushing end-of-support notifications to Windows 8. 1 users next month, giving them plenty of time to consider other options. As a reminder, Microsoft offered Extended Security Updates for Windows 7 to help small and medium-sized businesses plan their upgrades. However, the firm has no plans to provide any such option to Windows 8. 1 users. “Microsoft will not be offering an Extended Security Update (ESU) program for Windows 8. 1. Continuing to use Windows 8. 1 after January 10, 2023 may increase an organization’s exposure to security risks or impact its ability to meet compliance obligations,” Microsoft noted on its support page. Microsoft released Windows 8. 1 back in October 2013 with the Start menu button that was removed in the original Windows 8 release. Meanwhile, an additional update to the operating system also brought many other improvements, but it still failed to gain traction from consumers. Windows 8. 1 users will need to plan upgrades within six months Once the support officially ends in January, Windows 8. 1 will stop receiving security patches and will be vulnerable to viruses and malware. Microsoft highly recommends consumers and businesses to switch to Windows 10 to continue receiving security upgrades and feature updates. Microsoft previously offered free upgrades from Windows 8. 1 to Windows 10, but that is no longer the case. Users will need to install the OS on their devices manually, and you can... --- ### CISA Warns Unpatched VMware Servers Remain Vulnerable to Log4Shell - Published: 2022-06-24 - Modified: 2022-06-24 - URL: https://petri.com/cisa-unpatched-vmware-servers-vulnerable-log4shell/ - Categories: Security - Tags: News, Security, Vulnerability - Article Type: News The US Cybersecurity and Infrastructure Agency (CISA) has warned that attackers are still exploiting the Log4Shell flaw to target VMware's Horizon and Unified Access Gateway (UAG) servers. The security agency advised IT admins to immediately patch their servers running vulnerable Log4j versions. The Apache Software Foundation first disclosed the Log4Shell flaw, tracked as CVE-2021-44228, back in December 2021. The vulnerability exists in the popular open-source Apache Log4j framework and allows unauthenticated remote code execution (RCE) and complete server takeover. VMware released multiple patches to address the security flaw in its products in December and January. However, it turns out that some organizations have yet to patch their systems. CISA says that attackers have recently exploited the Log4Shell vulnerability on unpatched servers to breach the disaster recovery network of an organization and steal sensitive information. "As part of this exploitation, suspected advanced persistent threat actors implanted loader malware on compromised systems with embedded executables enabling remote command and control (C2). In one confirmed compromise, these APT actors were able to move laterally inside the network, gain access to a disaster recovery network, and collect and exfiltrate sensitive data," CISA explained. CISA urges organizations to patch their systems It is important to note that Log4Shell affected a wide range of customers, enterprise services, and device manufacturers. It is one of the reasons that the flaw was a bit challenging to patch for some organizations. While the CISA had not observed any major intrusions via Log4j, the latest incidents indicate that the security... --- ### Microsoft Teams Now 60% Faster but When Will Teams 2.0 Arrive? - Published: 2022-06-24 - Modified: 2022-06-24 - URL: https://petri.com/microsoft-teams-now-60-faster-but-when-will-teams-2-0-arrive/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, Microsoft Teams 2.0 - Article Type: Video Microsoft first announced plans for a new and faster Teams client last year. But while Windows 11 got a new Chat app that is based on Teams 2. 0, enterprise users are stuck with the clunky Electron version. And there's no sign of even a preview coming any time soon. But earlier this month, Microsoft did talk about performance improvements to the existing client. Which is great! But when will Teams 2. 0 arrive for enterprise users? Let's dig deeper. About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### How to Install SQL Server 2022 > SQL Server 2022, the latest release of Microsoft's relational database product is nearing the finish line. In this guide, we'll show you how to install SQL Server 2022 with the default, typical setup configuration. - Published: 2022-06-24 - Modified: 2023-09-25 - URL: https://petri.com/install-sql-server-2022/ - Categories: SQL Server - Tags: Microsoft SQL Server, SQL Server, SQL Server 2022 - Article Type: How To SQL Server 2022, the latest release of Microsoft's relational database product is nearing the finish line. In this guide, we'll show you how to install SQL Server 2022 with the default, typical setup configuration. Planning and prerequisites Before we get started with the installation of SQL Server 2022, the first thing to accomplish is to register (painless) for the public preview, also known as the CTP 2. 0 (Community Technology Preview) release. You can do that on this page, where you can also download the 64-bit version of SQL Server 2022 for Windows. Downloading the SQL Server 2022 media (ISO) Once you have the ISO file downloaded and copied to your server, we can start the installation. For the purpose of this guide, I built a new Windows Server 2022 VM in my Windows Server 2022 Active Directory Hyper-V lab environment and joined it to my domain. My Hyper-V VM is all patched up and I allocated 4 vCPUs and 8 GB of RAM to it. My Windows Server 2022 VM ready for installation! In File Explorer, I right-clicked on the ISO and clicked 'Mount. ' My SQL Server 2022 ISO, mounted, ready to go! In the folder, double-click on setup. exe, and away we go! The SQL Server 2022 (CTP) Setup Program There is a lot of preparatory work database administrators and IT Pros need to perform to ensure a successful SQL Server 2022 install. There are plenty of documentation links in the 'Planning' category of the Setup program. I encourage... --- ### Microsoft Entra Verified ID Now Lets Users Recover Lost Credentials - Published: 2022-06-23 - Modified: 2022-06-23 - URL: https://petri.com/microsoft-entra-verified-id-recover-lost-credentials/ - Categories: Azure, Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory, Azure AD, News - Article Type: News Microsoft has announced new features and improvements coming to its Microsoft Entra Verified ID service. The company says that these updates should help to make credentials exchange easier for both issuers and verifiers. For those unfamiliar, the Verified ID service first debuted as “Azure Active Directory Verifiable Credentials” in preview last year. The decentralized identity offering allows security teams to verify the credentials of users and organizations. Microsoft recently rebranded the service to Verified ID as part of its new Microsoft Entra product line. With this release, Microsoft Authenticator users can now easily recover Verifiable Credentials in situations where a device is lost or stolen. “Users can export their credentials and secure the exported file using a pass phrase to ensure that only you can access your encrypted credentials. If you lose your phone, you can use Microsoft Authenticator on the new device to import credentials using the file, along with the passphrase,” the company explained. Microsoft announces Verifiable Credentials Network & more Microsoft has also launched a Verifiable Credential Network, which is a database of verified "credential types" issuers. App developers will no longer need to make custom integrations with issuers. Verifiable Credential Network is also available for all customers using the free version of Azure Active Directory (Azure AD). Furthermore, Microsoft has released an update that makes it easier for IT Pros to configure and issue Verifiable Credentials to users for directory-based claims through Azure Portal. It is possible to configure policies that let users accept credentials with... --- ### QNAP Releases Patch to Fix PHP Security Flaw Affecting Select NAS Devices - Published: 2022-06-23 - Modified: 2022-06-23 - URL: https://petri.com/qnap-fix-php-security-flaw-nas-devices/ - Categories: Security - Tags: News, QNAP, Security, Vulnerability - Article Type: News QNAP has released a patch to address a new PHP security vulnerability that affects specific configurations of its Network Attached Storage (NAS) devices. The company has urged its customers to update their systems to protect against remote code execution (RCE) attacks. Tracked as CVE-2019-11043, the security flaw was first reported to QNAP three years ago, and it exists in the popular server scripting language 'PHP. ' “A vulnerability has been reported to affect PHP versions 7. 1. x below 7. 1. 33, 7. 2. x below 7. 2. 24, and 7. 3. x below 7. 3. 11 with improper nginx configuration. If exploited, the vulnerability allows attackers to gain remote code execution,” QNAP explained. The PHP security vulnerability was found in QTS 5. 0. x and later, QTS 4. 5. x and later, QuTS hero h5. 0. x and later, QuTS hero h4. 5. x and later, and QuTScloud c5. 0. x and later. However, the company indicated that the flaw doesn’t impact NAS devices with default configurations. “For the vulnerability to be exploited, both nginx and php-fpm must be running. While QTS, QuTS hero, and QuTScloud do not have nginx installed by default, your QNAP NAS may still be affected if you have installed and are running nginx and php-fpm on your NAS,” QNAP added. QNAP advises users to install the latest firmware update Fortunately, QNAP has already mitigated the security flaw in OS versions QTS 5. 0. 1. 2034 build 20220515, and QuTS hero h5. 0. 0. 2069 build 20220614. QNAP has encouraged users to install the latest firmware update on their NAS devices immediately. To do this, IT admins will first need to log on to... --- ### Windows 11 to Add 'Legacy' Local Administrator Password Solution - Published: 2022-06-23 - Modified: 2022-06-23 - URL: https://petri.com/windows-11-legacy-local-administrator-password-solution/ - Categories: Windows 11 - Tags: News, Windows, Windows 11, Windows Insider Microsoft has released a new Windows 11 build to Insiders in the Dev channel. The build 25145 brings a couple of new features and improvements, such as the legacy Local Administrator Password Solution and OneDrive subscription management in the Settings app. The first notable change in this build is native support for the Local Administrator Password Solution (LAPS) product in Windows 11. The legacy tool, which was previously available as a separate download, enables IT administrators to manage local account passwords of domain-joined PCs. Microsoft has also introduced a few new features in the Local Administrator Password Solution, but the firm didn’t provide any specific information in the release notes. Currently, LAPS only supports Active Directory domain-joined clients, though it’s limited to a small set of Insiders. IT Pros will be able to manage it via the Group Policy Editor. To get started with the Local Administrator Password Solution Group Policy on Windows 11, your PCs should first be enrolled in the Dev channel. Then, open the Group Policy Editor and head to Computer Configuration > Administrative Templates > System > LAPS. Windows 11 Settings app gets OneDrive storage alert and subscription management The Windows 11 Settings app already provides Microsoft 365 subscription information. Starting with build 22538, OneDrive standalone 100GB subscriptions are also getting a similar treatment. This means that users will now be able to see recurring billing details, OneDrive storage usage, as well as the payment method in the Accounts section of the Settings. The app will... --- ### Microsoft Lists Calendar View Gets Color Coding with Conditional Formatting Rules - Published: 2022-06-22 - Modified: 2022-06-22 - URL: https://petri.com/microsoft-lists-calendar-view-color-coding-conditional-formatting-rules/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Lists, News Microsoft Lists calendar view is getting better with conditional formatting support, which now makes it easier to customize the calendar based on specific requirements. The Redmond giant has started rolling out the new feature to all Microsoft Lists users worldwide. According to Microsoft, this release enables users to color-code list items to meet certain rules specified in the conditional formatting fields. “Users will now be able to apply colors/highlights to the items appearing on the calendar canvas. This can be achieved using the ‘format current view’ option from the top right dropdown,” the company explained in a message on the Microsoft 365 Admin center. More specifically, the new feature lets users create a new rule based on a specific field and then choose a suitable color for corresponding list items. Additionally, Microsoft Lists users can edit, rearrange as well as delete existing rules. https://twitter. com/aaclage/status/1538988441710612487? s=09 Microsoft Lists calendar view conditional formatting support to hit GA this month Overall, the new conditional formatting support is a welcome addition to Microsoft Lists. It will allow users to give their calendar a visual refresh and highlight important meetings and appointments. Microsoft Lists calendar view update is being rolled out in a staggered manner, and the company expects to make this update generally available by the end of this month. According to the Microsoft 365 roadmap, Microsoft is also planning to bring the web commenting experience to its Lists iOS app this month. This means that users will be able to add or delete a... --- ### Microsoft Unveils New Edge Secured-Core IoT Devices to Block Firmware Attacks - Published: 2022-06-22 - Modified: 2022-06-23 - URL: https://petri.com/microsoft-unveils-edge-secured-core-iot-devices/ - Categories: Internet of Things (IoT), Security - Tags: IoT, News, Security - Article Type: News Microsoft has announced that it’s expanding the Secured-core initiative to enhance the security of Internet of Things (IoT) devices. The company has also launched new Edge Secured-core certified devices designed to provide greater protection against firmware-based attacks. Microsoft first unveiled its certification program for secured-core Windows 10 PCs back in 2019. Last year, the company extended this program to include servers running Windows Server and Azure Stack HCI. The Secured-core initiative targets enterprise customers who want to ensure the security of the Windows OS running on non-Microsoft hardware. The Edge Secured-core certification program brings several new security capabilities for enterprise customers. First up, it offers a built-in security agent to help IT admins secure their IoT devices from cyber attacks. Edge Secured-core devices also support data encryption at rest and in transit. "IoT devices such as gateways, which are often used to connect downstream devices to the cloud, need inherent support for protecting data in transit. Edge Secured-core devices help support up-to-date protocols and algorithms that are used for data-in-transit encryption," explained Deepak Manohar, Principal PM Manager, Azure Edge and Platform security. The Edge Secured-core certification program helps to ensure hardware-based device identity protection for Azure IoT Hub connections. Moreover, these IoT devices offer seamless integration with the Microsoft Azure Attestation service. Edge Secured-core certified IoT devices Microsoft noted that the list of new Secured-core IoT certified products includes Lenovo ThinkEdge SE30, Asus's AAEON SRG-TG01, Intel's NUC 11 Pro Mini PC, and ASUS PE200. The company plans to release updates... --- ### GitHub Copilot AI Coding Assistant Launches with a $10/Month Subscription Fee - Published: 2022-06-22 - Modified: 2022-06-22 - URL: https://petri.com/github-copilot-ai-coding-assistant-subscription-fee/ - Categories: Developer - Tags: Developer, GitHub, GitHub Copilot, News GitHub has announced that its Copilot AI coding assistance tool is now generally available for all developers. GitHub Copilot launched in technical preview in June 2021, and it’s designed to help software developers write code faster through autocompletion. With GitHub Copilot, software developers can use inline comments within their editor to get code suggestions for programming languages such as JavaScript, Python, TypeScript, and Ruby. The tool helps developers to autocomplete lines of code or implement a complete function based on the current context. It lets users accept, reject as well as manually edit these code suggestions. Thanks to OpenAI's text-generating technology, the AI pair programmer tool is available as an extension for text editors and IDEs. It offers integration with popular applications such as Neovim, Microsoft Visual Studio, Visual Studio Code, and various JetBrains IDEs. “With more than 1. 2 million developers in our technical preview over the last 12 months, people who started using GitHub Copilot quickly told us it became an indispensable part of their daily workflows. In files where it’s enabled, nearly 40% of code is being written by GitHub Copilot in popular coding languages, like Python—and we expect that to increase,” explained Thomas Dohmke, CEO of GitHub. GitHub Copilot is free for students & open-source contributors It is important to note that Copilot is an automated tool, and its code suggestions may not always be accurate. GitHub advises developers to test their code as it may contain bugs, unsupported API references, and security vulnerabilities. Software developers who... --- ### How to Create Files and Folders with PowerShell > PowerShell can intelligently create multiple files and folders in bulk. In this guide, we'll show you how to create your own files and folders using the New-Item PowerShell cmdlet. - Published: 2022-06-22 - Modified: 2023-10-16 - URL: https://petri.com/powershell-how-to-create-files-folders/ - Categories: PowerShell - Tags: file management, PowerShell, Windows 10, Windows 11 - Article Type: How To When you need to create files and folders on a Windows PC, using the GUI seems the most intuitive way to do it. However, PowerShell can intelligently create multiple files and folders in bulk. This is a pretty common task for almost any IT professional, and in this guide, we’ll show you how to create your files and folders using the New-Item PowerShell cmdlet. How to create a file in PowerShell Once you understand how to use PowerShell, the speed at which you can create things makes mundane tasks much easier. Let’s dive in and look at how to create files and folders using the New-item, Add-Content, and Test-Path cmdlets. How to create a file with the New-item command Creating a new file with PowerShell can be done with the New-Item cmdlet. If I wanted to create a new text file named MyTextFile. txt, the syntax would be the following: New-Item MyTextFile. txt Creating a file using the New-Item cmdlet In the example above, PowerShell created a file in the c: directory. However, I can specify different a location simply by adding the path to the filename. Here’s an example below: New-Item c:\tools\MyNewFile. txt Creating a file in a different folder Notice that in the screen capture above, I was in the temp directory, but I created the file in the tools directory. Once you are familiar with creating a new file, it is only one more line of code to add to start creating files in bulk. Here’s an example of... --- ### IT Admins Get New Features for Managing Microsoft 365 App Updates - Published: 2022-06-21 - Modified: 2022-06-21 - URL: https://petri.com/it-admins-features-managing-microsoft-365-updates/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Microsoft 365, News Microsoft announced yesterday that it has started rolling out several new capabilities for Servicing profiles. These are one of the top-requested features from IT admins, who will now be able to automate updates for Microsoft 365 apps via Azure Active Directory (AD). The Servicing profiles feature enables IT Pros to roll out monthly updates for Microsoft 365 apps to specific users or groups within an organization. It’s a cloud-based service that helps to improve security currency and streamline the onboarding process. The latest release introduces a new capability that lets customers align the monthly Office patches with Windows Patch Tuesday updates. IT Pros can use the “wave customization” feature to prioritize updates for select Windows devices. “With Rollout waves, you can customize which devices/users should get the updates first, second, etc. This allows you to build deployment rings for e. g. testing, piloting and full release by simply adding Azure AD groups to the respective waves. Servicing profile will then execute the update deployment according to your settings each Patch Tuesday,” said Microsoft's Martin Nothnagel. https://www. youtube. com/watch? v=rDu8qVbE1DY IT Pros can rollback Microsoft 365 updates based on Azure AD groups Microsoft has also announced that the rollback feature now supports Azure AD groups. This means that IT admins can specify Azure Active Directory (Azure AD) groups with users or devices. The new feature eliminates the need to choose individual devices manually. Additionally, Microsoft noted that customers will be able to exclude select devices from automated updates or target all devices within an organization... . --- ### [Updated] Microsoft is Investigating Outage Affecting Teams and Exchange Online - Published: 2022-06-21 - Modified: 2022-06-21 - URL: https://petri.com/microsoft-investigating-teams-exchange-online-outage/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams - Tags: Exchange Online, Microsoft 365, Microsoft Teams, News, Outage If you’re having issues with Microsoft 365 services right now, you’re not alone. The Redmond giant has acknowledged that its multiple Microsoft 365 offerings have been hit by another outage this morning, preventing users from accessing their Exchange Online mailboxes. Microsoft confirmed on Twitter that it is actively investigating the problem, and some users should now be able to use the services. The list of Microsoft 365 apps and services impacted by this issue includes Microsoft Teams, Exchange Online, Outlook on the web, the Graph API, Universal Print as well as SharePoint Online. Microsoft 365 outage impacts users in Europe & North America The Microsoft 365 outage seems to be much more prominent in Europe & North America, but customers in Asia and the Middle East might also be affected. Microsoft recommends IT admins to keep an eye on the Microsoft 365 Admin Center for more information. The issue is being tracked under MO394389 and EX394347. “We've determined multiple Microsoft 365 services are experiencing delays, connection and search issues and are investigating the cause of this,” the company said on the Microsoft 365 Twitter account. “We've identified that our traffic management infrastructure is not working as expected. We've successfully rerouted traffic, and we're seeing an improvement in service availability. Updates are available in the admin center under EX394347 and MO394389. ” It is important to note that this isn’t certainly the first time that Microsoft 365 offerings are having issues. Back in November, many Office 365 customers were unable to access... --- ### Microsoft's Out-Of-Band Patch Fixes Microsoft 365 and Azure AD Sign-In Issues on ARM Devices - Published: 2022-06-21 - Modified: 2022-06-21 - URL: https://petri.com/microsofts-fixes-microsoft-365-azure-ad-sign-in-arm-devices/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Windows 10, Windows 11 - Tags: Azure Active Directory, Microsoft 365, News, Patch Tuesday, Windows 10, Windows 11, Windows Server Microsoft has released out-of-band patches for Windows 11 and various versions of Windows 10. The latest updates address the sign-in issues with Azure Active Directory (Azure AD) and Microsoft 365 services on Arm-based devices. In release notes for the out-of-band fixes, Microsoft admits the June 2022 Patch Tuesday updates broke VPN connections. The bug also prevented users from logging into services such as Microsoft Teams, OneDrive as well as Outlook. Microsoft acknowledged the Azure AD sign-in problems last week and suggested users to switch to the web versions of the affected Microsoft 365 apps instead. Microsoft has released fixes to address this issue on all Arm-based PCs running Windows 11 21H2, Windows 10 21H2, Windows 10 21H1, and Windows 10 20H2. “This issue only affects Windows devices that use Arm processors. No other platforms will receive this out-of-band (OOB) update. This OOB update is cumulative. If you are using updates released before June 14, 2022, we recommend that you install this OOB update instead of the June 14, 2022 security update,” the company explained. Microsoft notes that the new out-of-band patches should be available to download as an optional update (KB5016138) on Windows 11 PCs. If you’re running Windows 10 version 21H2, 21H1, or 20H2, the update will appear as “KB5016139” in Windows Update. Meanwhile, IT admins can manually download the package from Windows Server Update Services (WSUS) and Microsoft Update Catalog. Latest Patch Tuesday updates break Wi-Fi hotspot & Windows Server backups The June 2022 Patch Tuesday updates addressed... --- ### QNAP Warns NAS Users About New DeadBolt Ransomware Campaign - Published: 2022-06-20 - Modified: 2022-06-20 - URL: https://petri.com/qnap-warns-nas-users-deadbolt-ransomware-campaign/ - Categories: Security - Tags: NAS Devices, News, QNAP, Ransomware, Security QNAP has published an advisory about a new stream of DeadBolt ransomware attacks targetting its network-attached storage (NAS) devices worldwide. The company advises customers to immediately update their devices to the latest versions of QTS or QuTS hero operating systems. The latest DeadBolt ransomware campaign follows the previous attacks reported back in January, March, and May this year. The recent wave of DeadBolt attacks uses AES128 to encrypt files on NAS devices running the QNAP QTS Linux kernel version 4. x. Once encrypted, the attackers demand the individual victim to pay a 0. 03 bitcoin for a decryption key. Meanwhile, the DeadBolt ransomware gang offers multiple payment options for vendors. They must pay a ransom of five bitcoins to get details about the exploit used to target the NAS device. Additionally, vendors can access the master decryption key for 50 bitcoins. “If your NAS has already been compromised, take the screenshot of the ransom note to keep the bitcoin address, then, upgrade to the latest firmware version and the built-in Malware Remover application will automatically quarantine the ransom note which hijacks the login page,” QNAP explained in its security advisory. According to QNAP, some customers might be unable to find the ransom note in order to input the decryption key shared by the threat actors. The company encourages users to contact its support team for technical assistance. QNAP asks users to update their NAS devices The company didn’t mention which ransomware groups were involved in the ongoing attacks. However, a Trend Micro... --- ### Microsoft is Investigating Sign-In Issues Affecting Microsoft 365 and Azure AD on ARM Devices - Published: 2022-06-20 - Modified: 2022-06-20 - URL: https://petri.com/microsoft-sign-in-issues-microsoft-365-azure-ad-arm-devices/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Windows 10, Windows 11 - Tags: Azure Active Directory, Azure AD, Microsoft 365, News, Windows 10, Windows 11 Microsoft has confirmed a new issue that causes Microsoft 365 and Azure Active Directory (AAD) sign-in issues on ARM-based Windows devices. The problem happens after installing the June Patch Tuesday updates, and it affects Windows 11 21H2, Windows 10 21H2, Windows 10 21H1, and Windows 10 20H2. “After installing KB5014697 on a Windows Arm-based devices, you might be unable to sign in using Azure Active Directory (AAD). Apps and services which use Azure Active Directory to sign in, might also be affected. Some scenarios which might be affected are VPN connections, Microsoft Teams, OneDrive, and Outlook,” Microsoft explained on the Windows Health Dashboard. Microsoft advises users to switch to Microsoft 365 web apps At this time, Microsoft is still investigating the problem, and it plans to release a fix in an upcoming release. In the meantime, the company has recommended customers to use the web version of Microsoft 365 apps (like OneDrive, Outlook. com, and Microsoft Teams) instead of the desktop apps. Alternatively, users can uninstall the problematic Windows update to get rid of the login issues. The June Patch Tuesday updates are proving to be troublesome for Windows users and IT admins. Last week, Microsoft confirmed that the latest cumulative updates break the Wi-Fi hotspot feature on some Windows PCs. The bug affects Windows 11, Windows 10, Windows 8. 1, Windows 7, and Windows Server. Furthermore, the Redmond giant is also investigating a bug that causes backup issues on Windows Server machines. The company says that affected applications might fail to... --- ### How to Fix the "An Active Directory Domain Controller for the Domain Could Not Be Contacted" Error - Published: 2022-06-20 - Modified: 2024-12-11 - URL: https://petri.com/an-active-directory-domain-controller-could-not-be-contacted/ - Categories: Active Directory (AD) - Tags: Active Directory - Article Type: How To When trying to join a computer to an Active Directory domain, you may sometimes encounter the "an Active Directory Domain Controller could not be contacted" error. In this post, I'll explain the different DNS and IP settings you can check to fix this error and finally join your computer to a domain. How can you encounter the 'Active Directory Domain Controller for the Domain Could Not Be Contacted' error? A common step when setting up a new or updated computer in your Active Directory domain is to join the computer to the domain as a computer object. This allows you to deploy a large catalog of Group Policy objects to the computer that typically processes when the computer starts up, and then according to a schedule. There are of course many other advantages to joining a computer to a domain, but that is outside the scope of this post. Anyway, I've probably joined hundreds of computers to Active Directory domains over my 20+ years of professional IT experience. And, I would have to estimate that about 30-50% of the time, I encounter an error when I attempt to enter the DNS domain name of the Active Directory domain I want to join. Yes, being confronted with the "an Active Directory Domain Controller could not be contacted" error can be confusing and frustrating. However, there are many troubleshooting steps you can take to accomplish your goal as an IT Pro and get the device on your domain. The most common... --- ### AWS Mainframe Modernization is Now Generally Available > AWS Mainframe Modernization is now generally available, and this new service enables you to migrate and modernize your on-premises mainframe workloads to a managed runtime environment on the Amazon Web Services cloud. - Published: 2022-06-20 - Modified: 2022-06-20 - URL: https://petri.com/aws-mainframe-modernization-general-availability/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS Mainframe Modernization - Article Type: News First introduced back in November 2021 at AWS re:Invent, Amazon announced the general availability of AWS Mainframe Modernization this past June 8th 2022. The new service enables you to migrate and modernize your on-premises mainframe workloads to a managed runtime environment on the Amazon Web Services cloud. It seems incredible to believe, but the venerable mainframe is still with us even in 2022. Moving away from legacy mainframe applications can be very difficult as these applications often provide business-critical services. These applications can be quite complex, and finding skilled developers can be challenging. "Mainframe Modernization is a unique platform that allows you to migrate and modernize your on-premises mainframe workloads to a managed and highly available runtime environment on AWS," Amazon explained in the announcement. The AWS Mainframe Modernization service supports two main migration patterns for mainframe applications: replatforming and refactoring. AWS Mainframe replatforming AWS Mainframe replatforming enables you to preserve the application assets and programming language with minimal changes while moving your app to a modern infrastructure. There are four steps involved in the replatforming process: From the AWS Mainframe Modernization service console, the Micro Focus Enterprise Analyzer help companies to get started by analyzing the complexity of their existing applications. In the Develop step, companies can use Amazon's Micro Focus Enterprise Developer to create a modern development environment and test changes with the Enterprise Analyzer. In the Deploy stage, Amazon's Micro Focus Enterprise Server provides scalable deployment environment for rehosting mainframe applications on Linux, Windows, Unix on virtual, Docker containers,... --- ### Microsoft Teams Now Lets Users Send Notes and Files to Themselves - Published: 2022-06-17 - Modified: 2022-06-17 - URL: https://petri.com/microsoft-teams-chat-with-self-feature/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that enables users to create a special chat with themselves. The chat with self feature was first announced at Ignite 2021, and it has finally started rolling out to Teams desktop and mobile users. Microsoft highlights that the new chat with self feature is designed to help users stay organized, and this capability is also available on Slack. Just like regular chats, users will be able to send themselves messages, notes, files, images, and videos. The feature could be useful for creating drafts to capture quick ideas/reminders and prevent users from accidentally sending incomplete messages. “Previously, the user wasn't able to directly send themselves messages. There were workarounds, however, where a user could start a meeting with themselves and utilize the meeting chat as a self chat. Another workaround was if everyone in a group chat left, and the user was there alone,” the company explained in a message on the Microsoft 365 admin center. via Twitter/ Barry Dorrans How to use the chat with self feature in Microsoft Teams To try out the chat with self feature, users will need to install the latest Microsoft Teams update on their device. Click the New chat icon in Teams at the top of the chat list. Finally, type the name in the To field to start a conversation with yourself. It is important to note that users will not be able to add more people to this special chat to turn it into a... --- ### Microsoft to Fix Windows Bug Breaking Wi-Fi hotspots After Installing Latest Patch Tuesday Update - Published: 2022-06-17 - Modified: 2022-06-17 - URL: https://petri.com/microsoft-fix-windows-bug-wi-fi-hotspot/ - Categories: Windows 10, Windows 11, Windows Server - Tags: News, Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has acknowledged a new known issue causing the Wi-Fi hotspot feature to not work as expected on Windows devices. The software giant explained on the Windows Health dashboard that some PCs may be unable to use the Wi-Fi hotspot functionality after installing the June Patch Tuesday updates. The Wi-Fi hotspot is a built-in feature in Windows that enable users to share their internet connection with other computers or mobile devices. This is useful for people who only have wired connectivity in a workplace and want to connect their phone or tablet to the internet. “After installing KB5014697, Windows devices might be unable use the Wi-Fi hotspot feature. When attempting to use the hotspot feature, the host device might lose the connection to the internet after a client device connects,” Microsoft explained. According to Microsoft, the Wi-Fi hotspot bug affects all supported client and server versions of Windows. The list includes Windows 11, Windows 10, Windows 7, Windows Server 2022, and Windows Server 20H2. Microsoft recommends users to disable the Wi-Fi hotspot feature Unfortunately, Microsoft is still investigating the Wi-Fi hotspot issues, and there is no workaround available at the moment. The only way is to completely disable the Wi-Fi hotspot option or roll back the buggy Windows update. “To mitigate the issue and restore internet access on the host device, you can disable the Wi-Fi hotspot feature,” the company said on the Windows Health Dashboard. In addition to the Wi-Fi hotspot bug, Microsoft has confirmed another issue that may... --- ### Microsoft and Apple Team Up to Boost Exchange Online Security on iOS & macOS - Published: 2022-06-17 - Modified: 2022-06-17 - URL: https://petri.com/microsoft-apple-team-up-boost-exchange-online-security-ios-macos/ - Categories: Exchange Online - Tags: Exchange Online, Exchange Server, iOS, macOS, News - Article Type: News Microsoft has teamed up with Apple to improve the security of Exchange Online accounts on iOS and macOS devices. In upcoming iOS and macOS updates, users who connected a Microsoft Exchange mailbox in Apple's Mail app with Basic authentication will be automatically migrated to the more secure OAuth 2. 0-based Modern authentication. Apple introduced support for Modern authentication to its Mail app on iOS and macOS devices a couple of years ago. However, this change was only applicable to new Exchange Online accounts and millions of old accounts still use the less secure Basic authentication mechanism. Considering that Basic authentication is prone to password spray attacks, Microsoft is getting ready to drop support for Basic authentication for most protocols in Exchange Online in October. This change aligns with the commitment of Apple, Microsoft, and Google to implement passwordless support across device platforms. Apple to add ROPC grant support on iOS Microsoft is now working with Apple to develop a solution that will ensure a seamless transition to Modern authentication for their customers. We'll spare you the technical details, but the upcoming iOS update will bring support for the Resource Owner Password Credential (ROPC) grant. Basically, it should guarantee that an application handles passwords stored on users’ devices in a secure way. “A few days after a device is updated, the Mail app will use the credentials it already has in a new flow to authenticate to the Identity Provider (in this case, Azure Active Directory), receive OAuth access and refresh tokens... --- ### How to Combine Branches with Git Merge - Published: 2022-06-17 - Modified: 2022-07-11 - URL: https://petri.com/git-merge-combine-branches/ - Categories: DevOps - Tags: DevOps, GIT, GitHub - Article Type: How To If you’re using Git for source code management, you may need to merge different development branches for a project into a single branch. This article will guide you on how to combine two development branches with the Git merge command. We'll be showing you how to create a Git project, create different branches, and merge one branch into another. Additionally, you’ll learn what is a fast-word merge and a 3-way merge, and how to merge a branch into a remote repository. What is Git merge? Git is a popular DevOps tool that developers can use for tracking and managing changes to code written by different teams. With the Git merge command, you can take your current development branch (which you’ve forked from the main branch) and merge its code changes back into the main branch. Git merge is a command you’ll use most often when you are working in a team. There might be times when you and another developer might collaborate on one feature on two separate branches. However, when the time will come, you'll need to combine your work into one branch, test those changes, and then merge your collaborative development into the main development branch. As the main development branch is being updated, the separate feature branch you and other developers are working on will not update with your teams' changes. Therefore, as a best practice, when the time comes to raise a pull request, you should always start by updating your local version of the... --- ### Microsoft Confirms Windows Server Backup Issues in This Month's Patch Tuesday Updates - Published: 2022-06-16 - Modified: 2022-06-16 - URL: https://petri.com/windows-server-backup-issues-patch-tuesday-updates/ - Categories: Windows Server - Tags: News, Patch Tuesday, Windows, Windows 10, Windows Server - Article Type: News Earlier this week, Microsoft released the June 2022 Patch Tuesday updates for all supported versions of Windows. These patches brought security updates to fix several vulnerabilities, but the company has now warned that the updates may cause backup issues on Windows Server (via Bleeping Computer). The Windows Server backup issues are caused by the security enforcement added to fix a privilege elevation flaw (CVE-2022-30154) affecting the Microsoft File Server Shadow Copy Agent Service (RVSS). This feature was first introduced in Windows Server 2003, and it lets users create backup copies of computer files or volumes. Once the Patch Tuesday updates are deployed, backup applications may trigger "E_ACCESSDENIED" errors during shadow copy creation operations. As a result, the system will automatically log a "FileShareShadowCopyAgent Event 1013" on the File Server. “After you install the June 14, 2022 or a later Windows update, operations related to shadow copies (creation or deletion) on an Application Server running VSS aware Server Applications that store data on remote SMB 3. 0 or later file shares may fail for SMB shares hosted on a File Server,” the company explained in a support document. Microsoft suggests workaround for Windows Server backup issues The Redmond giant has confirmed that the backup bug impacts Windows Server 2022, 2019, 2016, 2012 R2, and 2012. Moreover, it could also affect PCs running Windows 10 version 20H2. Notably, RVSS is an optional feature, and Windows Server users who enable it manually may notice backup failures. In its advisory, Microsoft recommends IT admins to... --- ### Microsoft Defender for Individuals is Now Available on Desktop and Mobile - Published: 2022-06-16 - Modified: 2022-06-16 - URL: https://petri.com/microsoft-defender-for-individuals-available-desktop-mobile/ - Categories: Security - Tags: Android, iOS, macOS, Microsoft Defender, Microsoft Defender for Individuals, News, Windows - Article Type: News Microsoft has launched a new Microsoft Defender for individuals app today. The new security offering for consumers is now available for Microsoft 365 subscribers in select markets across Windows, macOS, Android, and iOS. Microsoft Defender for individuals first debuted in preview in the US back in February this year. It provides a centralized dashboard, which can be used by the parents who want to manage and view security protections for all family members. The dashboard also lets users view their existing third-party antivirus software (such as MacAfee and Norton). “Microsoft Defender is simplified online security that meets you and your family where you are by bringing multiple protections together into a single dashboard. It provides online protection across the devices you and your family use. It offers tips and recommendations to strengthen your protection further,” explained Vasu Jakkal, CVP for security, compliance, identity, and privacy at Microsoft. Microsoft Defender for individuals brings cross-platform malware protection, real-time security alerts & notifications, remediation techniques, and security tips. However, the security tips feature is only available on Windows and macOS devices. Microsoft says that these capabilities can help consumers to ensure the security of their sensitive information and devices. Microsoft Defender for individuals to get identity theft protection and more Microsoft is committed to adding more security features to the app in the coming months, including secure online connection and identity theft protection. “There is so much more to come, and we look forward to sharing more on this journey to make the... --- ### Microsoft Reimagines the Sales Experience with Viva Sales - Published: 2022-06-16 - Modified: 2022-06-16 - URL: https://petri.com/microsoft-reimagines-the-sales-experience-with-viva-sales/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, Microsoft Viva, News, Viva Sales - Article Type: News Microsoft announced this morning Viva Sales, a new Viva application designed to meet the specific needs of sellers. Viva Sales integrates with Microsoft Teams and other Microsoft 365 apps to automate the data entry process into any CRM system for the sales team. Viva Sales aims to address some major challenges commonly faced by sales companies and individual sellers. These include the manual data entry process, a lack of AI-based recommendations, and the absence of customer engagement insights in productivity apps. With Viva Sales, the company also aims to reduce the time spent on administrative and other non-sales tasks. “The future of selling isn’t a new system. It’s bringing the information sellers need at the right time, with the right context, into the tools they know, so their work experience can be streamlined. Empowering sellers to spend more time with their customers has been our goal – and we’ve done that by reimagining the selling experience with Viva Sales,” said Judson Althoff, executive vice president & chief commercial officer at Microsoft. Viva Sales offers tools to automate data entry and more First up, Viva Sales eliminates the need to enter data into the CRM systems manually. Sellers can tag customers in Microsoft 365 apps, and Viva Sales automatically saves it as a customer record along with other relevant information. The customer engagement data can then be shared with colleagues in Microsoft Teams and Office apps. Additionally, the Viva Sales app provides valuable insights that enable sales teams to better understand... --- ### AWS DataSync Now Integrates With Google Cloud Storage and Microsoft Azure > AWS DataSync now supports moving data between AWS, Google Cloud, and Microsoft Azure. This release expands the number of supported storage locations from 10 to 12, which is significant as it now includes two of the major cloud providers. - Published: 2022-06-15 - Modified: 2022-06-15 - URL: https://petri.com/aws-datasync-google-cloud-microsoft-azure-integration/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS DataSync, Azure, Google Cloud - Article Type: News Amazon announced a couple of weeks ago that AWS DataSync now supports moving data between AWS, Google Cloud, and Microsoft Azure. This release expands the number of supported storage locations from 10 to 12, which is significant as it now includes two of the major cloud providers. For those unfamiliar, AWS DataSync is Amazon's enterprise-grade solution for moving data to and from AWS cloud storage. It can copy and synchronize data across multiple storage locations and then move the data both into and out of the AWS Cloud. AWS DataSync can be used manually for running one-time data transfers, or it can be set up to run periodic automated data transfers. "We added to DataSync the capability to migrate data between AWS Storage services and either Google Cloud Storage or Microsoft Azure Files. In this way, you can simplify your data processing or storage consolidation tasks. This also helps if you need to import, share, and exchange data with customers, vendors, or partners who use Google Cloud Storage or Microsoft Azure Files," Amazon explained. Configuration and pricing details To transfer data from on-premises systems, the edge, or other cloud storage systems, you first need to deploy the DataSync agent, which can run in a VM. After you deploy the agent, associate it to your AWS account using the AWS Management Console. The agent will be used to access your NFS server, SMB file share, Hadoop cluster, or cloud object storage to read data from it or write data to it... . --- ### Microsoft Releases First ARM64 Preview of Visual Studio for Windows 11 - Published: 2022-06-15 - Modified: 2022-06-15 - URL: https://petri.com/microsoft-visual-studio-2022-native-arm64-windows-11/ - Categories: Developer, Windows 11 - Tags: Arm64, News, Visual Studio, Visual Studio 2022, Windows, Windows 11 - Article Type: News Microsoft has finally launched the first native ARM64 version of Visual Studio for Windows 11 devices. The Visual Studio 2022 17. 3 Preview 2 release prioritizes the most popular workloads for developers who want to test their apps on Arm64 devices. Microsoft first unveiled its plans to launch an Arm native version of Visual Studio 2022 in preview at Build 2022. The company has also announced the upcoming release of a complete native development toolchain for Windows on Arm devices. In addition to Visual Studio 2022 & VS Code, the toolchain will include Windows Terminal, Visual C++, Classic . NET Framework, Modern . NET 6 and Java, and WSL and WSA for running Android and Linux applications “Our key goal with this preview is to introduce and stabilize the most popular workloads used by developers who are building apps that run on Arm64, and to gather feedback from the community to help us prioritize additional experiences and workloads as we work toward General Availability (GA) later this year,” explained Mark Downie, Senior Program Manager for Visual Studio at Microsoft. Visual Studio 2022 17. 3 Preview 2 supports Windows Forms, WPF, & . NET web apps Currently, the preview release allows developers to build desktop applications with the C++ programming language and MSBuild-based projects. It also brings performance enhancements with a new MSVC toolset that enables compilers to run natively on Arm devices. As for managed developers, Microsoft noted that . NET 6 support for Arm64 devices has been available for quite some time. Now, the latest... --- ### Microsoft Acquires Foreign Cyber Threat Analysis Company Miburo - Published: 2022-06-15 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-acquires-miburo/ - Categories: Security - Tags: acquisition, Microsoft, News, Security - Article Type: News Microsoft announced yesterday that it has entered into a definitive agreement to acquire Miburo, a New York-based cyber threat analysis company. The Redmond giant plans to leverage Miburo’s expertise in global threat intelligence to help customers counter foreign cyber attacks and state-backed information operations. Miburo was founded in 2012 by cybersecurity expert Clint Watts, who is a former U. S Army officer & FBI agent as well as a research fellow at the Foreign Policy Research Institute. He has published various articles on national security issues, and you can find the full list on this website. Miburo's mission is to protect democracies and counter disinformation on the Internet. Notable clients of Miburo include businesses and government agencies. Tom Burt, Corporate Vice President of Customer Security and Trust at Microsoft, explained that Miburo’s deep expertise in foreign information operations would help to prevent threats from international state-sponsored entities. Its researchers can identify "extremist influence campaigns" in 16 different languages. “Working in close collaboration with the Microsoft Threat Intelligence Center, our Threat Context Analysis team, our data scientists and others, the new analysts from Miburo will enable Microsoft to expand its threat detection and analysis capabilities to address new cyber-attacks and shed light on the ways in which foreign actors use information operations in conjunction with other cyber-attacks to achieve their objectives,” said Tom Burt. Miburo recently analyzed disinformation campaigns in Russia and Iran On its website, Miburo claims that one of its core missions is “to prepare future generations to defend both... --- ### Why You Should Restrict Access to Office 365 Using Microsoft Conditional Access Policies > In this guide, we’ll explain how organizations can set up Conditional Access policies to restrict how their users can access Office 365 and other Microsoft services. - Published: 2022-06-15 - Modified: 2023-01-04 - URL: https://petri.com/microsoft-365-conditional-access/ - Categories: Compliance, Microsoft 365, Microsoft Entra ID (Azure AD), Security - Tags: conditional access, Microsoft 365, Security - Article Type: Overview Organizations adopting Microsoft’s cloud services need to keep their employees safe, especially when employees need to access these cloud services while being outside of the organization’s network. In this guide, we’ll explain how organizations can set up Conditional Access policies to restrict how their users can access Office 365 and other Microsoft services. What are Microsoft’s Conditional Access policies? As more and more employees now want to be able to work remotely and on any device chosen, security has become a crucial topic for all organizations. Over the past few years, it has become critical for an organization to figure out how to secure employees working both in the office and remotely. The security challenges of migrating to Microsoft’s cloud services Many organizations migrate to cloud services such as Microsoft 365 to provide better management and support. Cloud services bring many benefits to an organization, though they often add complexity from a security perspective. Microsoft 365 does provide excellent tools to assist organizations in migrating their data to the cloud,  all while securing access to the company’s information. The key to using these tools is to know where they are, have a valid license, and learn how to use them for monitoring purposes. In a Microsoft 365 environment, Azure Active Directory (Azure AD) is the core authentication component that provides core access control to the tenant and all available services. Microsoft 365 does not utilize anonymous access, which minimizes the process for accessing these services no matter the device.  ... --- ### Microsoft's June 2022 Patch Tuesday Updates Fix Several Remote Code Execution Vulnerabilities - Published: 2022-06-15 - Modified: 2022-06-15 - URL: https://petri.com/june-2022-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has released yesterday the June 2022 Patch Tuesday updates for Windows 11 and Windows 10, which include 60 security fixes for remote code execution vulnerabilities, information disclosures, and more. Windows 11 users are also getting a new feature this month with Windows Spotlight wallpapers coming to the desktop.   Serious bugs patched in June 2022 Here are the most important security fixes that Microsoft released as part of the June 2022 Patch Tuesday updates, which include patches for three critical vulnerabilities:  CVE-2022-30163: This Windows Hyper-V Remote Code Execution Vulnerability could allow attackers to run a specially crafted application on a Hyper-V guest that could cause the Hyper-V host operating system to execute arbitrary code. CVE-2022-30139: This RCE vulnerability in the Windows Lightweight Directory Access Protocol (LDAP) is only exploitable if the MaxReceiveBuffer LDAP policy is set to a value higher than the default value.  CVE-2022-30136: This RCE vulnerability in the Windows Network File system could be exploited over the network by attackers making an unauthenticated, specially crafted call to a Network File System (NFS) service. However, this vulnerability is not exploitable in NFSV2. 0 or NFSV3. 0.   Quality and experience updates The KB5014697 patch (build 22000. 739) for Windows 11 gives users the option to personalize their background with Windows Spotlight wallpapers. Windows Spotlight already offers a rotating selection of wallpapers on the Windows 10 and Windows 11 lock screens, but it can now be enabled on the Windows 11 desktop as well.   To enable Windows Spotlight wallpapers, users need to open the Settings app... --- ### Cloud Conversations – Elaiza Benitez on Power Platform and the Microsoft MVP Program > Elaiza Benitez is an independent Power Platform consultant and a Microsoft MVP in Business Applications Solutions. In this week’s Cloud Conversations episode, she joins Azure and Peter to talk about her career in Power Platform, the Microsoft MVP program, and much more. - Published: 2022-06-14 - Modified: 2022-06-14 - URL: https://petri.com/cloud-conversations-episode-53-elaiza-benitez/ - Categories: Video - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Elaiza Benitez on Power Platform and the Microsoft MVP program Elaiza Benitez is an independent Power Platform consultant and a Microsoft MVP in Business Applications Solutions. In this week’s episode, she joins Azure and Peter to talk about her career in Power Platform and the Microsoft MVP program. We also talk about: Elaiza's What the flow YouTube seriesVegan recipesLife in Wellington, New ZealandExplaining tall poppy syndromeAnd so much more More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and... --- ### New Report Shows 47% of Enterprise Windows 10 PCs Could Be Impacted by Internet Explorer's Retirement on June 15 - Published: 2022-06-14 - Modified: 2022-06-15 - URL: https://petri.com/report-shows-47-enterprise-windows-10-pcs-impacted-internet-explorer-retirement/ - Categories: Windows 10 - Tags: enterprise, Internet Explorer, Internet Explorer 11, Microsoft Edge, News, Windows, Windows 10 - Article Type: News Microsoft is finally ending support for its Internet Explorer 11 (IE11) web browser on June 15. This change will impact certain versions of Windows 10 that follow the semiannual channel release update cycle. “The Internet Explorer (IE) 11 desktop application will end support for Windows 10 semi-annual channel starting June 15, 2022,” the company explained on the IE11 lifecycle page. “For supported operating systems, Internet Explorer 11 will continue receiving security updates and technical support for the lifecycle of the Windows version on which it is installed. ” According to Microsoft, the end of support will only apply to users of Windows 10 version 20H2 and later and Windows 10 IoT version 20H2 and later. However, Windows 10 client LTSC, Windows 10 IoT LTSC, Windows Server LTSC, and Windows Server 2022 won’t be impacted. Meanwhile, Internet Explorer 11 desktop app support on Windows 7 (with paid Extended Security Updates) and Windows 8. 1 will end on January 10, 2023. The Redmond giant plans to automatically redirect Internet Explorer users to Microsoft Edge, which comes with a built-in IE mode. The company will also ensure that all Windows 10 applications that use IE11 as the default web browser will be switched to the new Edge. Microsoft will eventually disable Internet Explorer 11 via Windows Update in the coming months. However, the browser will not be completely removed from the OS because it’s still required to make IE mode work on Windows 10 PCs. Microsoft is committed to supporting IE mode until 2029, and... --- ### Microsoft Teams Improves Meetings and Calls with New AI-Powered Echo Cancellation Capabilities - Published: 2022-06-13 - Modified: 2022-06-13 - URL: https://petri.com/microsoft-teams-improves-meetings-calls-echo-cancellation-capabilities/ - Categories: Microsoft 365, Microsoft Teams - Tags: Echo Cancellation, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced a new set of AI-powered capabilities to improve the calling and meeting experience in Microsoft Teams. Echo cancellation is the first much-anticipated feature that is currently rolling out to the desktop version of Teams, and it eliminates unwanted echo effects during video calls. “During calls and meetings, when a participant has their microphone too close to their speaker, it’s common for sound to loop between input and output devices, causing an unwanted echo effect. Now, Microsoft Teams uses AI to recognize the difference between sound from a speaker and the user’s voice, eliminating the echo without suppressing speech or inhibiting the ability of multiple parties to speak at the same time,” said Nicole Herskowitz, VP of Microsoft Teams. https://www. youtube. com/watch? v=vii4bBqkINw Full-duplex audio transmission mode In addition to echo cancellation, Microsoft Teams is getting support for a new full-duplex audio transmission mode. The new capability enables two-way audio communication, allowing meeting attendees to simultaneously speak and listen to other participants. Sound reverberation improvements Microsoft has also announced that Teams uses AI to minimize sound reverberation in large meeting rooms. Now, the app can automatically convert captured audio signals to sound, making it feel like the participant is speaking directly into a close-range microphone. Microsoft Teams enables background noise suppression by default Last but not least, the machine-learning-based background noise suppression is now enabled by default in Microsoft Teams. This capability is available for all customers on Windows, Mac, iOS, and Microsoft Teams Rooms devices. The company plans to bring... --- ### GitHub to Discontinue Atom Text Editor on December 15 - Published: 2022-06-13 - Modified: 2022-06-13 - URL: https://petri.com/github-discontinue-atom-text-editor-december-15/ - Categories: Developer - Tags: GitHub, Microsoft, News, open-source - Article Type: News Microsoft-owned GitHub is getting ready to retire Atom, an open-source text editor that debuted in 2011. The company detailed in a blog post that it’s planning to archive the Atom repository and all other relevant repositories on December 15, 2022, in favor of the new Visual Studio Code. For those unfamiliar, Atom is a cross-platform code editor that laid the foundation for the Electron framework. Electron influenced the development of some popular commercial applications such as Slack, Discord, Microsoft Teams, and Visual Studio Code (VS Code). GitHub notes that there has been a significant decline in Atom's community involvement, and the software now appears less appealing as compared to other cloud-based services. As a result, the open-source project has only received maintenance and security updates during the past few months. GitHub to shift focus on Visual Studio Code It certainly isn’t surprising that GitHub is sunsetting Atom, given that VS Code has become a popular tool for developers. The Stack Overflow developer survey conducted last year indicates that Atom is used by 71 percent of web developers. However, the usage of Atom is around 13 percent. Going forward, the company plans to focus on improving its cloud-based development solution GitHub Codespaces, which integrates Visual Studio Code. “When we formally introduced Atom in 2014, we set out to give developers a text editor that was deeply customizable but also easy to use—one that made it possible for more people to build software. While that goal of growing the software creator community... --- ### Microsoft Entra Workload Identities Service Brings New Features for Securing Apps and Services - Published: 2022-06-13 - Modified: 2022-06-13 - URL: https://petri.com/microsoft-entra-workload-identities-features-securing-apps-services/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory Identity Protection, Azure AD, conditional access, News, Privileged Access Management - Article Type: News Microsoft has released some important updates for its Microsoft Entra workload identities service. The new capabilities are designed to protect workload identities that are vulnerable to security threats such as consent-phishing attacks. Workload identities are non-human identity aspects (such as virtual machines and containers) that allow an application or a service principal to access a resource. Microsoft has recently rebranded its existing identity and access management solutions as Microsoft Entra. This product family also comes with a new workload identities service that is currently available in public preview. “They can have access to a company’s most sensitive resources, and can be an attack surface interesting to bad actors - a channel to cause damage or increase susceptibility. Tactics such as consent-phishing can introduce bad apps into organizations, and breached credentials can allow attackers to abuse existing applications and services,” said Ilana Smith ,  Group Product Manager  for Azure Active Directory.   First up, Microsoft is introducing Conditional Access support for workload identities. Up until now, it was only possible to apply conditional access policies to users who wanted to access any apps and services. The feature will enable IT admins to configure policies that specify the conditions that allow a workload to access any resource. The Redmond giant has also started rolling out new Identity Protection capabilities that allow organizations to detect and block risky workload identities such as leaked credentials and suspicious sign-ins. With this release, IT Pros can now protect applications, managed identities, and service principles in their environments... . --- ### Using GPUpdate to Manage Group Policy - Published: 2022-06-13 - Modified: 2023-04-28 - URL: https://petri.com/gpupdate-force/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: group policy, Group Policy Management Console, group policy update, Windows, Windows 10, Windows 11 - Article Type: How To With GPUpdate, administrators can update Group Policy settings from a central location and set configuration settings for computers in an Active Directory domain. In this guide, I'll show you how to use GPUpdate to refresh local and Active Directory–based Group Policy settings. I can't tell you (accurately) how many times I have typed 'gpupdate /force' at an administrative Command Prompt. It must be between 750 and 1000 times. No, really! But, why is this command so popular, you may be wondering? And why is it absolutely essential for IT pros to understand what it is and how it can save you a LOT of time, not waiting around for regular group policy update intervals? Read on to get all your questions answered. How to reapply all Group Policy settings using GPUpdate /force To force Windows to reapply all user and computer Group Policy settings, regardless of whether they have changed, use GPUpdate as shown here: gpupdate /force For more details on how to use GPUpdate, keep reading! What is GPUpdate? 'GPUpdate' is short for Group Policy update. It is a command-line tool used to update the group policy on a local or remote computer in an Active Directory domain environment. After you make changes in the Group Policy Management Console, GPUpdate a nice and quick tool to run on a client or server machine to verify if the settings are being applied correctly in the domain and on the computer itself. The intricacies of Group Policy! How to force... --- ### Outlook for iOS and Android To Get An Algorithmic Newsfeed Experience This Month - Published: 2022-06-10 - Modified: 2022-06-10 - URL: https://petri.com/outlook-for-ios-android-newsfeed-experience/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Outlook, Outlook for Android, Outlook for iOS - Article Type: News Microsoft is set to introduce a new algorithmic newsfeed on the Search page of its Outlook mobile apps. The new search experience will allow enterprise customers to stay updated with upcoming meetings, documents, news posts from Yammer and SharePoint, as well as other useful content (via Thurrott). According to Microsoft, the new feature will also notify users about task suggestions from their coworkers. Users will also be able to catch up on the recordings of important meetings they might have missed. This newsfeed will provide surface content that's personalized for every user, building on what the Search tab on Outlook Mobile already provides. “The new feed allows new and existing content to be intermingled and ranked by what is currently the most important insight for the user. The ranking is personal and adopts to the usage patterns of each user by customizing the content types that the user is most interested in,” the company explained on the Microsoft 365 Admin Center. Once the feature rolls out, the Outlook mobile app will allow users to switch between the existing sections experience and the new newsfeed. To do this, users will need to click on the toggle button available in the top right-hand corner of the Search page. However, Microsoft plans to remove the section toggle from the app at some point in the future. “The section toggle is a temporary feature that will be removed when all the content available in the sections today can be found elsewhere in the OM... --- ### Researchers Discover New Symbiote Linux Malware Targeting Financial Institutions - Published: 2022-06-10 - Modified: 2022-06-10 - URL: https://petri.com/symbiote-linux-malware-targets-financial-institutions/ - Categories: Security - Tags: linux, Malware, News, Symbiote - Article Type: News Security researchers have discovered a new Linux malware dubbed Symbiote that uses sophisticated techniques to hide its presence on compromised systems. The malware appears to be targeting financial institutions in Latin America, including Brazil. Specifically, cyber security researchers from Intezer and The BlackBerry Threat Research & Intelligence Team first detected Symbiote in November 2021. The team explained that the malware is different from other Linux backdoors (that typically infect running processes) due to its "parasitic nature. " The researchers say that the malware acts as a shared object (SO) library that is loaded across all processes running on the target machine with the help of LD_PRELOAD. Symbiote gives threat actors rootkit functionality required to harvest user credentials & gain remote access to the system. As shown in the screenshot below, this malware has various capabilities, including Berkeley Packet Filter (BPF). This functionality enables the attackers to hide malicious network traffic on the compromised device. “When an administrator starts any packet capture tool on the infected machine, BPF bytecode is injected into the kernel that defines which packets should be captured,” the researchers explained. “In this process, Symbiote adds its bytecode first so it can filter out network traffic that it doesn’t want the packet-capturing software to see. ” Symbiote is used as a credential theft tool Additionally, Symbiote uses a stealth technique to load before any other shared objects. It enables the malware to conceal its own presence, other related files, and network entries on the system by hooking functions, such as... --- ### Microsoft Defender for Endpoint Gets New Feature to Block Compromised Unmanaged Devices - Published: 2022-06-10 - Modified: 2022-06-10 - URL: https://petri.com/microsoft-defender-for-endpoint-block-compromised-unmanaged-devices/ - Categories: Endpoint Management - Tags: Microsoft Defender for Endpoint, News, Windows, Windows Server - Article Type: News Microsoft Defender for Endpoint has released a new Contain feature that lets organizations isolate compromised unmanaged Windows devices from the network. The new capability will help IT admins to prevent attackers from carrying out malicious activities like lateral movement or data exfiltration. Once a device is contained, Microsoft Defender for Endpoint will block its communications with all other Windows PCs. “This action can help prevent neighboring devices from becoming compromised while the security operations analyst locates, identifies, and remediates the threat on the compromised device,” Microsoft noted. Microsoft indicated that the Contain feature is similar to the existing device isolation option available in Microsoft Defender for Endpoint. However, it works with unmanaged devices that haven't been onboarded yet. How to use the Contain feature to block a compromised unmanaged device Sign in to the Microsoft 365 Defender portal, head to the Device inventory page, and then choose the device to contain. Click the Actions menu available in the device flyout and select the Contain device option from the list. The contain device popup will appear on the screen, type the details in the comment box, and hit the Confirm button. Once clicked, all devices enrolled in the Microsoft Defender for Endpoint can take up to 5 minutes to stop communications to and from the contained device. The blocking will continue even if the compromised device tries to change its IP address. Meanwhile, IT admins will be able to unblock the specific device by selecting it from the Device inventory or heading to... --- ### Reduce Data Theft with Microsoft Purview Insider Risk Management > Insider risk management is a critical component of any security strategy, and this article will explore how Microsoft Purview Insider Risk Management can help organizations to reduce the chances of data theft or leakage. - Published: 2022-06-10 - Modified: 2022-06-13 - URL: https://petri.com/microsoft-purview-insider-risk-management/ - Categories: Compliance, Microsoft 365 - Tags: Compliance, Insider Risk, Microsoft Purview, risk - Article Type: Overview Through Microsoft Purview Insider risk management in Microsoft 365, organizations can identify and mitigate insider risks quickly and effectively. Before you can manage and minimize risks in your organization, though, it is critical to understand the different types of internal risks you may encounter. This article will explore how Microsoft Purview Insider Risk Management can help to prevent data theft and data leak of sensitive information within an organization. The modern workplace allows users to create, manage, and share data via various platforms and services. With employees having access to all of these platforms, identifying and mitigating organization-wide risks while meeting compliance requirements has become increasingly difficult for organizations, especially when they have a limited set of resources and tools to do so. Organizations also cannot directly control certain risks that may arise from user behavior or events within the company. Users can behave in an unethical, inappropriate, or illegal manner within your organization, and employee departures and accidental or malicious data leaks can also be hugely problematic. However, Microsoft Purview Insider Risk Management can really help to mitigate these internal risks.   What is Microsoft Purview Insider Risk Management? Microsoft Purview Insider Risk Management comes with Microsoft 365 E5, and it's also available in the Microsoft 365 E5 Compliance add-on. Microsoft Purview is actually the new name of Azure Purview, the data governance solution that the company made generally available back in September 2021. Microsoft Purview leverages the Microsoft Graph to obtain real-time signals across Office, Windows, and Azure,... --- ### Qbot Malware Operators Exploit Windows MSDT Zero-Day Flaw to Infect PCs - Published: 2022-06-09 - Modified: 2022-06-09 - URL: https://petri.com/qbot-malware-exploit-windows-msdt-zero-day-flaw-infect-pcs/ - Categories: Security - Tags: Malware, News, Security, Vulnerability, Windows - Article Type: News Cybersecurity researchers have found that attackers are exploiting the recently discovered Windows zero-day flaw dubbed “Follina” to infect victims' computers with Qbot malware. Qbot operators have also teamed up with the Black Basta group to spread ransomware. Qbot, also known as QuakBot QakBot, and Pinkslipbot, was first identified in 2008 as a trojan capable of stealing credentials, bank details, and other sensitive data from Windows machines. The trojan has now evolved into sophisticated malware with phishing capabilities such as email hijacking. Researchers from cybersecurity firm Proofpoint claim that a hacker group (TA570) abuses the CVE-2022-30190 flaw by hijacking an email thread and tracking victims to open HTML attachments that download . zip files. These archives contain a disk image (IMG) file with a shortcut file, DLL, and Word document. "The LNK will execute the DLL to start Qbot. The doc will load and execute an HTML file containing PowerShell abusing CVE-2022-30190 used to download and execute Qbot," the researchers wrote on Twitter. According to the malware analyst ExecuteMalware, Qbot operators also use ISO files instead of IMG in phishing campaigns to infect PCs. Moreover, the analyst has also published a list of indicators of compromise to help IT teams mitigate the threats. Black Basta ransomware group teams up with Qbot malware operators It is important to note that Qbot operators are collaborating with a ransomware group called “Black Basta” to compromise enterprise networks. Security researchers have found that Black Basta uses double-extortion methods to demand ransomware. This involves stealing sensitive information,... --- ### IT Admins Can Now Create Nested Dynamic Azure AD Groups - Published: 2022-06-09 - Modified: 2023-07-17 - URL: https://petri.com/it-admins-create-nested-dynamic-azure-ad-groups/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure AD, News - Article Type: News Microsoft has released a new update that allows IT teams to create dynamic Azure Active Directory (recently renamed Microsoft Entra ID) groups based on membership in other groups. This is one of the top requests from customers and intends to address certain limitations associated with the existing nested groups structure. With this release, IT Pros can now use the memberOf attribute to include the individual members of up to 50 groups in each dynamic group. “Unlike existing nested security groups today, memberOf dynamic groups return a flat list of members, so can be used for licensing assignment and application assignment,” the company explained. How to create nested Azure AD dynamic group Microsoft added that IT admins will be able to set up dynamic groups via Azure portal, PowerShell, and Microsoft Graph. However, they will need to have the required permissions (i. e, Global Administrator, Intune Administrator, or User Administrator). It is important to note that the rule editor doesn't support memberOf dynamic groups, and IT Pros will need to type the rule manually. Sign in to the Azure portal and select Azure Active Directory >> Groups, and then choose the New group option. Enter all the required information related to the group. IT admins can set the group type as "Microsoft 365/Security" and the membership type as "Dynamic Device/Dynamic User. " Now, select Add dynamic query and click the Edit option to type the rule in the Rule syntax box. For instance: User rule — user. memberof -any (group. objectId -in ) Device... --- ### Microsoft Endpoint Manager Gets App & Driver Compatibility Reports for Windows Updates - Published: 2022-06-09 - Modified: 2022-06-09 - URL: https://petri.com/microsoft-endpoint-manager-app-driver-compatibility-reports-windows-updates/ - Categories: Endpoint Management - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has rolled out new Windows compatibility reports for Microsoft Endpoint Manager (MEM) in public preview. The new capabilities should enable IT admins to assess the application and driver compatibility of all devices prior to a feature update or Windows 10 to Windows 11 upgrade. First up, the Windows feature update device readiness report details the compatibility risks for each device that could occur during or after the deployment of a feature update/upgrade. Moreover, the Windows feature update compatibility risks report provides a summary of top compatibility risks that need to be addressed across an organization. “As organizations plan to upgrade to Windows 11, we’re committed to ensuring that applications and drivers remain compatible. While Windows has extended our application compatibility promise to Windows 11, we also understand that some organizations want proactive data around compatibility risks to be confident that the specific apps and drivers used in your organization will not be an issue,” Microsoft noted. How to access Windows compatibility reports in Microsoft Endpoint Manager To get started, IT administrators will first need to sign in to the Microsoft Endpoint Manager admin center. Head to Reports >> Windows updates and click the Reports tab. Finally, choose the Windows Feature Update Device Readiness Report (Preview) or Windows Feature Update Compatibility Risks Report (Preview) option. According to Microsoft, the Windows compatibility reports are available for all Endpoint Manager devices running supported versions of the OS. However, users will need an active Windows 10 or 11 Enterprise E3/E5, Education A3/A5, or... --- ### Microsoft Expands Windows Customer Connection Program to IT Admins - Published: 2022-06-08 - Modified: 2022-06-08 - URL: https://petri.com/microsoft-expands-windows-customer-connection-program-it-admins/ - Categories: Windows 10, Windows 11 - Tags: News - Article Type: News Microsoft has announced that it’s expanding its Windows Customer Connection Program (WCCP) to IT admins. This WCCP program is designed to collect feedback and promote collaboration to build better products and services for customers. According to Microsoft, IT Pros will get exclusive access to the private previews of its existing and upcoming software products. Participants will be able to engage directly with Windows engineering teams via focus groups, virtual calls, and Microsoft Teams channels. Microsoft emphasizes that the goal of its Windows Customer Connection Program is to provide an engagement opportunity to IT admins. The participants will be able to earn digital badges, invites to Microsoft's events, “prioritized private preview access” as well as other exclusive benefits based on their engagement in the community. “The WCCP is not a marketing or support program, it is an engineering program. Engineers engage customers to better understand user habits, pains, and recommendations for improvement. These engagements often impact the planning and development cycle long before a solution or feature is released,” Microsoft explained. How to join the Windows Customer Connection Program (WCCP) Microsoft recommends that IT admins should get in touch with the Customer Success Account Manager (CSAM) or primary Microsoft contact to learn more about the WCCP program. The firm noted that prospective participants should have a strong technical background to provide "actionable feedback" about its products. Notably, those who are interested in joining the program will also need to sign a nondisclosure agreement (NDA). This means that the members will need... --- ### Microsoft Teams for Mac and iOS Now Support Background Noise Suppression - Published: 2022-06-08 - Modified: 2022-06-08 - URL: https://petri.com/microsoft-teams-mac-ios-support-background-noise-suppression/ - Categories: Microsoft Teams - Tags: iOS, macOS, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams on Mac and iOS has finally added support for real-time noise suppression. The AI-powered tool first debuted on Windows 10 as an optional feature back in 2020, which allows the app to automatically suppress unwanted background noise during video calls and meetings. The noise suppression capability is enabled by default for all Mac and iOS users. The feature leverages Artificial Intelligence to analyze the audio feed in real-time to isolate speech from unnecessary noise (such as keyboard typing, barking dogs, or food wrapper crunching) that can distract meeting participants. Since its launch, Microsoft’s engineers have optimized the machine learning model to improve the call and meeting quality in Microsoft Teams. The experimentation process proved that better call quality has helped to increase the duration of 1:1 calls. Additionally, its end-of-call survey shows a 32 percent drop in background noise complaints from end-users. “This change of enabling noise suppression by default for most calls makes this feature the most widely used AI feature in Microsoft Teams, but more importantly improving experiences for millions of users who confidently take Teams calls and meetings from anywhere,” said Mehrsa Golestaneh, Senior Product Manager at Microsoft. Microsoft to add background suppression support to ARM-based devices Microsoft has also revealed its plans to roll out real-time background suppression support to Microsoft Teams Rooms and ARM-based devices. However, the company has not yet indicated an ETA for when the feature will hit general availability on other device types. Background noise in Teams meetings can be... --- ### How to Delete a Protected OU in Active Directory > As your organization's logical layout changes, you may need to delete OUs in Active Directory. In this post, we'll show you two different ways to delete protected OUs and what minor roadblocks you may come across while doing so. - Published: 2022-06-08 - Modified: 2022-06-08 - URL: https://petri.com/delete-protected-ou-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell - Article Type: How To As your organization's logical layout changes, you may need to delete OUs in Active Directory (AD) from your domain controllers. In this post, we'll show you two different ways to delete protected OUs (Organizational Units) and what minor roadblocks you may come across while doing so. Why you cannot delete protected OU in Active Directory There are two main situations where the deletion of an organizational unit in just one step isn't possible. Protection from accidental deletion is enabled When you try to delete an OU in Active Directory Users and Computers (ADUC), you may run into the following error message telling you that you don't have sufficient privileges to delete Domain Windows Computers, or that the object is protected from accidental deletion. I'll explain how to circumvent this limitation later. You are unable to delete an OU/container if the flag is enabled An OU is referred to as a 'default' OU The second situation that may prevent you from deleting an OU/ is when you're trying to delete is what's referred to as a 'default' OU. These are OUs that were either installed as default when Active Directory Domain Services (AD DS) was installed and configured (Computers, Users), or were modified to carry the 'default' attribute post-installation. The 'Delete' option is hidden for specific OUs/containers that are designated to NOT be removed You should also make sure that you're seeing 'all' the objects in your directory - Click View in ADUC and make sure Advanced Features is checked. Delete a protected OU in Active... --- ### Cloud Conversations – Geetha Sivasailam on Power Platform, User Groups & In-Person conferences > Geetha Sivasailam is a Solutions Architect at Artis Consulting and a Microsoft Business Applications MVP. In this week's episode, she joins Azure and Peter to talk about her career journey in tech to the Power Platform. We also talk about User Groups, in-person conferences, and Work / Life balance. - Published: 2022-06-08 - Modified: 2022-06-08 - URL: https://petri.com/cloud-conversations-episode-52-geetha-sivasailam/ - Categories: Video - Tags: Cloud Conversations, Power Platform - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Geetha Sivasailam on Power Platform, User Groups & In-Person conferences Geetha Sivasailam is a Solutions Architect/Dev/Consultant at Artis Consulting and a Microsoft Business Applications MVP. In this week's episode, she joins Azure and Peter to talk about her career journey in tech to the Power Platform. We also talk about: User GroupsIn-person conferencesLife in Dallas, TexasRecipes to help you cool downWork / Life balance More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Windows 11 version 22H2 is Now Available for Commercial Pre-Release Validation - Published: 2022-06-07 - Modified: 2022-06-07 - URL: https://petri.com/windows-11-version-22h2-now-available-commercial-pre-release-validation/ - Categories: Windows 11 - Tags: News, Windows 11, Windows Insider - Article Type: News Microsoft has announced that Windows 11 version 22H2 is now available for commercial pre-release validation by business customers. The upcoming feature update is also available as an optional update for Windows Insiders enrolled in the Release Preview channel. New features in Windows 11 version 22H2 include system-wide Live captions, a revamped Task Manager as well as drag and drop support for the taskbar. Additionally, it comes with a new Clipchamp video editor installed by default as well as the ability to create folders in the Start menu. Microsoft has also introduced some new gestures that allow users to minimize apps, open the Start menu, and perform other actions on touch screen devices. Lastly, the Windows Spotlight feature automatically downloads new wallpapers from Bing and displays them on the Windows 11 desktop. Start menu folders in Windows 11 Going forward, Windows Insiders in the Release Preview channels will likely receive more cumulative updates ahead of the official launch of Windows 11 22H2. “Microsoft is committed to ensuring your applications work on the latest versions of our software. Windows 11 is built with compatibility in mind and Windows 11, version 22H2 is no different. Our promise states that apps that work on Windows 7, 8. 1, and 10 will work on Windows 11. If you experience a compatibility issue with Windows 11, version 22H2, utilize App Assure with Microsoft FastTrack,” the company said today. Microsoft to provide free support for businesses running Windows 11 22H2 It is important to note that Microsoft is... --- ### Microsoft 365 Admin Center Adds New Dashboard for Managing Windows & Office Updates - Published: 2022-06-07 - Modified: 2022-06-08 - URL: https://petri.com/microsoft-365-admin-center-dashboard-managing-windows-office-updates/ - Categories: Microsoft 365, Windows 10, Windows 11 - Tags: Microsoft 365, Microsoft 365 Admin Center, News, Windows - Article Type: News Microsoft has launched a new software updates dashboard in the Microsoft 365 admin center. The new software updates page enables IT admins to get a unified overview of the installation status of Windows and Microsoft 365 app updates in their organization. “Keeping devices current with the latest security updates is an important part of an IT admin’s role. The software updates page in the health section of the Microsoft 365 admin center provides a high-level summary view that informs you of devices that may be behind on taking the latest updates released by Microsoft,” the company explained in a blog post. Specifically, the software updates page has a dedicated tab that shows Windows update status and End of service chats. These charts detail the number of Windows machines that have installed the latest security patches within the last two months. It also lists the number of PCs running unsupported versions of the OS or reaching the end of support deadline soon. There is also a separate tab for monitoring the update status for Microsoft 365 Apps. Keep in mind that the new dashboard only allows IT Pros to keep track of software updates for Microsoft 365 apps and Windows. The company plans to expand its availability to on-premises Exchange Servers in the coming months and Exchange Server 2019 in early 2023. Software Updates Dashboard is available in preview Microsoft says that the software updates dashboard is currently available in preview for business customers worldwide. However, the company acknowledged that IT... --- ### Learn How Organizations Are Using Semperis Purple Knight to Secure Active Directory > Petri interviewed several organizations in North America to find out how they are using Purple Knight to secure Active Directory (AD). What follows is a summary of the findings and a link to the full interviews on YouTube for each organization. - Published: 2022-06-07 - Modified: 2024-05-23 - URL: https://petri.com/semperis-purple-knight-secure-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Purple Knight, Security, Semperis - Article Type: Sponsored Purple Knight is a free security assessment tool for Microsoft Active Directory that scans the AD environment for indicators of exposure (IOEs) and indicators of compromise (IOCs), provides an overall security score, and offers remediation guidance from identity security experts. This article is sponsored by Semperis. Recently, Petri interviewed several organizations in North America to find out how they are using Purple Knight to secure Active Directory (AD). What follows is a summary of the findings and a link to the full interviews on YouTube for each organization. Securing Active Directory can be a challenge IT teams often inherit complex AD environments that have grown, without much thought to security, over a number of years. While Microsoft does include a simple AD best practices scanner as part of Windows Server, it doesn’t provide enough detail or useful reports to enable IT to effectively assess the current state of their AD configuration. Purple Knight provides IT teams with a security report card, information about pre- and post-attack security indicators, community-driven threat models, prioritized and actionable guidance, and correlation with MITRE ATT&CK and ANSSI frameworks. Purple Knight can help your company find AD security gaps Central Utah Emergency Communications Micah Clark, IT Manager for Central Utah Emergency Communications, learned about Purple Knight through a security webinar by Dell Computers and he was intrigued to try it. Central Utah Emergency Communications has an on-premises Windows Server Active Directory domain that is connected to Azure Active Directory. The stressful nature of working in... --- ### Apple Unveils New MacBook Air and Refreshed MacBook Pro with M2 Chip - Published: 2022-06-07 - Modified: 2022-06-07 - URL: https://petri.com/apple-unveils-new-macbook-air-and-refreshed-macbook-pro-with-m2-chip/ - Categories: Hardware - Tags: Apple, M2, MacBook Air, MacBook Pro, macOS Ventura, News, WWDC22 - Article Type: News Apple has officially unveiled its first Macs powered by the next generation of Apple silicon at the Worldwide Developers Conference (WWDC). The new devices include a redesigned MacBook Air and 13-inch MacBook Pro with the new M2 chipset. According to Apple, the latest M2 processor comes with a new eight-core CPU, an up to ten-core GPU, as well as up to 24GB of unified memory. “Built using second-generation 5-nanometer technology, M2 takes the industry-leading performance per watt of M1 even further with an 18 percent faster CPU, a 35 percent more powerful GPU, and a 40 percent faster Neural Engine. 1 It also delivers 50 percent more memory bandwidth compared to M1, and up to 24GB of fast unified memory,” Apple said in a press release. Apple’s redesigned MacBook Air is the first device to ship with the new M2 processor, and it is available in Silver, Starlight, Space Gray, and Midnight color options. The company promises 18 percent faster CPU performance, 35 percent better video editing performance, and 50 percent more memory bandwidth than the previous M1 model. Just like the previous M1 variant, the newest MacBook Air uses a fanless design and delivers up to 18 hours of battery life. The device retains its limited set of ports, including two USB-C ports and a 3. 5mm headphone jack. The only big difference is the inclusion of the MagSafe port for charging on the M2 version, but users can also use the USB-C ports for charging. It also supports a Fast... --- ### Microsoft Claims Teams is Now Up To 60% Faster on Windows - Published: 2022-06-06 - Modified: 2022-06-06 - URL: https://petri.com/microsoft-teams-up-to-60-faster-on-windows/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News, Windows 11 - Article Type: News Microsoft claims that it has optimized its Teams desktop app to boost performance during resource-intensive scenarios such as messaging, video calls, and meetings. These changes complement ongoing efforts to make the app more power-efficient during meetings. The Teams desktop app has received several performance enhancements to improve the “overall interaction responsiveness time” since August 2021. Microsoft highlights that these updates are designed to ensure a smoother messaging, meeting, and calling experience for end-users. The first big step in optimizing Microsoft Teams' performance was switching from Angular to React (a popular web front-end framework). The company has also upgraded the Electron framework and reduced re-rendering times as well as made incremental improvements to the source code. “Our desktop, framework, and performance teams made several foundational improvements and our messaging and calling/meeting teams partnered to optimize the code for targeted user experiences we identified as important to the overall experience,” explained Mark Longton, Principal Group Program Manager for Microsoft Teams. Microsoft Teams improves latency and page load times for messaging First up, Microsoft has significantly reduced latency and page load times to enhance the messaging experience in Teams. The software giant has improved the latency when scrolling a chat list by 11. 4% and scrolling the channel list by 12. 1%. Microsoft also claims that the compose message box now loads 63% faster. According to Microsoft, the latest performance enhancements made switching to a channel and opening a chat window 25% quicker. Additionally, switching between chat threats jumped by 3. 1%, and switching threads in... --- ### Atlassian Releases Patches for Zero-Day Confluence RCE Flaw - Published: 2022-06-06 - Modified: 2022-06-06 - URL: https://petri.com/atlassian-patches-zero-day-confluence-rce-flaw/ - Categories: Security - Tags: News, Security, Vulnerability - Article Type: News Atlassian has released new security updates to fix a critical flaw affecting its Confluence Server and Data Center products. The vulnerability, tracked as CVE-2022-26134, allows for unauthenticated remote code execution on unpatched servers. The zero-day security flaw was disclosed by security company Volexity last week, and it impacts all supported versions (except those hosted on Atlassian Cloud) of the products. The researchers found that malicious actors are currently exploiting the vulnerability to install the Chopper webshell and other malware. This prompted the Cybersecurity & Infrastructure Security Agency (CISA) to encourage federal agencies to block all internet access to Confluence servers on their networks. “The OGNL injection vulnerability allows an unauthenticated user to execute arbitrary code on a Confluence Server or Data Center instance. All versions of Confluence Server and Data Center prior to the fixed versions listed above are affected by this vulnerability,” Atlassian noted in its security advisory. Security researchers also published a proof of concept (PoC) for the critical CVE-2022-26134 vulnerability on June 3. The proof of concept code demonstrates the process of creating new admin accounts, pushing DNS requests, collecting sensitive data, as well as generating reverse shells. Additionally, the CEO of cybersecurity company GreyNoise revealed on Twitter that 727 unique IP addresses have already attempted to breach into Internet-exposed and unpatched Confluence servers. Atlassian recommends customers to patch Confluence servers Atlassian has rolled out security patches to address the flaw in versions 7. 4. 17, 7. 13. 7, 7. 14. 3, 7. 15. 2, 7. 16. 4, 7. 17. 4, and 7. 18. 1. The company has advised all enterprise... --- ### How to Create an AWS Lambda Function - Published: 2022-06-06 - Modified: 2023-06-23 - URL: https://petri.com/aws-lambda-create-function/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, AWS Lambda, Functions, Lambda, Microservices, Serverless - Article Type: How To In this guide, I’ll explain how AWS Lambda lets you run your code in a cloud-based 'serverless' infrastructure, and how you can create an AWS Lambda function to perform any type of computing task. There are four different ways to create an AWS Lambda function, but I'll be using the web-based AWS Management Console to do it. I'll also show you how to invoke your first function and how to monitor it using AWS CloudWatch metrics. AWS Lambda is a service used for deploying applications in the Amazon Web Services cloud. And it doesn’t require you to manage any infrastructure! Azure Lambda was one of the first Function-as-a-Service (FaaS) platforms. It preceded competing services like Microsoft's Azure Functions. Lambda's serverless architecture helps to reduce costs and complexity when creating event-driven applications that must be able to scale easily. For example, there are no charges when your functions aren't running. What is an AWS Lambda function? AWS Lambda functions run code that can be written in various languages such as Node. js, Python, Ruby, Java, Go, and more. Code can be triggered by various events in the AWS cloud, such as: If you upload or delete objects like code or scripts in AWS Simple Storage Service (S3). Uploading company data in AWS DynamoDB. When a website or application changes an AWS Load Balancer, then AWS Lambda can update the IP address. Thanks to solid integrations with other AWS products, Lambda offers many possibilities and advantages for AWS customers. Here are some... --- ### Atlassian Warns of Active Exploitation of Unpatched Critical Confluence Flaw - Published: 2022-06-03 - Modified: 2022-06-03 - URL: https://petri.com/atlassian-active-exploitation-unpatched-critical-confluence-flaw/ - Categories: Security - Tags: Atlassian, News, Security, Vulnerability Atlassian has published a security advisory about a new critical flaw impacting its Confluence Server and Data Center products. The company warned IT teams that the security vulnerability could lead to unauthenticated remote code execution (RCE). The security vulnerability, tracked as CVE-2022-26134, was discovered by the cybersecurity company Volexity. Atlassian released an advisory about the vulnerability on June 2, explaining that it was found in all supported versions of Confluence and Data Center. The flaw is also potentially affecting some unsupported versions of the enterprise solution. “Atlassian has been made aware of current active exploitation of a critical severity unauthenticated remote code execution vulnerability in Confluence Data Center and Server,” the company explained. “We expect that security fixes for supported versions of Confluence will begin to be available for customer download within 24 hours (estimated time, by EOD June 3 PDT). ” According to the security advisory, the remote code execution flaw doesn’t impact Atlassian Cloud sites. This means that all Confluence sites accessed via an atlassian. net domain are not vulnerable. Atlassian urges IT Pros to block internet access to the Confluence Server and Data Center products Atlassian has urged IT administrators to either restrict internet access to both products or completely disable instances of Confluence Server and Data Center. If it is not possible, the company recommends customers to configure a Web Application Firewall (WAF) rule, which blocks all URLs containing the ${ string. This implementation may help IT teams to reduce the risk of successful exploitation attempts. Meanwhile, cybersecurity... --- ### Microsoft's Surface Laptop Go 2 - Good Buy or Disappointing Upgrade? - Published: 2022-06-03 - Modified: 2022-06-03 - URL: https://petri.com/microsofts-surface-laptop-go-2-good-buy-or-disappointing-upgrade/ - Categories: Hardware - Tags: News, Surface Laptop Go 2 - Article Type: News This week in IT, I take a look at the new Microsoft Surface Laptop Go 2, who it's for, and whether it's a good buy. About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Microsoft Postpones the Release of Next Version of Exchange Server Until 2025 - Published: 2022-06-03 - Modified: 2022-06-03 - URL: https://petri.com/microsoft-postpones-next-version-exchange-server-until-2025/ - Categories: Exchange Server - Tags: Exchange Server, Exchange Server 2016, Exchange Server 2019, News - Article Type: News Microsoft has delayed its plans to release the next version of on-premises Exchange Server in the second half of 2021. The software giant has announced that the new subscription-based version of Exchange Server will launch in 2025. In a blog post published yesterday, Microsoft explained that the alarming surge in state-sponsored cyber-attacks against insecure on-premises servers has forced it to postpone its Exchange Server vNext. The company is dedicating its engineering resources to improving the security of Exchange Server 2019 to protect enterprise customers. Microsoft will only be making the new on-premises Exchange Server release available to organizations that have Software Assurance. Additionally, the new version will also require both Server and CAL licenses. Microsoft indicated that it will share more details about the functionality, pricing, licensing, and other requirements in the first half of 2024. Microsoft to introduce in-place upgrades from Exchange Server 2019 It is important to note that Exchange 2016 and Exchange 2019 will reach end of support on October 14, 2025. The Redmond giant will introduce an in-place upgrade mechanism to make it easier for customers to switch to Exchange Server 2019. This change aims to eliminate the need to purchase new hardware and move mailboxes from old servers to Exchange Server 2025. Microsoft has detailed a couple of new features added in Exchange Server 2019. The list includes performance & scalability enhancements, SharePoint Server and OneDrive integration, an updated architecture, and redesigned Outlook on the web experience, and security improvements. There are also some new... --- ### How to Install Azure Stack HCI Single-Node Clusters > If your company is interested in modernizing its infrastructure with Azure hybrid computing capabilities, you can now do so by deploying Azure Stack HCI on a single-node cluster. We'll explain in this guide how to install Azure Stack HCI single-node clusters with PowerShell. - Published: 2022-06-03 - Modified: 2024-11-19 - URL: https://petri.com/install-azure-stack-hci/ - Categories: Azure, Azure Stack HCI, Microsoft Azure - Tags: Azure, Azure Stack HCI - Article Type: How To If your company is interested in modernizing its infrastructure with Azure hybrid computing capabilities, you can now do so by deploying Azure Stack HCI on a single-node cluster. In this guide, I will explain the main use cases for single-node deployments before showing you how to install Azure Stack HCI single-node clusters with PowerShell. How to Install Azure Stack HCI single-node clusters Here’s an overview of the steps required to install and configure Azure Stack HCI as a single-node cluster. Download and install the Azure Stack HCI operating system on your hardware. Using PowerShell, install the Hyper-V and Failover Clustering server roles. Then Reboot. Create a cluster using the New-Cluster PowerShell cmdlet. Enable Storage Spaces Direct using the Enable-ClusterStorageSpacesDirect cmdlet. Register the server with Azure For more details on how to install Azure Stack HCI in a single-node cluster, keep reading! A hyper-converged infrastructure cluster solution  Azure Stack HCI is a hyper-converged infrastructure (HCI) cluster solution. It was built as an infrastructure operating system that can host virtualized Windows and Linux workloads. Within Azure Stack HCI storage, the network and virtualization layers are combined into one box. Azure Stack HCI brings various Azure Services, like Azure Virtual Desktop or Azure Kubernetes Services, to your on-premises datacenter. Differences between Azure Stack HCI single-node and multi-node clusters Azure Stack HCI single-node clusters are a new cluster deployment solution with one Azure Stack HCI node within the cluster. Single-node clusters offer cost and space benefits to customers. Microsoft announced Azure Stack HCI... --- ### Security Researchers Discover New Windows Search Protocol Vulnerability - Published: 2022-06-02 - Modified: 2022-06-02 - URL: https://petri.com/security-researchers-new-windows-search-protocol-vulnerability/ - Categories: Security, Windows 10, Windows 11 - Tags: News, Vulnerability, Windows 10, Windows 11 - Article Type: News Security researchers have discovered a new zero-day vulnerability that allows hackers to launch a Windows search window via malicious Word documents. The security flaw exists in the Windows search protocol handler (search-ms) that allows applications and links to open searches for malicious attacks. According to Bleeping Computer, an attacker could abuse the protocol handler to create a malicious Windows Update directory. The threat actors distributed the search-ms URI via phishing emails to trick users into installing the malware. However, many modern browsers (including Microsoft Edge) show security warnings to prevent users from running harmful executable files. Additionally, security researchers have found a new vulnerability in Microsoft Office OLEObject. Attackers can exploit this flaw to bypass the Explorer preview pane and open a search window without any user intervention. It is also possible to create Rich Text Format (RTF) documents that can automatically launch a new search window each time a preview appears in the Preview Pane. https://twitter. com/hackerfantastic/status/1531789430922567681 Workaround to fix Windows Search protocol vulnerability Microsoft has yet to confirm this new protocol vulnerability in Windows 10 and Windows 11. As a workaround, the security researcher has recommended users to delete the search-ms protocol handler from Windows Registry by following the steps mentioned below: First of all, type cmd in the search bar, right-click the Command Prompt option, and then choose Run as administrator from the list. Execute the command "reg export HKEY_CLASSES_ROOT\ms-msdt filename" in the command prompt window to create a back of the registry. Run the following command to remove the... --- ### Microsoft Releases Fix for Azure Active Directory Logging Issues - Published: 2022-06-01 - Modified: 2022-06-01 - URL: https://petri.com/microsoft-releases-fix-azure-active-directory-logging-issues/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure, Azure Active Directory, cloud computing, Microsoft, News - Article Type: News Microsoft has released a hotfix today to address data logging issues in Azure Active Directory and several other cloud services. The company initially said that the bug impacted Azure AD customers in the US and Europe, but Microsoft later indicated in a status update that it was affecting users globally. According to the update on the Azure status history page (via ZDNet), Microsoft warned that customers might have noticed unusual delays in logging data from Azure AD and other Azure tools. This problem could have caused "missed or misfired alerts" and prevented access to Log Analytics, MSGraph, PowerShell, Application Insights, as well as Azure Portal. Microsoft says the logging issue started at 9:35 PM UTC on May 31, and it was caused by a "recent change to the underlying infrastructure. " In another status update, Microsoft confirmed that all services using Azure Resource Management also failed to perform data manipulation operations. "During this time, Azure Resource Manager dependent services may have also experienced CRUD (create, read, update and delete) operation failures, with some requests that experienced failures while communicating with other Azure services," Microsoft explained on the Azure status page. Microsoft deploys hotfix for the Azure Active Directory (AD) logging bug The good news is that Microsoft has already deployed a fix, and most users should now be able to access the aforementioned Azure AD services. The company noted that Azure engineers will continue working to investigate this bug in order to determine the root cause of the problem. Microsoft also... --- ### Microsoft's New Autopatch Service Lets IT Admins Patch Windows PCs Automatically - Published: 2022-06-01 - Modified: 2022-08-24 - URL: https://petri.com/microsofts-new-autopatch-service-patch-windows-pcs-automatically/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, Windows Autopatch - Article Type: News Back in April, Microsoft unveiled a new feature to help IT Pros automate the patch management process in enterprise environments. The company has announced that its Windows Autopatch service is now available in public preview at no additional cost to Windows Enterprise E3 subscribers. Windows Autopatch is a new managed service that makes it easier for IT teams to automatically patch and update all Windows 10 and Windows 11 PCs. It is designed to minimize the burden of Windows quality and feature updates for firmware, drivers, as well as Microsoft 365 apps such as Outlook and Teams. With this service, companies can categorize end-users into four groups or test rings and dynamically check for updates. This approach helps to prevent issues with enterprise updates during the deployment process. It lets IT admins pause or roll back updates in case of any significant disruption. “This service will keep Windows and Office software on enrolled endpoints up-to-date automatically, at no additional cost. IT admins can gain time and resources to drive value. For organizations who select this option, the second Tuesday of every month will be 'just another Tuesday',” explained Lior Bela, Sr. Product Marketing Manager at Microsoft. https://www. youtube. com/watch? v=gu4bpXYiAd8 How to opt into the Windows Autopatch public preview Microsoft noted that the Windows Autopatch service is only available for Windows 10 and Windows 11 client devices, and it doesn't support Windows Server. To get started with the new Windows Autopatch service, IT administrators will need to follow the steps mentioned below: First... --- ### Everything You Need to Know About Windows – May 2022 - Published: 2022-06-01 - Modified: 2022-06-02 - URL: https://petri.com/windows-news-may-2022/ - Categories: Windows 11 - Tags: Android, News, Project Volterra, Windows 11, Windows Server 2022 - Article Type: News This month, Microsoft announces an update to the Surface Laptop Go. Plus, there’s a new Arm-based development kit for Windows, the Windows Subsystem for Android gets a big update in the Dev channel, and the ‘RTM’ build for Windows 11 22H2 is finalized. Microsoft Surface Laptop Go 2 Today, Microsoft announced the Surface Laptop Go 2. It comes with several key changes over the previous generation: 11th Gen Intel Core i5 is up to 23% faster than Surface Laptop Go and quieter with improved thermal performance. 12. 4" PixelSense touchscreen display optimized for Windows 11 touch experiences. Improved 720p HD camera delivers high quality video and accurately represents skin tone across different lighting conditions. Microsoft is aiming the new Surface Laptop Go 2 at commercial customers, saying the it has convenient security with a fingerprint power button that works with Windows Hello on certain models. IT teams will be able to manage USB-C ports at the UEFI level. There’s also more control using the Surface Management Portal. Check out Surface Laptop Go 2 is Microsoft’s New Affordable Windows 11 PC on Petri for more details. Third-party widgets coming to Windows 11 At Microsoft’s Build conference in May, the team announced that Windows 11 will be getting support for third-party widgets later this year. The technology is based on adaptive cards, which are used extensively in Microsoft 365. Windows 11 22H2 feature update finalized The first major feature update for Windows 11 has been finalized as build 22621. It was first released in the... --- ### How to Reset a Windows 10 Password - Published: 2022-06-01 - Modified: 2023-07-17 - URL: https://petri.com/reset-windows-10-password/ - Categories: Windows 10, Windows Client OS - Tags: Command Prompt, Microsoft Account, password, password reset, Windows 10 - Article Type: How To Windows 10 offers many ways for you to reset a forgotten password. However, the steps you’re required to follow to reset your password are different depending on whether you’re using a local account or a Microsoft account. Whether you're using one or the other, here's how to reset your password in a few easy steps. Local or Microsoft account: Different ways to reset your Windows 10 password We’ve all had to do it at one point or another, but resetting your password is typically such an infrequent event that we never really remember how to do it. However, if you enter an incorrect password again and again on your PC, there's no need to panic yet. First, you need to determine if you’re logging on to Windows 10 using a local account or a Microsoft account. The actual steps vary somewhat depending on the type of account you use. What is a local Windows 10 account? As the name implies, a local account is created and managed locally. If you've ever signed in to an older computer running Windows XP or Windows 7, then you've used a local account. Local accounts are a bit more secure and private as everything is kept on the one local computer and your information is never sent across the Internet. You can create custom names for them and it goes without saying that no Internet connection is required. What is a Microsoft account? A Microsoft account is essentially the same thing that used... --- ### Surface Laptop Go 2 is Microsoft's New Affordable Windows 11 PC - Published: 2022-06-01 - Modified: 2022-06-01 - URL: https://petri.com/surface-laptop-go-2-microsofts-affordable-windows-11-pc/ - Categories: Hardware, Windows 11 - Tags: News, Surface, Surface Laptop, Surface Laptop Go 2, Windows 11 - Article Type: News Microsoft has officially announced its new Surface Laptop Go 2 following a series of leaks. The new 12. 4-inch laptop is an iterative update over the previous Surface Laptop Go model that launched back in 2020, and it features a more powerful Intel Core i5-1135G7 processor for customers who need a performance boost. The Surface Laptop Go 2 comes pre-installed with Windows 11, and Microsoft is adding a new “Sage” finish in addition to the original Ice Blue, Platinum, and Sandstone colors. Under the hood, the software giant has included up to 8GB of faster LPDDR4x RAM and up to 256GB of SSD storage, but commercial customers can also configure it with 16GB of RAM and 256GB of storage. “Surface Laptop Go 2 is the first Intel-based secured-core PC from Surface. With innovation from chip to cloud, customers at home or work can enjoy new levels of security. Whether deploying for a large-scale enterprise or your home business, Surface Laptop Go 2 offers a lightweight, manageable, and functional device for any employee,” explained Pete Kyriacou, CVP, Microsoft Devices. The affordable laptop features USB-C, USB-A, and Surface Connect ports for charging, as well as a headphone jack. The Surface Laptop Go 2 also comes with a 720p HD f2. 0 front-facing camera, dual far-field studio mics, and omnisonic speakers with Dolby Audio Premium support. Finally, it includes the latest wireless technologies with WiFi 6 and Bluetooth 5. 1. Microsoft announced that the Surface Laptop Go 2 should deliver up to 13. 5 hours of battery... --- ### Everything You Need to Know About Microsoft Power Platform – May 2022 > The Microsoft Power Platform updates released in May 2022 include a new Express design feature and Power Automate pane for Power Apps, while PowerBI got a new ExecuteQueries REST API. - Published: 2022-06-01 - Modified: 2022-06-01 - URL: https://petri.com/power-platform-may-2022-updates/ - Categories: Power Platform - Tags: power apps, power aut, Power BI, Power Platform Just like that, it’s Summer. Though many are thinking about sand and sun, we’re too excited about the recent Microsoft Power Platform updates released in May 2022 to pack our bags before checking out what’s new!   Let’s take a look at the main new capabilities that Microsoft introduced last month. Power Apps gets a new Express design feature First of all, we highly recommend checking out the brand-new Express design feature which is now available in preview in Power Apps. Wow! Using the AI of Express design, you can import screen images (depicting forms) or even a hand-drawn sketch to show Power Apps what you want your screen to look like.   Power Apps will then scan your document to figure out elements that it believes you want to include along with buttons, labels, and input types. Then you can fine-tune to tell Power Apps what you really meant (Power Apps cannot always read my writing ? ). So, it essentially helps you get up a screen with tremendous speed.   It will even help you create a data source (using Dataverse), but it allows you to use/create your own.  This is an incredible feature that is now available for you.   New Power Automate pane in Power Apps Another fantastic new feature is the Power Automate integration into the Power Apps Canvas Studio via the Power Automate pane. You can now create flows without leaving your app! The Power Automate icon is now featured on the left-hand nav section. When you select it, Power... --- ### Microsoft Announces Entra, A New Identity and Access Management Suite - Published: 2022-05-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-entra-identity-and-access-management-suite/ - Categories: Active Directory (AD) - Tags: Active Directory, News, Privileged Identity Management - Article Type: News Microsoft has launched a new product family of identity and access management solutions called Microsoft Entra. This new suite of products is designed to help organizations protect access to any application or resource by making it easier to discover and manage permissions in multi-cloud environments. As cyberattacks like credential theft and social engineering become more prevalent, Microsoft emphasizes the need to keep end-users and digital environments secure. Microsoft Entra is an integrated solution that protects each identity and secures every access point in our hyperconnected world. It includes new and existing tools such as Azure Active Directory (Azure AD), Cloud Infrastructure Entitlement Management (CIEM), and Decentralized Identity. Microsoft Entra Permissions Management First of all, Microsoft has announced that Entra Permissions Management will hit general availability in July this year. As the name suggests, the solution will enable organizations to effectively manage permissions for user and workload identities. Security teams will be able to monitor unused and excessive permissions and enforce the least privilege principle across all cloud services, including Azure AD, Google Cloud Platform, and Amazon Web Services (AWS). In addition to Entra Permissions Management, Microsoft also plans to launch a new decentralized identity product called Verified ID in early August. It should let users and businesses choose “what information they share, when, who they share it with” and revoke access as needed. Microsoft Entra Verified ID Moreover, the Verified ID service will allow security teams to verify the credentials of users and organizations at any time. This means that... --- ### Microsoft Acknowledges Office Zero-Day Flaw Affecting Windows Diagnostic Tool - Published: 2022-05-31 - Modified: 2022-05-31 - URL: https://petri.com/microsoft-acknowledges-office-zero-day-flaw-windows-diagnostic-tool/ - Categories: Windows 10, Windows 11, Windows 7, Windows 8, Windows Server - Tags: Microsoft Support Diagnostic Tool, News, Security, Windows, Windows 10, Windows 11, Windows 7, Windows 8.1, Windows Server - Article Type: News Microsoft has acknowledged a new zero-day remote code execution flaw in its Microsoft Support Diagnostic Tool (MSDT). The Microsoft Security Response Center team explained that the security flaw impacts all supported versions of Windows and Windows Server. Microsoft Support Diagnostic Tool (MSDT) is a service in Windows 11/10/8. 1/7 and Windows Server. The tool enables the Microsoft support representatives to analyze diagnostic data and find a resolution for the problems experienced by users. Tracked as CVE-2022-30190, security researcher Kevin Beaumont first discovered and reported the vulnerability dubbed “Follina” to Microsoft on April 12. The flaw abuses an Office feature to retrieve a hypertext markup language (HTML) file, which then uses MSDT to execute a snippet of PowerShell code. Beaumont and other security researchers confirmed that they were able to exploit the vulnerability on Office 2021, Office 2019, Office 2016, and Office 2013. “A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the user’s rights,” The MSRC Team explained. Microsoft provides a workaround to fix the RCE flaw in MSDT Microsoft noted that the zero-day vulnerability is being actively exploited by threat actors. The company is working on a permanent fix, and it has outlined steps for disabling the MSDT URL protocol... --- ### What is a DevOps Pipeline? > In this article, we will be talking more about DevOps pipelines, their phases, components, and what you need to understand before building a DevOps pipeline of your own, along with the build process. - Published: 2022-05-31 - Modified: 2022-05-31 - URL: https://petri.com/what-is-a-devops-pipeline/ - Categories: DevOps - Tags: Azure DevOps, DevOps, Docker, GIT, GitHub, monitoring - Article Type: Overview DevOps Pipelines help you to deliver new features in your apps fast! In this article, I will explain what DevOps pipelines are, phases in a pipeline, and the different components. I'll also cover what you need to understand before building a DevOps pipeline of your own, along with the build process. DevOps has revolutionized the contemporary IT world, and it refers to a set of practices that combines software development with operations and maintenance. In the last few years, companies all across the globe have started to realize the true potential of this modern-day hybrid approach for faster innovation, efficiency, improved communication and collaboration, along with reduced costs. This is what a DevOps pipeline is about. With DevOps bringing the development and operations teams together by providing a consistent set of practices, processes, and tools, companies of all sizes are leveraging the benefits of faster development and deployment. To take advantage of the benefits of DevOps and to keep up with ever-evolving customer needs and requirements, you will need to create a robust DevOps pipeline.   What is a DevOps pipeline? A DevOps pipeline consists of a set of practices, processes, and tools that allow you to build collaboration between the development and operations teams in your organization. A DevOps pipeline is often considered the powerhouse of your IT lifecycles that allows you to build, test, and deploy software in a much more streamlined, faster, and efficient way.   The different components of a DevOps pipeline Although DevOps pipelines can differ in terms of their implementation, they typically include... --- ### Microsoft Now Lets IT Admins Review & Remove Inactive Azure AD Users - Published: 2022-05-27 - Modified: 2023-07-17 - URL: https://petri.com/microsoft-it-admins-remove-inactive-azure-ad-users/ - Categories: Microsoft Azure, Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Azure Active Directory Identity Protection, Multi-Factor Authentication, News, Security - Article Type: News Microsoft has unveiled a couple of security improvements to Azure Active Directory (recently renamed Microsoft Entra ID). The company has released a new access reviews feature in preview that lets organizations remove inactive user accounts that could potentially cause security risks. More specifically, IT administrators can now delete accounts from Azure AD that haven't logged in for a specified number of days. The new access review feature is a part of the Azure Active Directory Identity Governance service. It comes in handy for businesses that want to prevent contractors and former employees from accessing sensitive information. “Both interactive and non-interactive sign-in activities are covered under sign-in activity. As part of the review process, stale accounts can automatically be removed. This, in turn, improves your organization’s security posture,” Microsoft noted. Microsoft says that IT Pros can configure settings to automatically remove all guest or user accounts that have remained inactive for up to two years. However, this capability is apparently available for customers with an Azure AD Premium P2 license, and you can check out the step-by-step guide for more details. Microsoft brings security defaults to millions of Azure AD users Additionally, Microsoft is getting ready to roll out the security default protections to more Azure Active Directory (AD) customers. Starting next month, the Redmond giant plans to enable security defaults for old Azure AD tenants created before October 2019. This change will impact all organizations that are not using best security practices such as modern authentication & multifactor authentication (MFA)... . --- ### Broadcom to Acquire Virtualization Company VMware for $61 Billion - Published: 2022-05-27 - Modified: 2022-05-27 - URL: https://petri.com/broadcom-acquire-virtualization-company-vmware-61-billion/ - Categories: Virtualization - Tags: Broadcom, News, Virtualization, vmware - Article Type: News Chipmaker Broadcom has announced that it’s buying VMware in a cash-and-stock deal valued at $61 billion. The transaction is expected to complete in Broadcom’s fiscal year 2023, and it will help the company to bolster its enterprise software business. Under the terms of the deal, Broadcom plans to rebrand and operate its Software Group as VMware. Essentially, the expanded VMware portfolio will incorporate Broadcom’s existing software solutions for infrastructure operations and security. This will be one of the most expensive acquisitions by far, after Dell's $67 billion acquisition of EMC in 2016 and Microsoft’s bid to purchase Activision Blizzard for $69 billion back in January. “Combining our assets and talented team with Broadcom’s existing enterprise software portfolio, all housed under the VMware brand, creates a remarkable enterprise software player. Collectively, we will deliver even more choice, value and innovation to customers, enabling them to thrive in this increasingly complex multi-cloud era,” said Raghu Raghuram, Chief Executive Officer of VMware. Broadcom is a global technology company that specializes in semiconductor and infrastructure software products. It primarily designs semiconductor chips for Wi-Fi, modems, and Bluetooth devices. However, Broadcom has seen significant growth by selling data management solutions for data centers. The chipmaker had previously acquired CA Technologies and Symantec back in 2018 and 2019, respectively. Broadcom and VMware released quarterly earnings reports The current software portfolio of Broadcom is comprised of AIOps, DevOps, and security products. With this new acquisition, VMware should be able to offer a wide range of infrastructure management... --- ### The Top 10 Ipconfig Commands You Should Learn > In this article, I'm going to show you how to use the command-line tool ipconfig. If you're an IT admin, ipconfig is a very useful console application program that can help you troubleshoot network connectivity problems in Windows. - Published: 2022-05-27 - Modified: 2024-11-19 - URL: https://petri.com/ipconfig-commands/ - Categories: Windows Client OS - Tags: Command Prompt, Ipconfig, PowerShell, Windows, Windows Terminal - Article Type: How To In this article, I'm going to show you how to use the command-line tool ipconfig. If you're an IT admin, ipconfig is a very useful console application program that can help you troubleshoot network connectivity problems in Windows. Linux and other operating systems (OS) have similar capabilities, but they often use different commands to achieve them. Ipconfig’s Linux equivalents are considered to be ifconfig and the ip command. However, macOS uses a combination of ipconfig and ifconfig. What is ipconfig? Ipconfig is one of the most used command-line tools for analyzing, configuring and troubleshooting your systems’ network settings, both in a home or enterprise environment. It has been one of those bread and butter tools that any sysadmin and network engineer will know and treasure. Overall, this command-line tool is easy to learn and relatively easy to master. It removes the need to browse multiple different GUI-based utilities, which tend to change with every new release of Windows (annoying people like me). How to use the ipconfig command Traditionally, ipconfig is run in a command-line session. On Windows, however, you can launch it using any of the following solutions: Open the Windows Start Menu, click on the Windows System folder, and select Command Prompt. Use the Windows key + R to open the Run box, enter cmd and press the Enter key. Use the Windows key + X to open the Quick Link menu. Command Prompt and Command Prompt (Admin) can be listed there, but this will depend on your... --- ### Cloud Conversations – Nate Chamberlain on Microsoft Teams MS-700 exam guide > Nate Chamberlain is Microsoft 365 adoption, content, and training expert. He returns to Cloud Conversations this week to chat with Azure and Peter about the release of the second edition of his Microsoft Teams MS-700 exam guide book which he co-wrote with Peter - Published: 2022-05-27 - Modified: 2022-05-27 - URL: https://petri.com/cloud-conversations-episode-51-nate-chamberlain/ - Categories: Video - Tags: Cloud Conversations, Microsoft Teams - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Nate Chamberlain on Microsoft Teams MS-700 exam guide Nate Chamberlain is a Microsoft 365 adoption, content, and training expert. He returns to Cloud Conversations this week to chat with Azure and Peter about the release of the second edition of his Microsoft Teams MS-700 exam guide book which he co-wrote with Peter. We also talk about: Nate's cats Lia and BaxterImposter syndromeThe importance of certificationThe writing processCommunity More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a... --- ### Latest Windows Server 2022 Update Brings Support for WSL 2 Linux Distributions - Published: 2022-05-26 - Modified: 2022-05-26 - URL: https://petri.com/windows-server-2022-update-support-wsl-2-linux-distributions/ - Categories: Windows Server 2022 - Tags: News, Windows Server, Windows Server 2022, WSL 2 - Article Type: News Microsoft has announced the release of Windows Server 2022 build 20348. 740. Earlier this week, Microsoft’s Program Manager Craig Loew confirmed on GitHub that the latest update now allows users to run Linux distributions based on WSL 2 in Windows Server 2022. “Hi folks, we've added support for WSL 2 distros on Windows Server 2022! This is available right now by installing KB5014021. Currently this update is only available for seekers, and next month it will be pushed by default. Going forwards, WSL will be supported both on Windows server and Windows desktop SKUs,” said Craig Loewen on GitHub. The Windows Subsystem for Linux 2 (WSL 2) made its debut on Windows 10 with the May 2020 Update. Meanwhile, WSL 2 support was also available for users getting Semi-Annual Channel (SAC) updates of Windows Server. With the release of Windows Server 2022, Microsoft dropped support for its Semi-Annual Channel (SAC) updates and switched to a new model with Windows Server LTSC releases. The new version included several new features such as security improvements, DNS-over-HTTPS support, new Azure capabilities, and more. However, it lacked support for Windows Subsystem for Linux 2. Microsoft finally adds support for WSL 2 on Windows Server 2022 The latest Windows Server 2022 update (build 20348. 740) brings significant performance improvements with version 2 of WSL. In addition to this, WSL 2 comes with a full Linux kernel that enables full system call compatibility as well as the ability to run a Linux kernel within a lightweight virtual machine... . --- ### Microsoft Confirms RTM Build for First Windows 11 Feature Update - Published: 2022-05-26 - Modified: 2022-05-26 - URL: https://petri.com/microsoft-confirms-rtm-build-windows-11-version-22h2/ - Categories: Windows 11 - Tags: News, Windows 11, Windows 11 22H2 - Article Type: News Microsoft has quietly confirmed that the recent Beta channel build 22621 is the final version of Windows 11 22H2. The software giant also indicated that it’s planning to release the first major feature update for Windows 11 in September or October of this year. In a Tech Community post for hardware partners, Microsoft shared some details regarding the Windows Hardware Compatibility Program (WHCP) requirements for Windows 11 22H2. The company explicitly says that "the minimum acceptable build for Windows 11, version 22H2 certification is RTM build(i. e. 22621). " Microsoft has requested its OEMs to test their drivers with build 22621. Microsoft indirectly confirmed the release date for the next feature update for the operating system in the post. The firm noted that its OEM partners should submit their drivers before September 5 to ensure the compatibility of their devices with version 22H2. A previous report from Windows Central already points to a September or October release for Windows 11 22H2. And it's likely that 22H2 will arrive in the same timeframe. We hope that the company will share more details about its rollout plans in the next few weeks. Microsoft releases ISO files for Windows 11 build 22621 As a reminder, Microsoft released Windows 11 build 22621 to Insiders in the Beta Channel on May 11, with minor fixes for Voice Access, the Taskbar, as well as File Explorer. This release also removed the preview watermark, which indicates that it is an RTM build. Going forward, Beta Channel Insiders will only... --- ### Build 2022: Microsoft's Intelligent Data Platform Combines Data and Analytics - Published: 2022-05-25 - Modified: 2022-05-25 - URL: https://petri.com/microsoft-intelligent-data-platform-combines-data-analytics/ - Categories: Azure, Microsoft Azure - Tags: Build 2022, Microsoft Azure, Microsoft Purview, News, SQL Server 2022 - Article Type: News Microsoft unveiled a slew of updates for its Azure services at the annual Build developer conference. The Redmond giant has also announced a new cloud data platform called “Microsoft Intelligent Data Platform” in an effort to consolidate its existing database, analytics, and governance services. Microsoft highlights that its Intelligent Data Platform will enable organizations to “add layers of intelligence to their applications, unlock fast and predictive insights, and govern their data—wherever it resides. ” It should also make it easier for companies to gather, analyze and use data effectively. Microsoft has detailed a couple of new products that will become a part of its new Intelligent Data Platform. SQL Server 2022 First of all, Microsoft's next-generation database engine “SQL Server 2022” is now available in public preview. It brings several new features for developers, such as AWS S3 support, Azure Active Directory authentication, Query Store hints, security improvements, and much more. A major highlight of this release is integration with Microsoft Purview and Azure Synapse Link. It allows users to get deeper insights into their data estate. SQL Server 2022 also brings new Azure SQL Managed Instance integrations to help customers with disaster recovery. Purview Data Estate Insights Microsoft has announced that Purview Data Estate Insights is set to hit general availability in July. The app allows Chief Data Officers to get a summary of data estate and the risk associated with that data. The Purview Data Estate Insights application is currently available in preview. Datamart in Power BI Microsoft has... --- ### How to Set Up an AWS EFS File System > Amazon EFS is an easy-to-use and serverless storage solution allowing companies to optimize file storage in Amazon Web Services (AWS). In this article, we'll show you how to set up and test access to Amazon EFS. - Published: 2022-05-25 - Modified: 2022-06-06 - URL: https://petri.com/set-up-aws-efs/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, AWS EFS - Article Type: How To Amazon Elastic File System (AWS EFS) is an easy-to-use and serverless storage solution allowing companies to optimize file storage in Amazon Web Services (AWS). In this article, we'll show you how to set up and test access to an EFS file system with an AWS EC2 instance. What is AWS EFS? Amazon Elastic File System is one of the main file system options on AWS along with Amazon FSx. It provides a cloud-based serverless file storage option for workloads capable of using the Network File System protocol (NFSv4). The service is built for use with Amazon EC2 Linux instances, the Amazon Elastic Container Service (ECS), and the serverless computing platform AWS Lambda. However, the absence of SMB protocol support means that the service is not designed for Microsoft Windows workloads. Amazon EFS also offers automatic storage scaling from gigabytes to petabytes as well as consumption-based pricing, removing much of the need plan upfront for increased capacity. How AWS EFS works with Amazon EC2 and on-premises resources Amazon Elastic File System is primarily accessed from Amazon EC2 Linux instances: This is because once created, an EFS file system can be accessed through a mount target created in an Amazon Virtual Private Cloud (VPC), and it can be mounted on an EC2 instance (in the same VPC) with relative ease. If you want your on-premises servers to connect to an EFS file system, you'll need to connect your on-premise networks to your VPC using Site-to-Site VPN or AWS Direct Connect, which is Amazon's service... --- ### Build 2022: GitHub Copilot will be Free for Open Source Contributors & Students This Summer - Published: 2022-05-25 - Modified: 2024-09-04 - URL: https://petri.com/github-copilot-free-open-source-contributors-students-summer/ - Categories: Developer - Tags: .NET MAUI, Build 2022, GitHub, GitHub Copilot, News - Article Type: News GitHub Copilot, an AI-powered coding assistant that launched in preview last year, will become generally available for all developers this summer. Microsoft has announced that the service will be free for Build 2022 attendees, students, and verified open-source contributors. GitHub Copilot is a pair programming tool developed by Microsoft-owned GitHub in collaboration with OpenAI. The feature helps users by analyzing the context of the file being edited to suggest lines or entire functions within development environments such as Visual Studio. Copilot is powered by the OpenAI Codex model that is trained on natural language and billions of lines of public source code, including GitHub repositories. The intelligent tool learns over time from the existing code, docstrings, comments, and function names to provide more accurate suggestions. The GitHub Copilot is available as an extension for JetBrains IDEs, Visual Studio Code, Neovim, as well as GitHub Codespaces. According to Microsoft, GitHub Copilot is primarily designed for experienced programmers, but new developers can also benefit from it. The tool helps to minimize the time and effort spent on finding solutions related to coding problems on the web. Microsoft has announced that it is working on two new solutions. Copilot Explain is a new research project that describes code in natural language in order to help notice developers. The second solution, called “OpenAI Codex” lets users convert natural language into over a dozen programming languages. Microsoft announces the general availability of . NET MAUI In addition to these developer-focused updates, Microsoft has announced that the... --- ### Build 2022: Microsoft Introduces New Dev Box Cloud PC Service for Developers - Published: 2022-05-24 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-dev-box-cloud-pc-service-developers/ - Categories: Cloud Computing, Windows 365 - Tags: Azure AD, Build 2022, Microsoft Dev Box, News - Article Type: News Microsoft has announced a new custom virtualization solution called “Microsoft Dev Box” at its annual Build developer conference. The new cloud service enables developers to quickly access pre-configured cloud-powered workstations on any device via a web browser. The Redmond giant emphasizes that setting up a new physical machine based on their specific requirements could be time-consuming for developers. With the new Dev Box service, IT administrators will be able to provide new developers with easier access to a standard development environment before working on any project. Microsoft Dev Box is built on the Windows 365 Cloud PC service that was launched last year. It allows developers to access their Dev Boxes on any device (Windows, macOS, iOS, Android) with access to a web browser. This essentially means that developers will be able to set up images, assign team members, and begin coding their projects right away. Microsoft has also launched a new developer portal that allows users to create new Dev Boxes and delete old ones as needed. Additionally, developers can also choose to run tasks in parallel across multiple virtual machines. “Developers can create Dev Boxes to experiment on a proof-of-concept, keep their projects separate, or even parallelize tasks across multiple Dev Boxes to avoid bogging down their primary environment. For devs working on legacy apps, they can maintain Dev Boxes for older versions of an application to quickly create an environment that can reproduce and diagnose critical customer issues as they emerge,” Microsoft explained. Microsoft Dev Box provides... --- ### Build 2022: Microsoft Boosts Data Analytics and Cybersecurity in New Training & Certifications - Published: 2022-05-24 - Modified: 2022-05-24 - URL: https://petri.com/microsoft-boosts-data-analytics-cybersecurity-training-certifications/ - Categories: Azure, Dynamics 365, Microsoft 365, Power Platform, Security - Tags: Build 2022, Dynamics 365, Microsoft Azure, Microsoft Learn, News, Power Platform, Security - Article Type: News Microsoft has unveiled enhancements coming to the Learn platform during its Build 2022 developer conference. The Redmond giant is expanding its Microsoft Learn portfolio with a bunch of new and updated training and certifications for security experts and IT administrators. Microsoft Learn is a free online training platform that provides interactive and hands-on training sessions for popular Microsoft products and services. It helps users to become proficient in specific technical skills and technologies that are in demand today, including Microsoft 365, Power Platform, Microsoft Dynamics, Microsoft Azure, and much more. Microsoft Learn Platform adds new data analytics certifications & cybersecurity training These training and certification programs are designed for IT professionals, cybersecurity experts, and developers who want to gain new skills or brush up on existing ones. “The Microsoft Learn training and certifications portfolio has been enhanced with new and updated training and certifications to offer a wide range of benefits for users, ranging from exam prep to cybersecurity training to data analytics to role-playing real-world tech issues,” the company explained. Microsoft noted that the additions and updates to the Learn portfolio include: Microsoft Certified: Azure Enterprise Data Analyst Associate Microsoft 365 Certified: Exchange Online Support Engineer Specialty Microsoft Certified: Cybersecurity Architect ExpertPower Automate RPA (robotic process automation) Developer AssociateMicrosoft Certified: Customer Data Platform SecurityMicrosoft Certification RenewalMicrosoft Exam Readiness ZoneMicrosoft Learn Cloud Games It is important that the Microsoft Exam Readiness Zone and Microsoft Learn Cloud Games are now generally available for everyone. However, all the other newly announced training... --- ### Build 2022: Microsoft Power Pages Now Lets Businesses Create Secure & Modern Websites - Published: 2022-05-24 - Modified: 2022-05-24 - URL: https://petri.com/microsoft-power-pages-now-lets-businesses-create-secure-modern-websites/ - Categories: Power Apps, Power Platform - Tags: Build 2022, News, power apps, Power Platforn - Article Type: News Microsoft has announced that it is rebranding its Power Apps portals as Power Pages. The company is also unveiled some new capabilities for its Power Platform that should help developers quickly build modern and secure solutions.   Microsoft Power Pages is a platform for creating, configuring, and publishing business-centric web pages & apps to engage clients and partners. The Power Pages Design studio allows developers to design their websites from scratch with text, images, videos, and business data forms and lists for desktop and mobile devices. Moreover, some ready-to-use Power Pages business solution templates are available for scenarios such as managing registration, scheduling, and application submission. Next up, Microsoft is introducing a Learn hub in public preview that provides step-by-step guides, videos, tutorials, and for developers. Microsoft Power Pages also brings new integrations with Azure DevOps, GitHub, and Visual Studio.   Microsoft highlighted that it is also possible for businesses to use role-based access controls and Azure to secure their websites. Lastly, the Microsoft Dataverse platform now helps users securely collect and share sensitive information with site visitors.   Power Apps Express design tool enables quick conversations  In addition to Power Pages, Microsoft is adding a new “Express design” tool in Power Apps. The new AI-powered feature allows users to automatically convert images, PDF documents, PowerPoint presentations, and screenshots into low-code Power apps. This means that users will be able to scan any of these inputs and generate a working application with a backend data scheme.   Power Virtual Agents 2. 0 can now build... --- ### Build 2022: Windows 11 to Add Support for Third-Party Widgets Later This Year - Published: 2022-05-24 - Modified: 2022-05-25 - URL: https://petri.com/windows-11-add-support-third-party-widgets/ - Categories: Developer, Windows 11 - Tags: Build 2022, News, Windows 11 - Article Type: News Microsoft kicks off its Build 2022 developer conference today, and Microsoft’s Chief Product Officer Panos Panay announced several new features and developer-themed updates coming to Windows 11. Following some recent leaks, the company is finally planning to add support for third-party widgets to Windows 11 later this year. Currently, Windows 11 does not support third-party widgets, and the existing widgets are limited to Microsoft's own services, such as OneDrive photos, weather, sports, and Microsoft To Do. With this release, users will be able to add third-party widgets to the Widgets Panel on Windows 11 PCs. “Widgets in Windows 11 provide a fresh, glanceable and useful view into app content for users. Beginning later this year, developers will be able to start building Widgets as companion experiences for Win32 and progressive web apps (PWA) on Windows 11, powered by the Adaptive Cards platform,” wrote Panos Panay.   Windows Subsystem for Linux is now available on the Microsoft Store for Windows 11  In addition to third-party widgets, Microsoft has announced a couple of enhancements for Windows developer tools. First up, the company has released a preview version of the Windows Subsystem for Linux (WSL) on the Microsoft Store. It enables Windows 11 users to get new features and updates more frequently.   Windows Subsystem for Android runs on Android 12. 1 The Redmond giant has also released a major update to the Windows Subsystem for Android (WSA) to Insiders in the Dev Channel. The Windows Subsystem for Android now runs on Android 12. 1. The latest... --- ### Build 2022: Microsoft Teams Gets Live Share Feature and New Collaborative Apps - Published: 2022-05-24 - Modified: 2022-05-24 - URL: https://petri.com/microsoft-teams-live-share-feature-collaborative-apps/ - Categories: Microsoft 365, Microsoft Teams - Tags: Build 2022, Microsoft 365, Microsoft Teams, News, Outlook.com - Article Type: News At its Build 2022 developer conference today, Microsoft announced new tools for developers to create collaboration solutions for Teams and Microsoft 365. The Redmond giant has also unveiled a new Live Share feature for Microsoft Teams apps.   Based on Fluid Framework, the new Live Share experience enables meeting attendees to create, edit, annotate, interact, zoom in and out, and collaborate on shared content with colleagues. This feature is designed to support a variety of collaboration scenarios such as engineering reviews, video workflow reviews, and game-based programming lessons.   Microsoft has released Teams SDK extensions in preview to help developers and independent software vendors (ISVs) add the new Live Share capabilities to their apps.   New Approvals APIs In addition to the new Live Share feature, Microsoft has announced the general availability of Teams JavaScript SDK 2. 0 and App manifest version 1. 13. It should help developers to extend their Teams app’s personal tabs and search-based message extensions to other Microsoft 365 apps such as Outlook and Office. com.   There are also new Create, Read, Update, Delete (CRUD) Approvals APIs that will be available in preview this summer. The new APIs will enable developers to integrate the Approvals functionality into their applications.   Microsoft Power Apps add collaboration controls  Next up, Microsoft plans to add support for collaboration controls to its Power apps this summer. This means that developers will now be able to integrate Teams meetings, chat, files, tasks, as well as Approvals directly into their Power Apps.   The firm is also introducing several new... --- ### Amazon EC2 Now Supports NitroTPM and UEFI Secure Boot > Amazon Elastic Compute Cloud (EC2) instances now support NitroTPM, a virtual TPM 2.0-compliant TPM module based on AWS Nitro System, as well as UEFI Secure Boot in all AWS Regions outside of China. - Published: 2022-05-24 - Modified: 2023-02-03 - URL: https://petri.com/amazon-ec2-nitrotpm-uefi-secure-boot-support/ - Categories: Amazon Web Services, Cloud Computing - Tags: EC2, NitroTPM, UEFI Secure Boot - Article Type: News Security ranks pretty high on everyone’s lists nowadays and that’s definitely true for Amazon Web Services as well. Earlier this month, Amazon announced that Amazon EC2 instances now support both NitroTPM and UEFI Secure Boot. The announcement was originally made back in December during Amazon's re:Invent 2021 event, where the company detailed new innovations coming to the AWS Nitro platform. This is the underlying platform that will power the next generation of AWS EC2 instances, and the NitroTPM security and compatibility feature will be a big part of it. What is Amazon's NitroTPM technology? Trusted Platform Module (TPM) technology is designed to provide hardware-based security for PCs and virtual machines. It does so with a secure crypto-processor that performs various cryptographic operations on a motherboard. NitroTPM is a virtual TPM 2. 0-compliant TPM module for your Amazon Elastic Compute Cloud (Amazon EC2) instances. "You can use NitroTPM to store secrets, such as disk encryption keys or SSH keys, outside of the EC2 instance memory, protecting them from applications running on the instance," Amazon explained. For instance, you can use NitroTPM to store encryption keys for BitLocker on Microsoft Windows. Windows recognizes Amazon's NitroTPM module NitroTPM is supported on all Nitro-based Intel and AMD EC2 instance types that support UEFI boot mode. Graviton1, Graviton2, Xen-based, Mac, and bare-metal instances are not supported. How NitroTPM improves EC2 security with "Measured Boot" The new UEFI Secure Boot support builds on EC2's existing secure boot process by providing additional defense mechanisms to secure software from threats... --- ### Microsoft Defender for Office 365 to Get Preset Security Policy Improvements In June - Published: 2022-05-23 - Modified: 2022-05-23 - URL: https://petri.com/microsoft-defender-for-office-365-preset-security-policy-improvements/ - Categories: Compliance, Security - Tags: Microsoft Defender for Office 365, News, Security - Article Type: News Microsoft has announced some improvements coming to the preset security policies in Defender for Office 365 solution this summer. These policy changes should help IT admins use Microsoft's recommended settings. According to Microsoft, the preset security policies enable organizations to apply all recommended settings to Office 365 users. The list includes Strict protection, Standard protection, Custom security policies, and Built-in protection (with the same order of precedence). “Preset security policies use the corresponding policies from the various protection features in Exchange Online Protection (EOP) and Microsoft Defender for Office 365. These policies are created after you assign the Standard protection or Strict protection preset security policies to users. You can't modify the settings in these policies,” Microsoft explained in a support document. Currently, IT administrators need to apply Standard and Strict protections to individual users in an organization with an active EOP and P1/P2 subscription. There is also the ability to disable the preset security policies for select users (if needed), but it is not recommended. IT Admins will soon be able to apply preset security policies to all users With this new release, IT Pros will be able to apply these security policies either to all end-users or to a customized list of targeted users. Microsoft says that this change will help to protect users from impersonation attacks. “You’ll no longer need to disable preset security policies and create custom anti-phishing policies when all you want is Microsoft’s recommended settings and impersonation protection,” Microsoft noted. Microsoft says that IT... --- ### How to Use PowerShell For Loop, While Loop, and Other Loops > In this article, you will learn how to use the PowerShell For loop, While loop, and other loops. I explain how they are constructed, and you can define conditions to enter or exit a loop. - Published: 2022-05-23 - Modified: 2024-03-13 - URL: https://petri.com/how-to-use-powershell-for-while-loops/ - Categories: PowerShell - Tags: Most Popular, PowerShell, Powershell Loops - Article Type: How To In this article, we will review PowerShell For loops, While loops, Do-While loops, and Do-Until loops. I'll explain how PowerShell loops are constructed and how to define conditions to enter or exit a loop. PowerShell For loop The For loop is а counting loop, and it’s mostly used when you need to repeat a task a certain number of times, process a collection, or specify items by an index number. It repeats while the test condition evaluates to true and exits on false. PowerShell For Loop The syntax for a For loop is the following: for (; ; ) { } The block executes a command or a set of commands before the loop begins. Usually, this is the place where you initialize the counting variable. In the section, you evaluate the conditional test. If it’s true, you are entering the loop and executing the commands in the script block. Then, the condition is evaluated again until it results in false. The placeholder executes one or more commands, separated by commas on each loop iteration. Usually, it is used to modify the counting variable. If you would like to repeat a specific operation five times, use the following example: for ($var = 1; $var -le 5; $var++) { Write-Host The value of Var is: $var } Write-Host End of for loop. A PowerShell loop repeating the same operation five times Here, the variable is initialized with... --- ### Microsoft Detects 254% Spike in XorDDoS Attacks on Linux Servers - Published: 2022-05-23 - Modified: 2022-05-23 - URL: https://petri.com/microsoft-detects-spike-xorddos-attacks-linux-servers/ - Categories: Security - Tags: linux, Malware, News, XorDDoS - Article Type: News Microsoft has published an advisory about a distributed denial-of-service (DDoS) malware called XorDdos that is targeting Linux endpoints and servers. The company has warned that its security researchers have detected a 254 percent surge in the malware's activity during the last six months. The security research group MalwareMustDie first discovered the XorDDoS malware back in 2014. The Linux botnet enables the attackers to scan the network for unprotected Linux-based servers. The primary goal is to find the matching admin credentials on Secure Shell (SSH) servers and then use root privileges to deploy the malware on a Linux machine. Once done, the botnet lets the attacker gain full control over the target device. More recently, Microsoft threat researchers noticed a massive increase in the XorDDoS malware attacks. The company highlights that the Linux botnet utilizes its kernel rootkit component to hide its ports and processes from malware detection tools. The XorDdos malware uses numerous persistence mechanisms to target different Linux distributions such as ARM, x86, and x64. “Its evasion capabilities include obfuscating the malware’s activities, evading rule-based detection mechanisms and hash-based malicious file lookup, as well as using anti-forensic techniques to break process tree-based analysis. We observed in recent campaigns that XorDdos hides malicious activities from analysis by overwriting sensitive files with a null byte,” the Microsoft 365 Defender Research Team. Microsoft provides mitigation strategies to protect against Linux threats Microsoft has provided a couple of mitigation strategies to help IT Pros protect their organizations against the emerging XorDdos malware attacks... . --- ### CISA Warns Federal Agencies to Mitigate Critical VMware Vulnerabilities by May 23 - Published: 2022-05-20 - Modified: 2022-05-20 - URL: https://petri.com/cisa-warns-federal-agencies-mitigate-vmware-vulnerabilities/ - Categories: Security - Tags: News, Security, vmware - Article Type: News The Cybersecurity and Infrastructure Security Agency (CISA) has warned US government agencies to immediately patch critical vulnerabilities in VMware products. The security authority instructed all federal agencies to remove the actively exploited VMware offerings from their networks if patches can’t be applied by May 23, 2022. VMware recently disclosed multiple security flaws in five different services that could lead to remote code execution (RCE) and privilege escalation on affected systems. Tracked as CVE-2022-22954 and CVE-2022-22960, the vulnerabilities impact VMware Identity Manager, Workspace ONE Access, vRealize Suite Lifecycle Manager, VMware vRealize Automation, and VMware Cloud Foundation. “These vulnerabilities pose an unacceptable risk to federal network security,” explained CISA Director Jen Easterly. “CISA has issued this Emergency Directive to ensure that federal civilian agencies take urgent action to protect their networks. We also strongly urge every organization – large and small – to follow the federal government’s lead and take similar steps to safeguard their networks. ” CISA has advised all government agencies to determine the number of vulnerable VMware products in their environments and mitigate them by 5 PM EDT, May 23, 2022. However, if patching isn’t possible, it has told IT admins to remove all the unpatched products from their networks by the same deadline. CISA recommends that agencies may reconnect these products after applying all the security updates. CISA details mitigation steps for some affected products It is important to note that WMware is widely used by US government agencies and the CISA incident response team is helping a "large... --- ### Microsoft Releases Out-Of-Band Patches to Fix Windows AD Authentication Issues - Published: 2022-05-20 - Modified: 2022-05-20 - URL: https://petri.com/microsoft-out-of-band-patches-windows-ad-authentication-issues/ - Categories: Active Directory (AD), Windows Server - Tags: Authentication, Domain Controller, News, Patch Tuesday, Windows Server - Article Type: News Microsoft released new out-of-band (OOB) updates yesterday to address Active Directory (AD) authentication problems caused by the May 2022 Patch Tuesday updates. These emergency patches also include a fix for the bug that previously prevented the installation of apps from the Microsoft Store. The May 2022 security updates that shipped earlier this month included fixes for privilege escalation flaws in Windows Kerbose and the Active Directory Domain Service. At the same time, this release also caused AD authentication failures on Windows devices used as domain controllers. Microsoft confirmed last week that the Windows AD authentication issue was caused by a certificate mapping bug and provided a workaround to fix it. CISA has recently warned IT Admins against installing this month’s Patch Tuesday updates on domain controllers. The latest round of Patch Tuesday updates also introduced a bug that prevents users from installing or opening Microsoft Store apps on some Windows PCs. Microsoft noted that this problem only impacts devices with Control-flow Enforcement Technology (CET) processors, including select AMD CPUs and Intel Core processors or later. Download out-of-band-updates to fix Patch Tuesday Windows AD Authentication errors Microsoft noted that these out-of-band updates are available to download on Microsoft’s update catalog. Moreover, these patches can also be manually loaded into Windows Server Update Services (WSUS) and Microsoft Endpoint Configuration Manager. OSArticleMicrosoft Update CatalogWindows Server 2022KB5015013DownloadWindows Server 20H2KB5015020DownloadWindows Server 2019KB5015018DownloadWindows Server 2016KB5015019DownloadCumulative updates OSArticleMicrosoft Update CatalogWindows Server 2012 R2KB5014986DownloadWindows Server 2012KB5014991DownloadWindows Server 2008 R2 SP1KB5014987DownloadWindows Server 2008 SP2KB5014990DownloadStandalone updates “If you are using... --- ### Microsoft Revises Restrictive Cloud Licensing Policies to Avoid EU Antitrust Probe - Published: 2022-05-19 - Modified: 2022-05-19 - URL: https://petri.com/microsoft-revises-restrictive-cloud-licensing-policies/ - Categories: Azure, Microsoft Azure - Tags: Cloud, Microsoft, Microsoft Azure, News - Article Type: News Microsoft has announced new initiatives to decrease the licensing costs and restrictions for small cloud vendors. The Redmond giant plans to make some changes to its restrictive cloud-licensing policies in response to complaints from rival European cloud vendors. Back in 2019, Microsoft changed the terms of its outsourcing license agreement that increased the cost of running Windows Server, Windows, or Office on other cloud platforms (such as Amazon Web Services (AWS) or Google Cloud), and the smaller EU cloud providers competing with these giants. Microsoft President Brad Smith held a series of meetings with European providers over the past few weeks. The feedback from one of the CEOs suggested that customers are pretty unhappy with the new licensing rules. “Especially as the largest tech companies have invested more in their infrastructure and services, the biggest challenge has been for smaller cloud providers, like those headquartered in Europe that have expressed concerns about our licensing practices and their ability to compete. While these companies have been growing, it has been at a rate lower than the market as a whole,” explained Microsoft President Brad Smith. Microsoft makes changes to its restrictive cloud-licensing policies First up, cloud providers will now be able to offer Microsoft 365 apps and Windows as a hosted desktop service running on their cloud infrastructure. Microsoft will also let cloud providers provide this service to customers who wish to buy on-premises software from its partners to host their offerings on the cloud. In addition to this, the company... --- ### Microsoft Says Windows 11 is Now Generally Available for All Compatible Devices - Published: 2022-05-19 - Modified: 2022-05-19 - URL: https://petri.com/microsoft-windows-11-generally-available-compatible-devices/ - Categories: Windows 11 - Tags: Broad Deployment, News, Windows 11, Windows 11 21H2 - Article Type: News Microsoft has quietly updated the Windows Health Dashboard page to mention that Windows 11 is now ready for broad deployment in business environments. This essentially means that all Windows 10 users with PCs that meet the minimum requirements for Windows 11 should be able to install it via Windows Update (via Neowin). According to Microsoft, Windows 11 is available as an optional update for users running Windows 10 version 2004 or newer. However, it is important to note that some protection blocks may still be in place on select Windows machines. Microsoft recommends customers to use the PC Health Check app in order to determine the eligibility of their device. “If you are using Windows 10, you can determine if your device is eligible for the upgrade using the PC Health Check app or checking Windows 11 specs, features, and computer requirements," Microsoft explained. "We encourage the use of a Microsoft Account (MSA) to get the most out of your Windows 11 experience. ” Microsoft released Windows 11 back in October 2021, which is considered the most visually appealing OS with several redesigned apps. It brings a bunch of new features such as Microsoft Teams integration, the new Start menu, a Widgets pane, support for Android apps, and much more. Meanwhile, Windows 11 is also getting some much-anticipated features, including File Explorer Tabs and a visual refresh for Windows inbox apps. Microsoft has started testing a new desktop search experience in the latest Windows Insider builds. Windows 11 22H2 to reportedly... --- ### Cloud Conversations – Ståle Hansen on Digital Wellbeing and Viva Explorers > Ståle Hansen is CEO & Principal Cloud Architect at Cloudway, a Public Speaker, and a Microsoft MVP. In this episode, Ståle joins Kat and Peter to discuss digital wellbeing, Microsoft Viva & the Viva Explorers, his career journey & the changing face of technology, and Office 365 for IT Pros. - Published: 2022-05-19 - Modified: 2023-01-20 - URL: https://petri.com/cloud-conversations-stale-hansen-digital-wellbeing-viva-explorers/ - Categories: Video - Tags: Cloud Conversations, Viva - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Ståle Hansen on Digital Wellbeing and Viva Explorers Ståle Hansen is CEO & Principal Cloud Architect at Cloudway, a Public Speaker, and a Microsoft MVP. In this episode, Ståle joins Kat and Peter to discuss: Digital Wellbeing Microsoft Viva & the Viva Explorers His career journey & the changing face of technology Office 365 for IT Pros Community More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Microsoft to Integrate Citrix HDX Technology into Windows 365 Cloud PCs - Published: 2022-05-18 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-integrate-citrix-hdx-windows-365-cloud-pcs/ - Categories: Windows 365 - Tags: News, Windows 365 - Article Type: News Microsoft has announced a new partnership with Citrix, a Florida-based virtualization and cloud computing company. The Redmond giant has teamed up with Citrix to bring new high-definition user experience (HDX) technology integrations into its Windows 365 Cloud PC service. For those unfamiliar, Citrix HDX technology is a set of capabilities that help improve the remote Windows 10 or Windows 11 desktop experience on any device or network. The goal is to optimize applications, decrease bandwidth usage, as well as enhance collaboration among remote teams. https://www. youtube. com/watch? v=Q4-0_rW_zaM The latest partnership builds on Microsoft’s existing cloud-centric alliance with Citrix to help organizations accelerate their move to the cloud. Under the terms of this new agreement, both companies are launching a new solution that should enable IT admins to provide end-users with an improved work experience on Windows 365 Cloud PCs. “Expanding that historical relationship, we are excited to announce today that a new value-add solution is in development that integrates Citrix high-definition user experience (HDX) technology with Windows 365. This integration will empower a new generation of Windows 365 and Citrix users to access their persistent, cloud-hosted Windows 11 or Windows 10 desktops from anywhere, on any device,” said Scott Manchester, director of Windows 365 program management. Citrix to bring HDX technologies to Windows 365 later this year Microsoft noted that this new offering should allow employees to seamlessly switch to Citrix clients via its Windows 365 Cloud PC service. IT administrators will also be able to implement granular policy controls to better... --- ### Microsoft's New One Outlook Client Now Available for Testers - Published: 2022-05-18 - Modified: 2022-05-18 - URL: https://petri.com/microsofts-one-outlook-client-available-testers/ - Categories: Microsoft 365 - Tags: News, Office Insider, One Outlook, Outlook, Outlook for Windows - Article Type: News Following a series of leaks, Microsoft has finally started rolling out its new One Outlook app (Project Monarch) to Office Insiders in the Beta channel. The revamped app can be turned on and off by clicking the toggle button at the top right corner of the existing Outlook for Windows client, though it only supports work and school accounts. The new Outlook client is visually identical to the web version of the app, and it brings a couple of new intelligent features for Windows users. “Today, we are taking our next step by sharing a preview of the new Outlook for Windows, designed to bring consistency across our Windows and web codebases to help you be more productive and stay in control of your inbox,” the Office Insider team explained. First up, the redesigned version of Outlook brings support for Microsoft Loop components. The feature allows users to collaborate in real-time on tables, notes, and tasks that can be shared across Microsoft Teams chats and Outlook emails. The new Outlook client also lets users quickly attach files and documents stored in the cloud using @mentions. Microsoft has added a new AI-powered feature that automatically reminds users about missed messages that need attention. These message reminders will appear at the top of the inbox until the user chooses to dismiss them. The list of other enhancements coming to Outlook for Windows includes a new Outlook RSVP feature, pinning support, a My Day pane, as well as a Calendar board view. New... --- ### Microsoft Teams is Now Available in the Microsoft Store - Published: 2022-05-17 - Modified: 2022-05-18 - URL: https://petri.com/microsoft-teams-available-microsoft-store-windows-pcs/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Store, Microsoft Teams, News - Article Type: News Microsoft continues to bring its popular apps to the Windows 10 and Windows 11 Microsoft Store. The Redmond giant has announced that Microsoft Teams is finally available on the Microsoft Store, and this should make it more convenient for Windows users to download and install the collaboration tool (via Thurrott. com). The Microsoft Store listing indicates that this new version of Teams is available for both Windows 10 and 11 PCs, but its functionality is slightly different on both platforms. On Windows 11, this new store version of the app only supports work and school because the latest operating system comes with a built-in Teams chat client for consumers. However, the Microsoft Teams app allows Windows 10 users to log in with their work, school, or personal accounts. “Whether you’re working with teammates on a project or planning a weekend activity with loved ones, Microsoft Teams helps bring people together so that they can get things done. It’s the only app that has chats, meetings, files, tasks, and calendars in one place—so you can easily connect with people and bring plans to life. Work with teammates via secure meetings, document collaboration, and built-in cloud storage,” the company explained on the Microsoft Store. More Microsoft apps available on the Store It is important to note that some of the biggest Microsoft apps such as Edge, Teams, Visual Studio, and Visual Studio Code are now available on the Microsoft Store. However, this isn’t the first time that the Teams desktop app landed on... --- ### CISA Warns Windows Admins Against Applying May Patch Tuesday Updates on Domain Controllers - Published: 2022-05-17 - Modified: 2022-05-17 - URL: https://petri.com/cisa-warns-may-patch-tuesday-updates-domain-controllers/ - Categories: Security, Windows Server - Tags: Authentication, News, Patch Tuesday, Security, Vulnerability, Windows, Windows Server - Article Type: News The US Cybersecurity and Infrastructure Security Agency (CISA) has temporarily removed the security flaw CVE-2022-26925 from its Known Exploited Vulnerability Catalog. It has warned that IT admins should not install the May 2021 Patch Tuesday updates on Windows Servers used as domain controllers due to the risk of authentication failures. The security advisory comes amid recent reports of several policies and services failing after installing this month’s security updates on Windows domain controllers. Last week, Microsoft confirmed that these issues are caused by the security patches released to address two "high severity" privilege escalation vulnerabilities (CVE-2022-26931 and CVE-2022-26923) in Windows Kerberos and Active Directory Domain Services. “After installing May 10, 2022 rollup update on domain controllers, organizations might experience authentication failures on the server or client for services, such as Network Policy Server (NPS), Routing and Remote access Service (RRAS), Radius, Extensible Authentication Protocol (EAP), and Protected Extensible Authentication Protocol (PEAP),” CISA explained. Microsoft has reported the authentication problems to CISA, which involve how the domain controller handles the mapping of certificates to computer accounts. The company noted that the update only triggers issues on Windows servers acting as a domain controller. However, Microsoft advises IT admins to install the May 2020 updates on non-domain controller Windows Servers and client Windows devices. Microsoft suggests a workaround to fix Azure AD authentication bug on domain controllers Microsoft is actively investigating the Azure AD authentication issues, and a permanent fix should be available soon. In its advisory, the firm recommends the Domain... --- ### How to Access Active Directory > In this guide, you'll learn how to open Active Directory Users and Computers (ADUC), the Active Directory Administrative Center (ADAC), and there's also Active Directory Sites and Services for more complex configuration options. - Published: 2022-05-17 - Modified: 2024-06-20 - URL: https://petri.com/how-to-access-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Active Directory Administrative Center, Active Directory Sites and Services, Active Directory Users and Computers, AD - Article Type: How To If you work in IT, you’ve probably taken a good look at Microsoft Active Directory. But to set up and manage Active Directory (AD), you need access to the AD administration tools. In this guide, you'll learn how to open the three most important AD admin tools, which are Active Directory Users and Computers (ADUC), the Active Directory Administrative Center (ADAC), and there's also Active Directory Sites and Services for more complex configuration options. How to open Active Directory Users and Computers Let's start with the most popular tool on a domain controller (DC), Active Directory Users and Computers. To open Active Directory Users and Computers, log into a domain controller and use one of the following options: Click Start > Run > type dsa. msc in the Run dialog box > Enter. Click Start > Administrative Tools > Active Directory Users and Computers. Click Start > Server Manager > Tools in Server Manager > Active Directory Users and Computers For more details on accessing Active Directory and other ways to access the admin tools, keep reading! What tools can I use to configure and manage Active Directory? Before we look at where you can open the tools, I'll describe the three main graphical user interface tools for managing AD and what you can do with them! Active Directory Administrative Center The Active Directory Administrative Center, which is relatively new to the arsenal of tools to access AD, was first released with Windows Server 2012. It was introduced to provide a graphical user interface (GUI) for some specialized features to... --- ### IT Admins Report Issues With Microsoft Store Version of Quick Assist App - Published: 2022-05-16 - Modified: 2022-05-16 - URL: https://petri.com/it-admins-report-issues-microsoft-store-quick-assist/ - Categories: Windows 10, Windows 11 - Tags: Microsoft Store, News, Windows 10, Windows 11 - Article Type: News Last month, Microsoft announced its plans to move the Quick Assist app to the Microsoft Store. The Redmond giant is dropping support for the existing built-in Quick Assist app for Windows 10 and Windows 11 on May 23, 2022. For those unfamiliar, Quick Assist is a remote assistance tool available for Windows PCs. The app allows IT teams to view or control a remote Windows device over a network or internet connection to troubleshoot technical issues and provide instructions to fix them. According to the reports on Microsoft’s Tech Community post (via OnMSFT), Windows admins and users are currently experiencing numerous issues with the new Store version of Quick Assist. First of all, the installation of the new app requires local administrator privileges. The new Quick Assist app also installs next to the old version on Windows machines, making it difficult for users to choose the correct app from the search results. https://twitter. com/MWaltniel/status/1523955134098771968? ref_src=twsrc%5Etfw Microsoft provides workarounds to fix issues with the new Quick Assist app Fortunately, Microsoft is aware of the Quick Assist installation issues, and it has also offered some workarounds to help Windows Admins fix them. For instance, Microsoft’s Nathan Pfeifer noted that the Quick Assist app is also available as an offline version for enterprise customers via the Microsoft Store for Business. “Understand the frustration of pushing a user to download the Store app to get a remote assistance app. The nature of using remote assistance is that one of the parties is stuck and needs help... --- ### Microsoft Teams Adds Viva Goals Module Powered By Ally.io OKR - Published: 2022-05-16 - Modified: 2022-05-16 - URL: https://petri.com/microsoft-teams-adds-viva-goals-module/ - Categories: Microsoft 365, Viva - Tags: Microsoft 365, Microsoft Viva, News, Viva Goals - Article Type: News Microsoft announced this morning Viva Goals, a new Teams module that helps employees keep track of their progress on key business goals. Viva Goals is the result of Microsoft's acquisition of Ally. io back in October 2021, a Seattle-based start-up specializing in an approach called objectives and key results (OKR). OKR is a performance management tool that enables organizations to set, communicate and monitor measurable goals and results. The basic idea behind this new integration is to give employees more visibility into the company’s strategic goals and daily workflows. Viva Goals is launching in private preview in Microsoft Teams starting today, and it will become generally available for all Microsoft Viva suite subscribers later this year. Up until now, the Microsoft Viva service was available in four modules: Viva Connections, Viva Insights, Viva Learning, and Viva Topics. “Viva Goals aligns teams to your organization’s strategic priorities and unites them around the mission and purpose. It helps provide clarity on employees’ work and how that work makes an impact on the business’s most important priorities. With that alignment in place, teams then can focus on doing the work, making sound decisions, and driving the desired results for the business,” wrote Vetri Vellore, CVP for Microsoft Viva Goals. Viva Goals aligns work processes with business outcomes Employees can use Viva Goals to get automated reminders and feedback data to track their performance. Moreover, employees can access a Viva Goals dashboard to share progress updates and OKRs with their team leads, managers, and colleagues... . --- ### Microsoft Edge Canary Adds Free Built-In VPN for Select Insiders - Published: 2022-05-13 - Modified: 2022-05-13 - URL: https://petri.com/microsoft-edge-free-built-in-vpn-canary-insiders/ - Categories: Microsoft Edge - Tags: Cloudflare, Microsoft Edge, News, Virtual Private Network, VPN - Article Type: News Microsoft has announced that it’s adding a new built-in virtual private network (VPN) service to its Edge browser. This VPN feature, called “Microsoft Edge Secure Network, is now live in the latest Canary builds for select Insiders. It enables users to enhance security & privacy by preventing online tracking and keeping their location secure when browsing the Internet. “Secure Network helps you protect your information by masking your device's IP address, encrypting your data, and routing it through a secure network (powered by Cloudflare) to a server that is geographically co-located so it’s harder for malicious actors to see your true location and what you’re doing,” the Edge Insider team explained yesterday. Microsoft Edge Secure Network gives users just 1GB of free bandwidth per month, so it's best to enable it when sharing sensitive or personal information online. The feature requires users to be signed into Edge with their Microsoft account in order to keep track of their monthly data usage. Microsoft promises that data collected by the Cloudflare service will be deleted every 25 hours. How to enable the built-in VPN tool in Microsoft Edge To try out the new Secure Network feature, Microsoft Edge Insiders will simply need to install the latest Canary build. Now, users will select Settings and more and click the Secure Network option. Microsoft Edge will prompt them to sign in or create a Microsoft Account. Once logged in, users will see a shield icon in the browser’s toolbar. The feature will be turned... --- ### Microsoft's Azure AD Conditional Access Service Can Now Require Reauthentication - Published: 2022-05-13 - Modified: 2022-05-13 - URL: https://petri.com/microsofts-azure-ad-conditional-access-service-can-now-require-reauthentication/ - Categories: Microsoft Azure, Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory Conditional Access, Azure AD, conditional access, News - Article Type: News Microsoft has added re-authentication support in Azure AD Conditional Access. The company says that it’s one of the top-requested features from customers, who will now be able to configure policies to require authentication by end-users. Microsoft defines sign-in frequency as the time period before a user is required to log in again when accessing a particular resource. Currently, the user sign-in frequency is set to a “rolling window of 90 days” by default for Azure Active Directory (Azure AD) customers. The new Conditional Access reauthentication policies feature enables IT Admins to change the sign-in frequency of applications that use the OAUTH 2 or OIDC protocols. It is possible for an organization to require user authentication every time to access an app, but this setting is only appropriate for scenarios like user risk, session risk, and Microsoft Intune device enrollments. Microsoft believes that frequent sign-ins increase the risks of phishing attacks or credential theft and it should only be required for "high-risk scenarios. " “We’ve gotten a ton of feedback from customers who want extra protection during scenarios where people may have wandered away from their desks, lent their devices to their kids, or if a device became infected with token stealing malware,” said Ricky Pullan, PM for Intelligent Access Team. “With this new capability, you can explicitly re-verify identity, device, and any other Conditional Access conditions for high-risk scenarios. ” Microsoft to add Conditional Access reauthentication policies support for more scenarios This capability is available for several Office 365 desktop and mobile... --- ### Microsoft Confirms May 2022 Patch Tuesday Updates Cause AD Authentication Issues - Published: 2022-05-12 - Modified: 2022-05-12 - URL: https://petri.com/microsoft-may-2022-patch-tuesday-updates-ad-authentication-issues/ - Categories: Windows Server - Tags: Authentication, Domain Controller, News, Windows - Article Type: News Microsoft has acknowledged a new issue that causes authentication failures on the server or client machines for some Windows services. The company has confirmed on the Windows Health Dashboard that it’s actively investigating the bug, and a permanent fix would be available in the upcoming release. The first bug reports started to surface earlier this week, with several Windows Admins reporting that some Network Policy Server (NPS) policies failed to work after installing the May 2022 Patch Tuesday Updates. NPS policies allow IT Pros to create org-wide network access policies for connection request authentication. The Reddit reports suggest that the authentication fails with the following error message: "Authentication failed due to a user credentials mismatch. Either the user name provided does not map to an existing account or the password was incorrect. " Microsoft confirmed that this issue affects Windows Servers machines used as domain controllers. However, it doesn’t impact non-domain controller Windows Servers and client Windows devices. “After installing updates released May 10, 2022 on your domain controllers, you might see authentication failures on the server or client for services such as Network Policy Server (NPS), Routing and Remote access Service (RRAS), Radius, Extensible Authentication Protocol (EAP), and Protected Extensible Authentication Protocol (PEAP). An issue has been found related to how the mapping of certificates to machine accounts is being handled by the domain controller,” the company explained on the Windows Health Dashboard. Microsoft provides a workaround to fix AD authentication issues Microsoft has also provided a few workarounds to... --- ### What is Datadog – The Ultimate Guide - Published: 2022-05-12 - Modified: 2024-04-29 - URL: https://petri.com/what-is-datadog/ - Categories: DevOps - Tags: Datadog, DevOps - Article Type: How To Datadog is a SaaS-based monitoring platform for cloud applications. In this guide, we’re going to detail how IT pros and DevOps teams can get started with Datadog and make the best use of this observability platform. What is Datadog? Datadog is a tool that allows you to monitor cloud infrastructure, Windows and Linux hosts, system processes, serverless functions, and cloud-based applications. It can be used to visualize data, explore metrics, manage logs, and perform various other tasks. What are the main use cases for Datadog? Datadog allows you to collect metrics and gather real-time in-depth insights about your IT infrastructure. Here are the main use cases for the app: IT pros can create, edit, and manage alerts and notifications about their IT infrastructure. Organizations can use Application Performance Monitoring (APM) to reduce latency and eliminate errors They can test production environments and performance. They can set up multiple integrations that gather metrics, traces, and logs to send data to the platform. They can use it as a security platform to detect threats and misconfiguration of applications in their infrastructure. If you use Jenkins, which is an automation server for deploying software, the app can help to visualize Jenkins job metrics and pipeline execution. What technologies does Datadog support? There are various technologies that Datadog supports such as Amazon Web Services (AWS), Azure, Google Cloud, Kubernetes, Red Hat OpenShift, and Pivotal Platform. Let's quickly go through how these technologies integrate with Datadog: The app collects accurate system information, metrics, and... --- ### Cloud Conversations – Jessica White on Allyship, Mentoring, & Organizing a Conference > Jessica White is a Technical Architect, Speaker, and a Microsoft MVP. In this episode, Jessica joins Kat and Peter to discuss the DDD East Midlands conference, allyship and mentoring, Women in tech, living with an invisible disability, Neuroscience, and social learning for children with autism - Published: 2022-05-11 - Modified: 2022-05-11 - URL: https://petri.com/cloud-conversations-episode-49-jessica-white/ - Categories: Video - Tags: Cloud Conversations, Women In Tech - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Jessica White on Allyship, Mentoring, & Organizing a Conference Jessica White is a technical architect, speaker, and a Microsoft MVP. In this episode, Jessica joins Kat and Peter to discuss: The DDD East Midlands ConferenceAllyship and mentoringWomen in techCrohn's disease and living with an invisible disabilityNeuroscience, and social learning for children with autism More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Microsoft Rolls Out Azure AD Verifiable Credentials Service to More Customers - Published: 2022-05-11 - Modified: 2022-05-11 - URL: https://petri.com/microsoft-azure-ad-verifiable-credentials-service/ - Categories: Active Directory (AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft launched a new Azure Active Directory Verifiable Credentials (VC) solution in public preview last year. The company has now announced that it’s expanding this service to all Azure AD customers. Azure AD's Verifiable Credentials solution is a decentralized identity scheme that lets organizations to create cryptographically secure digital attestations to an individual’s identity without storing their personal information. “In short, verifiable credentials are data objects consisting of claims made by the issuer attesting information about a subject. These claims are identified by schema and include the Decentralized ID (DID) issuer and subject. The issuer's DID creates a digital signature as proof that they attest to this information,” the company explained in a support document. https://www. youtube. com/watch? v=W8sltE-COHg According to Microsoft, more than 1,000 enterprise customers have used this solution within the past few months and it can benefit key business scenarios. These include securing the onboarding process of employees, accessing internal and external resources, and much more. Azure Active Directory Verifiable Credentials service gets new capabilities Microsoft has also introduced some new capabilities to its Verifiable Credentials service. First of all, the status check feature is getting World Wide Web Consortium's status property support that lets customers revoke verifiable credentials. Secondly, the firm has added EU regional data processing support for Azure AD VCs. Microsoft also released a new Request Service API that helps customers to create solutions for entities responsible for issuing and verifying the credentials. status check Going forward, Microsoft intends to provide its customers with a new "low-code,... --- ### Microsoft to Ship Some Exchange Server Security Updates in .EXE Packages - Published: 2022-05-11 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-exchange-server-security-updates-exe-packages/ - Categories: Exchange Server - Tags: Exchange Server, Microsoft, News - Article Type: News Microsoft has announced some major changes to the delivery process for security updates (SUs) and hotfixes (HFs) for Exchange Server. Starting with the May 2022 Security Updates, the company is now releasing some Exchange Server SUs and HFs as self-extracting auto-elevating executables. Previously, Microsoft shipped all security updates as Windows Installer patch (. msp) files to Exchange Server customers. However, IT administrators often encountered difficulties while applying these updates due to insufficient permissions during the installation process. As a result, this issue could potentially put an Exchange server "in a bad state. " Auto-Elevation of permissions to install Exchange Server Security Updates Microsoft plans to resolve the issue with the auto-elevation of permissions. This installation method will be available in addition to the existing Windows Installer Patch format. “Installation of . msp files happens in the security context of the account used to install the update. If User Account Control (UAC) is enabled (which we strongly recommend) and you manually install the update by double-clicking the . msp file, the installation process runs in a non-elevated mode, which often results in a bad server state,” the Exchange Server team explained yesterday. "The EXE package is a wrapper for the . msp file that ensures the installation runs with the required permissions. " These new . exe packages will be available to download from the Microsoft Update Catalog. Users will simply need to double-click the . exe file and follow the on-screen instructions to manually install the updates. Once clicked, the installer will automatically check for admin-level permissions before... --- ### Microsoft Releases May 2022 Patch Tuesday Updates - Published: 2022-05-11 - Modified: 2024-11-19 - URL: https://petri.com/may-2022-patch-tuesday-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: News, Patch Tuesday, Windows 10, Windows 11 - Article Type: News Microsoft has just released the May 2022 Patch Tuesday updates, which bring the usual security fixes as well as some notable quality updates on Windows 11. This month, there are no less than 74 new patches to address vulnerabilities in Windows, . NET, Visual Studio, Microsoft Edge, and more. Serious bugs patched in May 2022 Here are the most important security fixes that Microsoft released as part of this month's Patch Tuesday updates, including a fix for an important Windows LSA spoofing vulnerability that is already being exploited in the wild.   Windows LSA Spoofing Vulnerability: This vulnerability that’s already being exploited allows an unauthenticated attacker to call a method on the LSARPC interface and coerce the domain controller to authenticate the attacker using NTLM. Insight Software: Magnitude Simba Amazon Redshift ODBC Driver: This critical vulnerability in the Redshift driver allows a locally authenticated attacker to leverage improper validation of authentication tokens to execute remote commands. Windows Network File System Remote Code Execution Vulnerability: This critical vulnerability could allow unauthenticated attackers to make a call to a Network File System (NFS) service to trigger a Remote Code Execution (RCE). Active Directory Domain Services Elevation of Privilege Vulnerability: This critical vulnerability could allow an authenticated user to acquire a certificate from Active Directory Certificate Services that would allow an elevation of privilege. Quality and experience updates Here are the notable quality updates on the KB5013943 patch for Windows 11 users: Microsoft has addressed an issue that was causing video subtitles to be misaligned or partially cut offAn issue that was... --- ### Microsoft is Rebranding its Power Apps Portals to 'Power Pages' - Published: 2022-05-10 - Modified: 2022-05-10 - URL: https://petri.com/microsoft-rebranding-power-apps-portals-power-pages/ - Categories: Power Apps, Power Platform - Tags: News, Power Platform, Powerapps - Article Type: News Back in March, Microsoft announced that its annual Build developer conference would be held on May 24-26. The company plans to announce some new developer-focused technologies and tools, as well as big updates for various products. According to a new report from ZDNet's Mary Jo Foley, Microsoft is also planning a major rebrand of its Power Apps portals. The platform will soon be renamed to Microsoft Power Pages with an updated experience that will allow developers to build secure business web pages and applications. Microsoft to unveil Power Pages at Build 2022 Earlier this month, Microsoft leakster WalkingCat leaked a presentation about Power Pages. Additionally, Twitter user Tero Alhonen uncovered the session information on Twitter, which will take place on Wednesday, May 25, from 12:30 PM to 1:15 PM PDT. The session titled “Power up your development efforts with the latest low code innovations” will feature three speakers from Microsoft, including Ryan Cunningham, VP for Power Apps. “The Power Platform provides the markets most complete set of low code development tools empowering all developers to build better apps and co create effectively. From Power Pages, a new product that will empower everyone to build responsive and secure business web pages, to cards which provides a new way to build embeddable and reusable components to transform connected digital experiences to an entirely new way to build apps from scratch with ,” the company explained. https://twitter. com/h0x0d/status/1521510594871840768 Microsoft launched Power Apps portals in preview back in October 2019. It’s a development platform... --- ### Microsoft Advises IT Admins to Restrict Access to Leaked One Outlook Client - Published: 2022-05-10 - Modified: 2022-05-10 - URL: https://petri.com/microsoft-advises-it-admins-restrict-access-one-outlook/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Outlook, News, Outlook, Outlook for Windows - Article Type: News Last week, Microsoft’s web-based One Outlook client (Project Monarch) leaked online, generating some interest among Outlook enthusiasts. The app is based on the Outlook web app for Microsoft 365 commercial customers, and it currently only supports work and school accounts. If Microsoft had yet to acknowledge the existence of the app, it has now issued an advisory for organizations that would like to prevent employees from using this unreleased version of Outlook for Windows. In a new message spotted by Tero Alhonen on the Microsoft 365 Admin center, Microsoft says that the leaked Outlook app is missing some key features that will be available in the official release, and it encourages users to wait for an upcoming official beta. “We are aware that some users can access an unsupported early test version of the new Outlook for Windows. This version is missing some of the features and enhancements that will be available later for our customers in the Beta Channel. We encourage our customers to wait for the beta version to be released,” Microsoft explained in a message on the Microsoft 365 Admin Center. How to block employee access to the new One Outlook client Microsoft has also outlined some instructions to help IT Admins disable employee access to the leaked One Outlook app. To do so, you will need to follow the step-by-step guide available in this support document which includes PowerShell instructions. It is important to note that following these instructions will only prevent select or all users... --- ### Getting Started with Microsoft 365 Business Premium - Published: 2022-05-10 - Modified: 2022-05-19 - URL: https://petri.com/getting-started-microsoft-365-business-premium/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft 365 Business Premium - Article Type: How To Microsoft 365 Business Premium, previously known as Microsoft 365 Business, is a subscription service packed with productivity and security management features. It's designed specifically for organizations with fewer than 300 users, and it is more feature-rich than Microsoft 365 Enterprise E3. In this article, I'll show you how to set up Microsoft 365 from scratch. Then you'll learn how to add new users and assign licenses, configure security controls, and finally how to enable Microsoft Intune for managing mobile devices. What's included in Microsoft 365 Business Premium? The Microsoft 365 business suite of products includes Microsoft 365 Business Basic, Microsoft 365 Business Standard, and Microsoft 365 Business Premium. Each of these offerings targets the small to medium enterprise market, and they're limited to a maximum of 300 licenses per tenant. Cost-wise, Microsoft 365 Business Basic is the most affordable subscription priced at $6 per user per month. For approximately double the monthly fee, you can access Microsoft 365 Business Standard for $12. 50 per user/month. Nearly double that cost again and you've got Microsoft 365 Business premium at $22 per user/month. You can see a comparison of the three different Microsoft 365 Business plans below: FeaturesM365 Business Basic M365 Business Standard M365 Business PremiumMicrosoft Teams collaborationIncludedIncluded Included Office Web AppsIncluded Included Included Office Desktop AppsIncluded Included Microsoft Defender for BusinessIncludedMicrosoft Defender for Office 365IncludedEnterprise Mobility & SecurityAzure AD Premium:- Multi-Factor Authentication- Conditional Access- Self-Service Password ResetIntune:- Mobile Device Management- Endpoint AnalyticsIncluded Windows 10 BusinessIncludedMicrosoft Business Feature Comparison With the inclusion of... --- ### F5 Confirms New Remote Code Execution Flaw in BIG-IP Systems - Published: 2022-05-09 - Modified: 2022-05-09 - URL: https://petri.com/f5-confirms-new-remote-code-execution-flaw-in-big-ip-systems/ - Categories: Security - Tags: News, Security, Vulnerability - Article Type: News Last week, the application service provider F5 disclosed a new security vulnerability that allows threat actors with network access to execute commands on its BIG-IP networking devices. The critical security flaw, tracked as CVE-2022-1388, carries a CVSS score of 9. 8 out of 10. According to the security advisory, the vulnerability exists in the representational state transfer (REST) interface for the iControl framework. The authentication component is used for communication between customers and F5 BIG-IP systems. This flaw could allow remote attackers to bypass authentication and run arbitrary commands on the targeted devices. “This vulnerability may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands, create or delete files, or disable services. There is no data plane exposure; this is a control plane issue only,” F5 explained. F5 has confirmed that the security flaw impacts various BIG-IP product versions. The list includes 1. 0 to 16. 1. 2, 1. 0 to 15. 1. 5, 1. 0 to 14. 1. 4, 1. 0 to 13. 1. 4, 1. 0 to 12. 1. 6, and 6. 1 to 11. 6. 5. Since F5 BIG-IP devices are typically used in enterprise environments, this RCE vulnerability could be abused to create/delete files or disable servers. Fortunately, F5 has already released new security updates to address the vulnerability in versions v17. 0. 0, v16. 1. 2. 2, v15. 1. 5. 1, v14. 1. 4. 6, and v13. 1. 5. However, the company is advising customers running older versions (11. x and 12. x) to upgrade to a newer firmware version immediately. In a recent tweet, cybersecurity researcher Nate Warfield revealed that around 16,000 BIG-IP... --- ### Microsoft's New Security Experts Service Protects Businesses Against Ransomware Attacks - Published: 2022-05-09 - Modified: 2022-05-09 - URL: https://petri.com/microsoft-security-experts-service-ransomware-attacks/ - Categories: Security - Tags: Microsoft Security Experts, News, Ransomware, Security - Article Type: News Microsoft has introduced today Microsoft Security Experts, a new service category designed to address the unique security needs of customers across various industries, including healthcare, financial services, and more. The new Security Experts category expands the existing incident response and security advisory services and combines both human-lead services and automated intelligence to help businesses improve their security posture, compliance, and productivity. As cybersecurity attacks have become even more sophisticated and impactful in recent months, Microsoft Threat Intelligence Center (MSTIC) is actively tracking 250 unique threat actors and over 35 ransomware gangs. Microsoft emphasizes that it is important to provide organizations with expert guidance and technical tools that can help them proactively detect and mitigate ransomware attacks. “With Security Experts, customers and partners gain access to the company’s leading technologies, threat intelligence and an unparalleled amount of security signal to detect threats more accurately, speed up response times, and keep your team informed,” the company explained. Interestingly, this announcement follows Google's planned $5. 4 billion acquisition of the cybersecurity firm Mandiant. It is important to note that Microsoft also reportedly explored buying Mandiant, but the deal couldn’t be finalized. With this new Security Experts Service, the Redmond giant plans to bolster its cybersecurity capabilities and eventually attract more customers. Microsoft has collaborated with its partners to launch its Security Experts solution with three new managed services. These services should help customers ease the burden of their existing security teams. Microsoft Defender Experts for Hunting Microsoft Defender Experts for Hunting is the first... --- ### Active Directory vs. Azure AD (and Other Identity Providers) - Published: 2022-05-09 - Modified: 2022-10-14 - URL: https://petri.com/active-directory-vs-azure-ad/ - Categories: Active Directory (AD) - Tags: Active Directory, Azure Active Directory, Identity Management - Article Type: Overview This article will look at Active Directory (AD), Azure Active Directory (Azure AD), and explain how they differ and can complement each other. We'll also compare these Microsoft solutions to some of the major alternative identity providers. This article is not meant to be an exhaustive resource and will not provide step-by-step instructions on how to deploy these services, but Petri has excellent articles which cover those topics. Windows Server AD vs Azure AD I think it’s fair to start with the oldest of Microsoft’s current directory services siblings. Active Directory is Microsoft’s on-premises directory service, succeeding Windows NT Directory Services (NTDS), should you be old enough to remember it. NTDS was great at the time but had significant limitations regarding scalability, replication, administration, stability, etc. Active Directory is widely used by the vast majority of organizations since its release over two decades ago – it was released to manufacturing on 15 December 1999 and reached general availability on 17 February 2000. Your users are well used to Active Directory without even knowing it: They simply switch on their client devices, enter their username (typically but not always pre-cached) and password, and continue with their daily business activities. Active Directory is straightforward, quick, safe, and secure if you have it all set up and maintained the way you want it. A central identity provider Active Directory typically serves as your central identity provider, often spanning multiple forests and domains, some with users and others with only resources. It manages... --- ### AWS Snow Family Now Supports Remote Monitoring and Operations - Published: 2022-05-09 - Modified: 2024-09-05 - URL: https://petri.com/aws-snow-family-now-supports-remote-monitoring-and-operations/ - Categories: Amazon Web Services, Cloud Computing, Data Management - Tags: Amazon Web Services, AWS Snowball, AWS Snowcone - Article Type: News AWS Snowball customers can now manage their connected Snowball Edge devices remotely. IT Pros can now operate these devices from AWS OpsHub or the AWS Command Line Interface (CLI), even when these devices are geographically dispersed. The AWS Snow Family is designed for business customers that need computing power and storage in non-data center environments where there is often a lack of consistent network connectivity. AWS Snow Family devices are owned and managed by Amazon Web Services, and they integrate with the AWS cloud. Previously, businesses were only able to manage Snowball devices that were physically present on their local network. As these businesses expanded the number of sites where they deployed Snowball devices, they needed a scalable way to manage them from a central location. AWS Snow Family remote monitoring and management now enables customers to remotely view a central dashboard and see whether a device is online or unlocked, and monitor usage metrics such as available storage and compute capacity. In addition, customers can remotely unlock or reboot devices deployed remotely. You can manage from one to thousands of AWS Snow Family devices from AWS OpsHub or the AWS Command Line Interface (CLI). The remote management features can be turned on when first ordering a Snowball Edge device or after it’s deployed on-site. Once the remote management feature is turned on and the device has an Internet connection, it will automatically create a secure connection to the AWS Cloud and begin sending device status information. AWS Snowball Device Differences... --- ### Microsoft's New One Outlook App Gets Closer to Official Launch - Published: 2022-05-06 - Modified: 2022-05-09 - URL: https://petri.com/microsofts-one-outlook-app-gets-closer-launch/ - Categories: Microsoft 365, Outlook - Tags: News, One Outlook, Outlook, Project Monarch, Windows 10, Windows 11 - Article Type: News Microsoft has been working on its web-based One Outlook app for Windows and macOS for over a year now. This new Outlook client, also called Project Monarch, leaked online last year, and Windows Central is now reporting that its pre-release version works with commercial accounts (work and school). Earlier today, Twitter user @FireCubeStudios also shared four screenshots of the app running on a Windows 11 PC. The One Outlook email client is pretty much identical to the current version of Outlook on the web, but it comes with a couple of notable changes and improvements. For starters, the first boot experience prompts users to import their settings from the classic Outlook desktop app. The new One Outlook client introduces more action buttons on the ribbon menu, with "Home" and "View" tabs. Just like the Outlook Web app, the Settings panel allows users to choose a theme and enable dark mode, focused inbox, a reading pane, conversation view, and desktop notifications. There is also an option to customize the display density to fit more content on the screen. Last but not least, Microsoft has also integrated the Windows controls (such as minimize, restore, and close) into the title bar of the app. The "New email" button now features a dropdown menu that lets users create a new message, group, and event in a separate window. One Outlook doesn't support personal accounts Overall, the One Outlook client doesn’t bring any major changes, but it feels much faster than the classic Outlook experience... . --- ### Outlook on the Web to Get a New Bookings Experience Next Month - Published: 2022-05-06 - Modified: 2022-05-06 - URL: https://petri.com/outlook-on-the-web-get-bookings-experience/ - Categories: Microsoft 365 - Tags: Bookings, Microsoft 365, News, Office 365 news, Outlook on the Web - Article Type: News Microsoft has announced a new Bookings experience that will be coming to Outlook on the web. The company is introducing a new web-based personal bookings page that integrates with the Outlook calendar, which should help to make appointment scheduling simpler and more efficient for users. “Bookings in Outlook lets people schedule a meeting or appointment with you. You can create custom meeting types to share with others so they can easily schedule time with you based on your availability and preferences. You both get an email confirmation and attendees can update or cancel scheduled meetings with you from your Bookings in Outlook page,” Microsoft explained in a support document. In Outlook on the web, the personal bookings page will come with two different views, including the Organizer and Scheduling view. The Organizer view will enable users to create custom appointment types so that their colleagues can easily find suitable a meeting time that works for both parties. Moreover, the Scheduling view will be visible to other people when an Outlook user shares their personal bookings page. Microsoft says that customers will be able to access new bookings experience via the Outlook web calendar or by heading to the personal bookings page. Once set up and published, users will be able to share the personal bookings page with their colleagues. Bookings in Outlook to hit GA in June The Microsoft 365 roadmap listing suggests that this new feature will begin rolling out in preview to commercial customers in mid-June. The company... --- ### Microsoft, Google, and Apple to Expand Passwordless Login Across All Major Platforms - Published: 2022-05-05 - Modified: 2022-05-09 - URL: https://petri.com/microsoft-google-apple-passwordless-logins-across-platforms/ - Categories: Security - Tags: Apple, FIDO2, Google, Microsoft, News, passwords, Security - Article Type: News Microsoft, Apple, and Google have committed to expanding passwordless sign-in support across all major device platforms. The three biggest tech companies have teamed up to roll out the FIDO passkey technology to iOS, Android, Edge, Chrome, macOS, and Windows in 2023. These platforms already support passwordless sign-in standards, but Microsoft, Apple, and Google are now taking steps to ensure a convenient and secure experience for users. Currently, users need to log in with their credentials on each app and website on all devices in order to use the passwordless sign-in option. Once implemented, the new authentication method will allow mobile users to use a FIDO-based passkey stored on their mobile devices to verify logins, regardless of the browser or OS. It will also enable users to access the passkey on any new or old devices without enrolling or re-enrolling their accounts on each of them. According to the FIDO Alliance, the new approach is more secure than the traditional passwords and multi-factor authentication (MFA) mechanisms. It is designed to protect users’ accounts against phishing attacks. “The expanded standards-based capabilities will give websites and apps the ability to offer an end-to-end passwordless option. Users will sign in through the same action that they take multiple times each day to unlock their devices, such as a simple verification of their fingerprint or face, or a device PIN. This new approach protects against phishing and sign-in will be radically more secure when compared to passwords and legacy multi-factor technologies such as one-time passcodes... --- ### GitHub to Require All Code Contributors to Enable 2FA by Late 2023 - Published: 2022-05-05 - Modified: 2022-05-05 - URL: https://petri.com/github-require-contributors-enable-2fa/ - Categories: Developer, Security - Tags: Authentication, DevOps, GitHub, News, two factor authentication - Article Type: News Microsoft is planning to make some changes to the existing authentication policies on its GitHub platform. The company has announced that it will require all developers contributing code to the service to enroll in at least one form of two-factor authentication (2FA) by the end of 2023. GitHub is a popular cloud-based service that allows developers to store, track and collaborate on open-source software projects. The Microsoft-owned code platform has more than 83 million users worldwide. However, we have previously witnessed security incidents where the attackers managed to compromise open-source repositories. Microsoft hopes that its new 2FA mandates should help to improve the overall security of the software development process. “Compromised accounts can be used to steal private code or push malicious changes to that code. This places not only the individuals and organizations associated with the compromised accounts at risk, but also any users of the affected code. The potential for downstream impact to the broader software ecosystem and supply chain as a result is substantial,” explained Mike Hanley, Chief Security Officer at GitHub. GitHub says only 16. 5 percent of active users enable 2FA According to Microsoft, 2FA can provide developers with an additional layer of protection against increasing security threats. However, Microsoft’s researchers have found that 16. 5 percent of active GitHub users and 6. 44 percent of NPM users currently enable one or more types of the 2FA technique on their accounts. It is important to note that the code repository had previously dropped support for basic authentication. Instead,... --- ### Microsoft Authenticator Now Lets Users Generate Strong Passwords - Published: 2022-05-05 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-authenticator-generate-strong-passwords/ - Categories: Authenticator, Security - Tags: News, password manager, passwords - Article Type: News Microsoft has released a new update for its Authenticator app that allows users to generate strong and unique passwords. The new password generation feature started rolling out last month, and it’s now generally available for all customers. Microsoft highlights that the Authenticator app uses an “enterprise-grade password generation algorithm” to generate all new passwords. The company added that human-generated passwords can’t be unique enough to prevent cyberattacks. It is important for users to secure their accounts with complex and unique passwords to protect their sensitive information. “According to the Verizon’s Data Breach Investigation Report 2021, 61% of data breaches happen due to leveraged passwords. Autofill helps you stay safer online by creating strong, unique passwords with different combinations of numbers and characters using our new Password Generator every time you create an account or change the password of an existing one,” the company explained. How to generate strong passwords with Microsoft Authenticator​ To use the new password generation feature, users will need to install the latest version of Microsoft Authenticator on iOS and Android devices. The app will automatically prompt users to generate a strong password while creating new accounts or changing an existing password on an app or a website. Additionally, desktop users can use the Microsoft Autofill Extension to generate strong passwords on websites. The extension is available to download on the Google Chrome web store. The passwords will be stored in the password manager and synced across all devices connected to the same personal Microsoft account. Unfortunately,... --- ### Cloud Conversations – Kevin McDonnell on Security & Compliance, Hybrid Work, and Viva > Kevin McDonnell is a Microsoft 365 Solutions Architect at CPS and the co-host of the GreyHatBeardPrincess podcast. In this week's episode, Kevin joins Peter Rising to talk about hybrid work, security and compliance, Microsoft Viva, objectives and key results, and Microsoft Purview Compliance - Published: 2022-05-04 - Modified: 2022-05-04 - URL: https://petri.com/cloud-conversations-kevin-mcdonnell-on-security-compliance-hybrid-work-and-viva/ - Categories: Video - Tags: Hybrid Work, Security, Viva - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Kevin McDonnell on Security & Compliance, Hybrid Work, and Viva Kevin McDonnell is a Microsoft 365 Solutions Architect at CPS, a Microsoft MVP (Office Apps & Services), and the co-host of the GreyHatBeardPrincess podcast. In this week's Cloud Conversation episode, Kevin joins Peter Rising to talk about: The future of hybrid workingWhat's new in Security & ComplianceMicrosoft VivaObjectives and Key Results (OKRs)Assembling a team to produce a new online book on Microsoft Purview Compliance More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is... --- ### Microsoft's Update Compliance Service Will Soon Require Azure AD - Published: 2022-05-04 - Modified: 2022-05-04 - URL: https://petri.com/microsofts-update-compliance-service-require-azure-ad/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Azure AD, News, Update Compliance - Article Type: News Microsoft has announced some important changes regarding its Update Compliance service. The company says that Update Compliance will require the use of the cloud-based Azure AD service starting October 15, 2022. For those unfamiliar, Update Compliance is a Windows Analytics service hosted in Microsoft Azure. It enables IT Admins to monitor the deployment status of the feature, security, and quality updates for Windows 10 and Windows 11 PCs. It helps organizations to keep their devices up to date, secure, troubleshoot issues, and monitor bandwidth usage. Going forward, all organizations that want to keep using the Update Compliance service will need to move to Azure Active Directory (direct or hybrid). Furthermore, all enrolled Windows 10 or 11 devices should meet the Windows diagnostic data processor configuration requirements. This capability allows organizations to manage data collection permissions. These changes will go into effect on October 15 this year. “To use the Windows diagnostic data processor configuration, targeted devices must be Azure Active Directory (Azure AD) joined or hybrid Azure AD joined. As a result, beginning October 15, 2022, devices that are neither joined nor hybrid joined to Azure AD will no longer appear in Update Compliance. All Windows diagnostic data processor prerequisites must be met to continue using the service after that date,” the company explained. Microsoft to retire CommercialID support in Update Compliance Microsoft is also planning to replace CommercialID with Azure AD tenant ID in its Update Compliance service in early 2023. The Log Analytics service uses the unique CommercialID... --- ### PSA: Microsoft Exchange Online to Drop Basic Authentication Support in October - Published: 2022-05-04 - Modified: 2022-05-04 - URL: https://petri.com/microsoft-exchange-online-drop-basic-authentication-support/ - Categories: Exchange Online - Tags: Authentication, Exchange Online, Exchange Server, News - Article Type: News Microsoft is getting ready to drop support for Basic Authentication in its Exchange Online e-mail service. The company is reminding customers that it will begin to permanently disable this feature for select protocols in its multi-tenant service worldwide starting October 1, 2022. Essentially, Basic Authentication means that an application provides a user name and password for client access requests. It is a legacy authentication mechanism typically used by apps to connect to services, servers, and APIs. Basic Authentication is relatively easier to configure, and it’s turned on by default on various services and servers. However, Basic Authentication makes it makes for threat actors to steal user credentials, and it’s also subject to password spray attacks. Moreover, this outdated industry standard doesn’t allow organizations to enforce multifactor authentication (MFA). Microsoft says that turning off Basic Authentication should help improve the security of its Exchange Online service by preventing attackers from compromising user accounts. “As a reminder, Basic Auth is still one of, if not the most common ways our customers get compromised, and these types of attacks are increasing. We’ve disabled Basic Auth in millions of tenants that weren’t using it, and we’re currently disabling unused protocols within tenants that still use it, but every day your tenant has Basic Auth enabled, you are at risk from attack,” the Exchange team explained. Microsoft to disable Basic Authentication for specific protocols in Exchange Online Microsoft has noted that it plans to end Basic Authentication support for most protocols in Exchange Online, such... --- ### IT Expert Answers: How to Check Your PowerShell Version - Published: 2022-05-04 - Modified: 2024-07-03 - URL: https://petri.com/how-to-check-your-powershell-version/ - Categories: PowerShell - Tags: Most Popular, PowerShell, Windows - Article Type: How To Whether you’re a PowerShell pro or just starting out, it’s useful to know how to check your PowerShell version. We'll explain how to do that in this guide. How to check your PowerShell version Let's quickly check the version of PowerShell installed on your device: Launch PowerShell by opening the Start menu and typing powershell. In the list of search results, click Windows PowerShell or PowerShell v7. In the PowerShell window, type $PSVersionTable. PSVersion and press ENTER to get the exact version of PowerShell. For more details on the different ways to check the PowerShell version, and getting the version of PowerShell installed on remote systems, keep reading! From PowerShell 1. 0, to Windows PowerShell, to PowerShell v7- but which version are you using? PowerShell 1. 0 was released in 2006 for the Windows operating system, including Windows XP (SP2), Windows Server 2003 (r2 SP1), and Windows Vista. It is part of the . NET framework and even comes with a graphical program called the PowerShell ISE. You can search for it in the Start menu. Searching for the PowerShell ISE in the Start Menu In typical Microsoft fashion, there is a myriad of ways to determine what version of PowerShell you're running. However, you should be careful in using the 'best' one as some methods won't necessarily give you the accurate results you're looking for – especially if you need to satisfy a certain requirement or prerequisite before you can run a specific command or load a certain module. But don't worry,... --- ### TLStorm 2.0 Exploits Expose Millions of Aruba and Avaya Network Switches to RCE Attacks - Published: 2022-05-03 - Modified: 2024-11-19 - URL: https://petri.com/tlstorm-2-0-exploits-aruba-and-avaya-network-switches-rce-attacks/ - Categories: Security - Tags: News, Security, TLS, Vulnerability - Article Type: News Security researchers at Armis have discovered five critical vulnerabilities in multiple network devices sold by Aruba and Avaya. The security flaws, dubbed TLStorm 2. 0, could allow malicious actors to gain complete control of network switches typically used in hospitals, hotels, airports, and other businesses. According to the security researchers, the TLStorm 2. 0 vulnerabilities have CVSS scores of 9. 0 to 9. 8 and exploit the security issues in the NanoSSL TLS library. These flaws enable an attacker to modify the behavior of a network switch, gain remote access to enterprise networks and eventually steal sensitive information. The NanoSSL TLS library implementation introduces three critical bugs on Avaya devices. The first Avaya flaw (CVE-2022-29860 is a TLS reassembly heap overflow that could potentially lead to remote code execution. Moreover, the attackers can abuse the second vulnerability (CVE-2022-29861) to execute arbitrary malicious code remotely on the network switch. Lastly, the second critical Avaya bug could cause an exploitable heap overflow. Similarly, the first Aruba vulnerability, tracked as CVE-2022-23677, is triggered by weakness in NanoSSL. This critical flaw can be exploited by threat actors through the captive portal system. Meanwhile, CVE-2022-23676 is a memory corruption bug that exists in the RADIUS client implementation of network switches. It lets attackers overflow heap memory for remote-code execution. “These research findings are significant as they highlight that the network infrastructure itself is at risk and exploitable by attackers, meaning that network segmentation alone is no longer sufficient as a security measure,” Armis explained. The TLStorm 2. 0 flaws affect... --- ### Microsoft Announces Defender for Business Standalone Solution for Small Businesses - Published: 2022-05-03 - Modified: 2022-05-03 - URL: https://petri.com/microsoft-defender-for-business-standalone-small-businesses/ - Categories: Security - Tags: Endpoint security, Microsoft Defender, Microsoft Defender for Business, News, Security - Article Type: News Microsoft has launched a new standalone version of its Defender for Business solution for commercial customers. The new cost-effective enterprise-grade endpoint security offering was first announced at Ignite 2021, and it’s designed for small to medium-sized businesses with up to 300 employees. The Redmond giant started rolling out Microsoft Defender for Business to organizations with a Microsoft 365 Business Premium plan in March. The premium product costs $22 per user per month, and it includes Office apps, Microsoft Intune, Azure Virtual Desktop, Azure Active Directory Premium P1, as well as Azure Information Protection. This new Microsoft Defender for Business standalone edition explicitly targets those small businesses (with limited resources) who don’t want to purchase the premium suite. It’s available to purchase via Microsoft Partner Cloud Solution Provider (CSP) partners at $3 per user per month, billed annually. The new security offering is available across Windows, macOS, iOS, and Android. https://youtu. be/umhUNzMqZto “Microsoft believes in security for all. We are proud to further deliver on that vision today. With the GA of Defender for Business, SMBs will get greater protection with simplified security to help them better protect, detect and respond to threats,” explained Vasu Jakkal, CVP, security, compliance & identity at Microsoft. Specifically, Microsoft Defender for Business comes with a bunch of key security capabilities such as attack surface reduction, threat and vulnerability management, endpoint detection and response, automatic investigation, and remediation. The company also claims that it offers “Next-gen” protection against viruses, malware, and ransomware attacks. Microsoft Defender for Business... --- ### QNAP Confirms New Critical Flaws Affecting Some Network-Attached Storage Devices - Published: 2022-05-02 - Modified: 2022-05-02 - URL: https://petri.com/qnap-critical-flaws-network-attached-storage-devices/ - Categories: Security - Tags: News, QNAP, Security, Vulnerability - Article Type: News Last week, QNAP published a security advisory to warn customers about new critical flaws in an open-source fileserver technology integrated into its network-attached storage (NAS) devices. The company has advised customers to look out for updates to address the vulnerabilities affecting some of its products. QNAP explained in its advisory that these flaws exist in Netatalk. It is a free open source version of Apple Filing Protocol (AFP) used to share files between clients and servers. Specifically, AFP enables macOS clients to access data stored on NAS devices. The company says that this outdated file access protocol is still being used because it supports various macOS attributes not found in other protocols. It is important to note that Netatalk released an update (v3. 1. 13) to patch all the security issues in March. QNAP confirmed that it has already addressed the Netatalk flaws in QTS 4. 5. 4. 2012 build 20220419 and later. However, these vulnerabilities still impact several older versions of its QTS operating system. The list includes: QTS 5. 0. x and laterQTS 4. 5. 4 and laterQTS 4. 3. 6 and laterQTS 4. 3. 4 and laterQTS 4. 3. 3 and laterQTS 4. 2. 6 and laterQuTS hero h5. 0. x and laterQuTS hero h4. 5. 4 and laterQuTScloud c5. 0. x QNAP advises users to temporarily disable AFP The company is currently investigating the security vulnerabilities, and it’s planning to release updates for all impacted QNAP OS versions soon. “QNAP is thoroughly investigating the case. We will release security updates for all affected QNAP operating system versions and provide further information as soon as possible. ” QNAP explained. In the... --- ### What's New with Power Platform - May 2022 - Published: 2022-05-02 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-with-power-platform-may-2022/ - Categories: Power Platform - Tags: News, Power Platform - Article Type: News There are new features this month across the Power Platform including some brand-new Power Apps functions, a new version of Power Automate for desktop, and UX updates for Power BI.   Power Apps now supports the new SharePoint list image column type Power Apps now supports the new SharePoint list image column type.  The concept is cool, in that you can see an image associated with your SharePoint list item, along with thumbnails that were previously available with a SharePoint document library; however, these are “read only” columns.   Microsoft says that they’re developing the capability to update this data, but it’s not there yet.   Another limitation is that if you download this type of column into a collection, the image will not render.   So, with the current limitations to this feature, it does narrow the applications for it.     Power Fx new features Power Fx has a trio of new features fully deployed in April including String interpolation, the Index function, and the RandBetween function.     String interpolation is not strange to those who have programmed in C#. You can begin a string with a $ sign then add quotes with a normal text string.   Then you can insert Variables into the string by using curly braces {}, such as: $”Did you notice this new feature, {User. FullName}? ”  Quotes are only needed once in this context, but it’s just another way to combine strings with variables.   If the other ways work for you, you can continue to use them.   The Index function comes to Power... --- ### What’s New with Windows – April 2022 - Published: 2022-05-02 - Modified: 2022-05-02 - URL: https://petri.com/whats-new-with-windows-april-2022/ - Categories: Windows 10, Windows 11, Windows 365 - Tags: News, Windows 10, Windows 11, Windows 365 - Article Type: News This month sees Microsoft announce a whole load of new features for Windows 11, but it’s not clear when they will all be generally available. Plus, Microsoft gives some advice on upgrading to Windows 11 and Edge beats Safari to become the 2nd most used web browser on desktop devices. Microsoft offers advice on upgrading to Windows 11 from its own experience In a recent post on Microsoft’s website, Lukas Velush said that the upgrade to Windows 11 of 190,000 end user devices was the smoothest ever and it was completed in only five weeks. The post goes on to say: “Our success was built around several factors: far fewer app compatibility challenges than in the past, not needing to build out a plethora of disk images, and delivery processes and tools already that were greatly improved during the rollout of Windows 10. We divided our upgrade into three stages: plan, prepare, and deploy. ” Microsoft used Windows Autopilot and coordinated with its OEM partners to make sure that all new devices came with Windows 11 preinstalled. Then Windows Autopilot configured everything for the employee on first boot. Windows 11 deployment (Image Credit: Microsoft) Windows 10 21H2 now ready for broad deployment Microsoft announced in April that Windows 10 21H2 is ready for broad deployment in businesses. This milestone is typically reached 6 months after a Windows feature release is made generally available. It means that Microsoft has patched any major bugs and you can roll out the feature update in... --- ### Microsoft Lists App Now Available to Download on Android - Published: 2022-05-02 - Modified: 2022-05-02 - URL: https://petri.com/microsoft-lists-available-download-android/ - Categories: Microsoft 365 - Tags: Android, Lists app, Microsoft 365, Microsoft Lists, News - Article Type: News Microsoft unveiled its plans to launch the Lists app for Android at its Ignite conference back in November 2021. The Redmond giant has now announced on the Microsoft 365 Admin center that the Lists app is now available to download for business and enterprise customers from the Google Play Store. First launched in 2020, Microsoft Lists is designed to help customers keep track of tasks or projects and track issues. It is a powerful alternative for Asana, Jira, Airtable, and other task management tools. This new Android app should make it easier for users to create and manage lists, access lists offline, edit list items, as well as collaborate on tasks with their colleagues while on the go. Microsoft Lists for Android also lets users scan and upload documents as attachments to list items. Moreover, it provides ready-made templates that let managers create lists using pre-configured layouts for various scenarios. These include employee onboarding, asset manager, content scheduler, work progress tracker, issue tracker, and more. “With access on the go and collaboration, you can keep everyone connected with Microsoft Lists. Start quickly with ready-made templates, add content to the columns, set priorities, share lists, invite teammates, and manage your work and information seamlessly,” the company explained. Microsoft Lists for Android doesn’t support personal accounts According to Microsoft, customers will need an Office 365/Microsoft 365 commercial subscription that includes SharePoint to access the Lists app on their mobile devices. However, Microsoft Lists for Android doesn’t support personal MSA accounts yet. The... --- ### Cloud Conversations – Nikki Chapple on Teams Governance, Community & The Changing Face of Tech > Nikki Chapple is a Principal Cloud Architect at CloudWay, and she's also an Office Apps and Services MVP. In this week's episode, Nikki Chapple joins Kat and Azure to talk about what is Teams, how tech has changed over 30 years, speaking and networking events, and Music – Duran Duran and raving. - Published: 2022-04-29 - Modified: 2022-04-29 - URL: https://petri.com/cloud-conversations-nikki-chapple-teams-governance-community/ - Categories: Video - Tags: Cloud Conversations, Microsoft Teams - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Nikki Chapple Teams Governance, Community, and Tech Nikki Chapple is a Principal Cloud Architect at CloudWay, and she's also an Office Apps and Services MVP. In this week's episode, Nikki joins Kat and Azure to talk about: What is Teams sprawlHow tech has changed over 30 yearsSpeaking and networking eventsMusic - Duran Duran and raving More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### What’s New in Microsoft Teams – April 2022 - Published: 2022-04-29 - Modified: 2022-04-29 - URL: https://petri.com/whats-new-microsoft-teams-april-2022/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has published a monthly roundup of the updates made to its Teams collaboration service during the month of April. This includes new chat & collaboration features (such as suggested replies), enhancements to the meetings experience, new Teams certified devices, and much more. Here’s a look at everything you need to know. Microsoft Teams' Presenter mode gets new move & resize options First up, Microsoft has rolled out some improvements for the Presenter mode feature in Teams. The latest update adds new buttons to the presenter modes preview window that allows the speaker to appear on the right or left side of the content. It is also possible to adjust the size of the overlayed video feed to make meetings more engaging. Microsoft also released a new update that lets IT Admins configure call forwarding settings for end-users. The configuration of call delegation and group call pickup capabilities can be done via the Teams admin center or the Teams PowerShell Module. Suggested replies coming to Teams chats There are also some new chat & collaboration features for Microsoft Teams. Now, desktop users can use suggested replies to quickly respond to chat messages without having to type them. The AI-powered feature takes into account the context of the previous message to generate three short responses. The suggested replies feature is on by default, but users will be able to disable them manually. To do this, head to Settings > General, then uncheck the Show suggested replies in chat option available under the... --- ### Microsoft Addresses Cross-Tenant Database Vulnerability in Azure PostgreSQL - Published: 2022-04-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cross-tenant-database-vulnerability-azure-postgresql/ - Categories: Azure, Microsoft Azure - Tags: Database, EXTRAREPLICA, News, Vulnerability - Article Type: News Microsoft has released new patches to address critical security vulnerabilities affecting its Azure PostgreSQL product. Discovered by security researchers from Wiz Research, the “chain” of flaws dubbed “ExtraReplica” could be exploited to gain unauthorized cross-account database access. According to the security advisory published by the Wiz Research team, the vulnerabilities allow attackers to bypass tenant isolation in Azure's infrastructure. ExtraReplica exploits a flaw that lets unauthorized users get read access to PostgreSQL databases. “By exploiting an elevated permissions bug in the Flexible Server authentication process for a replication user, a malicious user could leverage an improperly anchored regular expression to bypass authentication to gain access to other customers’ databases. This was mitigated within 48 hours (on January 13, 2022),” Microsoft Security Response Center (MSRC) explained. Specifically, the threat actor first selects a public PostgreSQL Flexible Server and then finds the target's Azure region. Once done, they create an attacker-controlled database in the same region. The attacker can now exploit the first security flaw on the target attacker-controlled instance. This vulnerability was discovered in Azure's PostgreSQL engine modifications, and it makes it possible to escalate privileges and run malicious code. The next step involves abusing the second flaw found in the certificate authentication process to gain read access to the target instance. Microsoft fixes the ExtraReplica bug on all vulnerable servers It is important to note that the security vulnerabilities don’t affect “Single Server instances or Flexible servers with the explicit VNet network configuration (Private access). ” Microsoft says that it has... --- ### Azure Container Apps Add Built-In Authentication Support in Preview - Published: 2022-04-28 - Modified: 2022-04-28 - URL: https://petri.com/azure-container-apps-add-built-in-authentication-support/ - Categories: Azure, Microsoft Entra ID (Azure AD) - Tags: Azure, Azure Container Apps, News - Article Type: News Microsoft has released built-in authentication support for its Azure Container Apps, a new fully managed serverless container service. The feature enables developers to secure external ingress-enabled container apps without writing code. The Redmond giant launched Azure Container Apps at its Ignite conference in November 2021. It is a serverless hosting solution that builds on Azure Kubernetes Service (AKS). Azure Container Apps allow developers to deploy multiple containers without dealing with complex infrastructure. Microsoft understands that it takes a considerable amount of time and effort to build secure authentication and authorization solutions. It requires developers to follow certain cybersecurity standards and practices as well as ensure that their implementation remains updated. With this release, Azure Container Apps introduced some new features that provide access to various built-in authentication providers. Essentially, these features don’t require a specific SDK, language/security expertise as well as code. This should make it easier for developers to focus on the functional implementation of their applications. “The authentication and authorization middleware component is a feature of the platform that runs as a sidecar container on each replica in your application. When enabled, every incoming HTTP request passes through the security layer before being handled by your application,” the company explained. Azure Container Apps support Azure AD, GitHub, and more Microsoft highlights that Azure Container Apps currently support various identity providers and the list includes Azure Active Directory, GitHub, Twitter, Google as well as Facebook. Moreover, it’s also possible to integrate any third-party identity provider that supports OpenID Connect... . --- ### Microsoft to Move Office Apps to Monthly Updates for Enterprise Customers - Published: 2022-04-28 - Modified: 2022-04-28 - URL: https://petri.com/microsoft-365-apps-move-monthly-enterprise-channel/ - Categories: 365 Apps - Tags: Excel, Microsoft 365, Microsoft Outlook, News, PowerPoint, Word - Article Type: News Microsoft has announced in a message on the Microsoft 365 Admin Center that it will automatically begin updating all devices with Office apps to the Monthly Enterprise Channel next month. The Redmond giant is urging commercial customers to get ready for the move for various reasons, based on user feedback. The Monthly Enterprise Channel allows users to get new Office updates on the second Tuesday of each month. The monthly release schedule is particularly useful for organizations with IT departments looking for a predictable release schedule for downloading new features, security improvements, and non-security patches. “Customers on a monthly feature update cadence, such as those customers on Monthly Enterprise Channel, have reported higher satisfaction than those receiving semi-annual feature updates. In addition to receiving the latest features and fixes, having all devices on the same update frequency helps enable better collaboration experiences for users in your organization,” the company explained on the Microsoft 365 Admin Center. Microsoft noted that this change affects both existing and new Office installations in tenants on all update channels except the Monthly Enterprise Channel. Additionally, Microsoft Office will get updates “directly from the internet. ” It should make it easier for IT Pros to keep their Office installations up-to-date. For end-users, this switch to the Monthly Enterprise Channel will happen in the background while using the Office 365 apps. With this change, users will be able to get some new features that were not previously available in their tenant. Microsoft recommends IT Pros to opt-out of... --- ### How to Customize the Windows 11 Start Menu and Taskbar - Published: 2022-04-28 - Modified: 2022-04-28 - URL: https://petri.com/how-to-customize-the-windows-11-start-menu-and-taskbar/ - Categories: Windows 11 - Tags: Start Menu, taskbar, Windows 11 - Article Type: How To While there are some limitations, there’s a lot that you can do to make the Windows 11 Start menu and taskbar more like Windows 10, but you can also personalize them in other ways. Let’s take a closer look at some of the ways you can configure the Windows 11 Start menu and taskbar to be more to your liking. If you’ve been a long-time Windows 10 user (and who isn’t? ), the first things that you'll notice on Windows 11 are, without a doubt, the changed Start menu and taskbar. In what seems to be a fairly blatant attempt to copy the Mac, Microsoft has moved the Start menu from the left bottom of the screen to the center of the bottom of the screen. In addition, the taskbar, which was previously moveable, is now glued to the bottom of the screen. While some people may like these changes, I think it’s fair to say that there are quite a number of people that don’t. What you might not realize is the fact that the new Windows 11 Start menu and taskbar can be customized in many ways. How to customize the Windows 11 Taskbar The taskbar is typically used as a quick launchpad, and it also lets Windows users keep track of all the apps that are currently running. You can see how the new Windows 11 default taskbar looks below. The default look of the Windows 11 taskbar Before we start, it's important to emphasize that the... --- ### Newly Discovered Emotet Campaign Spreads Malware Through PowerShell Commands - Published: 2022-04-27 - Modified: 2022-04-27 - URL: https://petri.com/emotet-campaigns-malware-powershell-commands/ - Categories: Security - Tags: Malware, News, PowerShell, Security - Article Type: News Cybersecurity researchers have discovered that the threat actors are testing new attack techniques to distribute malware. Indeed, the latest version of the highly sophisticated Emotet botnet uses PowerShell commands attached to the XLL files to target Windows PCs. Emotet is an advanced Trojan that is primarily used to spread malware via phishing emails on compromised Windows systems. It was widely used as a backdoor to distribute ransomware before a global law enforcement operation shut down the servers in January 2021. The Emotet botnet reemerged in November with a massive email campaign aimed at thousands of customers worldwide. According to the security researchers at Proofpoint, the attackers are now targeting compromised email accounts to send phishing emails. These emails contain catchy subject lines (such as Salary) that entice the recipient to click on them. However, the email body includes a OneDrive URL that hosts zip files with Microsoft Excel Add-in (XLL) files. Once the recipient clicks and runs the Emotet payload, the XLL files infect Windows machines with malware. Emotet campaigns are moving away from VBA macros Unlike previous Emotet attacks, the latest campaign uses the XLL files containing PowerShell commands rather than Visual Basic for Applications (VBA) scripts. This change follows Microsoft’s announcement about its plans to block VBA macros by default across its products in April 2022. The Redmond giant says that this move should help protect customers from phishing attacks. "After months of consistent activity, Emotet is switching things up. It is likely the threat actor is testing... --- ### Microsoft 365 Web Apps Now Let Users Switch Between Multiple Accounts - Published: 2022-04-27 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-365-web-apps-switch-multiple-accounts/ - Categories: 365 Apps, Microsoft 365 - Tags: Microsoft 365, News, Office web apps, Web App - Article Type: News Microsoft has released a new feature that allows users to switch between multiple personal and work accounts in Microsoft 365 web apps. The account switching capability began rolling out to all Microsoft 365 customers earlier this month, and it should become generally available in late June. Previously, the only way to switch accounts was to sign out of one account and then log in with another account. This latest update eliminates the need to use separate Microsoft Edge profiles or InPrivate windows and should help to increase users’ productivity. To try out this feature, users will need to click the account manager option available in the top-right corner of the Microsoft 365 web app. Now, users will be able to log in with a new account or switch to a different account previously signed into the browser. Once done, the webpage will automatically research to show the content from the new account. Microsoft has also detailed a few limitations of the account switching feature. Currently, it is impossible to run two or more active Microsoft 365 apps with different simultaneously in the same browser instance. For example, if a user has two browser tabs open with work and personal accounts, the app will prompt them to refresh the inactive tab. Account switching support coming to more Microsoft 365 web apps The firm ensures that it will maintain user data integrity and privacy across work/school accounts and organizations. “Security and privacy are extremely important for both Microsoft and our customers, and... --- ### Microsoft Partners With Red Button to Enhance Azure DDoS Protection - Published: 2022-04-26 - Modified: 2022-04-26 - URL: https://petri.com/microsoft-partners-red-button-ddos-protection/ - Categories: Security - Tags: Azure DDoS Protection Service, DDOS, News, Security - Article Type: News Microsoft has announced a new partnership with Red Button, an Israel-based Distributed Denial-of-Service (DDoS) attack simulation testing solutions provider. The Redmond giant believes that this collaboration will enable organizations to identify gaps and develop effective strategies to mitigate DDoS attacks. “With Red Button’s DDoS Testing service suite, you will be able to work with a dedicated team of experts to simulate real-world DDoS attack scenarios in a controlled environment. Simulation testing allows you to assess your current state of readiness, identify gaps in your incident response procedures, and guide you in developing a proper DDoS response strategy,” explained Alethea Toh, Product Manager for Azure Networking. Microsoft says that Red Button’s DDoS Testing suite consists of three different stages. As part of the planning process, Red Button experts analyze the network architecture, identify test scope and targets for DDoS attacks, and establish test schedules. The second step involves launching DDoS attacks against the client’s Azure services. Finally, the Red Button team delivers a detailed report summarizing the test results, vulnerabilities, and recommendations. Red Button also provides two additional service suites for Azure DDoS Protection customers. First up, there is an annual service called “DDoS 360” that provides various capabilities such as testing, hardening, skills development, as well as incident response. DDoS Incident Response is another service that offers a 30-day incident response plan. This service is designed to help organizations analyze the attacks and apply mitigations. Moreover, the Red Button also conducts training sessions to create awareness among employees regarding DDoS... --- ### Atlassian Releases Patches for Critical Jira Authentication Bypass Vulnerability - Published: 2022-04-26 - Modified: 2022-04-26 - URL: https://petri.com/atlassian-fixes-critical-jira-authentication-bypass-vulnerability/ - Categories: Security - Tags: Jira, News, Security, Vulnerability - Article Type: News Atlassian has released new security patches for its Jira and Jira Service Management solutions. The latest set of updates aims to address a critical vulnerability that could let attackers to bypass authentication controls. According to Atlassian’s security advisory, the bug was first discovered by Khoadha of Viettel Cyber Security. Tracked as CVE-2022-0540 and issued a CVSS score of 9. 9, the security flaw resides in Jira's authentication framework called Jira Seraph. For those unfamiliar, Seraph is a Servlet security framework that is used in J2EE web applications. It offers various security tools that help IT admins protect their Jira installations from cyber attacks. In Jira and Confluence, Seraph uses some pluggable core elements to handle all authentication requests. “A remote, unauthenticated attacker could exploit this by sending a specially crafted HTTP request to bypass authentication and authorization requirements in WebWork actions using an affected configuration,” the company explained. Atlassian confirmed that the CVE-2022-0540 vulnerability affects several products such as Jira Core Server, Software Server, Software Data Center, the Service Management Server, and the Management Data Center. However, the security flaw doesn’t impact the cloud-based Jira and Jira Service Management products. Here's the full list of versions affected by the CVE-2022-0540 vulnerability: Jira Core Server, Software Server, and Software Data Center prior to versions 8. 13. 18, the 8. 14. x, 8. 15. x, 8. 16. x, 8. 17. x, 8. 18. x, 8. 19. x, 8. 20. x before 8. 20. 6, and 8. 21. x. Jira Service Management Server and Management Data Center prior to versions 4. 13. 18, 4. 14. x, 4. 15. x, 4. 16. x, 4. 17. x, 4. 18. x, 4. 19. x, 4. 20. x before 4. 20. 6, and 4. 21. x. The Jira authentication... --- ### Apple Finally Discontinues Support for macOS Server App - Published: 2022-04-25 - Modified: 2024-11-19 - URL: https://petri.com/apple-discontinues-macos-server-app/ - Categories: Active Directory (AD) - Tags: Apple, macOS Server, News - Article Type: News Apple is phasing out its macOS Server application that was first released back in 2011. Indeed, the company has announced in a support document that macOS Server is discontinued as of April 21, 2022 (via MacRumors). According to Apple, all existing customers can still continue to download and use the app on the latest macOS Monterey. However, the company added that various server features from the app have already made their way into recent macOS versions. “The most popular server features—Caching Server, File Sharing Server, and Time Machine Server are bundled with every installation of macOS High Sierra and later, so that even more customers have access to these essential services at no extra cost,” Apple explained. The discontinuation of macOS Server shouldn’t be surprising because Apple has gradually deprecated many functionalities over the past few years. The list includes Dynamic Host Configuration Protocol (DHCP), Domain Name System (DNS), Virtual Private Network (VPN), messages, the Wiki, a mail server, NetInstall, AirPort management, as well as contact and calendar support. It is important to note that this change was a part of Apple’s efforts to shift its focus towards consumer products such as Macs and iPads. The company also indicated its lack of interest in the server business by killing off the Xserve family of rack servers in 2010. Apple advises macOS Server customers to migrate from Profile Manager Apple recommends users to switch from Profile Manager to third-party alternatives such as Microsoft's Active Directory (AD). The company has also provided... --- ### How to Use Git Bash on Windows - Published: 2022-04-25 - Modified: 2022-07-11 - URL: https://petri.com/how-to-use-git-bash-on-windows/ - Categories: DevOps - Tags: Bash, Bash on Windows, GIT, linux - Article Type: How To Git Bash is a terminal emulator shell and limited Linux-like environment for Windows that lets you run Git commands. Learn how to use the app in this detailed guide. What is Git Bash? Git Bash is a software tool for Windows. It runs Git commands using an emulation layer. Bash is a command-line shell for Nix operating systems. Git Bash installs Bash, some bash utilities, and Git on Windows. The app also lets you connect to remote Git repositories such as GitLab or GitHub, and run hundreds of Git commands like git clone, git config, etc. Although the app allows you to run all Git-related commands, it's also a Linux terminal that can run any standard Unix commands. What can you do with Git Bash on Windows? Now that you have a basic idea of what Git Bash is, it's also important to understand everything you can do with it. The app allows you to execute Linux commands, and run shell scripts, and it also allows you to navigate to text files and directories using the ls (list files) or cd (change directory) commands, or edit files using the vim command. For example: cd /usr/bin changes the working directory to the bin directory. The app also allows you to connect to Git repositories and manage them. How to download and install Git Bash You can download and install the app by following these simple steps. Download Git-2. 31. 0-64-bit. exe from the Git website. Double click the downloaded executable. In the dialog box, click... --- ### Microsoft Announces Free 1:1 Consultation Service for Small Businesses - Published: 2022-04-22 - Modified: 2022-04-22 - URL: https://petri.com/microsoft-announces-free-11-consultation-service-for-small-businesses/ - Categories: Microsoft - Tags: Microsoft, Microsoft 365, News, SMB - Article Type: News Microsoft has announced a free one-to-one consultation service for small businesses, including retailers, nonprofits, education institutions, and more. This new online consultation service is quite similar to the sales support plan introduced back in 2020, and it aims to assist SMBs and education customers with their digital transformation efforts. The Redmond giant explained in its press release that this new one-hour consultation service focuses on the sales support for its Microsoft 365 services and Surface devices. This service also includes free 30-minute product training sessions, but the company does not offer technical support via this appointment. However, customers are eligible to receive post-purchase product setup and deployment support. “The free Business Consultation service can help with digital transformation plans by deploying cloud-based technology tools and services such as Microsoft 365 and Dynamics to empower employees and unlock growth. Microsoft will be there every step of the way to answer questions and guide customers to find the solutions they need,” said Joy Attuh, Senior Hub Manager at Microsoft UK. How to book a one-to-one business consultation appointment To book an appointment, customers will first need to head to Microsoft’s Business Consultation website. Select a relevant topic from the list to connect with the right product expert. Now, choose a suitable date/time, provide basic information, and click the Review and confirm button. Users will receive an appointment confirmation email with a Microsoft Teams meeting link. For customers who don't have a Microsoft Teams account, there is also an option to sign in... --- ### This Week in IT - Is Microsoft Killing Off Patch Tuesday? - Published: 2022-04-22 - Modified: 2022-04-22 - URL: https://petri.com/this-week-in-it-is-microsoft-killing-off-patch-tuesday/ - Categories: Windows 10 - Tags: cloud computing, Exchange Server, Microsoft Endpoint Manager, PowerShell, Windows 10, Windows 11, Windows Autopatch, Windows Update - Article Type: Video This week in IT, Windows Autopatch could kill off Patch Tuesday for some enterprises, but not all might be what it seems. Remote Help is now generally available, and yes, it's expensive. Windows 10 November 2021 is ready for broad deployment. Microsoft is planning to disable SMB v1 in an upcoming Windows 11 release. Exchange Server cumulative updates are going biannual. Plus in this week's hot tip, learn how to block out time for task items on your Calendar in Outlook. And I look at the most interesting new how-to articles on Petri this week. About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Hive Ransomware Group Attacks Vulnerable Microsoft Exchange Servers - Published: 2022-04-22 - Modified: 2022-04-22 - URL: https://petri.com/hive-ransomware-group-attacks-vulnerable-microsoft-exchange-servers/ - Categories: Exchange Server - Tags: Exchange Server, News, Ransomware, Security - Article Type: News Security researchers have revealed a new series of ransomware attacks carried out by the Hive ransomware group to target Microsoft Exchange Servers. Hive is a popular ransomware-as-a-service (RaaS) model that was first discovered in June 2021. The Hive ransomware group targets business networks with several methods and mechanisms, including phishing emails with attachments. It has previously targeted non-profit organizations, healthcare providers, financial companies, and the energy sector. According to the Varonis Forensics Team’s report, Hive attackers are now exploiting the ProxyShell vulnerabilities in Microsoft Exchange Server. The Redmond giant released security patches to address the ProxyShell flaws in May 2021, but some organizations are still running vulnerable servers. The security vulnerabilities enable the hackers to gain system privileges on affected servers remotely. Once exploited, the Hive ransomware group creates a new system administrator account and then uses Mimikatz to steal the NTLM hash. Furthermore, it allows threat actors to use the pass-the-hash technique to take full control of the account. The attackers can now scan the backup servers to access sensitive data and information. Next up, a custom malware payload is deployed via a "windows. exe" file to perform specific tasks such as encrypting user files, clearing event logs, deleting shadow copies, as well as disabling security solutions. Finally, users will also see a ransomware note advising them to contact their sales representative via a website accessible through the Tor network. The Hive group threatens the organization to leak the sensitive data on the "HiveLeaks" Tor website if it refuses to... --- ### Microsoft Exchange Server Cumulative Updates will Shift to a Biannual Release Cycle - Published: 2022-04-21 - Modified: 2022-04-21 - URL: https://petri.com/microsoft-exchange-server-cumulative-updates-biannual-release-cycle/ - Categories: Exchange 2016, Exchange 2019 - Tags: Exchange 2016, Exchange 2019, Exchange Server, News - Article Type: News Microsoft has announced that the Exchange Server cumulative updates (CUs) are switching to a biannual release schedule. The company currently releases CUs quarterly, but this slow release cycle will allow organizations to keep their Exchange servers up-to-date more easily. “We are moving to a release cadence of two CUs per year – releasing in H1 and H2 of each calendar year, with general target release dates of March and September. But our release dates are driven by quality, so we might release updates in April or October, or some other month, depending on what we’re delivering,” the Exchange Server team explained. “The next CU will be released in H2 of 2022, and it will be for Exchange Server 2019 only. ” Microsoft releases new CUs for Exchange Server 2019 In addition to the new release cycle, Microsoft has announced the release of CU12 for Exchange Server 2019. The latest cumulative update brings Windows Server 2022 support and lets IT admins use multifactor authentication (MFA) with the "Hybrid Management PowerShell module. " Moreover, Microsoft has updated its licensing requirements to include a “product key for Exchange 2019 hybrid servers” at no additional cost. Previously, Exchange Online customers who also use Active Directory (AD) for identity management were required to install an Exchange Server to manage recipients. However, the company has now dropped this requirement for hybrid cloud Exchange users. Specifically, the CU12 introduces a new Exchange Management Tools role that eliminates the need to run the Exchange server for management purposes. This change... --- ### AWS Confirms Log4j Hotpatch Fix Leads to Privilege Escalation - Published: 2022-04-21 - Modified: 2022-04-21 - URL: https://petri.com/aws-log4j-hotpatch-fix-privilege-escalation/ - Categories: Amazon Web Services, Security - Tags: Apache Log4j, AWS, Log4j, News - Article Type: News Back in December, Amazon released emergency fixes to address the Log4j vulnerability in JVMs across multiple environments, but it looks like these updates still left some security loopholes. Since Amazon published the fixes, security researchers have discovered that the original hot patch left AWS customers vulnerable to container escape and privilege escalation bugs (via The Register). Log4J is a remote code execution vulnerability in Apache's popular Java library for logging error messages in applications. This security flaw allows attackers to gain access to all files stored on the target machine and delete/encrypt them for ransomware purposes. This vulnerability affected software and services from major vendors such as Microsoft, Apple, and VMware. AWS releases new hotpatches for Log4j vulnerability Amazon Web Services released new security patches earlier this week for Amazon Linux and Amazon Linux 2. These security updates address the high-severity vulnerabilities (tracked as CVE-2021-3100, CVE-2021-3101, CVE-2022-0070, CVE-2022-0071) introduced by Amazon's Log4j hotpatch. The company has credited Palo Alto Networks' Unit 42 threat research team, who had reported this bug back in December last year. Amazon is recommending all AWS customers using Java apps in their off-premise environments to install the latest patches as soon as possible. “Customers using the hotpatch for Apache Log4j on Amazon Linux can update to the latest hotpatch version by running the following command: sudo yum update. The hotpatch expects an environment containing the latest Linux kernel updates, and customers should not skip any available kernel updates when updating the version of the hotpatch in... --- ### How to Download a File using PowerShell > PowerShell can download files from the Internet and your local network to your computer. Learn how to use PowerShell's Invoke-WebRequest and Start-BitsTransfer cmdlets to download files here. - Published: 2022-04-21 - Modified: 2022-06-22 - URL: https://petri.com/how-to-download-a-file-using-powershell/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To PowerShell can download files from the Internet and your local network to your computer. Learn how to use PowerShell's Invoke-WebRequest and Start-BitsTransfer cmdlets to download files here. Welcome to another post on how PowerShell can assist you in your daily job duties and responsibilities. Being able to download files from the Internet and your local network with PowerShell is something I hadn't really thought a lot about. But, just thinking about the power and scalability of PowerShell intrigues me to no end. There are so many possibilities around scripts, downloading multiple files at the same time, auto extracting ZIP files, the list goes on and on. If you ever wanted to download the various Windows patching files from the Windows Update Catalog, you could script it if you have the exact URL. While a bit tedious at first, you could definitely get your groove on after a little bit of tweaking and learning. But let's first discuss prerequisites. Prerequisites They aren't stringent. You just need PowerShell 5. 1 or newer to use the commands in this post. Windows 10 and Windows 11 already include at least version 5. 1. Windows Server 2012/R2 comes with version 4. 0. You can also simply download the latest and greatest by downloading PowerShell 7. 2. x from this link. And, come to think of it, I'll use this URL later in the article and show you how to download this file... once you have an appropriate version installed. :) Use PowerShell to download a file from a local network... --- ### Use Azure ExpressRoute Private Peering & Azure Virtual WAN to Connect Privately to Microsoft 365 > Many Office 365 customers want to use Azure ExpressRoute to connect their on-premises network to the Microsoft cloud with a private connection. In this post, we're going to explain how to use Azure ExpressRoute with Microsoft Private Peering all while keeping costs down and enabling redundancy. - Published: 2022-04-21 - Modified: 2022-11-18 - URL: https://petri.com/use-azure-expressroute-private-peering-virtual-wan-connect-microsoft-365/ - Categories: Azure, Cloud Computing, Microsoft 365 - Tags: Azure, Azure ExpressRoute, Azure Virtual WAN, ExpressRoute, Microsoft 365, Private Peering - Article Type: How To Many Office 365 customers want to use Azure ExpressRoute to connect their on-premises network to the Microsoft cloud with a private connection. As you may know, though, Microsoft does not recommend using Azure ExpressRoute with Microsoft Peering to connect to Office 365. There are several reasons for that, let me point out a few of them: Implementing Azure ExpressRoute with Microsoft Peering for Microsoft 365 requires a highly complex routing configuration. It requires the use of public IP addresses that customers own for the peering. Azure ExpressRoute is normally working against the Microsoft global edge network distribution policy and breaks redundancy, as an ExpressRoute is only deployed within one location. Egress costs have a high-cost implication on Azure consumption. When using Microsoft Teams, you will have high egress data. Cost and scalability are usually not comparable to premium Internet connections. You can get an overview of the different ExpressRoute circuits in the chart below, where "Microsoft Edge" describes the edge routers on the Microsoft side of the ExpressRoute circuit: Why you may want to use Azure ExpressRoute to connect to Microsoft 365 There may be various customer scenarios where you need to use Azure ExpressRoute with Microsoft Peering enabled to connect to Microsoft 365 services. Here are two examples: A customer is in an area where regular Internet connections are not available to connect to Microsoft 365, such as China. A customer is in a highly-regulated environment. There is still the option to request Subscription Whitelisting to connect to Microsoft 365 via Azure ExpressRoute,... --- ### Microsoft to Disable SMB1 File-Sharing Protocol By Default on Windows 11 - Published: 2022-04-20 - Modified: 2022-04-20 - URL: https://petri.com/microsoft-disable-smb1-protocol-by-default-windows-11/ - Categories: Windows 11, Windows Server - Tags: News, SMB1, Windows, Windows 11 - Article Type: News Microsoft is finally getting ready to deprecate the SMB1 (Server Message Block version 1) file-sharing protocol on Windows PCs. Indeed, the company has announced that SMB1 is now disabled by default in the latest Windows 11 Home Dev Channel builds. SMB1 is an outdated file and resource sharing protocol that allows users to communicate with remote computers and servers. Microsoft stopped pre-installing the insecure security protocol on both Windows 10 and Windows Server back in 2017. However, some customers are still using it to connect their PCs to old NAS devices. It is important to note that hackers have previously exploited the security flaws in the protocol to launch ransomware attacks such as Petya and WannaCry. Fortunately, Microsoft has now decided to address this issue by disabling the long-deprecated SMB1 protocol by default on Windows 11 devices. The company says SMB1 clients will still be available as an optional feature to all Windows 11 users or organizations with old equipment (such as consumer NAS and medical devices). Users will be able to install it manually through the Control Panel, as shown in the screenshot below. “This means there is no edition of Windows 11 Insider that has any part of SMB1 enabled by default anymore. At the next major release of Windows 11, that will be the default behavior as well. Like always, this doesn't affect in-place upgrades of machines where you were already using SMB1. SMB1 is not gone here, an admin can still intentionally reinstall it,” said Ned... --- ### Microsoft Renames Data Governance and Compliance Products to "Microsoft Purview" - Published: 2022-04-20 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-data-governance-compliance-products-microsoft-purview/ - Categories: Compliance, Data Management, Security - Tags: Compliance, data governance, News, Security - Article Type: News Microsoft announced a significant revamp of its Azure Purview data-governance platform. The Redmond giant is rebranding the service as "Microsoft Purview" and also rolling out new Microsoft 365 compliance capabilities to the suite. The new Microsoft Purview suite provides customers with compliance tools that allow them to view all their data assets in one place. The new solution also enables organizations to manage risks and regulatory compliance. Moreover, it makes it easier to protect and manage sensitive data across apps, clouds and endpoints. “Microsoft Purview brings together data governance from Microsoft Data and AI, along with compliance and risk management from Microsoft Security. Microsoft Purview is also complemented by identity and access management, threat protection, cloud security, endpoint management, and privacy management capabilities—creating a truly comprehensive approach to security,” explained Alym Rayani, GM of Compliance and Privacy Marketing. Microsoft Purview Data Loss Prevention for macOS is now generally available In addition to the rebranding, Microsoft Purview offers integration with several new Microsoft 365 compliance solutions. First up, the firm has announced the general availability of Microsoft Purview Data Loss Prevention for macOS. The feature lets users protect sensitive data and information on devices running macOS Catalina or higher. The firm has also added co-authoring capabilities for encrypted Office documents on Android and iOS devices. This capability is currently available in preview for Microsoft 365 apps and services, including Word, Excel, and PowerPoint. Microsoft is introducing a new "multistage" data retention setting in Microsoft Purview Data Lifecycle Management. Prior to this... --- ### Microsoft Simplifies IT Monitoring with New Azure Managed Grafana Service - Published: 2022-04-19 - Modified: 2022-04-19 - URL: https://petri.com/microsoft-launches-new-azure-managed-grafana-service/ - Categories: Microsoft Azure, Microsoft Entra ID (Azure AD) - Tags: Azure, Azure Active Directory, Azure Data Explorer, Azure Monitor, News - Article Type: News Last year, Microsoft unveiled its plans to create a fully-managed version of Grafana that runs natively on its Azure cloud platform. Now, the Redmond giant has announced that the new Azure Managed Grafana service is now available in public preview. Grafana is basically an open-source platform that enables organizations to visualize multiple types of reliability data in a single dashboard. It provides graphs, charts, and alerts that simplify the task of detecting technical issues in business environments. Previously, enterprise customers used the self-managed open-source product to deploy Grafana on Azure. The new Azure Managed Grafana enables organizations to access the platform without managing the underlying infrastructure. It helps IT Admins detect technical issues across on-premises and Azure environments, as well as other cloud platforms. “Grafana helps you bring together metrics, logs and traces into a single user interface. With its extensive support for data sources and graphing capabilities, you can view and analyze your application and infrastructure telemetry data in real-time,” Microsoft explained in a support document. Azure Monitor gets new Grafana integrations In addition to the new service, Microsoft has announced some new Grafana integrations with Azure Monitor. It is now possible to quickly pin Azure Monitor visualizations from Azure Portal to new and existing Grafana dashboards. Moreover, the new Azure Grafana service has built-in support for Azure Data Explorer, a real-time data analytics and data exploration service for large volumes of streaming data. With this service, customers can view the telemetry data of connected devices right from the... --- ### Microsoft Introduces SQL Server Information Protection Sensitivity Labels - Published: 2022-04-19 - Modified: 2022-07-22 - URL: https://petri.com/microsoft-sql-server-information-protection-sensitivity-labels/ - Categories: Information Security, SQL Server - Tags: Data Protection, Information Protection, Microsoft Information Protection, News, sensitivity labels, SQL Server - Article Type: News Microsoft has announced a new data protection feature for its SQL Server tool. The new capability enables organizations to classify and protect SQL Server data with Microsoft Information Protection (MIP) sensitivity labels. If you’re unfamiliar, Microsoft Information Protection is a unified solution that enables customers to discover, classify, and protect data based on its sensitivity level. Essentially, it allows security administrators to monitor sensitive data and information to prevent unauthorized access. Microsoft explains that SQL Server data protection is based on the same Microsoft Information Protection technology built into the Microsoft 365 services. Companies will be able to apply the sensitivity labels to data via the SQL Server Management Studio (SSMS) tool. The data classification feature is available for SQL Server 2012 and later, and it supports SSMS version 17. 5 or newer. “If you have created standard sensitivity labels in Microsoft 365 and would like the same labels to flow down to SQL Server and other downstream applications like PowerBI, then you have the good news! This new capability in SQL native classification enables you to authenticate to M365 and fetch the sensitivity labels automatically which can then be applied to the critical columns,” the company explained. To get started, security administrators will need to head to the Microsoft 365 Compliance Center service to define the MIP sensitivity labels. Once done, they can use the SQL Server Management Studio to apply the labels to all data columns in SQL Server. Finally, a classification engine will scan the entire database for... --- ### Automate Team Creation in Microsoft Teams > Microsoft Teams can become a nightmare for IT administrators if team creation is uncontrolled. That's why it's a good idea to put a process in place to enable user productivity and ensure that administrators can easily manage new Teams. - Published: 2022-04-19 - Modified: 2022-04-19 - URL: https://petri.com/automate-team-creation-in-microsoft-teams/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, Power Automate - Article Type: Overview Microsoft Teams has become an essential communication and collaboration tool for many organizations. However, a powerful tool like this can become a nightmare for IT administrators if team creation is uncontrolled. We still want our end-users to be able to create their own space for working so they can remain productive, though. That's why it's a good idea to put a process in place to enable user productivity and ensure that administrators can easily manage new Teams. Microsoft Teams sprawl Microsoft Teams works with Microsoft's membership service for Office 365. When a user creates an Office 365 group, Office 365 will add each member to a shared workspace in Office 365. When a user creates a new team in Microsoft Teams, it also creates an Office 365 group. Therefore, the user has not just created a new team but also a new SharePoint team site for files, an email address in Outlook, a notebook in OneNote, a group in Yammer, and a Plan in Planner. Obviously, the multiplication of Office 365 groups can cause a Team sprawl when not managed. 'Microsoft Teams sprawl' happens when users are allowed to create teams on-demand without any governance. The idea of allowing all users to create new teams may seem great at first, but the truth is that you'll end up with an overwhelming number of rarely used or dead teams and too many empty channels. The result is that employees may spend a lot of time searching through the different channels... --- ### Windows 10 November 2021 Update is Now Ready for Broad Deployment - Published: 2022-04-18 - Modified: 2022-04-18 - URL: https://petri.com/windows-10-november-2021-update-is-now-ready-for-broad-deployment/ - Categories: Windows 10 - Tags: News, Windows 10, Windows 10 November 2021 Update - Article Type: News Microsoft has announced that the Windows 10 November 2021 Update (21H2), which began rolling out on November 16 last year, is finally ready for broad deployment. The news was quietly published on the Windows 10 Health Dashboard last week (via Bleeping Computer), and it indicates that all Windows 10 PCs running older versions of the OS are now eligible to install it via Windows Update. “Windows 10, version 21H2 is designated for broad deployment. As always, we recommend that you update your devices to the latest version of Windows 10 as soon as possible to ensure that you can take advantage of the latest features and advanced protections from the latest security threats,” the company explained on the Windows Health Dashboard. As a reminder, the Windows 10 November 2021 Update was a minor update, and it introduced WPA3 H2E standards support to boost Wi-Fi security. Secondly, Microsoft also added a simplified deployment method for Windows Hello for Business. Lastly, Windows 10 version 21H2 brings GPU compute support in Windows Subsystem for Linux (WSL). https://www. youtube. com/watch? v=8B5qthCMv0A In addition to these improvements, Microsoft has recently rolled out a new Search Highlights experience for Windows 10 versions 21H2, 21H1, and 20H2. For business users, the new feature surfaces important content relevant to their organization, including contacts, recent files, and more. The Windows 10 November 2021 Update is ideal for PCs that don’t meet the minimum hardware requirements for Windows 11. Windows 10 version 20H2 to reach end of support next month It is important... --- ### Microsoft Rolls Out Dynamic Administrative Units Support for Azure AD - Published: 2022-04-18 - Modified: 2022-04-18 - URL: https://petri.com/microsoft-dynamic-administrative-units-azure-ad/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has announced the public preview of dynamic administrative units with Azure Active Directory (Azure AD). The new feature lets organizations configure rules for adding or deleting users and devices in administrative units (AUs). Azure AD administrative units launched in public preview back in 2020. The feature lets enterprise admins logically divide Azure AD into multiple administrative units. Specifically, an administrative unit is a container that can be used to delegate administrative permissions to a subset of users. Previously, IT Admins were able to manage the membership of administrative units in their organization manually. The new dynamic administrative units feature now enables IT Admins to specify a rule to automatically perform the addition or deletion of users and devices. However, this capability is currently not available for groups. The firm also adds that all members of dynamic administrative units are required to have Azure AD Premium P1 licenses. This means that if a company has 1,000 end-users across all dynamic administrative units, it would need to purchase at least 1,000 Azure AD Premium P1 licenses. “Using administrative units requires an Azure AD Premium P1 license for each administrative unit administrator, and an Azure AD Free license for each administrative unit member. If you are using dynamic membership rules for administrative units, each administrative unit member requires an Azure AD Premium P1 license,” Microsoft noted on a support page. https://youtu. be/rqbCjzIQ_gA How to create dynamic membership rules in Azure AD According to Microsoft, IT Admins can create rules for dynamic administrative units... --- ### Microsoft to Make Changes to Cloud Licensing Restrictions after Customer Complaints - Published: 2022-04-18 - Modified: 2022-04-18 - URL: https://petri.com/microsoft-changes-cloud-licensing-restrictions-customer-complaints/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Microsoft - Tags: AWS, Azure, Google Cloud Platform, News - Article Type: News Microsoft is planning to make some changes to the way it licenses its products to customers who wish to use them on rival cloud platforms. According to a new report from Bloomberg, several customers have filed complaints against Microsoft’s policies regarding running Windows and Office on other cloud-computing services such as Google Cloud Platform or Amazon Web Services (AWS). Back in 2019, Microsoft introduced major changes to how customers could run some of its products on competing cloud services. As a part of this change, the company increased the cost of licensing its software (including Office and Windows on any cloud platform other than Azure. Moreover, Microsoft also restricted customers from running Office on rival cloud offerings. These licensing changes recently made headlines when some customers and software resellers started renewing their contracts with Microsoft. The customers were required to purchase an additional license that added millions to the total cost. This complaint comes after the European Commission began investigating Microsoft's alleged anti-competitive and bundling practices in the cloud computing domain. Microsoft acknowledges the "unintended consequences" of its business strategy As reported by Bloomberg, Microsoft President Brad Smith has spoken out regarding antitrust complaints from its competitors. Brad acknowledged that Microsoft needs to address these "valid" concerns. However, he added that Google and AWS could make similar licensing and pricing changes. In a statement shared with ZDNet, a Microsoft spokesperson said, "We're committed to listening to our customers and meeting the needs of European cloud providers. While not all of... --- ### This Week in IT - Windows 10 Gets Search Highlights and Is Microsoft in Hot Water Over Windows Cloud Pricing? - Published: 2022-04-15 - Modified: 2022-04-15 - URL: https://petri.com/this-week-in-it-windows-10-gets-search-highlights-and-is-microsoft-in-hot-water-over-windows-cloud-pricing/ - Categories: Windows 10 - Tags: cloud computing, Jira, Windows 10, Windows 11 - Article Type: Video This week in IT, April Patch Tuesday updates fix 119 vulnerabilities, Windows 10 Search Highlights hits general availability, Atlassian Jira/Confluence outage set to last for another two weeks, Microsoft to bring privileged access management to Windows via Endpoint Manager, and critics say Windows cloud licensing is anticompetitive. About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Microsoft Issues New Guidance on Securing Domain Controllers - Published: 2022-04-15 - Modified: 2022-04-15 - URL: https://petri.com/microsoft-issues-guidance-securing-domain-controllers/ - Categories: Active Directory (AD), Microsoft Entra ID (Azure AD) - Tags: Active Directory, Active Directory Domain Services, Azure Active Directory, Domain Controller, News, Security - Article Type: News Microsoft has released updated guidance to help enterprise customers protect domain controllers (DCs) against cyber attacks. The company urges IT admins to deploy Azure Active Directory (AAD) in their organizations to prevent security breaches. For those unfamiliar, a domain controller is a type of server that responds to security authentication requests from network endpoints (such as user workstations and servers). Domain controllers can read and write data to Active Directory Domain Services (AD DS), which can potentially cause security issues. Microsoft emphasized that protecting DCs from cyber attacks has always been a top priority of organizations. Previously, the company advised IT admins to completely restrict internet access to DCs. However, the dynamic cybersecurity landscape requires enterprise admins to revisit "best practices" on a regular basis. As part of this effort, the Redmond giant has recently updated its security guidelines for DCs with recommendations that align with changing security paradigm. Now, Microsoft advises that DCs should not have unfiltered access to the internet or an option to open a web browser from the servers. Essentially, it encourages all companies to adopt a defense-in-depth approach with modern threat protection mechanisms in place to consistently monitor security threats. Microsoft recommends cloud-powered protection for hybrid environments Meanwhile, Microsoft says that some organizations are currently using hybrid approaches. Basically, they use local Active Directory in their computing environments and synchronize it with Azure Active Directory. According to Microsoft, these organizations should also use the Microsoft Defender for Identity service. “To support the hybrid state, Microsoft... --- ### How to Reset OneDrive Synchronization > A OneDrive synchronization issue can cause a user to experience data loss. Learn how to reset OneDrive on your PC to get your content synchronized again. - Published: 2022-04-15 - Modified: 2023-02-27 - URL: https://petri.com/how-to-reset-onedrive-synchronization/ - Categories: Microsoft 365 - Tags: Microsoft 365, OneDrive - Article Type: How To A OneDrive synchronization issue can cause a user to experience data loss. Learn how to reset OneDrive synchronization here. The symptoms of OneDrive sync issues When OneDrive is running and working as expected, it is a boon for users to keep their content synchronized and always up-to-date on all their devices. However, like with many other products, it can get ugly when things aren't working as they should. Some of the symptoms you may notice when the OneDrive app sync engine is NOT in a happy place are: There's a red 'x' on or near the OneDrive icon in your system tray or notification area. You notice that recent changes you made to a file in OneDrive are not being reflected on another device or on your OneDrive website. When you check on the status of syncing with the OneDrive application, there are warnings or errors referenced pointing to an issue. What steps can you take to resolve these issues? Well, you can reset OneDrive. That essentially removes all connections/accounts you have with OneDrive from your computer and removes a bunch of configuration settings from the registry. Try some workarounds before resetting OneDrive But, before we go down that arguably 'drastic' route, let's try some quicker workarounds first. Try restarting OneDrive Restarting OneDrive resolves a surprising number of syncing issues or reliability issues. All you have to do is: Right-click on the OneDrive cloud icon in your system tray (SysTray) in the lower-right corner of your screen. A OneDrive window will... --- ### Best Practices for Installing Active Directory Domain Controllers in a Virtual Machine > Installing Active Directory domain controllers in a virtual machine (VM) can be useful if you want to separate them from the physical network, giving you more flexibility and additional protection for your Active Directory infrastructure. - Published: 2022-04-15 - Modified: 2024-02-01 - URL: https://petri.com/best-practices-for-installing-active-directory-domain-controllers-in-a-virtual-machine/ - Categories: Active Directory (AD), Windows Client OS - Tags: Active Directory, Domain Controller, domain controllers, Hyper-V, Read-Only Domain Controller, Windows Server, Windows Server Core - Article Type: Overview Installing Active Directory domain controllers in a virtual machine (VM) can be useful if you want to separate them from the physical network, giving you more flexibility and additional protection for your Active Directory infrastructure. In this guide, we're going to detail the best practices for installing Active Directory domain controllers (DCs) in a virtual machine. Why should you virtualize Active Directory Domain Controllers? Contrary to what you might have read over the past couple of years, on-premises Active Directory (AD) domain controllers are still widely used. Almost every project I have been working on, even the ones that are supposedly Greenfield, either included Active Directory in the design or required it to be added during the deployment phase because the requirements changed. These domain controllers need to be hosted somewhere, and for many organizations, virtualizing them has become the default option. Reduce security risks As an engineer working in the nineties, I remember my days of trying to hunt down a rogue or missing server in a server room multiple times larger than my home. Having less hardware will give you a better oversight of your gear, even though you still need to document and label every single piece of kit. A virtualized environment can make it easier to keep track of your servers and services. All of them should be clearly visible in Hyper-V Manager or alternative management tools. In case of an intrusion or attack, rollbacks are also easier since you should already have the capacity to... --- ### Microsoft Defender for Endpoint Adds Support for Windows Server 2012 R2 and 2016 - Published: 2022-04-14 - Modified: 2022-04-14 - URL: https://petri.com/microsoft-defender-for-endpoint-adds-support-windows-server-2012-r2-2016/ - Categories: Windows Server - Tags: Microsoft Defender for Endpoint, News, Windows Server 2012 R2, Windows Server 2016 - Article Type: News Microsoft Defender for Endpoint is finally getting support for some older versions of Windows Server. Indeed, the Redmond giant has launched a revamped Microsoft Defender for Endpoint solution for Windows Server 2012 R2 and Windows Server 2016. Microsoft announced a public preview of its new Defender for Endpoint solution back in October 2021. The unified solution stack promises to boost protections and simplify setups for users running Windows Server 2012 R2 and 2016. Moreover, IT Admins can now manage older configurations with PowerShell commands and Group Policy templates available for Windows Server 2019. It also eliminates the need to use the Microsoft Monitoring Agent (MMA). The new Microsoft Defender for Endpoint solution brings several new threat prevention, detection, and response capabilities for these older versions that were previously only supported on Windows Server 2019 or later. First up, it adds Microsoft Defender Antivirus protection for older versions of Windows Server. In addition, it is now possible for IT admins to configure the Potentially Unwanted Application (PUA) blocking feature and set up Attack Surface Reduction rules. Microsoft Defender for Endpoint Gets Automated Investigation and Response (AIR) feature for Windows Server 2012 R2 and 2016 Microsoft has also introduced an Automated Investigation and Response (AIR) capability to help organizations investigate and mitigate security issues. Here's the list of other improvements available for Windows Server 2012 R2 and Windows Server 2016: Network ProtectionControlled Folder AccessImproved detection capabilitiesExpanded response capabilities on devices and filesEDR in Block ModeLive ResponseTamper Protection According to Microsoft, the revamped... --- ### Microsoft Defender for Office 365 Gets Differentiated Protection for Priority Accounts - Published: 2022-04-14 - Modified: 2022-04-14 - URL: https://petri.com/microsoft-defender-for-office-365-gets-differentiated-protection-for-priority-accounts/ - Categories: Microsoft 365 - Tags: Microsoft Defender, Microsoft Defender for Office 365, News - Article Type: News Microsoft Defender for Office 365 is getting a new update that lets enterprise admins prioritize threat protection for critical users. The priority account protection feature, which was announced back in February, started rolling out earlier this week, and it should hit general availability next month. For those unfamiliar, Microsoft Defender for Office 365 introduced priority accounts support back in 2020. The feature enables IT admins to tag sensitive email accounts in an organization to prevent sophisticated attacks and security breaches. It is designed to protect employees such as managers, executives, and leaders who have access to sensitive information. With this release, Microsoft Defender for Office 365 service now uses machine learning to better protect users tagged as priority accounts. “By focusing on these specific user sets and the attacks targeting them, we were able to enhance machine learning models to provide a higher level of protection. We were also able to adjust other aspects of the protection stack such as how messages are handled in our detonation chambers, again increasing the protection provided to these accounts,” Microsoft said yesterday. How to configure priority account protection in Microsoft Defender for Office 365 Microsoft says that the priority account protection feature is enabled by default for all “pre-identified critical users” in an organization. However, IT admins will be able to manually turn on this feature by following these steps: First up, head to the Microsoft 365 Defender portal and navigate to Settings >> Email & collaboration >> Priority account protection. Finally, turn on... --- ### How to Install System Center Configuration Manager 2022 > In this post, I'll be showing you how to install Microsoft Endpoint Configuration Manager 2103, which comes with the latest version of System Center 2022 released in early April 2022. - Published: 2022-04-14 - Modified: 2025-02-17 - URL: https://petri.com/how-to-install-system-center-configuration-manager-2022/ - Categories: System Center - Tags: Microsoft Endpoint Manager, System Center, System Center Configuration Manager - Article Type: How To In early April 2022, Microsoft proudly announced System Center 2022. This is the latest version of the on-premises catalog of infrastructure server solutions for your company. System Center 2022 includes Microsoft Endpoint Manager (formerly Configuration Manager), Operations Manager (SCOM), Virtual Machine Manager (SCVMM), Orchestrator, Data Protection Manager (DPM), and Service Manager (SCSM). In this post, I'll be showing you how to install Microsoft Endpoint Configuration Manager 2103. Don't let the name and version number confuse you, I'll get to the naming changes below. I also have a separate post about how to install System Center Operations Manager 2022 (SCOM) on Petri. The installation media (ISO) that comes with System Center 2022 includes the stable release version 2103 (released in March of 2021). During setup or after setup, you'll have the ability to let Microsoft Endpoint Manager (MEM) download 'feature updates' from the current branch. This allows you to seamlessly run in-place upgrades to newer versions of Microsoft Endpoint Manager on each of your site servers. Newer versions include 2107, 2111, and the brand-new 2203 release! Some history about System Center Configuration Manager First, let's go through some recent history of the product as the naming conventions can be confusing. Back in the day, System Center Configuration Manager (SCCM) followed the same update cadence as the rest of System Center (2012 R2, 2016, 2019, etc. ). A few years ago, starting in version 1910 (October 2019), Configuration Manager became a part of Microsoft Endpoint Manager. Microsoft started releasing more periodic updates... --- ### How to Install System Center Operations Manager 2022 > System Center Operations Manager 2022 is the latest version of Microsoft's monitoring solution for your enterprise. This guide will show you how to install your first 'Management Server', which is the server that handles all the communication and sending of data to SQL databases. - Published: 2022-04-14 - Modified: 2022-04-14 - URL: https://petri.com/how-to-install-system-center-operations-manager-2022/ - Categories: System Center - Tags: Microsoft Endpoint Manager, System Center, System Center Operations Manager - Article Type: How To System Center Operations Manager (SCOM) 2022 is the latest version of Microsoft's monitoring solution for your enterprise. This guide will show you how to install your first 'Management Server', which is the server that handles all the communication and sending of data to its SQL databases for historical retrieval and analysis. In case you missed it, I just went through a long and somewhat tedious ordeal to install Microsoft Endpoint Configuration Manager (2022) in my lab. That was tiring. The amount of preparation and prerequisite planning you need to go through is staggering. Granted, Microsoft does have solid documentation on the subject and it was fairly easy to follow along with. But, in my honest opinion, the writing is on the wall. I believe Microsoft is keeping things tedious and inefficient for a reason: They want you to migrate to the cloud, of course! Start using the Microsoft Endpoint Manager admin center in your Microsoft 365 space. Let us take care of these steps and provide you with an easy-to-use Platform as a Service (PaaS) solution. Yes, I know, that's the future. Well, I do have more experience with System Center Operations Manager, so I'm pretty sure the process to install my first management server with the new '2022' version should be a trifle easier and less painful. Let me fill you in on the basics. Minimum requirements for System Center Operations Manager 2022 To get all the latest information about system requirements for System Center Operations Manager 2022,... --- ### Microsoft Lets Windows Server Admins Opt-In for Automatic .NET Updates - Published: 2022-04-13 - Modified: 2022-04-13 - URL: https://petri.com/microsoft-lets-windows-server-admins-opt-in-for-automatic-net-updates/ - Categories: Windows Server - Tags: .NET, .NET Core, .NET Core Framework, News, Windows Server - Article Type: News Microsoft has announced some important changes that should make it easier to manage . NET updates on Windows Server machines. Starting this month, IT Admins can now opt-in for automatic updates for . NET and . NET Core via Microsoft Update (MU). Previously, Windows Server updates for . NET and . NET Core were delivered to users via WSUS and the Microsoft Update Catalog. With this new opt-in option, IT Admins can now choose to install the . NET updates from the Automatic Updates (AU) channel. How to enable automatic . NET updates for Windows Server If you’re a Windows Server admin, you can enable automatic updates for . NET by manually configuring one or more registry keys. It is also possible to deploy registry keys to multiple Windows Server devices simultaneously via Group Policy. . NET VersionRegistry KeyNameValueALL“AllowAUOnServerOS”dword:00000001. NET 6. 0“AllowAUOnServerOS”dword:00000001. NET 5. 0“AllowAUOnServerOS”dword:00000001. NET 3. 1“AllowAUOnServerOS”dword:00000001 Microsoft highlighted that several Windows Server customers use different deployment management tools (such as Microsoft Endpoint Manager, Microsoft Intune, System Center Config Manager, and Windows Server Update Services) to control updates in their environments. However, this new feature is specifically designed for organizations who want to receive the new builds without using any deployment tool. This capability is already available for Windows client machines. “A small number of customers have told us they don’t use a deployment management tool and would like to leverage AU to update their servers similar to clients. We believe the opt in approach we’re rolling out today will allow these customers to get the benefit of AU for their server operating systems... --- ### Microsoft Aims to Streamline Certificate Lifecycle Management with Endpoint Manager - Published: 2022-04-13 - Modified: 2022-04-13 - URL: https://petri.com/microsoft-aims-to-streamline-certificate-lifecycle-management-with-endpoint-manager/ - Categories: Endpoint Management - Tags: Cloud Endpoint, Endpoint Management, Microsoft Endpoint Manager, News - Article Type: News Microsoft Endpoint Manager is getting a new cloud certificate lifecycle management solution for Public Key Infrastructure (PKI). The company says that this release will enable IT admins to deploy certificates directly within Endpoint Manager. For those unfamiliar, the Public Key Infrastructure (PKI) is an encryption framework that enables entities to protect communication between the client and server. It allows the owner to encrypt data, digitally sign documents, and authenticate users, devices, and services with certificates. The Public Key Infrastructure generally consists of elements such as a Digital certificate, Certificate authority (CA), Registration Authority (RA), as well as Certificate database. According to Microsoft, the new cloud-based solution simplifies how enterprise admins manage the lifecycle of PKI certificates across the organization. Furthermore, it reduces the complexity and skills needed to manage the underlying infrastructure. “We will introduce a certificate lifecycle management solution that makes the setup and deployment of certificates easier from the cloud,” the company explained. “It will make PKI certificate management simple to set up and provide seamless, passwordless authentication for users. Moreover, as a cloud-based service, it will be highly available and scalable, allowing IT professionals to reduce costs and focus on more strategic tasks. ” Microsoft Endpoint Manager to get automating device vulnerability management feature for third-party apps Microsoft is also adding an automated device vulnerability management feature to Microsoft Defender for Endpoint and Endpoint Manager for third-party apps. This new capability brings "continuous detection, assessment, and automated app patching” to help IT teams reduce security risks in their... --- ### Microsoft Endpoint Manager Will Let IT Automate and Manage Elevation to Admin Privileges - Published: 2022-04-12 - Modified: 2022-04-14 - URL: https://petri.com/microsoft-endpoint-manager-automate-manage-elevation-admin-privileges/ - Categories: Endpoint Management - Tags: Microsoft Endpoint Manager, News - Article Type: News Microsoft has announced a new automation feature coming to Microsoft Endpoint Manager. The solution enables employees to temporarily have admin privileges for specific tasks to boot productivity. “This new capability will allow IT admins to set rules that elevate standard user permissions so that those users can then perform certain admin-level tasks on a temporary basis. This removes barriers to user productivity, by allowing users to “self-serve” and perform allowed admin tasks on Windows devices when needed,” Gideon Bibliowicz, Senior Director of Product Marketing, Microsoft Endpoint Manager, explained in a blog post. Microsoft noted that it will be up to the IT admins to configure these endpoint privileges either manually or automatically. The company says that its solution stands out from others because it provides native integration with Microsoft Endpoint Manager. It also offers detailed insights into the nature of elevations. Microsoft launches Android Open Source Project device management Furthermore, it is now possible for IT admins to provision and configure Android Open-Source Project (AOSP) devices with conditional access to corporate resources. This feature is currently available in public preview, and it’s expected to hit general availability in the coming months. Microsoft is also working on a new feature that will let organizations set application protection policies for employees with multiple organizational accounts on a single device. This capability could be helpful for consultants, physicians, and recruiters. “This will enable company staff to use their favorite mobile apps with access to their company files from multiple organizational accounts and have... --- ### Microsoft Plans to Enable Organizations to Manage and Protect Linux Desktops - Published: 2022-04-12 - Modified: 2022-04-12 - URL: https://petri.com/microsoft-enable-organizations-manage-protect-linux-desktops/ - Categories: Endpoint Management - Tags: linux, Microsoft Endpoint Manager, News - Article Type: News Microsoft has announced its plans to bring Linux support to its Microsoft Endpoint Manager solution. The new feature will enable enterprise customers to access corporate resources through conditional access policies in Microsoft Endpoint Manager. Microsoft Endpoint Manager is a free cloud-based solution that helps organizations to reduce the time and effort involved in managing all desktop and mobile devices. It includes Microsoft Intune, Windows Autopilot, Desktop Analytics, Configuration Manager, co-management, as well as the admin center to help IT Admins protect and manage devices in their organization. With this new Linux desktop management capability, IT Admins will be able to configure Azure Active Directory (Azure AD) conditional access policies targeted at Linux devices. They will also be able to apply and manage security policies from Microsoft Defender for Endpoint. It should help to ensure that only compliant Linux devices can gain access to corporate resources such as Microsoft 365 apps. “Rather than allow exceptions for these specialty devices (which might have resulted in Linux desktops in an organization being unmanaged and unprotected), or blocking the use of them entirely, Endpoint Manager will allow organizations to target Linux devices and apply Conditional Access, device compliance, and device configuration policies,” the Microsoft Endpoint Manager team explained. Linux desktop management support coming soon to Ubuntu According to Microsoft, the Linux desktop management support will initially be available for Ubuntu devices. However, the company plans to add support for Redhat, CentOS, and Fedora in future releases. The Linux desktop management is expected to begin... --- ### Microsoft Tunnel Enables VPN Connections for Unenrolled Mobile Devices - Published: 2022-04-12 - Modified: 2022-04-12 - URL: https://petri.com/microsoft-tunnel-vpn-connections-unenrolled-mobile-devices/ - Categories: Endpoint Management, Microsoft 365 - Tags: Microsoft 365, Microsoft Endpoint Manager, Microsoft Tunnel Gateway, News - Article Type: News Microsoft has announced some important updates for Microsoft Endpoint Manager (MEM), the company’s on-premise and cloud-based security solution for enterprise customers. Microsoft Endpoint Manager will let IT admins enable secure VPN connections for unenrolled mobile devices via Microsoft Tunnel. Microsoft Tunnel was initially announced in September 2020, and it’s a VPN gateway solution for Microsoft InTune. Specifically, it allows access to on-premises apps and resources from mobile devices using modern authentication and Conditional Access. This solution helps to ensure that iOS and Android enterprise devices are always secure and compliant with corporate policies. With this new VPN feature, employees will be able to securely access privileged company resources on unenrolled mobile devices on the go. Microsoft says that this feature should bring an additional layer of security for end-users working in hybrid environments. However, it requires employees to use the Microsoft Edge mobile app. “Our plan is to provide a solution that benefits both users and IT admins, allowing workers to remain productive on their devices of choice with secure access to on-premises apps and websites while retaining their privacy, as only traffic from specific work-related apps is being sent via their company’s network. IT can apply the protection policy on a per-app basis so corporate data is protected,” Microsoft explained in a blog post. Microsoft Endpoint Manager's new premium add-on solution to arrive "over the next year" Microsoft claims that this new solution is unique because it provides strong authentication via Azure Active Directory (AAD). Moreover, it validates corporate... --- ### New Report Says Hackers Exploiting Spring4Shell Flaw to Spread Mirai Malware - Published: 2022-04-11 - Modified: 2022-04-11 - URL: https://petri.com/hackers-spring4shell-flaw-spread-mirai-malware/ - Categories: Security - Tags: Malware, News, Security, Spring4Shell, Vulnerability - Article Type: News A team of security researchers has discovered that attackers are now exploiting the critical Spring4Shell vulnerability to spread Mirai malware on target systems. The Mirai botnet malware attacks were first detected earlier this month, and the threat actors are currently targetting vulnerable web servers in the Singapore region. According to Trend Micro’s researchers, the threat actors have created a weaponized exploit that lets them successfully install Mirai on vulnerable systems. The security researchers explained that the malware file server stored multiple variants of Mirai designed for different CPU architectures. However, the blog post didn’t specifically mention the infected CPU or device type. “We observed active exploitation of Spring4Shell wherein malicious actors were able to weaponize and execute the Mirai botnet malware on vulnerable servers, specifically in the Singapore region,” Trend Micro researchers explained. “We also found the malware file server with other variants for different CPU architectures. ” Credits: Trend Micro The Spring4Shell flaw enables attackers to gain remote access to the targetted device and download the Mirai sample to the "/tmp" folder. Once done, the threat actor can then execute the malware following a permission change via the “chmod” command. Spring Framework versions affected by the Mirai botnet malware attacks Here’s a list of the configurations that render systems vulnerable: Java Development Kit (JDK) version 9 or higherApache TomcatSpring Framework versions before 5. 2. 20, 5. 3. 18spring-webmvc or spring-webflux dependencyPackaged as a traditional web application archive (WAR)Writable file system like ROOT or web apps The Mirai botnet malware recently made headlines following a... --- ### Microsoft 365 Non-Profit Plans to Get a Price Hike in September - Published: 2022-04-11 - Modified: 2022-04-11 - URL: https://petri.com/microsoft-365-non-profit-plans-price-hike-september/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Office 365 - Article Type: News Microsoft has announced that it’s increasing the pricing for most of its non-profit Office 365 and Microsoft 365 subscription plans later this year. This pricing update applies to all new and existing non-profit customers, and it follows the pricing changes for Microsoft 365 commercial plans last month. The Redmond giant explained on its Partner Center support page (via The Register) that it had added more than 1,400 new capabilities to its Office 365 and Microsoft 365 offerings over the past decade. These include new features for AI and automation, communication and collaboration, as well as security and compliance. Moreover, it has also introduced 24 new apps to the suites, such as Microsoft Teams, OneDrive, and Planner. Microsoft believes that it’s the right time to increase the price of its Office 365/Microsoft 365 suites for non-profit customers. These pricing changes will go into effect on September 1, 2022. “This is the right time to update our pricing. Although there are still questions and uncertainty, we see clear signs of economic recovery around the world. Moreover, over the past few years our competitors have increased prices, in some cases aggressively. We simply have a better story and proven track record of reinvestment in the product and consistently delivering new value to our customers,” the company explained in a FAQ document. Microsoft 365 non-profit plans pricing updates Here are all the details about all the pricing changes: Microsoft Office 365 E1 will go from $2 to $2. 50Microsoft Office 365 E3 will go from... --- ### This Week in IT - Microsoft Demos the Future of Windows 11 But ETA Missing in Action - Published: 2022-04-08 - Modified: 2022-04-09 - URL: https://petri.com/this-week-in-it-microsoft-demos-the-future-of-windows-11-but-eta-missing-in-action/ - Categories: Windows 11 - Tags: ARM, Azure, Config Lock, Microsoft Endpoint Manager, Remote Help, Smart App Control, Windows 11, Windows 365 - Article Type: Video This week in IT, Microsoft’s Windows 11 event this week was filled with promises of what the future holds but little on the when or how new features would work or be delivered. But there is lots YOU could use to become more PRODUCTIVE and SECURE. So, I’ll be looking at the new Windows 11 features announced by Microsoft. So you can understand which are going to be available to YOU and how YOU might use them in practice. Plus preview support for ARM Ampere CPUs on Azure VMs. About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Microsoft Details Efforts to Fight Russian Cyber Attacks Targeting Ukraine - Published: 2022-04-08 - Modified: 2022-04-08 - URL: https://petri.com/microsoft-details-efforts-fight-russian-cyber-attacks-ukraine/ - Categories: Active Directory (AD) - Tags: Microsoft, News, Security - Article Type: News Microsoft has detailed its latest efforts to tackle cyber attacks targetting organizations in Ukraine. The Redmond giant revealed that it had successfully disrupted a series of high-profile attacks by a Russian state-sponsored hacking group dubbed “Strontium. ” Strontium is one of the most popular APT groups worldwide that works closely with the Russian military intelligence agency known as the GRU. This particular group has previously carried out hacking and information warfare operations during the 2016 US presidential election. Additionally, Russian hackers were involved in a cyberattack targetting the opening ceremony of the 2018 Winter Olympic Games. Microsoft uses sinkhole to block Russian cyberattacks Microsoft explained in its press release that it had seized seven internet domains used by Strontium to conduct cyber attacks. Specifically, these domains were being to target Ukrainian media organizations, as well as EU and US government agencies and think tanks involved in foreign policy. The company received a court order on April 6 that allowed it to take control and re-direct these internet domains to a Microsoft-managed sinkhole. According to Microsoft, the hackers wanted to gain long-term access to sensitive data and information stored within the internal systems of the targeted organizations. The company says that it has reported Strontium's malicious activities to the Ukrainian government. “This disruption is part of an ongoing long-term investment, started in 2016, to take legal and technical action to seize infrastructure being used by Strontium. We have established a legal process that enables us to obtain rapid court decisions for this... --- ### Reviewing Your Backup Checklist > With World Backup Day just behind us, our backup checklist can help guide you through the process of verifying that your backups are doing what you expect them to do, and what they need to do to protect your sensitive data. - Published: 2022-04-08 - Modified: 2023-09-07 - URL: https://petri.com/reviewing-your-backup-checklist/ - Categories: Backup & Storage, Cloud Computing, Data Management - Tags: Backup, backup and recovery, Backup and Restore, Cloud Backup - Article Type: Overview With World Backup Day just behind us (and yes there really is such a thing – it was March 31st), now would be a good time to review your backup checklist to ensure your critical data has the protection that your organization requires. The following backup checklist can help guide you through the process of verifying that your backups are doing what you expect them to do, and what they need to do to protect your sensitive data. Let’s have a look at some of the main items to check off in your backup checklist: Your Backup Checklist starts with your documentation Make sure your backup policies reflect your values: The first place to start with your checklist is to check your policies to make sure that you really are backing up the data that you need to protect. Your policies should identify the data that needs to be backed up, its priority, as well as the frequency and type of backup that you need in order to meet your Recovery Time Objectives (RTOs) and Recovery Point Objectives (RPOs). You need to have Runbooks that describe the backup procedures. Next, you should have documented procedures that describe how to perform your backup operations. Even more important than documentation showing how to perform your backups is the documentation that shows how to perform restoration of the different types of data that you may need for different recovery scenarios. This World Backup Day data shows why you need to review your Backup... --- ### VMware Releases Patches to Fix Critical Remote Code Execution Exploit in Workspace ONE Access - Published: 2022-04-07 - Modified: 2024-11-19 - URL: https://petri.com/vmware-patches-remote-code-execution-exploit-workspace-one-access/ - Categories: Security - Tags: News, vmware, Vulnerability - Article Type: News VMware has released patches to address several “critical” security vulnerabilities impacting its products. The company published a security advisory that encourages customers to apply all security patches and mitigations as soon as possible. VMware says that the security flaws in its enterprise software were privately reported by a security researcher at the Qihoo 360 Vulnerability Research Institute. The list of affected products includes VMware Workspace ONE Access, VMware vRealize Automation (vRA), VMware Identity Manager (vIDM), vRealize Suite Lifecycle Manager, and VMware Cloud Foundation. “All environments are different, have different tolerance for risk, and have different security controls and defense-in-depth to mitigate risk, so customers must make their own decisions on how to proceed. However, given the severity of the vulnerability, we strongly recommend immediate action,” VMware said in a security alert issued yesterday. The first security vulnerability (CVE-2022-22954) could be exploited by an attacker with network access to trigger server-side template injection that may lead to remote code execution (RCE). The security flaw impacts VMware Workspace ONE Access and Identity Manager and received a CVSS score of 9. 8. Additionally, VMware has released security updates to patch the exploits (CVE-2022-22955 and CVE-2022-22956) discovered in the OAuth2 ACS framework. The vulnerabilities enable threat actors to “bypass the authentication mechanism and execute any operation due to exposed endpoints in the authentication framework. " The security flaws impact VMware Workspace ONE Access. Lastly, the last two bugs, tracked as CVE-2022-22957 and CVE-2022-22958 with a CVSS score of 9. 1, affect Workspace ONE Access, vRealize Automation, and... --- ### Amazon Enhances VMware Support in AWS Backup > AWS Backup now allows IT admins to restore individual virtual disks that are attached to your VMware virtual machines, and AWS Backup is also now capable of protecting VMware’s Software-Defined Data Centers (SDDC) on VMware Cloud on AWS Outposts.  - Published: 2022-04-07 - Modified: 2022-04-07 - URL: https://petri.com/amazon-enhances-vmware-support-in-aws-backup/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon Web Services, AWS, AWS Backup, AWS Outposts, VMware Cloud on AWS Outposts - Article Type: News AWS Backup provides centralized data protection for your essential Amazon Web Services (AWS) services, as well as hybrid workloads leveraging on-premises VMware and VMware Cloud on AWS. AWS Backup is a fully managed, policy-based backup service that enables data protection at scale. Earlier this month, Amazon announced a couple of important enhancements to AWS Backup for improved VMware support. First of all, IT admins can now restore virtual disks from protected copies of their VMware virtual machines. Additionally, Amazon's backup service is adding support for VMware Cloud on AWS Outposts. AWS Backup now allows you to restore virtual disks from VMs First, in addition to being able to restore entire Virtual Machines (VMs), AWS Backup now provides you with the ability to restore individual virtual disks that are attached to your VMware VMs. This new enhancement enables you to restore a VMware virtual disk to either a VM in another VMware environment or to an AWS Amazon Elastic Block Store (EBS) volume. AWS Backup adds support for VMware Cloud on AWS Outposts Next, Amazon's backup service also now enables you to protect VMware’s Software-Defined Data Centers (SDDC) on VMware Cloud on AWS Outposts.   In case you’re not familiar with AWS Outposts, it's an Amazon-provided hardware platform that runs on-premises to supply hybrid cloud services. Amazon provides the hardware and software, and they are also responsible for tasks like maintenance, provisioning, patching, and backups. Outposts are connected to the closest AWS cloud region. VMware Cloud on AWS Outposts is a jointly-engineered solution by... --- ### What is Ansible – The Ultimate Guide - Published: 2022-04-07 - Modified: 2024-11-19 - URL: https://petri.com/what-is-ansible/ - Categories: DevOps - Tags: Ansible, Automation, DevOps - Article Type: Overview Ansible is the most widely used DevOps tool for managing changes across your cloud or data center infrastructure. In this article, you will get an overview of how Ansible works and how you can get started with it. What is Ansible? Ansible is an automation platform tool used for easily deploying applications and system configurations on multiple servers. It can be used for starting Linux services, creating dozens of Linux users, updating passwords, and much more. Ansible is an agentless solution that manages machines over the Secure Shell Host (SSH) protocol. It requires a database but it doesn’t use any background services (daemons). Ansible uses built-in ad hoc commands and Ansible playbooks for deploying software or executing commands. Also, Ansible contains hundreds of modules for deploying or configuring remote nodes. How Ansible works Now, you have a basic idea about what Ansible is. But for Ansible to work, you will need four components: The Ansible Control Node, also known as the Ansible Controller host, is the server where Ansible is installed. This node executes all the Ansible ad hoc commands and Ansible playbooks to deploy or manage the configurations or software on the remote nodes.  Ansible remote nodes, also known as Ansible managed nodes, are the servers or network devices where you deploy applications or configurations using Ansible ad hoc commands or an Ansible playbook. These are also known as Ansible hosts. The Ansible inventory is a file on the Ansible Controller host or Control Node which contains a list of all the remote hosts or managed nodes. Ansible modules, also known as Ansible core modules, are the code plugins or libraries plugins that can be used from the command line or a playbook task. Ansible executes each module, usually on the remote-managed node. Why use Ansible? Working in IT, you're likely doing... --- ### A Complete Guide to Robocopy > Robocopy is a powerful command-line tool for Windows that allows users to synchronize files and folders from one location to another. Learn more about everything you can do with Robocopy here. - Published: 2022-04-07 - Modified: 2022-09-29 - URL: https://petri.com/robocopy-complete-guide/ - Categories: Windows Server - Tags: command line, Robocopy, Windows, Windows 10, Windows 11 - Article Type: How To Robocopy is a powerful command-line tool for Windows that allows users to synchronize files and folders from one location to another. Learn more about everything you can do with Robocopy here. What is Robocopy? Robocopy stands for "Robust File Copy. " It is a powerful (and potentially scary) command-line utility to copy or move files from one place to another. It is a favorite amongst many IT Pros, mostly due to its overwhelming number of useful features and switches. It was built to be more robust (hence the name) than Xcopy or the original copy command. Robocopy was first released with the Windows NT 4. 0 Resource Kit (! ). It has been a standard 'feature' in Windows since Windows Vista and Windows Server 2008. What's the difference with XCopy? The biggest difference between Robocopy and Xcopy is the bewildering number of features, switches, flags, etc. There have also been several performance enhancements to Robocopy, making it a more pseudo-like backup utility compared to Xcopy. How Robocopy works As I've already stated several times, Robocopy contains a robust set of options, switches, and flags to be as meticulous as you need for all your file transfer tasks that land on your plate. Let's go through all these lovely options together! Robocopy is like a Swiss Army Knife for system administrators who need perform any kind of file operations on Windows. You can use it to: Copy files from one folder to another on the same deviceCopy files across a network and resume... --- ### Cloud Conversations – Zoe Wilson on Viva, Career & Community Journeys > Zoe Wilson is a Microsoft MVP and she's also Director of Innovation and Customer Success at Agilisys. In this week's Cloud Conversations episode, Zoe joins Kat and Azure to talk about enabling Microsoft Viva, Mentoring, Women in Tech, and being an individual contributor vs leader of a team. - Published: 2022-04-06 - Modified: 2022-04-07 - URL: https://petri.com/cloud-conversations-zoe-wilson-viva-career-community-journeys/ - Categories: Video - Tags: Cloud Conversations, Microsoft Viva, Women In Tech - Article Type: Video Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Zoe Wilson on Viva, Career & Community Journeys Zoe Wilson is Microsoft MVP for Office Apps & Services, and she's also Director of Innovation and Customer Success at Agilisys. In this week's episode, Zoe joins Kat and Azure to talk about: Enabling Microsoft VivaMentoringWomen in TechBeing an individual contributor vs leader of a team More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri’s Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Microsoft Teams' Presenter Mode Now Lets Users Move and Resize Video Feed - Published: 2022-04-06 - Modified: 2022-04-06 - URL: https://petri.com/microsoft-teams-presenter-mode-move-resize-video-feed/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has started rolling out a new update for its Teams collaboration service that should help users to make their presentations more engaging. The Presenter Mode feature in the Teams desktop app now lets presenters move and resize their video feeds. “Now, presenters can decide how they will be shown with respect to the content. In Standout, Reporter and Side-by side mode, they can now choose to appear on the left or right and adjust the video feed size to better fit for each type of presentation,” the company explained in a blog post. This release should make it easier for presenters to ensure that important content isn’t obscured by their video feed. Microsoft says that the customizations will be retained even if the presenter closes the window. To try out this feature, follow the steps mentioned below: First up, go to the Calendar and click the Meet Now button to start a new meeting. Select the Share content option to share a Window or Screen and choose any presenter mode (Standout, Side-by-Side, or Reporter). Now, use the toolbar buttons that show up on the presenter modes preview window to customize the video size and position. Microsoft Teams Gets Attendance Reports for Breakout Rooms In addition to the new Presenter Mode option, Microsoft Teams has also rolled out some improvements for the Breakout Rooms feature. The app now allows meeting organizers to download attendance reports for each breakout room as a CSV file. As shown in the screenshot below, the attendance report... --- ### Microsoft Publishes Advisory About New Spring4Shell Cyberattacks - Published: 2022-04-06 - Modified: 2022-04-06 - URL: https://petri.com/microsoft-publishes-advisory-spring4shell-cyberattacks/ - Categories: Security - Tags: Microsoft, News, Security, Spring4Shell, Vulnerability - Article Type: News Microsoft has published details about a critical security vulnerability dubbed "Spring4Shell" in the Spring Framework for Java. The Redmond giant recommends its Azure cloud service customers to patch the critical remote code execution (RCE) exploit immediately. Disclosed by the WMware owned Spring on March 31, the company has already deployed a hotfix to address the Spring4Shell flaw. The RCE vulnerability (CVE-2022-22965) could be exploited by threat actors by “sending specially crafted queries to servers running the Spring Core framework. ” Spring is a popular open-source framework that is used to develop enterprise-grade Java applications. Microsoft notes that the CVE-2022-22965 vulnerability has received a CVSS score of 9. 8, and it affects JDK 9 or higher. “In Java Development Kit (JDK) version 9. 0 or later, a remote attacker can obtain an AccessLogValve object through the framework’s parameter binding feature and use malicious field values to trigger the pipeline mechanism and write to a file in an arbitrary path, if certain conditions are met,” the Microsoft Defender threat intelligence team explained. Microsoft warns that some additional requirements for exploitation include: The application runs on Apache TomcatThe application is packaged as a traditional Java web archive (WAR) and deployed in a standalone Tomcat instance. The high-severity flaw impacts Spring Framework versions 5. 3. 0 to 5. 3. 17, 5. 2. 0 to 5. 2. 19, and older versions. Spring4Shell: Discovery and mitigations The company has provided a couple of hunting queries to help Microsoft Sentinel & Microsoft 365 Defender customers track the SpringShell exploitation activity in their organizations. Moreover, enterprise admins can use the... --- ### Microsoft Announces Remote Help, A New Premium Endpoint Management Solution for Windows - Published: 2022-04-05 - Modified: 2022-04-05 - URL: https://petri.com/microsoft-remote-help-endpoint-management-windows/ - Categories: Endpoint Management, Windows 11 - Tags: Endpoint Management, Microsoft Endpoint Manager, News, Security, Windows 11 - Article Type: News Microsoft is holding its “Windows Powers the Future of Hybrid Work” digital event this morning, where Chief Product Officer Panos Panay announced some new security and management experiences for Windows 11. The company has announced security enhancements such as phishing protection capabilities, Smart App Control, as well as a premium endpoint management solution for helpdesk employees. Microsoft Defender SmartScreen offers enhanced phishing protection Microsoft reiterates its commitment to safeguarding its customers from cyberattacks by bringing the phishing detection and protection capabilities of Microsoft Defender SmartScreen into Windows 11. The new built-in security feature will now warn Windows users while entering their credentials into a malicious website or application. Smart App Control The Redmond giant has also introduced a new Smart App Control feature to prevent users from running malicious apps or processes on Windows 11 PCs. This new AI-powered capability will now block all “untrusted or unsigned” applications by default. Smart App Control will come pre-installed with all new devices that launch with Windows 11. However, the feature will not work on devices running previous versions of the OS, which will require a clean installation. Personal data encryption Additionally, Microsoft is bringing a new personal data encryption feature to Windows 11. As the name suggests, it aims to ensure the security of personal data and files for remote workers even when the user is not logged into their system. “To access the data, the user must first authenticate with Windows Hello for Business, linking data encryption keys with the user’s... --- ### Windows 11 Gets Revamped File Explorer and New AI-Powered Meeting Features - Published: 2022-04-05 - Modified: 2022-04-05 - URL: https://petri.com/windows-11-revamped-file-explorer-meeting-features/ - Categories: Windows 11 - Tags: File Explorer, File Explorer Tabs, News, Windows 11 - Article Type: News Microsoft is planning to roll out a couple of new experiences to Windows 11 users. Indeed, the biggest news is a redesigned Windows 11 File Explorer app with contextual suggestions that makes it easier for users to find important documents. The company also detailed new AI-powered meeting features and Windows 365 integrations. “The redesigned, cloud-powered File Explorer makes it easier to find what you’re looking for, allowing you to see all files in one centralized place. You can also pin files and create tabs in File Explorer, bringing what used to take six clicks to get to an important file to one,” explained Microsoft Chief Product Officer Panos Panay. https://youtu. be/9cOQhajQKwU In addition to these File Explorer improvements, Windows 11 is getting new Focus experiences, such as an integrated focus timer, breaks, and do not disturb mode, to help users focus on important tasks. Other updates include enhancements to the touch experience, App folders in the Start menu, and system-wide Live Captions. Windows 11 adds new intelligent meeting features Microsoft is also improving the existing video calls and meetings experience on Windows 11 PCs. Voice Focus is the name of the first AI-powered feature that will benefit the built-in Teams chat app in Windows 11. The feature analyzes an individual’s audio feed and automatically filters out any background noise. The new “Eye Contact” capability should help presenters improve eye movements while engaging with meeting participants. The Redmond giant is improving the background blur feature, which lets speakers softly fade everything in... --- ### Microsoft Adds Ampere ARM CPU Support to Azure Virtual Machines - Published: 2022-04-05 - Modified: 2022-04-05 - URL: https://petri.com/microsoft-adds-ampere-arm-cpu-support-to-azure-virtual-machines/ - Categories: Azure, Microsoft Azure - Tags: ARM, Azure Virtual Machines, CPU, News, vCPU, virtual machines - Article Type: News Microsoft has released a preview version of Arm support on Azure virtual machines (VMs). The company claims that its new Arm-powered Azure VMs should offer up to 50 percent better price-performance compared to similar instances with x86-based processors. “The new Azure Virtual Machines, featuring the Ampere Altra Arm-based processor, further extend our portfolio of compute solutions to help customers manage complexity and seamlessly run modern, dynamic, and scalable applications. Azure customers will benefit from the improvements the new VMs provide in terms of scalability, performance, and operational efficiency,” explained Paul Nash Head of Product, Azure Compute Platform. The company highlighted that its new Epsv5 VM-series is built to cater to the demands of “memory-intensive Linux workloads” such as open-source databases, data analytics, and more. Moreover, the Dpsv5 series is specifically designed to run various Linux enterprise workloads, including open-source databases, . NET/Java applications, as well as web/application servers. According to Microsoft, the latest Dpsv5 and Epsv5 virtual machines can be configured with up to 64 virtual CPUs. Furthermore, users can opt for VM sizes with 2GiB, 4GiB, and 8GiB per vCPU memory configurations. The Azure VMs also provide support for optional high-performance local SSD storage and up to 40 Gbps networking. The new Azure VMs support a wide range of operating systems It is important to note that the latest virtual machines currently support several operating systems. The list includes Canonical Ubuntu Linux, CentOS, and Windows 11 Professional and Enterprise Edition on Arm. Going forward, the company is also planning to... --- ### System Center 2022 is Now Available with New Datacenter Management Capabilities - Published: 2022-04-04 - Modified: 2022-04-04 - URL: https://petri.com/system-center-2022-is-now-available-with-new-datacenter-management-capabilities/ - Categories: Azure, Microsoft Azure - Tags: Azure, Datacenter, System Center - Article Type: News Microsoft has announced the general availability of System Center 2022, its datacenter management suite for enterprise customers. The first new feature that the company highlighted today is support for Windows Server 2022 and Azure Stack HCI 21H2. This means that IT Admins can now use the System Center Virtual Machine Manager for managing Azure Stack HCI clusters. For those unfamiliar, System Center is a set of tools that help enterprise admins to manage their networks of Windows Server and client computers. It provides a unified datacenter management experience with out-of-the-box deployment, configuration, management, as well as infrastructure monitoring capabilities. According to Microsoft, System Center 2022 features six main components designed to help organizations with various IT operations. “Today, we are excited to announce the general availability of System Center 2022, which includes System Center Operations Manager (SCOM), Virtual Machine Manager (VMM), System Center Orchestrator (SCORCH), Service Manager (SM), and Data Protection Manager (DPM),” the company explained. System Center 2022 brings a new Microsoft Teams integration for SCOM The latest release brings some new features for System Center Operations Manager (SCOM). The company says that SCOM is getting a new Microsoft Teams integration that enables IT Admins to receive alerts and mitigate issues. There are also improved access control capabilities and new tools that should make it easier to manage alert closures. In addition to this, SCOM is getting new enterprise support for the latest Linux distributions, such as Oracle Linux 8, Ubuntu 20, Debian 10, and Debian 11. Microsoft has... --- ### How to Write and Run a PowerShell Script File on Windows 11 > PowerShell scripts are a great way to automate repetitive tasks. In this guide, we're going to detail how you can write and run a PowerShell script on Windows 11 using PowerShell, the PowerShell ISE, or Visual Studio Code. - Published: 2022-04-04 - Modified: 2023-12-05 - URL: https://petri.com/how-to-write-and-run-a-powershell-script-file-on-windows-11/ - Categories: PowerShell - Tags: PowerShell, Windows 11 - Article Type: How To PowerShell is a command-line tool developed by Microsoft for automating common administrative tasks. A script is a collection of PowerShell commands, stored into a text file, with a *. ps1 file extension. When executing a PowerShell script, the interpreter reads the file and runs the commands sequentially. You can create a PowerShell script using any text editor (even NotePad). But preferably, it is recommended to use a PowerShell script editor. The default editor included in Windows is the PowerShell Integrated Scripting Environment (PowerShell ISE). It includes useful functions like color coding, code completion, syntax checking, debugging, auto-save, crash protection, etc. Microsoft has a free cross-platform code editor called Visual Studio Code (VS Code), which is available for Windows, Linux, and macOS. It supports a variety of programming languages through extensions that you can install, including PowerShell. One advantage of Visual Studio Code is that it supports the most recent versions of PowerShell, while the PowerShell ISE only supports up to PowerShell version 5. 1. How to run a PowerShell script (quick guide) Here's a quick rundown of how to run a PowerShell script. The following method works for PowerShell scripts that don't have required parameters and don't return output to the command prompt. Right click the PowerShell script in File Explorer. Select Run with PowerShell from the context menu. The script will run with an execution policy of Bypass. The execution policy for the computer or user isn't changed. For more details on writing and running PowerShell scripts, keep on reading! ... --- ### Cloud NAS Shootout: Amazon EFS/FSx versus Azure Files > Organizations looking to move some or all of their file systems to the cloud can opt for service providers such as Microsoft Azure Files, Amazon Elastic File System, or Amazon FSx. This article compares these options based on 4 key parameters – performance, price, features, and support. - Published: 2022-04-04 - Modified: 2022-08-05 - URL: https://petri.com/cloud-nas-shootout-amazon-efs-fsx-versus-azure-files/ - Categories: Amazon Web Services, Azure, Backup & Storage, Microsoft Azure - Article Type: Overview Organizations looking to move some or all of their file systems to cloud storage have choices. The options from the two biggest public cloud service providers are Microsoft Azure Files, Amazon Elastic File System (EFS), or Amazon FSx. All these platforms offer cloud-based serverless storage, allowing you to avoid maintaining complex file systems. This article compares these options based on 4 key parameters – performance, price, features, and support. Azure Files One fundamental building block of Microsoft's Azure storage services is Storage Accounts, which are top-level resources that represent a shared pool of storage. These resources offer table, queue, and blob storage for an application’s persistent storage requirements. In 2014, Microsoft launched Azure Files, an extension of the Storage Account resource, allowing access to file storage with the Server Message Block (SMB) and Network File System (NFS) protocols used in traditional file system infrastructure. In 2020, Azure Files was enhanced to integrate with Windows Active Directory for familiar share and NTFS Access Control List (ACL) management. This added functionality meant augmenting or even replacing traditional on-premises SMB-based file systems with a serverless cloud infrastructure was now feasible. Azure Files can be provisioned in two flavors: Standard (based on HDDs): It offers 3 varieties, cold, hot and transaction optimized, offering cost-effective options for infrequent access. Capacity is practically limitless with a 100 tebibyte (TiB) limit per premium storage account and multiple storage accounts possiblePremium (based on SSDs): This option offers better performance with 100K max input/output operations per second (IOPS) vs. 20k max IOPS. however, it doesn't offer the geo-redundancy options of the former. SMB and NFS are not Wide Area Network (WAN)-optimized protocols. Organizations looking to utilize Azure Files at the enterprise scale can... --- ### QNAP to Fix Critical OpenSSL Bug Impacting NAS Devices - Published: 2022-04-02 - Modified: 2022-04-02 - URL: https://petri.com/qnap-critical-openssl-bug-nas-devices/ - Categories: Security - Tags: NAS Devices, News, QNAP, Security - Article Type: News Taiwan-based QNAP Systems has confirmed a new OpenSSL bug that impacts most of its network-attached storage (NAS) devices. According to the company's advisory, the security flaw leads to an infinite loop that would result in a denial-of-service (DoS) state. The security vulnerability, tracked as CVE-2022-0778 and issued a CVSS “high” severity score of 7. 5, has already been addressed by OpenSSL last month. However, QNAP has yet to release a security update to fix the issue in its NAS devices. "An infinite loop vulnerability in OpenSSL has been reported to affect certain QNAP NAS. If exploited, the vulnerability allows attackers to conduct denial-of-service attacks," QNAP explained in its security advisory. "Currently there is no mitigation available for this vulnerability. We recommend users to check back and install security updates as soon as they become available. " OpenSSL is a popular cryptography library that provides an open-source application of the TLS protocol that makes network communication more secure. According to OpenSSL, the security flaw is present in the BN_mod_sqrt function. We’ll spare you the technical details, but the threat actors could potentially create a certificate with invalid explicit curve parameters to trigger DoS states on the targetted device. QNAP says the OpenSSL bug impacting most of its NAS devices In its security advisory, QNAP confirmed that the OpenSSL bug affects the following NAS devices: QTS 5. 0. x and laterQTS 4. 5. 4 and laterQTS 4. 3. 6 and laterQTS 4. 3. 4 and laterQTS 4. 3. 3 and laterQTS 4. 2. 6 and laterQuTS hero h5. 0. x and laterQuTS hero h4. 5. 4 and laterQuTScloud c5. 0. x QNAP... --- ### VMware Releases Emergency Fix for "Spring4Shell" Vulnerability in Spring Framework - Published: 2022-04-01 - Modified: 2024-11-19 - URL: https://petri.com/vmware-fix-spring4shell-vulnerability-spring-framework/ - Categories: Security - Tags: flaw, News, Security, Spring, Vulnerability - Article Type: News VMware has released emergency patches to address the “Spring4Shell” remote code execution exploit in the Spring Framework. The company is recommending all users to install these updates (version 5. 3. 18 and 5. 2. 20) as soon as possible. The security researchers recently discovered a new zero-day exploit in the Spring Framework called “Spring4Shell” that could lead to unauthenticated remote code execution (RCE) on applications. The CVE-2022-22965 vulnerability was first reported to VMware by security researchers at AntGroup FG and impacts Spring Core on JDK (Java Development Kit) 9 and above. “The vulnerability impacts Spring MVC and Spring WebFlux applications running on JDK 9+. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i. e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it,” Spring explained in its security advisory. VMware has published a list of specific requirements that can be used to determine whether a Spring app is vulnerable: Apache Tomcat as the Servlet containerPackaged as a traditional WAR (in contrast to a Spring Boot executable jar)spring-webmvc or spring-webflux dependencySpring Framework versions 5. 3. 0 to 5. 3. 17, 5. 2. 0 to 5. 2. 19, and older versions Spring is a lightweight open-source framework that allows developers to build robust, scalable, and secure Java-based enterprise applications. It can help to improve coding efficiency and reduce the time it takes to develop an application. The developers can deploy... --- ### This Week in IT - Windows Update Gets the Greta Thunberg Seal of Approval - Published: 2022-04-01 - Modified: 2022-04-02 - URL: https://petri.com/this-week-in-it-windows-update-gets-the-greta-thunberg-seal-of-approval/ - Categories: Windows 10, Windows 11 - Tags: Greta Thunberg, Microsoft, Minit, News, Power Automate, Power Platform, video, Windows 10, Windows 11, Windows Update - Article Type: Video Windows Update gets new energy efficiency feature, Microsoft buys Minit for mining, and QNAP says its NAS devices are vulnerable to a critical OpenSSL bug. About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Report: New Phishing Campaign Targets Calendly Users to Steal Credentials - Published: 2022-04-01 - Modified: 2022-04-01 - URL: https://petri.com/new-phishing-campaign-calendly-steal-credentials/ - Categories: Security - Tags: News, Phishing, Security - Article Type: News The security analysts at INKY have recently discovered a new phishing campaign that targets Calendly, an automated meeting scheduling tool. The company explained that the campaign aims to steal users’ credentials by embedding malicious links into Calendly event invitations. Calendly is a popular app that allows users to schedule meetings, appointments, and events for individuals and organizations. It allows users to see all the available openings in the organizer's schedule and choose an ideal time slot for both parties. Calendly supports Google, Office 365, and Outlook calendars, and it has integrations with popular apps like Zoom, GoToMeeting, and Microsoft Teams. According to the report, the threat actors designed a fake email notification from Calendly, informing users that they have received a new fax document. The hackers abused the “Add Custom Link” feature to embed the malicious link within the text on the event page to make it look less suspicious. Once the link has been opened, users will be redirected to the phishing web page (that mimics a legitimate Microsoft login form) to steal login credentials. The Calendly phishing campaign, which started in February 2022, targets Google Workspace and Microsoft 365 customers. “If the victim had not been tipped off by the strangeness of the situation, they might have clicked on the PREVIEW DOCUMENT link and been taken to a credential-harvesting page that impersonated Microsoft. Hovering over the link (indicated by the red arrow above) would have shown that it led to https://dasigndesignscom/ss/updation/index. html, a hijacked site that is listed in... --- ### Getting Started with hMailServer - Published: 2022-04-01 - Modified: 2022-04-01 - URL: https://petri.com/getting-started-with-hmailserver/ - Categories: Messaging - Tags: email, hMailServer, Messaging - Article Type: How To hMailServer is a free email server for organizations, businesses, and individuals which is easy to install and simple to use. Find out how to install and configure hMailServer in this overview. What is hMailServer? Have you ever wondered if there were any decent alternatives to Microsoft Exchange as your mail server? Well, there is! hMailServer is an open-source, free email server for Microsoft Windows environments. Honestly, I wasn't aware of this solution. It was first developed in late 2002 by Martin Knafve. Since that time, it has become one of the most popular email servers for Windows. After looking over its features, it does remind me of MDaemon back in the 90s. Those were the days... The core features of hMail Server The main components of hMailServer include a simple installation and configuration procedure, built-in security measures (support of SSL certificates, integration with virus scanners, email black list servers, and SPF/MX lookups), integrations with other software products via a COM library, and many more. I'll get into more of these features later on. Is hMailServer secure? The security of hMailServer depends on what steps you take during its initial setup, installation, and configuration. Out of the box, it won't be secure. There will be no secure email transfer occurring at all. The default ports like 110 (POP3), 25 (SMTP), 143 (IMAP) are insecure. However, when you add an SSL certificate and create new bindings in the software, you'll gain secure transfer of email via ports 995 (POP3 SSL), 465... --- ### Everything you need to know about Power Platform – March 2022 > Microsoft’s March 2022 offerings to the Power Platform community span changes to the model-driven app experience, an introduction “GPT-3”, and some previews of some new independently made app connectors - Published: 2022-04-01 - Modified: 2022-04-01 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-march-2022/ - Categories: Power Automate, Power Platform, PowerApps, PowerBI - Tags: Microsoft Teams, power apps, Power Automate, power automate desktop, Power BI, Power Platform To tune down the madness of March 2022, Microsoft’s offerings to the Power Platform community span changes to the model-driven app experience, an introduction “GPT-3” (what runs the “Ideas” in Power Apps), and some previews of some new independently made app connectors. March has been a great month to be a low/no-code developer, so let's dive in into what's new for Microsoft's Power Platform in March 2022. Model-driven updates This month, Microsoft has rolled out the April Release Wave 1 updates for model-driven apps, allowing users to enable what’s called the “modern” experience.  You’ll need to opt in (for now), but that’ll provide you with access to features such as the modern Advanced Find, in-app notifications, and collaboration enhancements.   In-app notifications are now available You’ll also see the new Power Apps grid, which is a new read-only grid control. You can read more about these updates here. Power Platform tools for Visual Studio Code We are now able to install the Power Platform extension into Visual Studio Code, and now you’ll be able to see a Power Platform icon on the activity bar.  A click on this Power Platform icon launches a sidebar that shows stored authentication profiles, a list of environments and solutions within those environments.   The new Power Platform icon in VS Code Additionally, as a preview capability, you’ll be able to install applications from AppSource. To read more about Power Platform tools for Visual Studio Code, click here. Pay-as-you-go Power Apps Microsoft is touting the availability of the promised... --- ### Microsoft Acquires Business Process Mining Solutions Provider Minit - Published: 2022-03-31 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-acquires-business-process-mining-minit/ - Categories: Cloud Computing, Data Management - Article Type: News Microsoft announced this morning that it has acquired Minit, an Amsterdam-based provider of process mining solutions, for an undisclosed amount. The Redmond giant has already invested in process mining technology with its Power Automate tool, and this new acquisition will help customers to improve operational efficiency. Minit is known for its automated tools that enable customers to analyze inefficiencies across their organization and standardize and optimize their business processes to make better decisions. It offers advanced process enhancement capabilities such as AI-powered root-cause analysis, process simulation, and hierarchical visualization. Microsoft’s Minit acquisition will help to boost digital transformation Microsoft highlights that many organizations and businesses are looking for ways to become "operationally resilient" and drive digital transformation plans. Microsoft plans to use Minit’s technical expertise to bolster its Power Automate product, which helps customers to visualize and get valuable insights from processes. It should help customers to digitize their existing workflows to reduce the effort, time, and cost involved in the manual process. “This acquisition will further empower Microsoft to help our customers digitally transform and drive operational excellence by creating a complete picture of their business processes, enabling every process to be easily and automatically analyzed and improved,” explained Justin Graham, General Manager of Process Insights at Microsoft. “Customers will be able to better understand their process data, uncover what operations look like in reality and drive process standardization and improvement across the entire organization to ensure compliance at every step,” Graham added. Microsoft's acquisition of Minit adds to... --- ### Microsoft Releases Public Preview of Arc Enabled Azure Stack HCI - Published: 2022-03-31 - Modified: 2022-06-03 - URL: https://petri.com/microsoft-public-preview-arc-enabled-azure-stack-hci/ - Categories: Azure, Azure Stack HCI, Cloud Computing, Microsoft Azure - Tags: Azure, cloud computing, News - Article Type: News Microsoft has launched a public preview of Arc-enabled Azure Stack HCI. The Redmond giant says that the new integration enables customers to manage Linux or Windows virtual machines (VMs) on Azure Stack HCI via Azure Arc. For those unfamiliar, Azure Arc is a multi-cloud management service that enables customers to use Azure services with Azure VM workloads. Moreover, the Azure Stack HCI solution integrates hybrid infrastructure with Azure services, and lets organizations run virtualized Linux and Windows workloads. With this new integration, enterprise admins can now use Azure Resource Manager templates for virtual machine (VM) CRUD. It should help them automate the deployment of edge infrastructure running on Azure Stack HCI. There is also a new ARM projections feature that lets users delegate VM CRUD permissions to employees or groups within the organization. “Azure Arc integration also makes Azure Stack HCI and the virtual machines on it, first class entities in Azure with ARM projections. That means, these entities can have role-based access natively through ARM which allows for self-service in VM provisioning,” the company explained. Additionally, the Arc-enabled Azure Stack HCI service brings the ability to put "Locks & Tags" on virtual machines with organizational policies. How to enable Azure Arc-based VM operations Microsoft outlines the steps enterprise admins can follow to enable Azure Arc in order to manage VMs in their Azure Stack HCI clusters. First up, head to the Windows Admin Center and set up an Azure Arc Resource Bridge on the Azure Stack HCI cluster. Create a... --- ### Globant Confirms Lapsus$ Hackers Had Unauthorized Access to Customers’ Source Code - Published: 2022-03-31 - Modified: 2022-03-31 - URL: https://petri.com/globant-lapsus-hackers-access-customers-source-code/ - Categories: Security - Tags: hacked, Hacking, Lapsus$, News - Article Type: News Earlier this week, the Lapsus$ hacking group claimed that it had stolen 70GB of data from Globant, a Luxembourg-based IT and software development firm. Globant confirmed yesterday that the hackers did manage to breach its network and access some of its corporate customers’ source code without authorization. “According to our current analysis, the information that was accessed was limited to certain source code and project-related documentation for a very limited number of clients. To date, we have not found any evidence that other areas of our infrastructure systems or those of our clients were affected. We are taking strict measures to prevent further incidents,” Globant explained yesterday. In a Telegram post, Lapsus$ shared a screenshot showing folders containing the source code of several companies presumed to be Globant clients. The list includes C-Span, Citibank, Abbott, and Facebook. In addition to the source code, the hacker group also shared a list of login credentials (with weak passwords) for some of Globant’s servers, including GitHub, Jira, Confluence, and Crucible. The screenshots of the hacked data were shared by Malware research group VX-Underground on Twitter yesterday. The London police arrested seven teenagers over Lapsus$ hacks The Lapsus$ group has recently made the headlines for hacking some big technology companies, including Microsoft, Samsung, Nvidia, Okta, and Ubisoft. Lapsus$ hackers utilize several unsophisticated methods to target their victims. These techniques include SIM-swapping, social engineering, deploying password stealers, and bypassing multifactor-authentication systems. The latest breach comes a few days after the London police arrested seven suspected... --- ### Set Up and Manage Viva Topics in Microsoft Teams > Viva Topics help organizations manage the information and knowledge they have in Microsoft 365, including Teams and SharePoint. It takes a modern approach to knowledge management by organizing a company's knowledge into topic cards. In this guide, learn how to set up and manage Viva Topics. - Published: 2022-03-31 - Modified: 2022-03-31 - URL: https://petri.com/microsoft-teams-viva-topics/ - Categories: 365 Apps, Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, Microsoft Viva, Viva, Viva Topics - Article Type: How To Viva Topics is one of the four modules of Microsoft Viva, the company's new employee experience platform that launched on Microsoft Teams last year. The app works as a knowledge management system that leverages organization content on SharePoint Online. In any business, knowledge is king. Without it, your employees could not provide a service to your customers. However, information is typically stored in silos or by functional teams. Although knowledge exists across these teams, it is rarely easily accessible to anyone searching for it. That's where Topics, the new knowledge discovery module in Microsoft Teams can help. What is Viva Topics? This Viva module helps organizations manage the information and knowledge they have in Microsoft 365. It takes a modern approach to knowledge management by organizing a company's knowledge into topic cards. A topic card gives an overview of a subject when an employee sees an acronym, a project, or an unfamiliar term. Each topic card contains information about the topic, documents, and subject matter experts. Figure 1: Viva topic card in SharePoint Online There are currently four places where you will see topics: Highlighted on SharePoint pagesTopic answers in search resultsSearch in Office applicationsTopic center home page The Topics module uses Microsoft's artificial intelligence (AI) to identify topics in Microsoft 365. When the app identifies a topic and the company's AI determines that it has enough information for it to be a suggested topic, a topic page will display the information that was gathered through topic indexing, such... --- ### CISA Publishes Advisory About Cyber Attacks Targeting Internet-Connected UPS Devices - Published: 2022-03-30 - Modified: 2022-03-30 - URL: https://petri.com/cisa-cyber-attacks-internet-connected-ups-devices/ - Categories: Security - Tags: Data Center, News, Security, VPN - Article Type: News The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory about ongoing cyberattacks against internet-connected uninterruptible power supply (UPS) devices. The US government encourages organizations to change their default user name and password settings to prevent hackers from targeting UPS devices. An uninterruptible power supply (UPS) is a device that allows computer systems and IT equipment to keep running during a power outage. Many UPS devices can connect to the internet which enables enterprise admins to carry out monitoring and maintenance activities. However, these internet-connected UPS units are also susceptible to cyber-attacks, disrupting the power supply in mission-critical environments, such as data centers and server rooms. “CISA and the Department of Energy (DOE) are aware of threat actors gaining access to a variety of internet-connected uninterruptable power supply (UPS) devices, often through unchanged default usernames and passwords. Organizations can mitigate attacks against their UPS devices, which provide emergency power in a variety of applications when normal power sources are lost, by removing management interfaces from the internet,” the federal agencies explained in the security advisory. CISA provides remediation steps to block attacks against Internet-connected UPS devices CISA has advised IT Admins to ensure that all UPS devices in their organization are not accessible via the internet. Nevertheless, the agencies understand that sometimes this is not possible and have also made some recommendations in this regard. These organizations should enforce multi-factor authentication, hide UPS devices behind virtual private networks (VPNs), and implement login timeout/lockout policies. Moreover, CISA also urges enterprise... --- ### Microsoft's Revamped Azure Front Door CDN Offers Two New Tiers - Published: 2022-03-30 - Modified: 2022-08-01 - URL: https://petri.com/microsofts-revamped-azure-front-door-cdn-offers-two-new-tiers/ - Categories: Azure, Cloud Computing, Microsoft Azure - Tags: Azure CDN, Azure Front Door, CDN, cloud computing, News - Article Type: News Microsoft has announced a revamped version of Azure Front Door, its secure cloud content delivery network (CDN) service for protecting apps and websites. The new enterprise CDN service provides higher availability, improved security, low latency, as well as scalability to help meet the demands of the hybrid working models. The Azure Front Door service comes with two Standard and Premium tiers, and it will replace the older Azure Front Door and Azure Content Delivery Network (CDN) products. “Today, we are announcing the general availability of the new Azure Front Door, our native, modern cloud content delivery network (CDN) catering to both dynamic and static content acceleration with built-in turnkey security, and a simple and predictable pricing model,” the company explained. Microsoft highlights that the new version of Azure Front Door brings improvements in three key areas. First up, the service is built on modern architecture with enhanced automation, rules engine, manageability, as well as simplified provisioning. It also adds improved analytics capabilities like a health probe diagnostic log, making it easier for IT Admins to monitor, troubleshoot, and debug issues. In addition to the modern architecture, the Redmond giant emphasized that the new Azure Front Door service utilizes over "118 edge locations across 100 metro cities" via its private Wide Area Network (WAN). The service comes with a simplified cost model and aims to ensure the unified delivery of static and dynamic content. Lastly, Microsoft has also introduced new “intelligent” security features in Azure Front Door. The list includes support... --- ### What is Grafana: The Ultimate Guide - Published: 2022-03-30 - Modified: 2024-11-19 - URL: https://petri.com/what-is-grafana/ - Categories: DevOps - Tags: DevOps, Grafana - Article Type: Overview In today's DevOps era, most organizations use hundreds of different services.  Monitoring all of these is crucial for keeping your systems running without any issues. And one of the most widely used service monitoring tools is Grafana. In this ultimate guide, we will give you a complete overview of Grafana, so let's get started! What is Grafana? Grafana is an open-source tool that allows you to query, visualize, analyze, and receive alerts on metrics and logs, no matter where they are stored. It also allows you to query data and it supports dozens of visualizations. Grafana comes with rich support for many databases like Graphite, Prometheus, Elasticsearch, and Influx DB. And it supports various cloud monitoring solutions such as Amazon Cloud Watch, Microsoft Azure, SQL, Postgres, and MySQL databases. ?  See what a Grafana Dashboard looks like and all the features it has. What is Grafana used for? Although Grafana provides lots of features on its dashboard, the main use of Grafana is to collect data from various data sources and then visualize the data. It can also notify you of issues once you have configured alerting. Collecting data Grafana collects data from various sources, which you will learn about later in the guide. Grafana uses APIs to collect data. As an example, the GET /api/datasources API is used to collect data. Visualizing data When it comes to visualization, nothing can beat Grafana. It provides dozens of visualizations in various formats such as tables, bar charts, and many more. We'll discuss the most important visualizations later in this guide. Grafana dashboard features and functions Grafana provides hundreds of useful functions to build a strong monitoring dashboard. Let's jump into this interesting section and look at the great features and... --- ### 11 Ways to Take a Screenshot on Windows Devices > Do you often look for the easiest way to take a screenshot on your PC? Here are ten easy-to-use and useful methods to take a screenshot on your Windows devices. - Published: 2022-03-30 - Modified: 2022-06-30 - URL: https://petri.com/screenshot-on-windows-devices/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Windows, Windows 10, Windows 11 - Article Type: How To Do you often look for the easiest way to take a screenshot on your PC? Screenshots can be extremely helpful if you want to share what you are seeing on your screen with others, or to keep something for reference later. Here are ten easy-to-use ways to take a screenshot on your Windows devices. Windows screenshot shortcuts using the keyboard There are three main Windows screenshot shortcuts. For all of them, you'll need to be familiar with the Print Screen key, the Windows key, and the Alt key on your keyboard. TIP: Check out this article on Petri for more information on using keyboard shortcuts. For those unfamiliar, the PrtScn key is usually in the upper right corner of your keyboard. The Windows key is in the lower-left corner, while the Alt key is right next to the Windows key. Here are the keyboard keys you need to use to take screenshots Here are three different ways to take screenshots using your keyboard. 1. Print Screen You can press the Print Screen (the PrtScn key) to capture a full-screen screenshot, including the taskbar on your screen. It will send the image automatically to the Windows clipboard. On laptops, you may have to hold the Function (Fn) key while pressing the PrtScn to capture a screenshot. Once your screenshot is on the clipboard, you can open it with Microsoft Paint or any other image editing software to edit and save it. If you need a quick screenshot, Print Screen is a really straightforward option. 2. Win + Print Screen The Win + PrtScn option also captures your entire screen, the only difference is that it saves the screenshot as an image file. You... --- ### Microsoft Windows Update for Business Gets New Gradual Rollouts Feature - Published: 2022-03-29 - Modified: 2022-03-29 - URL: https://petri.com/microsoft-windows-update-for-business-gets-new-gradual-rollouts-feature/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, Windows Update - Article Type: News Microsoft has released a new gradual rollouts feature for its Windows Update for Business deployment service. This new capability was first announced in November 2021, and it aims to ensure a smoother feature update experience for organizations with specific software and hardware compatibility issues. For those unfamiliar, Windows Update for Business was introduced in March 2021. It is designed to provide IT administrators with greater control over the approval and scheduling of Windows updates. It works with PowerShell, Microsoft Graph APIs, and Microsoft Endpoint Manager. With this new gradual rollouts feature, enterprise Admins can now use a machine learning-based approach to automatically determine which Windows 10 or Windows 11 PCs should receive the latest feature update. “The deployment service enables you to successfully update your entire population of Windows PCs or devices and limit the impact of potential issues through gradual rollouts. It does so by intelligently ordering devices to be updated in waves, where every wave is designed to help you discover incompatibilities and implement solutions with the fewest devices and users affected,” the company explained in a blog post. How to configure a gradual rollout policy in Microsoft Intune To get started with the gradual rollouts feature, IT Admins will first need to set up and configure the AllowWUfBCloudProcessing policy in their tenant by following these steps: First of all, head to the Microsoft Endpoint Manager admin center and navigate to Devices > Configuration profiles > Create profile. Select the "Windows 10 and later platform and then set Profile... --- ### Microsoft to Launch Office 365 Government Secret Cloud in Mid-2022 - Published: 2022-03-29 - Modified: 2022-03-29 - URL: https://petri.com/microsoft-launch-office-365-government-secret-cloud/ - Categories: Cloud Computing, Microsoft 365 - Tags: Microsoft, News, Office 365 - Article Type: News Microsoft has announced its plans to launch Office 365 Government Secret, a new cloud offering for government agencies and their partners. The company says that this new security offering is currently in government review, and it’s expected to become generally available in mid-2022. Microsoft highlighted that the Office 365 Government Secret cloud service is built on its Azure Government classified environments. This service supports Impact Level 6 (IL6), and it’s designed for the US government agencies who need to manage secret classified data. The goal is to modernize the existing legacy infrastructure to meet data management demands of the Department of Defense (DoD), US Federal Civilian, Intelligence Community (IC), as well as other US government partners that deal with Secret-classified information. “This new environment will run the latest enterprise-grade Office 365 Government productivity, security, compliance, and collaboration applications. We have a comprehensive approach to build, test, onboard, and audit our products to be compliant with government regulations, which will help ensure security and compliance for the environments. We work to drive efficiencies internally and with government regulatory bodies to help improve the timeliness of products to market,” explained Paul Lorimer, CVP for Office 365 Enterprise and Cloud Engineering. Office 365 Government Secret joins the existing family of Azure clouds It is important to note that this new service joins the existing family of Azure clouds available to US government customers, including Azure Government Secret and Top secret clouds. These services are designed to help users with text translation, human and... --- ### Microsoft Patches Five Critical Security Flaws in Azure Defender for IoT - Published: 2022-03-29 - Modified: 2022-07-25 - URL: https://petri.com/microsoft-patches-critical-security-flaws-azure-defender-for-iot/ - Categories: Microsoft Azure, Security - Tags: Azure Defender for IoT, News, Security, Vulnerability - Article Type: News Security researchers have uncovered five critical vulnerabilities in Microsoft Azure Defender for IoT. The Redmond giant has already released new security patches to address these exploits, and it recommends all enterprise customers to install them as soon as possible. According to a report from SentinelOne‘s SentinelLabs, these security vulnerabilities were first discovered by researchers Kasif Dekel and Ronen Shustin. The cyber security company explained that the flaws could potentially allow attackers to exploit certain weaknesses in Azure's password reset mechanism to remotely gain unauthorized access to targeted machines. SentinelLabs says that the security vulnerabilities, tracked as CVE-2021-42310, CVE-2021-42312, CVE-2021-37222, CVE-2021-42313, as well as CVE-2021-42311, affect both on-premises and cloud customers. Security researchers awarded the flaws a "high" severity score and privately reported it to Microsoft back in June 2021. “Successful attack may lead to full network compromise, since Azure Defender For IoT is configured to have a TAP (Terminal Access Point) on the network traffic. Access to sensitive information on the network could open a number of sophisticated attacking scenarios that could be difficult or impossible to detect,” SentinelLabs explained in its security advisory. Microsoft Defender for IoT (formerly known as Azure Defender for IoT) is a unified security solution that helps enterprise customers to secure their IoT/OT environments. It offers a wide range of capabilities such as IoT/OT asset discovery, automated threat detection as well as vulnerability management. Microsoft releases security updates to patch Azure Defender for IoT vulnerabilities Fortunately, Microsoft has implemented its own fix to patch the... --- ### Amazon Relaunches AWS Educate > Earlier this month, Amazon relaunched its AWS Educate offering, which is now open to all individuals no matter what level of education or technical experience they may have. - Published: 2022-03-29 - Modified: 2024-09-04 - URL: https://petri.com/amazon-relaunches-aws-educate/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, AWS Educate - Article Type: News Earlier this month, Amazon relaunched its AWS Educate offering, which is a set of learning courses that are designed specifically for pre-professional learners. As a part of the relaunch, AWS Educate is now open to all individuals no matter what level of education or technical experience they may have. Previously, AWS Educate was restricted to educators, students with a . edu email address, and US Military veterans. Now, it's available for all learners who are 13 years old and older, and Amazon is also leveraging its Twitch platform to offer cloud training content with no additional account or login required. AWS Educate courses are designed to build knowledge and skills about Amazon Web Services cloud computing, with hundreds of hours of free, self-paced training and labs. All of the content on AWS Educate is specifically designed for learners who are new to cloud computing. The main content changes on AWS Educate The new courses are organized into six content groups and are tagged by proficiency level. All 59 available courses can now be viewed on a single page. There are ten labs in English, with plans to offer additional languages later this year. Some of the main new features that have been added to Amazon's education platform include: Four new courses—Cloud Computing 101, AWS DeepRacer Primer, Machine Learning Foundation, and Builder Labs. A redesigned website to guide learners to training content based on their knowledge, goals, interests, and age. Learners can explore recommended courses organized in six content groups, such as Cloud Skill... --- ### Static vs Dynamic IP Address - What's the Difference? - Published: 2022-03-29 - Modified: 2022-09-02 - URL: https://petri.com/static-vs-dynamic-ip-address-whats-the-difference/ - Categories: Networking - Tags: DHCP, DNS, dynamic ip, internet protocol, IP address, static ip - Article Type: Overview In this guide, we're going to explain the differences between static and dynamic IP addresses. Both types of Internet Protocol (IP) addresses have pros and cons, and we'll help you to understand which one is best suited to your needs. But first of all, here's a bit of geeky humor to get started: “There’s no place like 127. 0. 0. 1. ” If you can get that joke, you might have a lot of this article understood already. IP addresses have been around for almost 40 years. Since the first Internet protocol was used in ARPANET, which was a predecessor to the modern-day Internet.  We’ve seen IP addresses using the Internet Protocol v4 (IPv4) become exhausted. And the creation of Internet Protocol v6 (IPv6) coming into its own in recent years. IP networking is likely always going to be something IT Pros need to understand.  However, the world is changing. The likelihood of our grandchildren needing to worry about subnets is unlikely, with the release of IPv6 and its massive amount of usable IP Addresses, which totals 340 trillion trillion trillion unique addresses. That is a much more than the 4,294,967,296 that IPv4 provides. The key thing here is to realize that with a traditional IPv4 network, IP address can be assigned to a host dynamically when it is added to your network. Otherwise, a host is assigned a persistent address through the configuration of the hardware or software on the network. What is a static IP address? A static IP address is also known as a persistent IP... --- ### Microsoft Defender Can Now Block Malicious Drivers on Windows PCs > The new vulnerable driver blocklist feature for Microsoft Defender is designed to prevent third-party malicious drivers from running on Windows devices, and the feature will also prevent threat actors from exploiting vulnerabilities in signed kernel drivers. - Published: 2022-03-28 - Modified: 2022-03-28 - URL: https://petri.com/microsoft-defender-block-malicious-drivers-windows/ - Categories: Security, Windows 10, Windows 11 - Tags: News, Security, Windows 10, Windows 11 - Article Type: News Microsoft has released a new security feature that should help to protect Windows PCs against malicious drivers. David Weston, Microsoft's Vice President of Enterprise and OS Security, announced on Twitter today that the vulnerable driver blocklist feature is now available on Windows 10, Windows 11, as well as Server 2016 and higher. The new vulnerable driver blocklist feature is designed to prevent third-party malicious drivers from running on Windows devices, and Microsoft says that it blocks all potentially vulnerable drivers with known security vulnerabilities. Moreover, the feature prevents threat actors from exploiting vulnerabilities in signed kernel drivers in order to inject malware into the Windows kernel. Microsoft highlighted that it collaborates with partners and security experts to track malicious drivers. The company keeps adding these drivers to its "ecosystem block policy" to protect against security threats across all Hypervisor-protected code integrity (HVCI) and Windows 10 in S mode devices. “Microsoft works closely with our IHVs and security community to ensure the highest level of driver security for our customers and when vulnerabilities in drivers do arise, that they're quickly patched and rolled out to the ecosystem. Microsoft then adds the vulnerable versions of the drivers to our ecosystem block policy” the company explained on a support page. How to enable the vulnerable driver blocklist feature in Windows Security To enable the vulnerable driver blocklist feature, you will need to open Windows Security on Windows 10 or Windows 11. Then, you'll need to select Device Security and then click the Core... --- ### Deep Dive: Understanding How Outlook Room Finder Uses the Places Service > Outlook Room Finder uses the Places service to find free conference rooms available in your organization’s building. Here's what you need to know about how it works. - Published: 2022-03-28 - Modified: 2022-03-28 - URL: https://petri.com/deep-dive-understanding-how-outlook-room-finder-uses-the-places-service/ - Categories: Microsoft 365 - Tags: Conference Room, Microsoft 365, Outlook, outlook web app, Room Mailbox - Article Type: Overview Outlook Room Finder uses the Places service to find free conference rooms available in your organization’s building. Here's what you need to know about how it works. What is the Outlook Room Finder? Over the years, the various iterations of what we refer to as 'Outlook' have gotten better at helping users schedule meetings. The importance of this post is to describe how the engineering teams behind Outlook have made considerable progress around reserving conference rooms and equipment. Microsoft has been adding new features for years and has kept meeting scheduling enhancements on the roadmap. The Outlook Room Finder was built specifically to assist users in locating appropriately sized and equipped conference rooms and equipment nearby geographically. You can use Outlook on the Web, the Outlook desktop app, and the Outlook mobile app! Where does the Outlook Room Finder grab its information from? One moment... What is the Outlook Places service? Microsoft released the Places Service back at the end of 2019 to help facilitate the discovery of meeting locations with room mailboxes. The 'suggested calendar locations' feature at the time was the genesis and laid the groundwork for more recent innovations like Room Finder. The Places Service uses the details and metadata (when you add it) of room mailboxes as the main source of information about locations. Administrators can update metadata using the PowerShell 'Set-Place' cmdlet including city, country, building, capacity, and other equipment (screens, projectors, Surface Hubs, etc. ). You'll learn more about how this works later on... . --- ### Sophos Fixes Critical Remote Code Execution Flaw in Firewall Products > Sophos has released an emergency update to patch a critical security flaw in its firewall product line that could allow for remote code execution (RCE) on targeted machines. - Published: 2022-03-28 - Modified: 2022-03-28 - URL: https://petri.com/sophos-firewall-critical-remote-code-execution-flaw/ - Categories: Security - Tags: News, Security, Vulnerability - Article Type: News Sophos has released an emergency update to patch a critical security flaw in its firewall product line. The company explained in its security advisory that the vulnerability, tracked under CVE-2022-1040, when exploited could allow for remote code execution (RCE) on targeted machines. According to Sophos, this remote code execution vulnerability was first discovered by an external security researcher and it was reported via its bug bounty program. Essentially, the cybersecurity firm said that this security flaw is caused by an authentication bypass bug present in the User Sortal and Webadmin Sophos Firewall access points. The vulnerability has a Common Vulnerability Scoring System (CVSS) score of 9. 8, and it specifically affects Sophos Firewall v18. 5 MR3 (18. 5. 3) and older. Fortunately, Sophos has already rolled out an automatic update to patch the remote code execution vulnerability on systems with the "Automatic installation of hotfixes" feature enabled. However, the company recommends that all Sophos Firewall users who are still running older software versions should install the latest updates as soon as possible. “There is no action required for Sophos Firewall customers with the "Allow automatic installation of hotfixes" feature enabled. Enabled is the default setting,” Sophos explained in its security advisory. Sophos suggests a workaround to prevent remote code execution attacks Sophos also suggested a possible workaround for customers looking to block remote code execution attempts by threat actors via the User Portal and Webadmin. The company recommends that organizations disable Wide area network (WAN) access and instead use a virtual private network (VPN)... --- ### IT Admins Can Now Choose When Microsoft 365 Web Apps Sign Out Inactive Users - Published: 2022-03-25 - Modified: 2022-03-25 - URL: https://petri.com/microsoft-365-web-apps-idle-session-timeout-policy/ - Categories: 365 Apps - Tags: Microsoft 365, News - Article Type: News Microsoft is rolling out a new update that lets IT Admins configure a tenant-wide timeout policy to automatically sign out inactive users in Microsoft 365 web apps. This new Idle Session Timeout feature is currently available in preview, and it should help to protect user data from unauthorized access on unmanaged devices or shared devices. Up until now, Microsoft 365 web apps such as Outlook Web App and SharePoint Online allowed users to customize idle timeout settings for individual apps. However, this new feature will eventually replace the current implementations and ensure consistency in session timeouts across all Microsoft 365 web apps. “This helps protect sensitive company data and adds another layer of security for end users who work on non-company or shared devices. When a user reaches the idle timeout session you've set, they'll get a notification that they're about to be signed out. They have to select to stay signed in or they'll be automatically signed out of all Microsoft 365 web apps,” the company explained in a message on the Microsoft 365 Admin center. The idle session timeout policy currently supports select Microsoft 365 web apps The idle session timeout feature currently only supports select Microsoft 365 web apps. These include Outlook Web App (OWA), SharePoint Online (SPO), OneDrive for Business, Office. com, Office on the web as well as the Microsoft 365 Admin Center. The company plans to add support for more apps later this year. It is worth noting that enabling the idle session timeout policy... --- ### This Week in IT - Get Into the Groove with Microsoft Teams and Jira - Published: 2022-03-25 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-get-into-the-groove-with-microsoft-teams-and-jira/ - Categories: Microsoft 365, Microsoft Teams - Tags: Azure DevOps, Bing, Bing Maps, Cortana, HP, Jira, Lapsus$, Microsoft 365, Microsoft Teams, New, NVIDIA - Article Type: Video This Week in IT, Microsoft source code is leaked by hacking group Lapsus$, HP warns of a serious remote code execution flaw in many of its printers, Nvidia announces a new ARM ‘superchip’ for servers, Jira gets a new app for Microsoft Teams, and there’s more... About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Cloud Conversations – Joe Anich and Trevor Stuart on Microsoft 365 Defender & SC-200 Exam > Joe Anich, a Microsoft Senior Incident Response Customer Engineer, and Trevor Stuart, a Microsoft Senior Cloud Solution Architect, have just released their SC-200 exam guide. In this week's episode, they'll be talking about SC-200 exam tips and improvements to Microsoft 365 Defender over time - Published: 2022-03-25 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-joe-anich-trevor-stuart-microsoft-365-defender-sc-200-exam/ - Categories: Video - Tags: Cloud Conversations, Microsoft 365 Defender - Article Type: Video https://www. youtube. com/watch? v=337kRXQv784 Cloud Conversations is a weekly podcast that we’ll be featuring here on Petri. It’s about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Joe Anich and Trevor Stuart on Microsoft 365 Defender & SC-200 Exam Joe Anich is a Senior Incident Response Customer Engineer with Microsoft, helping customers who are dealing with cyber security incidents such as breaches and compromise. Trevor Stuart is a Senior Cloud Solution Architect II with Microsoft, focused on Azure security and identity, delivering solutions that are well-architected and secure by design. The guys have just released their SC-200 exam guide, and they joined Ru and Azure in this week's episode to talk about: SC-200 exam tips and adviceWorking as architects and incident responders at MicrosoftHow to study for the examImprovements to Microsoft 365 Defender over timeGetting over the fact that, yes, Azure's name really is Azure More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell, and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn’t only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the... --- ### Microsoft's Partner Program to Get a Major Cloud Overhaul in October - Published: 2022-03-25 - Modified: 2022-03-25 - URL: https://petri.com/microsoft-partner-program-cloud-overhaul-october/ - Categories: Microsoft 365, Microsoft Azure - Tags: Microsoft, Microsoft Azure, News - Article Type: News Microsoft announced a major revamp of its partner program last week. The Redmond giant will rebrand the existing Microsoft Partner Network (MPN) to Microsoft Cloud Partner Program (MCPP) on October 3. This will be the first biggest overhaul since Microsoft launched its partner program over a decade ago, and the impact could be significant for over 400,000 organizations worldwide. With this rebranding, the company plans to redirect the focus of its partners towards the Azure cloud infrastructure to align customer requirements with purchasing patterns. “This announcement is about more than a name; this change better reflects the enormous and ongoing transition of business operations to the cloud, and how Microsoft intends to support partners in the future. It aligns our partners’ go-to-market motions with the way customers buy today,” explained Rodney Clark, Microsoft’s Corporate Vice President of Channel Sales and Channel Chief. Microsoft's existing partner program is based on a competency-based model, but this new program will focus on boosting partners' proficiency in the cloud-based infrastructure. Specifically, Microsoft’s partners can now choose to get certified in one or more solution areas such as Azure infrastructure, Azure data and artificial intelligence, Azure digital and app innovation, security, modern work as well as business applications. Microsoft to retire MPN Gold and Silver badges The company plans to discontinue its Gold and Silver designations that helped partners to differentiate their levels of expertise. Instead, their competencies will be categorized into three expertise levels: Base, Solutions Provider, and Expert Specialist. Microsoft added that it... --- ### New Windows 10 Optional Patch Fixes Bluetooth Issue Causing BSODs > The optional March 2022 update for Windows 10 versions 21H2, 21H1, and 20H2 addresses a critical Bluetooth issue that was previously causing blue screens of death (BSODs) on Windows 10 machines. - Published: 2022-03-24 - Modified: 2022-03-24 - URL: https://petri.com/microsoft-releases-optional-update-windows-10-bluetooth-issues/ - Categories: Windows 10 - Tags: Bluetooth, Bug, News, Windows 10 - Article Type: News Microsoft has released the optional March 2022 non-security patch (KB5011543) for Windows 10 versions 21H2, 21H1, and 20H2. This optional update addresses a serious Bluetooth issue that was previously causing blue screens of death (BSODs) on Windows 10 machines. This Bluetooth bug was first discovered following the release of the optional KB5009596 patch in January, and Microsoft described the bug on the Windows Health dashboard. “After installing KB5009596 or later updates, some organizations which have Windows devices paired to Bluetooth devices might receive an error message "Your device ran into a problem and needs to restart. " with a blue screen and 'Stop code: IRQ NOT LESS OR EQUAL'," the company explained. Microsoft added that the blue screen of death (BSOD) error was affecting Windows 10 PCs where IT administrators have enabled specific Configuration service provider (CSP) policies, which affect the Bluetooth A2dp profile. The BSODs could occur when PCs were connected to a new mobile phone or audio device via Bluetooth after installing the KB5009596 patch or newer. A workaround was already available Since CSP policies are not common outside of enterprise environments, this Bluetooth issue probably didn't affect many consumers. However, before Microsoft fixed the issue with this week's optional patch, IT administrators could mitigate it by modifying the Windows registry before installing the optional KB5009596 patch for January. Microsoft recommends IT Admins to deploy this optional update, which also addresses an issue that prevents Android device users from signing in to some Microsoft applications, such as Microsoft Outlook... --- ### Okta Claims Only 2.5% Customers Were Impacted by Lapsus$ Group Hack > Okta has published an extensive update about the recent cyberattack by the LapsuS$ hacking group and claims that around 2.5 percent of its customers were affected by this security incident. The company explained that the hack didn’t impact HIPAA, Auth0, and FedRAMP customers. - Published: 2022-03-24 - Modified: 2022-03-24 - URL: https://petri.com/okta-claims-only-2-5-customers-were-impacted-by-lapsus-group-hack/ - Categories: Active Directory (AD), Security - Tags: Hacking, News, Security - Article Type: News Okta, an enterprise identity and access management company, has published an extensive update about the recent cyberattack by the LapsuS$ hacking group. The company confirmed that around 2. 5 percent of its customers were affected by this security incident. The investigations revealed that the threat actors managed to gain access to the laptop of a third-party support engineer via remote desktop protocol (RDP) for five days in mid-January. The account of the impacted customer support engineer was suspended immediately to prevent any further damage. Okta acknowledged that the third-party support engineers could help users reset their passwords, and some of them may have been affected by this incident. However, the company explained that the consequences of this hacked account for Okta customers remain limited since third-party support engineers don't have wide access to customer data. "The potential impact to Okta customers is limited to the access that support engineers have. These engineers are unable to create or delete users, or download customer databases. Support engineers do have access to limited data -- for example, Jira tickets and lists of users -- that were seen in the screenshots. Support engineers are also able to facilitate the resetting of passwords and multi-factor authentication factors for users, but are unable to obtain those passwords," explained David Bradbury, Chief Security Officer at Okta. Okta plans to notify its customers impacted by the Lapsus$ hack Okta is currently investigating this incident and trying to identify all impacted customers. The company noted that the Lapsus$ hack didn’t... --- ### Microsoft Details its Latest Efforts to Reduce Teams Outages > Microsoft has been doing some significant work to make its Teams app more reliable and less susceptible to be hit by outages. These investments complement ongoing efforts to make Microsoft Teams more battery-efficient when users are in video meetings. - Published: 2022-03-24 - Modified: 2022-03-24 - URL: https://petri.com/microsoft-details-its-latest-efforts-to-reduce-teams-outages/ - Categories: 365 Apps, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has been doing some significant work to make its Teams app more reliable and less susceptible to being hit by outages. These investments complement ongoing efforts to make Microsoft Teams more battery-efficient when users are in video meetings. First of all, Microsoft wants to improve the resiliency of the app and make it as fault-tolerant as possible during normal operations. On the technical side, Microsoft says that worked on a built-in automatic detection and mitigation system to improve the app's reliability. Microsoft engineers have implemented granular fault isolation measures to reduce the impact of an outage. It has also designed safe change management strategies to minimize the potential risk associated with continuous changes on users. In addition to these cloud principles, Microsoft Teams moved to an active-active architecture. This means that the app now uses a traffic manager to route traffic to the most appropriate path if a failure occurs. Microsoft has also been working on the identification and removal of all single points of failure that could cause Teams to experience an outage. Microsoft also explained that it started using different deployment rings to ensure that any potential fault that occurs as a result of a change will affect the minimum number of users. “The basic idea is that when we deploy a change, configuration, or code, we gradually deploy and validate our changes with a small set of users and then expand to a higher ring once metrics meet their targets, feedback has been gathered, and gates... --- ### Microsoft Teams Adds New Jira App to Improve Collaboration and Workflows - Published: 2022-03-23 - Modified: 2022-03-23 - URL: https://petri.com/microsoft-teams-adds-jira-app-collaboration-workflows/ - Categories: 365 Apps, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has announced a new integration between the Jira project management tool and its Teams collaboration service. The goal is to make it easier for users to track, update and manage their projects directly within Microsoft Teams. The new Jira Cloud app lets users convert their chat messages into a new Jira issue or add comments to existing Jira issues with just a couple of clicks. It is also possible for the meeting participants to visualize Jira tickets within a side panel for detailed context information as well as edit them. “This latest release is purpose-built to create personalized workflows, enable cross-team visibility, and hone focus in new ways,” explains Nicole Herskowitz, Vice President of Microsoft Teams. “The Jira app for Teams is more than a display layer from another application, it delivers the right information right in the flow of work. ” https://youtu. be/YM7eqE89MnY This integration also brings new actionable Jira link cards that enable Teams users to take action on any activity (like editing fields, adding comments, or updating the status) right from the chat window. The Jira Cloud app for Microsoft Teams supports supports customizable notifications Lastly, the Jira app allows users to receive and customize their notifications directly within Microsoft Teams. This feature should help users keep track of workloads, bug resolutions, and other updates in real-time. “At Microsoft, we have been working together with great partners like Atlassian on building Teams apps since Teams launched,” explained Jeff Teper, CVP of Modern Work at Microsoft. “Atlassian’s new Jira... --- ### Microsoft Confirms Lapsus$ Hacker Group Gained “Limited Access” to Its Source Code - Published: 2022-03-23 - Modified: 2022-03-23 - URL: https://petri.com/microsoft-lapsus-hacker-group-limited-access-source-code/ - Categories: Security - Tags: Microsoft, News, Secuirty - Article Type: News Microsoft has confirmed that the hacking group Lapsus$ managed to gain “limited access” to its security system and steal some parts of their source code. The company says that its security researchers had already been tracking the activities of Lapsus$, which claims to have hacked sensitive data from Samsung, Nvidia, Ubisoft, and Okta. The Redmond giant detailed in a blog post that the Lapsus$ group compromised an employee account with limited access, but its security teams interrupted the hacking effort mid-way. The company emphasized the leaked source code doesn’t increase the security risks, and the hackers were unable to access customer data or sensitive information. "This week, the actor made public claims that they had gained access to Microsoft and exfiltrated portions of source code. No customer code or data was involved in the observed activities. Our investigation has found a single account had been compromised, granting limited access. Our cybersecurity response teams quickly engaged to remediate the compromised account and prevent further activity," the company explained yesterday. Microsoft highlighted that Lapsus$ has gradually expanded its geographical range to target government and enterprise customers worldwide. Interestingly, the hacking group typically uses different techniques to breach the multi-factor authentication (MFA) systems of the targetted organization. Some popular tactics include SIM-swapping, phone-based social engineering, paying employees to access credentials, purchasing session tokens from public forums, and more. Microsoft provides recommendations to prevent cyber attacks by the Lapsus$ hacker group Microsoft has outlined several steps that should help IT Admins protect their organizations... . --- ### HP Confirms New Remote Code Execution Vulnerability Affects Several Printer Models - Published: 2022-03-22 - Modified: 2022-03-22 - URL: https://petri.com/hp-remote-code-execution-vulnerability-printer-models/ - Categories: Security - Tags: News, printers, Security, Vulnerability - Article Type: News HP has acknowledged that its several printer models are vulnerable to a new critical buffer overflow bug that can potentially lead to remote code execution (RCE). This latest security flaw is being tracked under CVE-2022-3942, and it was first discovered by Trend Micro’s Zero Day Initiative team. As noted in a post by Bleeping Computer, the new security vulnerability comes with a CVSS score of 8. 4 (high). HP warned in its first security advisory that this bug impacts a large number of its printer models, including LaserJet Pro, OfficeJet, Pagewide Pro, Large Format, Enterprise, as well as DeskJet models. “Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with the use of Link-Local Multicast Name Resolution or LLMNR. ” HP explained in its security advisory. Buffer overflow refers to an error that occurs when an application tries to store more data in the buffer memory than it can handle. The buffer overflow bug usually causes malfunctioning and system crashes. However, it can also allow hackers to gain control over compromised systems. Fortunately, HP has already released new firmware updates for most potentially vulnerable printer models. However, it advises the users of HP Enterprise and HP LaserJet Pro printers to disable LLMNR (Link-Local Multicast Name Resolution) in network settings to mitigate the problem. HP printer models are also vulnerable to information disclosure and denial of service attacks Moreover, HP published a separate security advisory yesterday regarding three security flaws (CVE-2022-24291, CVE-2022-24292, and... --- ### Lapsus$ Hackers Claim to Leak Source Code of Microsoft Azure, Cortana, and Bing - Published: 2022-03-22 - Modified: 2022-03-22 - URL: https://petri.com/lapsus-hackers-leak-microsoft-source-code/ - Categories: Security - Tags: Bing, Cortana, Hacking, Microsoft, Microsoft Azure, News, Security - Article Type: News Last week, the infamous hacker group Lapsus$ claimed that it had breached several Azure DevOps source code repositories. Microsoft is currently investigating claims of this hack, but the source code of Bing, Bing Maps, Cortana, and other internal projects may have been leaked online (via VentureBeat). Over the weekend, the hacker group Lapsus$ posted a screenshot of an internal Microsoft developer account on its Telegram channel. Surprisingly, the screenshot suggests that the hackers managed to gain internal access to an Azure DevOps repository that contains the source code of Microsoft's digital assistant Cortana and various Bing projects such as ‘Bing_UX', 'Bing_STC-SV', as well as 'Bing_Test_Agile. ' However, the screenshot has since been removed from Telegram’s public chat room, along with a message stating, "Deleted for now will repost later. " While Microsoft has yet to confirm that its Azure DevOps source code repositories have been compromised, Lapsus$ has published the first evidence of this hack. Brett Callow, a threat analyst at cybersecurity firm Emsisoft, spotted that the hacker group has shared a 483 KB torrent file. The latest Telegram post suggests that this file contains parts of the source code (with encryption keys and code signing certificates) of Cortana, Bing, and Bing Maps. The full uncompressed source code archive is about 37GB in size. https://twitter. com/BrettCallow/status/1506078230192656388 “Given the lack of a denial from Microsoft and Lapsus$’ past victims, their claims are not entirely implausible,” said Brett Callow in a statement to VentureBeat. “The gang seems to be somewhat disorganized, which could indicate they’re... --- ### How to Install Windows Server 2022 Step by Step > Windows Server 2022 is built on the strong foundation of Windows Server 2019 and brings several innovations around three pillars: security, Azure hybrid integration and management, and application platform enhancements. Here's a step-by-step guide on how to install Windows Server 2022. - Published: 2022-03-22 - Modified: 2022-03-22 - URL: https://petri.com/install-windows-server-2022/ - Categories: Windows Server, Windows Server 2022 - Tags: Windows Server, Windows Server 2022, Windows Server Core - Article Type: How To What Is Windows Server 2022? Windows Server 2022 is Microsoft's latest version of Windows Server in the Long-Term Servicing Channel (LTSC). They release new versions on this channel about every three years or so. The most recent version before Windows Server 2022 was Windows Server 2019. These releases receive ten full years of technical support from Microsoft via Mainstream support (through 10/13/2026) and Extended support (through 10/14/2031). Over the past few years, the Windows Server team released Windows Server Core releases with breaking new features - these were from the Semi-Annual Channel (SAC). The last release was Windows Server, version 20H2. These releases are supported for 18 months. So, after August 9th of this year (2022), Microsoft will no longer offer any support for the Semi-Annual Channel of Windows Server. What are the new features in Windows Server 2022? Windows Server 2022 is built on the strong foundation of Windows Server 2019 and brings several innovations around three pillars: security, Azure hybrid integration and management, and application platform enhancements. Let's go through some of the more substantial areas of improvement and innovation. Secured-core server A Secured-core server uses firmware, hardware, and driver capabilities to enable advanced security features for Windows Server. The overall design goal is to provide additional security protections that are useful against sophisticated and coordinated attacks. Transport: HTTPS and TLS 1. 3 enabled by default Secure connections are at the heart of today's systems on your network and the Internet. Transport Layer Security (TLS) 1. 3 is the... --- ### Microsoft’s New PowerShell Crescendo Tool Facilitates Native Command-Line Wraps - Published: 2022-03-21 - Modified: 2022-03-21 - URL: https://petri.com/microsoft-launches-powershell-crescendo-tool/ - Categories: PowerShell - Tags: News, PowerShell - Article Type: News Microsoft announced that PowerShell Crescendo has hit general availability (GA) this month. The new open-source module first launched in preview back in 2020, and it lets developers quickly build PowerShell cmdlets that leverage existing command-line tools. The Redmond giant explains that native tools (such as kubectl, Docker, and netsh. exe) can be sometimes more complex to understand than PowerShell's simple structure. Moreover, developers may run into issues when wrapping those native commands in PowerShell scripts. The new framework provides a simpler solution that should help to address all these issues. “Crescendo amplifies the command-line experience of the original tool to include object output for the PowerShell pipeline, privilege elevation, and integrated help information. A Crescendo module replaces cumbersome command-line tools with PowerShell cmdlets that are easier to use in automation and packaged to share with team members,” the PowerShell team explained on GitHub. https://youtu. be/wFXaUV02R7E PowerShell Crescendo brings privilege elevation support for all platforms PowerShell Crescendo version 1. 0 includes new features and capabilities for both developers and IT Admins. With this release, it is now possible to use simple “key/value” statements for defining cmdlets for JSON files. This release also brings privilege elevation support for all platforms including Windows, macOS, and Linux. Moreover, Microsoft has added a JSON schema that should make it easier for developers to create Crescendo configuration files via IntelliSense and tooltips. Other improvements include modular design support, experimental Help parsers, and example configurations. Microsoft has noted that the new framework requires PowerShell 7 or newer for creating the... --- ### Protect iOS and Android Devices with Microsoft Defender for Endpoint > If iOS and Android are usually considered to be more secure than Windows PCs, they are still vulnerable to attacks from web-based sources. Here's how Microsoft Defender for Endpoint can protect iOS and Android devices from various online threats. - Published: 2022-03-21 - Modified: 2023-09-07 - URL: https://petri.com/protect-ios-and-android-devices-with-microsoft-defender-for-endpoint/ - Categories: Microsoft 365, Mobile, Security - Tags: Android, iOS, Microsoft Defender for Endpoint, Mobile, Security - Article Type: How To Microsoft Defender for Endpoint for iOS and Android devices is a mobile threat defense solution (MTD). Most organizations are in agreement that Windows devices require some form of antivirus and antimalware solution in order to be considered secure. Very few organizations, however, consider iOS and Android as platforms that require threat protection. Whilst iOS and Android are typically considered to be “closed” platforms, they are still vulnerable to attacks from web-based sources, for example. In this guide, we're going to explain how Microsoft Defender for Endpoint can help to protect iOS and Android devices from various online threats. What is mobile threat defense? Mobile threat defense solutions monitor risk through various mechanisms like OS version, firmware, known vulnerabilities, as well as scanning for activities that could be considered malicious. Through Microsoft Endpoint Manager and Azure AD Conditional Access, we’re able to enforce policies based on a device risk score. Why protect iOS and Android Devices? Whilst mobile device management platforms are designed to manage mobile devices, mobile threat defense platforms provide mobile security by preventing, detecting, and remediating cyberattacks. They use techniques on the device, network, and application-level and feed critical information to the mobile device management platform to enable features such as Conditional Access. Do iOS and Android devices need threat protection or antivirus? Absolutely. In today's world where sophisticated threats are ever-present, mobile threat defense is vital. Capabilities CapabilityDescriptionWeb protectionAnti-phishing, blocking unsafe network connections, and support for custom indicators. Malware protection (Android-only)Scanning for malicious apps. Jailbreak detection (iOS-only)Detection of... --- ### Microsoft Announces the General Availability of Azure Stack Edge Pro 2 - Published: 2022-03-21 - Modified: 2022-03-21 - URL: https://petri.com/microsoft-announces-azure-stack-edge-pro-2/ - Categories: Microsoft Azure - Tags: Azure, Azure Stack Edge Pro 2, cloud computing, News - Article Type: News Microsoft has announced the general availability of its Azure Stack Edge Pro 2 solution. The AI-driven edge computing device enables organizations to bring Azure’s processing power to remote branch offices, and it can also be deployed in manufacturing, telecommunications, healthcare, and retail environments. With Azure Stack Edge Pro 2, enterprise customers can now use machine learning (ML) models to pre-process the dataset and quickly analyze results before it’s sent to the cloud. Additionally, the solution gives organizations a quick way to transfer sensitive data over the network to Azure compute and analytics services. “The Pro 2 is a new device in the Azure Stack Edge family, designed from the ground up based on extensive feedback from our customers. The device is a short depth, 2U server optimized for deployment in edge locations such as retail and remote branch offices. With its compact size, flexible mounting options, and multiple configurations, the Pro 2 delivers an ideal solution for running your edge workloads,” the company explained. The Azure Stack Edge Pro 2 solution offers customers several key features with its release, such as Offline upload support, bandwidth throttling, Edge computing, as well as Accelerated AI inferencing. It also supports multiple file transfer protocols like Network File System (NFS), Representational state transfer (REST), and standard Server Message Block (SMB). Azure Stack Edge Pro 2 pricing details The Azure Stack Edge Pro 2 starts at $402 per month for the 64G2T model with Intel Xeon 6920U-based CPUs, 51GB of RAM, and 720GB of storage... . --- ### New Research Suggests IT Hardware Spending Remains Unaffected By Cloud Adoption - Published: 2022-03-18 - Modified: 2022-03-18 - URL: https://petri.com/it-hardware-spending-cloud-adoption/ - Categories: Hardware - Tags: Cloud, Hardware, News - Article Type: News Spiceworks Ziff Davis (SWZD) has released a new “Hardware Trends in 2022 and Beyond” report. The company’s latest research findings indicate that around 30 percent of the IT budget was spent on hardware in 2021, even with the general shift to the cloud adoption in organizations. The research study was conducted by Spiceworks Ziff Davis (SWZD) back in July last year. The survey is based on responses collected from 1,145 IT buyers who are working in companies across Europe and North America. According to the results, the overall hardware expenditure in organizations dropped from 33 percent in 2020 to 30 percent this year. However, the cloud budgets jumped from 22 percent to 26 percent. The results from the research study also showed that several IT companies worldwide still run workloads on their own hardware. “The majority of workloads today are still running locally, and in 2023 almost all organizations (94%) will still use on-premises servers in some capacity,” explained Spiceworks Ziff Davis. It also revealed that on-premises servers and cloud servers may become more interoperable in the future. Other key results from the "Hardware Trends in 2022 and Beyond" study are listed below: 1. Usage of AMD-powered hardware is poised to grow: Within two years, business adoption of AMD processors is expected to rise to 60% for PCs and 44% for servers. 2. Storage acceleration trends continue: More than two-thirds (68%) of enterprises (500+ employees) plan to adopt all-flash storage arrays within the next two years. 3. More than half (57%) of... --- ### This Week in IT - Microsoft Teams Connect Takes the Pain Out of B2B Collaboration > This week in IT, multifactor authentication lets Cisco users down and the Russians in, Microsoft Teams Connect arrives in preview to make cross-enterprise collaboration easier, Microsoft Azure gets a slight lead in the enterprise cloud space, and there's much more. - Published: 2022-03-18 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-microsoft-teams-connect-takes-the-pain-out-of-b2b-collaboration/ - Categories: Video - Tags: B2B, Cisco Duo, collaboration, Hybrid Work, Kaspersky Labs, Microsoft Azure, Microsoft Teams, Microsoft Teams Connect, News, PowerPoint Cameo, Security, Shared Channels, Windows Server This week in IT, multifactor authentication lets Cisco users down and the Russians in, Microsoft Teams Connect arrives in preview to make cross-enterprise collaboration easier, Microsoft Azure gets a slight lead in the enterprise cloud space, and Windows Server is getting a new feature to protect against brute force SMB dictionary attacks. About This Week in IT This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Microsoft Teams Connect Will Soon Improve External Collaboration With Shared Channels - Published: 2022-03-18 - Modified: 2022-10-12 - URL: https://petri.com/microsoft-teams-connect-external-collaboration-shared-channels/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, Office 365 - Article Type: News Microsoft is getting ready to release the Teams Connect shared channels feature in public preview this month. The Redmond giant first announced the shared channels experience at Ignite 2021, which will let users collaborate seamlessly across multiple organizations. The shared channels feature will be available in addition to the existing standard and private channel options in Microsoft Teams. This new capability will enable external users to access the shared channels directly from their Teams account without switching tenants. Shared channels also aim to reduce problems such as over-sharing and team proliferation. “While standard and private channels are great for connecting the team, many collaboration needs transcend the team or even your organization boundary. With shared channels users can invite others to a specific channel without having to first add them to the team. This avoids oversharing and removes the need to create new teams when collaboration in existing channels needs to expand to others outside the team,” the company explained in a blog post. The Microsoft Teams Connect shared channels feature will allow users to create both scheduled or meet now meetings and it also supports tabs and connectors. The company also plans to add support for LOB apps, message extensions, and bots to shared channels later this year. It is important to note that Microsoft 365 Information Protection capabilities such as retention policies and Data Loss Prevention (DLP) will work with shared channels in Teams. Microsoft Teams Connect shared channels to launch in preview this month Microsoft will start... --- ### How to Git Branch Checkout a Remote Branch > If you are new to Git, you'll need to learn the commands that will let you collaborate with others while allowing everyone to work on their specific branch without impacting an application. This tutorial will teach you how to check out a remote Git branch step by step. - Published: 2022-03-18 - Modified: 2024-11-19 - URL: https://petri.com/how-to-check-out-a-remote-git-branch/ - Categories: DevOps - Tags: GIT, GitHub - Article Type: How To If you are new to Git, understanding how Git commands work is really important. And one of the most important tasks is using git checkout remote branch. The git checkout command allows you to collaborate with your peers or teammates in a way that allows everyone in the team to work on their specific branch without impacting the application. This tutorial will teach you how to check out a remote Git branch step-by-step, so let’s get into it. Prerequisites for Git Checkout Remote Branch Before you drive into the practical section of this tutorial, make sure you have the following in place: A remote Linux computer to test out the Git commands. This tutorial uses Ubuntu 20. 04. 3 LTS as the remote node. A GitHub account with one private and one public repository created in GitHub containing a hello. py Python file. What is a remote Git branch? Do you know where your commits, files, and code live? The answer is in the Git repository, which is where you can keep track of all the changes made to the files in your project. A remote Git branch contains all the code that everyone in your team uploads or check. You can directly work on remote branches using the Git UI console, or work on your local machine and then later commit all your changes in the remote branch. What is the 'git checkout' command? Working within a big team of developers in a big organization requires you to handle and manage various branches... --- ### Cloud Conversations – Ami Diamond on the SharePoint Wizard > Ami Diamond is a SharePoint Online / Microsoft Teams /Microsoft 365 Expert at P.Z Projects. In this week's Cloud Conversations episode, Ami joins Kat and Pete to talk about setting up his SharePoint Wizard YouTube channel, contributing to the community, and his favorite Microsoft 365 features. - Published: 2022-03-18 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-ami-diamond-on-the-sharepoint-wizard/ - Categories: Video - Tags: Cloud Conversations, SharePoint - Article Type: Video https://www. youtube. com/embed/l8hV3B8rhH4 Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Ami Diamond on the SharePoint Wizard Ami Diamond is a SharePoint Online / Microsoft Teams /Microsoft 365 Expert at P. Z Projects. In this week's episode, Ami joins Kat and Pete to talk about: Setting up his SharePoint Wizard YouTube channelContributing to the communityFavourite Microsoft 365 features More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Windows Server Insider Build 25075 Brings New Brute Force Attack Prevention Capabilities - Published: 2022-03-17 - Modified: 2022-03-17 - URL: https://petri.com/windows-server-insider-build-25075-brute-force-attack-prevention/ - Categories: Windows Server - Tags: News, Windows Server, Windows Server 2022 - Article Type: News Microsoft has announced the release of a new Windows Server Insider Preview Build 25075. The latest build is for the next Long-Term Servicing Channel (LTSC) release for the OS, which should be Windows Server version 2022. This new Windows Server build brings new security capabilities that should help organizations to prevent brute-force dictionary attacks. Microsoft has introduced a new SMB NTLM authentication limiting feature, which adds a 2-second delay between each failed New Technology LAN Manager (NTLM) or PKU2U-based authentication request. “Starting in Windows Insider build 25069. 1000. 220302-1408 and later on Windows 11 and Windows Server 2022, the SMB Server service now implements a default 2-second delay between each failed NTLM-based authentication. This means that if an attacker previously sent 300 brute force attempts per second from a client for 5 minutes, the same number of attempts would now take 25 hours at a minimum,” the Windows Server Insider team explained. For those unfamiliar, the Server Message Block (SMB) is a popular file server protocol. It lets users communicate with remote PCs and servers to access their resources such as files and directories or perform tasks like sharing, opening, and editing documents. The SMB server service is usually enabled on non-file server machines so that users can access remote files and copy logs. However, threat actors could abuse the SMB authentication mechanism to launch brute-force dictionary attacks on vulnerable machines. The new SMB NTLM authentication limiting feature allows IT Admins to slow down the brute force attacks targeted at SMB endpoints... . --- ### FBI and CISA Issue Advisory Over Multi-Factor Authentication Flaw Abused By Russian Hackers - Published: 2022-03-17 - Modified: 2022-03-17 - URL: https://petri.com/fbi-cisa-multi-factor-authentication-flaw-russian-hackers/ - Categories: Security - Tags: MFA, multifactor authentication, Printnightmare, Security - Article Type: News The US Cybersecurity and Infrastructure Security Agency (CISA) and FBI released an alert about a Russian state-backed activity that allowed hackers to bypass multi-factor authentication (MFA) and exploit a security flaw to compromise networks. The security advisory indicates that the cyberattacks targeting a non-governmental organization (NGO) started back in May 2021. The threat actors leveraged a "misconfigured" account setting to set default MFA protocols and then enrolled a new device to access the NGO’s network. Once done, the cyber attackers exploited a previously disclosed critical Windows 10 PrintNightmare flaw (CVE-2021-34481) to run malicious code with system privileges. “The victim account had been un-enrolled from Duo due to a long period of inactivity but was not disabled in the Active Directory. As Duo's default configuration settings allow for the re-enrollment of a new device for dormant accounts, the actors were able to enroll a new device for this account, complete the authentication requirements, and obtain access to the victim network,” CISA explained. Additionally, the Russian threat actors managed to modify a domain controller file to prevent the Duo MFA from contacting its server for authentication. With MFA disabled, the attackers authenticated the NGO's VPN as non-administrators and established connections to the Windows domain controllers via Remote Desktop Protocol (RDP). “Using these compromised accounts without MFA enforced, Russian state-sponsored cyber actors were able to move laterally to the victim’s cloud storage and email accounts and access desired content,” CISA added. The FBI-CISA advisory outlines mitigation measures to prevent Russian attackers from exploiting... --- ### Network Requirements for Azure Stack HCI Active/Active Cluster Nodes > In this guide, we're going to explain the network requirements for deploying Azure Stack HCI Active/Active cluster nodes, and detail the maximum possible distance between two Azure Stack HCI nodes within an active/active cluster. - Published: 2022-03-17 - Modified: 2022-12-28 - URL: https://petri.com/network-requirements-for-azure-stack-hci-active-active-cluster-nodes/ - Categories: Azure, Azure Stack HCI, Microsoft Azure - Tags: Azure Stack HCI - Article Type: Overview Today I want to explain some more details about the maximum possible distance between two Azure Stack HCI nodes within an active/active cluster. As you may know, Azure Stack HCI has two cluster options, active/active or stretched cluster. A standard active/active cluster, with at least two server nodes in a single site or the same server rack, is the recommended setup. The other option is a so-called 'stretched cluster'. It has at least four server nodes that span across two sites, and at least two nodes per site. Many customers are asking if they can add more nodes to a standard cluster. And if they can deploy a standard cluster over a larger distance than one single location or data center. The short answer is yes. That is possible. But you need to follow some hard guidelines. Guidelines for Azure Stack HCI standard clusters After some discussion with Microsoft Product Groups, we found out that there are some pretty good and understandable requirements at the networking level for standard cluster nodes. Network latency First, let’s start with the latency requirements. Between two nodes, Azure Stack HCI expects a high-performance, low latency connection. In numbers, that means the latency between two nodes must be less than one millisecond and a minimum speed of 25 Gbit/s or more is required. Another major requirement is to avoid asymmetry latency between nodes. The connection between the HCI nodes must be non-routed, which means only a switch connection between nodes and both HCI nodes... --- ### Microsoft's Surface Hub 2 Smart Camera Arrives to Help with Hybrid Work - Published: 2022-03-16 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-surface-hub-2-smart-camera-hybrid-work/ - Categories: Microsoft 365, Microsoft Teams - Tags: Hybrid Work, Microsoft 365, Microsoft Outlook, Microsoft Teams, News, PowerPoint - Article Type: News Microsoft has unveiled several new features and capabilities for its Office productivity suite to better suit the needs of the new hybrid work era. The Redmond giant also announced this morning a new AI-powered Surface Hub Smart Camera, and Teams Rooms innovations to help users improve the remote meeting experience. Outlook adds support for Loop components First off, Outlook on the web is getting a new RSVP feature that will let meeting attendees specify and choose to participate remotely or in person. This new capability should help organizers book meeting rooms that can accommodate all participants. The RSVP experience is slated to begin rolling out in preview to Outlook on the web later this year. Microsoft is also planning to bring new Loop components to Outlook mail. Microsoft Loop components arrived in Teams last year, and they allow users to plan, complete action items, collaborate with team members on projects. Microsoft says that this feature is already available in the Office Insider Beta channel, and users can try it right now. Microsoft Surface Hub 2 Smart Camera In addition to the new Teams features, Microsoft has also announced the new Surface Hub 2 Smart Camera. This new AI-powered camera comes with “automatic reframing, wide field of view, and intelligent image correction” capabilities. Microsoft's Surface Hub 2 Smart Camera can detect and track people’s posters and ensures that everyone present in the meeting is visible to remote participants. The Surface Hub 2 Smart Camera is available to purchase now, and it... --- ### How to Install Hyper-V on Windows Server Core > Using the Windows Server Core install mode means no Graphical User Interface (GUI), so how do you install Hyper-V on this version of Windows Server? We're going to explain how to do it in that guide and why you may find Windows Server Core to be a great option for using Hyper-V. - Published: 2022-03-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-hyper-v-on-windows-server-core/ - Categories: Hyper-V, Windows Client OS, Windows Server - Tags: Hyper-V, Windows Server, Windows Server Core If you want to use Hyper-V on Windows Server Core, you'll have to do that without a Graphical User Interface (GUI), which requires some knowledge about the different Hyper-V installation options? We’re going to explore them all in that guide, and we'll also explain why you may find Windows Server Core to be a great option for using Hyper-V. Why Windows Server Core is the best platform for Hyper-V There are advantages and disadvantages to using Windows Server Core as the platform for the Hyper-V role. Let's get a few disadvantages out of the way first. You don't have a local GUI environment (Desktop experience) to administer the server with. Really, that's the 'core' one, no pun intended... or is it intended? Advantages compared to Windows Server with the Desktop experience The main advantage is the fact that the desktop environment is not installed. As a result, a huge security attack vector is missing. Plus, the complexity of Windows is greatly diminished. This is precisely why the Server Core option is so good for Hyper-V. Ideally, Hyper-V is installed as a low-footprint hypervisor on a bare metal server. And Microsoft did release this specific SKU in the past, going back to Windows Server 2008. However, 'Hyper-V Server 2019' is the last version Microsoft has released and will release. There will be no 'Hyper-V Server 2022' released. So, the next best thing (besides heading into the Azure lands in the clouds) is to install Windows Server (2022) Core and install the... --- ### German Cybersecurity Office BSI Issues Security Warning About Kaspersky Antivirus - Published: 2022-03-15 - Modified: 2024-11-19 - URL: https://petri.com/german-agency-bsi-warns-kaspersky-antivirus/ - Categories: Security - Tags: Antivirus, News, Security - Article Type: News German federal cybersecurity agency BSI has warned its citizens against using antivirus products from Russian-based Kaspersky Lab. The security agency has issued a statement today saying that the Kaspersky antivirus software could be exploited in launching cyberattacks amid Russia’s ongoing war in Ukraine. The advisory did not accuse Kaspersky Lab of any specific security violations, but it warned that certain organizations and authorities could be particularly vulnerable. The German security agency is now recommending companies to replace the Kaspersky antivirus solution with alternative products non-Russian software vendors. "The actions of military and/or intelligence forces in Russia and the threats made by Russia against the EU , NATO and the Federal Republic of Germany in the course of the current military conflict are associated with a considerable risk of a successful IT attack. A Russian IT manufacturer can carry out offensive operations itself, be forced to attack target systems against its will, or be spied on without its knowledge as a victim of a cyber operation, or be misused as a tool for attacks against its own customers," BSI explained in a press release. Kaspersky says this decision is based on political grounds In a statement shared with Bleeping Computer, a Kaspersky spokesperson explained that it believes this warning has been issued on political grounds and isn’t based on a detailed technical analysis of its antivirus software. “We will continue to assure our partners and customers in the quality and integrity of our products, and we will be working with the... --- ### Petri IT Knowledgebase Gets Major Site Redesign - Published: 2022-03-15 - Modified: 2022-03-15 - URL: https://petri.com/petri-it-knowledgebase-gets-major-site-redesign/ - Categories: Announcements - Tags: News, Petri - Article Type: News Welcome to the new look Petri. com! Our team has been working hard over the past three months to completely redesign the look and feel of the Petri IT Knowledgebase. Not only does the site now have a more modern look, but a lot of work has gone into improving performance and usability of the site. The redesigned site aims to bring Petri up-to-date with modern web design trends and make it the best possible resource for our readers. Petri is committed to providing the best content and community resources to help IT professionals be successful in their jobs and keep end users and businesses running 24 hours per day, 365 days per year. Homepage and search The homepage is now organized in a way that provides you with quick access to the latest how-tos in categories that are important to you. The site is more visual, helping you navigate around it faster and to help you more quickly focus on what’s important. The new Petri IT Knowledgebase homepage Search is now blazing fast, so you can find anything that you are looking for quickly! We also have new sections for podcasts and video. And if you want to find out more about our authors, there is an expanded author details page with a short bio and links so that you can contact them directly. Petri. com user accounts get access to more content If you had an account on Petri prior to the redesign, you can continue... --- ### QNAP Warns Against 'Dirty Pipe' Linux Flaw That Affects Several NAS Devices > QNAP has issued an advisory about a new Linux vulnerability that affects most of its Network Attached Storage (NAS) devices. The company warned that this high severity Linux exploit called “Dirty Pipe” could be abused by attackers to gain root privileges on affected systems. - Published: 2022-03-15 - Modified: 2024-09-04 - URL: https://petri.com/qnap-warns-dirty-pipe-linux-flaw-nas-devices/ - Categories: Hardware, Security - Tags: Dirty Pipe, linux, NAS, News, QNAP, Vulnerability Here's a look at what you need to know QNAP has issued an advisory about a new Dirty Pipe Linux vulnerability that affects a wide range of Network Attached Storage (NAS) devices. It allows attackers to overwrite data in arbitrary read-only files. The Dirty Pipe security flaw affects all NAS devices running kernel version 5. 10. 60. QNAP plans to release security updates soon to address this vulnerability. QNAP, a company specializing in developing networking solutions, has issued an advisory about a new Linux vulnerability that affects most of its Network Attached Storage (NAS) devices. The company warned that this high severity Linux exploit called “Dirty Pipe” could be abused by attackers to gain root privileges on affected systems. The Dirty Pipe vulnerability, tracked as CVE-2022-0847, was discovered by a security researcher by Max Kellermann back in April 2021. It allows non-privileged users to overwrite data in arbitrary read-only files, leading to local privilege escalation. The attacker can exploit this vulnerability to carry out various malicious actions such as creating unauthorized user accounts, installing backdoors, injecting code into scripts, and altering binaries used by privileged apps or services. Essentially, the security vulnerability resides in a Linux mechanism called pipeline, which the OS uses for unidirectional communication between processes. The flaw has since been fixed in the latest Linux kernel versions, but it could potentially target devices running Linux kernel version 5. 8 or newer. The Dirty Pipe flaw affects all QNAP NAS devices running QTS 5. 0. x and QuTS hero h5. 0. x QNAP says that... --- ### Microsoft Lifts Windows 11 Update Block As Oracle Releases VirtualBox Fix - Published: 2022-03-14 - Modified: 2022-03-15 - URL: https://petri.com/microsoft-lifts-windows-11-update-block-virtualbox-fix/ - Categories: Virtualization, Windows 10, Windows 11 - Tags: News, Oracle, Windows 11 Microsoft has removed an important upgrade block that should finally allow more users to upgrade to Windows 11. Last week, Microsoft updated the Windows health dashboard (via Bleeping Computer) to mention that the latest version of VirtualBox has finally removed the last Windows 11 safeguard hold, and users should update the app to version 6. 1. 28 or later. “Oracle has resolved this issue in VirtualBox 6. 1. 28 and later. To remove the safeguard hold on your device, you will need to update to VirtualBox 6. 1. 28 or later. Please note, if there are no other safeguards that affect your device, it can take up to 48 hours before the update to Windows 11, version 21H2 is offered,” the company explained. Back in October 2021, Microsoft had applied an upgrade block on all Windows 10 devices with VirtualBox where the Hyper-V or Windows Hypervisor had been installed. This was caused by a compatibility issue between the app and the OS, as the bug could cause errors triggering startup problems on virtual machines. This issue has now been resolved and VirtualBox users should no longer experience any problems while upgrading to Windows 11. Microsoft warns that some users may still be unable to upgrade to Windows 11 Even though the safeguard hold has been removed, keep in mind that it can take up to 48 hours before you can install Windows 11 on your PCs. It is also important to note that there are still some VirtualBox compatibility issues that may prevent users from upgrading... --- ### Microsoft Azure Ahead of AWS in Enterprise Cloud Space, Says New Report - Published: 2022-03-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-ahead-aws-enterprise-cloud-space/ - Categories: Cloud Computing, Microsoft Azure - Tags: AWS, Azure, News Microsoft Azure is now the most widely used enterprise cloud computing service, according to a new report from the IT management firm Flexera. Currently, Azure, AWS, and Google Cloud Platform are the top three public cloud providers, and the adoption rate of Azure has surpassed AWS in several areas. The 2022 State of the Cloud Report survey collected the responses of the 753 business professionals and cloud decision-makers worldwide. The survey was conducted in late 2021, and it outlines whether the enterprise respondents are currently running significant workloads, some workloads, experimenting with a cloud provider, or planning to use it in the future. According to the report from Flexera, 80 percent of enterprise respondents are currently using Microsoft Azure, which is 4 percent points higher than last year. Meanwhile, the usage share of AWS dropped from 79 percent to 77 percent during this period. Google Cloud Platform remains in third place with 48 percent adoption, which is followed by Oracle Cloud with a 27 percent adoption rate. “Data from this year's survey indicates Azure seems to be either closing the gap -- or has slightly surpassed -- AWS with some users. ” the report says. “As the first large-scale cloud provider, AWS is used more frequently by organizations that have been using the cloud over a longer period and are heavy cloud users. ” AWS is still popular amongst SMBs Notably, the survey data indicates that AWS is still one of the popular cloud service providers amongst small and midsized businesses (SMBs),... --- ### Microsoft 365 Apps and Services To Drop Support for Some TLS Certificates in 2025 - Published: 2022-03-11 - Modified: 2022-03-15 - URL: https://petri.com/microsoft-365-services-drop-support-tls-certificates-2025/ - Categories: Dynamics, Microsoft 365, Microsoft Azure, Microsoft Teams - Tags: Dynamics 365, Kaizala, Microsoft 365, News, skype, Skype for Business Microsoft announced this week some important Transport Layer Security (TLS) certificate changes regarding the Microsoft 365 services. The company detailed in a blog post that its Microsoft 365 apps and services would drop support for the current TLS certificates in May 2025, in favor of the new Root Certificate Authorities (CAs). Microsoft says that this change will impact several Microsoft 365 apps such as Microsoft Teams, Skype, Skype for Business Online, Microsoft Dynamics 365, GroupMe, Kaizala, as well as Azure Communication Services. “Microsoft 365 is updating services powering messaging, meetings, telephony, voice, and video to use TLS certificates from a different set of Root Certificate Authorities (CAs). This change is being made because the current Root CA will expire in May 2025,” the company explained. Here’s is a full list of all the endpoints affected by the TLS certificate changes: *. teams. microsoft. com *. skype. com *. skypeforbusiness. com *. groupme. com *. communication. azure. com *. operatorconnect. microsoft. com The Redmond giant explained that one of the new Root CAs called "DigiCert Global Root G2" is trusted by all major platforms, including Windows, macOS, iOS, and Android. Additionally, it supports some popular web browsers, such as Google Chrome, Microsoft Edge, Firefox as well as Safari. Microsoft 365 apps began transitioning to the new Root CAs in January 2022 Microsoft confirmed that the transition to these new Root CAs for Microsoft 365 services started back in January, and it will continue through October this year. The company recommends developers to prepare for the upcoming change that may cause "certificate validation errors" when the current... --- ### This Week in IT - Linux Gets Its Pipes Dirty - Published: 2022-03-11 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-linux-gets-its-pipes-dirty/ - Categories: Cloud Computing, Security, Windows 11 - Tags: Apple M1 Ultra, Dirty Pipe, File Explorer Tabs, Google Cloud, linux, Mandiant, News, Windows 11, Windows Sets This week in IT, all Linux distributions are affected by a serious security flaw, called Dirty Pipe, that can completely destroy systems. Google buys cybersecurity specialist Mandiant, swiping it from underneath Microsoft’s nose. Apple unveils its new all-powerful M1 Ultra chip. And Microsoft makes it easier for startups to participate in its Founders Hub program. Plus, Windows 11 may be getting tabbed Sets back in a future Insider build, Patch Tuesday updates fix the Windows Reset issue that was causing synchronized OneDrive files to remain on users' systems, and researchers discover a new CPU speculative execution flaw. This Week in IT – Linux Gets Its Pipes Dirty This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Microsoft’s New Office.com UI Now Available for All Business and Education Customers - Published: 2022-03-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-office-com-ui-business-education-customers/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, Microsoft Office, News, Office Microsoft unveiled its plans to redesign Office. com and the Office app for Windows at Ignite 2021. Now, the company has announced that the new experiences in Office. com will be rolled out to all business and education consumers by the end of this week. This release brings several enhancements that should make it easier for users with a work or school account to create, find, and share documents. First up, the revamped Office. com experience includes a new Home page with a Quick Access section that surfaces important Office files. It also supports new customizable filters that let users easily find documents based on the file type, collaborators, and more. Furthermore, Microsoft has introduced a new My Content pane that highlights all the important content (such as meeting recordings, files, and Loop) across Teams, OneDrive, SharePoint, and Outlook. There is also an Infinite Scroll on the My Content page, which eliminates the need to jump between search results pages. Lastly, the new Office. com UI adds a Create pane on the left that provides a built-in templates tool to create content across Microsoft 365. “Just select the type of content you wish to create and you'll be presented with various template options across multiple apps all at once so you can decide which option works best for you,” the company explained. There is also an option for IT admins to upload branded templates for employees in their organization. Microsoft is bringing the revamped Office. com UI to Microsoft 365 personal subscribers To get started,... --- ### Cloud Conversations – Matt Zorich on Azure Sentinel and KQL > Matt Zorich is a Principal Cyber Security Operations Specialist who's also a Kibana Query Language guru. He joins Ru and Pete in this week's episode to talk about how 365 days of KQL started, what makes Sentinel so valuable, recommendations for folks getting into Sentinel / KQL, and more. - Published: 2022-03-11 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-matt-zorich-on-azure-sentinel-and-kql/ - Categories: Video - Tags: Azure Sentinel, Cloud Conversations  Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations – Matt Zorich on Azure Sentinel and KQL Matt Zorich is a Principal Cyber Security Operations Specialist who runs the Learn Sentinel blog and is currently taking followers through the '365 days of KQL' hashtag on Twitter. He's a Kibana Query Language guru and sharing his wisdom with the community in a big way. He joins Ru and Pete in this episode to talk about: How 365 days of KQL started What makes Sentinel so valuable Do you need Sentinel if you have Microsoft 365 Defender with advanced hunting? Recommendations for folks getting into Sentinel / KQL - advice, lessons learned, etc. The gateway/path from "normal" IT to security specialist? More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the... --- ### What is DNS? > Do you know how domain names, like microsoft.com, are translated into IP addresses? The Internet uses a service called the Domain Name System (DNS), which allows domain names to be translated into IP addresses so that browsers and other Internet-connected apps and services can find webservers. - Published: 2022-03-11 - Modified: 2022-07-26 - URL: https://petri.com/what-is-dns/ - Categories: Networking - Tags: DNS, DNS record, DNS Zone, networking Do you know how domain names, like microsoft. com, are translated into IP addresses?  The Internet uses a service called the Domain Name System (DNS). In this article, you will learn what DNS is and it translates domain names into IP addresses, so that browsers and other Internet-connected apps and services can find webservers. Plus, check out our useful infographic below to quickly understand how DNS works. What is DNS? The Domain Name System is a server where domain names are converted into IP addresses so that browsers can load information. More specifically, DNS finds a domain name's corresponding IP address (IPv6 or IPv4 address), so that web browsers can locate and provide the information attached to the domain. Domain names (or website domains) are web addresses. Domain names are used in Uniform Resource Locators (URL) for websites. For example, you need to enter ‘www. google. com’ in a web browser to visit Google’s website. And ‘www. facebook. com’ for Facebook’s website. IP addresses An IP address is a unique address used to identify resources like a device or server on the Internet. An IP address is a number that facilitates devices connecting to each other over the internet or a local network. Much like a telephone number helps you dial a specific person. There are two types of IP addresses: IPv4 and IPv6. IPv4 addresses IPv4 is a 32-bit address scheme. It uses dot-decimal notation. IPv4 has the addressing capability of more than 4. 2 billion addresses. For example, an IPV4 address might look like 192. 0. 2. 1. IPv6 addresses IPv6 is a 128-bit address... --- ### Microsoft Defender for Identity Gets Action Accounts Support - Published: 2022-03-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-identity-action-accounts/ - Categories: Security - Tags: Microsoft Defender for Identity, News Microsoft has added support for action accounts to its Microsoft Defender for Identity solution. The new action accounts feature was spotted by Twitter user @JimSycurity earlier this week, and it is now generally available for all enterprise customers worldwide. The action accounts setting allows IT Admins to take actions (such as reset their password or disable them) on compromised accounts directly from Microsoft Defender for Identity. This new capability should make it easier for security teams to prevent cyber-attacks targeting employees in their organization. https://twitter. com/jimsycurity/status/1500956910362808333? s=21 Microsoft Defender for Identity is a cloud-based security solution that allows organizations to detect and investigate compromised identities, threats, as well as malicious attacks targetted at the on-premises Active Directory. The security teams can use the Defender for Identity portal to analyze the data received from the sensors to investigate potential threats in their network environment. How to configure the action account in Microsoft Defender for Identity To use this feature, IT Admins will need to define the group Managed Service Account (gMSA) that will be used to take actions by following these steps: First of all, create a new group Managed Service Account (gMSA) in Active Directory. Now, set the correct permissions for the gMSA account at the domain level to reset passwords, read the pwdLastSet attribute, write the pwdLastSet attribute, read the userAccountControl attribute and write the userAccountControl attribute. Go to the Microsoft 365 Defender portal and add the gMA account under Settings >> Identities. Finally, select the Manage action accounts option available... --- ### The Ultimate Guide to Microsoft Teams eDiscovery > Microsoft Teams stores data in various places, making it difficult for IT Admins to perform complete eDiscovery. In this article, we'll explore the different eDiscovery tools available for IT Admins, how to collect Teams data using eDiscovery, and the current limitations for eDiscovery workflows. - Published: 2022-03-10 - Modified: 2024-09-04 - URL: https://petri.com/ultimate-guide-to-microsoft-teams-ediscovery/ - Categories: Compliance, Microsoft 365 - Tags: eDiscovery, Microsoft Teams Amid this ongoing pandemic, many organizations across the world have required their employees to work from home using apps like Microsoft Teams, which generates more content than ever in Office 365.  Microsoft Teams stores data in various places, making it more difficult for administrators to perform complete eDiscovery. In this article, we will explore what different Teams eDiscovery tools are available for IT Admins, how to collect data from Teams using eDiscovery, and what are the current limitations for eDiscovery workflows. Where is Microsoft Teams data stored? Before we begin using eDiscovery, it's essential to understand the different storage locations of Microsoft Teams since the app uses multiple Office 365 services to handle its data. Chat and channel Messages Microsoft Teams chat and channel messages are stored with Exchange Online. When a user posts messages to a chat or channel conversation, the Microsoft 365 substrate stores a compliance record for those messages in Exchange Online. The compliance records for chats are in the user mailboxes of all chat participants. When users send channel messages, compliance records are sent to the team mailbox that owns that channel. Files Every team has a SharePoint team site, and within that site is the Team document library with folders representing each channel. Microsoft Teams files live in OneDrive for Business or SharePoint Online. When a user sends a file via a Teams chat, a folder in their OneDrive will appear named "Teams Chat Files, " containing their files. Files shared through Teams chats are... --- ### Get Ready for AWS Pi Day 2022 > On March 14th, 2022 Amazon will host its 2nd annual AWS Pi Day virtual event. During this one-day free virtual event, Amazon will offer sessions showing how you can leverage S3 for your business, keep your data protected and optimize your S3 storage costs. - Published: 2022-03-10 - Modified: 2022-03-15 - URL: https://petri.com/get-ready-for-aws-pi-day-2022/ - Categories: Amazon Web Services, Backup & Storage, Cloud Computing, Data Management - Tags: Amazon, Amazon Web Services, AWS, AWS S3 Now that March is here it’s almost that time of year again. No, I don’t mean St. Patrick’s Day. It’s almost time for AWS Pi Day 2022. Amazon S3, the first AWS service, was launched 16 years ago on Pi Day, March 14, 2006. On March 14th, 2022 Amazon will host its 2nd annual AWS Pi Day virtual event. This year’s Pi Day will be available on the AWS Twitch channel and attendance is completely free. During this one-day virtual event, Amazon will offer sessions showing how you can leverage S3 for your business, keep your data protected and optimize your S3 storage costs. The program for AWS Pi Day 2022 This year’s Pi Day will kick off at 9:30 am PT with a keynote by Kevin Miller, Amazon VP, S3. Kevin will discuss how Amazon S3 set off a wave of innovation that disrupted traditional IT and he will tell you how S3 can provide the foundation to help you reinvent your business. Next, throughout the bulk of the day, Amazon will offer a series of breakout sessions covering all sorts of data protection and security topics including: Managing Amazon S3 security at scale Building resilient, multi-Region storage architectures using S3 Replication and S3 multi-Region access points Centralize and automate data protection of your applications with AWS Backup Optimize your storage costs using Amazon S3 Modernize your data archive with the Amazon S3 Glacier storage classes Accelerate your storage migration And more... Finally, the virtual event will wrap up at... --- ### Patch Tuesday – March 2022 - Published: 2022-03-10 - Modified: 2022-03-10 - URL: https://petri.com/patch-tuesday-march-2022/ - Categories: Security - Tags: Azure Site Recovery, Exchange Server, Microsoft Office, News, Patch Tuesday, Visio, Visual Studio, Windows, Windows Server Microsoft released 71 fixes this month, 3 of which are rated Critical and 68 Important. While three are publicly known at the time they were released, none are believed to be in active use by hackers. Windows and Windows Server Microsoft released an update for CVE-2022-21990, which is a Remote Desktop Client (RDP) remote code execution flaw that an attacker could use to trick an affected client connecting to a malicious RDP server. In turn, the hacker could run code on the affected client. A remote code execution bug (CVE-2022-24508) in the Windows SMBv3 client and server components gets patched. While this is hard to exploit because the attacker must be authenticated, it could let a malicious actor move laterally around your network, so it's wise to get this bug patched quickly. There are some critical bug fixes for the HEVC and VP9 video extensions in Windows. If you have them installed, these components should update automatically via the Microsoft Store. Provided you haven't turned off automatic updates for Store apps. Some escalation of privileges bugs in the following Windows components also get fixes: FAT file system Fax and Scan Service CD-ROM driver Windows PDEV Hyper-V gets a patch for a denial of service (DoS) flaw. And another DoS flaw is patched in the Point-to-Point Tunneling (PPTP) protocol. Microsoft Azure This month Azure gets fixes for 11 CVEs that are connected to the Azure Site Recovery service. There are fixes for five elevation of privilege flaws and six remote... --- ### Google to Acquire Cybersecurity Firm Mandiant to Bolster Cloud Computing Business - Published: 2022-03-08 - Modified: 2024-09-04 - URL: https://petri.com/google-acquires-cybersecurity-firm-mandiant/ - Categories: Cloud Computing, Security - Tags: Google, Microsoft, News - Article Type: News Google has announced its plans to acquire Mandiant, a US-based cyber security company, in an all-cash deal valued at $5. 4 billion. The software giant says that this new acquisition will help to improve its security offerings to better protect Google Cloud customers. Once the deal closes, Mandiant will join Google’s cloud computing business, which should boost its security capabilities beyond Google Chronicle, VirusTotal, and BeyondCorp Enterprise. With this new acquisition, Google Cloud customers will get a new end-to-end security solution that will help them to protect their organizations from new cyber threats. More specifically, Google Cloud will add several new security features and capabilities, including advisory services, automation and response tools, threat detection and intelligence, testing and validation, as well as managed defense tools. “Organizations around the world are facing unprecedented cybersecurity challenges as the sophistication and severity of attacks that were previously used to target major governments are now being used to target companies in every industry. We look forward to welcoming Mandiant to Google Cloud to further enhance our security operations suite and advisory services, and help customers address their most important security challenges,” said Google Cloud CEO Thomas Kurian. Google expects to close Mandiant's acquisition deal later this year Google is planning to acquire Mandiant at a time when cybersecurity threats are on the rise. As a reminder, Mandiant was the first security firm to discover and investigate the SolarWinds attack in early 2021. Microsoft was also previously in acquisition talks with Mandiant, but the discussions didn't... --- ### Microsoft Acknowledges "AutoWarp" Critical Security Vulnerability Affecting Azure Automation Service - Published: 2022-03-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acknowledges-autowarp-critical-security-vulnerability-affecting-azure-automation-service/ - Categories: Microsoft Azure, Security - Tags: Azure Automation, flaw, Microsoft Azure, News, Vulnerability - Article Type: News Microsoft has addressed a new critical security vulnerability in its Azure Automation service. The exploit labeled "AutoWarp” was mitigated in December 2021, and the company confirmed that it could enable malicious actors to get access to the data and resources of other Azure customers. The cross-tenant vulnerability was first discovered by a researcher at Orca Security and reported to Microsoft on December 6, 2021. Essentially, the AutoWarp flaw allows threat actors to access the Managed Identities tokens of other tenants. “Someone with malicious intentions could’ve continuously grabbed tokens, and with each token, widen the attack to more Azure customers,” explained Yoav Alon, CTO at Orca Security. “This attack could mean full control over resources and data belonging to the targeted account, depending on the permissions assigned by the customer. ” Microsoft Azure Automation is a popular service that lets organizations create, deploy, monitor, as well as maintain their cloud resources. It helps users save time and resources by making it easier to automate their repetitive management tasks. The Azure Automation service provides several features and capabilities such as process automation, configuration, and update management. Microsoft patched the AutoWarp security flaw in December 2021 The AutoWarp security flaw potentially exposed several Azure customers, and the list includes accounting firms, a banking conglomerate, a global telecom company, car manufacturers, and more. The Redmond giant released a patch on December 10 that fixed the security flaw by preventing unauthorized access to authorization tokens to all sandbox environments. Microsoft claims that it has not found... --- ### Researchers Discover Leaked Nvidia Code-Signing Certificates Used to Spread Malware - Published: 2022-03-07 - Modified: 2024-09-04 - URL: https://petri.com/nvidia-code-signing-certificates-malware/ - Categories: Security - Tags: News, Security - Article Type: News Last week, security researchers revealed that a hacking group had been involved in using leaked Nvidia code-signing certificates for malware purposes. As reported by Bleeping Computer, two expired certificates are currently being used by threat actors to gain remote access and install malicious drivers on targeted Windows machines. For those unfamiliar, Windows requires that all kernel-mode drivers be code signed, and the OS provides a warning if the user attempts to install an application that is not signed by a trusted CA. However, some Windows devices may not be able to detect malware if the threat actor signs it off with a genuine Nvidia code. Computer security expert Bill Demirkapi revealed on Twitter that the hackers are using the two compromised Nvidia code-signing certificates are to sign their drivers and executable files. https://twitter. com/BillDemirkapi/status/1499437244830175236 The security researchers also spotted some malware samples signed with the expired Nvidia certificates on VirusTotal, a popular malware scanning service. The list of the hacking tools and malware includes Cobalt Strike Beacon, remote access trojans, backdoors, as well as Mimikatz. What is a code-signing certificate? A code-signing certificate is a method developers use to sign a program, software update, or executable file before releasing them to the general public. In addition to all the information contained in the certificate (like the publisher's name, location, etc. ), the signature includes a timestamp that clearly indicates when the software was signed with the certificate. It helps users ensure that any unauthorized third party has not tempered the software and... --- ### Microsoft 365 Web Apps To Get Account Switching Support Next Month - Published: 2022-03-07 - Modified: 2022-03-11 - URL: https://petri.com/microsoft-365-web-apps-account-switching/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Office, News - Article Type: News Microsoft is working on a new feature that will bring account switching support for Microsoft 365 web apps. The company announced in a message on the Microsoft 365 Admin Center that this update will allow users to seamlessly switch between multiple personal and work accounts in the same browser. Currently, Microsoft 365 web apps do not let users sign in to multiple accounts in a browser at a time. The only way to toggle between multiple work and personal accounts is to sign out of the current account and log in with another one. There are also some workarounds, such as using different web browsers or separate profiles in a browser. However, this process can be tedious sometimes, but this is about to change soon. Once the feature rolls out, users will be able to sign into multiple MSA accounts and Microsoft 365 tenants within the same browser instance without logging out first. This functionality is already available in some Microsoft 365 web apps (such as Azure Portal, Azure DevOps) and Microsoft native apps. “This change will allow them to add a new Azure AD or MSA account using the Account Manager on the top right. And then they can perform a one-click switch between them using the same control. Upon a successful account switch, the page will refresh with content flowing from the new account,” the company explained on the Microsoft 365 Admin Center. It is important to note that while Microsoft 365 web apps will let users add... --- ### Cloud Conversations: Pragati Jain on Power Platform & Community events > In this week's episode, we discussed Power Platform updates, event planning, and time management and community contributions with Pragati Jain, a Microsoft Data Platform MVP, Event organizer, Manager at the Power BI UK User group, conference speaker, and blogger. - Published: 2022-03-04 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-pragati-jain-on-power-platform-community-events/ - Categories: Video - Tags: Cloud Conversations, Power Platform - Article Type: Video  Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations - Pragati Jain on Power Platform & Community events Pragati Jain is a Microsoft Data Platform MVP, Event organizer, Manager at the Power BI UK User group, conference speaker, and blogger. On this week's episode, we chatted about: What it's like organizing an event Feature updates in the Power Platform Time management and community contributions More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Cloud Conversations – Pragati Jain on Power Platform & Community events > In this week's episode, we discussed Power Platform updates, event planning, and time management and community contributions with Pragati Jain, a Microsoft Data Platform MVP, Event organizer, Manager at the Power BI UK User group, conference speaker, and blogger. - Published: 2022-03-04 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-pragati-jain-on-power-platform-community-events-2/ - Categories: Video - Tags: Cloud Conversations, Power Platform  Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations - Pragati Jain on Power Platform & Community events Pragati Jain is a Microsoft Data Platform MVP, Event organizer, Manager at the Power BI UK User group, conference speaker, and blogger. On this week's episode, we chatted about: What it's like organizing an event Feature updates in the Power Platform Time management and community contributions More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Windows 11 Surges Forward and ARM Gets Pluton - Published: 2022-03-04 - Modified: 2022-03-26 - URL: https://petri.com/windows-11-surges-forward-and-arm-gets-pluton/ - Categories: Video - Tags: Azure AD, Lenovo, Microsoft, Microsoft Defender for Business, News, Security, ThinkPad, Windows 10, Windows 11, Windows on ARM - Article Type: Video This week in IT, Windows 11 increases its market share, Microsoft releases Defender for Business and it pledges to help protect businesses against cyberattacks during the war in Ukraine, and Lenovo releases the first ARM PCs based on Microsoft’s Pluton security platform, and much more! This Week in IT – Windows 11 Surges Forward and ARM Gets Pluton This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short video. --- ### Microsoft Defender for Cosmos DB is Now Available in Public Preview - Published: 2022-03-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-cosmos-db-is-now-available-in-public-preview/ - Categories: Endpoint Protection, Security - Tags: cloud security, Microsoft Defender for Azure Cosmos DB, News - Article Type: News Microsoft has announced the public preview of Microsoft Defender for Azure Cosmos DB, a new database protection solution for enterprise customers. The latest security offering allows organizations to constantly monitor and protect their cloud workloads against the most common critical threats across databases. “The new cloud workload protection capabilities are designed as an Azure-native layer of security, that detect attempts to exploit databases in your Azure Cosmos DB accounts based on the most common attack techniques and known bad actors—enabling security teams to detect and respond to these threats more effectively, using the Microsoft Defender for Cloud toolset,” the company explained. More specifically, this new security solution protects Cloud Cosmos DB accounts from the most critical threats, including SQL injections. The SQL injection attack is one of the most popular attack techniques that the threat actors use to access sensitive information such as user credentials and credit card details. Microsoft Defender for Azure Cosmos DB can also block unusual and potentially harmful attempts to access account access keys. Additionally, it can detect suspicious behavior patterns that can potentially lead to malicious insiders, leaked keys, as well as compromised identities. You can find the full list of Defender for Azure Cosmos DB alerts on this support page. How to configure Microsoft Defender for Cosmos DB Microsoft says that IT Admins will be able to set up the Microsoft Defender for Cosmos DB protection by following the steps mentioned below: First of all, open the Azure portal. Head to the Settings menu... --- ### Get-AdUser: How to Audit Active Directory Users with PowerShell > PowerShell is an essential tool for IT admins, and it makes it easy to audit Active Directory user accounts with the Get-AdUser command. In this guide, we're going to detail how to get started with the popular Active Directory cdmdlet.  - Published: 2022-03-03 - Modified: 2024-09-04 - URL: https://petri.com/get-aduser-how-to-audit-active-directory-users-with-powershell/ - Categories: PowerShell - Tags: Active Directory, PowerShell - Article Type: How To PowerShell is an essential tool for IT admins, and it makes it easy to audit Active Directory user accounts with the Get-AdUser command. In this guide, we're going to detail how to get started with the popular Active Directory cdmdlet.   Introduction to the Get-AdUser PowerShell cmdlet The Get-AdUser cmdlet is one of the most popular Active Directory PowerShell cmdlets. It allows you to get a specified user object, or lets you perform customizable searches to get multiple user objects. The Identity parameter is used to specify what Active Directory user to get. You have several options on how to identify the user: You can use their distinguished name (DN), GUID, security identifier (SID), or Security Account Manager (SAM) account name. You can also set the parameter to a user object variable such as $UserA or pass a user object through the pipeline to the Identity parameter. You can use the Filter or LDAPFilter parameters to search for and get more than one user, The Filter parameter uses the PowerShell Expression Language (PSL) to query Active Directory. PowerShell Expression Language syntax gives admins rich type-conversion support for value types accepted by the Filter parameter. If you already have Lightweight Directory Access Protocol (LDAP) query strings, use the LDAPFilter parameter instead. If there are no parameters explicitly set, Get-AdUser displays a default set of user object properties. To retrieve additional properties, use the Properties parameter. We'll get into some of the parameters you can use later in this article. How to use Get-AdUser and prerequisites Before you can... --- ### How to Download and Set Up Microsoft Entra Connect > In this guide, I’ll provide information on how to download Microsoft Entra Connect and walk you through the installation and configuration of it. We'll be using a new Windows Server 2019 forest and domain and an Microsoft Entra ID tenant using a Premium P2 trial license and a verified custom domain. - Published: 2022-03-03 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-and-configure-azure-ad-connect-v2/ - Categories: Active Directory (AD), Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory, Azure AD Connect, Microsoft Entra ID - Article Type: How To In this guide, I’ll provide information on where to download Microsoft Entra Connect (previously called Azure AD Connect) and walk you through the installation and configuration of it. Microsoft states that the most common topology is a single on-premises forest, with one or multiple domains, and a single Microsoft Entra ID tenant. My guide will follow this topology, using a new Windows Server 2019 forest and domain, an Microsoft Entra ID tenant using a Premium P2 trial license, and a verified custom domain. Please note that Microsoft Entra Connect and Azure AD Connect are used interchangeably in this article because Microsoft has yet to update the application to reflect the name change. Download Microsoft Entra Connect Before we delve into the detail, here are the 6 high-level steps required to get Azure AD Connect V2 set up and working: Download Microsoft Entra Connect Run the installer Configure user sign-in Connect your directories Configure advanced options Start directory synchronization What is Microsoft Entra Connect? Simply put, Microsoft Entra Connect allows you to synchronize your Active Directory (AD) with Microsoft Entra ID. This extends your old-school but still critically important Windows Server Active Directory to Microsoft’s cloud-hosted Microsoft Entra ID, and helps you achieve your goal of creating a hybrid identity. If you are unfamiliar with these terms or need a refresher, that's okay. We recommend taking the time to check out our comparison of Active Directory and Microsoft Entra ID before going further. Microsoft Entra Connect contains features like password hash synchronization (PHS), pass-through authentication (PTA) and integration with Active Directory... --- ### Microsoft Announces Public Preview of Azure AD Multi-Stage Access Reviews - Published: 2022-03-02 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-azure-ad-multi-stage-access-reviews/ - Categories: Active Directory (AD), Information Security, Microsoft Azure, Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, Azure AD Access Review, News - Article Type: News Microsoft has launched a new multi-stage access reviews feature for Azure AD customers. The new capability is currently available in public preview, and it enables organizations to configure access reviews in sequential stages for resource owners and auditors. Microsoft’s Azure Active Directory access reviews feature allows organizations to set up policies to review users’ access to group memberships, privileged role assignments, as well as enterprise applications. It is important to conduct access reviews periodically to ensure that only authorized users (such as employees and guests) have permissions access to any resources. The single-stage review model requires all reviewers to decide within the same period, and the decision of the last reviewer is considered final. However, the new multi-stage access now lets IT admins define two or three sets of reviewers responsible for attesting users’ access to resources in a particular sequence. This capability has been designed for organizations that need a complex review process to meet specific audit or certification requirements. “It also helps you design more efficient reviews for your resource owners and auditors by reducing the number of decisions each reviewer is accountable for. Previously you may have artificially created multiple disjointed reviews to achieve the same purpose, but now with multi-stage reviews this all takes place in the context of just one review,” explained Alex Simons Corporate VP of Program Management. How to set up Azure AD multi-stage reviews To get started with multi-stage reviews, head over to the Azure AD portal and navigate to the Azure... --- ### Microsoft Launches New Endpoint Security Solution for Small Businesses - Published: 2022-03-02 - Modified: 2022-03-11 - URL: https://petri.com/microsoft-launches-new-endpoint-security-solution-for-small-businesses/ - Categories: Endpoint Protection, Microsoft 365, Security - Tags: Microsoft 365, Microsoft Defender for Business, News - Article Type: News Microsoft has announced the general availability of Microsoft Defender for Business, a new endpoint security offering designed for small and medium-sized businesses (SMBs). The new security offering was first unveiled at Ignite 2021, and it began rolling out in preview to select Microsoft 365 Business Premium customers back in December. Microsoft describes Microsoft Defender for Business as a cost-effective enterprise-grade endpoint security solution that caters to the needs of small businesses with up to 300 employees. The new security offering automatically investigates possible security threats (ransomware, phishing, and malware) in enterprise environments. It also provides a dashboard view of security incidents and alerts to help IT Admins lock potentially compromised devices. “Microsoft Defender for Business will add cross-platform endpoint protection and sophisticated ransomware defenses with technologies like endpoint detection and response (EDR) to the comprehensive security and productivity stack that already exists in Microsoft 365 Business Premium, making it an even more compelling and complete offering for small and medium businesses,” said Jared Spataro, CVP for Microsoft 365. https://www. youtube. com/watch? v=umhUNzMqZto Microsoft Defender for Business brings new security capabilities for SMBs Microsoft Defender for Business comes with a bunch of new security capabilities for SMBs that were previously available for large organizations. The key security features include threat and vulnerability protection, attack surface reduction, automated investigation and remediation, as well as endpoint detection and response. Additionally, Microsoft Defender for Business also offers integrations with the Microsoft 365 Lighthouse that lets IT Admins identify and track security incidents and alerts across multiple customers... . --- ### Microsoft Office Mobile Apps Now Support Co-Authoring Encrypted Documents - Published: 2022-03-01 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-office-mobile-co-authoring-encrypted-documents/ - Categories: Compliance, Information Security, Microsoft 365 - Tags: News, Office 365, Office 365 Sensitivity Labels - Article Type: News Microsoft has announced that its Office mobile apps now support co-authoring documents encrypted with sensitivity labels. This capability has been available on the Office desktop and web clients for a while now, and it's finally making its way to the iOS and Android versions of the app. With the new co-authoring feature, the Microsoft Office app enables multiple mobile users to simultaneously edit protected Word, PowerPoint, and Excel documents with AutoSave. This release should make it easier for co-workers to collaborate on the go while keeping their sensitive data secure and compliant. “Multi-platform collaborative co-authoring is an essential component of MIP. As an intelligent, unified, and extensible solution to protect sensitive data across your enterprise – in Microsoft 365 cloud services, on-premises, third-party SaaS applications, and more, MIP provides a unified set of capabilities to know your data, protect your data, and help prevent data loss across Microsoft 365 apps and services,” the company explained yesterday. You can see how this new co-authoring feature works between an iPad and Android device on an encrypted document in the screenshot below. Sensitivity Labels An Office 365 sensitivity label is a type of tag that allows users to mark sensitive data (such as documents and spreadsheets) with various levels of confidentiality. This capability is available for high-end Microsoft 365 plans. The ability to co-author encrypted documents requires a sensitivity label to be applied to the Office file. How to enable the co-authoring feature for Office files on mobile Microsoft says that the new... --- ### Microsoft Offers Temporary Workaround for Windows 11 and 10 Reset Issue - Published: 2022-03-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-workaround-windows-11-and-10-reset-bug/ - Categories: Microsoft 365, Windows 10, Windows 11 - Tags: News, OneDrive, Windows 10, Windows 11 - Article Type: News Microsoft has acknowledged a new issue with Windows 10 and Windows 11, which causes select locally-synced OneDrive files and folders to remain on the PC even after a factory reset. This bug was first discovered by Microsoft MVP Rudy Ooms, who noticed that the user data may still be accessible in the "Windows. old" folder after performing a reset on the affected Windows devices. According to Microsoft, this file persistence issue may occur when a user initiates a manual reset process using the built-in option in Windows Settings. Moreover, this bug also impacts factory resets done remotely with Microsoft Intune or third-party mobile device management tools. This problem does not seem to affect OneDrive "cloud-only" or locally downloaded or opened files. “When attempting to reset a Windows device with apps which have folders with reparse data, such as OneDrive or OneDrive for Business, files which have been downloaded or synced locally from OneDrive might not be deleted when selecting the “Remove everything” option. This issue might be encountered when attempting a manual reset initiated within Windows or a remote reset,” Microsoft explained on the Windows health dashboard. Microsoft has confirmed that the reset issue affects all supported Windows versions, and the list includes Windows 11 version 21H2, Windows 10 version 21H2, Windows 10 version 21H1, as well as Windows 10 version 20H2. Workaround for the Windows 11 and 10 reset bug The Redmond giant has provided a couple of temporary workarounds to help mitigate the Windows reset issue. The company recommends... --- ### Everything You Need to Know About Power Platform - February 2022 > Microsoft is doing something like our recent weather with its Power Platform in February as they’ve begun revealing some newer 2022 rollout code in preview mode. Learn more about model-driven apps updates, new Power BI features, and other updates Microsoft's Power Platform received in February. - Published: 2022-03-01 - Modified: 2022-03-01 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-february-2022/ - Categories: Power Platform - Tags: power apps, power automate desktop, Power BI, Power Platform - Article Type: News Hello from mid-America where warmer weather is getting rolled out to us in snippets, but most days are still being spent in the cold weather environment. Microsoft is doing something like our recent weather with its Power Platform in February as they’ve begun revealing some newer 2022 rollout code in preview mode. This month was an interesting one for Microsoft's Power Platform, though there was nothing really Canvas apps specific to report. I guess that just means more room for those other pieces of the platform we should all know more about anyway. Anyway, let's get to everything you need to know about Power Platform in February 2022. Model-driven apps updates (Preview)  If you’re a Dynamics 365 customer building tables in Dataverse, you may have already noticed the new preview environment for Model-driven apps. Users will be able to use what’s known as the “modern experience” or revert to the “classic experience”. You can begin using pieces that look more like canvas apps with a smoother integration with canvas apps as well. Grid and view pages will begin with the modern experience, and users can opt-in for updates including the Modern Advanced Find, In-App Notifications, and enhanced Collaboration. Very cool!   Installing the Power Platform extension for VS Code  On the ProDev end of the spectrum, Microsoft has revealed an alternate way to install VS Code extensions through the Visual Studio Marketplace. This is designed to help IT pros in an organization that restricts downloaded installation executables.   Power Apps portals available as... --- ### What's New with Windows – February 2022 - Published: 2022-03-01 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-windows-february-2022/ - Categories: Windows 10, Windows 11 - Tags: ARM, Microsoft Edge, News, Windows, Windows 11, Windows Insider Program - Article Type: News This month, Lenovo releases new Windows devices on ARM, Windows 11 gets a 'major' update, and resetting your PC might not delete all your files. Lenovo announces new Windows devices built on ARM and the Pluton security architecture Lenovo announced at the Mobile World Conference (MWC) in Barcelona this month new devices running Qualcomm Snapdragon 8cx Gen 3 ARM processors. Microsoft says these are the first ARM processors built on its Pluton security architecture. Pluton secures boot, identity, credential protection, and encryption processes. The Azure Attestation Service with Intune also supports Pluton to provide what Microsoft calls 'chip-to-cloud zero trust' security. Additionally, the ThinkPad X13s comes Secure-Core PC certified, ensuring that it is compatible with all the security features in Windows 11. ARM pointer authentication Microsoft says it has invested in ARM pointer authentication capability in Windows 11 when running on the Snapdragon 8cx Gen 3. It brings protection for exploits that use return-oriented programming (ROP) or stack modification techniques. Windows on ARM performance While Microsoft touts security improvements for Windows devices running on ARM, what it hasn't talked about is performance. Performance on previous devices running earlier versions of the Snapdragon 8 chip was lackluster. And the Gen 3 isn't expected to show much improvement. With Apple blazing ahead in ARM performance, Microsoft is going to need to up its game over the next couple of years if Intel can't deliver performance and power efficiency to match the M1 chip. Microsoft previews new Windows 11 features Microsoft released... --- ### How Viva Learning Promotes Learning Culture in Hybrid Workspaces > Microsoft Viva, the company's new employee experience platform includes different modules to keep employees engaged. With Viva Learning, Microsoft wants to address common training challenges by providing employees with easy-to-digest courses based on their interests and roles. - Published: 2022-03-01 - Modified: 2024-11-19 - URL: https://petri.com/how-viva-learning-promotes-learning-culture-in-hybrid-workspaces/ - Categories: Microsoft 365 - Tags: Linkedin, Microsoft Learn, Microsoft Viva, Viva Learning - Article Type: How To Since a global pandemic hit the globe two years ago, companies across the world have been trying to adapt to a new hybrid work reality. That also includes Microsoft. It has been leveraging Teams to make learning resources more accessible for employees. Last year, Microsoft launched Viva. Viva is a new employee experience platform accessible in Microsoft Teams. It includes different modules. There is a Learning module that provides employees with easy courses based on their interests and roles. According to PwC’s annual global CEO survey, 79% of CEOs say the talent and skills of their workforce is their number one issue. Meanwhile, employees spend only 1% of their workweek on formal learning. Based on this, we can see the skills gap is real, and we know the time gap at work is also real. People also have different learning preferences. Adult learning theory tells us adults learn faster when drawing from their own experiences and references. It also tells us that learning needs arise quickly, and it's best to address these quickly. Based on this data and adult learning theory, learning needs to be more engaging. And seamlessly integrated into places where people are already spending their time at work. Microsoft's Viva Learning platform addresses some of these challenges. What is Viva Learning? Viva Learning is a training app that organizations can add to Microsoft Teams. Employees can easily access learning content in Teams from different sources.  They can search for relevant courses, view them directly in Teams, and mark... --- ### OneDrive Sync Support Now Generally Available for Apple M1 Macs - Published: 2022-02-28 - Modified: 2024-11-19 - URL: https://petri.com/onedrive-sync-support-apple-m1-macs/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, News, onedri, OneDrive, OneDrive for Business - Article Type: News Microsoft announced today that its OneDrive sync client for Mac is now generally available for Apple M1-powered Macs. The updated OneDrive version launched in public preview for Office Insiders back in December 2021. It allows the app to natively on M1 processors which should lead to better performance. “We’re excited to announce that OneDrive sync for macOS will now run natively on Apple silicon. This means that OneDrive will take full advantage of the performance improvements of Apple silicon. We know this has been a long-awaited and highly requested feature, and we're delighted to make it generally available starting with build 22. 022,” the OneDrive team explained today. OneDrive sync for macOS adds Folder Backup (Known Folder Move) support Furthermore, Microsoft's OneDrive sync client has rolled out a new Known Folder Move (KFM) feature in public preview on macOS. This means that OneDrive users can now sync and secure content from various folders across macOS devices. So, all important files will always be accessible, even if the device is reset or the computer fails to work. Microsoft has highlighted that IT admins can set up preferences for Mac users to back up their files in the Desktop and Documents folders to OneDrive. However, there is also an option to silently configure this new Known Folder Move (KFM) feature without publicizing it. This feature is available for all Mac users running macOS Monterey 12. 1 at no additional cost with up to 5 GB of free storage. To enable it, you will first... --- ### What's New in Microsoft Teams - February 2022 - Published: 2022-02-28 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-microsoft-teams-february-2022/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has detailed new features and capabilities that arrived in its Teams collaboration platform in February. This month, the biggest improvements include a new mute notifications feature for meetings, a Compact mode for chats, end-to-end encryption (E2EE) support for mobile, and more. 1. Mute meeting notifications First up, Microsoft is now rolling out the ability to mute notifications during Teams calls and meetings. The feature has been available in public preview since January, and it should help meeting participants to avoid unwanted distractions. However, it’s up to the users to mute notifications for a specific meeting or all meetings. How to mute notifications during Microsoft Teams meetings To mute notifications during a meeting, navigate to the top of the meeting window and click More actions (... ), and then select the Mute notifications button. Alternatively, Microsoft Teams users can also choose to disable notifications for all meetings. Head to Settings and more (... ) >> Settings >> Notifications. Click the Edit button available under the Meetings and Calls section and turn on the Mute notifications during meetings and calls toggle button. 2. Pin or hide your own video Microsoft is making it possible for attendees to hide their video feed in a Teams meeting. The new functionality should help to reduce meeting fatigue and stay focused during presentations. Microsoft Teams has also added the ability for users to pin their own video on the meeting stage. How to Pin or hide your own video in Microsoft Teams meetings Microsoft... --- ### Microsoft Acknowledges New Netlogon Issues On Windows Server Machines - Published: 2022-02-25 - Modified: 2022-02-25 - URL: https://petri.com/microsoft-acknowledges-netlogon-issues-windows-server/ - Categories: Windows Server, Windows Server 2008, Windows Server 2012, Windows Server 2016, Windows Server 2019, Windows Server 2022 - Tags: News, Patch Tuesday, Windows Server - Article Type: News Microsoft has acknowledged a new Windows Server bug that prevents select apps or network drives from establishing secure Netlogon channel connections. The company confirmed on the Windows health dashboard that this problem is caused by the January Patch Tuesday updates. And it impacts all supported versions of Windows Server (via Bleeping Computer). What Is NetLogon? For those unfamiliar, Netlogon is a Windows Server process. It is responsible for creating a secure channel between domain controllers and PCs. It primarily runs in the background to authenticate users, login requests, and other services within a domain. Microsoft says that applications and services affected by the Netlogon issue may be unable to join domains or encounter problems after doing so. “After installing KB5009555 or any updates released January 11, 2022 and later on your domain controllers, scenarios which rely on Read-only domain controllers (RODCs) or synthetic RODC machine accounts might fail to establish a Netlogon secure channel. RODC accounts must have a linked and compliant KRBTGT account to successfully establish a secure channel. Affected applications or network appliances, such as Riverbed SteelHead WAN Optimizers, might have issues joining domains or limitations after joining a domain,” the company explained. According to Microsoft, the Netlogon bug affects the following Windows Server configurations: Windows Server 2022 Windows Server 2019 Windows Server 2016 Windows Server 2012 R2 Windows Server 2012 Windows Server 2008 R2 SP1 Windows Server 2008 SP2 Microsoft noted that it is actively investigating the issue, but it didn't provide a date for when this... --- ### This Week in IT - Microsoft Wants to Secure Google Cloud but John Malkovich Isn’t Impressed - Published: 2022-02-25 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-microsoft-wants-to-secure-google-cloud-but-john-malkovich-isnt-impressed/ - Categories: Cloud Computing, Microsoft Azure, Windows 10 - Article Type: Video This week in IT, Microsoft adds Google Cloud Platform support to Microsoft Defender for Cloud, CloudKnox helps organizations gain visibility and better management into multi-cloud identities and permissions, and . NET 7 preview launches to help developers build cloud-native apps more easily. Plus, Windows Update gets a cameo in Netflix’s Space Force. This Week in IT – Microsoft Wants to Secure Google Cloud but John Malkovich Isn’t Impressed This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short 5-minute video. --- ### What's New in Microsoft 365 - February 2022 - Published: 2022-02-25 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-microsoft-365-february-2022/ - Categories: Active Directory (AD), Microsoft Entra ID (Azure AD), Microsoft Teams, Windows 365, Yammer - Tags: Microsoft 365, Microsoft Teams, News, Windows 365, Yammer - Article Type: News Microsoft has published its monthly roundup of all the new features and capabilities added to the Microsoft 365 subscription service. This month, the Redmond giant has highlighted several improvements made to the Windows 365 Cloud PC service, Microsoft Teams, Yammer, more. Here is a look at everything you need to know.   Windows 365 Cloud PC service First up, Microsoft has announced some enhancements for its Windows 365 Cloud PC service. Earlier this month, the company rolled out new Azure Active Directory Join support that allows organizations to set up Cloud PCs without an Azure subscription. Additionally, Microsoft has launched a localized first-run experience for Windows 365 Cloud PCs, which is now supported in 38 different languages. These new capabilities are currently available in public preview for Windows 365 Enterprise edition customers. Microsoft Teams Next up are improvements to the Teams collaboration service. The Microsoft Teams desktop app has received a new update that lets participants pin or hide their own video on the meeting stage. The ability to hide the self-view should help to reduce meeting fatigue and distractions during the video call. Yammer Communities & more Yammer is also getting a couple of new features this month. The Redmond giant has introduced a new "suggested communities" panel that helps users find and join new communities. In addition, admins can now set Yammer communities to auto-renew based on new views and engagement. Microsoft has also made it possible for EU Yammer users to join networks hosted in the United States... --- ### Cloud Conversations: Sara Fennah on How to Prepare for Microsoft Exams > Cloud Conversations is a weekly podcast about everything connected to cloud computing. This week, Sara Fennah, a Microsoft 365 consultant, trainer, MCT, MVP, blogger discusses how to prepare for Microsoft 365 exams, Microsoft Loop, and upcoming in-person conferences - Published: 2022-02-25 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-sara-fennah-on-how-to-prepare-for-microsoft-exams/ - Categories: Video - Tags: Cloud Conversations, Microsoft 365 - Article Type: Video  Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations - Sara Fennah on how to prepare for Microsoft exams Sara Fennah is a Microsoft 365 consultant, trainer, MCT, MVP, blogger and holds over 40 Microsoft accreditations. We caught up with Sara on: Hardest M365 exam and how to prepare for exams Microsoft Loop Upcoming in-person conferences More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Microsoft Releases .NET 7 Preview 1 with Cloud-Native and Container Improvements - Published: 2022-02-24 - Modified: 2022-02-24 - URL: https://petri.com/microsoft-releases-net-7-preview-1-with-cloud-native-and-container-improvements/ - Categories: Developer, Visual Studio - Tags: .NET, .NET Framework, Microsoft, News - Article Type: News Last week, Microsoft announced the first preview release of . NET 7, alongside ASP. NET Core 7 Preview 1 and Entity Framework 7 Preview 1. The Redmond giant highlighted that this version of its . NET software development platform brings improved support for cloud-native applications and containers. “Today, we are excited to announce the next milestone in the history of . NET. While celebrating the community and 20 years of innovation, . NET 7 Preview 1 marks the first step forward towards the next 20 years of . NET,” Microsoft’s Senior Program Manager Jeremy Likness explained. In its announcement, Microsoft explained that . NET 7 builds on the foundation of . NET 6, which was released in November 2021. It brings several new capabilities for developers, including new features that should make it easier to build cloud-native applications. Microsoft added that . Net 7 will streamline the setup and configuration process that should help to provide secure authentication and authorization mechanisms. Moreover, it will bring enhancements for the app startup and runtime execution performance. . Net 7 makes it easier to upgrade legacy projects In . Net 7 Preview 1, Microsoft has also added new tools that will help developers upgrade legacy projects as well as work with containers. Other improvements included in this release include: New APIs Annotations to APIs to support nullability Support for more hot reload scenarios Ongoing JIT compiler optimizations The . NET 7 Preview 1 is currently available to download for Windows, Linux, and macOS, but the company advises developers to use this version with Visual Studio... --- ### What is 5G and How is it Better Than 4G LTE? > Faster Internet speeds are what get touted the most about 5G, but there are many differences between 5G and existing 3G and 4G networks. Here's why you should care about 5G and how this technological innovation will transform industry, gaming, and entertainment. - Published: 2022-02-24 - Modified: 2024-11-19 - URL: https://petri.com/what-is-5g/ - Categories: Internet of Things (IoT), Mobile, Networking - Tags: 5G, 5G mutual authentication, 5G network slicing, Mobile Internet, networking, Service-Based Architecture - Article Type: Overview If you are in the market for a new smartphone, you're probably wondering what is 5G? There is no doubt that the new technology has become quite the buzzword in recent years. And smartphone manufacturers and mobile carriers have been promising a true generational leap, making the purchase of a 5G handset a good investment. However, most consumers may still have a hard time understanding the benefits and uses for this new technology. Faster Internet speeds are probably what gets mentioned most about 5G these days. But the new cellular connectivity standard will provide far more than that in the future. There are some real differences in the way 5G works compared to 4G or 3G. Here is why you should care about 5G and why this technological innovation could transform a lot of different industries. What is 5G cellular technology? 5G is the fifth-generation cellular connectivity standard designed for all types of connected devices, including: smartphones tablets PCs home appliances cars and more. Compared to the still capable 4G standard, 5G networks have much greater bandwidth. And they can also connect more devices in a way that is more efficient than before. Ultimately, 5G follows previous generations of cellular technology such as 3G, which was what launched the concept of smartphones. But 4G is what let us browse faster. And it let us do more things, like stream our favorite football game or watch a film on the move. 3G was faster than 2G, and 4G was faster... --- ### Recording Podcasts via Microsoft Teams Best Practices Guide - Published: 2022-02-24 - Modified: 2024-09-04 - URL: https://petri.com/recording-podcasts-via-microsoft-teams-best-practices-guide/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, Podcasting - Article Type: Overview During the pandemic, Microsoft Teams has become a popular tool for recording podcasts because it provides an easy way to bring in guest speakers. In this article, Jason Wynn shares his top best practices for recording podcasts using Teams. With the future of podcasting changing all the time, content creators are starting to realize that hybrid working is starting to become the norm. The ability to be able to record podcasts remotely is now very much how podcasts creators are going to be doing things in the future if they haven’t done so already. Many organizations are now moving wholly to Microsoft 365 and over 145 million people now use Microsoft Teams each day. That means that over the course of 2020 the number has more than tripled for the daily active users. The podcast industry is booming According to a report from Edison Research from 2021, eighty million Americans were listening to podcasts weekly. This converts to 28% of the US population twelve and older now listening to a podcast each week, which represents an increase from 24% from 2020. According to the report, 41% of the total US population that is over the age of twelve, or an estimated 115 million Americans can now be considered monthly podcast listeners, which is a massive growth of 37% from 2020. What does this mean in the grand scheme of things? Podcasts are being listened to much more frequently. Microsoft Teams is being used much more frequently. Recording podcasts via Microsoft... --- ### Amazon Adds AWS Backup to S3 > AWS Backup enables you to centralize and automate data protection across your AWS services. Using AWS Backup and its new support for S3, you can centrally create and manage immutable backups of S3 data across all your accounts and restore the data to a specified point-in-time. - Published: 2022-02-24 - Modified: 2024-09-04 - URL: https://petri.com/amazon-adds-aws-backup-to-s3/ - Categories: Amazon Web Services, Backup & Storage, Cloud Computing, Data Management - Tags: Amazon Web Services, AWS, AWS Backup, AWS S3 - Article Type: News There’s no doubt that file systems are some of the most fundamental cloud services, as they provide storage for cloud-native apps, hybrid apps, and on-premise backups. Amazon Web Services (AWS) Backup enables you to centralize and automate data protection across your AWS services. Using AWS Backup and its new support for S3, you can centrally create and manage immutable backups of S3 data across all your accounts and restore the data to a specified point-in-time. Amazon Web Services Backup for S3 makes it easier for you to centrally automate the backup and restore of your application data stored in Amazon S3, along with the other AWS services such as Amazon Elastic Compute Cloud (Amazon EC2) instances, Amazon Elastic Block Store (Amazon EBS), Amazon Elastic File System (Amazon EFS) and Amazon Relational Database Service (Amazon RDS). How to set up AWS Backup for Amazon S3 You can get started with Amazon Web Services Backup for Amazon S3 using the AWS Backup console, APIs, or the Command Line Interface (CLI). Here are the 3 steps you need to follow: First, you need to create a centralized data protection policy Next, you can assign S3 buckets to it. Finally, you can choose continuous or periodic backups. Please note that the S3 data stored by Amazon Web Services Backup is saved to an encrypted backup vault. You can restore an entire S3 bucket or individual S3 objects from the AWS Backup vault. It’s really been a banner month for file system enhancements at Amazon... . --- ### Microsoft Launches CloudKnox Permissions Management in Public Preview - Published: 2022-02-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cloudknox-permissions-management-public-preview/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud security, News - Article Type: News Microsoft is launching today its new CloudKnox Permissions Management solution in public preview. The cloud infrastructure entitlements management (CIEM) platform provides Azure Active Directory (AAD) customers with a unified solution through which they have visibility over users, identities, and permissions, as well as workloads across hybrid and multi-cloud environments. The CloudKnox Permissions Management dashboard Microsoft says that users will be able to enable and deploy the CloudKnox Permissions Management service via the Azure AD portal. Organizations can use the dashboard to protect their cloud-based resources. This will be accomplished by AI-powered anomaly and outlier detection alerts and automated enforcement of policies. It also provides a Permission Creep Index metric that gives a comprehensive view of high severity permission risks across cloud infrastructures. “To protect their infrastructure from these risks, organizations need granular visibility to effectively manage identities and their permissions across their multicloud environment. CloudKnox Permissions Management discovers, manages, protects, and governs permissions of all identities, both users and workloads across the three key cloud providers – Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure,” explained Alex Simons, CVP of Program Management, Identity at Microsoft. In addition to this, Microsoft Sentinel is also getting some new security capabilities that should help users to access and analyze data. Microsoft has added a new log type that enables users to detect security threats hidden in large volumes of data. There is also a new data archiving feature that extends the default data retention policy from 2 to 7 years... . --- ### Microsoft Defender for Cloud Adds Support for Google Cloud Platform - Published: 2022-02-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-cloud-supports-for-google-cloud-platform/ - Categories: Cloud Computing, Google Cloud Platform, Security - Tags: cloud computing, Google Cloud Platform, Microsoft Azure, Microsoft Defender, News - Article Type: News Microsoft has announced this morning some improvements for its Defender for Cloud suite. The company says that the Microsoft Defender for Cloud service will now provide native support for Google Cloud Platform (GCP) environments, and this capability is currently available in public preview for all enterprise customers. Microsoft Defender for Cloud (formerly known as Azure Security Center and Azure Defender) is a tool that provides advanced threat protection across hybrid cloud environments. This new Google Cloud Platform (GCP) support builds on top of the existing Amazon Web Services (AWS) integration in the Microsoft Defender for Cloud portal that launched last year. “Organizations can now easily understand and manage their security posture across clouds and protect their workloads from a central place - no matter if they’re running in Azure, Amazon Web Services (AWS), GCP, or on-premises. It also makes Microsoft the only cloud provider who enables you to manage security centrally and natively across clouds,” Eric Doerr, CVP of Cloud Security at Microsoft. Microsoft Defender for Cloud protects the most critical workloads running in GCP, including containers and servers. Protection for server and container workloads is provided by Microsoft Defender for Endpoint and it includes endpoint detection and response (EDR), which is an expanded set of services based on traditional antimalware, and attack surface reduction (ASR). Microsoft Defender for Cloud also provides the following features: Server-focused vulnerability assessment Behavioral alerts for virtual machines (VM) OS recommendations across security baselines Missing OS updates Adaptive application controls (AAC) File integrity monitoring (FIM)... --- ### Microsoft Unveils New "Singularity" AI Cloud Infrastructure Service - Published: 2022-02-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-singularity-ai-infrastructure-service/ - Categories: Cloud Computing - Tags: Microsoft Azure, News - Article Type: News Microsoft is planning to launch a new AI infrastructure service called "Singularity. " In a research paper published yesterday titled “Singularity: Planet-Scale, Preemptive and Elastic Scheduling of AI Workloads,” the company explained that this new AI platform service should help to minimize the cost of artificial intelligence (via ZDNet). With Microsoft's Singularity distributed infrastructure service, data scientists will be able to build, scale, experiment, as well as iterate on deep learning models without compromising performance. We’ll spare you the technical details, but the new service uses thousands of GPUs and AI accelerators to prioritize and manage different workloads. "Singularity is a fully managed, globally distributed infrastructure service for AI workloads at Microsoft, with support for diverse hardware accelerators. Singularity is designed from the ground up to scale across a global fleet of hundreds of thousands of GPUs and other AI accelerators," the Microsoft Azure and Research explained. "Singularity is built with one key goal: driving down the cost of AI by maximizing the aggregate useful throughput on a given fixed pool of capacity of accelerators at planet scale, while providing stringent SLAs for multiple pricing tiers. " Singularity to time and cost required to train the ML models As it turns out, Singularity was also able to eliminate the need to restart the DNN (Deep neural networks) training process from scratch as a result of an unexpected system failure. Microsoft says that the process can be resumed in exactly the same state it was in when preempted. Overall, the Singularity service is... --- ### How to Use the Terraform AWS Provider > The Terraform AWS provider lets you connect Terraform with AWS services such as AWS Elasticbeanstalk, AWS Lambda, etc. In this tutorial, you will learn about the Terraform AWS Provider, how you can declare it in Terraform, and using the provider to create an AWS EC2 instance. - Published: 2022-02-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-the-terraform-aws-provider/ - Categories: Amazon Web Services - Tags: Amazon Web Services, AWS, Terraform - Article Type: How To The Terraform AWS provider lets you connect Terraform with Amazon cloud services such as AWS Elasticbeanstalk, AWS Lambda, etc. And unless you have the Terraform Amazon Web Services (AWS) provider defined, you cannot manage or work with Amazon Web Services. But no worries, in this tutorial, you will learn everything you need to know about the AWS provider, how you can declare it in Terraform, and how to use the provider to create an AWS EC2 instance (virtual machine). Let’s get started! Prerequisites Before you dive into the main part of this ultimate guide, make sure you have the following in place: An Amazon Web Services account (AWS). An IAM user with an access key ID and secret key set up on your local machine. Terraform v1. 0 installed. An Ubuntu 20. 04. 3 LTS machine. Configuring the AWS provider Amazon Web Services contains dozens of services that need to be managed. And if you plan to manage these using Terraform, then the AWS provider is a must. This tool allows Terraform to interact or connect with Amazon Web Services resources such as AWS EC2, Load Balancer, AWS S3 buckets, AWS IAM roles, etc. , using the AWS API. Callout: To find a provider, search for the required provider on the Terraform website. To declare the AWS provider, you must first specify the inside the required_providers block and then the AWS provider inside the terraform block. Aws is declared under required_providers, which you can find under terraform. The AWS provider contains three components:... --- ### Microsoft Teams Adds Local Time Information to User Profile Cards - Published: 2022-02-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-local-time-user-profile-cards/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams has released a new update that allows users to find the local time of their co-workers by checking their user profile cards. Laurie Pottmeyer, Teams Community Lead at Microsoft, announced on Twitter last week that this feature has started rolling out to the desktop and web apps. To view the profile card in Microsoft Teams, hover over a user’s profile photo in a chat or channel conversation. As shown in the screenshot below, the local time information will appear under the contact section. It was one of the highly anticipated features, and it should facilitate remote team collaboration across different time zones. Keep in mind that the feature is rolling out gradually, and you may not see it right away. According to the Microsoft 365 roadmap, this update should be available for all Microsoft Teams desktop users by the end of this month. https://twitter. com/lauriepottmeyer/status/1493387703269793795? s=08 Microsoft Teams users can now pin/unpin chat messages The Microsoft Teams desktop app has also received a new feature that enables users to pin a specific message to the top of the chat header. This feature should make it easier for users to keep track of all important announcements in Teams. To pin a chat message, hover over the specific message, click the ellipsis (... ) menu, and choose the “Pin” option. Lastly, Microsoft Teams is getting new 3D Fluent emojis that will appear in chat and channels, message reactions, as well as in live meeting reactions. However, the feature is currently only... --- ### How to Download And Install Fonts in Windows 10 > Windows 10 makes it easy to download and install fonts to use in programs and apps. Learn the various methods and websites you can utilize to grow your Fonts collection on your Windows PC. - Published: 2022-02-21 - Modified: 2024-09-04 - URL: https://petri.com/how-to-download-and-install-fonts-in-windows-10/ - Categories: Windows 10, Windows Client OS - Tags: Font, Windows 10 - Article Type: How To Windows 10 makes it easy to download and install fonts to use in programs and apps. Learn the various methods and websites you can utilize to grow your fonts collection on your Windows PC. How to install a font in Windows 10 Let's go through how to install a font in Windows 10 using the methods below. Here is a quick overview: From the source file and Windows Font Viewer If you download a font, it will probably come in . zip format. Go ahead and extract the zip file. You'll probably find either . ttf or . otf files. You can simply right-click on each of those files and click Install. This will install the font in your Windows 10 repository and be immediately available in all your programs. From the Windows 10 Settings app If you've downloaded the font files separately as above, you can also drag the . ttf or . otf files onto the cutout rectangle on the Windows Settings -> Fonts screen. From the legacy Control Panel Yes, old school still works, to a point. Microsoft hasn't yet removed the legacy Control Panel for fonts in Windows 10 (and Windows 11 for that matter). Click Start -> search for 'Control Panel' -> Open Control Panel -> in the upper right corner type 'fonts' -> click on 'Fonts'. From there, you can see all fonts installed on your PC, and you can just drag and drop new fonts in that window to install them on your machine.   How to manage and delete fonts in Windows... --- ### Microsoft Viva To Get New Integration with LinkedIn's Glint in 2023 - Published: 2022-02-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-viva-integration-glint-2023/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is launching a new integration between its Viva service and Glint, a popular employee engagement platform acquired by LinkedIn back in 2018. The company says that Glint is set to arrive in Microsoft Viva in 2023, and it will help organizations improve employee engagement by providing actionable insights. For those unfamiliar, Glint provides tools that enable businesses to get real-time feedback from their employees about management, workplace culture, compensation, and more. Additionally, it provides suggestions to help managers improve based on employee feedback. The goal is to minimize the cost and efforts required to recruit and train new employees. “With Glint joining the Viva family, our vision is to bring feedback directly into the flow of work, ensuring leaders and managers have an easy way to access employee engagement insights and respond to their team’s needs. Additionally, Glint’s powerful survey tools and people science technology will unleash new opportunities in Viva as companies seek to gain a greater understanding of the moments that matter across an employee’s lifecycle,” explained Kirk Koenigsbauer, Corporate Vice President for Microsoft 365. Microsoft plans to use Glint's tools for its annual employee engagement survey Microsoft plans to use Glint's tools inside its organization for conducting the annual employee engagement survey. For now, LinkedIn will continue to support existing Glint users, and all new customers will still be able to purchase the standalone Glint service via LinkedIn. Moreover, Microsoft is also selling a dedicated Glint offering that comes bundled with Viva. Last year, Microsoft launched... --- ### Cloud Conversations - Sara Lagerquist on Power Automate - Published: 2022-02-18 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-sara-lagerquist-on-power-automate/ - Categories: Video - Tags: Cloud Conversations, Power Automate, Power Platform - Article Type: Video  Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations - Sara Lagerquist on Power Automate In this episode, Kat and Ru catch up Sara Lagerquist, a Microsoft Business Application MVP, based in Stockholm, Sweden. Chatting about... Nerding out over Power Platform Mentoring journey Speaking in the community How not to burnout More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### GitHub Rolls Out New AI-Powered Code Scanning Security Alerts - Published: 2022-02-18 - Modified: 2024-09-04 - URL: https://petri.com/github-code-scanning-security-alerts/ - Categories: Developer - Tags: GitHub, News, Vulnerability - Article Type: News GitHub is getting new AI-powered code scanning analysis capabilities that should enable developers to identify the most common security flaws in their code. The company has launched this new experimental security feature in public beta for all GitHub users, and it supports JavaScript and TypeScript repositories. With this new code scanning analysis tool, developers can now scan projects written in both languages to look for common vulnerability patterns, including path injection, SQL injection, NoSQL injection, cross-site scripting (XSS). Typically, the threat actors abuse these security vulnerabilities to run malicious programs on targeted machines. “Together, these four vulnerability types account for many of the recent vulnerabilities (CVEs) in the JavaScript/TypeScript ecosystem, and improving code scanning’s ability to detect such vulnerabilities early in the development process is key in helping developers write more secure code,” GitHub noted in a blog post. GitHub users can view the new security alerts with an 'Experimental' label via the 'Security' tab of each repository. There is also an option to monitor these alerts through the pull requests tab. GitHub's new code scanning feature works on top of CodeQL Under the hood, code-scanning functionality in GitHub runs on top of CodeQL, a code analysis engine launched in 2019 to detect multiple variants of the same security threat across codebases. “To detect vulnerabilities in a repository, the CodeQL engine first builds a database that encodes a special relational representation of the code. On that database we can then execute a series of CodeQL queries, each of which is... --- ### This Week in IT - Windows 11 New Features and Google Flexes its Muscles - Published: 2022-02-18 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-windows-11-new-features-and-google-flexes-its-muscles/ - Categories: Video - Tags: Amazon App Store, Google Chrome OS Flex, News, Windows 11, Windows Subsystem for Android - Article Type: Video This week in IT, Microsoft releases an optional preview of new experiences for Windows 11 due to reach GA in March, including support for Android apps. There's a big update for Insiders on the Dev Channel with tons of new features, like taskbar drag and drop support and Start menu app folders. And Google takes aim at old PCs with Chrome OS Flex, a free version of Chrome OS that can be installed on PCs and Macs. This Week in IT – Windows 11 New Features and Google Flexes its Muscles This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short 5-minute video. --- ### How to Use Adaptive Scopes for Retention Within Microsoft 365 - Published: 2022-02-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-adaptive-scopes-for-retention-within-microsoft-365/ - Categories: Compliance, Microsoft 365, Security - Tags: Microsoft 365, retention policies - Article Type: How To In this guide, we're going to explain how IT admins can use adaptive scopes to make retention policies for Microsoft 365 more dynamic. Microsoft 365 provides retention capabilities to manage the data for your organization out of the box. These features allow you as an organization to control how long content is retained and then ultimately destroyed. Most organizations rely on retention policies targeting specific locations and content types. The only way a policy could include or exclude locations or content is by manual modification. It meant that organizations needed to choose carefully what to include to limit the constant changes that can often happen. A significant problem with this design is if content resides outside of the selected locations, it may never come under the required retention policy. Adaptive scopes are available to mitigate this issue and make retention policies more dynamic. What is an adaptive scope? An adaptive scope is a query selecting a subset of content within either single or multiple locations within Microsoft 365. Adaptive scopes use dynamic attributes and properties to determine the inclusion or exclusion list. The most important thing to understand is that these scopes are not policies, they are simply a sub-component of the procedure, and you do not have to use them. Two types of policy scopes There are two types of policy scopes to choose from when you want to create a retention policy: The first one is static, the current design, and the second one is the new... --- ### Microsoft Launches Azure Spring Cloud Enterprise in Preview - Published: 2022-02-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-azure-spring-cloud-enterprise/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, News - Article Type: News Last year, Microsoft unveiled Azure Spring Cloud Enterprise, a fully managed service designed for enterprise developers. Now, the Redmond giant has announced that Azure Spring Cloud Enterprise is available in public preview for all customers. For those unfamiliar, Azure Spring Cloud is a cloud-based service that provides tools and frameworks to help developers deploy Spring Boot applications to Azure. It includes various capabilities such as app lifecycle management, load-balancing, authentication and authorization as well as integrated with Azure tools for metrics and logs. Azure Spring Cloud also offers seamless integration with other Azure services, including Azure Database for MySQL, Azure Cache for Redis, and Azure Cosmos DB. This new Azure Spring Cloud Enterprise service comes with commercial VMware Tanzu components to simplify the deployment and management process of Spring and polyglot apps. It’s available in addition to the existing Basic and Standard plans. Customers who opt in to the public preview can access Tanzu components such as Application Configuration Service for VMware Tanzu, API portal for VMware Tanzu, and VMware Tanzu Service Registry. “Azure Spring Cloud Enterprise includes commercially supported Spring runtime components to help enterprise customers ship faster and unlock Spring’s full potential,” the company explained. “Azure Spring Cloud Enterprise builds on top of all the features available in the Standard tier, including the ability to leverage the broader Azure ecosystem to supercharge your Spring Boot applications. ”   Azure Spring Cloud Enterprise delivers more processing power With 16 vCPUs and 32 GB of memory, Azure Spring Cloud Enterprise delivers... --- ### Microsoft Adds Hotpatching Support to Windows Server 2022 Azure Edition - Published: 2022-02-17 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-hotpatching-support-windows-server-2022-azure-edition/ - Categories: Windows Server, Windows Server 2022 - Tags: News, Windows Server, Windows Server 2022 - Article Type: News Microsoft has announced that hot patching support is now generally available for Windows Server 2022 Azure Edition. The new hotpatch capability in Azure Automanage allows IT Admins to quickly deploy security updates on Windows Server virtual machines without frequent reboots. The hotpatching support brings a bunch of benefits for Windows Server 2022 Azure Edition customers, including better security and streamlined update deployment. It should also help to significantly reduce the downtime for apps and services. “Hotpatch works by first establishing a baseline with a Windows Update Latest Cumulative Update. Hotpatches are periodically released (for example, on the second Tuesday of the month) that build on that baseline. Hotpatches will contain updates that don't require a reboot. Periodically (starting at every three months), the baseline is refreshed with a new Latest Cumulative Update,” explained Thomas Maurer, a Senior Cloud Advocate at Microsoft. https://youtu. be/uomjVAO5WP8 How to get started with hotpatching in Windows Server 2022 Azure Edition To use this new hotpatch feature, IT admins will need to create a new VM from the Azure portal by following these steps: Click the image dropdown menu available on the create a virtual machine page and select the Windows Server 2022 Datacenter: Azure Edition Core Gen2 option. Next up, select the Management tab and navigate to the Guest OS updates section. Click the Enable hotpatch checkbox and then set the Patch orchestration options value to Azure-orchestrated. Finally, click the Review + create button at the bottom of the page. Once done, IT Admins will be able... --- ### How to Encrypt Emails in Outlook (Microsoft 365) > Outlook email encryption ensures that any email you send with Microsoft's email client is encrypted before it leaves your computer. Here are the multiple ways to use email encryption in Outlook, and why you may want to start using this feature whether it's for business communications or personal use - Published: 2022-02-17 - Modified: 2024-11-19 - URL: https://petri.com/how-to-encrypt-emails-in-outlook-microsoft-365/ - Categories: Microsoft 365, Office, Outlook - Tags: Email Encryption, encryption, Microsoft 365, Microsoft Outlook, Office 365 Message Encryption, Outlook - Article Type: How To Outlook email encryption ensures that any email you send with Microsoft's email client is encrypted before it leaves your computer. In this guide, we're going to detail how to encrypt email in Outlook, as well as why you may want to start using this feature whether it's for business communications or personal use.    What is Outlook email encryption? Encryption is the securing of information when either at rest or in transit to a destination. When you use Outlook to encrypt an email, you are instructing the app to encode the email contents (body, attachments) and only allow the recipient(s) of the email to view it if they have the correct decoding mechanism (authentication). Email encryption ensures that only the intended audience (recipients) reads the message content of an email (from the sender). Think of it as using certified mail with snail mail. With encrypted email, we're utilizing a sort of digital ID on both ends. When you encrypt message contents, you essentially scramble the 'plain text' of what you type into indecipherable zeros and ones. When you send emails in clear text (not encrypted) and they are intercepted, a malicious individual can gain access to all the information in that email. However, if the email is encrypted, only those with the decryption key can access it. Does Outlook automatically encrypt emails? No, Outlook does not automatically encrypt emails out of the box. You can configure the security settings in Outlook to encrypt all outbound emails, but this is not... --- ### The Top 10 PowerShell Commands That You Should Know - Published: 2022-02-17 - Modified: 2024-09-04 - URL: https://petri.com/the-top-10-powershell-commands-that-you-should-know/ - Categories: PowerShell - Tags: PowerShell, Windows, Windows 10, Windows 11 - Article Type: Overview In this guide, we're going to detail the top ten PowerShell commands for managing Windows PCs, checking services and processes, creating automated tasks, and output options. If you've never used PowerShell before, this is a very versatile task automation solution and we hope this guide the PowerShell commands covered in this guide will make your life easier.   Have you ever wondered about the basics of PowerShell? Maybe some of the 'core' underlying commands you probably just skim over when finding a good command or script online? Things like 'Get-Help' or 'Export-CSV'? Well, then this is the guide for you. I'll be going over the Top 10 PowerShell commands every system administrator should know. I'll go over the intent of the command-let (cmdlet), some examples, and how to get more help. And yes, you'd be amazed at how much 'help' there is available at the PowerShell prompt! Introduction to PowerShell commands One of the most efficient ways of getting good at PowerShell is by understanding the basics. Getting proficient in the syntax. Understanding how variables work. Becoming extra efficient by using the aliases available on many of these commands. Knowing the absolute fundamentals can help build your foundation of knowledge and prowess by becoming more efficient and productive, especially when you need to 'process' larger and larger data sets. A few basic PowerShell commands can make you a pro, and you’ll automate administrative tasks more efficiently. Why is PowerShell an essential tool for Windows admins? Windows PowerShell has been around... --- ### 5 Steps to Secure Active Directory > In this guide about Active Directory security, we're going to detail five steps that IT admins need to follow to secure Active Directory environments in an organization. - Published: 2022-02-17 - Modified: 2025-01-14 - URL: https://petri.com/active-directory-security-5-steps-to-secure-ad/ - Categories: Active Directory (AD), Compliance, Microsoft 365, Security - Tags: Active Directory, Azure Active Directory, featured-top-right, Security - Article Type: How To In this guide about Active Directory (AD) security, we're going to detail five steps that IT admins need to follow to secure Active Directory environments in an organization. There are many best practices you'll need to be familiar with to ensure Active Directory security, including restricting the use of privileged accounts, monitoring Windows Event Log for signs of Active Directory security compromise, and more. Why Active Directory security is important for IT admins Many organizations use Microsoft's Active Directory as their central tool for the authentication and authorization of their users and computers. Active Directory contains a database that holds all user accounts, administrative accounts, workstations, servers, and other objects. This database is stored on a special type of server called a domain controller (DC), which many attackers will focus their attacks on when trying to compromise an environment. Because of its critical place in most organizations, Active Directory security is of the utmost importance, especially since nowadays many Active Directory environments are exposed to the Internet. Your on-premises Active Directory environment can be extended to the public cloud by using Azure Active Directory (Azure AD), which will give your organization more capabilities, but this also makes it more visible to the public Internet and as such increases its visibility. Before you make the first change, you'll need to decide on how you’ll document all your changes regarding Active Directory security. This will be critical, both from a troubleshooting point of view and for your peers to be able... --- ### Microsoft Simplifies Identity Management with Azure Active Directory Certificate-Based Authentication - Published: 2022-02-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-azure-active-directory-certificate-based-authentication-preview/ - Categories: Active Directory (AD), Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has announced some important updates for Azure Active Directory customers. The company says that the new Azure Active Directory certificate-based authentication (Azure AD CBA) service is now available in public preview for all commercial and US Government cloud customers. Previously, Azure Active Directory customers had to implement a federated certificate-based authentication mechanism. However, some hackers exploited this feature last year to launch espionage attacks against several organizations worldwide. The company says that the CBA feature helps organizations reduce complexity and infrastructure costs by eliminating the need to use the Active Directory Federation Services (AD FS). “Azure AD certificate-based authentication (CBA) enables customers to allow or require users to authenticate with X. 509 certificates against their Azure Active Directory (Azure AD) for applications and browser sign-in. This feature enables customers to adopt a phishing resistant authentication and authenticate with an X. 509 certificate against their Enterprise Public Key Infrastructure (PKI),” Microsoft explained in a support document. Azure Active Directory certificate-based authentication reduces the cost and management overhead Microsoft highlighted that this new Azure AD CBA support brings a couple of benefits for organizations. First of all, the feature enables customers to reduce the cost and management overhead that was previously associated with complex network configurations and on-premises federation infrastructure deployments. Moreover, it helps to improve security by allowing customers to “directly authenticate against Azure AD. ” The Azure AD CBA service also provides seamless integration with Conditional Access features, including Multi-Factor Authentication. The certificate-based authentication (CBA) preview is currently available for free for... --- ### Microsoft Defender for Office 365 Gets a Streamlined Submissions Experience - Published: 2022-02-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-defender-for-office-365-streamlined-submissions-experience/ - Categories: Microsoft 365, Security - Tags: Microsoft Defender for Office 365, News, Security - Article Type: News Microsoft has launched a streamlined submissions experience in the Microsoft 365 Defender portal. The new submissions page provides dedicated item tabs to help IT Admins track and analyze malicious emails, email attachments, URLs, and messages reported by end-users in their organization. To get started, IT Admins will need to head to the Microsoft 365 Defender portal and click the submissions option available under the Actions & submissions section in the navigation panel. The new submissions page includes various tabs such as Emails, Email Attachments, URLs  , as well as User reported messages. It’s also possible to submit a collection of malicious emails to Microsoft for analysis. “You can add a new submission (as an admin) from here for emails, email attachments, and URLs, along with viewing the user reported messages,” the company explained. You can see how this new submissions portal looks in the screenshot below. The new submissions experience in Microsoft Defender for Office 365 is expected to hit GA in the coming weeks The new submissions experience started rolling out to all enterprise customers worldwide earlier this week, and it’s expected to be generally available for everyone in the coming weeks. However, keep in mind that it’s only available to organizations with “Exchange Online Protection, Defender for Office 365 Plan 1, Defender for Office 365 Plan 2, including those with Office 365 E5, Microsoft 365 E5, or Microsoft 365 E5 Security licenses. ” Microsoft invites users to provide feedback on the new submission experience available in Microsoft 365 Defender portal... . --- ### Microsoft Releases First Major Windows 11 Update with Taskbar Improvements and More - Published: 2022-02-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-windows-11-update-taskbar-improvements/ - Categories: Windows 11, Windows Client OS - Tags: News, Windows 11 - Article Type: News Microsoft has released a big update for its new Windows 11 OS, which brings a bunch of improvements to the taskbar and much more. The first new feature that the company highlighted today is a mute/unmute button for Microsoft Teams calls in the taskbar. The latest Windows 11 update also includes a new feature that allows users to quickly share a specific app or an open window directly from the taskbar to an ongoing call in Microsoft Teams. To do this, users will simply need to hover over an icon available on the taskbar. “Mute/unmute and share any window from the Taskbar are designed to make it easier for you to take quick actions and have confidence that you are at your best while on video calls. Instantly accessible from your Taskbar, window sharing and mute controls are available to Microsoft Teams users with a work or school account,” explained Microsoft’s Chief Product Officer Panos Panay. https://www. youtube. com/watch? v=Ci-b8Y_gA0E Windows 11 adds clock/date display to the taskbar of external monitors In addition to the new sharing control, Microsoft has added the clock/date display to the taskbars of external monitors in Windows 11. This is one of the top-requested features from Windows 11 users that was missing from the new OS since its launch last year. Other improvements include the addition of a new weather widget on the taskbar. Last but not least, the Redmond giant has also announced that Windows 11 users are getting redesigned Media Player and Notepad apps. Moreover, this... --- ### Microsoft Launches Emissions Impact Dashboard for Microsoft 365 in Preview - Published: 2022-02-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-emissions-impact-dashboard-for-microsoft-365-in-preview/ - Categories: Microsoft 365 - Tags: Microsoft, Microsoft 365, News - Article Type: News Microsoft has launched the new Emissions Impact Dashboard for Microsoft 365, a tool that lets Microsoft cloud customers track, analyze and reduce their carbon emissions. The dashboard is currently available in preview, and it follows the release of the Emissions Impact Dashboard for Azure back in October 2021. The new Emissions Impact Dashboard currently allows customers to have a detailed look at the environmental impact of the carbon emissions associated with their usage of Microsoft Teams, OneDrive for Business, SharePoint, as well as Exchange Online. The Redmond giant also plans to add support for more Microsoft 365 apps in the future. “This preview is a precursor to the upcoming general availability launch of Microsoft Cloud for Sustainability, our extensible software-as-a-service (SaaS) solution that helps organizations effectively record, report, and reduce emissions across their entire enterprise and value chain. Down the road, we plan to make the insights produced by the Emissions Impact Dashboard available via Microsoft Cloud for Sustainability,” the company explained. Emissions Impact Dashboard available via Microsoft Cloud for Sustainability (Image Credit: Microsoft)   How to install the Emissions Impact Dashboard for Microsoft 365 Furthermore, the Emissions Impact Dashboard assists organizations in evaluating emissions savings from migrating apps and services to Microsoft's cloud services. To install the Emissions Impact Dashboard tool, IT Admins will need to follow the steps mentioned below: Head to the AppSource page and click the GET IT NOW button to install the Emissions Impact Dashboard for Microsoft 365 application. Then, navigate... --- ### Microsoft Defender to Block Credential Theft By Default on Windows PCs - Published: 2022-02-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-block-windows-credential-theft/ - Categories: Security, Windows 10, Windows 11, Windows Client OS - Tags: Microsoft Defender, News - Article Type: News Microsoft is getting ready to enable a new security feature in Microsoft Defender that should make it more difficult for threat actors to steal credentials from Windows PCs. The company says that the Attack Surface Reduction (ASR) security rule will help to prevent admin-level hackers from accessing the Local Security Authority Server Service (LSASS) process. For those unfamiliar, the LSASS process is responsible for enforcing local security policies and it validates users for local and remote sign-ins. To retrieve Windows credentials, threat actors typically dump the memory of the LSASS process on compromised devices. Microsoft previously released several security features (such as Credential Guard) to block access to the LSASS process. However, some organizations haven’t enabled this feature yet because it may cause conflicts with applications or device drivers. Microsoft Defender to get an Attack Surface Reduction (ASR) rule As noted by Bleeping Computer, Microsoft is planning to address this issue by turning on the Attack Surface Reduction rule by default in Microsoft Defender. Once enabled, the feature will prevent malicious processes with admin privileges from dumping the memory of the LSASS process. Security researcher Kostas noticed that Microsoft quietly updated the ASR rules documentation last week to reflect this change. “The default state for the Attack Surface Reduction (ASR) rule “Block credential stealing from the Windows local security authority subsystem (lsass. exe)” will change from Not Configured to Configured and the default mode set to Block. All other ASR rules will remain in their default state: Not Configured,” the company explained... --- ### How to Manage Tasks and Approvals in Teams with Adaptive Cards > Adaptive Cards are a great way to share formatted information with users instead of posting a Channel message in Teams. In this guide, we're going to explain how to use Adaptive Cards and Power Automate to manage tasks and approvals in Microsoft Teams. - Published: 2022-02-15 - Modified: 2024-09-04 - URL: https://petri.com/how-to-manage-tasks-and-approvals-in-teams-with-adaptive-cards/ - Categories: Power Platform - Tags: Microsoft Planner, Microsoft Teams, Power Automate - Article Type: How To Adaptive Cards are a great way to share information into Microsoft Teams in a formatted card. Adaptive Cards are available to use within Power Automate, and they're a low-code solution to creating cards that share information in an organized way. In this guide, we're going to explain how to leverage Adaptive Cards to manage tasks and approvals in Microsoft Teams without having to manually post messages in Teams Channels. What are Adaptive Cards? Adaptive Cards allow you to share, display, and distribute information in a professional and formatted manner. These cards adapt to their hosts and are a great way to share data between Microsoft Teams and other services. Adaptive Cards use the JavaScript Object Notation (JSON) file format, which contains the information that defines a card and its associated data in a human-readable format. Adaptive Cards use cases Adaptive Cards have many uses across various Microsoft apps and services including Microsoft Teams, Windows notifications and Timeline, Cortana, Microsoft's Bot Framework Webchat component, and Outlook's actionable messages. Adaptive Cards are all about sharing or collecting information, and they can be used to share expenses, travel information, polling, images, video and more. Power Automate, Microsoft's platform for creating automated processes, can also use Adaptive Cards to share information blocks or collect data from a given data source via forms.   News Adaptive Cards can share news articles posted in SharePoint Online to a Teams Channel. The card usually contains an image, title, and a short blurb about the article. You can... --- ### Amazon Adds Batch Replication to S3 > Amazon launched this month Simple Storage Service (S3) Batch Replication, a fully managed, low-cost feature that replicates newly uploaded objects between different S3 buckets. - Published: 2022-02-14 - Modified: 2024-09-04 - URL: https://petri.com/amazon-adds-batch-replication-to-s3/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Amazon S3 - Article Type: News After experiencing several regional outages late last year, Amazon has been adding replication technologies to several of their main storage technologies. Last month, Amazon added replication to their Elastic File System (Amazon EFS), and the company followed up this month by announcing Amazon Simple Storage Service (S3) Batch Replication. Batch Replication is a fully managed, low-cost feature that replicates newly uploaded objects between different S3 buckets. These buckets can belong to the same accounts or to different accounts, and objects can be replicated to a single destination or to multiple destinations. Lastly, the destination buckets can be in different Amazon Web Services (AWS) Regions (Cross-Region Replication), or they can be within the same Region as the original source bucket (Same-Region Replication). Several use cases for Amazon S3 Batch Replication The new Batch Replication can be used to enhance application performance, and it can also be used for disaster recovery (DR) and improved business continuity. For example, you can use it to reduce latency by replicating storage data to AWS Regions that are closer to your end users. Alternatively, you can use it to create additional copies of your data in different regions to protect again regional-level outages. Batch Replication allows you to replicate existing objects: You can use it to backfill a newly created bucket with existing objects, or use it to retry replication for objects that were previously unable to be replicated. It can migrate S3 data across accounts, or it can be used to add new buckets to... --- ### Cloud Conversations - Microsoft Information Protection + SC-400 > In this show, Shabaz Darr and Viktor Hedberg join Ru and Pete to catch up about the SC-400 Microsoft Information Protection Administrator exam, the most common Microsoft security problems Viktor sees in his work, and more. - Published: 2022-02-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-information-protection-sc-400/ - Categories: Video - Tags: Microsoft Information Protection - Article Type: Video  Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations - Microsoft Information Protection + SC-400 | Shabaz Darr + Viktor Hedberg In this show, Shabaz Darr and Viktor Hedberg join Ru and Pete to catch up about... The SC-400 Microsoft Information Protection Administrator exam Their new book on the exam Microsoft Information Protection - the benefits, cool stuff, and general advice The most common Microsoft security problems Viktor sees in his work Shabaz's work on the Azure VMware Solution Zero to Hero Series More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft... --- ### Microsoft Teams Will Let Users Control Calls With Bluetooth Headsets - Published: 2022-02-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-control-calls-bluetooth-headsets/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that will allow users to calls with Bluetooth headsets on Windows PCs. This should be a welcome addition for people using keyboard shortcuts or a mouse to answer, end, or hold calls during Teams calls and meetings. In an update to the Microsoft 365 roadmap, the Redmond giant confirmed that this new capability will start rolling out in the Microsoft Teams desktop app in March 2022. Once it’s available, users will be able to use the device buttons to control the calling features directly with their Bluetooth headset and speakerphone. You can find the list of Teams-certified headsets on this page. “For many headsets and speakerphones, this will work without requiring any user action to enable other than pairing the headset or speakerphone with the PC. Watch our certification page for additional information coming soon about devices tested to meet all certification criteria with native Bluetooth connections (w/o a USB dongle),” the company explained on the Microsoft 365 roadmap. Microsoft Teams to add support for text predictions on mobile In addition to this feature, Microsoft Teams is getting support for AI-powered text predictions on mobile. With text predictions, the Teams Android app will be able to provide text suggestions and possible answers, allowing users to finish phrases with a single tap. This feature is slated to hit general availability in April 2022. For now, Microsoft Teams for Android is the first client that is getting text predictions, but it wouldn’t be surprising to see... --- ### Microsoft to Add Azure AD Join Support to Windows 365 Cloud PCs This Month - Published: 2022-02-14 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-to-add-azure-ad-join-support-to-windows-365-cloud-pcs-this-month/ - Categories: Microsoft Entra ID (Azure AD), Windows 365 - Tags: Azure AD, News, Windows 365 - Article Type: News Microsoft has recently announced that Azure AD Join support is coming to its Windows 365 Cloud PC service this month. The new feature is currently available in public preview for Windows 365 Enterprise customers. Windows 365 is a subscription service that enables organizations to create and run Cloud PCs remotely. It's is available in two SKUs: Business and Enterprise. The Business licenses are designed for small organizations and businesses with less than 300 employees. Meanwhile, larger organizations that require more customization and want to manage deployments with Microsoft Endpoint Manager can upgrade to the Enterprise edition. Previously, IT Admins required a full Azure subscription to provision Cloud PCs to end-users in their organizations. With this release, Windows 365 Enterprise customers will now be able to set up a Cloud PC via the Microsoft Endpoint Manager admin center. To get started, IT admins will need to create a provisioning policy by choosing Microsoft Hosted Network along with the desired region. “This has been by far the most requested feature since Windows 365 reached general availability. With Azure AD Join as a Cloud PC join type option, you no longer need an existing Azure infrastructure to use the service, just your Azure AD users,” the company explained in a blog post. “Azure AD Join technology has been a huge investment across Microsoft, and we’re excited to bring that to Windows 365 Enterprise. ” Microsoft releases a localized first-run experience for Windows 365 Cloud PCs In addition to the Azure AD Join feature, Microsoft... --- ### Active Directory Replication: A Guide for IT Pros > This guide covers the basics of how sites define the logical layout of your network and how the tools and features in Active Directory Domain Services work together to keep your directory running smoothly. - Published: 2022-02-14 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-replication-a-guide-for-it-pros/ - Categories: Active Directory (AD) - Tags: Active Directory, Domain Controller - Article Type: Overview Learn all there is to know about how Active Directory (AD) replication works. This guide covers the basics of how domain controllers (DCs) replicate all of your user accounts, passwords, computers, and other objects in your environment. Learn about how sites define the logical layout of your network and how the tools and features in Active Directory Domain Services work together to keep your directory running smoothly. Active Directory replication Have you ever wondered what happens behind the scenes when you add a new user to Active Directory? Or change their password? Or join a new computer in your domain? If you add a new user on 'DC01', how and when does 'DC05' know about it? Active Directory replication, that's how. This is the engine that pushes changes from domain controller to domain controller in your environment. It's also important to understand that backup and replication are not the same thing. How does Microsoft Active Directory replication work? The replication of updates between Active Directory objects means that data is sent between multiple domain controllers to keep replicas of directory partitions synchronized. Multiple domains are common in large organizations, as are multiple sites in disparate locations. Also, DCs for the same domain are generally placed in more than one site to accommodate compliance, mergers and acquisitions, etc. Each time a new domain controller is added to an existing domain or forest, new components are created, connection objects, site links, etc. And when you add a new DC on a... --- ### Understanding Windows Server 2022 Licensing > Understanding the licensing requirements for Windows Server 2022 will enable you to optimize your investment in the latest version of Microsoft's server OS. - Published: 2022-02-14 - Modified: 2024-09-04 - URL: https://petri.com/understanding-windows-server-2022-licensing/ - Categories: Windows Server - Tags: Azure, Azure Virtual Machines, Virtualization, Windows Server 2022 - Article Type: Overview Don’t blame yourself if you missed it, because Microsoft quietly released Windows Server 2022 in September of 2021 with very little fanfare or publicity. With the new release, there are always questions about licensing and any changes that Microsoft may have made. So, if you are confused or wondering about Microsoft’s licensing for Windows Server 2022, you’re not alone. In many ways, the licensing for Windows Server is just as complex as some of the actual technologies it brings to your organization. In this article, we’ll dive into the details of licensing Windows Server 2022. What is Windows Server? In case you’re new to IT and you’re not sure what Windows Server is, it is an operating system that Microsoft specifically created for use on a server. It is designed to run continually in the background and provide resources to other networked computers. Windows Server is only designed to be used in business settings. Since Windows Server 2016, Windows Server has had the option of being installed with or without the desktop GUI. The installation without the GUI is called Server Core, and it is primarily managed using the command line. However, the desktop installation option for Windows Server is far more popular. The desktop looks much like Windows 10 and it has a taskbar, desktop icons, and a Start button. Windows Server is designed to run enterprise-level workloads. Below are a few roles that a Windows Server system can perform: AD DNS DHCP File and Print services Web... --- ### This Week in IT – Could Microsoft Win the Cloud with Cybersecurity Expertise? - Published: 2022-02-11 - Modified: 2022-03-26 - URL: https://petri.com/could-microsoft-win-the-cloud-with-mandiant-cybersecurity-expertise/ - Categories: Video - Article Type: Video This week in IT it's all about security. Microsoft is reportedly in talks to buy Mandiant, potentially making Microsoft unrivalled in the cybersecurity space. Windows AD gets an OOB fix, and learn what you need to do to protect your organization against a new Azure AD multi-phase phishing attack. This Week in IT – Could Microsoft Win the Cloud with Cybersecurity Expertise? This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short 5-minute video. --- ### Azure Active Directory Adds New Cross-Tenant Access Settings in Public Preview - Published: 2022-02-11 - Modified: 2024-09-04 - URL: https://petri.com/azure-active-directory-adds-cross-tenant-access-settings/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, News - Article Type: News Microsoft has announced the public preview of cross-tenant collaboration settings in its Azure Active Directory service. The new feature enables IT admins to manage how users can securely collaborate with external partners and in other Azure Active Directory organizations. The ability to configure cross-tenant access settings was one of the top requested features from Azure Active Directory users. The Azure AD admin center currently provides three settings to help organizations control external collaboration within their tenant. These include the inbound access settings, outbound access settings, as well as Trust settings. “Now you’ll have granular inbound and outbound access control settings that work on a per org, user, group, and application basis. These settings also make it possible for you to trust security claims from external Azure AD organizations like Multi-Factor Authentication (MFA), device compliance, and hybrid Azure AD joined devices,” the company explained in a blog post. How to configure default cross-tenant access settings Microsoft noted that the new cross-tenant access settings are now enabled by default for all external Azure Active Directory customers. However, IT admins will be able to manually change the Azure AD-provided default settings for external collaboration by following the steps mentioned below: Sign in to the Azure portal, and click the Azure Active Directory service. Next up, click External Identities and choose the Cross-tenant access settings (Preview) option. Once done, click the Default settings tab and then review the details available on the summary page. Finally, you'll be able to change the default settings by... --- ### How to Set Up Windows 365 > In this article, you will learn how to get started with Windows 365, how to set it up for your organization, and how to choose between Hybrid Azure AD and Azure AD native join. - Published: 2022-02-11 - Modified: 2024-11-19 - URL: https://petri.com/how-to-set-up-windows-365/ - Categories: Windows 365 - Tags: Windows 365 - Article Type: How To Learn how to set up and configure Microsoft's new Cloud-PC solution, Windows 365. In this article, you will learn how to get started with Windows 365, how to set it up for your organization, and how to choose between Hybrid Azure AD and Azure AD native join. The high-level steps required to set up or configure Windows 365 are: Purchase a Windows 365 Business or Windows 365 Enterprise license Decide between Hybrid Azure AD Join and Native Azure AD Join Create an on-premises network connection (if required) Configure and deploy a Provisioning Policy Assign licenses to users Tell users how to access their Cloud PC Plan For Windows 365 Windows 365 vs Azure Virtual Desktop Windows 365 is as close to a "Desktop as a Service" (DaaS) as you can probably get. It's literally a Windows computer in the public cloud, provided as a service. Windows 365's "Cloud PCs" don't reside in your organization's Azure subscription: They're hosted in Microsoft's subscription and provided as a service to organizations that have the appropriate license. Azure Virtual Desktop, in comparison, is much more customizable and configurable from an infrastructure perspective. Azure Virtual Desktop's "hosts" sit within an organization's tenant, and are the full responsibility of the organization to manage and maintain. If you want to dive deeper, I wrote a separate article on the main differences between Windows 365 and Azure Virtual Desktop. Windows 365 vs Windows 10 Is Windows 10 the same as Windows 365? I was asked this question recently,... --- ### Microsoft to Reportedly Acquire Mandiant to Bolster Security Products - Published: 2022-02-11 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-to-reportedly-acquire-mandiant-to-bolster-security-products/ - Categories: Microsoft, Security - Tags: Microsoft, News, Security - Article Type: News Microsoft is reportedly planning to acquire a US-based cyber security company Mandiant. According to a new report from Bloomberg, this new acquisition will help the Redmond giant to beef up its portfolio of security offerings to protect its customers from cybersecurity threats and data breaches. For those unfamiliar, Mandiant is a cybersecurity research firm that was founded back in 2004. With over 5000 employees currently working at Mandiant, the company helps organizations and government customers to identify and protect themselves from high-profile cyber security threats and reduce security costs. It specializes in various services such as network security, computer forensics, incident response, threat intelligence, as well as endpoint protection. The annual revenue of Mandiant reached $483 million in FY2021 Mandiant, which is currently valued at $4. 27 billion, was acquired by FireEye in 2013 for $1 billion. In June 2021, the cyber security firm regained its independent status following the sale of the FireEye products business to McAfee Enterprise. Mandiant’s annual revenue reached $483 million in FY2021, an increase of 21 percent year-over-year. "We are uniquely positioned to address an enormous market need and can concentrate all of our attention on helping organizations close their cyber security gap. We had record billings and revenue for Threat Intelligence and Consulting in the fourth quarter, and our overall performance highlights the early financial and operational success in the relaunch of our company," explained Kevin Mandia, CEO of Mandiant. In 2021, Microsoft also acquired a couple of other security firms, including RiskIQ, ReFirm Labs,... --- ### Microsoft Teams Video Calls and Meetings are Now 50% More Power Efficient - Published: 2022-02-10 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-meetings-power-efficient/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft announced yesterday that its Teams desktop app has reduced power consumption in video calls and meetings by up to 50 percent since June 2020. The company claims that these performance improvements should help to ensure that Microsoft Teams delivers a consistent user experience on low-end Windows PCs. Microsoft explains that it achieved significant gains by creating a framework that can measure the power consumption of Teams during resource-intensive scenarios such as video calls and meetings. In October 2020, Microsoft Teams received hardware and video capture optimizations that substantially helped to reduce CPU load while using the camera during meetings. The company reduced the code complexity to optimize the app for functions like auto-aliasing, auto-white balance, and auto-exposure. “We’re committed to ensuring great calling and meeting experiences for users on low-end hardware as well as those on high-end workstations and high-resolution monitors. One of the factors we’ve addressed is the difference in power requirements for different customer profiles by ensuring Teams meetings are as energy-efficient as possible, regardless of setup,” said Robert Aichner, Principal Group Program Manager at Microsoft. Last year, Microsoft Teams also rolled out some enhancements to reduce the power usage while processing multiple video streams in video calls. In addition to this, the app received video rendering performance improvements with GPU-based hardware acceleration. Microsoft Teams to optimize the video conferencing experience for next-gen chips Microsoft added that it plans to collaborate with CPU and GPU manufacturers to optimize the video conferencing experience in Teams for next-gen chips... . --- ### Patch Tuesday February 2022 – Microsoft Teams, Outlook, and Windows Get Important Updates - Published: 2022-02-10 - Modified: 2024-11-19 - URL: https://petri.com/patch-tuesday-february-2022-microsoft-teams-outlook-and-windows-get-important-updates/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Adobe, Microsoft Teams, Outlook for Mac, Patch Tuesday, Security, Windows, Windows Server - Article Type: News Microsoft releases 51 patches, fixing 48 bugs, including 1 zero-day flaw. There's also an update for all Teams clients and Outlook on Mac on February, 2022 Patch Tuesday. Windows and Windows Server Patch Tuesday February 2022 updates This month Microsoft patched a remote code execution vulnerability (CVE-2022-21984) in Microsoft DNS server. The bug can only be exploited if dynamic DNS updates are enabled on the server. If you have dynamic updates enabled, it could let a malicious actor run code on the server with admin rights. A remote code execution flaw in Hyper-V could let an attacker escape a guest virtual machine and access the host server. Microsoft has rated the issue High. But if you are using Hyper-V, you should get your servers patched as soon as possible. There are also updates for Microsoft's HVEC and VP9 video extensions for Windows. The extensions are distributed using the Microsoft Store, as are the updates available for them this month. A Denial of Service (DoS) vulnerability in the . NET Framework affects applications that work with the Kestrel web server. Kestrel is a cross-platform server that is designed to work with ASP. NET Core. It is included and enabled by default with ASP. NET Core project templates. So, if you have a Kestrel server exposed on the public Internet, make sure you get the patch for . NET applied to block DoS attacks using HTTP/2 and HTTP/3 requests. Microsoft Teams It's not often I write here about security updates for Microsoft Teams. But this month,... --- ### Microsoft Teams Rooms Devices to Get Improved Meeting Stage, Webinar and Reactions Support - Published: 2022-02-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-rooms-devices-to-get-improved-meeting-stage-webinar-and-reactions-support/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has unveiled a handful of new capabilities for Teams Rooms on Android devices, including support for webinars, reactions, and HDMI ingest. The company has announced in a message on the Microsoft 365 Admin Center that these new features aim to improve the collaboration experience for meeting participants. First up, Microsoft is bringing some enhancements to improve the meeting stage in Teams Rooms on Android. This update includes support for new reactions, a dual-screen meeting stage, as well as docked meeting controls. Additionally, meeting organizers will soon be able to pin the video feeds of multiple participants on the meeting stage. “We have drastically improved the meeting stage to not only show more videos but also to allow for additional flexibility of what is displayed on the Teams Rooms front-of-room displays,” the company explained. Microsoft Teams Rooms on Android to add new Webinar capabilities, wallpapers, and more Microsoft is also planning to add new Webinar capabilities that will enable presenters to join webinars directly from Teams Room devices. Another new feature coming soon is the ability to manage camera and microphone access for all meeting participants. Microsoft Teams Rooms devices are also getting support for five new wallpapers, which will let meeting participants customize their backgrounds. Users will be able to use these wallpapers on Teams displays in both single and dual-screen configurations. Other new features include room capability and check-in notifications as well as the ability to view/share meeting content via an HDMI cable. Microsoft plans to roll out... --- ### Live AMA with Paul Thurrott and Russell Smith - Published: 2022-02-09 - Modified: 2024-09-04 - URL: https://petri.com/live-ama-with-paul-thurrott-and-russell-smith/ - Categories: Podcasts - Tags: AMA, Ask me Anything, Paul Thurrott, Russell Smith - Article Type: Interview If you are a Premium member over at Thurrott. com, our sister site, Paul Thurrott and I are doing a live AMA (Ask me Anything) tomorrow on YouTube. Similar to Paul’s weekly ‘Ask Paul’ forum AMA, but in video form, Paul (and Russell) will be answering any questions you have related to technology, Thurrott. com and the Petri IT Knowledgebase. As well as some general chat about technology. The AMA is going live February 10, 2022, at 12 pm EST and it will be recorded. It is only available to Thurrott Premium members. Members will get the link for the livestream by email shortly before the event starts. Ask your questions here! While you will be able to ask questions live in the chat during the session, you can also post your questions in advance in the Thurrott. com forums. Looking forward to seeing you there! --- ### Microsoft Defender App Launches in Preview on Windows and Android - Published: 2022-02-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-app-preview-windows-android/ - Categories: Mobile, Security, Windows 11 - Tags: Android, Microsoft Defender, News, Windows 10, Windows 11 - Article Type: News Microsoft has launched a new Microsoft Defender Preview app for Windows and Android devices. This is currently available to download in the United States, but the company plans to expand its availability to all users worldwide later this year. The new Microsoft Defender Preview app is a centralized security solution that allows users to control the security status of all the devices connected to the same Microsoft account. As of today, the desktop app can show security tips and real-time security alerts that should help users to protect their Windows 10 and 11 PCs against cyberattacks. There is also an option to manage various security settings such as ransomware protection, virus & threat protection, and security history. “Microsoft Defender helps protect your data and devices from malicious threats. Easily manage your online security in one centralized view, with industry-leading cybersecurity for you, your family, and your devices. Stay safer with real-time notifications, security tips, and recommend steps that help keep you ahead of hackers and scammers for your peace of mind,” the company explained on the Microsoft Store. https://twitter. com/ALumia_Italia/status/1490777610854543362 Microsoft Defender Preview helps to protect Android users from malware On Android, the Microsoft Defender Preview app helps to protect users from malicious links access on the web. It can also perform periodic scans for new or existing malicious apps installed on the mobile device. Additionally, the app can notify users about harmful files downloaded from the internet. Microsoft Defender Preview app is free to use for consumers in the US, and it... --- ### Microsoft Disables MSIX Protocol Handler to Protect Windows Users from Malware - Published: 2022-02-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-disables-msix-protocol-handler-windows/ - Categories: Security, Windows 10, Windows 11 - Tags: Malware, News, Security, Windows 10, Windows 11 - Article Type: News Last week, Microsoft announced that it has temporarily disabled the MSIX protocol handler to prevent malicious attacks on Windows 10 and 11. The company says this change aims to address a newly discovered Windows AppX Installer spoofing vulnerability, which was discovered in December 2021. For those unfamiliar with the Windows AppX Installer, it’s a Windows feature that was introduced back in 2016. It enables users to install a Windows app directly from a web server without downloading . appx packages. The Windows AppX Installer offers a simplified experience for sideloading app packages. As it turns out, threat actors took advantage of a security vulnerability in the Windows App Installer packages to install malicious apps on targetted machines. “We were recently notified that the ms-appinstaller protocol for MSIX can be used in a malicious way. Specifically, an attacker could spoof App Installer to install a package that the user did not intend to install,” Microsoft’s Dian Hartono explained in a blog post. Fortunately, Microsoft has temporarily addressed this issue by disabling the ms-appinstaller scheme (protocol) on Windows 10 and 11 PCs. Currently, the company is working on a fix for the issue, and it plans to create a group policy to allow IT admins to re-enable the ms-appinstaller protocol securely within their organizations. Microsoft provides a temporary workaround to prevent malicious attacks In the meantime, Microsoft has provided a workaround to help customers prevent malicious attacks. “For now, we have disabled the ms-appinstaller scheme (protocol). This means that App Installer will not... --- ### Microsoft Office Apps to Block All Downloaded VBA Macros By Default - Published: 2022-02-08 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-office-apps-block-vba-macros-by-default/ - Categories: Office, Security, Windows 10, Windows 11 - Tags: Microsoft 365, Microsoft Office, News, Office 365 - Article Type: News Microsoft is finally getting ready to block Visual Basic for Applications (VBA) macros downloaded from the internet by default in several Office apps. The Redmond giant has already started restricting Excel 4. 0 (XLM) macros, and this change will now impact all VBA macros in Word, PowerPoint, Visio, Access, and Excel files. By default, Microsoft Office apps will prevent users from enabling enable (VBA) macros by simply clicking a button.  With this change, the apps will replace the "Enable Content" option with a new "Learn More" prompt. Users will need to click the prompt to read instructions on how to enable the macros in the downloaded file manually. Microsoft says that this change should help to protect Windows users from malware distributed via phishing attacks, such as TrickBot, Emotet, Dridex, and Qbot. “For years Microsoft Office has shipped powerful automation capabilities called active content, the most common kind are macros. While we provided a notification bar to warn users about these macros, users could still decide to enable the macros by clicking a button. Bad actors send macros in Office files to end users who unknowingly enable them, malicious payloads are delivered, and the impact can be severe including malware, compromised identity, data loss, and remote access,” the company explained. Microsoft Office apps to block all VBA Macros by default in early April Microsoft plans to test the new default setting in Office version 2203 with Current Channel (Preview) users in early April, and it will become generally available for all Office... --- ### Microsoft Teams Will Soon Be Able to Pull Contact Information from LinkedIn - Published: 2022-02-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-pull-contact-information-linkedin/ - Categories: Microsoft Teams - Tags: Linkedin, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is working on some important updates for its Teams collaboration service. The Redmond giant is planning to release a new LinkedIn integration for one-on-one chats in Microsoft Teams that should make it easier for users to learn more about their coworkers. More specifically, Microsoft Teams will add a new LinkedIn tab to the 1:1 chat panel, allowing users to view their colleagues' LinkedIn profiles. This means that users will be able to view the work history, technical expertise, background information of the team member directly within the app. This update aims to improve the collaboration experience for remote teams. The Microsoft 365 roadmap listing indicates that the new LinkedIn integration will roll out to all Teams desktop and web users in March 2022. OneDrive for the web to add a new "Your Teams" section to the "More Places" page In addition to this new LinkedIn integration, OneDrive for the web will add a new section called "Your Teams" to the "More Places" page. Microsoft says that this new addition will help users easily find their shared Teams files. According to the Microsoft 365 roadmap, this feature will begin rolling out to all OneDrive for Business users in April this year. Microsoft Teams has come a long way since its launch, and the company is constantly working to improve the chat and meeting experience for the users. The Redmond giant has recently announced other important updates, including a new Compact mode for private chats, the ability for users to pin/hide... --- ### Practical Microsoft Graph PowerShell for Microsoft Teams > If you're an IT Pro, learn how to manage Microsoft Teams more easily using PowerShell and the Microsoft Graph. It can often be a complicated process that requires multiple services to be combined. Use PowerShell to connect to all the connected services to manage a team in Microsoft Teams. - Published: 2022-02-08 - Modified: 2024-09-04 - URL: https://petri.com/practical-microsoft-graph-powershell-for-microsoft-teams/ - Categories: Microsoft Teams, PowerShell - Tags: Microsoft Graph, Microsoft Teams, PowerShell - Article Type: How To Managing Microsoft Teams if you're an IT Pro can often be a complicated process that requires multiple services to be combined. When provisioning a team, services such as Azure Active Directory (AAD), SharePoint Online, and Exchange Online connect to the core plumbing. It means that for you as an IT administrator, you need to connect to potentially all the connected services to manage a team in Microsoft Teams. From a user interface perspective, this means using multiple administration consoles or multiple PowerShell modules that need installing, importing, and connecting independently. Install-Module -Name AzureAD Install-Module -Name Microsoft. Online. SharePoint. PowerShell Install-Module -Name ExchangeOnlineManagement Import-Module -Name AzureAD Import-Module -Name Microsoft. Online. SharePoint. PowerShell Import-Module -Name ExchangeOnlineManagement Connect-AzureAD Connect-SPOService Connect-ExchangeOnline Microsoft does, however, provide a Teams Administration portal that is now an easy place to manage most of the configuration and management tasks you need to complete within Microsoft Teams. However, as with most things within Microsoft 365, many configuration settings are either unavailable within Microsoft Teams, or only available within the Microsoft Graph or PowerShell. How to install the Microsoft Teams PowerShell module The good news is that Microsoft provides a specific PowerShell module for managing Microsoft Teams called "MicrosoftTeams. " You can easily install the Microsoft Teams PowerShell module using the following command: Install-Module -Name MicrosoftTeams -Force -AllowClobber Import-Module -Name MicrosoftTeams Once installed, you can then manage specific configurations and settings for Microsoft Teams. A simple example would be creating a new team in Microsoft Teams with the following PowerShell command: New-Team ` -DisplayName "My New Team"... --- ### Microsoft Releases Out-Of-Band Updates to Fix Windows Active Directory Issues - Published: 2022-02-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-updates-windows-active-directory/ - Categories: Active Directory (AD), Windows Server - Tags: Active Directory, News, Windows Server - Article Type: News Microsoft has released out-of-band (OOB) updates for several Windows Server configurations to fix an Active Directory issue related to Microsoft . NET Framework. The company explained on the Windows health dashboard that the bug surfaced following the release of January 2022 Patch Tuesday updates (via Bleeping Computer).   “After installing updates released January 11, 2022 or later, apps using Microsoft . NET Framework to acquire or set Active Directory Forest Trust Information might fail, close, or you might receive an error from the app or Windows. You might also receive an access violation (0xc0000005) error. Note for developers: Affected apps use the System. DirectoryServices API,” the company explained. Microsoft says that these out-of-band updates are now available to address the issue on machines running Windows Server 2022 (KB5011258), Windows Server 2019 (KB5011257 and KB5011259) as well as Windows Server 2016 (KB5011264). However, the company also plans to roll out an emergency fix for customers with other affected versions of . NET Framework or Windows “in the coming days. ” How to install the out-of-band updates for Windows Server Keep in mind that the latest NET Framework patches are not available as optional updates in Windows Update. If you have been affected by the aforementioned issue, you can download and install the standalone packages available on the Microsoft Update Catalog. These updates can also be manually imported into Windows Server Update Services (WSUS) and Microsoft Endpoint Configuration Manager. In case you missed it, Microsoft also rolled out-of-band patches for Windows 11, Windows 10, Windows 8. 1, Windows 7... --- ### Microsoft Issues Warning About Multi-Phase Phishing Attacks Targeted At Azure AD - Published: 2022-02-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-multi-phase-phishing-attacks-azure-ad/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, MFA, News, Phishing, Security - Article Type: News Microsoft has warned users about a new multi-phase campaign targeting enterprise customers. The Microsoft 365 Defender Threat Intelligence Team detailed its findings on its Security blog, which indicates that these phishing attacks mainly target organizations that haven't enabled multi-factor authentication (MFA). As the name suggests, multi-factor authentication (MFA) is an authentication technique that requires two or more verification methods to validate a user’s identity, rather than relying on the traditional username-password combination. The goal of MFA is to offer an additional layer of security that prevents unauthorized access to sensitive information and decreases the chances of successful cyberattacks, identity thefts, and data breaches. Multi-factor authentication (MFA) helps to block second-stage phishing attacks Microsoft explained that the attackers use stolen credentials to register devices onto the corporate network in order to distribute phishing emails. The threat actors used this "evolved phishing" technique to target exploited instances in two phases. The first phishing attack involved stealing the stolen credentials in order to gain account privileges on the target’s network. The first stage focused primarily on organizations in Singapore, Thailand, Australia, and Indonesia. In the second phase, the attackers used the hacked account to send DocuSign-themed phishing emails urging recipients to sign documents. The investigations revealed that the multi-stage phishing campaign leveraged Azure Active Directory (Azure AD) and Microsoft Intune to compromise the network. “While multiple users within various organizations were compromised in the first wave, the attack did not progress past this stage for the majority of targets as they had MFA... --- ### Amazon FSx for Windows File Server Gets FedRAMP Compliance - Published: 2022-02-07 - Modified: 2024-09-04 - URL: https://petri.com/amazon-fsx-for-windows-file-server-gets-fedramp-compliance/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Compliance, News - Article Type: News Earlier this week, Amazon announced some important compliance updates for Amazon FSx for Windows File Server. The company says that its popular cloud file storage service is finally FedRAMP compliant. Federal Risk and Authorization Management Program For those unfamiliar, FedRAMP (Federal Risk and Authorization Management Program) is a US government program that helps to standardize security evaluations and authorization for cloud-based products and services used by federal agencies. More specifically, the goal of this program is to reduce cybersecurity risks by ensuring that sensitive data and information stays protected in the cloud. “Amazon FSx for Windows File Server is now authorized as FedRAMP Moderate in US East (N. Virginia), US East (Ohio), US West (N. California), US West (Oregon) and as FedRAMP High in AWS GovCloud (US-West) and AWS GovCloud (US-East). Amazon FSx for Windows File Server is also approved as Department of Defense Cloud Computing Security Requirements Guide Impact Level 2 (DoD SRG IL-2) in these regions,” the company explained in a press release. What is Amazon FSx for Windows File Server? Amazon FSx for Windows File Server is a popular and reliable solution that enables developers and IT admins to use shared file storage for Windows applications running on AWS. It provides a wide range of data management capabilities at lower storage costs. Amazon FSx for Windows File Server delivers high throughput, full SMB support, data protection, automated backups, file access auditing, and more. Furthermore, there are no upfront costs or licensing fees. If you’re interested, you can... --- ### Azure AD SC-300 Exam - Are Microsoft Exams Worth It? - Published: 2022-02-04 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-sc-300-exam-are-microsoft-exams-worth-it/ - Categories: Video - Tags: Azure AD SC-300, certifications, cloud computing, Microsoft - Article Type: Video Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations - Azure AD SC-300 Exam - Are Microsoft Exams Worth It? In this week's episode, Dwayne Natwick MVP catches up with Ru and Pete about... The SC-300 Microsoft Identity and Access Administrator exam Dwayne's new book on the exam Azure AD and its hidden gems Is getting an Azure certification worth it? Getting started being a Microsoft Certified Trainer More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a... --- ### This Week in IT - Microsoft Lists is Coming to Everyone But Who Knows What It Is For? - Published: 2022-02-04 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-microsoft-lists-is-coming-to-everyone-but-who-knows-what-it-is-for/ - Categories: Video - Tags: IT security, Microsoft Lists, Windows 11 - Article Type: Video This Week in IT – Microsoft Lists is Coming to Everyone But Who Knows What It Is For? This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short 5-minute video. --- ### Exchange Online Gets MTA-STS Support to Improve Email Security - Published: 2022-02-04 - Modified: 2024-09-04 - URL: https://petri.com/exchange-online-mta-sts-support-email-security/ - Categories: Exchange Online, Security - Tags: Exchange Online, News - Article Type: News Microsoft has announced new security capabilities for Exchange Online customers. The company has finally added support for SMTP MTA Strict Transport Security (MTA-STS) to its Exchange Online service that will use Transport Layer Security (TLS) encryption to secure emails and prevent man-in-the-middle or downgrade attacks. As a reminder, Microsoft unveiled its plans to launch MTA-STS support Exchange Online back in September 2020. The MTA-STS standard allows users to enable TLS encryption for all outbound emails sent via Exchange Online, making it harder for attackers to intercept emails. It helps to solve the weaknesses of SMTP, such as expired TLS certificates, lack of support for secure protocols, issues with third-party certificates, and more. "MTA-STS (RFC8461) helps thwart such attacks by providing a mechanism for setting domain policies that specify whether the receiving domain supports TLS and what to do when TLS can't be negotiated, for example stop the transmission," Microsoft’s Exchange team explained. It is important to note that the new security feature is enabled by default for all Exchange Online customers worldwide. However, the Exchange team has provided some recommendations to help domain owners interested in adopting MTA-STS, and you can check out the official blog post for more details. Exchange Online to get support for DANE for SMTP with DNSSEC In addition to MTA-STS, Microsoft is also bringing support for DANE for SMTP with DNSSEC to the Exchange Online service, which should offer better protection than MTA-STS. DANE for SMTP is a popular security standard that uses TLS Authentication... --- ### Everything You Need to Know About Power Platform - January 2022 - Published: 2022-02-04 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-january-2022/ - Categories: Power Platform - Tags: power apps, Power Automate, Power BI, Power Platform - Article Type: News The big news this month is the release of the next Release Wave Plan. As if we were all excited enough about Power Platform, this is over 100 pages of excitement for your bedtime reading pleasure. It isn't quite a page turner but, still good to be in the know. Those highlights dominate this article. Then there are a few other updates after that, but they are boring in comparison. (Sometimes the truth hurts. ? ) I also recently saw an unofficial tweet that we are now over 600 connectors. That is crazy, I remember when we broke 200. Anyway, enjoy the update and let's hope some of these features start rolling out soon. Microsoft announces Power Platform 2022 Release Wave Plan The big news this month is that Microsoft has published their plan to release new features for the Power Platform beginning in April.   Many of the features they’ve been touting over the past few months will be part of this release, and there’s so much to unpack here, they’ve included a 148-page release document (available here).     For Power Apps, updates include built-in collaboration features allowing more than one app-maker to work on the same app, simultaneously.   Natural language coding AI assistance being added, as well as the end of the requirement to “Set” variables (taking a cue from Microsoft Excel, makers will no longer have to Set variables, they’ll simply declare them in the format of “variable = value”).   As promised last year, businesses will be able to make standalone,... --- ### Amazon Launches a New AWS Management Console - Published: 2022-02-04 - Modified: 2024-09-04 - URL: https://petri.com/amazon-launches-new-aws-management-console/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, cloud computing - Article Type: News Amazon started off this new year with one pretty big change for Amazon Web Services (AWS). They updated the AWS Management Console. The AWS Management Console is probably the most frequently used AWS tool. The AWS Management Console is a web application that enables you to access and mange AWS resources. Until this past update the home page of the console showed your most recently used services and a set of static links organized in sections like Getting Started with AWS and Build a Solution. However, Amazon analyzed their usage data and user feedback to determined that the old management console was cumbersome to use and it was difficult to navigate to the different parts of the console that users typically needed. As a result, this past January 2022, Amazon released an all new AWS Management Console which was designed to work in the web browser as well as tablets and other devices. The AWS Management Console is also available as an app for Android and iOS. When you first log in to the new AWS Management Console you’re greeted with the New AWS Console Home screen that you can see below.   Here you can choose to take advantage of the new AWS Management Console by clicking the Switch to the new Console Home button or if you would rather continue using the old management console you can click the Maybe later link. If you do switch to the new AWS Management Console you’ll see the new AWS Management... --- ### Set Up Microsoft Teams Using the Machine-Wide Installer - Complete Guide > This article is a step-by-step guide that will show you how to ensure that everyone in your Microsoft Teams organization has access to Teams using the machine-wide installer. - Published: 2022-02-04 - Modified: 2024-11-19 - URL: https://petri.com/set-up-microsoft-teams-using-machine-wide-installer/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams - Article Type: How To   This article is a step-by-step guide that will show you how to ensure that everyone in your Microsoft Teams organization has access to Teams using the machine-wide installer. What is the Microsoft Teams machine-wide installer, and do I need it? The Microsoft Teams machine-wide installer is an MSI-based installation method for Teams. It allows you, as an IT Pro, to mass install Microsoft Teams centrally via SCCM or Microsoft Endpoint Configuration Manager in your environment. This can be done without any user intervention; no need for users to go through any steps to access Teams except to simply log in to their computers! We'll get to that later. There are several variables to take into account when asking if you specifically need it. If you have a robust, centrally managed endpoint solution like SCCM, you will reap many benefits from using this installation method. If, however, you manage a small business or multiple small businesses, it may be easier to allow users to install Teams individually. I'll explain the differences between these next. Microsoft Teams machine-wide installer vs user-based installer The Microsoft Teams machine-wide installer uses the MSI method to install Teams for all users on a computer. As long as any user logs onto a computer via this method, they will automatically have access to Teams. Installing Teams as a single user will only install Teams in that user's profile on the local computer. If another user logs on the computer, they will need to install Microsoft Teams themselves... --- ### Amazon Adds Replication to EFS - Published: 2022-02-04 - Modified: 2024-09-04 - URL: https://petri.com/amazon-adds-replication-to-efs/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon EFS, AWS, cloud computing - Article Type: News Amazon Elastic File System (Amazon EFS) allows EC2 instances, AWS Lambda functions and containers to share access to a fully-managed, high performance and highly available file system. Amazon EFS delivers low-latency performance for a wide variety of workloads and can scale to thousands of concurrent clients or connections. EFS can scale automatically and you only pay for the storage that you use. It also automatically grows and shrinks as you add and remove files with no need for management or provisioning. For more information on AWS, check out What is AWS (Amazon Web Services)? – The Ultimate Guide on Petri. Amazon EFS was first available in 2016 and since that time Amazon has added many new features and capabilities. Some of the main enhancements to EFS include the addition of on-premises access via Direct Connect in 2016, the encryption of data-at-rest in 2017. Provisioned throughput and encryption of data in-transit were added in 2018. In 2019 Amazon added an infrequent access storage class. IAM authorization & access points were added in 2020 and lower-cost one zone storage classes were added in 2021. Automatically maintain copies of your EFS file systems for business continuity and disaster recovery EFS replication was added in January 2022. You can use replication to automatically maintain copies of your EFS file systems for business continuity (BC) and disaster recovery (DR). It can also be used to help you to meet compliance requirements. EFS replication can be used either within a single AWS region or between two AWS regions... --- ### Microsoft Details Evolution of Sophisticated UpdateAgent Mac Malware - Published: 2022-02-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-evolution-sophisticated-updateagent-mac-malware/ - Categories: Security - Tags: Malware, News, Security - Article Type: News Microsoft has shared some important details about the evolution of a malware called "UpdateAgent" that started targeting Mac devices in 2020. Yesterday, Microsoft’s threat intelligence team warned users that the new variants of this trojan have become more sophisticated, and they are currently installing adware payloads on infected Mac machines. The UpdateAgent malware was first discovered back in September 2020, which was used by threat actors to steal information like product names, version numbers, and other minor details on Mac devices. However, Microsoft reports that UpdateAgent has become increasingly sophisticated over time. The trojan can now bypass several macOS controls to persist and run each time the Mac system boots. Consequently, UpdateAgent can easily exploit user permissions to perform malicious activities. Microsoft also found that UpdateAgent downloads its additional payloads directly from Amazon Web Services' S3 and CloudFront services. Fortunately, Microsoft’s security researchers have collaborated with AWS to remove malicious links from its cloud services. “Once adware is installed, it uses ad injection software and techniques to intercept a device’s online communications and redirect users’ traffic through the adware operators’ servers, injecting advertisements and promotions into webpages and search results,” the Microsoft 365 Defender threat intelligence team explained yesterday. The UpdateAgent malware is distributed as legitimate software on malicious websites Microsoft also highlighted that the UpdateAgent trojan usually poses as legitimate software distributed via advertisements or pop-ups on malicious websites. “More specifically, Adload leverages a Person-in-The-Middle (PiTM) attack by installing a web proxy to hijack search engine results and inject... --- ### Microsoft Sentinel Gets Continuous Threat Monitoring Support for GitHub - Published: 2022-02-03 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-sentinel-continuous-threat-monitoring-github/ - Categories: Security - Tags: Microsoft Sentinel, News, Security - Article Type: News Microsoft Sentinel, the company’s security information and event management (SIEM) platform is getting a new GitHub integration. The new solution has been designed to help organizations continuously monitor GitHub developer repositories for potentially malicious events. For those unfamiliar with Microsoft Sentinel, it’s a scalable cloud-native SIEM service that uses Artificial Intelligence to analyze huge volumes of operational data to detect potential security-related threats across enterprise environments. Microsoft CEO Satya Nadella unveiled last week that Microsoft Sentinel has around 15,000 customers worldwide, and its userbase increased by 70 percent within a year. Microsoft Sentinel can now ingest GitHub enterprise repository logs to trigger alerts Interestingly, Microsoft Sentinel has now added a connector that allows users to ingest GitHub audit logs to get various alerts on certain suspicious activities. Currently, the Microsoft Sentinel GitHub threat monitoring tool is only available for GitHub enterprise licenses.  These security alerts will be visible to users on the Microsoft Sentinel dashboard. For instance, Sentinel can trigger alerts about when a new repository was created or deleted in the GitHub environment. There is also an option to get details about when an OAuth application's client secret or a payment method was removed. Security teams can use the workbook to track various events such as newly added repositories, the addition/removal of new members, and the number of repository clones over time. “The continuous threat monitoring for GitHub solution contains out-of-the-box content, installed automatically to your Microsoft Sentinel workspace when you deploy the solution. The out-of-the-box content includes analytics rules... --- ### Microsoft Endpoint Configuration Manager Can Now Visualize Content Distribution Status - Published: 2022-02-02 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-endpoint-configuration-manager-visualize-content-distribution/ - Categories: System Center - Tags: Microsoft Endpoint Manager, News - Article Type: News Earlier this week, Microsoft released a new update (version 2201) for Microsoft Endpoint Configuration Manager users enrolled in the technical preview branch. Microsoft Endpoint Configuration Manager is a free on-premise solution that allows IT Admins to manage PCs and servers across the network. First of all, Microsoft Endpoint Configuration Manager has made it easier for IT Admins to monitor the progress of content package distribution in their organization. The latest update brings the ability to visualize content distribution path and status in the form of a graph, which shows important information like distribution status, point type, as well as status messages. You can see how the graphical visualization looks in the image below: Microsoft Endpoint Configuration Manager gets custom icon support for task sequences and packages & more This new preview also brings custom icon support for task sequences and packages that should help to make software identification easier. Users can now add custom icons that will be able visible in Software Center when the object deployment ends. Microsoft has added Low Extra Delay Background Transport (LEDBAT) support for software update points. Once enabled, the LEDBAT feature will help to control network congestion by adjusting network traffic (download speeds) during client scans against WSUS. There are also some improvements for Power BI Report Server integration in Microsoft Endpoint Configuration Manager. Secondly, users will be able to access all the Power BI reports saved by Power BI Desktop (version May 2021 or newer) without any problem. Microsoft Endpoint Configuration Manager has... --- ### Microsoft Teams Public Preview Users Can Now See 50 Percent More Chat Messages - Published: 2022-02-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-compact-mode-private-chats/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has unveiled some important updates for its Teams collaboration service. The company has announced that Microsoft Teams public preview users can now test new chat and meeting features, including support for Compact mode, meeting co-organizers, and more. First up, Microsoft Teams has added a new Compact mode option that allows users to fit 50 percent more messages within a chat window. This new setting should help to reduce the need to scroll up and down on small screens. “Depending on your monitor size and viewing preferences, you might find yourself wanting to change the way your chat screen looks,” the Microsoft Teams public preview team explained. Currently, the Compact mode is only available in personal chats, and it won't affect Channel messages in Microsoft Teams. To enable this feature, you will need to follow the steps mentioned below: Navigate to the top right corner of the screen, click the ellipsis menu (... ), and select Settings. In the General tab, look for the Chat density section and select the Compact option. Once done, Microsoft Teams users will notice some changes, such as the chat window displaying around 50 percent more messages, reactions appearing at the bottom, and a wider box for typing messages. Users will also be able to switch between the “Compact” and “Comfy” (the current view) modes anytime by repeating the same process. Microsoft Teams users can now pin/hide their own video feeds In addition to this new Compact mode, Microsoft has also announced that organizers... --- ### Analytics in Viva Insights that Improve Collaboration Behaviours in the Workplace > Learn how Microsoft Viva Insights can help find out how happy employees are, if burnout is a problem, and how resilient an organisation is. As our lives become increasingly connected, we make sense of an enormous amount of information while multiple tasks and deliverables require our attention. - Published: 2022-02-02 - Modified: 2024-09-04 - URL: https://petri.com/analytics-viva-insights-improve-collaboration-in-the-workplace/ - Categories: Microsoft 365, Microsoft Teams - Tags: collaboration, Microsoft 365, Microsoft Viva, Productivity, Viva Insights - Article Type: Overview Many of us have witnessed how easy it is for the boundary between work and life to blur over the past year. As our lives become increasingly connected, we make sense of an enormous amount of information while multiple tasks and deliverables require our attention. As more people work remotely, it is harder to figure out how happy employees are, if burnout is a problem, and how resilient an organisation is. Microsoft has a solution for these challenges called Viva Insights. What is Microsoft Viva Insights? Viva Insights is one module in Microsoft’s employee experience platform that offers privacy-protected insights and actionable recommendations that help employees work smarter, build better habits, and achieve balance in the workplace. These recommendations surface in the Viva Insights Microsoft Teams App, daily briefing emails and web dashboards. It provides three types of Insights: Personal Insights - Individuals receive personal insights to help them recognise opportunities to improve how they work to do their best. It is easier to boost productivity and prioritise well-being with actionable recommendations, such as scheduling regular breaks, focused work, and learning throughout the day. Manager Insights - Managers can use insights to improve their teams' productivity and well-being by seeing patterns of work that can cause burnout and stress, such as work after hours, meeting overload, or not enough focus time. Managers can create positive change when they know what current team norms are. Organisation Insights - Business leaders can understand how work impacts their people and business with... --- ### Microsoft Defender for Office 365 to Get Advanced Threat Protection for Priority Accounts - Published: 2022-02-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-office-365-to-get-advanced-threat-protection-for-priority-accounts/ - Categories: Microsoft 365, Security - Tags: Microsoft Defender for Office 365, News, Security - Article Type: News Microsoft is working on some important updates for Microsoft Defender for Office 365. The cloud-based email filtering service is getting a new update that should help organizations to prioritize threat protection for enterprise accounts tagged as critical priority users. Back in November 2020, Microsoft Defender for Office 365 added the priority account protection feature, which helps organizations protect their most visible, targeted, and most vulnerable executive-level employees from cyber attacks. This capability is available to all enterprise customers with a Defender for Office 365 Plan 2 subscription. This Microsoft Defender for Office 365 update aims to improve the priority account protection feature by bringing new security capabilities that will allow customers to enhance protection for specific users within their organization. “As part of this release, we are introducing a Context filter within Threat Explorer and the Threat Protection Status report through which you can search for emails where Priority account protection is involved. In addition, the Threat Detection Details tab on the Email Entity page will be updated to show the threats, corresponding detection details, and whether these detections were identified as part of Priority account protection,” the company explained on the Microsoft 365 roadmap. Microsoft Defender for Office 365 to enhance the URL protection report For IT admins, Microsoft is also planning to roll out some improvements to the URL protection report. With this release, Microsoft Defender for Office 365 is adding four new action types to the URL protection report Action view, making it easier for admins to use... --- ### Microsoft Lists Now Supports Personal Microsoft Accounts - Published: 2022-02-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lists-supports-personal-microsoft-accounts/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Lists, News - Article Type: News Microsoft has announced that its new Lists app now supports personal accounts. The company has started rolling out a new lightweight version of the Microsoft Lists app in preview, allowing small businesses and individuals to plan, organize and manage their work effectively. The Microsoft Lists app was originally announced back in May 2020 at Microsoft's Build developer conference, and it is meant to help users keep track of information across their business and organize work. The service is currently available on the web, in Microsoft Teams as well as on mobile. Previously, Microsoft Lists was only available to Microsoft 365 commercial customers, but the app can now also be used with a personal Microsoft account. Microsoft added that this new standalone preview version brings the “core Microsoft Lists experience” and comes with some new features such as tabbed views and inline images. Essentially, small businesses and individual users can now use the Microsoft Lists app to manage processes, such as employee onboarding, job applications, event planning, donations, and much more. Furthermore, the app also provides an option to share and collaborate on list items with other people and track progress in real-time. https://youtu. be/yEiG9LicKW8 “We’re taking a huge step to make Microsoft Lists available with a Microsoft Account so everyone can use this indispensable tool in their personal life, school, and work,” said Microsoft 365 CVP Jeff Teper on LinkedIn. “To enable today’s Microsoft Lists, we re-architected SharePoint to per user shards for consumer support and support Microsoft Account as well... --- ### Microsoft Priva is Now Generally Available for Enterprise Customers - Published: 2022-01-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-priva-generally-available-enterprise-customers/ - Categories: Microsoft 365 - Tags: News, Security - Article Type: News Microsoft has announced that its new privacy management solution “Microsoft Priva” is now generally available for business and enterprise customers. The service was first announced back in November at Ignite 2021, and it helps organizations to build a “privacy-resilient workplace” for employees. Currently, the Microsoft Priva solution comes with two different privacy management products, including Priva privacy risk management and Priva subject rights requests. The first module helps customers to identify and mitigate privacy risks associated with data transfers, overexposure, and stored data in their organization. It offers built-in templates to help users set up policies for risk identification. The Subject Rights Requests solution allows customers to manage requests from employees seeking access to their personal information. This module brings new automation and collaboration features that should make it easier to find subject data, review results, collect relevant files, and generate reports. “The integration of Microsoft Priva with your day-to-day productivity tools and business applications gives organizations the power to effectively influence employees to make positive decisions on personal data handling. The in-the-moment nudges drive fundamental behavioral changes, helping people make good data handling decisions in the context of their daily activities,” explained Alym Rayani, GM for Compliance and Privacy Marketing. Microsoft Priva free 90-day trial now available for customers Microsoft highlighted that its new privacy management solution also sends alerts when employees’ data has not been used for a certain period since it may no longer be valuable for the company. Furthermore, Microsoft Teams provides “near-real-time notifications and guidance"... --- ### What's New in Microsoft Teams - January 2022 - Published: 2022-01-31 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-microsoft-teams-january-2022/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has just published its monthly roundup covering everything added to its Teams collaboration platform in January 2022. This month, the biggest improvements include a new “Press to unmute” feature for meetings, a Front row layout for Teams Rooms devices, updates for Teams Phones, and much more. Here’s a look at everything you need to know. New meetings features for Microsoft Teams First up, Microsoft Teams has introduced a new push-to-talk feature that allows meeting participants to temporarily unmute their microphones by pressing the Ctrl + Space keys (Windows) or Option + space keys (Mac). The “Press to unmute” feature is currently available on the web, and it helps to reduce unwanted background noise. In addition to the “Press to unmute” option, Microsoft Teams is bringing custom backgrounds support to web users. It’s one of the top requested features that lets users customize their backgrounds during video calls and meetings. Microsoft has added a high-fidelity “music mode” option to improve the quality of music streamed during Teams meetings and 1:1 calls. This new setting can be helpful for online music lessons and live music performances. Microsoft Teams meetings also added a new feature that provides an option to un-mirror video feeds so that participants can read the text written on a physical whiteboard. The company has announced that its Walkie Talkie app in Teams is now generally available on Zebra Android devices as well as iPhones and iPads. Front row layout for Microsoft Teams Rooms on Windows Moving on to... --- ### Cloud Conversations - Securing Microsoft 365 in SMBs and Defender for Business - Published: 2022-01-28 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-securing-microsoft-365-in-smbs-and-defender-for-business/ - Categories: Video - Article Type: Video Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Cloud Conversations - Securing Microsoft 365 in SMBs and Defender for Business In this week's episode, Alex Fields MVP joins us to chat about... Securing Microsoft 365 in small-medium sized businesses The new Microsoft Defender for Business and his role in it ITProMentor. com and his courses + books The Microsoft 365 DMB Data Protection Toolkit More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### This Week in IT - Windows 11 Beats Windows 10 Out of the Starting Blocks - Published: 2022-01-28 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-episode-4/ - Categories: Video - Article Type: Video This week Microsoft announced that Windows 11 upgrades have beaten Windows 10 during the same period since launch. Microsoft issued a fix for Outlook search problems on Windows 10. And PDQ buys Windows deployment company SmartDeploy. This Week in IT – Windows 11 Beats Windows 10 Out of the Starting Blocks This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short 5-minute video. --- ### Microsoft Reports on how Azure AD Protects Users Against DDoS Attacks - Published: 2022-01-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-ad-protects-users-denial-of-service-attacks/ - Categories: Microsoft Azure, Security - Tags: Azure, News, Security - Article Type: News Microsoft has recently unveiled that it mitigated one of the largest-ever-recorded DDoS attacks that targetted Asian Azure customers in November. The company says that the recent DDoS attack was launched from 10,000 sources in several countries, and it lasted for around 15 minutes. For those unfamiliar, a distributed denial of service (DDoS) attack is a cyber-attack that occurs when an attacker prevents legitimate users from accessing a service, device, network, server, and application. Typically, these DDoS attacks cost organizations money as well as time and can last from a few hours to several months. “In November, Microsoft mitigated a DDoS attack with a throughput of 3. 47 Tbps and a packet rate of 340 million packets per second (pps), targeting an Azure customer in Asia. We believe this to be the largest attack ever reported in history. This was a distributed attack originating from approximately 10,000 sources and from multiple countries across the globe, including the United States, China, South Korea, Russia, Thailand, India, Vietnam, Iran, Indonesia, and Taiwan,” explained Alethea Toh, product manager at Azure Networking. Microsoft blocked two massive DDoS attacks on Asian Azure customers in December In addition to this, Microsoft reported two massive DDoS attacks targeting Asian Azure customers back in December. However, it appears the company was able to protect its users without any significant incidents. The Redmond giant noted that there had been a significant rise in distributed denial-of-service (DDoS) attacks worldwide in the second half of 2021. It has become one of the popular... --- ### Microsoft Teams Launches New Device Trade-In Program for Enterprise Customers - Published: 2022-01-28 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-device-trade-in-program/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has launched a new device trade-in program for its Teams collaboration platform. The new initiative aims to make it easier for organizations to migrate to Teams and receive cashback by selling their eligible traditional unified communications devices such as desktop phones. The Redmond giant has teamed up with Network-Value to make this new device trade-in program available to consumers. For those unfamiliar, Network-Value is a U. S based firm that specializes in running global device trade-in programs. Essentially, the company will be responsible for purchasing back old hardware from businesses at "market competitive prices. " It will also offer eco-friendly options to help them dispose of aging equipment. “Please note that the value of devices can fluctuate depending on market conditions, condition and age of the device, and overall demand. And some aging devices will unfortunately have no resale value, but still occupy valuable storage space in your facilities. Network-Value will provide you with options for recycling and safely disposing of these devices, which relieves IT departments of some of the challenges of managing reverse-logistics,” the company explained. What are the benefits of the Microsoft Teams device trade-In program? Microsoft highlighted that its device trade-in program for Teams offers several benefits, including competitive pricing, convenience, and global coverage. Keep in mind that all quotes are valid for 45 days only, and Network-Value will cover return shipping costs for all trade-in items. The Microsoft Teams trade-in program is currently available for businesses of all sizes in ”non-embargoed countries” worldwide, and you can... --- ### What is AWS (Amazon Web Services)? - The Ultimate Guide > Amazon Web Services (AWS) is a comprehensive cloud computing platform launched by Amazon in 2006. Learn what services Amazon provides as part of AWS, how they can benefit your business, and how they compare with other providers in the cloud computing space, like Azure, and Google Cloud Platform. - Published: 2022-01-28 - Modified: 2024-09-04 - URL: https://petri.com/what-is-aws-amazon-web-services/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon Web Services, AWS, cloud computing - Article Type: Overview You may certainly be familiar with the terms that begin with ‘the cloud’ like cloud computing, cloud storage, or cloud platforms. Simply put, the term ‘cloud’ encompasses all the processes and services that can be accessed over the Internet. This article explains how Amazon Web Services (AWS) fits into that picture. The services offered by cloud platforms include computing, storage, networking, databases, data analytics, servers, software, and more. There are different cloud platforms available in the market. Some of the most broadly used cloud computing platforms are Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform, Alibaba, and IBM Cloud. Cloud computing platforms offer more reliability and flexibility to your organizations by enabling you to scale your businesses’ storage and computing facilities on an on-demand basis. In this article, let’s have a deep dive into the following areas of AWS: What Is AWS? Amazon Web Services (AWS) is a comprehensive cloud computing platform launched by Amazon in 2006. It provides on-demand storage and computing services with the concept of a pay-as-you-go pricing structure that helps your businesses to scale as you grow. The AWS platform is developed to serve your businesses with different types of cloud services such as Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), and Infrastructure-as-a-Service (IaaS). AWS has a large reach in 26 geographic regions, along with 84 Availability Zones across the world. It also plans to expand to eight more regions with 24 Availability Zones. AWS provides your businesses with comprehensive infrastructure in the cloud to deploy applications tailored to your business requirements. The cloud services provided by AWS include: ·       ... --- ### Manage Windows Devices with Microsoft Endpoint Manager (Intune) - Published: 2022-01-28 - Modified: 2024-09-04 - URL: https://petri.com/manage-windows-microsoft-endpoint-manager-intune/ - Categories: Endpoint Management, Windows 10 - Tags: Microsoft Endpoint Manager, Microsoft Intune, Mobile Device Management, Windows 10, Windows 11 - Article Type: How To Microsoft Endpoint Manager (Intune) is a free cloud service that connects your devices to the cloud and lets you manage the devices using the cloud console. Learn how to set up Microsoft Endpoint Manager to manage your Windows endpoints. What is Microsoft Endpoint Manager (Intune)? Microsoft Endpoint Manager is an Enterprise Mobility Management platform that is formed of two core components; Intune & Configuration Manager. Configuration Manager is an on-premise solution that allows the management of Windows clients and Windows Server, as well as macOS. It's based on an agent being installed on these devices and used to be known as System Center Configuration Manager. Now, it's known as Microsoft Endpoint Configuration Manager, often shortened to "ConfigMgr". You can check out our detailed guide on how to install the latest version of Configuration Manager. Intune, on the other hand, is the Cloud version of ConfigMgr. It doesn't have exactly the same feature set as ConfigMgr, and it doesn’t do some things in the same way, either. Intune was initially developed by a completely different team at Microsoft, for a completely different purpose to what ConfigMgr was designed for. Intune used to be called Windows Intune, and then Microsoft Intune. Now it's a sub-product of Microsoft Endpoint Manager. A couple of years ago, Microsoft brought together the teams responsible for ConfigMgr and Intune to allow them to work more closely. Following that change in structure, the products are now more closely aligned too. Whilst Intune can be leveraged to manage... --- ### Microsoft Defender for Business is Coming to Business Premium Next Month - Published: 2022-01-27 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-defender-for-business-is-coming-to-business-premium-next-month/ - Categories: Microsoft 365, Security - Tags: Microsoft Defender for Business, News, Security - Article Type: News Microsoft unveiled a new endpoint security solution for small and medium-sized companies called “Microsoft Defender for Business” at its Ignite 2021 conference. The new service plan, which is currently available in preview for select organizations, is finally coming to enterprise customers with a Microsoft 365 Business Premium plan (via OnMSFT). Microsoft Defender for Business is basically an enterprise-grade endpoint security solution that targets small and medium-sized businesses with up to 300 users. The new security offering helps to protect organizations against malware and ransomware attacks. It is available across all platforms, including Windows, macOS, Android, and iOS. “With a rise in cyberattacks targeting small and medium-sized businesses, threats are becoming increasingly automated and indiscriminate, and striking at a significantly higher rate. In the last year, we’ve seen a 300% increase in ransomware attacks with over 50% reaching small businesses. To address this, Microsoft is investing in security solutions purposefully designed to help protect them,” the company explained. Microsoft Defender for Business offers a bunch of security features and capabilities such as threat and vulnerability management, attack surface reduction, automated investigation and remediation, endpoint detection and response (EDR), APIs and integration, simplified deployment and management, as well as integration with Microsoft Lighthouse. How to Sign up for the Microsoft Defender for Business preview program To get started, you will need to sign up for the public preview program on the Microsoft Defender for Business Preview registration page. Select the Customer or Microsoft Partner option, accept the terms of conditions, and click... --- ### Microsoft Defender for Endpoint Gets Vulnerability Management Support on Android and iOS > Microsoft has announced that threat and vulnerability management support in Microsoft Defender for Endpoint is now generally available on Android and iOS devices. - Published: 2022-01-27 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-defender-for-endpoint-vulnerability-management-ios-android/ - Categories: Mobile, Security - Tags: Microsoft Defender for Endpoint, News, Security - Article Type: News Microsoft has announced that threat and vulnerability management support in Microsoft Defender for Endpoint is now generally available on Android and iOS devices. The new threat and vulnerability management capabilities allow organizations to discover, prioritize, and remediate vulnerabilities and misconfigurations in real-time. Microsoft Defender for Endpoint provides vulnerability management capabilities for iOS and Android devices as part of its mobile threat defense solution. The feature facilitates collaboration between IT administrators and security experts on resolving issues. Customers can also identify the security threats that pose a major risk to their company. “Threat and vulnerability management in Microsoft Defender for Endpoint continuously monitors and identifies impacted devices, assesses associated risks in the environment, and provides intelligent prioritization and integrated workflows to seamlessly remediate vulnerabilities. Microsoft iterates on these features based on the latest information from the threat landscape,” the Microsoft Defender for Endpoint team explained in a blog post. How the threat and vulnerability management capability protects against modern threats Microsoft highlights that this release enables enterprise customers to conduct a vulnerability assessment of Android OS versions and applications on all enrolled Android devices. For iOS users, the vulnerability assessment is currently only available for OS versions, and the company plans to add support for apps “at a later date. ” To get started, IT Admins will need to head to the Microsoft Defender Security Center and select Threat & Vulnerability Management. The vulnerability management dashboard provides quick access to insights across devices. IT Admins can also check the exposure level of... --- ### Microsoft's New Outlook for Mac is Hitting General Availability Next Month - Published: 2022-01-27 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-new-outlook-for-mac-client/ - Categories: Microsoft 365, Outlook - Tags: Microsoft 365, News, Outlook for Mac - Article Type: News Microsoft unveiled a new Outlook for Mac experience with significant performance and reliability improvements back in 2019. The company has been testing the new Outlook for Mac design with Office Insiders in the Beta and Preview channels, and it’s now ready to roll out to all users next month. With this release, the new Outlook for Mac client will become the recommended default experience for all new and existing users. However, users will still be able to toggle between the new and classic design by heading to the Help menu. “With the addition of Online Archive, Shared Mailboxes, Shared Calendars, and Delegation, we will roll out a change, making new Outlook for Mac the default experience in the current channel for any users who have never tried the new experience or have tried and left the New Outlook,” the company explained in a message on the Microsoft 365 Admin Center. New Outlook for Mac adds support for more email account types and shared calendars The new Outlook for Mac comes with much-needed improvements such as support for shared calendars. The app will allow end-users to share calendars and mailboxes with their colleagues. Another important addition in the new Outlook for Mac is support for iCloud, Yahoo, and IMAP accounts. Microsoft has also added a couple of new security features like S/MIME and Microsoft Information Protection support. More specifically, the new Outlook app uses Secure/Multipurpose Internet Mail Extensions (S/MIME) to encrypt messages between correspondents. It's also possible to use the Microsoft... --- ### What is a Domain Controller? - Published: 2022-01-26 - Modified: 2024-09-04 - URL: https://petri.com/what-is-a-domain-controller/ - Categories: Active Directory (AD) - Tags: Active Directory, Domain Controller, Security, Windows Server - Article Type: Overview Domain controllers (DCs) are at the heart of Active Directory Domain Services (AD DS), the directory service that provides authentication, authorization, and password management for Microsoft Windows networks. Find out here why they're so important and what they do. What does a domain controller do? A domain controller (DC) is a server on your network that manages access for users, computers, servers, etc. centrally. It uses Active Directory to house this database information. Domain controllers respond to security authentication requests from network endpoints, like servers and user workstations. Domain controllers are responsible for securely authenticating network resources on a local or wide area network. Domain controllers authenticate users, they store user account information, like names and addresses, and they enforce security policies for Active Directory domains. What is a Domain Controller? (Image Credit - Microsoft) Why domain controllers are an important part of Active Directory Domain controllers provide the physical storage for the AD DS database. In addition, they also provide services that allow enterprises and IT pros to manage their servers, computers, laptops, users, printers, and other applications. They are vitally important to your network and need to be secured. A malicious user, if they can take control of a DC, could wreak havoc on your Friday afternoon (or early Sunday morning! ) by wiping out your AD database. Domain controllers vs Active Directory - are they the same thing? Well, these two, as you probably have guessed already, are not the same. A domain controller essentially houses the guts of Active Directory. Active Directory is the software that centrally houses your network in database form. The domain... --- ### Microsoft is Bringing Android Apps and Taskbar Improvements to Windows 11 in February - Published: 2022-01-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-android-apps-taskbar-improvements-windows-11/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft is getting ready to roll out a big update to Windows 11 users next month, which should bring improvements to the taskbar, new Notepad and Media Player apps as well as a public preview of Android apps. First of all, Microsoft has collaborated with Amazon and Intel to launch a public preview of Android apps on Windows 11 via the Microsoft Store. The company has been testing this feature with Dev Channel Insiders for quite some time, and it’s finally coming to all Windows users. However, users will need to install the Amazon Android App Store and the Windows Subsystem for Android to run mobile apps on their PCs. “Next month we're bringing new experiences to Windows that include a public preview of how you can use Android apps on Windows 11 through the Microsoft Store and our partnerships with Amazon and Intel,” the company explained in a blog post. Microsoft is planning to add several taskbar improvements to Windows 11 In addition to Android apps, Microsoft plans to add several taskbar enhancements to Windows 11 machines. The list includes the addition of a new weather widget and mute and unmute shortcuts on the taskbar. Windows 11 is also getting a new feature that will let users easily share a window during a meeting right from the taskbar. Finally, the company is launching redesigned media player and Notepad apps. Microsoft added that its new Windows 11 OS is now entering its final stage of rolling out to all compatible devices... . --- ### Microsoft Releases New Optional Windows 11 Update to Fix Taskbar, Audio, and Display Issues > Microsoft has released new optional updates for Windows 11 and Windows 10 version 20H2 and newer. The latest Windows 11 optional update (KB5008353) includes several fixes for issues affecting audio devices, multi-monitor setups, auto-brightness as well as app icons in the taskbar. - Published: 2022-01-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-windows-11-kb5008353-update/ - Categories: Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released new optional updates for Windows 11 and Windows 10 version 20H2 and newer. The latest Windows 11 optional update (KB5008353) includes several fixes for issues affecting audio devices, multi-monitor setups, auto-brightness as well as app icons in the taskbar. This Windows 11 KB5008353 patch addresses a known issue preventing some image editing tools from rendering colors correctly on select HDR displays. Microsoft has also fixed L2TP VPN connection and domain controller reboot problems caused by the January Patch Tuesday updates. Here are all the bug fixes and improvements Microsoft highlighted in the release notes for the Windows 11 KB5008353 update: Updates an issue that causes the audio service to stop responding on some devices that support hardware-accelerated Bluetooth audio. Updates an issue that affects icons for apps when the apps are not running. On the taskbar, these icons might display as active as if the apps are running. Adds a new Your Microsoft Account page to the Accounts category in Windows Settings for Home and Professional editions. Updates an issue that incorrectly shows the volume icon in the taskbar as muted. Updates an issue that causes a device to stop working when it’s connected to multiple displays. Updates an issue that affects the auto-hide feature of the taskbar. The taskbar might not reliably appear when you hover over the primary or secondary display. Updates an issue that might prevent icons from appearing on the taskbar of a secondary display. Improves auto brightness to provide a better response... --- ### PDQ Acquires Endpoint Management Solution Provider SmartDeploy - Published: 2022-01-25 - Modified: 2024-09-04 - URL: https://petri.com/pdq-acquires-smartdeploy/ - Categories: Endpoint Protection - Tags: Endpoint Management, News - Article Type: News PDQ has announced today the acquisition of SmartDeploy, a Seattle-based provider of modern endpoint management solutions. The company plans to leverage SmartDeploy’s technology to improve its value proposition by providing seamless endpoint management solutions for IT professionals. “We’re fortunate to team up with SmartDeploy,” explained Jaren Nichols, CRO of PDQ. com. “Our customers passionately endorse SmartDeploy’s imaging capabilities. Internally, we love it. The combination of PDQ and SmartDeploy should prove even more convenient for sysadmins. We’re thrilled to welcome SmartDeploy’s team and customers into the PDQ family. ” For those unfamiliar, SmartDeploy was founded in 2003 and helps organizations accelerate the Windows OS and application deployment process to both virtual and physical platforms. The company has over 3,800 notable clients, including Aetna, Nissan, the US Department of Transportation, ETRADE, University of Washington, as well as GE Healthcare. SmartDeploy provides modern endpoint management features SmartDeploy offers a bunch of powerful features and capabilities, including automated driver management, one-click user migration, zero-touch push deployment, Cloud-based deployments, as well as high productivity and endpoint performance. It is also possible to create images of a reference computer using the virtualization feature, which can then be deployed to another system as a WIM file. “SmartDeploy manages Windows devices offline, on-prem, or through the cloud, making it well suited for every computing environment. IT professionals can easily manage drivers, applications, patches, and scripting through SmartDeploy’s single-image management and patented device driver injection technology,” the company explained in a press release. This announcement follows the recent acquisition of SimpleMDM... --- ### Regulatory Compliance with Microsoft 365 - Published: 2022-01-25 - Modified: 2024-09-04 - URL: https://petri.com/regulatory-compliance-with-microsoft-365/ - Categories: Compliance, Microsoft 365, SharePoint Online - Tags: Backup, Microsoft 365, Regulatory Compliance - Article Type: Sponsored Making sure your business is in compliance with the various regulatory policies that you need to work with can be challenging. Many companies use Microsoft 365 to work with unstructured personal data that are covered by laws that require your organization to follow different compliance procedures. This includes responding to regulatory requirements, assessing compliance risks, and governing and protecting sensitive data. Some of the main regulatory compliance standards include: PCI-DSS -- Payment Card Industry Data Security Standard HIPAA -- Health Insurance Portability and Accountability Act NIST -- National Institute of Standards and Technology GDPR -- General Data Protection Regulation Microsoft has identified four main action items that you need to enact to comply with these types of regulatory rules. Know your data Protect your data Prevent data loss Govern your data Microsoft 365 has several tools that are designed to address these action items and enable your business to comply with various regulatory requirements. Let’s have a closer look at some of the tools in Microsoft 365 that can help with regulatory compliance. Promoted: Afi provides a modern Microsoft 365 and Google Workspace backup with many other advanced features. Microsoft 365 Compliance Center The Microsoft 365 Compliance Center provides a centralized dashboard to help you manage your organization's compliance requirements all in one place. It provides an eDiscovery feature that helps you to know your data. It can be used to search, identify, locate, and retrieve records for various legal and other compliance requirements. You can also use it to... --- ### Microsoft Addresses Outlook Search Issues on Windows 10 - Published: 2022-01-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-outlook-search-issues-windows-10/ - Categories: Outlook, Windows 10 - Tags: Microsoft 365, Microsoft Outlook, News, Outlook, Windows 10 - Article Type: News Microsoft has addressed a known issue that was breaking the Outlook search functionality on Windows 10. The company announced on its Windows Health Dashboard that the problem has been resolved via the Known Issue Rollback (KIR) feature on Windows 10 versions 21H1, 21H2, 20H2, and 1809. Known Issue Rollback is a capability that enables Microsoft and IT admins to quickly roll back problematic non-security fixes delivered via Windows Update. “This issue is resolved using Known Issue Rollback (KIR). Please note that it might take up to 24 hours for the resolution to propagate automatically to consumer devices and non-managed business devices. Restarting your Windows device might help the resolution apply to your device faster,” the company explained. Microsoft releases group policies to fix the Outlook Search Bug in enterprise environments Microsoft has also released a couple of group policies for enterprise customers, and IT Admins will need to manually install and configure group policies to resolve the issue. Windows 10, version 20H2, Windows 10, version 21H1 and Windows 10, version 21H2 Windows 10, version 1809, Windows 10 Enterprise LTSC 2019, and Windows Server 2019 Earlier this month, Microsoft confirmed a new Outlook search bug that previously prevented recent emails from appearing in search results. The problem was caused by the Windows 10 security updates released back in November last year. “This issue mostly affects users with POP, IMAP, and offline Exchange accounts due to search using the local Windows Search service to index email,” Microsoft noted. It is important to... --- ### Group Policy Differences Between Windows 10 and 11 Cause Management Pain for Sysadmins > Microsoft has released a list of twenty-five legacy group policies that should be disabled on Windows 10 and Windows 11. The company is urging IT Admins to stop using these group policies in order to improve overall performance on Windows PCs. - Published: 2022-01-24 - Modified: 2024-11-19 - URL: https://petri.com/group-policy-differences-windows-10-and-11/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released a list of twenty-five legacy group policies that should be disabled on Windows 10 and Windows 11. The company is urging IT Admins to stop using these group policies in order to improve overall performance on Windows PCs. The Redmond giant officially launched Windows 10 version 1511 back in 2015. The company has made several improvements to the operating system since its release based on user feedback, and it has changed the way notifications, updates, installations, restarts, and other functions work on Windows 10. However, this change resulted in a bunch of legacy group policies that cause unexpected behavior or fail to work properly. Microsoft highlights that these group policies may have been replaced by newer ones that come with performance improvements. For example, the "Update/PauseFeatureUpdates" policy that allows users to pause updates for 60 days was replaced by the "Update/PauseFeatureUpdatesStartTime and/or Update/PauseQualityUpdatesStartTime” policy in Windows 10 version 1703. "We have also worked to evolve and simplify the controls needed to support these improved experiences, and identify which older policies have become irrelevant or replaced with a better option," said Aria Carley, Senior Program Manager at Microsoft. "As a result, the Windows update policy set contains policies that no longer have any impact; that don’t work as described on devices running Windows 10, version 20H2 or later; or that work but not as well as the policies that were added to accomplish a similar experience in a much better way. " In Windows 11, Microsoft has added a... --- ### Disaster Recovery for Kubernetes - Published: 2022-01-24 - Modified: 2024-09-04 - URL: https://petri.com/disaster-recovery-kubernetes/ - Categories: Backup & Storage, Cloud Computing, DevOps - Tags: Backup, cloud computing, Containers, DevOps, Disaster Recovery, Kubernetes - Article Type: Overview A lot of businesses are in the process of modernizing their applications as a part of their digital transformation strategies and the adoption of Kubernetes is a big part of this trend. As businesses have begun migrating toward containers and micros-service type applications, Kubernetes has been quickly becoming the defacto standard for container management and automation. What is Kubernetes? Kubernetes provides a platform for describing, running and managing applications that consist of multiple containers. Kubernetes is capable of scaling applications as well as protecting containers from failure by automatically restating them if they fail. Kubernetes is supported by almost all cloud platforms including AWS, Azure and Google as well as being able to run on-premise. A survey by Portwrox showed that 89% of enterprise level businesses said they expect Kubernetes to play a larger role in the management of their infrastructure over the next 2-3 years. Backing up Kubernetes Although Kubernetes itself provides application/container level failover, that doesn’t mean you don’t need to worry about data protection, backups and disaster recovery (DR) for Kubernetes applications. While Kubernetes can protect the containers that are running from failure, for DR you still need to ensure that the platform that’s running Kubernetes is also protected. Kubernetes nodes typically make use of virtual machines (VM) which run on some type of hardware platform that’s either hosted in the cloud or on-premises. That platform needs to be protected – even if it’s in the cloud. For example, late last year in December 2021, Amazon... --- ### This Week in IT - Windows Group Policy Woes - Published: 2022-01-21 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-windows-group-policy-woes/ - Categories: Video - Article Type: Video In this week's edition of This Week in IT, Microsoft issues updates to fix last week's update. Microsoft is finally adding the ability to mute notifications during Microsoft Teams meetings, and Windows 10 and Windows 11 Group Policy ADMX templates no longer play nice with each other. This Week in IT – Windows Group Policy Woes This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short 5-minute video. --- ### Microsoft Adopts Machine Learning to Push Windows 10 Version 21H2 to More PCs - Published: 2022-01-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-windows-10-version-21h2-more-pcs/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft announced today that it has started pushing Windows 10 21H2 (the November 2021 update) to users running version 20H2. The company plans to use its machine learning model to automatically target eligible devices that are approaching the end of servicing soon, and this approach should help to ensure a smooth update process. "Windows 10, version 21H2 is available for users with select devices running Windows 10, versions 2004 and higher who manually seek to “Check for updates” via Windows Update. (... ) We also started the first phase in our rollout for machine learning (ML) training, targeting devices on Windows 10, version 20H2 that are approaching end of servicing to update automatically to Windows 10, version 21H2," Microsoft said on the Windows Health Dashboard. Microsoft began rolling out Windows 10 version 20H2 back in October last year. The latest version of the OS brings some minor improvements to the Windows Subsystem for Linux, Windows Hello for Business, Wi-Fi security, and more. Windows 10 20H2 also removes the Timeline feature that lets users sync activities across Windows machines. The update process from Windows 10 version 20H2 to 21H2 should be quick because users will need to download an enablement package that will activate dormant features on Windows PCs. Windows 10 20H2 reaches end of support in 2022 It is important to note that Windows 10 version 20H2 (Pro and Home editions) will reach the end of support on May 10, 2022. However, Enterprise and Education SKUs will continue to enjoy another... --- ### Microsoft Restricts Excel 4.0 Macros by Default to Protect Users from Malware - Published: 2022-01-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-restricts-excel-4-0-macros-by-default/ - Categories: Microsoft 365, Office, Security - Tags: Microsoft 365, Microsoft Excel, News, Security - Article Type: News Microsoft unveiled its plans to disable Excel 4. 0 XLM macros by default back in October 2021. The company has now announced that this application policy change is now rolling out to all Microsoft 365 tenants and it aims to protect customers from malicious documents. For those unfamiliar with Excel 4. 0 macros (XLM), this is a record-and-playback feature that was first introduced in Excel version 4. 0 back in 1992. It lets enterprise customers create programming code (macros) to help them automate their repetitive tasks. Microsoft has been encouraging organizations to migrate to the secure Visual Basic for Applications (VBA) macros in response to increased XLM-based malware attacks, including Qbot, TrickBot, Zloader, and Dridex. Microsoft disables Excel 4. 0 macros in all tenants Now, Microsoft plans to reduce the attack surface by actively restricting XLM macros by default for all Excel users. However, IT Administrators will be able to manage this policy setting via Group, Cloud and ADMX policies, and you can find more details in the Microsoft Excel blog post. “As planned, we have now made this setting the default when opening Excel 4. 0 (XLM) macros. This will help our customers protect themselves against related security threats,” the company explained. Microsoft has also provided a timeline for the rollout of the new default configuration across all tenants: Current Channel builds 2110 or greater (first released in October) Monthly Enterprise Channel builds 2110 or greater (first released in December) Semi-Annual Enterprise Channel (Preview) builds 2201 or greater (we create this in January 2022,... --- ### Cloud Conversations - Season 2 Kickoff - Published: 2022-01-21 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-season-2-kickoff/ - Categories: Video - Article Type: Video  Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Season 2 – Kicking off 2022 In this week's episode, Peter, Kat, and Ru introduce new presenter Azure McFarlane! We catch up about where the channel is heading, how our last year went, plans for this one, and a ton of Microsoft 365 chat. More on Cloud Conversations The podcast is hosted by Peter Rising, Ru Campbell and Kat Greenan, all Petri contributors; and Azure McFarlane, a Microsoft Microsoft (MVP), Data Analyst, and Power Platform Consultant. Each week, Peter, Ru, Kat, and Azure speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an MVP in Microsoft Office Apps and Service, and Andy Malone, who is an MVP in Enterprise Mobility and a Microsoft Certified Trainer. --- ### Real World SmartDeploy with Barry Weiss of the Gordon and Betty Moore Foundation - Published: 2022-01-20 - Modified: 2024-04-17 - URL: https://petri.com/real-world-smartdeploy-with-barry-weiss-of-the-gordon-and-betty-moore-foundation/ - Categories: Endpoint Protection - Tags: SmartDeploy - Article Type: Sponsored After struggling for years with tools like Microsoft Deployment Toolkit (MDT), Barry Weiss heard about a simpler and less expensive solution called SmartDeploy at a Microsoft conference. In early 2020, Barry Weiss was preparing to migrate about 100 users at the Gordon and Betty Moore Foundation to new laptops. But we all know what happened next: as the COVID-19 pandemic raged around the globe, workers were all sent home from the office. At first for a few weeks, and then, inevitably, for a much longer period of time. For Weiss, the foundation’s IT Director, the pandemic introduced a new wrinkle into what is, for many, already a complex and time-consuming task. Would it even be possible to roll out over 100 new laptops to a workforce that was now fully remote? And if so, when, and how? There were some logistical hurdles Weiss couldn’t control as well: as was widely reported, the pandemic triggered a hardware shortage, first with PCs and other devices and then with the components needed to build and customize them in the first place. And many of the foundation’s employees essentially scattered during the pandemic, with some moving away from its Palo Alto, California base. Fortunately, Weiss had an ace up his sleeve. After struggling for years with tools like Microsoft Deployment Toolkit (MDT), he heard about a simpler and less expensive solution called SmartDeploy at a Microsoft conference. And after evaluating it for himself, he adopted it in 2015 and has been using it successfully ever since. For those unfamiliar with this solution, SmartDeploy offers simple and scalable image-based PC deployment and management for organizations of all sizes. I feel that it... --- ### How to Use the Terraform Azure Provider to Deploy Cloud Resources > Learn step-by-step about everything you need to know about the Azure Provider for Terraform and how to use it to manage your Azure cloud infrastructure. - Published: 2022-01-20 - Modified: 2024-11-19 - URL: https://petri.com/deploy-resources-terraform-azure-provider/ - Categories: Microsoft Azure - Tags: cloud computing, DevOps, Infrastructure as Code, Microsoft Azure, Terraform - Article Type: How To If you plan to manage and work with Azure along with Terraform, using the Azure provider is a must. The Terraform Azure Provider lets you interact with the many resources supported by Microsoft Azure. In this ultimate guide, you're going to learn, step-by-step, about everything you need to know about the Azure Provider and how to use this provider with Terraform to manage your Azure cloud infrastructure. Let's get started! Prerequisites This tutorial comprises step-by-step instructions. If you'd like to follow along, be sure you have the following in place: Azure account. You can create a free Azure account or use an existing sandbox subscription. Either should work. Azure subscription Terraform – This tutorial will use Terraform v1. 0 running on Ubuntu 18. 04. 5 LTS. Still, any operating system that Terraform supports should work. Azure CLI version 2. 0. 79 or newer. To install the Azure CLI, consider running the below command. sudo curl -sL https://aka. ms/InstallAzureCLIDeb | sudo bash What Is Terraform? Terraform is a tool for building, versioning, and managing the infrastructure in an automated way. Terraform is an Infrastructure-as-Code (IaC) tool that simplifies your infrastructure management by using a simple syntax language called HashiCorp Configuration Language (HCL), which is easier than YAML or JSON formats. Terraform is used with various cloud providers such as Amazon AWS, Oracle, Microsoft Azure, Google Cloud, and many more. Terraform has dozens of benefits, and some of the key features are: Terraform allows you to reuse code multiple times and keep various versions of code, which can be shared among other Terraform developers and administrators. One of... --- ### QNAP NAS Devices Being Targeted by Qlocker Ransomware Again > QNAP, a Taiwan-based network-attached storage (NAS) manufacturer, has issued an advisory about ransomware and brute-force attacks that affect all network-attached storage devices. - Published: 2022-01-19 - Modified: 2024-09-04 - URL: https://petri.com/qnap-nas-devices-being-targeted-by-qlocker-ransomware-again/ - Categories: Hardware, Security - Tags: backup and recovery, News, qlocker, QNAP, Ransomware, storage - Article Type: News QNAP, a Taiwan-based network-attached storage (NAS) manufacturer, has issued an advisory about ransomware and brute-force attacks that affect all network-attached storage devices. The ransomware attacks began targeting the NAS device suite on January 6, and the company urges customers to secure their compromised devices as soon as possible. “Open the Security Counselor on your QNAP NAS. Your NAS is exposed to the Internet and at high risk if there shows “The System Administration service can be directly accessible from an external IP address via the following protocols: HTTP” on the dashboard,” QNAP explained in its security advisory. How to secure exposed network-attached storage (NAS) devices QNAP has recommended its users to follow the steps mentioned below to secure exposed NAS devices. First of all, QNAP customers will need to disable the Port Forwarding function of the router. To do so, navigate to the management interface, and check the Virtual Server, NAT, or Port Forwarding settings. Finally, set the port forwarding setting of NAS management service port (port 8080 and 433 by default) to disabled. Once done, turn off the UPnP function of the QNAP NAS by navigating to the myQNAPcloud option available on the QTS menu. Then, click "Auto Router Configuration" and unselect the "Enable UPnP Port forwarding" option. Qlocker also outlined several steps that should help users to prevent malware infections. Users should ensure that the passwords used for both admin and user accounts are strong, unique, and difficult to crack. Additionally, they should enable IP and account access... --- ### Microsoft Releases Out-Of-Band Windows Server 2019 Update to Address Hyper-V, ReFS and VPN Issues - Published: 2022-01-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-out-of-band-windows-2019-update/ - Categories: Windows Server 2019 - Tags: News, Windows Server, Windows Server 2019 - Article Type: News Microsoft has started rolling out an out-of-band update for Windows Server 2019. The same KB5010791 patch addresses a couple of critical issues introduced with January 2021 Patch Tuesday updates. According to the release notes, this update fixes an issue that causes unexpected restarts on Windows Server domain controllers. Microsoft has also addressed a bug that caused ReFS (Resilient File System) formatted hard drives not to show up at all or to show up as raw, unformatted disks. This update also includes certain improvements to fix broken VPN connections on Windows Server machines. You can check out the full list of improvements in the changelog below: Addresses a known issue that might cause IP Security (IPSEC) connections that contain a Vendor ID to fail. VPN connections using Layer 2 Tunneling Protocol (L2TP) or IP security Internet Key Exchange (IPSEC IKE) might also be affected. Addresses a known issue that might cause Windows Servers to restart unexpectedly after installing the January 11, 2022 update on domain controllers (DCs). Addresses an issue that prevents Active Directory (AD) attributes from being written properly during a Lightweight Directory Access Protocol (LDAP) modify operation when you make multiple attribute changes. Addresses an issue that might prevent removable media that is formatted using the Resilient File System (ReFS) from mounting or might cause the removable media to mount in the RAW file format. This issue occurs after installing the January 11, 2022 Windows update. Microsoft releases out-of-band update for Windows Server versions 2022, 20H2, 20H1, 2016, 2012... --- ### Microsoft Edge Tests New Security Feature to Mitigate "Unforeseen" Zero-Day Exploits > Microsoft has started testing a new security feature for its Edge browser that should help IT admins to protect end-users from zero-day vulnerabilities. - Published: 2022-01-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-edge-update-zero-day-exploits/ - Categories: Microsoft Edge, Security - Tags: Microsoft Edge, News - Article Type: News Microsoft has started testing a new security feature for its Edge browser that should help IT admins to protect end-users from zero-day vulnerabilities. This experimental feature is currently available for Edge Insiders in the Beta Channel. Microsoft Edge comes with built-in phishing and malware protection capabilities that help organizations to protect users from security threats. The new browsing mode allows IT Administrators to apply certain organization-wide policies (such as EnhanceSecurityMode, EnhanceSecurityModeBypassListDomains, EnhanceSecurityModeEnforceListDomains) to Windows, macOS, and Linux machines. This should help to ensure that “important sites and line-of-business applications” continue to function as intended. Microsoft highlights that this feature brings Windows exploit mitigation technologies to protect users from zero-day exploits on the web. It has been designed to enhance the "Super Duper Secure Mode" that quietly launched in Edge back in November 2021. “This feature is a huge step forward because it lets us mitigate unforeseen active zero days (based on historical trends). When turned on, this feature brings Hardware-enforced Stack Protection, Arbitrary Code Guard (ACG), and Content Flow Guard (CFG) as supporting security mitigations to increase users' security on the web,” the Edge Insider team explained. Latest Microsoft Edge Beta build brings a custom primary password option and overlay scrollbars In addition to this new security feature, Microsoft Edge has rolled out a custom primary password option to the Beta Channel. Once enabled, the browser will now require additional authentication before auto-filling passwords to sign into a website. The custom primary password option should prevent unauthorized access to sensitive... --- ### AWS Firewall Manager Adds AWS Shield Advanced Automatic Application Layer DDoS Mitigation - Published: 2022-01-18 - Modified: 2024-09-04 - URL: https://petri.com/aws-firewall-manager-shield-advanced-automatic-application-layer-ddos-mitigation/ - Categories: Amazon Web Services, Security - Tags: AWS, cloud computing, firewall, News, Security - Article Type: News Amazon Web Services has announced some important updates for its AWS Firewall Manager service. The company says that the popular security management tool has added support for AWS Shield Advanced automatic application layer DDoS mitigation. For those unfamiliar, AWS Network Firewall is a security management service that allows users to configure and manage their firewall rules across accounts and applications. It helps to ensure the consistent enforcement of all firewall rules within the organization. AWS Network Firewall also provides an option to customize and import the rules engine from various AWS Partner Network (APN) providers, including Trend Micro, CrowdStrike, and Fortinet. Amazon launched the AWS Shield service back in 2016 to help organizations protect their web applications from DDoS attacks. The security service comes in Standard and Advanced tiers. AWS Shield Standard offers free protection against the most common DDoS attacks to all AWS customers. Additionally, they can subscribe to AWS Shield Advanced to protect their apps against large and sophisticated attacks. AWS Firewall Manager can now automatically block application layer DDoS attacks This new set of capabilities enables Shield Advanced customers to configure the AWS Firewall Manager to detect and mitigate application-layer DDoS attacks automatically. This feature counts and blocks all web requests involved in the attack. “Shield Advanced compares current traffic patterns against historic traffic baselines to detect deviations that might indicate a DDoS attack. When you enable automatic application layer DDoS mitigation for a resource, Shield Advanced responds to detected DDoS attacks by creating, evaluating, and deploying... --- ### Microsoft Releases Out-Of-Band Patches To Fix Windows 10 VPN Connection, Windows Server Issues > Microsoft has released out-of-band patches to address several issues related to VPN connections, Domain Controllers (DC), and Hyper-V caused by this month’s Patch Tuesday updates. - Published: 2022-01-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-out-of-band-vpn-patches-windows-server/ - Categories: Windows 10, Windows 11, Windows Server - Tags: News, Windows 10, Windows 11, Windows Server - Article Type: News Microsoft has released out-of-band patches to address several issues related to VPN connections, Domain Controllers (DC), and Hyper-V caused by this month’s Patch Tuesday updates. These optional updates are now available for all supported versions of Windows, including Windows 11, Windows 10, Windows 8. 1, Windows 7, as well as Windows Server. “Microsoft is releasing Out-of-band (OOB) updates today, January 17, 2022, for some versions of Windows. This update addresses issues related to VPN connectivity, Windows Server Domain Controllers restarting, Virtual Machines start failures, and ReFS-formatted removable media failing to mount,” Microsoft noted on its Windows Health Dashboard yesterday. Last week, Microsoft confirmed that the latest updates trigger VPN connectivity problems on both Windows 10 and Windows 11 devices. “After installing KB5009566, IP Security (IPSEC) connections which contain a Vendor ID might fail. VPN connections using Layer 2 Tunneling Protocol (L2TP) or IP security Internet Key Exchange (IPSEC IKE) might also be affected,” the company explained. In addition to VPN connection issues, IT Admins reported that Windows Server domain controllers are affected by constant reboots, Hyper-V Start-up, and Resilient File System (ReFS) accessibility issues. How to download the out-of-band updates on Windows PCs Here is a list of the optional patches that you can download for each version of Windows to fix the January Patch Tuesday update problems: Windows version Microsoft Update Catalog update Windows 11, version 21H1 KB5010795 Windows Server 2022 KB5010796 Windows 10 (21H2)      KB5010793 Windows 10 (21H1)  KB5010793 Windows 10 (20H2), Windows Server (20H2)  KB5010793 Windows... --- ### Microsoft Teams Public Preview Now Lets Users Mute Meetings Notifications > Microsoft Teams is getting a new update that will allow users to mute notifications during Teams meetings. The company has recently announced that the Mute notifications feature is now available in public preview for desktop and web users. - Published: 2022-01-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-mute-notifications-meetings/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that will allow users to mute notifications during Teams meetings. The company has recently announced that the Mute notifications feature is now available in public preview for desktop and web users. The Mute notifications feature expands the existing capability in Microsoft Teams that lets users customize their notifications settings. The ability to turn off notifications has been a top-requested feature from users, and it should make it easier to stay focused during Teams meetings. “As all meetings became online meetings Teams notifications left users distracted causing them to lose focus. Supporting Mute Notifications during meeting was called out by users in multiple forums and we are excited to roll out this new change to our preview audience. This feature will allow users to mute notifications during meetings thereby helping retain focus while on calls,” Microsoft explained in a blog post. How to mute notifications in Microsoft Teams meetings Microsoft says that it’s up to the participants to mute notifications while attending a specific meeting or for all Teams meetings. To disable notifications during all meetings, head to Settings >> Notifications >> Meetings and then turn on the “Mute Notifications during meetings” toggle button. Users can also choose to enable/disable notifications on a per meeting basis by clicking the More Actions (... ) menu available on the meeting window. Microsoft plans to begin rolling out the Mute notifications option to all Teams users in early February, and all users should have it by... --- ### Microsoft Defender Exclusions List Can Be Read by Attackers in Windows 10 > Security researchers have discovered a flaw in Microsoft Defender Antivirus that could allow attackers to bypass the malware detection solution on Windows machines. - Published: 2022-01-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-exclusions-list-windows-10/ - Categories: Security, Windows 10 - Tags: Microsoft Defender, News, Windows 10 - Article Type: News Security researchers have discovered a flaw in Microsoft Defender Antivirus that could allow attackers to bypass the malware detection solution on Windows machines. According to a report from Bleeping Computer, this issue specifically impacts Windows 10 devices running version 21H1 and 21H2. Microsoft Defender is the default anti-malware software, which scans files and processes to protect Windows PCs from viruses, malware, ransomware, and other security threats. It also provides an option to prevent a particular file, file type, folder, process, or location from malware scanning by adding them to the exclusions list. This feature comes in handy in scenarios where some legitimate apps are incorrectly classified as malicious. As the exclusion lists differ from one user to another, threat actors can abuse this information to track these locations and store malicious files on Windows 10 devices. Antonio Cocomazzi, a Threat Intelligence Researcher at SentinelOne, explained that Microsoft Defender allows any local user to read the sensitive data stored in the exclusion lists via registry query, regardless of their permissions. https://twitter. com/splinter_code/status/1481073265380581381 Microsoft Defender security flaw was first discovered 8 years ago Additionally, cyber security architect Nathan McNulty warned that attackers could also exploit the registry tree to access exclusions lists for multiple systems. “For those configuring Defender AV on servers, be aware that there are automatic exclusions that get enabled when specific roles or features are installed,” McNulty explained on Twitter. However, keep in mind that these automatic exclusions don’t include custom install locations. It is important to note that this... --- ### How to Prevent Data Leakage in Microsoft Teams with Data Loss Prevention > A Microsoft Teams data loss prevention (DLP) policy can help protect your organization’s sensitive data by preventing users from sharing, sending, and storing that data outside the Teams client. Learn how to set up a Teams DLP policy here. - Published: 2022-01-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-data-loss-prevention/ - Categories: Compliance, Microsoft Teams - Tags: Data Loss Prevention, DLP, Microsoft 365, Microsoft Teams - Article Type: How To As more employees shift to working remotely, it is more important than ever that organizations prioritize protecting their business-critical and sensitive data across apps, endpoints, and cloud services. Employees will be accessing, sharing, creating, and storing data in new ways than before, meaning the need to make sure this is protected and compliant is more imperative. And with this massive growth of corporate data exacerbated by increasing remote work and complex regulatory requirements to protect and govern this data, managing risk is essential to digital transformation. What is Data Loss Prevention? Data loss prevention (DLP) is the process of preventing sensitive data from being lost, misused, or accessed by unauthorized users. Typically, DLP software identifies violations of policies defined by organizations or driven by regulatory compliance such as HIPAA, NIST Cybersecurity Framework, or GDPR. In addition, DLP enforces remediation immediately upon detection of violations via alerts, encryption, and other protective measures to ensure end-users do not accidentally or maliciously share data with others that could compromise the organization. Furthermore, the DLP can provide compliance and audit requirements reporting and identify weaknesses and anomalies in forensic analysis and incident response. Does Microsoft have a DLP solution? Microsoft's DLP solution provides a broad range of capabilities to address the modern workplace and the unique challenges of these very different environments. One of the key investment areas is providing a unified and comprehensive solution across the many different devices and services where sensitive data is stored and used, including environments native to... --- ### This Week in IT – When Windows Updates go Loopy - Published: 2022-01-14 - Modified: 2022-03-26 - URL: https://petri.com/this-week-in-it-when-windows-updates-go-loopy/ - Categories: Video - Article Type: Video In this week's edition of This Week in IT, Microsoft messes up Patch Tuesday updates in grand style, causing Windows Server Active Directory domain controllers to go into a reboot cycle, LT2P VPNs to stop working, and much more. There are also updates to Microsoft Teams for frontline workers, Norton adds crypto currency mining to its 360 antivirus suite, and Azure AD Continuous Access Evaluation is now generally available. This Week in IT – When Windows Updates go Loopy This week in IT is a weekly podcast hosted by Petri’s Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short 5-minute video. --- ### Windows 10 Multiple Monitor Tricks > In today’s Ask the Admin, I’ll show you a couple of tricks that make working with multiple monitors easier. I'll show you have to change the orientation of your displays to up and down instead of sideways, and how to quickly extend displays using a keyboard shortcut. - Published: 2022-01-14 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-multiple-monitor-tricks/ - Categories: Windows 10, Windows Client OS - Tags: Multiple Monitors, Productivity, Windows, Windows 10 - Article Type: How To In today’s Ask the Admin, I’ll show you a couple of tricks that make working with multiple monitors easier. In today’s Ask the Admin, I’ll show you a couple of tricks that make working with multiple monitors in Windows 10 easier. For those of us lucky enough to have multi monitor setups or just a notebook that you connect to an external display when it’s docked, productivity can get a series boost. I don’t have multiple monitors, but I often use my notebook’s screen simultaneously with an external display to get work done faster. Use a notebook display with an external monitor in Windows 10 One of the disadvantages of using multiple displays of separate sizes is that wherever you position the notebook, it will always require you to move your head into a position that changes your posture to something that’s less than idea. And over a long period, it can cause fatigue and other aches and pains. If you decide to use an external monitor with your notebook’s display, try positioning the notebook directly below your external monitor rather than to one side. So instead of moving your head sideways and then downwards, you just need to move your head downwards to see the notebook. Set your displays up and down instead of sideways You can configure this display setup in Windows 10 using the Settings app. By default, when you enable a second display, Windows places them side-by-side. But if you want to position your notebook below an external display, in the Settings app drag the screen identified as below the external display ... . --- ### Making Office 365 More Sustainable with Self-Service Restore - Published: 2022-01-14 - Modified: 2024-04-17 - URL: https://petri.com/making-office-365-more-sustainable-with-self-service-restore/ - Categories: Microsoft 365 - Tags: Backup, Exchange Online Backup, Microsoft 365 backup, Office 365 backup, OneDrive for Business Backup, Restore, self-service restore, SharePoint Backup, teams backup - Article Type: Sponsored In the first four parts of my occasional series on Microsoft 365 backups, I've been fairly cynical. In my final part in the series, I'm looking at Microsoft 365 backup solutions from an angle that provides value; self-service restore. This article is sponsored by afi. ai Firstly, as a quick recap if you missed the first four parts: Microsoft 365 doesn't have a traditional backup solution built-in, as it's designed to meet the needs that a backup solution typically fulfils. Backup solutions for Microsoft 365 have limitations, and in some cases can't restore the data. Retention policies you can keep data for as long as you need, and you can use admin portals and PowerShell to restore data. You can even backup and restore configuration state with PowerShell scripts. You aren't likely ever going to use an Office 365 backup solution as a DR solution The point I've been at pains to make in the series is that several backup vendors' websites don't tell the truth. Some use the Microsoft consumer agreement to trick customers into thinking they need a backup solution. Some also forget to mention tell you that retention capabilities allow you to decide how long data is retained until it's deleted. The biggest point though is what's not mentioned. Restore times will be longer than you might expect - even with SaaS solutions. You can't realistically expect in the event of extended downtime to restore your data from a backup to a different service in a timely fashion. Many... --- ### Microsoft Provides Workaround for L2TP VPN Connections Issues on Windows > Microsoft has acknowledged a new bug that is preventing its built-in Windows client from connecting to a Virtual Private Network (VPN). - Published: 2022-01-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-l2tp-vpn-connections-windows/ - Categories: Windows 10, Windows 11 - Tags: News, Patch Tuesday, Windows 10, Windows 11 - Article Type: News If you’ve been having issues with VPN connections after installing the January 2022 Patch Tuesday updates on your Windows PCs, you’re not alone. Microsoft has acknowledged a new bug that is preventing its built-in Windows client from connecting to a Virtual Private Network (VPN) and it has provided a workaround while it investigates the problem further. The Redmond giant confirmed on its Windows Health Dashboard yesterday that its recent cumulative updates for Windows 10 (KB5009543) and Windows 11 (KB5009566) are causing problems with select IPSEC connections. “After installing KB5009543, IP Security (IPSEC) connections which contain a Vendor ID might fail. VPN connections using Layer 2 Tunneling Protocol (L2TP) or IP security Internet Key Exchange (IPSEC IKE) might also be affected,” the company explained. The problem has been reported by several IT administrators in a Reddit thread, which explains that users encountered a VPN connection error 789 when trying to use the Windows VPN client. “Can’t connect to VPN. The L2TP connection attempt failed because the security layer encountered a processing error during initial negotiations with the remote computer. ” The reports suggest that users have also noticed this bug with some third-party VPN providers, including Cisco Meraki, SonicWall, Ubiquiti, WatchGuard Firewalls, as well as the WatchGuard client. Microsoft provides a workaround for the L2TP VPN connections issue Microsoft has said that it's actively investigating the VPN connection issues and plans to deliver a fix in an upcoming update. In the meantime, the company has asked users to mitigate the bug by... --- ### What is Azure Stack HCI? > Learn more about Azure Stack HCI. In this article, you will learn what Azure Stack HCI is and how it differs from Azure Stack Hub. We discuss deployment requirements and scenarios, and the advantages of choosing Azure Stack HCI to run services and applications in a hybrid cloud environment. - Published: 2022-01-14 - Modified: 2024-11-19 - URL: https://petri.com/what-is-azure-stack-hci/ - Categories: Azure, Azure Stack HCI, Microsoft Azure - Tags: Azure Stack HCI, Microsoft Azure, Windows Server - Article Type: Overview   Learn more about Azure Stack HCI, a preconfigured, validated offering that enables you to deploy a cloud in your own datacenter. What is Azure Stack HCI? Microsoft Azure Stack HCI is a cluster solution, based on a hyperconverged infrastructure (HCI). It is designed to host virtualized Windows and Linux workloads and their storage in a hybrid environment. It bridges the gap between on-premises infrastructure and Azure cloud services. Azure Stack HCI (Image Credit: Microsoft) Most apps and server roles must run inside of virtual machines (VMs) because Azure Stack HCI is intended as a virtualization host. There are exceptions: Hyper-V, Network Controller, and other components required for Software Defined Networking (SDN) or for the management and health of hosted VMs. There are many features and IT goals that you can accomplish with this solution, including enterprise virtualization, high availability, Microsoft SQL Server at scale, centralized and automated update management, central security updates, and many more! Azure Stack HCI is a sea change in how to deploy a cloud Over the past two years (and beyond... ), the 'customer reality' is transforming. You know that digital transformation we consistently hear about? Yes. 90% of enterprises remain hybrid. 93% of enterprises have a multi-cloud strategy. Organizations have 100's to 1000's of apps amongst VMs, databases, containers, . NET applications, and on and on. A diverse infrastructure consisting of datacenters, branch offices, OEM hardware, even IoT devices muddies the waters of having to maintain and support all this infrastructure... . --- ### Latest Windows Server Updates Trigger DC Reboot Loop and Hyper-V Start-Up Issues > Microsoft is once again dealing with a buggy Patch Tuesday update after Windows Server admins started complaining about domain controller (DC) boot loops, Hyper-V issues, and more. - Published: 2022-01-13 - Modified: 2024-09-04 - URL: https://petri.com/latest-windows-server-updates-dc-reboot-loop-hyper-v/ - Categories: Windows Server - Tags: News, Patch Tuesday, Windows Server - Article Type: News Earlier this week, Microsoft released the January Patch Tuesday updates for all supported versions of Windows Server to address issues with the Active Directory (AD) attributes. However, the Redmond giant is once again dealing with a buggy update after Windows Server admins started complaining about domain controller (DC) boot loops, Hyper-V issues, and more. Domain Controller (DC) boot loops on all supported Windows Server versions As reported by Bleeping Computer, the latest Patch Tuesday updates for Windows Server have introduced an unexpected bug that forces Windows domain controllers to enter a boot loop after every few minutes. The reboots are caused because the LSASS. exe process consumes all CPU resources on the server and then terminates. The reports suggest that this issue triggers spontaneous reboots with error codes 0xc0000005 and 0xc0000006, and it currently affects all supported Windows Server versions. "The process wininit. exe has initiated the restart of computer on behalf of user for the following reason: No title for this reason could be found Reason Code: 0x50006 Shutdown Type: restart Comment: The system process 'C:WINDOWSsystem32lsass. exe' terminated unexpectedly with status code -1073741819. The system will now shut down and restart," the original poster shared on Reddit. Hyper-V Start-up issues In addition to the Windows domain controller boot loops, some IT admins have reported another issue that is preventing Hyper-V from starting on Windows Server machines. As a result, users will get the following error when launching virtual machines: "Virtual machine xxx could not be started because the hypervisor is not... --- ### Microsoft Zero Trust Solutions Help Drive 50% Lower Chance of Data Breach, Says New Research Study - Published: 2022-01-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-zero-trust-data-breach-reduced-risk/ - Categories: Security - Tags: News, Zero Trust - Article Type: News Microsoft has published a new study detailing the potential financial implications of implementing a Zero Trust architecture with its security solutions. The research study, dubbed Total Economic Impact, was released in December 2021 and highlighted the costs, benefits as well as risks associated with this investment. The research study was conducted by Forrester Consulting, a popular market research & advisory company that helps organizations use customer obsession to accelerate growth. As part of the research, Forrester Consulting interviewed eight decision-makers at five companies undergoing Zero Trust journeys. The researchers found that the adoption of Microsoft Zero Trust solutions can help to enhance security and reduce the chance of a data breach by 50 percent. Additionally, the study reveals that implementing a Zero Trust security strategy yields a three-year 92 percent return on investment (ROI) with a payback period of less than six months. These organizations also reported significant efficiency gains (50 percent or higher) due to improved security processes. Zero Trust strategy can help to prevent data breaches Microsoft added that around 44 percent of information security leaders anticipate their budgets to grow within the next 12 months. “Zero Trust has become the essential security strategy for successfully preventing data breaches and mitigating risk in today’s complex cybersecurity landscape,” explained Vasu Jakkal, CVP of Security, Compliance and Identity. “These customers were able to improve their security posture, reduce costs, achieve greater business agility, and increase efficiency in managing security. ” Microsoft is a big advocate of the Zero Trust architecture that... --- ### Microsoft Announces General Availability of Azure AD Continuous Access Evaluation - Published: 2022-01-12 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-continuous-access-evaluation/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure AD, News - Article Type: News Microsoft unveiled a new Continuous Access Evaluation (CAE) security solution for its Azure AD Conditional Access service back in October 2020. The company has recently announced that the CAE feature is generally available for enterprise customers. With this new service, Azure Active Directory customers can securely revoke an access token and force a re-authentication of the specific user as a result of an event or a context change for CAE compatible clients. CAE support is currently available for Exchange Online, SharePoint Online, and Microsoft Teams. You can check out the full list of all supported platforms on this support page. Microsoft says that CAE is a part of its "Azure AD Zero Trust Session Management portfolio," and it enables customers to enforce account lifecycle events and policies such as account revocation, account disablement/deletion, password change, user location change, and user risk increase. “With CAE, we have introduced a new concept of Zero Trust authentication session management that is built on the foundation of Zero Trust principles–Verify Explicitly and Assume Breach. With the Zero Trust approach, the authentication session lifespan now depends on session integrity rather than on a predefined duration,” the company explained. How to migrate Continuous Access Evaluation (CAE) settings to a Conditional Access policy IT Admins will be able to access the CAE feature under the "Session" blade menu item available on the Azure portal. For organizations that have previously configured CAE settings under “Security,” Microsoft has provided a step-by-step guide to migrate settings to a new Conditional... --- ### Patch Tuesday January 2022 - Wormable Bug in Windows and a Critical Bug in Exchange Server Get Fixes - Published: 2022-01-12 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-january-2022-wormable-bug-in-windows-critical-bug-exchange/ - Categories: Exchange Server, Windows 10 - Tags: Exchange Server, Microsoft Office, News, Patch Tuesday, Security, Windows, Windows Server - Article Type: News Microsoft patches a wormable bug in http. sys in Windows and Windows Server. There are also fixes for three remote code execution vulnerabilities in Exchange Server. And Adobe releases fixes for 26 flaws in Acrobat and Reader. So, let's get started! Windows and Windows Server This month there are fixes for six zero-days in Windows and Windows Server but none of them are known to exploited by attackers in the wild at the time of release, although that’s likely to change naturally. Two of the zero-days, CVE-2021-36976 and CVE-2022-21874, are remote code execution (RCE) flaws. And CVE-2022-21836 is a certificate spoofing bug, which already has publicly available proof of concept code. Wormable flaw in http. sys But more concerning than the zero-days listed above is a wormable flaw in http. sys. CVE-2022-21907 could let an attacker execute code on an affected device using specially crafted network packets using the HTTP protocol. It doesn’t require any user interaction or special rights. Check your servers get patched first and then client devices. Microsoft says: "In Windows Server 2019 and Windows 10 version 1809, the HTTP Trailer Support feature that contains the vulnerability is not active by default. " Devices are vulnerable if the following registry key is present: HKEY_LOCAL_MACHINESystemCurrentControlSetServicesHTTPParameters "EnableTrailerSupport"=dword:00000001 Active Directory elevation of privilege flaw CVE-2022-21857 is a bug that could let an attacker elevate rights across an Active Directory trust boundary under specific conditions. An attacker would require some access already to Active Directory. Microsoft has rated the bug Critical. Exchange Server Following on... --- ### Microsoft Teams and Viva Add New Features To Empower Frontline Workers - Published: 2022-01-12 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-viva-updates-frontline-workers/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, Microsoft Viva, News, Viva Connections, Viva Learning - Article Type: News Microsoft has announced a slew of new features and capabilities for Teams and Viva. The company says that these improvements are aimed at helping to “reduce stress, modernize training, and rebuild culture for those on the frontline. ” For IT Admins, Microsoft has unveiled some updates coming to the device management experience to allow frontline workers to locate and secure misplaced shared devices. In addition to the existing GPS-powered map integration in Microsoft Endpoint manager, IT Admins can now send audio notifications to easily find misplaced devices. Frontline workers who have configured their Android devices in Shared Device Mode via Azure Active Directory will be able to sign out of all supported apps with a single tap. Microsoft is also introducing new tools to make it easier for frontline workers to manage their virtual appointments in Teams. Later this month, the new scheduled queueing feature will enable users to get real-time updates about missed appointments, wait times, as well as staffing delays. Microsoft Teams is getting a new Zebra Reflexis integration that lets managers approve shift scheduling and time-off requests directly from the app. Microsoft Teams' Walkie Talkie feature is now generally available on iOS devices The Redmond giant is bringing its push-to-talk Walkie Talkie feature in Teams to iOS devices. The Walkie Talkie feature has been available on Android since 2020, and it provides instant and secure voice communication over the cloud. Furthermore, the Walkie Talkie app in Teams is now available on a bunch of Zebra mobile devices, including... --- ### Norton 360 Antivirus Suite Adds Optional Crypto Mining > Norton has released a new update for its Norton 360 security suite that allows users to mine Ethereum cryptocurrency directly within the application. - Published: 2022-01-11 - Modified: 2024-09-04 - URL: https://petri.com/norton-360-antivirus-crypto-mining/ - Categories: Security - Tags: Antivirus, Crypto, News, Norton - Article Type: News Norton has released a new update for its Norton 360 security suite that allows users to mine Ethereum cryptocurrency directly within the application. The cyber security company claims that the Norton Crypto feature is secure and reliable, but it is currently facing backlash for bundling a cryptocurrency mining program with its antivirus service. For those unfamiliar, NortonLifeLock first unveiled its plans to add the Norton Crypto feature to its Norton 360 antivirus program back in June 2021. According to the company, the new mining feature helps to “protect” users from malicious mining software. Previously, it was only available to a limited number of participants enrolled in its early adopter program, but it seems like the tool is now available for everyone. The Norton Crypto feature is not enabled by default The frequently asked questions (FAQ) section on the company’s official website states that the Norton Crypto feature is not enabled by default. However, some Twitter users claim that the latest version is installing the crypto miner tool on their computers without their consent. Others complained that Norton didn’t provide an option to easily uninstall the program from their PCs. Norton says that users can remove the crypto miner by temporarily turning off the tamper protection feature and manually deleting the NCrypt. exe file from their computer. “Norton Crypto is an opt-in feature only and is not enabled without user permission. If users have turned on Norton Crypto but no longer wish to use the feature, it can be disabled by temporarily shutting... --- ### Microsoft Azure Virtual Desktop Service Adds Trusted Launch Virtual Machines Support - Published: 2022-01-11 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-azure-virtual-desktop-trusted-launch/ - Categories: Microsoft Azure - Tags: Azure Virtual Desktop, Azure. Security, News - Article Type: News Microsoft has announced that it is bringing Trusted Launch support to the Azure Virtual Desktop service. The company says this new capability aims to protect virtual machines in enterprise environments from advanced and persistent attacks. Microsoft Azure Virtual Desktop is a cloud-based solution that enables end-users to access their desktop and applications virtually from any device. This new Trusted launch support brings several new configurable security features such as Secure Boot, virtual Trusted Platform Module (vTPM), as well as Virtualization-based security (VBS) capabilities. The Secure Boot feature offers protection at the operating system boot-up level by preventing the installation of malware (boot kits) and driver, firmware, and OS kernel-based rootkits. The feature has been designed to ensure that the computer system can only boot with trusted operating systems and drivers from the Original Equipment Manufacturer (OEM). Trusted Platform Module (vTPM) and Virtualization-based security protections In addition to Secure Boot, the Trusted launch service introduces virtual Trusted Platform Module (vTPM) support for the Azure Virtual Desktop. It allows the guest operating system to create and store private security keys that helps to reduce the attack surface. “Trusted launch provides your VM with its own dedicated TPM instance, running in a secure environment outside the reach of any VM,” the company explained. “Trusted launch uses the vTPM to perform remote attestation by the cloud. This is used for platform health checks and for making trust-based decisions. As a health check, trusted launch can cryptographically certify that your VM booted correctly. ” The Virtualization-Based... --- ### SonicWall Releases Patches for Critical Y2K22 Bug Affecting Email Security Products > SonicWall, the cyber-security firm has announced that the Y2K22 bug has affected some of its email security and firewall products. The company released new security updates last week to address the Microsoft Exchange Server vulnerability. - Published: 2022-01-10 - Modified: 2024-09-04 - URL: https://petri.com/sonicwall-y2k22-bug-email-security-products/ - Categories: Security - Tags: Exchange Server, News, Security, SonicWall, Y2K22 - Article Type: News SonicWall, the cyber-security provider has announced that the Y2K22 bug has affected some of its email security and firewall products. The company released new patches last week to address the issue, which has been causing junk box and message log updates failures since January 1, 2022. As the cyber-security firm explained, the SonicWall Y2K22 bug prevented both IT admins and end-users from accessing the “junk box or un-junk new emails” on all affected machines. Moreover, administrators were unable to use the message logs needed for tracking inbound and outbound emails because the Sonicwall email security appliance stopped updating its mail flow logs and junk box. The issue has been reported by several customers on Reddit and the SonicWall community forums. Fortunately, SonicWall has confirmed that a patch is now available for the North American and European instances of its cloud email security service called “Hosted Email Security. " The cyber-security company also released patches for SonicWall customers using Anti-Spam Junk Store functionality on firewalls running SonicOS 6. x as well as on-premises Email Security Appliance. “Customers using Email Security Appliance (On-Prem) should upgrade their firmware to ES 10. 0. 15. Upgrade to ES 10. 0. 15 will automatically start the database rebuild and the process can take a few hours to complete depending on the amount of data. Junk Box emails and Message Logs will be displayed accurately after the database is fully rebuilt. Please refer to the knowledge base (KB) article for guidance on firmware upgrade,” the company explained. SonicWall recommends IT Admins download the... --- ### PowerToys 0.53.1 Brings New Always On Top Tool and Web Search Plugin > Microsoft has released a new update for its PowerToys suite of tools this week. The latest update (version 0.53.1) brings a new Always on Top feature that allows power users to pin the active window so that it always stays on top of all other applications. - Published: 2022-01-07 - Modified: 2024-09-04 - URL: https://petri.com/powertoys-update-always-on-top-web-search/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11 - Article Type: News Microsoft has released a new update for its PowerToys suite of tools this week. The latest update (version 0. 53. 1) brings a new Always on Top feature that allows power users to pin the active window so that it always stays on top of all other applications. The Always on Top tool is one of the top-requested features, and it has been designed to improve the multitasking experience on Windows PCs. Users will be able to pin or unpin a selected window with a quick keyboard shortcut (Windows key + Ctrl + T). PowerToys Settings also provide an option to set a border around the pinned app to make it stand out from all other windows. Additionally, users can manually exclude some applications from the Always on Top setting.   Microsoft has added a new web search plugin to PowerToys Run PowerToys version 0. 53. 1 also brings some enhancements to the PowerToys Run tool. Microsoft has added a new web search plugin that lets users quickly search the web by entering a query that starts with the “? ? ” command. The feature uses the default search engine and web browser to open the search results on Windows machines. Microsoft has also announced that the File Explorer add-ons are getting support for G-code files. The PowerToys team and the open-source developer community have collaborated to bring this feature that allows users to preview G-code files via thumbnails. This release also includes bug fixes and enhancements to other PowerToys utilities, including Video Conference mute, FancyZones,... --- ### Microsoft Provides a Temporary Workaround for Outlook Search Issues on Windows 10 > Microsoft has acknowledged a new issue that is currently preventing recent emails from appearing in Outlook search results. The bug was discovered following the release of the December Patch Tuesday updates last month. - Published: 2022-01-07 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-workaround-outlook-search-issues-windows-10/ - Categories: Outlook, Windows 10 - Tags: News, Outlook, Windows 10 - Article Type: News Microsoft has acknowledged a new issue that is currently preventing recent emails from appearing in Outlook search results. The bug was discovered following the release of the December Patch Tuesday updates last month, and it only impacts Windows 10, version 21H2 at the moment (via Bleeping Computer). The first bug reports surfaced on Microsoft Tech Community forums last month, with several users reporting that the Outlook search function stopped working properly after installing the latest Windows 10 KB5008212 security update. Fortunately, Microsoft is actively investigating the Outlook search bug and it is working on a resolution. As a workaround, Microsoft recommends that users should disable the Windows Desktop Search service for Outlook so that the app can use its native search capabilities. How to fix Outlook search issues on Windows 10 21H2 First of all, right-click the Start menu and click the Run option in the list. Open the registry editor by typing “regedit” in the Run dialog box and click the Ok button. Locate and click on the following registry key in the Registry Editor: HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows Next, select Edit > New > Key and name the new registry key "Windows Search” and press Enter to confirm. Select the newly created Windows Search key, click Edit > New, and create a new DWORD Value. Name the value “PreventIndexingOutlook” and press the Enter key. Double-click the “PreventIndexingOutlook” entry, set its value to 1, and then click the OK button. Once done, close the Registry Editor, restart the Outlook app and check... --- ### Microsoft Defender for Endpoint Rolls Out Zero-Touch Onboarding Support to iOS Devices - Published: 2022-01-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-endpoint-zero-touch-ios/ - Categories: Mobile, Security - Tags: Microsoft Defender for Endpoint, News, Security - Article Type: News Microsoft has announced its Defender for Endpoint solution has added support for zero-touch onboarding on iOS. This feature is now available in public preview, and it should enable IT administrators to quietly install the Microsoft Defender for Endpoint app on enrolled iOS devices without any user interaction. “With this new capability, enterprises can now deploy Microsoft Defender for Endpoint on iOS devices that are enrolled with Microsoft Endpoint Manager automatically, without needing end-users to interact with the app. This eases the deployment frictions and significantly reduces the time needed to deploy the app across all devices as Microsoft Defender for Endpoint gets silently activated on targeted devices and starts protecting your iOS estate," the company explained. For those unfamiliar, Microsoft Defender for Endpoint (MDE) is basically a cloud-powered solution that allows organizations to protect and secure endpoint devices available within an enterprise network. It makes it easier to detect and mitigate security vulnerabilities, reduce the potential attack surface, as well as streamline the endpoint security management process. Microsoft Defender for Endpoint automatically blocks insecure connections from malicious apps, emails, and websites Microsoft launched its Defender for Endpoint solution on iOS back in December 2020. The app automatically blocks insecure connections from malicious apps, emails, and websites to protect enterprise iPads/iPhones from phishing attacks. The security solution also provides jailbreak detection and vulnerability assessment services. To get started, IT Admins will need to follow the steps detailed in this support document to set up the zero-touch onboarding configuration profile. Once the... --- ### This Week in IT: Can Intel 12th Gen Mobile CPUs Compete with Apple's M1 Chip? - Published: 2022-01-07 - Modified: 2022-03-26 - URL: https://petri.com/intel-12th-gen-mobile-cpus-vs-apple-m1/ - Categories: Video - Tags: AMD Ryzen 6000, CES 2022, Exchange Server, Intel 12th Gen, Microsoft Pluton, Microsoft Teams, News, Remote Desktop, Windows Server, Y2K22 - Article Type: Video In this edition of This Week in IT, at CES AMD releases its Ryzen 6000 series CPUs with Microsoft's Pluton security chip and Intel announces its 12th generation hybrid architecture CPUs for mobile devices, but can they compete with the Apple M1 chip? Microsoft releases a hangover cure for Exchange Server administrators to solve their transport queue woes caused by the Y2K22 bug, Microsoft Teams is getting a new "Hide Your Own Video" feature to reduce meeting fatigue, Windows Server gets an out-of-band patch to fix a Remote Desktop problem. This week in IT - Exchange Y2K22 bug and Intel 12th Gen CPUs vs. Apple M1 This week in IT is a weekly podcast hosted by Petri's Editorial Director Russell Smith. Each week, Russell rounds up the most important stories for IT pros in a short 5-minute video. --- ### What is Active Directory: The Ultimate Guide - Published: 2022-01-06 - Modified: 2024-03-13 - URL: https://petri.com/what-is-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Windows Server - Article Type: Overview Active Directory is Microsoft's on-premises identity and access management (IAM) service. In this article, learn how Active Directory (AD) makes it easier for IT to manage an organization’s IT resources. Active Directory is especially useful for companies that have to manage lots of endpoints and servers. What is Active Directory and why is it used? Active Directory (AD) is a database from Microsoft that stores information about objects on the network and makes this information easy for administrators and users to find and use. Objects might include user accounts, computer accounts, and resources like file and print servers. Active Directory uses a structured data store as the basis for a logical, hierarchical organization of directory information. Think of it as a telephone directory but for objects, devices, and resources on a network. AD controls much of the activity that goes on in your IT environment. In particular, as an IAM service, it makes sure each person is who they claim to be (authentication), usually by checking the user ID and password they enter and allowing them to access only the data and resources they’re allowed to use (authorization). What is Active Directory Domain Services? Active Directory Domain Services (AD DS), is the Server Role in Windows Server that you install if you want to promote the server to a domain controller (DC).   What are domain controllers used for? DCs host a copy of the AD database and they perform authentication and authorization functions to make resources and data available... --- ### Intel Announces 12th-Gen Mobile CPUs at CES - Published: 2022-01-05 - Modified: 2024-09-04 - URL: https://petri.com/intel-12th-gen-mobile-cpus-at-ces/ - Categories: Hardware - Tags: Intel, News - Article Type: News Intel has announced its 12th Gen Intel Core lineup of mobile processors at the CES 2022 event. The latest chips are built on Intel’s existing 12th Gen Alder Lake architecture, which has been available for desktop PCs since last year. The 12th-generation processors come with a new Intel Thread Director technology for better efficiency and performance. “Intel's new performance hybrid architecture is helping to accelerate the pace of innovation and the future of compute,” explained Gregory Bryant, executive vice president and general manager of Intel’s Client Computing Group. “And, with the introduction of 12th Gen Intel Core mobile processors, we are unlocking new experiences and setting the standard of performance with the fastest processor for a laptop – ever. ” 12th generation H-Series processors are built on the Intel 7 process Intel mentions that the new 12th generation H-series processors are built on the Intel 7 process. The chipmaker claims that these chips bring several enhancements over the previous generation. Although Intel 7 shouldn't be confused with a 7nm process. It's the new name for Intel's 10 nm Enhanced SuperFin processor die. First of all, the flagship Core i12900HK is "the fastest mobile processor ever and the world’s best mobile gaming hardware. " It will be available at a 5GHz maximum frequency with 20 threads and 14 CPU cores. Intel says the processor should deliver 28 percent better performance than its predecessor and up to 43 percent performance improvement in "3D rendering gen-over-gen. " Additionally, the company has unveiled the 12th generation U-series... --- ### Lenovo Announces New Microsoft Pluton-Powered ThinkPads with AMD Ryzen 6000 CPUs - Published: 2022-01-05 - Modified: 2024-09-04 - URL: https://petri.com/lenovo-microsoft-pluton-thinkpads-amd-ryzen-6000/ - Categories: Security - Tags: AMD, AMD Ryzen 6000, Lenovo, News, Pluton, Security, ThinkPad, Windows 11 - Article Type: News Microsoft unveiled its Pluton security processor back in November 2020, which is designed to make CPUs more secure by protecting PCs from the most sophisticated types of attacks. At CES 2022, Lenovo announced its Ryzen 6000-powered ThinkPad Z-series laptops, including the Lenovo ThinkPad Z13 and Z16. https://youtu. be/utfK3myvIlA   The new Lenovo ThinkPads are the first Windows 11 PCs that come with integrated Microsoft Pluton security chips. The Pluton processor delivers greater protection than the existing Trusted Platform Module (TPM), a dedicated chip that handles security features like BitLocker, Windows Hello, and System Guard. Specifically, the ThinkPad Z13 and Z16 laptops use Pluton to store sensitive data such as credentials and encryption keys. This new approach should help to protect PCs from malicious physical attacks that aim to install malware and steal sensitive information. “The Microsoft Pluton is a security processor, pioneered in Xbox and Azure Sphere, designed to store sensitive data, like encryption keys, securely within the Pluton hardware, which is integrated into the die of a device’s CPU and is therefore more difficult for attackers to access, even if they have physical possession of a device. This design helps ensure that emerging attack techniques cannot access key material,” explained David Weston, Director of Enterprise and OS Security at Microsoft. Pluton security chip automatically installs latest firmware via Windows Update Microsoft says that its new Pluton security chip is designed to automatically install the latest firmware updates via Windows Update (as needed). The company also highlighted that this announcement is... --- ### Microsoft Releases Out-Of-Band Windows Server Update To Fix Remote Desktop Issues - Published: 2022-01-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-out-of-band-windows-server-update-to-fix-remote-desktop-issues/ - Categories: Windows Server - Tags: News, Remote Desktop, Windows Server - Article Type: News Microsoft has released new out-of-band patches for Windows Server to fix some issues with Remote Desktop caused by the December Patch Tuesday updates. According to the release notes, this update addresses a Remote Desktop bug that was triggering performance issues as well as preventing users from connecting to the server. “Microsoft is releasing Out-of-band (OOB) updates today, January 4, 2022, to resolve issues in which Windows Server might experience a black screen, slow sign in, or general slowness,” the company explained on the Windows release health dashboard. You might also be unable to use Remote Desktop to reach the server. In some circumstances, the server might stop responding. ” Microsoft noted that this Remote Desktop connection and performance problems have been noticed on all supported versions of Windows Server. The list includes Windows Server 2022, Windows Server 2019, Windows Server 2016, and Windows Server 2012 R2. However, the out-of-band updates are currently only available for Windows Server 2019 (KB5010196) and Windows Server 2012 R2 (KB5010215). Latest out-of-band updates will not be available as optional patches in Windows Update It is important to note that the latest out-of-band updates will not be available as optional patches in Windows Update. The company is recommending enterprise customers to download the standalone packages manually through the Microsoft Update Catalogue. For IT Admins, Microsoft has also provided a step-by-step guide for manually importing the updates into Windows Server Update Services (WSUS). Microsoft plans to release the fixes for the remaining affected platforms over the next few... --- ### AWS re:Post Takes on Stack Overflow - Published: 2022-01-04 - Modified: 2024-09-04 - URL: https://petri.com/aws-repost-takes-on-stack-overflow/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, Cloud, News - Article Type: News There’s no doubt that the Internet can be a great resource for technical information and solutions to the problems that you face. However, it can also be a source of misinformation, dead ends and a waste of precious time. That's where AWS re:Post Q&A comes in. Many IT professionals often first turn to a site like Stack Overflow or Petri that is a well-known and trusted resource with a broad user base to handle serious technical questions. In a similar vein, Amazon has created a new AWS re:Post service that provides a curated question and answer (Q&A) site that focuses on AWS issues. AWS re:Post is a Q&A service for AWS resources AWS re:Post is a Q&A service for AWS resources and it is a part of the AWS Free Tier. It is an AWS-managed service that provides crowd-sourced, expert-reviewed answers to your technical questions about AWS. It is a replacement for the original AWS Forums. Some of the topic areas covered by AWS re:Port Q&As include: Analytics Application Integration Architecture Strategy Blockchain Cloud Adoption Framework Cloud Financial Management Compute Containers Database DevOps Developer Tools End User computing Front-end Web and Mobile Game Tech Infrastructure as Code Internet of things Machine Learning and AI Management and Governance Media Services Microservices Migration and Transfer Mobile Networking and Content Delivery Quantum Technologies Robotics SAP and AWS Security and Compliance Serverless Storage Training and AWS certifications Virtual Private Cloud Well-Architected Framework Re:Post Discussion As you can see, Amazon’s new re:Post Q&A board covers a... --- ### Microsoft Teams to Tackle Meeting Fatigue with New “Hide Your Own Video” Feature - Published: 2022-01-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-meeting-fatigue-hide-your-own-video/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is set to introduce a new feature that may help users reduce meeting fatigue and distractions. This new feature will let users hide their own video feeds from the meeting stage, while still keeping their video available for other meeting participants. “Currently, it is not possible to hide your own video on the stage. This can contribute to meeting fatigue as we are constantly processing our own image during calls. This new feature update will expand the ability for users to hide their own video on the stage for themselves while others will still be able to see it and thus not disrupt the video experience during the call,” the company explained on the Microsoft 365 Admin Center. To hide their video feed, Microsoft Teams users will need to go to the Me video menu, click on the ellipsis menu (... ), and then select the “Hide for me” option. Users will also be able to quickly hide or unhide their video feeds by clicking on the menu available next to their name on the meeting roster. Ability to hide self-view video during Teams meetings general availability in mid-March The ability to hide self-view video during Teams meetings has been one of the top requests from users, and it has received more than 5000 votes on the Microsoft Teams Feedback forum. According to the Microsoft 365 roadmap, this feature will begin rolling out to the Teams desktop client later this month and it should hit general availability in mid-March... . --- ### Is Outlook for Android and iOS free? - Published: 2022-01-04 - Modified: 2024-09-04 - URL: https://petri.com/is-outlook-for-android-and-ios-free/ - Categories: Microsoft 365 - Tags: Android, iOS, Microsoft 365, Office 365, Outlook - Article Type: Overview Outlook for Android and iOS is free to download, but using some of its features can incur a monthly fee. Learn how to use Outlook without a fee. What is Outlook? Outlook is Microsoft's mobile email app for Android and iOS platform devices. It allows you to access both personal email accounts (Outlook. com, Hotmail. com, Gmail. com, etc. ) and corporate Office 365 accounts, liu_kang@mortalkombat. com for example. Does it matter what email programs you use to access your company email (Mozilla Thunderbird, mailbird, Gmail, etc. )? Well, yes. You may have read the title of this article and thought to yourself - Uh, let's see. I do recall going to download the Outlook app on my iPhone, and... sure. It's free. I didn't pay to download the app. I was able to access my email, my inbox, my calendar. I remember downloading the Office app too, letting me open Excel, Word, PowerPoint, even OneNote, and the entire suite of Microsoft Office apps. Is the Microsoft Outlook app free? Yes. That is the short answer. But how familiar are you with Microsoft's license terms you accepted when you downloaded that app? Did you read the details about adding a commercial Office 365 account to the app? You better fire up your web browser and check those license terms again. That's where you must keep a few things in mind. The key point - the usage of the app is governed by the license terms. You may need to purchase a more expensive Office 365... --- ### What's New in Microsoft Teams - December 2021 - Published: 2022-01-03 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-end-to-end-encryption-meetings-features-december-2021/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has published a monthly round-up of all the features added to its Teams collaboration service in December 2021. This time around, the biggest improvements include End-to-end encryption (E2EE) support, Teams Rooms updates, a new SIP Gateway service, Teams-certified devices, and much more. New features for Microsoft Teams meetings First up, Microsoft has made some improvements to Teams meetings. For presenters and organizers, the app added a new feature that allows them to view the order of the raised hands in a meeting. It enables meeting organizers to quickly identify participants who want to speak without interrupting the flow of conversation. To use this feature, users will need to go to the meeting controls and click on the Participants panel. The meeting recording feature in Microsoft Teams is gaining new several capabilities, including a multi-speed playback option, high-quality transcripts, indexed recordings, and an auto-expiration policy. Organizers also can enable an automatic recording option for Teams meetings. Chat and collaboration features in Microsoft Teams Next up are chat and collaboration features in Teams. Microsoft Teams is now rolling out an update that lets users add descriptions to images shared in private or group chats. To do this, right-click on the image and then select the “Add alt text” option. The new feature makes Teams messages more accessible to people with disabilities, who can now use screen readers to easily understand the full content of the messages. Security and compliance Moving on to the security and compliance department. Last month, Microsoft... --- ### What's New with Power Platform - December 2021 > Microsoft continues to spoil us with continued updates to the platform as we look to hold true to our New Year's Resolutions. Say no to spreadsheets. (No excel as a data source) Release wave 2 for Power Platform is wrapping up for 2021 with a few tweaks to mention. - Published: 2022-01-03 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-power-platform-december-2021/ - Categories: PowerBI - Tags: News, power apps, Power Automate, power automate desktop, Power Platform, PowerBi - Article Type: News Happy New Year and warm wishes to everyone as we move into 2022 together. Microsoft continues to spoil us with continued updates to the platform as we look to hold true to our New Year's Resolutions. Say no to spreadsheets. (No excel as a data source) Release wave 2 for Power Platform is wrapping up for 2021 with a few tweaks to mention. Hope everyone enjoyed time with their families as we move forward into 2022. Images in Power Apps A new update to the image control will allow users to now display images that are stored in the Microsoft List image column (checking on Monday if this works for normal SharePoint, but the roadmap didn’t specify, will test). Looking to store an image for products in your product list, or store a funny meme in your employee's list? All can be completed with the image column in SharePoint, which can now be displayed in the Power Apps image control. This update is scheduled to be generally available in January 2022. Data on demand Power BI has announced a new feature that should make users working with large data sets happy. On-demand load, which provides a way for large dataset models to be jumped into memory faster, can provide up to 38% faster load times for your reports. Gone are the wait times for your users who launch that one report they are supposed to check once a year with gigabytes of data. No need to switch this feature... --- ### What's New with Windows – December 2021 - Published: 2022-01-03 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-windows-december-2021/ - Categories: Windows Client OS - Tags: Microsoft Edge, News, Windows Insider, Winodws 11 - Article Type: News It was a quiet month, as expected. But there were a few significant announcements. Most notably for enterprise IT, Microsoft Edge Cloud Site List Management is now generally available, and Microsoft is bringing some basic customization options to the Windows 11 Start menu. Microsoft Edge Cloud Site List Management now available First available in public preview since November 2021, Cloud Site List Management is a new feature to assist IT pros with their transition from Internet Explorer (IE) to Microsoft Edge. A site list in Microsoft Edge is a list of sites, defined by an organization's IT department, that are always redirected to use IE Mode in Microsoft Edge. This allows organizations to migrate to the new Edge browser while still retaining compatibility with legacy applications that were designed to work in Internet Explorer. Cloud Site List Management takes this concept one step further by letting you manage your site lists in the cloud, behind an authenticated portal – the Microsoft 365 Admin Center. The ability to store your site lists in a compliant cloud location, instead of needing on-premises infrastructure, allows more flexibility and efficiency in maintaining site lists. Cloud Site List Management for Microsoft Edge is now generally available. Microsoft says: "The future of Internet Explorer on Windows 10 and Windows 11 is in Microsoft Edge with IE mode. If you haven’t started transitioning to Microsoft Edge and setting up IE mode, we recommend starting today. The first step to set up IE mode is to understand... --- ### Top Petri News Posts of 2021 - Published: 2022-01-03 - Modified: 2024-09-04 - URL: https://petri.com/top-petri-news-posts-of-2021/ - Categories: Microsoft 365 - Tags: Excel, Microsoft 365, Microsoft Teams, News, Visio, Windows - Article Type: News Microsoft unveiled a slew of new consumer and enterprise-focused products and services in 2021. It’s been a big year for the company with the most significant announcements such as Windows 11, Teams 2. 0, a new Visio web app, and an affordable Windows on Arm development kit. Here’s a look at everything you need to know. 1. Microsoft adds 'supervisor' functionality to monitor Teams private chats First of all, Microsoft announced its plans to introduce a new “Supervised Chat” feature that should enable teachers to monitor private 1:1 or group chats in Teams. With Supervised Chat, the app prevents students from engaging in new chats unless a designated educator is available. The feature started rolling out to all Teams users back in May this year, and it’s now generally available on desktop, mobile, and web clients. 2. Windows 11 reaches general availability Microsoft started rolling out its “Next Generation” operating system Windows 11 back in October. The latest version of Windows is now available as a free upgrade for Windows 10 users with eligible PCs. It comes with a bunch of new features such as new animations, rounded corners, a centered Start menu, improved multi-tasking capabilities, and much more. 3. Microsoft Teams "2. 0" will deliver big performance improvements In June, Microsoft unveiled that it’s making some big under the hood performance improvements to the existing architecture of the Teams collaboration platform. Rish Tandon, the CVP Engineering for Microsoft Teams, announced on Twitter that the Teams desktop app is moving away from... --- ### Microsoft Delivers Emergency Fix For Exchange Y2K22 Bug - Published: 2022-01-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delivers-emergency-fix-for-exchange-y2k22-bug/ - Categories: Exchange Server - Tags: exchange, Exchange Server, Exchange Server 2016, News - Article Type: News Microsoft has released an official fix for the "Y2K22" bug that was previously preventing on-premise Exchange servers from sending emails. This issue started at midnight on January 1st, 2022, and it was causing emails to get stuck in transport queues due to a date check failure in the FIP-FS anti-malware scanning engine. The Microsoft Exchange Y2K22 bug was first reported by an Exchange administrator on Reddit, and it affects Microsoft Exchange Server 2016 and 2019. The reports suggest that this issue triggered several error messages in the Exchange Server’s Event Log, including the “Can’t convert “2201010001” to long” error. “The problem relates to a date check failure with the change of the new year and it not a failure of the AV engine itself. This is not an issue with malware scanning or the malware engine, and it is not a security-related issue. The version checking performed against the signature file is causing the malware engine to crash, resulting in messages being stuck in transport queues,” the Exchange Team explained on its Tech Community forum. How to download the automated scan engine reset script for Exchange Y2K22 bug IT admins will need to follow the steps listed below to run the automated scan engine reset script on every on-premise Microsoft Exchange server in their organization: First of all, download the automated scan engine reset script file. Then, open an elevated Exchange Management Shell (EMS). Set the execution policy for PowerShell scripts to RemoteSigned by running the following command: Set-ExecutionPolicy -ExecutionPolicy RemoteSigned... --- ### Google Confirms Microsoft Teams Bug Can Block Emergency Calls on Android 9 and Lower - Published: 2021-12-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-bug-blocks-emergency-calls-android-9-and-lower/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Google has started sending out emails recommending users install the Microsoft Teams update as soon as possible to fix a bug that was preventing some Android devices from making emergency calls. The company previously stated that this issue only impacts all users with Android 10 and above, but it has now confirmed that the emergency calling bug may also affect devices running older versions of Android. In a recent tweet, Mishaal Rahman, the senior technical editor at Esper, shared a screenshot of the email received by some Android users regarding a “critical update” required for their mobile phones. Additionally, Google notes on its support page that the bug could impact running Android version 8 or higher (i. e, versions 8. 0, 8. 1, 9, and 10). "You may have a version of the Microsoft Teams app installed that could unintentionally prevent emergency calling (e. g. 911, 999, 112, depending on your region) if you are not signed into the Teams app. The issue is caused by an unintended interaction between the Microsoft Teams app and the Android operating system," The Google Team said in the email. https://twitter. com/MishaalRahman/status/1476824392420188163? s=08 Earlier this month, Google acknowledged a new issue that was blocking 911 calls on Android phones because the Microsoft Teams app was creating duplicate instances of the “PhoneAccount” class in the Android OS. The PhoneAccount function allows Android applications to make and receive phone calls, and you can read Mishaal Rahman’s in-depth Medium post for more details. Google also plans to roll out an Android update on... --- ### Petri is Looking for Writers - Published: 2021-12-30 - Modified: 2024-09-04 - URL: https://petri.com/petri-is-looking-for-writers/ - Categories: Announcements - Tags: Active Directory, Microsoft 365, Microsoft Azure, Petri, PowerShell, Windows, Windows Server, Writers - Article Type: Overview The Petri IT Knowledgebase is looking for writers! Petri is a leading site providing IT professionals with tutorials, news, and advice on how to work with Microsoft enterprise technologies. The editorial team is looking for content creators and IT professionals in the field who would like to help others by contributing their knowledge in the form of how-to articles taking readers step-by-step through solving a problem or configuring a system and pillar content explaining fundamental IT concepts. In exchange for sharing your knowledge with your peers in the industry, Petri offers a competitive rate in U. S. dollars, and you get exposure on a site with up to 1 million page views a month alongside well-known industry figures. Petri primarily covers Microsoft enterprise solutions, particularly: Windows Windows Server Active Directory PowerShell Microsoft 365 Microsoft Azure and related technologies But if you have experience in another area, we'd still like to hear from you. What we are looking for We are looking for content creators and practitioners who have: A skill for explaining complex technical subjects Good written English Knowledge in Petri's key subject areas A desire to learn and improve writing skills A desire to help Petri produce the best educational content for our readers What we expect from our contributors We expect that contributors provide original material, including images, in a form that is ready to publish We may provide writers with an article brief that should be followed to produce the content required for the site Submitted work must... --- ### What is a Virtual Server? > Learn how a virtual server lets a computer run multiple operating systems simultaneously. A virtual server is meant to make the best use of the overall physical compute resources, providing a better return on investment for each organization. Read more here! - Published: 2021-12-29 - Modified: 2024-11-19 - URL: https://petri.com/what-is-a-virtual-server/ - Categories: Virtualization - Tags: Hyper-V, Oracle, virtual server, VirtualBox, virtualuzation, vmware, vSphere - Article Type: Overview Using virtual machines (VM) and virtual servers is no new task. We have been working with the concept of providing time-sharing solutions since the late 1960s and early 1970s. This was because the cost of using mainframe computers was extortionate and logically it made more economical sense to utilize time sharing. With the release of massive data centers, the use of virtualization techniques has increased to make use of physical hardware. Physical servers can be bundled to create massive, aggregated pools of resources such as CPUs, memory, storage. Even aspects such as networking, and virtualization of applications are possible. What is a virtual server? A virtual server replicates the same functionality as a physical server. However, multiple virtual servers can be applied to a pool of servers.  Virtual servers may be applied against a bare metal computer which allows for its operating system and interfaces to integrate into the physical server’s resources. There are many services today that allow for a physical to virtual (P2V) server migration to occur. These can range from simple and free, to quite expensive and feature rich. Virtual server defined A virtual server re-creates the functionality of a dedicated physical server. It exists transparently to users as a partitioned space inside a physical server. Virtual servers makes it easy to reallocate resources and adapt to dynamic workloads. Ultimately, a virtual server is meant to make the best use of the overall physical compute resources, thus providing a better return on investment for each organization... . --- ### Apache Releases Log4j Version 2.17.1 to Patch New Remote Code Execution Vulnerability - Published: 2021-12-29 - Modified: 2024-09-04 - URL: https://petri.com/apache-log4j-2-17-1-patch-remote-code-execution/ - Categories: Security - Tags: Apache Log4j, News - Article Type: News Last month, a security researcher discovered a new zero-day exploit in the Apache Log4j Java-based logging library that threat actors could abuse to execute malicious code on affected systems. Apache has released a new update (Log4j version 2. 17. 1) this week that aims to address the remote code execution (RCE) vulnerability in v2. 17. 0. For those unfamiliar, Log4j is a popular Java library developed by the open-source Apache Software Foundation. It’s used by developers to log error messages in enterprise apps and cloud services such as Minecraft, Steam, and Apple iCloud. The original Log4Shell vulnerability, tracked as CVE-2021-44228, was first reported by Chen Zhaojun from Alibaba Cloud's security team to Apache on November 24.  According to the Internet infrastructure provider Cloudflare, the Log4j exploits started impacting vulnerable systems on December 1. The vulnerability allowed attackers to execute remote code on various servers or applications by modifying the Log4j logging configuration file. It’s one of the most high-profile security flaws on the internet that significantly impacted enterprise and government customers running Log4j versions 2. 0 to 2. 14. 1 in their ecosystems. “Apache Log4j2 versions 2. 0-beta7 through 2. 17. 0 (excluding security fix releases 2. 3. 2 and 2. 12. 4) are vulnerable to a remote code execution (RCE) attack where an attacker with permission to modify the logging configuration file can construct a malicious configuration using a JDBC Appender with a data source referencing a JNDI URI which can execute remote code. This issue is fixed by limiting JNDI data source names to the java protocol in Log4j2 versions 2. 17. 1, 2. 12. 4, and... --- ### Microsoft Teams Meetings Get New Raise Hands Order Feature - Published: 2021-12-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-meetings-raise-hands-order/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams has released a new update that brings some improvements to the raise-hand feature in meetings. As pointed out by Microsoft MVP Cameron Dwyer on Twitter, the Teams desktop client now allows meeting organizers to view the numerical order in which the participants have raised their hands. The Microsoft Teams desktop app introduced the ability for attendees to virtually raise their hands during meetings back in May 2020. The feature helps users inform meeting organizers that they want to speak or ask a question without interrupting the ongoing conversation. It is supported in Teams meetings on all platforms, including desktop, mobile, and the web, but isn't available in one-on-one calls. Prior to this update, it was a bit harder for presenters and meeting organizers to identify the order of the raised hands. The latest update aims to address this problem and it is a welcome addition for schools that remotely conduct classes, and companies that hold webinars with hundreds of participants. It should make it easier for presenters to answer questions and gather feedback related to a specific topic discussed in the meeting. How to check the order of raised hands in a Microsoft Teams meeting Microsoft Teams meeting organizers will be able to see the list of participants who have raised their hands by following these steps: Navigate to the meeting controls available in the upper-right section of the screen. The participants panel will show a list of everyone present at the meeting. You will see a Hand... --- ### Microsoft 365 E3 vs E5 Plans Compared > Learn the differences between Microsoft 365 E3 and E5 plans to make it easier to decide which one is right for your organization. Both plans offer a huge range of benefits and services, and in this article, you will learn about the advantages of each plan. - Published: 2021-12-28 - Modified: 2025-01-03 - URL: https://petri.com/microsoft-365-e3-vs-e5-plans-compared/ - Categories: Microsoft 365 - Tags: Microsoft 365 - Article Type: Overview Microsoft 365 E3 vs E5 plans in review Microsoft 365, if not the most popular, is way up there in terms of productivity solutions for your organization. There are plans that serve smaller SMBs all the way up to 100,000+ employee enterprises. The solutions serve many vertical markets including healthcare, charities, commercial, etc. , with specific subsets of plans - think Microsoft Cloud for Healthcare. What's the difference between Office 365 and Microsoft 365 E3 and E5 plans? "Wait, wait... step back. What again IS Microsoft 365? " Originally branded Office 365, it is an all-inclusive suite of diverse cloud applications and services that include Office 365 (apps), Windows 10 and Windows 11, and Enterprise Mobility + Security (EMS). Why did Office 365 transition to Microsoft 365? "We changed the name to be more reflective of the range of features and benefits in the subscription, to meet the unique needs of individuals and businesses. " Microsoft 365 includes everything you know in Office 365. Microsoft 365 is designed to help people and businesses achieve more with innovative Office apps, intelligent cloud services, and world-class security. What Office 365 plans for enterprise are still available? The following Office 365 plans for enterprise are still available:  Office 365 E1 Office 365 E3 Office 365 E5 Let's start this off with an overview of the services offered in both Microsoft 365 E3 and E5 plans. This is an excellent starting point for you to get a glimpse from 30,000 ft of what features are available in each plan, and... --- ### Microsoft Edge Canary Brings Back Legacy Edge Follow RSS Feeds Option - Published: 2021-12-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-edge-canary-follow-rss-feeds/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News - Article Type: News Microsoft has started working on a new followable web feature for its Edge browser that will let users subscribe to their favorite publishers and creators across the web. The RSS tracking option was first spotted by Reddit user u/Leopeva64-2, and it's now live for select Insiders in the latest Canary versions of Microsoft Edge. With this new followable web feature, Microsoft Edge will make it easier for users to keep up with all their favorite websites without relying on third-party RSS feed services. To do this, users will need to click the "Follow" button available in the address bar in order to subscribe and access the latest content in the Collections flyout on the right side of the browser. As a reminder, the RSS tracking feature isn’t something new, and this capability was also supported in the legacy version of Edge. Moreover, Google Chrome also started testing a similar RSS-powered follow button back in May this year, and it’s good to see the new Microsoft Edge finally catching up. Followable web experience not for all Edge Insiders yet Additionally, it is important to note that the new followable web experience appears to be gradually rolling out as part of Microsoft's controlled rollout strategy, so it may not be available for all Edge Insiders just yet. We don't have it on our test devices running Edge Canary either. The capability will need to go through different Edge Insider channels before it becomes generally available in the Stable Channel. Microsoft regularly adds new... --- ### Microsoft to Fix Windows 11 Bug Breaking Color Rendering on HDR Displays - Published: 2021-12-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-fix-windows-11-bug-color-hdr/ - Categories: Windows 11 - Tags: News, Windows 11 - Article Type: News Microsoft has acknowledged a new Windows 11 bug that prevents some image editing applications from rendering colors correctly on select high dynamic range (HDR) displays. The company explained on its Windows Health Dashboard that the issue is caused by some incompatibilities with color rendering Win32 APIs under specific circumstances, and it seems to be particularly affecting the white color. “After installing Windows 11, some image editing programs might not render colors correctly on certain HDR displays. This is frequently observed with white colors, which could display in bright yellow or other colors. This issue occurs when certain color-rendering Win32 APIs return unexpected information or errors under specific conditions,” the company explained. According to the numerous reports on Reddit and Microsoft Tech Community forums, the issue seems to be affecting Windows 11 devices since October this year. “I have the feeling color management is not working completely. I have ThinkPad with external Eizo display. There is ICC profile installed for the external display (settings compared to my older Windows 10, they are the same, where it works just fine), yet it seems not to be applied to some applications. "Photos" app works and render colors properly, but Chrome not. Same settings on Windows 10 worked,” the original poster wrote on Microsoft Tech Community forums. Windows 11 bug doesn’t affect all profile management programs Microsoft has confirmed that this Windows 11 bug doesn’t affect all profile management programs. Additionally, the default Windows 11 color profile options available on the Windows 11 Settings... --- ### Researchers Discover Four New Security Flaws Affecting Microsoft Teams - Published: 2021-12-23 - Modified: 2024-09-04 - URL: https://petri.com/four-security-flaws-microsoft-teams/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News, Security - Article Type: News Security researchers have revealed several new security flaws impacting the “link preview” feature in Microsoft Teams. The cybersecurity company Positive Security discovered four separate vulnerabilities in the feature back in March 2021, which can be exploited by attackers to leak victims' IP addresses, spoof link previews, and launch denial of service (DoS) attacks targeting Android users. According to a report from Positive Security, the security researchers found the vulnerabilities while trying to bypass the same-origin policy (SOP) in Microsoft Teams and Electron. The same-origin policy is a browser security feature that aims to control access to data between websites and web applications. Interestingly, the researchers managed to abuse the link preview feature in order to bypass the SOP in Microsoft Teams. “In Teams, this preview is actually generated server-side by Microsoft (which is possible due to the lack of E2E encryption), so the feature cannot be abused to leak information from the user's local network (e. g. the Node. js debug server),” explained Positive Security's co-founder Fabian Bräunlein. “However, while investigating this feature, I stumbled upon a few unrelated vulnerabilities in its implementation. ” Fix to address bug that lets attackers get access to victims’ IP address in Microsoft Teams for Android Fortunately, Microsoft has already delivered a fix to address the bug that lets attackers get access to victims’ IP addresses in Teams for Android, but it has yet to patch all the other vulnerabilities. In a statement shared with Positive Security, Microsoft said that the URL spoofing... --- ### Microsoft Releases Windows 10 Version 21H2 Security Baseline With Tamper Protection And More - Published: 2021-12-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-21h2-security-baseline-tamper-protection/ - Categories: Windows 10 - Tags: News - Article Type: News Microsoft has announced the release of a new security baseline package for Windows 10 version 21H2. The Redmond giant detailed that the latest Windows 10 security baseline brings several new policy settings to help enterprise customers prevent PrintNightmare, ransomware attacks, and other security threats. Windows 10 Version 21H2 security baseline with Microsoft Defender Tamper Protection First up, Microsoft has added a new Tamper Protection setting that essentially secures Microsoft Defender Antivirus by preventing ransomware operators from automatically turning off certain OS security features on Windows 10 PCs via PowerShell commands, the registry, as well as Group Policy. The list includes behavior monitoring, real-time protection, automated threat response mechanisms, virus and threat protection, as well as cloud-delivered protection. It can also help to prevent malware from removing security intelligence updates from Windows 10 devices. Restrict the installation of printers to address PrintNightmare The new security baseline package also introduces a setting that should enable IT Admins to restrict the installation of printer drivers. This change aims to address the PrintNightmare remote code execution vulnerability that impacts the Windows Print Spooler service in enterprise environments. “We have added a new setting to the MS Security Guide (Administrative TemplatesPrintersLimits print driver installation to Administrators) and enforced the enablement. Note this setting was previously a custom setting in SecGuide. admx/l and has since moved inbox,” the company explained. Last but not least, Microsoft has removed all Microsoft Edge Legacy features from the new Windows 10 21H2 security baseline package. The company has advised customers to... --- ### Microsoft Sentinel Launches New Log4j Vulnerability Solution In Public Preview - Published: 2021-12-22 - Modified: 2024-11-19 - URL: https://petri.com/azure-sentinel-log4j-solution-public-preview/ - Categories: Microsoft Azure, Microsoft Sentinel, Security - Tags: Apache, Log4j, Microsoft Azure, Microsoft Sentinel, News, Security - Article Type: News Microsoft has announced some important updates for Microsoft Sentinel, its scalable cloud-native SIEM tool that provides AI-powered security analytics in enterprise environments. The Redmond giant has launched a new solution in public preview that should help IT Admins to detect Apache Log4j vulnerabilities. Last week, Microsoft acknowledged the emergence of an Apache Log4j vulnerability (CVE-2021-44228) that is currently being exploited by threat actors to install malwares by gaining remote access to compromised devices. “The vulnerability allows unauthenticated remote code execution and is triggered when a specially crafted string provided by the attacker through a variety of different input vectors is parsed and processed by the Log4j 2 vulnerable component,” the company explained. Complete solution in Microsoft Sentinel to easily track, monitor, and investigate the Log4Shell exploit With the new Log4j exploit detection tool, Microsoft is offering enterprise customers a complete solution to easily track, monitor, as well as investigate the Log4Shell exploit targeting the Log4j flaw. Specifically, IT admins will be able to access the new Log4j exploit detection solution via Microsoft Sentinel Content Hub. However, a Microsoft representative has confirmed that enterprise customers with active Microsoft Sentinel subscriptions will have to download and install the tool from GitHub manually. “Solutions can't be deployed into subscriptions from Microsoft Azure Cloud Solution Providers. However, you can manually add these detections into your workspace from our Github repo,” said Sarah Young, Senior Program Manager for Azure Security at Microsoft. To deploy the new Log4j exploit detection tool, IT Admins will need to... --- ### Latest Skype Update Brings New Zoom-In Feature, View Switcher Option For Meetings - Published: 2021-12-22 - Modified: 2024-09-04 - URL: https://petri.com/skype-zoom-in-feature-view-switcher-meetings/ - Categories: Messaging - Tags: News, skype - Article Type: News Microsoft has announced the release of a new Skype update, which brings several new platform-specific functionalities. The biggest addition is a “Zoom-In” feature for video meetings that lets users quickly zoom in with their mouse or handy controls on the shared screen. The Zoom-In feature aims to improve the screen-sharing experience in the app by allowing users to easily read the important files and documents shared by their clients and colleagues. “You're in a call and someone shares their screen to show you something. Everyone else is nodding along, but you're squinting at your computer screen trying to read the tiny text they are referencing. It's just too small! ? ,” the Skype team noted in a blog post. How To Use The Zoom In Feature in Skype There are a couple of ways to try out the new Zoom-In feature in the Skype desktop client. The first way is to navigate to the bottom right corner of the meeting window and click the Zoom-in controls. You can also press the CTRL key on Windows (or Command on macOS) and then scroll with the mouse to adjust the zoom settings. Alternatively, Skype users who don’t want to use the keyboard can use the touchpad to zoom in. Skype adds modernized calling UI and view switcher Skype version 8. 79 also brings a modernized calling UI and makes it possible for users to customize their call view on desktop and web apps. To switch views during a Skype video call, click the Switch... --- ### Microsoft Edge Canary Now Lets Select Insiders Capture Screenshots From PDF Documents - Published: 2021-12-21 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-edge-canary-lets-select-insiders-capture-screenshots-from-pdf/ - Categories: Microsoft Edge - Tags: Microsoft Edge, News - Article Type: News Microsoft Edge has started testing a new update that will allow users to capture screenshots from PDF documents. The feature was recently spotted by Reddit user u/Leopeva64-2, and it’s currently available for select Microsoft Edge Insiders in the Canary channel (version 99. 0. 1111. 0). Microsoft introduced the new Web Capture tool in its Edge browser back in January. Previously, the feature only allowed users to capture or mark up content across the web, and it was not available for PDF documents. However, the latest Edge Canary update extends its basic screen capture functionality by bringing support for PDFs. Using the Web Capture tool in Microsoft Edge To use the Web Capture tool, Microsoft Edge Insiders will need to download the latest Canary build and then follow the steps mentioned below: Open a pdf document, click the Settings menu (... ) available in the top right corner of the browser, and select the “Web Capture” option. Alternatively, you can also use the Ctrl+Shift+S keyboard shortcut to open the Web Capture tool. Now use the selection tool to capture screenshots from the PDF document. Once selected, you will see some additional options to copy the image to the clipboard and add notes to the screenshot. There is also an option to save the images, share the screenshots as well as add them to a Collection. It is important to note that these improvements are gradually rolling out to Edge Canary Insiders, and it’s not available for everyone just yet. The addition of PDF... --- ### Microsoft Advises Customers to Patch Active Directory Privilege Escalation Vulnerability - Published: 2021-12-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-advises-customers-patch-active-directory-privilege-escalation-vulnerability/ - Categories: Windows Server - Tags: Active Directory, Domain Controller, Microsoft Defender, News, Patch, Vulnerability, Windows - Article Type: News Last month, Microsoft released the November Patch Tuesday updates to address two Active Directory (AD) Domain Services privilege escalation security flaws affecting all supported versions of Windows Server. But it looks like some customers have not updated their servers yet. The company published a blog post yesterday advising customers to install the emergency fixes on unpatched domain controllers (DC) as soon as possible. The Active Directory security flaws, tracked under the identifiers CVE-2021-42287 and CVE-2021-42278, were actually discovered last month by Andrew Bartlett, a security researcher at Catalyst IT Limited. Microsoft has acknowledged that both vulnerabilities enable attackers to easily get Domain Admin privileges in Active Directory by impersonating domain controllers. “When combining these two vulnerabilities, an attacker can create a straightforward path to a Domain Admin user in an Active Directory environment that hasn’t applied these new updates. This escalation attack allows attackers to easily elevate their privilege to that of a Domain Admin once they compromise a regular user in the domain,” Microsoft explained in its Security Advisory. “As always, we strongly advise deploying the latest patches on the domain controllers as soon as possible. ” Windows active directory exploit tool (via Twitter) Apply November 9th Patch Tuesday updates as soon as possible to Active Directory domain controllers Microsoft is recommending its customers to immediately apply the latest security updates (released on November 9, 2021) as soon as possible as the Windows Active Directory Domain Services privilege escalation vulnerability is actively being exploited by threat actors. KB5008102: Active Directory... --- ### Microsoft Azure Key Vault Automated Key Rotation Now in Public Preview - Published: 2021-12-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-key-vault-automated-key-rotation-public-preview/ - Categories: Microsoft Azure - Tags: Azure, Azure Key Vault, News - Article Type: News Microsoft has announced that the automated key rotation feature in Azure Key Vault is available in public preview. The service was originally announced back in March, and it allows IT admins to set up an auto-rotation policy that rotates their customer-managed key (CMK) stored in Azure Key Vault after a specified period. “Automated key rotation in Key Vault allows users to configure Key Vault to automatically generate a new key version at a specified frequency. You can use rotation policy to configure rotation for each individual key. Our recommendation is to rotate encryption keys at least every two years to meet cryptographic best practices,” Microsoft explained on a support page. For those unfamiliar, Azure Key Vault is a cloud-based key management solution that enables developers and enterprise customers to securely store and manage sensitive data, including certificates, passwords, and keys, in centralized storage. It provides a highly secure repository for protecting sensitive information and it also has deeper integrations with other Azure services. However, customers need an active Azure subscription in order to access the Azure Key Vault. The key rotation feature is currently available for all Azure subscribers in public preview. It is important to note that enterprise customers will need to pay an additional cost once the feature hits general availability in the coming months. To get started with Automated key rotation, Microsoft has published a detailed step-by-step guide for organizations interested in configuring this capability in their organizations. You can head over to the Microsoft Azure page... --- ### Microsoft Announces Secured-Core Hardware for Windows Server 2022 and Azure Stack HCI - Published: 2021-12-20 - Modified: 2024-09-04 - URL: https://petri.com/secured-core-hardware-windows-server-2022-azure-stack-hci/ - Categories: Azure, Azure Stack HCI, Microsoft Azure - Tags: Azure, Azure Stack HCI, Hardware, News, Secured-Core, Windows Server - Article Type: News Earlier this year, Microsoft unveiled its plans to expand the Secured-Core initiative to its server products to help protect organizations from firmware attacks. The company has recently unveiled its plans to expand the Secured-Core initiative are now available for enterprise customers. “Partnering with leading original equipment manufacturers (OEMs) and silicon vendors, Secured-core servers use industry-standard hardware-based root of trust coupled with security capabilities built into today’s modern central processing units (CPUs). Secured-core servers use the Trusted Platform Module 2. 0 and Secure boot to ensure that only trusted components load in the boot path,” the company explained in a blog post. Microsoft noted that enterprise customers can now search for Secured-Core servers in the Windows Server and Azure Stack HCI online catalog lists. Currently, there are only four all-HPE products based on Azure Stack HCI and a bunch of products that support the Windows Server specifications. Configure and manage Secured-Core servers using Windows Admin Center Meanwhile, IT Admins will need to head to the Windows Admin Center in order to manage the Secure-Core servers' configuration and status. The new Windows Admin Center UI makes it easier for IT Admins to configure the following Secured-Core features without running any complex commands in PowerShell: Virtualization-based security (VBS) — VBS leverages the power of Hyper-V and the virtualization features of the hardware to virtually isolate a specific memory segment from the OS. It helps to secure Windows 10 and Windows 11 PCs from security threats. Hypervisor-Protected Code Integrity (HVCI) — It is a virtualization-based... --- ### How to Secure Unmanaged Devices with Microsoft Defender for Endpoint > Learn how to configure Security Management with Microsoft Defender for Endpoint, including meeting the prerequisites and the exact steps that must be taken in order to get started. This post will go through each of these in detail so that you can get up and running right away. - Published: 2021-12-20 - Modified: 2024-09-04 - URL: https://petri.com/secure-unmanaged-devices-microsoft-defender-endpoint/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Defender, Microsoft Endpoint Manager, Security, Security Management with Microsoft Defender for Endpoint - Article Type: How To Security Management with Microsoft Defender for Endpoint is a new feature that can be used to apply security configuration to devices that do not enroll into Microsoft Endpoint Manager. In this scenario, Microsoft Defender for Endpoint retrieves, enforces, and reports on policies deployed via Microsoft Endpoint Manager. The devices are joined to your Azure Active Directory (Azure AD) and are also visible in the Microsoft Endpoint Manager admin center alongside other devices you manage with Intune and Configuration Manager. Just released into Public Preview, Security Management with Microsoft Defender for Endpoint has a number of prerequisites and steps that must be taken in order to get started. This post will go through each of these in detail so that you can get up and running right away. Ensure appropriate licensing for Security Management with Microsoft Defender for Endpoint Configure Enforcement Scope within Microsoft Defender for Endpoint Configure Endpoint Security Profile Settings within Microsoft Endpoint Manager Onboard target devices to Microsoft Defender for Endpoint Apply required tags to onboarded devices - this is only required during the Public Preview Create and configure Azure AD Groups for Security configuration targeting Assign policies for Security configuration Review onboarded and managed devices Ensure appropriate licensing for Security Management with Microsoft Defender for Endpoint Security Management with Microsoft Defender for Endpoint is available to all tenants that are licensed for Microsoft Defender for Endpoint. Whilst Microsoft currently suggest that all Microsoft 365 licenses will grant access to this feature, our testing has shown that... --- ### Microsoft Teams Rolls Out CART Captioning Support For Meetings To GCC Customers - Published: 2021-12-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-rolls-out-cart-captioning-support-for-meetings-to-gcc-customers/ - Categories: Uncategorized - Tags: CART Captioning, Government Community Cloud, Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft has started rolling out CART captioning support to its Teams collaboration platform, allowing meeting participants to view real-time captions coming from a certified third-party provider. This new capability is one of the top requested features by users and is a great alternative to existing AI-powered live captions available in Teams. “CART (Communication Access Realtime Translation) captioning provides “instant translation of the spoken word into English text using a stenotype machine, notebook computer and real-time software. ” CART can be especially helpful in contexts that are challenging for speech recognition software, such as those with a lot of specialized terminology, or where participants speak with a range of different accents. For many public sector entities, it’s also a required accommodation,” Microsoft explained in a blog post yesterday. How to set up the CART captioning feature in Microsoft Teams To get started, the Microsoft Teams meeting organizer will first need to create and share the meeting invite with their preferred CART caption provider. Then, go to the Meeting options page, turn on the Provide CART Captions toggle button, and then click Save. Simply select the Copy link option that appears under the Provide CART Captions toggle and send it to the CART captioner via email. How to use CART captions in Microsoft Teams meetings Once the CART captioning option is enabled, Microsoft Teams desktop users navigate to the meeting controls, select More options and click Turn on live captions. The app should now show the real-time CART captions at the bottom of the... --- ### Azure Bicep Brings Easier Infrastructure as Code to Azure Resource Management > Learn how Azure Bicep simplifies resource management in the Azure cloud and how it compares to JSON-based Azure Resource Management (ARM) templates. Bicep is a new domain-specific language (DSL) for deploying cloud resources using infrastructure as code. - Published: 2021-12-17 - Modified: 2024-09-04 - URL: https://petri.com/azure-bicep-infrastructure-as-code/ - Categories: Microsoft Azure - Tags: Azure Bicep, cloud computing, DevOps, Microsoft Azure - Article Type: Overview Azure Project Bicep, or just Bicep as Microsoft sometimes refers to it, is a new domain-specific language (DSL) for deploying cloud resources using infrastructure as code. If this sounds like Azure Resource Manager (ARM) templates, then you'd be right. ARM templates can now be authored in Bicep or JSON. Infrastructure as code and ARM templates ARM templates allow you to deploy resources in Azure using infrastructure as code. Instead of explicitly telling Azure how to deploy a resource, like you might do with Azure CLI or PowerShell, infrastructure as code lets you define a deployment in a declarative syntax. You describe each resource in a deployment but without instructions about how to deploy the resources. Using infrastructure as code has several benefits. ARM templates are idempotent, meaning that if you redeploy a template, you get the same result, and any existing resources aren't duplicated. ARM can deploy resources in parallel, without you having to manage the orchestration in your code. And there are a host of other benefits, like the ability to preview the results using a 'what-if' tool, testing templates before deployment, and continuous integration/continuous development (CI/CD) integration with Azure DevOps and GitHub. The problem with JSON JSON is difficult to read. So, Bicep was developed as an alternative to JSON for creating ARM templates. And to be honest, JSON ARM templates have put some people off using infrastructure as code in Azure, looking to third-party solutions instead like the Terraform Azure provider. Terraform also has the advantage... --- ### Microsoft Office 365 Prices Increasing 20% for Monthly Subscriptions - Published: 2021-12-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-office-365-prices-increasing-20-for-monthly-subscriptions/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Office 365 - Article Type: News Microsoft is introducing the New Commerce Experience (NCE) subscription model for its Cloud Solution Provider (CSP) partners in January 2022. This change will raise the subscription price for Microsoft 365 monthly subscriptions by 20 percent, according to a report from CNBC. New Commerce Experience model to affect Microsoft Office 365 prices for monthly subscriptions The New Commerce Experience model for Azure was launched back in November 2019, and it has been a part of Microsoft's Cloud Services Program (CSP) since last year. The new initiative is designed to standardize different licensing programs, and it brings new tools to help partners simplify and manage subscriptions. The NCE model will become generally available for all CSP partners in January 2022. The New Commerce Experience also aims to bring customers into one-year or three-year subscription terms with Microsoft's CSP partners, and all partners who sign up customers for these longer terms will receive discounts. However, there will be a 20 percent price hike for customers who want to remain on the current monthly subscriptions. It is important to note that this is in addition to the 15 percent price increase for Microsoft 365 commercial plans, which will go into effect on March 1, 2022. According to an internal document spotted by CNBC, “Microsoft will expect payment for subscriptions even if customers decide they no longer want the Office services halfway through the term. ” Meanwhile, Microsoft’s new pricing model has been heavily criticized on multiple forums by its partners, Office 365 users, as well... --- ### How to Add a Custom Background in Microsoft Teams Meetings > Learn how to set a custom background for your Microsoft Teams meetings. With Microsoft Teams meetings, you can customize the background with your own images. - Published: 2021-12-16 - Modified: 2024-09-04 - URL: https://petri.com/add-custom-background-microsoft-teams-meetings/ - Categories: Microsoft Teams - Tags: Custom Background, Microsoft 365, Microsoft Teams, Microsoft Teams Meetings - Article Type: How To   In this article, I will show you how to change the Microsoft Teams background in meetings with your own custom image. Virtual backgrounds in Teams meetings let you hide your location and give users more privacy. Change Microsoft Teams Background in Meetings When Microsoft Teams launched, way back when, there were limited features for how you looked to others in a Teams Meeting. Whatever background you had with your webcam was what people saw. Over the years, of course, new features have steadily rolled out. They started with a preset catalog of default backgrounds. Video chat capabilities, once a nice to have, have become a critical component of the collaborative work we all are getting so used to these days. When the world moved to remote work earlier in 2020, Microsoft Teams customers turned on video in Teams meetings two times more than they did before many of us began working from home full-time. Microsoft also saw total video calls in Teams grow by over 1,000 percent in March of 2020! Back on June 12, 2020, the Microsoft Teams... ahem... team... announced the rollout of custom background effects. This custom backgrounds feature had been a top user request for some time. Add a background through the Microsoft Teams web interface Well, I hate to mislead you at all with ANY of my posts, but... surprise! I can't offer the instructions here on how to do this... The ability to add custom backgrounds to Meetings in the Teams web interface JUST started rolling out to public... --- ### Microsoft Teams Rooms Devices to Add New Front Row Layout for Meetings in Early 2022 - Published: 2021-12-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-rooms-devices-new-front-row-layout-meetings-2022/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft is planning to roll out a new immersive layout called "front row” on Teams Rooms devices in January 2022. The new meeting layout was originally announced back in June this year, and it aims to make the meeting experience more engaging between in-room participants as well as virtual attendees. The front row layout for Microsoft Teams rooms on Windows will move the video feed of remote attendees to the bottom of the screen to keep them at eye level for those physically present in a conference room. It will also display meeting information such as tasks, agenda, chat messages, and notes to everyone present in the meetings. The front row feature will be supported across all single and dual display configurations. “With front row, remote attendees are seen in the room at eye level and additional meeting experiences including chat, and a rostered view of participants with raised hands, are brought to the front of room screen. Users can select the front row layout from the layout chooser experience on the Teams Rooms console. It can also be set as the default layout or turned off altogether by device admins,” the company noted on the Microsoft 365 roadmap. Microsoft Teams Rooms to get 'Meet now' support and more The Microsoft Teams Rooms experience is also gaining a few capabilities from the Teams desktop app, such as Meet now support. The feature will allow organizers to start an instant meeting with just a few clicks and invite other participants. Moreover,... --- ### Microsoft to Make Windows Terminal Default Command Line Tool on Windows 11 in 2022 - Published: 2021-12-16 - Modified: 2024-09-04 - URL: https://petri.com/windows-terminal-default-command-line-windows-11-2022/ - Categories: Windows 11 - Tags: News, Windows 11, Windows Terminal - Article Type: News Microsoft is getting ready to make Windows Terminal the default terminal tool on Windows 11 machines. The Redmond giant has announced that this change will be rolled out to Windows Insiders in 2022 before making it generally available for all Windows 11 PCs. "Over the course of 2022, we are planning to make Windows Terminal the default experience on Windows 11 devices," explained Kayla Cinnamon, Program Manager for Windows Terminal at Microsoft. "We will start with the Windows Insider Program and start moving through rings until we reach everyone on Windows 11. " Microsoft first unveiled Windows Terminal at its Build developer conference back in 2019, and the app made its official debut on Windows 10 in May last year. The new Windows Terminal app supports multiple tabs, GPU-based text rendering, panes, as well as Unicode and UTF-8 characters. It also offers a bunch of custom themes and customization options for developers who want to tweak the backgrounds, text, shortcuts, and more. Previously, Windows Terminal was only available to download on Windows 10 via the Microsoft Store as well as on the dedicated GitHub page. However, Microsoft integrated the command-line tool directly into its new Windows 11 OS, and users no longer need to download it manually. Windows Terminal push coming in 2022 for Windows 11 users As of today, Windows Console Host is the default terminal app on Windows 11 PCs, but users also have an option to change it to Windows Terminal in the Settings app. "For a long... --- ### Microsoft Brings New Organizational Charts Feature to Visio on the Web - Published: 2021-12-15 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-new-organizational-charts-visio-on-the-web/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Visio, Visio on the Web - Article Type: News Microsoft has released some important updates for its popular diagramming software Visio, with the web app getting the same organization charts tool that is already supported on the desktop. The company says that Visio users can now create organizational charts to visualize their team structure and they can also generate them automatically from data sources such as Microsoft Excel. “Org charts can help visualize reporting structures and quickly provide employees with information they need—such as titles, roles, and responsibilities—to move processes forward. They can also be a practical tool for planning and evaluating re-structuring efforts or identifying open positions that need to be filled,” the company explained in a blog post. Microsoft Visio on the web adds new org chart stencils & layouts Microsoft highlighted that this release brings a couple of new features to Visio on the Web. The app has added five org chart stencils that come with predefined color-coded shapes, including Basic, Badge, Medal, Rollout, and Pinboard. Users can now drag and drop these shapes onto the canvas to visualize the reporting hierarchy between employees, titles, and groups. In addition to the new org chart stencils, the diagramming tool has also introduced eight new layout options. The Visio web app now includes side-by-side, left to right, right to left, top to bottom, bottom to top, as well as hybrid combinations. To change the layout, navigate to the Organization Chart tab, select the Layouts option, and finally choose the specific format. Currently, the org charts tool is available... --- ### Patch Tuesday December 2021 - Apache Log4j Panic and Microsoft Plugs Windows AppX Installer Zero Day - Published: 2021-12-15 - Modified: 2024-11-19 - URL: https://petri.com/patch-tuesday-december-2021-apache-log4j-windows-appx-installer-zero-day/ - Categories: Security - Tags: Adobe, Apache Log4j, Emotet, Malware, News, Patch Tuesday, Security, sharepoint server, Windows, Windows Server - Article Type: News This month, a flaw in the Apache Log4j library causes panic, Microsoft patches 67 new CVEs, 7 of which are rated Critical. And Adobe delivers a boat load of patches to finish off the year in style. So, let's get started! Apache Log4j remote code execution vulnerability Let's start this month by talking about Log4Shell (Log4j), a vulnerability in a Java logging library called Apache Log4j. A vulnerability was recently discovered that could allow remote code execution on applications and servers that use the library. An attacker could compromise a device by sending a specially crafted string to the affected server or application. The main issue with this flaw is that Log4j is widely used and could affect literally hundreds of thousands of servers and applications. Because of the sheer number of applications and servers that might be affected, whether it be an Apache webserver or game like Minecraft, even if you are a Microsoft shop, there's a chance that you will be impacted by this vulnerability. The bug is already being exploited in the wild, so you'll need to check your servers and apps, find out if the vendors have shipped patches, and then update accordingly. Trend Micro has released a useful tool that allows you to scan your environment for systems affected by the Apache Log4j vulnerability. Windows and Windows Server Microsoft released fixes for 67 CVEs in various products this month. There were also 16 CVEs patched in Microsoft Edge at the beginning of December. There... --- ### Microsoft Teams One-To-One Calls Get More Secure With End-To-End Encryption Support > Learn how to enable support for end-to-end encryption in Microsoft Teams for one-to-one calls. The end-to-end encryption feature is disabled by default, and it’s up to the IT admins to enable it for a specific user group or the entire organization. - Published: 2021-12-15 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-one-to-one-calls-get-more-secure-with-end-to-end-encryption-support/ - Categories: Microsoft 365 - Tags: encryption, Microsoft 365, Microsoft Teams, News, Security - Article Type: News Microsoft Teams has started rolling out end-to-end encryption (E2EE) support for one-to-one calls. The feature has been available in public preview since October, and it’s now available in the Teams desktop app for Windows and macOS. The end-to-end encryption (E2EE) feature encrypts Microsoft Teams calls at the source and then decrypts the information at the intended destination. “With end-to-end encryption, only the two endpoint systems are involved in encrypting and decrypting the call data. No other party, including Microsoft, has access to the decrypted conversation,” the company explained on a support page. This functionality can be primarily useful for enterprise customers who need to share confidential information with their team members and clients. However, Microsoft noted that certain capabilities will not be available in end-to-end encrypted calls in Teams. The list includes live caption and transcription, recording, call transfer, park and merge as well as the ability to add participants to one-to-one or group calls. How to turn on end-to-end encryption (E2EE) in Microsoft Teams calls In Microsoft Teams, the end-to-end encryption feature is disabled by default, and it’s up to the IT admins to enable it for a specific user group or the entire organization. Moreover, IT admins can also use PowerShell scripts to manage end-to-end encryption policies and apply them to users, groups, and tenants. Sign in to the Teams Admin Center using a work or school account and go to Other settings > Enhanced encryption policies. Click Add to create a new policy and enter a name... . --- ### Microsoft Office App for Android to Add a New Video Creation Tool This Month > Learn about a new video recording feature in the Office Mobile app for Android can be used to record short videos up to 90 seconds long with text, annotations, ink, and more. - Published: 2021-12-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-office-app-android-video-creation/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Office App - Article Type: News Microsoft is planning to add a new Video creation tool to its unified Office app for Android. The feature will let business customers record short video clips, edit, and share directly from their mobile phones. The Office mobile app will add the new video recording functionality besides the existing Quick Captures options, which currently allow users to record voice notes, scan documents, as well as take notes in the app. Office Mobile app video creation tool for enterprise users “With Video creation feature, enterprise users (those connected with OneDrive for Business accounts) will start seeing a ‘Video’ entry point on the app. Users can tap on it and start recording short video bytes up to 90s, and enrich it with text, annotations, ink etc. and trim and share it with the people on their network,” Microsoft explained in a message on the Microsoft 365 Admin Center. Office Mobile app video creation tool (Image Credit: Microsoft) Microsoft debuted a unified Office mobile app back in 2020 on iOS and Android, which combines Excel, Word, and PowerPoint all in one place. The app also integrates with other Microsoft 365 apps and services, including Office Lens and Microsoft Forms. Additionally, Office users can access their sticky notes and read PDF files on the go. This new Video creation feature builds on the existing Microsoft Stream integration within the app. It lets users access and play Teams meetings recordings, tutorials, and demos stored in OneDrive for Business. The company noted... --- ### Excel on the Web Gets New Queries Pane, Sheet Direction Switcher, and More > Learn about the updates in Excel on the Web in December 2021! Including a searchable data validation list, the queries pane, and text in shapes. - Published: 2021-12-14 - Modified: 2024-11-19 - URL: https://petri.com/excel-web-queries-pane-sheet-direction-switcher/ - Categories: Microsoft 365 - Tags: Excel on the Web, Microsoft 365, Microsoft Excel, News - Article Type: News Microsoft has announced a slew of updates coming to Excel on the web this month. The company says that these new capabilities should make the web version of Excel “a more effective app for your daily work. ” First of all, Excel on the Web now supports a new feature called “Searchable data validation list,” which should make it easier for users to search an item in dropdown lists. With the latest update, the app can now auto-complete the search results when a user enters any letter into the drop-down menu. Excel on the Web new Queries pane Microsoft has also announced that the Power Query experience, which is already available for desktop users, is making its way to Excel on the Web. With the new Queries pane, Excel users can now see all the queries within a workbook. To do so, click the Data tab and select the Queries option to open the Queries pane in the sidebar. Another important new update for Excel on the Web is the ability to add or edit text in shapes. The app is also getting new text formatting capabilities that let users customize the font size, color, and style in shapes. This is a simple but handy option for scenarios where users need to highlight a specific part of the content in a workbook or spreadsheet. Last but not least, Excel on the Web has added a new feature that enables users to flip a spreadsheet to a right-to-left (RTL) layout with a... --- ### How to Install WSL on Windows Server - Published: 2021-12-13 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-wsl-on-windows-server/ - Categories: Windows Server - Tags: linux, Windows Server, Windows Server 2019, Windows Server 2022, Windows Subsystem for Linux, WSL, WSL 2 - Article Type: How To WSL allows you to run applications natively as Linux processes on Windows. Learn how to install and use WSL on Windows Server here. Which versions of Windows Server support WSL? According to Microsoft documentation, the Windows Subsystem for Linux (WSL) is available for installation on Windows Server 2019 (1709) and above. This includes the few Windows Server Semi-Annual Channel (SAC) releases (versions 1909, 2004, 20H1, 20H2, etc. ) and Windows Server 2022. For more information on how to run Linux GUI apps using WSL, check out How to Install Linux GUI Apps in Windows 10 and Windows 11 with WSL on Petri. How does installing WSL differ on Windows Server? Well, this is an interesting question. Depending on what version of Windows Server you're using will dictate how you install WSL. And, unfortunately, there is one underlying platform difference in running WSL on Windows Server vs Windows 10 and Windows 11. As you'll read at the end of my post, WSL 2 distributions are not available and not supported on Windows Server 2019 and 2022. Aside from that glaring omission, there are no other real differences in using WSL on Windows Server vs. say Windows 10 or Windows 11. It's similar to Hyper-V. Enabling Hyper-V on Windows 10 and 11, and Windows Server is very similar. Once it's installed, you fire up the Hyper-V Manager and start building virtual machines (VM). This is the same with WSL on Windows client or Windows Server. Install the Windows Subsystem for Linux in Windows Server Remember... --- ### Microsoft Teams Gets New Press To Unmute Feature In Public Preview > Learn how to enable the unmute button in Microsoft Teams desktop app public preview. The update is expected to start rolling out to Standard and Government Cloud Customers (GCC) later this month. - Published: 2021-12-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-gets-new-press-to-unmute-feature-in-public-preview/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News Microsoft Teams is getting a new update that will let users temporarily unmute their microphones during a meeting. Microsoft has announced that the “Press to unmute” feature is rolling out in preview to the Teams desktop app. The Microsoft Teams desktop app already supports a dedicated button and a keyboard shortcut (Ctrl+Shift+M) to toggle between mute and unmute states. However, this new capability now allows meeting participants to quickly unmute their mics with a keyboard shortcut. The feature aims to reduce background noise and help organizers to smoothly run their meetings. How to enable the 'Press to Unmute' feature in Microsoft Teams To enable this feature, you’ll need to click the ellipses (... ) icon in the top left corner of Microsoft Teams and click Settings. In the Privacy tab, turn on the “Keyboard shortcut to unmute” toggle button. Now, join a call or a meeting in Microsoft Teams and click the mute button. You will be able to temporarily unmute your microphone by pressing and holding the Ctrl+Space keys on Windows and Option+Space on macOS, respectively. Then release the Ctrl+Space keys to mute your microphone again. It is important to note that this feature is currently available in public preview in the Teams desktop client, but it should also be coming to web users soon. According to the Microsoft 365 roadmap, the update is expected to start rolling out to Standard and Government Cloud Customers (GCC) later this month. If you haven’t done it yet, we invite you... --- ### Microsoft Teams Rolls Out Update to Fix Emergency Calling Bug on Android - Published: 2021-12-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-rolls-out-update-to-fix-emergency-calling-bug-on-android/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, News - Article Type: News   Last week, Google acknowledged a new issue in Microsoft Teams preventing some Android users in the US from calling emergency services. Microsoft has recently rolled out an update to the Teams app via the Play Store that comes with a fix to address the emergency calling bug (via Android Police). The bug was first discovered by a Reddit user earlier this month who was reportedly unable to contact emergency services from a Google Pixel 3 device running Android 11. According to the Google support team, the issue is caused by an “unintended interaction” between the Teams mobile app and the Android OS. It specifically affects people who have installed the Microsoft Teams app on their devices but haven’t signed in with a Microsoft account. Calling bug resolved with latest Microsoft Teams update According to a report from Mishaal Rahman, the Senior Technical Editor at Esper, the emergency calling bug can be resolved by installing the latest Microsoft Teams update (version 1416/1. 0. 0. 2021194504) on Android 10 or later. “Microsoft has started to roll out version 1416/1. 0. 0. 2021194504 of the Teams app. This version resolves the issue with the spawning of too many duplicate PhoneAccounts, and it also calls the clearPhoneAccounts method of TelecomManager at first launch to clear all PhoneAccounts it previously created. This means you don’t need to uninstall and reinstall Teams — just update to the new version! ,” Mishaal Rahman explained in a Medium post. Meanwhile, Google is also planning to release an update to Android on January 4, and... --- ### Microsoft Says There Will Be No Hyper-V Server 2022 Free Edition - Published: 2021-12-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-says-there-will-be-no-hyper-v-server-2022-free-edition/ - Categories: Hyper-V - Tags: Azure Stack HCI, Hyper-V, Microsoft Azure, News, Windows Server - Article Type: News Microsoft has released a special 'Hyper-V Server' core edition with every release of Windows Server Long-Term Servicing Channel (LTSC 2012 R2, 2016, 2019). This past summer, while Windows Server 2022 was being developed and finalized, questions arose amongst IT Pros (hey, that rhymes... someone set that to music right away) about the possibility of Hyper-V Server 2022. Will it be a specific, free-based SKU as in times past? Or, is Microsoft going to end that product line and push something else more lucrative for their pocketbooks? Well, sorry, but it's the latter. The free Hyper-V Server line is a slimmed-down server core that can only run the Hyper-V role, including a few other minor infrastructure items. The license is limited to bare metal installs and it doesn't include any licensing rights to run Windows Server in those virtual machines (VM), only Linux, etc. No Hyper-V Server 2022 free edition Relatively buried on Microsoft's Tech Community forums this past August, PM Elden Christensen made the declaration, literally as inconspicuously as he possibly could, that Hyper-V Server 2019 is the final version on this line, and that it will be supported through 2029. During the next 8 years, IT Pros and CIOs have plenty of time to evaluate Azure Stack HCI. What again is Azure Stack HCI? Azure Stack HCI is Microsoft's GUI-less version of Windows Server that also can only be installed on bare metal. It also, nicely, includes features for provisioning software-defined storage (SDS) like Storage Spaces Direct. Unlike the free... --- ### How to Install Windows 11 - The Ultimate Guide > Learn how to install Windows 11 or perform a Windows 11 upgrade from Windows 10. Installing Windows 11 is quite different than the previous versions of Windows. - Published: 2021-12-10 - Modified: 2024-09-04 - URL: https://petri.com/install-windows-11/ - Categories: Windows 11 - Tags: PC Health Check, Windows 10, Windows 11, Windows 11 Download ISO, Windows 11 Install, Windows 11 Installation Assistant, Windows 11 Media Creation Tool, Windows 11 Upgrade - Article Type: How To In this guide you’ll see how to install Windows 11 or perform an upgrade to Windows 11 from Windows 10. Installing Windows 11 is quite different than the previous versions of Windows. For the earlier versions, you typically needed to plan for the installation then go get the installation media, insert it into your computer, boot from it and then begin the installation process. However, that’s not the case for Windows 11 as many users will simply be able to install it as a Windows update. Let’s take closer look at Windows 11 system requirements and then dive into the various ways to install Windows 11. If you are looking to install Windows 11 in VMware Workstation Pro, then check out Petri's dedicated article. How to Install Windows 11 You might vaguely remember that back in 2015 Microsoft was touting that Windows 10 was going to be the “last OS you’ll ever need”. Well, a few years later it turns out that wasn’t quite right. Unless you’ve been living under a rock somewhere, you’ll have heard that Microsoft released Windows 11 on October 5th, 2021. As a part of the release Microsoft has stated that Windows 10 will be supported until 2025 so you know that Windows 10 will be around for the next few years. Windows 11 system requirements Here are the main hardware requirements that you should be aware of if you want to install Windows 11: CPUs (Central Processing Units) -- 1 Ghz or faster with... --- ### Windows Server Hot Patching Coming to On-Premises Azure Stack HCI - Published: 2021-12-09 - Modified: 2024-11-19 - URL: https://petri.com/windows-server-hot-patching-coming-to-on-premises-azure-stack-hci/ - Categories: Azure Stack HCI - Tags: cloud computing, Hyper Converged Infrastructure, Microsoft Azure, News, Windows Server - Article Type: News Microsoft announced the availability of hotpatching – aka rebootless patching -  in Windows Server Azure Edition earlier this year. At Ignite in November 2021, Microsoft announced that rebootless patching is coming to Windows Server on-premises via Azure Stack HCI. Azure Stack HCI, Microsoft's hyperconverged infrastructure (HCI) operating system, which is delivered as an Azure service, is designed to bring the latest hybrid cloud computing features to your organization's datacenter. Microsoft lists several benefits from the latest iteration of Azure Stack HCI: Support for Secured-Core server hardware Better performance for machine learning models with GPU acceleration Maximize virtual desktop infrastructure (VDI) performance Thin provisioning Deploy Windows and Linux at the datacenter edge Extend to the cloud using Azure Backup, Azure Monitor, and Azure Security Center, Azure Arc Like Windows Server, Azure Stack HCI can be downloaded and installed on physical hardware. But it also requires you to pay for an Azure subscription that is priced depending on the number of physical CPU cores you want to support across a minimum of 2 nodes in a single cluster. But due to the complexity of Azure Stack HCI hardware, it's recommended to install Azure Stack HCI on validated HCI solutions for Azure Stack HCI. Azure Stack HCI vs. Azure Stack If you are confused about Azure Stack HCI, you are not alone. Typically, Microsoft has named its new HCI operating system closely to another product, Azure Stack. Azure Stack is a hardware appliance that you can use to create your own Azure cloud... --- ### AWS US-East Outage Impacts a Wide Range of Sites and Services - Published: 2021-12-09 - Modified: 2024-09-04 - URL: https://petri.com/aws-us-east-outage-impacts-a-wide-range-of-sites-and-services/ - Categories: Amazon Web Services - Tags: AWS, cloud computing, News - Article Type: News It almost seems like the headline could have been “AWS Outage Cancels Christmas”. Underlining the pervasive reliance that so many businesses and services have on cloud computing resources like Amazon AWS, the AWS outage on December 7th, 2021 impacted all sorts of things from streaming services like Disney Plus and Amazon Prime, to games like Destiny 2 and League of Legends, to devices like McDonald’s kiosks, Ring doorbells and vacuum cleaners and even Amazon’s own website. The outage tracking website Downdetector. com showed more than 24,000 reported issues associated with the AWS outage. Given AWS’s dominate position in the cloud market that’s not a huge surprise. According to the Synergy Research Group, Amazon’s market share of the worldwide cloud infrastructure market was about 32 percent in the first quarter of 2021. Any major AWS service disruption will have a huge global impact. Amazon did not provide a great deal of information about the root cause of the outage. The service disruption began late Tuesday morning and it lasted through the afternoon. According to the AWS Service Health Dashboard: We have identified the root cause of the issue causing service application programming interface (API) and console issues in the US-EAST-1 Region and are starting to see some signs of recovery. We have mitigated the underlying issue that caused some network devices in the US-EAST-1 Region to be impaired. We are seeing improvement in availability across most AWS services. All services are now independently working through service-by-service... --- ### What is a DHCP Server? > A DHCP Server is a network device that automatically assigns IP addresses and other network settings to endpoints. Learn how the DHCP protocol works, how DHCP Servers automatic IP address assignment, and the pluses and minuses of using DHCP. - Published: 2021-12-07 - Modified: 2022-09-27 - URL: https://petri.com/what-is-a-dhcp-server/ - Categories: Networking - Tags: DHCP, DHCP Server, networking - Article Type: Overview In this article, I will explain what a DHCP server is and how DHCP works to make managing IP addresses easier on the Internet and private networks. What is a DHCP server? A DHCP Server is a network device that automatically assigns IP addresses and other network settings to endpoints. DHCP servers have simplified networking since the early 1990s, providing IT admins with the ability to automate IP address assignment. The world of manually assigning static IP addresses to network devices is a thing of the past. And DHCP servers continue to support this process as the Internet moves from IPv4 to IPv6. How does it all work? Let’s find out! What is DHCP DHCP, or Dynamic Host Configuration Protocol, is a client and a server protocol that automatically provides an Internet protocol (IP) address and other related information such as the subnet mask and the default gateway to network endpoints. A DHCP Server is the device that provides this solution. Either as a physical or a virtual server, it can be a network appliance. Without a DHCP server, network administrators would need to manually set up every client that joins the network, which would be very time consuming, particularly in large networks. How does DHCP work DHCP runs at the application layer of the Transmission Control Protocol/Internet Protocol (TCP/IP) stack to dynamically assign IP addresses to Dynamic Host Configuration Protocol clients and to allocate TCP/IP configuration information to those Dynamic Host Configuration Protocol clients... . --- ### Microsoft Teams: A Step-by-Step Guide to Installation > Learn how to download and install Microsoft Teams for your desktop and mobile. This article covers the system requirements, a step-by-step guide to installation, and how to log in to Microsoft Teams account. - Published: 2021-12-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-a-step-by-step-guide-to-installation/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams - Article Type: How To Use this guide to learn the basics of what you can do in Microsoft Teams, the system requirements to keep in mind when planning your rollout, and how to download and install Microsoft Teams for your desktop and mobile users in your environment. Microsoft Teams is a chat-based workspace that brings conversations, meetings, files, and apps together to help teams collaborate in a fast and fluid experience. You can invite colleagues to chat with, have group chats with a subset of your peers, and even have a video meeting with your colleague in Amsterdam. It's easy to install Microsoft Teams and here are the three steps that you need to follow: Download Microsoft Teams from Microsoft's website. You'll need to choose the right version for your platform. Run the downloaded executable to install Microsoft Teams on your device. Log in to Microsoft Teams using your email address. Anatomy of the App Microsoft Teams is a collaboration app that helps your team stay organized and have conversations — all in one place. Here's a quick look at the left-hand side list of options in Microsoft Teams. Left-hand side list of options in Microsoft Teams Teams - Find channels to belong to or create your own. Inside channels, you can hold on-the-spot meetings, have conversations, and share files. Calendar - See everything you’ve got lined up for the day or week. Or schedule a meeting. This calendar syncs with your Outlook calendar. Calls - In some cases, if your organization has it set up,... --- ### Cloud Conversations Episode 35 - Lesley Crook on Viva, and a Day in the Life with Teams - Published: 2021-12-03 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-episode-35-lesley-crook-on-viva-and-a-day-in-the-life-with-teams/ - Categories: Video - Tags: cloud computing, Cloud Conversations, Microsoft 365, Microsoft Teams, Microsoft Viva, Yammer - Article Type: Video Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Episode 35 – Lesley Crook on Viva, and a day in the life with Microsoft Teams In this week's episode, Lesley Crook talks to Peter and Kat a day in the life with Microsoft Teams, the best ways to use Yammer, Microsoft Viva, pets as therapy, and as usual, much more!   Lesley Crook is a Microsoft MVP and a Viva visionary. In a her professional life, Lesley nurtures the adoption and change management of Microsoft Viva on Teams in workshops and in the community. More on Cloud Conversations The podcast is hosted by Peter Rising and Ru Campbell, both Petri contributors; and Kat Greenan, a Microsoft Solutions Specialist and Microsoft Teams Champion. Each week, Peter, Ru, and Kat speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and technologists, including Stephen Rose, who is a Microsoft Teams Senior Product Marketing Manager, Petri's Steve Goodman, who is an... --- ### Microsoft Teams Essentials Most Affordable Collaboration Solution for Small Business > Learn about Microsoft Teams Essentials, including the kind of organizations it is designed for, how it can help your organization, how it compares to Microsoft Teams free edition, and pricing and availability. - Published: 2021-12-03 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-teams-essentials/ - Categories: Microsoft 365, Microsoft Teams - Tags: collaboration, Microsoft 365, Microsoft Teams, Microsoft Teams Essentials, Microsoft Teams Free, News, Productivity - Article Type: News December 1st, 2021, Microsoft announced the availability of Teams Essentials, a new product built for small businesses. In this article, you'll learn what is Microsoft Teams Essentials, how it compares to other editions of Teams, and about pricing and availability. What is Microsoft Teams Essentials? Microsoft Teams Essentials provides small businesses with unlimited group calls for up to 30 hours, group chat, file sharing, and calendaring. And for just $4 USD a month, which Microsoft claims is the most affordable all-in-one collaboration product on the market. Teams Essentials is designed for small businesses of all kinds, whether you are running a restaurant, a retail business, providing professional services, or running a dental practice. The pricing is also aimed at attracting nonprofits, religious organizations, schools, and community groups. Microsoft says that Teams Essentials can be used by those with or without a Microsoft account. Microsoft Teams free vs. Microsoft Teams Essentials The Microsoft Teams free edition is designed to get small businesses started with Teams. But it is limited to 2 GB of file storage per user and 10 GB of shared storage. Microsoft Teams Essentials extends the limitations of the free version of Teams to provide longer meetings and more storage capacity. A group chat in Microsoft Teams Essentials (Image Credit: Microsoft) With Microsoft Teams Essentials, you get the following features. The features in bold are exclusive to Teams Essentials over the free edition. Longer meeting times - Your meetings can last up to 30 hours,... --- ### Big Announcements at AWS re:Invent 2021 - Published: 2021-12-02 - Modified: 2024-09-04 - URL: https://petri.com/big-announcements-at-aws-reinvent-2021/ - Categories: Amazon Web Services, Backup & Storage, Cloud Computing, VMware - Tags: AWS, AWS EC2, Backup, Cloud, News - Article Type: News This year’s AWS re:Invent conference is taking place from Nov. 29 through Dec. 3, 2021 at the Venetian Resort & Casino in Las Vegas. The re:Invent conference is the biggest AWS event of the year. Unlike last year’s conference which was only online, this year’s re:Invent is a hybrid event that is both in-person and online. AWS re:Invent in-person attendees needed to be vaccinated against COVID-19 and wear masks. Adam Selipsky, AWS CEO provided this year’s keynote where he looked back at the impact of cloud computing. Selipsky explained, “In the 15 years since we launched AWS, the cloud has become not just another tech revolution, but an enabler of a fundamental shift in the way that businesses actually function. There's no industry that hasn't been touched, and no business that can't be radically disrupted. ” He went on to point out that Amazon is still innovating for the future as he announced a bevy of new services that are available now or coming soon. Additional keynotes were presented by: Swami Sivasubramanian, Vice President, Amazon Machine Learning, Peter DeSantis, Senior Vice President, AWS Utility Computing and Werner Vogels, CTO, Amazon. com. Announcements at Amazon Web Services re:Invent Like you would expect, AWS made quite a number of announcements at this year’s re:Invent conference. There are more announcements than I can cover but here are some of the biggest: Amazon SageMaker Canvas-- Enables business analysts to build machine learning (ML) models and generate business predictions without writing code. It provides a visual, point-and-click... --- ### What's New with Power Platform - November 2021 > Learn about new connectors Power Platform , artificial intelligence, and a much-needed makeover for Power BI, all new in Power Platform for November. Hope you enjoy all the latest updates!  - Published: 2021-12-01 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-power-platform-november-2021/ - Categories: Power Platform, PowerApps, PowerBI - Tags: dataverse, dataverse for teams, Microsoft Access, News, power apps, Power Automate, Power BI, Power Platform - Article Type: News Microsoft Ignite kicked off this month with positive news for Power Platform with developers and Microsoft Teams continuing to be the focus. New connectors, artificial intelligence, and a much-needed makeover for Power BI, all new in Power Platform for November. Hope you enjoy all the latest updates!   Why isn't your app in Teams?   With Teams growing at lightning pace, we are starting to see it become the center for engagement for businesses. What once was a casual email for a lunch with a coworker has become a gif-filled chat room experience in Teams. Along with other enhancements, it has never been easier for users to connect to the Power Platform. Users can build, share, and use Power Platform services without ever having to leave the Teams application. Create a flow with Power Automate, experience data verse with Power Apps for Teams, or build reports with Power BI all within the Teams experience. And as a bonus, because I love you, here is my quick video on all things Microsoft Ignite and Power Platform. Spoiler alert, the last topic is about Teams and Power Platform.   Power Platform request limits increased  Customers of Power Platform will now benefit from increased throttle limits on the Power Platform API.  These are large increases. For example, Power Automate per user plans have their request limits increased over 700% to 40,000.  For customers who have more extensive requirements, there are options from Microsoft to do a pay-as-you-go style plan for requests that exceed the request ceiling.    Power BI’s new format pane  A big update from the Power BI team this month with the newly designed... --- ### What's New with Windows – November 2021 > Learn what's new with the Windows 10 November 2021 Update, a big cumulative update for Windows 11 with a lot of fixes, and Windows 11 SE is now available for education. - Published: 2021-12-01 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-windows-november-2021/ - Categories: Windows 11 - Tags: Microsoft Edge, News, Windows 11, Windows 11 SE, Windows Insider - Article Type: News What with Thanksgiving, and Christmas soon approaching, November has been a quiet month. But Microsoft released the Windows 10 November 2021 Update, a big cumulative update for Windows 11 with a lot of fixes, and Windows 11 SE is now available for education. Windows 10 November 2021 Update (21H2) now generally available November 16th, Microsoft released the Windows 10 November 2021 Update, or version 21H2 as it is sometimes referred to. Microsoft says the Windows 10 November 2021 Update is designed to meet productivity, management, and security challenges. The Windows 10 November 2021 Update doesn’t contain any major new features, but there are some productivity and security enhancements worth mentioning: WPA3 Hash-to-Element (H2E) protocol standards support for enhanced Wi-Fi security and protection against side-channel attacks Windows Hello for Business introduces a new deployment method called cloud trust to support simplified passwordless deployments and achieve a deploy-to-run state within a few minutes GPU compute support in the Windows Subsystem for Linux (WSL) and Azure IoT Edge for Linux on Windows (EFLOW) deployments for machine learning and other compute intensive workflows There are also several new features and tooling updates for IT pros related to the release of the Windows 10 November 2021 Update. The Windows 10 November 2021 Update is available for commercial customers through Windows Server Update Services (WSUS), Configuration Manager (ConfigMgr), Windows Update for Business (WUfB), and the Volume Licensing Service Center (VLSC). Microsoft Edge - Simplify site lists management with Cloud Site List Management Microsoft is retiring Internet Explorer (IE) 11... --- ### Microsoft Lists New Features – Offline Mode, Kanban Board View, Rich Text Editor, and More > In this article, learn about the new features and when you can expect them to appear in your Microsoft 365 tenant. New features include offline mode, a new Kanban board view, lookup fields across your lists, and more! - Published: 2021-11-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lists-new-features-offline-mode-kanban-board/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Lists, Productivity - Article Type: Overview Microsoft Lists is getting a series of new features over the coming months. And in this article, learn about the new features and when you can expect them to appear in your Microsoft 365 tenant. New features include offline mode, a new Kanban board view, lookup fields across your lists, and more! Microsoft Lists gets a Kanban board view One of the biggest complaints about Microsoft Lists is that unlike competing products, it doesn't contain a Kanban-style board view. But that's about to change as Microsoft recently announced a new Board view feature for Lists. Board view is due to be made generally available in November 2021. But as of writing this article, it's not available in my tenant. If you are not familiar with Kanban boards, they allow you to view items as cards that can be moved forward in a process or workflow. Microsoft Planner provides Kanban boards, but it isn't integrated with Lists. The new board view in Lists will let you drag and drop items through the stages of your workflow. And you will be able to configure which columns are displayed in the cards that represent each list item on the board and the order in which they appear. Microsoft Lists Kanban Board view (Image Credit: Microsoft) Modern lookup columns Again, due in November 2021, modern lookup columns let you create lookup fields in the Microsoft Lists user interface without having to dig deep into the settings page. With lookup columns,... --- ### What is Microsoft 365? Everything You Need to Know > In this article, I'll be answering the question what is Microsoft 365? What it is used for, the different services and applications included in the available subscription plans, pricing, and how to secure and manage your data and services in the Microsoft cloud, and how it compares to Office 365 - Published: 2021-11-29 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-365/ - Categories: Microsoft 365 - Tags: Azure, Enterprise Mobility + Security, Excel, Exchange Online, Microsoft 365, Microsoft Intune, Microsoft Teams, OneDrive for Business, OneNote, Outlook, PowerPoint, SharePoint Online, Word, Yammer - Article Type: Overview Office 365 is a Software as a Service (SaaS) product from Microsoft that provides subscribers with the Microsoft Office desktop apps for Windows and macOS, and online business services like Microsoft Teams, SharePoint, OneDrive for Business, and Exchange Online. But in this article, I'm going to be answering the question what is Microsoft 365? Microsoft 365 was branded on July 10th, 2017. It was originally comprised of Office 365, with Windows 10 Enterprise, and licenses and other cloud-based security and device management tools and products. What is Microsoft 365? Microsoft 365 is a subscription service that includes the Microsoft Office applications, online business services included in Office 365, like Exchange Online and SharePoint Online, cloud storage, and other collaboration and productivity applications like Microsoft Teams, Microsoft Lists, and Planner. It also comes with optional features like a Windows 10 Enterprise license and a suite of security and management apps for enterprises called the Enterprise Mobility + Security (EMS). Microsoft 365 is a subscription service that brings the latest Office desktop apps together with cloud apps and services like file storage, security, collaboration, and productivity, including Microsoft Teams, Lists, SharePoint, Exchange, Planner, OneDrive, and much more. Microsoft 365 is available in plans for personal users, families, businesses, and large enterprises. Microsoft 365 includes apps and services that were previously known as Office 365. What’s one of the main benefits of Microsoft 365? All plans are kept up to date automatically which makes a huge change to how we use work conventional licensed applications. Which services are available in Microsoft 365? The number of applications... --- ### Protecting the Different Types of Microsoft 365 Data > In this article, you'll learn about the different types of Microsoft 365 data and the kind of protection that's available for them. Microsoft is responsible for app availability but customers are responsible for protecting data in the cloud. - Published: 2021-11-29 - Modified: 2024-04-17 - URL: https://petri.com/protecting-the-different-types-of-microsoft-365-data/ - Categories: Backup & Storage, Cloud Computing, Microsoft 365, Microsoft Azure, Microsoft Teams - Tags: Backup, Cloud, Disaster Recovery, Microsoft 365, Office 365, OneDrive for Business, SharePoint Online - Article Type: Sponsored Microsoft 365 is an indispensable collection of tools for businesses. While Microsoft is responsible for the availability and ongoing functionality of all the Microsoft 365 apps, the responsibility for protecting Microsoft 365 data is the customer’s obligation. Let’s take a closer look at the different types of Microsoft 365 data and the kind of protection that's available for them. This article is sponsored by afi. ai OneDrive and Office documents Protecting OneDrive documents is one of the most central parts of your Microsoft 365 data protection strategy. OneDrive is typically the primary storage location for most of the Office 365 documents like Word . docx, Excel . xlsx, PowerPoint . pptx, and OneNote notebooks. These can all take advantage of OneDrive’s recycle bin and version history. The OneDrive recycle bin is mainly designed to protect against accidental file deletion. The OneDrive recycle bin allows you to undelete individual files as well as the entire contents of OneDrive. Typically, items are kept for 93 days. OneDrive also provides versioning protection where it can maintain 500 previous versions of its files. However, if you want the ability to perform data archiving, point-in-time restoration or searching of backup items, then you’ll need to use a third-party backup solution. Exchange Online emails For availability and data protection, Exchange Online uses the Exchange Server Database Availability Groups (DAGs) feature to replicate Exchange Online mailboxes to multiple databases. In addition to having multiple copies of each mailbox database, the different data centers use replication to copy data between data... --- ### Cloud Conversations Episode 34 - Sophie Dimelow on Women in Tech and Community - Published: 2021-11-26 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-episode-34-sophie-dimelow-on-women-in-tech-and-community/ - Categories: Video - Tags: cloud computing, Cloud Conversations, Women In Tech - Article Type: Video Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Episode 34 – Sophie Dimelow on Women in Tech and Community In this week's episode, Sophie Dimelow, who is a Microsoft Cloud Consultant and Women In Tech advocate, discusses her community journey, attending and speaking at events, the Microsoft Spotlight podcast, Women in tech, and much more!   Sophie is manager of the Microsoft Women in Tech - United Kingdom group, which you can find on LinkedIn. In her day job, Sophie performs a hybrid sales and technical role, including advising on SharePoint migrations, Intune, Azure Information Protection, Microsoft licensing, cloud to cloud backup, email protection and filtering, virtual desktop, productivity roadmaps, and more. More on Cloud Conversations The podcast is hosted by Peter Rising and Ru Campbell, both Petri contributors; and Kat Greenan, a Microsoft Solutions Specialist and Microsoft Teams Champion. Each week, Peter, Ru, and Kat speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry experts and... --- ### Microsoft Patches Azure Active Directory Private Key Data Vulnerability > Learn how to mitigate the recently patched Microsoft Azure Active Directory private key data vulnerability. In this article, you will find out what the issue is, which services and apps it affects, and links to Microsoft official remediation guides. - Published: 2021-11-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-patches-azure-active-directory-private-key-data-vulnerability/ - Categories: Microsoft Azure, Microsoft Entra ID (Azure AD) - Tags: AAD, Azure Active Directory, Azure AD, cloud computing, keyCredential, Microsoft Azure, News, Security, service principal - Article Type: News Microsoft recently made changes to Azure Active Directory (Azure AD) to mitigate an issue where private key data stored in an Azure AD application or service principal could be read in clear text. Some Azure services were incorrectly storing private key data in Azure AD in the keyCredentials property when creating applications for customers. Microsoft has been investigating the issue and didn't find evidence of malicious activity. What is the Azure AD keyCredentials property? The keyCredentials property in Azure AD is meant for storing a certificate with public key data for use in application authentication. Microsoft says that certificates with private key data could have also been stored in the keyCredentials property. Public keys are designed for 'public' consumption and it's normal that read access should be given. But private keys should always be safeguarded. To mitigate the keyCrednentials property issue in Azure AD, Microsoft says: Microsoft Azure services affected by this issue have mitigated by preventing storage of clear text private key information in the keyCredentials property, and Azure AD has mitigated by preventing reading of clear text private key data that was previously added by any user or service in the UI or APIs. Microsoft Azure products and services affected by the Azure AD keyCredentials property vulnerability In the table below, you'll find a summary of the affected Azure products and services, including links to Microsoft's official remediation guidance. Table 1 - Products and services affected by the private key data vulnerability Product or service Mitigation Impact and... --- ### Microsoft Announces Teams Phone with Calling Plan > Learn how Microsoft is simplifying management and lowering costs with its new Teams Phone with Calling Plan option for SMBs. Starting January 1, 2022, customers in 33 markets will be able to purchase Teams Phone with Calling Plan directly from Microsoft. - Published: 2021-11-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-teams-phone-with-calling-plan/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, News, Teams Phone - Article Type: News   The main gist of this month's Teams Phone announcement is that Microsoft is consolidating Business Voice with its Enterprise offerings in a new plan, "Teams Phone with Calling Plan. " Microsoft launched Microsoft 365 Business Voice in 2019. It provides SMEs with a complete phone solution that is designed to work with Microsoft Teams. Teams Phone with Calling Plan was added to make it easier for companies to decide which plan to purchase and to streamline the rollout of enterprise-grade features for SMBs. Starting January 1, 2022, customers in 33 markets will be able to purchase Teams Phone with Calling Plan directly, while companies in the US, UK, and Canada will be able to use the Teams Phone website to purchase the plan. The remaining markets will be able to join the Teams Phone train later in January. What is Teams Phone with Calling Plan? Teams Phone with Calling Plan is a comms product that assists SMBs in lowering costs and simplifying operations. You get calling, chat, meetings, and collaboration in a single app, so users can call from any location and on a device of their choosing, like their PC, phone, and meeting rooms.  Teams Phone with Calling Plan brings together a phone system and a domestic calling plan. Teams Phone with Calling Plan (Image Credit: Microsoft) Teams Phone with Calling Plan includes features such as: Auto-attendants Call queues Consultative transfer Voicemail transfer Microsoft delivers these features in Teams Phone with Calling Plan using its secure cloud technology, providing customers... --- ### Semperis Hybrid Identity Protection Conference 2021 > Learn about the foundations of the Hybrid Identity Protection Conference, the value it brings to IT pros, especially those working with Active Directory, and about how technologies, like Verifiable Credentials and passwordless authentication, will affect the hybrid identity landscape in the future. - Published: 2021-11-24 - Modified: 2024-09-04 - URL: https://petri.com/semperis-hybrid-identity-protection-conference-2021/ - Categories: Hybrid Cloud - Tags: Active Directory, Azure Active Directory, cloud computing, Hybrid Identity Protection, Hybrid Identity Protection Conference, Windows Server - Article Type: Sponsored The Hybrid Identity Protection (HIP) Conference is the premier educational forum for IT pros tasked with managing identity and securing hybrid cloud environments. As the global health pandemic and move to digitalization change the way enterprises work, the HIP Conference helps IT pros to learn and implement technology that mitigates new business risks. The conference was voted best in the 2020 and 2021 Globee Awards, and the Cyber Security Excellence Awards and IT World Awards in 2020. And although HIP has been virtual since last year, it attracts speakers from C-level executives to some of the best-known technologists in the industry. Sponsored: Semperis is an enterprise identity protection company that enables organizations to quickly recover from devastating changes and disasters that compromise Active Directory, on-premises, and in the cloud. What need does the Hybrid Identity Protection Conference fill A recent report by Gartner suggests that by 2025, only 3 percent of organizations will have moved fully to using a cloud identity management solution like Azure Active Directory (AAD) for authentication. That means organizations are going to be working with hybrid cloud environments for the foreseeable future. And adding Azure AD to the already difficult task of managing on-premises Windows Server Active Directory, adds to the risks and challenges for IT departments.   The Hybrid Identity Protection Conference helps IT professionals deal with the problems of managing security in a hybrid cloud world. And it's especially beneficial for big organizations that have a large investment in line-of-business applications that have been... --- ### How to Deploy Microsoft Defender Application Control (Previously WDAC) > Previously known as Windows Defender Application Control (WDAC), Microsoft Defender Application Control (MDAC) is now accessible to organizations using Windows 10 and 11 Professional. Learn how to deploy MDAC using Microsoft Intune and Configuration Manager. - Published: 2021-11-23 - Modified: 2024-09-04 - URL: https://petri.com/how-to-deploy-microsoft-defender-application-control-previously-wdac/ - Categories: Microsoft 365 - Tags: Application Control, Application Whitelisting, ConfigMgr, Defender Control, MDAC, MEM, Microsoft Defender, Microsoft Defender Application Control, Microsoft Endpoint Manager, Microsoft Intune, Security, WDAC, Windows 10, Windows 11, Windows Defender Application Control - Article Type: How To Previously known as Windows Defender Application Control (WDAC), Microsoft Defender Application Control (MDAC) is now even more accessible to organizations through the removal of the Windows 10 Enterprise / Education requirement. Now, organizations using Windows 10 and Windows 11 Professional are able to leverage the feature to gain greater insight and control of their Windows device estate. Table of contents What is Microsoft Defender Application Control? Deploying Microsoft Defender Application Control Deploy Microsoft Defender Application Control using an Intune Endpoint Security Profile configuration Deploy Microsoft Defender Application Control using Intune Endpoint Protection Policy configuration Deploy Microsoft Defender Application Control using an Intune Custom Profile Deploy Microsoft Defender Application Control using Endpoint Configuration Manager (ConfigMgr) built-in policy Summary What is Microsoft Defender Application Control? Microsoft Defender Application Control, and previously WDAC, is an application whitelisting technology that builds upon the foundations set in AppLocker, which was initially introduced in Windows 7 to allow organizations to control exactly which applications can run on their Windows devices. However, whilst AppLocker helps control application usage and prevent users from running non-approved apps, it is not as feature-rich or security-focused as Microsoft Defender Application Control. Whilst Microsoft Defender Application Control should be chosen over AppLocker where given a choice; it’s also possible to configure both features to work in parallel. This might be useful for an organization with specific requirements around legacy operating systems or those who need to control the use of specific drivers. Deploying Microsoft Defender Application Control There are a few ways... --- ### How to Create a Team in Microsoft Teams - Published: 2021-11-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-team-in-microsoft-teams/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, Productivity - Article Type: How To Microsoft Teams is a chat-based workspace that groups people and enables them to share and collaborate on ideas and information. Here's how to create a team and manage team members. Teams are useful for organizing work information, chat, and tools into channels. Before you create a team, you should understand who should have access to it and how information is likely to organized in an effective way for the team. And decide whether a team is necessary. Maybe chat is sufficient? Check out Microsoft Teams Channels vs. Chat on Petri for more information on the difference between teams channels and chat. How to create a team in Microsoft Teams There are many questions about what type of team to create, what the logical design should be, whether to use a private or public team and what its intended purpose should be. We'll assume you've made all those decisions and are ready to create one. Well, what are we waiting for? Let's create our new team! Team creation is thankfully straightforward. To create a team in Microsoft Teams: On the left side of the Microsoft Teams app, click Teams. At the bottom of the teams list, click Join or create a team. And now click the 'Create team' button. Let's look at the process in more detail. Click the Create team button Throughout 2021, Microsoft has added some options including pre-made templates that start the ball rolling for you in terms of channel types, names, and even some apps ready for you... --- ### Cloud Conversations EP33 – Sheryl Netley on Power Platform > In this week's episode, Sheryl Netley, who is a Microsoft Power Platform MVP, discusses how she changed the focus of her career, attending and speaking at events, women in Power Platform, forming habits to get the most out of your day, and much more! - Published: 2021-11-19 - Modified: 2024-09-04 - URL: https://petri.com/cloud-conversations-ep33-sheryl-netley-on-power-platform/ - Categories: Video - Tags: Career Advice, cloud computing, Power Platform - Article Type: Video Cloud Conversations is a weekly podcast that we'll be featuring here on Petri. It's about everything connected to cloud computing, including technologies like Azure, Microsoft 365, Power Platform, Microsoft Endpoint Manager (MEM), Microsoft Defender, Windows, Intune, and much more! Episode 33 – Sheryl Netley on Microsoft Power Platform In this week's episode, Sheryl Netley, who is a Microsoft Power Platform MVP, discusses how she changed the focus of her career, attending and speaking at events, women in Power Platform, forming habits to get the most out of your day, and much more!   Sheryl is a Microsoft Valuable Professional, Microsoft Certified Trainer, and a Microsoft Dynamics 365 & Power Platform Functional Consultant. With more than 20 years' experience, Sheryl helps organizations implement "innovative, customer focused, quality assured service management solutions, that maximize and extend the capabilities of the Microsoft Power Platform and Dynamics 365 applications. " More on Cloud Conversations The podcast is hosted by Peter Rising and Ru Campbell, both Petri contributors; and Kat Greenan, a Microsoft Solutions Specialist and Microsoft Teams Champion. Each week, Peter, Ru, and Kat speak to a guest who shares their industry insights and technical experience. Cloud Conversations doesn't only focus on the technical. Each episode covers topics like career progression, community, productivity to get the most out of your day as an IT pro, equality and diversity in IT, and much more to help IT pros survive and thrive out in the wild! Previous guests on Cloud Conversations include a list of well-known industry... --- ### How to Manage Access Reviews within Microsoft 365 > In this article, I'm going to show you how to audit security in Microsoft 365 with Access Reviews in Azure Active Directory (AAD). Learn how to set up and run Access Reviews from the Azure management portal and using the Microsoft Graph and PowerShell. - Published: 2021-11-18 - Modified: 2024-11-19 - URL: https://petri.com/how-to-manage-access-reviews-within-microsoft-365/ - Categories: Microsoft 365 - Tags: Access Reviews, Azure Active Directory, Microsoft 365, Microsoft Graph, PowerShell, Security - Article Type: How To   In this article, I'm going to show you how to audit security in Microsoft 365 with Access Reviews in Azure Active Directory (AAD). I'll show you how to set up and run Access Reviews from the Azure management portal and using the Microsoft Graph and PowerShell. Azure Active Directory enables core collaboration with users both inside and outside the organization. Users can join groups, teams, invite guests, connect to specific cloud applications, use work or personal devices, and work anywhere. It is straightforward to allow anyone to be part of the organization and work within the Microsoft 365 tenant. However, the downside to this is the assignment of correct permissions and managing them when they need revoking or modifying. Luckily Microsoft 365, and specifically Azure Active Directory, provides the ability to review assigned permissions. The best part of this is that it is not down to the IT Administrators to confirm the access is correct; it can be done directly by the specified user or a manager of the resource's owner. The feature is called "Access Reviews" and it is part of the overall "Identity Governance" features of Microsoft 365. Access reviews require the Azure Active Directory Premium Plan 2 license, though not for everyone. The directory needs at least as many Azure Active Directory Premium Plan 2 licenses as the number of employees set as reviewers, performing self-reviews, are a group owner performing an access review, or are application owners conducting an access review. When assigning guests as... --- ### Microsoft Defender for Business Brings Enterprise-Grade Endpoint Security to SMEs > In this article, you'll learn what Microsoft Defender for Business is, what it includes, and what benefits it brings to SMEs with up to 300 employees. - Published: 2021-11-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-business-brings-enterprise-grade-endpoint-security-to-smes/ - Categories: Security - Tags: Microsoft 365, Microsoft Defender, Microsoft Defender for Business, News, Security - Article Type: News On November 2nd 2021, Microsoft announced Microsoft Defender for Business. The announcement comes following a series of rebranding exercises into the “Microsoft Defender for” fold. What is Microsoft Defender for Business? Microsoft Defender for Business is a new endpoint security solution that will be available soon in preview. Defender for Business is designed to bring enterprise-grade endpoint security to small and medium sized organizations with up to 300 employees. With a name like Microsoft Defender for Business, you might be forgiven for expecting this product to contain elements of the Microsoft Defender suite that can be combined to give overall protection for Businesses. In fact, what Microsoft has announced is more along the lines of “Microsoft Defender for Endpoint for Business”, but you can probably see why that name didn’t make it to launch. Enterprise-grade endpoint security In their release notes, Microsoft refers to Microsoft Defender for Business as “bringing capabilities from our industry-leading Microsoft Defender for Endpoint solution and optimizing them for businesses with up to 300 employees. ”. Impressive capabilities for SMEs The Business version of Defender for Endpoint will include some impressive capabilities that have previously been only available to organizations purchasing Microsoft 365 E5, or E3 with an E5 Security “step-up”. 1. Threat and Vulnerability Management Threat and Vulnerability Management is an easy-on-the-eye dashboard, detailing an organization's “scores” in a sort of “gamification of threats protection”. Administrators can quickly visualize where their devices are vulnerable or open to attack. Threat and Vulnerability Management... --- ### Windows 10 November 2021 Update (21H2) Release and New Features for IT Pros - Published: 2021-11-17 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-november-2021-update-21h2-release-and-new-features-for-it-pros/ - Categories: Windows 10 - Tags: News, Windows 10, Windows 10 21H2, Windows 10 November 2021 Update - Article Type: News 16th November 2021, Microsoft made the Windows 10 November 2021 Update (21H2) generally available. In this article, I'm going to tell you about all the new features for IT pros. As with previous Windows 10 feature updates, Microsoft is taking a measured approach to the rollout, throttling availability via Windows Update to make sure users have a smooth experience. How to get the Windows 10 November 2021 Update Consumers can install the Windows 10 November 2021 Update before their current version of Windows 10 reaches end of support by opening Windows Update and selecting Check for updates. To open Windows Update, press WIN+I together to start the Settings app. Then select Update & Security > Windows Update. Windows Update will now check for available updates. If your device is eligible, click Download and install to start the installation. You'll be prompted when your device is ready to be restarted. Windows 10 November 2021 Update availability for commercial customers The Windows 10 November 2021 Update is available for commercial customers through Windows Server Update Services (WSUS), Configuration Manager (ConfigMgr), Windows Update for Business (WUfB), and the Volume Licensing Service Center (VLSC). Windows 10 November 2021 Update is also the build being used for Windows 10 Enterprise LTSC 2021, which Microsoft provides for customers that need a longer period of support for special-purpose devices, like those used in manufacturing and healthcare. This LTSC version of Windows 10 gets 5 years' support. New features in the Windows 10 November 2021 Update (21H2) Microsoft... --- ### Windows Subsystem for Linux and Hyper-V Get USB Passthrough Support > In this article, I explain how Microsoft has added USB device passthrough support to Windows Subsystem for Linux 2 (WSL) and Hyper-V. Click to learn more! - Published: 2021-11-16 - Modified: 2024-09-04 - URL: https://petri.com/windows-subsystem-for-linux-and-hyper-v-get-usb-passthrough-support/ - Categories: Windows Client OS - Tags: Hyper-V, News, USB device passthrough, Windows 10, Windows 11, Windows Subsystem for Linux, WSL - Article Type: News Windows Subsystem for Linux (WSL) is a feature in Windows that lets developers test and run Linux binaries directly from their desktop. The beauty of WSL is that there's no need to switch between your Windows desktop and a virtual machine (VM) to develop Linux code. For instance, you can open a Linux shell in Windows Terminal or use Visual Studio Code to build, debug, and run Linux apps without installing Linux in a VM. WSL brings developers the convenience of Windows with the power of Linux for app development. If you are new to WSL, learn here how to install Windows Subsystem for Linux 2 and Ubuntu. WSL has been generally welcomed by developers. And for most, it has proven more than adequate for their development needs on Windows. But developers working on IoT devices, where apps are developed for embedded Linux distributions, were left out in the cold because these devices connect to PCs via USB, which until now, wasn't supported by WSL. For more information on how to run Linux GUI apps using WSL, check out How to Install Linux GUI Apps in Windows 10 and Windows 11 with WSL on Petri. Microsoft announced earlier this month that there's now WSL support for USB device passthrough, albeit not natively. The functionality has been enabled by an open-source project called usbipd-win-project that lets developers use WSL in common scenarios that require USB connectivity, like flashing an Arduino or using a smartcard reader. The project was originally started by... --- ### Microsoft Issues Emergency Update Fix for Windows Server SSO Authentication Bug - Published: 2021-11-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-issues-emergency-update-fix-for-windows-server-sso-authentication-bug/ - Categories: Windows Server - Tags: Active Directory, Azure Active Directory, News, Security, Single Sign-On, SSO, Windows Server - Article Type: News Microsoft has issued an out-of-band emergency update fix to patch an authentication issue that was caused by the November 9th cumulative update for Windows Server. The bug affects Windows Server 2008 SP2 through to Windows Server 2019. The November 9th Patch Tuesday cumulative update (CU) for Windows Server causes a problem that can cause authentication failures on Active Directory (AD) domain controllers (DC). Microsoft says about the new out-of-band update: Addresses a known issue that might cause authentication failures related to Kerberos tickets you acquired from Service for User to Self (S4U2self). This issue occurs after you install the November 9, 2021 security updates on domain controllers (DC) that are running Windows Server. The bug caused by the Patch Tuesday update can prevent end users from signing into services or apps that are configured to use single sign-on (SSO) in AD or hybrid Azure Active Directory (AAD) environments. Errors on systems impacted by the SSO Windows Server authentication bug Microsoft says that organizations might see the following issues on systems affected by the bug: Event Viewer might show Microsoft-Windows-Kerberos-Key-Distribution-Center Event 18 logged in the System event log Error 0x8009030c with text Web Application Proxy encountered an unexpected is logged in the Azure AD Application Proxy event log in Microsoft-AAD Application Proxy Connector event 12027 Network traces contain the following signature similar to the following: 7281 24:44 (644) 10. 11. 2. 12 . contoso. com KerberosV5 KerberosV5:TGS Request Realm: CONTOSO. COM Sname: http/xxxxx-xxx. contoso. com 7282 7290 (0) . CONTOSO. COM Kerberos extension S4U2self impacted by November 2021 Patch Tuesday... --- ### Cloud Site List Management for IE Mode Enters Public Preview - Published: 2021-11-15 - Modified: 2024-11-19 - URL: https://petri.com/cloud-site-list-management-for-ie-mode-enters-public-preview/ - Categories: Windows Client OS - Tags: Cloud Site List Management, IE Mode, Internet Explorer, Microsoft Edge, Windows 10, Windows 11 - Article Type: Overview As part of Microsoft's flurry of announcements out of Ignite November 2021, a new feature to assist IT Pros with their transition from Internet Explorer (IE) to Microsoft Edge, called Cloud Site List Management, is coming to the Microsoft 365 Admin Center. (What else are they going to add to this portal? ! ) Cloud Site List Management, now entering public preview, is a new, cloud-based interface to keep track of the important and vital websites and web apps in your organization. This is a boon to IT pros in terms of ease of use and the ability to publish these lists for multiple installation methods. Org Settings - Microsoft Edge site lists What is Cloud Site List Management? As you transition your workflows and applications from IE11 to IE Mode (in Microsoft Edge), Cloud Site List Management lets you manage your site lists in the cloud, behind an authenticated portal - the Microsoft 365 Admin Center. Being able to store your site lists in a compliant cloud location instead of needing on-premises infrastructure, allows more flexibility and efficiency in maintaining this ever-important feature. Cloud Site List Management Prerequisites The following prerequisites apply during the public preview phase: Customers must have an Azure AD tenant. Admins must have Microsoft Edge version 93 or greater installed and the latest version of the Edge policy files. Admins need to be an Edge Administrator or a Global Administrator on the tenant to access the Microsoft Edge site lists experience. To opt in to the public preview, a Global Administrator is required... --- ### The Ultimate Guide to Installing OpenSSH on Windows > In this mega 'how-to' guide, you'll learn how to install and configure OpenSSH on Windows. Find out how to connect remotely to Linux, Unix, Oracle, Windows, Windows Server, and other operating systems via the secure command line. Click to learn more! - Published: 2021-11-12 - Modified: 2024-09-04 - URL: https://petri.com/the-ultimate-guide-to-installing-openssh-on-windows/ - Categories: Windows 10, Windows 11, Windows Server 2019, Windows Server 2022 - Tags: OpenSSH, PowerShell, puTTY, Remote Access, remote administration, Secure Shell, SSH, Windows 10, Windows 11, Windows Server 2019, Windows Server 2022, Windows Settings app, Windows Terminal - Article Type: How To As a seasoned, or even new IT Pro, you're likely an avid user of Putty, using secure shell (SSH) to connect to Unix/Linux servers, computers, and even Windows machines for an efficient and secure remote command-line experience. Well, did you know Windows 10, Windows 11, and Windows Server 2019 (and Windows Server 2022) include an open-source implementation of SSH? In this mega 'how-to' guide, you'll learn how to install and configure OpenSSH on Windows. Find out how to connect remotely to Linux, Unix, Oracle, Windows, Windows Server, and other operating systems via the secure command line. How is SSH implemented in Windows? There are two separate components of OpenSSH in Windows - an SSH client and an SSH server. Microsoft implemented both in Windows using OpenSSH Client and OpenSSH Server respectively. And there are also two main methods to install and uninstall these components in Windows. The OpenSSH Client feature is installed by default in higher-end versions of Windows. The Client is like the functionality of Putty. It allows you to make 'client' connections to other servers and devices using various secure protocols. You can confirm if you have the client installed by opening a command prompt or PowerShell prompt and typing 'ssh' and hitting Enter. You will be provided with an overview of how to use the ssh command if it is already installed. OpenSSH common output Install OpenSSH using Windows Settings To install OpenSSH Client, let's first use the more modern approach - Windows Settings. First, click the Start button, then click Settings.  Next, click the 'Apps'... --- ### AWS Announces the Ability to Switch Windows Server and SQL Server License Types > AWS now offers the ability to switch between AWS provided licenses and bring your own licenses (BYOL) for Windows Server and SQL Server instances using the AWS License Manager. Click to learn more! - Published: 2021-11-12 - Modified: 2024-09-04 - URL: https://petri.com/aws-announces-the-ability-to-switch-windows-server-and-sql-server-license-types/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, Cloud, News, SQL Server, Windows Server - Article Type: News As of this past November 9th 2021, AWS now offers the ability to switch between AWS provided licenses and bring your own licenses (BYOL) for Windows Server and SQL Server instances using the AWS License Manager. Changing the license type associated with your instances will retain the application, instance, data and configuration for that instance. Previously, you would have needed to redeploy your workloads in order to change license types. Only the licensing type will be changed which can affect your operational costs. The billing change of the new license type will take effect from the next billing second after the license has been changed. You can change the license types at any time after you have launched an instance using the License Manager console, API or Command Line Interface (CLI). When you switch from a BYOL to an AWS license included type, then EC2 automatically activates the Windows Server license on the instance. For SQL Server, you will retain your same product key. Changing your license type from an AWS license included to a BYOL will require you to import your own Windows and SQL Server images through VM Import Export (VMIE) to create Amazon Machine Images (AMIs). You can then use these AMIs to launch Windows and SQL Server instances. Switching from an AWS license included to a BYOL license type requires you to activate Windows Server using either your own Key Management Service (KMS) or Multiple Activation Key (MAK). Switch AWS Windows Server and SQL Server license... --- ### Microsoft Retiring Desktop Analytics in 2022 > Microsoft is ending support for Desktop Analytics in 2022. In this article, I'll explain how Microsoft Endpoint Manager (MEM) Endpoint analytics will be replacing it, what the new features are, and what you need to do to take advantage of it. Click to learn more! - Published: 2021-11-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-retiring-desktop-analytics-in-2022/ - Categories: Endpoint Management - Tags: Desktop Analytics, Endpoint Analytics, Microsoft Endpoint Manager, Microsoft Intune, News - Article Type: News November 30th, 2022 will see Microsoft end availability for its Desktop Analytics solution. Microsoft said in a blog post dated November 5th: "To align our investments with this goal and the shift we have been seeing, we are announcing that we will retire Desktop Analytics on November 30, 2022. Over the next year, we will begin incorporating the types of insights found in Desktop Analytics directly into the Microsoft Endpoint Manager admin center, making them available for PCs that are managed via Intune-only, co-managed, and Configuration Manager with tenant attach. " Desktop Analytics is a cloud-based solution that organizations can use to determine whether remote endpoints are ready to update to either the next version of Windows or a feature update. It uses insight and intelligence provided by the OS to determine device readiness. Using data collected from millions of Windows PCs, and devices in your organization, Desktop Analytics creates an inventory of apps running across PCs, assesses application compatibility with the latest Windows feature updates, suggests mitigations for identified compatibility issues, and much more. Windows 11 endpoint analytics Microsoft says that it has already started incorporating features from Desktop Analytics into Microsoft Endpoint Manager (MEM) as part of the recent Windows 11 release. Organizations can use MEM to understand whether managed PCs meet the necessary system requirements for Windows 11. This helps companies determine which PCs can migrate as hardware issues are the top reason for blocking upgrades from Windows 10. Endpoint analytics Hardware readiness insights... --- ### Patch Tuesday November 2021 - Microsoft Patches Windows RDP Zero-Day and Exchange RCE - Published: 2021-11-10 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-november-2021-microsoft-patches-windows-rdp-zero-day-and-exchange-rce/ - Categories: Security - Tags: Adobe, Exchange Server, Microsoft Office, News, Patch Tuesday, Security, Windows, Windows 10, Windows 11, Windows Server - Article Type: News Patch Tuesday in November 2021 sees Microsoft release patches to address 55 CVEs, including fixes for 6 zero-day bugs. There are updates for products including Windows, Windows Server, Office, Exchange Server, Active Directory, Microsoft Dynamics, Hyper-V, and Azure Real Time Operating System (RTOS), which is ThreadX RTOS, an embedded real-time operating system that Microsoft purchased from Express Logic in 2019. Windows and Windows Server Another month and Microsoft patches a Remote Desktop Protocol (RDP) bug (CVE-2021-38666) in Windows. The patch fixes a vulnerability in the RDP client software that's built into Windows and Windows Server. An attacker could use the vulnerability to install malicious code on a client system if they were able to trick a user into connecting to a malicious RDP server. This bug affects all versions of Windows, going back to Windows 7 and Windows Server 2008. There's a patch this month for a remote code execution vulnerability in the Virtual Machine Bus (VMBus) in Windows (CVE-2021-26443). The bug could allow an attacker to escape from a guest virtual machine (VM) to the host Hyper-V server. An attacker could send a specially crafted message on the VMBus Channel to the host operating system and then run arbitrary code on the host. There are several elevation of privilege (EoP) bugs fixed in Windows this month that affect NTFS and Active Directory (AD). The bugs in AD could allow an attacker to move laterally across devices, so it's important to get your domain controllers (DC) patched. There's also a... --- ### Understanding Microsoft Information Protection > In this article, we'll tackle Microsoft Information Protection (MIP), explaining exactly what it is and the many services, features, and capabilities that comprise it. Click to learn more! - Published: 2021-11-09 - Modified: 2024-09-04 - URL: https://petri.com/understanding-microsoft-information-protection/ - Categories: Microsoft 365 - Tags: Compliance, Data Loss Prevention, DLP, Microsoft Information Protection, Office 365 - Article Type: Overview There are a lot of compliance-based services across Microsoft 365's licensing options. At the highest level, a Microsoft 365 E5 subscription for a tenant gives administrators a ton of toys to play with. The naming, marketing, and placement of the capabilities you get can be fuzzy. In this article, we'll tackle Microsoft Information Protection (MIP), explaining exactly what it is and the many services, features, and capabilities that comprise it. What is Microsoft Information Protection? Microsoft Information Protection (MIP) is a stack, or framework, of capabilities that achieve four high-level objects for securing information: Know it Protect it Stop losing it Govern it Think of MIP as a collection of features, services, and controls that are grouped together because combined, they work towards achieving those goals. This means MIP is not a single license, it's not a single piece of technology, and it's not a single service you set up: it's the full suite of options at your fingertips for managing information compliance in Microsoft 365. Exploring Microsoft Information Protection capabilities Let's get into an overview of some of the capabilities that make up Microsoft Information Protection, and how you can get started with them. Sensitivity labels apply classification and protective controls. Originally applicable to emails and files, their scope now also includes containers such as Teams and other sources such as Azure Purview and PowerBI. License rights to assign labels are available within the Enterprise Mobility + Security license stack, or something that includes it, such as Microsoft 365 Business... --- ### Microsoft Defender for Cloud Supports AWS > Microsoft Defender for Cloud provides critical security functions for your resources and workloads in multiple clouds and on-premises. This article describes what Defender for Cloud is and what cloud platforms it supports. Click to learn more! - Published: 2021-11-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-cloud-supports-aws/ - Categories: Amazon Web Services, Cloud Computing, Microsoft Azure - Tags: AWS, AWS AKS, AWS EC2, Azure, Microsoft Defender for Cloud, News - Article Type: News At this past virtual Ignite 2021 conference, Microsoft announced that their Microsoft Defender for Cloud service will provide native support for Amazon Web Services (AWS). Multi-cloud protection has become a priority for most businesses. Flexera’s 2021 State of the Cloud report showed that 92% of organizations now have a multi-cloud strategy. Microsoft Defender for Cloud was previously called Azure Security Center and Azure Defender. It is a Cloud Security Posture Management (CSPM) offering that is intended to provide protection for your hybrid and multi-cloud workloads as well as find weaknesses in your cloud configurations. Like its name suggests, it is intended to strengthen the overall security posture of your multi-cloud environment. Microsoft Defender for Cloud is designed to provide three critical security functions for your resources and workloads in multiple clouds and on-premises: Continuous assessment – Enables you to better understand your current security posture by providing a single score that represents your current security risk. Secure - Hardens all connected resources and services by implementing recommendations with detailed remediation steps. Defend - Detects and resolves threats to your resources and services. When threats are detected, alerts appear in the Azure portal. Alerts can also be sent via email, SIEM, SOAR, or to IT Service Management solutions. Microsoft Defender for Cloud platform support At Ignite, Microsoft announced that Defender for Cloud could now provide native CSPM for AWS with threat protection for Amazon Elastic Kubernetes Service (EKS) and AWS Elastic Compute Cloud (EC2). Microsoft Defender for Cloud implements an agentless... --- ### Visio on the Web Coming to Microsoft 365 Commercial Users > Every user with an Office 365 or Microsoft 365 commercial subscription is entitled to Visio on the Web at no additional cost. Learn more here! - Published: 2021-11-05 - Modified: 2024-09-04 - URL: https://petri.com/visio-on-the-web-coming-to-microsoft-365-commercial-users/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Visio, Visio on the Web - Article Type: News Back in August, Microsoft started rolling out a web version of the Visio app to Microsoft 365 commercial subscribers. Every user with an Office 365 or Microsoft 365 commercial subscription is entitled to this new web experience at no additional cost. Not bad. As part of the announcement just prior to Microsoft's Ignite tech conference, 75 million users have the ability to create, edit, and share diagrams, either in the Visio web app or right in Microsoft Teams. (If you don't see these features yet, hang tight! The rollout is ongoing and expected to be completed by January 2022. ) Let's learn about some new features and workflows in the new Visio web rollout. Sharing Visio diagrams The core capabilities of the Visio desktop app have been baked into the new web interface to allow you (ITPros) and your end users to easily create diagrams, block diagrams, business matrices, Venn diagrams, and other flowcharts with four dozen templates and hundreds of shapes! Example of a Venn diagram created in Visio for the web   At the core of Visio, it's all about putting ideas into visual artifacts, more easily explained and perceived by their audiences. Connecting things on a construct, or a matrix. With real-time collaboration at its heart, multiple team members can simultaneously work on a Visio diagram, a network rack diagram, for example, to efficiently lay out how those new Hyper-V hosts are going to be laid out in that special 42U rack you just bought. In the healthcare... --- ### 3CX Teams Integration > This article describes the new Teams integration in 3CX and how you can now use it to help bridge the gap in places where we are hosting our own session boarder controller (SBC). - Published: 2021-11-05 - Modified: 2024-04-16 - URL: https://petri.com/3cx-teams-integration/ - Categories: Microsoft 365 - Tags: 3CX, Activities, collaboration, Microsoft 365, Microsoft Teams - Article Type: Sponsored Historically when integrating with Microsoft Teams voice you would need to work with Microsoft to migrate your own telephone numbers to Microsoft and use their calling plans.   The other option is to create a direct route, implement your own session boarder controller (SBC) or a hosting provider session boarder controller and then link this to a Session Initiation Protocol (SIP) trunk provider.   Good news is that there is an alternative available now. We can now use 3CX to help bridge the gap in places where we are hosting our own SBC, our solution providers hosting the SBC, but this is costly. There is a massive overhead in doing so, we could have relationships with the sbc vendor, hardware provider, handset manufacturer, SIP trunk provider, soon you’ll realise it’s a jumble to keep it all moving. But this is the beauty of 3CX, it simplifies this.   How to configure 3CX v18 for Microsoft Teams Keith Winhall has written a few articles on how to get the whole solution to work in a three part series – Part 1, Part 2, and Part 3    Azure The positive things to think about are how it bolts together and what it gives.   It’s ultimately a very clever direct route.   It works seamlessly with Microsoft Azure AD. There is a three-part process that needs to be followed. First step is to connect the latest version of 3CX directly to Azure AD to then allow access then to import all the user’s information through. Sponsored: 3CX... --- ### Microsoft Teams Ignite November 2021 News Roundup > In this article, I'm going to cover all the important new Microsoft Teams features announced in November 2021 at Ignite, including updates to chat, collaboration, the metaverse, Teams Rooms, and much more. - Published: 2021-11-04 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teams-ignite-november-2021-news-roundup/ - Categories: Microsoft 365 - Tags: collaboration, Hybrid Work, Metaverse, Microsoft 365, Microsoft Ignite November 2021, Microsoft Mesh, Microsoft Teams, News, Productivity, Work From Home - Article Type: News Teams is one of the fastest growing products Microsoft has ever released, so it shouldn't come as a surprise that there was a big focus on Teams at the November edition of Ignite. In this article, I'm going to cover all the important news in brief. New Microsoft Teams chat features Microsoft Teams chat recently got the ability to send quoted replies. But there are lots more new chat features coming to Teams, all of which are rolling out sometime between November and early 2022: Talking to yourself doesn't make you crazy! Want to send yourself messages? Now you will be able to do just that using chat with self. Sometimes it can be difficult to manage a chat with so many messages displayed at the same time. Chat density will allow you to customize the number of messages you can see on screen in different modes. From 6 to more than 800 3D emojis! Teams will let you express yourself better. Want to type a message at the weekend but have it delivered on Monday morning? Delayed delivery is coming to Teams chat. New search features let you filter results and toggle between tabs to find the information that you need. Collaboration across organizational boundaries with Microsoft Teams Microsoft Teams was originally positioned as a communication and collaboration tool for small internal groups. But as it has usurped email in many organizations, groups are looking to utilize teams across organizational boundaries. To help avoid the need to constantly switch... --- ### Microsoft 365 Built-in Data Protection > Let’s take a closer look at Microsoft 365’s built-in data protection technologies and see what steps you might need to take for your own complete data protection needs. - Published: 2021-11-03 - Modified: 2024-04-17 - URL: https://petri.com/microsoft-365-built-in-data-protection/ - Categories: Microsoft 365 - Tags: Backup, Cloud, Exchange Online, Microsoft 365, Office 365, SharePoint Online - Article Type: Sponsored Microsoft 365 is the most widely used cloud application for business and it has several different technologies that are designed to protect your data. Let’s take a closer look at Microsoft 365’s built-in data protection technologies and see what steps you might need to take for your own complete data protection needs. Sponsored: Afi. ai provides a modern solution for backing up Office 365 including full Teams support, SharePoint and OneDrive file metadata and sharing permissions, and many other advanced and modern features. OneDrive Recycle Bin By default, Microsoft 365 applications like Word and Excel, save their files in OneDrive. The OneDrive Recycle Bin is the most basic Microsoft 365 data protection technology. It is primarily designed to protect against accidental file deletion. The OneDrive Recycle Bin allows you to undelete individual files as well as the entire contents of the OneDrive. If you used a Microsoft account to sign into OneDrive, then items in the Recycle Bin are saved for 30 days before they are automatically deleted. If you're signed in with a work or school account, then Recycle Bin items are saved for 93 days before they are deleted. SharePoint Recycle Bin SharePoint also uses a Recycle Bin. When you delete items from a SharePoint site, they are sent to the site Recycle Bin which is also known as the first-stage Recycle Bin. This also includes OneDrive files that are part of SharePoint sites. Deleted SharePoint items are retained for 93 days from the time they are deleted. The SharePoint Recycle... --- ### Microsoft Loop is Rebrand of Fluid Framework - Published: 2021-11-03 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-loop-is-rebrand-of-fluid-framework/ - Categories: Microsoft 365 - Tags: collaboration, Microsoft 365, Microsoft Loop, Microsoft Teams, News, Notion, Productivity - Article Type: News At its Ignite conference yesterday, Microsoft announced that some parts of its Fluid Framework are being rebranded as Microsoft Loop. Or at least some parts of it. First announced in 2019, the Fluid Framework provides users with what Microsoft describes as 'atomic units of productivity' that can be shared and worked on independently of a parent application. For example, instead of pasting a static task list into an email message or Teams chat, you could instead create a component that exists independently of whatever Microsoft 365 application you might use to create it; and then collaborate and work on the item in real time. Sharing and coauthoring portable Office components Today, users can paste items across applications. And some Microsoft 365 apps, like Lists and Planner, let you attach files or links if you want to include additional information in a format not supported by those apps. But the Fluid Framework, or now Microsoft Loop, promises to provide much more flexibility when it comes to collaborating on and sharing different types of content across Microsoft 365 apps. Microsoft Loop will be released as a standalone app in 2022 and it will provide a canvas upon which users can create content, in a choice of different formats, using the provided components or third-party components. Microsoft Loop vs Notion Microsoft Loop, and the various components it will support, is a challenge to productivity apps like Notion, which has seen large uptake over the past few years as a place where small teams... --- ### Microsoft Ignite – Highlights for IT Pros > In this article, I'm going to cut through all the marketing spiel and highlight my picks for the Microsoft Ignite November 2021 sessions that will be most important for Petri readers. - Published: 2021-11-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-highlights-for-it-pros/ - Categories: Microsoft - Tags: Microsoft Ignite 2021, Windows, Windows 11, Windows Server - Article Type: Overview Ignite Hero The second installment of Microsoft Ignite November 2021 kicks off today, November 2nd, at 4. 15 CET with the opening keynote by Satya Nadella. The conference runs through to November 4th. Many of the sessions can be watched on-demand after the event but not all of them. In this article, I'm going to cut through all the marketing spiel and highlight my picks for the sessions that will be most important for Petri readers. So, let's get started... Ignite Tuesday November 2nd The first session on my radar is Agile, collaborative, secure: Why adopt Windows 11 today, delivered by Aidan Marcuss and Wangui. If you need a quick overview of the value Windows 11 can bring to your organization, then this is a good place to start. At 7. 30pm CET, join Mary Jo Foley and Paul Thurrott for a session called Microsoft Ignite Into Focus, where the two journalists, along with host Allison Weins and Eli Khnaser will have a roudtable discussion to dive deeper into the news and announcements from the morning's keynote and core theme sessions. If security is a priority in your organization, which it should be if it isn't already, then Tackling the biggest cybersecurity challenges for 2022 is a breakout session with several speakers from Microsoft and Bernard Brantley from Corelight. Optimizing Microsoft Teams for Hybrid Work - Conversations in AltspaceVR is a Connection Zone event where a range of Microsoft Valuable Professionals (MVP) from different Microsoft Partners talk about collaboration, meetings and devices,... --- ### What's New with Power Platform - October 2021 Edition - Published: 2021-11-01 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-power-platform-october-2021-edition/ - Categories: Power Platform - Tags: dataverse, News, power apps, Power Automate, Power Platform - Article Type: News Lots to cover this month! So, let's get started with what's new with Power Platform in October 2021. Release wave 2 has been rolling out, but Microsoft has released some updates above and beyond the release wave. Performance improvements, quality of life improvements, and as always, new Power Automate connectors have been introduced this month. Hope you all enjoy all the new changes! App. StartScreen Power Apps property A new App property was introduced this month, called StartScreen. This property allows you to define which screen you want your user to start on. This property can obviously employ logic, so you can use it to deep link. The most important implication of this new property is that navigation can no longer happen within the OnStart property of an app. The Power Apps team has ensured that any existing apps that utilize navigation OnStart will retain that capability, but moving forward, if you want to navigate to a different starting screen, you will have to put logic in the StartScreen property. The purpose of this change was to improve load times by requiring startup navigation to be declarative rather than imperative. To learn more about this you can watch my new video on the topic. Tab navigation in Power Apps A new experimental feature has been released, titled “improved canvas keyboard navigation”. According to the release notes, this is expected to “ the behavior of tab stops in nested controls such as components and new properties to customize tab stop behavior. ”... --- ### What's New with Windows – October 2021 Edition - Published: 2021-11-01 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-windows-october-2021-edition/ - Categories: Windows Client OS, Windows Server - Tags: Discovery of Designated Resolvers, DNS over HTTPS, News, Online Service Experience Packs, Update Stack Packages, Windows 10 November Update, Windows 11, Windows Insider, Windows Sandbox, Windows Server, Windows Subsystem for Android, Windows Subsystem for Linux - Article Type: News Windows 11 is now generally available, there are already fixes for a long list of bugs and performance issues with AMD processors, and Android apps come to users in the Windows 11 Beta Channel. Plus, there's much more of what's new with Windows in October 2021, so let's get started! Windows 11 is now generally available October 4th saw Microsoft make Windows 11 generally available. Initially available only to select devices via Windows Update, Microsoft expects the rollout of Windows 11 to eligible devices to be complete in spring 2022. Consumers can download Windows 11 independently of Windows Update from Microsoft's website with the help of the Media Creation Tool or Windows 11 Installation Assistant. The Windows 11 Installation Assistant is the best way to upgrade your current device if you don't want to wait for Windows 11 to be offered via Windows Update. Alternatively, you can download the Windows 11 ISO file using the Media Creation Tool. And organizations can download the Windows 11 media from the Volume Licensing Service Center. Before updating, make sure that your device meets the Windows 11 minimum hardware requirements. There have also been some teething problems, which is to be expected. So, you might want to hold out to November Patch Tuesday, or even later, until Microsoft irons out some early kinks in Windows 11. AMD and Microsoft release performance fix for Windows 11 Windows 11 users with AMD processors have been seeing some performance issues. An issue with L3 caching could affect... --- ### Microsoft Brings HTTP/3 via Windows Server 2022 to Exchange Online > In this article, I explain how Microsoft has dramatically increased performance of frontend Exchange Online servers by deploying Windows Server 2022 and HTTP/3. - Published: 2021-10-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-http-3-via-windows-server-2022-to-exchange-online/ - Categories: Exchange Online, Windows Server 2022 - Tags: Exchange Online, Microsoft 365, networking, News, Windows Server 2022 - Article Type: News One of the most important infrastructure features Microsoft released with the recent Windows Server 2022 is HTTP/3. Since hitting the 'General Availability' milestone this past September, the Windows Server team has partnered with the Microsoft 365 team in starting a phased upgrade of the front-end Exchange Online servers with Windows Server 2022. Microsoft started with https://outlook. office. com/. Exchange Online performance boost with Windows Server 2022 and HTTP/3 As of early to mid-October, they have already deployed 20% of the capacity with Windows Server 2022. The data they have received thus far has been very promising and, most importantly, beneficial to their customers... YOU! HTTP/3 Requests Per Second Total requests per second (RPS) have increased steadily right along the lines as more Windows Server 2022 servers have been deployed to Exchange Online service front doors. (These are the servers that receive and process most of the client connections requesting access to Exchange Online mailboxes - Outlook desktop app, Outlook on the Web, Outlook Mobile, etc) Now that they've achieved 20% deployment, they are seeing RPS spike to nearly 50K per second! Processing 50 thousand client requests... per SECOND! Last-Mile latency reduction also helps improve Exchange Online speed That's remarkable. Microsoft's Windows Server teams have also been tracking last-mile request latencies. These are the times measured between your Outlook desktop app and these front-end servers. Exchange Online front doors support small request, small response workloads for various 'Single Page Applications', like Outlook on the Web where responsiveness is a key differentiator... --- ### How to Download the Windows 11 ISO - Published: 2021-10-28 - Modified: 2024-09-04 - URL: https://petri.com/windows-11-iso-download/ - Categories: Windows 11 - Tags: Windows 11 - Article Type: How To In this quick guide, I'm going to show you how to download the Windows 11 ISO image file, which you can use to install Windows 11 in a virtual machine (VM), perform a Windows 11 upgrade from Windows 10, or use to create your own installation media. If you want to install Windows 11 in a VM or create your own installation media, then the best option is to download the ISO file directly from Microsoft. Windows 11 ISO Download To download the Windows 11 ISO, there are four easy steps: Go to the Microsoft Software Download page and click Windows 11. On the Windows 11 download page, scroll down to Download Windows 11 Disk Image (ISO) and select Windows 11 in the dropdown menu. Now click Download. Under Select the product language, select your language from the dropdown menu and click Confirm. Below Download, click 64-bit Download to begin downloading the Windows 11 ISO file. Microsoft's Software Download page What is an ISO file? An ISO file is an image file that contains all the information required to write information to an optical disk or bootable USB drive. For example, instead of Microsoft shipping Windows 11 media as physical optical disks to customers, it can provide an ISO image file to download. Customers can then choose to either create their own media using the provided file or mount the file directly in virtualization software, like Hyper-V and VMWare, for the purposes of installing Windows 11... --- ### Using Microsoft 365 Defender Threat Analytics to Improve Security > Managing your security posture and responding to threats is an ongoing operation. And in this article, I'm going to describe how to use Microsoft 365 Defender Threat Analytics to improve security in your organization. - Published: 2021-10-27 - Modified: 2024-09-04 - URL: https://petri.com/using-microsoft-365-defender-threat-analytics-to-improve-security/ - Categories: Microsoft 365, Security - Tags: Antimalware, Malware, Microsoft 365, Microsoft 365 Defender, Microsoft Defender, Ransomware, Security - Article Type: Overview In this article, I'm going to describe how to use Microsoft 365 Defender Threat Analytics to improve security in your organization. Over three Petri articles, we've dived into what Microsoft Defender for Endpoint (MDE) is, how you can migrate to it, and how it should be configured. Part 1: Understanding Microsoft Defender for Endpoint and How It Protects Your Data Part 2: How to Plan for Microsoft Defender Endpoint Deployments and Migrations  Part 3: Microsoft Defender for Endpoint – Important Service and Endpoint Settings You Should Configure Right Now One thing remains: how you should use it in your ongoing security operations. This is where things extend beyond 'just' MDE and onto Microsoft 365 Defender as the larger extended detection and response (XDR) platform and security portal. This is important because to truly leverage MDE's capabilities, we must understand how it integrates with the rest of the platform, and protect against threats as they move across the environment. What is Extended Detection and Response (XDR) in Microsoft 365 Defender? Extended Detection and Response (XDR) is a feature in Microsoft 365 Defender that unifies the protection, response, and protective capabilities of four core security services: Microsoft Defender for Endpoint (MDE) Covered in-depth over the last three parts of this series, MDE ultimately focuses on protecting your endpoints such as client computers, servers, and mobile devices. Microsoft Defender for Identity (MDI) Agents are deployed to your on-premises Active Directory environment to alert you about known attacks and suspicious behavior as they pertain... --- ### Ransomware Risks for Microsoft 365 - Published: 2021-10-26 - Modified: 2024-09-04 - URL: https://petri.com/ransomware-risks-for-microsoft-365/ - Categories: Microsoft 365, Ransomware - Tags: Backup, Cloud, Microsoft 365, Office 365, Ransomware, Security - Article Type: Sponsored With the rise in remote workers the risk of ransomware is higher than it has ever been before. By now most people know that ransomware is a type of malware extortion scheme that typically encrypts files and folders preventing access to critical data or sometimes it can also be used to steal sensitive data. After the attack there is a demand for money – usually in the form of Bitcoin – in exchange for the decryption keys or the promise not to release sensitive data. The threat of ransomware attacks continues to grow as exploits like Ransomware-as-a-Service (RaaS), which first emerged in 2016, gain in hacker popularity and enable a greater scale and easier proliferation of ransomware attacks. Most ransomware attacks are focused on on-premises implementations. However, the threat of ransomware isn’t just limited to local devices. Cloud data like the data used by Microsoft 365 can also be at risk and it can be susceptible to data corruption. Let’s take a closer look at how ransomware can impact Microsoft 365. Microsoft 365 data types and vulnerabilities As Microsoft 365 is collection of different programs like Word, Excel, OneDrive, and Teams it actually uses a number of different documents and data types. Exchange Online – Email messages and attachments SharePoint Online – Shared documents and web pages OneDrive – User files Teams Chats – Chat text and Teams channel messages Even though this data is typically stored in the cloud, all these data types can be potentially corrupted by... --- ### Windows 11 on Intel Alder Lake Threatens to Outperform Apple M1 Pro and M1 Max Chips > Wccftech recently got their hands on benchmarks for a pre-release Core i9-12900HK Alder Lake mobile chip. And in a Geekbench 5.4.1 test, the i9-12900HK apparently outperforms the Apple M1 Max. - Published: 2021-10-25 - Modified: 2024-09-04 - URL: https://petri.com/windows-11-on-intel-alder-lake-threatens-to-outperform-apple-m1-pro-and-m1-max-chips/ - Categories: Windows 11 - Tags: Apple, News, Windows 11 - Article Type: News At an event on Oct 18th, 2021, Apple announced new 14-inch and 16-inch MacBook Pro notebooks, sporting updated M1 processors, the M1 Pro and M1 Max respectively. Released earlier in 2021, the 3-inch MacBook Air and 13-inch MacBook Pros use the first generation of Apple's M1 chip. At the time of launch, the original M1 chip generated a lot of attention because of the price to performance ratio, blasting similarly priced Windows-based notebooks out of the water. How is the Apple M1 chip different? The Apple M1 uses a system on a chip (SoC) design where memory, graphics, and other components are unified on one die. Unifying the architecture of critical components, like RAM and CPU, allows for reduced latency and improved speeds. The M1 chips are based on ARM, which also brings considerable power improvements over Intel and AMD x86 chipsets, allowing Apple notebooks to maintain performance on battery power and run on battery for more longer periods. In fact, if you were in the market for a 1000 USD notebook in early 2021, didn't need Windows, and didn't use any Windows-only apps, then the 13-inch Apple MacBooks, based on the M1 chip, were a bit of a no-brainer. Why pay more for a Windows device that couldn't even begin to compete on a performance perspective? Apple M1 Pro and Max chips The new M1 chips announced this month are designed for creators who need to perform some heavy-duty lifting, like motion graphics or similarly CPU/GPU-intensive tasks where the... --- ### AWS Panorama Provides Computer Vision > The AWS Panorama appliance is a computer vision (CV) appliance that uses Machine Learning (ML) to analyze images provided by your on-premises cameras. - Published: 2021-10-25 - Modified: 2024-09-04 - URL: https://petri.com/aws-panorama-provides-computer-vision/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, AWS Panorama, News - Article Type: News This past October 20th, 2021 Amazon announced the general availability of their new AWS Panorama appliance. Adding to their ever increasing number of on-premises solutions, AWS Panorama shows exactly how seriously AWS takes the hybrid cloud market. What is AWS Panorama? The AWS Panorama appliance is a computer vision (CV) appliance that uses Machine Learning (ML) to analyze images provided by your on-premises cameras. AWS Panorama is designed to enable businesses in industries like manufacturing, hospitality, logistics, and retail to make decisions faster and optimize their operations. For example, it could be used to perform physical inspections of production lines to spot defects in the manufacturing process. Automate tasks that would normally require human interactions The appliance enables businesses to automate tasks that would normally require human interactions. For instance, some businesses use manual processes like watching video feeds in real time to monitor processes or other work conditions. This can be tedious, expensive, and difficult to scale. AWS Panorama architecture (Image Credit: Amazon) Alternatively, some existing smart cameras can provide real-time visual inspection. However, replacing existing cameras with new smart cameras can be costly. In addition, some customers capture and then forward video feeds to external third party servers for processing and analysis but this requires significant internet bandwidth, which can be costly and in some cases slow. AWS Panorama is an on-site hybrid appliance AWS Panorama is a ruggedized IP62 rated appliance that is designed for edge deployments. It’s both dust proof and water resistant. It is intended to locally... --- ### Surface Duo 2: Better Hardware, Same Productivity - Published: 2021-10-21 - Modified: 2024-09-04 - URL: https://petri.com/surface-duo-2-better-hardware-same-productivity/ - Categories: Hardware - Tags: Surface, Surface Duo 2 - Article Type: Overview The Surface brand is full of products that tried something different. The classic Pro put a different spin on a tablet, the Studio with a twist on the desktop, and then there is the Duo, the two-screen foldable that is Surface in name but it does not run Windows. When I took a look last year at the Surface Duo, it was a field trip down a lane of “what ifs” – could Microsoft build a modern PDA, a dual-screen device, could they build an Android phone, and could they make it Surface? The company was putting the Surface brand on the line to create a pocketable device that they hoped would steal some of the industry's limelight - with the Duo 2, they are back in (nearly) black. So here we are, looking at the Duo 2 that is improved in nearly every way from its predecessor. Much like the Surface Pro 8, Microsoft took everything they heard from customers and applied it to the product. This is a good thing, as the Pro 8 got the update it needed and the Duo 2 follows a similar path. This means you get a Snapdragon 888 processor, triple camera arrangement, 5G, better displays and the list goes on and on. This feels more like an overhaul than a refresh but you are not here to read a spec sheet, you’re an IT Pro wondering how this can fit into your workflow... how can the Duo 2 make your day better -... --- ### How to Validate Applications Using Test Base for Microsoft 365 > Test Base for Microsoft 365 is a platform which allows you to script and automate your application compatibility testing. In this article, I will take you through the steps in Azure required to test apps before you deploy them. - Published: 2021-10-21 - Modified: 2024-11-19 - URL: https://petri.com/how-to-validate-applications-using-test-base-for-microsoft-365/ - Categories: Microsoft 365 - Tags: Application Deployment, Application Testing, Microsoft 365, Microsoft Endpoint Manager, Test Base - Article Type: How To Test Base for Microsoft 365 is a platform which allows you to script and automate your application compatibility testing. Hosted in Azure, and based on Azure virtual machines, this service allows the easy onboarding of applications through a dedicated area of the Azure portal. To validate apps in Test Base, you should: Sign up for the Test Base service in the Azure management portal. Create a new Azure Resource Group and specify a Test Base account. Zip and upload the application dependencies, and then upload them to Azure to create a new test package. Specify the scripts you will use to perform an Out of Box test. Launch the tests by completing the wizard. Review the test results. Test Base for Microsoft 365 in public preview Test Base for Microsoft 365 was originally released as the “Update Staging Lab” in 2020. At Ignite that year, it was renamed to Test Base for Microsoft 365 and given a fresh set of features courtesy of direct feedback from IT admins. Initially the platform was intended and available only to critical software vendors of antivirus, VPN and security apps, allowing them to gain vital insights into how their applications will perform on multiple versions of Windows. Since July 2021, Test Base for Microsoft 365 has been in public preview, with access to the platform available to all Azure customers via a simple service creation page. Getting started is easy It’s incredibly easy to get started with an account for Test Base for Microsoft... --- ### How to Avoid Disaster Recovery Failures - Published: 2021-10-20 - Modified: 2023-05-24 - URL: https://petri.com/how-to-avoid-disaster-recovery-failures/ - Categories: Backup & Storage - Tags: Backup, Disaster Recovery - Article Type: Overview Experiencing a disaster is one of the worst possible events for both businesses and their IT departments. However, there is one worse event – failure to recover from the disaster.  While every IT department should have a disaster recovery (DR) plan, that doesn’t mean every DR plan will work. In the best case, a failure costs the business unexpected downtime and expensive delays while they attempt to recover. In the worst case, the business could go under. That's not just hyperbole. According to a report from the Federal Emergency Management Agency (FEMA), 40% of businesses never reopen following a disaster. And for those that do, the impact is so high that another 25% fail within one year. Disaster recovery failure is simply not an option any business wants to experience. To avoid disaster recovery failure, you should consider the following four points: Identify critical apps, data, and services to recover Include stakeholders at every level of the business Test regularly Update regularly Let’s have a closer look at some of the reasons why DR plans can fail. 1. Improperly identifying critical disaster recovery components The first part of an effective DR plan is identifying the different assets and their dependencies for your business-critical applications. Identifying your critical applications is typically fairly straightforward. However, today’s applications can be very complex with lots of moving parts and dependencies that can be both critical as well as easy to overlook. These dependencies can be all sorts of things ranging from local programs and... --- ### Windows 11 is the Most Inclusive and Accessible Windows to Date > Windows 11 makes huge steps forward in terms of accessibility, making most scenarios simply more accessible by default. In this article, I walk through the key accessibility features in Windows 11. - Published: 2021-10-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-11-is-the-most-inclusive-and-accessible-windows-to-date/ - Categories: Windows 11 - Tags: Accessibility, Windows 11 - Article Type: Overview Accessibility is one of the fundamental elements required when creating inclusive technology. When developing a platform that over a billion people worldwide use daily, it’s vital to understand the impact poor usability and accessibility can have. Poor usability can cause irritation for the average user, but it can be a complete blocker to those who have additional requirements or needs, preventing enjoyment, learning, employment, or creativity. The new and updated accessibility features in Windows 11 are: Closed Captions Contrast and Dark Mode Voice Typing New Accessibility Settings area Inclusivity built in Designed specifically to improve accessibility and inclusivity, Windows 11 pushes the bar above it’s predecessor. Whilst still based upon familiar features like desktop, Start menu, and search, each has been redesigned with a focus on making them accessible first. Improvements since Windows 10 It’s predecessor, Windows 10, included features such as Narrator, Magnifier, Speech Recognition, and Subtitles. Windows 11 takes these to the next level, with improvements across the board. Closed Captions Closed Captions, for example, are essential for those who are deaf or hard of hearing. They are also vital for those who use their Windows 11 computer in environments where they need to remain quiet, such as a library. Similarly, Closed Captions can allow a viewer to enjoy content in a particularly noisy environment, where they would otherwise be unable to hear what’s being said. Contrast and Dark Mode For the visually impaired, Windows 11 includes an improved set of sounds that aid navigation within the OS... . --- ### Microsoft is Bringing Update Stack Packages to Windows 11 > Update Stack Packages deliver changes to the Windows 11 update experience before a monthly cumulative update (CU), or yearly feature update, is pushed out to Windows 11 devices. Update Stack Packages shouldn't be confused with servicing stack updates or feature experience packs. - Published: 2021-10-18 - Modified: 2021-10-18 - URL: https://petri.com/microsoft-is-bringing-update-stack-packages-to-windows-11/ - Categories: Windows 11 - Tags: News, Update Stack Package, Windows 11, Windows Feature Experience Pack, Windows Insider Program, Windows Update - Article Type: News As part of Windows 11 Insider Preview build 22478 in the Dev Channel, Microsoft is starting to test a new way to update the servicing stack in Windows. What are Update Stack Packages? Update Stack Packages deliver changes to the Windows 11 update experience before a monthly cumulative update (CU), or yearly feature update, is pushed out to Windows 11 devices. Update Stack Packages shouldn't be confused with servicing stack updates or feature experience packs. Microsoft says in a post on the Windows blog announcing the release of Windows 11 Insider Preview build 22478, that "The Update Stack Package will help ensure that your PC has the highest likelihood of successfully installing new updates with the best and least disruptive experience available. " At this time, the Update Stack Package feature is restricted to updating a small set of update-related system files that Microsoft engineers work on independently from the OS. Microsoft says that by testing this new feature with Windows Insiders first, it hopes to expand the scope and frequency of Update Stack Package releases going forward. Microsoft goes on to detail how Insiders will get Update Stack Packages: "Update Stack Packages will be delivered to Insiders through Windows Update just like builds and cumulative updates are. Insiders in the Dev Channel today can go to Settings > Windows Update and Check for updates to receive the Update Stack Package. " Update State Package vs Servicing Stack Update How Update State Packages differ from servicing stack updates is unclear currently. Microsoft... --- ### How to Join the Windows Insider Program and Upgrade Your Device > This post will walk you through joining the Windows Insider Program on a device, and the distinct options you have in joining the WIP train and offering feedback to Microsoft about the future of Windows. - Published: 2021-10-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-join-the-windows-insider-program-and-upgrade-your-device/ - Categories: Windows 11 - Tags: Windows 11, Windows Insider Program - Article Type: How To Welcome to my third post discussing all things Windows Insider Program (WIP). My first post went over the business angle. My second described more of the history and various Channels available to 'Insiders. ' This post will walk you through joining the Windows Insider Program on a device, and the distinct options you have in joining the WIP train and offering feedback to Microsoft about the future of Windows. Don't forget that installing Insider Preview builds, especially from the Dev Channel, can lead to more exposure to bugs and low stability as you get access to the newest code, which hasn't usually been tested widely. The Dev Channel is better for technical users who are experienced at troubleshooting Windows. Non-technical users could consider joining the Release Preview Channel, which is the most stable and it is a candidate build for general release. How to join the Windows Insider Program As an IT Pro (or an end-user), it's rather straightforward to join a device to WIP. To join the Windows Insider Program, click Start menu > Settings > Update & Security > Windows Insider Program and then click Get started on the Windows Insider Program screen in the Settings app. Now pick a work or school account, or Microsoft Account, to link to the device. Then choose to enroll the device in either the Dev Channel, Beta Channel, or Release Preview Channel. Click the Confirm button and then Restart Now to complete the process. Here are the instructions in more detail... Windows Insider... --- ### Microsoft Defender for Endpoint - Important Service and Endpoint Settings You Should Configure Right Now > In this article, I'll talk you through some of the key and most important Microsoft for Endpoint configuration settings you need to know about, specifically for Windows 10 and Windows 11, and general advice on getting up and running. - Published: 2021-10-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-endpoint-which-settings-configure-right-now/ - Categories: Microsoft 365, Security - Tags: Defender, Endpoint security, Microsoft 365, Microsoft Defender, Microsoft Defender for Endpoint, Security - Article Type: How To, Overview Microsoft Defender for Endpoint (MDE) is much more than a traditional antivirus service. Now being offered in Plan 1 and Plan 2, the full offering you get with Plan 2 not only provides antivirus capabilities but also extended detection and response, attack surface reduction rules to harden the OS against common threat mechanisms, and threat and vulnerability management (TVM) to monitor first and third-party patch and exploit status. That's not even all of it. With all these capabilities, there's a lot to navigate. It's not made simpler by the choice of locations you have to configure it all: the Microsoft 365 Defender portal, Intune, ConfigMgr, and Group Policy. In this article, the third in a series on MDE, I'll talk you through some of the key and most important configuration settings you need to know about, specifically for Windows 10 and Windows 11, and general advice on getting up and running. With potentially thousands of things to configure, we can't cover everything, but this will steer you towards the most significant options you should know about. Microsoft Defender for Endpoint - Important Settings to Configure Here is a list of the most important service and endpoint settings you should configure in Microsoft Defender for Endpoint: Live response Allow or block file Custom network indicators Web content filtering EDR in block mode Tamper protection Role-based access control (RBAC) Block at first sight (BAFS) Real-time protection Firewall Attack surface reduction rules (ASR) Service settings: Microsoft 365 Defender portal The Microsoft 365 Defender... --- ### Smooth Scrolling Comes to Excel for Windows > Microsoft Excel is getting an update that will make it easier to scroll through a worksheet with large cells and view all the data. In this article, I explain how Microsoft has solved this problem and when you can expect to see it arrive in Excel. - Published: 2021-10-15 - Modified: 2024-09-04 - URL: https://petri.com/smooth-scrolling-comes-to-excel-for-windows/ - Categories: Microsoft 365, Office - Tags: Excel, Microsoft 365, News, Office 365, Productivity - Article Type: News Have you ever been scrolling through a large Microsoft Excel spreadsheet and stopped because you came across some cells with important data and it whips right past you? Well, Microsoft Excel engineers have been working to enhance this aspect of Excel for a long time. When they set out to 'put the idea to code' for this enhancement, they very quickly noticed that tiny changes they made to make scrolling easier affected countless other aspects of the program. So, they spent many many months, and the fruit of their labor is finally here for us all! Microsoft has heard from many of you that scrolling issues are prevalent, especially on large spreadsheets with a lot of data to keep track of. The main engineering reason is that Excel automatically snapped to the top-left cell as you scrolled. Although you may think this would be an easy fix, as I said above, altering 'a few lines of code', can affect a whole lot more. Here's a partial list of what they found to be affected: freezing panes, cutting and pasting, filtering, resizing rows, cell styles, comments, dragging and filling, and much more! Smooth Scrolling is here! How smooth scrolling works in Excel When you're scrolling in a sheet with very large or tall cells, the former way Excel snapped to the grid made it hard to view your data. Thanks to a lot of feedback and suggestions from end-users (feedback rocks! ), they took it upon themselves to fix the issue by... --- ### Microsoft Intune App Protection Policies Get Improved Targeting Capabilities > With the release of Microsoft Intune Service Release 2109, App Protection policies now support targeting to categories of applications. The categories are All Apps, All Microsoft Apps, and Core Microsoft Apps. - Published: 2021-10-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-intune-app-protection-policies-get-improved-targeting/ - Categories: Information Security - Tags: cloud computing, Microsoft Endpoint Manager, Microsoft Intune, Mobile Application Management, News, Security - Article Type: News With Microsoft Intune Service Release 2109, released the week of 27th September 2021, there have been some significant improvements in how targeting for App Protection Policies can be achieved. These new capabilities come alongside an array of new Intune capabilities available in this new update. What are Microsoft Intune App Protection Policies? According to Microsoft, "App protection policies (APP) are rules that ensure an organization's data remains safe or contained in a managed app. A policy can be a rule that is enforced when the user attempts to access or move "corporate" data, or a set of actions that are prohibited or monitored when the user is inside the app. A managed app is an app that has app protection policies applied to it, and can be managed by Intune. " Previous experience Prior to this new release, Microsoft Intune administrators were required to specify the list of applications that would be targeted by App Protection Policies. This static list approach meant that when new applications were released or made available, they would not automatically be included in App Protection Policies. The problem with static assignments App Protection Policies are usually configured to restrict data movement into and out of Corporate and Non-Corporate apps, such as preventing cut/copy/paste of data from Outlook to Facebook. However, as new applications are released, for example a new Microsoft application that users are permitted to use to access corporate data, these applications would need to be manually added to the App Protection Policy to ensure... --- ### Microsoft Teams Desktop Client Gets Quoted Reply Feature for Chat - Published: 2021-10-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-desktop-client-gets-quoted-reply-feature-for-chat/ - Categories: Microsoft 365 - Tags: Chat, collaboration, Microsoft 365, Microsoft Teams, News, Productivity - Article Type: News The Microsoft Teams desktop client is getting a long-awaited feature update that lets you send quoted replies to messages in chat. And it is rolling out now. It might sound like a first world problem, but when chats get long, it can be difficult to keep track of conversations without the ability to quote messages when you reply to a specific question or topic. And until now, that's been one of the main disadvantages of using Microsoft Teams chat over conducting conversations in a Teams channel, which in contrast to chat, display separate conversations as distinct blocks that can be easily distinguished from each other. The formatting of conversations in Teams channels makes conversations easy to follow. How to send a quoted reply in Microsoft Teams chat There are two ways that you can send a quoted reply in Teams chat in the desktop client. Microsoft Teams Gets Quoted Reply Feature for Chat (Image Credit: Microsoft) The first is to right click a message that you want to quote and then select Reply from the context menu. The second way to send a quoted reply in Teams chat is to click the actions menu (... ) that appears in the top right when you hover over a message. Then select Reply from the list of options in the menu. Microsoft Teams quoted reply works with one-to-one, group, and meeting chats Another cool feature is that if you click on a quote included in a quoted reply, Microsoft Teams will take you... --- ### Patch Tuesday October 2021 – Microsoft Fixes Windows Kernel Zero-Day and Critical Bug in Exchange Server - Published: 2021-10-13 - Modified: 2021-10-13 - URL: https://petri.com/patch-tuesday-october-2021-microsoft-fixes-windows-kernel-zero-day-and-critical-bug-in-exchange-server/ - Categories: Security - Tags: Exchange Server, News, Security, Windows 10, Windows 11, Windows Server - Article Type: News This month's Patch Tuesday for includes a cumulative update (CU) for Windows 11, which was made generally available October 4th. In total Microsoft released patches addressing 71 CVEs in Windows, Edge, Exchange Server, . NET Core, SharePoint Server, and many other products. Two of the CVEs patched this month are rated Critical, and 68 Important. And three bugs are zero-days, with one apparently being actively exploited in the wild. Patch Tuesday Windows and Windows Server CVE-2021-40449 addresses a Windows kernel vulnerability that could be used to escalate privileges. While there's not much detail on this bug, because it was reported by security company Kaspersky, it's likely that it is already being exploited by hackers. There's a patch this month for an information disclosure bug (CVE-2021-40454) in the Rich Text Edit Control in Win32 apps. While nobody has been able to demonstrate how this flaw might be harnessed in practice, it could allow an attacker to access cleartext passwords and other information stored in memory. Windows Hyper-V gets patches for two remote code execution vulnerabilities, CVE-2021-38672 and CVE-2021-40461, that also apply to Windows 11 and Windows Server 2022. This month there is a patch for a bug (CVE-2021-36970) in the Windows Print Spooler service. The flaw was reported by XueFeng Li and Zhiniang Peng with Sangfor, the researchers who earlier this year disclosed details about one of the flaws that later became known as PrintNightmare. There are no details about the new flaw but considering the issues Microsoft has been having with... --- ### Amazon Announces the General Availability of VMware Cloud on AWS Outposts - Published: 2021-10-12 - Modified: 2021-10-12 - URL: https://petri.com/amazon-announces-the-general-availability-of-vmware-cloud-on-aws-outposts/ - Categories: Amazon Web Services, Cloud Computing, VMware - Tags: AWS, AWS Outposts, News, VMware Cloud - Article Type: News This past Oct 5th 2021, Amazon announced the general availability of VMware Cloud on AWS Outposts. In case you’re not familiar with AWS Outposts, they have been available since December 2019. AWS Outposts are essentially an Amazon provided hardware platform that runs on-premise and supplies hybrid cloud services.  Amazon provides the hardware and software and they are also responsible for tasks like maintenance, provisioning, patching and backups. Outposts are connected to the nearest AWS Region. AWS Outposts are managed just like the AWS cloud. VMware Cloud is essentially VMware’s enterprise-class Software-Defined Data Center (SDDC) software. In the case of VMware Cloud on AWS Outposts, VMware Cloud is running on dedicated AWS Nitro System-based EC2 bare metal Outposts instances. You use the familiar VMware tools such as VMware Cloud Service Portal, vSphere vMotion, or HCX to migrate, deploy and manage VMware Cloud on AWS Outposts. Simplify IT operations and assist with data center modernization VMware Cloud on AWS Outposts is designed to simplify IT operations and assist with data center modernization. AWS delivers and installs the Outpost at your on-premises location. They also take care of all maintenance and replacement of the hardware as well as monitoring and updating the system software. VMware provides continuous lifecycle management for their SDDC services and they are also your first line of support for any problems or issues. Low-latency and compute heavy workloads VMware Cloud on AWS Outposts is intended to run low-latency and compute heavy workloads. It provides local on-premise data processing and... --- ### External Sharing and Guest User Access in Microsoft 365 and Teams - Published: 2021-10-12 - Modified: 2021-10-12 - URL: https://petri.com/external-sharing-and-guest-user-access-in-microsoft-365-and-teams/ - Categories: Microsoft 365 - Tags: cloud computing, Microsoft 365, Microsoft Teams, Security - Article Type: Overview Sharing content with users external to your organization and managing guest user access in Microsoft 365 and Microsoft Teams can be confusing to understand and difficult to manage. If you would like to know more about this important aspect of cloud security, download this free eBook. AvePoint dives into policy considerations you need to make when creating and managing guest user access to Teams. As well as the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure. Download your free eBook The eBook also outlines some of the major decision points across four general-purpose guest access policy scenarios for how an organization can set this up with standard licensing. Readers will learn answers to key consideration questions like: Who should be allowed to be invited as a guest? What type of guests should be able to access files in SharePoint and OneDrive? How should guests be offboarded? How should you determine who has access to sensitive information in your environment? You can download the free eBook on External Sharing and Guest User Access in Microsoft 365 and Teams from Petri's website. --- ### Endpoint Management 1-Day Virtual Conference Now Available On Demand > Free 1-day conference on using endpoint management to manage and deploy devices with Microsoft Intune, Windows Autopilot, Configuration Manager, and Windows Update. - Published: 2021-10-11 - Modified: 2024-09-04 - URL: https://petri.com/endpoint-management-1-day-virtual-conference-now-available-on-demand/ - Categories: Windows 10 - Tags: Conference, Configuration Manager, credentials, Endpoint Management, Microsoft Endpoint Management, Microsoft Endpoint Manager, Microsoft Intune, Mobile Device Management, Remote Access, Security, Windows Autopilot, Windows Update - Article Type: Overview Petri's Endpoint Management 1-day virtual conference is now available to view on demand. At the end of last month, Petri hosted a full free day of learning, covering topics like how to manage devices using Microsoft Intune, how to deploy new hardware with Windows Autopilot, and managing security updates with Windows Update. The management of endpoints is complicated, and the risks associated with having unsecured devices roaming outside the firewall are quickly becoming a targeted vector for malicious users. In Petri's 1-day virtual conference, we dove deep into how you can improve the way you manage your endpoints and learn from industry experts and MVPs about best practices, available tools to streamline your operations, and what's coming soon with Windows 11. Managing Hybrid Windows 10 Devices on the Internet via Intune and ConfigMgr The first session, hosted by Dean Ellerby, covers the key steps in managing remote devices using Microsoft Intune and Configuration Manager (ConfigMgr). In the session, Dean looks at how Intune and ConfigMgr work together, and how ConfigMgr's capabilities can be extended to the cloud using Cloud Management Gateway. In the demo, Dean shows you how to deploy software to a Windows 10 device that is hybrid-domain joined but that isn't enrolled with Intune and is not co-managed. Microsoft Intune How To Achieve Better Endpoint Management with the Proper Remote Connection Tool The second session of the day is hosted by Maurice Côté. Maurice looks at how with the right tool, you can quickly... --- ### How to Install the New Microsoft Defender for Endpoint Agent on Windows Server 2012 R2 and 2016 > In this article, I'll show you how to install the new Microsoft Defender for Endpoint agent in Windows Server 2012 R2 and Windows Server 2016. The new agent brings additional protection capabilities to these server platforms and is currently in public preview. - Published: 2021-10-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-defender-for-endpoint-server-2012-r2-2016/ - Categories: Security, Windows Server - Tags: Microsoft Defender for Endpoint, Windows Server, Windows Server 2012 R2, Windows Server 2016 - Article Type: How To New protection capabilities for Microsoft Defender for Endpoint (MDE) customers landed in public preview, Oct 7th 2021, for Windows Server 2012 R2 and Windows Server 2016.   With the public preview, Windows Server 2012 R2 and 2016 gain 'functional equivalence' to Windows Server 2019, thanks to a new agent that is being described as the 'unified solution'. Historically, a significant gap Previously, as detailed in Understanding Microsoft Defender for Endpoint and How It Protects Your Data on Petri and here on my own blog, there was a large feature gap between Windows Server 2019 and these "down-level" OSs. The onboarding process was also different. To get devices into MDE, you had to deploy the Microsoft Monitoring Agent (MMA).   This was required as the EDR sensor wasn't built-in, unlike with Server 2019. While Server 2016 shipped with Microsoft Defender Antivirus (MDAV) installed already, to get any kind of scanning and endpoint protection capability in Server 2012 R2, you had to install System Centre Endpoint Protection (SCEP). Even after onboarding and having either MDAV or SCEP, you still didn't get the full capabilities of MDE that you did with Windows Server 2019. Key among the features missing were attack surface reduction (ASR) rules and automated investigation and response (AIR). On the portal, you also couldn't perform actions such as live response or file responses. As of today, in public preview, you can. Improvements now in public preview With the improved feature parity, Microsoft remove a blocker for many organizations adopting MDE on servers,... --- ### The New Microsoft Whiteboard App is Here > The new Microsoft Whiteboard app brings many new features, including a new modern look, over 40 new templates, reactions, and the ability to insert images and shapes. - Published: 2021-10-08 - Modified: 2024-09-04 - URL: https://petri.com/the-new-microsoft-whiteboard-app-is-here/ - Categories: Microsoft 365 - Tags: collaboration, Microsoft 365, Microsoft Whiteboard, News - Article Type: News Yes, it's new! And there are a LOT of new features in the new Microsoft Whiteboard app, which reached general availability at the end of September. For starters, Microsoft is rolling the new Whiteboard interface experience out to the web, Teams, and Android platforms. The last 18 months have seen the evolution of hybrid work develop into a new reality, being adopted across many different companies, industries, and employee types. The new Microsoft Whiteboard app includes the following new features: A new modern look and feel More than 40 new templates 12 new sticky notes Note grids 8 reactions, such as like and smile. The ability to insert images and shapes New inking tools The ability to format the background Object alignment and rotation snapping And the ability to send objects to front and send to back Microsoft Whiteboard has been on a steady journey of evolution since its inception a few years ago. I'm going to cover the most exciting and transformative features that will have the most chance of enhancing your productivity amongst your teams, colleagues, and guest users. The new Microsoft Whiteboard app is available today As I stated, the features shown here are available now on the web, in Microsoft Teams, and Android. These new enhancements are coming to Windows and iOS later in October. Fresh modern look and feel You will easily notice a brand-new user interface when launching the new web app. The new Microsoft Whiteboard (Image Credit: Microsoft)   40+ new Microsoft Whiteboard... --- ### Microsoft Defender for Endpoint Pricing Plans > Microsoft recently announced that Microsoft Defender for Endpoint will soon be available in two plans: P1 and P2. In this article, I will look at how the two plans compare. - Published: 2021-10-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-endpoint-pricing-plans/ - Categories: Endpoint Protection, Windows 10, Windows 11 - Tags: Advanced Threat Protection, Android, Antimalware, Antivirus, iOS, linux, macOS, Microsoft Defender for Endpoint, Ransomware, Security, Windows 10, Windows 11 - Article Type: Overview Microsoft recently announced that Microsoft Defender for Endpoint will soon be available in two plans: P1 and P2. In this article, I will look at how the two plans compare. With Windows, MacOS, iOS, and Android devices being the most common target for cyber criminals, malware and threats are continuously improving and evolving. In the most recent announcement, Microsoft revealed that organizations have been under increasing attack from web-based threats and ransomware. What is Microsoft Defender for Endpoint? Microsoft Defender for Endpoint is a security suite for end-user devices, like Windows PCs and Android phones, that is designed to protect enterprises against advanced threats including viruses, ransomware, rootkits and other types of malware. Microsoft Defender for Endpoint is part of the Defender suite, which includes Defender for Endpoint, Defender for Identity, and Defender for Office 365. Defender for Endpoint was originally released as Windows Defender ATP (Advanced Threat Protection), a product which added improvements to the capabilities of the Windows Defender solution included in Windows 10. Microsoft Defender for Endpoint (Image Credit: Microsoft) In 2019, Windows Defender ATP become Microsoft Defender ATP, and included an array of threat protection capabilities. Microsoft Defender for Endpoint was a single license product that was included in Microsoft 365 E5 (and A5), Microsoft 365 E5 Security (add-on), and Standalone. In August 2021, Microsoft announced that the single licensed product would be split into two products: Defender for Endpoint P1 (Plan 1) and Defender for Endpoint P2 (Plan 2). Microsoft Defender for Endpoint subscription plans... --- ### Everything You Wanted to Know About the Windows Insider Program > In this article, I look at how the Windows Insider Program is used to test new features, help shape the future of Microsoft Windows, and the history of the program. - Published: 2021-10-07 - Modified: 2024-09-04 - URL: https://petri.com/what-is-windows-insider-program/ - Categories: Windows Client OS - Tags: Windows 10, Windows 11, Windows Insider Program - Article Type: Overview So, you want to know all there is to know about what the Windows Insider Program is, how to join it, and what all these 'channels' mean, right? For example, I'm sure one of your provocative questions is this: If I start on Windows 10 21H1, and join the Beta channel, will that upgrade me to Windows 11? (Hint: Maybe... it's not that easy... ) In my previous post on this subject, I wrote about the Windows Insider Program for Business. The Windows Insider Program for Business is for IT Pros managing and administering Windows 10 and 11 Insider builds for their test devices and users. In this post, I will give a broader, general overview of what the Windows Insider Program (WIP) is, how to join it, how to choose the best 'Channel' for your specific needs, and even try to make sense of when to get off the Insider train, and when it's safe to jump back on. Let's get started! What is the Windows Insider Program? The Windows Insider Program is a free and open software testing program that lets users test pre-release versions of Windows before they are made generally available. To participate in the program, you must have a valid Windows 10 or Windows 11 license. To register for the Windows Insider Program, you need a Microsoft Account. Once you are registered, program participants get access to new Windows features, expert tips and insights, and contests and events. Windows Insider Program history On September 30, 2014, Terry... --- ### Microsoft Teams Gets Faster AI-Powered Search - Published: 2021-10-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-gets-faster-ai-powered-search/ - Categories: Microsoft 365 - Tags: Microsoft Teams, News - Article Type: News Microsoft announced yesterday that it is updating the search experience in its desktop client for Teams. While we wait for Teams 2. 0, a complete revamp of the desktop app announced earlier this year, Microsoft is bringing a much-needed update to the way search results are displayed. Starting in November, Microsoft will roll out the changes to search in Teams to Microsoft 365 tenants. With the rollout expected to be complete by mid-November. Search results are now full page, instead of restricted to a small panel on the left of the app. And in place of accessing search filters, like From and Type etc. , as dropdown menus above the results, search is divided into categories as tabbed pages at the top of the new results page. The old search results panel in Microsoft Teams (Image Credit: Microsoft) Much like search works in Outlook for iOS and Android, results will be displayed full screen and segmented into categories that you can expand, like Messages, and then Files for example, to see more. The new search results page in Microsoft Teams (Image Credit: Microsoft) Microsoft Teams search gets faster results, improved filtering, and AI-powered relevance Microsoft says about the updated search experience in Teams: "A new search results experience in Teams for Desktop clients will be launched to make finding messages, people, answers and files faster and more intuitive. This redesigned search results page features better context, faster results, improved filtering capabilities with AI-powered relevance based on the people and content you engage... --- ### Surface Laptop Studio: Building a Better Mousetrap - Published: 2021-10-05 - Modified: 2024-09-04 - URL: https://petri.com/surface-laptop-studio-building-a-better-mousetrap/ - Categories: Hardware - Tags: Microsoft, Microsoft Surface Laptop Studio, News, Surface - Article Type: Opinion Several years ago, Microsoft took to the stage in New York City and unveiled the Surface Book, a device that was the pinnacle of Surface. It was a laptop, a tablet, a do-all, be-all device that the company hoped would set the brand apart as being ambitious but also establish that it was able to execute complicated designs. After three revisions, the company is back with a new flagship but this time around, they are attempting to build a better mousetrap, rather than force a design into existence. You could look at this through the lens that Surface Book was a failure but I don’t think that is appropriate. What Microsoft announced last month is the Surface Laptop Studio, an evolution of the mindset of what the high-water mark can be for Surface. So what happens when you take a Surface Studio, a Surface Laptop, and a Surface Pro and put them in a blender. You get the DNA to create the Surface Laptop Studio which I have been using for a few days – these are the initial impressions but a longer-term review is on the agenda. Surface Laptop Studio in laptop mode. With a device like the SLS (Surface Laptop Studio), raw specs don’t tell the entire story. Sure, this device can be outfitted quite extensively with an Intel i7 CPU, 32GB of RAM, Nvidia A2000 (or RTX 3050ti), up to 2TB of storage which should be enough horsepower to run most graphic-intensive applications... --- ### Surface Pro 8: Better in Nearly Every Way - Published: 2021-10-05 - Modified: 2024-09-04 - URL: https://petri.com/surface-pro-8-better-for-the-office-but-not-the-budget/ - Categories: Hardware - Tags: Microsoft, Surface, Surface Pro, Surface Pro 8 - Article Type: Opinion If there is one device that defines the Surface brand, it’s the Pro. The hardware is the backbone of the lineup and it is the best-selling Surface to date but the last couple of revisions have been modest, to put it lightly. But the Pro 8 is finally answering the calls that have been growing louder for years. While it took far longer than we had desired, Microsoft is addressing nearly all the feedback they have received for several years with the Pro 8 and it’s one of the best updates the company has ever shipped for its devices, period. Microsoft has updated the performance, the display, the form factor, and the ports. With an 11th gen Intel processor under the glass, up to 32GB of RAM, a larger and 120Hz display, Thunderbolt 4, Surface Connect, and the Type-cover design from the Pro X means you (can) have a pen with you at all times, not much was left on the cutting room floor. Surface Pro 8 is peak thin and light design. The Surface Pro 8 feels like what a modern PC should be – thin, light, powerful, and filled with modern ports. The lack of 5G may annoy some and the fact that it has active cooling instead of passive also means that there is room for improvement but when compared to the Pro 7, this is a step in the right direction for the Pro line of devices. In fact, it’s a bit... --- ### Windows 11 New Features, Release Date and System Requirements > Windows 11 is generally available this week. In this article, I look at Windows 11 new features, when it will be released, and the minimum system requirements. - Published: 2021-10-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-11-new-features-release-date-and-system-requirements/ - Categories: Windows 11 - Tags: performance, Productivity, Security, tablet, Teams Chat, Windows 11 - Article Type: Overview Windows 11 is generally available this week on October 5th. But while some have dismissed it as just Windows 10 with a fresh coat of paint, there are changes that Microsoft says lead to improved performance, reliability, and security. In this article, I'm going to look at Windows 11's new features and how Microsoft's new desktop operating system compares to Windows 10. Finally, I'll discuss whether you should upgrade to Microsoft's latest and greatest. Windows 11 New Features The new features in Windows 11 are: UI updates to the taskbar, Start menu, and Action Center. Windows 11 gets a more Mac-like user interface that looks clean and modern, including rounded corners and a centered Start menu. Snap Layouts, Snap Groups, and improved docking experience. Multitasking is improved, making it easier for users to discover the Snap feature which first appeared in Windows 7. Plus window layouts can be easily restored, even when connecting and disconnecting external displays. Teams Chat. Teams Chat is a new flyout app located on the taskbar. It works with consumer Microsoft Accounts (MSA) and provides a subset of features found in the full desktop Teams client. Redesigned Microsoft Store. The new Microsoft Store has been redesigned from the ground up to provide a better and faster user experience. A range of new apps are being added and developers can add apps, regardless of the framework or packaging technology used. Support for Android apps. While not shipping at launch, using some virtualization trickery, Windows 11 will support... --- ### Azure Virtual Desktop Now Comes with Azure AD-Joined VM Support > Azure Virtual Desktop now supports Azure Active Directory (AD) joined virtual machines (VM). The new Azure AD support works with personal desktops that have local user profiles; pooled desktops used as a jump box; and pooled desktops or apps where users don't need to save data on the VM. - Published: 2021-10-04 - Modified: 2021-10-04 - URL: https://petri.com/azure-virtual-desktop-now-comes-with-azure-ad-joined-vm-support/ - Categories: Microsoft Azure - Tags: Azure, Azure Active Directory, Azure AD Domain Services, Azure Virtual Desktop, News, Windows 365 - Article Type: News Microsoft announced September 22nd that Azure Virtual Desktop now supports Azure Active Directory (AD) joined virtual machines (VM). With this update you can now: Join Azure Virtual Desktop VMs directly to Azure AD Connect to VMs from any device with a username and password And automatically enroll VMs with Microsoft Endpoint Manager (MEM) Before the update, all VMs hosted by Azure Virtual Desktop needed to be joined to a Windows Server AD domain, whether it be a domain hosted in Azure AD Domain Services or a domain hosted by domain controllers running in virtual machines. The new Azure AD support works with personal desktops that have local user profiles; pooled desktops used as a jump box, providing that data isn't saved on the VM used as a jump box; and pooled desktops or apps where users don't need to save data on the VM. But before you start cheering, there are several limitations that Microsoft lays out in its documentation here, including: Azure AD-joined VMs only supports local user profiles currently. Azure AD-joined VMs can't access Azure Files file shares for FSLogix or MSIX app attach. You'll need Kerberos authentication to access either of these features. The Windows Store client doesn't currently support Azure AD-joined VMs. Azure Virtual Desktop doesn't currently support single sign-on for Azure AD-joined VMs. Windows 365 vs Azure Virtual Desktop Windows 365 Cloud PC provides a similar service to Azure Virtual Desktop but there are some key differences. Windows 365 is priced per user for a... --- ### What's New with Power Platform - September 2021 - Published: 2021-10-01 - Modified: 2021-10-01 - URL: https://petri.com/whats-new-power-platform-september-2021/ - Categories: PowerBI - Tags: dataverse, Desktop flows, News, power apps, Power Automate, Power BI, Power Platform - Article Type: News Automate together Collaboration has now become much easier in Power Automate. The new co-presence feature will allow multiple users to edit a flow simultaneously. If you have ever used Excel or Word online collaboration, you will recognize the new user icons next to the save button that indicate all of the users editing the flow with you. There are also new warning messages in case two editors implement conflicting changes to avoid deletion or duplication of changes.     Desktop flows Desktop flows have been drastically overhauled this month, and there are quite a few exciting changes for both beginners and veterans of desktop flows. If you thought desktop flows were too complicated for your business solutions, hopefully these new changes will help you ease into this incredibly powerful and useful arm of the power platform. Power Automate Desktop will now be available as standard on all desktops with Windows Home or above. Advanced analytics will now be available to users of desktop flows and it will allow you to analyze app usage within them. On a slightly more advanced note, no longer do you need to configure an on-premise data gateway to spin a desktop flow up. And for those who are already knees deep in desktop flows, maybe this update and this update will make more sense to you than they do to me.   New connectors 15 new connectors were added to Power Automate by independent publishers.  Do you need to update an Etsy listing? Do you want to access your Spotify library? Would you like to integrate a list of highest rated restaurants in your... --- ### What's New with Windows – September 2021 - Published: 2021-10-01 - Modified: 2021-10-01 - URL: https://petri.com/whats-new-with-windows-september-2021/ - Categories: Windows 10, Windows 11, Windows Server - Tags: Microsoft Surface, Microsoft Surface Laptop Studio, News, Windows 10, Windows 11, Windows Server 2022 - Article Type: News It's been a relatively quiet month for Windows as Microsoft gets down to finalizing Windows 11 for an October 5th release. What you need to know Windows 11 is faster than Windows 10 New Surface hardware is announced Passwordless sign-in comes to Microsoft consumer accounts Windows Server 2022 reaches general availability Windows 11 is faster than Windows 10 In a Microsoft Mechanics video released on YouTube, Steve Dispensa, Vice President of Enterprise Management at Microsoft, said that Windows 11 better optimizes memory management for frequently used apps and processes than Windows 10. Windows 11 brings foreground process prioritization, even when the CPU is under heavy load, to improve up start-up times and Windows shell responsiveness. For those with Intel Evo Platform hardware, there are also wake from sleep improvements. Dispensa says that Windows 11 has 25 percent better wake from sleep performance over Windows 10. There are also performance enhancements for Windows Hello and reduced disk footprint. And on modern hardware with Windows DCH drivers, testing in the Windows Insider Program shows that Windows 11 brought a 99. 8 percent crash-free experience for users. For more information on the technical changes to Windows 11, check out Windows 11 is Faster, Even on Identical Hardware on Petri. New Surface hardware announced Not strictly Windows news, but as Surface is the premier hardware brand from Microsoft that mainly runs Windows, I thought this story would be of interest. The Surface Laptop Studio is Microsoft's new portable workstation. According to Brad Sams of Petri. com:... --- ### What's New with Azure – September 2021 - Published: 2021-10-01 - Modified: 2021-10-01 - URL: https://petri.com/whats-new-azure-september-2021/ - Categories: Microsoft Azure - Tags: AAD, App Service, App Services, Availability Zones, Az, Azure, Azure Active Directory, Azure AD, Azure Automation, Azure Backup, Azure Cost Management, Azure Data Explorer, Azure Files, Azure Firewall, Azure Monitor, Azure Networking, Azure Purview, Azure Route Server, Azure Site Recovery, Azure Stack HCI, Azure Storage, Azure Virtual Desktop, Azure Virtual Machines, Azure VMware Solution, Backup Center, Network Security Groups, Norway East, NSG, OMIGOD, OpenTelemetry, PowerShell, Premium SSD, Private Endpoint, Private Link, Security, SMB Multichannel, storage, Storage Account, UDR, User-Defined Routing, virtual machine scale sets, Windows Server 2022, Windows Virtual Desktop - Article Type: Overview Microsoft recently announced that their Ignite (online only) conference will be running again on November 2-4. That means we are approaching peak season for announcements, new public preview releases, and general availability. “Q3” in announcements and roadmaps will often mean between early September and maybe the third week of October – a code freeze will probably kick in to avoid instabilities during live demonstrations – if the past is a good guide. OMIGOD! I guess the worst kind of “supply chain” attack is one that comes via functionality rendered by your cloud services provider. Wiz disclosed a “quartet of zero-days” (vulnerabilities) on September 14th. Since then, there’s been update after update and news story after news story about possible attacks to Linux-based workloads via an Open Management Infrastructure (OMI) agent if they use management features including (but not limited to): Azure Automation Azure Automatic Update Azure Operations Management Suite (OMS) Azure Log Analytics Azure Configuration Management Azure Diagnostics Azure Container Insights Those of you running a secure Azure network (limited public IP addresses and micro-segmentation) are probably OK – OMI listens on ports such as 5985, 5986, 1270 – that traffic shouldn’t be allowed from exposed networks! Apparently, Microsoft ran an auto-update to upgrade the affected agent and that process was due to finish on September 22nd. Since then, Microsoft has shared guidance on how to detect and update affected agents. I would recommend running the detection script – those of you with a SIEM solution might be able to... --- ### How to Join the Windows Insider for Business Program > This post will demonstrate how you can join the Windows Insider Program for Business and start deploying Windows 10 and Windows 11 insider builds in your enterprise. - Published: 2021-09-29 - Modified: 2024-09-04 - URL: https://petri.com/how-to-join-the-windows-insider-for-business-program/ - Categories: Windows Client OS - Tags: Windows 10, Windows 11, Windows Insider Program for Business - Article Type: How To Microsoft announced and launched the Windows Insider Program on September 30, 2014, along with the announcement for Windows 10. Soon after, they received a good deal of feedback from IT Pros in the Windows Insider Program (WIP) that were looking for specific and detailed assistance on how the WIP could work in their business environments. Based on this feedback, Microsoft launched the Windows Insider for Business Program. Although the underlying WIP is the same for both parties, the difference with the Windows Insider for Business Program (WIBP) is catering to another audience, IT Pros in the business enterprise. How to Join the Windows Insider for Business Program This post will demonstrate how you can join the WIBP and start deploying Windows 10 and Windows 11 insider builds in your enterprise. Step 1 - Register for the Windows Insider Program Let's browse the Windows Insider for Business Program website. Microsoft recommends you register with your Azure Active Directory (AAD) work account. When you register with your work account, you, as an IT Pro, will be able to manage the feedback on behalf of your organization to help shape the future of Windows for your company's needs. You must register with your AAD account to manage Insider builds centrally across your organization. However, you also have the option to register with your personal Microsoft account. This is essentially the Windows Insider Program for consumers. If you are not blocking users from joining the WIP, they can do so with their personal Microsoft... --- ### Microsoft Announces New Collaborative Features for Teams Phone > Microsoft is developing Teams Phone to be the most collaborative solution on the market. Microsoft announced earlier this week several new features to Teams Phone to update the platform for modern cloud calling and to integrate calling better into people's workflow. - Published: 2021-09-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-new-collaborative-features-for-teams-phone/ - Categories: Microsoft 365 - Tags: collaboration, Microsoft 365, Microsoft Teams, Microsoft Teams Phone, News - Article Type: News Microsoft announced earlier this week several new features to Teams Phone to update the platform for modern cloud calling and to integrate calling better into people's workflow. As many companies shift to hybrid work and more use collaboration solutions like Microsoft Teams, there has been a significant increase in phone use. To address this challenge, Microsoft is developing Teams Phone to be the most collaborative solution on the market. Microsoft says that it has nearly 80 million users in more than 180 countries currently using Teams Phone. In comparison, Zoom Phone has just two million users. Microsoft Teams Phone gets new features for improved collaboration In the blog post, by Nicole Herskowitz - Microsoft Teams General Manager - Microsoft announced the following major new features, which are designed to make calls richer and more collaborative. Recording and transcription of 1:1 calls for future reference The ability to move calls between devices with one click without creating any interruption to the call Collaboration and information sharing before, during, and after the call by adding call queues to Teams channels Spam identification, which will use advanced industry techniques to identify spam calls, allowing the user to decline and feel confident about answering incoming calls Generally available this week, Operator Connect enables customers to bridge their existing phone system with Teams, and it is launching with 11 operator partners covering over 50 markets, with 12 more joining the Operator Connect program soon Microsoft Teams Phone calls to enhance collaboration Some of the new... --- ### Citrix Taps Mark Palomba to Lead its Global Partner Program - Published: 2021-09-28 - Modified: 2021-09-28 - URL: https://petri.com/citrix-taps-mark-palomba-to-lead-its-global-partner-program/ - Categories: Channel - Tags: Citrix, Microsoft Teams, News, ServiceNow - Article Type: News Citrix Systems has named Mark Palomba to head the company’s global channels organization. Citrix Taps Mark Palomba to Lead its Global Partner Program Palomba, who joined Citrix last year as COO for sales and services, was already spending part of his time working closely with partners following the departure of Bronwyn Hastings, who previously led the company’s channel organization. Citrix also announced that Kurt Heusner, global VP for commercial and public sector services, will lead global emerging sales.  Sherif Seddik, now VP of sales and services covering EMEA, will lead commercial strategy and go-to-market. ServiceNow Broadens Microsoft Teams Integration with Now Platform Rome Release ServiceNow’s new Now Platform Rome is now available, and it comes with an intranet solution called Employee Center, which is integrated Microsoft Teams. The Employee Center provides workers personalized information to different organizational resources including finance, HR, and IT. Microsoft Teams channels, chat, and meetings are embedded into the ServiceNow Employee Center interface. ServiceNow and Microsoft have worked closely together over the past two years. In May, the two companies announced that they are integrating their respective security operations capabilities to improve incident response. Last year, ServiceNow said it was providing Teams integration to its IT Service Management (ITSM) solution, aimed at providing enhanced communications for IT and customer support. Park Place Technologies Launches Uptime Partner Program Park Place Technologies, which provides maintenance of multiple vendors’ datacenter as a managed service, launched its new Uptime partner program. The program includes a new partner portal that will give... --- ### GET-IT: Endpoint Management 1-Day Virtual Conference is Today - Published: 2021-09-28 - Modified: 2021-09-28 - URL: https://petri.com/get-it-endpoint-management-virtual-conference-today/ - Categories: Windows 10, Windows 11 - Tags: Endpoint Management, Windows 10, Windows 11 Petri's GET-IT: Endpoint Management 1-Day virtual conference is a full day of free learning where we will be diving deep into how you can improve the way you manage your endpoints and learn from industry experts and MVPs about best practices, available tools to streamline your operations, and what's coming soon with Windows 11. The management of endpoints is complicated and the risks associated with having unsecured devices roaming outside the firewall are quickly becoming a targeted vector for malicious users. Our event is taking place today and you can join the conversation over on our conference hub page or watch the conference below. But to get the most out of the day, make sure to download the handouts. --- ### Amazon Announces the General Availability of EKS Anywhere - Published: 2021-09-27 - Modified: 2021-09-27 - URL: https://petri.com/amazon-announces-the-general-availability-of-eks-anywhere/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon EKS, Amazon EKS Anywhere - Article Type: News Amazon EKS Anywhere is a deployment option for Amazon EKS that enables you to create and operate Kubernetes clusters on-premises using VMware vSphere. Amazon Elastic Kubernetes Service (Amazon EKS) is a fully managed container service that allows you to run and scale Kubernetes applications in the AWS cloud. In fact, according to the Cloud Native Computing Foundation, 63% of all Kubernetes workloads run on AWS. Amazon Announces the General Availability of EKS Anywhere First announced last year at AWS re:Invent 2020, Amazon Elastic Kubernetes Service (Amazon EKS) Anywhere became generally available this past September 8th 2021. AKS Anywhere brings those same Kubernetes management capabilities on-premise. In contrast to the cloud-based Amazon EKS, Amazon EKS Anywhere is managed by the customer. It runs on the customer’s infrastructure either on-premises or in a co-located data center. Amazon EKS Anywhere is managed using the EKS console with the EKS Connector. There are three connectivity options: fully connected, partially connected, and fully disconnected. For fully connected and partially connected connectivity, you can connect your EKS Anywhere clusters to the EKS console via the EKS Connector, which allows you to manage the cluster configuration and workload status. The “Anywhere” in the title implies that it can run any place. However, you might note that at this time the “Anywhere” in EKS Anywhere actually refers to anywhere where there is a VMware vSphere installation. VMware vSphere is a requirement for AKS Anywhere. Support for other deployment targets including support for bare metal are planned for 2022. EKS... --- ### How to Mitigate Microsoft Exchange Autodiscover Protocol Flaw That Leaks User Credentials - Published: 2021-09-24 - Modified: 2024-09-04 - URL: https://petri.com/how-to-mitigate-microsoft-exchange-autodiscover-protocol-flaw-that-leaks-user-credentials/ - Categories: Exchange Server - Tags: Microsoft Exchange, Security - Article Type: How To In this article, I explain how the recently discovered flaw in the Exchange Server Autodiscover protocol can leak user credentials. And how to mitigate the issue in your environment. Microsoft Exchange Server Autodiscover protocol leaks thousands of user credentials Researchers at security company Guardicore have released details of a security issue in the Autodiscover protocol that Microsoft Exchange Server clients, like Outlook, use for automatic configuration. In the paper, Amit Serper reveals how Guardicore purchased multiple Autodiscover domains with a top-level domain (TLD) suffix. Domains purchased by Guardicore included: Autodiscover. com. br Autodiscover. fr Autodiscover. xyz The domains were configured to connect to a web server under Guardicore's control. And between April 16th, 2021 to August 25th, 2021 Guardicore says it captured: 372,072 Windows domain credentials in total. 96,671 UNIQUE credentials that leaked from various applications such as Microsoft Outlook, mobile email clients and other applications interfacing with Microsoft’s Exchange server. Guardicore captured credentials for companies across various sectors (Image Credit: Guardicore) How the Exchange Server Autodiscover protocol works When users set up an Exchange email client for the first time, they are asked to provide their email address and password. Using the domain name from the user's email address, Autodiscover constructs a URL to try and automatically discover the settings required to connect to the user's Exchange Server. Autodiscover constructs addresses in the format shown below, hoping to find the Autodiscover. xml file containing settings necessary to connect the email client to the user's Exchange Server. If a user provides an email address like... --- ### Windows 11 is Faster, Even on Identical Hardware > Microsoft has improved the speed of Windows 11 by optimizing memory and CPU usage. Other improvements include 40% smaller updates, smaller OS disk footprint, and changes to the servicing and update orchestration model for IT pros. - Published: 2021-09-23 - Modified: 2024-09-04 - URL: https://petri.com/windows-11-is-faster-even-on-identical-hardware/ - Categories: Windows 11 - Tags: Windows 11 - Article Type: Overview As we quickly approach Windows 11 general availability, scheduled for October 5th, Microsoft has revealed that Windows 11's speed should be significantly boosted, even on identical hardware. In a recent YouTube video on the Microsoft Mechanics channel, Microsoft provided an exclusive look at performance optimizations, improvements to the servicing model and orchestration engine, and details about policy management. The video also addresses the controversial system requirements for Windows 11. According to the video description on YouTube: This is the first Windows conceived for Zero Trust and a hybrid work world. For users, we've removed distractions as you work to make it easier for you to focus with the new modern interface and refined aesthetics. For IT, we've made incremental improvements that are designed to fit like a glove in your existing management tools and processes. Windows 11 speed – Windows 11 is faster than Windows 10, even on identical hardware Steve Dispensa, Vice President of Enterprise Management at Microsoft, says in the video that Windows 11 better optimizes memory management for frequently used apps and processes. Windows 11 foreground prioritization Dispensa says that even if the CPU is under heavy load, apps can start quickly and run in the foreground without being affected. This new optimization even extends to specific Microsoft Edge tabs. Foreground prioritization in Windows 11 lets applications open quickly even when the CPU is under heavy loads, like 90 or 95 percent utilization. And foreground prioritization also applies to the Windows shell, meaning when you open items... --- ### Using Polls for Better Engagement in Microsoft Teams Meetings > Microsoft Teams Polls. Here we'll share tips on '4' distinct types of polls in Microsoft Teams. The end goal is to better assess meeting participation, membership information retention, overall focus of attendees in your meetings, and the openness of traditional in-person human interaction. - Published: 2021-09-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-polls-better-engagement-in-meetings/ - Categories: Microsoft 365 - Tags: collaboration, Microsoft Teams, Productivity - Article Type: How To Companies of all shapes and sizes have run into many challenges regarding keeping their employees efficient and happy; the transition to virtual education and training over the past 18 months caught many off guard. The Microsoft Forms team was excited to release Polls in Microsoft Teams meetings in November of 2020 to address some of these challenges. This allows meeting organizers to educate their attendees with engaging insight using polls. Here we'll share tips on '4' distinct types of polls in Microsoft Teams. The end goal is to better assess meeting participation, membership information retention, overall focus of attendees in your meetings, and the openness of traditional in-person human interaction. Microsoft Teams - Using Polls for Better Engagement in Teams Meetings Always of the 'work-in-progress' mindset, Microsoft has heard your questions regarding employee engagement, effective information presentation, and education. It's relatively straightforward in a conference room or huddle space to exhibit and absorb that 'human' interaction, but the 'virtual reality' of hybrid workplaces adds a layer of ambiguity about how effective meetings and their purposes can be. Goal #1: Engage your audience early Task: Poll attendees at the beginning of your meeting to reduce psychological distance and set expectations How can we help attendees feel included in the meeting? Ask a multiple-choice icebreaker question. Today, Polls in Teams meetings often automatically suggests such questions as you prepare for your polls. Icebreaker Poll 2. Collect questions they have for a class or training session. Using a Word Cloud poll is an... --- ### Surface Laptop Studio: Microsoft’s New Portable Workstation - Published: 2021-09-22 - Modified: 2024-09-04 - URL: https://petri.com/surface-laptop-studio-microsofts-new-portable-workstation/ - Categories: Hardware - Tags: Microsoft, Surface, Surface Laptop Studio - Article Type: News Today, Microsoft is unveiling its refreshed lineup that includes updating most of the products in its lineup. But the company is not only refreshing hardware, they are announcing an entirely new product – the Surface Laptop Studio. The Surface Laptop Studio is the child of mixing the Surface Laptop, Surface Pro, and Surface Studio into a single product. Microsoft says that this is the most powerful Surface the company has ever built and there is a lot to digest – let’s dig in. First up are the specs, under the hood, the Laptop Studio is using a Quad-Core 11th gen Intel chip that spans from the i5-11300H to the i7-11370Hmodels and the GPU is either an Iris® Xe/RTX 3050Ti for consumer version and on the commercial side, it can be equipped with an RTX A2000 card. The display is a 14. 4in PixelSense Flow touch display with a resolution of 2400x1600 with a 120Hz refresh rate that also supports Dolby Vision, 10-point multi-touch and keeps the 3:2 aspect ratio that we typically see on Surface products. On the ports, there are two Thunderbolt 4 connections, Surface Connect, headphone jack, but no SD reader. Like other devices in the Surface family, the SSD is removable and you can equip up to 2TB of storage. Microsoft claims that battery life is up to 19hrs for the i5 model and 18hrs for the Core i7. Having used Surface hardware nearly daily for several years, I would slice those numbers in half for typical workflows... . --- ### Microsoft Refreshes Surface Lineup with Duo 2, Pro 8, and Go 3 and More - Published: 2021-09-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-refreshes-surface-lineup-with-duo-2-pro-8-and-go-3-and-more/ - Categories: Main - Tags: Microsoft, Surface, Surface Duo 2, Surface Pro 8 - Article Type: News For fans of Surface, today is a good day. Microsoft has announced a significant refresh to its lineup that includes a brand-new laptop called the Laptop Studio as well as a refresh to many of its products that includes the Surface Pro 8, Duo 2, and the entry-level Go 3. The refresh across the lineup is significant for Microsoft as the company prepares for the release of Windows 11 that will arrive on October 5th. With the new OS, Microsoft will be using the Pro 8 and the Laptop Studio as the hero devices to showcase the new software. Surface Pro 8 The Surface Pro line is the classic Surface hardware and was the first device to create momentum for Microsoft. And with the release of the Pro 8, the device is receiving what could arguably be called the biggest update since its release. The new device ships with 11th gen Intel chips ranging from an i3 to an i7 with up to Intel Iris Xe graphics and can top out at 32GB of RAM with 1TB of storage. While those specs are expected, Microsoft is finally embracing Thunderbolt 4 with this release which means you can tap into the rich ecosystem of accessories with two TB4 ports. But the bigger update is that that Pro 8 now resembles that of the Pro X, meaning thinner bezels, a keyboard cover that can dock the pen, and a bigger display. Microsoft says that the display is 11% larger, 10. 8% higher resolution,... --- ### How to Join Windows Server 2022 Core to Active Directory - Published: 2021-09-21 - Modified: 2024-09-04 - URL: https://petri.com/join-windows-server-2022-core-to-active-directory/ - Categories: Windows Server 2022 - Tags: Active Directory, Windows Server, Windows Server 2022, Windows Server Core - Article Type: How To In this post, I will show you how to join Windows Server 2022 Core to an Active Directory (AD) domain. So, if you are you looking for more wholesome Windows Server 2022 goodness, you came to the right place! Joining Windows Server Core to an Active Directory domain lets you manage the security of the server centrally. Instead of creating local accounts and managing them on your Server Core device, you can use a directory services solution like Active Directory, to manage user access and security settings for all the resources on your network. There are several methods you can use to accomplish joining Windows Server Core to an AD domain. Microsoft... remember? Here are the high-level options: Log in locally and use Sconfig Use Windows Admin Center (Remote) In my previous post, How to Install Windows Server 2022 Core, I described and demonstrated how to create a new Hyper-V virtual machine (VM), install Windows Server 2022 using the Server Core setup option, and perform a few 'post-setup' tasks. Because it's relatively straightforward to join and disjoin Windows Server from an AD domain, I'll show you how to accomplish the task using each of these methods. Let's start with SConfig. Windows Server Core AD domain join using SConfig SConfig is installed automatically when you set up any recent Windows Server operating system using the 'Core' option. (Actually, SConfig is installed in Windows Server even with the 'Desktop Experience. ' Try it out! ) By default, in Windows Server 2022, it will load automatically... --- ### How Can I Move a File or Folder from the Command Line Using Windows PowerShell? > Discover how to use PowerShell to move files and folders in this Ask the Admin. Find out how to move MP3 files, filter, move .txt files, and more. - Published: 2021-09-20 - Modified: 2024-09-04 - URL: https://petri.com/move-file-folder-from-command-line-powershell/ - Categories: PowerShell - Tags: disk management, File Server, Management, PowerShell, Scripting, Windows, Windows 10, Windows 11, Windows Server - Article Type: How To In this article, I’ll show you how to use Windows PowerShell to move one or multiple files or folders from the command line, using the Move-Item, Get-Item, and Get-ChildItem PowerShell cmdlets. If you would like to delete a file or folder using PowerShell, check out How Can I Delete a File or Folder from the Command Line Using Windows PowerShell? on Petri instead. The information in this article applies to Windows PowerShell, and PowerShell 7 and later versions on Windows 7, Windows 8. 1, Windows 10, Windows 11, and all supported versions of Windows Server. Use PowerShell to move a file or folder Let’s start by running a simple command to move a single file or folder. Make sure you are logged into the server or PC with an account that has full access to the objects you want to move. Open a PowerShell prompt by clicking Start and type PowerShell. In the search results, click Windows PowerShell. In the PowerShell console, type Move-Item –Path c:testfolder -Destination c:temp and press ENTER. Replace c:testfolder with the full path to the folder you want to move; and c:temp with the full path of the target folder. The command above will move 'testfolder', and all its contents, to c:temp. Additionally, the –Force parameter can be added to move hidden or read-only files. To check the folder has been moved, type Get-Item -Path c:* in the command prompt and press ENTER, replacing c: with the parent directory of the folder you just moved. The... --- ### How to Install Windows Server 2022 Core - Published: 2021-09-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-windows-server-2022-core/ - Categories: Windows Server 2022 - Tags: Windows Server 2022, Windows Server Core - Article Type: How To In this post, I will demonstrate how to install Windows Server 2022 the way Microsoft recommends... using the 'Server Core' option. Yes, by default, this is the default installation choice. You should install Windows Server 2022 using the Server Core option whenever possible. Windows Server 2022 contains new features and it is the most secure version of Windows Server available to date. The Server Core option removes all the code associated with the Desktop Experience server role and it has a small disk footprint. Because of the reduced code base, there's a significantly reduced attack surface and Server Core requires less reboots because there are fewer security patches each month. To install Windows Server 2022 Server Core, you will need to boot your virtual or physical device using the Windows Server media or mounted ISO file. The out-of-box experience (OOBE) will then run, allowing you to select your regional options, like language; enter a product key; choose between Standard and Datacenter SKUs; and select a disk to install the operating system on. Finally, you need to set an administrator password. Windows Server 2022 - New Features Windows Server 2022 contains several new features that are designed to improve security and integrate better with the Azure cloud. You can get a full rundown of the new capabilities on Microsoft's website here. But here are some of the highlights: Windows Server 2022 enables TLS 1. 3 by default. TLS 1. 3 brings faster and more secure HTTPS connections. DNS over HTTPS (DoH) improves... --- ### How to Customize Endpoint Security Settings in Microsoft Intune - Published: 2021-09-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-customize-endpoint-security-settings-in-microsoft-intune/ - Categories: Endpoint Protection, Microsoft 365, Security - Tags: Microsoft 365, Microsoft Endpoint Manager, Microsoft Intune, Security - Article Type: How To In this article, I'm going to show you how to customize endpoint security settings in Microsoft Intune. Including how to change security baseline settings, how to make sure devices are running a specific operating system version (or later), and how to configure Windows and iOS disk encryption settings. Microsoft provides a series of recommended security baseline settings. But depending on your organization's needs, it may be necessary to review and change the settings to ensure that devices and data are properly secured. Additionally, you should configure Intune to automatically update Windows and make sure that devices aren't running an outdated version of an operating system. Finally, configure disk encryption and Mobile Application Management settings to make sure data is protected on mobile devices. What you need to know: The default recommended security baseline settings can be changed under Endpoint Security in the Endpoint Manager portal. And you can ensure that Windows is updated automatically by going to Devices > Windows > Windows 10 update rings in the Endpoint Manager portal. Ensuring Windows is running a specific version or later can be achieved by changing the settings under Devices > Home. Windows disk encryption configuration can be set by creating a new profile and then changing the settings under Windows Encryption.   Mobile Application Management settings can further help protect data on mobile devices. Recommended security settings Similar to Conditional Access policies, Microsoft provides you with some baseline Endpoint security policies as seen here. These are the recommended security settings; however you may... --- ### Nerdio Now Manages More Than 1 Million VDI Users in Azure - Published: 2021-09-17 - Modified: 2024-11-19 - URL: https://petri.com/nerdio-now-manages-more-than-1-million-vdi-users-in-azure/ - Categories: Channel - Tags: Azure, Channel, Lenovo, Nebulon, Nerdio, News, One Identity, ServiceNow, Zoom - Article Type: News Cloud virtual desktop provider Nerdio, which hosts its VDI service in Azure, now manages more than 1 Million Windows users. According to Nerdio’s founder and CEO Vadim Vladimirskiy, who announced the stat last week, the rapid growth of its service validates the viability of Azure Virtual Desktop as well as the new Windows 365 service. “We truly believe we are just scratching the surface,” he noted. The milestone is notable in that Nerdio is a Series A-funded startup that launched its Nerdio Manager for Enterprise 18 months ago. Earlier this year, the company added Nerdio Manager for MSPs. Nerdio said it now has customers and partners in 37 countries, more than 50 enterprise end-user computing (EUC) partners, and 3,500 cloud VDI deployments. SD-WAN Market Grew 39 Percent During First Half of 2021 Global demand for SD-WAN services is still strong. During the first half of 2021, the market for SD-WAN hardware grew 39 percent over the same period last year, according to the latest report from market research firm Dell’Oro Group. Cisco is the market share leader, with Fortinet jumping into the No. 2 spot. Also, in the top five in terms of revenue, are VMware, Versa and HPE Aruba. Dell’Oro Group last week noted that hardware-based access routers declined at a mid-single-digit rate during the same period, underscoring the shift to SD-WAN. Lenovo Moves DaaS Into TruScale Creating “Everything as-a-service” Program Lenovo last week launched what it called its “everything as-a-service” strategy, bringing its PCs, edge systems and datacenter... --- ### How to Create a Compliance Policy in Microsoft Intune - Published: 2021-09-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-compliance-policy-in-microsoft-intune/ - Categories: Endpoint Protection, Microsoft 365, Security - Tags: Endpoint security, Microsoft Intune, Mobile Device Management - Article Type: How To In this article, I'm going to show you how to create a compliance policy in Intune, Microsoft's Mobile Device Management (MDM) solution, that restricts access to resources to cloud managed and compliant devices only. Even if your devices are registered or joined to Azure Active Directory (AD), there are still risks that could lead to compromised devices gaining access to your Microsoft 365 tenant's resources. Hence, it's necessary to control which types of devices are allowed to access your resources and under what conditions they are permitted to connect. Here's a high-level overview of the entire process: The first step to create a policy for each device platform in the Endpoint Manager portal. For example, Android devices and/or Windows devices. You choose which controls will be enforced in the policy. For instance, you could opt to block rooted Android devices. Next, define the actions for non-compliance and assign the policy to users. And then, create a template for email notifications, informing users that their device has been blocked. Finally, you specify remediation actions for non-compliant devices. Create a compliance policy with Microsoft Intune (all platforms) Let's take a brief look at some examples of compliance policies that an admin may want to configure in the Endpoint Manager portal. Here you will create a new compliance policy to handle personally owned Android devices. Go to Devices > Compliance Policies in the Endpoint Manager portal and click Create Policy. Create a new compliance policy in Microsoft Intune  ... --- ### How to Enable Windows Hello for Business - Published: 2021-09-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-windows-hello-for-business/ - Categories: Endpoint Protection, Microsoft 365, Security - Tags: Endpoint security, Microsoft 365, Windows 10, Windows 11, Zero Trust - Article Type: How To In this article, I'm going to show you how to enable Windows Hello for Business. You should enable Windows Hello for Business to reduce the risk associated with passwords. Even if your users' devices don't have hardware that supports Windows Hello, like a fingerprint reader, you can still have them use a PIN to login. Enabling Windows Hello for Business involves 3 steps. First you turn on Windows Hello for Business in Microsoft Endpoint Manager (MEM). Then you can configure any additional settings, like requiring devices to have a Trusted Platform Module (TPM). Finally, you assign the Windows Hello policy to a configuration profile. What is Windows Hello for Business Windows Hello for Business is a solution in modern versions of Windows. It lets users securely log into Windows and websites using a PIN or biometric gesture, like a fingerprint or facial recognition. Microsoft says that PINs are more secure than passwords. Because the PIN is associated with the device only. And unlike passwords, Windows Hello PINs cannot be used on other devices. So, the PIN is useless to a hacker should it be discovered. You can enable Windows Hello for all users from the Endpoint Manager Admin Center as shown here. Click on Devices and under Device enrollment, click Enroll devices. On the next window, select Windows Hello for Business.   3. On the Windows enrollment screen, set the value of Configure Windows Hello for Business to Enabled. You can also set the other options as per your organization's... --- ### Patch Tuesday September 2021 – Microsoft fixes MSHTML Zero-Day and Apple Blocks NSO Group Surveillance Spyware - Published: 2021-09-15 - Modified: 2021-09-15 - URL: https://petri.com/patch-tuesday-september-2021-microsoft-fixes-mshtml-zero-day-and-apple-blocks-nso-group-surveillance-spyware/ - Categories: Security - Tags: Apple, News, Security, Windows - Article Type: News This month, Microsoft released a fix for the MSHTML zero-day that emerged earlier in September. And it fixes a serious remote code execution bug in the WLAN AutoConfig service. There's also a fix for a serious bug in Apple iOS. So, let's get started! Microsoft fixes MSHTML zero-day Earlier this month, Microsoft released a security advisory for a remote code execution vulnerability (CVE-2021-40444) in Microsoft MSHTML, the rendering engine that Office apps use in Windows to display web content. The advisory said: An attacker could craft a malicious ActiveX control to be used by a Microsoft Office document that hosts the browser rendering engine. The attacker would then have to convince the user to open the malicious document. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Microsoft published a couple of workarounds in the advisory. But with this week's updates, there's now a fix. The fix is included in KB5005565, which is the monthly cumulative update for Windows 10. For more information on this zero-day, see Microsoft Provides Temporary Fix for Office 365 Zero-Day on Petri. Windows WLAN AutoConfig Service This month also sees a patch for a remote code execution bug (CVE-2021-36965) in the Windows WLAN AutoConfig service. The vulnerability could let an attacker run code with SYSTEM privileges, allowing them to own the target device. The bug can be exploited by an attacker on the same network as the target device... . --- ### Microsoft Brings Passwordless Sign-In to Consumer Accounts - Published: 2021-09-15 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-brings-passwordless-sign-in-to-consumer-accounts/ - Categories: Security - Tags: Microsoft, News, Passwordless Sign-In, Security - Article Type: News Back in March 2021, Microsoft introduced a passwordless sign-in experience for work or school accounts. With the help of the Microsoft Authenticator app, Windows Hello, or FIDO2 security keys, corporate users can sign into services connected to Azure Active Directory (AD), like Microsoft 365, without needing to remember their account password. Microsoft has been pushing passwordless sign-in over the past couple of years as a more secure way to provide access than passwords and multifactor authentication. Passwordless sign-in replaces passwords with something you have, like a security key, plus something you are or know. Something you are, might be a biometric gesture like a fingerprint. Something you know might be a PIN. For more information on passwordless sign-in for corporate work or school accounts, check out the following articles on Petri: How to Enable Passwordless Authentication with Azure AD Microsoft 365 Passwordless Sign-In: Windows Hello vs. FIDO2 Security Keys How to Set Up Passwordless Sign-in Using the Microsoft Authenticator App for Microsoft 365 Microsoft Accounts (MSA) get passwordless sign-in Starting today, September 15th, consumers can now completely remove passwords from their Microsoft accounts. MSAs are used to log into services like Skype, Outlook. com, and many others. Why you should go passwordless Microsoft gives four key reasons why you should go passwordless. Passwords make you an easy target. They waste time. Passwords aren't user-friendly. They take up too much brain space. In a YouGov survey commissioned by Microsoft, 43% of respondents said that they experience problems with passwords every month. Wasting... --- ### Microsoft Viva Connections - Coming to Public Preview - Published: 2021-09-14 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-viva-connections-coming-to-public-preview/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Teams, Microsoft Viva, News - Article Type: News Because of the ever-evolving shift of the workforce and the workplace from 'in-house' to hybridization, hybrid work is reshaping how we work. The shift to more remote work has been disrupting, to say the least, across a multitude of organizations and industries. The least of which is the pillar of Information Technology in all companies. Our digital and physical workplaces are being re-developed. We need a new set of tools designed to help us adapt and achieve the same levels of productivity, if not more. Microsoft recently announced new features and capabilities for Microsoft Viva and Microsoft Teams that assist people and organizations. This includes Viva Connections, which will enter public preview shortly. Viva Connections Public Preview The most impressive and new tool coming is the mobile app for Viva Connections. The desktop experience is also getting refreshed. This application and service helps companies customize, brand, and deploy their own employee app for their workforce. It is built directly into Teams and it is designed to drive alignment and connections amongst your employees. From information workers to frontline workers, to C-level positions, admins can enable, configure, and deploy this new app right from the Teams App Store. Go ahead and visit this Getting Started page for a detailed overview of this new app! What's included in this release Viva Connections mobile app experience - You get a dashboard, a feed, and resource tabs that bring these experiences together in a cohesive, personalized, and actionable home base for all your employees... . --- ### How to Add a Server to a SharePoint Farm - Published: 2021-09-14 - Modified: 2024-11-19 - URL: https://petri.com/how-to-add-a-server-to-a-sharepoint-farm/ - Categories: SharePoint Subscription Edition - Tags: SharePoint Farm, sharepoint server, SharePoint Server Subscription Edition - Article Type: How To Back in July 2021, I wrote a post explaining how to install SharePoint Server Subscription Edition in a virtual machine (VM). SharePoint Server Subscription Edition is the new on-premises SharePoint Server product from Microsoft. Are you ready for more SharePoint goodness? Good. In my first post on this topic, I installed a new Windows Server 2019 server VM in my Hyper-V environment. I then installed SQL Server 2019. This laid the groundwork for the SQL content and configuration databases that are created during the first SharePoint server install in a 'farm. ' A SharePoint farm is two or more servers sharing SQL configuration and content data. The next step was installing another new Windows Server 2019 server VM. Then I installed SharePoint Server Subscription Edition (Preview). You can download it here. Add a server to a SharePoint Farm The agenda for this post is to install a second SharePoint server in our farm. Let's start! Running SharePoint Setup on a new VM In this example, we'll be installing SharePoint Server on Windows Server 2022.  Let's double-click on 'splash. hta', which is the same as double-clicking on the mounted ISO drive (D:, E:, etc. ). SharePoint Setup Splash Screen First, we need the prerequisites installed. Click on Install software prerequisites. Alllllllrighty then! We are good to go. For good measure, I checked Windows Update. There were no further updates. Let's proceed. Back on the SharePoint Server setup screen, I'll click Install SharePoint Server. The first screen asks us for our product key. When the final... --- ### Microsoft Buys Clipchamp Video Creation App - Published: 2021-09-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-buys-clipchamp-video-creation-app/ - Categories: Microsoft 365 - Tags: Clipchamp, Microsoft 365, News - Article Type: News Last week, Microsoft announced that it had bought Clipchamp, a browser-based video creation app. Founded in 2013, Clipchamp's mission is to enable everyone to tell stories using video. Microsoft recognizes video is a powerful medium but that it has been traditionally difficult for most people to produce high quality videos that are worth sharing. Artistic ability, and the time it takes to edit, makes producing video particularly difficult. Climpchamp says: With every medium we invented we were able to democratize storytelling, and with video we’re only at the beginning of democratizing its creation. Video remains largely a professional and creative domain where stories with impact often touch four or more tools before they are ready for viewers. Microsoft buys Clipchamp (Image Credit: Clipchamp) The global health pandemic has seen more people turn to YouTube and create their own channels. And video is becoming a new type of 'document' for business. Microsoft says: Video is establishing itself as a new type of ‘document’ for business, big and small, used inside and outside organizations to pitch an idea, explain a process, or communicate with team members. Introducing Clipchamp Clipchamp uses a template-driven, task-focused wizard that lets anyone create videos with confidence. It includes a library of filters, styles, transitions, and stock media that work with a browser-based multi-track audio and video editor. Clipchamp also helps users share their creations on social media in a variety of different output styles. It can be used to produce anything from a 10-second social media video... --- ### How to Join Windows 10 to Azure Active Directory - Published: 2021-09-13 - Modified: 2024-09-04 - URL: https://petri.com/how-to-join-windows-10-to-azure-active-directory/ - Categories: Endpoint Protection, Microsoft 365, Security - Tags: Endpoint security, Microsoft 365, Zero Trust - Article Type: How To Registering Windows 10 devices with an identity provider, like Azure Active Directory (recently renamed Microsoft Entra ID), is an important part of including endpoints in the Zero Trust security model. In this article, I'm going to show you how to join Windows 10 to Azure Active Directory. You will 1) join an existing Windows 10 device with Azure Active Directory using the Settings app in Windows 10. You can also join an new device to Azure Active Directory as part of the out-of-box setup experience (OOBE). Join or register Windows with Azure AD? In a previous article, I showed you how to register Windows 10 with Azure Active Directory (AD). Devices registered with Azure AD are usually Bring Your Own Device (BYOD). Registration is supported not just on Windows 10 but also iOS, Android, and macOS. But when you join a Windows 10 device to AAD, users sign in to Windows using their organizational work or school account from the lock screen, either using a password, Windows Hello for Business, or FIDO2. 0 security keys. It's important to understand the difference between register and join when talking about Azure AD. The security landscape is changing quickly as more users are working remotely and using their own devices. Without a robust security model in place, endpoints can easily become the weakest link in your organization's security. Microsoft’s identity-centric Zero Trust solution requires that every user accessing an application must be verified. Zero Trust requires that all requests for access, regardless of where... --- ### Microsoft Start Comes to Android, iOS, and Windows 10 News and Interests - Published: 2021-09-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-start-comes-to-android-ios-and-windows-10-news-and-interests/ - Categories: Windows 10 - Tags: Android, iOS, Microsoft Start, News, Windows 10 - Article Type: News When Microsoft announced that it would be rolling out a new taskbar feature called News and Interests in Windows 10 earlier this year, it divided opinion. There were those who felt News and Interests is just another distraction for users. But Microsoft says it adds features like the Your Phone app and News and Interests to keep people in Windows and not distracted by their phones. Check out How to Turn Off News and Interests with Group Policy on Petri to disable News and Interests on the taskbar in Windows 10. News and Interests is being replaced by Widgets in Windows 11. Unlike gadgets in Windows 8, Windows 11 Widgets is presented as a separate pane of glass over the desktop. And their will be various widgets that provide users with the same information that News and Interests serves in Windows 10 today. Introducing Microsoft Start So, what has all this got to do with Microsoft Start? Microsoft Start is a new app for Android and iOS, and a web page that users get redirected to for configuring the content that appears in News and Interests. Microsoft describes Start as: 'a personalized news feed and collection of informational content provides news from premium publishers, timely updates tailored to your interests, and is available when and where you want it. Microsoft Start will begin rolling out today and is conveniently available: As a standalone website (available on Microsoft Edge and Chrome) – MicrosoftStart. com As a mobile app on both Android and... --- ### AWS Adds Support for NetApp ONTAP - Published: 2021-09-10 - Modified: 2021-09-10 - URL: https://petri.com/aws-adds-support-for-netapp-ontap/ - Categories: Amazon Web Services, Cloud Computing, Data Management - Tags: AWS, NetApp ONTAP, News - Article Type: News One of the major announcements from this past AWS Storage Day 2021, September 2nd 2021, was Amazon FSx for NetApp ONTAP. Amazon FSx for NetApp ONTAP is a fully managed storage service that enables businesses to run NetApp ONTAP file systems in the AWS cloud. ONTAP from NetApp  is an enterprise data management solution designed to provide high-performance storage for use with enterprise applications like Oracle, SAP, VMware and Microsoft SQL Server. Traditionally, ONTAP runs on a local NAS (Network Attached Storage) device.   It supports multi-protocol access including NFS, SMB and the iSCSI protocols and can scale up to 176 PiB.  AWS FSx for ONTAP storage can be accessed from Linux, Windows, and macOS. ONTAP provides sub-millisecond latencies and high levels of throughput and IOPS. It also supports a number of advanced storage management capabilities including inline data compression, deduplication, compaction, thin provisioning, replication (SnapMirror), and point-in-time cloning (FlexClone). With the new announcement, ONTAP will be running on top of Amazon FSx which is a group of managed, highly reliable and performant cloud file systems. Amazon FSx previously supported Amazon FSx for Lustre and Amazon FSx for Windows File Server. AWS FSx for NetApp ONTOP enables businesses to migrate on-premises applications that currently run on NAS appliances to the AWS cloud. It will also enable businesses to build, test, and run cloud-native ONTAP applications. AWS FSx for NetApp ONTAP provides two storage tiers. Intelligent tiering enables ONTAP to move data between the two tiers as-needed. The AWS FSx for NetApp ONTAP tiers consist of: Primary Storage -- Built... --- ### Microsoft Provides Temporary Fix for Office 365 Zero-Day - Published: 2021-09-08 - Modified: 2021-09-08 - URL: https://petri.com/microsoft-provides-temporary-fix-for-office-365-zero-day/ - Categories: Windows Client OS - Tags: Microsoft 365, Microsoft Office, News, Security, Windows - Article Type: News September 7th, Microsoft released a security advisory for a remote code execution vulnerability (CVE-2021-40444) in Microsoft MSHTML, the rendering engine that Office apps use in Windows to display web content. Microsoft says that it is investigating reports of targeted attacks that try to exploit the MSHTML flaw using specially designed Microsoft Office files. The announcement says: An attacker could craft a malicious ActiveX control to be used by a Microsoft Office document that hosts the browser rendering engine. The attacker would then have to convince the user to open the malicious document. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The document notes that customers with Microsoft Defender Antivirus or Microsoft Defender for Endpoint are protected. Both security solutions detect and protect against the vulnerability. And if these products are configured to automatically update, then customers shouldn't need to take any further action. Organizations that manage updates manually should make sure that detection build 1. 349. 22. 0 or later is installed and deployed across the environment. And if Microsoft Defender for Endpoint detects an attack that attempts to utilize the flaw, an alert will be shown: "Suspicious Cpl File Execution". It's also worth noting that Application Guard and Protected View both prevent this attack for documents that are opened from the Internet. CVE-2021-40444 MSHTML workaround Microsoft is working on a fix. But we don't know at this stage if it will be ready for this... --- ### Distributors Synnex and Tech Data Complete Merger, Combined Company is Now TD Synnex - Published: 2021-09-08 - Modified: 2021-09-08 - URL: https://petri.com/distributors-synnex-and-tech-data-complete-merger-combined-company-is-now-td-synnex/ - Categories: Microsoft Partners - Tags: AWS, Microsoft Partner, News - Article Type: News IT distributor Synnex last week completed its acquisition of Tech Data in a deal valued at $8. 3 billion. Rich Hume, who had served as chief executive at Tech Data, is now CEO of the newly combined company, now called TD Synnex. The deal is poised to create a much more powerful IT distributor with substantially more scale, which positions TD Synnex as a more formidable competitor to industry leader Ingram Micro. When the deal was announced in March, the companies valued the acquisition at $7. 2 billion, based on Synnex’s stock price at the time. A 23 percent rise in Synnex’s stock price since the deal was announced boosted the final valuation at $8. 3 billion. Synnex paid an aggregate 44 million shares of its common stock to Apollo Funds, the private investment firm that acquired Tech Data last year for $6 billion. The deal also included $1. 1 billion in cash, including a $500 million equity contribution by Apollo and the refinancing of Tech Data’s net debt. Synnex shareholders now own a controlling 55 percent stake in TD Synnex while Apollo holds a 45 percent share. Verizon Rolls Out On-Prem 5G Edge Services on Microsoft Azure Verizon last week launched its 5G-based on-premises private mobile edge compute (MEC) offering. The Verizon 5G Edge solution is integrated with Microsoft Azure Stack Edge, which brings Azure compute and storage capability on-premises. It’s intended for organizations who are running operations at edge locations that require low latency and high bandwidth, for applications such as AI,... --- ### BWW Media Group names Russell Smith the Editorial Director for the Petri IT Knowledgebase - Published: 2021-09-07 - Modified: 2021-09-07 - URL: https://petri.com/bww-media-group-names-russell-smith-the-editorial-director-for-the-petri-it-knowledgebase/ - Categories: Announcements - Article Type: News A Letter from George A. Coll, CEO and Managing Partner, BWW Media Group BWW Media Group is delighted to share that Russell Smith has been named the new Editorial Director for the Petri IT Knowledgebase. This may be a new role for Russell, however, those of you who have followed Petri for a long time, have surely benefitted from his writing on Petri. com for he has been a contributor for nearly a decade. Petri’s manifesto shown below, guides our purpose and Russell has been an essential ingredient. We’re Petri.   The IT Knowledgebase.   The original. Trusted advice delivered worldwide for over 20 years.   We care.   In everything we do, IT professionals like you come first.   We understand your job is the one no one else can do; new initiatives under impossible deadlines and dire conditions. Doing more with less is just part of the game.   Do your job right, your business just works - no celebrations.   Do it wrong ... well that’s not an option. Only you understand what it takes to make it happen  - we understand our job is to help.    The countless hours off the clock, refining your craft.   You grow and stay current with the latest and greatest, or ... well that’s not an option either.   Good thing your work is your passion – we get IT. IT’s all about Business.   Petri is all about you. We are unwavering in our mission to serve business technologists -- it’s our calling -- and we take this to heart... . --- ### How to Register Windows 10 with Azure Active Directory - Published: 2021-09-07 - Modified: 2024-09-04 - URL: https://petri.com/how-to-register-windows-10-with-azure-active-directory/ - Categories: Endpoint Protection, Microsoft 365, Security - Tags: Endpoint security, Microsoft 365, Zero Trust - Article Type: How To Registering Windows 10 devices with an identity provider, like Azure Active Directory (recently renamed Microsoft Entra ID), is an important part of including endpoints in the Zero Trust security model. In this article, I'm going to show you how to register Windows 10 with Azure Active Directory. You will 1) register a Windows 10 device with Azure Active Directory using the Settings app in Windows 10 and then 2) check that the device successfully registered using the Microsoft Endpoint Manager portal. Protecting Data and Devices using Identity Your organization's data is accessed by different devices, like laptops, tablets, iOS and Android mobiles. And even IoT devices. The devices may be corporate owned or personal. And users may be located within the corporate network or outside it. Under these circumstances, it is imperative to first know which devices are accessing your organization's data and then to devise a security plan to manage it. The security landscape is changing quickly as more and more users are working remotely and using their own devices. Without a robust security model to handle this predicament, endpoints can easily become the weakest link in your organization's security. Microsoft’s identity-centric Zero Trust solution requires that every user accessing an application must be verified. Zero Trust requires that all requests for access, regardless of where they originate, must be verified as if they come from an untrusted network. All endpoints must be registered with a cloud identity provider All devices must be registered with a single cloud identity... --- ### What's New in Azure AD Connect V2 - Published: 2021-09-06 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-azure-ad-connect-v2/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory, Azure AD Connect, Microsoft Azure, News, Windows Server - Article Type: News Azure AD Connect is a free tool from Microsoft that's used for synchronizing objects between on-premises Windows Server Active Directory (AD) and Azure Active Directory. Microsoft announced in August the availability of Azure AD Connect V2. 0. And in this article, I'm going to discuss the major changes in this new release. Here are the major new changes in Azure AD Connect V2: The version of SQL Server used for the local database Updated to the MSAL authentication library Updated the Visual C++ runtime Now only supports TLS 1. 2 Support for Windows Server 2012 and Windows Server 2012 R2 has been dropped Some of the components in Azure AD Connect were scheduled for deprecation and have already been updated to newer versions. So, Microsoft decided that it would be easier to release a completely new version of Azure AD Connect rather than have users try to update each of the outdated components individually. Azure AD Connect V2 is built using the latest components and it is designed to help organizations achieve their hybrid identity goals. Azure AD is Microsoft's cloud-based identity solution. It is used whenever users log into a service using a Microsoft work or school account. For example, when you log into Microsoft 365. But Azure AD isn't only useful for signing into Microsoft's cloud services. It can be used as the identity solution for third-party cloud services, Windows 10, and line-of-business apps developed in the cloud specially for your organization. Updated components in Azure AD Connect V2 The... --- ### Microsoft Offers Free Support for Windows 11 and Windows 10 21H2 Commercial Previews - Published: 2021-09-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-offers-free-support-for-windows-11-and-windows-10-21h2-commercial-previews/ - Categories: Windows 10, Windows 11 - Tags: News, Windows 10, Windows 11, Windows Insider Program - Article Type: News Microsoft announced September 2nd that it is releasing Windows 11 and Windows 10 (version 21H2) commercial previews. Organizations in the Windows Insider Program for Business can access the builds and get free support. The builds are available through the usual channels, like Windows Update, Windows Server Update Services (WSUS), Azure Marketplace, and the Windows Insider Program ISO download page. Microsoft says that free support will allow organizations to rest the releases, along with their preferred deployment method, before general availability. How to get the commercial preview of Windows 11 To receive the commercial preview of Windows 11 or Windows 10 21H2, your devices need to be in the Release Preview Channel on the Windows Insider Program. But there are a couple of other requirements. Devices targeted for Windows 11 must meet the minimum hardware requirements outlined by Microsoft. Devices must also have KB5005101 installed, which is an optional update at the time of writing, before Windows 11 will be offered via Windows Update. Microsoft says that the commercial previews of Windows 11 and Windows 10 21H2 will both be offered as optional updates. So, users can choose to stay on their current version of Windows 10. Devices that don't meet the hardware requirements for Windows 11 will automatically be offered Windows 10 21H2 instead. Devices that are set to send diagnostic data to Microsoft but don't meet the hardware requirements for Windows 11, will be marked as inapplicable in WSUS for Windows 11 upgrades. Microsoft Offers Free Support for Windows... --- ### Microsoft Viva Increasing its Branding to More 'Personal Insights' for Microsoft 365 Users - Published: 2021-09-03 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-viva-increasing-its-branding-to-more-personal-insights-for-microsoft-365-users/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Viva, News, Productivity - Article Type: News Over the coming months, Microsoft will be re-branding some of what Microsoft calls 'personal insights' into your daily flow in Outlook. These include the Daily Briefing email that arrives in your Outlook Inbox every weekday morning, the MyAnalytics digest emails, and the Insights Outlook add-in. They will all receive updates to reflect the Microsoft Viva brand. I imagine you aren't too familiar with that relatively new marketing product - Microsoft Viva. What exactly is it? Well, now that you mention it, Viva is the employee experience platform that assists people and teams in companies reach across the aisle, become more efficient, and discover new ways to be empowered in their individual roles. Helping to balance productivity and wellbeing with useful dashboard-like data analytics. I personally love these types of services. Let's get some more details. The Briefing Email The (weekday) daily email shows you important reminders from Cortana, your trusty Clippy... no, your personal digital assistant. This will soon include employee experience insights. As before, it will be delivered to your Inbox every morning, but it will be coming from Microsoft Viva. The key features include: Connecting you to personal productivity and wellbeing insights More learning recommendations. This helps you set aside 1-2 hours in your next work week to learn something new that will benefit your role, your efficiency, your technical expertise, etc. This can also include blocking off 15 minutes twice a day to 'take a break' These sometimes include suggestions to create tasks for the upcoming day... --- ### What's New with Power Platform - August 2021 Edition - Published: 2021-09-02 - Modified: 2021-09-02 - URL: https://petri.com/whats-new-with-power-platform-august-2021-edition/ - Categories: Power Platform - Tags: power apps, Power Automate, Power BI, Power Platform - Article Type: News As mentioned last month, the Power Platform release wave two commenced in August. While not all of the planned features were released on schedule, some useful updates were made to model-driven apps. Model-Driven Last month we discussed polymorphic lookups in Dataverse (Preview). This month, the changes come in the form of advanced lookups in model-driven apps.  Advanced lookups allow users to see more information in the row to easily select the appropriate record. In addition, users can switch views, sort data, select multiple rows, filter out items owned by other users, and explore other data without losing context.   Model-Driven Unified Interface dialog experience Quickly edit and share multiple rows simultaneously in model-driven apps with the new Unified Interface dialog experience. Both functionalities are fully supported on the mobile experience, reducing dependency on the web client.    Quality of life Power Automate improvements More detailed error messages in Power Automate lead to less guesswork and more problem solving. New Power Automate changes will improve connectivity error messages by giving detailed explanations and actionable solutions.  The goal is to reduce the number of times builders need to contact support by providing detailed steps toward resolving errors.   Connect some more Power automate has expanded its list of connectors even further. They have partnered with 13 new organizations to introduce some more connectors for greater solution flexibility. These connectors vary significantly in their functionality and applicability.  These connectors can provide help with HR solutions, can assist with e-sign solutions, or provide document automation/processing. These connectors serve a variety of purposes, and regardless of your business solution needs, you ought to check them out.   Power BI Updates As with last month, Power BI has... --- ### What's New with Azure Infrastructure – August 2021 Edition - Published: 2021-09-01 - Modified: 2021-09-01 - URL: https://petri.com/whats-new-with-azure-infrastructure-august-2021-edition/ - Categories: Microsoft Azure - Tags: APIM, ASR, Availability Zones, Azure, Azure AD, Azure API Management, Azure App Services, Azure Automation, Azure Backup, Azure Batch, Azure Cost Management, Azure Data Box, Azure Database for MySQL, Azure Defender for SQL, Azure Log Analytics, Azure Managed HSM, Azure Monitor, Azure Policy, Azure Portal, Azure Security Center, Azure Sentinel, Azure Site Recovery, Azure Static Web Apps, Azure Storage, Azure Virtual Desktop, Azure Virtual Machines, Azure VMware Solution, Azure VPN Client, Blob Storage, Bot Protection, ExpressRoute, ExpressRoute Global Reach, FSLogix, HITRUST, macOS, Microsoft Azure, Network Insights, Powershell 7, Private Endpoint, Private Link, Storage Account, virtual machines, VNet Peering, WAC, WAF, Web Application Firewall, Windows 11, Windows Admin Center - Article Type: Overview I think you’ll find that there are quite a few announcements this month. The summer quiet period is over, and we’re into a whole new development/release semester in Microsoft, not to mention the countdown to the usual peak release season for Microsoft Ignite has started – most releases announced at Ignite happen well before Ignite. You should also note the announced retirements in Microsoft Azure’s services. VM Retirements Microsoft made a lot of announcements about Azure features/SKUs being retired in the future; that news includes a bunch of virtual machine SKUs: Basic and Standard A-series VMs will retire on 31 August 2024 HB-series (v1) Azure Virtual Machines will be retired by 31 August 2024 NC-series Azure Virtual Machines will be retired by 31 August 2022 NC v2-series Azure Virtual Machines will be retired by 31 August 2022 ND-series Azure Virtual Machines will be retired by 31 August 2022 Many moons ago, the Basic A-Series and the Standard A-Series (what you might call A_v1) were the only option for Azure virtual machines. Microsoft eventually expanded the roster and even added a newer A_v2, which was slightly more affordable, and the various D-Series (more performance) and Bs-Series (much more affordable for “bursty” workloads). Early customers commonly used the A-Series. And I’d safely say that many accidently deployed “A_v1” sizes instead of the A_v2. And those machines probably are still sitting there today, unchanged, even though there are better options for performance, SLA, and cost optimization. Those customers need to act – as... --- ### What's New with Windows – August 2021 Edition - Published: 2021-09-01 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-with-windows-august-2021-edition/ - Categories: Windows 10 - Tags: Windows 10, Windows 11 - Article Type: News Microsoft announces Windows 11 release date, tweaks the Windows 11 minimum hardware requirements (but not much), and Windows 365 goes live but free trials are on hold due to demand. Windows 11 release date Top of the list this month is that Microsoft announced Windows 11 will start rolling out to eligible Windows 10 PCs October 5th. But without one of Windows 11's most touted new features, Android app support. Microsoft says it needs more time to work with Intel and Amazon before it starts testing the feature in the coming months. Microsoft says that new PCs preinstalled with Windows 11 will also be available to buy starting October 5th. Microsoft expects Windows 11 should be offered to all eligible Windows 10 devices by the middle of 2022. Microsoft tweaks Windows 11 hardware requirements In more Windows 11 news, Microsoft finalized the hardware requirements for its new OS. As you probably know, when Windows 11 was first announced, Microsoft said it would require an 8th-generation Intel or AMD Zen 2 CPU or newer, with 4GB RAM, 64GB of storage, Secure Boot, and TPM 2. 0. After an initial outcry at the need for an 8th-generation Intel chipset or newer, Microsoft said it might review the hardware requirements. And it has done just that. But don't expect much in the way of concessions. August 27th, Microsoft announced that Windows 11 will now support: Intel® Core™ X-series, Xeon® W-series Intel® Core™ 7820HQ (only select devices that shipped with modern drivers based on Declarative,... --- ### WireGuard VPN Gets Port to Windows Kernel but Don't Run Out to Replace IPsec or OpenVPN - Published: 2021-08-31 - Modified: 2024-09-04 - URL: https://petri.com/wireguard-vpn-gets-port-to-windows-kernel-but-dont-run-out-to-replace-ipsec-or-openvpn/ - Categories: Remote Access - Tags: News, Remote Access, Virtual Private Network, WireGuard - Article Type: News WireGuard is a Virtual Private Network (VPN) protocol that was first developed in 2016 by security researcher Jason A. Donenfeld. It was originally conceived for Linux. And as of kernel version 5. 6, which was released in March 2020, WireGuard is integrated into Linux. Designed to be a lightweight alternative to VPN protocols like IKEv2, OpenVPN, IPsec, and L2TP, WireGuard uses less than 4000 lines of code. And when compared to IPsec and OpenVPN, WireGuard claims that it delivers faster throughput and ping time, especially when compared to OpenVPN. WireGuard VPN Gets Port to Windows Kernel (Image Credit: WireGuard) WireGuard VPN Gets Port to Windows Kernel but Don't Run Out to Replace IPsec or OpenVPN (Image Credit: WireGuard) In addition to better performance, the less complex codebase means potentially fewer bugs, faster connection times, and better compatibility with IoT and small devices, such as routers and mobile phones. WireGuard also supports the latest encryption protocols, like BLAKE2, Curve25519, ChaCha20, and Poly1305. Incorporating WireGuard into the Linux kernel brought many performance benefits. OpenVPN, for example, which works in the user-mode space, must translate each network request before it can be processed. Kernel-mode drivers and applications, like WireGuard on Linux, bypass the 'context-switching' of user-mode processes, leading to better performance. WireGuard is coming to the Windows kernel Ok, not quite in the same way as on Linux. WireGuard is being ported to a kernel-mode (kernel space) application on Windows, bringing the same performance benefits that are seen on Linux today. Microsoft has nothing... --- ### Windows 11 Arrives October 5th Without Android Apps - Published: 2021-08-31 - Modified: 2024-09-04 - URL: https://petri.com/windows-11-arrives-october-5th-without-android-apps/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, Windows 11 - Article Type: News Earlier this year, Microsoft announced Windows 11 with a refreshed interface, new widgets, and an updated store. But to run the new software, Microsoft moved the baseline specs up significantly from what is required to run Windows 10, and today, the company is sharing the launch plans for the OS. Microsoft has announced that Windows 11 will be released on October 5th of this year. The free upgrade will begin rolling out to eligible Windows 10 devices on this day and PCs that are pre-loaded with the OS will become available for purchase on this day too. There are many new features coming to Windows 11 like an updated Start menu but one thing that will not be available at launch are Android apps. Microsoft is working with Intel and Amazon to bring some Android apps to Windows but the functionality is not ready for release. Microsoft says that they will begin testing Android apps on Windows 11 in the coming months but they did not provide any specific timeline for release. This is likely a disappointment for some but Android apps on Windows haven't held back the OS for more than a decade and waiting a bit longer likely won’t impact the bottom line for Microsoft. I will be curious to see if Microsoft shares the adoption rate of the OS after it is released. With all major Windows versions, the company celebrated major adoption milestones like 1 million, 10 million, 100 million users of the OS but with... --- ### Using SYSPREP in Windows 11 - Published: 2021-08-30 - Modified: 2024-09-04 - URL: https://petri.com/using-sysprep-in-windows-11/ - Categories: Windows 11 - Tags: sysprep, Windows 11 - Article Type: How To Deploying Windows 11 to hundreds or even thousands of devices can be automated if you have a system image that you can clone.  To create an image for cloning, you first install Windows 11 on a device or virtual machine (VM), and then configure the operating system to your requirements. For example, you might decide to install certain applications or change default Windows configuration settings. You can create images with a light touch, where only a minimum of changes are made to the out-of-box OS configuration. The result is known as a 'thin image'. Or organizations might decide to go the whole hog and install and configure everything required for a set of users, creating a 'fat image'. Generalizing a Windows 11 system Windows must be 'generalized' before you can use it as an image for cloning. When Windows is installed, it creates unique security identifiers (SID) that must not be used on other Windows devices. The process of 'generalizing' the operating system removes the unique SIDs assigned to the installation. And it is performed using a program called SYSPREP. If you want to know how to use sysprep with Windows 10, check out Using Sysprep in Windows 10 on Petri. Once Windows is generalized, it is returned to a state where if the image is booted, it will run through the Out-of-Box Experience (OOBE) again and reassign unique SIDs to the installation. The generalization process also removes all hardware devices. So that you can use the image to deploy Windows... --- ### Windows Server 2022 Series - Part 3 - Upgrading Final 3 Servers - Published: 2021-08-27 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2022-series-part-3-upgrading-final-3-servers/ - Categories: Windows Server 2022 - Tags: Windows Server 2022 - Article Type: How To Welcome to Part 3 of my Windows Server 2022 Series. This series of posts has chronicled the upgrade of my Microsoft Hyper-V lab. I have a number of servers running various roles, including Active Directory Domain Services (ADDS), fileservers, SQL Server, SharePoint Server, etc. I'm upgrading all of them to Microsoft's latest Long Term Servicing Channel (LTSC) release - Windows Server 2022. (Incidentally, as of 8/18/21, Microsoft has posted official ISO media for Windows Server 2022 to the Volume License Service Center (VLSC) site and to the Visual Studio Subscriber Downloads (formerly MSDN) site. They also marked this date as the official start of support. You will receive 5 years of mainstream support and 5 years of extended support. 10 years! ) Meanwhile, if you missed my previous posts... Part 1 and Part 2 Introduction & Agenda In the first part of this series, I upgraded one of the domain controllers (DC) from Windows Server 2016 to Windows Server 2022. The upgrade went swimmingly; there were no hitches. Active Directory was running with excellence after it finished. In the second part, I upgraded the second and third DCs in my lab and one of my fileservers running Windows Server 2016 Core. That upgrade also was a flawless victory! - Liu Kang In this part, I will be upgrading three more servers: WS16-WinAdminC - This server is running Windows Server 2016 and has the Windows Admin Center installed for the lab. I have been using this extensively throughout the process to confirm... --- ### Contact Center Provider NICE Joins Microsoft’s Business Apps ISV Connect Program - Published: 2021-08-27 - Modified: 2024-11-19 - URL: https://petri.com/contact-center-provider-nice-joins-microsofts-business-apps-isv-connect-program/ - Categories: Channel - Tags: Channel - Article Type: News Contact Center Provider NICE Joins Microsoft’s Business Apps ISV Connect Program NICE, among the leading contact center platform providers, this week said it has joined Microsoft’s Business Applications ISV Connect. The program is designed to let partners build and bring line of business applications to market on Microsoft’s Dynamics 365 and Power Platform. Microsoft’s Business Applications ISV Connect program gives ISVs tools and support resources to facilitate the development, publishing and marketing of their apps. According to NICE, by joining the program customer service organizations can integrate NICE CXone, the company’s cloud-based omnichannel contact center as-a-service (CCaaS) platform, with Microsoft Dynamics 365, with a unified agent interface. By joining Microsoft’s Business Applications ISV Connect, NICE and its channel partners will have access to prioritized technical support from Microsoft, as well as go-to-market programs including proactive services, workshops, and training resources. Reports: Veteran AWS Exec Charlie Bell Has Joined Microsoft Former Amazon Web Services senior VP Charlie Bell has joined Microsoft in an unspecified role, according to multiple published reports. Though Microsoft hasn’t confirmed the hiring Bell, the Wall Street Journal reported it has verified that he is now a Microsoft employee. The move is particularly noteworthy because Bell, a 23-year Amazon veteran who joined the AWS group at its inception, was a contender to lead the cloud business after its previous head, Andy Jassy, replaced Jeff Bezos as CEO of Amazon. Instead, Jassy tapped former Tableau CEO Adam Selipsky, to lead AWS. Bell, who reportedly left AWS earlier this month,... --- ### Microsoft Finalizes Windows 11 Hardware Requirements - Published: 2021-08-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-finalizes-windows-11-hardware-requirements/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, Windows 11 - Article Type: News Back in June, when Microsoft announced Windows 11, the company received praise for the interface and scorn for the lack of clarity about the hardware that could run the OS. Generally speaking, to run Windows 11, you need a device with an 8th gen Intel chipset or newer or from AMD, a Zen 2 chip or newer along with 4 GB of memory, 64GB of storage, UEFI secure boot, and TPM 2. 0 - these are the baseline requirements for the OS. But that's not the entire story as Microsoft is announcing today a few exceptions to this previously communicated information and the fact that unsupported hardware can also run the OS too. The update that Microsoft is announcing today is that Intel Core X-series chips from the 7th generation, Xeon W-series, and 7820HQ (Surface Studio 2) will now support Windows 11. On the AMD side, Microsoft is not adding any additional chips to the supported list. The short version of this update is that Microsoft isn't changing much in terms of supported devices and is holding firm on requirements to run Windows 11. That being said, it is convenient that they are making the Surface Studio 2 now support Windows 11 when it previously was left out in the cold - coincidental, I am sure. While there have been some odd rumors flying about when it comes to running the OS in a VM, Microsoft is saying that these requirements also apply to those installs as well. But what about... --- ### Microsoft Pulls Azure Cosmos DB Component After Major Security Issue Exposed - Published: 2021-08-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-pulls-azure-cosmos-db-component-after-major-security-issue-exposed/ - Categories: Microsoft Azure - Tags: Azure Cosmos DB, cloud computing, News - Article Type: News It has been revealed that Microsoft pulled a component of its Azure Cosmos DB service earlier this month because of a serious security issue uncovered by researchers at Wiz. io. Dubbed #ChaosDB, the flaw was disclosed to Microsoft on August 12, 2021. It gives any Azure user full access to other customers' Cosmos DB instances, without any need for additional authorization. The vulnerability allows malicious actors to perform a remote account takeover of Cosmos DB in the Azure cloud, providing read, write, and delete access to another customer's database. The Wiz Research Team says: The vulnerability has a trivial exploit that doesn't require any previous access to the target environment, and impacts thousands of organizations, including numerous Fortune 500 companies. Microsoft Pulls Azure Cosmos DB Component After Major Security Issue Exposed (Image Credit: Wiz. io) What is Cosmos DB and Jupyter Notebook? Cosmos DB is a non-relational database that's popular for modern app development. Azure's fully managed Cosmos DB service provides single-digit millisecond response times and 99. 999 percent availability. Jupyter Notebook is an open-source web app that lets you create and share documents that include live code, equations, and text. Notebooks are used with Cosmos DB to allow developers, data scientists, engineers, and analysts to explore, clean, and transform data. Notebooks can also help with numerical simulations, statistical modeling, data visualization, and machine learning. Microsoft Pulls Azure Cosmos DB Component After Major Security Issue Exposed (Image Credit: Microsoft) Research team dubs flaw ChaosDB But by exploiting a series of flaws in Jupyter... --- ### Installing Windows 11 Just Became Much Easier with New ISO Download Option - Published: 2021-08-27 - Modified: 2024-09-04 - URL: https://petri.com/installing-windows-11-just-became-much-easier-with-new-iso-download-option/ - Categories: Windows 11 - Tags: News, Windows 11, Windows Insider Program - Article Type: News If you've been waiting to test out Window 11, now might be the time! After initially making the first preview version of Windows 11 available in July for users in the Windows Insider Program, Insiders now have access to Windows 11 ISOs. Prior to the release of yesterday's new Windows 11 build, Insider Preview build 22000. 160, the only way you could test Windows 11 was to enroll an existing install of Windows 10 in the Insider Program on the Dev or Beta Channel, and then upgrade the device or virtual machine (VM) to Windows 11. So, in testing scenarios, that usually meant first installing Windows 10, and then downloading and doing an in-place upgrade to Windows 11 using Windows Update. ISOs for Windows 11 Insider Preview Build 22000. 132 But that has all changed. Build 22000. 132, which was released August 12th, is now available to download as an ISO file. ISO files can be used to install Windows 11 in a VM, or you can create a bootable USB drive to upgrade or install Windows 11 on a physical device. To get your hands on the new Windows 11 ISO, head over to the Windows Insider Preview Downloads page and sign in with a Microsoft Account that's enrolled in the Insider program. When you get to the downloads page, head to software downloads for the Windows 10 Insider Preview. Confusing, I know. But you will get the option to select an edition of Windows 11 nevertheless, on either the Dev or... --- ### Windows Server 2022 Series - Upgrading 2 more DCs and Fileserver (Core) to 2022 - Published: 2021-08-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2022-series-upgrading-2-more-dcs-and-fileserver-core-to-2022/ - Categories: Windows Server 2022 - Tags: Windows Server 2022 - Article Type: How To Welcome to Part 2 of my Windows Server 2022 Series. I am progressing through my Hyper-V lab, upgrading all the Windows Server 2016 and 2019 servers, running various roles, to Windows Server 2022. In my first post, I upgraded my first domain controller (DC), WS16-DC1, running Windows Server 2016 to Windows Server 2022. Yes, taboo in certain parliaments, but it went off without a hitch! Kudos to Microsoft and their engineering teams for building a robust Windows Setup program that can seamlessly upgrade two major Windows versions and include the Active Directory Domain Services role and take the checkered flag. Introduction - Goals I will accomplish the following in Part 2 of the series: Upgrade my second DC, WS16-DC2, from Windows Server 2016 to Windows Server 2022. I will include limited content here as the upgrade is very similar to my first post. Upgrade my third DC, WS19-DC3, from Windows Server 2019 to Windows Server 2022. Again, I'll have some content and screenshots. Upgrade my first fileserver, WS16-FS01-Core, from Windows Server 2016 Core to Windows Server 2022 Core. I'll include most of the remaining content here. Upgrading Windows Server 2022 (WS16-DC2) Let's get started on our 2nd DC. I have mounted my trusty Windows Server 2022 ISO file in Hyper-V and double-clicked on my D: drive. Here is some pre-upgrade info. Windows -> About - Pre-Upgrade   Install Windows Server   I clicked Next and Install a whole lotta times... Windows Setup Progress - 3%   And then... "Alohomora... " (to... --- ### Microsoft Improves Windows 10 Device Control with new 'Apply Layered' Group Policy Setting - Published: 2021-08-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-improves-windows-10-device-installation-control-with-new-apply-layered-group-policy-setting/ - Categories: Windows 10 - Tags: Device, group policy, News, Windows 10 - Article Type: News Along with the Windows 10 quality updates in August, Microsoft added a new feature to Group Policy which will allow IT to better control which devices can be installed on corporate-owned devices. A release is also planned for Windows Server in the future. Restricting device installation in Windows can be complicated. The new Apply layered order of evaluation for Allow and Prevent device installation policies across all device match criteria setting is meant to make it a little easier for IT. And Microsoft recommends that this setting should be enabled in most scenarios. How to block and allow device installation in Windows 10 using Group Policy When designing a Group Policy strategy to restrict device installation, you should start by adding the devices that you want to block to one of the policy settings below: Prevent installation of devices that match any of these device IDs Prevent installation of devices that match any of these instance IDs Prevent installation of devices that match any of these device setup classes For example, if you want to block installation of all printers, you would find the ClassGuid for printers and add it, including curly braces, to the Prevent installation of devices that match any of these device setup classes policy setting. If you want to block a specific printer or device, you would add its hardware ID to the Prevent installation of devices that match any of these device IDs policy setting. Microsoft Improves Windows 10 Device Installation Control with new 'Apply... --- ### Microsoft Ignite Free Virtual Event Coming in November - Published: 2021-08-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-free-virtual-event-coming-in-november/ - Categories: Microsoft Events - Tags: Microsoft Ignite 2021, News - Article Type: News Microsoft has announced that it will be bringing back its Ignite conference this November, again in virtual form. Running from November 2nd – 4th, Microsoft says that its 'digital experience' will include the latest product demos, Q&A with Microsoft experts, technical deep-dives, and more. Last year's Ignite was the first to be held virtually due to the global health pandemic. It was split into two parts, the first taking place in September 2020, and the second in March 2021. As Ignite in November is just 3 days, it's likely that we'll see a second part in Spring 2022, although Microsoft hasn't confirmed anything at this stage. One advantage of running Ignite as a digital event is that Microsoft offers it for free. And for those of us not based in the U. S. , there's obviously no travel expenses involved. Microsoft Ignite Free Virtual Event Coming in November (Image Credit: Microsoft) With many expecting Microsoft to make Windows 11 available in October, and more broadly available in 2022, there should be plenty of Windows sessions at Ignite. The last few years have seen Windows put on the back burner. But with the renewed interest in Windows at Microsoft, and with Windows Server 2022 generally available, hopefully in November we'll see a return to the spotlight for Windows and Windows Server. Ignite isn't open for registration yet, but you can add it to your calendar using the . ics file here. --- ### Windows Server 2022 Now Available for Evaluation and to Volume License and Azure Customers - Published: 2021-08-24 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2022-now-available-for-evaluation-and-to-volume-license-and-microsoft-azure-customers/ - Categories: Windows Server 2022 - Tags: News, Windows Server 2022 - Article Type: News Back in June this year, Microsoft sent the final Windows Server 2022 bits to OEMs for testing. And without so much as an official announcement, Microsoft has made the next version of its server product available to mainstream users. Windows Server 2022 will only be available on the Long-Term Servicing Channel (LTSC); unlike recent versions of the product. Windows Server 2016 and 2019 both had releases on the Semi-Annual Channel (SAC), although without support for the Desktop Experience server role. Windows Server SAC releases were designed to bring the latest container innovations to customers who needed them before the next LTSC release. Starting August 18th, Windows Server 2022 is available in the Volume Licensing Service Center. And it's available in Standard, Datacenter, and Datacenter: Azure Edition SKUs. You can now also provision Windows Server 2022 virtual machines (VM) in Azure and download an evaluation from Microsoft's website here. Windows Server 2022 Now Available for Evaluation and to Volume License and Azure Customers (Image Credit: Russell Smith) Microsoft also updated its product support page for Windows Server 2022. Mainstream support started August 18th, 2021 for five years, ending October 13th, 2026. Extended support is for an addition five years and it ends October 14th, 2031. Windows Server 2022 – Datacenter: Azure Edition Microsoft is pushing Azure as the best platform for hosting Windows Server 2022. And for the first time, there will be an 'Azure Edition' of Windows Server connected to the 2022 release, which offers features not available outside of... --- ### GET-IT: Advanced Microsoft 365 1-Day Conference is Today - Published: 2021-08-24 - Modified: 2021-08-24 - URL: https://petri.com/get-it-advanced-microsoft-365-1-day-conference-is-today/ - Categories: GET IT - Tags: GET-IT, GET-IT: Advanced Microsoft 365 - Article Type: How To Petri's GET-IT: Advanced Microsoft 365 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft 365 content to help you understand the tools available, how to use them, and understanding best practices too. Throughout the day you will hear from Microsoft MVPs and industry experts about how to take advantage of Microsoft 365 at a technical level and dive deep into the features and functionality that will make your environment more secure and compliant. Our event is taking place today and you can join the conversation over on our conference hub page or watch the conference below. But to get the most out of the day, make sure to download the handouts.  --- ### Patch Microsoft Exchange Servers Now to Stop LockFile Ransomware - Published: 2021-08-23 - Modified: 2021-08-23 - URL: https://petri.com/patch-microsoft-exchange-servers-now-to-stop-lockfile-ransomware/ - Categories: Exchange Server, Security - Tags: Exchange Server, News, Ransomware - Article Type: News The LockFile ransomware group has been actively launching attacks against Microsoft Exchange Servers, exploiting three vulnerabilities that were patched by Microsoft in April and May this year. Known as the Exchange Server ProxyShell vulnerabilities, the LockFile group uses them, in conjunction with the Windows PetitPotam vulnerabilities that were partially patched in the round of updates on Patch Tuesday earlier this month, to hijack Windows domains. The three Microsoft Exchange Server vulnerabilities, which you can see listed below, were reported by Orange Tsai, a security researcher at Devcore. LockFile has been able to weaponize the flaws in Exchange because more technical details were recently released. CVE-2021-34473 - Pre-auth Path Confusion leads to ACL Bypass CVE-2021-34523 - Elevation of Privilege on Exchange PowerShell Backend CVE-2021-31207 - Post-auth Arbitrary-File-Write leads to RCE Exploiting unpatched Exchange Servers allows LockFile to drop web shells that are used to upload malicious code to the servers and then run it. When combined with the PetitPotam vulnerabilities that are still not fully patched by Microsoft, LockFile is able to take over Windows Active Directory domains and encrypt servers and other devices. It's then easy for the group to distribute ransomware across an entire network. While Microsoft hasn't completely closed the NTLM Relay flaws in PetitPotam, making sure your Exchange Servers are patched with the latest cumulative updates, which you can find on Microsoft's website here, is critical to stop LockFile getting a foothold on your network. Microsoft released a fix for PetitPotam, otherwise known as CVE-2021-36942. The fix... --- ### Get Ready for the 2021 AWS Summit Online– Americas - Published: 2021-08-23 - Modified: 2021-08-23 - URL: https://petri.com/get-ready-for-the-2021-aws-summit-online-americas/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, News - Article Type: News It’s time to get ready for the big online AWS event of the year – the AWS Summit Online for the Americas. The AWS Summit Online - Americas is a free three-day event. It features keynotes from industry leaders, dive deep educational sessions, interactive labs, and one on one chats with AWS experts. The AWS Summit Online – Americas is scheduled for August 24 – 26, 2021 and this year’s theme is to 'Rethink Possible' in business. There are 90+ sessions which range from introductory (100) to expert (400) level. These sessions are designed for multiple different business roles including: business-decision makers, IT professionals, solution architects, developers, engineers, and system administrators. The keynote speakers feature: Swami Sivasubramanian -- Vice President, Amazon Machine Learning and Amazon Web Services Tim Tomlinson -- Chief Product Officer, Blackboard Wendy Shepperd -- Global Vice President Engineering, New Relic Day one on Tuesday August 24th is titled Innovation Day and Amazon states that it is for leaders looking for ideas on how to use technology to capture new business opportunities and accelerate growth. The overall plan for the day is for industry leaders to share how they use technology to solve the big problems of today and in the future. Day two on Wednesday August 25th is the Summit Online and it consists mainly of sessions about AWS technologies. Amazon states that it is intended to educate you about AWS products and services and help you develop the skills needed to build, deploy, and operate your... --- ### B2B Hardware and Software Revenues through Channel Rose in First Half of 2021 - Published: 2021-08-20 - Modified: 2024-11-19 - URL: https://petri.com/b2b-hardware-and-software-revenues-through-channel-rose-in-first-half-of-2021/ - Categories: Channel - Tags: Channel - Article Type: News B2B Hardware and Software Revenues through Channel Rose in First Half of 2021 Sales of hardware and software through the channel rose 9% in the first six months of this year, compared with the same period in 2020, according to market research firm NPD Group. The latest metric, published this week, indicates that revenues have risen, which is not surprising considering the state of the pandemic during the first half of last year, when channel revenues increased only 5 percent, compared with the same period in 2019. Through June of this year, sales of security software rose 8 percent year-over-year, and represented 26 percent of all sales of software through the channel. Storage and data protection software also rise 8 percent. Hardware revenues grew 10 percent, driven by a 35 surge in notebook PC sales. COMPTIA’s International State of Channel 2021 Finds Cautious Optimism Despite signs that the worst of the pandemic is over, there is cautious optimism in some areas of ongoing concern. Factors such as the Delta variant of COVID and continuing supply chain issues, portend headwinds will linger. CompTIA, which this week published its International State of the Channel 2021 report, noted that four in 10 executives remain concerned that customers may not yet have the appetite to spend on new technology solutions. That’s especially the case among small businesses and companies in industries that have been hit hardest by the pandemic such as hospitality and retail. Despite the headwinds, respondents to COMPTIA’s latest survey are optimistic... --- ### How to Deploy Zero Trust Identity Security - Published: 2021-08-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-deploy-zero-trust-identity-security/ - Categories: Microsoft 365, Microsoft Azure, Security - Tags: Azure Active Directory Identity Protection, Microsoft 365, Zero Trust This is the second article in the Zero Trust Security in Microsoft 365 series. Here you will gain an understanding of the strategies to deploy Zero Trust Identity Security. Managing identity will always be at the forefront of this security model. Environments with proper identity policies are better placed to handle attempts at gaining access to their account credentials. The Zero Trust principles of verifying explicitly, providing least privileges to accounts and assuming breaches is applied to all types of access requests originating from user accounts, applications, devices and services. Establish your identity foundation with Azure AD Several environments still use on-premises solutions to decide whether an access request is approved or rejected. However, you must consider routing the role of policy decision-making to Azure AD, so that you can impose the Zero Trust principles of explicit verification, controlled privilege access, and assumption of breaches. This means placing Azure AD in the path of every access request. Azure AD Connect In order to achieve this, you must use the Azure AD Connect tool to sync on-premises users to Azure AD. This tool is capable of filtering users; hence, you can also exclude unwanted items from syncing to the cloud.   Authentication Methods Choosing the right authentication methods is a vital step. Microsoft provides you with the following methods: Cloud Authentication: Here the responsibility of authentication is borne by Azure AD. You can deploy this type of authentication using 2 options: Password Hash Synchronization - When coupled with seamless SSO, on-premise... --- ### Microsoft announces Price Increase for Microsoft and Office 365 - Published: 2021-08-19 - Modified: 2021-08-19 - URL: https://petri.com/microsoft-announces-price-increase-for-microsoft-and-office-365/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, News, Office 365 - Article Type: News Microsoft’s Office 365 suite is the crown jewel of Software-as-a-Service. The productivity suite was launched a decade ago and now has more than 300 million paid commercial seats and today, the company is announcing a price increase for many of the tiers of the service. During the past decade, Microsoft has improved the suite by adding new tools and features like Teams, Power Apps, Power Automate, Planner, Vision, Yammer and more without directly increasing the price of the service. But that is about to change with the new pricing for the services listed below. The updated pricing will go into effect on March 1st, 2022: Microsoft 365 Business Basic (from $5 to $6 per user) Microsoft 365 Business Premium (from $20 to $22) Office 365 E1 (from $8 to $10) Office 365 E3 (from $20 to $23) Office 365 E5 (from $35 to $38) Microsoft 365 E3 (from $32 to $36) The reason I stated above that this is the first direct price increase is that companies who were purchasing a large number of licenses were not paying list price for the software. It is quite common that Microsoft will discount software for bulk purchases and during renewals, that discount would be reduced with the result being a price increase of some customers. The new pricing provides Microsoft additional headroom to increase the “paper” discount while continuing to slowly raise the price on customers who are purchasing hundreds or thousands of licenses. The news isn’t all bad, though, Microsoft will... --- ### New Notes and Comments Functionality Rolling Out to Excel on the Web - Published: 2021-08-19 - Modified: 2024-09-04 - URL: https://petri.com/new-notes-and-comments-functionality-rolling-out-to-excel-on-the-web/ - Categories: Microsoft 365, Office - Tags: Excel, Microsoft, News, Office - Article Type: Overview On one of Microsoft's Office Insider blogs, a PM on the Excel team recently announced new functionality in the helpfully consistent evolution of Comments and Notes. Specifically, the debut of yellow sticky comments, now called Notes, in Excel for the web. There are also some new additions around threaded comments and the notes experience in Excel (desktop). Let's find out more. The transition to threaded comments and notes in Excel Microsoft released threaded comments to all flavors of Excel back in January of 2019. When they did so, they kept the original legacy comments (yellow sticky notes) in Windows and Mac and rename them notes. Because notes and comments share different purposes - this gave them the foundation to support both under varying user scenarios. But when they introduced threaded comments, they removed the ability to create notes in Excel for the web. So, confusingly, notes created in Excel desktop looked and worked differently in Excel for the web. Yes, an example would be gold right now, right? Notes on the web did not appear when hovering over the in-cell indicator. It required the user to hover and click an 'on-object UI', which would open the note in the Comments pane. On-object UI indicator Notes on the web did not appear as yellow sticky notes. Instead, they essentially became threaded comments. When you attempted to edit or reply to a note, you would have to first convert the note into a threaded comment. Oy. You could create new threaded comments on... --- ### Azure Sentinel Gets Fusion AI Early Ransomware Detection in Preview - Published: 2021-08-18 - Modified: 2024-09-04 - URL: https://petri.com/azure-sentinel-gets-fusion-ai-early-ransomware-detection-in-preview/ - Categories: Security - Tags: Azure Sentinel, cloud computing, Ransomware - Article Type: News Earlier this month, the Azure Sentinel and Microsoft Threat Intelligence Center (MSTIC) teams announced the public availability of 'Fusion detection for ransomware'. Fusion is designed to automatically correlate security alerts that could be related to ransomware. More precisely, Microsoft said the Fusion machine learning model collates alerts detected in a specific timeframe during defense evasion and execution stages of a ransomware attack. Fusion machine learning model makes life easier for security analysts using Azure Sentinel Once collected, the events are surfaced as a high severity incident, called "Multiple alerts possibly related to Ransomware activity detected", in the Azure Sentinel workspace. Automating the detection and collection of such events helps security analysts quickly identify potential attacks and act to stop them. Fusion gives analysts a complete picture of the detected activities on a device, and it collects signals from several Microsoft products, and from the network and cloud. Microsoft says that Fusion supports the following data connectors: Azure Defender (Azure Security Center) Microsoft Defender for Endpoint Microsoft Defender for Identity Microsoft Cloud App Security Azure Sentinel scheduled analytics rules Azure Sentinel Gets Fusion AI Early Ransomware Detection in Preview (Image Credit: Microsoft) Ransomware is the number one security threat According to a report released by PurpleSec, ransomware attacks cost organizations 23 times more in 2020 compared to 2019. And ransomware cost a total of $20 billion in 2020, with downtime caused by ransomware increasing more than 200%. Prevention is always better than cure, but with the rise of ransomware as a... --- ### Microsoft's Investment in Rubrik is a Shakeup for the Industry - Published: 2021-08-17 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-investment-in-rubrik-is-a-shakeup-for-the-industry/ - Categories: Channel - Tags: Microsoft, News, Rubrik - Article Type: News Microsoft and Rubrik are announcing today an agreement that will likely shakeup the industry. Rubrik, a company that provides data protection, ransomware, and backup solution has entered into an agreement with the Redmond tech giant that involves equity investment. The reason that this is a significant arrangement is that with its cloud, Microsoft uses a "shared responsibility" model for data and availability. Meaning, Microsoft takes responsibility for the services being online and available, but it is up to the tenant to secure, backup, and maintain sovereignty over the content store in Microsoft's cloud. With this agreement and investment in Rubrik, Microsoft is taking a significant step forward in providing direct solutions that target the content side of the cloud business. This means that the company now has a preferred solution to push its customers towards for cyber resilience and if Rubrik grows in value, this is a win for Microsoft. The backup and recovery industry is a big marketplace and there are companies like Veeam and many others who have grown to billion-dollar operations as Microsoft has typically avoided playing in these waters. With their investment in Rubrik, the narrative is starting to change and it could signal another area of growth for Mirosoft. In addition to the pure backup and recovery markets, backing up and recovering Microsoft 365 data is another sizeable business segment that is quickly growing. Along with Veeam, we see companies like AvePoint who are building tools that allow for granular recovery and retention of data... --- ### Upgrading to Windows Server 2022 Active Directory - Published: 2021-08-17 - Modified: 2024-09-05 - URL: https://petri.com/windows-server-2022-series-upgrading-dc-from-2016-to-2022/ - Categories: Windows Server, Windows Server 2022 - Tags: Microsoft, Server, Windows - Article Type: Overview I'm kicking off my series to upgrade my Hyper-V lab running Active Directory Domain Services. I'll be performing in-place upgrades from Windows Server 2016/2019 to Windows Server 2022! I'll also have some posts on updating the other member servers, file servers, Server Core, Windows Admin Center servers, etc. to 2022. Now, if you think only a daredevil like Evil Knievel (or someone with a death wish) would try something like this, you may be right. What am I doing upgrading domain controllers to a brand-new operating system version (that's essentially not generally available at the time of this writing)? Why are you doing an in-place upgrade of a domain controller? For that matter, why the hell are you performing an in-place upgrade of a Windows server, period? Good points. However, I put it to you that those thoughts are traditional. Back in the day, no server admin in their right mind would have done an in-place upgrade of Windows NT Server 4. 0 to Windows 2000 Server. It just didn't happen. MOSTLY because it was infamously unreliable. The chances of Windows Server being OK, much less all the configuration, services, and applications working post-upgrade were near null. :) And am I suggesting or even recommending following these exact procedures on your production environment with physical servers? Probably not. The point of this post is to show you what can be done, how to do it, and to incorporate this knowledge into your plans at your organization to make things a... --- ### Microsoft Looks to Improve Azure Active Directory Compliance and Security Breach Prevention - Published: 2021-08-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquires-cloudknox-to-improve-azure-active-directory-compliance-and-security-breach-prevention/ - Categories: Cloud Computing - Tags: cloud computing - Article Type: News Microsoft recently announced that it acquired CloudKnox Security, a security management solution for businesses that use more than one cloud service provider. CloudKnox says that its solutions help IT departments "granular visibility, actionable insights, and control of machine and human identities with excessive high-risk privileges. " Joy Chik, who is corporate vice president for Microsoft Identity, says that organizations don't have tools to monitor and assess multicloud permissions. CloudKnox started life as an activity-based authorization product that tracks identity information across Amazon Web Services (AWS), Google Cloud Platform, Microsoft Azure, and VMware vSphere. Today, the CloudKnox Cloud Security Platform consists of two components: Sentry and FortSentry. Sentry uses a Linux virtual machine installed in the customer's environment. One Sentry appliance is required per cloud platform. Sentry collects privilege and activity information from each cloud platform and then sends the data to FortSentry. Microsoft Acquires CloudKnox to Improve Azure Active Directory Compliance and Security Breach Prevention (Image Credit: CloudKnox) CloudKnox claims that installation usually takes less than 30 minutes and once installed, data is pulled immediately from a cloud platform to the Sentry appliance. It then takes around 3 to 4 hours to collect three months' data, providing a "three-dimensional view of all your machine and human identities, their actions (privileges) and the resources they have accessed at which point you can begin to protect your infrastructure from insider threats. " Least Privilege for Identity and Access Management CloudKnox helps IT departments apply the principle of least privilege to Identity and Access Management... --- ### Microsoft Extends its Services Partnership with EY - Published: 2021-08-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-extends-its-services-partnership-with-ey/ - Categories: Channel - Tags: Channel - Article Type: News Microsoft Extends its Services Partnership with EY Less than a year after the formation of the EY Microsoft Services Group, both companies are extending the partnership for five years. The group created by the accounting, business, and technology services provider this week said they are boosting their collaboration to build new solutions and platforms that will enable their respective enterprise clients to modernize their back-office IT operations. Microsoft is EY’s largest alliance partner. According to EY, 80 percent of its clients’ solutions are platformed on Microsoft Azure. Already, 1,600 businesses run EY’s new Azure-hosed global tax platform, and the goal is to scale that so that 20,000 clients are on it during the next five years, according to a videorecorded explanation by EY chairman and CEO Carmine DiSibio. The EY Microsoft Services Group will also accelerate its effort on helping clients digitize their supply chains. And, EY wants to expand its Canvas audit methodology tool, which also runs in Azure, with plans to embed compliance and risk capabilities. ServiceNow Taps Deloitte’s Erica Volini to Accelerate Channel Efforts ServiceNow is signaling that it plans to boost its channel and go-to-market efforts with the hiring of Erica Volini. Set to join later this month, Volini is a veteran of Deloitte Consulting, currently a ServiceNow elite partner. Volini will take on the newly created position, SVP of global alliances & channel ecosystem (ACE) go-to-market (GTM) operations. “ServiceNow has heard from customers that they want us to continue to lean into our partner relationships... --- ### Amazon Retires EC2-Classic - Published: 2021-08-13 - Modified: 2021-08-13 - URL: https://petri.com/amazon-retires-ec2-classic/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS EC2 - Article Type: News It seems hard to believe but Amazon Web Services EC2 was first launched back in 2006. It was Amazon’s third major cloud service behind their Simple Storage Service (S3) and Simple Queue Service (SQS).   I think it’s fair to say that Amazon EC2 was the driving force behind many businesses’ initial move toward Infrastructure-as-a-Service (IaaS). This July 28th 2021, Amazon announced they are officially retiring EC2-Classic. Fortunately, this doesn’t mean that all of your Amazon EC2 instances will stop running. Amazon’s announcement was specifically referring to EC2-Classic. EC2-Classic is an older style of the virtual machine where instances run in a single, flat network that is shared with other customers. EC2-Classic required public IP addresses or tunneling to communicate with other AWS resources in a Virtual Private Cloud (VPC). EC2-Classic was first available with original release of Amazon EC2. However, it has not been supported for accounts that were created after 2013. All AWS accounts created after December 4, 2013 are VPC-only, unless EC2-Classic was enabled as a result of a support request. Today most EC2 instances are VPC. Retirement Schedule In order to minimize the impact on existing customers, EC2-Classic is being phased out over time. Amazon has stated there are two main targets: October 30, 2021 -- AWS will disable EC2-Classic in regions for AWS accounts that have no active EC2-Classic resources in the region. They will also stop selling 1-year and 3-year Reserved Instances for EC2-Classic. August 15, 2022 -- All EC2-Classic resources will no longer be... --- ### Microsoft Rolls out new Windows 11 Build with Updated In-Box Apps - Published: 2021-08-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-rolls-out-new-windows-11-build-with-updated-in-box-apps/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, Windows 11 - Article Type: News Microsoft has released a new build of Windows 11 and with this release, the company is pushing out updates for many of the in-box apps. Updated with this release are the Snipping Tool, Calculator, Mail, and Calendar. There are actually two releases today, one for the beta channel and the other for the dev channel. If you are on the beta ring, you will now see the new Teams app and if you are on the dev channel, you will see the updated apps below. The snipping tool now has a new visual design, updated settings pane, honors your Windows theme (light or dark), and has new editing tools as well. Calculator now matches the theme of Windows 11 and also has been re-written in C#. If you would like to help build calculator, there is a repo on GitHub. Mail and Calendar have also been slightly refreshed and now match the style of Windows 11. You can download the update now if you are part of the Windows Insider program. --- ### Patch Tuesday August 2021 – Microsoft Bolsters PrintNightmare and PetitPotam Protections - Published: 2021-08-12 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-august-2021-microsoft-bolsters-printnightmare-and-petitpotam-protections/ - Categories: Security - Tags: Patch Tuesday, Windows Update - Article Type: News August sees Microsoft release the smallest number of security fixes for its products so far this year. In fact, it's the smallest batch since December 2019. In addition to new bug fixes for the Windows Print Spooler service and NTLM, there are also changes in the default Point and Print driver installation behavior. Recurring PrintNightmare? Following on from PrintNightmare in July, Microsoft issued a patch for a remote code execution vulnerability in the Windows Print Spooler. According to Trend Micro's Dustin Childs, who works on the Zero Day Initiative, it isn't clear whether this bug is a variant of PrintNightmare or a unique vulnerability that can be exploited in its own right. "There are quite a few print spooler bugs to keep track of. Either way, attackers can use this to execute code on affected systems. Microsoft does state low privileges are required, so that should put this in the non-wormable category, but you should still prioritize testing and deployment of this Critical-rated bug. " Microsoft says that this month's patch should address all publicly known security issues with the Windows Print Spooler service. New Point and Print default driver installation behavior Furthermore, Microsoft released a change in this month's quality update for Windows that will require users to have administrative privileges to install print drivers, altering the default Point and Print driver installation behavior. Microsoft says that non-administrative users can no longer install new printers using drivers on remote servers or update existing print drivers from remote servers without elevating... --- ### Default Keys for Windows Server 2019 and Windows 10 Deployment - Published: 2021-08-11 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-windows-10-product-keys/ - Categories: Windows 10, Windows Server - Tags: Windows 10, Windows Server 2016 - Article Type: Overview In Windows 10, Windows Server 2016, and later versions of Windows, you can perform a full installation of the operating system without needing to manually enter a product key as was the case in versions of Windows before Vista and Windows Server 2008. This makes it much easier to install Windows if you don't have a product key to hand. You can install the OS, login, and start working without a product key. But you won't be able to activate the OS, locking you out of some features, like the ability to personalize your desktop. Installing Windows without a product key has its origins in Windows Server 2008 and Windows Vista, where you were politely asked to enter a key, but you had the option to ignore the request and continue with the installation if you 'promised' to enter a key after setup. Windows Server 2008 R2 and Windows 7 went a step further, where there was no request to enter a key during the setup process. Where are the keys located? But Windows can't be installed without a product key, so where does setup grab the keys from if you don't provide a key? And how does setup know what key to use? The answer is simple. Setup knows of all the keys that can be used, and it takes them from a simple text answer file, by default, during the installation process. You can find the file, called PRODUCT. INI, in the SOURCES folder of the Windows installation media... . --- ### Microsoft Acquires Peer5 to Improve Teams Video Functionality - Published: 2021-08-10 - Modified: 2021-08-10 - URL: https://petri.com/microsoft-acquires-peer5-to-improve-teams-video-functionality/ - Categories: Channel - Tags: Microsoft, News, Teams - Article Type: News If you based your expectations on the month of July about what types of companies Microsoft was looking to acquire, you could be forgiven if you believed they were only hunting for security-focused entities. After all, Microsoft did buy two different firms in recent weeks but today they are announcing that they have acquired another company but this time the focus is on Teams. Microsoft has acquired Peer5, a company that provides WebRTC-based eCDN solution that runs in the browser and helps optimize bandwidth usage and impacts to the line of business apps running on the same network. With hybrid work increasing, Peer5’s tech will help keep your network running smoothly as bandwidth consumption inside the corporate firewall increases during the next year as employees partially return to the office. Importantly, Microsoft says that it will continue to support CDN solutions from Microsoft certified partners in addition to Peer5 eCDN; and current Peer5 customers will be able to continue using Peer5 services. That being said, companies offering these types of solutions are likely not sleeping as easily after this announcement. As the world slowly returns to a hybrid workforce, Microsoft is investing heavily to make sure that Teams, which is now used by 250 million users on a monthly basis, will operate as smoothly as it does today but when users are concentrated on a single network.   --- ### Do More with Teams Meeting Recordings in Microsoft 365 - Published: 2021-08-10 - Modified: 2024-11-19 - URL: https://petri.com/do-more-with-teams-meeting-recordings-in-microsoft-365/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, News, Teams When Microsoft first announced Teams Meeting Recordings, they were stored in Microsoft Stream, a new SharePoint-based website (stream. office. com). Last year, they made a major announcement and initiated a phased, methodical transition from Stream to OneDrive and SharePoint as the storage location. This process is nearly complete, and the final stages are starting soon. Most users are now saving their Teams meeting recordings on OneDrive and SharePoint.   All new recordings will soon be saved there, with an incremental start planned for August 16, 2021. Let's read about all the benefits coming to you and your users. Teams Meeting Recordings in Microsoft 365   Major updates to transcript coverage and download controlling As Tron and Flynn would say, it's all for the users. ;) Well, Microsoft is listening. After they gathered feedback from their Microsoft 365 customers, the following product updates are coming soon: Generating Teams live transcription for all meetings to ensure closed captions are available during playback in Microsoft 365: Available today: Teams Live Transcription with speaker attribution has been expanded to all Office and Microsoft 365 license types. (This is nice) Rolling out by August: Live transcription will always be generated when a user clicks 'Start recording' on the desktop client. Rolling out by August: Live transcription will be available across all meeting types, including channel and ad-hoc (Chat) meetings. Rolling out by August: Live transcription and live captions will be available for 15 additional spoken languages. Downloading and editing a transcript file: Available today: Users can download the transcript... --- ### How to Enable Remote Desktop in Windows Server 2022 for Remote Administration - Published: 2021-08-09 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-remote-desktop-in-windows-server-2022-for-remote-administration/ - Categories: Windows Server, Windows Server 2022 - Tags: Remote Desktop, Windows Server 2022 - Article Type: How To Remote Desktop Services (RDS) is a feature in Windows Server 2022 that lets multiple users connect simultaneously and access applications and a desktop remotely. But Remote Desktop can also be used by IT for remote administration. It's important to understand that if you want to connect to Windows Server 2022 to remotely manage the server, you don't need to install the RDS server role. Some earlier versions of Windows Server required you to install RDS, previously called Terminal Services, in a special mode for remote administration. But that is no longer the case. Enable remote access using Server Manager To enable remote access to Windows Server 2022 using Server Manager, follow the steps below. Log in to Windows Server 2022 using a local administrator account. Open Server Manager using the tile on the Start menu. In the list of options on the left of Server Manager, click Local Server. Information about your server will appear on the right of Server Manager. In the Properties section, click Disabled to the right of Remote Desktop. How to Enable Remote Desktop in Windows Server 2022 for Remote Administration (Image Credit: Russell Smith) In the System Properties dialog, check Allow remote connections to this computer. Now click OK. How to Enable Remote Desktop in Windows Server 2022 for Remote Administration (Image Credit: Russell Smith) The default configuration is to let the local administrator account, or domain administrator on a domain controller, access Windows Server 2022 remotely. You can add additional users and groups by... --- ### AWS Picks Up Share, Aims to Expand Microsoft Workload Migrations - Published: 2021-08-06 - Modified: 2024-11-19 - URL: https://petri.com/aws-picks-up-share-aims-to-expand-microsoft-workload-migrations/ - Categories: Channel - Tags: Channel - Article Type: News AWS Picks Up Share, Aims to Expand Microsoft Workload Migrations While Microsoft and Google have eaten into AWS share of the worldwide cloud infrastructure services market in recent quarters, Amazon bounced back in Q2. According to a report by Synergy Research Group, AWS now has a 33% of the cloud services market, based on the 10% growth it posted this quarter over Q1 2021. Microsoft accounted for 20% of spending, while Google’s share was 10%. Overall, spending on cloud infrastructure services of $42 billion increased by $2. 7 billion over the prior quarter. Year-over-year, spending increased $11. 7 billion, or 39%. Meanwhile, Ashish Dhawan last week said he is now the managing director and head of global partner sales for enterprise workloads at AWS. Dhawan steps into the new roll from AWS India. “Our endeavor will be to build a partner channel with deep expertise in migrating and modernizing Microsoft and Enterprise Workloads on AWS,” Dhawan announced on LinkedIn. Midwest MSP NetGain Acquires TruTechnology to Expand into Southeast NetGain Technologies, a managed services provider (MSP) based in Lexington, Ky, has expanded its geographic coverage with the acquisition of Jacksonville, Fla. -based TruTechnology. NetGain was looking to expand into Florida, CEO Tim Burke stated in this week’s announcement. “I was incredibly impressed with their commitment to excellent client service and their process-driven approach to IT,” Burke noted. TruTechnology was founded in 2002 as a voice, data and video services systems integrator, but became among the first to offer flat-fee managed services in 2005. CDW... --- ### Microsoft to Sunset OneNote for Windows 10, OneNote is the Future - Published: 2021-08-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-sunset-onenote-for-windows-10-onenote-is-the-future/ - Categories: Microsoft 365 - Tags: Microsoft, News, OneNote - Article Type: News One of the ironies of Microsoft’s OneNote app is that on Windows, it’s not one app, but there are two options. But today, Microsoft announced that they are going to unify the apps into one experience and also update the UI as well. On the announcement page, Microsoft provides guidance on how the transition will occur, and based on their language, it looks like they are combining the app but in reality, it looks like they may be giving priority to the Office OneNote app instead of the store app. I say this because they state “advances in Windows and Office” and I interpret this to mean Microsoft’s relaxing of the rules to submit apps to the Microsoft store means that they can drop the UWP iteration. Now that nearly any type of application can be distributed through the store, there is no reason to keep the standalone UWP version in the store when the Office version of OneNote can fill this role. First (tiny) look at the updated UI coming to OneNote Microsoft provides the following guidance on the update process: The OneNote app will get new features and key existing features currently unique to OneNote for Windows 10. OneNote for Windows 10 users will get an in-app invitation to update to the OneNote app. We anticipate invitations to start in the second half of 2022. We will have a future announcement dedicated to IT pros that will detail the available controls over the timing... --- ### Give your Emails, Calendar, Tasks a boost with My Day in Outlook Web - Published: 2021-08-05 - Modified: 2024-09-04 - URL: https://petri.com/give-your-emails-calendar-tasks-a-boost-with-my-day-in-outlook-web/ - Categories: Microsoft 365 - Tags: Microsoft 365, Outlook - Article Type: News Ever feel the pain of switching between your Inbox and Calendar, maybe looking up an appointment, or even wanting to create one based on an email? Want to create a task right from your Inbox? Microsoft is saying 'Your wish is my command, oh temporarily King of the Hill. ' ;) With this new feature rolling out broadly, the 'My Day' pane in Outlook on the Web gives you a wonderful sidebar/task pane view of both your Calendar and synced To Dos, right in your Inbox. My Day   Context switching can, well, be a pain. You're losing productivity, efficiency, time, flow, every time you hit Alt-Tab or click on another window to view details from another tool. Now, you'll get a side-by-side view of mail, calendar, and tasks, all in the same window. One of the coolest features, IMHO, is the ability to drag an email to initiate the creation of a task, or an event on your calendar. Tasks created this way will get added to your default Tasks list in To Do. You can even click on My Day, click the To Do tab on top, and drag a task to your calendar. A super simple and intuitive way to block off time on your Calendar for getting that job done. Plus, you have some options for creating tasks. If you don't want to fill up the Notes section of your task with a large-threaded email, just select some of the text, and click on the little To... --- ### What’s New with Azure – July 2021 Edition - Published: 2021-08-05 - Modified: 2021-08-05 - URL: https://petri.com/whats-new-with-azure-july-2021-edition/ - Categories: Microsoft Azure - Tags: App Service Environment v3, Application Gateway, ASE, Azure, Azure App Services, Azure Bastion, Azure Cost Management, Azure Firewall, Azure Firewall Premium, Azure Front Door, Azure Monitor, Azure Policy, Azure PowerShell, Azure Security Center, Azure Shared Disks, Azure Site Recovery, Azure Virtual Desktop, Azure Virtual Machines, Azure VMware Solution, Azure Web App, Blob Storage, CMK, Custom Managed Keys, ExpressRoute, Grafana, IDPS, Immutable Storage, Log Analytics, Microsoft Azure, Microsoft Excel, NAT, OWASP, OWASP 3.2, Private Link, SRM, TLS Inspection, Traffic Analytics, URL Filtering, vmware site recovery manager, VPN, Web Application Firewall, Web Categories, Windows 365 - Article Type: Overview July – a month that many take a vacation in, and it’s the start of the commercial year for Microsoft. That year kicks off with Microsoft Inspire, a conference for the partner community to learn about what Microsoft is launching and how Microsoft wants their partners to sell to customers. Most of the content is the commercial stuff that bores many of us. But this year had one interesting announcement that media insiders have been expecting for around a year. Cloud PC Announced as Windows 365 Yes! At last! Your Windows license becomes a subscription – not! Rumors have been flying around for quite some time that Microsoft was building a new “managed desktop” on top of Azure Virtual Desktop. In June, Microsoft rebranded Windows Virtual Desktop as Azure Virtual Desktop – that was the first step in the launch. At Inspire, Microsoft revealed a tiny  bit of information about Windows 365, a service that was internally called Cloud PC – Azure Resource Manager (the API and infrastructure-as-code language) still uses "Cloud PC" in the Azure Virtual Desktop resources to designate Cloud PC resource deployments. We’ll put some conspiracy-oriented minds at ease: Windows is not a subscription-only service – it’s been a  subscription option for enterprises for many years (at least since the early 2000s) but the buy-the-rights-upfront option is still there and continues. Windows 365 (they could have picked a better name ... like Cloud PC) is a service where you can subscribe to a Windows virtual machine running... --- ### Microsoft Drops Semi-Annual Channel Releases Starting with Windows Server 2022 - Published: 2021-08-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-drops-semi-annual-channel-releases-starting-with-windows-server-2022/ - Categories: Windows Server 2022 - Tags: Windows Server 2022 - Article Type: News Microsoft has announced that it is dropping Semi-Annual Channel (SAC) releases for Windows Server. Starting with Windows Server 2022 there will be only one release on the Long-Term Servicing Channel (LTSC). It will get 10 years' support (five years mainstream, and five years extended). Microsoft says that SAC releases in previous versions of Windows Server were for 'customers that needed access to cutting edge container and microservices features'. Azure Stack HCI customers will continue to get access to that innovation. While I don't have any data on it, there seems to be a consensus in the wider tech community that containers on Windows Server never really took off. I suspect that beyond containerization of legacy apps, most new server apps are developed primarily for Linux. But despite Linux taking the DevOps crown, Windows Server is still a key infrastructure technology for many organizations. Windows Server LTSC releases are still planned to happen every 2-3 years. And unlike SAC releases, the LTSC is designed to provide functional stability with the option to install either Server Core or the Desktop Experience. Microsoft will continue to support the following Windows Server SAC releases: Version 20H2, until 05/10/2022 Version 2004, until 12/14/2021 Version 1909, until 05/11/2021 All other SAC server releases are already out of support. And SAC releases aren't covered by the extended support that Microsoft offers to LTSC customers. For more details, check out Microsoft's blog post here. Windows Server 2022 is coming to a server near you in late 2021 Windows... --- ### What’s New with Power Platform – July 2021 - Published: 2021-08-03 - Modified: 2021-08-03 - URL: https://petri.com/whats-new-with-power-platform-july-2021/ - Categories: Power Platform, PowerApps - Tags: Power Platform - Article Type: News I am headed out on a family vacation so I plan to keep this one short and sweet but did not want to miss the opportunity to tell you about some of the great things happening across the Power Platform. There is a little bit for everyone. Power Platform release wave 2 plan: Ride the wave! Microsoft has released their wave 2 plan for the Power Platform and for Dynamics 365. Starting August 2, certain Power Apps preview features will be available for early access. These early access features are mainly focused on model-driven apps. These features are expected to be generally available in October. Polymorphic Multi-table lookups, also called polymorphic lookups, are now available in Dataverse (preview). This function will allow you to look up two different tables simultaneously without the need for multiple lookups. This feature is expected to perform better in model-driven apps, although it should still work in canvas apps. W365 Microsoft has released their new cloud pc, Windows 365. Windows 365 will allow you to connect all your devices and Microsoft programs in the cloud. Microsoft hopes that this will improve the lives of hybrid workers, that is, workers who are neither entirely remote, nor entirely in-person. This feature is now widely available. Power BI Makeover Power BI users do not worry, the Power Platform release is not the only place where updates are being rolled out. Power BI got a makeover in the form of a new update. This update includes the long-awaited Power... --- ### How to Achieve World-Class Windows Patching Like a Pro - Published: 2021-08-03 - Modified: 2024-11-19 - URL: https://petri.com/how-to-achieve-world-class-windows-patching-like-a-pro/ - Categories: Windows 10, Windows 11, Windows 365, Windows 7, Windows 8, Windows Client OS - Article Type: How To One of the most difficult and rewarding topics on an IT Pro's plate - Patching. If you're an IT Pro responsible for patch management in your organization, are you following the right approach to achieve world-renowned status on doing it effectively? Let's take a look at some methods and procedures to get you that next award and recognition. On the second Tuesday of the month - "Patch Tuesday" - Microsoft releases the latest security update rollups for all Windows clients and servers. This is their "B" release (week 2). Over the last few years, Microsoft has heard from you IT Pros and other chief information security officers that you've placed greater attention on patching and take a more liberal stance on getting devices patched and secured ASAP. The is explained by the fact that the adoption of formal patching policies is on the rise. This post will also describe how to dramatically enhance your company's patching policies with the least impact on your users. The key - a 'cloud cadence' mindset. Hold that thought for a moment. Fundamentally, there are two key transformative changes you can make in your organization that will boost the efficiency of update management: Streamline your review and approval process. This is the 'cloud cadence' mindset. This is crucial to how fast your devices get patched and compliant. The key value-add here is getting your devices protected BEFORE exploits appear in the wild and on your users' devices! Proactive vs. reactive. Tune the efficiency of... --- ### Windows 365 Is Now Generally Available, Pricing Revealed - Published: 2021-08-02 - Modified: 2024-09-04 - URL: https://petri.com/windows-365-is-now-generally-available-pricing-revealed/ - Categories: Windows 10, Windows 11, Windows 365, Windows Client OS - Tags: Microsoft, News, Windows, Windows 365 - Article Type: News Right on target, Microsoft has announced that Windows 365 is generally available. This means that the service, while only announced a couple of weeks back, is ready for business operations for small companies all the way up to enterprise customers. But up until today, we did not know the pricing for the service. Now that anyone can sign up for the service, Microsoft has pulled back the curtains on pricing with the entry-level tier starting at $20 a month and it jumps all the way up to $162 for a high-end configuration. For $20 a month, Business and Enterprise users will gain access to 1vCPU, 2GB of RAM, and 64 GB of storage. At the top end of the spectrum, you can outfit a virtual desktop with 8 vCPU, 32 GB of RAM, and 512 GB of storage. You can see a full list of the pricing breakdown below (or view it here) but keep in mind that business customers will have a cheaper option if they receive discounts from the Windows Hybrid Benefit – meaning if you are using Windows 10 Pro currently. Enterprise customers do not have to worry about the hybrid benefit as that discount is already applied. Windows 365 is a new service from Microsoft that brings Windows 10 and Windows 11 to the cloud and allows anyone to access their “desktop” from any type of device as long as they have a connection to the Internet. Microsoft is pitching this new service as an OS... --- ### What’s New with Windows – July 2021 Edition - Published: 2021-08-02 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-july-2021-edition/ - Categories: Windows 11 - Tags: Microsoft Edge, Windows 10, Windows 11, Windows Server 2022 - Article Type: News July and August are usually a quiet time at Microsoft. But this year, there's a little more buzz than usual as Microsoft continues to prepare Windows 11 for a fall release. Microsoft Store in Windows 11 will not automatically update all Win32 apps In a support document for developers, Microsoft revealed that Win32 apps using the legacy Microsoft Installer (MSI) technology, will not be able to automatically update when distributed through the new Microsoft Store. And there's been some outrage about it. Microsoft says that Win32 apps will need to use its new MSIX installer technology if developers want automatic update capability. Everything You Need to Know About Windows – July 2021 Edition (Image Credit: Microsoft) And while it might be confusing for users, it must be this way; at least initially. The first goal is to get developers offering as many apps as possible through the Store. It must become a one-stop shop for users, where they know they can get the apps they need. If Microsoft limits the number of apps from the get-go, the Store isn't going to take off. As users start to rely on the Store and it becomes the go-to location for app downloads, Microsoft can give developers a couple of years to move their apps to MSIX, before changing Store policy to restrict use of MSI. Microsoft announces end of the line for Windows Server Semi-Annual Channel releases Microsoft revealed an updated servicing model for Windows Server this month. Starting with the release... --- ### Acronis Adds File Sync and Sharing Tool for MSPs - Published: 2021-07-30 - Modified: 2021-07-30 - URL: https://petri.com/acronis-adds-file-sync-and-sharing-tool-for-msps/ - Categories: Channel - Tags: Channel - Article Type: News Kaseya Denies Paying Ransom for Key that Unlocks Data Encrypted by REvil Attack Plagued by ransomware attacks that exploited zero-day vulnerabilities in Kaseya’s VSA remote monitoring and management (RMM) system used by managed services providers (MSPs), the company now has a tool to decrypt data locked by the attackers known as REvil. Kaseya’s Incident Response team, working with Emisoft partners issued a decryptor for REvil ransomware victims last weekend. “The decryption tool has proven 100 percent effective at decrypting files that were fully encrypted in the attack,” according to a Kaseya update. Kaseya also denied reports that it paid ransom directly or indirectly to obtain the decryptor. Also, Kaseya released a Quick Fix (QFE) to patch 9. 5. 7b (9. 5. 7. 3015) to VSA on-premises customers. Unlike a full patch, Kaseya said that QFE is a simple script for the server. Noting that QFE is not a security patch, it resolves issues with Kaseya Antivirus & Antimalware, third-party integration modules and problems importing files using the VSA system tab. Kaseya said it has updated its SaaS instances with the QFE. Acronis Adds File Sync and Sharing Tool for MSPs Acronis has enhanced its file-sharing solution for managed services providers (MSPs). The provider of backup, imaging and cybersecurity software on Thursday said that it is layering extended data security and synchronization to the basic file-sharing capabilities provided in the Acronis Cyber Protect Cloud offering. According to Acronis, demand for file synch and sharing services has increased from the outset of the COVID-19 pandemic and throughout... --- ### Amazon ECS io2 Block Express Volumes is a SAN in Cloud - Published: 2021-07-30 - Modified: 2021-07-30 - URL: https://petri.com/amazon-ecs-io2-block-express-volumes-provides-a-san-in-cloud/ - Categories: Amazon Web Services, Backup & Storage, Cloud Computing - Tags: Amazon ECS, cloud computing, SAN - Article Type: News On July 19th 2021, Amazon announced the general availability of their new Amazon ECS io2 Block Express volumes service.   Amazon io2 volumes have been available since 2020 and they are essentially provisioned SSDs designed to deliver 99. 999% durability. Amazon ECS io2 Block Express are io2 volumes running on the EBS Block Express architecture. ECS io2 Block Express volumes support io2 features like Multi-Attach and Elastic Volumes. ECS io2 Block Express volumes can deliver up to 256,000 IOPS, 4000 MB/s of throughput, and can have a storage capacity of 64 TiB. Amazon ECS io2 Block Express Volumes are designed to be a SAN in the cloud. Businesses have traditionally used Storage Area Networks (SANs) for delivering local high-performance and high-durability block storage. However, SANs are expensive. In addition, they have a reputation for being difficult to manage – often requiring a dedicated storage administrator. Amazon’s ECS io2 Block Express volumes provide SAN-like performance and availability using a cloud-based durable block store. ECS io2 Block Express volumes are currently available for Amazon EC2 R5b instances which are intended to run business-critical and storage-intensive applications. The ECS io2 Block Express volumes and R5b instance combination are designed to support the largest, most I/O intensive, and mission-critical workloads like Oracle, SAP HANA, Microsoft SQL Server, and SAS Analytics. Additional instance types are expected to be supported in the future. Customers can get started with ECS io2 Block Express volumes using the AWS Management Console, the AWS CLI, or the AWS SDKs. ECS io2 Block Express... --- ### How to Enable Telnet Client in Windows 11 and Server 2022 - Published: 2021-07-29 - Modified: 2024-09-04 - URL: https://petri.com/enable-telnet-client-in-windows-11-and-server-2022/ - Categories: Windows 11 - Tags: Telnet, Windows 11, Windows Server 2022 - Article Type: How To Telnet is a client/server protocol used for accessing remote servers. As the name might suggest, Telnet was originally used on terminals that only required a keyboard because everything on the screen was displayed in text, usually from a mainframe computer. The terminal used Telnet to remotely log in to a mainframe server or other computer. But in recent years, Telnet has fallen out of favor because it doesn't provide a secure way to communicate with remote servers. Nevertheless, Telnet still has its uses today. For example, it can be useful for checking connectivity to a remote server. You can use a Telnet client to try and access a port on a remote server. For example, if you are troubleshooting connectivity issues. Or you can use Telnet to enter some commands and run them on a remote server and the output will be returned in the Telnet client. You can use Telnet for accessing remote servers if using strong authentication and encryption over the network isn't critical. One example is connecting to an SMTP server. You might issue some commands to a remote SMTP server to test sending email. The commands below start the Telnet client and then create a connection on SMTP port 25 to a mail server. Then a message is sent before closing the connection. telnet set localecho open mail. contoso. com 25 ehlo contoso. com mail from: rcpt to: notify=success,failure data subject: test email This is a test for Argo . quit And while Telnet has never... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (2021) - Published: 2021-07-28 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-17/ - Categories: Microsoft - Tags: News - Article Type: News Because Microsoft announced its quarterly and annual earnings this week, this edition of Short Takes looks exclusively at the results across all of the software giant’s major business units. Because Microsoft announced its quarterly and annual earnings this week, this edition of Short Takes looks exclusively at the results across all of the software giant’s major business units. Note: On Tuesday, Microsoft reported a net income of $16. 5 billion on revenues of $46. 2 billion for the quarter ending June 30. The firm also revealed that its total fiscal year 2021 net income was $61. 3 billion on revenues of $168. 1 billion. Most (but not all) of the following blurbs are based on new information that came out of Microsoft’s post-earnings conference call last night. --Paul The rich get richer One of the many stories of the COVID-19 pandemic is how Big Tech firms---the biggest, most powerful, and least-regulated businesses on earth---have gotten even richer while the rest of the planet was ablaze with death and misery. And Microsoft absolutely benefited from the pandemic in ways that many would describe as unfair. But I’ll just leave it with this one mile-high quote that tells the story: Annual revenue “continued to increase 40 percent year-over-year,” Microsoft reported. Continued? This business is over 40 years, and 40 percent YOY growth should not even be possible. Microsoft CEO Satya Nadella even claimed that the pandemic-era gains are “durable. ” We’ll see. “Record quarter by Apple, Alphabet, Microsoft gives way to growth skepticism” You don’t believe the growth is real? Business unit breakdown Intelligent Cloud was Microsoft’s biggest business in the quarter with revenues of $17. 4 billion, a year-over-year (YOY) increase of 30 percent that the... --- ### How to Add Windows Server 2022 as a Domain Controller - Published: 2021-07-28 - Modified: 2024-11-15 - URL: https://petri.com/windows-server-2022-as-a-domain-controller/ - Categories: Windows Server 2022 - Tags: Active Directory, Windows Server 2022 - Article Type: How To There is an updated version of this article here: How to Add a Domain Controller to an Existing Domain Windows Server 2022 doesn't include any significant changes to Active Directory (AD). But you will want to use it going forwards for your new domain controllers because of the improved security it provides over earlier versions of Windows Server. There are two ways for system administrators to add Windows Server 2022 as a domain controller (DC). The first is using Server Manager, which has been the standard way to add, or 'promote' as is more commonly referred to, Windows Server 2022 as a DC. The second way, and easier way in my opinion, is to use PowerShell. Whichever method you choose, adding Windows Server 2022 as a DC involves two main steps: Installing the Active Directory Domain Services (AD DS) server role binaries. Promoting the server to a domain controller. But it's also noting that there are some prerequisites that you should meet before adding Windows Server 2022 as a DC. For instance, the server should be assigned a static IP address. And it's also worth making sure that the server name is something relevant, like DC1, so that it can easily be identified. Install Active Directory Domain Services on Windows Server 2022 with PowerShell Before we install AD DS, let's make sure we meet the basic prerequisites for a DC in Windows Server 2022. Windows Server 2022 prerequisites We'll start by renaming the server. Log in to Windows Server... --- ### Microsoft Beats Expectations with Profits up 47% - Published: 2021-07-27 - Modified: 2021-07-27 - URL: https://petri.com/microsoft-beats-expectations-with-profits-up-47/ - Categories: Main - Tags: Microsoft, News - Article Type: News The end of June marks the end of Microsoft's fiscal year and the company has released its earnings for FYQ4, CY2. Once again, the company beat expectations with a significant rise in profits and revenue. For the quarter, Microsoft posted revenue of $46. 2 billion, net income of $16. 5 billion, and an operating income of $19. 1 billion. Overall, net income was up 47% year over year, highlighting the company's continued dominance in the productivity space along with growth in many different segments. At a high level, the company's business units reported the following earnings: Revenue in Productivity and Business Processes was $14. 7 billion and increased 25% Revenue in Intelligent Cloud was $17. 4 billion and increased 30% Revenue in More Personal Computing was $14. 1 billion Other notable highlights from the earnings statements are that Office Commercial products and cloud services revenue increased 20% driven by strong seat license growth, Microsoft 365 consumer seats are now at 51. 9 million, and LinkedIn revenue jumped 46% during the quarter. For the company's "More Personal Computing" org, the results are a bit more muted as the company was impacted by supply constraints in the PC segment. As a result, OEM revenue dropped 3%, Surface plunged 20% year over year, and Xbox also took a hit with a 4% decrease in services revenue - the company blamed this on third-party titles not driving as much revenue (Fortnite). As this is the year-end for the company's fiscal calendar, overall, it was a blockbuster year for the organization. Microsoft... --- ### Microsoft Modern USB-C Teams Speaker Review - Published: 2021-07-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-modern-usb-c-teams-speaker-review/ - Categories: Microsoft Teams - Tags: Microsoft Teams - Article Type: Review Microsoft Teams USB-C Speaker Earlier this year, Microsoft released a handful of new Teams peripherals that include a couple of headsets, a webcam, and the most interesting, a USB-C speaker. While headsets and webcams are common devices these days, a personal speakerphone for Teams is a bit more unique. When it comes to a device like the Teams USB-C speaker, it only needs to do two things well: have a better microphone than most devices and provide clear audio that makes it easy to understand meeting participants. At a high level, the speaker does both of these things pretty well and if you are looking for a short version of this review, it’s a quality peripheral that makes using Teams a bit easier but it’s not perfect either. The speaker is well constructed with buttons on the top that brings the Teams app into focus, answer calls, adjust the volume, and quickly mute your mic. When engaging the buttons, there is a click that is a bit soft but it lets you know the button has been successfully engaged – I would prefer something a bit snappier but this is a minor gripe. The exterior of the speaker is covered in a charcoal-colored cloth that should look good on nearly any desk. It’s a muted design but fits with the corporate theme where the device will be used. But the best feature is that the bottom of the speaker acts as a cord-wrap. While I don’t... --- ### Guide: How to Install SharePoint Server Subscription Edition in a VM - Published: 2021-07-27 - Modified: 2024-11-19 - URL: https://petri.com/guide-how-to-install-sharepoint-server-subscription-edition-in-a-vm/ - Categories: SharePoint, SharePoint Subscription Edition - Article Type: How To Microsoft surprised more than a few in the IT Pro and tech industry by announcing SharePoint Server Subscription Edition. Billing it as 'the next generation of SharePoint,' this new product 'represents the next step in the SharePoint Server journey emphasizing the specific needs of our on-premises customers. ' They developed this new product around three core principles: Always up to date Secure and reliable Designed for you Introduction & Setup This guide will walk you through installing SharePoint Server Subscription Edition (SSSE) on a single server/VM. The only major prerequisites to keep in mind before starting are: You need to install SSSE on Windows Server 2019 or Windows Server 2022! You can choose to install with the Windows Server Core option. You will need (database create) access to a SQL Server 2019 server instance to create and house the configuration and content databases for SSSE. I have taken the liberty of installing Windows Server 2019 on a new VM (AD-WS19-SQL01) and added it to my AD domain. I then installed SQL Server 2019 Enterprise Edition. This will be the database server I'll point to later on during the 'SharePoint Products Configuration Wizard. ' For now, let's install SharePoint! Installing Prerequisites I created a second new Windows Server 2019 Hyper-V VM, added it to my AD domain as a member server, and named it 'AD-WS19-SSSE'. The first step is to download the Preview ISO from this site. Go ahead and copy it to your new server's Desktop and Mount the ISO. SharePoint... --- ### Best Practices: Office 365 Tools to Eliminate Email Security Misconfigurations - Published: 2021-07-26 - Modified: 2024-09-04 - URL: https://petri.com/use-these-microsoft-defender-for-office-365-tools-to-eliminate-email-security-misconfigurations/ - Categories: Microsoft 365 - Tags: cloud computing, Exchange Online, Exchange Online Protection, Microsoft Defender for Office 365 - Article Type: How To According to Microsoft, 90% of security threats start from malicious email. And while it would be nice to think that customers using Exchange Online Protection (EOP) should always receive the highest level of protection, the reality isn't quite so simple. EOP is a complex service. It provides a lot of granular configuration options and the ability to customize protection to suit a diverse range of customer needs. But with that flexibility comes the risk that custom configuration settings can leave clients unwittingly exposed. As Microsoft has built out its Defender for Office 365 service on top of EOP, it has respected many of the granular configurations and customizations. And this work ensures customers can still tailor Defender for Office 365 to their unique requirements. Microsoft knows only too well how clients can be their worst own enemies. It noted recently that it had found some firms had configured Defender for Office 365 to bypass filters, the detonation service, and excluded thousands of known phishing URLs from checks. As an IT professional, it shouldn't be a surprise that custom policies and configurations often lead to security issues. Temporary policies are often left in place indefinitely. And sometimes policies can be found in Exchange Online that have been carried over from legacy versions of on-premises Exchange Server that have been out of support for years. Sundeep Saini, a product manager on the Defender for Office 365 team, says "It wasn’t sufficient that we educate customers of the problem, we had to... --- ### Survey Reveals Most MSPs Now Offer Managed Security Services - Published: 2021-07-23 - Modified: 2024-11-19 - URL: https://petri.com/survey-reveals-most-msps-now-offer-managed-security-services/ - Categories: Channel - Tags: Channel, News - Article Type: News Nearly all MSPs now offer managed security services, according to Datto’s Global State of the MSP Report released Thursday. The remote monitoring and management (RMM) and data protection provider surveyed 1,800 MSPs for the report. According to the survey’s findings, 99% now provide managed security services, 50% have helped customers move more than half of their workloads to the cloud, and 93% expect to have at least half of their client workloads in the cloud within the next three years. The most notable workloads MSPs see clients moving include email, database, and application servers. Even sooner, they will move file servers, office productivity applications, and print servers. As it pertains to offering managed security services, the report found that the MSPs have acquired the security capabilities in various ways: 67% now offer co-managed security tools 61% have partnered with a managed security services provider (MSSP) 51% hired internal security professionals 49% have brought on contract/consulting experts 44% partner with a managed detection & response (MDR) provider 35% started offering education for their internal technicians While managed security service offerings vary among MSPs, the most prevalent, according to the report, are: Advanced endpoint protection: 84% Email security: 82% Data loss protection: 79% Security framework and compliance auditing: 78% Identity access management (IAM) and single sign-on (SSO): 75% Anti-malware: 73% Password policy management: 72% Two-factor authentication: 68% Firewall: 66% Remote access (ie. VPN): 63% Mobile device management: 63% SolarWinds Spins Off Its N-able MSP Business SolarWinds has completed the spinoff of... --- ### Using DR to Protect Against Ransomware - Published: 2021-07-23 - Modified: 2024-09-04 - URL: https://petri.com/using-dr-to-protect-against-ransomware/ - Categories: Backup & Storage, Data Management - Tags: Backup, Disaster Recovery - Article Type: Overview While 2020 will surely be remembered as the year of the pandemic, it’s quite possible that 2021 will be remembered as the year of ransomware too. Ransomware attacks seem to be running amok through 2021 and almost daily occurrences have been reported. Ransomware is a type of malware that blocks access to a company’s files until a ransom is paid. The ransomware typically encrypts your files rendering them inaccessible until a ransom is paid and the attacker delivers a key that can decrypt the files.  Ransomware attacks are often spread using a Trojan that is disguised as a legitimate file that a user is tricked into running from an email attachment or website. Following hot on the heels of the infamous east coast Colonial Pipeline and the JBS Meatpacking ransomware exploits over the 4th of July weekend, there was a Kaseya software supply chain attack that hit up to 1500 companies. Kaseya has an international headquarters in Dublin, Ireland and the company’s US headquarters is in Miami, Florida. The latest Kaseya attack is notable as Kaseya supports Managed Service Providers (MSPs) who in turn support many small and medium-sized businesses. Kaseya provides a unified remote monitoring and management tool called VSA that enables MSPs to manage the IT for remote businesses making it a central part of a wider software supply chain. Kaseya reported that approximately 60 of its VSA customers were compromised. Those customers supply IT management services to other businesses and they passed the malware on to approximately... --- ### Tip for Opening Large Text Files in Windows 11 - Published: 2021-07-22 - Modified: 2024-09-04 - URL: https://petri.com/tip-for-opening-large-text-files-in-windows-11/ - Categories: Windows 11 - Tags: Windows 11 - Article Type: How To Notepad is a simple editor that has been included as an inbox application since the very early days of Windows. Notepad is still part of Windows 11, but it is updated independently of the operating system via the Microsoft Store. In Windows 11, Microsoft can deliver updates to Notepad faster than in previous versions of Windows. Notepad is sufficient as a simple text editor for most users, but it falls short when you need to open large text files. Especially in Windows 10. And by that, I mean anything that is 100MB or larger. In Windows 10, while you can open a 100MB file in Notepad, it will take a long time. If you need help with opening large files in Windows 10, you can find that info, here. Notepad in Windows 11 is much faster The good news is that Notepad in Windows 11 opens large files faster. And I mean much faster. On the same hardware, Notepad in Windows 11 opens a 100MB text file instantly. And while large files do take a few seconds to open in Notepad running on Windows 11, the performance is significantly better than in Windows 10. Tips for opening large text files in Windows 11 Tip for Opening Large Text Files in Windows 11 (Image Credit: Russell Smith) Notepad file size limits in Windows 11 Notepad can open files that are less than 1GB in size. At least according to my testing. I couldn't find any official... --- ### Petri Research: The New Challenges Ahead for the IT Pro - Published: 2021-07-21 - Modified: 2024-09-04 - URL: https://petri.com/petri-research-the-new-challenges-ahead-for-the-it-pro/ - Categories: Main - Tags: Petri - Article Type: Overview During the past few years, the world of IT has undergone a dramatic change. Three years ago, it was primarily about maintaining an environment that was centrally located with users in the office to this year where most employees have been remotely accessing corporate assets. Toss into this mix an explosion in ransomware, advanced attacks on corporate networks, and the challenges have never been higher for IT Pros to keep their environments online and secure. At Petri, one of our goals is to help educate the IT Pro about changes in the industry and how to utilize new tools or services that Microsoft and its partners are releasing. We do this through technical deep dives, virtual conferences, and many other ways including first-party research. Each year we have surveyed our audience to identify key insights into the challenges the IT Pro is facing to help craft our editorial and content strategy. For 2021, we reached out to our community once again and the challenges are evolving - while security always remains a top priority, we saw new trends with communication barriers as well. --- ### Microsoft Confirms Windows 11 Will have LTSC Branch - Published: 2021-07-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-confirms-windows-11-will-have-ltsc-branch/ - Categories: Windows 11 - Tags: Microsoft, Windows 11 - Article Type: News Last month, Microsoft officially announced Windows 11 and that it would be released in the fall. The new OS that ships with an updated interface and new servicing model, will refresh the OS but it is not a significant overhaul of the entire operating system. One of the primary benefits for IT Pros is that Windows 11 will have one major update per year that is supported for 36 months. This is a much easier process to manage but one thing Microsoft has not explained is if the LTSC or long-term servicing channel, would be moving to Windows 11 as well. And it’s a valid question as Microsoft typically pushes customers away from LTSC unless it’s absolutely critical that the OS is not updated – think medical equipment or devices in manufacturing. Or devices that are disconnected from the Internet or intranets are also good candidates for LTSC. The good news is that LTSC will be available in the Windows 11 flavor in the future. During the AMA: Windows 11 and Windows 10 servicing & lifecycle today, the company shared the following: We announced the next Windows LTSC would be built on Windows 10, version 21H2, and yes it will be a 5 year support lifecycle. We can expect that the next LTSC *after* Windows 10 Enterprise LTSC 2021 will be built on Windows 11. And it will also keep the 5 year support. However, that's expected in 3 years or so, so anything can happen in that timeframe. If... --- ### How to Set Up Windows Sandbox - Published: 2021-07-21 - Modified: 2024-09-04 - URL: https://petri.com/how-to-set-up-windows-sandbox-to-safely-test-apps-in-an-isolated-environment/ - Categories: Windows 10 - Tags: Virtualization, Windows 10, Windows Sandbox - Article Type: How To If you want to spin up an isolated Windows 10 desktop quickly, without the knowledge required to work with virtual machines (VM) or the cloud, then Windows Sandbox is the answer. How does Windows Sandbox work? Windows Sandbox is a feature in Windows 10 Pro, Enterprise, and Education SKUs, which provides users an easy way to quickly test apps in isolation. It uses a clean operating system image that is generated from your system's current state, so there's no need to download and install Windows. When you start Windows Sandbox, there's a short delay while the image is provisioned in a VM. Because the VM is generated from your current Windows system, it is always up to date with the same version of Windows and patches as the host device. When the VM is ready, you can install apps and change the OS configuration inside the VM. When Windows Sandbox is restarted, the image is regenerated, wiping any changes you made in the previous session. Check Windows Sandbox prerequisites Before you can install Windows Sandbox, you should make sure that your device meets the following prerequisites: Windows 10 Pro, Enterprise, or Education (build 18305 or later) AMD64 CPU Virtualization enabled in BIOS 4 GB of RAM (8 GB recommended) 1 GB of free disk space (SSD recommended) Two CPU cores (four cores with hyperthreading recommended) You can check whether virtualization is enabled for your CPU using Task Manager. How to Set Up Windows Sandbox to Safely Test Apps in... --- ### Microsoft Unveils SharePoint Server Subscription Edition - Published: 2021-07-20 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-unveils-sharepoint-server-subscription-edition/ - Categories: SharePoint, SharePoint 2007, SharePoint 2010, SharePoint 2013, SharePoint 2016, SharePoint 2019, SharePoint Online - Tags: SharePoint, SharePoint Server Subscription Edition Splash screen for SharePoint Server Subscription Edition In the world of Microsoft, everything is cloud, cloud, cloud, but the reality is that many operations are still using racks locally or more than likely, in some sort of hybrid configuration. And especially for companies that have been around for a decade or more, there is a good chance that you are running a legacy version of SharePoint too. For those customers, Microsoft has been releasing updates to SharePoint roughly every three years which means we should be hearing about SharePoint Server 2022 but Microsoft is mixing it up this time around. The company announced today SharePoint Server Subscription Edition and yes, that is the official name. This new version of SharePoint is built around three core principles of keeping your environment always updated, secure, and built for on-premises deployments. If you want to read about all the updates that are shipping with this version, you can find that information here. The new version of SharePoint will be continuously updated, support modern infrastructure, secure communication like TLS 1. 3, OpenID Connect, and a lot more. But as the name suggests, this isn’t the same SharePoint Server admins have been running for decades. While the new features look promising, there is one major item missing – the licensing updates for this release. If you happen to find them, please let me know, but as of right now, the name change would suggest that we have fully entered into the realm... --- ### Microsoft Begins Rollout of "Teams 2.0" to Windows 11 Insiders - Published: 2021-07-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-rollout-of-teams-2-0-to-windows-11-insiders/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, Teams, Windows 11 - Article Type: News First Look at Teams 2. 0 Last month, when Microsoft announced Windows 11, the company also said that they would be bringing Teams to the OS with a new app bundled out of the box. Not long after the announcement, we learned that Microsoft was re-building the Teams app, unofficially called Teams 2. 0, with the goal of improving performance and cutting down on resources too. Last week, I was able to provide an early look at the new application, and today, Microsoft is letting some testers take the new experience for a spin. If you are a Windows 11 Insider, check for updates as the update is now rolling out. The intent of this new application is to make it easier to communicate with your friends and family while also leveraging the Teams branding too. While Microsoft is not killing Skype... yet, this new Teams app will be the default communication tool for Windows 11, and Skype is not installed out of the box. Recent chat list in Teams 2. 0 To use the app, you first need to win the game of luck. Microsoft is pushing out the new app to a small group within the Insider community to initially test the application and they will expand the beta pool in the near future. If you are selected, you will need to use a Microsoft account to login, no business accounts allowed, and off you go. With this release, the app supports syncing contacts... --- ### What's New with Microsoft Forms for Education - Published: 2021-07-20 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-microsoft-forms-for-education/ - Categories: Microsoft 365 - Tags: education, Forms, News, Office 365 - Article Type: News If you're an IT Pro offering support in an Education or Higher Education organization, your world, over the last year and a half, has been turned into 'the upside-down. ' Now, I'm not inferring that the information here will necessarily save you from the Demogorgon (did you know they can be as tall as eighteen feet! ? ), but, well, it couldn't hurt... Microsoft, thankfully, is offering a few more (XP) experience points by adding more features to Microsoft Forms, and most of them are incorporated and integrated into Microsoft Teams. There are five new features here in this post: three have rolled out, and two are on the way. Let's learn more! Launched Features Launch Multiple Choice Quizzes in Microsoft Teams meetings Forms Polls in Teams Meetings have been around for a while. And the people behind the development are adding new features and enhancements all the time. You can now create Multiple Choice Quizzes in Teams Meetings. During class, educators can engage their students with this feature to create knowledge check questions or run a trivia game. You'll get real-time insights as your students take the quiz, offering additional instructional guidance for your class and supporting individual students. Multiple Choice Quizzes in Microsoft Teams Meetings You could keep the answers anonymous if you wish. Regardless of your choice, you can export your poll results directly to Excel from Teams. After the Form/Quiz is complete, you can go to your Microsoft Forms website, click on All My Forms, and digest the results... . --- ### What is Microsoft Test Base - Published: 2021-07-19 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-test-base/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Test Base - Article Type: Overview Microsoft recently announced that 'Test Base for Microsoft 365' has moved from the private preview stage to public preview. The company announced a set of new features that makes it easy to validate your company's apps against the latest Windows client and server releases, from the comfort of a Microsoft-managed test environment. They've also taken steps to make this new service more discoverable on the Azure portal. What is Microsoft Test Base? Test Base for Microsoft 365 is a new Azure service for app developers and IT professionals that uses data-driven testing of applications and enables you to take advantage of testing from anywhere. Test Base helps you to keep tabs on your application's performance and compatibility as underlying platform changes continually occur in Windows. You don't need to worry about building a test lab or designing an environment that's safe and secure to perform said testing. Microsoft takes care of that for you. The coolest feature is being able to test your apps automatically against Windows and pre-release Windows updates on secure virtual machines. Windows 11 testing will also soon be available as a platform for your applications. How Test Base works What's New Let's take a look at new features Microsoft is developing... Discoverability in Azure Portal You're now able to easily provision Test Base via the Azure Portal. If you use the search bar on the top, enter 'Test Base', you'll see 'Test Base for Microsoft 365 (preview)'. Log in with your AAD credentials and follow the... --- ### Microsoft Gave Its Partners an Earful at Annual Inspire Conference - Published: 2021-07-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-give-its-partners-an-earful-at-annual-inspire-conference/ - Categories: Channel It was a big week for the Microsoft ecosystem as the company held its annual Inspire partner conference. Like last year, Inspire was a 2-day virtual event because of the pandemic. But the absence of the traditional weeklong live gathering did not stop Microsoft from doling out the news that will impact much of the ecosystem. The news at Inspire was consequential regarding both new products as well as updates on how Microsoft plans to steer its investments in the partner ecosystem for the new fiscal year 2022 that began on July 1. Rodney Clark, who replaced longtime global channel chief Gavriella Schuster back in April, and his boss, CVP for global partner solutions Nick Parker, outlined their key priorities at Inspire. A major emphasis is on skilling, where Microsoft is increasing its investment in training by more than 250 percent, Clark said in his first keynote address to partners. “This includes deep technical training through things like cloud weeks, virtual hands-on labs, and digital technical skilling and content that’s on-demand,” Clark said. Specifically, the skilling will address both key vertical markets such as healthcare, manufacturing, retail, financial services, and non-profits as well as in fast-growing technologies such as Power Platform, business applications, Azure Analytics, and AI and security. Clark also emphasized his focus on hastening the path to digital engagement through the new Microsoft Partner Center, which includes plans to rebuild deal registration workflows. “We’re realigning our engineering teams to bring partner and seller experiences closer together,” Clark... --- ### First Look at Microsoft's New Teams Peripherals - Published: 2021-07-15 - Modified: 2024-09-04 - URL: https://petri.com/first-look-at-microsofts-new-teams-peripherals/ - Categories: Hardware - Tags: Hardware, Microsoft, Surface, Teams - Article Type: Overview Microsoft USB-C speaker Earlier this year, Microsoft announced a handful of new Teams accessories including a USB-C speaker, two headsets, and a webcam. The company has sent over a few of these products to review and here is a first look at the speaker and the webcam. Both of these devices are Teams certified which means that they will provide an optimal experience with the software. But what they do not promise is to work with other services like Zoom or WebX, which means that there is good reason to give this hardware a proper review. Keep in mind, this post is not that review, I haven't had the hardware in my hands long enough to properly evaluate it but give it a few weeks and I'll have a much deeper dive into the products. Teams certified USB-C speaker The USB-C speaker is compact and about the size of an iPhone 12 (non-max). It has a mesh-like material on the outside that is soft to the touch and the buttons on the top are clicky which makes it easy to tell when they have properly engaged the action. The bottom of the speaker has a hidden compartment for the cable. The bottom of the speaker has a large rubber pad that conveniently hides the cord. This makes it quite easy to travel with the device or hide part of the cable so that you don't have cable slack... --- ### Patch Tuesday – July 2021 - Published: 2021-07-15 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-july-2021/ - Categories: Security - Tags: Patch Tuesday, Windows, Windows Server - Article Type: News Microsoft patches 103 security vulnerabilities this month, including PrintNightmare, a Windows DNS Server bug, 3 elevation of privilege vulnerabilities in the Windows kernel, and much more. Windows and Windows Server Let's start with the bug that surfaced earlier in July month called PrintNightmare. PrintNightmare Microsoft issued an out-of-band cumulative update (CU) for a remote execution flaw (CVE-2021-34527), which allows local privilege escalation, in the Windows Print Spooler service. It was actively being exploited in the wild. The vulnerability could allow a remote attacker to run code of their choice on a compromised system. In addition to applying the update, you should check that the following registry values are set to 0 (zero) for complete protection: HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows NTPrintersPointAndPrint NoWarningNoElevationOnInstall = 0 (DWORD) or not defined (default setting) UpdatePromptSettings = 0 (DWORD) or not defined (default setting) In a blog post, Microsoft said that the fix issued 6th July 'fully addresses the public vulnerability, and it also includes a new feature that allows customers to implement stronger protections'. Although, some researchers didn't agree that the fix fully resolved the issue with the Print Spooler service. July 2021 and later updates for Windows contain a new protection that prevents non-administrators, including delegated admin groups like printer operators, installing signed and unsigned printer drivers to a print server. After the update, only administrators can install signed and unsigned printer drivers to a print server. There's also a new control for overriding all Point and Print Restrictions Group Policy settings so that only administrators can... --- ### First Look at Microsoft Teams 2.0 - Published: 2021-07-15 - Modified: 2024-09-04 - URL: https://petri.com/first-look-at-microsoft-teams-2-0/ - Categories: Microsoft Teams - Tags: Microsoft, News, Teams, Teams 2.0 - Article Type: Overview Landing page when you open Teams 2. 0 A couple of weeks back, Microsoft announced Windows 11 and with it, a new Teams experience would be launching with the OS. We later learned that Microsoft was overhauling the application to ditch Electron in favor of technologies that do not undermine performance on even high-end hardware. The new app, unofficially referred to as Teams "2. 0", is not yet publicly available but I was able to get my hands on an early build and give it a spin. While there is not much to report on back yet, as it is still quite basic, it does give us a look at the direction that Microsoft is headed with Teams 2. 0. Calendar in Teams 2. 0 The app installs quickly and has a minimalistic UI that allows you to chat with contacts, view your calendar, and see activity. The app does appear to be working for consumers as messages can be sent and received but as of right now, there is no message interoperability with Skype. To little surprise, the app has the same basic design as Teams 1. 0. It's worth pointing out that I was only able to log in with my MSA as my M365 account was not recognized when trying to authenticate. Microsoft pitched the Teams 2. 0 app, initially, as a consumer-focused application that is bundled with Windows 11 - not being able to login with my M365 is expected behavior, for now. [caption... --- ### What’s The Difference Between Windows 11 and Windows 365 - Published: 2021-07-14 - Modified: 2024-09-04 - URL: https://petri.com/whats-the-difference-between-windows-11-and-windows-365/ - Categories: Windows 10, Windows 11, Windows 365, Windows Client OS - Tags: How To, Microsoft, Windows 10, Windows 11, Windows 365 - Article Type: How To In the world of Microsoft operating systems, there are several choices such as Windows 10, Windows 11, and Windows 365. When it comes to choosing which version of the desktop software to use, the choices are not always easily differentiated but here is a breakdown of your options. Introduction Choosing which version of Windows to use depends on many different factors but starting with a basic idea of what you are trying to achieve will help you better understand the best version of Windows for your needs. To understand which version to utilize for your productivity needs, your first step is to understand your basic requirements. Are you running this on a newer device, meaning it has a quad-core CPU, TPM 2. 0 or better, has lots of available storage, or are you using older hardware and need more computing power or improved security? Windows 10 Of all the versions of Windows that are actively supported and used widely across both consumer and enterprise customers, Windows 10 is the oldest of the options on the table. The operating system was released in 2015 and will be supported by Microsoft until 2025. Windows 10 Desktop The primary reason you would choose to run Windows 10 is hardware compatibility. Microsoft has drawn a line in the sand and said that if you are using an Intel 7th gen CPU, Windows 11 is not an option for you. This means if you are wanting to run Windows locally and... --- ### Microsoft is Significantly Reducing its Commerical Marketplace Fees - Published: 2021-07-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-significantly-reducing-its-commerical-marketplace-fees/ - Categories: Channel - Tags: Channel, Inspire, Microsoft, Microsoft Inspire - Article Type: News For the second year in a row, Microsoft is hosting its Inspire conference virtually but there is hope on the horizon that next year, it will be in person once again. But for companies that operate inside the Microsoft 365 ecosystem, this is a big week as Microsoft has unveiled new products and solutions for its partners to sell and extend. In addition to new services, Microsoft is also announcing a substantial change to its marketplace fees and will be reducing them significantly. The company is moving away from the industry-standard fee of 20% and is dropping its take to 3%. This change will impact all of the Microsoft commercial marketplaces. Meaning, if you sell a product or service through Microsoft AppSource or Azure Marketplace digital storefronts, Microsoft now only slices off 3% as a fee for the transaction. For companies that sell primarily through third-party marketplaces, this will be a significant win. There are many online storefronts for procuring or acquiring commercial software but each marketplace charges a transaction fee to the provider as a means to cover expenses for creating, running, and maintaining the marketplace. With Microsoft lowering its fees for this type of service, this will incentivize partners to push customers to its storefront for buying their software or service. Yes, companies can (and likely will) continue to sell their solutions directly from their own websites but with Microsoft making it easier and less costly to do so via their store-fronts, this will shake up the digital... --- ### Microsoft Unveils Windows 365, A Desktop in the Cloud - Published: 2021-07-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-windows-365-a-desktop-in-the-cloud/ - Categories: Windows 10, Windows 11, Windows 365, Windows Client OS - Tags: Microsoft, Microsoft 365, News, Windows 365 - Article Type: News This week, Microsoft is hosting its virtual Inspire conference where the company unveils solutions and tools for their partners to help them build services on top of the company's platforms. For FY 2022, Microsoft is unveiling Windows 365, a new way to deploy Windows 10 or Windows 11. Windows 365 is a new service from Microsoft that brings Windows 10 and Windows 11 to the cloud and allows anyone to access their “desktop” from any type of device as long as they have a connection to the Internet. Microsoft is pitching this new service as an OS designed for hybrid computing and it will become generally available starting in August. What is Windows 365 So what is Windows 365? It’s a modern take on what many of us know as a thin client but it’s Windows 10 or 11 running in a VDI-like configuration that allows users to authenticate to the cloud desktop where the entire experience is streamed to the endpoint. With the new cloud desktop, the “boot” is instant once you login and you have the ability to stream all of your business apps to the endpoint that you are using. But because the desktop is in the cloud, it is always updated, secured by Microsoft’s own solutions, and easily managed by IT. Windows 365 enables "point and click" virtual desktop deployment. Because Windows 365 runs in the cloud, it does not matter what type of device is used to access the service as... --- ### How to Create an Approval Workflow in Teams - Published: 2021-07-13 - Modified: 2025-01-03 - URL: https://petri.com/how-to-use-the-new-approvals-app-in-teams/ - Categories: Microsoft 365 - Tags: Approvals, Microsoft 365, Teams, Workflow - Article Type: How To Introduction One of the most important workflows in a business is the approval process. This can range from administration-like approvals like vacation requests, expense reports, and document signoffs. However, there is almost an innumerable amount of approval categories in the business world besides these. Think Finance, Manufacturing, HR, heck, even IT. (Imagine having to get an IT-related task approved... . ! ) As an IT Pro, it would behoove you to be familiar with the Approval app that allows you to create an integrated, easy-to-use digital paper trail for security, compliance, and legal reasons, not to mention being intuitive and easy for all your users to participate. Microsoft started rolling out the Approvals app in Microsoft Teams earlier this year. To verify you're licensed and prepared to roll out this app for your organization, use this documentation link from Microsoft for all the details. The Approvals app in Teams presents an easy-to-follow process, however, there is a lot more power behind the scenes. This is built on Power Automate, a platform service that automates workflows across a large number of apps and SaaS services that business users rely on. I'll give you a crash course (meaning - high-level overview) in Power Automate later. First, let's start with the Approval app. Working with Approvals in Teams Approvals in Teams allow you to create, manage, and share approvals directly from your digital hub quickly and easily. Microsoft wanted to build an experience across a broad range of teams so they provided an easy app... --- ### Microsoft to Acquire of RiskIQ to Bolster Security Tools - Published: 2021-07-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-acquire-of-riskiq-to-bolster-security-tools/ - Categories: Channel, Main - Tags: Acqusition, Microsoft, News, RiskIQ - Article Type: News Microsoft has announced today that the company is acquiring RiskIQ, a company based out of San Francisco that specializes in detecting security threats. RiskIQ was founded in 2009 and specializes in detecting external threats and helping its customers protect their data by "extending cybersecurity beyond the firewall" in their own terms. RiskIQ is a SaaS platform with unique data sets that customers leverage to help reduce the attack surfaces for their operations. The acquisition comes at a time for Microsoft when ransomware and exploits are causing serious headaches for large and small operations. By adding RiskIQ to its portfolio of tools and services, Microsoft will have another offering for its customers to help protect their operations. In the past seven months, the industry has seen platforms like SolarWinds and Kaseya become victims of sophisticated attacks. It's clear that the pervasive threats from malicious groups and nation-states are on the rise which is pushing Microsoft to offer more robust security solutions for its customers. The price for the acquisition was not announced by Bloomberg reports that it was north of $500 million for the right to acquire the company. RiskIQ was a private entity and was founded by Brad Byrd, Chris Kiernan, David Pon, Elias Manousos. Given the pervasive nature of the attacks that are frequently being exploited during the past year, it's not a surprise at all to see Microsoft dig its heels on the security front. The company offers a wide variety of software solutions and being able to... --- ### How to Securely Elevate Privileges in PowerShell Scripts - Published: 2021-07-12 - Modified: 2024-09-04 - URL: https://petri.com/powershell-secrets-management-how-to-securely-elevate-privileges-in-powershell-scripts/ - Categories: PowerShell - Tags: Automation, Azure Key Vault, cloud computing, PowerShell - Article Type: How To If you are using PowerShell scripts to automate tasks in your environment, sooner or later, there's a good chance that you will need to deal with elevating privileges to access resources that require a different set of credentials than those being used to run the script. For example, you might need to access a file share that only administrators of the fileserver can access. Or maybe you need to restart a Windows service in your script, but the script isn't running with administrator privileges. I think it goes without saying that adding credentials to your scripts in plaintext is a bad idea. And encrypting scripts adds a whole layer of complexity that you probably don't want to deal with. The easiest way to manage credentials in PowerShell scripts is to store sensitive information in a vault. PowerShell secrets management is now available in the PowerShell Gallery and it lets you create secure storage vaults. You can safely retrieve the information from vaults to use in your PowerShell scripts. PowerShell secrets management can be used to create local vaults (SecretStore) in Windows and Linux. You can also use remote vaults, like Azure Key Vault. Install PowerShell secrets management modules There are two PowerShell modules for secrets management: SecretManagement and SecretStore. You can install the modules in PowerShell by running the following command: Install-Module Microsoft. PowerShell. SecretManagement, Microsoft. PowerShell. SecretStore When prompted to install modules from an untrusted repository, type y in the PowerShell window and press ENTER. Create a local vault using SecretStore Now... --- ### How to Fully Patch the PrintNightmare Vulnerability - Published: 2021-07-09 - Modified: 2024-09-04 - URL: https://petri.com/how-to-fully-patch-the-printnightmare-vulnerability/ - Categories: Windows 10, Windows 11, Windows 2000, Windows Client OS, Windows Server, Windows Server 2003, Windows Server 2008, Windows Server 2012, Windows Server 2016, Windows Server 2019, Windows Server 2022 - Tags: How To, Microsoft, Printnightmare - Article Type: How To Image Credit: Microsoft If you are an admin and have been scrambling the past week to patch the PrintNightmare vulnerability, you are not alone. The messaging around this zero-day has been confusing with Microsoft saying they have a solution, industry experts saying it’s not effective, and now Microsoft saying “you’re patching it wrong”. Microsoft isn't quite saying that you are patching wrong but what they are providing is additional guidance about making changes to your registry that may not have been changed after installing the latest update. In this guide, we will walk through multiple paths and options to securing your infrastructure against PrintNightmare. Background On July 6th, Microsoft released an out-of-band patch known as KB5004945. At the heart of the issue is a remote code vulnerability that would allow an attacker to use Windows Print Spooler to perform elevated file operations. An attacker who is able to successfully exploited this vulnerability would be able to view, change, or delete data; or create new accounts with full user rights. In the following days after the release, researchers have uncovered a way to bypass the patch that Microsoft released. As it turns out, according to Microsoft, installing the patch is not the only step that you need to take to fully protect your environment and in some scenarios, you will need to make a change to your registry as well. Check your system to see if Print Spooler is running Protecting your Environment without a Patch... --- ### Microsoft Releases Second Build of Windows 11 - Published: 2021-07-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-second-build-of-windows-11/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, News, Windows, Windows 11 - Article Type: News Late last month, Microsoft announced Windows 11 and not long after, released the first build of the OS. Today, the company is releasing the second build of the OS to Insiders. If you are part of the Dev ring of the Insider program, you can now download build 22000. 65 by going to Settings - Windows Update - Search for Updates. If you want to test Windows 11 but are not ready to install it on your device quite yet, here is how you can install Windows 11 in a VM to test out the OS today without worrying about the instability of the OS. Here's a list of has changed with this release: Start now has a search box to make it easier to find what you’re looking for. The taskbar will now show across multiple monitors which can be enabled via Settings > Personalization > Taskbar. We have updated several system alert dialog boxes such as the alert for when the battery is running low on your laptop or when you change your display settings with the new Windows 11 visual design. The ‘Power mode’ settings are now available on the Power & battery page in Settings. Right-clicking the desktop now directly has a Refresh option without needing to click “Show more options”. Right-clicking a . ps1 file in File Explorer now directly has a Run with PowerShell options without needing to click “Show more options”. Available snap layouts when using smaller PCs in portrait orientation have been optimized for... --- ### Guide: How to Install Windows 11 in a Virtual Machine - Published: 2021-07-08 - Modified: 2024-09-04 - URL: https://petri.com/guide-how-to-install-windows-11-in-a-virtual-machine/ - Categories: Virtualization, Windows 11, Windows Client OS - Tags: How To, Hyper-V, Microsoft, VM, Windows 11 - Article Type: How To I'm sure many of you are excited that Microsoft's Windows Insider Program team recently launched the testing phase of Windows 11. What better way to get your feet wet than to test it in a brand-new virtual Hyper-V machine! Some of your users will probably be clamoring to upgrade when it's official and recommended, so, you have your work cut out for you. Should you foist the general newness of Windows 11 on at least a testbed of users? Well, that's outside the scope of this post, but, guaranteed, it will be discussed ad nauseum over the next six months. The best way to get started with installing Windows 11 is to grab an official ISO from the company. If you do not have one available, you can use a Windows 10 ISO and upgrade to Windows 11 via Windows Update but that process will take longer than a direct Windows 11 ISO install. If you are looking to install Windows 11 in VMware Workstation Pro, then check out Petri's article dedicated to that virtualisation platform. Equipment & Prerequisites I'm running Hyper-V on my Windows 10 HP Z2 Mini G5 Desktop workstation. You need to make sure your computer supports the Hyper-V Feature/Role, and that you have it enabled. You can use this guide to verify. The next steps are to create your new virtual machine (VM). Creating the VM First, on the right Actions pane, click New -> Virtual Machine... Creating a Virtual Machine... --- ### Microsoft’s PrintNightmare Patch Not Effective Against Vulnerability - Published: 2021-07-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-printnightmare-patch-not-effective-against-vulnerability/ - Categories: Windows 10, Windows 11, Windows 7, Windows 8, Windows Client OS, Windows Server - Article Type: News A simple way to determine if PrintSpooler is running is to use PowerShell Late yesterday, Microsoft released a patch that was expected to close the vulnerability that is known as PrintNightmare. The patch, which you can install via Windows Update and was released out-of-band, was known to not fully address all instances of Windows and Server but now it looks like researchers have uncovered that the patch is ineffective against the vulnerability. As of the time of this post, it is recommended that you disable the PrintSpooler service immediately to stop attacks on your environments using the zero-day exploit. And considering how widespread this exploit has been covered on sites like Petri and that several attempts to patch it have failed, malicious actors are likely increasing their scans for easy attack targets using the vulnerability. If you are unsure if the service is running, you can take the following steps to determine if the service is running and how to disable the service with Group Policy: Hit Windows Key and type PowerShell Enter the following command: Get-Service -Name Spooler If you see the words "running" this means the service is running. If the Print Spooler is running or if the service is not set to disabled, select one of the following options to either disable the Print Spooler service, or to Disable inbound remote printing through Group Policy: Option 1 - Disable the Print Spooler service If disabling the Print Spooler service is appropriate for your... --- ### Guide: Getting Started with Zero Trust Security in Microsoft 365 - Published: 2021-07-07 - Modified: 2024-09-04 - URL: https://petri.com/guide-getting-started-with-zero-trust-security-in-microsoft-365/ - Categories: Endpoint Protection, Information Security, Microsoft 365, Security - Tags: How To, Microsoft 365, Security, Zero Trust - Article Type: How To Zero Trust is a security model that can be applied to Microsoft 365. It focuses on improving security by verifying and testing both the identity and device before granting access to resources. You can think of Zero Trust as a way of working, wherein you take it for granted that every user and device accessing your environment - in or out the network - to be compromised, and hence, take actions to confirm the validity of each of those. In these times when the usage of devices, applications to access internal resources from different locations has increased due to the pandemic situation, securing yourself from threats through aggressive and proactive policies is important. This is the first article in the Microsoft 365 Zero Trust series. Here, you will be introduced to the various concepts of Zero Trust in Microsoft 365, along with several pieces of information to help you to gain an adequate level of understanding of this security model. The Principles Zero trust follows the idea of "never trust, always verify". Microsoft has defined 3 principles on which zero trust operates: Verify Explicitly: Every point like user identity, location, device state, and health must be taken into consideration before granting anyone access to resources. The emphasis is on always authenticating and then authorizing based on the points mentioned here. Use Least Privileged Access: Admin roles must be granted with limitations like just-in-time and just-enough-access strategy. Assume Breach: Security experts must assume that resources are breached and take measures... --- ### What's New with Universal Printing in Windows 11 - Published: 2021-07-07 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-universal-printing-in-windows-11/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Universal Print, Windows, Windows 11 - Article Type: Overview Printer and scanner settings in Windows 11 There are some exciting improvements on the way for Universal Print coming in Windows 11. In addition, it's not just Universal Printing that is improving. Microsoft has made several nice enhancements to printing in general, too; let's take a closer look. Universal Print is a modern printing solution that your company can utilize to work with cloud print services from Microsoft. You no longer have to worry about and maintain print drivers on all your users' devices. This is WONDERFUL news for IT Pros! Microsoft developed a 'Universal Print' driver that rules them all. The only catch... you need a Universal Print-ready printer. Of course, there's always a catch. You can read more about these new printers and what they offer in the Tech Community Blog. With Windows 11, Microsoft is upgrading the user experience with printers in multiple ways. As you can see above, they've updated the Printers section of Settings to go with the overall UI changes in Windows 11. They've also added some energy and environment-friendly changes to the Universal Print driver that will cut down on waste and add a layer of privacy for users. Users can now add a PIN to a print job so that only they can print their potentially sensitive print job. Besides Windows 11 (21H2), this new functionality will also be included in Windows 10 version 21H2. With Windows 11, Microsoft is also adding support for Print... --- ### Microsoft Releases Emergency Update to Patch PrintNightmare Vulnerability - Published: 2021-07-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-emergency-update-to-patch-printnightmare-vulnerability/ - Categories: Windows Client OS, Windows Server - Tags: Microsoft, News, Printnightmare, Security, Windows - Article Type: News Microsoft has released an out-of-band patch that will plug up a hole in a known zero-day exploit. Known as PrintNightmare, the patch is now being released via Windows Update. At the heart of the issue is a remote code vulnerability that would allow an attacker to use Windows Print Spooler to perform privileged file operations. An attacker who successfully exploited this vulnerability would be able to view, change, or delete data; or create new accounts with full user rights. The patch released today is KB5004945 which is linked to CVE-2021-34527 and is known to be actively exploited by malicious agents. Meaning, you need to patch your system as soon as possible to make sure your environment is not left exposed. Microsoft notes in their release that after you install the patch, all users are either administrators or non-administrators, delegates will no longer be honored. At this time, there are patches for Windows 10, Windows 8. 1, Windows 7, Windows Server 2008 SP2, Windows Server 2012 - Microsoft is closing this vulnerability to software that is also no longer officially supported by the company. If you find that you are not able to install these updates, there are mitigations available. The company says that to address the PrintNightmare vulnerability, you can disable Print Spooler service to remove printing capability locally and remotely or you can disable inbound remote printing through Group Policy as a means to protect your environment. It's rare for Microsoft to release an out-of-band patch that goes to show... --- ### First Look at the New Office UI that Matches Windows 11 - Published: 2021-07-06 - Modified: 2024-09-04 - URL: https://petri.com/first-look-at-the-new-office-ui-that-matches-windows-11/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Office - Article Type: News Microsoft is updating the ribbon for Office to match Windows 11's rounded corner design. When Microsoft released the first build of Windows 11 last month, the company also indicated that they would be updating Office to match the design of Windows 11. While the initial release arrived a few days later than anticipated, the company has started to push the visual update to those participating in the Office Insider program. But not all Insiders are receiving the new UI quite yet but a fellow Petri author, Michael Reinders, was lucky enough to receive the new ribbon and happily sent over a few screenshots to provide a closer look at the updates. If you want to see if you can download the update today, open up any Office app, hit file, go to Account at the bottom, and in the middle of the screen, you can force the apps to search for updates. The ribbon at the top is the primary change with the new UI. It now features rounded corners but overall, not much else has changed. The comments and share buttons have also been updated with the rounded corner design as well. Excel shows a nearly identical update to that of Word with the same icons being used as the current version of Office but with rounded buttons and a ribbon with rounded corners too. And yes, the dark mode also features the same updates. Outlook was not left out of the party either, it... --- ### How to Create Retention Policies for Microsoft Teams - Published: 2021-07-06 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-retention-policies-for-microsoft-teams/ - Categories: Compliance, Microsoft Teams - Tags: Microsoft, Retention, Teams - Article Type: How To I work with many legal and regulatory organizations that require no retention period for Microsoft Teams channels and their users’ chats. Other industries dictate that the information must be retained for 7 years while other customers don’t want to let go of any information and retain their chats indefinitely. This blog post will assist you with an overview, outline where the data is stored, considerations, pre-requisites, and how to implement retention periods within Microsoft Teams. Overview Microsoft Teams can utilize retention policies within Office 365 to define what data the user would like to retain and how long they would like to keep it for.   By default, these range from 5, 7, or 10 years. Organizations often keep data for industry regulations or legal requirements to retain the data for a particular period. An example of this is Bill 198 in Canada or Sarbanes-Oxley in the United States that dictates particular data must be kept for a particular period of time; another example of this would be that tax returns must be kept for seven years. Another example is around meeting GDPR requirements and organizations may want to reduce their risk in the event of litigation or security incidents by permanently deleting the data they are not required to retain. Where is the data stored Microsoft Teams chats and channel conversations are held in 1 of 3 places within Microsoft 365.   All information is stored within a Mailbox, however, these mailboxes have different RecipientTypeDetails attributes. GroupMailbox: This type of... --- ### Set it and Forget it is the Worst Practice in Azure - Published: 2021-07-06 - Modified: 2024-09-04 - URL: https://petri.com/set-it-and-forget-it-is-the-worst-practice-in-azure/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft - Article Type: Opinion I’ll admit that I may have done a not-so-best-practice type of thing, I have not gone into the Azure Portal in quite a long time (around 2 months). Now everyone’s usage of Azure is different and for me, I spend most of my time in the Azure Storage world, with many applications interacting with those storage accounts (properly provisioned of course). But, I got into a mode where I had not gone into the Azure Portal in a while and that is not a best practice. In this blog post, I’ll explain why. Azure is watching out for you The main reason I’m calling this a worst practice is because I was missing out on advice that Azure has for me. The various services in Azure that review your usage and what is using it (including threats) are always working on your behalf, with a lot of them available at no cost. I’ve long said that every time you log in and log out of the Azure Portal, your first and last stops should be into Azure Advisor to see what is new since your last session and if anything happened during this session that changes your recommendations, security, performance or other categories. The good news about logging in for the first time in a while is that I am reminded to check out Azure Advisor recommendations are there for me: Azure Security Best Practices When I went into the recommendations, there were not necessarily surprises or tragedies but there... --- ### Microsoft Gives Up on Running SQL Server in a Windows Container - Published: 2021-07-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-gives-up-on-running-sql-server-in-a-windows-container/ - Categories: Cloud Computing, Microsoft Azure, SQL Server, Windows Server - Tags: Container, Microsoft, News, SQL Server - Article Type: News Back in 2017, Microsoft had an ambitious plan to run SQL Server in a Windows container. At that time, containers were starting to make big waves in the infrastructure market and Microsoft did not want to be left out of the conversation. The company spun up its SQL Server on Windows Containers beta program and began efforts to make Windows containers a thing. Well, that “thing” is now going away as the company has announced that they are ending the beta program for SQL Server on Windows container. In a blog post, the company is straightforward in saying that this beta program is coming to an end and the company is deleting the docker hub repos and tags within these repos. Microsoft states that based on usage patterns and “ecosystem challenges”, you should run SQL Server on Linux containers instead. Officially, Windows SQL Containers never left beta which means that you should not be using this is technology in a production environment but if you are, this news will arrive with about as much excitement as a lead balloon. I would love for Microsoft to extrapolate on the “ecosystem challenges” but for now we can only speculate as to what was the final blow for the containers. Considering how quickly Microsoft is moving to delete all the data, I’m hedging that usage of this tool was near zero. There is also the reality that running SQL Server with a Linux container works quite well and has been generally available for... --- ### Windows Server 2022 Gets Hotpatching Support, and Much More - Published: 2021-07-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2022-now-rtm-gets-hotpatching-support-and-much-more/ - Categories: Windows Server 2022 - Tags: Azure, cloud computing, Windows Server 2022 - Article Type: News Microsoft announced that Windows Server 2022 was released to OEMs for testing earlier this month. And in a presentation last week, we got more detailed information about the features included in this release. Best on Azure Microsoft is pushing Azure as the best platform for hosting Windows Server 2022. And for the first time, there will be an 'Azure Edition' of Windows Server connected to the 2022 release, which offers features not available outside of the Azure public cloud and Azure Stack. Microsoft's presentation highlighted close integration with cloud services like Azure App Service for building fully managed . NET apps, Azure Automanage for simplifying operations for Windows Server virtual machines (VM), Windows Admin Center (WAC) in the Azure portal, and Azure Kubernetes Service (AKS) on Azure Stack HCI. Secured-Core Server Windows Server 2022 will be part of Microsoft's Secured-Core program. Initially launched with hardware partners for PCs, the Secured-Core program brings secure hardware, firmware, and OS features to help protect servers against advanced threats. Using a combination of identity, virtualization, OS, and hardware defenses, Secured-Core servers have protection at both the hardware and software layers. Along with Windows Defender System Guard, which is built-in to Windows Server 2022, Secured-Core servers provide organizations with assurances of OS integrity and verifiable measurements to help prevent firmware attacks. Microsoft says: This release brings Secured-core to Windows Server to help secure the systems that would run workloads on Windows Server 2022. Secured-core builds on technologies such as System Guard and Windows Server Virtualization-based Security... --- ### AvePoint Lands on the Nasdaq Today - Published: 2021-07-02 - Modified: 2024-09-04 - URL: https://petri.com/avepoint-lands-on-the-nasdaq-today/ - Categories: Channel, Microsoft 365 - Tags: AvePoint, Channel, Microsoft 365, News - Article Type: News AvePoint is going public today - a major milestone for any company and highlights that the Microsoft 365 ecosystem continues to grow. In the world of Microsoft 365, there is an entire economy dedicated to providing services that link into Microsoft’s productivity portfolio. These are often known as MSPs or managed service providers and sometimes known as VARs, or value-added resellers. While MSPs and VARs are different types of services, the net result is that under the umbrella of Microsoft 365, the MSP and VAR ecosystem is vibrant and with Microsoft on a healthy trajectory upward, the outlook continues to be positive. In fact, Petri partially lives in this ecosystem as we provide deep technical guides, how-to, webinars, and virtual conferences to help educate our readers about the products and services but today, one partner, AvePoint, is hitting a major milestone. AvePoint is passing a significant milestone today by becoming a publicly listed company on the NASDAQ. With more than 7 million AvePoint cloud users and a global workforce that was pushed deeper in digital collaboration in 2020, AvePoint is going public to capitalize upon the rapid growth of Microsoft 365. Earlier this week, I had the opportunity to talk with Dr. Tianyi (TJ) Jiang, the CEO of AvePoint, about where the company is headed and what makes AvePoint stand out in a marketplace that is becoming increasingly competitive. AvePoint was founded in 2001 and has been operating in the Microsoft 365 space for decades. Microsoft 365 is a relatively new term but AvePoint found its footings with SharePoint 2003 by building a tool that streamlined the migration of data between iterations... --- ### What's New with Power Platform - June 2021 - Published: 2021-07-01 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-power-platform-june-2021/ - Categories: PowerApps - Tags: power apps, Power Automate, Power BI, Power Platform, Power Virtual Agents - Article Type: News The year is halfway over! That is crazy to think about, so I won't. Either way, welcome to the second half of the year where Power Platform continues to rise higher and higher like the mercury here in the Northern Hemisphere. I hope you are staying cool, sitting by the pool, reading all of these delightful updates. Though I will see most of them are very specific, nothing all-encompassing or earth-shattering this month. Power Apps adds support for NFC tags Very handy. Everyone loves barcodes with their apps but what if you are in dirty or dark conditions? Barcodes get hard to scan real fast. In come NFC tags or stickers. You could place them on products or locations and then use your mobile phone to read info from the tags. Opens a lot more possibilities for more robust apps. You can read the Microsoft NFC announcement here or learn how to build an app with my PowerApps NFC video. Power Apps now supports delegation for Salesforce I couldn’t find an actual announcement for this, maybe it is out there, but if you spy the delegation documentation you will see there is now a listing for PowerApps Delegation with Salesforce. This allows you to create more robust Power Apps solutions when Salesforce is your data source. You can now user Filter, LookUp, Search, Sort, and SortByColumns with delegation. Very cool for all of you people that still have your data in Salesforce. Power BI has built-in report for you to... --- ### What's New with Azure– June 2021 Edition - Published: 2021-07-01 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-azure-june-2021-edition/ - Categories: Microsoft Azure - Tags: AMA, Application Insights, ARM, ARM Templates, Azure Arc, Azure Automanage, Azure Backup, Azure Key Vault, Azure Key Vault Managed HSM, Azure Log Analytics, Azure Monitor Agent, Azure Portal, Azure Regions, Azure Resource Manager, Azure Security Center, Azure Sentinel, Azure Site Recovery, Azure Storage, Azure Storage Account, Azure Virtual Machines, Azure VM Image Builder, Azure Web Apps, Credit-Based Bursting, Disk Bursting, ExpressRoute, ExpressRoute Global Reach, MARS, NVIDIA, On-Demand Bursting, Template Specs, X-Cloud, Xbox - Article Type: Opinion July is here and we are halfway through the year. Am I the only one that feels like 2021 is zipping by? I have been working non-stop for the last 6 months preparing for and migrating legacy workloads from a data center to Microsoft Azure and I have barely had time to look up from my monitor. But that ends next week – I will be looking back on this series of articles and finding things that I need to start playing within the lab! And maybe I’ll try to get a gaming controller for my iPad. Template Specs Are Generally Available While “Bicep” (the higher-level language alternative for ARM/JSON) has been getting all the publicity, the new ARM feature that I’ve been looking forward to is Template Specs. One of the ambitions of templates is that you can create a “best practice” way of deploying something. This might be a template that deploys a simple workload or even just a single resource type (referred to as a module). Wait – isn’t Blueprints for this? Blueprints have been in preview for ... I’ve lost track of how many years it’s been. Blueprints are D-E-A-D. OK, the official line is that Blueprints are still supported, etc, but they are D-E-A-D. So, I have this great module and I want to share it. How do I do that? Some of us create libraries that we share it using DevOps or GitHub (probably a better choice, technically, thanks to raw file sharing). But... --- ### What's New with Windows – June 2021 Edition - Published: 2021-07-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-windows-june-2021-edition/ - Categories: Windows 11 - Tags: Windows 11, Windows Server 2022 - Article Type: News Microsoft launches Windows 11, Windows Server 2022 gets hotpatching, and ARM64EC promises to make it easier for developers to port x64 apps to ARM. It's a bumper news month and possibly the most interesting in many years for Windows. Microsoft launched Windows 11 at a special event on June 24th. And while a leaked build surfaced on the Internet a week before the event, that didn't dampen enthusiasm for Microsoft's reimagined version of Windows. So, let's get started. Microsoft launches Windows 11 Windows 11 is designed for a new era of hybrid work and it puts users at the center of the experience. The new OS is an evolution of today's Windows experience, bringing a refreshed, modern UI and improvements under the hood for better performance, security, and management. A refreshed user interface and features for productivity Windows 11 gets a new centered Start menu and taskbar. Live Tiles are out and replaced by static app icons that can be moved and pinned. And rounded corners are now featured throughout the OS for a more modern feel. Most of the inbox apps are also redesigned in Windows 11, including updates to File Explorer, Photos, and the Calendar and Mail apps. Snap Layouts and Snap Groups Snap Layouts and Snap Groups bring productivity enhancements to the desktop. Snap Layout is like FancyZones in PowerToys, allowing users to quickly arrange windows on the desktop using preconfigured layouts. Snap Groups is part of a new docking experience that promises to preserve users' window... --- ### Guide: How to Plan for Microsoft Defender Endpoint Deployments and Migrations - Published: 2021-07-01 - Modified: 2024-09-04 - URL: https://petri.com/guide-how-to-plan-for-microsoft-defender-endpoint-deployments-and-migrations/ - Categories: Microsoft 365, Security - Tags: Microsoft 365, Microsoft 365 Defender, Microsoft Defender for Endpoint, Security - Article Type: How To When approaching a rollout of Microsoft Defender for Endpoint (MDE) for your organization, it can be difficult to know where to start.   In my last article, MDE was explained at a high level: what it is and why you should care.   This time, we will get into the weeds of how to actually plan for its usage. Over the past few years, MDE's scope has increased massively: it is now available in some form across not only Windows and Windows Server, but also macOS, iOS, Android and Linux server distributions.   Feature availability differs between the operating systems, as do the tools available to deploy it and provide ongoing management.   Many other vendor endpoint security platforms (referred to henceforth as third party) offer a single console that manages everything - installation, configuration, and response - and, while strides are being made to get there with MDE, you will have to know and navigate a few management systems, depending on the state of your environment. In this article, we'll try and simplify all you need to know about introducing MDE for your organization.   You'll learn about licensing, how it MDE differs between all those support platforms, the tools available for deployment and management, and a general strategy for replacing your existing solution with it.   This is not a "click guide" and won't hold your hand through every individual button and keystroke; the aim is to give you confidence in knowing how to get the ball rolling on your Defender for Endpoint journey... . --- ### Windows 11: How to Enable the Classic Start Menu - Published: 2021-06-30 - Modified: 2024-09-04 - URL: https://petri.com/windows-11-how-to-enable-the-classic-start-menu/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Windows 11 - Article Type: How To If you prefer the 'classic' Windows 10 Start menu, or if you want Live Tiles back, then Windows 11 gives you the option to revert to the Windows 10 Start menu. Microsoft could remove the ability to switch back to the Windows 10 Start menu in Windows 11. But I expect to appease enterprise users, the setting will remain and that it will also be available to configure in Group Policy. At the time of writing, it's only possible to switch to the classic start menu by adding a value to the registry. Windows 11 Start menu provides a phone-like experience and cleaner look But before you rush to change back to the classic Start menu, consider using the new Start menu for a few weeks. In my opinion, it's a big improvement over the Windows 10 Start menu, which evolved into a bit of a mess. The new Start menu in Windows 11 provides a cleaner experience, disposing of Live Tiles and replacing them with application icons. The app icons can be moved around and arranged as you like, much like you can do on iOS and Android. The icons are arranged in pages, similar to iOS, for a more 'phone-like' look and experience. How to Enable the Classic Start Menu in Windows 11 (Image Credit: Russell Smith) Live Tiles are no great loss because developers didn't support them. And even Microsoft's own applications made limited use of Live Tiles. As there was little interest in the feature, Microsoft... --- ### How to Turn Off News and Interests with Group Policy - Published: 2021-06-30 - Modified: 2024-09-04 - URL: https://petri.com/how-to-turn-off-news-and-interests-on-the-windows-taskbar/ - Categories: Windows 10 - Tags: News and Interests, Windows 10 - Article Type: How To News and Interests on the Windows 10 taskbar is a new feature that is turned on automatically for all users of Windows 10, version 1909 and later. News and Interests is a little controversial because some people see it as more of a distraction than a useful tool. It shows the current weather next to the system tray in the taskbar. When you click on it, a panel opens displaying cards with news stories, stock, travel, and sports information. Users can customize the experience to a certain extent, choosing which cards are displayed and selecting interests to tailor the news stories. News and Interests might be useful for employees who rely on the latest information for their work. For others, it could be seen as an unnecessary toy that is better disabled. Whatever you decide for your organization, News and Interests can be turned off using Group Policy or using Mobile Device Management (MDM). How to Turn Off News and Interests on the Windows Taskbar (Image Credit: Russell Smith) Steps to Disable News and Interests using Group Policy Add feeds. admx file added to your local device or central store Set 'Enable news and interests on the taskbar' to Disabled Sign out and sign back in for it to take effect If you are not familiar with Group Policy, you should make sure you look at the following two articles on Petri first: How to Create and Link a Group Policy Object in Active Directory How to Create a Group Policy... --- ### How to Stop an Unresponsive Hyper-V Virtual Machine - Published: 2021-06-29 - Modified: 2024-09-04 - URL: https://petri.com/how-to-stop-an-unresponsive-hyper-v-virtual-machine/ - Categories: Hyper-V - Tags: Hyper-V, Virtualization - Article Type: How To It doesn't happen that often but sometimes Hyper-V virtual machines (VM) hang when you are trying to shut them down. And you end up with a VM in Hyper-V Manager with a status of 'Shutting down' that no longer responds, and it can't be forced to shut down using the normal controls. Even the PowerShell Stop-VM -Force command doesn't help. In this situation, you need to be more creative about shutting down the VM. One way is to shut down your server (or PC if you are using client Hyper-V). But that's something of a sledgehammer solution. The most important thing you need if you want to force an unresponsive VM to shut down, is the VM's GUID. Using the GUID, you can find the VM's CPU process ID and kill it. Force a Hyper-V virtual machine to shut down by killing its process Using the method below is only recommended if the VM is not responding to a shutdown command from Hyper-V Manager or using the PowerShell Stop-VM -Force command. The following commands must be run in Windows PowerShell as a local administrator. The method below requires Windows PowerShell. It doesn't work in PowerShell 6 or later versions. In an elevated Windows PowerShell prompt, start by using Get-VM to find the VM's GUID. You will need to know the name of the unresponsive VM to do this. If you need to confirm the VM's name, just run Get-VM to see a list of all the VMs running on the... --- ### How to Download and Install Windows Admin Center - Published: 2021-06-29 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-and-use-windows-admin-center/ - Categories: Windows Admin Center, Windows Server - Tags: Windows Admin Center, Windows Server - Article Type: How To Back at Microsoft Ignite 2017 in Orlando, FL, I attended the session where 'Project Honolulu' was announced and demonstrated. This was a fresh, built-from-scratch new server management tool for Windows Servers, Windows 10, and Azure resources. I do recall there being a large number of applause sessions from all the IT Pros in the audience! When the product officially went live on April 12, 2018, they christened it 'Windows Admin Center. ' In this article, I will show you how to download and install Windows Admin Center (WAC). Windows Admin Center Installation You can install the Windows Admin Center MSI on any supported version of Windows Server, Windows 10, or Windows 11. It only needs network access, of some kind, to the servers and computers you wish to manage. For this guide, I'll be using my Windows Server 2022 Hyper-V AD lab environment. I'll be installing the tool on a small file server running the latest version of Windows Server 2025 (in the Windows Server Insider Program), due to be released during the 2nd half of 2024. Let's see how things go. Download Windows Admin Center Windows Admin Center is available for download as a Microsoft Install (MSI) file. You can download Windows Admin Center from Microsoft’s website. The link provides you with the latest version of WAC. Once WAC has been installed, it is updated automatically using its internal updating mechanism and/or Microsoft (Windows) Update. Install Windows Admin Center Now let's install Windows Admin Center. Copy the MSI file... --- ### Microsoft Details Hardware Needed to use DirectStorage in Windows 11 - Published: 2021-06-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-hardware-needed-to-use-directstorage-in-windows-11/ - Categories: Windows 11, Windows Client OS - Tags: Directstorage, Microsoft, Windows 11 - Article Type: News With the release of Windows 11, Microsoft is bringing many new features to the OS. Everything from a new UI, to a new update cadence, and even Xbox features are making the move to the desktop. Microsoft announced several Xbox features coming to the desktop including Auto-HDR, DirectStorage, and a couple of gaming services too. But for many of us, knowing what the requirements are for DirectStorage will be crucial for selecting the components for our next PCs. I reached out to Microsoft about this because it looks like I might be in the boat of having to buy new hardware as I am not sure if my current box will support Windows 11. So, if you are looking to re-build your desktop, a Microsoft spokesperson provided the following specs to be compliant with the DirectStorage feature: At a minimum, DirectStorage requires a PCIe 3. 0+ NVMe SSD to store and run games that use the "Standard NVM Express Controller" driver and a DirectX12 GPU with Shader Model 6. 0 support This spec is a bit lower than I was anticipating, I was expecting it to require PCIe 4. 0. Seeing as only 3. 0 (or better) is required, this opens the door to a much wider audience for being able to access this feature. We are still in the early days of Windows 11 and understanding the features and components of the operating system. But with the first build now out in the open, we are learning quite a bit more with each... --- ### Microsoft Can't Tell Us the Chips Windows 11 Will Support - Published: 2021-06-28 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-cant-tell-us-the-chips-windows-11-will-support/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, System Requirements, Windows 1 - Article Type: Overview Earlier today, Microsoft released its first build of Windows 11 to Insiders and it is filled with UI updates and other enhancements that improve Windows in ways that are subtle, yet impactful. Generally speaking, Windows 11 looks like a respectable update to Windows 10 at first impression but the story around compatibility is causing more friction than it should. Microsoft tried to clear a few things up today but in reality, they did not improve the transparency around older hardware compatibility and created more uncertainty In the new blog post, Microsoft places the line in the sand for compatibility as conditioned by three pillars: security, reliability, and compatibility. These breakdown into Windows 11 supporting features like Windows Hello, Device Encryption, virtualization-based security (VBS), hypervisor-protected code integrity (HVCI), and Secure Boot for security. Reliability is linked to CPUs that support the new Windows Driver model but the supporting document mentioned in the post also references the now-defunct Windows 10X. And for compatibility,  the post re-states the better-than 1GHz, 2-core processors, 4GB memory, and 64GB of storage line that was previously stated. This information is not new but the post goes on to state that by using the pillars listed above, the company believes that “running on Intel 8th generation processors and AMD Zen 2, as well as Qualcomm 7 and 8 Series, will meet our principles around security and reliability and minimum system requirements for Windows 11” but that’s not the end of the story. The original post also stated Microsoft... --- ### A Closer Look at Microsoft's First Build of Windows 11 - Published: 2021-06-28 - Modified: 2024-09-04 - URL: https://petri.com/a-closer-look-at-microsofts-first-build-of-windows-11/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, Windows 11 - Article Type: Overview Microsoft has released the first build of its 'next-generation' operating system that will be known as Windows 11. Featuring significant UI updates and new system requirements that are causing quite a few headaches, Windows 11 is anything but ordinary. In this release, there are many new features that we have not seen before like app updates, the new store, settings, and File Explorer. But there are a couple of items that are not included like support for Android apps and the new Teams experience. https://www. youtube. com/watch? v=2YCSQAjOtzQ As you can see from the walkthrough, the build is not quite yet complete and there are a few sharp edges that need to be worked out before release. That being said, considering that this is the first release, it's relatively complete from what we have seen in previous years when it comes to Windows updates. If you want to download a build for yourself, the best way to do that is to follow these instructions. --- ### Microsoft Unveils Office Refresh to Match Windows 11 > Today, the company is unveiling updates coming to Office that will update the interface to match that of the upcoming OS and features rounded corners and a floating ribbon. - Published: 2021-06-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-office-refresh-to-match-windows-11/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Office, Office Refresh - Article Type: News First look at Office app updates that match Windows 11 theme. Late last week, Microsoft announced Windows 11 and with it comes a significant update to the user interface. Today, the company is unveiling updates coming to Office that will update the interface to match that of the upcoming OS. If you are an Office Insider, you will soon see a new design that looks familiar but also different. As you can see in the image at the top of this post, Word now has a floating ribbon design, rounded corners, and updated buttons too. The changes are enough that the applications feel more in-line with Windows 11 but it is not all that different from what the company is shipping today. And that is likely by design, moving items around inside of productivity apps can create a bit of chaos for users if the interface is updated significantly. Overall, it’s a modest change to the Office experience and shows that Microsoft did not develop Windows 11 in isolation. The company worked with many internal teams to make sure that popular applications and experiences are updated to match the interface of Windows 11. One thing that did not change with this refresh are the icons. Microsoft appears to have stayed with the same icons in the ribbon and on the taskbar from the previous release of Office. That being said, the company still has plenty of time to update the icons, if they so choose, or... --- ### Microsoft Releases First Build of Windows 11, This Is What's New > To get started, Microsoft requires that you join the Insider program as that's where this first release is being distributed. To get the latest release, you will need to be in the Dev channel but builds will eventually move to the Beta channel. - Published: 2021-06-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-first-build-of-windows-11-this-is-whats-new/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, News, Windows 11 - Article Type: News Today is the day many Windows fans have been waiting for, the first build of Windows 11 is now available to download. While not every new feature is in this release, there are many that are included - don't forget to check your device compatibility before downloading the update too. To get started, Microsoft requires that you join the Insider program as that's where this first release is being distributed. To get the latest release, you will need to be in the Dev channel but builds will eventually move to the Beta channel. Microsoft has also indicated that they will eventually release ISOs for direct, clean installs, but that download is not available today. Here's what's new in Build 22000. 51 that is now rolling out to Windows Insiders: Windows 11 has a new Start menu design that is centered. In this release, the new Start menu and centered Taskbar icon experience is included. This is one of the biggest updates to the OS but also feels familiar at the same time. Windows 11 context menus now match theme of the OS. Also included in this release are new context menus that look significantly better than what is available today in Windows 10. You can right-click on the Taskbar to open these items and see the new UI. Windows 11 action center update with new UI. Microsoft has overhauled the notification center and quick settings in this release. There... --- ### How to Rename Your SharePoint Domain in Microsoft 365 - Published: 2021-06-28 - Modified: 2024-09-04 - URL: https://petri.com/how-to-rename-your-sharepoint-domain-in-microsoft-365/ - Categories: SharePoint, SharePoint Online - Tags: Microsoft, Rename, SharePoint - Article Type: How To A long-requested feature in SharePoint Online is the ability to change the URL of the top-level SharePoint site.   This setting is determined by the tenant name you choose when your tenant was first created, meaning the URL will always be https://. sharepoint. com.   Poorly considered tenant name choices, along with company rebranding or renaming, are just a few reasons that many organizations may find themselves planning a challenging and disruptive tenant to tenant migration they could potentially avoid if they could simply change this URL. Thankfully, Microsoft has recently announced that this will soon be possible in Microsoft 365. At the time of writing, this feature is in a private preview that you need to sign up for and request access.   Once submitted you may expect an email response within 10 business days (Figure 1). Figure 1: SharePoint domain name change   While you wait for approval to come through, give some thought to the URL that you would like to set.   You will add this from the custom domain names section of the Azure Active Directory portal.   In Figure 2, we see the new domain sharepointrocks. onmicrosoft. com successfully added and verified to my tenant. Figure 2: New custom domain name   Note: you are only able to verify a new custom domain to your tenant if it is available and not already in use on another tenant.    When the domain is successfully added, and Microsoft confirm your tenant has been added to the preview, you may use the latest version of the SharePoint... --- ### How to Enable Nested Virtualization in Windows 10 Hyper-V - Published: 2021-06-28 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-nested-virtualization-in-hyper-v/ - Categories: Hyper-V - Tags: Hyper-V, Virtualization, Windows Server - Article Type: How To Hyper-V is the built-in hypervisor that comes free in Windows and Windows Server. It is used to run virtual machines (VM) on Windows. Virtualization is also used for other features, like Virtualization-Based Security (VBS), Windows Sandbox, and Windows Defender Application Guard (WDAG). Developers sometimes use virtualization with Visual Studio to run device emulators. Microsoft introduced support for nested virtualization in Windows Server 2016. Nested virtualization lets you turn on Hyper-V inside a VM guest running on a Hyper-V host. So, you can think of it like a VM running inside a VM. There are a few prerequisites that you need to meet before you can use nested virtualization. The VM configuration must be version 8. 0 or higher. And nested virtualization is only supported on Intel CPUs with virtualization (VT-x) and Extended Page Tables (EPT). Nested virtualization on AMD CPUs Nested virtualization is available on Windows 10 build 19636 and later. As far as I understand, AMD support will be officially available as part of Windows 11 and Windows Server 2022. Both products are expected in the second half of 2021. Create a virtual machine Nested virtualization isn't enabled by default. And it is enabled on a per VM basis. The first step is to create at least one VM on your Hyper-V host, whether it be Windows 10 or Windows Server. If you've never set up a virtual machine in Windows before, you can check out the guides below on Petri. Guide: How to Install Windows 10 in a... --- ### Clearing up Windows 11 Compatibility, It's Easy and Frustrating - Published: 2021-06-25 - Modified: 2024-09-04 - URL: https://petri.com/clearing-up-windows-11-compatibility-its-easy-and-frustrating/ - Categories: Windows 11, Windows Client OS - Tags: Microsoft, News, Windows 11 - Article Type: News This week has been a mixed bag of excitement and confusion. The excitement has been associated with the features that Windows 11 will bring to the desktop but the confusion is tied to what devices will actually be able to run Windows 11. At first, Microsoft had two different lists of minimum specs but has since updated the documents to align with one specific requirement. For the vast majority of users, the issue comes down to two things: TPM and chip support. In reality, it's only one issue as TPM 2. 0 has been included in many chipsets for years and what it comes down to is figuring out how to turn on the feature. If you need help doing that, here is a helpful guide. The other issue is if your chip supports Windows 11 and the answer is simple. If you have an Intel chip, check this list, and if you have an AMD chip, check this list. If your chips are not on these lists, you will not be able to run Windows 11 according to Microsoft. That's it, the list is the official document that defines your ability to upgrade or not. https://twitter. com/dispensa/status/1408582402998341633 So this means for Intel users, if you have an 8th gen chipset or newer, you are able to upgrade. But if you are like me and have an i7-7700k chip, even though it is still a quite capable chip, Windows 11 will not be supported. Microsoft could update this list as the 7700k... --- ### How to Enable TPM for Windows 11 and Solve Compatibility Issues - Published: 2021-06-25 - Modified: 2024-11-19 - URL: https://petri.com/how-to-enable-tmp-for-windows-11-and-solve-compatibility-issues/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Microsoft, TPM, Window, Windows 11 - Article Type: How To If you are having trouble determining if your PC is compatible with Windows 11, here are all the steps you can take to make sure you device will run the new OS. Microsoft has officially announced Windows 11 and with it comes a new UI, a new servicing model, and a strict new requirement for the minimum specs that are required to run the OS. In this post, I will help you understand the steps you can take today to make sure your computer is ready for the OS when it ships later this year. At the foundation of Windows 11, there are two major changes that are impacting users and Microsoft has a Windows 11 tool that can help you understand any blockers on your specific device - you can download the tool here. Microsoft provides the following hardware guidance for Windows 11: Processor: 1 gigahertz (GHz) or faster with 2 or more cores on a compatible 64-bit processor or System on a Chip (SoC) RAM: 4 gigabyte (GB) Storage: 64 GB or larger storage device System firmware: Trusted Platform Module (TPM) version 2. 0 Graphics card: Compatible with DirectX 12 or later with WDDM 2. 0 driver S mode is only supported on Home edition of Windows 11. If you are running a different edition of Windows in S mode, you will need to first switch out of S mode prior to upgrading. Configuring TPM Starting with the TPM scenario. The reality here is that for most users, this will not be a problem (as long as you have a newer CPU). But where many people are running into problems is that their TPM is not enabled or needs to be configured. The first... --- ### Microsoft Teams "2.0" Will Deliver Big Performance Improvements - Published: 2021-06-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-2-0-will-deliver-big-performance-improvements/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Teams, Teams 2.0 - Article Type: News Teams is the backbone of Microsoft’s modern communication platform and is the hub of productivity inside the Microsoft 365 suite of tools. But one of the problems with the application, as it exists today, is that it consumes a lot of resources that drag down performance. With Windows 11 that was announced today and a new Teams consumer experience in the OS, Microsoft is making big changes to the underlying components of the application to improve performance. Rish Tandon, the CVP Engineering for Microsoft Teams, posted on Twitter that his team is taking a major step to update the architecture of the platform. The app is moving away from Electron to Edge Webview2 and that Angular is gone and the app is now 100% running on React. js. As noted by Tandon, the changes that Microsoft has made to Teams 2. 0, as he calls it, will consume half the memory of a consumer account when compared to version 1. 0. That’s a significant change for Teams and should help improve performance. Of course, the missing component is when will everyone be upgraded to “Teams 2. 0”? The first opportunity will be when Windows 11 rolls out but that’s primarily focused on the consumer aspect of the platform. For corporate customers, we don’t have a timeline yet but if you have users complaining about performance, know that there is hope on the horizon. --- ### IT Pros: These Windows 10 Features Won't be in Windows 11 - Published: 2021-06-24 - Modified: 2024-09-04 - URL: https://petri.com/it-pros-these-windows-10-features-wont-be-in-windows-11/ - Categories: Windows 10, Windows 11, Windows Client OS - Tags: Microsoft, News, Windows 10, Windows 11 - Article Type: News With the release of Windows 11, Microsoft is taking the opportunity to prune Windows 10 of some features that were not used or are not applicable with the new OS. Starting this fall when the OS is released, the company is cutting several features that IT Pros will likely need to educate or be aware of, before migrating users. On the positive side of the cutting floor, Cortana has been removed from the setup experience. No more Cortana screaming at you about signing in or adding WiFi during the setup process. News and Interests, which was a late addition to Windows 10 is also going away, some may see this as a positive, but it is being replaced by widgets in Windows 11. On the other side of the coin, Windows 10 S mode will only be available in the Home edition of Windows 11. Meaning, if you were using S functionality, with Windows 11, that’s no longer an option in a corporate environment. Windows 11 will introduce a new Start menu which means big changes are coming to your old content in your Windows 10 Start menu. Microsoft says that named groups and folders of apps are no longer supported and the layout is not currently resizable and pinned apps and sites will not migrate. It’s the second point of depreciation that is important: if you have users who only know how to get to a site via it being pinned, time to move to browser bookmarks. For the... --- ### Microsoft Provides Clarity for Windows 11 Licensing Requirements, 21H2 but not LTSC - Published: 2021-06-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-provides-clarity-for-windows-11-licensing-requirements-21h2-but-not-ltsc/ - Categories: Windows 11 - Tags: licensing, Microsoft, News, Windows 11 - Article Type: News With the release of Windows 11, Microsoft is changing many aspects of how the OS operates. Everything from a new UI, to new system requirements, and even to simplifying the update process too. But when it comes to licensing the OS, Microsoft has a rich history of over-complicating the structure to make it difficult to know if your software is properly licensed. Thankfully, with Windows 11, there are not many changes when compared to Windows 10. Microsoft officially states: There are no unique licensing requirements for Windows 11 beyond what is required for Windows 10 devices. Microsoft 365 licenses that include Windows 10 licenses will permit you to run Windows 11 on supported devices. If you have a volume license, it will equally cover Windows 11 and Windows 10 devices before and after upgrade. The one minor difference is that you can now run Windows 10 and Windows 11 side-by-side in your environment. For Windows 10 Home users, you can upgrade to Windows 11 for free. These changes are actually welcomed in that Microsoft is not making it more complex to run Windows 11. While licensing fees are still tied to volume licensing plans and those fees could still rise or fall (ha! ), at least you won’t have to jump through any additional hoops to move your users from Windows 10 to Windows 11. And that is the point. Microsoft has stated that they will ship a build of Windows 10 21H2 this fall alongside Windows 11, but that will... --- ### With Windows 11, Everyone Gets Teams - Published: 2021-06-24 - Modified: 2024-09-04 - URL: https://petri.com/with-windows-11-everyone-gets-teams/ - Categories: Microsoft Teams, Windows 11 - Tags: Microsoft, News, Teams, Windows 11 - Article Type: News Today, Microsoft announced their newest OS, Windows 11. Along with updates to the UI, the servicing models, and a lot more, the company is also baking Teams into the OS. With Teams now being a default app in Windows 11 and now that home users are required to connect to the Internet and have an MSA, this is Microsoft's plan to boost the adoption of the platform. The company's reasoning is that with this inclusion, it makes it easier for you to connect to anyone using Windows and this move shouldn't be all that surprising. Teams is the company's collaboration platform and has seen significant adoption in the commercial markets. More than 145 million people use Teams every day and the company is looking to grow its consumer presence with the platform by baking it into the OS. This also means that Skype is going away. Microsoft has quietly been pushing users towards Teams in the consumer space with the launch of features for families and the company has previously announced that Skype For Business is officially being sunset. The big question will be if this inclusion will help grow the userbase in any meaningful way outside of the business segment. There is significant competition in this space with WhatsApp, Telegram, Signal, and many more but with Windows running on 1. 3 billion devices, this will certainly add new users to the application. --- ### Microsoft Overhauls Windows 11 Servicing, One Update Per Year - Published: 2021-06-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-overhauls-windows-11-servicing-one-update-per-year/ - Categories: Windows 11 - Tags: Microsoft, Windows 11, Windows 11 updates - Article Type: News Today, Microsoft announced Windows 11 and the company is making sweeping changes across all corners of the OS. Everything from a new Start menu, updated system requirements, and now, updated servicing models. Microsoft is finally granting all of our wishes and will be moving to one major update to the OS per year. This moves away from the previous model where two major updates were shipped per year with varying servicing windows. To simplify lifecycle support, Windows 11 will move to a cleaner cadence. Starting with the new OS, Windows 11 Home and Pro editions will be supported for 24 months and Enterprise and Education editions will be supported for 36 months. Yes, you read that right, 36 months, not 30 months to force you to upgrade early, Microsoft is finally taking the proper steps to make running Windows at work or at school, much easier to manage. It took Microsoft to ship a new OS to finally rectify the support lifecycle of Windows but late is better than never. I also suspect that with an easier-to-manage update cadence, this may entice some companies to move to the OS sooner, rather than later. Another question we don't know the answer to yet is if the version of Windows 10 that shipped this spring is the last version of Windows 10. Windows 11 will arrive in the fall which means that Windows 10 21H1 should be the last release as it would be a bit awkward to ship Windows 10 21H2... --- ### Microsoft Updates Windows 11 Minimum Specs, Internet Now Required - Published: 2021-06-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-windows-11-minimum-specs-internet-now-required/ - Categories: Windows 11 - Tags: News, System Requirements, Windows 11 Microsoft has pulled back the curtains today on Windows 11 and along with new features and an updated interface, the company is making changes to the minimum specs to run the OS as well. These updates will only impact low-end devices and the majority of devices running Windows 10 today, will be able to run Windows 11 too. Notably, to install Windows 11 Home, an internet connection is now required but for enterprise customers, you will still have an offline setup option. Further, for Home users, you will also need to create an MSA (Microsoft account). In addition to the connection requirement, a dual-core 64bit CPU, 4GB of RAM, and 64GB of storage are now the baseline requirements. These are modest changes but do move the baseline forward for Windows and this also means that every device running Windows 10, may not be able to run Windows 11. But the real change is for the Windows 11 Home configurations requiring Internet and an MSA as that may not sit well with users who are concerned with tracking. Microsoft previously faced issues with Windows 10 telemetry in various markets and made several updates to Windows 10 to address these concerns. The concept of forcing the user to create an account for the OS is not new and the functionality has been baked into Windows 10 for years. Other operating systems also push similar requirements but expect to hear loudly from privacy advocates that Windows 11 will be a step backward when... --- ### Microsoft Announces Windows 11 with UI Updates, Android Apps, and More - Published: 2021-06-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-windows-11-significant-ui-updates/ - Categories: Windows 11 - Tags: Microsoft, News, Windows 11 - Article Type: News Microsoft is officially pulling back the curtains today on Windows 11 and the company is ready to make the biggest changes to the OS is several years. Featuring a new Start menu, widgets, rounded corners throughout the OS, and productivity enhancements, Windows 11 is a new look for Microsoft. Keep in mind that to run the updated OS, there are new system requirements but for most devices, Windows 11 should install without any significant issues. That being said, if you are running older hardware, along the lines of a single-core CPU or an early-dual core system, you may want to think about upgrading or holding off a bit before installing the software. Windows 11 has a new start menu that blends Windows 10X design with a dash of Windows 10 and also surfaces files directly in the menu for quick access to recently used documents. Windows 11 updates are up to 40% smaller, more secure, and is focused around the new centered start menu that is centered on the display. The company is also committing to updating Windows 11 once per year with 24 months of support for Home/Pro and 36 months of support for the enterprise. There is a new Snap Layouts feature that the PC will remember (thankfully) that will open your Windows where you last left them. There are also new animations for opening and closing windows.   With Windows 11, an emphasis is placed on Snap Groups and docking experiences, the goal is to bring the... --- ### Guide: How to Install Windows Server 2019 - Published: 2021-06-24 - Modified: 2024-09-04 - URL: https://petri.com/guide-how-to-install-windows-server-2019/ - Categories: Windows Server 2019 - Tags: Windows Server, Windows Server 2019 - Article Type: How To Windows Server 2019 is almost as easy to install as Windows 10. And in this article, I'm going to take you step-by-step through the process of installing Windows Server 2019. Windows Server 2019 installation media If you don't have access to the Windows Server 2019 . iso directly from Microsoft or a partner, you can download an evaluation version from Microsoft's website here. If you are installing Windows Server on a physical server, you will need to create bootable media. The most common way to do this is to create a bootable USB drive. You can find instructions on how to do that here on Petri. If you want to install Windows Server 2019 in a virtual machine (VM), see the instructions here on Petri. Install Windows Server 2019 Make sure that your hardware is configured to boot from your Windows Server 2019 media and start the server. In this article, I'm going to assume that you will install Windows Server 2019 with the Desktop Experience. Now follow the instructions below. Press any key on your keyboard when prompted to boot from the Windows Server media. In the Windows Setup dialog, choose a language, time and currency format, and keyboard and input method. Once you're done, click Next. How to Install Windows Server 2019 (Image Credit: Russell Smith) Then click Install now. Now select the edition of Windows Server 2019 that you want to install. In this example, I'm going to install Windows Server 2019 Datacenter Evaluation (Desktop Experience)... --- ### Guide: How to Migrate Tenant to Tenant Telephone Numbers in Office 365 - Published: 2021-06-23 - Modified: 2024-09-04 - URL: https://petri.com/guide-how-to-migrate-tenant-to-tenant-telephone-numbers-in-office-365/ - Categories: Microsoft Teams - Tags: Microsoft 365, Office 365, Phone Numbers, Tenant Migration - Article Type: How To Microsoft Teams has grown massively in the last 12 months, growing from 44 million active users in April 2020 to over 145 Million users in April 2021. But the business world doesn’t stop; mergers, acquisitions, divestitures is part of the everyday challenge for the IT Pro. Voice and how we use voice in Microsoft Teams is also very much part of the "modern office" in which many of us live today.   One aspect we are going to review today is how do we look at moving numbers from tenant to tenant. Microsoft believes this is a relatively straightforward task, but there are plenty of things that we need be mindful of should we want this to be seamless. The first task we need to do is to have the information required. Source Tenant domain name To find the source Tenant domain name: Log in to your Office 365 Admin Center as an administrator. Under Setup click on Domains (or just click here). Find the domain that ends with . onmicrosoft. com , this is your Office 365 tenant name. Source tenant unique identifier The tenant unique identifier is often known as a globally unique identifier or GUID.   To find this from within the Azure AD admin center: Your tenant ID can be found in the Tenant ID box on the Properties page.   Destination Tenant name and a unique identifier We also need this same information for the destination tenant, follow the above steps to get the Office 365 destination tenant domain name, the Office 365 destination tenant unique identifier. Numbers The Number(s)... --- ### How to Manage Windows Update Using PowerShell - Published: 2021-06-23 - Modified: 2024-09-04 - URL: https://petri.com/how-to-manage-windows-update-using-powershell/ - Categories: PowerShell, Windows Client OS - Tags: PowerShell, Windows Server, Windows Update - Article Type: How To In this article, I will look at both Microsoft's Windows Update provider for PowerShell in Windows Server 2019. And I'll show you how to use the third-party PSWindowsUpdate PowerShell module that most system administrators still prefer to use. Microsoft's Windows Update PowerShell provider Microsoft's Windows Update PowerShell provider (WindowsUpdateProvider) comes preinstalled in Windows Server 2019 and later versions of Windows. You can list the available cmdlets in the module installed using Get-Command: Get-Command -Module WindowsUpdateProvider The Start-WUScan cmdlet initiates a scan without installing any updates. It looks for available updates that apply to the device. You can add filters to search for updates in specific categories, like software for example. The command below scans the device for updates that are not already applied to installed software: $Updates = Start-WUScan -SearchCriteria "Type='Software' AND IsInstalled=0" Microsoft doesn't have any comprehensive online documentation WindowsUpdateProvider but you can find information about the syntax you should use for -SearchCriteria in the API documentation here. Once you've performed a scan, you can use the object we created ($Updates) to install the updates with Install-WUUpdates: Install-WUUpdates -Updates $Updates How to Manage Windows Update Using PowerShell (Image Credit: Russell Smith) You can also add the -DownloadOnly switch to download the updates but not install them: Install-WUUpdates -Updates $Updates -DownloadOnly Another useful command, Get-WUIsPendingReboot, shows you whether the device is waiting to be rebooted after installed updates. Get-WUIsPendingReboot Let's create a share on the local server for storing Windows Update logs generated by PowerShell. The computer name of... --- ### Microsoft Passes $2 Trillion Market Cap - Published: 2021-06-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-passes-2-trillion-market-cap/ - Categories: Microsoft - Tags: Microsoft - Article Type: News In the world of public companies, there are major milestones like going public and stock price splits. For Microsoft, there is going public, hitting a valuation of 1 trillion dollars and today, hitting 2 trillion dollars. Microsoft's growth during 2020 was driven by a massive movement to remote work for nearly every major corporation. The company's productivity suite and cloud services pushed stock prices higher and today, at a price of $265. 45 per share, the company's valuation officially hit 2 trillion dollars. To put that growth into perspective, it took Microsoft 16092 days to reach its first trillion-dollar valuation, and to add another trillion dollars to its market cap, it took only 789 days. While the scale is not linear, the growth of the tech giant is expected to continue and it's not unreasonable to assume that it could hit 3 trillion dollars in the next two years. Of course, being able to predict future growth for a company of this size is challenging and there are many factors that could eventually work against the company, including regulation. Market cap is the price of the shares multiplied by its total outstanding share and is primarily used for valuing a company that could be acquired. Considering Microsoft's massive valuation right now, no one is going to be trying to pick up the Redmond-based giant to add to their portfolio. Essentailly, for a company this size, market cap is a statistic without much value. As of the time of this post, the... --- ### Microsoft Indefinitely Delays Joining Teams Meeting with Digital ID - Published: 2021-06-22 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-indefinitely-delays-joining-teams-meeting-with-digital-id/ - Categories: Microsoft Teams - Tags: Microsoft 365, Microsoft Teams, Teams - Article Type: News Earlier this year, Microsoft announced that they would be enabling a new way to join Teams meetings that didn’t use links. Unfortunately, the feature is not only delayed but the company is not providing a timeline for when it will arrive. In an updated message, MC248395, Microsoft says that they are evaluating feedback and are not moving forward with rolling out this feature. The company says to look for a new message center update in the future about how these plans will change but there is no guidance on when this feature could arrive. This feature is sorely needed with Teams – while the platform has matured, the process for joining meetings isn’t as good as other services. For external parties trying to join the conversation, if they don’t have a link, there are no other options. What Microsoft was trying to implement is that if you didn’t have the link, a user in the meeting could share a meeting ID number that you could enter to join the conversation. Microsoft showing how to join a meeting with a code instead of a link. While it’s a bit disappointing that this feature is not going to arrive soon, the silver lining is that hopefully, they are revamping the feature to support custom links for pop-up meetings. Other services allow you to use the same link for quick meetings rather than having unique IDs for every event. Microsoft has also updated the timeline for rolling out the... --- ### How to Use Known Issue Rollback to Fix Problems Caused by Windows Updates - Published: 2021-06-22 - Modified: 2025-02-25 - URL: https://petri.com/windows-servicing-how-to-fix-issues-caused-by-windows-cumulative-updates-using-known-issue-rollback/ - Categories: Windows 10 - Tags: How To, Windows 10, Windows Server, Windows Update - Article Type: How To The technology that underpins Known Issue Rollback first appeared in Windows 10 version 2004. Known Issue Rollback, or KIR for short, lets Microsoft and IT administrators quickly roll back non-security fixes that are causing functionality issues in Windows. Known Issue Rollback is designed to help Microsoft and organizations keep Windows devices secure but make sure users remain productive. Because security and non-security fixes are bundled together in single monthly cumulative updates, KIR provides a way for Microsoft to disable problematic code in CUs without impacting security fixes or other non-security fixes in an update. Known Issue Rollback for non-security bug fixes KIR is a Windows servicing feature that lets Microsoft revert non-security fixes applied to Windows that might be impacting devices. Microsoft built KIR in response to customer feedback about Windows Update. In each monthly cumulative update (CU) that Microsoft releases for Windows, many of the included fixes support KIR. So, if a serious regression is discovered, instead of uninstalling a CU from Windows, KIR can be applied to effectively turn off the problematic code without affecting other improvements, fixes, and security updates in a CU. How to Fix Issues Caused by Windows Cumulative Updates using Known Issue Rollback (Image Credit: Microsoft) KIR works at the code level. Windows developers keep the old code in place and add the required fix. If a fix needs to be reverted, KIR evaluates a policy to decide whether Windows should execute the old code path instead of the updated code that contains a... --- ### Petri Reader Survey for 2021 - Published: 2021-06-22 - Modified: 2021-06-22 - URL: https://petri.com/petri-reader-survey-for-2021/ - Categories: Main - Tags: Petri, Reader Survey - Article Type: Opinion The annual Petri reader survey helps us align our content with your interests. Every year, as part of our review to make sure that we are creating the content that aligns with the interest of our readers, we have been conducting a reader survey. For 2021, we have made several updates, related to the challenges COVID-19 has presented, along with taking a closer look at Microsoft 365 and the services being used. The survey below, or if it is not showing can be accessed here, should take about 10 minutes to complete and for those who enter their name and email, you will be entered into an Amazon gift card giveaway. Create your own user feedback survey --- ### How to Upgrade from Windows Server 2019 Core to Windows Server 2022 Core - Published: 2021-06-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-upgrade-from-windows-server-2019-core-to-windows-server-2022-core/ - Categories: Windows Server, Windows Server 2022 - Tags: Windows Server 2022, Windows Server Core - Article Type: How To Continuing my mini-series on providing IT Pros valuable assistance and guides moving their workloads, roles, and Server-based applications to Windows Server 2022, here is my guide to upgrading, in-place, from Windows Server 2019 'Core' to Windows Server 2022 'Core. ' Thankfully, the overall setup routine is similar to using the GUI (Desktop Experience) in Windows Server. But, there are some nuances and a few extra steps. Let's get to it! Quick Background - What is 'Core'? Now, now. Microsoft would be very disappointed if they heard some IT Pros asking what the 'Core' installation of Windows Server is and what it's used for - the Core installation option is the recommended option. Why? Largely for security purposes and a more nimble, efficient installation base. Being able to manage servers remotely is efficient, and oftentimes, easier. Remote management tools, like Windows Admin Center, make it very simple to monitor, manage, and perform all server-related tasks. Excluding the GUI offers a more robust and safe environment, harder for hackers to exploit. Because the vast majority of the GUI, or the Desktop Experience, is not installed, the footprint is much smaller. The fundamental structure of the O/S affords a smaller attack vector. There is no 'explorer. exe' to hack or exploit. There is a command-line and a limited graphical footprint. When you see the Windows Setup screens below, it looks, well, let's be honest - not so elegant... that's because the rich GUI development arena is missing. The engineering and development teams simulate a GUI as... --- ### Understanding Microsoft Defender for Endpoint and How It Protects Your Data - Published: 2021-06-21 - Modified: 2024-09-04 - URL: https://petri.com/understanding-microsoft-defender-for-endpoint-and-how-it-protects-your-data/ - Categories: Microsoft 365, Security - Tags: Defender ATP, Microsoft, Microsoft 365, Microsoft Defender, Microsoft Defender for Endpoint, Security - Article Type: Overview Microsoft Defender for Endpoint (MDE, previously known as Microsoft Defender Advanced Threat Protection) is Microsoft's endpoint security platform that goes far and beyond the traditional anti-malware engine and firewall to protect against the modern cybersecurity threats an organization faces.   An evolving solution since it was first announced in 2016, MDE is part of the Microsoft Defender extended detection and response (XDR) service (an overview of the entire service is available here). Enough of the abbreviations and security buzzwords. If new to Microsoft Defender, a number of questions likely come to mind.   Why should you trust Microsoft's security offerings?   Why should you care about MDE?   What's wrong with the antivirus and firewall I've been using for so long?   And, if I jump to MDE, where should I start? This article is the first in a four-part series in which we'll answer those questions. In part one, we'll explain what Microsoft Defender for Endpoint is exactly, trying to cut through the "fluff" and tell you specifically why it's something you should be interested in. Then, you'll find out what you need to know about migrating your existing organization's antivirus or endpoint solution to MDE, based on lessons from the field. In part three, the vast number of security settings and features that make up the MDE "stack" will be covered, so you know where to start hardening your environment against threats such as ransomware. In the final part of the series, we'll discuss where to go next.   By this point, you'll know... --- ### How to Easily Turn Teams Messages into Tasks - Published: 2021-06-21 - Modified: 2024-09-04 - URL: https://petri.com/how-to-easily-turn-teams-messages-into-tasks/ - Categories: Microsoft 365 - Tags: Microsoft, Tasks, Teams, To-Do - Article Type: How To When was the last time you were engaged in a communication thread and made a mental note to assign yourself a task? And then... forgot? Yep, me too. I can literally say it aloud while I'm working and lose that thought a minute later. Thankfully for our sakes, Microsoft is continuing to make it easy to capture these thoughts and tasks efficiently and unobtrusively. A core goal at Microsoft is to develop an all-inclusive workflow to help users quickly capture these fleeting moments, informal tasks you could say, as they occur and wherever they occur. They've accomplished this for emails in Outlook, and comments in Word, Excel, and PowerPoint. Starting now, you can create tasks from Teams messages on the desktop app and web. The update also accomplishes to close out one of the top customer-requested features: to have this ability natively built into Teams, instead of needing a third-party app or to engage Power Automate to accomplish the same. Capturing that task in a Teams Chat message is very easy: hover over the message, click the ellipses '... ' from the pop-out menu -> More actions -> Create task. A new task creation window opens directly in Teams for you to clarify some items and add additional details. You can add this Task to your personal To-Do lists, or if you choose to create this task in a Plan, you'll also be able to assign it to someone, note the progress, and assign it to the appropriate bucket in the Plan... . --- ### AWS Details Frankfurt Data Center Outage Cause - Published: 2021-06-18 - Modified: 2024-09-04 - URL: https://petri.com/aws-recovers-from-frankfurt-data-center-outage/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS - Article Type: News One of the things that Amazon recommends for high availability is to be sure that your services span multiple AWS regions. The need for this advice was definitely underlined last week when the AWS Frankfurt data center experienced a failure. While this sort of thing is extremely, rare it does happen. When your services can fail over to another region, this lessens the impact that these types of failures can have on your organization. However, if all of your services were located in a data center that had a failure, you would experience downtime for those cloud services. What caused the outage? In the case of the Frankfurt event, AWS experienced an outage for the availability zone in Frankfurt for three hours when the air circulation systems failed. According to Amazon’s records, the outage began at 13:24 PDT on June 10 and initially caused “connectivity issues for some EC2 instances. ” In this case, the outage lasted until 1633 PDT when network services were restored. By 1719 PDT Amazon issued an update that stated “environmental conditions within the affected Availability Zone have now returned to normal level. ” In this instance, the downtime was not caused by an actual fire or other major disaster. Instead, it was caused by a "failure of a control system which disabled multiple air handlers in the affected Availability Zone. " In other words, it was a problem with the air conditioners that cool the data center. They stopped working causing the internal temperatures in the... --- ### Microsoft Unveils Fluid Components Coming to Teams, Office, and OneNote - Published: 2021-06-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-fluid-components-coming-to-teams-office-and-onenote/ - Categories: Microsoft 365 - Tags: Fluid Components, Fluid Framework, Microsoft 365, News - Article Type: News If you haven't ever heard of Fluid in the context of Microsoft’s collaboration suite, you could be forgiven. Fluid is a framework for breaking productivity applications into components and then accessing the data inside of another application. Fluid is not a new kid on the block and was announced a couple of years ago but it’s this year that we are starting to see the fruits of Microsoft’s efforts. Earlier this year we saw new scenarios where Fluid components are being integrated into the Teams’ chat experiences and today, Microsoft is announcing new components for Teams meetings, OneNote, Outlook, and Whiteboard. The new Fluid components for Teams meetings will allow you to create agendas, take notes, assign tasks, all from inside the Teams meeting window. Now you might be thinking that you can already do this inside of Teams but the difference is that the component of the notes application, as an example, can be embedded in the meeting chat itself. If you take a look at the gif above, a picture is worth a thousand words as it shows fluid better than a written post. In this example, everyone in the meeting can see the notes and interact/update the content in a way that doesn’t require everyone to open a separate document or application. These fluid components will also work inside of Outlook as well and the benefit of using these components is that they sync across all endpoints. In the example, the “Agenda” is saved to OneNote and... --- ### Microsoft’s Bringing the Teams Rooms Experience to the Surface Hub - Published: 2021-06-17 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-the-teams-rooms-exeperience-to-the-surface-hub/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Microsoft 365, News, Surface Hub - Article Type: News Microsoft Teams Room experience on the Surface Hub The Microsoft Surface Hub is a device that has undergone a significant amount of transition in its short life. Specifically, the second-generation hub strategy evolved from a device that rotated and was extensible with additional displays to representing hardware that was closer to its first-generation sibling than an all-new experience. As the product has matured, so has Microsoft’s communication and collaboration experiences. Teams has quickly become the de facto communication platform for many companies and today, Microsoft is bringing the Surface Hub and Teams closer together. Teams Rooms are a way to bring dedicated hardware to a meeting space for improved collaboration experiences but the Surface Hub has not always provided the best way to use Teams in a meeting space. But with the next generation of Teams for the Surface Hub, Microsoft is looking to change that narrative. With a new meeting stage, Together mode scenes, noise suppression, chat bubbles, and live reactions, the updated Surface Hub Teams Room experience will allow for the Hub to integrate better with Microsoft’s communication platform. In addition to the new Teams experience, an updated Whiteboard experience that was also announced today will also be coming to the Surface Hub experience as well. While Teams software has come a long way in terms of features and functionality, as the world begins to move back into the office, or adapt a true hybrid working arrangement, users are going to want meeting experiences... --- ### First Look at a Basic Windows Server 2012 R2 to Windows Server 2022 Upgrade - Published: 2021-06-17 - Modified: 2024-09-04 - URL: https://petri.com/first-look-at-a-basic-windows-server-2012-r2-to-windows-server-2022-upgrade/ - Categories: Windows Server 2022 - Tags: Microsoft, Windows Server 2022 - Article Type: Overview Windows Server 2019, the (2nd) most recent server OS version of Microsoft's Long Term Servicing Channel (LTSC), was generally available October 2, 2018. About two and a half years later, Windows Server 2022 is here! Well, as of this writing, it's 'here. ' Let me explain. Background Back in May, Microsoft released build 20344 of Windows Server 2022 as part of the Windows Server Insider Program. The next build they released was 20348. 1. This was dubbed 'Windows Server 2022 Preview' and was posted on the Visual Studio Downloads site (former MSDN), and their Evaluation Center site. This release has no keys and expires in 180 days from installation. Buried in a Microsoft PM's response in a forum online, they declared Build 20348. 1 as the 'RTM' build. (Whatchu talkin' about Willis? There is no RTM anymore, that's a (4) three-letter word. ) Well, the only team in Microsoft that doesn't believe in the 'RTM' moniker is the Insider program team for Windows 10. So, we are at RTM! This build has already been patched by Microsoft (this week, Patch Tuesday brought it up to 20348. 51). There are no volume license keys available yet, but those should be released to customers over the next few weeks. Note: Microsoft has not declared this release suitable or supported for production workloads... yet. This will be announced at a later date. So, let's get to the core energy here, shall we? Previously, Windows Server releases could be upgraded directly (in-place upgrade) up to two major versions back... . --- ### How to Create a Bootable USB Drive for Windows Server 2019 Installation - Published: 2021-06-16 - Modified: 2024-09-04 - URL: https://petri.com/create-a-bootable-usb-drive-for-windows-server-2019-installation/ - Categories: Windows Server 2019 - Tags: How To, Windows Server 2019 - Article Type: How To Before you can install Windows Server 2019 on physical hardware, you'll need boot media that contains all the files necessary to install Windows Server. Boot media generally comes in two forms: as a DVD or USB drive. As most modern server hardware comes without a DVD drive, in this article, I'll show you how to create a bootable USB drive containing the Windows Server 2019 media. Get the Windows Server 2019 . iso file If you don't have access to the Windows Server 2019 . iso directly from Microsoft or a partner, you can download an evaluation version from Microsoft's website here. Regardless of where you obtain your installation media, save the . iso file to C:UsersPublicDownloads. Create a bootable USB drive Before starting, you will need a USB drive with a capacity of at least 8GB. We will wipe the entire contents of the USB drive during the creation process, so make sure any valuable data is backed up. Because most modern server hardware uses UEFI instead of BIOS, we'll create a bootable USB drive using a GUID Partition Table (GPT). UEFI-based systems cannot be booted from Master Boot Record (MBR) drives. We'll use Windows 10 to create the bootable USB drive. Connect the USB drive to your system and then follow the instructions below. Type powershell in the Search box in the bottom left of the taskbar. Make sure that Windows PowerShell is highlighted in the search results, and in the pane on the right of the Search panel,... --- ### Microsoft’s Making it Easier to Use Teams to Stream to YouTube or Twitch - Published: 2021-06-16 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-it-easier-to-use-teams-to-stream-to-youtube-or-twitch/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Teams - Article Type: News While it may not be the most headline-grabbing feature, Teams has proven to be a reliable video communication tool that is used by millions of people every single day. This makes it good for internal communication and collaboration, but when it comes to using Teams to broadcast content, it is not the optimal tool – yet. Yes, Microsoft has a variety of tools and features like Live Events and other aspects that can be used for broadcasting inside the Microsoft 365 universe but there are several platforms outside of the company’s portfolio that many organizations tap into for distributing content – YouTube and Twitch. When it comes to sharing content to these endpoints, there are creative ways to use apps like OBS (Open Broadcast Software) or xSplit but they are workarounds and have limitations that native integrations would resolve. Thankfully, Microsoft has signaled that they will be implementing RTMP support into Teams. RTMP or Real-Time Messaging Protocol is an open standard that makes it easy to connect your application to streaming sites and thus, stream content from Teams to YouTube or Twitch. The benefit of this is for people like myself who host podcasts, virtual conferences, and other public-facing events, being able to use Teams natively will let me optimize my workflow. Microsoft is going to roll out this update starting next month and once they do, I look forward to playing with the feature to see how it can be used as an improved streaming solution when compared to... --- ### Walking Through Windows 11 - Published: 2021-06-15 - Modified: 2024-09-04 - URL: https://petri.com/walking-through-windows-11/ - Categories: Windows Client OS - Tags: Microsoft, News, Windows 10, Windows 11 - Article Type: News Earlier today, we got our first look at Microsoft's 'Next Generation' OS and there is a lot to unpack. But before we dive deeper, know that the video walkthrough is of an early build of Windows 11 and that this is not the final experience that Microsoft will be shipping. But at an early first look, Windows 11 is different and yet oddly familiar. We already saw this style of Start Menu with the now-canceled Windows 10X and the rest of the UI looks modernized but not overhauled - if that makes sense. Microsoft is moving the default position of the Start menu to the center of the taskbar but fret not, you can move it back to the left corner if you so choose. But, the new Start menu is here to stay, at least in this build, you can't go back to the current Windows 10 design. And because you can't go back to the old menu, live tiles are officially dead. https://www. youtube. com/watch? v=uB9K03jQLyw There are also a smattering of new animations included with this leaked build but my favorite update is related to the maximize button. If you hover over it, you now get window snapping options that is quite useful and a good update to the OS. As you can see in the video above, this is not a complete overhaul to the OS but it is a significant update to the UI and user experience. While there are still many questions unknown about updates to the... --- ### Windows 11 Leaks Ahead of Microsoft's Windows Keynote - Published: 2021-06-15 - Modified: 2024-09-04 - URL: https://petri.com/windows-11-leaks-ahead-of-microsofts-windows-keynote/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Windows 10, Windows 11 Windows 11 Desktop Experience Later this month, Microsoft will be hosting an event to showcase the ‘next-generation of Windows. Expected at the event, the company will announce Windows 11 and now we have our first look at the upcoming OS and it matches all of our expectations. The OS is a blend of Windows 10X and an updated design language that features rounded corners. It still feels like Windows but is certainly an updated look with a new Start Menu and in some places, new icons as well. As expected the OOBE has been updated too, Microsoft has taken the existing Windows 10 new device setup experienced and updated the visuals. You can see a few of the setup images below. New Windows 11 Install Experience With the updated install process, you can customize how your hardware will be used. Windows now has options to customize your experience based on if you will use the device for gaming, creativity, Family, Schoolwork, and more. Customize your Windows 11 install based on your usage. Along with the updated design, there are new sounds across the entire OS too. It still feels like Windows but the UI certainly makes the interactions with the OS feel updated and more refined. The question is if the consumer will like this design and will it help move Windows move forward in the marketplace. While this was a leaked build of the OS, Microsoft should... --- ### Guide: How to Implement SharePoint Syntex Document Understanding Models - Published: 2021-06-15 - Modified: 2024-09-04 - URL: https://petri.com/guide-how-to-implement-sharepoint-syntex-document-understanding-models/ - Categories: SharePoint - Article Type: How To In Getting Started with SharePoint Syntex - Problem, Solution, and Methodology, we explain that SharePoint Syntex is a service that teaches Microsoft 365 to read, understand, and extract content from files stored in SharePoint Online Document Libraries. In this article, we create one of the available models that SharePoint Syntex provides, specifically a Document Understanding Model. We use the example of an Engineering company that stores Scopes of Work in a Document library. In the steps which follow, we setup a model, train it to understand the content and classify matching documents, extract additional relevant information from matching documents, and apply the model to a document library. Setup a Document Understanding Model To setup our Document Understanding Model, we start from the SharePoint Syntex Content Center and select + Create a model (Figure 1). Note: It is assumed that SharePoint Syntex licenses are available in the Microsoft 365 tenant and assigned to users, and that SharePoint Syntex is setup with a Content Center created.   Figure 1: The SharePoint Syntex Content Center The New document understanding model wizard opens (Figure 2).   In this example we name the model SOW, to reflect that the model's purpose is to read through document libraries and identify and classify documents that match the content type we are creating. It is also possible to use existing content types if preferred. Figure 2: Create a new document understanding model The final option in the wizard sets a retention label to any documents matching the model.  ... --- ### Patch Tuesday – June 2021 - Published: 2021-06-15 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-june-2021/ - Categories: Windows 10 - Tags: Patch Tuesday, Windows 10, Windows Server - Article Type: News This month Microsoft patches 7 zero-day flaws in Windows, 6 of which are being exploited in the wild. And there are also important updates for SharePoint Server, Microsoft Office, and Adobe Acrobat and Reader. Windows and Windows Server If you haven't already started testing and deploying June's updates for Windows and Windows Server, then it's time to get cracking because there are 7 zero-days fixed in this month's round of patches. 6 of the 7 zero-day vulnerabilities are already being exploited in the wild. The last flaw in the list is not yet being exploited but it won't take hackers long to start weaponizing it. CVE-2021-31955 - Windows Kernel Information Disclosure Vulnerability CVE-2021-31956 - Windows NTFS Elevation of Privilege Vulnerability CVE-2021-33739 - Microsoft DWM Core Library Elevation of Privilege Vulnerability CVE-2021-33742 - Windows MSHTML Platform Remote Code Execution Vulnerability CVE-2021-31199 - Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability CVE-2021-31201 - Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability CVE-2021-31968 - Windows Remote Desktop Services Denial of Service Vulnerability Kaspersky Labs reported that CVE-2021-31955 and CVE-2021-31956 are being used as part of an attack that targets Google Chrome in the exploit chain, leading to remote code execution. News and Interests on the Windows taskbar As a quick sidenote, News and Interests on the Windows taskbar is now available to users on all supported versions of Windows 10 on the Semi Annual Channel (SAC). News and Interests now available in Windows 10 (Image Credit: Russell Smith) Exchange, SQL, and... --- ### Microsoft Bookings Gets a New UI, More Features, and Roles > Last March, at Ignite, Microsoft gave a preview of the new powerful and customizable experience. Starting on June 1st, they are starting to roll it out as a toggle to First Release customers. - Published: 2021-06-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bookings-gets-a-new-ui-more-features-and-roles/ - Categories: Microsoft 365 - Tags: Bookings, Microsoft, Microsoft 365 - Article Type: News Last March, at Ignite, Microsoft gave a preview of the new powerful and customizable experience. Starting on June 1st, they are starting to roll it out as a toggle to First Release customers. It's like it was yesterday... well, almost! Just a few short weeks ago, I wrote about how to set up a new Microsoft Bookings site. And now Microsoft has decided, with good intent, to completely refresh the UI. Last March, at Ignite, Microsoft gave a preview of the new powerful and customizable experience. Starting on June 1st, they are starting to roll it out as a toggle to First Release customers. When you see the toggle 'Try the new Bookings' in the upper right corner, flip it and get ready. What a lovely view! :) If you need to go back to the classic version of the site, you can flip the toggle as often as you wish. Here are some of the new features to get ready for. Compliance, Privacy, and Tighter Controls Every organization is different; as an IT Pro, you're bound to be responsible for different compliance and security regulations. Thankfully, Bookings now has stricter administrative controls. Each user within Bookings has varying levels of control over how calendars are used and changed. They're also in control of how appointments on those calendars are booked, especially from Guests (external users). Microsoft 365 Admins Admins now have more controls including deciding if said Guests can book appointments and if staff details can be shared with customers. Privacy is also more attainable around customers' booking appointments and around restricting what information can be collected when making a booking. They can also prevent staff from requesting customer info by... --- ### Guide: Using PowerShell to Assist with Backing up Microsoft 365 Data and Settings - Published: 2021-06-14 - Modified: 2024-09-04 - URL: https://petri.com/guide-using-powershell-to-assist-with-backing-up-microsoft-365-data-and-settings/ - Categories: Microsoft 365 - Tags: Backup office 365 configuration, backup office 365 mailbox, backup onedrive data, Microsoft 365 DSC, Microsoft365dsc, Office365dsc - Article Type: Sponsored If you are aiming for a roll-your-own approach to creating a backup of your data in Microsoft 365, the options are not great for a build-your-own solution. However, when it comes to the configuration of your tenant, there are good options. Even if you’ve bought a backup product for Microsoft 365 or are relying on the service availability and capabilities to guarantee data is retained – a configuration change can spell a weekend of unwanted extra work, and potentially data loss. As people say, prevention is better than cure. Sponsored Post Links:  Afi. ai provides a modern solution for backing up Office 365 (and Google Workspace too! ) including full Teams support, SharePoint and OneDrive file metadata and sharing permissions, and many other advanced and modern features. Backing up your data in Microsoft 365 using PowerShell If you must get a copy of a particular users’ data for a belt-and-braces backup, need to perform the same task regularly, and you don’t have a product on hand, then PowerShell can provide the answer. In the on-premises world of Exchange Server, the closest equivalent to what I’ll describe would often be referred to as a brick-level backup, and via PowerShell as a scheduled task, involve performing PST exports of mailboxes. This was a wildly inefficient way of performing a backup, and often performed for VIP mailboxes where awaiting a full database restore wasn’t desirable. In Microsoft 365, we’ve got more than just Exchange Online to consider, and the same PowerShell cmdlets used on-premises don’t work in Microsoft... --- ### Amazon Location Service is Now Generally Available - Published: 2021-06-11 - Modified: 2021-06-11 - URL: https://petri.com/amazon-location-service-is-now-generally-available/ - Categories: Amazon Web Services, Cloud Computing, Uncategorized - Tags: AWS - Article Type: News Location and mapping are vital aspects of many mobile applications. However, developers face significant barriers to integrating location functionality into their applications. Integrating location services with your other mobile and web services can be difficult and time-consuming. Plus, there are issues around cost, privacy and security. First announced as a preview back in December 2020, Amazon Location Service is intended to help developers build web and mobile applications that include location-based capabilities. Amazon Location Service provides mapping data, tracking, geofencing, and integration with AWS services. On June 1st 2021, Amazon Location Service became generally available and it also included two new features: routing and satellite imagery Amazon Location Service provides the following features: Maps – Maps enable you to visualize location information. Places—Provide point-of-interest search functionality to your applications. Places allow you to convert addresses into geographic coordinates in latitude and longitude and convert a coordinate into a street address. Routing – Enables your application to request the travel time, distance, and all directions between two locations. This makes it possible for your application to obtain accurate travel-time estimates based on live road and traffic information. Tracking -- Enables you to retrieve the current and historical location of the devices running your tracking-enabled applications. Geofences -- Give your application the ability to detect and act when a tracked device enters or exits a predefined geographical boundary. Satellite Imagery -- Enhances the information displayed in your maps with satellite images. Amazon Location Service provides SDKs for Android, iOS, and... --- ### How to Create Custom Themes For Microsoft Teams Rooms - Published: 2021-06-10 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-custom-themes-for-microsoft-teams-rooms/ - Categories: Microsoft 365, Microsoft Teams, PowerShell - Tags: Microsoft, Microsoft 365, Teams - Article Type: How To As we start the new way of working in the second half of 2021, whether it’s back into the office or working hybrid, one aspect we often see left behind are your meeting spaces. As organizations come back into the office, meeting rooms will no longer meet their collaborative requirements. We often see when people use the defaults to install Microsoft Teams Rooms because you may want to use the simple themes available to you... however, in reality, for a large percentage of organizations, the default themes are not suitable, or you want to be able to use your corporate wallpaper/ branding and color schemes. There was once talk about having the ability to use Microsoft Teams Rooms as a digital signage unit too. However, this functionality has been removed from any roadmap items to bring more relevant items such as proximity join, Cortana integration, casting, and social distancing alerts that are more prevalent and required since Covid-19. The digital signage would have meant that we could have even more customization to the overall Microsoft Teams Room aspects. How do we get the Microsoft Teams Rooms wallpaper configured and what is required? Perquisites are as follows: Remote access: Method One; Remote desktop: There are two ways of connecting, I often find accessing the remote desktop using the default admin account is the easiest but must be enabled first.   In addition, the remote end device must accept the RDP connection by clicking yes on the touch panel to allow... --- ### GET-IT One Day of PowerShell is Happening Today - Published: 2021-06-10 - Modified: 2021-06-10 - URL: https://petri.com/get-it-one-day-of-powershell-is-happening-today/ - Categories: GET IT - Tags: GET-IT, GET-IT Powershell Petri's GET-IT: PowerShell 1-Day virtual conference is a full day of free learning dedicated to technical PowerShell content aimed at making you more efficient at managing your users and environment. Throughout the day you will hear from Microsoft MVPs and industry experts about how to take full advantage of PowerShell and dive deep into the technical aspects that will make your usage a resounding success. Make sure to head over to the conference hub to join the chatroom or you can watch it below. https://www. youtube. com/watch? v=bhVtIASmyaw --- ### Microsoft is Finally Including Visio in Microsoft 365 But There’s a Catch - Published: 2021-06-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-finally-including-visio-in-microsoft-365-but-theres-a-catch/ - Categories: Microsoft 365, Office - Tags: Microsoft, Microsoft 365, News, Visio - Article Type: News Microsoft Visio running in Teams - Image Credit: Microsoft For years, Microsoft has been pitching Office 365 and eventually Microsoft 365 as the premier productivity suite for individuals and corporations. The suite of tools provides robust solutions for creating, documenting, controlling, and securing corporate content but one of the company’s own apps has been on the outside looking in from the basic SKUs. Visio, the company’s diagramming solution is coming to Microsoft 365 for no additional cost to commercial license subscribers but the news is not all perfect. In the announcement post, Microsoft says that a “lightweight” version of the Visio web app is coming to Microsoft 365 starting in July. So what exactly is the “lightweight” version of Visio? This version of the tool will allow business users to create, edit, and share professional diagrams. But for the power users, you will still need a license which puts a damper on this announcement; Microsoft will continue to require Visio Plan 1 or Plan 2 for advanced capabilities for Visio. According to Microsoft, the Visio web app in Microsoft 365 will be available for the following licenses: Microsoft 365 Business Basic, Microsoft 365 Business Standard, Microsoft 365 Business Premium, Microsoft 365 Apps for business, Office 365 E1, Office 365 E3, Office 365 E5, Office 365 F3, Microsoft 365 F3 (includes Office 365 F3), Microsoft 365 E3 (includes Office 365 E3), Microsoft 365 E5 (includes Office 365 E5), Microsoft 365 Apps for enterprise, Office 365 A1, Office... --- ### Microsoft Search Begins to Index Meeting Transcripts - Published: 2021-06-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-search-begins-to-index-meeting-transcripts/ - Categories: Microsoft 365 - Tags: Microsoft, Microsoft 365, Search - Article Type: News One of the benefits of having all of your productivity data in one platform is that it can be indexed and discoverable through a single context window. In Microsoft 365, the company is using search as a tool to help you find your information but also reach across your company’s vast pools of content to discover new points of expertise and assets that align to your project. In the past year, we have seen Microsoft include features in Teams that will transcribe meetings, and now that content will soon be indexed by Microsoft Search. This new feature will start rolling out in mid-June and will be completed by early July for all users. The search index will include past and future transcriptions that are stored in OneDrive and SharePoint but there are a couple of safeguards in place. The content of the meetings will only be visible to those who attended the meeting. Meaning, if you have a C-suite Teams meeting that is transcribed, the transcription can only be viewed in search by those who were invited to the event. Also keep in mind that with transcriptions now being indexed, this means that they will be included in eDiscovery too. At this time, the only way to avoid the inclusion of this content in search is to turn off transcription completely; that is a small nuclear option for this feature where it’s all or nothing. The idea of indexing what is said in a meeting is a helpful process on... --- ### Microsoft 365 Scheduler Makes Meeting Scheduling Easier, for a Fee - Published: 2021-06-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-scheduler-makes-meeting-scheduling-easier-for-a-fee/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Scheduler - Article Type: News Microsoft is reporting in a recent technical article that weekly meetings have increased by 148% in the past year since our work environments have become transfigured. The more trying aspect is the fact that we are spending between 6 and 29 (! ) minutes scheduling those meetings. And considering the company wants to help you reduce your mundane tasks, Microsoft is announcing Scheduler. Scheduler is a new tool designed to give you back your time to focus on important things by making it very easy, fast, and simple to get those meetings scheduled. Let's find out how this magic works. Scheduler understands natural language Natural language - this is probably Scheduler's coolest feature. Here's an example of a request you can make to Cortana via email: "Cortana, please find a time to meet next week. " Now, not bad. But, wait, check this out: "Cortana, please find us 45 minutes in the last week of the month in the morning for Pacific time and make it a Teams meeting. " Scheduler will adapt to your usage of language over time and continually improve its own efficiency. You know, like Skynet. Nothing to worry about. How Scheduler and Cortana work in tandem Cortana and Scheduler complement each other, but they are very different behind the scenes. We all know Cortana as your digital assistant in Microsoft 365. Administrators will create a custom mailbox in the Microsoft 365 admin center and give it the 'Scheduling Assistant' flag of sorts to make this all... --- ### Choosing the Right Microsoft 365 Tool for Managing Your Tasks - Published: 2021-06-08 - Modified: 2024-11-19 - URL: https://petri.com/choosing-the-right-microsoft-365-tool-for-managing-your-tasks/ - Categories: Microsoft 365 - Tags: Microsoft 365 - Article Type: Overview OK, quick: How many Microsoft 365 services and apps are available to you and your users to help manage their work? Don't worry, it's a trick question, in the realm of having to ask, "What quarter are we in? " That's because Microsoft is semi-admitting that they've released some newer tools over the past year or so, and maybe didn't do the best job rolling them out and explaining their intent. Well, they are rectifying the situation by releasing a single-page PDFs to help explain 'When To Use' the arsenal of tools. Last year, Microsoft launched the new Microsoft Lists and Tasks in Microsoft Teams. Many users and customers, rightfully so, noticed a good deal of overlap with existing tools: Microsoft To Do, Microsoft Planner, and Microsoft Project for the web. There was a good deal of confusion and questions sent Microsoft's way, best summed up in this lovely phrase I've personally heard many times over the past few years... "What tool should I use? " Today, Microsoft is answering these questions with some handy, concise, and helpful guides. These one-page documents focus on different work scenarios and the Microsoft 365 tools that work best with them: Tracking tasks and information for individuals: To Do, Planner, and Lists Tracking tasks and information for teams: Planner, Lists, and Project for the web Managing tasks in general: To Do, Planner, and the Tasks app in Teams The goal for these guides is to help you answer that age-old question posed above; they're not meant to be fact... --- ### Microsoft Rebrands Windows Virtual Desktops, Adds New Features - Published: 2021-06-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-rebrands-windows-virtual-desktops-adds-new-features/ - Categories: Cloud Computing, Microsoft Azure, Virtualization - Tags: Azure, Azure Virtual Desktop, Microsoft, Windows Virtual Desktop - Article Type: News As Microsoft rounds out its fiscal year, which officially ends on June 30th, the company is making a few last-minute changes before the new year begins in July. Specifically, Microsoft is changing the name of Windows Virtual Desktop to Azure Virtual Desktop. The naming update makes a bit of sense as the company is looking to expand its Virtual Desktop Infrastructure (VDI) platform to support nearly any use case from nearly anywhere on the planet. And when something is branded with Windows but supports more than the Windows platforms, things get a bit confusing. To solve this, Microsoft is removing Windows from the name and dropping in Azure in its place. It’s a logical update, likely won’t break too many support documents, but it’s notable to see how the company is thinking about its VDI solution going forward. Along with the name change, the company has announced several new features for the service as well in the blog post: Enhanced support for Azure Active Directory (AAD). Coming soon in public preview, users will be able to domain join their AVD machines directly to AAD and connect to the virtual machine from any device with basic credentials, which Microsoft says reduces costs and streamlines deployment. Manage Windows 10 Enterprise multi-session VMs with Microsoft Endpoint Manager. Available now in public preview, users can enroll in Windows 10 Enterprise multi-session AVD virtual machines with Microsoft Intune and manage them in the Microsoft Endpoint Manager admin center. Quickstart deployment. Coming soon in public preview,... --- ### Five Important Differences Between Windows 10 Home and Pro - Published: 2021-06-07 - Modified: 2024-09-04 - URL: https://petri.com/5-important-differences-between-windows-10-home-and-pro/ - Categories: Windows 10 - Tags: BYOD, Windows 10 - Article Type: Overview If you are in the market for a new notebook or PC, there are two choices consumers have in Windows 10 SKU: Home and Pro. You might be purchasing a device for your own business or buying one to use with your company's "Bring Your Own Device" (BYOD) program. In the case of the latter, the differences between Home and Pro may not matter, depending on how your company's IT department provides access to business resources. But it's likely that your company's IT policy will stipulate which Windows 10 SKUs it supports for BYOD schemes. Nevertheless, it's worth understanding the differences between Home and Pro. Home and Pro aren't the only Windows 10 SKUs available. Enterprise and Education SKUs are provided to organizations that have a volume licensing agreement, so you won't find them on devices sold to consumers in stores. Microsoft's website has an official list of the differences between Windows 10 Home and Pro, which you can find here. But there's quite a lot missing from the comparison. So, to avoid any nasty surprises, check out my more comprehensive list below. The easiest way to approach comparing Windows 10 Home vs Pro is to look at what you don't get in Home. Each category below describes what you're going to miss out on if you buy a device with Windows 10 Home. Don't forget that you can upgrade to Windows 10 Pro at anytime using the Microsoft Store. The upgrade costs around $100 USD. 1. Security... --- ### Amazon Announces Amazon Elastic Container Service Anywhere - Published: 2021-06-04 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-amazon-elastic-container-service-anywhere/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, AWS EC2, AWS ECS - Article Type: News This past May 2021, Amazon announced the general availability of Amazon Elastic Container Service (ECS) Anywhere.   While most organizations are looking to run their containerized workloads in the cloud, there are circumstances where they might also want to run them on-premise. That can create problems because managing your container workloads in the cloud and on-premise have traditionally required totally different management platforms with completely different experiences and requirements. Amazon ECS Anywhere is designed to provide a constant container management experience across both the cloud and on-premise. Amazon ECS Anywhere is a fully managed container orchestration service that enables businesses to run and manage on-premise containerized applications using the same APIs, cluster management, workload scheduling, monitoring, and deployment pipelines that they would use if they were running the containers in the Amazon cloud. Businesses who need to keep their data on-premises for latency or regulatory reasons can use Amazon ECS Anywhere to get a consistent management experience for their container-based applications either on-premise or in the cloud. You can use ECS Anywhere with any VM including VMware, Microsoft Hyper-V, or OpenStack or on a bare-metal server running a supported Operating System. The ECS agent that allows a host to connect with the ECS control plane is supported on the long-term support (LTS) releases of Amazon Linux 2, Bottlerocket, Ubuntu, RHEL, SUSE, Debian, CentOS, and Fedora. Each managed ECS Anywhere on-premises instance costs $0. 01025 per hour. An on-premises instance is a customer-managed instance that has been registered with an Amazon... --- ### How to Restore Files and Data in Microsoft 365 - Published: 2021-06-03 - Modified: 2024-09-04 - URL: https://petri.com/how-to-restore-files-and-data-in-microsoft-365/ - Categories: Microsoft 365 - Tags: Backup, Microsoft 365, Microsoft 365 Admin Center, Office 365, Restore - Article Type: Sponsored In the last two articles in this series, I’ve pointed out some of the flaws in the arguments put forward by backup vendors for why you’ll back up Microsoft 365. There’s actually a good reason for using a backup product that they don’t often suggest, and it is the one that actually matters most on a day-to-day basis. The simplicity of individual item restoration. Granted, many backup vendors have a pretty poor interface compared to the Microsoft 365 portals, so they might not want to emphasize this and build up your hopes, for them to be dashed. But, in theory, it is the area where the backup vendors who actually know Microsoft 365 provide useful products. I’m getting a little ahead of myself here, though, because I haven’t walked you through what restoring data looks like in Microsoft 365 – so, let us begin. Sponsored Post Links:  Afi. ai provides a modern solution for backing up Office 365 (and Google Workspace too! ) including full Teams support, SharePoint and OneDrive file metadata and sharing permissions, and many other advanced and modern features. There is no portal for restoring items in Microsoft 365 There’s a load of portals inside portals for almost everything inside Microsoft 365 – so many that to visualize it would be like watching Marvel’s Doctor Strange. But despite having so many portals and admin centers, there’s not one for performing restoration of data. If you are an old hand at Microsoft 365, then this makes total sense. Configuration for retention... --- ### Microsoft’s ’Next Generation’ of Windows Plots the Course for Significant Changes - Published: 2021-06-02 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-next-generation-of-windows-plots-the-course-for-significant-changes/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Windows 1, Windows 10 - Article Type: News Microsoft is planning what will be one of the biggest updates to Windows in recent history. While we have seen projects like Windows 10X come and go, Windows 10 is evolving and Microsoft is plotting the course for the next generation of Windows. The company has sent out invites for an event that will take place on June 24th and they are not mincing words; Microsoft is being direct that this is a big change. From the invite sent to media: “Microsoft invites you to attend its What’s Next for Windows digital event on June 24, 2021, where the company will unveil the next generation of Windows.  “ Without overanalyzing the small bits of official information that we have... . that’s exactly what I am going to do. The reason being is that we know there are going to be significant visual changes that may include a centered Start menu, a new start icon that is blue, rounded corners, and other updates like significant changes to the store in Windows. And Windows 10 may not be the future either. While Microsoft may stick with the same name, considering they are calling this the “next generation” of Windows, I am hearing that they may update the name too. You can’t reinvent the wheel and still call it a wheel, that won’t sell with consumers or enterprise customers which means something needs to happen with the branding. There are other notable bits of information to pull out of the invite, including that Satya Nadella and... --- ### Microsoft Defender for Endpoint Now Secures Unmanaged Devices and Linux Gets EDR - Published: 2021-06-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-for-endpoint-now-secures-unmanaged-devices-and-linux-gets-edr/ - Categories: Hybrid Cloud - Tags: Microsoft Defender for Endpoint - Article Type: News Microsoft recently announced that its Defender for Endpoint solution can now detect when unmanaged network devices may pose a threat. Microsoft Defender for Endpoint is an enterprise antimalware solution that builds upon the free Microsoft Defender software that's built into Windows 10 and Windows Server. Defender for Endpoint helps enterprises prevent, detect, investigate, and respond to advanced-level threats. It includes endpoint behavioral sensors, cloud security analytics, and threat intelligence to provide the extra protection that enterprises need to secure devices. And it comes with centralized configuration, administration, and APIs. Securing devices for hybrid work Microsoft says that in a new world of hybrid work, organizations need to protect themselves from 'bring your own' (BYO) devices. According to Bret Arsenault, Microsoft's Chief Information Security Officer, users are 71% more likely to be infected on unmanaged devices. Microsoft believes that this is because organizations can't set the right security configurations. For example, unmanaged devices might not be updated with the latest software and OS patches, and shadow apps present additional risk. New capabilities in Microsoft Defender for Endpoint let organizations get more insight and control over unmanaged devices, without needing additional hardware or to install software agents. Using integrated workflows, businesses can onboard and secure devices that might pose a threat. Detecting vulnerabilities in unmanaged devices Using technology borrowed from Azure IoT security and from its acquisition of CyberX in 2020, Defender for Endpoint is now able to detect vulnerable Internet of Things (IoT) devices on the local network. And... --- ### How to use Stellar Repair for Exchange to Recover a Corrupted EDB File - Published: 2021-06-02 - Modified: 2024-09-04 - URL: https://petri.com/product-review-stellar-repair-for-exchange/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Online, Exchange Server, Microsoft 365, Outlook - Tags: exchange, Exchange Online, Office 365, Outlook - Article Type: Sponsored This post was Sponsored by Stellar, you can learn more about their EDB Recovery Tool here. Exchange Server is Microsoft's enterprise email, calendaring, contact, scheduling, and collaboration platform. It is an enterprise-class server that is primarily focused on sending, receiving, and storing email messages for all of the users in the organization. The current version is Exchange Server 2019. There’s no doubt that Exchange is a mission-critical infrastructure component and its continuous availability is essential to all businesses that run it; Exchange supports clustering for server-level high availability. However, server-level clustering can’t protect you if the Exchange data store becomes corrupted. While it is typically very reliable, the Exchange data store can become corrupted for a variety of reasons that can result in the loss of important data across the entire organization and even the disruption of all email services until the data stores are repaired. Microsoft Exchange Server stores its critical data in an Exchange database file (EDB file). Each Exchange Server creates one EDB file that contains all the mailboxes, emails, calendars, contacts, attachments, and tasks for all of the users in the organization. If the EDB file is damaged or corrupted being able to rapidly repair it is critical for the organization’s business continuity. In this product review, you’ll see how Stellar Repair for Exchange can repair EDB file corruption. First, we’ll look into some of the common reasons that might cause EDB file corruption. Then you’ll see how to install Stellar Repair for Exchange and use... --- ### Everything You Need to Know About Power Platform May 2021 - Published: 2021-06-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-may-2021/ - Categories: PowerApps, PowerBI - Tags: Microsoft, Power Platform - Article Type: News With Build being this month a lot of the announcements came out via Build and while it is a developer conference I would say most of the stuff is not traditional dev focused. I would also mention that almost nothing here is applicable today, they are more where are we headed. Speaking of headed, if you are in my half of the world we are headed into summer. So that is exciting. Power Apps - Roadmap for single app authoring experience (app convergence) Microsoft knows that today there is Canvas Apps people (like me) and Model-Driven Apps (not me) all under the Power Apps umbrella. As we continue to push forward they have a dream where we all come together and it looks like the new Modern App Designer will be the way.   In theory, it lands in June for us to start playing with. Shall be interesting. Power FX will let you build apps using words thanks to GPT-3 Interesting. The idea is in your Power Apps apps you will be able to go in and say make me an app to show customers who think Shane is awesome and they love Chewy and it will write the formula for you. Interesting. I will be honest as the guy who doesn't get to build easy apps anymore I have my doubts but I think I am just a grumpy old man. I think a lot of the apps out there are that straight forward and this will let a... --- ### Everything You Need to Know About Windows – May 2021 Edition - Published: 2021-06-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-may-2021/ - Categories: Windows 10 - Tags: Windows 10, Windows Server - Article Type: News Satya Nadella announces there will be significant changes coming to Windows, Microsoft starts rolling out the Windows 10 May 2021 Update, and Edge 91 makes it to the Stable channel. And there's a whole load more this month, so let's get started. Windows 10 May 2021 Update (21H1) is now generally available Microsoft made the Windows 10 May 2021 Update (21H1) generally available in the second half of May. It's not a very exciting feature update but it does include some improvements, especially for remote workers. Windows Autopilot and Intune There is a list of issues fixed with Windows Autopilot in this release, which you can find here. There's also a new Intune remote action, called Collect diagnostics, which lets organizations collect logs from remote devices without interrupting or waiting for end users. You can get more information about Collect diagnostics here. As is now standard practice, this update is optional, if you don't have a version of Windows 10 that is due to go out of support soon. For users on the May 2020 Update or later, 21H1 is delivered as a small cumulative update. For everyone else, 21H1 will be a full operating system reinstall. Group Policy Service and WMI Microsoft has fixed an issue that caused Group Policy changes to propagate slowly when changes where made to user or computer group memberships. Windows Defender Application Guard (WDAG) WDAG gets some performance improvements in 21H1 that bring better document opening times. Windows Hello Windows Hello now... --- ### Everything You Need to Know About Azure Infrastructure – May 2021 Edition - Published: 2021-06-01 - Modified: 2021-06-01 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-may-2021-edition/ - Categories: Microsoft Azure - Tags: Application Gateway, ASR, Azure, Azure App Services, Azure Backup, Azure Bastion, Azure ExpressRoute, Azure Key Vault, Azure Monitor, Azure Monitor Logs, Azure NetApp Files, Azure Security Center, Azure Site Recovery, Azure Static Web Apps, Azure Storage Account, Azure Virtual Machines, Azure VMware Solution, Azure VPN, Azure VPN Client, Blob Storage, Durable Functions, GitHub, GitHub Actions, Log Analytics, macOS, networking, NPv1, PowerShell, Security, Site-to-site VPN, Ultra Disk, Virtual Network, Virtual Network Gateway, Virtual Network Peering, Zone Redundant Storage - Article Type: Overview Microsoft’s Build conference was on last week and it gave us lots of AI, Machine Learning, and every other type of “machines doe it better” cloud tech announcements. But there were also a few infrastructure announcements during the month. I’ve become the “Azure networking” person at my job, so it’s no surprise (to me) that I’m going to dive into some networking topics this month. VPN Connections Improve Microsoft announced several improvements to Azure VPN Gateway. There are some improvements to point-to-site VPN, but I’m more excited about the new site-to-site features. When I set up an Azure “landing zone” for a new customer, 90% of the attempts at first usage go the same way. The customer tries to log into an Azure virtual machine over the site-to-site connection. For some reason, the connection fails. And the customer always says “there’s something wrong with Azure”. There isn’t – my deployments are repeats of previous template deployments with valid configurations. But we end up going through all the same validations to prove our point – the on-prem firewall is blocking external connections to TCP 22/3389. It sure would help if we could do a packet capture at the “edge” of Azure to prove that the packets never reach Azure. Well – now you can ... at least with site-to-site VPN. A new feature on the VPN VNet Gateway allows you to create a packet capture from the flows going across the site-to-site VPN. I just wish that this feature... --- ### Guide: Getting Started with Windows Package Manager (Winget) v1.0 - Published: 2021-05-31 - Modified: 2024-09-04 - URL: https://petri.com/guide-getting-started-with-windows-package-manager-winget-v1-0/ - Categories: Windows 10 - Tags: Guide, Windows 10, Windows Package Manager - Article Type: How To Microsoft announced at Build that Windows Package Manager (WPM) v1. 0 is now generally available. First announced in May 2020, WPM has been in development for over a year. But now it's finally ready for you to use. In this Winget Guide, I'll show you how to get it and how it works. How to get Windows Package Manager WPM consists of two components: the Package Manager service and the winget client tool. Winget is included in App Installer, which is an app available via the Microsoft Store. Microsoft plans to include WPM in Windows as an inbox application at some point in the future. But for now, you'll need to install App Installer from the Store. Get Windows Package Manager from the Microsoft Store To download App Installer, follow these instructions: Type store into the search box in the bottom left of the taskbar and click Microsoft Store in the list of results. In the Store window, click Search in the top right corner, and type App Installer into the Search Click App Installer as it appears below the Search box. On the App Installer page, click Get to install it. Once App Installer has installed, you can start using WPM. Close the Store window. Searching for apps in the WPM repository Microsoft chose not to contribute to existing open-source package managers partly because it wanted to create a repository of trusted applications. Microsoft's WPM repo includes app manifests that are automatically checked using SmartScreen, static analysis, SHA256... --- ### AWS Makes the Transition to Containers Eaiser with App Runner - Published: 2021-05-28 - Modified: 2024-09-04 - URL: https://petri.com/aws-announces-app-runner/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, Cloud, cloud computing - Article Type: News Unless you’ve been working out of a cave, you’ve probably heard that containers are the future in app development and that many businesses have been looking into using Docker, Kubernetes, and other containerized solutions to update their applications. However, moving to a new containerized platform can be difficult – requiring the mastery of lots of unfamiliar technologies. Announced this past May 18th 2021, AWS App Runner is a fully managed service that makes it easy for developers to quickly deploy containerized web applications. No prior container platform infrastructure experience is required. Customers provide source code, a container image, or a deployment pipeline. App Runner can then build and deploy a containerized web application that can load balance traffic, scale on-demand, and monitor application health. App Runner is designed for web scalability so there’s no need to change or re-architect your applications as the workload grows. Some of the main features in App Runner include: Easy to implement – Enables you to build and run web-scale applications in just a few clicks with no prior container infrastructure experience Load Balancing -- Automatically load balances traffic to provide high levels of reliability and availability Auto Scaling -- Can seamlessly scale up resources in response to web traffic Logs & Metrics -- Provides detailed build, deployment, and runtime logs Certificate Management –Provides a fully managed TLS with automatic certificate renewal When you create an application in AWS App Runner, you configure the amount of memory and vCPU required for your application... --- ### How to Discover and Configure Sites for IE Mode in the New Edge - Published: 2021-05-27 - Modified: 2024-09-04 - URL: https://petri.com/how-to-discover-and-configure-sites-for-ie-mode-in-the-new-edge/ - Categories: Windows 10, Windows Client OS - Tags: How To, IE 11, Internet Explorer - Article Type: News We have just over a year until Internet Explorer hits another 'major' milestone on its way to riding into the sunset. June 15, 2022, to be exact. This is the date the desktop application of Internet Explorer 11 on supported versions of the Windows 10 Semi-Annual Channel (SAC) will go out of support and be retired. Versions 2004, 20H1, 20H2, and the brand new, 21H1. (Windows 10 version 1909 goes out of support fully in May of 2022. Plus, by next June, there will be others (21H2, 22H1, etc). The most recent Windows 10 Insider build in the Dev channel (21387) has IE removed. So, as IT Pros, how in the world are you supposed to get in on this 'IE Mode' you've been hearing about? A new mode in Microsoft Edge that displays websites as normal tabs in Edge but uses the IE (Trident MSHTML) engine to display them is available. Sounds pretty slick, yeah? Well, up until now, there's been a maze of sites and documentation to sift through and manual steps to perform to set up Enterprise IE Mode. But they recently announced a new assistant website that asks you questions and generates scripts for you, to handle a lot of the tedious legwork. Let's read on and discover how this magic works! Microsoft created IE Mode in Microsoft Edge for companies that still need the functionality of IE 11 for backward compatibility with sites that don't render or function correctly in modern browsers. The... --- ### Microsoft Azure Sentinel gets SAP Support, Plus UEBA and Entity Pages Reach GA - Published: 2021-05-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-sentinel-gets-sap-support-plus-ueba-and-entity-pages-reach-ga/ - Categories: Microsoft Azure - Tags: Azure Sentinel, cloud computing, Security, SIEM - Article Type: News Last week Microsoft announced improvements to its cloud-native SIEM product, Azure Sentinel. In an effort to make Sentinel more efficient for Security Operations (SecOps) teams, Microsoft has improved the quality of rules and includes more innate intelligence out-of-the-box. There's also built-in support for SAP in preview. Plus, other features like UEBA and entity pages, which were previously in preview, have now reached general availability. User and Entity Behavior Analytics (UEBA) general availability At Ignite in September last year, Microsoft announced the availability of User and Entity Behavior Analytics (UEBA) in preview for Azure Sentinel. Starting May 11th, 2021, UEBA is generally available in Azure Sentinel in all regions. UEBA takes user data from Azure Active Directory (AD), and combined with logs and alerts from connected data sources, it builds baseline behavioral profiles for entities like Azure AD users, hosts, IP addresses, and applications. Microsoft Azure Sentinel gets SAP Support, Plus UEBA and Entity Pages Reach GA (Image Credit: Microsoft) UEBA uses behavior analytics and machine learning to identify unusual activity and help SecOps identify whether there is a compromised entity or a malicious insider. Microsoft says that additionally, UEBA can work out the relative sensitivity of your assets, peer groups of assets, and tell you the possible impact if a given asset gets compromised. Microsoft calls this an asset’s ‘blast radius’. With the extra information that UEBA provides, SecOps can better prioritize investigation and incident response. Azure Sentinel entity pages Also reaching general availability, entity pages provide SecOps... --- ### Microsoft Confirms Next Windows Update is "Significant", Teases UI - Published: 2021-05-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-confirms-next-windows-update-is-significant-teases-ui/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Sun Valley, Windows, Windows 10 - Article Type: News Earlier this month, Microsoft confirmed that Windows 10X was not coming to market but that the technologies built for that product, would migrate to Windows 10. This week, Microsoft is hosting its Build conference and while there was not much news for Windows fans, CEO Satya Nadella confirmed that the next update to the OS will be significant. We know that the next version of the OS, codenamed Sun Valley, will include a revamped UI and a new Start menu is expected. Up to today, all of this information has been from well-sourced insiders but confirmation today from the CEO aligns with everything that we have heard so far in that the update will be "significant". Below is Satya's comment during his keynote: And soon we will share one of the most significant updates to Windows of the past decade to unlock greater economic opportunity for developers and creators. I've been selfhosting it over the past several months, and I'm incredibly excited about the next generation of Windows.  Our promise to you is this: we will create more opportunity for every Windows developer today and welcome every creator who is looking for the most innovative, new, open platform to build and distribute and monetize applications. We look forward to sharing more very soon. While Microsoft has not officially shown off the OS, during Satya's keynote, the image of the developer portal you see at the top of this post was included. At first glance, it may not look like much but take... --- ### Microsoft Announces its First Integration of GPT-3 into Microsoft 365 - Published: 2021-05-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-its-first-integration-of-gpt-3-into-microsoft-365/ - Categories: Microsoft 365, PowerApps - Tags: GPT-3, Microsoft 365, News, power apps - Article Type: News Late last year, Microsoft announced that the company would be exclusively licensing the GPT-3 language model from OpenAI. And today at Build, the company has announced the first implementation of GPT-3 into one of its products, Power Apps. GPT-3 is one of the most advanced langue models in the world and Microsoft is looking to use the technology to make it easier to convert natural langue input into syntax that can be used with the company’s low-code/no-code solution, Power Apps. Coming to market in June as a public preview, the GPT-3 infusion into the Power Apps portfolio has the goal of making it significantly easier for non-developers to make use of the tools and functionality in the Power Apps ecosystem. That’s a bunch of marketing speak for saying GPT-3 will enable you to speak in natural language, convert that to the appropriate syntax, and then apply the string to the dataset. In the announcement post, Microsoft provides an example saying “Show 10 orders that have a stroller in the product name and sort by purchase date with newest on the top” would replace the string FirstN(Sort(Search(‘BC Orders’, “stroller”, “aib_productname”), ‘Purchase Date’, Descending), 10). Replacement is a bit of a misnomer as it doesn’t replace the string but instead, converts the text to that string so that the query can be run as GPT-3 doesn’t make the platform understand human language but instead, it can be the translator to the transaction. Microsoft is pushing its low-code/no-code solutions heavily as the company... --- ### Microsoft Unveils new Fluid Framework, Together Mode, and More for Teams at Build - Published: 2021-05-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-new-fluid-framework-together-mode-and-more-for-teams-at-build/ - Categories: Microsoft 365, Microsoft Teams - Tags: Build 2021, Fluid Framework, Microsoft, Teams - Article Type: News This week, Microsoft is hosting its annual developer conference called Build. For the second year in a row, the conference is virtual-only and you can watch the event online but for those looking for what’s new for Teams, here’s a breakdown of the announcements. Microsoft Teams' growth exploded during 2020 thanks to the pandemic and its feature-set continues to grow with new functionality like Viva. But the true potential for Teams is integration with third-party applications as this is where you can integrate your existing solutions into the platform and for developers, it presents a new opportunity to create apps and services that extend the functionality of the app. Teams related items announced today at Build: Enhanced Microsoft Teams extensibility for meetings helps developers build more interactive and productive solutions New features for Microsoft Teams Toolkit for Visual Studio and Visual Studio Code in preview New Developer portal for Microsoft Teams now available Unified development experience for message extensions in Microsoft Teams and Outlook on the web Universal actions for Adaptive Cards in Microsoft Teams and Outlook now available New subscription purchase experiences available within the Microsoft Teams app store and Admin Center for third-party apps Private preview of Fluid components in Teams chat If you made it this far, let’s dive a bit deeper into these segments to help understand where Microsoft is headed with Teams extensibility. For Teams app developers, there is a new Shared Stage integration, meeting event APIs, Together mode extensibility, and direct API access for... --- ### What’s New With the Microsoft Graph at Build 2021 - Published: 2021-05-25 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-the-microsoft-graph-at-build-2021/ - Categories: Microsoft 365 - Tags: Build 2021, Graph, Microsoft, Microsoft 365, News - Article Type: News When Satya Nadella took over as CEO at Microsoft, he stated that one of the company’s most valuable assets were its APIs. And when it comes to productivity, the Microsoft Graph API is where all the roads point towards when building out applications and experiences. At the company’s Build conference this week, the company announced a couple of updates to the Microsoft Graph that developers are likely to integrate into their apps and services. Graph Announcements from Build: Microsoft Graph connectors will soon allow companies to add information to employee profiles from more sources, giving colleagues a more detailed view of the person’s work and experience. New Jira and Confluence connectors by Microsoft will be available later this year. Microsoft Graph connectors were announced in 2019 and are currently available to Microsoft Search in SharePoint, Office. com and Bing. In addition to these new connectors, Microsoft Graph connector data will soon be available in Microsoft Teams and Windows. eDiscovery support for Microsoft Graph connectors developer preview will be available this summer. Developers can use the same eDiscovery tools in Microsoft 365 to search for content in third-party systems connected to Microsoft Search The graph is an important part of Microsoft 365 and is the layer that ties all of the apps and services together. For those that are always trying to figure out where Microsoft is heading with its apps, the Graph is where you should pay attention because as features become available via an API, then the company will integrate... --- ### Microsoft Announces Low-Cost Windows on Arm Development Kit - Published: 2021-05-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-low-cost-windows-on-arm-development-kit/ - Categories: Windows 10, Windows Client OS - Tags: BUILD, Build 2021, Microsoft, News - Article Type: News The past couple of weeks have been filled with unease in the Windows community. With the end of Windows 10X before it even reached the market, the future is a bit uncertain while we wait for Microsoft to fully unveil the next big update to Windows 10 known as Sun Valley. But there is another side of Windows that quietly marches forward and that is Windows on ARM. Microsoft has been pushing for Windows on ARM for several years but only recently did the OS start to support ARM64. To support developers who are building on this platform, Microsoft and Qualcomm have unveiled a new low-cost developer kit that uses the Snapdragon 7c that developers can purchase to develop and test their applications. The intent is to lower the barrier to entry for developers looking to bring their application to ARM. Microsoft says that the dev kits cost less than a notebook running the same chipset and will be available to purchase this summer from the Microsoft store. The release of the development is a positive sign for Microsoft fans as this signals the continued support for Windows on ARM. It certainly has been a journey to get to this point but both Microsoft and Qualcomm have a vested interest in the long-term success of the OS. For Microsoft, having their OS run on ARM-based devices is a hedge to the growth of these platforms during the past decade. And considering that Apple has gone all-in on ARM, Microsoft can’t... --- ### How to Disable the Cortana Services in Microsoft 365 > With Microsoft 365, Cortana can pose a challenge for unintended data retention - if you are looking to disable Cortana for a single user or across your org, here is how to do that. - Published: 2021-05-24 - Modified: 2024-09-04 - URL: https://petri.com/how-to-disable-the-cortana-services-in-microsoft-365/ - Categories: Microsoft 365 - Tags: Cortana, Disable, Microsoft 365 - Article Type: How To With Microsoft 365, Cortana can pose a challenge for unintended data retention - if you are looking to disable Cortana for a single user or across your org, here is how to do that. Microsoft Teams speaker arriving later this year. Microsoft isn’t new to the Artificial Intelligence market.   Those of us who have been in technology long enough remember Microsoft Bob, which gave Windows 3. 1, Windows 95, and Windows NT a Graphical User Interface (GUI) a facelift and provided search companions to help make your life a bit easier. A lot has changed between the introduction of Microsoft Bob on the 10th of March 1995 and the 2nd of April 2014 when Microsoft introduced Cortana. Microsoft has since made changes to Cortana again, more recently using Microsoft Outlook iOS for conversational AI in February 2021  and extended the regions of support on 23rd of April 2021, on the 12th of April it’s been extended to Microsoft Teams rooms with Intelligent speakers. But it hasn’t all been smooth sailing for Microsoft’s AI.   Cortana has been removed from iOS and Android corresponding app stores, as Microsoft has been working on integrating the service into other applications rather than using a native application. Privacy Concerns: Cortana application takes your voice information and ultimately indexes the voice data and stores it.   However, this information does not get deleted if the service is turned off, the information will still be held, this also means that with the integration into Microsoft 365, the user data will be retained by Cortana.   Microsoft has been criticized by security analysts because even though the services have been disabled in Windows the devices have been communicating with... --- ### Microsoft Search Now Available in Windows 10 - Published: 2021-05-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-search-now-available-in-windows-10/ - Categories: Windows 10 - Tags: Microsoft 365, Microsoft Search, Windows 10 - Article Type: News Microsoft Search is now integrated with Windows Search in Windows 10. Microsoft had been talking about this capability since 2018 but recently went quiet on the subject. So, I did a little digging and found that according to the Microsoft 365 roadmap, which you can find here, Microsoft Search for Windows 10 launched April 2021 and it is generally available worldwide. Microsoft Search and Windows 10 Microsoft Search is a capability built into Microsoft 365. It allows users to search Microsoft 365 tenants for information and to get answers to questions that help them complete their work. It lets you search for people, files, org charts, sites, and answers to common questions. For example, you could use Microsoft Search to find an email or information in OneNote. Or use it to find information on a company intranet site. Microsoft Search saves users from needing to understand where information might be stored and what application they need to search in. Microsoft Search can be accessed in several different ways. The most prominent means of accessing Microsoft Search is using the search box at the top of the Office. com homepage. A search box is also available in the Office app for Windows 10. Microsoft Search can be accessed from Bing, provided you are signed in with your organization's work or school account. Bing provides a separate 'Work' tab that returns information from your organization on the results page. Microsoft Search Now Available in Windows 10 (Image Credit: Russell Smith) How... --- ### Microsoft Paints a Future of Meetings with Teams > The second half of 2021 is going to include a migration that few have ever experienced in the business world. After the majority of employees migrated from the office to the home, the reverse migration is going to happen soon as well. - Published: 2021-05-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-paints-a-future-of-meetings-with-teams/ - Categories: Microsoft 365 - Tags: Microsoft, News, Teams - Article Type: News Microsoft Teams Room Concept - Image Credit, Microsoft. The second half of 2021 is going to include a migration that few have ever experienced in the business world. After the majority of employees migrated from the office to the home, the reverse migration is going to happen soon as well. Today, Microsoft is painting the picture of the future of meetings. As boring as that sounds, it’s incredibly important to the company as Teams has quickly become the central hub for these experiences. What likely started out as a visionary concept of meetings in the future, the company is building the blocks of that technology today. For the past decade, when talking about hybrid, in the IT space, that would mean having some data on-premises and some in the cloud. But now there will be hybrid employees, and while working from home is not a new concept, the change is that rather than being a sparse sampling of your users, it could become a significant population or even the majority. https://www. youtube. com/watch? v=ljh7xlj0WjQ This raises the question of what will the ‘new’ normal look like, annoying phrase aside, the pandemic will have a lasting impact on the way we work and more importantly how we work. With Microsoft’s new hybrid guide, the company is looking to help organizations navigate this migration which is how we see the company looking at the future of meetings with Teams. Teams Rooms are already a key component of this hybrid... --- ### Guide: Limit Microsoft 365 Access to Corporate Devices with Conditional Access > Azure Active Directory Conditional Access can put administrators back in control. Part of the Azure Active Directory Premium P1 license, with Conditional Access you control the conditions under which a user is granted or blocked access to Azure AD resources. - Published: 2021-05-20 - Modified: 2024-09-04 - URL: https://petri.com/guide-limit-microsoft-365-access-to-corporate-devices-with-conditional-access/ - Categories: Microsoft 365, Office, Security - Tags: Active Directory, Microsoft 365, Office 365 - Article Type: How To World events since March 2020 have highlighted one of the key benefits of Office 365 and cloud-based SaaS services in general: they are available any time, any place, on any device.   As the world was forced to work from home, Office 365 apps such as Teams, Outlook, SharePoint, and OneDrive could easily be accessed outwith the traditional company network, and even on non-company devices.   In fact, most Office 365 and Microsoft 365 subscriptions license users to install and use their apps on up to five devices. One of your primary concerns as a result of this may be data loss prevention.   For example, by default, a user can authenticate to their corporate OneDrive or mailbox on a personal device with absolutely no limitations on the ability to synchronize all the files and emails hosted in that service.   What happens to local copies of data when that user leaves the organization? Azure Active Directory Conditional Access can put administrators back in control. Part of the Azure Active Directory Premium P1 license, with Conditional Access you control the conditions under which a user is granted or blocked access to Azure AD resources. Even if you grant access, you can force additional measures, such as responding to a multi-factor authentication (MFA) prompt, or how long before they must log in again. How Conditional Access identifies corporate devices In our scenario, we'll use Conditional Access to allow users to sign in to Office 365 only on corporate devices.   We do this based... --- ### Modern Work: What's Next for You? - Published: 2021-05-20 - Modified: 2021-05-20 - URL: https://petri.com/modern-work-whats-next-for-you/ - Categories: Announcements - Tags: Survey - Article Type: Opinion As the world starts to slowly move from workers being mostly at home to migrating back to the office, new challenges are going to arise for IT Pros. From issuing new hardware, making sure all remote data is properly accessed, and possibly mass-software upgrades - we want to know the biggest challenges that are on your horizon. Below, you will find a quick survey that will help us better understand the challenges facing your operations so that we can help create content that will address those tasks. The survey is seven questions and should only take about 3 minutes to complete. --- ### All Things Azure, Office 365 and more at VeeamON 2021 - Published: 2021-05-20 - Modified: 2024-11-19 - URL: https://petri.com/all-things-azure-office-365-and-more-at-veeamon-2021/ - Categories: Main - Tags: VeeamOn, VeeamOn 2021 One of the good things about virtual events like VeeamOn is that you can attend specifically what you want to learn. I personally can’t wait to get back into the regular events circuit. I’ve put in a few call for presentations for in-person events and I see a number of events planning for the fall, I hope to see you there. Find me, I’ll buy you a beer or coffee depending on the time. For VeeamON 2021 this month, you can attend for free and in this post, I would like to aggregate all of points of interest related to Azure and Office 365 for the event. This will help you navigate specifically for those areas of interest. Each of these sessions are 30 minutes long, which makes it easy to take it in without being overwhelmed. Microsoft Azure Infused Sessions At VeeamON you can attend demos and breakouts that showcase a number of Veeam Azure capabilities: Storing backup data in Azure blob and Azure archive storage, migrating to Azure with Veeam Direct Restore to Azure and backing up Azure VMs. The following breakouts and demos would be of interest: Demo Sessions: At VeeamON at all times there will be a demo session, this is effectively all demo and very little prepared presentation content. The first is done by yours truly and shows how backup data can go on-premises, to Azure blob and to Azure Archive with the Demo:  Veeam V11: Performance, Capacity and Archive Storage Tiers and Policies. The... --- ### Surface Headphones 2+, A Better Way to Teams - Published: 2021-05-19 - Modified: 2024-09-04 - URL: https://petri.com/surface-headphones-2-a-better-way-to-teams/ - Categories: Hardware, Microsoft 365 - Tags: Microsoft, Surface Headphones, Surface Headphones 2+ - Article Type: Review A few weeks back, Microsoft announced the Surface Headphones 2+ that answered the nagging question – why aren’t Surface Headphones certified for Teams? Considering that the headphones are the company’s flagship audio device, you would think that they would be certified with the company’s own productivity software. But, as it turns out, and this will not be a surprise to anyone who has worked with Skype-certified products, Microsoft will not slap the certification logo on anything that has vanilla Bluetooth connectivity. This means that for the Headphones to be certified with Teams, they too needed to jump through some hoops. Those hoops, as it turns out for this peripheral, require the Headphones 2+ to use a dongle and have a new dedicated Teams button on the earcup. For this review, I am primarily going to focus on the Teams features as that’s the new functionality with the peripheral, everything else is nearly identical to the Surface Headphones 2. Also, keep in mind that this peripheral will set you back $299 and is only available to business and education customers – consumers can only buy the ‘standard’ version of the Headphones 2. So what makes this device Teams certified? The dongle that ships with the device achieves a high-quality connection between the headphones and your PC but it still connects via Bluetooth which surprised me at first. Included USB-A dongle with indicator light. Why? Bluetooth is... not my favorite. Yes, it works well about 90% of... --- ### Guide: Getting Started with SharePoint Syntex - Problem, Solution, and Methodology - Published: 2021-05-19 - Modified: 2024-09-04 - URL: https://petri.com/guide-getting-started-with-sharepoint-syntex-problem-solution-and-methodology/ - Categories: SharePoint, SharePoint Online - Tags: Guide, SharePoint, SharePoint Syntex, Syntex - Article Type: How To Microsoft announced SharePoint Syntex at Ignite 2020 as part of Project Cortex.   In Microsoft's own words, SharePoint Syntex transforms your content into knowledge using Advanced AI and machine teaching. Sounds great right? But what does this actually mean to SharePoint users? What real-world problems does SharePoint Syntex solve for Microsoft 365 customers, how do you license and configure it, and most importantly, what does it cost you to implement? In this, the first in a series of posts on SharePoint Syntex, we explain what SharePoint Syntex does, introduce the two models which SharePoint Syntex provides, and examine how and when to apply SharePoint Syntex models to content in SharePoint Online document libraries.   Further posts will cover implementing SharePoint Syntex models, and my tips and best practices for getting the most out of SharePoint Syntex. The Problem So, to the important question. What problems are we looking to solve by using SharePoint Syntex?   Well, let's take the example of an Engineering company that manufactures engine parts.   They already use SharePoint Online to store and access company documents and have a good structure of Communication Sites and Team Sites for departmental functions all tied together with Hub Site navigation. The Engineering team has a SharePoint Online Team site to store Scopes of work that they produce for customers (Figure 1). Figure 1: Engineering Scopes of work in a document library   Similarly, the Finance team has a SharePoint Online Team site to store Invoices (Figure 2). Figure 2: Invoices are shown in... --- ### Microsoft Details End of Life Roadmap for IE11 - Published: 2021-05-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-end-of-life-roadmap-for-ie11/ - Categories: Windows Client OS - Tags: IE11, Internet Explorer, News - Article Type: News When it comes to browsers on Windows 10, there are currently three options technically available to users. You have Internet Explorer 11, legacy Edge, and the ‘new’ Edge. But starting in 2022, Internet Explorer 11 will be officially retired. You might be thinking that Internet Explorer 11 was already pushed out to sea as part of a Viking funeral but that’s not quite the case. Today, Microsoft is announcing the retirement of the browser with the next major milestone being August 17th, 2021 where Microsoft 365 and other apps will stop supporting the browser. After the Microsoft 365 support for the browser ends, on June 15th, 2022, the browser will be fully retired with no additional support for certain versions of Windows 10. As with all things Microsoft, it’s a bit complicated about if you can use the browser following the retirement date. According to the blog post, the retirement does not affect “in-market Windows 10 LTSC or Server Internet Explorer 11 desktop applications. It also does not affect the MSHTML (Trident) engine. ” If you still need IE 11 functionality after this date, you will be pushed towards the Edge IE Mode but if that does not work for you, Microsoft is not going to allow for extended support for the browser. The short version of what you need to know is that if you are still relying on the native IE11 browser, and IE 11 Mode in Edge does not work for your specific websites, you need to start... --- ### How to Access and Triage Network Connectivity in the Microsoft 365 Admin Center - Published: 2021-05-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-access-and-triage-network-connectivity-in-the-microsoft-365-admin-center/ - Categories: Microsoft 365, Networking - Tags: Microsoft 365 - Article Type: How To The Microsoft 365 network connectivity test tool allows you to perform similar tests on demand for instant results. IT Pros - Have you ever wondered about the quality of your users' network/Internet connections when troubleshooting potential connectivity issues? Microsoft frequently hears from you that you're concerned about your users' performance and experience using all the cloud-based Microsoft 365 services. I mean, there are a lot of variables that go into how long it takes for that email in Outlook on the web to open. Your users' Internet connections, their ISP's general status and reliability, Microsoft's global Internet/network status... there are countless points of failure between your client's computer and Microsoft's infrastructure. I'm sure you would be delighted to be able to measure the quality of your users' connections. Well, Microsoft is making it easier to help narrow down the root cause of when things go awry. If you don't today, you should all see a new feature in the Microsoft 365 admin center very soon!   In the Microsoft 365 admin center, along the left category list, choose Health -> Network connectivity. Microsoft 365 admin center network connectivity Network connectivity Expand Using existing network connectivity tests in Microsoft 365 can provide peace of mind when assessing this aspect of your company's use of these services. These are aggregated to represent the network connectivity of a work location in use by a Microsoft 365 customer. This can be very helpful when identifying potential Internet or network performance improvements that would help all of your users' experiences with Microsoft 365. After you configure your office locations using this tool,... --- ### Microsoft Confirms that Windows 10X is Dead    - Published: 2021-05-18 - Modified: 2021-05-18 - URL: https://petri.com/microsoft-confirms-that-windows-10x-is-dead/ - Categories: Windows 10, Windows Client OS A few weeks back, I scooped that Microsoft would not be bringing Windows 10X to market, and today, the company has confirmed my scoop. In a post announcing that Windows 10 20H1 was now available, the company provided an update on the future of the operating system. As expected, Windows 10X is not coming in 2021 and will not be shipping as a product. As I noted in my previous post, the company is bringing 10X features and functionality to Windows 10. From the blog post: Instead of bringing a product called Windows 10X to market in 2021 like we originally intended, we are leveraging learnings from our journey thus far and accelerating the integration of key foundational 10X technology into other parts of Windows and products at the company. In fact, some of this is already reflected in the core of Windows in Windows Insider preview builds, for example the new app container technology we’re integrating into products like Microsoft Defender Application Guard, an enhanced Voice Typing experience, and a modernized touch keyboard with optimized key sizing, sounds, colors and animations. Our teams continue to invest in areas where the 10X technology will help meet our customer needs as well as evaluate technology experiences both in software and hardware that will be useful to our customers in the future. While Windows 10X will not be coming to new devices and there are some who are certainly going to mourn that loss – it’s the right move. Windows 10X was... --- ### Guide: How to Install Active Directory in Windows Server 2019 Using PowerShell - Published: 2021-05-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-active-directory-in-windows-server-2019-using-powershell/ - Categories: Active Directory (AD), Windows Server, Windows Server 2019 - Tags: Active Directory, Microsoft, Windows Server 2019 - Article Type: How To Looking to install Active Directory in Windows Server 2019? Here's how to accomplish that task with PowerShell. In a previous article, I showed you how to install Active Directory (AD), the first domain controller (DC) in a new forest and domain, using Server Manager in Windows Server 2019. But if you're not afraid of the command line, there's a much quicker way to get Active Directory up and running in Windows Server. In this article, I'll show you how to configure AD using PowerShell. There are two steps to installing AD in Windows Server 2019. The first is to install the Active Directory Domain Services (AD DS) server role. The second step is to configure your server as a domain controller. An AD domain must have at least one DC. Your server will be the first DC in a new AD forest and domain. To complete the instructions below, you will need to have an account with administrator privileges in Windows Server 2019. I will also assume that you are using Windows Server 2019 with the Desktop Experience role installed. If you are using Server Core, the instructions vary a little but are more or less the same. Active Directory prerequisites Before you install your first domain controller in the new AD domain, there are a couple of things you should do to prepare the server. While it's not absolutely necessary, I recommend giving the computer a name that makes it easy to identify. For example, I usually call the first domain controller in a new domain DC1. Secondly, you'll need to set a static... --- ### New Permissions Management Page Coming to the M365 Compliance Center - Published: 2021-05-17 - Modified: 2024-09-04 - URL: https://petri.com/new-permissions-management-page-coming-to-the-m365-compliance-center/ - Categories: Microsoft 365 - Tags: Admin Center, Compliance, Microsoft 365 Microsoft has been in a continual cycle of moving legacy features and interfaces from older websites to brand new ones. One major reason is they're able to create these new websites from the ground up to be more performant, secure, and to be agile enough to work correctly on all modern web browsers (also built with agility! ).   Their older Security & Compliance website has done its duty... and is showing its age; Microsoft's answer is the new Microsoft 365 compliance center. The legacy Office 365 Security & Compliance Center is where IT Pros and admins of Microsoft 365 today make changes to user roles and create and modify custom role groups in Microsoft 365. This will all be changing over the next month or two as Microsoft is rolling out a new Permissions landing page on this new site. Let's get the details on what's coming soon! How will this affect your workflow and processes? From the new Permissions landing page, you can click on 'Azure AD' roles to see which Azure roles are currently available in the Microsoft 365 compliance center. You can also see which users are assigned to these roles. Permissions Expand The legacy permissions experience will continue to be available until the Security & Compliance Center is retired. You IT Pros should already be transitioning to the new Microsoft 365 compliance center workflow experience as soon as it becomes available to you. Permissions and Roles Expand How should you prepare for this change? To update permissions, make sure you're... --- ### Microsoft's Approach to Securing Hybrid Work with Zero Trust - Published: 2021-05-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-security-for-hybrid-work/ - Categories: Active Directory (AD) - Tags: News - Article Type: News 12th May 2021, ahead of RSA 2021, Microsoft announces improvements to its security products for better-protecting organizations in a post-pandemic world. The future of work is hybrid Hybrid work refers to a post-pandemic work pattern where employees spend more time working from home but some time working in the office. Employees will move between home and corporate networks more than ever before and step seamlessly between personal and business activity online. It will no longer be that remote workers are secured differently from workers behind a corporate firewall. Microsoft says that the shift to hybrid work is driving its clients to adopt Zero Trust security across the board, not just for remote workers. Microsoft Updates Security for Hybrid Work (Image Credit: Microsoft) Securing hybrid work with Zero Trust Zero Trust is a security framework. It stems from the idea that you shouldn’t trust anyone. And that includes your own employees. Microsoft’s identity-centric Zero Trust model requires that every user accessing an application must be verified. Zero Trust requires that all requests for access, regardless of where they originate, must be verified as if they come from an untrusted network. For more on Zero Trust, check out 7 Steps to Better Security with Zero Trust Maturity on Petri. In a recent blog post by Vasu Jakkal, Corporate Vice President of Security, Compliance and Identity, Jakkal outlines improvements for hybrid work to Microsoft's existing suite of cloud security products. Azure Active Directory Conditional Access device filters and named locations Azure... --- ### Microsoft Teams Personal Features Arrive, But What About Skype? - Published: 2021-05-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-personal-features-arrive-but-what-about-skype/ - Categories: Microsoft Teams It was more than a year ago that Microsoft announced its intentions to bring Teams functionality to the consumer. Starting today, several features are now generally available as the company hopes to persuade you to ditch whatever it is you are using today, for Teams. By enabling ‘personal’ features in Teams, Microsoft's goal is to make the application the hub for your home-life productivity. From communication with messaging that also interlinks with SMS, video calls, and all of the other Teams' functionality but you can use a free Microsoft account instead of a Microsoft 365 subscription. The reality here is that Microsoft has made the business features that have made Teams popular among corporations available to consumers for free. Will consumers want to adopt the same application they use all day at work to organize soccer practice? Time will tell but I am not as optimistic about Teams growth in the consumer segment as I am in the work environment. Teams Group Calling - Image Credit, Microsoft. There are significantly more options for communication in the consumer space, but vanilla group text messages tend to be the favorite, followed by email (at least in my home life which I know is not always representative of the majority). Other popular platforms include WhatsApp, Facebook messenger, Telegram, Signal, and the list goes on and on. Microsoft is making a safe bet with Teams for the consumer as let’s face it, it’s really Teams that you use today but you can... --- ### Amazon Nimble Studio Enables Distributed Digital Content Creation - Published: 2021-05-14 - Modified: 2021-05-14 - URL: https://petri.com/amazons-nimble-studio-provides-distributed-digital-content-creation/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, Cloud, cloud computing - Article Type: News Amazon Nimble Studio is a new service that businesses and creative studios can use to produce digital content and CGI animations entirely in the AWS cloud. In the past, businesses relied on building and maintaining local server farms that consisted of high-performance systems in order to produce digital content. This typically required either expensive hardware purchases or rentals along with cloud storage to extend their resources and share projects between remote developers. Amazon Nimble Studio solves these issues by providing a ready-made digital content infrastructure as a service. This cloud infrastructure consists of high-performance workstations, storage, and servers that are designed to create and render digital content. Nimble Studio can enable businesses to get their content production up and running in just a few hours instead of weeks or longer by providing on-demand access to virtual workstations, elastic file storage, and render farm capacity. It also enables the business to leverage a geographically remote workforce by allowing the hiring of remote developers and enabling them to work as if they were in a local data center. Nimble Studio is built on top of the AWS cloud infrastructure. The AWS infrastructure provides elastic production scaling where your Nimble Studio can scale the developer’s workstations, storage, and rendering needs based on demand. Nimble Studio uses EC2 for compute, Amazon FSx for storage, AWS Single Sign-On for user management, and AWS Thinkbox Deadline for render farm management. For high-performance remote display, the service uses the NICE DCV protocol and provisions G4dn... --- ### Guide: How to Setup a Microsoft Bookings Site - Published: 2021-05-13 - Modified: 2024-09-04 - URL: https://petri.com/guide-how-to-setup-a-microsoft-bookings-site/ - Categories: Microsoft 365 I'm going to bet you probably haven't heard of Microsoft Bookings. Would you like an alternate infrastructure to take care of scheduling appointments with your customers and users over the phone? Microsoft has just the thing for you! A website service called Bookings. The easy-to-use, customizable webpage interface provides your users the ability to find available times to book appointments with relevant IT staff in your organization 24/7. Microsoft Bookings makes scheduling and managing appointments a piece of cake. The included calendar integrates with Outlook to optimize your staff's calendars and schedules. It also allows your users or customers the flexibility to book a time that works best for them. Let's learn more about MS Bookings and show you how to get started! Initial Configuration First, let's make sure Bookings is enabled in your organization. Follow these steps to verify the service is turned on. Browse to the Microsoft 365 admin center -> https://admin. microsoft. com/ and login as an Admin. Navigate to Settings -> Org settings -> Bookings. Make sure the 'Allow your organization to use Bookings' option is checked. You can read the other two options and decide if you want to use them or not. Turn on Bookings Expand Automated notification emails give you efficiency and avoid missed appointments on both sides. Your company also benefits by saving time with a reduction in repetitive scheduling tasks. With built-in flexibility and the ability to customize to your needs, Bookings can be designed to fit the situation and needs of... --- ### Patch Tuesday – May 2021 - Published: 2021-05-12 - Modified: 2021-05-12 - URL: https://petri.com/patch-tuesday-may-2021/ - Categories: Uncategorized This month Microsoft has released quite a low number of security patches for Windows. But there are still some nasty bugs that need your attention. Including a wormable bug in http. sys, a vulnerability in IE11, and a wireless networking flaw that could let an attacker disclose encrypted information. Windows and Windows Server This month's cumulative update (CU) for Windows 10 includes a patch for an HTTP protocol stack remote code execution vulnerability (CVE-2021-31166). It could let an unauthenticated user remotely run malicious code with SYSTEM privileges. Because an attacker could send a specially crafted packet over the network to an unpatched computer, this flaw is wormable. Microsoft says that CVE-2021-31166 affects servers utilizing the HTTP (http. sys) protocol stack. Assumedly that means CVE-2021-31166 could also affect Windows 10 devices running a webserver. The patch for CVE-2021-31166 is included in CUs this month for Windows Server version 2004 Server Core, Windows Server version 20H2 Server Core, and the equivalent Windows 10 products. There's also an important patch for a vulnerability in Internet Explorer 11 (IE11). Although for an attacker to exploit the bug, a user would have to visit a site controlled by the attacker. Alternatively, a hack could be triggered by embedding ActiveX controls in Office Documents. You can help protect against the attack by blocking ActiveX in Office and restricting IE11 to domains that are under your control, like legacy business applications for example. Or better still, remove IE from your devices. There's also a patch for a... --- ### Blockchain Bust: Microsoft Joins IBM with Blockchain Shutdown - Published: 2021-05-12 - Modified: 2024-09-04 - URL: https://petri.com/blockchain-bust-microsoft-joins-ibm-with-blockchain-shutdown/ - Categories: Azure A few years ago, Blockchain was going to change the world with its distributed database and ledger technology. At the time, cryptocurrencies were taking off and every cloud giant found themselves chasing the technology and trying to shove it into every conversation as well. But the reality is that Blockchain is not a good database for the commercial markets and unless you are launching a new cryptocurrency, the use of the technology is minimal, at best. I am positive there are useful applications of the technology but Microsoft is bowing out and shutting down the Azure Blockchain Service. Microsoft announces closure of Azure Blockchain Announced on the Azure Blockchain Service documentation page and first spotted by Mary Jo, the shutdown will occur on September 10th of this year. If you are using this service, Microsoft says that you will need to migrate your ledger data to an alternative service. Microsoft is not the only company that has given up on commercializing blockchain. IBM, according to a report from CoinDeks, gave up on Blockchain earlier this year. IBM promoted its technology heavily with advertisements that boasted the ability to track individual coffee beans from plant to home - the problem is that a conventional database can also do this and can process them more efficiently. I can’t fault either IBM or Microsoft diving head-first into Blockchain as the buzzword was everywhere and they did not want to be left out in the cold if the market truly... --- ### Guide: How to Install Windows 10 in a Virtual Machine - Published: 2021-05-12 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-windows-10-in-a-virtual-machine/ - Categories: Windows 10 - Tags: client virtualization, Hyper-V, virtual machine, Windows 10 - Article Type: How To Windows 10 includes all the software you need to set up a virtual machine (VM). Using a feature called Hyper-V, a hardware-based hypervisor for virtualization, you can install Windows 10 and other operating systems in VMs running in Windows 10. You can think of it like running a computer inside a computer; where the host is usually a physical device and the guest OS is virtual. In this article, I'll show you how to set up Hyper-V and how to install Windows 10 in a Hyper-V VM. Install Hyper-V in Windows 10 If you want to run virtual machines (VM) on Windows 10, you'll need to enable Hyper-V. Hyper-V is a hardware-based hypervisor that lets you run VMs in their own isolated spaces. You can run multiple VMs at the same time, provided you have enough resources like disk space, RAM, and CPU capacity. Hyper-V supports Windows, Windows Server, and Linux guest operating systems. Check your hardware meets the requirements Most modern Windows 10 and Windows Server devices meet the hardware requirements for Hyper-V. 4GB is the minimum RAM required but depending on the guest operating systems you plan to install in your VMs, you will probably need much more. Windows 10 Enterprise, Pro, or Education A 64-bit processor with second-level address translation (SLAT) VM Monitor Mode extensions At least 4 GB of RAM Virtualization support enabled in the BIOS or UEFI: Hardware-assisted virtualization - Intel VT or AMD-V Hardware-enforced Data Execution Prevention (DEP) - XD bit (Intel) or NX... --- ### Accelerate Your Data Protection Strategy at VeeamON 2021 and Support a Good Cause - Published: 2021-05-12 - Modified: 2024-09-04 - URL: https://petri.com/accelerate-your-data-protection-strategy-at-veeamon-2021-and-support-a-good-cause/ - Categories: Backup & Storage Data is essential to every business, it accelerates business operations, drives sales, and maintains business integrity. The importance of data is not new, and neither is the importance of making sure that data is protected. Modern data protection is critical to every business and needs to be simple, flexible, and reliable. VeeamON 2021, May 25-26 (Timed for Americas and Europe), and May 26-27 (Timed for the APJ region) will not only deliver tips and strategies to protect your data but also allow you to unleash the power of your data through informative content, visionary learning, and technical demonstrations. Turning it up with Veeam Continuous Data Protection There are many topics that will be covered during the event, but I want to take some time here to highlight some of my favorites. Veeam Backup & Replication brought many new enhancements with its latest release, but one of them sticks out to me more than the rest, Continuous Data Protection. Some workloads can’t afford any type of data loss and need to be continuously protected. Veeam CDP achieves near-zero RPOs for Tier-1 workloads by leveraging VMware vSphere APIs for I/O (VAIO). By being able to set RPOs to seconds instead of minutes, you can easily achieve business continuity while meeting both internal and external SLAs, satisfying every IT leader’s needs. CDP doesn’t stop there, and the feature is supported across three products, creating the ultimate DR trifecta. Veeam ONE, a tool that provides monitoring & analytics, not only for your data protection... --- ### Guide: How to Install Windows Server 2019 in a Virtual Machine - Published: 2021-05-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-windows-server-2019-in-a-virtual-machine/ - Categories: Windows Server 2019 - Tags: Hyper-V, Windows Server 2019 - Article Type: How To Windows Server 2019 is almost as easy to install as Windows 10. And in this article, I'm going to take you step-by-step through the process for installing Windows Server 2019 in a Hyper-V virtual machine (VM). First, I will show you how to install Hyper-V in Windows 10 or Windows Server. Then we will move on to installing Windows Server 2019 in a VM. Install Hyper-V (Windows 10) If you want to run virtual machines (VM) on Windows 10, you'll need to install Hyper-V. Hyper-V is a hardware-based hypervisor that lets you run VMs in their own isolated spaces. You can run multiple VMs at the same time, provided you have enough resources like disk space, RAM, and CPU capacity. Hyper-V supports Windows, Windows Server, and Linux guest operating systems. Check your hardware meets the requirements Most modern Windows 10 and Windows Server devices meet the hardware requirements for Hyper-V. 4GB is the minimum RAM required but depending on the guest operating systems you plan to install in your VMs, you will probably need much more. Windows 10 Enterprise, Pro, or Education A 64-bit processor with second-level address translation (SLAT) VM Monitor Mode extensions At least 4 GB of RAM Virtualization support enabled in the BIOS or UEFI: Hardware-assisted virtualization - Intel VT or AMD-V Hardware-enforced Data Execution Prevention (DEP) - XD bit (Intel) or NX bit (AMD) The easiest way to check if your device supports Hyper-V is using the systeminfo command line tool. Open a command... --- ### Petri's GET-IT Teams Day is Happening Today - Published: 2021-05-11 - Modified: 2021-05-11 - URL: https://petri.com/petris-get-it-teams-day-is-happening-today/ - Categories: GET IT - Tags: GET-IT, GET-IT Teams Day - Article Type: How To Petri's GET-IT: Teams 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Teams content aimed at accelerating the adoption, collaboration, and usage of the platform. Throughout the day you will hear from Microsoft MVPs and industry experts about how to take full advantage of Teams and dive deep into the technical aspects that will make your adoption and usage a resounding success. You can watch the live stream below and make sure to download the handouts here. https://www. youtube. com/watch? v=gLWxtKu__bA --- ### Guide: How to Install Active Directory in Windows Server 2019 (Server Manager) - Published: 2021-05-10 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-active-directory-in-windows-server-2019-server-manager/ - Categories: Windows Server 2019 - Tags: Active Directory, Windows Server 2019 - Article Type: How To In this article, I show you how to install your first Windows Server 2019 Active Directory (AD) domain controller (DC). We'll be using Server Manager to install and configure AD, so you'll need to be running a version of Windows Server 2019 that includes the Desktop Experience server role. Alternatively, you can set up AD in Windows Server 2019 Server Core using Server Manager running on a remote device. There are two steps to installing AD in Windows Server 2019. The first is to install the Active Directory Domain Services (AD DS) server role. The second step is to configure your server as a domain controller. An AD domain must have at least one DC. Your server will be the first DC in a new AD forest and domain. To complete the instructions below, you will need to have an account with administrator privileges in Windows Server 2019. Configure a static IP address Before you configure AD on your server, you should make sure that the server's network adapter has been assigned a valid static IP address on your local network. Log in to Windows Server 2019 with a local administrator account. Right click the network icon in the system tray in the bottom right of the taskbar and click Open Network & Internet settings. In the left pane of the Settings app, click Ethernet under Network & Internet. In the right pane under Related settings, click Change adapter options. How to Install Active Directory in Windows Server... --- ### Microsoft Shelves Windows 10X, It is not Shipping in 2021 - Published: 2021-05-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-shelves-windows-10x-it-is-not-shipping-in-2021/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Windows 10, Windows 10X - Article Type: News Back in the fall of 2019, Microsoft held a Surface event that will likely go down in history as one of the most ambitious announcements from the company. At the keynote, Microsoft unveiled three new products that were not only completely new for the company but also pushed them in a bold new direction. The Surface Duo, Surface Neo, and Windows 10X grabbed all the headlines; Microsoft was shoved into the limelight with a folding phone, a folding PC, and a new OS. But as time moved forward, the reality of these ambitious projects turned sour. Of the three projects, the Surface Duo did arrive in all of its Android glory. Running a Google-created OS, the Surface Duo delivered on its promise to create a foldable device made of the same premium-lineage of the Surface brand but the highlights were short-lived. Windows 10X desktop with centered icons on the taskbar. Not long after shipping, Microsoft stopped promoting the device, updates were slow to arrive, and the future of significant software updates (moving to newer versions of Android) is unknown. But the Surface Neo was met with a different fate. The device that was going to run Microsoft’s new 10X operating system was delayed and the OS was pushed down a different path. Instead of initially be designed for dual-screened devices, Microsoft would develop 10X for single-screened experiences first and that was the end of the Surface Neo shipping anytime soon. As we head into the spring... --- ### Microsoft 365 Update will let Admins Monitor User Feedback - Published: 2021-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-update-will-let-admins-monitor-user-feedback/ - Categories: Microsoft 365 - Tags: Microsoft, Microsoft 365, News - Article Type: News Today, Microsoft allows your users to submit feedback about Microsoft 365 products at your organization. Are you curious about what they've been saying? Your curiosity will soon be satisfied. This feedback will start to be visible in the Microsoft 365 admin center under the Health category, in the Product feedback node. This new experience will allow you more transparency into your employees' experiences, feedback, and overall satisfaction with the Microsoft 365 products they use. You'll be able to browse at various granularity and export the feedback (for the previous 18 months) that your users submitted about their experiences and productivity workflows using Microsoft 365. As IT Pros in charge of this repository, you'll have the ability to take action to address or manage specific feedback items with management; an option to permanently delete all the data will also be provided by Microsoft. You can see feedback from Teams, SharePoint, OneDrive, Yammer, Office, and the Microsoft 365 admin centers. Microsoft is committed to expanding the breadth of apps and services throughout the future. They are also working on dashboard-like pages and reports that will give you a high-level summary overview of the aggregated data. This will also be beneficial to your service desk teams as they will be afforded curated content to address direct end-user issues with the software, like the Outlook desktop app or Teams. Product Feedback Expand What do you need to prepare? Just follow this link to verify that feedback policy settings are enabled in your company. You need... --- ### VeeamON’s Free Conference Will Help Accelerate Your Data Protection Strategy - Published: 2021-05-06 - Modified: 2024-11-19 - URL: https://petri.com/veeamons-free-conference-will-help-accelerate-your-data-protection-strategy/ - Categories: Main - Tags: VeeamOn, VeeamOn 2021 - Article Type: Overview Trends come and go but protecting your data and having the ability to easily restore items efficiently is a part of your business that can mean the difference between disaster and mild-hiccup. As we navigate the pandemic and employees bounce between home and work, data is more ‘in-flight’ than ever before. If you are looking to educate yourself on industry best practices and to help improve the resiliency of your environment, you will want to pay attention to VeeamOn. VeeamOn is a free virtual conference happening May 25th-26th for AMERS and EMEA and will cover everything from cloud-native backup to the future of backup and recovery. For those readers who are in the APJ region, the event will take place on the 26th-27tth. With the more than 30 sessions from cybersecurity to cloud acceleration, Kubernetes, and backup and recovery – there is something for everyone. Staying updated on the best practices in the industry is always a good use of time and considering that VeeamOn is free, it’s worth checking out. You can register for the event here or check out the agenda here too. --- ### Microsoft Commits to Keeping All EU Client Data inside the EU - Published: 2021-05-06 - Modified: 2021-05-06 - URL: https://petri.com/microsoft-commits-to-keeping-all-eu-client-data-inside-the-eu/ - Categories: Cloud Computing - Tags: Azure, Cloud, Microsoft, News - Article Type: News If you spend five minutes listening to Microsoft talk about its cloud services, one of the key talking points is always about how it has the most data center regions around the globe. The company has invested billions to create local-redundant cloud operations in major economies and today, Microsoft has announced that it is taking the next step for EU customers and data protection. Currently, the company already offers the ability to store your data inside a specific country but the next step for the Microsoft Cloud will be to not only store the data but also only process it in the EU. Meaning, all of your data from storage to processing and to being in-flight will reside within the EU and this is a significant step forward for data residency. This is not a small announcement either, this will require additional investment in regions inside the EU and a significant amount of work on Microsoft’s part to region-lock data. The company says they are starting on this journey today with the expectation that it will be completed by the end of next year. The reason why this is challenging is that Microsoft will need feature parity inside of the EU for its services. Today, depending on what specific features you require when it comes to storage or compute, this can dictate where you have to send your data for processing or storage. With this new commitment that Microsoft is calling the “EU Data Boundary for the Microsoft Cloud,” the... --- ### Understanding and Configuring Operator Connect for Microsoft Teams - Published: 2021-05-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-setup-operator-connect-for-microsoft-teams/ - Categories: Microsoft 365, Microsoft Teams - Article Type: How To During Microsoft Ignite 2021, Voices matter: Reconnect with Microsoft Teams Calling, Microsoft introduced a new technology that allows for connectivity from other telephone providers into Microsoft Teams called Operator Connect.   You might be thinking, “we’ve been doing that for years? ! ” and you’d be right.   Partners and customers have been able to integrate Session Border Controllers (SBC) and telecom providers directly to Teams for quite some time using Direct Routing. However, Microsoft has introduced a simplified method of integrating a hand full of telephone providers globally. Ultimately there are three ways of obtaining Microsoft Teams calling, these options include: Microsoft Teams Calling Plans – Where Microsoft is your operator Operator Connect – Allows simplicity and seamless integration into qualified operators Direct Routing – Use your existing infrastructure, supported in over 180 different countries across the globe. Each method has its own benefits and pedigree.   The end solution will need to be weighed against commercial obligations and technical requirements. Teams Calling Plans: Teams Calling plans were the first method of provisioning telephone calling into Microsoft Teams. In recent times the calling plans country availability has been expanded significantly into Singapore, New Zealand, Romania, Czech Republic, Hungry, Slovakia, Norway, and Finland, taking the overall total to 26 markets. This expansion of markets started from the middle of April 2021 and should be completed by the end of June 2021.   These additional markets already build upon Australia, Austria, Belgium, Canada, Denmark, France, Germany, Ireland, Italy, Japan, Netherlands, Portugal, Porto Rico, Spain, Sweden,... --- ### Everything You Need to Know About Azure Infrastructure – April 2021 Edition - Published: 2021-05-05 - Modified: 2021-05-05 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-april-2021-edition/ - Categories: Microsoft Azure - Tags: ARM, ARM Templates, Azure, Azure App Services, Azure Application Gateway, Azure Backup, Azure Bicep, Azure Cost Management, Azure Firewall, Azure Hybrid Benefit, Azure Hybrid Benefit for Linux, Azure Log Analytics, Azure Monitor, Azure Monitor Logs, Azure Policy, Azure Portal, Azure Resource Manager, Azure Security Center, Azure Site Recovery, Azure Storage Account, Azure Virtual Machine, Azure VMware Solution, Azure Workbooks, Blob Storage, D_V5, E_v5, M-Series, MSIX App Attach, Private Link, Ultra Disk Storage, URL Rewrite, Windows Virtual Desktop - Article Type: Overview I've been drowning in project deadlines for the last month and I've not had a chance to keep up with the improvements in Microsoft Azure IaaS. So this month's article is as much for me as it is for you! New General Purpose VMs The most common virtual machine family that I use in Microsoft Azure is the D-series family from the general-purpose category. These are machines with high-spec Intel processors that come with 4x RAM, for example, 2 virtual CPUs (1 core with Multithreading) and 8 GB RAM. The E-series family are the same machines but with more RAM assigned to each machine for higher memory workloads. These machines are ideal for database and application workloads with consistent pressure on CPU – otherwise consider the B-Series where available. For a long time, the newest machines were the D_v3/E_v3 series. In June of last year, Microsoft announced the D_v4/E_v4 machines running on hosts with Intel Xeon Platinum 8272CL (Cascade Lake) processors; this processor runs at a base speed of 2. 5GHz and can achieve all-core turbo frequency of 3. 4GHz. In April, Microsoft announced a preview for D_v5/E_v5 virtual machines running on hosts with 3rd Gen Intel Xeon Platinum 8370C (Ice Lake) processors; this processor offers a Turbo clock speed of 3. 5GHz and up to 15% better performance over the D_v4/E_v4 machines. The new D_v5 offers between 2-96 virtual processors and 8-384 GB RAM. The E_v5 offers between 2-96 virtual processors and 16-672 GB RAM. As with the _v4 SKUs,... --- ### Microsoft to Remove Adobe Flash from Windows and Server in July - Published: 2021-05-04 - Modified: 2021-05-04 - URL: https://petri.com/microsoft-to-remove-adobe-flash-from-windows-and-server-in-july/ - Categories: Windows 10, Windows Client OS - Tags: Flash, Microsoft, News, Windows 10 - Article Type: News While you may have fond memories of Flash from the games that ran in the browser, as the web matured, Flash did not. The technology evolved from being a tool used to build interactive components on the web to a significant security vulnerability. Microsoft has announced that starting in July, KB4577586 (the update to remove Adobe Flash Player) will be included in the latest cumulative update for Windows 10, versions 1607, and Windows 10, version 1507. The KB will also be included in the monthly rollup and the security-only update for Windows 8. 1, Windows Server 2012, and Windows Embedded 8 Standard. Microsoft made this announcement by quietly updating a blog post from Sept 4th, 2020, as first spotted by XDA, and it looks like after July, Flash will become a part of history on Windows. Microsoft also notes in the post that when you install Windows 10 21H1 or later, Flash will no longer be included in that version of Windows 10. Further, you can remove Flash at any point by deploying KB4577586 to your environment. It has been a long road for Flash and the process for migrating the entire Internet away from the technology took many years. But with Windows finally pulling the plug on the technology and no longer including the feature as part of the OS, Flash is one major step closer to being only mentioned in the history books. --- ### Understanding Exchange Server Updates and the Process to Patching - Published: 2021-05-04 - Modified: 2024-09-04 - URL: https://petri.com/understanding-exchange-server-updates-and-the-process-to-patching/ - Categories: Exchange Server - Tags: exchange, Microsoft - Article Type: Overview For all you IT Pros continuing to support an on-premises Exchange Server infrastructure (in any configuration), Microsoft has a vital message for you: It is extremely important to keep Exchange up to date. Due to the number of customers that were unprepared to install last month's (Mar '21) Emergency security patches, many had to scramble to install all the necessary updates first. They weren't running a supported Cumulative Update (CU) release. Now, just imagine if you happen to have 50 CAS/Mailbox servers and 6 Edge Transport servers. I'll explain the headache many of you literally went through to get your environment secure. (Some of you are still working and planning on this. You know who you are! ). Let's see if we can come to a straightforward plan to get on the other side of this now, and into the future. Microsoft's Exchange engineering and product support teams have an ideal state in mind when their customers call into tech support queues: "Yes, we are running a supported Cumulative Update (CU) release and have installed the latest Security Update (SU). " What does that mean? MS supports your configuration when you are running either the latest (N) CU release or the one prior (N-1) to the current. So, for Exchange Server 2019, as of this writing, MS supports you if you're running CU8 or CU9. These were released in Dec 2020 and Mar 2021, respectively (CUs are released quarterly so you have some semblance of a schedule when planning). Security... --- ### Everything You Need to Know about Power Platform - April 2021 > Power Platform news for April 2021. Includes printing, Flows from Power BI, more AI smarts, and more. Even the Excel connector got better. What a month. - Published: 2021-05-03 - Modified: 2021-05-03 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-april-2021/ - Categories: PowerApps - Tags: power apps, Power Automate, Power BI, Power Platform - Article Type: News Greetings true believers! April has everything from Power Apps printing to spiffy new connectors, and even smarter AI. Sorry, I am a day late but thankfully not a dollar short. My kids had soccer (football for the rest of world) tournaments all weekend and... . I am just behind. It happens.  Power Apps: 1 - Paperless Office: 0 Power Apps officially has a Print function in yet another blow to the paperless office dream. Printing is something that folks have asked for since I started with Power Apps. Now you can give your users the option to print their Power App screen. For those that cringe at the thought of more trees converting to paper, you can also use this as a handy way to export to pdf using the Windows 10 PDF printer driver. Because I love you I even made a video on how to get started with Power Apps Print.  Better living through AI Have you ever found yourself stuck doing tedious data entry using purchase orders, application forms, delivery orders, tax forms, or any other document you’ve received in email? With AI Builder you train forms processing models to read the documents and extract the information, so you don’t have to. With the new update, AI Builder can now read more complex tables in documents with nested data or merged cells, making it even more helpful. Find out more here. Then cross your fingers that Skynet doesn't see the "Power" in the Power Platform. Trigger... --- ### How to Install SUSE Enterprise Server in Windows 10 - Published: 2021-05-03 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-suse-enterprise-server-in-windows-10/ - Categories: Windows 10 - Tags: linux, Suse, Windows 10, WSL - Article Type: How To In this article, I'm going to show you how to use WSL to install SUSE Enterprise Server in Windows 10. There are two high-level steps to getting SUSE to run in Windows. The first is to install WSL 2. And secondly, to install the SUSE distribution from the Microsoft Store or command line. Windows Subsystem for Linux (WSL) is an optional feature in Windows 10 that allows developers and system administrators to run Linux shells and command-line applications without installing Linux in a virtual machine (VM). WSL provides developers with an integrated experience so they can develop and test Linux apps without ever leaving their Windows desktop. For example, you can open a Linux shell in Windows Terminal or use Visual Studio Code to build, debug, and run Linux code without installing Linux in a VM. WSL 2 uses a new architecture to provide the benefits of WSL 1 but with better performance and compatibility. WSL 2 uses a full Linux kernel, which is kept up-to-date automatically by Microsoft, to provide full system call compatibility and fast disk performance. WSL 2 runs your chosen Linux distribution in a lightweight managed VM, which doesn't require any configuration or management on your part. Install Windows Subsystem for Linux 2 There's a simplified WSL 2 install procedure coming to Windows 10 in the 21H2 update, which is due in the second half of 2021. But for now, you'll need to perform several steps to get WSL 2 running in Windows 10... . --- ### Triaging OneDrive Sync Issues is About to Get a lot Easier - Published: 2021-05-03 - Modified: 2024-09-04 - URL: https://petri.com/triaging-onedrive-sync-issues-is-about-to-get-a-lot-easier/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, OneDrive, sync - Article Type: News Microsoft’s OneDrive document sync and storage service is the backbone for many users' and keeping data synced across devices is the primary feature of this tool. To put it simply, put your content in OneDrive and it will be available on nearly any type of device that you will use for productivity purposes. But from an admin perspective, it can be challenging when a user puts in a ticket that their OneDrive content is not syncing as expected. While it’s easy to recommend making sure your Internet connection is strong and rebooting your machine, a new report in the admin center will provide a much deeper level of clarity. OneDrive sync dashboard, Image Credit - Microsoft With the new report called OneDrive sync health, admins will be able to monitor sync app versions, sync status, sync errors on individual devices, and monitor the deployment progress of Known Folder Move. The new dashboard is in public preview starting today and should be completed by early June, according to Microsoft. The insights that can be pulled out of the report are high-level summaries to the ability to drill down to a specific device. It’s the drill-down functionality that should help when a specific user raises an issue about their content not syncing across their devices. As of right now, this feature is admin-facing and requires you to opt-in to see the dashboard. If your tenant does not currently have the dashboard available, as long as Microsoft hits their... --- ### Everything You Need to Know About Windows – April 2021 - Published: 2021-05-03 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-april-2021/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows 10 May 2021 Update, WSL - Article Type: News Microsoft prepares to release the Windows 10 May 2021 Update. The news and interests taskbar flyout is coming to older versions of Windows 10, and Microsoft adds Linux GUI app support to WSL in an Insider build. And there's much more! So, let's get started. Windows 10 'Known Issue Rollback' fixes KB5001330 bug Microsoft released an update for Windows 10 this month to silently roll back changes made by KB5001330. Released in March as a cumulative update for Windows 10, KB5001330 caused some performance issues for a small number of users running games in full-screen mode with multi-monitor setups. Known Issue Rollback is a feature in Windows 10 that Microsoft can use to quickly roll back code changes when bugs are introduced by an update. It's designed to be used with non-security bug fixes. When Microsoft releases cumulative updates for Windows 10, it can choose to include the Known Issue Rollback capability for 'quality' changes. Microsoft says: While Known Issue Rollback was originally designed for user-mode processes, we have made phased improvements over the last year to the OS kernel and the boot loader to support this capability in kernel mode. Some versions of Windows 10 prior to version 2004, for example versions 1909 and 1809, have partial support for Known Issue Rollback built into the OS and we leverage that support whenever possible when shipping updates for those versions. Known Issue Rollback works by adding the code required for a fix but also keeping the original code... --- ### How to Migrate Group Policy Windows Firewall Rules to Intune - Published: 2021-04-30 - Modified: 2024-09-04 - URL: https://petri.com/how-to-migrate-group-policy-windows-firewall-rules-to-intune/ - Categories: Security, Windows 10, Windows Server - Tags: Microsoft 365, Security, Windows 10, Windows Server - Article Type: How To As you make the move from Microsoft on-premises infrastructure to the cloud, you'll move from Group Policy management of your endpoints to MDM management.   This move isn't always a "lift and shift" process because there isn't always a 1-to-1 relationship between the settings available in Group Policy and those in Intune.   Additionally, you need to consider what happens as a result of the device state changing as part of that move: are you keep your devices on-premises Active Directory joined in Hybrid Azure AD mode; or are you moving away from that and joining your devices to Azure AD only? One area Microsoft does make it reasonably easy to "lift and shift" is Windows Defender Firewall.   Built into Windows 10, Windows Defender Firewall comes with many default rules and is designed to control unauthorized network traffic to and from the PC.   Administrators may, however, need to make changes or additions to these default rules to facilitate software requirements.   For example, all network profiles, by default, block inbound connections unless an administrator creates an explicit allow rule or the application creates one itself. In high-security environments, the best practice is, generally, to centrally control your firewall rules.   Software may create rules on endpoints as it's installed, but that complicates visibility for administrators.   Therefore, Group Policy is a common way of introducing and managing those rules.   An example of this can be seen below.   In order to migrate those rules from Group Policy to Intune, you'll need a reference... --- ### Microsoft adds Kinvolk to its Portfolio of Container Tools - Published: 2021-04-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-kinvolk-to-its-portfolio-of-container-tools/ - Categories: Cloud Computing, Microsoft Azure - Tags: Ki, Microsoft - Article Type: News This week, Microsoft reported earnings for the first quarter of the year, and to say that they had a healthy quarter would be underselling the company's performance. But that growth was the result of years of hard work and bets on the future that are starting to pay off. As we have seen a couple of times this year already, Microsoft has announced another acquisition as it looks to put its capital to use by acquiring Kinvolk. Both Microsoft and Kinvolk announced the acquisition on their respective sites but neither mentioned a selling price. Microsoft's goal is to build on Kinvolk's reputation and contributions to open-source and cloud-native distributed computing workloads. Microsoft says that Kinvolk's technology and the team building these tools will be integrated into AKS (Azure Kubernetes Service) and Azure Arc as well as future projects. Kinvolk Update Service manages Flatcar Container Linux updates across your infrastructure. With this acquisition, Microsoft is building out its tooling for cloud-native infrastructure and also becoming a bigger player in the open-source community. At this point, that should not really surprise anyone as Microsoft has been not only contributing to open-source projects but they have also been open-sourcing their own technology as well. The goal for Microsoft is to become a central player in the container segment by offering not only a wide variety of tools to build containers but also have the infrastructure, to run, support, and secure them as well. Not every organization is jumping into... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2021) - Published: 2021-04-28 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-16/ - Categories: Cloud Computing, Microsoft, Microsoft 365, Microsoft Azure, Microsoft Teams, Office, Windows 10 - Tags: News - Article Type: Overview Because Microsoft announced its quarterly earnings this week, this edition of Short Takes looks exclusively at the results across all of the software giant’s major business units. Because Microsoft announced its quarterly earnings this week, this edition of Short Takes looks exclusively at the results across all of the software giant’s major business units. Note: On Tuesday, Microsoft reported that it earned a net income of $15. 5 billion on revenues of $41. 7 billion for the quarter ending March 31, 2021. Here, we’ll take a closer look at the quarter, based in part of information the firm communicated during its post-earnings conference call. Business unit breakdown Microsoft has three primary business units and they had been running neck-and-neck, revenue-wise, for several years. But over the past several quarters, the cloud-based businesses have started to break away from the pack. This quarter, Intelligent Cloud was the biggest of Microsoft’s businesses, with $15. 1 billion in revenues, a year-over-year (YOY) gain of 23 percent. Productivity and Business Processes was Microsoft’s second-biggest business in the quarter, with $13. 6 billion in revenues, a gain of 15 percent. And More Personal Computing delivered $13 billion in revenues in the quarter, a gain of 19 percent. “Microsoft Earnings: What to Look for from MSFT” Big numbers followed by lots of zeros? Windows 10 hits 1. 3 billion active users It was almost a throwaway line in Microsoft’s post-earnings conference call, but Microsoft CEO Satya Nadella provided a new usage milestone for Windows 10. “People are turning to Windows PCs more than ever to stay connected, productive, and secure,” he noted. “Windows 10 now has more than 1. 3 billion monthly active devices. ” (I just say users above... --- ### Getting Started with Backing up Data in Microsoft 365, Understanding the Limitations - Published: 2021-04-28 - Modified: 2024-04-16 - URL: https://petri.com/getting-started-with-backing-up-data-in-microsoft-365-and-its-limitations/ - Categories: Cloud Computing, Microsoft 365 - Tags: Backup, data loss, deleted office 365 data, DR, exchange backups, Exchange Online, office 365 outage, Restore, teams backup - Article Type: Sponsored So, you’ve decided to jump straight into the deep-end and backup your data in Microsoft 365. But first, what does that even mean? Are you planning to back up user’s workstations to OneDrive or embrace the way Microsoft 365 is architected to provide similar or better capacities than a traditional backup product could provide? If yes, then make sure you are aware you do need to configure your tenant and we’ll cover more on that in the next in this series. Now, while there is nothing wrong with using a third-party backup product with Microsoft 365, remember most organizations don’t back up the service, yet. There are arguments to be made for and against backing up your Microsoft 365 data but that is a decision that you and your organization need to decide. So, if you are going to backup your data for an additional layer of protection - here is what you need to consider before you dive down the rabbit hole. Sponsored Post Links:  Afi. ai provides a modern solution for backing up Office 365 including full Teams support, SharePoint and OneDrive file metadata and sharing permissions, and many other advanced and modern features. Stop and think first If you were around in the 90s, then you’ll remember the smash-hit game Lemmings. Based on mythical creatures that follow each other over cliff edges inside the circuit boards of Amiga 500s, these pixel-based animals would do anything the mouse told them so long as was either walk left or right. If you... --- ### Microsoft Teams Hits 145 Million Daily Active Users - Published: 2021-04-27 - Modified: 2021-04-27 - URL: https://petri.com/microsoft-teams-hits-145-million-daily-active-users/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Teams - Article Type: News Microsoft has released their Q3 earnings release and the company posted big results yet again. It's clear that the company is one of the big winners in the pandemic-induced digital transformational shift and Microsoft says that there are not any signs of slowing down. One of the many products that performed well for Microsoft during the past year has been Teams. At last report, back in October of 2020, the company said that they had 115 million daily active users but today, Jeff Teper, Corporate Vice President - Microsoft 365, shared that the figure has now climbed to 145 million daily active users. Doing some basic math, and making as we know the 115 million figure was from the end of Q2 and we know the 145 million is from the end of Q3, this means that Teams was adding about 10 million daily users each month. The company also announced new Teams peripherals this month. With a fast-growing target audience for the new hardware, the company is aiming to find additional ways to monetize this audience with devices that integrate natively with the software. With Skype for Business officially going away in the near future, the adoption of Teams should continue to grow as those customers migrate to the new platform. The key for Microsoft is to make Teams the new ‘sticky’ application inside of Office 365 and all signs are pointing to the fact that this application is becoming the new Excel. And if you want to learn more... --- ### Microsoft Posts Strong Q3 Results as Pandemic Transformation Continues - Published: 2021-04-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-posts-strong-q3-results-as-pandemic-transformation-continues/ - Categories: Main - Tags: Earnings, Microsoft, News - Article Type: News It's that time of the quarter again where Microsoft has released their earnings. For calendar year Q1, fiscal year Q3, Microsoft reported $41. 7 billion in revenue, up 19% year over year, with net income of $15. 5 billion. Microsoft has once again reported strong earnings and is stating that the digital adoption curves that began last year during the start of the pandemic are not slowing down. Satya Nadella states in the earnings release that Microsoft is "building the cloud for the next decade, expanding our addressable market and innovating across every layer of the tech stack to help our customers be resilient and transform". Here is how the earnings breakdown by business org: Revenue in Productivity and Business Processes was $13. 6 billion and increased 15%, with the following business highlights: Office Commercial products and cloud services revenue increased 14% driven by Office 365 Commercial revenue growth of 22%. Office Consumer products and cloud services revenue increased 5% and Microsoft 365 Consumer subscribers increased to 50. 2 million LinkedIn revenue increased 25% Dynamics products and cloud services revenue increased 26% driven by Dynamics 365 revenue growth of 45%. Revenue in Intelligent Cloud was $15. 1 billion and increased 23%, with the following business highlights: Server products and cloud services revenue increased 26% driven by Azure revenue growth of 50%. Revenue in More Personal Computing was $13. 0 billion and increased 19% with the following business highlights: Windows OEM revenue increased 10% Windows Commercial products and cloud services revenue increased 10% (up 7% in constant... --- ### Surface Laptop 4: Good for the Workday, Ready for Zero Trust - Published: 2021-04-27 - Modified: 2024-09-04 - URL: https://petri.com/surface-laptop-4-good-for-the-workday-ready-for-zero-trust/ - Categories: Hardware - Tags: Hardware, Microsoft, review, Surface, Surface Laptop 4 - Article Type: Review For years, the Surface brand has been about pushing boundaries of what’s possible in the PC space to take the ordinary, and attempt to build the extraordinary. From devices like the Surface Pro that defined the brand to hardware like the Surface Book and Studio, Microsoft, on occasion, will push the design elements of the traditional PC but there are many times that ordinary is perfectly acceptable too. The Surface Laptop 4 falls into that category. It won’t stand out in a crowd, it won’t turn any heads, it won’t win any prestigious design awards but it is a good laptop for the majority of your users. And that’s the takeaway here as I believe that for the first time, the Surface Laptop 4, in nearly any configuration, is a good device for deploying to your users. It’s simple to use, well built, performance is good, and battery life is starting to meet expectations. Surface Laptop 4 as it arrives in frustration-free packaging. Unlike the last generation where the AMD configuration was not recommended, this time around, AMD or Intel, Surface Laptop 4 will be good choices for most workloads. While I do not have an Intel version to review, I don’t think most people are worried about Intel devices holding up in terms of performance or battery life. But for this review and going forward, the AMD iteration is now my go-to device for writing, emailing, Teams, and typical workloads non-creative roles will encounter. Knowing... --- ### How to Install Linux GUI Apps in Windows 10 and Windows 11 with WSL > As more apps are developed in Linux than ever before, Microsoft recognized that it needed to provide developers with an easy way to build, test, and run Linux apps without leaving the Windows desktop. Learn how to use the Windows Subsystem for Linux (WSL) to run graphical Linux apps on Windows. - Published: 2021-04-26 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-linux-gui-apps-in-windows-10-21h2-with-wsl/ - Categories: Linux, Windows 10, Windows 11 - Tags: linux, Windows 10, Windows 10 21H2, Windows Subsystem for Linux, WSLg - Article Type: How To As more apps are developed in Linux than ever before, Microsoft recognized that it needed to provide developers with an easy way to build, test, and run Linux apps without leaving the Windows desktop. The Windows Subsystem for Linux (WSL) was originally designed to provide an integrated Linux terminal environment in Windows without needing to set up and manage a virtual machine (VM). But what if you want to run a Linux GUI editor, or other GUI app, using WSL? Microsoft announced on April 21st that WSL in Windows 10 Insider Preview Build 21364 now supports Linux GUI apps. So, using build 21364 and higher, developers can run their preferred GUI editors and tools for testing and building Linux apps without having to jump through hoops like installing an X Server. In this article, I'll show you how to update WSL to support GUI apps, how to install a GUI app in Ubuntu, and finally look at how GUI Linux apps are integrated with the Windows user interface. How to install a Linux GUI app in Windows 10 and Windows 11 Here are the steps you need to follow to install a Linux GUI app in Windows 10 or Windows 11: Install WSL or update an existing WSL installation Install your Linux GUI app in Ubuntu or other supported Linux distribution Start your Linux GUI app from the Windows Start menu For more detailed instructions, keep on reading! Installing Linux GUI apps supported in Windows 10 21H2 and Windows... --- ### Never Mind, Microsoft Won’t Retire Top Senders and Recipient Report - Published: 2021-04-26 - Modified: 2021-04-26 - URL: https://petri.com/never-mind-microsoft-wont-retire-top-senders-and-recipient-report/ - Categories: Exchange Online, Microsoft 365 - Tags: exchange, News, PowerShell, Top Sender - Article Type: News Earlier this year, Microsoft announced that they had planned to retire the top senders and recipient report from Microsoft Defender for Office 365. While I do not know the exact thought process Microsoft went through when making this decision, they clearly didn’t anticipate the widespread backlash from its users. And it sounds like the feedback was heard as the company has announced that they will no longer kill this feature and its associated PowerShell cmdlets. Meaning Get-MailTrafficSummaryReport(Get-MailTrafficSummaryReport (ExchangePowerShell) will live to see another day. Previously, Microsoft’s plans were to move this report to the Security and Compliance Center; this change was going to take place on June 14th but that decision has been punted, for now. The company was suggesting that administrators utilize the Threat protection status report but that recommendation came up short. And I think that’s the important takeaway, Microsoft had made the decision to remove this report and I would suspect that at some point in the future, they will try to decommission the PowerShell cmdlet and associated report again. As I heard from many Petri readers regarding this change, it’s good to see that Microsoft is listening to its users as this report is widely used across the industry for multiple reasons. While it’s good to see which mailboxes are being hit the hardest and most frequently, this report is also a baseline for identifying compromised mailboxes. If you review this report frequently and a new mailbox pops into the list, it’s possible the account has... --- ### How to Install Ubuntu in Windows 10 with WSL 2 - Published: 2021-04-23 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-ubuntu-in-windows-10-with-wsl-2/ - Categories: Windows 10 - Tags: linux, Windows 10, Windows Subsystem for Linux, WSL - Article Type: How To Windows Subsystem for Linux (WSL) is an optional feature in Windows 10 that allows developers and system administrators to run Linux shells and command-line applications without installing Linux in a virtual machine (VM). WSL provides developers with an integrated experience so they can develop and test Linux apps without ever leaving their Windows desktop. For example, you can open a Linux shell in Windows Terminal or use Visual Studio Code to build, debug, and run Linux code without installing Linux in a VM. WSL 2 uses a new architecture to provide the benefits of WSL 1 but with better performance and compatibility. WSL 2 uses a full Linux kernel, which is kept up-to-date automatically by Microsoft, to provide full system call compatibility and fast disk performance. WSL 2 runs your chosen Linux distribution in a lightweight managed VM, which doesn't require any configuration or management on your part. For more information on how to run Linux GUI apps using WSL, check out How to Install Linux GUI Apps in Windows 10 and Windows 11 with WSL on Petri. Microsoft recommends using WSL 2 unless your Linux project files must be stored in the Windows file system, or you need access to a serial port or USB device, or you need to restrict the memory usage of your Linux distribution on Windows. WSL 2 is available in Windows 10 version 1903 (build 18362) or higher (x64) or Windows for ARM version 2004 or higher (ARM64). It's worth noting that at the... --- ### How to Manage Local Administrators and Groups with Intune - Published: 2021-04-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-manage-local-administrators-and-groups-with-intune/ - Categories: Microsoft 365, Security, Windows 10 - Tags: Microsoft 365, Security, Windows 10 - Article Type: How To When we think about administrative rights on Intune-enrolled Windows 10 devices, we need to consider two possible device states for that device: Azure AD joined (AADJ), or Hybrid Azure AD joined (HAADJ).   This is due to the different administrative roles available at the directory level. For Azure AD joined devices, at the time of performing the join, the security principals of global administrator and Azure AD joined device local administrator (previously named device administrator) are added to the local Administrators group.   The user performing the join is also added as a local administrator in most cases, though Autopilot does allow you to prevent this.   In the screenshot below, you can see the local Administrators group on an Azure AD joined device.   Note the two SIDs prefixed S-1-12-1, which are the global administrator and Azure AD joined device local administrators, and the user prefixed AzureAD, which is the user who performed a manual Azure AD join. When you see that S-1-12-1 beginning the SID, it denotes an Azure AD object.   Now, consider a few things: We want to minimize the number of and use of global administrators to reduce our attack surface. What if a global administrator logs into a compromised device?   Yikes! The Azure AD joined device local administrator user role applies to all devices and we cannot limit it to a subset of devices.   This is a good role for IT service desk staff, but not if you have different service desks for different parts of your enterprise.  ... --- ### How to Elevate Privileges in Windows Terminal - Published: 2021-04-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-elevate-privileges-in-windows-terminal/ - Categories: Windows 10 - Tags: DevOps, Windows 10, Windows Terminal - Article Type: How To Windows Terminal is delivered by Microsoft as a packaged app through the Microsoft Store and on GitHub in MSIX format. But because of the way Windows Terminal is developed and packaged, there are some challenges when it comes to elevating privileges. Users have called for Microsoft to allow tabs in Windows Terminal to optionally run with elevated privileges. But Microsoft has determined there is a risk, albeit small, that hackers could weaponize elevated tabs to compromise Windows. So, elevating privileges in Windows Terminal tabs isn't on Microsoft's roadmap. And that sounds fair enough. Mike Griese, a software engineer at Microsoft working on the Windows Terminal and the Windows command line experience, says that because of the way Windows is architected: "If you had an elevated commandline running in an unelevated window, an untrusted bad actor could execute an elevation-of-privilege attack by driving the unelevated windows that's running the elevated commandline. " And that has also led to conversations on developing a Unix-style sudo command for Windows to a dead-end. But for developers and system administrators who would like to elevate privileges in Windows Terminal, there are a couple of workarounds. #1 Use RunAs to launch Windows Terminal The first method for elevating privileges with Windows Terminal is to run the app as an administrator. This method only works if you are signed in to Windows 10 with a Protected Administrator account. I. e. , an administrator account that is protected by User Account Control (UAC). Or an administrator account that isn't... --- ### Microsoft Brings Linux GUI Apps to Windows 10 - Published: 2021-04-21 - Modified: 2021-04-21 - URL: https://petri.com/microsoft-brings-linux-gui-apps-to-windows-10/ - Categories: Windows 10, Windows Client OS - Tags: linux, Microsoft, News, Windows 10 - Article Type: News Last year, at Build 2020, Microsoft said that it was working on bringing Linux apps to Windows 10 with GUI support. Windows 10 has supported various Linux features and functionality with its subsystem for Linux for a couple of years but missing from the toolset was the ability to use apps that required a GUI. That changes today with the release of Windows 10 Build 21364, this release is the first preview that enables support for GUI applications. This is another big milestone for utilizing Linux tools on Windows and is going to be a welcomed update to the OS when this feature ships later this year. When Microsoft set out to bring Linux features to Windows, one of the primary goals was to attract developers who had left Windows because the open-source OS had tools that were not available on Windows. With this latest update, this closes one of the last remaining items about why a developer may choose Linux over Windows for their development needs and makes the OS more flexible too. https://www. youtube. com/watch? v=f8_nvJzuaSU& With native support by Windows, this means that you can give true hardware acceleration and audio/microphone support is included out of the box. Microsoft enables this feature by spinning up a companion distribution of Linux and it is confined to the application that you are running – so when you close the app, the distro shuts down as well. This is a big step towards closing the gap between software available on Linux and apps... --- ### How to Configure Windows Terminal Themes - Published: 2021-04-21 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-windows-terminal-themes/ - Categories: Windows 10 - Tags: Windows 10, Windows Terminal - Article Type: How To One of the most interesting features of Windows Terminal is the ability to customize the appearance of each tab. But until recently, customizations were only possible by editing a JSON settings file. In Windows Terminal version 1. 7, which has just been released on the stable channel to the Microsoft Store and GitHub, Microsoft has added a UI for modifying settings, including changing color schemes and other appearance settings. Microsoft originally announced Windows Terminal at Build in May 2019. It reached general availability in May 2020, several months later than planned. Windows Terminal is designed to eventually replace the Windows 10 command console. The command-line console has reached the end of the road because while it has seen some minor improvements over the last couple of years, Microsoft can’t add the features it would like without breaking backwards compatibility. In currently supported versions of Windows 10, you need to manually install Windows Terminal. The easiest way to do that is using the Microsoft Store. In Windows 10 21H2, which is due in the second half of 2021, Microsoft plans to make Windows Terminal an inbox application. Customizing Windows Terminal profiles Windows Terminal contains four profiles out-of-the-box: Windows PowerShell, Command Prompt, PowerShell, and Azure Cloud Shell. Using the new settings UI, you can configure the color scheme; font face, size, and weight; and various other visual features like the background image and acrylic effect for each profile. The ability to edit the JSON file manually is still useful if you... --- ### Guide To The Windows Recovery Environment: How To Access And Use It - Published: 2021-04-21 - Modified: 2025-02-19 - URL: https://petri.com/how-to-use-the-windows-recovery-environment/ - Categories: Windows 10, Windows 7, Windows 8, Windows Client OS, Windows Vista, Windows XP - Tags: Windows 10 - Article Type: How To Learn about the Windows Recovery Environment and how to access and use it to troubleshoot and fix common technical issues with your computer, like when Windows won't boot. What is the Windows Recovery Environment (WinRE)? Windows Recovery Environment, or WinRE, is a recovery environment that can repair common startup issues with Windows.  It's a simplified, much smaller version of Windows with just enough functionality to boot the Windows Preinstallation Environment and load appropriate automated tools to repair boot issues. What are its benefits? The Windows Recovery Environment offers several key benefits. I'll list the most prominent here. Automatic Diagnosis and Repair - WinRE can automatically diagnose and repair common boot problems using a 'Startup Repair' tool. Troubleshooting and Recovery - WinRE includes various tools to diagnose and fix problems with booting the Windows operating system. It can also assist with troubleshooting or booting from external USB disks/drives, recovery media, or other external media. Centralized Platform - WinRE provides a central menu interface with advanced recovery tools. Push-button reset, Startup Repair, and System Image Recovery are all included. Update Process - WinRE is also used during the feature update process in Windows 10 and Windows 11. During the 'offline phase' of these updates, system files are updated and archived offline after a reboot, without the core underpinnings of Windows running. Preservation of Customizations, Data, and Apps - Using the Push-button reset tool, users can quickly repair the integrity of Windows without losing their apps and data. What tools are part of WinRE? Here is a... --- ### Outlook’s New Scheduling Feature Targets Meeting Burnout - Published: 2021-04-20 - Modified: 2024-09-04 - URL: https://petri.com/outlooks-new-scheduling-feature-targets-meeting-burnout/ - Categories: Microsoft 365, Office, Outlook - Tags: Microsoft, News, Office 365, Outlook - Article Type: News When you look at your calendar before having a cup of coffee and all you see are meetings back-to-back for the day, you already know it’s going to be a marathon to make it to 5 P. M. Not only is this physically and mentally exhausting, at least in my experience, but it can also have a pretty significant and negative outlook on your day. Microsoft is publishing a new Work Trend Index report today that emphasizes how digital overload is an actual problem that needs to be addressed. In the report, the company cites research that back-to-back meetings are a primary cause of this overload. With this in mind, Microsoft is rolling out a new feature for scheduling meetings in Outlook that will provide you with a bit of breathing room during your day. Available starting today, users have the ability to automatically shorten the meetings that they schedule either on the front-end or back-end. New meeting options in Outlook to create breaks in-between meetings Meaning, you can select the option to start meetings later, so that you have a mental break after your previous meeting, or end your meetings early so that you can relax before the next meeting begins. But it’s also context-aware, as you can set a five-minute break before a 30-minute meeting or a 15-minute break before an hour-long meeting. Once enabled, all future meetings will align to these rules and these rules can be applied at the individual level or across... --- ### Microsoft Plans Significant Overhaul to the Microsoft Store - Published: 2021-04-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-plans-significant-overhaul-to-the-microsoft-store/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Sun Valley, Windows 10 - Article Type: News This fall, Microsoft is planning a significant update to Windows 10 that will bring with it a refreshed interface, updated user experiences, and also a significant update to the Microsoft Store. While we have seen updates to the store in the past, this update is looking to be more significant. For the past couple of years, Microsoft has left Windows 10 to sit in peace and has not tinkered much with the experience. This came after Terry Myerson left Microsoft and Windows leadership was broken up under several different individuals at the company. But with Panos Panay now leading the development of the OS, changes are coming to Windows; the OS is getting loved once again. A new report from Windows Central highlights the changes coming to the store and I can independently confirm that significant updates are planned. Why? Because as of today, the Microsoft Store has been a failure by nearly every metric that matters and the company is finally taking the steps to open up the platform but it comes with increased risk. While there will be UI updates to the store, the bigger changes are policy-related. According to the report, Microsoft will allow developers to submit unpacked Win32 apps to the store, developers will be able to host apps and updates on their own CDN, and Microsoft will allow third-party commerce platforms. The Microsoft Store as it is today has been a complete failure on nearly every metric. What this enables is... --- ### Windows Server Gets Redesigned Event Viewer in Windows Admin Center v2103 - Published: 2021-04-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-gets-redesigned-event-viewer-in-windows-admin-center-v2103/ - Categories: Windows Server - Tags: Windows Admin Center, Windows Server, Windows Server 2022 - Article Type: News The Event Viewer tool in Windows and Windows Server first appeared in 1993. So, Microsoft has decided that it's time for an update. And as might be expected, rather than update the built-in Windows management console snap-in, Microsoft has opted to bring the new Events tool to Windows Admin Center (WAC). And it is now available in preview in WAC version 2103. While larger organizations aggregate events from multiple servers using security and event information management (SIEM) tools like Splunk and Azure Sentinel, the humble Windows Event Viewer is still the go-to tool for small businesses and individuals needing to troubleshoot problems and investigate security incidents on Windows. Microsoft says that the new Events tool is still in active development and it is missing crucial features at this stage. But nevertheless, it will be interesting to look at how the tool is developing. Especially for organizations that don't have access to a SIEM product. Unfortunately in this release, Microsoft seems to have broken the old Events tool in WAC and the preview tool doesn't work either. At least on a couple of devices, I tried it on. And I know I'm not the only one facing this problem. When trying to open the Events tool, I get "Unable to get property 'response' of undefined or null reference". Way to go Microsoft. But before I get on to what the new Events tool can do, let me say how unreliable I've found WAC to be in general. So, I... --- ### Outlook Mobile Clients will soon Support Access to Delegate Mailboxes - Published: 2021-04-19 - Modified: 2024-09-04 - URL: https://petri.com/outlook-mobile-clients-will-soon-support-access-to-delegate-mailboxes/ - Categories: Microsoft 365, Outlook - Article Type: News IT Pros - your users will be very pleased to hear that Microsoft has finally announced a timeline for the support of Delegate Mailboxes on the Outlook mobile app (iOS and Android). What is a delegate mailbox? Read on! A delegated mailbox is a type of mailbox that allows you to share some of the duties of supporting your mailbox with others, your delegates. Delegates can send an email on your behalf, for example. When they compose a new message, and they have the appropriate delegate permissions, they can choose your mailbox in the 'From:' dropdown. The email will look like it came from you, but your delegate takes care of the heavy lifting. With this update, users can manage delegates right from the Outlook mobile app. Also, delegates with permissions can add and view delegated mailboxes in their respective Outlook app. This allows them to send emails from their own email account in addition to yours. Seamlessly, right in the app. As you can see in the image in this post, it will be straightforward to add delegates to your mailbox in the Account Settings section of the app. Microsoft has provided the ability to assign granular mailbox permissions to various delegates. You can allow one delegate just Read-Only access (to help gather information for an upcoming meeting), and another to Create Items, allowing them to send an email on your behalf. The rollout will begin late this month and should conclude around early May. Here are some links... --- ### The Driving Forces of Disaster Recovery Evolution in 2021 - Published: 2021-04-16 - Modified: 2021-04-16 - URL: https://petri.com/the-driving-forces-of-disaster-recovery-evolution-in-2021/ - Categories: Backup & Storage, Cloud Computing - Tags: Backup, Cloud, Disaster Recovery - Article Type: Overview There’s no doubt that there’s been a huge focus on disaster recovery (DR) beginning in 2020 and carrying over into 2021. The high-profile and wide-ranging SolarWinds breach along with the rise in ransomware and malware attacks has caused a lot of organizations to reevaluate their DR strategies. In the past, many businesses just viewed DR plans as an insurance policy they would probably never need to use. However, this past year has underlined how important DR plans can be to enable businesses to recover from all types of outages ranging from hardware failures to recovering from malware attacks. Gartner reported that “seventy-six percent of respondents reported an incident during the past two years that required an IT DR plan; more than 50% reported at least two incidents. ” However, today’s DR requirements go beyond maintaining your existing recovery strategies. Today, the influx of a wide range of new technologies and changes in the ways that businesses operate have forced organizations to change and evolve their DR processes. Some of the main factors that are driving organizations to rethink their DR strategies include: Work from Home (WFH) –The pandemic disrupted the way many companies had to do their day-to-day operations with many businesses moving to a remote model. The WFH model brought with it many more remote devices including bringing your own devices (BYOD) that needed to be protected. Ransomware – Not surprisingly, the increase in WFH during 2020 was accompanied by an increase in ransomware attacks. WFH exposes many vulnerabilities that... --- ### Surface Laptop 4 – First Impressions - Published: 2021-04-15 - Modified: 2024-09-04 - URL: https://petri.com/surface-laptop-4-first-impressions/ - Categories: Hardware - Tags: Surface, Surface Laptop 4 - Article Type: Overview, Review This week, Microsoft announced the updated Surface Laptop 4 and if you want a closer look at the specs, check out the announcement post here. Having now used the device almost exclusively for the past 36 hours, these are my first impressions of the updated hardware. And it’s important to point out that not much has changed from the previous generation. In fact, the only things that have changed are the chips and the battery life. Because this is an early first look, I am primarily going to focus on performance as battery life, the only other factor that truly matters in my mind, still needs more testing. The other point of consideration is do I compare this to the last generation AMD Surface Laptop – the device in my possession is an R7/16GB RAM iteration of the 15in Surface Laptop – or do I compare it to the Intel iteration or even a 5000 series iteration of AMD's mobile processors? Image #1 Expand Surface Laptop 4 as it arrives in the eco-friendly commercial packaging. For this post, I will be primarily comparing it to the previous generation Surface Laptop 15in that you can read about here as 1) that’s another device that is in my possession 2) we don’t have enough benchmarks yet of the Intel version of this same device but a later update on the device will add in this comparison. Considering that I enjoyed everything about the Surface Laptop 3 except the... --- ### How to De-identify PII data from the Teams Admin Usage Report - Published: 2021-04-15 - Modified: 2024-11-19 - URL: https://petri.com/how-to-de-identify-pii-data-from-the-teams-admin-usage-report/ - Categories: Microsoft 365, Microsoft Teams - Tags: Data, Microsoft, News, Teams - Article Type: How To Microsoft announced recently that the rollout of a new feature in Teams usage reporting has completed and should be available for all. This will put many an IT Pro's minds' at rest, at least a little more. :) Prior to the rollout of MC244599, the Teams admin center exposed user identifiable information (PII) like AAD Id, username, email etc. in various reports. This included the Teams' user activity and device usage reports, etc. The Teams usage reports available in the Microsoft 365 admin center already have the capability of having PII data de-identified. Now, this capability is shared in the Teams admin center. Microsoft is introducing a capability to allow Global Admins to de-identify PII information in Teams usage reports based on anonymization settings in the M365 Admin Center. This will allow Global Administrators to hide PII data in their organization. Here's how to check the current setting in your organization: Open the Microsoft 365 Admin Center -> https://admin. microsoft. com/ Make sure the navigation menu along the left is expanded. Click Settings -> Org Settings. Scroll down and click the Reports item. If you want your user data de-identified, check the first box - 'Display de-identified user, group, and site names in all reports. ' Click Save and you're done! If you choose to de-identify data, here are the changes you'll find in the Teams 'user activity report: Report UI Changes - Display name column information will be de-identified. Report Export changes - ID, DisplayName and UserName columns information will... --- ### Patch Tuesday – April 2021 - Published: 2021-04-14 - Modified: 2021-04-14 - URL: https://petri.com/patch-tuesday-april-2021/ - Categories: Windows 10 - Tags: News, Patch Tuesday, Windows 10, Windows Server - Article Type: News This month Microsoft releases critical patches for on-premises Exchange Server, a fix for the AD Kerberos KDC flaw, and plugs a zero-day elevation of privilege bug in Windows 10. Windows and Windows Server This month Microsoft patched an elevation of privilege bug (CVE-2021-28310) in Windows that is already been exploited in the wild. The patch applies to Windows 10, and the equivalent server versions, from version 1803 through version 20H2. The bug was reported by Trend Micro's Dustin Childs, so it's likely that Trend has seen the vulnerability exploited by malware. Kaspersky says that the flaw is likely used along with exploits to escape the browser's sandbox protection. And of course, there is an array of other patches for vulnerabilities in Windows, including in the Desktop Window Manager, the NTFS file system, Windows Installer, the RPC Endpoint Mapper Service, and much more. Active Directory Kerberos KDC security feature bypass vulnerability Microsoft has released a patch for the Kerberos KDC security feature bypass vulnerability (CVE-2020-17049) it flagged in November 2020. Microsoft had previously released an update for the flaw, but it caused more problems than it solved. What we have now is updated version of the patch that hopefully system administrators can deploy to servers and clients safely. Microsoft says about the update: Addresses an issue in which a principal in a trusted MIT realm fails to obtain a Kerberos service ticket from Active Directory domain controllers (DC). This occurs on devices that installed Windows Updates that contain CVE-2020-17049... --- ### 7 Steps to Migrate Windows 2012 R2 Domain Controllers to Windows Server 2019 - Published: 2021-04-14 - Modified: 2024-09-04 - URL: https://petri.com/7-steps-to-migrate-windows-2012-r2-domain-controllers-to-windows-server-2019/ - Categories: Active Directory (AD) - Tags: Active Directory, Windows Server - Article Type: How To One of the best ways to secure your systems is to make sure that Active Directory (AD) domain controllers (DCs) are running an up-to-date version of Windows Server. DCs are critical infrastructure because they manage the security and access to all your IT resources. If a DC is compromised, then you should consider your entire network compromised. DCs are high-value targets for hackers and you should take all reasonable steps to protect them. Many organizations are still running DCs on Windows Server 2012 R2. And while the OS is supported under Microsoft's extended support until 10/10/2023, later versions of Windows Server are significantly more secure, offering features like built-in antimalware in the form of Windows Defender, Credential Guard to protect local and remote domain credentials on compromised servers, and many under-the-hood security enhancements that make newer versions of Windows more robust. It is often the case that organizations are licensed to upgrade to the latest version of Windows Server but don't because they don't want to touch their working infrastructure. But because of the nature of AD, it's relatively easy to swap out an old domain controller for a new one. And without interrupting critical IT services. In this article, I'm going to take you through the high-level steps for migrating a Windows Server 2012 R2 DC to Windows Server 2016 or Windows Server 2019. The procedure is the same, regardless of whether you choose Server 2016 or 2019. But I recommend migrating straight to Windows Server 2019. There... --- ### Microsoft Unveils Surface Laptop 4 in a New Color with New Chips - Published: 2021-04-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-surface-laptop-4-in-a-new-color-with-new-chips/ - Categories: Hardware - Tags: Microsoft, News, Surface, Surface Laptop 4 - Article Type: News While the Surface Pro line of devices certainly defines the Surface brand, after all it was the first product, for most users, I believe that the Surface Laptop is likely the better all-around product. Yes, the Surface Pro certainly has its place and legion of fans but when you need a laptop, the Surface Laptop is the better device. Announced today is the Surface Laptop 4 and it retains nearly all of the characteristics of the previous generation the Surface Laptop but does have updated chipsets, a new color option, and longer battery life. Surface Laptop 4 is nearly identical to the Surface Laptop 3 The Surface Laptop 4 offers a choice of Intel 11th generation chips or AMD Ryzen Mobile Processors with Radeon Graphics Microsoft Surface Edition – yes that is the proper name and they are the 4000 series chips – with prices starting at $999 and topping at $2499. There is also a new color called Ice Blue and the device is up for pre-order today in the US, Canada, and Japan; it will begin shipping on April 15th. And if you order a Surface Laptop 4 before April 15th at Microsoft of Best Buy, Microsoft will toss in a pair of Surface Earbuds for free. As with the previous iterations, the Laptop 4 comes in 13. 5 or 15in and some color options come with Alcantara or metal finishes. The device also continues to feature the 3:2 201 PPI display, Omnisonic speakers, HD... --- ### Microsoft Unveils New Teams Certified Speakers, Headsets, and Webcam - Published: 2021-04-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-new-teams-certified-speakers-headsets-and-webcam/ - Categories: Hardware, Microsoft 365 - Tags: Hardware, Microsoft, News, Teams - Article Type: News In recent years, the Surface brand has received much of the attention in the hardware space at Microsoft. That’s not all that surprising as the Surface brand has positioned Microsoft as an innovator in the PC space with devices like the Surface Pro, Studio, and the Duo. But the truth is that the company has been making PC peripherals for decades and has a rich history in the accessories market with ergonomic keyboards and travel mice. But with the explosive growth of Teams, there has been a missing set of devices from the company’s own portfolio, Teams certified hardware. That is changing today as the company is announcing several new peripherals that are designed to work with Teams that were announced alongside the new Surface Laptop 4. The company has a new USB-C speaker, webcam, two new headsets, and an update to the Surface Headphones that makes them ‘certified’ for Teams. Surface Headphone 2+ Dongle that enables Teams Certification Up first are the updated Surface Headphones, now called the Surface Headphones 2+, the big difference from the current generation of headphones is that they are now certified for Microsoft Teams. How did Microsoft accomplish this? They now ship with a dongle and on-ear Teams controls; these are long overdue but thankfully, they start shipping later this month to business and education customers only for $299. 99 New Microsoft certified Teams speaker arriving later this year. The USB-C speaker is designed for Teams meetings/calls... --- ### Petri's GET-IT Backup and Recovery 1-Day Virtual Conference is Right Now! - Published: 2021-04-13 - Modified: 2021-04-13 - URL: https://petri.com/petris-get-it-backup-and-recovery-1-day-virtual-conference-is-this-week/ - Categories: GET IT - Tags: GET-IT, GET-IT Backup and Recovery - Article Type: Overview Petri's GET-IT Backup and  Recovery 1-Day Virtual Conference is a day dedicated to a topic that most of us hope we never have to face - disaster recovery. But more than disaster recovery, this one-day event will also help you better understand best practices for backing up data, securing active directory, and understanding the tools Microsoft offers to help deploy Windows as well. When it comes to the Petri audience, we have the major items covered during this conference including using Azure as a recovery endpoint, re-deploying Windows 10, backing up your Office 365 data, tackling the evergreen challenge of ransomware, and also protecting your Active Directory forest. In short, there is something for everyone. https://www. youtube. com/watch? v=qT3hwgGQU_I When it comes to backing up your data, you can never be too prepared. This virtual conference is aimed at providing you the details you need to know by IT Pros who are actively working with these technologies. And who might those Pros be? We have Aidan Finn, Russell Smith, Sean Deuby, Rick Vanover, and Tom Arbuthnot. If you haven't done so already, head on over to our conference hub where you can sign-up to be notified of when the sessions go live and to also download the handouts from the event too. --- ### Microsoft to Shove Org-Wide Teams Backgrounds Behind Additional License - Published: 2021-04-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-shove-org-wide-teams-backgrounds-behind-license/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, News, Teams - Article Type: News Microsoft Teams is the central hub for productivity for many organizations around the globe. At the last official count, Microsoft said that there were 115 million daily active users of the tool but that figure is likely outdated at this point. One of the primary features of Teams is the ability to host internal/external meetings along with the functionality to change your background to hide the fact that you are at the beach instead of being in your home office. But one of the challenges, especially in large organizations, is the ability to control the branding experience from a corporate perspective. If you want your employees to use ‘pre-approved’ backgrounds and to have those backgrounds show up in Teams, rather than having to manually upload them, Microsoft is enabling this functionality that will roll out later this month. Blurry image credit to Microsoft, they did not provide a higher resolution image. In the release note that you can view here (MC249777), Microsoft states that you will need an Advanced Communication license when this feature reaches general availability in July. While it is within Microsoft’s rights to use licensing however it deems necessary, this requirement feels a bit odd. Primarily because this feature would ease the adoption of Teams and its meeting functionality but other tools, like webinars that are used by most companies for lead-gen or customer retention, does not require a new license – it feels like this should be swapped. As Tom notes, the... --- ### Microsoft to Acquire Nuance for $19.7 Billion - Published: 2021-04-12 - Modified: 2021-04-12 - URL: https://petri.com/microsoft-to-acquire-nuance-for-19-7-billion/ - Categories: Main - Tags: Acqusition, Microsoft, News, Nuance - Article Type: News Microsoft has announced today that the company will acquire Nuance for about $19. 7 billion. Once completed, this will be Microsoft's second-largest acquisition following Linked In for $26. 2 billion back in 2017. Nuance is known for its voice technologies and solutions in the healthcare space. Microsoft is paying a premium for Nuance but the reasoning for the acquisition is likely a bit more technical than simply acquiring the book of business. The company does note that in the announcement that they expect Nuance's technology to contribute to the company's recently launched Microsoft Cloud for Healthcare. The voice technologies that Nuance has created and more specifically, the patent portfolio it has amassed, could be one of the bigger drivers of the acquisition than any specific line of business. Microsoft has created its own voice technologies during the past decade and adding Nuance to the portfolio will boost its presence in the healthcare and customer engagement segments but owning the portfolio of patents will also help protect its voice technologies going forward. Nuance is a public company and in calendar year Q4, the company posted revenue of $345. 8 million with a net income of $7 million. With these results, Nuance's financials will not significantly impact Microsoft's results on a quarterly basis as the company posted results of $43. 1 billion in revenue and a net income of $15. 5 billion last quarter. Considering the size of this acquisition and that both companies are public, it will take some time for this transaction to close. Microsoft... --- ### Amazon Releases AWS S3 Object Lambda - Published: 2021-04-09 - Modified: 2021-04-09 - URL: https://petri.com/amazon-releases-aws-s3-object-lambda/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, AWS S3 - Article Type: News One of the most significant enhancements for AWS Simple Storage Service (S3) is the release of AWS S3 Object Lambda. In case you were wondering what Lambda is, Lambda is the 11th letter of the Greek alphabet. In the programming world, a Lambda function is a small anonymous function or block of code that can be passed as an argument to a function call. In the case of AWS S3, Lambda functions can alter the way data is surfaced from an S3 object. Data stored in S3 is typically shared by multiple applications. Previously, there were two main options to provide different views of S3 data to different applications. You could either create and maintain derivative copies of the data or you could build and manage a proxy layer in front of S3 to intercept and process data as it is requested. Both of these options add significant complexity and costs. AWS S3 Object Lambda solves this problem by allowing you to add your own code to process the data retrieved from AWS S3 before it is returned to the application. AW S3 Object Lambda functions can process and transform your data as it is being retrieved from S3. The Lambda functions are invoked in-line with a standard S3 GET request so there are no changes required by any application code. This enables you to present multiple views based on the same dataset. You can change the Lambda functions completely independently from the underlying data. S3 Object Lambda has an... --- ### Migrating to SharePoint and OneDrive - An IT Pro 'Best Practice' Getting Started Guide - Published: 2021-04-08 - Modified: 2024-09-04 - URL: https://petri.com/migrating-to-sharepoint-and-onedrive-an-it-pro-best-practice-getting-started-guide/ - Categories: SharePoint - Tags: OneDrive, SharePoint - Article Type: How To Supporting a remote workforce, especially if you haven't had the time to plan, assess, execute, and support it, can be daunting. Almost all organizations have had this thrust onto their IT departments' plates for over a year now. Regardless of what your company's long-term plans are for where your employees will work, it would behoove you to consider Microsoft 365 solutions, including SharePoint and OneDrive, to keep your staff productive as possible. There are many questions and points to consider along the way... Why migrate? What game plan do I need for a successful migration? How do I keep my end-user disruptions to a minimum? Do I need to 'sell' this project to stakeholders/management? What, if any, costs are involved? What is the ROI? Thankfully, Microsoft has worked steadily in this space over the past few years. The best approach is to consider the high-level questions, one by one. Why migrate? Well, because. :) Wait... There are many reasons your company should migrate its files to SharePoint and OneDrive. Users would see increased productivity and daily efficiencies having their files available whenever, wherever. You could have already been in the process of this transition when the landscape started changing. Perhaps your end-users were complaining about the inefficiencies and headaches with having to VPN into the secured, corporate network to access their files. Or you are trying to reduce IT operational costs associated with other third-party file storage vendors. Migrating this content (Box, DropBox, etc) is a breeze today with new Microsoft... --- ### OneDrive Sync Client is Finally Available as a 64-bit App - Published: 2021-04-08 - Modified: 2021-04-08 - URL: https://petri.com/onedrive-sync-client-is-finally-available-as-a-64-bit-app/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, OneDrive - Article Type: News If you are using the OneDrive sync client on Windows, you are currently using a 32-bit app to move the data between your local device and the cloud. While 32-bit apps are not necessarily a bad thing to run in 2021, they are a bit more restrictive in terms of resources and are slowly being phased out. And that goes for the OneDrive sync client with Microsoft announcing that the application is now available for Windows users as a 64-bit app. The announcement is part of MC249393 and you can read it here. The preview of the app is available for download (link below) and is starting to roll out in early April. The app should reach general availability by the end of the month and will arrive on most machines around that time. The OneDrive 64-bit version is only for AMD64 devices, for ARM64 devices, you should continue to use the 32-bit version of OneDrive. Microsoft does not detail any new features that are coming with this move from 32-bit to 64-bit but generally speaking the biggest update is that the app can access more RAM when needed. While this is not the largest announcement in the world of Microsoft 365, OneDrive is a critical part of workflows for making sure your data is available locally on your device but also backed up in the cloud as well. By moving OneDrive to a 64-bit app, for higher-end machines, there is potential for performance improvements as the app is now... --- ### SharePoint Scenario-Based Site Templates Arrive this Month - Published: 2021-04-07 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-scenario-based-site-templates-arrive-this-month/ - Categories: Microsoft 365, SharePoint - Tags: Microsoft 365, News, SharePoint, SharePoint templates - Article Type: News SharePoint, the endpoint for most roads in Microsoft 365, is the bedrock for the company’s collaboration platform continues to entrench itself deeper into the productivity world with tools like Teams and Viva. SharePoint, the endpoint for many roads in Microsoft 365, is the bedrock for the company’s collaboration platform and it continues to entrench itself deeper into the productivity world with tools like Teams and Viva. But sometimes classic SharePoint is where your heart lives and building a site for your users is an afternoon well-spent. And to keep it to an ‘afternoon’, starting in later this month, Microsoft will begin rolling out scenario-based site templates for online and mobile that will expedite the creation process. Each of the new templates will be pre-populated with content and web parts that are fully customizable to help bring the specified content to your users. With these new templates, the creator will have the ability to construct a new site or more importantly, apply a template to an existing site. Simply select the template, deploy it, and make sure everything appears as expected and you are done. SharePoint template browser - coming soon to your tenant. The reason I think that applying to exiting sites may be a popular option for many is that updating SharePoint sites can sometimes be a burden for inexperienced users and moving a templatized solution – should streamline the update process. Not to mention that by using templates, you have a consistent user experience across your intranet. Of course, net-new pages shouldn’t be overlooked and Microsoft is going to have several templates ready for release when this functionality reaches your tenant. Communication site templates: Department -... --- ### Outlook on the Web - Use Board view in Calendar to Enhance your Time Management Skills - Published: 2021-04-07 - Modified: 2024-09-04 - URL: https://petri.com/outlook-on-the-web-use-board-view-in-calendar-to-enhance-your-time-management-skills/ - Categories: Microsoft 365 - Tags: Microsoft, Outlook - Article Type: News "Everyone needs some extra time. " I doubt you'll meet many in IT that won't agree with this statement. I certainly could use a few extra hours every week. Like, 3. That's probably the sweet spot. Struggling to effectively prioritize and organize your time, manage meetings, find time to focus? Microsoft mentioned last July that "time is the fire in which we burn"... wait. Microsoft didn't say that... sorry, that was a movie quote. Time is one of the most precious resources we have. Over the past year, almost two-thirds of information workers have had their typical workday routine disrupted along with their personal space where they work. One of the new capabilities they're bringing to Outlook to assist us is the new Outlook calendar board. The traditional calendar has been around for a long time. Your Outlook calendar allows you to see what your day, your week, and your month looks like in terms of commitments, meetings, webinars, etc. We also have, on average, six other tools we use to keep track of all these commitments. Sticky notes, reminders, ToDos. When using these tools, you need to flip back and forth, possibly double-tracking some items. Plus, we need to live beyond the 30-minute grid view of our calendars. Wouldn't it be nice if you had a dashboard view that gave you this all at once? This is what the new 'board' view is all about. Now, you can utilize the coming 'Board' view in your Outlook Calendar to quickly see and manage your... --- ### Using Stellar Repair for Outlook to Recover a Corrupted PST - Published: 2021-04-07 - Modified: 2024-09-04 - URL: https://petri.com/product-review-stellar-repair-for-outlook/ - Categories: Microsoft 365, Outlook - Tags: Microsoft Outlook - Article Type: Sponsored This post was Sponsored by Stellar Repair, you can learn more about their PST Recovery Tool here. Email is the de facto standard for today’s business communications. Businesses rely on email for personal communications, team assignments, announcements, and notifications as well as purchasing and other intracompany communications. This has been particularly true during the recent pandemic where many businesses relied heavily on email to communicate with a remote workforce. In addition, email is also often used to perform an essential record-keeping function where you use it to track everything from personal conversations to purchase records. When you depend on email for everything from your daily communications to your essential record-keeping it’s a major crisis if something goes wrong. While there are several email applications, Microsoft Outlook is the most popular email application for business users. Most businesses use Office 365 or the desktop versions of Microsoft Outlook for their email functions. When Outlook fails, it is usually because of corruption to its internal data stores.   Outlook stores its email data in the form of PST (Personal Storage Table) file with an extension of . pst. The PST file is a binary file that stores all of the Outlook data including emails, contacts, and calendars. In this product review, you’ll see how Stellar Repair for Outlook tool can repair PST file corruption. First, we’ll look into some of the common reasons that might cause Outlook to fail. Then you’ll see how to install Stellar Repair for Outlook and use to repair corrupted... --- ### How to Control Intune Enrollment with Enrollment Restrictions - Published: 2021-04-06 - Modified: 2025-02-10 - URL: https://petri.com/how-to-control-intune-enrollment-with-enrollment-restrictions/ - Categories: Endpoint Management, Microsoft 365, Windows 10 - Tags: intune, Microsoft 365, Windows 10 - Article Type: How To Enrollment restrictions are sets of rules assigned to Azure AD groups.  There are two types of enrollment restrictions: device type and device limit. Part of what makes Intune such a compelling management tool is its universally accessible nature.   Devices can be managed anywhere with an internet connection, eliminating dependencies on communicating with on-premises infrastructure over things like a VPN.   Devices can also be enrolled anywhere with an internet connection and, by default, this is available to any user on any device. There's an advantage to this: your IT team get manageability of devices, with which comes control, with which comes the ability to secure and monitor its use.   This is ideal for bring your own device (BYOD) scenarios.   But be careful.   If your users start fully enrolling their devices into Intune, do you have a policy advising them of such?   Do your users feel comfortable with internal IT having the ability to remotely manage, including fully wipe, their machines?   And do you even want such responsibility or blurring of the lines between what is corporate and what isn't? To have some more control over what we allow enroll into Intune, we can use enrollment restrictions. Enrollment restrictions are sets of rules assigned to Azure AD groups.   There are two types of enrollment restrictions: device type and device limit.   This lets you have different rules for different users.   For example, you may allow your IT team or a pilot group of users the permission to enroll personal devices while everyone else cannot.   The more restriction rules you have with different assignments, the higher the likelihood of a user being assigned multiple restrictions.   To deal... --- ### Outlook Mobile Updates Help Keep Work and Personal Content Separate - Published: 2021-04-05 - Modified: 2024-09-04 - URL: https://petri.com/outlook-mobile-updates-help-keep-work-and-personal-content-separate/ - Categories: Microsoft 365 - Tags: Microsoft, News, Outlook - Article Type: News Over the past year, Microsoft's Outlook mobile development team has been assisting you and your users with providing a clear and separate perspective between your work and personal accounts in the Outlook mobile app. They've also helped users identify external messages for security purposes and to keep malicious threats out of your networks. There are 4 categories of improvements to highlight here. Account Switching To avoid sending company emails to your colleague's personal email accounts, Microsoft has added visual cues when composing new emails and calendar invites. When sending an email from your Office 365 account for work, there is a clear visual cue at the top of the email composition window showing what account you're using. Switch Accounts Locked Expand If you are using Intune app policies, you are blocked from sending from your personal email account as indicated by the padlock icon above. If the app detects data in the body or subject protected by said policies, Outlook will prevent that data from being sent from the wrong account. Contact Separation For efficiency purposes, when composing new emails and calendar invites, only the Contacts that belong to the account being used will surface with autocomplete and searches. If you're sending from your work account, there is a clear separation between the Contacts in your work and personal accounts. When you search your directory, you'll only see your work Contacts and users. This prevents your users from sending to a colleague's personal email account, which would not... --- ### Microsoft to Finally Enable Joining Teams Meeting Without a Link - Published: 2021-04-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-finally-enable-joining-teams-meeting-without-a-link/ - Categories: Microsoft 365 - Tags: Microsoft, News, Teams - Article Type: News Microsoft has announced that you will soon be able to use meeting IDs to join a meeting instead of a link. During the past year, Microsoft Teams has seen what can only be described as explosive growth. The collaboration tool has gone from a new product inside of Microsoft 365 to the center of the suite with more than 115 million people using the application every day. One of the core pillars of Teams is the ability to host meetings but at this time, the easiest way to join a meeting is to click a link in the meeting invite. But what if you can’t find that link? For now, you are regulated to searching your email for the lost link. Like many other digital platforms, Microsoft will soon introduce the ability to enter a digital meeting ID instead of being forced to click a link. This is a small step forward to making Teams a bit more accessible and a little bit less frustrating to use. The way these feature works is that each meeting will be automatically assigned a Meeting ID which is a 13 digit number that you can enter to join a meeting. You can enter this meeting ID in the Teams calendar to instantly join a meeting – no link required. Microsoft states that “all meetings will have a Meeting ID that is automatically assigned to a Microsoft Teams user and added to the meeting invite under the meeting link. Meeting attendees can join the meeting by entering the Meeting ID. For all meeting attendees, the pre-join, lobby and security will remain the same. ” Where I... --- ### Everything You Need to Know About Power Platform – March 2021 - Published: 2021-04-02 - Modified: 2021-04-02 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-march-2021/ - Categories: PowerApps - Tags: Power Platform - Article Type: News Hello Power Platform Friends. Spring has finally sprung here in Ohio spring, so I am dying to get outside and will keep this short. Start them early! Nisha Sinha is a sixth-grader in Vancouver, Canada who wrote a kudos app for her school using Power Apps. Now students and teachers can send each other creative Kudos like “Faster than a cheetah! ” and “You have a heart as big as a frigate bird! ”. Check out Nisha’s app and learn more about someone who is “Smarter than Mary Poppins! ” here. Microsoft Ignite Another Microsoft Ignite has come and gone and we got some exciting updates as Microsoft continues to invest in the Power Platform. If you missed it, catch my Ignite recap where I discuss Microsoft’s announcement regarding Power Fx and Power Automate Desktop. Licensing is hard! Starting April 2nd, Power BI Premium Per User licenses will be available as an option to the per capacity license.   This is good news for organizations that needed Power BI Premium but only for a small group of people. Check out the FAQ to learn more. In other licensing news, the Power Platform admin center will soon provide more information around Power Automate licensing and usage. Enhanced Governance and Administration Microsoft announced many new features and enhancements to help you keep on top of the Power Platform. There is something for everyone from new tenant-wide reporting on usage to greater control over what connectors can access. Find out more here. Looking just around the corner Look for these features... --- ### Everything You Need to Know About Azure Infrastructure – March 2021 Edition - Published: 2021-04-02 - Modified: 2021-04-02 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-march-2021-edition/ - Categories: Microsoft Azure - Tags: Availability Zones, Azure, Azure App Service, Azure Backup, Azure Defender, Azure ExpressRoute, Azure Load Balancer, Azure Monitor, Azure Route Server, Azure Security Center, Azure Virtual Machines, Azure VMware Solution, Azure VPN gateway, IaaS, Managed Disks, Microsoft Ignite, Microsoft Ignite 2021, Network Insights, NSX, Premium SSD, Private Peering, Service Tags, User-Defined Routing, Windows Server 2022, WS2022, Zone Redundant Storage, ZRS - Article Type: Overview Microsoft ran another virtual edition of the Ignite conference in March. As usual there were a large number of Azure infrastructure announcements. Availability Zones Expansion Microsoft has committed to introducing availability zones to all Azure regions by the end of 2021. An Azure region (supposedly) is made up of one or more physical data centers – a few, such as Norway West are rack space rented from third-party hosting providers. Some regions have many data centers, some beside each other, some spread across a city (within 2 milliseconds of latency). Before availability zones were added to Microsoft Azure, a facilities outage (power, networking, cooling) to one building could bring down all the data centers in the region. With compute and storage, we have been able to use locally-redundant storage (LRS) and availability sets (anti-affinity) to spread data replicas and compute instances across different nodes, but they were constrained to the same co-lo (the Microsoft term for a room) in a single data center in the region. One faulty temperature or climate sensor could bring down that room, and all replicas for your workload – this has happened in Microsoft Azure. Availability zones create a boundary between sets of the physical data centers in a region. Each availability zone has independent power, cooling, and networking. Compute resources can be spread across zones and storage can use zone-redundant storage (ZRS) to place the data replicas across 3 availability zones. It sounds great, but only a few Azure regions have supported... --- ### Everything You Need to Know About Windows – March 2021 - Published: 2021-04-02 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-march-2021/ - Categories: Windows 10 - Tags: Microsoft Edge, Project Reunion, Windows 10, Windows 10X, Windows Insider, Windows Server 2022 - Article Type: News This month sees a bumper crop of interesting announcements, despite the expected lack of Windows news at Ignite. Microsoft officially announced Windows Server 2022, Windows 10 21H1 is now available for pre-validation testing, Project Reunion reaches general availability with version 0. 5, and Windows 10X is reportedly delayed until the second half of 2021. Classic Edge support has ended Support for the legacy version of Microsoft Edge ended March 9th. It shouldn't come as a surprise as Microsoft has been warning about it for some time. For more information, check out Microsoft's blog post here. Edge 89 released Microsoft released version 89 of its Edge browser at the beginning of March. Sleeping tabs is now fully available in this release and it should improve performance by reducing resource usage. Version 89 also gets the optional vertical tabs feature, some improvements to the PDF reader, new Group Policy settings, startup boost, and intensive resources throttling. Microsoft says that startup boost should improve load times by up to 41%. And intensive resources throttling reduces resource usage by prioritizing your active tab. It works by throttling JavaScript. And it doesn't impact other background processes. You can find the release notes for Edge here. Microsoft fixes Windows 10 printer issues, or does it? You may have heard that March's Patch Tuesday cumulative update (KB50000802) for Windows 10 caused printing issues for some users. Some PCs crashed when trying to print. Microsoft released an out-of-band patch to fix the issue but appears to have... --- ### Microsoft 365 Falls Over Because of DNS - Published: 2021-04-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-outage-currently-impacting-many-online-services/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Microsoft 365, News - Article Type: News If you can't get Teams to authenticate or properly access your Microsoft 365 content, you are not alone. It appears that there is another significant disruption to Microsoft's cloud service as both Office 365 status and Azure status pages or currently offline. If you can't get Teams to send messages or properly access your Microsoft 365 content, you are not alone. It appears that there is another significant disruption to Microsoft's cloud service as both Office 365 status and Azure status pages or currently offline. The disruption to the service started sometime around 5:30 P. M ET but the extent of the outage is not quite known yet. But it appears that this is quite widespread with Teams, OneDrive, Bing. com, and even Xbox services are not operating as expected. Microsoft 365 Admin Center failing to show proper service health indicators. This is the second major disruption in several weeks with Azure AD being knocked-offline a few weeks ago. While we do not know the exact issue, considering how widespread the problem is across the Microsoft ecosystem, I would hedge that it could be DNS-related... because it is always DNS. Microsoft has acknowledged that they are aware of the outage and that they are working to resolve the issue. That being said, the company has yet to offer an expected time for services to return to nominal performance. Microsoft status pages confirm that it is a DNS-related outage. We will keep this post updated as we learn more about the outage and its return to nominal operation.   As of about 6: 40P. M. , Microsoft's online services are returning to nominal operation. As anticipated, the issue was DNS and after re-routing traffic to an alternative DNS service, Microsoft... --- ### Understanding Microsoft 365 Data, What is and Is Not Your Responsibility - Published: 2021-04-01 - Modified: 2024-05-10 - URL: https://petri.com/understanding-microsoft-365-data-what-is-and-is-not-your-responsibility/ - Categories: Microsoft 365 - Tags: Backups, Data, Microsoft 365, responsibilities, responsibility - Article Type: Sponsored When people talk about the security of data in Microsoft 365, invariably phrase you’ll hear – and I don’t know who coined it – “the cloud is just someone else’s computer”. When someone says it to me, I literally have to stop myself from saying “... but actually” before we both explode into memes. Microsoft 365 is technically things that run on computers, but it would be absolutely, utterly, incorrect to say it’s just that. A short, terrible history of the cloud, but bear with me... I first visited the cloud back as a young, fresh-faced MVP, and despite having a slight hope that it would, in fact, turn out to all be liquid suspended in the air somehow holding data, it was in fact computers. Lots and lots of them. Prior to visiting a Microsoft facility, I had run data centers in a past job as a systems administrator and visited many co-location facilities and hosting providers; the Microsoft datacenter blew my mind. Sponsored:  Afi. ai provides a modern solution for backing up Office 365 including full Teams support, SharePoint and OneDrive file metadata and sharing permissions, and many other advanced and modern features. We’re over a decade into vendors like Microsoft running cloud services, but it still needs to be said – your local IT provider running a “cloud” is not the same as Microsoft or Amazon running cloud services. Your local IT provider – or any similar reasonably large managed data center is not in the same league. Heck,... --- ### Microsoft's Bringing 'in-house' ads to the Teams Activity Feed - Published: 2021-03-31 - Modified: 2021-03-31 - URL: https://petri.com/microsofts-bringing-in-house-ads-to-the-teams-activity-feed/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Microsoft 365, News, Teams - Article Type: News Microsoft has announced that it will start telling your users that they can also use Teams for personal use with a new banner notification in the activity feed. Last year, Microsoft announced that it was going to turn its popular Teams application into a consumer communication tool too. This is accomplished by linking your Teams app to a personal MSA and thanks to the magic of fast account switching, the idea is that you can switch between work and personal accounts to quickly access all of your communication needs insides a single application. Following the announcement of the features for Teams to entice consumers to use the service, the noise around the use-case has been rather quiet since that event. So quiet in fact that I have been loudly wondering on various podcasts if Microsoft was giving up on the idea but that does not appear to be the case. Announced this week and starting at the end of April, Microsoft is going to ramp up its efforts to convince you to add your personal MSA to your Teams app. The company is going to do this by adding a new banner in the activity feed for Teams Mobile users telling you about the feature. There is a way to stop this banner from showing up, but it is not elegant by any means. Microsoft says that if you do not want your users to see this banner, you must submit a help ticket in the Microsoft 365 admin tenant and your org can be excluded. But, this will not stop your users from adding another account to their app, to do that, you need to follow the... --- ### How to Search Azure Services by Region - Published: 2021-03-30 - Modified: 2024-09-04 - URL: https://petri.com/how-to-search-azure-services-by-region/ - Categories: Backup & Storage, Cloud Computing, Microsoft Azure - Tags: Azure, How To, Microsoft - Article Type: How To I do most of my Azure work in both North Central US and Central US. However, I had a recent project where I needed to deploy some Azure storage in the new South Africa North region. Random, I love how the names get names by their dates of entry and there is a funny story on West Europe and North Europe. You can always look at the current Azure Geographies. For my project that required deploying some Azure storage services in South Africa North region, I realized that this was a good reminder to check and see what services are available in what region. The issue I ran into was the Azure Archive Storage is not offered in South Africa North. Now, this isn’t a big issue as I was able to work this particular use case around in use a different region, but it is a reminder to be versed in how to search these offerings. Below is me looking at the USA and Africa regions, by storage: There are some interesting observations you can make when you take a look across the services you use. For countries or continents that have a lot of regions, it may be good to make sure you have the full offering. When I look at Azure Storage services above, I’m in good shape with Central US and North Central US where I do most of my work. Other services in Azure get more variance. One of the best examples are... --- ### Microsoft's Adding 'Supervisor' Functionality to Monitor Teams Private Chats - Published: 2021-03-29 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-adding-supervisor-functionality-to-monitor-teams-private-chats/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft 365, News, Teams - Article Type: News Microsoft will roll-out a new feature later this year that should will increase visibility for Teams private chats. Microsoft Teams has many features packed under the hood and when used correctly, creates a robust application that enables collaboration that can improve individual or group productivity. But at the same time, when the tool is incorrectly used, it can have a significant impact on your organization. In schools, Teams is used differently than in the corporate world – primarily because you have a much younger demographic using the tool and you need to increase the monitoring of the individuals for unapproved activities. One area that is prone to abuse is the 1:1 chat functionality. As of right now, there is not an easy way to restrict individual users from chatting and with cyber-bullying being a very real concern in today’s society, Teams needs better moderation tools for the education sector. Coming in May, Microsoft will be rolling out a new ‘Supervised Chat’ option that, as the name suggests, can let a teacher or administrator monitor individual chats – this feature was announced with MC246703. When this option becomes available, you will be able to update your messaging policies to enable the feature that requires a supervisor to be present, or at minimum, part of the chat for 1:1 conversations but this isn’t a backdoor way to secretly monitor conversations. If you enable this feature for your tenant, the way that it works is that it will restrict users from starting new chats unless a supervisor is present. Microsoft says that “when chat supervision is enabled, supervisors aren't allowed to... --- ### How to Automatically Hybrid Azure AD Join and Intune Enroll PCs - Published: 2021-03-29 - Modified: 2024-09-04 - URL: https://petri.com/how-to-automatically-hybrid-azure-ad-join-and-intune-enroll-pcs/ - Categories: Microsoft 365, Windows 10, Windows Server - Tags: Active Directory, Azure Active Directory, intune, Microsoft, Microsoft 365 - Article Type: How To On-premises Active Directory domain-joined PCs have typically been managed with tools such as Group Policy.   At larger scales, you may have Configuration Manager or third-party tools.   The availability of Intune (part of Endpoint Manager) in Microsoft 365 subscriptions such as Business Premium and E3 has opened up an alternative.   The benefit many are seeing over their existing Windows Server-based toolkit is that Intune-managed devices can be controlled over the public internet.   Unlike Group Policy, they do not require line of sight to an on-premises infrastructure to retrieve settings and software, which means less reliance on things such as your VPN when users are off-site (which, you may have noticed, is a big thing now).   Configuration Manager lets you do something similar with Cloud Management Gateway, but there is an infrastructure cost to that, which isn't the case with Intune. Getting your domain PCs into a position they can be managed by Intune is called enrollment: you enroll your PC into an MDM, in our case Intune.   This can be achieved (somewhat ironically given the earlier comments) by Group Policy on Windows 10 version 1709+, which is called auto-enrollment. After the policy applies, the devices will appear in Endpoint Manager and you can control them from the cloud. One of the important prerequisites to automatic enrolment is that devices must first be Hybrid Azure AD Joined (HAADJ).   In this state, the device remains joined to your on-premises Active Directory, and users still authenticate against on-premises Domain Controllers. However, the device... --- ### PowerPoint Auto Fix Can Clean up Your Slides with a Single Click - Published: 2021-03-29 - Modified: 2024-09-04 - URL: https://petri.com/powerpoint-auto-fix-can-clean-up-your-slides-with-a-single-click/ - Categories: Microsoft 365, Office - Tags: Auto Fix, Microsoft, News, PowerPoint - Article Type: News You're running late prepping for a meeting... your supervisor asked you to whip up a short PowerPoint slide deck for your part of the presentation... You forgot! Scrambling, you add a few boxes, ovals, and polygon shapes for some key data but you're spending an inordinate amount of time trying to get all your graphic elements to line up. Microsoft is making it easier for you to be efficient and add some polish at the same time to your presentation with Auto Fix. Artificial Intelligence (AI) is at the heart of this new feature. PowerPoint will automatically align, uniformly resize, resolve the layout of your elements, and straighten any connectors/lines you're using with your flow, to give your ideas a clean boost. Instead of manually lining everything up, sizing each element uniformly, simply drag and select all your elements, and click Auto Fix to save time. Select two or more elements on a slide. You have two options: Right-click on one of the elements, choose Auto Fix. On the Home tab, in the Drawing group, click Arrange, then Auto Fix. Voila! Arrange - Auto Fix Expand You can go from this: Before... Expand to this! After Auto Fix Expand Auto Fix works independently and will not work with SmartArt, group shapes, and elements that overlap. After Microsoft sees some telemetry on how users start using this feature, they will expand the scope of it to address these current limitations. Note - In scenarios with a more complex grouping of elements, Microsoft recommends... --- ### Windows Server 2022 Secured-Core and Azure Hybrid Services Block Kernel Level Attacks - Published: 2021-03-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2022-secured-core-and-azure-hybrid-services-block-kernel-level-attacks/ - Categories: Windows Server 2022 - Tags: Azure Defender, Security, Windows Server 2022 - Article Type: News Microsoft announced at its Ignite conference earlier this year that it is extending its Secured-Core initiative to Windows Server 2022. Currently available for selected Windows 10 devices, Secured-Core requires hardware to meet new standards that follow isolation best practices and to have minimal trust of firmware. Microsoft says that Secured-Core devices are intended for industries that handle intellectual property, customer, or personal data, including Personally Identifiable Information (PII). Secured-Core servers are designed to prevent firmware attacks. Using a combination of identity, virtualization, OS, and hardware defenses, Secured-Core servers have protection at both the hardware and software layers. Along with Windows Defender System Guard, which is built-in to Windows Server 2022, Secured-Core servers provide organizations with assurances of OS integrity and verifiable measurements to help prevent firmware attacks. Microsoft says: This release brings Secured-core to Windows Server to help secure the systems that would run workloads on Windows Server 2022. Secured-core builds on technologies such as System Guard and Windows Server Virtualization-based Security to minimize risk from firmware vulnerabilities and advanced malware. Microsoft acknowledges that securing servers is one of today's hardest tasks for IT departments. With Secured-Core, customers get simplified security because much of the hard work has already been done by Microsoft and its silicon partners. Enabling Windows Server 2022 protections in Windows Admin Center Windows Server 2022 devices are protected against firmware attacks with Windows Defender System Guard. Once a server has booted and the CPU initiated safely, Windows takes control and uses Virtualization-Based Security (VBS)... --- ### How to Set Up Windows Server Rebootless (Hotpatching) Patching - Published: 2021-03-25 - Modified: 2024-09-04 - URL: https://petri.com/how-to-set-up-windows-server-rebootless-hotpatching-patching/ - Categories: Microsoft Azure - Tags: cloud computing, Hotpatching, Microsoft Azure, Security, Windows Server - Article Type: How To As part of the Automatic VM Guest Patching for Azure VMs preview announced at Ignite in March, Microsoft introduced Windows Server hotpatching. Hotpatching lets organizations apply security patches to Windows Server without rebooting. A feature that's been part of other server platforms for years, hotpatching finally comes to Windows Server. But there are some caveats. The first is that for the time being at least, hotpatching only works in Windows Server Azure Edition virtual machines (VMs). That means your server workloads must be running in the Azure cloud. Microsoft says that hotpatching brings the following benefits: Lower workload impact with less reboots Faster deployment of updates as the packages are smaller, install faster, and have easier patch orchestration with Azure Update Manager Better protection, as the Hotpatch update packages are scoped to Windows security updates that install faster without rebooting I expect that Microsoft will use hotpatching as bait to lure more organizations to move Windows Server workloads to the cloud. But time will tell. Baseline Windows Update Latest Cumulative Update The second caveat is that you will still need to reboot Windows Server - at least sometimes. Before you can apply hotpatches to Windows Server, it must be running the latest baseline Windows Update Latest Cumulative Update (CU). Microsoft says that planned baseline updates will be released every three months. That means, at least once in three months, you will need to reboot Windows Server. Hotpatches will be released monthly on Patch Tuesday. Image #1 Expand How... --- ### How to Package and Deploy Windows Applications with Intune - Published: 2021-03-24 - Modified: 2024-09-04 - URL: https://petri.com/how-to-package-and-deploy-windows-applications-with-intune/ - Categories: Microsoft 365, Windows 10 - Tags: intune, Microsoft, Microsoft 365 - Article Type: How To Intune Administrators can deploy, make optionally available, or uninstall Win32 apps with the help of Windows 10's Intune Management Extension (IME).   The IME is a service installed on Windows 10 that acts as the engine to execute these actions and, additionally, PowerShell scripts (which were originally its only purpose). Win32 apps in the context of Intune really refer to the usual app extensions such as EXE, MSI, and even script-based installations like BAT and PS1. Getting your Win32 app ready for Intune upload Prior to the IME supporting Win32 apps, only MSI and APPX type installations could be uploaded.   Apps using this older approach are called line-of-business (LOB) apps.   LOB uses built-in MDM functionality (specifically, the EnterpriseDesktopAppManagement CSP) rather than an agent.   This allowed for basic deployments, but the IME introduces additional benefits like dependencies, requirements, custom install commands, and supersedence. Additionally, Win32 apps can reduce your office's internet bandwidth consumption by using peer-to-peer distribution with a feature called Delivery Optimization. As both methods allow the deployment of MSI, but Win32 supports far more options, you may be wonder: why deploy using LOB, which is still an option in Endpoint Manager?   The answer: you shouldn't.   I can't see why LOB exists for any reason other than legacy support at this point. This article will guide you through the process of getting your Win32 app ready for Intune upload ("packaging"), configuring it for client installation ("deploying"), then monitoring the deployment after you push it out. Packaging the app You cannot... --- ### Improved Containerization Features Coming in Windows Server 2022 - Published: 2021-03-23 - Modified: 2021-03-23 - URL: https://petri.com/improved-containerization-features-coming-in-windows-server-2022/ - Categories: Windows Server 2022 - Tags: Docker, Kubernetes, Windows Admin Center, Windows Containers, Windows Server 2022 - Article Type: News Microsoft recently announced the first preview of Windows Server 2022, and some of its new features, at Ignite at the beginning of March. In this article, we will look at new container options in the upcoming version of Windows Server. Microsoft is adding new features to Windows Server 2022 to help organizations accelerate application modernization. Some of the new features are already part of Windows Server releases on the Semi-Annual Channel (SAC). Smaller Windows Server 20222 container images for faster download and startup times Microsoft had already announced that Windows Server Core container images are 40% smaller. Additionally, startup times to Windows PowerShell are 30-45% faster. The improvements should apply in any scenario where Windows Server Core container images are used and they will be most beneficial for scaling apps, continuous integration and continuous delivery (CI/CD), and other situations where images are pulled without using a Docker image cache or where faster startup times are required. Microsoft has been able to reduce Server Core container image sizes by including a smaller set of NGEN images, which are a series of precompiled . NET native images that are generated using a tool called Ngen. exe to improve startup performance. Decreasing image size and maintaining startup performance was the biggest challenge as NGEN was the culprit for increased image size. To achieve its goals for the Windows Server Core base image layer, Microsoft made the following changes: Included a serviced copy of . NET Framework 4. 8. Removed all NGEN images, except for mscorlib. dll,... --- ### How to Use Windows Admin Center in the Azure Portal - Published: 2021-03-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-windows-admin-center-in-the-azure-portal/ - Categories: Microsoft Azure - Tags: cloud computing, Microsoft Azure, Windows Admin Center, Windows Server - Article Type: How To Microsoft announced at its recent Ignite conference that WAC in the Azure Portal in now available in public preview. Prior to this update, it was only possible to manage VMs at the infrastructure level in the Azure Portal. But WAC in the Azure Portal lets administrators manage Windows Server VM guests at a more granular level. For instance, you could manage server files, certificates, and view events. WAC gives you better oversight of Windows Server VMs right from the Azure Portal. WAC in the Azure Portal requirements Microsoft has laid out the requirements for using WAC in the Azure Portal. Servers must be running Windows Server 2019 or Windows Server 2016 with at least 3GB of memory. The VMs can be in any region but WAC isn't supported in Azure China, Azure Government, or other non-public clouds. VM configuration must allow outbound Internet access or an outbound port rule allowing HTTPS traffic to the WAC service IP address. The Azure WAC service doesn't use a service tag at the moment. Security considerations Just like with Remote Desktop, Microsoft doesn't recommend connecting to VMs using public IP addresses. The best strategy is to connect using a private IP address in the VMs virtual network. You can connect your management PC to an Azure virtual network using a Point-to-Site (P2S) VPN gateway. How to Set Up Windows Admin Center in the Azure Portal For simplicity, we'll set up WAC in the Azure Portal to work with a single VM on... --- ### Microsoft's Making it Easier to Adjust Sharing Link Permissions - Published: 2021-03-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-it-easier-to-adjust-sharing-link-permissions/ - Categories: Microsoft 365 - Article Type: News Microsoft will be rolling out a simplified sharing control for files stored in SharePoint and OneDrive. This will allow users to more easily control the sharing of files for their collaborators. When it comes to modern collaboration, don't send emails, send links. Having everyone collaborate on a single document, instead of having multiple files of the same information floating around, helps keep "one version of the truth". Microsoft will be rolling out a simplified sharing control for files stored in SharePoint and OneDrive. This will allow users to more easily control the sharing of files for their collaborators. Here is an example of the coming experience: To give you a refresher on the options available when sharing, the first item you can adjust is who this sharing action is targeted to: Anyone with the link - This is the least secure, anonymous choice. Anyone who gains access to this link can access the file(s) being shared. If they are outside your organization, they will not need any sort of authentication to access. Typically, many organizations will restrict this choice from end-users via the SharePoint Admin Center global external sharing settings. People in companydomain with the link - Anyone in your organization can access the file(s). External/guests will not have access. People with existing access - This is a safe, secure option as you're not granting anyone 'new' access to the file(s). Only existing users that have previously gained access will continue to have access. This is mostly used when someone requests you send them the sharing link they may have misplaced. (heh) Specific People - The most secure option whereby you explicitly list the users that will have access to the file(s). Only the email... --- ### Windows Admin Center in the Azure Portal is Now in Public Preview - Published: 2021-03-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-admin-center-in-the-azure-portal-is-now-in-public-preview/ - Categories: Microsoft Azure - Tags: cloud computing, Microsoft Azure, Windows Admin Center, Windows Server - Article Type: News During the first part of Ignite in September 22-24, 2020, Microsoft announced that it was bringing Windows Admin Center (WAC) to the Azure Portal. Windows Admin Center (WAC) is a complete reimagination of the built-in management consoles (MMC) that are used to configure Windows Server. WAC is a web-based administration portal for managing local or remote devices. It works with Windows Server 2022, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, and Windows Server 2012. It can also manage Hyper-V Server, Azure VMs, Azure Backup, highly converged infrastructures (HCI), and much more. Administrators access WAC through a gateway that hosts the web app. Because the gateway is a web app, administrators can connect to it from the public Internet and the local area network. Connecting to a gateway, rather than directly to the nodes you want to manage, provides more flexibility and the option to secure communications. Windows Admin Center in the Azure Portal The latest announcement brings WAC in the Azure Portal out of private preview. Prior to this update, it was only possible to manage VMs at the infrastructure level in the Azure Portal. But WAC in the Azure Portal lets administrators manage Windows Server VM guests at a more granular level. For instance, you could manage server files, certificates, and view events. WAC gives you better oversight of Windows Server VMs right from the Azure Portal. Image #1 Expand Windows Admin Center in the Azure Portal is Now in Public Preview (Image Credit:... --- ### GET-IT Practitioners Guide to Ignite is Happening Today - Published: 2021-03-18 - Modified: 2021-03-18 - URL: https://petri.com/get-it-practitioners-guide-to-ignite-is-happening-today/ - Categories: GET IT - Tags: GET-IT, GET-IT Ignite - Article Type: Overview Petri's GET-IT Practitioners Guide to Ignite is designed to help keep you updated on the key announcements from Microsoft's second virtual installment of their largest IT Pro conference. Petri's GET-IT Practitioners Guide to Ignite is designed to help keep you updated on the key announcements from Microsoft's second virtual installment of their largest IT Pro conference. Make sure to download the handouts here.  --- ### New 'Show Changes' feature Coming to Excel for the Web - Published: 2021-03-17 - Modified: 2024-09-04 - URL: https://petri.com/new-show-changes-feature-coming-to-excel-for-the-web/ - Categories: Microsoft 365 - Tags: Excel, Microsoft 365 - Article Type: News One of Microsoft Excel's Project Managers (PMs) on the Office Insider team recently published another 'Feature deep dive'. They announced a coming feature called Show Changes, which will allow authors more confidence when sharing and collaborating with others on Excel for the Web. 'Show Changes' will allow users sharing Excel files on OneDrive or SharePoint sites to view every change made to an Excel workbook over the past 60 days. You no longer have to worry about sharing your beautifully, meticulously crafted Excel spreadsheet with others, giving them edit rights. You'll be able to review every change made with the new Changes pane on the right. In your Excel file online, click the Review tab and click Show Changes. The Changes pane will open on the right showing you the changes to the spreadsheet with the recent changes on top. Image #1 Expand Image #2 Expand The Show Changes feature enables you to collaborate confidently with others by letting you see exactly what edits were made to your workbooks in the past 60 days. You can see details about who changed what, where, and when along with the previous values of cells for quick reverting if necessary. You can filter the changes by selecting any sheet, range, or individual cell, to check all the changes at that granular level. You can even peer into when bulk edits were made across a potentially larger number of cells. Edits are showing in the Changes pane, starting with the most recent. You can... --- ### How to Set an Out of Office Message in Teams > Setting an out-of-office message in Micrsoft Teams is easy. Learn how with this step-by-step article. - Published: 2021-03-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-set-a-teams-out-of-office-message/ - Categories: Microsoft, Microsoft 365, Microsoft Teams - Tags: How To, Microsoft, Out of Office, Teams - Article Type: How To Here is the simple way to set an out of office message using Microsoft Teams. When the magical moment comes that you are about to take a vacation (or one of the many other reasons you need to set an out-of-office automatic reply) and you have set up Outlook with auto-responding enabled, you will also want to set up MS Teams to do the same. Thankfully, there is now an office reply option in Teams that is easy to enable as a status message. And this isn’t a barebones implementation, Microsoft actually put some thought and effort behind this feature that makes it worth enabling when you will be away for an extended period. Set an Out-of-Office Message in Teams To set an out-of-office message, click your user icon in the top right corner of the Teams app for the desktop and top left on mobile and below the status setting indicator (available, busy, do not disturb) is the option to “set a status message”. If you click that button, you can set a message and you will also find a couple of different options to choose from to get the most out of the feature. Image #1 Expand You can find the out-of-office message under the user profile icon in the top right corner of Teams. The first option is to type the auto-respond message, this is quite basic; this will send a message back to a user who has sent you a message. But you also have the ability to @ mention someone in your org so that the... --- ### Microsoft Lists - An Evolution of SharePoint Lists - Published: 2021-03-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lists-an-evolution-of-sharepoint-lists/ - Categories: SharePoint, SharePoint Online - Tags: Lists, Microsoft, Microsoft 365, SharePoint Welcome to SharePoint Lists! - At least that's how Microsoft likely worded their introduction back in 2001 (Wow! ). The purpose of this post is to give a little background on what a SharePoint List is, the evolution over the years to the newer 'Modern List' in mid-to-late 2016, and the announcement of the new Microsoft 365 App, Microsoft Lists, at Microsoft's developer Build conference in May of 2020. The core driving factor that Microsoft set out in designing and developing Microsoft Lists was to produce a new front-end interface that was simple, elegant, functional, and easily accessible to appeal to a larger base of users. It looks like they succeeded! If you know even the basic fundamentals of what the SharePoint platform has offered from the very beginning in terms of productivity tools, you can essentially boil it down to document libraries and lists. Document libraries house, well, documents. Word documents, Excel spreadsheets, PDF files, pictures, almost anything really. Even your very favorite recipes of 'tots. ' :) But, ahem, we're talking about Lists. A SharePoint list is a collection of data that gives you and your co-workers a flexible way to organize information. The data is stored in a SharePoint Team Site in rows and columns. The column names and types define the type of list. Examples include text, currency, multiple-choice, dates, etc. Each item you add to a list makes up a row. You then create views to display data effectively. Highlight important information by sorting, grouping,... --- ### Microsoft Azure AD Outage Highlights Upcoming SLA Updates - Published: 2021-03-16 - Modified: 2021-03-16 - URL: https://petri.com/microsoft-cloud-outage-highlights-upcoming-sla-updates/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Azure AD, Microsoft, Microsoft 365, News - Article Type: News If you had trouble yesterday accessing many of Microsoft's services, you are not alone. For several hours, late into the afternoon on the East coast, Teams, Azure AD, and many other services were inaccessible. While outages are infrequent, they do happen with Microsoft 365 and each time this occurs, the company will post a triage of the root cause. In this instance, it was the rotation of security keys that sparked the fire that took down the services. The short version is that Microsoft, on a scheduled frequency, rotates keys used to support Azure AD’s interactions with OpenID and other standards for cryptographic signing operations. Because of a “complex cross-cloud migration”, one such key was marked ‘retain’ which means that it should not be pulled out of operation. You can probably see where this is going but that key was not retained and was pulled from operation with the net impact of many services no longer being able to authenticate correctly and taking down the services. This outage occurred because of a bug in the functionality to keep the single security key in rotation longer, not because of any outside threat. The other thing to point out here is that a similar incident occurred back in September and the company committed to improving the protection envelope around Azure AD services and more specifically, the backend to prevent issues like this from happening. At this time, those enhancements are not done rolling out but if they had been, they could have... --- ### Microsoft Releases Box to Microsoft 365 Migration Tool - Published: 2021-03-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-box-to-microsoft-365-migration-tool/ - Categories: Microsoft 365, Office, SharePoint - Tags: Box, Microsoft, Microsoft 365, migration, News - Article Type: News Microsoft has a new tool that will make it easier for companies to migration from Box to OneDrive/SharePoint. One of the more challenging tasks in the world of IT is migrating from one service to another. Because of the overhead involved, many companies will opt to stick with an existing solution, even if it’s not perfect, rather than devote the dollars and time to migrating and then educating users about the new software. But large service providers know this and will often provide migration services for a reasonable fee or sometimes no fee at all. Microsoft provides similar offerings and also automated tools to help move from popular data services as well. Announced today, via MC244608, the company’s tool for migrating from Box to Microsoft 365 is launching in public preview. This tool will help you move data stored in the Box cloud repository over to OneDrive or SharePoint. Image #1 Expand Box to Microsoft 365 migration tool - image credit: Microsoft The solution works by linking your Microsoft 365 and Box accounts with the migration tool and then mapping the Box users and their files to the same mapping within OneDrive. You will also have the option to map users to a SharePoint site and a Teams channel as well. As you would expect, there is a scan discovery tool that lets you see the files and mapping prior to making the move from Box to Microsoft 365. Keep in mind that to perform these actions, you will need to be the Global admin or OneDrive/SharePoint admin for your tenant. One thing to... --- ### Microsoft Releases ‘One-Click’ HAFNIUM Mitigation Tool - Published: 2021-03-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-one-click-hafnium-mitigation-tool/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Server - Tags: exchange, HAFNIUM, Microsoft, News - Article Type: News Microsoft has a new tool that will make installing a temporary patch much easier to block known HANFIUM attacks. To say the HAFNIUM has caused a bit of pandemonium the past week or so is a bit of an understatement. The 0-day vulnerability is being actively used by nefarious individuals and groups to access sensitive data. One of the many problems, aside from the last remaining Exchange server running inside many organizations, is that patching your infrastructure is not always a simple task. If you don’t have a dedicated security or IT team at your disposal (something that is a frequent occurrence in smaller companies), patching Exchange can be a significant challenge and result in downtime. Image #1 Expand Image Credit: Microsoft Announced today, Microsoft has released a ‘one-click’ tool that is able to patch Exchange Server 2013, 2016, and 2019 deployments. The company says that this tool is designed as an interim mitigation solution but does not fully replace the previously released patch for these systems. This tool also includes Microsoft Safety Scanner and once you run the application, it will perform the following actions: Mitigate against current known attacks using CVE-2021-26855 using a URL Rewrite configuration. Scan the Exchange Server using the Microsoft Safety Scanner. Attempt to reverse any changes made by identified threats. The company says that before running the tool, it’s important to understand that this patch is only effective against attacks that the company has seen so far and it is not guaranteed to protect against future attacks. They also recommend this tool over the previously released ExchangeMitigations. ps1. Further, if... --- ### Best Practices for Deploying BitLocker with Intune - Published: 2021-03-15 - Modified: 2024-09-04 - URL: https://petri.com/best-practices-for-deploying-bitlocker-with-intune/ - Categories: Compliance, Security, Windows 10 - Tags: bitlocker, intune, Microsoft - Article Type: How To To protect data at rest on your Intune-managed Windows devices, BitLocker disk encryption can be applied automatically using the BitLocker CSP.   If you are deploying devices with Autopilot, this will also allow you to encrypt them at the time of deployment.   Existing devices will be encrypted as soon as the device checks in with Intune to pull down the configuration. There is a wealth of settings in Intune for BitLocker. Some are unintuitive, some cause conflicts, and some are even hidden.   Following this article, you can configure BitLocker encryption to best-practice for reliable, secure disk encryption in your environment. The settings for BitLocker are exposed in two Microsoft Endpoint Manager (MEM) areas: endpoint security profiles and configuration profiles.   Both profile types ultimately configure the same background settings, but with a different user interface.   Endpoint security profiles are the newer type of Intune profile, with the intent being you can manage all your security rules in a dedicated part of MEM.   However, not all configuration possibilities are available in it.   Therefore, this best-practice guide relies on both profile types. In all scenarios, choose to assign your Intune settings to devices rather than users.   Disk encryption is not the kind of policy you want to always follow a user as they move from device to device, and may lead to unintended encryption. Endpoint security profile - configuration settings BitLocker endpoint security profiles are set up in Endpoint security > Manage > Disk encryption.   From here, choose Create Policy Image #1... --- ### Microsoft Announces Whiteboard for Android and Microsoft Teams - Published: 2021-03-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-whiteboard-for-android-and-microsoft-teams/ - Categories: Microsoft 365 - Tags: Android, iOS, Microsoft365, Whiteboard - Article Type: News A new Public Preview of the Microsoft Whiteboard app for Android and the launch of Microsoft Whiteboard for Microsoft Teams is here! Whiteboard in Teams Channel and Chat Users are now able to create a whiteboard associated with their favorite Teams channel or private chat session. Members of the channel are free to contribute and collaborate on whiteboards over time. To enable, click the Add a Tab '+' on the top of any Teams channel or chat, search for 'Whiteboard', and then enter a Name for the whiteboard and if you want to notify the channel of the newly created Whiteboard. Image #1 Expand Whiteboard for Android Building on their brand new software infrastructure for Web and Teams that Microsoft announced last year, Whiteboard for Android helps to close in on the overall vision of an ideal space for idea creation, accessible from any device, including mobile smartphones. Workflows can now be handled from anywhere, seamlessly bridging together teams across geographic areas, device types, and various teams. Whether you're using it on Teams, Web, Windows 10, iOS, or now Android, Microsoft Whiteboard provides an infinite space for your business imagination skills to flourish. Drawing, typing, adding a sticky note, keeping things stacked logically, all are possible with this new solution! Image #2 Expand To start using Whiteboard on your Android 6. 0 or later device, visit the Google Play Store via this preview link. Note - Currently, this preview will only work when you log in to Whiteboard with... --- ### Microsoft adds Extended Update Cadence for Edge Enterprise Users - Published: 2021-03-15 - Modified: 2021-03-15 - URL: https://petri.com/microsoft-adds-extended-update-cadence-for-edge-enterprise-users/ - Categories: Windows Client OS - Tags: Browsers, Edge, Microsoft, News - Article Type: News Microsoft is adding a new update option to Edge for Enterprise customers. If there is one thing that most IT Pros do not look forward to, it’s “update the critical software” day. While most updates install without any issues, sometimes things go a bit sideways like with the recent Patch Tuesday update that broke configurations for some printers. But in the world of browsers, workflow-breaking bugs are far less common and it’s typically easier to update the specific piece of software without too much blowback from operations. That being said, updates can still be time-consuming which is why it’s good to see Microsoft offering extended update cycles for Edge users. The Edge team has announced that they will be releasing updates faster and slower. For most, the browser will now be updated every four weeks, but for enterprise customers, there will be a new option that will space out updates to 8 weeks. Microsoft is officially calling this the “Extended Stable” option and in between major releases, expect bi-weekly security updates. This is important as browsers are frequently targeted for exploits but with the extended update option, this will not increase your vulnerability profile. This change in update support and release cadence will start with Edge 94; you can view the Edge Release Schedule page to monitor updates and changes. The changes coming to Edge are welcomed and not all that surprising considering that Google is taking a similar approach. There is little doubt that Edge moving to the Chromium engine was the correct move for the company as the browser is... --- ### AWS Turns 15 - Published: 2021-03-12 - Modified: 2021-03-12 - URL: https://petri.com/aws-turns-15/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS, AWS S3 - Article Type: News I know it seems almost impossible that it really could be 15 years but AWS launched its first service on Pi day March 14 2006 -- making AWS 15 years old I know it seems almost impossible that it really could be 15 years but AWS launched its first service on Pi day March 14 2006 -- making AWS 15 years old next week. On that fateful Pi day, Amazon launched their S3 cloud storage service which could be considered the birth of the cloud as we know it today. As most people know, Amazon S3 has virtually unlimited storage scalability and high availability as well as enterprise-class security and performance. To commemorate the event Amazon has planned AWS Pi Week 2021 for March 15-18 2021. AWS Pi Week is a 4-day live free virtual event hosted on the AWS channel on Twitch. AWS Pi Week consists of four half days of presentations that last from 9:00 AM PST – 1:00 PM PST (12:00 PM EST - 4:00 PM EST). The overall agenda for the event consists of: March 15th, 2021: Amazon S3 origins - foundations of cloud infrastructure March 16th, 2021: Achieving unparalleled scale and accelerating data movement March 17th, 2021: Security is job zero - Amazon S3 security framework and best practices March 18th, 2021: Building an evolvable system - supporting rapid growth and change Each day kicks off with an introduction by Werner Vogels, VP & CTO for Amazon. com, along a different co-presenter followed by a group of more in-depth sessions. Some of the topics covered include the history of S3, best practices for S3 data security, how S3 and other AWS services are architected for availability,... --- ### Microsoft Begins the Process to Shutdown Window Store for Business and Education - Published: 2021-03-11 - Modified: 2021-03-11 - URL: https://petri.com/microsoft-begins-the-process-to-shutdown-window-store-for-business-and-education/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Store, Microsoft Store for Business - Article Type: News And now it looks like Microsoft is taking more decisive action, at least for the business and education storefronts. The company has announced, via MC244068, that the company is starting to wind down the business and education stores. If there is one thing that has not materialized in a way that Microsoft had hoped, it would be app stores. The store on Windows 10, while it is filled with apps, has not lived up to the business objectives that were initially outlined and the same can be said for other stores like business and education. And now it looks like Microsoft is taking more decisive action, at least for the business and education storefronts. The company has announced, via MC244068, that the company is starting to close down the business and education stores. Specifically, the company says in the message that all apps that are sold, meaning every app that is not free, will no longer be available for purchase in the business or education stores. Further, anonymous browsing of the stores has been disabled and only those with active Azure AD accounts will be able to view the content. It’s important to note that Minecraft of Education is not impacted by these changes. If you have purchased apps from these marketplaces, you will still be able to receive updates and access your applications but you can no longer purchase new apps or licenses going forward. After these changes take place, which will occur on April 14th, you will still be able to assign and re-assign the licenses that you have already purchased. This is a big change for Microsoft and acknowledgment that its store tactics have not materialized in a way that has provided enough value to... --- ### New Personal Well-Being Insights Coming to Insights app in Teams - Published: 2021-03-11 - Modified: 2024-09-04 - URL: https://petri.com/new-personal-well-being-insights-coming-to-insights-app-in-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Insights, Microsoft, News, Teams - Article Type: News Microsoft announced some new Insights features coming to Teams earlier this year and at their Ignite conference last week. They recently offered a little more detail and rollout plans for their personal wellbeing features. Microsoft announced some new Viva Insights features coming to Teams earlier this year and at their Ignite conference last week. They recently offered a little more detail and rollout plans for their personal wellbeing features. Users will be able to enhance their mental wellbeing during the workday by including breathing breaks, sending praise to users and colleagues, pausing and reflecting during the workday, as well as utilizing an innovative 'virtual commute' to close out their day. Timeline: These features will start to roll out in early April 2021 and be complete by the end of June. Requirements: Users will need a provisioned Exchange mailbox to access these features in the Insights Teams app. Roll-out: Beginning today (March 8, 2021), unless an admin has disabled the app via policy, the Insights Teams app will be pre-installed for users and available along the left navigation bar in the Teams interface. The Insights app in Teams is bringing a new Home page with relevant suggestions and workflows that will focus on the wellbeing of your users. These include: Virtual commute - "users can schedule a virtual commute to help them wrap up their tasks from today, prepare for tomorrow's activities, and mindfully disconnect from work. " Praise - "users can schedule reminders to send praise to their top collaborators and build a habit of sharing gratitude. " Reflect - "users can schedule reminders to check in with themselves emotionally and save and reference their personal reflection history. " Image #1 Expand More updates are planned for... --- ### Microsoft Endpoint Manager's Updates Aim to Simplify Mobile Device Management Policy Creation - Published: 2021-03-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-endpoint-managers-new-settings-catalog-aims-to-simplify-mobile-device-management-policy-creation/ - Categories: Mobile - Tags: intune, Microsoft Endpoint Manager, Mobile Device Management, Windows 10 - Article Type: News Rolling out in public preview early February 2021, Microsoft is adding a new feature to its Endpoint Manager (MEM) solution called settings catalog. Rolling out in public preview early February 2021, Microsoft is adding a new feature to its Endpoint Manager (MEM) solution called settings catalog. MEM is a rebranding of System Center Configuration Manager (SCCM). It brings together ConfigMgr, Intune, Autopilot, Desktop Analytics, and many and other management tools under one umbrella. As a result of feedback from clients, settings catalog aims to solve some of the complexities around creating OMA-URI based Mobile Device Management (MDM) policies for Windows devices. It provides organizations with a shopping cart experience where IT can browse all the available policy settings for Windows and create custom policies from scratch. Settings catalog exposes thousands of settings for Windows 10, including many that haven't been available before. Settings are generated from the MDM Configuration Service Providers (CSPs) that are built-in to Windows. CSPs are responsible for managing defined groups of configuration settings in Windows. For example, there are Network and Defender CSPs, which are responsible for managing network and Windows Defender settings respectively. As Microsoft adds more configuration options to CSPs in each new Windows 10 feature update, settings are exposed faster in Intune through the catalog so that organizations can start using them quickly. Intune policy settings for Windows 10 are quite limited out-of-the-box, compared to what's on offer with Group Policy. Settings catalog helps solve that issue by letting IT add policies to Intune configuration profiles without manually creating custom OMA-URI policies. And while support is limited, settings catalog can be used to configure... --- ### HAFNIUM Highlights the Problem with Removing the Last Exchange Server - Published: 2021-03-10 - Modified: 2024-09-04 - URL: https://petri.com/hafnium-highlights-the-problem-with-removing-the-last-exchange-server/ - Categories: Exchange Server, Microsoft 365 - Tags: exchange, HAFNIUM, Hybrid Server, Identity, Last Exchange Server, Recipient Management - Article Type: Opinion Unless you have been living under a rock for the last week, you could not have missed that the Microsoft 365 world has been abuzz with worry after Exchange Server 2010-2019 succumbed to zero-day exploits, believed to being used by a group known as HAFNIUM. These exploits are allowing an attacker to compromise Exchange and forcing IT Pros to stay up all night pushing patches. Microsoft swiftly made available patches for up-to-date versions of Exchange, along with comprehensive guidance and tooling for discovering whether your environment could be compromised; and followed up quickly with patches for older versions of Exchange that aren’t running supported Cumulative Updates. These patches are crucial whether you are running Exchange Server to host your mailboxes, or just have a single Exchange Server used for Hybrid recipient management post-migration. Security experts and Microsoft executives have been quick to rightly point out that if you can move to Exchange Online, then you should do so. If you are running Exchange Server to host your mailboxes today, based on the discussions I've had with other IT professionals, it is highly likely that if you could, you would move mailboxes to Exchange Online. It is widely accepted that for most organizations, Exchange Online is the best option. Therefore, I’m not going to labor that point. Unfortunately, though, every organization that uses Microsoft 365 and uses Azure AD Connect to synchronize their Active Directory must keep an Exchange Server running to manage recipient attributes to be fully supported by Microsoft... . --- ### Patch Tuesday – March 2021 - Published: 2021-03-10 - Modified: 2021-03-10 - URL: https://petri.com/patch-tuesday-march-2021/ - Categories: Security, Windows Client OS, Windows Server - Tags: Exchange Server, Patch Tuesday, sharepoint server, Windows 10, Windows Server - Article Type: News Microsoft released patches to fix 82 security bugs in Windows and other software this month. There are critical bugs in IE, Exchange Server, and Windows Server DNS. Windows and Windows Server Windows gets two patches for critical remote code execution (RCE) flaws. CVE-2021-26876 is a vulnerability in OpenType font parsing and CVE-2021-26867 is a flaw in the Hyper-V client which could be used to run code on a Hyper-V server. A patch is issued for CVE-2021-26411, which is a memory corruption vulnerability in Edge-HTML and Internet Explorer. It is being actively exploited and lets hackers run arbitrary code when users view a malicious website. It's likely that proof-of-concept code will be published for the exploit soon, so Microsoft is advising customers that rely on IE and Edge-HTML to patch their systems as soon as possible. There are also three critical RCE flaws for the HVEC video extensions in this month's updates. Microsoft released 5 patches for Windows Server DNS. The bugs affect Windows Server 2008 through to Windows Server 2019. CVE-2021-26897 is the only one rated critical. Microsoft says that all the DNS bugs are less likely to be exploited when Secure Zone Update are used, but that this is still not a full mitigation. Additionally, the bugs can affect any DNS server, not just those integrated with Active Directory. Exchange, SQL, and SharePoint Server Microsoft released 7 out-of-band patches for Exchange Server earlier this month; 4 of them zero-days. Microsoft said that the flaws were used in... --- ### Getting Started with Microsoft 365 Groups - Published: 2021-03-10 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-microsoft-365-groups/ - Categories: Microsoft 365 - Tags: Groups, Microsoft, Microsoft 365, Office 365 Groups - Article Type: How To If you are getting started with Microsoft 365 groups, here's an introduction to how the tool works and how to setup a group. Pretty much everyone in the world of IT knows what a Distribution List (DL) is. In the email realm, when you send an email to the list, each member of the list receives the email. Pretty simple, right? Nice and efficient. Microsoft Exchange Server does provide some limited configuration options in terms of who can join the list, if approval is required by a Manager (admin), etc. But, that's pretty much the nuts and bolts of the process. Fast forward a few decades and Microsoft created the next evolution (revolutionary? ) of email distribution lists/groups - the Microsoft 365 Group (originally branded the Office 365 Group). One of the biggest reasons Microsoft wanted to expand on the relatively simplistic nature of DLs was to enhance collaboration. And enhance they did! Besides being able to email members of your group, you now have a plethora of communication options and mediums for this collaboration. Here are the main features: Shared Inbox - This is most like a traditional Shared Mailbox. All members of the M365 Group can collaborate via email here. Users have the option of having these emails appear in their own Inboxes. Group Calendar - A private calendar that allows your team to schedule meetings, private events, time off for staff, and other productivity-based appointments. Document Library - A file repository that lives on a newly created SharePoint Team Site. This allows your users to share files, and collaborate on them simultaneously in realtime. OneNote Notebook - This provides your members... --- ### Rumors of Windows Server's Death Are Greatly Exaggerated > Aidan Finn goes on a rant about why Windows Server is far from dead and how it will be providing jobs for IT pros for years to come. - Published: 2021-03-09 - Modified: 2021-03-09 - URL: https://petri.com/rumors-of-windows-servers-death-are-greatly-exaggerated/ - Categories: Windows Server 2022 - Tags: Windows Server, Windows Server 2022 - Article Type: Opinion I am frequently left somewhere between amused and exasperated when reading a statement that Windows Server is “dead” or listen to an industry commentator question the release of Windows Server. I am frequently left somewhere between amused and exasperated when reading a statement that Windows Server is “dead” or listen to an industry commentator question the release of Windows Server. One might assume, judging by the typical Microsoft conference, that Windows Server is actually dead and irrelevant to the industry. But I am here to tell you that you are wrong. Proof of Death Sometimes I am in my car stopped at traffic lights, listening to a podcast, not long after Microsoft announces some news about Windows Server, I’ll hear it said, and neighboring drivers will hear me scream. Or maybe I’ll see a comment on social media and my reaction is “oh! for f... ” . . ’ you get the drift of where I’m going with this. Yes “WINDOWS SERVER IS DEAD”! We need to face today’s reality. Why should Windows Server continue, right? Data centers are full of ARM servers running Android. Linux is the king of the desktop. The only code that is developed is for containers in the cloud. Yeah - right! When was the last time Windows Server had anything interesting in it? All it seems to be is a hyper-converged platform for hosting ever-smaller containers. And who needs to learn about that? So, all the conference sessions are gone. All the training has stopped. We don’t even need to talk about Windows Server anymore. It’s dead, Jim! Proof of Life By now, you are moving through that grief process and... --- ### Microsoft to Unveil New Webcam this Spring - Published: 2021-03-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-unveil-new-webcam-this-spring/ - Categories: Hardware - Tags: Hardware, Microsoft, News, Surface, webcam - Article Type: News Microsoft is working on a new webcam that should arrive this spring alongside several other peripherals and an updated Laptop 4. As the company has done for several years, Microsoft is gearing up for a Surface-style event this spring. While the company is expected to announce a refresh of its Surface Laptop, the company has other peripherals on the agenda too. One such item that is expected to be announced is a new webcam that will have a privacy cover and support for high-dynamic-range (HDR) video. But it doesn’t look like Microsoft will be trying to push the boundaries with this camera in terms of resolution as it is not expected to support 4K, according to people familiar with the company’s plans. The LifeCam Studio was one of Microsoft's popular webcams but it was released in 2010... but you can still buy it 'new' today. This will not be the first webcam that Microsoft has built, the company shipped its first webcam back in 2006 and you can still find the later iterations of the Lifecam on store shelves.  But that camera is outdated in terms of its image sensor and should not be purchased today. Microsoft has been sitting on webcams for some time now, I first heard about them back in 2019 under the codename of Bari. I don’t think that this new webcam is the exact same product that I heard about back then and it is a deviation from that initial plan. Along with the new webcam, look for a refresh of the Surface Laptop with AMD chips inside the device but expect 4000... --- ### How to Turn Off Cortana Daily Briefing Emails - Published: 2021-03-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-turn-off-cortana-daily-briefing-emails/ - Categories: Microsoft 365, Office - Tags: Cortana, Daily Briefing Email, Microsoft 365 - Article Type: How To If you do not want to receive the Cortana Daily Briefing email for yourself, your tenant, or a group of users - this is how you turn that off. While Microsoft will tell you that Teams is the center of hub for productivity, email will continue to be the language of business. The tried and tested method of sending a message with email is not going away anytime soon but one thing most of us can agree on is that fewer emails are better than more emails. Recently, Microsoft started up another daily email that they brand under Cortana. Called the ‘briefing email’, it’s another feature of Microsoft 365 that tries to intelligently deliver content to your inbox to make you more productive. I am sure that there are users who like this feature, but I am not one of them... nor are the users of my tenant. There are three ways to turn off this feature by either unsubscribing with a link in the email, turning off this feature in the admin center, or using PowerShell if you are selectively trying to turn off a group of users from receiving the daily messages. Unsubscribe in the email: At the individual level, the easiest way to stop receiving the daily briefing emails is to locate one of the messages in your inbox, scroll to the bottom, and click unsubscribe. Unsubscribe button is shown at the bottom of each Cortana briefing email This method works well if you are only trying to limit the message from hitting one mailbox that you control. If you need to turn off the messages for more than one mailbox,... --- ### How to Configure BitLocker Auto Unlock - Published: 2021-03-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-bitlocker-auto-unlock/ - Categories: Windows 10 - Tags: bitlocker, Windows 10, Windows Server - Article Type: How To BitLocker is a full-disk encryption tool that is built-in to Windows 10. Full disk encryption prevents someone who gets physical access to a disk from reading the data stored on it. BitLocker is a full-disk encryption tool that is built-in to Windows 10. Full disk encryption prevents someone who gets physical access to a disk from reading the data stored on it. BitLocker is often used to encrypt the system drive but it can also be used to encrypt data volumes. And portable storage media, like USB sticks, using BitLocker To Go. By default, if you encrypt a data drive using BitLocker, it will remain locked until you manually unlock it. For example, when you boot your device, you enter a password to unlock the BitLocker-encrypted system drive so that Windows can load. If you want to access data volumes that are encrypted with BitLocker, you can unlock them when required using a protector, which in this example is a password. BitLocker Auto Unlock BitLocker keeps data drives locked by default to protect the data stored on them while it's not needed by the user. But in some scenarios, you might want BitLocker to unlock data drives at the same time as the system drive is unlocked. BitLocker Auto Unlock unlocks data volumes using encrypted information stored in the registry and volume metadata. Auto Unlock can be enabled by users in the Windows GUI and using PowerShell. But users require admin privileges to change BitLocker settings. Enable or Disable BitLocker Auto Unlock in the Windows Control Panel At the time of writing, BitLocker is still managed using the legacy control panel. The easiest way to get to the BitLocker... --- ### AWS and Azure used in SolarWinds Attack - Published: 2021-03-08 - Modified: 2021-03-08 - URL: https://petri.com/aws-and-azure-used-in-solarwinds-attack/ - Categories: Amazon Web Services, Cloud Computing, Microsoft Azure - Tags: AWS, Azure - Article Type: News The SolarWinds exploit was one of the biggest security breaches of the past year. There’s now no doubt that this cyberattack was the result of a very sophisticated effort. Microsoft estimated that it was the likely result of a 1000 engineers working on the creation of the malware. The attack worked by compromising SolarWinds’ software update service for their Orion IT infrastructure management product.  It is thought that weak passwords are one of the factors that allowed the cyber attackers to get a foothold into the SolarWinds processes. The attack spread to approximately 18,000 users of the Orion product and many U. S. government agencies including the: Commerce, Treasury, Homeland Security and Justice Departments. However, one of the interesting things about the attack was the level of sophistication it used by incorporating multiple cloud platforms in its construction. The malware made use of systems on both AWS and Azure. I should point out that these cloud providers are not responsible for the execution of this cyberattack – these platforms were just tools used in the attack. The attackers signed up for cloud accounts and leveraged cloud platform resources just like any other customer. While I’m sure this type of usage would violate their terms of the agreement, something would need to bring that to the attention of the cloud provider and subterfuge is a big part of these types of cyberattacks. The cyberattack used Azure as the primary domain and then it used AWS for the subdomains. They used Azure to... --- ### Microsoft has Shutdown Several UserVoice Feedback Forums - Published: 2021-03-05 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-has-shutdown-its-uservoice-feedback-forums/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, User Voice - Article Type: News Microsoft has shutdown its UserVoice feedback platform without warning, leaving many users out in the dark when it comes to hunting down issues. Microsoft appears to have made a move that will likely leave many confused as the company appears to have shut down some of their popular feedback forums, UserVoice. For those not familiar, UserVoice is where Microsoft was collecting feedback about features, updates, bugs, and other items related to a wide variety of services but that appears to be coming to an end. The company was using UserVoice for many different products but earlier today friends on Twitter started noticing that they could no longer access the forums for some products like Office 365. Further, not only are they no longer online but all the data that was contained within the feedback tools is also no longer accessible. As of the time of this post, it looks like Office 365 is completely gone but the company is still directing users to that site. I reached out to Microsoft and they provided the following comment about the shutdown of UserVoice for Office 365: “We are always striving to better serve our customers, including how we can improve the tools and processes for collecting feedback. We are leveraging 1st party solutions and are evaluating enhancements and standardizations to improve and streamline how we communicate with customers and collect their feedback. ” – a Microsoft spokesperson But if you follow the links it can lead you to a dead end as shown in the image below. Image #1 Expand Microsoft header image of the now-closed UserVoice forum for Office 365 where... --- ### Microsoft to Push 'Edge WebView2' Runtime to PCs - Published: 2021-03-04 - Modified: 2021-03-04 - URL: https://petri.com/microsoft-to-push-edge-webview2-runtime-to-pcs/ - Categories: Windows 10, Windows Client OS - Tags: Edge, Microsoft, News Back in February of this year, Microsoft added an item to their Microsoft 365 Roadmap that may very well be of interest to you as a Microsoft 365 Administrator. That's because starting April 1st, 2021, Microsoft will start pushing the Edge WebView2 Runtime (EWR) to Windows PCs running the Microsoft 365 apps for enterprise version 2101 or later. First off, you should always take notice when Microsoft will be pushing or releasing updates or software onto your users' PCs. But, as is often the case, there are controls to slow down or postpone this rollout. Let's get some details about what's happening, the when, and what the end-user impact will be. "Microsoft 365 Apps is starting to provide new or improved features that rely on Microsoft Edge WebView2," explains a post in the Microsoft 365 Admin Message Center. "For example, the Room Finder and the Meeting Insights features in Outlook. WebView2 uses Microsoft Edge as a rendering engine to display web-based features in a desktop application. By making use of WebView2, we can more easily provide your users with Office features that look and feel the same across device platforms. In turn, this consistent experience helps your users to learn and use those features without having to learn the nuances of Office on each device platform. " So, unless your users' computers have WebView2 installed in some fashion, the Microsoft 365 Apps won't be able to take advantage of these new features. This is why Microsoft will begin rolling... --- ### How to Enable Passwordless Authentication with Azure AD - Published: 2021-03-04 - Modified: 2024-11-19 - URL: https://petri.com/how-to-enable-passwordless-authentication/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure, Azure Active Directory, Passwordless authentication - Article Type: How To Microsoft announced at its Ignite conference, which ran March 2nd – 4th 2021, that passwordless authentication is now generally available. Microsoft has been pushing passwordless over the past couple of years as a more secure way to provide access than passwords and multifactor authentication. Now that passwordless authentication is generally available, organizations can roll out passwordless across hybrid environments with confidence. Microsoft has been working hard to provide a familiar and simple to use experience that works with a wide range of devices and services. The most accessible way for users to start with passwordless authentication is using the Microsoft Authenticator app. While SMS, FIDO2 security keys, and Windows Hello for Business are also supported, the Microsoft Authenticator app provides a good balance between security and convenience without a big investment in hardware. So, in this article, I'll show you how to enable passwordless authentication with the Microsoft Authenticator app. Combined registration experience The 'combined registration' experience must be enabled in Azure AD (recently renamed Microsoft Entra ID) to use passwordless authentication. Combined registration brings together the registration experience for Azure MFA and self-service password reset. Beginning August 15th 2020, all new Azure AD tenants are automatically opted in for combined registration. But if you have an Azure AD tenant that was provisioned before that date, you'll need to enable it manually. Enable combined registration in Azure AD You can enable combined registration by logging in to Azure AD using a global administrator account. Log in to Azure AD here... . --- ### PowerShell Gems That Every Microsoft 365 Administrator Should Know About - Published: 2021-03-03 - Modified: 2021-03-03 - URL: https://petri.com/powershell-gems-that-every-microsoft-365-administrator-should-know-about/ - Categories: Microsoft 365 - Article Type: How To As an IT Professional, can you survive without PowerShell? I can imagine there are several debates around this topic on Reddit right now. The short answer is yes, you probably can (barely). However, keeping PowerShell as your go-to tool on your IT Pro toolbelt will bring you varying productivity and efficiency boosts. Quite simply, the more you use it, the more you will accomplish in a shorter amount of time. Your supervisor/manager will rarely, if ever, complain about you completing your Microsoft 365 Admin tasks earlier than promised or needed. Plus, your users and employees you support will always be grateful their support issue or service request is completed in a timely manner! I’ll explore the various Microsoft 365 online services and how PowerShell can help you get your job done. Note – Wondering how to efficiently connect to all the core Microsoft 365 online environments with a single PowerShell script? Don’t worry, I’ve got an example script at the end of the article. Let’s start with SharePoint Online (SPO). To create a new Site Collection, use the ‘NewSPOSite’ cmdlet: New-SPOSite -Url https://tenant. sharepoint. com/sites/mynewsite -Owner your. name@contoso. com -StorageQuota 1000 -Title "Welcome to PowerShell" This will create a new site with the above URL, the Primary Admin of the site collection being the ‘Owner’, setting the Quota for the site to about 1 GB, and giving it a Title. If you want to add yourself or another admin on your team to a site as a Site Collection Admin, you can... --- ### Microsoft Warns of Active Exchange Server Exploits, Patches Released - Published: 2021-03-03 - Modified: 2021-03-03 - URL: https://petri.com/microsoft-warns-of-active-exchange-server-exploits-patches-released/ - Categories: Exchange Server - Tags: Exchange Server - Article Type: News Microsoft has released several new patches for Exchange Server after they discovered an active 0-day vulnerability. If you are running an on-premises version of Microsoft Exchange Server, you need to patch your system immediately. Microsoft has announced that they have detected multiple active 0-day exploits being used against the software. In the announcement post, Microsoft identifies the vulnerabilities that are being exploited as CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065 – all of these exposure vectors have been patched with the updates that were released yesturday. Microsoft notes that the entity using these exploits, HAFNIUM, is targeting entities in the United States across a wide variety of industries including infectious disease researchers, law firms, higher education institutions, defense contractors, policy think tanks, and NGOs. Based on the company’s detective work, it reads more like if you have an active Exchange server running in your environment, you could likely be a target for attack. Here are a few more details about the attacks, via Microsoft: CVE-2021-26855 is a server-side request forgery (SSRF) vulnerability in Exchange that allowed the attacker to send arbitrary HTTP requests and authenticate as the Exchange server. CVE-2021-26857 is an insecure deserialization vulnerability in the Unified Messaging service. Insecure deserialization is where untrusted user-controllable data is deserialized by a program. Exploiting this vulnerability gave HAFNIUM the ability to run code as SYSTEM on the Exchange server. This requires administrator permission or another vulnerability to exploit. CVE-2021-26858 is a post-authentication arbitrary file write vulnerability in Exchange. If HAFNIUM could authenticate with the Exchange server then they could use this vulnerability to write a file to any path... --- ### Microsoft is Retiring Delve Mobile Apps - Published: 2021-03-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-retiring-delve-mobile-apps/ - Categories: Microsoft 365 - Tags: Delve, Microsoft, Microsoft 365 - Article Type: News Microsoft is retiring the Delve mobile apps but the technology is still baked into the graph. Back in 2015, Microsoft announced Delve and over the years, the tool has evolved, and quite frankly, Office 365 has matured. And by matured, I mean its market position has shifted and Microsoft 365 is generally what we refer to as the company’s productivity suite these days. Delve is a tool inside of this productivity suite that tries to surface relevant content and insights that are tailored to your own productivity universe. You can find the tool today by going to Office. com and logging into your tenant (assuming you have the correct licenses) but if you used the stand-alone apps, bad news is on the horizon. Microsoft has announced that it will be retiring its Delve mobile apps for iOS and Android. While your thoughts may pivot to Delve going away, and that’s a natural assumption, the technology behind the service is already baked into other applications. The company is recommending (MC242486) that you use Outlook Mobile as that application has the search functionality and incorporates some of the features of Delve instead of the stand-alone apps. While it’s not quite the same experience as the dedicated applications, after June 1st, 2021, the existing applications will no longer work – Microsoft removed the Delve apps from iOS and the Google Play store on March 1st. Microsoft Delve in its first iteration from 2015 - Image Credit: Microsoft For now, the desktop experience is still in place inside of Office. com but when you look back at the... --- ### Microsoft Expands Teams Lineup with new Hardware - Published: 2021-03-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-teams-lineup-with-new-hardware/ - Categories: Hardware, Microsoft Teams, Office - Tags: Ignite, Ignite 2021, Microsoft, News - Article Type: News At Ignite 2021, Micorosft has unveiled several new Teams pieces of hardware that will compliment the software experience. This week, Microsoft is hosting its first spring Ignite, which is kinda-sorta part of Ignite 2020 but happening this month. What this means for you is that there are a lot of announcements coming this week related to productivity and infrastructure updates. And to little surprise, there are quite a few Teams announcements this week including new hardware. Specifically, there are new ‘Intelligent Speakers’, a new Dell monitor that is certified for Teams and new ‘video bars’ that are peripherals that attach to your PC that turns the device into a high-quality end-point. The new ‘Intelligent Speakers’ as Microsoft calls them, are likely the most interesting new hardware to come out of Ignite. These puck-style speakers, which will be available in the second half of 2021, can transcribe your meetings and track up to 10 people in a meeting. By using a 7-array microphone and a little dash of Microsoft’s AI, the idea is that you can integrate one of these speakers into your meeting rooms and the conversations will be transcribed. With much of the world operating in a remote scenario, transcriptions of meetings have shown their value for making it easier for those who cannot attend to stay tuned in but also the ability to index the content for later referencing the material. Examples of two new Teams Room speakers coming later this year but in private preview. Left is a device built by YeaLink and the right is by EPOS The reason why... --- ### New Privacy, Compliance, and Webinar Features are Headed to Teams - Published: 2021-03-02 - Modified: 2021-03-02 - URL: https://petri.com/new-privacy-compliance-and-webinar-features-are-headed-to-teams/ - Categories: Microsoft Teams, Office - Article Type: News At Ignite 2021, Microsoft has announced new functionality for Teams like webinar features as well as updates to privacy tools too. In the world of Microsoft, there are a few bets that always win 100% of the time. One such bet that I would always take is that at any given conference, Microsoft will talk about Teams and more than likely announce new functionality for the collaboration platform. At the spring Ignite event, Microsoft has announced a bunch of new features that are coming to Teams. Most of these features should be available in the first half of 2021 unless they get delayed. In no particular order, here are the new privacy and compliance updates announced today: Invite-only meetings controls will be generally available this month. Invite-only meetings controls help ensure that only intended participants join a meeting. Disable video will be generally available in the first half of this calendar year. This feature is intended to limit potential disruptions, along with other capabilities such as Invite-only meetings and recently announced chat moderation controls. End-to-end encryption (E2EE) for 1:1 Teams calls will be available to commercial customers in preview in the first half of this year. Teams will support end-to-end encryption for organizations to help customers meet their security and compliance requirements by providing an additional option for conducting sensitive online conversations. For example, a call from an IT admin giving an employee her password over Teams could be conducted with E2EE. In this first release, customers will have the ability to enable E2EE for 1:1 unscheduled Teams calls. Customers will be able to specify which members of their organization can... --- ### Windows Server 2022 Now Available in Preview - Published: 2021-03-02 - Modified: 2021-03-02 - URL: https://petri.com/windows-server-2022-now-available-in-preview/ - Categories: Windows Server - Tags: Microsoft Ignite 2021, Windows Server 2022 - Article Type: News Today Microsoft officially announced the availability of Windows Server 2022 in preview at its Ignite conference, which is running March 2nd to 4th. Windows Server Insider Preview build 20292 is a Long-Term Servicing Channel (LTSC) release and which first appeared at the beginning of February. On the download page, the build was labeled 'Windows Server 2022 Preview'. Since then, another Insider build, 20298, has also been made available on LTSC. Microsoft says about Windows Server 2022: Windows Server 2022, now available in preview, enables customers to run existing and new business-critical applications with confidence on Azure, on-premises and at the edge. Due to the lack of change log for Windows Server Insider builds, we don't know the full list of features that Windows Server 2022 will contain. But it is sure to include most features that are part of Windows Server on the Semi-Annual Channel (SAC). Plus, we know that it will include: Chromium version of Edge Support for TLS 1. 3 AES-256 encryption for SMB As a LTSC release, Windows Server 2022 includes the Desktop Experience and Server Core installation options for Datacenter and Standard editions. Security features that are part of the current Windows 10 release (20H2) are now included in Windows Server 2022, like tamper and reputation-based protection. Microsoft adds: Windows Server 2022 improves hybrid server management and has an enhanced event viewer and many more new capabilities in Windows Admin Center. Furthermore, this release includes improvements to Windows containers, such as smaller image size for faster download,... --- ### Microsoft 365 Universal Print Now Generally Available - Published: 2021-03-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-universal-print-now-generally-available/ - Categories: Microsoft 365 - Tags: cloud computing, Microsoft 365, Microsoft Ignite, Universal Print - Article Type: News Microsoft officially announced today the general availability of Universal Print at its Ignite conference. Microsoft officially announced today the general availability of Universal Print at its Ignite conference, which is running March 2nd to 4th. Microsoft 365 Universal Print is a cloud solution designed to enable endpoints to print anywhere without the need for a print server. Universal Print has been available in public preview since May 2020. It provides a simple, rich, and secure print experience for users and it reduces time and effort for IT. Universal Print doesn’t need any on-premises infrastructure if you have Universal Print-compatible printers. Universal Print runs in Microsoft Azure, it is fully integrated with Azure AD, and it supports single sign-on. If non-Universal Print-compatible printers are used, then a Universal Print connector application must be deployed on-premises. Image #1 Expand Microsoft 365 Universal Print Now Generally Available (Image Credit: Microsoft)   Users can print from Windows devices to Azure Active Directory (Azure AD) registered printers. Printers registered with Universal Print work with Windows 10 version 1903 and later. And in addition, users can print documents directly from OneDrive for Business using any supported browser. Microsoft adds: Major printer manufacturers such as Brother, Canon, Epson, HP, Konica Minolta, Lexmark, Toshiba, Ricoh and Xerox support Universal Print, so customers can get started immediately. A robust set of software partners address customers’ unique business need with software tools and cloud services. Universal Print vs Hybrid Cloud Print Hybrid Cloud Print lets users easily access printers in environments where devices are hybrid joined to Azure AD. Hybrid Cloud Print... --- ### Microsoft Enhances Azure Active Directory With Several New Features - Published: 2021-03-02 - Modified: 2021-03-02 - URL: https://petri.com/microsoft-ignite-march-2021-azure-active-directory-announcements-embargo-march-2nd-6am-pt/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud computing, Microsoft Ignite - Article Type: News At Microsoft's Ignite conference this week, there was a series of announcements for new Azure Active Directory features either entering general availability or released in public preview. AWS Single Sign-On (SSO) The Azure Active Directory (Azure AD) app gallery now includes AWS Single Sign-On (SSO). AWS SSO is a cloud service that is designed to simplify SSO access to Amazon Web Services accounts and resources. Microsoft says: As a pre-integrated application in the Azure AD app gallery, AWS SSO can be quickly connected to Azure AD for centralized access management of AWS resources. End users can sign into AWS SSO using their Azure AD credentials to access all their assigned AWS resources. Passwordless authentication Microsoft has been pushing passwordless authentication for a while now. With passwordless sign-in, passwords are replaced by something you have, like a security key, plus something you are or know. Something you are might be a biometric gesture like a fingerprint. Something you know might be a PIN. Passwordless authentication lets users sign in to Azure AD with Windows Hello for Business, the Microsoft Authenticator app, and FIDO2 security keys. Microsoft says that Azure AD now lets organizations configure policies for different users, groups, and types of credentials. And it provides reporting and APIs. Temporary Access Pass Temporary Access Pass is a new feature that is available in public preview. TAP provides a time-limited code that can be used to set up and recover a passwordless credential. Microsoft says: With Temporary Access Pass, new... --- ### Microsoft Mesh: The Next Big Bet for Mixed Reality - Published: 2021-03-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-mesh-the-next-big-bet-for-mixed-reality/ - Categories: Developer, Microsoft 365 - Tags: Mesh, Microsoft, News - Article Type: News Microsoft is hosting its Ignite conference today and the company has announced a new mixed reality platform that they are calling Microsoft Mesh. I got a small look at a description of the service prior to Ignite and now during his keynote, Satya Nadella made the official Microsoft Mesh announcement. In the keynote, Satya makes a bold statement about how Xbox Live enabled multiplayer gaming and created communities to help gamers achieve together and that Mesh will do the same for mixed reality. In his keynote, Satya states that Microsoft Mesh will enable the user to interact with others in a natural way with holograms and without any screens mediating the actions. It's the "without screens mediating the actions" that will be key. This means that there does not need to be a third-party person or solution running the engagement; the goal is significantly to reduce the friction we experience today when trying to host mixed reality engagements. Microsoft Mesh is a platform that lives in Azure and will enable users to view and interact with mixed reality content at the same time in a single virtual or actual space that is hosted in the cloud - not locally. The key will be to making it ubiquitous across devices so that anyone can join the experience. And if you head over to Microsoft's  Mesh landing page, that's exactly what this platform will enable as they show the experience on HoloLens, phones, tablets, and mixed reality headsets. And it makes sense... --- ### Microsoft Unveils PowerFx, RPA comes to the Windows Desktop at Ignite 2021 > Learn about Power Fx the new low code language, RPA desktop automation for all Windows Users, & all of the other major Power Platform news from Iginte. - Published: 2021-03-02 - Modified: 2021-03-02 - URL: https://petri.com/power-platform-announcements-from-ignite/ - Categories: PowerApps - Tags: Power BI, power fx, Power Platform, Power Virtual Agents, rpa - Article Type: News Hello Power Platform Pals. Are you looking for the scoop on what Microsoft announced today at Ignite for our precious Power Platform? Then look no further. I am going to give you the breakdown of what they said and a bit of commentary on what I think of the announcement. If that doesn't sound like a fun read, I don't know what does. I also promise to stop with the all assuming alliteration. Below you will see I break down the two announcements I am most excited about and then close out with some quick pointers are the other major announcements. Overall, I give Microsoft an A for some interesting new features, even if the base products we know and love, didn't get any real news. Power Fx Okay, before you freak out and worry this is some new crazy product you need to learn, it is not. As you get into this one it is more about doing things right going forward than doing things different today. How so? Well, in the build-up for this announcement of Power Fx being a new low code language I was kind of nervous. I don't want to learn a new language. I am no-code/low-code for a reason, I don’t like code. Thankfully when you cut through all of the fluff, Power Fx is now the name of the language we use today in Power Apps canvas apps. Shew! And nothing that we do today is changing. So why announce it this way? ... --- ### Paul Thurrott's Short Takes: Microsoft Ignite 2021 Special Edition - Published: 2021-03-02 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-ignite-2021-special-edition/ - Categories: Cloud Computing, Microsoft 365, Microsoft Azure, Windows Server 2022 - Tags: Microsoft Ignite 2021, News - Article Type: Overview Because Microsoft is having its second Ignite virtual event in five months, this edition of Short Takes looks exclusively at the news the software giant announced at this event. Or, at least some of it. Because Microsoft is having its second Ignite virtual event in five months, this edition of Short Takes looks exclusively at the news the software giant announced at this event. Or, at least some of it. Note: These news blurbs are based on the information Microsoft provided to the press before the show. There will absolutely be more news which they didn’t pre-disclose as well. --Paul Windows Server 2022 is now in preview The next on-premises/hybrid version of Windows Server, called Windows Server 2022, is now available in preview. It introduces advanced multilayer security, hybrid capabilities with Azure, and a flexible application platform, Microsoft says, and “secured-core capabilities” based on Windows Defender System Guard and virtualization security models to minimize the risk from firmware vulnerabilities and new forms of malware. Windows Server 2022 also supports faster and more secure encrypted HTTPS connections, features improved hybrid server management, and sports many new Windows Admin Center capabilities. “Here's Why Bill Gates Still Prefers Android Instead of iPhone” Well, he is a smart person. 2020’s pandemic-triggered WFH requirement is a permanent change Last year, Microsoft corporate vice president Jared Spataro made waves when he said, very early in the pandemic, that the changes we were then experiencing would be permanent, a “new normal,” and that we would never entirely go back to the old ways of doing things. This week at Ignite, Mr. Spataro provided some research data to back up that earlier claim: Fully 80 percent of managers now say that they expect... --- ### Everything You Need to Know About Azure Infrastructure – February 2021 Edition - Published: 2021-03-01 - Modified: 2021-03-01 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-february-2021-edition/ - Categories: Microsoft Azure - Tags: App Services, Application Gateway, Application Insights, Azure, Azure AD, Azure Attestation, Azure Automation, Azure Backup, Azure DDoS Protection, Azure Dender, Azure Files, Azure Firewall, Azure Firewall Manager, Azure Firewall Premium, Azure Front Door, Azure Key Vault, Azure Network Watcher, Azure Policy, Azure Regions, Azure Security Center, Azure SQL, Azure Storage, Azure Virtual Machines, Azure VM Image Builder, Cross Region Restore, DBA, DDOS, East US 3, firewall, IaaS, Indonesia, Network Performance Monitor, networking, PowerShell, RBAC, SAP HANA, Security, SQL Managed Instance, SQL Server, Storage Account - Article Type: News Over the last couple of weeks, I’ve spotted lots of tiny little changes in the Azure Portal. And my feeds have lit up over the last few hours. There must be a big Microsoft conference happening right around now? Yup, Microsoft Ignite (March 2021) is here and that means there will be lots of cool new things to check out. One of the nice little ones that didn’t get an announcement is a new user interface for Network Security Groups, enabling you to easily select a common higher-level protocol, such as SMTP, and not need to know/specify the transport protocol and port number (TCP 25). Azure Firewall Premium Preview Microsoft announced a preview for Azure Firewall Premium recently. Before we get to the features, we should talk about something that is very clear with this new SKU. Last July, Microsoft made Azure Firewall Policy/Azure Firewall Manager generally available. This new way to managed Azure Firewall configuration and rules originally created a duplicate of what could be done directly in the firewall resource. But then came along a new feature: whitelisting for Threat Intelligence. This was the clue of what was to come – this new feature was only in Azure Firewall Policy and there was no sign of it in the firewall resource. I could read the tea leaves; Azure Firewall were planning on moving the interface to Azure Firewall Policy only. And that’s quite clear with the Premium features – they are available only through a Premium... --- ### Everything You Need to Know About Power Platform - February 2021 > February had lots of news for Power Platform from Microsoft. Learn about the new stuff like Dataverse for Teams, Power BI security, and more. - Published: 2021-03-01 - Modified: 2021-03-01 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-february-2021/ - Categories: PowerApps - Tags: dataverse for teams, Dynamics 365, power apps, Power Automate, Power BI, Power Platform - Article Type: News Surprisingly, there was a lot this month. With Ignite coming in just a few days I am happy to report lots of little new things made their way to preview. Dataverse for Teams got some new pieces, Power BI got more security and a few more fun things. So, give it a read and get ready for Ignite. We have some cool stuff planned to give you a rundown of Ignite afterward so be on the lookout. Dataverse for Teams got two new templates You are exploring Dataverse for Teams, aren't you? That ability to build apps, workflows, and chatbots all with a Dataverse backend inside of a Team. Which uses your existing licensing making it... FREE to you. It is great functionality you should be leveraging today. They also have four different template apps to help you be productive on day 1. The new templates for Milestones and Bulletins are announced here. And unlike the classic Power Apps templates that had no value these templates are awesome. Dataverse for Teams also now supports direct access via Excel Back in the day when I had to learn Dataverse the thing that made the lightbulb ? come on for me was the Excel add-in. Being able to see the raw table data and manipulate it let me connect all of the dots. So when Dataverse for Teams (D4T) rolled out I was quite sad it was a missing feature. Well, not anymore. Microsoft announced it was available to use... . --- ### Everything You Need to Know About Windows – February 2021 - Published: 2021-03-01 - Modified: 2021-03-01 - URL: https://petri.com/everything-you-need-to-know-about-windows-february-2021/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows Server - Article Type: News In February, Microsoft announced its plans to release Windows 10 version 21H1 and that Windows 10 Enterprise LTSC support will be cut from 10 years to 5. And Windows 10 'in cloud configuration' is a new recommended device configuration that can be applied to remote devices for frontline workers and others. Plus, much more. So, let's get started. Windows 10 version 21H1 official announced The big feature update for Windows 10 this year is 21H2, due for release in autumn. It is expected to come with a major UI refresh. Until recently, it wasn't clear whether Microsoft would even bother with a 21H1 release. But this month, Microsoft announced that 21H1 is indeed a thing and to expect it in the first half of 2021. Like Windows 10 version 20H2, 21H1 will be released using servicing technology. That means for users already running Windows 10 version 2004 or 20H2, 21H1 will be delivered as a small cumulative update. Microsoft says that 21H1 will include updates to core experiences that its customers rely on most as more people are working remotely. The new features in 21H1 include: Windows Hello multicamera support to set the default as the external camera when both external and internal Windows Hello cameras are present. Windows Defender Application Guard performance improvements including optimizing document opening scenario times. Windows Management Instrumentation (WMI) Group Policy Service (GPSVC) updating performance improvement to support remote work scenarios. Insiders got access to the first build, officially labelled 21H1, February 17th... . --- ### AWS Announcement Highlights for February 2021 - Published: 2021-02-26 - Modified: 2021-02-26 - URL: https://petri.com/aws-announcement-highlights-for-february-2021/ - Categories: Amazon Web Services, Cloud Computing - Tags: AWS EC2, AWS Outposts, AWS S3, Cloud - Article Type: News In spite of the heavy winter weather and ongoing pandemic, Amazon continues to churn out an impressive set of enhancements for AWS. Here are some of the highlights from Amazon’s February 2021 AWS announcements. AWS Outposts support local snapshots To better enable businesses to meet their data residency and local data processing needs, Amazon announced EBS Local Snapshots on Outposts. Snapshots on Outpost are stored on your Amazon EBS volumes locally using Amazon S3 on Outposts. Snapshots are point-in-time copies of your data that can assist in disaster recovery and improve backup compliance. EBS Local Snapshots on Outposts requires your AWS Outpost to have S3 on Outposts installed. You can create and manage your EBS Local Snapshots on Outposts using the AWS Management Console, the AWS CLI, or the AWS SDKs. New bare metal EC2 Instances To enable you to provide your applications with direct access to the Intel Xeon Scalable processor, AWS has announced five new bare metal EC2 instances. These instances are intended to support workloads that require access to the hardware feature set and for applications that need to run in non-virtualized environments or for businesses that want to use their own hypervisor. The five new bare metal instances are: m5. metal, m5d. metal, r5. metal, r5d. metal, and z1d. metal. M5 instances offer a balance of compute, memory, and networking resources. The R5 instances are intended for memory-intensive applications. The z1d instances provide both high compute performance and high memory capacities. Amazon S3 enhancements Amazon’s S3 storage also received... --- ### Microsoft to Open Data Center Region in Indonesia - Published: 2021-02-25 - Modified: 2021-02-25 - URL: https://petri.com/microsoft-to-open-data-center-region-in-indonesia/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Data Center, Microsoft, News - Article Type: News Microsoft has announced today that the company plans to open a new datacenter region in Indonesia as part of the Berdayakan Ekonomi Digital Indonesia initiative. This will be the single largest investment in the country in the 26 years that Microsoft has been established in the country. Microsoft has announced today that the company plans to open a new datacenter region in Indonesia as part of the Berdayakan Ekonomi Digital Indonesia initiative. This will be the single largest investment in the country in the 26 years that Microsoft has been established in the country. This news follows-up the company’s announcement that they will be investing heavily in Atlanta and by the end of 2021, Microsoft will be operating more than 60 data center regions. It’s important to note that a data recenter region is typically made up of more than one data center. Along with the new data center location in the country, Microsoft is committing to skill an additional 3 million Indonesians to achieve its goal of educating over 24 million Indonesians by the end of 2021. According to IDC, they state that the Microsoft investment will “generate up to USD $6. 3 billion in new revenues from the country’s ecosystem of local customers and partners. In addition, its cloud-consuming businesses are expected to contribute 60,000 jobs to the local economy, over the next four years. ”  While each region will respond differently to the opening of a new data center, you can see the appeal of attracting cloud giants to your local economy. For Microsoft, this will allow them to better serve local clients with data that remains “in-country” for its lifecycle which makes it much easier to abide by local regulations if needed. With more than 60 data center regions announced, 2021 still has many months... --- ### How To Select the Correct Azure Storage Service for Your Operation - Published: 2021-02-25 - Modified: 2024-09-04 - URL: https://petri.com/how-to-select-the-correct-azure-storage-service-for-your-operation/ - Categories: Backup & Storage, Cloud Computing - Article Type: How To Selecting an Azure Storage Service doesn’t have to be difficult, yet you can take some steps to make sure you make good decisions. In this blog post, Microsoft MVP Rick Vanover provides some of his perspectives and tips to allow you to make the right choices upfront. Selecting an Azure Storage Service doesn’t have to be difficult, yet you can take some steps to make sure you make good decisions. In this blog post, Microsoft MVP Rick Vanover provides some of his perspectives and tips to allow you to make the right choices upfront. What are Azure Storage Services? Before we go and create a storage resource in Azure, it would be a good time to overview that there are six main types of storage offered in Azure that each have their own use case. For example, what you would use Disk Storage for is different than what you may use Azure NetApp Files for and those are completely different than what you would use Azure blobs and queues for. I spend most of my time using blob and disks, as that is specific to my use cases; I recommend taking a look at this Azure doc about core Azure Storage services to dive deeper. Main Types of Azure Storage The core services that are, in my opinion, the heart of the Azure storage offering are Blobs, Disks, Files, Queues, and Tables. That’s the order I use them but everyone may be different. Some may only use one service and not the others. When you go to create something new in Azure, there should be a disciplined list of considerations so that you do it efficiently and in an organized fashion. I try to do this in my test and development activity as well as... --- ### How to Block Adobe Flash Player Using Active Directory Group Policy - Published: 2021-02-24 - Modified: 2024-09-04 - URL: https://petri.com/block-adobe-flash-player-using-active-directory-group-policy/ - Categories: Active Directory (AD), Windows 10 - Tags: Adobe Flash, Security, Windows 10 - Article Type: How To Flash Player is a plug-in for browsers that is installed and maintained separately. Although it came bundled with some browsers. Not only that, but it was responsible for some scary security vulnerabilities over the years. So, developers and IT admins alike were glad to see the back of it. It has been a long time coming. And we have known since 2017 that Adobe was planning to discontinue support for its once-popular Flash Player browser extension. Flash provided a way to add animation and interactive elements to web pages. But with the arrival of open standards, like HTML5 and WebGL, developers moved away from Flash. Flash Player is a plug-in for browsers that is installed and maintained separately. Although it came bundled with some browsers. Not only that, but it was responsible for some scary security vulnerabilities over the years. So, developers and IT admins alike were glad to see the back of it. Flash Player reached end of life on December 31st 2020. And now Adobe recommends uninstalling it from systems. Microsoft has an optional update (KB4577586) that removes Flash Player. It was made available in October 2020 in the Microsoft Update Catalog. Microsoft said that it would be made available for Windows Update and Windows Server Update Services (WSUS) in early 2021. And KB4577586 would be changed to 'recommended' a few months later. Regardless of the availability of this update, Microsoft disabled Adobe Flash Player by default at the beginning of 2021. And all versions older than KB4561600, released in June 2020, will be blocked. But if you want to be sure, you can use the Group Policy settings below. Block Adobe Flash Player using Group Policy By summer 2021, KB4577586 will be included in the monthly cumulative updates and monthly rollups for Windows. This... --- ### Veeam adds 200 new Features to its Backup and Recovery Suite with v11 - Published: 2021-02-24 - Modified: 2021-02-24 - URL: https://petri.com/veeams-v11-of-its-backup-and-recovery-solution-has-something-for-everybody/ - Categories: Backup & Storage - Tags: backup and recovery, Disaster Recovery, Veeam - Article Type: News Veeam has announced their new v11 software and it brings 150 new features to the suite. When it comes to securing your corporate data, backup and recovery is a critical component of your operation. And when it comes to solutions in this segment, Veeam is always near, or at the top, of performance metrics. But the announcements today are not (only) about improvements to speed, the company is announcing the 11th version of their software and it delivers a number of new features and functionality. With the release of version 11 of their Backup and Replication suite, there are 200 new features. You can head on over to their site to get the full breakdown but there are a couple I want to call out specifically that are targeted towards Microsoft solutions that are popular here on Petri. It doesn’t really matter what side of the VMware or Hyper-V fence you live on, both solutions are well respected and have their individual strengths. But with v11, Veeam has a feature that may push some further into the Hyper-V camp - v11  enables “Instant Recovery of anything to Microsoft Hyper-V”. That’s a bold claim but what this feature enables, according to Veeam, is data recovery and portability use cases by letting you instantly recover any physical server, workstation, virtual machine, and cloud instance backups to a Microsoft Hyper-V VM, regardless of what Veeam product was used to create the backup. While this isn't something you will likely use on a daily basis, when you do, it will save more than a few headaches. For the PowerShell users... --- ### Microsoft has new Clouds for Financial Services, Manufacturing, and Nonprofit - Published: 2021-02-24 - Modified: 2021-02-24 - URL: https://petri.com/microsoft-has-new-clouds-for-financial-services-manufacturing-and-nonprofit/ - Categories: Cloud Computing, Microsoft Azure - Tags: Financial Services, Industry Cloud, Manufacturing, Microsoft, News, Non-profit - Article Type: News Microsoft is preparing to roll out new verticle cloud solutions targeted at several specific industries. When you hear the word cloud, you likely think of a data center off in some magical place that (hopefully) has five 9s or more levels of reliability. But the reality is that the ‘cloud’ is a grouping of hardware and software that comes together to offer a solution for business customers. During the past year, Microsoft has announced two clouds for specific industries, Retail, and Healthcare. These clouds are a package of solutions that are targeted at specific scenarios with the goal of reducing the challenges of onboarding while improving the customer experience as they adopt the technology. This is a lot of marketing-speak for saying that this is a bundle of services that already exist and positioned under a new umbrella. But there is some merit to this as ineffective-onboarding can result in a negative customer adoption experience and sour a long-term relationship. What I mean is that let’s say you want to adopt the “cloud” for your organization by moving your data and pipelines to Microsoft (or AWS or Google or pick your cloud). Once you have migrated, you realize that you are missing services that are either critical to your business or would enhance your operations, but they come at a big expense from the cloud vendor. - the cloud experience has been ruined. With these industry-specific clouds, Microsoft has invested in solutions that will allow – in this case, Financial, Manufacturing, and Non Profit customers – an onboarding experience that has a set of pre-configured tools... --- ### Protecting Microsoft 365 from Ransomware Attacks with Filewall - Published: 2021-02-24 - Modified: 2024-09-04 - URL: https://petri.com/using-filewall-for-exchange-online-to-provide-protection-against-attachment-based-threats/ - Categories: Exchange Server, Microsoft 365 - Tags: Filewall, odix - Article Type: Sponsored FileWall for Exchange is designed to work using Microsoft’s Graph API and integrates directly with the service This year, especially as companies rapidly pivot to adopting cloud services to meet remote working needs, cybersecurity is a topic that should be at the forefront of people’s minds. Ransomware attacks, or targeted attempts to compromise the internal systems of companies are becoming increasingly common. Email is used as a vector to sneak malware into an organization, gain the valid credentials of users, and implant malware to allow an outside attacker to rapidly exploit further vulnerabilities to gain complete control of corporate systems. A vast amount of reactive digital transformation has taken place over the last year, and many companies are now attempting to catch up with cybersecurity. For some, it is too little, too late, and although they have followed good guidance such as recommendations provided by Secure Score, providing additional protection against complex threats arriving via email is essential. Unfortunately, I have seen the effects of this first-hand at several organizations that have not thought about the complete threat vectors for their operations. Because of this, some of these companies have lost control over their on-premises estate and spent weeks regaining access, and months later are still implementing the type of controls they would have liked to implement prior to the attack. Using third-party products to supplement Exchange Online Protection or Microsoft 365 Defender A major frustration with looking for effective email add-on products is most solutions have a traditional model for protection that does not fit with Microsoft 365. Exchange Online Protection includes protection against known malware,... --- ### How to Access Planner and To Do Content in Teams - Published: 2021-02-23 - Modified: 2024-09-04 - URL: https://petri.com/how-to-access-planner-and-to-do-content-in-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, Microsoft 365, Teams, To-Do - Article Type: How To One of the latest steps in bringing workflows from other Microsoft 365 applications into the native Teams interface is creating an App called ‘Tasks by Planner and To Do’ Microsoft launched its latest powerhouse application, Teams, on March 14, 2017, a somewhat surprising 4 years ago. In my most humble ‘marketing’ perspective, Microsoft has been designing and developing Teams to be the end-all, be-all of productivity applications, smack dab in the center of the Microsoft 365 solution stack. One of the latest steps in bringing workflows from other Microsoft 365 applications into the native Teams interface is creating an App called ‘Tasks by Planner and To Do’. I’ll explain how to add this App to your Teams application and go through the basics of its purpose and explain how it can boost your productivity. Note - Microsoft plans to rename the app to its final name, ‘Tasks’, sometime in the first half of calendar year 2021. This timeline is subject to change. First, let me show you how to add the App to Teams. Along the left side of the Teams application is the ‘App Navigation Bar’ where you see Activity, Chat, Teams, etc. Go ahead and click the ‘... ’ at the bottom and you’ll see the ‘Find an app’ popup. In the top search field, type ‘Tasks’ and click on ‘Tasks by Planner and To Do’. Click ‘Add’ and you’ll see the new interface. Tip – Be sure to right-click the new App and click ‘Pin’ to keep it in your Teams Navigation Bar permanently. You can also click and drag its icon up in the stack to another position if that suits you. The first section, ‘My... --- ### Understanding Character Encoding in PowerShell - Published: 2021-02-23 - Modified: 2024-09-04 - URL: https://petri.com/understanding-character-encoding-in-powershell/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To Working with strings in PowerShell is core to many different operations. With strings come the many different encodings that can be used. Learning to manipulate, understand, and use those encodings can make working with documents of different languages and types much easier to do. Working with strings in PowerShell is core to many different operations. With strings come the many different encodings that can be used. Learning to manipulate, understand, and use those encodings can make working with documents of different languages and types much easier to do. Read on to learn how to effectively work with character encodings in PowerShell. What are Character Encodings? First, it's important to understand what character encodings even are. There are a variety of character-encoding standards used around the world. These are methods of representing an individual character and it's traits within a file. This allows the character to be rendered appropriately by different operating systems. The PowerShell system supports Unicode exclusively for character and string manipulation. Windows itself supports both Unicode and traditional character sets such as Windows code pages. Code pages, an older standard, uses 8-bit values or combinations of 8-bit values to represent a character used in a specific language or geographical setting. What is the BOM? There is one other oddity to be aware of with character encodings and that is the BOM (byte-order-mark). This strange construct is a Unicode signature included at the start of a file or text stream which indicates the Unicode encoding. The complication is that this is not consistently used by different operating systems, commands, and PowerShell versions! Windows PowerShell always uses BOM except for UTF7. PowerShell Core and 7, defaults to utf8NoBOM for all text output. Non-Windows systems do not generally support BOM. As you can... --- ### Microsoft’s Game Stack Live Developer Conference Takes Place April 20-21st - Published: 2021-02-22 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-game-stack-live-developer-conference-takes-place-april-20-21st/ - Categories: Developer - Tags: Developer, Games, Microsoft - Article Type: News Microsoft's Game Stack Live developer event is taking place in late April and it will be a virtual event. As we head into the spring, in the land of technology, this is known as developer season. Many of the big technology companies will try to lure developers to their platforms with Microsoft hosting Build, Google with I/O, and Apple rounding out the group with WWDC. But there are many other events as well and in the world of gaming, there are two upcoming developer events where Microsoft will be talking about its tooling and services. The first event takes place tomorrow, Microsoft will be hosting its AI and Gaming Research Summit and the second event is Game Stack Live that is taking place April 20-21st. The Game Stack Live event is a digital conference dedicated specifically to game development using Microsoft’s development stack. You can head over to the site and register here if you are interested but below is a short description of the event. What to expect? Deep dive, technical content across six dedicated tracks: Graphics, Systems and Tools, Production and Publishing, Multiplayer, Accessibility and Inclusion, and Audio Meet with partners showcasing tools, middleware, audio solutions, and more Connect with industry and Microsoft technical experts Join a community event and conversation hosted by Xbox employee groups The event will be streamed around the clock and is designed to help developers, green and senior, become aware of what’s new in the world of game development and how to get the most out of Microsoft’s tools. As with all Microsoft conferences, if there is anything significant announced, we will be... --- ### Microsoft’s Bringing Text Predictions and Modern Comments to Word - Published: 2021-02-22 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-text-predictions-and-modern-comments-to-word/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Word - Article Type: News Microsoft is bringing two new features to Word: text predictions and modern commenting. For years, I have been trying to find an alternative to Microsoft Word. I have tried nearly every popular text editor that is available and after a few weeks, always end up returning to the classic application. While Word may not be the coolest kid on the block, it is a staple of the industry for a reason – it has all the features you could ever need and wide support across third-party applications. Microsoft has announced two new updates for Word that will make it feel a bit more modern as well. Image #1 Expand Preview of the text prediction feature coming to Word. Text predictions, a feature we have seen in email clients, attempts to predict your next word and can help you spell it/insert it into the document. The goal of this feature is to make you a faster writer but also help you avoid common grammar or spelling mistakes. This feature will start rolling out in preview (MC240605) in February for English users. As you would expect, you will be able to turn this feature off by selecting Text Predictions:On in the status bar and switch off Show text predictions while typing. Image #2 Expand Demo of updated commenting coming to Word Also coming to Word is an updated commenting experience. When editing a document, you will be able to @mention someone without the notification flagging the tagged user until your comment is complete. Once the commenting update... --- ### Reactions are Headed to Outlook on the web and Mobile, Shows Promise but Significant Gaps Remain - Published: 2021-02-22 - Modified: 2024-09-04 - URL: https://petri.com/reactions-are-headed-to-outlook-on-the-web-and-mobile-shows-promise-but-significant-gaps-remain/ - Categories: Microsoft 365, Outlook - Tags: Likes, Outlook, Reactions - Article Type: Opinion If you don’t use something often, then you might even forget it exists. When I read that reactions in Outlook are rolling out soon, I had to go and check that the like button, which launched in 2015, still existed in Outlook on the web. The like button still exists and was one of the features that made the cut when the new version rolled out in 2019. And, by the end of March, you’ll be able to do far more than just like an email. Soon, you’ll be able to love, celebrate, laugh, express shock, and even cry about emails – and not just because you get far too many. Image #1 Expand Reactions in Outlook As much as I like email, I’m going to be honest. There are very few emails I’m actually going to give a thumbs up to – and even fewer I’m going to express my love for. That’s not to say that I don’t like the concept – reactions in Teams chats, channels, and even meetings work really well. In Outlook though, there are a few outstanding challenges Microsoft needs to overcome to make this a useful feature, and one reason why it might be a stretch too far for the technology. The first challenge Microsoft understood, even back in 2015, was that it needs to be universal across Outlook clients people use. Back then, they promised that for Outlook 2016 and mobile versions, that they would “provide updates in the expected availability of... --- ### Microsoft is Merging OneDrive and SharePoint Admin Centers - Published: 2021-02-22 - Modified: 2021-02-22 - URL: https://petri.com/microsoft-is-merging-onedrive-and-sharepoint-admin-centers/ - Categories: Microsoft 365, SharePoint - Tags: Microsoft 365, News, OneDrive, SharePoint - Article Type: News Microsoft is planning to merge the OneDrive and SharePoint admin centers next month. In the history of Office 365, the words “Microsoft doesn’t have enough admin centers” has probably never been muttered. The company loves dedicated portals and if there is the possibility for a new admin center, Microsoft will give it the green-light faster than approving new license schemes. That may be a bit of a slight exaggeration but a quick count inside the Microsoft 365 Admin center shows that there are 13 different admin centers active today. But in the near future, that count will drop by one as SharePoint and OneDrive are being merged like Andromeda and the Milky Way (in a few billion years). While we wait for our galaxies to merge, the OneDrive and SharePoint merge will be happening in March of 2021. This will happen in two phases, the first being in early March (phase 1) and in late March. So what are the two different phases, they are outlined below (MC240393): In Phase 1, we’re adding OneDrive Sync, Storage, and Notifications settings to the Settings page in the SharePoint admin center. You can identify them by the OneDrive icon and name. In this phase, there are no changes in the OneDrive admin center. In Phase 2, we will add a link from the OneDrive admin center https://admin. onedrive. com to the converged SharePoint admin center. In addition, we will add a banner in the OneDrive admin center announcing the new access point. The biggest change at the end of the day will likely be your workflow and “trying... --- ### Microsoft Improves Security for Windows Server Update Services - Published: 2021-02-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-improves-security-for-windows-server-update-services/ - Categories: Windows Server - Tags: Windows 10, Windows Server Update Services - Article Type: News There haven't been any significant changes to Windows Server Update Services (WSUS) for years. But recently, Microsoft released two updates that aim to make it easier to secure WSUS. In this article, I'll look at how the two changes, introduced in September 2020 and January 2021, can help improve WSUS security. By default, Windows clients connect to WSUS servers using HTTP on port 80. Microsoft doesn't recommend this configuration be used in production environments and organizations should always configure WSUS to use HTTPS to prevent man-in-the-middle attacks. Without the additional security that HTTPS/TLS provides, an attacker could use a fake WSUS server to inject malicious code into Windows 10 clients. User proxies no longer supported in WSUS environments not configured for TLS/HTTPS In case you missed it, the September 2020 cumulative update (CU) for Windows 10 introduced a change to improve security for devices in environments where WSUS is not secured using TLS/HTTPS. If a Windows client connects to WSUS via a proxy server, after the September 2020 CU is applied, scans against WSUS will fail if only user proxy settings are configured. To ensure that Windows clients can continue to scan WSUS servers, system proxy settings must be configured on your client devices. If you really need devices to have user proxy settings configured, you should set the proxy behavior to "Allow user proxy to be used as a fallback if detection using system proxy fails " in Group Policy under Policies > Administrative Templates Windows Components... --- ### Microsoft is Making Changes to the L in Windows/Office LTSC - Published: 2021-02-18 - Modified: 2022-08-15 - URL: https://petri.com/microsoft-is-making-changes-to-the-l-in-windows-office-ltsc/ - Categories: Office, Windows 10, Windows Client OS - Tags: LTSC, Microsoft, News, Office - Article Type: News If you are riding on the Windows 10 and Office LTSC branches, your train is about to reach the station about 50% faster. Along with announcing that Office 2021 will be available later this year, the company is also cutting the support time in half. Starting with the LTSC release that will arrive in the second half of 2021 for both Office and Windows, the LTSC branch will only be supported for five years, instead of 10. This means that you will need to update those devices twice as often but going from 10 years to 5 doesn’t mean that you will need to do this all that frequently. Microsoft, sometimes more bluntly than others, really does not want you running the LTSC version of either product unless absolutely necessary. The OS and productivity tools are designed for devices that are rarely used or are part of a critical operational workflow, such as manufacturing or hospital equipment. If you are running Windows 10 LTSC or Office LTSC as a desktop workstation for your organization, you are officially on Microsoft’s, ahem, “naughty list”. Organizations may do this to avoid frequent updates to the software that are impacting user productivity. With Microsoft moving to a five-year support cycle for these new versions of Windows and Office LTSC, in an organization that is following the company’s guidance, not too much should change. But for those who are using LTSC as a way to avoid properly administering updates and security, you should seriously consider... --- ### Microsoft Announces Office 2021 - Published: 2021-02-18 - Modified: 2022-12-19 - URL: https://petri.com/microsoft-announces-office-2021/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Office 2021 Microsoft has announced Office 2021, the next perpetual release of the productivity tools. Microsoft has announced today two new updates for Office that are designed for long-term stability or complete distancing from the company’s cloud subscription model. These are the LTSC release of Office as well as Office 2021 perpetual. With this release, Microsoft says they are bringing Windows 10 LTSC and Office LTSC into alignment which should make managing those types of devices a little bit easier. The intention of LTSC, or Long Term Servicing Channel iterations of Windows and Office, is to provide a version of the software that is infrequently updated for critical hardware that is typically not connected to the Internet. The types of machines that should be using LTSC software are manufacturing hardware, medical equipment, or any other critical piece of hardware that is, hopefully, air-gapped from malicious threats. With Windows 10 LTSC and Office LTSC updates, these iterations of the apps and OS will be supported for five years. The next update or version of Office LTSC will arrive in the second half of this year. Along with the Office LTSC update, Microsoft is also announcing Office 2021 for consumers and small businesses. The company says that this version of Office will arrive later this year and the pricing will remain the same as previous iterations of Office perpetual. Office 2021 will be supported for five years and this is the version of Office that is a ‘one-time purchase’. For those of you who do not like the SaaS model for software, aka Microsoft 365, this is... --- ### Understanding Microsoft Defender and its Many Layers > The Defender brand has existed since 2005, first seen in anti-spyware software for Windows XP and Vista called Windows Defender. Learn the difference between Defender then and now. And how it reflects the changes we’ve seen in Microsoft as a whole over that same time. - Published: 2021-02-18 - Modified: 2022-07-01 - URL: https://petri.com/understanding-microsoft-defender-and-its-many-layers/ - Categories: Compliance, Security - Tags: Azure Defender, Defender, Microsoft, Microsoft Defender - Article Type: Overview Microsoft Defender has many layers and trying to understand all of the different components can be complex. At Ignite 2020, Microsoft went all-in on the Defender branding.   Advanced Threat Protection was gone, and Microsoft Defender was introduced to unify the security offerings across both areas of the Microsoft cloud for IT pros: Microsoft 365 and Azure. The Defender brand has existed since 2005, first seen in anti-spyware software for Windows XP and Vista called Windows Defender.   Defender, over fifteen years later, is wildly more comprehensive and diverse in its scope.   The difference between Defender then and now reflects the changes we’ve seen in Microsoft as a whole over that same time: security isn’t perceived as an afterthought, there is no dogmatic exclusivity to one platform, and it’s all cloud-first. What is Microsoft Defender? So, branding aside, what is Microsoft Defender, and why am I seeing so many different (but similar) names for it?  Be warned: this is going to get three-letter acronym heavy. An all-in-one security solution Microsoft Defender is an extended detection and response (XDR) offering – a security solution that extends beyond one silo, ultimately attempting to cover security at all levels of the IT infrastructure. For example, both on-premises and cloud-based; both mailboxes and endpoints; both IaaS and SaaS. What does this mean practically? Microsoft Defender as a brand sits at the top of the tree. In itself, it’s not a product; it’s the combination of two security stacks: Microsoft 365 Defender and Azure Defender.   As stacks, Microsoft 365 Defender and Azure Defender are made up of products, services, and licensed products that... --- ### Automate Azure VM Best Practices Configuration Using Azure Automanage - Published: 2021-02-18 - Modified: 2024-09-04 - URL: https://petri.com/automate-azure-vm-best-practices-configuration-using-azure-automanage/ - Categories: Microsoft Azure - Tags: cloud computing, Microsoft Azure, Security - Article Type: Overview Azure Automanage helps you to make sure your virtual machines (VM) are consistently configured with Microsoft's best practice recommendations. And that's a valuable service because Azure is constantly growing and changing, making it hard for IT professionals to keep up with best practice recommendations. Automanage is currently in preview. It is designed to configure and onboard VMs to Azure services that improve security. The goal is to help organizations reduce costs by automating server management, improving VM uptime, implementing security best practices, and applying configurations at scale. Windows Server and virtual machine best practice configuration Services that Automanage can configure include Azure Backup, Security Center, Change tracking, Log Analytics, and more. Automanage also configures Windows according to Microsoft's baseline OS settings. These settings are usually applied using Group Policy. But that requires Windows to be joined to a Windows Server Active Directory domain. So, Automanage takes much of the heavy lifting out of configuring Windows and VMs to meet security and configuration standards. Image #1 Expand Automate Azure VM Best Practices Configuration Using Azure Automanage (Image Credit: Microsoft) Automanage for Linux in Preview But Automanage doesn't just configure Windows and VMs as they are initially deployed. Monitoring ensures that any drift from best practice configuration is promptly rectified. Automanage is also now available for Linux VMs in preview. Azure Automanage Pricing During the preview phase, Automanage is free. Microsoft will announce pricing for the service once it gets nearer to the end of the preview. Be aware that if you... --- ### Microsoft Announces the Next Update to Windows 10, Arriving this Spring - Published: 2021-02-17 - Modified: 2021-02-17 - URL: https://petri.com/microsoft-announces-the-next-update-to-windows-10-arriving-this-spring/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Windows 10 - Article Type: News Microsoft has announced the next update to Windows 10 but do not get too excited, as there is not a lot besides stability and bug fixes. You can look for the update to arrive in the spring but let’s dive into what is new and set the expectations. The update will be called 21H1, as Microsoft has officially announced, with broad availability coming later in the first half of 2021. But for those who do not want to wait, the company states that they will begin pushing builds of 21H1 to the Beta Channel for Windows Insiders as a final check for bugs and other issues. So what’s new in this release? It’s mostly security and performance improvements, changes are noted below. Windows Hello multicamera support to allow users to choose an external camera priority when using high-end displays with integrated cameras. Windows Defender Application Guard performance improvements including optimizing document opening scenario times. Windows Management Instrumentation (WMI) Group Policy Service (GPSVC) updating performance improvement to support remote work scenarios. If you are running Windows 10 version 2004 or 20H2, your upgrade experience will install like a monthly servicing update. For those who are running an older version of Windows 10, the process will be like that of previous releases and take a bit longer to install (think full Windows 10 upgrade workflow). As this is the spring release of Windows 10, this iteration will receive 18 months of service. But, I would expect most businesses will pass on this... --- ### How to Turn Emails in Outlook Mobile into To Dos - Published: 2021-02-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-turn-emails-in-outlook-mobile-into-to-dos/ - Categories: Microsoft 365 - Tags: Mobile, Outlook, Tasks, To-Do - Article Type: How To Microsoft has started rolling out a new feature to the Outlook mobile app (iOS & Android) that allows you to create a To Do easily and efficiently from an email. If you are anything like me, you see an email and want to make sure you act on it, but, not necessarily at that moment; you’re triaging and want to keep that flow going. Well, Microsoft recently started rolling out a new feature to the Outlook mobile app (iOS & Android) that allows you to create a To Do easily and efficiently from an email. This gets added to the ‘Tasks’ section of your Microsoft To Do app and content. Let’s discover how this all works. So, in the past, I would need to copy and paste some pertinent text from the email, not the easiest thing to do on a mobile smartphone, switch to the Microsoft To Do app, create a new Task, paste the content, name the task, etc. etc. As stated above, this is a flow disruption. Keeping those to a minimum is always helpful in getting things done and feeling like you’re getting things done. Your mental acuity is enhanced when your workflow is solid. Let’s go through the new workflow in Outlook. In the Outlook mobile app, open an email you want to create a Task from. In the upper right corner, click the 3 vertical dots and press Create Task. You then (optionally) rename the ‘title’ of the Task to your liking. Next, press the up arrow on the right. You will see the confirmation the task was created at the bottom of your screen. If you have the ‘Microsoft To Do’... --- ### What is Microsoft Mesh? A New Developer Platform for Mixed Reality Apps - Published: 2021-02-17 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-mesh-a-new-developer-platform-for-mixed-reality-apps/ - Categories: Developer, Virtual Reality, Visual Studio - Tags: Ignite, Ignite 2021, Mesh, Microsoft, mixed reality - Article Type: News Microsoft has a new development platform that is not explicitly tied to any single device and allows you to create AR/VR experiences from multiple platforms. We are about two weeks away from Microsoft’s second iteration of Ignite. Or is it the first for 2021? Either way, this is the promised second-installment of Ignite 2020 and it looks like the company is going to announce a new developer framework called Microsoft Mesh. How do we know this? WalkingCat has once again surfaced information ahead of the conference and has found a session called “A developer’s introduction to Microsoft Mesh”. Based on the image you see below, it looks like Microsoft Mesh is a developer platform targeting mixed reality applications. The key to this platform appears to be the enablement of “presence and shared experiences from anywhere – on any device- through mixed reality applications”. Breaking this down, I interpret it to mean that Microsoft has a new development platform that is not explicitly tied to any single device and allows you to create AR/VR experiences for multiple platforms. Potentially, this could enable a scenario where you have someone with a mixed reality headset, HoloLens, an iPhone, and Android device all collaborating on the same mixed reality experience at the same time. If that’s truly what Microsoft is going to announce at Ignite in March, this will be a step forward towards breaking down the silos that exist today with AR/VR applications that typically require the users to all be operating the same underlying hardware – meaning everyone has the same device. Microsoft has been pushing its VR/AR apps and services to all corners of its own... --- ### What's New in PowerShell 7.1 - Published: 2021-02-17 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-powershell-7-1/ - Categories: PowerShell - Tags: PowerShell, PowerShell 7.1 - Article Type: Overview The latest versions of PowerShell are not included out-of-the-box with Windows 10. So, you might not know that PowerShell is already on version 7.1 The latest versions of PowerShell are not included out-of-the-box with Windows 10. So, you might not know that PowerShell is already on version 7. 1 The version in Windows 10 is called Windows PowerShell 5. 1 and it is no longer being developed. But it is still supported by Microsoft. PowerShell versions 6 and later are cross-platform, and work on Windows, macOS, and Linux. PowerShell 7. 1 was released late in 2020. It builds on PowerShell 7. 0 and it fixes issues reported by users. There are also a few improvements. PowerShell 7. 0 was released in March 2022 and it came with several new features: Pipeline parallelization with ForEach-Object -Parallel New operators: Ternary operator: a ? b : c Pipeline chain operators: || and && Null conditional operators: ? ? and ? ? = A simplified and dynamic error view and Get-Error cmdlet for easier investigation of errors A compatibility layer that enables users to import modules in an implicit Windows PowerShell session Automatic new version notifications The ability to invoke DSC resources directly from PowerShell 7 (experimental) PowerShell 7. 1 is based on . NET Core 5. 0 This release of PowerShell is based on . NET Core 5. 0. PowerShell 7. 0 was based on . NET Core 3. 1. PowerShell 7. 1 is part of the Stable release branch and it is also the first version to be published in the Microsoft Store. When you install PowerShell from the Store, Windows 10 automatically keeps PowerShell up to date. If you'd prefer to install PowerShell 7. 1 using a downloaded install package, check... --- ### How to Enable PowerShell Remoting in Windows 10 - Published: 2021-02-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-powershell-remoting-in-windows-10/ - Categories: PowerShell, Windows 10 - Tags: PowerShell, Windows 10 - Article Type: How To Unlike Windows Server, PowerShell Remoting isn't enabled by default in Windows 10. PowerShell Remoting is a secure management protocol (WSMan) for connecting to and managing remote devices. In its default configuration, PowerShell Remoting secures traffic over HTTP. It's primarily designed to be used in an Active Directory (AD) environment, which protects the authentication phase using a secure channel between devices and Kerberos. You can optionally configure PowerShell Remoting to use HTTPS for securing connections to workgroup computers, i. e. devices not joined to AD. Regardless of which transport protocol you choose to use, communication between devices is always encrypted after the authentication phase. HTTPS vs SSH HTTPS is a pain to configure because it requires IT to acquire, provision, and manage certificates. To solve this problem, Microsoft introduced the ability to use SSH for PowerShell Remoting in PowerShell Core (PowerShell version 6 or higher). Older versions of PowerShell, and the version that is installed by default in Windows, is known as Windows PowerShell. If you are managing AD domain-joined devices and you have direct network connectivity, either because you are connected to the same physical network or have a VPN configured for 'manage out' scenarios, then PowerShell Remoting over HTTP should work just fine. And it may be the easiest and best option. But if your goal is to manage remote devices that are disconnected from your management network, regardless of whether they are AD domain-joined, SSH is easier to set up and maintain than HTTPS. PowerShell Remoting using... --- ### Microsoft to Crackdown on High Volume Microsoft 365 Email Offenders - Published: 2021-02-15 - Modified: 2021-02-15 - URL: https://petri.com/microsoft-to-crackdown-on-high-volume-microsoft-365-email-offenders/ - Categories: Exchange Server, Microsoft 365 - Tags: exchange, Microsoft 365, Office 365 - Article Type: News Microsoft has announced that users who receive a high number of messages, they will soon be cracking down on the rate at which you can receive email. If your organization has mailboxes that are overflowing with data and you have been ignoring the warnings that they have surpassed the receiving limits for the account, you will need to start paying more attention. Microsoft has announced that it will be strictly enforcing limits across all mailboxes to protect the health of its system. Starting in April, Microsoft will begin to enforce a limit of 3600 messages per hour to a recipient (MC239262). If you surpass this threshold, the company states that they will throttle messages to the account. The fact that the company is making this a hard limit, previously it was a soft cap, means they must be seeing challenges from specific accounts. Because of this, you will need to take action if you have a mailbox surpassing this message-per-hour rate. And you might be thinking, "how will I know if I have an account that is going to be hit by this new ceiling? " Even though Microsoft says that there are only a small number of accounts that will be impacted, they have created a new alert called “Mailbox exceeding receiving limits” insight and report in the Exchange Admin Center that will generate a notification if one or more accounts meets this threshold. If you navigate to admin. exchange. microsoft. com/#/insights and see the following text, “Some mailboxes need attention: one or more mailboxes have exceeded their receiving limits” – then you need to take action. Thinking a bit more logically, receiving more than 3600 emails per hour is... --- ### Patch Tuesday – February 2021 - Published: 2021-02-11 - Modified: 2021-02-11 - URL: https://petri.com/patch-tuesday-february-2021/ - Categories: Security - Tags: Exchange Server, Microsoft Office, Security, SharePoint, Windows 10, Windows Server - Article Type: News Microsoft has released a relatively small number of fixes this month, in total just 56. But they include patches for a zero-day flaw in the Win32k component and some serious TCP/IP networking stack vulnerabilities. Windows and Windows Server February's cumulative update (CU) for Windows 10 comes with a patch for a zero-day Elevation of Privilege flaw (CVE-2021-1732) in Win32k. Zero-days are bugs that are exploited in the wild before a patch is made available. Win32k is a core component of Windows and compromise can lead to a hacker gaining SYSTEM access. According to Chinese security company DBAPPSecurity, the flaw has been leveraged by a group called Bitter, which has a history of attacks against users and organizations in Pakistan and China. DBAPPSecurity describes the attack as high-quality and sophisticated. The zero-day has been exploited for the previous 7 months. Information about six other bugs were made public before Patch Tuesday: CVE-2021-1721, CVE-2021-1733, CVE-2021-26701, CVE-2021-1727, CVE-2021-24098, and CVE-2021-24106. While they were not being actively exploited, it won't take long for hackers to weaponize them. TCP/IP exploits Microsoft published a separate blog post about three TCP/IP exploits: CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086. The first two are critical Remote Code Execution (RCE) flaws. Microsoft says they are complex and that it would be difficult to create working exploits. But while it may mean in the short-term hackers are unable to weaponize the flaws, you should update your systems as soon as possible. The third patch is for a Denial of Service (DoS)... --- ### Microsoft Adds 'Meet Now' to Teams but It Needs to Go One Step Further - Published: 2021-02-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-meet-now-to-teams-but-it-needs-to-go-one-step-further/ - Categories: Microsoft 365, Microsoft Teams - Tags: Meet Now, Microsoft, News, Teams - Article Type: News Microsoft is rolling out a new Meet Now feature for Teams that almost matches the best-in-class funcationality. One of the benefits of Teams is that the platform provides a robust solution to host conference calls and to collaborate. But during the past year, the application has often been a second-class citizen for one, but very popular scenario, spontaneous meetings. With Teams today, if you want to schedule a meeting, you navigate to the calendar tab, click ‘New Meeting’, complete the title, attendees, time, date, channel, location, and meeting info sections, and then blast out the invites. But that is a lot of unnecessary work if you need to quickly jump on to a call with people inside (and outside) your organization. Starting this month, Microsoft will add a ‘Meet now’ (MC237392) button to Teams that reduces the number of steps required to get access to what you really want, a link that can be shared to join the session. Image #1 Expand Meet Now option coming to Teams - Image Credit, Microsoft This is an incredibly basic feature that should have arrived a long time ago but late is better than never. I have used cheap workarounds, like scheduling meetings with only myself to get the join links, but this is a much better solution and is only one step away from matching other apps like GoTo Meeting. The next logical step would be for Microsoft to offer vanity URLs that can be reused for multiple meetings. As an example, GoTo Meeting lets you reuse a link such as Gotomeeting. com/BradSamsMeeting for any pop-up... --- ### Protecting Hybrid Active Directory Environments from Attack - Published: 2021-02-10 - Modified: 2024-09-04 - URL: https://petri.com/protecting-hybrid-active-directory-environments-from-attack/ - Categories: Active Directory (AD), Microsoft Azure - Tags: Azure Active Directory, cloud computing, Security, SolarWinds, Solorigate, Windows Server Active Directory - Article Type: How To Security Assertion Markup Language (SAML) is an open standard that facilitates user logon to on-premises and cloud services. Following the Solorigate attack in late 2020, which used SolarWinds' IT monitoring and management solution Orion, Microsoft has provided advice to its customers on how to better protect their systems. The SolarWinds attackers compromised networks through malicious code in the Orion product. It allowed them to elevate privileges and get access to organizations' trusted SAML token-signing certificates. Security Assertion Markup Language (SAML) is an open standard that facilitates user logon to on-premises and cloud services. It is the basis on which Azure Active Directory (AD) forms trusts with systems like Windows Server Active Directory. The attackers forged SAML tokens to impersonate organizations' existing users, including privileged accounts. Attackers could potentially have accessed any resources trusted by an organization's SAML token signing certificates. Although, Microsoft says that its built-in Azure AD security and monitoring features were able detect anomalies in SAML authentication. Compromised on-premises systems can be used to 'hack the cloud' Regardless of how secure Microsoft's cloud is, the Solorigate attack showed how compromised on-premises systems can propagate malicious activity to the cloud. Microsoft has some important advice to help organizations protect themselves against these kinds of attacks. Image #1 Expand Protecting Hybrid Active Directory Environments from Attack (Image Credit: Microsoft) 1. Disable federated trust relationships Microsoft has long been pushing account and password hash synchronization as the easiest and most secure way to connect Azure AD and Windows Server Active Directory. There are few, if any in most cases, advantages of using Active Directory Federation Services (ADFS)... --- ### Want to Run a Webinar in Teams? You will Need Teams Pro - Published: 2021-02-10 - Modified: 2021-02-10 - URL: https://petri.com/want-to-run-a-webinar-in-teams-you-will-need-teams-pro/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Teams, webinar - Article Type: News Microsoft has a new service plan called Teams Pro that you will need if you want to run a webinar. When it comes to using Microsoft software, there are two universal truths: it will take time to figure out how to actually use the software and it will take even more time to understand how to license it effectively. This is why it’s no surprise to learn that Microsoft will be releasing a new service plan for Teams that will enable additional functionality for the communication hub. Called ‘Teams Pro’, this new service plan will be available as part of your Microsoft 365 Office 365 and Microsoft 365 E5, E3, A5, A3, Business Standard, and Business Basic license. According to MC238782, look for this new service plan to roll out in mid-March 2021 at the tenant level. So what does this new service plan include? According to the announcement, it will be tied to meeting intelligence and webinar capabilities. I think it is the second part of that service plan statement that will be key as Teams is now starting to support webinar functionality. And with a new feature, especially since webinars are a popular tool in the marketing world, adding a new service plan that is linked directly to this, makes sense. Webinars are a sizeable market for Teams to expand into and there are many competing platforms in this space. If Microsoft approaches this correctly and undercuts popular alternatives like GoTo Webinar, they stand to entrench the collaboration hub even deeper into the corporate world while pushing out competitors. The other aspect of the Teams Pro plan is... --- ### GET-IT SharePoint Day is Happening Today! - Published: 2021-02-09 - Modified: 2021-02-09 - URL: https://petri.com/get-it-sharepoint-day-is-happening-today/ - Categories: SharePoint - Tags: GET-IT, GET-IT SharePoint, SharePoint - Article Type: Overview The world of SharePoint is constantly evolving. From significant announcements like Viva to managing the security of your users and data, it’s a platform that is not going away anytime soon. That is why today, we are hosting our GET-IT SharePoint virtual conference that is open to everyone and packed full of deep technical SharePoint knowledge. You can watch with the live stream below or head on over to the conference page where you can download all the handouts too.  --- ### How to Install Windows Software Remotely Using PowerShell and Chocolatey - Published: 2021-02-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-windows-software-remotely-using-powershell-and-chocolatey/ - Categories: Windows 10 - Tags: Chocolatey, Package Management, PowerShell, remote management - Article Type: How To 2020 saw more people work from home than ever due to the worldwide health pandemic. But organizations were caught off guard and needed to quickly find ways to let employees work remotely and securely. Even organizations that had virtual private network (VPN) solutions already in place scrambled to scale them to handle a significantly higher load. Then comes the problem of how to deploy and keep software up to date. Again, many larger organizations already have systems in place to manage this. Endpoint Manager is Microsoft's solution for managing endpoints, regardless of where they are located. But it's subscription model and complexity can put it out of reach for small businesses. If you want to use the latest version of PowerShell, you will need to install PowerShell 7 instead of using Windows PowerShell. Using a package manager Chocolatey is a command-line package manager for Windows. It is free and open source. Package managers let you deploy software from a repository using a few simple steps. For example, you can install popular Windows software from Chocolatey's public repository using a simple command line. There's no need to manually download the software and then step through an installer wizard. Chocolatey automates the entire process from beginning to end. For more information on how to install software using Chocolatey, check out How to Install Windows Software Using Chocolatey on Petri. Installing software remotely The instructions I linked to above are fine if you have physical access to a device. But things get more... --- ### Spartan Down: Microsoft’s Pulling the Plug on Classic Edge on March 9th - Published: 2021-02-08 - Modified: 2021-02-08 - URL: https://petri.com/spartan-down-microsofts-pulling-the-plug-on-classic-edge-on-march-9th/ - Categories: Windows 10 - Tags: Edge, Microsoft, Spartan, Windows 10 - Article Type: News Microsoft will remove legacy Edge from Windows 10 PCs next month with a cumulative update. We knew it was coming, Microsoft told us it was happening, and now the deadline is nearly upon us; Microsoft is getting ready to end support for legacy Edge. On March 9th, the legacy version of Edge will no longer receive security updates which means you need to stop using it immediately. If the name Spartan doesn’t sound familiar, this was the codename of the new browser and its legacy can be traced back to at least 2014. At that time, I wrote that Microsoft was making big changes for IE12 which I eventually learned was codenamed Spartan. But the browser never stood a chance, despite Microsoft’s best effort to re-invent itself with its Trident engine, Edge failed. Microsoft made the significant decision several years ago to move from what we know as legacy Edge to the current Edge and the company has not looked back since making the move from Trident to Chromium. Announced this month, Microsoft is signing the warrant on the end of life for legacy Edge and will remove the application with an update coming to Windows10. Microsoft states: “To replace this out of support application, we are announcing that the new Microsoft Edge will be available as part of an upcoming Windows 10 cumulative monthly security update. When you apply this update to your devices, the new Microsoft Edge will be installed and the out of support Microsoft Edge Legacy will be removed. ” While I can’t imagine that too many companies built websites specifically for... --- ### Change Windows 10 Graphics Settings to Solve Display Problems on Devices with Dual GPUs - Published: 2021-02-05 - Modified: 2024-09-04 - URL: https://petri.com/change-windows-10-graphics-settings-to-solve-display-problems-on-devices-with-dual-gpus/ - Categories: Windows 10 - Tags: GPU, Windows 10 - Article Type: How To Change graphics performance preferences to solve problems with display issues on devices with dual GPUs. As an IT administrator or business professional, you might not have reason to change graphics settings in Windows 10 very often. In fact, it had been so long since I'd had any issues with the graphics processing units (GPU) in my daily driver device, I'd not noticed some important changes to the graphics configuration options in Windows. I've always opted for Nvidia GPUs and Intel processors because better the devil you know. And it had always been that if I wanted to force an application to run on either the integrated graphics chip or Nvidia discrete GPU, the Nvidia control panel was the place to go. But starting in the Windows 10 April 2018 Update, graphics processor preference is controlled in the Windows 10 Settings app. It even tells you this in the Nvidia control panel, but I just ignored it. My issue started when trying to record my screen using an application called OBS Studio. OBS is a popular application for screen recording and live streaming. But if you have a device with more than one GPU, sometimes when you enable screen capture in OBS, the result is a black screen. Image #1 Expand Change Windows 10 Graphics Settings to Solve Display Problems on Devices with Dual GPUs (Image Credit: Russell Smith) It occurred to me that maybe I needed to force OBS to run on the integrated Intel graphics. So, I set the configuration in the Nvidia control panel, but it didn't solve my problem. Then... --- ### Microsoft Exploits Its Software Toolkit to Create Viva > Microsoft launched Viva, its new employee experience platform, on Feb.4. Here's a technical assessment of the new EXP platform. - Published: 2021-02-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-viva-technical-aspects/ - Categories: Microsoft 365, Microsoft Teams, Office, Yammer - Tags: Insights for Teams, Microsoft Viva, Viva Connections, Viva Insights, Viva Learning, Viva Topics, Yammer - Article Type: News, Opinion From a technology perspective, Microsoft’s announcement of Viva, their new employee experience platform (EXP) for Microsoft 365, contained a mixture of the good, not-so-good, and puzzling. I don’t plan to cover Microsoft positioning and launch messaging (see Brad’s article). Instead, I want to probe at the technology. To start, Viva is a great example of how Microsoft can create new solutions by assembling pieces of its Microsoft 365 toolbox. In this case, the core components are Teams, SharePoint Online, Yammer, MyAnalytics, Workplace Analytics, and Topics, a Project Cortex component, all underpinned by the Microsoft Graph and artificial intelligence. It makes sense to build on top of well-proven technology; the questions I have are about how popular something like Viva will be with customers. A New Platform for an Emerging Market First off, Microsoft (or at least, the analysts they employed) thinks a market exists for EXP solutions, putting the available market at around $300 billion in annual spend. They say that these solutions span “corporate culture, knowledge discovery, on-the-job learning and employee well-being” and that it’s “a fragmented market of services, infrastructure and hundreds of tools. ” That’s true, but it’s equally true that Microsoft confuses the market itself sometimes. For example, the positioning of Teams and Yammer as collaboration platforms within Microsoft 365. Both products play in Viva. Teams delivers the overall integration platform in that users access the four announced Viva modules (Connections, Insights, Learning, and Topics) through separate Teams apps. Without hands-on access to the code,... --- ### Microsoft 365's Next Big Feature is Called Viva - The Intranet, Reborn - Published: 2021-02-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365s-next-big-feature-is-called-viva/ - Categories: Microsoft, Microsoft 365, Microsoft Teams - Tags: Microsoft 365, News, Teams, Viva - Article Type: News Keeping employees engaged is a critical component to the long-term success of the individual but with resources often scattered to various ends of your intranet, finding content can be challenging. Microsoft is looking to tackle this problem with its new Employee Experience Platform or EXP for short. Microsoft is calling the new offering Viva and it will start rolling today (in preview) with updates targeted throughout 2021. The tool will bring together communication, knowledge, learning, resources, and insights into an integrated experience that will live inside of Teams and to little surprise, Viva will be primarily powered by Microsoft 365 applications and data. The goal of Viva is to unify the employee experience across four key areas: Engagement, Wellbeing, Learning, and Knowledge with the objective of making the EXP the central hub for keeping your employees engaged with resources applicable to their specific role. Data inside of Viva will be populated by internal company assets and third-party connections. Today, Microsoft is announcing the first four modules for Viva: Viva connections is designed to deliver news to your users. Viva Connections provides a personalized gateway to your digital workplace where employees can access internal communications and company resources like policies and benefits and participate in communities like employee resource groups, all from a single customizable app in Microsoft Teams. The Connections app for Teams will be available on desktop in public preview the first half of 2021with a mobile app coming later this year. [caption align="alignnone"... --- ### How Microsoft is Moving Back into Education in a World of iPads and Chromebooks - Published: 2021-02-03 - Modified: 2024-09-04 - URL: https://petri.com/how-microsoft-is-moving-back-into-education-in-a-world-of-ipads-and-chromebooks/ - Categories: Microsoft 365, Microsoft Teams - Tags: education, Microsoft, Teams - Article Type: Opinion Microsoft's battle for education, while not won, has certainly become much less of a worry for the company. For the better part of a decade, watching Microsoft try and keep up with the onslaught of iPads and Chromebooks in the education sector has been rough. The company has pushed hardware from multiple vantage points but when it comes to the PC in education, none of the efforts made any long-lasting impacts in the real world. While the conversation started with Windows RT and morphed into the ill-fated Windows 10 S, it’s not like the company wasn’t trying, the problem was that it could not succeed because other companies were eating its lunch. And in fairness to what Apple built with the iPad and Google with the Chromebook, they were better products than what Microsoft was offering. Windows 10 has its place in the world, it’s a good OS but it’s also not an OS that’s built for kids or quite frankly, modern devices. We know this because the company is about to take another stab at a modern OS, currently called Windows 10x (preview here) but the reality is that when it comes to education, Microsoft has quietly notched a victory in the software space. It feels a bit like a broken record to mention Teams so frequently but the reality is that the collaboration software has been a significant win for the company. More so than just a good application, it’s also the future of the company if the world moves in a direction where Windows is no longer the foundation for productivity. This week, it was... --- ### Microsoft Open Sources ESE, the Extensible Storage Engine > Microsoft has open-sourced the ESE database, the engine at the heart of Exchange Server and Exchange Online. The code is now available on GitHub. - Published: 2021-02-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-open-source-ese-database/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Online, Exchange Server, Microsoft 365, Office - Tags: ESE, ESEUTIL, Exchange Kodiak, Exchange Server, Extensible Storage Engine, GitHub, SharePoint Tahoe - Article Type: News In a surprise development, Microsoft has released the source code for the Extensible Storage Engine (ESE) on GitHub. Fans of the non-SQL database engine, which has powered every version of Exchange since the initial 4. 0 release twenty-five years ago, now have the chance to peruse the ESE code. Although Microsoft isn’t accepting suggestions to improve the code for now, they say that they’ll accept contributions in the future. ESE (aka “Jet Blue”) is most closely linked with Exchange, but it’s featured in many other Microsoft products, including Active Directory. It’s also used by Windows 10 PCs today. A search of my PC revealed sixteen . EDB files, including Spartan. edb, apparently used by the Edge browser for backups. The Evolution of ESE Exchange 4. 0 used ESE for its sole 16 GB mailbox database. The original implementation of SharePoint (code name “Tahoe” or SharePoint Portal Server 2001) used ESE too. SharePoint later moved to SQL and an engineering effort (project “Kodiak”) also considered moving Exchange to SQL around the Exchange 2003 timeframe. That work concluded that ESE was a better option for the kind of transactions a mail server processes. Microsoft then invested in driving down the I/O profile of Exchange from the heavyweight demands of Exchange 2003 to be able to run on JBOD. Reducing the cost of storage was an important influence over the economics of Microsoft’s cloud. Today, Exchange 2019 and Exchange Online servers run a very different and much-developed ESE capable of supporting stretched Database Availability Groups... --- ### What is Windows 10 Cloud Configuration - Published: 2021-02-02 - Modified: 2021-02-02 - URL: https://petri.com/microsoft-announces-windows-10-in-cloud-config-to-improve-security-for-frontline-and-remote-workers/ - Categories: Windows 10 - Tags: cloud computing, Endpoint security, Microsoft Endpoint Manager, Microsoft Intune, News, remote administration, Windows 10, Windows 10 in cloud configuration - Article Type: News February 2nd, 2021, Microsoft announced 'Windows 10 in cloud configuration'. 'Cloud configuration' is a new recommended device configuration that can be applied to Windows 10 computers using Intune, Microsoft's Mobile Device Management (MDM) solution, which is part of Microsoft Endpoint Manager (MEM). Organizations can use MEM to apply a standard configuration to devices running Windows 10 Pro, Windows 10 Enterprise, and Windows 10 Education. Microsoft says that the configuration is suitable for employees that use their devices for basic productivity and content consumption. 'Windows 10 in cloud configuration' is primarily intended for frontline workers, remote workers, and others that use a limited set of applications assigned by IT and cloud storage. Applying the recommended settings helps businesses provide a unified configuration that optimizes the management of Windows 10 devices for the cloud. User accounts are registered in Azure Active Directory (AD) and their devices are secured and remain compliant with the recommended settings. 'Windows 10 in cloud configuration' leverages existing technologies to make sure that devices are securely configured. Windows Update for Business makes sure that devices are kept up to date with the latest security patches. And Azure AD is used to secure user identities and provide single sign-on to cloud services. Apps, like Microsoft Teams, Microsoft Edge, and Microsoft 365 Apps can be installed automatically on devices and securely configured. Devices don't need to be reset to use Windows 10 in cloud configuration If you want to apply Windows 10 in cloud configuration to devices, it's... --- ### Use Update Compliance to View Blocked Windows 10 Feature Updates - Published: 2021-02-02 - Modified: 2024-09-04 - URL: https://petri.com/use-update-compliance-to-view-blocked-windows-10-feature-updates/ - Categories: Windows 10 - Tags: Update Compliance, Windows 10, Windows Update, Windows Update for Business - Article Type: News New queries in Update Compliance provide greater insight for IT when safeguard holds are placed on Windows endpoints. For organizations using Windows Update for Business (WUfB) or Windows Update, Microsoft often puts safeguard holds on Windows 10 feature updates to stop devices with known compatibility issues from receiving the updates. As Microsoft works with vendors to resolve the problems, safeguard holds are gradually lifted. If you use Windows Server Update Services (WSUS), or another service for distributing updates to endpoints, you don't need to worry about Microsoft's safeguard holds. You are responsible for making sure that the feature updates you approve for distribution have been properly tested. What is Update Compliance? Update Compliance is an Azure Marketplace app that you can download for free. You can use it with Windows 10 Professional, Enterprise, and Education SKUs. It monitors the update status of your Windows endpoints. To use Update Compliance, you need an Azure subscription that includes Log Analytics. Update Compliance is ideal for organizations that rely on WUfB to manage Windows Updates because it provides reporting that's not part of WUfB. For more information on WUfB, see Why You Should Use Windows Update for Business Instead of Windows Server Update Services and Managing Windows 10 Updates in a Small Businesses Environment. Windows 10 feature update safeguard holds Microsoft uses telemetry data that it collects from devices to determine whether they are ready for a feature update. Feature updates are usually released twice yearly and can involve a full in-place upgrade of Windows 10. Machine learning is used to process the telemetry data. And if a potential... --- ### Everything You Need to Know About Windows – January 2021 - Published: 2021-02-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-january-2021/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows Admin Center, Windows Insider - Article Type: News A near-final build of Windows 10X leaks to the Internet, Microsoft released Edge version 88, and Microsoft is hoping to make Win32 APIs available to more languages. So, let's get started. Windows 10X leaked build Early in the month, a leaked build of Windows 10X surfaced that allowed us to get hands on with Microsoft's new operating system for single-screen devices. Windows 10X is a stripped-down version of Windows that runs just a browser and UWP apps from the Microsoft Store. Support for Win32 apps was abandoned for the initial release, which is expected in spring 2021. Microsoft isn't officially saying it, but Windows 10X is seen by most as an attempt to compete with Google Chromebooks. Image #1 Expand Windows 10X (Image Credit: Russell Smith)   Originally intended for a new class of dual-screen devices, Windows 10X is primarily designed for touch. Although it can also be used with a keyboard and mouse. Windows 10X sports a new visual design, with a refreshed Action Center and it disposes of the system tray. Some of the UI tweaks are expected to find their way into Windows 10 21H2 in fall 2021. Check out a full walkthrough of the leaked build here. CES 2021 Not strictly Windows news, but there were some announcements at this year's Consumer Electronics Show (CES) that impact the hardware Windows devices use. 11th Gen Intel vPro brings improved performance Intel announced the 11th generation of its vPro brand. vPro is a set of hardware... --- ### Everything You Need to Know About the Power Platform - January 2021 > Power BI, Power Apps, Power Automate, Microsoft Teams, Github, Visual Studio code and 10 year olds getting certified. This month has a bit of everything! - Published: 2021-02-01 - Modified: 2021-02-01 - URL: https://petri.com/everything-you-need-to-know-about-the-power-platform-january-2020/ - Categories: PowerApps - Tags: Microsoft Teams, power apps, Power Automate, Power BI Pro, Power Platform - Article Type: News What a fun month. Why? Because there is no theme. (My 3rd grader has been asking for help on his writing work and they are discussing themes) All of the topics are quick little wins, instead of those months where everything is about one topic. We got stuff for pro developers, kids, Power BI lovers, and of course Teams users. I hope you enjoy it. Start them early! 10-year-old twin sisters became the youngest Microsoft Power Platform Certified professionals. How cool is that? Proof once again Power Platform is for all makers whether your background is tech, business, or even elementary school. Check out Zara and Zenubia's smiling faces here. Developer Rejoice Source Code for Power Apps As a non-developer, I am not excited but if you are a developer I sure you are. The idea is Microsoft has started experimenting with being able to open Power Apps source files with Visual Studio Code and manage them in Github. I must stress this is still very experimental and not something you should be planning your project around quite yet but it shows you what is coming. To learn more and to give it a go check out this blog post from my buddy Greg. Power BI Premium now has XMLA endpoints My Power BI friends tell me this is super cool. The idea is not only can you expose your Power BI datasets (read) but you can also update them (write). This opens a richer set of data... --- ### Everything You Need to Know About Office 365 - January 2021 - Published: 2021-02-01 - Modified: 2021-02-01 - URL: https://petri.com/everything-you-need-to-know-about-office-365-january-2021/ - Categories: Microsoft 365, Office - Tags: Microsoft, Office 365 - Article Type: Overview January has come and gone but Office 365 news is still flowing. It feels like the new year just rolled over, but we are now 1/12th of the way through 2021. As we have been doing for several years, this is a wrap-up of the important updates coming (or already arrived) to Microsoft's productivity suite; as always you can find a complete list of everything we have published on this topic here. Updates this month touched many different areas of Office 365 including increasing file size support in Microsoft 365 to 250GB and the Lists app for iOS starting to roll out. But to keep things a little more organized, on the security side of the equation, there were many updates that you should know about. While building out your own policies for allowing IP ranges or email accounts to bypass specific rules is unavoidable, Microsoft is rolling out new alerts when a known malicious link or file enters a mailbox because of your policies. This feature will arrive in two phases sometime during the month of February for your tenant assuming it doesn't get delayed. While it's not something you should be doing every week, if you need to take a broad approach to reviewing the access for guests in your groups, Tony has a post that can walk you through this process. This feature will likely be popular with larger organizations but for smaller environments, you can use PowerShell to find out if guests are active. And if you find yourself in a situation where you need to hide sensitive... --- ### Everything You Need to Know About Azure Infrastructure – January 2021 Edition - Published: 2021-02-01 - Modified: 2021-02-01 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-january-2021-edition/ - Categories: Microsoft Azure - Tags: Accelerated Networking, Anti-virus, App Services, Application Change Analysis, ARM, ASR, Availability Zones, Azure, Azure Automation, Azure Backup, Azure Data Explorer, Azure Defender for SQL, Azure Managed Disk, Azure Monitor, Azure NetApp Files, Azure Policy, Azure Portal, Azure Resource Manager, Azure Security Center, Azure Site Recovery, Azure SQL, Azure Virtual Machines, Chile, Copy Blob, data centers, DevOps, Encryption at rest, firewall, GitHub, HB_v2-Series, HB-Series, HC-Series, Infiniband, Linux Diagnostics Agent 4.0, Logic Apps, NCas_T4_v3-Series, ND_v2-Series, Network Insights, Network Security Groups, NSG, Public IP, RDMA, Regions, Secure Enclaves, SR-IOV, Storage Account, Template Specs, Workbook - Article Type: Overview The first month of the year has come and gone but here is a recap of the Azure announcements for January. Is security a big deal? Is the same-old-systems approach of the past still securing you? If 2020 didn’t teach you that being flexible, modern, and staying out of technical debt wasn’t important, then along came “Solorigate” to end our year with a smack of a cold, wet fish across the face. Template Specs in Preview Microsoft announced that ARM Template Specs is now Public Preview.   Let the happy dancing begin! Wait – you probably don’t know what Template Specs are because you’re ... normal. Imagine that you created something that you think is cool – it speeds up doing complex things that normally take a lot of time. With your cool invention, people could quickly and easily replicate your results and everybody wins. In Microsoft Azure, ARM templates can be something cool. The idea is that you might create a template that does something – maybe it deploys a VNet with App Service Environment and SQL Managed Instance in a firewalled environment. If you’ve read up on that stuff, then you know that’s a lot of work! But if you can run a template, it might be a couple of minutes work for you while Azure spins for a few hours while you’re binge-watching something at home. But ARM templates have never had a good method for being shared internally. Managed Applications is suitable only for third-party vendors selling their wares through the Azure Marketplace. Blueprints ... they’ve been in preview for since the Earth started spinning and... --- ### Missing Audit Records for Retention Labels Applied to SharePoint Online Documents > A change made in December 2020 means that some audit records for retention labels applied to SharePoint Online are missing - Published: 2021-02-01 - Modified: 2024-09-04 - URL: https://petri.com/spo-retention-audit-records-missing/ - Categories: Compliance, Microsoft 365, Office, SharePoint Online - Tags: Activity Explorer, Compliance, Data classification, Know your Data, Office 365 Audit Log - Article Type: How To Activity Explorer Highlights Label Activities In June 2020, I covered Microsoft’s “Know Your Data” initiative, essentially the introduction of a bunch of new features in the Data classification section of the Microsoft 365 compliance center. Requiring Office 365 E5 or Microsoft 365 E5 (or E5 compliance) licenses, Microsoft targets this functionality at large enterprises who want to know about how users handle information. The Activity Explorer is a dashboard for activities involving retention and sensitivity labels. The data surfaced in the dashboard comes from a variety of sources, including signals generated by Office applications and the SharePoint Online and OneDrive for Business browser interfaces. Signals accumulate as users or auto-label policies assign labels to items or users remove or replace a label. The Office 365 audit log also captures events for these activities. The Activity Explorer supports filters to allow compliance administrators to focus in on specific timeframes, actions, or users and view matching data. The option exists to export the data to a CSV file for analysis in a tool like Power BI. The Hole Created by a Data Collection Glitch It all looks good, until you realize that a massive gap exists in the logging of retention labels. Everything works as expected if users assign labels using the SharePoint browser UI or an auto-label policy processes items based on a match against queries, sensitive information types, or trainable classifiers. However, no records are captured when documents are added to a document library where a default label... --- ### How to Configure PowerShell SSH Remoting in Windows 10 - Published: 2021-01-29 - Modified: 2024-09-04 - URL: https://petri.com/configure-powershell-ssh-remoting-in-windows-10/ - Categories: PowerShell - Tags: PowerShell, PowerShell Remoting, remote administration, Secure Shell - Article Type: How To Microsoft introduced Secure Shell (SSH) as a transport for PowerShell Remoting in PowerShell 6. Older versions of PowerShell (Windows PowerShell) are restricted to HTTP/HTTPS and Windows Remote Management (WinRM). WinRM/HTTP is fine for Active Directory (AD) environments. Authentication and communications are secured. WinRM/HTTPS is for accessing workgroup computers, i. e. computers not joined to an AD domain. But to use HTTPS, you need to get, provision, and manage certificates. And that's a pain. Additionally, you need to configure Trusted Hosts on devices before they will accept WinRM/HTTPS connections. To solve these issues, Microsoft introduced SSH as a transport option for PowerShell Remoting in PowerShell 6. SSH uses passwords and public/private key pairs for authentication, so certificates are not mandatory like when using HTTPS. Because SSH is only supported in PowerShell 6 and later versions, you'll need to install the latest version of PowerShell in Windows. Windows 10 comes with legacy Windows PowerShell 5. 1 installed by default. There are two main steps to configuring PowerShell Remoting to use SSH. The first step is to configure the computer that you want to connect to remotely. You will need to perform the following actions: Install the latest version of PowerShell. At the time of writing, it is PowerShell v7. Install and configure the OpenSSH server Once that's done, you'll need to configure your management PC. I. e. , the computer from which you would like to manage the remote device: Install the latest version of PowerShell. Install the OpenSSH client Configure the remote device... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (January 2021) - Published: 2021-01-29 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-15/ - Categories: Microsoft - Tags: News - Article Type: Overview Because Microsoft announced its quarterly earnings this week, this edition of Short Takes looks exclusively at the results across all of the software giant’s major business units. Image # Expand Because Microsoft announced its quarterly earnings this week, this edition of Short Takes looks exclusively at the results across all of the software giant’s major business units. Note: On Tuesday, Microsoft reported that it earned a net income of $15. 5 billion on revenues of $43. 1 billion for the quarter ending December 31, 2020. Here, we’ll take a closer look at the quarter, based in part of information the firm communicated during its post-earnings conference call. Business unit breakdown Microsoft has three major business units---Productivity and Business Processes, Intelligent Cloud, and More Personal Computing---and they had been tracking pretty close to each other each quarter, financially, for the past several years. But in recent quarters, the two cloud-based units---Productivity and Business Processes, and Intelligent Cloud---have been pulling well ahead of More Personal Computing, which contains more traditional businesses like Windows, Surface, and Xbox. Well, that all changed in the holiday quarter of the pandemic year, with More Personal Computing surging to take first place with $15. 1 billion in revenues, a year-over-year (YOY) increase of 14 percent. Intelligent Cloud was the second-largest business unit with $14. 6 billion and 23 percent YOY growth. And Productivity and Business Processes brought up the rear with $13. 4 billion in revenues, a gain of 13 percent YOY. “Apple Reports A True Blockbuster” The only blockbuster I’m interested in is No Time to Die. Windows was a bit of a rollercoaster One might expect that Windows would have had a great quarter, given that the... --- ### How to Inventory Remote Computers Using PowerShell - Published: 2021-01-28 - Modified: 2024-09-04 - URL: https://petri.com/how-to-inventory-remote-computers-using-powershell/ - Categories: PowerShell - Tags: PowerShell, remote administration, Windows Management Instrumentation - Article Type: How To Windows Management Instrumentation (WMI) is a management infrastructure built-in to Windows for querying management and operations data. It can be used to query local and remote computers for information like running processes, installed software, BIOS information, and much more. WMI vs CIM WMI is based on the Common Information Model (CIM), which is an open-source standard used to access and display information about IT systems. PowerShell's Get-WMIObject cmdlet lets you query local and remote computers. But Get-WMIObject is being deprecated. That's because Microsoft introduced CIM based cmdlets in PowerShell v3. 0. There are several different CIM cmdlets available in PowerShell: Get-CimSession New-CimSession Remove-CimSession Get-CimInstance New-CimInstance Remove-CimInstance Set-CimInstance When using the CIM cmdlets to query remote devices, PowerShell uses WinRM, otherwise known as PowerShell remoting. WinRM uses a secure connection and Active Directory and Kerberos for authentication. So, in this article, I'm going to show you how to use Get-CimInstance to query remote devices so that you can gather inventory information. Query a remote device using CIM Before we start, it's important to understand that Get-CimInstance relies on PowerShell remoting. PowerShell remoting is enabled by default in Windows Server. But if you want to query remote client versions of Windows, like Windows 10, you will need to enable PowerShell remoting on those devices before you can use Get-CimInstance. A typical Get-CimInstance command in PowerShell looks something like this: Get-CimInstance -Class Win32_Bios -ComputerName DC1 Image #1 Expand How to Inventory Remote Computers Using PowerShell (Image Credit: Russell Smith) Exploring CIM classes... --- ### New Override Alerts for Office 365 Create an Additional Safety Net - Published: 2021-01-28 - Modified: 2021-01-28 - URL: https://petri.com/new-override-alerts-for-office-365-create-an-additional-safety-net/ - Categories: Microsoft 365, Security - Tags: Defender, Microsoft, Office 365, Security Microsoft is rolling out a new feature that will alert you if a phishing link or malware is delivered to a mailbox because of a policy exception. When getting started with your new Office 365 tenant, Microsoft has done a respectable job of making the first run experience not too overwhelming. But as your tenant grows, more people are added to roles that can impact policy, it’s possible that a rule could be created that will allow a malicious email or file to be delivered to a mailbox. As an example, you may set a policy to enable a specific IP to deliver email but if an attacker is able to exploit this policy to deliver a phishing email, you may not be aware of the intrusion. This is the gap that Microsoft is trying to address with its new override alerts. Announced today and the feature will start rolling out in early February, for those using Microsoft Defender for Office 365 Plan 1 and Plan 2, you will now be alerted when a message is delivered, only when it is determined with a high degree of confidence that it is phishing or malware, to a mailbox because of a policy that was enabled/disabled. Specifically, Microsoft says that the “new system alert policies will enable security admins to receive alerts if a message with a high confidence phish or malware verdict is delivered to a mailbox due to one of the following” scenarios: Phish delivered due to an IP allow policy Phish delivered due to an ETR override. Phish delivered because a user’s Junk Mail Folder is disabled. Phish not zapped because ZAP is disabled. Malware not... --- ### Surface Duo Update Delivers App Improvements for Microsoft 365 - Published: 2021-01-27 - Modified: 2024-09-04 - URL: https://petri.com/surface-duo-update-delivers-app-improvements-for-microsoft-365/ - Categories: Main, Microsoft 365, Microsoft Teams - Tags: Microsoft, News, Surface Duo - Article Type: News Microsoft is rolling out a new update to the Surface Duo that will improve the Microsoft 365 app experience. When Microsoft announced its earnings yesterday, the company reported that Surface crossed the $2b threshold for the first time. This is a major milestone for the brand and one item that likely played a part, albeit a tiny part, was the Surface Duo. If you bought one of these devices, you should check for updates as Microsoft has pushed out a new release. Below is the list of the major components that have been updated: Addresses scenarios outlined in the Android Security Bulletin - December 2020 and January 2021. M365 Apps updated with new features & improvements Improves Surface Duo UI stability. Adds the ability to add a caller to conference calls in certain conditions Improves audio quality when using speaker mode. Improves touch stability. While the bug fixes in this release are important, a bigger focus (at least for me), are the updates to the apps. Because at the end of the day, we expect the OS to run smoothly but it’s the app experiences on the Duo that have the potential to set this device apart. Image #1 Expand Surface Duo laying flat in a tablet portrait. That being said, be on the lookout for a new improved PowerPoint Presenter View and maximized view for PowerPoint notes, improved image formatting tools, and collaboration in documents across Word, Excel, and PowerPoint. OneDrive will have a new layout and action sheet updates, Outlook has an updated multi-window mode, and Teams multi-window mode for meetings and messaging has finally arrived. The update to... --- ### CISA and CrowdStrike Tools Make Detecting Compromised Microsoft 365 Accounts Easier - Published: 2021-01-27 - Modified: 2021-01-27 - URL: https://petri.com/cisa-and-crowdstrike-tools-make-detecting-compromised-microsoft-365-accounts-easier/ - Categories: Microsoft 365, Security - Tags: Azure Active Directory, Microsoft 365, Microsoft Azure, Security, SolarWinds - Article Type: News The Cybersecurity and Infrastructure Security Agency (CISA) recently released a PowerShell-based tool to help organizations detect compromised accounts and applications in Microsoft Azure and 365. The Cybersecurity and Infrastructure Security Agency (CISA) recently released a PowerShell-based tool to help organizations detect compromised accounts and applications in Microsoft Azure and 365. Following the SolarWinds attack in late 2020, which used malicious SolarWinds files that could have given nation-states access to networks, Microsoft outlined the complex techniques used as part of the attack. Post-Compromise Threat Activity in Microsoft Azure and 365 The attack involved compromising a network through malicious code in the SolarWinds Orion product. It allowed the attacker to elevate privileges and get access to an organization's trusted SAML token-signing certificate. Security Assertion Markup Language (SAML) is an open standard that facilitates user logon to on-premises and cloud services. The attacker could then forge SAML tokens to impersonate the organization's existing users, including privileged accounts. An attacker could access any resources trusted by an organization's SAML token signing certificates. And because a signing certificate is the basis on which federated trust relationships are formed, service providers like Microsoft Azure might not detect forged tokens. Microsoft says that its built-in security and monitoring features in its cloud were able detect any anomalies in SAML authentication. And that Microsoft Defender malware definitions have been updated to detect malicious SolarWinds files. CISA Sparrow The CISA PowerShell tool is designed to detect unusual activity that might impact a Microsoft 365 or Azure environment. "CISA has created a free tool for detecting unusual and potentially malicious activity that threatens users and applications in an Azure/Microsoft O365 environment. The tool... --- ### How to Hide Sensitive Documents Stored in SharePoint Online > Sometimes the need exists to hide SharePoint documents from curious eyes. This article explores the best approach to use. - Published: 2021-01-27 - Modified: 2024-09-04 - URL: https://petri.com/hide-sharepoint-documents/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Delve, HideFromDelve, sensitivity labels, SharePoint Online - Article Type: How To Delve: Exposing Permission Weaknesses Since 2015 Since its introduction in 2015, people have complained that Delve exposed documents to other users that they’d prefer not to share. In fact, the problem lies with poor permissions practice rather than Delve because Delve only ever shows information to a user which they are entitled to see. In many cases, problems arose when organizations migrated content from file servers to SharePoint Online without paying much attention to the permissions assigned to sites. Delve is only interested in files stored in SharePoint Online and OneDrive for Business. The golden rule is that if the permissions on the SharePoint site or OneDrive account permit access to the content, Delve is happy to point people to those documents. On the other hand, if the permissions restrict access, Delve never shows them in its “Discover documents from people around you” section. The fact that I can see documents authored by James Ryan and Nancy Anderson (Figure 1) means that I have access to those files, even if I never knew that I did (until now). Image 1 Expand Figure 1: Delve helpfully shows some documents (image credit: Tony Redmond) The HideFromDelve Managed Property SharePoint gurus quickly discovered that a managed property called HideFromDelve could be used to block Delve from displaying documents (including to their authors) while not stopping content being indexed. Microsoft documentation now covers how to use the HidefromDelve property. Allowing users to hide individual documents from Delve is better than hiding complete sites... --- ### Microsoft Beats Expectations with Healthy Q2 Earnings - Published: 2021-01-26 - Modified: 2021-01-26 - URL: https://petri.com/microsoft-beats-expectations-with-healthy-q2-earnings/ - Categories: Main - Tags: Microsoft - Article Type: News It's that time of the quarter again where Microsoft reports its earnings but this time around it is for calendar Q4 but the company's fiscal Q2. It's that time of the quarter again where Microsoft reports its earnings but this time around it is for CY Q4 / FY Q2. As expected, Microsoft reported strong numbers across the board but let us take a closer look. For the quarter, Microsoft revenue jumped a healthy 17% to bring in $43. 1 billion with Net income coming in at $15. 5 billion, an increase of 33% over the same period last year. Revenue in Productivity and Business Processes was $13. 4 billion and increased 13% , with the following business highlights: Office Commercial products and cloud services revenue increased 11%  driven by Office 365 Commercial revenue growth of 21% Office Consumer products and cloud services revenue increased 7% and Microsoft 365 Consumer subscribers increased to 47. 5 million LinkedIn revenue increased 23% Dynamics products and cloud services revenue increased 21% driven by Dynamics 365 revenue growth of 39% Revenue in Intelligent Cloud was $14. 6 billion and increased 23% (up 22% in constant currency), with the following business highlights: Server products and cloud services revenue increased 26%  driven by Azure revenue growth of 50%. Revenue in More Personal Computing was $15. 1 billion and increased 14% (up 13% in constant currency), with the following business highlights: Windows OEM revenue increased 1% Windows Commercial products and cloud services revenue increased 10% (up 8% in constant currency) Xbox content and services revenue increased 40% Surface revenue increased 3% Search advertising revenue excluding traffic acquisition costs increased 2% Overall, this was a very healthy quarter for Microsoft... . --- ### Microsoft's Ignite, Part II, is Happening March 2-4 - Published: 2021-01-26 - Modified: 2021-01-26 - URL: https://petri.com/microsofts-ignite-part-ii-is-happening-march-2-4/ - Categories: Main - Tags: Ignite, Ignite 2021 - Article Type: News Last year, when Microsoft announced that they would be splitting Ignite into two events, we did not know when the second iteration of the conference would occur. But if you have been sitting on the edge of your seat, wondering when the company would host a spring event, wonder no more. As the title proudly includes most of the news, the event is happening March 2-4. According to the landing page, Microsoft is describing this event as "a digital world at your fingertips" but the sub-head does make it seem like there will be some replay of the previous Ignite conference - "The next Microsoft Ignite is March 2–4, 2021. As we enhance the experience, enjoy and share your favorite moments from September 2020. " Ignite, when we can all travel and be around each other, is the company's largest IT-Pro event of the year. While the company has done a commendable job with the Ignite-online experience, nothing truly replaces the in-person event. That being said, by being fully-online, Ignite is accessible to a much wider audience than the previous in-person shows. Much like the previous iteration of the conference, this show will be free. That being said, you will likely have to register again but at this time, registration does not appear to be open. And as always with Ignite, we will make sure to cover the larger announcements from the events and make sure you are aware of any new features or major changes coming to the platforms that... --- ### Microsoft Endpoint Manager Simplifies Remote PC Management During Pandemic - Published: 2021-01-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-endpoint-manager-simplifies-remote-pc-management-during-pandemic/ - Categories: System Center - Tags: Microsoft Endpoint Manager, Microsoft Intune, remote working, System Center - Article Type: Overview There are lots of ways that you can remotely manage Windows devices. But some of them require direct network connectivity to the remote devices. There are lots of ways that you can remotely manage Windows devices. But some of them require direct network connectivity to the remote devices. For example, if you need to install or update software remotely, you can do it with PowerShell and a little bit of help from a package manager. And that's fine if your management device and the remote PCs are all on the same network. Or if you have remote devices connecting to the corporate intranet using a VPN that's configured for 'manage out' scenarios. But as 2020 saw many companies move employees to remote working, those without the right infrastructure in place not only struggled to provide secure access to corporate resources, but also to update and manage remote devices. Creating custom solutions using PowerShell, package managers, or whatever other scripting solutions come to mind, might be OK for small organizations. But it's not always a good option when you need to scale out an endpoint management solution and have a large IT team with mixed skillsets. A new name and simplified licensing At Ignite in September 2020, Microsoft launched Microsoft Endpoint Manager (MEM). MEM is a new brand for Microsoft's enterprise system configuration products. The idea was to bring Intune, Microsoft's Mobile Device Management (MDM) solution, and SCCM (now Microsoft Endpoint Configuration Manager) under the umbrella of one product title to reassure customers that Microsoft wasn't about to stop supporting SCCM. The move also lets organizations that had SCCM co-manage their Windows endpoints... --- ### Teams Web Meetings Update Delivers Gallery View and Together Mode Features - Published: 2021-01-26 - Modified: 2024-09-04 - URL: https://petri.com/teams-web-meetings-update-delivers-gallery-view-and-together-mode-features/ - Categories: Microsoft 365, Microsoft Teams - Tags: Gallery view, multiple videos, Teams, teams video layout, Web Browser - Article Type: How To Microsoft has done well to ensure that Teams provides a consistent experience across the desktop client, web browser, or mobile apps. However, the web version of Teams lacks several desktop features for meetings, in particular the ability to see the video feed for more than one person at a time. New features are launching in February that solves this, bringing up to 49 video feeds at once with Large Gallery view, Together Mode and 2x2 Gallery View to Edge and Chrome web browsers. You can try out some of these features early by switching on Public Preview. Image #1 Expand Large Gallery Mode in Teams Web Large Gallery view and Together mode are different from normal multi-stream videos in Teams. On the full desktop and mobile Teams clients, the standard built-in gallery view arranges the video streams within the app itself, receiving multiple video feeds and placing them on the screen in-app in what can seem to be a random order. For example, if you see someone in the top left on your screen, it is very unlikely someone else in the meeting will see them in the same place. Large Gallery view sends the combined video streams from the cloud as a single combined video stream. This means that everyone looking at Large Gallery view sees the same layout and you will see your own video feed in the view. Image #2 Expand Together Mode in Teams Web Together Mode was launched in July 2020 and initially... --- ### Microsoft Leadership Team Evolution Continues with Kurt DelBene Retiring - Published: 2021-01-25 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-leadership-team-evolution-continues-with-kurt-delbene-retiring/ - Categories: Main - Tags: Microsoft, News - Article Type: News Microsoft has had several high-profile executives depart the company this month with Kurt DelBene joining the list. The month of January has been marked with some significant departures from Microsoft. While this is certainly not a shakeup by any means, several key executives have left the company for various reasons. Earlier this month, Brad Anderson, who was known for his significant social media presence and video series for Microsoft 365, left the company and headed to Qualtrics. And also this month it was announced Julia White was leaving Microsoft to head to SAP as well. Building on those announcements, Microsoft has also informed employees today that Kurt DelBene, a CVP at the company will retire in January. DelBene joined Microsoft in 1992 and has served in various roles across the company and was most recently leading corporate strategy and core services engineering - he will remain officially an employee until the end of the fiscal year to help with the transition. With this departure, the Core Services Engineering, Digital Security, and Risk Engineering will transition to Scott Guthrie's org and the business operations will move to Finance under the leadership of Amy Hood. Finally, corporate strategy will move to Chris Young's Business Development org. While individually, none of these exits point to any significant issues inside the company, the net result will be a sizeable overhaul to how the company operates in the areas that each of these executives operated within. Is this a bad thing for Microsoft? Only time will tell but given how well Microsoft has navigated the pandemic, it’s clear that each of these... --- ### Microsoft Teams New ‘Offline Experience’ Will Improve Messaging Workflow - Published: 2021-01-25 - Modified: 2021-01-25 - URL: https://petri.com/microsoft-teams-new-offline-experience-will-improve-messaging-workflow/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Microsoft 365, News, Teams - Article Type: News Microsoft is bringing a new feature to Teams that will make it easier to send messages when you are offline. Connected services like Microsoft 365 are fantastic for making it possible to access your data on nearly any type of device. But when your connectivity drops, the experience can be frustrating as you try to work with documents offline. Microsoft Teams falls into this category where offline, the application is constricted in terms of its usefulness, and especially when it comes to messaging. Teams will soon have a new offline feature that will make messaging slightly more tolerable when your connectivity drops. Starting in late January, with a rollout expected to be completed by early February, the new ‘offline experience’ will allow messages in Teams to be sent even when you are not connected to the Internet. In this scenario, messages will be put into a queue for up to 24 hours, and once you establish connectivity, the messages will be sent. Previously in this same scenario, when trying to send a message, it would say “failed” instead of going into the message queue. This new feature will now send those messages as long as the device is re-connected within 24hrs. After the 24hr time has elapsed, Teams will no longer attempt to send the message and will alert the user that the message needs to be re-sent or deleted. There is a second phase to this feature that will be completed by mid-February, Teams will let the user edit the messages that are in the queue to be sent once reconnected. This feature, while targeted at offline usage, will... --- ### Running an Azure AD Access Review for Every Guest in Every Group > A preview of Azure AD Access Reviews for all guests in all groups in a tenant is available. It's a preview, so some gaps are inevitable. - Published: 2021-01-25 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-access-review-guests/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office - Tags: Azure AD Access Review, guest users, Microsoft 365 Groups, Teams - Article Type: How To, News When I wrote about Azure AD Access Reviews for Office 365 Groups (now Microsoft 365 Groups) in November 2017, I concluded that “any tenant that wants to use access reviews to control external access to Office 365 Groups or Microsoft Teams faces the challenge of having to create individual access reviews for each group that has guest members. ” It’s taken Microsoft a while, but now they’ve launched the public preview for access reviews covering guest users in all Teams and Groups in a tenant. It’s not as if a major technical challenge exists to know what groups have guest members. Perhaps the impulse comes from the ongoing success of Teams and the fact that every team is underpinned by a Microsoft 365 group. Many companies exploit Azure B2B collaboration in Teams to share information and work with people in other organizations (I am a guest member in seven other tenants). The upshot is that you end up with lots of guest accounts. With over 500,000 users, Accenture is the world’s largest Teams deployment, and the number of teams with guests it must manage is probably mindboggling. Creating an All-Guests Access Review If you’ve created access reviews before, you’ll find it simple to set up the preview. Go to the Identity Governance section of the Azure AD admin center, select Access reviews, and create a new review. Figure 1 shows that we’ve selected the scope is all groups (including groups with guests used for Yammer communities) and that the... --- ### New Meeting Organizer Options Arriving in Teams this January - Published: 2021-01-21 - Modified: 2024-09-04 - URL: https://petri.com/new-meeting-organizer-options-arriving-in-teams-this-january/ - Categories: Microsoft 365 - Tags: Bypass, Lobby, meetings, News, Teams - Article Type: News Two new features arrive in Microsoft Teams in January and will roll out over the next week or so. Two new features arrive in Microsoft Teams in January and will roll out over the next week or so. The first is a new option available when you schedule meetings that will make it easier to make sure people you invite to a meeting are not left waiting in the lobby. Previously, Microsoft’s options were simple – you place everyone in the lobby, everyone external or allow everyone in automatically. This new option allows you to ensure people you have invited to the meeting will bypass the lobby automatically: Image #1 Expand People I Invite (Based on Microsoft documentation) This means that if you organize a meeting for a mix of internal and external people, everyone invited will be able to join the meeting without waiting for you to admit them. Usually, your only option if you wanted an easy join experience would be to allow everyone into the meeting, meaning that anyone with the invite could attend. While Teams is less susceptible to an equivalent of “Zoom bombing”, it is still something worth avoiding. One down-side of this option is if you usually wait for your colleagues to join you in the meeting before admitting external attendees, then be aware your external attendees could potentially join the meeting before you do. The second useful meeting options update coming this month will improve the way Teams meetings are scheduled in Outlook. If you have organized or attended a larger internal meeting, you may have found it frustrating to... --- ### Microsoft Renames 10 Azure Active Directory Roles - Published: 2021-01-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-renames-10-azure-active-directory-roles/ - Categories: Active Directory (AD), Cloud Computing, Microsoft Azure - Tags: Azure, Azure Active Directory, Microsoft Graph - Article Type: News Microsoft has updated 10 role names in Azure AD and if your script is broken, this is likely why. One of the challenges of running a sprawling enterprise ecosystem is keeping everything consistent. With on-premises, hybrid, cloud, and admin portals all over the place, making sure that everyone describes each feature the same in each location can be difficult. Back in August, Microsoft announced that they would be updating the names of several roles for Azure Active Directory. The point of this is to make them consistent with the names that appear in Microsoft 365 admin center, Azure AD portal, and the Microsoft Graph. While there was an initial delay, the company says that the rollout is now complete. Listed below is the new mapping. Image #1 Expand Updated role names provided by Microsoft If you have a Powershell script that touches these roles, you will need to update it so that it functions as expected. As a best practice, Microsoft strongly encourages you to reference the role template ID and not the display names in your scripts or code. This update is not introducing any new features but I would bet there are a few admins waking up this week and wondering why their scripts have stopped working. Thankfully if that is the scenario, this should be an easy fix. --- ### Use Google Calendar to Schedule Microsoft Teams Meetings > Microsoft has released a version of the Teams meeting add-on for Google Calendar. You can create Teams meetings from Google Workspace or Calendar. - Published: 2021-01-21 - Modified: 2024-09-04 - URL: https://petri.com/use-google-calendar-to-create-microsoft-teams-meetings/ - Categories: Exchange Online, G Suite, Microsoft 365, Microsoft Teams, Office - Tags: Google Calendar, Google Workspace, Teams meeting add-on - Article Type: How To, News Surprising Play from Microsoft Microsoft has published an add-on to allow Google Calendar users to create and use Microsoft Teams meetings in the Google Workspace Marketplace. From the age of the comments, it seems like the add-on has been available since late November. However, Microsoft isn’t saying too much about the topic and the only trace of documentation I can find on their site covers configuring the add-on for use with Google Workspace. Separate versions of the add-on are available for Google Workspace and Google Calendar (consumer). Not having access to Google Workspace, I took the consumer variant for a test ride. After installing the code from the marketplace, the add-on allows users to schedule Teams meetings from their Google calendar. In concept, the add-on for Google Calendar works much like the Teams meeting add-in for Outlook desktop, OWA, and Outlook mobile do. As part of the installation process, you must authenticate to your home Teams tenant using your Microsoft 365 account.  If you don’t connect the add-on to a valid Microsoft 365 account licensed to use Teams, you can’t expect to create Teams meetings. Creating a Teams Meeting with Google Calendar Creating a Teams meeting with Google calendar is easy. Create the meeting as usual and then choose to have Teams create the necessary online workspace to host a meeting. This is done by selecting Teams as the host for an associated video conference as shown in Figure 1. Choose Microsoft Teams meeting from the drop-down list... --- ### Surface Duo, Four Months Later - Published: 2021-01-20 - Modified: 2024-09-04 - URL: https://petri.com/surface-duo-four-months-later/ - Categories: Hardware - Tags: Surface Duo - Article Type: Opinion The Duo has a place in this world if you are looking for a modern-PDA and a device that embodies Microsoft 365 in a physical form, but it is far from a smartphone that is for everyone. One of the compelling things about a new product launch is watching it evolve over its lifecycle and future iterations. Smartphones evolved through various form-factors to land on a rectangle slab of glass and many other gadgets have to simplify vanished like the MP3 players. Microsoft has a colorful history when it comes to devices that can fit in your pocket, from Windows Mobile to Windows Phone, and with the launch of the Surface Duo, Microsoft is once again entering the waters of the mobile segment. With the launch of the Duo about four months behind us, it is a good time to check-in on the device to see how it has held up during that period. That being said, if you are looking for a comprehensive deep-dive, check out my initial review as this is a higher-level look.  The Good Starting on the positive side of the coin, the Duo has held up quite well. Despite a few drops, bumps, and heavy usage, it looks like new. I do highly recommend that if you buy the hardware, put the bumper on the Duo as it makes it much easier to hold and will help protect it. Microsoft has pushed a couple of updates to the device that have improved performance and stabilized some of the early bugs. The experience continues to feel fluid and not bogged down even after you add a bunch of apps or fill the storage with images. The fingerprint reader continues to be a... --- ### Getting Started with PSCustomObject in PowerShell - Published: 2021-01-20 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-pscustomobject-in-powershell/ - Categories: PowerShell - Tags: PowerShell, PSObject - Article Type: How To When you need to store data in a structured format that can be extended upon, or in a more ordered fashion, PSCustomObject is the tool for the job. It has always been very easy to create hashtables and arrays in PowerShell, but there are times that a generic object comes in handy. Both hashtables and arrays are collections of objects, but a PSCustomObject is constructed of properties and values. PSCustomObject's can be stored in arrays and hashtables, but ultimately they are intended to be a collection of properties. When you need to store data in a structured format that can be extended upon, or in a more ordered fashion, PSCustomObject works great! Creating a PSCustomObject in PowerShell The fastest and easiest way to create a PSCustomObject is to use the following method, which works in all versions of PowerShell 3. 0 and above. ​$Object = @{} You can also use the New-Object -TypeName PSObject -Property @{} which will work in earlier versions of PowerShell, but it is also slower. This speed comes into play when you need to create or manipulate many objects in a script. You will notice that there appears to be a hashtable appended to the type declaration, , this is because we are passing the properties and values as key-values, best suited for a hashtable. The other benefit to this approach is that the PSCustomObject properties are ordered, unlike in a traditional hashtable where the keys will not maintain their initial order. Each of the created properties will be a NoteProperty like a typical PowerShell object. Of course, we have created an empty PSCustomObject, which doesn't do much good. How do we add... --- ### How to Use PowerShell Splatting to Make Code More Readable - Published: 2021-01-20 - Modified: 2024-09-04 - URL: https://petri.com/use-powershell-splatting-to-make-code-more-readable/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To In this article, I show you how to use PowerShell splatting to make your code more readable. There are a couple of ways you can make your PowerShell code more readable. In this article, I'm going to show you how to use splatting with the New-ADUser cmdlet to do just that, make your code more digestible. For yourself and for others to read. Splatting can be used with any PowerShell cmdlet that accepts parameters. But in this example, we'll stick to New-ADUser as it's a cmdlet most Windows system administrators are familiar with. Here's an example of a typical New-ADUser command. It's long, difficult to read, and it never seems to end. New-ADUser -Name 'Russell Smith' -Enabled $true –GivenName Russell –Surname Smith -Accountpassword (ConvertTo-SecureString PassW0rd! -AsPlainText -Force) -Path:"OU=Accounts,DC=ad,DC=globomantics,DC=uk" -ChangePasswordAtLogon $true -SamAccountName russellsmith –UserPrincipalName russellsmith@ad. globomantics. uk -City London -Department Infotech Using backticks for line continuation in PowerShell One way that you can make the above command easier to read is using backticks. You often see this method used in documentation or script examples. Each line of code ends with a backtick if it will be followed by another line of code. I. e. the final line of code in the command doesn't require a backtick. New-ADUser -Name 'Russell Smith' -Enabled $true –GivenName Russell ` –Surname Smith -Accountpassword (ConvertTo-SecureString PassW0rd! -AsPlainText -Force) ` -Path:"OU=Accounts,DC=ad,DC=globomantics,DC=uk" -ChangePasswordAtLogon $true ` -SamAccountName russellsmith –UserPrincipalName russellsmith@ad. globomantics. uk ` -City London -Department Infotech Backticks can be problematic when copying and pasting code. If they end up out of place, the code will not work as expected. And some people consider use of backticks bad practice. PowerShell... --- ### Microsoft's Investment in Cruise Brings it Into the Self-Driving Car Game - Published: 2021-01-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-investment-in-cruise-brings-it-into-the-self-driving-car-game/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Curise, Microsoft, News, Self Driving Cars Microsoft is making a significant investment in Cruise and brings the company into the self-driving car game. One of the pitches that has worked well for Microsoft in the past is that it’s not a company competing with its own customers. Meaning, Walmart and Kroger should use Azure, not AWS, because they are not Amazon which makes today’s announcement that the company is investing in Cruise, slightly more interesting from a business perspective. The news, announced today by Cruise and Microsoft, is that the Redmond-based company is contributing to an investment round into Cruise, which values the company at $30 billion post-money. The round of investment, which totals a $2 billion dollar injection into Cruise, was also backed by GM and Honda, makes Microsoft the preferred cloud solution for Cruise. What this means is that all of the backend infrastructures will be hosted by Microsoft and they will also provide technical support for building out the infrastructure that will host Cruise’s technology stack. For Microsoft, this is a big play to try and capitalize upon a company, that if successful, could be a significant component of the next industry-shift in the automotive segment to self-driving vehicles. If this company is successful, the data and infrastructure needs of these vehicles will be substantial which is why Microsoft is likely making the investment. Microsoft is no stranger to the automotive segment and has worked with companies like Toyota and others to build out connected cars. But with its Cruise investment, I’ll be curious to see if this impacts other self-driving car startups from choosing Azure for their platform. That... --- ### Microsoft 365 Passwordless Sign-In: Windows Hello vs. FIDO2 Security Keys - Published: 2021-01-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-passwordless-sign-in-windows-hello-vs-fido2-security-keys/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Windows 10, Windows Client OS - Tags: Azure Active Directory, FIDO2, Microsoft 365, Passwordless authentication, Windows 10, Windows Hello for Business - Article Type: Overview Windows Hello and FIDO2 security keys both provide passwordless authentication. But which is best depends on your organization's existing infrastructure and user needs. Azure Active Directory (Azure AD), the cloud-based identity management service that Microsoft 365 and other cloud-native apps rely on for user authentication, supports passwordless sign-in. Microsoft has been pushing IT professionals and consumers to stop using passwords in recent years. Social engineering techniques, like phishing and malware, make passwords vulnerable. And around 80 percent of successful attacks originate from compromised passwords. Azure Active Directory passwordless sign-in Passwordless sign-in replaces passwords with something you have, like a security key, plus something you are or know. Something you are might be a biometric gesture like a fingerprint. Something you know might be a PIN. Microsoft supports three different passwordless sign-in methods in Azure AD: Windows Hello for Business Microsoft Authenticator app FIDO2 security keys Microsoft Authenticator is the easiest of the three methods to implement, providing that users have access to a smartphone. But in this article, I'm going to focus on choosing between Windows Hello for Business and FIDO2 security keys. While the end goal is the same, passwordless sign-in for users, there are some important differences to understand. Image # Expand Microsoft 365 Passwordless Sign-In: Windows Hello vs. FIDO2 Security Keys (Image Credit: Microsoft) Windows Hello for Business Windows Hello is ideal for users that are assigned a fixed device. I. e. they don't often need to log in to different devices. That's because Windows Hello registers the device itself as 'something you have'. If a user moves to a different device, then they need to go through the... --- ### GET-IT: Free SharePoint 1 Day Virtual Conference is Happening February 9th - Published: 2021-01-18 - Modified: 2024-09-04 - URL: https://petri.com/get-it-free-sharepoint-1-day-virtual-conference-is-happening-february-9th/ - Categories: GET IT, SharePoint - Tags: GET-IT, GET-IT SharePoint, SharePoint - Article Type: Overview Petri's GET-IT: SharePoint 1-Day virtual conference is a full day of free learning dedicated to technical content aimed at IT Pros who are looking to enhance their knowledge and skills for SharePoint development, migrations, administration, and utilization. During this free day of learning, we will be streaming to YouTube, Twitter, Facebook, Petri. com, and other locations to make it easy for you to watch SharePoint Day wherever it is most convenient for you. And who will be speaking? On the docket, we have, Steve Goodman, Todd Klindt, Jasper Oosterveld, Shane Young, Valerie Calautti, and more. These respected MVPs and industry experts will dive into various areas of SharePoint management and development that will help you grow your skills with this popular file sharing platform. And not just MVPs, we will have other Petri Community experts from AvePoint sharing their knowledge they have gained from their implementations (reach out if you would like to participate too! ). Why SharePoint? With the explosive growth of remote work during the year (usage double to 200 million monthly users), making sure that your users are on-boarded correctly, collaborating securely, and organized efficiently, is more important than ever. With the event about three weeks away, you can head over to our landing page to learn more about the sessions and connect with the speakers. And be on the lookout for additional updates before the event too, including more sessions. --- ### Disaster Recovery and the SolarWinds Exploit - Published: 2021-01-18 - Modified: 2021-01-18 - URL: https://petri.com/disaster-recovery-from-the-solarwinds-exploit/ - Categories: Backup & Storage, Information Security - Tags: Backup, Disaster Recovery, Security - Article Type: Overview One of the biggest malware attacks in recent history was the SolarWinds exploit where malware was spread through SolarWinds’ software update process to thousands of government and private sector customers. SolarWinds is a well-known provider of IT management products and their Orion infrastructure monitoring and management platform was the product that was attacked. Automatic updates are a critical component for almost all software these days and this cyberattack compromised SolarWinds’ software update service for the Orion product. This attack executed the Sunburst malware that was planted in the Orion management platform. The Sunspot exploit that the attackers used to insert the Sunburst malware into Orion updates was later isolated by cybersecurity firm CrowdStrike. The Sunburst malware would go dormant for a period of time to avoid detection. Then it would begin fetching additional instructions from its command-and-control (C2) server. These instructions enabled it to transfer files, execute new commands, monitor the system, and control systems. As the different organizations downloaded and installed Orion updates, they also unknowingly installed the malware on their own systems. The FBI, Office of the Director of National Intelligence, and the Cybersecurity and Infrastructure Agency in a joint statement claimed that Russia was the likely culprit behind the attack but the Russian government has denied involvement. The malware was spread to many government departments including Commerce, Treasury, Homeland Security, and Justice. In addition, the cyberattack hit as many as 18,000 business users of the Orion software management product. The cyberattack initially occurred sometime between March and... --- ### The New History Menu in Teams will Simplify Navigation - Published: 2021-01-18 - Modified: 2024-09-04 - URL: https://petri.com/the-new-history-menu-in-teams-will-simplify-naviagation/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft is bringing a new history menu to Teams that will make it easier to jump back to a specific file, tab, or channel. We have all been there, you were working on a file or having a conversation and you click away only to forget exactly where you were inside the Teams app. Was it in the calendar, Teams channel, or a conversation? Trying to go backward in time on a PC is something that, despite not being possible in the real world, can be achieved digitally. We have shortcuts like Cntrl+Z to undo an action and Cntrl+Shift+T to bring back a tab in Edge/Chrome that you closed and now Teams is joining the party with a history menu to make going backward a little bit easier. Image #1 Expand History menu coming to Teams in February As the name suggests, this new history menu will make it easier to go back to a specific item “that thing you were previously working on” and it is coming soon. Microsoft says that this feature (MC234245) will start rolling out in early February and should be complete by the end of that same month. Today, you can hit the back button to move to previous items but it's a bit of a blind leap. You may not know exactly how many times you need to click to get back to the specific file or location but this menu will make that process much easier to quickly navigate to your intended target. To access the menu, you will hover over the back arrow at the top of the Teams window near Search... . --- ### The New 250 GB Upload Limit for Microsoft 365. Good or Bad? > Microsoft 365 now supports the upload of 250 GB files to SharePoint Online and OneDrive for Business. Sounds good, and it is, but there is a downside too. - Published: 2021-01-18 - Modified: 2021-01-18 - URL: https://petri.com/microsoft-365-250-gb-max-file-upload-good-or-bad/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Maximum file upload, OneDrive for Business, retention policies, SharePoint Online, Stream - Article Type: News, Opinion Big Files and Differential Sync Some excitement was generated, at least inside Microsoft, for the January 12 announcement that SharePoint Online and OneDrive for Business now support uploads of files sized up to 250 GB. This is an increase from the previous 100 GB maximum announced in July 2020. The new capability is designed to allow customers who deal with very large video and CAD files or data sets to store their information in Microsoft 365. Some confusion exists if the new limit applies to OneDrive consumer. Microsoft's support article says yes, if you use the OneDrive app to upload the file. Other sources say that the limit applies to Microsoft 365 customers only. While awaiting the final word from Microsoft, no doubt someone will test to find out if consumer OneDrive is happy to upload giant files. I’m sure organizations who need to deal with such large files are very happy. To make it feasible to store very large files in a cloud service, Microsoft uses differential synchronization on PCs and Macs to upload only the parts of files that change rather than the entire file. To make this possible, Microsoft explains that files are split into chunks for upload, each being encrypted with a single key. The chunks are combined to form files when needed, Everything is stored in Azure SQL. The upshot is that the initial upload for a very large file takes time, but subsequent changes are much quicker. Differential synchronization also works for downloads to... --- ### Azure AD Connect Gets Better Performance and Cloud Provisioning Attribute Mapping in Preview - Published: 2021-01-17 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-connect-gets-better-performance-and-cloud-provisioning-attribute-mapping-in-preview/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory, Azure AD Connect, cloud computing, Microsoft Azure - Article Type: News Faster synchronization, on-demand user provisioning, and attribute mapping come to Azure AD Connect and cloud provisioning. Azure AD Connect is Microsoft’s tool for synchronizing on-premises Windows Server Active Directory (AD) objects, like groups and user accounts, to Azure AD. Azure AD Connect can also synchronize users' password hashes to the cloud, which is Microsoft’s recommended option, or alternatively use pass-through authentication (PTA). What is cloud provisioning? Last year, Microsoft added cloud provisioning to Azure AD Connect. Cloud provisioning simplifies synchronizing on-premises identities from disconnected AD forests to Azure AD during mergers and acquisitions. Using lightweight on-premises agents to move the workload from Windows Server to the cloud, all management and processing is handled by Azure. Cloud provisioning is in preview at the time of writing and it shouldn’t be used in production environments. Performance improvements, attribute mapping, and more In October, Microsoft announced some changes to cloud provisioning that bring improved performance and attribute mapping. The changes are based on user feedback and include: Map attributes between on-premises AD and Azure AD Perform on-demand user provisioning to Azure AD as well as SaaS apps, including 8x8, SAP Analytics Cloud, and Apple Business Manager Improved sync performance in Azure AD Connect Manage provisioning logs and receive alerts in Azure monitor Attribute mapping The public preview now supports attribute mapping, including data transformation, for user and group objects synchronized between Windows Server AD and Azure AD. The new feature lets you change the default mappings or create your own. You can find a complete list of the attributes that are synced to Azure AD here. Image... --- ### How to Use PowerShell to Change and Update the Registry - Published: 2021-01-15 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-powershell-to-change-and-update-the-registry/ - Categories: PowerShell - Tags: PowerShell, Registry - Article Type: How To The Windows registry is complicated and can be difficult to work with. Using PowerShell, we can leverage many different ways to interact and work with the registry and make managing a system much easier. The Windows registry is complicated and can be difficult to work with. Using PowerShell, we can leverage many different ways to interact and work with the registry and make managing a system much easier. The way that PowerShell sees the registry is through the registry PSDrive provider. This means that you can actually browse and interact with the registry as you might a typical filesystem. There are crucial differences with interacting with Registry keys and entries that you need to be aware of when working with the registry in PowerShell. Read on to learn how! Listing Registry Keys There are a few providers that are exposed via PowerShell. We can list all of the root's available to the Registry PSProvider to see the entry points. ​Get-PSDrive -PSProvider 'Registry' | Select-Object -Property Name, Root There are only two that are available, the current user hive and the local machine hive. Those that are familiar with regedit. exe may notice that there are more available there than shown here. HKEY_CLASSES_ROOT - This is a merged view for the Software\Classes subkey in both the current user and local machine hives. Therefore you can modify these values by accessing the appropriate location in the already exposed locations. HKEY_USERS - This is a shortcut to the loaded hives of the HKEY_CURRENT_USER for loaded users. A hive for a user is not available unless it is currently in use. Therefore several different SID's are available here but not for users that are not logged in... . --- ### Microsoft 365 Advanced eDiscovery Decrypts Exported Files > Microsoft 365 Advanced eDiscovery can now decrypt protected documents stored in SharePoint Online and OneDrive for Business - Published: 2021-01-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-advanced-ediscovery-decrypt/ - Categories: Compliance, Microsoft 365, Office, SharePoint Online - Tags: Advanced eDiscovery, Encrypted Office, OneDrive for Business, Protected Office, SharePoint Online - Article Type: How To, News Now Rolling Out Among the Message Center notifications posted before Microsoft closed for the holiday break is MC230569, which confirms that Advanced eDiscovery can decrypt content collected from SharePoint Online and OneDrive for Business. The update is Microsoft 365 roadmap item 68705 and will roll out to tenants in January 2021. It’s already in my tenant. Sensitivity Labels on a Roll You might ask “what’s important about this change? ” and wonder if eDiscovery needs to export decrypted content. Well, thanks to the engineering effort Microsoft has poured into building out the ecosystem around sensitivity labels over the last year or so, a growing proportion of Office documents stored in SharePoint and OneDrive is protected (encrypted). Recent developments include adding native support in the Microsoft 365 (desktop) apps for enterprise and container management for Groups, Teams, and Sites – including the recent addition of control over external sharing. Even the curious demand for Azure AD premium licenses to manage containers with labels doesn’t take much of the sheen away from the work done to develop sensitivity labels into an essential tool for protecting confidential data. The downside of encryption is encryption. In other words, many administrative tools are built to deal with unencrypted content and cannot handle encrypted items. For instance, until recently, it wasn’t possible for an administrator to remove a label from a document stored in SharePoint Online or OneDrive for Business. That gap is now closed, albeit only in PowerShell. Decrypted Search Results It’s always been... --- ### Patch Tuesday – January 2021 - Published: 2021-01-14 - Modified: 2021-01-14 - URL: https://petri.com/patch-tuesday-january-2021/ - Categories: Security - Tags: Microsoft Office, Patch Tuesday, Security, Windows, Windows Server - Article Type: News Microsoft fixes a zero-day in its Defender antimalware software and issues a patch for a vulnerability that was publicly disclosed in December. It's a quiet start for Microsoft in 2021 as it issues patches for only 80 vulnerabilities, which is considerably lower than most months. Among them are a fix for a zero-day bug in Microsoft's Defender software and a fix for a flaw publicly disclosed at the tail of end last year by Trend Micro ZDI. Windows and Windows Server This month Microsoft fixed a critical zero-day flaw (CVE-2021-1647) in its Defender product, the built-in malware protection software in Windows. The vulnerability is being actively exploited and while Microsoft hasn't published details, it's believed that the flaw can be easily exploited by hackers. KerbsOnSecurity quotes Kevin Breen, director of research at Immersive Labs, as saying "It could be as simple as sending a file. The user doesn’t need to interact with anything, as Defender will access it as soon as it is placed on the system. " The patches for Microsoft Defender are automatically installed by Windows Update unless explicitly blocked by system administrators. A critical remote code execution (RCE) bug (CVE-2020-1660) in the Remote Procedure Call (RPC) runtime gets patched. RPC is often used to manage communications between Windows devices and it has in the past been a popular mechanism for viruses known as worms. Worms can spread easily between computers without any user interaction. CVE-2020-1660 is one of 5 RPC bugs patched this month. An elevation of privilege (EoP) bug in the splwow64 service, made public last month by Trend Micro's Zero-Day Initiative (ZDI) project, has also been... --- ### Microsoft Increases File Size Support in Microsoft 365 - Published: 2021-01-13 - Modified: 2021-01-13 - URL: https://petri.com/microsoft-increases-file-size-support-in-microsoft-365/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, News, OneDrive Microsoft is increasing the size of uploads from 100 GB to 250GBs. Moving data is easy, right? You drag, you drop, it moves, but when working with cloud storage, things get a bit more complicated. Not only do you have to worry about the target disk, but also bandwidth and file size. To help alleviate some of the file transfer headaches, Microsoft is increasing file upload size in Microsoft 365 from 100GB to 250GB. This includes file uploads into SharePoint, Teams, and OneDrive. This feature will start rolling out at the end of January with general availability reached by the end of the quarter. The company says that they achieved this by optimizing their storage for upload performance; this has allowed them to make this file size increase. In short, you can worry a little bit less about moving large files like 3D animations and CAD files but the challenges of working with large files are still not fully solved. But, not trying to be too pessimistic, larger file uploads is a good thing for Microsoft 365 and at the scale that this service reaches, it’s not a simple update and takes significant engineering to be able to turn on this functionality for millions of users. As with all things cloud, this feature is rolling out slowly and should arrive in your tenant in the next couple of months. --- ### How to Enable PowerPoint Presenter View in Teams - Published: 2021-01-12 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-powerpoint-presenter-view-in-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: PowerPoint, Present, Presenter Mode, Presenter View, Teams - Article Type: News Microsoft is finally bringing Presenter view to Teams when you share a PowerPoint deck. One of the most useful features in PowerPoint is Presenter View. Presenter View provides a different view of the presentation to those watching the slide show and allows the person presenting to see their notes and move between slides out of order – for example if they need to skip to the end or move back several slides to provide a recap. Image #1 Expand Presenter View in Desktop PowerPoint Unfortunately, when presenting over Microsoft Teams, the built-in PowerPoint presentation functionality did not have this capability, only allowing the presenter to see the same view of the slide show as attendees and move back and forward in order. The result is people who are fortunate enough to have two monitors share a screen so they can use PowerPoint’s Presenter View, while those using single screens and laptops have mostly struggled without this capability. This week, however, the Presenter View arrives natively in Microsoft Teams. Initially, this feature rolls out to Public Preview, and therefore will roll out to all users shortly. If you want to use the feature now, choose About from the Teams drop-down menu and then select Public Preview from the list: Image #2 Expand Switch on Public Preview When you next join a Teams Meeting, the new functionality will automatically be available for use. To use it, share a PowerPoint presentation to the meeting by choosing the Share icon to the left of the Leave button, then selecting a recent PowerPoint presentation from the list, or choosing... --- ### Where Microsoft Might be Going with One Outlook > What does the Project Monarch, the development of a single client as part of Microsoft's One Outlook effort, mean in practice? - Published: 2021-01-12 - Modified: 2024-09-04 - URL: https://petri.com/one-outlook-project-monarch/ - Categories: Exchange 2019, Exchange Online, Exchange Server, Microsoft 365, Office, Outlook - Tags: One Outlook, Outlook Mobile, owa, Project Monarch - Article Type: Opinion Last October, I wrote about One Outlook, Microsoft’s vision for the future of its family of email clients. The basis of the story was a collection of three technologies deemed critical for the long-term development of Outlook: OWA Powered Experiences (OPX), Microsoft synchronization technology, and the augmentation loop. Mary-Jo Foley’s recent story about the Monarch project and its relationship to One Outlook (based on an original piece by Windows Central) caused further reflection as to what Microsoft is doing. I asked Microsoft and was told: “we are building Outlook on a common platform to provide a consistent, performant experience. There’re no plans to change our focus and investments. ” Early Stages of Development Clearly Microsoft is at an early stage of development for whatever One Outlook will deliver. I imagine that they’re grappling with the question of how to solve some major challenges such as: Rationalization of the current client set to a more manageable number. Acceleration of delivery of new functionality to customers. The need to serve different constituencies such as the corporate users of the traditional Outlook client plus those who buy the perpetual version (now Outlook 2019) rather than the click-to-run variant in Microsoft 365 apps for enterprise (Outlook 365). Bringing the ISV community along so that the many add-ins and extensions written for Outlook (desktop mostly) continue to work with One Outlook. Email signature management for corporations is a good example. Any change causes a peak in support calls. Given the number of Outlook users,... --- ### Teams Will Soon Organize Meeting Content for Easier Post-Event Discoverability - Published: 2021-01-11 - Modified: 2024-09-04 - URL: https://petri.com/teams-will-soon-organize-meeting-content-for-easier-post-event-discoverability/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Meeting Recap, Microsoft, News, Teams - Article Type: News Microsoft will start to roll out a new feature that will make it easier to find information that was discussed during a meeting. If there is one thing that we all love, it's meetings. Meetings in the morning, meetings in the afternoon, and more than likely, meetings after dark. In this remote world that we live in today, you can't escape these virtual hangouts no matter how hard you may try. And one of the challenges with having so many meetings is staying organized. Teams is trying to help with that task by continuously bringing more information into the platform so that even if you can’t remember all the exact details, hopefully, all the data resides in Teams – if you can find it. This is where the new “Meeting Recap” feature comes into play. This new feature (ID 68729), which will start to roll out by the end of January with completion expected in mid-February, will bring the meeting recording, transcript, and chat into one location for easier navigation and to catch-up if you missed a part of the conversation. Image #1 Expand Meeting recap functionality as shown inside of Teams This is how Microsoft describes the feature: The new meeting recap feature in Teams helps meeting attendees and those unable to attend a meeting stay up-to-date by providing the meeting recording, transcript, and chat all in one place. These are automatically shared in the Chat tab and viewable in the Details tab. Once the feature rolls out, after each meeting occurs, the user will see an updated view in ‘Details’ inside the calendar invite that will contain... --- ### How to Work with Services in PowerShell - Published: 2021-01-11 - Modified: 2024-11-19 - URL: https://petri.com/how-to-work-with-services-in-powershell/ - Categories: PowerShell - Article Type: How To How PowerShell can be used to work services in Windows using PowerShell Services run many different aspects of Windows and are used for a great many tasks. How then can you use PowerShell to work with these services, whether it is existing services, creating new services, or to remove existing services? This article covers how PowerShell can be used to work services in Windows using PowerShell! What built-in commands can we use PowerShell? Listing all the commands available in the Microsoft. PowerShell. Management module shows us the following. These cover virtually all of the tasks that we would want in a service. Read on to learn how we can use these commands! Retrieving and Manipulating Services in PowerShell The first task that we need to tackle is how to enumerate and list all of the available services. Using the Get-Service command we can retrieve all known services or just one. Passing in a single service name allows us to find out the status of that service, such as the Print Spooler service of Windows. ​Get-Service -Name 'spooler' What about listing all of the properties of a given service? Simply pipe the result into Select-Object * to see all of the available options. ​Get-Service -Name 'spooler' | Select-Object * There are a lot of properties that you would not typically be able to see using the GUI interface, notably some of the abilities such as CanPauseAndContinue. Stopping, Starting, and Restarting a Service To stop, start, and restart a service, the following commands are available to you. Stop-Service - This will stop the service, but if... --- ### Microsoft Refreshes the Surface Pro For Business, Not Consumers - Published: 2021-01-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-refreshes-the-surface-pro-for-business-not-consumers/ - Categories: Hardware - Tags: Microsoft, News, Surface, Surface Pro - Article Type: News If there is one device in the Surface family that defines the brand, it would be the Surface Pro. The hardware was one of the first devices introduced many years ago and today, it continues to be the symbol of the brand. This is why it is a bit perplexing that Microsoft is updating the Surface Pro but only for its business customers. Called the Surface Pro 7+, the minor revision for the Surface Pro lineup will be available to business customers starting this week. If you were hoping for an overhaul of the iconic Pro, this is not the refresh that you have been waiting for but it is a refinement specifically targeted at its business customers. Inside the device are the new 11th gen Intel Core chips with up to 32GB RAM and 1TB of storage; the 7+ comes in either platinum or matte black. Image #1 Expand Surface Pro 7+ in platinum and matte black On the connectivity side, there are USB-A and USB-C ports, MicroSDXC, 3. 55 headphone jack, and the Surface Connect port too. Along with the ability to use all the peripherals you have already purchased, the 7+ will also be available with a version that has LTE Advanced connectivity. But why not 5G you ask? That is a good question, but the reality is that 5G is still in its infancy around the globe and despite the heavy marketing attempts by carriers, I think this is the right move (for... --- ### History and Open Tabs Sync Rolling Out to Microsoft Edge - Published: 2021-01-08 - Modified: 2024-11-19 - URL: https://petri.com/history-and-open-tabs-sync-rolling-out-to-microsoft-edge/ - Categories: Windows Client OS - Tags: Microsoft Edge, News, Windows 10 - Article Type: News History and open tabs sync starts to roll out in some regions for users on the stable channel. It's been a long time coming but Microsoft is finally starting to roll out history and open tabs sync to Microsoft Edge users on the stable channel. The rollout is going to be phased, so it might be that you don't see it right now. You can check if history and open tabs sync is available in your region by opening edge://settings/profiles/sync. In my region, it's still 'coming soon'. But if it is available in your area, you can toggle history and open tabs sync on and off independently of each other in Settings. UK and US users should have access to history and open tabs sync as this article goes to press. Image #1 Expand History and Open Tabs Sync Rolling Out to Microsoft Edge (Image Credit: Russell Smith) Synchronization prerequisites Synchronization lets users access history and currently open tabs on any other device running Edge. Providing that history and open tabs sync is enabled in Edge on all a user's devices, including the mobile version of Edge. Users also need to be signed into Edge with a Microsoft Account (MSA) or a Microsoft work or school account for synchronization to work. Microsoft Edge enterprise sync services are however only available with certain Microsoft 365 subscriptions. Starting in April 2020, Edge enterprise sync services were made available for Microsoft 365 Business Premium (previously Microsoft 365 Business) customers. Open tabs and history sync start rolling out a year and a half after they were first promised Microsoft Edge... --- ### How to Limit Resource Usage of PowerShell Scripts - Published: 2021-01-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-limit-resource-usage-of-powershell-scripts/ - Categories: PowerShell - Tags: Automation, PowerShell, Windows 10, Windows Server - Article Type: How To PowerShell scripts can use a lot of resources. And that can be a problem if you need to run a script on a production server without impacting performance. Imagine that you want to run a PowerShell script on a server, but you know that the script might use a lot of resources and impact performance. In this article, I'll show you how you can limit the resources used when running PowerShell code. PowerShell scripts can use a lot of resources. And that can be a problem if you need to run a script on a production server without impacting performance. But there are a couple of tactics you can use to limit the resources PowerShell scripts use. PowerShell jobs let you run code asynchronously. So, rather than executing each line in a script one after another, you can set up two or more jobs to run your code concurrently. By organizing your code into script blocks that run as jobs, you get more control over resource usage. PowerShell jobs Jobs are run in the background but return control to PowerShell without waiting for the code to complete. Jobs provide you with control over how resources are used too. But PS Jobs put a strain on system resources because they create a new PowerShell host process for each job. So, they aren't always the most efficient way to run PowerShell code. Start-Job -ScriptBlock { Get-Process -Name lsass } Once you start a job, you can use Receive-Job to get the output. In the code below, I get the job's ID number using Get-Job and then pipe the object generated by Get-Job to Receive-Job, which displays the output... --- ### Microsoft 365, Artificial Intelligence, and Privacy > The Microsoft 365 Productivity Score feature was castigated by privacy advocates, but perhaps they had the wrong target. Is the use of AI in Microsoft 365 more concerning? - Published: 2021-01-07 - Modified: 2024-11-19 - URL: https://petri.com/privacy-ai-microsoft365/ - Categories: Microsoft 365, Office - Tags: Privacy, Productivity Score - Article Type: Opinion Last November, Microsoft experienced a great deal of criticism from privacy campaigners following the introduction of the Productivity Score feature. The resulting hubbub evolved into a PR issue which caused Microsoft to abandon display of individual user details, even if the data is easily available and widely used elsewhere inside Microsoft 365. In a nutshell, people got upset because it was theoretically possible for managers to use the information presented in the Productivity Score to rate individual employees. No manager worth their salt would do such a thing because the data is simply not rich or revealing enough to create a reliable picture of someone’s productivity. In any case, the good ship Productivity Score is holed beneath the waterline and it wouldn’t surprise me if the feature disappears in due course. No Disquiet About Using User Data Elsewhere in Microsoft 365 Even if I disagree with the concerns expressed about Productivity Score, it’s good that people worry about privacy. I’m surprised that more disquiet is not expressed about the growing influence of artificial intelligence within Microsoft 365. Or rather, how Microsoft is using data gathered about user activity to develop new features. We started along this path with the arrival of Delve. I recall the reaction of part of the audience at an Ignite 2015 conference session when Microsoft explained that signals about user activity were gathered in the Office Graph (now part of the Microsoft Graph) to allow intelligent applications like Delve help users find information of... --- ### Getting Started with Shared Calendars in Microsoft Teams > Shared Calendars in Microsoft Teams have limitations, but they are still useful. Learn how to set one up with this step-by-step guide. - Published: 2021-01-06 - Modified: 2024-11-19 - URL: https://petri.com/getting-started-with-shared-calendars-in-microsoft-teams/ - Categories: Microsoft 365, Microsoft Teams - Article Type: How To Shared Calendars are available in Teams but there are a few limitations, here is how to get started. Nearly four years after first being requested in UserVoice, with 20,000 votes, Microsoft is finally bringing shared calendars to Microsoft Teams. Microsoft Teams has always used Microsoft 365 Groups as the basis for the membership, channel chat, and file experience – without it, Teams is just Skype. And frustratingly, while Microsoft 365 Groups include a shared Outlook calendar in Exchange, it has never been available for use despite Teams having access to a user’s Calendar. This feature allows multiple calendars to be added per channel, not just per Team, which is an important distinction to understand. The Calendar tab will not be a default tab in each channel like Posts, Files, and Wiki. You will need to add the Channel Calendar app to each standard channel you want to use it in. You cannot use the calendar button in the left rail at this time. How to Add a Shared Microsoft Teams Calendar Image #1 Expand Add the Channel Calendar app to a Team standard channel (Image credit: Microsoft) Adding the calendar to the Team does not create a new calendar. The calendar displayed is a view on the Office 365 Group calendar, filtered to Teams meetings scheduled within the channel the app was added to. Image #2 Expand Using the Channel Calendar App in a Teams Channel - mock up (Image Credit Steve Goodman) New channel meetings or new meetings scheduled within the channel calendar app will be shown in the calendar view, and all Team members will... --- ### Microsoft Lists for iOS Arrives This Month, OneDrive App Updates Too - Published: 2021-01-06 - Modified: 2021-01-06 - URL: https://petri.com/microsoft-lists-for-ios-arrives-this-month-onedrive-app-updates-too/ - Categories: Microsoft 365, Office - Tags: Lists, Microsoft 365, News, OneDrive - Article Type: News Microsoft will start rolling out its Lists app for iOS users this month and an update to OneDrive will make it easier to view PDFs. It was back in May of 2020 that Microsoft announced Lists, the company’s new task tracking app for Microsoft 365, and today, we are finally learning more about when the mobile apps will arrive. Also coming later this month are a few updates for OneDrive for iOS as well. Rolling out in mid-January, the Microsoft Lists app for iOS (MC232966) will let you access your SharePoint lists from your phone or tablet. The company officially describes the app as “a Microsoft 365 app that helps you track information and organize work. Lists is simple, smart, and flexible, so you can stay on top of what matters most to your team. Track issues, assets, routines, contacts, inventory and more using customizable views and smart rules and alerts to keep everyone in sync. With ready-made templates, you can quickly start lists online, in our new mobile app. ”. With Lists starting to become generally available on most major platforms, it’s important to understand how Microsoft currently looks at To Do and Lists – both apps are very similar in functionality but there is an important distinction. To Do is a purpose-built app specifically designed to help individuals track their tasks, making it simple to create and manage tasks across devices. Microsoft Lists, on the other hand, supports teams and organizations, allowing them to manage a process or workflow in addition to tracking information over time through customized views that allow you to apply rules for reminders and notifications. Along with this new List... --- ### How to be the first to Know About Azure Storage Explorer Updates - Published: 2021-01-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-be-the-first-to-know-about-azure-storage-explorer-updates/ - Categories: Backup & Storage - Tags: Azure Storage, News - Article Type: News The Azure Storage Explorer is one of my most regularly-used Azure tools aside from the Azure Portal itself. If you are not using it, I’ll give you some pointers in this post on where to install it but also how to be the very first to know if an update is available. The Azure Storage Explorer is one of my most regularly-used Azure tools aside from the Azure Portal itself. If you are not using it, I’ll give you some pointers in this post on where to install it but also how to be the very first to know if an update is available. How to install Azure Storage Explorer Azure Storage Explorer is a downloadable application for Mac OS, Windows and Linux. Interaction with the application is relatively straightforward and I have it on basically every computer I use regularly. There is one behavior you should be aware of regarding network access for storage accounts. I generally recommend using network access for storage resources where you have a specific set of IP addresses permitted to access an Azure Storage account, those rules will apply to connections made in Azure Storage explorer as well. So keep that in mind. How to update Azure Storage Explorer You can check for updates manually in the Azure Storage Explorer user interface. This may also be occasionally a pop-up message, and I recommend keeping the application up to date. The manual update view is shown below: Image #1 Expand Updates are not exactly fun, but generally a good idea. This is especially important as Azure is continually adding new services and capabilities. Tools outside of the Azure Portal, such as Azure Storage Explorer may interact differently with updated option in Azure if not kept up to date. If you are in the Azure Storage... --- ### Everything You Need to Know About Azure Infrastructure – December 2020 Edition - Published: 2021-01-05 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-december-2020-edition/ - Categories: Microsoft Azure - Tags: Anti-virus, App Service, App Service Environment, App Service Environment v3, Archive storage, ARM, Azure Automation, Azure Defender for SQL, Azure DevOps, Azure Monitor, Azure Portal, Azure Portal Desktop App, Azure Portal Mobile App, Azure Region, Azure Resource Manager, Azure Security Center, Azure Virtual Machines, Blob Storage, Defender, Denmark, Deployment Scripts, Edge, encryption, IE11, Internet Explorer 11, NCas_T4_v3-Series, NFS 3.0, Private Link, What-If - Article Type: Overview Happy new year! I'm writing this article at the end of my first day back at work since November. I have barely looked at any work-related stuff in the last month. Writing this article will give me a chance to catch up with thing. App Service Anti-Virus Logs in Public Preview Microsoft has announced that Anti-Virus Logs for App Services are in public preview; This feature has been requested for years and will make a lot of Azure customers (or prospective customers) happy. Once a day, at a time you cannot currently control, Windows Defender will scan your Windows or Linux App Service content for malware. The scan logs can be sent, using Diagnostics Settings, to the usual destinations of Blob storage, Log Analytics (useful for reporting and Azure Sentinel), or external systems via Event Hub. There are some limitations to Defender scans for App Services: Only App Services with under 1 GB of content can be scanned. Web Apps with less than 10,000 content files will be scanned. Only the Premium and Isolated App Service tiers are supported. The Premium SKU is quietly becoming the main SKU, supplanting the Standard SKU – the Premium SKU is required to use Private Endpoint. End of Support for IE 11 with Azure Portal This is a short but important story. The Azure portal is to end support for Internet Explorer 11 on March 31, 2021. Your choices for replacements are: Microsoft Edge. A supported third-party browser, including Safari, Chrome, and... --- ### Looking at Microsoft 365 Priority Accounts Again > Microsoft's initial run at highlighting the advantage of priority accounts for Exchange Online and Microsoft Defender wasn't good. Now it's more understandable. - Published: 2021-01-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-priority-accounts-again/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Microsoft Defender for Office 365, Priority accounts - Article Type: News, Opinion Removing Puzzlement Last month I reported my puzzlement about Microsoft’s announcement of priority accounts. I couldn’t figure out what value these accounts brought to the table, especially as they were targeted solely at tenants with more than 10,000 accounts with more than 50 active Exchange Online users. My report was based on details in a Microsoft blog post. As it turns out, the post was incorrect, or at the very least, misleading. To be fair to Scott Schnoll, who wrote the post, it focused on mail flow monitoring, which is only one of the scenarios covered by priority accounts. After my article appeared, Scott reached out to clear up the confusion and told me that a follow-up post was due. That has now been published and the value proposition of priority accounts is much clearer. Priority Accounts for All Tenants First, priority accounts are available to all tenants. A priority account is simply an account tagged as a VIP. The exact definition of what constitutes a VIP is entirely in the hands of a tenant. Once you know who those accounts are, you tag them by running the Set-User cmdlet (part of the Exchange Online management module). For example, here’s how to tag all the members of a Microsoft 365 group: $Members = Get-UnifiedGroupLinks -Identity "Senior Leadership Team" -LinkType Members ForEach ($Member in $Members) { # Mark each user as a priority account Set-User -Identity $Member. WindowsLiveId -Vip:$True } To check that the users are marked as VIPs, run... --- ### Everything You Need to Know About Power Platform - December 2020 > What you missed while you were taking it easy over the holidays. Includes updates on Desktop Flows, Power Apps Performance recommendations, and more. - Published: 2021-01-04 - Modified: 2021-01-04 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-december-2020/ - Categories: Power Platform, PowerApps, PowerBI - Tags: power apps, Power Automate, Power BI, Power Platform, Teams - Article Type: News Welcome to 2021. After a crazy year that saw the pace of change in Power Platform accelerate, December was a relatively quiet month. Which was nice and had visions of catching up dancing in my head. Well, that failed, I am as behind as ever. Anyway, you do not care. All you want to know is what happened while you, like Microsoft, was taking a break. Power Apps Performance Recommendations This blog post isn't an announcement of any new feature, instead, it is a write-up to help you think more about the performance of your apps. If you have ever wondered how does data travel around in Power Apps or what are the common performance issues, then you should give this a read. It seems super nerdy so you might have to read it twice, but I think it is worth it. Power Automate Desktop Now Generally Available If you like building Desktop Flows aka UI Flows aka RPA Flows aka Robotic Process Automation Flows, then good news, the client has been updated. (Can you tell I think it has too many names? ) In the update, you will find some nice additions to make testing easier and more importantly they have added some security. The ability to have sensitive fields and encryption will sure make you more trusting as you automate the un-automatable. Github Power Platform Connector I am going to be honest; I feel like I barely understand what Github is but if you are smarter than... --- ### Everything You Need to Know About Office 365 – December 2020 Edition - Published: 2021-01-04 - Modified: 2021-01-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-december-2020-edition/ - Categories: Microsoft 365, Office - Tags: Office 365 - Article Type: News As we kick off the first workday of 2021, it's time for our monthly round-up of what happened, well, last month. Even though it was a much quieter month, there are still notable updates and posts that you should know about. And as you think about goals for 2021, learning more about Office 365/Microsoft 365 isn't a bad item to add to your list. Starting with Teams, Microsoft has begun rolling out personal features for desktop and browser clients but also delayed some native notifications and fluent updates. But for those who have been waiting on breakout rooms, that feature is here and likely already available in your tenant. Along with meeting reactions being released this month, Microsoft will also make Guest Access enabled by default too; there is also a new approval workflow coming too. Another important event happening in January is that Exchange Online will start rejecting old TLS connections. On the SharePoint side of the Office 365 coin, Microsoft announced that there are now 200 million monthly users of the platform. And for the advanced admins out there, Tony has a process outlined that will help you decrypt SharePoint Online documents with PowerShell. And a monthly round-up wouldn't be complete without talking license, Azure AD Premium licenses are needed to manage SharePoint Sites with sensitivity labels. This month also on Petri we covered quite a few important topics that can help your workflow including how to mark Office 365 documents and emails as formal records, updating user... --- ### Everything You Need to Know About Windows – December 2020 - Published: 2021-01-04 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-december-2020/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows 10 ARM, Windows Insider Program - Article Type: News This month I have some details of changes coming to Windows and a new feature aimed at improving performance in Edge. December is usually a quiet month at Microsoft as most of the company shuts down for the last two weeks of the year. And 2020 is no different. Apart from news on the Edge beta channel and the Windows Insider Program, there's almost nothing else of interest to report. So, let's get down to it and hope for a better 2021. Windows update caused boot failures and corrupted file systems Two updates (KB4592438 and KB4586853) that Microsoft released at the beginning of December and end of November contained a bug that affected a small number of devices. Users reported that when running chkdsk /f, the file system was corrupted and it could prevent the device from booting. Microsoft has since fixed the issue and it should be prevented automatically on non-managed devices. Although Microsoft says it can take up to 24 hours for the update to propagate. Enterprise managed devices affected by the issue need to have a special Group Policy applied, which you can download here. There's a mitigation for devices that won't boot. It involves using the Recovery Console to run chkdsk /f again and then booting into Windows as normal. For more information about this issue and the full steps, check out the knowledgebase article here. Microsoft Edge sleeping tabs Microsoft is currently working on Edge 88, which will be the next major release on the Stable channel sometime at the beginning of 2021. It includes a new feature called 'sleeping tabs'. Sleeping tabs are... --- ### Microsoft Says Solorigate Let Attackers View, but not Modify, Source Code - Published: 2020-12-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-says-solorigate-let-attackers-view-but-not-modify-source-code/ - Categories: Security - Tags: Microsoft, News, Security, Solorigate - Article Type: News Microsoft has published an update on the Solar Winds hack that let attackers view its source code. The past few weeks have been filed with notifications from vendors who are telling their partners that they were either impacted by the uncovering of the Solar Winds exposure or stating that they managed to avoid the headlines and were not using the software. Microsoft is in the former camp and today the company is publishing an update on its internal investigation of Solorigate, as the company calls it. Not long after the Solar Winds hack was revealed, Microsoft found itself in the spotlight as publications were stating that the company had an exposure because of its use of the software. Microsoft has acknowledged that they were, within a limited scope, compromised by the exposure but the public statements by the company state that their internal controls stopped a significant breach from occurring. The company states that its investigation “found no evidence of access to production services or customer data” but that its forensic work is ongoing. Further, none of its systems were used as a means to attack other companies or infrastructure. Despite the fact that there have not been any additional intrusions detected based on Microsoft being compromised, there are still a few alarm bells that could point to future attacks. The company states that “We detected unusual activity with a small number of internal accounts and upon review, we discovered one account had been used to view source code in a number of source code repositories. ” It’s worth pointing out that these actors did not have the... --- ### Understanding and Manipulating Dates and Time in PowerShell - Published: 2020-12-31 - Modified: 2024-09-04 - URL: https://petri.com/understanding-and-manipulating-dates-and-time-in-powershell/ - Categories: PowerShell - Tags: Date, PowerShell, Time - Article Type: How To Working with Dates and Times in PowerShell is very common. Many scripts require simple or complex date calculations for such things as archiving files or logic to determine what data to operate on. Working with Dates and Times in PowerShell is very common. Many scripts require simple or complex date calculations for such things as archiving files or logic to determine what data to operate on. Learn how to effectively work with dates and times in PowerShell in this article using the Get-Date cmdlet, DateTime class, and the New-TimeSpan cmdlet. Using the Get-Date Command The number one command to consider when working with dates and times in PowerShell is the Get-Date command. By running Get-Date just by itself, you will output a DateTime object with the current date and time. Using the Get-Member command, we can see that the output is a System. DateTime object type which has several built-in functions. Outputting a DateTime object using the Get-Date cmdlet. So how would we return a very specific date? We can simply pass in a date and time to have a proper DateTime object returned as seen below. ​Get-Date -Date "10/29/2020 12:00:00" Outputting a specific date from the Get-Date cmdlet. Of course, we often want to perform a date calculation from the current time. How would we go about subtracting or adding time to the current date? With the DateTime object type, there are several built-in methods that make this very easy (non-exhaustive list below). AddDays AddHours AddSeconds AddMonths AddYears To use this, let us show the example of adding two days and five hours to a date. We can chain the AddDays and the Addhours methods onto our date stored in the... --- ### How to Check if a PowerShell Script is Running with Admin Privileges - Published: 2020-12-30 - Modified: 2024-09-04 - URL: https://petri.com/how-to-check-a-powershell-script-is-running-with-admin-privileges/ - Categories: PowerShell - Tags: PowerShell, Windows 10, Windows Server - Article Type: How To Use a .NET API to check if the user running your script is a local administrator. If you are using PowerShell to automate administrative functions on Windows, sometimes it can be useful to check if the script is running in the context of a local administrator account. This is known as 'running elevated' or 'elevation'. Many Windows 10 configuration settings, especially those that are system-wide and affect all users, require admin rights to change. But PowerShell doesn't have a cmdlet or built-in function that lets you check whether the logged-in user is a member of the Administrators group, which can lead to your scripts failing. To solve the problem, you can build a function to check the logged-in user's security status. In this article, I'll show you how to create the function and how to call it in your code. Using the . NET WindowsIdentity class to check for elevation PowerShell is based on . NET, so that allows us to call . NET APIs when there is no cmdlet to solve a problem. The . NET WindowsIdentity class, which is accessible in . NET and . NET Core, let's you perform various checks including obtaining a Windows account token and check if a user has elevated permissions. The first step is to use the WindowsIdentity class to create a new PowerShell object containing security information about the logged-in user. We do that in two steps. The first step is to get information about the current user and store it in a variable ($id). Then using that information, create a new PowerShell object ($p) that we use later. $id =... --- ### Exchange Online Rejects Old TLS Connections in January 2021 > Exchange Online will soon remove support for TLS 1.0 and 1.1. Any messages sent to Exchange Online from servers using these protocols will fail. - Published: 2020-12-30 - Modified: 2024-09-04 - URL: https://petri.com/old-tls-going-exchange-online/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Mail flow, TLS, Transport Level Security - Article Type: News Time to Make Final Checks It’s natural to take time off during the holiday season to forget about the woes of IT operations. One of the nice things about using a service like Office 365 is that other people take care of running it while you’re away. On the downside, decisions made by the people who run the service (for the right reasons) can impact an organization if you’re not careful. Which brings me to the topic of Transport Layer Security (TLS), or more specifically the imminent removal of TLS 1. 0 and TLS 1. 1 from Exchange Online. Microsoft has been trying to remove these versions of TLS and move tenants to TLS 1. 2 since October 2018. The hammer is now descending to enforce change. Gradual Removal from Exchange Online Like any communications protocol, removing the older versions of TLS from Exchange Online has been a long drawn-out process. Microsoft formally retired TLS 1. 0 and 1. 1 in July 2020 and intended to remove support in October 2020. However, they left everything in place to allow organizations some extra time to prepare. Time has now run out and Microsoft will start to remove TLS 1. 0 and 1. 1 support from Exchange Online starting January 11, 2021. As stated in Office 365 notification MC229914 published on 14 December: “We'll be gradually making the change and so initial impact could be messages getting delayed and only when the change is completed will messages fail to be delivered to their destinations. ” In other words,... --- ### Microsoft is Bringing an 'Approval' Workflow Feature to Teams - Published: 2020-12-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-bringing-an-approval-workflow-feature-to-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Approvals, Microsoft, News, Teams - Article Type: News Microsoft has announced a new 'Approvals' feature for Teams that will make receiving approvals easier. While 2020 may be coming to an end, Microsoft is starting to announce features and updates that are coming to Teams early next year. One of the first big new features that will be arriving is ‘Approvals’ which is a workflow to, as you might have guessed, approve tasks/requests from co-workers. Approvals (MC231205) is the name of the app and it is built-into Teams and will be turned on by default if your tenant has Power Automate enabled. The Approval app lets you “easily create, manage, and share approvals from a hub for teamwork. These approvals are triggered directly with the Power Automate infrastructure and do not require a flow with an approvals action. ” Image #1 Expand Teams 'Approvals' app inside of Teams as a native app. From a user perspective, all ‘Approvals’ will reside inside the app, including those that have been processed/completed. Further, all approvals show up across Power Automate, SharePoint, and Microsoft Dynamics 365. If you do not want the Approvals app in your tenant, you will be able to turn it off by going to the Teams Admin Center, clicking Manage Apps, and toggling the setting as appropriate. This feature will start rolling out in mid-January 2021 but keep in mind that it will not be available to every tenant. Microsoft says that you need to have one of the following licenses to be able to access the feature: Microsoft 365 A1, Office 365 A1 Microsoft 365 A3, Office 365 A3 Microsoft... --- ### Marking Office 365 Documents and Email as Formal Records > Microsoft 365 includes the ability to mark SharePoint and Exchange items as records using a special form of retention label. - Published: 2020-12-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-records-management/ - Categories: Exchange Online, Microsoft 365, Office, SharePoint Online - Tags: Compliance, Long-Term Retention, Record label, Records management, Regulatory record label - Article Type: How To, Overview Microsoft released a report in late October to demonstrate how well Microsoft 365 meets the compliance needs of the financial sector subject to U. S. regulations. The level of inaccuracy in the text meant that I didn’t think much of the report. In any case, the report placed great emphasis on two developments. The first was that reactions to Teams messages would be captured in the audit log (inappropriate). The second is the advent of regulatory records. There’s no sign yet of audit events being logged as people react to Teams conversations in the Office 365 audit log, but if you’ve got the right licenses, retention labels can be created to mark documents and email as records or regulatory records. Two Types of Record Retention Label Two forms of record label exist inside Microsoft 365: Record: After a record label is applied to an item, only administrators can remove the label or change it for another label. Anyone with write-access to an Exchange mailbox can apply a record label to an item in the mailbox. Any member of a SharePoint Online site can apply a record label to a file or list item. Once applied, a record label stops the item being deleted. Items with record labels stored in SharePoint Online and OneDrive for Business can have a locked or unlocked status. The content of a locked item cannot be edited, but its metadata (like the title) can be updated. Any site member can unlock an item to allow... --- ### How to Monitor Network Activity Using Windows 10 Packet Monitor (PKTMON) - Published: 2020-12-23 - Modified: 2024-09-04 - URL: https://petri.com/how-to-monitor-network-activity-using-windows-10-packet-monitor-pktmon/ - Categories: Windows Server 2019 - Tags: Network virtualization, PacketMon, Software-Defined Networking, Windows 10, Windows Server - Article Type: How To Learn how to debug network issues in Windows 10 and Windows Server with PacketMon. Packet Monitor is a command-line tool that first appeared in Windows 10 version 1809. Although you could be forgiven for not noticing as Microsoft is only beginning to speak about it now. Packet Monitor is designed to help debug network issues, specifically those where network virtualization is involved. Before the advent of Software Defined Networking (SDN) and virtualization, the network stack was much simpler. It had three layers: TCP/IP, filter drivers, and a network adapter. But as you can see in the diagram below, once you add SDN and virtualization, the stack becomes more complicated. Image #1 Expand How to Monitor Network Activity Using Windows 10 Packet Monitor (Image Credit: Microsoft)   Packet Monitor (PacketMon) can intercept packets at all the different layers of the network stack so that you can trace the packet route. In the latest version of Packet Monitor, when a packet is dropped by a supported network component in the stack, PacketMon reports it. PacketMon also provides extra information, like why a packet was dropped. This helps IT pros determine whether a packet was dropped, where it was dropped, or if it reached its destination. PacketMon also lets you perform a high-level packet flow analysis without need to look at log data. Create PacketMon filters and start monitoring Before you can use PacketMon, you need to open an elevated command-line prompt. You can then add some filters and start monitoring. It isn't compulsory to add filters, but if you don't, PacketMon will capture literally... --- ### Understanding and Exploring Continuous Access Evaluation for Azure Active Directory - Published: 2020-12-22 - Modified: 2024-09-04 - URL: https://petri.com/respond-to-changes-in-security-policy-and-conditions-in-real-time-with-continuous-access-evaluation-preview-for-azure-ad/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, Azure Active Directory Conditional Access, Exchange Online, Microsoft Teams, Security, SharePoint Online - Article Type: How To Reducing the time that security tokens remain valid negatively affects the end-user experience. CAE is designed to address the problem. Microsoft announced last month the availability of Continuous Access Evaluation (CAE) for Azure Active Directory (Azure AD) users managed by Conditional Access policies. CAE aims to improve the response time in situations where a policy setting that applies to a user changes but the user is able to circumvent the new policy setting because their access token was issued before the policy change. It's typical that security access tokens issued by Azure AD, like OAuth 2. 0 access tokens, are valid for an hour. Here's an example. If you disable a user in Azure AD, they can continue to work if they were issued a security token before their account was disabled in the directory. In a worst-case scenario, the user could continue to have access to systems for up to an hour. Reducing the time that security tokens remain valid tends to negatively affect the end-user experience. So, CAE is designed to address the problem. How does Continuous Access Evaluation work? Instead of reducing the lifetime of security tokens, CAE facilitates a two-way conversation between Azure AD and applications, like Exchange Online. If an application like Exchange sees that a condition has changed for a user accessing the service, it can inform Azure AD. A user might connect to a network that isn't permitted under Conditional Access policy, requiring access to Exchange Online to be revoked. Image #1 Expand Respond to Changes in Security Policy and Conditions in Real Time with Continuous Access Evaluation Preview for Azure AD (Image... --- ### How to Automatically Unlock BitLocker Protected Devices Connected to Wired Networks - Published: 2020-12-21 - Modified: 2024-09-04 - URL: https://petri.com/automatically-unlock-bitlocker-protected-devices-connected-to-wired-networks-using-network-unlock/ - Categories: Windows 10 - Tags: bitlocker, Security, Windows 10 - Article Type: Overview Network Unlock allows devices connected to a wired network to automatically unlock BitLocker-protected OS drives. BitLocker is a full-disk encryption tool that is built-in to Windows. Full disk encryption prevents someone who gets physical access to a disk reading data. BitLocker is most commonly used with a Trusted Platform Module (TPM), a hardware cryptoprocessor that is responsible for securing and managing the release of encryption keys. For better security, organizations often require the use of TPM+PIN, which requires physical intervention as a device boots or resumes from hibernation. Configuring BitLocker to use TPM+PIN improves security but makes it harder to remotely service endpoints if they need to be booted or resume from hibernation using Wake on LAN. For example, IT might want to install software updates or perform other remote maintenance. To solve this problem, Microsoft introduced Network Unlock in Windows 8 and Windows Server 2012. Network Unlock allows devices in a domain environment, which are connected to a wired network, to automatically unlock BitLocker-protected operating system drives. BitLocker Network Unlock prerequisites There are several requirements endpoints must meet before they can be used with BitLocker Network Unlock. Endpoints must have UEFI DHCP drivers. UEFI endpoints should be in native mode and not configured for compatibility support. There must be a TPM chip and BitLocker must be configured with at least one protector, like a PIN or startup key. The network must also have a DHCP server and a separate server with Windows Deployment Services (WDS). WDS needs to be running but not configured. Endpoints with more than one network adapter must be... --- ### Meeting Reactions Arrive in Teams in January - Published: 2020-12-21 - Modified: 2024-09-04 - URL: https://petri.com/meeting-reactions-arrive-in-teams-in-january/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, News, Reactions, Teams - Article Type: News Back in July, Microsoft announced a slew of features that would be coming to the Teams meeting experience. While some of the functionality, like Together Mode, has arrived, there are other features that are still outstanding. One of those features is “reactions” in Meetings and Microsoft is now saying that this feature will start to roll out in late January and will complete by the end of February. Once rolled out, you will be able to select from four different reaction types – like, heart, applause, and laugh – and send it to meeting attendees from the new reactions and raise hand flyout in the control bar. Image #1 Expand Example of reactions in a Teams Meeting Once rolled out, this feature will be enabled by default for meetings but you will be able to turn it off using the AllowMeetingReactions policy. If you do have the feature turned off by default, they can still enable reactions in their meetings if they are the meeting organizer from the meeting option page. Reactions are not going to revolutionize your next meeting but in the same way that you can respond to Teams' messages with reactions, meeting reactions will make it easier to engage with the meeting speaker but not interrupting them. Reactions in Teams is another checkbox for a feature that the tool offers to help make meetings marginally more tolerable for both the presenter and the listener. It also adds one more item to the checklist... --- ### Yammer Previews Support for Azure B2B Collaboration > Microsoft has previewed support for Azure B2B Collaboration (guest user accounts) in Yammer. The feature is only available for networks configured in Microsoft 365 native mode. - Published: 2020-12-21 - Modified: 2024-09-04 - URL: https://petri.com/yammer-previews-support-for-azure-b2b-collaboration/ - Categories: Microsoft 365, Office, Yammer - Tags: Azure B2B Collaboration, Guest Accounts, Yammer - Article Type: How To, News On December 15, Microsoft announced the preview of Yammer support for guest user access through Azure B2B Collaboration. Yammer joins Microsoft 365 Groups, Teams, SharePoint Online, and Planner as the mainline Microsoft 365 applications supporting guest access. Yammer’s External Collaboration Journey Guest access first appeared in Office 365 Groups in September 2016. At the time, Yammer supported external support to its networks, a feature not built on top of Azure AD. Yammer’s own implementation worked well and continues to be used as the basis for external collaboration in many organizations, including Microsoft where it’s used to facilitate communications between third parties and some engineering groups. Even though Yammer had its own model for external collaboration, the fact that Yammer did its own thing made it more of an outlier in the increasingly integrated Microsoft 365 world. This was acknowledged by new engineering leadership in 2018 and an effort began to integrate Yammer better with Azure AD and other Microsoft 365 components. Two years later, this is the latest step forward. Native Microsoft 365 Mode Required The preview for Azure B2B collaboration depends on moving Yammer to native Microsoft 365 mode. When an organization does this, Yammer communities are powered by Microsoft 365 groups, which lays the foundation for Azure B2B collaboration. If your organization has moved Yammer into native Microsoft 365 mode, you don’t need to do much to prepare for guest users. Microsoft says that Yammer networks provisioned after December 15 are automatically configured for guest access,... --- ### How to Push Data via PowerShell to PowerBI - Published: 2020-12-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-push-data-via-powershell-to-powerbi/ - Categories: PowerBI, PowerShell - Tags: How To, PowerBi, PowerShell - Article Type: How To PowerBI has quickly become a top platform for data analytics within the Office 365 set of applications. With the ability to consume data from a variety of sources, manipulate, visualize, and publish that data, PowerBI stands out as an easy to use and powerful data visualization platform. With the ability to utilize PowerShell as a means to ingest data and manipulate PowerBI, system administrators and users alike gain powerful new abilities to utilize data through programmatic means. In this article, we explore how to send in data to a PowerBI dataset through PowerShell. Installing and Connecting the PowerBI Module for PowerShell Using the module and installed to the CurrentUser scope, we can install PowerBI PowerShell tools without using administrator modules. ​Install-Module -Name 'MicrosoftPowerBIMgmt' -Scope 'CurrentUser' Import-Module -Name 'MicrosoftPowerBIMgmt' The next step will be connecting to the PowerBI workspace. You will use the Connect-PowerBIServiceAccount and pass in the credentials that you use to login to your Office 365 tenant. ​$credential = Get-Credential Connect-PowerBIServiceAccount -Credential $Credential Now that we are connected, we need to create the dataset and structure. Retrieving the PowerBI Workspace & Crafting a Dataset We will use the Get-PowerBIWorkspace cmdlet to retrieve the Id of the workspace that we will be adding a dataset to and populating with data. ​$Workspace = Get-PowerBIWorkspace | Where-Object Name -EQ 'Test Team' | Select-Object ID, Name Retrieve the workspace to add the dataset to. To create a dataset, think SQL database, within PowerBI we need to define a table for... --- ### Microsoft Illustrates the Breadth and Depth of the SolarWinds Hack - Published: 2020-12-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-illustrates-the-breadth-and-depth-of-the-solarwinds-hack/ - Categories: Security - Tags: Microsoft, SolarWinds - Article Type: News Unless you have been hiding under an air-gapped rock, the entire computing industry was set on fire this week with the announcement that SolarWinds platform had been compromised. Unless you have been hiding under an air-gapped rock, the entire computing industry was set on fire this week with the announcement that SolarWinds platform had been compromised. While we are starting to learn little bits of information about the scale and damage of this attack, Microsoft has begun to share what it has learned during the past few days. Not long after the attack was made public, Microsoft began moving aggressively with nearly every tool in its arsenal to dig up new details and stop potential threats. This isn’t all that surprising, the company has an entire business unit devoted to these tasks that is running 24/7/365 but this attack is unlike anything we have seen in recent memory. In a post penned by Brad Smith, he highlights some of the facts that SolarWinds already shared including, 17,000 customers being impacted by the breach but also shared new data too. Specifically, that the hackers, stated to be Russian, have targeted 40 organizations of which, 80% are located in the United States. Image #1 Expand Map showing hotspots of SolarWinds hacks being targeted - Image Credit: Microsoft The targeted list includes not only government agencies, but security and other technology firms. One of the more well-known companies was FireEye who announced that their system and tools had been accessed and stolen. Microsoft was said to be a victim of the attack as well but the company has since denied that allegation. The full scale and damage... --- ### How to Copy Active Directory Groups from One User to Another with PowerShell - Published: 2020-12-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-copy-active-directory-groups-from-one-user-to-another-with-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell - Article Type: How To Use PowerShell to create consistent user objects in Active Directory. Creating new Active Directory users isn't difficult, either with the GUI tools or PowerShell. But in large directories, creating consistent user objects can be an issue when the process is manual. With a little automation, you can make sure that new user objects are created with the right group memberships and attributes by copying them from a template account. As I wrote recently on Petri, creating new Active Directory (AD) users with PowerShell is easy using the New-ADUser cmdlet. In that article, I showed you how to copy users, including AD attributes like office address, department, job title, and other details with the help of the New-ADUser cmdlet and the -Instance parameter. The New-ADUser cmdlet is great for creating new user accounts and copying attributes. But as we saw in the previous article, it doesn't copy users' group memberships. To do that, we needed to manually add any new users to groups using the Add-ADGroupMember cmdlet. And while that's OK, it adds an extra couple of steps. In this article, I'm going to show you how to copy group membership from one AD user account to another. We'll use an account as a template (accountsuser) and then create a new account (Fleur Wade) with the same group membership as the template user. Create a new user account and copy group membership using PowerShell Fleur will be working in accounts and I want to make sure that she is a member of the same groups as my 'accounts' template... --- ### How to Audit and Test Windows 10 Controlled Folder Access - Published: 2020-12-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-audit-and-test-windows-10-controlled-folder-access/ - Categories: Windows 10 - Tags: Controlled Folder Access, Microsoft Defender, Ransomware, Security, Windows 10 - Article Type: How To Audit and test Microsoft Defender Controlled Folder Access to help protect your organization against ransomware. Ransomware has rarely been out of the headlines over the past few years and it is the most prevalent threat in 2020. WannaCry and NotPetya may be distant memories but the vulnerabilities they rely on are still exploited. And more recently, malware in the RobbinHood family has been used to target large organizations. First by getting access to networks using brute force attacks against RDP and then introducing a vulnerable kernel driver that lets hackers take full control of systems. Microsoft Defender vs ransomware Controlled Folder Access (CFA) was added to Windows 10 in the Fall Creators Update to protect users' files in the event of a ransomware attack. Windows Defender Exploit Guard replaced the Enhanced Mitigation Experience Toolkit (EMET) in Windows 10. CFA is part of Exploit Guard and it helps users and organizations protect folders, such as Documents, from malicious apps. CFA is disabled by default. However, users can enable it and receive better protection with the default settings. The protected folders list includes the Documents, Videos, Music, Favorites, and Pictures folders for all users. You can also add your own folders to the list. Network shares can also be protected, although the use of wildcards is not supported. For more information about how to enable CFA, check out Controlled Folder Access in Windows 10 FCU on Petri. Enable Controlled Folder Access in audit mode Before you enable CFA in your organization, you can set it up in audit mode to assess the impact on endpoints... . --- ### GET-IT Azure DevOps is Happening Right Now - Published: 2020-12-16 - Modified: 2020-12-16 - URL: https://petri.com/get-it-azure-devops-is-happening-right-now/ - Categories: GET IT - Tags: GET-IT, GET-IT Azure DevOps - Article Type: Overview Petri’s GET-IT: Azure DevOps 1-Day virtual conference is a day of free learning dedicated to deep technical content aimed at IT Pros and Developers who are looking to enhance their knowledge and skills for developing, deploying, managing, and scaling their operations. Throughout the day you will hear from Microsoft MVPs and industry experts about how to get started with new DevOps tools and features that you can utilize in your environments. The event is happening today and you can watch below or join the chatroom here.  --- ### How to Update User Photos for Microsoft 365 Accounts > Every Microsoft 365 user account should have a photo and Microsoft 365 Groups and Teams should have photos too. - Published: 2020-12-16 - Modified: 2024-09-04 - URL: https://petri.com/update-user-photos-office-365-accounts/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Azure Active Directory, EXODS, Get-UserPhoto, Set-UserPhoto - Article Type: How To Photos Enhance the Tenant Directory In the past I have written about the desirability of assigning photos to guest users and how to use PowerShell to assign a default photo to guest users. Nice as it is to have photos for guest users, it’s even more important to have photos for tenant user accounts, especially in the pursuit of an accurate tenant directory. Photos make it easier for users to identify other people as they recognize faces more easily rather than the default two initials used when accounts are photo-less. Having a photo available makes features like the Microsoft 365 People card or the Teams organization view more visually attractive and in a sense, pleasing. If you decide to have pictures for all accounts, the next question is what’s the best way to ensure that every user account gets a nice photo. User-Photo Uploads The obvious way is to ask people to upload their own photo. If the organization doesn’t block people from updating their photos through OWA mailbox policies, users can update photos in several ways, including Teams (upload photo through settings – Figure 1). Image 1 Expand Figure 1: Updating a user photo through Teams settings (image credit: Tony Redmond)   Users can also update their photo through their Office 365 profile, accessed by clicking their name in the right-hand side of any Office 365 browser app. This launches Delve, where they can change their photo (Figure 2). Image 2 Expand Figure 2: Updating a user photo through... --- ### Microsoft Has a New Password Manager for Consumer and Enterprise Customers - Published: 2020-12-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-a-new-password-manager-for-consumer-and-enterprise-customers/ - Categories: Security - Tags: Microsoft, password manager, Security - Article Type: News Microsoft has announced their first password manager that is being included in the company's Authenticator app. For many years, one of the missing components of Microsoft’s security layer for the end-users was a password manager. But that gap is starting to be filled today with an update for its Authenticator app but there are some caveats that you need to understand, especially for enterprise customers. Instead of launching a separate app, Microsoft is building its password manager into Authenticator, an app that can be used as part of a 2FA (two-factor authentication) workflow. The app has the ability, in its current form, to retain and sync your passwords across devices including browsers (for Chrome, you will need to install an extension) and autofill passwords too. Image #1 Expand Settings to enable autofill in Authenticator Once you start using the feature inside the Authenticator app, you can have it autofill passwords on both iOS and Android as well as your desktop. But in the current form, the feature is quite limited. In fact, as of right now, it can only be used, by default, with consumer accounts (MSA). At this time, Azure AD accounts are disabled by default, but this functionality can be enabled by admins; the app also lacks other basic features too. One of the primary features of a quality password manager is the ability to create randomly generated strings for each of your passwords, as of this post, Authenticator’s manager does not provide this functionality. But considering this is the first release and it is still in beta, I would... --- ### How to Create a PowerShell Powered Web Server Using Pode - Published: 2020-12-15 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-powershell-powered-web-server-using-pode/ - Categories: PowerShell - Tags: PowerShell, Web Server Pode is a unique cross-platform PowerShell web server designed to host REST API's, web sites, and TCP/SMTP servers. Support for templating languages, middleware, authentication, and SSL certificates. In this article, we explore creating a simple web site served via Pode and how a REST API server may be implemented. Installing Pode and Creating the First Server Installing Pode is easy to do using the Install-Module command. You can even specify the scope as CurrentUser so you do not need Administrator rights. Additionally, we are going to install Kestrel as well, a cross-platform . NET web server. ​Install-Module -Name 'Pode' -Scope 'CurrentUser' Install-Module -Name 'Pode. Kestrel' -Scope 'CurrentUser' Next, we want to create a simple server, listening on 8080 and using Kestrel, to demonstrate a JSON response. ​# Only need to import the modules the first time. Pode. Kestrel is only needed if using the Kestrel ListenerType. Import-Module -Name 'Pode' Import-Module -Name 'Pode. Kestrel' # Start the Pode Server with the Kestrel ListenerType. Start-PodeServer -ListenerType 'Kestrel' { # Listen on port 8080, using the HTTP protocol and on localhost. Add-PodeEndpoint -Address 'localhost' -Port 8080 -Protocol 'Http' # Add a single method for the root and return a JSON response. Add-PodeRoute -Method 'Get' -Path '/' -ScriptBlock { Write-PodeJsonResponse -Value @{ 'value' = 'test' } } } Using Kestrel this even works in the Windows Subsystem for Linux (WSL) and on most Linux servers! Serving a Simple Web Site via Pode Now that we have demonstrated how to serve a JSON response, how would we... --- ### How and When to Use Breakout Rooms in Teams - Published: 2020-12-15 - Modified: 2024-09-04 - URL: https://petri.com/how-and-when-to-use-breakout-rooms-in-teams/ - Categories: Microsoft 365, Microsoft Teams - Tags: Breakout Rooms, Classroom, education, Microsoft Teams, Teams, Workshop - Article Type: How To In a move that mirrors in-person meetings, Microsoft has released breakout rooms for Microsoft Teams. Breakout rooms were originally expected to arrive in October and after a delay, they have finally arrived in December. It is a wise assumption that the delay was to listen to feedback from customers who were using the feature in public preview, such as schools, and to make sure that the initial version of breakout rooms worked well. So far, both the public reception to its launch and how the feature performs has been positive, as it fulls the need for business, government, and education customers alike. Key use cases for breakout rooms Breakout rooms replicate the real-life ability to get people into smaller groups to work on problems. Image #1 Expand Representation of in-person breakout sessions in a classroom or business workshop Hopefully, you will recognize the scenario I’ve created above – the leader works with the assembled group to outline a problem, then splits everyone into groups, usually on separate tables. The leader then walks around the room to check in with each group to see how they are getting on and helping them where needed. You will see these used in scenarios like: Schools with the teacher setting a short assignment for pupils to work on in small groups. In-person this will often be a short 10-minute group task that pupils work on with their classmates at the same table. Team training with the facilitator outlining a business... --- ### Microsoft Delays Teams’ Fluent Update, Native Notifications - Published: 2020-12-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delays-teams-fluent-update-native-notifications/ - Categories: Microsoft 365, Microsoft Teams, Office, Uncategorized - Tags: Microsoft 365, News, Office 365, Teams Microsoft has delayed native notifications in Teams and Fluent icons. A couple of months back, Microsoft announced that they would begin to update Teams with new Fluent icons. If you are wondering why that update has not shipped yet, that’s because it has been delayed. The modern design langue that has been dribbling out of Microsoft to various applications was scheduled to arrive in Teams starting in November. The rollout of the update has been pushed back a couple of months; Microsoft says that the public preview starts mid-January, the standard release in mid-February, and the Government cloud is targeted for mid-February. Teams with updated Fluent icons In other delayed news, if you have been waiting for native notifications to arrive in your tenant, the wait should be nearly over. It was expected that native notifications would arrive in mid-November but that has been pushed to mid-December with this feature reaching all tenants by mid-January. Because updates roll out frequently, these delays are not going to impact users in any substantial way. Both the Fluent iconography update as well as native notifications are nice to have but the function of the Teams app is not changing in a meaningful way. But the native Teams notification is one that is sorely needed as it makes managing Teams notifications on Windows much easier. Right now, you have to manage some notifications in the Action Center in Windows 10 and others inside the Teams app, following this update, all notifications can be managed in the Action Center and Teams... --- ### GET-IT: Azure and DevOps 1-Day Virtual Conference is Happening Wednesday - Published: 2020-12-14 - Modified: 2024-09-04 - URL: https://petri.com/get-it-azure-and-devops-1-day-virtual-conference-is-happening-wednesday/ - Categories: GET IT - Tags: GET-IT, GET-IT Azure DevOps - Article Type: Overview Petri’s GET-IT: Azure DevOps 1-Day virtual conference is a full day of free learning dedicated to deep technical content aimed at IT Pros and Developers who are looking to enhance their knowledge and skills for developing, deploying, managing, and scaling their operations. Petri’s GET-IT: Azure DevOps 1-Day virtual conference is a day of free learning dedicated to deep technical content aimed at IT Pros and Developers who are looking to enhance their knowledge and skills for developing, deploying, managing, and scaling their operations. Throughout the day you will hear from Microsoft MVPs and industry experts about how to get started with new DevOps tools and features that you can utilize in your environments. During this free day of learning, we will be streaming to YouTube, Twitter, Facebook, Petri. com, and other locations to make it easy for you to watch Azure DevOps Day wherever it is most convenient for you. And who will be speaking? On the docket, we have Aidan Finn, Ryan Irujo, Thomas Maurer, Sarah Lean, Pete Zerger, and Frank Yue. Why Azure DevOps? IT Pros are frequently looking to expand their skillset and even season DevOps engineers are looking for new solutions and in our free one day conference, we will help those looking to add new skills to their toolbelt for engineering an infrastructure solution as well as diving deep into transformation challenges too. With the event about three weeks away, you can head over to our landing page to learn more about the sessions and connect with the speakers. And be on the lookout for additional updates before the event too, including more sessions. --- ### Azure AD Premium Licenses Needed to Manage SharePoint Sites with Sensitivity Labels > Sensitivity labels can now manage the external sharing capability of SharePoint Online team sites. Those who assign labels need Azure AD Premium licenses. - Published: 2020-12-14 - Modified: 2024-09-04 - URL: https://petri.com/azuread-premium-sensitivity-labels/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office - Tags: Azure AD Premium, Container management, Office 365 Sensitivity Labels - Article Type: News, Overview Very Useful Sensitivity Labels Microsoft has steadily been building out the ability of sensitivity labels to manage different aspects of containers (teams, groups, and sites), with the ability to control the external sharing capability for SharePoint Online team sites the latest addition (Figure 1). Image 1 Expand Figure 1: Defining external sharing capability in a sensitivity label (image credit: Tony Redmond)   Although it is great to see sensitivity labels become a more useful and powerful management tool, what’s not so good is Microsoft’s decision to require AD Premium P1 licenses when sensitivity labels are used for management of SharePoint Online sites. Leaking the News Microsoft said precisely zero about licensing while they developed the initial container management capabilities covering aspects like guest access and privacy. The penny dropped when they included some text in MC225614 (Figure 2), the Office 365 notification covering labels and external sharing capability. An easily-missed and unhighlighted sentence brings the news that: “Capability to apply sensitivity labels to a team and SharePoint site is included with Microsoft 365 E3 and Office 365 E3 plus Azure Active Directory (Azure AD) Premium P1 and above. ” Image 2 Expand Figure 2: How Microsoft communicated the licensing need in MC225614 (image credit: Tony Redmond)   In other words, the accounts of administrators who apply sensitivity labels with container settings to group-based SharePoint Online team sites must have Azure AD Premium P1 licenses. Licenses are not needed to apply sensitivity labels to other types of SharePoint sites like hub and... --- ### How to Use Acme.sh to Provision LetsEncrypt SSL Certificates - Published: 2020-12-11 - Modified: 2020-12-11 - URL: https://petri.com/how-to-use-acme-sh-to-provision-letsencrypt-ssl-certificates/ - Categories: Compliance, PowerShell, Security - Tags: PowerShell, Security LetsEncrypt has changed the face of SSL certification issuance. Making it easy for website developers to freely and easily issue an SSL certificate, LetsEncrypt has opened the floodgate to properly securing every website. LetsEncrypt has changed the face of SSL certification issuance. Making it easy for website developers to freely and easily issue an SSL certificate, LetsEncrypt has opened the floodgate to properly securing every website. A service is often only as good as its tools and an open-source project that has gained traction is the Acme. sh shell utility. There are three functional steps in retrieving an SSL certificate from LetsEncrypt, requesting the certificate, verifying that the requestor is authorized, and issuing the certificate. Acme. sh makes all three of these steps easy, offering flexibility in what type of certificates are requested and how they are verified. Installing Acme. sh on Ubuntu There are two main ways to install Acme. sh. In this example, we are installing the utility to a recent version of Ubuntu. Acme. sh is written in the common Unix sh language, therefore it can be run on virtually every flavor of Linux and Mac OS X, even Windows with the right Cygwin setup! Installation via the Web This is the easiest method of installation, you can quickly install and get started with configuring. Some folks may not be comfortable with this due to directly installing from the internet. ​# Directly download using the curl utility and pipe to sh to run. curl | sh # Alternatively, use wget to download the installation file and pipe to sh to run. wget -O - | sh Installation via Git If installing the utility directly from the web is not preferred, you... --- ### Patch Tuesday – December 2020 - Published: 2020-12-10 - Modified: 2020-12-10 - URL: https://petri.com/patch-tuesday-december-2020/ - Categories: Security, Windows 10, Windows Client OS - Tags: Microsoft Exchange, Microsoft SharePoint, News, Patch Tuesday, Windows 10, Windows Server - Article Type: News This month there are just 58 bugs patched for Microsoft products, including a critical remote code execution flaw in Hyper-V and Microsoft issues a security advisory for Windows DNS. The end of the year has Microsoft patch less vulnerabilities than usual. Nevertheless, there are some important bugs that need to be installed. So, like every month, you should start testing the updates for deployment in your environment as soon as possible. Windows and Windows Server This month there's just one critical vulnerability patched for Windows. An attacker could exploit a remote code execution (RCE) flaw with a specially crafted application on a Hyper-V guest. It could result in the host operating system running arbitrary code when it fails to properly validate vSMB packet data. The remaining patches consist of 7 elevation of privilege (EoP) flaws rated important, 1 important RCE, and 2 important information disclosure bugs. Microsoft Edge (legacy) also gets a patch for a critical RCE vulnerability. Microsoft issued a security advisory for the Windows DNS resolver where an attacker could spoof a DNS packet cached by the DNS forwarder or resolver. There's no patch available now but Microsoft has published a workaround that involves adding a registry value to change the UDP buffer size for DNS and then restarting the DNS service. The workaround could force the DNS resolver to switch to TCP for large responses. Exchange, SQL, and SharePoint Server Microsoft Exchange and SharePoint Server get a series of patches to fix RCE flaws in the products. Because these servers are often exposed to the Internet, you should think about patching them as soon as possible. Microsoft Office Microsoft 365 apps for Enterprise, previously... --- ### Why You Should Use Windows Update for Business Instead of Windows Server Update Services - Published: 2020-12-10 - Modified: 2024-09-04 - URL: https://petri.com/why-you-should-use-windows-update-for-business-instead-of-windows-server-update-services/ - Categories: Windows 10 - Tags: Microsoft Endpoint Manager, Microsoft Intune, Update Compliance, Windows 10, Windows Server Update Services, Windows Update for Business - Article Type: Opinion As more employees work from home, Windows Update for Business provides a simpler way to update Windows endpoints with the latest patches. As more employees work from home, Windows Update for Business provides a simpler way to update Windows endpoints with the latest patches. In this article, I look at the differences between Windows Server Update Services and Windows Update for Business, and why I believe the latter is the best solution in most cases. What is Windows Server Update Services? Windows Server Update Services (WSUS) is a component of Windows Server. WSUS is installed as a server role and you can deploy a single instance. Or it can be configured in a distributed topology to serve endpoints that are separated on different networks or physical locations. WSUS servers can be set up in different hierarchies, where WSUS receives updates from upstream servers or directly from the Internet. WSUS is a flexible solution that allows organizations to serve thousands of endpoints, many more than a single instance could handle. WSUS also integrates with Microsoft Endpoint Manager, previously System Center Configuration Manager (SCCM), where it handles updating endpoints. WSUS is complex to deploy and maintain But with all the flexibility that WSUS provides, including being able to approve individual updates, there are many caveats. The first is complexity. Even if you deploy a single instance of WSUS, there are a few best practices you should follow to make sure WSUS is secure. Communications between endpoints and WSUS, and between WSUS downstream and upstream servers, are not secured using HTTPS by default. Each WSUS server should be configured to enforce Secure Sockets... --- ### How to Use Restic for Backup - Published: 2020-12-09 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-restic-for-backup/ - Categories: Backup & Storage - Tags: Backup, Restic, storage - Article Type: How To Restic is a Go-based backup utility. Built on the design principles of an efficient, easy-to-use, secure, and verifiable backup system, Restic meets and exceeds those goals. Restic is a Go-based backup utility. Built on the design principles of an efficient, easy-to-use, secure, and verifiable backup system, Restic meets and exceeds those goals. Designed to be able to locate the backups anywhere, including assumed un-trusted locations, Restic employs strong cryptographic mechanisms to secure your data wherever it may be stored. In this article, we explore using Restic to backup data to an S3 compatible storage location, DigitalOcean Spaces. Installing the Restic Binary Although you can use a number of different official package managers to install Restic, such as apt install restic, they will often install an out-of-date version. If the minimum version installed is greater than or equal to 0. 9. 4 then you can use the restic self-update command to quickly upgrade to the latest version. If you not, you will need to use the more traditional method. For this example, we are going to download the latest version and install the binary. In the shell, download the latest version found on this page, and using the linux_amd64 version. Extract the file and install ​wget bzip2 -d restic_0. 11. 0_linux_amd64. bz2 mv restic_0. 11. 0_linux_amd64. bz2 /usr/bin/restic chmod a+x /usr/bin/restic Run the self update command to verify that we have the latest version. ​restic self-update Creating a Restic Repository Restic needs a place to actually store the backups, to do this we need to initialize a repository. You can create a local repository to backup the data too, but in this example we are going to use an S3 compatible location,... --- ### Decrypting SharePoint Online Documents with PowerShell > SharePoint Online users can protect confidential documents by applying sensitivity labels with encryption. Sometimes administrators need to decrypt those files. - Published: 2020-12-09 - Modified: 2020-12-09 - URL: https://petri.com/decrypt-sharepointonline-documents/ - Categories: Microsoft 365, Office, PowerShell, SharePoint Online - Tags: Office 365 Sensitivity Labels, PowerShell, sensitivity labels, Set-AIPFileLabel, Unlock-SPOSensitivityLabelEncryptedFile - Article Type: How To, News Great to Protect Content Until Access is Needed The growing popularity of sensitivity labels is goodness if you simply look at the desirability of protecting confidential information. However, the presence of a larger percentage of encrypted data within Office 365 creates some addition management challenges. As I have noted during several conference talks, the only downside of encryption is encryption. For example, if you run a content search to find information needed for an investigation, the search can return protected documents because SharePoint Online can decrypt and index their content. But when the time comes to export the documents found by the search, SharePoint delivers encrypted content which can only be opened by people who have the necessary rights. This creates a problem for investigations. A recent update to Exchange Online means that protected attachments are decrypted for content search exports. The same functionality is needed for protected files found in SharePoint Online and OneDrive for Business document libraries. More fundamentally, if an organization decides on a “cloud exit” and needs to move all its information out of Office 365 to bring them to another platform, the presence of encrypted content creates some processing headaches, especially if large numbers of documents are protected using auto-label policies. The same issue exists when moving content during tenant-to-tenant migrations. Unlocking Protected Files in SharePoint Online To ease the situation, Microsoft has introduced the Unlock-SPOSensitivityLabelEncryptedFile cmdlet in version 16. 0. 20616. 12000 and above of the SharePoint Online PowerShell module. Global and SharePoint admins can... --- ### SharePoint Usage Explodes in 2020, Adds 100 Million Monthly Users - Published: 2020-12-08 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-usage-explodes-in-2020-adds-100-million-monthly-users/ - Categories: Microsoft 365, Office, SharePoint, SharePoint Online - Tags: Microsoft, News, Office 365, SharePoint - Article Type: News Today, the company is updating that figure and the growth has been substantial. In a blog post penned by Jared Spataro, Corporate Vice President for Microsoft 365, he states that the number of active monthly SharePoint cloud users has doubled to 200 million. Last year at Ignite, Microsoft started to reveal some of the numbers of individual services that are used by customers of its Office 365 platform. At that time, the company stated that it had 100 million monthly active users of SharePoint in the cloud. Today, the company is updating that figure and the growth has been substantial. In a blog post penned by Jared Spataro, Corporate Vice President for Microsoft 365, he states that the number of active monthly SharePoint cloud users has doubled to 200 million. A bit of simple math tells us that the company added 100 million users to the service in roughly the past 13 months and that a sizeable chunk of Office 365 subscribers are using SharePoint in some capacity. Per Microsoft's latest earnings release, there are somewhere around 250 million paid subscribers of Office 365 which means that a sizeable portion of those customers are using the platform. Microsoft announced 100 million users at SharePoint 2019, update to reflect users in 2020. Of course, it is possible to use SharePoint Online without paying for Office 365 with SharePoint Online Plan 1 and 2 – so the mapping of Office 365 growth to SharePoint is not a perfect science. But, I would be willing to hedge that a sizeable chunk of the users of SharePoint are coming through the Office 365 model. Keep in mind that this SharePoint figure is a monthly milestone for the platform. Unlike Teams, where the company... --- ### How Azure AD and a Load Balancer Can Simplify App Delivery - Published: 2020-12-08 - Modified: 2024-09-04 - URL: https://petri.com/how-azure-ad-and-a-load-balancer-can-simplify-app-delivery/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, DevOps, Kemp, Load Balancer - Article Type: Sponsored This post was sponsored by Kemp Microsoft’s offering in the single sign-on space for several years has been Azure Active Directory, which serves as the underlying directory service for Microsoft 365. This service is also widely used as the SSO and provisioning service compatible with most third-party SaaS applications such as ServiceNow, Salesforce, Atlassian, and many more.    In a surprising turnaround from a few years ago, Microsoft has been making significant inroads into the SSO marketplace, mostly driven by a combination of sales of Microsoft 365 E3 licensing to enterprises, a practically complete set of features such as Conditional Access, a reasonably large catalog of straightforward SSO, and provisioning integrations and integration into bundles services such as Intune. What this means is that it is difficult for a company deploying Microsoft 365 not to leverage Azure AD advanced functionality.  While Okta was seen as a default go-to, or AD FS was deployed on-premises for additional control, this is no longer the case.   A common complaint through I hear on a regular basis is from customers that don’t have the full suite – and have bought and adopted Office 365 but haven’t got some of the security add-ins.  While technically they have been ready to utilize SSO services into other applications, the bundled Azure AD Free version only recently expanded its support for SSO integrations. A second common gripe with the Azure AD version Microsoft bundled remains the lack of Conditional Access functionality – which Microsoft has gone a reasonable way to address by introducing Security Defaults. Security Defaults allow an IT administrator to gradually enable Multi-Factor Authentication (MFA) for users with limited effort, disallow unsafe legacy authentication methods and enforce additional sign-in security for administrators.   These... --- ### Microsoft to Turn on Guest Access in Teams by Default - Published: 2020-12-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-turn-on-guest-access-in-teams-by-default/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft is making a change to Guest default settings but you likely do not have much to worry about. Microsoft announced today that the company will be making a change to the default setting for Guests in Teams. While this update will make it easier to work with parties outside your organization, you should be aware of what is changing and how this will impact your organization. Starting on February 8th(Reference MC228482), if you have not configured Guest access in Teams, that functionality will be enabled automatically. Further, new tenants will be enabled with Guest Access turned on too, and as scary as this update sounds, there is little to be worried about. For starters, many organizations have likely already configured Guest access in their tenant. After all, Teams has become the central hub for collaboration and if you are working with external parties, you have already configured your tenant appropriately. Further, if you are locking down your environment from Guest access, you have once again already configured your tenant to reflect your own internal policies and this update will not impact your operations. Image #1 Expand Make sure to check your Guest access settings in the Teams Admin panel But there is at least one setting you should check if you want Guest access to remain off after this update. In your admin panel, make sure that Guest access is set to off and not “Service default” as the new default will be enabling the guest access. When Guest access is enabled, you still retain control of data and the built-in data protection features... --- ### No Way to Stop Gathering Data Used by Productivity Score > Microsoft caved in to protests last week and removed user level data from its Productivity Scorre feature even though the data is available elsewhere. - Published: 2020-12-07 - Modified: 2020-12-07 - URL: https://petri.com/productivity-score-data/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, Microsoft Graph, Office 365 Audit Log, Productivity Score - Article Type: News, Opinion Microsoft Graph and Audit Log Too Important to Lose Thinking about the fuss and bother which erupted over Microsoft Productivity Score, I concluded that the people concerned about management oversight of user activity within Microsoft 365 had very little knowledge about the topic. They looked at the pretty graphs and tables of user data and reached a conclusion that wasn’t grounded in reality. That’s sad, but when you shout about something you know little about, the output is seldom rational or useful. Usually, it’s just noise. What’s sadder is that Microsoft gave in to the howling mob. This was the right PR response, but it left people in the position of not knowing what data is collected about Microsoft 365 and what that data can be used for. No Way to Disable Data Collection The expressed concern about user privacy, which is a good thing to focus on, provoked the question whether an Office 365 tenant can suppress the gathering of usage data. The answer is no. There’s no administrator-settable control in a tenant to stop Microsoft 365 apps faithfully and comprehensively gathering signals about user activity and stuffing the resulting data into the Microsoft Graph. You can anonymize the data presented in Graph-based usage reports, but the full underlying data remains available. In fact, not only does Microsoft 365 collect signals about user activity, but often a user action results in an audit record. The net result is that a tenant can not only report numeric counts... --- ### Microsoft Begins Rollout of Breakout Rooms for Teams - Published: 2020-12-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-rollout-of-breakout-rooms-for-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Breakout Rooms, Microsoft, News, Teams - Article Type: News If you want to use breakout rooms with Teams, there is good news and not-so-good news. There are many Teams features that are highly requested like a calendar that connects to external sources or the ability to change the default download folder, but Microsoft is about to check off one of the more useful and unique features for Teams, breakout rooms. Microsoft announced the feature earlier this year and now it is starting to show up in a limited number of tenants. Microsoft announced late last week that breakout rooms are starting to roll out for a limited number of GCC tenants (Microsoft 365 for Governments). This is the first step towards a wider rollout to all tenants and even though this isn’t true general availability, it’s a start. Image #1 Expand Example of a breakout room in Teams And the fact that Microsoft is starting to roll it out at all means that they feel the feature is nearly complete. If your GCC tenant does not have the breakout room feature yet, Microsoft expects the entire rollout to be completed by mid-December. If you are an admin, Microsoft advises that you take the following steps to prepare your tenant: As an admin, ensure users can schedule private meetings with the following settings: Allow scheduling private meeting = on Allow Meet now in private meeting = on Allow channel meeting scheduling = on Allow meet now in channels = on While it’s good to see that GCC is on the leading-edge of receiving the breakout rooms, it’s a bit surprising that the... --- ### How to Use PowerShell Calculated Properties - Published: 2020-12-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-powershell-calculated-properties/ - Categories: PowerShell - Tags: Automation, PowerShell - Article Type: How To Manipulate PowerShell object output using calculated properties. PowerShell is an object-oriented programming (OOP) shell and scripting language. That means every PowerShell cmdlet you run produces an object containing the cmdlet's output in a structured format. Objects can be passed among cmdlets and the data retrieved by calling properties. OOP is much easier than parsing strings of text to extract the information you need. But sometimes the data stored in objects isn't in the format we need, or we need to add information that is missing so that the data can be processed further. PowerShell calculated properties let you change the data stored in objects or add new data. In this article, we're going to look at a practical example that uses a short script to generates a report on changes to the Active Directory (AD) schema. In the script, we'll use a calculated property to change the format used to display a date. Listing Active Directory schema changes using PowerShell The script starts by using Get-ADObject to search for changes to the AD schema. We will use three parameters with the cmdlet. -SearchBase specifies the AD path to search. Get-ADRootDSE automatically finds the root path for the domain's schema, which should look something like what you can see below if the domain name is ad. globomantics. uk: CN=Schema,CN=Configuration,DC=ad,DC=globomantics,DC=uk -SearchScope specifies the scope of the search. We'll use OneLevel to search the immediate children of the path specified in -SearchBase. We want to search for everything, so -Filter is set to *. And finally, -Properties is used to... --- ### Paul Thurrott's Short Takes: December 4 2020 - Published: 2020-12-04 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-4-2/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because it’s the most wonderful time of a less than wonderful year, this edition of Short Takes looks at Microsoft’s 2020 holiday commercial, Salesforce wastes $27.7 billion, Microsoft’s controversy of the week, 1100 new Teams features, yet another way to update Windows 10, and so much more. Because it’s the most wonderful time of a less than wonderful year, this edition of Short Takes looks at Microsoft’s 2020 holiday commercial, Salesforce wastes $27. 7 billion, Microsoft’s controversy of the week, 1100 new Teams features, yet another way to update Windows 10, and so much more. Microsoft celebrates the holidays, but only for dog owners Microsoft released its annual holiday commercial this week, and it’s sure to upset cat owners: Dubbed Find Your Joy (A Dog’s Dream), the commercial features some dogs dreaming about the three most popular video games that Microsoft makes---Halo, Minecraft, and Flight Simulator---and doing what dogs do: Being overly needy and screwing everything up. The dream sequence is cute, but I have two issues. One, that there’s a family anywhere on earth in which every single person in the house is using a Microsoft product (three of which are games). And two, that the commercial heavily features footage of Halo: Infinite, a game that Microsoft postponed to 2021 because of the incredible low-quality of its most recent public demo. Maybe next time they can make a version with cats. Which, let’s face it, couldn’t care less either way. “Will there be another PlayStation 5 and Xbox restock at retailers this year? ” Why are you asking us? Salesforce combines two turkeys into a $27. 7 billion eagle With a pandemic and everyone working from home this year, 2021 should have been a great year for Slack, as it has been for all its rivals. Instead, the firm... --- ### AWS Launches re:Invent 2020 with new MacOS Support - Published: 2020-12-03 - Modified: 2020-12-03 - URL: https://petri.com/aws-launches-reinvent-2020-with-new-macos-support/ - Categories: Amazon Web Services, Cloud Computing - Article Type: News Starting on Monday, November 30th, and running for the next three weeks, Amazon has launched its annual AWS re:Invent conference. In most years the conference spans several different properties in Las Vegas and runs over the course of a few days. Last year’s re:Invent conference had over 60,000 attendees. This year, like all of the other big tech conferences, the event was 100% virtual. However, unlike those other conferences, this year’s re:Invent was completely free and it will be held over the course of three weeks. AWS CEO Andy Jassy kicked off this year’s keynote on December 1st.   Andy stressed the need for constant reinvention in his keynote as he stated that “You want to be reinventing all the time. Some of it is building the right reinvention culture, and some of it is knowing what technology is available to you and jumping on it to make that reinvention happen. ” He covered a number of topics -- not all of them technical. He addressed the issue of racism in America and how Amazon is working to rectify the problem in their own organization. He covered how the cloud has enabled businesses to keep working during the ongoing pandemic. And he emphasized that Amazon is customer-focused and that the technology and services that they develop are all about addressing customer needs. The AWS Partner keynote with Doug Yeum, head of Worldwide Channels and Alliances; Sandy Carter, vice president, Global Public Sector Partners and Programs; and Dave McCann, vice president, AWS Migration,... --- ### Microsoft Releases Machine-Learning Backed Password Spray Attack Detection - Published: 2020-12-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-machine-learning-backed-password-spray-attack-detection/ - Categories: Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, Azure Active Directory Identity Protection, cloud computing, Security - Article Type: News New machine-learning backed password spray attack detection spots twice the number of compromised accounts. Password spray attacks are a popular means of trying to gain access to user accounts and they make up one-third of account compromise in organizations. Instead of using many passwords against one user account, which would trigger account lockout quickly, password spray attacks use a few common passwords against many user accounts across numerous organizations. To be successful, malicious actors take the 'low and slow' approach from thousands of different IP addresses to launch an attack against many companies at the same time. Going low and slow ensures that attackers are unlikely to create suspicion. Because there aren't enough logon failures to trigger account lockouts or other alerts that might be in place. The low number of account logon failures get lost in the noise of normal login patterns. On accounts not protected by Azure Active Directory Password Protection, password spray attacks have a 1 percent success rate. Due to the sheer volume of data that Microsoft collects from Azure AD tenants, it is now able to reliably detect patterns and alert organizations to password spray attacks. Microsoft can detect when a single password hash is being used for failed login attempts, indicating a single password is being used for hundreds of thousands of accounts across many Azure AD tenants. Machine learning improves password spray attack detection Using the approach described above, Microsoft developed a heuristic detection that is used to notify tenants of hundreds of thousands of attacks every month via increased user risk alerts. But Microsoft... --- ### Teams Previews Personal Features for Desktop and Browser Clients > Microsoft has released Teams personal functionality for the Windows desktop and browser clients. - Published: 2020-12-02 - Modified: 2024-09-04 - URL: https://petri.com/teams-personal-desktop/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Teams Accounts, Teams Personal - Article Type: How To, Overview Following Personal Support in Teams Mobile Clients On November 19, just before things started to wind down for the Thanksgiving holidays, Microsoft announced the preview of “personal” features in the Teams desktop and browser clients. Preview availability for personal features on desktop (Windows only) and browsers follows up the debut of Teams at home for iOS and Android last June. New Accounts and Orgs Menu Option Earlier this month, a kerfuffle erupted when people thought that Teams was about to support multiple work accounts in a profile. Supporting multiple work accounts in a Teams profile didn’t happen, but what did happen was the introduction of a new Accounts & orgs arrangement in the Teams profile menu to accommodate the inclusion of a single personal account (an organization is a Microsoft 365 tenant). Up to now, Teams desktop and browsers have only supported tenant and guest user accounts, and the new menu layout is needed to support the inclusion of a single personal account in a user’s profile. If Teams didn’t include a personal account available in a user profile, people couldn’t switch easily between work and personal activity. The new arrangement is documented in Office 365 notification MC226759 (13 November) and is now rolling out. Figure 1 shows the new layout. On the left-hand side you can see the Accounts & orgs option. Selecting the option reveals a scrollable list of the set of accounts where you have a guest account plus the organizations available to your personal... --- ### Rich in Microsoft History, Salesforce to Acquire Slack - Published: 2020-12-01 - Modified: 2020-12-01 - URL: https://petri.com/rich-in-microsoft-history-salesforce-to-acquire-slack/ - Categories: Messaging - Tags: Microsoft, News, Slack, Teams - Article Type: News SalesForce has announced that it will be buying Slack for $27.7 billion – a 28x Net Twelve Months Revenue. To do this, Salesforce will be paying $26.79 in cash + 0.0776 shares of common stock for each share of Slack. Many years ago, long before Teams was a thing, there were rumors and whispers that Microsoft was looking at Slack as a potential target for acquisition. But after doing some soul-searching, the exec team decided it was better to build their own, rather than pick up the hot new startup that was sweeping up the “anti” Microsoft crowd. And at that time, it was a controversial decision among those who were watching Slack eat Microsoft’s lunch. Microsoft’s Skype tools, for both enterprise and consumers, were not loved, but simply tolerated, while Slack was the best thing to happen to messaging since Away Message in AIM. About three years ago, when Microsoft announced Teams, Slack famously took out a full-page ad in the New York Times congratulating the Redmond-based company on its new application called Teams. It’s likely fair to say that without Slack, Teams may not exist today. But as time has passed, both Teams and Slack have found their place in the market with Teams grabbing huge market share in the corporate segment thanks to its inclusion with Office 365 initially (and Microsoft 365 today) and Slack winning big with smaller companies, organizations using G-Suite, and a few other demographics but namely shops that are “non-Microsoft” based. This brings us up to today, where SalesForce has announced that it will be buying Slack for $27. 7 billion – a 28x Net Twelve Months Revenue. To do this, Salesforce will be paying $26. 79 in cash + 0. 0776 shares of common stock... --- ### Everything You Need to Know about Power Platform - November 2020 > All of the things you wanted to know about Power Platform for Novemeber 2020. Here is a hint, the really cool stuff was bout Dataverse but there was more. - Published: 2020-12-01 - Modified: 2020-12-01 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-november-2020/ - Categories: PowerApps - Tags: dataverse for teams, power apps, Power Automate, Power BI, Power Platform, Teams - Article Type: News This month the theme seems to be the product formally known as Common Data Service. Thankfully they didn't change its name to a symbol, instead, they now call it Dataverse This month the theme seems to be the product formally known as Common Data Service. Thankfully they didn't change its name to a symbol, instead, they now call it Dataverse. There are announcements to be had about its name change and oh yeah it is now FREE inside of Teams! Crazy. Hopefully, we can stop renaming things for five minutes, or at least long enough for me to write up this news and notes. Also, some cool info on Power BI, governance, and more connectors. Not CDS but instead Dataverse and other changes Another day, another name change. The Common Data Service aka CDS aka Common Data Service for Apps aka Dataflex aka whatever you wanted to call it is now officially named Dataverse. As a guy who creates content and teaches training classes, I am still struggling to say Dataverse but I will get there. And in case one name change wasn't enough they also changed parts of Dataverse. Entities are now called Tables and Option Sets are now called Choices. I think overall these name changes make complete sense and will be good for the long-term health of bringing new people up to speed. But, man, it was a lot all and at once for those of who knew the old names. Best part? No functionality changes, just words on the screen. And if you are like what the heck is Dataverse then the quick answer is it is the data platform underneath Microsoft Dynamics and... --- ### Everything You Need to Know About Office 365 - November 2020 Edition - Published: 2020-12-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-november-2020-edition/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, Office 365 - Article Type: Overview It was a busy month for Office 365 updates but these are the items you need to know about. As we round out the back half of 2020, time seems to be moving faster than the first half of the year. Especially November with a holiday in the US, news and announcements were front-loaded but here is a recap of the key updates during the month. When it comes to sensitive data in your tenant, assigning rights with Sensitivity Labels is an important process that can help prevent accidental leakage of data. Tony has a good overview of how to assign rights using these labels for external communication with PowerShell. Finding your data in your tenant can be tricky; there are many places that can store content including SharePoint, OneDrive, Teams, and more. This means that the search feature inside your tenant needs to be robust but more importantly, knowing how search works can help you structure your data for improved visibility. But the bread and butter of Office 365 will continue to be Teams and this month there were quite a few updates to the platform. This month Microsoft also announced a big update for Teams that will make it easier for third-parties to build applications for Teams and also empower citizen developers to build out Teams apps from inside your own organization. The new Microsoft Teams user activity report gives you a view of the most common activities that your users perform in Microsoft Teams - including how many people engage in a chat in a channel, how many communicate via private chat message, and how many... --- ### Microsoft Updates Teams Calling With CarPlay Support, New UI, and More - Published: 2020-12-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-teams-calling-with-carplay-support-new-ui-and-more/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, Microsoft 365, News, Teams - Article Type: News Microsoft is starting to roll out a significant update to the Teams expereince with some features arriving today and others in early 2021. One of the primary goals for Microsoft in 2021 is to continue to grow the userbase of Teams. The application has amassed more than 115 million daily users but the growth potential is far from flatlining. In fact, there are more than 250 million users of Office 365 and the company has previously stated that there are more than a billion users of Office too. What this means is that features will continue to pour into Teams and today the company is announcing a few more updates to the calling functionality of the platform. Microsoft is adding the ability for Teams to identify potential spam calls which can be helpful for those who are using Teams as an end-to-end solution for their calling operations. In addition, Teams will digitally attest outgoing calls to prevent these calls from being rejected by external recipients Image #1 Expand The new calling view coming to Teams The company will also be making it easier to navigate the calling experience as well with an update to the dial pad, history, voicemail, and contacts into a single view (as seen above). And for admins, you will soon be able to define the default storage location for voicemails to either OneDrive or SharePoint. Image #1 Expand Affordable phones with hardware buttons - launching Q1 2021 Also coming in 2021, you will be able to transfer calls between desktop and mobile – this will be especially helpful for when meetings... --- ### Everything You Need to Know about Windows – November 2020 - Published: 2020-12-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-november-2020/ - Categories: Windows 10 - Tags: Microsoft Cloud PC, Microsoft Edge, Windows 10, Windows Insider - Article Type: News November brings a new version of Edge in the Stable Channel, Windows Feature Experience Packs for Insiders, and news of a hardware security architecture designed to protect Windows 10 devices against physical attack. In the run-up to Christmas, things are slowing down at Microsoft. November brought the final Stable version of Edge for 2020, version 87. The Insider program gets its first Windows Feature Experience Pack, and there are some interesting announcements on security, rumors of UI updates, and Android app support. Microsoft Edge 87 Microsoft released what will be the final Stable Channel version for 2020 of its new Edge browser this month. Edge version 87 is a relatively minor update and comes with some features that are only available in certain regions, like Shopping. Shopping - now enabled by default, Shopping shows coupons in the top right of the address bar when they are available. It also lets you check prices against competitors. The new tab page (NTP) for enterprise users now lets users toggle between the Office 365 and personal (My Feed) information. For consumers, NTP gets a new tile called 'Deals', which displays up-to-the minute discounts. Although unlike Shopping, the Deals tile isn't enabled by default. And apparently, the NTP also gets voice search, although I don't see that so maybe it's also a regional feature. The web capture tool now has basic annotation capability. i. e. drawing with a pen. Something that will be useful for tablet users. URL shortening is included and turned on by default. So, when you copy a URL and then paste it, the URL will be shortened. Pressing CTRL+SHIFT+V will paste the full URL for those who prefer the old behavior. The... --- ### Everything You Need to Know About Azure Infrastructure – November 2020 Edition - Published: 2020-12-01 - Modified: 2020-12-01 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-november-2020-edition/ - Categories: Microsoft Azure - Tags: App Service Environment, App Service Environment v3, App Services, ASE, ASE v3, ASR, Azure, Azure Advisor, Azure Backup, Azure Bastion, Azure Files, Azure Files Premium, Azure Firewall, Azure Hybrid Benefit, Azure Migrate, Azure Monitor, Azure Policy, Azure Portal, Azure Security Center, Azure Site Recovery, Azure VPN gateway, Backup, Cloud Shell, Connection Monitor, encryption, ExpressRoute, GitHub, Guest Health, IPSec, linux, Long-Term Retention, Managed Disks, NAT Gateway, Network Watcher, P2S VPN, PostgreSQL, PowerShell, Premium SSD, S2S VPN, SAP HANA, Shared Image Gallery, Site-to-site VPN, SMB Multichannel, SQL Server Reporting Services, SSRS, Storage Account, Unified Connection Monitor, Virtual Network, VNet Peering, VPN - Article Type: Overview November has come and gone but for those looking to catch-up on Azure, here's what you need to know. It’s not even 4:30PM as I write this and it’s dark outside my office. Winter has come. The night is dark and full of ... Azure VM and SAP HANA backup news ... ok, it’s full of terrors. Azure Bastion & VNet Peering If you have virtual machines running in The Cloud, then you need to be able to log into them over a network connection via RDP or SSH. Those who are new to network security, The Cloud, or just don’t care about security, will likely just connect directly to those machines across the Internet, possibly without any firewall. Various innovations have appeared to secure SSH and RDP access to Azure virtual machines but some of us settled on the use of a Remote Desktop Gateway (RDGW) to “air gap” or bounce into IaaS in the cloud. RDGW is far from perfect: It requires more virtual machines. Multi-factor authentication (MFA) with Azure AD is not a smooth experience, administration or operations-wise, using Network Policy Server with the Azure AD MFA extension. There just isn’t a good story for third-party vendor support. When Azure Bastion preview was announced, I hoped that it would end the need of RDGW. Alas, that was not the case. I work with enterprise clients that run hub & spoke architectures. Running a Bastion in every spoke would be too expensive. But now a preview release of inter-subscription VNet peering support has been launched for Bastion. Things are not perfect! The Bastion resource must... --- ### Widespread Criticism of Microsoft Productivity Score is Unfounded > People are certainly getting hot and bothered about Microsoft's Productivity Score feature. But the facts are that usage data has been available for years. - Published: 2020-12-01 - Modified: 2024-09-04 - URL: https://petri.com/widespread-criticism-microsoft-productivity-score-unfounded/ - Categories: Microsoft 365, Office - Tags: Microsoft Graph, Office 365 usage reports, Privacy, Productivity Software - Article Type: Opinion Intrusive Usage Data Exposed in Microsoft 365 Admin Center Over the past few week or so, a bunch of news reports have emerged about the new Microsoft 365 Productivity Score feature (Figure 1), which was announced at the Ignite 2019 conference before achieving general availability in October 2020. In the Microsoft blog, CVP Brad Anderson said: “Productivity Score focuses on two areas – the Employee Experience and the Technology Experience, which provide visibility into how your organization works, insights to identify where you can make improvements, and actions you can take to update skills and systems so everyone can do their best work. ” Image 1 Expand Figure 1: Productivity Score analyzes different aspects of tenant activity (image credit: Tony Redmond)   That’s not quite the view taken outside Microsoft. The Guardian newspaper in the UK said that the tool “allows managers to use Microsoft 365 to track their employees’ activity” while Business Insider led its report with the assertion that the tool “lets your boss track how much you use email, Teams, and even whether you turn your camera on during meetings. ” It seems like most reports picked up on the views of Austrian researcher Wolfie Christl, who called Microsoft 365 a “full-fledged workplace surveillance tool,” something explicitly denied by Microsoft CVP Jared Spatero who emphasized that “Productivity Score is not a work monitoring tool. ” Privacy is Important Privacy is an important topic that needs to be taken seriously. The complaint in the 2018 Data Protection Impact Analysis (DPIA)... --- ### Microsoft Begins Testing 'Windows Feature Experience Packs' - Published: 2020-11-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-testing-windows-feature-experience-packs/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Windows 10, Windows Feature Experience Pack - Article Type: News Microsoft is testing out a new way to update features in Windows 10 with Windows Feature Experience Pack. The Insider Program was initially started as a way for Microsoft to establish a beta testing group to pilot new features and updates before releasing them to the general public. While we are typically accustomed to seeing new builds of the OS being pushed out, the company is starting to try something a little bit different. Rather than an entire build, Microsoft is releasing to Insiders a new “Windows Feature Experience Pack”. What is this pack and how does it work? Let’s dig in. The idea is that over the years, Microsoft has de-coupled many features in Windows 10 from the OS itself. As an example, Edge is now independent of the OS but more nuanced features like Snipping Tool and the touch keyboard are independent too. To make it easier to only update apps/features that are not tied directly to the OS, Microsoft is now testing Windows Feature Experience Pack. As you likely assumed by now, these packs update features of the OS without touching the build of Windows 10; think of this as a streamlined way to rapidly update features between releases. This specific pack is called Windows Feature Experience Pack 120. 2212. 1070. 0 and I can only hope that when the final product is released, it has a more friendly name. On paper, it sounds like a good idea, and hopefully, in practice, it works out well too. The downside could be confusing for users who are needing help as they could be running Windows 10 version 20H2 with... --- ### Microsoft To Launch New Surface Pro in January - Published: 2020-11-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-launch-new-surface-pro-in-january/ - Categories: Hardware - Tags: News, Surface, Surface Laptop, Surface Pro 8 - Article Type: News Microsoft is preparing to launch new Surface hardware early next year. Every fall for the past couple of years, Microsoft has held a hardware event where they have unveiled everything from phones to fitness devices, and this year, a lower-priced laptop, the Laptop Go. But missing from that announcement was a refresh of the Surface Pro and Surface Laptop. Both of those devices are really starting to show their age. Microsoft has been sitting on a Surface Pro re-design for more than a year and the Surface Laptop is using an AMD chip that is very hard to recommend; the Intel version of the Laptop (and Pro, which only uses Intel) is a much easier device to suggest. Images of the new devices leaked on Twitter and as you can see, not much has changed. But as we make our way through the holiday season of 2020, it’s clear the Pro 8 and Surface Laptop 4 are not arriving this year. Thankfully, if you want the Surface Pro 8, you will not have to wait too much longer but the Laptop 4 might be a bit later than the Pro 8. According to multiple sources familiar with Microsoft’s plans, the company should be releasing the Pro 8 in late January as long as the timeline doesn't slip but the Laptop 4 may not arrive at that time. Expect a quiet update as well as these are a refresh of the hardware and not overhaul of either the Laptop or the Pro. Microsoft will use the newer 11th generation chips from Intel... --- ### SMB Compression Lowers Bandwidth and Improves Copy Times in Windows Server and Azure - Published: 2020-11-27 - Modified: 2024-09-04 - URL: https://petri.com/smb-compression-lowers-bandwidth-and-improves-copy-times-in-windows-server-and-azure/ - Categories: Windows Server - Tags: Azure Files, File and Print Services, Windows 10, Windows Server - Article Type: News SMB Compression improves speeds and lowers bandwidth utilization when copying large files across the network. SMB compression is a new feature in Windows that lets you turn on inline compression when copying or moving files across a network. SMB, or Server Message Block, is a protocol used to transfer files over a network. SMB compression is primarily intended for use with Windows Server and Azure Files, but it is built-in to the SMB 3 specification and it can be used on client devices as well. SMB Compression lowers bandwidth and decreases operation times when copying large files like virtual machine disks, uncompressed graphics and video, scientific data, and other large file types that cause network congestion. Using inline whitespace compression to transfer files, SMB Compression benefits performance with very compressible file types. The only caveat is that SMB Compression doesn't work on RDMA network cards in SMB Direct mode. But Microsoft says it's looking to support this scenario in the future. Compression supports Hyper-V Live Migration with SMB, and the Robocopy and Xcopy command-line tools. It is already available with Robocopy and Xcopy in Windows Server vNext preview and Windows 10 20H2. If the destination device supports SMB Compression, file transfers should see significant performance improvements. Measuring SMB Compression performance Copying an uncompressed 10GB file across a 1G Ethernet network using Robocopy takes about 2 minutes without compression. If you add the /compress switch, you can expect the same operation to take roughly 20 seconds with a similar load on the CPU. Operations that copy already compressed files, like JPEG images, will not... --- ### How the Microsoft 365 Substrate Powers Intelligent Search > The Microsoft 365 substrate is the foundation underpinning how Microsoft 365 applications deliver intelligent search resuilts to users. - Published: 2020-11-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-substrate-intelligent-search/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Microsoft 365 substrate, Office 365 substrate - Article Type: News, Opinion Refreshing the Substrate Last year, I wrote about the Office 365 substrate, a little understood but critical component of how Microsoft is developing their cloud services. That article followed a talk by Microsoft Fellow Jeffrey Snover at the Ignite 2019 conference. Now boasting the title of CTO for Modern Workforce Transformation, Snover recently explored the same topic at the Microsoft Higher Education conference. His remarks helped me understand some additional aspects about the Microsoft 365 substrate. Perhaps these notes will help others get to grips with this important topic. The Substrate Holds Everything The basic thing to understand about the substrate is that every piece of data in an Office 365 tenant is stored in it. The data is either native to the substrate or a digital twin replicated from another store, like the Teams message store in Azure Cosmos DB or SharePoint documents from Azure SQL. When items come from another store, they are often a subset of the original which contain just the information needed to support functions like search and information protection. If you go poking into the innards of Exchange Online mailboxes with a program like MFCMAPI, you can see some of this data in hidden folders. For instance, the GraphWorkingSet folder holds subset items with pointers in properties like FileId and GraphNodeId. The result is that the substrate is a single repository for everything in a tenant. Snover calls the substrate a planetary scale data system. Its physical implementation is in Exchange Online... --- ### The Microsoft ISV Market is Heating Up - Published: 2020-11-23 - Modified: 2020-11-23 - URL: https://petri.com/the-microsoft-isv-market-is-heating-up/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News In the past two weeks, two major acquisitions have shaken up the Microsoft 365 ISV market. Every year at Microsoft’s partner conference that takes place in July, the company always touts how for every dollar that the company makes, their partners make a multiple of that figure. The marketplace that exists to help customers migrate, manage, and utilize Microsoft 365 software and services is extensive and fiercely competitive. Here at Petri, we work with many of these ISVs (independent software vendors) to help highlight or promote their solutions to our readers as we believe these vendors set a high-water mark for functionality, value, and service. And in the past few weeks, there have been two significant moves that are worth highlighting. Announced today, AvePoint who you may recognize as Dux is a co-host on Enterprise Dish, announced that they are going public via a $2b merger. The company is merging with Apex Technology Acquisition Corporation which is a SPAC (explainer) that will take the company public under the symbol of AVPT. After the merger closes, the combined company will be led by Dr. Tianyi Jiang, AvePoint’s co-founder and CEO, and AvePoint co-founder Kai Gong will serve as Executive Chairman. As of September 30th, the company reported 7 million cloud users. In addition to the AvePoint news, Quadrotech announced about two weeks ago that they had been acquired Quest. Looking to bolster its management and migration solutions for Microsoft 365 users, Quadrotech’s NOVA platform will be integrated into Quest’s portfolio of solutions. As more and more users move to Microsoft 365, the market for ISVs will continue... --- ### Four Common Disaster Recovery Myths - Published: 2020-11-20 - Modified: 2020-11-20 - URL: https://petri.com/four-common-disaster-recovery-myths/ - Categories: Backup & Storage, Cloud Computing, Data Management - Tags: Backup, Cloud, Disaster Recovery - Article Type: Overview Most organizations have finally been convinced about the need to have a robust disaster recovery (DR) plan to protect their essential workloads. That’s due in a big part to the fact that almost everyone in IT is all too familiar with Murphy’s Law that states if something can go wrong it will go wrong and that other old IT axiom of,  it’s not if something is going to fail – it’s when it’s going to fail. While you may not need a DR plan most of the time, there definitely will come an instance when you will. A recent Gartner report showed that around 80% of businesses faced an incident in the last few years that required the use of their DR plan. While the need for DR is pretty well established, there are still a number of myths about DR that can hinder a successful implementation. Let’s tackle some of these DR myths. Our business doesn’t really need a DR plan -- Some organizations have this mindset because they are in an area where natural disasters seldom occur.  However, that doesn’t mean that your business is safe from other types of events. For instance, your business could be brought down by cyberattack or ransomware or even the possibility of fire. Plus, disasters and data loss can also be caused by human error. One prime example of that was experienced by British Airways back in 2017 when their entire operations were brought down by an engineering error that resulted in... --- ### Determining Azure Blob Storage Access Tiers with Ease - Published: 2020-11-19 - Modified: 2025-02-14 - URL: https://petri.com/determining-azure-blob-storage-access-tiers-with-ease/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, blog, Microsoft, storage - Article Type: How To One of the things that is rather powerful about Azure Storage is that there are a number of different offerings. Azure Blob Storage has three tiers that should be very familiar Hot, Cool, and Archive. One of the things that is rather powerful about Azure Storage is that there are a number of different offerings. Azure Blob Storage has three tiers that should be very familiar Hot, Cool, and Archive. If you haven’t seen this Microsoft Docs post about the Azure Storage Tiers, I recommend you give this a quick read. Hot and Cool are rather straightforward in their use case, but Archive is the one I’d like to bring some attention to. Archive is a special use case in Azure in that it has different retrieval costs, different retrieval times and more. I like to explain it as write once, read never, but never say never. Determine which Azure Blob Access Tier is in Use Azure Blob Storage Access Tiers are set a number of ways, either how a data blob is made or by being inferred by the folder or container properties at a parent level. One of the easiest ways to set, view and manage Azure Storage outside of the Azure Portal is via the Azure Storage Explorer.  By the way, if you want an insider tip to know what’s coming from this cool tool, subscribe to this GitHub project for updates before the Azure Storage Explorer tool is updated. The figure below is the Azure Storage Explorer: Image #1 Expand The most handy part of the Azure Storage Explorer is the Access Tier column, this is very helpful to discern what type of Azure Storage Tier is assigned to a blob,... --- ### No Question That MFA Should be Used, But Is It Time to Dump SMS? > There's no question about using MFA to protect Azure AD accounts. The only issue is to use SMS or app-based authentication. - Published: 2020-11-19 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-mfa-sms-app/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office - Tags: Azure AD, MFA, Multi-Factor Authentication - Article Type: How To, Opinion SMS and Voice MFA Methods in Microsoft’s Crosshairs On November 10 Alex Weinert, the Director of Identity Security at Microsoft, posted It's Time to Hang Up on Phone Transports for Authentication. The article argues that it’s time to consider dumping the SMS and voice methods for multi-factor authentication (MFA) in favor of passwordless strong authentication such as that available through the Microsoft authenticator app. As Weinert points out, the debate is not about MFA, which is an essential part of protecting any account which supports this capability. It’s solely about using the most secure MFA method. SMS is probably the most-popular method for Azure AD accounts enabled for MFA. As noted in an earlier blog, Microsoft believes that MFA-protected accounts are 99. 9% less likely to be compromised, so upgrading accounts to use MFA is clearly an important line of defense for any Office 365 tenant. The Problem with Phone Authentication Weinert builds his case against SMS and voice authentication around weaknesses in the phone system (both PSTN for voice and largely GSM for SMS). He notes that the text and voice messages carried by these systems to allow users to authenticate are limited and can’t be updated for better security. The messages are transmitted in the clear and don’t support encryption. They are easily attacked through social engineering, can be slowed by poor operator performance, and deliver poor context to the end user. App-based Authentication Inside of using SMS or voice messages, Weinert argues for app-based authentication. For... --- ### Get-WinEvent - Search the Windows Event Log with PowerShell > The PowerShell Get-WinEvent cmdlet allows you to quickly search for just what you want to find in the Windows Event Log. - Published: 2020-11-18 - Modified: 2025-03-05 - URL: https://petri.com/get-winevent/ - Categories: PowerShell - Tags: featured-top-right, How To, PowerShell - Article Type: How To PowerShell offers native cmdlets that allow you to quickly search for just what you want to find in the Windows Event Log. The ability to filter results and return just what is needed helps to focus your troubleshooting efforts in just the right place. The PowerShell Get-WinEvent cmdlet allows you to quickly search for just what you want to find in the Windows Event Log. The ability to filter results and return just what is needed helps to focus your troubleshooting efforts in just the right place. Searching the Event Log using the PowerShell Get-WinEvent cmdlet Get-WinEvent retrieves the Event Log entries based on the parameters that you pass. Let's demonstrate the basic searching of the Application event log. By default, the Get-WinEvent cmdlet will return the newest entry, this can be reversed by passing the -Oldest parameter. As you can also see, by default, the events are grouped by the provider. ​Get-WinEvent -LogName 'Application' -MaxEvents 10 Using Get-WinEvent in PowerShell to search the Windows Event Log (Image Credit: Adam Bertram/Petri. com) To list all available logs for you to search, you can use the -ListLog * parameter as shown below. Keep in mind that there will be a lot of logs. You may also see logs that have an error, this is typically because those logs are only accessible by the administrator account. If you run PowerShell elevated, you should not see this error. ​$Results = Get-WinEvent -ListLog *$Results | Select-Object -First 15 Showing the first 15 results from the available event logs (Image Credit: Adam Bertram/Petri. com) By saving the logs to a variable it decreases the time needed to search for the correct log, later on, which also weeds out logs that may be inaccessible due to access. Filtering search results using... --- ### Microsoft's Ambitious Plan to Secure Windows 10 From Physical Vulnerabilities - Published: 2020-11-17 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-ambitious-plan-to-secure-windows-10-from-physical-vulnerabilites/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Windows 10 - Article Type: News When it comes to security, the list of ways that attackers can steal information from your environment is growing at a rate faster than researchers can plug the holes. If you need any proof of this, take a look at how frequently Microsoft is patching Windows. It’s not completely fair to call out Microsoft in this way, every piece of software that is used in the enterprise is frequently patched or worse, left open and exposed. It is the nature of the beast, we need more complex software to run operations efficiently but that complexity and integration creates more potential weaknesses for attackers to exploit. But one of the evergreen challenges is that securing software and hardware from remote attacks has been easier to manage but when an attacker has physical access to a device, keeping it secure is nearly impossible. That’s the task that Microsoft taking on with Pluton and they are working with AMD, Intel, and Qualcomm to bring it to market. Image #1 Expand Image Credit: Microsoft Up to today, for Windows, TPM has been the hardware component utilized in modern devices to securely store keys and data that verify the integrity of the system. But the downside to TPM setups is that when an attacker has physical access to a device, attackers can target the communication BUS between the TPM and the CPU. To resolve this issue, Microsoft says that Pluton will remove the communication channel and build the security hardware directly into the CPU. At... --- ### How to Import and Export Delimited Files, like CSV, in PowerShell - Published: 2020-11-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-import-and-export-delimited-files-like-csv-in-powershell/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To The Export-CSV and Import-CSV cmdlets are exceptionally useful tools to both export data for consumption to other applications and to retrieve and import information from third-party data sources. The Export-CSV and Import-CSV cmdlets are exceptionally useful tools to both export data for consumption to other applications and to retrieve and import information from third-party data sources. Any time that one has to deal with data, there are several considerations to take into account, and these cmdlets help you to deal with those edge cases and issues that may arise. The Export-CSV Command First, let's take a look at how to export data from normal PowerShell objects to a CSV file. CSV stands for comma-delimited values and is the most common format. You can use most any other type of delimiter, but for the purposes of this article, all files will be referred to as CSV. First, let's set up a data series of data objects that we will then export to a CSV file. ​$i = 0 $Objects = 1. . 10 | ForEach-Object { @{ "ObjectID" = $i "Property1" = "Value1" "Property2" = "Value2" } $i++ } $Objects | Export-CSV -Path "C:\Articles\export. csv" Once this code is run, you can open up the resulting file in Excel, or in Notepad, and see that the properties are comma-delimited.   Image #1Expand Exported CSV file from PowerShell. There may be situations where different systems want the resulting export file in different formats. Usually this revolves around the delimiter used and the quoting of values within the file. As you can see in the default example, all headers and values are quoted. This may not always be desirable or needed. First, let's take... --- ### Microsoft Highlights Important Security Topics in National Cybersecurity Awareness Month - Published: 2020-11-16 - Modified: 2020-11-16 - URL: https://petri.com/microsoft-highlights-important-security-topics-in-national-cybersecurity-awareness-month/ - Categories: Security - Tags: Malware, Microsoft Defender, News, Ransomware, Security, Windows 10 - Article Type: News Microsoft uses National Cybersecurity Awareness Month to highlight import security issues to help raise awareness with its customers. Last month was National Cybersecurity Awareness Month (NCSAM). But just because we've moved into November, that doesn't mean security is no longer important. Microsoft used NCSAM as an opportunity to highlight import security issues and help raise awareness with its customers to improve their security posture. Vasu Jakkal, Corporate Vice President for Security, Compliance and Identity, wrote: Most of us think we’re too smart to fall for a phishing scam, and our confidence only grows when we’re logged onto a company network. Statistics show that nearly one in three security breaches starts with a phishing attack, costing the affected organization an average of $1. 4 million. With the rise in people working from home, new attacks such as consent phishing have cropped up to take advantage of remote workers dealing with home-life distractions. Jakkal takes an interesting position on the use of artificial intelligence (AI) and people in cybersecurity. Jakkal says that AI is one of the most effective tools for combating cybersecurity threats. But that effective AI also requires a diverse set of experiences, including gender, ethnic diversity, cultures, opinions, and many other factors. If a team consists of only those from the same background with similar skills, it risks losing creativity and making poor decisions. Microsoft has a blog post on the subject here. Jakkal says that diverse teams can create AI systems that people trust to protect IT assets and data. On a more practical note, Microsoft emphasized different ways organizations can improve security using its... --- ### Teams Extensibility for Meetings Has Arrived, Oakdale becomes Dataverse for Teams - Published: 2020-11-16 - Modified: 2024-09-04 - URL: https://petri.com/teams-extensibility-for-meetings-has-arrived-oakdale-becomes-dataverse-for-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft 365, News, Teams - Article Type: News With more than 115 million daily users of Teams, the platform is the communication hub for Microsoft 365. And today, the company is announcing a couple of updates that they hope will make the collaborating experience a little bit better with nearly 20 new apps for meetings coming to the Teams apps store. Microsoft is announcing today that the functionality that enables third-party apps to be integrated into your meeting experience has reached general availability. This means that apps from services like Asana, HireVue, Monday. com, Slido, and Teamflect can now be utilized during meetings to make it easier to keep your workflow inside the meeting window, rather than having to jump around the app to accomplish a task. These applications are important not only for users but also for Microsoft. The company is working to build out a robust set of tools and functionality enabled by third-parties inside of Teams so that the platform can transition from an Office 365 productivity hub to your entire workflow being isolated inside the app. In addition, Microsoft is making a bunch of its ‘Power’ tools and services generally available. The Power Apps app for Teams provides a maker studio where you can manage app data and connections, and build and modify your app interface. The Power Automate app for Teams contains a simplified workflow designer and a number of templates to help any user get started automating routine tasks. The Power Virtual Agents app for Teams lets you build, deploy and manage low... --- ### Analyzing Delayed Roll-Outs for New Office 365 Features > Microsoft delays some new Office 365 features for different reasons.It seems like a lot of Teams features are delayed, but is this true? - Published: 2020-11-16 - Modified: 2024-09-04 - URL: https://petri.com/analyzing-delayed-office365-features/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft 365 Admin Center, Microsoft 365 message center, Office 365 notification, Service Communications API - Article Type: How To How Microsoft Advises Tenants About New Features During a recent discussion, I was asked why Microsoft seems to publish so many incorrect roll-out dates for new Teams features. While my gut feel was that it certainly seems like some Teams features are delayed, some evidence was needed to prove or disprove the case. When Microsoft is ready to deploy a new feature to tenants, it posts a notification in the Microsoft 365 message center for the tenants affected by the change. Each notification has a unique identifier, like MC212453 (the new Teams calling and meeting experience). In fact, some updates never warrant a notification, usually because Microsoft deems the update to be too minor to justify telling customers about the change. Leaving that point aside, let’s assume for the purpose of this exercise that what shows up in the message center is a good guide to the deployment of new features. Understanding Notifications As I write this on November 11, the message center shows 205 notifications for my tenant. Depending on the geography your tenant is located in, the products used, and licenses, you might see a different number because notifications are issued to relevant tenants, not all. Each notification has a start or publication date. It also has an end date, or when the notification is removed from the message center. Some notifications are marked as high importance, meaning that they might have a significant effect on users. Administrators can archive notifications as they wish, usually if... --- ### Paul Thurrott's Short Takes: November 13 2020 - Published: 2020-11-13 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-13-2/ - Categories: Cloud Computing, Microsoft 365, Microsoft Teams - Tags: News - Article Type: Opinion Because it’s Friday the 13th, this edition of Short Takes looks at the Xbox Series X|S launch, the .NET 5.0 launch, a new Microsoft employee who created Python, a former Microsoft employee who stole $10 million from the company, and so much more. Because it’s Friday the 13th, this edition of Short Takes looks at the Xbox Series X|S launch, the . NET 5. 0 launch, a new Microsoft employee who created Python, a former Microsoft employee who stole $10 million from the company, and so much more. Microsoft launches a new video game console generation For the first time in seven years, Microsoft has launched a new generation of video game consoles with the beefy Xbox Series X and the svelte Xbox Series S. Unfortunately, the launch was marred by pre-order glitches and little availability on launch day, leaving many fans disappointed. And there are literally no new, exclusive games for the consoles because of Microsoft’s new strategy to let gamers play wherever they want; instead, all we can do is play the same games that work on Xbox One, but with slightly better performance and graphics. Still, it’s nice to see the software giant take a technological lead in this market for literally the first time ever. And Microsoft promises to have more consoles in stores---online and at retail---throughout the holidays and specifically on Black Friday. So if you want to wake up to a new Xbox under the Christmas tree---or whatever holiday you do celebrate---this year, there’s still hope. “GameStop will have at least two Xbox Series X consoles per store at opening on Black Friday” Two. Microsoft delivers . NET 5. 0 While it’s still really hard to explain what . NET is to normal people---it’s an apps platform and developer framework, he says... --- ### Patch Tuesday – November 2020 - Published: 2020-11-12 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-november-2020/ - Categories: Security - Tags: Microsoft Exchange, News, Patch Tuesday, Windows 10 - Article Type: News Microsoft patches 112 bugs, including a zero-day for the Windows kernel. This month Microsoft patches a Windows kernel zero-day flaw that is being exploited by hackers. Excel, SharePoint and Exchange Server also get patches for remote code execution (RCE) flaws. Common Vulnerability Scoring System Microsoft has updated its Security Update Guide to better comply with the Common Vulnerability Scoring System (CVSS). CVSS provides a precise way to describe vulnerabilities with details like attack vector, complexity, and whether a hacker needs elevated privileges to run a successful attack. Previously, Microsoft provided three-paragraph descriptions of each vulnerability. In the new Security Update Guide, score metrics for different attributes are used to describe bugs instead. The new scoring systems appears to make sense in many ways. But it does mean that unless the details are revealed elsewhere, I won't be able to provide descriptions of how bugs could be used to exploit Windows. Image #1 Expand Patch Tuesday – November 2020 (Image Credit: Microsoft) Windows and Windows Server Following an update (CVE-2020-15999) from Google for its Chrome browser in October, Microsoft released a patch for a zero-day (CVE-2020-17087) in the Windows kernel that in combination with the Chrome flaw, could be used to gain access to a system. It's not rated critical because the bug by itself cannot be used to elevate privileges. So, users not logged in with administrator accounts are at less risk. Regardless of the rating, CVE-2020-17087 is already being actively exploited in the wild so it's important to get your systems patched. Out of the patches rated critical... --- ### Play My Emails Goes International > Outlook Mobile's Play My Emails feature is now available internationally after Microsoft deployed the necessary services in non-US Office 365 datacenters. - Published: 2020-11-12 - Modified: 2024-09-04 - URL: https://petri.com/play-my-emails-international/ - Categories: Microsoft 365, Office, Outlook - Tags: News, Outlook Mobile, Play My Emails - Article Type: News Launched in 2019 for the U. S. Microsoft introduced Play My Emails in Outlook mobile (initially iOS, now for Android too) at the Ignite 2019 conference. I was excited at the notion of being able to process email in a different way. The promise was that a natural voice would generate an intelligent readout of messages with language recognition to support commands to process messages and calendar events. I was subsequently sadly disappointed when I discovered that Play My Emails was restricted to mailboxes hosted in the U. S. datacenter region. According to Microsoft representatives at Ignite 2019, the dependency limiting access was the Cortana service, which had to run in the datacenter alongside Exchange Online to make it possible to process voice commands. The role of Cortana is critical for voice-driven services like this, not least to ensure that customer privacy and compliance concerns are taken care of. See this page for more information about Cortana services. Making Play My Emails More Broadly Available. Roll forward a year and Microsoft announced the extension of Play My Emails beyond the U. S. and said: “we will extend Play My Emails to customers in Canada, the United Kingdom, Australia and India in the coming months. ” Confirmation of the move is in Office 365 notifications MC224750 and MC224720 (both 21 Oct) with the deployment to the new countries expected in early November for both Outlook for iOS (Microsoft 365 roadmap item 71039) and Outlook for Android (Microsoft 365 roadmap item 71375). Originally, Microsoft... --- ### Using PowerShell to Delete Files and Folders > In this article, we explore how to delete files and folders in PowerShell, and what limitations exist. Simple as a deletion of a file or folder is, it is important to understand how to perform this operation in PowerShell to delete process files, temporary files, or clean up sensitive data. - Published: 2020-11-11 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-to-delete-files-and-folders/ - Categories: PowerShell - Tags: How To, PowerShell - Article Type: How To Looking for a simple and easy way to delete content with PowerShell? Here you go. In this article, we explore how to delete files and folders in PowerShell, and what limitations exist. Simple as a deletion of a file or folder is, it is important to understand how to do this operation in PowerShell. Many business processes rely on a combination of file operations and inevitably need to delete process files, temporary files, or clean up sensitive data. Delete files and folders using PowerShell Following the typical PowerShell noun-verb convention, to delete either a file or folder, you will use the Remove-Item cmdlet. Delete a single file using PowerShell Remove-Item cmdlet To remove a file, simply pass the filename to be removed via the -Path parameter, or as the first argument. With a successful operation, you will not receive an output message. Therefore, for this example, we are passing the -Verbose parameter to show that the file we intend to remove has been removed. Remove-Item -Path File2. txt -Verbose Delete a file using the PowerShell Remove-Item cmdlet Delete a single folder To remove a directory, the same command is used, but with the -Recurse parameter. The -Recurse parameter is necessary if the directory is not empty, otherwise Remove-Item will prompt you for confirmation on every item contained in the directory. ​Remove-Item -Path C:\Articles\Folder1 -Recurse -Verbose Image #1 Expand Delete a folder using the PowerShell Remove-Item cmdlet Delete multiple files using PowerShell To delete multiple files in a specified location, you just need to add /*. * to the... --- ### How to Copy Active Directory Users with PowerShell - Published: 2020-11-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-copy-active-directory-users-with-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell - Article Type: How To Using the New-ADUser cmdlet and -Instance parameter, you can copy AD attributes from an existing user when creating new Active Directory user accounts. Creating new Active Directory (AD) users with PowerShell is easy using the New-ADUser cmdlet. But there are a lot of attributes that you might need to set every time you set up a new user account in AD. For example, you might want to set the user's office address, department, job title, and other details. With the help of the -Instance parameter and the New-ADUser cmdlet, you can copy AD attributes from an existing user when creating new accounts. Create a template account Let's start by creating a user account, called 'Accounts User', that has all the attributes set for subsequent users. I'm going to set the following attributes: StreetAddress City Title PostalCode Office Department Manager Even though 'Accounts User' will just act as a template for new users, we need to set a password so that the account meets the password policy requirements of AD. Additionally, New-ADUser requires the password to be passed as a secure string, so we'll use ConvertTo-SecureString to convert the plaintext password. New-ADUser -Name 'Accounts User' -SamAccountName accountsuser -AccountPassword (ConvertTo-SecureString Pas$W0rd! ! 12 -AsPlainText -Force) -StreetAddress '5 New Street' -City London -Title 'Junior Accountant' -PostalCode 'E1 4RN' -Office London -Department Accounts -Manager 'CN=Russell Smith,OU=Accounts,DC=ad,DC=globomantics,DC=uk' Copy account attributes using the -Instance parameter Now that the template user has been created, we should create a variable ($newuserattributes) containing an object that represents the template user account (Accounts User) with only the attributes we want to copy. Some attributes, like badPwdCount and lastLogon, cannot be copied. So, specifying only... --- ### GET-IT User Management Virtual Conference is Happening Right Now - Published: 2020-11-10 - Modified: 2020-11-10 - URL: https://petri.com/get-it-user-management-virtual-conference-is-happening-right-now/ - Categories: GET IT - Tags: GET-IT User Management - Article Type: News Today is the day, Petri's GET-IT User Management is happening right now and you can watch it here on Petri's conference hub. Today is the day, Petri's GET-IT User Management is happening today and you can watch it below or join us in the chatroom where our speakers can answer your questions.  --- ### Updated Compliance Assessment Report Released for Microsoft 365 > An updated assessment of Microsoft 365 compliance capabilities is available. It contains some good information, but it also includes some errors. - Published: 2020-11-09 - Modified: 2024-09-04 - URL: https://petri.com/updated-compliance-assessment-report-microsoft-365/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Cohasset Associates, Compliance, Regulatory Records - Article Type: Opinion   In late October, Microsoft released a compliance assessment report written by Cohasset Associates to compare Microsoft 365 services against the requirements of U. S. financial regulations. The report covers SharePoint Online, OneDrive for Business, Teams, Exchange Online, and Skype for Business Online, but excludes Stream, OneNote, and Planner because these apps do not support retention policies. Yammer is also excluded. In addition, the report focuses on email and files and excludes media like lists, whiteboards, and so on. The report is available to Microsoft 365 tenants on the Service Trust portal. According to Microsoft, the report is: “an updated and expanded assessment of Microsoft 365 services against SEC Rule 17a-4(f) and FINRA Rule 4511(c), including SharePoint, OneDrive, Teams, Exchange, and Skype. This assessment examines new features that enable Broker-Dealers to retain their regulated books & records in select Microsoft 365 services in a compliant, secure, and immutable manner. ” The report is an update from a version released in January 2019. Like other reports of the type. Microsoft funded its production. This doesn’t make the report any better or worse, but it’s something to remember. Dry but Valuable Information Compliance reports can often be dry reading, and this is no exception. The intent is to assess how Microsoft 365 retention measures up against regulatory requirements to maintain books and records on electronic media, so it was never going to be a potboiler novel. Nevertheless, this is important information for compliance officers and others who manage records for financial institutions... . --- ### Understanding How Azure Sentinel and Entity Behavior Analytics Deliver Actionable Intelligence - Published: 2020-11-06 - Modified: 2024-09-04 - URL: https://petri.com/azure-sentinel-user-and-entity-behavior-analytics-delivers-actionable-intelligence-on-user-threats/ - Categories: Compliance, Microsoft Azure, Security - Tags: Azure Sentinel, cloud computing, Microsoft Azure, SIEM - Article Type: News UEBA can identify unusual activity and help SOC teams identify if there is a compromised entity or a malicious insider. At Ignite in September, Microsoft announced the availability of User and Entity Behavior Analytics (UEBA) in preview for Azure Sentinel. UEBA takes user data from Azure Active Directory (AD), and combined with logs and alerts from connected data sources, it builds baseline behavioral profiles for entities like Azure AD users, hosts, IP addresses, and applications. Using behavior analytics and machine learning, UEBA can identify unusual activity and help SOC teams identify if there is a compromised entity or a malicious insider. Microsoft says that additionally, UEBA can work out the relative sensitivity of your assets, peer groups of assets, and tell you the possible impact if a given asset gets compromised. Microsoft calls this an asset's 'blast radius'. With the extra information that UEBA provides, SOC teams can better prioritize investigation and incident response. Before using the UEBA preview, you need to enable synchronization of Azure AD users and entities to create profiles for them in Sentinel. Once that's done, configure some data sources to populate Sentinel with data like security logon events, Azure AD audit and sign-in logs, and Azure activity logs. The data sources you select will be processed, enriched, and profiled by UEBA. For more information on how to set up Azure Sentinel and add data sources, check out Monitor Windows Server Security Using Azure Sentinel Part 1 – Set Up a Workspace and Data Connector on Petri. The profiles that UEBA builds provide a unified view of your organization's entities. The SOC team can... --- ### GET-IT: Free User Management 1 Day Virtual Conference Happens Nov 10th - Published: 2020-11-05 - Modified: 2024-09-04 - URL: https://petri.com/get-it-free-user-management-1-day-virtual-conference-happens-nov-10th/ - Categories: GET IT - Tags: GET-IT, GET-IT User Management Petri's GET-IT: User Management 1-Day virtual conference is a full day of free learning dedicated to technical user management and related content. Petri's GET-IT: User Management 1-Day virtual conference is a full day of free learning dedicated to technical user management and related content. Throughout the day you will hear from Microsoft MVPs and industry experts about how to take full advantage of the tools already available to you. During this free day of learning, we will be streaming to YouTube, Twitter, Facebook, Petri. com, and other locations to make it easy for you to watch User Management Day wherever it is most convenient for you. And who will be speaking? On the docket, we have, Steve Goodman, Todd Klindt, Russell Smith, Darren Mar-Elia, Bob Bobel, Doug Hazelman, and more. These respected MVPs and industry experts will dive into various areas of Active Directory, PowerShell, Azure Active Directory, Group Policy, and other topical areas. And not just MVPs, we will have other Petri Community experts from CoreView, Alsid, and Cayosoft sharing the knowledge they have gained from their implementations too. Why User Management? With the explosive growth of remote work during the past eight months, making sure that your users are on-boarded correctly, collaborating securely, and organized efficiently, is more important than ever. With the event about three weeks away, you can head over to our landing page to learn more about the sessions and connect with the speakers. And be on the lookout for additional updates before the event too, including more sessions. --- ### New Details for Microsoft’s Upcoming ‘Cloud PC’ Uncovered - Published: 2020-11-05 - Modified: 2024-09-04 - URL: https://petri.com/new-details-for-microsofts-upcoming-cloud-pc-uncovered/ - Categories: Microsoft 365, Virtual Reality, Windows Client OS - Tags: Cloud PC, Microsoft, News - Article Type: News Microsoft's new 'Cloud PC' remote solution for Microsoft 365 is moving closer towards retail availability. A few months back, we started hearing about a new service coming from Microsoft called ‘Cloud PC’. As the name suggests, it’s like your own computer but in the cloud – or more specifically, your own personal desktop in the cloud. If you are thinking that this sounds a lot like Windows Virtual Desktop, you are not wrong, but this appears to be either an extension or an evolution of the product to make it easier to use, The solution will allow you to use your own device as the conduit to connect to your ‘Cloud PC’ where you can have access to all of your corporate content as well as the ability to easily scale up the hardware running your virtual device. Image #1 Expand First look at 'Cloud PC' Back in July, Mary Jo was able to dig up a few bits of information about Cloud PC and how Microsoft was framing the product: "modern, elastic, cloud-based Windows experience will allow organizations to stay current in a more simplistic and scalable manner". As you would expect, this product will be part of Microsoft 365 and licensing is expected to be on a per-user basis. And thanks to Walking Cat, we have a few more details to share about the upcoming service. For starters, there appear to be at least three tiers for your ‘Cloud PC’. Medium – 2 vCPUs, 4GB of RAM, 96GB SSD Heavy – 2 vCPUs 8GB of RAM, 96 GB SSD Advanced – 3... --- ### Assigning Rights in a Sensitivity Label for External Communications with PowerShell > Assigning rights in a sensitivity label with PowerShell is a great way to automate work when you need to update the settings for lots of entries. - Published: 2020-11-05 - Modified: 2024-09-04 - URL: https://petri.com/assigning-rights-label/ - Categories: Microsoft 365, Office - Tags: Get-Label, Office 365 Sensitivity Labels, PowerShell, Search-UnifiedAuditLog, Set-Label - Article Type: How To Rights Management and Protection Sensitivity Labels are built using Microsoft Information Protection (MIP) and are available to Office 365 users with E3 or above licenses. When a label protects a file or message with encryption, the ability to decrypt the item to reveal its content is governed by the rights assigned to the recipient as defined in the label settings. When you edit a label, you can assign rights such as the ability to edit or print a file to individual users and groups, everyone in your organization, all authenticated users, or people belonging to specific domains. Normally, a label will assign different sets of rights to different sets of people. It’s very flexible. The golden rule is that if the label assigned to an item doesn’t grant you the rights to open an item, you can’t. Many sensitivity labels are used internally to protect information which should stay within an organization and there’s no need to assign rights to external recipients. But if you create labels to protect sensitive information for sharing with customers and partners, the question invariably comes up about how to maintain the rights assigned in labels created for this purpose. You can certainly edit the labels through the Information Protection section of the Microsoft 365 compliance center, but that can get boring when you need to assign rights to many different organizations. Using PowerShell to Populate Rights Assignments Fortunately, you can update label settings by using the Set-Label PowerShell cmdlet, part of the... --- ### Fast User Switching Coming to Teams Desktop App in December - Published: 2020-11-04 - Modified: 2024-11-19 - URL: https://petri.com/fast-tenant-switching-coming-to-teams-desktop-app-in-december/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft 365, News, Teams - Article Type: News One of the biggest challenges with Teams today is that if you are part of multiple tenants, switching between them is a logistical nightmare. One of the biggest challenges with Teams today is that if you are part of multiple tenants, switching between them is a logistical nightmare. More than three years after its release, Microsoft is about ready to ship an update that will make this process significantly easier for desktop users (see update at the bottom of this post). In an update posted to the Microsoft 365 roadmap, spotted by onmsft. com, Microsoft is planning to push out an update in December that will make tenant switching much easier. Feature ID 68845 states “Teams users will be able to add additional accounts, change their profile picture, and switch between accounts and orgs through Settings. ” This will be a huge win for anyone managing multiple tenants and needs to quickly communicate with people across various organizations. Right now, the easiest way to accomplish this is with various browser sessions that are authenticated to each tenant but that should soon be a thing of the past. The first request for this feature first showed up in the Microsoft Teams feedback forum in November of 2016. While Microsoft did enable this functionality on its mobile apps, for desktop, those users have been left behind but that should all be changing in the not too distant future. Before we get too excited, this may be related to switching to personal accounts and not other tenants based on another item on the roadmap for Microsoft 365. --- ### Everything You Need to Know About Azure Infrastructure – October 2020 Edition - Published: 2020-11-04 - Modified: 2020-11-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-october-2020-edition/ - Categories: Microsoft Azure - Tags: App Services, Application Insights, Availability Zones, Azure, Azure Backup, Azure Cost Management, Azure Database for MySQL, Azure Files, Azure Hybird benefit Linux, Azure Key Vault, Azure Key Vault HSM, Azure Load Balancer, Azure Migrate, Azure Monitor, Azure Monitor Logs, Azure Portal, Azure Resource Mover, Azure Sentinel, Azure Site Recovery, Azure SQL, Azure Virtual Machines, BLOB, Cross Region Restore, Flexible Server, GitHub Actions, JEDI, linux, Log Analytics, Managed Disks, MySQL, networking, Oracle, Premium SSD, Private Endpoint, Private Link, Public IP Address, Pv3, RBAC, Regions, Role-Based Access Control, SAP HANA, Security, Soft-Delete, Spot Virtual Machines, SQL Server, storage, Storage Accounts, Traffic Analytics, Virtual Networks, Zone Redundant - Article Type: Overview October, the first month in Q4 of the calendar year and Q2 of the Microsoft financial year, is also in the middle of planning for the next semester of development of Microsoft Azure (codenamed Cobalt). October, the first month in Q4 of the calendar year and Q2 of the Microsoft financial year, is also in the middle of planning for the next semester of development of Microsoft Azure (codenamed Cobalt). October is also the “hangover” for this year’s Microsoft Ignite so a lot of things that were announced actually appear in this time frame. October was also a month of new region announcements and Microsoft’s JEDI win continues to pay off for everyone. New Local Azure Regions Microsoft announced three new regions in October: Microsoft plans to establish new cloud datacenter region in Greece Microsoft plans to establish new cloud datacenter region in Austria Microsoft to establish its first datacenter region in Taiwan If you get your Azure news from the general tech media then you’ll probably have misunderstood lots of things about these announcements. The first misunderstanding is that the announcements were for data center regions, not for an Azure data center; that sentence has many meanings: Microsoft data center regions host lots of services, including Microsoft Azure. Some services, such as Microsoft Office, only run some of their components on Microsoft Azure. A Microsoft data center region can host Microsoft Azure, Microsoft 365, Dynamics 365, and other things, such as internal IT services for Microsoft that are not on Azure/M365, and Xbox services. A data center region is a collection of more than one data center. Some data centers are on opposite sides of a city. And sometimes, the region is... --- ### Windows Admin Center is Coming to the Azure Portal - Published: 2020-11-03 - Modified: 2024-09-04 - URL: https://petri.com/windows-admin-center-is-coming-to-the-azure-portal/ - Categories: Microsoft Azure - Tags: cloud computing, Ignite 2020, Microsoft Azure, Windows Admin Center, Windows Server - Article Type: News At Ignite earlier this year, Microsoft announced that the Windows Admin Center is coming to the Azure portal. At Ignite earlier this year, Microsoft announced that the Windows Admin Center is coming to the Azure portal. While the initial limited preview is now closed, here are some details that you can look forward to with this new functionality in the cloud. What is the Windows Admin Center? The Windows Admin Center (WAC) is a complete reimagination of the built-in consoles (MMC) that are used to manage Windows Server. You might be familiar with the Event Viewer and Device Manager management consoles for example. WAC is a web app for managing either local or remote servers via a gateway that uses PowerShell Remoting and Windows Management Instrumentation (WMI) over WinRM. The WAC gateway can be installed on Windows Server and Windows 10. WAC can manage Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, and Windows Server 2012. It can also manage Hyper-V Server, Azure VMs, Azure Backup, highly converged infrastructures (HCI), and much more. Because the gateway is a webserver application, administrators can connect to it from the public Internet and the local area network. Connecting to a gateway, rather than directly to the nodes you want to manage, allows for more flexibility and the option to secure communications. Image #1 Expand Windows Admin Center is Coming to the Azure Portal (Image Credit: Russell Smith)   For more information on using WAC, check out Getting Started with the Windows Admin Center, How to Manage Azure VMs running Windows Server using the Windows Admin Center, and... --- ### Everything You Need to Know About Office 365 – October 2020 - Published: 2020-11-02 - Modified: 2020-11-02 - URL: https://petri.com/everything-you-need-to-know-about-office-365-october-2020/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, News While not quite as busy as last month, thanks to Ignite having come and gone, there were still quite a few notable announcements and updates that you should know about this month. As always, you can find all of our Office 365 coverage and tutorials here, but let's dive in. On the Teams side of life, be on the lookout for UI updates with Fluent slowly making its way to the collaboration tool and notifications will finally be going native as well. And there are a lot of folks who may be seeing that update as the company said that there are more than 115 million daily users of the tool. Announced back in May 2020, Team templates arrived in Microsoft 365 tenants over the last couple of weeks. Steve has a deep dive into the update and how to get started with the feature. If you want the full list of updates announced for Teams this month, you can find that information here. Keep in mind that just because a feature was announced, doesn't mean that it's available in your tenant. If you are looking for a new personal application to help you organize information across Microsoft 365, Moca may be for you. Tony has a closer look at the tool and how to get started with it. When it comes to compliance this month, you should take a look at restructuring Office 365 sensitivity labels and the new audit events that have been added to Office... --- ### Everything You Need to Know About Power Platform – October 2020 > Get your updates on the Power Platform for October 2020. Topics include new Power BI user and creator experience, 400 connectors, and enterprise automations - Published: 2020-11-02 - Modified: 2020-11-02 - URL: https://petri.com/everything-you-need-to-know-about-power-platform-october-2020/ - Categories: Microsoft 365, Power Platform - Tags: power apps, Power Automate, Power BI, Power Platform, rpa, SAP, ui flows - Article Type: News This month there was lots of fun with Flow and Power BI. I feel like my favorite child, Power Apps, was slacking. O'well. You know what is really crazy? I had a big glass of positivity while I was writing this so everything is so exciting. ? I never know what is going to happen until I write but apparently I liked this month's updates. Enterprise automation, Power BI more flexible for report consumers, and over 400 connectors top my list of the news I loved. Enterprise Automation Playbook for SAP with Power Automate I will be honest, I mostly ignore the RPA stuff. Why? Because it is primarily for large enterprises and that just isn't a sandbox I like to play in. BUT wow this playbook is really cool. They show you the power of UI Flows and the rest of Power Automate to interact with SAP systems. From the simple no code to the professional developer story this guide has it all. Colored me impressed. Using UI flows to get data and make changes directly in SAP is crazy cool Power BI Personal Visuals are fully released PBI now allows users to modify their visuals in reports that have been built and shared with others. This ad-hoc ability means you build a great visual and then users can change visualization types, modify measures and dimensions, do their own comparisons, and more. Power BI is so far ahead of the competition it is crazy and they just... --- ### Everything You Need to Know About Windows - October 2020 Edition - Published: 2020-11-02 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-october-2020/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows Insider - Article Type: News This month's big news is the release of Windows 10 version 20H2. It's a minor update but it comes with some worthwhile improvements. Also in October, Microsoft released a new version of its Edge browser to the Stable Channel and Microsoft provides a workaround for the 'Reset this PC' bug in Windows 10 version 2004. This month's big news is the release of Windows 10 version 20H2. It's a minor update but it comes with some worthwhile improvements. Also in October, Microsoft released a new version of its Edge browser to the Stable Channel and Microsoft provides a workaround for the 'Reset this PC' bug in Windows 10 version 2004. Windows 10 version 20H2 is now generally available Starting October 20th, Windows 10 20H2, or Windows 10 October 2020 Update as it's otherwise known, is available to download. It is also available for 'seekers', i. e. those that click Check for updates in Windows Update. As always, even seekers may not be offered the update if their device isn't deemed compatible. Microsoft will gradually make the update available as an optional download to small numbers of devices, regardless of whether users clicked Check for updates. 20H2 is currently only available for users on Windows 10 version 1903 or later. Devices on earlier versions of Windows 10 will have to wait longer. Windows 10 version 2004 users get 20H2 as a cumulative update, which doesn't require a complete reinstall of the operating system. Users on earlier versions of Windows 10 that want to upgrade to 20H2 will need to go through the full OS install process. What's new in Windows 10 20H2? Not much to be honest but that's not necessarily bad news. As a fall release, 20H2 gets 30 months' support for Enterprise and Educations SKUs. The new Chromium-based version of Microsoft's Edge browser... --- ### Microsoft Launches Public Teams Preview Program - Published: 2020-11-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-public-teams-preview-program/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Called the “Microsoft Teams Public Preview”, this update policy allows you to “explore and test upcoming features”. If there is one thing that Microsoft loves, it’s preview programs. Nearly every single application from the company has some sort of ‘early access’ program where you can try out upcoming, but possibly broken, features before they are released to the general population. While Microsoft does have various ways you can get early access to features that are rolling out for Teams, this involves being invited to the TAP (Technology Adoption Program) or Rapid Deployment Program (RDP). Thankfully, for those of us not cool enough to be invited to those programs, the company is providing everyone a much easier way to get access to new features. Image #1 Expand Teams admin center, showing how to enable the new policy. Called the “Microsoft Teams Public Preview”, this update policy allows you to “explore and test upcoming features”. Enrolling in the public preview can be accomplished by going to the Teams admin center - > update policies -> add -> Show preview features. To enable the public preview on a desktop or web client, you need to do the following tasks: Select your profile to display the Teams menu. Select About → Developer preview. Select Switch to Developer preview. Keep in mind that the public preview is based on per-user enablement, so you do not need to worry about turning on features for your entire org. Microsoft has been announcing updates to Teams at a feverish rate and keeping track of when updates will land for your tenant... --- ### Botched Microsoft Update to Teams Retention Causes Customer Heartburn > A Teams GUI bug made Office 365 retention policies created for Teams seem to apply to Exchage Online mailboxes. - Published: 2020-11-01 - Modified: 2024-09-04 - URL: https://petri.com/teams-retention-bug-caused-heartburn/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Teams, Retention, retention policies - Article Type: News, Opinion No Data Compromised but Bad Day for Teams Retention Alarm bells went off on Thursday, October 29 when administrators in several tenants noticed that retention policies created to process Teams chat messages were apparently applied to Exchange mailboxes. Microsoft subsequently issued incident EX225368 “Admins may see Microsoft Teams retention policies unexpectedly update to Exchange Online policies. ” The incident started at 16;49 UTC and finished at 23:15 UTC after Microsoft had deployed a fix. Microsoft said that the problem was caused by “a recent service update was causing Microsoft Teams retention policies to unexpectedly update to Exchange Online policies. ” In other words, someone screwed up by making a code change which apparently had the effect of making the retention policies for Teams apply to the Exchange Online mailboxes of the accounts coming within the scope of those policies. Oddly, incident TM225382 at roughly the same time reported that “Admins are unable to modify or add Microsoft Teams retention policies within the Microsoft Teams admin center. ” Leaving aside the fact that retention policies are managed through the Microsoft 365 compliance center, the incident described an error apparently related to a non-existing entityMetadata command parameter. Overall, October 29 was a bad day for Teams retention processing. Teams and Other Workloads Don’t Mix Retention policies separate Teams chats and channel conversations from other workloads. In other words, you can’t create a single all-embracing policy covering Exchange Online, SharePoint Online, OneDrive for Business, and Teams. There are good reasons for this, including: Some... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (October 2020) - Published: 2020-10-30 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-14/ - Categories: Cloud Computing, Hardware, Microsoft 365, Microsoft Azure, Microsoft Teams, Mobile, Windows 10, Windows Server - Tags: News - Article Type: Overview Because it’s the most wonderful time of the quarter, this edition of Short Takes looks more closely at Microsoft’s latest blockbuster quarterly earnings report, in which the firm posted a net income of $13.9 billion on revenues of $37.2 billion. Because it’s the most wonderful time of the quarter, this edition of Short Takes looks more closely at Microsoft’s latest blockbuster quarterly earnings report, in which the firm posted a net income of $13. 9 billion on revenues of $37. 2 billion. Note: This past week, Microsoft announced its earnings for the quarter ending September 30. It was, as I wrote at the time, a monster quarter for the software giant, which posted a net income of $13. 9 billion on revenues of $37. 2 billion. And while most of this week’s Short Takes will focus on a deeper dive into those earnings, Microsoft wasn’t the only Big Tech company to announce blockbuster earnings this week. Here’s a quick rundown: Amazon: Net income of $6. 3 billion on revenues of $96. 15 billion(! ). More info here. Apple: Net income of $12. 7 billion on revenues of $64. 7 billion. More info here. Facebook: Net income of $7. 85 billion on revenues of $21. 47 billion. Google: Net income of $7 billion on revenues of $40. 5 billion. More info here. OK, let’s take a closer look at Microsoft’s earnings. Business unit breakdown It wasn’t that long ago that Microsoft’s three top-level business units---Intelligent Cloud, Productivity and Business Processes, and More Personal Computing---were each delivering roughly the same $11 billion in revenues were quarter. But as you might expect, those first two business units, which are both largely cloud-based, are starting to pull away. This quarter, Intelligent Cloud (driven by Azure) was Microsoft’s biggest business with $13 billion in revenues and 20... --- ### Microsoft Teams UI Update Begins to Incorporate Fluent Elements - Published: 2020-10-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-ui-update-begins-to-incorporate-fluent-elements/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Fluent, Microsoft, News, Teams - Article Type: News Microsoft is slowly starting to bring Fluent elements to its popular collaboration tool, Teams. When Microsoft announced its new design language called Fluent back in 2017, it was met with optimism that Windows and many other apps would be overhauled with a cohesive design. But more than three years later, that optimism has faded and Fluent is sparsely populated across the Microsoft ecosystem. But that doesn’t mean the rollout of Fluent is stopping; Teams is next on the agenda to receive a couple of updates that incorporate elements of the design language. But, this update is about as minor as it gets as Teams on the web will be refreshed with updated Fluent icons and refinements with more rounded corners and drop shadows. Below, you can see the updated design that will start rolling out next month and should hit all tenants by the end of January. Image #1 Expand Updated Interface in Teams with Fluent Elements Again, not a major overhaul to the app that is now used by more than 115 million users every day but it is subtle with the largest updates occurring in the far left rail with new icons and removing the dark blue color. There are other minor updates like the background behind the chat panel changing from white to gray. While this is not a major update, hopefully, a true Fluent update will eventually make its way to Teams – likely around the same time as Windows gets another major UI update so that we are back to having two contrasting themes on your desktop. --- ### Excel’s new ‘Data Types’ Feature is the Apps Biggest Update in Years - Published: 2020-10-29 - Modified: 2024-09-04 - URL: https://petri.com/excels-new-data-types-feature-is-the-apps-biggest-update-in-years/ - Categories: Microsoft 365, Office - Tags: Excel, Microsoft, News, Office 365 - Article Type: News If there is one app in the Office 365 suite that keeps people coming back to the productivity tools it is not Teams, but Excel. The spreadsheet application is easy to use, highly flexible, and in many companies around the world, worksheets are a structural part of the operational workflow. Last year, when XLOOKUP was introduced, this was one of the first significant updates in several years that would have a direct impact on how users are interacting with data but what the company is announcing today, is even more significant. Today, Microsoft is announcing that they are allowing customers to create their own data types and augment that data inside of a cell. Let me explain. Data today is “2D” meaning, what you see is what you get but coming soon, data can become “3D” and this is a significant update to Excel and is one of the biggest enhancements in recent history. Information in a cell in Excel, for the most part, is exactly that, a single data point represented at a period in time. Being introduced today is the ability to have data in a cell be a rich structured data set inside of a single cell. But more than just being a structured data set, you can extract and manipulate that rich data in other cells. Image #1 Expand Using the new Excel Data Type functionality This may be a bit confusing but here is an example. Imagine for a minute you have a population data... --- ### Restructuring Office 365 Sensitivity Labels > Sensitivity Labels have been available to Office 365 tenants for two years. In that time, some poor decisions might have been made about labels. Now that label scoping is becoming available, it's time to look at how to restructure labels to deal with container management. - Published: 2020-10-29 - Modified: 2024-09-04 - URL: https://petri.com/restructure-office365-sensitivity-labels/ - Categories: Microsoft 365, Office - Tags: Office 365 Sensitivity Labels - Article Type: How To Time to Review How Sensitivity Labels Are Used In Scoping Sensitivity Labels, I discuss the evolution of sensitivity labels and the ability to scope a label so that it deals with files and messages, container management, or both. Given this new capability, I questioned if it is a good idea to have multi-purpose labels and advance the case that it is easier to manage labels when a tenant has one set of labels used for information protection and another dedicated to container management. If you haven’t used sensitivity labels before, you don’t need to do anything as your deployment plan for labels can consider both aspects and design appropriate sets of labels for information protection and container management. But life is imperfect, and many tenants have sensitivity labels in use today that are applied to both files/email and containers. If you’re in this situation, you might want to restructure how labels are used. Lots of Labels My tenant is a classic example. We’ve used sensitivity labels since their introduction in 2018 and had used the predecessor Azure Information Protection labels beforehand. When Microsoft made it possible to use labels to manage containers (now generally available for all tenants), we added the necessary settings to some labels originally designed for document marking and protection and used those to manage containers. The result is that many “crossover” labels exist, many with the same container controls (like disabling guest users), which then cause confusions to container owners asked to select the... --- ### How to Programmatically Install Microsoft Store Apps Using Windows Package Manager - Published: 2020-10-28 - Modified: 2024-09-04 - URL: https://petri.com/how-to-programmatically-install-microsoft-store-apps-using-windows-package-manager/ - Categories: Windows 10 - Tags: Automation, Microsoft Store, Windows 10, Windows Package Manager - Article Type: How To In the latest preview version of Windows Package Manager, you can install Microsoft Store apps from the command line. Microsoft updated its Windows Package Manager preview software in time for Ignite in September. The new version (v0. 2. 2521) is available via the Microsoft Store for those registered in the Windows Insider Program, and for those that have joined the Windows Package Manager Insider Program. Alternatively, the client software can be downloaded from GitHub. What is Windows Package Manager? A package manager is a tool for automating installing, upgrading, configuring and removing software. Windows has never had its own built-in package manager. Although there is Nuget for Visual Studio; and Chocolatey, an open-source package manager for Windows. There is also OneGet, a PowerShell module designed to bring together different package management providers under the control of a single API. Windows Package Manager (WPM) is a new open-source package manager for Windows 10. Microsoft hosts a trusted WPM repository of software on GitHub. The WPM repo includes app manifests that are automatically checked using SmartScreen, static analysis, SHA256 hash validation, and a few other processes to limit the chances of malware getting into the repository. For more information on installing and using the Windows Package Manager preview, check out How to Use Windows Package Manager on Petri. Enabling support for Microsoft Store apps in Windows Package Manager Until the latest preview release of WPM, there has been no way to programmatically install applications hosted in the Microsoft Store. WPM version 0. 2. 2521 changes that. Microsoft is initially hosting 300 applications from the Store that can be installed using WPM. The apps... --- ### Microsoft Teams Passes 115 Million Daily Active Users   - Published: 2020-10-27 - Modified: 2020-10-27 - URL: https://petri.com/microsoft-teams-passes-115-million-daily-active-users/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Earnings, Microsoft, News, Teams - Article Type: News Microsoft Teams is now being used by 115 million daily active users. Microsoft’s collaboration tool is a little over three years old and the platform continues to grow at an incredible pace. The company announced that 115 million people are using the application every single day as of the end of September; you can likely assume that the number is now slightly north of that figure. At the end of April, Microsoft stated that 75 million people were using the application which means that during the spring and summer months, 40 million additional users started using the application. Simple math shows that the company was pacing at about 8 million new users per month or growth of about 53%. While the pandemic has put a considerable amount of pressure on nearly every business on the planet, Microsoft, and its portfolio of solutions, were uniquely positioned to be one of the few winners of the massive migration from in-person to remote operations. Teams, being the centerpiece of the Microsoft collaboration story, has continued to benefit from the ‘new normal’ of the remote workforce. With Skype for Business officially going away in the near future, the adoption of Teams should continue to grow as those customers migrate to the new platform. The key for Microsoft is to make Teams the new ‘sticky’ application inside of Office 365 and all signs are pointing to the fact that this application is becoming the new Excel.   --- ### Microsoft Rides the Cloud to Strong Earnings for Q1 - Published: 2020-10-27 - Modified: 2020-10-27 - URL: https://petri.com/microsoft-rides-the-cloud-to-strong-earnings-for-q1/ - Categories: Main - Tags: Earnings, Microsoft - Article Type: News Microsoft has reported its Q1 fiscal (Q3 calendar year) earnings today and the company posted healthy numbers across the board at the top. The company reported revenue of $37. 2 billion with a net income of $13. 9 billion - an increase of 30%. Microsoft returned $9. 5 billion to shareholders in the form of share repurchases and dividends in the first quarter of the fiscal year 2021, an increase of 21% compared to the first quarter of the fiscal year 2020. The highlights for the quarter are as follows: Revenue in Productivity and Business Processes was $12. 3 billion and increased by 11%. Revenue in Intelligent Cloud was $13. 0 billion and increased by 20%. Revenue in More Personal Computing was $11. 8 billion. Overall, it was a very healthy quarter for Microsoft who posted better than expected results with strong growth in several key segments including Office with 45. 3 million commercial subscribers, Surface had revenues of $1. 5 billion, an increase of 37% year over year, and server products and cloud services revenue increased 22%. On the gaming side, Microsoft revenue increased 30% as more people turned to gaming for entertainment and LinkedIn revenue increased 16% too. But not everything was perfect, Windows OEM revenue did decline 5% but that is one of the few misses for the company along with search advertising revenue excluding traffic acquisition costs decreased by 10% As expected, the massive shift to remote working has played into Microsoft's strength this quarter and helped generate healthy growth in many of its... --- ### How to Choose Between Basic Mobility and Security Or Microsoft Intune - Published: 2020-10-27 - Modified: 2020-10-27 - URL: https://petri.com/understanding-the-difference-between-microsoft-intune-and-basic-mobility-security/ - Categories: Microsoft 365 - Tags: Android, iOS, Microsoft 365, Mobile Device Management, Windows 10 - Article Type: Overview In this article, I explain the differences between Basic Mobility and Security and Microsoft Intune, both MDM services from Microsoft. Mobile Device Management (MDM) is a technology designed for managing operating systems installed on portable devices like mobile phones and tablets. Android, iOS, Windows 10, and other mobile operating systems have support for MDM built in. MDM is a bit like Group Policy for Windows, although it has less granular settings. MDM is designed for mobile systems that are not permanently connected to a corporate intranet. Instead of contacting a domain controller, devices managed by MDM connect to a cloud service provider. Microsoft Intune, VMWare AirWatch, and Citrix XenMobile are all popular MDM solutions. Windows Autopilot, Microsoft's cloud-native deployment service for Windows 10, also relies on MDM for some of its functionality. For more information on how MDM works in Windows 10, check out Understanding How MDM Policies are Applied in Windows 10 on Petri. Also, read my two-part series on Windows Autopilot here: How to Manually Onboard Devices to Windows Autopilot – Part 1 How to Manually Onboard Devices to Windows Autopilot – Part 2 Mobile Device Management is limited for subscriptions without Microsoft Intune MDM is built into mobile operating systems and Windows 10, which is often installed on tablets and other portable form factors. But without an MDM service to manage the MDM client built into the operating system, there's no way to leverage it as a management solution. That's where products like Microsoft Intune come in to play. To confuse matters, Microsoft offers a subset of Intune's capabilities via Basic Mobility & Security, which... --- ### Getting Started with Custom Templates in Teams - Published: 2020-10-27 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-custom-templates-in-teams/ - Categories: Microsoft 365, Microsoft Teams - Tags: create custom team, creating team, information architecture, Teams, templates - Article Type: How To Announced back in May 2020, Team templates arrived in Microsoft 365 tenants over the last couple of weeks. Teams templates allow administrators to define the basic information architecture (IA) of a Microsoft team, including the channels and application tabs, along with relevant information in the template to help users understand each team’s purpose. The key benefit of using Team templates is that it provides the ability for IT administrators to work with the business to decide how best to use Teams for different types of purposes, and then create a curated experience so that users don’t need to decide upon bespoke ways of accomplishing the same thing. For example, you might agree upon a standard set of channels and add-in applications that should make up a project or sales opportunity. This can be defined as a template, so that users have a pre-configured team with the right configuration, ready to use. What can you do with Teams templates? The first iteration of Team templates is extremely welcome if you are happy to follow Microsoft’s preferred way of working with Teams; self-service and inclusive of Microsoft’s preferred templates alongside your own. A basic set of templates is included with Team templates, covering the adoption of Office 365, project management, event management, employee onboarding, collaboration for healthcare, store management, banking, and more. These cannot currently be edited, deleted, or hidden – but any templates you add will be shown before Microsoft’s baked in examples. There are several other limitations to... --- ### Microsoft Tunnel Makes Connecting to Corporate Apps Easier from Android and iOS - Published: 2020-10-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-tunnel-aims-to-make-connecting-to-corporate-apps-easier-from-android-and-ios/ - Categories: Remote Access - Tags: Android, iOS, Microsoft Intune, Microsoft Tunnel Gateway, Remote Access, VPN - Article Type: News First announced at Ignite in September 2020, Microsoft Tunnel Gateway provides access to on-premises corporate resources from Android and iOS devices. Microsoft Tunnel is a new VPN gateway solution for Intune. First announced at Ignite in September 2020, Microsoft Tunnel Gateway provides access to on-premises corporate resources from Android and iOS devices. There are plenty of VPN solutions already on the market, including those that are part of Windows Server. So, why does the world need another VPN gateway? What differentiates Microsoft Tunnel is that it is fully integrated with Microsoft 365, meaning that it supports single sign-on features and Azure Active Directory (AD) Conditional Access policies. And along with simple deployment, there is an app that can be pushed out to devices so that users can easily connect to the VPN gateway. Microsoft Tunnel Gateway is Enterprise-Ready Microsoft said in a recent announcement that it intends to provide a remote access solution that acts like an appliance but that doesn't need a lot of on-going maintenance. To achieve those aims, the gateway is enterprise-ready and it can be used with a load balancer for high availability. The VPN gateway(s) can be quickly deployed on a Linux server that supports Docker containers. The gateway server can be located on-premises, in a DMZ, or hosted in the cloud. Image #1 Expand Microsoft Tunnel Aims to Make Connecting to Corporate Apps Easier from Android and iOS (Image Credit: Microsoft)   While server configuration is managed using Intune. Updates to the gateway server are applied automatically and logs are sent to the cloud for centralized troubleshooting. There's also syslog support so that... --- ### Project Moca In Preview for Office 365 Users > Office 365 commercial tenants now have the chance to use Project Moca, the latest productivity app from Microsoft. - Published: 2020-10-26 - Modified: 2024-09-04 - URL: https://petri.com/project-moca-office365/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, Office 365, Outlook Spaces, Project Moca - Article Type: How To, News On October 14, Microsoft announced that Project Moca, a new “productivity module,” is available as a public preview for Office 365 commercial tenants. The feature had previously been made available to Education tenants in August and to premium Outlook. com accounts in June. Moca is the “Outlook spaces project,” the first sights of which leaked in February. If you want to enable Moca for users, you’ll need to run the Set-OWAMailboxPolicy cmdlet to update OWA mailbox policies and update the ProjectMocaEnabled setting to True. For example: Set-OWAMailboxPolicy OwaMailboxPolicy-Identity OWAFullAccess -ProjectMocaEnabled $True According to Office 365 notification MC224257, it can take up to 48 hours before Moca appears in the OWA module switcher (lower left-hand corner). Information Scattered Everywhere Across Microsoft 365 The concept underpinning Moca is valid. Information is spread all over the place and it takes effort to assemble data together to form a coherent picture of what needs to be done to organize a project or some other work. To some degree, Microsoft is responsible for the state we find ourselves in, with information scattered across many different places in Microsoft 365: Exchange Online mailboxes (personal tasks, email, and calendar). Teams (personal chats and channel conversations). Planner (group tasks). Documents and files (OneDrive for Business and SharePoint Online). OneNote. Microsoft Lists. Stream videos. And so on. Every development group that deals with some aspect of collaboration has its own take on the topic and data keeps on piling up in different places. New Approach Based on a... --- ### Patch Tuesday – October 2020 - Published: 2020-10-23 - Modified: 2024-11-19 - URL: https://petri.com/patch-tuesday-october-2020/ - Categories: Windows 10 - Tags: Exchange Server, Microsoft SharePoint, Patch Tuesday, Windows 10 - Article Type: News This month Microsoft patches a serious remote code execution (RCE) in Windows that could be easily wormable and Outlook gets a patch for a bug that could let an attacker run arbitrary code on affected systems. And after a break of a few months, Adobe releases a security update for Flash Player. This month Microsoft patches a serious remote code execution (RCE) in Windows that could be easily wormable and Outlook gets a patch for a bug that could let an attacker run arbitrary code on affected systems. And after a break of a few months, Adobe releases a security update for Flash Player. Windows and Windows Server This month Microsoft has patched 7 RCE vulnerabilities rated critical. The most serious of which is CVE-2020-16898, a TCP/IP vulnerability discovered by Microsoft engineers where Windows improperly handles ICMPv6 Router Advertisement packets. The flaw could be used to install malware on a device by sending a malformed packet over the network. McAfee has called the vulnerability 'Bad Neighbor' and it has published detailed information about the flaw here. Microsoft shared proof-of-concept code with Microsoft Active Protection Program (MAPP) members. McAfee’s Steve Povolny, Head of McAfee Advanced Threat Research, wrote: The proof-of-concept shared with MAPP (Microsoft Active Protection Program) members is both extremely simple and perfectly reliable. It results in an immediate BSOD (Blue Screen of Death), but more so, indicates the likelihood of exploitation for those who can manage to bypass Windows 10 and Windows Server 2019 mitigations. The effects of an exploit that would grant remote code execution would be widespread and highly impactful, as this type of bug could be made wormable. Of the remaining patches, there are two RCE bugs and 28 elevation of privilege (EoP) flaws, all rated important. Exchange and SharePoint Server Exchange Server gets a patch... --- ### Paul Thurrott's Short Takes: October 23 - Published: 2020-10-23 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-23/ - Categories: Cloud Computing, Microsoft 365, Windows 10 - Tags: News - Article Type: Overview Because we can only overcome this sense of dread with humor, this edition of Short Takes looks at Microsoft’s new work-from-home deadline, Office PWAs trigger a new Microsoft drama, a new version of Windows 10, a release of Microsoft Edge on Linux, and so much more. Moon shadow, moon shadow Because we can only overcome this sense of dread with humor, this edition of Short Takes looks at Microsoft’s new work-from-home deadline, Office PWAs trigger a new Microsoft drama, a new version of Windows 10, a release of Microsoft Edge on Linux, and so much more. Microsoft extends work-from-home order to mid-2021 Microsoft this week announced the inevitable: It will now allow its employees to work from home through at least July 6, 2021 because of the COVID-19 pandemic. Previously, the software giant has said that January 19, 2021 was the earliest possible day. "Returning to the worksite remains optional until we get to Stage 6, Microsoft executive vice president Kurt Delbene told employees this week. “This stage represents a time when COVID-19 is no longer a significant burden on a country/region and most health and safety restrictions at our worksites are removed. ” To be clear, this change doesn’t mean that some Microsoft employees won’t be working from the office at least part of the time; indeed, some already are. But working from home is “strongly encouraged” for obvious reasons. And we’re expecting some setbacks over the winter, of course. Stupid science. "Xbox Series X And S Boxes Are Showing Up In The Wild" More likely in suburbia. Office PWAs are the latest Microsoft drama of the week It wouldn’t be a new week if Microsoft’s customer base didn’t have a new issue to be outraged over. And this week, it’s the Office web apps, which... --- ### Petri Dish: Talking Modern Data Protection with Cobalt Iron - Published: 2020-10-23 - Modified: 2020-10-23 - URL: https://petri.com/talking-modern-data-protection-with-cobalt-iron/ - Categories: Petri Dish - Tags: Cobalt Iron, Petri Dish - Article Type: Overview On this iteration of the Petri Dish, we sit down with Cobalt Iron to talk about how they think about data protection and what makes their offering unique. You can learn more about Cobalt Iron, here.    --- ### Where’s the Value in Microsoft 365 Priority Accounts? > Microsoft 365 will soon boast the ability to nominate priority accounts in tenants with more than 10,000 seats. Special attention will be paid to these accounts. - Published: 2020-10-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-odd-priority-accounts/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Office 365, Priority accounts - Article Type: News Brain Fails to Understand Microsoft I know I must be missing something in Microsoft’s cunning plan to make priority accounts available in Microsoft 365. It must be a basic point that I have overlooked, some simple need that has remained unanswered since the introduction of Office 365 in June 2011. But I can’t make head nor tail of the value which apparently lurks in priority accounts. Image 1 Expand Figure 1: Monitor your most important (priority) accounts (image credit: Microsoft) Curious Prerequisites Some basic facts: To have access to priority accounts, a tenant needs to have at least 10,000 licenses (Office 365 E3 or E5 or Microsoft 365 E5), and at least 50 monthly active Exchange Online users. The last point is puzzling. If a tenant has over 10,000 licenses, surely 0. 5% of the accounts must use email at least once a month? The 10,000 seats requirement is also odd. Perhaps it’s true in the U. S. that it’s only large organizations that include priority people (defined as “essential to running your organization and often have access to sensitive and high priority information”), but surely many smaller organizations have people which match the definition? To me, it would seem more logical to offer help to smaller tenants who probably don’t have the luxury of full-time Office 365 administrators. Easily Setup and Managed to a Point I’ve no doubt that setting up and managing the feature is easily done through the Microsoft 365 admin center. The Organizational knowledge and Monitor your... --- ### Windows 10 20H2 Arrives Today, Here’s What IT Pros Need to Know - Published: 2020-10-20 - Modified: 2020-10-20 - URL: https://petri.com/windows-10-20h2-arrives-today-heres-what-it-pros-need-to-know/ - Categories: Windows 10, Windows Client OS - Tags: News, Windows 10, Windows 10 20h2 - Article Type: News WIndows 10 20H2 is now available for some users but here's what IT Pros need to know. Today, Microsoft is releasing Windows 10 20H2 which brings with it new features and faster installations for users running the May 2020 release. But like all major updates, this release will only hit a small number of devices initially and those actively seeking the update. Conveniently, Microsoft refers to this update by two names 20H2 and Windows 10 October 2020 update which isn’t going to confuse anyone by this point as Microsoft had used three names previously. Anyways, the update is now out and if you are an IT Pro, this is the version of Windows 10 that will be supported for 30 months. If you are looking for what is new in this release, you can find that information here. Further, the update today will only show up for those running 1903 or later, if you are running an earlier version and would like to upgrade, you will need to wait a bit longer. Windows 10, version 20H2 is now also available through Windows Server Update Services (WSUS), Windows Update for Business, and the Volume Licensing Service Center. If you are brave enough to be updating to every major Windows 10 release, this iteration will install like a traditional Windows Update release if you are moving from 20H1 to 20H2 – all other migrations will follow the older, and more intrusive, update process. If you do not see the update available for your device, it likely means that there is a blocking issue that needs to be resolved prior... --- ### How to Update Windows System Images Using the Antimalware Update Package for Microsoft Defender - Published: 2020-10-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-update-windows-system-images-using-the-antimalware-update-package-for-microsoft-defender/ - Categories: Windows 10 - Tags: Microsoft Defender, Windows 10, windows deployment - Article Type: How To Update the Microsoft Defender engine, platform, and security intelligence file in Windows system images. If your organization provisions and services Windows using system imaging, Microsoft has released a new tool that can help make sure devices are secure when they are deployed to users. System imaging involves capturing an installation of Windows that contains the configuration settings and software required for your organization's devices. The resulting capture, or 'snapshot' if you like, is known as a system image. The image is then used to automate the installation of Windows at scale. Creating a standard system image involves a lot of work and testing. Without significant effort upfront, the operating system and applications might not work as expected when it is deployed to users. Because of the work that goes into creating a system image, organizations tend not to recreate them regularly. A new image might only be called for if a new version of Windows is released or if software needs to be added or removed. For more information using the Microsoft Deployment Toolkit (MDT) and Windows Deployment Services (WDS) to deploy Windows images, check out my 3-part series on Petri: Deploy Windows 10 Using MDT and WDS, Part 1: Create an MDT Deployment Share Deploy Windows 10 Using MDT and WDS, Part 2: Create an MDT Task Sequence and Configure WDS Deploy Windows 10 Using MDT and WDS, Part 3: Deploy Windows 10 from a PXE-Enabled Boot Client Devices inadequately protected until Microsoft Defender updates Devices provisioned using a system image are at risk for the first few hours of use... --- ### Teams Will Finally Use Native Windows Notifications Starting Next Month - Published: 2020-10-20 - Modified: 2024-09-04 - URL: https://petri.com/teams-will-finally-use-native-windows-notifications-starting-next-month/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Microsoft 365, News, Teams Microsoft will finally enable Teams to use native notifications starting next month. Microsoft’s collaboration tool, Teams, has been around since 2017 but annoyingly, it has made use of its own notification flyouts that cannot be controlled by Windows 10. Starting next month, that will change. According to the Microsoft 365 message center, in mid-November, Teams will be able to use the native Windows 10 notification system. The rollout for this feature should be completed by the end of the month. To use the native notification functionality, in the settings section of Teams, there is a dropdown called ‘Notification Style’ where you can select to use either the current notification style or switch to Windows. Image #1 Expand The location to switch from Teams to native notifications. The primary benefit of switching to native notifications over the built-in feature is that you can control the flyouts natively. Specifically, when using features like Focus Assist, it should be able to stop Teams from annoying you with popups. This is a small update for Teams but one that has taken far too long to arrive. Microsoft built a  notification platform into Windows 10 when it was released five years ago but the company’s fastest-growing tool, Teams, has never used the feature and it has always been an odd experience trying to manage your Windows 10 distractions because of this. As long as Microsoft hits the deadlines it has announced, by the end of next month, you should finally be able to switch over to managing Teams distractions natively in Windows 10. --- ### Microsoft Brings Integrated SIEM and XDR Tools to Defender and Azure Sentinel - Published: 2020-10-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-integrated-siem-and-xdr-tools-with-defender-and-azure-sentinel/ - Categories: Microsoft Azure - Tags: Azure Defender, Azure Sentinel, cloud computing, Microsoft 365, Microsoft 365 Defender, Microsoft Azure - Article Type: News At its Ignite conference in September, Microsoft announced a serious of branding changes for Microsoft Defender and new features for Azure Sentinel. Microsoft believes that SOC teams can benefit from using deeply integrated SIEM and XDR solutions. At its Ignite conference in September, Microsoft announced changes aimed at bringing the best-integrated experience, covering a broad range of devices and workloads. Microsoft Threat Protection is renamed Microsoft 365 Defender At its Ignite conference in September, Microsoft announced a serious of branding changes for Microsoft Defender. Defender is Microsoft's extended detection and response (XDR) solution for Windows and all major OSes, identities, cloud apps, email, and documents. Microsoft announced the following name changes: Microsoft 365 Defender (previously Microsoft Threat Protection) Microsoft Defender for Endpoint (previously Microsoft Defender Advanced Threat Protection) Microsoft Defender for Office 365 (previously Office 365 Advanced Threat Protection) Microsoft Defender for Identity (previously Azure Advanced Threat Protection) Microsoft made some bold claims, stating that Microsoft 365 defender was used in a test to consolidate 1,000 alerts down to only 40 high-priority incidents. Using artificial intelligence (AI) and self-healing capabilities, 365 Defender can provide full automation more than 70% of the time, so that security operations center (SOC) staff can better use their time and skills. In addition to the name changes, Microsoft 365 Defender is now generally available on Android and in preview on iOS. Threat and vulnerability management is also now available for macOS in preview. It allows organizations to continuously detect vulnerabilities on macOS so that remediation can be prioritized. Priority Account Protection A new feature called Priority Account Protection in Microsoft Defender for Office 365 lets... --- ### New Crucial Audit Events Added to Office 365 > Office 365 now boasts new crucial audit events for capturing details of message send, mailbox search, and site search operations. - Published: 2020-10-19 - Modified: 2020-10-19 - URL: https://petri.com/new-crucial-audit-events-added-office-365/ - Categories: Exchange Online, Microsoft 365, Office, SharePoint Online - Tags: Crucial Audit Events, Search-UnifiedAuditLog - Article Type: How To, News Helping Investigators Understand What Happened In March, Microsoft eventually released the MailItemsAccessed “crucial audit event” for accounts holding Office 365 E5 licenses (other suitable licenses include Microsoft 365 E5 or the Microsoft 365 E5 compliance). Crucial events are deemed to be of higher value to investigators or others who need to understand exactly what happened when something goes wrong, such as an attacker penetrating a user account. Microsoft has now released some additional events to allow investigators to discover information about message sending and mailbox and site searches. Based on what I see in my tenant, it appears that inflow of the message send events into the audit log began around 1 October while capture of search events started around 17 October. Due to the need to distribute updates across Office 365, the exact dates will vary from tenant to tenant. Some tenants I know who have the correct licenses see no trace of the events, including the older MailItemsAccessed event! Mailbox Sends The Send event captures details of messages being sent from a mailbox. The event contains the internet message identifier and subject, but you’ll have to check the actual message to find details of the recipients. The message identifier canals Given the number of Send records which might be captured for a busy mailbox, it’s a good idea to limit the search timeframe as tightly as possible. Here’s how to create a report of Send events. $Records = Search-UnifiedAuditLog -StartDate "18-Oct-2020 12:30" -EndDate "20-Oct-2020 11:45" -ResultSize... --- ### Paul Thurrott's Short Takes: October 16 - Published: 2020-10-16 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-16/ - Categories: Artificial Intelligence, Cloud Computing - Tags: News - Article Type: Overview Because it’s the Ides of October, this edition of Short Takes looks at mounting antitrust scrutiny of Big Tech, a Satya Nadella call for a “referendum on capitalism,” some antitrust nostalgia from Bill Gates, a Microsoft AI for auto-captioning images, and much more. Because it’s the Ides of October, this edition of Short Takes looks at mounting antitrust scrutiny of Big Tech, a Satya Nadella call for a “referendum on capitalism,” some antitrust nostalgia from Bill Gates, a Microsoft AI for auto-captioning images, and much more. Europe continues to align against U. S. tech giants France and The Netherlands have separately called on regulators in the European Union to take action against Big Tech’s so-called “gatekeeper” platforms. As you might expect, Amazon, Apple, Facebook, and Google are all called out by name. And yes, they’re interested in seeing the biggest offenders broken up so that they cannot continue their anti-competitive abuses. This is a possibility that was already raised by the European Commission’s Thierry Breton. And, perhaps even more notably, here in the U. S. by the House of Representatives antitrust subcommittee, which found that all four of the firms noted above have monopolies and have illegally abused them to the detriment of consumers, competitors, and partners. Notably absent from all this attention? You guessed it: Microsoft. One of the richest, most powerful companies in the world. And a Big Tech giant that is bigger than three of the four companies everyone is so concerned with right now. Interesting. “Microsoft will replenish more water than it consumes by 2030” It’s using the method pioneered by Kevin Costner’s character in Waterworld! Microsoft CEO calls for a “referendum on capitalism” OK, maybe there’s a reason Microsoft isn’t under any antitrust scrutiny right now: It’s a better company... --- ### Working with Azure AD Administrative Units > Azure AD administrative unitsenable logical divisions of the directory which can be managed by delegated administrators. This article covers the basics. including using PowerShell to manage AUs. - Published: 2020-10-15 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-administrative-units/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office - Tags: Administrative Unit, Azure AD, Delegated administration, Privileged Identity Management - Article Type: How To Logical Division of Azure Active Directory Management Since its launch in 1999, Active Directory has used Organizational Units (OUs) to logically partition the directory. Despite discussions going back as far as 2014, the ability to partition Azure Active Directory in the same or an equivalent manner wasn’t available. Administrative Units (AUs), launched in public preview in April 2020 and now generally available, together with scoped delegation of administrative roles, allows Microsoft 365 tenants to logically divide the management of Azure AD much like they might have done for Active Directory on-premises. Microsoft defines an administrative unit as a container for other Azure AD resources. Currently, those resources are limited to user accounts and groups. The basic idea is that you create a set of AUs to match the administrative structure of the organization, and then delegate roles to allow people to manage the objects in the AUs. Delegation of permissions for AUs isn’t necessary to run a well-managed Azure AD, but it’s where a lot of goodness exists because it stops having to grant accounts permissions to manage every object in Azure AD. It’s certainly understandable that the global administrator for a tenant should have the right to manage everything, but less so for someone working on a help desk who supports a limited set of people. Some organizations might use geographic regions as the basis for AUs; some might use business units. The same concept applies: each AU holds a set of objects that can be managed... --- ### How To Enable Advanced Teams Audio Features Including Hard Mute - Published: 2020-10-14 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-advanced-teams-audio-features-including-hard-mute/ - Categories: Microsoft 365, Microsoft Teams - Tags: class, education, hard mute, Meeting, mute, student, Teams, unmute - Article Type: How To Microsoft Teams has advanced audio controls and here is how you can use them during your next meeting or presentation. New functionality designed to provide better control for meeting organizers has rolled out to Microsoft Teams. If you have ever been leading a meeting or class and have found people have unmuted themselves to interrupt, then you will appreciate this feature. Like most new features in Teams, this began life buried within the meeting options page. However, before this was rolled out to all tenants, Microsoft improved the functionality based on feedback to build it directly into the core meeting experience. The new hard mute functionality, which allows you to prevent attendees from unmuting themselves, can be switched on or off from within the meeting, and individually for attendees who put up their hand to speak. In any Teams meeting, you will now see this option when you open the participant panel on the right-hand side of the meeting and click on the ellipses to open the contextual menu. You will then see Don’t allow attendees to unmute or Allow attendees to unmute, depending on its state: Image #1 Expand Figure 1: The new hard mute functionality in Teams meetings (image credit: Steve Goodman) When this option is enabled, meeting attendees will see their microphone icon greyed out and will be unable to mute. They will still be able to switch video on, and they’ll have the ability to chat within the meeting and raise their hand: Image #2 Expand Figure 2: The attendee experience when hard-muted (image credit: Steve Goodman) The ability to still participate in the... --- ### How to Limit OneDrive Upload Bandwidth - Published: 2020-10-14 - Modified: 2024-09-04 - URL: https://petri.com/how-to-limit-onedrive-upload-bandwidth/ - Categories: Windows 10 - Tags: OneDrive, OneDrive for Business, Windows 10, Windows 7 - Article Type: How To By default, the OneDrive sync client upload rate isn't limited. In this article, I explain when and how to limit upload bandwidth. Recently I was asked to help solve a problem with intermittent Internet slowdowns on a Windows 10 device. I was quickly able to pinpoint the issue to the OneDrive sync client. If the OneDrive client is actively synchronizing files, you'll see the sync symbol (Figure 1) overlaid on the OneDrive icon in the system tray. Clicking the OneDrive icon will reveal a list of files queued for synchronization. On the device I was troubleshooting, OneDrive was uploading a series of large media files that had recently been transferred to the local disk. Image #1 Expand How to Limit OneDrive for Business Upload Bandwidth (Image Credit: Russell Smith) Network utilization in the OneDrive sync client By default, the OneDrive sync client upload rate isn't limited. In other words, it can saturate your upload bandwidth. If the client is synchronizing small office files, or there's a large amount of upload bandwidth available, then the default setting might not present a problem. The default upload setting may even be an advantage as you can be sure any documents which are saved to locations synchronized to OneDrive will be uploaded to the cloud quickly. The faster the OneDrive client can upload files to the cloud, the quicker they are available for sharing or to access from other devices. But as more of us are working remotely due to the global pandemic, the available upload bandwidth at home is often much lower than download bandwidth. In this case, large files that need to... --- ### Office 2010 Support Ends Today - Published: 2020-10-13 - Modified: 2020-10-13 - URL: https://petri.com/office-2010-support-ends-today/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, News, Office 2010, Office 365 Microsoft is shutting the doors on Office 2010 today and it's time to update if you have not done so already. If you are still running Office 2010, you need to seriously consider upgrading your apps immediately. Today is the last day of support for the applications and going forward you will no longer receive updates of any kind. Microsoft has made it clear on its support page that there will not be any extensions for the application suite and that the sun has officially set for Office 2010. That being said, this doesn’t mean your software will stop working, it’s that they will no longer receive security updates and can expose your environment to external threats. What end of support means for you after October 13, 2020 Microsoft will no longer provide technical support, bug fixes, or security fixes for Office 2010 vulnerabilities which may be subsequently reported or discovered. This includes security updates which can help protect your PC from harmful viruses, spyware, and other malicious software. You'll no longer receive Office 2010 software updates from Microsoft Update. You'll no longer receive phone or chat technical support. No further updates to support content will be provided and most online help content will be retired. You'll no longer be able to download Office 2010 from the Microsoft web site. If you are going to upgrade, a natural path is to Office 365, or depending on the applications and services you will utilize Microsoft 365. While not many people like the subscription model, the truth is that it is here to stay and if you want to be on the leading... --- ### How to Set Up SMS-Based Authentication for Microsoft 365 and Azure Active Directory Users - Published: 2020-10-13 - Modified: 2024-09-04 - URL: https://petri.com/how-to-set-up-sms-based-authentication-for-microsoft-365-and-azure-active-directory-users/ - Categories: Microsoft 365 - Tags: Azure AD, cloud computing, Microsoft 365 - Article Type: How To Configure SMS-based sign-in for Azure Active Directory and Microsoft 365 users. In a recent post on Petri, I explained how to set up passwordless sign-in using the Microsoft Authenticator app for Microsoft 365 and Azure Active Directory (recently renamed Microsoft Entra ID) users. When passwordless sign-in is enabled in Azure AD, instead of entering a password, users can confirm their identity using the Microsoft Authenticator app, a FIDO2 security key, or by SMS message. In this article, I will show you how to configure passwordless sign-in by SMS. It's worth remembering that SMS-based authentication is currently in preview and that it shouldn't be used in production environments until it reaches general availability. There are also some limitations during preview: SMS-based authentication isn't compatible with Azure Multifactor Authentication. SMS-based authentication isn't compatible with native Office applications, with the exception of Microsoft Teams. Microsoft doesn't recommend SMS-based authentication for use with B2B accounts. Federated users only authenticate in the cloud. For additional information on passwordless sign-in, check out Understanding Windows 10 and Microsoft 365 Passwordless Sign-In on Petri. Pre-requisites for SMS-based sign-in Before a user can sign-in using SMS, they must be assigned one of the following licenses: Azure AD Premium P1 or P2 Microsoft 365 (M365) F1 or F3 Enterprise Mobility + Security (EMS) E3 or E5 or Microsoft 365 (M365) E3 or E5 Set up SMS-based sign-in for Azure AD and Microsoft 365 users The first step you need to perform is to enable SMS-based sign-in for users in your Azure AD tenant. Log in to Azure AD here... --- ### Microsoft’s Tenant to Tenant Migration Vision Lacks Coverage and Depth > Microsoft presented a vision for helping Office 365 tenants cope with mergers, acquisitions, and divestitures at Ignite 2020. At least Microsoft is in the game, but their vision is lacking. - Published: 2020-10-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-vision-mergers-not-great/ - Categories: Microsoft 365, Office - Tags: Mergers and Acquisitions, migration, Tenant to tenant - Article Type: News, Opinion Image 1 Expand Those who listened to Microsoft’s virtual Ignite session on Supporting Mergers, Acquisitions, and Divestitures in Microsoft 365 might have concluded that Office 365 tenant restructuring was about to become possible. It’s not. What’s really happening is that Microsoft is taking on the easiest parts of tenant to tenant migrations: cross-tenant mailbox migration (now in public preview) and the announcement of a preview to move SharePoint Online and OneDrive for Business files, lists, pages, and news (here’s the application to join). A video demo of the SharePoint/OneDrive transfer capabilities is included in the Ignite session. Advantages Leveraged by Microsoft As they develop a tenant restructuring strategy, Microsoft is leveraging assets they already have, including: Experience of moving mailbox and documents between Office 365 datacenter regions for multi-geo tenants. A decade of knowledge about how to move hundreds of millions of mailboxes into Office 365 from on-premises Exchange servers using the Exchange Mailbox Replication Service (first introduced in Exchange 2010). Moving batches of mailboxes between tenants is a little (but not a lot more) complex than moving batches from on-premises to the cloud. Hybrid connectivity linking Exchange Online and Exchange on-premises. The Mover acquisition and their toolset for moving SharePoint and OneDrive content. Redirects used to maintain page links when SharePoint Online site URLs are renamed. Cloud components such as Azure Key Vault. Azure Active Directory synchronization and B2B capabilities (for People Search across multiple tenants). Microsoft’s own experience of acquiring companies with Office 365 tenants (they move... --- ### Amazon Announces AWS Timestream - Published: 2020-10-09 - Modified: 2020-10-09 - URL: https://petri.com/amazon-announces-aws-timestream/ - Categories: Amazon Web Services, Backup & Storage, Cloud Computing - Tags: AWS, AWS Timestream - Article Type: News First announced back in November 2018, this past September 30th,  2020 Amazon announced that AWS Timestream was generally available. First announced back in November 2018, this past September 30th,  2020 Amazon announced that AWS Timestream was generally available. AWS Timestream is a special-purpose database that’s designed to handle time-series data. According to Danilo Poccia Chief Evangelist (EMEA) at Amazon Web Services “Timestream is a fast, scalable, and serverless time series database service that makes it easy to collect, store, and process trillions of time series events per day up to 1,000 times faster and at as little as to 1/10th the cost of a relational database. ” Time series is a specialized data format that describes how things change over time. Some of the most common sources are IoT devices, programmable machinery, and IT infrastructure all of which can generate a considerable amount of data over time. With time-series data, each data point consists of a timestamp, one or more attributes, and events that change over time. This data is used to derive business or operational insights. Time series data can be generated from multiple sources in very high volumes which can make analyzing that data difficult. The time-series data typically needs to be collected in near real-time and it also requires large amounts of cost-effective storage. AWS Timestream handles these requirements by keeping recent data in memory while older historical data is moved to cost-optimized storage. The data is retained in long term storage according to retention policies that you define. All data is automatically replicated across multiple availability zones in the same AWS region. In addition,... --- ### Paul Thurrott's Short Takes: October 9 - Published: 2020-10-09 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-9/ - Categories: Microsoft 365 - Tags: News - Article Type: Overview Because it’s the end of the world as we know and I feel fine, this edition of Short Takes looks at Microsoft’s new flexible work-from-home edict, multiple Microsoft 365 outages, a weird Microsoft diversity issue, Microsoft’s app store guidelines, and so much more. Apple's next CEO Because it’s the end of the world as we know and I feel fine, this edition of Short Takes looks at Microsoft’s new flexible work-from-home edict, multiple Microsoft 365 outages, a weird Microsoft diversity issue, Microsoft’s app store guidelines, and so much more. Microsoft to allow employees to work from home permanently Microsoft is taking its “new normal” talk to its logical extreme: The software will apparently let most employees work from home permanently going forward, even after we overcome the pandemic. That’s according to a publication that has viewed Microsoft’s new hybrid workspace plans, at least. An interesting side-benefit of this change is that Microsoft employees will also be allowed to relocate domestically, with approval, or even move internationally if remote working is viable for their particular role. This news comes in the wake of several extensions to Microsoft’s remote work policies, which currently state that it will not open its US offices until January 2021 at the earliest. I suspect that date will be pushed back much further into 2021 soon. “Slack Is Having An Identity Crisis” And Microsoft Teams has multiple personalities! Microsoft 365 suffers multiple outages in the past week It’s been a bad week for Microsoft 365 if you care about uptime: The software giant’s online productivity suite has experienced multiple outages over the past several days, each of which has lasted for several hours each. Microsoft, sticking true to form, fixed each outage and then provided an explanation. But the severity... --- ### Using Windows PowerShell Modules in PowerShell 7 - Published: 2020-10-08 - Modified: 2024-09-04 - URL: https://petri.com/using-windows-powershell-modules-in-powershell-7-2/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To With the advent of PowerShell Core and PowerShell 7, not all modules have been updated to be compatible with core engine updates or cross-platform accessibility. Instead of needing to switch between multiple versions of PowerShell depending on the tasks at hand, PowerShell 7 has added compatibility layers for existing Windows PowerShell compatible modules. With the advent of PowerShell Core and PowerShell 7, not all modules have been updated to be compatible with core engine updates or cross-platform accessibility. Instead of needing to switch between multiple versions of PowerShell depending on the tasks at hand, PowerShell 7 has added compatibility layers for existing Windows PowerShell compatible modules. Of course, with any compatibility layer, there are always situations that will not work properly or unexpected behaviors. In this article, we explore how the Windows Compatibility layer works within PowerShell 7 and what you need to be aware of. There are still many modules that have not been updated to work with PowerShell 7. This can be due to many different reasons, but generally, it's due to one of the following. . NET Core incompatibility Windows PowerShell core engine dependencies Windows-specific API's not available in PowerShell 7 Notably, with the change to . NET Core 3. 1, there are many breaking changes that . NET Framework (4. x) has and may prevent modules from working correctly with . NET Core and therefore PowerShell 7. Additionally, there are core engine changes and Windows-specific APIs that a module may need to update to work properly with PowerShell 7. One big note here is that these compatibility layers are Windows-specific, and do not apply to the cross-platform nature and ability of PowerShell 7. That is not to say that some modules won't function if they utilize remoting to operate on a remote Windows system, but in this article, we are discussing locally loaded modules needing compatibility... . --- ### Microsoft Revamps Outlook with One Outlook Vision > At the Ignite 2020 conference, Microsoft announced their One Outlook vision and explained how some new technologies will get functionality to Outlook faster. - Published: 2020-10-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-revamps-outlook-one-outlook-vision/ - Categories: Microsoft 365, Office, Outlook - Tags: One Outlook, OPX, Outlook Vision, owa, WebView2 - Article Type: News New Technologies at the Center of Outlook’s Future Outlook fans would be forgiven for thinking that all the oxygen in the Microsoft 365 collaboration ecosystem is being sucked out by Teams). But then a series of videos created for the virtual Ignite 2020 conference revealed that there’s life in this venerable product yet (given a design start date in 1996, Outlook will be 25 in 2021). Kicking off the Ignite coverage for Outlook, Lynn Ayres, the new Microsoft VP for Outlook, began by laying out the case for Outlook as the personal organizer (Figure 1). It’s true that Outlook has been the center of many peoples’ working lives for years and it’s still the case that Outlook is used by hundreds of millions of Office 365 users daily. Even so, it’s an interesting positioning for Outlook in the spectrum of Microsoft collaboration technology. Image 1 Expand Figure 1: Outlook: Your personal organizer (image credit: Microsoft) I guess: Outlook is the personal organizer. Teams is the team organizer. Yammer is the community organizer. Or something like that. One Outlook Moving on, Lynn described the One Outlook vision, a response to the way that the Outlook family has developed since 1996 to deliver desktop, mobile, and browser clients built on different foundations with vastly different user experiences. The reasons why lie in a mixture of on-premises foundations, historical artifacts, and the Acompli acquisition in late 2014. OWA and Outlook Mobile might deliver new features quickly, but Outlook desktop is painfully slow... --- ### Microsoft's Preparing a New OOBE for Windows 10 - Published: 2020-10-08 - Modified: 2020-10-08 - URL: https://petri.com/microsofts-preparing-a-new-oobe-for-windows-10/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, OOBE, Windows, Windows 10X - Article Type: News In the latest Windows 10 build released to Insider, version 20231, it is possible to enable a new OOBE, or Out of Box Experience. With Microsoft making the shift of taking Windows 10X and turning the focus to single-screen devices instead of dual-screened hardware, one of the benefits for the end-user is bringing the UI of 10X to traditional Windows 10. And it looks like some of Windows 10X is starting to make its way to the version of Windows 10 most of us are using today. In the latest Windows 10 build released to Insider, version 20231, it is possible to enable a new OOBE, or Out of Box Experience. This new experience is what you typically see upon the first boot of new hardware or occasionally when adding a new profile to Windows. Discovered by Albacore on Twitter, you can see in the video the refreshed experience that looks significantly better than the existing OOBE that has not changed much since Windows 10 was released. https://twitter. com/thebookisclosed/status/1314172702383538176 Based on the brief and early look at the setup experience, it does appear to be more friendly for new users and the white/gray tones make it significantly brighter as well. While I do not know if there will be a dark-mode for the new experience, I can already hear the calls for it to be created. While this is not going to significantly improve Windows 10 in any meaningful way, it is a good sign for those who are hoping to see the UI of Windows 10X make its way to Windows 10. --- ### How to Optimize Windows 10 VDI for Improved Performance and Density - Published: 2020-10-07 - Modified: 2024-09-04 - URL: https://petri.com/how-to-optimize-windows-10-vdi-for-improved-performance-and-density/ - Categories: Windows 10 - Tags: VDI, Windows 10, Windows Virtual Desktop - Article Type: How To In this article, we'll look at how to optimize Windows 10 virtual machines for improved performance and VM density. The global health pandemic has forced organizations to move rapidly to a remote work model. Not only has it been necessary to quickly find solutions to let employees work remotely but it has also required IT departments to get more out of existing solutions, like virtual desktop infrastructure (VDI) and Windows Virtual Desktop (WVD). In this article, we'll look at a rebranded tool from Microsoft's 'The VDI guys' that you can use to optimize Windows 10 virtual machines (VM). Windows 10 Optimizer is rebranded Virtual Desktop Optimization Tool The Virtual Desktop Optimization tool is not completely new, but it is a rebranded version of the Windows 10 Optimizer written by Microsoft's Robert M. Smith and Tim Muessig (The VDI guys). The tool works with multi and single-session deployments in Windows Virtual Desktop. And it supports Windows 10 versions 1909 and 2004 at the time of writing this article. It's worth noting that while the tool was developed by Microsoft employees, it is not an official Microsoft product. As such, it is not supported by Microsoft. Although it is possible that sometime in the future that the tool might get an official release by the Windows Virtual Desktop team. Using the Virtual Desktop Optimization Tool The optimization tool is provided as a free PowerShell script. You can download it from GitHub here. Many of the optimizations performed by the tool are outlined in an article on Microsoft's website: Optimizing Windows 10, version 1909, for a Virtual Desktop Infrastructure (VDI)... --- ### Using Microsoft Graph API To Help Admins Quickly Deploy Policies at Scale - Published: 2020-10-06 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-microsoft-graph-api-for-conditional-access-helps-admins-quickly-deploy-policies-at-scale/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud computing, Ignite, Remote Access - Article Type: News Microsoft Graph Conditional Access support and insights make it easier to secure users at scale. At this week's Ignite conference, Microsoft announced the general availability of Microsoft Graph API support for Azure Active Directory (AD) Conditional Access. Conditional Access is Azure AD's policy engine, which is used to set granular and adaptive access controls on applications that use Azure AD for identity management. Microsoft says that the new controls will protect users more comprehensively and at scale. In addition to the Microsoft Graph API, insights and recommendations for Conditional Access are now provided in the Azure AD advisor tool. Conditional Access insights and Microsoft Graph API In a blog post by Corporate Vice President of Microsoft Identity, Joy Chik writes: Zero Trust principles are at the core of how we build and invest in identity. We never trust, and we always verify. Zero Trust starts with cloud identity, using real-time risk assessment powering fine-grained access controls. Many of you use Azure AD Conditional Access as your Zero Trust policy engine. Now, with Conditional Access insights in public preview, recommendations that identify gaps in your policies help you stay more protected. For example, a common recommendation is to block legacy authentication by default to protect your accounts from malicious authentication requests. To help simplify configuration, the Azure AD Conditional Access API is now generally available in Microsoft Graph. You can use PowerShell or another custom scripting to automate and scale policy management. Image #1 Expand Azure AD Microsoft Graph API for Conditional Access Helps Admins Quickly Deploy Policies at Scale (Image Credit: Microsoft) Conditional... --- ### How to Set Up Passwordless Sign-in Using the Microsoft Authenticator App for Microsoft 365 - Published: 2020-10-06 - Modified: 2024-09-04 - URL: https://petri.com/how-to-set-up-passwordless-sign-in-using-the-microsoft-authenticator-app-in-microsoft-365-and-azure-active-directory/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud computing, Microsoft 365 - Article Type: How To Improve security by setting up passwordless sign-in for Microsoft 365 users. As the identity management platform used by Microsoft 365, Azure Active Directory (AD) is used to control and manage user access to Microsoft 365 services and apps. When passwordless sign-in is enabled in Azure AD, instead of entering a password users can confirm their identity using the Microsoft Authenticator app, a FIDO2 security key, or by SMS message. In this article, I will show you how to let users securely log in to Microsoft 365 using the Microsoft Authenticator app instead of a password. Passwords are a security risk and difficult to manage Around 80 percent of successful attacks originate from compromised passwords. IT departments spend a lot of time managing passwords and recovering from security incidents where password exposure was the root cause. Multifactor authentication (MFA) is very effective at protecting passwords but it has a low adoption rate. Microsoft is championing passwordless sign-in because it is more convenient for users and it provides a higher level of security than passwords. For additional information on passwordless sign-in and why passwords are a security risk, check out Understanding Windows 10 and Microsoft 365 Passwordless Sign-In on Petri. Pre-requisites for passwordless sign-in The first requirement for passwordless sign-in in Microsoft 365 is that the 'combined registration' experience must be enabled in Azure AD. Combined registration brings together the registration experience for Azure MFA and self-service password reset. Beginning August 15th 2020, all new Azure AD tenants are automatically opted in for combined registration. If you have an Azure AD... --- ### Google Rebrands G-Suite, Introduces New Features - Published: 2020-10-06 - Modified: 2020-10-06 - URL: https://petri.com/google-rebrands-g-suite-introduces-new-features/ - Categories: G Suite - Tags: G Suite, Google, News, Workplace - Article Type: News Google is rebranding its productivity suite and releasing a couple of new features too. When it comes to corporate productivity, there are two primary options: you have Microsoft 365 and up until yesterday, G-Suite. But this morning, Google is rebranding G-Suite to Google Workspace and at the same time, introducing a couple of new features as well. This is not a significant overhaul of the productivity suite but continues to show that Google is investing in this offering and shows little signs of slowing down. Google Workspace is being described as “everything you need to get anything done, now in one place”. But the bigger announcement is likely the fact that features talked about earlier this year are now rolling out that refreshes the user experience. Here’s what Google is saying is new today: New, deeply integrated user experience that helps teams collaborate more effectively, frontline workers stay connected, and businesses power new digital customer experiences New brand identity that reflects our ambitious product vision and the way our products work together New ways to get started with solutions tailored to the unique needs of our broad range of customers There is no question that Microsoft 365 is market-leader in the productivity space but you can’t discount what Google is doing with Workspace. The company has been building productivity applications for more than a decade and has the capacity to challenge Microsoft on nearly every front. And that’s a good thing, while Microsoft 365 has certainly evolved over the years, competition is good for the consumer. While Microsoft certainly has a large footprint, the... --- ### Network Connectivity Tool Helps Office 365 Tenants Measure Connections > The Network Connectivity tool is now in preview in the Microsoft 365 admin center. The tool helps Office 365 tenants understand how good their connectivity is to core services like Exchange. - Published: 2020-10-05 - Modified: 2024-09-04 - URL: https://petri.com/network-connectivity-tool-office365/ - Categories: Microsoft 365, Office - Tags: Network Connectivity, Tools - Article Type: How To, News Really Useful Way to Understand Connectivity of Office 365 Tenant Microsoft added Network Connectivity as an option under the Health section of the Microsoft 365 admin center in late September. The feature is a preview of what Microsoft 365 roadmap item 67153 to deliver an “assessment that evaluates the impact of your network design on Microsoft 365 user experience in a 0 – 100 scale. ” In other words, it’s a tool to tell tenant administrators about the quality of connectivity between Office 365 users and apps running in Microsoft 365 datacenters. It’s one of the best tools Microsoft has added in the last few years. Unfortunately, the tool isn’t supported for some government clouds and in China. Microsoft has spent the last several years communicating the principles of Office 365 connectivity to remind organizations that the link between the local network to the edge connection points for the Microsoft network across the internet is critical. The network designs used by many organizations are not tailored for cloud connectivity; in particular, proxy servers can interfere and slow traffic to Office 365. As the use of cloud services grows, any flaws in network designs are exposed and user connections suffer. The Covid-19 pandemic drove a huge increase in demand for many services to underline the problem. While some applications have good offline working facilities, if you don’t have a reliable network connection to Microsoft, your experience of a service like a Teams meeting will be poor. Measure Connectivity from a... --- ### VMworld 2020 – Announcements - Published: 2020-10-05 - Modified: 2020-10-05 - URL: https://petri.com/vmworld-2020-day-one-announcements/ - Categories: Announcements, Cloud Computing, Virtualization, VMware - Tags: News, Virtualization, vmware, VMworld 2020 - Article Type: News Like the VMWorld conferences in the past few years, VMworld 2020 was kicked off with a keynote by VMware CEO Pat Gelsinger. Unlike past conferences, this year’s VMworld is entirely virtual. Like the VMWorld conferences in the past few years, VMworld 2020 was kicked off with a keynote by VMware CEO Pat Gelsinger. Unlike past conferences, this year’s VMworld is entirely virtual. While it’s admirable that they have produced a full-featured virtual conference as a response to the limitations of today’s pandemic, I have to admit that the virtual format lacks the energy and enthusiasm that is present in the in-person events. The theme for this year’s conference was "Possible together” and that pretty much describes VMware’s recent Project Pacific where they rearchitected vSphere to include Kubernetes. Pat stated that VMware’s goal is to be able to support any app on any cloud running on any device. Pat went on to say that VMware "delivers the digital foundation for an unpredictable world". In spite of these challenging times VMware made a number of significant announcements. Some of the main announcements from this year’s VMworld 2020 include: VMware Carbon Black Cloud Workload -- VMware Carbon Black Cloud Workload is integrated with vSphere and provides vulnerability reporting and workload hardening with the prevention, detection, and response capabilities. VMware is offering a six-month unlimited free trial of VMware Carbon Black Cloud Workload Essentials for all current vSphere 6. 5 and VMware Cloud Foundation 4. 0 customers. Project Monterey -- Project Monterey is in preview and it is a project to rearchitect VMware Cloud Foundation from the hardware up to support the new requirements of modern applications enabled by Project Pacific. It is intended to... --- ### Everything You Need to Know About Microsoft 365 – September 2020 - Published: 2020-10-02 - Modified: 2020-10-02 - URL: https://petri.com/everything-you-need-to-know-about-microsoft-365-september-2020/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, News, Office 365 - Article Type: News To say that September was a busy month for Office 365 is a bit of an understatement. To say that September was a busy month for Microsoft 365 is a bit of an understatement. Microsoft's Ignite conference has come and gone and with it brought many new features that were announced for the productivity suite but many of them are not yet available. Before we get to the Ignite announcements, you should be aware that there was a significant outage this week that was preventing many users from being able to login to the service. The hiccups lasted for several hours and disrupted core functionality around the globe. If you are a heavy user of the video calling feature that Teams provide, you may be interested in learning how to use Teams with OBS via NDI. Steve has a good breakdown of how you can use this feature to enhance your calling experience or use the tool for broadcast environments. Activity alerts in Teams are a useful feature and if you are looking to make them more accessible, Tony's post dives into the topic so that you can get the most out of your alert policies. He also penned a couple of other posts including how to Use a Super User Group for Privileged Access to Encrypted Office 365 Content and Restricting Guest User Access in Azure Active Directory that are worth checking out. But on to the big show, Ignite... here's a list of what we covered during the conference last week: Microsoft Moves On-Premises Office Servers to a Subscription Model Microsoft Announces New Teams Rooms Capabilities... --- ### Everything You Need to Know About Windows – September 2020 - Published: 2020-10-02 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-september-2020/ - Categories: Windows 10 - Tags: Ignite, Ignite 2020, Microsoft Edge, Windows 10, Windows Server 2021, Windows Virtual Desktop - Article Type: News Windows 10 feature updates could become once yearly, and Microsoft Ignite brings announcements for Edge and Windows Virtual Desktop. This month, Microsoft held the first part of its annual Ignite conference for IT professionals. The second part will be held in March 2021. So, let's start with some of the noteworthy Windows news from the event. Microsoft Ignite 2020 Most of this year's Ignite conference was focused on Microsoft 365 and Azure. But nevertheless, there were some Windows announcements worth checking out. Microsoft Edge coming to Linux, plus new features Microsoft officially announced that a public preview of Edge for Linux will be available in October this year. Edge on Linux is largely intended for developers that want to test site compatibility without having to switch to Windows or macOS. Microsoft also announced a couple of new Edge features, including native support for Microsoft Endpoint Data Loss Prevention (DLP), and the ability to roll back to a previous version of the browser if an update causes problems. If you use Edge to view PDFs, you will soon be able to view and validate certificate-based digital signatures. WebView2, the web component of Chromium-based Edge that developers can use to render web content in their apps, will be generally available for C/C++ and . NET before the year is out. Windows Virtual Desktop The ongoing global pandemic is forcing companies to find more effectively ways to support remote working. And Windows Virtual Desktop, Microsoft's Desktop-as-a-Service offering in Azure, is helping organizations quickly deploy secure remote desktops. At Ignite, Microsoft detailed four new features that will arrive this year: Windows 10... --- ### Everything You Need to Know About the Power Platform - September 2020 > This month you get more info on how Teams and the Power Platform come together with Project Oakdale, Power BI Premium, UI Flows, and more. - Published: 2020-10-02 - Modified: 2020-10-02 - URL: https://petri.com/everything-you-need-to-know-about-the-power-platform-september-2020/ - Categories: Microsoft 365, Power Platform, PowerApps, PowerBI - Tags: Microsoft Teams, power apps, Power Automate, Power BI, Power Platform - Article Type: News With Ignite being this month there is a lot going on but let us be clear. The most important announcement this month is Project Oakdale. That is the code name of the Power Platform directly integrating with Microsoft Teams and it is a major game-changer. I will try to cover more than just that but to be fair it is all I care about. ? Also, some of the Technical Notes could have been considered news. Just soo much to cover. Teams gets so much more powerful thanks to Project Oakdale Project Oakdale is the code name for the new data platform in Teams. What does that mean? Now in Teams you can build custom apps, workflows, dashboards, and chatbots by using the new Tables data source all without additional licesnes. Under the hood you know the Tables are a lite version of the Common Data Service and the functionality is provided by Power Apps, Power Automate, Power BI, and Power Virtual Agents. You can read my full take and how to get started here - Start Building Custom Apps with No Code in Microsoft Teams Power BI is a bit behind If you read my article above you know I tease Power BI (PBI) is available but it hasn't rolled out quite yet. Hopefully very soon; since it isn't out yet I haven't tested it but looks promising. The main benefit will be the ability to add your dashboards into Teams directly, no more switching tools. Also,... --- ### Everything You Need to Know About Azure Infrastructure – September 2020 Edition - Published: 2020-10-02 - Modified: 2020-10-02 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-september-2020-edition/ - Categories: Microsoft Azure - Tags: APIPA, App Service, App Service Environment, App Service Environment v3, Application Gateway, ARM, ARM Templates, ASE, ASEv3, ASR, AWS, Az, Azure, Azure Automanage, Azure Backup, Azure Bastion, Azure CdN WAF, Azure Cost Management, Azure DDoS Proteciton Service, Azure Dedicated Hosts, Azure DNS, Azure Files, Azure Firewall, Azure Front Door, Azure Load Balancer, Azure Migrate, Azure Monitor, Azure Monitor Logs, Azure NetAppFiles, Azure Orbital, Azure Resource Mover, Azure Security Benchmark v2, Azure Security Center, Azure Sentinel, Azure Site Recovery, Azure SQL, Azure Storage, Azure Virtual Machines, Azure Virtual WAN, Azure VMware Solution, AzureRM, BGP, Bicep, BLOB, Cisco Viptela, Cost Allocation, DDOS, Dedicated Host, Deployment Center, ExpressRoute, JSON, Log Analytics, Managed Disks, metric alerts, Microsoft Ignite 2020, NFS 4.1, Patching, PowerShell, Public IP Address, Site-to-site VPN, Spot Virtual Machines, SQL Server, Virtual Hub, virtual machines, VNet Peering, WAC, Web Application Firewall, Windows Admin Center, Windows Container - Article Type: News September was Ignite month – I will get to that in a moment. That means there should be lots of news. And this should be a post full of Azure announcements. But will it be? September was Ignite month – I will get to that in a moment. That means there should be lots of news. And this should be a post full of Azure announcements. But will it be? Microsoft Ignite 2020 I went to my first big Microsoft Conference in 2004 – TechEd Europe 2004 in Amsterdam, Netherlands. I’ve been to a few TechEd Europe events, the final few TechEd North America conferences and all but the second Microsoft Ignite. For me, TechEd, and then Ignite, was an important time of the year where I take a week to focus on learning. I find out what’s new and what I need to spend time on or dive a little into something new. We all knew that COVID-19 was going to mean that Microsoft would have to do something different. But unfortunately, they went and repeated what just-has-not-worked in previous online attempts at Build and Inspire. The sessions are just 30 minutes long, meaning that the presenter has no time to deliver technical information. I can tell you, as a very experienced presenter, that a short session is a nightmare to deliver compared to a longer one. Give me 60-75 minutes and I can prepare for it in no time and guarantee that people leaving the room will learn something. Give me 30 minutes where I’m forced to do the conference stock content, and after all that, I’m left with 20 minutes to deliver a technical session? Mission impossible. Yes, there is... --- ### Using Windows PowerShell Modules in PowerShell 7 - Published: 2020-10-01 - Modified: 2024-09-04 - URL: https://petri.com/using-windows-powershell-modules-in-powershell-7/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 With the advent of PowerShell Core and PowerShell 7, not all modules have been updated to be compatible with core engine updates or cross-platform accessibility. With the advent of PowerShell Core and PowerShell 7, not all modules have been updated to be compatible with core engine updates or cross-platform accessibility. Instead of needing to switch between multiple versions of PowerShell depending on the tasks at hand, PowerShell 7 has added compatibility layers for existing Windows PowerShell compatible modules. Of course, with any compatibility layer, there are always situations that will not work properly or unexpected behaviors. In this article, we explore how the Windows Compatibility layer works within PowerShell 7 and what you need to be aware of. There are still many modules that have not been updated to work with PowerShell 7. This can be due to many different reasons, but generally, it's due to one of the following. . NET Core incompatibility Windows PowerShell core engine dependencies Windows-specific API's not available in PowerShell 7 Notably, with the change to . NET Core 3. 1, there are many breaking changes that . NET Framework (4. x) has and may prevent modules from working correctly with . NET Core and therefore PowerShell 7. Additionally, there are core engine changes and Windows-specific APIs that a module may need to update to work properly with PowerShell 7. One big note here is that these compatibility layers are Windows-specific, and do not apply to the cross-platform nature and ability of PowerShell 7. That is not to say that some modules won't function if they utilize remoting to operate on a remote Windows system, but in this article, we are discussing locally loaded modules needing compatibility. How... --- ### Enable Plus Addressing in Exchange Online > Exchange Online now supports plus addressing, a useful technique to create an address that lets you know if your email details are being shared by web sites and companies. - Published: 2020-10-01 - Modified: 2024-09-04 - URL: https://petri.com/using-plus-addressing-exchange-online/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Plus addressing - Article Type: How To, News In this guide, we'll explain the technology behind plus addressing and how to enable and use plus email addresses with Exchange Online. The background of plus addressing The idea of plus addressing has existed for many years. The idea is simple enough. An email address is divided into a local part (resolved within an organization) and a domain. The local part can be divided with a separator character (the plus sign) into the real username and a “sub-part” or suffix. Here is an example of a plus email address: Tony. Redmond+Petri@Office365itpros. com To ensure interoperability between mail servers, vendors build products to comply with the recommendations laid down in the internet engineering task force “request for comments” (RFC) documents. In this case, RFC 3696 lays down that the plus sign is one of the special characters supported by email addresses: “Without quotes, local-parts may consist of any combination of alphabetic characters, digits, or any of the special characters   ! # $ % & ' * + - / = ?   ^ _ ` . { | } ~” While RFC 5523 (from 2008) says: “One common way of encoding 'detail' information into the local-part is to add a 'separator character sequence', such as "+", to form a boundary between the 'user' (original local-part) and 'detail' sub-parts of the address, much like the "@" character forms the boundary between the local-part and domain. ” Processing plus addresses When messages are delivered to a domain, the suffix is ignored for routing purposes and the... --- ### GET-IT Office 365 Security Day is Happening Now! - Published: 2020-09-29 - Modified: 2020-09-29 - URL: https://petri.com/get-it-office-365-security-day-is-happening-tomorrow/ - Categories: GET IT, Microsoft 365, Security - Tags: GET-IT, GET-IT Office 365 Security - Article Type: News Petri's GET-IT: Office 365 Security 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Office 365 content aimed at accelerating the understanding of the security components of the platform as well as how to execute tasks securely inside the environment. Petri's GET-IT: Office 365 Security 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Office 365 content aimed at accelerating the understanding of the security components of the platform as well as how to execute tasks securely inside the environment. Throughout the day you will hear from Microsoft MVPs and industry experts about how to take full advantage of security functionality in Office 365 and dive deep into the technical aspects of your tenant to make it more secure.  During this free day of learning, we will be streaming to YouTube, Twitter, Facebook, Petri. com, and other locations to make it easy for you to watch Office 365 Security Day wherever it is most convenient for you. And who will be speaking? On the docket, we have Stephanie Donahue, Steve Goodman, Todd Klindt, Joanne Klein, Liam Cleary, and Jasper Oosterveld. These respected MVPs will dive into various areas of the Office 365 platform and also provide downloads that you can use for reference material. And not just MVPs, we will have other Petri Community experts from AvePoint, Planet Technologies, and CoreView sharing the knowledge they have gained from their implementations too. Why Office 365 security? With the explosive growth of remote work during the past eight months, making sure that your users are on-boarded correctly, collaborating securely, and organized efficiently, is more important than ever. With the event about three weeks away, you can head over to our landing page to learn more about... --- ### Azure Arc Now Generally Available for Windows and Linux Servers - Published: 2020-09-29 - Modified: 2024-09-04 - URL: https://petri.com/azure-arc-now-generally-available-for-windows-and-linux-servers/ - Categories: Microsoft Azure - Tags: Azure Arc, cloud computing, Ignite, Microsoft Azure, Microsoft Ignite 2020 - Article Type: News Azure Arc extends Azure's management features to Windows and Linux servers regardless of their physical location. Released as a public preview after last year's Microsoft Ignite conference, Azure Arc is designed to extend Azure's management features to on-premises resources, like Windows and Linux servers, and servers hosted by other cloud service providers. Azure Arc can also be used to deploy Azure data services, like Azure SQL Managed Instances, on non-Azure infrastructure. In a blog post published earlier this week, Corporate Vice President for Microsoft Azure, Julia White, says that since its launch, there has been a lot of interest and adoption of Azure Arc across all industries. Including companies like Africa’s Talking, Avanade, DexMach, Ferguson, Fujitsu, KPMG, and Siemens Healthineers. White goes on to say: Customers can seamlessly organize and govern Windows and Linux servers—both physical and virtual machines (VMs)—across their multi-cloud, multi-edge environment, all from the Azure portal. Customers can now use Azure management services to monitor, secure, and update servers, and audit them with the same Azure Policy across multi-cloud and multi-edge deployments. In addition, customers can implement standardized role-based access control across all their servers to meet important compliance requirements. Image #1 Expand Azure Arc Now Generally Available for Windows and Linux Servers (Image Credit: Russell Smith) Azure Arc-enabled servers feature set Since I first looked at Azure Arc back in January this year, Microsoft has expanded the feature set considerably. At the time of writing, here is a list of features for Azure Arc-enabled servers: Assign Azure Policy guest configurations Report on configuration changes about installed software, Microsoft services, Windows... --- ### Microsoft 365 Authentication Outage is Preventing Log Ins - Published: 2020-09-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-authentication-outage-is-preventing-logins/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Are you having issues logging into your Microsoft 365 dashboards or applications? You are not alone with social media and forum posts popping up with admins and users reporting that they cannot authenticate to various services. Microsoft is aware of the issue but at this time there is not an ETA for a fix. Amusingly, the support account for Microsoft 365 on Twitter recommends that you check your account dashboard for MO222965 but when you try to authenticate, it fails. The issue, as of now, only appears to be linked to authentication. If you are already logged into an app or dashboard, you should be safe to utilize that feature but do not log out; the outage started around 5:30 PM ET/2:30 PM PT. But the scenario that is causing headaches for many IT Pros is that users are being alerted that their credentials are out of date or they are automatically logged out and are unable to regain access to the service. This issue appears to be impacting many of Microsoft services including consumer,  commercial, government, and other Microsoft 365 services. For now, there is not much you can do other than wait for Microsoft to resolve the issue. The company said that they have rolled back an update that they think is causing the issue but more than an hour after the initial outage, services are still inaccessible to many. Once they do fully restore operations, we will update this post. Update: As of about 7PM ET, operations... --- ### Azure Backup Center Brings Unified Admin Experience for Management at Scale - Published: 2020-09-28 - Modified: 2024-09-04 - URL: https://petri.com/azure-backup-center-brings-unified-admin-experience-for-management-at-scale/ - Categories: Microsoft Azure - Tags: Azure Backup, cloud computing, Disaster Recovery, Ignite 2020, Microsoft Azure, News - Article Type: News Azure Backup Center provides a single pane of glass for managing backup of Azure resources at scale. A public preview of Azure Backup Center was announced at this year's Microsoft Ignite conference, a virtual event that took place on September 22nd to 24th. The new Backup Center provides admins with a single pane of glass for managing backup of Azure resources at scale. It provides a unified tool for exploring backup inventories that are distributed across backup vaults, Azure subscriptions, locations, and tenants. Microsoft says about Backup Center: Azure Backup has enabled a new native central management capability to manage your entire Backup estate from a single pane of glass. Backup Center provides you with the capability to monitor, operate, govern, and optimize data protection at scale in a unified manner consistent with core Azure native management paradigms. At the time of writing, Azure Backup Center supports triggering actions for the following workloads: Azure Virtual Machines SQL in Azure Virtual Machines Azure Database for PostgreSQL servers Azure Files Define and track governance with deep integration with Azure policies There's also the ability to define and track governance; including deep integration with Azure policies, letting IT ensure governance by providing policy definitions that apply to backup jobs. Azure Backup now extends Cross Region Restore of Azure virtual machines (VM) to include support for SQL and SAP HANA backups. Cross Region Restore lets IT organizations restore backup data in secondary regions when a primary region is unavailable. Or at any time for audit and compliance purposes. Image #1 Expand Azure Backup Center Brings Unified Admin Experience for... --- ### Teams First Office 365 Application to Use Stream 2.0 > Stream is moving storage for videos from Azure Media Services to SharePoint Online and OneDrive for Business. Teams is the first Office 365 app to use the new plaform. - Published: 2020-09-28 - Modified: 2020-09-28 - URL: https://petri.com/stream-moves-sharepoint/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: migration, SharePoint Online, Stream, Teams meeting recording - Article Type: News Stream to Use SharePoint Online and OneDrive for Business Microsoft announced Stream 2. 0, a major refresh of the Stream video portal, in the What’s New for Microsoft Stream and Video in Microsoft 365 session at the virtual Ignite 2020 conference. The big news is that Stream is moving its video storage from the Stream Azure-based storage service to SharePoint Online and OneDrive for Business. The move will start with recordings of Teams meetings in October (more details in What’s New for Teams Meeting Recordings). This is a good move. Responding to Mary-Jo Foley’s report on the Stream transition, Microsoft CVP Jeff Teper said: “This architecture is enabling us to innovate much faster in Stream and Teams (meeting recordings and more). Big things coming. ” The benefit of hindsight would say that the original vision for Stream as a “business video service” available to anyone with a business email address created a service that was detached from Office 365 that couldn’t be bridged with its current platform.  No big things could happen had Stream continued on its present course. Stream has always been an outlier inside Office 365, especially when it comes to compliance. Its connection to other Office 365 apps is loose rather than integrated. Over the last year, Microsoft says that the demand for video storage has grown five times, largely driven by the growth in Teams meeting recordings. The demand for Stream to service Teams meetings caused Microsoft to downgrade the resolution to 720p in March. At the same time,... --- ### Microsoft Announces Ignite, Part 2, is Happening in March - Published: 2020-09-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-ignite-part-2-is-happening-in-march/ - Categories: Main - Tags: Ignite, Ignite 2020, Microsoft, News - Article Type: News Microsoft has announced that the second part of Ignite will be happening in March of 2021. In previous years, Microsoft’s Ignite conference was a week-long adventure but thanks to COVID-19, those plans have changed. Microsoft hosted the first part of Ignite conference this week with news spanning from Teams updates to AI for SharePoint. But as the company promised earlier this year, the second part of Ignite is happening in March. Specifically, according to Microsoft, the event is taking place that month but they are not announcing the specific dates at this time. When Microsoft announced that Ignite was splitting into two parts, they made it clear that the second iteration of Ignite was not replacing Build, the company’s developer conference. Build is typically held in May of each year at the company’s headquarters in Seattle but this year’s event was hosted digitally. Like the Ignite that occurred this week, the next iteration will be digital as well. This should not be a big surprise as the company previously said that in-person events will not return until after July 31st, 2021. If you missed any of the news announced this week, you can find that information here. --- ### Microsoft Teams Will Soon Become Your Go-To Webinar Solution - Published: 2020-09-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-will-soon-become-your-go-to-webinar-solution/ - Categories: Microsoft 365, Microsoft Teams - Tags: Ignite, Ignite 2020, Microsoft, News, Teams - Article Type: News Microsoft will soon roll out a feature that will allow you to use Teams as a webinar platform. There has been quite a bit of news this week as Microsoft hosts its annual Ignite conference, but some items stand out from the crowd more than others. In this instance, Microsoft casually mentioned that they will be introducing a new ‘webinar’ feature into Teams. Coming later this year, Teams will support webinar registration and reporting. With this feature, organizers will be able to use event registration with (automated) reminder emails before an event starts and then following the webinar, view detailed analytics. Image #1 Expand Microsoft Teams Webinar functionality coming later this year While not everyone will need this functionality, this is a big announcement. For many large (and small) organizations, including Petri. com, we host quite a few webinars and utilize third-party services like GoTo Webinar. Once this feature is rolled out, and thoroughly tested for the user experience, it should be possible for Petri and many other organizations to transition to Teams for this type of community activity and reduce our expenses for software licenses for other platforms. Considering how big the Teams' footprint has become in the business world, this feature could cause significant blowback to existing platforms that specialize in this segment. Webinars are used across the marketing and education world as a way to engage with an audience and are becoming more popular as in-person events have been sidelined in 2020 and likely in 2021. Microsoft is saying that this feature should arrive sometime later this year but when it will reach your specific tenant... --- ### Azure Resource Mover and Zone-to-Zone Disaster Recovery Now Available - Published: 2020-09-23 - Modified: 2024-09-04 - URL: https://petri.com/azure-resource-mover-and-zone-to-zone-disaster-recovery-now-available/ - Categories: Microsoft Azure - Tags: Azure Disaster Recovery, Azure Resource Mover, cloud computing - Article Type: News Azure Resource Mover provides a single pane of glass for managing cross-regions move operations. This week at its annual Ignite conference, Microsoft announced the availability of Azure Resource Mover (public preview), zone-to-zone disaster recovery, and Availability Zones are coming to another two regions. Move resources between regions with Azure Resource Mover This week Microsoft announced that the Azure Resource Mover hub is now available in public preview. Resource Mover is designed to provide an easy way for organizations to move Azure resources between regions. A simple wizard asks you to select the resources you want to move and then provide a destination region. You can also choose a specific availability zone or availability set in the target region. Image #1 Expand Azure Resource Mover and Zone-to-Zone Disaster Recovery Now Available (Image Credit: Russell Smith)   Resource Mover then handles the rest, including identifying any dependencies that might also need to be moved. During the move operation, you might be asked to validate dependencies if there are dependencies not in the collection you defined. Source resources are not modified during the move and you can optionally choose to delete them at the end of the process. For more information on Azure Resource Mover, see Microsoft's website here. Zone-to-Zone Disaster Recovery With this week's announcement at Microsoft's Ignite conference, the number of Azure regions that support Availability Zones has increased to 14, with Microsoft adding Canada Central and Australia East to the list. Microsoft also announced that zone-to-zone disaster recovery (DR) for virtual machines (VM) is now available. Zone-to-zone DR provides VM failover to a different... --- ### SharePoint Syntex is the first Project Cortex Product, Arrives October 1st - Published: 2020-09-22 - Modified: 2020-09-22 - URL: https://petri.com/sharepoint-syntex-is-the-first-project-cortex-product-arrives-october-1st/ - Categories: SharePoint - Tags: Ignite, Ignite 2020, Microsoft, News, SharePoint, SharePoint Syntex - Article Type: News The first product from Project Cortex is launching next month and the company is making big claims about its ability to sort your data. One of the biggest announcements last year at Ignite was Project Cortex. The tool enables AI to automatically catalog your content and make connections between various Microsoft 365 services to tie all of the information together in a functional way to streamline your workflow. But, any service from the project has yet to released and many are waiting to see if Microsoft’s AI, the technology behind Cortex, can live up to the hype that Microsoft has created. At Ignite 2020, we are getting our first look at SharePoint Syntex which is the first product derived from Cortex. SharePoint Syntex will automate the capture, ingestion, and categorization of content that the company says will streamline the compliance, discovery, and reuse of assets inside of your organization. In short, SharePoint Sytex aims to intelligently analyze documents to make sure that they are discoverable when the timing is right. This is accomplished by AI being able to read a document and extract the relevant information and define it as prescribed by the AI models. The key, Microsoft claims, is that you can train the AI models with no-code solutions so that Syntex is adapted explicitly for your operations. By training your own models, Syntex can automatically process content, extract information, and apply metadata. For organizations who ingest a significant amount of data, Syntex could be a way to easily sort and filter content on the inbound stream rather than manually using folders and download targets; think of it as an inflight tool that... --- ### Microsoft Moves On-Premises Office Servers to a Subscription Model > Microsoft announced that the on-premises versions of Exchange, SharePoint, and Skype for Business Online will move to a subscription model in 2021. - Published: 2020-09-22 - Modified: 2020-09-22 - URL: https://petri.com/exchange-sharepoint-skype-subscription/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange subscription, Office on-premises servers - Article Type: News Last On-Premises Version? Last March, a Microsoft employee caused a stir with an assertion that Exchange 2019 will be the last on-premises version of Microsoft’s enterprise email server. At the time, my assessment was “I don’t expect Microsoft to ship on-premises versions of Exchange or SharePoint in the way they’ve done in the past because it just doesn’t make sense. ” To put this in context, the vast majority of what you might call utility mailboxes have moved to Exchange Online. The remaining mailboxes need to stay on-premises for some reason (for instance, the organization doesn’t have a reliable internet connection). The current model, based on a major release every three years together with quarterly cumulative updates, needs to be examined in light of a shrinking, but still important, customer base. Subscription Office At the “Exchange, Here, There, and Everywhere” session at the Ignite 2020 virtual event, Greg Taylor, Director of Marketing for Exchange, clarified the situation by saying that “the next versions of Exchange Server, SharePoint Server, Skype for Business Server will be available in the second half of 2021, and only be available with the purchase of a subscription license. ” In other words: Exchange 2019 is the last version of the classic on-premises product. The Office servers are moving to a subscription-based model. Instead of the current CAL-based licensing model, like Office 365 licenses, customers will pay a monthly fee to continue using Exchange on-premises (or SharePoint or Skype for Business). The subscription entitles customers to receive... --- ### Microsoft Announces New Teams Rooms Capabilities Arriving in 2020 - Published: 2020-09-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-new-teams-rooms-capabilities-arriving-in-2020/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Ignite, Ignite 2020, Microsoft 365, News, Office 365, Teams - Article Type: News Microsoft is bringing several new features to Teams that will make the Rooms experience align with new scenarios. To say that this year has upended the traditional way of holding meetings is a slight understatement. Everything that involves being within a confined space of another person is now being re-thought and for millions of workers; the new office is your home. Coming by the end of the year, enhancements to the Teams Rooms capabilities will make social distancing easier and touchless meeting experiences simpler to manage and manipulate. These are the new features that will be available by the end of the year: Meeting room capacity notifications. Using data from meeting room cameras equipped with people-counting technology, this feature alerts in-room meeting participants if the room is over capacity based on capacity data defined by the IT administrator. Room remote for Microsoft Teams Rooms. Through a new experience in the Teams mobile app, a user can control in-room devices without touching the center console. Controls include join and leave the meeting, mute and unmute the room, adjust audio volume, and turn cameras on and off. Support for Cortana voice assistance on Microsoft Teams Rooms. With a simple spoken command, users can join and end the meeting without touching the room console. Additional commands will be added over time. Proximity Join on Surface Hub. Users can join a meeting on Surface Hub from their own PC or mobile device. In the meeting pre-join experience, the nearby room audio device will populate, allowing users to select the room device they want to use, and join using the meeting room audio... --- ### Start Building Custom Apps with No Code in Microsoft Teams > Build custom apps in Microsoft Teams using the Power Apps preview and Project Oakdale. No code required. Just your business knowledge. - Published: 2020-09-22 - Modified: 2024-09-04 - URL: https://petri.com/start-building-custom-apps-with-no-code-in-microsoft-teams/ - Categories: Microsoft 365 - Tags: Microsoft Teams, power apps, project oakdale - Article Type: News I am so excited! (Sorry I tried to write a boring press release style article but that is not me. ? ) At Ignite today Microsoft announced that Project Oakdale is available in public preview. Project Oakdale is the addition of a data platform into Microsoft Teams. Now you can build apps, workflows, dashboards, and chatbots directly inside of Teams without ever leaving. And don't fret. They didn't build new tools for this. Instead, the took the highly successful Power Platform (Power Apps, Power BI, and Power Automate) and doubled down on their integration into Teams. So if you have been using those tools then you are ready to go. If you haven't been using those tools you are ready to go also. Your business process knowledge and logic you learned building Excel spreadsheets is all you need. That is why the platform has been so popular. Build your first app in five minutes Because a large part of the millions of users of Microsoft Teams have never built an app Microsoft has gone out of their way to make it easy. Anyone can open Teams and then add the Power Apps Preview app. Once installed you will see a dashboard of options to begin. Image #1 Expand Here you can either create a new app or install one of the three prebuilt template apps they provide. If you choose to Create an app they have provided the "hero template" that will do most of the heavy lifting for you. All... --- ### New Features Coming to Windows Virtual Desktop Later This Year - Published: 2020-09-22 - Modified: 2020-09-22 - URL: https://petri.com/new-features-coming-to-windows-virtual-desktop-later-this-year/ - Categories: Cloud Computing, Microsoft Azure, Virtualization - Tags: Ignite, Ignite 2020, Microsoft, News, Windows Virtual Desktop - Article Type: News Microsoft is rolling out new updates to Windows Virtual Desktops that will make the offering easier to manage. The importance of secure remote operations has always been a key concern for operating your environment but with all the wrenches that have been tossed into 2020, using Virtual Desktops is an option that many IT Pros are turning to for their users. While the challenges of 2020 remain significant, the updates to Windows Virtual Desktops (WVD) announced this week should make it easier for you to manage your instances. At Ignite 2020, Microsoft is announcing several enhancements to the service that will arrive by the end of 2020: Microsoft Endpoint Manager support for Windows 10 multisession will provide IT, admins, with the ability to manage and secure virtual desktops the same way as physical devices. New integration with Azure Monitor, providing customers with a workbook that captures all the relevant monitoring insights and provides rich visualizations to identify and troubleshoot issues quickly. This is an important consideration for customers looking to monitor and troubleshoot easily while deploying virtual desktops at scale. The ability to add application layers from the Azure portal, helping users onboard applications quickly—with a few clicks, you can now deploy and publish applications for your employees. Windows Virtual Desktop has become an interesting option for many organizations that found themselves scrambling to issue hardware to newly-remote employees. By allowing users to authenticate to a secured desktop that is hosted remotely, lower-end hardware can be utilized while still offering a secure solution. It is a busy week with lots of announcements happening at Ignite 2020, if you... --- ### New Features Coming to Cortana Later This Year - Published: 2020-09-22 - Modified: 2020-09-22 - URL: https://petri.com/new-features-coming-to-cortana-later-this-year/ - Categories: Microsoft 365 - Tags: Cortana, Ignite, Ignite 2020, Microsoft, Microsoft 365, News - Article Type: News While Cortana may not be the personal assistant Microsoft imagined a few years ago, the truth is that the AI personality has found a home inside of Microsoft 365. The digital assistant has found its niche and at Ignite 2020, the company announced new features coming to Cortana. While Cortana may not be the personal assistant Microsoft imagined a few years ago, the truth is that the AI personality has found a home inside of Microsoft 365. The digital assistant has found its niche and at Ignite 2020, the company announced new features coming to Cortana. Cortana touches many parts of Microsoft 365 and at Ignite, Microsoft announced updates for Teams, Outlook, Windows 10 and more: Cortana voice assistance is becoming generally available in Microsoft Teams displays, a new category of all-in-one dedicated Teams devices, to offer hands-free experiences to join a meeting, make a call, send chat messages, share files and more. Availability is starting in September in English in the United States and in the coming months in English in Australia, Canada, the United Kingdom and India. Cortana voice assistance will also be introduced later this year in Microsoft Teams Rooms devices to offer touchless experiences to join and end meetings in shared spaces in English in the United States. Your daily briefing email from Cortana is becoming generally available for Microsoft 365 Enterprise users in English starting in September and will get updates in the coming months to streamline meeting preparation, integrate with Microsoft To Do, support planning for the week ahead, and offer specialized insights for people managers seeking to strengthen connections with their team. Play My Emails, the Outlook mobile experience that lets you listen and respond to what’s new in your inbox hands-free using Cortana, will start rolling out in the coming... --- ### Microsoft Details New Calling Features Coming to Teams This Year - Published: 2020-09-22 - Modified: 2020-09-22 - URL: https://petri.com/microsoft-details-new-calling-features-coming-to-teams-this-year/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Ignite, Ignite 2020, Microsoft, Microsoft 365, News, Teams - Article Type: News If you are a heavy use of Teams calling features, several updates on the horizon are going to significantly improve that experience. This week, Microsoft is hosting its virtual Ignite conference where the company is outlining a bunch of new features that are coming to many of its platforms. To little surprise, Teams will be on the receiving end of many updates as the company’s collaboration tool continues to be the backbone of the modern Microsoft 365 environment. Announced this week are a number of updates coming to the Calling experience that will make it easier to view and interact with the old-school method of actually dialing digits to communicate with other humans.  Later this year we should see an enhanced calling view that makes it easier to view contacts, voicemail, and calling history at once, making it easier to initiate or return a call with a single click. Other enhancements announced this week include: Collaborative Calling, which enables customers to connect a Call Queue to a Teams Channel. Users can collaborate and share information in the channel while taking calls in the queue. This feature is ideal for scenarios such as an IT help desk or HR hotline. IT admins can quickly connect call queues to specific channels, and team owners can manage the settings. Updates for 1:1 calls. These include transcription, live captions, recording and the ability to transfer between Teams mobile and desktop apps. Transcripts and recordings are saved in the chat window after a call. These features can be enabled via the control bar within the Call window. Microsoft Teams display, a new category of all-in-one dedicated Teams... --- ### Surface Hub 2S 85in Arrives in January of 2021 - Published: 2020-09-22 - Modified: 2024-09-04 - URL: https://petri.com/surface-hub-2s-85in-arrives-in-january-of-2021/ - Categories: Hardware - Tags: Ignite, Ignite 2020, Microsoft, News, Surface, Surface Hub - Article Type: News Microsoft's larger Surface Hub 2S pre-order will open on September 22nd. Back in April of 2019, Microsoft first announced the revamped Surface Hub 2S and at that time, the company said the larger, 85in would be available in 2020. Announced at Ignite today, the company is providing an update on the larger Hub and its availability. The larger Surface Hub 2S will open up for pre-order on September 22nd with availability in select markets in January of 2021 at a cost of $21,999. 99. This new model is a larger version of Surface Hub 2S and is designed for collaboration in a conference room or communal area. Along with the new hardware, Windows 10 Pro and Enterprise Surface Hub 2 configuration is now available to all Surface Hub customers for free and coming in October, a new Windows 10 Team 2020 update will start rolling out. The new update for Windows 10 Team improves IT integration, device deployment, and management capabilities, as well as meeting and collaboration experiences across all first-generation Surface Hub and Surface Hub 2S devices; the update will be free too. While it took a bit longer to arrive, for those who have been using the 55in Surface Hub 2S, the feedback has been mostly positive. For those who need an 85in device, I would expect the experience to be just as good.   --- ### Microsoft’s Edge for Linux Arrives in October, New Features Announced - Published: 2020-09-22 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-edge-for-linux-arrives-in-october-new-features-announced/ - Categories: Windows Client OS - Tags: Edge, Ignite, Ignite 2020, Microsoft, News - Article Type: News For those IT Pros who have been asking for a Linux interaction of Edge, your wait is nearly over. The company says that a public preview of Edge for Linux will be released in October. While the decision to adopt Chromium as the foundation for Microsoft’s web browser may have been a tough pill to swallow initially, it was the right move for the company. The browser is being updated much faster than the legacy version of Edge and at Ignite this week, the company is talking about more features coming to the browser. For those IT Pros who have been asking for a Linux interaction of Edge, your wait is nearly over. The company says that a public preview of Edge for Linux will be released in October. Other updates that are coming for Edge include native support for Microsoft Endpoint Data Loss Prevention (DLP) and a new ‘roll-back’ feature that will let IT Pros revert to the previous version of Edge if an update breaks compatibility. Aside from being a browser, one of the primary scenarios for using Edge is to view PDFs. Soon, users will be able to view and validate certificate-based digital signatures on PDF files, ensuring the documents are in the state intended by the signer. Also, interactive tables of content will be available with the Microsoft Edge PDF viewer, enabling end-users to quickly navigate to where they need to go in the PDF. For developers, WebView2 will be generally available for C/C++ and . NET by the end of 2020. If you haven’t tried using Edge yet for your environment, it’s worth giving it a spin. It has the compatibility of Chrome but deeper Microsoft 365 integration. While it’s not... --- ### Understanding Azure App Registrations - Published: 2020-09-21 - Modified: 2024-09-04 - URL: https://petri.com/understanding-azure-app-registrations/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, How To, Microsoft - Article Type: How To Microsoft offers a robust identity platform, but to facilitate authentication and authorization applications need to be registered. To that end, within Azure AD you will find the App registrations pane that offers the ability to create registrations for applications and assign permissions accordingly. Microsoft offers a robust identity platform, but to facilitate authentication and authorization applications need to be registered. To that end, within Azure AD you will find the App registrations pane that offers the ability to create registrations for applications and assign permissions accordingly. When you create an application, you establish a trust relationship between the defined application and the Microsoft identity platform. Make note that the trust is only unidirectional, in that the application trusts Microsoft but not vice versa. You can control the following aspects of Azure Apps. Supported Account Types - Whether your application is used by users in a given organizational directory or if you allow personal Microsoft accounts to be used as well. Redirect Settings - If the app needs to have the access token returned to a specific URI to process the next step of authentication and authorization. Certificates and Secrets - Used to verify that the application connecting to the Azure Identity platform is allowed to do so. Permissions Creating a New Azure App Registration After logging into the Azure Portal, navigate to Azure AD and App registrations as seen in the screenshot shown below. Click on Register an Application to start the process of provisioning a new Azure App. You will be presented with a few options that need to be filled out depending on how your application works. Commonly in development, you will use a local address to test the authentication before publishing a proper endpoint. This can be changed... --- ### Anticipating Microsoft Ignite 2020 > Microsoft runs the 2020 edition of their annual Ignite conference as a free online event starting on September 22. In this piece, I look forward to Ignite and wonder how the event will go. - Published: 2020-09-21 - Modified: 2024-09-04 - URL: https://petri.com/ignite-2020-lookahead/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Microsoft Ignite 2020, Microsoft Lists, Teams, Yammer - Article Type: News, Opinion Welcome to 48 Hours of Free Technical Content The annual Microsoft Ignite conference for IT Professionals was originally planned to run in New Orleans starting today. Due to the Covid-19 pandemic, Microsoft decided not to run in-person events through June 2021, and consequently Ignite 2020 is now a 48-hour online event run over three days that’s open to all. You need to be registered to be able to stream live and access content on-demand afterwards. I really looked forward to the old-style Ignite conferences. Even the ill-fated baloney lunches in Chicago at the 2015 event didn’t remove the shine from getting together with friends, contacts, and other knowledgeable parties to discuss what’s happening in the Microsoft IT space. I liked the bustle, organized confusion, and cacophony of multiple discussions happening concurrently. I disliked not being able to get into some of the most popular sessions, the horrible coffee, and poor Wi-Fi service. In addition, the marketing side of Microsoft exerted more obvious influence over Ignite as the years rolled by, and some of the announcements had to be taken with a grain of salt (and the software never appeared in production). But overall, Ignite has always been well worth the expense. Ignite Costs In-person Ignite conferences are expensive for everyone. Although Microsoft knowns how to charge hefty fees to ISVs to have booths in the technology exhibition and to attendees for access to sessions, massive costs are involved in renting huge conference centers and the logistics of executing... --- ### Understanding PowerShell and Scheduled Task Management - Published: 2020-09-18 - Modified: 2024-09-04 - URL: https://petri.com/understanding-powershell-and-scheduled-task-management/ - Categories: PowerShell - Tags: PowerShell, Scheduled Task Management - Article Type: Overview Many tasks within Windows are managed by the Windows Task Scheduler. This versatile task scheduling system, akin to cron in Linux, is used by both core Windows processes and by user programs alike. Many tasks within Windows are managed by the Windows Task Scheduler. This versatile task scheduling system, akin to cron in Linux, is used by both core Windows processes and by user programs alike. Instead of using the GUI to configure each aspect of a scheduled task, PowerShell has the ability to define a task configuration for creation, modification, and removal of scheduled tasks. In this article, we explore both the creation and removal of a scheduled task running a PowerShell script. Setting up PowerShell for Scheduled Task Management Windows contains a built-in PowerShell module designed specifically for task management. These cmdlets work in Windows PowerShell, which also includes both PowerShell Core (6. x) and PowerShell 7. The module itself is named ScheduledTasks and can be imported, or automatically so, by calling on one of its commands. ​Import-Module -Name 'ScheduledTasks' There are several commands which cover virtually all of the needed functionality to interact and control scheduled tasks. ​Get-Command -Module 'ScheduledTasks'   Creating a New Scheduled Task Say we have a PowerShell script that we want to run on a regular basis. We want the task to do the following. Execute a PowerShell 7 Script Run the account as the System account using the highest level Run every day at 3 am starting the following day Stop running if over 30 minutes The cmdlet creates the scheduled task object that is then registered using the cmdlet. To create the new scheduled task, we must first define four components... . --- ### Understanding How MDM Policies are Applied in Windows 10 - Published: 2020-09-17 - Modified: 2024-09-04 - URL: https://petri.com/understanding-how-mdm-policies-are-applied-in-windows-10/ - Categories: Windows 10 - Tags: Microsoft Intune, Mobile Device Management, Windows 10 - Article Type: Overview Microsoft has improved Mobile Device Management in Windows 10 and it now works more like Group Policy. Group Policy has been around for 20 years but as more organizations look to manage an ever-mobile workforce, Mobile Device Management is often better suited to configuring and securing Windows endpoints. In this article, we'll discover how Mobile Device Management policies are processed in Windows. Group Policy settings are not tattooed onto the registry Windows has several different management technologies built in that organizations use to secure and configure servers and end-user devices. Group Policy was introduced in Windows 2000 as part of Active Directory (AD), replacing Windows NT System Policies. Group Policy is a powerful tool that can reduce total cost of ownership by helping IT to maintain standard configuration settings on Windows servers and PCs. Unlike NT System Policies, true Group Policy settings are not tattooed onto the registry. When a Group Policy Object (GPO) in AD is no longer applied to a device or user, settings are reverted to their previous values. Group Policy settings are locked and cannot be changed by users. But Group Policy Preferences differ in that users can change Preference settings. Although administrator-configured Preference values are reapplied every time Group Policy is refreshed. For more information on working with Group Policy, read How to Create and Link a Group Policy Object in Active Directory and How to Create a Group Policy Central Store on Petri. MDM is designed to work without Active Directory Group Policy is still the tool of choice for managing AD domain-joined devices that spend most of their... --- ### Restricting Guest User Access in Azure Active Directory > A new restricted level of access is available for Azure AD guest accounts. The good news is that it doesn't affect many Office 365 apps, which begs the question why the restriction exists. - Published: 2020-09-17 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-restrict-guest-access/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office - Tags: Azure AD, Guest access, Guest User Accounts - Article Type: News Clamping Down on Guests After several years’ usage, most Office 365 tenants are accustomed to guest users and the way that the Microsoft 365 groups membership model allows guests access to group resources such as plans, sites, and teams. For most, the model works well, and the only issue is how to best manage the guest user objects created in Azure AD. However, some organizations want to allow more restricted access to guests, specifically to clamp down on the ability of guests to navigate the directory in a host tenant. Microsoft’s answer is a preview of a new capability to restrict guest user access in Azure AD. According to Microsoft, “when guest access is restricted, guests can view only their own user profile. Permission to view other users isn't allowed even if the guest is searching by User Principal Name or objectId. Restricted access also restricts guest users from seeing the membership of groups they're in. ” Setting the Azure AD Guest User Access Restrictions Policy The Azure AD Guest user access restrictions policy (Figure 1) in the External collaboration settings blade in the Azure AD portal allows three options for guest access: Guests have the same access as members (most inclusive) setting means guests have the same access to directory data as regular users in your directory. Guests have limited access to properties and membership of directory objects settings. Guests don't have permissions for certain directory tasks, such as enumerating users, groups, or other directory resources. This is the default setting. Guests... --- ### Microsoft’s Fall Surface Plans Come into Focus - Published: 2020-09-16 - Modified: 2020-09-16 - URL: https://petri.com/microsofts-fall-surface-plans-come-into-focus/ - Categories: Hardware - Tags: Microsoft, News, Surface - Article Type: News Like Microsoft has done for many years, the company is once again planning a fall hardware event where the company will make updates to the Surface Pro X and introduce a smaller laptop as well. As Microsoft has done for many years, the company is once again planning a fall hardware event where they will announce updates to the Surface Pro X and introduce a smaller laptop as well. But what I am not expecting are updates to existing products like the Pro and Laptop. The Surface Pro X will be updated with a ‘new’ SQ2 processor that is built by Qualcomm but at its core is a Snapdragon 8cx Gen 2. Expect to see a new color, likely Platinum, along with improved performance from the new chipset. The smaller laptop that will have a 12. 5in display will help lower the price point for a more traditional laptop in the Surface family. Think of it this way, the Surface Laptop is analogous to the Surface Pro, with the new laptop analogous to the Surface Go: keeping the price down with lower performant specs – I am also hearing Windows Hello cameras may not be included but it will include a fingerprint reader. Windows Central is also hearing similar things about these products as well and I can confirm much of what they have written as being accurate. In addition, this fall, do not expect an updated Pro, Studio, or Laptop – at least at the time of writing this post. You can also expect that the larger 85in Surface Hub should be released soon, possibly at Ignite. Plans for releasing hardware right now are extremely fluid for Microsoft with COVID making it not only harder... --- ### Uncover Weaknesses in Active Directory Before Attackers Do - Published: 2020-09-16 - Modified: 2024-05-10 - URL: https://petri.com/uncover-weaknesses-in-active-directory-before-attackers-do/ - Categories: Active Directory (AD) - Tags: Active Directory - Article Type: Sponsored This post is sponsored by Semperis For twenty years, Active Directory (AD) has been the cornerstone of identity management. Despite the popularity of cloud computing, AD remains a key part of the infrastructure that almost every IT service relies on for its security. Active Directory is vulnerable to attack Active Directory was designed for a world without cloud computing and where attacks launched by nation-states and organized criminal gangs were unheard of. Regardless of the new reality that we live in today, Microsoft hasn't made any significant changes to AD security since its release. And as more people work from home due to the global COVID19 pandemic, AD is more vulnerable than ever. AD can be extended to support single sign-on to cloud services, like Microsoft 365 and other line-of-business apps. AD user accounts and passwords are synchronized to Azure AD, Microsoft's cloud-based identity platform, using a tool called AD Connect. Devices can also be joined to an AD domain and registered with Azure AD simultaneously. Because AD performs a critical security role in authenticating users to both on-premises and cloud resources, it must be properly managed and secured. Active Directory is easy to attack because it has hundreds of settings that are complex to manage. Furthermore, management best practices are rarely implemented, leaving AD exposed. In cases where AD is compromised, organizations must expect that all resources that depend on it will also be compromised. Tools for hacking Active Directory AD is complex but it is relatively easy to... --- ### Teams Education Drops Support for Cloud Recording in Stream for A1 Customers - Published: 2020-09-15 - Modified: 2024-09-04 - URL: https://petri.com/teams-education-drops-support-for-cloud-recording-in-stream-for-a1-customers/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Teams - Article Type: News A surprising change from Microsoft arrived at the end of August and it has caught many schools returning for the new term by surprise and prevented some from using cloud recording features. A surprising change from Microsoft arrived at the end of August and it has caught many schools returning for the new term by surprise and prevented some from using cloud recording features. On Microsoft’s Office 365 for Education A1 plans, roughly equivalent to Office 365 E1, the ability to record Teams meetings and automatically save them in Microsoft Stream has been removed – with some unwanted effects. Team’s cloud recording capability has been available for several years and makes it easy to record a meeting and automatically save the meeting to Microsoft Stream. Image #1 Expand Once in Microsoft Stream, the meeting can be transcribed for accessibility purposes and the meeting link is automatically published so those invited can find the meeting recording easily. Critically for many schools, controls are available to prevent the download of live lessons by pupils, which can be important for safeguarding reasons, and provides the ability for content to be found via eDiscovery searches. Since COVID-19 moved many schools to remote teaching, the ability to make lesson recordings available easily on-demand has been a useful feature that many schools have leveraged. For many institutions, Teams was not used as a video meeting solution as widely as in businesses, so it has been a steep learning curve for teachers as they learn about Teams on the job. It is worth saying that overall, Microsoft has also been excellent at updating the product functionality over the last few months to meet specific needs of schools,... --- ### Microsoft Readies Windows Server 2021 with New Preview Builds - Published: 2020-09-15 - Modified: 2020-09-15 - URL: https://petri.com/microsoft-readies-windows-server-2021-with-new-preview-builds/ - Categories: Windows Server - Tags: Windows Server 2021, Windows Server vNext - Article Type: News Microsoft releases two new Windows Server vNext builds with a comprehensive list of new features. It's been quiet on the Windows Server front in recent months. But in the last few weeks Microsoft has released two new preview builds of Windows Server vNext, which will become Windows Server 2021 on the Long-Term Servicing Channel (LTSC). Not only that, we got to see a list of new features. Both new builds include the full Desktop Experience and Server Core installation options. Because Windows Server 2021 is an LTSC release, it will get 10 years of security patches but no feature updates. For more regular Windows Server feature updates, you need to be on the Semi-Annual Channel (SAC). SAC builds don't contain the Desktop Experience or Server Core options. For more information on Windows Server servicing channels, check out Microsoft's website here. Some of the new features in Windows Server 2021 are from current builds of Windows Server on SAC. SAC builds are designed for customers needing access to new features as quickly as possible. In the new preview builds, there's a big focus on networking, clustering, containers, and Kubernetes. Windows Server vNext Preview Build 20201 Microsoft announced Windows Server vNext Preview Build 20201 at the end of August. Here are some of the highlights: MsQuic is Microsoft's implementation of QUIC, a general-purpose transport layer network protocol originally designed by Google's Jim Roskind. QUIC is still an Internet draft protocol but it is used by Google Chrome against connections to Google's own servers. Microsoft Edge and Firefox support QUIC but it is turned off by... --- ### Use a Super User Group for Privileged Access to Encrypted Office 365 Content > The combination of Azure AD Privileged Identity Management and Role assignment to Groups opens up all sorts of possibilities, including a way to control the supe-user permission for access to encrypted content. - Published: 2020-09-14 - Modified: 2024-09-04 - URL: https://petri.com/use-super-user-access-protected-content/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office - Tags: Azure Information Protection, Office 365 Sensitivity Labels, Privileged Identity Management - Article Type: How To, News Controlling Access to Sensitive Content A recent Microsoft Technical Community article covers how to use Azure AD Privileged Identity Management to control access to the super-user permission for Azure Information Protection. An account holding super-user permission can access any content protected (encrypted) by an Azure Information Protection or Office 365 sensitivity label. I don’t intend to replicate the information presented in the article, which is largely focused on accessing encrypted documents stored outside Office 365. Instead, I report my experience of using the solution inside Office 365. Given the increase in protected content stored in Exchange Online, SharePoint Online, and OneDrive for Business through the use of sensitivity labels, it seemed like a good thing to do! Super User Permission Super-user permission isn’t intended for daily use. It’s designed for scenarios when access is needed to sensitive content by people who don’t normally have access. For instance, if protected files are retrieved by a content search and are then turned over for review by eDiscovery investigators, the investigators cannot open the files unless rights defined in the labels applied to the files allow access. It’s possible to define rights in labels for eDiscovery access, but you’d have to do this for every label used in the tenant and that’s sometimes inappropriate. Assigning super-user permission solves the problem, but because the permission is so powerful it’s important that it is strictly controlled. Super-user permission can only be assigned via PowerShell by a tenant administrator using the Add-AipServiceSuperUser cmdlet in... --- ### Paul Thurrott's Short Takes: September 11 - Published: 2020-09-11 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-11/ - Categories: Cloud Computing, Hardware, Microsoft 365, Microsoft Teams, Mobile - Tags: News - Article Type: Overview Because this is no time for cowardice, this edition of Short Takes looks at Microsoft’s TikTok acquisition possibly being foiled by China, the clarity of the first wave of Surface Duo reviews, another win for Microsoft in the battle over JEDI, and so much more. Because this is no time for cowardice, this edition of Short Takes looks at Microsoft’s TikTok acquisition possibly being foiled by China, the clarity of the first wave of Surface Duo reviews, another win for Microsoft in the battle over JEDI, and so much more. TikTok acquisition hangs in the balance I know that a lot of is riding on Microsoft’s planned acquisition of TikTok---I can’t wait to get a daily TikTok video next to the weather and my schedule in Outlook---but a recent move by China may have scuttled any deal ahead of the U. S. government’s arbitrary September 15 deadline. Confused? Sorry, I can’t stop the train at this point, but Microsoft has been pursuing a $20-$30 billion deal for the non-China assets of TikTok for months now, and it’s coming down to the wire. And despite the recent and unwelcome appearance of Oracle into the mix, it appeared that Microsoft was on the verge of actually winning the contest and walking away with ... something. But now China, the home of TikTok’s parent company, has stepped in with some dual-use (military/consumer) export restrictions. And among them is a clause that appears to specifically target the algorithms used by TikTok, which are, of course, a key asset of the potential acquisition. So I guess we’ll see what happens. But seriously, Microsoft. Do not buy TikTok. I mean, come on. I was right about Surface Duo. You should listen to me sometimes. “No, Microsoft CEO Satya Nadella Didn’t Sell $189... --- ### How to Use PowerShell to Manage Folder Permissions - Published: 2020-09-11 - Modified: 2024-12-12 - URL: https://petri.com/how-to-use-powershell-to-manage-folder-permissions/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To Looking to manage folder permissions with Powershell? This is the easy way to accomplish that task. Managing file and folder permissions is a complex and time-consuming process. This is especially so when utilizing the standard graphical user-interface (GUI). PowerShell makes this process easier and faster. For example, say you need to update folder permissions across hundreds of user folders, using the GUI would take a very long time whereas utilizing PowerShell makes quick work of large tasks such as this one. What can PowerShell do to assist in managing file and folder permissions? There are a number of ways that PowerShell makes this process easier. Listing file and folder permissions Adding file and folder permissions Removing file and folder permissions Modify file and folder ownership Enable or disable folder inheritance This article is written to managing Windows NTFS file and folder permission rules. There is not a native provider yet for Linux based permissions. You can utilize common methods for Linux permission management from within PowerShell, but not using the same methods as outline within the article. Exploring NTFS file and folder permissions NTFS has a large number of permissions that are available to be set in various combinations on files and folders. To easily view all of the available permissions, you can output the System. Security. AccessControl. FileSystemRights. ::GetNames It may not always be clear what these permissions can do though and they are broken up into basic permissions and advanced permissions. Basic Permissions Full Control: Users can modify, add, move and delete files and directories, as well as their associated properties. In addition, users can change permissions settings... --- ### Surface Duo Review: The Pursuit of Productivity - Published: 2020-09-10 - Modified: 2024-09-04 - URL: https://petri.com/surface-duo-review-the-pursuit-of-productivity/ - Categories: Hardware - Tags: News, review, Surface, Surface Duo - Article Type: Review Microsoft's Surface Duo is a unique productivity device that fits in your pocket but it is not for everyone.; In an alternative universe, Microsoft’s ambitions in the smartphone segment are as successful as its desktop counterpart. But the reality is that Microsoft has found itself on the sidelines of the mobile conversation when it comes to hardware and software. While the scars of the past are still present, the company is once again pursuing the pocketable segment with the Surface Duo. But this time around, things are different. In contrast to when Microsoft was trying to sell Lumias and music subscriptions, the company has become comfortable with its position in the marketplace as a leader in productivity software and services. And there is no denying that it was this recognition of their true strengths that finally made the Surface Pro a success with the Surface Pro 3. And now, the company is applying that same methodology to the Surface Duo where they hope to mimic the success of the Surface Pro. And the Duo is nothing like I have used before, which makes it important to understand how and why this device exists. It is easy to say the Duo is a smartphone but when you look at how Microsoft is promoting the hardware, to me, this is device reminds me more of the PDAs of the early 2000s than of the smartphones of the 2020 era. And that’s the lens that I am going to review this hardware through because after using the device for two weeks, the Duo is the best ‘productivity pocketable’ available today but it... --- ### Outlook Mobile Ceasing Support for iOS 12 Soon > Outlook for iOS will cease support for iOS12 after Apple makes iOS14 generally available. This means that you need to find any devices running iOS12 in your organization. - Published: 2020-09-10 - Modified: 2024-11-19 - URL: https://petri.com/outlook-ceasing-support-ios-12-soon/ - Categories: Microsoft 365, Office, Outlook, PowerShell - Tags: Exchange Online PowerShell, iOS12, iOS14, Outlook for iOS, Outlook Mobile - Article Type: How To, News Outlook Prepares for the Coming of iOS14 Apple’s much-awaited release of iOS 14 is due this Fall. According to Office 365 notification MC221506 published on 4 September, a consequence of the release is that Microsoft will adjust its minimum iOS system requirements for Outlook for iOS and watchOS. Microsoft has always supported the two most recent versions of iOS, meaning that once iOS14 is available, iOS12 will no longer be a supported platform. That’s the downside. The upside from an Outlook user perspective is that Outlook can be made the default email client for iOS14. Microsoft says that being unsupported means that devices running iOS12 “will no longer receive Office app updates. ” In other words, the same lack of support extends to all the Office apps on iOS. The apps will continue working, but users won’t be able to download and install the latest versions until they move to iOS13 or iOS14. Microsoft also notes: “Over time, Outlook for iOS on iOS 12 devices will eventually stop synchronizing email and calendar data. ” Time to Track Down Old Devices Obviously, it’s time to check if any soon-to-be-elderly iOS devices are in active use with Outlook. One way to tackle the problem is to use the mobile device information recorded by Exchange Online to identify devices running any variant of iOS 12. Once again, PowerShell is the quickest and easiest way to retrieve and analyze the data, The Get-MobileDevice cmdlet returns a list of mobile devices known to Exchange Online... . --- ### Coming Soon - GET-IT: Office 365 Security Day, Streaming September 30th - Published: 2020-09-09 - Modified: 2024-09-04 - URL: https://petri.com/coming-soon-get-it-office-365-security-day-streaming-september-30th/ - Categories: GET IT - Tags: GET-IT, Microsoft, Office 365, office 365 security - Article Type: Overview Petri's GET-IT: Office 365 Security 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Office 365 content aimed at accelerating the understanding of the security components of the platform as well as how to execute tasks securely inside the environment. Petri's GET-IT: Office 365 Security 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Office 365 content aimed at accelerating the understanding of the security components of the platform as well as how to execute tasks securely inside the environment. Throughout the day you will hear from Microsoft MVPs and industry experts about how to take full advantage of security functionality in Office 365 and dive deep into the technical aspects of your tenant to make it more secure. During this free day of learning, we will be streaming to YouTube, Twitter, Facebook, Petri. com, and other locations to make it easy for you to watch Office 365 Security Day wherever it is most convenient for you. And who will be speaking? On the docket, we have Stephanie Donahue, Steve Goodman, Todd Klindt, Joanne Klein, Liam Cleary, and Jasper Oosterveld. These respected MVPs will dive into various areas of the Office 365 platform and also provide downloads that you can use for reference material. Why Office 365 security? With the explosive growth of remote work during the past eight months, making sure that your users are on-boarded correctly, collaborating securely, and organized efficiently, is more important than ever. With the event about three weeks away, you can head over to our landing page to learn more about the sessions and connect with the speakers. And be on the lookout for additional updates before the event too, including more sessions. --- ### How to List Active Directory Privileged Group Membership Using PowerShell - Published: 2020-09-09 - Modified: 2024-09-04 - URL: https://petri.com/how-to-list-active-directory-privileged-group-membership-using-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell, Security - Article Type: How To One of the biggest security issues that organizations face with Windows Server Active Directory is the proliferation of privileged accounts. One of the biggest security issues that organizations face with Windows Server Active Directory is the proliferation of accounts with privileged access to a domain or forest. Microsoft's own best practices say that access to privileged groups, like Domain Admins, should be limited to just a few accounts and only used when necessary. But it's common to find many accounts added to Domain Admins, Enterprise Admins, and other privileged groups. If IT staff are often granted privileged access to AD, sometimes for valid reasons. But permanent access to privileged AD groups is likely to lead to compromise. When privileged AD credentials are used for everyday computing tasks, it's easy for hackers to take advantage and use them to get access to AD. So, as part of your security checks, it's a good idea to make sure that privileged AD groups stay as empty as possible. Before you can run the code in this article, you need to install the PowerShell module for Windows Server Active Directory. The Active Directory PowerShell module is installed on domain controllers (DC) by default. But it is best practice to perform everyday administration tasks from a domain-joined Windows 10 PC. Install the Windows Server Active Directory PowerShell module The AD PowerShell module is part of the Remote Server Administration Tools (RSAT) for Active Directory Domain Services. To install the RSAT AD tools, open a PowerShell prompt with local administrator privileges and run the following command: Add-WindowsCapability -Name Rsat. ActiveDirectory. DS-LDS. Tools~~~~0. 0. 1. 0 –Online Once the tools have... --- ### Scoping Office 365 Sensitivity Labels > Office 365 sensitivity labels can be used to apply markings and protection to files, email, and containers. Now Microsoft is enabling scoping for sensitivity labels to make management easier. - Published: 2020-09-08 - Modified: 2024-09-04 - URL: https://petri.com/scoping-sensitivity-labels/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Microsoft 365 Groups, Office 365 Sensitivity Labels, SharePoint Online - Article Type: News The Evolution of Sensitivity Labels When Microsoft launched sensitivity labels in late 2018, the implementation was simple: you defined labels that could mark and protect Office files and email and published them to users, who then applied the labels as needed. Over time, Microsoft has increased the usefulness of sensitivity labels by building native support for labels into Office clients and by giving SharePoint Online the ability to process encrypted content. Recently, support for large-scale application of sensitivity labels to data at rest has been added to address the need to mark and/or protect the masses of documents created before sensitivity labels existed. The Power of Container Control In addition to the application of labels to files and email, earlier this year Microsoft established labels as a mechanism to apply policy to “containers”: SharePoint Online team sites, Microsoft 365 Groups, and Teams. When an administrator creates a new container or edits the setting of an existing container, if the label contains container settings, those settings are applied to the container. Giving sensitivity labels the ability to manage containers is a powerful concept. Today, the settings applied to a container are limited to controlling guest access, whether the group is public or private, and managing access to files from unmanaged devices.   The most recent setting is control over the sharing capability for SharePoint sites. This setting can already be manipulated with PowerShell and now it’s being added to the GUI. Over time, it’s not hard to imagine that Microsoft... --- ### Teams Spotlight Feature Will Let Presenters Control the Primary Video Feed - Published: 2020-09-07 - Modified: 2024-09-04 - URL: https://petri.com/teams-spotlight-feature-will-let-presenters-control-the-primary-video-feed/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, News, Spotlight, Teams - Article Type: News While Microsoft Teams has proven itself during the pandemic of 2020 as a viable meeting platform, there are still some corners of the application that need a bit of polishing. While Microsoft Teams has proven itself during the pandemic of 2020 as a viable meeting platform, there are still some corners of the application that need a bit of polishing. The meeting experience inside of Teams has improved significantly during the past 12 months but a new spotlight feature that is coming soon will deliver the control presenters have desired since the app’s inception. Announced on Twitter, Teams will soon let the presenter control the video feed that everyone sees during the meeting with a feature called Spotlight. This functionality will be a big win for teachers who want to lock what each student is seeing during a session and there are many other scenarios where this feature will be useful as well. Image #1 Expand Currently, the best way to control what is on your screen is to ‘pin’ a presenter to the breakout window but this functionality will let the presenter lock the meeting view to only a single feed. This functionality could also be helpful for when you are using Teams to broadcast using xSplit/OBS to endpoints like YouTube or Twitter. When you couple this functionality with the recently announced Breakout rooms, Teams is about to get a significant enhancement with these two features. Like all things Microsoft 365, we don’t know exactly when this feature will be rolling out which happens typically in two phases – general availability and then availability in your tenant. But, with Ignite happening in about three weeks, my guess would be... --- ### How to Report Active Directory Schema Changes Using PowerShell - Published: 2020-09-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-report-active-directory-schema-changes-using-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell - Article Type: How To To protect the integrity of Active Directory, it's worth checking that only approved changes to the schema are made. Changes to the Active Directory (AD) schema can result in operational problems. In general, the schema shouldn't change. But if a new application is installed that relies on Active Directory, like Microsoft Exchange Server, then the schema must be updated to support the application. To protect the integrity of AD, it's worth checking that only approved changes to the schema are made. Using PowerShell, it's easy to generate a report of AD schema changes. But before you run the code in this article, install the PowerShell module for Windows Server Active Directory. The Active Directory PowerShell module is installed on domain controllers (DC) by default. But it is best practice to perform everyday administration tasks from a domain-joined Windows 10 PC. Install the Windows Server Active Directory PowerShell module The AD PowerShell module is part of the Remote Server Administration Tools (RSAT) for Active Directory Domain Services. To install the RSAT AD tools, open a PowerShell prompt with local administrator privileges and run the following command: Add-WindowsCapability -Name Rsat. ActiveDirectory. DS-LDS. Tools~~~~0. 0. 1. 0 –Online Once the tools have installed, you can close the elevated PowerShell window. To run the rest of the commands in this article, you need only be logged in to Windows 10 with an account that's a member of the Active Directory 'Domain Users' group. For more information on installing RSAT in Windows 10, see How to Install the Remote Server Administration Tools in Windows 10 on Petri. Report AD schema changes using PowerShell Using the Get-ADObject cmdlet, we... --- ### Using PowerShell Invoke-RestMethod and Invoke-WebRequest with REST APIs > To interact with a REST API the PowerShell Invoke-RestMethod function is a clear choice. This function natively turns input JSON or XML into native PowerShell objects that make further interaction easy. Learn how to use Invoke-RestMethod in this article. - Published: 2020-09-03 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-with-rest-apis/ - Categories: PowerShell - Tags: Invoke-RestMethod, Invoke-WebRequest, PowerShell, Rest API\ - Article Type: Overview With the advent of cloud services, PowerShell is more important than ever. The Invoke-RestMethod and Invoke-WebRequest functions of PowerShell allow easy interactions with an API and aid in creating complex workflows. With the advent of cloud services, PowerShell is more important than ever. The Invoke-RestMethod and Invoke-WebRequest functions of PowerShell allow easy interactions with an API and aid in creating complex workflows. There are many different authentication methods and API call structures that exist. The Invoke-RestMethod PowerShell function can easily handle any number of different scenarios. Invoke-RestMethod vs Invoke-WebRequest The two most common PowerShell methods of interacting with REST API's are to use either Invoke-RestMethod or Invoke-WebRequest. To interact with a REST API the Invoke-RestMethod function is a clear choice. This function natively turns input JSON or XML into native PowerShell objects that make further interaction easy. Invoke-WebRequest is best for raw interactions with websites. This will return the output structure of a website and the raw JSON of an API which necessitates further transformations. Here we are going to show the differences in output. Both cmdlets will be used to query an unauthenticated weather API to see how the output is shown in PowerShell. Invoke-WebRequest     The results from the Invoke-WebRequest call includes header, status, and raw contents. To convert the content to a proper JSON object you will need to call ConvertTo-JSON. Now let's take a look at how Invoke-RestMethod handles the same API call. Invoke-RestMethod     As you can see in the response, the JSON output is automatically converted to a PowerShell object. For REST API's this conversion greatly simplifies the management and use. API Authentications Of course, with most API calls at some point... --- ### Making Office 365 Activity Alerts More Accessible > Office 365 signals alerts when preset conditions are met. The alerts are available in email and in the Security and Compliance Center, but it's nice to be able to expose them elsewhere using PowerShell. - Published: 2020-09-03 - Modified: 2024-09-04 - URL: https://petri.com/making-office-365-activity-alerts-more-accessible/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Graph, Microsoft Teams, Office 365 Activity Alert, PowerShell, Teams channel - Article Type: How To Creating Alerts from Office 365 Audit Events As events from workloads flow into the Office 365 audit log, activity alerts and alert policies look for instances of specific events. Alert policies are more sophisticated because they allow time-limited thresholds for activities to be defined so that an alert won’t be created unless the threshold is breached within a set period. Policies can also be restricted to monitoring specific users. Microsoft populates some alert policies for tenants, with the exact set depending on the licenses held by the tenant. Figure 1 shows an example of an alert policy created by Advanced Threat Protection (ATP). Image 1 Expand Figure 1: Alert policy created by Advanced Threat Protection (image credit: Tony Redmond) Products can add alert policies too, which is what is done for communication compliance policies to advise when potential policy violations are detected. Finally, tenants can create custom alert policies to meet their own needs. Processing Alerts When the conditions set in an alert policy are met, Office 365 notifies individuals defined in the policy by email. Administrators can then access the View Alerts page in the Security and Compliance Center (Figure 2) to work with the alerts and decide if any further action is needed. Image 2 Expand Figure 2: Viewing Alerts in the Security and Compliance Center (image credit: Tony Redmond) Access to the Alert information is controlled by RBAC roles; the alerts that people see depends on the roles held by their account (see this page for more... --- ### How To Broadcast Teams Meetings Like a Pro with NDI and OBS - Published: 2020-09-02 - Modified: 2024-09-04 - URL: https://petri.com/how-to-broadcast-teams-meetings-like-a-pro-with-ndi-and-obs/ - Categories: Microsoft 365, Microsoft Teams - Tags: Broadcast, Live Events, NDI, OBS, Teams - Article Type: How To Looking to use Teams with OBS and broadcast your video streams? This is how you can accomplish that task. Microsoft Teams gained new functionality last week that enables you to capture audio, video, and shared screens in meetings and feed them into third-party software for professional recording or live streaming. Improve how you record and produce live events in Microsoft Teams using NDI This functionality has been available in Skype since 2018 and uses NewTek’s Network Device Interface (NDI) protocol, an open standard used to capture and transmit broadcast-quality video over a network. When you have watched TV stations bring in remote guests from home and it doesn’t look like a Zoom meeting - the chances are they are either using the broadcast version, SkypeTX or Skype with NDI. With Teams, this enables you to improve the way you record or produce live events; Teams has built-in meeting recording and Live Events functionality. However, neither of these options allow you to fully customize the way that the video streams are shown in the recording, or to live event viewers. Using NDI-out, you can conduct your Teams meeting as normal and capture the video feeds into a separate piece of software capable of arranging the video feeds in a professional, customized way. For example, you might choose to have a custom background, company logo, and position each video feed in a particular place. Image #1 Expand During the recording or live stream, you might choose to switch between different scenes at appropriate times, such as when you want to focus on a particular speaker or switch the focus to... --- ### Everything You Need to Know About Office 365 - August Edition - Published: 2020-09-01 - Modified: 2020-09-01 - URL: https://petri.com/everything-you-need-to-know-about-office-365-august-edition/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, Office 365 - Article Type: News Next month, Microsoft will be hosting their Ignite conference and while it may be split into two events, I am still expecting a significant amount of news to come out of the virtual conference Next month, Microsoft will be hosting their Ignite conference and while it may be split into two events, I am still expecting a significant amount of news to come out of the virtual conference. You can learn more about the duo-Ignite, here. Kicking things off this month is a bad idea that Microsoft has with the expansion of self-service licensing. The company is expanding the Power Platform license model to Visio and Project which means IT Pros need to be aware of what capabilities this enables for your users. When it comes to supporting your environment, keep in mind that Exchange 2016 will end mainstream support on October 13th. This month also marks the release of a new license for Teams; you can now pay $12 a month for an Advanced Communications add-on license. What do you get for that additional fee? Tony has a breakdown of the capabilities included but at a high level, it includes larger live events, compliance recording integration, and custom branded meeting lobbies. And if you are curious about how to best configure your lobbies, Steve has an overview of that process. Speaking of Teams, Breakout Rooms will be arriving (hopefully) later this year and support for IE 11 is ending in November. For those using Teams on older Android devices, here is how you can identify those phones as Android 4. 4 will no longer be supported in the near future. One of the items that Microsoft has been pushing this summer is the updated... --- ### Everything You Need to Know about the Power Platform – August 2020 > Learn about for a Selected Message in Teams and when a column is modifed in SharePoint both new flow Triggers. Plus more with Teams, Power BI, and Oakdale. - Published: 2020-09-01 - Modified: 2020-09-01 - URL: https://petri.com/everything-you-need-to-know-about-the-power-platform-august-2020/ - Categories: Microsoft 365 - Tags: Flow, power apps, Power Automate, Power BI, Power Platform, Power portals, SharePoint, Teams Ignite is right around the corner but August had a few PowerApp updates that you should know about. This month felt like a slow month but there are a couple of hidden gems. The last couple I have had new functions that excited me to share or other major announcements. My assumption is since we are the month before Microsoft Ignite, they are sitting on things. So fingers crossed it is cool stuff. For this month I did find a few neat things with my favorite being the ability to run flows from Teams messages and when a SharePoint column is modified. ? Project Oakdale – Deep dive on the data model Last month we talked about how Teams is becoming the center of the Power Platform universe. It is a fact, it will happen. So as part of getting ready while we wait for the announcement you can study up. To help, Marc at Microsoft put together a detailed breakdown of what will come in the new version of the Common Data Service for Teams vs. the features of what exists with Common Data Service today. Get reading you just should know this stuff and be excited about it. Power BI Report Server release delayed until October Long story short? Report Server is being delayed so they do not have to release a half-baked version in September and then you are forced to wait till January for a proper version. I commend Microsoft for saying pushing the date was better than hitting an arbitrary date with bad code. Good call guys and gals! More details... --- ### Everything You Need to Know About Azure Infrastructure – August 2020 Edition - Published: 2020-09-01 - Modified: 2020-09-01 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-august-2020-edition/ - Categories: Microsoft Azure - Tags: AzCopy, Azure, Azure Backup, Azure CDN, Azure Monitor, Azure Policy, Azure Security Center, Azure Shared Disks, Azure Site Recovery, Azure SQL, Azure SQL Managed Instance, Backup, Cloud Shell, Durable Functions, GitHub, GitHub Actions, Log Analytics, service health, SQL Server, virtual machines - Article Type: Overview With August now behind us, here's a look at the major announcements from this month. This monthly update comes to you from COVID-19 lockdown central in Ireland. The county that I live in has been “locked down” for the last 3 weeks after isolated clusters in several factories were identified. Remote working has never been more important – and the cloud plays a big role in that. So, let’s see what Microsoft Azure did to improve things for us in the last month. Outage Communications How do you find out about an outage (service incident) in Azure? For some, stuff doesn’t work right and you check the Azure status page. For others, they go onto some social media platform and observe their uneducated friends crowing “this is why I will never do cloud” (and become redundant). Microsoft wants to improve that experience for Azure customers using 5 pillars: Speed: The goal is to inform customers within 15 minutes of an outage. As you can imagine, with something as large and complex as Azure, there are frequent issues, most of which only affect a few customers. Confirming that there is an issue and then communicating that incident to a customer can take time. Microsoft is using artificial intelligence (“AIOps”) to detect, engage and mitigate outages. In the last quarter, AIOps handled over half of the outage issues. A core change is that issues will be communicated through Azure Service Health in the Azure Portal – issues unique to the customer will be presented privately here through the authenticated Portal. Granularity: By using the Azure Portal, incident... --- ### Everything You Need to Know About Windows – August 2020 Edition - Published: 2020-09-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-august-2020/ - Categories: Windows 10, Windows Server - Tags: Microsoft, News, Windows 10 - Article Type: News August saw Microsoft release Edge 85 to the Stable Channel, reveal features that will be part of Windows Server 2021, and backport WSL2 to Windows 10 1903 and 1909. August has been relatively quiet, but there have been some important announcements. So, let's get started. Microsoft releases Edge 85 to the Stable Channel Microsoft released Edge version 85. 0. 564. 41 to the Stable channel on August 27th. It includes several feature updates, including the ability to synchronize favorites and settings to Active Directory profiles so that a connection to the cloud isn't required. There is added group policy support for trusting site + app combos to launch without a combination prompt. Administrators can configure trusted protocol/origin combinations, like those for Microsoft 365 apps, so confirmation prompts are suppressed when going to a URL that contains the app protocol. In addition, Collections gets a 'Send to OneNote' option, there are some updates to the DevTools, and Microsoft releases a Storage Access API to provide access to first-party storage in a third-party context. The Storage Access API is a JavaScript API that provides fine-grained control of storage access permissions when access would usually be denied by the browser's default settings. Finally, the PDF Highlighter tool can be added to the toolbar for PDFs so users can easily highlight important text. Windows 10 version 1803 gets another 6 months' support Originally due to end November 10th, Microsoft announced this month that support for Windows 10 Enterprise, IoT Enterprise, and Education 1803 would be extended by 6 months to May 11th, 2021. Microsoft cites in its blog post customer feedback and the need to focus on business continuity during the global pandemic. IE11... --- ### Using Microsoft Teams Lists > After launching Microsoft Lists for SharePoint Online and OneDrive for Business, we now have a Lists app in Teams. - Published: 2020-08-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lists-teams/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Microsoft Lists, Microsoft Teams, Teams - Article Type: How To, News Teams, Tabs, and Lists Office 365 notification MC220295 posted on 13 Aug 2020 (Microsoft 365 roadmap item 64162) announces the arrival of the Lists app for Teams. This app allows access to Microsoft Lists, the new iteration of the well-known SharePoint lists, with the notable restriction that personal lists (stored in OneDrive for Business) are not supported. The lists accessible through the app are those stored in SharePoint team sites. Available to All Microsoft Teams App Users By default, the MS Lists app is available to all Teams users. The Teams app allows users to create a channel tab by creating a new list or setup a tab pointing to an existing list within the team site. If you don’t want users to use the Lists app, you can deploy a custom app permission policy to block access to the app. Adding the Lists App to a Teams Channel Microsoft preinstalls the Lists app to all Teams, so adding it to a channel tab is simple. Create a new tab and select Lists from the set of available apps (Figure 1). Image 1 Expand Figure 1: Selecting the Lists app for Teams to add to a channel (Image credit: Tony Redmond) After selecting the Lists app, you must save the app to make Lists available in the channel. Once saved, you can go ahead and create a new list or associate an existing list with the tab. Creating Lists Tab from an Existing Teams List New lists can be... --- ### Paul Thurrott's Short Takes: August 28 - Published: 2020-08-28 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-august-28/ - Categories: Cloud Computing, Microsoft 365, Windows 10, Windows Client OS - Tags: News - Article Type: Overview Because it’s still August, what do you mean it’s still August, this edition of Short Takes looks at Microsoft and Oracle’s epic battle for TikTok, the latest Windows 10 version upgrade, a Windows 95 anniversary, a weird problem with Microsoft Teams for Android, and so much more. I don't know why anyone complained about the graphics in "Halo: Infinite"! Because it’s still August, what do you mean it’s still August, this edition of Short Takes looks at Microsoft and Oracle’s epic battle for TikTok, the latest Windows 10 version upgrade, a Windows 95 anniversary, a weird problem with Microsoft Teams for Android, and so much more. Microsoft and Oracle are neck-and-neck in the battle for TikTok According to competing reports, either Microsoft or Oracle is the current front-runner to acquire TikTok in a deal that could be announced within days. My money is on Microsoft: The firm has far more cash to spend than does Oracle, and it now has the backing of Walmart, which may emerge as the primary partner in the acquisition. Of course, many---myself included---are still wondering why Microsoft would even want TikTok, a curiously childish social media platform that could disappear as quickly as it emerged. But there are a few good reasons. First, it plans to migrate the service to its own Azure cloud offering, which is smart. And second, it will give Microsoft’s Graph and other AI offerings another 100 million data points to work off of, and data is the one key area in which Microsoft is trailing other firms like Google. So we’ll see what happens. But my bet is on Microsoft making the acquisition. “How do I implement a Zero Trust security model for my Microsoft remote workforce? ” First, trust no one. Microsoft finally starts rolling... --- ### How to Identify Unsupported Teams Devices using Endpoint Manager - Published: 2020-08-27 - Modified: 2024-09-04 - URL: https://petri.com/how-to-identify-unsupported-teams-devices-using-endpoint-manager/ - Categories: Microsoft 365, Microsoft Teams - Tags: Android, intune, mobile device, Teams - Article Type: How To If you need to understand how to find older devices that will no longer work with Teams, here is how you can identify those assets. At the end of June Microsoft announced that they would retire Teams mobile support for Android 4. 4 (KitKat) by September this year, which is just around the corner. This in general is good, because if you use Intune to manage your devices today, then you should be planning to move to Android Enterprise management features that require Android 5. 0 or higher – or ideally Android 6. 0 and above. However, moving to a newer version of Android isn’t straightforward because unlike Apple's iOS, which has a clear-cut set of definitions for which devices will get OS updates, the decision to update an Android OS rests with various device manufacturers, and in many cases wireless carriers. Devices affected by this change are smartphones and tablets that are typically at least five years old and include older devices such as the Samsung Galaxy S3. Most devices from around 2015 onward received updates to Android 5 (Lollipop) and Android 6 (Marshmallow); dedicated Teams phones are not affected by this change. Finding older devices enrolled with Intune If you enroll devices with Intune, then these will be straightforward to identify. The Intune Company Portal app has only supported Android 5. 0 and higher since January 2020, therefore it’s unlikely you will have received any new enrolments since then – but devices with the app already installed can continue to enrol today. To find these devices and export a list, visit the Microsoft Endpoint Manager Admin Center and navigate to Devices>Android Devices. You will see a list... --- ### FCM Messages Blasted out to Teams Customers on Android - Published: 2020-08-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-accidentally-blasts-out-test-message-to-teams/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, News, Office 365, Teams - Article Type: News Microsoft is dealing with a minor issue of blasting out “Test” messages to Teams users. We have all been there, one slip of the script and instead of working in the dev environment, you nuke a production server. While this instance isn’t nearly that catastrophic, Microsoft is dealing with an issue of blasting out “Test” messages to Teams users but it's not entirely clear who is at fault though. The company is aware of the issue and has indicated that users, only on their mobile device, may receive “Test” notifications that state “FCM Messages Test Notifications” according to TM221041. According to reports on Twitter, these are not one-off instances with reports of up to 10 messages being received. But it may not be Microsoft's fault (initially), users on Reddit suspect it may be related to Firebase but nothing official is known at this point; Microsoft has stated that this issue only impacts Android users. If the issue is with Firebase, this is not a vulnerability in Teams but in the notification system for Android. Meaning, it looks like the Android SDK notification service is being hit with the result being non-geniune Teams notifications appearing that are not actually from the Teams app but from a potential weakness in Firebase/Android notification platform. Image #1 Expand Microsoft accidentally sent out test messages to Teams users Christian on Twitter was one such “lucky” recipient and Todd Klindt shared the screenshot you see in this post. If you have users reporting this problem, you are not alone and there is not much that you can do. This is on... --- ### Using Trainable Classifiers to Assign Office 365 Retention Labels > A trainable classifier is a digital representation of a common document type in your Office 365 tenant. After training Office 365 to generate the classifier by analyzing many documents of the type, you can use it to assign retention labels. - Published: 2020-08-27 - Modified: 2024-09-04 - URL: https://petri.com/using-trainable-classifiers-assign-office-365-retention-labels/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Office 365 retention labels, Trainable classifier - Article Type: How To The Challenge of Retention Processing Retention labels control how long items remain in an Office 365 workload and what happens once the retention period expires. Labels can be assigned manually, but the success of manual labeling depends on users understanding how to make the best choice from the available retention labels. Sometimes the choice is clear, as in a document which obviously contains information that should be kept, and sometimes it’s not. Auto-label policies try to solve the problem by looking for documents and messages which match patterns. For example, if a document holds four instances of a credit card number, it should be assigned the Financial Data label. On the other hand, if a document holds personal information like a social security number, it should get the PII Data label. Auto-label policies work well when items hold content that is identifiable by matching against the 100-plus sensitive data types defined by Microsoft or a keyword search for a specific phrase (like “project Contoso”). They are especially valuable when organizations have large numbers of existing documents to be labeled. Computers are better at repetitive tasks than humans, and it makes sense to deploy intelligent technology to find and label documents at scale. That is, if you can be sure that the documents you want to label can be accurately located. Sensitive data types and keyword searches do work, but there’s always likely to be some form of highly-specific information in an organization that searching by data type or keyword doesn’t... --- ### TPM 2.0 and Secure Boot Become Mandatory for Windows Server Hardware in 2021 - Published: 2020-08-26 - Modified: 2020-08-26 - URL: https://petri.com/tpm-2-0-and-secure-boot-become-mandatory-for-windows-server-hardware-in-2021/ - Categories: Windows Server - Tags: Security, Windows Server - Article Type: News Most x64 bit server hardware shipping today has TPM 2.0 and Secure Boot, but the features are often turned off by default. Earlier this year, Microsoft announced that it will be raising the security standard for the next major release of Windows Server. Starting 1st January 2021, TPM 2. 0 and Secure Boot will be required rather than optional for new server hardware. Existing hardware can be 'Additional Qualification' certified to show that it meets the new standards. Microsoft says that the change is to give customers increased confidence when deploying Windows Server, maximizing platform integrity without changing the Request for Proposal (RFP) process. Microsoft will require that TPM 2. 0 be installed and enabled by default. When new hardware is purchased with the next major release of Windows Server preinstalled, Secure Boot must be enabled by default. Regardless of whether the operating system is running on bare metal, Hyper-V virtual machine guests, or on third-party hypervisors approved in the Server Virtualization Validation Program (SVVP). Requiring these technologies to be present and enabled by default will allow Microsoft to enhance and automate built-in Windows Server security features by default. Secure Boot is part of the UEFI framework, but it isn't always enabled by default Secure Boot is part of the Unified Extensible Firmware Interface (UEFI) framework, but it isn't always enabled by default. When Secure Boot is enabled, code loaded during the boot sequence, like the Windows Boot Manager and NT kernel, is checked against signatures in the firmware to ensure that it hasn’t been replaced or modified. Anti-malware software doesn’t run until later in the boot process, so Secure Boot protects... --- ### Unboxing The Surface Duo - Published: 2020-08-26 - Modified: 2020-08-26 - URL: https://petri.com/unboxing-the-surface-duo/ - Categories: Hardware - Tags: Microsoft, News, Surface Duo The Microsoft Surface Duo is here but first, we must get it out of the box. While the Surface Duo does not come out for a few more weeks, for those IT Pros interested in the hardware, here is a first look at what the device and how Microsoft is packaging the hardware. For a primer on the review that will come in a couple of weeks, check out my earlier post where the Surface Duo hopes to become the peanut butter to the Microsoft 365 jelly.  --- ### Microsoft’s Bringing Audio Transcription to Word - Published: 2020-08-25 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-audio-transcription-to-word/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Office 365, Word - Article Type: News Coming soon to Microsoft Word, the ability to transcribe audio files. It’s not every day that Word, one of Microsoft’s oldest applications in the Office 365 suite, gets a new feature that is worth discussing. But today, the company is announcing that they are bringing transcription to Word. The new feature is about as simple as it sounds, you can now record and upload audio conversations to Word (on the web) and have the data transcribed. Once transcribed, the content is shown in the side panel of the Word window and allows you to review and insert the text into your document. There are a couple of limitations that you should know about including that as of the time of this post, this feature only works for the web version of Word but it will be coming soon to mobile devices as well. Other limitations include that you must have an active Microsoft 365 subscription and there is a limit of 5hrs of transcribed data per month along with a max upload file size of 200mb. This feature is going to be quite helpful for teachers, journalists, and many others who need to quickly turn audio recordings into text. For example, we transcribe podcasts here on Petri using a third-party service but now can use Word to accomplish this task. But, at 5hrs of transcription allowed per month, we may hit that limit quickly but for others who infrequently need this type of functionality, this is a quality update for Word. Initially, only English will be supported with this feature but... --- ### Microsoft Improves Data Protection in Azure Files - Published: 2020-08-25 - Modified: 2022-04-07 - URL: https://petri.com/microsoft-improves-data-protection-in-azure-files/ - Categories: Microsoft Azure - Tags: Azure File Sync, Azure Files, cloud computing - Article Type: News Several new Azure Files features went into public preview earlier this year to help organizations move file shares to the cloud with confidence. Azure Files is a service from Microsoft that provides secure, fully managed, cloud Server Message Block (SMB) file shares that can also be cached on-premises to improve performance. Designed originally for applications that rely on SMB file shares, Azure Files lets organizations move apps to the cloud without implementing Windows Server in a virtual machine (VM). Azure File Sync is a complimentary service that synchronizes file shares, leaving on-premises Windows Server file servers to act as a fast, local cache. Just like Windows Server SMB file shares, shares created in Azure Files can be assigned permissions. Before you can assign permissions, you must use Azure Active Directory (Azure AD) and Azure AD Domain Services to configure Azure AD authentication over SMB. Active Directory authentication for Azure Files, which entered public preview earlier in 2020, lets users authenticated by Windows Server Active Directory mount file shares. For more information on Active Directory authentication for Azure Files, check out my article here on Petri. Several new Azure Files features went into public preview earlier this year to help organizations move file shares to the cloud with confidence. Until recently, concerns about the ability to recover data in Azure Files were often a showstopper for customers reliant on Windows Server. Soft delete acts as a Recycle Bin for file shares Microsoft introduced a new feature in preview called soft delete, which acts like a Recycle Bin for file shares. If a file share is deleted, it is put into a 'soft... --- ### Windows Virtual Desktop Now Integrated into Azure Portal - Published: 2020-08-24 - Modified: 2024-09-04 - URL: https://petri.com/windows-virtual-desktop-gets-azure-portal-integration-and-teams-a-v-redirection/ - Categories: Windows 10 - Tags: Azure Portal, Microsoft, News, Windows Virtual Desktop - Article Type: News The Windows Virtual Desktop July 2020 update brings Azure Resource Manager support and Teams media optimizations. The generally availability of Windows Virtual Desktop (WVD), Microsoft's cloud-based desktop virtualization service, couldn't have come at a better time. The global health pandemic has forced organizations to enable remote working for more employees. WVD helps provide a secure remote desktop experience without the complexities of on-premises Remote Desktop Services (RDS) infrastructure. WVD debuted in September 2019. Since then, Microsoft has been improving the experience for end users and IT professionals. The latest update, which Microsoft announced at the end of July 2020, brought integration with the Azure portal and Teams Audio/Visual (A/V) redirection for clients. Integration with the Azure portal makes WVD easier to deploy and manage. A/V Redirect in Microsoft Teams handles the audio and video client features locally to reduce latency by performing direct communications with the client using Web Real-Time Communications (WebRTC). Teams A/V Redirect brings modern media stack including HW video decoding Microsoft has seen a large uptake for Teams during the pandemic. So, it's no surprise that it wants to optimize the audio/visual features for use with Windows Virtual Desktop. Prior to the last WVD update, Teams didn't work well with WVD, because of latency and glitching among other issues, when streaming media through a virtual machine (VM). According to a Microsoft slide desk available on its Tech Community website, WebRTC-based peer-to-peer (P2P) conferencing provides: Modular design can support new remote protocols and OS environments with less rework while retaining a common core. Design decision: We have scoped out support for Win7... --- ### How OWA Predicts Text as Users Compose Email > OWA can predict what you want to write in email based on machine learning analysis of what you've written in the past. It's part of Microsoft's work to incorporate artificial intelligence in Microsoft 365. - Published: 2020-08-24 - Modified: 2024-09-04 - URL: https://petri.com/owa-predicts-text-as-users-compose-email/ - Categories: Exchange Online, Microsoft 365, Office - Tags: artificial intelligence, machine learning, owa - Article Type: How To, News Smart Technology Figures Out What You Want to Type On May 8, Microsoft announced plans (MC212345) to introduce a feature called “suggested text” to OWA. Microsoft 365 roadmap item 63795 says “Using smart technology, Outlook will predict text while you type. Just use the Tab key to accept the text prediction. ” Text predictions is another name for the feature. OWA’s new feature is like Gmail’s “Smart Compose” in that it suggests text for the user to add to messages based on analysis of how they composed messages in the past. Figure 1 shows how Gmail works with the word “you” suggested after I typed “how are. ” As we’ll see later, Microsoft’s feature also uses the tab key (or right arrow) to accept the recommendation made to insert text. Image 1 Expand Figure 1: Gmail Smart Compose (image credit: Tony Redmond) As happens with many Office 365 announcements, Microsoft adjusted the original timeline with the current state that the feature is now deployed to all commercial cloud U. S. -based customers. As discussed later, some additional work is needed to prepare for deployment elsewhere. The technology is not yet approved for deployment in the sovereign clouds, including GCC and GCC High. Figuring Out Your Email Style All of us compose email in our own inimitable style. Similar phrases are used time after time. Certain words are favored over others and it can be predicted when users are likely to type something based on what’s gone before. If you know someone well enough... --- ### The Future of Microsoft 365 Could be Taos - Published: 2020-08-22 - Modified: 2024-09-04 - URL: https://petri.com/the-future-of-microsoft-365-could-be-taos/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Taos - Article Type: News What is MetaOS or Taos? It looks like it will be the future of Microsoft 365 Microsoft 365 is a subscription that Microsoft hopes every company will eventually adopt as it is the complete package of the company’s productivity and security solutions. While that goal may be ambitious as not every organization wants or is willing to pay for the solution, the long-term future for the company is certainly Software-as-a-Service which means there needs to be a solution in place if Windows is not the foundation of the modern enterprise. We know that Microsoft is already looking at a future where Windows isn’t the primary operating system as the company is launching its first Android-based device next month. Further, the company has been developing its Office applications for macOS, iOS, and Android for several years. But Microsoft is looking to future that is further out on the horizon and internally, the company is calling the team behind this endeavor, Taos. Thanks to a job posting spotted by Tero on Twitter, Taos has the objective of “transitioning our productivity business to the cloud, rationalizing our apps and services across markets and segments, and meeting users where they are by bringing our experiences to every device platform. ” Further, the job description says “We aspire to create a platform on top of that foundation – one oriented around people and the work they want to do rather than our devices, apps, and technologies.   This vision has the potential to define the future of Microsoft 365 and make a dramatic impact on the entire industry. “ This team name was... --- ### Understanding Azure AD Application Proxy Support for Remote Desktop Services - Published: 2020-08-21 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-application-proxy-support-for-remote-desktop-services-web-client-now-in-preview/ - Categories: Remote Desktop - Tags: Azure Active Directory Application Proxy, Remote Desktop Services, remote working - Article Type: News Application Proxy lets users access Remote Desktop apps hosted behind a Remote Desktop Gateway. Now it works with the RDS web client too. Application Proxy lets users access Remote Desktop apps hosted behind a Remote Desktop Gateway. Now it works with the RDS web client too. Last month, Microsoft revealed the public preview of Azure Active Directory (AD) Application Proxy support for the Remote Desktop Services (RDS) web client. Application Proxy lets users access corporate web applications, and apps hosted behind a Remote Desktop Gateway, using a remote client. The primary advantage of Application Proxy is that it allows users to access intranet apps without first connecting to the corporate network using a virtual private network (VPN). Azure AD Application Proxy uses an on-premises connector to manage communication between the cloud service and on-premises applications. Because the connector only uses outbound connections, organizations don’t need to open inbound ports or place servers in a demilitarized zone (DMZ). Application Proxy, along with Azure AD, is part of Microsoft’s identity-centric zero trust model. Image #1 Expand Azure AD Application Proxy Support for Remote Desktop Services Web Client Now in Preview (Image Credit: Microsoft)   Application Proxy provides secure access to apps hosted on RDS. Application Proxy reduces the risks associated with connecting to RDS by enforcing pre-authentication and Conditional Access policies. For example, an organization could require use of multifactor authentication or use of a compliant device. For more information on zero-trust networks, see Choosing between Virtual Private Network and Zero Trust Remote Access Solutions on Petri. Starting with this preview, users can connect to RDS-hosted apps via Application Proxy using the RDS web... --- ### Paul Thurrott's Short Takes: August 21 - Published: 2020-08-21 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-21/ - Categories: Windows 10 - Article Type: Overview Because it’s the summer of our discontent, this edition of Short Takes looks at Microsoft blurring the lines between Windows 10 versions, the slow death of Internet Explorer, Panos is pumped about something else, Flight Simulator takes off to cheers and laughs, and so much more. Image courtesy of Alexander Muscat Because it’s the summer of our discontent, this edition of Short Takes looks at Microsoft blurring the lines between Windows 10 versions, the slow death of Internet Explorer, Panos is pumped about something else, Flight Simulator takes off to cheers and laughs, and so much more. Microsoft brings WLS 2. 0 to older Windows 10 versions Windows 10 version 2004 is still only deployed to a tiny minority of Windows 10-based PCs worldwide. So Microsoft has decided to port its best new feature, the Windows Subsystem for Linux (WSL) 2. 0, to the two most popular versions, Windows 10 versions 1903 and 1909. This makes sense, since these two versions collectively account for over 80 percent of all Windows 10 PCs in use. But it also raises some interesting questions about whether the very definition of what a Windows 10 version is, is changing. That is, if Microsoft can arbitrarily bring major features like WSL 2. 0 to previous versions, why even have versions? Why not just leave the version where it is and just add features and security/quality updates, plus app updates, going forward, and spare everyone the pain of version upgrades? Just a thought. “Microsoft Deepens Oil Ties” Microsoft ... The Fossil Fuel company of the future! Microsoft finally takes a step back from IE and Legacy Edge While it’s unclear what the support lifecycle for Internet Explorer 11, the final version of IE, really is, Microsoft is finally starting to discuss dumping the... --- ### How to Configure Lobby Meeting Options in Teams - Published: 2020-08-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-lobby-meeting-options-in-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: education, Lobby, Microsoft, Office 365, Teams - Article Type: How To In the midst of the many updates for Microsoft Teams, you could be excused for missing one interesting option that began rolling-out this month that is aimed at making it easier for people to manage their meetings. In the midst of the many updates for Microsoft Teams, you could be excused for missing one interesting option that began rolling-out this month that is aimed at making it easier for people to manage their meetings. A new option to control who can bypass the lobby feature has been added to Microsoft Teams and here is how you can take advantage of this functionality. Image #1 Expand Figure 1: Organizer-only admittance holding internal attendees in lobby (image credit: Steve Goodman) Prior to this new feature, the controls for auto-admitting meeting attendees would only allow an organizer to place external attendees into the lobby. This is not always desirable, though. Schools in particular have a clear separation of internal users; teachers and students. Just like in a real school, teachers often do not want students entering the classroom (physical or virtual) until they arrive. In Microsoft Teams, with a 'meeting' substituting for a classroom, controls like this are important for some schools. It’s highly likely that this feature was requested by education customers and if you are an IT administrator at a school or college, then you might want to investigate whether your educators will want this option on by default. In the corporate world – most meetings that were in person are now in Microsoft Teams. The majority of meetings don’t need the close attendee management that education customers desire – most meetings are fellow colleagues and if people turn up early to an internal meeting, it is usually... --- ### Microsoft 365 Universal Print Enters Public Preview - Published: 2020-08-20 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-365-universal-print-enters-public-preview/ - Categories: Microsoft 365 - Tags: cloud computing, Universal Print, Windows 10 - Article Type: News Universal Print is a cloud-based infrastructure that works for today's distributed workforce. Microsoft 365 Universal Print is a cloud-based service that provides organizations with a simple and secure print infrastructure that is easy for end-users and requires minimum time and effort for IT departments. It is designed to help organizations move away from managing local print servers to a more flexible cloud-based infrastructure that works for today's distributed workforce. Universal Print eliminates the need to install printer drivers because the experience is based on the Internet Print Protocol (IPP) standard that's built-in to Windows 10. Universal Print works with on-premises printers and devices outside of an organization, and with zero-trust networks when users are authenticated via single sign-on (SSO) to Azure Active Directory (AD). According to Microsoft's recent announcement, there's a series of benefits for IT departments as well, including: A print solution to unblock the move to the cloud and support print for Azure AD users Managed printing in zero-trust networks Eliminates the need to manage print servers or the need for complex hybrid print solutions A centralized portal that enables robust management capabilities Visibility and insights into your print with reporting Print data stored in the same manner as other Microsoft Office data, in accordance with Microsoft’s data management guidelines Printer deployment and default printer configuration on end-user devices using Microsoft Endpoint Manager (Microsoft Intune) While Hybrid Cloud Print lets Windows 10 devices joined to Azure AD access on-premises printers, it's a complex solution that requires several different components, including Azure AD Application Proxy, new Internet Information Services... --- ### Coming Soon to Teams, Breakout Rooms - Published: 2020-08-19 - Modified: 2024-09-04 - URL: https://petri.com/coming-soon-to-teams-breakout-rooms/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, News, Office 365, Teams - Article Type: News Microsoft is teasing a new feature coming to Teams, breakout rooms. As the world continues to adjust to the new workflows that remote collaboration has forced upon us, you quickly realize the weaknesses in the platforms that are being utilized. While Teams works well for many activities, it’s not yet a tool that works for every scenario. For example, running a conference, onboarding new students/employees, or other tasks where users need to jump in and out of conversations, Teams does not work well for that type of scenario. Typically what is needed for this type of task is what we commonly call “breakout” rooms. Thankfully, Microsoft is well-aware of this shortcoming as Jeff Teper, the Microsoft CVP for Microsoft 365 Collaboration, shared a screenshot showing the new feature. Image #1 Expand Teams breakout rooms example While we wait for all the details, the breakout room will allow you to assign users to a room, rename the rooms, and easily add/remove the rooms as well. There are a few items that we don’t know if they will be available on day one, such as time limiting the rooms so that users can only join during their specific time-slot or enhanced functionality to support external guests for interview scenarios. Right now, there is not an easy way to replicate the breakout room functionality, you can use Channels inside of Teams and shoehorn a solution to replication the room experience but it lacks the visibility and control organizers desire. Like all things Office 365, we have to wait for more information from Microsoft about... --- ### Microsoft Lists and the Curious Case of Project Osaka > The new Microsoft Lists app is a useful tool for anyone who needs to organize data without writing any code. It builds on the strengths of SharePoint List and adds a nice integration with Teams. - Published: 2020-08-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lists-curious-case-project-osaka/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: CollabDB, Lists app, Project Osaka, SharePoint List - Article Type: How To, News Smart Information Tracking On July 28, Microsoft said that Microsoft Lists, described as a “smart information tracking app in Microsoft 365,” began rolling out to targeted release tenants with the aim of completing this phase of the deployment by the end of August. The deployment covers business customers for now, but full deployment is expected by the end of October. Lists are an evolution of traditional SharePoint lists, promoted to become a new Office 365 app and with its own integration with Teams. The decision to go down this route was popular with the SharePoint community because it preserved investment in the previous generation of lists and showed a path forward to a modern implementation. List Competition Lists also gives Microsoft a competitor against the likes of Airtable and Monday. com in the “part-spreadsheet, part-database” end of the collaboration market and stops Office 365 tenants looking elsewhere for solutions to collect and organize tabular data. Being based on SharePoint Online means that compliance and data governance is taken care of (for instance, you can assign a retention label to an item in a list), along with integration with Power Platform, import and export to Excel, and connections to other parts of Office 365. Given recent events, this looks like the same kind of thing Slack complained about when they protested Microsoft bundling in Office 365 to the EU. To me, it’s just a natural evolution within Office 365. Lists and Planner Some worry about the positioning of Lists within... --- ### How to Protect Against Active Directory DCShadow Attacks - Published: 2020-08-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-protect-against-active-directory-dcshadow-attacks/ - Categories: Active Directory (AD) - Tags: Active Directory, Security - Article Type: How To Protecting privileged access to Active Directory is key to preventing DCShadow attacks. DCShadow is a feature in the lsadump module of Mimikatz. Mimikatz is an open-source post-exploitation tool used in Windows credential-based attacks. DCShadow was added to Mimikatz in 2018 and it lets attackers achieve persistent privileged access in Windows Server Active Directory (AD), while letting the attacker cover their tracks. Attacks against AD are common because it controls the security for most systems in your IT infrastructure. If a hacker can get privileged access to AD, then they also have privileged access to all servers and devices joined to the AD domain. How does DCShadow work? A DCShadow attack registers any Windows device joined to the AD domain as a domain controller (DC) by creating two new objects in the domain's Configuration partition. It also changes the service principal name (SPN) of the computer used in the attack. The attack can be performed from Windows 10. And while Windows 10 cannot be a domain controller, DCShadow tricks AD into thinking Windows 10, or another Windows client SKU, is actually a DC. Once the device used in the attack is trusted by AD to replicate changes to the directory, the attacker pushes changes that allows them to stay in control of the domain. After the attacker's changes have successfully replicated, the new DC objects in the Configuration partition are deleted, helping the attacker to create persistent access to the domain while evading detection. To summarize: The attacker registers a rogue DC by creating objects in AD's Configuration partition The attacker... --- ### Intune Makes Deploying Always On VPN Device Tunnels Easier without ProfileXML Node - Published: 2020-08-18 - Modified: 2020-08-18 - URL: https://petri.com/intune-makes-deploying-always-on-vpn-device-tunnels-easier-without-profilexml-node/ - Categories: Windows 10 - Tags: Always On VPN, Microsoft Intune, remote management, Windows 10 - Article Type: Overview How to enable Device Tunnel in Microsoft Intune's VPN profile options. Organizations have been rushing to deploy solutions that allows employees to work from home because of the worldwide health pandemic. But at the same time, IT departments need to manage devices that might not be directly connected to the corporate intranet for long periods. Windows 10 Always On VPN is Microsoft's replacement for DirectAccess. Like DirectAccess, Always On VPN is a remote access solution that works seamlessly for end users. Always On VPN doesn't require users to manually establish a connection to the VPN server, it is built-in to Windows 10, and it works with different VPN servers, like Windows Server and Citrix Gateway. Device tunnels are used where pre-login connectivity is required VPN device tunnels are used where pre-login connectivity is required for device management purposes. User tunnels connect only after a user has logged in to Windows. Users tunnels provide access to an organization's intranet resources, like fileservers and intranet sites. Both device and user tunnels can be connected at the same time. Each tunnel type requires its own VPN profile on the client, and they can use different authentication methods and configuration settings. Always On VPN user tunnels support Secure Socket Tunneling Protocol (SSTP) and IKEv2. Device tunnels support only IKEv2 without SSTP fallback. Microsoft provides more information about the differences between the two tunnel types and how they can be used on its website here. Mobile Device Management (MDM) CSPs expose management features in Windows But configuring the Windows 10 VPN client to work... --- ### Microsoft Teams Will End Support for IE 11 in November - Published: 2020-08-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-will-end-support-for-ie-11-in-november/ - Categories: Microsoft 365, Office - Tags: Edge, Microsoft, Microsoft 365, News, Teams Microsoft is ending support of IE 11 for many of its Microsoft 365 services starting in November. Earlier this year, Microsoft started including its new browser, Edge, with the latest release of Windows 10. Microsoft is aggressively pushing the adoption of the chrome-based browser and is looking to move its customers away from Internet Explorer. Announced today, Microsoft is saying that by this time next year, Microsoft 365 apps and services will no longer support IE 11. This doesn’t mean that the company’s online services will stop working with the older browser on August 18th, but you should treat it this way. Microsoft is providing the following guidance: Beginning November 30, 2020, the Microsoft Teams web app will no longer support IE 11. Beginning August 17, 2021, the remaining Microsoft 365 apps and services will no longer support IE 11. The other notable deadline is that on March 9th, Microsoft’s old-Edge will no longer be supported. That version of Edge initially shipped with Windows 10 but Microsoft has abandoned it in favor of the “new” Edge that is based on Chromium – if you are using legacy Edge, you will need to migrate soon as well. Image #1 Expand While this may not seem like a huge deal, to large enterprise operations that have standardized on IE 11, it has been around since about 2013, this is going to be a significant announcement. But with the availability of stand-alone apps, there should be work-arounds if customers are not able to migrate away from IE 11 for their M365 services before the deadline. Microsoft is standardizing all of... --- ### Getting Started with Azure App Service for Web Apps - Published: 2020-08-17 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-azure-app-service-for-web-apps/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, Web Apps Microsoft offers a highly flexible and easy to use web application service. With the myriad of languages, runtimes, and options available for web applications, managed services make application deployments and configuration exceptionally easy. Microsoft offers a highly flexible and easy to use web application service. With the myriad of languages, runtimes, and options available for web applications, managed services make application deployments and configuration exceptionally easy. There are many options that Azure Web Apps offer such as: Code or Docker Runtimes Options available such as . NET Core, ASP. NET, Java, Node, PHP, Python, and Ruby Docker Container Utilizing Linux or Windows Deployments to Different Regions Application Insights Why would you choose Azure App Service for Web Apps over a traditional LAMP stack? With a standard Linux, Apache, MySQL, and PHP stack, all of the requisite operating systems and security management come with unmanaged servers. In comparison, provisioning a web app from Azure is very simple and can be available within minutes. Since these are managed services, many security aspects are well administered. This does not mean that there's no need to handle the application and access security aspects, but by using a web app, security is easier to manage. Deploying an Azure Web App For this example, we are going to deploy a simple PHP 7. 3 application. Since we don't need much for this article, we will use the Free F1 plan. Application Insights are not available for the Free F1 plan, which, if you need more detailed statistics, you will need to pick a higher-level plan. To create this simple web app, we will fill in the following. Name: lc-test-app-01 Publish: Code Runtime Stack: PHP 7. 3 Operating System: Linux Region: Central US... --- ### Microsoft Expands Self-Service License Purchasing to Visio and Project > Never willing to junk a bad idea that they think is goodness, Microsoft is inflicting more trouble for Office 365 tenants by expanding the set of self-service license purchases to include Visio and Project. - Published: 2020-08-17 - Modified: 2020-08-17 - URL: https://petri.com/microsoft-expands-self-service-license-purchasing-to-visio-project/ - Categories: Microsoft 365, Office - Tags: MSCommerce, PowerShell, Project, Self-service purchases, Visio - Article Type: How To, News A Bad Idea Reinforced In October 2019, Microsoft announced that it would allow Office 365 users to make self-service purchases of Power Platform licenses. Although this was viewed as a terrific idea within Microsoft and a useful way to generate new revenues, few Office 365 tenants were as positive. In fact, so much pushback happened that Microsoft was forced to release a PowerShell module to control self-service purchases in November. On August 12, Microsoft posted Office 365 notification MC220282 to spread more good news by saying that they are expanding self-service license purchasing to Visio and Project. Self-service purchasing is confined to Office 365 commercial and isn’t available for tenants with government or education plans. Revenue Grab I disliked the notion of self-service purchasing in 2019. The idea hasn’t improved in 2020. It’s an example of Microsoft doing an end-run around tenant administrators and corporate license management. The proponents of the idea will trot out the tired old “liberate users” idea to justify what’s simply a grab for additional revenue. Microsoft’s CFO has been very clear with market analysts at quarterly result briefings that they want to increase the average revenue per Office 365 user by upselling more expensive plans and add-ons; this is that strategy writ large. How to Disable Self-Service License Purchases If you’re an Office 365 administrator and you disagree with Microsoft’s strategy, you can disable self-service purchasing with PowerShell by doing the following: Download the MsCommerce module from the PowerShell gallery. If you previously... --- ### Should you Consider Backup-as-a-Service? - Published: 2020-08-14 - Modified: 2022-09-21 - URL: https://petri.com/should-you-consider-backup-as-a-service/ - Categories: Amazon Web Services, Backup & Storage, Cloud Computing, Data Management, Google Cloud Platform, Microsoft Azure - Tags: Backup, Cloud, Disaster Recovery - Article Type: Overview Instead of performing your backup with your centralized on-premises IT infrastructure, BaaS connects your protected systems to a public cloud managed by the cloud provider or MSP. Data protection is critical for businesses of all shapes and sizes. Data loss can occur from a number of different causes including: user error, operator error, malware, hacking, or malicious insiders. Backup and Backup-as-a-Service both provide ways that you can protect your vital systems and data. However, while backups are certainly necessary, managing backups is a tedious task. Backup-as-a-Service (BaaS) shifts the burden of your backups to your Managed Service Provider (MSP) and/or cloud vendor. Instead of performing your backup with your centralized on-premises IT infrastructure, BaaS connects your protected systems to a public cloud managed by the cloud provider or MSP. BaaS Benefits BaaS offers a number of benefit over traditional backups: BaaS is automated — Once it's set up, BaaS begins to backup your data automatically according to the schedule that you supply. Regular backups help minimize the risks associated with possible data loss. Provides a scalable backup solution -- Legacy backup solutions are typically hosted on-premise and are limited in capacity. These solutions can have difficulty keeping up with today’s rapid levels of data growth. BaaS solutions backup to the cloud with its virtually unlimited storage capacity and are capable of scaling to the enterprise level. Reduces management overhead -- BaaS solutions are automated and managed by the MSP or cloud provider reducing the need for operator intervention as well as possible human error in the backup process. Can provide multiple levels of data redundancy – BaaS can leverage the cloud provider’s capability to store... --- ### Azure AD Connect Cloud Provisioning Syncs Identities from Disconnected Forests - Published: 2020-08-13 - Modified: 2020-08-13 - URL: https://petri.com/azure-ad-connect-cloud-provisioning-syncs-identities-from-disconnected-forests-but-comes-with-significant-limitations-in-preview/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Azure AD Connect, cloud computing, Security, Windows Server Active Directory - Article Type: Overview Cloud provisioning simplifies synchronizing on-premises identities to Azure AD during mergers and acquisitions. Most readers are likely familiar with Azure AD Connect, previously DirSync, Microsoft's tool for synchronizing Active Directory (AD) accounts to Azure AD. Azure AD Connect can synchronize password hashes to the cloud, which is Microsoft's recommended option, or alternatively use pass-through authentication (PTA). PTA keeps passwords on-premises and lets organizations enforce Windows Server AD security and password policies. You can find out more about setting up PTA in Azure AD Connect on Petri here. Cloud provisioning simplifies synchronizing on-premises identities to Azure AD during mergers and acquisitions After an acquisition, it's common that IT is required to synchronize identities from a new business group, which has its own AD domains and forests, to the cloud. But Azure AD Connect can't synchronize identities from disconnected AD forests because it only works with one Azure AD tenant. And Azure AD Connect must be able to connect to every AD forest. Microsoft added 'cloud provisioning' to Azure AD Connect in 2019. Cloud provisioning simplifies synchronizing on-premises identities to Azure AD during mergers and acquisitions. Azure AD cloud provisioning is in preview, so it shouldn't be used in production environments. Azure AD cloud provisioning moves the workload from Windows Server AD to Azure AD. It uses lightweight on-premises agents to synchronize accounts from disconnected AD forests to Azure AD. All the synchronization configuration and processing happen in the cloud. High availability is also an option using multiple agents. Azure AD cloud provisioning limitations But in its current form, cloud provisioning has some... --- ### Getting Started With Azure Active Directory - Published: 2020-08-13 - Modified: 2024-12-03 - URL: https://petri.com/getting-started-with-azure-active-directory/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure - Article Type: Overview Azure Active Directory makes running one of the most commonly used and useful directory services easy to do and with minimal maintenance and overhead Active Directory has been in use on corporate IT networks for decades and has been a key directory for managing users and groups. Typically, an Active Directory domain requires several servers and all of the subsequent management needed. Azure Active Directory moves the management and maintenance to the cloud environment. This greatly simplifies the typical administrative server tasks that may be needed and allows an administrator to focus on correctly managing users, groups, and security. Licensing There are several different licensing levels, as seen below. Each offering has a different set of limitations and features. Free Using an Azure Pay-as-you-Go account, for example, you get the core Azure Active Directory services for free. There is a 500,000 object limit and a number of services that aren't available. Office 365 Office 365 E1, E3, E5, F1 and F3 subscriptions offer everything in free, with no object limit, and the addition of identity and access management for Office 365. This includes additional branding capabilities, self-service password resets for cloud users, and SLA enhancements. Premium P1 & Premium P2 Both P1 and P2 are available for Azure and Office 365 subscribers, but also Open Volume License Programs and Cloud Solution Providers platforms. Both of these options offer a large number of additional security features with P2 offering the most. In this article, we are going to explore the basics of using Azure Active Directory through the Azure Portal in the free subscription.   Creating Active Directory Users One of the... --- ### GET-IT Teams Day - Streaming is live - Published: 2020-08-12 - Modified: 2020-08-12 - URL: https://petri.com/get-it-teams-day-streaming-is-live/ - Categories: Main - Tags: GET-IT, GET-IT Teams Day, Microsoft Teams - Article Type: Overview The day is finally here, Petri's GET-IT Teams day event is live and you can watch the event with the YouTube embed below or if you want the full experience (and the downloadable content) - head on over to the full site. The day is finally here, Petri's GET-IT Teams day event is live and you can watch the event with the YouTube embed below or if you want the full experience (and the downloadable content) - head on over to the full site.  --- ### Patch Tuesday August 2020 - Published: 2020-08-12 - Modified: 2020-08-12 - URL: https://petri.com/patch-tuesday-august-2020/ - Categories: Security, Windows Client OS, Windows Server - Tags: Patch Tuesday, Windows, Windows 10 - Article Type: News Microsoft patches 120 vulnerabilities this month, including 2 zero-day flaws. One in Windows and the second in Internet Explorer. This month Microsoft patches 2 zero-day vulnerabilities, one in Windows and another in Internet Explorer. Plus there's the usual array of critical and important flaws that Microsoft addresses in its monthly cumulative update for Windows. Windows and Windows Server Let's start this month with the 2 zero-day bugs that Microsoft has patched. The first, CVE-2020-1464, could let an attacker bypass security features in Windows by loading improperly signed files. An attacker could load the files because Windows incorrectly validates their signatures. The bug is rated important and it affects all supported versions of Windows 10, Windows 8. 1, Windows 7, and Windows Server. The second zero-day, CVE-2020-1380, is a remote code execution (RCE) flaw in Internet Explorer's scripting engine. Antivirus company Kaspersky reported the bug to Microsoft, and it is rated critical. The vulnerability could be used to corrupt memory to let an attacker run arbitrary code in the context of the logged in user. An attacker could exploit the vulnerability using a specially designed website, or by embedding an ActiveX Control marked 'safe for initialization' in an application or Microsoft Office document that uses IE's rendering engine. There are two other critical RCE bugs patched in Internet Explorer 11 this month. CVE-2020-1570 is another scripting engine bug in the way objects are handled in memory. It could let an attacker gain the same rights as the logged-in user. Another reminder that removing admin rights from end-users is an important part of a defense-in-depth security strategy. The second critical... --- ### Surface Duo Hopes to be the Peanut Butter to the Microsoft 365 Jelly - Published: 2020-08-12 - Modified: 2024-09-04 - URL: https://petri.com/surface-duo-hopes-to-be-the-peanut-butter-to-the-microsoft-365-jelly/ - Categories: Hardware - Tags: Microsoft, Microsoft 365, Surface, Surface Duo - Article Type: Opinion A significant turning point in the Surface story is when the company realized that Microsoft is not an entertainment company, but one that excels at making productivity software. With that focus in mind, the Surface Pro 3 found its footing and the brand has been growing since the release of that successful product. Today, Microsoft is making yet another bet for the Surface brand with the introduction of the Duo. Following Microsoft’s exit from the mobile segment several years ago, the Duo is a new look for the company and provides new experiences for its flagship software suite, Microsoft 365. It is a familiar formula that worked previously for the company but will lightning strike twice? And more importantly, will you be able to fit the Duo into your Microsoft 365 workflow in a way that makes enough sense to justify spending $1400 or more on the hardware? Image #1 Expand These are big questions and Microsoft thinks the answer to that question is a resounding “yes”. The company has re-worked all of its Office applications that run on the Duo to use of the multiple displays in a way that makes sense, not just another tab of the same app, but more information, more usable space, or access to other services nested inside of an application. And then there are custom features like the Microsoft 365 feed that as the name suggests, gives you a scrollable view of everything in your workflow in a single view-point. Much like going... --- ### Analyzing Azure Active Directory Sign-In Data with PowerShell > The Get-AzureADAuditSignInLogs cmdlet allows PowerShell access to Azure AD sign-in data, which makes it possible to analyze information in ways that haven't been possible before. - Published: 2020-08-12 - Modified: 2024-09-04 - URL: https://petri.com/azuread-signin-powershell/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office, PowerShell - Tags: Azure AD, Guest user sign-in, PowerShell - Article Type: How To AzureADPreview Module Gives Insight into Sign-in Data The Azure Active Directory (recently renamed Microsoft Entra ID) PowerShell module (now renamed the Azure Active Directory PowerShell for Graph module) comes in two versions. The general availability version is intended for production while the preview version (AzureADPreview) contains the cmdlets from the general availability version plus some new cmdlets under development group. The current version of the AzureADPreview module is 2. 0. 2. 105, released in July. The Get-AzureADAuditSiginInLogs cmdlet exposes the Azure audit sign-in data that is also available through the Azure Active Directory portal (Figure 1), where up to a month of sign-in daa can be browsed. You can download events from the portal in CSV or JSON format, and the same events are available to PowerShell. Image 1 Expand Figure 1: Azure AD sign-ins (image credit: Tony Redmond) Data downloaded to a CSV file can be opened and analyzed with Excel. Checking the Last Sign-in for an Account The availability of the data to PowerShell makes it possible to look at the information in a different way. For example, we can retrieve the last successful sign-in for an account by running a command like this: Get-AzureADAuditSignInLogs -Top 1 -Filter ("UserPrincipalName eq 'Kim. Akers@Office365itpros. com' and status/errorCode eq 0") | Format-Table CreatedDateTime, UserDisplayName CreatedDateTime UserDisplayName --------------- --------------- 2020-07-28T13:50:39. 0039859Z Kim Akers It’s interesting to discover last sign-in data for tenant accounts (users now have an option to review their sign-in activity), but given that guest accounts have a habit of lingering in tenants when not... --- ### Surface Duo Arrives Sept 10th for $1399 - Published: 2020-08-12 - Modified: 2024-09-04 - URL: https://petri.com/surface-duo-arrives-sept-10th-for-1399/ - Categories: Hardware - Tags: Microsoft, Surface Duo - Article Type: News Microsoft has announced the final details for the Surface Duo including its specs, pricing, and availability. The wait is nearly over, if you have been holding off buying a smartphone because you knew the Surface Duo was right around the corner, today is your day. Microsoft has announced that the device is arriving on September 10th but it won’t come cheap. Headed to the Microsoft Store, AT&T, and Best Buy retail outlets, the Duo is what Microsoft hopes will be the mobile embodiment of the Surface ambitions to think outside hinge. This post is mostly about the specs of the hardware, if you want to see how Microsoft is looking at this hardware with relation to Microsoft 365, take a look here. Image #1 Expand The key feature is that this is a foldable phone with two displays that provide a large viewing area for singe screen applications or for running two apps at the same time. Microsoft has also created a way with the Duo that makes it possible to launch two applications at once with a single tap; a neat way to save a little bit of time. But beyond the hinge, the specs are decent but not high-end. Sporting two single displays at 1800x1350 or a combined 2700x1800 single view, the AMOLED with 401 PPI keeps the legacy alive that Microsoft builds high-quality displays. And behind that glass you will find an old Snapdragon 855, 6GB of RAM, 128 or 256 GB of storage, 3577 mAh dual battery,  fast charging with the 18w included charger and a run time of 15. 5hrs of local... --- ### Improving the New Employee Onboarding Experience with SharePoint Online > Improving the new hire experience has long been a topic of conversation…and it IS an “experience” now isn’t it? Culture is so important, with the hiring market being so competitive for talented hires, the first few days with an organization can make or break a new employee’s opinion.Don’t fear….Microsoft has your back with their latest New Employee Onboarding Hub for SharePoint Online! - Published: 2020-08-11 - Modified: 2024-11-19 - URL: https://petri.com/improving-the-new-employee-onboarding-experience-with-sharepoint-online/ - Categories: SharePoint, SharePoint Online - Tags: SharePoint, SharePoint Online, templates - Article Type: How To Improving the new hire experience has long been a topic of conversation…and it IS an “experience” now isn’t it? Culture is so important, with the hiring market being so competitive for talented hires, the first few days with an organization can make or break a new employee’s opinion   Improving the new hire experience has long been a topic of conversation... and it IS an “experience” now isn’t it? Culture is so important, with the hiring market being so competitive for talented hires, the first few days with an organization can make or break a new employee’s opinion. The newest generation coming out of school has also grown up not just with computers, but with phones and iPads and all the electronics they could want. They have some pretty serious expectations when they set foot into your business – will you meet their needs for rapid communications? Will they feel connected with their new team through their collaboration tools? As they sit down their first day to do training and fill out their required forms, your SharePoint Intranet might be one of the first systems your new employee will engage with as they begin settling into their new role. You don’t get a second chance at a first impression – what kind of impression are new hires given at YOUR organization? Don’t fear... . Microsoft has your back with their latest New Employee Onboarding Hub for SharePoint Online. What is the New Employee Onboarding (NEO) Hub? Put simply, the NEO Hub is a set of pre-configured SharePoint sites (with branding! ) that Microsoft provides that you can deploy into your Microsoft 365 tenant. Getting more specific for those of you IT Admins that have been supporting SharePoint for a while, this is a set of 3 Modern SharePoint site collection... --- ### Microsoft Announces Public Preview of Endpoint Data Loss Prevention - Published: 2020-08-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-public-preview-of-endpoint-data-loss-prevention/ - Categories: Microsoft 365 - Tags: Microsoft 365, Microsoft Endpoint DLP, Windows 10 - Article Type: News Microsoft's new Endpoint Data Loss Prevention (DLP) service is now available in public preview to all Microsoft 365 E5/A5 customers. Microsoft's new Endpoint Data Loss Prevention (DLP) service is now available in public preview to all customers with Microsoft 365 E5/A5, Microsoft 365 E5/A5 Compliance, and Microsoft 365 E5/A5 Information Protection and Governance subscriptions. The new service is designed to help accelerate the deployment of a comprehensive information protection strategy across all environments. Endpoint DLP complements Microsoft Information Protection Endpoint DLP complements Microsoft Information Protection (MIP) by extending MIP classification and protection to endpoints. MIP understands and classifies data, protects it, and it provides data loss prevention for Microsoft 365 apps and services. MIP also works with third-party on-premises and cloud applications. MIP and Endpoint DLP are integrated so that you only need to set up DLP policies once in the Microsoft 365 Compliance Center. The policies are then applied to Microsoft 365 apps and services, like Exchange and Teams, and to endpoints. Endpoints must be running Windows 10 build 1809 or later and joined to Azure Active Directory (Azure AD), or hybrid Azure AD joined. Before you start using Endpoint DLP, devices must be onboarded in the Microsoft 365 Compliance Center. Microsoft's new Chromium-based Edge browser must also be installed on endpoints. You can find more information about the onboarding process here. Microsoft says that Endpoint DLP is native to Windows 10 and that its Edge browser supports Endpoint DLP without the need to install or maintain any additional software. Users are alerted when they perform actions not permitted by policy. Users see actionable policy tips and... --- ### Coming Soon - GET-IT: Teams Day, Streaming August 12, 2020 - Published: 2020-08-10 - Modified: 2020-08-10 - URL: https://petri.com/announcing-get-it-teams-day-streaming-august-12-2020/ - Categories: Microsoft Teams, Office - Tags: GET-IT, Microsoft, Teams - Article Type: News Petri's GET-IT: Teams 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Teams content aimed at accelerating the adoption, collaboration, and usage of the platform. Petri's GET-IT: Teams 1-Day virtual conference is a full day of free learning dedicated to deep technical Microsoft Teams content aimed at accelerating the adoption, collaboration, and usage of the platform. Throughout the day you will hear from Microsoft's Nicole Herskowitz as our keynote speaker and Microsoft MVPs about how to take full advantage of Teams and dive deep into the technical aspects that will make your adoption and usage a resounding success. During this free day of learning, we will be streaming to YouTube, Twitter, Facebook, Petri. com, and other locations to make it easy for you to watch Teams Day wherever it is most convenient for you. And who will be speaking? On the docket, we have Tony Redmond, Steve Goodman, Ståle Hansen, Tom Morgan, and Tom Arbuthnot. These respected MVPs will dive into various areas of the Teams platform and also provide downloads that you can use for reference material.  Why Teams? With the explosive growth of the platform because of the massive migration to working from home, it's a natural starting point for our new conference series that we are launching. Our goal is to help IT Pros enhance their knowledge with our MVPs providing deep technical knowledge for understanding the concepts, managing, building apps, and choosing new hardware, for Teams. With the event about two weeks away, you can head over to our landing page to learn more about the sessions and connect with the speakers. And be on the lookout for additional updates before... --- ### Decision Point: Exchange 2016 Exits Mainstream Support Soon > Exchange 2016 exits mainstream support on October 13, 2020. It's time for customers to decide to stay on-premises with Exchange 2019 or move to the cloud. - Published: 2020-08-10 - Modified: 2024-09-04 - URL: https://petri.com/exchange-2016-exits-mainstream-support/ - Categories: Exchange 2016, Exchange 2019, Exchange Online, Microsoft 365, Office Put October 13 In Your Diary Time passes and products age, except in the cloud where renewal is an ongoing process. For Exchange Server 2016, Microsoft is keen for you to know that it reaches the end of mainstream support on October 13, 2020. Extended support for Exchange 2016 ceases on October 14, 2025. Exiting mainstream support means that the regular quarterly cumulative updates stop for Exchange 2016. Microsoft will release Exchange 2016 CU19 in December. This is after the cutoff date for mainstream support and the appearance of CU19 is explained because work started on it before support ceased. As is the norm when a new CU appears, three months after CU19 appears (February 2021), it will become the only version of Exchange 2016 eligible to receive critical updates. Your Calendar Will Continue to Work During extended support, Microsoft will only issue critical security updates needed to fix any vulnerabilities discovered in Exchange 2016. A search of Microsoft’s Security Update Guide reveals many security updates affecting Exchange over the last few years, so you can expect some to emerge for Exchange 2016 while it is in extended support. Because calendaring is a big part of Exchange, Microsoft will also update Exchange 2016 for time zone definition changes to make sure that people continue to show up for meetings on time. Managing Mail-Enabled Objects In hybrid organizations, on-premises Active Directory is the master directory and objects are synchronized from on-premises to Azure Active Directory with tools like Azure... --- ### Amazon Releases Porting Assistant for .NET Core - Published: 2020-08-10 - Modified: 2020-08-10 - URL: https://petri.com/amazon-releases-porting-assistant-for-net-core/ - Categories: Amazon Web Services, Cloud Computing - Tags: .NET Core, .NET Framework, AWS - Article Type: News Amazon has released their new Porting Assistant for .NET that’s designed to port Windows-specific .NET Framework code to the new cross-platform .NET Core. This past July 2020, Amazon AWS released their new Porting Assistant for . NET that’s designed to port Windows-specific . NET Framework code to the new cross-platform . NET Core. With the increasing popularity of Linux and cross-platform applications, many businesses are interested in porting their existing . NET code to . NET Core. In addition, Microsoft has announced that the cross-platform . NET Core is the future of . NET and that version 4. 8 of the . NET Framework is the last major version of the . NET Framework to be released. There will be no new feature enhancements to the . NET Framework in the future -- it will receive only bug and security fixes going forward. The AWS cloud supports both Linux and Windows platforms and it has a strong developer contingent. Porting . NET Framework applications to . NET Core helps organizations to better take advantage of the Linux platform and provides businesses and applications with increased flexibility and potential cost savings. However, porting applications to . NET Core can be a significant effort. Porting . NET Framework code to . NET Core requires updating references to project dependencies, finding compatible NuGet packages, updating those package references and finding replacement APIs as . NET Core only supports a subset of the APIs available in the . NET Framework. The Porting Assistant for . NET reduces the manual effort involved in migrating your applications to . NET Core by scanning . NET Framework applications and generating a . NET Core compatibility assessment. The assessment identifies incompatibilities with . NET Core, finds known package replacements, and generates a... --- ### Paul Thurrott's Short Takes: August 7 - Published: 2020-08-07 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-7/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Article Type: Overview Because tik tok, tik tok, what do you do, Microsoft, this edition of Short Takes looks at Microsoft’s bizarre pursuit of social networking, Ignite 2020 being split asunder, a massive reorg in the Windows group, a virtual Microsoft appearance in a virtual Samsung product launch, and so much more. 2020 in a nutshell. Because tik tok, tik tok, what do you do, Microsoft, this edition of Short Takes looks at Microsoft’s bizarre pursuit of social networking, Ignite 2020 being split asunder, a massive reorg in the Windows group, a virtual Microsoft appearance in a virtual Samsung product launch, and so much more. Microsoft’s bizarre courtship of TikTok escalates Is it bizarre that Microsoft wants to purchase the U. S. -based assets of TikTok, the controversial social networking service that the U. S. presidential administration is trying to block from operating in the United States? Let me count the ways. But instead of backing off from a deal in which it would collude with the president and essentially steal most of a company from its China-based parent firm, Microsoft is instead escalating things. And according to reports, it doesn’t just want TikTok’s U. S. -based assets, it now wants all of TikTok, a company that, let me remind you, is not actually for sale. Folks, we live in Bizarro World, and while I’ll never understand why Microsoft, which has no particular acumen in consumer services, would even want TikTok---my theory is that its about the 100 million strong user community---it is at least clear to me that buying the firm---stealing it, really---would be the worst thing it could ever do to its international standing and reputation. Microsoft, seriously. Don’t. “Microsoft’s bid to buy TikTok is the company’s brilliant plan to finally make you love it” Just in case you... --- ### Microsoft Splits Ignite Into Two Events - Published: 2020-08-06 - Modified: 2020-08-06 - URL: https://petri.com/microsoft-splits-ignite-into-two-events/ - Categories: Main - Tags: Ignite, Microsoft, News - Article Type: News Microsoft is making changes to Ignite and turning it into two events. With every conference from Microsoft going virtual until the summer of 2021, the company is making changes to its traditional lineup. As with many things in 2020, Microsoft will be splitting Ignite into two events. As the company previously announced, the first of the two Ignite events will be held in late September, the 22-24. That’s fewer days than previous Ignites that were week-long learning events; the second part of Ignite will happen in early 2021. The post, written by Microsoft’s CMO, Chris Capossela, points out that the event happening in early 2021 is not replacing the company’s developer conference, Build. Ignite will be a free learning event that spans 48 hours but we don’t know yet the dates for the 2021 portion of the conference. But, you can likely assume that it will follow a similar format to the portion of Ignite that is happening next month. And to little surprise, the traveling Ignite events that take the show on the road following the fall conference will not be happening this year. This is a significant change for Ignite which is traditionally the largest IT-Pro focused conference on the calendar. While we wait for the traditional conference to come back, these changes will likely play a role in shaping how all Microsoft conferences evolve once we can meet in-person again. --- ### Microsoft Reorg Leads to Significant Changes for Windows and Azure - Published: 2020-08-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reorg-leads-to-significant-changes-for-windows-and-azure/ - Categories: Cloud Computing, Microsoft Azure, Windows Client OS - Tags: Azure, Hardware, Microsoft, News, Windows Microsoft is making significant changes to how Windows and Azure operate with new leaderships and teams changing orgs. As is customary for around this time of the year, Microsoft is making changes to its organizational structure. While the company did make a small round of layoffs earlier this summer, these changes appear to be more substantial but it does not look to be tied to a round of layoffs. The short version is that Microsoft is bringing some of Azure to the Windows and Devices organization, according to insiders familiar with the company's plans. Specifically, Microsoft is moving COSINE to E+D (experiences and devices) to help the Windows/Surface teams build more cohesive experiences that the company hopes customers will love and push the Surface team to create better products as well. While this move may sound simple on paper, there are significant changes happening to various leadership positions within both Windows + Devices as well as Azure. The biggest change is that Michael Fortin is joining the Experiences and Devices organization that reports to Panos Panay – his role is expanding to lead a new team that combines services teams from Cosine and 365 Experiences and Services. In addition, many of the team leads from COSINE will also be moving over to Panay’s team which includes Kevin Gallo, Mark Alcazar, Kristian Andaker – this likely means that Project Reunion is now under the Windows leadership team. Other notable changes happening in the Windows + Devices org is that Jeff Johnson will be leading a newly formed Windows, Developer and Experiences engineer team: Linda Averett is joining Windows +... --- ### Choosing the Right Free Version of Teams - Published: 2020-08-06 - Modified: 2024-09-04 - URL: https://petri.com/choosing-the-right-free-version-of-teams/ - Categories: Microsoft Teams, Office - Tags: free, skype, Teams - Article Type: News If you are signing up for a free account to use with Microsoft Teams, you might see a few options available. This might seem confusing compared to Zoom and similar apps, but there’s a good reason for it. If you are signing up for a free account to use with Microsoft Teams, you might see a few options available. This might seem confusing compared to Zoom and similar apps, but there’s a good reason for it. Teams is a service built on top of several Microsoft products and depending on whether you are using it for work, home, or school, it has different features available. Fundamentally though, it’s a chat-based collaboration tool and every version of Teams has group chat at its core. Teams for Friends and Family The newest free Teams offering is designed to help connect friends and family together – to organize family gatherings, football practice, and other groups outside of work. From Microsoft’s perspective, it fills the gap that WhatsApp groups or Facebook groups have been trying to fill but usually struggle because in most families they’ll often be a few people who don’t use Facebook and WhatsApp groups struggle with multiple threads; both are not great when sharing files and other useful information. Image #1 Expand Figure 1: Microsoft Teams for Friends and Family on mobile (image credit: Microsoft) What Teams for Friends and Family isn’t is Microsoft’s competitor for Zoom. Over the last few months, what Microsoft hasn’t been quite so vocal about is the underlying improvements that Skype has been getting. Skype and Teams remain closely related and the underlying engine for calling and meetings in both products remains very similar. Many of the latest improvements you’ll have seen in the... --- ### What's New for IT Pros in Windows 10 Version 2004 - Published: 2020-08-05 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-for-users-in-windows-10-version-2004-and-who-should-upgrade/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: Opinion There's not a lot new going on for users in the Windows 10 May 2020 Update, so who should consider upgrading to the latest feature update? Windows 10 version 2004, or the Windows 10 May 2020 Update is it is now officially known, was made generally available at the end of May. Microsoft is gradually making the update available to users via Windows Update. But this update doesn't contain much in the way of new features for end-users, despite being tested for longer than previous Windows 10 updates. You can decide whether to upgrade because Microsoft is no longer forcing Windows 10 feature updates on users. At least until the time comes when your current Windows 10 version reaches end-of-support. And as always, organizations with IT departments can choose to block this feature update. Here is a rundown of the main new features for end-users in the Windows 10 May 2020 Update. Windows Search Apart from work on the indexing engine, which has been optimized to back off when you are busy with other things, the Search home experience now shows top apps and recent documents in a streamlined interface. 'Quick searches', and the ability to search Bing using a screenshot, are also included. The big issue here for many will be that it isn't possible to change the default search engine, so you are stuck with Bing. I don't expect that to change. Image #1 Expand What's New for Users in Windows 10 Version 2004 and Who Should Upgrade (Image Credit: Russell Smith)   Search in File Explorer is provided by Windows Search. And that has been the case since Windows 10 version... --- ### What’s the Real Size of Exchange Online Mailboxes? > The Office 365 Substrate uses Exchange Online mailboxes to store a lot of data that users never see. The data is used by the substrate for different purposes, mostly to make it easier for features to get to relevant information. - Published: 2020-08-05 - Modified: 2024-09-04 - URL: https://petri.com/real-size-exchange-online-mailboxes/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, mailboxes, MFCMAPI, Non-IPMSubTree, Recoverable Items - Article Type: How To, Opinion The Office 365 Substrate uses Exchange Online mailboxes to store a lot of data that users never see. The data is used by the substrate for different purposes, mostly to make it easier for features to get to relevant information. Microsoft doesn't document exactly what is stored, where it is stored, and how it is used, so we must poke around in the innards of mailboxes to see what we can discover. Office 365 Substrate Makes Exchange Online Mailboxes Bigger Exchange Online assigns 100 GB mailbox quotas to Office 365 accounts with E3 and E5 enterprise plans. It therefore follows that the maximum size of an Exchange Online mailbox is 100 GB? Actually, this is not the case because the quota assigned to a mailbox is only one part of the equation. Mailboxes Split into IPM and Non-IPM Exchange Online (and on-premises) mailboxes are divided into two: “Interpersonal messaging” (IPM) and non-IPM. The division between IPM and non-IPM folders has existed since the earliest days of Exchange Server. You can think of these as places where regular email is stored (and usually accessible to clients) and system storage. The root of the IPM part is called “Top of Information Store” while the overall mailbox root is the root container or “” (a name shared with public folders). Mailbox quota only applies to the folders in the IPM part. A separate quota limits the data that can be stored in the Recoverable Items folders, which appear in the non-IPM part, but no quota applies to other system folders. The entire mailbox structure is revealed and navigable using a utility like MFCMAPI. Useful as MFCMAPI undoubtedly is to see the content of folders and the properties of individual items, it won’t tell you anything about mailbox size. For that we’ve got to use PowerShell. Cmdlet Choice I use the REST version of the Exchange cmdlets in these examples, if only because these... --- ### How to Use the Azure API Management to Proxy a Public API - Published: 2020-08-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-the-azure-api-management-to-proxy-a-public-api/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: API, API Management, Azure, Microsoft With Microsoft Azure's API Management service, you can easily proxy an existing API and modify the input and output before that data is received or sent. Programmatically communicating between different applications, systems, and scripts will often use what is known as an application programming interface (API). When designing an API there are many considerations to take into effect such as: Route Structure Authentication & Authorization Rate Limiting Of course, not all API's are designed equally and require the same level of attention. With Microsoft Azure's API Management service, you can easily proxy an existing API and modify the input and output before that data is received or sent. This is incredibly useful when you may need to alter the structure of an existing public API, rate limit the number of requests coming in, add authentication, or even cache the results! And these are the things we are going to discuss in this article. We will find out how easy for Azure to quickly consume and manage an API. Though we are using a public API to demonstrate this, you can also proxy: Azure Logic Apps Azure App Services Azure Function Apps Creating a New API Management Service To provision a new API Management service in the Azure Portal, click on the Create API Management service button.   There will be various prompts, but for this example, we have kept the configuration simple. Name: {unique_name}. azure-api. netThe name must be unique across all active API Management instances, yours and others. Location: The chosen geographic location, which may impact performance. Pricing Tier Consumption - A lightweight and serverless version of the API Management service, which is billed per... --- ### Everything You Need to Know About Windows – July 2020 - Published: 2020-08-03 - Modified: 2020-08-03 - URL: https://petri.com/everything-you-need-to-know-about-windows-july-2020/ - Categories: Windows Client OS - Tags: Microsoft Edge, Microsoft Endpoint DLP, Project Reunion, Windows 10 - Article Type: News This month, Microsoft drops Win32 app support in Windows 10X, 20H2 to get UI updates, and Microsoft is preparing a new Cloud PC service. July has been relatively quiet, but Microsoft has been working to finalize Windows 10 20H2 with some interesting and unexpected changes. Additionally, there's lots of Edge news and information about a new cloud service for low-end and thin client PCs. Microsoft Edge enterprise roadmap The Microsoft 365 roadmap portal now includes information about Microsoft Edge features that have launched or that are in development. Microsoft added Edge to the Microsoft 365 roadmap portal after receiving feedback from enterprise customers that they needed more visibility into the feature roadmap and release schedule. More visibility helps enterprises plan deployments and prepare for feature changes. This month, Microsoft also changed the release schedule for releases in the Edge Beta and Stable Channels, which you can find here. Microsoft Edge at Inspire This year's Inspire event for partners was digital only. At the event, Microsoft made several announcements about Edge. Starting in August, Edge will join the FastTrack Ready Partner program. FastTrack offers deployment guidance for eligible customers and compatibility support through the App Assure program. App Assure provides a guarantee that if your organization's web apps and sites work in Internet Explorer 11, Google Chrome, and legacy Edge, then those apps and sites should work in the new version of Edge. If that's not the case, then you can approach Microsoft for support. Microsoft Endpoint Data Loss Protection Microsoft Edge now supports Endpoint Data Loss Protection (DLP) in public preview. Microsoft Endpoint DLP extends Microsoft Information Protection (MIP), which prevents data... --- ### Everything You Need to Know about the Power Platform – July 2020 > Teams and Power Platform integration gets super deep, SharePoint Workflows getting replaced by flows, and more things you need to know. - Published: 2020-08-03 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-the-power-platform-july-2020/ - Categories: Microsoft 365, Microsoft Teams, PowerApps, PowerBI, SharePoint Online - Tags: dataflex, Flow, Microsoft Teams, power apps, Power Automate, Power BI, Power Platform - Article Type: News Teams is now the center of the SharePoint world and it is working to become the center of the Power Platform universe. I did it again. There are way too many Teams references below but what do I do? Teams is now the center of the SharePoint world and it is working to become the center of the Power Platform universe. So, embrace your Teams overlord. But in all seriousness, the Teams integrations announced below are super exciting. And for goodness sakes, go check on your SharePoint workflow situation, the clock is ticking. General News SharePoint 2010 Workflows are on the clock As of August 1, you can no longer create a SharePoint 2010 workflow in SharePoint Online AND on November 1, 2020 (like 90 days from now) they will be turning off SharePoint 2010 workflows in SharePoint Online forever: Microsoft's official announcement. Why I am telling you? Because Power Automate (flow) is their successor, so you are going to be busy. And don't think no big deal for us, we just started in SharePoint a couple of years ago. HA! Most of the workflows you have been creating have been 2010 workflows. This is a real issue that you need to investigate. I did a video walkthrough over how to find them and ways to replace them to help SharePoint Workflow Retirement. The clock is ticking. Teams is adding native Power Platform Microsoft announced that the Common Data Service is being renamed to Microsoft DataFlex Pro. This is roughly the 100th name for what is a super-powerful data platform. But that isn't interesting. What is interesting is they are... --- ### Everything You Need to Know About Azure Infrastructure – July 2020 Edition - Published: 2020-08-03 - Modified: 2020-08-03 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-july-2020-edition/ - Categories: Microsoft Azure - Tags: Azure, Azure App Services, Azure Files, Azure Firewall, Azure Load Balancer, Azure Monitor, Azure Shared Disks, Azure Site Recovery, Azure SQL, Azure SQL Managed Instance, Azure Virtual Machines, Azure Virtual WAN, Blob Storage, Managed Disks, NC_v3, networking, NFS 3.0, Private Endpoint, Private Link, SD-WAN, Shared Image Gallery, SIG, SR-IOV, virtual machine scale sets, VMSS, Well-Architected Framework, Windows Admin Center, Windows Virtual Desktop, WVD - Article Type: Overview In the Microsoft calendar, July marked the end of FY20 and the start of a whole new semester for Azure (and Windows) development. Large parts of the northern hemisphere take the month of July off. Schools are closed, the weather is good (unless you are in Ireland, where I am located), and its nice to just sit back and relax. In the Microsoft calendar, July marked the end of FY20 and the start of a whole new semester for Azure (and Windows) development. Lots of things that were already rolled out were made generally available, new visions were shared, and lots of new things to learn were dropped onto the heads of those of us trying to keep up with Azure. Azure Virtual WAN I have been looking forward to the next big release from Azure networking since I first learned about it last year. Azure Virtual WAN has started the rollout of a whole “new version” of their on-premises and Azure connectivity solution. If you work with Azure networking in anything but the smallest deployments, you should be using a hub & spoke architecture – this mimics the pattern of a network core and virtual/access networks in a classic data center or computer room. The hub network can be quite complex, with a virtual network, subnets to manage routing in, virtual network gateway(s), a firewall (cluster), and peering connections to maintain, not to mention the additional routing configurations required in the hub for each spoke and also in each spoke subnet – and it’s only more complex if you use a third-party router and/or firewall appliance. Azure Virtual WAN takes... --- ### Everything You Need to Know About Office 365 - July 2020 Edition - Published: 2020-08-03 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-july-2020-edition/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Office 365 - Article Type: News With July now behind us, it’s time to take a look back at the significant announcements from the month. And considering that the company’s Inspire conference has come and gone, there is a lot to write about. With July now behind us, it’s time to take a look back at the significant announcements from the month. And considering that the company’s Inspire conference has come and gone, there is a lot to write about. Kicking things off is that Exchange Online and Teams got a significant PowerShell update. You can read a deep dive about the update and how to get the most out of PowerShell and Office 365 but the short version is that the Exchange Online Management V2 module is generally available and contains a set of nine Get- cmdlets that make it easier to manage your tenant. This month also included a significant update to the Teams Meeting experience. The updates include a new “Together Mode”, Dynamic View, suggested replies and a lot more. Steve provides a closer look at the new features and how you can educate your users to get the most out of the functionality. Microsoft has several different ‘task’ style applications from To Do, Planner, and the new Microsoft 365 Tasks. With all of the new features coming to Microsoft 365 and Tasks, Tony has you covered for understanding how the integration works and how to link To Do to Planner. I fully expect Microsoft to make a serious push further into ‘task’ integration across all of its applications. The company is continuing to make Teams the hub for productivity and by integrating ‘task’ functionality into all of its applications, this is a link to Teams and further cements its... --- ### Teams Advanced Communications License Now Available > On August 1, Microsoft released the Teams Advanced Communications add-on. It's an oddly eclectic license covering a mixture of features. - Published: 2020-08-03 - Modified: 2024-11-19 - URL: https://petri.com/teams-advanced-communications/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Teams, Teams Advanced Communications - Article Type: News Teams Advanced Communications at $12/user/month On August 1, Microsoft launched a new Teams Advanced Communications add-on license. Because the license is not of general interest, Microsoft has not bundled it in Office 365 E5 or Microsoft 365 E5. Instead, Advanced Communication is an add-on which must be purchased individually at $12/user/month (U. S. price). The new SKU won’t initially be available for GCC tenants. Eclectic Set of Features Microsoft has bundled an eclectic set of features into the Advanced Communications license. At launch, the license covers: Scaling up for Teams Live Events. Meeting organizers with the license can run Teams Live Events with up to 20,000 participants. The tenant can run 50 concurrent events, each of which can last up to 16 hours. These are the same limits that Microsoft temporarily extended to all tenants to help enterprise and education tenants cope with the COVID-19 pandemic. The temporary limits will revert on 1 October 2020 to 10,000 participants, 15 events, with 4-hour duration. Compliance Recording Integration: Users with the license can access ISV-sold compliance recording solutions through Teams APIs. Contact Center Solution Integration: Users with the license can access ISV-sold call center solutions. During 2020, Microsoft plans to increase the features licensed by the add-on to include: Large meetings: Meeting organizers will be able to schedule Teams meetings with up to 1,000 interactive participants instead of the normal 300 limit. View-only overflow: In addition to the 1,000 interactive participants, Teams meetings will be able to overflow to accommodate another... --- ### Microsoft's Edge Browser is Crashing if Google is Your Search Engine - Published: 2020-07-30 - Modified: 2020-07-30 - URL: https://petri.com/microsofts-edge-browser-is-crashing-if-google-is-your-search-engine/ - Categories: Windows 10, Windows Client OS - Tags: Edge, Google, Microsoft, News, Windows 10 - Article Type: News If you are using Microsoft's Edge browser and it keeps crashing, you are not alone. If you are using Microsoft's new Edge browser and it keeps crashing, you are not alone. Twitter and many other social platforms started reporting the issue but thankfully Microsoft is aware. The issue right now is that if you have Google set as the default engine and try to type in the search bar, the browser may crash. The problem is related to "Search Suggestions" and when that API is called, the browser crashing instantly. I am seeing it on my dev and release channel builds of the browser. If you have been experiencing this issue, you can navigate to edge://settings/search and turn off the feature as a workaround. https://twitter. com/MSEdgeDev/status/1288977442523119616 While there is a workaround, this is a serious issue for Microsoft who has begun telling corporate customers to start using the browser. For technical users, this workaround is easy to enable, but for less technical users, they may assume that it is their install crashing and switch back to Chrome for stability. Microsoft is aware of the issue and is working on a fix. Hopefully, they can deploy an update on the backend to resolve the issue and not require everyone to update their browser. The issue has now been resolved but Microsoft has yet to explain the cause of the issue. --- ### How to Manage Windows 10 Updates via PowerShell - Published: 2020-07-30 - Modified: 2024-09-04 - URL: https://petri.com/how-to-manage-windows-10-updates-via-powershell/ - Categories: PowerShell - Tags: PowerShell, Windows 10 - Article Type: How To Windows is notorious for the number of system updates that are necessary and how often they come out. These updates are important, not only to keep your system running well, but also to keep your system secure. Of course, managing these updates can sometimes be a pain, especially if you aren't aware of what is running. In this article, we look into how to manage Windows 10 updates in PowerShell via the PSWindowsUpdate module. PowerShell Versions To use PowerShell, simply type Start→Run→"powershell" in the run dialog box and while holding Ctrl and Shift, click Ok. The reason to hold Ctrl and Shift is to run PowerShell in an elevated prompt, which is necessary for this module. The version that will launch, by default, will be PowerShell 5. 1, which is the last built-in version of PowerShell. Running the latest version of PowerShell, with its many performance enhancements and features, is recommended. To install PowerShell 7, you will want to navigate to the PowerShell development page, click on the Windows (x64) . msi under Downloads (Stable) and install the package. Enter Start→Run→"pwsh" in the run dialog box while holding Ctrl and Shift, and click Ok. It's important to make sure you are running in an elevated PowerShell prompt! Installing PSWindowsUpdate First you will need to install the PSWindowsUpdate module. To do so, launch PowerShell which is preferably PowerShell 7, and run the following command to install and then import the module. Install-Module -Name PSWindowsUpdate Import-Module -Name PSWindowsUpdate We can verify that... --- ### Understanding the New Teams Meeting Features and Experience - Published: 2020-07-30 - Modified: 2024-09-04 - URL: https://petri.com/understanding-the-new-teams-meeting-features-and-experience/ - Categories: Microsoft 365, Microsoft Teams - Tags: meetings, Microsoft, Office 365, Teams - Article Type: How To Microsoft's updated Teams meeting expereince is rolling out but to get the most out of the new UI, here's what you need to know. Last week at Microsoft Inspire,  Microsoft announced that the new meetings and calling experience for Microsoft Teams was due to roll out to Windows and Mac clients. Over the last few days, it has begun to appear, as promised in clients. Image #1 Expand Figure 1: Together Mode (Image credit: Microsoft) The new meeting experience is made up of several key new features: Multi-window meetings and calls, with a re-designed experience. Together Mode, providing a re-think of how meetings can be conducted by placing meeting participants into a virtual room together announced last month. Large Gallery view, supporting up to 49 video feeds on-screen in a 7x7 view. And Focus view, hiding all video streams and avatars when content is being shared. The multi-window view was scheduled to arrive in June – then slipped back to July. Large Gallery view however was pushed back from June to sometime in Q3 (between now and September). Together Mode was originally scheduled for Q4 (between October and December). Naturally, due to changing priorities this year for Microsoft, who has shipped many new features in Teams that weren’t even on the roadmap six months ago, it’s understandable that some new functionality will get pushed back. But it was surprising to hear last week that not only is the new meeting experience rolling out, but that we can expect both Large Gallery view and Together Mode to arrive alongside it. Checking across several global Microsoft 365 tenants to get a wide view confirms that the... --- ### Understanding Hybrid Azure Active Directory Join - Published: 2020-07-29 - Modified: 2025-01-02 - URL: https://petri.com/understanding-hybrid-azure-active-directory-join/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory, Security, Windows 10, Windows Server - Article Type: Overview Devices hybrid joined to AAD are not joined to AAD. But instead, joined to ADDS and automatically registered with AAD. Understanding the concept of joining a device to a Windows Server Active Directory domain, otherwise known as Active Directory Domain Services (ADDS), is fairly easy to grasp. But with the arrival of Windows 10 and Azure Active Directory (recently renamed Microsoft Entra ID), it's fair to say that everything is more complicated. AAD is Microsoft's cloud-based identity management solution. It was designed to provide identity management for cloud-first applications, like Office 365. ADDS can be extended to the cloud by synchronizing accounts to AAD. AAD Connect synchronizes accounts so that the same credentials can be used to sign in to on-premises ADDS and cloud apps, like Office 365, that use AAD for user authentication. Windows 10 and Azure Active Directory Windows 10 devices can be joined to AAD. In this case, users sign in to Windows 10 using their AAD credentials. Windows 10, and operating systems that don't support joining AAD domains, like iOS, Android, macOS, and Windows 7 can be registered with AAD instead. AAD registration is primarily designed for Bring Your Own Device (BYOD) scenarios. Users sign in with a local account, or Microsoft Account (MSA) on registered devices. Registration provides seamless sign-on (SSO) to cloud resources much like devices that are joined to AAD. At first glance, it might seem that there isn't much difference between AAD join and registration. But if AAD joined devices can access domain controllers, and your ADDS domain is synchronized to AAD using AAD Connect, devices also get SSO to resources and... --- ### Teams Unifies Personal and Work Tasks > Microsoft is rolling out Tasks in Teams, a new app that unified personal tasks created in Outlook and To Do with work tasks created in Planner. The app allows users to interact with both types of tasks. - Published: 2020-07-29 - Modified: 2024-09-04 - URL: https://petri.com/teams-unifies-personal-work-tasks/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft 365 substrate, Planner, Tasks in Teams, To-Do, Unified Tasks - Article Type: How To, News Integration of Tasks, Planner, and To Do Teams has supported Planner as an app and a channel tab since 2018. It’s a popular integration that is used by many Office 365 tenants to support coordination of team activities. Initially a team could only support one plan, and the need to support a plan per channel accelerated progress to multi-plan support in 2019. Originally announced at the Ignite 2019 conference, Microsoft has given the integration a total makeover and the new Tasks in Teams app is now generally available. as usual, it will take time before Tasks in Teams is available in all tenants. Inside Teams, the new app is still called Planner because it replaces the older Planner app, but the name will change. Microsoft says calling the app Planner will “alleviate confusion among customers who miss our communications about this release” and they plan to move to a simpler Tasks name later in the year. I think they should have bitten the bullet and gone for Tasks now, but I guess I am no marketeer. Taking a Common View of Tasks The big difference is that Tasks in Teams includes both personal and team tasks while Planner only works with team tasks. The Microsoft 365 substrate views tasks as a common object, with the idea that task objects can be surfaced in different ways by different apps. At an app level, personal tasks are generated by Outlook and To Do while team tasks are generated by Planner... . --- ### The Basics of Managing a Windows 10 System with PowerShell - Published: 2020-07-28 - Modified: 2024-09-04 - URL: https://petri.com/the-basics-of-managing-a-windows-10-system-with-powershell/ - Categories: PowerShell, Windows 10, Windows Client OS - Tags: PowerShell, Windows 10 - Article Type: Overview PowerShell isn't just a command-line tool for system administrators. Even savvy Windows 10 users can take advantage of the capabilities built-in to make changes to their OS. PowerShell isn't just a command-line tool for system administrators. Even savvy Windows 10 users can take advantage of the capabilities built-in. There are many PowerShell commands that expose advanced functionality built within Windows or just make performing GUI based operations even simpler. In this article, we are going to group these commands into two buckets, gathering information and performing operations. Gathering Information Get-ComputerInfo Get-EventLog Get-AppXPackage Get-Process Get-LocalUser Get-MpComputerStatus Performing Operations Restart-Computer Start-Process Remove-AppxPackage Update-MpSignature New-SmbShare To use PowerShell, simply type Start→Run→"powershell" in the run dialog box. The version that will launch, by default, will be PowerShell 5. 1, which is the last built-in version of PowerShell. Running the latest version, with its many performance enhancements and features, is recommended. You will want to navigate to the PowerShell development page, click on the Windows (x64) . msi under Downloads (Stable) and install the package. Image #1 Expand   At this point, you can type Start→Run→"pwsh" in the run dialog box, and you will be running the latest version of PowerShell, 7. 0. 3 at the time of this writing. Gathering Information PowerShell has a number of great commands for gathering information on a system. The ones listed below are some of them. In case you want to go further into the Windows operating system, reading through the help for PowerShell should point you in the right direction. Get-ComputerInfo Built-in to Windows is a function that allows you to easily pull specific system information all at once. As you can see from the screenshot below, Get-ComputerInfo... --- ### Find and Block Unconstrained Delegation in Active Directory - Published: 2020-07-28 - Modified: 2024-09-04 - URL: https://petri.com/find-and-block-unconstrained-delegation-in-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Security, Windows Server - Article Type: Overview Service accounts configured for unconstrained delegation make it easy to compromise servers and Active Directory. Kerberos unconstrained delegation was introduced in Windows Server 2000. It was designed to let webservers, receiving authentication requests from users, to impersonate those accounts when updating records on backend database servers. Another way to think of unconstrained delegation is as a mechanism where a user sends its credentials to a service and then the service accesses resources on the user's behalf. When services impersonate user accounts in this way, it is sometimes known as performing a 'double-hop'. Unconstrained delegation is enabled by Domain Admins, and users that have the SeEnableDelegationPrivilege right, by checking 'Trust this computer for delegation to any service (Kerberos only)' on the Delegation tab of computer accounts in the Active Directory Users and Computers (ADUC) management console. User accounts, managed service accounts (MSA), and group managed service accounts (gMSA) can also be configured for unconstrained delegation. But the Delegation tab in ADUC is not exposed by default for these object types. User accounts must be assigned a Service Principal Name (SPN) before the Delegation tab appears in the ADUC Properties dialog. Advanced Features must also be checked in the View menu. Delegation attributes for MSAs and gMSAs must be set manually in the Attribute Editor tab in the Properties dialog. Users with the SeEnableDelegationPrivilege NT right, which is displayed as 'Enable computer and user accounts to be trusted for delegation' in security policy, also need write access to account objects to update their msDS-AllowedToDelegateTo, userAccountControl, and/or servicePrincipalName attribute values. Image #1 Expand Find and Block... --- ### Sponsored: Protecting your Domain and Users from Phishing Attacks - Published: 2020-07-27 - Modified: 2024-11-19 - URL: https://petri.com/protecting-against-phishing-attacks-with-dmarc/ - Categories: Anti-Spam Solutions, Microsoft 365, Ransomware, Security - Tags: anti-spam, DMARC, email, Phishing - Article Type: Sponsored Protecting your brand and your employees from phishing attacks is a critical first step to keeping your environment secure. This post is sponsored by Valimail There’s no doubt that email is easily one of the most popular vectors for malicious attacks on your environment. That’s mainly because email is an essential part of our daily business and personal communications. A recent survey1 showed that the total number of business and consumer emails sent and received per day exceeded 293 billion in 2019 and is estimated to grow to over 347 billion by the end of 2023. The total number of worldwide email users is expected to grow to over 4. 3 billion by the end of 2023 This ubiquitous usage makes email a primary target for hackers and cybercriminals. Typically, with an email exploit, the recipient is tricked into opening a malicious attachment or clicking a link that leads to a malicious web site. Sometimes the goal is to get the user to divulge their credentials or to supply some type of confidential data. There’s no doubt that email is easily one of the most popular vectors for malicious attacks on your environment. That’s mainly because email is an essential part of our daily business and personal communications. In other cases, the goal is to install and run malicious software on the user’s system that loads some type of malware or ransomware. Today’s COVID-19 pandemic has made this situation even more difficult as many businesses have quickly enabled remote working policies for their employees and the systems these employees use don’t always have the same security and protections in place... --- ### Slack and Teams: Complaint is Weak and Filled with Leading Statements - Published: 2020-07-27 - Modified: 2024-09-04 - URL: https://petri.com/slack-and-teams-complaint-is-weak-and-filled-with-leading-statements/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Complaint, Slack, Teams - Article Type: Opinion Slack's Odd Complaint I read the news that Slack filed a competition complaint against Microsoft in the EU on July 22 with a mixture of mirth and despair. Mirth because of the allegations advanced by Slack; despair because a company like Slack would resort to such a tactic. Slack’s complaint says that “Microsoft has illegally tied its Teams product into its market-dominant Office productivity suite, force installing it for millions, blocking its removal, and hiding the true cost to enterprise customers. ” Slack’s General Counsel is quoted as saying, “They created a weak, copycat product and tied it to their dominant Office product, force installing it and blocking its removal, a carbon copy of their illegal behavior during the ‘browser wars. ’ Tying to Office Let’s test these allegations to see if any truth exists. First, “illegally tied its Teams product into its market-dominant Office productivity suite. ” There’s no doubt that Teams is heavily integrated into Microsoft 365 (not just Office 365). In fact, Teams uses more Office 365 and Azure components than any other application out there. “Tied” implies that Teams was created and then linked to Office 365, but the fact is that without Exchange Online, SharePoint Online, OneDrive for Business, and Azure Active Directory (to mention just the headline services), Teams wouldn’t exist and couldn’t function. Forced Installation (and Easy Removal) “Force installing it for millions” probably refers to the way that Teams is installed along with rest of the Microsoft 365 enterprise apps click-to-run suite. It’s... --- ### Microsoft’s RemoteWebAccess Site Goes Down Because DNS is Hard - Published: 2020-07-24 - Modified: 2020-07-24 - URL: https://petri.com/microsofts-remotewebaccess-site-goes-down-because-dns-is-hard/ - Categories: Remote Access - Tags: News, Remote Access - Article Type: News Microsoft is feeling that sting today as its website, remotewebaccess.com has been dealing with DNS related challenges for more than 12 hours. Whenever a web service goes offline, the root cause is almost always DNS. Ok, that might be overselling it a bit but frequently DNS is part of the equation when a user cannot access a web service. Microsoft is feeling that sting today as its website, remotewebaccess. com has been dealing with DNS related challenges for more than 12 hours. I got tipped on this last night and figured it would be quickly resolved but folks on Twitter are reporting they are still having issues accessing the service. A little sleuthing reveals that the domain was renewed yesterday and that the nameservers were also updated. The site allows on-premises Server Essentials servers to quickly deploy remote access which is quite helpful in the middle of a pandemic. I’ve heard from many SMBs and those that support these companies that they cannot access their servers which is taking down operations for these businesses. There are workarounds but this outage is hurting small businesses the most and in a time where every operation is feeling the squeeze from a weakened economy, this outage is particularly painful. Microsoft has not yet publicly acknowledged the issue and we will report back if we hear any updates. Microsoft is aware of the issue and is working to resolve the outage. Microsoft says that the service is now back online. --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (July 2020) - Published: 2020-07-24 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-13/ - Categories: Cloud Computing, Microsoft 365, Microsoft Azure, Microsoft Teams, Mobile - Tags: News - Article Type: Overview Because the pandemic is clearly the best thing that’s ever happened to Microsoft, this edition of Short Takes looks at Microsoft’s blockbuster quarterly and annual earnings announcement. Because the pandemic is clearly the best thing that’s ever happened to Microsoft, this edition of Short Takes looks at Microsoft’s blockbuster quarterly and annual earnings announcement. Note: On Wednesday, Microsoft reported net income of $11. 2 billion on revenues of $38 billion in the quarter ending June 30; net income was down 15 percent year-over-year while revenues jumped 15 percent. For the 12 months ending June 30, the firm reported net income of $44. 3 billion on revenues of $143 billion; those figures are up 13 and 14 percent, respectively, YOY. COVID, Microsoft, and you Microsoft has to walk a careful line here, but it’s clear that Microsoft’s business, overall, has benefitted greatly from the pandemic. Yes, some business was down---its small business customers were particularly problematic, and Microsoft called out a decline in search revenues---but businesses that should have been faltering saw sharp and unnatural upticks. Of course, Microsoft can’t brag about this, so it just noted that its second consecutive quarter in the pandemic saw “similar business trends” to the first. “Cloud usage and demand increased as customers continued to work and learn from home,” the firm noted, while Windows sales to PC makers, Surface PC sales, and gaming, of all things, “benefited from increased demand to support work-, play-, and learn-from-home scenarios. ” This is a win-win for Microsoft because it has hit a magic matrix where its new, cloud-based businesses and its legacy businesses are both soaring at the same time. “Software has more room to... --- ### Key Features for Disaster Recovery-As-A-Service (DRaaS) - Published: 2020-07-24 - Modified: 2022-09-21 - URL: https://petri.com/key-features-for-disaster-recovery-as-a-service-draas/ - Categories: Backup & Storage, Cloud Computing, Data Management, Microsoft Azure - Tags: Azure, Backup, cloud computing, Disaster Recovery - Article Type: Overview DRaaS has steadily become a more popular option to protect your critical services and applications. A Gartner survey in 2019 showed that businesses are now protecting an average of 255 virtualized x86 instances. DRaaS has steadily become a more popular option to protect your critical services and applications. A Gartner survey in 2019 showed that businesses are now protecting an average of 255 virtualized x86 instances.  This is an increase of 53% from 2018 which indicates an increased adoption of DRaaS by larger organizations. As you might expect, the DRaaS market is growing rapidly as well and today there are a wide array of different DRaaS providers. All of these providers have different approaches to DR as well as their own feature sets, capabilities and costs. This wide selection of vendors and capabilities can make picking a DRaaS solution complex and difficult. While there are too many DRaaS providers to list them all, some of the main companies in the DRaaS market include: Microsoft - Azure Site Recovery (ASR) iland - iland Secure DRaaS Recovery Point - Business Process Resilience (BPR) TierPoint - Cloud-to-Cloud Recovery InterVision - Bluelock Solutions IBM - Cyber Resilience Services, Resiliency Orchestration, Disaster Recovery as a Service Sungard Availability Services - Data Protection, Recovery Management, Workplace Recovery Services, and Cloud & Infrastructure Recovery BIOS Middle East - DRaaS and backup as a service (BaaS) Expedient - Expedient Push Button DR, On-Site Private Cloud with DRaaS Flexential - Essential, Prime and Premium DRaaS Veeam - Disaster Recovery as a Service VMware - VMware Site Recovery As you begin to look into DRaaS solutions, the starting point is to identify your recovery time objectives (RTOs) and recovery point objectives (RPOs). In... --- ### Microsoft Launches Workspaces, Then Pauses for Reflection > Microsoft launched workspaces on Monday and promptly withdrew them on Tuesday to reconsider how to implement this new Exchange Online feature. The problem is that they planned to use a custom attribute to identify workspaces. - Published: 2020-07-23 - Modified: 2022-03-29 - URL: https://petri.com/exchange-online-workspaces/ - Categories: Exchange Online, Microsoft 365, Office - Tags: owa, Room Mailbox, Workspaces - Article Type: News Microsoft dodged the opportunity to fire a bullet into their own foot when they pulled back plans to launch “workspaces” in Exchange Online. Announced on Monday and withdrawn on Tuesday, Workspaces are a new form of room mailboxes, the difference being that room mailboxes are used to reserve traditional conference rooms while workspaces seem to represent individual work areas like hot desks found in many office buildings. Microsoft says that a workspace is “a physical location where employees can work from. It can be made up of many desks or can be a single desk. ” Conference Rooms and Workspaces Room mailboxes have attributes like capacity to help people schedule the right space for a meeting. It might have been possible to create workspaces using the existing room mailboxes, but Microsoft has opted for a modified version to handle different booking mechanisms. For example, while conference rooms and workspaces both have capacities, the bookable capacity in a workspace is more granular (down to a single desk). In addition, workspace bookings are for a minimum of three hours to reflect the need of people to reserve space to use as a base when they check into a location. Apart from a different booking scheme based on workspace capacity, it should be as easy to reserve a workspace using Outlook as it is to reserve a conference room today. Exchange and Custom Attributes All of this sounds good. The problem is that Microsoft decided to hijack CustomAttribute11, one of the fifteen... --- ### Microsoft's Financials Remain Healthy in Q4 Earnings - Published: 2020-07-22 - Modified: 2020-07-22 - URL: https://petri.com/microsofts-financials-remain-healthy-in-q4-earnings/ - Categories: Main - Tags: Earnings, Microsoft - Article Type: News Microsoft has posted healthy numbers yet again for its earnings even with the headwinds of COVID-19. Microsoft has released its earnings for the quarter ending June 30th, but this is also the end of Microsoft's fiscal year as well. For the quarter, Microsoft revenue was up to $38 billion, a 13% increase over the previous year but net income was down 8% from the previous year. Considering that COVID-19 has pulled the rug out from under the economy, Microsoft posted healthy results. For the quarter, here are the important numbers: Commercial cloud revenue grew to $14. 3 billion, up 30% YoY Office 365 Commercial revenue growth of 19% Office 365 Consumer is now at 42. 7 million users Server products and cloud services revenue increased by 19% Windows OEM revenue increased by 7% Surface revenue increased 28% to $1. 7 billion for the quarter Xbox content and services revenue increased by 65% LinkedIn Revenue grew 10% Overall, Microsoft posted a healthy quarter with nearly all key segments growing in revenue. Considering that many workers are now operating remotely, this falls directly into the wheelhouse of Office 365. During the quarter, Microsoft stated that Office 365 commercial revenue was driven by seat growth but also increased revenue per user. Meaning, more new users signed up and many customers moved to higher tiers of the service. And seeing as this is the end of the fiscal year, for 2020, Microsoft had revenue of $143 billion with a net income for the period of $44. 3 billion. At the time of this post, $MSFT was up 1. 5% to 211. 75. --- ### How to Uncover and Move Away from SharePoint 2010 Workflows > On July 6th, Microsoft announced the deprecation of SharePoint 2010 workflows in SharePoint Online. You may have also heard these workflows referred to as a “SharePoint Designer 2010” workflow. - Published: 2020-07-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-uncover-and-move-away-from-sharepoint-2010-workflows/ - Categories: SharePoint, SharePoint Online - Tags: SharePoint Designer, Workflow - Article Type: News On July 6th, Microsoft announced the deprecation of SharePoint 2010 workflows in SharePoint Online, and if you need to move away from this iteration, here's how you can do that.   On July 6th, Microsoft announced the deprecation of SharePoint 2010 workflows in SharePoint Online. You may have also heard these workflows referred to as a “SharePoint Designer 2010” workflow; SharePoint Designer is the tool that was used to build these workflows. If you’re thinking – Microsoft said SharePoint 2010 and 2013 workflows were supported until 2026? ! Well – not exactly, Microsoft committed to supporting those 2010 workflows within the SharePoint 2016 and 2019 on-premises environments until 2026. SharePoint Online is and will continue to operate under different guidelines. The Microsoft 365 / SharePoint Online workflow solution is Power Automate and the expectation is that we are now using that toolset for creating workflows. Here are your big dates/deadlines to be aware of: • Starting August 1st, 2020, SharePoint 2010 workflows will be turned off for newly created tenants. • Starting November 1st, 2020, Microsoft will begin to remove the ability to run or create SharePoint 2010 workflows from existing tenants. Also worth noting... . • Starting in November 2020, SharePoint 2013 workflows will be turned off by default for new tenants. Microsoft will provide a PowerShell script to let customers to activate the SharePoint 2013-based workflow engine for tenant as needed. • The deprecation date for SharePoint 2013 workflows is still to be announced. Common Scenarios for SharePoint Designer 2010 Workflows You may also be thinking... . who would use SharePoint 2010 workflows in SharePoint Online anyway? Why is this even a big deal? You might be surprised at the... --- ### Optimize Windows Update with New Update Baseline Tool for Windows 10 - Published: 2020-07-22 - Modified: 2020-07-22 - URL: https://petri.com/optimize-windows-update-with-new-update-baseline-tool-for-windows-10/ - Categories: Windows 10 - Tags: Security, Windows 10, Windows Update - Article Type: News Apply Microsoft's recommended Windows Update settings for faster updates without impacting user productivity. Microsoft's servicing updates for Windows 10 have been controversial and confusing for consumers and businesses. Last year, Microsoft finally relented on the biannual feature updates somewhat by issuing a second feature update for Windows 10 that was delivered like a minor cumulative update for users on the first feature update released in 2019. But that wasn't the only change Microsoft has made to servicing since Windows 10 first launched. Microsoft removed the update deferral settings from Windows Update in the Windows 10 May 2020 Update Settings app because they caused too much confusion for users. And back in 2017, Microsoft changed the Current Branch, Current Branch for Business, and Long Term Servicing Branch in favor of two servicing channels: Semi-Annual Channel and Long Term Servicing Channel. Not only is servicing sometimes difficult to follow but Windows Update settings are also complex, adding to the overall confusion about how to configure updates to complete in a timely way but without annoying users. Windows 10 Update Baseline To address this issue, Microsoft released the Windows 10 Update Baseline tool in June. The tool comes with advice about how to optimize Windows Update settings, including Microsoft's recommended update settings in the form of a Group Policy Object (GPO) that can be imported into the Group Policy Management Console (GPMC). Windows Update settings optimized for velocity and user experience The tool contains a detailed PDF explaining the different settings that affect Windows Server Update Services (WSUS) and Windows Update for Business (WUfB)... . --- ### Understanding the new Granular Permissions for App Access to Teams data - Published: 2020-07-21 - Modified: 2024-09-04 - URL: https://petri.com/understanding-the-new-granular-permissions-for-app-access-to-teams-data/ - Categories: Compliance, Microsoft 365, Microsoft Teams, Office, Security - Tags: App, Data, Microsoft, permissions, Security, Teams - Article Type: News Microsoft announced in the message center this week that resource-specific content will roll-out to tenants, beginning mid-August. This opens the door for installing richer applications than you would have previously considered approving and allows self-service installation by Team owners. Teams applications based on the Graph API to read and write content within a Team, such as full team membership, channel structure, chats and files, were often difficult to deploy. This is because an application was not able to limit its request to access data for only that specific team. Instead, an administrator needed to grant access to the application for all Microsoft 365 Groups data, creating both a potential security risk and work for  administrators who processed access requests for routine application access by users. Image #1 Expand Figure 1: Admin approval process for granting full access to an app (image credit: Microsoft) This would mean that if a user wanted to add a Team-specific application, such as one that provided specific capabilities only applicable to their team, the administrator would need to grant access to that application at a tenant-level, providing access to all messages, channels, membership list, files, calendar, and plans. The resource-specific content model is the solution to this problem and provides the opportunity for Teams application developers to design applications that can request specific permissions related to the resource, such as a particular Team, that they are trying to access. Applications designed to take advantage of this model request permissions when they are added... --- ### Microsoft Opens the Door for New Teams App Integrations, Power BI Enhancements - Published: 2020-07-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-opens-the-door-for-new-teams-app-integrations-power-bi-enhancements/ - Categories: Microsoft Teams, Office - Tags: Inspire, Microsoft, News, Teams - Article Type: News Microsoft is rolling out new functionality in Teams to make it easier for ISVs to build apps, bots, and more for the platform. This week, Microsoft is hosting its Inspire conference. Typically held in Las Vegas, like many other conferences this year, the event is now virtual but that doesn’t mean Microsoft is holding back on the announcements. Inspire is a conference designed for Microsoft’s partners with the goal of ‘inspiring’ them to sell more services or build new products that complement Microsoft 365. One way that companies achieve this is by building unique tools that make it easier to better understand data they are generating or tools to make it easier to achieve compliance with various frameworks. This year at Inspire, Microsoft is putting a large focus on building services and apps for its Teams application. Calling it an application is underselling Teams a bit, as it's more of a “productivity OS” than a simple tool, but being announced today are enhancements to the Power Platform inside of Teams to make it easier to create, deploy, and manage apps. In addition, there are updates to Power BI to bring dashboards to Teams as well. Image #1 Expand Microsoft is making it easier to build Power Apps for Teams Apps and chatbots built with Power Apps and Power Virtual Agent can now access data that resides in Microsoft Dataflex, a relational database that’s built into Teams. If you are already building apps using the Power Platform, there are no additional licensing fees but if you are not using these services yet, you should check to see if your current... --- ### New Group Policy Updates for Windows 10 in 2020 - Published: 2020-07-21 - Modified: 2024-09-04 - URL: https://petri.com/group-policy-changes-in-the-windows-10-may-2020-update/ - Categories: Windows 10 - Tags: group policy, Security, Windows 10 May 2020 Update - Article Type: Overview The Windows 10 May 2020 Update includes some new Group Policy settings to manage security, delivery optimization, and apps. The Windows 10 May 2020 Update brings some changes to Group Policy so that administrators can better manage security, delivery optimization, and apps. But while the update still includes Microsoft's legacy Edge browser, the Group Policy settings related to it have been removed. Internet Explorer redirection The Configure which channel of Microsoft Edge to use for opening redirected sites setting can be found under Computer Configuration > Administrative Templates > Windows Components > Internet Explorer and User Configuration > Administrative Templates > Windows Components > Internet Explorer. If you have set up Internet Explorer 11 to redirect sites to Microsoft Edge, the new setting lets you specify which channel release of Microsoft's new Edge browser should be used. If the setting is not configured, the Stable channel is used. If you enable the setting, you can specify a first, second, and third choice from the following options: Microsoft Edge Stable Microsoft Edge Beta version 77 or later Microsoft Edge Dev version 77 or later Microsoft Edge Canary version 77 or later. Image # Expand Group Policy Changes in the Windows 10 May 2020 Update (Image Credit: Russell Smith) Password policies There are two new password policies under Computer Configuration > Windows Settings > Security Settings > Account Policies > Password Policies. Relax minimum password length limits and Minimum password length audit are designed to make it easier for organizations to implement passphrases instead of passwords. A passphrase is a sentence that replaces a usually shorter password. The length... --- ### Windows 10X Plans have Come Full Circle - Published: 2020-07-20 - Modified: 2020-07-20 - URL: https://petri.com/windows-10x-plans-have-come-full-circle/ - Categories: Windows 10, Windows Client OS - Tags: Lite OS, Windows, Windows 10X Microsoft has made significant changes to Windows 10X and lost nearly 18 months of development time. If you were able to jump into a time machine and go back to December of 2018, Microsoft was working on a version of Windows 10 that I referred to as ‘Lite’. The idea, at that time, was that the company was planning to take on the growing threat of Chromebooks. But like many Microsoft projects, the company kept clinching on to its roots and the need for running legacy applications. As ‘Lite’ evolved, the company began experimenting with running legacy apps in a container and Windows 10X was born. The company planned to initially ship Windows 10X on dual-screened devices, like the now delayed Surface Neo, but those plans are falling further than initially expected. Microsoft likely isn’t going to ship Windows 10X for dual-screened devices until 2022, at the earliest. The plan, for now, is that Windows 10X is going back to its roots and will be targeted at a Chromebook-like experience that runs UWPs and web apps. It is not yet known if Windows 10X will support the new ‘reunion’ apps that the company announced earlier this year. The path forward for Windows 10X to bring traditional apps to 10X is likely from a new cloud-streaming service. This isn’t the first time streaming apps to a remote device has been tried, the first with an ill-fated Windows Phone from HP but while similar on the surface from a user perspective, the backend is vastly different. Microsoft has all the components in place to be able to stream... --- ### Sensitivity Labels Exert More Control Over SharePoint Online Sites > Soon Sensitivity Labels will be able to control the sharing capability of SharePoint Online sites. Site owners and tenant admins can configure labels to control sharing in addition to the other container settings. - Published: 2020-07-20 - Modified: 2024-09-04 - URL: https://petri.com/sensitivity-labels-control-sharepoint-sites/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Office 365 Sensitivity Labels, SharePoint Online - Article Type: How To, News Expanding the Control of Sensitivity Labels In a Teams live event to brief customers on July 14, Microsoft revealed details of how they plan to evolve the container settings in sensitivity labels to exert more control over SharePoint Online sites. Microsoft also plans to improve the flow of creating new sensitivity labels to create “label scope” or the ability to target a label to apply to containers, documents and email, or both. The new creation flow and scoping is due to arrive in tenants in early August and I’ll cover that in another article. When Microsoft introduced the ability of sensitivity labels to control container settings, a limited number of controls were available. You can create a label which, when applied to a team, site, or group, bars access to guest members or sets the access to be public or private (or decided by the container owner), or limits access to documents in a SharePoint when using unmanaged devices. The current controls are useful, but the intention always was to expand the number of controls to make sensitivity labels a much more powerful method to exert policy over containers. This is what we now see unfolding. Controlling Access to SharePoint Online Sites SharePoint sites often store many sensitive documents. Users can protect those documents by manually applying sensitivity labels. Tenants can use auto-label policies to find sensitive documents and apply labels in bulk (an E5 feature). It’s a natural step to enable labels to control access to documents... --- ### Paul Thurrott's Short Takes: July 17 - Published: 2020-07-17 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-17/ - Categories: Cloud Computing, Exchange Server, G Suite, Microsoft 365, Microsoft Azure, Microsoft Teams, Office, Outlook, Remote Desktop - Article Type: Overview Because the end is listless, this edition of Short Takes looks at a temporary Outlook problem that broke the Internet, Google’s Microsoft envy, a well-intentioned but ill-conceived plan to fix Edge and Chrome memory usage, Microsoft layoffs, and so much more. Because the end is listless, this edition of Short Takes looks at a temporary Outlook problem that broke the Internet, Google’s Microsoft envy, a well-intentioned but ill-conceived plan to fix Edge and Chrome memory usage, Microsoft layoffs, and so much more. Outlook for Windows was broken for less than a day and the world still ended On Tuesday, Microsoft said it was examining an issue that was causing the Windows version of Outlook to fail with a 0xc0000005 error, and it quickly determined that the problem was triggered by “a recently deployed update,” meaning one of the hundreds of Windows Updates it shipped to customers that day, which was Patch Tuesday. By the end of the day, Microsoft had issued a workaround and then an actual fix, so the actual downtime, assuming you could even find those responses, was less than 24 hours. Despite this, and despite the fact that every impacted user could have simply used Outlook on the web for the duration, the Microsoft community collapsed into a bizarre pile of self-pity that lashed out at everything around. Guys. There’s a pandemic happening. This was not in any way notable. “Land O'Lakes and Microsoft form strategic alliance” I can’t believe it’s not Azure. Google is Making Gmail more like Outlook And speaking of everyone’s favorite kitchen sink application, Google is apparently so impressed by Microsoft Outlook that it’s trying to emulate that application as it improves Gmail for its G Suite customers. This week, a coming... --- ### The Problem with Guest Accounts (Going Outside Your Tenant) > Azure B2B collaboration makes it easy for applications to create guest user accounts. Teams, Planner, Groups, SharePoint, OneDrive and so on do this. But how do you know what your users are doing as guests in other tenants? - Published: 2020-07-16 - Modified: 2024-11-19 - URL: https://petri.com/problem-guest-users-outside-tenant/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office - Tags: Azure B2B Collaboration, external guest, Guest Accounts, User activity - Article Type: Opinion Good Visibility Over Guest Activity for Host Office 365 Tenants From a host tenant perspective, Microsoft has done a great job with Azure B2B Collaboration, the foundation for guest user access for applications like Teams and Planner. External people can be invited to join groups and teams or share documents and folders (including now through @mentions in comments in Office documents). After they redeem their invention, the external people become fully-fledged guest users in the tenant and enjoy full secure access to the resources they’ve been asked to share. Just about the only thing a tenant administrator must worry about is an occasional review of guest accounts with the intention of removing accounts no longer actively used. Or maybe implement a blacklist for domains you don’t want guest users to come from. Reporting Guest Activity Enabling external people to share tenant resources is good. Knowing what guests do inside the tenant is even better. The Office 365 audit log is a great source of information about some guest activity. You can discover who creates guest accounts or what external people accept sharing invitations or how guest users access documents stored in SharePoint Online or OneDrive for Business. Exchange Online message traces reveal what email goes to guest users (albeit somewhat painfully). The Teams user activity API in the Microsoft Graph gives an insight into chat and channel activity, but not for guest users (an API must be available because the usage reports in the Teams admin center include... --- ### Patch Tuesday – July 2020 - Published: 2020-07-15 - Modified: 2020-07-15 - URL: https://petri.com/patch-tuesday-july-2020/ - Categories: Windows 10 - Tags: Patch Tuesday, Windows 10, Windows Server - Article Type: News Microsoft releases 123 security updates, including a patch for a critical Windows Server DNS bug and Hyper-V RemoteFX vGPU gets disabled. Microsoft releases 123 security updates, including a patch for a critical Windows Server DNS bug and Hyper-V RemoteFX vGPU gets disabled. Windows and Windows Server Let's start with the most serious bug Microsoft patched this month. Windows DNS server wormable vulnerability Discovered by Sagi Tzaik of Check Point, SigRed (CVE-2020-1350) is a remote code execution (RCE) vulnerability in Windows DNS servers where they fail to properly handle requests. A hacker could send a malicious request to a Windows DNS server and run arbitrary code in the context of the Local System Account. Only unpatched Windows systems configured as DNS servers are vulnerable. SigRed affects all versions of Windows Server from 2003 to 2019. Because the vulnerability is wormable, i. e. it can spread across a network without any user interaction, it could lead to all devices being infected if just one server is compromised with arbitrary code. Check Point's technical analysis says: "SIGRed (CVE-2020-1350) is a wormable, critical vulnerability (CVSS base score of 10. 0) in the Windows DNS server that affects Windows Server versions 2003 to 2019, and can be triggered by a malicious DNS response. As the service is running in elevated privileges (SYSTEM), if exploited successfully, an attacker is granted Domain Administrator rights, effectively compromising the entire corporate infrastructure. " The bug has been assigned the highest severity rating. And while it's not thought that it was being actively exploited in the wild prior to this month's Patch Tuesday, Microsoft thinks it highly likely that hackers will weaponize... --- ### Extreme Flow Guard (xFG) and Kernel Data Protection (KDP) Coming to Windows 10 - Published: 2020-07-15 - Modified: 2020-07-15 - URL: https://petri.com/extreme-flow-guard-xfg-and-kernel-data-protection-kdp-coming-to-windows-10/ - Categories: Windows 10 - Tags: News, Security, virtualization based security, Windows 10 - Article Type: News xFG and KDP bring new defenses against data corruption attacks in Windows 10. Data corruption attacks aren't new, but hackers are stepping up their efforts to exploit Windows by corrupting data in memory to escalate privileges and install malicious code. Windows already has several protections against data corruption attacks, including code integrity, Address Space Layout Randomization (ASLR), and Control Flow Guard (CFG). In the Windows 10 May 2020 Update and future feature updates, Microsoft is refining existing protections and it is introducing a new one to improve security defenses. Extreme Flow Guard Control Flow Guard, or Control Flow Integrity (CFI) as it is sometimes known, has been around in Windows for a long time. But it isn't considered to be very effective because Microsoft made a lot of concessions to maintain performance and compatibility with older applications. CFG is designed to protect against memory corruption vulnerabilities by restricting where applications can execute code from. While CFG is less than perfect, it has been able to stop some zero-day attacks on Windows 10. Extreme Flow Guard (xFG) is a second attempt at CFG. xFG provides finer-grained CFI that is more efficient and compatible than CFG. Microsoft says that xFG reduces possible control transfer points by 100-1000 times. And while xFG isn't perfect, it is an 'extreme' improvement over CFG, hence the name, I guess. xFG is based on CPU technology developed by Intel called Control-Flow Enforcement Technology (CET). Or more precisely, CET Shadow Stack Flow. The new Shadow Stack Pointer (SSP) register is used to change CPU calls and return instructions that... --- ### Microsoft Updates Outlook with New Time Management Features - Published: 2020-07-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-outlook-with-new-time-management-features/ - Categories: Microsoft 365, Office - Tags: email, Microsoft, News, Outlook - Article Type: News Microsoft has announced several updates coming to Outlook that are designed to make it easier to add tasks to To Do and manage your calendar. Microsoft loves to pitch ideas that they think will help you save time and be more productive. These come in various flavors of AI doing tasks in the background to utilizing virtual assistants to find open time on calendars. While Microsoft loves to tell you that Teams is the center of productivity in the Office 365 portfolio, our addiction to email has yet to go away. And it likely won't anytime soon, email is the universal tool to communicate with any person at your company and to connect with those outside your organization as well. Announced today, Microsoft is rolling out new updates for Outlook that will make it easier to add tasks to To Do, manage your calendar without having to jump between tabs, and combine all your calendars into one location. Calendar management within your inbox: these new features allow you to triage your calendar directly from your Outlook inbox rather than having to toggle between your inbox and calendar, with a collection of small adjustments like a one-click Join button in Outlook, mini-calendar in message list, and more. Meeting Insights for Outlook mobile: now Outlook will bring email messages and files related to your meeting right to the meeting invite and the calendar event, so you can easily and quickly find what you need. Integrated personal & work calendars for more accurate time management: the new ability to add your personal Outlook. com or Google calendar to your Outlook work account, so that your personal time commitments are reflected in your... --- ### How to Customize the Microsoft Terminal - Published: 2020-07-14 - Modified: 2024-11-19 - URL: https://petri.com/how-to-customize-the-microsoft-terminal/ - Categories: PowerShell - Tags: PowerShell, Terminal - Article Type: Overview There are many ways to configure Microsoft Terminal to fit your needs. Each release has refined or expanded upon the available customization options. Microsoft recently released a brand new terminal application aptly named Microsoft Terminal. Written from the ground-up, this modern terminal boasts a large number of features intended to appeal to system administrators of both Windows and Linux systems alike. What are some of the features? Multiple Tabs Split Panes Transparency Full Unicode Support Background Image Support Color Schemes With an emphasis on heavy customization and ease of use, the new Microsoft Terminal makes it easy to connect and administrator local systems, remote systems, and even WSL (Windows Subsystem for Linux). Getting Microsoft Terminal The easiest way to install Microsoft Terminal is through the Microsoft Store, which also will automatically download the latest releases as well. The source repository also has each new release available as an . msixbundle. If you are installing Microsoft Terminal manually, then make sure to install the Desktop Bridge VC++ v14 Redistributable Package. This is not necessary if using the Microsoft Store method of installation. Configuration Options There are many ways to configure Microsoft Terminal to fit your needs. Each release has refined or expanded upon the available customization options. Microsoft Terminal uses a settings. json file encoded, as expected, in the JSON format. The default location is: ​C:\Users\{User}\AppData\Local\Packages\Microsoft. WindowsTerminal_8wekyb3d8bbwe\LocalState\settings. json The easiest way to modify this file is to open Microsoft Terminal and choose Settings. Image #1 Expand Once the settings. json file has been opened, there are four sections to be aware of: Global Settings Profile Settings Color Schemes Key Bindings Below we will explore each section and... --- ### Understanding the New Teams Search Functionality - Published: 2020-07-14 - Modified: 2024-09-04 - URL: https://petri.com/understanding-the-new-teams-search-functionality/ - Categories: Microsoft 365, Microsoft Teams - Tags: Office 365, Search, Teams - Article Type: Overview Microsoft has improved contextual search in Teams but its implementation can be hard to understand. Over the last week, Microsoft has rolled out a feature in Microsoft Teams that is aimed at making finding information in a chat easier. However, you might need to give your users some guidance so they understand how to use it. The overhaul to search was first announced at Microsoft Build almost two months ago. Search within Microsoft Teams has been one aspect that has regularly been criticized, primarily because if you are a member of many teams, the results returned can be overwhelming. Often, if you are looking for something specific in a channel, it can be easier to scroll through the channel than search across everything you have access to. In the updates rolled out over the last week, contextual search has finally arrived. This update allows you to search within the current channel or chat you are working in, using CTRL-F, to bring a focused search experience within the current channel or chat, or using /find in the command bar. Prior to the update, the typical way to find content was to type the search term into the command bar at the top of the Teams application window. Then, depending on how generic your search was, you would need to scroll through the results to find the item you need: Image #1 Expand Figure 1: The previous Teams search experience (image credit: Steve Goodman) With the new experience, using CTRL-F within the channel or chat you are in will bring up the contextual search, pre-configured for that... --- ### Surface Laptop 3 – Six Months Later - Published: 2020-07-13 - Modified: 2024-09-04 - URL: https://petri.com/surface-laptop-3-six-months-later/ - Categories: Hardware - Tags: Laptop 3, Microsoft, News, review, Surface - Article Type: Review Microsoft's Surface Laptop 3 has been on the market for more than half a year, but is it the right device for you? It’s a bit hard to believe that the Surface Laptop 3 has been out for six months. It’s so hard to believe that it has not been six months since it’s release, but eight, and I’m a bit behind on my long-term review of the hardware. There are two flavors of the Laptop 3, 13. 5in, and 15in. I have the 15in that uses an AMD Ryzen 5 ‘Surface Edition’ CPU with 16GB of RAM and is black but you can also get the laptop in Sandstone, Cobalt Blue, and Platinum. Depending on the color, some of them come with Alcantara on the keyboard deck, while others, like the black one that I have, it’s all metal. If you want a deeper dive into the hardware, it’s worth taking a look at the initial review from late last year. The Good I have been using the Laptop 3 frequently since its release and have done quite a bit of writing with the laptop. Because of traveling being non-existent right now, I haven't had any opportunities to use the device on the back of a plane. That being said, as you would expect with nearly all Surface products, the hardware has held up well. I don’t have any key discoloration, scratches are minimal, and I’m not seeing any significant wear marks on the keyboard deck. Windows Hello works well, the keyboard is tactile and confident, and the trackpad is wide enough that you don’t feel cramped while trying to use gestures. And... --- ### What the Teams Meeting Enhancements Mean to the Enterprise > Microsoft made a batch of announcements about new functionality for Teams meetings last week. Here's an assesment of what those features mean for enterprise Office 365 tenants. - Published: 2020-07-13 - Modified: 2024-09-04 - URL: https://petri.com/teams-new-meeting-experience/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Teams meetings, Together mode - Article Type: News, Opinion Microsoft has a very competent PR engine that is skilled at pumping news out that’s designed to thrill and excite people. We saw this happening in full flood on July 8 when Microsoft announced a set of improvements for Teams meetings. Now that the fuss surrounding the announcements has calmed down, it’s time to take a more measured look at what these developments mean for enterprise Office 365 tenants. Background for the announcements is in Microsoft's "the future of work" post. In addition, three other more technical posts provide detail for individual features: Teams Displays and Devices. Room meeting experience. Together mode in meetings. The central thrust of the announcements is squarely directed at Zoom. Microsoft was caught off guard by the success of Zoom in the enterprise, consumer, and education markets once the pandemic arrived. The old Teams 2 x 2 view suddenly looked very stale and Zoom had more features and glitz than Teams could deliver. A few months later, proving that it is possible to turn a behemoth mid-stream, the intellectual power that exists within Microsoft and a healthy dose of competition means that Teams is leading the pack. Delivery Everyone wants to know when the new functionality will be available. That’s for Microsoft to decide, but I wouldn’t put too much faith in predicted dates. It’s better when software ships when it’s ready, and I expect that Microsoft will wait until they know that the features are scalable, robust, and secure. At least, I hope they... --- ### Amazon Brings RDS to AWS Outposts - Published: 2020-07-10 - Modified: 2020-07-10 - URL: https://petri.com/amazon-brings-rds-to-aws-outposts/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Amazon RDS, AWS, News - Article Type: News AWS Outposts are essentially a hardware platform that runs on-premise but it is managed like the AWS cloud and they are now available with RDS support. AWS Outposts have been generally available since December 2019. AWS Outposts are a hybrid cloud platform sold by Amazon. Amazon provides the hardware and software as well as managing the maintenance operations like provisioning, patching, and backups. AWS Outposts are essentially a hardware platform that runs on-premise but it is managed like the AWS cloud. AWS Outposts are delivered, installed, managed, and monitored by Amazon. Outposts are connected to the nearest AWS Region to provide the same management and control plane services across both your on-premises and cloud environments. Later in 2020, a VMware specific version of AWS Outposts called VMware Cloud on AWS will be available. That version of Outposts will deliver a fully managed VMware Software-Defined Data Center (SDDC) running on the AWS Outposts infrastructure on-premises. This past July 2020, Amazon announced that RDS databases are now generally available on AWS Outposts.  For the initial release, RDS on AWS Outposts will support MySQL 8. 0. 17 and PostgreSQL 12. 2. It is likely that other databases like SQL Server and Oracle will be available in the future. RDS on Outposts is one of the first vendor-managed Database-as-a-Service (DBaaS) offerings that runs within the customer's data center. It is designed to support applications with low latency requirements that need to remain close to on-premises data and applications such as manufacturing and IoT. RDS on Outposts supports MySQL DB instances ranging from db. m5. large at $0. 075/hr to db. r5. 24xlarge costing $5. 472/hr. PostgreSQL is similar at db. m5. large for $0. 082/hr to db. r5. 24xlarge for $5. 952/hr. Additional RDS on... --- ### Paul Thurrott's Short Takes: July 10 - Published: 2020-07-10 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-10/ - Categories: Cloud Computing, Microsoft 365 - Tags: News - Article Type: Overview Because we’re getting a little loopy during the pandemic, this edition of Short Takes looks at the push to $2 trillion in market cap, how Peggy Johnson is just like Stephen Elop, a metric ton of new Teams features, LinkedIn stealing your data, and so much more. Because we’re getting a little loopy during the pandemic, this edition of Short Takes looks at the push to $2 trillion in market cap, how Peggy Johnson is just like Stephen Elop, a metric ton of new Teams features, LinkedIn stealing your data, and so much more. Amazon, Apple, and Microsoft races towards $2 trillion market cap Last year, we thrilled to see which of the Big Tech corporations would hit a $1 trillion market capitalization first, and it wasn’t that long ago that were talking about the possibility of Apple or maybe Microsoft hitting $1. 5 trillion. Well, the global pandemic is obviously bad overall, but it’s been great for the stock prices of the biggest tech companies. And with Amazon, Apple, and Microsoft all now sitting on market caps north of $1. 6 trillion---yes, really---we’re starting to wonder which will be the first to hit $2 trillion. As strong as Apple is, I have to say that Amazon and Microsoft are probably the better long-term plays, especially if COVID-19 sticks around a lot longer than we were hoping. But this should be an interesting race either way. "Amazon's Alexa app now supports hands-free voice commands — with one important restriction" You have to use your hands. Peggy Johnson pulls a Stephen Elop Microsoft executive vice president Peggy Johnson announced this week that the is leaving the software giant to assume the CEO role at Magic Leap, maker of an erstwhile HoloLens competitor ... for some reason. Well, actually,... --- ### Hardware Accelerated GPU Scheduling Coming to the Windows 10 May 2020 Update - Published: 2020-07-09 - Modified: 2024-09-04 - URL: https://petri.com/hardware-accelerated-gpu-scheduling-coming-to-the-windows-10-may-2020-update/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: News Users can opt to enable hardware-accelerated GPU scheduling if their GPU and driver support it. GPU scheduling affects everything you do on a Windows 10 device. Current Windows Display Driver Model (WDDM) drivers perform scheduling in software. But new generation GPUs and drivers will shift scheduling from software to hardware, leading to less latency and overhead. WDDM buffering and latency WDDM traditionally uses a high-priority thread on the CPU that coordinates, prioritizes, and schedules requests for processing from applications. The overhead caused by this model is usually masked by applications in the form of a buffer that minimizes the scheduling load and maintains CPU/GPU parallelism. But one side effect of the buffering model is that end users experience increased latency, making apps and the OS feel less responsive. Apps need to make a tradeoff between smaller buffers to reduce latency or larger buffers to lower overhead. Hardware-accelerated GPU scheduling in Windows 10 Starting in the Windows 10 May 2020 Update (version 2004), users with WDDM version 2. 7 drivers or later can opt to enable hardware-accelerated GPU scheduling if their GPU supports it. Image #1 Expand Hardware Accelerated GPU Scheduling Coming to the Windows 10 May 2020 Update (Image Credit: Microsoft) Enabling the option in the Settings app, under System > Display > Graphics Settings, forces Windows to offload most scheduling to a dedicated GPU-based scheduling processor. The option to enable hardware-accelerated GPU scheduling in the Settings app will only appear if both hardware and driver support it. Windows Insider A/B driver testing Because hardware-accelerated GPU scheduling is such a fundamental change to the... --- ### Improving SharePoint Online Search with Bookmarks - Published: 2020-07-09 - Modified: 2024-09-04 - URL: https://petri.com/improving-sharepoint-online-search-with-bookmarks/ - Categories: SharePoint Online - Tags: Microsoft Search, Microsoft SharePoint, SharePoint Online, SharePoint Online Administration Center, SharePoint Search - Article Type: How To Bookmarks in SharePoint when used correctly, can help your users find what they need much faster but only if implemented correctly.   Today I thought it would be helpful to walk through a really fantastic but underutilized feature called Bookmarks. If you aren’t familiar, Bookmarks are a way for you to create shortcuts for the most important things your employees need access to. Often, the number one complaint in an organization is that their SharePoint search results return a bunch of outdated and unimportant information along with the important forms and information they need. How can anyone find what they are looking for with so much noise in their search results? I thought we could take some time to talk about Bookmarks and how they help the SharePoint search experience, the improvements being made, and then touch on how Bookmarks reach more than just your SharePoint sites. The Basics If Bookmarks have been configured in your tenant, you can type a keyword into your SharePoint search bar and hit enter. When the full search results page loads, you’ll see the bookmark show at the top of the list. In my screenshot below, my keyword is “time off”, which returns the bookmarked PTO Calendar. I could’ve also searched by the other keywords I configured – “PTO”, “Vacation”, etc. and still surfaced the same bookmark. This may not seem like such a big deal, but if you consider how a new employee feels when they search for something for the first time, or how you feel when you know what you are looking for but can’t remember *exactly* what it was... --- ### Microsoft is Overhauling the Teams Meeting Experience - Published: 2020-07-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-overhauling-the-teams-meeting-experience/ - Categories: Microsoft Teams, Office - Tags: meetings, Microsoft, News, Teams - Article Type: News Microsoft is rolling out new features that will overhaul the meeting experience in Teams with new views, engagement tools, and more. By the time you are reading this post, you have likely already been on three video calls and are mentally drained. But that’s the reality that we are living through right now and until everyone heads back to the office for in-person events, virtual meetings are the way forward. Announced today, Microsoft is rolling out several new features that are targeted at making meetings feel less taxing on the user and should make it easier to collaborate as well. These updates include new ways to present the users of the call with “Together” mode, filters to make you look your best, "Dynamic View" that gives you more control over what you see in meetings, reactions, post-meeting polls, and quite a bit more. Together Mode: Last month Microsoft started talking more about its expanded gallery view for video calls that bumps the number of streams up to 49. Building on this, there is going to be a new view mode called “Together” that adds backgrounds behind the attendees to make it appear that they are sitting in a coffee shop, auditorium, classroom, and other locations. I will be the first to admit that I typically find these types of features as cosmetic novelties that are distractions but with the classroom or auditorium view, it does make the call feel slightly more personal than a standard box with a home office in the background. As someone who is frequently presenting to large groups, having the pseudo auditorium is a simple change that... --- ### Creating PowerShell Function Failsafes with WhatIf - Published: 2020-07-08 - Modified: 2023-04-17 - URL: https://petri.com/creating-powershell-function-failsafes-with-whatif/ - Categories: PowerShell - Tags: Failsafe, PowerShell, WhatIf - Article Type: How To PowerShell function that supports the WhatIf parameter and how you can use it to make your PowerShell functions even more solid We can all agree that it's essential to know what the command or script that we are about to execute will do. Knowing what command can do may require hours of reading code and documentation or testing in separate environments. But PowerShell offers a great tool to speed the development of our scripts up with WhatIf. In this article, you will learn how to create a PowerShell function that supports the WhatIf parameter and how you can use it to make your PowerShell functions even more solid. Prerequisites This tutorial only uses local computer resources and will work on PowerShell version 5. 1 and up. Preferably you should have an IDE or ISE for PowerShell of your choice installed. The code in the tutorial is not tested on older versions of PowerShell but it may work on them as well. What is WhatIf? WhatIf in PowerShell is a part of the ShouldProcess cmdlet functions in PowerShell. ShouldProcess can also prompt for confirmation and is basically a function that decides if it should process or not process code. This is primarily done with the help of an IF statement (as you will explore further down in this article). Now let's get started by creating our first simple WhatIf function. Creating a basic function that supports WhatIf A PowerShell function does not support using the WhatIf statement out of the box (but almost) and there's a couple of things that differ from a plain PowerShell function - The CmdletBinding and SupportsShouldProcess... . --- ### Working with Planner Data Through the Graph > Microsoft Planner doesn't support PowerShell, but you can get to plan data with the Planner Graph API. And you can use PowerShell to access the Graph. - Published: 2020-07-08 - Modified: 2024-09-04 - URL: https://petri.com/working-planner-data-through-graph/ - Categories: Microsoft 365, Office, PowerShell - Tags: Microsoft Graph, Planner, Planner Graph API, PowerShell - Article Type: How To PowerShell has its Limitations I like using PowerShell to work with Office 365 data, but sometimes PowerShell isn’t the right tool. It might be too slow, or a PowerShell cmdlet isn’t available to work with some data. Planner is a good example. People have asked about reporting the plans available to a user or the plans used across the tenant. When investigating, I discovered that there’s no PowerShell module for Planner and the coverage of Planner in the preview PowerShell module for the Graph is not good. In these situations, the solution is often to revert to native Graph API calls. I’ve used this approach many times to do things like reporting storage for SharePoint Online sites or creating a list of Teams to process with PowerShell. These examples all use an app registered with Azure AD that’s granted some Graph application permissions to access data. Application permission is one of the two types of Graph permissions, the other being delegated permissions. Application permissions are a natural fit for many kinds of PowerShell scripts as they allow apps to run without a signed-in user. Authentication is gained by using an app secret to authenticate with the Graph. Planner Graph Permissions The Planner Graph endpoint only supports delegated permissions. As the name implies, apps using these permissions are delegated access by a user or administrator. Planner uses delegated permissions because the basis for access to Planner data is the set of plans someone has access to. I don’t do... --- ### Microsoft Expands Edge Rollout to Education and Business Customers - Published: 2020-07-07 - Modified: 2020-07-07 - URL: https://petri.com/microsoft-expands-edge-rollout-to-education-and-business-customers/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10 - Article Type: News Microsoft plans to roll out its new browser to business and education customers starting at the end of July. Microsoft started rolling out the new version of its Edge browser to Windows 10 users earlier this year. And late in June, Microsoft started pushing the browser to Windows 7 Service Pack 1 and Windows 8. 1 devices. The new browser doesn’t replace Internet Explorer (IE) in Windows 7 or Windows 8. 1. If you want to set Edge to be your default browser, you’ll need to make the change manually. It's also worth noting that once the new version of Edge gets installed automatically by Windows Update, it isn't possible to uninstall it. According to a roadmap that Microsoft set out in January 2020, Edge would initially be rolled out to Windows 10 devices excluding business and education customers. But in a recent blog post, Microsoft says that it is planning to expand the rollout to business and education customers starting 30th July. Organizations using Windows Server Update Services (WSUS) or Microsoft Endpoint Manager will be able to block the update. Those using Windows Update or Windows Update for Business (WUfB) can use the Blocker Toolkit to disable automatic delivery of Edge. For details on using the toolkit, see How to Block Automatic Delivery of Microsoft Edge on Petri. Getting help with the new Microsoft Edge Microsoft promises sites that work on IE11, supported versions of Google Chrome, and legacy versions of Edge, will continue to work with the new Microsoft Edge. But should organizations face any compatibility issues, FastTrack, a scheme that provides remote specialists to help organizations... --- ### Teams Phones get New Capabilities for Meetings and Connection to Nearby PCs - Published: 2020-07-07 - Modified: 2024-09-04 - URL: https://petri.com/teams-phones-get-new-capabilities-for-meetings-and-connection-to-nearby-pcs/ - Categories: Microsoft 365 - Tags: News, Phone, Teams Meeting, Teams Phone - Article Type: Overview Microsoft has a new update for Teams Phones and it delivers on promises made back at Ignite in 2019. Last year, Microsoft promised a new “Better Together” experience for Teams IP Phones when used with the full Teams client and a list of ongoing improvements to an often forgotten corner of the Teams ecosystem. The June updates for Teams Phones bring a few of the promised features to devices. For those that don’t use Teams Phones, these look like traditional IP-PBX desk phones with a handset and dial-pad but run the Android operating system with a dedicated Teams client designed for these devices. Besides using the hardware in a traditional office setting, Teams Phones are designed for common area scenarios and for inside small meeting rooms. Higher-end devices include camera attachments making them suitable for video calls, with most supporting speakerphone usage and headset attachments. As well as being useful for traditional calling, they also support joining Teams meetings. The functionality stops there, as they can’t be used outside of calling and meetings – so no access to chat, for example. The June update for Microsoft Teams Phones delivers new features that makes the hardware more capable when used in meetings, updating basic functionality that most phone users need, and adds the first of what Microsoft calls “Better Together” experiences allowing you to lock and unlock the phone in tandem with your computer. The Better Together experience was demonstrated by Microsoft at Ignite 2019 (in session BRK2198) and in the session much more was shown. The company showed desk phones being tightly integrated with the Teams client... --- ### Exchange Online and Teams Get Important PowerShell Updates > Microsoft has released two important preview updates of PowerShell modules for Teams and Exchange Online. - Published: 2020-07-06 - Modified: 2024-09-04 - URL: https://petri.com/powershell-updates-office365/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office - Tags: Exchange Online Management, PowerShell, Teams PowerShell - Article Type: News PowerShell Critical for Office 365 Although the Microsoft Graph is gaining popularity as the method for automating administrative processes for Office 365 workloads, there’s no doubt that PowerShell remains the most common automation tool. The two approaches can be mixed to create solutions when neither is quite good enough and Microsoft is still working on a PowerShell module for the Graph, but sometimes you just want to do it all with PowerShell. It’s therefore important that Microsoft keeps on improving the capabilities of the PowerShell modules for Office 365 workloads, as they do for two modules described here. Support for Unattended Exchange Online Scripts In Office 365 notification MC217815 (July 3), Microsoft announced the “public preview of a modern authentication unattended scripting option. ” More information about this important announcement, which lays the foundation for tenants to use the Exchange Online Management V2 module in unattended scripts, is in an EHLO blog. New Module Much Better Than the Old After a launch in preview at the Ignite 2019 conference. the Exchange Online Management V2 module attained general availability in June. This module contains a set of nine Get- cmdlets (like Get-ExoMailbox) that are much faster and more robust than their older counterparts. When you load the V2 module, you get the nine new cmdlets and all the older cmdlets. There’s no need to make two separate connections to Exchange. The old Exchange cmdlets belong to the era when on-premises servers dominated. The foundation of the speed and robustness of... --- ### Azure Active Directory Gets SMS-based Authentication and Email Address Sign-In - Published: 2020-07-06 - Modified: 2024-09-04 - URL: https://petri.com/azure-active-directory-gets-sms-based-authentication-and-email-address-sign-in-preview/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud computing, Windows Server Active Directory - Article Type: News Enable users to sign in to Azure AD using a phone number or with an alternate email address. Microsoft provides several different ways for users to log in to Azure AD without a username and password. For example, users can sign-in using the Microsoft Authenticator app or a FIDO2 security key. Azure Active Directory (Azure AD) is the identity management platform used by Office 365, Microsoft 365, and of course Azure. Organizations can also use Azure AD as the identity provider for their own cloud-based applications. Azure AD SMS-based authentication Now in preview, Azure AD SMS-based authentication lets users sign in using their registered mobile phone number. Users receive a text message that they use to confirm their identity. Before you can use SMS-based authentication, all users enabled in an SMS-message authentication policy must be assigned one of the following licenses: Azure AD Premium P1 or P2 Microsoft 365 (M365) F1 or F3 Enterprise Mobility + Security (EMS) E3 or E5 or Microsoft 365 (M365) E3 or E5 And while SMS-based authentication is in preview, it can't be used with multifactor authentication (MFA) or native Office apps except Teams. Text message sign-in isn't enabled by default in Azure AD. You can enable it under Authentications methods in the Security section of Azure AD management. Image # Expand Azure Active Directory Gets SMS-based Authentication and Email Address Sign-In Preview (Image Credit: Russell Smith)   Users can either register their mobile phone number in the My Sign-Ins page of their account profile. Alternatively, Azure AD global admins, authentication admins, and privileged authentication admins can assign a phone number... --- ### Edge Browser Gets Alt Tab Integration in Windows 10 Insider Preview Build - Published: 2020-07-03 - Modified: 2020-07-03 - URL: https://petri.com/edge-browser-gets-alt-tab-integration-in-windows-10-insider-preview-build/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows Insider - Article Type: News Switching to recent tabs in Microsoft Edge is coming to Alt Tab. At the beginning of July, Microsoft released Windows 10 Insider Preview build 20161 on the Dev Channel. There are two major changes in the build. The first is theme-aware tiles on the Start menu. The second, and more interesting change, is Edge integration with Alt+Tab. Most users will be familiar with the Alt+Tab key combo in Windows for switching applications. In currently supported versions of Windows, Alt+Tab lets users switch between running applications only. In the new Insider build, Microsoft has changed the default behavior of Alt+Tab to include Edge browser tabs. App or task switcher? If you are a multitasker and have multiple tabs open at any one time, then this update will make it easier to switch back to recent tabs. While it's possible to scroll through open tabs in Edge using CTRL+TAB, recognizing tabs as 'apps' in Windows provides a level of integration that could provide a more natural workflow. As Microsoft points out in its blog post announcing the new build, "We’re making this change so you can quickly get back to whatever you were doing—wherever you were doing it. " In the updated Alt-Tab, Edge browser tabs are mixed with apps based on recency. For example, if you have just switched through a set of open tabs, they will appear first in Alt-Tab. This differs from CTRL+TAB in the browser where you scroll forwards through open tabs, regardless of recency. You can also scroll backwards through open tabs with CTRL+SHIFT+TAB. If you regularly have... --- ### Everything You Need to Know About Azure Infrastructure – June 2020 Edition - Published: 2020-07-02 - Modified: 2020-07-02 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-june-2020-edition/ - Categories: Microsoft Azure - Tags: Active Directory Domain Services, App Services, Azure, Azure Cost Management, Azure Dedicated Hosts, Azure Files, Azure Firewall, Azure Front Door, Azure LightHouse, Azure Load Balancer, Azure Migrate, Azure Monitor, Azure Site Recovery, Azure Storage, Azure Virtual Machines, Azure Virtual WAN, BLOB, CAF, CDN, Cloud Adoption Framework, Content Delivery Network, D_v3, Declarative Deployments, DNS, DNS Proxy, E_v4, Enterprise-Scale, Ephemeral OS Disk, firewall, Forced Tunneling, FQDN, Geo-Zone-Redundant Storage, GitHub, Hybrid Connections, IP Groups, Key Vault, Landing Zone, Linux Web Apps, Network, Public IP Address, Regional VNet Integration, SD-WAN, Secured Virtual Hub, Security, Shared Image Gallery, Storage Account, virtual machines, Web Apps - Article Type: Overview June 2020 marks the end of Vibranium and the start of Manganese, the codenames for the ending and starting half-year semesters in the Azure development year. June 2020 marks the end of Vibranium and the start of Manganese, the codenames for the ending and starting half-year semesters in the Azure development year, and with that a whole new half-year of Azure goodies for us to look forward to. But before we get caught up in the future, we’d better consider the recent past. I’ve highlighted some of the stories that, at first glance, might not seem all that important but they will be! Azure Firewall Improvements Microsoft’s platform-based Firewall has been installed in every one of my deployments since January of 2019. Customers, in my experience, prefer a platform-based option where there are no appliance maintenance tasks and the thing auto-scales according to demand. Throw in the fact that it’s deployed and configured entirely as an ARM template and enterprises can start to move towards a DevSecOps (Wait! Was that a link to RedHat? ! ) model where the firewall is configured and change-controlled through Git, GitHub, DevOps, and so on. There were two announcements in June. The first announcement, Azure Firewall forced tunneling and SQL FQDN filtering now generally available, revealed two features had just gone GA: Forced-tunneling: The ability to force all Internet-bound traffic through an IP address such as an on-premises firewall or a network virtual appliance (NVA) for additional filtering/inspection. This would not be a common request, but I can imagine some security crazed environments requiring multiple tiers of inspection/filtering. For those of you considering this feature and placing the firewall into... --- ### Everything You Need to Know About Office 365 – June 2020 - Published: 2020-07-02 - Modified: 2020-07-02 - URL: https://petri.com/everything-you-need-to-know-about-office-365-june-2020/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint - Tags: Microsoft, Office 365, SharePoint, Teams - Article Type: Overview From migrations to updates to Yammer, this month was full of Office 365 updates. For Microsoft, the fiscal year has come to an end with the company starting with a new fiscal year on July 1st. As the quarter completed, there were several large updates pushed out to Office 365 that you should know about. Compliance is a big factor when it comes to data retention and to help you better understand your exposure, we created a deep dive into the updated Microsoft 365 Compliance Center. For anyone who has to work with regulatory frameworks, you need to be investing time to learn the features of the compliance center to make audits easier to navigate. x Also rolling out this month, Outlook for Windows finally has a cloud roaming option. This feature delivers roaming profiles that can sync a wide variety of settings and should make it easier for users to jump between devices. For those that use PowerShell, the updated Exchange Online PowerShell module has reached general availability. The big change is the introduction of nine cmdlets built on REST APIs to replace older cmdlets like Get-Mailbox and Get-MailboxStatistics. While we wait for the new Task experience to arrive, Microsoft is making it easier to use To Do at work – currently To Do is targeted at the consumer. To Do will soon support list sharing between personal and work accounts. The goal with this feature is to make it much easier to utilize To Do with a personal MSA and a work account. Specifically, this update will let “users in your... --- ### Everything You Need to Know about the Power Platform – June 2020 > All things Power Apps, Power BI, Power Automate, And Power Virtual Agents you need to know from June 2020 - Now with more AI and more tech tips. - Published: 2020-07-02 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-the-power-platform-june-2020/ - Categories: PowerApps, PowerBI - Tags: power apps, Power Automate, Power BI, Power Platform, Power Virtual Agents - Article Type: News The month of June brought with it many updates to the Power Platform, here's a breakdown of what is new. If you have not heard the term Power Platform that is the family name of Power Apps, Power BI, Power Automate, and Power Virtual Agent. And in a sign of their rise to prominence, we have decided to produce a monthly article that is a wrap up of news and notes from the month. The pace of change and growth of these products, at this kind of scale, is unprecedented in our industry so hopefully, we can help you keep up. The article is broken up into general news, specific functionality updates, and new connectors to help you better get the details you are looking for. Also, as a bonus, you get my thoughts (and sometimes sass and this month too much usage of the word cool) about the updates. And while the updates are quick bites, I promise links where available to let you dig deeper. General News Just the news and my ramblings on the related topic. Ignore me and click the link if you don’t like commentary. Power Apps and Power Platform continue to expand the democratization of AI - One of my favorite features of the Power Platform is the fact that it empowers anyone with the ability to use things like artificially intelligence, mixed reality, and a wealth of other tech that is probably way more powerful than you should have access to. What is even more awesome is Microsoft keeps refining it and making more functionality. Every time I use the tech... --- ### Everything You Need to Know About Windows – June 2020 - Published: 2020-07-02 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-june-2020/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows Insider - Article Type: News Microsoft's new Edge browser starts rolling out via Windows Update and the Windows 10 20H2 feature update is announced. This month is relatively quiet as Microsoft deals with issues affecting the Windows 10 May 2020 Update. Microsoft's new Edge browser starts rolling out to Windows 7, 8. 1, and 10 users via Windows Update. And the Windows 10 20H2 feature update is announced as a small update for those on the previous feature update. Windows File Recovery Tool hits the Microsoft Store Without much fanfare, Microsoft released the Windows File Recovery tool to the Store at the end of June. The tool is designed to help users restore accidentally deleted files. The tool supports many standard file types, like Office files, PDF, and JPEG; and it can recover from hard disks, solid-state disks (SSD), and memory cards. NTFS, FAT, exFAT and ReFS file systems are supported. The tool is run from the command line and Brad Sams wrote a quick guide on how to use it here. As Brad points out, this tool isn't for recovering files that were deleted a long time ago. If you need to use it to recover data, the sooner you stop writing new data to the disk, the better. Microsoft removes manual update deferral settings from Windows Update Microsoft has removed the update deferral settings from Windows Update in the Windows 10 May 2020 Update Settings app. Microsoft says that since it stopped forcing feature updates on users that weren't on a version of Windows 10 approaching end of service, the update deferral settings have caused too much confusion for users. In... --- ### Teams 7x7 Gallery View for Meetings Goes to Preview > Microsoft has announced that Teams will soon get a large gallery view (7x7) for video meetings. The new feature allows Teams to deliver comparable meetings to Zoom. - Published: 2020-07-01 - Modified: 2024-09-04 - URL: https://petri.com/teams-large-gallery-view/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Large gallery view, News, Teams, Video meeting - Article Type: News The Joy of Seeing Everyone In June, Brad discussed the need for Teams to match the 7 x 7 grid view supported by Zoom. It’s a competitive need not to be perceived as a laggard in the video conferencing space at a time when home working makes remote conferences a necessity. Simply put, it’s cool to be able to see all your colleagues, even if nature of the beast means that the resulting images in a large gallery view are so small that you might not be able to tell who’s who. Teams started out with a 2 x 2 view for participants in video calls and increased this to a 3 x 3 view in April. At the time, Microsoft acknowledged that 3 x 3 wasn’t enough and Teams needed more, Microsoft then gave some hints that Teams would soon support a 7 x 7 (49 people) view in a interview given by CVP Jared Spataro. Large Gallery Coming for Teams Today, Office 365 notification MC217716 says that the 7 x 7 large gallery view (Figure 1) will roll out in preview to Teams desktop clients in early July. Microsoft is targeting full availability by the end of August, including access for the Windows and Mac desktop clients and the Teams iOS and Android clients. There’s no support for large gallery view in the Teams Linux or browser clients. Image 1 Expand Figure 1: Teams large gallery view (image credit: Microsoft) Processing Participant Feeds The large gallery view... --- ### OneDrive File Upload Size Increased, Sharing Improved, Security Enhanced - Published: 2020-07-01 - Modified: 2020-07-01 - URL: https://petri.com/onedrive-file-upload-size-increased-sharing-improved-security-enhanced/ - Categories: Microsoft 365 - Tags: News, Office 365, OneDrive Microsoft has announced a wide variety of new features coming to OneDrive this year that includes larger uploads and improved reporting. Kicking off July, the OneDrive team is announcing a wide variety of updates to the service that includes increased file size uploads, improved Teams integration, and a lot more. All of the features in this post are rolling out in various phases and should be available for your tenant in the near future. Add to OneDrive – This new feature makes it possible to add shared folders to your own OneDrive. This is going to make it a lot easier to keep track of where you are saving files and make navigating to the content significantly easier. Teams Sharing Integration – Rolling out soon is an improved sharing experience inside of Teams that matches what is used in OneDrive, Outlook, and other Office apps. This feature will enable the ability to easily create links that can be shared within your org or specific people in the chats. Synced metadata support – Rolling out in a few weeks, is an update to the OneDrive sync app supporting read and write sync for shared libraries that contain required metadata. This will enable business users to edit content in their synced libraries while working from their desktops. Improved Sharing Permissions – As files move from conception to completion, they often will move to broader shared cloud libraries. Once this feature is rolled out, when you move those files, document permissions will travel with the document with links auto-updating which should significantly reduce the “can you please let me edit this doc” requests. 100GB... --- ### How to Solve Invalid_Client Error When Joining Windows 10 to Azure AD - Published: 2020-07-01 - Modified: 2024-09-04 - URL: https://petri.com/how-to-solve-invalid_client-error-when-joining-windows-10-to-azure-ad/ - Categories: Microsoft Entra ID (Azure AD), Windows 10 - Tags: Azure Active Directory, Microsoft 365, Windows 10 - Article Type: How To Configure MDM autoenrollment to solve Invalid_Client Azure AD join error message. Windows 10 devices can be registered or joined (connected) to Azure Active Directory (recently renamed Microsoft Entra ID) domains. But not for the first time, I've come across a problem when trying to connect a device to Azure AD. In this article, I'll show you how to solve the Invalid_Client error when joining Windows 10 to Azure AD. There are two ways that you can join Windows 10 to Azure AD. The first is during the OOBE phase of Windows 10 setup. If you are installing Windows 10 Enterprise, by default you are prompted to enter a Microsoft work or school account with which you join the device to Azure AD. Secondly, a device can be joined to Azure AD in the Access work or school section of Accounts in the Windows 10 Settings app. Both methods were throwing the same error: 'Something went wrong. ' Looks like we can't connect to the URL for your organization's MDM terms of use. Try again, or contact your system administrator with the problem information from this page. Error: invalid_client Description: failed%20to%20authenticate%20user. Image #1 Expand How to Solve Invalid_Client Error When Joining Windows 10 to Azure AD (Image Credit: Russell Smith) Troubleshooting Azure AD Join There are a few items you need to check when dealing with these kind of errors. The first is that the user account has the necessary rights to join Windows 10 to Azure AD. There's a setting in Azure AD which controls whether users can join devices to... --- ### Why You Should Use the Exchange Online PowerShell Module - Published: 2020-06-30 - Modified: 2023-07-24 - URL: https://petri.com/why-you-should-use-the-exchange-online-powershell-module/ - Categories: PowerShell - Tags: Exchange Online, PowerShell Why you should use the EXOv2 PowerShell module and how it can benefit you as an Office365 administrator. Microsoft recently released the EXOv2 (Exchange Online Version 2) cmdlets for automating and managing Exchange Online. You as an Office 365 administrator probably rely on them every day and they are essential indeed. In this article, we will explore why you should use the EXOv2 PowerShell module and how it can benefit you as an Office 365 administrator. Prerequisites To follow along in this article you will need PowerShell 5. 1 and access to an Office 365 account that has administrative access to Exchange Online. Easy install The former version of the Exchange Online PowerShell cmdlets was not a PowerShell module but a remote session that you imported through HTTPS. This meant that every other admin created their own function for connecting to Exchange Online since many didn't want to type in that long URL when they ran Connect-PSSession. But the new EXOv2 cmdlets (as you can see in the title) are in a module! And it's available in the PowerShell Gallery. To install the module you enter the following: ​ ​ This means that everyone will get a uniform way of connecting to Exchange Online with PowerShell and makes script sharing among colleagues a lot easier. Modern Authentication The major security feature of the EXOv2 module is that it supports Modern Authentication! Modern Authentication is a web-based authentication flow and that means that you can use any MFA method that you want (as long as it's compatible with your AzureAD or connected IdP). This is a major lift... --- ### Teams at Home Might Not Convince Potential Users > Microsoft's preview of Teams at Home shows how Teams can span the work and personal lives of users. Although it works, the app might not be compelling enough for people to adopt. - Published: 2020-06-30 - Modified: 2024-09-04 - URL: https://petri.com/teams-personal-not-compelling/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: OneDrive consumer, Teams at Home, Teams Personal - Article Type: How To, News Melding Teams at Work with Your Personal Life On June 22, Microsoft launched the preview of the much-awaited consumer iteration of Teams, which you can access through the Teams iOS and Android apps. Microsoft’s hope is that the millions of people who use Teams at work will make the leap to embrace Teams for their personal life through chats, sharing files, organizing events in the calendar, and tasks. Adding the Personal Touch If you’ve used the Teams mobile app before, Teams at Home won’t be a difficult learning curve. After adding a personal account using an email address that isn’t associated with an Office 365 tenant), Teams creates an entry for an organization called Personal (Figure 1). The process is very easy if you already have a Microsoft Services Account (MSA), such as one with a live. com or outlook. com address. If you don’t, Teams creates an MSA for you. You can then switch between Teams at work (all the Office 365 tenants you use with Teams, including those where you have a guest account) and Personal. Image 1 Expand Figure 1: Personal shows up in the list of Teams organizations (image credit: Tony Redmond) Under the surface, Microsoft has done a lot of work to make the single Teams client deal with the complexities of switching between personal and work. The complexities include handling different authentication mechanisms (Azure AD and MSA), making sure that notifications for new activity are surfaced correctly no matter how many tenants you connect to,... --- ### Understanding the new Teams Capabilities in the SharePoint Migration Tool - Published: 2020-06-29 - Modified: 2024-09-04 - URL: https://petri.com/understanding-the-new-teams-capabilities-in-the-sharepoint-migration-tool/ - Categories: Microsoft Teams, Office, SharePoint - Tags: File Server, migration, SharePoint, Teams The new Teams migration functionality is aimed at the casual IT administrator who is looking for a simpler approach to moving files for access by Teams users The SharePoint Migration Tool is a capable product included in your Office 365 subscription and it is available as a free download. It sits alongside several other Microsoft offerings, including Migration Manager and Mover. All three tools offer migration from file shares to SharePoint and OneDrive. Whereas Migration Manager and Mover are aimed squarely at file-based migrations, such as moving people’s home directories to OneDrive, the SharePoint Migration Tool is designed to migrate from both File Servers and SharePoint Server, and now includes Microsoft Teams as a target destination. If you use the SharePoint Migration Tool, you could be forgiven for assuming it’s quite a simple product aimed at drag-and-drop style migrations. The interface is designed to be easy to use, but for advanced users, a full set of PowerShell based capabilities exist, and the SharePoint Migration API is the same one used by most third-party tools, meaning the migration speeds are roughly aligned with the market-leading tools. The new Teams migration functionality is aimed at the casual IT administrator who is looking for a simpler approach to moving files for access by Teams users. Effectively, it’s a wrapper for the SharePoint migration functionality designed to make sure you can map file data to the SharePoint folder structure created by Microsoft Teams. The new functionality does not offer any sort of chat-based migration. To see this functionality in action and explore the limitations of the new Teams functionality, we’ll approach the simple use-case that the new features are... --- ### Windows Autopilot User-Driven Hybrid Azure AD Join with VPN Support in Public Preview - Published: 2020-06-29 - Modified: 2020-06-29 - URL: https://petri.com/windows-autopilot-user-driven-hybrid-azure-ad-join-with-vpn-support-in-public-preview/ - Categories: Windows 10 - Tags: Active Directory, Always On VPN, Azure Active Directory, VPN, Windows 10 - Article Type: Overview Windows 10 version 2004 brings user-driven hybrid Azure AD joins with VPN support. In one form or another, the ability to perform a user-driven hybrid Azure AD join over a VPN connection has been in preview since 2019. Still, in public preview, the feature is now baked into the Windows 10 May 2020 Update (version 2004) and has been backported to Windows 10 versions 1903 and 1909 on devices where the December 2019 cumulative update or later is installed. Hybrid Azure AD joined devices and Windows Autopilot Windows 10 devices can be joined (connected) to an Azure Active Directory (AD) domain. Devices are usually connected to Azure AD when they are company-owned. In Bring Your Own Device (BYOD) scenarios, or on devices that are running operating systems other than Windows 10, there is the option to register with Azure AD instead. The main difference for users is that only on devices connected to Azure AD can they sign in using a Microsoft work or school account directly from the logon screen. But because life isn't simple, Windows 10 devices can also be hybrid Azure AD joined. These devices are joined to a Windows Server Active Directory domain but also registered with Azure AD. Windows Autopilot, Microsoft's suite of technologies designed to simplify setting up new Windows 10 devices, has several different modes. Windows Autopilot user-driven mode allows new Windows 10 devices to be taken from their initial state directly from the manufacturer to a point where they are ready to use without any intervention from IT. For more details on Windows... --- ### Amazon Honeycode Brings No Code Application Development to AWS - Published: 2020-06-29 - Modified: 2024-11-19 - URL: https://petri.com/amazon-honeycode-tackles-the-holy-grail-of-no-code-application-development/ - Categories: Amazon Web Services, Cloud Computing - Tags: Application development, AWS, Cloud, power apps - Article Type: News No code application building has long been the Holy Grail of app development. The idea behind no code development is to simplify the application development process to bring it within the capability of regular business users. No code development tools promise to reduce the complexity and costs of the application development process as well as accelerate application development. No code tools have been around for a while. About a decade ago Microsoft pushed their LightSwitch product as a potential VB replacement for citizen developers. However, it was short-lived and Microsoft discontinued it in 2016. More recently, Microsoft is trying again with its Azure Power Apps platform. Likewise, Google has introduced their AppSheet offering that promises no code creation for web and mobile apps. In addition, there are a handful of other companies in today’s no code development market. In June, Amazon threw their hat into the no code development ring as they announced the beta launch of Amazon Honeycode.  The new Amazon Honeycode offering is a managed low-code/no-code development service that is designed to enable customers to quickly build simple mobile and web applications. AWS Vice President Larry Augustin declared: “Now with Amazon Honeycode, almost anyone can create powerful custom mobile and web applications without the need to write code. ” Customers can use a simple visual application builder and a set of predefined templates to create applications. Honeycode can import data from CSV files or it can use Amazon’s data storage on the backend. The Honeycode application templates consist of: Simple To-do... --- ### Microsoft’s Free New Tool to Recover Files in Windows - Published: 2020-06-28 - Modified: 2022-12-12 - URL: https://petri.com/microsofts-free-new-tool-to-recover-files-in-windows/ - Categories: Windows 10, Windows Client OS - Tags: File, Microsoft, News, Recovery, Windows - Article Type: News Need help recovering a file in Windows? Microsoft has a new, and free, tool to make that process easier. If you have never had to recover a file in Windows, you are in the minority. At some point in time, many of us have accidentally deleted a file on either a drive or removable storage like an SD card or USB stick. While there are tons of third-party tools that Google will surface, you never quite know if these tools will work or worse, if they are installing malware or crypto mining software in the background. That’s where professional services come into play but those options can be expensive and depending on the task, completely overkill. Microsoft has a new application that makes it easy to recover files, and it's called Windows File Recovery. and below you will find a tutorial about how to use the application. If you need additional documentation, you can find that here. Application: The first thing you will need to do is download the recovery tool and also make sure you are running Windows 10 2004 (Windows 10 version released Spring 2020) or later. You can download the application from the link below: Download: Microsoft Windows File Recovery Tool Recovery Modes: It’s important to understand which file system your device is using as this will help to determine which mode you should use. The file recovery tool supports FAT/exFAT/ReFS/and NTFS. Us the table below to determine which mode you should be using. Command Line Syntax: When entering your commands, here is a breakdown of the parameters that you will need to know: /r -... --- ### Paul Thurrott's Short Takes: June 26 - Published: 2020-06-26 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-26/ - Categories: Cloud Computing, Hardware, Microsoft 365, Microsoft Teams, Mobile, Windows 10 - Tags: News - Article Type: Overview Because the earth actually rotates around Cupertino now, this edition of Short Takes looks at Microsoft’s blockbuster retail announcement, a Senate initiative to curtail a huge HoloLens sales, a weird Skype consolidation, an expansion of Teams’ capabilities to individuals, the death of Mixer, and so much more. Because the earth actually rotates around Cupertino now, this edition of Short Takes looks at Microsoft’s blockbuster retail announcement, a Senate initiative to curtail a huge HoloLens sales, a weird Skype consolidation, an expansion of Teams’ capabilities to individuals, the death of Mixer, and so much more. Microsoft is closing all of its retail stores Microsoft’s retail locations were unsustainable before the COVID-19 pandemic, but they are off the charts unsustainable now, and so the firm shocked us all this morning by revealing that it is closing all of its retail stores permanently. The good news is that all of its store employees are being retained---none will be let go, Microsoft tells me---and will transition to supporting customers remotely. Microsoft is also retaining four so-called Experience Centers---in London, New York City, Sydney, and at its Redmond campus---that will have in-person support for customers but no retail sales. We can joke all we want about the foot traffic and whatnot, but this is a tough one, both because it’s such a visible defeat and because the Microsoft Store locations were vital for customers who wanted to see and touch expensive Microsoft hardware like a Surface or Xbox before making a purchase. A moment of silence, please. “Microsoft stocks hit the $200 mark for the first time” As a reminder, it was once stuck at roughly $35 for over a decade. Senate considers blocking any Army purchases of Microsoft solutions A U. S. Senate committee is looking into freezing half of... --- ### Native Mode Yammer Networks Generate Office 365 Compliance Records > If your Yammer network is configured in Microsoft 365 native mode, its conversations generate compliance records that can be found by Office 365 content searches. - Published: 2020-06-25 - Modified: 2024-09-04 - URL: https://petri.com/yammer-office-365-compliance-records/ - Categories: Microsoft 365, Office, Yammer - Tags: Compliance, eDiscovery, Office 365, Yammer - Article Type: How To, News Slow Progress Towards Office 365 Compliance and Data Governance For years, I have been mildly to harshly critical of Yammer’s inability to march in the same step as the rest of Office 365, particularly in data governance and compliance. Much has been promised, but the delivery has been slow, even in Microsoft’s self-proclaimed “Year of Yammer. ” In any case, Yammer networks migrated to Native Mode for Microsoft 365 generate compliance records using much the same approach as taken for Teams. Enabling eDiscovery fulfils one of the commitments made by Microsoft at the Ignite 2019 conference. Let’s explore how things happen. Yammer Compliance Records and eDiscovery The Microsoft 365 substrate is a common repository for information drawn from across Office 365. Among the data are compliance records created by the substrate when transactions occur in applications. Teams and now Yammer use the substrate for this purpose and store the compliance records created for their messages in folders in Exchange Online mailboxes. Teams stores its compliance records in the Team Chat sub-folder of the Conversation History folder. It took a little while to discover where Yammer stored its compliance records in the group mailbox, but I eventually found a folder called Yammer (naturally) in the non-IPM part of user and group mailboxes. This example uses the Get-ExoMailboxFolderStatistics cmdlet to examine folders and report what it finds in the Yammer folder. Get-ExoMailboxFolderStatistics -Identity 2436066f-6a96-47f0-8571-1cfe4f6bb655 -Folderscope NonIPMRoot -IncludeOldestAndNewestItems | ? {$_. Name -eq "Yammer"} | Format-Table Name, ItemsInFolder, NewestItemReceivedDate Name ItemsInFolder NewestItemReceivedDate ---- -------------... --- ### Understanding Windows 10 and Microsoft 365 Passwordless Sign-In - Published: 2020-06-24 - Modified: 2024-09-04 - URL: https://petri.com/understanding-windows-10-and-microsoft-365-passwordless-sign-in/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Windows 10 - Tags: Microsoft 365, Office 365, Password-less Sign-In, Security, Windows 10 - Article Type: Overview Which passwordless authentication method should you use with Windows 10 and Microsoft 365? Passwords are a pain and they are also a security risk. Microsoft has been trying to persuade IT, professionals and consumers, to do away with passwords in recent years. Social engineering techniques, like phishing and malware, make passwords vulnerable. Around 80 percent of successful attacks originate from compromised passwords. Users also make passwords less secure by choosing passwords that are easy to guess and that can be hacked in dictionary attacks. Moreover, it's common that people use the same password across multiple devices and services, increasing the damage if a password compromised. Multifactor authentication (MFA) helps protect passwords but it has a low adoption rate. What is passwordless sign-in? Microsoft's answer to these security problems is passwordless authentication. With passwordless sign-in, passwords are replaced by something you have, like a security key, plus something you are or know. Something you are might be a biometric gesture like a fingerprint. Something you know might be a PIN. If you read through Microsoft's documentation on passwordless sign-in, it refers mainly to Azure Active Directory (Azure AD). Azure AD is the identity management platform used by Microsoft 365, Office 365, and of course Azure. To add to the complexity, Microsoft supports three different passwordless technologies in Azure AD and Windows 10: Windows Hello for Business Microsoft Authenticator app FIDO2 security keys Windows Hello Designed for users that have a designated Windows 10 device, Windows Hello uses the PC itself as the 'something you have'. Windows Hello can be used to sign... --- ### Microsoft Defender ATP Arrives for Android - Published: 2020-06-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-atp-arrives-on-android/ - Categories: Security - Tags: Android, Defender ATP, Microsoft, News - Article Type: News Microsoft is releasing the first preview of its new Android app that will help protect your device against phishing and malicious applications. One of the challenges of the modern workplace is that endpoints have evolved faster than some of the technologies needed to protect them. We often think about endpoints being laptops, as that is the traditional way of exposing your environment, but it extends to nearly everything from widgets collecting data in the field to the phones we carry in our pocket. One of the products that Microsoft offers its customers is ATP, or Advanced Threat Protection, and that service is reaching two new endpoints today. First up, Defender ATP for Linux has reached general availability and there is a new preview of Defender ATP for Android. Image #1 Expand The app, which is being released today, is a ‘preview’ with more features being added down the road. But starting with this release, ATP on Android can help protect your users from phishing, scanning of malicious applications, files, and potentially unwanted applications, prevent/limit the impact of a breach, and by using ATP for Android, you have unified security center for defenders to manage all endpoints and functionality. But does Android really need malware/phishing/data breach protection? That’s a fair question and something you should consider for your environment. While the Office 365 suite does a good job of preventing data leakage with various features, that’s not going to stop external threats from attempting to gain access to your environment through a compromised Android handset. The reality is that even though Google tries to scan and prevent malicious apps, the end result is... --- ### Microsoft Defender ATP Adds UEFI Scanner to Detect Firmware-Level Attacks - Published: 2020-06-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-atp-gets-uefi-scanner-to-detect-firmware-level-attacks/ - Categories: Security, Windows 10 - Tags: Microsoft Defender ATP, Security, Windows 10 - Article Type: News UEFI scanning comes to Microsoft Defender Advanced Threat Protection. As the antimalware protections in Windows have become more robust over the years, hackers have increasingly turned their attention to firmware. Sometimes referred to as persistent BIOS attacks, firmware-level malware is difficult to detect, and it is also difficult to remove. Once a hacker has a foothold in firmware, they can disable security protections like antimalware software. Reinstalling the operating system won't help on a device infected with malicious firmware code. So, like in any other aspect of computer security, prevention is better than cure. What is UEFI? Unified Extensible Firmware Interface (UEFI) replaces the BIOS on modern computing devices. PCs manufactured in the last five years use UEFI instead of BIOS. UEFI is a specification for defining device firmware that interacts with the operating system. It has many advantages over BIOS, including features like Secure Boot, remote diagnostics and repair without an operating system installed, and it can use large disk partitions. Secured-Core PCs Windows 10 already has several defenses built-in to protect UEFI against attack. Windows Defender System Guard uses Dynamic Root of Trust (Secure Launch) and hypervisor-level runtime attestation to protect UEFI. But these features have specific hardware requirements that aren't met by all PCs. To make it easier for organizations to utilize advanced security protections like those included with Windows Defender System Guard, last year Microsoft announced that it was working with hardware partners on new device security requirements to protect against targeted firmware attacks. In partnership with PC and chip makers, Secured-Core PCs... --- ### Recovering Deleted Items in the New Exchange Admin Center > Exchange Online users can recover deleted items themselves, but if they can't, admins can do the job - and now they can recover deleted items for users in the new EAC. - Published: 2020-06-23 - Modified: 2024-09-04 - URL: https://petri.com/recovering-deleted-items-new-exchange-admin-center/ - Categories: Exchange Online, Microsoft 365, Office - Tags: EAC, Exchange Admin Center, Exchange Online, Get-RecoverableItems, Recover Deleted Items, Restore-RecoverableItems - Article Type: How To, News Old Exchange Online Admin Center Due for Replacement You might have noticed that the Exchange Online Admin Center (EAC) is showing its age. Compared to the other workload admin centers in Office 365, EAC is positively creaking at the seams, much like myself. At the Ignite 2019 conference, Microsoft said that they are working on a new EAC. The new portal is now available in preview and can be launched from the old EAC or through this link. Because it’s a preview, not everything available in the old EAC has been moved across. You can also expect to meet some bugs, especially with new features. A GUI for Restore Deleted Items A new addition to the EAC GUI is the ability to restore deleted items for user and shared mailboxes. This capability has existed since 2018, but up to now it’s only been possible with PowerShell. Essentially, what’s now available is a GUI for the Get-RecoverableItems and Restore-RecoverableItems cmdlets to make it possible for administrators who don’t know PowerShell to recover deleted items on behalf of users. Finding Deleted Items To use the feature, the account being used must hold the RBAC mailbox import/export role. This role must be assigned to accounts (not even tenant administrators automatically have the role). An administrator account that doesn’t hold the role can select a mailbox, but they won’t be able to choose the Recover deleted items option from the mailbox properties (Figure 1). Image 1 Expand Figure 1: Recover deleted items option... --- ### How to Setup the Walkie Talkie Feature for Teams - Published: 2020-06-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-setup-the-walkie-talkie-feature-for-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Android, ptt, push to talk, Teams, walkie talkie Looking to setup Walkie Talkie for Teams, here are the steps you need to follow. Back in January, Microsoft announced that Teams will get a new push-to-talk app aimed at first-line workers. Promised in private preview in the first half of the year, Microsoft didn’t announce a particular date for release, but it arrived on the formal roadmap earlier this month and Microsoft 365 tenants received notification it would arrive for Android devices in the first half of July. Like many of the add-on features for Teams, Walkie Talkie arrives as a Microsoft app for Teams and can be enabled or disabled for clients using App Setup policies. However, a feature like this is not something you would want to enable by default and instead look for an opportunity where it is likely to add value before flipping the switch. Opportunities for using Walkie Talkie Microsoft is clearly aiming Walkie Talkie at first-line employees – staff who are on the shop floor and need to have an open communication channel. Industries like retail and manufacturing are obvious candidates and provide opportunities for replacing existing walkie talkies with a single mobile device that has access to Teams Shifts, custom apps, and walkie talkie functionality. As with the rest of Teams, Walkie Talkie is based on a client-server architecture and the positive side to this is that all devices don’t need to be connected to the same wireless network which means the feature can work across cellular networks and separate offices. The most likely quick win will be if you have already deployed Teams to... --- ### Teams for Consumer Arrives Today in Preview - Published: 2020-06-22 - Modified: 2024-09-04 - URL: https://petri.com/teams-for-consumer-arrives-today-in-preview/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Consumer, Microsoft, News, Teams - Article Type: News Microsoft's Teams app is now available in preview for consumers with a basic set of features. Earlier this year, Microsoft announced that it would be bringing its popular Teams productivity app to the consumer space. Launching today is a preview of the consumer iteration and it arrives with a basic set of features. Teams has, as of a few weeks ago, 75 million daily active users, and Microsoft is hoping that the company can convince those users to take the app that they use at work and apply it to their personal life. While the company has previously pushed Skype for personal communication, Teams is the way forward for the company. The ‘consumer’ version of Teams is entering preview with a couple of basic features including messaging, video calling, sharing your location, document collaboration (sharing reading lists, recipes etc. ) and that's about it. If you want to check out the preview, there are two ways you can access the service: If you use Teams at work, in the settings area, add your Microsoft account or sign up for a new one with a phone number. If you don’t use Teams, you can download the app on iOS or Android and sign in with your Microsoft account (or create one after downloading. These features provide an early look at how Microsoft will start pushing consumers to use its Teams application. One notable feature included is the 'Safe' which is a way to securely share documents and passwords. It sounds like it operates in a similar way to the Vault in OneDrive, meaning an additional authentication layer (2FA... --- ### Microsoft Announces Improvements to Azure AD Conditional Access - Published: 2020-06-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-improvements-to-azure-ad-conditional-access/ - Categories: Microsoft Azure - Tags: Azure Active Directory, cloud computing, conditional access, Microsoft Azure, Security - Article Type: News Microsoft announced April 5th two new Azure Active Directory (AD) Conditional Access features reaching general availability. Microsoft announced April 5th two new Azure Active Directory (AD) Conditional Access features reaching general availability: report-only mode, and the insights and reporting workbook. General availability means that these features are now ready to be used in production environments. A new policy details blade for troubleshooting is also now in preview. Azure AD report-only mode The addition of report-only mode for Azure AD Conditional Access policies allows administrators to see how enforcing policies will affect users. Once the impact has been assessed, policies can either be modified as required or enabled. During sign-in, Conditional Access policies in report-only mode are evaluated but not enforced. The results are logged in the Conditional Access and Report-only tabs of Sign-ins, which you can find under Monitoring in the Azure management portal. Microsoft says that report-only mode has seen strong adoption. While the feature was in preview, more than 26 million users were in scope of a report-only policy. Starting April 5th, all new Conditional Access policies are created in report-only mode by default. Microsoft also added the ability to programmatically manage report-only policies using the Microsoft Graph APIs. Before enabling Conditional Access policies in report-only mode, you might want to exclude Mac, iOS, and Android devices. Users of these platforms may be prompted to select a device certificate during policy evaluation, even though compliance isn't being enforced. Azure AD Conditional Access insights and reporting workbook The new Conditional Access insights and reporting workbook lets administrators visualize Conditional Access queries and see... --- ### Paul Thurrott's Short Takes: June 19 - Published: 2020-06-19 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-19/ - Categories: Cloud Computing, Microsoft Azure, Mobile, Windows 10 - Tags: News - Article Type: Overview Because Microsoft will get it right one day, this edition of Short Takes looks at problems with Windows 10 version 2004, future Windows 10 20H2 and 21H1 releases, changes to the Insider program, a SASsy partnership for Microsoft, Apple antitrust issues, and so much more. Because Microsoft will get it right one day, this edition of Short Takes looks at problems with Windows 10 version 2004, future Windows 10 20H2 and 21H1 releases, changes to the Insider program, a SASsy partnership for Microsoft, Apple antitrust issues, and so much more. Windows 10 version 2004 problems mount We all expected Windows 10 version 2004 to be reliable and drama-free since it was tested for almost three times as long as the typical Windows 10 feature pack. But ... that has not happened. Instead, this slowly-deployed disaster has succumbed to problem after problem, most recently a bizarre printing bug---and seriously, when was the last time you even thought about printing issues? ---and, worse, a data-killing issue with Storage Spaces. Microsoft’s response thus far has been sadly typical, meaning that it hasn’t amounted to much at all, and this whole thing would be comical if it wasn’t so serious. I’ve railed in the past about Microsoft, the world’s biggest software maker, unable to successfully update its own products, but seriously. This is getting out of hand. “Meet Your Microsoft To Do List Tool: Microsoft Lists” Wait, I thought Microsoft To Do was my ... wait, what? Microsoft forges ahead with more Windows 10 versions, with new names Well, bugs or no, Microsoft is pushing forward with not one but two new Windows 10 versions, and just to add a little spice to this toxic stew they’re going to go ahead and rename everything and rejigger the testing... --- ### Time to Review Your Tenant’s Office 365 Licenses > More people than ever before use Office 365 - but how many licenses bought for Office 365 are in productive use? That's a question which deserves some analysis. - Published: 2020-06-18 - Modified: 2024-09-04 - URL: https://petri.com/manage-office365-licenses/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Cost control, License management, Microsoft 365 usage, Office 365 usage - Article Type: Opinion Office 365 Licensing Should be Part of Operational Reviews Many businesses are conducting operational reviews because of the Covid-19 pandemic. Previous standards, like the need for people to turn up in an office every day, have gone by the wayside as remote working becomes the new normal. Companies with Office 365 tenants should consider their license mix as part of operational reviews. You might be in the fortunate position of needing more licenses to accommodate new employees. On the other hand, you might need to plan a reduction due to lay-outs and furloughs. And when you’ve settled on the number of licenses needed, the next question is if you are paying Microsoft too little or too much for the functionality needed by the business. Microsoft Upsells for Extra Revenue Microsoft would very much like to move tenants to more expensive plans, like Office 365 E5, or sell add-on licenses covering specific functionality, like advanced compliance. Indeed, during Microsoft’s FY20 Q3 earnings call, CFO Amy Hood told market analysts about their success in increasing the average revenue per user (ARPU) by upselling Office 365 tenants to the E5 plan. In other words, Microsoft wants to extract more money for each of its licensed user base. It’s easy to understand why. An extra dollar per month for 250 million users amounts to $3 billion extra revenue annually, most of which is pure profit. But the flipside of the coin is often true: tenants pay more than they should for Office... --- ### How to Manage Connections with Remote Desktop Connection Manager - Published: 2020-06-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-manage-connections-with-remote-desktop-connection-manager/ - Categories: Remote Access - Tags: Remote Desktop, Remote Desktop Connection Manager - Article Type: How To One of the most popular tools for managing multiple remote desktop connections has been the Microsoft Remote Desktop Connection Manager. One of the most popular tools for managing multiple remote desktop connections has been the Microsoft Remote Desktop Connection Manager. Unfortunately, in March of 2020, a vulnerability was discovered in the XML file format for that tool. Since RDCMan was original an internal Microsoft tool, it was decided to be discontinued and to move users to the newer Microsoft Store provided Microsoft Remote Desktop application. Features With the new tool, there are a number of useful features with more being added all the time. The what's new page lists bug-fixes and added features. General Settings Stored User AccountsThe client has the ability to store different accounts for use in connections. The following formats are allowed for the username: username, domainusername, or username@domain. fqdn. You also can choose whether using a particular account prompts for a password every connection or the password is stored. Gateway Server SupportThis option is usually used for internal corporate networks but allows for connecting to a gateway that then allows the connection to specific remote desktop resources. Grouping of ConnectionsThe ability to create different groups (or folders) of connections to easily sort connections logically. Prevent Screen TimeoutThis a useful setting that keeps the remote connection screen from timing out, often used when a long running script may be in use and no interaction is expected for a long period of time. Connection Settings Copying of files between local and remote resourcesBy dragging and dropping a file from either the remote location or the local system,... --- ### Microsoft to Bundle New Edge with Next Version of Windows - Published: 2020-06-16 - Modified: 2020-06-16 - URL: https://petri.com/microsoft-to-bundle-new-edge-with-next-version-of-windows/ - Categories: Windows 10, Windows Client OS - Tags: Edge, Microsoft, News, Windows 10 - Article Type: News Microsoft is going to start bundling its new Edge browser with the next version of Windows that will arrive this fall. We knew it was coming, eventually, and it’s official today. Microsoft is going to start bundling its new Edge browser with the next version of Windows that will arrive this fall. While most IT Pros already know by now, but if you are not aware, Microsoft’s new Edge is built on Chromium and I have been using it for more than a year. If you can use Chrome without any issues in your environment, you should be able to use new Edge without much hassle. The other change, while only in the name, is that the company is moving away from its version control references. Currently, Microsoft names versions of Windows with a number that is year/month – the latest version released this spring is known as Windows 10 2004. But this name can be confusing as Windows 10 2004 looks like a year, not a year/month combo. Going forward and starting this fall, Microsoft will call this version Windows 10 20H2, H2 meaning second half. Following the same logic, the next spring release will be called Windows 10 21H1. Microsoft has already started bundling the new Edge with some of its hardware, my Surface Go 2 and Book 3 review units both had the new Edge pre-installed. While I don’t think the new Edge shipping with Windows 10 20H2 is going to cause any major issues for IT Pros, it is something you need to know about in the event that you need to block the browser. And if... --- ### How to Enable Reserved Storage Using DISM or PowerShell in Windows 10 Version 2004 - Published: 2020-06-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-reserved-storage-using-dism-or-powershell-in-windows-10-version-2004/ - Categories: Windows 10 - Tags: storage, Windows 10 - Article Type: How To Microsoft makes it easier for system administrators to query, enable, and disable Windows 10 Reserved Storage. In this article, I show you how to use the new DISM and PowerShell commands. Reserved Storage first shipped in the Windows 10 May 2019 Update (version 1903). When enabled, it keeps some disk space for Windows Update, apps, temporary files, and system caches because without enough disk space, Windows and applications stop working properly. Updates may also fail to install if there isn't enough free disk space. Users installing a fresh copy of Windows 10 1903 or later, or receiving a device with the OS preinstalled, should see Reserved Storage enabled out-of-the-box. Some device manufacturers choose not to enable Reserved Storage because it reduces the available disk space to users. Those upgrading from a previous version of Windows don't get Reserved Storage, unless the ShippedWithReserves registry key is set to 1 before the upgrade. You can find the key under HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionReserveManager. Windows Update and Reserved Storage Windows Update gets priority access to Reserved Storage. Before an update, temporary files that are no longer needed in Reserved Storage are deleted. The remaining space is then given exclusively to Windows Update. If Reserved Storage still doesn't have enough space, Windows Update can also spill into free disk space that is available to the user. On systems where disk space is severely limited, Windows Update might also prompt to attach external storage, like a USB drive, to complete the update process. For more information on Reserved Storage, see What is Windows 10 Reserved Storage on Petri. DISM updated with new Reserved Storage options Microsoft announced at the beginning of April that an update to the... --- ### Microsoft Revises Windows Rings, Advises IT Pros to Move to Beta Channel - Published: 2020-06-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-revises-windows-rings-advises-it-pros-to-move-to-beta-channel/ - Categories: Windows Client OS - Tags: Insider, Windows - Article Type: News Microsoft is making updates to the Rings of the Insider program and renaming them to Channels. From time to time, Microsoft makes changes to the structure of its Insider program. The company recently announced a new leader of the team and today, they are changing up the “Rings” that have been a staple of the program for the past five years. As other teams at Microsoft have done, the company is dropping Rings in favor of channels. Going forward, the Fast ring will now be known as the Dev channel, Slow ring is the Beta channel, and the Release Preview ring is now the Release Preview channel. By making this move, this aligns Windows to Office and Edge insider programs with a common framework that should be more consistent and easier to understand for users. With this update, Microsoft is also promising a shift of focus from frequency to quality. We have heard similar language used before and also seen our fair share of Windows 10 production releases that resulted in backtracking. Will this update be more than skin deep? We don’t know the answer to that yet but will find out soon enough. Image #1 Expand New channels for builds of Windows 10 For IT Pros out there who are running around in the rings, you will want to move to the Beta channel. That’s Microsoft’s official guidance with each channel defined below: Dev Channel Ideal for highly technical users. Insiders in the Dev Channel will receive builds that is earliest in a development cycle and will contain the latest work-in-progress code from our engineers... . --- ### New IT Teams Controls Make Setting Default Roles in Meetings Easier - Published: 2020-06-15 - Modified: 2024-09-04 - URL: https://petri.com/new-it-teams-controls-make-setting-default-roles-in-meetings-easier/ - Categories: Microsoft Teams, Office - Tags: conferencing, free, Meeting, meetings, PowerShell, presenter, Teams, video call, Video Conferencing - Article Type: News Microsoft has rolled out new administrative controls for configuring the defaults for who should be a presenter in a meeting. You can now schedule meetings in the free version of Teams This week, Microsoft launched new capabilities for the free version of Teams that help it compete with the free version of Zoom. Nearly two years ago, in July 2018, the free version of Teams was launched, however, its focus was more towards competing with Slack, rather than as a free meetings platform. You sign-up for the free version of Teams using your Microsoft account (for example, using a free Outlook. com address) rather than by signing up for Microsoft 365. It has a route to a paid-for model where the consumer-linked account can be upgraded to a full Microsoft 365 tenant. Although you could begin calls, or start channel-based meetings, it lacked the ability to simply schedule a meeting and send an invite to participants. Frustratingly, this meant that if you were a smaller business and wanted to start using Teams as a video conferencing platform, you needed to look towards the paid versions of the product. The new functionality launched this week brings easy scheduling of meetings into the free version. There is not full calendar integration (for example, it has no visibility into your Outlook. com calendar) and instead, you are presented with options to begin a meeting immediately or schedule a meeting: Image #1 Expand Figure 1: Options to meet now or schedule a meeting in Teams Free (image credit: Steve Goodman) The process to create a new meeting is streamlined and different from the full... --- ### Sponsored: Five Key Points for Securing Office 365 - Published: 2020-06-15 - Modified: 2024-11-19 - URL: https://petri.com/sponsored-five-key-points-for-securing-office-365/ - Categories: Microsoft 365 - Tags: Office 365 - Article Type: Sponsored This post is sponsored by CoreView who offer a wide variety of security solutions for Office 365 Office 365 is one of the most commonly used applications in IT today. According to Microsoft, as of Q1 2020, Office 365 had reached 200 million monthly active users. Office 365 growth has remained constant at about 3 million users per month since 2015. However, while many businesses are using Office 365 in some capacity, very few of them have taken all the required steps to properly secure Office 365. Many organizations mistakenly believe that since Office 365 is a cloud application, Microsoft handles all the security and they don’t need to do anything else in order to lock it down. Most of these businesses are actively employing multiple layered on-premises security measures including VPNs, firewalls, VLANs, and anti-virus. However, many of these same organizations using Office 365 do not know where Office 365 specific security vulnerabilities lie – or in many cases even that they exist at all. According to the McAfee Cloud Adoption and Risk Report 2019, 80% of all organizations experience at least one compromised account threat per month and specific threats targeted toward Office 365 have grown by 63% in the last two years. Just like on-premise assets, securing Office 365 is vital to protect against data loss and breaches of confidentiality as well as to protect yourself and your business from malware and ransomware. Office 365 does provide some security features and configuration options that you should take... --- ### Cortana Daily Briefing Not Wanted by Some Office 365 Tenants > Office 365 tenant administrators received heads-up email that Cortana daily briefing messages will soon be delivered to end user mailboxes. It's great to have practical applications of AI and ML, but it's also important not to ram choice down the throats of tenants. - Published: 2020-06-15 - Modified: 2024-09-04 - URL: https://petri.com/cortana-daily-briefing-unwanted-office-365-tenants/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Cortana, Daily briefing, Get-UserBriefingConfig, MC212676, Set-UserBriefingConfig - Article Type: News, Opinion Microsoft Forces More Artificial Intelligence onto Office 365 Tenants On May 13, Microsoft issued Office 365 notification MC212676 to inform tenants that a new Cortana daily briefing email was coming, saying: “The Briefing email from Cortana helps users start their day on track by surfacing information on upcoming meetings and outstanding tasks as well as protecting your time for independent work. If there is relevant content, these users will receive the email at the beginning of each workday; at least one task must be detected for there to be a daily mail. This setting is enabled by default. ” Microsoft’s marketing post of May 27 includes details of the daily briefing among other Cortana initiatives, some of which are only available in the U. S. (like Play My Emails). According to that post, “Briefing is currently rolling out in First Release for Microsoft 365 Enterprise users with Exchange Online mailboxes in English. ” Tenant Discontent Not everyone reads Microsoft marketing posts (or the copies of the content reposted in the technical press), nor is everyone aware of Office 365 notifications (which is why it’s a good idea to synchronize notifications into Planner). Tenant administrators are often so busy that they only respond when directly contacted. Mutterings of discontent duly emerged in some parts of the Office 365 community last week when tenant administrators received a preview of the Cortana daily briefing email (Figure 1). The message gives two weeks’ notice of the arrival of daily briefings into user mailboxes. I got... --- ### How to Improve Remote Worker Security Using Microsoft Intune - Published: 2020-06-12 - Modified: 2024-09-04 - URL: https://petri.com/how-to-improve-remote-worker-security-using-microsoft-intune/ - Categories: Microsoft Azure - Tags: intune, Microsoft Azure, Microsoft Intune, Mobile Device Management, Security, Windows 10 - Article Type: How To In this article, I will show you how to use Microsoft Intune to create a compliance policy to keep remote workers secure. The worldwide health crisis had led many organizations to expand remote access to enable more employees to work from home. Remote access solutions are sometimes rushed out with limited opportunity to plan how to secure them properly. In an ideal world, you'd make sure that clients are compliant with a set of minimum standards before connecting remotely to the corporate network. And ensure that clients are secure even when not directly connected to the intranet. Windows 10 Always On VPN (virtual private network) can integrate with Azure Active Directory (AD) to check Windows for health compliance when a connection attempt is made. Azure AD-issued short-lived certificates are used to authenticate the VPN if the device meets compliance rules. When a certificate expires, the client checks Azure AD again for compliance before Azure issues a new certificate. For more information on Windows 10 Always On VPN, check out Understanding Windows 10 Always On VPN on Petri. Another approach, which can also be used with VPNs, is to check for compliance whenever devices are connected to the public Internet. To check Windows 10 compliance, you'll need a Mobile Device Management (MDM) solution. Microsoft Intune Intune is Microsoft's MDM solution. Organizations can purchase Intune licenses to manage users and devices. Intune licenses are also included with some Microsoft 365 plans, like Microsoft 365 Business Premium. There are several ways that Windows 10 devices can be enrolled with Intune. If a Windows 10 device is joined to an Azure Active Directory, it... --- ### Paul Thurrott's Short Takes: June 12 - Published: 2020-06-12 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-12/ - Categories: Cloud Computing, Microsoft 365, Microsoft Teams - Tags: News - Article Type: Overview Because $1.5 trillion is an awful lot of zeros, this edition of Short Takes looks at Microsoft’s new market cap milestone, why Microsoft won’t sell facial recognition to cops, Zoom trips over its own feet in China, Google plays the bully, and Sony announces a digital taco. The PS5 looks right at home in Star Wars. Because $1. 5 trillion is an awful lot of zeros, this edition of Short Takes looks at Microsoft’s new market cap milestone, why Microsoft won’t sell facial recognition to cops, Zoom trips over its own feet in China, Google plays the bully, and Sony announces a digital taco. Microsoft, Apple cross the $1. 5 trillion market cap threshold We all marveled while Amazon, Apple, Google, and Microsoft were all racing to see which would attain a $1 trillion market capitalization. But this week two of those firms hit an equally momentous milestone, with Apple and Microsoft both surpassing a $1. 5 trillion market cap. The difference? This time, no one has been paying attention at all. Which is weird, because this should be even bigger news, given the global pandemic, whereas the economy was exploding (in a good way) when they hit $1 trillion, so it was semi-inevitable. Meanwhile, Amazon hit a $1. 3 trillion market cap and Google surpassed $1 trillion for the first time since January. Wall Street is nuts. “IBM’s decision to abandon facial recognition technology fueled by years of debate” It should have just taken a few minutes. But, you know. IBM. Microsoft (still) won’t sell facial recognition technology to law enforcement With the growing backlash against abusive and racist police departments around the country, Microsoft has stepped forward to remind everyone that it was at the forefront of this debate when it revealed last year that it would... --- ### Securing Remote Virtual Machines Using Azure Bastion > In this article, I'll explain in detail how Azure Bastion works and how to configure it. You will learn how to create a Bastion host manually and how to create a Bastion by changing a VM's settings. - Published: 2020-06-11 - Modified: 2024-09-04 - URL: https://petri.com/securing-remote-virtual-machines-using-azure-bastion/ - Categories: Microsoft Azure - Tags: Azure Bastion, cloud computing, Microsoft Azure - Article Type: How To Azure Bastion provides an easy way to secure virtual machines that might otherwise be directly exposed to the Internet. In June 2019, Microsoft announced Azure Bastion. As a managed Platform-as-a-Service (PaaS) offering, Bastion lets you connect directly to virtual machines (VMs) without assigning them a public IP address. It acts as a jump server that forwards secure SSL connections from a browser to VMs. General availability was announced at Microsoft Ignite last year. Check out this link on Petri for more information on virtual machines. In this article, I'll explain in detail how Bastion works and how to configure it. You will learn how to create a Bastion host manually and how to create a Bastion by changing a VM's settings. Understanding Azure Bastion and remote connection protocol security Remote Desktop Protocol (RDP) and Secure Shell (SSH) are both protocols used for accessing virtual machines (VMs) in the cloud. Azure uses RDP for Windows VMs and SSH for Linux. RDP is less than ideal as a secure protocol and it continues to see Microsoft regularly issue patches. Image #1 Expand Securing Remote Virtual Machines Using Azure Bastion (Image Credit: Microsoft) Bastion is useful in situations where it wouldn't be cost effective to deploy your own secure connection solution in Azure or if you can't connect to an Azure VNET using a virtual private network (VPN). If you are using Azure Virtual Desktop (AVD), you don't need Bastion. VMs provisioned using WVD are already protected using an architecture like that provided by Bastion. How to deploy Azure Bastion First check that the Azure region you want to use supports... --- ### The Problem with Office 365 Backups > ISVs are sometimes criticized because their backup products don't do a great job of handling Office 365 data. That might be true, but the real issue is the lack of APIs delivered by Microsoft. - Published: 2020-06-11 - Modified: 2020-06-11 - URL: https://petri.com/problems-office365-backups/ - Categories: Microsoft 365, Office - Tags: Backup, Office 365 - Article Type: Opinion ISVs are sometimes criticized because their backup products don't do a great job of handling Office 365 data. That might be true, but the real issue is the lack of APIs delivered by Microsoft. The available APIs are rooted in an on-premises heritage and don't cover apps like Teams which knit together multiple cloud components. Future developments will increase the challenge. Lack of Microsoft APIs Creates Challenges for ISVs As some of you might know, I’m not a great fan of the backup products available for Office 365 today. Sure, the likes of Spanning and Veeam do their best with the available tools, but some fundamental problems exist that only Microsoft can solve. The first problem is that the APIs used by backup ISVs were never designed for cloud backup across the internet. For instance, it is by chance that Exchange Web Services (EWS) is available to move mailbox data from Exchange Online to ISV datacenters. Microsoft designed EWS to replace MAPI as the foundation for client-side applications, not heavy-duty shipping of terabytes of data across extended connections. We’re just fortunate that things work as well as they do. One hopes that the situation continues when Microsoft disables basic authentication for EWS on October 13, 2020. The situation with SharePoint Online and OneDrive for Business isn’t much better. Many ISVs offer backup products to copy documents and other site elements, but once again the protocols they rely on are based on on-premises concepts and assumptions instead of the cloud. No Backup for Cloud-Created Apps But at least APIs and protocols exist for the two basic Office 365 workloads, in no small part because of their on-premises heritage. Things get more complicated for the new Office 365 apps that only exist in the cloud, like Teams, Planner, To-Do, Yammer, and Stream. Few options exist here because Microsoft hasn’t created backup... --- ### SharePoint Auto Digest Will Bring the News to the Inbox - Published: 2020-06-10 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-auto-digest-will-deliver-the-news-to-users/ - Categories: SharePoint, SharePoint Online - Tags: Microsoft, News, SharePoint - Article Type: News SharePoint Auto Digest is about to make it much easier to bring news updates from SharePoint to the user's inbox. While SharePoint may not be getting the same amount of attention as Teams, the old dog can certainly learn new tricks. We have seen big updates including home sites rolling out and how easy it is to build a multi-lingual site. One of the features of SharePoint is the ability to share news and updates for your organization on an internal site. By using the News web part, you can quickly build a page to keep your users updated about what is happening in a modern and responsive design. To build upon the news properties of SharePoint, rolling out later this month, SharePoint Auto-News Digest will be able to send automated emails to users covering the latest News posts that they have not yet read. Image #1 Expand SharePoint news digest sample The idea is quite simple, not everyone is able to or wants to view the news updates on the specific SharePoint site and this email digest will bring it to their inbox. Like other types of email delivery services, users will be able to unsubscribe from the emails too. The digest will only distribute published news posts and permissions will be respected so that users will only see updates that are applicable to their role. In the announcement note, Microsoft does not say if this feature will be turned on by default. But, given the granular control that Office 365 typically provides, I would expect that you can turn this off completely for your org if you prefer not... --- ### Patch Tuesday - June 2020 - Published: 2020-06-10 - Modified: 2020-06-10 - URL: https://petri.com/patch-tuesday-june-2020/ - Categories: Windows 10, Windows Server - Tags: News, Patch Tuesday, sharepoint server, Windows 10, Windows Server - Article Type: News This month Microsoft addresses 129 vulnerabilities, including SMBv3 bugs, Flash Player, and remote code execution flaws in VBScript. This month, Microsoft addresses a record 129 CVEs. But the good news is that there are no zero-days to worry about. Windows 10 and Windows Server There are 5 critical remote code execution (RCE) flaws patched this month. A bug in the Windows Graphics Device Interface (GDI) could let an attacker take control of affected systems. Microsoft says that users whose accounts have fewer rights are less impacted than local administrators. This flaw could be exploited using a specially crafted website or document. Similar critical RCE bugs patched in Windows fix exploits in Microsoft Windows OLE, . LNK file processing, Windows Shell, and cabinet files. Legacy EdgeHTML gets 2 critical RCE patches. One in the way ChakraCore handles objects in memory. And the second is a memory corruption vulnerability. Both bugs could let an attacker run arbitrary code with the same rights as the logged in user. So, local administrators are more likely to be impacted on affected systems. Don't forget that even if you install the new Chromium-based Edge browser, legacy EdgeHTML doesn't get uninstalled and it needs to be patched. Similarly, there are 4 critical RCEs patched for Internet Explorer 11. Including the same memory corruption bug fixed for EdgeHTML. Additionally, the remaining bugs are all memory corruption issues with VBScript, potentially allowing an attacker to run arbitrary code in the context of the logged in user. Another reason why users shouldn't log in with an administrator account. Server Message Block (SMB) flaws Following on from SMBGhost,... --- ### How to Block Unwanted Apps in Edge and Windows 10 - Published: 2020-06-10 - Modified: 2024-09-04 - URL: https://petri.com/how-to-block-unwanted-apps-in-edge-and-windows-10/ - Categories: Windows 10 - Tags: Microsoft Defender, Microsoft Edge, SmartScreen, Windows 10 - Article Type: How To Microsoft has added the ability to block potentially unwanted apps to the Windows 10 Settings app. Windows 10 protects users from malicious downloads using a feature called SmartScreen. Windows Defender SmartScreen uses reputation-based protection to defend users against phishing and malware websites and applications, and potentially malicious files. SmartScreen has two mechanisms for protecting users. First, it analyzes webpages for suspicious behavior. Secondly, sites and apps are checked against a constantly updated list of reported malicious sites. If a webpage is deemed suspect or it is on Microsoft's list, SmartScreen displays a warning that the page may not be safe. Potentially Unwanted Apps Potentially Unwanted Apps (PUA) are not viruses or malware. Microsoft defines PUAs as other types of threats that might affect Windows performance or use; or that have a poor reputation. Examples of PUAs include software that contains advertising, app installers that bundle offers to install other software that isn't signed by the same certificate as the downloaded file, and apps that are designed to evade security software. Windows 10 May 2020 Update Potentially Unwanted App protection Users that are running the Windows 10 May 2020 Update or later can enable PUA protection in the Windows Security app. In the search box in the bottom left corner of the taskbar, type security. In the list of search results, click Windows Security. Click App & browser control on the right of Windows Security. Image #1 Expand How to Block Potentially Unwanted Apps in Edge and Windows 10 (Image Credit: Russell Smith)   On the App & browser control page, click Turn on under Reputation-based protection... . --- ### Microsoft is Making it Easier to Use To Do at Work - Published: 2020-06-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-making-it-easier-to-use-to-do-at-work/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, To-Do - Article Type: News Microsoft is rolling out an update for To Do that will make it a lot easier to use at work and at home. Microsoft loves productivity apps and when it comes to making lists, there are many options in the Microsoft 365 portfolio. From To Do and OneNote to Tasks and Lists, there is no shortage of options for finding the right solution. That being said, it can get confusing too. With many options, comes a decision about where to use what, when, and why. And to make things more complicated, some of these apps have consumer versions which means you can get caught in a purgatory between using a personal Microsoft account and a work account when looking for your information. To Do will soon support list sharing between personal and work accounts. The goal with this feature is to make it much easier to utilize To Do with a personal MSA and a work account. Specifically, this update will let “users in your organization join, view, modify, and add data to lists owned by personal Microsoft accounts. ”OneDrive is a good example of this as there are both personal and work accounts but the OneDrive app lets you jump between work and personal credentials. This functionality will also be coming to Teams this summer when the consumer version of that app is released. Image #1 Expand Microsoft To Do showing tasks on a Live Tile Once this feature becomes available, roll-out starts later this month with a completion date of mid-July, users will have the ability to join lists that are shared from an external personal account. It’s... --- ### Hackers Targeting Unpatched Windows Systems with Proof-of-Concept Code for SMB Vulnerability - Published: 2020-06-09 - Modified: 2023-08-23 - URL: https://petri.com/hackers-targeting-unpatched-windows-systems-with-proof-of-concept-code-for-smb-vulnerability/ - Categories: Windows 10, Windows Server - Tags: Security, SMB, Windows 10, Windows Server - Article Type: News Hackers are targeting unpatched Microsoft systems with publicly available SMBGhost PoC code. As part of Patch Tuesday in March, Microsoft released a security advisory detailing a remote code execution (RCE) flaw in Server Message Block (SMB) version 3. 1. 1. SMB is the protocol Windows uses for shared network access to file servers, printers, and serial ports. The bug could let an attacker exploit the way SMBv3 handles requests to run code on a target SMB Server or SMB Client. Microsoft considered the issue serious enough to release an out-of-band patch (KB4551762) to fix the vulnerability later the same month. The bug, which is sometimes referred to as SMBGhost, only affects Windows 10 versions 1903 and 1909. Microsoft said: To exploit the vulnerability against an SMB Server, an unauthenticated attacker could send a specially crafted packet to a targeted SMBv3 Server. To exploit the vulnerability against an SMB Client, an unauthenticated attacker would need to configure a malicious SMBv3 Server and convince a user to connect to it. CISA warns about attacks on unpatched Microsoft systems The U. S. Cybersecurity and Infrastructure Security Agency (CISA) published a warning June 5th that unpatched Microsoft systems could be vulnerable to SMBGhost (CVE-2020-0796). CISA is aware of functional, publicly available proof-of-concept (Poc) code that exploits SMBGhost in unpatched systems. CISA goes on to say that hackers are targeting unpatched Microsoft systems with the new code. In addition to making sure that SMB ports are not exposed to the public Internet, system administrators should apply KB4551762 to vulnerable systems as soon as possible. SMB compression flaw SMBGhost... --- ### Create a User Activity Report for Multiple Office 365 Workloads > The Microsoft Graph reporting endpoint is a rich source of information about Office 365 user activity. In this post, we use PowerShell and Graph calls to fetch and analyze information for five workloads. - Published: 2020-06-09 - Modified: 2024-11-19 - URL: https://petri.com/graph-powershell-office365-usage/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online, Yammer - Tags: Microsoft Graph, PowerShell, User activity - Article Type: How To The Graph is the Source for Report Data The usage reports available in the Microsoft 365 admin center give a reasonable picture of user activity within a tenant. However, they don’t deliver the kind of flexibility that a customized report can provide. Given that the data comes from the Microsoft Graph, it seems reasonable to extract the data from the Graph to see what can be done. You can access the Graph with a variety of languages. I decided to attack the problem with PowerShell. The code is very accessible and easily altered. Using PowerShell also emphasizes how feasible it is to combine the Graph with PowerShell to create solutions. My aim is to gather usage data from multiple workloads and present it in a way that administrators know how active users are with each workload and across the service. Understanding user activity can help tenants manage licenses more efficiently. For instance, if you find that an account is inactive, you can remove its license. Retrieving Usage Data from the Graph The first step in the script is to access the Graph and download the usage data. As an intermediary for PowerShell, we need a registered an Azure Active Directory application to access the Graph (directions are in this post). Make sure that the app is assigned the Graph Reports. Read. All permission to allow it to read the usage data with the Reports API. To fetch the signin data from Azure AD, you'll need to assign the User. Read. All permission... . --- ### Teams Gets new Admin Controls for Backgrounds, UI and AI improvements Plus Auto-Enablement - Published: 2020-06-08 - Modified: 2024-09-04 - URL: https://petri.com/teams-gets-new-admin-controls-for-backgrounds-ui-and-ai-improvements-plus-auto-enablement/ - Categories: Microsoft Teams - Tags: AI, custom backgrounds, meeting limit, meetings, News, restrict custom backgrounds, Teams - Article Type: News Microsoft changes meeting limit size, again, adds more controls for backgrounds, and suggested replies are coming soon. Microsoft Ships Controls for Background Effects During the last week, Microsoft quietly rolled out its promised controls for Teams Background effects. Launched hastily in May in response to the popularity of Zoom’s similar features, Microsoft removed the ability to add new backgrounds via the UI – but allowed users to navigate through the filesystem to add additional images manually. The second iteration of background effects provides a new Add New button to upload images from the Teams client: Image #1 Expand Figure 1: The new Background Effects "Add new" option (image credit: Steve Goodman) At this stage though, users might still need to navigate to the %APPDATA%MicrosoftteamsBackgroundsUploads folder on their PC occasionally, as although there’s an add button, there’s no remove button as yet. To support organizations looking to limit the use of background effects, Microsoft has rolled out administrative controls you can use to restrict the functionality for all or some users. These are built-in to the *-CsMeetingPolicy set of cmdlets contained within Skype for Business Online PowerShell and add a new parameter VideoFilters. This has options to allow everything, blur and default backgrounds, just blur, or disable the functionality entirely. Disabling custom backgrounds not only removes the Add New button but also prevents the client from using any existing backgrounds. Only allowing Background Blur removes all default backgrounds as well: Image #2 Expand Figure 2: Restricting Background Effects to only Background Blur (image credit: Steve Goodman) The policy change is... --- ### Paul Thurrott's Short Takes: June 5 - Published: 2020-06-05 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-5/ - Categories: Amazon Web Services, Cloud Computing, Microsoft 365, Microsoft Azure, Microsoft Teams, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it’s probably Friday, this edition of Short Takes looks at Microsoft’s push to a dystopian future, the sad tale of Microsoft trying to deploy its own software to its customers, AppGet developer gets a small bone, two of Microsoft enemies team up and try not to look desperate, and so much more. Because it’s probably Friday, this edition of Short Takes looks at Microsoft’s push to a dystopian future, the sad tale of Microsoft trying to deploy its own software to its customers, AppGet developer gets a small bone, two of Microsoft enemies team up and try not to look desperate, and so much more. Microsoft replaces news staff with AI The dystopian science fiction future we’ve been dreading for decades is finally happening. No, not Coronavirus. Instead, Microsoft this past week fired “dozens” of journalists and editorial staff who had been mailing it for a Microsoft News app no one even knows exists and is replacing them with artificial intelligence software. Calling these people journalists is, of course, a bit of a stretch: No one at Microsoft (really a third party hired for this purpose) was writing original news pieces. Instead, they were simply curating content from around the web and republishing it on MSN. com and in the Microsoft News mobile app. Which, yes, arguably could be done just as poorly by AI as it was done by people. Anyone who’s read a news aggregation app---which is what most news apps really are---knows these things are terrible, no matter how they’re curated, and they’re full of advertisements posing as news stories, click-bait slideshows, and other nonsense. It’s not the type of thing that requires humans, frankly. “Microsoft exec explains why its database software has surpassed Oracle” Anyone who has used Oracle can explain this easily. If a Windows update... --- ### Refresh of Exchange Online PowerShell Module Now Generally Available > Microsoft has released V2 of the Exchange Online PowerShell module. The new module contains 9 REST-based cmdlets designed for speed and stability for the most intense Exchange Online operations. - Published: 2020-06-04 - Modified: 2024-09-04 - URL: https://petri.com/exchange-online-powershell-module-v2/ - Categories: Exchange Online, Microsoft 365, Office, PowerShell - Tags: Exchange Online, Exchange Online PowerShell, Office 365, PowerShell - Article Type: How To, News A New Start for Exchange PowerShell Last November, Microsoft announced a refresh of the Exchange Online PowerShell module at the Ignite 2019 conference. The big change was the introduction of nine cmdlets built on REST APIs to replace older cmdlets like Get-Mailbox and Get-MailboxStatistics. These cmdlets have been part of Exchange PowerShell since its introduction in Exchange 2007. Apart from being some of the most used cmdlets, the common thread linking the nine chosen cmdlets is that they often retrieve large amounts of mailbox data. The older Remote PowerShell implementation works well with small numbers of mailboxes but begins to suffer problems as mailboxes mount into the thousands. In a nutshell, the old cmdlets are slow and unreliable in large tenants. Upgrading to the Generally Available Version After being in preview since Ignite, the new cmdlets are now generally available and the module can be downloaded from the PowerShell Gallery. Somewhat confusingly, Microsoft refers to the module as “Exchange Online PowerShell V2” while the version of the generally available module is 1. 0. 1 (Figure 1). But hey, what do numbers mean anyway? Image 1 Expand Figure 1: V1. 0. 1 is available for V2 in the PowerShell Gallery (image credit: Tony Redmond) Installing the module is easy. If you have never used the module before, run Install-Module (the command is shown in Figure 1) to fetch the code from the PowerShell Gallery, and if you’re upgrading from a previous release, run Update-Module as shown in Figure 2. Image 2 Expand Figure 2: Installing... --- ### Microsoft to Match Zoom's Grid Calling Functionality, Eventually - Published: 2020-06-04 - Modified: 2020-06-04 - URL: https://petri.com/microsoft-will-match-zooms-7x7-calling-eventually/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft plans to match Zoom's 7x7 calling but that is likely not enough for the tool. A few weeks back, Microsoft sounded the trumpets, set off a few fireworks, and told the world that it was rolling out 3x3 views while calling with a small team. But the problem here, and it’s mostly a “we can do that too” problem, is that Zoom offers a view of up to 7x7. With Microsoft hunting down every possible way to make Teams better, the company will not sit back and let Zoom steal the headlines with its better functionality. To little surprise, the company is working on adding 7x7 calling to Teams for those who want to look at their postage-stamped size coworkers on large Teams calls. Those who have used the feature at the company say that the testing is in the early stages of development and I don’t expect it to arrive in the immediate future. Microsoft has also publicly confirmed that it is working on this feature but chasing down what other products offer, isn’t always a solid business strategy. For example, if Microsoft is only looking to offer 7x7 calling, Zoom is likely working on 8x8 or 9x9, and this puts both companies in a pointless rat-race of functionality that is not all that functional. Unless you have a very large monitor, displaying everyone on a call isn’t always optimal or even necessary and this is ignoring any bandwidth challenges streaming that many faces present. What I hope Microsoft is building is improved video features for the grid. Make it easier to pin multiple... --- ### How To Build a SharePoint Online Multi-Lingual Site - Published: 2020-06-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-build-a-sharepoint-online-multi-lingual-site/ - Categories: SharePoint, SharePoint Online - Tags: Multi-lingual, SharePoint, SharePoint Online - Article Type: How To The multi-lingual publishing feature for SharePoint communication sites has officially been rolled out worldwide. The multi-lingual publishing feature for SharePoint communication sites has officially been rolled out worldwide. It’s never been more important to embrace the diversity of your organization and to provide content that reaches and empowers every employee no matter where they live or what language they speak. We now have the ability to create and translate pages, set translator roles, and get email alerts when pages are ready to be translated, updated, and published. Eager to try this out, I spun up my demo environment and was happy to find this feature available and ready to go. There are only a few simple steps to enable this feature on your site Go to Site Information > View All Site Settings > Language Settings Enable pages and news to be translated into multiple languages Select the users that will be your translator(s) for the pages (tip: you can use Office 365 groups here too! ) Click Save Image #1 Expand It’s important to note that these steps do not automatically translate the page for you. Here’s what is next: Your translator(s) receive an email letting them know the page is ready for translation They follow the link to the page and manually translate the page content The translator will then publish the translated page. If approvals are turned on, an approval will be needed before the publish can be completed Once the page has been published, you can now switch back and forth... --- ### Windows Server Version 2004 Reaches General Availability - Published: 2020-06-03 - Modified: 2020-06-03 - URL: https://petri.com/windows-server-version-2004-reaches-general-availability/ - Categories: Windows Server 2019 - Tags: Server Core, Windows Containers, Windows Server - Article Type: News Along with last week's release of the Windows 10 May 2020 Update, Microsoft released Windows Server version 2004. At the end of May, Microsoft released the Windows 10 May 2020 Update to 'seekers' via Windows Update. For more information on that release, check out Everything You Need to Know About Windows – May 2020 on Petri. Along with the Windows 10 feature update, Microsoft also made available Windows Server version 2004 for customers on the Semi-Annual Channel (SAC). As a reminder, the Windows Server SAC is for customers that want to take advantage of new operating system features at a faster pace than those on the Long-Term Servicing Channel (LTSC). LTSC customers get feature updates once every 2-3 years. Windows Server SAC releases, which happen biannually, don't include the Desktop Experience server role. Improved container performance and reliability Like recent Windows Server SAC releases, Windows Server version 2004 brings further optimizations for containers. Microsoft worked with the . NET and PowerShell teams to further optimize image size and performance of Server Core containers. There are also some networking improvements that bring better scalability, robustness, and reliability. To reduce size, the Server Core container image doesn't optimize the . NET Framework for performance. Optimization is instead performed in the higher-level . NET Framework runtime image. In the table below, you can see how Microsoft has been able to considerably reduce container image size in Windows Server version 2004. As I wrote on Petri last year, the Server Core image size is smaller by 40%. Figure 1 Investigations started at Microsoft a year ago based on the premise that the way... --- ### How to Manage Remote Connections in mRemoteNG - Published: 2020-06-03 - Modified: 2024-09-04 - URL: https://petri.com/how-to-manage-remote-connections-in-mremoteng/ - Categories: Remote Access - Tags: mRemoteNG - Article Type: How To Most system administrators need to connect to many different systems, often in a variety of ways. There are several tools out there that offer this ability, but one of the more popular tools available is that of mRemoteNG. Originally a fork of mRemote, mRemoteNG adds many new features to mRemote. Features To support the many different types of connections and configurations, there are a myriad of options and tools available to you in mRemoteNG. Connection Grouping Using folders, connections can be grouped in a variety of ways. Conveniently, mRemoteNG lets a user set configuration options at the folder level and then define the inheritance on a single connection. With many different connections, this greatly simplifies the work necessary to configure many different connections at once. Protocols Supported The following protocols are supported within a connection configuration. RDP (Remote Desktop/Terminal Server) VNC (Virtual Network Computing) ICA (Citrix Independent Computing Architecture) SSH (Secure Shell) Using a custom Putty implementation named PuttyNG Telnet HTTP/HTTPS rlogin Raw Socket Connections Security There are a few very useful security features available. Since connections are often very important to save and manage securely, not only can you ask for a password before opening any given connection, the entire configuration can be encrypted in a variety of methods. Using mRemoteNG On first startup, the mRemoteNG screen will be very plain. To get started, it is simply a matter of creating a new connection. To do this, you can either right-click on Connections or click the new... --- ### Outlook for Windows Will Finally get a Cloud Roaming Option this Month - Published: 2020-06-02 - Modified: 2020-06-02 - URL: https://petri.com/outlook-for-windows-will-finally-get-a-cloud-roaming-option-this-month/ - Categories: Microsoft 365, Office, Outlook - Tags: Microsoft 365, Office 365, Outlook - Article Type: News Outlook for Windows is introducing an option to allow users to save some settings in the Microsoft 365 cloud. Roaming profiles in Outlook for Windows isn’t exactly new and the functionality has been around for some time. But up until now, it was not offered through the Microsoft 365 cloud; that’s about to change. Microsoft has started rolling out a feature that will allow users to save some settings to their cloud profile. The rollout will start with Microsoft 365 Monthly Channel and the completion is targeted for late June. When this feature rolls out, the following list of settings will roam across other computers running Outlook for Windows that are logged in to the same Office account. Advanced Calendar Ease of Access General Groups Mail People Search Tasks While this feature is not going to magically fix all your woes while using Outlook for Windows, having a cloud roaming option is going to make life a bit easier for setting up a new machine or jumping between devices. If you want to enable the feature, follow these steps in Outlook: Select File > Options. Under Outlook Options, select General. Check the box Store my Outlook settings in the cloud. Select OK. When this feature does fully roll out in a couple of weeks, it will be enabled by default. If you want to turn this functionality off for your users, you will need to disable roaming settings in Outlook group policy template. When you couple this feature with the ability to sync signatures across machines, Outlook is finally, but slowly, moving into the modern era with the features users expect. --- ### Know Your Data in the Microsoft 365 Compliance Center > Know Your Data is part of the Microsoft 365 Information Governance mantra, and the Compliance Center now boasts a new dashboard to help Office 365 administrators know what they have. - Published: 2020-06-02 - Modified: 2024-09-04 - URL: https://petri.com/know-your-data-microsoft-365-compliance-center/ - Categories: Microsoft 365, Office - Tags: Information governance, Microsoft 365 Compliance, retention labels, sensitivity labels - Article Type: How To, News Know Data to Protect Data On May 14, Microsoft announced that discovery and review capabilities for labeled data and sensitive data types were generally available in the Microsoft 365 Compliance Center. Microsoft calls this “know your data,” part of their Information Protection and Governance framework. The idea is that if you understand your data, you can better protect what’s important. Or in marketing terms, “The first step in the journey to protect and govern your data is getting a holistic understanding of the sensitive data in your digital estate. ” Not knowing that my tenant is a digital estate, I prefer my definition. Maturing Microsoft 365 Compliance Features IT systems tend to mature over time. The initial implementation is often rudimentary and requires a lot of manual processing before automation and insight is introduced. In the case of Microsoft 365 compliance, the journey started for Office 365 tenants about five years ago. In that time, we’ve seen major components become available to help companies manage important data stored in Office 365, including: Retention labels and policies. Sensitivity labels and policies. Data loss prevention (DLP) policies. Communications compliance policies. Office 365 audit log (unified auditing). Some aspects of these components need Office 365 E5 or Microsoft 365 Compliance E5 licenses, but the basics of retention and sensitivity labels, DLP, and the audit log can be used with Office 365 E3. Understanding What’s Happening Tenants that have implemented some or all these technologies in the last few years probably have a... --- ### Everything You Need to Know About Office 365 – May 2020 - Published: 2020-06-02 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-office-365-may-2020/ - Categories: Microsoft 365, Office - Tags: Office, Office 365 - Article Type: News This month there is lots of new stuff and I am not even sure what my favorite is. Outlook reading to me, Power Apps letting me see the world differently, SharePoint being everywhere and nowhere at the same time, a bonus tip, and more. How about instead of me writing something clever you just dive in and enjoy the fun. Play my emails with Outlook for IOS I can’t believe they avoided the temptation to name this product Power Play my emails. We all know how they love to use the word Power in their product names. Anyway, this is a pretty amazing feature. Now on iOS, you can click Play by emails and Cortona walks you through your unread emails for the last 24 hours with a decent summary. Then she allows you to reply to the email, schedule a meeting, and a few other things. I played with it for long enough to say I am impressed and look forward to using it more. No word yet when the Android crowd gets it (they said coming weeks) but if you have IOS I recommend you give it a go. Maybe take a nice walk outside while you deal with your never-ending inbox. More details here. Conditional formatting for totals and subtotals Power BI matrix visualizations When building Power BI visualizations, you can now finally add some pretty cool color coding to the mix for totals and subtotals. This has been a popular request for some time... --- ### Everything You Need to Know About Windows – May 2020 - Published: 2020-06-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-may-2020/ - Categories: Windows 10, Windows Server - Tags: Build 2020, Microsoft Edge, Windows 10, Windows 10 May 2020 Update, Windows Server, Windows Subsystem for Linux, Windows Terminal - Article Type: News May was a busy month for Windows, with the release of the Windows 10 May 2020 Update and Build. May was a busy month for Windows, not least because of the release of the Windows 10 May 2020 Update but also because of some major announcements at Microsoft's annual Build conference. Windows 10 May 2020 Update general availability At the end of May, Microsoft started rolling out the Windows 10 May 2020 Update (version 2004) to 'seekers' on Windows Update. Seekers are those who actively click Check for updates in the Windows 10 Settings app. The update is also available via the Media Creation Tool on the Window 10 download page. Despite a long testing period compared to previous feature updates, Microsoft isn't making Windows 10 version 2004 available to all seekers. The rollout is being throttled and blocked on devices where there are known issues. For a complete list of known problems with the update, check out Microsoft's release information here. Windows Server version 2004 is also now generally available. The May 2020 Update comes with some important new features, including: Windows Subsystem for Linux 2, which was first announced at Build 2019. A new chat-based Cortana experience delivered as an app. Support for WiFi 6 and WPA3. Cloud recovery. The ability to name virtual desktops. Potentially unwanted app (PUA) blocking. Win32 segment heap capabilities to reduce app memory usage. I'll be covering these features, and more changes in Windows 10 version 2004, soon on Petri. According to Microsoft's website, the Companion Device Framework, Microsoft Edge (legacy), and Dynamic Disks, have all been deprecated in Windows... --- ### Everything You Need to Know About Azure Infrastructure – May 2020 Edition - Published: 2020-06-01 - Modified: 2020-06-01 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-may-2020-edition/ - Categories: Microsoft Azure - Tags: API Management, App Insights, App Services, ARM, ARM Templates, Availability Zones, Azure Backup, Azure Container Registry, Azure Files, Azure Firewall, Azure Monitor, Azure Monitor Logs, Azure Relay, Azure Resource Manager, Azure Security Benchmark, Azure Security Center, Azure Site Recovery, Azure SQL, Azure SQL Auditing, Azure VM Image Builder, Azure VPN, BLOB, Blob Index, Blob Replication, Blob Versioning, Bring-your-own-key, BYOK, Custom Roles, Customer-Managed Keys, Disk Bursting, Event Grid, Front Door, JSON, Learn TV, Log Analytics Workspace, Managed Disks, networking, Peering Service, Private Endpoint, Private Link, Security, Server-Side Encryption, Spot Virtual Machines, storage, Storage Account, Ultra Disk, Virtual Network, Windows Virtual Desktop, Zero-Trust Blueprint, Zone-to-Zone Disaster Recovery - Article Type: Overview As you might notice below, there were a lot of announcements in the world of Azure Infrastructure last month. That’s because Microsoft Build, the developer-focused conference, happened and it is one of the inflection points for new releases in the Azure calendar. Sure, Build is developer-focused, but in the modern world, developers and operators are closely linked, and developers are the ones building on the infrastructure that we IT pros build. ARM at Build Azure Resource Manager (ARM) is going through some growing pains at the moment. More Azure customers are using ARM than ever, their projects are getting bigger and more complex, and customers are demanding the ability to completely automate the delivery of a new service. For example, the deployments that I work with can take nearly 3 hours to execute ... if they run cleanly! Microsoft announced some new features for ARM at the Build conference. Some service delivery or configuration can only be automated by the execution of some script after the core deployment of resources.  Our deployments at work make thousands of configurations. But as big as one of those deployments is, we still need to do some follow up work. Microsoft is addressing this with a new preview to execute scripts during an ARM deployment. A script within your template can complete the last mile of the delivery/configuration of the service that you are deploying. A public preview for this has begun with support for CLI and PowerShell scripts. The ARM Testing... --- ### Teams Gets Stronger Enterprise Controls, Expanded Chat Limits and Better Interop - Published: 2020-06-01 - Modified: 2024-09-04 - URL: https://petri.com/teams-gets-stronger-enterprise-controls-expanded-limits-and-better-interop/ - Categories: Microsoft 365, Microsoft Teams - Tags: education, intune, Meeting, Outlook, PowerShell, Teams - Article Type: News This week in Teams, we've been exploring some new functionality rolling out for use with Intune, meeting limits/meeting join improvements, interoperability settings and more. This week in Teams, we've been exploring some new functionality rolling out for use with Intune, meeting limits/meeting join improvements, interoperability settings for Skype, Islands mode improvements, and a small but welcome change if you use Team's Phone System capabilities. Teams with Intune will allow you to only allow company accounts on mobiles If you manage your organization’s mobile devices with Intune, then you will be familiar with how Microsoft 365 apps work compared to third-party vendor MDM solutions. Third-party MDM solutions have their own apps' access to corporate data. In the world of Microsoft 365 though, you have a single set of apps aimed at both corporate and consumer data. When the Microsoft 365 apps are managed by Intune and have App Protection policies applied, the Intune API limits you to one corporate identity, but you can still add your own consumer account (Microsoft Account, Live ID). Apps including Outlook and OneDrive already have the ability for you to deploy settings to limit sign in to only organization accounts for some time, with separate configuration required for iOS and Android managed devices. Until recently, this did not matter on Teams, as Teams did not support consumer accounts. It will soon though with “Teams for Home” and therefore it’s crucial that Microsoft perform this update before Teams opens up to a wider audience. This update to Teams will be rolled out before the end of June If you are already deploying Teams to your mobile devices via Intune,... --- ### Amazon’s AWS Summit - US and Canada 2020 - Published: 2020-06-01 - Modified: 2020-06-01 - URL: https://petri.com/amazons-aws-summit-us-canada-2020/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS - Article Type: News This past May, 2020 Amazon presented their AWS Summit - US and Canada with a keynote by their Amazon CTO, Werner Vogels, and a collection of about 40 additional technical sessions. Amazon’s AWS Summit is a free online conference that is presented as a series of events in each of its major global regions. Like most major tech events during this pandemic, this year’s AWS Summit was an on-line virtual event. Amazon CTO Werner Vogels kicked off the conference with a presentation from his office in Amsterdam. Vogels spoke about how a strong technological foundation is essential for the new remote offices. Vogels explained, "In the light of current events, you could argue it's more important than ever to rapidly build solutions and respond to changes around us. " He noted that COVID-19 has forced individuals and businesses around the world to shift both mindsets and functionalities and that through 2020 and into the future most organizations will continue shifting toward a cloud-based infrastructure. Other featured speakers included Andy Jassy, Chief Executive Officer, Amazon Web Services and Matt Garman, Vice President, AWS WW Sales and Marketing. The technical tracks in the AWS Summit US and Canada conference consisted of: Machine Learning Analytics & Databases Compute & Networking Enterprise Server Modern Application Development Security and Storage You can check out the on-demand version at AWS Summit US and Canada. If you’re interested in future live events then next event is the AWS Summit EMEA that is scheduled for June 17th. --- ### Surface Book 3: A Workstation for a Specific Type of Worker - Published: 2020-05-29 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-3-a-workstation-for-a-specific-kind-of-worker/ - Categories: Hardware - Tags: Surface Book 3 - Article Type: Review Microsoft’s Surface Book 3 represents the ‘best of the best’ of the Surface family. It has the most powerful CPU/GPU combo, it can be a tablet or a laptop, supports up to 32GB of RAM and is a machine designed for work. Technically, it’s designed for work and play, with both consumer-grade and professional-grade GPU options but for this review, I am focusing on the working-professional as that’s where I think this hardware shines. Yes, consumers can, and some should be looking at the Book 3, but for knowledge workers who need a high-end machine, the Book 3 fills the needs for some, but not all. The hardware comes in two flavors, 13. 5in or15in, and the device I have for review is the 15in with a 10th Gen Core i7-1065G7 chip with 32GB of RAM, 512GB SSD, with a 1660Ti. Pricing for Book 3 starts at $1699. 99 for the entry-level 13. 5in model for business customers and jumps all the way to 3799. 99 if you opt for the Quadro graphics solution and larger display. Image #1 Expand Surface Book 3 There are two ways to look at the design of the Surface Book 3 – either it is iconic and is easily recognizable or it is outdated. Microsoft has been using a nearly identical design since the product's inception about five years ago and to some, this is a good thing, while others can easily argue that maybe it's time to shrink the bezels or expand the trackpad. The exterior has... --- ### Paul Thurrott's Short Takes: May 29 - Published: 2020-05-29 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-29/ - Categories: Cloud Computing, Microsoft 365, Microsoft Teams, Mobile, Windows 10 - Tags: News - Article Type: Overview Because I heard you missed me, I’m back, this edition of Short Takes looks at Microsoft’s mea culpa on open-source, a cute return to the Microsoft of the 1990s, Microsoft Teams vs. Windows, Microsoft Teams vs. Slack, the future of command lines, and much, much, more. Because I heard you missed me, I’m back, this edition of Short Takes looks at Microsoft’s mea culpa on open-source, a cute return to the Microsoft of the 1990s, Microsoft Teams vs. Windows, Microsoft Teams vs. Slack, the future of command lines, and much, much, more. Microsoft: We were wrong about open-source At a recent virtual event, Microsoft president Brad Smith finally uttered the mea culpa that the open-source community has been waiting for for 20 years, though many will never believe him regardless. “Microsoft was on the wrong side of history when open-source exploded at the beginning of the century, and I can say that about me personally,” he said. “The good news is that, if life is long enough, you can learn that you need to change. ” This is a slightly different posture from the “Linux is a cancer” mantra of the Steve Ballmer years, but it’s worth remembering that it’s also not news, per se: Microsoft is now the world’s single-biggest contributor to open-source and has so thoroughly embraced openness that it’s getting hard to remember when this wasn’t the case. Unless, of course, you’re one of those open-source thugs that will never forgive Microsoft for its transgressions of 20 years ago. And yes, they’re out there. “A $350 “anti-5G” device is just a 128MB USB stick, teardown finds” Wait, someone didn’t really make a 5G bio-shield? ? AppGet creator says Microsoft stole his product Not helping matters on the openness front, the creator of the... --- ### How Exchange Online Processes Journal Reports for Protected Email > Office 365 tenants often want to journal email from Exchange Online mailboxes. Things become a little more complicated when protected email is involved, but Exchange can decrypt protected messages - Published: 2020-05-28 - Modified: 2024-11-19 - URL: https://petri.com/how-exchange-online-processes-journal-reports-protected-email/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Journaling, Exchange Online, Journal report, Office 365 Message Encryption, OME - Article Type: How To, Opinion Office 365 tenants often want to journal email from Exchange Online mailboxes. Things become a little more complicated when protected email is involved, but Exchange can decrypt protected messages and create journal reports with attachments containing the original encrypted message and a decrypted copy. That should be enough for journaling systems to process the journal reports and import messages into their repositories. User Voice Looks for Message Decryption for Journal Copies I noticed an Office 365 user voice request looking for journal decryption for Office 365 Message Encryption (OME). The text of the request wants the Rights Management configuration for tenants to support an equivalent setting to JournalReportDecryptionEnabled to enable OME decryption. Although the original request dates from February 2017, some recent responses say that this is a blocking factor stopping deployments. In fact, the requested functionality exists in Office 365 today. Let me explain how things work when Exchange Online processes journal reports for protected messages. The Rights Management Configuration for Exchange Online The Rights Management configuration (IRM configuration) dictates how Exchange Online works with protected messages. The configuration is managed with the Set-IRMConfiguration PowerShell cmdlet, part of the Exchange Online cmdlet set. Messages can be protected with the two OME standard templates (Encrypt-Only and Do Not Forward) or by using an Office 365 sensitivity label. By default, the JournalReportDecryptionEnabled setting is $True, meaning that when Exchange Online processes a protected message against a journal rule, it uses its IRM super-user permission to decrypt the content and attaches a decrypted copy of the message to the journal report. This is the same super-user permission used by the transport service to allow it to apply mail flow rules for protected messages and to decrypt protected messages when Exchange Online exports messages found in an Office 365 content search. After processing, the journal report sent to the journaling mailbox has two... --- ### Windows 10 May 2020 Update is Now Available - Published: 2020-05-27 - Modified: 2020-05-27 - URL: https://petri.com/windows-10-may-2020-update-is-now-available/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Windows 10 - Article Type: News Microsoft has announced today that Windows 10, version 2004 is now generally available Microsoft has announced that Windows 10, version 2004 is now generally available. The company has been testing this release with users of its Insider program and is now opening it up to everyone who wants to install the update. There are quite a few enhancements in this release for consumers, that you can read about here, but for IT Pros, the biggest improvement is Windows Subsystem for Linux 2. This release is a major upgrade and for the first time includes an actual Linux kernel inside of Windows 10 that improves performance (especially in file system access) and compatibility. The other update that is likely of interest is that you can now name your virtual desktops. This is helpful if you use this feature to create dashboard desktops for specific apps/zones/environments. As per our usual recommendation, if you are planning to roll out this update to your users, you should do so in waves – or rings as Microsoft calls it. Starting with a small group of users on non-critical hardware and then slowly expanding it to more users as confidence in its stability increases. But the big question for your organization is if you will deploy this update at all? The reason being is that Microsoft only supports spring releases for 18 months but fall releases are supported for 30. So unless you really like updating your users to the latest and greatest, most IT Pros are likely waiting until the fall before they consider updating. --- ### Microsoft Brings GUI Support and GPU Acceleration to Windows Subsystem for Linux - Published: 2020-05-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-gpu-hardware-acceleration-and-gui-app-support-for-wsl-2-at-build-2020/ - Categories: Windows 10 - Tags: DevOps, Windows 10, Windows Subsystem for Linux - Article Type: News Microsoft announces GPU hardware acceleration and GUI app support for WSL 2 at Build 2020. First announced at Build 2019, Windows Subsystem for Linux (WSL) 2 will debut in the Windows 10 May 2020 Update. WSL 2 uses a real Linux kernel to overcome the limitations of WSL 1, which is based on an emulation layer that maps Windows kernel system calls to Linux kernel system calls, allowing Linux binaries to run in Windows unmodified. WSL appears to be quite popular with developers that want to stay on Windows, with some able to run their entire DevOps workflows on the platform. Nevertheless, even with the improvements coming in WSL 2, the lack of support for GPU hardware acceleration and GUI apps limits its uses. Microsoft is now looking to address those shortcomings. WSL GPU hardware acceleration To enable GPU hardware acceleration in WSL 2, Microsoft is implementing GPU Paravirtualization (GPU-PV) for Linux virtual machine (VM) guests. GPU virtualization is integrated into WDDM (Windows Display Driver Model) and is currently used for Windows Defender Application Guard, Windows Sandbox, and other apps. But right now, GPU virtualization only works in Windows guest VMs. In WDDM version 2. 9, Microsoft is adding GPU virtualization support for Linux VMs. WDDM version 2. 9 works with a new Linux kernel driver (Dxgkrnl) that uses the GPU-PV protocol to provide user mode Linux access to GPUs. If the host device has more than one GPU, all GPUs are available in the Linux environment, providing that all the GPUs are running WDDM version 2. 9 drivers or later. Image #1 Expand Microsoft Brining... --- ### Teams 3x3 Calls and Pop-Out Chat Arrive, OneNote Editing in Teams Returns - Published: 2020-05-26 - Modified: 2024-09-04 - URL: https://petri.com/teams-3x3-and-pop-out-chat-arrives-onenote-editing-in-teams-returns/ - Categories: Microsoft Teams, Office - Tags: Microsoft, Office 365, Teams - Article Type: Overview Microsoft has rolled out a bunch of new features in the last week, here's a recap of what functionality is new. Last week at build was filled with announcements for Microsoft Teams – but many of these will not be arriving in your Microsoft 365 tenant soon – with a few panned for much later in the year. On a weekly basis though there are new features – some announced recently and some a little further out, that you need to know about. Teams 3x3 video, pop-out chat, raise hand, in-meeting options and meeting attendance lists arrive and appear to complete roll-out Image #1 Expand Figure 1: Example of the 3x3 view in action (image credit: Steve Goodman) 3x3 Calling Now Available in Teams Over the last few months, Microsoft has been pushing out a number of long-delayed functionality such as pop-out chat demonstrated at Microsoft Ignite 2019, and 3x3 video – showing up to nine video streams at once. These finally arrived and completed the roll out globally to Microsoft Teams customers. Experience so far with the features show they work well – but highlight some of the performance issues Microsoft has been trying to solve over the life of Teams. While they might have attempted to improve performance issues for calls, adding new features like this does appear to be taking up more resources. I have had a few meetings over the last few weeks and found while Teams usually works well, it can begin to grind to a halt with multiple people’s videos on display and pop-out chats showing on a second... --- ### Consolidating File Servers with PowerShell and Robocopy - Published: 2020-05-26 - Modified: 2024-11-19 - URL: https://petri.com/consolidating-file-servers-with-powershell-and-robocopy/ - Categories: PowerShell - Tags: PowerShell - Article Type: How To File Servers - We all have them in one form or another. These servers tend to grow exponentially more critical than what we imagined when deploying them. They were also quite cumbersome to migrate until Microsoft released its Storage Migration Service. But there is one important scenario that it does not cover - consolidating multiple file servers into one. In this tutorial we will walk through how you can avoid unsupported versions of Windows and securing the availability to your file servers by consolidating them. Why should I consolidate my file servers? Many businesses have multiple (and sometimes dozens) of file servers created for different reasons throughout the years. But consolidating them into one or a few servers instead makes more sense now since networking and storage are both cheaper and faster than ever before. This decreases the time spent on managing them. You may also have a few file servers that is nearly empty since many companies utilize services like OneDrive and SharePoint for user data. Also, by migrating them to a clustered file server you can secure availability and utilize functions like Cluster-Aware Updating to automate patching without our users even noticing it. Now let's get started! Prerequisites In this article you will learn how to consolidate file servers. But keep in mind that your environment is unique and proceed with caution. What shares and folders you want to migrate is up to you! With that said there are a few prerequisites: Two or more file servers to... --- ### Lists or Tasks: Microsoft Gives Many Options to Office 365 Users > Microsoft Lists are coming to SharePoint Online. It's yet another way for Office 365 users to organize data and could cause some confusion with Tasks. - Published: 2020-05-26 - Modified: 2024-11-19 - URL: https://petri.com/modern-lists-sharepoint-online/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Microsoft Lists, Modern Lists, SharePoint Online, Teams Tasks, To-Do - Article Type: News, Opinion Should I Create a List or Some Tasks? Following Microsoft’s announcement about the new Lists application at the recent virtual Build conference, the thought might have crossed your mind that Microsoft 365 is accumulating too many ways to make lists. As in: Outlook tasks. To Do. Planner. OneNote. And that’s without counting Excel or Word, both of which are used by many people to organize work items. While some might, we won’t count Project because it is in a class of its own. Tasks in Teams Things get even murkier when you consider Tasks in Teams (Figure 1), a new major first-party app announced at the Ignite 2019 conference, described as “a cohesive task management experience that brings your tasks from Microsoft To Do and Planner into Teams. ” The last update for this initiative came on April 29 when Office 365 notification MC211421 said that “the Planner app in Teams will become the Tasks app” with roll-out expected in May or June to be complete by mid-July. Image 1 Expand Figure 1: The Teams Task app (image credit: Microsoft) The way things are lining up, it seems that the Microsoft 365 world will divide into those who use Lists and those who use Tasks. Tasks, the Substrate, and Teams At Ignite 2019, Microsoft spoke about the role of the substrate and how common objects (like messages and documents) could be stored in the substrate and exposed in different ways by different applications. Tasks falls into this category. Tasks are... --- ### How Does Microsoft 365 Universal Print Work? - Published: 2020-05-25 - Modified: 2024-11-19 - URL: https://petri.com/how-does-microsoft-365-universal-print-work/ - Categories: Microsoft 365 - Tags: Azure Active Directory, Hybrid Cloud Print, Microsoft 365, Universal Print, Windows Server Active Directory - Article Type: Overview Microsoft is hoping to make it easier for organizations to give Azure Active Directory (AAD) joined and MDM-managed devices access to printers. Brad Sams wrote earlier this year that Microsoft's Universal Print was entering private preview. In Microsoft's own words, here is a description of the service: Universal Print, is a Microsoft 365 cloud-based print infrastructure that will enable a simple, rich and secure print experience for users and reduce time and effort for IT. Windows 10 devices joined to Azure Active Directory (AAD) can already access printers installed on servers joined to Windows Server Active Directory (AD). So, where does Microsoft 365 Universal Print fit into the picture? Accessing Windows Server Active Directory resources In environments where Azure AD Connect is used to synchronize Windows Server Active Directory (AD) users to the cloud, devices joined to AAD can access AD resources. Windows 10 knows the AD domain name and uses it to search for available Windows Server domain controllers on the local network. If it finds one, Windows 10 is issued a Kerberos Ticket-Granting Ticket (TGT) so that it can access AD resources. Users can authenticate and access AD resources if they know where to find them. For example, if they have the UNC path to a file share or URL of a webserver using Windows integrated security. But without knowing the location or at least a name, locating AD resources isn't a smooth experience on AAD-joined devices because tools can't use LDAP to query AD. Hybrid Cloud Print To partly address this issue, Microsoft developed a solution called Hybrid Cloud Print to connect Azure AD joined devices, or... --- ### Understanding Windows 10 Always On VPN - Published: 2020-05-25 - Modified: 2024-09-04 - URL: https://petri.com/understanding-windows-10-always-on-vpn/ - Categories: Windows 10 - Tags: Always On VPN, DirectAccess, Remote Access, WFH, Windows 10, Windows Server - Article Type: Overview Microsoft Windows and Windows Server support a variety of different VPN technologies. The most advanced are DirectAccess and Windows 10 Always On VPN. In this article, I look at the advantages of Always On VPN over DirectAccess, and outline the infrastructure required to deploy Always On VPN. Virtual private networks (VPN) are a common way of allowing remote users to securely access resources behind a perimeter network. And as more employees are being asked to work from home, organizations need to provide effective but secure remote access. Microsoft Windows and Windows Server support a variety of different VPN technologies. The most advanced are DirectAccess and Windows 10 Always On VPN. In this article, I look at the advantages of Always On VPN over DirectAccess, and outline the infrastructure required to deploy Always On VPN. Windows 10 Always On VPN replaces Microsoft DirectAccess Microsoft DirectAccess is a VPN-like technology that works seamlessly for end users. It makes sure that client computers are always connected to the corporate network. But unlike traditional VPNs, users don't need to establish a connection to a server using a client. DirectAccess first appeared in Windows Server 2008 R2 for Windows 7 and Windows 8 Enterprise SKUs. Microsoft hasn’t committed to extending support for DirectAccess beyond the lifecycle of Windows Server 2019. It says that Windows 10 'Always On VPN' should be used as a replacement for DirectAccess. Windows 10 Always On VPN 'Always On VPN' has all the functionality of DirectAccess but it is easier to implement, manage, and has improved security. Always On VPN supports features like conditional access and system health checks using Network Policy Server (NPS). There is integration with Windows Hello for Business and Azure Multifactor Authentication, and much more. How does Windows 10 Always On VPN... --- ### Using Formatting Files with PowerShell 7 - Published: 2020-05-25 - Modified: 2024-09-04 - URL: https://petri.com/using-formatting-files-with-powershell-7/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To Any terminal output in PowerShell is controlled by formatting files. Oftentimes, it is very useful to display more information about a given object than the default views offer. Since the early days of PowerShell, there has been an option to modify this display by using Format. ps1xml files. The biggest change to formatting, in recent years, has been that PowerShell 6 defined all the default views for objects within the actual PowerShell source code. Prior to this, the views were defined in formatting files as well. Formatting File Structure The formatting file uses XML to define the views. Within the file, four different views can be defined. Table, which corresponds to the cmdlet Format-Table List, which corresponds to the cmdlet Format-List Wide, which corresponds to the cmdlet Format-Wide Custom, which corresponds to the cmdlet Format-Custom A typical format file uses the following XML tags to define a view.  is a unique identifier given to the view  defines what object type or types that the view applies to  will define how objects are grouped within a specified view , , , and  are tag containers for defining how each property of an object is displayed in the terminal Getting Started The easiest way to get started is to use a default view and then modify that view as necessary. Thankfully PowerShell offers us a few functions that make this process much easier. Get-FormatData Export-FormatData Update-FormatData Export Existing Format File In this article, we are going to update the display of the System. IO. FileInfo and... --- ### Split Tunnel VPNs Improve Performance of Cloud Apps for Remote Workers - Published: 2020-05-25 - Modified: 2024-09-04 - URL: https://petri.com/split-tunnel-vpns-improve-performance-of-cloud-apps-for-remote-workers/ - Categories: Remote Access - Tags: Azure VPN gateway, Microsoft Azure, Remote Access, Virtual Private Network, WFH, Zero Trust - Article Type: Overview VPNs are commonly used to give users working from home access to corporate resources. But traditional forced tunnel VPNs can have a significant impact on the performance of cloud services like Office 365. In this article, I look at the different ways VPNs can be configured for performance and security. Virtual private networks (VPN) are still the mainstay for providing users with remote access to corporate resources when working from home. But with remote access networks under more strain due to the global health pandemic, many employees are experiencing poor performance of cloud-based apps. Performance issues are usually caused by the way VPNs are configured using forced tunnels. But there are several options for configuring VPNs that can improve performance of cloud apps while still providing access to resources on the corporate intranet. Forced tunnel VPNs The most common configuration for a VPN is a forced tunnel. Forced tunnels route all traffic into the corporate network, regardless of where resources are located. For instance, a remote user who accesses Office 365 will experience a performance hit if connected to the corporate network via a forced tunnel VPN. Forced tunnels route traffic destined for Office 365, and all other Internet resources, into the corporate network first before forwarding to the public Internet. As you can imagine, this causes an additional load on the VPN and other network devices that might be used to manage Internet access. Forced tunnel VPNs 'backhaul' Internet traffic through the corporate network so that it can be filtered and inspected to protect endpoints. But as many organizations rely on cloud apps, like Office 365 and line-of-business apps that might have been moved to the cloud, performance suffers when network traffic for these apps is routed through the corporate network. Image #1 Expand Split Tunnel VPNs... --- ### How is COVID-19 Impacting Your Role as an IT Pro? - Published: 2020-05-25 - Modified: 2020-05-25 - URL: https://petri.com/how-is-covid-19-impacting-your-role-as-an-it-pro/ - Categories: Main - Tags: COVID-19 - Article Type: Overview Around the globe, IT Pros are facing unprecedented challenges in their environments. From supporting hundreds, if not thousands, of newly-remote workers, handling a significant increase in VPN connections or trying to backup data that is outside the firewall – for many of us, we are in uncharted waters. At Petri, our mission is to create content that helps our fellow IT Pros expand their knowledge and help them run their environments more efficiently. From helping you purge unwanted messages from Exchange Online mailboxes to setting up a server in Windows Admin Center – we write to help you. And now we need your help. COVID-19 is changing how IT Pros operate and we want to make sure we are providing the content that you need to work effectively, efficiently, and securely. Below is a short survey, takes about 3 minutes, and if you enter your email address at the end, you will have a chance at winning a $150 Amazon gift card to one entrant; one entry per user.  --- ### Contextual Search is Finally Coming to Teams Chat and Channels - Published: 2020-05-24 - Modified: 2024-09-04 - URL: https://petri.com/contextual-search-is-finally-coming-to-teams-chat-and-channels/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News It’s not too often that you realize an application that you are using frequently is missing some basic functionality. Especially with Teams, an application that is used by more than 75 million people every single day. But that’s the case with the search inside of Teams. While you can search from the top of the app or enter a command, using that search feature doesn’t confine the results to a specific conversation. The company announced today that contextual search is on the way and it will work exactly as you would hope. Image #1 Expand New contextual search experience coming to Teams this summer. This new contextual search will work by hitting CNTRL+F on Windows or CMD+F on a Mac and will let you search inside a specific conversation or Teams channel for content. But the bad news here is that this feature will not start rolling out until late June with expected completion sometime in July. But later is better than never and having the ability to refine your own search instead of depending on the wider net that is currently available in Teams is a good update. It does seem a bit befuddling that this functionality hasn’t existed as the app isn’t exactly the new kid on the block. If you are lucky, around the same time that Skype/Teams interoperability finally arrives, you will also have the new search experience too. That being said, we all need to be patient while we wait for these features to arrive. --- ### How to Use Windows Package Manager - Published: 2020-05-24 - Modified: 2024-11-19 - URL: https://petri.com/how-to-use-windows-package-manager/ - Categories: Windows 10, Windows Client OS - Tags: Build 2020, Microsoft, Windows Package Manager - Article Type: How To Microsoft recently announced at Build 2020 that it is working on a native open-source package manager for Windows. Due to hit general availability in May 2021, Windows Package Manager is now accessible on GitHub and for Windows Insiders in preview. In this article, I will show you how to use Windows Package Manager (WPM) to search the repository and install apps. For more information on the Build announcement, see Microsoft is Finally Building a Native Package Manager in Windows on Petri. Before you start using WPM, bear in mind that this is a preview version of WPM and much of the functionality is yet to be fleshed out. How to get Windows Package Manager Before you can use Windows Package Manager, you need to install it on your system. WPM consists of two components: the Package Manager service and the winget client tool. Winget is included in the preview version of App Installer, which is an app available via the Microsoft Store. To get the preview version of App Installer, the device on which you install it must be registered for Windows Insider updates. For complete instructions on how to become a Windows Insider and register a device for Windows Insider updates, see Microsoft’s website here. Get Windows Package Manager from the Microsoft Store Getting WPM from the Microsoft Store is the recommended method. To download the preview version of App Installer, follow these instructions: Type store into the search box in the bottom left of the taskbar and click Microsoft... --- ### Improving VDI Performance with MSIX App Attach - Published: 2020-05-24 - Modified: 2023-09-01 - URL: https://petri.com/improving-vdi-performance-with-msix-app-attach/ - Categories: Windows Server - Tags: MSIX App Attach, VDI, Windows MSIX is a new installer technology for Windows that first appeared in Windows 10 version 1809 and it was later backported to Windows 10 versions 1709 and 1803. It replaces Windows Installer (MSI) and the APPX packaging format previously used for Store apps. MSIX works with all Win32, WPF, Windows Forms, and Universal Windows Platform (Store) applications. It provides modern features like robust updating, a managed security model with flexible capabilities, containerization, support for the Microsoft Store, enterprise management, and custom distribution models. For more information on MSIX, see Improve Windows Enterprise Application Deployment Reliability and Security using MSIX and MSIX Core Coming to Windows 7 and 8. 1 in December, Plus New Features on the Horizon on Petri. MSIX App Attach borrows ideas from User Profile Disks and FSLogix Profile Containers MSIX App Attach is a complimentary feature for Windows Server Remote Desktop Services (RDS) and Windows Virtual Desktop (WVD) that Microsoft has been working on since at least 2019. Currently in public preview, App Attach performs a function like User Profile Disk (UPD) and FSLogix Profile Containers, except for applications. Both UPD and FSLogix Profile Containers store user profiles in a single. VHDX file that is mounted automatically when users log on to a remote desktop session. While there are other ways to store user profiles separately from the operating system, like roaming profiles, UPD and Profile Containers solve several problems associated with roaming profiles and folder redirection: Simpler configuration and deployment Logon and logoff times reduced Can’t be corrupted because they... --- ### Teams/Skype Interoperability has Been Delayed - Published: 2020-05-24 - Modified: 2020-05-24 - URL: https://petri.com/teams-skype-interoperability-has-been-delayed/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News One of the big feature updates coming to Teams that many have been waiting for is the ability to chat with Skype contacts inside the Teams application. Microsoft stated that this feature would be available by the end of April but that timeline has come and gone. The company has posted a new message to its admin center and says that the initial feedback from the early adopters was sub-optimal. Because of this, the company is delaying the rollout completion to the end of June as they make changes to the code that is enabling the federation. This isn’t a significant delay but for those who are waiting for the functionality, like myself, it is a bit frustrating. That being said, if the functionality is riddled with bugs, waiting another month or two isn’t nearly as bad as having a poor user experience. Teams/Skype federation began rolling out in March of 2020 and initially, I did have some access to the feature. What was odd, and is potentially a reason for the delay, is that to find my account when searching inside of Teams, you had to search for the original account I used to sign up for MSN messenger with, pre-Skype merger. Yes, you read that correctly. My Skype username, which is now my MSA, after migrating it from my old MSN credentials, would not surface my account. Searching for the username I used, about a decade ago, for my MSN account would locate my Skype name; hopefully, this is one of the... --- ### Use PowerShell to Fetch Account SignIn Data from the Graph > You can use the Graph API to retrieve sign-in information about guest accounts and use the data to figure out if any accounts should be removed from your tenant. - Published: 2020-05-21 - Modified: 2024-09-04 - URL: https://petri.com/use-powershell-fetch-account-signin-data-from-graph/ - Categories: Microsoft 365, Office, Uncategorized - Tags: Azure AD, Graph API, Guest Accounts, PowerShell, Sign-ins - Article Type: How To Tracking Down Obsolete Accounts Last December, I wrote about how the problem of identifying obsolete guest accounts that exist in an Office 365 tenant. An increasing number of applications support Azure B2B Collaboration and create guest accounts to allow external people to access content. Teams is a great example, as are the sharing links used by SharePoint Online and OneDrive for Business. The article describes how to use data from the Office 365 audit log and message tracking logs to figure out if guest accounts are active. The idea is that if a guest account is not used, it becomes a candidate for removal. I say only a candidate because deletion of a guest account removes access to anything that account has in a tenant, including document and folder shares. My original script works great. To make it even better, I could exploit a Microsoft Graph API call to fetch user signin data from Azure Active Directory. To use the Graph call in PowerShell, I need to create a registered app to access the Graph (see this article to learn the basics of using PowerShell with the Graph) to fetch and unpack the data. Fetching Signin Data from the Graph The call to fetch signin data is something like this: $URI = "https://graph. microsoft. com/beta/users? `$select=displayName,userPrincipalName, mail, id, CreatedDateTime, signInActivity, UserType&`$top=999" $SignInData = (Invoke-RestMethod -Uri $URI -Headers $Headers -Method Get -ContentType "application/json") This code tells the beta version of the Graph Users API that I want a set of properties for... --- ### Microsoft is Finally Building a Native Package Manager in Windows - Published: 2020-05-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-finally-building-a-native-package-manager-in-windows/ - Categories: Windows Client OS - Tags: Build 2020, News, Windows Package Manager - Article Type: News If you read the headline and thought that this was some sort of an elaborate joke, this is not a drill. After years of developers asking Microsoft to build a package manager into Windows, those requests are finally being answered. Announced at Build 2020, the company is releasing a preview of the Windows Package Manager. For those not familiar, a packet manager makes it easier to automate the process of getting software on to your machine using a CLI (command-line interface). Starting today, you can use Windows Packet Manager which is being hosted on GitHub. In addition, the company is also making the tool open source which means that it is easy to contribute applications to the manager if you find that a feature is missing. Image #1 Expand With this release, you can install any application that has a valid manifest, including local applications. You can also search for available packages and display information about it the package with the following commands: install, search, show. And there are other basic features including adding third-party repositories and the ability to help with manifest creation and validation (hash and validate). If you want to try it out today, you can head over to the GitHub for the client, if you are on any of the Insider rings, you may already have it, and the last option is to email  with your MSA. One of the reasons that Microsoft decided not to contribute to other solutions is security. The company says that they are automatically... --- ### Microsoft to Developers: Project Reunion is the Best Path Forward - Published: 2020-05-19 - Modified: 2020-05-19 - URL: https://petri.com/microsoft-to-developers-project-reunion-is-the-best-path-forward/ - Categories: Visual Studio - Tags: Build 2020, Microsoft, Project Reunion - Article Type: News Microsoft has a dream, a dream that developers will build apps for all of its platforms with a single base of code. The company, for years, pitched the write once, run anywhere, idea to developers of Windows applications but the dream never materialized in a way that was widely adopted. The most notable attempt at this is the company’s UWP platform that was charged with the task of creating a type of application that was safe, in the store, and available on all types of devices. But as the company’s mobile platform flatlined and the only ‘real’ Windows device that everyone is using today is a PC. For the past couple of years, Microsoft has been slowly trying to modernize legacy apps with various “bridges” but the efforts have come up short. Further, the Microsoft Store was once a place only for UWP applications but that mandate has slowly fallen with some Win32 apps allowed in the store. Which brings us to the announcements coming at Build 2020. The company is announcing project Reunion that as the name sounds, will bring Win32 and UWP applications much closer together. So what does Reunion do? It continues the work the company has already started with the unification of UWP and Win32 APIs by making them decoupled from the OS, via tools like NuGet.  The result is a common platform for new apps and this should help with updating older apps, to new modern APIs, as well. Microsoft is doing this so that... --- ### Microsoft Lists: A New Task Tracking App for Microsoft 365 - Published: 2020-05-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lists-a-new-task-tracking-app-for-microsoft-365/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, Office 365 - Article Type: News In the Microsoft portfolio, the company has several planning applications including To Do, Planner, Tasks, and previously Wunderlist. At Build 2020, they are announcing other list-style application called Microsoft Lists. Lists, as the name implies, is designed to help you manage information and organize your tasks. The app has several different access points including web, stand-alone apps and you can also access Lists inside of SharePoint and Teams. The new app is quite robust for the first iteration, at least it appears that way based on what was announced today, with features and UI that looks mature. The app is designed to help companies of all sizes stay organized with lists that you can create from scratch, use pre-built templates for many different scenarios, use conditional rules (if/then) to change statuses, and an API that can be utilized by the Power Automate tools. Image #1 Expand While the pre-made templates will be useful, I suspect that for many, it’s the ability to create new Lists and replicate them again for similar tasks that will be most helpful. When the app does launch, you will be able to copy a pre-made list as well as create a list in Excel and import it into Lists. The view of Lists can also be customized to fit your business needs and with three different options – Grid, gallery, and calendar. There are also options to enable conditional formatting, custom filtering for your view, and the company is promising a “No compromises” experience with... --- ### Enforce MFA for SharePoint Online Sites with Conditional Access Policies > Microsoft is previewing an Azure AD conditional access policy to block access to SharePoint Online sites unless accounts are protected with MFA. - Published: 2020-05-19 - Modified: 2024-09-04 - URL: https://petri.com/enforce-mfa-sharepoint-online-sites-conditional-access-policies/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office, SharePoint Online - Tags: Azure Active Directory Conditional Access, Azure AD, MFA, Multi-Factor Authentication, SharePoint Online - Article Type: How To, News Securing Confidential SharePoint Online Data SharePoint Online sites hold some very confidential information. Now that SharePoint Online supports sensitivity labels, you can protect individual documents with encryption to stop their contents leaking. Other features, like regarding newly uploaded documents sensitive by default to stop them being shared externally until Data Loss Prevention (DLP) processing completes, help too, as do normal DLP policies. All of this is good, but a compromised account can still access sites and download information. And the quickest way to being compromised is for an account not to use multi-factor authentication (MFA). Microsoft says that MFA blocks 99. 9% of account compromise accounts. According to a Microsoft session at the RSA Conference 2020, in January 2020 only 11% of enterprise Office 365 accounts were enabled for MFA. This is a real problem. Conditional Access Policy for SharePoint Online To encourage people to use MFA to secure confidential documents and increase the overall security posture of SharePoint Online, tenants can deploy Azure Active Directory conditional access (CA) policies to enforce MFA for specific sites. The technology is available in preview now with general availability slated for later this summer. The CA policy controls user access to data with MFA and can be assigned to all users in the tenant or selected accounts. Figure 1 shows the general structure of such a policy and the configuration for actions, how access is granted, and the users coming within scope of the policy. You can also see that the policy... --- ### Microsoft 365’s Fluid Framework takes a Step Forward, Goes Open Source - Published: 2020-05-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365s-fluid-framework-takes-a-step-forward-goes-open-source/ - Categories: Office - Tags: Build 2020, Fluid Framework, Microsoft - Article Type: News At Ignite 2019, Microsoft announced a public preview of the company’s upcoming Fluid Framework. Since that announcement, the noise around the framework has been nearly silent aside from an early, but very limited look, at the functionality a few months back. This week at Build 2020, the company is once again talking about Fluid Framework and the next steps for the technology. The big announcement is that the Framework is going open-source and also that the first end-user experiences will be coming online soon. The first features include basic text, tables, lists, agendas, and action items. These features are part of Fluid Workspaces which can be a bit confusing but let me try to explain. Microsoft is removing the ‘app’ requirement to use features and tools that have historically been locked inside of Office applications. The Fluid components, like text and tables, can live inside of Fluid Workspaces and the first fluid Workspaces that will be available will be inside Outlook for the web and Office. com What this allows you to do is to bring ‘live’ information to workspaces by updating a single instance. For example, you could insert a chart in Outlook for the Web and the same chart on Office. com and when you update it in one location, it is updated instantaneously in the other location. Fluid Framework is certainly taking its time to arrive but this is a big push for Microsoft to bring it’s productivity and collaboration chops outside of the traditional Excel/Word/PowerPoint applications. With these web-native components,... --- ### What’s New in Teams at Build 2020: Templates, Broadcasting, APIs, and More - Published: 2020-05-18 - Modified: 2020-05-18 - URL: https://petri.com/whats-new-in-teams-at-build-2020-templates-broadcasting-apis-and-more/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Build 2020, Microsoft, Teams - Article Type: News This week, Microsoft’s Build conference is happening and the company is making announcements from updates to Windows development to new API features in Office. For users of Teams, and more specifically developers of apps for Teams, there are updates that you should know about. Microsoft has announced new extensions for both Visual Studio and Visual Studio Code that will make it possible to build apps for Teams with the tools that you are already using. Using these extensions, you will be able to publish apps directly to AppSource or your own org’s app catalog. With the new apps and functionality, there are also two new options for developers to utilize to make the use of apps easier inside of Teams: Single sign-on will enable users to authenticate in one click for the apps they use in Teams. The Teams Activity Feed API gives developers a new and simpler way to send app notifications to users across their devices. When it comes to managing these new applications, IT admins will soon have access to a new area inside of the Teams admin center that will let you not only manage the application but also purchasing licenses as well. In this new interface, the admin will also validate and approve line-of-business applications and pre-install ISV or line-of-business apps for their users. One other update for apps is that Microsoft is making changes to search and suggestions to help surface more relevant content for the user. Coming later this year, Microsoft is improving... --- ### Surface Go 2 Review: Firstline, First - Published: 2020-05-18 - Modified: 2024-09-04 - URL: https://petri.com/surface-go-2-review-firstline-first/ - Categories: Hardware - Tags: Surface, Surface Go, Surface Go 2 - Article Type: Review There are a lot of ways you can look at the Surface Go. Is it a consumer device, a firstline worker piece of hardware, both or neither? For this review, I’m focusing more on the firstline worker scenario. While there are certainly consumers who can and should buy this PC, the workplace and specifically, the firstline worker, is a targeted scenario for this device and that’s where I will put the focus. So what is a firstline worker? Microsoft looks at this person as typically someone on the frontlines of the workforce. While you may first think of someone in retail, it’s also doctors, nurses, mechanics, technicians, and the list goes on and on. Image #1 Expand In addition, these users also frequently share hardware, are on the move most of the day, and have very specific needs. And those needs are usually interacting with an interface for inputting data: sales, health information, product count, etc. And when you frame up the Go for this type of scenario, it’s a good piece of hardware. With the same footprint as the previous generation but with a larger screen, data entry using a Surface pen is easy and it’s a lightweight device to carry all day. And that larger screen, image down below, really does make the device look more modern; not as modern as the Pro X but it’s a good improvement. The CPUs in the device range from a paltry Pentium Gold 4425Y to a more respectable m3-8100Y. While the... --- ### Yammer Previews Fluent User Interface > The new Yammer user interface is in preview. The new approach is based on Microsoft's Fluid Design System and it's better in some parts than in others. - Published: 2020-05-14 - Modified: 2024-09-04 - URL: https://petri.com/yammer-preview-fluent-design/ - Categories: Microsoft 365, Office, Yammer - Tags: Fluid Design System, Preview, User Interface, Yammer - Article Type: News Year of Yammer Keeps on Rolling Seven months after Microsoft declared the “Year of Yammer,” a public preview of a much-hyped (at Ignite 2019) new user interface is available to Office 365 tenants. General availability of the new Yammer is expected in July 2020. The new interface is already available in the Yammer mobile app and leverages the Fluent Design system to create what Microsoft says is a “beautiful, intelligent user experience across devices. ” Before going into the details of the preview, I’d like to thank Murali Sitaram, GM of Yammer, for resisting the temptation to refer to “superpower” in his post. For those who don’t know, software doesn’t have superpowers, not even if you work in marketing. New Features Apart from the general usability and appearance of the new interface, among the features highlighted by Microsoft in the preview are: Community owners can add a cover photo to highlight the purpose of the community (Microsoft announced that they would rename Yammer groups as communities at Ignite 2019 and made the change in February). Users can report conversations to community owners (like Facebook). Users can mark communities as favorites to have them appear at the top of the communities list. A new editor and sharing options. You can browse your device to find files to share (uploaded to SharePoint Online), but you can’t browse SharePoint Online or OneDrive for Business libraries unless they’re synchronized to your workstation. Microsoft Search appears in the browser bar. The user profile card... --- ### Surface Book 3: Unboxing and Hands-On - Published: 2020-05-12 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-3-unboxing-and-hands-on/ - Categories: Hardware - Tags: Microsoft, Surface, Surface Book 3 - Article Type: Review This week, Microsoft has made available several Surface devices, like the brand new Surface Go 2. But arriving at my office today, is the other end of the spectrum, the Surface Book 3. The Book series from Microsoft is a high-end device that is designed for creative and other professionals who need workstation-class hardware in a mobile form factor. With the Book 2 showing its age, the Book 3 doesn’t try to reinvent the wheel but it does bump the specs quite a bit.  On the device that Microsoft sent me for review purposes, the hardware is configured with Quad-core 10th Gen Intel  Core i7-1065G7 CPU, NVIDIA GTX 1660Ti, 32 GB of RAM and a 500GB SSD. And with a price tag of $2799, it’s not cheap, but at the same time, there is a lot of performance packed behind the display. --- ### Reply-All Storm Suppression Only for Large Cloud Tenants > Exchange Online now boasts the abiliity to suppress reply-all email storms. This is good, but it's taken Microsoft a long time to develop and it's only for the enterprise. - Published: 2020-05-12 - Modified: 2020-05-12 - URL: https://petri.com/reply-all-storm-suppression-only-for-large-cloud-tenants/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Reply-All Storm - Article Type: News Publicity for Exchange for a Change I’ve been impressed by the amount of coverage given by mainstream IT reporters to Thursday’s announcement by the Exchange development group that they are rolling out a feature to suppress Reply-All storms. Few of the recent announcements by the Exchange group have received such attention, possibly because Teams hoovers up so much press interest with a constant stream of new features. In this case, the interest is probably because people remember the 1997 “bedlam DL3” email storm. It’s the stuff of email legend. But it happened so long ago (when we used Exchange 5. 0 and 5. 5 servers and X. 400-based MTAs) that the only surprising thing about this announcement is why it has taken Microsoft twenty-three years to come up with a technique to suppress email storms. Maybe it’s because an email storm for servers powered by early Pentium CPUs was a more serious problem than it is for a cloud service. Hundreds of thousands of mailbox servers come in handy sometimes. Technology Stops People Doing Silly Things Even in the era of the cloud, the root cause of the problem (user stupidity) hasn’t gone away. People are still likely to do silly things with technology, which is why it’s best when technology improves to stop people doing things they shouldn’t. For instance, Exchange 2010 introduced Mail Tips to advise users of conditions like sending messages to large distributions. It’s also the reason why Data Loss Prevention policies exist to stop people sending... --- ### Intel's Latest 10th-Gen vPro CPUs Get Mandatory Hardware Shield - Published: 2020-05-08 - Modified: 2024-09-04 - URL: https://petri.com/intels-latest-10th-gen-vpro-cpus-get-mandatory-hardware-shield/ - Categories: Security - Tags: Intel, Security, Windows 10 - Article Type: News Intel releases 27 10th generation CPUs for desktop and mobile with Hardware Shield to improve remote worker security. Intel Hardware Shield isn't new to vPro-badged chips but in this latest release it is being made mandatory. Hardware Shield provides protection against firmware-level attacks. It ensures that the operating system runs on legitimate hardware and unmodified firmware. And it also provides hardware-to-software security visibility, allowing organizations to enforce a more comprehensive security policy without requiring any additional infrastructure. Intel's General Manager and Vice President for business client platforms, Stephanie Hallford, said "We do a series of recommended and required specifications in order to be badged Intel vPro platform and with this round ... we're actually requiring that Intel hardware shield and the technologies under that are a requirement in order to get that badge. " These two features are provided by dynamic root of trust for measurement (DRTM). Sometimes referred to as Secure Launch by Microsoft, DRTM launches the PC into a trusted state and transfers control from the processor directly to the Windows 10 hypervisor loader using a secured and measured handoff process. Intel says that Hardware Shield reinforces virtualization-based security (VBS) to protect computers at runtime, including support for Secure Boot. Hardware Shield helps to minimize the risk of malicious code injection by locking down BIOS memory to stop malware infecting the operating system. Intel Hardware Shield powers Microsoft Windows 10 Secured-Core PCs In 2019, Microsoft launched a new initiative called Secured-Core PCs. Devices must meet standards that follow isolation best practices and have minimal trust of firmware. Microsoft says that Secured-Core PCs are intended for industries whose... --- ### Patch Tuesday – May 2020 - Published: 2020-05-08 - Modified: 2020-05-08 - URL: https://petri.com/patch-tuesday-may-2020/ - Categories: Windows 10 - Tags: Patch Tuesday - Article Type: News Microsoft issues fixes for 111 vulnerabilities, making this month the third biggest set of patches in Microsoft's history. May's Patch Tuesday sees Microsoft issues fixes for a whopping 111 vulnerabilities, making this month the third biggest set of patches in Microsoft's history. That said, there are no zero-day flaws. Let's start with Windows 10 and Windows Server. Windows 10 and Windows Server This month there are 5 critical remote code execution (RCE) flaws in Windows 10 patched by Microsoft. 3 are memory corruption vulnerabilities in Windows Media Foundation. Attackers could exploit the vulnerabilities to install programs; view, change, or delete data; or create new accounts with full user rights. Users would need to visit a specially crafted website or open an infected document to fall victim. The remaining 2 bugs are in the Color Management Module (ICM32. dll) and Microsoft Graphics Components. The ICM32. dll vulnerability could let an attacker create new accounts with full user rights. Users without admin privileges are less likely to be impacted. The Microsoft Graphics Components vulnerability could let an attacker run arbitrary code on the affected system if the user opened a specially crafted file. Of the remaining 73 patches, which are rated Important, 53 address elevation of privilege (EoP) bugs and 6 RCE flaws. CVE-2020-1067 is an RCE bug that could let an attacker with a domain account run arbitrary code with elevated permissions. Microsoft Edge and Internet Explorer Legacy Edge gets three critical patches for 2 RCEs and 1 EoP. There's one RCE bug rated Important (CVE-2020-1096) in Edge's PDF reader. It could let an attacker run arbitrary code in... --- ### Microsoft Announces Azure Active Directory External Identities - Published: 2020-05-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-azure-active-directory-external-identities/ - Categories: Microsoft Azure - Tags: Azure Active Directory, cloud computing, Microsoft Azure - Article Type: News Azure AD External Identities, now in public preview, brings easier authentication for users, organizations, and developers. Microsoft announced a new set of features at Build 2020 for Azure Active Directory (AD) that are now in public preview. Azure AD External Identities aims to make it easier for organizations and developers to authenticate external users. Microsoft says that it is especially important currently because more users are working remotely due to the COVID-19 pandemic. But at the same time, IT is being asked to cut back because of reduced budgets while having to deal with a growing external user base. External Identities brings new features to Azure AD in public preview External Identities is based on the Microsoft identity platform. The platform lets developers integrate applications with a single toolkit. Furthermore, External Identities works without changing anything in code. Organizations can start testing External Identities straight away. Self-service sign-up and sign-in for applications allows users to create an account in an application using Google and Facebook IDs, and other identity providers that are already supported by Azure AD. Image # Expand Microsoft Announces Azure Active Directory External Identities (Image Credit: Microsoft)   Additionally, custom attributes let developers collect information about users during the sign-up process. And API connectors can be used to call to web APIs during the authentication process. API connectors might be used to integrate with a preexisting authorization process for example, before an account is approved for use. Here is a complete list of the features either already in preview or coming soon: Integration with social identity providers Custom user attributes API connectors to... --- ### Windows Terminal Reaches General Availability - Published: 2020-05-08 - Modified: 2024-09-04 - URL: https://petri.com/windows-terminal-reaches-general-availability/ - Categories: Windows 10 - Tags: Windows 10, Windows Terminal - Article Type: News Microsoft releases Windows Terminal version 1.0 at Build 2020. First announced at Build in Seattle last year, Windows Terminal was supposed to reach general availability in January 2020. I guess better late than never. Windows Terminal is designed to replace the command console that’s built into Windows 10. Microsoft said back in 2019 that it had reached the end of the road with the current console. While it has seen some minor improvements over the last couple of years, new features can't be added without breaking backwards compatibility. A terminal may not seem especially vital considering most Windows users only interact with the GUI. But for system administrators, and more importantly with this release developers, a modern and functional native terminal is important. Microsoft is trying to keep developers on Windows, regardless of the platforms they are coding for. Windows Terminal and Windows Subsystem for Linux (WSL) are both intended to boost that effort. The cloud has changed the way apps are designed, developed, and maintained. Linux provides a lightweight and flexible alternative to Windows that is attractive for cloud-born apps. And Windows Terminal gives developers seamless access to WSL environments with all the features expected in a modern terminal. Windows Terminal can be downloaded from the Microsoft Store or from GitHub. Image # Expand Windows Terminal Reaches General Availability (Image Credit: Russell Smith) Windows Terminal features There are several important features that differentiate Windows Terminal from the existing console: Tabs and panes GPU accelerated DirectWrite/DirectX-based text rendering Settings and configurability Monthly updates, starting in July 2020 A preview... --- ### How to Block Email Forwarding in Exchange Online > After stopping OWA users autoforwarding, other steps are necessary to stop clients forwarding email from Exchange Online mailboxes. - Published: 2020-05-07 - Modified: 2024-09-04 - URL: https://petri.com/blocking-email-forwarding-part2/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Block Email Forwarding, Exchange Online - Article Type: How To The first article in this series discussed how to remove the ability of OWA users to create autoforwarding addresses. This does a lot to stop the forwarding of email outside an organization, but OWA is only one part of the problem. We also need to deal with the other ways that messages can be automatically forwarded to external addresses. For instance, Outlook rules can forward messages. It’s possible to use PowerShell to scan every mailbox for forwarding rules, but that could take a lot of processing that we would have to do on an ongoing basis. Let’s consider some more robust methods to block outbound automatic forwarding. Blocking by Domains Blocking by domain is an effective method to stop autoforwarded messages. Blocking is implemented using the Set-RemoteDomain cmdlet (or, in EAC by editing remote domain setting under Mail Flow). This command stops email autoforwarding to any domain except when explicit settings exist to allow forwarding to a domain. Set-RemoteDomain -Identity Default -AutoForwardEnabled $False To check if any domain allows autoforwarding, run this command: Get-RemoteDomain |? {$_. AutoForwardEnabled -eq $True}| Format-Table DomainName, AutoReplyEnabled DomainName AutoReplyEnabled ---------- ---------------- Contoso. com True Finding Dropped Messages Administrators can see if a message is blocking by running a message trace using PowerShell or the Message Trace GUI in the Compliance Center (Figure 1). Image 1 Expand Figure 1: Evidence that Exchange Online dropped an autoforwarded message (image credit: Tony Redmond) Given the number of messages that pass through a tenant daily, it’s easier to find the drop... --- ### Microsoft has 2 New Surface Docks, Surface Headphones Updated - Published: 2020-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-2-new-surface-docks-surface-headphones-updated/ - Categories: Hardware - Tags: Surface Dock, Surface Dock 2, Surface Headphones, Surface Travel Hub - Article Type: News For Surface fans, today has been a big day with the announcement of the Surface Go 2 that has a larger display and the Surface Book 3 with updated internals. Along with the new PCs, the company is announcing several new peripherals that IT Pros are likely interested in exploring. There are two new docks from the Surface team, one is an update to the existing dock and there is also a new “Travel” hub as well. Both of these devices will start shipping later this month in select markets. Surface Dock 2 Image #1 Expand The Surface Dock 2 is very similar to the first-generation dock but it delivers faster charging, higher data transfer rates, and new enterprise management tools to support the dock. The device has a total of 4 USB-C ports, 2 USB-A 3. 2 ports, and 1 Gigabit Ethernet Port. Not every Surface can utilize this dock, with Microsoft saying that the Surface Studio, Surface Hub, Pro 3/4, and Surface Book 1 are not compatible. If your hardware is supported, the Surface Dock 2 will set you back $259. 99 Surface Travel Hub Image #2 Expand The new Travel Hub is a USB-C dock that will work with any Surface or modern PC (ChromeOS and macOS are supported) that has the port. Included in the peripheral is 1 USB-C port, 1 USB-A 3. 2 port, 1 Gigabit Ethernet port, HDMI 2. 0 Port, and a VGA port. The hub does support accessory charging but will not be able to charge a laptop;... --- ### Hands-on with the Surface Go 2 - Published: 2020-05-06 - Modified: 2020-05-06 - URL: https://petri.com/hands-on-with-the-surface-go-2/ - Categories: Hardware - Tags: Surface Go 2 - Article Type: Review Today’s the day, the Surface Go 2 is here, and in the not too distant future, so will the Surface Book 3. For now, I am going to focus on the Go 2 as that’s the device in my hands and it is also the lowest-priced Surface you can buy today. The Surface Go 2 starts at $399 and goes north from there but at that price, you get a Pentium Gold 4425Y but if you spend a little bit more, you can get an 8th Gen Core m3 process which is what my review unit has behind the glass. You can also opt for either WiFi or LTE as well but there are no 5G options.  There is one primary difference, aside from the bumped internal specs, when compared to the first-generation device: the screen is larger and comes in at 10. 5inches versus the original Go’s 10in display. You can watch the video above for a bit more information about the device and my first impressions, a much deeper review will be coming in about a week. At first glance, the Go 2 is a good upgrade over the original Go but I need more time to do performance benchmarking to see how much better the paper improvements materialize in the real world. I have always liked the size of the Go and the slightly larger screen is welcomed; it’s a device for the education segment or first-line workers. Especially since it’s still in the same chassis as the... --- ### Stop OWA Users Autoforwarding Email > How to use Role Based Access Control to block users having the ability to set an email forward address from OWA. - Published: 2020-05-05 - Modified: 2024-09-04 - URL: https://petri.com/stop-owa-users-autoforwarding-email/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, owa, RBAC, Role-Based Access Control - Article Type: How To Autoforwarding is Badness Allowing users to forward their email outside Exchange Online is bad, especially if they don’t keep a copy of the forwarded messages in their mailbox. Apart from removing email from the controls imposed by data governance policies, it creates a risk that confidential information travels outside the organization, including when an attacker hacks into a mailbox and set forwarding on without the knowledge of the mailbox owner. This is done to understand the traffic that the hacked user receives in preparation to execute a business email compromise attack. In this two-part series, I first look at how to restrict OWA users from creating autoforward addresses using RBAC. The second article describes some other blocks that apply to all clients to stop email leaking from the organization. Who’s Autoforwarding? Forwarding is a server function, so once a user sets up a forwarding address in OWA, any email coming into the mailbox is forwarded. To find out if mail is currently being forwarded, run the command: Get-Mailbox -RecipientTypeDetails UserMailbox -Filter {ForwardingSmtpAddress -ne $Null} -ResultSize Unlimited | Format-Table DisplayName, ForwardingSmtpAddress, DeliverToMailboxAndForward -AutoSize DisplayName ForwardingSmtpAddress DeliverToMailboxAndForward ----------- --------------------- -------------------------- Vasil Michev (Technical Guru) smtp:vasil@contoso. com True Ståle Hansen smtp:stale. hansen@fabrikam. com True Eoin Redmond smtp:Eoin@contoso. com You can take steps to resist attacks by coaching users, but it’s better to cut off the ability to forward email. We can do this by creating a new user role assignment policy that doesn’t include the cmdlet parameters needed by a user to create an autoforward... . --- ### Interpreting the Office 365 MailItemsAccessed Audit Event > If you have Office 365 E5 licenses, your mailboxes generate MailItemsAccessed events. These events are stored in the Office 365 audit log and can be used for investigating potentially compromised mailboxes. - Published: 2020-04-28 - Modified: 2024-09-04 - URL: https://petri.com/interpreting-the-office-365-mailitemsaccessed-audit-event/ - Categories: Microsoft 365, Office - Tags: Forensics, MailItemsAccessed, Office 365 Audit Log, PowerShell - Article Type: How To If you have Office 365 E5 licenses, your mailboxes generate MailItemsAccessed events. These events are stored in the Office 365 audit log and can be used for investigating potentially compromised mailboxes. Useful information is in the audit events, but some processing is needed to extract the full benefit. Here's how to do it with PowerShell. Crucial Office 365 Forensics Events The MailItemsAccessed event is the first crucial (sometimes called high-value) audit event introduced as part of Microsoft 365 Advanced Audit (or auditing). Its introduction was neither smooth nor uncomplicated and contributed to some of the issues around Exchange Online mailbox auditing experienced over the last year. MailItemsAccessed audit events are now showing in tenants, and I wanted to find out how useful these events are when investigating compromised accounts. E5 Licenses Needed The MailItemsAccessed event is generated when licensed users access items in Exchange Online mailboxes using any connectivity protocol from any client, but only if your account has an Office 365 E5 or Microsoft 365 E5 Compliance add-on. In my case, I have an Office 365 E5 license, and Advanced Auditing shows up as one of the apps in the plan (Figure 1). After capture, events are uploaded by Exchange Online to the Office 365 audit log along with other mailbox audit events. Image 1 Expand Figure 1: Microsoft 365 Advanced Auditing is part of Office 365 E5 (image credit: Tony Redmond) Two Kinds of MailItemsAccessed Event MailItemsAccessed events come in two kinds: Sync (synchronization) and Bind (access to a message). Sync events are captured when an Outlook desktop client synchronizes messages from the mailbox to its local cache (the OST for Windows or OLM for Mac). During synchronization, the client downloads copies of all new or changed items from the mailbox and notes any deletions to apply in its local copy. The... --- ### Syncing Updates from the Microsoft 365 Admin Center to Planner > Soon you'll be able to synchronize Office 365 notification messages to Planner and manage the introduction of the changes through Planner. The integration is straightforward and works well. - Published: 2020-04-21 - Modified: 2024-09-04 - URL: https://petri.com/planner-link-office365-updates/ - Categories: Microsoft 365, Office - Tags: Microsoft 365 Admin Center, Office 365 Notifications, Office 365 Updates, Planner - Article Type: News Soon you'll be able to synchronize Office 365 notification messages to Planner and manage the introduction of the changes through Planner. The integration is straightforward and works well. In fact, I have nothing much to complain about, which is why I wonder if I am missing something. Making Sure Office 365 Notifications Are Tracked Planner is the Office 365 workgroup task application. Plans are organized around Office 365 Groups (or Teams) and a group can have one or more plans. Each plan is broken down into individual tasks, which can then be organized into different buckets. Planner doesn’t have the full-blown planning smarts built into Microsoft Project, but it’s more than enough to organize the work needed to get small projects done. In the past, Microsoft has rightly been criticized for failing to communicate Office 365 changes to tenants. Things have improved, but it’s all too easy to miss a notification about something important posted in the Microsoft 365 Message Center. This has led some Office 365 tenants to build their own methods to extract information about new messages using the Office 365 Management Activity API, one of the Microsoft Graph endpoints. It’s reasonably easy to build a PowerShell script to grab message center updates to format and display the information or post to a Teams channel, an Office 365 group, or in email – or even to Planner. Figure 1 shows what I created in a script that took less than an hour to write. Image 1 Expand Figure 1: PowerShell displays Office 365 message center updates (image credit: Tony Redmond) Although you can still go ahead and build your own tool, Microsoft hopes that this integration makes that kind of work unnecessary. Steps in the Planner Integration The processing done by the Planner integration... --- ### Microsoft 365 Communications Compliance Takes New Look at Employee Interaction > Communications Compliance is a part of Microsoft 365's Insider Risk functionality. This is a replacement for Office 365 supervision policies and introduces coverage of new communications and a lot of machine learning. - Published: 2020-04-16 - Modified: 2024-11-19 - URL: https://petri.com/communications-compliance-takes-new-look-employee-interaction/ - Categories: Microsoft 365, Office - Tags: Communications Compliance, Insider Risk, Office 365, Supervision policies - Article Type: How To Communications Compliance is a part of Microsoft 365's Insider Risk functionality. This is a replacement for Office 365 supervision policies and introduces coverage of new communications and a lot of machine learning, plus a link to Advanced eDiscovery for the really complicated cases. Not every Office 365 tenant will be interested in employee monitoring, but those that need to should look at Communications Compliance. Reduce Risk in Internal and External Communications Microsoft 365 Communications Compliance is part of the new Insider Risk solution set that recently became generally available. It is the third iteration of functionality designed to help organizations monitor communications sent and received by employees. The idea is to reduce the potential for risk to an organization generated by mistakes or deliberate actions taken by employees as they communicate internally and externally. The loss caused by inappropriate or illegal communications might be reputational or financial. Either way, it’s undesirable, especially for large enterprises, which is why these organizations want to detect any potential problems early and then prove that they are on top of the situation should the need exist to demonstrate this point to regulators or other corporate bodies. Office 365 Supervision Policies The original Office 365 supervision policies expanded from covering just email to include Teams and Skype for Business Online and are still in use today. Microsoft would like customers to move from supervision policies to communication compliance policies because this application covers a wider spectrum of Office 365 communication, includes machine learning assistance to sharpen detection, and is the focus for future development. However, there’s no migration offered to move from supervision policies. In effect, the only course is to stop using supervision policies gradually as you introduce communications compliance. Mailbox Data Basis for Compliance Both types of policies depend on messages captured in Exchange Online. Background agents check mailboxes to scan for problems in email,... --- ### Taking Advantage of Free AWS Training - Published: 2020-04-16 - Modified: 2023-07-31 - URL: https://petri.com/taking-advantage-of-free-aws-training-options/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, Cloud, cloud computing - Article Type: Overview If you want to maximize your skills while sitting at home, Amazon has free options available. With the COVID-19 stay-at-home orders still in place, many of us are working at home and the slower pace has meant that some of us have a little extra time on hands. One great way to take advantage of this time is to up your skills by diving into some of the free training that is available.   Amazon's AWS provides a rich selection of training options, many of which are available at no cost whatsoever. Digital Training First, Amazon offers an extensive collection of digital training courses that you can take advantage of and the best part is that they are completely free. These eLearning courses cover a wide range of topics including getting started courses like AWS Storage Offerings and AWS Database Offerings, business courses like SaaS Business Transformation and business analytics topics like Developing Machine Applications and Understanding Neural Networks. While the lengths of each eLearning course varies most of the AWS eLearning courses typically run between 30 and 120 minutes. Learning Paths Amazon also offers a set of role-based learning paths to both help you to find courses that are pertinent to your interests as well as to prepare you for AWS cloud skills exams. The AWS learning paths consist of: Cloud Practitioner – Designed to promote an overall understanding of the AWS Cloud. This path is useful for individuals in technical, managerial, sales, purchasing, or financial roles. Architect – Designed for solutions architects, solution design engineers, and anyone who wants to learn how to... --- ### Patch Tuesday – April 2020 - Published: 2020-04-15 - Modified: 2020-04-15 - URL: https://petri.com/patch-tuesday-april-2020/ - Categories: Security, Windows Client OS - Tags: Microsoft SharePoint, Patch Tuesday, Security, Windows 10 - Article Type: News This month Microsoft patches three Windows 10 zero-days, including a patch for two RCE flaws discovered last month in the Windows Adobe Type Manager Library. There are also important updates for vulnerabilities in the OneDrive desktop app for Windows, the DNS client service, and in the way that Windows handles token relationships. This month's Patch Tuesday is the first after Covid-19 forced significantly more of us to work from home. And hackers are taking advantage of the global health crisis by targeting users and companies in creative ways. So, while employees might be out of sight of the IT department, they shouldn't be out of mind. Windows and Windows Server I reported last month that a flaw in the Windows Adobe Type Manager Library is actively being exploited by hackers. As part of a security advisory, Microsoft warned that there are two remote code execution (RCE) flaws rated Critical in the library that can be exploited in several ways. A hacker could convince a user to open a specially crafted document or just view it in File Explorer's preview pane. The RCE flaws are in the way Windows handles a specially crafted multi-master font. The Adobe Type Manager library is built-in to Windows and it is used to render PostScript Type1 fonts. As part of April's Patch Tuesday updates, Microsoft released fixes both RCE issues. For more information, see Microsoft Issues Security Advisory for Zero-Day in Adobe Type Manager Library on Petri. A third zero-day has also been patched (CVE-2020-1027). It is an elevation of privilege vulnerability in the way the kernel handles objects in memory. It could let an attacker run code with elevated privileges if they are able to authenticate locally and run a specially crafted application. The three zero-days are all rated Important. But there are also... --- ### Azure Active Directory Premium P1 to be Part of Microsoft 365 Business - Published: 2020-04-15 - Modified: 2024-09-04 - URL: https://petri.com/azure-active-directory-premium-p1-to-be-part-of-microsoft-365-business/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Microsoft 365, Microsoft 365 Business, Microsoft 365 Business Premium - Article Type: News Cloud Discovery, Application Proxy, passwordless authentication, and more Azure Active Directory features coming to Microsoft 365 Business in April. As Brad Sams recently reported on Petri, Microsoft is rebranding some Office 365 SKUs at the end of April. Among those to be rebranded are Microsoft 365 Business, which starting April 21st, will become Microsoft 365 Business Premium. Microsoft announced this month that it would be bringing Azure Active Directory (AAD) Premium P1 features to Microsoft 365 Business. The article was updated April 8th to say that new Microsoft 365 Business customers were already getting access to AAD Premium P1. And Premium P1 will roll out to existing Microsoft 365 Business customers over the next few weeks. Before these changes, Microsoft 365 Business had just some of the capabilities that are part of an AAD Premium P1 subscription. Microsoft 365 Business subscribers had access to: Conditional access Self-service password reset Multifactor authentication Image # Expand Azure Active Directory Premium P1 to be Part of Microsoft 365 Business (Image Credit: Microsoft) But with the full set of Premium P1 features, which usually cost $6 per user/month, Microsoft Business 365 users will additionally get: Cloud Discovery Application Proxy Dynamic groups Passwordless authentication 3rd party multifactor authentication (MFA) partner integration Azure Information Protection (AIP) integration And many more features You can find a full list of available features in the Premium P1 plan on Microsoft's website here. Microsoft 365 Business focus on security Microsoft called out the first four features as significant for Microsoft 365 Business subscribers. Cloud Discovery uses Internet traffic logs to learn and analyze which cloud apps are... --- ### Microsoft is Rebranding Office 365 Groups - Published: 2020-04-14 - Modified: 2020-04-14 - URL: https://petri.com/microsoft-is-rebranding-office-365-groups/ - Categories: Microsoft 365, Office - Tags: Microsoft 365, Office 365, Office 365 Groups Microsoft is going to rebrand Office 365 Groups to Microsoft 365 Groups in the near future. A few weeks back, Microsoft announced that they would be changing the branding for some of their Office 365 SKUs. The company is moving deeper into utilizing the Microsoft 365 naming convention and is looking to align products that are not traditionally ‘Office’ apps, into the Microsoft 365 bucket. The latest update for this will be Office 365 Groups. The company has announced that Office 365 Groups will soon be re-branded to, you guessed it, Microsoft 365 Groups. If you aren’t familiar with Office 365 Groups, Microsoft defines it as a “cross-application membership service in Office 365. At the basic level, an Office 365 Group is an object in Azure Active Directory with a list of members and a loose coupling to related workloads including a SharePoint team site, Yammer Group, shared Exchange mailbox resources, Planner, Power BI and OneNote. You can add or remove people to the group just as you would any other group-based security object in Active Directory. ” The justification for the move is because the groups enable collaboration across all of Microsoft 365 and not just Office. For the end-user, there is nothing to do, but the updated branding will roll-out over the upcoming quarters. And as a reminder, these are the Office 365 SKUs that are going to be re-branded as well: Office 365 Business Essentials will become Microsoft 365 Business Basic. Office 365 Business Premium will become Microsoft 365 Business Standard. Microsoft 365 Business will become Microsoft 365 Business Premium. Office 365 Business and... --- ### Inconsistencies in Microsoft 365 Licensing for Security and Compliance > The new licensing guidance for Microsoft 365 security and compliance features is welcome, but as is probably inevitable, some inconsistencies exist that need to be probed. - Published: 2020-04-14 - Modified: 2024-11-19 - URL: https://petri.com/inconsistency-microsoft-365-security-compliance-licenses/ - Categories: Microsoft 365, Office - Tags: licensing, Microsoft 365, Security and Compliance - Article Type: Opinion The new licensing guidance for Microsoft 365 security and compliance features is welcome, but as is probably inevitable, some inconsistencies exist that need to be probed and discussed, and hopefully resolved by Microsoft in the long run. Why do DLP policies for Teams need E5 licenses? Why does applying a default retention label to a SharePoint library need E5? There's lots to discuss about issues Microsoft should fix. Microsoft’s new guidance on licensing for security and compliance begins to remove the confusion around what licenses are needed to use different Microsoft 365 security and compliance functionality. Almost inevitably in a complex area, the guidance creates questions for Office 365 tenants due to some points not been covered and others being unclear. Coherence and Consistency Needed Across Microsoft 365 Since 2016, Microsoft has released many new security and compliance features for Office 365 and now the wider Microsoft 365 suite. It’s reasonable for Microsoft to recognize their lack of coherence in licensing requirements and attempt to put a framework in place that development groups and customers can work with. Unfortunately, some customers use features today because the lack of precision around licensing led them to believe that plans like Office 365 E3 covered their use. Microsoft’s warning about licensing is clear: “Some tenant services are not currently capable of limiting benefits to specific users. Efforts should be taken to limit the service benefits to licensed users. This will help avoid potential service disruption to your organization once targeting capabilities are available. ” No one wants to wake up to discover that users are unable to work because they don’t have licenses to access functionality that previously worked because Microsoft hadn’t implemented code to restrict access to licensed accounts. That’s why Microsoft needs to be crystal-clear about what licenses are needed when. Automation Versus Manual Previously, Microsoft seemed to follow the line that the existence of automation or machine... --- ### Microsoft Increases Teams Participant Views to 9, Trails Zoom by 40 - Published: 2020-04-13 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-increasing-teams-call-streams-to-9-trails-zoom-by-40/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, News, Teams, Zoom - Article Type: News Microsoft is finally increasing Teams calling to support 9 participant streams, up from 4 but well behind Zoom. While Zoom is off having its own issues with security and other challenges associated with rapid growth, Microsoft is also facing its own problems with Teams. Specifically, people who have used Zoom want those features brought to Teams. Currently, when hosting a video call with Teams, the number of participants you can see is limited to 4, or a 2x2 grid; Zoom supports up to 49 participants (a 7x7 grid). While we rarely need a view of 7x7 and you could argue that the view is more novelty than functional, the software does support the feature and Teams does not. The first request to increase the number of viewers on a call inside of Teams was made back in 2016. Microsoft certainly took its time to increase the grid number of 3x3 and they said that they will increase the limit again but there is no timeline for that improved functionality. We do know that Microsoft's infrastructure is under serious pressure from increased remote work but I am not sure if increasing the participant view has any additional impact on the load carried by Teams. Image #1 Expand Microsoft demonstrating 3x3 Teams Call Microsoft announced today that they will be upping the number of participants that you can view while on a Teams call to a 3x3 grid, or 9 participants with a single view. Not a huge change from the 2x2 grids but having more options is never a bad thing. With everyone working remotely,... --- ### How to Block TLS 1.0 and TLS 1.1 in Microsoft Edge and Google Chrome - Published: 2020-04-13 - Modified: 2024-09-04 - URL: https://petri.com/how-to-block-tls-1-0-and-tls-1-1-in-microsoft-edge-and-google-chrome/ - Categories: Windows 10 - Tags: Google Chrome, Microsoft 365, Microsoft Edge, Office 365, Security - Article Type: How To Microsoft announced that it is delaying disabling legacy TLS protocols by default in all its supported browsers. In October 2018, Microsoft announced that it intended to disable Transport Layer Security (TLS) 1. 0 and 1. 1 in Microsoft Edge and Internet Explorer 11 in the first half of 2020. Along with similar announcements from Apple, Google, and Mozilla, the idea was to provide users with more performant and secure connections. Microsoft said that most sites wouldn't be impacted by the change. Legacy Edge and Internet Explorer 11 both support TLS 1. 2. And the new Chromium-based Edge additionally supports TLS 1. 3. If you head to Qualys SSL Labs site, you'll see that as of March 2020, 97. 1% of sites surveyed support TLS 1. 2. It's best practice to use TLS 1. 2 as a minimum, and TLS 1. 3 if your webserver supports it. Image #1 Expand How to Block TLS 1. 0 and TLS 1. 1 Protocols in Microsoft Edge and Google Chrome (Image Credit: Russell Smith)   The Internet Engineering Task Force (IETF) says TLS 1. 0 and 1. 1 shouldn't be used. TLS 1. 2 with SHA-1 as a signature should also not be used. Neither TLS 1. 0 or 1. 1 let peers select a stronger hash for signatures in the ServerKeyExchange or CertificateVerify messages than SHA-1. So, the only choice is to upgrade to a newer version of the protocol. Microsoft postpones support for dropping legacy TLS in its browsers In an announcement at the end of March, Microsoft said that it would delay disabling legacy TLS protocols by default in all its supported browsers. Originally planned for the first half of 2020, Microsoft... --- ### AWS Previews Streamlined Container OS - Published: 2020-04-13 - Modified: 2020-04-13 - URL: https://petri.com/aws-previews-streamlined-container-os/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, Containers - Article Type: News Amazon has just released the preview version of its new container optimized OS Amazon has just released the preview version of its new container optimized OS. Code-named Bottlerocket, this new OS is a stripped-down version of Linux that is specifically designed to host containers. Amazon states that the new OS is “purpose-built to run containers” and it includes only the essential software required to run containers. Bottlerocket uses a minimal OS that includes the Linux kernel 5. 4, system software, and contained as the container runtime. The software can only be run from a container. This slimmed-down OS improves resource usage and reduces the attack surface. Bottlerocket includes an Admin container that can be used to perform advanced troubleshooting and debugging. Instead of a package update system, Bottlerocket uses a new image-based update model that allows for simple rapid updating as well as rollback. This new update system enables organizations to use container orchestrators to manage updates with minimal disruptions. Updates to general-purpose OSes are typically applied on a package-by-package basis which requires multiple steps. These multiple complex dependencies in the different packages can result in update errors. Plus, they make the OS update process more difficult to successfully automate. With Bottlerocket, updates are applied and rolled back in a single step which reduces errors and makes them easier to automate. Bottlerocket was developed as an open-source project on GitHub. You can get started with Bottlerocket by launching Amazon EC2 instances with the Bottlerocket Amazon Machine Image (AMI) and joining them to an Amazon Elastic Kubernetes Service (EKS) cluster. The public preview is available at... --- ### Working with Linux Permissions in PowerShell 7 - Published: 2020-04-10 - Modified: 2024-09-04 - URL: https://petri.com/working-with-linux-permissions-in-powershell-7/ - Categories: PowerShell - Tags: linux, PowerShell, Powershell 7 - Article Type: Overview With the introduction of PowerShell Core and now PowerShell 7, the cross-platform capabilities of PowerShell have also brought new challenges. System administrators used to working on Windows systems that now operate cross-platform need to be able to handle permissions in similar ways. With the introduction of PowerShell Core and now PowerShell 7, the cross-platform capabilities of PowerShell have also brought new challenges. System administrators used to working on Windows systems that now operate cross-platform need to be able to handle permissions in similar ways. With that in mind, how does PowerShell 7 handle Linux permissions? Exploring Permissions In Windows, to view a set of files and folder permissions, you may run the Get-ChildItem command to see the mode, much like ls -l on Linux works, but this only tells you the directory and file attributes. To see the permission of a particular file or folder, the Get-ACL command must be used. Image # Expand PowerShell in Linux does not have that command, therefore there is no way to view the folder permissions using traditional PowerShell filesystem providers. For example, running Get-ChildItem on Linux will show the following. Image # Expand Compare this to ls -l output and you can see how the permissions are missing. Ideally, to make working with permissions in Linux easier, we could add to the Get-ChildItem output and show the permissions, owners, and groups. Image # Expand Retrieving Permissions The easiest method to retrieve the permissions is to pull the output from ls -l file. ext and add that as a property to the existing Get-ChildItem output. To start with, lets split the output of ls -l file. ext and return just the permissions and full file name. ​Get-ChildItem | ForEach-Object { $_. FullName ((ls -l $_. FullName) -Split "... --- ### Moving Groups, Teams, and Sites from Classifications to Sensitivity Labels > Office 365 Sensitivity Labels are supported by Teams, Groups, and Sites, but some work is needed if you want to replace older text-only classification labels with Office 365 Sensitivity Labels. - Published: 2020-04-09 - Modified: 2025-01-21 - URL: https://petri.com/moving-classifications-sensitivity-labels/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Get-SPOSite, Office 365 Sensitivity Labels, Set-UnifiedGroup - Article Type: How To Office 365 Sensitivity Labels are supported by Teams, Groups, and Sites, but some work is needed if you want to replace older text-only classification labels with Office 365 Sensitivity Labels. This article explains how to use PowerShell to update Office 365 groups with new sensitivity labels. The labels are then synchronized to teams and sites. Classifications and Sensitivity Labels Microsoft introduced classifications for Office 365 Groups (and latterly, Teams and SharePoint sites) in 2016. Classifications are text-only visual markers to show users the importance of the information held in a group, team, or site. They are defined in the Azure Active Directory policy for Groups. Useful as it is to inform people about the importance of information, classifications don’t do anything else. My article explains how settings in Office 365 sensitivity labels assigned to “containers” (groups, teams, and sites) control different aspects of their operation. For now, control is limited to privacy, guest access, and how unmanaged devices access content in SharePoint. Microsoft says that the number of settings available in labels will grow over time, notably to control external sharing from SharePoint. With an eye on the future, it makes sense to consider replacing classifications with labels. Microsoft is not deprecating classifications and you can continue using them, but their lack of functionality compared to an intelligent label makes me believe that classifications will soon be phased out. Planning Needed to Switch to Labels Some up-front planning is necessary before an Office 365 tenant can swap classifications with How to Apply Teams Sensitivity Labels. It would be nice if we had the foresight to create matching sets of classifications and labels, but that’s probably a pipe dream given that each set was likely created at different times for different purposes. Instead, it’s more likely that we need to figure out the best... --- ### Microsoft Changes Course with Windows 10X, Prepares Preview Builds - Published: 2020-04-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-changes-course-with-windows-10x-prepares-preview-builds/ - Categories: Hardware - Tags: Duo, Microsoft, Neo, News, Surface, Windows 10X - Article Type: News Microsoft is changing the path ahead for Windows 10X which means a new focus and Surface Neo isn't coming anytime soon. Late last year, before everyone started working from home and every conference was canceled, Microsoft announced several products that they have yet to release. These include the Surface Duo, Neo, and new software called Windows 10X. To showcase the ‘new’ OS, Microsoft announced the Neo that would run the OS on fancy dual-screened hardware. But those plans are changing and the course ahead for Windows 10X does not look like path defined for it late last year. Image #1 Expand Microsoft Surface Go, First Generation According to people familiar with Microsoft’s plans and Mary Jo Foley is hearing similar, the company is not planning to release Surface Neo this year and is looking to ship Windows 10X for single-screened devices. I am also hearing that the company is planning to release a version of 10X in the near future, possibly at Build, that will run on existing devices, but will be for testing purposes only. This is a big shift for Microsoft and Windows 10X. The OS introduces new features like being able to put Win32 apps in a container and there are also new UI elements as well. For many, they look at Windows 10X as a competitor to Google’s ChromeOS but that comparison isn’t quite perfect. Windows 10X is more about bringing the Windows experience up to modern computing standards. While Windows 10 will continue to be the workhorse for the enterprise, 10X is designed to be a familiar-looking OS but with modern experience... --- ### Active Directory Authentication for Azure Files Enters Public Preview - Published: 2020-04-08 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-authentication-for-azure-files-enters-public-preview/ - Categories: Active Directory (AD), Hybrid Cloud, Microsoft Azure - Tags: Azure Active Directory, Azure File Sync, Azure Files, Windows 10, Windows Server - Article Type: News Active Directory authentication for Azure Files, which is now in preview, builds on Azure AD DS authentication over SMB by letting you mount shares created using Azure Files with Windows Server Active Directory (AD) credentials. Last month, Microsoft announced Active Directory authentication for Azure Files, which is now in preview. Azure Files lets you create SMB shares for Azure storage accounts. SMB shares can be easily accessed by Windows virtual machines (VM) and physical devices. A brief history of Azure Files Unlike SMB file shares you might create in on-premises Windows Server for end-users, Azure Files shares serve a different purpose. At least in the service's original incarnation. Azure Files was designed for applications that rely on SMB file shares, so the apps could be moved to the cloud without the need to implement Windows Server in a VM. Shares created using Azure Files in its original release didn't have permissions. An application could either connect or not connect. Azure File Sync Microsoft has a separate service, which is based on Azure Files, for deploying cloud file shares to end users. It is called Azure File Sync. Azure File Sync lets you synchronize the contents of Windows Server file shares to the Azure cloud. The service changes the role Windows Server plays in an organization so that it acts as a fast-local cache for Azure File Sync. The master of the copy of all files is stored in the cloud. For more information on Azure File Sync, read Azure File Sync is now Generally Available on Petri. Azure AD DS authentication over SMB In 2018, Microsoft added the ability to assign permissions to shares created using Azure Files. The feature requires Azure Active... --- ### Teams Custom Backgrounds Arrive In May - Published: 2020-04-08 - Modified: 2024-09-04 - URL: https://petri.com/teams-custom-backgrounds-arrive-in-may/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft’s Teams has quickly found itself at the center of the work-from-home conversation that has kicked up during the past month. The company reported that they added 12 million new users in a week last month and coming next month, they will roll out a highly requested feature. Microsoft’s Teams has quickly found itself at the center of the work-from-home conversation that has kicked up during the past month. The company reported that they added 12 million new users in a week last month and coming next month, they will roll out a highly requested feature. Teams currently allows you to blur your background and starting later this month, you will be able to change to a pre-defined background as well. But what we all really want is to be able to upload a custom background to make our millions of daily meetings slightly more enjoyable. Image #1 Expand Image Credit: Jeffrey Snover, Microsoft - Demonstrating custom backgrounds in Teams According to Microsoft’s roadmap and an update to MC208577, this feature will be rolling out starting in May. The company does not say if you will be able to block users from enabling this functionality but I would hedge that the company will find a way to limit this feature for scenarios where you do not want users to apply unapproved images during meetings. If you are wanting to enable the feature today, Tony Redmond has identified the storage folder for the custom background images that allows you to modify what can display today. Be aware though, this feature is not publicly supported and this is a work-around for now; proceed with caution. This is a minor feature update for Teams but one that will resonate well with its users. Sure, it's not going... --- ### Microsoft’s Conference Strategy Reboot - Published: 2020-04-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-conference-strategy-reboot/ - Categories: Microsoft 365 - Tags: BUILD, Conference, Ignite, Microsoft, News - Article Type: News Microsoft is not planning to have an in-person event until after July of FY2021 concludes and is re-thinking its entire conference strategy. To say that 2020 has been anything other than nominal is the mildest of understatements. As the IT Pro world tries to adapt to the new reality that remote work is an essential activity, and no longer a luxury, the overhead that this has introduced is taxing hardware and humans alike. For Microsoft and many other companies that host large conferences, this is introducing a new complexity that the modern world has never seen before. With everything going remote, so are Microsoft’s conferences. The company has officially announced that all internal and external events will be virtual-only which is a significant change from prior years. In a note to its MVPs, the company stated the following: In light of the challenges presented by Covid-19, Microsoft has been closely monitoring the developing global situation and re-assessing the overall company-wide in-person event strategy. As a company, Microsoft has made the decision to transition all external and internal events to a digital-first experience through July 2021. This will include the future MVP & RD Summit which is currently scheduled for March 28-April 2, 2021. We will continue to evaluate the situation and look forward to connecting in person when the situation allows No longer is Microsoft trying to sell tickets or booth space, the company is now focusing on how to deliver its major conferences through new mediums and in ways that are not simply videos playing on webpages. Microsoft is not planning to have an in-person event until after July of FY2021 concludes –... --- ### How Secure is Video Conferencing App Zoom? - Published: 2020-04-07 - Modified: 2024-09-04 - URL: https://petri.com/how-secure-is-video-conferencing-app-zoom/ - Categories: Compliance, Security - Tags: collaboration, Compliance, Microsoft Teams, Security, Zoom - Article Type: Opinion There's been a lot written in the press recently about video conferencing app Zoom. But how bad are Zoom's security issues? There's been a lot written in the press recently about video conferencing app Zoom. From claiming that it is malware to more detailed analysis of its security, or lack or security in most cases. The app has seen a large increase in use over the past weeks as the worldwide coronavirus pandemic has forced many to work from home. VentureBeat reported early in April that daily active users rose from 10 million to more than 200 million in just three months. Many news outlets have reported on Zoom's security failings. With the Guardian going as far to say that the software was 'malware'. The article describes issues such as Zoom-bombing, where hackers interrupt online meetings. And it goes on to say that despite Zoom's initial claims, end-to-end encryption is not used to secure calls, so that they can only be decrypted by participating users. MacOS Zoom vulnerabilities MacOS has been particularly affected by Zoom's security woes. Ex NSA hacker Patrick Wardle revealed two zero-days at the end of March. The first can be used by a local attacker to get access to the root account in MacOS. The second involves code injection to get access to the microphone and webcam without alerting the user. But while Zoom is currently in the spotlight, this isn't the first time the app has come under scrutiny. Last year, Zoom was found to be silently installing a hidden webserver on MacOS so users could be added to calls without their permission. And... --- ### The Confusing World of Microsoft 365 Security and Compliance Licensing > Licensing the range of Microsoft 365 compliance and security features is a task taken on by the bravest. Or so they say. Another way of putting it is that people just don't understand what licenses are needed - Published: 2020-04-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-compliance-licensing-issues/ - Categories: Microsoft 365, Office - Tags: licensing, Microsoft 365 Compliance - Article Type: News Licensing the range of Microsoft 365 compliance and security features is a task taken on by the bravest. Or so they say. Another way of putting it is that people just don't understand what licenses are needed for the different compliance, data governance, and security features. A new Microsoft 365 Compliance plan and three sub-licenses might make it easier, even if they're more expensive. After reading the PDF to explain what licenses are needed, maybe you'll know what you need to buy. Software Licensing as Clear as Muck Microsoft software licensing is an obscure science. The licensing professionals, for that’s what they are seeing they dedicate their working life to the subject, are no doubt fluent in the topic, but the rest of us are driven to despair when we try to figure out exactly what licenses are needed to cover the functionality used by an Office 365 tenant. That despair doesn’t cover branding inanity, like the silliness of renaming Office 365 ProPlus to Microsoft 365 Apps for Enterprise. That’s just another example of Microsoft’s habit of trying to rebrand well-known names for their own purposes (and confuse customers). Trying to make Outlook Web App (OWA) into Outlook on the web is another example. Licensing Advanced Compliance and Data Governance What I’m really concerned about is the licensing of compliance and data governance features. These features usually involve something like machine learning, automation, or an advanced implementation of a standard feature, like eDiscovery. Two issues worry me: First, many of the advanced features don’t include code to check if a user has the necessary license to use the feature. Second, the lack of clarity on exact what license (or license combination) is needed to use some features. To be fair to Microsoft, I see more references to their licensing page for security and compliance (see below) appearing in pages describing new features. Microsoft Rules for Licensing Security and Compliance Microsoft’s licensing guidance for security and compliance covers the licensing requirements... --- ### Hardware-Enforced Stack Protection Preview Arrives For Windows 10 - Published: 2020-04-06 - Modified: 2024-09-04 - URL: https://petri.com/hardware-enforced-stack-protection-preview-arrives-in-windows-10-insider-build/ - Categories: Windows 10 - Tags: Hardware-Enforced Stack Protection, Intel CET, Security, Windows 10, Windows Insider - Article Type: News Microsoft announces support for protection against Return-Oriented Programming based control flow attacks in Windows 10 Insider builds on the Fast Ring. Back in 2016, Intel announced in partnership with Microsoft that it was working on a new system for its CPUs to block malicious code that uses Return-Oriented Programming (ROP) and Jump-Orientated Programming (JOP). Dubbed Control-flow Enforcement Technology (CET), Intel's new protection tech uses the hardware architecture of the CPU to create controls, otherwise known as shadow stacks, to help prevent code-reuse attacks. Intel explains in its blog post: Previously, the preferred method of making a computer follow your malicious desires was to inject code directly into memory to be run. This tactic has become progressively more difficult due to the introduction of several security features over the years. So now, savvy aggressors have turned to rely on code-reuse attacks like Return Oriented Programming (ROP) and Jump Oriented Programming (JOP) which allow for exploitation without code injection. According to Microsoft, almost all exploits discovered in recent years targeting their products have used ROP techniques. Because ROP/JOP legitimately harvest code already in memory for reuse, attackers use these techniques to create malware in a way that can be difficult to detect. And because no code-injection is required, protections already part of Windows 10 and Intel CPUs, like Address Space Layout Randomization (ASLR), Data Execution Prevention (DEP), and No Execute (NX) bit, can be easily bypassed. Return addresses and shadow stacks In a post on Microsoft's website in late March, Microsoft's kernel protection team wrote that memory safety vulnerabilities, like buffer overruns, were the most common. Windows 10 Control Flow Guard... --- ### Comparing ThreadJob to PSJobs in PowerShell 7 on Linux - Published: 2020-04-06 - Modified: 2024-09-04 - URL: https://petri.com/comparing-threadjob-to-psjobs-in-powershell-7-on-linux/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To There have always been a few options for running background asynchronous tasks within PowerShell. Traditionally, PowerShell (PS) Jobs was the go to method as a job could be started and then control returned to the console. PS Jobs were always heavy, in regards to resource usage, and depending on what needed to be run, this may have outweighed the benefits of running these tasks in the background. Starting in PowerShell 6, a new type of PowerShell Job was introduced that worked with the existing PowerShell Job cmdlets, Start-ThreadJob. Unlike traditional PS Jobs which spawn a whole new host process for each running job, PS ThreadJobs run in multiple threads on the same process which vastly increases performance by lowering overhead. Creating a Traditional PowerShell Job PS Jobs are easy to start and consist of three commands that are in use. Start-Job Get-Job Receive-Job By utilizing the above three commands, we are able to start a job, see the status of a running job, and ultimately receive the results of that job. An example of this is below. ​Start-Job -Name "Test One" -ScriptBlock { Write-Host "Starting Job, sleeping for 3 seconds" Start-Sleep -Seconds 3 Write-Host "Completing Job" } Get-Job Get-Job | Receive-Job Image #1 Expand Creating a PowerShell Thread Job Seems easy enough to create a regular PowerShell Job, so how about a Thread Job? Thankfully, we can use all of the same commands as before with one difference. Instead of Start-Job, we are using Start-ThreadJob. ​Start-ThreadJob -Name "Test... --- ### Microsoft Azure European Regions Starting to Hit Capacity Limits - Published: 2020-04-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-european-regions-hit-capacity-limits/ - Categories: Microsoft Azure - Tags: Microsoft Azure - Article Type: News Some Azure customers complaining that they can't start virtual machines in several European regions due to lack of capacity. Mary Jo Foley reported for ZDNet March 24th that some Azure customers were experiencing problems starting virtual machines (VM) in several European regions. Foley quoted several Twitter users who had reported issues. In a response to a tweet made to @AzureSupport, @davelee212 said: I've seen similar things on a few subscriptions across UK South, UK West and North Europe regions today. Nothing on the Azure Status page but we did have a notification in the Service Health on one of the Subscriptions to say there may be provisioning issues due to capacity. Another Twitter user, @teroalhonen, wrote that when starting a VM, he received the following error message: Failed to start virtual machine Error: Allocation failed. We do not have sufficient capacity for the requested VM size in this region. The issues appears to be affecting West Europe, North Europe, UK West, and UK South regions. While the Azure status page wasn't showing any problems, some users received notifications in the Service Health Dashboard. Checking my own Service Health Dashboard today, it doesn't show any issues for the regions that were apparently affected. Searching the dashboard history also didn't turn up issues in the last week. Image # Expand Microsoft Azure European Regions Hit Capacity Limits (Image Credit: Russell Smith) Keep critical virtual machines allocated Petri's Aidan Finn wrote on Twitter that Microsoft had decided to 'turn off cost-saving partial usage so business critical systems are available when they are needed. ' Finn recommends keeping VMs allocated to ensure... --- ### Purging Unwanted Messages from Exchange Online Mailboxes > Microsoft has removed the Search-Mailbox cmdlet from Exchange Online, but that doesn't mean you can't purge bad messages from user mailboxes. - Published: 2020-04-02 - Modified: 2024-09-04 - URL: https://petri.com/purge-messages-exchange-online/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, New-ComplianceSearch, New-ComplianceSearchAction, PowerShell, Purge mailboxes, Search-Mailbox, Start-ComplianceSearch - Article Type: How To Microsoft will remove the Search-Mailbox cmdlet from Exchange Online on July 1, but that doesn't mean you can't purge bad messages from user mailboxes. Office 365 content searches and content search actions can hard- or soft-delete messages. Some limitations exist, but not enough to be worried. And we include a PowerShell script to show how to get the job done. Search-Mailbox Being Phased Out from Exchange Online Last August I wrote about Microsoft’s intention to deprecate the Search-Mailbox cmdlet and remove it from Office 365. In January, Microsoft announced that it would remove Search-Mailbox and other legacy search tools on April 1, 2020. On March 27, Microsoft announced a 3-month delay in the retirement of the legacy tools by three months, but it's unlikely that the new July 1, 2020 date will be extended again. The die is cast and there’s no going back. One of the most common uses of Search-Mailbox is to remove email that you don’t want users to have in their mailboxes. These messages might be phishing attempts, contain malware or viruses, or maybe they’ve been sent in error and need to be recalled. Outlook’s celebrated inability to recall messages is one reason why other tools are needed when messages leak out when they shouldn’t, which is why Microsoft is working on a new message recall feature. Office 365 Content Searches Find Bad Staff to Purge Search-Mailbox can only be used in PowerShell and its interface is clunky, especially when formatting queries. But it’s an effective tool. Office 365 content searches are the replacement, or more correctly, a combination of a content search (to find messages) followed by a content search purge action (to remove the messages). Microsoft has some good documentation to explain how the process works and to document some limitations. The two most obvious limitations are that purge actions are confined... --- ### Everything You Need to Know About Azure – March 2020 Edition - Published: 2020-04-01 - Modified: 2020-04-01 - URL: https://petri.com/everything-you-need-to-know-about-azure-march-2020-edition/ - Categories: Cloud Computing, Microsoft Azure - Tags: App Services, Azure, Azure Backup, Azure File, Azure Migrate, Azure Monitor, Azure SQL, Azure Virtual Machines, BLOB, CDN, Content Delivery Network, Cosmos DB, COVID-19, Dedicated Host, Managed Disks, MySQL, NAT, networking, PostgreSQL, Private Endpoint, Private Link, Security Center, Shared Disks, Storage Accounts, virtual machines, Visual Studio Code, VS Code, WAF, Web Application Firewall, Windows Admin Center - Article Type: Overview At times like this, chatting about cool new features in Azure is a lot less important than what’s surrounding us all, and impacting some of us either directly or indirectly, now. But you know what? A distraction from the fear, worry, or self-imposed incarceration can be a good thing. So let’s crack on with it, and let’s talk about the cool new IaaS features that Azure launched during the last month. At times like this, chatting about cool new features in Azure is a lot less important than what’s surrounding us all, and impacting some of us either directly or indirectly, now. But you know what? A distraction from the fear, worry, or self-imposed incarceration can be a good thing. So let’s crack on with it, and let’s talk about the cool new IaaS features that Azure launched during the last month. COVID19 Hits Azure So much for the distractions from the pandemic, eh? A couple of weeks ago, most of schools across Europe closed down. Kids still need to be taught so online alternatives were implemented in a hurry. My eldest daughter came home on a Thursday and told me that she had gotten an email address (old school! ) and would be getting lessons with that. I was shocked – hadn’t the school got something better? And the next day she proudly held her phone up to me and I spotted the Microsoft Teams icon – she was going to be using the same tool that I use all day. At the end of that week, we learned that Teams usage had doubled worldwide. Schools and businesses had to find alternatives and quickly rolled out platforms such as Microsoft Teams. The performance did suffer because of this unusual spike in demand – it’s not like Microsoft keeps 50% of their capacity sitting idle. They use predictions based on patterns and their own plans to gradually add capacity to... --- ### Everything you Need to Know About Office 365 - March 2020 > Teams, work from home, and the power of the Power Platform makes this month update a busy one. Also some SharePoint Migrations to round out the update. - Published: 2020-04-01 - Modified: 2020-04-01 - URL: https://petri.com/everything-you-need-to-know-about-office-365-march-2020/ - Categories: Microsoft 365 - Tags: Microsoft Forms, Microsoft SharePoint, Microsoft Teams, power apps, Power Automate, Power BI, Power Platform - Article Type: News Teams, Teams, and more Teams – Sorry kids, but this month I feel like the whole update is about Teams. Why? Because all of a sudden half the world is work from home and it turns out collaboration platforms like Teams are pretty helpful. Teams, Teams, and more Teams – Sorry kids, but this month I feel like the whole update is about Teams. Why? Because all of a sudden half the world is work from home and it turns out collaboration platforms like Teams are pretty helpful. Don’t worry; there are other updates about SharePoint Migrations (more typical news) and some covid-19 solutions available for free on the Power Platform. Make sure you stay safe out there! Teams adds 12 million users in 7 days and Microsoft throttles stuff 12 million in 7 days is a lot of people, and while this isn’t helpful, news just gives you perspective about the amount of growth that literally happened overnight. The side effects of that is what you are probably more interested in. The primary one being Microsoft had to suddenly throttle a lot of services temporally while they caught up. This caused some hiccups along the way, but things seem to be running better, in my opinion. I don’t know about you, but I can’t handle my workload going up by 10%, let alone 800%. Fingers crossed everything is running well for you. Mover Now available for Migrations to SharePoint and OneDrive Earlier this month, Microsoft announced that Mover was now available to all Office 365 customers worldwide. This will make migrating from platforms like Box, Google Drive, and Dropbox easier for all of us. But, remember before you get too excited, in the previous throttling of services announcements migration pieces are... --- ### Everything You Need to Know About Windows – March 2020 - Published: 2020-04-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-march-2020/ - Categories: Windows 10 - Tags: Microsoft Edge, Microsoft Emulator, Microsoft Search, Windows 10, Windows 10X, Windows Update - Article Type: News Microsoft announces that it will pause Windows 10 optional updates starting in May and extend security updates for some Windows 10 version 1709 SKUs to October. There are also details on new features coming to Edge, an update to Microsoft Emulator for Windows 10X, and news that Microsoft Search integration with Windows 10 is being delayed until Q4 2020. Additionally, I provide some tips on working at home. The world has changed since I wrote last month's Everything You Need to Know About Windows. A public health emergency in the U. S. , and many other parts of the world, has seen a large increase in demand for cloud-based services, including Microsoft Azure and Office 365, as much of the workforce moves to work from home. Because of Covid-19, there is a bumper edition of the column this month as Microsoft and others react to, for what at least for now, is the new 'normal'. So, let's get started. Microsoft will pause Windows 10 optional updates starting in May March 24th Microsoft announced that it would be pausing Windows 10 optional updates due to the current public health situation. Optional updates have been particularly problematic in the past few months for those who decided to install them. This change won't affect the security updates released on Patch Tuesday. We have been evaluating the public health situation, and we understand this is impacting our customers. In response to these challenges we are prioritizing our focus on security updates. Starting in May 2020, we are pausing all optional non-security releases (C and D updates) for all supported versions of Windows client and server products (Windows 10, version 1909 down through Windows Server 2008 SP2). There is no change to the monthly security updates (B release – Update Tuesday); these will continue as planned to ensure business continuity and to keep our customers protected and productive. Windows 10 devices configured with... --- ### How Slack Integrates with Teams for Calling > Slack has revealed its add-on for Teams calling to dispell the mystery (at least in my mind) for how they would create a calling integration without Microsoft's help. - Published: 2020-04-01 - Modified: 2024-09-04 - URL: https://petri.com/how-slack-integrates-teams-calling/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Integration, Slack, Teams calling - Article Type: News Slack has revealed its add-on for Teams calling to dispel the mystery (at least in my mind) for how they would create a calling integration without Microsoft's help. As it turns out, Slack has taken some work they already had and the fact that Teams has URIs for meetings and combined them together to get their integration done. Very smart| After speculating how Slack might integrate with Teams and concluding that Slack would get no assistance from Microsoft to bridge the gap between the platforms, on April 1 (no joke! ), Slack shared a page that reveals some information about how their integration works. You can download and install the Teams add-in from the page. Leveraging Slack’s Existing Outlook Integration It looks very much like Slack plan to read calendar information about Teams calls (easy to do with the Outlook Graph API), probably leveraging their existing integration with Outlook. When I wrote about that integration, I noted that “Slack supports the ability to join a Skype meeting if scheduled in Outlook. They don’t say anything about being able to join a Teams meeting but given that the relevant button invokes a URL to the meeting, I’d be surprised if the link generated by Outlook didn’t work. ” This is exactly what seems to be happening. Figure 1 shows how Slack displays details of an Outlook meeting with a button to join a Teams meeting. Image 1 Expand Slack displays an Outlook meeting (image credit: Slack How Outlook Connects to Teams When you schedule a Teams meeting, the Outlook calendar item is updated with several properties that allow the user to join the meeting. One of the properties is a “deep link” for the meeting, essentially, a URI that Teams interprets to connect a user to a meeting set up on its platform. The URI looks something like this: https://teams. microsoft. com/l/meetup-join/19%3ameeting_MDY3ZjY0MjAtNTNmZS00NWVkLTk0Y2EtNzhjNTI5MmM5ZGUz%40thread. v2/0? context=%7b%22Tid%22%3a%22b662313f-14fc-43a2-9a7a-d2e27f4f3478%22%2c%22Oid%22%3a%22eff4cd58-1bb8-4899-94de-795f656b4a18%22%7d... --- ### Slack Wants to Integrate with Teams – But How? > The Slack CEO says that the company is working on a calling integration with Teams. Slack hasn't released any technical information, which leads to a certain amount of speculation as to how such an integration might happen. - Published: 2020-04-01 - Modified: 2024-09-04 - URL: https://petri.com/slack-integrate-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Cloud Video Interop, Interoperability, skype, Slack, Teams - Article Type: News The Slack CEO says that the company is working on a calling integration with Teams. Slack hasn't released any technical information, which leads to a certain amount of speculation as to how such an integration might happen. Slack's previous attempts to integrate with Office 365 applications haven't been too successful, but perhaps a federated hook-up like the one between Skype consumer and Teams might work. Teams Integration for Calling Features Last week, Slack CEO Stewart Butterfield said Slack is “working on Teams integrations for calling features” during an interview with RBC analyst Alex Zurkin on March 26. I’m not quite sure what to make of this. Paul Thurrott called the purported integration a “capitulation” in his March 27 weekly wrap-up. Maybe it is, but it’s more likely a project designed to keep loyal Slack customers happy, especially if they also use Office 365. It might just be enough to keep these customers from migrating to Teams. No Help from Microsoft The problem Slack faces is that Microsoft won’t help unless Slack signs up to the Cloud Video Interop program, to join vendors like BlueJeans, Poly, and Pexip (and soon Cisco). I doubt Slack will give Microsoft such a wonderful PR victory, so it’s more likely that Slack will pursue something like the new federation capability between Skype consumer and Teams, which supports peer-to-peer 1:1 chats and calls but lacks features like meetings or presence interoperability. Graph API for Teams Messaging It’s possible that Slack might investigate using the Graph API for Teams to build some form of message interoperability between the two platforms where a Slack user could post a message to a Teams channel conversation and vice versa. There’s all manner of complications to solve for this to happen, but it’s technically feasible. And bidirectional messaging isn’t calling, which is what Butterfield explicitly mentioned. Slack’s Previous Integrations for Office 365 In 2019,... --- ### Microsoft’s Ignite is Going Digital Only, Cancels In-Person Event - Published: 2020-03-31 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-ignite-is-going-digital-only-cancels-in-person-event/ - Categories: Main - Tags: Ignite 2020, Microsoft - Article Type: News This year has been a rough one for the event industry with nearly all in-person events being canceled. Microsoft has already canceled its in-person MVP summit, Build, and partner summit called Inspire and it’s not surprising to hear that the company is also altering its Ignite conference as well. This year has been a rough one for the event industry with nearly all in-person events being canceled. Microsoft has already canceled its in-person MVP summit, Build, and partner summit called Inspire and it’s not surprising to hear that the company is also altering its Ignite conference as well. Considering the events surrounding COVID-19, this move is not surprising at all. What company is going to commit to spending thousands of dollars to send an employee (or employees) to Ignite when we don’t know how long the pandemic will be impacting travel and the ability to even come into the office. Yes, Ignite is many months away, scheduled to take place in September, but Microsoft typically expects the springtime to be the ramp-up period of attendees to start buying tickets to the show. Image #1 Satya Nadella Rehearsing for Ignite Expand I had been hearing this information was being discussed but Mary Jo was able to definitively track-down the move and notes that the remaining events for Microsoft in 2020 will be moving to this model. She also is hearing that the first half of 2021 is still up in the air at this time but that's not confirmed at this time. Microsoft has also updated the Ignite website as well with the following information: Microsoft Ignite will be launched as a digital event experience this September. Join us to learn innovative ways to build solutions, migrate and manage your infrastructure, and connect with Microsoft experts and other technology professionals from... --- ### How to Use PowerShell 7 to Work with JSON Files - Published: 2020-03-31 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-powershell-7-to-work-with-json-files/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To What's changed in PowerShell 7 to enhance support for JSON? There are no new cmdlets, but there have been some functionality changes to the existing cmdlets. Though there are many file formats used for configuration and data storage. JSON, or JavaScript Object Notation, files have become very common. They offer an easy to understand and compact format to define information. In addition, they integrate exceptionally well within PowerShell. Functionality such as the ability to be imported as pipelinable objects that can be subsequently exported. What's changed in PowerShell 7 to enhance support for JSON? There are no new cmdlets, but there have been some functionality changes to the existing cmdlets. JSON Support in PowerShell Before diving into the new functionality, how does PowerShell work with JSON? Let's walk through a few examples. We will explore how to import JSON, manipulate an object, and export the JSON to a file that can be later consumed. Import JSON into PowerShell First, we want to consume a JSON file and then update the values for later use. This type of technique is often used when storing information about a given system, for example, the computer name, environmental properties, etc. In this example, we are going to use a simple JSON file. computer. json ​{ "SystemName": "TestSystem", "LastBoot": "3/28/2020 11:27:15 AM", "User": "TestUser", "LoggedOn": true } By retrieving the content of the JSON file and then converting that content from JSON, a standard PowerShell object is output. ​Get-Content -Path "D:computer. json" | ConvertFrom-JSON How is the object actually seen by PowerShell? When the JSON is imported, PowerShell converts the data into a PSCustomObject and attempts to match the properties into... --- ### Microsoft Under Pressure to Improve Teams Video to Stop Customers Going to Zoom > Although Teams has seen a spike in usage due to more people working at home, the view of participants in Teams video meetings is not as good as competitors such as Zoom. - Published: 2020-03-31 - Modified: 2024-11-19 - URL: https://petri.com/teams-video-view-improvement-needed/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Gallery view, Privacy, Teams, Video View, Zoom - Article Type: News Although Teams has seen a spike in usage due to more people working at home, the view of participants in Teams video meetings is not as good as competitors such as Zoom. Basically, the 2 x 2 view used by Teams isn't as visually attractive or useful as the gallery views supported by other video conferencing systems. Microsoft says they have elevated the priority of the work necessary to increase the number of participants in the meeting window. They don't say when this will happen. 2x2 View Doesn’t Cut Mustard Anymore The recent upsurge in demand for cloud services (775% according to Microsoft) includes a large increase in Teams usage as customers move from working in offices to work-from-home due to the Covid-19 virus. As part of the transition, a huge number of Teams online meetings now take place, including many in the education sector as teachers figure out how to deliver classes to students. As the number of Teams meetings grow, the 2 x 2 configuration Teams currently uses for participant images in online meetings has come in for a lot of criticism, especially when compared its video conferencing competitors, especially Zoom. Figure 1 shows a typical Teams video meeting in progress with the video feed for the last four speakers shown in the main meeting window and icons listed for the other participants below. Figure 1: A Teams meeting with the 2 x 2 layout for the last speakers (source: Microsoft) Although Microsoft has added features like background blur to meetings with the promise of more features like custom background, a new codec to deliver better audio quality, background noise suppression, and “raise a hand” (when you have something to say) to come, the layout used for participants has remained the same since Teams launched in preview in November 2016. It’s remarkable how this element of Teams has remained intact since. Zoom’s Gallery Layout The problem faced by Teams is that competitor offerings deliver more functionality for large meetings. A lot of... --- ### Microsoft to Rebrand Some Office 365 SKUs Starting in April - Published: 2020-03-30 - Modified: 2020-03-30 - URL: https://petri.com/microsoft-is-rebranding-some-office-365-accounts-but-not-all/ - Categories: Microsoft 365, Office - Tags: Microsoft, Microsoft 365, News, Office 365 - Article Type: News If you were to point to one software-as-a-service product inside of Microsoft that has been a pillar of the company’s growth, Office 365 would be it. If you were to point to one software-as-a-service product inside of Microsoft that has been a pillar of the company’s growth, Office 365 would be it. And because things have gotten a bit too comfortable around the Microsoft neighborhood, they are going to rebrand some SKUs while leaving others in their place. But the change does have some merit as the Office brand has become a bit stretched.  Announced today, and starting on April 21st, Microsoft is going to rebrand the following Office 365 SKUs to draw a slightly clearer line between Office 365 and Microsoft 365: Office 365 Business Essentials will become Microsoft 365 Business Basic. Office 365 Business Premium will become Microsoft 365 Business Standard. Microsoft 365 Business will become Microsoft 365 Business Premium. Office 365 Business and Office 365 ProPlus will both become Microsoft 365 Apps. Where necessary Microsoft will use the “for business” and “for enterprise” labels to distinguish between the two. The following Office 365 plans will have no changes: Office 365 for Enterprise Office 365 E1 Office 365 E3 Office 365 E5 Office 365 for Firstline Workers Office 365 F1 Office 365 for Education Office 365 A1 Office 365 A3 Office 365 A5 Office 365 for Government Office 365 G1 Office 365 G3 Office 365 G5 Microsoft is making these changes to the above accounts as they feel that some of the bundles were reaching outside of what ‘Office’ brand is intended to include. And for those of you worried about pricing, Microsoft says that... --- ### Microsoft Teams for Consumer is Coming Later this Year - Published: 2020-03-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-for-consumer-is-coming-later-this-year/ - Categories: Microsoft Teams, Office - Tags: Microsoft, Teams - Article Type: News As expected, Microsoft is rolling out later this year a Teams update that will enable functionality for families (and friends) to create a Teams hub for communication, document sharing, calendaring, and password management. Microsoft announced today a big change to how they are looking at consumer productivity. The company announced two new apps, Family Safety and Teams (for Consumer). Along with the new apps, they are releasing a new browser-plugin called Editor, password manager features to Edge, and a lot more. Microsoft is adding new features to its Office 365 suite for consumers and is updating branding as well, Calling it Microsoft 365 Home and Personal but the important thing I am going to focus on is the update to Teams; you can read about the other updates here. Image #1 - Teams Consumer on Mobile Expand As expected, Microsoft is rolling out later this year a Teams update that will enable functionality for families (and friends) to create a Teams hub for communication, document sharing, calendaring, and password management. What’s key here is that Microsoft is not releasing this as a separate application, if you are using Teams for work, you can switch accounts and then access your personal information. Microsoft is likely (hopefully! ) implementing strict data access controls to prevent accidental data leakage across accounts. And if you do have friends on Skype, you should be able to call/message them from inside of Teams. Like the commercial offering, it looks like there will be third-party access as well but details are limited at this time. The company says that the application will roll-out this summer on mobile devices and the desktop (or more than likely web) version will be released in the... --- ### Microsoft sees Nearly 800% Increase for Cloud Services - Published: 2020-03-30 - Modified: 2020-03-30 - URL: https://petri.com/microsoft-sees-nearly-800-increase-for-cloud-services/ - Categories: Cloud Computing, Microsoft 365, Microsoft Azure, Microsoft Teams, Office - Tags: Cloud, Microsoft, News - Article Type: News Seemingly overnight, a sizeable portion of the global workforce moved to being a remote operation. While everyone is looking for new options about how to try and keep operations running as smooth as possible, cloud vendors are seeing a significant spike in usage. Seemingly overnight, a sizeable portion of the global workforce moved to being a remote operation. While everyone is looking for new options about how to try and keep operations running as smooth as possible, cloud vendors are seeing a significant spike in usage. Earlier this month, Microsoft announced that they would be throttling some Office 365 features to help alleviate bandwidth constraints. And this weekend, the company provided some insight into the surge of growth that they have experienced during the COVID-19 pandemic. Microsoft states that in regions that are practicing social distancing or sheltering in place, usage is up 775% in those regions. Further, the company is seeing 3x increase of Windows Virtual Desktop usage as well. The strain that a remote workforce is putting on networks will be used as a case-study to help prepare for future events that force this type of working model. The reason why networks are struggling in certain regions is that the onset of the increased load was seemingly overnight, there was no ramp-up period for the added traffic. After this pandemic passes, we can only hope that networks will find ways to increase the capacity to help offset a future surge in required bandwidth. For several years, Microsoft had been pushing for a utilization increase among its customers for its cloud services. The company provides credits to many of its customers as part of sales bundles or other activities but having customers fully utilize their benefits has frequently been a challenge. I... --- ### Microsoft Increases Teams Membership to 10,000 Users > Microsoft announced that Teams now supports a maximum of 10,000 users in the membership of an individual team. The new limit is rolling out to Office 365 tenants in April and should be available worldwide in May. - Published: 2020-03-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-increases-teams-membership-10000-users/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Enterprise deployments, Membership limit, Org-wide team, Teams - Article Type: News Microsoft announced that Teams now supports a maximum of 10,000 users in the membership of an individual team. The new limit is rolling out to Office 365 tenants in April and should be available worldwide in May. The need for increased membership is likely driven by large enterprise deployments of Teams who find the previous 5,000 limit just too small for their discussions. New Teams Limit Will Apply Worldwide by the End of May In a March 27 announcement (MC207957) in the Office 365 Message Center, Microsoft said that they will soon increase the current 5,000 membership limit for a team (and the underlying Office 365 group) to 10,000. Microsoft says that the change will roll out to tenants at the end of April and expect worldwide deployment to be done by the end of May. The limit includes both tenant users and guest users (if allowed for a team). Microsoft’s announcement doesn’t say if the new limit applies to org-wide teams, which are currently restricted to organizations with fewer than 5,000 members, but I expected that this will be the case. Recently Added Roadmap Item The new limit is also documented in Microsoft 365 roadmap item 62549. Interestingly, the roadmap item was added on March 27, which might indicate that the increase in membership limit is a response to the upswing in customer demand for Teams due to the Covid-19 virus and the need for more people to work from home. Figure 1: The recently added roadmap item for the 10,000 user limit in Teams (image credit: Tony Redmond) Large Enterprises Driving Teams When Microsoft disclosed that Teams now has 44 million daily active users, they also said that 650 customers have more than 100,000 users while Accenture leads the pack with 440,000 users. Large enterprises like these need to run big teams, and it’s likely that some accelerated deployments... --- ### Microsoft Delays Retirement of MCSE, MCSA, and MCSD Certifications - Published: 2020-03-27 - Modified: 2020-03-27 - URL: https://petri.com/microsoft-extends-retirement-of-mcse-mcsa-and-mcsd-certifications/ - Categories: Career Skills - Tags: certifications, Microsoft - Article Type: News A few weeks ago, Microsoft made a significant announcement regarding several of its popular certifications. The company announced that Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Developer (MCSD), Microsoft Certified Solutions Expert (MCSE) certifications would be retired on June 30, 2020. A few weeks ago, Microsoft made a significant announcement regarding several of its popular certifications. The company announced that Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Developer (MCSD), Microsoft Certified Solutions Expert (MCSE) certifications would be retired on June 30, 2020. But, because of the current COVID-19 prevention tactics have required nearly everyone to stay at home, Microsoft is going to extend the life of these certifications. While the company is not backtracking on its retirement position, you now have until January 31, 2021, to obtain the certification. The reason for this is obvious, testing centers are closed and meeting the objectives to obtain these certifications before June 30th, the previous retirement date, is now nearly impossible. The company outlines several other changes that should make obtaining certifications easier. In partnership with Pearson VUE, the companies are temporarily waiving exam reschedule and cancellation fees. Further, if you had a certification that was set to expire between now and December 31st, your certification will be extended by six months. There are other changes including if you have a voucher or discount offer expiring between March 26 and August 31, 2020, it will be extended until January 31, 2021. Given the current environment, these are the right moves for Microsoft to make as there are many IT Pros looking to obtain these certifications before the door shuts on them forever. But, it’s clear that Microsoft is continuing to push people towards its cloud solutions and away from on-premises offerings. At this... --- ### Paul Thurrott's Short Takes: March 27 - Published: 2020-03-27 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-27/ - Categories: Cloud Computing, Microsoft 365, Microsoft Azure, Microsoft Teams, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it’s such a great time to be alive, this edition of Short Takes looks at a ton of Coronavirus-related news, including Azure capacity issues, Microsoft/Office 365 service throttling, certification retirement extensions, unprecedented Xbox Live demand, and much, much, more. Image # Expand Because it’s such a great time to be alive, this edition of Short Takes looks at a ton of Coronavirus-related news, including Azure capacity issues, Microsoft/Office 365 service throttling, certification retirement extensions, unprecedented Xbox Live demand, and much, much, more. Coronavirus: Azure is “full” in Europe Remember how the central promise of cloud computing was that businesses would be able to dynamically add capacity during busy times, saving them tons of money? Well, we forgot the converse to that, which is that cloud computing providers, like Microsoft Azure, would thus need to have all that capacity on hand all the time. And with more and more people sheltering in place and working from home, the problem with this approach is becoming obvious: Cloud computing infrastructure is being stretched past its limits, and with Azure in particular, customers in Europe are experiencing massive outages and unavailable resources. Azure, it appears, is “full. ” There are many news reports about this issue, but I’ve also personally heard from a major Microsoft customer that is finding that virtual machines it restarts are being handed off to other customers on the fly, making them unavailable to the original user. This is a real problem because it’s not clear how or even if Microsoft can possibly add capacity immediately or in the near future in the affected areas. And it’s almost certainly going to happen worldwide. “Microsoft staff struggle beneath the weight of a 52,000-person Reply-All email storm” If only Microsoft... --- ### Understanding $PSDefaultParameterValues in PowerShell 7 - Published: 2020-03-26 - Modified: 2024-09-04 - URL: https://petri.com/understanding-psdefaultparametervalues-in-powershell-7/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 Do you have that one PowerShell command you use constantly? If that command has parameters, you have to manually specify the parameter values every time. If you find yourself passing the same parameter values to a command frequently, this post is for you. Do you have that one PowerShell command you use constantly? If that command has parameters, you have to manually specify the parameter values every time. If you find yourself passing the same parameter values to a command frequently, this post is for you. In this article, you're going to learn a time-saving way to automatically provide common values to function or cmdlet parameters in PowerShell using the $PSDefaultParameterValues automatic variable. Passing Parameter Values: The Hard Way Let's say you're connecting to a lot of remote computers with the Invoke-Command cmdlet. You have configured SSL for WinRM and are repeatedly having to use the parameters: UseSSL and Port. All of your Invoke-Command references look like below. Notice that the ComputerName parameter will change but the others will not. ​Invoke-Command -Port 5986 -UseSSL $true -ComputerName Now you could continue to manually type -Port 5986 -UseSSL $true for every, single Invoke-Command reference but your enemy should be the word manual. Passing Parameter Values: The Easy Way You need to figure out a way to automatically pass a static value to both the Port and UseSSL parameters. To do that, you have two options. You could use PowerShell 7 proxy functions. A proxy function takes the guts of a command and creates a new one. It's essentially a wrapper for an existing cmdlet. You could use the $PSDefaultParameterValues automatic variable providing the command, parameters and their values. Proxy functions are more complex than option #2 so let's stick to that one... --- ### Teams Introduces Tagging for Targeted Communications > Teams is all about communication, but now you can have "targeted communications," which is a long-winded way to describe tags. A tag is a shortcut method to address a set of team members. - Published: 2020-03-26 - Modified: 2024-09-04 - URL: https://petri.com/teams-tagging-targeted-communications/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Tags, Targeted communications, Teams - Article Type: How To Teams is all about communication, but now you can have "targeted communications," which is a long-winded way to describe tags. A tag is a shortcut method to address a set of team members. You can have default tags defined at the organization level or use tags specific to individual teams. Either way, tags are a useful way to identify the specific people you want to address in a conversation. Tag Your Colleagues Last November, Microsoft announced their intention to deploy tags for Teams starting in early 2020 with the intention of completing worldwide deployment by the end of March. After a slow start, things seem to be ramping up, and Microsoft highlighted tagging in their “what’s new in Teams” post for February. Tagging might be available in your tenant by the time you read this article. Let’s look at the implementation in Teams. Targeted Communications Microsoft calls tagging “targeted communications” because tags allow team members to address specific people within team memberships. Tags serve a different purpose to hashtags: tags refer to people, hashtags refer to topics or themes. People sometimes complain about the burden of an overflowing email inbox. The Teams activity feed can become as chaotic and cluttered due to notifications from busy channels. Properly used, tagging reduces the number of channel and team notifications in the activity feed. Tagging Basics Each tag defines a chosen subset of members within a team. For example, org-wide teams can have up to 5,000 members and messages sent with @channel or @team mentions create notifications for probably more people than need to see it in their activity feed. Creating tags like Executives, Managers, or Individual Contributors allow team members to address subsets within the larger team. I like defining a Guests tag for teams with guest members as a convenient way to communicate with members who come from outside the organization. When you use a tag in a... --- ### Work From Home – 4 Tips for Productive Video Conferencing - Published: 2020-03-25 - Modified: 2024-09-04 - URL: https://petri.com/work-from-home-4-tips-for-productive-video-conferencing/ - Categories: Cloud Computing, Microsoft 365, Office - Tags: Microsoft Teams, Skype for Business Online, Video Conferencing - Article Type: Opinion Online meetings are becoming an even more regular part of daily work life as many of us move to 'work from home'. Whether you are a small business or large corporation, online meetings can enable teams to work remotely more effectively and maintain a sense of community and connectedness. Online meetings are becoming an even more regular part of daily work life as many of us move to 'work from home'. Whether you are a small business or large corporation, online meetings can enable teams to work remotely more effectively and maintain a sense of community and connectedness. Video conferencing technology has been around for years, but many still complain of poor experiences and that video calls can't replace face-to-face contact. Video conferencing can never fully replace having everyone in the same room, but it is possible to improve the experience. Here are four key points to bear in mind when conducting online meetings with your colleagues or clients. 1. Choose the right software Rule number one: pick the right tool for the job. Let's talk about some popular video conferencing apps. Skype I want to start with Skype because it is widely used, it is free, and it is well established. But it's worth remembering that Skype is primarily a consumer product and not a business tool. Skype supports group meetings with up to 50 participants and you can share your screen. Skype can be used in a web browser, so conference calls can be started without participants downloading software. The host just needs to distribute a link so that participants can join the call. There are also chat and file sharing features. Skype's group video call experience sometimes leaves a lot to be desired. It's common that a participant's video drops out of the group... --- ### Microsoft Issues Security Advisory for Zero-Day in Adobe Type Manager Library - Published: 2020-03-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-issues-security-advisory-for-zero-day-in-adobe-type-manager-library/ - Categories: Security - Tags: Security, Windows 10, Windows 7, Windows 8.1, Windows Server - Article Type: News Microsoft said on Monday that it is aware of an unpatched vulnerability in the Windows Adobe Type Manager Library that is actively being exploited by hackers. Microsoft said on Monday that it is aware of an unpatched vulnerability in the Windows Adobe Type Manager Library that is actively being exploited by hackers. As part of a new security advisory, Microsoft warns that there are two remote code execution (RCE) flaws rated Critical in the library that can be exploited in several ways. A hacker could convince a user to open a specially crafted document or just view it in the File Explorer preview pane. The RCE flaws are in the way Windows handles a specially crafted multi-master font. The Adobe Type Manager library is built-in to Windows and it is used to render PostScript Type1 fonts. Microsoft says that all currently supported versions of Windows are affected and that it is currently working on a fix. Windows 7, which recently reached end-of-life, is also affected. Windows 10 is better protected Because of the way fonts are processed in supported versions of Windows 10, a successful attack would result in the malicious code running in a user-mode AppContainer sandbox with limited privileges and capabilities. Starting in the Windows 10 Anniversary Update (version 1607), font parsing is carried out in AppContainer instead of the operating system kernel. The idea is to stop hackers gaining privileged access to Windows. Image #1 Expand Microsoft Issues Security Advisory for Zero-Day in Adobe Type Manager Library (Image Credit: Microsoft) Mitigating the Adobe Type Manager Library vulnerability While Microsoft is working on a patch, which will hopefully be available by April's... --- ### Microsoft Imposes Restrictions on Office 365 Services to Ease Demand > Microsoft has imposed further restrictions on some Office 365 services to release CPU cycles and other resources to allow end users to work. The major impact is felt by SharePoint Online, OneNote, and Stream, and consequently by Teams because it uses all of the above. - Published: 2020-03-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-imposes-restrictions-office-365-services-ease-demand/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Lack of response, migration, Office 365 service issues, SharePoint Online, Teams - Article Type: News Microsoft has imposed further restrictions on some Office 365 services to release CPU cycles and other resources to allow end users to work. The major impact is felt by SharePoint Online, OneNote, and Stream, and consequently by Teams because it uses all of the above. We can expect restrictions to last until Microsoft manages to deploy additional resources in its Office 365 datacenters. On March 17, I reported on how Office 365 was suffering some temporary scaling problems. A week later, Microsoft has applied further throttles on background processing and some user functionality to free up CPU cycles for user activities. The news came in Office 365 notification MC207439, released to tenants today. The steps are unsurprising given an outbreak of problems across the service over the last week due to the incessant increase in demand caused by new users, leading to a rash of service incidents and advisories (Figure 1 shows the current state for my tenant as I write this post). Figure 1: Office 365 Service Advisories (image credit: Tony Redmond) Heavy Demand for Teams Teams scaled up by 12 million users over a week and that increase meant extra demand for associates applications like SharePoint Online, OneDrive for Business, OneNote, and Stream. Because more people are using Teams to work from home, more meetings are being recorded. Microsoft says that 900 million minutes of calling and meetings are now being consumed daily. This total is shared across all Teams users, so it’s not the amount of recorded meeting minutes that are uploaded and processed by Stream. Stream Downgrades Meeting Recordings Nevertheless, the growing demand on Stream means that Microsoft has disabled the face recognition feature (which allows users to find people based on when they appear in a video) and downgrade video recording resolution from 1080p to 720p. In this respect, Microsoft is following a line like that taken by... --- ### Understanding the PowerShell 7 Error Variable - Published: 2020-03-23 - Modified: 2024-09-04 - URL: https://petri.com/understanding-the-powershell-7-error-variable/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To As with any programming language, code will have errors and troubleshooting those problems can be difficult. Thankfully, PowerShell has a rich error object and several powerful tools to help debug your code. With PowerShell 7, these tools become even more useful and error handling even easier. As the language evolves and becomes used in more places than ever, being able to quickly and efficiently troubleshoot a problem will prove invaluable to integrating the language into common workflows. Understanding Errors in PowerShell Broadly speaking, PowerShell errors fall into two categories, terminating and non-terminating. Though these concepts are worth articles in their own right, a terminating error implies that code execution is stopped when the error is thrown. A non-terminating error implies that the code will continue despite an error message being shown. Terminating Errors As you can see below, the text "This should never be shown", is not shown, as the terminating error stops code execution. The function throw will always return a terminating error. Figure 1 - Terminating Error Output Non-Terminating Errors It is more difficult to arbitrarily generate a non-terminating error, but one easy way is to use the Get-ChildItem cmdlet and ask the cmdlet to find a nonexistent directory. As you can tell the command Write-Host "This text will show! ", does in fact appear. Figure 2 - Non-Terminating Error Output You can turn most non-terminating errors into terminating errors by modifying an individual cmdlet's ErrorAction to Stop. For example,... --- ### What’s Different about Backup to the Cloud? - Published: 2020-03-23 - Modified: 2023-09-07 - URL: https://petri.com/whats-different-about-backup-to-the-cloud/ - Categories: Backup & Storage, Cloud Computing - Tags: Backup, Cloud, Disaster Recovery - Article Type: Overview A lot of businesses have begun to incorporate the cloud into their backup processes and most businesses that haven’t done so yet are looking into the process. Using the cloud as a backup target has a lot of advantages; Cloud services have matured and provide extremely high levels of availability. A lot of businesses have begun to incorporate the cloud into their backup processes and most businesses that haven’t done so yet are looking into the process. Using the cloud as a backup target has a lot of advantages; Cloud services have matured and provide extremely high levels of availability. Most businesses are experiencing extremely high rates of data growth which means that your backup requirements increase right along with it and using the cloud can reduce or eliminate the need to buy expensive local storage. In addition, cloud backups are inherently off-site which provides a built-in measure of disaster recovery and can eliminate the need for employing a third party off-site data protection service. Cloud backup differences So what are the differences between using local backup and using cloud backup? In some ways they seem to be about the same and on the surface they both have a lot of similarities. Both can use the same backup processes – many times the exact same backup applications can target both the cloud and local storage.   Both essentially save those backups to some form of storage. However, the devil is in the details and when you look closer almost everything else about backing up to the cloud is different. While both target some form of storage the underlying plumbing is quite different. Local storage is typically much faster for local systems as cloud backup for local systems is limited by the upstream and downstream bandwidth that is available. However,... --- ### How to Send an Email via MailGun API using PowerShell 7 - Published: 2020-03-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-send-an-email-via-mailgun-api-using-powershell-7/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To Mailgun is an email sending service that provides logging and an API to send emails. PowerShell is particularly strong in its ability to use REST API's. There are many use cases for needing to send emails, but one of the most common is that of sending emails when scripts are completed. This may be for status updates or failures. Mailgun is an email sending service that provides logging and an API to send emails. PowerShell is particularly strong in its ability to use REST API's. There are many use cases for needing to send emails, but one of the most common is that of sending emails when scripts are completed. This may be for status updates or failures. With that in mind, how do we set up MailGun for use with PowerShell and send emails as we need them? In this article, we will explore this use case and how best to create a simple script to send an email using MailGun. Setting Up Mailgun Once you have created a Mailgun account, there are a few simple steps. Below are the next two steps to configure. Adding your Domain to send email from Retrieving API Key Add a Domain Navigate to Sending → Domains and click on Add New Domain. Create the domain as follows: Image # Expand Upon clicking Add Domain, you will be brought to a screen listing all of the corresponding DNS records that you will need to be entered in whichever DNS provider you have. Once all those settings have been added, and you have verified your DNS settings, we can retrieve the API key. Retrieving the API Key Unlike many other API's, Mailgun does not use Tokens, but a single API key for all services. Navigate to Account → Settings and choose API Keys. Click on API Security and view the Private... --- ### Choosing between Virtual Private Network and Zero Trust Remote Access Solutions - Published: 2020-03-19 - Modified: 2024-09-04 - URL: https://petri.com/choosing-between-virtual-private-network-and-zero-trust-remote-access-solutions/ - Categories: Remote Access, Security, Windows 10, Windows Server - Tags: Always On VPN, Azure Active Directory, Azure Active Directory Application Proxy, Azure Active Directory Conditional Access, DirectAccess, Remote Access, Web Application Proxy, Windows 10, Windows Server, Zero Trust - Article Type: Opinion As we enter a time of crisis that will see a significant number of employees asked to work from home, organizations need to provide effective but secure remote access to corporate resources. The tried and tested virtual private network (VPN) might seem like the obvious choice. But so called 'zero trust' is gaining popularity and could surpass traditional VPN access. As we enter a time of crisis that will see a significant number of employees asked to work from home, organizations need to provide effective but secure remote access to corporate resources. The tried and tested virtual private network (VPN) might seem like the obvious choice. But so-called 'zero trust' is gaining popularity and could surpass traditional VPN access. Gartner says that 60% of enterprises could replace VPNs with zero trust by 2023. VPNs and perimeter networks VPNs are a common way of allowing remote users to securely access resources behind a perimeter network. Firewalls are used to create a perimeter behind which sits all a company's valuable IT assets. You can think of it as like building a moat around a castle. But just like the castle analogy, perimeter networks fail to protect on several levels. Perimeter networks don't protect resources against insider attacks. And if a hacker steals a user's credentials, they have the key to the castle, and they can act freely in the context of the stolen user's account. VPNs can also lead to compromise when third-party contractors use unmanaged devices to connect to corporate resources. Most seasoned Windows IT system administrators will be familiar with the basics of configuring VPNs. And while VPNs can sometimes provide a quick remote access solution, they can be difficult to manage and work with. Not to mention that users might have issues connecting to VPN servers and maintaining reliable connections. Windows VPN and DirectAccess Windows 10... --- ### Microsoft Added 12 Million New Daily Teams Users in 7 Days - Published: 2020-03-19 - Modified: 2020-03-19 - URL: https://petri.com/microsoft-added-12-million-new-daily-teams-users-in-7-days/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News The rise of COVID-19 has put a significant amount of pressure on IT departments around the globe. With the onset of needing to support robust remote work experiences, every type of remote collaboration application has seen strong growth during the past month. The rise of COVID-19 has put a significant amount of pressure on IT departments around the globe. With the onset of needing to support robust remote work experiences, every type of remote collaboration application has seen strong growth during the past month. Microsoft’s Teams application falls into the collaboration category and has seen significant growth during the past seven days. The company announced today that from March 11th to the 18th, there are 12 million new daily active users. In total, there are 44 million daily active users of Teams which is more than double the active userbase from November when the company reported 20 million daily active users. The company says that they also have 20 customers with over 100k users active as well. To put this growth into perspective, it previously took Microsoft four months to add seven million new daily active users, they added 12 in seven days. This is also likely part of the reason why Teams was having a few issues earlier this week as well. Along with frequently updating with new features, Teams' robust thrid-party ecosystem has been helping drive the success of the platform. With plug-ins that enable nearly any type of functionality, Teams can become a hub of productivity. With Skype for Business officially going away in the near future, the adoption of Teams should continue to grow as those customers migrate to the new platform. The key for Microsoft is to make Teams the new ‘sticky’ application inside of Office 365 and... --- ### As Teams Turns 3, Microsoft is Adding Highly Requested New Features - Published: 2020-03-19 - Modified: 2024-09-04 - URL: https://petri.com/as-teams-turns-3-microsoft-is-adding-highly-requested-new-features/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Teams, News, Teams - Article Type: News It’s a bit hard to believe but Microsoft’s Teams application is turning 3 this week. To say that the application has been a success for the company is under-selling its performance as the communication tool has been the fastest growing productivity app in the company’s history. It’s a bit hard to believe but Microsoft’s Teams application is turning 3 this week. To say that the application has been a success for the company is under-selling its performance as the communication tool has been the fastest growing productivity app in the company’s history. Microsoft says that there are 44 million daily active users of the platform with more than 20 customers having 100k users. While the retirement of Skype for Business certainly helps accelerate this growth, it’s still a monumental achievement for the company. Along with turning 3, Microsoft is set to release several new features for the application: Real-time noise suppression - minimizes distracting background noise, allowing you to hear what’s being said. Raise hand - lets anyone in the meeting send a visual signal that they have something to say. Pop-out chats into a separate window. Offline and low-bandwidth support. Microsoft isn’t providing a lot of details about the low-bandwidth support but says that this feature will let you write messages when you don’t have an Internet connection. I’m assuming that this means you can artificially ‘send’ a message to someone and once your device does find connectivity, it will send that message. The real-time noise suppression could be a significant new feature as long as it works as intended. We have all been in meetings where someone’s dog starts barking or what they are typing that is being blasted across the microphone – hopefully Microsoft introduces a visual queue to let the user know... --- ### Using Office 365 Sensitivity Labels with Teams, Groups, and Sites > Office 365 Sensitivity Labels can now be applied to "containers" - Teams, Office 365 Groups, and SharePoint sites. The labels don't affect the contents of the containers, but they can control some container settings - Published: 2020-03-19 - Modified: 2024-09-04 - URL: https://petri.com/using-office-365-sensitivity-label-teams-groups-sites/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Office 365 Groups, Office 365 Sensitivity Labels, SharePoint Online, Teams - Article Type: How To Office 365 Sensitivity Labels can now be applied to "containers" - Teams, Office 365 Groups, and SharePoint sites. Sensitivity labels replace the old text-only classifications that have been available since 2016. The labels don't affect the contents of the containers, but they can control some container settings, like whether a team allows guest access or if it's open to any tenant user to join. It's yet another development in the label and protection story for Office 365. Sensitivity Labels Replace Older Text-Only Classifications Microsoft announced the preview of support for Office 365 sensitivity labels in Teams, Groups, and (SharePoint Online) sites at the Microsoft Ignite 2019 conference. Sensitivity labels have been around since 2018. In that time, Microsoft has gradually increased their usefulness in terms of applying visual markings to sensitive information and, if necessary, protecting that information with rights-management based encryption. Following private tests, the preview is now public and available to any tenant that wants to participate. Update June 19: Microsoft announced that container support for sensitivity labels is now generally available with roll-out due to complete in early July. Not all group-enabled Office 365 applications support sensitivity labels yet. The big ones that do are Teams, OWA, and SharePoint Online. You can also assign labels to groups in the SharePoint admin center and Azure Active Directory portal. Containers and Labels What’s new is that you can use the same sensitivity labels defined to mark or protect individual files to mark “containers,” literally a team, group, or SharePoint site. This capability replaces the previous markings by text-only visual classifications defined in the Azure Active Directory policy for Groups. Labels serve the same purpose as classifications (which are not being deprecated at this point) in that users see a visual marker (like “Secret” or “Confidential”) to remind them of the importance or sensitivity of the information stored in a container. In addition, sensitivity labels have the extra benefit of being able to impose access... --- ### How to Audit LDAP Signing in an Active Directory Domain - Published: 2020-03-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-audit-ldap-signing-in-an-active-directory-domain/ - Categories: Active Directory (AD) - Tags: LDAP, Security, Windows Server Active Directory - Article Type: How To Microsoft is planning to make changes to LDAP security settings in Windows Server. In today's Ask the Admin, I show you how to audit for unsigned LDAP traffic hitting Windows Server Active Directory. Windows Server Active Directory (AD) uses the Lightweight Directory Access Protocol (LDAP) to communicate between the directory service, clients, and applications. LDAP is an open, industry-standard protocol for accessing directory services on Internet Protocol (IP) networks. In the second half of 2020, Microsoft changed the default LDAP signing and channel binding settings on Windows Server Active Directory domain controllers (DC). The new settings will enforce LDAP signing and channel binding. The current default settings don't enforce enforcing LDAP channel binding and signing. This could expose AD to an elevation of privilege vulnerabilities. Microsoft will make preparatory changes in a cumulative update due in March. But the new LDAP settings will only be enforced in a second cumulative update later in the year. For more information on LDAP, and the changes that Microsoft is planning to make, see Microsoft Delays LDAP Signing and Channel Binding Changes in Active Directory on Petri. Audit LDAP signing LDAP signing is configured using Group Policy. The Default Domain Policy Group Policy Object (GPO) can be used to configure the setting on domain-joined devices. And the Default Domain Controllers Policy GPO to configure the setting on domain controllers (DC). For more information on the Group Policy settings used to configure LDAP, see Microsoft Delays LDAP Signing and Channel Binding Changes in Active Directory on Petri. While you can check the LDAP GPO settings configured in your domain, you should look in the Windows Event Log on each DC to make sure that clients and applications are... --- ### Office 365 Suffers Temporary Scaling Problems > A growth in demand for Office 365 services caused some issues for users of Teams, SharePoint Online and OneDrive for Business. The growth in Teams demand is understandable. - Published: 2020-03-17 - Modified: 2024-09-04 - URL: https://petri.com/growth-service-demand-causes-problems/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: COVID-19, Microsoft 365 service problem, Service degradation, Teams outage - Article Type: News A growth in demand for Office 365 services caused some issues for users of Teams, SharePoint Online and OneDrive for Business. The growth in Teams demand is understandable in light of the upswing in home working and online education caused by the COVID-19 virus. We'll all have to be a little patient as Microsoft makes adjustments to keep services running. Features Adjusted to Ease Demand A spike in demand on Office 365 services, probably linked to the upswing in home working provoked by the COVID-19 virus pandemic, has forced Microsoft to throttle back some application features. The news was released to tenants in an update posted to the Office 365 message center yesterday (Figure 1). Figure 1: Microsoft reports problems caused by demand (image credit: Tony Redmond) A Rash of Teams Issues The features called out in the notification point to performance issues in Teams and Skype for Business Online messaging and video calls. Microsoft isn’t confirming the truth of this suspicion, but the feeling is supported by a rash of problems experienced by Teams users over the past few days. Common symptoms include: Not being able to connect to online meetings or needing several attempts to connect before successful. Not being able to send or receive messages or schedule meetings in the Teams client. Lack of responsiveness in the Teams admin center. Teams Live Events losing the ability to “go live” (broadcast). Because Teams service is distributed in multiple Office 365 datacenter regions around the world, the experience of users varied. European users reported a two-hour loss of service in the morning while people in other regions kept on working. However, problems resurfaced when U. S. -based workers came online. As the day progressed, Microsoft controlled the situation, possibly by introducing the measures to reduce the impact of “non-essential capabilities. ” Figure 2 shows that the... --- ### A Note to Our Fellow IT Pros - Published: 2020-03-16 - Modified: 2020-03-16 - URL: https://petri.com/a-note-to-our-fellow-it-pros/ - Categories: Main - Tags: IT pro To those who have been working 24x7 to keep the networks alive, who imaged 100s of laptops, issued security tokens, and have been looking at health metrics for your environment as they inch closer to failing-over, thank you. To those who have been working 24x7 to keep the networks alive, who imaged 100s of laptops, issued security tokens, and have been looking at health metrics for your environment as they inch closer to failing-over, thank you. The last 96 hours has seen one of the most dramatic shifts of the modern-era at a scale that we have never seen before; a significant portion of the population is being asked to work remotely. The COVID-19 pandemic is a disaster but not one that is routinely documented on a disaster recovery plan; for many, we are traversing uncharted waters. And it’s easy to forget who is making this happen. It seems easy enough to take a laptop and work from home but as anyone reading this knows, this means you need remote connectivity, bandwidth, and of course, a copious amount of security. For the big players, like Google, Microsoft, or Amazon, scale is already built-in to their operations but for the vast majority of operations, this is putting a new type of stress on environments. This is your World Series, your Super Bowl, the test of the test, the big dance – you get the idea. Keeping your company operational during these times is a difficult challenge and I want you to know that you are not alone. There are millions of IT Pros slugging it out through the nights to make the shared drives accessible, Active Directory authenticating, and video communications possible. The challenges ahead are likely greater than... --- ### Microsoft Releases Emergency Fix for Windows SMB3 Vulnerability - Published: 2020-03-16 - Modified: 2020-03-16 - URL: https://petri.com/microsoft-releases-emergency-fix-for-windows-smb3-vulnerability/ - Categories: Windows 10, Windows Server - Tags: Patch Tuesday, Security, SMB, Windows 10, Windows Server - Article Type: News Microsoft recommends applying an out-of-band emergency patch for SMB remote code execution flaw as soon as possible. As I reported last week, as part of March's Patch Tuesday, Microsoft released a security advisory detailing a remote code execution (RCE) bug that it was aware of in Server Message Block (SMB) version 3. 1. 1. SMB is the protocol Windows uses for shared network access to file servers, printers, and serial ports. An attacker could exploit the way SMBv3 handles requests to run code on a target SMB Server or SMB Client. Microsoft said: To exploit the vulnerability against an SMB Server, an unauthenticated attacker could send a specially crafted packet to a targeted SMBv3 Server. To exploit the vulnerability against an SMB Client, an unauthenticated attacker would need to configure a malicious SMBv3 Server and convince a user to connect to it. At the time, Microsoft alleged the flaw hadn’t been publicly exploited or disclosed but that SMB Servers could be protected by disabling SMBv3 compression. But the workaround didn't protect SMBv3 Clients. The flaw affects Windows 10 versions 1903 and 1909, and the respective Windows Server releases. You can read the original security advisory here. Details of flaw leaked online Just prior to Microsoft releasing updates for Patch Tuesday on March 10th, Cisco Talos and Fortinet published short summaries of the vulnerability on their websites. Fortinet said on its website that the flaw was a 'buffer overflow vulnerability' in the SMB Server component of Windows. Cisco Talos added that the flaw left systems vulnerable to 'wormable' attack. Wormable means that the bug could be used to... --- ### Windows 10 Passes 1 Billion Monthly Active Users - Published: 2020-03-16 - Modified: 2020-03-16 - URL: https://petri.com/windows-10-passes-1-billion-monthly-active-users/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, Windows 10 - Article Type: News Microsoft’s Windows 10 operating system has passed a significant milestone, the OS is running on more than 1 billion PCs around the globe. This is a considerable benchmark for the company and shows that customers are migrating from Windows 7 to 10 but you can expect this number to continue to climb higher. Microsoft’s Windows 10 operating system has passed a significant milestone, the OS is running on more than 1 billion PCs around the globe. This is a considerable benchmark for the company and shows that customers are migrating from Windows 7 to 10 but you can expect this number to continue to climb higher. Microsoft has previously talked about there being 1. 5 billion PCs running around the globe and with Windows 10 running on 1 billion of those devices, there is still room for the figure to climb higher. According to Net Marketshare, Windows 10 is running on about 60% of PCs with Windows 7 holding on to about 25% of the desktop PC market - these figures are rough and are not intended to be an exact representation. The devices that are still running Windows 7 are likely large enterprises that have yet to fully migrate or quite simply, unsupported devices. Considering Microsoft is charging a premium to support legacy Windows 7 hardware, I would expect that figure to drop quickly going forward for those that are paying for extended support. Microsoft is also saying that 100% of the Fortune 500 is now using Windows 10. In addition, the company says that there are 17. 8 million Insiders currently testing Windows 10 but I do wonder how many of them are active participants as Microsoft as previously slanted stats like these with Edge and Cortana in their positive favor. Microsoft had initially hoped to reach the 1 billion figure with Windows... --- ### How to Enable Security Defaults in Azure Active Directory - Published: 2020-03-13 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-security-defaults-in-azure-active-directory/ - Categories: Cloud Computing, Microsoft Azure, Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory, cloud computing, Multi-Factor Authentication, Security, Windows Server - Article Type: How To Microsoft is gradually introducing multifactor authentication (MFA) for all organizational accounts in Azure Active Directory. In this article, I look at the new Security Defaults setting and how to enable it. It's well understood that implementing multifactor authentication (MFA) on user accounts significantly improves security. MFA is the practice of requiring users to provide 'something' in addition to their password before they can access their accounts. For example, it might be a code from a mobile authentication app or a biometric gesture like a fingerprint. While MFA isn't impossible for hackers to bypass, it's extremely rare that accounts protected by MFA are compromised. So, if the security benefits are so high, why isn't MFA more widely adopted? Microsoft has been using MFA on so called Microsoft Accounts (MSA), which are used by consumers for logging into services like Xbox and Hotmail, since 2012. As part of this program, metrics were used to establish the effectiveness of different protections and to establish a security minimum standard. MSA users are required to register a second factor but aren't challenged every time they log in. Microsoft only challenges MSA users when there is some indication of risk, like someone trying to brute force their way into an account. This led to a 6-fold decrease in compromised accounts. In 2014 Microsoft launched MFA in Azure Active Directory (AAD), its identity management solution for cloud-born apps. AAD can also be connected to work with Windows Server Active Directory. Almost all compromises of organizational accounts can be stopped by MFA and the other protections that Microsoft has deployed for MSAs, like forcing users to change their password when a risk is detected. But Microsoft admits... --- ### Paul Thurrott's Short Takes: March 13 - Published: 2020-03-13 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-13/ - Categories: Cloud Computing, G Suite, Hardware, Microsoft 365, Microsoft Azure, Microsoft Teams, Mobile, Security, Windows 10 - Tags: News - Article Type: Overview Because of the Coronavirus, this edition of Short Takes looks at a lot of virus-related collateral damage, including Microsoft Build 2020, Apple’s retail stores, Microsoft Teams, Microsoft’s ability to manufacture hardware, and even the DOD JEDI contract. OK, that one isn’t related to the Coronavirus. Because of the Coronavirus, this edition of Short Takes looks at a lot of virus-related collateral damage, including Microsoft Build 2020, Apple’s retail stores, Microsoft Teams, Microsoft’s ability to manufacture hardware, and even the DOD JEDI contract. OK, that one isn’t related to the Coronavirus. Coronavirus: Microsoft finally cancels Build I’m not sure why they waited so long given the Coronavirus situation in Washington state, but Microsoft on Thursday night finally announced that it would cancel the live, in-person version of its Build conference after I tweeted about its plans. Build 2020 had been scheduled for mid-May, but other industry events like Google I/O (May, Bay area) and E3 (June, Los Angeles) had already been canceled, and Build’s fate had been certain for weeks. “We will deliver our annual Microsoft Build event for developers as a digital event,” a Microsoft statement notes. “We look forward to bringing together our ecosystem of developers in this new virtual format to learn, connect and code together. ” I’ve been hearing for some time that certain Microsoft executives have been trying to kill Build for a while now. This may finally make that happen. “Apple gets good news: Foxconn’s Chinese factories are running again” Thank God. Those iPhones aren’t going to make themselves with slave labor. Coronavirus: Apple is reopening its retail stores in China In a bit of confusing news, Apple confirmed that it has reopened its retail stores in China after closing them because of the Coronavirus. The 42 stores will... --- ### Microsoft Moves Build to Virtual Event, Cancels In Person Show - Published: 2020-03-12 - Modified: 2020-03-12 - URL: https://petri.com/microsoft-moves-build-to-virtual-event-cancels-in-person-show/ - Categories: Main - Article Type: News Microsoft has announced that its developer conference, Build, is moving to a virtual-only event with the on-site portion of the conference being cancelled. Considering that nearly every other conference slated for the spring has been canceled, it’s no surprise to hear that Microsoft is canceling the in-person part of Build. For this year, the event will be streamed with the company providing more details about how this will operate in the near future. Effectively, this means that Build is canceled but it will be interesting to see how Microsoft proceeds with the streaming aspect of the conference. The company is well-prepared to stream all the sessions as well as the keynotes; they typically record all the sessions anyways. Of course, this is taking matters to the extreme but considering the circumstances around COVID-19, this is the right move. Microsoft is following many others down the same path as Google has canceled IO and now all eyes will turn to Apple to see if they will cancel their event. These developer events for Microsoft, Google, and Apple are key conferences each year as they shine a light on the development path each company is taking. Microsoft also canceled its MVP summit, moving that conference to a streaming-only event as well. The company also backed-out of GDC before that show was canceled. This year has been rocked by the COVID-19 virus and it certainly has made covering the tech industry more challenging. While these tech events are helpful for companies like Microsoft to share information about new features and the like, it was also helpful as a journalist as these are the types of events... --- ### Patch Tuesday – March 2020 - Published: 2020-03-12 - Modified: 2020-03-12 - URL: https://petri.com/patch-tuesday-march-2020/ - Categories: Security - Tags: Office 365 ProPlus, Patch Tuesday, Security, Windows 10, Windows Server - Article Type: News The biggest Patch Tuesday in the company's history, this month Microsoft fixes 115 bugs. There's also a security advisory for a critical bug in SMBv3 and a patch for a flaw in the way Windows parses .LNK files. The bug could let an attacker run code regardless of whether a user opens the infected file. This month sees a bumper crop of fixes from Microsoft; the biggest in the company's history. Windows and Windows Server This month there are patches for 7 'Critical' remote code execution (RCE) bugs for Windows 10, Windows Server 2016, and 2019. CVE-2020-0684 could allow an attacker to gain the same rights as the logged-in user when a . LNK file is parsed. That means that a user doesn't need to open the . LNK file. When File Explorer or other application parses any removable drive or share containing an infected . LNK file, an attacker could run malicious code of their choice on the target system. A memory corruption vulnerability in Windows Media Foundation (CVE-2020-0809) could let an attacker create new accounts with full user rights. Users would need to open a specially crafted document to allow the attacker to exploit the bug. A vulnerability (CVE-2020-0881) in the way the Windows Graphics Device Interface (GDI) handles objects in memory could let an attacker take control of the affected system. Including creating new accounts with full user rights. Users without administrative rights would be less impacted by this bug. Internet Explorer 11 and EdgeHTML get a series of fixes for RCE flaws rated Critical. Most of the remaining bugs, rated Important, are elevation of privilege (EoP) flaws. Although there is one fix for Microsoft IIS Server that plugs a tampering issue when IIS improperly handles malformed request headers. SMBv3 compression security advisory Microsoft issued a security advisory (ADV200005) rated Critical. Microsoft says... --- ### VMware Embraces Kubernetes for App Modernization - Published: 2020-03-12 - Modified: 2024-11-19 - URL: https://petri.com/vmware-embraces-kubernetes-for-app-modernization/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Hybrid Cloud, Microsoft Azure, Virtualization, VMware - Tags: Cloud, cloud computing, vmware, vSphere - Article Type: News Like many businesses today, VMware has embraced Kubernetes as a path forward to rearchitect modern apps and extend infrastructure and app management across the data center, edge and cloud. Following up on their stated directions from VMworld 2019, on March 10th 2020, VMware made a number of announcements around their latest improvements to support Kubernetes for application modernization. Applications are core to today’s successful digital transformation efforts. All types of businesses are in the process of modernizing their applications to embrace cloud environments, enable faster development and become more flexible and competitive. Like many businesses today, VMware has embraced Kubernetes as a path forward to rearchitect modern apps and extend infrastructure and app management across the data center, edge and cloud. Some of VMware’s most important announcements were about updating vSphere to natively support Kubernetes as well as rolling out their new VMware Tanzu platform. VMware Tanzu is a collection of products and services that enable businesses to provide cross-platform support for Kubernetes and modern applications. In case you were wondering about the name, Tanzu is Swahili for a branch. Pat Gelsinger, CEO of VMware, explained that the new Tanzu platform represents a new branch in a growing family of solutions. VMware’s most important announcements included: VMware vSphere 7 – Initially previewed at VMworld 2019 as Project Pacific, Ray O’Farrell VMware Executive Vice President and General Manager characterized the new vSphere 7 release as the biggest evolution of vSphere in a decade. VMware rearchitected vSphere to add native support for Kubernetes with the goal of supporting all applications including modern and traditional applications using any combination of VMs, containers and Kubernetes with the same experiences and capabilities... --- ### CVE-2020-0688 Puts Focus on Exchange On-Premises Vulnerabilities > The revelations that Exchange Server has had a vulnerability in the Exchange Control Panel since Exchange 2010 shocked some. Microsoft has patched CVE-2020-0688, but the problem - Published: 2020-03-12 - Modified: 2020-03-12 - URL: https://petri.com/cve-2020-0688-puts-focus-exchange-vulnerabilities/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Online, Exchange Server, Microsoft 365, Office - Tags: CVE-2020-0688, Exchange on-premises, Vulnerability - Article Type: Opinion The revelations that Exchange Server has had a vulnerability in the Exchange Control Panel since Exchange 2010 shocked some. Microsoft has patched CVE-2020-0688, but the problem gives on-premises administrators something to think about as they look to the long-term future of their email service. Staying on-premises is an option, but going to the cloud might be more secure. Patches Available to Address Long-term Vulnerability On February 11, 2020, Microsoft patched every version of Exchange from 2010 to 2019 to address the CVE-2020-0688 “Validation Key Remote Code Execution” vulnerability. The patch addressed a weakness in the Exchange Control Panel (ECP) which has existed since its introduction in Exchange 2010. In a nutshell, instead of generating random per-installation cryptographic keys to secure communications, Exchange used the same key everywhere. Bad Guys Busy Looking for Exchange Server Targets It’s obviously an embarrassing and worrisome oversight for Microsoft, especially since evidence has emerged that advanced persistent threat (APT) actors have started to probe for vulnerable servers. According to Volexity Threat Research, APTs have exploited the Exchange vulnerability to: Run system commands to conduct reconnaissance. In other words, snoop around the organization to find if any other weaknesses exist and what information can be gathered to help them execute an attack. Deploy webshell backdoor accessible via OWA. Attackers use backdoors to retain access to penetrated systems when the original weakness is closed. Execute in-memory post-exploitation frameworks that attackers can leverage in the future. As Volexity point out, the obvious mitigation is to install the patch issued by Microsoft. And after you do that, consider whether you should still need to run Exchange on-premises servers. As I described last week, on-premises Exchange isn’t going away just yet. Some comments I received noted that Exchange servers operate in circumstances where cloud connectivity isn’t possible. But not everyone runs email on a submarine and... --- ### Microsoft Begins Rollout of Skype Federation in Teams - Published: 2020-03-11 - Modified: 2020-03-11 - URL: https://petri.com/microsoft-begins-rollout-of-skype-federation-in-teams/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News There is one feature that I have been waiting to be brought to Teams that has been on the roadmap since July – the ability to chat with Skype contacts inside of Teams. Starting this month, Microsoft will being rolling out that functionality to all customers. There is one feature that I have been waiting to be brought to Teams that has been on the roadmap since July – the ability to chat with Skype contacts inside of Teams. Starting this month, Microsoft will begin rolling out that functionality to all customers. The feature will be fully deployed by the end of April and you will be able to chat and call Skype users – you can add users with their email address. This will be the bridge needed to make it possible to communicate across the company's two communication applications. The reason this feature is helpful is that working with users who are outside of an organization can still be a bit cumbersome inside of Teams. For example, Petri has a significant number of freelance contributors to the site and we typically use Skype for communication; this requires me to jump between applications for communication which is a frustrating experience. Yes, we could setup all of our contributors with access to Teams but juggling these permissions and the frequent additions and deletions from the role created a workflow that was not ideal for us. One important thing to point out, as Mary Jo notes, this feature will be disabled by default inside of Office 365. This is the correct approach as most large corporations likely don’t need this functionality and I suspect that this feature will make it easier for smaller sized businesses to adopt Teams. While not everyone may be excited about this update,... --- ### How FIDO2 Passwordless Logins Work in Hybrid Azure AD Environments - Published: 2020-03-11 - Modified: 2024-09-04 - URL: https://petri.com/how-fido2-passwordless-logins-in-work-hybrid-azure-ad-environments/ - Categories: Active Directory (AD), Cloud Computing, Microsoft Azure, Security, Windows 10 - Tags: Azure Active Directory, FIDO2, Security, Windows 10, Windows Server Active Directory - Article Type: Overview Microsoft is expanding support for passwordless logins to devices that are hybrid joined to Azure AD domains. In this article, I explain how FIDO2 security keys work in hybrid Azure AD environments. Microsoft is expanding support for passwordless logins to devices that are hybrid joined to Azure AD domains. In this article, I explain how FIDO2 security keys work in hybrid Azure AD environments. Microsoft announced a public preview of support for FIDO2 security keys in hybrid Azure AD environments in late in February. FIDO2 security keys enable passwordless login for users. Microsoft has been pushing the concept of passwordless logins for several years because security experts agree that passwords alone are no longer effective. Multifactor authentication (MFA) can improve the effectiveness of passwords considerably. Once a device is 'trusted', users might not be challenged to provide an additional factor with their password for a couple of weeks or a month. But uptake hasn't been anything near what Microsoft had hoped. Partly because MFA can be complicated to set up and it adds an additional layer to the login process. How FIDO2 Passwordless Logins Work in Hybrid Azure AD Environments (Image Credit: Microsoft) If you already understand how FIDO2 security keys and hybrid Azure AD environments work, you can skip straight to FIDO2 support in hybrid Azure AD environments below. How do FIDO2 security keys work? FIDO2 security keys provide for several different options when users log in: Single factor passwordless Two-factor authentication Multifactor authentication FIDO2 security keys can provide single-factor hardware-based authentication that is much stronger than a username and password. FIDO2 keys can also be used additionally as a second factor for even stronger... --- ### With Microsoft Working from Home, Teams Will be in the Spotlight - Published: 2020-03-10 - Modified: 2020-03-10 - URL: https://petri.com/with-microsoft-working-from-home-teams-gets-the-spotlight/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: Overview In the world of software development, dogfooding is the act of using your own software. For Microsoft, this is done as a sign of trust that if they can use it for the multi-billion-dollar operation, every other company should be able to as well. In the world of software development, dogfooding is the act of using your own software. For Microsoft, this is done as a sign of trust because if they can use it for their multi-billion-dollar operation, every other company should be able to as well. Because of COVID-19, Microsoft is asking all of its Seattle-based employees to work from home. While we don’t know the exact number of users that will now be working remotely, it’s somewhere around the 50,000 mark. What this means is that the company is going all-in on the remote work scenario and has the trust that its suite of productivity tools will allow everyone to knock out their tasks when away from the office. While this appears to be an obvious statement on the surface, this will be a sustained test of long-term off-site productivity at a significant scale. Yes, Microsoft has had days where snow has closed offices or other events have temporarily caused employees to not come into the company’s offices but this is the first time that the offsite activity will be in the weeks' timeframe, not days. With 10s of thousands of employees working offsite for weeks, this will be an excellent time for Microsoft to fully evaluate all the capabilities of Teams. Because in this scenario, if a feature or functionality is not working well, there is no “we can talk about it tomorrow in the Office” – everything remote, means everything, with no exceptions. Microsoft has already started talking about... --- ### SharePoint Online Embraces Office 365 Sensitivity Labels > SharePoint Online is embracing Office 365 Sensitivity Labels to allow protected documents to be processed by indexing and available to content searches and eDiscovery. - Published: 2020-03-10 - Modified: 2025-01-21 - URL: https://petri.com/sharepoint-online-embraces-office-365-sensitivity-labels/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: encryption, Office 365 Sensitivity Labels, OneDrive for Business, SharePoint Online - Article Type: How To, News SharePoint Online is embracing Office 365 Sensitivity Labels to allow protected documents to be processed by indexing and available to content searches. The Office Online apps (Word, Excel, and PowerPoint) also support the application of sensitivity labels. The only disappointment is that the SharePoint Online and OneDrive for Business browser interfaces don't allow labels to be applied to documents. The Progress of Sensitivity Labels The introduction of sensitivity labels into Office 365 has followed a measured path since their introduction in late 2018. Originally, you could apply labels to files only after installing the Azure Information Protection client on a workstation. Then labels were supported by the Office ProPlus applications, which eliminated the need for the client. Now, Microsoft is in the final phases of incorporating support for sensitivity labels into SharePoint Online, including the Office Online apps. The use of sensitivity labels to mark Office 365 Groups, Teams, and SharePoint sites (collectively known as “containers”) is also in preview, as are previews of tools to apply labels at scale to data at rest, such as all the documents in a tenant. By the end of 2020, it will be true that sensitivity labels are pervasive within Office 365. Update: Sensitivity label support for SharePoint Online is now Generally Available. Marking and Protection Sensitivity labels serve three purposes: For documents and messages, labels can apply visual markings like headers and footers to show the importance of information in an item. For containers, labels can manage some settings that control who can access information in the container. Labels can also be linked to Microsoft Information Protection (rights management) to protect documents and messages by encrypting their content. Currently, applying a label to a container does not encrypt the items stored in the container. SharePoint and Rights Management Historically, SharePoint Online did not enjoy a happy relationship with rights... --- ### How to Create a Services List in PowerShell 7 on Linux - Published: 2020-03-09 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-services-list-in-powershell-7-on-linux/ - Categories: PowerShell - Tags: Powershell 7 - Article Type: News Just like Windows, Linux has many running services that need proper management. With the advent of PowerShell 7 and it's cross-platform ability, the idea of using PowerShell to manage Linux systems becomes more attractive. Just like Windows, Linux has many running services that need proper management. With the advent of PowerShell 7 and it's cross-platform ability, the idea of using PowerShell to manage Linux systems becomes more attractive. Not all cmdlets are available on all systems though, notably, one that is missing is that of the Get-Service cmdlet, an easy way to list service status. In this article, we will create an equivalent function in PowerShell 7 that allows for retrieving Linux services in a PowerShell compatible format. Listing Service Status Many Linux distributions use SystemD to manage services. Ubuntu 18. 04 is the distribution of choice in this article. Using SystemD, how do we retrieve a listing of services and their status? Running the below command lists all SystemD services and their status. ​ ​ By specifying --no-legend and --no-pager extra formatting that does not helpl in extracting the service information is removed. An example of the default systemctl command output is shown below. Extracting Information into PowerShell Objects The systemctl command doesn't exactly return an easy to parse format by default. Using RegEx to split apart the output will create PowerShell objects that are easy to use. The \s+ RegEx command means to match one or more whitespace characters (i. e. space, tab, form feed, etc. ). By splitting on that RegEx command, only the words are returned. Although the description is separated by multiple spaces, concatenating all remaining words will store the description. When referencing an object via array notation, , the... --- ### Understanding Windows App Installer - Published: 2020-03-09 - Modified: 2020-03-09 - URL: https://petri.com/understanding-windows-app-installer/ - Categories: Windows 10 - Tags: Desktop Bridge, Microsoft Store for Business, MSIX, Universal apps, Windows 10, Windows App Installer - Article Type: Overview Windows App Installer was first introduced in the Windows 10 Anniversary Update (1607) to make sideloading UWP apps easier. Since then, Microsoft has gradually been improving App Installer to provide most of the features found in the Microsoft Store. In this article, I look at how App Installer has developed and how it fits into the bigger picture. With the news this month that Microsoft could be preparing to retire the Microsoft Store for Business; the saga of Universal Windows Platform (UWP) apps, which were meant to be the new modus operandi for Windows developers; and the Desktop Bridge, which allows developers to bring win32 apps to the Microsoft Store; the Windows 10 app story is a complicated one. The future of the consumer Microsoft Store app in Windows 10 is unclear at the moment but nonetheless, Microsoft is gradually developing a technology called Windows App Installer to provide most of the features of the Store but for standalone app installers. In this article, I'm going to look at the beginnings of Windows App Installer, how it evolved into what it is today, and what the future might hold. Sideloading app packages in Windows 10 Anniversary Update Before the Windows 10 Anniversary Update, if you wanted to sideload an app package, i. e. install an app package directly from an . appx file without going through the Microsoft Store, you needed to run a PowerShell script using the Add-AppxPackage cmdlet. That all changed in the Anniversary Update with the introduction of App Installer, a new Windows 10 component. With App Installer, all you need to do is double click an app package and a dialog appears prompting you to install the app. It provided a much-simplified experience for sideloading app packages. Remote sources, app package definitions, and auto updates in the Windows 10 April 2018 Update The new... --- ### How to Manage GIT with PowerShell 7 and Posh-GIT - Published: 2020-03-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-manage-git-with-powershell-7-and-posh-git/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To If you haven't heard of Posh-GIT, it is a great module for assisting in managing your GIT repositories from within PowerShell. There is so much functionality in GIT that it can be hard, especially in a PowerShell oriented way, to use that functionality effectively. Using Posh-GIT, you are able to interact easily with GIT using the PowerShell shell. Of course, there are a few prerequisites. In this article, it is assumed that you have the GIT client itself installed. You can install the client from here. Installing Posh-GIT The preferred way to install Posh-GIT is from the PowerShell Gallery. This method of installation relies on two things which are listed below. Trust installation of packages from the PowerShell Gallery Use a PowerShellGet version greater than or equal to 1. 6 To install Posh-GIT, run the following command to install the module from the PowerShell Gallery. ​ ​ Getting Started Posh-GIT integrates GIT and PowerShell by modifying the PowerShell prompt to include GIT status information. Additionally, Posh-GIT provides helpful tab completion support for many common GIT commands, branch and remote names, and paths. Using simple commands, it is easy to tab-complete through the available commands which saves time remembering what the exact command may be. Importing Posh-GIT After we have installed Posh-GIT, the next steps are to actually import the module. This is as simple as running: Import-Module posh-git. Once the module has imported, provided you are in a GIT repository directory, the PowerShell prompt will change to reflect the... --- ### Teams, Surface Earbuds, and the Microsoft 365 Assistant - Published: 2020-03-05 - Modified: 2024-09-04 - URL: https://petri.com/cortana-surface-earbuds-and-the-microsoft-365-ecosystem/ - Categories: Microsoft 365 - Tags: Cortana, Microsoft 365, News, Surface Earbuds - Article Type: News Microsoft may be pivoting Cortana but the assistant is gaining features in the hardware space as well as inside of Teams. Last week, Microsoft made a significant announcement: the company is changing the role of Cortana. Rather than being a general-purpose AI bot like Alexa or Google Assistant, the bot is moving explicitly forward as a productivity assistant. Considering that Microsoft’s marching orders are all about improving productivity, this isn’t a big surprise. The company’s digital assistant found itself as an orphan once Windows Phone was shut down and its usage on iOS and Android devices is anemic according to those familiar with its usage in the US. Internally, Microsoft has been referring to Cortana as the “Microsoft 365 assistant” for some time and frankly, I wouldn’t be surprised to see the assistant publicly rebranded as well. ‘Cortana’, which is a character from the company’s Halo games, doesn’t make much sense anymore. And considering how hard the company is pushing Microsoft 365 and that they are now pivoting Cortana to productivity, the Microsoft 365 Assistant becomes a more logical name. Late last year, Microsoft announced the Surface Earbuds and then a few weeks later, said that the hardware was delayed; the Earbuds are currently expected to arrive this spring. It is my understanding that the reason for the delay was software related as the productivity features for the new hardware were not ready to be released. Microsoft showcased how you can use the Earbuds to move between slides and the company has other functions that would pair with this messaging as well; specifically the ‘Play My Emails’ feature. According to people... --- ### Google Managed Service for Microsoft Active Directory Reaches General Availability - Published: 2020-03-05 - Modified: 2024-09-04 - URL: https://petri.com/google-managed-service-for-microsoft-active-directory-reaches-general-availability/ - Categories: Active Directory (AD) - Tags: Active Directory, Azure Active Directory, Azure Active Directory Domain Services, Google Cloud, Microsoft Azure - Article Type: News Google makes it easier for enterprises to move apps that rely on Windows Server Active Directory to Google Cloud. Most Windows sysadmins will be familiar with Microsoft's Azure Active Directory (AAD). AAD is an identity management product for cloud-based apps that optionally integrates with on-premises Windows Server Active Directory (AD). Office 365 uses AAD for identity and authentication of users. But organizations can also leverage AAD for managing access to line-of-business cloud apps. Azure Active Directory vs. Azure Active Directory Domain Services AAD was developed specifically for cloud-first apps. It isn't just a version of Windows Server AD that was lifted and shifted to Azure. If you want to run Windows Server AD in the cloud, you can either install Active Directory domain controllers (DC) in virtual machines (VM) or use Azure Active Directory Domain Services (AD DS). Azure AD DS provides many of the features of on-premises AD in the cloud without you needing to manage VMs, Windows Server, and AD. Azure AD DS lets organizations shift apps that rely on Windows Server AD to the cloud. Azure AD DS is based on Windows Server AD, so it ensures compatibility for enterprise on-premises apps when they are moved to the cloud. For more information on how to set up and configure Azure Active Directory Domain Services, check out How to Configure Azure Active Directory Domain Services – Part 1 and How to Configure Azure Active Directory Domain Services – Part 2 on Petri. Google Managed Service for Microsoft Active Directory Azure AD DS reached general availability in 2016. But now Google is stepping up its game. Google announced... --- ### On-Premises Exchange Not Going Away Just Yet > A Microsoft employee commented that Exchange 2019 is the last on-premises version and will bring the era of Exchange to a close after 25 or so years. - Published: 2020-03-05 - Modified: 2024-09-04 - URL: https://petri.com/exchange-not-dead-yet/ - Categories: Exchange 2019, Exchange Online, Microsoft 365, Office - Tags: Exchange 2019, On-premises servers - Article Type: Opinion A Microsoft employee commented that Exchange 2019 is the last on-premises version, something that would bring the era of Exchange to a close after 25 or so years. Perhaps that's the case, and certainly there's been a huge transition of email workload to Exchange Online. But is an opinion expressed by a single Microsoft employee enough to tell us what will happen over the next few years? The End of a Twenty-Five Year Road? A comment posted by a Microsoft employee to a blog post about the Exchange 2019 sizing calculator caused some furor when he stated that Exchange 2019 will be the last on-premises version. Figure 1: Whoops... did something slip out? (image credit: Tony Redmond) Microsoft removed the comment soon afterwards, but that didn’t stop the flow of questions. Some of the commentary has been uninformed. Some silly. And some plain stupid. Let’s consider what might be happening. The Future of Exchange Needs Discussion Obviously, some discussion about the future of on-premises software has happened inside Microsoft. This is perfectly natural and it’s what you’d expect any company going through a product transition to do. Remember, we are twelve years into the Exchange Online journey, and even longer if you include the Exchange Labs deployment. It’s utterly unsurprising to learn that some in Microsoft might consider that it doesn’t make sense to ship future versions of on-premises products like Exchange and SharePoint. But one opinion doesn’t constitute a corporate decision and even though hundreds of millions of Exchange mailboxes have moved to Office 365, there’s still a substantial customer base who either prefer to run on-premises email servers or can’t move to the cloud for some reason. Some estimates put the overall Exchange installed base at more than 350 million mailboxes. If you compare that against the public Microsoft position that 200 million active users are in Office 365... --- ### Understanding User Settings and Data Synchronization in Chromium-Based Microsoft Edge - Published: 2020-03-04 - Modified: 2024-09-04 - URL: https://petri.com/understanding-user-settings-and-data-synchronization-in-chromium-based-microsoft-edge/ - Categories: Windows Client OS - Tags: Microsoft Edge, Windows 10 - Article Type: Overview How account synchronization works in the new version of Microsoft Edge. In January, Microsoft's new Edge browser hit general availability. Microsoft is rolling it out slowly to Windows 10 users via Windows Update. And enterprises can download an offline deployment package for use with Microsoft Endpoint Manager and Intune. The browser is also available for Windows 7, Windows 8, and macOS. You can download the new Edge from Microsoft's website here. Based on Chromium, the new browser meets the performance and compatibility expectations of users while also providing enterprise features, like IE mode and compatibility with Windows Defender Application Guard. Because most websites are tested against Google Chrome, which is also based on Chromium, the new version of Edge guarantees a much higher level of compatibility than previous Microsoft browsers. And like Google Chrome, the new Edge supports setting up more than one profile. Profiles can be for different users or for different kinds of user account. For instance, you might set up one profile for personal use with a Microsoft Account (MSA) and a second 'work profile' that uses an Office 365 or Microsoft 365 account. When configuring a profile, you don't have to sign in with an account. But if you don't sign in, you lose the ability to synchronize user data. Edge currently supports syncing the following profile data: Favorites Passwords Addresses and more (form-fill) Settings Microsoft Edge sync with MSAs Consumers are most likely to synchronize Microsoft Edge settings using an MSA. MSAs are used to sign in to many Microsoft services, like Outlook. com. Not... --- ### PowerShell 7 is Now Available for Windows, Linux and macOS - Published: 2020-03-04 - Modified: 2020-03-04 - URL: https://petri.com/powershell-7-is-now-available-for-windows-linux-and-macos/ - Categories: PowerShell If you have been hanging around the Petri neighborhood, you might be mistaken to think that PowerShell 7 is already available. But up until today, it was in preview. If you have been hanging around the Petri neighborhood, you might be mistaken to think that PowerShell 7 is already available. But up until today, it was in preview. Microsoft is making PowerShell 7 now generally available which means that the cross-platform automation tool is available for Windows, Linux, and macOS. Along with a bunch of cmdlets/APIs and bug fixes, there are several new features as well: Pipeline parallelization with ForEach-Object -Parallel New operators: Ternary operator: a ? b : c Pipeline chain operators: || and && Null conditional operators: ? ? and ? ? = A simplified and dynamic error view and Get-Error cmdlet for easier investigation of errors A compatibility layer that enables users to import modules in an implicit Windows PowerShell session Automatic new version notifications The ability to invoke DSC resources directly from PowerShell 7 (experimental) This release also completes the move from . NET Core 2. x back to 3. 1. What this means is that backward compatibility will be significantly improved over that of PowerShell 6, especially on Windows; if you were not using an old script because of compatibility issues, you may want to give it a run again. Since the early preview days of PowerShell 7, we have been diving deep looking at the new features; you can find more information here. The compatibility list for PowerShell 7 is quite lengthy and includes products Microsoft no longer supports: Windows 7, 8. 1, and 10 Windows Server 2008 R2, 2012, 2012 R2, 2016, and 2019 macOS 10. 13+ Red Hat Enterprise... --- ### The Difference between Backup and Disaster Recovery - Published: 2020-03-04 - Modified: 2020-03-04 - URL: https://petri.com/the-difference-between-backup-and-disaster-recovery/ - Categories: Backup & Storage - Tags: Backup, Disaster Recovery - Article Type: Overview While they definitely work together to provide data protection, backup and disaster recovery (DR) are not the same thing. A number of people, especially in smaller and medium-sized businesses, mistakenly think that just doing backups is enough to cover their DR requirements. While they definitely work together to provide data protection, backup and disaster recovery (DR) are not the same thing. A number of people, especially in smaller and medium-sized businesses, mistakenly think that just doing backups is enough to cover their DR requirements. They think that just doing backups is all the protection that they need from disasters. The importance of backups cannot be overstated and they do constitute the foundation for an effective DR strategy. However, while there certainly is overlap and in many cases backups can be used as a part of a DR process, backups do not eliminate the need for a DR plan.  A backup is essentially a copy of the data that you can use to restore your systems to the point-in-time that the backup was taken. In contrast, a DR plan enables you to recover your essential business processes in the event of a large scale outage caused by a disaster, malware, human error or some other type of occurrence. Let’s take a closer look at the differences between backups and DR. Backups are a point-in-time copy Backups are a point-in-time copy of your data. There are several types of backups. Full system backups can be used to restore an entire computer system but more often backups are used to restore a single deleted or corrupted file. In addition to being used for restores, backups also fulfill the need for long-term data archival which can be required for legal or regulatory compliance issues. While backups... --- ### Economic Impact Study Says Outlook Mobile is Good. How Surprising! > A Forrester Research study sponsored by Microsoft concludes that the deployment of Outlook Mobile brings big benefits for organizations. Given the funding source, that outcome is hardly surprising. - Published: 2020-03-03 - Modified: 2024-09-04 - URL: https://petri.com/economic-impact-study-outlook-mobile/ - Categories: Exchange Online, Microsoft 365, Office, Outlook - Tags: Forrester Research, Outlook Mobile, Total Economic Impact - Article Type: Opinion A Forrester Research study sponsored by Microsoft concludes that the deployment of Outlook Mobile brings big benefits for organizations. Given the funding source, the outcome is hardly surprising. But like with all similar reports, the important thing is to view the findings through the lens of your organization to understand the good points and discard the marketing messages. In a nutshell, all your need to understand is that Outlook mobile is the best mobile email client for Exchange Online. What can we make of the Forrester Total Economic Impact™ study of Outlook mobile in the enterprise released on February 26? Microsoft trumpets the financial analysis showing that organizations which deployed Outlook mobile achieved cost savings, increased user productivity, and better security. Who wouldn’t like to gain benefits of $4. 4 million (NPV) over three years? But the nature of studies like this is that they deliver broad-brush assessments which must be challenged in the context of a specific organization before they make sense. Users in your company might, for instance, not be paid an average of $35/hour (and what defines a “business user” anyway? ). Forrester makes the point that their study is “a framework to evaluate the potential financial impact of Microsoft Outlook for iOS and Android on their organizations. ” In other words, don’t believe anything in the report until you’ve compared what it says against the reality of your company. Let’s examine some of the key findings of the study. Built-in Security Forrester begins by saying that built-in security delivers big benefits. Hmmm... Instead of focusing on Outlook mobile by itself, their study assumes that the client is used in conjunction with Enterprise Mobility and Security (EM+S) and might replace a third-party mobile device management (MDM) tool. Although it’s true that EM+S is used extensively with Outlook mobile (the latest Microsoft results said that EM+S has 127 million subscribers while the most recent figure for Outlook mobile is 100 million), it’s reasonable to say that Outlook mobile... --- ### Microsoft's MVP Summit Goes Virtual Because of Coronavirus - Published: 2020-03-02 - Modified: 2020-03-02 - URL: https://petri.com/microsofts-mvp-summit-goes-virtual-because-of-coronavirus/ - Categories: Main - Article Type: News In about two weeks, Microsoft was scheduled to host its annual MVP summit at its offices in Seattle, Washington. The company has started notifying attendees today that the company is canceling the in-person event and will move to a virtual event instead. In about two weeks, Microsoft was scheduled to host its annual MVP summit at its offices in Seattle, Washington. The company has started notifying attendees today that the company is canceling the in-person event and will move to a virtual event instead. The company is making this change because of the COVID-19 virus, also known as the Coronavirus, that has been spreading rapidly throughout the world. Last month, Microsoft warned that its earnings for the current quarter would be impacted due to manufacturing restrictions in China for its Surface hardware and its OEMs not building new devices too. The next question is if Microsoft will cancel its developer conference that is taking place in May. At this time, the company has not made any decisions but if the virus continues to spread, it would not be unheard of for the event to move to a digital-only event. This year, large conferences are under pressure from the virus as vendors are pulling out of major events; Microsoft is no longer attending GDC, Mobile World Congress was canceled, and many other events have been impacted as well. --- ### Everything You Need to Know About Office 365 - February 2020 > This month the news is dominated but the Office client team and Power Platform team. Don't blame me, I just report the news. Still good stuff. - Published: 2020-03-02 - Modified: 2020-03-02 - URL: https://petri.com/everything-you-need-to-know-about-office-365-february-2020/ - Categories: Microsoft 365 - Tags: Microsoft Office 365, Office 365, Office Graph, Outlook, Yammer - Article Type: News This month, the news is mostly around the Office clients and the Power Platform. I guess those teams decided to work harder than the rest or it could be that teams like the SharePoint group are busy delivering on a lot of new features they had already teased. This month, the news is mostly around the Office clients and the Power Platform. I guess those teams decided to work harder than the rest or it could be that teams like the SharePoint group are busy delivering on a lot of new features they had already teased. Either way, some fun, quick nuggets this month. Also, a shout out to Daniel Christian for the assist pulling all of this content together. The short month also meant I was short on time. Graph API gets a preview of PowerShell cmdlets Okay, this may be a bit nerdy but I am kind of jazzed. The Graph API, if you are not familiar, is the API that glues Office 365 together that you can access. This means when you get stuck not being able to do something in the UI, if you are brave, you can often find a way to do it via the API. And even non-developers can do so. I know business users that use it to manipulate SharePoint all of the time. To make it even more accessible Microsoft is rolling out PowerShell Cmdlets that Tony helps you understand how to get started with. Microsoft Office app available for Android and iOS Apparently the Office clients are pretty popular on mobile devices. If you are one of those people, then make sure you go out to your store and search for the new app. Instead of a bunch of separate apps, it is now just one... --- ### Everything You Need to Know About Azure – February 2020 Edition - Published: 2020-03-02 - Modified: 2020-03-02 - URL: https://petri.com/everything-you-need-to-know-about-azure-february-2020-edition/ - Categories: Cloud Computing, Microsoft Azure - Tags: Active Directory, App Services, ARM, ASR, Azure, Azure AD, Azure Data Box, Azure Files, Azure Firewall, Azure KeyVault, Azure Load Balancer, Azure Security Center, Azure Site Recovery, Azure SQL, Azure Virtual Machines, Azure VPN Client, Backup Explorer, Cluster Shared Disks, DevTest Labs, Failover Clustering, IaaS, JSON, linux, Log Analytics, Managed Identities, Network, NSG Flow Logs, Private Endpoint, Private Link, RADIUS, Regional VNet Integration, Security, StorSimple, Template, Virtual Hard Disks, Virtual Network, Workspace - Article Type: Overview I did think about calling this the typo edition – I just bought a Microsoft Sculpt ergonomic keyboard and it might be preventing physical strain but my mental state as a result of the change is a whole other matter. I did think about calling this the typo edition – I just bought a Microsoft Sculpt ergonomic keyboard and it might be preventing physical strain but my mental state as a result of the change is a whole other matter. For the previous two months, I’ve been posting mostly “filler” material because there was so little new stuff to report. But the Bear of Redmond has awoken from its slumber and new Azure goodies are starting to appear. Micro-Segmentation If you attended Microsoft Ignite 2019 or watched sessions online, the network and architecture content had a big emphasis on micro-segmentation, the concept of using many networks and network security mechanisms to break up an otherwise flat hacker-friendly network into many secure zones: core infrastructure, services, tiers of services and so on. If you’re working with virtual machines, then pretty much all the tools you need are there right now to implement micro-segmentation. You can justifiably argue that some of the implementation and troubleshooting are a little harder than they should be – Microsoft program managers have had an ear-full of that from me. But over in the platform (PaaS) world, things just aren’t quite there yet ... yet. That “yet” might be sooner than you thought. The first essential piece is the general availability of Azure Private Link, which happened in the last month. Private Link is a service that enables a PaaS resource (not the service, as with Service Endpoints) to be connected to a subnet in... --- ### Everything You Need to Know About Windows - February 2020 - Published: 2020-03-02 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-windows-february-2020/ - Categories: Windows 10, Windows Server, Windows Server 2016, Windows Server 2019 - Tags: Azure Active Directory, FIDO2, Microsoft Edge, Windows 10, Windows Server - Article Type: News This month sees Microsoft pull a standalone security update, release a Windows 10X emulator so that developers can start adapting apps to work with the upcoming dual-screen SKU, we get more details on the container architecture in Windows 10X, a public preview of FIDO2 support for hybrid Azure Active Directory deployments, and much more. This month sees Microsoft pull a standalone security update, release a Windows 10X emulator so that developers can start adapting apps to work with the upcoming dual-screen SKU, we get more details on the container architecture in Windows 10X, a public preview of FIDO2 support for hybrid Azure Active Directory deployments, and much more. Patch Tuesday standalone security update pulled A standalone security update (KB4524244) that Microsoft issued recently for Windows 10 as part of Patch Tuesday has been removed from Windows Update after some users experienced problems. Microsoft says that users who installed the update could experience a couple of issues: "Reset this PC" feature might fail. The "Reset this PC" feature is also called "Push Button Reset" or PBR. You might encounter issues trying to install or after installing KB4524244. For organizations or users experiencing these issues, Microsoft recommends uninstalling the update. Microsoft has pulled the broken fix from Windows Update, Windows Server Update Services (WSUS), and the Microsoft Update Catalog. KB4524244 is a standalone patch so it doesn't affect the cumulative update for Windows 10 that was rolled out via Windows Update in the first half of February. Windows Insider builds Windows 10 Build 19559. 1000 was released to the Fast ring February 5th. This build doesn't have any new features but it includes a list of fixes. February 11th saw Microsoft release a new build of Windows 10 version 2004 (20H1) to the Slow ring. It is a cumulative update with security fixes that were... --- ### Microsoft Removes Standalone Security Update Causing Issues on Some PCs - Published: 2020-03-01 - Modified: 2020-03-01 - URL: https://petri.com/microsoft-removes-standalone-security-update-causing-issues-on-some-pcs/ - Categories: Security - Tags: Patch Tuesday, Secure Boot, Security, UEFI, Windows 10, Windows 8, Windows Update - Article Type: News Microsoft UEFI Revocation List File update causes problems on some devices. Here's what you need to know about the latest Windows Update problem.   A standalone security update (KB4524244) that Microsoft issued recently for Windows 10 as part of Patch Tuesday has been removed from Windows Update after some users experienced problems. The update was for Windows 10 versions 1607 through 1909, and Windows Server 2016 and Windows Server 2019. KB4524244 was designed to address an issue where third-party Unified Extensible Firmware Interface (UEFI) boot managers could expose UEFI-enabled PCs to a security vulnerability. Microsoft hasn't detailed the exact nature of the vulnerability but says the update will block a 'vulnerable boot manager'. A similar patch for Windows 8. x and Windows 10 version 1507 (KB4502496) has also been pulled. Kaspersky Rescue Disk vulnerability According to an article published by antivirus vendor Kaspersky, the third-party boot manager in question was part of their product Rescue Disk. The vulnerability in Rescue Disk was publicly disclosed in April 2019 and fixed in August 2019. Kaspersky says: It was possible to run an untrusted UEFI image (e. g. custom operating system) on a computer protected by Secure Boot technology. This could be done by exploiting a custom UEFI loader used by Kaspersky Rescue Disk. Practical attack scenario required physical access to a computer. The Microsoft patch updates the UEFI Revocation List File, which is a database of revoked UEFI signatures. The change to the file was made to prevent attacks that use vulnerable versions of Kaspersky Rescue Disk. Successful attacks might be able to circumvent Secure Boot to install malicious code. Mitigate issues caused by KB4524244 Microsoft... --- ### Microsoft is Retiring Several Popular Certifications - Published: 2020-02-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-retiring-several-popular-certifications/ - Categories: Career Skills - Tags: certification, Microsoft - Article Type: News For decades, Microsoft has been pushing certifications as a way to show your expertise in a particular area. Spanning from on-premises to the cloud and productivity software, these certifications are utilized by the IT industry to help find experts in specific areas. For decades, Microsoft has been pushing certifications as a way to show your expertise in a particular area. Spanning from on-premises to the cloud and productivity software, these certifications are utilized by the IT industry to help find experts in specific areas. While certifications have their place and there are some who love chasing them all down, others argue that they have lost their value with the significant increase of online training that is available. No matter your opinion, it doesn’t look like they are going away anytime soon but they are certainly evolving. Microsoft announced this week that they will be ending their Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Developer (MCSD), Microsoft Certified Solutions Expert (MCSE) will retire on June 30, 2020. If you are working on obtaining any of these certifications, you have only a couple of months left before they are retired. In the announcement post, Microsoft has a Q&A that addresses some of the questions you may have but it boils down to you need to pass all tests before June 30th. Also announced is that there will not be any Windows Server 2019 and SQL Server 2019 certifications. The company says that Windows Server 2019 and SQL Server 2019 content will be included in role-based certifications on an as-needed basis for certain job roles in the Azure Apps & Infrastructure and Data & AI solution areas. Based on the certification announcements, it’s clear that Microsoft is continuing to push people towards its cloud... --- ### Looking into the Future With the Fluid Framework Preview > Microsoft has made a preview of the Fluid Foundation available for Office 365 users to try out. The preview demonstrates how components can work together to share information quickly. - Published: 2020-02-27 - Modified: 2024-09-04 - URL: https://petri.com/fluid-framework-preview-office365/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Fluid Foundation, OneDrive for Business, Preview, SharePoint Online - Article Type: News, Opinion Microsoft has made a preview of the Fluid Foundation available for Office 365 users to try out. The preview demonstrates how components can work together to share information quickly. It is very focused on SharePoint Online at present, but Microsoft plans to make intelligent fluid components available in Teams, OWA, SharePoint, OneDrive, and Office apps. The preview raises some questions, but that's the nature of the beast. Brad already covered the existence of the Fluid Framework Preview. I’ve been looking at how the preview integrates into the Office 365 platform and what this might tell us about how the Fluid Framework might evolve to work inside future Office 365 applications. Nothing More Than a Preview The first thing is to emphasize that this is a preview of a new framework and not a complete working application. The preview contains some examples of working code to show people what Microsoft means when it describes how people can collaborate better and faster to create content. Microsoft’s Ignite 2019 blog spoke about a “componentized document model that allows authors to deconstruct content into collaborative building blocks, use them across applications, and combine them in a new, more flexible kind of document. ” That’s some mouthful, so let’s see how the preview measures up. Accessing Fluid To access the preview, sign in with your Office 365 credentials. You’ll then be able to work with a blank Fluid document where you can create some of the collaborative building blocks mentioned by Microsoft (Figure 1). These are: Action Items: A table where you enter details of things to do, who will do them, due dates, and notes. The assignments can be plain text or @mentions of other people in your Office 365 tenant. You can use @mentions in checklists or lists as well. Table: Create using your own columns and rows. The formatting is simple. Date: Insert dates and some text to... --- ### Microsoft’s New Cloud Printing Service Moves Closer to Release - Published: 2020-02-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-cloud-printing-service-is-closer-to-release/ - Categories: Microsoft 365 - Tags: Microsoft 365, Printing - Article Type: News Early last year, we first caught wind that Microsoft was working on a new cloud-based printing feature. The idea is simple, bring printing into the modern age with a cloud-based printing solution. Early last year, we first caught wind that Microsoft was working on a new cloud-based printing feature. The idea is simple, bring printing into the modern age with a cloud-based printing solution. Anyone who has spent more than five minutes trying to configure a network printer knows the frustration when things don’t go according to plan. Microsoft is looking to make this process easier with a new service coming to Microsoft 365. Now in private preview, Universal Print, spotted by Walking Cat, is a Microsoft 365 cloud-based print infrastructure that will make it easier to deploy secure print experiences for Enterprise and Education customers. To be able to use the feature, you will need an Azure Active Directory tenant and Windows 10 1903 or later; Microsoft says that the service does not require Windows Server. Based on the prompt to register for the preview, it looks like this may be a feature of Microsoft 365 and that the preview will launch in the next couple of weeks. That being said, this was not publicly announced and timelines can and will likely shift. The service will allow the print administrator to register their printers with Azure Active Directory and then the admin can manage the service from a central location; you will not need to deploy a print server. Once registered, a user can then discover printers using their Azure Active Directory credentials that are shared with their account. While this may not be a groundbreaking new feature for Microsoft and... --- ### To Address 2 Billion Workers, Microsoft is Thinking Outside the Conversation - Published: 2020-02-25 - Modified: 2024-09-04 - URL: https://petri.com/to-address-2-billion-workers-microsofts-thinking-outside-the-conversation/ - Categories: Microsoft Teams, Office - Tags: Firstline, Microsoft, Teams - Article Type: Opinion Microsoft is working to address this market by adding functionality to its popular Teams application to enhance workflows for all types of workplace scenarios. The company is also building hardware, such as the Surface Go, to help bring low-cost, high quality, interactions to the Firstline worker. There is one fundamental force that is behind nearly every successful company, the ability to communicate effectively. It’s a trivial idea but as companies grow and more layers of decision-makers are introduced, the need for clear and concise communication increases exponentially. Several years ago, when Microsoft fully embraced that the company is the driving force behind productivity, it represented a dramatic shift in how the company not only developed software but planned for its future. Office 365, as the pinnacle achievement for Software-as-a-Service and Azure, as the backbone for operational infrastructure, are services that are often imitated but rarely replicated and have created a foundation for Microsoft’s expansion. Microsoft has created tools and features to improve productivity that historically have been targeted at knowledge workers, or those sitting in the corporate offices. But there is a much larger demographic that the company estimates is around 2 billion users, the Firstline worker, and to some extent, this group has been neglected when it comes to productivity software. There is a common pitfall that many of us fall into when thinking about Firstline workers; we often make the assumption that this means ‘retail’ worker. But the demographic is significantly larger than that and it includes some of the most highly educated and highly skilled people on the planet, surgeons. This skill disparity creates a challenging dynamic when you try to develop software for this group of workers and for Microsoft, they can't follow the same path to success that has been forged... --- ### Understanding SharePoint Online Versioning > SharePoint Online document libraries keep 500 versions of files by default. The minimum recommended by Microsoft is 100. But why are so many versions kept? The reason is that it leads to better recoverability and underpins features like AutoSave and co-authoring. - Published: 2020-02-25 - Modified: 2024-09-04 - URL: https://petri.com/understanding-sharepoint-online-versioning/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Autosave, File versions, SharePoint Online - Article Type: How To SharePoint Online document libraries keep 500 versions of files by default. The minimum recommended by Microsoft is 100. But why are so many versions kept? The reason is that it leads to better recoverability and underpins features like AutoSave and co-authoring. You might be tempted to reduce the number of versions, but why? I can't come up with a good answer. SharePoint Online Versioning is Useful in Many Ways SharePoint Online and OneDrive for Business both support file versioning. This is a useful feature that does not exist for documents stored on local drives or file shares. Storing multiple versions of files allows you to revert to an earlier version of a document if necessary. For example, a file might become corrupt because of a hardware or software problem or the files in a document library might be encrypted by a cyberattack. Usually restoring a library works well and can help to avoid the need to deploy third-party backup products, but like any technology, library restores can go wrong. Some preparation and practice to recover from uncommon (hopefully) events is always worthwhile. Features Supported by File Versioning File versioning supports many SharePoint features, including: Users can restore a previous version of a document to become the current version with the Version history option in the SharePoint Online and OneDrive for Business browser clients (Figure 1). Office ProPlus and Online applications (Word, Excel, and PowerPoint) use file versioning for their document AutoSave These apps can open a previous version of a document and compare its content against the current version. Apps can also restore a previous version. The continual synchronization of changes made to documents permits real-time updates for co-authoring of Office documents. SharePoint Online and OneDrive for Business can restore document libraries to a point in time within the past 30 days. Figure 1: Version... --- ### How Pipeline Chain Operators Work in PowerShell 7 - Published: 2020-02-24 - Modified: 2024-09-04 - URL: https://petri.com/how-pipeline-chain-operators-work-in-powershell-7/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To PowerShell 7 has introduced a number of new abilities for the language. One of those abilities is the oft-requested pipeline chain operator. The PowerShell pipeline is a cornerstone of the language. Easily passing entire objects from one command to another is exceptionally useful. PowerShell 7 has introduced a number of new abilities for the language. One of those abilities is the oft-requested pipeline chain operator. The PowerShell pipeline is a cornerstone of the language. Easily passing entire objects from one command to another is exceptionally useful. What has been lacking is an easy way to control the output of a command as it passes down the pipeline, depending on its success or failure. You can easily do this with variables and other control statements. To do this in a concise and pipeline friendly manner though has not been as easy to do. With that in mind, this article will explore this new feature of PowerShell 7 and how you can use this in your scripts and on the command line. What are Pipeline Chain Operators? There are two pipeline chain operators that are introduced and they control the passing of data depending on the success or failure of the command's output. && will execute the right-hand pipeline if the left-hand pipeline succeeded || will execute the right-hand pipeline if the left-hand pipeline failed ? Both && and || operators use the $? and $LASTEXITCODE variables to determine if a pipeline failed. What this means is that you can use native commands and not just PowerShell cmdlets and functions within the pipeline chain. Examples Sometimes it can be difficult to realize where this type of utility can be useful. With that in mind, below are a few examples that illustrate several uses... --- ### Microsoft Secured-Core PCs to Protect Financial Services, Government, and Healthcare - Published: 2020-02-24 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-secured-core-pcs-to-protect-financial-services-government-and-healthcare/ - Categories: Windows 10 - Tags: Secured-Core PCs, Security, Windows 10, Windows Defender Secure Launch, Windows Defender System Guard - Article Type: News Microsoft and its hardware partners have new device security requirements to protect against targeted firmware attacks. In October last year, Microsoft announced that it was working with hardware partners on new device security requirements to protect against targeted firmware attacks. According to David Weston, Directory of Enterprise and OS Security at Microsoft, the last three years has shown a five-fold increase in the number of firmware vulnerabilities. Firmware vulnerabilities are an appealing target for hackers because traditional security defenses, like antimalware software installed on the operating system, doesn't get access to firmware-level activity. Hackers can easily avoid detection and go unnoticed for long periods of time and firmware-based exploits can also be hard to remove. Protections built-in to the operating system, like Secure Boot and Virtualization-Based Security (VBS), are also easier to circumvent with access to the firmware. Microsoft Secured-Core PCs to Protect Financial Services, Government, and Healthcare (Image Credit: Microsoft) Secured-Core PCs protect against firmware attacks To help better protect customers against firmware attacks, Microsoft announced a new initiative called Secured-Core PCs. In partnership with PC and chip makers, the new scheme requires devices to meet new standards that follow isolation best practices and have minimal trust of firmware. Microsoft says that the devices are intended for industries whose workers handle intellectual property, customer or personal data, including Personally Identifiable Information (PII). Secured-Core PCs are designed to prevent firmware attacks. Using a combination of identity, virtualization, OS, and hardware defenses, Secured-Core PCs have protection at both the hardware and software layers. Along with Windows Defender System Guard, which is... --- ### How to Use a Windows Notebook with an External Monitor - Published: 2020-02-21 - Modified: 2024-09-04 - URL: https://petri.com/using-a-windows-notebook-with-an-external-monitor/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: How To How to configure Windows for the best experience when using an external monitor and how to reset the graphics stack without restarting Windows. If you regularly use a Windows 10 notebook with an external screen, the default power settings and display configuration isn't ideal. In this article, I'll show you how to have a smoother and more productive experience when using an external monitor. Connecting an external monitor There are several different connector types that can be used to connect external monitors to notebooks. If you are using modern hardware, then USB-C ports are usually the go-to connector type for working with an external display because they can carry DisplayPort signals. Notebooks might additionally have dedicated DisplayPort or HDMI ports that you can use to connect an external monitor. You should check with the notebook manufacturer that the port you intend to use supports the maximum display resolution and refresh rate of your monitor. If you want to run more than one external display, then it's likely that the resolution and refresh rate of each display will be restricted. This is usually determined by the capabilities of the notebook's graphics card. Extending or duplicating the notebook's display In most cases, it's likely that you will use an external monitor on its own. I. e. without also utilizing the notebook's built-in screen. That's because the size of the notebook screen is probably smaller than your external monitor. The two screens aren't likely to be convenient to use together. But there will be times when having a less-than-ideal second display, in the form of the notebook's built in screen, might come in handy. The... --- ### Create a PinPoint DNS Zone to Support Identical Internal and External Exchange Server HTTPS Namespaces - Published: 2020-02-20 - Modified: 2024-09-04 - URL: https://petri.com/create-a-pinpoint-dns-zone-to-support-identical-internal-and-external-exchange-server-https-namespaces/ - Categories: Active Directory (AD) - Tags: DNS, Exchange Server, PinPoint DNS Zone, Split-Brain DNS, Windows Server Active Directory - Article Type: How To How to configure Windows Server DNS to support identical internal and external Exchange Server HTTPS namespaces. Microsoft recommends that Active Directory (AD) is configured with a different DNS namespace to the domain used by the organization on the Internet. The namespaces can be completely different. For example, adcontoso. com might be used for the internal DNS namespace and contoso. com used externally. Or a subdomain of the public domain is used internally. If the public domain is contoso. com, then ad. contoso. com is used for the internal AD DNS namespace. Exchange Server HTTPS namespaces While different internal and external DNS namespaces is recommended for AD, Exchange Server HTTPS internal and external namespaces are generally identical. There are several namespaces that Exchange sysadmins need to configure to enable client access to Exchange services like Outlook Web Access (OWA), MAPI, and the Offline Address Book (OAB). Keeping the internal and external namespace URLs identical makes it easier for users to locate resources. And it reduces the number of certificates required to configure secure SSL/TLS communication between clients and servers. But let's consider a situation where you have an Active Directory DNS namespace of ad. contoso. com and the public Internet domain is contoso. com. You should configure MX and Autodiscover DNS records for contoso. com so that email can be routed to your organization's Exchange Server. The DNS records in the public domain could be called mail. contoso. com and autodiscover. contoso. com, although you can change 'mail' and 'autodiscover' to anything you like. Both records should point to the public IP address of your Exchange Server. If a DNS record is created for mail. contoso. com on the nameserver... --- ### A Roundup of Microsoft’s RSA Announcements - Published: 2020-02-20 - Modified: 2024-09-04 - URL: https://petri.com/a-roundup-of-microsofts-rsa-announcements/ - Categories: Uncategorized - Tags: Microsoft, RSA, Security - Article Type: Overview The 2020 RSA is taking place next week but Microsoft is announcing the general availability of several services ahead of the event. The 2020 RSA is taking place next week but Microsoft is announcing the general availability of several services ahead of the event. Below is a high-level look at the announcements that Microsoft will be talking about more in-depth next week at one of the industry’s largest security-related events. Microsoft’s Insider Risk Management offering for Microsoft 365 is now globally available. General availability of Microsoft Threat Protection Public preview of preventative protection capabilities from Microsoft Defender ATP on the following supported Linux server distributed versions: RHEL 7+, CentOS Linux 7+, Ubuntu 16  LTS, or higher LTS, SLES 12+, Debian 9+, and Oracle EL 7. Azure Sentinel has new connectors now available, new developer documentation, and more resources available for security teams. Microsoft is also offering a free trial of AWS CloudTrail log ingestion into Sentinel from February 24, 2020 until June 30, 2020. Azure Security Center for IoT is extending support for Azure real-time operating systems in addition to Linux (Ubuntu, Debian) and Windows 10 IoT core operating systems. The preview of FIDO2 security key support in Azure Active Directory now supports hybrid environments. With RSA next week, expect many other companies to start pushing out announcements in the near future as well. If Microsoft or any other vendor puts out a notable announcement, we will make sure to include it in our coverage. --- ### Teams Gets Closer to Email > Since its inception, Microsoft Teams has had an odd relationship with email. Some think that Teams will replace email, at least for many internal conversations. - Published: 2020-02-20 - Modified: 2024-11-19 - URL: https://petri.com/teams-gets-closer-email/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Reply to Teams Missed Activity, Send to Outlook, Send to Teams, Teams - Article Type: How To, News Since its inception, Microsoft Teams has had an odd relationship with email. Some think that Teams will replace email, at least for many internal conversations. The real facts are that Teams and email need to survive and co-operate together as collaborative modalities for Office 365 tenants. Microsoft is introducing three new features to help Teams gets along better with email, and that's a good thing. Teams and Email Enjoy a Complicated, Multi-Faceted Relationship The relationship between Teams and email is “complicated. ” On the one hand, Teams seems like an excellent way to replace some internal conversations in a more collaborative manner. On the other, because Teams communications are internal, email can never be totally replaced. Worldwide, 3. 9 billion users generate 293 billion messages daily.  Although you can argue with the statistics and wonder how the numbers are derived, the sheer size of email puts the 200 million monthly active users of Office 365 pales into insignificance, let alone the 20 million Teams users. Integrating Teams and Email The net result is that the reality of work means that Teams needs to be better integrated with email. Up to now, Teams channels support the ability to receive email through a connector. The messages start new topics in the target channels and are also captured in the SharePoint site belonging to the team. While the mechanism works, it is fragile (any team member can disable the connector) and uses an odd (but unique) email address. Better connections are needed. . Microsoft’s answer comes in three parts: Share to Teams uses an Outlook add-in to enable clients to send an email thread to a Teams channel or chat (including the ability to create a new chat). Messages protected with Office 365 Message Encryption, Sensitivity Labels, or S/MIME cannot be shared. Share to Outlook calls OWA to share a copy of a channel or chat conversation with any email... --- ### How to Send a Microsoft Teams Message using PowerShell 7 - Published: 2020-02-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-send-a-microsoft-teams-message-using-powershell-7/ - Categories: Microsoft Teams, Office, PowerShell - Tags: Microsoft, PowerShell, Teams - Article Type: How To Microsoft Teams is up and coming in the world of business chat and collaboration clients. Much like Slack, Microsoft Teams offers many of the same tools and integration abilities; a key selling point of business-oriented chat clients is the interoperability that the clients offer. Microsoft Teams is up and coming in the world of business chat and collaboration clients. Much like Slack, Microsoft Teams offers many of the same tools and integration abilities. A key selling point of business-oriented chat clients is the interoperability that the clients offer. This interoperability allows organizations to increasingly move their processes to different mediums, such as a chat client. Of course, to actually integrate those abilities into a client such as Microsoft Teams, it's necessary to use a programming and automation language to do so. One such language, that fits very well into the Microsoft ecosystem, is PowerShell 7. Easily able to interact with web REST APIs, which Microsoft Teams offers, PowerShell makes it simple to create and send messages into a given Teams channel. Microsoft Teams API Two different methods of interacting with Microsoft Teams exist, bots and webhooks. As it is much more complicated to set up a bot than a webhook, this article will focus on the latter method. There are two steps to connecting PowerShell and Microsoft Teams. Create the incoming webhook Format and send the message Create Incoming Webhook Incoming webhooks are scoped to the channel level. Each webhook connector is unique to the channel that it is created. This allows for a more secure and better-controlled environment as any client that can send in an HTTPS POST requests and has the correct URL is able to send a message. For anyone that is creating a webhook connector will need the... --- ### Microsoft’s New Office Mobile App Is Now Available to Everyone - Published: 2020-02-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-office-mobile-app-is-now-available/ - Categories: Microsoft 365, Office - Tags: News, Office, Office App - Article Type: News Back at Ignite, Microsoft announced that it was building a new mobile experience for iOS and Android users. Called the Office app, the application has been in beta since its announcement but that is changing today. Back at Ignite, Microsoft announced that it was building a new mobile Office experience for iOS and Android users. Called the "Office" app, the application has been in beta since its announcement but that is changing today. Microsoft is making the new experience available to all Office users around the globe and the company is also announcing a couple of new features coming this spring too. In addition, starting today Microsoft is enabling dark mode support for iOS users and template options for Word, Excel and PPT documents. These new features coming this spring include: Word Dictation – let Word turn your voice into written text and use voice commands and simple toolbars to easily apply the right formatting and punctuation you need. Excel Cards View – view and edit data in an Excel table row in a simple, digestible card format so you do not have to span across columns that extend beyond the limits of the screen. Outline to PowerPoint – write your presentation content as a simple outline and let PowerPoint Designer turn it into presentable slides with the proper styling, formatting, and iconography of your content. The Office app is a single application that combines Word, PowerPoint, and Excel into one, easier to use, experience.  Available in 68 languages for Android users and 37 languages for iOS users, anyone can download the app starting today. --- ### Amazon AWS Leads the Growing Cloud Market - Published: 2020-02-19 - Modified: 2024-09-04 - URL: https://petri.com/amazon-aws-leads-the-growing-cloud-market/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Microsoft Azure - Tags: AWS, Azure, Cloud, cloud computing - Article Type: News The cloud market has continued to grow at a rapid pace and according to research by Synergy Research Group Amazon AWS remains the clear leader in the cloud market. Synergy Research Group estimated that cloud growth is 37% per year and they also noted that the rate of growth for the cloud market is beginning to slow down. The cloud market has continued to grow at a rapid pace and according to research by Synergy Research Group, Amazon's AWS remains the clear leader in the cloud market. Synergy Research Group estimated that cloud growth is 37% per year and they also noted that the rate of growth for the cloud market is beginning to slow down. Q4 of 2019 saw the largest quarter growth on record for the cloud market with cloud infrastructure service revenues at over $27 billion. This figure includes IaaS, PaaS and hosted private cloud services. Synergy Research Groups has estimated that the total cloud revenues for the year of 2019 were over $96 billion. Amazon’s growth kept pace with the overall market growth and Amazon has approximately 33% of the worldwide cloud market share followed by Microsoft Azure. According to John Dinsdale, a Chief Analyst at Synergy Research Group “The year ended with a bang as Amazon and Microsoft both posted big sequential gains in cloud revenues. Thanks to these two market leaders and strong growth from some other cloud providers, the 2019 market was over twice the size of the 2017 market. ” Synergy Research Group stated that Microsoft’s cloud market share increased by nearly three percentage points over the last four quarters making their overall cloud market share at 18%. Behind these two market leaders, Google Cloud Platform was a distant third, IBM Cloud was fourth followed by Alibaba, Salesforce, Tencent, Oracle and Rackspace. Between them, the top five cloud providers have over... --- ### How to Set Up Windows 10 Your Phone and Make Calls - Published: 2020-02-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-set-up-windows-10-your-phone-and-make-calls/ - Categories: Windows 10 - Tags: Android, Productivity, Windows 10, Your Phone - Article Type: How To In today's Ask the Admin, I look at how to set up Your Phone in Windows 10 so that you can use it to make and receive calls via an Android handset. Microsoft is gradually rolling out the latest version of the Your Phone app for non-Insiders. The new version sees the Calls feature come out of preview and it is being made available for everyone using the Windows 10 May 2019 Update (19H1) and higher. The only other prerequisites are that your Android handset should be running version 7 or higher and both your PC and handset must have Bluetooth. Set up the Calls feature in Windows 10 Your Phone Clicking on Calls for the first time in Your Phone prompts you to Make and receive calls from your PC. There's a Get started button that takes you through the steps necessary to get everything working. How to Set Up Windows 10 Your Phone and Make Calls (Image Credit: Russell Smith) Click Calls in the list of options on the left of the Your Phone app. Now click Get started below Make and receive calls from your PC. Windows 10 will prompt you to give Your Phone permission to make phone calls. Click Yes in the blue dialog. How to Set Up Windows 10 Your Phone and Make Calls (Image Credit: Russell Smith) If your PC's Bluetooth isn't enabled, turn it on by clicking Enable in the Your Phone app below Your PC's Bluetooth is turned off. Windows 10 will again prompt you to give Your Phone permission to turn Bluetooth and your WLAN on or off. Click Yes in the... --- ### Patch Tuesday – February 2020 - Published: 2020-02-18 - Modified: 2020-02-18 - URL: https://petri.com/patch-tuesday-february-2020/ - Categories: Security, Windows Client OS, Windows Server - Tags: , Active Directory, Exchange Server, Internet Explorer, Patch Tuesday, SharePoint, SQL Server, Windows - Article Type: News This month sees a bumper crop of 99 patches from Microsoft, including a fix for the IE zero-day announced last month and a change in default configuration for new Windows Server Active Directory deployments. This month is a big one for sysadmins patching Microsoft products. So let's get started. Windows and Windows Server Last month, Microsoft published a security advisory for Internet Explorer (IE) outlining a remote code execution (RCE) flaw in the way that IE's JavaScript engine handles objects in memory. It could be used by an attacker to run arbitrary code in the context of the logged-in user. This month, Microsoft has provided a patch to plug the vulnerability. To read more about the IE zero-day, check out Microsoft Issues Zero-Day Advisory for Internet Explorer on Petri. Remote Desktop vulnerabilities There are several other bugs patched for Windows this month that are rated critical. And as usual, some of them are for Remote Desktop. This month's patched vulnerabilities for the Remote Desktop Client would require an attacker to trick or persuade a user to connect to a malicious server using DNS poisoning or a man-in-the-middle attack. But if successfully exploited, the attacker could run processes and change data with full user rights. CVE-2020-0662 is also an RCE rated critical and it could allow an attacker to run code in the context of the logged-in user. CVE-2020-0738 is another critical RCE in the way Windows Media Foundation handles objects in memory. It could let an attacker perform actions with full user rights. From the updates rated important, there's one RCE connected to a flaw in Remote Desktop Services, again allowing an attacker to run code with full user rights on a... --- ### Microsoft Working on Outlook Cloud Signatures > The news that Microsoft is working on cloud signatures for Outlook for Windows is welcome. The venerable Outlook client has long stored its signature information in the system registry, which makes it hard to move signatures from PC to PC. - Published: 2020-02-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-working-outlook-cloud-signatures/ - Categories: Exchange Online, Microsoft 365, Office, Outlook - Tags: Autosignature, Exchange Online, Office 365, Outlook Click to run, Outlook for Windows - Article Type: Opinion The news that Microsoft is working on cloud signatures for Outlook for Windows is welcome. The venerable Outlook client has long stored its signature information in the system registry, which makes it hard to move signatures from PC to PC. On the other hand, OWA stores its signatures in mailboxes, so the same signature is used no matter where you log in. Of course, OWA is a simpler client (no profiles, for instance), but it should be eminently possible to store everything Outlook needs in the cloud. At least for Outlook clients connected to Exchange Online... Email Signatures are Everywhere Email signatures are text containing information about a user that clients like Outlook insert into outbound messages to tell the recipient something about the sender. Usually an email signature contains information such as the sender’s name, title, address, phone number, and so on. Often signatures contain some company-mandated text such as a legal disclaimer (useless in law in most countries) or a pretty graphic. Email databases the world over are cluttered with company logos and other graphics inserted into messages, many of which are in messages sent between people in the same company who really don’t need to see their company logo. ISVs and Auto Signature Products The management of email signatures for Exchange is a big business with many ISVs offering autosignature products to allow companies dictate the exact format of email signatures applied to all outbound messages. Signatures can be inserted using add-ins to clients or applied by an agent after the message is sent (a technique that runs into difficulties with encrypted messages). Traditionally, Microsoft left email signature management to ISVs, but Microsoft 365 roadmap item 60371 caused some concern for ISVs by promising that Outlook for Windows will store signature settings in the cloud and will be accessible when using Outlook on any computer. Apparently, this innovation is due to drop in March 2020, but Microsoft is unlikely to hit that date given that no preview is available yet. There's no news if a similar feature will be available for... --- ### Microsoft Releases Alpha Version of PowerShell Secrets Management Module - Published: 2020-02-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-alpha-version-of-powershell-secrets-management-module/ - Categories: PowerShell - Tags: Azure Key Vault, DevOps, PowerShell, PowerShell Secrets Management Module - Article Type: News Taking a look at the developer preview of a new PowerShell module from Microsoft that aims to make storing and securely accessing secrets easier in your PowerShell scripts. PowerShell secure strings are encrypted objects that have been converted from plaintext. Secure strings protect secrets, like passwords, while they are being processed in memory. You can pass secure string objects between PowerShell scripts or . NET apps. But secure strings don't solve the problem of how to securely store passwords that your scripts might need to access. PSKeystore is a third-party PowerShell module that encrypts secrets using a certificate. It supports Windows PowerShell 5. 1 or later, but it doesn't currently support PowerShell Core. PSKeystore uses 'keystores' to store 'items'. Keystores are simply folders on the local disk that hold one or more items. And items represent encrypted objects. PSKeystore is relatively easy to use but it isn't officially supported by Microsoft. There are also several other third-party modules in the PowerShell Gallery that can be used to manage secrets. PowerShell Secrets Management Module First announced at Ignite in November 2019, the PowerShell Secrets Management Module is now available as an alpha developer release in the PowerShell Gallery. What that means is that the module shouldn't be used in a production environment and that it is not yet feature complete. The new module is based on an abstraction layer in PowerShell that will help customers manage secrets in heterogeneous environments and across different cloud platforms. As it stands today, writing advanced scripts to orchestrate operations requires using multiple secrets and custom code if different platforms are involved. Microsoft Releases Alpha Version of PowerShell Secrets Management... --- ### Microsoft’s Spring Hardware Event: Surface Book 3 and Go 2 Detailed - Published: 2020-02-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-spring-hardware-event-surface-book-3-and-go-2-detailed/ - Categories: Hardware - Tags: Go 2, Hardware, Microsoft, Spring, Surface, Surface Book 3 - Article Type: News Microsoft is planning a hardware event for the Spring, here is what you can expect for the new Book 3 and Go 2 hardware. This spring, Microsoft will be announcing new hardware for the Surface family that will include an update to the Surface Go and the long-overdue Surface Book 2. If history is any indicator of the future, expect the event to be held in NYC with the availability of the hardware not long after its announcement. On the agenda for the event will be a refreshed Surface Book 3 and an updated Surface Go 2. I do not expect major design overhauls for either product, but the updates will continue to refine the hardware with new internals and slight modifications to the exterior. For the Surface Book 3, according to people familiar with the company’s plans, Microsoft will bump the internal specs to 10th generation Intel processors and 16** series Nvidia GTX GPUs. But the top-end Surface Book, likely only available on the 15in, will increase the GPU capability by including an option for Quadro series graphics cards. Nvidia’s Quadro cards, which are designed for professional use, should help the Surface Book 3 perform AI/ML calculations and function as a mobile workstation for high-end computing needs. Microsoft is likely targeting data scientists with the top end Book 3 which is a small deviation from their ‘creators’ viewpoint they had previously taken with the hardware. Of course, the 'creators' pitch still works well for the lower-end Book 3 too, but at the top-spec, this will be a true mobile workstation for those who need the specific features that Quadro offers. I am also... --- ### Paul Thurrott's Short Takes: February 14 - Published: 2020-02-14 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-14/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because I want you to be my Valentine, this edition of Short Takes looks at Microsoft finally doing the right thing, Amazon’s legal challenge to Microsoft’s JEDI contract, some real news about Windows 10X, the schedule for Windows 10 version 2004, and much, much more. Because I want you to be my Valentine, this edition of Short Takes looks at Microsoft finally doing the right thing, Amazon’s legal challenge to Microsoft’s JEDI contract, some real news about Windows 10X, the schedule for Windows 10 version 2004, and much, much more. Microsoft backtracks on terrible plan to force Bing on Office 365 users Last month, Microsoft revealed that it was going to bypass admins and force-install an extension in Chrome for users of Office 365 Pro Plus, changing their default search engine to Bing in order to make a new Windows Search feature work more seamlessly. This ... didn’t go over well, predictably. And now, just a few weeks later, the software giant has announced that it will no longer go through with this terrible plan. Instead, it will make the extension an opt-in feature---and by admins, not users, as should always be the case. And even when organizations do opt-in to the extension, it will only be applied to AD-joined PCs. Because. You know. Common sense and everything. “Microsoft's Jared Spataro addresses criticism about Teams user growth” What’s the criticism? It’s too fast? Judge halts Microsoft’s work on JEDI contract After Microsoft won the lucrative $11 billion Joint Enterprise Defense Infrastructure (JEDI) contract, foiling Amazon, the online retailer threatened to sue to prevent it from beginning work on a job that it felt it was more qualified for. Most legal experts don’t believe that Amazon can overturn this contract award in court, but... --- ### Microsoft Edge Version 80 Brings ARM64 Support to Stable Channel - Published: 2020-02-13 - Modified: 2020-02-13 - URL: https://petri.com/microsoft-edge-version-80-brings-arm64-support-to-stable-channel/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows on ARM - Article Type: News February 7th saw Microsoft unexpectedly release a new version of its Chromium-based Edge browser to the stable channel. Microsoft made the new version of its Edge browser, which is based on Chromium, generally available in the middle of January after around a year of testing. The stable channel, which is supposed to see updates roughly every 6 weeks, saw an update February 7th, moving from version 79 to version 80. ARM64 support for Edge Chromium In an announcement on the @MSEdgeDev twitter feed, Microsoft said that ARM64 support is now live in the latest stable channel version of Edge. This is significant for those using ARM-based Windows devices because the until now, it was either required to use a version of Edge Chromium from one of the development channels – Beta, Dev, and Canary – to get native ARM64 support, or run the x86 version using the integrated emulator. While emulation works fine in ARM versions of Windows, there is a performance hit. Browsers are especially difficult to run under emulation because of the way they generate code in real time. ARM64 support first came to Edge Chromium in November last year on the Canary channel. What's also interesting is that Microsoft has beat Google to making a Chromium-based browser available for ARM64 Windows devices. Mozilla added ARM64 support for its Firefox browser at the tail end of last year. And now Edge Chromium can be added to the list. But Google is still working on providing Windows ARM64 support for its popular Chrome browser. Edge Chromium for the Surface X Pro It's not known exactly... --- ### Microsoft Delays LDAP Signing and Channel Binding Changes in Active Directory - Published: 2020-02-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delays-ldap-signing-and-channel-binding-changes-in-active-directory/ - Categories: Active Directory (AD) - Tags: LDAP, Security, Windows, Windows Server Active Directory - Article Type: News Last year, Microsoft announced that it would be making changes to the default LDAP channel binding and signing configuration in Active Directory in the middle of January 2020. But now these changes are being delayed until the second half of 2020 to give organizations more time to prepare. Windows Server Active Directory (AD) uses the Lightweight Directory Access Protocol (LDAP) to communicate between the directory service, clients, and applications. LDAP is an open, industry-standard protocol used for accessing directory services on Internet Protocol (IP) networks. Clients and applications can authenticate with Active Directory using LDAP bind operations. There are several different kinds of bind operation, like simple, regular, and anonymous. Simple binds work by sending usernames and passwords over the IP network in cleartext. LDAP uses simple binds and Simple Authentication and Security Layer (SASL) binds for authentication. Active Directory accepts simple binds by default. SASL adds sign and seal capability to simple binds to provide integrity and encryption. If you have apps that use simple binds, try to update them to use SASL. If you have apps that can't be updated, then the next best alternative is to use LDAP over Transport Layer Security (TLS), or LDAPS as it is sometimes known. Like anything that involves TLS, it is more complicated to implement and manage than SASL because it requires a certificate. Active Directory LDAP channel binding and LDAP signing While AD accepts LDAP simple binds by default, all currently supported versions of Windows negotiate signed LDAP connections by default. You can enforce this by setting LDAP signing to 'Required' in Group Policy. For server LDAP signing, the setting is Domain controller: LDAP server signing requirements under Computer Configuration > Windows Settings > Security Settings > Local Policies > Security Options. If you set server... --- ### First Look at Microsoft’s Fluid Framework that Aims To Take on Notion - Published: 2020-02-12 - Modified: 2024-09-04 - URL: https://petri.com/first-look-at-microsofts-fluid-framework-that-aims-to-take-on-notion-hq/ - Categories: Microsoft 365, Office - Tags: Fluid Framework, Microsoft, Office, Office 365 - Article Type: Overview Back at Build 2019, Microsoft announced Fluid Framework, a way to integrate living content inside of Office applications. While news around the availability of the product has been a bit slim, there are signs of it coming to life with a preview that looks to be available to all Office 365 customers. Fluid Framework turns static documents into a living, breathing, content that can be utilized inside of the company’s productivity applications. That is, once Microsoft implements it across its entire portfolio, as of now, unless you are in the private previews, its availability is scarce, at best.   That being said, if you want to check out where the framework is headed, you can take a look at a preview here. You will be required to sign in with your Office 365 credentials but once you pass that gate, what you see is a live version of the framework. At this time, the implementation is quite basic; you are presented with a blank canvas where you can add tables, lists, images, action items, and a few other minor features. One thing you can do though is tag other users, who will then be notified to share/collaborate inside the workspace. The benefit here is that rather than needing to jump between Excel/ToDo/Image repositories, all that content can be in one document that is linked to other spreadsheets and task lists. There’s no hiding it, this is very similar to Notion, but it’s far from being a complete solution. Microsoft has... --- ### Microsoft Retreats from Flawed Plan to Force Bing Extension on Chrome Users > After several weeks of customer protest, Microsoft decided that their plan to automatically install a Microsoft Search in Bing extension for Chrome browsers with Office ProPlus wouldn't fly. - Published: 2020-02-12 - Modified: 2020-02-12 - URL: https://petri.com/microsoft-retreats-from-flawed-plan-force-extension-on-chrome-users/ - Categories: Microsoft 365, Office - Tags: Browser extension, Chrome, Microsoft Search in Bing, Office ProPlus - Article Type: News After several weeks of customer protest, Microsoft decided that their plan to automatically install a Microsoft Search in Bing extension for Chrome browsers with Office ProPlus wouldn't fly. While it's good that Microsoft is tweaking their plans and will allow Office 365 tenants to opt-in, the way they went about announcing such an outrageous decision begs the question just how Microsoft thought this was ever a good idea. Who Thought This Was a Good Idea Anyway? On January 22, Microsoft revealed a plan to install a browser extension to make Bing the default search engine for Google Chrome. I didn’t like the plan then and no one has persuaded me of its benefits since. In fact, this plan was decried by every Office 365 customer I spoke with. But Microsoft has seen the light of day and announced they have pulled back from the original plan. Curiously, Microsoft claims that many customers are excited about the prospect that “Bing becomes a single search engine for users to find what they need - both from inside their organization and the public web. ” I’m clearly not moving in the same circles as those who wrote the post. Nor have any of the purported excited customers expressed those views in Twitter or blog posts. No Microsoft Search in Bing With Office ProPlus Version 2002 In any case, Microsoft now says that they won’t deploy the Microsoft Search in Bing browser extension automatically alongside Office ProPlus, starting with version 2002 (due for monthly channel targeted users on patch Tuesday). The original plan was limited to specific geographies (U. S. , U. K. , Australia, Canada, France, Germany, and India). I still don’t know why Microsoft choose those countries and decided, for instance, not to include places like Ireland, Denmark, or Switzerland, just to choose three other countries. Tenants will also see an opt-in toggle in the Microsoft 365 admin center to allow them to decide... --- ### Microsoft Begins Courting Developers to Windows 10X, But Will They Build? - Published: 2020-02-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hopes-to-attract-developers-to-windows-10x-but-will-they-come/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, Windows 10, Windows 10X - Article Type: News This week, Microsoft is hosting a virtual developer conference where the company is talking in more detail about Windows 10X, foldable devices, and how it plans to support these new products. A key push for this event is to hopefully drum up interest with developers who will build applications for its foldable-future. This week, Microsoft is hosting a virtual developer conference where the company is talking in more detail about Windows 10X, foldable devices, and how it plans to support these new products. A key push for this event is to hopefully drum up interest with developers who will build applications for its foldable-future. There are two devices in the pipeline, one runs a variant of Windows, called the Neo, and another that is running Android, called Duo. While it may not seem logical on the surface to target two different operating systems with a dual-focus approach, it’s also a hedge as well. If Windows 10X, or Windows-foldable devices don’t take off, they have an Android as a backup. And if Android foldables fall flat but devices like the Neo are adopted, then their support pipeline is well established. And with this dual approach, it really does show how the focus has shifted away from Windows first, inside of Microsoft. But with the availability of a Windows 10X SDK today and the Duo SDK available last month, Microsoft is trying to convince developers that they should begin developing apps for the dual-screened future. The big question is will any developers actually take the bait? Before diving into 10X, Microsoft has a rich history of trying to launch new ecosystems with little or nothing to show for it. While it’s easy to look at the success of Windows as a platform and think that the company has a legion of developers behind its... --- ### Teams Certificate Outage Causes Office 365 Tenants Concern > The fact that the Teams outage on 3 February was caused by an expired authentication certificate is enough to cause Office 365 tenants to ask why such a thing happened. - Published: 2020-02-10 - Modified: 2024-09-04 - URL: https://petri.com/allabout-teams-outage-3feb/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Teams downtime, Teams outage - Article Type: News, Opinion The fact that the Teams outage on 3 February was caused by an expired authentication certificate is enough to cause Office 365 tenants to ask why such a thing happened. Teams is built on top of a lot of Office 365 and Azure components, so it's not altogether surprising that issues happen in what is a very complex infrastructure spread around the world. But given Microsoft's hyped focus on DevOps, you would have thought that something as fundamental as an expired certificate would have been picked up and fixed before it caused customer disruption. Fast-Growing Apps Sometimes Trip Up Microsoft says Teams is the fastest-growing Office 365 application (a claim that might be challenged by Exchange) and is the current rock star of their cloud Office application suite. But February is developing into a bad month for Teams. In 2019, a failure involving keys stored in Azure Key Vault caused its first major outage. This year, the outage on February 3 was caused by an expired authentication certificate that stopped users being able to sign-into Teams. Failures are part and parcel of application life, but letting a certificate expire surprised Office 365 observers who thought that the days of Microsoft tripping up over certificate management were long past, especially with the much-hyped automation deployed in Office 365 datacenter operations. Even acknowledging the complexity of Office 365 and Azure services used by Teams spread over multiple datacenter regions worldwide, failing to renew certificates is a fundamental and embarrassing issue. Incident Timeline Figure 1 shows the Downdetector graph for incident TM202916. Problems began around 13:00 UTC when users found that they were unable to connect with Teams. The number of reports spiked around 16:00 just as a new certificate was deployed to restore service. Figure 1: Downdetecter tracks the Teams outage on February 3 (image credit: Tony Redmond) The Development of a Teams Outage Based on the incident history and reported in the Office 365 Service Health Dashboard and some extra information in the post incident report (PIR) released to... --- ### How to Create a Group Policy Central Store - Published: 2020-02-10 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-group-policy-central-store/ - Categories: Active Directory (AD) - Tags: Active Directory, group policy, Group Policy Management Console, Windows, Windows Server - Article Type: How To How to centralize Group Policy templates to make managing configuration settings easier in a domain environment. Group Policy is used in Active Directory (AD) domain environments to centrally manage Windows Server and client configuration settings. By default, when using Group Policy management tools, like the Group Policy Management Console (GPMC), the Group Policy settings you see available are taken from a set of Group Policy template files found in the local %systemroot%PolicyDefinitions folder. Group Policy templates are language-neutral XML files with an . admx file extension. The descriptions for each policy setting are stored separately in . adml files. There is one . adml file for each language corresponding to the respective . admx Group Policy template. Bear in mind that . admx files are just templates and the actual settings applied to Windows are stored in registry. pol files. Before Windows Vista Service Pack 1, Group Policy templates used a different file format and file extension (. adm). Some applications, like Google Chrome, Microsoft Office, and the new version of Microsoft Edge, come with their own Group Policy templates that you can download and add to PolicyDefinitions. But adding or modifying templates in the local PolicyDefinitions folder means that you will only see the new or changed settings in GPMC on the device where the Group Policy template was added or changed. Create a central Group Policy store So that all Group Policy administrators see the same settings in GPMC, regardless of which device they are using, you can create a PolicyDefinitions folder in your domain's SYSVOL folder. This is sometimes referred to as a Group Policy central store. GPMC... --- ### A Roundup of Recent AWS Announcements - Published: 2020-02-10 - Modified: 2020-02-10 - URL: https://petri.com/recent-aws-announcements/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS - Article Type: News Amazon AWS is today’s leading cloud provider supporting millions of customers with over 175 cloud services from 22 geographic regions around the world. AWS has been available for over 13 years yet Amazon continues to evolve AWS at an extremely rapid pace. Some of the recent AWS announcements from January 2020 include: Amazon AWS is today’s leading cloud provider supporting millions of customers with over 175 cloud services from 22 geographic regions around the world. AWS has been available for over 13 years yet Amazon continues to evolve AWS at an extremely rapid pace. Some of the recent AWS announcements from January 2020 include: Amazon Managed Cassandra Service now supports ordering clauses in Cassandra Query Language queries -- Amazon Managed Apache Cassandra Service (MCS) is a scalable, highly available, Apache Cassandra compatible database service. It now supports ordering clauses in Cassandra Query Language (CQL) queries and AWS CloudTrail You can learn more about MCS at Amazon Managed Apache Cassandra Service. AWS Batch now available in AWS GovCloud US Regions -- AWS Batch enables developers, scientists, and engineers to run thousands of batch computing jobs on AWS. AWS Batch dynamically provisions the required quantity and type of compute resources. AWS Batch is currently available in the following 22 AWS Regions: US East (N. Virginia), US West (N. California), US West (Oregon), US East (Ohio), Canada (Central), EU West (Ireland), EU (London), EU (Frankfurt), EU (Paris), EU (Stockholm), Asia Pacific (Hong Kong), Asia Pacific (Tokyo), Asia Pacific (Seoul), Asia Pacific (Sydney), Asia Pacific (Singapore), Asia Pacific (Mumbai), Middle East (Bahrain), South America (São Paulo), China (Beijing), China (Ningxia), AWS GovCloud (US) Regions. You can learn more at AWS Batch Getting Started Guide. AWS Certificate Manager Private Certificate Authority now offers CloudFormation resources – AWS Certificate Manager (ACM) Private Certificate Authority (CA) is... --- ### Amazon Adds new Features to AWS Backup - Published: 2020-02-07 - Modified: 2020-02-07 - URL: https://petri.com/amazon-enhances-aws-backup/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, AWS Backup - Article Type: News, Overview AWS Backup was first released last year in January 2019 and since that time Amazon has reported that over 20,000 customers are using it to protect their Amazon cloud and on-premise services. AWS Backup was first released last year in January 2019 and since that time Amazon has reported that over 20,000 customers are using it to protect their Amazon cloud and on-premise services. AWS Backup is a fully managed backup service that enables you to centralize and automate the back up of AWS services as well as an on-premises resources using the AWS Storage Gateway. AWS Backup can protect Amazon EBS volumes, Amazon RDS databases, Amazon DynamoDB tables, Amazon EFS file systems, and AWS Storage Gateway volumes. Some of the enhancements that Amazon has made to AWS Backup in January 2020 include: The ability to back up entire Amazon Elastic Compute Cloud (EC2) instances -- When you back up an EC2 instance, AWS Backup will protect all EBS volumes attached to the instance. You can restore the EC2 instance using the AWS Backup console, command line or API. The ability to restore a single file from your Amazon Elastic File System (EFS) – You no longer need to restore the full EFS file system to retrieve a single item. You can now get improved Recovery Time Objectives (RTOs) by restoring individual files or directories from your EFS filesystem. For single file restore, AWS Backup will create a new EFS recovery directory at the root of your original filesystem. You can then restore individual files to an existing filesystem or to a new filesystem. The ability to copy your backups to other AWS Regions – To provide improved disaster recovery... --- ### How to Manage Azure VMs running Windows Server using the Windows Admin Center. - Published: 2020-02-06 - Modified: 2024-09-04 - URL: https://petri.com/managing-azure-vms-using-windows-admin-center/ - Categories: Windows Server - Tags: Azure, Azure Virtual Machines, cloud computing, DevOps, remote management, Windows Admin Center, Windows Server - Article Type: How To The Windows Admin Center (WAC) is a web portal for managing local or remote servers via a gateway that uses PowerShell Remoting and Windows Management Instrumentation (WMI) over WinRM. WAC will eventually replace Server Manager, and going forwards, is where Microsoft will make future investments in Windows Server GUI management. The Windows Admin Center (WAC) is a web portal for managing local or remote servers via a gateway that uses PowerShell Remoting and Windows Management Instrumentation (WMI) over WinRM. WAC will eventually replace Server Manager, and going forwards, is where Microsoft will make future investments in Windows Server GUI management. WAC gateways can be installed on Windows Server 2016, Windows Server version 1709, Windows Server 2019, and Windows 10. WAC can manage Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, and Windows Server 2012. It can also manage Hyper-V Server, Azure VMs, Azure Backup, highly-converged infrastructures (HCI), and more. For more information on WAC and how to install it, see Getting Started with the Windows Admin Center and How to Install the Windows Admin Center in Server Core on Petri. Managing Azure VMs using WAC There are three ways Azure VMs can be managed using WAC. The first and easiest is to install WAC on a local device and connect it directly to an Azure VM’s public IP address. If your Azure VMs don’t have public IP addresses, you can either set up a VPN between your cloud VNET and the network where the WAC gateway is installed or set up a WAC gateway on a VM connected directly to your Azure VNET. Whichever method you choose, you’ll will need to manually enable Windows Remote Management (WinRM) on any Azure VMs you want to manage. WinRM is enabled by default in Windows Server but disabled in... --- ### Microsoft Releases Sensitive by Default Upload for SharePoint Online > A new SharePoint Online feature blocks access to newly uploaded files until Office 365 Data Loss Prevention processes the files to detect policy violations due to the presence of sensitive data. - Published: 2020-02-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-sensitive-by-default-upload-sharepoint-online/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: DLP, Office 365 Sensitivity Labels, Sensitive by default, SharePoint Online - Article Type: How To, News A new SharePoint Online feature blocks access to newly uploaded files until Office 365 Data Loss Prevention processes the files to detect policy violations due to the presence of sensitive data. DLP processing for SharePoint Online can take several hours to reach new files, so enabling sensitive by default stops users inadvertently sharing sensitive content until DLP can process files. The downside is that you can't apply sensitive by default to individual sites. It's all or nothing... Sensitive by Default Now Available for Office 365 Tenants On January 27, the mark new files as sensitive by default feature reached general availability status. The idea is to block external access to Office files uploaded to SharePoint Online document libraries until the Office 365 Data Loss Prevention (DLP) engine has determined that no sensitive data exists in the files. Data Loss Prevention and SharePoint Online DLP processing for SharePoint Online is not immediate. Background jobs run periodically to detect and process policies for new files that users have created or uploaded to libraries. The period between a new file appearing in a library and DLP processing varies and could take several hours, depending on factors such as service load. During this time, the possibility exists that users might share files containing sensitive data externally and so cause data leakage. Real-time DLP processing for SharePoint Online might be technically possible, but it would take a lot of reengineering. Unlike Exchange Online, SharePoint doesn’t have a choke point where all data must pass through before it passes out of an organization. Exchange Online uses the transport pipeline for this purpose, and transport rules ensure that policies are applied to all messages as they pass through the pipeline. By comparison, SharePoint Online applies DLP policies as new files are crawled and indexed. Restricting Sharing Office 365 tenants can restrict external sharing by limiting the scope of the sharing settings in the SharePoint Online Admin Center (Figure 1). These settings also affect... --- ### How PowerShell 7 Logging works in Linux - Published: 2020-02-05 - Modified: 2020-02-05 - URL: https://petri.com/how-powershell-7-logging-works-in-linux/ - Categories: PowerShell - Article Type: How To With PowerShell 7 being cross-platform, the question often comes up of how logging works on Linux systems. Most PowerShell administrators are used to working in the Windows world and using the EventLog. Likewise, most Linux system administrators are used to Syslog and log files in general. With PowerShell 7 being cross-platform, the question often comes up of how logging works on Linux systems. Most PowerShell administrators are used to working in the Windows world and using the EventLog. Likewise, most Linux system administrators are used to Syslog and log files in general. Logging within Linux for PowerShell 7 is configurable, but does work differently than it does within Windows. In this article, we explore those differences, how to configure PowerShell 7 logging to work effectively, and how to understand those logs. Installing PowerShell 7 on Linux Getting started with PowerShell 7 on Linux is easy. There are a number of install guides, but as a quick start, we will assume that the Linux system in use is Ubuntu 18. 04. To install PowerShell on to this system you would do the following: # Download the Microsoft repository GPG keys wget -q https://packages. microsoft. com/config/ubuntu/18. 04/packages-microsoft-prod. deb # Register the Microsoft repository GPG keys sudo dpkg -i packages-microsoft-prod. deb # Update the list of products sudo apt-get update # Install PowerShell sudo apt-get install -y powershell-preview Now that PowerShell 7 is installed we can test that it's functional. To do this, simply start the shell with the command, pwsh-preview. If you are dropped into the PowerShell shell, you will be good to go! ? Note that at the time that this article is written, PowerShell has not gone to general availability (GA), so pwsh-preview is necessary to start the shell. After GA, you would start PowerShell 7 with simple pwsh. Additionally,... --- ### Windows 10 Version 2004 (20H1) – Cortana - Published: 2020-02-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-version-2004-20h1-cortana/ - Categories: Windows 10 - Tags: Cortana, Productivity, Windows 10 2004 - Article Type: Overview Most of the changes in Windows 10 version 2004, which is due to land in the first half of 2020, are under-the-hood. And the Windows 10 November 2019 Update got some of the changes that were in development as part of 20H1, like enhancements to search in File Explorer. This second article in a two-part series looks at the new Cortana experience that is coming as part of Windows 10 version 2004. Windows 10 version 2004 (20H1), is the first major feature update to Windows 10 in a year. The Windows 10 November 2019 Update, otherwise known as 19H2, was a minor upgrade and it brought a few tweaks and improvements for both users and IT professionals. Developers get the Windows Subsystem for Linux 2 (WSL2) in Windows 10 version 2004. You can find out more about it in What is Windows Subsystem for Linux 2? on Petri. Windows Sandbox also gets some minor improvements. From a user perspective, the major changes are to Cortana and virtual desktops. In this article, I'm going to look at how Cortana is changing in the next major feature update for Windows 10. Cortana is now a workplace personal assistant So, you thought that Cortana was dead and buried? In the consumer space Cortana never really took off. As is usually the case with Microsoft's consumer efforts it was too little, too late. Alexa, Siri, and Google Assistant have this market sewn up with thousands of devices including built-in support. Instead of flogging a dead horse, Microsoft decided to reposition Cortana as a workplace personal assistant that connects to Office 365. Introducing the new Cortana in Windows 10 version 2004 As part of the plan to reposition Cortana, Microsoft has separated its personal assistant from the OS and will include it as an inbox app in Windows 10 version 2004. Going forwards, Cortana will be updated via the Microsoft Store. This allows Microsoft to make changes... --- ### Everything You Need to Know About Azure Infrastructure – January 2020 Edition > This post summarizes the Azure news from January 2020 and looks to the rest of the year with some tips on training for IT pros. - Published: 2020-02-05 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-january-2020-edition/ - Categories: Cloud Computing, Microsoft Azure - Tags: AKS, Azure, Azure DevOps, Azure Kubernetes Service, DevOps, GitHub, training, Workbooks - Article Type: Overview Last month I kind of wrapped up 2019. But this month I want to look forward. While I would love to talk about things that I might or might know about, such a violation of my non-disclosure agreement would get me in trouble with Redmond. So instead, I want to talk about what I think we IT pros need to learn about in 2020 to stay relevant. I have trouble believing that it is February already. I also have trouble believing that the San Francisco 49ers threw (or allowed Patrick Mahomes to throw) away a 10-point lead in the 4th quarter at the Superbowl, but I should put my personal problems aside. We are now in the second month of 2020 and there’s always lots to cover. Last month I kind of wrapped up 2019. But this month I want to look forward. While I would love to talk about things that I might or might know about, such a violation of my non-disclosure agreement would get me in trouble with Redmond. So instead, I want to talk about what I think we IT pros need to learn about in 2020 to stay relevant. As usual, you will find all my wrap-up stuff from the last month below. There’s no big “you must read this” item from the Microsoft announcements – that’s why I’m not digging deeper into any of them. What Azure Stuff I Think You Need to Learn in 2020 When I worked in on-premises tech, I was always trying to learn more. In The Cloud, you have no choice; the tech is always changing, always being tweaked, or even always being replaced by vendors. And that is also true of Microsoft Azure, in particular. I’ve spent most of the last 12 months working in Azure networking, security, and governance, with as much of it done “by code” using JSON templates. That project... --- ### Windows 10X Emulator Arriving in February - Published: 2020-02-04 - Modified: 2020-02-04 - URL: https://petri.com/windows-10x-emulator-arriving-in-february/ - Categories: Windows 10 - Tags: Surface Duo, Surface Neo, Windows 10X - Article Type: News Microsoft is making available a dual-screen Hyper-V emulator that simulates Windows 10X as part of a forthcoming pre-release version of the Windows SDK. Microsoft announced Windows 10X at a Surface hardware event back in New York City in November 2019. It was part of an announcement for two new hardware categories in the Surface lineup. The Surface Duo is a new dual-screen device that fits in your pocket and runs Android. The Surface Neo is a larger dual-screen device with two 9" touch screens and a 360-degree hinge. It can also work with a pen and an external keyboard. It's essentially a folding tablet. Although that isn't what Microsoft is calling it. But what's most interesting about the Surface Neo is that it will ship with a yet to be finished version of Windows called Windows 10X. Based on Windows CoreOS, Windows 10X is designed for touch, dual screens, and runs Microsoft Store apps. The news that it will also support for containerized Win32 legacy desktop apps was leaked through an internal document soon after the hardware event in NYC. Microsoft Surface Duo preview SDK On January 22nd, Microsoft made the preview SDK for the Surface Duo available. Developers looking to create applications for the Surface Duo can download the preview SDK here. Documentation for best practices, UX design patterns, and more is also available. Microsoft says that the SDK includes native Java APIs to support dual-screen development and an Android emulator with a preview Surface Duo image that is integrated into Android Studio. Developers can use the emulator to test their apps without needing a physical device. Microsoft Emulator for... --- ### Sponsored: Adopting Teams is One Thing, Using it Effectively is Another  - Published: 2020-02-04 - Modified: 2024-09-04 - URL: https://petri.com/adopting-teams-is-one-thing-using-it-effectively-is-another/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, Teams - Article Type: Sponsored   This post is sponsored by Quadrotech, you can learn about their Teams and other Office 365 resources on their website. There is little doubt that Microsoft Teams is the hottest product in the Office suite of applications. After adding seven million daily users in a four-month period in 2019, Teams is being rapidly adopted across large and small companies around the globe at a tremendous rate.   And there are many good reasons why this is happening. For starters, when used correctly, Teams can foster collaboration within your company in ways that were not previously possible inside of a single application. With all your files, communication, tools, and other assets in one location, Teams can be a beacon of productivity.   With the ability to host meetings, public and private communication, file sharing, and a lot more, Teams packs a lot into a single application. Which is where you can run into problems as well. Simply mass-emailing your company that every employee should download Teams and start using it is not an effective deployment option and unfortunately, this happens more often than you would think.   After Microsoft announced its 20 million daily active user figure, Slack, a tool that competes directly with Teams, pushed back and said while Teams may have more daily users, Slack users are more engaged. While that figure is hard to quantify inside of every organization, it’s also worth pointing out that Teams is ‘free’ with your Office 365 subscription whereas those using Slack, to get the... --- ### Getting Started with Free AWS Offerings - Published: 2020-02-04 - Modified: 2022-06-06 - URL: https://petri.com/getting-started-with-aws/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS - Article Type: Overview While businesses have been adopting the cloud and cloud services at an ever-increasing rate not everybody has made the move to the cloud. There are still businesses that are evaluating the different cloud providers and their offerings and here is what Amazon offers for 'free'. While businesses have been adopting the cloud and cloud services at an ever-increasing rate, not everybody has made the move to the cloud. There are still businesses that are evaluating the different cloud providers and their offerings. There’s no doubt that if you’re looking at cloud technologies then Amazon AWS will be front and center. Amazon AWS is today’s leading cloud provider and they have been providing cloud services to businesses longer than any of the other major cloud providers. If you haven’t made the move to the cloud yet and you want to learn more about Amazon AWS, the AWS Free Tier can give you hands-on experience with the leading cloud provider at no cost. AWS Free Tier Amazon’s free tier provides access to a substantial number of free services that you can immediately put to use to experience the AWS platform. Some of the services that the AWS Free Tier provides include: Storage – Amazon Glacier provides 10 GB of long-term secure storage Hybrid Storage – AWS Storage Gateway provides 100 GB of hybrid cloud storage Database – Amazon DynamoDB provides 25 GB of NoSQL database storage with 25 Read Capacity Units and 25 Write Capacity Units Database migration – 750 hours of the AWS Database Migration Service Compute – AWS Lambda provides 1 M requests per month. Check out our guide explaining how to create an AWS Lambda function. Communications – Unlimited access to the Amazon Chime service that offers audio and video meetings Email... --- ### Microsoft Launches Preview PowerShell Module for Graph > Microsoft has made a preview PowerShell module for the Graph available for developers to play with. Being able to use PowerShell with the Graph exposes a lot of data to play with, so it's a great addition to the administrator toolkit. - Published: 2020-02-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-preview-powershell-module-graph/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Graph, Microsoft Teams, PowerShell, Teams - Article Type: How To, News Microsoft has made a preview PowerShell module for the Graph available for developers to play with. Being able to use PowerShell with the Graph exposes a lot of data to play with, so it's a great addition to the administrator toolkit. To see how things worked in practice,, I convert a script to report Teams channels that are email-enabled to use the Graph module. Things worked out pretty well, but as you'd expect, some rough edges exist that need to be smoothed. Accessing Data that PowerShell Can’t Reach In a September 2019 Petri. com article, I discuss how to use Microsoft Graph API calls with PowerShell to expose information that can't be accessed with PowerShell cmdlets. In the example given, we use the PowerShell Invoke-WebRequest cmdlet to make Graph calls to fetch the email addresses of Teams channels because this is a property that you can't get with any of the cmdlets in any Office 365 PowerShell module. A PowerShell Module for the Graph Time goes by time technology changes. Recently, Microsoft released a beta version (V0. 11) of the Microsoft Graph PowerShell module (available in the PowerShell gallery). The module was announced at the Microsoft Ignite 2019 conference. Its task is simple: deliver a set of PowerShell cmdlets to work with Graph data to make it as easy to work with the Graph as it is to interact with Exchange, Azure Active Directory, and other sources. Installing the Graph Module To install the module, run the following command in an administrator PowerShell session: Install-Module Microsoft. Graph -Repository PSGallery -Force The installation downloads and installs a set of submodules for Graph endpoints like Groups, Teams, Sites, and so on. One issue that I met was a permissions problem with the file UserTokenCache. bin3 in C:Program FilesWindowsPowerShellModulesMicrosoft. Graph. Authentication. 1. 5bin. Allowing user write access to the file made the problem disappear. Connecting to the Graph Once installed, you can connect to the Graph with the Connect-Graph cmdlet. The important thing is to specify the permissions you want to... --- ### Everything You Need to Know about Office 365 – January 2020 > Everything you need to know about Office 365 from January 2020. Includes Power Platform, OneDrive for Business, ChrEdge, and more. - Published: 2020-02-03 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-january-2020/ - Categories: Microsoft 365 - Tags: ChrEdge, Office 365, OneDrive for Business, PowerPoint, SharePoint Online - Article Type: News Microsoft released several updates for Office 365 this month and if you missed any of the new, we have you covered. Hey, guess what? This month all of my updates are positive and happy. Is that some weird new better Shane for 2020? Nope. I think it is the fact it is 60 degrees outside. Whatever it is, enjoy the features. Nothing major here but lots of little things as usual that I don’t think I knew I needed till I read about them. OneDrive for Business makes requesting files super easy This is interesting because I never thought about using OneDrive like this, but I think I love it. Microsoft added functionality to allow you to send out OneDrive links requesting files. So that way, when the person uploading files for you, they put them where you want them instead of in the same random spot, or worse yet, they try to send you a 50 MB email. This seems like a great way to get files from customers/vendors/external people instead of leaving things up to chance. I am literally emailing this to my team now. Read how to use the feature; it does a lot; in this article, Tony put together. PowerPoint Live Presentations As a guy who does a lot of presentations for people from across the globe, I am looking forward to trying out this new feature that is rolling out soon. When using PowerPoint for the web, you will be able to “go live. ” This will generate a QR code the audience can click to follow along from their device. Oh, and they also... --- ### Microsoft Forgets to Renew Certificate, Teams Goes Offline - Published: 2020-02-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-forgets-to-renew-certificate-teams-goes-offline/ - Categories: Microsoft Teams, Office - Tags: Microsoft, Outage, Teams - Article Type: News If you woke up this morning and are unable to sign in to Microsoft Teams, you are not alone. Microsoft’s productivity application was unavailable for many users but the outage does not appear to be a serious threat to the service. If you woke up this morning and are unable to sign in to Microsoft Teams, you are not alone. Microsoft’s productivity application was unavailable for many users but the outage does not appear to be a serious threat to the service. Microsoft acknowledged that Teams was offline because they let a certificate expire. Admins looking for more information can find updates under TM202916 and a fix is currently being deployed; this outage impacts users who have authentication tokens that have expired and/or first-boot users. While this downtime is not a result of a major infrastructure outage, for customers, it doesn’t really matter why you can’t access Teams data; if it’s offline, so is your productivity. And of course for Microsoft, this is an embarrassing mistake as certificate renewal is an easy process but in this case, it’s likely that the steps were simply overlooked. As Microsoft continues to push Teams to help it move more customers to the platform, outages like this will have an impact on the reputation of the service. But, it’s important to point out that these outages are more the exception than the rule. Teams is a good tool for enabling productivity and collaboration inside your organization. Companies all around the globe are adopting the platform as there are real, tangible, benefits from using Teams but when you can’t access your data, it reveals the vulnerability of depending on another vendor for your operations. All this being said, Microsoft’s cloud is typically far more reliable than... --- ### Everything You Need to Know About Windows – January 2020 - Published: 2020-02-03 - Modified: 2020-02-03 - URL: https://petri.com/everything-you-need-to-know-about-windows-january-2020/ - Categories: Windows 10, Windows 7, Windows Server 2008 - Tags: Microsoft Edge, Microsoft Emulator, Microsoft Store for Business, Windows 10, Windows 10X, Windows 7, Windows Server, Windows Server 2008 R2, Your Phone - Article Type: News In January we finally said goodbye to Windows 7 SP1 and Windows Server 2008 R2 SP1. Microsoft made its new Edge browser generally available, fixed a search bug in File Explorer, and started rolling out Calls in Your Phone for Windows 10 19H1 and newer. After the holiday break, there has been quite a lot of Windows activity, including the general availability of Microsoft's new Chromium-based browser, a bug fix for search in File Explorer, and an update to the Your Phone app that lets you receive and manage calls right from your PC. Chromium-based Microsoft Edge browser reaches general availability As reported by Brad Sams on Petri, Microsoft made the new Chromium-based version of its Edge browser generally available after almost a year of testing. But classic Edge and its EdgeHTML engine are not being removed from Windows 10. Microsoft is planning to slowly roll out the new Edge to non-corporate users via Windows Update. The new browser will replace classic Edge in Windows 10. User data, like favorites, will automatically be migrated. Users will notice that the Chromium-based Edge has a new icon and a more Chrome-like interface. Enterprises can deploy the new browser using an offline deployment package. The browser is also available now for Windows 7 SP1, Windows 8, Windows 8. 1, and macOS. If you are relying on Windows Update to manage Windows 10 in your environment, you can block the update using the Microsoft Edge Blocker Toolkit. For more information on how to use the toolkit, see How to Block Automatic Delivery of Microsoft Edge on Petri. If you don't want to wait while Microsoft makes the new browser available for your device, you can download Edge from Microsoft's website here. Windows 7 SP1 and Windows Server 2008... --- ### Microsoft's Surface Hub 2X is Delayed and May Never Ship - Published: 2020-01-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-cancelled-the-surface-hub-2x/ - Categories: Hardware - Tags: Surface Hub 2, Surface Hub 2S, Surface Hub 2x - Article Type: News Back in May of 2018, Microsoft made a big splash by announcing the Surface Hub 2. The hardware was the follow-up to the successful Surface Hub but the company was pushing the software and hardware in an ambitious new direction. Back in May of 2018, Microsoft made a big splash by announcing the Surface Hub 2. The hardware was the follow-up to the successful Surface Hub but the company was pushing the software and hardware in an ambitious new direction. The new hardware had two key features, it rotated 90 degrees and that you could link multiple displays together as tiles. With a high-resolution display, USB-C, a high-end processor, and a lot more packed into the modern display, there was a lot of excitement around Microsoft s more-affordable conference room display. But as the narrative continued in the weeks and months ahead, Microsoft backtracked a little bit and said that they would actually ship two second-generation hubs, the 2S and 2X. The 2S removed some of the hallmark features of the 2X, like rotating display and tiling, but kept the overall look and feel of the previously announced Surface Hub 2. Which brings us to today where people familiar with the company’s plans have indicated that Microsoft has canceled or significantly delayed the Surface Hub 2X and that it will not be shipping as previously announced. In fact, if you go back and look at the announcement, Microsoft has pulled the Surface Hub 2 video and other assets related to the 2X have been scrubbed as well. I reached out to Microsoft for a comment regarding the 2X, and here is what they had to say: “We have an ongoing dialogue with our customers on Hub and are working to... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (January 2020) - Published: 2020-01-31 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-12/ - Categories: Amazon Web Services, Cloud Computing, Hardware, Microsoft 365, Microsoft Azure, Mobile, Windows 10, Windows 7, Windows Server 2008 - Tags: News - Article Type: Overview Because Microsoft announced its most recent quarterly earnings this week, this edition of Short Takes is going to obsess over the results, with a deeper dive into key parts of the business. The sun sets on Windows 7, Windows Server 2008, and Office 2010 Because Microsoft announced its most recent quarterly earnings this week, this edition of Short Takes is going to obsess over the results, with a deeper dive into key parts of the business. Note: On Wednesday, Microsoft reported that it earned $11. 6 billion on revenues of $36. 9 billion in the quarter ending December 31. Both represent sharp gains—38 percent and 14 percent, respectively—over the same quarter one year ago, though it is perhaps worth noting that two of its biggest rivals, Amazon and Apple, had much bigger quarters, since they cater largely to consumers. Both of those firms reported almost three times the revenues of Microsoft. Azure: Hot or not? There seems to be some ongoing concern that Microsoft’s blockbuster Azure cloud business, which experienced heady growth rates in the 90 percent range for several quarters, could be losing steam. After all, Azure experienced “just” 62 percent growth in the quarter, year-over-year (YOY). That’s nonsense. Microsoft shipped the first version of Azure (then called Windows Azure) almost exactly 10 years ago, and while it still faces major pressure from the market leader, AWS, it’s still growing at an incredible rate as well. My concern is unchanged: Microsoft never reports actual Azure revenues, so it’s impossible to compare it with AWS, which Amazon says grew revenues 34 percent in the same quarter to $9. 95 billion. Azure, as you may know, is probably the primary... --- ### Google Is Building a Slack, Not a Teams - Published: 2020-01-30 - Modified: 2024-09-04 - URL: https://petri.com/google-is-building-a-slack-not-a-teams/ - Categories: Google Cloud Platform, Microsoft 365, Microsoft Teams - Tags: G Suite, Google, Slack, Teams - Article Type: Opinion For the past half-decade or so, Google has been trying feverishly to crack the enterprise market with its cloud and productivity application. While the company has made some serious in-roads, with its cloud services growing and the adoption of its productivity suite, Google Apps, often becoming the preferred choice for small companies, Microsoft still rules the roost for the productivity market. For the past half-decade or so, Google has been trying feverishly to crack the enterprise market with its cloud and productivity applications. While the company has made some serious in-roads with its cloud services and the adoption of its productivity suite, G-Suite, Microsoft still rules the roost in the enterprise productivity market. But that’s not to say that what Google is doing isn’t notable as G-Suite presents a serious threat to Microsoft’s keystone SaaS product, Office 365, and the company has the cash flow to sustain a long battle for cloud market share. But as it stands now, Google is in third place in the ‘cloud wars’ and trails Office 365 in productivity market share as well. This week, The Information picked up that Google is about to launch, yet another, chat application. But this time, it’s targeted at its business customers and from everything we have heard so far, it looks more like a Teams/Slack competitor than an iMessage/WhatsApp application. Which of course means, is Microsoft in trouble? Teams is the new hero of Office 365 and Microsoft is investing heavily in the platform to make sure that it sticks with customers. And by all metrics, this is working out well, with the company reporting last year that the application had 20 million daily active users. Google trying to re-enter this market should not scare Teams but for Slack, this could be a significant problem. While I know there are exceptions to this, for the most part, companies that... --- ### Microsoft Closes Outlook Copy-On-Write Flaw with Exchange Online Fix > Microsoft fixed the copy-on-write bug in Outlook for Windows in Exchange Online. The fix stops users removing attachments from sent or received messages. A strong case can be made that the fix should have been present - Published: 2020-01-30 - Modified: 2020-01-30 - URL: https://petri.com/outlook-flaw-fixed-exchange-online/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Copy-on-write protection, Exchange Online, Microsoft Outlook, Native Data Protection - Article Type: News, Opinion Microsoft fixed the copy-on-write bug in Outlook for Windows in Exchange Online. The fix stops users removing attachments from sent or received messages. A strong case can be made that the fix should have been present from the start to stop any possibility that clients could comprise Exchange Native Data Protection. Microsoft doesn't think many people were affected and they could be right, but that doesn't make the problem any easier to swallow. Outlook Bug Clamped Down on by Exchange Online On January 14, I reported how a flaw in Outlook desktop compromised Exchange Online Native Data Protection. In a nutshell, users whose mailboxes were on hold were able to remove attachments from sent or received messages if Outlook was configured in cached Exchange mode. This undermined the guarantee of Exchange Native Protection that any attempt to remove data from mailboxes on hold would be captured and available for eDiscovery. After experimenting with several novel theories, such as an Outlook failure to synchronize properly, the Exchange development group concluded that the best solution was to deploy a server-side fix to prevent any further possibility of data loss. The deployment of the fix is now complete across Office 365. Assessing the Impact Although it’s good that Microsoft has closed the gap, they have not said how many attachments might have disappeared from eDiscovery. It’s a difficult question for Microsoft to answer, mostly because they don’t have data to quantify any loss of data, if that in fact occurred. The problem of measuring data loss is hard. We know that the problem only surfaces in specific circumstances when on-hold mailboxes are accessed by Outlook configured in cached Exchange mode and the mailbox owner (or a delegate) removes an attachment from a sent or received message. Depending on who you ask, this set of conditions might be considered rare or common. Easy to Put Mailboxes on Hold Asserting that the combination of on-hold mailboxes... --- ### Microsoft's Q2 Earnings Beat Estimates, Reinforce Office and Cloud Growth - Published: 2020-01-29 - Modified: 2020-01-29 - URL: https://petri.com/microsoftq2results/ - Categories: Main - Tags: Earnings, Microsoft - Article Type: News It's that time of the year again and Microsoft has released its earnings for Q2 fiscal / Q4 calendar and the company beat estimates for revenue and earnings per share. The company brought in $36.9 billion in revenue with $11.6 billion of that being Net Income. It's that time of the year again and Microsoft has released its earnings for Q2 fiscal / Q4 calendar and the company beat estimates for revenue and earnings per share. The company brought in $36. 9 billion in revenue with $11. 6 billion of that being Net Income. Revenue in Productivity and Business Processes was $11. 8 billion and increased 17% with the following business highlights: Office Commercial products and cloud services revenue increased by 16% (up 18% in constant currency) driven by Office 365 Commercial revenue growth of 27%. Office Consumer products and cloud services revenue increased 19% with continued growth in Office 365 Consumer subscribers to 37. 2 million. LinkedIn revenue increased by 24%. Dynamics products and cloud services revenue increased 12%  driven by Dynamics 365 revenue growth of 42%. Revenue in Intelligent Cloud was $11. 9 billion and increased 27%, with the following business highlights: Server products and cloud services revenue increased 30% driven by Azure revenue growth of 62%. Enterprise Services revenue increased 6%. Revenue in More Personal Computing was $13. 2 billion and increased 2% (, with the following business highlights: Windows OEM revenue increased 18% (up 18% in constant currency) Windows Commercial products and cloud services revenue increased by 25%. Surface revenue increased by 6%. Search advertising revenue excluding traffic acquisition costs increased by 6%. Xbox content and services revenue decreased by 11% (down 9% in constant currency). Even though Azure's growth percentage continues to decline, previous years it was above 100%, the volume of revenue it brings in, continues... --- ### Microsoft Planning to Wind Down Windows 10 Store for Business - Published: 2020-01-29 - Modified: 2020-01-29 - URL: https://petri.com/microsoft-planning-to-wind-down-windows-10-store-for-business/ - Categories: Windows 10 - Tags: Microsoft Store, Microsoft Store for Business, Windows 10, Windows 10 S Mode, Windows 10X - Article Type: News Redmond could be looking to phase out the Microsoft Store for Business and Store for Education. Not to be confused with the consumer app that is bundled with Windows 10, the Store for Business and Store for Education allows organizations to control licensing and distribution of public Store apps and to distribute line-of-business apps that are developed in-house. According to a report on ZDNet by Mary Jo Foley, Redmond could be looking to phase out the Microsoft Store for Business and Store for Education. Not to be confused with the consumer app that is bundled with Windows 10, the Store for Business and Store for Education allows organizations to control licensing and distribution of public Store apps and to distribute line-of-business apps that are developed in-house. The Store concept was originally developed to distribute and update Universal Windows Platform (UWP) apps securely in Windows 10. But UWP never really took off with developers. And along with the demise of Windows 10 Mobile, UWP as a stand-alone development platform is considered by most to be dead in the water. The Store technologies have developed over time to reflect this reality. Win32 apps can now be packaged and distributed using the Store. Microsoft also replaced the original APPX installer technology with MSIX, which allows packages to be distributed from any source, including the web and Microsoft Store. For more information on MSIX, see Improve Windows Enterprise Application Deployment Reliability and Security using MSIX and MSIX Core Coming to Windows 7 and 8. 1 in December, Plus New Features on the Horizon on Petri. Last spring, Microsoft's Corporate Vice President of the Windows Developer Platform Kevin Gallo told Foley: "The Store is about commerce. It's another channel for distribution, but not the only way Windows 10 users will be able to get apps. " Now Foley is reporting that while Microsoft... --- ### The Importance of Endpoint Backup - Published: 2020-01-28 - Modified: 2020-01-28 - URL: https://petri.com/the-importance-of-endpoint-backup/ - Categories: Backup & Storage, Mobile - Tags: Backup, Disaster Recovery, Endpoint - Article Type: Overview While almost every business has some type of backup processes in place for their important servers, many of these same companies have neglected endpoint backup. There’s no doubt that servers are more important as they provide a platform for the business-critical applications and services that the business relies on but they are not the only critical component. While almost every business has some type of backup processes in place for their important servers, many of these same companies have neglected endpoint backup. There’s no doubt that servers are more important as they provide a platform for the business-critical applications and services that the business relies on but they are not the only critical component to productivity. Endpoints, like laptops and desktop, also require data protection measures to protect against system failures, disaster and user error. Endpoints can be hit with ransomware that can encrypt your files, the system can fail to boot up, or some important file might get deleted accidentally. Endpoint protection can be especially important for devices that are used by your corporate executives; if they fail you know you’re going to hear about it. While these types of events usually don’t impact the operations of the business itself, they most certainly do impact the productivity of the employees involved. Endpoint backup typically has different requirements than server backup. Server backup needs to happen at least daily and frequently more often for critical servers. Endpoints require a lot more flexibility in the backup process. Endpoints, like laptops, are frequently disconnected and they can’t be backed up using a simple timed schedule. Some of the most important capabilities of endpoint backup include: Flexible backup methods – Endpoint usage is variable between different devices and the ability to have flexible backup methods is important. The ability to perform an entire system backup is essential. It’s also important... --- ### Managing OneDrive for Business File Upload Requests > The new Request Files feature in OneDrive for Business is great for users but comes with no admin controls. You can block the feature completely with a kludge and use Office 365 audit records to know when people are requesting files. - Published: 2020-01-28 - Modified: 2024-09-04 - URL: https://petri.com/managing-onedrive-for-business-file-upload-requests/ - Categories: Microsoft 365, Office - Tags: Office 365 Audit Log, OneDrive for Business, PowerShell, Request Files - Article Type: How To The new Request Files feature in OneDrive for Business is great for users but comes with no admin controls. You can block the feature completely with a kludge and use Office 365 audit records to know when people are requesting files. However, Microsoft could make the feature so much better by extending some existing controls to make requesting files work better and more securely. User Features Are Great Until They Need to be Managed If you read my article about the new Request files feature in OneDrive for Business, your first reaction might be “what a great feature” before quickly passing to “how can I control it? ” Conceptually, asking someone to upload files to OneDrive is like accepting attachments in email. Both need some control to ensure that tenants don’t expose themselves to risk through data coming from outside. For example, the kind of controls you might consider desirable include the ability to disable the feature or restrict uploads to specific domains. Or limit the feature so that only some users can generate requests. Or only allow certain file types (like Office files and PDFs) to be uploaded. Or require those who upload to authenticate themselves with an Azure Active Directory, Microsoft, or Google account. No Specific Controls for Request Files The bad news is that neither the SharePoint Online Admin Center nor the OneDrive for Business Admin Center includes any controls specific to Request files. However, because the feature uses a special form of anonymous sharing link, the standard controls for Anyone links set in the Sharing section of the SharePoint Admin Center (Figure 1).  If the tenant disables Anyone links, users cannot request file uploads. Figure 1: Sharing options for Anyone links in the SharePoint Admin Center (image credit: Tony Redmond) Sharing links for Request Files only work if the recipient has the permission to upload files to... --- ### Manage and Audit Windows and Linux Servers Using Azure Arc - Published: 2020-01-27 - Modified: 2024-09-04 - URL: https://petri.com/manage-and-audit-windows-and-linux-servers-using-azure-arc/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure Arc, cloud computing, hybrid cloud, linux, Security, Windows Server - Article Type: Overview Microsoft adds a subset of existing Azure server security and auditing features to Azure Arc for organizations that need to manage workloads on different platforms and locations. One of the biggest announcements at this year’s Microsoft Ignite conference in November was about Azure Arc, a new service that allows organizations to extend the reach of Azure to other cloud providers, the edge, and on-premise devices. Azure Arc is currently in public preview and at this early stage, it lets you manage Windows and Linux servers, and deploy Azure SQL Database and Azure Database for PostgreSQL Hyperscale on any Kubernetes cluster regardless of where it is physically located. But Microsoft is planning to expand the range of Azure services that are supported by Arc in the future. In this article, I’m going to look specifically at managing Windows and Linux servers with Azure Arc. Once a Windows or Linux server is connected to Arc, you can monitor logs, control who gets access to the Azure resource using Role-Based Access Control (RBAC), and audit configuration settings using Azure Policy Guest Configuration. While Azure Arc is new, some of the features here, like log collection, cross over with Azure Sentinel and Azure Security Center. Sentinel is Microsoft’s Cloud-Native Security Information and Event Management (SIEM) service. Here are a couple of Petri articles where you can find out more about Azure Sentinel: Azure Sentinel, Microsoft’s Cloud-Native SIEM Solution, Is Now Generally Available Monitor Windows Server Security Using Azure Sentinel Part 1 – Set Up a Workspace and Data Connector How to connect servers to Azure Arc I’m not going to provide complete instructions here at this time. Partly because Arc... --- ### Microsoft Tries to Boost Microsoft Search in Bing with Chrome Extension > In a January 22 post, Microsoft announced a plan to boost Microsoft Search in Bing by including an extension to make Bing the search engine for Chrome for Office ProPlus users. - Published: 2020-01-22 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-search-chrome-extension/ - Categories: Microsoft 365, Office - Tags: Chrome, Microsoft Search in Bing, Office 365, Office ProPlus - Article Type: How To, News In a January 22 post, Microsoft announced a plan to boost Microsoft Search in Bing by including an extension to make Bing the search engine for Chrome for Office ProPlus users. Obviously no one outside Redmond thinks that this is a good idea as forcing users to embrace Bing is unlikely to be popular. But it might happen in mid-February when the next Monthly Channel update for Office ProPlus lands. Stay tuned for developments. Coming Soon to Office 365 Tenants in an Office ProPlus Update I am bemused by Microsoft’s announcement (MC201872 and roadmap item 59917) that they intend to install a browser extension to make Bing the default search engine for Google Chrome. The proclaimed intention is to bring the benefits of Microsoft Search to Chrome users by using Bing to include Office 365 data alongside other search results, if you sign into Office 365 with the browser. The extension comes in Office 365 ProPlus (click to run) and is installed when ProPlus is updated on a workstation. The first installations will happen with the Monthly Channel update on Patch Tuesday in February 2020. Reassuringly, Microsoft points out that “Microsoft Search does not use searches in your organization to improve public web results or to improve Bing, and Microsoft Search does not let advertisers target anyone within your organization. ” And to prove that it’s not just Chrome that they want to upgrade, Microsoft says that “support for Firefox is planned. ” Nothing is said about other Chromium-based browsers like the new Edge or Brave, nor is anything planned for other browsers supported by Office 365 like Safari, the old Edge, or Internet Explorer. Country-Specific Deployments Microsoft plans to use the IP address of users to install the extension in a select group of countries including the U. S. , U. K. , Australia, Canada, France, Germany, and India. Quite why Ireland was left off the list is beyond me, but Microsoft says that they will add... --- ### Microsoft Issues Zero-Day Advisory for Internet Explorer - Published: 2020-01-21 - Modified: 2020-01-21 - URL: https://petri.com/microsoft-issues-zero-day-advisory-for-internet-explorer/ - Categories: Security, Windows Client OS, Windows Server - Tags: Internet Explorer, Security, Windows 10, Windows 7, Windows 8, Windows Server - Article Type: News Hot on the heels of this month's Patch Tuesday, Microsoft has published a security advisory for an Internet Explorer zero-day. Microsoft published a security advisory for Internet Explorer on Friday, January 17th. The vulnerability is a remote code execution (RCE) flaw in the way that the JavaScript engine handles objects in memory. An attacker can use it to run arbitrary code in the context of the currently logged-in user. As such, users without administrative privileges are less impacted. The newly discovered flaw affects Internet Explorer 9, 10, and 11 on Windows 7 through to Windows 10, and the respective Windows Server versions. The bug could be used to take complete control of a system and install new software, read and modify data, and create new accounts with full user rights. The bug is rated critical for Windows client SKUs and moderate for Windows Server because Enhanced Security Configuration mode is enabled by default and it provides additional protection for sites not explicitly added to the Internet Explorer Trusted Sites zone. Microsoft says that users would need to open a link to a specially crafted website for the vulnerability to be exploited. Hackers often use social engineering to persuade users to open malicious links found in emails. While the flaw is being actively exploited in the wild, Microsoft says that so far that it is aware of limited targeted attacks. A CVE has been assigned to the vulnerability (CVE-2020-0674) but there is no patch for the bug at the moment. Microsoft is working on providing a fix. Although it's not clear whether a patch for Windows 7 will be... --- ### OneDrive for Business Makes It Easy to Request Files > The OneDrive for Business Request Files feature is a quick and simple way for users to ask others to upload files to a target folder using a special sharing link. Request files is now available within Office 365. - Published: 2020-01-21 - Modified: 2024-09-04 - URL: https://petri.com/onedrive-request-files/ - Categories: Microsoft 365, Office - Tags: Files request, OneDrive for Business, Request Files - Article Type: How To The OneDrive for Business Request Files feature is a quick and simple way for users to ask others to upload files to a target folder using a special sharing link. Request files is now available within Office 365. The process is straightforward and might even help to stop people sending some attachments around in email. No admin controls are available for Request files, which is a nagging concern that deserves some consideration. OneDrive for Business and Office 365 Sharing In December 2019, I discussed some of the changes Microsoft was making to OneDrive for Business to improve the way sharing happens within Office 365. Making it easy for users to request files from people inside and outside the organization is a new feature that Microsoft had revealed at the Ignite 2019 conference in Orlando but wasn’t yet available. The good news is that Request Files has rolled out to Office 365 tenants and makes gathering files from others very easy indeed. The feature is not yet available in Government or sovereign clouds. Request an Upload When you create an upload request to ask other people to upload files, OneDrive for Business generates a unique sharing link to allow them to access a specific folder in your OneDrive account. The link allows them to upload files to the folder, but they can’t see anything else stored in the folder. To generate a request, choose the target folder for the upload and select Request files from the menu. Any folder will do but be sure to select the folder from a folder list rather than after you open the folder. OneDrive asks for the reason why the files are being requested (Figure 1). This is informational text that those who receive the request see to know why you want them to upload some files. Figure 1: Naming a files request (image credit: Tony Redmond) Send a Files Request... --- ### Patch Tuesday – January 2020 - Published: 2020-01-20 - Modified: 2020-01-20 - URL: https://petri.com/patch-tuesday-january-2020/ - Categories: Security - Tags: Patch Tuesday, Windows 10, Windows 7, Windows Server - Article Type: News Windows 7 gets its last regular Patch Tuesday security updates, Microsoft fixes a CryptoAPI vulnerability reported by the NSA, and Windows Server RDP also gets patched. This month is relatively quiet but there are nevertheless, and as always, critical patches that need your attention. So, let's get started... Windows and Windows Server This month there are three critical remote code execution (RCE) flaws patched in Windows. The first (CVE-2020-0611) is in the Windows Remote Desktop Client and it could be exploited if a user connects to a malicious server. The attacker could install software, modify data, and create new users with full user rights. This flaw would require the attacker to trick the user into connecting to a malicious server, either by compromising a legitimate server, by using social engineering, DNS poisoning, or using a man-in-the middle attack. The second critical RCE vulnerability (CVE-2019-1468) is in the Win32k component and how it handles embedded fonts. An attacker could take control of a system, install programs, modify data, and create new accounts with full user rights. Users without administrative privileges and less impacted by this bug. The flaw could be exploited using a specially designed website or by opening a file. The last critical RCE (CVE-2019-1471) this month is in how a host Hyper-V server fails to properly validate input from an authenticated user in a guest operating system. An attacker would need to run a specially crafted application in the guest operating system to exploit this flaw and cause the Hyper-V host server to run arbitrary code. The most prominent flaw however is a spoofing vulnerability (CVE-2020-0601) in the CryptoAPI and how it validates... --- ### Microsoft Moves Ignite to a New Location, New Dates - Published: 2020-01-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-moves-ignite-to-a-new-location-new-dates/ - Categories: Uncategorized - Tags: Ignite, Microsoft - Article Type: News For the past couple of years, Microsoft has hosted Ignite in Orlando, Florida. But for 2020, the company is moving the event to a new location and it will also be earlier in the year. For the past couple of years, Microsoft has hosted Ignite in Orlando, Florida. But for 2020, the company is moving the event to a new location and it will also be earlier in the year. Last year, Ignite was held in November but this year, the company is moving the show to New Orleans and it will be held from Sept 21st to the 25th. For those that did not like the Orlando venue, this should be a nice change of scenery for the conference. Ignite is Microsoft’s largest IT Pro focused event of the year and attracts 10s of thousands of attendees. I have gone to every Ignite and for those in the industry, it’s worth your time to see what Microsoft is working on and to get advice about how to optimize your environments. While we don’t know the structure of the event quite yet, it will likely follow similar Ignites that includes a keynote each day, followed by technical sessions and hands-on training. The company has opened up pre-registration already and you can learn more about the conference, here. --- ### Paul Thurrott's Short Takes: January 17 - Published: 2020-01-17 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-17/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10, Windows 7 - Tags: News - Article Type: Overview Because it’s been a while, this edition of Short Takes looks at Microsoft’s new carbon-negative push, thanking the NSA for finding a serious Windows 10 flaw, Microsoft’s new Edge browser, a new Walkie-Talkie feature coming to Teams, and much, much more. Because it’s been a while, this edition of Short Takes looks at Microsoft’s new carbon-negative push, thanking the NSA for finding a serious Windows 10 flaw, Microsoft’s new Edge browser, a new Walkie-Talkie feature coming to Teams, and much, much more. Carbon-neutral? Please! Microsoft is going carbon-negative! In its biggest-ever sustainability push---and, let’s face it, a nice slap in the face to holier-than-thou companies doing less, like Apple and Google---Microsoft said this week that it was going carbon-negative. That is, it won’t just offset its carbon output. It will offset more than its carbon output, by 2030. And it will do so so aggressively that, by 2050, it will have offset more carbon than it created in its entire history, since its founding in 1976. “Carbon-neutral is not enough to address the world's needs," Microsoft president Brad Smith wrote of this stunning development. “We see an acute need to begin removing carbon from the atmosphere, which we believe we can help catalyze through our investments. ” I assume the rest of Big Tech will trip over themselves in the months ahead trying to catch up to what Microsoft is doing. Should be fun to watch. “Microsoft Pledges To Remove From The Atmosphere All The Carbon It Has Ever Emitted” It’s literally going to find the exact carbon it created. NSA finds a very serious vulnerability in Windows 10 The US National Security Agency (NSA) discovered a bug in Windows 10 (and Windows Server 2016 and 2019) related to the... --- ### The Need to Manage Office 365 Feature Deprecations > Everyone gets very excited about new Office 365 features, but how do we handle the dark side of change - deprecated features and functionality? The answer is that we probably don't do such a good job. - Published: 2020-01-16 - Modified: 2020-01-16 - URL: https://petri.com/managing-office-365-change/ - Categories: Microsoft 365, Office - Tags: Change Management, Deprecation, Office 365 - Article Type: Opinion Everyone gets very excited about new Office 365 features, but how do we handle the dark side of change - deprecated features and functionality? The answer is that we probably don't do such a good job of managing features out of tenants. Maybe it's not the most exciting topic or work to do, but the simple fact is that deprecations happen and will continue to happen. Managing Office 365 Change With Office 365 now approaching ten years in production, it’s not news that Microsoft has removed some features. Indeed, because the first two iterations of the servers used in Office 365 were akin to their on-premises counterparts, it was inevitable that they would discard old code created to meet the needs of single-server on-premises deployments with code designed to exploit the cloud. Today’s focus in Office 365 is on new applications like Teams and Planner and base functionality that operates across all workloads, like Office 365 retention policies and data loss prevention. Change within Office 365 needs to be managed. Most of the time, we consider how to deal with the introduction of new functionality and pour over the plans in the Microsoft 365 roadmap and details released closer to availability as notifications in the Office 365 admin center. Microsoft and independent blogs are consulted to gain insight into what’s happening and understand the impact on a tenant. Perhaps scripts are built to assemble and note information about new features. Tracking new Office 365 developments and putting them in context for an organization can become a full-time job. Deprecations Happens On an Ongoing Basis Microsoft uses deprecation as the term to describe the removal of a feature or app. In other words, they want to remove the technology because it is no longer useful or has been replaced by something better, more advanced, or more functional. Perhaps the feature was the first attempt to... --- ### Windows 10 Version 2004 (20H1) – Renaming Virtual Desktops and Restart Apps Feature - Published: 2020-01-15 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-version-2004-20h1-virtual-desktops-and-restart-apps-feature/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 2004, Windows 10 20H1 - Article Type: Overview Most of the changes in Windows 10 version 2004, which is due to land in the first half of 2020, are under-the-hood. And the Windows 10 November 2019 Update got some of the changes that were in development as part of 20H1, like enhancements to search in File Explorer. This first article in a two-part series looks at the productivity improvements coming as part of Windows 10 version 2004. Windows 10 version 2004, sometimes referred to by its codename 20H1, is the first major feature update to Windows 10 in a year. The Windows 10 November 2019 Update, otherwise known as 19H2, was a minor update and brought a few tweaks and improvements for both users and IT professionals. Despite that Windows 10 v2004 will be delivered as a full OS upgrade, much like previous feature updates excluding 19H2, there isn't much in the way of new features. Windows Subsystem for Linux 2 (WSL2) will debut in this release. Microsoft first talked about WSL2 at its Build conference for developers last year. Windows Sandbox will also get support for configuration files and some other minor improvements. But that's not to say there aren't a few changes that will boost productivity for knowledge workers and power users. In this article, I'm going to look at changes to virtual desktops and how Windows 10 handles automatically restarting apps that were open before logging out, restarting, or shutting down Windows. Renaming Windows 10 virtual desktops Not to be confused with Windows Virtual Desktops (WVD), Microsoft's new Desktop-as-a-Service hosted in the Azure cloud, virtual desktops in Windows 10 let users create one or more additional desktops to help organize windows. I've written about virtual desktops several times on Petri: Using Virtual Desktops in Windows 10 Making the Most of Virtual Desktops, Task View, and Snap Assist in Windows 10 How to Get Outlook to Play Nice with Windows 10 Virtual Desktops... --- ### Microsoft's new Edge Browser is Generally Available Starting Today - Published: 2020-01-15 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-edge-browser-is-here/ - Categories: Uncategorized - Tags: Edge, Microsoft, News - Article Type: News Microsoft's new Edge browser is here but it's not coming to your environment just yet; the company is taking the slow road to pushing this update out to everyone. Yesterday we said goodbye to Windows 7 and today we say goodbye to Edge but at the same time, we say hello to the new Edge. Starting today, Microsoft’s new version of Edge, the one based on the Chromium platform, is now generally available. Last year, Microsoft began publicly testing the new iteration of Edge with users around the world and starting today, the stable version is available for everyone. For those that have been testing the browser, not much is changing but for those who have been holding off, or are in the corporate world, there are a few things you need to know. For everyone outside the corporate world, Microsoft will begin slowly pushing the new Edge browser out and replacing legacy Edge. When this happens, data from legacy Edge will be migrated to the new Edge automagically; the biggest change users will likely notice is that the icon goes from the blue e to the new wave logo. On the corporate side, Microsoft is providing an offline deployment package if you would like to pilot the new version of Edge before rolling it out to your users. Of course, I expect many are already using Chrome and if your sites are compatible with Chrome, the new Edge can replace the Google browser, likely without any compatibility issues. The biggest reasons that you would want to move to Edge versus Chrome comes down to which company you trust more with your data, Google or Microsoft? That’s a question... --- ### Windows 7 Support Ends Today But You Probably Aren’t Impacted By This - Published: 2020-01-14 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-says-goodbye-but-you-probably-arent-impacted-by-it/ - Categories: Windows 7, Windows Client OS - Tags: Windows, Windows 7 Today is the day that many have likely feared for years, Windows 7 is officially reaching its end of support today. What this means is that starting tomorrow, if a vulnerability is discovered, Microsoft likely won’t patch it (for free) and your device will now be exposed. Today is the day that many have likely feared for years, Windows 7 is officially reaching its end of support today. What this means is that starting tomorrow, if a vulnerability is discovered, Microsoft likely won’t patch it (for free) and your device will now be exposed. But there are a lot of caveats to this that you should know about and if you are reading this, you are likely not impacted by this servicing deadline. Why? Because you have been planning, migrating, or extending your servicing agreements, right? Right. For any company that values their security, you already knew about this deadline and if you are waking up today to a complete surprise that this date has arrived, that’s your own fault. We have been reminding you about this deadline extensively and so has Microsoft. And at this point, anyone who is impacted by this end of servicing has already made alternative arrangements. Microsoft has several options for extending servicing to Windows 7, some of which are ‘free’ and for those are impacted, migrating to Windows 10 is trivial compared to the Windows XP to 7 process. More than likely, of the roughly 26% of Windows devices that are still running Windows 7, according to Net Marketshare, are either consumers who are never going to upgrade or are corporate customers who are in the process of migrating which means they will receive extended support for their environment. So yes, Windows 7 is ending its support today for those who... --- ### Outlook Flaw Compromises Exchange Online Native Data Protection > A bug in Outlook desktop's implementation of the MAPI over HTTP protocol allows users whose mailboxes are on hold to remove attachments from messages without the removal being captured. - Published: 2020-01-14 - Modified: 2024-11-19 - URL: https://petri.com/outlook-flaw-compromises-exchange-online-native-data-protection/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Bug, Compliance, Copy-on-write protection, data governance, Exchange Online, Native Data Protection, Outlook - Article Type: News A bug in Outlook desktop's implementation of the MAPI over HTTP protocol allows users whose mailboxes are on hold to remove attachments from messages. The removal is not captured by the copy-on-write feature of Exchange Online Native Data Protection, which potentially compromises the ability of Data Governance managers or eDiscovery investigators to recover information needed for compliance purposes. All in all, it's a mess that Microsoft needs to clean up quickly. Problem Exposed When a User Accidentally Deleted an Attachment A January 9 post on Spiceworks noted a problem when a user accidentally deleted an attachment from a message they had received. The mailbox was on hold, so the administrator tried to exploit the copy-on-write protection feature in Exchange Online Native Data Protection to find and recover the original item from the Versions subfolder of Recoverable Items in the user’s mailbox. No trace could be found. Microsoft’s documentation for copy-on-write protection says: “If a user who is placed on In-Place Hold or Litigation Hold modifies specific properties of a mailbox item, a copy of the original mailbox item is created before the changed item is written. The original copy is saved in the Versions subfolder. This process is known as copy-on-write page protection. ” Obviously, the original message with the attachment should have been in the Versions folder and retrievable using an Office 365 content search. It wasn’t, so some alarm bells sounded, first in the MVP community when several MVPs reproduced the problem, and then inside Microsoft as customer support tickets flowed in. Microsoft’s respond is described in Office 365 Service Health Dashboard advisory EX199762 (Figure 1). The notice is disingenuous in that it does not clearly describe the impact and severity of the issue in terms of compliance and data governance. Figure 1: The Office 365 Service Health Dashboard advisory posted by Microsoft (image credit: Tony Redmond) Reproducing the Problem The issue is easily reproducible. Create... --- ### Microsoft Search and Improved Windows Search Performance in Windows 10 - Published: 2020-01-13 - Modified: 2020-01-13 - URL: https://petri.com/microsoft-search-and-improved-windows-search-performance-in-windows-10/ - Categories: Windows 10 - Tags: Microsoft 365, Microsoft Search, Office 365, Productivity, Windows 10, Windows Search - Article Type: Overview Search in Windows and Microsoft 365 is changing. Earlier this year, Microsoft announced the general availability of Microsoft Search, a new cloud-based service borrowing AI technology from Bing aimed at making it easier to find information in Office 365. Search in Windows and Microsoft 365 is changing. Earlier this year, Microsoft announced the general availability of Microsoft Search, a new cloud-based service borrowing AI technology from Bing aimed at making it easier to find information in Office 365. Microsoft said at the time: “Today, we’re announcing general availability of Microsoft Search, an intelligent, enterprise search experience from Microsoft that applies the artificial intelligence technology (AI) from Bing and deep personalized insights surfaced by the Microsoft Graph, to make search more effective for you – so whether you’re looking to complete a task, pick up where you left off, or discover answers or insights, it’s just a click away, across all of your applications, your desktop, and your browser. ” If you are using the latest version of Office 365 ProPlus, Office 365, or Microsoft 365 you can access Microsoft Search in the search box at the top of the application or browser window. Despite the focus on cloud search, Microsoft isn’t ignoring local search in Windows. The Windows 10 November 2019 Update (19H2) brings changes to File Explorer search, which now includes results from OneDrive, not just what’s stored on your local disk. There are also some UI tweaks to make it easier to read search results and documents now open by default in Office 365 ProPlus if installed instead of in a browser window. Microsoft also announced some improvements to Microsoft Search at its annual Ignite conference in November. You can read about those changes in Microsoft's... --- ### What's in Store for Windows in 2020 - Published: 2020-01-13 - Modified: 2020-01-13 - URL: https://petri.com/whats-in-store-for-windows-in-2020/ - Categories: Windows 10, Windows 7, Windows Server 2019 - Tags: Windows 10, Windows 10X, Windows 7, Windows Server - Article Type: Overview Windows 7 reaches end-of-life, Microsoft throws Windows a lifeline with Windows 10X, Windows 10 gets another major feature update, and Windows Server continues to support Azure. Windows might not receive the attention that it once did. But if you are doing real work with a notebook or PC right now, it's likely that it is running Windows. For millions of workers, and IT staff that support the OS every day, Windows is still very much a reality. So on that note, here's a look at what is in store for Windows in the coming year... Windows 7 reaches end-of-life I think everyone knows by now that Windows 7 is reaching end-of-life this month. January 14th to be precise. There are several options for customers: Windows 10 Enterprise E5, Microsoft 365 E5, or Microsoft 365 E5 Security customers will get an additional year of Windows 7 SP1 support for free. After that, they will receive a fifty percent discount on Extended Security Updates (ESU) for Windows 7. Pay Microsoft for ESUs. Migrate to Windows 10. Use Microsoft's Windows Virtual Desktop service in the Azure cloud. ESU pricing was announced early in 2019 and will be provided starting January 2020 through January 2023. First year: Windows 7 Pro is $50 per device and Windows 7 Enterprise is $25. Second year: Windows 7 Pro is $100 per device and Windows 7 Enterprise is $50 per device. Third year: Windows 7 Pro is $200 per device and Windows 7 Enterprise is $100 per device. Windows Virtual Desktop became generally available in 2019. It is a Desktop-as-a-Service platform that runs on a multiuser Windows 10 SKU that is unique... --- ### Teams Is Adding New Security and Management Tools, Dynamics 365 Joins the Update Party Too - Published: 2020-01-09 - Modified: 2024-09-04 - URL: https://petri.com/teams-is-adding-new-security-and-management-tools-dynamics-365-joins-the-update-party-too/ - Categories: Microsoft Teams, Office - Tags: Dynamics, Microsoft, News, Teams - Article Type: News Microsoft is about to roll out new features for Teams that will make it easier to communicate and sign-in while Dynamics is getting new functionality too but questions about its future remain uncertain. Next week is the National Retail Federation tradeshow and as the name suggests, it’s all about retail. Microsoft has announced several new features coming to its various platforms with both Teams and Dynamics picking up new functionality. During the past year or so, Microsoft has made a big push to help deliver functionality to Teams that is designed for first-line workers. Announced today are several updates that include walkie talkie features, workforce management integrations, task targeting, shared device sign-out, off-shift access to Teams, and SMS sign-in. With an update coming later this year, Microsoft will enable walkie talkie functionality that will make it easier to securely communicate using voice with other employees. The goal is to reduce the number of devices an employee needs to carry and make Teams the all-in-one solution for communication with no additional hardware required. This feature works over WiFi or cellular data which means that there will be no issues with range but of course, if you are in an area that does not have either option, such as outdoor environments, this solution may not work for you. The new task targeting feature will help customers deploy consistent store operations across their entire operation. For example, at the end of the holiday season, with a few simple clicks, you can direct all stores to remove promotional and marketing material by a specified date and be updated frequently on the progress towards reaching that goal. This task functionality is helpful as it can direct... --- ### Windows - A Year in Review - Published: 2020-01-09 - Modified: 2024-09-04 - URL: https://petri.com/windows-a-year-in-review/ - Categories: Windows Client OS, Windows Server - Tags: Microsoft Edge, Windows 10, Windows 10X, Windows Server - Article Type: News It's been another busy year for Windows and here is a summary of the most important events from the last twelve months. This year I thought it would be a good idea to look back at the main events from the past twelve months from my Everything About Windows column on Petri. A lot has happened, so here goes... January January was a quiet month, but it did see Windows Server 2019 finally reach general availability (GA) and resurface in the Microsoft Evaluation Center. Windows Server 2019 GA was originally announced in September 2018. And it briefly appeared in early October in the Evaluation Center, the Volume Licensing Service Center, and the Azure Marketplace. But it was then pulled due to a bug that could delete user data during an in-place upgrade. February Late February saw Microsoft announce Windows Server IoT 2019. Designed for the largest edge workloads on server-class devices, Server IoT joined the existing lineup of Windows 10 IoT Core and Windows 10 IoT Enterprise. Windows Server IoT 2019 can handle heavy workloads, like analyzing multiple video streams, and it can process the results locally or send them to the cloud. February also saw Microsoft extend the availability of Windows Defender Advanced Threat Protection (ATP) to Windows 7 and Windows 8. 1. In addition to the features already available in Windows Defender, ATP provides better preventative protection, post-breach detection, and automated investigation and response features for enterprises. March The big news in March was Kubernetes support for Windows Containers moving from beta to stable. Kubernetes is the container orchestration technology originally developed by Google that the whole DevOps world... --- ### Exchange Online Calendar Auto-Processing Vexes Some Users > A recent change made to the way that Exchange Online processes notifications for calendar meetings has upset some Office 365 users because they don't see the email. - Published: 2020-01-09 - Modified: 2024-11-19 - URL: https://petri.com/exchange-online-calendar-auto-processing-vexes-some-users/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Calendar Meeting, Exchange Online, Set-OrganizationConfig - Article Type: How To, News A recent change made to the way that Exchange Online processes notifications for calendar meetings has upset some Office 365 users because they don't see the email. Instead of leaving the notification email in the Inbox, Exchange processes the update in the calendar and moves the notification to the Deleted Items folder, meaning that it might be missed. Which makes some people mad. Exchange Online Auto-Processes Meeting Updates Some months ago, Microsoft changed the way Exchange Online processes meeting update notifications. The change is described in Office 365 roadmap item 30674, which says: When a meeting organizer updates a meeting details that do not affect the date/time/recurrence pattern, I. e. add Skype for Business meeting link, Office 365 will automatically process and add the changes to the invitees’ calendars without requiring the invitees to receive a meeting update in their inbox and having to respond again to the meeting invite. You will be able to customize the logic for what details should be auto-processed for your organization, and which ones should continue to be shown as a meeting update in the invitees’ inboxes. At this time, we are not going to provide an option in Outlook for the organizer to choose how updates go out. The important points here are: Attendees do not see notifications for some changes made to a meeting. Exchange Online updates the meeting in their calendar and moves the notification to the Deleted Items folder. Exchange Online doesn’t allow users to disable or otherwise control the feature. For instance, to see all meeting update notifications. Control is only available at the organization level. Good Reasons for the Change Generally, the change is good and works well for millions of users. In fact, I bet that most people don’t know that Microsoft made the change to introduce auto-processing of meeting updates. If you’ve ever organized a large or complex... --- ### How to Block Automatic Delivery of Microsoft Edge - Published: 2020-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how-to-block-automatic-delivery-of-microsoft-edge/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10, Windows Update, Windows Update for Business - Article Type: How To Learn how to block automatic installation of Microsoft's Chromium-based Edge browser when it reaches general availability in January. As I reported on Petri recently, Microsoft has already made changes to Windows 10 to accommodate its new Chromium-based Edge browser. With general availability due to start January 15th, Microsoft apparently plans to begin a staged rollout of the browser via Windows Update on the same date, meaning that eventually all Windows 10 devices on version 1803 or later will see the new browser replace the legacy version unless steps are taken to block it. Microsoft says that it is taking this step to help customers 'become more secure and up-to-date'. In practice, the new browser is an improvement over legacy Edge but when it ships in mid-January, there will be some features missing and others that haven't been ported over. For those reasons, and potential issues with application compatibility, organizations might consider blocking the update. Organizations using Windows Server Update Server (WSUS) and/or Microsoft Endpoint Manager will be able to block the update. Those relying on Windows Update or Windows Update for Business will need to take some steps to block the browser. This week Microsoft made available a Blocker Toolkit for disabling automatic delivery of Edge and it is available to download here. Microsoft Edge Blocker Toolkit The toolkit won't prevent users from manually installing the new Edge. For that, you should look at application control features in Windows like AppLocker and Windows Defender Application Control (previously Device Guard). The Blocker Toolkit consists of two components: a script (EdgeChromium_Blocker. cmd) and a Group Policy Administrative Template. Organizations... --- ### Understanding How Streams Work in PowerShell 7 - Published: 2020-01-07 - Modified: 2024-09-04 - URL: https://petri.com/understanding-how-streams-work-in-powershell-7/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: Overview Much like Unix, PowerShell has the concept of streams. It’s important to understand how the flow of data output works within PowerShell. By leveraging the power of streams and their capabilities, you will be able to create better troubleshooting and more useful output. Much like Unix, PowerShell has the concept of streams. It’s important to understand how the flow of data output works within PowerShell. By leveraging the power of streams and their capabilities, you will be able to create better troubleshooting and more useful output. In this article, we are going to explore the different streams that are available and how your functions and scripts can take advantage of the streams! What Exactly Are Streams The output from a given command can be directed into different streams, think of channels, that can be acted upon later. By default, output that is not explicitly redirected will go to the success stream. So what exactly are the available streams? Success (Output) Error Warning Verbose Debug Information The * Stream Though it may not be listed above, there is one more stream operator that you can use. If you specify an * you can catch all streams and redirect those streams as needed. This may be more convenient than individually and chaining the streams you want to redirect together. Information Stream Most of the streams are self-explanatory, but the last one is a bit unique. Introduced in PowerShell 5, the information stream was intended to ensure that nothing went to the host directly. Before this point, cmdlets like Write-Host and Out-Host sent data directly to the host program. The host program could be something like the PowerShell console, or Visual Studio Code console. The reason that this is problematic is that if you... --- ### Office 365 Successes and Failures Since 2011 > Office 365 has experienced great success since its launch in June 2011, but it's also had its share of failures as well. This article considers the most important technical advances in Office 365 and the most important parts of the ecosystem - Published: 2020-01-07 - Modified: 2024-09-04 - URL: https://petri.com/office-365-successes-and-failures-since-2011/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, Exchange Online, Office 365 substrate, OneDrive for Business, Power Platform, PowerShell, SharePoint Online, Stream, Teams, Yammer - Article Type: Opinion Office 365 has experienced great success since its launch in June 2011, but it's also had its share of failures as well. This article considers the most important technical advances in Office 365 and the most important parts of the ecosystem as well as some places where things didn't go quite so well as either Microsoft or tenants would have liked. Overall, Office 365 is a terrific success for Microsoft and the software has progressed enormously across the suite. My last article looked at some of the developments we have seen in Office 365 over the last decade. In this piece I describe some of the ups and downs Microsoft’s cloud system has encountered in that time. Feel free to disagree with my choices and let us know your views. Biggest Improvement in an Office 365 App OneDrive for Business. You might be surprised at this choice, perhaps because you remember the horrible nature of the original OneDrive sync client. The modern OneDrive sync client is shared by consumer and commercial accounts and is the reason why people are happy to work with documents and other files stored in Office 365. OneDrive is also responsible for the sharing mechanism used across Office 365 apps. Making cloud storage and sharing easy to use has convinced many (but not all) Office 365 users to move away from local drives. This is a fundamental shift in user behavior, which is why I think OneDrive deserves to be highlighted. I could have chosen Teams, the new poster child of Office 365. There’s no doubt that Teams is successful and has prospered against Slack, its major competitor. However, only 20 million of the 200 million Office 365 accounts use Teams, so Teams has a way to go yet. Office 365 Groups is also a contender because of its influence as a membership and identity... --- ### The Microsoft Software Reaching End of Support in 2020 - Published: 2020-01-06 - Modified: 2020-01-06 - URL: https://petri.com/the-microsoft-software-reaching-end-of-support-in-2020/ - Categories: Office, Windows Client OS - Tags: Microsoft, Software, Support With 2020 officially here, there are several major deadlines on the horizon that you need to be aware of when it comes to software in your environment. While we all know, hopefully, about Windows 7 reaching the end of support in about a week, there are other Microsoft products that will reach this milestone later this year too. With 2020 officially here, there are several major deadlines on the horizon that you need to be aware of when it comes to software in your environment. While we all know, hopefully, about Windows 7 reaching the end of support in about a week, there are other Microsoft products that will reach this milestone later this year too. The most obvious is on January 14th, Windows 7 officially reaches its end of support but also dropping on this date is Windows Server 2008 and Windows Server 2008 R2. And in October, the Office 2010 suite, including SharePoint 2010, will reach its end of supported life. A user on Reddit put together a helpful list of all the major Microsoft products that will soon no longer be supported, I’ve posted the major items below: January 14th Windows 7 Windows Server 2008 Windows Server 2008R2 ​ April 14th Windows 10 1709 Enterprise / Education ​ May 12th Windows 10 1809 Home / Professional ​ July 14th Visual Studio 2010 Visual Studio Team Foundation Server 2010 ​ September 8th System Center Service Manager 2010   October 13th System Center Essentials 2007 System Center Data Protection Manager 2010 Exchange 2010 Office 2010 Sharepoint 2010 Project Server 2010 ​ November 10th Windows 10 1803 Enterprise / Education ​ December 8th Windows 10 1903 Home / Professional / Enterprise / Education If there is a piece of software that you are using from Microsoft that is not on the list but you are trying... --- ### Everything You Need to Know About Azure Infrastructure – December 2019 Edition - Published: 2020-01-06 - Modified: 2022-07-06 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-december-2019-edition/ - Categories: Microsoft Azure - Tags: Azure, Cloud Adoption Framework, IaaS, JEDI, Lighthouse, Security, virtual machines - Article Type: Overview By the time you read this, it will be 2020. I hope you have had a great holiday season and are feeling all relaxed and ready for a new semester of Azure action. By the time you read this, it will be 2020. I hope you have had a great holiday season and are feeling all relaxed and ready for a new semester of Azure action. As you can imagine, December is downtime for much of Microsoft; many are on vacation for quite a long time and there aren’t many new feature announcements. Most of what you see on the Azure blogs and social media is marketing and recaps. But behind the scenes, late November and early December are busy periods for the program managers; they’re working on the backlog to decide what will be worked on in the coming semester (January-June, codenamed Vibranium, instead of the element Chromium which should have been next). Because it was quiet, I’m going to take a different approach with this month’s article and look back on interesting things from 2019. By the way, Azure Arc is not a highlight for me  - I still believe that there is more hype than meat with that service, but it has gotten the media to talk about Azure a lot, so job done! You Got a Region, Everyone Gets a Region! If it wasn’t for the revenue headlines, 2019 would be known as the “year of expansion” for Microsoft Azure. In the last 12 months the following regions have been added, making the total number to be 54 active regions: Switzerland West Switzerland North Germany North Germany West Central Norway East Norway West UAE Central UAE North... --- ### Everything You Need to Know About Windows – December 2019 - Published: 2020-01-03 - Modified: 2024-11-19 - URL: https://petri.com/everything-about-windows-december-2019/ - Categories: Windows 10, Windows Server - Tags: Microsoft Edge, Windows 10, Windows 7, Windows Server - Article Type: News This month sees Microsoft preparing for the general availability of its new Chromium-based Edge browser in January, Windows Server Core container images get 40% smaller, and Windows Insiders get new builds in the Fast Ring that are not tied to a specific feature update. This month sees Microsoft preparing for the general availability of its new Chromium-based Edge browser in January, Windows Server Core container images get 40% smaller, and Windows Insiders get new builds in the Fast Ring that are not tied to a specific feature update. Microsoft to investigate issues with File Explorer in Windows 10 1909 As I reported in November's Everything About Windows column, the Windows 10 November 2019 Update (version 1909) hasn't been without its issues. Users have been complaining that the search bar in File Explorer freezes and that there are problems with right-clicking in the search bar. A fix has been created for users on Insider build 19536 and Microsoft is working on porting the update to Windows 10 version 1909. Brandon LeBlanc, Senior Program Manager on the Windows Insider engineering team, tweeted: "Some of us are taking a holiday break which means tweeting about things that aren’t work related etc. We will look into this but since it’s not a pressing issue, we may not get traction until after the holidays. Thanks. " Windows Server Core 20H1 container images will be 40% smaller Microsoft announced this month changes to Windows Server Core container images that will make them 40% smaller. In a post on the . NET Blog, . NET Team Program Manager Richard Lander says that Insider images are 40% smaller than the latest (patched) 1903 images. Additionally, startup times to Windows PowerShell are 30-45% faster. Lander says that the improvements should apply in any scenario... --- ### Office 365 Has Changed Enormously Since 2011 > Microsoft launched Office 365 in June 2011. Since then, the cloud office suite has matured nicely and now serves over 200 million monthly active users.The fears that people had about going to the cloud have been dealt with - Published: 2020-01-02 - Modified: 2024-09-04 - URL: https://petri.com/office-365-has-changed-enormously-since-2011/ - Categories: Microsoft 365, Office - Tags: BPOS, Business Online Productivity Services, Office 365 - Article Type: Opinion Microsoft launched Office 365 in June 2011. Since then, the cloud office suite has matured nicely and now serves over 200 million monthly active users. Looking back as we enter a new decade, the fears that people had about going to the cloud have been dealt with and the Office 365 record of cost, reliability, and security holds up to close examination. The Unlovable Nature of BPOS At the start of the decade, Microsoft’s cloud offering was the deservedly maligned Business Online Productivity Services (BPOS: a name only its inventor could love). BPOS was unreliable and didn’t work particularly well. Because BPOS used software designed for on-premises use, it struggled to cope with cloud operations. Thankfully, Microsoft transformed its cloud office system with the introduction of Office 365 on 28 June 2011. After a slow start, Office 365 has gathered pace and overcome G Suite, its major rival to become the leader in cloud office systems. In this article, I look back at the roots of Office 365 and discuss the three major issues that initially spooked customers about the cloud. In the next, I describe some of the Office 365 successes and failures in the last decade. From Limited Beginnings Looking back from today’s perspective, it’s hard to remember just how limited Office 365 was in 2011. The software was based on the 2010 on-premises versions of Exchange, SharePoint, and Lync knitted together with a licensing and administration portal. Microsoft’s engineering groups were still working out how to transform the on-premises software to work at cloud scale, and it’s fair to say that this process didn’t finish until a few years later. The Office 365 ecosystem also needed to be built out. Where Microsoft had three datacenter regions in 2011, it now delivers Office 365 services from 17, a development that resolved the initial fears some customers had about... --- ### How to Run Legacy Microsoft Edge and New Edge Stable Channel Side-By-Side - Published: 2020-01-02 - Modified: 2024-11-19 - URL: https://petri.com/how-to-run-legacy-microsoft-edge-and-new-edge-stable-channel-side-by-side/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10 - Article Type: How To In today's Ask the Admin, I talk again about how Microsoft plans to deliver the new version of its Edge Browser. There's also a Group Policy setting that will let users work with both the legacy and new Chromium-based version of Microsoft Edge. I recently reported on Petri that Microsoft has quietly been making changes to Windows 10. Over the last 6 months, as part of the monthly cumulative servicing updates (CU) it issues via Windows Update, changes have been made to accommodate the new Chromium-based version of its Edge browser. When I wrote the article, it wasn't clear exactly how Microsoft would deliver the new Edge. But now we know for sure that it will be delivered using Windows Update. For users and organizations that don't explicitly block it, the new Edge will start rolling out automatically in January 2020. The changes that Microsoft has made to Windows 10 are intended to let the new version of Edge replace legacy Edge in the user interface. Although the EdgeHTML rendering engine won't disappear as it is used by some developers as part of their Microsoft Store (UWP) applications. But for users, legacy Edge will essentially disappear from Windows 10 when the OS is updated with the new version. Use Group Policy to enable a side-by-side experience But in a recent support document, Microsoft detailed how users with the stable version of the new Edge browser will be able to access the legacy version. A new Group Policy setting, Allow Microsoft Edge Side by Side browser experience, when set to Enabled will let users work with both legacy and new browsers side-by-side. The policy setting will be located in Group Policy under Computer Configuration > Administrative Templates > Microsoft Edge > Applications... . --- ### Microsoft Plans to Disable SMTP Authenticated Submissions in Exchange Online > Microsoft is doing its level best to remove SMTP basic authentication from Exchange Online as quickly as possible. Basic auth for SMTP connections will disappear gradually as time goes by. - Published: 2019-12-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-plans-disable-smtp-auth-exchange-online/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Connectivity Protocols, Exchange Online, Send-MailMessage, SMTP AUTH, SMTP client submission - Article Type: News Microsoft is doing its level best to remove SMTP basic authentication from Exchange Online as quickly as possible. Basic auth for SMTP connections will disappear gradually as time goes by. Tenants can make accounts more secure by removing SMTP authentication from accounts, something that Microsoft will do in the future when these connections are not used. An exception exists (for now) for SMTP client submissions, but these might also be affected in the future. The Need to Eliminate Basic Authentication (and use MFA) There are two things certain in Office 365 security. First, multi-factor authentication (MFA) is a very good thing and will block 99. 9% of account compromise attacks. Second, basic authentication is an invitation for an attacker to probe for weakly secured accounts using multiple connection protections, including SMTP. The message about the need to secure accounts with MFA is slowly getting through. Too slowly, but at least we see some progress. Eliminating basic authentication is high on the agenda of the Exchange Online team. They own protocols like IMAP4, POP3, SMTP, and so on. The introduction of protocol authentication policies in 2018 was a good step forward. Tenant administrators can deploy authentication policies to restrict the number of connection protocols that can be used with basic authentication for mailboxes. Basic Authentication Deprecation for Multiple Connection Protocols In March 2018, Microsoft flagged the need for tenants to move away from basic authentication by announcing that support for basic authentication for Exchange Web Services will cease on October 13, 2020. This means that anyone using code built with EWS must upgrade to OAuth 2. 0 and use that for authentication. EWS has a limited lifespan and it is a good idea at this point to consider moving code to a Graph-based implementation. Microsoft then increased the pace in September 2019 by announcing that they will turn off basic authentication for Exchange ActiveSync (EAS), POP3, IMAP4 and Remote PowerShell in October 2020. Microsoft has already enabled... --- ### How to Improve Network Performance in Windows VirtualBox Guests - Published: 2019-12-26 - Modified: 2024-09-04 - URL: https://petri.com/how-to-improve-network-performance-in-windows-virtualbox-guests/ - Categories: Virtualization - Tags: Hyper-V, VirtualBox, Virtualization, Windows - Article Type: How To In today’s Ask the Admin, I show you how to improve network performance in Windows virtual guests running on Oracle’s VirtualBox. Oracle VirtualBox is a type-2 hypervisor that is popular on Windows, macOS, Linux, and Solaris. For years I used VMWare Workstation and then switched to Hyper-V when it became part of Windows 8, largely because it was free and promised better performance as a type-1 hypervisor. Then earlier this year, I decided to give VirtualBox a spin. I was curious as to why some people preferred it over Hyper-V. Initially, I was doubtful that VirtualBox could provide the same performance as Hyper-V but in practice, I’ve found the difference between the two to be negligible. But the main reason I’m still using VirtualBox is that it is more user-friendly if you need to interact with the VM. For example, VirtualBox supports file drag and drop between host and source, and vice versa. USB passthrough support is also more seamless than Hyper-V. VirtualBox might be easier to use than Hyper-V but not everything is great. For instance, trying to get a high screen resolution inside virtual machines (VM) seems almost impossible. Also, 64-bit VMs aren’t supported in VirtualBox if another hypervisor, like Hyper-V, is also installed on the system. And to be fair to Hyper-V, it is a server solution that is provided in Windows 10 for the convenience of IT professionals rather than as a user-friendly virtualization solution for everyone. But while I’ve found performance in VirtualBox to be excellent, one aspect hasn’t lived up to expectations. Using the default network configuration, browsing the web and transferring files... --- ### Speedy PowerShell Access to Office 365 Groups with Get-ExoRecipient > The new Exchange Online Management PowerShell module has cmdlets that are faster than their older Remote PowerShell equivalents. Converting scripts to make the new cmdlets work takes some effort. - Published: 2019-12-26 - Modified: 2019-12-26 - URL: https://petri.com/speedy-powershell-access-to-office-365-groups/ - Categories: Exchange Online, Microsoft 365, Office, PowerShell - Tags: Exchange Online Management, Get-ExoMailboxFolderStatistics, Get-ExoRecipient, Get-Recipient, Office 365 Groups, PowerShell - Article Type: How To The new Exchange Online Management PowerShell module has cmdlets that are faster than their older Remote PowerShell equivalents. Converting scripts to make the new cmdlets work takes some effort because the REST-based cmdlets have their own little quirks that need to be understood and mastered before scripts work properly. This example explains some of the issues met when converting code to report the Inbox sizes and items for Office 365 groups. Cranking Up Speed in Old PowerShell Scripts Now that Microsoft has released the set of REST-based Exchange Online cmdlets in the Exchange Online Management module, people are experimenting with the new cmdlets to discover what needs to be done to upgrade scripts. When reviewing Chapter 13 for the December 2019 update of the Office 365 for IT Pros eBook to add information about PowerShell support for private channels in Teams, I also took the chance to update one of the examples showing how to use Exchange Online cmdlets with Office 365 Groups. Some interesting gotchas were encountered. Before getting into the details of what those gotchas were, let’s think about how quickly we can fetch a set of group objects to process. The Slowness of Get-UnifiedGroup When you connect a PowerShell session to Exchange Online, the set of cmdlets designed to manage Office 365 like Get-UnifiedGroup, Get-UnifiedGroupLinks, and so on become available for use. The Get-UnifiedGroup cmdlet fetches details about Office 365 Groups and is used extensively across in scripts published in blogs, GitHub, or the TechNet Gallery. Although Get-UnifiedGroup is effective at what it does, it’s slow. Very slow. And that slowness gets worse as the number of groups grows. For this reason, my advice has long been to avoid using Get-UnifiedGroup to create a set of group mailboxes for processing and to use the Get-Recipient cmdlet instead. Get-Recipient is much faster because it doesn’t have to do as much processing to fetch the properties of each... --- ### Windows Server Core Container Images Now 40 Percent Smaller - Published: 2019-12-23 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-core-container-images-now-40-percent-smaller/ - Categories: Windows Server - Tags: Container, Docker, Windows Server, Windows Server Core - Article Type: News Microsoft announces 40% smaller Server Core container images coming in the 20H1 timeframe. At the beginning of December, Microsoft announced upcoming changes to Windows Server Core container images that would make them 40% smaller. In a post on the . NET Blog, . NET Team Program Manager Richard Lander says that Insider images are 40% smaller than the latest (patched) 1903 images, based on the images in the Windows Server Core insiders Docker repo. Additionally, startup times to Windows PowerShell are 30-45% faster. Lander says that the improvements should apply in any scenario where Windows Server Core container images are used and will be most beneficial for scaling apps, continuous integration and continuous delivery (CI/CD), and other situations where images are pulled without using a Docker image cache or where faster startup times are required. How Did Microsoft Reduce the Image Size by 40 percent? Windows Server Core images include a series of pre-compiled . NET native images that are generated using a tool called Ngen. exe to improve startup performance. But the downside is that it also makes image size grow. The current Insider Windows Server Core images now include a significantly smaller set of NGEN images. A larger set of images is included in the . NET Framework runtime images, also based on Server Core, but are also smaller because Microsoft makes sure that there is only one copy of each NGEN image that target ASP. NET and PowerShell performance. Investigations started at Microsoft a year ago based on the premise that the way the . NET Framework is packaged and installed doesn’t work well with Docker layers... . --- ### Disaster Recovery: Practice Makes Perfect - Published: 2019-12-23 - Modified: 2024-09-04 - URL: https://petri.com/disaster-recovery-practice-makes-perfect/ - Categories: Backup & Storage - Tags: Backup, Disaster Recovery - Article Type: Overview There’s no doubt that having a disaster recovery (DR) plan in place is essential for businesses of all shapes and sizes. However, having a DR plan in place and effectively using it are very different things. Just like application code, DR plans and the DR procedures that you have in place need to be tested to ensure that they actually work like they are intended to. The worst time to find out that your DR plan doesn’t work is when you really need to use it. Testing your DR plans isn’t just something that you can do once and then forget about it. Today’s business environments are continually changing and their DR requirements change right along with them. To really have confidence that your DR plans will work when you need them you need to be continually revising and testing your DR procedures. There is a definite correlation between practicing your recovery processes and how well they will perform if there is an actual emergency. Unfortunately, testing DR plans can be quite difficult. For anything but the smallest organization, DR plans are complex with many interrelated components which makes regular testing difficult. Yet at the same time, that complexity makes testing even more important because it means there’s more that can go wrong. The more often an organization tests its DR plans the better the odds that those DR plans will work when they are needed. The proficiency of using your DR plans really depends on the organization. Some companies... --- ### Identifying Obsolete Guest User Accounts in an Office 365 Tenant > Many Office 365 applications now create Azure Active Directory guest accounts. What's the best way to discover if the accounts are active and in use? This PowerShell script uses - Published: 2019-12-23 - Modified: 2024-11-19 - URL: https://petri.com/guest-account-obsolete-activity/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Microsoft Teams, Office - Tags: Get-AzureADUser, Get-MessageTrace, Guest User Accounts, Office 365 Audit Log, PowerShell, Search-UnifiedAuditLog - Article Type: How To Many Office 365 applications now create Azure Active Directory guest accounts. What's the best way to discover if the accounts are active and in use? This PowerShell script uses the Office 365 audit log and message trace data to figure out what guest accounts are active and outputs a CSV file for your review and analysis. Like any other PowerShell script, it can be adapted to suit your purposes. The Need to Remove Lingering Guests After writing an article about discovering who creates guest accounts inside Office 365 tenants, a reader asked how they should clean up old guest accounts that might be lingering in a state of disuse. Microsoft’s response might be to push responsibility for guest accounts down to group owners through Azure Active Directory access reviews or Entitlement Management. Both are potential solutions to the problem, but neither gives a tenant-wide view of just how many old guest accounts are out there. The Age-Based Approach I covered this topic recently on Office365itpros. com where I discuss a PowerShell script to look for guest accounts older than a set age and consider them for removal, especially if the accounts are not members of Office 365 Groups. Age-based reviews are good, and the script is pretty simple, but so’s the outcome. The problem with age-based removal is that a guest account might be in your tenant for years and appear dormant when it’s in heavy use. Take the example of a guest member of an Outlook group. Unlike Teams, where guests connect to channels to participate in conversations, the conversations in an Outlook group are email-based and guests never need to sign in. Instead, they receive copies of topics and replies via email. Activity-Based Reviews are Better As the engineering team behind the Azure Active Directory group expiration policy discovered, making a decision to remove a group based on activity is better than removing it just because... --- ### Paul Thurrott's Short Takes: December 20 - Published: 2019-12-20 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-20/ - Categories: Cloud Computing, Microsoft 365, Microsoft Teams, Windows 10, Windows 7 - Tags: News - Article Type: Overview Because the year is winding down, this edition of Short Takes looks at the terrible new direction of the Windows Insider Program, New Edge is to browsers as New Coke was to cola, Windows 7 and Microsoft Security Essentials, and much, much more. Now they’re just messing with us Keeping track of how the Windows Insider Program delivers builds of pre-release Windows 10 versions to testers has never been easy, and it’s evolved and changed a lot over the years, making it even more difficult. But this week, finally, the program jumped the shark. Now, testers in the so-called Fast ring will not be testing a specific Windows 10 version, as before. Instead, they will be testing features that may or may not make it into any Windows 10 version. I recommend renaming this thing to the Chaos ring, and then the Slow ring---which has really been the Sporadic ring for the most part---could be renamed to the Specific ring. Or something. Honestly, who cares anymore? The real purpose of the program appears to be beating the enthusiasm out of Windows enthusiasts. And on that note, it’s been very successful. “Apple Has Secret Team Working on Satellites to Beam Data to Devices” Not anymore, they don’t. The new Edge is going to kick the old Edge right of Windows And it’s doing to do so immediately, when it’s released in mid-January, before it’s even feature-complete. What I mean by that is that all users on supported versions of... --- ### How to Configure a Windows 10 VPN Profile Using Microsoft Intune - Published: 2019-12-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-a-windows-10-vpn-profile-using-microsoft-intune/ - Categories: Windows 10 - Tags: Microsoft Intune, Mobile Device Management, Remote Access, Windows 10 - Article Type: How To How to deploy a Windows 10 VPN profile using Microsoft Intune. Deploying virtual private network (VPN) profiles to Windows has never been easy. And using Intune wasn’t always a walk in the park either. And while VPN profiles could be easier to implement, what we have in Intune today is relatively simple compared to using Group Policy and the Connection Manager Administration Kit (CMAK). In this article, I’m going to deploy a PPTP VPN to Windows 10, but you can use the instructions to deploy other types of VPN. Intune supports several different protocols with the built-in Windows 10 VPN client, including IKEv2, L2TP and SSL. L2TP, SSL, and PPTP require the use of the Extensible Authentication Protocol (EAP). IKEv2 VPNs require use of EAP or machine certificates. It’s also worth noting that there’s no support for VPN configurations that use pre-shared keys (PSK) and any client certificates must be deployed independently of the VPN configuration. Intune also caters for a range of third-party VPN solutions, including Pulse Secure, F5 Access, SonicWall Mobile Connect, Check Point Capsule VPN, Citrix, and Palo Alto Networks GlobalProtect. If using a third-party VPN solution, you need to make sure that the VPN app is installed on devices. Apps can be installed with Intune, but it is out-of-scope for this article. Set Up a VPN Connection in Windows and Export EAP XML Configuration Intune requires an EAP XML configuration, so you’ll need to set up a VPN connection manually in Windows 10 before you can export its EAP XML configuration. The Windows 10 Settings... --- ### Batten Down the Hatches, Hackers Are Coming for Your NAS - Published: 2019-12-18 - Modified: 2024-09-04 - URL: https://petri.com/batten-down-the-hatches-hackers-are-coming-for-your-nas/ - Categories: Backup & Storage - Tags: Backup and Restore, Network Attached Storage, Ransomware, Windows, Windows Server - Article Type: News According to Kaspersky’s Threat Evolution Report Q3 2019, there is new ransomware ‘focused solely on NAS’ active in the wild. Ransomware has been thriving in 2019, with hardly a week going by where we don’t hear about a new high-profile attack in the press. What receives less attention is how these attacks affect small and medium-sized businesses, but I think it’s safe to say that while big business and government attacks naturally get attention, small businesses are also fair game as they are less able to protect themselves. While thinking often still revolves around ‘what have we got that anyone would want to steal? ’, ransomware has changed the game because it can hold entire businesses to ransom. Windows has been a popular target, although Linux and macOS are more commonly in the sights of hackers. Windows is targeted partly because it is so ubiquitous in the enterprise and secondly because security best practices are usually ignored, or sometimes not implemented for technical reasons. One example is removing local administrator privileges from users, a goal that can be difficult to achieve without help from third-party privileged access management (PAM) solutions. Once endpoints are infected, ransomware like Locky can encrypt network shares mapped to devices. Why just encrypt a local device when you can also steal potentially more important data sitting on servers? CryptoFortress goes even further and can encrypt network shares regardless of whether mapped drives have been configured. Windows 10 Controlled Folder Access can be used to restrict access to sensitive data locations to approved applications, helping to reduce the likelihood that ransomware could encrypt data. Controlled Folder... --- ### Using Office 365 Online Apps with the Brave Browser > The Brave Browser offers the prospect of speed and security. But how well does it work with the Office 365 browser apps? As it happens, pretty well, with some exceptions. - Published: 2019-12-17 - Modified: 2024-09-04 - URL: https://petri.com/brave-browser-office365/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Brave, Browser, Office 365, owa, Planner, SharePoint Online, Stream, Yammer - Article Type: How To, News The Brave Browser offers the prospect of speed and security. But how well does it work with the Office 365 browser apps? As it happens, pretty well, with some exceptions. Here's what I discovered when I test-drove Brave with OWA, Teams, SharePoint Online, Yammer, Planner, and Stream. Brave is a new (free to download) Chromium-based browser that’s built for speed. The Brave developers boast that they can load pages 3 to 6 times faster than either Firefox or Chrome can. With that kind of speed in prospect, who wouldn’t relish the thought of taking a test drive to see if Brave can work any magic with the Office 365 online apps, some of which can be slow. The first thing to note is that the Brave browser is fast. It is noticeably and verifiably faster than the browser I normally use. I didn’t notice any missing feature that I normally use in general-purpose browsing. Brave, for instance, supports the ability to run web sites like OWA as an windowed app that can be pinned to the Windows toolbar. None of the general-purpose web sites I tested, including the Microsoft Technical Community, were worse in Brave and most performed much better. I also noticed that search results from Google or Bing were returned much faster than normal. For more information about Brave, read Paul Thurrott’s review. OWA as a PWA I started my testing of Office 365 apps with OWA. Everything ran smoothly out of the box with the notable exception of some Office document previews, which resolutely failed at the start of my testing. On the other hand, PDF attachments always worked perfectly and the problem with Office attachments eased over time. The problem with Office document previews could be because I’m currently testing support... --- ### Managing Common Linux Configuration Files with PowerShell 7 - Published: 2019-12-16 - Modified: 2024-09-04 - URL: https://petri.com/managing-common-linux-configuration-files-with-powershell-7/ - Categories: PowerShell - Tags: Linux Configuration Files, PowerShell, Powershell 7 - Article Type: Overview PowerShell has been the default configuration tool for Windows since it’s release in 2006, but since being open-sourced in 2016, administrators can use it for Linux and macOS as well. However, there are some significant differences in how to manage a Windows operating system over a Linux operating system. PowerShell has been the default configuration tool for Windows since it’s release in 2006, but since being open-sourced in 2016, administrators can use it for Linux and macOS as well. However, there are some significant differences in how to manage a Windows operating system over a Linux operating system. For example, while Windows is an API-driven operating system, relying on specific endpoints that are built into the operating system to make changes to the system, Linux is a file-driven operating system. That means that changes to users, services, disk mounts, and networking are done by managing file contents of specific configuration files. Bash has traditionally been the tool that Linux administrators use to manage those files, but now Linux administrators have another tool they can use to manage those files: PowerShell. There are too many configuration files to cover in one article, but these techniques to manipulate file contents, so they can be used across any configuration files on the operating system. Here are a few of the more critical files: /etc/passwd This file is where information is kept about users that are logging into the system. These entries are comma-delimited, but a sample entry looks something like this: ​user1:x:1000:1000::/home/user1:/bin/bash This might not make a lot of sense at first, but here is a little look at how this line is formatted: ​:::::: Since this file uses a colon delimiter, you can use PowerShell to parse the items in it like you... --- ### Microsoft Edge Integration with Windows 10 - Published: 2019-12-16 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-new-edge-browser-to-start-shipping-with-windows-10-in-first-half-of-2020/ - Categories: Windows 10 - Tags: Chromium, Microsoft Edge, Windows 10 - Article Type: News Microsoft has already updated current and older versions of Windows 10 to prepare them to integrate with its new Chromium-based Edge browser. It’s no secret that Microsoft’s new Chromium-based Edge browser will be made generally available on January 15th, 2020. But it’s less clear how and when Microsoft will deliver the new browser as part of Windows 10. In case you missed it, Microsoft has been testing a new version of Edge that it built from the ground up and it is based on the open source Chromium browser, the same code that Google uses for its popular Chrome browser. The new Edge has been in public preview since early 2019 and there are three development branches Microsoft Edge Insiders can sign up to: Canary, Dev, and Beta. Canary builds are updated almost daily, Dev builds weekly, and the Beta channel every six weeks. For more information about enterprise features in the new Edge browser, check out Internet Explorer Mode and Other Enterprise Features Now Available for Testing in Microsoft Edge Insider Preview on Petri. If you haven’t had a chance to look at the new browser, I’d suggest giving the beta or dev channel a go right now. Chromium-based Edge has received a very positive reception, something quite unusual for a Microsoft browser, and I know that many Insiders have already switched over to make it their main browser, including myself. It is still in beta however, so this isn’t something that should be rolled out to production just yet. Unlike the old Edge and Internet Explorer, the new Edge will be distributed as a standalone product that isn’t... --- ### Patch Tuesday – December 2019 - Published: 2019-12-12 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-december-2019/ - Categories: Security - Tags: Microsoft SQL Server, Patch Tuesday, Security, Windows 10, Windows Server - Article Type: News This month’s end-of-year Patch Tuesday is relatively light, with Microsoft fixing a Windows zero-day and a spoofing vulnerability in SQL Server Reporting Services. This month’s end-of-year Patch Tuesday is relatively light, with Microsoft fixing a Windows zero-day and a spoofing vulnerability in SQL Server Reporting Services. Windows and Windows Server In total there are 15 vulnerabilities patched for Windows this month, including a zero-day (CVE-2019-1458) in older versions of Windows 10 (Windows 10 1507 and Windows 10 1607), Windows 7 Service Pack 1, Windows 8. 1, and all versions of Windows Server from 2008 Service Pack 2 to Windows Server 2016. Rated as an important escalation of privilege (EoP) bug, the Win32k component fails to properly handle objects in memory. If exploited, a hacker could run arbitrary code in kernel mode, allowing them to install programs, change data, and create accounts with full user privileges. Microsoft said a hacker would first need to log in to a system to exploit this flaw. It’s not clear what changes were made in newer versions of Windows 10 that mean they are not affected by this vulnerability. There are two critical remote code execution bugs this month, the first of which affects all supported versions of Windows. CVE-2019-1468 is a vulnerability in the Windows font library that improperly handles specially crafted embedded fonts and it could allow an attacker to install programs, change data, and create new accounts with full administrator rights. Microsoft says that standard user accounts, i. e. those without administrator rights, might be less impacted by this flaw. An attacker could exploit the bug using a specially crafted website or using an infected... --- ### Microsoft Forms Gets File Upload Capability > Designers working with Microsoft Forms can now include a file upload question type in their questionnaires, surveys, and other forms. It's a small but valuable change to Forms. - Published: 2019-12-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-forms-upload-files/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Microsoft Forms, Office 365, OneDrive for Business, SharePoint Online, Upload file - Article Type: How To, News Designers working with Microsoft Forms can now include a file upload question type in their questionnaires, surveys, and other forms. It's a small but valuable change to Forms. Depending on the form type, the uploaded files are stored in OneDrive for Business or SharePoint Online. Microsoft Forms is one of those useful but sometimes overlooked applications within Office 365. Recently, Microsoft gave forms designers some extra flexibility by adding the file upload question type to Forms. Depending on the form type, uploaded files are stored in OneDrive for Business or SharePoint Online. The new feature is now rolling out across Office 365 and all tenants (including GCC) should have it by the end of December. Adding File Upload to Forms File upload is a question type (Figure 1) that can be added to new or existing forms. The idea is that people can upload files as part of their response. Figure 1: The File upload option for a forms question (image credit: Tony Redmond) Testing File Upload To test the functionality, I created a form to collect speaker submissions for a fictional Office 365 conference that I am not organizing in 2020. The form is very simple and looks for a presenter name and a document describing what they want to talk about (Figure 2). Figure 2: What the File Upload question looks like in a form (image credit: Tony Redmond) Note the menu. This gives you control over: How many files can be uploaded (default is 1, maximum is 10). The size of each file (default 10 MB, maximum 1 GB). What file formats are allowed (Word, Excel, PowerPoint, PDF, image, video, or audio). Where Forms Stores its File Uploads When you add... --- ### Microsoft's Offering a 'Free' Cyber Security Checkup to SMBs - Published: 2019-12-11 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-push-to-help-smbs-includes-a-free-cyber-security-health-check/ - Categories: Microsoft 365 - Tags: Microsoft, Microsoft 365 - Article Type: News Microsoft is looking to help SMBs secure their environments by offering a 'free' cybersecurity health check. In about a month from now, Windows 7 will reach its end of support timeline which means unless you are willing to pay up, you are going to be sitting on the sidelines when it comes to securing your environment. While large companies are likely able to swallow the fees associated with extended support, the most vulnerable group will be the small and medium business (SMB). An SMB is typically a company that is 300 or fewer employees and according to Microsoft, these companies are targeted more than half the time when it comes to cyber-attacks. Why? It’s primarily because they have fewer resources to help secure their environments and as we all know, IT shops typically have budgets that are stretched to the limits as they do not grow at the same rate as the rest of the organization. Back at Ignite 2019, I was able to sit down with Brad Anderson, Corp. Vice President, Microsoft 365, and while we talked about many aspects of Microsoft 365, one point that he drilled down on was that, candidly, the company needed to do more to help address the smaller business of the world and not just the enterprise operations. Today, Microsoft is announcing a new collaboration with AXA XL and Slice Labs to offer free cybersecurity health checks and support AXA XL’s provision of cyber insurance for qualified customers that use Microsoft 365 Business, Office 365 Business, and Office 365 Business Premium. The idea here is simple, for customers willing... --- ### How to Connect to a VirtualBox Windows Guest Using Remote Desktop - Published: 2019-12-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-connect-to-a-virtualbox-windows-guest-using-remote-desktop/ - Categories: Virtualization - Tags: Remote Desktop, VirtualBox, Virtualization, Windows 10 - Article Type: How To How to connect to a VirtualBox virtual machine using Microsoft’s Remote Desktop. Oracle VirtualBox is a type-2 hypervisor that is popular on Windows, macOS, Linux, and Solaris. I switched from client Hyper-V to VirtualBox earlier this year and it has mainly been a good experience. I can’t say that one is necessarily better than the other - it’s swings and roundabouts. But in addition to some issues with network performance in Windows guests, which I address in a separate article, enabling access to virtual machines (VM) using Remote Desktop isn’t as straight forward as with Hyper-V. There are also some other problems to be aware of like trying to use VMs with a large screen resolution and installing 64-bit OS guests if another hypervisor, such as Hyper-V, is also installed on the system. But primarily the main reason that I wanted to connect via Remote Desktop initially was because it isn’t possible to use higher display resolutions in VirtualBox VMs when accessing them using VirtualBox Manager. Connecting to a VirtualBox VM using Remote Desktop is the easiest way around the problem. And naturally, you might want to access a VirtualBox VM from devices other than on which the guest VM is hosted. VirtualBox Remote Desktop Extension VirtualBox has a feature called the VirtualBox Remote Desktop Extension (VRDE) and it is only available if you download and install the VirtualBox Extension Pack. But if you are connecting to a Windows guest, you don’t necessarily need VRDE and if you are not using VRDE, you don’t need to configure the Remote Display... --- ### Microsoft Teams Is Now Available for Linux - Published: 2019-12-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-is-now-available-for-linux/ - Categories: Microsoft 365 - Tags: linux, Microsoft, Teams - Article Type: News Microsoft has made its Teams client available for Linux customers with an early preview of the application. Microsoft’s Teams platform has been a highlight of the Office productivity suite. After announcing earlier this year that there are 20 million daily active users, the communication tool is now available for Linux users. This is an important step for Microsoft as it makes the application available on nearly every single platform that its customers are using. While Microsoft naturally prefers Windows, the company cannot ignore the fact that there is a large customer-base that uses flavors of Linux for various desktop and server applications. The bigger question now is if Microsoft will be bringing more Office applications to Linux customers. While the company is not publicly stating if this will happen, seeing as Teams is now available, there is at least a glimmer of hope that these apps could arrive Users can download the native Linux packages in . deb and . rpm formats here. Microsoft says that the Teams app, which is officially in preview, will support all of the core functionality of the platform. There is no word on when the application will become generally available but I suspect that if you are running a Linux distro, you more than likely savvy enough to run the preview without too many issues. --- ### Five Facts about Hybrid Cloud Backup - Published: 2019-12-10 - Modified: 2024-09-04 - URL: https://petri.com/five-facts-about-hybrid-cloud-backup/ - Categories: Amazon Web Services, Backup & Storage, Google Cloud Platform, Hybrid Cloud, Microsoft Azure, Windows Server - Tags: Azure, Backup, hybrid cloud, Windows Server - Article Type: Overview Using the cloud as a backup target is definitely one of the ways that many businesses are adopting the hybrid cloud. Today, almost all businesses are dealing with massive data growth. The research firm IDC has estimated that overall data is doubling every two years. Keeping up with this level of data growth is tough enough for your online systems. However, it’s important to realize that as your storage requirements grow your data protection requirements grow right along with them. Taking advantage of hybrid cloud backups is one of the best ways that businesses can reduce the costs associated with this rapid data growth. Moving your backups to low-cost cloud storage enables you to forgo the cost of buying additional local storage. Plus, it provides offsite protection as well. To get a better understanding of some of these benefits, let’s take a closer look at five facts about hybrid cloud backup. Hybrid cloud backups can save you money – Cost savings is probably the main reason why most businesses begin to look into using cloud backups. The cloud provides low-cost storage which can mitigate the need to buy more expensive local storage for your backups. Using the cloud can also eliminate the costs that you might otherwise need for offsite data storage and archiving. The cloud itself provides the offsite storage required to meet the 3-2-1 rule of data protection where you keep three copies of your data on two different media types with one copy offsite. Overall, hybrid cloud... --- ### Analyzing the 2019 Numbers for Different Office 365 Workloads > Microsoft is notoriously careful at giving out usage numbers for different Office 365 workloads.We know what the overall count is and now we have numbers for SharePoint Online and Teams. - Published: 2019-12-10 - Modified: 2024-09-04 - URL: https://petri.com/2019-numbers-different-office-365-workloads/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Exchange Online, Monthly Active Users, Office 365, Planner, SharePoint Online, Teams, Yammer - Article Type: Opinion Microsoft is notoriously careful at giving out usage numbers for different Office 365 workloads.We know what the overall count is and now we have numbers for SharePoint Online and Teams. Some glances into a handy crystal ball and some inspired guesswork allows us to calculate likely numbers for Exchange Online, Yammer, and Planner and paint a more comprehensive picture of what's happening inside Office 365. Once More Into the Office 365 Crystal Ball A year ago, some inspired guesswork allowed me to come up with numbers of active users for the major Office 365 workloads. Time passes on, and the official count for monthly active Office 365 users has reached 200 million, a gain of 45 million over the year. That’s healthy growth for any service. Microsoft records Office 365 usage as monthly active users. This number is not the total of licenses sold to customers. Instead it reflects those who have licenses who log on and use the service at least once a month (which is not much for anyone using Office 365). A definition of what monthly active users is for an Office 365 workload is: The maximum daily users performing an intentional action in the last 28-day period across the desktop client, mobile client, and web client. An intention action is something like uploading a document to a SharePoint Online document library, sharing a document, starting a new conversation in a Teams channel, participating in a video meeting, or sending email. Microsoft records these signals in the Graph and calculates usage after de-duplication based on user identifier (the GUID for an Office 365 user account). SharePoint Online Gets to 100 Million Microsoft reports Office 365 numbers roughly every six months. What’s recently changed is that Microsoft has started to disclose some numbers for individual workloads. At the Microsoft Ignite 2019 conference, Jeff Teper said that SharePoint Online has more than... --- ### How to Manually Onboard Devices to Windows Autopilot – Part 2 - Published: 2019-12-09 - Modified: 2024-09-04 - URL: https://petri.com/how-to-manually-onboard-devices-to-windows-autopilot-part-2/ - Categories: Windows 10 - Tags: Microsoft 365, Microsoft Intune, Mobile Device Management, Office 365, Windows 10, Windows Autopilot - Article Type: How To How to manually onboard a device to Windows Autopilot. Windows Autopilot is a collection of technologies that allows organizations to simplify deployment and setup of Windows 10, letting organizations ship devices directly to users and have all the necessary security policies, networking profiles, and applications installed without IT needing to touch the hardware. Additionally, Autopilot can reprovision devices should they need to be reset or passed on to other users. For more information on Windows Autopilot, see New Windows Autopilot Deployment Options in Windows 10 1803 and Redstone 5 and Get Users Working Faster with Windows 10 Autopilot White Glove Provisioning on Petri. If you missed the first part of this series, be sure to read it and follow the instructions there before continuing. Today, I’ll show you how to upload the CSV file generated in Part 1, how to create and assign a Windows Autopilot profile, how to connect Windows 10 to Azure Active Directory, and how to verify Intune enrollment. Upload Hardware IDs to Microsoft Once you’ve got one or more hardware ID’s in a CSV file, you can upload it and Microsoft will onboard the devices to Autopilot. There are several places where you can upload hardware IDs, including Intune, the Partner Center, Microsoft 365 Business and Office 365 admin portals, and the Microsoft Store for Business. In this demonstration, I’m going to use the Microsoft 365 Business admin portal, where you can onboard up to 1000 devices at a time and create and assign an Autopilot profile. Log in to the Microsoft 365... --- ### Improve Windows Enterprise Application Deployment Reliability and Security using MSIX - Published: 2019-12-09 - Modified: 2024-09-04 - URL: https://petri.com/improve-windows-enterprise-application-deployment-reliability-and-security-using-msix/ - Categories: Security, Windows 10 - Tags: Microsoft Store, MSIX, Windows 10, Windows Installer - Article Type: Overview A closer look at some of the features of Microsoft’s new MSIX installer technology and how they can be used to improve application packaging and distribution in the enterprise. Last year, Microsoft announced a new open source packaging format called MSIX at its Windows Developer Day. MSIX replaces Windows Installer (MSI) and the APPX packaging format previously used for Store apps. Microsoft says that MSIX is ‘a complete containerization solution and it inherits all the great features in UWP and most importantly, it applies to all Win32, WPF, Windows Forms, and UWP applications. ’ MSIX isn’t entirely new as it uses elements from Windows Installer (MSI) while providing modern features of the Universal Windows Platform (UWP), like robust updating, a managed security model with flexible capabilities, containerization, support for the Microsoft Store, enterprise management, and custom distribution models. MSIX support debuted in Windows 10 version 1809 and enterprise support was later added in versions 1709 and 1803. Why Ditch Legacy Windows Installer Technologies? Windows has never provided a robust package manager like those available for Linux. At least not until now. Windows Installer is used to package most legacy win32 apps, but it is not as reliable or secure as the technology used for Microsoft Store apps, which get more reliable delivery methods and containerization to improve security and operating system reliability. Switching to MSIX makes it easier for enterprises to keep their apps up-to-date, reduces cost of ownership, and improves security and reliability. Microsoft says that MSIX provides a more reliable install experience with a success rate of 99. 96% and that uninstall is 100% guaranteed. I don’t know how many times I’ve come across legacy applications that... --- ### How to Manually Onboard Devices to Windows Autopilot - Published: 2019-12-09 - Modified: 2024-09-05 - URL: https://petri.com/how-to-manually-onboard-devices-to-windows-autopilot-part-1/ - Categories: Windows 10 - Tags: Microsoft 365, Microsoft Intune, Mobile Device Management, Modern Desktop, Office 365, Windows 10, Windows Autopilot - Article Type: How To How to manually onboard devices to Windows Autopilot.   Windows Autopilot is a collection of technologies that allows organizations to simplify deployment and setup of Windows 10. First introduced in the Windows 10 Fall Creators Update, Autopilot lets organizations ship devices directly to users and have all the necessary security policies, networking profiles, and applications installed without IT needing to touch the hardware. Additionally, Autopilot can reprovision devices should they need to be reset or passed on to other users. Since its initial launch, Autopilot has seen some improvements like the enrollment status page, which shows device status so users can understand whether it’s ready to use. Organizations can also prevent users logging in until a device has been fully provisioned. Integration with Azure Active Directory dynamic groups, self-deploying mode, and white-glove provisioning are all features added to provide more flexibility and value. For more information on Windows Autopilot, see New Windows Autopilot Deployment Options in Windows 10 1803 and Redstone 5 and Get Users Working Faster with Windows 10 Autopilot White Glove Provisioning on Petri. Onboarding Devices to Windows Autopilot Let me start by saying that Microsoft doesn’t want you to manually onboard your Windows 10 devices. That’s not how Autopilot is supposed to work. If you buy devices directly from an OEM, you provide consent for them to directly register devices in your Azure AD tenant. You can find a list of OEMs that support Windows Autopilot on Microsoft’s website here. If you buy devices from a reseller, distributor, or Microsoft Partner that is part... --- ### Paul Thurrott's Short Takes: December 6 - Published: 2019-12-06 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-6/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because ‘tis the season to snark, this edition of Short Takes looks at major breaking news about Notepad, another unwanted Windows 10 push, the secret behind Microsoft’s JEDI win, a new Microsoft design system for mobile, and much more. Because ‘tis the season to snark, this edition of Short Takes looks at major breaking news about Notepad, another unwanted Windows 10 push, the secret behind Microsoft’s JEDI win, a new Microsoft design system for mobile, and much more. BREAKING NEWS: Microsoft cancels planned Store version of Notepad Are you sitting down? Because this one is HUGE. OK, not really. Microsoft announced this week that it will no longer separate Notepad from Windows 10 and offer it only as a download from the Microsoft Store. “Thank you for all the feedback you provided on the Store version of Notepad,” Microsoft noted in a blog post about something else. “At this time, we’ve decided not to roll this out to customers. ” So, my guess is that removing Notepad from Windows 10 was so negatively received that Microsoft reversed course. And one has to wonder why putting it in the Store ever made sense in the first place. It’s not like exiting new text editing features need to be added every week or month. Get a grip, guys! “Millions of Microsoft users are reusing passwords” Just Microsoft users? Microsoft pushes Windows 10 version 1909 on an unsuspecting public Windows 10 version 1909 was developed on an unprecedently short schedule, but then this so-called feature update is really just a cumulative update masquerading as something it’s not. Anyway, it’s perhaps no surprise that Microsoft is likewise jamming this update down the gullet of its consumer customers at a faster rate, too... . --- ### Managing Network Settings with PowerShell 7 - Published: 2019-12-06 - Modified: 2024-09-04 - URL: https://petri.com/managing-network-settings-with-powershell-7/ - Categories: PowerShell - Tags: Network, PowerShell, Powershell 7 - Article Type: How To Built-in PowerShell 7 module NetTCPIP, on Windows, offers a range of functionality to update and manage your network interfaces. Many of the traditional IT administration tasks, such as setting a static IP address or DNS Server settings, are trivial using the functions within the NetTCPIP module. Built-in PowerShell 7 module NetTCPIP, on Windows, offers a range of functionality to update and manage your network interfaces. Many of the traditional IT administration tasks, such as setting a static IP address or DNS Server settings, are trivial using the functions within the NetTCPIP module. Let’s explore a typical series of steps that many an IT administrator might face. Setting up a new server and it’s associated network interface. Discovering Network Interfaces Perhaps you’ve been tasked with setting up a brand new virtual machine (VM) and configuring its network interface. Rather than go through the GUI, you know PowerShell is already installed on the latest version and ready to go. After opening up a new console session, the first thing we need to do is see what our network interfaces currently are. Related article: Test Network Connectivity with PowerShell Test-Connection The cmdlet, Get-NetAdapter, will display every network interface that the system is aware of. From there we can further filter the results to just get to what we want to modify. ​PS C:> Get-NetAdapter Name InterfaceDescription ifIndex Status MacAddress LinkSpeed ---- -------------------- ------- ------ ---------- --------- Ethernet 1 Realtek USB GbE Family Controller #1 14 Up 98-E7-43-C1-13-5E 1 Gbps Ethernet 2 Realtek USB GbE Family Controller #2 15 Disconnected 98-E7-43-3C-7A-00 1 Gbps In this particular server, we have two network interfaces to worry about. To make sure that we are only working on the one we want, let’s make sure to just get our Ethernet 1 interface... --- ### How to Check Whether Windows 10 is Joined to Azure Active Directory - Published: 2019-12-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-check-whether-windows-10-is-joined-to-azure-active-directory/ - Categories: Windows 10 - Tags: Azure Active Directory, cloud computing, Microsoft 365, Modern Desktop, Office 365, Windows 10 - Article Type: How To How to check if Windows 10 is connected to an Azure Active Directory domain. Before the advent of Windows 10 and the Modern Desktop era, it was easy for system administrators to determine whether Windows was joined to a Windows Server Active Directory (AD) domain. You opened the Control Panel, and in the System applet would be written the Fully-Qualified Domain Name (FQDN) of an Active Directory domain if the device was joined to AD. You could further test whether there was really a connection between the device and AD by using nltest. exe, a command built-in to Windows that can be used to confirm that there is a secure channel between device and domain controller (DC). As more organizations move to the cloud, it is increasingly common to join Windows 10 to Azure Active Directory (recently renamed Microsoft Entra ID), the cloud-native directory service used by Microsoft 365 and Office 365. Joining Windows 10 to AAD allows organizations to fully manage devices much like is possible with Windows Server Active Directory, although Windows Server AD still offers more granular control than is currently possible with AAD. There’s also the option to perform a hybrid Azure AD domain join, where Windows 10 devices are joined to Windows Server AD and registered, but not connected, to AAD. In this article, I’m going to look at Windows 10 devices joined only to AAD. If you don’t know much about AAD or have never joined Windows 10 to AAD, check out Join Windows 10 to Azure Active Directory During OOBE on Petri. You should also make... --- ### Sponsored: Office 365 Migration Plan - The Common Pitfalls to Avoid - Published: 2019-12-05 - Modified: 2024-05-10 - URL: https://petri.com/office-365-migration-plan-the-common-pitfalls-to-avoid/ - Categories: Microsoft 365, Office - Tags: OIfice 365, Quadrotech - Article Type: Sponsored When thinking about your migration to Office 365, these are some of the common pitfalls I have encountered while helping customers move to the cloud.   This post is sponsored by Quadrotech, you can learn all about their Office 365 solutions here. I’ve been a consultant for well over a decade and one thing that has remained constant, is customers’ desire to migrate to the newest and greatest software. And you’d think that having been involved in as many migrations as I have, there wouldn’t be any surprises anymore. But another thing that has remained equally as constant throughout my career is all of the new wrinkles each customer brings to their migration. In this post, I’ll cover some of the common pitfalls I try to keep customers from falling into. You might see some things that may crop up when you migrate your company to Office 365.    My experience is that the issues that trip up migrations are about 30% technical and 70% people issues.  The good news is that the people issues are easier to deal with proactively. Let’s talk about those issues.   One user issue that often sneaks up on IT departments during migration is all the places that users have squirreled away data. IT knows where data is stored in the common locations. Those can be locations like Exchange, SharePoint sites, and file shares. Unfortunately, users can be very ingenious in where they store data and share it. After planning and migration has already started, IT often starts hearing murmurs about data in Dropbox, Google Drive, shoe boxes, and other nefarious locations. As your company makes its way to the cloud, data security and governance become... --- ### OneDrive for Business Delivers Sharing Consistency Across Office 365 > OneDrive for Business is responsible for how sharing works within Office 365. Big strides are being made to achieving consistency across all the Office 365 apps and new some tricks are coming along too. - Published: 2019-12-05 - Modified: 2024-09-04 - URL: https://petri.com/onedrive-consistent-sharing-office365/ - Categories: Microsoft 365, Microsoft Teams, Office, Outlook, SharePoint Online - Tags: cloudy attachments, OneDrive for Business, owa, PowerPoint Online, SharePoint Online, Sharing Link, Teams - Article Type: News OneDrive for Business is responsible for how sharing works within Office 365. Big strides are being made to achieving consistency across all the Office 365 apps and new some tricks are coming along too, like being able to link to a PowerPoint slide, requesting people to upload files to a folder, or using the URL in a browser as a link. All good stuff. OneDrive for Business Controls Office 365 File Sharing Something that people might not know is that OneDrive for Business is the file sharing service for Office 365. When you share files or folders through SharePoint Online, OneDrive, Teams, OWA or another app, OneDrive creates a sharing link to dictate what the recipient can do with that content. A sharing link is a secret key that allows revocable access to files or folders. If the link allows Anyone access, the secret key is transferable (you can forward a link to someone else who can then use it); if not, the key only works for specific people. Sharing links are platform agnostic. Sharing Basics OneDrive for Business generates unique sharing links each time someone shares something in Office 365. The settings for the sharing link control who can use the link and what they can do with the content. In Figure 1, we see that a link is generated to share content with someone who’s outside the organization. The link settings include the email address of the person who can use the link. If the link is an Anyone link (available to anyone who has the link), it can be password protected for added security. Figure 1: A sharing link created by OneDrive for Business (image credit: Tony Redmond) Depending on the type of sharing links permitted by the tenant (set in the OneDrive for Business Admin Center or the new SharePoint Admin Center), a sharing... --- ### What Exactly Is Microsoft Endpoint Manager? - Published: 2019-12-03 - Modified: 2024-11-19 - URL: https://petri.com/what-exactly-is-microsoft-endpoint-manager/ - Categories: Microsoft 365, Mobile, Security, Windows Admin Center, Windows Client OS, Windows Server - Tags: Microsoft Endpoint Management, Security - Article Type: Overview Looking at a recently-announced product called “Microsoft Endpoint Manager”. While the product name and management interface may be shiny and new, you'll probably recognize the underlying products as some of the same familiar products that device administrators have known for years. We’ll break down what’s included and some changes that may benefit and impact current and future deployments. At Ignite 2019 there was some buzz in the area of device management with a new product called “Microsoft Endpoint Manager”. While the product name and management interface may be shiny and new, the underlying products are the same familiar products that device administrators have known for years. We’ll break down what’s included and explain some changes that may benefit (and possibly impact) current and future deployments. Under The Hood Microsoft Endpoint manager is comprised of the following products: Intune  Configuration Manager “ConfigMgr” Desktop Analytics Co-Management Autopilot  Device Management Admin Console Things That Have Changed The Name Instead of referring to each of these products individually going forward, Microsoft is trying to simplify by referring to all the aforementioned products under the “Microsoft Endpoint Manager” name. Licensing Microsoft is also allowing some existing ConfigMgr customers to add Windows devices to Intune without an extra licensing fee. The criteria appear to be (a) already having ConfigMgr licenses as part of a Software Assurance agreement, and (b) Azure AD Premium P1 licenses. There is currently no licensing benefit to MacOS, iOS, or Android as a result of these changes. Either way, I would check with your Microsoft licensing rep to verify your entitlements and any fine print. Azure AD Requirement Yep, Azure Ad is required to use Microsoft Endpoint Manager. However, it also appears that federation is still a supported path through the co-management functionality. (https://docs. microsoft. com/en-us/configmgr/comanage/overview) Bitlocker Starting with Windows 10 (v1909), Bitlocker can be managed in the Microsoft Endpoint... --- ### Exploring the Office 365 Substrate > The Office 365 Substrate is a poorly understood part of Microsoft's Cloud Office system. The substrate is a critical part of enabling services that run across different applications like Exchange Online, SharePoint Online, Teams, and so on. - Published: 2019-12-03 - Modified: 2024-09-04 - URL: https://petri.com/office-365-substrate/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Office 365, Substrate - Article Type: Opinion The Office 365 Substrate is a poorly understood part of Microsoft's Cloud Office system. The substrate is a critical part of enabling services that run across different applications like Exchange Online, SharePoint Online, Teams, and so on. Functionality like search, information protection, data governance, and eDiscovery is a lot harder when you have multiple moving parts. The substrate gives cohesion and coherence to what could otherwise be a tangled mess. Things Were Different in 2011 When Microsoft launched Office 365 in June 2011, the suite included a set of cloudified on-premises applications that were barely on nodding terms with each other connected with a nascent Office 365 infrastructure. Over time, the service has grown to support over 200 million monthly active users. More importantly, Office 365 is now a more integrated, better connected, coherent whole. The boundaries that once existed between applications like Exchange and SharePoint have largely disappeared in the interests of the service. Some impressive software engineering has been done to make Office 365 the way it is today. The telemetry signals gathered in the Microsoft Graph is a huge part of enabling the use of artificial intelligence and machine learning in current applications. Snover Sparks a Thought Another key component in the story is the Office 365 substrate, a poorly-understood part of how things work across the service. During a Microsoft Mechanics show taped at the Microsoft Ignite 2019 conference, Jeffrey Snover, Microsoft Technical Fellow and Architect for the Intelligent Substrate Platform in Office 365, presented how things connect within the service. He said that the substrate, “a set of storage and a set of services”, was the “heart of Office 365. ” The services are for “creating, collaborating, and communicating” and “everything gets stored in the substrate or has a digital twin (copy) in the substrate. ” Collectively, the substrate enables Office 365 a “planetary scale people operating system. ” Snover presented a comparison between traditional operating... --- ### Everything You Need to Know about Office 365 - November 2019 > This month you get a round up of all of the Office 365 news and notes you want without the predictable jokes you don't. Teams, Project Cortex, and more. - Published: 2019-12-02 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-office-365-november-2019/ - Categories: Microsoft 365 - Tags: Microsoft Forms, Microsoft SharePoint, Microsoft Teams, Office 365, Power Platform, Project Cortex - Article Type: News This month you can read about some of the coolest stuff from Ignite, Microsoft Forms getting a great new feature, AI learning to read for me, and more. I have a turkey hangover but thankfully this article does not. This month you can read about some of the coolest stuff from Ignite, Microsoft Forms getting a great new feature, AI learning to read for me, and more. The best part of this post? I skipped most of the turkey jokes and all of the Cyber-Monday over shopping notes. You’re welcome. A rollup of all of the Content collaboration announcements from Ignite As one of the post commenters said: “. . overwhelming progress! ” I couldn’t agree more. Mark from the SharePoint team took the time to write up all of the announcements with images and links as relevant. Kudos. Some of my favorites include all of the new ways to format and display content in SharePoint and easier Teamifcation (made up word) of existing SharePoint sites. I think two ideas surface to the top to me. One, content management should be the same no matter where you are in Office 365 and two, you should be able to present the data the way you want. Check out the article here or the session from Ignite here and enjoy like that turkey you just stuffed yourself on. SharePoint Home Sites are rolling out Homesites are one of those fancy communication sites set as the landing page for all of your SharePoint users. This allows you to build a better looking and more informative site that becomes the foundation of your intranet. It also affects the SharePoint start page and has an updated... --- ### Everything You Need to Know About Azure Infrastructure – November 2019 Edition - Published: 2019-12-02 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-november-2019-edition/ - Categories: Microsoft Azure - Tags: Arc, Azure, Azure Backup, Blob Storage, Change Feed, Cost Management, networking, Norway, Security, SQL Server 2019, Windows Server - Article Type: Opinion Microsoft Ignite 2019 has passed, and as one would expect, there were many Azure announcements. I’m not going to do my usual and list every announcement in this article – I would still be writing this article in 2020! Microsoft Ignite 2019 has passed, and as one would expect, there were many Azure announcements. I’m not going to do my usual and list every announcement in this article – I would still be writing this article in 2020! Instead, check out the “book of news” to learn about all (actually, many) of the announcements that were made that week. In this post, I’ll highlight a few things and what was announced since Ignite. Azure Arc Day 1 of Ignite started with lots of shiny new toys, including Azure Arc. Arc is a new hybrid management solution, promising to bring the management power of Azure to on-premises deployments. Many were dazzled by the lights and the potential of this announcement. Me, not so much. I’ve become a bit of a cynic about certain things. I’ve been that person who has deployed a preview on day 1, learned everything I could about it, put it into to production, dealt with the massive feature gaps, and then wondered where that product went 18 months later. What is Arc? Azure can do a lot of things inside of Azure, including: Manage policy via Azure Resource Manager (ARM) Deploy updates Manage Azure Kubernetes Service (AKS) at scale Deploy data (Azure SQL) services Arc, in public preview with ARM policy today, aims to bring these services to on-premises compute environments. The problem with all that is: Azure Policy is in a never-ending preview and is quite buggy Azure Update Management doesn’t scale well... --- ### Everything You Need to Know About Windows – November 2019 - Published: 2019-12-02 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-november-2019/ - Categories: Windows Client OS - Tags: Windows 10, Windows Insider, Windows Server - Article Type: News The Windows 10 November 2019 Update is released for download and on Windows Update, Microsoft confirms that Win32 apps are coming to Windows 10X, Chromium-Based Edge gets a release date and new PWA integration features, and an early preview of WinUI 3.0 is released to help developers bridge the divide between Win32 and UWP apps. This month sees the Windows 10 November 2019 Update released for download and on Windows Update, Microsoft confirms that Win32 apps are coming to Windows 10X, Chromium-Based Edge gets a release date and new PWA integration features, and an early preview of WinUI 3. 0 is released to help developers bridge the divide between Win32 and UWP apps. Windows 10 November 2019 Update Released Windows 10 19H2, or the November 2019 Update as it’s more officially known, was released to ‘seekers’ via Windows Update and can be downloaded as an ISO disk image. 19H2 is a minor update for Windows 10 which installs like a monthly cumulative update for those already on the May 2019 Update. Users on older versions will see 19H2 install like a full operating system upgrade. Users will notice a few minor changes, like the ability to create calendar events and reminders from the taskbar, and improved search in File Explorer. There are also some enterprise feature updates, including key rotation, which enables secure rolling of recovery passwords on MDM managed Azure Active Directory (AAD) devices on-demand from MDM tools or every time a recovery password is used to unlock BitLocker protected drives. 19H2 lets OEMs reduce inking latency based on hardware capabilities rather than being confined to using a latency setting selected by Windows. And Windows Containers now permit hosts to run down-level containers for Windows Server containers, i. e. not Hyper-V containers, to support mixed-version container pod scenarios for better Kubernetes support. For more... --- ### MSIX Core Coming to Windows 7 and 8.1 in December, Plus New Features on the Horizon - Published: 2019-12-02 - Modified: 2024-11-19 - URL: https://petri.com/msix-core-coming-to-windows-7-and-8-1-in-december-plus-new-features-on-the-horizon/ - Categories: Windows 10 - Tags: MSIX, Windows 10, Windows 7, Windows Virtual Desktop - Article Type: News Microsoft’s enterprise application packaging technology, MSIX, is being partially ported to down-level Windows clients and there are some interesting new features due in Windows 10 20H1. In public preview since last year, MSIX Core is a stripped-down version of Windows 10’s MSIX application packaging technology that will allow organizations to deploy MSIX packages to Windows 7 and 8. 1. Microsoft said at Ignite this year that it had been listening to customers that intend to continue using Windows 7 beyond its end-of-life in January 2020, either by paying for extended security updates for the OS or by using Windows Virtual Desktop in Azure, which supports Windows 10 and Windows 7 to make it easier to make an eventual transition to Windows 10. What is MSIX? MSIX is the new default packaging technology Microsoft wants everyone to use in Windows 10 and it replaces Windows Installer (MSI) and App-V’s AppX package format. There are several key differences between MSIX and MSI. MSIX uses a lightweight container to segregate apps from the OS, providing a more reliable experience during installation and removal. MSIX containers use filesystem and registry virtualization to make sure that new apps can’t affect existing ones installed on the system. MSIX also uses differential file transfers to minimize network bandwidth during updates and it manages shared files across apps to reduce disk footprint. These changes result in significant speed improvements when installing applications. MSIX app attach is designed with virtual environments in mind to optimize how applications are delivered to end users. MSIX replaces AppX completely in Windows 10 version 1809 and later, although AppX and MSI are still supported for backwards compatibility. Ultimately,... --- ### Teams Doesn’t Need Two PowerShell Modules (But Why Two Exist) > If you work with Teams through PowerShell, you'll know that you sometimes need to open the Skype for Business Online module. It's a royal pain in the rear end to deal with two inconsistent modules - Published: 2019-11-28 - Modified: 2024-09-04 - URL: https://petri.com/teams-doesnt-need-two-powershell-modules/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Policies, PowerShell, Skype for Business Online, Teams - Article Type: Opinion If you work with Teams through PowerShell, you'll know that you sometimes need to open the Skype for Business Online module. It's a royal pain in the rear end to deal with two inconsistent modules. It would be much neater if everything was gathered into one coherent module. However, that's not going to happen much before Skype for Business Online retires in 2021. In the interim, here are seven sets of policy cmdlets that you'll probably need to use to assign policies to multiple users at one time. One for Teams, One for Skype for Business Online One of the blessed PowerShell mysteries is the necessity to use two modules to manage Teams. There’s the Teams module and the oh-so-wonderful Skype for Business Online module. The two modules are very different. The Teams PowerShell module is based on the Microsoft Graph. Its original implementation was flawed because the cmdlets available in the module mimicked the same ability to change settings as available to users in the Teams desktop and browser client. Over time, Microsoft gradually improved the module, notably to incorporate support for team management needed by the Teams Admin Center. Generally Available PowerShell for Teams All this work was presented by Microsoft as a preview. They eventually released a generally available version of the Teams module in April 2019. Unfortunately, the GA module suffers from some notable defects, the most obvious of which being its slowness when retrieving sets of teams. Filtering is another area ripe for improvement. But the biggest improvement Microsoft could make is to dump the Skype for Business Online module. As far as I can see, the only reason this module lingers on is that it was easier for Microsoft to build it out with the policies needed by Teams. Policy-Driven Advantages Policies are good because they allow administrators to apply a very granular level of control over different aspects of Teams. It would have been great if Microsoft had created cmdlets to manage the policies used by Teams in the... --- ### Getting Started with Azure Arc-Servers - Published: 2019-11-26 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-azure-arc-servers/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure, PowerShell - Tags: Azure, Azure Arc, Hybrid, linux, PowerShell, Windows - Article Type: How To Microsoft announced Azure Arc at Ignite 2019 providing a cross-platform hybrid management system to manage all servers anywhere. In this article, you'll learn how to onboard your on-premises servers to Azure Arc Servers. One of the biggest announcements (in my opinion) at Microsoft Ignite was the release of Azure Arc. This new Azure service stands to be a game-changer as it relates to managing any and all of your hybrid environments. In this article, we'll set up Azure Arc to manage our on-prem workloads. Now, to be clear, Azure Arc was just released to public preview. With that being said, understand it has limited capabilities in it's infancy. Be sure to keep an eye on added features as it matures. While at Ignite, I was speaking with one of the product team members and he said features will be coming fast and often. What is Azure Arc? If you don't know what Azure Arc is, here's a quick summary. Azure Arc provides the ability to manage your workloads, regardless of where they live within this single dashboard. You can add servers from your own data center or any other cloud platform. Along with servers, Azure Arc can also be used for data services using Kubernetes. This article will focus on server management. Azure Arc brings Azure cloud services to these workloads. Services such as Role-Based Access Control, Azure Policy and Azure Resource Manager, with more on the way. Adding On-Premises Servers to Azure Arc Getting your on-prem servers to appear in the Azure Arc portal is pretty straight forward. First, we need to make sure we have a few things checked off before we dive in. Required Resource Providers We need... --- ### Tracking Anonymous Access to SharePoint and OneDrive Documents > Cloudy attachments are an excellent way of sharing documents through email without attaching files. Behind the scenes, an anonymous link to the document is sent to recipients. - Published: 2019-11-26 - Modified: 2024-09-04 - URL: https://petri.com/tracking-anonymous-access-sharepoint-onedrive-documents/ - Categories: Exchange Online, Microsoft 365, Office, SharePoint Online - Tags: Anonymous links, Anonymous sharing, Cloudy attachment - Article Type: How To Cloudy attachments are an excellent way of sharing documents through email without attaching files. Behind the scenes, an anonymous link to the document is sent to recipients, who can then use the link to open, edit, or download the document (depending on the assigned permission). Office 365 tenant administrators don't have great visibility into what kind of anonymous sharing happens, but they can with a little bit of PowerShell and the contents of the Office 365 audit log. Understanding Office 365 Sharing Over the last few months, I’ve looked at various aspects of how guest users gain access to resources within Office 365 tenants and the information tenant administrators can use to track that access. We’ve considered the mechanics of SharePoint Online sharing, how to report Office 365 Groups and Teams with guests in their membership, and how to use the Office 365 audit log to discover the documents accessed by guests. In my last article in this area, I reviewed how to find out who creates guest accounts, including when a guest account is created because someone shares a document in a SharePoint Online or OneDrive for Business site. Sharing via Cloudy Attachments Hopefully the articles have helped throw some light into how to manage guest access to resources. To complete the picture, I want to look at the links created by Outlook when users add a “cloudy attachment” to email. These attachments are links to SharePoint Online or OneDrive for Business documents, with the idea being that it is better for recipients to access the document in situ instead of a private copy. Cloudy attachments work very well. However, the link sent to recipients allows anonymous access to the document. In other words, anyone with the link can access the document. This isn’t a huge deal even if the message is forwarded because it replicates how regular attachments work. This situation is due to change when Outlook adopts the standard sharing link control for... --- ### We Want To Know What Technology You Use at Work - Published: 2019-11-25 - Modified: 2024-09-04 - URL: https://petri.com/we-want-to-know-what-technology-you-use-at-work/ - Categories: Main - Tags: Petri, Survey - Article Type: Overview As 2019 comes to an end and we look forward to 2020, we want to know what technology you are using at work. As we have done the past couple of years, the Petri.com reader survey is now live with one lucky participant winning $250 Amazon gift card.  As 2019 comes to an end and we look forward to 2020, we want to know what technology you are using at work. As we have done the past couple of years, the Petri. com reader survey is now live with one lucky participant winning $250 Amazon gift card. Why do we need this information? The information we gather from our readers helps us balance the investments we make into each category so that you get the best possible coverage in the topical areas that are important to you and your organization. You can find the survey link, below. Click here to take the Petri reader survey. --- ### Paul Thurrott's Short Takes: November 22 2019 - Published: 2019-11-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-22-2/ - Categories: Amazon Web Services, Cloud Computing, Dynamics, Hardware, Hybrid Cloud, Microsoft Azure, Mobile, Windows 10 - Tags: News - Article Type: Overview Because millennials always have the answers, this week’s edition of Short Takes looks at Slack’s response to a Microsoft rip-off, Amazon suing over Microsoft’s JEDI contract, Salesforce’s unlikely Microsoft partnership, and so much more. You've got balls, Microsoft! Because millennials always have the answers, this week’s edition of Short Takes looks at Slack’s response to a Microsoft rip-off, Amazon suing over Microsoft’s JEDI contract, Salesforce’s unlikely Microsoft partnership, and so much more. OK, Boomer In August, Slack released an advertisement that showed colorful balls, meant to represent communication, rolling around onscreen and heading off into different directions. But then Microsoft this month released its own ad, for Slack competitor Teams, which likewise showed colorful balls, meant to represent communication, rolling around onscreen and heading off into different directions. The ads are, well, uncomfortably similar, one might say non-coincidentally similar, and since they come in the wake of news of Teams blowing past Slack’s usage numbers, it’s kind of hard to miss the symbology. But Slack’s response is mostly terrific: It posted a video called “ok boomer” that highlights how the Microsoft ad ripped it off and, less positively, references the “OK, Boomer” ageism meme in an attempt to show that the software giant is old and out of touch. I guess. The problem for Slack, of course, is that Microsoft has done to Slack what it did to Netscape 20 years ago. And once again, the savvy veteran comes out on top. OK, millennial! “Microsoft’s Biggest Business Could Be the Cloud by 2023, Analyst Says” But the cloud is already Microsoft’s biggest business. Amazon sues to contest Microsoft’s $10 billion JEDI contract As expected, Amazon is suing to... --- ### Microsoft Delays Surface Earbuds Until the Spring - Published: 2019-11-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delays-surface-earbuds-until-the-spring/ - Categories: Hardware - Tags: Earbuds, Microsoft, Surface - Article Type: News Microsoft is delaying the release of its Surface EarBuds until the spring but the company isn't saying why or when exactly they will be released. In October, Microsoft held a Surface hardware event where the company announced Surface Pro X, Neo, Duo, Laptop 3, Pro 7, and the Surface Earbuds. If you were hoping to get your hands on them before the holidays, you are going to have to wait a bit longer. Microsoft announced today that they are delaying the EarBuds until the Spring. When they are released, there will be a new color option, white, but we don’t know exactly when they will ship. The company did not explicitly state why the product has been delayed. This announcement isn’t all that surprising either. The company had yet to open up pre-orders for the hardware while everything else announced is already available for customers to buy. The Earbuds have a striking design that you either love or hate, there is not a lot of middle ground here. But with productivity features built into the touch area, the company is trying to use the same formula that made Surface a success, in the audio space as well. During my brief time of using the hardware at the announcement event, the buds appeared to work as expected. Clearly there is a bigger issue here which is causing Microsoft to hold back on shipping the hardware but the big question is what is it? For now, we have to sit back and wait for the release of the hardware to see if Microsoft is making any significant changes. --- ### Microsoft Announces Azure Managed Version of Connected Cache - Published: 2019-11-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-azure-managed-version-of-connected-cache/ - Categories: Windows 10 - Tags: Microsoft Azure, Microsoft Connected Cache, Windows 10 - Article Type: News A new Azure-managed version of Microsoft Connected Cache enters private preview to help reduce Internet bandwidth for updates. Windows 10 has a built-in feature called Delivery Optimization that allows it to download content from peers on the Internet or local area network (LAN) to avoid each node pulling the entire content from Microsoft’s update servers. Delivery Optimization has a couple of benefits. First, it reduces the load on Microsoft’s servers, providing a more reliable experience for everyone and cost savings for Microsoft. Secondly, it can dramatically reduce the Internet bandwidth required to download Windows Updates, Microsoft Store apps, and Office ProPlus updates. And that’s handy in parts of the world where Internet speeds are limited or in situations where lots of devices are sharing a connection with limited bandwidth, like in branch offices. But Delivery Optimization doesn’t always reduce the bandwidth enough for downloading updates. Delivery Optimization falls back on Microsoft’s update servers in situations where peers can’t provide all parts of a required update or if they can’t serve other nodes quickly enough. This seamless fallback is implemented to ensure a reliable and fast update for all devices. Microsoft says that some customers need a better solution in cases where bandwidth is limited, devices are running primarily on battery, and all-VPN Wi-Fi networks are used, which counts out use of peer-to-peer networking completely. Azure-Managed Microsoft Connected Cache For these customers, Microsoft is introducing Microsoft Connected Cache to complement Delivery Optimization and a pre-release version has been available in Configuration Manager starting in version 1906. Connected Cache can be deployed on Configuration Manager distribution points. But... --- ### Year of Yammer: New Goals for Microsoft’s Enterprise Collaboration App > Microsoft has declared some undefined period, perhaps starting at the Ignite conference, to be the "Year of Yammer." Cynics might say "What! Yet again?" as Microsoft tries to position its enterprise networking app within Office 365 collaboration. - Published: 2019-11-21 - Modified: 2024-11-19 - URL: https://petri.com/year-of-yammer/ - Categories: Microsoft 365, Office - Tags: Communities, Office 365 Groups, Satya Nadella, Yammer - Article Type: News, Opinion Microsoft has declared some undefined period, perhaps starting at the Ignite conference, to be the "Year of Yammer." Cynics might say "What! Yet again?" as Microsoft tries to position its enterprise networking app within Office 365 collaboration as it certainly feels like we have been down this path before. On the upside, this attempt seems to focus on what Yammer is good at instead of mimicking other apps. Time will tell. Even the most ardent Yammer supporter will acknowledge that the promise of 2012, when Microsoft bought Yammer for $1. 2 billion, has not been realized. Even with the weight of Microsoft marketing thrown behind the app to break into the enterprise social networking space, Yammer failed to deliver. Some notable successes with large customers like Shell, Air France, and British Airways never quite developed into the hoped-for general breakthrough across the mass of Office 365 tenants. The Relative Failure of Yammer Many reasons can be debated for Yammer’s relative lack of success. Internal competition within Office 365 from email (Outlook), SharePoint Online, Office 365 Groups, and more recently Teams didn’t help. Microsoft tried to reposition Yammer, most notably in 2017 with the Inner Loop/Outer Loop construct. But the fact remained that Yammer remained an outlier and failed to use Office 365 and Azure Active Directory as tightly as it should have years ago, leading to a situation where Yamme never picked up important cross-suite initiatives in data governance (retention, protection, and search), Azure B2B collaboration (guest access), and multi-geo tenants. Yammer embraced Office 365 groups in 2016 and recently moved its base platform to Azure. Its data is now stored in-regional datacenters instead of only in the U. S. Welcome as these improvements are, it was never enough to convince the broad mass of Office 365 customers to deploy yet another application in their tenant. The overhead of support and user education outweighed the benefits Yammer could deliver. The net... --- ### New High Availability and Disaster Recovery Features in SQL Server 2019 - Published: 2019-11-20 - Modified: 2024-09-04 - URL: https://petri.com/new-high-availability-and-disaster-recovery-features-in-sql-server-2019/ - Categories: Backup & Storage, Microsoft Azure, SQL Server - Tags: Azure, Backup, Disaster Recovery - Article Type: Overview The latest release of SQL Server 2019 has several important enhancements for high availability (HA) and disaster recovery (DR). Let’s take a look at some of the main HA and DR changes in SQL Server 2019. While it has been in preview for quite some time, at Ignite 2019, Microsoft announced the general availability of SQL Server 2019. It seems hard to believe but this newest release marks the 25th anniversary of SQL Server. In retrospect, I’ve been working with SQL Server since the 6. 5 release and there’s no doubt that it has come a long way. The latest release of SQL Server 2019 has several important enhancements for high availability (HA) and disaster recovery (DR). Let’s take a look at some of the main HA and DR changes in SQL Server 2019. Accelerated Database Recovery Newly added to SQL Server 2019, Accelerated Database Recovery (ADR) enables faster database recovery through a redesign of the SQL database engine recovery process. With previous versions of SQL Server the committed transactions are written to disk during the redo phase and the uncommitted transactions are rolled back during the undo phase. Recovery time is impacted by the largest transaction in the undo phase. ADR uses a new Persisted Version Store (PVS) in the data file that contains previous versions of the data that was modified by transactions. This enables the transaction log to only be processed from the last checkpoint. ADR accelerates transaction rollback and long-running transactions do not impact the total recovery time. ADR is available in both SQL Server 2019 on-premise and Azure SQL Database and it is included in both the Standard and Enterprise editions. Software Assurance Licensing Changes While not technically a feature, Microsoft also... --- ### Join Windows 10 to Microsoft Entra ID (Azure AD) During OOBE - Published: 2019-11-20 - Modified: 2024-09-04 - URL: https://petri.com/join-windows-10-to-azure-active-directory-during-oobe/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud computing, Microsoft Entra ID, Windows 10 - Article Type: How To Before you perform an AAD domain join, you should understand the difference between an AAD domain-joined device and one that is registered with AAD. Microsoft Entra ID Domain-Joined or Registered Devices? Before you perform a Microsoft Entra ID (previously Azure AD) domain join, you should understand the difference between an Azure AD domain-joined device and one that is registered with Azure AD. Domain-Joined AAD Devices When you join a Windows 10 device to AAD, users sign in to Windows using their organizational work or school account from the lock screen, either using a password, Windows Hello for Business, or FIDO2. 0 security keys. A domain join provides single sign-on (SSO) to both cloud and on-premise resources; and optional features like conditional access, self-service password reset, and enterprise state roaming if you have an AAD plan that supports those features. Windows 10 can be joined to an AAD domain either during the out-of-box-experience (OOBE) setup phase, using the Settings app after Windows 10 has installed, via bulk enrollment, or using Windows Autopilot. Devices can be managed using Mobile Device Management (MDM) or co-managed with Microsoft Intune and System Center Configuration Manager (SCCM). AAD Registered Devices Azure AD registered devices are more suitable for Bring Your Own Device (BYOD) users and registration is supported on not just Windows 10 but also iOS, Android, and macOS. Users sign in with their local credentials, or in Windows 10 that might also mean a Microsoft Account (MSA). Passwords, Windows Hello, PIN, and biometrics are all supported. Devices are managed using MDM and Mobile Application Management (MAM). SSO is provided for cloud resources only and you get conditional access if devices... --- ### Microsoft Adds Seven Million Teams Daily Users in Four Months - Published: 2019-11-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-seven-million-teams-daily-users-in-four-months/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft's Teams application has added seven million daily active users in four months but the growth will not be slowing down anytime soon. There is little doubt that Microsoft is pushing Teams during every possible conversation. The company’s communication hub has quickly become the cornerstone of Office 365 and is the fastest-growing application in the company’s history. Microsoft announced today that there are more than 20 million daily active users of the application. In July of this year, there were 13 million daily active users which means the company has added seven million daily active users in about four months. Further, the company said that last month Teams customers participated in more than 27 million voice or video meetings and performed over 220 million open, edit, or download actions on files stored in Teams. Meaning, the daily active users are not simply people opening the app but Teams is being used heavily inside corporations. To help push growth further, Microsoft’s Jared Spataro, Corporate Vice President for Microsoft 365, penned a post about the five attributes of successful teams. While the post won’t likely drive millions to Teams overnight, it’s important to understand how Microsoft is thinking about teamwork and how they are evolving Teams to hit on the attributes Spataro outlines (team purpose, collective identity, awareness and inclusion, trust and vulnerability, constructive tension). With Skype for Business officially going away in the near future, the adoption of Teams should continue to grow as those customers migrate to the new platform. The key for Microsoft is to make Teams the new ‘sticky’ application inside of Office 365 and all signs are pointing to the... --- ### Can Exchange Online Really Recall Messages? > Outlook users are more than aware of the problems involved in message recall, a feature that's only available in Outlook desktop and has a nasty habit of not working. - Published: 2019-11-19 - Modified: 2024-11-19 - URL: https://petri.com/can-exchange-online-really-recall-messages/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, Message Recall, Outlook, Recall Message - Article Type: News Outlook users are more than aware of the problems involved in message recall, a feature that's only available in Outlook desktop and has a nasty habit of not working. The reasons why the feature fails are well known, but soon might be addressed by a new Exchange Online implementation that promises to work for all clients and across Office 365. Time will tell if careers and love can be rescued by the new message recall. The Closeness of the Cloud Makes Change Possible One of the points made (I think fairly) by speakers at Microsoft Ignite 2019 sessions is that developing software for cloud-based systems is very different to on-premises servers. There’s nothing earthshattering in this thought. What is interesting is when you think about how different aspects of cloud services can be harnessed to address long-lingering problems. Hundreds of Thousands of Failed Recalls Which brings me neatly to message recall, a client-side Outlook desktop-only feature that has disappointed so many people over the last twenty or so years. Trying to recall a message is the last-gasp act of desperation executed when someone has a brain fart that leads them to send a message that is incomplete, inappropriate, foolish, or to the wrong audience (Figure 1). According to a Microsoft source, Exchange Online users try to recall messages about 800,000 times daily. Hardly any succeed. Figure 1: The Outlook desktop Recall This Message option (image credit: Tony Redmond) You Want to Recall a Message? Good Luck! The reasons why message recall fails are simple. Exchange can only recall a message if it has not been read, the recipient uses Outlook as their client, and the message hasn’t been moved out of the Inbox. Other conditions get in the way (read about them here), but the biggest problem has been that the message must remain in the same organization. Exchange can’t reach out and affect messages once they leave through... --- ### Managing Files with PowerShell 7 on Linux - Published: 2019-11-18 - Modified: 2024-11-19 - URL: https://petri.com/managing-files-with-powershell-7-on-linux/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To Since Microsoft open-sourced PowerShell in 2016, running it on Linux has become not only easier but a core part of the PowerShell roadmap. With PowerShell 7 in development, the stated goal is to make PowerShell accessible from not only Windows but Mac and Linux. Since Microsoft open-sourced PowerShell in 2016, running it on Linux has become not only easier but a core part of the PowerShell roadmap. With PowerShell 7 in development, the stated goal is to make PowerShell accessible from not only Windows but Mac and Linux. While PowerShell 7 is still in development, it’s a good time to go over how to do some of the most essential tasks you can do on a Linux server: managing files. Prerequisites You’ll get hands-on in this article so to ensure you can follow along, be sure you have the following prerequisites in place: A device running Linux. The examples shown in this article are run on Ubuntu 18. 04. PowerShell 7 installed on Linux. Understanding Bash vs PowerShell Before you dive into the different ways PowerShell 7 can manage files, let’s first cover how Linux and PowerShell work with the Linux filesystem. Each has a different way of working with files and directories. Depending on what kind of operations you want to take, these differences can be important to know as you’ll soon find out. For example, if you need to list files in Linux, you can either use the Bash ls command or the PowerShell Get-ChildItem command as you can see below. There are some slight differences that will be covered in this section, but for now, either will help you navigate around your file system. You can see using the ls command in the screenshot below, it’s only showing names. Contrast... --- ### Microsoft Shifting Certifications to Workload-Based to Align with Skills - Published: 2019-11-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-shifting-certifications-to-workload-based-to-align-with-skills/ - Categories: Career Skills - Tags: Career Advice, Microsoft 365, Windows 10, Windows Server - Article Type: Overview If you are looking to take or update existing Microsoft certifications, you might be wondering which are best to obtain and what technology path would be most beneficial. The certification program is in flux now as Microsoft gradually begins to move to role-based certifications, or workload-based as it is sometimes referred to, instead of focusing on specific products. If you are looking to take or update existing Microsoft certifications, you might be wondering which are best to obtain and what technology path would be most beneficial. The certification program is in flux now as Microsoft gradually begins to move to role-based certifications, or workload-based as it is sometimes referred to, instead of focusing on specific products. Windows 10 Certification Path The Windows 10 MCSA (Solution Associate) cert has been retired in favor of Microsoft 365 Certified: Modern Desktop Administrator Associate. As Microsoft hopes more organizations will move to its ‘Microsoft 365’ subscription service - which combines Office 365, Windows 10 as a service, and Enterprise Mobility + Security - candidates now need to understand not only how to manage and support Windows 10 but also how to deploy, manage, and secure it using the cloud. To obtain the new Modern Desktop cert, candidates must pass two exams: MD-100: Windows 10 MD-101: Managing Modern Desktops MD-100 replaces Exam 70-698, Installing and Configuring Windows, which expired March 31st, 2019. If you passed Exam 70-698 before it expired, you only need to pass MD-101. The skills measured by MD-100 are: Deploy Windows (15-20%) Manage devices and data (35-40%) Configure connectivity (15-20%) Maintain Windows (25-30%) You can find a detailed list of the skills measured by MD-100 here. MD-101 focuses on modern deployment technologies like Windows Autopilot, planning and performing Windows 10 feature updates and upgrading from previous versions of Windows, managing device authentication using Azure Active Directory (AAD), managing Windows... --- ### Intel Releases Microcode Update for CPUs Affected by Zombieload v2 - Published: 2019-11-15 - Modified: 2024-09-04 - URL: https://petri.com/intel-releases-microcode-update-for-cpus-affected-by-zomieload-v2/ - Categories: Security - Tags: Intel, Microsoft, Windows, Zombieload - Article Type: News Intel releases microcode for CPUs affected by a new kind of MDS attack and says that previous microcode updates reduce the attack surface but don’t provide complete protection. In May this year, I reported on Petri that Intel CPUs were affected by a new kind of side-channel attack dubbed Zombieload, or a Microarchitectural Data Sampling (MDS) attack as it is officially known. Zombieload, like Spectre and Meltdown before it, relies on a speculative execution performance optimization feature to speed up data processing. MDS attacks like Zombieload attack a CPU’s microarchitectural data structures in the load, store, and line fill buffers that are used for fast I/O operations. May’s quality update for Windows 10 included changes to the OS to protect against Zomebieload but it also required a microcode (CPU firmware) update to get full protection. At the time, Microsoft said that the necessary microcode update was included in the OS quality update for some versions of Windows 10 and that the microcode would be made available for all supported versions of Windows 10 as Intel made the microcode available. Zombieload v2 Late for Halloween Roll forward to November 2019, and researchers have released information about Zombieload v2. It was a previously known vulnerability, but details weren’t disclosed because it has taken until now for Intel to develop the necessary microcode updates. Zombieload v2 works against Intel’s latest CPUs, despite the company claiming that Cascade Lake had protection against this kind of attack integrated into the hardware. Zombieload v2 uses a flaw in Intel’s Transactional Synchronization Extensions (TSX) technology to read data being processed by the CPU, which Intel calls TSX Asynchronous Abort (TAA). Because the attack... --- ### Taking An Easier Approach to Optimize Your Microsoft Licenses - Published: 2019-11-14 - Modified: 2019-11-14 - URL: https://petri.com/taking-an-easier-approach-to-optimize-your-microsoft-licenses/ - Categories: Petri Dish, Podcasts - Tags: Cayosoft, Petri Dish - Article Type: Interview At Ignite 2019, I had a chance to talk to with Cayosoft about how they are making it easier to manage your Microsoft licenses. At Ignite 2019, I had a chance to talk to with Cayosoft about how they are making it easier to manage your Microsoft licenses. You can learn more about Cayosoft, here. https://www. youtube. com/watch? v=I9szGNolsbo --- ### Petri Dish: Helping You Understand Where Your Most Important Data is Stored with Varonis - Published: 2019-11-14 - Modified: 2019-11-14 - URL: https://petri.com/helping-you-understand-where-your-most-important-data-is-stored-with-varonis/ - Categories: Petri Dish - Tags: Petri Dish - Article Type: Interview At Ignite 2019, I had a chance to talk to Varonis about how they are helping customers find out where their valuable data is stored, how it's being used, and where it is being accessed. At Ignite 2019, I had a chance to talk to Varonis about how they are helping customers find out where their valuable data is stored, how it's being used, and where it is being accessed. You can learn more about Varonis, here. https://www. youtube. com/watch? v=tltcLteE3Vg --- ### In Review: Microsoft's First Cybersecurity Summit - Published: 2019-11-14 - Modified: 2024-09-04 - URL: https://petri.com/in-review-microsofts-first-cybersecurity-summit/ - Categories: Security - Tags: Ignite 2019, Microsoft, Microsoft Cybersecurity Summit, Microsoft Ignite 2019, Security - Article Type: Review A review of Microsoft's first Cybersecurity Summit in 2019. In its inaugural year, the Microsoft Security Summit was held as an optional pre-day add-on to the already massive amount of content that the Ignite conference has to offer. This summit brought security professionals together with the leading security minds at Microsoft in the first-ever dedicated full day of security content. The sessions offered an exclusive look at how Microsoft does security inside their own network, as well as how they manage the task of securing customers of Azure and Microsoft 365. Being that this was the first year, I really didn't have an expectation for what was ahead... and in typical Microsoft fashion, there was a good mixture of wins, but also some areas of improvement for next year. The day started off with Microsoft's CISO Bret Arsenault giving a very engaging keynote on Microsoft's journey through security. For someone like me who prefers deeply technical content, this session was a rare look behind the scenes without as much of Microsoft's marketing machine filter. Bret told a story that included some of his (and subsequently, Microsoft's) pitfalls over the last decade and the lessons learned. Looking around the room, I can attest that delivering this level of transparency was resonating with the audience. By the end of the keynote, there felt like there was a level of camaraderie in the room that had been built by sharing stories from the trenches. I felt that this session was one of the most valuable of the day. The keynote... --- ### Petri Dish: How Excel and PowerPoint are the Gateways to Power Automate - Published: 2019-11-14 - Modified: 2019-11-14 - URL: https://petri.com/how-excel-and-powerpoint-are-the-gateways-to-power-automate/ - Categories: Petri Dish - Tags: Ignite 2019, Petri Dish, Power Automate At Ignite 2019, I had a chance to talk to Dona Sarkar about her new role, Power Apps, and how you can get started with digital upscaling. At Ignite 2019, I had a chance to talk to Dona Sarkar about her new role, Power Apps, and how you can get started with digital upscaling. https://www. youtube. com/watch? v=bYdPcjfKGzo --- ### Patch Tuesday November 2019 - Published: 2019-11-14 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-november-2019/ - Categories: Security, Windows 10, Windows 7, Windows Client OS - Tags: Internet Explorer, Patch Tuesday, Windows 10, Windows Server - Article Type: News This month sees Microsoft patch a zero-day in IE, a security advisory for TPMs, and release the Windows 10 November 2019 Update for seekers. This month sees Microsoft patch a zero-day in IE, a security advisory for TPMs, and release the Windows 10 November 2019 Update for seekers. Windows 10 November 2019 Update Available for Seekers As expected, Microsoft made the Windows 10 November 2019 Update, or version 1909 as it is sometimes referred to, available to seekers via Windows Update. Seekers are users that actively click Check for updates in the Settings app. Assuming there isn’t a block in place for your device, you will be given the option to download and install the update at your convenience. Windows 10 version 1909 is a minor update and is provided as a cumulative update (CU) for users already on Windows 10 1903. Users on other versions of Windows 10 will receive 1909 as a full operating system upgrade. Users will notice a couple of minor changes. Most notably to File Explorer, which has improved search and now includes results from OneDrive. It’s now also possible to add calendar or reminder items from the taskbar. Under the hood there are some processor performance improvements and a couple of new enterprise features. Processors supporting Intel Turbo Boost 3. 0 now get better performance in Windows 10 1909 with a feature called Favored Core Optimization. There’s also Key-Rolling and Key-Rotation, which enable secure rotation of recovery passwords on MDM-managed Azure Active Directory (AAD) devices when BitLocker drives are manually unlocked by users to provide better protection. For a complete list of all the changes and new... --- ### What You Need to Know about Azure Stack Edge and the Hybrid Cloud - Published: 2019-11-13 - Modified: 2024-09-04 - URL: https://petri.com/what-you-need-to-know-about-azure-stack-edge-and-the-hybrid-cloud/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, Cloud, cloud computing, hybrid cloud, Virtualization, vmware - Article Type: Overview While pretty much everybody knows that Microsoft is one of the main cloud providers with Azure, not everyone knows that Microsoft is also offering hardware-based edge computing devices. One of the newer hybrid cloud computing technologies, the edge, is essentially a distributed computing model that brings compute power and data storage closer to the location where it is needed. While pretty much everybody knows that Microsoft is one of the main cloud providers with Azure, not everyone knows that Microsoft is also offering hardware-based edge computing devices. One of the newer hybrid cloud computing technologies, the edge, is essentially a distributed computing model that brings compute power and data storage closer to the location where it is needed. This typically is done using one or more on-premise devices on the frontend that connect to various cloud services on the backend. The goals of edge computing are to improve local response times by providing local processing power and to save bandwidth by preprocessing the data locally and then only sending a curated subset of that data across the Internet to the target cloud services. Typical Edge Computing Scenarios Today edge devices are often deployed to support Internet of Things (IoT), Businesses Intelligence (BI) and Big Data applications. With IoT, BI and Big Data applications data can be collected from various intelligent devices and then the edge device can aggregate and/or modify the data doing things like removing invalid and duplicate data as well as possibility removing personal data. This enables the device to subset data, optimizing storage and bandwidth utilization. Using the edge can enable businesses to use local processing power to get quick results that can be acted on before the data is sent to the cloud and then reduce the overall data transmitted to the cloud. Microsoft’s Azure Stack Edge Microsoft’s latest offering in the edge computing space... --- ### Petri Dish: From Quirky to Cohesive, The Journey of Office 365 in 2019 with Quadrotech - Published: 2019-11-13 - Modified: 2019-11-13 - URL: https://petri.com/from-quirky-to-cohesive-the-journey-of-office-365-in-2019-with-quadrotech/ - Categories: Petri Dish - Tags: Ignite 2019, Petri Dish, Quadrotech - Article Type: Interview At Ignite 2019, we sat down (or stood up) with Quadrotech to talk about their solutions for simplifying the management of Office 365 and how the productivity suite has evolved in 2019. At Ignite 2019, we sat down (or stood up) with Quadrotech to talk about their solutions for simplifying the management of Office 365 and how the productivity suite has evolved in 2019. You can learn more about Quadrotech, here. https://www. youtube. com/watch? v=yxHp78uj8X0 --- ### Petri Dish: A Solution to Simplify Signature Management Across Your Company - Published: 2019-11-13 - Modified: 2019-11-13 - URL: https://petri.com/a-solution-to-simplify-signature-management-across-your-company/ - Categories: Petri Dish - Tags: CodeTwo, Ignite 2019, Petri Dish - Article Type: Interview At Ignite 2019, we sat down with CodeTwo to talk about their solutions for simplifying the process of managing email signatures across your entire company. At Ignite 2019, we sat down with CodeTwo to talk about their solutions for simplifying the process of managing email signatures across your entire company. You can learn more about CodeTwo, here. https://www. youtube. com/watch? v=KHj1ow7x7lI --- ### Windows 10 November Update Is here, This is What’s in it for the Enterprise - Published: 2019-11-13 - Modified: 2024-11-19 - URL: https://petri.com/windows-10-november-update-is-here-this-is-whats-in-it-for-the-enterprise/ - Categories: Windows 10, Windows Client OS - Tags: 1909, November Update, Windows 10 - Article Type: News This week, Microsoft made available the next update for Windows 10. The bits, known by several names including November update, 1909, or 19H2, can be installed via Windows update starting today. This week, Microsoft made available the next update for Windows 10. The bits, known by several names including November update, 1909, or 19H2, can be installed via Windows update starting today. But unlike past releases, this update does not feature a large number of updates. In fact, it will only take about 10 minutes to install and that includes searching, downloading, and restarting. On three machines, it took 10 minutes or less to upgrade my OS. But there are a couple of notable features that corporate customers may be interested in and I have included them below: Windows containers require a matched host and container version. This restricts customers and limits Windows containers from supporting mixed-version container pod scenarios This update includes 5 fixes to address this and allow the host to run down-level containers on up-level for process (Argon) isolation. A fix to allow OEMs to reduce the inking latency based on the hardware capabilities of their devices rather than being stuck with latency selected on typical hardware configuration by the OS. Key-rolling or Key-rotation feature enables secure rolling of Recovery passwords on MDM managed AAD devices upon on-demand request from Microsoft Intune/MDM tools or upon every time recovery password is used to unlock the BitLocker protected drive. This feature will help prevent accidental recovery password disclosure as part of manual BitLocker drive unlock by users. A change to enable third-party digital assistants to voice activate above the Lock screen. You can now quickly create an event... --- ### Petri Dish: Diving into Migrating to Azure and Backing up Office 365 with Veeam - Published: 2019-11-12 - Modified: 2019-11-12 - URL: https://petri.com/diving-into-migrating-to-azure-and-backing-up-office-365-with-veeam/ - Categories: Petri Dish - Tags: Ignite 2019, Petri Dish - Article Type: Interview At Ignite 2019, we sat down with Veeam to talk about their solutions for backing up your Office data as well as migrating to Microsoft Azure. At Ignite 2019, we sat down with Veeam to talk about their solutions for backing up your Office data as well as migrating to Microsoft Azure. You can learn more about Veeam, here. https://www. youtube. com/watch? v=2702x2leJKY --- ### Petri Dish: A Solution to Replacing Unified Messaging in Exchange - Published: 2019-11-12 - Modified: 2019-11-12 - URL: https://petri.com/a-solution-to-replacing-unified-messaging-in-exchange/ - Categories: Petri Dish - Tags: Ignite 2019, Petri Dish - Article Type: Interview At Ignite 2019, we sat down with Xmedius to talk about their solutions for replacing unified messaging and how it can link into your PBX. At Ignite 2019, we sat down with Xmedius to talk about their solutions for replacing unified messaging and how it can link into your PBX. You can learn more about XMedius, here. https://www. youtube. com/watch? v=MV9zxuOidUw   --- ### Petri Dish: Finding An Easier Way to Manage Your Azure Services with Serverless360 - Published: 2019-11-12 - Modified: 2019-11-12 - URL: https://petri.com/finding-an-easier-way-to-manage-your-azure-services-with-serverless360/ - Categories: Petri Dish - Tags: Ignite 2019, Petri Dish - Article Type: Overview At Ignite 2019, we sat down with Serverless360 to talk about their solutions for making it easier to manage your Azure services. At Ignite 2019, we sat down with Serverless360 to talk about their solutions for making it easier to manage your Azure services. You can learn more about Serverless 360, here. https://www. youtube. com/watch? v=0n2-yeVsSho --- ### Petri Dish: How Private Channels Brings New Security to Teams - Published: 2019-11-12 - Modified: 2019-11-12 - URL: https://petri.com/how-private-channels-brings-new-security-to-teams/ - Categories: Petri Dish - Tags: Ignite 2019 At Ignite 2019, we sat down with AvePoint to talk about new features that were announced for Teams and how they can enhance your security. At Ignite 2019, we sat down with AvePoint to talk about new features that were announced for Teams and how they can enhance your security. You can learn more about AvePoint, here. https://www. youtube. com/watch? v=wKk_TvOQ1aw   --- ### Petri Dish: Taking a Look at Migration Trends with AvePoint - Published: 2019-11-12 - Modified: 2019-11-12 - URL: https://petri.com/taking-a-look-at-migration-trends-with-avepoint/ - Categories: Petri Dish - Tags: Ignite 2019, Petri Dish - Article Type: Overview At Ignite 2019, we sat down with AvePoint to talk about migration trends and what it takes to help your customers succeed. At Ignite 2019, we sat down with AvePoint to talk about migration trends and what it takes to help your customers succeed. You can learn more about AvePoint, here. https://www. youtube. com/watch? v=y03FfWwXqzU --- ### Managing Teams Private Channels > Everyone got very excited when Microsoft introduced private channels for Teams. Which is nice. The hard work of understanding the technology and managing its introduction now begins. - Published: 2019-11-12 - Modified: 2024-09-04 - URL: https://petri.com/managing-teams-private-channels/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Management, Private channels, SharePoint Online, Teams policies, Teams Private channels - Article Type: News Everyone got very excited when Microsoft introduced private channels for Teams. Which is nice. The hard work of understanding the technology and managing its introduction now begins, so in this article we look at how to control the creation of private channels and what to do once private channels are out there in use. Some planning is always good, and mastering private channels will take preparation. Let's begin! Use the Right Team/Channel at the Right Time When I introduced Teams private channels, I said that it's possible these channels will reduce the need to create a new team to protect information. That's absolutely true, but Office 365 tenant administrators need to understand how to manage private channels before they can decide how best to use private channels in their organization. My goal in this article is to describe how private channels are created and how to control those channels during their subsequent lifecycle. Controlling the Creation of Private Channels By default, any team member can create a private channel. The person who creates a private channel becomes its owner. It’s a good idea to have at least two owners for a private channel because channel owners control membership. Remember, a team owner can only see that a private channel exists; they have no control over the settings and members of the channel. This creates some interesting scenarios, such as when a team owner receives a notification that a team is about to expire and will soon be deleted. Although they can see the timestamp for the last activity in a private channel (use Manage team and select the Channels tab), the team owner might not know if the private channels in the team are still active and needed because they have no access to the channel conversations or site (unless they ask the channel owners). The update to the group expiration policy to become activity-based instead... --- ### Petri Dish: Talking Secured Remote Collaboration with Managed Methods - Published: 2019-11-11 - Modified: 2019-11-11 - URL: https://petri.com/talking-secured-remote-collaboration-with-managed-methods/ - Categories: Petri Dish - Tags: Ignite 2019, Managed Methods, Petri Dish - Article Type: Opinion At Ignite 2019, we sat down with Managed Methods to talk about how they are securing your cloud operations so that you can focus on working and not securing. At Ignite 2019, we sat down with Managed Methods to talk about how they are securing your cloud operations so that you can focus on working and not securing. You can learn more about Managed Methods and their solutions, here. https://www. youtube. com/watch? v=vzoQVnp_hJU --- ### Petri Dish: Lowering the Barrier to Privileged Access Management with Devolutions - Published: 2019-11-11 - Modified: 2019-11-11 - URL: https://petri.com/lowering-the-barrier-to-privileged-access-management-with-devolutions/ - Categories: Petri Dish - Tags: Devolutions, Ignite 2019, PAM, Petri Dish, Privileged Access Management - Article Type: Overview At Ignite 2019, we sat down with Devolutions to learn what's new with their solutions and how they are lowering the entry barrier for SMBs who are looking for a PAM solution. At Ignite 2019, we sat down with Devolutions to learn what's new with their solutions and how they are lowering the entry barrier for SMBs who are looking for a PAM solution. You can learn more about Devolutions and their PAM offering here. https://www. youtube. com/watch? v=QNobZRcWwsA --- ### Microsoft Azure and Intune Management Portal Gets A Makeover - Published: 2019-11-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-and-intune-management-portal-gets-a-makeover/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft 365, Microsoft Intune, Mobile Device Management - Article Type: News Microsoft has updated both the Azure and Intune management portals for a cleaner look and better user experience. Microsoft frequently updates the Azure management portal with small changes to improve the user experience. But recently, there was a more major update that dramatically changes the portal’s look and feel. Instead of seeing the dashboard and portal menu expanded as the default experience when you open the portal, now you have the option to see a list of services - or ‘home’ as Microsoft refers to it - with the portal menu docked. Microsoft Azure and Intune Management Portals Get Makeover (Image Credit: Russell Smith) The home screen lets you add and search for resources and services, it lists resources that you’ve recently accessed, and it provides links to tools, resource groups, and subscriptions. The portal menu can be accessed using the hamburger menu in the top-left of the management portal window, where you can also switch to your dashboard. You can revert to the old-style portal by changing the Choose your default view and Choose your default mode for the portal menu options in the Settings panel, which is accessible from the dropdown menu in the top-right of the Azure portal window. Microsoft Azure and Intune Management Portals Get Makeover (Image Credit: Russell Smith) Not everyone is a fan of Microsoft’s Azure management portal. But regardless of whether you like the configuration panels, these changes are welcome because dashboards are only useful if you customize them. Often, they look an unholy mess without some care and attention, and... --- ### Paul Thurrott's Short Takes: Ignite 2019 Special Edition - Published: 2019-11-08 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-ignite-2019-special-edition/ - Categories: Artificial Intelligence, Cloud Computing, Hybrid Cloud, Microsoft 365, Microsoft Azure, Microsoft Teams, Mobile, Outlook, PowerApps, PowerBI, Windows 10, Windows 7 - Tags: News - Article Type: Opinion Because this is the best reason to go to Florida, this special edition of Short Takes looks at the biggest announcements from Microsoft Ignite 2019. Mary Jo Foley, Brad Sams, Paul Thurrott Because this is the best reason to go to Florida, this special edition of Short Takes looks at the biggest announcements from Microsoft Ignite 2019. Note: This article is only a wrap-up. Be sure to check out the extensive coverage of Ignite 2019 here at Petri. com, at Mary Jo Foley’s All About Microsoft, and at Thurrott. com. We had some serious boots on the ground action at this year’s show and it was a real team effort. –Paul Satya Nadella grows into the role I’ve always had mixed feelings about Satya Nadella’s speaking style, but it’s clear to me now that Microsoft has finally adapted its event presentation style to match Nadella’s strengths. And that his Ignite 2019 address---the unfortunately named “Vision Keynote”---was his best yet. Rather than just stand on a big stage in front of a big audience, Nadella addressed the show from the show itself: the stage was literally set at the end of the conference hall. And it wasn’t so much a stage as it was a set of stages, each of which provided some experience that another Microsoft executive or partner could use to provide a deeper dive. Watching Nadella stride between these experiences, I was struck by how natural it all seemed, and that is not my impression of most previous speeches. It was really well done. “How Microsoft is trying to become more innovative” By ... innovating more? About that new... --- ### How to Install Web Apps in Microsoft’s New Chromium-Based Edge Browser - Published: 2019-11-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-web-apps-in-microsofts-new-chromium-based-edge-browser/ - Categories: Windows 10 - Tags: Microsoft Edge, Progressive Web Apps, Windows 10 - Article Type: How To One of the best new features of Microsoft’s new Chromium-Based Edge browser is that it allows you to install Progressive Web Apps (PWA), or any website, as apps that behave like any other Windows program. The new and improved version of Microsoft’s Edge browser, which reached the beta milestone recently, is based on Chromium, the open source project Google uses for its Chrome browser. Google Chrome has long let users install web apps so that Progressive Web Apps (PWA) or websites can run independently in windows stripped of browser controls, menus, and address bar. This lets you work with web apps like other Windows programs; for instance, when you are switching apps using Task View or Alt-Tab. Progressive Web Apps are an industry effort to standardize web applications. Service Workers enable the apps to perform and feel more like native platform apps that can work offline and respond quickly, regardless of network latency. Standardization means that PWAs are truly multiplatform and Google requires developers to adopt PWA standards for Chrome apps. Microsoft Edge now sports the ability to install web apps. And there’s a certain level of integration with Windows 10, including accessing installed apps from the Start menu, pinning them to the taskbar, uninstalling them from the UI or browser, and toast notifications in the Action Center. Few PWAs have full offline support but many use offline PWA features to cache JavaScript and CSS for faster load times. For example, the Washington Post PWA works offline, although offline you can only view articles that you’ve previously accessed while online. And Twitter’s PWA UI elements work offline, but your feeds will be empty. Microsoft Edge lets you install any website as an app,... --- ### Exchange Online PowerShell Goes RESTful – But Only for Some Cmdlets > At Microsoft Ignite 2019, the Exchange product group announced the public preview of a set of REST-based PowerShell cmdlets designed to replace the oldest cmdlets in the Exchange set. - Published: 2019-11-07 - Modified: 2024-11-19 - URL: https://petri.com/exchange-online-powershell-goes-restful/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, Get-ExoMailbox, Get-ExoMailboxFolderStatistics, Get-ExoMailboxStatistics, Get-ExoRecipient, PowerShell, RESTful cmdlets - Article Type: News At Microsoft Ignite 2019, the Exchange product group announced the public preview of a set of REST-based PowerShell cmdlets to replace some of the most popular (and in performance terms, most painful) traditional cmdlets. The new cmdlets are more reliable and robust and run 2-4 times faster than the older Remote PowerShell-based cmdlets (your mileage will vary). All good stuff. Slow and Painful Moving to Faster and More Reliable Exchange 2010 introduced remote PowerShell (RPS) as the basis for Exchange server management. A decade later, we’re still using the same kind of technology to run cmdlets against Exchange cloud and on-premises servers. Remote PowerShell is OK for small to medium organizations, but it runs out of steam when exposed to the scale of the cloud. Scripts take hours to run, cmdlets sometimes fail to complete, and extensive error handling is needed to make sure that any session disconnects are handled properly. In short, Exchange Online PowerShell can be messy. New RESTful Cmdlets The good news is that Microsoft has a project to take a new approach to Exchange Online PowerShell.   Announced at the Microsoft Ignite 2019 conference in Orlando, Microsoft is building a set of new REST-based cmdlets that are much faster and more reliable. The new cmdlets are now available in a private preview with general availability expected in early 2020. The bad news is that only nine of the 700+ cmdlets in the Exchange Online PowerShell module have been upgraded to date. More are coming, but it takes time for the transition to complete. Microsoft chose the target cmdlets very deliberately. After analyzing the most popular (heavily used) cmdlets and the ones that experienced most problems at scale, Microsoft prioritized this set of RPS cmdlets as upgrade targets: Get-Mailbox. Get-CASMailbox. Get-Recipient. Get-RecipientPermission Get-MailboxPermission. . Get-MailboxFolderPermission. Get-MailboxStatistics. Get-MailboxFolderStatistics. Get-MobileDeviceStatistics. The REST-based version of these cmdlets are prefixes with Get-Exo, so... --- ### Windows and Active Directory at Microsoft Ignite 2019 - Published: 2019-11-06 - Modified: 2024-09-04 - URL: https://petri.com/windows-and-active-directory-at-microsoft-ignite-2019/ - Categories: Windows Server - Tags: #MSIgnite, Microsoft Edge, Microsoft Endpoint Management, Microsoft Intune, Mobile Device Management, System Center Configuration Manager, Windows 10, Windows Server - Article Type: News Microsoft announces a reimagined Performance Monitor, new Edge to debut in January 2020, FIDO security key support for hybrid Active Directory, new security features for Azure Active Directory, and Intune and SCCM combine forces to become Microsoft Endpoint Manager. The spotlight this year at Microsoft’s annual Ignite conference didn’t fall on Windows or Windows Server. But that’s to be expected as Microsoft has shifted its focus to Azure and other cloud services like Microsoft 365. And Windows 10 got its big announcement at the Surface event in New York recently where Microsoft unveiled Surface Neo, a dual-screen foldable device that will run a new SKU called Windows 10X. But Windows hasn’t been left out at this year’s conference and here are some noteworthy announcements for Windows IT professionals. Windows Admin Center Gets a Reimagined Performance Monitor Windows Admin Center (WAC) is where Microsoft is investing in new tooling for Windows Server. Not only does it for the first time provide Server Core with a GUI, but WAC will eventually replace the management consoles bundled with the desktop experience in Windows Server; many of which haven’t seen significant improvements in almost 20 years. For more information on WAC and Windows Server Core, see Windows Server 2019 Release Sees Server Core Adoption Soar on Petri. As part of Windows Admin Center 1910, which you can get from Microsoft’s website for free here, and after Performance Monitor first debuted in Windows in 1993, Microsoft announced a preview of its reimagined Performance Monitor tool. The new monitor has a modern, clean layout that’s available in both light and dark mode. You can get started easily by choosing an object, instance, and then counter from a series of boxes along the top... --- ### Talking Tenant Security with CoreView - Published: 2019-11-06 - Modified: 2019-11-06 - URL: https://petri.com/talking-tenant-security-with-coreview/ - Categories: Microsoft 365 - Tags: Ignite 2019 - Article Type: Overview Petri is at Ignite 2019 where we are talking with CoreView about their solutions that makes managing Office 365, easier. Petri is at Ignite 2019 where we are talking with CoreView about their solutions that makes managing Office 365, easier. You can learn more about CoreView, here. https://www. youtube. com/watch? v=ROHE_1yMYS4 --- ### Introducing Teams Private Channels > Microsoft launched private channels for Teams at the Ignite conference. This article describes the architecture and structure of private channels and discusses their intended usage. - Published: 2019-11-05 - Modified: 2024-11-19 - URL: https://petri.com/teams-private-channels/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Private channels, SharePoint Online, Teams, Teams Private channels - Article Type: News Microsoft launched private channels for Teams at the Ignite conference. This article describes the architecture and structure of private channels and discusses their intended usage. In a follow-up, I'll go into how to create and manage private channels in a Teams deployment and discuss some of the issues you should consider when using this new feature. Microsoft Responds to #1 User Demand for Teams Support for private channels is easily the top-rated request in Teams User Voice. Responding in part to a perceived competitive advantage for Slack, Microsoft announced at the Microsoft Ignite conference that they are deploying support for private channels to Office 365 tenants worldwide. The deployment is expected to reach all tenants by the end of November 2019. This article describes the basic architecture of private channels. In a follow-up, I'll take you through how private channels are created and managed. A private channel is a restricted part of a team that’s only available to a nominated subset of team members. In a way, it’s a strange notion for Teams because the product is all about open communications, but it’s an undeniable fact that many scenarios exist when you want to limit access to some information within an otherwise open team. Microsoft calls this “focused private collaboration with a subset of team members. ” Apart from anything else, private channels might help tenants avoid the need to create additional teams to isolate information to a subset of users. Limiting Access to Specific Members Take mergers and acquisitions for example. It’s common to set up a group of people from the companies involved, including professional advisors, to work the issues involved in these deals. Creating a team to host discussions about the project is a good way to foster collaboration, but it’s the nature of this activity that not everyone needs to know... --- ### Surface Pro X Review: A Classic Look For The New Mobile Worker - Published: 2019-11-05 - Modified: 2024-09-04 - URL: https://petri.com/surface-pro-x-review-a-classic-look-for-the-new-mobile-worker/ - Categories: Hardware - Tags: Microsoft, News, review, Surface Pro X - Article Type: Opinion Microsoft's newest Surface device, the Surface Pro X, may look familiar on the outside but inside its brand new from the ground up. But with a new chip, new version of Windows, and a new form factor is it ready for the first-line worker or should you wait for a revision first? In the world of Microsoft, the third time is usually the charm. With the Surface brand, the Pro 3 is what established the product-line and opened the door to the hardware that we see and use today. With the evolution of Windows, the third attempt at creating a new experience that looks like classic Windows but is fundamentally different behind the scenes may be the iteration that finally sticks. If you take a look back, we had the Surface RT that ran on an ARM processor and we also had Windows 10 S mode that tried to push a locked-down version of Windows that was safer and faster, but neither of this versions of Windows caught on in any meaningful way. But launching this week is the brand-new Surface Pro X and for the mobile workforce, the future may finally be ARM. The Pro x is a new device with a new CPU (an ARM chip made by Qualcomm known as the SQ1) and it is packaged inside a refreshed Surface Pro form-factor that may look like a Surface Pro 6 in spirit, but it is all new hardware from the internals out. If the actual PC wasn’t new enough, the Type cover has a new design, there is a new pen, and this is a mobile PC at heart with LTE from day one. With previous Surface hardware, we had to wait up to six months to get an LTE version but the Pro X has the functionality built-in... --- ### Key Office 365 News from the Microsoft Ignite Conference 2019 > Microsoft made a ton of Office 365-related announcements at their Ignite conference in Orlando. Here's a summary of the key news for SharePoint, Exchange, Stream, Teams, Yammer, and Outlook. - Published: 2019-11-04 - Modified: 2024-11-19 - URL: https://petri.com/key-office-365-news-microsoft-ignite-conference-2019/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online, Yammer - Tags: Exchange Online, Microsoft Ignite 2019, Project Cortex, SharePoint Online, Stream, Teams, Yammer - Article Type: News Microsoft made a ton of Office 365-related announcements at their Ignite conference in Orlando. Here's a summary of the key news for SharePoint, Exchange, Stream, Teams, Yammer, and Outlook. More information will emerge during the week, so stay tuned for more coverage as news emerges. Satya Nadella meets his alien counterpart Announcements Everywhere Microsoft treats its Ignite Conference as an opportunity to release a ton of announcements. Orlando 2019 was no different. Here’s my pick of what we know so far from the Monday keynotes and other sessions. Keep your eyes peeled for more information as it is released during the deep-dive conference sessions over the remainder of the week. And when you read the announcements, be careful to divide them into functionality that you might see in your Office 365 tenant by the end of 2019 and the more aspirational stuff that will take longer. Teams Teams is on a fast track at present and several important announcements were made, starting with the immediate availability of Private Channels (the #1 voted request in User Voice). Private Channels are designed to allow secure access to conversations, documents, and apps for a subset of a team’s membership. Microsoft’s most contentious decision is the choice to use a separate SharePoint site to hold private channel documents, justified by the assertion that this is the only way to ensure that other team members can’t access information in the private channel. Look forward to a long-form article on the topic soon. Also on the Teams front, Microsoft says that Teams will collaborate with To Do to create a new Tasks app that combines data from Outlook, To Do, and Teams in one consistent experience. Expect the new app to show up in early 2020. Teams... --- ### Microsoft’s New Excel Feature Will Automate All Your Redundant Tasks - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-excel-feature-will-automate-all-your-redundant-tasks/ - Categories: Microsoft 365, Office - Tags: Automate, Excel, Ignite 2019, Microsoft, News - Article Type: News Microsoft has a new scripting feature for Excel and it's going to make automating redundant tasks significantly easier. It has been a big year for Excel, first Microsoft introduced xLookup and now the company is bringing another new, and long overdue, feature to the spreadsheet application. Microsoft announced at Ignite 2019 that scripting support is coming to the application. But this isn’t a text-heavy, syntax specific, scripting, this feature allows you to record your actions and turn them into a script. This script can then be integrated with Power Automate and be scheduled to run automatically or integrated with a larger flow. For those that live in spreadsheets but never quite figured out how to write their own macros, this feature is going to make your tasks significantly easier. For example, if you have a weekly or month-end report that always needs to be transposed or formatted a certain way, with this new scripting feature, you can record the steps, play it back when the next week or monthly report arrives, and save yourself a lot of time. While Microsoft has added many features to its productivity suite over the years, this may be one of my favorite additions. Not only is it going to save a lot of time but it will be easy enough to use that everyone from power users to novices can gain value from the function. Unfortunately, you can’t quite get your hands on the tool yet. The feature will arrive in public preview later this year but thankfully, that’s less than two months away. --- ### Microsoft’s Next Big Leap for Azure is Quantum - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-next-big-leap-for-azure-is-quantum/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Ignite 2019, Microsoft, News, Quantum - Article Type: News Microsoft will soon begin a private preview of quantum solutions running in Azure which the company sees as the next big step for its cloud computing platform. If you have been living the on-premises life and haven't managed to connect to the Internet in the past decade, you would have missed Microsoft’s titanic shift to cloud computing. The company is building data centers all around the globe and is using large quantities of compute to build out new products and services, including artificial intelligence. At Ignite 2019, the company demonstrated how its AI tools are being infused into many different products from Office 365 to search but the company also started talking about where Azure is headed next. Azure Quantum is the next big leap for Azure and the company says the service will be entering private preview in the coming months. Using a familiar interface for Azure customers, these users will be able to discover the impact that Quantum will have on their business. At this time, Microsoft is still talking at a high level and isn’t providing too many details, yet. But, based on what they have shared, customers will soon better understand how Azure Quantum can improve their workflows. The goal is to show that Quantum can significantly improve the speed of certain workloads. We are still in the very early days of quantum computing but nearly every single large technology company is researching what is expected to be the next significant shift for classical computing. Microsoft is not the first to try and commercialize quantum computing with others already offering solutions today. That being said, the road to quantum commercialization will be a... --- ### Microsoft 365’s Next Security Target is the Malicious Insider - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365s-next-security-target-is-the-malicious-insider/ - Categories: Microsoft 365, Security - Tags: Microsoft 365, News, Security - Article Type: News Microsoft 365 is gaining new security features that can make it easier to identify malicious insiders at your organization. When we look at the security profile of a company, the first vector analyzed is often the outside threat. After all, it’s much easier to attack a firewall than it is to gain physical access to a building or a server. But threats can come from anywhere, including inside your organization. Insider threats are not new and have been part of the security conversation for decades but today at Ignite 2019, Microsoft has announced a new security feature for Microsoft 365. Called ‘Insider Risk Management’, this new tool is designed to identify hidden patterns that traditional insider threat models may overlook. The solution can leverage data across the Microsoft graph and third-party systems, like HR software, to identify the signals of an insider threat. The system takes it one step further by anonymizing the data as well. That way, the person investigating the threat will not initially know the name of the potential bad actor which can help avoid conflict issues if the person is a co-worker or supervisor. Of course, the name can easily be unmasked as well but by default, the name of the person is hidden. Insider threats can be significantly more harmful than an outsider as they have already passed the first layer of security for your organization. While there are certainly more outside threats than insider threats, those inside the organization have a much higher probability of inflicting harm than those still outside the firewall. Insider Risk Management is entering private preview at Ignite 2019... --- ### Microsoft's Bringing new Features to Microsoft 365 Search - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-new-features-to-microsoft-365-search/ - Categories: Microsoft 365 - Tags: Ignite 2019, Microsoft 365, News, Search - Article Type: News One of the themes that has been coming out of Microsoft the past couple of years is breaking down application silos to improve productivity and discoverability. One of the features that highlight this initiative is Microsoft Search. One of the themes that have been coming out of Microsoft the past couple of years is breaking down application silos to improve productivity and discoverability. One of the tools that highlight this initiative is Microsoft Search. At Ignite 2019, the company is announcing a wide variety of features that are now generally available, as well as new features that are entering private preview. Generally available at Ignite: People search with attributes. This makes it easy for people to query a name, title, or other individual attributes for that person, such as building locations and more, without knowing their entire name and correct spelling. This experience is available across Microsoft 365 and Microsoft Search in Bing. Acronym search. These results are mined using AI as well as being editorially generated. Users will be able to view acronyms that currently live in their email, SharePoint, OneDrive, and publicly shared documents within their company. This experience is available across Microsoft 365 and Microsoft Search in Bing. Floorplan search. Floorplan search allows you to pinpoint a person’s office location or search across building maps. This experience is available across Microsoft 365 and Microsoft Search in Bing. Bing mobile (iOS & Android). Enables organizations to sign into the Bing mobile app with the Azure AD credentials and discover content within Microsoft 365. Available through private preview at Ignite: Find expertise in your organization based on individual skills derived from insights available in the Microsoft Graph. User profiles are generally out of date and do... --- ### Microsoft Enhances PowerApps with new features, Introduces New Power Automate Name - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-enhances-powerapps-with-new-features-introduces-new-power-automate-name/ - Categories: PowerApps - Tags: Ignite 2019, Microsoft, Power Automate, Powerapps - Article Type: News Microsoft announced a number of updates to the PowerApps service, including that the company is rebranding the platform. Today during the keynote there was one overarching theme I heard. Power Platform continues to grow in its power. (Yes, I am a dork) If you are not familiar with Power Platform that is the name that Microsoft gives to the combination of Power BI, PowerApps, and Microsoft Flow. This toolset allows you to build better business solutions no matter who “you” are. The idea of Power Platform is you can analyze with Power BI, act with PowerApps and automate with Flow without ever writing a single line of code. Pretty darn cool. So now we all know what is Power Platform lets talk about the major announcements and put them in context. Microsoft Flow is renamed to Power Automate... kind of I am going to explain this differently than it was in the keynote. The name Microsoft Flow, with the implication that was short for workflow, has always undersold the tool. Yes, it is great at robust workflows and is the replacement for SharePoint Designer workflows in SharePoint Online, but it can do more. It can be an automation tool, an ETL tool, a data connector, etc. As Microsoft continues to add to its capability the name Flow didn’t make sense. Also, it felt left out as the other tools all had Power in their names. So now we get the name Power Automate which feels more correct. Though, what I think many people will find weird is you still use Power Automate to create flows (lower... --- ### Microsoft’s Project Cortex Builds A Custom Knowledge Graph for Your Company - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-project-cortex-builds-a-custom-knowledge-graph-for-your-company/ - Categories: Microsoft 365 - Tags: Ignite 2019, Microsoft, News, Project Cortex - Article Type: News Microsoft's Project Cortex is a new service from the company that will organize, surface, and share valuable data across your environment. The productivity suite is rapidly evolving. What was once thought of as a word pressor, a spreadsheet tool, and a presentation application is turning into a big data challenge as some tools become easy to replicate while others are only possible with vast quantities of compute and sample data. Microsoft’s Office 365 platform continues to evolve and while Office 365 is not going away, the new king in the company’s portfolio is quickly becoming Microsoft 365. And at Ignite 2019, Microsoft is announcing a new commercial service which is the first since Teams was announced several years ago. Currently called Project Cortex and it is entering private preview, the service brings AI to the vast quantities of data that companies are storing within Microsoft 365. Using this data, along with the new AI-service, Microsoft is able to automatically organize it into shared topics like projects and customers. This may sound like a lot of marketing mumbo-jumbo because it is. But what the service does is unlock all the knowledge that a company stores about a topic/client/project, inside of documents, and then surfaces them in a way that is useful to the end-user. Rather than having to open fifteen-word documents to find the relevant information about a client for a future proposal, Project Cortex is able to surface, organize, and deliver that information for you. Building on the content that is stored in SharePoint, Cortex extends to internal and external systems to capture the relevant data. This isn’t the first time... --- ### Microsoft’s New Browser Ships in January with New Icon and More Privacy - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-browser-ships-in-january-with-new-icon-and-more-privacy/ - Categories: Windows 10, Windows 7, Windows 8, Windows Client OS - Tags: Edge, Ignite 2019, Microsoft, News - Article Type: News Microsoft's new Edge browser is nearly complete and the company is introducing a new icon and privacy features with the impeding release. Late last year, Microsoft made the big announcement that the company would be dropping its own rendering engine for the Google-derived Chromium platform. For the better part of 2019, Microsoft has been testing the new version of Edge and it’s nearly ready for wider distribution. Announced at Ignite 2019, Microsoft is expecting the new browser to reach general availability in January and it will feature a new icon as well (shown right). The browser has graduated to the release candidate level of stability, which is available now, and it is nearly ready for both consumers and the enterprise. A new feature coming to the browser is an enhanced version of InPrivate browsing. When you use this privacy tool to browse the web and search with Bing while InPrivate, your search history and personally identifiable data will not be saved nor be associated back to you. Microsoft is also taking a new approach with this version of Edge for servicing. It is no longer tied to Windows 10 updates and will be updated as its own entity. Further, this version of Edge will work everywhere including Windows 7, 8. 1, MacOS, Android and iOS. Because it’s based on Chromium, compatibility across the web is the same as Chrome. Microsoft is betting that by building features that differentiate the browser, rather than chasing down compatibility issues with the old version of Edge, the company can claw back market share from Chrome and FireFox. Another interesting observation is that with the new logo, Microsoft... --- ### Microsoft Rebuilds Yammer, Adds New Features and Fluent - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-rebuilds-yammer-adds-new-features-and-fluent/ - Categories: Microsoft 365, Office - Tags: Ignite 2019, Microsoft, News, Yammer - Article Type: News Microsoft is rebuilding Yammer with an updated interface and new features but you can't get your hands on it for a few more weeks. It wasn’t long after the announcement of Teams that whispers began dancing around that it could be replacing Yammer. The communication tool that Microsoft purchased back in 2012 for over a billion dollars is being rebuilt, from the ground up, and it is introducing new functionality. Yammer is the company corkboard, it’s where an employee can communicate freely across the org charts and management can share content globally. The application is being updated with improved Microsoft 365 integration as well as embracing the Fluent Design System. With the updated design, there are new features like personalized conversation feed that uses the company’s AI to connect you to relevant conversations across the company. Each community can now have their own identity with branding and cover photos while communicators can highlight conversations with pinned posts, and close discussions to prevent replies. In addition, leaders can broadcast live / on-demand events with a new, simpler production option using webcams and desktop sharing. You can also share experiences and messages with short videos posted directly from the Yammer mobile app. And on the governance side of the coin, there is improved integration within the Microsoft 365 admin center to make sure sensitive data doesn’t end up in the wrong place. All of these feature updates and the complete re-design of the application should cement Microsoft’s long-term support for the application. The company views Yammer as a key component of the Office 365 suite and with the major update being announced at Ignite, companies can... --- ### Microsoft Enhances Cortana with Briefings and Scheduler Support - Published: 2019-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-enhances-cortana-with-briefings-and-scheduler-support/ - Categories: Microsoft 365, Office - Tags: Cortana, Ignite 2019, News, Office 365 - Article Type: News Microsoft’s digital assistant may not always be at the front of the digital-AI conversations but the company is adding new features to the platform at Ignite 2019. Announced today, are new briefing emails and scheduler functionality. Microsoft’s digital assistant may not always be at the front of the digital-AI conversations but the company is adding new features to the platform at Ignite 2019. Announced today, are new briefing emails and scheduler functionality. Cortana can now send daily, heads-up emails that help you prepare for meetings, stay on top of tasks, and manage your time. Cortana can detail your tasks—based on commitments you have made in previous emails— and provide a convenient way to mark them as “done” or book focus time. Further, Cortana can seamlessly coordinate and schedule meetings with Scheduler, now available in preview. With natural language and artificial intelligence, the service can look at calendars, find or propose available times, and manage meeting details—all to help you save time and be more productive. At this time, Scheduler is only available to commercial Microsoft 365 users and during the preview period, the functionality is compatible with MSA and Google calendars. These types of add-ons for Cortana is the natural home for the digital assistant. While the consumer version of Cortana has not caught on like Alexa or Google Assistant, in the commercial space, Microsoft has a natural advantage with Office 365. As long as Microsoft maintains its position as the center of the productive workforce, Cortana will tag along as a digital-assistant that can connect the dots behind the scenes to add value to the productivity suite. --- ### Watch Microsoft's Ignite Keynote Live with Commentary by Mary Jo Foley and Paul Thurrott - Published: 2019-11-03 - Modified: 2019-11-03 - URL: https://petri.com/watch-microsofts-ignite-keynote-live-and-commentary-by-mary-jo-foley-and-paul-thurrott/ - Categories: Main - Tags: Ignite 2019, Microsoft - Article Type: Interview This week, Microsoft is hosting its largest IT Pro conference of the year in Orlando, Florida. If you are not able to attend but still want to watch the keynotes, you can find the live stream after the jump. This week, Microsoft is hosting its largest IT Pro conference of the year in Orlando, Florida. If you are not able to attend but still want to watch the keynotes, you can find the live stream below. Directly following the keynote, Petri's own Paul Thurrott and Mary Jo Foley will be providing analysis of the event. And of course, make sure to check back on Petri. com frequently as we will be covering everything from the key announcements to what's happening on the show floor too.  --- ### Everything You Need to Know About Azure Infrastructure – October 2019 - Published: 2019-11-02 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-october-2019/ - Categories: Compliance, Microsoft Azure, Security - Tags: Azure Files, Azure Site Recovery, Azure. Security, Blob Storage, Cost Management, encryption, Guest OS, Managed Disks, Microsoft Ignite, networking, Premium File Shares, SAP, Storage Accounts, virtual machines - Article Type: Overview As we head towards Ignite, October had a bunch of Azure announcements but there will be even more next month. Greetings from Orlando! I have been here for two weeks on vacation with my family, enjoying the parks and the pool in the unusually high heat for October. And next week I will be attending Microsoft Ignite, absorbing all the new Azure goodness to come. Until then, let’s focus on the Azure goodness from October. Direct Upload as Managed Disks Microsoft recently published a post called Introducing the preview of direct-upload to Azure managed disks. The description of what this new preview is was a little confusing – not helped by the Microsoft-written title – so I thought that I would give a better explanation here. We have several ways that we can migrate Hyper-V virtual hard disks to Azure, including a few from Microsoft and other offerings from third-party migration/backup vendors. One of the simplest (with the most downtime) options was to just upload a virtual hard disk as a VDC in Blob storage, and then bring it online as an un-managed disk in Page Blob & Disk storage. That method leaves you with an un-managed disk – a format that Microsoft hasn’t improved in 2-3 years. If you want the current technology, managed disks, then you would have to upgrade the disk, which would require another step, or even two. The new preview feature allows you to upload the VHD as a managed disk resource, skipping the intermediate conversion steps. There are two things I want you to understand: This is not a feature to upload... --- ### Everything You Need to Know About Windows – October 2019 - Published: 2019-11-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-october-2019/ - Categories: Windows Client OS - Tags: Server Core, Windows 10, Windows 10X, Windows 7, Windows Admin Center, Windows Insider, Windows Server vNext, Your Phone - Article Type: News Windows 10X is coming to new foldable dual-screen devices and clamshell laptops, robots are invading Windows 10, all businesses can buy Windows 7 Extended Security Updates starting December 1st, and Server Core is now in fashion thanks to Windows Admin Center. The big news this month is a new Windows 10 SKU that will come preinstalled on new hardware from Microsoft and its partners starting fall 2020. Windows 10X At a Surface event in New York earlier this month, Microsoft announced two new foldable devices, one of which will run a new version of Windows called Windows 10X. The Surface Neo is a dual-screen device that Microsoft says will be followed by similar hardware from partners like ASUS, Dell, HP, and Lenovo, also all running Windows 10X. Windows 10X is designed to support dual-screen foldable devices but there are several other features that differentiate it from Windows 10. The first, and most important, is that Microsoft has abstracted the Win32 subsystem and legacy desktop apps will run in containers. Publicly, Microsoft is saying that Windows 10X is optimized for progressive web apps (PWA) and UWP Store apps but what it really means is that legacy desktop apps will just work slower because of the additional overhead of containerization. Hopefully, the performance hit won’t be too significant. Windows 10X allows Microsoft to challenge light-computing leader Chrome OS while still providing backwards compatibility for legacy desktop apps; something most people expect from any OS with the Windows moniker. It will also be interesting to see whether Win32 apps that hook deep into the system kernel, like antimalware, are compatible with Windows 10X. I think it’s unlikely. But if that’s the case, it won’t be important for the target audience. [caption ... --- ### Everything You Need to Know About for Office 365 – October 2019 > Teams gets a better file experience, Microsoft Project gets rebooted, a plea to get you using FindTime and more. Check it out! - Published: 2019-11-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-for-office-365-october-2019/ - Categories: Microsoft 365 - Tags: FastTrack, FindTime, Microsoft SharePoint, Microsoft Teams, OneDrive, Power Platform - Article Type: News It's the month before Ignite and even though the company will announce lots of updates next week, October had a couple of surprises too. Not a bad month of updates. With Ignite next week, it is always interesting what Microsoft releases this month. Things that go out this month are so they can brag about the feature that has already been out, even if it was only a few days. They then usually tie into the new secret announcements during the keynote. I don’t know about you but I can’t wait to watch what they have coming. Remember during Ignite you can stream the keynote and other key sessions. More info here. Teams gets better at working with Files At this point, it shouldn’t be a secret that when you store files in Teams that really that is a SharePoint Document Library behind the scenes. So what Microsoft has done here is surfaced more of the SharePoint file management features through Teams. Features such as sync, check-in and out, hover cards, approvals and more. The idea is they want you to have the same files experience no matter how you interact with the files. You can work with the files from SharePoint, Teams, OneDrive, and Outlook all with a similar set of features. It makes a lot of sense and I love that they have standardized on one file management platform across the 365 ecosystem instead of one per product. It is kind of like they really want us all to live in Microsoft (Office) 365. There are more details and features available in the announcement. Microsoft acquired Mover Why? Because they... --- ### Surface Laptop 3 Review: Ordinary Can Be Okay Too - Published: 2019-10-31 - Modified: 2024-09-04 - URL: https://petri.com/surface-laptop-3-review-ordinary-can-be-okay-too/ - Categories: Hardware - Tags: Microsoft, Surface Laptop 3 - Article Type: Opinion Microsoft's larger Surface Laptop 3 is branching out to use an AMD chip but you may want the business version instead. For the past two weeks, I have been living on a laptop but not just any laptop, it’s Microsoft's first 15in Surface Laptop but more specifically, the first one that is using an AMD chip. This year, Microsoft diversified its lineup from Intel, having options with both Qualcomm and AMD added to the lineup but the first device to hit the market is AMD-powered Surface Laptop 3. The short version of the review is that the build quality is excellent, the black color is striking, performance is not optimal, and battery life leaves room to be desired. But for daily tasks, browsing the web, and running the Office suite it’s great, but don’t expect to edit photos or videos. There are two flavors of the Laptop 3, 13. 5in and the 15in. I have the 15in that uses an AMD Ryzen 5 ‘Surface Edition’ CPU with 16GB of RAM and is black but you can also get the laptop in Sandstone, Cobalt Blue, and Platinum. Depending on the color, some of them come with Alcantara on the keyboard deck, while others, like the black one that I have, it's all metal. Seeing as this is the third-generation laptop, there are not too many surprises here. The larger screen size offers a good choice for those who have a Surface Book 2 but don’t want the detachable display, and with both USB-A and C ports, the laptop makes it easier to bridge the USB transition period. The hallmark of the... --- ### How PowerShell Remoting Works in V7 - Published: 2019-10-31 - Modified: 2024-09-04 - URL: https://petri.com/how-powershell-remoting-works-in-v7/ - Categories: PowerShell - Tags: PowerShell, PowerShell V7, Remoting - Article Type: Overview PowerShell on its own is a robust and versatile language that can help you accomplish any task at hand. Combine it with the ability to run remotely on other computers and it becomes unparalleled as a scripting language PowerShell Remoting in V7 PowerShell on its own is a robust and versatile language that can help you accomplish any task at hand. Combine it with the ability to run remotely on other computers and it becomes unparalleled as a scripting language. If you are wondering how PowerShell remoting works in version 7 – the latest release from Microsoft – you’re not alone. In this article you will dive into how PowerShell remoting works and the different ways it can be utilized, wrapping up with a couple of ways to troubleshoot your PowerShell remote sessions. How PowerShell Remoting Works in V7 PowerShell utilizes the Windows Remote Management (WinRM) Framework behind the scenes to deliver the remoting feature. WinRM may sound familiar since it is also the management framework that powers PowerShell Desired State Configuration (DSC) and Windows Management Instrumentation (WMI). As a result of using WinRM, PowerShell remoting operates over WinRM’s default ports of TCP 5985 and 5986 for HTTP and HTTPS communications, respectively. In order to get started using PowerShell Remoting, there are a couple of prerequisites you’ll need to be conscious of before you get too far. System Requirements In order to use PowerShell Remoting, the following must be in place on the local and on the remote computer: PowerShell version 3. 0 or later Microsoft . NET Framework 4 or later Windows Remote Management 3. 0 These should come out of the box on Windows 8 and Windows Server 2012 and later, but it’s always a good idea... --- ### The Big Side Effect on Teams of Renaming a SharePoint Site URL > SharePoint Online now boasts the ability to rename site URLs, which seems good, but not so good when you discover that the new URL breaks the connection with Teams. - Published: 2019-10-31 - Modified: 2024-09-04 - URL: https://petri.com/big-side-effect-teams-renaming-sharepoint-site-url/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Files channel tab, Microsoft Teams, SharePoint Online - Article Type: News SharePoint Online now boasts the ability to rename site URLs, which seems good, but not so good when you discover that the new URL breaks the connection with Teams. The fact that this happens is revealed in Microsoft documentation and it's been a problem since the beta testing of the site rename function. Microsoft seems curiously disinterested in fixing the problem as quickly as they should have. A case of attention distracted elsewhere? The Side Effects of SharePoint Site Renames SharePoint Online introduced the ability to rename site URLs in beta in May 2019. The feature achieved general availability in October 2019 (message center notification MC193275, Office 365 roadmap item 56205). Renaming site URLs (and the display name of a site) addresses a problem that’s been around a while, so all is good in the SharePoint camp. That is until you read the list of known side effects of a site rename, Some of these are informative, such as the way that the OneDrive sync client will automatically transfer synching to the new site URL; some are mildly concerning, like the assertion that “any files in the recycle bin will be lost when  the site address is changed. ” (this assertion seems erroneous because I see files in the recycle bin for renamed sites. In other cases, some work is needed to make sure that the new site URLs are picked up by applications after the rename (Flow, InfoPath, PowerApps, etc. ). The Sad Effect on the Teams Files Tab In any case, the biggest issue is what happens to the Teams Files channel tab for renamed sites. Microsoft’s statement is blunt: “Teams (for Office 365 group-connected sites) After the site address is changed, users won't be able to view the team's files within the Teams app, but they can access them from Teams by selecting Open in SharePoint. ” The bald words are reflected in the experience users receive when they next try... --- ### How Microsoft Uses Machine Learning to Improve Windows 10 Update Experience - Published: 2019-10-30 - Modified: 2024-09-04 - URL: https://petri.com/how-microsoft-uses-machine-learning-to-improve-windows-10-update-experience/ - Categories: Windows 10 - Tags: machine learning, Windows 10, Windows Update - Article Type: Overview Microsoft started using machine learning (ML) to manage the rollout of Windows 10 feature updates with the Windows 10 April 2018 Update (version 1803). In a new blog post by Microsoft’s Archana Ramesh and Michael Stephenson, both data scientists for Microsoft Cloud and AI, the company outlines improvements made since then. Microsoft started using machine learning (ML) to manage the rollout of Windows 10 feature updates with the Windows 10 April 2018 Update (version 1803). In a new blog post by Microsoft’s Archana Ramesh and Michael Stephenson, both data scientists for Microsoft Cloud and AI, the company outlines improvements made since then. Microsoft has been having a tough time recently with the quality of cumulative updates (CU) and feature updates for Windows 10. While the tech media tends to blow things out of proportion sometimes, I think it’s fair to say that quality has taken a knock since internal testers were dismissed in favor of the Windows Insider Program. Biannual feature updates haven’t been without their issues either. But because of the diversity of the Windows ecosystem, regardless of how much testing is done, there is always the potential for issues when making changes to a complex piece of software like Windows. But if you are a large or medium sized organization that manages updates using Windows Server Update Services (WSUS), Microsoft System Center Configuration Manager (SCCM), or other product, you can do your own testing and don’t need to rely on Microsoft’s automated rollout. Smaller organizations can use Windows Update for Business, which is a series of Group Policy and Mobile Device Management (MDM) settings that give somewhat limited control over when CUs and feature updates are installed. Individuals and businesses without IT support rely on Microsoft to determine when feature updates should be installed. Although ‘seekers’, i. e... . --- ### Windows Server 2019 Release Sees Server Core Adoption Soar - Published: 2019-10-30 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2019-release-sees-server-core-adoption-soar/ - Categories: Windows Server 2019 - Tags: Server Core, Windows Admin Center, Windows Server 2019 - Article Type: News Microsoft says that since the general availability of Windows Server 2019, it has seen the fastest adoption rate for Server Core in history. It’s not news for Windows Server system administrators that they should be using the Server Core SKU of Windows Server whenever possible. With a dramatically reduced disk footprint and attack surface, Server Core helps to reduce the chances of servers being hacked and increase density on virtual hosts. But there are a couple of reasons why administrators tend to shy away from Server Core. Server Core was designed to be managed from the command line interface (CLI). Some might say that Windows admins aren’t confident in their ability to manage servers using the command line. Others might argue that while the command line has benefits – think automation with PowerShell – performing ad-hoc tasks is quicker with a graphical user interface (GUI). When Windows Server 2016 was released, you had the choice of either using PowerShell or the built-in GUI management consoles for administration, most of which have changed little since Windows 2000 debuted 20 years ago. Since then, Microsoft has been working on a new web-based admin GUI for Windows Server called Windows Admin Center (WAC). Windows Server 2019 still ships with Server Manager and all the management consoles you know and love, but Microsoft would prefer you to use WAC. It’s not forcing you at this stage, but I wouldn’t mind betting that in the next full release of Windows Server, most of the built-in management consoles will become optional components that you need to install if you want to use them. Today, even if you... --- ### FindTime – An Underappreciated Gem in the Office 365 World > Microsoft's FindTime service helps Office 365 users find the right time to schedule a meeting with people inside and outside their tenant. It's an underappreciated gem. And the good news is that an even better service - Published: 2019-10-29 - Modified: 2024-11-19 - URL: https://petri.com/findtime-automates-calendar-scheduling/ - Categories: Microsoft 365, Office - Tags: calendar, Calendar.Help, Cortana, FindTime, Outlook, Productivity - Article Type: How To Microsoft's FindTime service helps Office 365 users find the right time to schedule a meeting with people inside and outside their tenant. It's an underappreciated gem. And the good news is that an even better service called Calendar.Help is on the way. Well, it's better if you like asking Cortana to find the right meeting dates for you rather than the more-hands on approach taken by FindTime. Whichever way you cut it, help is always appreciated when setting up meetings, so it's nice that these tools are available. Calendar Scheduling Is Often Hard There are many services available to coordinate meeting planning and reduce the amount of time people spend checking dates with each other, a problem that’s much more complex when multiple companies are involved. Doodle and Calendy are just two examples. FindTime is Microsoft’s current take on the problem, and a new Cortana-based service called Calendar. Help is on the horizon. In a nutshell, FindTime is an Outlook add-in and Azure service that aim to make it much easier to find the right time to meet. It’s an under-appreciated part of the Office 365 ecosystem that I only recently came to value when scheduling cross-tenant calls (I know, I should have read the previous Petri. com article on the topic). FindTime’s Approach to the Scheduling Problem The basic problem is that everyone involved in a meeting has different free time available in their calendars. Before we can meet, a common free time must be found. FindTime does this by coordinating communication between meeting participants by polling them to find an acceptable time in a set of choices. Once an agreed time is found, FindTime creates the meeting on behalf of the organizer. It’s all pretty simple and easy to understand. The role of the Outlook add-in is to collect information about the meeting participants. The add-in works for Outlook 2016 (ProPlus), OWA, and Outlook for Mac and is only needed by meeting organizers. People who respond to FindTime polls don’t need to install the add-in. The... --- ### Migrate to Windows 10 Using Microsoft’s Desktop Analytics Service - Published: 2019-10-28 - Modified: 2024-09-04 - URL: https://petri.com/migrate-to-windows-10-using-microsofts-desktop-analytics-service/ - Categories: Windows 10 - Tags: Desktop Analytics, System Center Configuration Manager, Windows 10, Windows 7, Windows 8.1, Windows Analytics - Article Type: News This week Microsoft announced the general availability of Desktop Analytics, a new cloud service that integrates with System Center Configuration Manager (SCCM) to provide insight and intelligence so organizations can make informed decisions about whether Windows endpoints are ready to be upgraded. This week Microsoft announced the general availability of Desktop Analytics, a new cloud service that integrates with System Center Configuration Manager (SCCM) to provide insight and intelligence so organizations can make informed decisions about whether Windows endpoints are ready to be upgraded. Desktop Analytics lets organizations access the telemetry collected from millions of Windows 10 devices to help migrating to new Windows 10 feature updates. Microsoft says that Desktop Analytics lets you do some remarkable things, such as: Get a comprehensive view into the endpoints, applications, and drivers under management in your ecosystem. Assess application and driver compatibility with the latest Windows feature updates and receive mitigation recommendations for known issues, as well as advanced insights for line of business apps. Optimize the set of pilot devices that adequately represents your overall estate using the power of artificial intelligence (AI) and the Microsoft cloud. Goodbye Windows Analytics Windows Analytics, the cloud service that Desktop Analytics is designed to replace, is being retired at the end of January 2020. Windows Analytics consists of three components: Upgrade Readiness, Update Compliance, and Device Health. Of the three, only Update Compliance will still be supported beyond the January cutoff. You can find more on Update Compliance here on Petri. Customers already using Windows Analytics will be able to migrate existing administrator data to Desktop Analytics during the onboarding process. Although, it’s worth mentioning at this point that Desktop Analytics will only be available to customers with the following licenses: Windows 10 Enterprise... --- ### Microsoft Wins JEDI Defense Cloud Contract - Published: 2019-10-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-wins-jedi-defense-cloud-contract/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, JEDI, Microsoft, News - Article Type: News Earlier this week, Microsoft posted strong earnings with its cloud division continuing to push the stock price higher. Announced today by the U.S Defense Department, Microsoft has won the lucrative JEDI (Joint Enterprise Defense Infrastructure) contract besting its rival Amazon as well as Oracle and other providers. Earlier this week, Microsoft posted strong earnings with its cloud division continuing to push the stock price higher. Announced today by the U. S Defense Department, Microsoft has won the lucrative JEDI (Joint Enterprise Defense Infrastructure) contract besting its rival Amazon as well as Oracle and other providers. The contract is worth as much as $10 billion over the next ten years and will become one of the largest contracts ever awarded to Microsoft. While this contract will certainly help the company’s bottom line, it will also go a long way towards showing that Azure, the company’s cloud platform, is equal to that of its rival, AWS. As with all government contracts of this scale, politics were at play with Oracle and IBM contesting being dropped from the bidding process and the administration has publicly raised issues with Jeff Bezos, the CEO of Amazon, who also owns the Washington Post. With the contract being winner take all, Microsoft has found itself to be the new backbone of the U. S Defense Department and its investments in its cloud platform is continuing to pay dividends. But for Microsoft, the real work is only getting started. The company clearly made a good pitch on paper and has the technical expertise to execute the program. Now begins the long journey of building out the technology and infrastructure to support the services that are required of the JEDI contract. --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (October 2019) - Published: 2019-10-25 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-11/ - Categories: Amazon Web Services, Cloud Computing, Hardware, Hybrid Cloud, Microsoft 365, Microsoft Azure, Microsoft Teams, Mobile, Windows 10, Windows 7, Windows Server - Tags: News - Article Type: Overview Because it’s that time of the quarter, this edition of Short Takes looks solely at Microsoft’s quarterly earnings report, which was huge for Commercial Cloud, Microsoft 365, and Windows, and not so much for Surface and Xbox. Right. Nothing changed. Because it’s that time of the quarter, this edition of Short Takes looks solely at Microsoft’s quarterly earnings report, which was huge for Commercial Cloud, Microsoft 365, and Windows, and not so much for Surface and Xbox. Right. Nothing changed. Note: On Wednesday, Microsoft announced its financial results for FY20 Q1, the quarter ending September 30. The firm posted net income of $10. 7 billion on revenue of $33. 1 billion, and both were well above estimates. Brad already wrote up the news, so this week’s Short Takes will dive a bit deeper into the after-earnings conference call and analysis. –Paul The Microsoft universe is again in balance You might recall that Microsoft’s three businesses, Productivity and Business Processes, Intelligent Cloud, and More Personal Computing, all delivered nearly a nearly identical $11 billion in revenues in the previous quarter. And that I predicted that things would change this quarter, with More Personal Computing, the Windows business, would be on the decline. Well, I was wrong again: This quarter, Microsoft’s three businesses once again delivered nearly identical revenues---$11. 1 billion, $10. 8 billion, and $11. 1 billion, respectively---making the firm curiously, one might say suspiciously, balanced once again. That said, all the growth was on the cloud side: Intelligent Cloud grew an astonishing 27 percent and Productivity and Business Processes grew 13 percent, while More Personal Computing grew just 4 percent. I’ll crawl back into my hole. “Microsoft beats on revenue and earnings; stock is little changed” Nothing happened. Read all about it. We... --- ### The Benefits of DRaaS for the SMB - Published: 2019-10-24 - Modified: 2024-09-04 - URL: https://petri.com/the-benefits-of-draas-for-the-smb/ - Categories: Backup & Storage, Cloud Computing, Ransomware - Tags: Backup, Cloud, cloud computing, Disaster Recovery - Article Type: Overview While definitely necessary, making and maintaining disaster recovery (DR) plans is definitely not one of the favorite tasks for IT personnel. DR planning is complex, time-consuming, and it involves the resources of a number of both IT and non-IT related personnel. In addition, implementing DR plans isn’t cheap. While definitely necessary, making and maintaining disaster recovery (DR) plans is definitely not one of the favorite tasks for IT personnel. DR planning is complex, time-consuming, and it involves the resources of a number of both IT and non-IT related personnel. In addition, implementing DR plans isn’t cheap. The expenses required to implement a traditional DR plan can be high as the organization typically needs to buy the storage and computing hardware required. Disaster Recovery-as-a-Service (DRaaS) is an alternative to traditional on-premise DR solutions. With DRaaS when a server failure occurs, instead of performing the recovery to another on-premises server, DRaaS recovers that workload so that it runs in the cloud. DRaaS is especially useful for small-to-medium (SMB) sized businesses. Many SMBs dismiss making a comprehensive DR plan because they believe that type of option is only for deep-pocketed enterprises. For the SMB, DR often just consists of doing daily backups and storing the backup media offsite – which covers the basics but makes for poor Recovery Point and Time Objects (RPOs and RTOs). More effective multi-site DR solutions are beyond of the reach of many SMBs who need a way to get their DR data off-site without the costs and complexities of building and maintaining an additional DR site. DRaaS is affordable because it allows businesses to forgo the need for a second physical site. With DRaaS, the cloud can be your DR site. Plus, you only pay for the infrastructure in the cloud that you use. Storing backups... --- ### Microsoft's Cloud Pushes Revenue Higher, Office Passes 200 Million Subscribers - Published: 2019-10-23 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-cloud-pushes-revenue-higher-office-passes-200-million-subscribers/ - Categories: Main - Tags: Earnings, Microsoft - Article Type: News Microsoft has reported it's Q1 FY earnings with Office 365 and the company's cloud services pushing the revenue needle higher. Microsoft has reported it's Q3 earnings, FY Q1, today with the revenue of $33. 1 billion an increase of 14% with a Net income of $10. 7 billion, an increase of 21% for the period. The company reported a diluted EPS of $1. 38 billion for the quarter. Overall, Microsoft posted another healthy quarter with the company's commercial cloud helping push the revenue needle higher. With $11. 6 billion in revenue, up 36%, year-over-year, Azure and the related cloud services the company offers continue to show strong results. Another figure that cements Microsoft's growth is that commercial subscribers of Office 365 has now surpassed 200 million. On the consumer side, there are now 35. 6 million subscribers. Both of these figures highlight that Microsoft's productivity focus has given the company a solid and healthy stream of cash. Other notable figures include Surface revenue being down 4%, to $1. 13 billion, this is because of the timing of the release of new hardware. I would expect the company's next-quarter to show a rebound in hardware sales. On the gaming side, revenue was down 7% with content and services revenue remaining flat.  For Windows, OEM revenue increased 9% with Windows Commercial products and cloud services revenue increased by 26%. Microsoft posted strong results for the quarter, even with Xbox and Surface trailing the growth of the rest of the company. With an additional $10 billion now in the bank, Microsoft continues to boost the cash it has on hand to make acquisitions or strategic investments to make sure that its... --- ### Microsoft to Office 365 Users: Have Your Credit Cards Ready > In a rather odd decision, Microsoft is launching self-service purchases for Office 365 tenant users who want to use the Power Platform without consulting an administrator. Another troubling sign is the way that the MailItemsAccessed audit event has been packaged - Published: 2019-10-23 - Modified: 2024-09-04 - URL: https://petri.com/office-365-users-have-credit-cards-ready/ - Categories: Microsoft 365, Office - Tags: Flow, MailItemsAccessed, Microsoft 365 Audit, Office 365, Power BI, Power Platform, Powerapps, Self-service purchases - Article Type: Opinion In a rather odd decision, Microsoft is launching self-service purchases for Office 365 tenant users who want to use the Power Platform without consulting an administrator. Another troubling sign is the way that the MailItemsAccessed audit event has been packaged into a new Microsoft 365 Audit feature. Tenants expected to see this audit event last January after Microsoft announced it was coming. Its subsequent disappearance was a mystery until now. Update: In an update to the self-service purchase FAQ posted on October 31, Microsoft announced that based on customer feedback, they will provide Office 365 tenants with a PowerShell-based method to turn off self-service purchasing on a per-product basis. They also said that the launch date for self-service purchases has been pushed out to January 14, 2020. See this link for other coverage. Update 2: Microsoft has released an admin control (PowerShell) to stop Office 365 users being able to make self-service purchases. Tone-Deaf Decision by Microsoft Although it is reasonable to seek to maximize revenues from a customer base, I am bewildered at some tone-deaf decisions made by Microsoft in what seem to be thinly disguised attempts to extract more money from Office 365 tenants. Self-Purchase by Office 365 Users Take the announcement about “self-service purchase capabilities for Power Platform products” made in Office 365 notification MC193609 on October 21 (Figure 1). The title sounds innocuous but means that Office 365 tenant users will be able to buy licenses for PowerApps, Flow, and Power BI using their own credit cards without any input from a tenant administrator. Users who buy licenses are responsible for managing their own billing information and license assignment, which should be fun. Figure 1: Microsoft Announces Self-Services Purchase for the Power Platform (image credit: Tony Redmond) Self-service purchases will start for Power BI on November 19 and for Flow and PowerApps on December 4. Government, Education, and non-Profit tenants are excluded... . --- ### How Does Windows 10 Reset this PC Work? - Published: 2019-10-23 - Modified: 2024-09-04 - URL: https://petri.com/how-does-windows-10-reset-this-pc-work/ - Categories: Windows 10 - Tags: Backup, Backup and Restore, Windows 10 - Article Type: Overview In today’s Ask the Admin, I look in more detail at how Reset this PC actually works and the new cloud download feature that is coming in Windows 10 20H1. Legacy backup tools may not have been designed for push-button resets, but system administrators knew exactly how they worked and what would be restored. Windows 10 Reset this PC makes push-button restores a reality for end users with no technical skills but it’s not always clear what gets restored. In this article, I dig deeper into how Reset this PC works. Windows 10 recovery options The recovery options in Windows 10 give users several different alternatives to restore Windows to an operational state in the event of a problem. There’s Reset this PC, with options to keep user data and settings, or remove everything. You can also go back to a previous version of Windows 10 for a limited period of time after upgrading to a new feature update. You can also use System Restore on Windows 10 to go back to a previous restore point. Also included, although hidden in the legacy Control Panel, are the Windows 7 backup and restore features, which include simple file backup and restore, and the ability to create full-disk system images. Reset this PC started life in Windows 8. A ‘push-button’ reset feature that makes it easy for users without any technical experience to restore Windows to a working state, Windows 8 used a recovery image, usually provided by the device manufacturer, to recover the operating system. There are a couple of issues with this approach. Recovery images, even when compressed, use a considerable amount of disk space. And with many notebooks now... --- ### Using Jobs in PowerShell 7 - Published: 2019-10-22 - Modified: 2023-07-17 - URL: https://petri.com/using-jobs-in-powershell-7/ - Categories: PowerShell - Tags: Jobs, PowerShell, Powershell 7 - Article Type: How To PowerShell jobs are an integral part of PowerShell. This handy feature allows administrators to run commands asynchronously. Asynchronous commands allow for parallel execution cutting down on time and fully leveraging compute power. PowerShell jobs are an integral part of PowerShell. This handy feature allows administrators to run commands asynchronously. Asynchronous commands allow for parallel execution cutting down on time and fully leveraging compute power. With version 7, PowerShell continues its support of jobs giving scripters an efficient way to build efficient, speedy code. Demonstrating Jobs To demonstrate how jobs work in PowerShell 7, let’s start off with a simple example. Perhaps you have a script that pings a remote server. If that server returns a ping response, you know it’s online and can then perform some other kind of action. For this example, let’s assume it’s simply placing a file on the remote system. If you’ve performed a ping sweep on many remote servers at once, you’d know that some servers will return a response quickly while some will seemingly take forever. If running a script like this asynchronously, the quick-to-respond servers may have to wait for the slow-to-respond servers. There’s no reason for one server to wait on another since there are no dependencies between the tasks. This is a perfect use case for jobs. Let’s start with the example script below. This script allows the user to provide one or more server names as input via the ServerName parameter. It then attempts to ping each one using the Test-Connection cmdlet. If the ping is successful, it then creates a file called newfile. txt in the root of the C drive on the remote system. param ( ]$ServerName ) $ServerName |... --- ### G Suite Gets an Executive Reboot to Revamp Office 365 Foe > Javier Soltero, ex-boss of Outlook, is now running G Suite for Google. The appointment is an opportunity to reboot G Suite to take on Office 365 and make up some of the ground that's been lost in the last five years. - Published: 2019-10-22 - Modified: 2024-11-19 - URL: https://petri.com/new-gsuite-boss-revamp-against-office365/ - Categories: Microsoft 365, Office - Tags: G Suite, Google, Javier Soltero, Mover, SharePoint Online - Article Type: News Javier Soltero, ex-boss of Outlook, is now running G Suite for Google. The appointment is an opportunity to reboot G Suite to take on Office 365 and make up some of the ground that's been lost in the last five years using the "new brush sweeps clean" principle. In other news, Microsoft bought Mover to acquire its migration connectors that move files into SharePoint Online and OneDrive for Business, including files from Google Drive. Executive Moves and an Interesting Purchase Two interesting developments in the world of Office 365 happened on October 21. First, ex-Microsoft CVP Javier Soltero announced on Twitter that he has joined Google as Vice President for G Suite (Figure 1). The second is that Microsoft bought Mover “to speed migration to Microsoft 365. ” Figure 1: Javier Soltero announces he now leads G Suite (image credit: Tony Redmond) Resetting G Suite Five or so years ago, G Suite was running high and winning deals against Office 365. Now, the situation is very different, and I don’t hear of so much success for G Suite, especially in large enterprises. There are many reasons why this might be the case. My theory is that Microsoft has upped their game considerably while Google’s offerings are largely the same. New applications like Teams, Planner, and Stream have been added to Office 365 while Exchange Online and SharePoint Online, the bedrock applications have continued to improve. OneDrive for Business replaced the old unreliable Groove synchronization engine with something that actually works. And equally important, the Azure ecosystem has developed enormously, especially in the range of functionality that’s now available around Azure Active Directory. It’s also the case that Microsoft’s clients are so much better today than they were five years ago. The new OWA is snappy and smart, the Teams browser interface is the same as the desktop, and even the much-derided SharePoint browser interface is acceptable (and often hidden... --- ### Microsoft has Acquired Mover - Published: 2019-10-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-acquired-mover/ - Categories: Microsoft 365 - Tags: Microsoft, Mover, News - Article Type: News Microsoft has acquired Mover and will integegreat the technology into its Microsoft 365 migrations solutions. Microsoft has announced today that they have acquired Mover, a company that specializes in cloud file migration. Mover supports a wide variety of cloud services like Box, Dropbox, Google Drive and makes it easier to move the content over to Microsoft 365. To help customers move to the cloud, Microsoft has several programs, including FastTrack, that are designed to make the migration process easier. The company says that with the acquisition today, Mover’s technology will be integrated into its existing tools along with more self-service options coming online in the future. The goal of this acquisition, according to Jeff Teper who penned the blog post, is to make the transition to Microsoft’s cloud seamless and cost-effective as possible. The Mover technology will help take one more step towards this goal and for those coming from other cloud services, the technology acquired today will make lateral moves even easier. Microsoft’s largest IT Pro conference takes place in two weeks where the company will be talking a lot more about the advancements within Microsoft 365 during the past year. Teper says that Microsoft will share more details about the Mover integration at that event and new capabilities coming to the migration services offered by Microsoft. --- ### Surface Laptop 3: A 15in Primer - Published: 2019-10-21 - Modified: 2024-09-04 - URL: https://petri.com/surface-laptop-3-a-15in-primer/ - Categories: Hardware - Tags: Surface, Surface Laptop 3 - Article Type: Opinion In a world where laptops are bending, twisting, and folding, if you are looking for a vanilla laptop, the choices are not as plentiful as you may think, Enter the brand-new, 15in, Surface Laptop 3 from Microsoft, a vanilla laptop that comes in a variety of flavors colors. Because I have only had this device since Wednesday of last week, this is a preview, I hope to have a full review up later this week or possibly next week. That being said, this laptop is about as simple as it comes and I couldn't be happier. There are two flavors of the Laptop 3, 13. 5in and the 15in. I have the 15in that uses an AMD Ryzen 5 ‘Surface Edition’ CPU with 16GB of RAM and is black but you can also get the laptop in Sandstone, Cobalt Blue, and Platinum. Depending on the color, some of them come with Alcantara on the keyboard deck, while others, like the black one that I have, is all metal. Seeing as this is the third-generation laptop, there are not too many surprises here. The larger screen size offers a good choice for those who have a Surface Book 2 but don’t want the detachable display, and with both USB-A and C ports, the laptop makes it easier to bridge the USB transition period. In my brief time with the device, the biggest downside so far is that fingerprints and other oils show up quite easily on the metal; a quick... --- ### How to Configure Notifications in Windows 10 for Maximum Productivity - Published: 2019-10-21 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-notifications-in-windows-10-for-maximum-productivity/ - Categories: Windows 10 - Tags: Outlook, Productivity, Windows 10, Your Phone - Article Type: How To How to set up notifications in Windows 10 to maximize productivity while not missing important tasks and messages. I’ll make no secret of the fact that I have a love-hate relationship with notifications. But it is also a changing relationship. Endless notifications can be distracting, preventing you from focusing on tasks and intensifying the feeling that you are drowning in information. Many of us are slaves to our smartphones and notifications play a significant role in that. But PC users are not immune either. Windows 10 has built-in toast notifications in the Action Center, which mimics how mobile devices work. And some applications have their own notification mechanisms, like Microsoft Teams. Until recently, my standard position was to nuke pretty much all notifications in Windows 10. However, after buying a new device, instead of lurching to the extreme of disabling notifications for almost everything, I decided to try living with most notifications turned on and then gradually disabling those that are either really distracting or add no value. And over the past few weeks, I’ve come to the realization that sometimes notifications can actually save time. Outlook and Notifications Some of what prompted this article comes from my attempt at configuring Outlook to work well with Windows 10 virtual desktops. In short, part of that involves disabling the Reminders popup window and envelope icon in the Outlook taskbar button. I only want to switch to my Outlook virtual desktop if really necessary because there’s bound to be something in my inbox that distracts me regardless of whether a new item needs attention. As you may have... --- ### Paul Thurrott's Short Takes: October 18 - Published: 2019-10-18 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-18/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10 - Tags: News - Article Type: Overview Because corporate executives are paid far too much, this edition of Short Takes looks at top Microsoft executive salaries, an ironic Windows 10 patch, a presidential candidate who mocked Bing, Apple’s most pointless stat ever, and much, much more. Because corporate executives are paid far too much, this edition of Short Takes looks at top Microsoft executive salaries, an ironic Windows 10 patch, a presidential candidate who mocked Bing, Apple’s most pointless stat ever, and much, much more. Top Microsoft executives received massive salary packages this year With its stock price and market cap soaring, Microsoft’s top executives are reaping the rewards. CEO Satya Nadella tops the list, naturally, with a 66 percent pay boost in fiscal 2019 to $42. 9 million (! ). “Under Mr. Nadella’s leadership and ongoing commitment to long-term success, the Company saw a strong finish to a record fiscal year delivering more than $125 billion in revenue for the full year with double-digit revenue and net income growth in 2019,” a Microsoft filing explains of the sport star-like sum. But he wasn’t alone: CFO Amy Hood saw her pay jump 36 percent to $20. 2 million. President Brad Smith experienced a 28 percent jump to $17. 3 million. Sales president Jean-Philippe Courtois saw a 36 percent jump to $15. 1 million. And executive vice president Peggy Johnson enjoyed a $10. 4 million. Folks, there is no such thing as a human being who deserves that much money in one year, let alone a lifetime. That’s insane. “Microsoft Earnings: What to Look For” Lots and lots of money, selective reporting, and an imaginary business called Commercial Cloud. Irony alert As you probably know, Microsoft has a monthly scheduled set of security and bug patch releases that’s informally called Patch... --- ### Surface Pro 6 – One Year Later - Published: 2019-10-17 - Modified: 2024-09-04 - URL: https://petri.com/surface-pro-6-one-year-later/ - Categories: Hardware - Tags: Surface Pro 6 - Article Type: Review Microsoft's Surface Pro 6 celebrated its first birthday, here's how my device has held up during the first year of availability. It’s a bit hard to believe that the Surface Pro 6 has gone around the sun, one full orbit. Having celebrated its first birthday this week, here’s how my device has held up during the last year. The good news is, is that there is not much news to report on other than a few minor issues. Microsoft has nearly perfected the form factor for the Pro and most of the internal hardware issues have been resolved. There are two minor issues with the Pro 6 during the past year, the WiFi, after a bad driver update I think, was not holding a reliable connection. This occurred earlier this year but while digging into the over the summer, I can report that it has been resolved with either a new driver update or a Windows 10 release. The other is that I did, on very infrequent occasions, pick up the device and it would have a flat battery after about a week or so of non-usage. Battery life has remained stable at about 6hrs of real-world usage after a year. I have taken then Pro 6 on the road a few times when I travel and don’t need to edit video while on the go. And it's a good choice for taking to the coffee shop as well. One of my concerns from when I first got the device is how would the black color hold up during the year? This was because the first-generation Surface RT/Pro was... --- ### Microsoft Defender Tamper Protection Now Generally Available - Published: 2019-10-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defender-tamper-protection-now-generally-available/ - Categories: Security, Windows 10 - Tags: Microsoft Defender, Microsoft Defender Advanced Threat Protection, Microsoft Intune, Security, Windows 10 - Article Type: News A closer look at the Microsoft Defender Tamper Protection feature that rolled out in the Windows 10 May 2019 Update and that is soon to be enabled by default for all users. Tamper Protection for Microsoft Defender, the antimalware software that is built-in to Windows 10, first appeared in the Windows 10 May 2019 Update (19H1). It is designed to prevent users and malicious software from modifying registry-based settings for Defender that could make a system vulnerable to attack. You may have noticed that Tamper Protection wasn’t enabled by default in Windows 10 19H1. But that is due to change over the coming weeks as Microsoft looks to enable the setting out-of-the-box. According to a report by ZDNet’s Catalin Cimpanu, Microsoft says that starting October 14th, Tamper Protection will be enabled by default for all users in the coming weeks in a multistage rollout. When Microsoft Defender or Defender ATP Tamper Protection is enabled, malicious software and users won’t be able to change the following features via the registry, Group Policy, or using PowerShell: Disable virus and threat protection Disable real-time protection Turn off behavior monitoring Disable Defender's antivirus components (such as IOfficeAntivirus (IOAV)) Disable cloud-delivered protection Remove security intelligence updates Tamper Protection is Designed for Enterprises What’s interesting about Tamper Protection is that when enabled, protected Defender features can’t be changed using Intune, System Center Configuration Manager, and Windows Management Instrumentation. Any requests to change settings will be ignored. And there won’t be any Group Policy setting allowing enterprises to enable Tamper Protection across devices. Again, according to ZDNet’s report, Microsoft says: "When an administrator enables the policy in Microsoft Intune, the tamper protection policy is digitally signed in... --- ### Discover Who Creates Guest Accounts in Office 365 Applications > Office 365 applications now create many guest accounts in Azure Active Directory. You can see what accounts exist, but it's more difficult to discover who created the accounts - or why they were created. - Published: 2019-10-17 - Modified: 2024-09-04 - URL: https://petri.com/knowing-guest-accounts-office-365/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Office 365 Audit Log, Office 365 Groups, OneDrive for Business, PowerShell, SharePoint Online, Teams - Article Type: How To Office 365 applications now create many guest accounts in Azure Active Directory. You can see what accounts exist, but it's more difficult to discover who created the accounts - or why they were created. Fortunately, the Office 365 audit log holds a lot of useful data that can be interrogated to find some answers and PowerShell is a great tool for slicing and dicing audit data. See what you think of the answers I've come up with. So Many Guest Accounts but No Idea How They Are Created At a recent conference, a discussion took place about the number of guest user accounts now being created by applications in the directories of Office 365 tenants. The accounts are created through Azure B2B collaboration (by applications that generate invitations to join Office 365 Groups, like Teams and Planner) or SharePoint sharing invitations for documents or folders. It’s one thing to invite people outside your tenant to collaborate; it’s a horse of a different color to manage the resulting guest accounts. No Control Over Who Creates Guests In this case, the focus was on knowing who took the actions that led to Office 365 creating guest accounts in the tenant. The point was firmly made that there is no out-of-the-box way for a tenant administrator to know what guests are being invited. Some level of control is available with the Azure B2B Collaboration policy, which allows tenants to blacklist domains they won’t accept guests from (or a whitelist to restrict the set of domains guests can come from), but once a guest email address complies with the policy, they can be invited. Admin Consoles and Guests It is possible for tenant administrators to go to the Guest Users section of the Office 365 Admin Center and review the set of guests shown there. This is easy with 20 or so guests, more difficult with 100, and impossible thereafter. The coverage for Guest Users in the Office 365... --- ### Monitor Windows Server Security Using Azure Sentinel Part 1 – Set Up a Workspace and Data Connector - Published: 2019-10-16 - Modified: 2024-09-04 - URL: https://petri.com/monitor-windows-server-security-using-azure-sentinel-part-1-set-up-a-workspace-and-data-connector/ - Categories: Security - Tags: Azure Sentinel, Microsoft Azure, Security, SIEM, Windows Server - Article Type: How To How to connect Windows Server to Microsoft’s modern cloud-native SIEM solution Azure Sentinel. Azure Sentinel is Microsoft’s take on a modern cloud-native Security Information and Event Management (SIEM) solution. While Splunk maybe one of the best known SIEM solutions today, Sentinel differs in that it is designed from the get-go to straddle cloud and on-premise infrastructure. Sentinel automatically scales when you need to collect more data and you only pay for what you use. It collects, detects, investigates, and responds to threats. Sentinel can surface suspicious activity and take necessary action to respond to incidents using built-in AI to reduce noise so you can quickly focus on real security incidents. For more information about Azure Sentinel and how to get started with it, check out Cloud-Native SIEM and Built-in AI for Analytics with Azure Sentinel on Petri. Configure a Data Connector for Windows Server Before you can pull data into Sentinel, you’ll need to configure a Log Analytics workspace and add it to Sentinel. Open Sentinel in the Azure management portal. If Sentinel is not pinned to the dashboard, type sentinel in the search box at the top of the portal window and then click Azure Sentinel in the list of results. Click + Add on the Azure Sentinel workspaces On the Choose a workspace to add to Azure Sentinel panel, click Create a new workspace. On the Log Analytics workspace panel, make sure that Create new is selected. Give the new workspace a name, select the Azure subscription it should be associated with, and select or create a new resource... --- ### SharePoint Gets Better Connected to Teams > The fit-and-finish quality within Office 365 is sometimes less than desirable. Two recent changes in SharePoint Online make it easier for users to know when a document library is connected to Teams and to generate thumbnails for items stored in the library. - Published: 2019-10-15 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-better-connected-to-teams/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Document library, SharePoint Online, Teams, Thumbnails - Article Type: News The fit-and-finish quality within Office 365 is sometimes less than desirable. Two recent changes in SharePoint Online make it easier for users to know when a document library is connected to Teams and to generate thumbnails for items stored in the library. Neither change is awe-inspiring, but both are examples of how to improve SharePoint's fit-and-finish, which is a good thing. I have often said that Teams puts a human face on the sometimes-hard-to-use SharePoint browser client. The Files channel tab, a basic part of every Teams channel, makes it much easier for people to upload and access documents without caring too much about where Teams stores the documents. Microsoft hasn't managed to ship the much-trumpeted overhaul for the Files channel tab promised at the SharePoint conference last May. When it comes, users will have 90% of the functionality available through the SharePoint browser interface in Teams. On a more positive note, a recent update now rolling out across Office 365 aims to make it easier for users to know when document libraries are connected to Teams. I’ve been tracking this update for a while (according to the Office 365 roadmap, it was supposed to drop a quarter ago) and it arrived in my Targeted Release tenant a few weeks ago. I regret the delay in publication - some other stuff got in the way. New Banner and Button for SharePoint Document Libraries When the update arrives, any time someone uses the browser interface to interact with a Teams-connected folder, they’ll see a banner telling them that the folder is connected and a button to open the Teams client to access channel conversations (Figure 1). You don’t see the banner when a site is connected to an Office 365 group that isn’t team-enabled. Figure 1: The new banner and button for a Teams-connected folder (image... --- ### Windows 10 Virtualization-Based Security On By Default in Future Updates - Published: 2019-10-15 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-virtualization-based-security-on-by-default-in-future-updates/ - Categories: Security, Windows 10 - Tags: Security, virtualization based security, Windows 10 - Article Type: News According to a recent blog post by Bruce Sherwin, a member of Microsoft’s Hyper-V Development Team, Cloud & AI, the hypervisor development team is working on bringing VBS to everyone and enabling it by default. Windows 10 has the capability to use hardware virtualization to isolate critical parts of the operating system. Otherwise known as virtualization-based security (VBS), a secure kernel runs at a higher trust level than the NT kernel. And when Windows 10 executes code and stores data at the higher trust level, the standard NT kernel and user-mode processes cannot directly access the protected code and data. Windows transfers data between the two trust levels using a set of APIs. VBS lets security features, like Windows Defender Device Guard and Credential Guard, operate with integrity even if the NT kernel is compromised. And Windows Defender System Guard, which was introduced in the Windows 10 Fall Creators Update (version 1709), reorganizes critical system components to protect them using a hardware-based isolation container at boot time and continues to provide protection when Windows is running. But while VBS has been implemented by large organizations that have the right hardware and resources to manage it, VBS is turned-off by default for everyone else. According to a recent blog post by Bruce Sherwin, a member of Microsoft’s Hyper-V Development Team, Cloud & AI, the hypervisor development team is working on bringing VBS to everyone and enabling it by default. Sherwin notes that this will bring the added benefit of enabling a seamless integration of other features that rely on Hyper-V, like Windows Defender Application Guard, Windows Sandbox, Windows Subsystem for Linux 2, and more. Sherman says that the team has been working over the... --- ### Servicing and Testing the Windows 10 November 2019 Update - Published: 2019-10-14 - Modified: 2024-11-19 - URL: https://petri.com/servicing-and-testing-the-windows-10-november-2019-update/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 19H2, Windows 10 S Mode, WSUS - Article Type: News In today’s Ask the Admin, I look at how Microsoft is preparing to release the Windows 10 November 2019 Update (19H2) and plans to service the May and November 2019 updates together. Insider for Business customers can also get prerelease support. When Microsoft announced its plans for the second 2019 yearly update to Windows 10 earlier this year (19H2), it revealed that users already on the May 2019 Update would receive the new feature update as a cumulative update (CU). Users on earlier versions of Windows will need to install 19H2 as an operating system upgrade, in the same way that all previous Windows 10 feature updates have been provided up until 19H2. Microsoft didn’t talk about 19H2 until summer. But because of the long silence, it didn’t come as a surprise that the new feature update will be relatively minor, with a few new features mainly aimed at enterprises. That also makes sense because this will be the version of Windows 10 that gets 30 months’ support and the one that enterprises will want to install. Remember that Windows 10 Enterprise and Education SKUs get 30 months’ support on the fall releases and 18 months from the release date on spring feature updates. Spring and fall releases for Windows 10 Pro and Home SKUs both get 18 months’ support. Some of the new features in 19H2 include the ability to quickly create events from the Calendar flyout on the taskbar, CPUs will be able to have multiple ‘favored’ cores to improve performance and reliability, and Windows 10 in S Mode gets a new policy that allows customers using Intune to deploy win32 apps. You can find a full list of the new features on Microsoft’s website here. And... --- ### Paul Thurrott's Short Takes: October 11 - Published: 2019-10-11 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-11/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because I embrace my AI overlords, this edition of Short Takes looks at the next version of Windows 10, Microsoft’s AI art installation, whether Surface is really profitable, whether Microsoft’s embrace of Linux is real or a secret plot, and so much more. Because I embrace my AI overlords, this edition of Short Takes looks at the next version of Windows 10, Microsoft’s AI art installation, whether Surface is really profitable, whether Microsoft’s embrace of Linux is real or a secret plot, and so much more. Windows 10 version 1909 is now complete In an unprecedented act of clarity, the Windows Insider Program last night announced that the development of the November 2019 Update for Windows 10, which will upgrade that system to version 1909, is now complete. (Microsoft has historically been very secretive about this kind of thing for some reason. ) Windows 10 version 1909, for those unfamiliar, is also unique in the history of Microsoft’s twice-yearly feature updates in that this one is being delivered as a minor cumulative update (CU) rather than a major OS upgrade, as has always been the case. That’s because it has only a few minor functional updates but is mostly like a service pack or R2-type release compared to the previous feature update, Windows 10 version 1903. As such, it shouldn’t prove problematic during deployment like the past several feature updates. I’d like to this become the norm---major updates in the first half of the year, with minor evolutions in the second half---but Microsoft claims that’s not the plan. Maybe if this release is successful enough, and it should be, they’ll change their minds. This twice-yearly thing is untenable. “Report: Apple ‘pushing it’ with goal to launch iPhones featuring in-house custom 5G modems... --- ### Using the Ternary Conditional Operator in PowerShell 7 - Published: 2019-10-10 - Modified: 2023-07-17 - URL: https://petri.com/using-the-ternary-conditional-operator-in-powershell-7/ - Categories: PowerShell - Article Type: How To PowerShell 7.0 introduces a familiar mainstay of most programming languages, the Ternary Operator. Using a much shorter syntax for if/then logic, it makes defining conditional values for properties much more concise and easy to read. PowerShell 7. 0 Beta 4 introduces a familiar mainstay of most programming languages, the Ternary Operator. Using a much shorter syntax for if/then logic, it makes defining conditional values for properties much more concise and easy to read. This certainly isn't the only use case, it is merely one that I encounter often and one where the Ternary Operator works wonders to simplify. Additionally, if you are a heavy user of the command line, the shorter syntax will help you quickly test code and prototype functionality. Another great example is using the Ternary Operator within string concatenation or using the format operator. The shorter syntax means that, for generally simple conditions, you can combine multiple lines of code into one and increase the general readability by a large margin. Using If/Then Logic Say you want to make a comparison that will then determine a specific action to take. An if statement, with a potential else statement, is the usual way to approach this use case. As in most languages, you take one value and using a comparison operator compare it to another value to output a boolean value, which simplify means true or false. As seen below, a simple if/then statement compares the values of $a and $b and finding them unequal outputs $false in this case. $a = 1 $b = 2 if ($a -eq $b) { $true } else { $false } # Output is: $false Although the comparison, in this case, is simple. You can certainly... --- ### Highlighting Some Office 365 Sessions at Microsoft Ignite 2019 > Microsoft Ignite 2019 is in four weeks, so now's a good time to start browsing the session catalog to find interesting sessions to attend in person or listen to afterwards. - Published: 2019-10-10 - Modified: 2024-11-19 - URL: https://petri.com/planning-office-365-sessions-microsoft-ignite-2019/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Microsoft Ignite 2019, Microsoft Teams, SharePoint Online - Article Type: News, Opinion Microsoft Ignite 2019 is in four weeks, so now's a good time to start browsing the session catalog to find interesting sessions to attend in person or listen to afterwards. I've been through the catalog to find some sessions and present my list here. Feel free to disagree and find other sessions in the > 1,400 listed already. Breakouts, Theater, and Unconference Sessions at Microsoft Ignite 2019 The Microsoft Ignite 2019 conference session catalog is now online. As I write, some 1,444 sessions are available for browsing, which is a lot for anyone to get their head around (and Microsoft is likely to add some more). The Orange County Convention Center is huge, and it takes time to get around the different session rooms. We don’t yet know where individual sessions will be held, but we can browse the catalog to highlight sessions that are must-see. My best attempt at finding good sessions to attend is below. Sessions at Microsoft Ignite Microsoft Ignite has 75- and 45-minute breakout sessions. The 75-minute sessions are usually reserved for Microsoft speakers while external speakers get the 45-minute slots. This demarcation started in 2018 and I can’t work out quite why Microsoft feels that people without blue badges can’t speak (coherently) for 45 minutes. In any case, it is what it is. Theater sessions last 20 minutes and happen in the theaters distributed around the exhibition hall. If you want to attend a theater session, go there early to claim a seat. Many of these sessions were heavy overcrowded last year. There's also a category called "unconference" sessions for expert-led discussions about topics. All sessions will be recorded and will be available through the Microsoft Technical Community. A valid argument exists for staying away from Microsoft Ignite to watch and listen to recordings in the comfort of your own home... . --- ### Patch Tuesday – October 2019 - Published: 2019-10-09 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-october-2019/ - Categories: Security - Tags: Patch Tuesday, Security, Windows 10, Windows 7, Windows Server - Article Type: News This month is light on security fixes and there are no zero-days but there are still plenty of critical flaws that need patching. Microsoft released cumulative updates (CU) for Windows 10 after September’s Patch Tuesday. Late September saw an optional out-of-band CU (KB4524147) released to fix a problem with the print spooler. Then a required CU (KB4524147) came at the beginning of October, expanding on KB4524147 to add an important fix for a scripting engine vulnerability in Internet Explorer (IE). But both updates caused issues for some users, including breaking the Start menu and Windows Search. The only good news this month is that it’s relatively light on bug fixes and that there are no zero-days to worry about. But because of issues users have been experiencing with Microsoft’s updates for Windows 10 over the past few months, you should make sure you thoroughly test CUs in your environment before rolling them out to all users. Windows 10, Windows Server 2016, and Windows Server 2019 This month there are just two critical vulnerabilities patched for Windows 10 and Windows Server, both of which are remote code execution (RCE) flaws. The first is in the XML Core Services MSXML parser and how it processes user input. A successful exploit could let an attacker run malicious code and take control of systems. An attacker could trick a user into clicking a specially crafted link and run malicious code remotely. According to Microsoft, this bug only affects Internet Explorer. The second RCE is in the Remote Desktop Client. If a user connects to a malicious server, an attacker could use the flaw to run... --- ### Taking a Look at Your Hybrid Cloud Storage Appliance Options - Published: 2019-10-09 - Modified: 2024-11-19 - URL: https://petri.com/taking-a-look-at-your-hybrid-cloud-storage-appliance-options/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Hybrid Cloud, Microsoft Azure - Tags: Azure, Cloud, cloud computing, hybrid cloud - Article Type: Overview Seamlessly extending your local storage to the cloud is what hybrid cloud storage appliances offer. Sometimes these hybrid cloud storage options are extensions to local storage systems or sometimes they are specifically designed for hybrid cloud storage. When you think about hybrid cloud architectures, storage isn’t typically the first thing that comes to mind. You might think of the hybrid cloud as a cloud-based web frontend accessing an on-premise SQL Server backend. Or if you do think of storage, it’s more often as cloud storage for Infrastructure-as-a-Service (IaaS) VMs or sometimes, it might be as cloud storage for your backups or replicated VMs. It’s not usually as an extension of your local storage systems. However, seamlessly extending your local storage to the cloud is exactly what many hybrid cloud storage appliances do. Sometimes these hybrid cloud storage options are extensions to local storage systems or sometimes they are specifically designed for hybrid cloud storage. These hybrid cloud storage appliances reside on-premises and on one side they are connected to the LAN and on the other side they are connected to a cloud provider. They provide high-performance local storage and they also provide seamless access to cloud storage as if it were local storage. Local storage acts as a cache or buffer and can accelerate access to cloud data. Many of these solutions offer automatic data tiering where hot data is kept on-premise and cold data is moved to the cloud. These hybrid cloud storage appliances offer several advantages over tradition local storage solutions. They enable businesses to buy less storage hardware and still meet their growing storage and data protection requirements. In addition, the cloud storage can be accessed globally from multiple locations. Let’s take a closer... --- ### Azure Sentinel, Microsoft’s Cloud-Native SIEM Solution, Is Now Generally Available - Published: 2019-10-09 - Modified: 2024-09-04 - URL: https://petri.com/azure-sentinel-microsofts-cloud-native-siem-solution-is-now-generally-available/ - Categories: Microsoft Azure - Tags: Azure Sentinel, cloud computing, Security, SIEM - Article Type: News Microsoft announced September 25th on its Security blog that Azure Sentinel has reached general availability. Based on Azure Monitor Log Analytics, Sentinel adds a cloud-native Security Information and Event Management (SIEM) solution to Azure’s already long list of services. Microsoft announced September 25th on its Security blog that Azure Sentinel has reached general availability. Based on Azure Monitor Log Analytics, Sentinel adds a cloud-native Security Information and Event Management (SIEM) solution to Azure’s already long list of services. SIEM lets organizations collect event logs from different systems, centralize them, and perform analysis to identify potential issues and threats. The key difference between Sentinel and other SIEM solutions on the market is that Sentinel provides insight into Microsoft’s cloud services, like Azure and Office 365. Designed to work with hybrid cloud environments, Sentinel monitors events from on-premise devices and cloud services. At launch, there are 25 data collectors providing access to a variety of Microsoft and non-Microsoft services and solutions. There’s also integration with other popular clouds, like Amazon AWS. While Sentinel is not as mature as market leaders like Splunk, if your organization is Azure-first, then it’s worth looking at. I’ve been working with Sentinel while it was in preview and it’s easy to set up and configure. There’s a free tier that lets you keep data for up to 7 days, which is ideal for testing scenarios. Because Sentinel is a cloud-native solution, it could also help organizations reduce infrastructure costs as it can scale resources as needed. Two pricing plans, Pay-As-You-Go and Capacity Reservation, offer organizations additional flexibility. Capacity Reservation can save up to 60% on Pay-As-You-Go pricing, which costs $2. 46 per GB. Sentinel pricing is for the data analytics performed on your logs. You’ll... --- ### Microsoft Intune Support for Android Enterprise Fully Managed Devices Now Generally Available - Published: 2019-10-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-intune-support-for-android-enterprise-fully-managed-devices-now-generally-available/ - Categories: Mobile - Tags: Android, Microsoft Intune, Mobile Device Management - Article Type: News Microsoft now officially supports management of Android Enterprise fully managed devices using Intune. Google offers several different solution sets for Android Enterprise device management. In addition to Mobile Application Management (MAM), work profile for Bring-Your-Own-Devices (BYOD) users, and dedicated device for handsets that fulfill a single-use case, fully managed device is a solution for company-owned devices. Organizations that opt to use the fully managed device solution can manage configuration needed to keep handsets secure while still allowing users to be productive. Microsoft has been testing MDM for fully managed Android Enterprise devices in preview since January 2019. During the preview phase, a new redesigned lightweight app was introduced simply called ‘Microsoft Intune’. It doesn’t replace the Intune Company Portal app and it is only used in fully managed device scenarios. The app brings all the features from Company Portal to fully managed device handsets. Intune can onboard devices that run Android 6. 0 and later using the following methods: Knox Mobile Enrollment NFC QR Code Token Entry Zero Touch Enrollment Microsoft says that the device provisioning workflow launches the out-of-box experience (OOBE) that then guides users through the steps needed to onboard the device. A PIN is set during this phase to make sure the handset is protected from the beginning. The new Microsoft Intune app, Microsoft Authenticator, and Company Portal app are automatically downloaded as part of the OOBE. A list of other mandatory apps that will be installed is also displayed to make the process more transparent to the user. Finally, devices are registered with Azure Active Directory (AAD) so... --- ### Microsoft Unveils Battery-Powered Version of Azure That Fits in a Backpack - Published: 2019-10-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-battery-powered-version-of-azure-that-fits-in-a-backpack/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News - Article Type: News Microsoft has a new version of Azure Data Box Edge that can fit in a backpack and runs on batteries. This morning, at the Government Leaders Summit, Satya Nadella took to the stage to make the pitch about how Azure is the right solution for government workloads. While talking about how Microsoft is already being utilized by various military services, the company showed off a new version of Azure Data Box Edge. Data Box Edge is a Hardware-as-a-service solution. Microsoft ships you a cloud-managed device with a built-in Field Programmable Gate Array (FPGA) that can operate independently of a network connection. In the scenarios shown today by Microsoft where Data Box Edge is applicable, they were referring to a forward operating base or during the recent Ebola outbreak. Previously, Microsoft offered a blade-server that you could bring along and gain the benefits of Azure, but localized to your working office. The company is taking this concept one step further with a new solution that weighs under 10lbs, can fit in a backpack, runs on batteries, and meets the 810G ruggedized standard. Shown above is the small version of Azure that can fit nearly in your pocket. The device can run for “extended periods of time” on battery, Microsoft did not provide a duration, and the solution brings AI/ML features to your worksite. As an example, the company said you could use this box to scan real-time drone footage to look for a lost person. Microsoft often portrays its cloud services as this monolithic, interconnected, database of applications but the company is quickly moving towards edge-use cases such as these Data... --- ### No Surprise That Exchange Online Uses Windows Server Core > A recent Microsoft post contained the news that Exchange Online uses Windows Server Core. That might be news to some, but not to anyone who's been following the advice of the Exchange product group. - Published: 2019-10-08 - Modified: 2024-09-04 - URL: https://petri.com/exchange-online-uses-windows-server-core/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: cloud services, Exchange 2019, Exchange Online, Office 365, Windows Server Core - Article Type: News, Opinion A recent Microsoft post contained the news that Exchange Online uses Windows Server Core. That might be news to some, but not to anyone who's been following the advice of the Exchange product group. Exchange Online doesn't use virtual servers, follows a preferred architecture, wants to reduce the potential attack surface, and extract as much CPU as possible out of its servers. All good reasons why Windows Server Core helps. Core Best for Exchange Online Anyone who attended the Exchange 2019 session at the Microsoft Ignite 2018 conference won’t have been remotely surprised to learn that Exchange Online now uses Windows Server Core. Given the scale of Exchange Online, it means that hundreds of thousands of mailbox and other servers run the cloud version of Exchange 2019 on Windows Server Core. Figure 1: The scale of Exchange Online as at September 2018  (image credit: Microsoft) The cloud version of Exchange 2019 has been in production in Office 365 for well over a year. However, it takes time to execute a rolling upgrade for all servers in datacenter regions worldwide. Reasons to Go Core The reasons why Microsoft has chosen to use Windows Server Core for Exchange Online are very understandable. First, Windows Server Core reduces the attack surface for servers. Given the hacker preference to attack email accounts, it’s best to remove as many potential vectors as possible. The recent decision to remove basic authentication for many connection protocols to Exchange Online is further evidence of Microsoft’s activity in this area. Second, the Exchange Preferred Architecture favors physical servers over virtual servers. In the blog post, Microsoft makes the point that Server Core is “ideal for cases where you run virtual machines at scale,” but Exchange Online has always preferred physical servers because virtual servers introduce an extra layer of complexity that Microsoft considers undesirable at cloud scale. Another reason is economics: large-scales services... --- ### Microsoft Hopes to Leverage Office 365 to sell Earbuds - Published: 2019-10-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-looks-to-leverage-office-365-to-sell-earbuds/ - Categories: Hardware - Tags: Earbuds, Microsoft, Surface - Article Type: Opinion Microsoft has a new pair of earbuds that don't come cheap but they also integreat with Office 365. At Microsoft’s Surface hardware event this month, the company announced a wide variety of hardware. Everything from a new Surface Pro to a mobile phone that will not be released until next year. The event had a little bit of everything but one item that stood out is the company’s new Earbuds. While the design is something that you either love or hate, Microsoft is at least trying to change up the perception of what is possible with this type of peripheral. What the company has done is taken gesture control and moved it beyond the typical “only works with a smartphone” scenario. Primarily, the company has tied gesture support into its Office applications; one example is swiping on an earbud can advance a slide during a PowerPoint presentation. There are also other features like real-time voice translation and the ability to have captions displayed on your screen based on what is heard through the earbud in more than 60 languages. These are both features that are pushing the boundary a bit further than simple earbud. The question becomes is if these features are worth the hefty asking price of $249. 99. That’s not an impulse-type purchase which means Microsoft needs to land the marketing of this device perfectly if they hope to move the hardware in volume. And that’s a tricky task because if you focus too much on the productivity features and abilities but not hit on the core aspect, audio quality, and ease of use, it can be... --- ### Understanding and Using the PowerShell 7 ForEach Parallel Option - Published: 2019-10-07 - Modified: 2024-09-04 - URL: https://petri.com/understanding-and-using-the-powershell-7-foreach-parallel-option/ - Categories: PowerShell - Article Type: How To Loops are one of those crucial logic components that every programming language uses extensively and PowerShell is by no means any different. A loop allows you to iterate through a collection of objects performing one or more operations on each. Loops are one of those crucial logic components that every programming language uses extensively and PowerShell is by no means any different. A loop allows you to iterate through a collection of objects performing one or more operations on each. The PowerShell ForEach-Object cmdlet allows you to create loops. This cmdlet is simple and to the point, but by default it is sequential. The next value in the loop is only processed after the previous one has returned. Up until PowerShell 7. 0, you haven't been able to perform an operation in parallel, which means multiple values at the same time, natively using the widely used ForEach-Object language feature. Introduced in PowerShell 7. 0 Beta 3, the new ForEach-Object -Parallel feature changes that. The Parallel option on the ForEach-Object cmdlet allows you to run a ForEach-Object loop against multiple values at the same time. With very minimal refactoring you can add this new functionality onto existing ForEach-Object loops and see how much of a speed increase you can get. One special note is that this is not the same as the foreach loop. ForEach-Object is intended to be used over pipelined objects where foreach is intended to be used as in conventional languages. The pipeline is a central PowerShell feature that passes full objects, one after another, to subsequent commands. A very powerful feature, it is well suited to the ForEach-Object command, but not so much for the foreach loop. ForEach-Object Before Parallel As described above, the ForEach-Object is intended... --- ### Change in Management Philosophy Needed to Accelerate Teams Growth > Microsoft Teams is very successful at present, but a nagging doubt exists that some of the approaches taken by Microsoft towards Teams management and administration are less than optimum. - Published: 2019-10-03 - Modified: 2024-09-04 - URL: https://petri.com/change-in-management-philosophy-needed-to-accelerate-teams-growth/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Growth, Office 365, Policies, Slack, Teams - Article Type: Opinion Microsoft Teams is very successful at present, but a nagging doubt exists that some of the approaches taken by Microsoft towards Teams management and administration are less than optimum. It's great to introduce a mass of new features on an ongoing basis and it's better when policies exist to control the use of the features. But do new features always need to be enabled out-of-the-box? War of Words with Slack is Not the Big Issue for Teams I’m sure that the Microsoft Teams development group will smile at the protestations of Slack CEO Stewart Butterfield even if the Wall Street Journal thinks it “intensifies a war of words. ” After all, Slack has its own problems to sort out given a sharp decline in its stock price following recent results. According to a recent Recode article, while Slack is loved by startups, customers that pay big bills prefer Teams. But what the Teams development group should worry about is a growing feeling in some customers that it is an application that’s hard to manage. That’s not a reputation that Teams needs to have at this stage of its evolution. Chaotic Teams Sprawl Part of the reason why people consider Teams hard to manage is the chaotic sprawl of teams that can so easily accumulate inside deployments. If you’re not careful and don’t restrict the ability of users to create new teams, it’s easy to build up a mass of teams that exist with no good reason. The root cause of this problem lies in an attitude within Microsoft surfaced in late 2014 when they launched Office 365 Groups. The laudable idea advanced by Microsoft was that Groups facilitated end users by making it easy for them to collaborate, but to make this possible it was necessary to remove any restrictions on group creation. Those of us who lived through the public folder mess of... --- ### Microsoft Announces Windows 10 X With New Features, UI, and More - Published: 2019-10-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-windows-10-x-brings-new-features-ui-and-more/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, Windows 10 X - Article Type: News Microsoft has a new SKU of Windows 10 but this version is introducing compartmentalization of Win32, a huge step towards making Windows 10, fully modular. At Microsoft’s hardware event in NYC this week, the company announced a new SKU of Windows 10, called X. While Microsoft wants you to call it Windows 10 ‘X’, I will not hold it against you if you refer to it as Windows 1010. The new SKU of Windows is the first look at Microsoft’s efforts to fully modularize the operating system. We had previously heard terms like Core OS or Santorini, and while Microsoft will not tell us the development path to get to the point, there is one thing to take away, this appears to be a big deal. What Microsoft has done is found a way to compartmentalize the big components of Windows, namely the Win32 API. What this means is that Windows 10X can run classic Windows applications but in a way that they cannot harm the OS itself. By achieving this simple task, make no mistake this was not a simple engineer effort, Windows 10X can go down the same path as Windows 10 S or even RT, but be successful. Think of it this way, Windows 10 X is a lot like Windows 10 S but it can run any app, from the store, the web, Win32, any traditional Windows app, but it’s compartmentalized so that it will not impact the systems long-term performance while also protecting against malicious applications as well. Windows 10 X is more than just a new engineering hurdle, Microsoft is also working on new simplified user experience as well... . --- ### Microsoft Announces New Surface Pro X, Laptop 3, and Surface Pro 7 - Published: 2019-10-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-new-surface-pro-x-laptop-3-and-surface-pro-7/ - Categories: Hardware - Tags: ARM, Microsoft, Surface - Article Type: News Microsoft has announced hardware updates to the Surface Pro, Surface Laptop, and the company is also launching a brand-new tablet that uses an ARM chip and features LTE connectivity. Surface Pro X with ARM chip, thinner bezels and LTE connectivity. This week, in New York City, Microsoft held a keynote where the company announced new hardware and updates to their existing devices. On the agenda, this year is a new tablet with an ARM chip, two sizes of the Surface Laptop, and a mild update to the device that started it all, the Surface Pro. Starting with the Pro, Microsoft is replacing the display port and is finally including a USB-C port. The outside of the device remains nearly identical but the insiders are getting a spec bump to a newer generation of Intel chips. Aside from previous-gen devices, if you have seen a Surface Pro, there isn't anything else new here. The device starts at $749 and is coming this fall. The laptop is seeing a bigger change with the addition of a new 15in variety. While the Laptop design does retain a similar design as the previous generation, you now have an option to buy the hardware without an Alcantara cover. And of course, there will be USB-C ports on these devices as well. Updated Surface Laptop without Alcantara One of the new features is that the device is easier to service. Microsoft is making it so that the repairability of the device is easier, but it doesn't look like the SSD is user-replaceable, yet. And for charging, Microsoft is introducing fast charging that will hit 80% in under an hour. Laptop 3 13in (starts at $999)... --- ### How to Upgrade to PowerShell 7 - Published: 2019-10-02 - Modified: 2023-07-17 - URL: https://petri.com/how-to-upgrade-to-powershell-7/ - Categories: PowerShell - Tags: PowerShell, Powershell 7 - Article Type: How To Looking to upgrade to PowerShell 7? Here's the easy way to move to the new version of the platform. In the first half of 2019, Microsoft introduced the next version of PowerShell known as PowerShell 7. PowerShell 7 is the latest version of the popular scripting/automation/development language stemming from the previous version of PowerShell Core 6. 2. PowerShell 7 brings about many changes like now using . NET Core 3. 0, trimming the gap between Windows PowerShell and PowerShell Core functionality, simplifying credential management and more. All of these updates are great but how do you leverage them if you're still using Windows PowerShell or PowerShell Core 6. x? Let's find out! Although PowerShell 7 is supported on nearly all platforms, we'll be sticking with Windows in this article. The path to PowerShell 7 will start one of two ways - either with Windows PowerShell or an older version of PowerShell Core. Note that I will use PowerShell and PowerShell Core interchangeably in this article. As of PowerShell 7, Microsoft has chosen to drop the 'Core' moniker completely. PowerShell 7 is a direct path upgrade from PowerShell Core 6. 2. Upgrading from Windows PowerShell Upgrading isn't a fair term when referring to Windows PowerShell 5. 1 and PowerShell 7. PowerShell 7 can exist completely separate from Windows PowerShell on the same Windows system. This is a big benefit allowing you to slowly wean yourself off of Windows PowerShell rather than all at once. There are a few ways you can install PowerShell 7. You can use the MSI via the PowerShell GitHub releases page or by using Windows PowerShell. Installing PowerShell 7 via an MSI... --- ### Making the Exchange – Azure Active Directory Connection More Reliable > Microsoft posted an odd blog on September 9 to announce improvements in the relationship between Exchange Online and Azure Active Directory. Many Office 365 tenants might have ignored the post, but it's actually about a piece of important work to help the service run better. - Published: 2019-10-01 - Modified: 2019-10-01 - URL: https://petri.com/exods-aad-synchronization/ - Categories: Exchange Online, Microsoft 365, Office - Tags: AAD, Azure Active Directory, Directory synchronization, Exchange Online, EXODS - Article Type: News, Opinion Microsoft posted an odd blog on September 9 to announce improvements in the relationship between Exchange Online and Azure Active Directory. Many Office 365 tenants might have ignored the post, but it's actually about a piece of important work to help the service run better. Many updates happen to Exchange Online objects that need to be replicated to Azure Active Directory and onward to other Office 365 app directories. This work means that changes show up faster, which is good, but there's a small downside to note. Basic Software Engineering to Make a Service Run Better Were you puzzled by Microsoft’s September 9 blog post titled Exchange Online Improvements to Accelerate Replication of Changes to Azure Active Directory? If so, join the party because you weren’t the only one. Unlike most posts from Microsoft, this epistle didn’t cover a glitzy new feature, dazzling new functionality, or even predict that Exchange Online would do something terribly interesting soon. Instead, it talked about plain old software engineering of a type that usually happens well under the radar. The change was also announced in Office 36 notification MC190021 and is associated with Office 365 Roadmap item 55023. The Nature of Office 365 Office 365 is composed of a loosely-connected set of services. It might seem that Azure Active Directory is the master, but that’s only true for account and group management. Under the surface, Office 365 runs a seething mass of directory synchronization operations to keep Azure Active Directory aligned with the app directories (like those used by Teams, Yammer, SharePoint Online, and Exchange Online) and on-premises Active Directory (for hybrid deployments). The app directories hold information needed for the smooth running of an application. For example, Exchange Online holds details needed to route email to users and groups. Without precise, fast, and reliable synchronization, the loosely-coupled nature of Office 365 would dissolve at the seams. The Slow Route Between Exchange Online and Azure Active Directory What the post tells us is that Microsoft realized that the synchronization... --- ### Everything You Need to Know about Office 365 and SharePoint - September 2019 > Artificially intelligence making PowerPoint and the world better? SharePoint site swapping for us old timers? And a lot more in this Office 365 update. - Published: 2019-09-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-and-sharepoint-september-2019/ - Categories: Microsoft 365, PowerApps, PowerBI, SharePoint, SharePoint Online - Tags: AutoCAD, PowerPoint, SharePoint Online, To-Do, Wunderlist - Article Type: News With September coming to an end, here's what you need to know about Office 365 and SharePoint announcements during the past month. Let’s try something different this month. Instead of separate articles for SharePoint and Office 365, let’s roll everything into one. The line between the products gets blurrier and blurrier every month, and SharePoint on-premises news is non-existent.  So give this a go and let me know what you think. This month you get updates on CAD drawings in OneDrive, modernizing SharePoint Online, Microsoft To Do and more. Lots of fresh nuggets in here, especially the part where I think PowerPoint can change the world into a better place. Artificially Intelligence might just save us all. Enjoy! OneDrive adds the ability to view CAD files This is pretty cool. I realize 95% of you don’t have needs for working with CAD drawings, but those of you that do this feature is a giant step forward. Now in OneDrive you can view CAD drawing with the Autodesk AutoCAD engine, you can dig deeper and make common edits with the AutoCAD web app by directly connecting the file, and finally, you can open the file from OneDrive in the native AutoCAD applications. This is pretty awesome. My first job was for a steel building company, and this would have been amazing for productivity. Check out more details here. Modernize your root SharePoint Site With SharePoint Online, when you came to the party (created your first SharePoint Site) determined what site was created at the root of your tenant. If you were before April 2019, which I am guessing is most of... --- ### Microsoft's New Virtual Desktop Service is Here and Ready for Legacy Apps - Published: 2019-09-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-virtual-desktop-service-is-here-and-ready-for-legacy-apps/ - Categories: Cloud Computing, Microsoft Azure - Tags: Microsoft, News, Windows Virtual Desktop - Article Type: News Microsoft's Windows Virtual Desktop is now generally available, here's what you need to know about the new service. Back in March of this year, Microsoft pulled back the curtains on the first public preview of its new virtualized desktop service known as Windows Virtual Desktops (WVD) that was announced at Ignite in 2018. Today, the company is announcing the service is now generally available which means that the company is certifying that it is ready to run production workloads. Windows Virtual Desktop is a new cloud service that delivers a multi-user Windows 10 experience that is optimized to work with Office 365 Pro Plus. The new offering makes it significantly easier to scale Windows 10 and Office deployments on Azure and comes with built-in security and compliance. The big carrot Microsoft is using to hopefully attract people to the service is that for customers who are willing to virtualize their Windows 7 desktops, they will offer extended service updates for the OS through January of 2023. For customers who will not be able to meet the migration deadline for the aging OS, WVD is an option to reduce your exposure once support has ended. Last week, I spoke with Brad Anderson, CVP of the Commercial Management Experiences team within the Experiences & Devices Group at Microsoft and Scott Manchester, Group Program Manager, Windows Virtual Desktop and Remote Desktop Services at Microsoft who shared a bit more about the service. For starters, the most popular application running on Windows Virtual Desktop during the preview program was Microsoft Office. A bit surprising, as I would have expected a legacy application... --- ### Everything You Need to Know About Azure Infrastructure – September 2019 > Lots of Microsoft Azure IaaS news, and looking deeper at the rise and fall of Azure Germany, Azure Sentinel, and Azure Stack. - Published: 2019-09-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-september-2019/ - Categories: Microsoft Azure - Tags: Azure, Azure Cost Management, Azure Files, Azure Germany, Azure Migrate, Azure Sentinel, Azure SQL, Azure Storage Explorer, BLOB, Differential Snapshots, ExpressRoute, Germany, M-Series, Managed Disks, Movere, networking, Norway, Premium, Private Link, Regions, SIEM, Snapshots, storage, Zone Redundant Storage, ZRS - Article Type: Overview We are now in the middle of the second Azure (and Windows) semester of 2019. Planning for the first semester of 2020 is underway. And now we are just over 1 month away from Ignite, the week that is usually an explosion of announcements for Microsoft’s enterprise products. We are now in the middle of the second Azure (and Windows) semester of 2019. Planning for the first semester of 2020 is underway. And now we are just over 1 month away from Ignite, the week that is usually an explosion of announcements for Microsoft’s enterprise products. In previous years, Ignite was in September and August would be a month when things would enter some phase of availability or quietly sneak in the Azure Portal or the pricing information web pages. This year, with Ignite running in early November, those build-up releases have just begun. Azure Annexes Germany Microsoft has opened two new Microsoft-owned Azure regions Germany. The history of Azure in Germany is – I was going to say “interesting” – silly and it’s all because of a myth. Many German IT/business people believe that using an American-owned cloud is “against the law”. You can safely bet that Microsoft wants to win on Cloud in the fourth-largest economy on the planet and the financial heart of Europe. But their efforts to sell Office 365, Azure, and so on, stopped dead with the typical customer response of “we are not allowed to use your cloud”, even though all other European Union countries were quite OK with using Microsoft data centers based in the European Union under the same data protection and export laws as their German colleagues. Microsoft, with a German partner, built custom “sovereign” versions of their data centers that would be owned by that German... --- ### Everything You Need to Know About Windows – September 2019 - Published: 2019-09-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-september-2019/ - Categories: Windows Client OS - Tags: Windows 10, Windows Insider, Windows Server, WSUS - Article Type: News This month sees Microsoft designate Windows 10 1903 ready for broad deployment, BitLocker no longer trust SSDs that have built-in hardware encryption, Windows 10 reach 900 million devices, and much more. This month sees Microsoft designate Windows 10 1903 ready for broad deployment, BitLocker no longer trust SSDs that have built-in hardware encryption, Windows 10 reach 900 million devices, and much more. Windows 10 May 2019 Update Designated Ready for Broad Deployment Microsoft announced via its Windows Update Twitter account that Windows 10 version 1903 is now ready for broad deployment. What that means is that Microsoft now thinks version 1903, the May 2019 Update, is stable and reliable enough for organizations to roll out to users. Microsoft also notes that it is broadly rolling out version 1903 to devices running Windows 10 version 1803 Home, Pro, and Pro for Workstation SKUs because version 1803 is due to expire November 12th, 2019. For more information on the announcement, and for a list of outstanding issues, check out the Known issues and notifications page for Windows 10 1903 on Microsoft’s website. BitLocker No Longer Trusts SSD Encryption Many solid-state disks come with hardware-based encryption because it is more efficient than software solutions. But it transpires that many of these disks have empty master passwords and other security issues that could render the encryption ineffective. So, Microsoft is changing the default BitLocker behavior in Windows so that BitLocker software encryption will be enabled regardless of whether the disk has onboard encryption. This change will only affect new systems. If you are currently using BitLocker with a drive that has hardware-level encryption, nothing will change. Although you can decrypt your drive and... --- ### Paul Thurrott's Short Takes: September 27 - Published: 2019-09-27 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-27/ - Categories: Cloud Computing, Hardware, Windows 10 - Tags: News - Article Type: Overview Because I know nothing, nothing, this edition of Short Takes looks at Microsoft’s new privacy fight, Windows 10’s usage successes, a Surface event in New York next week, .NET Core 3.0, and much, much more. Because I know nothing, nothing, this edition of Short Takes looks at Microsoft’s new privacy fight, Windows 10’s usage successes, a Surface event in New York next week, . NET Core 3. 0, and much, much more. Microsoft takes privacy fight to the courts Microsoft this week revealed that it filed a lawsuit in 2018 challenging “a secrecy order issued by a federal magistrate judge in Brooklyn, New York in connection with a federal national security investigation. (It was unsealed by a U. S. District Court, which means the firm can now discuss it. ) The issue: Microsoft believes that its customers have the right to know when a law enforcement agency requests that person’s email, documents, or other data as part of a legal case. And as it turns out, that is what usually happens, Microsoft says. But sometimes the government asks that these requests be kept secret. “We believe there are times when those orders go too far,” Microsoft notes. “In those cases, we will litigate to protect our customers’ rights. ” Say what you will about Microsoft, but this stance in favor of its customer’s rights isn’t just pragmatic from a business perspective, it’s the right thing to do. And it should be applauded. “The Google Assistant can now control your Xbox One” By which they mean, you can now control your Xbox One with the Google Assistant. Windows 10 is now active on over 900 million devices, mostly PCs Microsoft revealed this week that Windows 10 is now active... --- ### Digging into the Back Up Myths - Published: 2019-09-27 - Modified: 2024-09-04 - URL: https://petri.com/digging-into-the-back-up-myths/ - Categories: Amazon Web Services, Backup & Storage, Microsoft Azure - Tags: Azure, Backup, Cloud, Disaster Recovery - Article Type: Overview Backing up your data can be an easy process but it's important to not get caught up in only taking the easy route too. Backup is the foundation of all disaster recovery (DR) plans. If you encounter some type of system or site failure, backups are your final line of defense and can make the difference between being able to restore your IT services and extended downtime. Even though everyone performs backups, there are still a number of myths that persist about the process. Let’s take a closer look at some of the main backup myths. You only need to back up your data Some smaller businesses, in particular, make the mistake of thinking that they really only need to back up the data that changes like their files and documents. Smaller businesses often don’t have a lot of excess storage capacity and reducing what you backup to just your documents and other frequently changing can be appealing. It reduces the amount of storage required as well as the backup time. However, in the event of a system failure, it drastically increases the recovery time because you would need to essentially build a replacement system and reinstall an OS and any required applications as well as perform configuration. Having a full system or VM backup enables you to be up and running much faster. Doing a local backup is all you really need While performing a local on-premises backup is certainly a requirement it does not enough provide you with complete DR protection. It’s true that your local backup will be the one that you will use for most restore operations. However, it does... --- ### Gather Research in a Structured Format with Microsoft Edge Collections - Published: 2019-09-26 - Modified: 2024-09-04 - URL: https://petri.com/gather-research-in-a-structured-format-with-microsoft-edge-collections/ - Categories: Windows Client OS - Tags: Microsoft Edge, Windows 10 - Article Type: Overview Collections has made it to the Dev channel for Microsoft Edge Insiders. In this Ask the Admin, I look at how Collections works and where it might be useful. During the conference keynote at Build earlier this year, Microsoft talked about a feature coming to its new Chromium-based Edge browser called Collections. It’s been a bit of a wait but a few weeks ago the feature debuted in the Canary channel. And last week, Microsoft updated the Dev channel with Collections. While still in an early preview form, the functionality we have right now seems to work reliably if you want to try it out for yourself. What is Collections? Much like Pocket and Pinterest, Collections is a tool for gathering and collating information on a topic. But it is more than a simple reading list. This is what Microsoft says about Collections: We’ve heard a consistent problem from our customers in user studies, interviews, and feedback: The web can be overwhelming. It’s easy to lose track of where you are, and too difficult to turn the chaos of your tabs and windows into actionable information. We designed Collections based on what you do on the web. It’s a general-purpose tool that adapts to the many roles that you all fill. If you’re a shopper, it will help you collect and compare items. If you’re an event or trip organizer, Collections will help pull together all your trip or event information as well as ideas to make your event or trip a success. If you’re a teacher or student, it will help you organize your web research and create your lesson plans or reports. Whatever your role,... --- ### Adoption and Change Management: Two Sides of the Office 365 Card > Adoption and Change Management are often discussed when companies move to cloud services, including Office 365. How quickly can we adopt the new services and how can we manage change? - Published: 2019-09-26 - Modified: 2024-09-04 - URL: https://petri.com/office365-adoption-change-management/ - Categories: Microsoft 365, Office - Tags: Adoption, Change Management, Exchange Online, Office 365, Planner, SharePoint Online, Teams - Article Type: Opinion Adoption and Change Management are often discussed when companies move to cloud services, including Office 365. How quickly can we adopt the new services and how can we manage change? As it happens, Microsoft is extremely interested in driving customer adoption, so much so that this can cause problems with change management simply because so much change happens so quickly insist Office 365. As we discuss here, a structured approach to change management helps. This post is sponsored by Quadrotech, you can learn more about their Office 365 solutions here. Adoption and change management are two topics that are often coupled together in Office 365 discussions. Microsoft wants its customers to adopt Office 365 and other cloud services. Customers want to adopt the cloud too, mostly because of the promised advantages in reduced capital spend, lower operational expenses, better security, and "evergreen software. " Change management, which is where people come in, can slow things down if not well managed. Anyone in charge of an Office 365 tenant should understand why Microsoft behaves as it does in driving Office 365 forward and how to manage change inside an ever-evolving environment. Balancing adoption and change management can be difficult. Microsoft and Adoption Customer adoption of cloud technologies is very important to Microsoft. They have invested tens of billions to build out the datacenters to host the Azure and Office 365 services. Add in even more billions of engineering costs to transform on-premises servers like Exchange and SharePoint into cloud-savvy services and to develop new cloud-only apps like Stream, Teams, and Planner, and you can see why Microsoft wants customers to use (and pay for) its cloud services. Microsoft reported that Office 365 had 180 million active users in April 2019. Given the average monthly growth of over 3 million new users seen since 2016, it’s reasonable to assume that Office 365 now supports over 200 million active monthly users. Together with strong growth in Azure, Office... --- ### How to Get Outlook to Play Nice with Windows 10 Virtual Desktops - Published: 2019-09-25 - Modified: 2024-09-04 - URL: https://petri.com/how-to-get-outlook-to-play-nice-with-windows-10-virtual-desktops/ - Categories: Windows 10 - Tags: Office 365, Virtual Desktops, Windows 10 - Article Type: How To How to configure Windows and Outlook so that it works better with Windows 10 virtual desktops. Virtual desktops allow you to organize open applications on one or more ‘virtual’ desktops. Not to be confused with Windows Virtual Desktop (WVD), the new Windows 10 Desktop-as-a-Service (DaaS) solution from Microsoft that is currently in preview, virtual desktops is a feature inside Windows 10 aimed at improving workflow and productivity. For more details on how to work with virtual desktops, see Using Virtual Desktops in Windows 10 on Petri. I like to keep Microsoft To Do and Outlook open on a virtual desktop in Windows 10. To Do behaves as expected. If I click the pinned taskbar icon on desktop 1, I get taken to the running instance of the app on desktop 2. But like other Office 365 ProPlus desktop applications, Outlook can run multiple instances. Now that makes sense for most Office apps, like Word and Excel. But I don’t think I’ve ever needed to run two instances of Outlook at the same time. So, when clicking the pinned Outlook taskbar icon on desktop 1, instead of being taken to the running instance of Outlook on desktop 2, Windows opens a new instance of Outlook on desktop 1. Change Virtual Desktop Settings One way to solve quickly solve this issue is by changing the default virtual desktop settings to show all running apps on the taskbar, regardless of the desktop on which they are running. Open the Settings app in Windows 10 by pressing WIN+I. In the search box at the top of the Settings... --- ### Windows 10 Approaches 1 Billion Devices But Windows 7 Refuses to Go Away - Published: 2019-09-24 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-approaches-1-billion-devices-but-windows-7-refuses-to-go-away/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, Windows 10 - Article Type: News Windows 10 is approaching 1 billion active devices but Windows 7 refuses to go away. Early next year, Windows 7 will reach its end of support which means running the OS, will expose your device and organization to malicious threats. While many customers are well into the journey of migrating away from the OS, there are some who have yet to start the process. For Windows 10, adoption has been growing steadily, albeit a bit slower than Microsoft had initially predicted when the OS was first released. But, today, the company is saying that there are more than 900 million devices running the operating system which is a significant milestone. Microsoft reported that Windows 10 had passed the 800 million device mark in March of 2019. According to Net MarketShare, which provides a rough estimate of the operating system landscape, the metrics state that Windows 10 is on about 42% of PCs whereas Windows 7 is still on a sizeable 36%. While these numbers are not perfect, they do show that there is still a sizeable segment of the market running the older operating system. What this means is that in 2020, Microsoft should easily pass the 1 billion active devices milestone next year. Considering that Microsoft has focused its efforts lately on its cloud and SaaS businesses, Windows remains a key pillar of the company’s long term success. If you are still running Windows 7 and need additional support, there are a couple of options to prolong your migration to Windows 10; you can find those resources here. But for those of you who... --- ### How to Provision a Windows Virtual Desktop Host Pool - Published: 2019-09-24 - Modified: 2024-09-04 - URL: https://petri.com/how-to-provision-a-windows-virtual-desktop-host-pool/ - Categories: Microsoft Azure - Tags: cloud computing, Microsoft Azure, VDI, Windows Virtual Desktop - Article Type: How To How to configure a Windows Virtual Desktop (WVD) host pool. Windows Virtual Desktop is cloud Desktop-as-a-Service (DaaS) offered by Microsoft as part of Azure and Microsoft 365. Other companies offer Windows virtualized desktop services in the cloud but one of the key differentiators of Microsoft’s service is that you can use a multi-session version of Windows 10 instead of Windows Server. The Desktop Experience in Windows Server provides something similar to the Windows 10 desktop, but some features are missing, like Edge and the Microsoft Store. WVD includes optimizations for Office 365 ProPlus to improve performance for users in virtual machines (VMs). WVD can also be used with Windows 7, including free Extended Security Updates, while Windows 10 migrations are being planned or in progress. For more information on WVD, see Getting Started with Windows Virtual Desktop: Understanding Windows Virtual Desktop on Petri. WVD host pools are collections of one or more identical virtual machines in a tenant. Each pool contains an app group that users can work with like on a physical PC. A desktop is published by default. Before creating a host pool, you must set up a WVD tenant in Azure. For more information on setting up a tenant, see How to Create a Windows Virtual Desktop Tenant with Windows Virtual Desktop on Petri. Note that because WVD is currently in preview, details outlined in this and previous articles might change during the preview and once WVD reaches general availability. Create a Windows Virtual Desktop Host Pool Let’s create a host pool in the Azure... --- ### Support for Office 365 Sensitivity Labels Now in Office ProPlus for Windows > The September update of the Office ProPlus monthly channel delivers support for Office 365 sensitivity labels without the need to install the Azure Information Protection client. - Published: 2019-09-24 - Modified: 2024-09-04 - URL: https://petri.com/office-365-sensitivity-labels-proplus/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: AIP, Azure Information Protection, encryption, Office 365 Message Encryption, Office 365 Sensitivity Labels, Office ProPlus, OME - Article Type: News The September update of the Office ProPlus monthly channel delivers support for Office 365 sensitivity labels without the need to install the Azure Information Protection client. This is a step forward to make it easier for Office 365 users to be able to protect their most confidential information with encryption. More work remains to be done to upgrade the Office Online apps (including OWA), Outlook Mobile, and SharePoint and OneDrive. Will all this happen before Ignite? Less Friction on the Road to Office 365 Protection The September update for Office ProPlus delivered version 1909 (build 12026. 20108) to Monthly Channel (targeted) to Windows desktops. The notable item delivered in this version is native support for Office 365 sensitivity labels for the Windows Office apps, something that’s been available in Office for Mac since January. Sensitivity labels can apply markings (like headers and footers) to messages and documents depending on their different degrees of importance (or sensitivity); at the highest level, sensitivity labels can invoke rights management to encrypt and protect content. Native support might not seem like a big thing, but it is given the influence of Office for Windows on user desktops. Having Office apps able to apply sensitivity labels and the encryption that can be invoked by label settings makes it much easier for organizations to protect their most confidential information. Native Support for Office Native support means that the Office apps include all the code (based on the Microsoft Information Protection SDK) needed to fetch policy information from the Security and Compliance Center, interpret label settings, apply markings, and encrypt documents. Up to now, Windows users have had to install the Azure Information Protection client on workstations to process sensitivity labels. After you install the ProPlus update, you have everything needed to protect Office documents stored in Exchange Online, SharePoint Online, and OneDrive for Business. On the other hand, if you need to protect content stored outside Office 365 – or apply... --- ### The Dashboard: Microsoft's Unhealthy Relationship With UWP Devs > There is little doubt Microsoft is a developer company. There is doubt about Microsoft being a company which supports indie app developers. - Published: 2019-09-23 - Modified: 2024-09-04 - URL: https://petri.com/the-dashboard-microsofts-unhealthy-relationship-with-uwp-devs/ - Categories: Visual Studio, Windows 10 - Tags: Developers, Microsoft Partner, UWP - Article Type: Overview There is little doubt Microsoft is a developer company. There is, however, serious doubt about Microsoft being a company which supports indie app developers. The demise of UWP and its confusing twists and turns is no secret and is now old news. As that news was bouncing around the Microsoft blogs, UWP developers' dedication was being tested and even taunted. Developers Are Now Partners Access to the Microsoft Store for developers came through the Microsoft Developer Dashboard. This is where UWP creators could: submit their apps, read and respond to reviews, go through feedback, analyze data, and get paid. A year or more ago Microsoft rebranded the developer dashboard to the Partner Center and made it the hub for activities such as Windows Store apps, Cortana, and Cross-Device Experiences. All of which are different ways for developers to leverage Microsoft technology. So, the previous brand "Developer Dashboard" would have still fit. No matter, with a new header and URL, the new "Partner Center" will be new and improved ... right? Wrong. All the previous issues remain, and a few new ones got thrown in. App information such as crash data frequently would not be updated for a week or more and information such as how much money is being made would also be wrong for a couple weeks every month. From the first until the 16th when the payment would be sent to developers payment data was frozen. The issues did not stop there. Nearly every part of the Partner... --- ### Microsoft’s Dynamics 365 Wave 2 Delivers Fraud Protection, Commerce, and IoT Features - Published: 2019-09-23 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-dynamics-365-wave-2-delivers-fraud-protection-commerce-and-iot-features/ - Categories: Cloud Computing, Dynamics - Tags: Dynamics, Dynamics 365, Microsoft, Wave 2 - Article Type: News While you may not think of Microsoft as a traditional retail player, the company has a suite of services that range from fraud protection to IoT analytics that can help retailers modernize their operations. Announced today, Microsoft is unveiling the next major updates to Dynamics 365, known as Wave 2. While you may not think of Microsoft as a traditional retail player, the company has a suite of services that range from fraud protection to IoT analytics that can help retailers modernize their operations. Announced today, Microsoft is unveiling the next major updates to Dynamics 365, known as Wave 2. Included in this second wave of features are new capabilities that span across the product line such as new capabilities that extend Dynamics 365 Customer Insights beyond the B2C markets to now address B2B scenarios. This means that organizations are now a first-class entity and organizations can map leads and contacts to buying groups, accounts, and account hierarchies, giving them the ability to build segments and measure the relationship between an account and contact. In this release, Microsoft is also bringing new capabilities to the virtual agent for customer service. Now, without having to write a single line of code, customers will be able to deploy an agent that provides a personalized conversation with a customer. Further, a new authoring and web publishing updates make it easier to test an agent on a demo site before pushing it live. On the IoT side, new capabilities were announced today for Dynamics 365 Supply Chain Management that can connect IoT signals from mission-critical assets with business transaction data. One of the bigger announcements from today’s wave 2 event is that Microsoft is launching Dynamics 365 Commerce. This new solution is a fully-featured omnichannel platform for retail and e-tailer companies that unifies back-office,... --- ### Paul Thurrott's Short Takes: September 20 - Published: 2019-09-20 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-20/ - Categories: Hardware, Microsoft 365, Mobile - Tags: News - Article Type: Overview Because it’s always about Microsoft, this edition of Short Takes looks at Microsoft 365 for consumers, Microsoft’s new font, Microsoft’s defense of Huawei, Microsoft employees freaking out about climate change, and so much more. Because the DOJ will save us from Big Tech, this edition of Short Takes looks at Microsoft 365 for consumers, Microsoft’s new font, Microsoft’s defense of Huawei, Microsoft employees freaking out about climate change, and so much more. Another step towards Microsoft 365 for consumers? Evidence is building that Microsoft will replace its Office 365 subscriptions with a new offering branded as Microsoft 365. Mary Jo Foley---who first reported this rumored change---this week noted that Office 365 customers are posting screenshots of branding changes that they’re seeing running the desktop apps in Windows. And while some are business-focused, some are using consumer subscriptions. Surely something is changing soon, right? Interestingly, Microsoft denies this. “No, we have no plans to rebrand Office 365 ProPlus to Microsoft 365 ProPlus at this point,” Foley was told. “Customers can still buy Office 365 ProPlus without Windows and Intune. ” “Microsoft October Event 2019: will we see a new Surface device? ” Duh? Microsoft releases a new font Microsoft this week released a new font, called Cascadia Code, that it had previously announced at Build 2019 in May. The font is designed for developers and administrators who use editors and command-line environments like Windows Terminal and as such it is pleasant to look at. It’s also open-sourced. “The name Cascadia Code originated from the Windows Terminal project,” Microsoft’s Kayla Cinnamon explains. “Before it was released, the codename for Windows Terminal was Cascadia. In fact, some of the source files within the Terminal still use this... --- ### Patch Tuesday September 2019 - Published: 2019-09-19 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-september-2019/ - Categories: Security - Tags: Patch Tuesday, Security - Article Type: News This month Microsoft patches two zero-days that could lead to elevation of privileges and more Remote Desktop Protocol bugs. This month Microsoft patches two zero-days that could lead to elevation of privileges and more Remote Desktop Protocol bugs. Windows and Windows Server This month’s Patch Tuesday cumulative update (CU) for Windows 10 has caused another media storm, with some users experiencing broken search. The problem stems from an issue that started after Microsoft released a fix (KB4512941) for the Visual Basic 6, VBA, and VBScript issues that I reported last month, which saw some users suffer severe CPU spikes caused by the Cortana SearchUI. exe process. A fix arrived in the September CU for Windows 10 (KB4515384) but it appears to have broken the Start menu and Windows Desktop Search. It’s worth noting that this issue only occurs on devices that have disabled searching the web using Windows Desktop Search (WDS). If you have the default WDS settings, you won’t be affected; and that means most Windows 10 1903 users. So, while it would have been preferable that this issue hadn’t occurred, testing against every perceivable Windows configuration is no easy task. It’s not clear whether Microsoft may again have missed warnings from Windows Insiders in the Feedback Hub. If so, that is less forgivable when the information you need to roll out a quality update is sitting right under your nose. There are 4 Remote Code Execution (RCE) vulnerabilities patched in the Remote Desktop Protocol (RDP) service this month, both rated critical. A fifth critical fix patches a bug that could allow remote code execution if a... --- ### Microsoft Gives Exchange 2010 Nine More Months > In a surprising but welcome announcement, Microsoft moved the end of extended support for Exchange 2010 to October 2020. This version of Exchange was the most technology-rich and significant in the product's history. - Published: 2019-09-19 - Modified: 2024-09-04 - URL: https://petri.com/exchange-2010-prolonged-october-2020/ - Categories: Exchange 2010, Exchange Server, Microsoft 365, Office - Tags: Exchange 2010, Exchange Online, Extended Support, migration, Office 365 - Article Type: Opinion In a surprising but welcome announcement, Microsoft moved the end of extended support for Exchange 2010 to October 2020. This version of Exchange was the most technology-rich and significant in the product's history, which might be the reason why so many organizations still depend on Exchange 2010 for email. Better options exist, and Exchange Online is the natural place to go... if your network and applications allow the move. In a somewhat surprising but also totally understandable decision, Microsoft has moved the date when extended support ceases for Exchange 2010 out by nine months to October 13, 2020. It’s surprising because Microsoft likes to retire old server versions, especially those running on old versions of Windows (like Windows Server 2008 and Windows Server 2008 R2). It’s understandable because many large organizations haven’t grasped the cloud nettle and decided to go with Exchange Online or stay on-premises. Their dithering has kept Exchange 2010 in business, powering email like it’s done for the best part of a decade. Of course, Microsoft only made the decision “After investigating and analyzing the deployment state of an extensive number of Exchange customers. ” This is another way of saying that Microsoft looked at the tea leaves and decided that nine months extra wouldn’t make any difference, especially as it aligned Exchange 2010 neatly with the end of extended support for SharePoint 2010 and Office 2010. So Much Technology, So Much Impact Exchange 2010 was a big release. So much new technology was introduced that it took me forever (or so it seemed) to write the Exchange 2010 Inside Out book. Much of that technology is still very much in use in both cloud and on-premises versions today, like the role-based access control model, while some is still in use but a better alternative exists, like Exchange-specific in-place holds and searches (Office 365 content searches are faster, scale higher, and cover multiple workloads). But... --- ### Oracle Gets Behind Teams with its Digital Assistant - Published: 2019-09-18 - Modified: 2024-09-04 - URL: https://petri.com/oracle-gets-behind-teams-with-its-digital-assistant/ - Categories: Microsoft 365, Microsoft Teams, Office - Article Type: News This week, Oracle is hosting OracleWorld in San Francisco and at the event, the company is unveiling several updates to its products including a new digital assistant for Teams. This week, Oracle is hosting Oracle World in San Francisco and at the event, the company is unveiling several updates to its products including a new digital assistant for Teams. For companies heavily invested in the Oracle ecosystem, this may be a significant release for those customers. Designed to integrate with Microsoft 365, the Oracle Digital Assistant now supports voice commands and integrates natively with Teams. While this is a significant release for Oracle, Microsoft is also a big winner in these scenarios as well. Teams is one of the fastest-growing communication applications on the planet and Microsoft is going all-in with its investments to get customers to migrate to the tool. With Oracle now showing its support for the platform, it’s another big name now backing Teams which should continue to accelerate the growth of the tool. While the Oracle Digital Assistant is available today, it’s the features that are ‘coming soon’ that will make the tool significantly more useful. Oracle states that “in the future, out-of-the-box skills or chatbots for Oracle ERP Cloud, Oracle HCM Cloud and Oracle CX Cloud are planned to be available in Teams via the Oracle Digital Assistant. These pre-built features can enable employee self-service for scenarios spanning sales, project management, expenses, productivity, time and absence management, compensation and benefits, and recruiting. ” For now, know that Oracle is now backing Teams and its digital assistant is expanding its role with new voice commands, and in the near future, self-service options that should reduce reliance... --- ### Outlook Plans to Synchronize Email Signatures Across Devices > Microsoft has announced that Exchange Online and Outlook will soon synchronize email signatures across devices. Does this mean that the ISV market for email autosignature products is over? - Published: 2019-09-17 - Modified: 2024-11-19 - URL: https://petri.com/outlook-synchronizes-email-signatures/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Autosignature, Email signature, Exchange Online, Outlook - Article Type: News, Opinion Microsoft has announced that Exchange Online and Outlook will soon synchronize email signatures across devices. Does this mean that the ISV market for email autosignature products is over? I don't think so because there's lots of other things to do with email signatures once device synchronization is handled. The Same Signature on All Outlook Devices Much excitement was generated when Microsoft revealed on September 11 that they are working to synchronize email signatures across devices. Microsoft didn’t say when they expect to deliver the functionality or what clients will get the feature first. This initiative addresses the problem caused by clients having independent control over the signature information applied to outbound messages. If you, like me, use multiple Outlook clients, you need to configure the email signature on each client on each device. It’s not hard to do, but it is frustrating that such a simple task is necessary, especially when clients use different interfaces to compose and manage signatures. Figure 1 shows the Outlook desktop UI for managing email signatures. Figure 1: Composing a signature with Outlook desktop (image credit: Tony Redmond) Microsoft Implementation for Outlook Only Some commentary I saw said that this marked the end of the road for ISVs who specialize in email autosignatures. I beg to differ. Let me explain why. The most important thing to understand that this is a Microsoft implementation. Two things flow from this statement. First, the implementation will focus on Outlook clients and won’t apply to third-party software such as Thunderbird or other IMAP4/POP3 clients, or any of the vendor-specific ActiveSync clients like the iOS mail app. If you want an out of the box solution that handles all clients, use a transport rule to apply signatures. Second, Microsoft will choose a... --- ### Microsoft Announces Build And Other Conference Dates for 2020 - Published: 2019-09-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-build-and-other-conference-dates-for-2020/ - Categories: Visual Studio - Tags: BUILD, Hero, Microsoft - Article Type: News In somewhat an unusual move, Microsoft has announced dates for its Build conference in 2020. In previous years, the company has held that information back until a couple of months before the event but that’s changing this year. In somewhat an unusual move, Microsoft has announced dates for its Build conference in 2020. In previous years, the company has held that information back until a couple of months before the event but that’s changing this year. Build will once again be held in Seattle, from May 19-21 and one of the reasons why they announced this date this far in advance, is likely because of Google. For the past two years, Google has held its developer show, IO, on overlapping days of Microsoft’s conference. The company is likely releasing these dates now so that Google will not host IO during the same timeframe. Considering most venues for a developer show this larger are booked months if not years in advance, time will tell if Google is already tied to dates in May. Other events that Microsoft is announcing today is that Inspire will take place July 20-24 in Las Vegas and the company’s Business Application Summit will be held in Anaheim from April 20th to the 21st. While these dates are far out, I do applaud Microsoft for getting out ahead of everything else as it does make planning significantly easier. Even though all of the company’s conferences are held roughly the same time each year, having it on paper will make navigating the busy spring conference season a little bit easier. --- ### Most Useful PowerShell Cmdlets for Managing and Securing Active Directory - Published: 2019-09-16 - Modified: 2024-09-04 - URL: https://petri.com/most-useful-powershell-cmdlets-for-managing-and-securing-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell, Windows Server - Article Type: How To How to manage and secure Active Directory using PowerShell; I’ll look at the most useful PowerShell cmdlets and give examples of how to use them. In this article, I show you how to manage and secure Active Directory using PowerShell. I’ll look at the most useful PowerShell cmdlets and give examples of how to use them. Create New Active Directory Users The New-ADUser cmdlet is for creating new AD users. You can optionally specify where to create new users with the -Path parameter. In the example below, the new user will be created in the Accounts Organizational Unit (OU). The -Server parameter is also optional. It is used to determine on which domain controller (DC) the new user will be created. Note that you cannot specify a password in plaintext in the -AccountPassword parameter. You must convert it to a secure string using the ConvertTo-SecureString cmdlet. New-ADUser -DisplayName:"Russell Smith" -GivenName:"Russell" -Name:"Russell Smith" -Path:"OU=Accounts,DC=ad,DC=contoso,DC=com" -SamAccountName:"russellsmith" -Server:"dc1. ad. contoso. com" -Surname:"Smith" -Type:"user" -AccountPassword (ConvertTo-SecureString Pas$W0rd! ! 11 -AsPlainText -Force) -Enabled $true Create Active Directory Groups Adding groups to AD is easy with the New-ADGroup cmdlet. -Server and -Path parameters are both optional. New-ADGroup -GroupCategory:"Security" -GroupScope:"Global" -Name:"Netwrix" -Path:"OU=Accounts,DC=ad,DC=contoso,DC=com" -SamAccountName:"Netwrix" -Server:"dc1. ad. contoso. com" Add Users to Groups Once you have some users and groups in your domain, you can add users to groups with the Add-ADGroupMember cmdlet. Add-ADGroupMember -Identity Netwrix -Members russellsmith,bob. trent Create New Organizational Units Use the New-ADOrganizationalUnit cmdlet to create new Organizational Units (OU) in AD. Note that the -ProtectedFromAccidentalDeletion flag is optional. When set to $true, you can’t delete the OU without first changing the status of the flag to $false. New-ADOrganizationalUnit -Name:"Sensitive" -Path:"OU=Accounts,DC=ad,DC=contoso,DC=com" -ProtectedFromAccidentalDeletion:$true -Server:"dc1. ad. contoso. com" Deleting Active Directory Objects The... --- ### Potential Problems Lurk When OneDrive Users Block Office 365 Searches > It's hard to find and fix every legacy on-premises setting. In the case of OneDrive for Business, it allows users to stop their site appearing in search results. - Published: 2019-09-12 - Modified: 2024-09-04 - URL: https://petri.com/onedrive-users-block-office-365-searches/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: content search, eDiscovery, GDPR, OneDrive for Business, Search - Article Type: News It's hard to find and fix every legacy on-premises setting. In the case of OneDrive for Business, it allows users to stop their site appearing in search results. That doesn't sound too bad, but blocking search affects many other Office 365 features and it's a good example of how a legacy setting can have a big influence in the cloud. Fortunately Microsoft agrees and they're going to fix the problem. We don't know when or how the fix will come, but when it does, users won't be able to disable eDiscovery for their OneDrive for Business site. Searching is Critical for Office 365 As you probably know, Office 365 indexes content from multiple workloads to use as the foundation for data governance features like content searches (including GDPR DSRs), eDiscovery cases (including advanced eDiscovery), and Data Loss Prevention policy checking for SharePoint Online and OneDrive for Business. Advanced Data Protection also uses the content indexes to detect malware in newly uploaded documents. In short, it’s important that the content indexes are accurate and kept updated. But here’s the problem: OneDrive for Business sites are personal. They’re designed to be used by individual users to store personal files. Microsoft has even made it easy to redirect important Windows folders like My Documents to a user’s OneDrive for Business site. SharePoint Online underpins OneDrive for Business and the user who owns a OneDrive for Business site is the site administrator. Site Owner = Site Administrator All good so far. What’s not so good is when someone uses their site administrator access to change its site settings to prevent their OneDrive for Business site appearing in search results (Figure 1). Figure 1: Disabling search for a OneDrive for Business site (image credit: Tony Redmond) Being able to disable search is a legacy artefact from the earliest implementation of OneDrive for Business based on SharePoint Server 2013 (on-premises). At that time, eDiscovery wasn’t such a big thing, and it was OK for someone to block search from their private files. The equivalent in email terms... --- ### The Hybrid Cloud Becomes the New Norm - Published: 2019-09-11 - Modified: 2024-09-04 - URL: https://petri.com/the-hybrid-cloud-becomes-the-new-norm/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, Backup, Cloud, hybrid cloud, Windows Server 2016 - Article Type: Overview As businesses have been moving along the path toward modernization and digital transformation, there’s no doubt that they have been adopting the hybrid cloud in greater numbers. As businesses have been moving along the path toward modernization and digital transformation, there’s no doubt that they have been adopting hybrid cloud architectures in greater numbers. While cloud providers like Amazon and Microsoft Azure would like nothing better than for businesses to move their entire infrastructure into the public cloud, that's not a realistic option for most businesses. There are hurdles in moving to the pure public cloud. First, not all applications are compatible with the cloud and not all vendors support their applications running in a cloud environment. Next, there is the issue of data migration. Your cloud-based VMs and applications need access to their data sources. You need to evaluate the data that might need to be moved to the cloud along with the storage costs for that data and the way it needs to be secured both at rest and in-transit. In addition, some businesses need to comply with geographical restrictions on the locality of their data. Finally, there is the issue of costs. While the cloud can be a cost-effective option for storage and some applications, it can also have hidden costs and can wind up being more expensive than you originally planned. The cloud providers like Amazon and Azure do offer calculators to help you plan for cloud costs but these only provide estimates and your actual costs can be different – and in some cases more. Running your applications on the infrastructure that you already have can often be more cost-effective. Practical Hybrid... --- ### Is Google’s Chrome Enterprise Push a Threat to Windows? - Published: 2019-09-10 - Modified: 2024-09-04 - URL: https://petri.com/is-googles-chrome-enterprise-push-a-threat-to-windows/ - Categories: Windows Client OS - Tags: Google Chromebook, Windows 10 - Article Type: Opinion With Google and Dell partnering to ship hardware that includes the Chrome OS Enterprise upgrade out-of-the-box, does Google’s push in the enterprise threaten Microsoft’s dominant position? As reported by Brad Sams on Petri last month, Google and Dell are partnering to ship hardware that includes the Chrome OS Enterprise upgrade out-of-the-box for the first time. Chrome Enterprise isn’t new, but this is the first time it will be possible to buy it preinstalled on new hardware. While Chrome OS has made inroads in education, largely in the U. S. , Google has struggled to sell it to the enterprise. Chrome OS is a cloud-native operating system that is designed to be secure out-of-the-box. It is lightweight, can be updated easily, and it is designed to be easy to manage. Newer Chromebooks can run Android apps and Linux applications. Chrome OS is based on Google’s Chrome browser and is primarily intended for use with web apps. What is Chrome Enterprise? Chrome OS was first launched in 2009 and the enterprise version in August 2017. Chrome Enterprise is a subscription-based service that costs $50 per device annually. It adds features designed to make Chrome OS easier to manage with tighter security controls. Some of the additional features in Chrome Enterprise include 24/7 support, managed OS updates, single sign-on, Microsoft Active Directory (AD) integration, printer management, and access to managed store fronts. Google provides Chrome OS ADMX templates for organizations that want to manage Chromebooks using Active Directory Group Policy. August’s announcement included details about new Chrome Enterprise features aiming to bring Chrome OS to more businesses. Not only will Chrome Enterprise ship on Dell Latitude 5400 and Dell... --- ### Competition and Adoption Driving Microsoft to Linux Client for Teams > Lots of hot air and fuss resulted when Microsoft confirmed on the Teams UserVoice site that they are actively working on a Teams client for Linux. Many Office 365 tenants will be bemused at the attention. - Published: 2019-09-10 - Modified: 2024-11-19 - URL: https://petri.com/competition-adoption-driving-microsoft-linux-client-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: linux, Teams - Article Type: News Lots of hot air and fuss resulted when Microsoft confirmed on the Teams UserVoice site that they are actively working on a Teams client for Linux. Many Office 365 tenants will be bemused at the attention this topic received, but competition with Slack and the need to drive faster adoption in Teams deployments are compelling reasons for Microsoft to do this work. We can only hope that the project results in better Teams clients all round. No Formal Announcement but UserVoice Says “Actively Working” The prospect of a Microsoft-developed “official” Teams client for Linux certainly occupied many minds after an admin of the Teams UserVoice site posted a note on September 6 to say “We know many of you are waiting for a Teams client for Linux, and we’re pleased to confirm we’re actively working on it. Stay tuned for more information. " Given that they’re waiting for Microsoft to deliver promised improvements in performance and functionality, Windows and Mac users might be bemused by the fuss around a Linux client. However, the UserVoice topic is popular and has attracted over 1,200 comments. Even stripping out the usual editorial comments about the awfulness of Microsoft technology and the company as a whole, there’s still enough there to show strong interest in a Teams Linux client. Teams, Slack, and Linux The fact that Slack has a Linux client is also important in terms of the competition between the two products. Microsoft has a history of responding to competitive threats. It shouldn’t be any surprise that they would try to close off all possible reasons why an Office 365 tenant would want to stay with Slack. Driving Faster Adoption in Teams Deployments Adoption is another influence. Microsoft wants companies to roll out Teams to everyone in the organization, but this can’t happen when developers use Linux workstations. There have been attempts to create an unapproved Teams client for Linux and to integrate Teams with Linux apps like... --- ### Cloud-Native SIEM and Built-in AI for Analytics with Azure Sentinel - Published: 2019-09-09 - Modified: 2024-09-04 - URL: https://petri.com/cloud-native-siem-and-built-in-ai-for-analytics-with-azure-sentinel/ - Categories: Microsoft Azure - Tags: Azure Sentinel, cloud computing, Microsoft Azure, Security, SIEM - Article Type: Overview Microsoft has gradually been transforming itself into a cloud and security company over the last few years. Now in public preview, Azure Sentinel brings many of the security features Microsoft uses to secure its own cloud environments to organizations that need to collect data from on-premise systems and cloud apps. 12404760 - electric background Microsoft has gradually been transforming itself into a cloud and security company over the last few years. Now in public preview, Azure Sentinel brings many of the security features Microsoft uses to secure its own cloud environments to organizations that need to collect data from on-premise systems and cloud apps. What is Azure Sentinel? Currently, in public preview, Azure Sentinel is Microsoft’s take on a modern cloud-native Security Information and Event Management (SIEM) solution. While Splunk maybe one of the best known SIEM solutions today, Sentinel differs in that it is designed from the get-go to straddle cloud and on-premise infrastructure. And integration with Microsoft’s Security Graph gives Sentinel insight into cloud services that might not be otherwise possible when using Microsoft Software-as-a-Service (SaaS). The Security Graph is a set of APIs that Microsoft uses internally to monitor its own services, tracking millions of events daily to determine how even the slowest and stealthiest of attacks progress. Because Sentinel is SaaS, it automatically scales when you need to collect more data and you only pay for what you use. It is designed to collect, detect, investigate, and respond to threats. Microsoft says that Sentinel will help organizations detect threats that were previously hidden in your infrastructure to preempt attacks – Microsoft calls this ‘hunting’ - and minimize false positives with the help of intelligence data collected by Microsoft. Cloud-Native SIEM and Built-in AI for Analytics with... --- ### How to Connect to a Windows Virtual Desktop VM or App - Published: 2019-09-09 - Modified: 2024-09-04 - URL: https://petri.com/how-to-connect-to-a-windows-virtual-desktop-vm-or-app/ - Categories: Microsoft Azure - Tags: cloud computing, Microsoft Azure, VDI, Windows Virtual Desktop - Article Type: How To In the final part of this series, I’ll show you how to connect to a virtual machine or app in a Windows Virtual Desktop host pool. In this series on Windows Virtual Desktop (WVD), we have provisioned a WVD tenant in Azure and added a host pool. Now all that’s left to do is connect to your published desktop or apps. Microsoft provides two ways to connect to a WVD host pool. You can either download and install the WVD Remote Desktop client or use the web client. WVD doesn’t support connections from RemoteApp and Desktop Connections (RADC) or Remote Desktop Connection (MSTSC). Connect to a Windows Virtual Desktop Host Pool from a Browser Let’s start by trying to connect to a host pool from an HTML5-compatible browser. Microsoft says that in principle, any HTML5-capable browser should work with WVD, but official support is provided only for Microsoft Edge, Internet Explorer, Apple Safari, Mozilla Firefox, and Google Chrome. Open the Windows Virtual Desktop web client using this link. If you are already signed in to Azure Active Directory (AD) with an account that doesn’t have access to the host pool, you may need to sign out before opening the web client. Otherwise, enter an Azure AD account with permission to access the host pool when prompted. How to Connect to a Windows Virtual Desktop VM or App (Image Credit: Russell Smith) Once you have access to the client in the browser window, you should see any published desktops and applications. In my host pool, I just have a published desktop. Click on a desktop or app to get access. In... --- ### Paul Thurrott's Short Takes: September 6 - Published: 2019-09-06 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-16-2/ - Categories: Cloud Computing, Hardware, Messaging, Microsoft 365, Microsoft Teams, Mobile, Windows 10 - Tags: News - Article Type: News Because summer ends when I say it ends, this edition of Short Takes looks at Slack and its inability to turn a profit, Microsoft testing 5G game streaming in Korea, deep fake videos, mega-yachts, and Window 10 update quality, and so much more. Because summer ends when I say it ends, this edition of Short Takes looks at Slack and its inability to turn a profit, Microsoft testing 5G game streaming in Korea, deep fake videos, mega-yachts, and Window 10 update quality, and so much more. Slack issues first earnings report. Maybe “earnings” isn’t the right word Slack issued its first earnings report since going public, and---surprise, surprise---the firm is doing horribly: It posted a loss of $0. 14 per share on revenues of $145 million for the quarter ending July 31, far below analyst expectations. The news sent the firm’s stock price into a freefall, triggering questions about how it could possibly compete effectively with Microsoft and its Teams offering. But Slack CEO Stewart Butterfield says that the company is in “a strong cash position,” thanks to about $800 million in cash assets. And it intends to grow its subscriber base of 100,000 paying customers. But Slack is also projecting a loss for the current quarter and for the entire fiscal year, and it’s unclear how or when it will be able to turn that around. Microsoft, meanwhile, has infinite money and is well-respected and well-established in the enterprise market that Slack seeks to grow. I’m going to call this one: Slack is the next Netscape. And this time, the DOJ isn’t going to care if it disappears. Free software advocate Richard Stallman spoke at Microsoft Research this week And by “free software advocate,” we mean “scary-looking homeless guy” Microsoft will... --- ### The Must Have Tool While Working with Search and SharePoint Online - Published: 2019-09-06 - Modified: 2024-09-04 - URL: https://petri.com/the-must-have-tool-while-working-with-search-and-sharepoint-online/ - Categories: SharePoint, SharePoint Online - Tags: Modern SharePoint, SharePoint Search - Article Type: Overview If you are looking to improve the search functionality of your SharePoint site, this is the tool you need. One of my main frustrations with the search experience in SharePoint Online is the indexing process. Especially with managed properties. I am referring to the inability to check if a managed property is filled with a value. Let me provide you with a real-world example. We have developed a series of apps for SharePoint Portals. One of these is the Highlighted News app: The app contains an option to display a topic (e. g. security). These topics are assigned to news posts by using a site column: The Highlighted app, making use of SharePoint Search, needs to connect a managed property to the site column to display the topic. There is one major challenge! After assigning a topic, we have no idea when the managed property is actually connected to the correct topic. This is totally depending on a magical timer job that refreshes the search index. There is no menu where we can check if the index is refreshed and our managed property contains the correct topic. Although Microsoft really improved the speed, and quality, of the indexing process within SharePoint Online, there isn't a 100% guarantee it works and no menu to check the index. This is why I highly recommend downloading the SharePoint Search Query Tool. This tool, created by the awesome Mikael Svenson, allows you to check the search properties of your SharePoint content or people. This way, you know if a managed property is actually connected to a value.   Let me show you how this works... --- ### Making Sense of Serverless SQL - Published: 2019-09-05 - Modified: 2024-09-04 - URL: https://petri.com/making-sense-of-serverless-sql/ - Categories: Uncategorized - Tags: Azure, Serverless SQL - Article Type: Overview The serverless offering for Azure SQL Server has the best pricing model for databases that see sporadic usage, but there are some caveats. There is no shortage of options when you need to create a managed instance of Azure SQL. Earlier this year, Microsoft introduced a new option they call Azure SQL Database Serverless. Let me give you some details about the serverless option so you can decide if serverless is the right Azure SQL for your project. This new option has some specific use cases in mind. Before serverless came along, all the assorted flavors of Azure SQL assumed you’d need a database that was online and ready to go every minute of the day. But, not every database is front and center in the business. I worked on a recent project, for example, where the database would only see action for about 4 hours a day, and only on Mondays and Wednesdays. SQL serverless is for those types of databases that are not heavily utilized and experience periods of complete inactivity. Think about my scenario with the Monday / Wednesday database. I could provision an instance of Azure SQL and scale the database DTUs up and down so I’m not paying for DTUs I don’t use 5 days of the week. But, it would be even better if Azure did the scaling for me, and only charged me for what I was using. I’m happy to pay for the secure storage of data the entire week. But, if my database is only using 8 hours of compute power every week, I’d like to pay nothing for the other 160... --- ### Office 365 Tenants Get Option to Move Video to Stream > A self-service migration process to move content from the Office 365 Video portal to Microsoft Stream is now rolling out. The wizard-driven process is easy and efficient and doesn't have too many problems. - Published: 2019-09-05 - Modified: 2024-11-19 - URL: https://petri.com/stream-migration-office365-video/ - Categories: Microsoft 365, Office - Tags: migration, Office 365 Video, Stream - Article Type: How To A self-service migration process to move content from the Office 365 Video portal to Microsoft Stream is now rolling out. The wizard-driven process is easy and efficient and doesn't have too many problems. In fact, the biggest issue facing Office 365 tenants might be finding the time to review all the migrated content before the go live date for Stream comes around. A Migration That’s Been Coming The Office 365 Video portal was launched in 2014 as the first of what Microsoft hoped to be “next generation” portals built on top of SharePoint Online. Other portals in the series, like a Knowledge Management portal, never appeared, and Office 365 Video is the only survivor of an attempt to leverage SharePoint Online more extensively. Office 365 Video uses SharePoint Online to store uploaded video files and associated metadata. The videos are transcoded by Azure Media Services and accessed from there. Because SharePoint is involved, the metadata is indexed and discoverable in apps like Delve. But time marches on and Microsoft Stream appeared in 2017 with the mission of being an “enterprise video service where people in your organization can upload, view, and share videos securely. ” Migration to Stream Speculation about the future of Office 365 Video began immediately and it was no surprise to discover that Microsoft’s long-term direction was to migrate tenants off Office 365 Video to Stream. According to Microsoft’s transition plan for Stream, after a slow start and several delays, we’re now past the beta stage and at a point where tenants can opt-in to migrate. Going forward, the plan is: Tenant Opt-in. In some datacenter regions, tenant administrator will be able to decide to move to Stream. This option is a good choice if the tenant does not currently use Office 365 Video. According to Microsoft, this phase started in June 2019. Tenant Opt-out. At this point,... --- ### Microsoft Acquires Movere To Simplify Cloud Migrations - Published: 2019-09-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquires-movere-to-simplify-cloud-migrations/ - Categories: Cloud Computing, Microsoft Azure - Tags: Acqusition, Microsoft, News - Article Type: News Microsoft is all-in on the cloud and will let nothing get in the way of helping customers move to Azure. While the company has offered migration tools in the past, announced today, the company is acquiring Movere. Movere is a tool that provides discovery, assessment, optimization, and transformation of data to make it significantly easier to move to the cloud. And with companies like McDonald's, iHeatMedia, AT&T, and many others as users of the service, Movere has the enterprise capabilities that Microsoft desires. Along with migration management, the software also provides ongoing monitoring of IT environments. The company also provides cybersecurity tools as well. Terms of the deal were not announced but it’s clear that Movere, in its 11 year history, was able to carve out a sizeable chunk of the migration market. Microsoft says that this tool will be used to help ISVs (independent software vendor) expand its portfolio of migration and on-going management offerings. --- ### Windows Containers: Understanding Images and Layers - Published: 2019-09-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-containers-understanding-images-and-layers/ - Categories: Windows Server - Tags: cloud computing, DevOps, Docker, Windows Containers, Windows Server - Article Type: Overview While it is easy to grasp the basic idea of how containers work and how they differ from virtual machines (VM), understanding container images and layers is a bit more complicated. It’s been a while since I’ve written about containers on Petri, so I thought it was time to look at one of the most important concepts. While it is easy to grasp the basic idea of how containers work and how they differ from virtual machines (VM), understanding container images and layers is a bit more complicated. For an overview of using containers in Windows Server 2016, check out First Steps: Docker and Containers in Windows Server 2016 on Petri. Container Images Images can be used to create containers but unlike VM images, container images reference a list of read-only ‘layers’ that are stacked to represent changes that were made to the filesystem. For example, each time you execute an instruction in Docker, a new layer is created to represent the changes made to the filesystem. Docker files can be used to automatically build Docker images. The following Docker file has four instructions, each of which creates a new layer. When you add a new layer, it is writeable, but all the preceding layers become read-only. So, the last layer is always writeable, and it is often referred to as the container layer. FROM ubuntu:18. 04 COPY . /app RUN make /app CMD python /app/app. py In the Docker file above, the last layer specifies the command to run in the container. In this case, a Python app. The container layer is a thin writeable layer that sits on top of the read-only layers in the image. All changes made... --- ### 5 Easy Ways to Install PowerShell 7 on Windows > In this guide, I’ll show you all the ways to install PowerShell 7 on your Windows 11 computer so you can get started with the latest PowerShell has to offer. - Published: 2019-09-04 - Modified: 2024-03-22 - URL: https://petri.com/how-to-install-powershell-7/ - Categories: PowerShell - Tags: PowerShell, PowerShell 7.0 - Article Type: How To Looking to install the latest version of Powershell? Here's the tutorial to install the latest version of the platform. In this guide, I’ll show you all the ways to install PowerShell 7 on your Windows 11 computer so you can get started with the latest PowerShell has to offer. Windows PowerShell has been part of Windows since Windows 7 and Windows Server 2008 R2, when it was known as Windows PowerShell 2. 0 starting in 2009. A lot has changed since then, and Windows PowerShell 5. 1 is no longer being actively developed. But back in 2016, Microsoft open-sourced the code for a new, cross-platform version built on . NET Core. After a few early iterations, PowerShell 7 as a scripting language and automation framework is quickly replacing Windows PowerShell 5. 1 as the essential tool for IT professionals and developers. So how do you install PowerShell 7? I’m glad you asked! System requirements for installing PowerShell 7 To follow along with this guide, you’ll need to have the following: Windows 11 (23H2 as of this writing). You can get an evaluation copy here. Some familiarity with the command line and installing applications. Some examples in this guide also work with Windows 10 and Windows Server 2016 or newer. For the purposes of this guide, you will only be working with the release version of PowerShell 7, not preveiw version(s). Ready? Let’s get started! 5 ways to install PowerShell 7 There are many different installation methods available for getting PowerShell 7 onto your Windows 11 desktop environment. You can obtain PowerShell 7 using the Windows App Store, WinGet or Chocolatey, MSI, or... --- ### Everything You Need to Know about SharePoint - August 2019 > This month SharePoint focuses on making things more of an experience thanks to new web parts and other changes to Modern pages. Plus more Flow actions. Fun! - Published: 2019-09-03 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-august-2019/ - Categories: Microsoft 365, Office, SharePoint - Tags: Microsoft Flow, Modern SharePoint, Office 365, SharePoint Online - Article Type: News With August now behind us, here are the important announcement this month that relate to SharePoint. I think this month does a great job of reinforcing that if you haven't committed to Modern pages in SharePoint yet, you should. Microsoft continues to roll out hot new features for Modern pages and reinforce the message: you need to stop with the old stuff. And the old stuff isn't just pages but workflows and forms also. Embrace change people. Besides, the sooner everyone moves to Modern we can move onto Post-Modern or some other new era. I am of course kidding but typing Modern so much reminds me what a terrible name it is. Anyway, you want news not my random thoughts so on with it. Improvements of the SharePoint Page authoring experience This month Microsoft released a slew of fancy new features to make page creation and editing better including new vertical sections and my team’s favorite Undo and Redo when editing a page. Hooray. Just another reason that SharePoint Online is so much better than on-prem. You are always getting these little nice to haves. You can read more about these updates and the rest of the changes here. The updates should be rolling out to general availability soon. Reminder that Modern pages will continue to be the push In the most recent SharePoint Dev Community chat they reaffirmed a few things. One is the continued push to be Modern and to release features that only work with Modern pages. Additionally they reminded us that SharePoint Designer and InfoPath are going away. A couple... --- ### Everything You Need to Know about Office 365 – August 2019 > This month we go broad covering normal O365 stuff and some less common topics including Excel. Should make for a great addition to your summer reading list. - Published: 2019-09-03 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-august-2019/ - Categories: Microsoft 365 - Tags: Excel, Flow, Microsoft Teams, Office 365, Power BI, SharePoint - Article Type: News For Office 365 customers this month, updates rolled out for Flow, PowerApps, Power BI, SharePoint, Teams, and even Excel. This month I went super broad with updates that cover Flow, PowerApps, Power BI, SharePoint, Teams, and even Excel; less sass and more content. What isn't to love? I, of course, was my usual self with the Teams team who didn't excite me with their news. Better luck next month to them. Anyway, read the news and let me know what you think. Free Online Microsoft Flow Conference Do you want to learn more about Microsoft Flow? Then check out the virtual conference that Microsoft is putting on September 10th. For 9 glorious hours, you will learn everything you ever wanted to learn about Microsoft Flow from some the best in the business. Intro sessions and super-nerd sessions will be held throughout the day. For more info and to sign up go here. So far, 25,000 people have signed up which means you should too. Finally, we can brand Power BI This month they announced that after years of the ugly, generic Power BI banners, with a few clicks you can now make it ugly, not-generic. Ha! I am so mean. I like to think that everyone does ugly branding, but it is probably just me. You can learn more about the process here. Also, make sure to check out all of the other Office 365 coverage on Petri this month. Add document Thumbnails to your SharePoint Document Libraries While not really news, this is a cool trick that will help everyone. Patrick Guimonet tweeted this awesome tip and I thought... --- ### Everything You Need to Know About Windows – August 2019 - Published: 2019-09-03 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-windows-august-2019/ - Categories: Windows Client OS - Tags: Microsoft Edge, Windows 10, Windows Server, Windows Virtual Desktop - Article Type: News This month Windows 19H2 edges closer to a final build, Citrix releases Managed Desktops based on Windows Virtual Desktop, Windows updates break Visual Basic 6 apps, and Microsoft prepares to disable VBScript in IE11 on Windows 7 and 8.x. This month Windows 19H2 edges closer to a final build, Citrix releases Managed Desktops based on Windows Virtual Desktop, Windows updates break Visual Basic 6 apps, and Microsoft prepares to disable VBScript in IE11 on Windows 7 and 8. x. Citrix Managed Desktops Reaches General Availability Windows Virtual Desktop (WVD) is a Desktop-as-a-Service (DaaS) solution, hosted in the Azure cloud, that is based on a new multisession SKU of Windows 10. Customers will be able to deploy one VM in the cloud that can be used by up to ten users, a feature that was only previously available in Windows Server. Microsoft will also provide an option for organizations to provision a full VDI solution in Azure, where each user has a single persistent or non-persistent virtual machine. Last year, Citrix announced Citrix Managed Desktops, which is based on Microsoft’s WVD service in Azure. This month, Citrix said that the solution has reached general availability, despite that WVD has yet to GA. Initially, it will be based on Windows Server but should switch to WVD on day one of availability. For more information on how Citrix Managed Desktops will differ from WVD, like details on HDX technology, VNET peering, and SD-WAN, check out the official announcement here. Microsoft Releases Edge Beta August saw Microsoft open the Beta channel for the new version of its Edge browser based on Chromium. Now, in addition to the Canary and Dev channels, users can download a stable version of the browser that will... --- ### Everything You Need to Know About Azure Infrastructure – August 2019 Edition > This post summarizes the Azure IaaS news from August 2019, and discusses some of the more interesting items. - Published: 2019-09-03 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-august-2019-edition/ - Categories: Microsoft Azure - Tags: AMD EPYC, Archive, ASR, Azure, Azure Advisor, Azure Files, Azure Migrate, Azure Site Recovery, Azure Virtual Machines, Blueprint, Dedicated Hosts, ExpressRoute, Governance, HB_v2, Hyper-V, linux, Load Balancer, Log Analytics, NV_v4, Red Hat Enterprise Linux, Regions, RHEL, Security Center, service health, storage, Storage Accounts, Switzerland, Ultra Disk, vmware - Article Type: Overview The half-year point has passed meaning that Azure (and Windows/Windows Server) are into a new planning & development cycle. The half-year point has passed meaning that Azure (and Windows/Windows Server) are into a new planning & development cycle. And we’re on the run into Microsoft Ignite, the pinnacle Microsoft event for enterprise technology. Things are starting to warm up after a cool summer of releases. In August, we had dedicated hosts, news on VMware support in Azure, loads of storage news, and most amazingly of all, support for assessing Hyper-V for migration to Azure was finally launched after being “announced” at the previous two annual Ignite events! Azure Introduces Dedicated Hosts I guess everyone at this point knows that you can deploy virtual machines in Microsoft Azure. Most of the time, people are directly using these virtual machines, running either Windows Server or Linux. Sometimes the virtual machines are hidden, and probably are more likely to run Linux. And sometimes there are no virtual machines at all – “serverless” is the latest trend. Microsoft recently turned 180 degrees and released Azure dedicated hosts. A dedicated host is a physical server that you get exclusive access to – to run Azure virtual machines with either Windows or Linux. You don’t get access to the host operating system or management, just exclusive use of the resources. Primarily, this is intended for those who are worried about compromises such as a breakout attack. With this, you get a choice (control over) the underlying hardware (the host type, thus deciding the series & quantity of virtual machines it can host), processor... --- ### Exploiting the Graph When PowerShell Can’t Do Enough for Teams > Although Teams has a PowerShell module, its cmdlets can't get at some of the interesting information for team objects. But the Graph API reveals that information. Combining the Graph with PowerShell makes it possible to retrieve the information with just a little effort. - Published: 2019-09-03 - Modified: 2024-09-04 - URL: https://petri.com/exploiting-graph-when-powershell-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Graph, Office 365, PowerShell, Teams - Article Type: How To Although Teams has a PowerShell module, its cmdlets can't get at some of the interesting information for team objects. But the Graph API reveals that information. Combining the Graph with PowerShell makes it possible to retrieve the information with just a little effort. A working example helps make the point, so here's a script to report the Teams channels with email addresses. Teams PowerShell: OK but Limited at Times After a shaky start, the Teams PowerShell module is now in a reasonable state. Valid gripes still exist that the Teams module is slow, and you must resort to the horrible Skype for Business Online module to work with Teams policies, but hope exists that Microsoft will improve performance and create an integrated module in the future. But no matter how the Teams PowerShell module improves, its usefulness is still limited by the properties Microsoft chooses to expose through this interface. For instance, even if sometimes Microsoft backtracks on useful changes, Exchange Online, exposes a lot of information about mailboxes and Office 365 Groups. This makes it much easier for administrators to automate common operational processes for mailboxes and groups. However, Exchange was the first major Microsoft server to adopt PowerShell way back in Exchange 2007. When Teams came along, PowerShell wasn’t its primary choice for an interface to enable automation. Instead, Teams focused on the Microsoft Graph API. The Teams PowerShell module is built on top of the Graph API, a fact that explains some oddities in filtering and other behavior. To the Graph and Beyond In any case, because Microsoft doesn’t expose all the properties of teams through PowerShell, sometimes you’re forced to use the Graph to get at information (the Graph Explorer helps you understand the information available for Teams). This is fine if you’re a programmer who’s used to dealing with RESTful APIs, but maybe not so good if... --- ### Citrix Managed Desktops Generally Available - Published: 2019-09-03 - Modified: 2024-09-04 - URL: https://petri.com/citrix-managed-desktops-generally-available/ - Categories: Microsoft Azure - Tags: Citrix Managed Desktops, cloud computing, Desktop as a Service, VDI, Windows 10, Windows Virtual Desktop - Article Type: News Back at its Ignite conference in September 2018, Microsoft announced Windows Virtual Desktop (WVD) and Citrix said that it would be creating a Desktop-as-a-Service (DaaS) solution based on WVD. Back at its Ignite conference in September 2018, Microsoft announced Windows Virtual Desktop (WVD) and Citrix said that it would be creating a Desktop-as-a-Service (DaaS) solution based on WVD. More details came in October 2018 when Citrix revealed that its DaaS product would provide an end-to-end solution allowing organizations to quickly deploy WVD on Azure, regardless of the skill set of IT staff. Citrix Managed Desktops provides: Citrix prepared Windows Virtual Desktop with Windows 10 hosted on Azure Secure remote access from any device via multi-factor authentication A high-definition user experience that make it easy to work from any device, anywhere Intelligent management and monitoring for simplified on-going maintenance Plus, the associated Azure compute and storage for the virtual desktops Additionally, Citrix announced that they plan to resell Microsoft 365 licenses to simplify the purchasing experience but also let customers and partners bring their own licenses and images to the solution. As such, Citrix is becoming a Microsoft Cloud Solution Provider (CSP). Citrix says that Citrix Managed Desktops includes everything organizations need to securely deliver desktops and applications to any device from the cloud in a one-stop solution. Citrix Managed Desktops integrates with Citrix Workspace and Citrix Virtual Apps and it is designed to provision Windows-based applications and desktops from the cloud to any device. Organizations can purchase the solution on a monthly or longer basis. Citrix’s DaaS solution is intended for organizations that need to cope with changing demand, like when there are changes because of seasonal... --- ### Windows 10 S Mode to Get Win32 Apps Via Intune - Published: 2019-08-30 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-s-mode-to-get-win32-apps-via-intune/ - Categories: Windows 10 - Tags: Configuration Management, Microsoft Intune, Mobile Device Management, Windows 10, Windows 10 S Mode - Article Type: News Microsoft adds the ability to install Win32 applications using Intune in Windows 10 S Mode in the 19H2 update. August 19th saw Microsoft release two new Insider preview builds of Windows 10 19H2 to users in the Slow ring. As you may already know, 19H2 will be the second feature update for Windows 10 in 2019 and it won’t contain any major new features. It will be delivered as a cumulative update (CU) for users already on the Windows 10 May 2019 Update and as a standard feature update for those on earlier versions. As reported on Petri, one of the latest builds, 18362. 10015, gets several new features turned on by default. Users already on 19H2 build 18362. 10013 will get build 18362. 10015. If you are joining the Slow ring now, it will be a virtual ‘toss of the coin’ as to whether you get build 18362. 10015 or build 18362. 10014, where the new features are turned off by default. If this all seems over complicated, that’s because it is related to Microsoft’s controlled feature rollout testing for 19H2. For more information on how Microsoft is testing 19H2, check out No Major New Features in Windows 10 19H2 But Enterprise Features and Performance Fixes Coming on Petri. Windows 10 S Mode Changes Windows 10 S Mode hasn’t been the success that Microsoft had hoped for. Currently, Windows 10 S Mode restricts users to installing apps from the Microsoft Store. Windows 10 S Mode is a locked-down version of Windows 10 that is designed to be more secure and maintain performance over time when pitted against the standard version of... --- ### Azure Active Directory Basic Edition is Being Retired - Published: 2019-08-29 - Modified: 2024-09-04 - URL: https://petri.com/azure-active-directory-basic-edition-is-being-retired/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, cloud computing, Identity Management, Microsoft Azure - Article Type: News AAD Basic edition is ‘going away’ because it is low volume and confuses customers. As reported last week by ZDNet’s and Petri’s Mary Jo Foley, Microsoft is phasing out the Basic edition of Azure Active Directory (AAD). Foley reports that a Twitter post by Alex Simons, Microsoft Identity Division Corporate Vice President PM, states that AAD Basic edition is ‘going away’ because it is low volume and confuses customers. It is in the process of being removed from online documentation and marketing material. But at the time of writing, Basic edition still appears on the list of AAD SKUs on the Azure pricing page. This thread is so long I'm lost... . But here's the official answer - Azure AD Basic is going away. It's in the process of being removed from docs and marketing pages. As in my previous tweet, it's a super low volume SKU that mostly just confuses people. The SKUs listed are currently Free, Basic, Premium P1, Premium P2, and Office Apps. The Premium SKUs will still be available through Microsoft Enterprise Agreements, the Open Volume License program, and the Cloud Solution Providers program but Foley says she has heard that while existing customers with a Basic edition subscription will be able to renew it, new customers will not be offered the Basic SKU. AAD Basic edition was first introduced in 2014 to bridge the gap between the Free and Premium SKUs.  It removed the 500,000-object limit from the Free edition, and in addition to the features in the Free SKU, it provided group-based access management, self-service password reset... --- ### SharePoint Online, OneDrive for Business, and Azure B2B Collaboration > SharePoint Online and OneDrive for Business are making increasing use of Azure B2B Collaboration for sharing, which means that Office 365 tenants will have more guest user accounts. - Published: 2019-08-29 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-onedrive-azure-b2b-collaboration/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Azure B2B Collaboration, guest users, OneDrive for Business, SharePoint Online - Article Type: News SharePoint Online and OneDrive for Business are making increasing use of Azure B2B Collaboration for sharing, which means that Office 365 tenants will have more guest user accounts. Using Azure B2B Collaboration is a reasonable approach because it's secure and works well, but it does mean that tenant admins have some extra work to do to keep an eye on those guest accounts. Unexpected Side Effect of SharePoint Sharing Recently I shared a document in a SharePoint document library with two Microsoft employees. Shortly afterwards, I noticed that Office 365 had created guest user accounts for the Microsoft employees in my tenant. This was a little surprising, but it’s the future norm. Guest user accounts are heavily used by Office 365 Groups, Teams, and Planner to allow external access to their resources. Built on the Azure B2B Collaboration API, the implementations of guest user access in these applications is enormously successful and one of the reasons why Teams, in particular, has experienced such rapid growth. SharePoint’s Route to Secure Sharing SharePoint Online and OneDrive for Business have used different mechanisms for secure external sharing, notably one-time passcodes (OTP) introduced in 2017. In June 2018, OneDrive for Business started to create guest accounts when sharing happened with users in other Office 365 tenants. One problem that’s always existed is the variety of possible sharing recipients. These can be broken down into four main categories: People inside the same tenant. People in another Office 365 tenant. People who have a Microsoft Services (MSA) account. For example, an Outlook. com account. People with an account in another directory. Because the accounts belong to the same Azure Active Directory instance, secure sharing with someone inside the same tenant poses no problems. The same is largely true for accounts belonging to other Office 365 tenants, Microsoft Service Accounts, or sites that use Azure Active Directory but don’t... --- ### Three Ways to Extend Windows 7 Security Updates - Published: 2019-08-28 - Modified: 2024-09-04 - URL: https://petri.com/three-ways-to-extend-windows-7-security-updates/ - Categories: Windows 7, Windows Client OS - Tags: Microsoft, Security, Updates, Windows 7 - Article Type: Overview If you find that you need updates for Windows 7 after January 2020, here are the three options that Microsoft offers to keep your devices secure. It’s no secret that in January of 2020, support for Windows 7 will end which means that running the operating system will expose your environment to external threats. If you haven't started the migration process yet, you are far behind and it may be time to look at other options, such as extended Windows 7 support. While you can still run Windows 7 after this date, without it being patched every month, you are playing with fire. But what if you are unable to migrate to Windows 10 or are simply willing to pay for additional time to migrate off the operating system? If you find yourself needing a bit more time to complete your migration, Microsoft is providing three options that range from “free” to explicitly paying for updates. The three options to sustaining a Windows 7 install are: Using Microsoft’s new Windows Virtual Desktop service Be A Windows 10 Enterprise E5, Microsoft 365 E5, or Microsoft 365 E5 Security Customer Pay for additional updates The first option to receiving for receiving additional security updates is to move your install to the newly announced Windows Virtual Desktop platform. If you move your install to WVD, Microsoft is offering three years of extended security updates for customers choosing a Windows 7 Enterprise VM. The second option is that if you are already paying for Windows 10 Enterprise E5, Microsoft 365 E5, or Microsoft 365 E5 Security, Microsoft is going to provide an additional year of support for Windows 7 at... --- ### VMworld 2019 Day 2 – VMware Demos Project Pacific, Tanzu Missional Control and More - Published: 2019-08-28 - Modified: 2024-09-04 - URL: https://petri.com/vmworld-2019-day-2-vmware-demos-project-pacific-tanzu-missional-control-and-more/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, VMware - Tags: Cloud, cloud computing, Virtualization, vSphere - Article Type: News VMware CTO Ray O’Farrell led off the VMworld 2018 day 2 keynote with a series of demos illustrating how a fictional Tanzu Tees company could answer today’s development and IT challenges using VMware’s technology. VMware CTO Ray O’Farrell led off the VMworld 2018 day 2 keynote with a series of demos illustrating how a fictional Tanzu Tees company could answer today’s development and IT challenges using VMware’s technology. Helped by a group of team members, Ray stepped through the Build and Run, Manage, Secure and User Experience phases that the typical IT organization needs to deal with. Build and Run Ray discussed how the infrastructure needs for new businesses can be met using either VMware Cloud on Dell EMC or VMware Cloud on AWS. He explained how VMware Cloud on DELL EMC brings a cloud-like experience to on-prem infrastructure by making VMware responsible for all infrastructure management. Next, they demoed how the upcoming Project Pacific provides an app-centric management approach. Project Pacific enables you to manage apps like vSphere can manage VMs. Apps are essentially the unit that you start, stop and otherwise manage. They also demoed how developers can create Kubernetes clusters without IT involvement. Manage In the Manage section, Ray and his team showed how Tanzu Mission Control can manage Kubernetes clusters across multiple clouds including AWS, Azure and Google. Using Tanzu Mission Control you can deploy a Kubernetes cluster to any cloud of choice and later move it to other clouds. Tanzu Mission Control represents apps using namespaces and management is done by applying policies to the namespaces. Without Tanzu Mission Control you must deal with each individual cloud and their different APIs and management tools. VMware also demonstrated... --- ### Getting Started with Azure Ultra Disks - Published: 2019-08-27 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-azure-ultra-disks/ - Categories: Microsoft Azure - Tags: Azure, Microsoft, Ultra Disk - Article Type: How To Ultra Disk is a new managed disk for workloads demanding the highest performance and lowest latency. The name “Ultra Disk” is an appropriate name for Microsoft’s newest and fastest storage offering. Ultra disk delivers higher throughput, more IOPS, and lower latency than any other storage offering inside Azure. And, don’t think of “higher” and “lower” as incremental differences. The Ultra Disk performance characteristics are an order of magnitude better than even Premium SSD storage. Managed Disks for the Most Demanding Workloads Some data-intensive workloads haven’t been able to move to the cloud because the work they perform is sensitive to disk latency and throughput, and cloud storage just doesn’t come close to the performance characteristics of on-premises hardware optimized for speed. These are the types of workloads Microsoft has in mind for Ultra Disk. The secret behind Ultra Disk performance is the direct connection between a VM and its storage. Unlike other storage solutions in Azure, Ultra Disk avoids the overhead of REST APIs and load balancers by allowing reads and writes to go directly from operating systems kernels into storage servers where data lives. Let’s look at how to setup an Ultra Disk. The Fastest Managed Disk Ultra Disks are managed disks you can attach to virtual machines in Azure, so to get started with Ultra Disk we’ll create a virtual machine. Ultra Disk requires you to use the latest v3 generation of Azure VMs. In the screenshot above, you’ll notice I went with the D8s v3 SKU. Currently, Ultra Disks are only available in specific regions, including the East US 2 region... --- ### VMware Gets Behind Kubernetes to Build-Run-Manage in the Cloud - Published: 2019-08-27 - Modified: 2024-09-04 - URL: https://petri.com/vmware-gets-behind-kubernetes-to-build-run-manage-in-the-cloud/ - Categories: Cloud Computing, Hybrid Cloud, VMware - Tags: Cloud, cloud computing, vmware, vSphere - Article Type: News VMworld is happening this week and if you need a brief of everything announced on day one, we have you covered. Named Glassdoor’s CEO of the year, Pat Gelsinger, CEO of VMware, kicked off VMworld 2019 with the day one keynote to the 20,000+ attendees packed into the Moscone Center. Pat noted that VMware has customers in 100+ countries and in 5000+ organizations and he stated that there has never been a more important time to be a technologist. He then emphasized VMware’s commitment to use tech as a force for good with its support for Callum Eade’s Immune Oncology Research for Kids fundraiser, Angel MedFlight and nonprofit organizations like TechSoup and In the VMworld 2019 day 1 keynote Pat noted that VMware is expanding from an infrastructure company into the developer space and is embracing a Build-Run-Manage strategy for the future. He noted that one of VMware’s goals is to help businesses navigate through their Modernize vs Migrate application challenges as they continue to move into the cloud and modernize their apps and infrastructure. As a part of the day 1 keynote, Pat discussed several significant announcements. VMware Acquires Pivotal and Carbon Black Pat discussed VMware’s recent announcement on the intent to acquire both Pivotal and Carbon Black. The Pivotal acquisition really seems to bring VMware full circle with the Pivotal story as it was about 6 years ago that Pivotal was spun off from VMware as a separate entity. Now with VMware’s new embrace of developers and Kubernetes, the Pivotal acquisition makes a lot of sense. Pivotal has been working to bring Kubernetes support into its... --- ### Office 365 Group Expiration Policy Auto-Renews Based on User Activity > The original Office 365 Groups expiration policy was pretty good. It helps tenants keep control of potential group sprawl by removing old groups based on age. Now the policy takes user activity into account. - Published: 2019-08-27 - Modified: 2024-09-04 - URL: https://petri.com/office-365-expiration-policy-auto-renews-user-activity/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, Groups Expiry Policy, Office 365 Groups, Teams - Article Type: News The original Office 365 Groups expiration policy was pretty good. It helps tenants keep control of potential group sprawl by removing old groups based on age. Now the policy takes user activity into account. While still not perfect, the new implementation makes the group expiration policy even easier to use because owners don't have to do anything to renew their groups if the groups remain in active use. You might debate the set of activities chosen by Microsoft to represent a good signal of group activity, but not the way the policy now works. The last time I wrote about the Azure Active Directory expiration policy for Office 365 Groups, I said that I thought the policy did a good job but that it needed improvement. In a nutshell, instead of expiring groups solely based on age, the algorithm should take user activity into account. That’s just what Microsoft has done in a revision of the policy now in private preview. The good news is that the new approach works well, even if some small tweaks would make it even better. Easy to Miss Emailed Notifications The old approach forced group owners to react to an email notification received 30 days before a group expired. If no response happens, Office 365 soft-deletes the group and eventually, 30 days later, permanently removes the group and all its resources (SharePoint, Planner, etc. ). The mechanism worked if group owners paid attention to the notification messages. If not, perhaps because the owners didn’t check email or were on vacation, the danger exists that Office 365 would go ahead and remove an important group. Slightly More Proactive Checking My April 2018 article explains how to use PowerShell to check for expiring groups. Although running a PowerShell script to check group expiration status is more proactive than simply waiting for notifications to arrive, it still requires administrators to act. It’s just another thing to do in an endless list of to-do items that might never get done. Graph Signals The new approach is to monitor activity within groups... --- ### Google Takes a Big Step Forward to Bring Chrome OS to the Enterprise - Published: 2019-08-26 - Modified: 2024-09-04 - URL: https://petri.com/google-takes-a-big-step-forward-to-bring-chrome-os-to-the-enterprise/ - Categories: Cloud Computing, Google Cloud Platform - Tags: ChromeOS, Google, News - Article Type: News Google has announced several new features that are coming to Chrome OS that will make it easier to use the operating system in corporate environments. It was only a matter of time before Google officially went upstream with its desktop OS but Chrome OS for the enterprise is here and the company is partnering with Dell. While enterprise features were first launched back in 2017, Google is moving deeper into this space and is gearing up for a long fight with Microsoft. Announced today by Google, along with Dell, are the first Chromebook Enterprise devices. These new pieces of hardware include an improved admin console, developer-focused features, and other updates to ChromeOS that should make the hardware and software a bit easier to manage for large deployments. The first devices that are arriving as Chromebook Enterprise devices the Dell Latitude 5400 and Dell Latitude 5300 2-in-1. With up to 8th gen, Core i7 processors and available 32GB of RAM, the new Dell devices should have solid performance and battery life but it’s likely the software components that will be more appealing for those looking to move to a fully Google-based environment. Listed below are the new enterprise options Google is adding to ChromeOS Enterprise: The improved Google Admin console for Chrome OS provides 10x faster load times. Admins can now enable managed Linux environments on Chromebooks (beta), with tools to determine who has access, VPN support for internal files, and containers for maximum protection. For customers currently using Chromebooks, they can optimize for business usage by adding the new Chrome Enterprise Upgrade to any Chromebook device. But on the Dell side, the equation gets a... --- ### Windows Defender Certified by AV-Test and Outperforms Much of the Competition - Published: 2019-08-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-defender-certified-by-av-test-and-outperforms-much-of-the-competition/ - Categories: Security, Windows 10 - Tags: Antivirus, Security, Windows 10, Windows Defender, Windows Defender ATP - Article Type: News In something of a turnaround, Windows Defender is now matching and outperforming many free and commercial antivirus solutions. It was only a few years ago when Windows Defender routinely performed dismally in antivirus (AV) test comparatives. But several media outlets are reporting this month that Windows Defender has won an AV-Test award in the home user category for Windows 10 malware protection. AV-Test, an independent security institute, tested free and commercial AV products in May and June 2019. Windows Defender comes joint top with Symantec Norton Security, Kaspersky Internet Security, and F-Secure SAFE; closely followed by McAfee Internet Security Trend Micro Internet Security. Microsoft has been investing heavily in security over the past several years and it appears to be paying off. Windows Defender is a suite of security protections, including AV, built-in to Windows 10. Defender was originally intended to provide basic protection for users that didn’t purchase a third-party product - or a ‘better-than-nothing’ solution if you like. But because Defender is also used as the basis for Windows Defender Advanced Threat Protection (ATP), Microsoft’s enterprise endpoint security solution, it needs to be more than just ‘good enough’. For more detailed information about the test results for Windows Defender, check out the AV-Test site here. Windows Defender ATP The latest test results show that Windows Defender scores well across three categories: protection, performance, and usability. AV-Test also certified Defender for business use, only dropping half a point in the usability category. Windows Defender Certified by AV-Test and Outperforms Much of the Competition Windows Defender ATP adds advanced threat and post-breach... --- ### Paul Thurrott's Short Takes: August 23 - Published: 2019-08-23 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-23/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10 - Tags: News - Article Type: Overview Because AI that requires human intervention is only artificial, not intelligence, this edition of Short Takes looks at Microsoft’s new Edge milestone and why so few people seem interested, Xbox’s voyeurism problem, Microsoft’s further embrace of open-source, and so much more. "Road corn" Because AI that requires human intervention is only artificial, not intelligence, this edition of Short Takes looks at Microsoft’s new Edge milestone and why so few people seem interested, Xbox’s voyeurism problem, Microsoft’s further embrace of open-source, and so much more. New Microsoft Edge hits Beta channel Microsoft’s Chromium-based version of the Edge web browser hit a major milestone this week with the opening of the Beta channel, the final step before general release. According to the firm, the new Edge is now stable and full-featured enough for mainstream use by individuals and businesses. As important, Microsoft appears to be making headway with Chromium’s Google overlords, and has now contributed over 1,000 “commits”---basically improvements and changes---to the project, each of which will benefit Chrome and other Chromium-based browsers as well. Microsoft’s biggest improvement to date was a code change that dramatically improves Chromium (and thus Chrome and new Edge) battery life during media playback. This is a great application, folks, and it’s something that all readers should be at least testing now. You can find the download at the Microsoft Edge Insider website. “Apple warns not to keep its credit card by leather. Or denim. Or loose change” But those are the only things anyone keeps a credit card near. But so far, few seem interested in trying it As part of its announcement about the new Microsoft Edge Beta channel release, the software giant noted that testers have downloaded preview versions... --- ### Teams User Surveys Pose Privacy Concerns for Office 365 Tenants > According to Office 365 notification MC187538, Microsoft plans to start asking Teams users to give feedback about the app through in-app surveys. That all sounds OK until you start thinking about privacy and who has the data. - Published: 2019-08-22 - Modified: 2024-09-04 - URL: https://petri.com/teams-user-surveys-privacy-concerns-office-365/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Feedback, GDPR, MC187538, New-CSTeamsFeedbackPolicy, Privacy, Teams - Article Type: News, Opinion According to Office 365 notification MC187538, Microsoft plans to start asking users to give feedback about Teams in pop-up surveys within the app to help Microsoft improve functionality. That all sounds OK until you consider that Microsoft will control the data it obtains from users and tenants will have no insight into what their users have told Microsoft. That's not right. Sometimes I wonder about the decision-making process used by Microsoft development groups. What, for instance, is the logic behind the latest attempt to have direct contact with Office 365 users seen in Office 365 notification MC187538 posted on August 8, which tells us that Microsoft wants to use periodic pop-up surveys (Figure 1) to canvass the opinion of end users about Teams? Obviously I missed the importance of Office 365 roadmap item 54165 and its 52884 predecessor, which explain Microsoft’s eagerness to know how they’re doing with Teams. Figure 1: A Teams survey (image credit: Microsoft) The answer, based on recent numbers, is “just fine,” at least if you measure success against Slack as the yardstick. But that’s not an excuse to ask users questions without tenant approval. Feedback Policy A Teams feedback policy can be assigned to user accounts to control if users are allowed to give feedback or participate in surveys. The New-CsTeamsFeedbackPolicy cmdlet is part of the Skype for Business Online module. New-CsTeamsFeedbackPolicy -Identity "Tenant Bar Feedback Policy" -UserInitiatedMode Disabled -ReceiveSurveysMode Disabled $Mbx = Get-Mailbox -RecipientTypeDetails UserMailbox -ResultSize Unlimited | Select DisplayName, UserPrincipalName ForEach ($M in $Mbx) { Write-Host "Processing" $M. DisplayName Grant-CsTeamsFeedbackPolicy -PolicyName "Tenant Bar Feedback Policy" -Identity $M. UserPrincipalName } If you want to allow users to give feedback to Microsoft while disabling surveys, set UserInitiatedMode to Enabled in the policy. Previous Attempts to “Help” Office 365 Tenants We’ve been down this road before with Microsoft proposals to give people helpful... --- ### Connect to Azure Cloud Shell in Windows Terminal Preview - Published: 2019-08-21 - Modified: 2024-09-04 - URL: https://petri.com/connect-to-azure-cloud-shell-in-windows-terminal-preview/ - Categories: Cloud Computing, Microsoft Azure, Windows 10 - Tags: Azure Cloud Shell, cloud computing, Microsoft Azure, Windows 10, Windows Terminal - Article Type: How To Version 0.3 of Windows Terminal lets you connect directly to Azure Cloud Shell, here's how you can do that. This month, Microsoft issued a significant update to the preview version of Windows Terminal, the new console application for Windows 10. Announced at Build in Seattle at the beginning of May 2019, Windows Terminal will eventually replace the console that’s currently built-in to Windows 10. Microsoft has reached the end of the road with the current console because while it has seen some minor improvements over the last couple of years, new features can’t be added without breaking backwards compatibility. So, Microsoft took the decision to start from scratch and develop a new terminal. In a post on Microsoft’s Windows Command Line Tools For Developers blog, Kayla Cinnamon announced that the latest build includes a connector for Azure Cloud Shell. Azure Cloud Shell is a browser-based command-line console hosted in the cloud that gives you access to Azure files and projects via Bash and PowerShell. Windows Terminal 0. 3 lets you add an Azure Cloud Shell profile and connect to Azure directly from the terminal window. Azure Cloud Shell Connector If you are installing Windows Terminal from the Microsoft Store for the first time, you will see the option to connect to Azure from the dropdown menu next to the new tab button on the title bar. If you are upgrading from an earlier release of Windows Terminal, you’ll need to add the Azure Cloud Shell Connector profile to your settings file. Connect to Azure Cloud Shell in Windows Terminal Preview (Image Credit: Russell Smith)... --- ### Microsoft Edge Takes Another Step Towards General Availability - Published: 2019-08-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-edge-takes-another-step-towards-general-availability/ - Categories: Windows 10, Windows 7, Windows 8, Windows Client OS - Tags: BETA, Edge, Microsoft, News - Article Type: News Microsoft's new Edge browser is ready for beta testing but don't expect the final release to be available anytime soon. Earlier this year, Microsoft shipped the first canary builds of its new Edge browser that is based on Google’s Chromium rendering engine. And with each passing week, the browser has added new features which means it is now ready for a wider audience to test out the new application. With more than a million downloads to date, Edge is officially entering ‘beta’ with a new release channel that should be stable enough for just about everyone to use. I have personally been running the Dev channel release since it was announced and have experienced very few issues; I expect the Beta channel to be near flawless. For corporate customers, Microsoft is hoping that with this release, you will begin the process of migrating from either the old Edge or Chrome, to the new Edge. Here are a few of the features that they hope will be enough of a carrot to leave your old browser behind: Microsoft Search built-in to Bing, which will reduce the time spent looking for things at work by intelligently connecting an organization’s people, documents, sites, locations and conversations. Internet Explorer mode, which streamlines today’s not-so-great experience of viewing the web through two different browsers by bringing Internet Explorer 11 compatibility directly into Microsoft Edge, creating one simple experience. This is an important feature for the more than 60 percent of worldwide organizations that use both IE as well as another browser. Windows Defender Application Guard helps to isolate enterprise-defined untrusted sites, protecting the company while... --- ### Using KeyVault References to Read Key Vault Secrets - Published: 2019-08-20 - Modified: 2025-02-26 - URL: https://petri.com/using-keyvault-references-to-read-key-vault-secrets/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Key Vault, Key Vault Secrets - Article Type: How To How to use Key Vault References in Azure App Services for the most flexible and secure approach to reading sensitive configuration settings. Azure KeyVault is the place to store secrets and cryptographic keys for our applications and services. I’m sure you already know that Key Vault can safeguard keys in hardware security modules and audit access to all the secrets inside, but if not, you can read about the basic features in the Key Vault documentation. In this post, I want to look at a relatively new feature in Azure App Services that will allow you to consume Key Vault secrets from any application, service, or function running in App Services. This feature is currently in preview but is expected to be generally available in only a few weeks. I believe this new feature, called Key Vault references, is the best approach for using Key Vault. To understand why, let’s take a quick look at how we traditionally use Key Vault from an App Service. Key Vault’s REST API Key Vault, like every service inside of Azure, exposes an API. You can use the API to retrieve a secret from Key Vault. All you need to do is send an HTTPS request with the appropriate authorization token generated from an account with read access to the vault. The API allows us to use KeyVault from any platform and any language with quite a bit of flexibility. Applications can dynamically load secrets and connection strings from Key Vault and keep the settings cached. Microsoft provides wrappers around the low-level HTTP API for many platforms and languages. When building apps or services... --- ### Microsoft Adds New Enterprise Features to Windows 10 - Published: 2019-08-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-new-enterprise-features-to-windows-10/ - Categories: Windows 10, Windows Client OS - Tags: 19h2, Windows 10 - Article Type: News Microsoft has released a new build of Windows 10 and in this new 19h2 release, there are a couple of new enterprise features coming to the OS. Another week, another new set of builds headed to the preview rings for Windows 10. But unlike previous releases, these builds are headed for release later this year include several new enterprise features. The 18362 build released to the Slow ring, has updates for S mode, defender, search, and narrator improvements: We have enabled Windows Defender Credential Guard for ARM64 devices for additional protection against credential theft for enterprises deploying ARM64 devices in their organizations. We have enabled the ability for enterprises to supplement the Windows 10 in S Mode policy to allow traditional Win32 (desktop) apps from Microsoft Intune. We’re updating the search box in File Explorer to now be powered by Windows Search. This change will help integrate your OneDrive content online with the traditional indexed results. More details here. We have added the ability for Narrator and other assistive technologies to read and learn where the FN key is located on keyboards and what state it is in (locked versus unlocked). The outlier here is the updates for S mode which now allows traditional Win32 apps to run in the sandboxed install, instead of store-only applications. At this point, S mode is a shell of its former self and has only a small use-case but Microsoft keeps trying to find a new audience for this arrangement. Microsoft has not officially said when 19h2 will be released but based on previous updates, look for the bits to be finalized around September and shipped not long... --- ### When Technology Fails: Woes With SharePoint Online Restore this Library > It's great when Microsoft introduces new functionality to SharePoint Online to make the lives of administrators and users easier, which is what the Restore this library feature is all about. Then problems happen, and we understand where the flaw lines exist. - Published: 2019-08-20 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-restore-library-woes/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Ransomware, Restore this library, SharePoint Online - Article Type: How To, News It's great when Microsoft introduces new functionality to SharePoint Online to make the lives of administrators and users easier, which is what the Restore this library feature is all about. Then problems happen, and we understand where the flaw lines exist. Recovering from a recent ransomware attack caused one Office 365 tenant more problems than they thought likely because Restore this library didn't work as well as expected. In April, Microsoft launched the Restore this library feature for SharePoint Online document libraries. I like the functionality very much because users can restore files without administrator intervention or, even worse, the need to ask Microsoft to restore a complete site collection from backup. The SharePoint Online Restore this Library Feature Microsoft built the Restore this library functionality using the experience gained with a similar feature called Restore your OneDrive that’s available to OneDrive users with an Office 365 subscription. In both cases, the technology depends on knowing when changes occurred and the existence of previous versions of files that can be used to roll back. The versions generated automatically for Office documents stored in SharePoint Online and OneDrive for Business ensure that a high degree of granularity is available for a restore, but this isn’t always true for other formats. It all depends on how files are saved in SharePoint (for instance, PDFs edited in the Adobe cloud are versioned properly). Using Restore this Library Restore this library is available in the settings (cogwheel) menu of document libraries. When invoked, SharePoint queries the Microsoft Graph to retrieve a list of changes made to the library over the last four weeks. The user can then browse the list and decide what changes to undo (Figure 1). Figure 1: Using the SharePoint Online Restore this library feature (image credit: Tony Redmond) A set of precanned queries for yesterday, one week ago, and three weeks ago... --- ### Report Says Microsoft Is Certifying Insecure Drivers - Published: 2019-08-19 - Modified: 2024-09-04 - URL: https://petri.com/report-says-microsoft-is-certifying-insecure-drivers/ - Categories: Security - Tags: Firmware, Hardware, Microsoft, Security, Windows - Article Type: News A new report by firmware and hardware security research company Eclypsium says that 40 drivers it tested from different vendors were all found to contain security flaws and all were certified by Microsoft. It probably won’t come as much of a shock to regular Petri readers but a new report by firmware and hardware security research company Eclypsium says that 40 drivers it tested from different vendors were all found to contain security flaws and all were certified by Microsoft. Our analysis found that the problem of insecure drivers is widespread, affecting more than 40 drivers from at least 20 different vendors – including every major BIOS vendor, as well as hardware vendors like ASUS, Toshiba, NVIDIA, and Huawei. However, the widespread nature of these vulnerabilities highlights a more fundamental issue – all the vulnerable drivers we discovered have been certified by Microsoft. Since the presence of a vulnerable driver on a device can provide a user (or attacker) with improperly elevated privileges, we have engaged Microsoft to support solutions to better protect against this class of vulnerabilities, such as blacklisting known bad drivers. According to Eclypsium, recent research shows that flaws in drivers from the likes of ASUS and GigaByte let processes running with standard user rights obtain read and write access to the kernel. These kinds of flaws are already being actively exploited, like Slingshot, which exploits drivers with read and write model-specific register (MSR) capabilities to bypass driver signing requirements. Another example is LoJax, which uses a similar means to hide in firmware and can survive even if the operating system is reinstalled. Although enabling Secure Boot blocks LoJax because it doesn’t have a valid digital signature. More... --- ### Microsoft Acquires jClarity to Improve Java Azure Workloads - Published: 2019-08-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquires-jclarity-to-improve-java-azure-workloads/ - Categories: Cloud Computing, Microsoft Azure - Tags: acquisition, jClarity, Microsoft, News - Article Type: News With Azure continuing to be the backbone of Microsoft’s future, the company won’t let anything get in the way of them improving the performance and features of the service. After growth in Java workloads on the cloud service, the company is acquiring jClarity to optimize the workloads. With Azure continuing to be the backbone of Microsoft’s future, the company won’t let anything get in the way of them improving the performance and features of the service. After growth in Java workloads on the cloud service, the company is acquiring jClarity to optimize the workloads. In the past couple of years, Microsoft’s usage of Java has increased with features like Azure HDInsight and workloads from Minecraft. Further, companies like Adobe, Daimler, and others are using Java production workloads on the platform which likely pushed the company towards this acquisition. jClarity has a proven track record for data drive Java Virtual Machine optimizations which will help these customers get more bang for their buck with Azure. Microsoft is also pledging that they will continue to collaborate with the OpenJDK community as well, following the completion of the acquisition. When it comes to acquisitions, this one is minor and focused on a specific aspect of the company’s cloud platform. But, Microsoft wants to position Azure as the best solution provider for any workload and by picking up jClarity, this will help improve their platform for java-based operations.   --- ### The Basic Tasks For A Solid Disaster Recovery Plan - Published: 2019-08-19 - Modified: 2023-05-24 - URL: https://petri.com/the-basic-tasks-for-a-solid-disaster-recovery-plan/ - Categories: Backup & Storage - Tags: Backup, Disaster Recovery - Article Type: Overview There are two critical components of all disaster recovery (DR) plans: backup and recovery. Backup lays the foundation of all DR plans and the recovery aspect determines how quickly your operation can be restored to nominal activity. There are two critical components of all disaster recovery (DR) plans: backup and recovery. Backup lays the foundation of all DR plans and the recovery aspect determines how quickly your operation can be restored to nominal activity. It's important to create plans for both aspects of the model you are going to deploy so that when an outage does occur, you are ready. Following the 3-2-1 rule When your applications or databases go down, priority number one is getting them back on-line as quickly as possible. A Backup by itself is fine but without the ability to recover backups, they are not worth much. The ability to restore your backups is really paramount. This is one of the main reasons that is so important to back up to multiple media types following the established 3-2-1 rule of backup. The 3-2-1 rule of backup essentially states that you should have at least three copies of your data. You should store your backup copies on two different types of media. And finally that you should keep at least one backup copy offsite. The premise behind this rule is to ensure that you are able to successfully restore your backups. Testing backup restores The ability to effectively restore your backups is also why testing your backups is so important. Just performing backups isn’t enough. Unfortunately, it’s not uncommon for restore operations to fail because of media or data corruption. According to a Dell EMC study, 76 percent of respondents globally experienced some type... --- ### Paul Thurrott's Short Takes: August 16 - Published: 2019-08-16 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-16/ - Categories: Hardware, Mobile, Windows 10 - Tags: News - Article Type: News Because wormable is a fun word, this edition of Short Takes looks at a serious new Microsoft update warning, Surface PCs getting throttled by a firmware update, Cortana’s summer of defeat, human-powered AI, and much more. That giant sucking sound you hear? That's Windows Update. Because wormable is a fun word, this edition of Short Takes looks at a serious new Microsoft update warning, Surface PCs getting throttled by a firmware update, Cortana’s summer of defeat, human-powered AI, and much more. Microsoft issues rare warning on Windows 10 update As I’m sure most are aware, this past Tuesday was Patch Tuesday, but this one was particularly notable thanks to a Microsoft warning about two critical vulnerabilities that it says are “wormable. ” “Any future malware that exploits these could propagate from vulnerable computer to vulnerable computer without user interaction,” Microsoft wrote, explaining the term. The vulnerabilities impact Windows 7, 8. 1, and 10, and Windows Server 2008 R2, 2012, and 2012 R2. (For some reason, Microsoft pointed out that unsupported products like Windows XP, Server 2003, and Server 2008 were not impacted. ) And the software giant is strongly recommending that customers update as soon as possible because of the threat potential. “It is important that affected systems are patched as quickly as possible because of the elevated risks associated with wormable vulnerabilities like these,” the firm stated. Go forth, people. Update! “Microsoft’s strategy of cozying up to other platforms is working, so the company is extending it” Embrace and extend. Classic Microsoft. Surface PCs getting throttled by latest firmware update Speaking of keeping updated, a recent firmware update has caused serious performance throttling problems for some Surface Book 2 and Surface Pro... --- ### Patch Tuesday August 2019 - Published: 2019-08-15 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-august-2019/ - Categories: Security, Windows 10, Windows 7, Windows 8, Windows Client OS, Windows Server - Tags: Patch Tuesday, Security, Windows 10 - Article Type: Overview This month Microsoft patches ‘wormable’ vulnerabilities in Remote Desktop that it discovered during routine hardening, remote code execution flaws in Edge and IE, and a new advisory for LDAP security is issued for Active Directory. This month Microsoft patches ‘wormable’ vulnerabilities in Remote Desktop that it discovered during routine hardening, remote code execution flaws in Edge and IE, and a new advisory for LDAP security is issued for Active Directory. Windows and Windows Server This month there’s a series of remote code execution (RCE) vulnerabilities patched in Windows that could allow hackers to obtain full user rights. One of the bugs affects Hyper-V on a host server when it fails to properly validate input from an authenticated user on a guest operating system. An attacker could run a specially crafted application in a guest virtual machine (VM) to force the Hyper-V host to execute arbitrary code. Another problem is fixed where an unauthenticated attacker connects to Windows using RDP and sends specially crafted requests. Microsoft says that this is a pre-authentication vulnerability and doesn’t require any user interaction. It could allow an attacker to execute arbitrary code and obtain full user rights. Two of the critical RCEs, CVE-2019-1181 and CVE-2019-1182, are wormable; meaning that they could spread laterally around a network and might be used in a future malware attack that wouldn’t require any user interaction. These flaws affect Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8. 1, Windows Server 2012 R2, and versions of Windows 10 and its server equivalents. Windows XP, Windows Server 2003, and Windows Server 2008 are not affected. It’s not thought that these vulnerabilities have been exploited in the wild yet. But because of... --- ### Exchange Online Exposes New Mailbox Activity Data > Microsoft has updated the vererable Get-MailboxStatistics cmdlet in Exchange Online PowerShell to return a bunch of new mailbox activity properties. The properties cover different activities. - Published: 2019-08-15 - Modified: 2024-09-04 - URL: https://petri.com/exchange-online-exposes-new-mailbox-activity-data/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, Get-MailboxStatistics, PowerShell - Article Type: How To Microsoft has updated the vererable Get-MailboxStatistics cmdlet in Exchange Online PowerShell to return a bunch of new mailbox activity properties. The properties cover different activities like email and calendar, but the problem with the LastLogon property remains and you still need to do some extra work to get accurate last login information for a user. Reporting Busy Exchange Online Mailboxes It’s common for Exchange administrators to generate reports about user activity. In the past, people depended on the LastLogonTime property returned by the Get-MailboxStatistics cmdlet to know the last time a mailbox’s owner logged on. However, as I pointed out last year, the values returned by the cmdlet are usually misleading because of the number of background assistants that access mailboxes for different purposes. New Assistant, New Mailbox Data Although it doesn’t make LastLogonTime any more accurate, A new background assistant is designed to give more information about user behavior within mailboxes. The assistant examines signals generated by user activity to figure out the last time a mailbox owner performed actions in different categories. The information is not updated in real time and can be up to three days old. Even so, the new information gives extra insight into mailbox activity. Table 1 lists the last user activity properties. One interesting omission is that delete actions are not included in the calculation of last activity in any category. Property Meaning LastLogonTime Last time a process signed onto the mailbox. LastEmailTime Last time an email was sent from the mailbox or marked as read in the mailbox. LastInteractionTime Last time the mailbox owner performed an action in the mailbox. LastContactsTime Last time a contact was added, updated, or viewed. LastCalendarTime Last time a calendar entry was added, updated, or a calendar invite was accepted/declined, or the user viewed... --- ### Windows Virtual Desktop Is Feature Complete - Published: 2019-08-14 - Modified: 2024-09-04 - URL: https://petri.com/windows-virtual-desktop-is-feature-complete/ - Categories: Cloud Computing, Microsoft Azure - Tags: Microsoft, Virtual Desktop - Article Type: News Microsoft's Windows Virtual Desktop service now feature complete and should reach general availability in the near future. Back in March of this year, Microsoft pulled back the curtains on the first public preview of its new virtualized desktop service known as Windows Virtual Desktops that was announced at Ignite in 2018. This week, the platform has reached the ‘feature complete’ milestone and is pushing towards general availability later this year. Windows Virtual Desktop is a new cloud service that delivers a multi-user Windows 10 experience which is optimized to work with Office 365 Pro Plus. The new offering makes it significantly easier to scale Windows 10 and Office deployments on Azure and comes with built-in security and compliance. The next obvious question becomes when will the service reach general availability. Mary Jo is hearing that it should arrive sometime around September which aligns to similar information I have heard; expect the platform to be a topic of conversation at Ignite 2019 as well. The big carrot Microsoft is using to hopefully attract people to the service is that for customers who are willing to virtualize their Windows 7 desktops, they will offer extended service updates for the OS through January of 2023. For Microsoft, the company hopes that Windows Virtual Desktop will eventually become a key pillar of its long-term growth strategy for Azure. Microsoft’s cloud platform continues to expand each quarter and by adding the ability to run the entire virtual desktop setup without leaving the Microsoft ecosystem, the company is in a good position for a thin client future. --- ### With Six Months Left, Microsoft Provides New Windows 10 Deployment Assistance - Published: 2019-08-13 - Modified: 2024-09-04 - URL: https://petri.com/with-six-months-left-microsoft-provides-new-windows-10-deployment-assistance/ - Categories: Windows 10 - Tags: Fastrack, News, Windows 10 - Article Type: News Microsoft has a new FastTrack program for Windows 10 migrations for corporate customers but the bigger question is why is this launching now? No matter how many times you wish upon a star, Windows 7 end of life is happening in January and there isn’t much you can do about it. Microsoft is holding firm on this date and if you haven't started your migration process to Windows 10, you are quickly running out of time. Specifically, January 14th of 2020, Windows 7 will reach its end of support window which means no new patches, updates, or anything else will be released for the operating system*. The asterisk is there because, despite the fact that Windows XP has long been left behind, Microsoft has shipped patches for that OS in critical scenarios. That being said, you shouldn’t expect Microsoft to ship updates for Windows 7 and if you are running the OS after January, it will show up on an IT audit report for being out of compliance. And to help those of are running behind, Microsoft has created new FastTrack deployment guidance for Windows 10. If you are purchasing more than 150 Windows licenses, you will be eligible to connect directly with a Microsoft specialist to help you to create a technical plan, determine how to onboard and deploy new services and/or users, and work with you as you deploy to get the most value out of your technology investments; you can learn more about the program here. Don’t get me wrong, the assistance for those migrating to the new OS is a positive step for Microsoft but why... now? Microsoft has been... --- ### BitTitan Introduces Cross-Tenant Teams Migration > Moving Teams between Office 365 tenants has been a challenge since the earliest days of Teams. Now a beta Graph API has allowed BitTitan to create the ability to transfer team settings and channel conversations between tenants. - Published: 2019-08-13 - Modified: 2024-09-04 - URL: https://petri.com/bittitan-introduces-cross-tenant-teams-migration/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: BitTitan, MigrationWiz, Teams - Article Type: News Moving Teams between Office 365 tenants has been a challenge since the earliest days of Teams. Now a beta Graph API has allowed BitTitan to create the ability to transfer team settings and channel conversations between tenants. The migration isn't perfect, but it's a good start and will improve over time as BitTitan and other ISVs work out the best way to move Teams content around. BitTitan enjoys a well-earned reputation as a leader in the migration space where their MigrationWiz product has many happy customers. At the recent Inspire conference, BitTitan announced that MigrationWiz could now move Teams settings, permissions, conversations, and files (SharePoint) between Office 365 tenants. Teams is on a roll right now. Microsoft says that over 500,000 organizations use Teams with 19 million weekly active users. Now that Microsoft has announced the retirement of Skype for Business Online in July 2021, the pressure for tenants to move off Skype for Business Online will grow and the number of Teams users will swell. Given this popularity, it’s inevitable that Teams will feature in many merger and acquisition projects for Office 365 tenants. The MigrationWiz Approach I spoke with David Mills and Merlin Woodman of BitTitan to understand how they approach the problem of moving Teams data between tenants. They explained that the MigrationWiz process was very straightforward. First, an inventory of Teams in the source tenant is done to understand the settings that need to be moved (channels, permissions, and membership). This process is quick (about 30 seconds a team) and allows the administrator to plan the migration, including understanding if they have enough licenses for the move. Cross-Tenant Teams Migration Process Once everything’s prepared, migration is done by connecting the MigrationWiz global administrator account in the source tenant to the teams to be moved. MigrationWiz prepares the target tenant by creating teams matching the teams to be migrated and populating... --- ### Windows Server to Add FIDO2 Security Key Support for Password-Less Sign-In - Published: 2019-08-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-to-add-fido2-security-key-support-for-password-less-sign-in/ - Categories: Windows Server 2019 - Tags: cloud computing, FIDO2, Security, Windows Hello, Windows Server 2019, Windows Server vNext - Article Type: News Enable password-less sign-in in hybrid cloud deployments using FIDO2 security keys with the next SAC release of Windows Server. 12404760 - electric background The latest Insider preview of Windows Server, build 18945, was released on July 30th and it includes FIDO2 security key support for password-less logons in hybrid Azure Active Directory (AAD) and Windows Server Active Directory (AD) deployments. In July, Microsoft expanded password-less sign-in for Azure Active Directory (AAD) to include FIDO2 security keys. Password-less sign-in for AAD has been available in public preview since fall 2018, allowing users to sign in with the Microsoft Authenticator app. But organizations can now start testing password-less sign-in using the same authentication factors supported by Microsoft Accounts (MSA), i. e. Windows Hello, FIDO2-based security keys, and the Microsoft Authenticator app. Currently, FIDO2 support is limited to cloud-only environments. FIDO security keys can’t be used in hybrid AAD/Windows Server Active Directory (AD) deployments. But Microsoft is planning to add support and it will go mainstream in the next full version of Windows Server. Or for those that need it sooner, the next official SAC release. Microsoft’s Windows Blog reads: We’re adding the capability for modern passwordless credentials, such as FIDO2 security keys, to authenticate and provide seamless Single Sign-On (SSO) to on-premises environments. Addition of this new capability will extend this feature to hybrid environments. At the moment there is no information about how this feature works or whether organizations will need to do anything to configure it to support on-premise environments in hybrid cloud deployments. Furthermore, the blog suggests that Windows Server will get support... --- ### Paul Thurrott's Short Takes: August 9 - Published: 2019-08-09 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-9/ - Categories: Cloud Computing, Microsoft 365, Mobile, Office, Windows 10 - Tags: News - Article Type: Overview Because a cornerstone does not a foundation make, this edition of Short Takes looks at a misunderstanding of terms, Microsoft’s expanding partnership with Samsung, Microsoft’s Iowa hypocrisy, Microsoft contractors listening in on Cortana, and so much more. Because a cornerstone does not a foundation make, this edition of Short Takes looks at a misunderstanding of terms, Microsoft’s expanding partnership with Samsung, Microsoft’s Iowa hypocrisy, Microsoft contractors listening in on Cortana, and so much more. Misunderstanding what cornerstone means A report in Geekwire last week noted that Microsoft’s latest 10-K regulatory stopped referring to Windows 10 as “the cornerstone of ambition a foundation for the secure, modern workplace, and designed to foster innovation through rich and consistent experiences across the range of existing devices and entirely new device categories. ” But the publication drew the wrong conclusion. This change wasn’t about deemphasizing Windows; that’s something that the company has been doing for years. And it’s most certainly not about any decline in Windows’ financial contributions: The business unit that contains Windows generated $11 billion in revenues in the most recent quarter, one-third of the firm’s total revenues, and most of it from Windows. No, this is just about an ongoing shift to Microsoft 365, which combines Windows with Office 365 and device management solutions. Which you can tell by reading the phrase that replaced the above quote in Microsoft’s latest 10-K: “We are bringing Office, Windows, and devices together for an enhanced and more cohesive customer experience. ” Right. Nothing to see here, folks. “Windows is now officially irrelevant. Here’s why that makes Microsoft happy. ” Again, $11 billion in revenues in one quarter. Microsoft partners with Samsung because it doesn’t make its own phones Microsoft... --- ### A Closer Look at Modern SharePoint Audience Targeting - Published: 2019-08-09 - Modified: 2024-09-04 - URL: https://petri.com/a-closer-look-at-modern-sharepoint-audience-targeting/ - Categories: SharePoint Online - Tags: Audience Targeting, Modern SharePoint - Article Type: Overview A closer look at modern SharePoint audience targeting and how to configure the feature. Finally! Modern SharePoint audience targeting arrived in our Office 365 tenant. This was a long time coming; I believe this feature was announced during Ignite 2018. We desperately needed this feature because the current audience targeting mechanism is seriously out-of-date. That's also an understatement. Do you even remember what it looks like? Here are a couple of screenshots:   You create a new audience and provide a name, owner and select the type of rules:   Now, the most important part. How is your audience defined and compiled? In our example we want to add every person, within the organization, who works for the IT department: Don't me wrong. This feature is from SharePoint 2007 but still applicable in the real world. There are many scenarios where you want to target content specifically towards a group of people. For example, news posts or web parts. The biggest issue with this audience targeting mechanism is the compilation time. You have to wait a week for the audience to compile. That's, of course, unacceptable and unworkable. The modern audience targeting doesn't work with rules but with Azure AD & Office 365 Groups. I am not sure if rules will become available in the near future. Modern audience targeting is, for now, only available with the highlighted content & news web part. Let's take a look at how you set this up. Imagine, you have a centralized home page for your Intranet Portal. You want to create news pages but only... --- ### The Magic Behind OWA Likes > OWA is the only Outlook client that supports "Likes." This begs the question how OWA supports likes and where the information about likes is stored. Some probing using easily accessible tools reveals the answer. - Published: 2019-08-08 - Modified: 2024-09-04 - URL: https://petri.com/the-magic-behind-owa-likes/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office, Outlook - Tags: eDiscovery, Likes, MFCMAPI, outlook web app, owa - Article Type: How To OWA is the only Outlook client that supports "Likes." This begs the question how OWA supports likes and where the information about likes is stored. Some probing using easily accessible tools reveals the answer. You might think that the answer only interests Office 365 Trivial Pursuit nerds, but it's actually of real interest to eDiscovery investigators. Limited Social Reactions in Email When I wrote about the range of reactions now available in Teams to respond to messages, I made the point that Microsoft has some work to do to include reaction data in the compliance records captured for personal and channel conversations. I knew that OWA is the only Outlook client to support “like” reactions for email, but I realized that I hadn’t checked how it captures reactions so that they can be used in eDiscovery cases. This prompted me to investigate the matter. Only OWA Lets You Like Email OWA is the only Outlook client to allow users to react to email with a like. Whenever OWA opens a message, OWA checks for any likes and displays the number of likes and the people who liked the message (Figure 1). Figure 1: OWA displays information about likes received by a message (image credit: Tony Redmond) mobile support liking “regular” email. In addition, neither client supports the display of a like if given in OWA. Internal Likes Only Likes don’t work if messages go outside the tenant. In other words, it doesn’t matter if a recipient in another tenant likes your message because you’ll never see it. No mechanism exists to information back to your tenant for OWA to count and display. Using Content Search to Find Liked Items Microsoft doesn’t document how likes work in OWA, so how can we find the evidence to understand what we see happen... --- ### VMware Expands the Hybrid Cloud to Google - Published: 2019-08-07 - Modified: 2024-09-04 - URL: https://petri.com/vmware-expands-the-hybrid-cloud-to-google/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Hybrid Cloud, Microsoft Azure, VMware - Tags: Azure, Cloud, cloud computing, Google, hybrid cloud, Virtualization, vmware - Article Type: Overview This past July 2019, VMware added Google to their list of hybrid cloud partners that enable you to run vSphere Cloud Foundation in the public cloud. VMware has previously announced similar partnerships with Amazon AWS and Microsoft Azure. Over the past year, VMware has been on a mission to expand its vSphere offering to the major cloud providers. This past July 2019, VMware added Google to their list of hybrid cloud partners that enable you to run vSphere Cloud Foundation in the public cloud. VMware has previously announced similar partnerships with Amazon AWS and Microsoft Azure. The latest hybrid cloud offering enables you to run native VMware workloads on the Google Cloud Platform (GCP) providing businesses with the flexibility to run their VMs on-premises, on the GCP, or in a hybrid cloud architecture providing native access to the full VMware stack including VMware vSphere, vSAN and NSX. Sanjay Poonen, chief operating officer, customer operations at VMware stated. “With VMware on Google Cloud Platform, customers will be able to leverage all of the familiarity of VMware tools and training, and protect their investments, as they execute on their cloud strategies and rapidly bring new services to market and operate them seamlessly and more securely across a hybrid cloud environment. ” CloudSimple enables vSphere on the Google Cloud Platform This is essentially like the arrangement that VMware has had with Amazon for the past couple of years. VMware Cloud Foundation provides software-defined compute, storage, networking, and management for both on-premise infrastructure and the GCP allowing businesses to seamlessly extend their VMware infrastructure to the cloud and easily move workloads from on-premise to the GCP and back. While VMware worked with Amazon to develop their VMware Cloud on AWS offering, the VMware/Google... --- ### Slack Rolls out New Enterprise Controls - Published: 2019-08-07 - Modified: 2024-09-04 - URL: https://petri.com/slack-rolls-out-new-enterprise-controls/ - Categories: Uncategorized - Tags: Messaging, News, Slack - Article Type: News Slack is rolling out new enterprise features for its customers that will help the platform move deeper into the corporate messaging space. When it comes to corporate messaging, there are typically two paths a user will follow: they are either using Teams or Slack. Teams certainly has a large following but for many other companies, Slack is the preferred messaging solution. With compliance requirements becoming more stringent and for Slack, if they want to move deeper into finance and healthcare, the platform needs to support a wide range of features to comply with frameworks like FINRA and HIPAA. Coming soon to Slack will be features that let admins limit the number of devices can be logged into at one time, detect if a phone is jailbroken, and the ability to force app upgrades. In addition, Slack will soon be able to block file downloads on desktop computers and on mobile devices, Slack will soon let admins control which browser opens links in the messaging platform. These controls are not going to magically make Slack the be-all, end-all, solution for enterprise communication but with each new control, it does help push Slack deeper into the enterprise conversation. Slack is going up against Teams which has quickly established itself as the premier solution for enterprise messaging but with each new update, Slack is able to expand where and how its platform can be used. The market can certainly sustain two options and it looks like Teams and Slack will be fighting it out for the foreseeable future. --- ### Manage Customer Cloud Services Using Azure Lighthouse - Published: 2019-08-06 - Modified: 2024-09-04 - URL: https://petri.com/manage-customer-cloud-services-using-azure-lighthouse/ - Categories: Microsoft Azure - Tags: Azure, Azure LightHouse, cloud computing, Microsoft Partner - Article Type: News In today’s Ask the Admin, I look at how Microsoft partners can offer clients managed Azure services using Lighthouse. Azure Lighthouse was launched at Microsoft’s Inspire convention for partners in July and it provides partners with a single pane of glass for managing their customer’s cloud resources in one place. It utilizes Azure’s new Delegated Resource Management (ADRM) feature, which allows customers to delegate control over subscriptions, resource groups, and resources. According to Erin Chapple, in a blog post introducing Azure Lighthouse, the new service lets partners monitor virtual machine (VM) health across hundreds of customers in a single view and create, update, and resize Azure resources of multiple customers with an API call using one access token. In other words, partners will no longer need to manage clients one-by-one. Enabling higher automation across the lifecycle of managing customers (from patching to log analysis, policy, configuration, and compliance), Azure Lighthouse brings scale and precision together for service providers at no additional cost and that’s consistently for all licensing constructs customers might choose, including enterprise agreement (EA), cloud solution provider (CSP), and pay-as-you-go. Microsoft says that the ability to use Lighthouse capabilities natively and through API integration is unique to Azure. For example, partners could use the API with their own monitoring solutions and applications. Another interesting feature is that customers can be onboarded using the Azure Marketplace or Azure Resource Manager (ARM) templates. Manage Customer Cloud Services Using Azure Lighthouse (Image Credit: Microsoft) Partners can publish managed services offers to the Azure Marketplace and then manage customers from their partner account. Because there... --- ### Is Exchange Online Threatened by Ransomware? > Some people worry that Exchange Online mailboxes could be compromised by ransomeware and people will be forced to pay BitCoin to decrypt their messages. It's certainly a possibility, but out-of-the-box solutions exist if you're unlucky enough to be infected. - Published: 2019-08-06 - Modified: 2024-09-04 - URL: https://petri.com/is-exchange-online-threatened-by-ransomware/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, Kevin Mitnick, Malware, Office 365 Message Encryption, Office 365 Sensitivity Labels, Ransomware - Article Type: Opinion Some people worry that Exchange Online mailboxes could be compromised by ransomeware and people will be forced to pay BitCoin to decrypt their messages. It's certainly a possibility, but out-of-the-box solutions exist if you're unlucky enough to be infected. That is, if you've done the necessary up-front planning to prepare for the worst to happen., The question of whether ransomware could infect and encrypt an Exchange Online mailbox raised by Michael Van Horenbeeck is fair. Although no reports exist of such an infection, the tools are there and, no doubt, someone is willing to try such an attack. Vendors of cloud backup solutions like to raise this point with potential customers. They argue that Microsoft’s strategy of using Native Data Protection to avoid the need for backups of Exchange Online mailboxes is insufficient in a world where deliberate acts of malfeasance, such as ransomware attacks, are well known. Files Restore The existence of ransomware is one of the reasons why Microsoft introduced the Files Restore feature for OneDrive and SharePoint. This feature depends on versions of documents being available to allow recovery to a selected point in time. The versions of Word, Excel, and PowerPoint used with Office 365 support automatic versioning (“AutoSave”) to ensure that versions are available for recovery. Attacking Exchange Online Exchange is not SharePoint, or so I am told (the two products once shared the same database engine). A ransomware attack against a OneDrive for Business account or SharePoint document library could potentially lead to infection across an entire tenant, depending on factors such as the type of attack, how it spreads, and the sharing behavior of users. Advanced Threat Protection (ATP) for SharePoint can detect and suppress sharing of infected files, but perhaps only after some harm is done. However, assuming good versions of documents exist, the Files... --- ### Surface Go: One Year Later - Published: 2019-08-05 - Modified: 2024-09-04 - URL: https://petri.com/surface-go-one-year-later/ - Categories: Hardware - Tags: review, Surface Go - Article Type: Review With the Surface Go now a year old, let's take a look at how well it has held up during a year of hard use. It’s a bit hard to believe that the Surface Go has been available for about a year. The smallest device in the Surface family, that is available today, had a lot to prove thanks to its underpowered CPU and smaller footprint but with a year of use under my belt and a lot of time with the Go, here’s how it has fared for the past year. It’s important to remember what this hardware is designed for; first-line workers, education, and casual use. It’s not designed to be a workhorse, that’s the Pro, but at the same time, it is a Surface, which means it has a pedigree that it should still be a quality piece of hardware. If you are looking for a more in-depth review, it’s worth taking a look at the initial post as I dive deeper into the specs, functionality, and other aspects of the device. This post is simply a follow-up to that piece and is not intended to be a ‘be-all’ reference guide. The version of the Go that I have is the 128 GB model with 8GB of RAM, Microsoft is still selling this device for $549. 00 and here is how it has held-up for the past year. Pros: The size of the Go, in my opinion, is still its best characteristics. The device has an exceptionally small footprint in my bag and I often take the LTE version with me when hitting the road; especially when I don’t intend to work but... --- ### Research Shows Zero-Days Much Less Likely to Compromise Latest Windows OS Version - Published: 2019-08-05 - Modified: 2024-09-04 - URL: https://petri.com/research-shows-zero-days-much-less-likely-to-compromise-latest-windows-os-version/ - Categories: Windows 10 - Tags: EMET, Security, Windows 10, Windows Update - Article Type: News Microsoft researcher releases data that shows the latest versions of Windows are significantly less likely to be compromised by zero-days. The biannual schedule for Windows 10 feature updates hasn’t been popular with enterprises or consumers but Microsoft maintains that it is the best way to provide a secure computing environment for its customers. With the threat landscape changing so rapidly, Windows needs to be updated more frequently than in the past. Matt Miller, a Microsoft Security Response Center security engineer, recently tweeted new research that shows only about 40% of Windows zero-day vulnerabilities were used to successfully compromise the latest versions of Windows between 2015 and 2019. So, hackers were more likely to effectively use zero-days against older versions of the OS. Research Shows Zero-Days Much Less Likely to Compromise Latest Windows OS Version (Image Credit: Matt Miller) Additionally, in about 66% of incidents, zero-days failed to compromise Windows because of exploit mitigations added to the latest OS version. If you remember, Microsoft integrated features that are part of the Enhanced Mitigation Experience Toolkit (EMET) into Windows 10. EMET is a free tool for Windows 7 and Windows 8. 1 that can optionally be used to bolster security. Microsoft adds and updates exploit mitigations with each new Windows 10 feature update. In Miller’s own words: This highlights that staying current with the latest version of Windows has remained a good defense for many of the zero-day exploits observed in the wild that target Windows CVEs due in large part to the mitigations being added each release. Research Shows Zero-Days Much Less... --- ### Google Makes it Easier to Migrate VMs from Azure to Google Cloud - Published: 2019-08-01 - Modified: 2024-09-04 - URL: https://petri.com/google-makes-it-easier-to-migrate-vms-from-azure-to-google-cloud/ - Categories: Cloud Computing, Google Cloud Platform, Microsoft Azure - Tags: Azure, Google, Google Cloud - Article Type: News Google has announced a new feature for its cloud platform that makes it significantly easier to migrate VMs from Azure to Google Compute Engine. To say that the ‘cloud wars’ are heating up, would be an understatement and quite frankly, outdated way of contextualizing one of the largest shifts in computing since the invention of the desktop PC. Microsoft, Amazon, and Google are spending billions to try and capture the largest piece of the cloud computing pie as possible and there are no signs of the spending slowing down. While Amazon has the lead in the segment and Microsoft is holding firm in second place, Google continues to play catch-up when it comes to attracting new business. That being said, Alphabet, Google’s parent company, has the cash-flow to play in the cloud waters and continues to add new features and functionality. This week, Google announced a new feature for its Google Cloud Platform that makes it significantly easier to migrate from Azure to Google Compute Engine. The new feature called Migrate for Compute Engine, allows you to lift and shift VMs out of Azure and move them to Google Compute Engine with minimal friction; Google previously had announced this feature for AWS. Google is not alone in this space, Microsoft offers services to help move away from AWS and of course, to migrate from on-premises to its cloud offering. For Google, this is one more check-box item that will help it attract more customers who may be tempted to deploy a multi-cloud setup, instead of relying on a single vendor. Will this new feature dramatically move the needle for Google? Probably not, but for... --- ### Get Users Working Faster with Windows 10 Autopilot White Glove Provisioning - Published: 2019-08-01 - Modified: 2024-09-04 - URL: https://petri.com/get-users-working-faster-with-windows-10-autopilot-white-glove-provisioning/ - Categories: Windows 10 - Tags: Configuration Management, intune, Mobile Device Management, Windows 10, Windows Autopilot - Article Type: Overview Part of Microsoft’s modern management initiative for Windows 10, Windows Autopilot is a suite of technologies designed to simplify the setup process for new and existing devices. Part of Microsoft’s modern management initiative for Windows 10, Windows Autopilot is a suite of technologies designed to simplify the setup process for new and existing devices. When combined with the Windows Autopilot Deployment Program, which enables OEMs and distributors/resellers to link devices to organizations’ Azure Active Directory (AAD) and Intune Mobile Device Management (MDM) services, a new device can be provisioned by the user out of the box rather than having IT do all the heavy lifting. This means that a device can be automatically enrolled in Intune, transformed to Windows 10 Enterprise, local settings/security applied, Office 365 ProPlus, and line-of-business apps installed all without intervention by IT. Furthermore, if a machine does run into an issue with software corruption or a similar problem during its lifecycle, Autopilot Reset allows the machine to be reset to a known good configuration while maintaining the MDM management and AAD connection state. Autopilot’s main task is to enroll devices with Azure AD or Windows Server Active Directory using Hybrid Azure AD join, and then auto-enroll with an MDM service. MDM then takes over to configure the device as specified by the IT department. Windows Autopilot Deployment Scenarios There are several different ways that Autopilot can be used. User-driven mode transforms Windows 10 devices from their initial state to a ready-to-use business configuration without involvement by IT. Users turn on their new device, choose a language, locale, and keyboard; connect to either a wireless or wired network; and finally specify an... --- ### Microsoft Deprecating Exchange Online's Search-Mailbox Cmdlet > Microsoft has started to flag its intention to deprecate the Search-Mailbox cmdlet. It's probably the right time to remove this cmdlet from Exchange Online because Office 365 compliance searches can serve the same purpose. - Published: 2019-08-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-deprecating-search-mailbox-cmdlet/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, mailboxes, New-ComplianceSearchAction, Removing Items, Search-Mailbox - Article Type: News Microsoft has started to flag its intention to deprecate the Search-Mailbox cmdlet. It's probably the right time to remove this cmdlet from Exchange Online because Office 365 compliance searches can serve the same purpose. At least, compliance searches can do most of what Search-Mailbox does faster. Some functionality gaps need to be filled before we can bid adieu to Search-Mailbox, but its time is coming. I see Microsoft has started to flag the deprecation of the Search-Mailbox cmdlet (Figure 1) in a PowerShell banner anytime the cmdlet is run. The banner comes with a recommendation to use Office 365 content searches (New-ComplianceSearch) instead. Figure 1: PowerShell gives a Search-Mailbox deprecation notice (image credit: Tony Redmond) You’ve got to admire Microsoft’s optimism that now is a good time to deprecate Search-Mailbox. They’ve been trying to get rid of the cmdlet since the introduction of eDiscovery searches in Exchange 2010 but have never gone quite so far as to flag the intention in public. Until now. Old-Fashioned but Powerful On the surface, there shouldn’t be a problem. Search-Mailbox is a cranky old-fashioned cmdlet that isn’t particularly easy to use. Search-Mailbox can only process mailboxes and knows nothing about the other data sources inside Office 365. It has no GUI to make searches easy to build. But Search-Mailbox does one thing very well: it finds and removes mailbox items better than other tools currently do. For this reason, Search-Mailbox is highly valued by administrators who need to remove spam and malware from user mailboxes or rescue the career of someone who sends out a message when they shouldn’t. Very Capable Office 365 Content Searches Office 365 content searches are very capable. They are highly scalable, can search through multiple data sources (Exchange Online mailboxes, Office 365 group mailboxes, Skype for Business conversations, Teams messages, To-Do, Sway, Forms (owned by Office 365 Groups),... --- ### Everything You Need to Know About Office 365  – July 2019 > Lots of info about Teams this month because it is kind of a big deal. After the Teams love affair there is also updates on PowerApps Portals and Forms. Fun. - Published: 2019-07-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-july-2019/ - Categories: Microsoft 365 - Tags: Microsoft Forms, Microsoft Teams, Powerapps, Skype for Business Online - Article Type: News This month, it's all about Teams as Microsoft pushes its users away from Skype and tells its salesforce to take a look at PBX. Have I mentioned that Teams is coming? I am going to keep reminding you all and myself and this article is going to beat you over the head with it. I apologize. After you finish reading about Teams you will also get to read about PowerApps Portals and Forms. Microsoft Teams surpasses 13 million daily users That is a lot and clearly buy the growth chart it is going to keep going for a while. We (I) used to think of SharePoint as the center of the Office 365 ecosystem. Not anymore. It is Teams, so get on board. And the best part of the article announcing this milestone? There is a little chart they don’t talk about it. And on that chart, you see that tool I don’t like Slack. It had a giant head start on Teams yet it got past up earlier this year. I look for Slack and Teams to have an epic fight for a while, which is good because that means more features for us. Tony talked about one of the ways Slack Takes Aim at Teams Weaknesses last week. Teams is the sales focus for fiscal 2020 Speaking of Brad and Teams. (Did they Team up? ) He had an interesting quick note on Microsoft Shifts Sales Focus From Windows to Teams where he talks about instead of the sales force getting marching orders to push Windows this year it is Teams and the PBX features. Kind of fun. Guessing... --- ### Everything You Need to Know about SharePoint Online – July 2019 > SharePoint Online news for July 2019 is here. Check it out learn about ehanced editing, web parts, hub sites and usage data. Fancy! - Published: 2019-07-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-online-july-2019/ - Categories: SharePoint - Tags: Hub sites, SharePoint Online - Article Type: News Microsoft's output typically slows down during the summer but July had a few SharePoint updates that are worth pointing out. Man it is hot outside so grab a cold drink and check out this month’s updates. Nothing too crazy. Really just a bunch of enhancements to existing features to make SharePoint overall better. Better editing, better web parts, better hub site management, and better usage data. Does life get any better? Good news, I kept the snark down this month also. Quick Edit for SharePoint lists get enhanced Quick edit has always been one of my favorite list features. I like my changes, like my chocolate, in bulk. With this update that has started rolling out to Targeted Release customers, you can now filter, resize and save column widths, see all column visual formatting like color coding, a prettier people picker and more. Yay! Another one of those minor changes that has solid productivity increases. You can read more here. The only bummer was the editor will not let me include my favorite “Enhance Meme” copyright laws and all of that. New and updated web parts rolling out soon for modern pages Staring in August and ending in October you should start seeing new web parts in SharePoint Online for modern pages. The first one a Button & Call to Action is sorely overdue. Turns out that people like buttons that do things and SPO has been lacking this for a long time. But wait there is more (ha) they have also updated clock and weather web parts, hero web part has changed, you can filter better and... --- ### Everything You Need to Know About Windows – July 2019 - Published: 2019-07-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-july-2019/ - Categories: Windows 10 - Tags: cloud computing, Cortana, Windows 10, Windows Server, Windows Subsystem for Linux - Article Type: News Microsoft changes Windows 10 servicing again, Windows Server will get support for FIDO2 security keys in hybrid configurations, Microsoft fixes blocking issues for the Windows 10 May 2019 Update, and much more. Microsoft changes Windows 10 servicing again, Windows Server will get support for FIDO2 security keys in hybrid configurations, Microsoft fixes blocking issues for the Windows 10 May 2019 Update, and much more. Windows 10 19H2 Servicing Changes and Feature Improvements Windows 10 19H2, which is planned for release in fall this year, will be delivered via servicing as a Cumulative Update (CU) for users running the Windows 10 May 2019 Update (19H1). Users on older versions of Windows 10 will receive 19H2 as a full operating system upgrade, much like Microsoft has delivered all Windows 10 feature updates up to now. Microsoft hasn’t said whether the servicing change is just for 19H2 or whether the second feature release for Windows 10 each year will be delivered this way. The first Insider preview builds of Windows 10 19H2 have already been released to the Slow Ring. Windows 10 19H2 will be more like a service pack for 19H1 because it won’t contain any major new features, but it does have some improvements for the enterprise and general performance fixes. Third-party digital assistants will be able to voice activate above the lock screen. Key rotation enables secure rolling of recovery passwords on Mobile Device Management (MDM) managed Azure Active Directory (AAD) devices on-demand from MDM tools or every time a recovery password is used to unlock BitLocker protected drives. And there’s a fix that will let OEMs reduce inking latency based on hardware capabilities rather than being confined to using... --- ### Everything You Need to Know About Azure Infrastructure – July 2019 Edition - Published: 2019-07-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-july-2019-edition/ - Categories: Microsoft Azure - Tags: alerts, Azure, Azure Bastion, Azure Files, Azure Firewall, Azure LightHouse, Azure Migrate, Azure Monitor, Bastion, BLOB, Cost Management, CSP, Data Box, Data Box Heavy, direct, firewall, FXT, ICMP, Indirect, IUR, Lighthouse, Microsoft Partner, Network Security Groups, NSGs, PPG, Premium Blob Storage, Premium Storage, Proximity Placement Groups, Tenant, Virtual Network, VNET, VNet Gateway, VNet Peering - Article Type: Overview It may be the middle of Summer but there is a lot going on with Azure, this is what you need to know about Azure for the month of July. This month Microsoft held their Inspire conference for Microsoft partners. It looked like it was going to be the location of a partner rebellion, but Microsoft relented and let something else shine bright. Microsoft Partners Seeing the Way to Managed Services The first story I want to talk about was the big Azure story of the year so far. I have worked in the Microsoft partner world for most of my career. In my previous job, I spent over 4 years encouraging Microsoft partners to develop Azure practices. Most of those partners work as managed services providers (MSPs), companies that are effectively the IT department for their customers. Because of the way that Azure was developed, those companies faced some logistical blockers for providing smooth managed services to their customers that were using Microsoft’s cloud service. Azure was developed with the tenant as a hard boundary, unlike Office 365 where a form of delegated administration has been available for years. If you were not a part of a customer’s tenant then you could not see or manage it. The addition of guest users made it possible for a partner to add their users to customer tenants but it’s a messy process – each operator/engineer must be invited, accept the invitation, be added to a group, and the group granted permissions to the customer subscriptions. Changes to staffing would require each customer to be modified to reflect the changes. Microsoft decided to change this based on lots of feedback... --- ### Enabling Password-Less Sign-In for Azure Active Directory - Published: 2019-07-30 - Modified: 2024-09-04 - URL: https://petri.com/enabling-password-less-sign-in-for-azure-active-directory/ - Categories: Cloud Computing - Tags: Azure Active Directory, cloud computing, FIDO2, Password-less Sign-In, Security - Article Type: News Microsoft launches public preview of FIDO2-based password-less sign-in for Azure Active Directory accounts. Microsoft first enabled password-less sign-in for Microsoft accounts (MSA) using FIDO2 security keys, the Microsoft Authenticator app, and Windows Hello, in the Windows 10 October 2018 Update. Password-less sign-in lets you log in to websites that require a Microsoft account for authentication, like Outlook. com, but using a security key instead of a password. FIDO2 Password-Less Sign-In for Azure Active Directory This month, Microsoft expanded password-less sign-in for Azure Active Directory (AAD) to include FIDO2 security keys. Password-less for AAD has been available in public preview since autumn 2018, allowing users to sign in with the Microsoft Authenticator app. Now organizations can start testing password-less sign-in using the same authentication factors available for MSAs, i. e. Windows Hello, FIDO2-based security keys, and the Microsoft Authenticator app. Windows Hello, the Microsoft Authenticator app, and FIDO2 security keys securely store a private key that can be unlocked using biometric recognition or a PIN. The private key is used to verify the user and device. There are also some new admin features in the Azure AD portal for managing authentication factors for users and groups. Microsoft says that you can use these features to manage a staged rollout of password-less authentication. The aim is to create one tool where administrators can manage all authentication factors, including multifactor (MFA), OATH tokens, and phone number sign-in. Passwords No Longer Effective Microsoft is pushing password-less sign-in because it believes that passwords are no longer effective. Passwords are inherently weak for several reasons. Users often choose passwords... --- ### Microsoft To Retire Skype for Business Online in 2021 - Published: 2019-07-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-retire-skype-for-business-online-in-2021/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, skype, Skype Online - Article Type: News Microsoft has announced that they will retire Skype Online for Business in two years with the company pushing everyone to Teams. With Teams passing 13 million daily active users, it should come as little surprise that Microsoft is rapidly moving away from other communication platforms. To start putting stakes in the ground for future planning purposes, Microsoft is announcing the end of Skype for Business Online. On July 31st, 2021, Microsoft will retire Skype for Business Online. This is a significant change for Microsoft and further cements the plans that Teams will replace all communication services for the company. From now until the retirement date, Microsoft says that Skype for Business Online customers will experience no change in service or operation. But, one thing you should be aware of, is that starting on September 1st, 2019, all new customers will onboard directly to Teams for chat, meetings, and calling. If you are using the Skype consumer service or Skype for Business Server, neither of those products are impacted by this announcement. And for those who have been asking, Teams and Skype Consumer Interop will be available in Teams in the first quarter of calendar year 2020. This news should not come as a major surprise to anyone, Microsoft has been pushing Teams at any given chance and the company has made it clear that Skype services are the past for the company. Teams is Microsoft's new darling and with mostly-positive reviews of the new collaboration application, the company has no plans to support Skype and Teams in the business environment for the long-haul. If you are using Skype for Business Online,... --- ### Controlling Communications inside Office 365 Tenants with Information Barriers (Part 2) > In part 1 of this series, we discussed how to setup Office 365 Information Barriers. We now get to the practical application of those barriers to stop different user groups communicating with Teams. - Published: 2019-07-30 - Modified: 2024-09-04 - URL: https://petri.com/controlling-communications-office-365-tenants-information-barriers-part-2/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Compliance, Information Barriers, Office 365, Teams - Article Type: How To In part 1 of this series, we discussed how to setup Office 365 Information Barriers. We now get to the practical application of those barriers to stop different user groups communicating with Teams. Chats and VOIP calls are blocked, users are removed from team membership, and generally everything works as you'd expect. Introducing Teams to Information Barriers The first article in this series covered the preparatory work necessary to introduce Information Barriers into an Office 365 tenant. This article looks at how Teams implements Information Barriers and what you can expect to see when policies are in place to restrict user communications. I don’t intend repeating Microsoft’s instructions about how to configure Information Barriers. Instead, this article reports some practical notes on the process of implementing Information Barriers for Teams. Components to Block Teams Communications Teams uses several components in its Information Barrier implementation, including: Organization segments (common across all Office 365 workloads) to define sets of users. Information Barrier policies to define what sets of users can communicate with each other. Background processes to apply the settings in Information Barrier policies to personal chats, team memberships, meetings, and VOIP calls. In addition, the restrictions that could previously be applied by Teams clients to directory lookups using ABPs are now applied by Information Barriers. Scoping the Directory The first thing to do is to enable directory scoping for Teams (Figure 1). This step tells Teams to respect any restrictions set by filters to block users seeing specific parts of the tenant directory. Setting directory restrictions has some side-effects on Teams functionality. Figure 1: Scoping directory searches for Teams (image credit: Tony Redmond) Giving Permissions to Stop Chats Another prerequisite is to give permission to an app to stop chats between people barred by policy. The PowerShell... --- ### Sponsored: Physical Servers and Endpoints Require the Same Protection as VMs - Published: 2019-07-30 - Modified: 2024-11-19 - URL: https://petri.com/sponsored-physical-servers-and-endpoints-require-the-same-protection-as-vms/ - Categories: Backup & Storage - Tags: Backup, Recovery, Server, VM - Article Type: Overview The ability to easily restore critical data and applications always comes down to the level of priority organizations give to their backup and recovery architectures. The low-hanging fruit from a datacenter perspective is protecting virtual machines. This post is sponsored by Veeam, You can find a complimentary copy of their Conversational Ransomware Defense and Survival here. The ability to easily restore critical data and applications always comes down to the level of priority organizations give to their backup and recovery architectures. The low-hanging fruit from a datacenter perspective is protecting virtual machines. After all, that’s where most of the important data and information now reside so it makes sense to cast the widest net. At the same time, experts warn that it’s a mistake to overlook the importance of giving equal consideration to physical servers and endpoints. Traditional data centers commonly host applications running on Linux and Windows virtual machines with hypervisors from VMware or with Microsoft’s Hyper-V. More than a decade after VMs became the preferred infrastructure for pooling and managing workloads and for creating multitenant cloud instances, they are yet to put physical servers out to pasture as many had predicted. Physical servers are alive and well. Given their prevalence, it’s all too easy to prioritize the protection of virtual server infrastructure. But the ability to recover a physical server, which often run critical applications and data, is just as important. Even IT pros and managers who are acutely aware of the horde of physical servers spread throughout their organizations unwittingly relegate them with secondary status. Perhaps that’s because they are legacy systems slated for migration to a SaaS offering or carry less priority or risk because they’re on a single system. Reasons for... --- ### Microsoft Enhances its Data Governance Portfolio with BlueTalon Acquisition - Published: 2019-07-29 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-enhances-its-data-governance-portfolio-with-bluetalon-acquisition/ - Categories: Main - Tags: BlueTalon, data governance, Microsoft, News - Article Type: News Microsoft has acquired BlueTalon, a company that specializes in data governance. We all know the story that data is growing at an exponential rate and that companies are always trying to find new ways to manage the growth in the information they have collected. But one of the side effects of this growth in data is managing who has access to it and how it is governed. Microsoft has announced today that they have acquired BluetTalon, a company that specializes in data governance. BlueTalon's solution, and what they will be bringing to Azure, is a way to make it easier and safer to access data across the enterprise in a way that is highly governed and also aligns to compliance frameworks. Following the completion of the acquisition, BlueTalon will be joining the Azure Data governance group. With the acquisition, Microsoft says that BlueTalon will "enhance our ability to empower enterprises across industries to digitally transform while ensuring right use of data with centralized data governance at scale through Azure. " As usual, pricing was not disclosed for the acquisition. BlueTalon is based out of Redwood City, California and the company's employees will be joining the Microsoft org chart. --- ### Six Tips for Managing and Working with Large Media Files - Published: 2019-07-29 - Modified: 2024-09-04 - URL: https://petri.com/6-tips-for-managing-and-working-with-large-media-files/ - Categories: Windows 10 - Tags: cloud computing, File Server, Network Attached Storage, Windows 10, Windows Server - Article Type: Overview If your business needs to store and manage RAW image files generated by professional cameras, high-resolution videos, or other large media files, then local network storage and specialist software can help you improve productivity. But there’s no one-size-fits-all solution, so evaluate your needs and expectations carefully. If your business needs to store and manage RAW image files generated by professional cameras, high-resolution videos, or other large media files, then local network storage and specialist software can help you improve productivity. But there’s no one-size-fits-all solution, so evaluate your needs and expectations carefully. 1. Use Local Network Storage SharePoint Online and OneDrive for Business have a file size limit of 15GB, Dropbox 50GB, and Google Drive a massive 5TB. But depending on your workflow, it might not be convenient to pull or sync large files from the cloud to your device. Cost and speed are also factors. Furthermore, cloud storage management tools aren’t well suited to media management. Local file servers or network-attached storage (NAS) usually fit the workflow of professional photographers and creators who work with large media files best. And they provide more flexibility when choosing management software. If you are a Windows shop, Windows file servers provide the best compatibility because they share the same file system, NTFS, integrate with Windows Search so that you can quickly find files on network shares, and avoid compatibility issues with non-Windows operating systems. But Windows file servers, or NAS devices based on Windows Storage Server, cost more than NAS solutions using proprietary operating systems. NAS is popular for businesses that are price sensitive. Most NAS vendors use their own proprietary OS based on Linux, like Netgear’s ReadyNAS OS. While these OSes are usually more than capable, they don’t support NTFS and there’s no integration with... --- ### Windows 10 Your Phone Gets Notification Mirroring and Suddenly Becomes More Useful - Published: 2019-07-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-your-phone-gets-notification-mirroring-and-suddenly-becomes-more-useful/ - Categories: Windows 10 - Tags: Mobile, Windows 10, Your Phone - Article Type: News Microsoft adds notification mirroring between Your Phone and Android handsets. The Your Phone app first appeared in the Windows 10 October 2018 Update (version 1809), allowing users to send and receive SMS messages, and view a limited number of photos stored on Android 7. 0 or later handsets. Your Phone supports iPhone as well but to a much more limited extent. Handset and PC are paired by installing the Your Phone Companion app from the Google Play Store. Both devices must be connected to the same network and you must be signed in on PC and phone with the same Microsoft Account (MSA). When I first reviewed Your Phone on Petri last year, I felt it was a lackluster experience. It did what it said on the tin, and I guess for some, the ability to read and send SMS messages, and access photos is useful. But something was missing to spark my interest. Notification Synchronization A recent update adds Android notification mirroring, allowing you to view and dismiss notifications as they appear on your phone. Personally, I find this more useful than the ability to read and send SMS messages. Your Phone lets you dismiss individual notifications or clear them all in one go. You can disable notification mirroring globally, choose whether notification banners are displayed in the Action Center, and even pick which applications can mirror notifications with the app. This kind of granular configuration is important because notifications can be as distracting as they are useful. Windows 10 Your Phone Android notification... --- ### How to Secure Microsoft 365 with Purview Information Barriers > Office 365 Information Barriers allow organizations to erect logical firewalls between different user communities to ensure that regulatory and legal requirements are met. Teams and Exchange Online support Information Barrier policies. - Published: 2019-07-25 - Modified: 2024-09-05 - URL: https://petri.com/controlling-communications-office365-information-barriers-part-1/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Compliance, Exchange Online, Information Barriers, Office 365, Teams - Article Type: How To Office 365 Information Barriers allow organizations to erect logical firewalls between different user communities to ensure that regulatory and legal requirements are met. Teams and Exchange Online support Information Barrier policies, which replace Address Book Policies. Some work is necessary to get Information Barriers set up. We cover that work in this article and prepare the ground for deploying the policies to Teams. Another Microsoft 365 Compliance Feature Those working with Exchange are probably familiar with the concept of an ethical firewall, a barrier erected in software to stop defined sets of users communicating with each other. In the past, bespoke customizations like transport sinks were written for this purpose. Usually the firewalls were deployed by organizations operating in highly regulated industries. For instance, a bank might stop traders and brokers communicating. Since the advent of transport rules in Exchange 2007, the job is usually done by creating transport rules to stop groups communicating. Ethical firewalls continue in Exchange Online, but now we have other methods of communications, notably Teams. Announced in preview in April and now generally available, Information Barriers deliver the answer for Office 365 by preventing sets of users communicating through all Office 365 workloads. Figure 1 shows the Office 365 Information Barrier architecture (as presented at Ignite 2018) to control access across Exchange Online, SharePoint Online, Teams, and OneDrive for Business. Figure 1: Office 365 Information Barrier Architecture (image credit: Microsoft) This article explores the concepts behind Information Barriers and the steps needed to prepare for their introduction into an Office 365 tenant. The next article looks at the implementation of Information Barriers in Teams. Starting with Teams and Exchange Teams and Exchange Online are the first workload to support Information Barriers. For Exchange Online, Information Barriers replace Address Book Policies (ABPs), which restrict user access to the directory and have been... --- ### Internet Explorer Mode and Other Enterprise Features Now Available for Testing in Microsoft Edge Insider Preview - Published: 2019-07-24 - Modified: 2024-09-04 - URL: https://petri.com/internet-explorer-mode-and-other-enterprise-features-now-available-for-testing-in-microsoft-edge-insider-preview/ - Categories: Windows 10 - Tags: Chromium, Microsoft Edge, Windows 10 - Article Type: News Microsoft updates the Canary channel Edge Insider preview build with IE mode support. Announced back at its Build conference in May, Microsoft is adding a mode to the new version of Edge that will allow it to display websites designed to work with Internet Explorer (IE) 11. The idea is users can work with one browser to access both a modern web experience and legacy intranet sites that require IE. The new mode has made its way to the Canary branch for Edge Insiders and it lets you open a tab that renders the site using IE instead of the new Edge rendering engine, which is based on Chromium. The new mode will mean that enterprises don’t need to manage two different browsers. A blog post by the Microsoft Edge team dated July 16th reads: The team designed Internet Explorer mode to meet that need, with a goal of 100% compatibility with sites that work today in IE11, including full support for IE’s doc modes, as well as ActiveX controls, like Silverlight and Browser Helper Objects (BHOs). In addition, Internet Explorer mode appears visually like it’s just a part of the next Microsoft Edge, providing users with the latest UI features, like a smarter address bar and new tab page, and greater privacy controls for the modern web. Microsoft is aiming to replace the existing version of Edge that ships in current versions of Windows 10, which uses Microsoft’s own EdgeHTML rendering engine, with a new version that it has been testing since early 2019. Because much of the web is tested against... --- ### Slack Takes Aim at Teams Weaknesses > Slack's July 22 post reports some advances in their desktop client that seem to aim at reported weaknesses in the Teams desktop client. The best update is better protection against network outages. - Published: 2019-07-23 - Modified: 2024-09-04 - URL: https://petri.com/slack-aims-teams-weaknesses/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure RemoteApp, Offline mode, Slack, Teams - Article Type: Opinion Slack's July 22 post reports some advances in their desktop client that seem to aim at reported weaknesses in the Teams desktop client. The best update is better protection against network outages. The other claims of 50% less RAM, 33% faster startup, and 10x better call joining need validation in the real world. Let's Attack Teams Weaknesses Slack’s July 22 post entitled “Introducing a snappier, more efficient Slack desktop experience” introduces a range of new features that aim at some well-known weaknesses in Teams. It’s almost as if a group of Slack product managers put a list of Teams issues on a whiteboard and decided to make their client better in those areas. Given that Teams has surpassed Slack in terms of active user numbers and has announced a flood of new features recently, some response was needed Memory Use “Teams uses Electron as its development platform and consumes scads of memory. ” Check. According to a report on The Verge, Slack has rewritten the client to be “multi-workspace aware. ” Slack uses Electron too, but components have been rewritten in React to deliver a 50% decrease in memory usage. Although I am unsure if this makes a heap of difference to end users, there’s no doubt that Teams has been criticized for the extraordinary amount of memory it has been observed to use in the past. To be fair to the Teams developers, the current build running on my computer (1. 2. 00. 19812 64-bit) occupies just over 400 MB on a 16 GB system. And although that number can climb to 500 MB or more depending on user activities, especially on video calls when the memory consumed can go well past 700 MB, usage is not so bad on modern PCs (I've seen worse). By comparison, Outlook 2016 (Click to Run) occupies a relatively... --- ### Ensuring Disaster Recoverability for Your Legacy SQL Server 2008/R2 - Published: 2019-07-22 - Modified: 2024-09-04 - URL: https://petri.com/ensuring-dr-recoverability-for-your-legacy-sql-server-2008-r2/ - Categories: Backup & Storage, SQL Server - Tags: Backup, Disaster Recovery - Article Type: How To Protecting core infrastructure components like SQL Server is certainly one of the database professional first priorities. However, for those businesses still running SQL Server 2008/R2, that’s become a problem. Protecting core infrastructure components like SQL Server is certainly one of the database professional first priorities. However, for those businesses still running SQL Server 2008/R2, that’s become a problem. Microsoft’s last day of service for SQL Server 2008 and SQL Server 2008 R2 was July 9, 2019. That means there will no longer be any security updates for those releases. Any installed SQL Server 2008/R2 instances will continue to run but they're potentially open to new security vulnerabilities and Microsoft will no longer offer technical support for them. This applies to both SQL Server 2008 and SQL Server 2008 R2 – even though they released nearly two years apart. Essential SQL Server 2008/R2 DR Safeguards The end-of-service for SQL Server 2008/R2 has some important ramifications for both on-going operations and data protection. Now that support has ended it’s more important than ever to make sure your SQL Server deployments are protected. You absolutely need to immediately test your backup and disaster recovery (DR) plans to make certain that they both work. As there are no more security patches you especially need to make sure that you can restore an operational instance of your SQL Server 2008/R2 servers in the event that they are hit with a malware or ransomware attack. Keeping an offsite backup or replica of the server is vital in order to ensure that the backups and/or replicas cannot be corrupted by worms that can spread through the network. You also need to ensure that your antivirus (AV)... --- ### No Major New Features in Windows 10 19H2 But Enterprise Features and Performance Fixes Coming - Published: 2019-07-22 - Modified: 2024-09-04 - URL: https://petri.com/no-major-new-features-in-windows-10-19h2-but-enterprise-features-and-performance-fixes-coming/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 19H2, Windows Update - Article Type: News Windows 10 19H2, which is the second feature update of 2019 planned for Windows 10 in fall this year, will be delivered via servicing as a Cumulative Update for users running the Windows 10 May 2019 Update. As Brad Sams reported on Petri at the beginning of July, Windows 10 19H2, which is the second feature update of 2019 planned for Windows 10 in fall this year, will be delivered via servicing as a Cumulative Update for users running the Windows 10 May 2019 Update. Users on older versions of Windows 10 will receive version 19H2 as a full operating system upgrade, much like Microsoft has delivered all Windows 10 feature updates up to this point. Not only does this mark a significant change in the way Microsoft is delivering the next Windows 10 feature update but it will also come with just a few feature improvements and performance fixes. Additionally, new features will be disabled by default and enabled gradually for a subset of users. New Features in Windows 10 19H2 Microsoft released the second Insider preview of Windows 10 19H2 on July 15th, build 18362. 10005, to users on the Slow Ring. The first preview didn’t contain any new features, but this build has one new feature and three feature improvements, all of which are turned off by default. Third-party digital assistants will be able to voice activate above the lock screen. Key rotation enables secure rolling of recovery passwords on MDM managed Azure Active Directory (AAD) devices on-demand from MDM tools or every time a recovery password is used to unlock BitLocker protected drives. The idea is to prevent accidental recovery password disclosure when users manually unlock drives protected by BitLocker. There’s a... --- ### How to Create a Blog with Modern SharePoint News Pages - Published: 2019-07-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-blog-with-modern-sharepoint-news-pages/ - Categories: SharePoint, SharePoint Online - Tags: Modern SharePoint, Modern SharePoint News, SharePoint blog - Article Type: How To Looking to use SharePoint to create a blog? Here's how you can accomplish that with SharePoint. Do you remember the blog site template in SharePoint 2010? That's a long time ago right? The template offered companies an out-of-the-box template to allow employees to blog about interesting content. To be honest, I don't remember the template being used that often. Not long after the release of SharePoint 2013 the template was deprecated. Eventually, the blogging feature moved the user's profile within Delve. This is where the first release of modern SharePoint pages were introduced. Unfortunately, there was never any effort from Microsoft to improve the personal blog. One of the main issues was the absence of a feature to display the blog on a centralized home page. The whole blogging within SharePoint seemed to fade away. That said, the blog is making a bit of a revival. We still receive, on a regular basis, requests from customers to implement a blog within their SharePoint portals. This used to be a bit of a struggle but with the release of modern SharePoint news pages and page templates, we don't need a blog site template anymore. Follow me and let me show you how easy it is to create a blog within your SharePoint portal. Step 1: Create a site column We are going to create a blog post by using a modern SharePoint news page. The first step is the creation of a site column called: PageCategory. This column has three options: Blog News Page This will make more sense later on. Just do it! Apply... --- ### Microsoft's Revenue Climbs up Into the Cloud - Published: 2019-07-18 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-revenue-climbs-up-into-the-cloud/ - Categories: Main - Tags: Earnings, Microsoft, News - Article Type: News Microsoft has released its Q2, FY Q4 earnings today with 33.7 billion in revenue, Net Income of $12.4 billion, and an Operating Income of $12.4 billion. These figures bested last years results by 12%, 49%, and 20% respectively. Microsoft has released its Q2, FY Q4 earnings today with 33. 7 billion in revenue, Net Income of $13. 2 billion, and an Operating Income of $12. 4 billion. These figures bested last years results by 12%, 49%, and 20% respectively. For the quarter, commercial cloud represented $11 billion of the company's revenue which was their strongest quarter ever for this segment; this represents growth of 39% year-over-year. The company noted that its Intelligent Cloud segment, revenue grew 19% but we still don't have a direct comparison for Azure to AWS; Microsoft continues to hide its raw cloud revenue under various umbrellas. Other notable figures include Office Consumer products and cloud services revenue increased 6% and Office 365 Consumer subscribers increased to 34. 8 million. And for the commercial Office 365 seats, Microsoft said the volume grew 23%. LinkedIn revenue also continues to grow at a healthy rate during the quarter, it climbed 25% year-over-year. In the More Personal Computing segment, total revenue was up 6% with Surface Revenue of $1. 3 billion, gaming revenue of $2. 053 billion, and Windows OEM Pro revenue grew at 18%, outpacing the PC market. The non-Pro revenue dropped 8% with Microsoft citing that they continue to struggle in the low-end segment of the market. The company's gaming division did not fare as well for the quarter with revenue down 8%: hardware sales dropped 48% and software and services declined 3%. But, the company's Xbox Live monthly active users did pop up to 65 million, a growth of 14%. Overall,... --- ### SharePoint Online Smartens PDF handling with Adobe Document Cloud > The need to download PDF files to work with them has been a longstanding irritation for SharePoint Online users. Now Microsoft and Adobe have come up with a new file handler that sends PDFs to the Adobe Document Cloud. - Published: 2019-07-18 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-online-smartens-pdf-handling-adobe-document-cloud/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Adobe Document Cloud, PDF, SharePoint Online - Article Type: How To, News The need to download PDF files to work with them has been a longstanding irritation for SharePoint Online users. Now Microsoft and Adobe have come up with a new file handler that sends PDFs to the Adobe Document Cloud, where the files can be updated and sent back to SharePoint Online for storage. The changes look good in the standard file viewer too! Worth looking at... New File Handler Brings Office 365 and Adobe Closer One of the things about Office 365 is that it changes all the time. The volume of changes and the diversity of the changes makes it hard to keep up, and you run the risk that something small but important might slip through. Which brings me to the June 25 report about some work done between Microsoft and Adobe to make PDF files work better with SharePoint Online. In a nutshell, the problem is that PDF files need to be downloaded from SharePoint Online to the local workstation to work with them. Despite being able to work with PDF files in SharePoint on-premises libraries, the lack of support for the same functionality in SharePoint Online has been a source of frustration for users and tenant administrators alike. But if you install the new file handler for PDFs, splendidly called the Adobe Document Cloud PDF Experience for Office 365, things get much smoother. Working in the Adobe Document Cloud It seems like the magic is to redirect PDF handling to the Adobe Document Cloud. When you access a PDF stored in a SharePoint Online document library, the file handler enables the option to open the file in the Adobe Document Cloud (Figure 1). Figure 1: SharePoint Online offers to open a PDF in the Adobe Document Cloud (image credit: Tony Redmond) I was skeptical that this would make much difference and worried that it would slow... --- ### How to Create Puppet Bolt Tasks Part 2: Creating and Installing Tasks - Published: 2019-07-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-puppet-bolt-tasks-part-2-creating-and-installing-tasks/ - Categories: Cloud Computing - Tags: Automation, cloud computing, linux, Puppet, Puppet Bolt, Windows Server - Article Type: How To Here is how to create and run Puppet Bolt tasks. In How to Create Puppet Bolt Tasks Part 1: Understanding Modules and Tasks, I explained what Puppet Bolt tasks are and how they are related to modules. If you haven’t read that article, I suggest you do before following the instructions below. In addition, it’s worth reading the other articles in the series to understand how to work with Linux and Puppet Bolt: Puppet Bolt Agentless Automation for Linux and Windows Server How To Run Commands on Remote Windows Servers Using Puppet Bolt Use Puppet Bolt Tasks to Manage Windows Server Remote Management Using Puppet Bolt and Windows Subsystem for Linux Create a Puppet Module and Task Before creating a task, we need a module for it to live in. All that’s required is a directory for the module and a subfolder called tasks. In the example below, I’m creating a folder structure for a module called ‘petriusers’ in the default modules directory. The -p switch creates any parent directories of the tasks folder if they don’t already exist. Note that you should swap out /russell/ for the name of your home directory. mkdir -p /home/russell/. puppetlabs/bolt/modules/petriusers/tasks I’m going to use a PowerShell script for my task. I need to create the script and then move it to the tasks directory. I’m using vi to create a script file. vi is a text editor for Linux that is installed by default in most distributions. I’ll just copy the contents of a pre-existing script to the file and then save... --- ### Patch Tuesday July 2019 - Published: 2019-07-17 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-july-2019/ - Categories: Security, Windows Client OS - Tags: Office 365, Patch Tuesday, Security, Windows 10, Windows 7, Windows Server - Article Type: News This month sees Microsoft patch two zero-day vulnerabilities in Windows, an issue that may cause BitLocker to go into recovery mode, and the usual list of important and critical flaws for other products. This month sees Microsoft patch two zero-day vulnerabilities in Windows, an issue that may cause BitLocker to go into recovery mode, and the usual list of important and critical flaws for other products. Windows 10 and Windows Server 2016/2019 Out of this month’s two zero-days, only one affects Windows 10. A local elevation of privilege (EOP) vulnerability (CVE-2019-0880) in splwow64. exe could allow an attacker to elevate privileges on an affected system from low-integrity to medium-integrity. Microsoft says that this bug by itself doesn’t allow anyone who exploits it to run arbitrary code but in conjunction with another vulnerability, like a remote code execution (RCE) or other EOP flaw, it might be possible. There’s one critical RCE flaw (CVE-2019-1102) patched in the way the Windows Graphics Device Interface (GDI) handles objects in memory. It could let an attacker install programs or change data with full user rights. So, users configured with few user rights are at less risk than those with administrative privileges. The attack could manifest itself if a user visits a specially crafted website or opens an infected file. There are 13 important EOP and 11 RCE flaws patched as part of the cumulative update. Additionally, Microsoft patched 11 critical RCE flaws in Internet Explorer 11 and Microsoft Edge, including scripting engine and browser memory corruption vulnerabilities. There’s also a servicing stack update (SSU) for Windows 10 (KB4509096), which is also available for older versions of Windows. It fixes an issue with a Secure Boot feature update... --- ### Microsoft Provides Browser Guidance with Edge Enterprise Roadmap - Published: 2019-07-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-provides-browser-guidance-with-edge-enterprise-roadmap/ - Categories: Windows Client OS - Tags: Edge, enterprise, Microsoft, News - Article Type: News Microsoft has released a roadmap of features for its new Edge browser that enterprise customers can begin testing today. This week, Microsoft is in Las Vegas hosting its Inspire conference and even though it's a partner focused event, the company is sharing more details about its new Chromium-based Edge browser. Specifically, the company is talking in more detail about the features coming to the browser that are designed for enterprise customers. For companies that will be using the new version of Edge as their primary browser once it is generally available, Microsoft is stating that you can begin testing the new enterprise features today for a smoother deployment down the road. And to get started, you can find the resources and downloads (including offline installers), here. By default, the developer channel now has enterprise features enabled by default. Further, Microsoft is offering full support for deployment in pilot and production environments through its commercial support channels. Starting today, these are the features you can test in your environment: Internet Explorer mode for legacy-site Compatability Offline installers for Windows 10, 8/8. 1, 7, Server and Mac OS Sign in with AAD accounts Enterprise-grade PDF support More than 180 group policies for managing the browser Enterprise-class security with Conditional Access and Application Guard on Windows 10 Features that are rolling out and if not available today, will be available soon for testing: Integrated Microsoft Search Enterprise new tab page with access to Office 365 content Data sync across devices with compliant clouds And these are the features are in development but are not ready yet for testing: Microsoft Information Protection on Windows... --- ### Microsoft's Next AI Trick Will Help You Keep Your Promises - Published: 2019-07-16 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-next-ai-trick-will-help-you-keep-your-promises/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Office 365 - Article Type: News Microsoft is working on a new feature for its Office suite that will send you intelligent emails with reminders, action items, and briefing material. When it comes to a productivity suite, the basics not longer cut it. In comparison to a few years ago, building a word processor, presentation tool, and even database applications are much easier to construct which means Microsoft's Office 365 platform needs to find new ways to continuously add value to make sure it stays ahead of the curve. One of the ways that Microsoft has been pitching that Office 365 outperforms competitors like G Suite and other smaller services is through intelligence. Specifically, Microsoft argues that its AI can help you make better decisions and provide unique insights through intense data analysis and forecasting. Microsoft is working on a new feature for its commercial customers that will help them automatically stay updated on tasks they need to complete for co-workers, tasks co-workers need to complete for them, and actively suggest material and content prior to meetings so that the user is more informed ahead of a meeting. The feature works by using AI to scan emails and other forms of communication to detect action items and then catalog and remind you of them at the appropriate time. Microsoft has a Cortana feature that they have been testing with consumers called the 'Heads-up' email and while this feature is similar to that, the enterprise version is on steroids. This feature is currently part of Cortana for internal testers at Microsoft, according to people familiar with company plans, but when it is released to customers, it may not be under the... --- ### How to Back Up NAS to Azure Storage - Published: 2019-07-15 - Modified: 2024-09-04 - URL: https://petri.com/how-to-back-up-nas-to-azure-storage/ - Categories: Microsoft Azure - Tags: Azure, cloud computing, Network Attached Storage, storage - Article Type: How To If you have a network attached storage (NAS) device in your office, it’s important to make sure that you have at least one off-site copy of that data so that it can be restored in the event of a disaster or if files are accidentally deleted. If you have a network attached storage (NAS) device in your office, it’s important to make sure that you have at least one off-site copy of that data so that it can be restored in the event of a disaster or if files are accidentally deleted. If you have a Windows Server or Windows Storage Server-based NAS, you should look at using the MARS agent for Azure Recovery Services to back up your data. If your NAS runs an operating system other than Windows, then you should look at whether it has built in synchronization or backup support for Azure or another cloud service. Some NAS devices allow you to install apps, so you might find a third-party solution for backing up your NAS. Create an Azure Storage Account Before you can configure storage in the NAS device, you need to set up a storage account in Azure. If you don’t already have an Azure subscription, you can sign up here for a free trial. Log in to the Azure management portal. Under Azure services at the top of the portal window, click Storage accounts. On the Storage accounts page, click + Add. On the Create storage account page, select the Azure subscription that you want to use from the Subscription dropdown menu. How to Back Up NAS to Azure Storage (Image Credit: Russell Smith) In the Resource group box, use the dropdown menu to select an existing resource group, or click Create new... --- ### Microsoft Partner Benefits Intact for Now but Change is in the Air > Microsoft dug themselves out of a pit of pain last Friday when they reversed the decision to nix some popular partner benefit just before the Inspire conference in Las Vegas. - Published: 2019-07-15 - Modified: 2019-07-15 - URL: https://petri.com/change-coming-for-partner-benefits/ - Categories: Microsoft 365, Office - Tags: Benefits, Inspire, IUR, Partner - Article Type: Opinion Microsoft dug themselves out of a pit of pain last Friday when they reversed the decision to nix some popular partner benefit just before the Inspire conference in Las Vegas. However, the world is changing and the cloud is where the action is. Microsoft pays to deliver services from the cloud and that cost must be either absorbed internally or transmitted to partners. That simple fact makes it sure that difficult conversations await in the future. Undo That Change! And Quickly... This week Microsoft hosts Inspire, its major partner conference, in Las Vegas. Last week they seemed to be heading for a PR disaster with the decision to remove several benefits from partners. Vegas would have been an unhappy place for Microsoft executives forced to explain and justify the inexplicable. Hardly the kind of atmosphere prescribed to get partners all pumped up for a new year’s selling. Last Friday, Microsoft saved the day by hitting CRTL-Z to reverse the proposed changes. The decision is both pragmatic and welcome. Frank, honest, and blunt feedback from partners (including several rude words) about the prospect of losing access to internal use rights (IURs), support calls, and so on convinced Microsoft management to decide to nix the proposals and keep partner benefits intact. At least for now. The Cloud Makes a Difference But change is likely in the future. In the past, Microsoft could print software licenses for almost free (a matter of putting a sixteen-character alphanumeric code on glossy paper, complete with a nice hologram). The partner paid for the hardware, network, and ongoing operating costs. It was an easy and low-cost system for Microsoft to manage. In the cloud, things are different, and a more nuanced picture emerges. In an article on the topic, Mary-Jo Foley reported that one of her Microsoft contacts told her that about $200 million annually is consumed to deliver IURs to partners. I imagine that most of this cost comes from... --- ### Microsoft Backpedals, Returns Partners IUR Benefits - Published: 2019-07-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-backpedals-returns-partners-iur-benefits/ - Categories: Main - Tags: IUR, Microsoft, News, Partner - Article Type: News Microsoft is rolling back changes to its partner program and will keep IUR benefits...for now. Earlier this week, Microsoft announced changes to their partner program that the company said was because of increased cost for running applications in the cloud. To say that this created some unrest among its partner ecosystem would be an understatement and ahead of the company's partner conference next week, the company is rolling back the changes. Gavriella Schuster, in a post on the Partner Network blog, says that the company is rolling back the updates that were announced and will return IUR benefits to the partner program. She states: "Given your feedback, we have made the decision to roll back all planned changes related to internal use rights and competency timelines that were announced earlier this month. This means you will experience no material changes this coming fiscal year, and you will not be subject to reduced IUR licenses or increased costs related to those licenses next July as previously announced. " Considering that Microsoft's partner ecosystem is critical to the long-term and short-term success for Microsoft's sales, upsetting those resellers isn't exactly a smart business strategy. Yes, Microsoft would make a few extra bucks each month from the increased invoicing but it would come at the expense of its partner network looking at cost-effective solutions for non-critical parts of their organization. During the past week, I have been reaching out to partners for a longer post relating to the damage this change would be made and some vendors were already considering moving away from Dynamics 365, Office, and other products... --- ### Two Years Later, Microsoft Teams Has 13 Million Daily Active Users - Published: 2019-07-11 - Modified: 2024-09-04 - URL: https://petri.com/two-years-later-microsoft-teams-has-13-million-daily-active-users/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft's Teams application has more than 13 million daily active users and the company is pushing out new features in July and August. While it seems like it was only yesterday that Microsoft announced Teams, the communication tool is more than two years old. As part of the company's Inspire conference that is taking place next week, Microsoft is announcing that Teams has more than 13 million daily active users. This is the first time that Microsoft has provided any insight into how many people are using the tool each day. We had previously heard that Teams was used by hundreds-of-thousands of organizations but with 13 million daily users and 19 million weekly users, Teams is here to stay. To put Teams usage into perspective, earlier this year Slack announced that they had 10 million daily users and that company is valued at $17 billion. Meaning, Microsoft's Teams application, if it was a stand-alone business, should be worth somewhere around $20 billion. Along with the usage figures, Microsoft is rolling out new features this month including read receipts and Time Clock which allows you to clock in and out of shift work inside the application. Targeted communication, a feature that enables team owners to associate individual team members to their role, enabling people on the team to reach everyone in that role by @mentioning the role name in a post will start showing up in August. Seeing the growth of Teams, it shouldn't come as a big surprise that the company will be pushing the platform in FY2020 with an emphasis on the voice communication tools of the application. With more than 13... --- ### Microsoft's Azure LightHouse Aims to Delivery Simplicity - Published: 2019-07-11 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-azure-lighthouse-aims-to-delivery-simplicity/ - Categories: Microsoft Azure - Tags: Azure, Azure LightHouse - Article Type: News Microsoft is introducing a new Azure feature that will make it significantly easier for its partners to manage customers hardware across tenants. Next week, Microsoft is headed to Las Vegas where the company will host its largest partner conference of the year. Inspire is where Microsoft sets the agenda for the year ahead for its sales efforts and works directly with partners to help them align to go-forward strategy for the company's 2020 fiscal year. One of the key announcement's at the event this year is Azure Lighthouse, a single viewpoint to manage all their customers across Azure. The cross-tenant capabilities of Lighthouse will provide partners with increased management efficiency and better insight into all their customers without the needed to jump tenants. Available starting in July, this new feature reduces the complexity of automation across multiple tenants and reduces the overhead of patch and update management. For example, you can now monitor all of your customers VMs at once and can use a single API call to push updates without the need to cycle through multiple identities and tokens. Lighthouse is extensible as well, as Microsoft has enabled API integration with partner cloud management portals and third-party applications too. Additionally, service providers can seamlessly onboard new customers via public or private managed services offers on Azure marketplace or ARM templates Microsoft hopes that by providing this service at no additional cost, this will free up resources for their partners to create new solutions that help differentiate them from vanilla Azure services. But for partners, this is one more step into their playground where they were able to provide their own value... --- ### Linux Usage Surpasses Windows Server in Azure Cloud - Published: 2019-07-11 - Modified: 2024-09-04 - URL: https://petri.com/linux-usage-surpasses-windows-server-in-azure-cloud/ - Categories: Microsoft Azure - Tags: Azure, cloud computing, linux, Windows Server - Article Type: News If you are a Windows shop, Windows Server is still the best way to provide file and print, and granular management of Windows. It doesn’t seem so long ago when I remember reading that Linux accounted for about 40% of virtual machines (VM) installed in Microsoft Azure. Not long after, I tried to find where I’d read it, but couldn’t. It turns out Mary Jo Foley reported on ZDNet about a tweet on the Microsoft Developer UK account, dated October 31st 2017. In the autumn of 2018, Steven J. Vaughan of ZDNet interviewed Scott Guthrie, Microsoft's executive Vice President of the cloud and enterprise group, who revealed that around half of Azure VMs run Linux. And this week, Vaughan is reporting that Linux is now used on Azure more than Windows Server. This time, the information is gleaned from a post by Microsoft Linux kernel developer Sasha Levin in a request to join a Linux security list, which reads: To complicate your question further: the Linux usage on our cloud has surpassed Windows, as a by-product of that MSRC has started receiving security reports of issues with Linux code both from users and vendors. It's also the case that issues that are common for Windows and Linux (like those speculative hardware bugs) are shared with us via MSRC as well. Not too surprising, I hear you say. Linux is more flexible than Windows and can be configured for your precise needs to provide better performance and a small footprint. But that flexibility comes at a price because the learning curve is steep if you want to configure Linux beyond the basics... . --- ### Emailing Owners About Obsolete Office 365 Groups and Teams > In February, I published a script to report the activity in Office 365 Groups and Teams. It is natural that some of those groups will be obsolete, so here's another script to email the owners of those groups. - Published: 2019-07-11 - Modified: 2024-09-04 - URL: https://petri.com/emailing-owners-obsolete-office-365-groups-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Office 365 Groups, PowerShell, Teams - Article Type: How To In February, I published a script to report the activity in Office 365 Groups and Teams. It is natural that some of those groups will be obsolete, so here's another script to email the owners of those groups. I know the script works because I tested it against 200 groups, but it's rough and ready and deserves some TLC from people who really know PowerShell. Sending Email to Encourage Action In February, I wrote about a new version of the PowerShell script to generate a report about Office 365 Groups and Teams in a tenant. The inevitable comment came in that it’s all very well to have a report to tell you what groups and teams aren’t in active use, but it would be so much better to proactively contact the group owners to tell them that it’s time to consider if the group is worth keeping. If not, the group can be removed (and recovered if necessary within 30 days) or archived. Helping Group Owners Do the Right Thing Some tenants have thousands of groups. Even in the best-managed tenant, it’s likely that 10% to 15% of groups have become obsolete. The need for the group has passed, its members are occupied with new challenges, or the topic simply didn’t deserve a group in the first place. No one can get very excited about contacting the owners of hundreds of disused teams and groups to point out that they need to review their groups and take appropriate action, so some automation is needed. The report script generates a variable called $Report to store details of the Office 365 groups it processes. An example of the details for a sample group is: GroupName : Video Viewers ManagedBy : Tony Redmond ManagerSMTP : Tony. Redmond@redmondassociates. org Members : 4 ExternalGuests : 0 Description : People who like videos MailboxStatus : Group Inbox Not Recently Used LastConversation... --- ### Demystifying Azure App Services - Diagnostics and Telemetry - Published: 2019-07-10 - Modified: 2024-09-04 - URL: https://petri.com/demystifying-azure-app-services-diagnostics-and-telemetry/ - Categories: Microsoft Azure - Tags: App Services, Azure, Diagnostics - Article Type: Overview The built-in diagnostics for Azure App Services will not only help you track down problems and misconfigurations in your app, but also make sure you are following the best practices. In the last post, we looked at virtual machines for App Services, and we looked at the different approaches you can use to customize the machine, and thus your application environment. In this post, we are going to focus on the diagnostics and telemetry you can gather from an App Service. The information collected by Azure is useful when you need to troubleshoot problems with your application, but you also need telemetry and metrics to understand how your application behaves under normal conditions. Metrics with a side of AI If you’ve worked with Azure for any length of time, you’ll already know there are Azure services that can provide telemetry and metrics across a range of resource types. Azure App Insights, for example, is a wonderful source of information for applications running in any environment inside or outside of Azure and on devices from mobile phones to backend servers. Azure Monitor is another great tool for collecting data from various sources and firing alerts when abnormal results appear. Services like App Insights and Monitor are well covered in other articles and tutorials (see Monitor Your Website’s Availability with Azure Application Insights, for example), so I want to focus on some hidden gems inside the App Services resource itself. Diagnose and Solve Problems Inside every App Service is a section named “Diagnose and Solve Problems”. What makes this feature so valuable is that the section gives you more than just raw metrics and measurements. Yes, you can see the... --- ### What You Need to Know About the Edge - Published: 2019-07-10 - Modified: 2024-09-04 - URL: https://petri.com/what-you-need-to-know-about-the-edge/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, Cloud, cloud computing, hybrid cloud - Article Type: Overview We hear 'edge' a lot, from browsers to data centers but here is what you need to know about edge computing. If you haven’t been looking into recent internet developments you could easily wonder what edge computing is all about. No, edge computing isn’t a reference to Microsoft’s latest web browser. One of the more recent developments in hybrid cloud computing is the move of several high profile vendors like, Microsoft, VMware, and Amazon toward what they have called edge computing – sometimes called The Edge. Edge computing typically refers to deploying local computing resources near the boundary – or edge – of your organization’s internet connection. This edge deployment typically uses a hybrid cloud model that combines local compute resources with cloud-based services and data storage. The idea behind edge computing is that it can localize computing resources closer to their sources and provide local processing that can reduce latencies as well as the amount of data that must be moved to the cloud or a remote data center. In essence, edge computing provides lower latency and reduces data transmission costs. Today, edge computing is growing fastest around the Internet of Things (IoT) deployments. In this scenario, local IoT devices are collecting vast quantities of data that can later be moved to the cloud and analyzed and used for decision making information. However, moving all of that data to the cloud can be slow and costly making the cloud data transfer a bottleneck. Plus, analysis is only possible after the data has been transferred to the cloud. Edge computing can address these issues by performing initial processing on the data... --- ### Gen 2 Virtual Machines Now In Preview For Microsoft Azure - Published: 2019-07-09 - Modified: 2024-09-04 - URL: https://petri.com/gen-2-virtual-machines-now-in-preview-for-microsoft-azure/ - Categories: Microsoft Azure - Tags: Azure, cloud computing, Hyper-V, Virtualization, Windows Server - Article Type: News Generation 2 virtual machines (VMs) have been available in Hyper-V since Windows Server 2012 R2 and they provide several important features that weren’t supported by generation 1 VMs, some of which are now available in Azure VMs. Generation 2 virtual machines (VMs) have been available in Hyper-V since Windows Server 2012 R2 and they provide several important features that weren’t supported by generation 1 VMs, including SCSI disk interfaces, PXE boot using a standard network adapter, UEFI instead of a legacy BIOS, Secure Boot, support for virtual Trusted Platform Modules (vTPMs), disk sizes greater than 2TB, and more. Gen 2 Virtual Machines Pros and Cons While the public preview of Azure Confidential Computing, Microsoft’s implementation of trusted execution environments (TEEs), uses gen 2 VMs, this is the first time you can provision your own gen 2 VMs in Azure. Azure gen 2 virtual machines provide several advantages over their gen 1 counterparts, primarily a UEFI-based boot architecture, increased memory and OS disk size limits, Intel Software Guard Extensions (SGX), and virtual persistent memory (vPMEM). But there are also some caveats. The first is that gen 2 VMs are in preview and are not supported or recommended for use in production environments. Azure gen 2 VMs don’t support all the features provided by Windows Server Hyper-V gen 2 VMs. At least not yet. You don’t get the following features at the time of writing: Secure Boot Shielded VM vTPM Virtualization-Based Security (VBS) VDHX format Microsoft says that it will look to add features to Azure gen 2 VMs in the future based on customer feedback. Furthermore, there are some Azure features that you don’t get with gen 2 VMs at the moment: Azure Site Recovery VM... --- ### Health of Tech: Azure to Windows from ShiftHappens - Published: 2019-07-09 - Modified: 2022-03-11 - URL: https://petri.com/health-of-tech-azure-to-windows-from-shifthappens/ - Categories: Video - Tags: Health of Tech - Article Type: Opinion Last month, Paul, Mary Jo, and I were in Washington, D.C. where we recorded a second iteration Health of Tech at ShiftHappens. This series focuses on looking at technology and Microsoft as a whole to provide a ‘health’ of Microsoft. Last month, Paul, Mary Jo, and I were in Washington, D. C. where we recorded a second iteration Health of Tech at ShiftHappens. This series focuses on looking at technology and Microsoft as a whole to provide a ‘health’ of Microsoft. We covered everything from Xbox to Cloud to take a deep, and serious look, at how Microsoft has positioned itself in a world where its consumer services are not always the focus and its enterprise platforms are at the heart of everything they do. If you would like to see previous iterations of this series, you can find them here. --- ### Microsoft Shifts Sales Focus From Windows to Teams - Published: 2019-07-08 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-shifts-sales-focus-from-windows-to-teams/ - Categories: Microsoft Teams - Tags: Microsoft, News, Teams - Article Type: News Microsoft is making updates to its sales agenda for FY2020 and for the year ahead, Windows is out, Teams is in. With the end of Microsoft's fiscal year behind the company, the marching orders for the troops are starting to change. While we don't know the entire story yet, here's a small bit of insight about what you can expect from the sales team for the year ahead. Later this month, Microsoft will host its partner conference in Las Vegas where the company will brief its network of independent sales vendors about its strategy for the FY 2020. And for this new fiscal year, Windows is out, Teams is in, according to people familiar with the company's plans. This change is a bit surprising as Windows 7 and Office 2010 will soon reach their end of support window which means companies need to migrate now or be faced with increased cost for servicing or running insecure software. But at the same time, it is a big logical to conclude that if a company is not already in the process of, or well into the planning stages of migrations, the end of support window has not and likely will not, factor into their upgrade plans. What this means going forward is look for Microsoft to begin heavily pushing Teams and more specifically, the voice communication aspects of the platform. It was only a few weeks ago that the company announced that they pulled the plug on their internal PBX system in favor Teams; this was a communication to the world that Teams is ready to replace your entire phone system. Microsoft is... --- ### How to Disable Hyper-V Completely in Windows 10 - Published: 2019-07-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-disable-hyper-v-completely-in-windows-10/ - Categories: Windows 10 - Tags: Hyper-V, Windows 10 - Article Type: How To Hyper-V is an optional feature in Windows 10 that can be used to run virtual machines (VMs) and perform other virtualization duties, such as supporting Credential Guard and Windows Sandbox. Like all Windows 10 features, you can add or remove Hyper-V using Turn Windows features on or off in the Programs and Features applet of the legacy Control Panel, PowerShell or DISM. In this article, I will show you how to completely disable Hyper-V in Windows 10. Disable Hyper-V in Windows 10 (Windows feature) Hyper-V is an optional feature in Windows 10 that can be used to run virtual machines (VMs) and perform other virtualization duties, such as supporting Credential Guard and Windows Sandbox. Like all Windows 10 features, you can add or remove Hyper-V using Turn Windows features on or off in the Programs and Features applet of the legacy Control Panel, PowerShell or DISM. Enable-WindowsOptionalFeature -Online -FeatureName Microsoft-Hyper-V -All DISM /Online /Enable-Feature /All /FeatureName:Microsoft-Hyper-V Or remove it. Disable-WindowsOptionalFeature -Online -FeatureName Microsoft-Hyper-V-Hypervisor -All DISM /Online /Disable-Feature:Microsoft-Hyper-V   How to Disable Hyper-V in Windows 10 (Image Credit: Russell Smith) But sometimes running these commands, or removing Hyper-V via the Control Panel, isn’t enough to disable the hypervisor. In most cases, leaving Hyper-V in place isn't going to affect your system. But one scenario where Hyper-V must be removed is when running a type-2 hypervisor, like Oracle VirtualBox. As a type-1 hypervisor, Hyper-V blocks access to virtualization hardware for all other hypervisors. So, software like VirtualBox can’t run 64-bit guest VMs on your PC while Hyper-V is installed. Although you could run 32-bit VMs because VirtualBox uses software virtualization for 32-bit guests as opposed to the hardware virtualization technology it uses for 64-bit VMs. Check Hyper-V status using systeminfo. exe First, disable Hyper-V in the Control Panel; or using PowerShell or DISM. You might want to also disable other... --- ### Microsoft Decision on Internal Use Rights Doesn’t Inspire Partners > Microsoft's decision to make its partners pay commercial rates for software licenses might seem logical at first glance, but it's not helpful in a world where cloud technologies change so often. - Published: 2019-07-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-annoys-partners/ - Categories: Microsoft 365, Office - Tags: Internal Use Rights, Microsoft Inspire, Partners - Article Type: News, Opinion Microsoft's decision to make its partners pay commercial rates for software licenses might seem logical at first glance, but it's not helpful in a world where cloud technologies change so often. The problem I have is that anything that might prevent partners acquiring knowledge about Microsoft technologies is a bad thing for customers who depend on those partners. It should be interesting to see if any spirited debates happen at next week's Inspire conference. Microsoft Inspire takes place in Las Vegas next week. I won’t be there, and thankful for missing the heat of Vegas in July, but I kind of regret missing the big fight that’s sure to break out this week. Inspire is where Microsoft reveals its sales and marketing priorities with its partners to try and get everyone onto the same page. Some of the sessions are technical, but Inspire is not like Ignite (Orlando, next November), which is where Microsoft dives into the weeds of what might be coming next. Partners in Revolt? This year, the partners attending Inspire might consider the news Microsoft shared about internal use rights (IUR), which give partners the ability to use Microsoft software in their business. The number of IURs depend on the status of the partner (Silver, Gold, etc. ), and it’s a nice benefit that helps partners better understand and use Microsoft technology. For example, a partner specializing in Office 365 gains by seeing the changes introduced by Microsoft into Office 365 over time and how those changes affect users and business processes. They can use a mixture of Office 365 E3 and E5 licenses to observe the differences in functionality. Another example is where partners who want to support Microsoft’s desire to move customers to Microsoft 365 invest the time to skill up about Enterprise Mobility and Security, and so on. The knowledge gained in these activities can only help the customers of those partners. Microsoft Changes the IUR rules... --- ### What You Need to Know About Connecting 4K Monitors to Notebooks - Published: 2019-07-05 - Modified: 2024-09-04 - URL: https://petri.com/what-you-need-to-know-about-connecting-4k-monitors-to-notebooks/ - Categories: Hardware - Tags: Connectivity, Notebooks, Productivity - Article Type: Overview In this Ask the Admin, I look at what you need to know before connecting a high resolution 4K display to a notebook. I’m currently in the process of upgrading my notebook and external monitor that I use in my home office. After much deliberation, I decided that one 27-inch 4K monitor would best suit my needs. Without getting too much into the debate about whether a two-screen setup would be better, most of the work I do doesn’t require a second screen. Although I do edit video from time-to-time, which is a task that benefits from a second monitor. But I don’t do it often enough to justify the cost when I can use my notebook as a temporary second display. And most notebooks don’t support connecting two 4K monitors at 60Hz. More on that later. And briefly, before I look at the more technical details, why 27 inches and 4K? 4K because higher resolutions are easier on your eyes. And that’s important if you spend 6-8 hours a day sitting in front of a monitor. And 27 inches because it’s the smallest size where you can benefit from the extra screen real estate provided by 4K without scaling, or at least with very little scaling, and still be able to read text without squinting. Windows 10 has good support for high DPI displays, so I don’t have any issue with scaling, other than the loss of screen real estate. And 32 inches seemed over the top, especially considering that I have limited desk space and can’t sit miles away from the screen to see it all comfortably. My current setup uses... --- ### Email, Teams, and Expressing Reactions with Likes > Microsoft introduced support for like reactions in OWA in 2015. Teams also supports likes, but it also supports other reactions to messages from sad to angry. Knowing how to use these reactions is a social minefield. - Published: 2019-07-03 - Modified: 2024-11-19 - URL: https://petri.com/email-teams-expressing-reactions-with-likes/ - Categories: Microsoft 365, Microsoft Teams, Office, Outlook - Tags: Like, Office 365, Office 365 Groups, owa, Social reaction, Teams - Article Type: News, Opinion Microsoft introduced support for like reactions in OWA in 2015. Teams also supports likes, but it also supports other reactions to messages from sad to angry. Knowing how to use these reactions is a social minefield. On a serious notes, reactions are not currently stored in Teams compliance records in Exchange Online, which is a problem if people react to messages with likes. Likes and Me When Microsoft announced in 2015 that Outlook and OWA were to support likes, I wasn’t impressed, perhaps because I wasn’t much into the social side of communications. Thankfully, Microsoft’s original intention to bring likes to Outlook 2016 never materialized for email, despite the pleadings on User Voice for such a feature. Outlook 2016 does support likes for messages in Office 365 Groups conversations. Four years on, I’m still underwhelmed with likes in email and can’t recall the last time I marked a message with a like. The thumbs-up icon (Figure 1) is sadly underused by me. Figure 1: Liking a message in OWA (image credit: Tony Redmond) Teams and Likes Of course, OWA isn’t the only Office 365 application that seeks approval through likes. Teams has supported the ability to like personal chats and channel conversations since its launch. Indeed, the chatty and more informal nature of Teams lends itself to indicating approval of a message with a quick like. But now, Microsoft has introduced more choice in the emotions you can express in reacting to a message. Instead of just “like,” you can respond with “heart” (as in “I love this message”), “laugh”, “surprised”, “sad”, and (for people like me) “angry” (Figure 2). The new array of reactions is now available in all Teams clients. Figure 2: A range of emotions to react to a Teams message (image credit: Tony Redmond) The decision process to know... --- ### Demystifying Azure App Services Plan - Published: 2019-07-02 - Modified: 2024-09-04 - URL: https://petri.com/demystifying-azure-app-services-plan/ - Categories: Microsoft Azure - Tags: Azure, Azure App Service - Article Type: How To Are you curious about what an Azure App Service plan is, exactly? In this article we'll dive into the essence and capabilities of an App Service plan. In my last article we looked at some of the physical characteristics of an Azure App Service and saw how every app deploys into a scale unit. In this post, we’ll continue looking behind the scenes of how an App Service works and focus on some of the aspects of an App Service plan. Make a Plan When you create an App Service, you need to place the App Service into an App Service plan. The plan describes the virtual machine that will host your app service. Every plan tells you how much memory the machine will have, as well as the number of ACUs (Azure Compute Units) available. In the past, we would see the number of CPUs in each plan, but not every CPU is equal. Azure now uses ACUs to provide a better relative measurement of the processing power for a plan. It is important to understand that every App Service requires a plan. But, it is even more important to understand that every App Service plan can support multiple App Services. We rarely want to buy one physical server for each application we need to host, and App Service plans are no different. If you have, for example, three small services to host, you can place all the services into a single plan to save money. With today’s microservice oriented architectures it is important to control the density of your service deployments to make the best use of your money. You might use metrics to discover... --- ### Advanced Office 365 Message Encryption Includes Branded Communications and Revocation > Office 365 Message Encryption (OME) now offers an advanced set of features to Office 365 E5 tenants. You can have messages with specific branding delivered to different domains. Advanced OME also includes message revocation. - Published: 2019-07-02 - Modified: 2024-09-04 - URL: https://petri.com/advanced-ome-branding/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Office 365 Message Encryption, OME, Revocation, Rights management, Transport rule - Article Type: How To Office 365 Message Encryption (OME) now offers an advanced set of features to Office 365 E5 tenants. You can have messages with specific branding delivered to different domains. Advanced OME also includes message revocation. Branding is a feature that will appeal to a limited set of tenants, but it would be nice if revocation was available to a wider set of Office 365 tenants. Message Encryption for the Office 365 Masses Office 365 Message Encryption (OME) is the technology behind the ability of Exchange Online users to send encrypted messages sent to any recipient. Included in the Office 365 E3 and E5 plans (and equivalent education and government plans), OME is automatically enabled for tenants to allow people to use the Encrypt-Only feature supported by Outlook and OWA. Outlook mobile can read encrypted email inline but isn’t yet able to send encrypted messages. To support clients that don’t support encryption, OME also supports encryption through Exchange transport rules (aka mail flow rules). Advanced OME adds three features to the standard OME functionality: Branding, so that recipients in specific email domains see instructions (to access the messages) in custom templates. Message expiration, so that messages sent using custom branding expire after a set period. Revocation, the ability to withdraw an encrypted message sent to external recipients. Advanced OME is available in the Office 365 E5 plan and as part of the Office 365 Advanced Compliance add-on (SKU). Creating Branding Templates When you send an encrypted message from Office 365, the protected content is inside a “wrapper” and an RPMSG, or “restricted permission” attachment holds the encrypted content. The wrapper is a notification to the recipient to tell them how to access the protected content via the OME portal. Clients like OWA, Outlook, and Outlook mobile know to process these messages by stripping the wrapper and decrypting the enclosed content to display it like... --- ### Microsoft's Making Windows 10 Servicing Changes, Again - Published: 2019-07-01 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-windows-10-servicing-changes-again/ - Categories: Windows 10, Windows Client OS - Tags: News, Windows 10 - Article Type: News Microsoft is once again changing up how it will service Windows 10; while these updates are not as significant, they do move the cheese a little bit again. This may start to sound like a broken record but Microsoft is once again changing the way that it is servicing Windows 10. The company is finally starting to talk about Windows 10 19h2 and the company is looking to streamline the process for delivery. Unlike the previous servicing models that impacted the support life cycle of each release, Microsoft is going to ship 19h2 as a monthly update for anyone running the May 2019 update. If you are running an older version of Windows, this release will install like a previous feature update. By moving the 19h2 release to a more traditional patch-Tuesday style update, this should significantly reduce the impact on the user when they install this update. As for what new features are included in this release? Microsoft isn't saying yet. In fact, the company says that with this release "some Insiders may not see the new features right away as we are using a controlled feature rollout to gain better feedback on overall build quality ". Starting today, the company is pushing out builds to the slow ring of the Windows 10 Insider program. Microsoft says that they will talk closer to release about the new features coming with this update. With the update expected to be completed and available around the September/October time-frame, don't expect any significant changes to the platform as they have little time for testing and feedback. Seeing as 19h2 is a fall release, Microsoft will be supporting this iteration for 30 months... --- ### Everything You Need to Know about Microsoft Office 365 – June 2019 > Read about PowerApps, Teams, OneDrive, and more in this month's Office 365 news round-up. Goes best with a cool drink to escape the heat. - Published: 2019-07-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-microsoft-office-365-june-2019/ - Categories: Microsoft 365 - Tags: Flow, Microsoft Forms, Office 365, OneDrive, Powerapps, Teams - Article Type: News As Microsoft wraps up its 2019 fiscal year, the company made several significant announcements for Office 365 in the month of June. It is hot outside, and it is hot in this article. Lots of fun things this month in products that I actually use. PowerApps, Teams, OneDrive, and more. I am also not super snarky this month, probably because I liked most of the news, so you get a kinder, gentler article. Enjoy and remember to wear sunscreen if you are like me and melting when you go outside. PowerApps AI is awesome Power to the people! That is what this is all about. For a while now, Microsoft has had amazing Artificial Intelligence features in Azure. All you needed was some super nerdy coding skills to use them. Well, my good friends in Advanta (the PowerApps team is down the road from Redmond) said no more. They have launched a host of controls and features that leverage the AI of Azure with no code required. Business card scanner, object detector, form extractor, predictions, and sentiment are all in the first round. Check out the article that your’s truly wrote on PowerApps AI or watch how-to videos on the PowerApps Business Card Scanner or PowerApps Object Detector. This stuff seriously has me geeked out. Microsoft Business Application Summit On Demand Do you like free training? Do you like business solutions? Then do I have the link for you. All of the content from The Microsoft Business Application Summit is now available to watch for free. You can view content for Power BI, PowerApps, Flow, Excel, Common Data Service, Microsoft... --- ### Everything You Need to Know About SharePoint – June 2019 > SharePoint hub sites, performance tuning, "the shift", and more. Lots of good content this month and a small piece on where I see SharePoint heading. - Published: 2019-07-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-june-2019/ - Categories: SharePoint - Tags: Office 365, OneDrive, SharePoint, Teams - Article Type: News, Opinion What happened in June with SharePoint? A lot of reminders but also a little bit of a look towards the future. This month is a bit lite on the news. Why? Because everyone is out on summer vacation I assume. Lots of social media chatter but really it was either repost of old news or things we had previously discussed going live. Makes sense. They can't drill us with amazing features every day. So some keys things I enjoyed are covered like OneDrive group policies and then at the end, I give you some straight up unfounded ideas of where I think we are headed. SharePoint Hub Limit raised to 2000 Not an issue I thought I would ever run into but it is solved either way. You can now create up to 2,000 SharePoint Online Hub Sites. Wow! I thought the increase to 100 was a bunch, clearly, I was wrong. Either way, this feature is live so hopefully it helped you. Tune SharePoint Online Page Performance This wasn’t an announcement exactly, more of a reminder. As we continue to get more SharePoint Online content and features it is really easy to build pages that are slow. So keep this page from the document bookmarked, Tune SharePoint Online performance. It has core concepts like don’t display giant image files on the page to nerdy stuff like object cache and how to do some diagnostic work. Site usage getting updated Looks like some improvements to SharePoint Site Usage are starting to roll out. Site Visits and Unique Visitors will be improved along with a new “Popular Platforms” report will... --- ### Everything You Need to Know About Windows – June 2019 - Published: 2019-07-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-windows-june-2019/ - Categories: Windows Client OS - Tags: Cortana, Microsoft Edge, Security, Windows 10, Windows Server, Windows Subsystem for Linux, Windows Terminal - Article Type: News This month Microsoft releases Edge preview builds for older versions of Windows, an early preview version of Windows Terminal makes its way to the Microsoft Store, the Windows Subsystem for Linux 2 previews in Windows 10 Insider build 18917, and Microsoft patches NTLM relay attack vulnerabilities. This month Microsoft releases Edge preview builds for older versions of Windows, an early preview version of Windows Terminal makes its way to the Microsoft Store, the Windows Subsystem for Linux 2 previews in Windows 10 Insider build 18917, and Microsoft patches NTLM relay attack vulnerabilities. Edge Preview Build Now Available for Windows 7, Windows 8, and Windows 8. 1 This month Microsoft released Microsoft Edge preview builds on both the Dev and Canary channels for Windows 7, Windows 8, and Windows 8. 1. Previously preview builds had only been available for Windows 10 and macOS. Microsoft says that the experience and feature set is largely the same as found on Windows 10 and that support for Internet Explorer mode will also come to legacy versions of Windows at some point in the future. Delivering the next version of Microsoft Edge to all supported versions of Windows is part of our goal to improve the web browsing experience for our customers on every device, and to empower developers to build great experiences with less fragmentation. Microsoft Edge will have the same always up-to-date platform and the same developer tools on all supported versions of Windows and macOS. This will reduce developer pain on the web, while ensuring all Windows customers have the latest browsing options. You can get the latest Microsoft Edge preview builds on the Edge Insider site here. Microsoft Updates WebView2 SDK Microsoft announced on its Windows Blog a new update to the WebView2 SDK. If you are... --- ### Everything You Need to Know About Azure Infrastructure – June 2019 > Learn about all the announcements, news, and changes to Azure Infrastructure-as-a-Service (aaS) from June 2019. - Published: 2019-07-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-june-2019/ - Categories: Microsoft Azure - Tags: AAD, Adaptive Network Hardening, Application Firewall v2, Application Gateway v2, ASR, Azure, Azure AD, Azure Bastion, Azure Files, Azure Monitor, Azure Portal, Azure Site Recovery, Azure Virtual Machine, Blueprints, conditional access, Cost Management, Customer Lockbox, Deployment Manager, Disaster Recovery, DR, firewall, HC-Series, HPC, M365, Microsoft 365, Microsoft 365 Business, Middle East, Network Security Group, networking, NSG, Oracle, PCI-DSS, Premium Files, RDP, Security Center, Sentinel, Shared Image Gallery, SSH, SSL Gateway, storage, UAE, virtual machine, virtual machine scale sets, Virtual Network, VMSS, WAF_v2, WAG v2 - Article Type: Overview Each month Microsoft adds new features and updates existing products for Azure, here's the updates you need to know about for June. Welcome to the start of Summer, when kids are off school, the weather (allegedly) gets warmer, and Microsoft effectively shuts down for two months. I always struggled to come up with new articles to write at this time of year. As a blogger, I depended on new things appearing so I could try them out and write about them. But as Summer approaches, Microsoft goes into review mode, and then they disappear for the summer. It wasn’t until late August that things would start to happen again in the Azure world – right before the build-up to Microsoft Ignite. This year, the Summer drought could be long because Ignite is not until November. Smarter NSG Planning A lot of Azure customers get their first taste of the cloud in a migration process. They assess their machines, plan a migration, and get their machines up and running in Azure. One of the changes they will encounter is more granular network security. It’s amazing, especially after the plague of ransomware that we have witnessed, that most corporate server networks are pretty open once you get to the inside. In Azure, we are encouraged to lock things down more – think of small security zones where a server can only have limited communications with servers in other security zones. We implement this software-defined network security, at the most basic level, with network security groups (NSGs) – a simple policy that either allows or denies inbound or outbound traffic. Those customers migrating... --- ### Windows 10 May 2019 Update and Windows Server Version 1903 Available for Download - Published: 2019-07-01 - Modified: 2024-11-19 - URL: https://petri.com/windows-10-may-2019-update-and-windows-server-version-1903-available-for-download/ - Categories: Windows 10 - Tags: Windows 10 May 2019 Update, Windows Server version 1903 - Article Type: News Microsoft made the Windows 10 May 2019 Update and Windows Server version 1903 available for download May 21st. May 21st Microsoft made available for download the Windows 10 May 2019 Update and Windows Server version 1903. The update for Windows 10 had originally been scheduled for release in April but Microsoft decided to let it gestate longer in the Slow and Release Preview rings to iron out any last-minute bugs. While it’s too early to say how the roll out is going, last years’ fall and spring updates both had reliability issues during rollout. Microsoft even took the unprecedented step of pulling the October update and Windows Server 2019 because of a serious bug that was causing users to lose data during the upgrade process. Although this wasn’t the only issue. So, to restore faith in feature updates, Microsoft is treading more carefully this time around. Download the Windows 10 May 2019 Update Just like the previous couple of feature updates, machine learning is being used to adjust who gets the update, and when, to ensure a smooth ride for as many users as possible. As it stands, users on the Semi-Annual Channel (Targeted) will get the option to install the update right away if Windows Update doesn’t detect any blocking issues on the device. You just need to click Check for updates in Windows Update in the Settings app and then you can initiate the download and install it at your convenience. I only wish they’d include an option to automatically reboot the computer so that it would be possible just to start the process... --- ### Paul Thurrott's Short Takes: June 28 - Published: 2019-06-28 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-28/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because baby steps are still forward steps, this edition of Short Takes looks at Microsoft’s less-than-inclusive internal policies, a weird Windows Update prompt, more OneDrive, less Cortana, and much, much more. Because baby steps are still forward steps, this edition of Short Takes looks at Microsoft’s less-than-inclusive internal policies, a weird Windows Update prompt, more OneDrive, less Cortana, and much, much more. Internal Microsoft documents suggest the software giant hasn’t completely turned over a new leaf Under Satya Nadella, Microsoft is a different company that’s known more for inclusivity, accessibility, and partnering with former enemies than it is for its old “embrace and extend” ways of the past. And yet. Newly leaked Microsoft documents suggest that the software giant hasn’t completely given up on its terrible past, at least not internally. The firm actually prohibits its employs from using security software from Kaspersky, a company that has complained about Microsoft secretly making changes to Windows to screw it over. It mostly prohibits them from using Slack, the chat-based collaboration solution that dominates the market Microsoft is trying to undermine with Teams. It discourages the use of competing products and services like AWS, Google Docs, and others, and it actually prohibits employees from using Grammarly, a free spelling and grammar checking service that is about a million times better than Microsoft’s own offerings. But the weirdest, or maybe funniest, product/service on the list is GitHub, which Microsoft tells its employees should not be used for “Highly Confidential types of information, specs or code. ” Dear Microsoft, you own GitHub. Surely, there’s a way to work that one out. “The 10-inch Microsoft Surface Go just got a $60 price cut from Walmart”... --- ### Teams Gets Urgent Message Capability for Personal Chats > Microsoft is rolling out priority notifications for Teams, the ability for users to send urgent messages in chats so that the recipients get notified every two minutes until they respond. - Published: 2019-06-27 - Modified: 2024-09-04 - URL: https://petri.com/teams-priority-notifications/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Office 365, Priority notifications, Teams, Urgent messages - Article Type: News Microsoft is rolling out priority notifications for Teams, the ability for users to send urgent messages in chats so that the recipients get notified every two minutes until they respond. Office 365 tenants (except GCC) should see the new functionality in July. Tenants can control who gets to send urgent messages with messaging policies, and some user education would be good to help those allowed to send these messages understand when a message is truly urgent. On June 8, Microsoft issued Office 365 Message Center notification MC181804 to inform tenants about Teams priority notifications. The new feature (Office 365 Roadmap item 51448) allows users to mark a chat message as Urgent instead of Standard or Important. The feature is rolling out across Office 365 beginning in late June. Like all new software released inside Office 365, it takes time for Microsoft to complete the deployment to all tenants and the exact time when users see the feature depends on if a tenant is configured for Targeted or Standard release. Microsoft says that the update “does not impact Office 365 subscriptions in GCC at this time,” which is a polite way of saying that GCC tenants must wait longer before they can send urgent messages. Urgent Messages for Healthcare Marking messages as urgent and giving them different priority within the messaging system was discussed by Microsoft at Ignite 2018 as part of their Teams for Healthcare initiative. Indeed, the Teams for Healthcare documentation includes a discussion about secure messaging including an example where a hospital worker notifies a doctor to help triage a patient. It’s this kind of time-critical incidents that priority notifications are designed to support. Creating an Urgent Message To create an urgent message, open the Chat window, select the recipient, create a new message and click the exclamation icon to reveal the option to mark the message as urgent (Figure 1). Compose and send the message as normal... . --- ### Microsoft Releases Hyper-V Server 2019 - Published: 2019-06-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-hyper-v-server-2019/ - Categories: Windows Server - Tags: cloud computing, Hyper-V, Hyper-V Server 2019, Windows Server - Article Type: News Download Hyper-V Server 2019 now from Microsoft’s Evaluation Center website. Microsoft’s troubled Windows 10 October 2018 Update and Windows Server 2019 release last year saw an unprecedented withdrawal of both operating systems from Microsoft’s servers just days after the initial release because of a serious bug that was causing users to lose data. But while both the October 2018 Update for Windows 10 and Windows Server 2019 were both made publicly available again in November 2018, Hyper-V Server 2019, Microsoft’s free server SKU that includes only the Windows Server Hyper-V role, was still missing in action. That is until this past weekend when Microsoft finally announced in a post on the Windows Server Insiders forum and in an update to an old post on the Windows Server Blog that Hyper-V Server 2019 was now available on the Evaluation Center and for Visual Studio Subscription customers starting June 19. The blog reads: Updated on June 17, 2019: Microsoft Hyper-V Server 2019 is now available in the Evaluation Center. All previous issues related to the evaluation media have been resolved. According to ZDNet’s Mary Jo Foley, Microsoft published a brief note in April explaining that there were some issues with the evaluation media that still needed to be resolved: "As we were getting ready to publish Microsoft Hyper-V Server 2019 in the Evaluation Center, we found some issues with the media. We are actively working on resolving it. We will release it soon and provide an update here. This does not affect the Windows Server 2019 that is already available... --- ### Windows Terminal Preview Available in the Microsoft Store - Published: 2019-06-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-terminal-preview-available-in-the-microsoft-store/ - Categories: Windows 10 - Tags: Windows 10, Windows Terminal - Article Type: News An early preview version of Windows Terminal is now available to download from the Microsoft Store. At its annual Build conference in Seattle at the beginning of May this year, Microsoft announced Windows Terminal, a new console for Windows 10 that will eventually replace the legacy command-line and PowerShell consoles. Microsoft has reached the end of the road with the current console because while it has seen some minor improvements over the last couple of years, new features can’t be added without breaking backwards compatibility. So, Microsoft took the decision to start from scratch. The result of that work is Windows Terminal. There are several important features that differentiate Windows Terminal from the existing console: Multiple tabs GPU accelerated DirectWrite/DirectX-based text rendering Settings and configurability The early preview build of Windows Terminal that was released in the Microsoft Store on July 22nd requires Windows 10 version 18362. 0 or later, that’s the Windows 10 May 2019 Update, or Xbox One. Windows Terminal was previously available on GitHub right after Microsoft’s Build announcement, but it required you to compile the binaries into a working executable, something that only experienced developers with the right software were able to do. This new version is a simple installer for the rest of us. The Store description for Windows Terminal reads: This very early preview release includes many usability issues, most notably the lack of support for assistive technology. Much of the internal work to support this is complete and it’s our top priority to support assistive technology very soon. To follow progress please follow this issue on GitHub: https://github. com/microsoft/terminal/issues/634... --- ### Microsoft Looks to Diversify Chips in Upcoming Surface Products - Published: 2019-06-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-looks-to-diversify-chips-in-upcoming-surface-products/ - Categories: Hardware - Tags: ARM, Intel, Microsoft, Qualcomm, Surface - Article Type: News Microsoft is planning a hardware event for later this year where the company may announce new devices based on chips by companies other than Intel. Many years ago, when the Surface brand was just getting started, Microsoft was using Intel and ARM-based chips for its products. While the long-term winner was Intel, as they have been supplying the chips for all Surface devices for the past couple of years, that may change, starting this fall. This fall, it is expected that Microsoft will host an event with Surface at the focus. The company will announce updates to its products but the bigger changes may be under the hood, rather than physical appearance. In previous years, we had seen Microsoft make bets on upcoming Intel chips with Cherry Trail and Skylake. With Skylake, Microsoft got burned by the immaturity between Windows and the chips which resulted in faulty hardware and a serious black eye to the brand's high-quality reputation. Even though Microsoft and Intel have worked together for decades, insiders at Microsoft have described that the company's relationship with Intel as being on shaky ground. And when it comes to next-generation devices, look for the company to start to diversify away from a purely-Intel lineup. This means a move to testing the waters with AMD and an ARM chip; the company currently has prototype devices using these types of components. On the laptop side, Microsoft is experimenting with using an AMD Picasso SoC which is of the 12nm flavor for a variant of their Surface Laptop. On the Pro side, Microsoft currently has prototypes of a Surface Pro with a Snapdragon chip inside as... --- ### Planner Supports Export to Excel > Excel fans delight! You can now export task data for a Planner plan to Excel and slice and dice the task information to your heart's content. The new feature is likely to be popular with Office 365 users. - Published: 2019-06-25 - Modified: 2024-09-04 - URL: https://petri.com/planner-export-to-excel/ - Categories: Microsoft 365, Office - Tags: Excel, Office 365, Planner - Article Type: News Excel fans delight! You can now export task data for a Planner plan to Excel and slice and dice the task information to your heart's content. The new feature is likely to be popular with Office 365 users because it adds values and it makes sense to use Excel for this purpose, but another way of looking at it is that Planner is so poor at analysis and reporting that it needed external help. The truth probably lies in the middle. Export to Analyze, Print, and Share In a move to give Planner users more tools to analyze the tasks that make up plans, yesterday Microsoft announced support for export to Excel. The new option is in menu for a plan (Figure 1), but only in the Planner browser client. You can’t export to Excel from the mobile client or in the version of Planner integrated with Teams. Figure 1: Exporting tasks for a plan (image credit: Tony Redmond) Simple Planning Microsoft’s announcement emphasizes the simplicity of Planner and implicitly acknowledges that Planner will never have analysis tools. At least, not anytime soon. Microsoft says, “Export to Excel gives you a broad range of additional capabilities for keeping your plan on schedule and your plan’s stakeholders up to date. ” The statement about simplicity is true. Planner is a simple task management application. The problem is that Planner is probably too simple for its own good, which reflects the balancing act Microsoft has between To-Do at the low end, Planner in the middle, and Project at the top. Planner’s graphing abilities, for instance, are poor and haven’t been updated since early 2018. That’s not to say that the Planner developers haven’t been busy. In the last year or so, they added guest user support, delivered a new web part for SharePoint, linked Planner to Outlook, and enabled multiple plans for an Office 365 group (and Teams). Good work has been done, albeit slowly (when compared... --- ### When it Comes to Ransomware, Air Gaps Are The Best Defense - Published: 2019-06-24 - Modified: 2024-09-04 - URL: https://petri.com/when-it-comes-to-ransomware-air-gaps-are-the-best-defense/ - Categories: Backup & Storage, Ransomware - Tags: Backup, Disaster Recovery - Article Type: Overview Ransomware attacks are on the rise and as many cities have recently learned, if you don't have an air-gapped backup, you may not be protected. There’s no doubt that ransomware is a growing threat for all types of business today and there’s also serious concern that it will continue to get worse as these ransomware attacks are often successful. For many businesses, the cost of paying the ransom is less than the cost required for recovery and the accompanying downtime. Ransomware is a type of malware that typically blocks access to sensitive company data or files until a ransom is paid. Ransomware typically encrypts the victim's files which renders them inaccessible until the ransom is paid and the attacker delivers the key required to decrypt the files. Ransomware attacks are usually carried out using a Trojan that is disguised as a legitimate file that a user is tricked into downloading or opening when it arrives as an email attachment. In some cases, like the infamous WannaCry attack, it can also be accompanied by a worm which enables it to spread to other networked computers without any additional user interaction. The ransom is typically paid using bitcoin or other untraceable cryptocurrencies. However, while most successful ransomware attacks do wind up providing the decryption keys, there’s no guarantee the perpetrators will do so. Depending on the type of business, a ransomware attack can be crippling to the organization. For example, healthcare organizations and manufacturing firms are especially appealing targets as they are extremely sensitive to any downtime. A couple of recent notable victims of ransomware underscore the severity of ransomware today. This past June the city of... --- ### How to Create Puppet Bolt Tasks - Published: 2019-06-24 - Modified: 2024-09-05 - URL: https://petri.com/how-to-create-puppet-bolt-tasks-understanding-modules-and-tasks/ - Categories: Cloud Computing - Tags: Automation, cloud computing, linux, Puppet, Puppet Bolt, Windows Server - Article Type: How To Puppet Bolt tasks are scripts that you can run on Linux or Windows systems. A task contains a script, completely unmodified, written in any language supported by the remote system on which the task will run.   It’s been a couple of months since I wrote the last article in my series on using Puppet Bolt. If you didn’t catch the previous articles, check out Puppet Bolt Agentless Automation for Linux and Windows Server, How To Run Commands on Remote Windows Servers Using Puppet Bolt, Use Puppet Bolt Tasks to Manage Windows Server, and Remote Management Using Puppet Bolt and Windows Subsystem for Linux on Petri. What is a Puppet Bolt task? In Use Puppet Bolt Tasks to Manage Windows Server, I showed you how to run the built-in tasks to perform management tasks on Windows Server. But that is only going to take you so far. Puppet Bolt tasks are scripts that you can run on Linux or Windows systems. A task contains a script, completely unmodified, written in any language supported by the remote system on which the task will run. The only prerequisite is that tasks designed for *Nix-based systems must specify the path to the interpreter that will run the script. For example, if you want to run a Ruby script on Linux, the first line of the task starts with a shebang (#! ) followed by the path to the Ruby interpreter: #! /opt/puppetlabs/puppet/bin/ruby Tasks can accept arguments much like any script. Again, if you want to pass arguments, nothing changes in the script. It looks the same as if it were run natively on the target system. One difference might be that you can store metadata for a task in a... --- ### Paul Thurrott's Short Takes: June 21 - Published: 2019-06-21 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-21/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because Microsoft couldn’t communicate its way out of a paper bag, this edition of Short Takes looks at Microsoft’s latest market cap win, a tech consortium looking for a way out of trade tariffs, Microsoft’s latest partnership with the enemy, and so much more. How many goldfish must die? HOW MANY? ! ? Because Microsoft couldn’t communicate its way out of a paper bag, this edition of Short Takes looks at Microsoft’s latest market cap win, a tech consortium looking for a way out of trade tariffs, Microsoft’s latest partnership with the enemy, and so much more. Microsoft is again on top of the world It’s been a pretty amazing year for Microsoft. The onetime also ran in personal technology has surged to the become the world’s biggest corporation by market capitalization a few times in the past few months. And it’s done it again this week: Thanks to its stock hitting a 52-week high this week, Microsoft found itself worth $1. 05 trillion, ahead of Amazon ($946 billion), Apple ($920 billion), Google ($779 billion), and every other freaking company on earth. There are a number of things that are interesting about this latest milestone, the most obvious being that there are no major Microsoft announcements, product or otherwise, to explain the software giant’s surge. But after the terrible flatness, stock price-wise, of the Ballmer years, this has to feel good for those inside the Redmond bubble. More to the point, Microsoft is the only company noted here that I’d trust with this kind of market power anyway. “If You Can't Upgrade From Windows 7 to Windows 10, What Should You Do? ” Duck and cover. Microsoft asks U. S. government to be excluded from China tariffs Microsoft is among a group of... --- ### Demystifying Windows Update Complexity and How To Challenge Your MSP - Published: 2019-06-20 - Modified: 2019-06-20 - URL: https://petri.com/demystifying-windows-update-complexity-and-how-to-challenge-your-msp/ - Categories: Enterprise Dish, Podcasts - Tags: Enterprise Dish - Article Type: Opinion On this edition of the Enterprise Dish, we dive into demystifying the complexity of Windows update error messages, how to know if your MSP is on-top of all the changes they are pushing down to your environment, and a little bit about classic bikes. On this edition of the Enterprise Dish, we dive into demystifying the complexity of Windows update error messages, how to know if your MSP is on-top of all the changes they are pushing down to your environment, and a little bit about classic bikes. You can learn more about SmartDeploy on their website or find Aaron on Twitter, here. https://www. youtube. com/watch? v=eatev_kYhDc --- ### Adding a Default Photo to Azure Active Directory Guest User Accounts > You can add photos to Azure Active Directory guest accounts and have Office 365 apps display those photos. But it's a lot of work to track down suitable photos for individual guests. - Published: 2019-06-20 - Modified: 2024-09-04 - URL: https://petri.com/add-default-photo-azure-active-directory-guest-user-accounts/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Microsoft Teams, Office - Tags: accounts, Azure Active Directory, Get-AzureADUserThumbnailPhoto, guest users, Office 365, PowerShell, Set-AzureADUserThumbnailPhoto - Article Type: How To You can add photos to Azure Active Directory guest accounts and have Office 365 apps display those photos. But it's a lot of work to track down suitable photos for individual guests. If you want to change the default two-initial icon displayed by Office 365, you can use PowerShell to update all guest accounts with a photo. Here's how I handled the problem. Guest Accounts Deserve to be Highlighted Last year I wrote about how to add photos to the Azure Active Directory accounts created for guest users to make contributions from those users in apps like Teams more attractive. The article prompted a reader to ask if it was possible to set a default photo for guest accounts to use instead of the two-initial logo (for example, TR for Tony Redmond) that apps otherwise display. The answer is “yes” if you’re willing to use PowerShell and run the Set- AzureADUserThumbnailPhoto cmdlet to add a default photo to all guest accounts. Let’s see how it’s done. Visual Warning for Collaboration The idea is to create a visual clue for tenant users that a person they communicate with in apps like Office 365 Groups, Planner, and Teams is not part of the company. In effect, we want to highlight the need for our users to be careful when sharing information with guests in case something confidential leaks. Thinking About a Script In approaching the problem, it’s important not to overwrite photos that might already exist for guest accounts. If a photo has been uploaded for a guest account, it’s likely there for a good reason and we should leave it alone unless told otherwise. The outline for our code is clear. Find guest accounts in the tenant and check each to see if it already has a photo. If not, update the account with the default photo. Here’s the PowerShell script that... --- ### Microsoft Edge Now Available for Windows 7 and 8.1 - Published: 2019-06-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-edge-now-available-for-windows-7-and-8-1/ - Categories: Windows 10, Windows 7, Windows 8, Windows Client OS - Tags: Edge, Microsoft - Article Type: News Microsoft currently offers Edge in three flavors for Windows 10: Canary, Developer, and Beta. For now, you can only install the Canary flavor on older versions of Windows while Windows 10 does offer a Developer release; there is no Beta of Edge available at this time. Since the announcement that Microsoft Edge would be moving to the Chromium rendering engine, the company also stated that the browser would eventually make its way to older versions of Windows and also the Mac. Announced today, Microsoft Edge is now available in preview for Windows 7 and Windows 8/8. 1. You can grab the bits to install the browser from here and know that it is nearly feature identical to the version that is already available for Windows 10. This build is from Microsoft's Canary branch which means that it may be unstable and should not be used for production purposes. The Edge dev team notes that this build does not have dark mode enabled and there is no support for AAD sign-in. Microsoft currently offers Edge in three flavors for Windows 10: Canary, Developer, and Beta. For now, you can only install the Canary flavor on older versions of Windows while Windows 10 does offer a Developer release; there is no Beta of Edge available at this time. For corporate customers, it would be in your best interest to start testing this new version of Edge as it will eventually replace legacy Edge and eventually Internet Explorer. The sooner you are able to make your intranet sites and applications work correctly with this new version of Edge, the easier it will be to migrate in the future. --- ### Demystifying Azure App Services - Published: 2019-06-19 - Modified: 2024-09-04 - URL: https://petri.com/demystifying-azure-app-services/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Azure App Services - Article Type: Overview Understanding how Azure App Services works behind the curtain is important if you want to make the most of the App Service resources. Azure App Services is a platform for hosting web applications and services in the cloud. If your software listens for connections over HTTP/S, then App Services can be your host. App Services is a managed platform, so you don’t need to know a lot to get started. But, like everything in software, the more you know about a technology, the more effective you can be with the technology. In this first article of a series dedicated to learning more about App Services, we’ll be talking about the physical characteristics of App Services. I assume you already know some of the basics about App Services, so we will jump into more advanced topics. Every App Service in Azure requires an App Service plan. We will talk about plans in more detail in a future article, but you can think of a plan as the virtual server you’ve reserved inside of Azure to run your app. A plan can also reserve multiple servers, if your application is busy enough to require multiple instances. Because a plan reserves one or more servers, you need to specify an Azure region for each plan. The region could be South India, or West US 2, or any one of the 54 regions Azure currently makes available across the globe. Inside each Azure region is a data center with one or more App Service scale units inside. A scale unit is a cluster of servers dedicated to a specific role, like running App Services, or... --- ### Patch Tuesday – June 2019 - Published: 2019-06-19 - Modified: 2024-11-19 - URL: https://petri.com/patch-tuesday-june-2019/ - Categories: Security - Tags: Patch Tuesday, Security - Article Type: News This month Microsoft patches four zero-day flaws in Windows 10 and some Bluetooth security keys stop working. This month Microsoft patches four zero-day flaws in Windows 10 and some Bluetooth security keys stop working. Four Zero-Days Patched This month Microsoft issued fixes for four zero-day bugs in Windows. BearLPE (CVE-2019-1069) is a bug in the Task Scheduler component of Windows 10 and Windows Server that could allow an attacker to elevate privileges. SandboxEscape (CVE-2019-1053) is a Windows Shell elevation of privilege (EOP) bug that fails to validate folder shortcuts and could allow an attacker to elevate privileges by escaping a sandbox. CVE-2019-1064 was issued to prevent bypass of a previous EOP bug (CVE-2019-0841) in the AppX Deployment Service. Finally, InstallerBypass (CVE-2019-0973) is another EOP bug affecting Windows 10 and Windows 8, this time in the Windows Installer service when it fails to properly check input, which could allow an attacker to load an insecure library. SandboxEscaper, the security researcher that has been revealing tons of bugs in Windows of late, also published details on a fifth zero-day called ByeBear that affects Windows 10 and Server 2019. It is another method of exploiting the AppX Deployment Service patch that Microsoft is deploying this month. As fast as Microsoft patches this exploit, SandboxEscaper finds another way around it. If Microsoft deems it serious enough, we might see this new bug patched before next month’s Patch Tuesday. Windows 10, Windows Server 2016, and 2019 Aside from the four zero-days, Microsoft patched 11 remote code execution (RCE) bugs, three of which are rated critical. CVE-2019-0620 and CVE-2019-0722 are a... --- ### Microsoft's Azure Bastion Creates a Secure Connection to Off-Internet VMs - Published: 2019-06-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-azure-bastion-creates-a-secure-connection-to-off-internet-vms/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Bastion, Microsoft - Article Type: News Microsoft announced a new Azure service this week called Bastion which makes it significantly easier to securely and remotely connect to your non-connected VMs. The Internet will go down as one of humanity's best creations as a tool to distribute information at a wide scale in real time. While the platform has many benefits, not everyone wants to connect critical infrastructure component to it as there are also significant risks in exposing your components to the rest of the world. Microsoft announced a new Azure service this week called Bastion which makes it significantly easier to securely and remotely connect to your non-connected VMs. The service is a new and managed PaaS offering that provides seamless RDP and SSH connectivity to your virtual machines over the Secure Sockets Layer (SSL). The key here is that this connection can be made without exposing your IPs to the public Internet and instead, Azure Bastion provisions directly into your Azure Virtual Network; effectively securing the connection and keeping it private from outside eyes. This complex connection can be configured in two clicks, according to Microsoft, and mitigates the need to configure and manage network security policies. Even though this is a preview, here's a list of the key features included in this release: RDP and SSH from the Azure portal: Initiate RDP and SSH sessions directly in the Azure portal with a single-click seamless experience. Remote session over SSL and firewall traversal for RDP/SSH: HTML5 based web clients are automatically streamed to your local device providing the RDP/SSH session over SSL on port 443. This allows easy and securely traversal of corporate firewalls. No public IP required on Azure... --- ### Microsoft's Preparing New Keyboards with a Dedicated Office Key - Published: 2019-06-18 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-preparing-new-keyboards-with-a-dedicated-office-key/ - Categories: Microsoft 365, Office - Tags: Holgate, Keyboard, Office, Office 365 - Article Type: News Microsoft may soon release a new keyboard with a dedicated Office key with the devices internally codenamed Holgate. Microsoft's Office suite is a core part of the company's long term future. When Microsoft began pushing the productivity theme, all the way back starting with the Surface Pro 3, the company embraced the idea that its place in the market is as an enabler 'getting things done' on a computer or mobile device. With Office 365 growing at a healthy rate, the company is looking to push the productivity suite into the physical space. Microsoft is testing the idea of placing a physical key on a keyboard to enable Office shortcuts. As discovered by WalkingCat, likely called the Compass program, the Office key will enable new shortcuts like Office key + O,T,W,X,P,D,N, Y, and L. This likely corresponds to quickly launching Office apps like Outlook, Teams, Word, Excel, PowerPoint, Yammer, and other applications offered inside the Office 365 suite. According to people familiar with Microsoft's plans, the company has two keyboards in development, code-named Holgate Low and Holgate Mid. There is another device called Kili which may replace the Ergomax 4000 as well, but I'm not sure if that's related to the Office key project. For now, the Office key project appears to be targeting only desktop devices at this time. A survey related to the experience of using the Office key was also uncovered that asks if the user would like this key on laptops as well. Knowing this, I suspect that Holgate is a USB or Bluetooth peripheral that the company may release in the near future... --- ### The PowerShell Mess in the Microsoft Cloud > PowerShell is a great way of automating common administrative Office 365 operations. That is, if you know what module to use and how to use the cmdlets in that module. - Published: 2019-06-18 - Modified: 2024-09-04 - URL: https://petri.com/powershell-mess-microsoft-cloud/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Azure Active Directory, Exchange Online, Office 365, Office 365 Groups, PowerShell, SharePoint Online, Teams - Article Type: Opinion PowerShell is a great way of automating common administrative Office 365 operations. That is, if you know what module to use and how to use the cmdlets in that module. Unfortunately things are a bit of a mess with too many modules and inconsistent behavior in areas like error handling. With so many development groups working on Office 365, the PowerShell situation might be inevitable, but it needs cleaning up. Thirteen years after Exchange 2007 was the first enterprise Microsoft server to use PowerShell for administration and eight years after the launch of Office 365, PowerShell in the cloud is an incoherent mess. Recent innovations like the Azure Cloud Shell (now supporting Exchange Online) or the DIY Cloud Shell for SharePoint Online don’t help either. Instead, they just add to the confusion. So Many Modules Today, an Office 365 administrator who wants to automate different aspects using PowerShell might have to load the following modules: Exchange Online (includes Office 365 Groups). Security and Compliance Center. SharePoint Online. Teams Skype for Business Online (includes Teams policies). Azure Active Directory (V1 and V2). Azure Rights Management. These modules are updated on an arbitrary basis by different engineering groups. Throw in the need to support multi-factor authentication for some but not all modules and there’s enough complexity involved for MVP to literally lose what little hair he has left in his efforts to maintain his well-respected script to connect to the modules you need in a PowerShell session. Why Does This Mess Exist? Three basic reasons drive the collection of PowerShell modules within Office 365. Heritage, or how the module came to be available. Technology, or how the module is built, and Ownership, the development group responsible for the maintenance of a module. Heritage Some modules come from on-premises servers (Exchange, SharePoint, and Skype for Business Online). They’re not identical as many cmdlets are removed because they’re not needed in the... --- ### Tips, Tricks and Best Practices for Physical Server and Endpoint Backup - Published: 2019-06-17 - Modified: 2024-09-04 - URL: https://petri.com/tips-tricks-and-best-practices-for-physical-server-and-endpoint-backup/ - Categories: Main - Tags: webinar - Article Type: Overview Organizations have data in many different places that needs to be made available. Whether it is a physical server or a desktop, roaming laptop or a few other configurations – that data needs to be protected against everyday occurrences such as lapses in connectivity, hardware failures, file corruption — or even ransomware or theft. Organizations have data in many different places that needs to be made available. Whether it is a physical server or a desktop, roaming laptop or a few other configurations – that data needs to be protected against everyday occurrences such as lapses in connectivity, hardware failures, file corruption — or even ransomware or theft. Today, organizations should not struggle with getting data off-site or protecting endpoints. Join Rick Vanover in this webinar to showcase how the Veeam Agents for Windows and Linux can help organizations keep physical data available. Join this session to learn: What capabilities exist today for physical server and endpoint backup Off-site data backup and restore options Where to use different backup strategies Register here to attend the session. --- ### What You Need to Know About PowerShell 7 - Published: 2019-06-17 - Modified: 2024-09-04 - URL: https://petri.com/what-you-need-to-know-about-powershell-7/ - Categories: Cloud Computing - Tags: Automation, cloud computing, PowerShell, PowerShell 6.0, PowerShell 7.0, PowerShell Core - Article Type: Overview PowerShell 7 (PS7) is based on .NET Core 3.0 and Microsoft is aiming to provide much greater compatibility with Windows PowerShell modules, as much as 90 percent. For those of you that haven’t been keeping up with PowerShell developments over the last few years, Windows PowerShell 5. 1 was the last version of PowerShell released exclusively for Windows. And while still supported, it is in maintenance mode. Which means that there won’t be any new features, but Microsoft will still provide bug and security patches. Because Windows PowerShell is based on the full . NET Framework, it doesn’t provide cross-platform support. PowerShell Core 6. 0 was released in January 2018 and it is based on . NET Core, so it runs on Windows, Linux, and MacOS. It is open-source and it is designed for managing heterogeneous environments and the hybrid cloud. PowerShell Core 6 Compatibility So far, so good. But PowerShell Core 6 is based on . NET Core 2, so it doesn’t provide full compatibility with modules that were designed for Windows PowerShell, limiting how PS Core can be used. PowerShell Core and Windows PowerShell can be installed side-by-side but in an ideal world, you would use only one version. Microsoft claims that PowerShell Core has seen an increase in usage on Linux and MacOS but remained static on Windows systems. And that’s largely due to the lack of support for legacy modules. What You Need to Know About PowerShell 7 (Image Credit: Microsoft) Introducing PowerShell 7 PowerShell 7 (PS7) is based on . NET Core 3. 0 and Microsoft is aiming to provide much greater compatibility with Windows PowerShell modules, as much as 90 percent. This... --- ### The Upcoming Generational Shift and AI in the Apps - Published: 2019-06-14 - Modified: 2019-06-14 - URL: https://petri.com/the-upcoming-generational-shifts-and-ai-in-the-apps/ - Categories: SharePoint - Tags: Jeff Teper, SharePoint, ShiftHappens - Article Type: Overview At ShiftHappens, Mary Jo and Brad Sams sat down with Jeff Teper to talk millennials, AI, SharePoint, and a lot more. At ShiftHappens, Mary Jo and Brad Sams sat down with Jeff Teper to talk millennials, AI, SharePoint, and a lot more. https://www. youtube. com/watch? v=YBZYZx5DyfY   --- ### The Genesis of SharePoint - Published: 2019-06-14 - Modified: 2019-06-14 - URL: https://petri.com/the-genesis-of-sharepoint/ - Categories: Petri Dish, SharePoint - Tags: SharePoint, ShiftHappens - Article Type: Overview This week at ShiftHappens, Jeff Teper sat down with Paul Thurrott to talk updates, Microsoft 365, and the genesis of SharePoint. This week at ShiftHappens, Jeff Teper sat down with Paul Thurrott to talk updates, Microsoft 365, and the genesis of SharePoint. https://www. youtube. com/watch? v=4PNHczqGdi4 --- ### The Birth of AvePoint, The Challenges of a Startup - Published: 2019-06-14 - Modified: 2019-06-14 - URL: https://petri.com/the-birth-of-avepoint-the-challenges-of-a-startup/ - Categories: Main - Tags: AvePoint, ShiftHappens - Article Type: Overview At ShiftHappens this week, Brad Sams had the opportunity to sit down with the co-CEO of AvePoint, Tianyi Jiang, to talk about the birth of the company and the challenges his company has overcome during the past two decades. At ShiftHappens this week, Brad Sams had the opportunity to sit down with the co-CEO of AvePoint, Tianyi Jiang, to talk about the birth of the company and the challenges his company has overcome during the past two decades. https://www. youtube. com/watch? v=dOfcnBgNdh4 --- ### Inside the Trenches of Digital Transformation - Published: 2019-06-14 - Modified: 2019-06-14 - URL: https://petri.com/inside-the-trenches-of-digital-transformation/ - Categories: Main - Tags: Digital Transformation, ShiftHappens - Article Type: Overview At ShiftHappens this week, Brad Sams had the chance to sit down with Mario Carvajal, AvePoint's CTO, to talk about what's really happening in the world of digital transformation. At ShiftHappens this week, Brad Sams had the chance to sit down with Mario Carvajal, AvePoint's CTO, to talk about what's really happening in the world of digital transformation. You can find Mario on Twitter, here. https://www. youtube. com/watch? v=cMFehU9rMq0 --- ### Learning From Your Big SharePoint Mistakes - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/learning-from-your-big-sharepoint-mistakes/ - Categories: SharePoint - Tags: SharePoint, ShiftHappens - Article Type: Overview This week at ShiftHappens, it was a time of candid stories including how the Bank of Hawaii realized it had made a big SharePoint mistake and had it's back up against an end-of-support wall. This week at ShiftHappens, it was a time of candid stories including how the Bank of Hawaii realized it had made a big SharePoint mistake and had it's back up against an end-of-support wall. You can find Kevin on LinkedIn and you can learn more about AvePoint, here. https://www. youtube. com/watch? v=VhsA-8yu-0I --- ### A Little About PowerApps, a Lot About Flow - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/a-little-about-powerapps-a-lot-about-flow/ - Categories: PowerApps - Tags: Flow, Microsoft - Article Type: Overview At ShiftHappens, Brad Sams had a chance to sit down with Melissa Hubbard to talk Flow, PowerApps, and a lot more. At ShiftHappens, Brad Sams had a chance to sit down with Melissa Hubbard to talk Flow, PowerApps, and a lot more. You can find Melissa's blog, here. https://www. youtube. com/watch? v=vzDbUa1iHkM --- ### The Cloud Adoption Conversation That Is Going Around - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/the-cloud-adoption-conversation-that-is-going-around/ - Categories: Cloud Computing - Article Type: Opinion This week at ShiftHappens, Brad Sams had the chance to sit down with Xgility to learn more about what they are hearing in both the federal and corporate segments. This week at ShiftHappens, Brad Sams had the chance to sit down with Xgility to learn more about what they are hearing in both the federal and corporate segments. https://www. youtube. com/watch? v=6_PrDyb5ns0     --- ### The Differences Between Federal and Corporate Environments - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/the-differences-between-federal-and-corporate-environments/ - Categories: Main - Tags: Federal, ShiftHappens - Article Type: Overview At Shift Happens this week, Brad Sams had a chance to sit down with Gino Degregori from Bravo Consulting Group to talk about how Federal and Corporate environments are different. At Shift Happens this week, Brad Sams had a chance to sit down with Gino Degregori from Bravo Consulting Group to talk about how Federal and Corporate environments are different. https://www. youtube. com/watch? v=CI1RYcYQNSA --- ### A Simple Tip To Expedite the Teams Migration Process with Your Users - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/a-simple-tip-to-expedite-the-teams-migration-process-with-your-users/ - Categories: Microsoft Teams - Tags: Microsoft, migration, ShiftHappens, Teams - Article Type: Opinion With many companies starting to move to Teams, Matt Wade has a simple suggestion to expedite the user-adoption process. With many companies starting to move to Teams, Matt Wade has a simple suggestion to expedite the user-adoption process. You can find Matt on Twitter, here. https://www. youtube. com/watch? v=wyzNLOyuos0 --- ### Migrations Can be Complex but They Don't Have to be Challenging - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/migrations-can-be-complex-but-they-dont-have-to-be-challenging/ - Categories: Main - Tags: migration, ShiftHappens - Article Type: Opinion This week, we are at the ShiftHappens conference in Washington D.C and I had a chance to sit down with Stephen Dvoranchik who dives into the AvePoint ecosystem. This week, we are at the ShiftHappens conference in Washington D. C and I had a chance to sit down with Stephen Dvoranchik who dives into the AvePoint ecosystem. You can learn more about Ascendra, here. https://www. youtube. com/watch? v=33my0ixFDAo --- ### Getting Started with a Teams Migration - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/getting-started-with-a-teams-migration/ - Categories: Microsoft Teams - Tags: Microsoft Teams, migration, ShiftHappens - Article Type: Opinion At ShiftHappens this week, we had a chance to sit down with Pouneh Kaufman and Sara Bush about the steps you need to take to migrate to Teams. At ShiftHappens this week, we had a chance to sit down with Pouneh Kaufman and Sara Bush about the steps you need to take to migrate to Teams. You learn more at Successwithteams. com https://www. youtube. com/watch? v=eRaEGNTadOM --- ### The Art of Story Telling in Three Steps - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/the-art-of-story-telling-in-three-steps/ - Categories: Main - Tags: Microsoft, ShiftHappens, Story Telling - Article Type: Overview This week we are at ShiftHappens and Brad Sams had a chance to sit down with Miri Rodriguez to talk about how Microsoft approaches the art of storytelling. This week we are at ShiftHappens and Brad Sams had a chance to sit down with Miri Rodriguez to talk about how Microsoft approaches the art of storytelling. You can find Miri on Twitter, here. https://www. youtube. com/watch? v=Hu4aYrkcyOA --- ### Is Teams the Next Outlook? - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/is-teams-the-next-outlook/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, Office 365, Outlook, ShiftHappens, Teams - Article Type: Opinion Tony Redmond and Paul Thurrott discuss Teams momentum, Teams as the new Outlook, OneDrive, and hybrid computing at AvePoint's Shift Happens conference in Washington D.C. Tony Redmond and Paul Thurrott discuss Teams momentum, Teams as the new Outlook, OneDrive, and hybrid computing at AvePoint's Shift Happens conference in Washington D. C. https://www. youtube. com/watch? v=LEDQ2NhuWtI --- ### Digital Transformation: Beyond the Buzzwords - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/digital-transformation-beyond-the-buzzwords/ - Categories: Petri Dish - Tags: Petri Dish, ShiftHappens - Article Type: Overview Community Magnate Mary Jo Foley chats with Constellation Research chief Ray Wang about AI, the 'modern workplace,' surfing and more. Community Magnate Mary Jo Foley chats with Constellation Research chief Ray Wang about AI, the 'modern workplace,' surfing and more. https://www. youtube. com/watch? v=jGXuqGrM2Vw --- ### How Fast Could and Should Office 365 Grow - Published: 2019-06-13 - Modified: 2019-06-13 - URL: https://petri.com/how-fast-could-and-should-office-365-grow/ - Categories: Microsoft 365, Petri Dish - Tags: Office 365, Petri Dish - Article Type: Opinion In Washington, D.C, at Shift Happens, Mary Jo Foley and Tony Redmond sat down to talk about Office 365, Teams, SharePoint and what's next for Office 365. In Washington, D. C, at Shift Happens, Mary Jo Foley and Tony Redmond sat down to talk about Office 365, Teams, SharePoint and what's next for Office 365. https://www. youtube. com/watch? v=Agy5fwuAfRc --- ### MyAnalytics Focused on Outcomes not Raw Statistics > The new version of MyAnalytics is available to Office 365 E3 and E5 users and takes a different approach to the interpretation of data gathered about user work activities inside different apps. - Published: 2019-06-13 - Modified: 2024-09-04 - URL: https://petri.com/myanalytics-focused-outcomes-not-raw-statistics/ - Categories: Microsoft 365, Office - Tags: Exchange Online, MyAnalytics, Office 365 - Article Type: News The new version of MyAnalytics is available to Office 365 E3 and E5 users and takes a different approach to the interpretation of data gathered about user work activities inside different apps. Instead of telling you the raw counts of messages sent and read and other data, MyAnalytics gives insights to help people work smarter and achieve a better work-life balance. Understanding What I Do Inside Office 365 I’ve used MyAnalytics since Microsoft launched the app as an add-on to Delve in 2015. As someone interesting in exploring data, the notion of discovering how I interacted with systems is attractive. And at the time, MyAnalytics satisfied my need to know how many email messages I sent and received (and when), how I avoided the suffocation of too many meetings, and my total inability to focus past the arrival of a new message. MyAnalytics was part of Office 365 E5 or available as a separate add-on option. Now it’s available to E3 and E5 users. Since 2015, MyAnalytics lost relevance for me. Its focus on analysis of email and calendar data was satisfying, but especially since the preview of Teams in 2016 and its launch in March 2017, the data served up by MyAnalytics became less and less interesting because the transition of work to Teams wasn’t highlighted in any statistic generated by MyAnalytics. That, and the fact that MyAnalytics ignored the hours I spend working with Word, Excel, and PowerPoint meant that I hardly ever accessed its dashboard. Open to All In January, Microsoft promised that MyAnalytics would include signals generated by Teams, Skype for Business Online, and documents stored in SharePoint Online and OneDrive for Business libraries. I waited patiently for these signals to appear, but nothing much changed until MyAnalytics recently offered the chance to preview the new dashboard with “fresh insights on your work habits. ” The... --- ### Google Moves Toward the Hybrid Cloud - Published: 2019-06-12 - Modified: 2024-09-04 - URL: https://petri.com/google-moves-toward-the-hybrid-cloud/ - Categories: Amazon Web Services, Google Cloud Platform, Hybrid Cloud, Microsoft Azure - Tags: Azure, Cloud, hybrid cloud - Article Type: Overview Anthos is definitely about modernization. While it may take Google some time to gain enterprise traction I think this move clearly shows that seamless hybrid cloud and multi-cloud connectivity is the wave of the future. When you think of the hybrid cloud, Google is certainly not the first cloud provider to come to mind. If you’re in a Windows-centric infrastructure then Azure with its tight integration to Microsoft’s server products is most likely your first choice of hybrid cloud providers or if you have a substantial VMware investment then you might think of Amazon and their VMware Cloud on AWS offering. Google has largely been considered more of a consumer-oriented public cloud entity – focusing more on Gmail and Google Apps than enterprise applications. Google is definitely looking to change that with its latest move into the hybrid cloud space. Considering that Gartner has estimated that 72% of companies have currently adopted a hybrid cloud strategy it certainly makes sense that Google would want a bigger piece of the hybrid cloud market. Google Anthos Provides Hybrid and Multi-Cloud Management This past April 2019 at their Cloud Next conference, Google announced Anthos, their new hybrid and multi-cloud platform. Formerly, Google Cloud Services Platform, Anthos is mainly targeted toward open source customers that want to take advantage of the cloud’s scalability and geographic scope but don’t want to get locked in to a specific cloud vendor. To achieve that end, Anthos enables you to run your applications on existing on-premise infrastructure or in the public cloud. Google’s Anthos will run on Google Cloud Platform as well as other third-party clouds including AWS and Azure. Anthos is a single managed service that will let you manage and deploy... --- ### Moving SQL Databases to the Cloud with the Data Migration Assistant - Published: 2019-06-12 - Modified: 2024-09-04 - URL: https://petri.com/moving-sql-databases-to-the-cloud-with-the-data-migration-assistant/ - Categories: Cloud Computing, Microsoft Azure, SQL Server - Tags: Azure, Data Migration Assistant, Microsoft - Article Type: How To If you are moving SQL database instances into Azure, you'll want to look at the updated Database Migration Assistant from Microsoft. The assistant can move your data, and give you an assessment of potential issues. Microsoft offers several applications and services to help you move your on-premises SQL databases into Azure. In this article, we’ll take a closer look at one particular tool – the Microsoft Data Migration Assistant (currently at version 4. 3). The assistant is a free tool you can download and install locally. Once installed, you can use the tool to find any compatibility issues that might create problems when you move your local database into an Azure SQL instance. Once you’ve finished an assessment, you can use the tool to migrate both the database schema and the data to the target database. The Assessment The first step to take with the assistant is to create an assessment project. For the assessment, you’ll point the assistant at an existing database, and select a target database type. The assistant will let you target SQL Server versions 2012, 2014, 2016, and 2017 (both Windows and Linux), as well as Azure SQL instances and Azure managed instances. Once the assistant connects to your local database, the tool will begin an assessment and discover problems that might impact your migrations. Starting an assessment project Currently, the tool supports two types of assessment reports. The first type of report is the feature parity report. Keep in mind, for this report the tool is looking at what features exist in a database, which is a superset of the features your applications might need. For example, if you have SQL Server Service Broker enabled... --- ### How to Install Windows Software Using Chocolatey - Published: 2019-06-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-windows-software-using-chocolatey/ - Categories: Windows 10 - Tags: Chocolatey, Package Management, Software, Windows 10 - Article Type: How To In today’s Ask the Admin, I’ll show you how to install Windows software in bulk using package manager Chocolatey. If your organization doesn’t have a system for automatically installing software, like Microsoft System Center Configuration Manager (SCCM) or Intune; or use images that have all the required software pre-installed (fat images), then the next best way to install software quickly is to use a package manager. Even if you have just a handful of programs to install, package managers can save a lot of manual downloading and clicking through vendor websites. The most popular package manager for installing consumer software on Windows is Chocolatey. It has a large repository of software and many packages are approved by vendors. Even though Chocolatey probably has the best repository of Windows software, there are some common apps that you won’t be able to install. Linux package managers, like apt-get, have more coverage for common software. But even on Linux, some vendors don’t make software available to install via a package manager. Nevertheless, I recently reinstalled Windows on one of my PCs and was surprised to find how much was available to download from the Chocolatey online repository. If you want to use Chocolatey on a regular basis, you can create your own repository and packages. But in this article, I’ll refer only to the online public repository. How to Install Chocolatey in Windows First, you need to install Chocolatey on Windows. It’s easy but you will need local administrator rights. Type powershell in the search box on the Windows 10 taskbar, right-click Windows PowerShell in the search results and then... --- ### Finding the Identifier for Azure or Office 365 Tenants > After seeing a tweet about a site that could return the tenant identifier for any Azure or Office 365 tenant, I was a tad suspicious. After all, this data should be private - or so you'd think. - Published: 2019-06-11 - Modified: 2024-09-04 - URL: https://petri.com/finding-identifier-azure-office-365-tenants/ - Categories: Microsoft 365, Office - Tags: Azure, Office 365, Tenant Identifier - Article Type: News, Opinion After seeing a tweet about a site that could return the tenant identifier for any Azure or Office 365 tenant, I was a tad suspicious. After all, this data should be private - or so you'd think. In fact, the WhatIsMyTenantId.com site simply takes records available to enable OAuth 2.0 sign-ins and extracts the tenant identifier from their content. It's an easy way to get hold of tenant identifiers. Revealing All About a Tenant Identifier I must admit of being suspicious when I first heard about the https://www. whatismytenantid. com site. The site does one thing, and that’s to return the tenant identifier of an Azure or Office 365 tenant. The tenant identifier is a GUID (like 72f988bf-86f1-41af-91ab-2d7cd011db47) to mark the data belonging to a company within Microsoft’s cloud platforms. On the surface, it seems like a tenant identifier is a private piece of information that shouldn’t be easily accessible within the internet, but it is. In the case of WhatIsMyTenantId. com, simply input the domain name for a company and the site will spit out the tenant identifier if one exists. You’re not limited to your own company. The site is quite happy to tell you the identifier for any company it can find, like Microsoft. com as shown in Figure 1. Figure 1: Finding the tenant identifier for Microsoft. com (image credit: Tony Redmond) First Impressions Were Bad The first time I thought about this, I thought that it was bad that a site could reveal the identifier for any Office 365 or Azure tenant. The reaction is understandable because you’d imagine this data to be private and only accessible to those who need to know. But when you look under the covers, a different situation emerges. An interesting discussion in the Microsoft technical community reveals that OAuth 2. 0 is the reason why Microsoft publishes tenant identifiers. We learn that “OpenID Connect is a simple identity... --- ### How to Factory Reset Windows 10 > In this article, I'll show you how to factory reset Windows 10, without needing to find installation media, using the ‘Reset this PC’ feature in the Settings app. - Published: 2019-06-10 - Modified: 2024-09-04 - URL: https://petri.com/how-to-factory-reset-windows-10/ - Categories: Windows 10 - Tags: Backup, Backup and Restore, Reset this PC, Windows 10 - Article Type: How To Looking to reinstall Windows 10 quickly and easily using the ‘Reset this PC’ feature? This is how you can do that. Windows a reliable operating system and in general there shouldn’t be a need to factory reset Windows 10. But sometimes when all troubleshooting options have been exhausted, or if you just want a clean start, resetting Windows 10 is the best way forward. In this article, I'll show you how to factory reset Windows 10, without needing to find installation media, using the ‘Reset this PC’ feature in the Settings app. How to factory reset Windows 10 Windows 10 combines the ‘Reset this PC’ and ‘Refresh this PC’ features into one simple tool called ‘Reset this PC’. The Refresh tool from Windows 8 allowed users to keep their files and personalization settings. But to make things easier for users in Windows 10, Microsoft has enabled the ability for users to keep their personal files as part of Reset. Additionally, you can choose whether to include software that was installed on the PC out-of-the-box. You have two options to choose from when using the Reset this PC tool: Reset your PC - reinstall Windows but delete your files, settings, and apps - excluding apps that came with your PC. Refresh your PC - reinstall Windows and keep personal files and settings. This option also keeps apps that came with your PC and apps installed from the Microsoft Store. A third option, Restore your PC, can be used to undo recent system changes. It is accessed in the System Restore applet in the Control Panel. How does ‘Reset this PC’ work? ‘Reset... --- ### Microsoft's Goal to Democratize AI Reaches the Power Platform - Published: 2019-06-10 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-goal-to-democratize-ai-reaches-the-power-platform/ - Categories: PowerApps, PowerBI - Tags: Microsoft, Power Platforn, PowerBi - Article Type: News This week, Microsoft is in Atlanta where the company is hosting its Business Application Summit. At the event, the company is announcing three significant updates to its Power Platform that will give users new tools and more advanced features. This week, Microsoft is in Atlanta where the company is hosting its Business Application Summit. At the event, the company is announcing three significant updates to its Power Platform that will give users new tools and more advanced features. Announced today, Microsoft is pulling back the curtains on AI Building and PowerApps Portal, updated AI capabilities for PowerBI, and enhanced cognitive/AI capabilities in Microsoft Flow. Microsoft is bringing AI to its Power Platform in a much more user-friendly way. With the new AI Builder tool, you will be able to leverage Microsoft's AI capabilities with PowerApps and Flow without the need to inject customized code or leveraging an outside framework. This plays right into Microsoft's narrative of trying to democratize AI and ML. Both of these technologies previously required years of coding experience to properly utilize the technology in your application or at your company but Microsoft has found a way to enable customers to use the tools without needing to write their own custom applications. On the Power Bi side of things, Microsoft is introducing new AI capabilities as well as refreshing the look of the application. Power BI's new UI is more closely aligned to other Office 365 applications; these are some of the new capabilities coming to the platform. Text and image analytics in Power BI powered by Azure Cognitive Services, and the ability to invoke Azure ML models are both now generally available. Microsoft has announced two new AI visuals—Distribution Changes analyzes what makes a distribution... --- ### PowerApps Enhanced with Artificial Intelligence Gain New Capabilities > PowerApps is at it again. This time adding the power of Azure AI to components that you and I can use. No developers required. - Published: 2019-06-10 - Modified: 2024-09-04 - URL: https://petri.com/powerapps-enhanced-with-artificial-intelligence-gain-new-capabilities/ - Categories: Microsoft 365 - Tags: Powerapps - Article Type: News Microsoft has announced a new set of features for Power Apps, here's what you need to know from today's Business Application Summit. Have you ever wanted to extract information from business cards in one of your apps with a photo? My customers have. Have you ever wanted to extra information from paper forms with a quick picture? My customers have. Have you ever wanted to count objects, aka take inventory, by taking a picture? My customers have. Well, folks if you found yourself saying yes to those questions it is the best day ever! During the keynote today at Microsoft Business Application Summit (MBAS) they announced all of this and more. For a while, now Azure cognitive services and other components have had a lot of these capabilities available but it too a pro developer and a lot of work to leverage many of them. The idea of sending your images to an API, waiting on it to process that image, and then getting the results back in JSON was just tough if you weren’t a coder. And that was just for something simple like a business card. The really cool kids wanted to extract information from forms or count the number of objects in the picture. This is the type of stuff that our brains just do automatically but required the training of AI models to leverage in a compute scenario. The PowerApps team decided that was too hard. So they turned it into functionality available right inside the PowerApps studio. Scanning business cards This functionality just works. You add the control Business Card Reader to your app and you are... --- ### What’s New in the Windows 10 May 2019 Update - Published: 2019-06-07 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-the-windows-10-may-2019-update/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 May 2019 Update - Article Type: Overview These are the most important new features in the Windows 10 May 2019 Update that you need to know about. Last week Microsoft made the Windows 10 May 2019 Update available on Windows Update. The feature update was originally due to ship in April but because of the poor track record, Microsoft decided to let it bake a little longer in the Slow and Release Preview Windows Insider rings. It was also rolled out internally at Microsoft. Both 2018’s fall and spring updates had reliability issues and Microsoft even took the unprecedented step of pulling the October update and Windows Server 2019 because of a critical bug that caused users to lose data. Devices on the Semi-Annual Channel (Targeted), which is the default deployment branch, will get the option to install the update right away if Windows Update doesn’t detect any blocking issues. You can initiate the download in Windows Update at your convenience. Alternatively, the update is available as an ISO using the Media Creation Tool or you can install it using the Windows 10 Update Assistant. Both tools are available from Microsoft’s website here. New Features and Changes in the Windows 10 May 2019 Update The Windows 10 May 2019 Update is a relatively minor update and there’s probably nothing standout that you desperately need to have. Nevertheless, most of the changes are welcome and it’s probably a good thing at this point that Microsoft isn’t adding new features too quickly. There’s still a lot of refinement required in the UI, like moving legacy Control Panel settings to the Settings app, and other tweaks that would... --- ### What is the Windows Terminal? - Published: 2019-06-06 - Modified: 2024-09-04 - URL: https://petri.com/what-is-the-windows-terminal/ - Categories: Windows 10 - Tags: cloud computing, DevOps, Windows 10, Windows Subsystem for Linux, Windows Terminal - Article Type: Overview In today’s Ask the Admin, I explain how Microsoft’s new terminal software for Windows 10 improves on the existing console. Announced at its annual Build conference in Seattle at the beginning of May, Windows Terminal will replace the console that’s currently built-in to Windows 10. Microsoft has reached the end of the road with the current console because while it has seen some minor but welcome improvements over the last couple of years, Microsoft can’t add the features it would like without breaking backwards compatibility. So, the decision was taken to start from scratch and develop a new terminal. Why is the Console/Terminal Important? One word: developers. There are many reasons why organizations choose Linux over Windows for developing applications. And Microsoft recognizes this. Where Windows might have once been the dominant application platform in the enterprise, distributed cloud apps have changed the way systems are designed, developed, and maintained. Linux provides a lightweight and flexible alternative to Windows that is attractive for cloud-born apps. The new Windows Terminal for Windows 10 (Image Credit: Microsoft) In a 2016 survey, OS X topped the list of operating systems used for development, followed by Windows, and then Linux. And there are reasons why developers might choose macOS over Windows, like access to a true Unix shell and the ability to virtualize Linux and Windows. But Microsoft is trying to keep developers on side and to do that, it needs to make Windows a first-class citizen in the development arena. To that end, Microsoft released the Windows Subsystem for Linux (WSL) in Windows 10. WSL lets you... --- ### Yammer Supports EU Data Residency with No External Collaboration > Microsoft says that new Yammer networks can have their messages stored in the European Union instead of the U.S. That sounds good, until you understand the downside that Yammer loses a lot of its external collaboration capabilities. - Published: 2019-06-06 - Modified: 2024-09-04 - URL: https://petri.com/yammer-supports-eu-data-residency/ - Categories: Microsoft 365, Office, Yammer - Tags: Data Residency, European Union, External Collaboration, Office 365, Yammer - Article Type: News, Opinion Microsoft says that new Yammer networks can have their messages stored in the European Union instead of the U.S. That sounds good, until you understand the downside that Yammer loses a lot of its external collaboration capabilities. Given this, it's likely that some existing EU-based Office 365 tenants who use Yammer will be happy to have their messages stay in the U.S. Yammer Meeting Some of its Goals Among the many announcements made by Microsoft at the SharePoint Conference was one about in-geography storage of Yammer messages at rest for new European Union customers. We knew a move to ensure better compliance with customer data residency wishes was coming because it was a commitment made at Ignite 2018. Another commitment was to surface Yammer messages through Microsoft Search, which is now supported in Microsoft Search by Bing. Figure 1: Yammer data storage in the European Union (image credit: Microsoft) Bringing a European Dimension to Data Storage On the surface, Yammer appears to be moving towards its goal of being more integrated with Office 365 and all is well. That is, until you look at the details of what Microsoft proposes for new European Union customers. If you decide to locate your Yammer message data in Europe, the list of unsupported features is quite extensive: All external collaboration features: Only users in your Office 365 tenant can participate in your Yammer Enterprise network. External guests can’t participate in your Yammer Enterprise network. Your users can’t participate in other Yammer networks, including external networks. Your users can't be participants in external messaging threads, or add external participants to threads in your Yammer Enterprise network. External groups can't be created in your Yammer Enterprise network, and your users can't participate in external groups belonging to other networks. Post to Yammer by sending an email message This list is for... --- ### The Return of Serverless Powershell - Published: 2019-06-05 - Modified: 2024-09-04 - URL: https://petri.com/the-return-of-serverless-powershell/ - Categories: Microsoft Azure, PowerShell - Tags: Azure, PowerShell, Serverless You can now use Powershell with Azure Functions 2.0. This article provides a quick example using Visual Studio Code and the Azure Functions extension, which makes authoring and deployment easy. Powershell was conspicuously absent from the language options in Azure Functions 2. 0 until recently. A few weeks ago, Microsoft announced preview level support for running a Powershell script inside a function. Support for Powershell is an important feature for Function apps, because Powershell is a popular language for enterprise level automation, and Functions offer a straightforward platform for automating Azure resources. Let’s look at an automation scenario to get a feel for Powershell on a serverless platform. What we’ll do is create a function that will execute at 22:00 UTC every weekday and shutdown virtual machines inside a resource group. The Setup In this article, we will be using Visual Studio Code with the Azure Functions extension. You’ll also need the Azure Functions Core Tools if you want to develop and test locally with the Function runtime version 2. 0. You will also need Powershell. Serverless Powershell requires Powershell Core, which is the open source and cross-platform version of Powershell that builds on top of . NET Core. You can find the source code as well as links to installer binaries in the Powershell GitHub repository. Creating a Project There are at least three different approaches you can take to create a new Function app. One approach is to use the Azure portal. A second approach is to use the command line tools. Our approach is to use the VS Code extension to create a new project. With the Azure tab selected (#1 below), click on the Create New Project... --- ### Renaming Teams and Channels Can Be Messy, Especially with SharePoint > You can easily rename a team by giving it a new display name, or do the same thing to a channel. But Teams and SharePoint Online have the kind of relationship that's based on tight connections, so renaming team or channel names doesn't do much for SharePoint. - Published: 2019-06-04 - Modified: 2024-09-04 - URL: https://petri.com/renaming-teams-can-be-messy/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Office 365, Rename team, Set-Team, Set-TeamChannel, Set-UnifiedGroup, SharePoint Online, Teams - Article Type: How To You can easily rename a team by giving it a new display name, or do the same thing to a channel. But Teams and SharePoint Online have the kind of relationship that's based on tight connections, so renaming team or channel names leaves SharePoint untouched. Site URLs remain unchanged and if you try and fix up the folder names for channels, you can end up with a real mess. Whoops, I Called My Team Something Bad A reader asks: “I made a mistake when I created a team and gave it the wrong name. Can I rename it? ” The answer is that you can absolutely rename a team and some of its components, but you have to rename the SharePoint site belonging to the team in a separate operation. Renaming a Team Digging into the question a little deeper, let’s consider the different bits of a team that you can rename. The most visible component is the team’s display name, which you can change by selecting the team and then choosing Edit team from the ellipsis menu. Change the team name, click Done, and you’ve renamed the team (Figure 1). Figure 1: Editing the display name of a team (image credit: Tony Redmond) Tenant and Teams administrators can update a team’s display name in the Teams Admin Center. Select the team, choose Edit team, and enter the new name (Figure 2). Figure 2: Editing a team display name with the Teams Admin Center (image credit: Tony Redmond) The same can be done in PowerShell using the Set-Team cmdlet from the Teams PowerShell module (assuming you first find the group identifier for the team). For example: Set-Team -GroupId e145d2a4-a14c-4865-928e-31f13397d9de -DisplayName "Gardeners and Green Fingers" Remember that if a Groups Naming Policy is active in the tenant, Teams will apply the policy settings to adjust the display name you give to... --- ### Everything You Need to Know About Windows – May 2019 - Published: 2019-06-03 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-windows-may-2019/ - Categories: Windows Client OS - Tags: Microsoft Edge, Microsoft Enterprise Search, Windows 10, Windows 10 May 2019 Update, Windows Insider, Windows Server 2019, Windows Subsystem for Linux, Windows Terminal - Article Type: News This month’s news roundup includes important announcements made at Microsoft’s Build conference in Seattle, and the general availability of Windows Server 2019 version 1903 and the Windows 10 May 2019 Update. This month’s news roundup includes important announcements made at Microsoft’s Build conference in Seattle, and the general availability of Windows Server 2019 version 1903 and the Windows 10 May 2019 Update. Windows 10 May 2019 Update and Windows Server 2019 1903 GA Let’s start with the release of the Windows 10 May 2019 Update and Windows Server 2019. Originally planned for April, Microsoft decided to delay the release of the May update because of problems experienced by users upgrading to the previous two Windows 10 feature releases. In October, Microsoft took the unprecedented step of pulling both the Semi-Annual Channel (SAC) Windows 10 and Server releases because of a bug that was causing users to lose data during the upgrade. And the previous spring update didn’t go much better. The delay seems to have paid off. It’s still early days but there doesn’t appear to be any showstopping bugs. That’s not to say the update isn’t completely problem free. With any software as complex as Windows, it’s reasonable to expect some issues. All software contains bugs. And the more complex it gets, the more likely there will be problems. Nevertheless, keeping the May update in the Slow and Release Preview rings an extra month, and dogfooding it internally at Microsoft, was a good plan. Microsoft has already released a few quality updates for the May update. The latest, KB4497935, fixes a raft of problems including a blocking issue for some devices that prevented the update if removable storage,... --- ### Everything You Need to Know About Azure Infrastructure – May 2019 Edition > May revealed some interesting Azure developments to us – Sony are now an Azure customer! This post will summarize the infrastructure news of the last month. - Published: 2019-06-03 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-may-2019-edition/ - Categories: Microsoft Azure - Tags: ASR, AWS, Azure, Azure Cost Management, Azure Deployment Manager, Azure Files, Azure Firewall, Azure Migrate, Azure Monitor, Azure Monitor Logs, Azure Portal, Azure Site Recovery, Azure SQL, DevOps, Disaster Recovery, GitHub, HB-Series, Log Analytics, NetApp Files, networking, NVA, OMS, Peering, PlayStation, Premium Files, RBAC, Sony, virtual machines, Virtual Network, vmware, VNET, xCloud - Article Type: Overview During May, the month was filled with Azure announcements, here are the key items that you need to know about. May revealed some interesting Azure developments to us – Sony is now an Azure customer! This post will summarize the infrastructure news for the last month. VNet Peering Limits Increased There was no announcement to this increase that I saw – I learned about it when in a meeting with some of the engineers & program managers of Azure networking. And some of you might think “that’s not all that important”. But this was the big Azure announcement for me and my customers. VNet peering allows you to connect one virtual network to another. For mid-large enterprises, this allows us to reuse expensive resources such as firewalls, VPN/ExpressRoute connections, and other shared services such as domain controllers. VNet peering is the networking feature that makes the Virtual Data Center concept possible – applications or services are deployed into their own virtual network and connect to a shared services hub using peering. Before this increase, a single virtual network (or hub) was limited to 100 peered connections. That limited the capacity of a single virtual data center to under 100 applications or services. But now, a single virtual network can connect to 500 other virtual networks. That means that I can have up to 500 applications/services sharing the expensive resources that I host in a single hub, deriving more value, and reducing the amount of governance, operations, and security work that must be done. RBAC for Azure Monitor Logs A fair question to ask is “what the heck is... --- ### Everything You Need to Know About SharePoint - May 2019 > Get your SharePoint Online and On-Prem fix for May 2019 with this article. Home sites, hub sites, on-prem in the cloud, and more. Love SharePoint. - Published: 2019-06-03 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-may-2019/ - Categories: SharePoint - Tags: SharePoint - Article Type: News Last month, Microsoft held its SharePoint NA conference; here's a wrap-up of all the key announcements for the month of May. This month we take some of the SharePoint Conference announcements and put them in context. In the process, I feel like I wrote "I" a lot. Maybe more opinion than you wanted but such is life. Just remember if you are reading this on the internet it must be true because I said so. With that said enjoy some info on Home Sites, On-Prem SharePoint, renaming URLs (finally), and more. I bet you cannot wait. SharePoint Home Sites I will be honest I am not as excited about this announcement as I think I am supposed to be. ? ‍♂️ The idea of a SharePoint home site is you can design a communication site to have everything you want for your companies home page and then designate it as a home site. This makes news flow better, search scoped to the tenant, a fancier mobile experience, and more unique experiences. Which then leaves you saying what about hub sites? A home site can also be a hub site. Pretty sure the vision is this is your new intranet landing page that all SharePoint roads start from, which is actually cool. Maybe I think this is better than I realize. I think the problem is I just get overwhelmed. Is Teams the starting point? Is the Home site the starting point? What about that root URL we have used for the last three years? Can’t I just have a PowerApp instead? I don’t know. Read more about here and then... --- ### Everything You Need to Know About Office 365 – May 2019 > With this edition of what is new for Office 365 Shane cooly covers Microsoft Search, Teams, PowerApps, and more. A must for your summer reading list. - Published: 2019-06-03 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-office-365-may-2019/ - Categories: Microsoft 365 - Tags: Microsoft Search, Microsoft Teams, Office 365, OneDrive, OneNote - Article Type: News With May now behind us, let's take a look at the key announcements from the Office Team during the month. This month I use cool too much. Not sure why but I did so deal with it. The good news is that means there is a lot of quality, positive (aka cool) announcements below. Really only OneNote Dark Mode gets mocked. So kick back with a cool drink and enjoy Microsoft Search, Forms, OneDrive, Teams, and my favorite child PowerApps. Microsoft Search – THIS IS COOL! My favorite part of SharePoint was always Search. Internet historians might even know I wrote a book on Search around 2008 that sold seven copies. My mom said it was a good book. Anyway, Microsoft Search was announced at Build and it so cool. Basically, it is all of the search smarts we have had for a long time but searching more data across Microsoft 365 and being surface in more places APIs and Bing. Yes, that is right, after 30 seconds of config by your O365 Administrator you can see your intranet and internet search results in your browser. Check out the screenshot below where I searched for Chewy. As long as you find it normal, my dog has a proper O365 account; it is all pretty cool. Search is also more contextual in more places and coming to Windows 10. Tony has a nice walkthrough on Getting Started with Microsoft Search you should check out. Microsoft Forms transform ownership Apparently, Forms is doing pretty well. Who knew people wanted a simple way to collect data online? As its growth has... --- ### Paul Thurrott's Short Takes: May 31 - Published: 2019-05-31 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-31/ - Categories: Cloud Computing, Mobile, Windows 10, Windows Client OS - Tags: News - Article Type: Overview Because I’m not as funny as I think I am, this edition of Short Takes looks at Microsoft’s bizarre Modern OS announcement, a Microsoft retail store in London, Bing’s 10th anniversary, falling smartphone sales, and much, much more. Another busy night at the Microsoft Store. Because I’m not as funny as I think I am, this edition of Short Takes looks at Microsoft’s bizarre Modern OS announcement, a Microsoft retail store in London, Bing’s 10th anniversary, falling smartphone sales, and much, much more. What is Microsoft’s Modern OS? In one of the more bizarre announcements in its recent past, Microsoft this week revealed its “vision” for “a modern OS” that appears to solve all of the problems with Windows 10 while never addressing its key advantages, application compatibility. Tucked between a list of new PCs announced at Computex and some equally concrete IoT news, Microsoft went vague in the middle of a corporate blog post and appears to be setting up those who hadn’t already nodded off for a future platform that many have said, accurately, sounds a lot like iOS, not Windows. This more modern OS---the Modern OS, as the post noted at one point, hinting at a formal name---will enable seamless updates “with no interruptions! ”, unlike Windows 10. It will be secure by default, always on, always connected, and will provide sustained performance, unlike the performance rot issues that all Windows users have experienced. It will be cloud-connected, AI-powered, and multi-sense, a hippie-istic way of saying it will work pen, voice, touch, and “even gaze,” which is currently a HoloLens-only feature. Finally, it will have “form factor agility,” because Microsoft can’t say anything simple without mucking it up. So what... --- ### Phishing Report Highlights Need for Sophisticated Anti-Malware Software > A recent report by a security vendor says that 25% of phishing messages get by Exchange Online Protection (EOP) and arrive into Office 365 user mailboxes. This highlights the need to configure EOP properly and run multiple lines of defense. - Published: 2019-05-30 - Modified: 2024-11-19 - URL: https://petri.com/phishing-report-exchange-online-protection/ - Categories: Anti-Spam Solutions, Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Advanced Threat Protection, Anti-Malware, Avanan, Exchange Online Protection, Office 365, Phishing - Article Type: News, Opinion A recent report by a security vendor says that 25% of phishing messages get by Exchange Online Protection (EOP) and arrive into Office 365 user mailboxes. This highlights the need to configure EOP properly and run multiple lines of defense. Microsoft would like you to use Office 365 Advanced Threat Protection (ATP) alongside EOP. Offerings from other security vendors are also available. For better protection against phishing, you should consider something like ATP. Protecting Exchange Online Against Phishing Reports with grand titles like “Global Phish Report 2019” might appear authoritative but often they are thinly disguised vendor pitches. A real-life and well-known problem is stated followed by an explanation of how the only way to solve the issue is to use the technology that just happens to be sold by the report’s authors. In this case, the Global Phish Report comes from Avanan, a company who sells anti-phishing tools to protect platforms like Office 365 and G Suite. It contains the starting assertion that “Of the phishing attacks we analyzed, 25% bypassed Office 365 security. ” Avanan go on to explain that their researchers analyzed 55. 5 million messages sent to Office 365 and G Suite (Figure 1), presumably sent to customers of their anti-phishing service. No specific details were given about where these companies were located, how many tenants were involved, and what configuration the tenants use. Figure 1: Avanan phishing statistics (image credit: Avanan) Avanan said: “we scanned every email after the default security, allowing us to see not only the phishing attacks that were caught, but also those that were missed. ” They then concluded that 25% of the phishing messages got past the Exchange Online Protection checks and were delivered to user inboxes (Figure 2). This is what Avanan mean when they say that messages bypassed security. Figure 2: How Exchange Online Protection coped with phishing email (image credit: Avanan) Phishing on... --- ### Avoiding Common Mistakes in Cloud Native Development - Published: 2019-05-29 - Modified: 2024-09-04 - URL: https://petri.com/avoiding-common-mistakes-in-cloud-native-development/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Cloud, development, Microsoft - Article Type: How To Don't let your development teams misuse the cloud! This article looks at some common cloud native problems that fast moving teams can create. Technical debt in software makes you work harder to change or update an application or service. Often, the debt exists because the team responsible for the design and construction of the software took shortcuts to reach a deadline. In many cases the shortcuts are defensible. A product that reaches the market too late is just as much of a failure as a product that never reaches the market at all. The cloud helps development teams move fast, but sometimes too fast. In this article, I want to give you actionable advice to help you avoid technical debt and shortcuts in your cloud-native applications and services. We’ll look at problems I’ve seen occur across different teams and organizations, and I’ll also give you some advice specific to Azure on how to mitigate the problems.  We’ll start with the topic of governance. Have a Governance Policy When starting a project, development teams will typically take the default settings for a cloud service. Fortunately, the settings in Azure usually default to error on the side of safety. For example, App Services come with the HTTP/2 protocol disabled by default. The default allows services to reach a broader range of HTTP 1. 1 clients, but might not be the best setting for performance. Likewise, up until last year, the default TLS protocol for an App Service was TLS 1. 0. The default provided the widest range of compatibility, but is not the best setting for security (the default is now TLS 1. 2). Keeping track of the... --- ### Microsoft's Bringing New Data Centers To a Sustainable Sweden - Published: 2019-05-29 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-new-data-centers-to-a-sustainable-sweden/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News, Sweden - Article Type: News As Microsoft continues to invest heavily in new data center regions, the company is also investing in ways to make the new data centers sustainable as well. This morning, Microsoft announced two new data centers coming to Sweden and the company is targeting a zero-waste operation. As Microsoft continues to invest heavily in new data center regions, the company is also investing in ways to make the new data centers sustainable as well. This morning, Microsoft announced two new data centers coming to Sweden and the company is targeting a zero-waste operation. Microsoft is collaborating with Vattenfall to make the new data centers run on 100 percent renewable energy. The goal of the new region in Sweden is to be Microsoft's most advanced and sustainable to date and you can bet that the learning from this project will be used for other regions coming online in the years ahead and for updates to existing locations. Last quarter, Microsoft reported commercial cloud revenue of $9. 6 billion, up 41 percent year-over-year. For the company, expanding its footprint into nearly every market and country, where it has a large enough customer-base or potential customer acquisition opportunity, is on the agenda. Microsoft frequently states that they have the largest footprint of data centers around the globe and the company shows no signs of slowing down with opening new locations. As more data retention laws are signed, having local data centers strategically located throughout the world will become a strength of Microsoft’s cloud services. While cloud services can make protecting and backing up your data easier, this only matters if it's aligned to the local laws of the company who wants to move from on-premises to the cloud. --- ### Disaster Recovery with Azure Backup for SQL Server VMs - Published: 2019-05-28 - Modified: 2024-09-04 - URL: https://petri.com/disaster-recovery-with-azure-backup-for-sql-server-vms/ - Categories: Backup & Storage, Cloud Computing, Disk Management, Hyper-V, Microsoft Azure, SQL Server, Virtualization - Tags: Azure, Azure Virtual Machines, Backup, Cloud, Disaster Recovery, virtual machine - Article Type: Overview Running VMs in the cloud has become a big part of the modernization of IT infrastructure for most businesses. However, even though those VMs that are in the cloud, the backup mechanisms that they use to provide disaster recovery (DR) capabilities are essentially the same as they would use for on-premise VMs. They often use legacy technologies that require a lot of resources and are difficult to scale. Running VMs in the cloud has become a big part of the modernization of IT infrastructure for most businesses. However, even though those VMs that are in the cloud, the backup mechanisms that many IT shops use to provide disaster recovery (DR) capabilities are essentially the same as they would use for on-premise VMs. They often use legacy technologies that require a lot of resources and are difficult to scale. Microsoft’s recently released Azure Backup for SQL Server Virtual Machines (VMs) is designed to address these issues by providing a modern cloud-based backup solution for SQL Server VMs running in Azure. Like you would expect from a DR/backup solution, Azure Backup for SQL Server VMs enables you to protect your SQL Server databases from application and user errors. Azure Backup for SQL Server Virtual Machines (VMs) is an Azure cloud-based service that provides an enterprise scale, zero-infrastructure backup solution. It eliminates the need to separately deploy and manage your own backup solutions for SQL Server VMs running in Azure. There is no need for a separate backup server, agent jobs or writing complex backup scripts. Azure Backup for SQL Server VMs enables you to centrally manage and monitor the backups for both standalone SQL Server Azure VM instances and SQL Server Azure VM instances that are part of an Always On Availability Group. Azure Backup for SQL Server VMs uses the native SQL Server backup APIs and it provides full, differential and log backups. You can monitor the backup jobs... --- ### Why is Windows Error Reporting Still A Cryptic Mess? - Published: 2019-05-28 - Modified: 2024-09-04 - URL: https://petri.com/why-is-windows-error-reporting-still-a-cryptic-mess/ - Categories: Windows 10, Windows Client OS - Tags: Windows 10 - Article Type: Opinion After thirty years of Windows development, how Windows handles error reporting is stuck in 2006 which is unacceptable when the company wants you to install major updates every six months. Windows 1. 0 was released in November of 1985 and more than thirty years later, the OS is powering a significant portion of enterprise devices and a large number of consumer electronics as well. While the company has made significant gains in the areas of usability, security, and stability, when issue do show their ugly face, it's nearly impossible for the average user to figure out the problem. Last week, the company started pushing out Windows 10 version 1903. And unlike previous releases, Microsoft said that they were taking extra steps so that this update wouldn't go down the same path as 1809 that in some cases, was deleting user data. What they did was place the build into the Release Preview ring for an extra month and attempted to iron out update woes before they reached the general public but unfortunately for myself, and a few others as well, the issues still persisted. I have two main boxes, my video editing setup, and the podcast box; the video editing machine updated without any issues. But my podcast box, this was a different issue and left me a bit perplexed. You see, that box was still running 1709 and unknowingly to me, it had failed to update to 1803 or 1809, despite trying. The machine was stuck on 1709 but because I only use it to podcast, I never noticed as I needed it to do one thing and do that well; record audio and video from multiple feeds... . --- ### Exchange’s EHLO Blog Moves to The Microsoft Technical Community > Microsoft has moved the venerable EHLO blog maintained by the Exchange product group to the Microsoft Technical Community (MTC) platform. The first post is about the Exchange 2019 sizing calculator. - Published: 2019-05-28 - Modified: 2024-11-19 - URL: https://petri.com/exchange-ehlo-blog-moves-microsoft-technical-community/ - Categories: Exchange Server, Microsoft 365, Office - Tags: EHLO, exchange, Microsoft Technical Community, MTC, SharePoint - Article Type: News, Opinion Microsoft has moved the venerable EHLO blog maintained by the Exchange product group to the Microsoft Technical Community (MTC) platform. The first post is about the Exchange 2019 sizing calculator. Hopefully the changeover won't affect the great content published in EHLO over the years. What's of more concern is the lack of participation in the MTC by Microsoft product engineers and MVPs. EHLO’s Long History of Great Content In March, the Exchange product group announced that the EHLO blog was to move to the blogs section of the Microsoft Technical Community (MTC). All the 1,753 posts and most of the comments accumulated in the original location were migrated and links to posts via http://aka. ms/ehlo were redirected. On May 22, the move completed. The EHLO blog began in 2004 at https://blogs. technet. microsoft. com/exchange/. Over the years, it gathered over 40 million page views with popular articles getting up to 300,000 views. The blog became a great example of communications from an engineering group to the people using its product. What marks the EHLO blog out as different is the volume of in-depth technical information shared by the Exchange product group. Much of its content is written by subject matter experts, including people working in the field who had the pleasure of implementing or supporting Exchange. Although some marketing material sneaks in, most of the content on EHLO has been at a 300- or 400-level. Sizing Calculator for Exchange 2019 Microsoft has started to publish new material for EHLO in the MTC, beginning with an announcement about the Exchange 2019 sizing calculator. The sizing calculator is an Excel worksheet that gathers design criteria and generates a suggested server and storage configuration to meet those criteria. It’s a very popular tool with Exchange architects and consultants who can use the calculated recommendations as the baseline for designs. It goes without saying that you should never... --- ### Patch Tuesday – May 2019 - Published: 2019-05-27 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-may-2019/ - Categories: Security - Tags: Patch Tuesday, Windows 10, Windows 7, Windows Server, Windows XP - Article Type: News This month’s quality update for Windows 10 is so good that it installs itself twice, Microsoft releases patches for Intel Microarchitectural Data Sampling (MDS) attacks, and there’s a fix for a zero-day flaw in Windows Error Reporting. This month’s quality update for Windows 10 is so good that it installs itself twice, Microsoft releases patches for Intel Microarchitectural Data Sampling (MDS) attacks, and there’s a fix for a zero-day flaw in Windows Error Reporting. Windows and Windows Server This month Microsoft patched one critical remote code execution (RCE) vulnerability (CVE-2019-0903) in the way the Windows Graphics Device Interface (GDI) handles objects in memory. If exploited, an attacker could install programs; view, change, or delete data; or create new accounts with full user rights. Microsoft says that users with standard user rights would be less impacted than those with administrator privileges. Zero-Day in Windows Error Reporting There’s an elevation of privilege (EOP) zero-day in the Windows Error Reporting service (CVE-2019-0863) that could allow an attacker to run arbitrary code in kernel mode. Discovered by researchers from PolarBear and Palo Alto Networks, CVE-2019-0863 is already being exploited and can allow an attacker to elevate from standard user rights to administrator privileges. The fix is available for all supported versions of Windows. Zombieload Side-Channel Attacks You may have heard in the news last week that Intel CPUs are affected by new Zombieload side-channel attacks. Or Microarchitectural Data Sampling (MDS) attacks as they are officially known. As part of this month’s quality update for Windows 10, Microsoft is including changes to the OS to protect against this kind of attack. But you will also need to apply microcode (firmware) updates to devices to get full protection. The quality update... --- ### Four VeeamOn's Later, Availability and the Industry Has Evolved - Published: 2019-05-24 - Modified: 2024-09-04 - URL: https://petri.com/four-veeamons-later-availability-and-the-industry-has-evolved/ - Categories: Backup & Storage - Tags: VeeamOn - Article Type: Opinion But each year, the tune has changed a little bit more each time and it's becoming more clear that Veeam is no longer a little company playing in the backup space but has become its own ecosystem that is the center of availability for nearly every type of data both locally and in the cloud. This week, I was in Miami for what was my fourth VeeamON. The annual conference has grown from a small and dedicated show into a huge event that is critical for anyone in the industry who works in the data protection industry to attend. This year, thousands of attendees packed the Fontainebleau hotel along with vendors to learn more about where Veeam is headed and how the industry continues to evolve with new security threats and models for delivering robust availability. On day one, the company focused on their plans to add new features to their software along with the significant announcement of $1 billion in annual books and the fact that they are adding 4000 new customers each month. During the day two keynote, it was more future-focused with a presentation by Nancy Giordano. But each year, the tune of the show has changed and it's becoming clear that Veeam is no longer a little company playing in the backup space but has become its own ecosystem that is the center of availability for nearly every type of data both locally and in the cloud. For the past couple of VeeamOn events, I have been interviewing vendors as well as Veeam employees at the show and while the story is usually similar, meaning vendors want you to use their hardware or their cloud as the endpoint for Veeam software, this year also had many vendors talking about security. It also became apparent this year how Veeam's software has transformed... --- ### Important Office 365 Announcements from the SharePoint Conference > Microsoft made a ton of announcements at this week's SharePoint conference in Las Vegas. If you're an Office 365 tenant administrator, the health of SharePoint Online and what it and OneDrive for Business can do is important to you. - Published: 2019-05-23 - Modified: 2024-09-04 - URL: https://petri.com/announcements-sharepoint-conference/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: DLP, Office 365, OneDrive for Business, sensitivity labels, SharePoint Conference, SharePoint Online Microsoft made a ton of announcements at this week's SharePoint conference in Las Vegas. If you're an Office 365 tenant administrator, the health of SharePoint Online and what it and OneDrive for Business can do is important to you. Among all the fluffy stuff about intelligent intranets, there was some good news about improvements in administration, security, and network utilization, all of which will help other Office 365 apps too. This week, Microsoft made many announcements about SharePoint and OneDrive at the SharePoint North America conference. This isn’t a formal Microsoft conference, but it does boast a lot of support from the SharePoint product team, so the announcements made by people like Jeff Teper usually give some interesting pointers to what we can expect over the next six or so months. SharePoint has its own community, just like Exchange. But as I’ve been saying for a while now, the on-premises products that worked at the center of their own ecosystems are now service providers to Office 365. In short, their mission has changed and much of what we see happening in SharePoint and OneDrive benefits other apps. One example of this is the improvement in sharing controls for links generated by Teams. Another is the new Teams Files channel tab UI, which replaces the simplified version used to date. OneDrive Differential Synchronization Looking at developments through an Office 365 lens, my eye was taken by several improvements. First, OneDrive for Business will soon support differential synchronization for non-Office files. Delta synchronization came for Office file formats a few years ago and is the reason why you can open very large PowerPoint presentations or Word documents without having to wait for the whole file to be downloaded. It’s also the basis of the Office AutoSave feature, which then gives SharePoint Online and OneDrive for Business the ability to support Files Restore for up to 30 days back in time... . --- ### Getting Started with Role-based Access Control in Azure - Published: 2019-05-22 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-role-based-access-control-in-azure/ - Categories: Cloud Computing, Security - Tags: Azure, Cloud, Learning, Microsoft, RBAC, Roles, Security - Article Type: How To, Overview Do you want to ensure your Azure users don't have the rights to create random, expensive resources without approval? You can do just that with Role-based access control (RBAC). RBAC is a built-in FREE feature we must master in order to improve our security posture. To suggest security is "on the radar" for anyone moving to the cloud would be a dramatic understatement. But here we are. One thing I have discovered when talking with peers is there are a lot of gaps in fundamental security concepts out there. It's critical to start your cloud journey with security in mind and being mindful of tools Azure provides out of the box. Yes, there are some extremely useful new services that can be leveraged, however, having the fundamental understanding of creating a secure cloud experience from the outset is just as important. I agree, learning fundamentals may not be as sexy as kicking the tires with Azure Sentinal, but they are extremely critical in improving your cloud security posture. In this article, we will take a look at how we can take a step in creating a secure platform by exploring role-based access control (RBAC). What is Role-Based Access Control? There are several approaches to security. Providing access on the need to know and more importantly, least privilege security principles are critical for any organization both on-premises or in the cloud. This is where role-based access control comes in. RBAC allows you to assign permissions to users, groups, and applications at different scopes. In Azure, the scopes at which these rights are assigned are subscription, resource group or a single resource. For example, your Global Admin can assign the role of Virtual Machine Contributor to Janis within the subscription. This grants Janis the right... --- ### Veeam Achieves Major Milestone, Makes Hybrid Push - Published: 2019-05-21 - Modified: 2024-09-04 - URL: https://petri.com/veeam-achieves-major-milestone-makes-hybrid-push/ - Categories: Virtualization, VMware - Tags: Veeam, VeeamOn - Article Type: News At its VeeamON 2019 conference in Miami today, Veeam Software announced that it has exceeded $1 billion in annual bookings and is adding over 4,000 new customers every month. Veeam Software announced today that it has exceeded $1 billion in annual bookings and is adding over 4,000 new customers every month. The announcement coincided with the first day of VeeamON 2019 in Miami, Florida. “Veeam created the VMware backup market and has dominated it as the leader for the last decade,” Veeam co-founder and executive vice president Ratmir Timashev said. “I am delighted that we have surpassed the $1 billion mark. ” Timashev noted during his VeeamON keynote address that he considers the firm’s success in virtual machine backup, recovery, and replication to be Veeam’s Act I. But with this milestone behind it, Veeam is moving on to Act II, in which it will move beyond backup and adapt to industry trends around hybrid computing. “The market is now changing,” he said. “Backup is still critical, but customers are now building hybrid clouds with AWS, Azure, IBM, and Google, and they need more than just backup. To succeed in this changing environment, Veeam has had to adapt. Veeam, with its 60,000+ channel and service provider partners and the broadest ecosystem of technology partners, including Cisco, HPE, NetApp, Nutanix and Pure Storage, is best positioned to dominate the new Cloud Data Management in our Act II. Our vision and strategy for the hybrid cloud will see us deliver the kind of success others can only dream of. ” This is an evolutionary change. Veeam was founded in 2006 specifically to serve VMWare-based virtualized environments; indeed, its name is derived from the phonetic... --- ### Windows Server Version 1903 is Now Generally Available - Published: 2019-05-21 - Modified: 2024-11-19 - URL: https://petri.com/windows-server-version-1903-is-now-generally-available/ - Categories: Windows Server, Windows Server 2019 - Article Type: News Microsoft today announced the general availability of Windows Server version 1903, which adds new Windows Server container capabilities, an updated Windows Admin Center, and improved application compatibility in Server Core. Microsoft today announced the general availability of Windows Server version 1903, which adds new Windows Server container capabilities, an updated Windows Admin Center, and improved application compatibility in Server Core. “We are excited to announce that Windows Server, version 1903 is now generally available,” a new post from the Windows Server team observes. “Windows Server, version 1903 brings innovation to areas that that matter to you, such as Containers, Edge Computing and Hybrid. You can see these capabilities enabled across our suite of server products. ” Windows Server version 1903 includes the following enhancements. New Windows Server container capabilities. This release includes several new capabilities for Windows Server containers including the support of Windows Server containers in Kubernetes. GPU acceleration, and scalability improvements. Latest Windows Admin Center release. The new version of Admin Center, confusingly named Windows Admin Center 1904, adds a new dark mode theme, PowerShell automation for import and export connections and extensions, new power profile options, new container tools, and a preview version of the Active Directory tool, which is implemented as extension, among many other new capabilities. You can learn more about the new Admin Center from the Microsoft Tech Community website. Improved application compatibility in Server Core. Server Core’s App Compatibility feature allows admins and IT pros to add many useful administration tools to this otherwise minimal Server install mode. In Windows Server version 1903, two more tools---Task Scheduler and Hyper-V Manager---are now available in App Compatibility. Storage Migration Service improvements. Storage Migration Service now supports... --- ### Microsoft Unveils SharePoint, Stream, and Yammer Features Coming to Microsoft 365 - Published: 2019-05-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-sharepoint-stream-and-yammer-features-coming-to-microsoft-365/ - Categories: Microsoft 365 - Tags: Microsoft 365, SharePoint, Stream, Yammer - Article Type: News Microsoft has announced a couple of new features that will add more functionality to SharePoint, Yammer, and Streams This week, Microsoft is hosting its SharePoint Conference in North America. The event is packed with information about how you can grow your own personal skills with Microsoft's suite of services and tools and the company is also announcing how they are expanding the platforms by adding more features to Microsoft 365. There are three key new features that are for SharePoint, Stream, and Yammer users that are outlined below: SharePoint home sites — a landing page for organizations that provides an intelligent, integrated employee experience and connects the workplace with apps like Microsoft Search, Yammer and Stream. This mobile-friendly intranet portal will be deployable in minutes with no code, and offers web parts, navigation and site design customizations that can reflect a company’s voice and mission. (available this summer) Microsoft Stream that will allow people to securely record, upload, and share video from the Stream mobile app for iOS and Android (coming soon). We’re also announcing that you can now insert poll, surveys, or quizzes into videos with Microsoft Forms (available beginning of this month). Yammer, such as a Q&A feature—which can now leverage intelligent, bot-like responses to questions— to connect people across organizations and preserve knowledge (rollout starting in June) as well as in-geo data storage for Yammer in the EU; for new Yammer networks in the EU, Yammer messages and associated file attachments will now be stored at rest in EU datacenters (generally available as of May 21) Many have speculated that Yammer may be going away but... --- ### Join us for the SharePoint Virtual Summit! - Published: 2019-05-21 - Modified: 2024-09-04 - URL: https://petri.com/join-us-for-the-sharepoint-virtual-summit/ - Categories: SharePoint - Article Type: News At the SharePoint Virtual Summit, Lori Wright and Jeff Teper share the latest innovations and solutions for file collaboration, process transformation, employee engagement and communications, and AI-powered search and discovery. SharePoint Virtual Summit Microsoft 365 empowers individuals, teams and organizations to be creative, collaborative, and effective with an integrated suite of experiences that are simple, superior, smart and secure. At the SharePoint Virtual Summit, Lori Wright and Jeff Teper share the latest innovations and solutions for file collaboration, process transformation, employee engagement and communications, and AI-powered search and discovery. Join the world's largest event for the SharePoint and Microsoft 365 community--business users and leaders, IT professionals and developers from across the globe--to learn how the experiences in Microsoft 365--including SharePoint, OneDrive, Yammer, Stream, PowerApps, Flow--integrate to power collaboration and the intelligent intranet across devices, on the web, in desktop and mobile apps, and in the hub for teamwork, Microsoft Teams.   Watch LIVE on Petri. com on Tuesday, May 21 at 3 pm.    --- ### Bringing Microsoft Search by Bing to Office 365 > You can now connect Office 365 sources like SharePoint Online, OneDrive for Business, Teams, and Yammer to Microsoft Search and have Bing reveal results from those sources in its searches. - Published: 2019-05-21 - Modified: 2024-11-19 - URL: https://petri.com/bringing-microsoft-search-bing-office-365/ - Categories: Microsoft 365, Office - Tags: Bing, Microsoft Search in Bing, Office 365, SharePoint Online, Teams, Yammer - Article Type: How To You can now connect Office 365 sources like SharePoint Online, OneDrive for Business, Teams, and Yammer to Microsoft Search and have Bing reveal results from those sources in its searches. It's a useful trick, as long as you use Bing as your search engine. And there's the small matter that Microsoft has left Exchange out of the list of connected sources, which seems to reduce the usefulness of searches a tad. Intelligent Search for All On May 6, Microsoft announced the upcoming  general availability of Microsoft Search, labeled as “intelligent search for the enterprise. ” According to the post, the new search capabilities combine artificial intelligence from Bing and “deep, personalized insights” from the Microsoft Graph to make search more effective. Microsoft Search is already embedded as the search technology used throughout Office 365. Enter a query in the search bar in apps like OWA and SharePoint and it’s Microsoft Search that delivers the results. Microsoft controls these app experiences, so they get to choose what search engine is used. What’s different now is an effort to expand Microsoft Search to combine results from Office 365 sources with results drawn from the rest of the web. The project is called Microsoft Search for Bing because the combination of results is only available when you search through Bing. com or configure Bing as your browser’s search engine and have logged into an Office 365 tenant. Whether seeing Office 365 results alongside other material will make you want to give up your current search engine remains to be seen, but let’s explore how the connection with Office 365 works. Connecting Office 365 To connect these services, got to the Services & Add-ins section of the Microsoft 365 Admin Center and select Microsoft Search in Bing to enable Bing for the tenant (Figure 1). Figure 1: Enable Microsoft Search in Bing for Office 365 sources (image credit: Tony Redmond) You... --- ### Microsoft Enterprise Search is Coming to Windows 10 - Published: 2019-05-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-enterprise-search-is-coming-to-windows-10/ - Categories: Windows 10 - Tags: Microsoft 365, Microsoft Enterprise Search, Microsoft Search for Bing, Office 365, Windows 10 - Article Type: News Microsoft Enterprise Search is coming to all Office apps, Bing, SharePoint, OneDrive, and Windows 10. If you spend most of your time buried in apps like Microsoft Word, you might not know about Microsoft’s search feature that was first available in preview last September. Enterprise Search isn’t a separate app but rather a feature that will be built in to all Office apps, Bing, SharePoint, OneDrive, and Windows 10. Microsoft announced the general availability of Enterprise Search at Build 2019 and is aiming to make it available to all Office 365 customers by the end of May. An Improved and More Consistent Search Experience Office 365 users know that the search experience isn’t consistent. For example, the OneNote app on Android only searches open notebooks. To search closed notebooks stored in your Office 365 tenant, you need to use Delve or search from the Office. com homepage. Delve doesn’t search email, so for that you’d need to open Outlook. And the search box in Windows 10 only searches your OneDrive documents but not files that colleagues have shared with you. Microsoft Enterprise Search is coming to Windows 10 (Image Credit: Russell Smith) Looking for your ‘stuff’ can be frustrating. You need to know which application to search in to get the right results. Microsoft Enterprise Search helps to solve this problem by providing a more consistent search experience across apps and devices by surfacing people, files, and conversations within the context of your work. Conversations include those from Microsoft Teams and Yammer. Enterprise Search is designed to be... --- ### How to Synchronize Password Hashes Between AAD and Domain Services - Published: 2019-05-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-synchronize-password-hashes-between-aad-and-domain-services/ - Categories: Microsoft Azure - Tags: Active Directory, Azure Active Directory, Azure Active Directory Domain Services, cloud computing, Windows Server Active Directory - Article Type: How To In the second part of this two-part series, I show you how to synchronize password hashes between AAD and Domain Services, and how to join a Windows Server VM to the new domain. In the second part of this two-part series, I show you how to synchronize password hashes between AAD and Domain Services, and how to join a Windows Server VM to the new domain. Synchronize Password Hashes Before you can use Domain Services with your AAD user accounts, password hashes must be synchronized between AAD and Domain Services. In this example, I’m going to assume that you have cloud-only users in AAD. Cloud-only users must change their passwords to synchronize password hashes to Domain Services. Users can change their account password in the Azure AD Access Panel if self-service password resets are enabled in AAD. This feature requires AAD Premium licenses. If you want to force a password change for an existing user, you can do so in the Azure management portal by clicking Reset password in the Profile pane for the user. You will be provided with a temporary password for the account which you must give to the user. They will be required to change it at the next logon. But if you would like users to change their own password, give them the following instructions. Log in to the AAD Access Panel. Click the profile in the top right of the Access Panel and then click Profile in the menu. Under Manage account, click Change password. On the change password page, type the old account password, and then type and confirm a new password for the account. Click submit. You should wait 30 minutes before logging... --- ### Paul Thurrott's Short Takes: May 17 - Published: 2019-05-17 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-17/ - Categories: Cloud Computing, Mobile, Windows XP - Tags: News - Article Type: Overview Because we’re all going to die anyway, this edition of Short Takes looks at a horrible new set of Intel vulnerabilities, Microsoft fixes a major security flaw in Windows XP (yes, really), Microsoft partners with Sony on video game stream (again, yes, really), and much, much more. Intel: We’re all doomed. Again. Good news for those pining away for the heady days of Meltdown and Spectre: This week, bumbling microprocessor giant Intel announced that it and several security researchers have coincidentally both found several new processor flaws, and they’re even more serious---and harder to fix---than Meltdown and Spectre! The new flaws are called Microarchitectural Data Sampling, or MDS, but you can call them by their more common name, ZombieLoad. Intel says that the flaws impact all of its microprocessors going back to 2011---so, all of them, then---though it has mitigated the flaws on the microprocessors it released in 2019. Which ... what, means that Intel knew about these flaws last year at the latest, right? Great company, that Intel. It would be terrible if something shaped like Qualcomm happened to it. “AMD Ready To Run Again As ZombieLoad Attacks Intel” Sorry, but you can’t unflush a toilet. Microsoft fixes a major security flaw in Windows XP. Yes, it’s still 2019. This week, Microsoft took the unusual---but not unprecedented---step of fixing a flaw in Windows XP, an operating system that it has not officially supported since 2014. “The vulnerability is ‘wormable’, meaning that any future malware that exploits this... --- ### SharePoint Page Templates Have Finally Arrived, Here's How to Use Them - Published: 2019-05-16 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-page-templates-have-finally-arrived-heres-how-to-use-them/ - Categories: SharePoint Online - Tags: Modern SharePoint, SharePoint News - Article Type: Overview Jasper Oosterveld, Microsoft MVP & InSpark Modern Workplace Consultant, discusses a new release for the modern SharePoint news experience. The ability to create templates. Since the introduction of SharePoint news, for the modern SharePoint experience, our customers have been asking for the ability to create templates. Unfortunately, this option wasn't available. There was a workaround though. You could create a copy of an existing news post: The major downside of this workaround is usability. Business users have to browse to an existing news post, that's not always easy to find, to create a duplicate. Business users want to create a news post, based upon a template, from the add a news post experience. You also have to realize it's not easy, for the less technical folks, to build a news post with all the available web parts and sections. Although the experience can be user-friendly, it's doesn't implicate everyone is able to create beautiful news pages. Template will finally solve this problem and they are starting to become available. This new SharePoint feature is, for now, only available for Targeted Release tenants. Let's take a closer look at the new feature. Three templates The create a news post menu has a new look & feel:   Microsoft provides us with three templates: Blank Visual Basic text You can create a news post based on one of these three templates. Let's use the visual template:   Imagine, you want to provide your sales department with a template to quickly and easily announce sales-related items. You start with the canvas and build your template; this is easily accomplished by using the out-of-the-box SharePoint web parts. For... --- ### What is Windows Subsystem for Linux 2? - Published: 2019-05-15 - Modified: 2024-09-04 - URL: https://petri.com/what-is-windows-subsystem-for-linux-2/ - Categories: Windows 10 - Tags: Build 2019, linux, Windows 10, Windows Subsystem for Linux, WSL - Article Type: News What is the Windows Subsystem for Linux and what are the changes coming in version 2 of the technology? At its annual Build conference in Seattle this week, Microsoft announced version 2 of the Windows Subsystem for Linux (WSL) along with Windows Terminal, a new terminal for Windows 10. You can read more about the announcement here. WSL has proved popular with developers and administrators that work with Windows and Linux. Microsoft is continuing to invest in WSL to make it as easy as possible for IT professionals to work with Linux without needing to use a Linux desktop. What is the Windows Subsystem for Linux? If you’re a developer or system administrator that needs to compile Linux binaries or use Linux tools, then the Windows Subsystem for Linux (WSL) is for you. WSL primarily makes it easier for developers to work with Linux in Windows. WSL 1 isn’t based on virtual machines or containers but instead it provides an emulation layer that maps Windows kernel system calls to Linux kernel system calls, allowing Linux binaries to run in Windows unmodified. WSL also maps Windows services, like the filesystem and networking, as devices that Linux can access. WSL isn’t intended for users that want to spin up their favorite Linux apps, but it is a tool for developers and sysadmins that need Linux interoperability in Windows. Instead of using a VM or container, WSL 1 virtualizes a Linux kernel interface on top of the Windows kernel. This means that running WSL only requires a minimal amount of RAM. And when not in use, the WSL driver isn’t... --- ### Microsoft Enables Longer Azure Active Directory Passwords > You can now protect your Azure Active Directory account with a 256-character password, including spaces. This news will bring much joy to Office 365 administrators and others who hated the previous 16-character limit. - Published: 2019-05-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-enables-longer-azure-active-directory-passwords/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD), Office - Tags: Azure Active Directory, Office 365, Password length - Article Type: How To, News You can now protect your Azure Active Directory account with a 256-character password, including spaces. This news will bring much joy to Office 365 administrators and others who hated the previous 16-character limit, but please don't rush into forcing users to change their passwords without taking the time to pause and consider how best to proceed. Longer passwords are good, but they should be only one part of a strategy to protect user accounts. Azure Active Directory Passwords Can Now Go to 256 Characters Yesterday’s announcement by Microsoft that they had removed the 16-character limit for passwords in Azure Active Directory had been coming for a while. It takes time for Microsoft to deploy such a fundamental change across all the places in their cloud systems where passwords can be changed. The first leaks that something was happening came in late April when people noticed that the user interface in components like the Azure AD portal and Office 365 Admin Center offered administrators the chance to set 256-character passwords. This was discussed on Twitter, even if I didn’t believe the story at the time (Figure 1). Figure 1: Twitter reveals 256-character AAD passwords on 24 April (image credit: Tony Redmond) The new password limit is also mentioned in the Microsoft 365 User Management blog for April 2019 (posted on 7 May). You can’t say that Microsoft didn’t give us hints that this was coming. Sweet Sixteen Was Too Short Azure Active Directory 16 characters passwords go back to the early days of the Microsoft cloud. Recent feedback from customers emphasized the need for Microsoft to do better both by increasing the limit and allowing spaces to support pass phrases. Using the New Limit Now that Azure Active Directory supports 256-character passwords, should you force users to create longer passwords? The obvious answer is no. At least, not yet. Changing passwords can be disruptive and a reasonable amount of... --- ### Microsoft Previews Azure Active Directory Entitlement Management > Microsoft launched the preview of Entitlement Management, a new part of their Azure Active Directory Identity Governance program. The idea is that you can manage access to resources via policy. - Published: 2019-05-14 - Modified: 2024-09-04 - URL: https://petri.com/azure-active-directory-entitlement-management/ - Categories: Microsoft 365, Microsoft Entra ID (Azure AD) - Tags: AAD, Azure Active Directory, Entitlement Policy, Identity Governance - Article Type: News Microsoft launched the preview of Entitlement Management, a new part of their Azure Active Directory Identity Governance program. The idea is that you can manage access to resources via policy, which seems to be a good thing, especially in large organizations where objects like Office 365 Groups, SharePoint Sites, and Teams might just get a little out of hand. The preview is interesting, but like all previews, it needs some work to be ready for prime time. Identity Governance for the Enterprise If you’re willing to stump up for premium licenses, Azure Active Directory (AAD) offers several methods to control access to privileged or confidential information under the Identity Governance moniker. I like Access Reviews, which forces regular reviews of mechanisms like group membership to stop people retaining privileged access via security or Office 365 groups. Given the use of Azure B2B collaboration (guest user accounts) to allow external access to resources like Groups, Teams, and Planner, it’s almost inevitable that some guest users keep membership long after their need passes. Regular reviews of group membership forces owners to decide if continued membership is justified. It’s a good way of limiting access to resources to those who need access for as long as they need access. Entitlement Management Microsoft has now launched the preview of Azure AD Entitlement Management, policy-driven access management for Office 365 Groups, apps, and SharePoint Online sites. This is not something that will interest small tenants where the administrator knows everything that’s going on, but it should be considered by large enterprise tenants where automation becomes hugely important for access management. Anyone can enable the preview by going to the Identity Governance section of the Azure AD portal. Be aware that once the feature is generally available, Microsoft might enforce licensing controls and you’ll need to buy Azure AD Premium P2 licenses to continue. This won’t be a problem if you have the Enterprise Mobility and Security or Microsoft 365 E5... --- ### Microsoft Looks to Push Teams Forward with new Apps, Monetization Opportunities - Published: 2019-05-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-looks-to-push-teams-forward-with-new-apps-monetization-opportunities/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Build 2019, Microsoft, News, Teams - Article Type: News Microsoft is about to enable functionality inside of Teams that will allow for ISVs to build a business around the communication platform. To say that Teams has been a success is a bit of an understatement. With more than 500,000 organizations now using the communication tool, the application has been rapidly adopted at a pace unlike any other previous Office platform. At Build last week, Microsoft dedicated a sizable number of sessions to the application and also talked more about its future as well. For Independent Software Vendors, or ISVs, this new platform is about to open up to monetization in a way that will incentive quality app development and will streamline the approval process for third-party solutions. Coming soon is the Microsoft Partner Center, which will be the centralized location where you will publish and manage your Teams application. This partner center will also streamline the approval process with a single submission step for faster turnaround and all the approval/rejection notices will be in one place as well; say goodbye to the alias email address challenges or multi-step processes that are currently used today. But for ISVs, the newest opportunity will be the monetization of their applications inside of Teams; Microsoft announced at Build that monetization will be enabled soon and that they will have an early access program for a small group of developers to trial the process. One thing that Microsoft does not mention in the Build session, which you can view here at about the 50-minute mark, is that they will be taking a cut of the revenue from apps sold through the Teams store. The company said... --- ### How to Change the Default Search Engine in Chromium-Based Edge - Published: 2019-05-10 - Modified: 2024-11-19 - URL: https://petri.com/how-to-change-the-default-search-engine-in-chromium-based-edge/ - Categories: Windows Client OS - Tags: Chromium, Microsoft Edge, Windows 10, Windows 7 - Article Type: How To Microsoft has released a new version of their Edge browser, here is how to change the search engine from Bing to Google. Last month Microsoft launched the Insider program for its new Chromium-Based Edge browser, which will eventually replace the ‘classic’ version of Edge that ships with Windows 10 today. There are three different channels: Beta, Dev, and Canary. At the time of writing, Insiders can only download Dev and Canary channels. The Dev channel is what I’m going to use in this article, and it is updated weekly. The Canary channel receives daily updates for Insiders that want changes as soon as they are available and are prepared that there might be some instability. The new Edge has received an almost overwhelmingly positive reception. And so far, after a week of use, I can say I’m impressed. Provided that Microsoft doesn’t inhibit performance as it adds features, I’ll be happy. But there are a couple of features that are missing from classic Edge that I miss. Namely Windows 10 Timeline integration and the ability to set aside tabs. For those of you that would like to try the new browser before it is officially released later in 2019, and if you are not familiar with Google Chrome, one thing that did stump me for a bit was how to change the default search engine. Microsoft sets the default search engine to Bing, so when you search from the address bar, Bing is used to return the results. But I prefer to use Google instead. Change the Default Search Engine in Chromium Edge It could be that the ability to... --- ### Paul Thurrott's Short Takes: May 10 - Published: 2019-05-10 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-10/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it was a big, big week, this edition of Short Takes looks mostly at Build 2019, Microsoft’s annual developer conference. Because it was a big, big week, this edition of Short Takes looks mostly at Build 2019, Microsoft’s annual developer conference. Build 2019 opened with an awkward whimper This year’s edition of Microsoft’s was supposed to open with a great HoloLens 2 demo of the Apollo 11 moon landing. But when the demo immediately failed, the two presenters---ILM’s John Knoll and author Andrew Chaikin---awkwardly stood silently for a few moments before saying, “thanks for your time” and then exiting stage left. Further awkward, it took a few minutes before Microsoft CEO Satya Nadella followed them on stage, and then the entire keynote kept making references---like “mission control” and “moon shot”---to a demo that had become an embarrassment. It’s easy to blame the presenters, who didn’t really handle the fail all that well. But the real fault here is on Microsoft: Given that we now know this demo had failed repeatedly the night before and the morning of the keynote, why didn’t it have backup units and a video of a completed demo---which exists, and is pretty cool---ready to roll just in case? That was just unprofessional, sorry. “What’s Microsoft’s vision for conversational AI? Computers that understand you” I just want to be held. Was Build 2019 ... boring? Apple and Google treat the keynotes for their respective developer shows, WWDC and Google I/O, as consumer press events, and they’re full of fun product demos and upgrades. Microsoft used to veer into that territory, too, but with less and... --- ### Exchange and the Turla LightNeuron Attack > Turla, a Russian cyber-espionage group is reported as being behind an attack on Exchange on-premises servers that uses transport agents to capture and process messages for selected users. - Published: 2019-05-09 - Modified: 2024-09-04 - URL: https://petri.com/exchange-turla-lightneuron-attack/ - Categories: Exchange 2013, Exchange 2016, Exchange Server - Tags: Exchange 2013, Exchange 2016, Transport agent, Turla LightNeuron - Article Type: News Turla, a Russian cyber-espionage group is reported as being behind an attack on Exchange on-premises servers that uses transport agents to capture and process messages for selected users. It's an attack vector that hasn't been seen before and raises the question of how often administrators should review transport agents active on their servers. The important point is that unless your network is compromised, hackers cannot install transport agents on Exchange servers and this attack is more theoretical than practical. Another Day, Another Attack May 7 brought news of an attack on Exchange (on-premises) servers by Russian hackers. The attack uses a transport agent and is the first known of its type. Before anyone gets too excited, it's important to underline that the attack can only happen if an Exchange server is already fundamentally compromised. Transport Agents Every message passing through an Exchange server goes through the transport service. Having a single pipeline means that you can have confidence that every message goes is processed in the same way, including passing through all installed transport agents, which can examine and update message properties. However, it also means that if an attacker can introduce a transport agent, they have access to every message. In the past, transport agents were used for purposes such as the enforcement of ethical firewalls or to apply auto-signatures to outbound messages. The introduction of transport rules in Exchange 2010 removed the need to use transport agents in many cases, but some examples still persist and agents are supported in all current versions of the product (here's the API documentation). Exchange Online doesn't allow Office 365 tenants to install transport agents, so this avenue of attack is closed off in the cloud. Turla Attacks As explained in a very thorough analysis by cyber-security firm ESET, Turla, a cyber-espionage group with a history of attacking high-profile targets, created a transport agent (LightNeuron) sometime around 2014. To get the transport agent onto a server, the attacker must... --- ### VMware Extends the Hybrid Cloud to Azure - Published: 2019-05-08 - Modified: 2024-11-19 - URL: https://petri.com/vmware-extends-the-hybrid-cloud-to-azure/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft 365, Microsoft Azure - Tags: Azure, Azure Active Directory, Cloud, cloud computing, hybrid cloud, Office 365, Windows 10 - Article Type: Overview his new partnership underscores that Azure is Microsoft’s priority going forward and their new open attitude is all about enabling Microsoft to extend Azure’s reach. Let’s take a closer look at what Microsoft and VMware’s new partnership means for the hybrid cloud. VMware and Microsoft’s latest announcement called Azure VMware Solution shows that beyond a doubt that the Microsoft of today, is a totally different company from the Microsoft of 10 years ago. At the Dell Technologies World in Las Vegas, CEO Satya Nadella of Microsoft and CEO Pat Gelsinger of VMware announced a new hybrid cloud partnership that will enable VMware customers to extend their VMware infrastructure to the Microsoft Azure cloud. There’s little doubt that the old Microsoft of a decade ago considered VMware a tier one competitor and the thought of them partnering together seemed highly unlikely at best. This new partnership underscores that Azure is Microsoft’s priority going forward and their new open attitude is all about enabling Microsoft to extend Azure’s reach. Let’s take a closer look at what Microsoft and VMware’s new partnership means for the hybrid cloud. Seamless vSphere hybrid cloud connectivity with Azure There were two major parts to the new Microsoft VMware partnership. First, with Azure VMware Solutions, Microsoft will provide a native VMware based cloud infrastructure solution that’s running on Microsoft Azure. This is essentially like the arrangement that VMware has had with Amazon for the past couple of years. Azure VMware Solutions run on the Azure cloud platform but they are built with VMware Cloud Foundation. VMware Cloud Foundation provides software defined compute, storage, networking and management for both on-premise infrastructure and the Azure cloud deployment. This essentially allows businesses to seamlessly extend their on-premise VMware infrastructure with the hybrid cloud... . --- ### Three Ways to Migrate to Windows 10 - Published: 2019-05-08 - Modified: 2024-09-04 - URL: https://petri.com/three-ways-to-migrate-to-windows-10/ - Categories: Windows 10 - Tags: In-Place Upgrade, migration, Windows 10, Windows 7, Windows Autopilot - Article Type: Overview In today’s Ask the Admin, I’ll look at three different ways you can migrate from Windows 7 to Windows 10. Windows 7 reaches end of life January 14th, 2020, leaving less than a year to migrate to Windows 10 or pay for security fixes through to January 2023. If you don’t migrate by January 14th, 2020, Windows 7 will stop receiving security updates, putting your devices at risk. And even if your organization pays, it won’t come cheap. In the first year, prices start from $25 dollar per device, doubling each year thereafter. Although it’s likely that customers with volume licensing agreements will get discounts on the list prices. For more information, see Microsoft's Windows 7 Extended Support Pricing Announced on Petri. If you haven’t started planning your Windows 10 migration yet, first decide how to migrate the OS, user data, settings, and applications. The options for migrating to Windows 10 have changed since Windows 7. In-Place Upgrade Microsoft has undertaken a lot of work in Windows 10 to make sure that upgrades are more reliable than in the past. In-place upgrades are now the recommended method when moving to Windows 10 on the same hardware because they are the fastest way to migrate from Windows 7, provided that you are migrating to the same architecture, i. e. 64-bit to 64-bit; and the same or higher SKU. For example, you can’t perform an in-place upgrade if you intend to move from Windows 7 Enterprise to Windows 10 Pro. In-place upgrades install a clean copy of Windows 10 on the disk, moving the previous installation to a folder called Windows. old... . --- ### How to Set Up (Microsoft Entra) Azure AD Domain Services > In this article, I’ll show you how to set up Azure AD Domain Services and configure DNS. In Plus, I’ll discuss password hash synchronization requirements and how to perform a domain join operation. - Published: 2019-05-07 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-azure-active-directory-domain-services-part-1/ - Categories: Identity Management, Microsoft Azure, Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory, Azure Active Directory Domain Services, cloud computing, featured-top-right, Windows Server Active Directory - Article Type: How To How to set up Azure Active Directory Domain Services In this article, I’ll show you how to set up Azure AD Domain Services and configure DNS. In the second part, I’ll discuss password hash synchronization requirements and how to perform a domain join operation. Azure Active Directory (AAD) Domain Services allows organizations to “lift-and-shift” apps that use on-premises AD for authentication to the cloud, extending the capabilities of Azure Active Directory (AAD) to provide many of the features of on-premises Windows Server Active Directory (AD) but without the effort of installing domain controllers (DCs), setting up Azure ExpressRoute or a VPN to connect on-premises domain controllers (DCs) to Azure. Domain Services extends AAD to support Kerberos, NTLM, Group Policy, domain join, LDAP bind and read, Secure LDAP, custom domain names, DNS management, and custom Organizational Units (OUs). In addition to these features, it provides high availability, account lockout protection, and management using familiar tools. How to set up Azure AD Domain Services Before you can set up Domain Services in Azure, you’ll need an Azure subscription and at least one Azure Active Directory tenant. It’s also worth noting that Domain Services isn’t available in all regions. To check availability for the region you intend to work in, see Microsoft’s website here. If you’re not familiar with Azure AD, check out What is Azure Active Directory? on Petri. Let’s get started and deploy a new Domain Services resource in Azure. Log in to Azure and follow the instructions below. Click + Create a resource on the left of the... --- ### [Sponsored] The Need for PST Eradication from Office 365 Tenants > The PST is now a very old file format. Originally introduced to give users the ability to store email moved from their Exchange mailbox, the need for PSTs disappeared years ago because Office 365 users have massive mailboxes. - Published: 2019-05-07 - Modified: 2024-09-04 - URL: https://petri.com/pst-eradication-office-365-tenants/ - Categories: Exchange Online, Microsoft 365, Office, Outlook - Tags: Exchange Online, mailboxes, migration, Personal Storage Table, PST, PST Collection, Quadrotech - Article Type: Opinion The PST is now a very old file format. Originally introduced to give users the ability to store email moved from their Exchange mailbox, the need for PSTs disappeared years ago because Office 365 users have massive mailboxes. Despite this, some organizations persist in allowing people to use PSTs. This post is sponsored by Quadrotech, you can learn more about their PST Migration tool here. Old File Format, Time to Go Seen through the lens of 1996 (think of the excitement caused by Windows 95), a PST was a pretty good deal. Exchange mailboxes were small because storage was expensive. The first version of Outlook was under development, and people wanted more space. Microsoft dutifully delivered the Personal Storage Table and even allowed Outlook to deliver email to an Inbox in the PST. All was well. That was 21 years ago. Time has moved on and PSTs don’t look so good when viewed through the lens of current technology. The file format is notoriously insecure (password crackers are easily available) and prone to corruption. But more importantly, the easy availability of mailbox storage and the advent of features like Exchange Online expandable archives obsoleted the PST years ago. I’m no fan of PSTs and eschew their use at all times. In 2016, I helped write an ebook called The Complete Guide to Eradicating PST Files. The ebook is still available, and its focus is still correct: it’s long past time to get rid of PSTs. Sony Loses Sensitive Data on PSTs Even the most ardent defender of the PST can’t say that these files are secure. The infamous Sony Pictures hack in 2014 is just one example where companies lost information in PSTs. Attackers stole like backup. pst and archive. pst for 179 mailboxes and extracted lots of deliciously salacious information... --- ### Microsoft's New Collaboration Experience Sets the Course for the Future of Office - Published: 2019-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-collaboration-experience-sets-the-course-for-the-future-of-office/ - Categories: Microsoft 365, Office - Tags: Build 2019, Fluid Framework, Microsoft, News, Office 365 - Article Type: News Microsoft is building a new collaboration framework that is going to significantly change how and where you interact with data as it will soon no longer be tied to a specific application or location. If there is one thing that Microsoft loves to talk about, it's collaboration. The company's Office 365 platform has become the benchmark of the industry and tools like Teams are helping to improve workflows and productivity at big and small companies around the globe. But it's no secret that when it comes to document collaboration, G-Suite has a better experience. At Build this week, Microsoft has announced Fluid Framework which aims to deliver a new, web-based platform and componentized document model, for shared interactive experiences. The company is promising that with this new framework, the speeds for co-authoring will surpass anything else offered in the industry. While Microsoft does not explicitly say it, it's clear that they are taking what G-suite offers, will improve the experience, and make it more widely available to their users and partners. Microsoft says that this new framework will "Enable content, e. g. , from the web or productivity apps, to be deconstructed and reconstructed into modular components so people can more easily create together" but if you cut out the jargon, it means that it will be easier to move content from outside sources, into your productivity applications. Further, Microsoft says that this new framework will make it easier for digital assistants to help co-author documents by fetching content, providing photo suggestions, identifying experts, translating data, and more. What's interesting here is how Microsoft describes this new framework at a high level as a "free-flowing canvas". While I may be reading into this a bit too... --- ### Microsoft's Overhauling Enterprise Search With a Zero Typing Experience - Published: 2019-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-overhauling-enterprise-search-with-a-zero-typing-experience/ - Categories: Microsoft 365, Office - Tags: Build 2019, Enterprise Search, Microsoft, Microsoft Search, News - Article Type: News Later this month, Microsoft will be rolling out a new search workflow for enterprise customers that starts with a zero typing experience. It feels like every couple of months, we are talking about Microsoft enhancing, updating, or changing the location of a search box in various applications. At Build 2019, Microsoft is overhauling its enterprise search experience that will make it look and feel more consistent across its various implementations. Microsoft's Enterprise Search, starting later this month, will include AI technology from Bing and personalized insights from the Microsoft Graph. The goal is quite simple, the company hopes these updates will make your search experiences more accurate and surface relevant content, faster, with an end goal of helping to increase your productivity. One of the new features is a zero typing experience that will instantly provide personalized results before typing a query into the box. With this feature, results like who you frequently share documents with and other content that you were working on recently, will be pre-populated. In addition, standard search features that you would expect from a modern search experience will be available like key phrase suggestion, query history, and the ability to include results from across your entire organization. And like nearly all Microsoft products, search will be extensible with third-party connectors but that functionality will not arrive until later this year. The core search experience will start rolling out later this month to Microsoft 365 and Office 365 commercial subscribers. --- ### Microsoft's Building its own Terminal for Windows 10, Adding Features to Windows Subsystem for Linux - Published: 2019-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-building-its-own-terminal-for-windows-10-adding-features-to-windows-subsystem-for-linux/ - Categories: Windows 10 - Tags: Build 2019, Microsoft, Terminal, Windows 10 - Article Type: News Microsoft has built a proper Terminal for Windows 10 and the company is also adding new features to the Subsystem for Linux. With the release of Windows 10, Microsoft made several fundamental changes to how the company thinks about its own platform as well as the needs of its users. One of the biggest additions with Windows 10 was the introduction of the Subsystem for Linux and announced at Build today, the company is going to deliver a first-party terminal. Appropriately called Windows Terminal, this new tool will bring to Windows a new environment for users of PowerShell, Cmd, Windows Subsystem for Linux (WSL) and all forms of command-line application to interact with their applications and platforms. Windows Terminal will support emoji-rich fonts and graphics-processing-unit-accelerated text rendering. Further, it will also enable multiple tab support as well as theming and customization, allowing users to personalize their Terminal. Yes, you read that correctly, even though Microsoft is not releasing Sets anytime soon, the new Windows Terminal will support a tabbed interface. But you will have to wait a little bit to play with the new tool as it will arrive in June for testing. In addition to Windows Terminal, Microsoft is also announcing updates for Windows Subsystem for Linux 2 that brings with it significant speed improvements and that WSL now supports running Linux Docker containers. With the addition of Terminal and the updates to the Subsystem for Linux, Windows is pushing further down the road of working to replace the need to boot into a Linux distro for tools that developers often prefer. Is Windows better than a native install of your... --- ### Microsoft's Bringing New Feature to its PowerApps Platform - Published: 2019-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-new-feature-to-its-powerapps-platform/ - Categories: PowerApps - Tags: Build 2019, Microsoft, Powerapps - Article Type: News At Microsoft's Build conference this week, the company is making a significant number of announcements related to the company's PowerApps platform. As a proud non-developer, I typically complete ignore Microsoft Build because of Visual Studio this and Python that just don’t interest me. So I am really surprised to be writing this article this morning but, based on the news that is coming out this morning I felt it was necessary. Why? Because there are a whole bunch of announcements about our favorite no-code/low-code solution PowerApps. These announcements span both Canvas and Model-driven apps and also provide light into how the two platforms continue to come together. If you are into PowerApps and are not a developer (like me), then give me the benefit of the doubt and keep reading. Some of the announcements when you are scanning the headings might not seem applicable, but I am going to do my best to make sure you know why you should care. Also, one of the core tenants of learning and being awesome at PowerApps is planting seeds. Taking mental notes of all of the pieces, so you know where and what to look for when you get asked to do something you haven’t done before. Last thing, I promise my best to translate all of the fancy, developer acronyms along the way. PowerApps Component Framework get more powerful – Custom Controls This one is easy. We all were excited about PowerApps Components and their reusability when they were released earlier this year. Well, today Microsoft has ramped that story up. Instead of you and I just taking the controls... --- ### Microsoft's Bringing New Privacy Controls, IE functionality, and Collections to Edge - Published: 2019-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-new-privacy-controls-ie-funcationality-and-collections-to-edge/ - Categories: Windows Client OS - Tags: Edge, Microsoft, News - Article Type: News Microsoft is going to solve its three-browser problem with a new feature in Edge and is also going to help retain more control of your browsing data too. Microsoft has a browser problem, technically they have three browser problems. When Microsoft's new Chromium-based Edge browser ships later this year, the company will have three browsers: Internet Explorer, old Edge, and new Edge. This is an issue for multiple reasons but announced at Build 2019 today, the company has a path forward that will help reduce the number of browsers that ships with Windows 10 while also making it's new Edge browser, a little bit better. Microsoft has announced that in a future update coming to the new Edge later this year, the company will enable the ability to run Internet Explorer via a tab. This new feature will address the legacy issue where companies have intranet sites and applications that only render correctly inside of Internet Explorer. While this may add a little bit of bloat to the new Edge, it will also reduce the complexity of having to juggle multiple browsers for both IT and the end user. Also coming soon to Edge are enhanced privacy controls; Microsoft will introduce new settings in its browser that will let you control how third-parties can track you across the web. There will be three settings, unrestricted, balanced, and strict that will let you have better control over who and where third-parties are seeing your private browsing data. And finally, a new Collections feature will help customers collect, organize, share and export content more efficiently, and it will also link into Office as well. While none of these features are... --- ### Microsoft's Windows Hello Takes Another Step Towards a Password-Less Future - Published: 2019-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-windows-hello-takes-another-step-towards-a-password-less-future/ - Categories: Security - Tags: Microsoft, News, Security, Windows Hello - Article Type: News Microsoft is bringing Windows Hello to new places that will help make it easier to log in more securely to your Microsoft account. The idea of using strong and secure passwords makes sense on paper but in practice, it's not always practical. From users creating weak passwords to sharing login information, passwords have their strengths but the weaknesses are also significant. Microsoft has been on a crusade to move towards a password-less future and has gone so far to even say that changing your passwords frequently is no longer a best practice. To help push the industry forward, with the Windows 10 May 2019 update, Windows Hello will achieve FIDO2 certification. What this means is that when using a supported browser like Edge and Firefox, Chrome is not specifically mentioned but it looks like support will arrive by the end of the year, you will be able to login to your Microsoft account using Windows Hello instead of a password. Windows Hello is included in all newer Surface products and many other OEM devices have support for the platform with fingerprint readers too. There are also third-party devices that you can attach to a laptop or PC that can utilize Windows Hello as well for biometric login support as well. While this solution for accessing your Microsoft account doesn't fully replace the needs for passwords, it is a more secure way to control who has access to your content. And hopefully, with Microsoft pushing this mechanism forward, other companies will join the party and enable Windows Hello authentication for their services to reduce the impact next time a website has its database compromised... . --- ### Networking Outage Disrupts Microsoft's Cloud Platform In Nearly Every Region - Published: 2019-05-02 - Modified: 2024-09-04 - URL: https://petri.com/having-trouble-connecting-to-microsoft-services-you-are-not-alone/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News, Office 365 - Article Type: News Unable to connect to various Microsoft services? You are not alone with everything from Office to Skype and even some Xbox services appear to be impacted Call it a case of the Monday's but on a Thursday, users across the US are reporting issues connecting to various Microsoft services. Everything from Office to Skype and even some Xbox services appears to be impacted but we don't know the full extent of the disruption at this time. The official support account on Twitter says that "engineers are investigation connectivity issues with Azure Services. More information will be provided as it becomes available. " Based on the status page, it looks like networking is down for every single region around the globe except for the company's Azure Government Cloud. This is a significant outage and is impacting nearly every single Microsoft service in some capacity and based on the messages released by the support accounts, this is DNS related. As of 5:33PM ET, users are reporting that services appear to be returning to normal operation; If you are still having problems at this time, it should be resolved shortly. This outage impacted nearly the entire Microsoft cloud stack and lasted for around an hour and the timing was less than ideal, just a few days before the company hosts its largest developer conference of the year, Build. --- As more information comes in, I will continue to update this post or you can sign up to stay updated here. --- ### From Azure to the Edge, Microsoft's Announcing Several AI, ML, and IoT Features at Build 2019 - Published: 2019-05-02 - Modified: 2024-09-04 - URL: https://petri.com/from-azure-to-the-edge-microsofts-announcing-several-ai-ml-and-iot-features-at-build-2019/ - Categories: Uncategorized - Tags: Azure, Build 2019, Intelligent Edge, IoT, Microsoft, SQL Server - Article Type: News Microsoft is expanding its Azure, IoT, end Edge services ahead of build with new features and options as the company continues its push deeper into the cloud-computing era. Next week, Microsoft will be hosting its developer conference called Build in Seattle. The conference is designed for developers to learn about the latest tools and features from Microsoft and ahead of the keynotes, Microsoft is pulling back the curtain on several of the updates that will be discussed. On the Azure side of life, Microsoft is focusing on AI, machine learning, the intelligent edge, and is also sprinkling in a little blockchain as well. All of these new features will be discussed in more detail next week, but this should help establish part of the agenda for the Build conference. For more detailed information on Azure Sphere, check out Securing IoT with Azure Sphere on Petri. With Azure Machine learning, the goal continues to be to help simplify the process of building, deploying, and training of the models used to create the foundation for including this technology in various applications. This year, Microsoft is announcing or enhancing the following tools: MLOps capabilities with Azure DevOps integration provides developers with reproducibility, auditability and automation of the end-to-end machine learning lifecycle. Automated ML advancements and an intuitive UI make developing high-quality models easier. Visual machine learning interface provides no-code model creation and deployment experience with drag-and-drop capabilities. To enable extremely low latency and cost-effective inferencing, Microsoft is announcing the general availability of hardware-accelerated models that run on FPGAs, as well as ONNX Runtime support for NVIDIA TensorRT and Intel nGraph for high-speed inferencing on NVIDIA and Intel chipsets. While AI and... --- ### HoloLens 2 Developer Edition Arrives for $3500 or $99 Per Month - Published: 2019-05-02 - Modified: 2024-09-04 - URL: https://petri.com/hololens-2-developer-edition-arrives-for-3500-or-99-per-month/ - Categories: Hardware - Tags: HoloLens 2, News - Article Type: News Microsoft is releasing a Developer Edition of the HoloLens 2 but unlike the first generation device, this SKU won't save you any money. Earlier this year, Microsoft announced the second generation HoloLens at Mobile World Congress. The updated device improves upon the first generation hardware in nearly every way but one thing that was missing from the announcement was a way for developers to get their hands on the device. While Build may be happening next week, Microsoft is announcing this week that there will be a Developer Edition of the hardware. Starting at $3500, or $99 per month, the device will also come with Azure credits and free trials of Unity Pro and Unity Pixie Plugin for CAD Data. Unlike the first generation device which cost $5,000 and the Developer Edition had a reduced price, Microsoft is keeping the Developer Edition of HoloLens 2 the same price as the retail version of the hardware. Keep in mind, HoloLens is not a consumer product and this pricing for large companies is an easier pill to swallow. In addition, Unreal Engine 4 support will become available by the end of May; Microsoft and Epic announced back in February that this support would arrive in 2019 and it is nearly here. Microsoft is making a significant bet with HoloLens 2 and its other AR/VR initiatives. While the adoption has been slowly building momentum for the company and it is far from a ubiquitous product, the company is finding new uses for the hardware and shows no signs in pulling back from this segment. --- ### Office ProPlus Desktop Apps Get New Privacy Controls > Office ProPlus Version 1904 boasts new privacy controls and Microsoft has documented how it thinks about required and optional data collected from users. Office 365 still lacks privacy controls for the server apps. - Published: 2019-05-02 - Modified: 2024-09-04 - URL: https://petri.com/office-proplus-desktop-apps-new-privacy-controls/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Delve, GDPR, Microsoft Graph, Office 365, Office ProPlus, Privacy - Article Type: News Office ProPlus Version 1904 boasts new privacy controls and Microsoft has documented how it thinks about required and optional data collected from users. Office 365 still lacks privacy controls for the server apps. It remains to be seen if customers will be happy and consider that Microsoft has solved the GDPR issues identified in the Dutch DPIA report in November 2018. In November 2018, a Data Protection Impact Assessment (DPIA) report written for the Dutch Government slammed Microsoft for multiple GDPR violations. Most of the problems were in how Office applications gathered personal information and sent it back to Microsoft. The GDPR violations are around the lack of consent from the data owners and the inability to disable data collection. The DPIA largely focused on Office desktop apps, but Office 365 wasn’t blameless with personal data accumulating in the Office 365 audit log and other places. Office ProPlus Privacy Controls In March, Microsoft responded to say that they would add privacy controls to the Office ProPlus applications. Those controls are now available in Office ProPlus version 1904 (I see them in build 11601. 20144 for Windows) and can be accessed by going to your account settings and then choosing Account Privacy. You can then disable “connected experiences” as shown in Figure 1. Figure 1: Controlling connected experiences for Office ProPlus applications (image credit: Tony Redmond) If you disable the optional connected experiences, Microsoft says that either the ribbon or menu command for those experiences will be grayed out or users will see an error message when they try to use the feature. Connected Experiences Connected experiences obviously has something to do with an application making use of network (cloud) resources. In a blog posted on April 30, Julie Brill, Microsoft VP and Deputy General Counsel, divides the data collected by Microsoft into two categories: required and... --- ### Everything You Need to Know About Windows – April 2019 - Published: 2019-05-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-windows-april-2019/ - Categories: Windows Client OS - Tags: Active Directory, Microsoft Edge, Windows 10, Windows 7, Windows Admin Center, Windows Update - Article Type: News This month sees yet more changes to Microsoft’s Windows 10 servicing schedule, problems for users after April’s Patch Tuesday quality update, the new version of Edge released for Insiders, and new minimum disk space requirements for upgrading to the Windows 10 May 2019 Update. This month sees yet more changes to Microsoft’s Windows 10 servicing schedule, problems for users after April’s Patch Tuesday quality update, the new version of Edge released for Insiders, and new minimum disk space requirements for upgrading to the Windows 10 May 2019 Update. Microsoft Changes Windows 10 Servicing Schedule... Again This month Microsoft announced another shakeup of how it services and releases feature updates for Windows 10. The first and most immediate change is that Windows 10 version 19H1, which was due to ship at the beginning of April, will now be delayed until the end of May. Users experienced problems with Windows 10 version 1809, forcing Microsoft to pull the build from its update servers just a few days after it was made available. So, this change will help ensure that any major problems are ironed out before a broader public release. The build that Microsoft will make available in May has been moved to the Release Preview Ring for Insiders to test and it will be rolled out internally at Microsoft. Employees are being encouraged to test the build on their personal devices. Microsoft is also making the build available to OEMs and software vendors during this period. Because of these changes, Windows version 19H1 is now being officially referred to as the Windows 10 May 2019 Update. Additionally, users will not be forced to update to the latest Windows 10 feature release until the installed version has reached end-of-life. This will apply to all... --- ### Microsoft Looks to be Launching Universal Printing, from the Cloud - Published: 2019-05-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-looks-to-be-launching-universal-printing-from-the-cloud/ - Categories: Cloud Computing, Microsoft Azure - Tags: Microsoft, News, Printing, Universal Print - Article Type: News Ahead of Build, a new feature for Azure that may streamline the printing process has been uncovered. While Build may be kicking-off next week, it looks like some of Azure's upcoming announcements are showing up a bit early. And if you like printing, this new feature coming to Azure will make you squeal with joy, or possibly rage. A new feature that is marked as 'Preview' has shown up in the Azure portal and it is called Universal Print. As the name suggests, this process appears to make it much easier to print content with nearly any device connected to your Azure instance. Spotted by Walking Cat, you can check out the feature here but considering this is still in preview and hasn't even been announced, proceed with caution. Further, considering that printers are some of the least reliable pieces of equipment in an office, what could go wrong with attaching it to a cloud instance that is in preview and hasn't even been announced? This feature is likely an evolution of something Microsoft released last year that made it easier to print to on-prem printers from Azure AD-joined devices. If you do log in to the portal, none of the features are documented yet and simply say "This is Universal Print". Considering Build is taking place next week, it's likely that this feature will become available sometime next week. Or at the very least, it will be properly documented so that we have a better understanding of the complete feature set. Build takes place in Seattle from May 6th-8th and if you aren't doing anything on Tuesday... --- ### Everything You Need to Know About Azure Infrastructure – April 2019 Edition > In my monthly summary, I will summarize all the Azure infrastructure news from April, which appeared to be a month for security announcements. - Published: 2019-05-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-april-2019-edition/ - Categories: Microsoft Azure - Tags: App Service, App Service Migration, Application Gateway, AWS, AzCopy, Azure, Azure Functions, Azure Portal, Cost Management, Front Door, hybrid cloud, migration, PowerShell, Reservations, S3, Security, Security Center, storage, WAG - Article Type: Overview In my monthly summary, I will summarize all the Azure infrastructure news from April, which appeared to be a month for security announcements. In my monthly summary, I will summarize all the Azure infrastructure news from April, which appeared to be a month for security announcements. More Security Is ... Better? I have spent the last 3 months working on secure Azure network architectures for customers. A big emphasis of those designs has been logging, analysis, enforcement, and monitoring. As you can imagine, I have been engaging the Standard Tier of Azure Security Center. If you blindly follow the recommendations of Security Center then you will: Enable things you do not need. Break things you do need. Have a shorter stay with your employer/customer than you previously had planned. Let me give you some examples: Just-in-Time VM Access: I loved this feature in Azure. But a few months ago, The Security Center must have had one of those focus groups where a loud idiot steers things the wrong way. The processes that JIT VM Access (a) determines recommended machines and (b) implements the rules are simply broken. Machines with no external RDP/SSH are being recommended for JIT VM Access. And when you do enable it, the rules are placed in a position in the Network Security Group where they cannot work at all! This isn’t artificial intelligence; this is artificial stupidity. Storage Firewalls: I get the concept; bring the storage account firewall online so you do not risk someone connecting to it over the Internet with the really long & random secret key. I tried that. Unfortunately, several features for VM management &... --- ### Everything You Need to Know About Office 365 – April 2019 > This month read about G Suite migrations, how Slack is trying to stop the migrations, secuirty enhancements, and more. Always so much to keep up on. - Published: 2019-05-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-office-365-april-2019/ - Categories: Microsoft 365 - Tags: G Suite, Office 365, Powerapps, Security, Slack, Teams - Article Type: News PowerApps, Slack, and G-Suite migration tools; this month was filled with new Office 365 updates that you need to know about. This month, we look at some very random notes. Free Office 365 subscriptions, migrations from the yucky G stuff, security, and more. And clearly, I had too much caffeine because I feel very “cheeky” as I write about each topic. With SharePoint Conference being in May, I am certain next month will be jammed pack with news. Speaking of the conference, if you are there be sure to find me and say hello. Be warned, I am a hugger. O365 Developer Subscriptions can be renewed STOP! Don’t skip this. I know I used that developer word, but you still need this. Have you ever wanted your own Office 365 tenant so you could test things without fear of IT locking you out or without you destroying something important? Then get yourself an Office 365 Developer subscription for free. Now you can develop and test in Office 365 without destroying things. And the big announcement, is now you can renew the subscriptions. This is cool, and important if you want to continue to be awesome at Office 365. PowerApps added a ton of little features It is no secret; I love PowerApps and this month they gave you a whole bunch of reasons to love it more. They updated the Responsive App Properties, a new way to Debug, a semicolon change to cut down on errors to debug, icons got more flexible, and more. Those guys were on a tear of fixing the little nagging things that no one... --- ### Everything You Need to Know about SharePoint – April 2019 > SharePoint restores get better, PNP helps you make it look prettier, and finally those columns stay in place. It was a good month for SharePoint. - Published: 2019-05-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-april-2019/ - Categories: SharePoint - Tags: pnp powershell, SharePoint, Teams - Article Type: News For SharePoint fans, this month brings improved online teams restore features, sticky headers, and PNP makes the platform prettier. I did it. You would have thought everyone took the month off again based on the lack of cool announcements. But don’t worry, I was on the job and found you the best info. We all know they are just gearing up for the SharePoint Conference. To me, that means everything the announced this month are foundational pieces for the big news coming in May. Guess time will tell. File restore for SharePoint Online and Teams This is a confusing announcement to me because I feel like we have made it three times in some capacity. So let's say instead of new its better and more prevalent? The idea is the admin center now gives you an improved interface for getting in and restoring files from any point in time over the last 30 days. Very cool. Tony talks about the update and the admin center more in SharePoint Launches Files Restore and New Admin Center so I will not steal all of his thunder. Speaking of the announcement, really Teams is just a bolt on. Why? Because Teams, like Yammer and Groups, actually just store their files in SharePoint Online. So when you make SharePoint restore better, you get that in all of the apps. I digress. One more digression. This announcement so dominated my feed this month. The fact they are holding out on us for SharePoint Conference is just rude. Email notification for News, Organization Assets, and a better hero web part In Chris’s April... --- ### Previewing Azure Function App Premium Plans - Published: 2019-04-30 - Modified: 2024-09-04 - URL: https://petri.com/previewing-azure-function-app-premium-plans/ - Categories: Uncategorized - Tags: Azure, Function, Microsoft - Article Type: How To The new Premium Plans for Azure Function Apps try to address a number of shortcomings inherent to serverless computing. One of the appeals of serverless computing is the appeal of placing my code into an environment that will rapidly scale in and out to meet my needs. With Azure Function consumption plans, for example, I don’t need to specify instance counts, or minimums or maximums. If there are no events or requests for my code to handle today, I’ll not be using any resources in Azure, and I’ll pay nothing. Tomorrow, if there are 100 billion events, Azure will scale up compute power to meet the demand and send me a reasonable bill for the amount of CPU and memory my code consumed. But, serverless also has some downsides. Azure functions are notorious for having a cold start. The cold start is a delay in processing when the first event request arrives and Azure has to prepare computing power to host your application. With the consumption plan, there is also no control over the networking environment or the size of a computing instance. Behind the curtain of the serverless platform, there are real virtual machines. In Azure Functions, every VM instance is a one core virtual machine with 1. 5 GB of memory. Azure Function App premium plans started in preview this month. The premium plans try to remove the downsides of serverless computing while still giving you the benefits of rapid scale. What follows are some of the details. Going Premium Remember, everything you see here is still in Preview, so the interface and pricing are subject... --- ### Creating and Publishing a Teams Directory > If your Office 365 tenant has many private Teams, you might run the risk that people create duplicate teams because they don't know that a team already exists. Teams doesn't have a separate directory - Published: 2019-04-30 - Modified: 2024-09-04 - URL: https://petri.com/creating-publishing-teams-directory/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Deeplink, Excel, Office 365, Teams - Article Type: How To If your Office 365 tenant has many private Teams, you might run the risk that people create duplicate teams because they don't know that a team already exists. Teams doesn't have a separate directory but you can create one with PowerShell and publish the output in Teams. The magic is provided by deep links, which users click to navigate to a team they want to join. Avoiding Duplicated and Unwanted Teams A reader reported that their Teams deployment had run into a roadblock. By default, teams are created as private. This suits the owners because they want to control access to their data, but it creates a problem when people don’t know that a team already exists for a project or other purpose. They then go ahead and create another team and the organization ends up with duplicate teams to serve the same purpose. The teams might have different members and titles, but they’re duplicates all the same. The issue the reader had is the lack of a central Teams directory that users can browse to discover what teams exist, what they are being used for, and who’s responsible for the teams. A user can search for public teams and join them without hindrance but finding out about private teams is a different matter. The challenge therefore is to create a Teams directory that’s accessible to all users where they can find out about teams in the tenant that they’d like to join and to make it easy for them to join a team they find. Teams Deep Links and PowerShell The approach I took was to write a PowerShell script to output a list of teams, their descriptions, some ownership information, and a deep link to each team. A deep link is a URL to navigate to a specific part of Teams. In this case, we want to navigate to a team chosen... --- ### Microsoft and VMware are Bringing Microsoft 365 and Workspace ONE Closer Together - Published: 2019-04-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-and-vmware-are-bringing-microsoft-365-and-workspace-one-closer-together/ - Categories: Cloud Computing, Microsoft Azure, Virtualization, VMware - Tags: Azure, Microsoft, vmware - Article Type: News Microsoft and VMware are bringing Microsoft 365 and Workspace One closer together with new integrations. In 2018, Microsoft and VMware started to play in the collaboration waters by announcing Horizon Cloud would soon be available on Azure. Today, the two companies are taking things a step further and integrating their modern workspace suites: Microsoft 365 and Workspace One. Announced at Dell Technologies World 2019, customers that use both Workspace One and Microsoft 365 will soon be able to leverage the recently announced Windows Virtual Desktop. As part of this new agreement, VMware is going to extend the capabilities of Microsoft Windows Virtual Desktop to enable customers to further accelerate their cloud initiatives by utilizing Horizon Cloud on Microsoft Azure. In addition, VMware states that customers will also be able to use Workspace ONE to secure Office 365 apps and data through cloud-based integration with Microsoft Intune and Azure Active Directory. While Microsoft and VMware are still competitors, this new functionality will benefit both companies. Microsoft gets to expand the features of Azure and Microsoft 365 while tapping into VMware's extensive install base for its services. On the VMware side, they now have deeper access to Office 365 and Microsoft's cloud, making their solutions more flexible and available in more locations as well. Here's everything that is announced by these two companies today: Azure VMware Solutions Now Available: Through this collaboration, the companies have announced new Azure VMware Solutions, providing customers with a native, supported, and certified VMware experience on Microsoft Azure. VMware Workspace ONE Integrates with Microsoft 365: Joint Microsoft 365 and VMware Workspace ONE... --- ### Leveraging Virtualization for Improved Availability and Disaster Recovery - Published: 2019-04-29 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-virtualization-for-improved-availability-and-disaster-recovery/ - Categories: Backup & Storage, Cloud Computing, Hyper-V, Virtualization, VMware - Tags: Backup, Cloud, Disaster Recovery, Hyper-V, Virtualization, vmware, vSphere - Article Type: Overview While there’s no doubt that the use of the cloud and containers are rapidly growing, the reality is that server virtualization is and will remain the core technology for running the vast majority of enterprise applications in the foreseeable future. Today, the vast majority of production workloads are run on virtualized infrastructure and most businesses have virtualized their local infrastructure using either VMware's vSphere or Microsoft’s Hyper-V. VMs enable you to abstract your workload from the underlying server hardware. This degree of abstraction enables greater flexibility, efficiency, and availability than you can achieve running on bare metal. You can combine multiple workloads on a single physical server vastly reducing the total number of servers needed in your infrastructure. Fewer servers require less rack space, less power, less cooling and less networking equipment resulting in significant CapEx and OpEx savings. Virtualization and Availability Virtualization enables you to increase the availability of your workloads by reducing the planned downtime that accompanies system maintenance and patching. Virtualization also enables you to better meet your SLAs by dynamically moving your workloads to servers which have more available processing power. Technologies like Live Migration or vMotion enable you to move VMs between hosts without incurring any end-user downtime. This improves availability by enabling you to seamlessly move all of the VMs on a physical server to another available host while you perform maintenance on the server. Likewise, Hyper-V’s dynamic load balancing and VMware’s Distributed Resource Scheduler (DRS) improve application availability and responsiveness by monitoring and balancing host resource usage according to administrative policies. Virtualization and DR Even in the age of virtualization, backup is still the core of all disaster recovery (DR) plans. While backups play an important role in preserving your data, backups alone... --- ### How to Enable GPU Acceleration in Windows Containers - Published: 2019-04-29 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-gpu-acceleration-in-windows-containers/ - Categories: Windows Server 2019 - Tags: Azure IoT Edge, Docker, GPU acceleration, Windows 10 version 1809, Windows Containers, Windows Server 2019 - Article Type: How To Need a little extra GPU power inside your container? Here is how you can turn on GPU acceleration in Windows Containers. Windows Server 2019 and Windows 10 version 1809 brought with them some new features for Windows Containers. Including support for hardware devices and Graphical Processing Unit (GPU) acceleration. Because containers are often used for Internet of Things (IoT) workloads, applications need to be able to connect to sensors and other peripheral devices. But until now, that wasn’t possible with Windows Containers. At present, Windows Containers has limited hardware support for simple buses, like COM and I2C, but it is likely that Microsoft will expand this support in the future. But the need for GPU acceleration in Windows Containers might seem less clear. The first point is that Linux Docker and LXD containers already support GPU acceleration, so Windows needed to step up to that challenge. Secondly, there are certain types of applications that benefit from the parallel processing power offered by GPUs, enabling organizations to reduce costs and speed up their apps. One example that comes to mind is machine learning (ML). Accelerated Direct X and Windows ML Windows Containers now support GPU-accelerated DirectX in Windows Server 2019. DirectX isn’t just for games. It provides developers with a set of APIs that can be used for multimedia, computation, and simulation. DirectX is the go-to API for accelerated graphics, compute, and artificial intelligence (AI) on Windows, so it made sense for Microsoft to start there. And a nice side effect is that frameworks built on DirectX also benefit, like Windows ML, which is a set of APIs for AI... . --- ### How Microsoft Edge on Chromium Will Change the Windows 10 Lite and S Mode Proposition - Published: 2019-04-26 - Modified: 2024-09-04 - URL: https://petri.com/how-microsoft-edge-on-chromium-will-change-the-windows-10-lite-and-s-mode-proposition/ - Categories: Windows 10 - Tags: Google Chrome, Microsoft Edge, Windows 10, Windows 10 in S Mode, Windows Lite - Article Type: Opinion If Microsoft is serious about S Mode and Windows Lite, it needs a browser that is broadly compatible and performant. Unravelling years of legacy code in Windows has been an ongoing mission at Microsoft. First, we had MinWin, then OneCore, and now Windows Core OS (WCOS). But ultimately for end users, this work will culminate in a new OS for mobile devices. Codenamed Santorini, and sometimes referred to as Windows Lite, it is built on top of WCOS and it is a truly stripped back OS designed for users that don’t need the full power of Windows. As Microsoft’s answer to Chrome OS, Windows Lite will run UWP and PWA apps, and updates will be installed in an offline-mirrored partition so that there is no waiting when you reboot. Windows 10 in S Mode is an interim solution that has some of the benefits of Windows Lite. S Mode provides first line workers and the education sector with a secure OS and performance that lasts because it is restricted to apps from the Microsoft Store. Windows Lite and S Mode both prevent the installation of malicious win32 code from the Internet by locking down the OS to a curated app store, which significantly reduces the likelihood of devices being compromised. Store apps are isolated from each other and the operating system and the Store provides a clean mechanism for installation and removal. You can find out more about Windows 10 in S Mode here. Edge is the Achilles Heel of S Mode Microsoft has been pushing S Mode as a specialist appliance OS suitable for specific categories of... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2019) - Published: 2019-04-25 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-10/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it’s that time of the quarter again, this edition of Short Takes looks at Microsoft’s most recent quarterly earnings. Because it’s that time of the quarter again, this edition of Short Takes looks at Microsoft’s most recent quarterly earnings. Note: In case you missed it, Microsoft this week announced that it earned a net income of $8. 8 billion on revenues of $30. 6 billion in the quarter ending March 31. So, this edition of Short Takes focuses on the details behind those earning that were revealed during the post-earnings conference call and in Microsoft’s ancillary documentation. ---Paul Azure growth continues to be strong With revenue growth of 73 percent in the quarter, roughly consistent with the growth from the previous two quarters, Azure continued blazing its path to world domination. And while Microsoft doesn’t break out how much Azure contributes to its $9. 7 billion Intelligent Cloud business unit, it must be a primary contributor. Some have pointed to Azure’s growth slowing---the business grew revenues by 93 percent in the year-ago quarter---but that’s ridiculous: Azure is simply running into the Law of Big Numbers, and 70+ percent growth is outstanding. Microsoft CEO Satya Nadella called Azure the “world’s computer,” and note that over 95 percent of the Fortune 500 run their workloads on Microsoft’s cloud. “Microsoft Resists Gravity’s Pull” It’s like an airplane! No, Commercial Cloud is still not a Microsoft business Speaking of the cloud, Microsoft continues to maintain the fiction of something called “Commercial Cloud,” which is a non-transparent combination of various cloud-related businesses that span its actual business units. According to Microsoft, this fictional business unit... --- ### Microsoft Increases Minimum Storage Requirements for Windows 10 Feature Updates - Published: 2019-04-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-increases-minimum-storage-requirements-for-windows-10-feature-updates/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 1903, Windows 10 19H1, Windows 10 May Update - Article Type: News Microsoft is increasing the minimum storage requirement for Windows 10 feature updates but if this impacts your environment, you have more than a year to find a solution. Starting with Windows 10 1903, the version that will ship at the end of May, Microsoft is making several changes to the servicing of the platform. The company, starting with this release, is introducing a longer testing cycle and also is bumping up the minimum storage requirement. Previously, when installing the desktop version of Windows, you would only need 20GB of free space but spotted by PureInfoTech, the new requirement will be 32GB with this release. You can find the documentation supporting this change, here. While this change may not impact many, for those who are running Windows 10 on endpoints with older or lower-end specs, this could become a challenge. Not every device, especially if it is designed for first-line workers, includes a large amount of storage and by adding an additional 12GB requirements to the upgrade process, this could cause a few headaches for IT Pros. The latest version of Windows 10 is now available in the Release Preview testing ring which means that you can begin testing it today. Considering that Microsoft has become more generous with update lifecycles, if this issue is going to impact your environment, you have more than a year to figure out a solution. --- ### Teams PowerShell Module Generally Available (At Last) > Microsoft released the generally available (1.0) version of the Teams PowerShell module on April 24. The Get-Team cmdlet receives a big makeover (and slowdown), but overall the module is solid. - Published: 2019-04-25 - Modified: 2024-09-04 - URL: https://petri.com/teams-powershell-module-generally-available/ - Categories: Microsoft 365, Microsoft Teams, Office, PowerShell - Tags: Get-Team, New-Team, PowerShell, Set-Team, Teams - Article Type: How To, News Microsoft released the generally available (1.0) version of the Teams PowerShell module on April 24. The Get-Team cmdlet receives a big makeover (and slowdown), but overall the module is solid and you shouldn't need to make too many changes to scripts. Slow Progress to 1. 0 The Teams PowerShell module first appeared in March 2017. At the time, I wasn’t too impressed because the module was kind of odd in its approach and didn’t do a great job of managing teams. Over time, Microsoft updated the module (far too slowly for some) to a point where the preview versions 0. 9. 5 and 0. 9. 6 offered reasonable functionality. For much of the time, progress with the module was gated by work Microsoft did on the Teams Admin Center. Invariably, soon after Microsoft upgraded the portal (for example, to manage teams in September 2018), a new version of the PowerShell module appeared. Now Microsoft has released the 1. 0 version of the module, or the first “generally available” version. The new module includes some cmdlet changes that might force updates for scripts. Installing Teams PowerShell 1. 0 To get the new module, first make sure that you uninstall any of the older versions from your workstation: Uninstall-Module MicrosoftTeams Then, install the V1. 0 release from the PowerShell Gallery: Install-Module MicrosoftTeams -Repository PSGallery Finally, connect to Teams with an administrator account (if you want to work with all the teams in the tenant) or a user account (to work with teams owned by that account). Connect-MicrosoftTeams At this point, if you check the module, you should see it report the correct version: Get-Module |? {$_. Name -eq "MicrosoftTeams"}|Select Name, Version Name Version ---- ------- MicrosoftTeams 1. 0. 0 Get-Team and Filtering The big changes in the V1. 0 module are in the Get-Team... --- ### Microsoft's Q3 Earnings Jump 14% on Office and Cloud Growth - Published: 2019-04-24 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-q3-earnings-jump-14-on-office-and-cloud-growth/ - Categories: Main - Tags: Earnings, Microsoft - Article Type: News Microsoft has released earnings for its third quarter, calendar first quarter, with revenues of $30.6 billion with a Net Income of $8.8 billion. During the period, the company returned $7.4 billion to shareholders in the form of share repurchases and dividends. Microsoft has released earnings for its third quarter, calendar first quarter, with revenues of $30. 6 billion with a Net Income of $8. 8 billion. During the period, the company returned $7. 4 billion to shareholders in the form of share repurchases and dividends. For the quarter, Microsoft's productivity and business unit grew 14%, Intelligent Cloud jumped up 22%, More Personal Computing climbed 8% which adds up to total revenue growth of 14% for the company. Overall, the company posted strong numbers across most of its segments and the stock has popped 2% at the time of posting. A few highlights to point out are that Office 365 commercial seat grew 27% with the company reporting 180 million monthly active users. On the consumer side, the productivity suite increased to 34. 2 million customers. LinkedIn, which Microsoft purchased for $26. 2 billion, grew 27%, versus the same period last year. And on the Dynamics side, Dynamics 365 revenue grew 43%. For the cloud side of the coin, Azure revenue grew 73% during the period, and Enterprise Mobility install base grew 53% to over 100 million seats. On an annual basis, Microsoft's commercial cloud revenue hits $38 billion. In the More Personal Computing segment, Surface revenue came in at $1. 3 billion which is about 230 million more than the same quarter last year. Xbox Live active users were 63 million which is up 4 million from the previous year and operating income for the entire unit climbed 25%. Overall, this was a healthy quarter for Microsoft... --- ### Windows Admin Center 1904 Reaches GA with Support for Active Directory - Published: 2019-04-24 - Modified: 2024-09-04 - URL: https://petri.com/windows-admin-center-1904-reaches-ga-with-support-for-active-directory/ - Categories: Windows Server - Article Type: News Windows Admin Center 1904 is released with a host of new features and updates, including Active Directory, DNS, and DHCP tools in preview. The Windows Admin Center (WAC) is a web-based GUI tool for managing local and remote servers via a gateway that uses PowerShell Remoting and Windows Management Instrumentation (WMI) over WinRM. Microsoft sees WAC as the future of GUI Windows Server management, and it will eventually replace the various Microsoft Management Console snap-ins that Windows sysadmins know and love from Windows 2000. This week, Microsoft announced that WAC version 1904 was generally available and ready for use in production. You can download the latest version of WAC from Microsoft here. For more information on WAC, see Getting Started with the Windows Admin Center and Windows Admin Center -- The Future of the Windows Server GUI on Petri. What’s New in Windows Admin Center 1904? There are lots of new features in the latest release of WAC. Shared connections let gateway admins configure the connections list once for all users and it is now possible to search Active Directory (AD) for servers when creating a connections list. Microsoft has also added a dark mode theme. PowerShell support improvements include modules for automating connections and extensions. WAC’s core tools also get some updates. Sysadmins can use WAC to manage power profiles and if you have a server with an IPMI-compatible Baseboard Management Controller (BMC), the BMC serial number and a hyperlink to its IP address is displayed on the Server Overview screen. And the Containers tool is now part of WAC having exited preview. Active Directory, DNS, and DHCP Tools in... --- ### How to Uninstall and Reset Windows Subsystem for Linux Distributions - Published: 2019-04-24 - Modified: 2024-09-04 - URL: https://petri.com/how-to-uninstall-and-reset-windows-subsystem-for-linux-distributions/ - Categories: Windows 10 - Tags: Windows 10, Windows Subsystem for Linux - Article Type: How To Here is how to uninstall and reset Linux distributions installed in Windows 10 using the Windows Subsystem for Linux. The Windows Subsystem for Linux (WSL) is a compatibility layer for Windows 10 and Windows Server that allows users to run Linux binaries natively. WSL virtualizes a Linux kernel interface on top of Windows, so it only requires a minimal amount of RAM. And when not in use, the WSL driver isn’t loaded into memory, making it more efficient than a VM or container. In addition to giving access to the tools included with whichever Linux distro you choose to install, WSL can also run system level daemons (services) in the background. You can even install multiple Linux distributions and switch between them. Linux distributions for use with WSL are managed via the Microsoft Store. At the time of writing, Ubuntu, openSUSE Leap, SUSE Linux Enterprise Server, Kali Linux, and Debian can be installed from the Store. One of the advantages of using WSL is that you can reset Linux distributions back to their default settings, wiping any applications you’ve updated or installed. Resetting a distribution is faster than removing it and then reinstalling it using the Microsoft Store. If you don’t already have a Linux distribution installed in Windows 10, check out How to Install Windows Subsystem for Linux on Petri. Reset a Linux Distribution For the purposes of this article, I’m going to use Windows 10 version 1809. You might find that the following instructions don’t work in earlier versions of Windows 10. For example, prior to the Fall Creators Update, it wasn’t possible to remove... --- ### How To Prepare for an App Service Migration - Published: 2019-04-23 - Modified: 2024-09-04 - URL: https://petri.com/how-to-prepare-for-an-app-service-migration/ - Categories: Microsoft Azure - Tags: App Service, Microsoft, migration - Article Type: How To Microsoft's new tool to assist in cloud migrations can help you, but might be too limited for real world enterprise applications. If you want to move your existing web applications and web services into Azure App Services, but you aren’t sure if the projects will work in Azure, then the App Service Migration Tool is here to help. Microsoft recently released the tool in a preview state, and you can assess your projects in two simple steps. The first step, if you have a public endpoint for your project, is to visit https://appmigration. microsoft. com/ and enter your project’s URL. The App Migration website will use publicly available information, like the information in your HTTP headers, to perform basic compatibility checks. Here’s what happens when I run an analysis on petri. com. You can see this site uses PHP, and you can see that petri. com hosts itself on Nginx in Cloudflare. Going further into the analysis you’ll see that petri. com uses Wordpress and dozens of client-side frameworks. As you’d expect with this level of analysis, nearly every website you own will be compatible with App Services, because App Services supports a wide range of technologies including Java, . NET, PHP, and Ruby, and offers both Windows and Linux environments. The devil, as always, is in the details. To get into a more detailed analysis of your application, you can download and install a Migration Assistant Tool (currently only available for Windows). When you first launch the tool, you’ll be able to select an application from the local IIS instance, and then create an assessment report. Migration Readiness Report The... --- ### SharePoint Launches Files Restore and New Admin Center > Microsoft announced the Files Restore feature for SharePoint Online on April 22. It's the kind of news we can expect as the SharePoint conference draws near, and it's good news for Office 365 tenants. - Published: 2019-04-23 - Modified: 2024-12-03 - URL: https://petri.com/sharepoint-online-files-restore/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Admin Center, Files Restore, Office 365, SharePoint Online - Article Type: News Microsoft announced the Files Restore feature for SharePoint Online on April 22. It's the kind of news we can expect as the SharePoint conference draws near, and it's good news for Office 365 tenants. Some backup vendors might not be so keen as Files Restore makes it a tad harder for them to sell their backups. Small Office 365 tenants also got the news that the new SharePoint Admin Center is becoming the default. The new portal might even be ready soon. SharePoint Coming to Sin City It’s coming into conference season again and Microsoft is gearing up for the SharePoint North America event in Las Vegas next month. It might just be for this reason that we have the important announcement that Files Restore is coming to SharePoint Online. I know the announcement’s title includes “for SharePoint and Microsoft Teams,” but that’s only marketing spin at work. Apart from being an avid consumer of SharePoint for its Files storage, Teams has nothing to do with this feature at all. What it might be is a recognition that Teams is the hot Office 365 app at present and that a lot of SharePoint Online usage is driven by Teams. Buried deep in the announcement is an acknowledgement that other Office 365 apps (like Yammer and Office 365 groups) also use SharePoint Online. I hope that Microsoft announces the oft-promised enhanced Files interface for Teams at the SharePoint conference to replace the simplified view currently available, but that’s another story. SharePoint Online Backups and Restore Microsoft does take backups of SharePoint Online and it is possible to ask Microsoft support to restore a backup, but the restores are blunt instruments that overwrite complete site collections to the time of the backup. It’s usually easier (and quicker) to recover deleted files from the recycle bin or site preservation hold library (if retention policies are in place). Files Restore allows site owners and administrators to restore files back to any point in the... --- ### Microsoft's G-Suite Migration Tools Begin to Rollout - Published: 2019-04-22 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-g-suite-migration-tools-begin-to-rollout/ - Categories: Microsoft 365, Office - Tags: G Suite, Microsoft, News - Article Type: News Microsoft has started rolling out its new G-Suite migration tools to make the process of moving from Google's to Microsoft's productivity suite, a lot easier. Late last year, Microsoft announced a new set of tools were being developed that would help migrate users from G-Suite, over to Office 365. As of this week, those tools are starting to become available to customers as Microsoft has made lemonade from its LinkedIn acquisition. When Microsoft purchased LinkedIn, that company was using G-Suite as its productivity suite for its 10,000+ employees. Obviously, Microsoft wanted to move away from that platform in favor of its Office 365 tools and built a migration workflow to make this transition possible; these tools are now being rolled out to all customers. Even though Office 365 has a larger market share and is typically the class leader in most aspects of productivity, G-Suite has developed its own following and is the biggest threat to Office's continued dominance. As Mary Jo notes, in order to perform a staged migration, customers will need to enable Synchronization (DirSync) or they will need to manually provision all of the MailUsers outside the migration process. You can find more information, including a FAQ about the new tools, here. With the new tools starting to become available, I don't expect this to trigger a massive migration away from G-Suite to Office 365. But, for the minority of customers out there straddling both productivity suites and who are looking to streamline their operations, these new features will make that process a little bit easier. --- ### Four Dangers of the Hybrid Cloud - Published: 2019-04-22 - Modified: 2024-09-04 - URL: https://petri.com/four-dangers-of-the-hybrid-cloud/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, Azure Active Directory, Backup, Cloud, Disaster Recovery, hybrid cloud - Article Type: Overview While the security and redundancy provided with hybrid cloud setups is clearly documented, it's important to keep these risk-factors in mind as you design your new environment. There’s no doubt that most businesses have been adopting a hybrid cloud strategy over the past couple of years and it’s also likely that this trend will continue to grow in the foreseeable future. The hybrid cloud offers businesses a lot of benefits such as being used for offsite storage or disaster recovery. In addition, many products today enable you to seamlessly extend your on-premise solutions into the cloud. However, even though there are a lot of benefits in moving to the hybrid cloud there are definitely some dangers as well. Let’s take a closer look at four of the dangers that can threaten a successful hybrid cloud implementation and some ways you can address them. Unexpected costs – One of the first dangers that you can run into with the hybrid cloud is costs. While it’s true that the cloud offers relatively low-cost storage and can reduce an organization’s need for CapEx expenditures, the cloud is not free. Although cloud storage tends to cost less than local storage most cloud costs are for compute usage and data flow. This can result in unexpected expenses if you’re not prepared for it. The major cloud providers like Microsoft Azure and Amazon AWS provide calculators to help you to estimate your cloud usage costs. However, it’s important to keep in mind that these results are estimates. Your actual usage can be different. Before jumping into the hybrid cloud it’s important to know how much compute, storage and network bandwidth that you expect... --- ### Paul Thurrott's Short Takes: April 19 - Published: 2019-04-19 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-19/ - Categories: Cloud Computing, Mobile, Windows 10, Windows 7 - Tags: News - Article Type: Overview Because I heard you missed me, I’m back, this edition of Short Takes looks at Surface Flub 2S, Waas and Windows 7, it’s like a riding a bike, Microsoft makes AI and refuses to sell it to customers, Google introduces a browser ballot, and so much more. So happy that Notre Dame was saved from disaster this week Because I heard you missed me, I’m back, this edition of Short Takes looks at Surface Flub 2S, Waas and Windows 7, it’s like a riding a bike, Microsoft makes AI and refuses to sell it to customers, Google introduces a browser ballot, and so much more. Microsoft to ship Surface Hub 2S in June What costs $9000, ships in June, and is absolutely nothing like the Surface Hub 2 that Microsoft announced a year ago at Build 2018? This guy: Surface Hub 2S. As you may recall, Microsoft has run into a bit of a snag delivering on the futuristic promises of Surface Hub 2, so it split the product in two and will first deliver a much less enticing version that runs the software from the first Surface Hub, which doesn’t support screen rotation or multiple screens used side-by-side as a single device. The good news? It’s $2000 more expensive than the model it replaces, and an 85-inch version won’t even ship in limited quantities until next year. OK, I’m kidding, there is one bit of good news: Surface Hub 2S will be upgradeable to the Surface Hub 2 everyone really wants, which is now called Surface Hub 2X. And that bad boy won’t ship until late 2020 at the earliest. I’m thinking 2021. "Student used a ‘USB Killer’ to destroy $58,000 worth of computers at his old college" Thanks, college... --- ### How to Create a Windows Virtual Desktop Tenant with Windows Virtual Desktop - Published: 2019-04-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-windows-virtual-desktop-tenant-with-windows-virtual-desktop/ - Categories: Virtualization - Tags: Azure, cloud computing, Virtualization, Windows 10, Windows 7, Windows Virtual Desktop - Article Type: How To In the second part of this series, I show you how to create a Windows Virtual Desktop tenant. In the first part of this series, I described what Microsoft’s Windows Virtual Desktop (WVD) service is and the basic requirements. If you haven’t already read that article, I suggest you do before continuing with WVD because there are some important prerequisites that need to be in place. Before you can create a host pool in the Azure management portal, you need to create a Windows Virtual Desktop tenant. There are several steps to this process: Give Azure Active Directory permissions to the Windows Virtual Desktop enterprise app. Assign an AAD user the Windows Virtual Desktop TenantCreator application role. Create a Windows Virtual Desktop tenant. Please note that everything in this article is subject to change because Windows Virtual Desktop is in preview. Additionally, when using an AAD user account, make sure that it is a work or school account and not a Microsoft Account (MSA). I’ll remind you about this again. Grant Azure Active Directory Permissions to Windows Virtual Desktop Service Giving ADD permissions to the WVD service lets it query the directory for administrative and end-user actions. All you need to do is click here to open the Windows Virtual Desktop consent page in a browser. There are two consent options: Server App and Client App. Make sure that Server App is selected. In the AAD Tenant GUID or Name box, type the name or GUID of your AAD and click Submit. If you are not sure what your AAD name is, open the Azure AD... --- ### Exiting Office 365 with Your Encrypted Messages and Documents > The Azure Information Protection team recently published an interesting post about making a "cloud exit." In other words, how to move your encrypted data out of a cloud service like Office 365. - Published: 2019-04-18 - Modified: 2024-09-04 - URL: https://petri.com/exiting-office-365-encrypted-messages-documents/ - Categories: Microsoft 365, Office - Tags: Azure Information Protection, encryption, Exchange Online, Office 365, Rights management, SharePoint Online - Article Type: Opinion The Azure Information Protection team recently published an interesting post about making a "cloud exit." In other words, how to move your encrypted data out of a cloud service like Office 365. As it turns out, this is feasible if you plan. But how many organizations have even thought about how they might decrypt protected content? Creating a Cloud Exit Plan for Encryption Microsoft engineering teams publish all sorts of useful tips. The only problem is that it can be hard to find the gems in the flood of information in announcements, marketing bumpf, and blogs that any self-respecting product organization generates. Which brings me to the post titled “How to prepare an Azure Information Protection “Cloud Exit” plan” where the Azure Information Protection team lay out the steps needed to move encrypted information out of the cloud to an on-premises location. Could You Exit Office 365? You might think that you will never exit the cloud. And indeed, it is Microsoft’s sincere wish that you should never even have such a thought because they’d like their tenants to continue paying the billions of dollars of monthly subscriptions that make Microsoft’s cloud properties so valuable. It’s hard to consider making a cloud exit. Where would you go? The two obvious destinations are another cloud service or back on-premises, but both choices pose difficulties, as I discuss in a post about what people could do if an Office 365 disaster happened. But if it’s difficult to contemplate moving unencrypted data from an Office 365 tenant to somewhere else, it’s even harder if you factor in encrypted data. Today, the amount of encrypted content (message, documents, and other data) inside Office 365 tenants is minuscule, so the difficulty only arises for tenants who embrace rights management and encryption for a good reason. In most cases, these... --- ### Microsoft's Surface Hub 2S Arrives in June, Comes in 50 and 85in Flavors - Published: 2019-04-17 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-surface-hub-2s-arrives-in-june-comes-in-50-and-85in-flavors/ - Categories: Hardware - Tags: Microsoft, Surface Hub 2, Surface Hub 2S - Article Type: News Microsoft's second-generation Hub is now available and it features a completely redesigned exterior that allows the device to be upgraded with a modular computing unit and can also run on batteries. Today in New York, Microsoft finally announced all the details surrounding its second generation Surface Hub. The device, known as the Hub 2S, has a new design and it is an evolution of the company's successful first generation product. As for specs, the device includes Intel's 8th gen Core i5 processors, 8GB of DDR4 RAM, 128 GB M. 2 drive, a 4k+ display (higher resolution than a typical 4k screen) built-in 4k cameras, far-field mic arrays, weighs forty percent lighter than its predecessor (62lbs/29kg), and starts at $9,000. While the company had only previously shown off the 50in model, there will be a much larger 85in size as well. One thing to keep in mind is that the 50in model uses a 3:2 aspect ratio, which is standard for the Surface line of devices, the much larger 85in model will use 16:9. One of the more interesting aspects of the device is that it can run on a battery. Microsoft has designed a cart and battery system that allows you to unplug the device from a wall and use it away from outlets which will be useful for meetings that take place ad-hoc or not in a traditional conference room. Also new with this generation is that you will be able to buy just the display, without the compute module, later this year. This version of the device is for customers that only need conference hardware that doesn't need to be mobile but has support for touch and pen input. This... --- ### What's New with Azure Update Management - Published: 2019-04-17 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-with-azure-update-management/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Azure Update Management, Learning, Microsoft, Microsoft Azure, Windows Updates - Article Type: How To, Overview Microsoft has added a new feature to Azure Update management giving you the ability to target dynamic groups of VMs. Take a quick tour of Azure Update management and dynamic group targeting. As with all things Azure, change is constant. Even how we update our workloads. Yes, it's true, Azure Update Management has a new feature which allows you to target a dynamic group of VMs for updates very similar to what you could do with Windows Server Update Services (WSUS) on premises. In this article, we'll take a peek at how this is done, but first, we'll get up to speed on Azure Update Management. What is it? Unless you've been living on an island and running Windows 95 for the past 20 years, you are all too familiar with Windows Update. Love it or hate it, it's what we know and how we keep our systems "functioning" and secure. This hasn't changed for our cloud folks either. Our virtual machines (VM) in the cloud need the same maintenance. They aren't just magically updated by the cloud fairy. Yes, updates can and will break things, which is why, the onus is on us as the custodians of our VMs to keep them up to date, as our requirements allow. This is where Azure Update Management comes in. Think of it as your own Windows Server Update Service in the cloud. What about my Linux workloads? Azure has you covered. Azure Update Management can provide updates for your Linux workloads as well. Most Azure supported Linux distributions are supported. Just think of it, a large percentage of the workloads in Azure are running a Linux distribution. Not a bad idea... --- ### Microsoft April Updates Cause Issues for Some Users - Published: 2019-04-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-april-updates-cause-issues-for-some-users/ - Categories: Windows Client OS - Tags: Antivirus, Windows 10, Windows 7, Windows Defender, Windows Server 2008 R2, Windows Updates - Article Type: News Microsoft’s April updates for Windows cause performance and authentication issues for some users. Microsoft has come under fire over the past year for the quality of its biannual feature updates for Windows 10. To help improve quality, Microsoft announced recently that it would be delaying the release of Windows 10 19H1, which was originally expected to drop late March or early April, to sometime at the end of May while it tested the update with OEMs, users in the Release Preview ring, and internally at Microsoft. The update is now officially called the Windows 10 May 2019 Update. For more information on these changes, see Microsoft's Making Significant Changes to Windows Updates and Feature Rollouts for Windows 10 on Petri. But it appears that feature updates aren’t Microsoft’s only quality issue. This month has seen Windows 7 and Windows Server 2008 R2 users experience issues with some third-party antivirus products and a security issue caused by applications using unconstrained delegation. Windows 10 users haven’t been left out either, with some reporting serious performance issues after the update when third-party AV is installed. Windows 7 and Windows Server 2008 R2 After installing this month’s monthly rollup for Windows 7 SP1 and Windows Server 2008 R2 (KB4493472), some users are reporting that after rebooting, they are unable to log in to their systems. This affects users that have Sophos Endpoint Antivirus, Avira, ArcaBit, or Avast software installed. Microsoft announced that it is now blocking KB4493472 for devices running these products until it finds a solution. Another issue being reported is that authentication fails... --- ### Slack Uploads from Outlook and Other Office Integrations > Slack released some integrations for Office (365) on April 9. I took a look and discovered some interesting things about how the Outlook add-in for Slack works. - Published: 2019-04-16 - Modified: 2024-09-04 - URL: https://petri.com/slack-integrates-office/ - Categories: Microsoft 365, Office - Tags: Office 365, Outlook, Slack, Teams - Article Type: Review Slack released some integrations for Office (365) on April 9. I took a look and discovered some interesting things about how the Outlook add-in for Slack works (and doesn't work sometimes). If you use Slack, you'll probably be interested in a tighter connection between it and Office, but if you're invested in the Office 365 ecosystem, Teams is a better choice. Slack Cozies Up to Office On April 9, Slack launched a set of integrations to improve interoperability with Office 365, or so Slack claimed (here’s what Brad wrote about the announcement). Given the success of Teams, it’s unsurprising that Slack should try to keep customers who use the Office apps from considering the free or commercial versions of Teams. Here’s a quick look at what Slack has delivered. Connected Outlook calendar to Slack This is like the way that Teams synchronizes data from a user’s Outlook calendar into the Meetings app (due to be replaced by a more functional Calendar app soon – roadmap item 48516). Planner also has a method to synchronize data with Outlook, so this is not rocket science. Still, it’s good to bring calendar information into Slack, including presence information to let people know when you’re at a meeting or otherwise unavailable. One thing I noticed is that Slack supports the ability to join a Skype meeting if scheduled in Outlook. They don’t say anything about being able to join a Teams meeting but given that the relevant button invokes a URL to the meeting, I’d be surprised if the link generated by Outlook didn’t work. Send email to Slack Teams users might be familiar with the ability to send email to a channel using a special email address Teams generates for the channel. Slack takes a different approach with an Outlook add-in that allows users to select a destination and compose a message... . --- ### Getting Started with Azure Virtual Desktop: Understanding Azure Virtual Desktop - Published: 2019-04-15 - Modified: 2023-02-22 - URL: https://petri.com/getting-started-with-windows-virtual-desktop-understanding-windows-virtual-desktop/ - Categories: Virtualization - Tags: Azure, cloud computing, Virtualization, Windows 10, Windows 7, Windows Virtual Desktop - Article Type: Overview In the first part of this series, I look at the basics of Microsoft’s new Windows Virtual Desktop service.   Last month, Microsoft announced that its new Azure-based service for Windows 10 virtualized desktops had reached public preview. Originally announced at its Ignite conference in September 2018, it had been expected that Windows Virtual Desktop (WVD) would reach public preview by the beginning of 2019. But after a short delay, the service is finally available for testing and expected to reach general availability in Q3 2019. Update 2022 - Note that this service is now called Azure Virtual Desktop. Other companies, like Amazon, offer Windows virtualized desktop services in the cloud but one of the key differentiators with Microsoft’s service is that you can use a multiuser version of Windows 10 instead of Windows Server Remote Desktop Services with the Desktop Experience installed. While the Desktop Experience in Windows Server provides something like the Windows 10 desktop, there are some features missing, like Edge and the Microsoft Store. Microsoft is also including optimization technology it purchased from FSLogic to optimize Office 365 ProPlus performance for users in virtual machines. Organizations can also use WVD with Windows 7, including free Extended Security Updates, while planning Windows 10 migrations or use Windows Server Remote Desktop Services (RDS). Windows Virtual Desktop Prerequisites Windows Virtual Desktop is a cloud service and the new multiuser SKU of Windows 10 is only available in Azure. But despite the ‘cloudiness’ of WVD, you won’t be able to spin it up without some supporting infrastructure. Remember that WVD is currently in preview, so the requirements listed below... --- ### Patch Tuesday April 2019 - Published: 2019-04-15 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-april-2019/ - Categories: Windows 10 - Tags: Patch Tuesday, Windows 10 - Article Type: News This month Windows is patched for two zero-day flaws, Windows 7 and Windows Server 2008 R2 users report that devices with Sophos Antivirus can’t log in after installing KB4493472 and authentication failures to services configured with unconstrained delegation. This month Windows is patched for two zero-day flaws, Windows 7 and Windows Server 2008 R2 users report that devices with Sophos Antivirus can’t log in after installing KB4493472 and authentication failures to services configured with unconstrained delegation. Windows 10, Windows Server 2016, and Windows Server 2019 This month there are 36 fixes for flaws in Windows 10 version 1809. CVE-2019-0803 and CVE-2019-0859 are zero-days reported by Alibaba Cloud Intelligence Security Team and Kaspersky Lab respectively. Both are an elevation of privilege (EOP) flaws where the Win32k component improperly handles objects in memory, potentially allowing an attacker to run arbitrary code in kernel mode. An attacker would need to log in to Windows to be able to exploit this flaw. There are no further details about the vulnerabilities other than that they have both been actively exploited. 8 remote code execution (RCE) bugs rated critical have been patched. One in the Windows IOleCvt interface could let an attacker run malicious code from an ASP webpage, or Microsoft Office document with embedded ActiveX Control, and take control of a system. A flaw in the Windows Graphics Device Interface (GDI) could also let an attacker take control of a system. Similar vulnerabilities affect Hyper-V vSMB and Microsoft XML Core Services. Windows 7 and Windows Server 2008 R2 Windows 7 gets patches for 6 critical bugs affecting the IOleCvt interface, the Windows Graphics Device Interface (GDI), and Microsoft XML Core Services. It also gets patches for the CVE-2019-0803 and CVE-2019-0859 zero-days... --- ### Google Has a New Managed Active Directory Cloud Service - Published: 2019-04-12 - Modified: 2024-09-04 - URL: https://petri.com/google-has-a-new-managed-active-directory-cloud-service/ - Categories: Cloud Computing - Tags: Active Directory, Amazon Web Services, Azure Active Directory, Google Cloud, Microsoft Azure - Article Type: News Google announces a new Managed Service for Microsoft Active Directory that should give customers more options about which cloud service fits their needs. Earlier this week during its Google Next keynote, Google announced its new Managed Service for Microsoft Active Directory (AD). Similar to Microsoft’s Azure Active Directory Domain Services, Google’s new service lets organizations deploy Active Directory in the cloud without installing and managing domain controllers in virtual machines (VMs). This allows companies to shift legacy applications easily to the cloud, reducing costs and delivery time. But moving legacy apps to the cloud isn’t the only use case. Many new cloud-first apps also rely on Active Directory because it is so widely deployed in enterprises. Although, clearly Microsoft would rather you use Azure Active Directory (AD) instead of Windows Server Active Directory as the primary authentication mechanism for cloud-first applications. Managed Service for Microsoft Active Directory Google says that Managed Service for Microsoft Active Directory (MS for MAD) is “a highly available, hardened Google Cloud service running actual Microsoft AD that enables you to manage your cloud-based AD-dependent workloads, automate AD server maintenance and security configuration, and extend your on-premises AD domain to the cloud. ” Google seems keen to point out that what you get is ‘actual Microsoft AD’, and I’m guessing that is an attempt to differentiate the service from Azure Active Directory, which in fact is not based on Windows Server Active Directory despite having some overlapping features. Although you can complement AAD with Azure Active Directory Domain Services to get many of the features available in Windows Server Active Directory. Other benefits include the ability to use... --- ### Accelerate Your Applications with Azure's Front Door Service - Published: 2019-04-11 - Modified: 2024-09-04 - URL: https://petri.com/accelerate-your-applications-with-azures-front-door-service/ - Categories: Cloud Computing, Microsoft Azure - Tags: Application, Azure, development, Front Door, Microsoft - Article Type: Overview Azure's Front Door service can bring availability and performance improvements to applications and services deployed anywhere on the Internet. Azure’s application delivery suite continues to grow as the Azure Front Door Service became generally available last week. Front Door Service is a global HTTP load balancing service you can place between your customers and your backend services to distribute traffic across different Azure regions, or across different cloud providers and even your own on-premises services. The goals of this new service are to make applications easy to scale, to make applications more reliable and resistant by providing instant failovers, and to improve the performance of applications by using intelligent caching and network optimizations. Let’s first look at how to configure a new Front Door Service. Configuration The configuration begins by selecting a Frontend Host. In this step you select the host name you wish to use in the domain . azurefd. net. The hostname you select is the hostname your customers will use to reach your services, for example, petri. azurefd. net. Front Door also supports custom domains. When creating the frontend host, you can optionally enable session affinity. With affinity on, a user session will always go to the same application backend for processing, if the backend is still available. Session affinity is similar to the Application Request Routing feature of App Services, which also relies on HTTP cookies. Create an Azure Front Door   The second step in configuring Front Door is to add your backend pools. Backend pools are the application servers that Front Door will use as the destinations when routing your customer... --- ### Teams Supports Office 365 Data Loss Prevention Policies > Microsoft Teams supports Office 365 Data Loss Prevention (DLP) policies, which means that you can check for the sharing of sensitive data like credit card or passport numbers in personal chats or channel conversations. - Published: 2019-04-11 - Modified: 2024-09-04 - URL: https://petri.com/teams-supports-office-365-data-loss-prevention-policies/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Data Loss Prevention, DLP, Office 365, Teams - Article Type: News Microsoft Teams supports Office 365 Data Loss Prevention (DLP) policies, which means that you can check for the sharing of sensitive data like credit card or passport numbers in personal chats or channel conversations. Quite why someone would want to share their credit card number with someone else in a chat is beyond me, but there's no accounting for human taste. Checking Sensitive Data in Teams Office 365 Data Loss Prevention (DLP) policies have supported Exchange Online, SharePoint Online, and OneDrive for Business for a couple of years. Originally announced in December 2018, Teams support for DLP is now generally available. Somewhat oddly, while DLP coverage for Exchange and SharePoint is included in the Office 365 E3 plan, you need the Office 365 E5 plan or the Office 365 Advanced Compliance add-on for Teams. With that cheery thought in mind, let's take a look at how DLP works in Teams. Creating an Office 365 DLP Policy for Teams You can update an existing DLP policy to include Teams content or create a new policy. For testing purposes, it’s easiest to create a separate policy and use it to scan for a well-known sensitive data type such as credit card numbers. You don’t need to use real credit card numbers as test numbers (like this set from PayPal) to check the policy. Whether you update an existing policy or create a new policy, the action to include Teams in DLP checking is the same. You select users and teams to add to the policy. If individual users are specified, Teams applies DLP checks to personal chats involving these people (including chats with others not covered by the policy). When you add teams to a policy (Figure 1), Teams checks all channel conversations within those teams. Figure 1: Teams joins the set of DLP locations (image credit:... --- ### Mitigating Spectre Variant 2 with Retpoline on Windows - Published: 2019-04-10 - Modified: 2024-09-04 - URL: https://petri.com/mitigating-spectre-variant-2-with-retpoline-on-windows/ - Categories: Windows 10 - Tags: Retpoline, Security, Spectre, Windows 10 - Article Type: How To The Retpoline patch for Windows 10 was originally slated to arrive in the Windows 10 May 2019 Update but the fix is now in Windows 10 version 1809, although it must be enabled manually. Microsoft patched the Spectre variant 2 vulnerability (CVE-2017-5753), a branch target injection microprocessor flaw, back in January 2018 along with two other processor bugs, CVE-2017-5753 and CVE-2017-5754. But the original Spectre v2 patch caused performance to drop by up to 30% under some load conditions. Microsoft distributed a fix for the performance issues at the beginning of March. Developed by Google and called Retpoline, the patch can be applied to CPUs that have predictable Return Stack Buffer (RSB) behavior. For Intel processors, that means that Retpoline can’t be used with Skylake and later generation CPUs, although Import Optimization can be enabled. How to Enable Retpoline The Retpoline update was part of the March 1st cumulative update for Windows 10 version 1809 and later (KB4482887), and it is disabled by default. But customers who wish to manually enable Retpoline on their systems can by manually editing the registry. Use the reg. exe command-line tool to add two keys to the registry and then reboot the system. The keys below are for client SKUs. reg add "HKLMSYSTEMCurrentControlSetControlSession ManagerMemory Management" /v FeatureSettingsOverride /t REG_DWORD /d 0x400 reg add "HKLMSYSTEMCurrentControlSetControlSession ManagerMemory Management" /v FeatureSettingsOverrideMask /t REG_DWORD /d 0x400 If you want to enable Retpoline on server SKUs of Windows, use the following commands and reboot: reg add "HKLMSYSTEMCurrentControlSetControlSession ManagerMemory Management" /v FeatureSettingsOverride /t REG_DWORD /d 0x400 reg add "HKLMSYSTEMCurrentControlSetControlSession ManagerMemory Management" /v FeatureSettingsOverrideMask /t REG_DWORD /d 0x401 The registry keys are for customers that have the default mitigation settings already enabled. Windows 10... --- ### Google's Anthos Aims to do What Azure Stack Hasn't - Published: 2019-04-10 - Modified: 2024-09-04 - URL: https://petri.com/googles-anthos-aims-to-do-what-azure-stack-hasnt/ - Categories: Cloud Computing, Google Cloud Platform, Hybrid Cloud, Microsoft Azure - Tags: Anthos, Azure Stack, Google, Microsoft, News - Article Type: News Google's new Anthos service aims to make multi-cloud operations, significantly easier with support for all the major players in the segment. Several years ago, Microsoft announced a product that they hoped would be a bridge between the on-premises data center and it's cloud service, Azure. Called Azure Stack, it was initially a software solution that companies could deploy to bring their local data closer to the cloud. I say initially because Microsoft eventually reversed course and said that you had to buy new hardware to deploy Azure Stack and that it would not be possible to retrofit existing infrastructure. As for why they are now making you buy hardware? There hasn't been an official answer that makes sense but the general belief is that OEMs were upset that Microsoft had undercut their metal sales. This week at Google's Cloud Next conference, Google unveiled Anthos, a service that is for hybrid and cloud environments that runs on the Google Kubernetes Engine. Anthos, while in beta was known as Cloud Services Platform, is a software solution that allows you to deploy and manage an application locally and on any cloud. And it's the 'any cloud' part that is important. The big news here is that Google's service will natively support Google Cloud, AWS, and Azure. It's a multi-cloud approach and quite frankly, it makes a lot of sense. Because this is a software solution, you don't need to buy any new metal and can deploy it in your own data centers as they are today; a stark contrast to Microsoft's current offering. And Amazon also has OutPost, but that too requires... --- ### Slack Hopes to Become Stickier with New Office 365 Integration - Published: 2019-04-09 - Modified: 2024-09-04 - URL: https://petri.com/slack-hopes-to-become-stickier-with-new-office-365-integration/ - Categories: Microsoft 365 - Tags: Microsoft, News, Slack, Teams Slack is rolling out new features for Office 365 that the company hopes will bridge the gap between the two services. While Microsoft Teams may be getting all the attention lately, there is no denying that Slack is still a competitor in the corporate collaboration space. The chat application has had deep integration with many third-party tools and today, the company is adding Office support in a major interoperability move. Since its inception, Slack has been closely linked with G-Suite. These two products are often the preferred choice of productivity tools for startups as they work well together but there is no denying that as companies expand, Office 365 provides the most robust tool-set in the industry. To help Slack users, who are also using Office 365 services, these new features are rolling out to customers: File Previews: Rich file previews of O365 files (PowerPoint, Excel, Word) uploaded to Slack give teams context before diving into documents for review cycles or presentations Send Emails to Slack from Outlook: With the new Outlook email add-on, users can bring conversations out of silos by quickly forwarding them into a Slack channel or DM with the right team and software tools to take next steps. Outlook Calendar Syncing: Slack’s new Outlook Calendar app includes the ability to automatically update your Slack status to “in a meeting” or “Out of the Office” based on your calendar, improving visibility across teams. These new features will make it easier to stay inside of Slack and view content from Office 365. Which for Slack, is a key sticking point to make sure that customers have access to everything they need with... --- ### Teams and Kaizala = Teams+? > On April 4, Microsoft announced that Kaizala, their mobile chat application, is now available to all Office 365 commercial customers and will be integrating with Teams. - Published: 2019-04-09 - Modified: 2024-11-19 - URL: https://petri.com/teams-and-kaizala/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Kaizala, Office 365, Teams - Article Type: News On April 4, Microsoft announced that Kaizala, their mobile chat application, is now available to all Office 365 commercial customers and will be integrating with Teams. On the surface, the two applications target very different user types: Teams takes care of corporate users with Office 365 licenses while Kaizala uses phone numbers as identities. We don't know how the two will meld, but the process will be interesting. Joining Teams and Kaizala - Two Very Different Applications Microsoft’s April 4 announcement that Kaizala, their phone-based WhatsApp-like mobile "large-group" collaboration app, is to roll out to Office 365 commercial customers worldwide and become part of Teams generated some interesting reactions. Apart from the name that is, which apparently means “what happened” in Marathi, a language spoken in parts of India. Kaizala started as a Microsoft Garage (experimental) project launched in February 2016 and became a formal product a year later, originally available in select markets like India. Because it’s based on phones, users only needed a phone number to use Kaizala. The “Pro” version then became available in 28 countries for commercial customers. Now Kaizala (Pro) will be available to the 155+ million Office 365 users in 180 markets worldwide. Too Many Ways for Office 365 Tenants to Collaborate Although generally positive about the prospect of Kaizala becoming part of Teams, some expressed concern that enabling Kaizala for their Office 365 tenant would confuse users. It’s already hard enough for organizations to decide what parts of Microsoft’s collaboration portfolio to use inside Office 365. Should I use Teams or Yammer for threaded discussions, can I replace email with other collaboration modalities, what about SharePoint hub sites, and so on. Organizations in the middle of Teams deployments, with or without a migration from Skype for Business Online, are especially unlikely to welcome a new complication. Microsoft’s response is that it’s easy to disable (or enable) Kaizala through its... --- ### Microsoft's New Chromium-Based Edge, Now Available to Download - Published: 2019-04-08 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-chromium-based-edge-now-available-to-download/ - Categories: Windows Client OS - Tags: Edge, Microsoft, News - Article Type: News Microsoft's new Chromium-based Edge browser is now available for download. Back in December, Microsoft announced that they would be dropping the rendering engine used by Edge and would be switching to Chromium. Starting today, anyone can download the new browser and test it before the final release that is expected later this year. There are several different flavors of the new browser that you can download; Canary, Developer, and eventually Beta. Canary builds will be updated daily and developer builds will be updated weekly. If you like to live dangerously, you can use the canary stream of builds but know that it's inevitable that this channel will eventually have a bad release that breaks some online capabilities. I have been using the new version of Edge for more than a week and I can tell you that it is significantly better than the outgoing version of Edge. And if you install the browser and think "this looks like Chrome but with a blue E", you're not wrong... but that's ok. Download: Microsoft's new Edge browser. Microsoft found itself in a battle against Google, whose nearly entire bottom line is based on what happens in a web browser, with its own internally developed engine. While Microsoft has the cash-follow and technical ability to compete with the Chromium engine, the financial incentives were not there to do so at a level at which Google was dumping cash into expanding its efforts to build out the Chromium rendering engine. Yes, some will argue that this is not good for the 'open web', being driven... --- ### How to Secure Hybrid Office 365 Authentication - Published: 2019-04-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-secure-hybrid-office-365-authentication/ - Categories: Cloud Computing, Microsoft 365, Office - Tags: Active Directory, Active Directory Federation Services, cloud computing, Office 365, Security - Article Type: Opinion In today’s Ask the Admin, I discuss whether federated authentication is really the most secure way to set up hybrid authentication between Windows Server Active Directory and Office 365. Office 365 hybrid authentication lets organizations manage and control authentication to Office 365 using on-premise Windows Server Active Directory. The advantage is that there is a single set of user identities that can be centrally managed, as opposed to using cloud-only identities for Office 365 and Active Directory accounts for access to on-premise resources. Traditional wisdom has it that Active Directory Federation Services (ADFS), or a third-party identity provider, is the most secure way to extend Windows Server Active Directory (AD) to Office 365. There are definitely some advantages to this approach, including: Single sign-on for browser apps and Outlook. No synchronization of password hashes to the cloud. Advanced security features like IP address filtering. Supports other SAML-based cloud services. Supports SmartLinks. Smartcard-based authentication. Supports third-party multifactor authentication. But the costs are great. Not only do you need a two-server farm, preferably at separate sites for redundancy but also another couple of servers should be placed in your DMZ to securely publish ADFS to the Internet. This involves additional infrastructure and cost, but it also adds extra points of failure. If ADFS, AD, or the DMZ servers go down, users won’t be able to access Office 365. Although, it is possible to combine ADFS with Password Hash Synchronization (PHS) so that users can still log in to Office 365 in the event of a problem. Who’s Afraid of Password Hash Synchronization? The idea of synchronizing password hashes to the cloud seems like a scary idea for some organizations... . --- ### Paul Thurrott's Short Takes: April 5 - Published: 2019-04-05 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-5/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because my son is about to turn 21 and where does the time go, this edition of Short Takes looks at Microsoft’s glorious but overdue u-turn on Windows 10 updates, Microsoft’s retreat from the consumer market, U.S. governmental spying on Huawei, Samsung’s falling profits, and so much more. April showers bring a May 2019 Update for Windows 10 Because my son is about to turn 21 and where does the time go, this edition of Short Takes looks at Microsoft’s glorious but overdue u-turn on Windows 10 updates, Microsoft’s retreat from the consumer market, U. S. governmental spying on Huawei, Samsung’s falling profits, and so much more. Microsoft’s overdue about-face on Windows 10 updates is a win for humanity For four years, Microsoft has jammed frequent, disruptive, and often-unreliable software updates down the throats of Windows 10 users. But this week, finally, it announced that it has heard the criticism: Starting with Windows 10 version 1903, set for broad release in May, it will allow all Windows 10 users---yes, even the lowly Windows 10 Home users who were previously treated like update guinea pigs---to defer so-called quality updates, which arrive one or more times every month, by up to 35 days. Furthermore, and even more important, it is moving so-called feature updates---which are really major Windows version upgrades---out of the normal Windows Update process so that no user will ever inadvertently install a mammoth upgrade when all they were really trying to do was make sure their PC had the latest security updates. Folks, this is what I’ve been asking for for four years. And while I do not appreciate the amount of time it took, I applaud the fact that it’s finally happening. “Microsoft is finally fixing one of the worst things... --- ### Microsoft's Making Significant Changes to Windows Updates and Feature Rollouts for Windows 10 - Published: 2019-04-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-significant-changes-to-windows-updates-and-feature-rollouts-for-windows-10/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, News, update, Windows 10 - Article Type: News Microsoft is once again making changes to the servicing model of Windows 10 but these updates will improve the quality of life with the OS and give the user more flexability. With Windows 10, Microsoft has introduced a new level of complexity with not only patches coming out each month, but also feature updates being released twice a year. To say that this has put additional strain on corporations and home users is a bit of an understatement. We have seen Microsoft revise its servicing model for Windows 10 several times since release and today, the company is making additional changes. But, these updates are going to improve the experience and should make using and managing Windows 10, a little bit easier. The next major update to Windows 10, sometimes referred to as 1903 or 19H1, will arrive later in the spring. One of the first changes that Microsoft is making this year to servicing of Windows 10 is to let major feature updates sit in the oven a little bit longer. The upcoming release, known as the Windows 10 May 2019 update, will be pushed to the 'Release Preview' ring of the Windows Insider program where it will remain until the end of May. This extended testing period, Microsoft hopes, will allow the company to further refine and iron out any major issues in the release before making the update generally available. The second significant change is that if you don't want to install this release, you will not be forced to do so until your OS reaches its end of life-cycle support. Meaning, Windows, starting with the next update, will allow you to delay the installation of the feature... --- ### Office Apps to Get Native Support for Office 365 Sensitivity Labels > Microsoft says that the Office desktop Windows apps will have native support for Office 365 sensitivity labels in the second half of 2019. Native support means that users won't need to install the Azure Information Protection (AIP) client to apply labels. - Published: 2019-04-04 - Modified: 2024-09-04 - URL: https://petri.com/native-support-office-365-sensitivity-labels/ - Categories: Microsoft 365, Office - Tags: AIP, Azure Information Protection, Office 365, Office ProPlus, Rights management, sensitivity labels - Article Type: News Microsoft says that the Office desktop Windows apps will have native support for Office 365 sensitivity labels in the second half of 2019. Native support means that users won't need to install the Azure Information Protection (AIP) client to apply labels. However, if they want to continue using the AIP client (because it is more functional), they need to deploy a system registry update. Removing the Need for the Azure Information Protection Client Microsoft released sensitivity labels for Office 365 in November 2018. Sensitivity labels allow users to apply “stickers” to documents and messages to mark the relative importance of their content. For the most sensitive content, the application of a sensitivity label can invoke encryption through an Azure rights management template. At present, you must deploy the preview version of the Azure Information Protection (AIP) client to expose the ability to apply sensitivity labels to Office documents. In addition, the AIP client takes care of fetching the label and policy information from the Security and Compliance Center and applying rights management templates to files if necessary. Microsoft is working to remove the need to install the AIP client by incorporating native support for sensitivity labels in the Office desktop, mobile, and online apps. When this happens, the apps will include the necessary code to download the sensitivity labels and policies and process the templates. It’s also expected that other Office 365 user interfaces, such as SharePoint’s browser interface to document libraries, will allow users to assign sensitivity labels. Office ProPlus Support in 2H 2019 According to a post shared with customers in a group (open to all) in Microsoft’s Yammer network, the Azure Information Protection team expect the Office ProPlus (click to run) Windows applications to offer native support for sensitivity labels in the second half of 2019. The exact time when a tenant will see this functionality depends on what Office... --- ### Getting Started with Azure Migrate - Published: 2019-04-03 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-azure-migrate/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Cloud, Learning, migrate - Article Type: How To, Overview This article will provide a quick overview of Microsoft's free Azure Migrate service. This service can help you assess your on-prem VMware environment to determine what workloads are ready for Azure and what your operational expense may look like by providing scaled cost estimates. Companies should be taking a hard look at moving more of their infrastructure to the cloud if they aren't already. Yes, hybrid deployments have been in the works for years, however, companies are starting to see greater returns on their investment and deciding to scale more to the cloud than ever before. The total cost of ownership (TCO) for maintaining and updating on-premises data centers are starting to greatly outweigh the arguments against the cloud. Moving from a capital expenditure (cap-ex) model (on-prem) to an operational expenditure (op-ex) model (in the cloud) is the decision a lot of companies are debating. In this article, I'll introduce you to the Azure Migrate service which was created to help assess your on-premises environment and provide you with cost estimates to move your workloads to Azure. Using this service should help make those decisions easier. What is Azure Migrate Azure Migrate is a free service provided by Microsoft. This service (at the time of this article) can be used to assess your on-premises VMWare environment (the option to assess local physical workloads and Hyper-V is on the roadmap). This service allows you to create and retain multiple projects at no cost. Supported regions for these projects include the US, Europe, Asia, and Azure Government. How does it work? The Azure Migrate service provides an appliance called the collector appliance. This appliance is a Windows Server VMware virtual machine which you import into your VMware environment. After you have created a project,... --- ### Health of Tech: Azure to Windows from the Microsoft Loft - Published: 2019-04-02 - Modified: 2019-04-02 - URL: https://petri.com/health-of-tech-azure-to-windows-from-the-microsoft-loft/ - Categories: Windows Client OS, Windows Server - Tags: Health of Tech The landscape of technology is changing quickly which is why it's important to understand how companies are staying relevant in the shifting computing landscape. This past week, I was in NYC with Paul Thurrott and Mary Jo Foley to talk Microsoft and it's health in the technology sector. Last week, Paul, Mary Jo, and I were in New York City where we kicked off a new show that we call Health of Tech. This series focuses on looking at technology and Microsoft as a whole to provide a 'health' of Microsoft. We covered everything from Xbox to Cloud to take a deep, and serious look, at how Microsoft has positioned itself in a world where its consumer services are not always the focus and its enterprise platforms are at the heart of everything they do. This event was recorded live in New York City and we hope to bring it to other locations in the future.    --- ### VMware Adds New Features to vRealize Cloud Management Platform - Published: 2019-04-02 - Modified: 2024-09-04 - URL: https://petri.com/vmware-adds-new-features-to-vrealize-cloud-management-platform/ - Categories: Cloud Computing, VMware - Tags: Cloud, cloud computing, News, Virtualization, vmware - Article Type: News VMware announced a new set of updates for their vRealize Cloud Management platform aimed at providing a unified control plane for local infrastructure and multi-cloud management. On April 2nd 2019 VMware announced a new set of updates for their vRealize Cloud Management platform aimed at providing a unified control plane for local infrastructure and multi-cloud management. To get up to speed on the new announcements I met with Taruna Gandhi, director of product marketing to discuss the updates to vRealize Operations 7. 5 as well as Taka Uenishi, senior product line marketing manager to cover the updates to vRealize Network Insight 4. 1 and vRealize Lifecycle Manager 2. 1. Self-Driving Operations with vRealize Operations 7. 5 Taruna pointed out that vRealize Operations is designed around four basic tenants: continuous performance, efficient capacity planning, intelligent remediation and integrated compliance. vRealize Operations 7. 5 enhances application performance with automatic workload placement. The new release provides placement optimization for vSAN workloads based on storage intent definitions. To aid in capacity planning vRealize Operations 7. 5 provides allocation aware capacity planning which can be helpful in managing multi-tenant scenarios. You can compare the resource allocations with the actual demands for resources. These is an enhanced what-if scenario analysis that allows you stack together multiple what-if planning scenarios to better represent real-world upgrade planning. Additional migration planning also supports HCI and public cloud scenarios. The remediation capabilities in vRealize Operations 7. 5 have a new focus on application monitoring. Telegraf agents can be automatically deployed to monitor operating systems as well as enterprise applications like Apache, SQL Server, Tomcat, MySQL and more. The new release also offers new out-of-the-box application monitoring dashboards. Metric correlations and new... --- ### Visual Studio 2019 Now Available for PC and Mac, Includes Live Share - Published: 2019-04-02 - Modified: 2024-09-04 - URL: https://petri.com/visual-studio-2019-now-available-for-pc-and-mac-includes-live-share/ - Categories: Visual Studio - Tags: News, Visual Studio, Visual Studio 2019 - Article Type: News Visual Studio 2019 is now available for the Mac and PC; Microsoft is also including Visual Studio Live share with the development suite too. Microsoft's Visual Studio 2019 application is a core component of the tools the company provides to developers. The product is a benchmark in the industry and can be a one-stop-shop for many developers. Starting today, the latest version, 2019, is now available for download. Building on the features of Visual Studio 2017, 2019 makes it easier to clone a Git repo or open an existing project. The updates for this edition also improves code navigation, document health indicators, and adds one-click processes to apply multiple refactoring rules. In addition, there are also updates to the debugging experience, including data breakpoints for . NET Core apps that help you break only on value changes you’re looking for; it also includes AI-assisted code completion with Visual Studio IntelliCode. Along with the release of Visual Studio 2019, Visual Studio Live Share is now generally available and is included with Visual Studio 2019. Live Share makes it significantly easier collaborate on your projects without the need to clone repos or setup environments specifically for reviewing code. And for Mac users, Visual Studio 2019 is available with updates targeted at the core of the IDE. The company says this will help bring new features to the platform faster in the future, and that this update includes a new C# editor. While Microsoft's acquisition of GitHub has been making the headlines for the last year or so, Visual Studio is the core development suite from Microsoft that is used by millions of developers around the... --- ### [Sponsored] Managing Teams Deployments for Better Outcomes > Teams is on a roll at present with the number of organizations using the app accelerating past 500,000. Good planning and forethought help enormously to ensure the success of any deployment and Teams is no different. - Published: 2019-04-02 - Modified: 2024-09-04 - URL: https://petri.com/managing-teams-deployments-better-outcomes/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: administration, deployment, Planning, Quadrotech, Teams - Article Type: Opinion Teams is on a roll at present with the number of organizations using the app accelerating past 500,000. Good planning and forethought help enormously to ensure the success of any deployment and Teams is no different. Whether you're running a migration from Skype for Business Online or a greenfield deployment, thinking before deploying is always a good thing to do. This post was sponsored by Quadrotech, you can learn about their Office 365 solutions on their website. Teams is on a roll. At the Enterprise Connect conference in mid-March, Microsoft said that the app is now used by over 500,000 organizations. More importantly, the number of organizations with over 10,000 users had grown to 150, up from the 60 reported at Ignite in September 2018. The uptick in organizations with large Teams populations marks a transition from test to widespread deployment and reflects the app’s growing maturity. The Importance of Planning But you don’t get to deploy Teams past a couple of hundred users without a management and governance plan. Elements of the plan include: Training for users and administrators alike. You can plan to go without training, but you'll end up in a mess. Who can create new teams – everyone or just a set of people nominated by IT? Will Teams be public (anyone can join) or private? Will Teams impact existing IT infrastructure like SharePoint sites? Are user mailboxes in Exchange Online or Exchange on-premises? If on-premises, you might have to upgrade your servers to allow on-premises mailboxes to work with Teams over a hybrid connection. Are teams open for guest access? If so, what teams can have guest members and what access will guests have to sensitive information? Do we need to migrate users from Skype for Business Online or another IM/meeting application? Will Teams be the voice platform for the organization? If so, elements of the Microsoft... --- ### Everything You Need to Know About Azure Infrastructure – March 2019 Edition > This post will summarize the Azure Infrastructure news from March 2019, featuring Azure Storage, Azure South Africa, Azure Stack HCI, and more. - Published: 2019-04-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-march-2019-edition/ - Categories: Cloud Computing, Microsoft Azure - Tags: AzCopy, Azure, Azure Backup, Azure Firewall, Azure Monitor, Azure Monitor Logs, Azure Security Center, Azure Sentinel, Azure Virtual Machines, Blob Storage, Blueprints, Container Registry, Data Box, ExpressRoute, firewall, Governance, Lifecycle Management, Log Analytics, Managed Disks, networking, Premium, Regions, Security, South Africa, SQL Server, storage, virtual machines, Virtual Network, Virtual Network Gateway, VNET, VNet Peering, VPN, Windows Virtual Desktop - Article Type: News As we approach Build, Microsoft is ramping up the Azure announcements; here's everything that happened last month. In my monthly summary, I will gather up all the Azure infrastructure news from the last month. You can tell that a big conference (Build) is coming; there are lots of announcements this month. The trend since November was that there was a tiny trickle, and that continued into February. Then things started to increase. A Big Month for Storage Various groups in Azure storage had news to share this month: Azure Data Box family now enables import to Managed Disks: If you need to migrate massive amounts of virtual machines, and you’re OK with an offline (and slow) import process via courier, then this might be the answer to your needs. Azure Premium Block Blob Storage is now generally available: Claus Joergensen, previously of Storage Spaces and Storage Spaces Direct, has brought his experience of driving performance in software-defined storage to Azure. If you need to work with many small blobs and have low latency, then Premium Blob Storage might be for you. High-Throughput with Azure Blob Storage: High-Throughput Block Blob (HTBB) improves the write throughput when working with larger blobs. Azure Blob Storage lifecycle management generally available: The process that allows you to automatically move blobs between hot, cool and archive tiers is now available for production use. Azure Data Box family meets customers at the edge: A family of hardware and virtual appliances is now available to extend Azure into your data center. Note that Data Bog Gateway is a virtual appliance (Hyper-V or VMware)... --- ### Everything You Need to Know About Windows – March 2019 - Published: 2019-03-29 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-windows-march-2019/ - Categories: Windows Server - Tags: cloud computing, Kubernetes, Windows 10, Windows 7, Windows Defender Application Guard, Windows Server, Windows Virtual Desktop - Article Type: News This month sees Kubernetes Windows container support come out of beta, Windows Virtual Desktop enters public preview, and the next major feature update for Windows 10 nears the finish line. This month sees Kubernetes Windows container support come out of beta, Windows Virtual Desktop enters public preview, and the next major feature update for Windows 10 nears the finish line. Kubernetes Now Supports Windows Containers Popular container orchestrator Kubernetes has moved support for Windows Server from beta to stable in version 1. 14. This version of Kubernetes includes production support for scheduling Windows containers on Windows nodes in a Kubernetes cluster. Now organizations can manage Linux and Windows containers together using one solution. Kubernetes is like Docker Swarm in that it automates scaling, managing, updating, and deleting containers. You can start using Windows containers with Kubernetes by adding Windows nodes to existing Linux clusters. It’s worth noting that Windows Server 2019 is the only version of Windows supported. Find out more about Kubernetes Windows container support here. Chromium-Based Edge Leaked At the end of last year, Microsoft announced that it would be changing the rendering engine used in its Edge browser to Chromium. And not only that, but that Edge would become a win32 app supported in Windows 7, MacOS, and of course Windows 10. This week saw an early preview version leak, leading commentators to believe that a public preview is imminent. There are not many surprises in what is called Edge 75. It looks more like Google Chrome than the current version of Microsoft Edge and while I haven’t tried it myself, reports suggest that performance is excellent and that the features currently baked in mainly work... --- ### Everything You Need to Know About Office 365 - March 2019 > You get Teams news, you get Teams, news, and you get Teams news. Lots of Teams focus in this month's round-up of Office 365 News and Notes. - Published: 2019-03-29 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-march-2019/ - Categories: Microsoft 365 - Tags: Azure, Linkedin, Microsoft Teams, Office 365, Yammer - Article Type: News It's called Office 365 but this month was all about Teams, Teams, Teams. Okay, people. Look, there is a lot of Teams and related Teams content this month. Don’t shoot the messenger. Just accept Teams is a big deal and you need to care more. On the bright side this month I am back to a little more of my attitude to go with the news. I got bored with behaving for the last couple of months so enjoy. Microsoft Flow gets a new entry into Teams Rolling out in April, a new endpoint will be available to have Microsoft Flow interact with Teams. This endpoint will let you end a Flow with “messaging someone in my tenant with Teams”. This compounds upon the previous announcements made around Flow and Teams. If you are a regular reader you know I keep reminding you “Teams will be the center of the Office 365 ecosystem. ” So, quit ignoring it and go learn about it. And if you aren’t using Flow... well, you and I aren’t friends. Teams gets more features Did I mention you should be learning Teams? This monthly Teams roundup has some cool new features listed as coming. The one that excites me the most is updates to the Meetings portion of the app. As a hardcore Skype user, the Meetings functionality in Teams has left me wanting. So I have high hopes they finally catch up. There are other cool features like Private Channels and Information Barriers but I want meetings to work better. Finger’s crossed. Use LinkedIn to share Office 365... --- ### Paul Thurrott's Short Takes: March 29 - Published: 2019-03-29 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-29/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because I have a hard time saying no, this edition of Short Takes looks at Microsoft’s latest tax problem, Windows 10 version 1809, throwing ice water on April Fools, Microsoft de-notching Minecraft, and much, much more. Because I have a hard time saying no, this edition of Short Takes looks at Microsoft’s latest tax problem, Windows 10 version 1809, throwing ice water on April Fools, Microsoft de-notching Minecraft, and much, much more. Microsoft and Amazon ask to be taxed more Microsoft and Amazon this week publicly backed a new bill that would increase the taxes they pay to Washington state in order to fund workforce education for students studying computer science, engineering, and nursing. “Let’s ask the largest companies in the tech sector, which are the largest employers of high-skilled talent, to do a bit more,” Microsoft president Brad Smith writes in an op-ed piece for the Seattle Times. “This means that the largest tech companies would pay somewhat more than the 1. 8 percent rate. Let’s use this opportunity to create in our state at least a partial antidote to the current lack of access to new skills and higher education that’s bothering the nation. ” It’s kind of hard to argue with this idea. Plus, as Smith notes, the tech economy is going gangbusters. It’s time to strike. “Should I use Microsoft Word on a Mac or a cheaper alternative? ” You should definitely use Microsoft Word on a cheaper alternative to the Mac. Windows 10 version 1809 is finally ready Almost six months after its development completed, Windows 10 version 1809 is finally ready for “broad” distribution, including to businesses. That’s the word from Microsoft, which adjusted its Windows 10 release information website... --- ### Everything You Need to Know About SharePoint – March 2019 > SharePoint is new and old. Learn about connected web parts, news, templates and more all in this months SharePoint news and notes. - Published: 2019-03-29 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-march-2019/ - Categories: SharePoint - Tags: pnp powershell, PowerShell, SharePoint - Article Type: News Two themes this month. PNP PowerShell is awesome and got more awesome and what is old is new. The PowerShell is pretty self-explanatory but the old is new is fun. We get back connected web parts (circa 2003), we can do templates, and the News capability (which reminds me of 2003 portals) are all covered this month. I still think the product team is holding back on us as we march toward SharePoint Conference in Vegas in May. I bet they will have more than a few tricks up their sleeves. PNP PowerShell is available for SharePoint 2019 Hooray. The world’s greatest PowerShell package, Patterns and Practices PowerShell, is now available for SharePoint 2019. And in case you have been sleeping under a rock. This is the must-have for SharePoint Administrators and Site Owners whether you are using SharePoint Online or SharePoint 2013, 2016, or 2019. It just does all of those great things you have always wanted to do, like work with lists or great templates, that you didn’t have a good way to do before. You can get the 2019 version here or read my article that introduces it here. SharePoint Templates to inspire Speaking of PNP. With SharePoint Online PNP PowerShell is the only way to create and deploy templated sites. PNP is also a community supported, yet official, Microsoft project. To that end, they came up with a series of templates that you can download and gain inspiration from. The SharePoint Provisioning Service is... --- ### What Challenges Do You Face with IT Purchases? - Published: 2019-03-28 - Modified: 2024-09-04 - URL: https://petri.com/what-challenges-do-you-face-with-it-purchases/ - Categories: Main - Tags: Petri, Survey We know that buying hardware, software, and services can be challenging and we are looking for your feedback about the barriers you face when making a buying decision. We know that buying hardware, software, and services can be challenging and we are looking for your feedback about the barriers you face when making a buying decision. We have a short survey and one lucky entrant will win a $250 gift card: if you have a few minutes, please consider taking the survey, here. --- ### How Retention Impacts Office 365 Storage > Office 365 retention policies help organizations keep information for as long as needed. But retention consumes storage. This isn't a problem for Exchange Online, but it is for SharePoint Online. - Published: 2019-03-28 - Modified: 2024-09-04 - URL: https://petri.com/how-retention-impacts-office-365-storage/ - Categories: Exchange Online, Microsoft 365, Office, SharePoint Online - Tags: Compliance, Exchange Online, Office 365, retention policies, SharePoint Online - Article Type: Opinion Office 365 retention policies help organizations keep information for as long as needed. But retention consumes storage. This isn't a problem for Exchange Online, but it is for SharePoint Online, because files held in the Preservation Hold Library are charged against the tenant storage quota. This isn't a reason to not use retention policies, but you should be careful. I am a strong advocate of using Office 365 retention policies to keep information for long enough to nullify user deletion errors. If you have Office 365 E3 or E5 licenses, you can deploy default retention policies to keep email, documents, and Teams messages for specified periods and then use retention labels to assign longer retention periods to specific messages, documents, folders, libraries, or teams. Retention and Storage Retention is an easy and effective mechanism to deploy and can eliminate some of the reasons why people feel the need to deploy separate backups for Office 365. However, it’s important to understand how retention policies work, how to recover items kept by policy if necessary, how to use adaptive scopes for retention, and the impact retention has on storage. The last point is only important for Exchange and SharePoint, the base workloads of Office 365. It doesn’t affect apps Teams and Planner where Microsoft manages the storage for messages and metadata. Exchange Mailbox Storage The situation with Exchange is straightforward. Storage is managed on a mailbox basis. Personal mailboxes used by Office 365 E3 and E5 accounts have a 100 GB quota for “active” email. In addition, mailboxes can be archive-enabled and make use of expandable archives, which grow in 50 GB chunks (or auxiliary mailboxes). For retention purposes, Exchange mailboxes have an extra 100 GB Recoverable Items quota. As items are deleted or changed, the Mailbox Folder Assistant checks each item against policy and keeps a copy in... --- ### How to Install the RSAT Tools in Windows 10 - Published: 2019-03-28 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-the-remote-server-administration-tools-in-windows-10/ - Categories: Windows 10 - Tags: Remote Server Administration Tools, Windows 10 - Article Type: How To Here's how to quickly and easily install the Remote Server Administration Tools in Windows 10. The Remote Server Administration Tools (RSAT) package familiar server tools, like Active Directory Users and Computers (ADUC) and Server Manager, for Windows client operating systems. The tools have long been built-in to Windows Server and there is no need to download them. But until Windows 10 version 1809, you needed to download the right RSAT package for your version of Windows and then install the tools using the Control Panel. If you are wondering why I’m discussing RSAT now when Microsoft is pushing Windows Admin Center (WAC) as the future of graphical user interface administration in Windows Server, that is because there are still many tools not available as part of WAC. Most notably, for administering Active Directory. But in general, WAC is the way forward if you want to use GUI tools for Windows Server management. You can find more information on using WAC on Petri: Windows Admin Center -- The Future of the Windows Server GUI and Getting Started with the Windows Admin Center. Install RSAT in Windows 10 RSAT is a Feature-On-Demand in Windows 10 version 1809 and later. But unlike in Windows Server and versions of Windows that require RSAT to be downloaded manually, RSAT is installed using the Settings app rather than the Control Panel. Log in to Windows 10 with an administrator account. Open the Settings app by pressing WIN+I. Click Apps in the Settings app. On the Apps & features screen, click Manage optional features. On the Manage optional features screen, click... --- ### How to Run Code Remotely in Visual Studio Code - Published: 2019-03-27 - Modified: 2024-09-04 - URL: https://petri.com/how-to-run-code-remotely-in-visual-studio-code/ - Categories: Windows Server - Tags: PowerShell, PowerShell Remoting, remote management, Visual Studio Code, Windows Server - Article Type: How To How to run code on a remote Windows Device from Visual Studio Code using PowerShell Remoting. When you are working on PowerShell scripts, it’s standard practice to use the Windows PowerShell Integrated Scripting Environment (ISE) or other code editor, like the popular Visual Studio (VS) Code from Microsoft. VS Code is certainly not perfect, but Microsoft has stopped developing the PowerShell ISE so if you want the latest experience, VS Code is the way to go. But what if you are developing code that needs to be tested on a remote device? You could manually copy any code changes to the remote device each time you need to run a test but that is time consuming and a pain because you end up with two copies of the file, one locally and another on the remote device. But what if you could run the code on the remote device without leaving VS Code? With some help from PowerShell Remoting, you can do just that. Connect to a Remote Device Inside Visual Studio Code There are a couple of prerequisites that you need to meet before you can use remoting. Both the PC on which VS Code is installed and the remote Windows device must be running Windows PowerShell. That shouldn’t be an issue with any modern version of Windows. PowerShell Remoting uses the Windows Remote Management (WinRM) protocol, which is enabled by default in Windows Server 2012 and later versions. WinRM is installed but disabled by default in client versions of Windows. Enable Windows Remote Management If you want to enable WinRM on a Windows client... --- ### Microsoft Surface Hub Event Announced for April - Published: 2019-03-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-surface-hub-event-announced-for-april/ - Categories: Hardware - Tags: Microsoft, Surface Hub - Article Type: News Microsoft has announced a Surface Hub event for April where the company is expected to finally do a deep dive on the hardware that is inside the collaboration device. Microsoft has been promoting its second generation Surface Hub for what feels like an eternity but it has been about a year since they first started talking about the device. Today, the company sent out invites for what is expected to be a Surface Hub event in April. The event is expected to showcase how the new device fits into the Microsoft ecosystem as well as showcasing partner solutions to integrate the hardware. Considering that Microsoft will not be shipping the Surface Hub 2X until next year, this event is likely focusing on the 2S only. Further, I would expect that we finally learn the specs and availability of the 2S device at this event. The event will be held in NYC on April 17th and I expect to be there to cover everything Microsoft is announcing and to see if they have anything else up their sleeves. --- ### Microsoft's Upcoming Chromium-based Edge Browser Has A Few Features for the Enterprise - Published: 2019-03-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-upcoming-chromuim-based-edge-browser-has-few-features-for-the-enterprise/ - Categories: Windows Client OS - Tags: Edge, Microsoft, Security - Article Type: News Microsoft's upcoming Edge browser that is based on Chromium has leaked and it contains a few knew features for the enterprise. Earlier this week, a version of Microsoft's upcoming Edge browser that is based on Chromium has leaked ahead of its public revealing which is expected in the coming months. While my early impressions of the browser are quite positive, if we dig into the settings, there are also a couple of items worth pointing out as they will positively impact the enterprise channel. While it is quite easy to find the download links for the leaked bits, I do not recommend that you install them on any corporate machine or production environment. Despite the fact that the install files are digitally signed by Microsoft, they are not publicly supported and should be used with caution. That being said, if you look in the 'flags' area of the new Edge, there are several experimental features that are likely going to be pitched to corporations as to why they should adopt this browser and drop Chrome or Firefox. The first feature is that you will be able to sign into Edge with an Azure Active Directory account. This likely means that it will be possible for corporate users to travel with their preferred settings, on all of the devices where they have Edge installed, along with bringing policy control that is enabled by an administrator. But, I'm not sure if this feature will be enabled on day one as the intent is to use the Azure Active Directory OneDrive tenant for that specific org to sync the data rather than Microsoft's own... --- ### Getting Started with Azure Adaptive Network Hardening - Published: 2019-03-26 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-azure-adaptive-network-hardening/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Azure Security Center, getting started, Learning, Security - Article Type: How To, Overview Azure Security Center has included a new feature in preview called Adaptive Network Hardening which uses machine learning to analyze both ingress and egress traffic from your Azure virtual machines. Once it's gathered enough data, I will make security recommendations to better harden your resources. Microsoft is continuously expanding Azure on a daily basis; this expansion also includes security features. There is some debate about who owns the responsibility of securing assets in the cloud, regardless of who owns the platform. Microsoft identifies who is responsible for what as the customer progresses through their platform displayed in their shared responsibility model (seen below). Securing and configuring your virtual machines falls under the ownership of the customer. In this article, we'll look at a new method for securing virtual machines with Microsoft's preview release of Adaptive Network Hardening. What is it? Adaptive Network Hardening is a feature found in the Azure Security Center. You can find it under the Networking blade once you've activated Azure Security Center. This feature is like an add-on to your Network Security Group. At a fundamental level, a Network Security Group can have rules applied to it granting or denying network traffic or access. Adaptive Network Hardening provides a more granular recommendation based on the traffic it has analyzed. For instance, you have a virtual machine in Azure you use as a jump box to administer the other Azure assets. You access this jump box through remote desktop protocol on port 3389. You created a Network Security Group rule which allows this traffic from a 10. 0. 0. 0/24 subnet. Adaptive Network Hardening will analyze this traffic (machine learning) and make recommendations to reduce the scope of the subnet. It does not apply the recommendations for you. It will provide instructions under Remediation Steps found... --- ### Microsoft Responds to Dutch DPIA with Privacy Control for Office ProPlus > Microsoft has announced that version 1904 of Office ProPlus (click to run) for Windows includes new privacy controls to allow organizations limit the data sent back by the Office apps. - Published: 2019-03-26 - Modified: 2024-09-04 - URL: https://petri.com/new-privacy-controls-office-proplus/ - Categories: Microsoft 365, Office - Tags: DPIA, GDPR, Office ProPlus, Privacy - Article Type: News Microsoft has announced that version 1904 of Office ProPlus (click to run) for Windows includes new privacy controls to allow organizations limit the data sent back by the Office apps. There's no word about when they will deliver similar controls for Office for Mac, Office mobile, and the Office 365 server apps. Privacy is a real challenge in a world where cloud apps gather so much telemetry to measure performance, reliability, and other aspects, but it's good that organizations will now be able to control how much they share with Microsoft. Office, the Dutch Government, and Telemetry Last November, I reported that a Data Protection Impact Assessment (DPIA) report done on behalf of the Dutch Government slammed Microsoft because of the way that Office apps transmitted so much data back to the Redmond mother ship. The report referred to the "large-scale and covert collection of personal data," a big no-no in the era of GDPR. Yesterday, Microsoft announced that they will include additional privacy controls to allow Office 365 tenants to manage the data Office ProPlus for Windows (version 1904 onwards) sends to Microsoft (Figure 1). Figure 1: Microsoft says Office ProPlus gets extra privacy controls Microsoft also says that "work is underway to enable these (privacy) controls for Office on other platforms. " My assumption is that this statement refers to Office for Mac and the Office mobile apps. Microsoft is only delivering the privacy controls for the click-to-run version of Office. There's no word about if customers running the MSI version of Office will see the same kind of privacy controls and when. If forced to guess, I'd say no because Microsoft is doing as much as they can to influence customers to move to the click-to-run version of Office. Privacy and the Office 365 Server Apps Microsoft's announcement contains nothing about what they might do to control telemetry transmitted back by the Office 365 server apps: Exchange Online, SharePoint Online, Teams, OneDrive for Business, Planner, and so on gather a heap of data... --- ### Disaster Recovery Trends for 2019 - Published: 2019-03-25 - Modified: 2024-09-04 - URL: https://petri.com/disaster-recovery-trends-for-2019/ - Categories: Amazon Web Services, Backup & Storage, Hybrid Cloud, Microsoft Azure, Ransomware - Tags: Azure, Backup, Cloud, Disaster Recovery, storage - Article Type: Overview Disaster recovery (DR) methods for protecting today’s IT infrastructure and data are going through a period of substantial change. Today businesses need to do more than protect against service failures and traditional downtime. Disaster recovery (DR) methods for protecting today’s IT infrastructure and data are going through a period of substantial change. Today businesses need to do more than protect against service failures and traditional downtime. Simple backups are no longer adequate to deal with today’s ever-growing complexities and the need for 24. 7. 365 operations. In addition, malware threats are becoming increasingly more advanced as well as far more common. Today’s DR solutions need to provide protection and fast recovery from all of these different types of downtime and data loss threats. Let’s take a closer look at some of the latest DR trends for 2019. Outages will continue to be high profile events First, it’s clear that outages, downtime, ransomware and malware attacks will continue to gain significant notoriety – especially for public enterprises. There’s also no doubt that how businesses respond to outages and downtime will also be a major point of public concern. A company’s reputation will be influenced by how the organization responds following a disaster or a significant downtime event and by the actions that they use to prevent future outages. Increased use of the Hybrid Cloud DR There’s no doubt that the use of the hybrid cloud will continue to grow as a DR solution.  Gartner has reported that a shift to the hybrid cloud has been ongoing for the past couple of years. Although cloud use is growing, businesses can’t abandon their investments in on-premise infrastructure and applications. Yet at the same time, they need to deal with massive... --- ### Remote Management Using Puppet Bolt and Windows Subsystem for Linux - Published: 2019-03-25 - Modified: 2024-09-04 - URL: https://petri.com/remote-management-using-puppet-bolt-and-windows-subsystem-for-linux/ - Categories: Windows 10 - Tags: DevOps, Puppet Bolt, remote management, Windows 10, Windows Server, Windows Subsystem for Linux - Article Type: How To How to run remote commands on Windows Server using Puppet Bolt installed in Ubuntu with the help of the Windows Subsystem for Linux (WSL). Last month, in How To Run Commands on Remote Windows Servers Using Puppet Bolt on Petri, I showed you how to install Puppet Bolt on Windows 10 and use it to run commands remotely in Windows Server 2019. Puppet Bolt is a free, open source, agentless, cross-platform remote task runner that aims to make it easier to get started with automation. Bolt supports any language the remote nodes run natively, and it can execute any existing management scripts that you have. Puppet Bolt can be installed in Windows or Linux. But as I start to learn more about Bolt, I wondered whether it might be beneficial to run it in Linux instead of Windows. Principally because the documentation is written with Linux users in mind first and foremost. And secondly, it would give me the chance to test whether the Windows Subsystem for Linux (WSL) in Windows 10 could really replace a Linux virtual machine (VM). In this article, that’s what I’ll set out to show. WSL lets you run a lightweight Linux environment on Windows without the overhead of a VM. And while it’s possible to run Linux GUI programs using an X Server, WSL isn’t intended for average users who want to spin up their favorite GUI Linux apps. WSL is for developers and sysadmins that need Linux interoperability in Windows. WSL provides a layer for mapping Windows kernel system calls to Linux kernel system calls, allowing Linux binaries to run in Windows unmodified. WSL also... --- ### How to Audit Permission Changes on Windows File Servers - Published: 2019-03-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-audit-permission-changes-on-windows-file-servers/ - Categories: Windows Server - Tags: Auditing, Configuration Management, Global Object Access Auditing, Security, Windows Server - Article Type: How To How to set up auditing to track changes to permissions on Windows File Servers. Auditing is one of those subjects that tend to put people to sleep. But understanding what is going on in your environment is critical for security and maintaining service. That said, auditing isn’t a replacement for proper controls. For example, you should always make sure that permissions on file servers cannot be changed without some oversight. If all your IT staff has domain admin privileges and there are no change control procedures in place, auditing may help you rein in the chaos, but you are treating the symptom rather than addressing the problem. That’s if a rogue IT staffer hasn’t already disabled auditing with their admin rights. With that said, let’s look at how to monitor changes to permissions on file servers. Before Windows will log file system events, you need to enable auditing in policy and configure system access control lists (SACLs) on the file/folders that you want to audit. For the purposes of this article, I’ll use local policy to configure audit policy but if your file servers are members of an Active Directory domain, you can use Group Policy instead. For more information on how to work with Group Policy, see How to Create and Link a Group Policy Object in Active Directory on Petri. Configure Audit Policy You have two options when it comes to which policy to enable. You can enable object access, which is a legacy policy setting that logs more than just file system access. If you are using Windows Server... --- ### Paul Thurrott's Short Takes: March 22 - Published: 2019-03-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-22/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10, Windows 7 - Tags: News - Article Type: Overview Because Windows 7 ain’t going to put itself out to pasture, this edition of Short Takes looks at Microsoft’s new Windows 7 end of support warning Google’s new browser ballot idea, insecure Nokia handsets, Apple’s coming news service, and Facebook’s inability to do anything right. How Facebook protects your passwords. Poorly. Because Windows 7 ain’t going to put itself out to pasture, this edition of Short Takes looks at Microsoft’s new Windows 7 end of support warning Google’s new browser ballot idea, insecure Nokia handsets, Apple’s coming news service, and Facebook’s inability to do anything right. Windows 7 upgrade nagware arrives Microsoft has begun warning Windows 7 users that support for the system will end in January 2020. The warning isn’t as nagging as many feared, given previous attempts like this. And it does provide a simple way to turn off the warnings. The only real issue is that Windows 7 users don’t have much recourse: They can back up their files and photos and ... then they have to research and buy a new PC. I think we’re going to find that many Windows 7 users simply ignore the warnings, and keep using the system in many cases. And that many may use this as an opportunity to try something simpler, like a Chromebook. It’s too bad Microsoft couldn’t have done something to reward upgraders, like provide Windows 10 for free again. “How to Avoid Windows 7’s End-of-Support Nags” There is literally a visible “Do not remind me again” checkbox. How dumb are your readers? Irony alert: Google just proposed a browser ballot screen for Android As you may recall, Microsoft was forced to institute a so-called browser ballot screen in Windows 7 in the EU a decade... --- ### Microsoft Retires Windows 10 Semi-Annual Channel Targeted Releases - Published: 2019-03-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-retires-windows-10-semi-annual-channel-targeted-releases/ - Categories: Windows 10 - Tags: Windows 10, Windows Update, Windows Update for Business - Article Type: News Microsoft is making changes Windows Update for Business and the Windows 10 release schedule. Windows Update for Business (WUfB) is a feature in Windows 10 that allows organizations to control how clients are updated without requiring any local infrastructure. In Windows 7 it was common to deploy Windows Server Update Services (WSUS) to control which updates were applied and when. Windows 10 can still be used with WSUS but WUfB provides a way to distribute updates without the costs involved in deploying WSUS. For more information on how WUfB works and configuring it, check out Understanding Windows Update for Business and Windows 10 Tip: Configure Windows Update for Business using Group Policy on Petri. As it stands in Windows 10 version 1809 and previous releases, you can choose to configure devices to update on the Semi-Annual Channel (SAC) or Semi-Annual Channel (Targeted). Devices set to update on SAC-T receive Windows 10 feature updates as soon as they are made available. But SAC deploys feature updates roughly three months after they are made generally available, or in other words, when Microsoft deems the update to be ‘business ready’. But it is up to you to make sure cumulative updates (CUs) get applied because the SAC release of Windows 10 is the same OS build as the previous SAC-T release. For example, the SAC-T release of Windows 10 version 1803 was OS build 17134. 648 and the SAC release was the same OS build number. A SAC Only World As you are probably already aware, there are only two feature updates to Windows 10 each... --- ### Office 365 Supervision Policies Now Include Teams > Good news for those who like to know what's going on in email: Office 365 supervision policies now support Teams personal chats and channel conversations in addition to email. - Published: 2019-03-21 - Modified: 2024-09-04 - URL: https://petri.com/office-365-supervision-policies-include-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Compliance, Office 365, Supervision, Teams - Article Type: How To Good news for those who like to know what's going on in email: Office 365 supervision policies now support Teams personal chats and channel conversations in addition to email. And you can now use sensitive data types to find communications worth reading. Seriously, supervision policies are important to a certain section of the market, so it's good that Teams messages now surface for review. Office 365 Policies to Monitor Communications In November 2017, I wrote about supervision policies, a feature of Office 365 that allows administrators to configure policies to monitor the flow of email between specific users. The idea is that supervisors (those nominated to check the messages) can detect problems in the traffic, such as people discussing topics that they shouldn’t, revealing trade secrets, infringing regulations, or being rude about management. Time moves on, especially quickly in the cloud. Internal communications in many Office 365 tenants changed with the introduction of Teams, now used by 500,000 organizations. The transfer of traffic from email to Teams varies from company to company, but there’s no doubt that some communications that used to take place in email are now in Teams personal chats or channel conversations. Acknowledging the new world, Microsoft has refreshed supervision policies to make it possible to monitor Teams traffic. New Supervision Policies The process to configure a supervision policy is documented online. In a nutshell, what’s new is: Coverage of messages sent in Teams personal chats and channel conversations. Figure 1 shows how to add individual users and groups to a policy. The important thing here is that if you add an individual, their personal Teams communications and email are monitored but not any contributions they make to Teams channels. To monitor channel conversations, you must add the team to the policy. Figure 1: Selecting target users and groups for a supervision policy (image credit:... --- ### Microsoft's Big Bet on Virtualized Desktops Reaches Public Preview - Published: 2019-03-21 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-big-bet-on-virtualized-desktop-reaches-public-preview/ - Categories: Virtualization, Windows Client OS - Tags: Microsoft, News, Windows Virtual Desktop - Article Type: News Announced at Ignite last year, Microsoft's big bet on virtualized desktops is finally ready for public testing. Last year at Ignite, Microsoft announced a private preview of their upcoming service, Windows Virtual Desktop, and today, the company is making it available publicly. While it's not quite ready for production environments, the company is now ready to let anyone who wants to dip their toes into the service, test it out in their own environments. Windows Virtual Desktop is a new cloud service that delivers a multi-user Windows 10 experience which is optimized to work with Office 365 Pro Plus. The new offering makes it significantly easier to scale Windows 10 and Office deployments on Azure and comes with built-in security and compliance. With the end of Windows 7 support occurring in January of 2020, Microsoft is targeting to have this new service online for production use in the second half of 2019. If you do migrate to this service to virtualize Windows 7, the company will provide 'free' extended security updates for that version of Windows to help ease the migration challenges as you move to Windows 10 and a virtualized environment. Of course, you will be paying for the desktop service, so those updates are not free, but this is an easier way to prolong moving away from that OS for those who are behind on their migrations. As with nearly every other Microsoft offering, the company's partners like Citrix and a few others will be offering this service with additional value-added options as well. One item worth pointing out is that Microsoft is... --- ### Microsoft's Extending its Security Graph to MacOS, Adding More Services to ATP - Published: 2019-03-21 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-extending-its-security-graph-to-macos-adding-more-services-to-atp/ - Categories: Security - Tags: Advanced Threat Protection, macOS, Microsoft, News, Security - Article Type: News Microsoft is continuing to build out its security services with a new offering for MacOS and new features for ATP as well. If you haven't been paying close attention, you could easily miss that Microsoft has quietly become a security vendor. From offering desktop services and endpoint protections, the company now provides a nearly-complete approach to protecting your data and your environments. Starting today, Microsoft is bringing Defender Advanced Threat Protection (ATP) to the Mac. While the offering is entering private preview today, in the near future, if you currently use ATP in your environment, you will soon be able to extend that protection to MacOS devices. With the service coming to MacOS, it opens the door to the question of when will Linux and Android be natively supported by ATP? While this functionality can be implemented with partner solutions, I fully expect these, and other platforms, to be supported in the near future; I asked Microsoft if they had this planned and they would not definitively say support is coming. In addition to supporting MacOS, the company is also announcing that Threat and Vulnerability Management (TVM) capabilities are now available in Microsoft Defender ATP; this enables the ability to discover, prioritize and remediate threats and vulnerabilities. This service is available starting in preview with general availability expected in the not-to-distant future. TVM is a new feature of Defender ATP that makes it easier to understand your vulnerabilities, prioritize remediation based on signals from ATP, and then resolve the weaknesses using tools and assistance from Microsoft. Further, customers will be able to use built-in remediation processes to help bridge gaps between... --- ### Monitor Your Website's Availability with Azure Application Insights - Published: 2019-03-20 - Modified: 2024-09-04 - URL: https://petri.com/monitor-your-websites-availability-with-azure-application-insights/ - Categories: Microsoft Azure - Tags: Azure, Microsoft - Article Type: How To With Azure's Application Insights you can monitor the availability of any web site or web API from multiple locations around the world. Do you know the uptime statistics for your website? If not, Azure App Insights makes the statistics easy to find. App Insights can execute both basic and multi-step availability tests against any http or https URL. It doesn’t matter if your site is hosted on a VM, in Azure App Services, or on a Raspberry Pi in your closet. If the web site is public, AppInsights can run these availability tests in addition to collecting telemetry, metrics, and errors. The first step is to create an App Insights resource in Azure. If you’ve never setup App Insights before, then you can follow the directions in Microsoft’s App Insights overview. Once the resource is ready, go to the Availability blade and click the “Add Test” button. If you created App Insights in concert with an App Service resource, Azure might have already configured a default test. You can click on the Details tab to see the list of all existing tests. There are two types of tests in App Insights. The first is the basic ping test. With the ping test you give AppInsights a single URL to examine. The other type of test is the multi-step web test where you give App Insights an XML . webtest file. If you’ve ever generated load or web tests using Visual Studio, then you’ll recognize the . webtest file extension. Just be aware that Microsoft has deprecated webtest features in Visual Studio, so I’d stick to using the ping test. Test Configuration With... --- ### Use Puppet Bolt Tasks to Manage Windows Server - Published: 2019-03-20 - Modified: 2024-09-04 - URL: https://petri.com/use-puppet-bolt-tasks-to-manage-windows-server/ - Categories: Windows Server - Tags: DevOps, Puppet, Puppet Bolt, remote management, Windows Server - Article Type: How To How to use Puppet Bolt Tasks to run remote jobs on Windows Server. If you missed my piece last month on running commands on Windows Server using Puppet Bolt, you will need to read that and install Puppet Bolt on Windows or Linux before following the instructions below. Puppet Bolt is a free, open source, agentless, cross-platform tool that aims to make it easier to get started with automation. Because Bolt is agentless, you can use it to orchestrate operations without installing agents or using a Puppet Master server; and it can be used in mixed Linux and Windows Server environments. In today’s article, I’m going to show you how to run Tasks on a remote Windows server. Tasks are scripts used to perform single, ad-hoc actions. Tasks can be grouped into Plans that use other logic to carry out more complex tasks. But that is for another day. I’m running Bolt in Ubuntu Linux, but the same commands should work if you have installed Bolt in Windows. Additionally, you should be able to use the same Tasks against a remote Linux server. Run Built-In Puppet Bolt Tasks You can easily create your own tasks but before looking at that, you should familiarize yourself with running the tasks that are available with Bolt out-of-the-box. To list the available tasks, run the command below: bolt task show Optionally, you can specify a modules path. While tasks are essentially scripts, they are stored in modules and can have metadata so that they can reused and stored easily. Tasks can be single-platform or cross-platform... . --- ### How to Quickly Deploy an Active Directory Test Environment in Azure - Published: 2019-03-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-quickly-deploy-an-active-directory-test-environment-in-azure/ - Categories: Microsoft Azure - Tags: Azure, Infrastructure as Code, Windows Server Active Directory - Article Type: How To How to deploy a Windows Server Active Directory test environment in Microsoft Azure. If you follow my posts on Petri, you’ll know that this isn’t the first time I’ve covered automating deployment of Active Directory (AD) in Azure. In 2014 and 2015, I looked at using PowerShell to deploy AD domain controllers (DCs) in Azure. Provision Domain Controllers in Azure using PowerShell on Petri was my first attempt at a PowerShell script. A year later, I improved the script somewhat in Automate Domain Controller Deployment in Microsoft Azure. At the beginning of last year, I wrote about using Azure Resource Manager (ARM) templates to achieve the same goal in a three-part series: Deploy Active Directory and Certificate Services in Azure Using Infrastructure-as-Code -- Part 1 Deploy Active Directory and Certificate Services in Azure Using Infrastructure-as-Code -- Part 2 Infrastructure-as-Code Part 3: Deploy Active Directory and Certificate Services in Azure The result of that was a series of templates and PowerShell Desired Configuration Management (DSC) code that deployed a DC and a member server running AD Certificate Services. If you want to learn the ins and outs of ARM templates and Infrastructure-as-Code, it’s well worth taking a look at those articles. But the resulting deployment in Azure was over complicated because the project was based on an existing template that deploys two DCs behind a load balancer. Test Lab Guide GitHub Repository What I really wanted was a simple template that deploys a single DC and server joined to the domain. I could write and maintain my own ARM template to achieve that goal,... --- ### Microsoft's Bringing Customized Backgrounds, Whiteboards, and Live Captions to Teams - Published: 2019-03-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-customized-backgrounds-whiteboards-and-live-captions-to-teams/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft’s Teams app has quickly become a cornerstone of the Office 365 platform. Offering a wide variety of customized experiences, the communication hub is a product that is receiving significant investment from senior management and today they are rolling out several new features. Microsoft’s Teams app has quickly become a cornerstone of the Office 365 platform. Offering a wide variety of customized experiences, the communication hub is a product that is receiving significant investment from senior management and today they are rolling out several new features. Back in February, I noted that Microsoft would soon bring to market the ability to replace your background, instead of simply blurring it. Announced today, the company is enabling background replacement with different scenes to fully mask the contents behind the user, rather than simply blurring them. To help with remote collaboration, a whiteboard feature will soon be enabled inside of Teams. The idea is straightforward, using the feature, you (and your team) have access to an infinite digital canvas for meeting participants to work together directly in Teams. But what may be the best feature announced today is the addition of live captions to calls hosted inside of Teams. With the addition real-time captioning to calls, it opens up the door to not only accessibility scenarios but can also assist with times when it's hard to hear the conversation if you are in a noisy environment. It's a simple addition, but one that makes meetings more productive and more inclusive. While none of these features on their own will be a revolutionary update to the communication platform, they are additional small steps that keep bringing more functionality to the platform. Of those organizations that are using the platform, Microsoft says that there are 150 companies with 10,000... --- ### If an Office 365 Disaster Happened, What Would You Do? > A question none of us like to think about too much is what we would do if a natural or man-made disaster took out Office 365 and disrupted service for an extended period. - Published: 2019-03-19 - Modified: 2024-09-04 - URL: https://petri.com/office-365-disaster-incidents/ - Categories: Microsoft 365, Office - Tags: Backups, Disaster Recovery, G Suite, Incidents, Office 365, Outages - Article Type: Opinion A question none of us like to think about too much is what we would do if a natural or man-made disaster took out Office 365 and disrupted service for an extended period. The good news is that the way Microsoft has built out Office 365 into datacenter regions helps to limit the effect of any outage, but the fact still remains that something bad could happen. What would you do then? Office 365, Retention, and Disaster Recovery I recently wrote about how many people don’t realize that Office 365 includes retention policies that can keep SharePoint and OneDrive documents for much longer than the 93-day maximum supported by the traditional recycle bin. The result was a ton of comments, most of which I enjoyed. Mary-Jo Foley and I explored some of those comments in our recent MJFChat. One piece of feedback was that you shouldn’t confuse retention with disaster recovery. This is absolutely true. As part of the Office 365 data governance framework, retention is all about keeping information for as long as you need it for and removing what you don’t need, which is how Office 365 retention policies work. Policies include settings to specify how long information is kept and what happens when that retention period finishes. In some cases, information is removed (including the option to go through a moderated disposition process). In others, it’s kept and left to the user to decide. The Nature of Disaster On the other hand, disaster recovery focuses on getting back to a normal operational state following a major outage. In the on-premises world, this could be an issue affecting a complete datacenter or a major piece of infrastructure that can’t be put right quickly, like anecdotal incidents of telecoms lines being severed. Companies work out plans for recovering from different types of disasters and create IT infrastructures to cope, insofar as budgets and technology allow. In the cloud, the... --- ### Patch Tuesday – March 2019 - Published: 2019-03-18 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-march-2019/ - Categories: Windows Client OS - Tags: Patch Tuesday, Windows 10, Windows 7, Windows Server 2008 R2, Windows Server 2016, Windows Server 2019 - Article Type: News This month sees Microsoft patch two zero-days in Windows 7 and critical bugs in Windows Deployment Services and DHCP. This month sees Microsoft patch two zero-days in Windows 7 and critical bugs in Windows Deployment Services and DHCP. Windows 10, Windows Server 2016, and Windows Server 2019 Patch Tuesday sees Microsoft plug 6 critical flaws in Windows 10 and Server 2016. CVE-2019-0603 is a Remote Code Execution (RCE) bug in the way Windows Deployment Services (WDS) implements the Trivial File Transfer Protocol (TFTP) service. To exploit this vulnerability, an attacker would need to send a specially crafted request to an unpatched WDS server, and it could allow them to execute arbitrary code with elevated permissions. There are three critical RCEs in the DHCP service caused by a memory corruption bug that would require an attacker to send a specially crafted request to run arbitrary code on the client. The two remaining critical flaws are also RCEs. One is a bug in Microsoft XML Core Services that could allow an attacker to invoke MSXML through a specially crafted website. The second is in the way ActiveX Data Objects handle objects in memory and it could allow an attacker to gain the same rights as the logged in user. The 27 remaining flaws are rated important and include 3 RCEs and 8 Elevation of Privilege (EOP) bugs. CVE-2019-0797 was reported by Kaspersky Labs so is probably already being exploited. Microsoft Edge gets fixes for 6 critical RCEs, all of which are scripting engine memory corruption vulnerabilities that could allow an attacker to gain the same rights as the logged... --- ### Getting Started with Azure on a Budget - Published: 2019-03-18 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-azure-on-a-budget/ - Categories: Career Skills, Cloud Computing, Microsoft Azure - Tags: Azure, budget, Costs, free, getting started, Learning - Article Type: How To, Overview Microsoft's Azure platform offers a robust number of services and while it may sound expensive, it's easy to stay on a budget or even get some services for free. Cloud platforms are intimidating, yet you know you need to get your head wrapped around this space to potentially move the needle on your career, but at what cost? First, you're required to enter your credit card information for your freemium trial period. That by itself can be a show stopper. Most trial periods are 30 days. What can you possibly learn in 30 days before your spend starts hitting your card? In this post, we will pull back the curtain on how you can kick the tires in Azure without breaking the bank. Here's what we'll look at: 30 day free (up to $200) 12 months free Always free Where do I see my charges How to avoid surprises 30 Day Free (Up to $200) The first thing you'll want to do is STOP. I say this because I want you to understand you have only 30 days to have free anything up to $200. My point is to be sure you can schedule time in the next 30 days to take advantage of this credit. You might be saying to yourself, "$200 won't get me very far". Not so fast. Unless you're doing some crazy stuff, spinning up top tier VMs and letting them run or creating an Azure SQL Managed Instance, you should be ok. Browse to https://https://azure. microsoft. com/en-us/free/ Click Start Free Follow the prompts, yes, you have to provide a credit card. Viola, you should be up and running in Azure. Remember, you have your... --- ### Paul Thurrott's Short Takes: March 15 - Published: 2019-03-15 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-15/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10, Windows 7 - Tags: News - Article Type: Overview Because it’s the ides of March, this edition of Short Takes looks at Huawei’s Plan B, a Windows 7 courtesy reminder, Windows 10 automatic driver rollback, Microsoft v. Foxconn, and much, much more. Microsoft's Senior Leadership Team delays Andromeda yet again. Because it’s the ides of March, this edition of Short Takes looks at Huawei’s Plan B, a Windows 7 courtesy reminder, Windows 10 automatic driver rollback, Microsoft v. Foxconn, and much, much more. Huawei has an OS “Plan B” should relations with the U. S. sour even further I was interested to see that Huawei has quietly developed its own OS alternatives to Android (on smartphones) and Windows (on PCs) in case relations with the U. S. degrade so badly that it might be forced to stop using them. “We have prepared our own operating systems, if it turns out we can no longer use these systems, we will be ready and have our plan B,” Huawei mobile chief Richard Yu Chengdong told Die Welt, a Germany-based newspaper. Naturally, one wonders what these alternatives are, exactly. My guess is that its smartphone OS alternative is based off the open source AOSP project on which Android is also based. And that its Windows alternative is a form of Linux, perhaps with Wine or a similar Windows app emulation environment. But having to move away from Android and Windows wouldn’t just be bad, it would be debilitating. And I’m curious that Huawei is actually worried enough about the possibility to do such a thing.  “The Microsoft Myth: We Shouldn’t Assume More Antitrust Will Give Us More Tech Innovation” Actually, that did happen. Microsoft will nag Windows 7 users to upgrade... --- ### Microsoft's new Game Stack Aims to Simplify the Game Development Process - Published: 2019-03-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-game-stack-aims-to-simplify-the-game-development-process/ - Categories: Cloud Computing, Microsoft Azure - Tags: Game Stack, Microsoft, News - Article Type: News Microsoft's rolling out a new service that is designed to make it easier to build content with integrated matchmaking, communication, and many other features for game developers. We are on the cusp of a significant change in how games or developed and played. With cloud services from multiple vendors growing at a significant rate, the ability to develop games, natively in the cloud, and then stream them to any device in the world with low latency is quickly becoming a reality. To little surprise, Microsoft is heavily pursuing this vision along with many other vendors like Google, Amazon, and Sony. And with today's announcement of Game Stack by Microsoft, the Redmond-based company is hoping to make its the platform to develop your next generation title, the best in the business. Game Stack at a high level is putting a bow around several services Microsoft already offers with a new marketing spin. The products include Azure, DirectX, Visual Studio, Xbox Live, App Center, and Havok. While all these services have been available previously with Azure, Microsoft is bringing PlayFab into the Azure family which the company acquired a year ago via acquisition. With this addition to the Game Stack suite, PlayFab will bring with it managed game-development services, real-time analytics, and LiveOps capabilities that will utilize Azure compute and storage on the backend. The idea is quite simple, building a game is becoming increasingly complex with each new generation and Microsoft is bundling together a suite of services that they hope will attract developers to its platform. The goal is to let PlayFab+Azure do the heavy lifting of backend functionality for the games with a near... --- ### Stick or Stay: Should I Upgrade to Exchange 2019? > Exchange 2019 has been around for six months. It's a good time to consider if on-premises organizations should upgrade or stick with what they have. Or move to the cloud and embrace Office 365. - Published: 2019-03-14 - Modified: 2024-09-04 - URL: https://petri.com/stick-or-stay-upgrade-exchange-2019/ - Categories: Exchange 2016, Exchange 2019, Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange 2016, Exchange 2019, Exchange Online, Metacache, Office 365 - Article Type: Opinion Exchange 2019 has been around for six months. It's a good time to consider if on-premises organizations should upgrade or stick with the version of Exchange they run today. Exchange 2019 is a solid release, even if Microsoft's engineering efforts are largely focused on the cloud these days. Of course, moving to Exchange Online is an option too, but perhaps not for the dedicated on-premises deployments. Time to Decide About Exchange 2019 Exchange 2019 debuted in October 2018. Six months later, it’s reasonable to ask if on-premises deployments should stick with their current version or upgrade to the new release. Customers have had the chance to consider their options, ISVs have updated their products, Microsoft has released documentation for the new version, and spring is in the air. New Features in Exchange 2019 Unlike every previous release of Exchange, the new features included in Exchange 2019 is a short list. The heavy lifting done in the past to introduce PowerShell, the Database Availability Group, datacenter failover, to drive storage I/O lower and lower, and even the sometimes-unloved managed availability (everyone loves automated server reboots) is not present in Exchange 2019. Instead, the sum total of major engineering enhancements in Exchange 2019 is the introduction of the metacache (read the documentation here). Including the search index in mailboxes (big funnel) and some calendar improvements wrap up the list of changes. Exciting as it is to see Exchange give the stamp of approval to SSD as the location for “hot” database content, the fact remains that many customers probably won’t use the metacache. Reasons include: Their deployments are too small (these organizations are great candidates to move to Office 365, if they have the network connectivity). They don’t want to spend the money on extra SSDs or have already invested in a solid-state solution. They run virtualized Exchange servers. On the other hand, if you follow... --- ### Delivering High Availability in the Hybrid Cloud - Published: 2019-03-13 - Modified: 2024-09-04 - URL: https://petri.com/delivering-high-availability-in-the-hybrid-cloud/ - Categories: Administrative Tools and Scripts, Backup & Storage, Cloud Computing, Hybrid Cloud, Virtualization - Tags: Backup, cloud computing, Disaster Recovery, hybrid cloud, storage, Virtualization - Article Type: Overview Hybrid cloud availability can be difficult because most businesses are running a mixture of many different technologies that all need to be available in order to support their business-critical applications. Availability in the hybrid cloud needs to begin at the design phase of your application infrastructure. Most of today’s businesses are in the process of modernizing their IT infrastructure and incorporating the hybrid cloud into their processes to enable increased flexibility, scalability and cost savings. At the same time, there is a need for increased availability even though the infrastructure continues to become more complex. Consumers expect web services to always be available and in response, many organizations are striving toward 24. 7. 365 availability. However, true continuous availability is extremely difficult to achieve and it can also be very expensive. A more practical goal for most organizations is 99. 99% availability. However, to achieve 99. 99 percent availability you can still only have a little more than 52 minutes of annual downtime which includes both scheduled and unscheduled downtime. To deliver maximum availability for your hybrid cloud applications you need to incorporate availability concepts into both the application’s design and its on-going data protection plans. Designing for Hybrid Cloud Availability Hybrid cloud availability can be difficult because most businesses are running a mixture of many different technologies that all need to be available in order to support their business-critical applications. Availability in the hybrid cloud needs to begin at the design phase of your application infrastructure. Modern design needs to account for infrastructure diversity, unpredictable demands, and the ability to recover from failure. To help accommodate for infrastructure diversity, it helps to design for a complete separation of compute and data persistence. This can facilitate deployment and scaling flexibility. Next, if the demand for services can be unpredictable it’s... --- ### How to Make Working With Time Zones and Azure, Easier - Published: 2019-03-13 - Modified: 2024-09-04 - URL: https://petri.com/how-to-make-working-with-time-zones-and-azure-easier/ - Categories: Microsoft Azure - Tags: Azure, Microsoft - Article Type: How To If your software hasn't made the switch to using Coordinated Universal Time, then now might be the right time. I’m drafting this article on the morning of March 10th, 2019, which is the morning when the United States collectively moves our clocks forward by one hour and makes the switch to daylight saving time (DST). We haven’t always moved to DST on the second Sunday in March. The federal government here has been experimenting over the last 100 years by moving the change date forwards, backwards, and sometimes enforcing no DST standard at all. If that seems confusing, then yes, those of us in I. T. already know how time zones, leap years, and time changes complicate our world and are a constant source of bugs and failures. The federal Department of Transportation regulates the time zones we use in the U. S. This fact might be surprising, until you know the history of how the railroad industry pioneered the use of time zones in the U. S. Until that happened in the late 1800s, every town maintained their own local time using the sun, which made train schedules difficult to standardize. These days it is the cloud industry that is standardizing our use of time. Azure, for example, defaults to Coordinated Universal Time (UTC) in every resource and every region. When using UTC, time is still set using a local solar time, but the local solar time of a specific location in the world at 0° longitude. Azure uses UTC Everywhere What does it mean, specifically, to say Azure uses UTC by default? Let’s take virtual machines as an... --- ### Microsoft to Roll Out Windows 7 Upgrade 'Nag' Screens in April - Published: 2019-03-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-roll-out-windows-7-upgrade-nag-screens-in-april/ - Categories: Windows 10, Windows 7 - Tags: Nag screen, News, Windows 10, Windows 7 - Article Type: News Starting next month, Microsoft will be rolling out 'nag' screens for Windows 7 that will inform you that the OS will soon reach its end of life servicing. In January of 2020, Windows 7 will officially reach its end of life and unless you are willing to pay up, your install of the OS will no longer be supported. What this means is that your device will become vulnerable to exploits and will likely cease to support new hardware as well. Back when Windows XP was reaching the end of its life-cycle, Microsoft introduced the 'nag' screen which was a popup that informed the user that the OS needed to be updated to Windows 7. And to little surprise, the company is going to use this same technique to get users to upgrade from Windows 7 to 10 starting next month. With NetMarketshare reporting that 38% (Statcounter reports 33%) of the Windows OS market is still running Windows 7 for the month of February, it's not hard to see why Microsoft is starting to deploy this tactic. With hundreds of millions of users still on the OS, it's unlikely that all users will migrate before the final update is released. When these screens do arrive, you will have the option to turn them off; there will be a "do not notify me again" setting for the prompts. The image above is the message that Microsoft used when Windows XP reached its end of life. What's not made clear in the blog post is if commercial customers will see the prompt as well. I would hope that admins will be able to turn off the notification for endpoints to... --- ### Windows 10 Will Now Automatically Uninstall Corrupted Updates - Published: 2019-03-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-will-now-automatically-uninstall-corrupted-updates/ - Categories: Windows 10 - Tags: News, Updates, Windows 10, Windows Update - Article Type: News Microsoft has deployed a new feature of Windows 10 that will automatically rollback failed updates when it detects a failed startup. With the release of Windows 10, Microsoft has moved to a significantly more aggressive schedule of releasing updates. Even though most of the times the updates install smoothly, when they don't, things typically go downhill, fast. Starting with the latest updates, if Windows detects a failed startup following an update, the OS will attempt to remove the update, and reboot the machine to see if this fixes the problem. If this does resolve the issue, Windows will not attempt to re-install the update for 30 days with the goal being that this is enough time for Microsoft or the OEM to fix the issue that is causing the machine to fail on startup. This is an excellent update to Windows and should help to avoid downtime associated with a failed update. You will know if this process has happened on your machine if you see the prompt "We removed some recently installed updates to recover your device from a startup failure". The more obvious question is why did it take this long for this functionality to arrive? A failed boot after updates has been an issue since the inception of Windows Update was introduced into Windows but late is better than never. You can read more about this new feature, here. Hopefully, you won't ever see this message on your device, but if you do, just know that you now have thirty days to figure out which update was causing the issue before the process starts all over again. --- ### Bringing Intelligence to the Office 365 Substrate > Artificial intelligence is of major interest to Microsoft right now, so it really shouldn't be a surprise that Jeffrey Snover, one of their technical chiefs, is now heading the charge to bring AI to the Office 365 substrate. - Published: 2019-03-12 - Modified: 2024-09-04 - URL: https://petri.com/office-365-substrate-artificial-intelligence/ - Categories: Microsoft 365, Office - Tags: artificial intelligence, Exchange Online, Office 365, SharePoint Online, Substrate, Teams - Article Type: Opinion Artificial intelligence is of major interest to Microsoft right now, so it really shouldn't be a surprise that Jeffrey Snover, one of their technical chiefs, is now heading the charge to bring AI to the Office 365 substrate. Quite what this means for the internal operations of Office 365, applications and clients, and customers is to be seen, but some interesting times lie ahead in the evolution of Office 365. The Story of Office 365 So Far One of the common problems I meet when talking about Office 365 is when people discuss the service as it was in the past instead of how it is today. Like all technology, Office 365 has evolved over time. When Microsoft launched Office 365 in June 2011, it really wasn’t much of a cloud service. Instead, customers bought into a loose collection of cloudified on-premises applications with some administrative bits to make everything hang together. Today, after massive engineering efforts and some acquisitions, Microsoft has transformed Office 365 into a very different beast. The stovepipes that once isolated Exchange and SharePoint are gone. New applications built from multiple components drawn from Office 365 and Azure are taking a lot of market attention, and new APIs allow developers more access to Office 365 than ever before. A critical part of the evolution of Office 365 is the development of the Office 365 substrate (Figure 1). If you search for a description of what the Office 365 substrate is, you won’t find a crisp definition. To me, after observing Microsoft for many years, the substrate is all about a set of common services that tie Office 365 together. We see these services turn in in places like the data governance framework and search today. In the future, the common services might become more important than the Office 365 headline acts of Exchange, SharePoint, and Teams are today. Figure 1:... --- ### Microsoft Aims to Educate the C-Suite with new AI Business School - Published: 2019-03-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-aims-to-educate-the-c-suite-with-new-ai-business-school/ - Categories: Artificial Intelligence - Tags: AI, artificial intelligence, Microsoft - Article Type: News To help business leaders better understand these technologies, Microsoft is launching AI Business School, a new learning program targeted at executives. For decades, we have been hearing about how artificial intelligence, machine learning, and quantum computing are going to forever change the landscape around us. From predicting the next trends to identifying weaknesses in your security layer, the applications of these new technologies is pitched heavily at every conference (and sales meeting) as the wave of the future. While quantum computing may be decades away, machine learning and artificial intelligence are starting to manifest in ways that go from conceptual value to a real return on investment. The challenge is, though, that understanding these new technologies, how to implement them, and understanding the types of tasks these tools can be utilized for, can consume an entire career. To help business leaders better understand these technologies, Microsoft is launching AI Business School, a new learning program targeted at executives. The content, which is free, focuses on strategy, culture, and responsibility. In short, think of this program as a way to get about knee-deep into the pools of AI and beyond; rather than simply dipping your toes in every so often. While this course will not magically turn your business into an AI-driven company overnight, it helps to you to understand the foundation that is needed to not only deploy the technology to your operations but how to make sure that when you do, you can extract real-world value as well. And that's the key, extracting the value. Diving head-first into AI and ML is not something you buy off a... --- ### How to Edit Linux Files Remotely in Windows Using Visual Studio Code - Published: 2019-03-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-edit-linux-files-remotely-in-windows-using-visual-studio-code/ - Categories: Windows Client OS - Tags: DevOps, linux, Visual Studio Code, Windows 10, Windows Subsystem for Linux - Article Type: How To This is how you can edit files on a remote Linux server using Microsoft’s VS Code. Visual Studio Code (VS Code) is a lightweight code editor for Windows, Linux, and MacOS. It has grown in popularity among developers and system administrators because it is fast, extensible, free, easy to use, and cross platform. The job of system administrator has changed a lot over the past few years, and what with the rise of Infrastructure-as-Code, it is likely that you will need a good code editor to create and debug scripts and templates. Like all code editors, VS Code works with local files by default. But it can also be used to edit files and run code on remote servers. Using PowerShell, it is easy to edit and run code on remote Windows servers, and I’ll cover that in a separate article. But as is almost always the case, doing the same in Linux is more complicated. Regardless of the platform, the ability to edit files remotely is useful because it allows you to work from a single management PC and saves you constantly needing to switch between different environments. But it is especially useful for Linux because using the built-in text editors can be cumbersome. Install Remote VSCode Extension In this article, I have VS Code installed in Windows 10 version 1809 and will attempt to edit a file running in Ubuntu 18. 04. The instructions here should work with VS Code running on Linux as well, but I haven’t tested it. The first step is to install the Remote VSCode extension in Visual Studio... --- ### Paul Thurrott's Short Takes: March 8 - Published: 2019-03-08 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-8/ - Categories: Cloud Computing, Dynamics, Microsoft 365, Microsoft Azure, Security, Windows 10 - Tags: News - Article Type: Overview Because Punxsutawney Phil is a lying liar who lies, this edition of Short Takes looks Windows 10 stumbling to 800 million active devices, an open source Windows Calculator, Microsoft’s two new datacenters in Africa, and so much more. Typical Pennsylvania driver Because Punxsutawney Phil is a lying liar who lies, this edition of Short Takes looks Windows 10 stumbling to 800 million active devices, an open source Windows Calculator, Microsoft’s two new datacenters in Africa, and so much more. Windows 10 is used on 800 million active devices As I reported over on Thurrott. com, Microsoft this week announced a new milestone: Windows 10 is now in use on over 800 million active devices (almost all of which, yes, are PCs). That’s a pretty big number. But it’s worth remembering that Microsoft’s Terry Myerson foolishly claimed that Windows 10 would be installed on over 1 billion devices with “two or three years” of January 2015. By that point, Windows 10 was installed on just 700 million devices and here, over four years later, we’re just hitting 800 million. So ... yeah. Things certainly haven’t panned out the way Microsoft expected. Which makes sense, since the math was always wrong anyway. “Microsoft is getting close to its goal of 1 billion Windows 10 devices” And by “close,” we mean “off by 200 million units” and “1-2 years late and counting. ” So, yeah. “Close. ” Microsoft is open sourcing Windows Calculator for some reason Microsoft announced this week that it is open sourcing the Calculator app in Windows 10. And while I had heard about this months ago---I was told that Notepad and other apps would be open sourced as well---I’m still curious about the rationale... --- ### Windows 10 Now Running on 800 Million Devices - Published: 2019-03-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-now-running-on-800-million-devices/ - Categories: Windows 10, Windows Client OS - Tags: News, Windows 10 - Article Type: News Adding 16 million new users a month, Windows 10 crosses the 800 million mile marker. While the growth may have slowed over time, as is natural for an OS that has been available for more than 3 years, Windows 10 has passed a new milestone. The OS, as Microsoft announced today, is running on more than 800 million devices. It was back in September that the company announced that Windows 10 was running on 700 million devices which means the company has added about 16 million new devices each month following that announcement. Using that same math, Windows 10 should hit a billion devices in a little over a year. And hitting a billion devices is one of the major goals for Microsoft. The company had hoped to hit it last year but they missed their publicly stated deadline after its mobile OS failed to make a dent in the mobile segment. As we run up to the final days of Windows 7, which happens in January of 2020, it's likely safe to say that the adoption of Windows 10 shouldn't slow down. In fact, it could accelerate as companies continue to migrate away from the aging OS and adopt Microsoft's evergreen desktop operating system. --- ### Microsoft Enables Yammer Functionality in Teams - Published: 2019-03-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-enables-yammer-functionality-in-teams/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams, Yammer - Article Type: News Microsoft has flipped the switch and you can now integrate a Yammer conversation directly into Teams. As Microsoft continues down its path of working to make Teams the central hub of productivity instead of email, the company has been adding new connections to the platform at a feverish pace. But one tool that was always left on the back-burner was Yammer; that's changing today. Microsoft has flipped the switch and you can now integrate a Yammer conversation directly into Teams. Specifically, you can ingest a targeted group or topic feed from Yammer in a new Tab and participate in the conversation without having to leave the application. Each time you access the Yammer tab, the user is re-authenticated to make sure that they have permission to view that conversation. This is needed as employees frequently change roles and by enforcing an 'authentication upon view' mechanism, this makes it easier to control conversations with Yammer. Since the announcement of Teams, there continues to be whispers that Yammer's future may be in doubt. But considering that Teams was launched over two years ago and Yammer is still here today, the platform is likely not going away anytime soon. Adding Yammer to Teams isn't going to magically make the platform the perfect productivity companion but the goal is to make Teams the place where you can access all of the tools your company uses without having to jump through several different windows. With each new feature, especially Yammer integration, Microsoft is chipping away at the list of items needed to make Teams the one-stop Office shop. --- ### Managing Users with Teams Messaging Policies > If you have a small Office 365 tenant, you probably don't need to use Teams messaging policies to control user access to Teams features. But larger tenants soon discover that policy-based management - Published: 2019-03-07 - Modified: 2024-09-04 - URL: https://petri.com/managing-users-teams-messaging-policies/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Messaging Policy, Office 365, Teams, Teams Admin Center - Article Type: How To If you have a small Office 365 tenant, you probably don't need to use Teams messaging policies to control user access to Teams features. But larger tenants soon discover that policy-based management is a great way to control the functionality available to select sets of Teams users. Here's how to create and assign a policy to users through the Teams Admin Center or PowerShell. Managing Teams with Policies When Microsoft launched Teams in November 2016, the tenant-wide settings to control the application were in the Office 365 Admin Center. With the introduction of the Teams and Skype for Business Online Admin Center in April 2018 (now renamed the Teams Admin Center), some of those settings are replaced by a set of policies (messaging, meeting, and live events) The major advantage of this approach is that you can apply different policies to different users instead of a single setting for the entire tenant. Where it makes sense to have global settings, like those governing guest user access, the Teams Admin Center manages these under org-wide settings. Teams Messaging Policy Microsoft publishes default policies for tenants, so there’s no need to go near them unless you have good reason. In small tenants, you might never need to use anything other than the global policy. Larger tenants are more likely to find circumstances when they wish to restrict user behavior in some way. Figure 1 shows a set of messaging policies in a tenant. Figure 1: Messaging policies in the Teams Admin Center (image credit: Tony Redmond) What a Messaging Policy Does Each team has owners that can restrict what users can do inside the team using options controlled through the Settings section of the Manage team menu. The settings messaging policy assigned to a apply to all teams in the tenant. Policy settings don’t allow users to override a restriction... --- ### How to Quickly Create Active Directory Users in Bulk - Published: 2019-03-06 - Modified: 2024-09-04 - URL: https://petri.com/how-to-quickly-create-active-directory-users-in-bulk/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell - Article Type: How To This is how you can quickly create hundreds or even thousands of Active Directory users with the help of PowerShell. Recently I revisited deploying Windows Server Active Directory in Azure, a subject that I’d covered a few times here on Petri. Today I want to look again at deploying Active Directory (AD) users in bulk. Specifically using standard usernames. By that I mean rather than creating user objects with real names, like Bob Jones or Russell Smith, use a syntax like employee1, employee2, etc. Partly because it is easier to have PowerShell automatically generate standard names and it works fine for a test environment. Some organizations choose to use standard names in production, so the code I’m going to show you today isn’t necessarily just for a test lab. If you are interested in using PowerShell to populate Active Directory with user objects that use real names, take a look at Populate Active Directory with Test User Accounts on Petri, where I show you how to use a script by Johan Dahlbom. Or if you prefer a simpler solution, take a look at Create New Active Directory Users with Excel and PowerShell. Using a ForEach Loop to Create User Objects PowerShell ForEach loops are generally used to read through an array of strings. For example, the following code reads the access control list (ACL) for each folder in the c:accounts directory tree. $FolderPath = Get-ChildItem -Directory -Path "c:accounts" -Recurse -Force ForEach ($Folder in $FolderPath) {$Acl = Get-Acl -Path $Folder. FullName} But if you don’t have an array of data to read like in the example above, you can use... --- ### Microsoft's Delayed South African Data Centers are Now Operational - Published: 2019-03-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-delayed-south-african-data-centers-are-now-operational/ - Categories: Cloud Computing, Microsoft Azure - Tags: Data Center, Microsoft, News - Article Type: News Back in 2017, Microsoft announced that they would be opening two data centers in Africa by the end of 2018. Even though they missed that deadline, the data centers are now up and running. Back in 2017, Microsoft announced that they would be opening two data centers in Africa by the end of 2018. Even though they missed that deadline, the data centers are now up and running. This is another major milestone for Microsoft as these are the first regions for the company on that continent. While the company has been building out a network of data centers around the globe for about a decade, Microsoft had not invested, in this capacity, in Africa. With the new regions becoming available for local companies, it will help to reduce the latency of cloud applications and also provide local redundancy options as well. Especially with many local governments requiring data be kept on its soil, having data centers in a diverse set of geographical localities makes it easier for proper disaster recovery practices but also helps local companies use Microsoft's cloud services while also remaining compliant with local regulations. With each data center costing a billion dollars or more to develop, opening new locations is not something the company approaches casually. But with its cloud services continuing to grow and that it uses the local data centers as a big part of its marketing pitch, the company's investment into opening up new locations does not appear to be slowing down. --- ### Windows 10 for Virtual Desktops Preview Available Again in Azure - Published: 2019-03-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-for-virtual-desktops-preview-available-again-in-azure/ - Categories: Windows 10 - Tags: Azure, cloud computing, Remote Desktop Services, Windows 10, Windows Virtual Desktop - Article Type: News The multi-user version of Windows 10 that Microsoft touted at last year’s Ignite conference in September is now available again as an Azure Marketplace image. The multi-user version of Windows 10 that Microsoft touted at last year’s Ignite conference in September is now available again as an Azure Marketplace image. This version of Windows will power Microsoft’s Windows Virtual Desktop (WVD) solution that should be publicly available later this year. The image had been available last year but was pulled in December. To be honest, I hadn’t noticed the image was in Azure prior to today, so this marks the first time I have been install multi-user Windows 10 in a VM. I’m not aware of any official announcement from Microsoft on availability but a tweet on January 19th from Scott Manchester, Microsoft Remote Desktop Services (RDS) Group Manager, read: “We are making great progress toward the WVD Public Preview. We have a 6 ring flighting model and globally scalable architecture. Excited to open the flood gates soon! ” So I would expect an official announcement that a preview program will start soon. Exclusive to Azure The multi-user SKU of Windows 10 is exclusively available in Azure, making sure that Windows Virtual Desktop will be the best hosted remote desktop product on the market. Amazon Workspaces offers Windows 10 desktops ‘powered by Windows Server 2016’ but it is an inferior experience to what Microsoft will be offering. WVD will include ‘Office Container’ Office 365 optimizations for Outlook and improved OneDrive performance when compared to a local desktop installation of Windows. Licensing Microsoft 365 E3, E5, F1 and Windows Enterprise and Education E3 and E5... --- ### Understanding Azure's New App Configuration Service - Published: 2019-03-04 - Modified: 2024-09-04 - URL: https://petri.com/preview-azures-new-app-configuration-service/ - Categories: Microsoft Azure - Tags: Azure, Microsoft - Article Type: How To Microsoft has released a new app configuration service for Azure that can help you manage all the configuration settings for the services and components in a distributed system. One challenge in building software for the cloud is managing all the configuration settings for the services and components in a distributed system. Azure’s new App Configuration service, currently in preview, helps you solve the configuration challenge. Imagine you’ve built a new solution in Azure consisting of a web application deployed in App Services, an API deployed in Functions, and a background processing service in a virtual machine. You’ve followed best practices and separated your configuration from your code using configuration files, but now you’re looking at three sets of configuration files for the three main components of the system, and some of the settings overlap, so you have some duplication. The App Configuration service gives you a central source to store configuration for all three components. Make a change to one key value in the service, and all three components will see the updated setting. App Configuration also gives you encryption in transit and at rest, and point-in-time snapshots so you can compare settings over time, or rollback settings after a failed deployment.  The service itself is easy to use. To get started in the portal, search for “App Configuration”. You’ll go through the typical new resource setup in Azure. Once your configuration resource is ready, you’ll find primary and secondary connection strings, like you would in a storage account. You can also use the portal’s Key-Value Explorer to begin adding settings into the configuration store. Notice in the menu from the screenshot that you can also... --- ### Everything You Need to Know About Azure Infrastructure – February 2019 > This post will summarize the Azure infrastructure (IaaS) news from February 2019, including VNet integrations, Azure Monitor, backup, DR, storage, and more. - Published: 2019-03-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-february-2019-edition/ - Categories: Microsoft Azure - Tags: Agile, ASR, Azure, Azure Backup, Azure DevOps, Azure Firewall, Azure Monitor, Azure Portal, Azure Site Recovery, Azure Virtual Machines, Backup, COBOL, DevOps, DevTest Labs, Disaster Recovery, DR, firewall, Hub-and-Spoke, IaaS, Infrastructure, Ls_v2, Mainframe, Monitor, Network Security Group, networking, NSG, Security, storage, Storage Account, virtual machine, Virtual Network, VNET, VNet Peering, VPN - Article Type: Overview Even though February was a shorter month, there were still a number of significant Azure announcements that you should know about.   In my monthly wrap-up, I will share what happened in the world of Azure IaaS over the last month. We’re closing in on the end of “Titanium” – the current October – March sprint in Microsoft’s DevOps calendar. And Microsoft Build is not too far away. Things have been relatively quiet since early November, but now things are starting to warm up again. I have suspected that product groups were holding back, but the trickle before the dam-burst has started. Here we go! Azure Monitor Beginning to Scale I’ve written a few posts here on Petri about using Azure Monitor to create alerts when virtual machines break some threshold. If you read the posts, at first you’ll have thought “that looks easy”. Then after creating a couple of CPU & RAM alerts for a few virtual machines, you will think “wow this is tedious” and “is there a better way to do this? ”. That’s because Azure Monitor’s alerts did not scale well beyond a fairly simple point solution. Each alert required: To be created for each virtual machine. You to figure out what the alert thresholds should be for each alert/virtual machine combination. So how would that scale out to say, 50, 100, or 1000+ machines? This sounds very like the enterprise monitoring solutions that 1990’s corporations used to buy and then leave gathering dust in a corner. Two things have appeared in Azure Monitor over the last couple of weeks to indicate that Microsoft is listening... --- ### Everything You Need to Know About Office 365 – February 2019 > Feburuary 2019 everything you need to know about Office 365 is right here. Okay, that might not be true but still good stuff to keep you in the loop. - Published: 2019-03-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-office-365-february-2019/ - Categories: Microsoft 365 - Tags: Forms, Microsoft Outlook, Microsoft Teams, Office 365, Powerapps While snow may have hit Seattle this month, Office 365 still dripped out of Redmond - here's what happened in February. I think the snowmageddon got them. The news is a little lite this month and all I can figure is the snow storms Seattle got this month just broke the whole machine. Or maybe it was because January was straight fire. Either way. Here is what I know about Teams documentation, Microsoft Forms Pro, some Office client stuff,PowerApps, and of course the icons. Enjoy! Updated content for Microsoft Teams I keep telling you that Teams is coming like a freight train. To help you manage the train, they continue to improve the documentation, including content on the real challenge how to effectively roll out Teams. Read more on the new documentation here. There is also some proper training content, including videos available in the new readiness materials. Get the links and game plan here. Microsoft Forms Pro Coming soon to the internet near you is Microsoft Forms Pro. I think this is fun. They released Microsoft Forms as a way to compete with other survey and quick data capture tools out there (cough Google cough). Turns out adoption was super high and then everyone kept saying I wish it could do X or Y. Microsoft did the right thing, instead of adding a million enterprise features to the free product they are spinning off a paid version. This means they don’t screw up the easy to use product Microsoft Forms but branch it into a proper, paid product with all of these great new features and more important... --- ### Everything You Need to Know about SharePoint – February 2019 > SharePoint news and notes for February 2019 including technical debt, page enhancements, and SharePoint site superpowers. - Published: 2019-03-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-february-2019/ - Categories: SharePoint - Tags: Microsoft SharePoint - Article Type: News While it was a slow month for SharePoint news, there are still several things you should know that occurred this month to stop on top of the latest information about the platform. Where is the bee... announcements? I feel like our friends out in Redmond were too busy shoveling their driveways this month to make any cool announcements. Don't worry, I got info for you, I always have info, but this month there isn’t anything left on the cutting room floor. I had to go to the ends of the internet to hook you up. Enjoy reading about superpowers, technical debt, and some page improvements. Top 10 Super Powers of SharePoint sites Or something like that. In this post, Mark Kashman talks about the top 10 most important powers of your SharePoint site. The only thing he missed was the old line “#3 will shock you”. This is a great list that walks you through things you can and should be doing with SharePoint. What I personally take away from these articles is two things. 1 – Mark is super plugged in on the SharePoint messaging and roadmap, so if he is nudging you to something then you know it is the right thing. 2 – I love reading how other people think about SharePoint. When he talks about Teamafying and Hubafying SharePoint that tells me he is seeing questions about it and it is something he believes in. That is good info. So even though you may know about all of these features it is a good quick read just for perspective and a reminder of good stuff to be spending your time on. Want more superpowers? Go to... --- ### Everything You Need to Know About Windows – February 2019 - Published: 2019-03-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-february-2019/ - Categories: Windows Server - Tags: Windows 10, Windows 10 IoT, Windows Defender ATP, Windows Server, Windows Subsystem for Linux - Article Type: News This month sees Microsoft release Windows Server IoT 2019, an official Timeline extension for Google Chrome, Windows Defender ATP comes to Windows 7 and Windows 8.1, and support for Linux files in File Explorer in Windows 10 19H1. This month sees Microsoft release Windows Server IoT 2019, an official Timeline extension for Google Chrome, Windows Defender ATP comes to Windows 7 and Windows 8. 1, and support for Linux files in File Explorer in Windows 10 19H1. Windows Server IoT 2019 Unless you are directly involved in the field, you may not be familiar with the Internet of Things (IoT) editions of Windows 10. In short, there are three editions: Windows 10 IoT Core Windows 10 IoT Enterprise Windows Server IoT 2019 Windows 10 IoT Core is for small-footprint, smart-edge devices and the Enterprise version brings the full power of Windows. But on February 26th, Microsoft announced Windows Server IoT 2019, which is designed for the largest edge workloads on server-class devices. Microsoft says: As IoT solutions become more complex, they require more computing power, storage and connectivity. Fixed function appliances using Windows Server IoT 2019 can handle big workloads, like analyzing multiple video streams, and can use the results locally or send them to the cloud. With advanced security, high availability and manageability, Windows Server IoT 2019 lets you innovate faster with modern container technologies managed by Azure IoT Edge. New capabilities for Windows 10 IoT include Azure IoT Edge for Windows, Azure IoT Device Agent for Windows, and Robot Operating System for Windows IoT. Azure IoT Edge is a fully managed service for delivering cloud intelligence locally. It deploys and runs artificial intelligence, Azure services, and custom logic locally on Windows and other operating systems... --- ### Microsoft's Sentinel Security Tool Aims to Bring Intelligent Security Analytics To Your Data - Published: 2019-02-28 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-sentinel-security-tool-aims-to-bring-intelligent-security-analytics-to-your-data/ - Categories: Cloud Computing, Microsoft Azure, Security - Tags: Microsoft, News, Sentinel - Article Type: News Microsoft's new security tool creates a personal security graph for your environment with the ability to quickly outsource help, if additional assistance is needed. To say that the security vector is expanding for companies who are increasingly making their data available and always connected would be an understatement. Hackers, which include state-sponsored entities, are ramping up their attacks on networks and services with the trends showing that this activity will not be slowing down anytime soon, or possibly ever. To help protect your environment, Microsoft is announcing two new services today, Sentinel and Microsoft Threat Experts. The company says that Azure Sentinel is the first native SIEM (Security Information and Event Management) within a major cloud platform and states that the product will help you stop threats before they impact your environment. The goal of Sentinel is to significantly reduce the noise when hunting down intrusions or weaknesses with Microsoft saying that they have seen reductions of up to 90 percent of "alert fatigue" for early adopters of the platform. And because Sentinel is running in Azure, you have the ability to scale up services quickly to scour volumes of data with minimal overhead - the company will let you ingest your Office 365 data into the platform for 'free' as well. If Sentinel only worked with your Office and cloud data, it wouldn't be all that effective. Most organizations are in a hybrid-scenario where they have a variety of vendors. To address this, Sentinel supports open standards such as Common Event Format (CEF) and partner connections, including Microsoft Intelligent Security Association partners such as Check Point, Cisco, F5, Fortinet, Palo Alto,... --- ### How Stable is Office 365? Can I Trust the Cloud? > Microsoft says Office 365 is stable, secure, and trustworthy. But then something happens to make people less sure that Office 365 really is what Microsoft says it is. - Published: 2019-02-28 - Modified: 2024-09-04 - URL: https://petri.com/how-stable-is-office-365-can-i-trust-the-cloud/ - Categories: Microsoft 365, Office - Tags: cloud services, Office 365, Safe, Stability - Article Type: Interview, Opinion Microsoft says Office 365 is stable, secure, and trustworthy. But then something happens to make people less sure that Office 365 really is what Microsoft says it is. To see if we can resolve some of the doubts in peoples' minds, Mary-Jo Foley is going to question me about some of the seamier sides of Office 365 on March 4. The audio and transcript will be available soon afterwards. In the first of the MJF Chat series due for taping on March 4, I am the willing guinea pig lined up to answer Mary Jo Foley’s questions. We selected the theme of stability and trust of cloud services, specifically Office 365, because these questions come up time and time again at conferences like Ignite (or indeed, in our mailboxes). Even though Office 365 has more than 155 million active users, there are some who doubt the robustness of Microsoft’s cloud office service. Ask Your Question About Stability and Trust You have the chance to ask your own question before the event starts. We can’t guarantee to get to every question, but we will do our best. In this case, here are some of the topics we might discuss: Microsoft says that I can trust Office 365 with my data. But can I? Do I need backups to copy my Office 365 data to another cloud service? If I do need backups, what kind of backup service should I look for? What should I do (and how do I know) when an Office 365 outage occurs (like the Teams outage on February 18)? Does Microsoft’s 99. 9% financially-backed SLA mean anything? Is my data safe inside Office 365? Can a rogue administrator compromise information? With so much change inside Office 365, how can anyone track what Microsoft is doing? Is Office 365 designed for resilience or just to increase Microsoft profits? If I need to, can I move from... --- ### What Are Windows 10 Local Experience Packs? - Published: 2019-02-27 - Modified: 2024-09-04 - URL: https://petri.com/what-are-windows-10-local-experience-packs/ - Categories: Windows 10 - Tags: Local Experience Packs, Microsoft Store, Windows 10 - Article Type: Overview Microsoft is slowly reducing reliance on legacy components in Windows 10 but Windows 10 Local Experience Packs remain. Microsoft is slowly reducing reliance on legacy components in Windows 10. That is evident in work done on moving Control Panel settings to the new Settings app. It’s a work in progress but with every release of Windows 10, more features can be configured in the Settings app. You may recall that in November 2018, Intel released its first Universal Drivers for Windows 10. Microsoft announced that starting in Windows 10 1809, all devices would need a single driver that works across different device types. For example, Windows 10 IoT and Windows 10 in S Mode. See Everything You Need to Know About Windows - November 2018 on Petri for more information. Universal Windows Drivers can be installed using a legacy installer or via the Microsoft Store or the Microsoft Store for Business. That is key because some editions of Windows, like Windows 10 in S Mode, can’t run legacy installers. And going forwards, it is likely that more editions of Windows will be restricted in this way. Local Experience Packs On that note, Microsoft introduced Local Experience Packs (LXPs) in Windows 10 version 1803. Language Experience Packs allow you to change the language Windows uses for interface elements, like menus, dialog messages, settings, and help topics. LXPs are AppX packages containing language packs designed for delivery using the Microsoft Store or the Microsoft Store for Business, allowing LXPs to be updated automatically. Additionally, users don’t need to wait for a Windows 10 feature update to get improved... --- ### Microsoft's Lite OS Starts Simple With Plans to Scale Up - Published: 2019-02-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-lite-os-starts-simple-with-plans-to-scale-up/ - Categories: Windows Client OS - Tags: Microsoft, News, Windows Lite - Article Type: News Curious what Windows Lite will look like? Here's an early preview of what to expect when the OS is announced later this year. Windows Lite OS Mockup of what the OS Currently Looks Like A few weeks back, I uncovered Microsoft's next steps in trying to push back against the growing threat of Google's ChromeOS. Currently known as Lite OS, this 'new' operating system from Microsoft is a rebirth of Windows, or so the company hopes. The company is currently working on an aggressive schedule to get this OS out the door. I expect Microsoft to begin talking about the operating system this year in the spring, likely at its Build conference in May but more importantly, the company will begin wider testing this summer. While I don't know if that will include a public preview, Windows Lite is moving forward at a feverish pace as the company understands the importance of this new platform. As I stated previously, the UI of the OS will look familiar but it is also different as well. The mockup I created at the top of this post is an accurate portrayal of what the OS looks like in its current iteration. Despite the updated UI, the OOBE (Out of Box Experience) is still similar to that of Windows 10. Microsoft is targeting entry-level devices with Lite but also expects to target heavy users as well. The reason the company chose the name Lite, for now at least, is that they categorize users into lite and heavy; lite users they expect to use Lite OS whereas heavy users will use Windows 10. You might be... --- ### Using Discardable Office 365 Accounts to Preserve User Privacy > Delve is a great way to learn about important documents other Office 365 users are working on, but it can sometimes reveal something that it shouldn't. - Published: 2019-02-26 - Modified: 2024-09-04 - URL: https://petri.com/delve-discardable-office-365-accounts/ - Categories: Microsoft 365, Office - Tags: Delve, GDPR, Office 365. Microsoft Graph, Privacy - Article Type: How To Delve is a great way to learn about important documents other Office 365 users are working on, but it can sometimes reveal something that it shouldn't. Mostly this is the fault of the owners of SharePoint sites where documents are stored, but there are situations when people just don't want Delve or other Graph-based applications revealing anything about their communications. Delve and Signals When the Delve app appeared in Office 365 in 2015, it created quite a stir because of its ability to highlight documents in its “Popular Documents” view that people didn’t think were shared and available publicly. Of course, Delve did what it is designed to do to connect people based on their communications as captured in signals in the Microsoft Graph. All sorts of rumors spread about Delve’s ability to offer documents to people who weren’t entitled to view their contents. It was all rubbish, but Microsoft was worried enough to include the Are my documents safe in Delve link in the app. Some documents did appear in Delve unexpectedly, mostly because of poorly-controlled permissions for SharePoint Online libraries. This is not a fault of Delve; the problem lies with the site owners. Computer programs can only process the data they have to process. Although Microsoft gathers a lot of data about how people work inside Office 365 (too much for some), the fact remains that if you don’t protect data, it can be exposed. Some Signals Need Blocking Office 365 is not going to stop tracking how users communicate with each other. While mostly the signal data adds values to users, as when it is used to suggest new teams or Office 365 groups to join, the signals surfaced by Delve and other apps (like the Discover feature in OneDrive for Business) can have unfortunate consequences in certain circumstances. Take the example of someone... --- ### How to Back Up and Restore Wireless Network Profiles - Published: 2019-02-26 - Modified: 2024-09-04 - URL: https://petri.com/how-to-back-up-and-restore-wireless-network-profiles/ - Categories: Windows Client OS - Article Type: How To Here's how to back up and restore wireless network profiles in the event of an outage, so that you can recover faster. Except for wireless profiles that are automatically configured by an organization, it can be useful to back up profiles so that they can be restored, along with passwords, if users switch to a different device. Today I’ll show you how to use the netsh command-line tool to display, back up, and restore wireless network profiles. Back Up Wireless Network Profiles Let’s start by listing the profiles configured on a device. Open a command prompt window and run the command line shown below. netsh wlan show profiles You’ll see a list of any profiles configured using Group Policy and those configured by the user. If you want more information about a profile, add its name to the command line. netsh wlan show profile name="Starbucks" Back up and restore wireless network profiles in Windows 10 (Image Credit: Russell Smith) Now let’s back up all the profiles on the device and their passwords. Each profile is backed up to a separate . xml file prefixed with ‘WiFi-‘. netsh wlan export profile key=clear folder=c:temp Using the command above, passwords are stored in clear text. If you want to export profiles with encrypted passwords, remove key=clear from the command: netsh wlan export profile folder=c:temp But if you remove key=clear from the command, you won’t be able to use netsh to restore the profile with the password. Exporting profiles with passwords in clear text can be useful if you want to quickly copy or set up a profile to another device but don’t... --- ### Microsoft's Future Enters Private Preview - Published: 2019-02-25 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-future-enters-private-preview/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure Remote Rendering, Microsoft - Article Type: Opinion Microsoft has a new cloud service and if you read between the lines, this is the future of the company. On Sunday, Microsoft unveiled its the second generation HoloLens with a wider field of view, improved tracking capabilities, and a somewhat more palatable price. Along with the hardware, the company demoed new cloud services that it hopes will move us closer to a nearly full-cloud world. For years, Microsoft has been talking about how its cloud will one day go from a place to where you host content and services, to where you can stream them, in real-time, to any device, with high fidelity. At its keynote on Sunday, the company announced Azure Remote Rendering which is a gigantic step towards this goal. Azure Remote Rendering allows you to render high high-quality, interactive 3D content, and stream it to your devices in real time. Demonstrated on the Hololens 2, the idea is quite simple; using the company's cloud platform, you can stream high-quality 3D content to any device without losing details or resolution. When it comes to rendering 3D models, you need a significant amount of GPU power that not all devices are capable of providing. Especially on mobile devices like smartphones and tablets, 3D renderings of CAD drawings, are nearly impossible to view at their original resolution because these devices lack the computational power to display the content. With Azure Remote Rendering, you can render the visualizations in the cloud and then stream them, in real-time, to any device. The key here is the real-time aspect as this functionality carries over to other use-cases like desktop environments, gaming,... --- ### Multi-Cloud Disaster Recovery Benefits and Challenges - Published: 2019-02-25 - Modified: 2024-11-19 - URL: https://petri.com/multi-cloud-disaster-recovery-benefits-and-challenges/ - Categories: Amazon Web Services, Backup & Storage, Cloud Computing, Google Cloud Platform, Hybrid Cloud, Microsoft 365, Microsoft Azure - Tags: Azure, Azure Virtual Machines, Backup, Cloud, Disaster Recovery, Google, hybrid cloud, virtual machine - Article Type: Overview When it comes to picking a cloud vendor, putting all your eggs in one basket might be the easiest option, but it's not a best practice. The cloud has definitely changed both operations and data protection requirements for almost all businesses today. Not only is the cloud the basis for popular SaaS applications like Office 365, it is also used as a backup and DR target by many organizations. Using the cloud opens up new possibilities for DR. However, one growing complication for DR and the cloud is the use of multiple clouds. Today, many businesses have adopted multiple clouds – many use both Amazon AWS and Microsoft Azure or in some cases Google Cloud or IBM Cloud. According to research done by the IBM Institute for Business Value, 85% of today’s enterprises operate in multi-cloud environments. Further, most of those organizations that don’t currently have a multi-cloud IT strategic plan to do so in the near future.   The IBM research estimates that by 2021, 98% of business will move to multiple hybrid clouds. Similarly, an ESG study found that 81% of enterprises are utilizing more than one public cloud infrastructure service provider and only 15% were using a single cloud provider. Multi-Cloud Advantages Using multiple clouds definitely has its advantages. Cost is one of the primary driving factors. The IBM study which consisted of 1016 executives from 19 different industries reported that 66% said multi-cloud is crucial to reducing costs. Using multiple clouds not only allows you to pick the most cost-effective options, it also allows you to pick the best cloud services to fill your own specific business needs. Adopting a multi-cloud strategy can also... --- ### How to Architect an Azure Firewall with a VPN Gateway > This post will show how to design a hub network that isolates virtual network services in Azure from on-premises networks using the Azure Firewall. - Published: 2019-02-25 - Modified: 2024-09-04 - URL: https://petri.com/how-to-architect-an-azure-firewall-with-a-vpn-gateway/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, firewall, Gateway, Peering, Route Table, Routing, Virtual Data Center, Virtual Network, VNET, VPN, VPN Gateway - Article Type: How To In this post, I will show you how to architect an Azure Firewall deployment where a centralized firewall will inspect traffic that is flowing across a VPN connection before it reaches the Azure virtual network(s) or returns to on-premises. Design Concept The premise of this design is a simple and, probably, a familiar one: anything outside of the “virtual data center” that you deploy in Azure virtual networks will not be trusted – and that includes the networks in your office that will be connected via a VPN (or ExpressRoute) connection. In summary, the design will feature a hub virtual network that hosts shared services. In this case, the shared services will be: The Azure Firewall. A VPN Gateway with a connection to the on-premises network. All traffic coming from the office, over the VPN connection, will be routed through the Azure Firewall before it can be forwarded to applications, which are hosted in spoke virtual networks. Data from the applications to the office network(s) will route via the Azure Firewall, and then to the gateway which will tunnel the traffic across the VPN connection. Routing traffic across a VPN connection through the Azure Firewall Hub Virtual Network This is a relatively simple virtual network with two subnets: AzureFirewallSubnet: This is required to host the Azure Firewall. The firewall has a single public IP address, which you should note for the “destination address” in NAT rules, and a single internal... --- ### Microsoft Unveils HoloLens 2 With Improved Field of View for $3500 - Published: 2019-02-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-hololens-2-with-improved-field-of-view-for-3500/ - Categories: Hardware - Tags: HoloLens 2, Microsoft, News - Article Type: News As expected, in Barcelona at Mobile World Congress, Microsoft has unveiled their second generation HoloLens. Powered by a Snapdragon 850, the second generation device improves upon the first generation device in nearly every way.  As expected, in Barcelona at Mobile World Congress, Microsoft has unveiled their second generation HoloLens. Powered by a Snapdragon 850, the second generation device improves upon the first generation device in nearly every way. The device features the new Azure Kinect sensor, eye tracking technology, and an entirely new display system. The device includes speakers, the ability to flip the display up so that it is easier to see what you are working on, an 8-megapixel front-facing camera, and charges via USB-C. The most important aspect of the new device is that the field of view has been more than doubled. This will make it significantly easier to view content in an entire frame, rather than having to frequently pan your head to see the entire hologram. Importantly, the tracking capabilities have been improved significantly as well. With faster and more refined hand tracking, it makes it easier to interact with holograms. The frame of the device is made of carbon fiber so that it is significantly lighter. Of course, this doesn't help with pricing, which will cost $3500, but the product is targeted at enterprise customers and not the consumer; battery life is 2-3 hours. Microsoft is offering up the device starting today for pre-order and unlike the first generation, there isn't a developer kit model being sold. This is the retail product they were showcasing today and multiple times on stage, they mentioned the device delivers 'immediate value'. Unfortunately, the device does not have LTE capabilities built into the hardware. While it... --- ### Paul Thurrott's Short Takes: February 22 - Published: 2019-02-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-22/ - Categories: Hardware, Mobile, Networking - Tags: News - Article Type: Overview Because I’m off to Barcelona, this edition of Short Takes looks at Microsoft at MWC, Microsoft’s “inner source” moves, Microsoft’s next Chromebook competitor, Xbox Game Pass on Nintendo Switch, and much, much more. One of the many sites in Barcelona I won't have time to visit this coming week. Because I’m off to Barcelona, this edition of Short Takes looks at Microsoft at MWC, Microsoft’s “inner source” moves, Microsoft’s next Chromebook competitor, Xbox Game Pass on Nintendo Switch, and much, much more. Microsoft at MWC Microsoft is staging a secret product announcement at MWC---formerly called Mobile World Congress---in Barcelona on Sunday night, so I’m going to spend 7 hours in a cramped budget airline seat so I can see what’s up. It’s widely rumored to be the long-awaited second-generation HoloLens---really the third generation, since the original 2nd-gen device was canceled internally because it wasn’t a big enough improvement---mostly since HoloLens co-creator Alex Kipman has been excitedly but vaguely tweeting about the coming show. That makes sense: HoloLens today has found success in some lucrative and unique vertical markets, and a source tells me that the new version will include a hand-tracking feature that should obviate the need for controllers. (I’ve since seen rumors about “eye tracking” online and am wondering if these reference the same new feature. ) We’ll know more soon. “Microsoft Build 2019: 5 things we're dying to see” Dying. Ah boy. Microsoft is infected with open source “cancer” You’ve probably never heard of this because you’re normal, but apparently, there is a formal open source methodology called “inner source” that describes how companies can adopt open source everywhere they develop, ship, and maintain software internally. As... --- ### How to Create Network Rules in Azure Firewall > In this post, I will explain how one can create network rules in the Azure Firewall to allow transport layer traffic between subnets or virtual networks. - Published: 2019-02-21 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-network-rules-in-azure-firewall/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, firewall, Network, Network Rule, Network Rule Collection, Routing, Security, Virtual Network, VNET - Article Type: How To In this Aidan explains how one can create network rules in the Azure Firewall to allow transport layer traffic between subnets or virtual networks. Note – you do not need to create network rules when you create NAT rules – the Azure Firewall will automatically create a hidden network rule to match the NAT rule. Network Rules The purpose of a network rule is to allow non-HTTP/S traffic between a source and destination. A network rule has 5 properties to define allowed or denied traffic: Name: A human-friendly label. Protocol: This can be TCP, UDP, ICMP (traceroute or ping) or any. Source Addresses: The source of the packet, which can be a wildcard (*) for everything, a specific IP address, or a CIDR block. Note that many sources can be listed, separated by a comma. Destination Addresses: The destination of the packet, which can be a wildcard (*) for everything, a specific IP address, or a CIDR block. Note that many destinations can be listed, separated by a comma. Destination Ports: What port(s) or services are listening for this traffic at the destination(s). You can specify everything (*) or a port number. Note that you can use a comma to separate multiple entries. Network Rule Collections A network rule collection is a set of network rules that are grouped together and share a common priority, a number from 100 to 65000. If you have multiple network rule collections, you can use this priority to order their processing as a packet is inspected. The highest priority (lowest number) is first. Once a packet is matched against a network rule – in other words... --- ### Revisiting the Office 365 Groups and Teams Activity Report > A year is a long time in Office 365. Lots changes in that time, so it's good to go back and look at some PowerShell written to report Teams and Groups activity - Published: 2019-02-21 - Modified: 2024-11-19 - URL: https://petri.com/office-365-groups-teams-activity-report/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Office 365 Groups, PowerShell, Teams - Article Type: How To A year is a long time in Office 365. Lots changes in that time, so it's good to go back and look at some PowerShell written to report Teams and Groups activity. Improvements can be made, advantage taken of changes made by Microsoft, and generally the whole thing can be tidied up and upgraded. PowerShell makes it easy to do - and to change if you don't like what I've done. A Year On, Time to Revise In January 2018, I published “Finding Obsolete Office 365 Groups with PowerShell,” describing a script to analyze the Office 365 Groups in a tenant and report on whether some of the groups might be obsolete because they aren’t used. The script is available in the TechNet gallery for anyone who wants to download a copy. A year or so later, it was time to look at the script and improve it. Teams is more important now and we have a rapidly changing Teams PowerShell module, so the kludge used to detect if an Office 365 group is team-enabled is no longer necessary. In fact, there’s several ways to check. Checking for Teams I could have depended on the setting Teams uses to hide its groups from Exchange clients and used a command like the one below to find these groups: Get-UnifiedGroup | ? {$_. HiddenFromExchangeClientsEnabled -eq $True} The problem is that the command uses a client-side filter so it’s slow. Because it checks so many aspects of a group, the Get-UnifiedGroup cmdlet is already slow, so adding an extra layer of slowness isn’t a good thing. But a more fundamental problem is that Teams only started to hide its groups from April 2018 and any early team-enabled group does not have this setting. In my tenant, roughly a third of the team-enabled groups were marked. Another idea is to use the external directory object identifier returned for each group with a command like... --- ### How to Send Emails to OneNote - Published: 2019-02-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-send-emails-to-onenote/ - Categories: Microsoft 365 - Tags: cloud computing, Office 2019, Office 365, OneNote, Productivity - Article Type: How To Here is how to send emails, including attachments, to Microsoft OneNote to improve your workflow. I have a love/hate relationship with OneNote. OneNote is a great idea in principle, especially for information workers and people who do a lot of research. But in my experience, organizing and finding information isn’t always easy. Especially if notebooks are not loaded into the application. And OneNote has clearly been designed for touch devices, making use with a keyboard and mouse feel unnatural at times. OneNote 2016 Disappeared But regardless of some drawbacks, OneNote is a popular app that many, including myself, find useful. A couple of days back, I was setting up a new notebook for a client project. I wanted to add an email, including an attachment, to the notebook but couldn’t find the OneNote button in Outlook. Sending emails to OneNote isn’t something I do often but I could have sworn that in the past it was easy to do. You clicked a button, chose the section, and pressed OK. So, what happened to the Send to OneNote feature in Outlook? The question should have been: What happened to the desktop OneNote app on my PC? You might recall that Microsoft announced last spring that it was no longer developing the desktop version of OneNote and that users should switch to the Windows 10 app. After that announcement, I decided to give the Windows 10 app a try. But what I’d missed was that Microsoft wouldn’t be including the desktop version for new users installing Office 365 and that based on telemetry, the desktop... --- ### Sponsored: Extending Office 365 Data Protection - Published: 2019-02-20 - Modified: 2024-09-04 - URL: https://petri.com/extending-office-365-data-protection/ - Categories: Backup & Storage, Cloud Computing, Microsoft 365, Microsoft Azure - Tags: Azure, Backup, cloud computing, Office 365, OneDrive for Business - Article Type: Overview This post is sponsored by Druva's Office 365 backup solution. There’s no doubt that Office 365 is the most popular cloud services today. Microsoft launched Office 365 back in June 2011 and it has become a popular choice for the day-to-day work of both businesses and consumers alike. Office 365 is full-featured, easy to access, and its multi-device licensing make it a cost-effective option for most organizations. However, because it’s a cloud application, many users are under the erroneous impression that Office 365 data doesn’t need any protection. They often think that there is no need to do anything to protect cloud data – the cloud provider will take care of everything. However, the cloud isn’t a magic bullet for data protection. Data in the cloud is just as susceptible to accidental loss, theft, or malicious attack as local data. Office 365 does provide a basic level protection in case you accidentally delete an email, a OneDrive file or a SharePoint item. The Office 365 Recycle Bin is the primary data protection point in Office 365. It allows you to undelete a given item for a set period of time. The maximum retention time for the Office 365 recycle bin and the second-stage recycle bin is 93 days. To restore an item, you need to locate the deleted item in the recycle bin before it expires and you can only restore a single item at a time. Exchange 365 provides a Recoverable Items folder with a maximum 30 day retention... --- ### Patch Tuesday February 2019 - Published: 2019-02-20 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-february-2019/ - Categories: Windows Server - Tags: exchange, Microsoft SharePoint, Security, Windows, Windows Server - Article Type: News This month sees significant changes in Exchange Server security and critical patches for Windows and SharePoint Server. Windows 10 and Windows Server 2016 Two updates this month address a critical vulnerability in the Windows Graphics Device Interface (GDI) that could allow an attacker to take control of an affected system by convincing the user to view certain content. This exploit is also patched in Internet Explorer 10 and 11. There’s a critical memory corruption vulnerability in the DHCP service that could allow an attacker to run arbitrary code by sending a specially crafted packet. There are also 8 remote code vulnerabilities rated Important. There are 14 critical vulnerabilities patched in Edge, some of which could allow an attacker to take control if the user has admin rights. Another timely reminder that you can reduce the risk of getting owned by removing admin rights from users. Windows 7 and Windows Server 2008 Windows 7 gets the same Windows Graphics Device Interface (GDI) and DHCP critical patches that are available for Windows 10. Additionally, there are 14 remote code vulnerabilities rated Important and patches for Internet Explorer 10. Exchange Privilege Escalation Bug This month, Microsoft released cumulative updates (CUs) for Exchange Server 2010, 2013, 2016, and 2019. What makes these updates different from previous CUs is that they contain an architectural change to the way Exchange Web Services (EWS) push notifications work. A vulnerability in EWS allows an attacker to use push notifications to gain unauthorized access. Microsoft says: When a client subscribes to Push Notifications from Exchange Server, the notifications that are sent to the client... --- ### Microsoft Teams Went Down, But it's Not Out - Published: 2019-02-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-went-down-but-its-not-out/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft's Teams suffered a significant outage but the company has a vested interest in making sure that it offers a better uptime than what traditional on-premises provides. Earlier this week, Microsoft Teams took the US federal holiday off by not working on Monday. What actually happened is that the communication platform was inaccessible for a couple hours which always drums up the same comments: the cloud means you have lost control. Specifically, with this outage, users were unable to access the platform for several hours Monday morning. Microsoft resolved the issue by saying that they "rerouted traffic to healthy infrastructure" and all is good again, for now. Even though this creates a significant challenge for many organizations, the truth is that Office 365 will almost guarantee better availability when looked at across an entire year than what most small and midsize organizations are able to provide. Further, Teams largest competitor, Slack, has had more frequent issues than Teams has experienced since its inception more than two years ago. But any type of outage, especially with Microsoft's flagship SaaS (software as a service) platform, is a serious concern for the company because the number one thing the company actually sells is trust. Trust that online services will meet their SLAs, trust that your company's data is safe, and trust that when an outage occurs, that they will learn from it and reduce the probability of it happening again. And more importantly, the trust that if your business needs Microsoft's cloud, it will be available. With Microsoft expecting its cloud service and revenue to continue to grow, the company has a significant and vested interest in making... --- ### Planner Does Multiplan > Microsoft has announced the ability of the Planner web app to create multiple plans for an Office 365 group. This is a useful feature that Teams and SharePoint - Published: 2019-02-19 - Modified: 2024-09-04 - URL: https://petri.com/planner-does-multiplan/ - Categories: Microsoft 365, Office - Tags: Office 365, Planner, SharePoint Online, Teams - Article Type: How To, News Microsoft has announced the ability of the Planner web app to create multiple plans for an Office 365 group. This is a useful feature that Teams and SharePoint Online (the Planner web part) can already do, but some extra work was needed to break the connection between a plan and a group, and that's what Multiplan means. Or it means a spreadsheet. Multiple Plans for an Office 365 Group With just a small fanfare, the Planner team announced on January 28 that Planner has a new way to create multiple plans per group, a feature they’ve called Multiplan, perhaps in homage to the Multiplan spreadsheet first sold by Microsoft in 1982. In fact, the integrations of Planner with Teams and the Planner web part for SharePoint Online have both boasted the ability to create multiple plans for several months, so the news concerns the Planner web app. Planner’s Slow Progress When Microsoft launched Planner in 2016, the app was one of the first to embrace the Office 365 Groups membership service. Each plan had its own group, and each group could have just one plan. It was a very symmetrical arrangement. Since its introduction, Planner has moved forward at a pace that might be described at glacial. Sure, important upgrades like guest user access rolled out last May, but it took Microsoft a long time to deliver important features like filters for tasks, copy tasks between plans, and the ability to assign tasks to multiple people. Some basic functionality remains (bafflingly) unavailable, like the ability to print or export task information. A few extra charts would be nice too. Overall, Planner’s progress has been slow, especially when compared to the frenetic development in Teams. Creating New Plans Getting back to Multiplan, the changes in the Planner web app are focused in two places. First, when you create a new plan,... --- ### How To Create SharePoint News digest with news from multiple SharePoint sites - Published: 2019-02-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-sharepoint-news-digest-with-news-from-multiple-sharepoint-sites/ - Categories: SharePoint, SharePoint Online - Tags: SharePoint News - Article Type: How To How you can extract news from multiple SharePoint Sites into one centralized news digest. SharePoint news is one of my favorite features with the release of the modern SharePoint experience. That's obvious from the fact that I have written multiple articles about SharePoint news: Modern SharePoint News - Layout update inbound Getting creative with SharePoint News Modern SharePoint Web Parts — News Web Part Why do I love SharePoint news so much? That's because it offers a series of advantages for businesses: Comments, likes and save for later Integration with the Microsoft SharePoint mobile app allowing news on-the-go. Easy to use resulting in high level of adoption. Out-of-the-box news archive & digest For this article, I specifically would like to dive into the last advantage: the news digest. The news digest allows you to select multiple news posts and sent these, by e-mail, to a selection of users. Our customers really love this feature! They sent a monthly digest with a series of news posts they want their users to view. A great way to increase the amount of views for your news posts. The news digest is available through the out-of-the-box news archive: You click on the email a news digest button, select the news posts, click on next:   You provide a title, select your colleagues, provide a description and click on send news digest. A pretty straightforward process. There is one huge limitation though. The news digest is available per SharePoint site and only displays the news posts created within the SharePoint site itself. What happens when you have... --- ### How to Install Windows Subsystem for Linux - Published: 2019-02-15 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-windows-subsystem-for-linux/ - Categories: Windows 10 - Tags: linux, Windows 10, Windows Subsystem for Linux - Article Type: How To Looking to install the subsystem for Linux in Windows 10? Here's how to do it. Windows Subsystem for Linux (WSL) lets you run a lightweight Linux environment on Windows without the overhead of a VM. And while it’s possible to run Linux GUI programs using an X Server, WSL isn’t intended for average users who wants to spin up their favorite GUI Linux apps. WSL is for developers and sysadmins that need Linux interoperability in Windows. WSL provides a layer for mapping Windows kernel system calls to Linux kernel system calls, allowing Linux binaries to run in Windows unmodified. WSL also maps Windows services, like the filesystem and networking, as devices that Linux can access. WSL virtualizes a Linux kernel interface on top of the Windows kernel, so it only requires a minimal amount of RAM. And when not in use, the WSL driver isn’t loaded into memory, making it much more efficient than a solution based on a VM or container. In addition to giving access to the Bash shell, or other shell of your choice, and the tools included with whichever Linux distro you choose to install, WSL can also run system level daemons (services) in the background. You can even install multiple Linux distributions and switch between them. Install Windows Subsystem for Linux Before installing a Linux distribution from the Microsoft Store in Windows 10, you’ll need to install the Windows Subsystem for Linux. In the search box on the taskbar, type control panel and select Control Panel from the list of results. In the Control Panel, click Programs. Now... --- ### Paul Thurrott's Short Takes: February 15 - Published: 2019-02-15 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-15/ - Categories: Cloud Computing, Mobile, Windows 10, Windows Client OS - Tags: Dev, News, Visual Studio 2019 - Article Type: Overview Because all I can taste is snow, this edition of Short Takes looks at a Windows 10 development spaz attack, Visual Studio 2019, Microsoft’s cooler than it wants you to think, Amazon vs. NYC, Apple vs. Qualcomm, and much more. The next three versions of Windows 10 are out there somewhere. Because all I can taste is snow, this edition of Short Takes looks at a Windows 10 development spaz attack, Visual Studio 2019, Microsoft’s cooler than it wants you to think, Amazon vs. NYC, Apple vs. Qualcomm, and much more. Microsoft is now actively developing three different versions of Windows 10 For those who believe that Microsoft is biting off more than it can reliably deploy in releasing two major Windows 10 version updates every year, this news should be terrifying: The software giant is now actively developing three Windows 10 versions simultaneously in a daring act of juggling that I’m sure will end well. This week, it allowed Windows Insiders to start testing the first Windows 10 20H1 build, a version of Windows due in early 2020 that the company had never once ever mentioned before. And they’re actively testing Windows 10 19H1 (first half of 2019) and Windows 10 19H2 (second half of 2019) already as well. Confused? Yeah, welcome to my world. This is what it’s like when there’s no adult supervision in the non-existent Windows team: They look at last year’s reliability issues and decide to move even more quickly. Smart! “More details on Microsoft’s rumoured Windows Lite OS appears online” Where else would it appear? Visual Studio 2019 will launch in April Which is weird, when you think about it, since Microsoft’s annual developer show, Build, happens a... --- ### How Pegasus and Centaurus Fit Into the Windows Lite Narrative - Published: 2019-02-14 - Modified: 2024-09-04 - URL: https://petri.com/how-pegasus-and-centaurus-fit-into-the-windows-lite-narrative/ - Categories: Hardware - Tags: Lite OS, Microsoft, News, Windows Lite - Article Type: News Microsoft's working on a new operating system that it is calling 'Lite OS', here's what we know so far. Earlier this year, I uncovered Microsoft's next big play to try and build an operating system that reduces the overhead of a traditional installation of Windows. Built using the new Windows Core OS, Windows Lite is a new operating system from Microsoft designed for casual tasks or more specifically, to compete with Google's Chrome OS. While information surrounding the new OS is still, ahem, lite, a bit of digging around has unveiled how the company plans to position the hardware and software combinations. Microsoft is referring to the OS as Lite, not Windows Lite, or another derivative of Windows, but stand-alone Lite. While the company could use this as the shipping name, they may run into issues as Huawei currently uses LiteOS for its IoT device. When it comes to hardware, the company is working on Lite for two types of devices that they have categorized as Centaurus and Pegasus. Centaurus devices are the dual-screen devices that have been floating around in patents and other places while Pegasus refers to the many variations of different styles of laptops running the OS. In a few of the recent release of Windows 10 in the Insider program, terms like instant on, battery life, and simplistic updates have been used to describe the iteration of the operating system. The UI has also been described as modernized, minimal, and refreshed. When it comes to using Lite, there's a good chance that it will only have a vague familiarity with what we know... --- ### The Joys of Managing Large Microsoft Teams > Teams now supports memberships of up to 5,000 users. This is great for large tenants, but probably isn't too interesting for most of Office 365. - Published: 2019-02-14 - Modified: 2024-09-04 - URL: https://petri.com/joys-managing-large-microsoft-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Large membership, Office 365, Teams - Article Type: How To Teams now supports memberships of up to 5,000 users. This is great for large tenants, but probably isn't too interesting for most of Office 365. If you're in the situation where you might need to operate very large teams, you might need Microsoft to make some changes to the client, write some tools, and impose some basic etiquette on Teams users. Teams: Now with You, Me and 4,999 Others Microsoft’s announcement that Teams now supports groups of up to 5,000 members created some interesting questions about how to deal with such bemouths. Microsoft has increased the limit steadily from 999 (launch) to 2,500 and now 5,000, probably to help adoption at the 89 of the Fortune 100 companies that use Teams, including Pfizer and Accenture (the largest user). Most Office 365 tenants have fewer than 5,000 accounts, so the new limit won’t concern them. Another way of looking at this is that smaller tenants won’t have to struggle with some of the technical and administrative challenges of dealing with such large groups. Problems in Managing Large Teams The first problem is to populate the membership of any very large team. Sitting down and adding each member one-by-one is an exercise in tedium. Another approach is needed. If a distribution list is available with the right members, you can import it into the team. This takes a little time for a large list, but it works. PowerShell can also be used to extract information from a variety of sources (a distribution list, another group, a CSV file, Azure Active Directory) and create new members. The code isn’t difficult to write, but it’s another task to do. Perhaps the best way is to generate a joining code for the team (Figure 1) and make the code available to those who might want to join the team through email or by posting... --- ### Migration Tools for the Azure Hybrid Cloud - Published: 2019-02-13 - Modified: 2024-09-04 - URL: https://petri.com/migration-tools-for-the-azure-hybrid-cloud/ - Categories: Cloud Computing, Hybrid Cloud, Hyper-V, Microsoft Azure, VMware, Windows Server 2016, Windows Server 2019 - Tags: Azure, Cloud, cloud computing, hybrid cloud, Hyper-V, PowerShell, Windows Server 2016 - Article Type: Overview Looking for help with your migration in a hybrid cloud world? These tools can help you on your path ahead. While the hybrid cloud offers a number of benefits, moving to the hybrid cloud isn’t the easiest of tasks. To get there, you need to perform an analysis of the workloads and services that you are considering moving to the hybrid cloud to ensure that they are suitable candidates for running in the cloud. Next, you need to perform an initial cost analysis. Cost saving is one of the main benefits of moving to the hybrid cloud. However, accurately estimating the cost savings can be difficult. Sometimes you may not really know the real costs until you actually make the move. Finally, you need a way to move all or select parts of your on-premise workloads into the cloud. Fortunately, if you’re considering a move to the Azure hybrid cloud then Microsoft provides several tools that can help you with the different aspects of your hybrid cloud migration. Let’s take a closer look at some of Microsoft’s most important hybrid cloud migration tools. Cloud Migration Assessment Accessing your current environment is the first step in moving to the hybrid cloud and Microsoft Assessment and Planning toolkit (MAPs) can help you discover the servers across your IT environment. MAPs can automatically collect data and analyze your on-premise system hardware configuration. MAPs primarily uses WMI to collect information from Windows and Linux based servers as well as Hyper-V and VMware environments.  When it’s finished it generates an Inventory Results Report that can be opened in Excel and passed on to other tools... . --- ### Understanding the Windows 10 Your Phone App - Published: 2019-02-13 - Modified: 2024-09-04 - URL: https://petri.com/understanding-the-windows-10-your-phone-app/ - Categories: Windows 10 - Tags: Android, Mobile, Windows 10 1809, Your Phone - Article Type: Overview Access recent photos and SMS messaging on your Android phone using the Windows 10 Your Phone app. The Your Phone app debuted in Windows 10 version 1809, which was released in October 2018. To be honest, I couldn’t muster any enthusiasm to look at it because this isn’t Microsoft’s first attempt at integrating SMS messaging with Windows and I’m tired of half-baked new features for the sake of a marketing win. As a reminder, Cortana can read and reply to SMS messages on Android providing that Cortana is installed on your phone. It also works with Windows 10 Mobile but is unreliable. Not that it matters because nobody is using that platform anymore. But the main issue is that Cortana is only available in some regions, meaning that half the planet is excluded. There’s no such limitation with Your Phone. Microsoft claims that Your Phone will allow you to leave your device in your pocket. That will rather depend on how much you use your phone for actual calling. But if you are mainly accessing Internet messaging services, the chances are there is an app you can use on your PC. For instance, WhatsApp and Facebook messenger both have apps or can be used in a browser. Your Phone bridges the gap for SMS messaging. Windows 10 Your Phone for Android (Image Credit: Russell Smith) The ability to access recent photos is interesting because most users will have their phones set to synchronize to Google Drive or OneDrive. You could argue that grabbing photos from cloud storage should mitigate the need... --- ### What is Windows 10 Reserved Storage - Published: 2019-02-13 - Modified: 2024-09-04 - URL: https://petri.com/what-is-windows-10-reserved-storage/ - Categories: Windows 10 - Tags: Reserved Storage, Windows 10, Windows 10 19H1, Windows Insider - Article Type: Overview Windows 10 19H1 Reserved Storage helps keep Windows update-to-date and run more smoothly. This has been a long time coming. If you support Windows 10 devices, you’ll know that low disk space is often a reason updates fail to install or for poor performance. Already offered to Windows Insiders in Windows 10 build 18312, Reserved Storage will be available for all users in Windows 10 version 1903, which will be available this spring. Reserved Storage keeps some disk space for Windows Update, apps, temporary files, and system caches because without enough disk space, Windows processes can become unstable, causing the OS and applications to stop working properly. For users installing a fresh copy of Windows version 1903 or receiving a device with the OS preinstalled, Reserved Storage will be enabled out-of-the-box. Users upgrading from a previous version of Windows will not see the new feature. Intelligent Free Disk Space Management On devices where Reserved Storage is enabled, apps and OS temporary files will be placed into a special section of the disk and they won’t take up free ‘user’ space. Storage Sense, a feature already available in Windows 10, will automatically remove temporary files once they are no longer needed. But if the reserved storage space on your disk fills up, Windows will start to place temporary files in ‘user’ space. Windows Update will get priority access to reserved storage. Before an update, unneeded temporary files will be deleted, and the remaining space exclusively reserved for Windows Update. In situations where the reserved space isn’t enough, Windows Update will start to... --- ### Exchange Privilege Elevation Vulnerability Addressed by Microsoft Patches > The recent exposure of a privilege elevation vulnerability that exists in the control Exchange has over Active Directory and EWS push notifications is fixed - Published: 2019-02-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-patches-exchange-privilege-elevation-vulnerability/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Online, Exchange Server - Tags: Active Directory, CVE-2018-8581, Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Privilege Elevation - Article Type: News The recent exposure of a privilege elevation vulnerability that exists in the control Exchange has over Active Directory and EWS push notifications is fixed by cumulative updates for Exchange 2013, Exchange 2016, and Exchange 2019 and a roll-up update for Exchange 2010 SP3. These changes mark an architectural modification for Exchange, something that Microsoft is loathe to do outside major releases. Install the updates now! Exchange and a Privilege Elevation Vulnerability An enormous amount has been written about the privilege elevation vulnerability in Exchange. Now, in an unprecedented move, Microsoft has issued patches to address the problem. You can read the EHLO blog to learn Microsoft’s perspective on the issue and download the updates as follows: Exchange Server 2013 – Cumulative Update 22 Exchange Server 2016 – Cumulative Update 12 Exchange Server 2019 – Cumulative Update 1 A roll-up update is available for Exchange 2010 (see below). Microsoft recommends that customers install the updates as soon as possible Why unprecedented? Well, since Exchange 2013, Microsoft has settled into a well-worn routine of issuing quarterly cumulative updates, which are full and complete versions of Exchange that include all available updates and fixes for a server at the time of issue. What Microsoft does not do is make architectural changes to Exchange in cumulative updates. Yet that is exactly what occurs here. Although unusual, it’s a good response from Microsoft. The vulnerability has not been used in any publicly-known attack, but that’s not to say that this might not happen in the future. In addition, security researchers have developed the techniques exploited in the vulnerability step-by-step since October 2018, so the weaknesses being probed need to be closed off permanently before a bad actor succeeds in a damaging attack. Changing EWS Push Notifications The changes are two-fold to address the weaknesses exposed in the vulnerability. The first and probably most important change affects push notifications... --- ### Understanding and Creating NAT Rules in Azure Firewall > In this post, I will show you how to publish an Azure service in a virtual network to the Internet using a NAT (DNAT) rule in the Azure Firewall. - Published: 2019-02-12 - Modified: 2024-09-04 - URL: https://petri.com/understanding-and-creating-nat-rules-in-azure-firewall/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, firewall, NAT, NAT Rule, NAT Rule Collection, RDP, Rules, Security, SSH, virtual networking, VNET - Article Type: How To Here's how to publish an Azure service in a virtual network to the Internet using a NAT (DNAT) rule in the Azure Firewall. DNAT Most people will use the phrase of NAT to describe sharing a service through a firewall, but Microsoft calls it Destination Network Address Translation (DNAT) in their documentation, but a NAT rule in the Azure Portal; I will just use the regularly employed NAT term. The goal of NAT is to publish an otherwise private service, through a firewall, via an IP address. Typically, a NAT rule will contain settings such as: External interface: The interface on the firewall that the rule is being associated with. External port number: The port that the rule will be associated with. Note that there is a 1:1 association between a rule and a port on a single interface. External ports cannot be shared. Internal address: This is the address that the firewall will send the traffic to; this is the internal address of the shared service, such as an internal load balancer for a web service. Internal port number: This is the port that the connection is being translated to. For example, an application might be shared to the Internet with TCP 8080 as the external port number, but the web service might be running on the server(s) on TCP 443. Using different external port numbers allows an internal port number to be used across many services. For example, TCP 3389 on Server1 might be shared as TCP 50001 on the firewall, and Server2 might be shared as TCP 50002. The remote desktop client will connect to TCP 50002 on the firewall’s... --- ### How to Configure Group Policy to Reapply Settings - Published: 2019-02-12 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-group-policy-to-reapply-settings/ - Categories: Active Directory (AD) - Tags: Active Directory, Configuration Management, group policy, Security, Windows, Windows Server - Article Type: How To How to ensure that Group Policy settings are applied every time Group Policy is processed. Active Directory Group Policy is a configuration management tool used by organizations to apply settings to servers and workstations. But the way Windows processes Group Policy Objects (GPOs) isn’t straightforward. I’m not going to give a complete rundown of how Group Policy processing works in this article but talk about one specific aspect. Group Policy Processing Windows processes GPOs that apply to a device during computer start up and shutdown; and when users log in and log off. These events are known as foreground processing. Additionally, by default Windows processes Group Policy every 90 minutes for workstations and every 5 minutes for servers when users are logged in. This is known as background processing. But regardless of whether foreground or background processing is used, the default behavior is to only reapply a GPO’s settings if the policy object was modified before the refresh. In principle, a user could modify a registry setting that is managed by Group Policy and it would never be reverted to the value defined in the GPO. This default behavior is designed to speed up Group Policy processing. Force Group Policy to Reapply Settings If you want to make sure that security settings in a GPO are applied every time Group Policy is processed, regardless of whether the GPO has changed, there are four Group Policy settings that you should enable. You can find them under Computer Configuration > Administrative Templates > System > Group Policy. Configure security policy processing Configure registry policy processing... --- ### Microsoft Teams Will Soon Let you Replace Backgrounds, Instead of Blurring - Published: 2019-02-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-will-soon-let-you-replace-backgrounds-instead-of-blurring/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft is working on a new feature for Teams that will take background blurring to the next level, full customization. Instead of blurring, you will have the option to customize the background Microsoft's Teams app has quickly become a cornerstone of the Office 365 platform. Offering a wide variety of customized experiences, the communication hub is a product that is receiving significant investment from senior management. One of the unique features the platform has recently introduced is the ability to blur the background while on a video chat. The next evolution of that feature is to let you customize the background and sources close to the company have stated that this feature will arrive this year. While this may not seem like a big deal, it's a subtle feature that helps the platform become more friendly for the corporate environment. Especially in open offices, where you don't want your colleagues to be visible, the blurring helps reduce the background noise but being able to completely replace it is ideal for these types of situations. Microsoft introduced the ability to blur the background of a video call in Teams in September of 2018. The company has not publicly announced this feature but I was told that it is expected to arrive before the end of the calendar year. Microsoft recently brought background blurring to Skype and I would expect the replacement functionality to also show up on that platform, too. As Microsoft continues to push forward with Teams, these types of features will be important for the application as they help it be a differentiator when compared to other competing solutions... --- ### How To Extend Windows Server Evaluation - Published: 2019-02-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-extend-windows-server-evaluation/ - Categories: Windows Server - Tags: Windows Server - Article Type: How To In today’s Ask the Admin, I’ll show you to extend to evaluation time for Windows Server. Microsoft makes evaluation versions of its products available to anyone and they can be downloaded for free. If you head over to the Evaluation Center, you’ll find Windows Server, Windows 10, and other on-premise server products, such as SQL Server and SharePoint. I use Windows Server in Azure and in a local virtual machine. There are several advantages to testing in Azure: Uses a fully licensed version of Windows Server. Doesn’t consume local resources. Pay only for the compute resources used. Can expand compute resources beyond what would be possible locally. But sometimes Azure doesn’t give me enough flexibility to test certain scenarios. For example, you can’t get access to the VM during the initial bootstrap or the UEFI/BIOS. And that means that I can’t test PXE booting with Windows Deployment Services (WDS) for example. Additionally, setting up test environments in Azure can be complicated. If you want to set up a domain controller in Azure, you’ll need to provision a separate non-caching data disk to hold the NTDS files. And when your domain admin password expires, it isn’t straightforward to reset it. Networking can get complicated in Azure too. For more information on working with domain controllers in the Azure cloud, see Deploy Domain Controllers as Azure Virtual Machines, Reset Expired Domain Admin Password in Azure VM, and Deploy Active Directory and Certificate Services in Azure Using Infrastructure-as-Code on Petri. In a local VM, life is easier. I have direct access from the initial boot and networking... --- ### With HoloLens Now out of Stock, All Attention Turns to HoloLens 2 - Published: 2019-02-11 - Modified: 2024-09-04 - URL: https://petri.com/with-hololens-now-out-of-stock-all-attention-turns-to-hololens-2/ - Categories: Hardware - Tags: HoloLens, Microsoft, News - Article Type: News Microsoft has begun teasing its big announcement for later this month and with Hololens 1 now out of stock, the stage is set for new hardware. Later this month, Microsoft is hosting an event at Mobile World Congress where the company is expected to show off its next-generation Hololens. The device, which the company has been working for years, has gone through multiple iterations and will improve upon the device in nearly every way. The hardware, which is codenamed Sydney, has been developed in broad daylight, with AI built-in into the silicon, a new HPU (Holographic processing unit) that will all be running next to a Snapdragon 850, the device will have significantly more computational power than the first iteration. Microsoft has taken it's time with the hardware and actually scrapped a previous model when it determined that it didn't have a logical reason to ship new hardware for the sake of shipping new hardware. That being said, expect this new hardware to have a wider field of view, longer battery life, and it should have a lower price point as well. Microsoft's first generation of hardware is now out of stock too, the stage is set for the next generation. But, keep in mind, I fully expect this device to be an enterprise play. The first generation of hardware has found life with technicians and even NASA. The high price of entry of the first generation kept it out of the hands of consumers and even though this hardware should cost less, it will still be priced too high for the average consumer. https://www. youtube. com/watch? time_continue=40&v=BC7xSl394u4 The development of the HoloLens is a journey for... --- ### Paul Thurrott's Short Takes: February 8 - Published: 2019-02-08 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-8/ - Categories: Microsoft 365, Networking, Office, Security, Windows 7 - Tags: News - Article Type: Overview Because I want to be your Valentine, this edition of Short Takes looks at Microsoft’s weird criticism of its own product, a Windows 7 paid support leak, fake 5G network branding that needs to be taken down, Apple’s FaceTime bug, and much more. Need a hand? Because I want to be your Valentine, this edition of Short Takes looks at Microsoft’s weird criticism of its own product, a Windows 7 paid support leak, fake 5G network branding that needs to be taken down, Apple’s FaceTime bug, and much more. Microsoft urges its customers not to use Microsoft Office Now this is marketing: To push customers away from “perpetual” Microsoft Office versions and to its annual Office 365 subscriptions, Microsoft artificially limited the former by restricting use to one user on one PC, limiting functionality by disabling access to useful cloud services, and by preventing it from receiving the same monthly updates that Office 365 enjoys. And then it launched an ad campaign featuring sets of twins trying to accomplish the same tasks in Office 2019 (the latest perpetual version) and Office 365. And get this: The Office 365 versions are more efficient and more full-featured! It’s incredible! The problem here isn’t that Office 365 isn’t valuable---I think it’s a no-brainer, especially for families---but rather that Office 2019 has been unnecessarily and almost cruelly hobbled. This is no way to treat the product that used to be your biggest money-maker, Microsoft. “Regrettable Microsoft ads bash Office 2019” Better headline: “Microsoft ads bash regrettable Office 2019. ” Windows 7 paid support prices leak Last Fall, Microsoft announced that it would allow its biggest corporate customers to pay for Windows 7 support past its January 2020 retirement. The cost would be... --- ### How to Build an Azure Firewall in a Hub Virtual Network > This post will show how to architect a centralized Azure Firewall deployment in with virtual networks peered into hub-and-spoke configurations. - Published: 2019-02-07 - Modified: 2024-09-04 - URL: https://petri.com/how-to-build-an-azure-firewall-in-a-hub-virtual-network/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, firewall, Hub-and-Spoke, Network, PIP, Public IP Address, Route Table, Routing, Security, Virtual Network, VNET, VNet Peering, WAF, WAG, Web Application Firewall, Web Application Gateway - Article Type: How To Aidan shows you how to architect an Azure Firewall deployment where a centralized firewall will inspect many applications/services that are deployed into dedicated virtual networks (VNets). Design Concept In this design, the Azure Firewall will be deployed once into a hub virtual network. Applications or services will be deployed in spoke virtual networks. VNet peering (global peering is not supported), will connect the hub, where the firewall is hosted, to the peers, where the applications/services are hosted. The benefits of this design are: Services can be deployed across different virtual networks/resource groups/subscriptions in the same tenant (governance & RBAC) but you can still enable secure communications between isolated services. Every packet flowing between services is inspected and logged by the Azure Firewall. You have a centralized Azure Firewall deployment instead of one firewall or network virtual appliance (NV) cluster per application/service deployment. The role of network security can be separated from the roles of application development & operations. Deploying Azure Firewall into a hub & spoke virtual network architecture Firewall Virtual Network This is a very simple virtual network – a single subnet, that must be called AzureFirewallSubnet, is required to host the Azure Firewall. The firewall has a single public IP address, which you should note for the “destination address” in NAT rules, and a single internal IP address, which you should note for creating route tables in the application/services subnets. If your applications will be internet facing and they require a dedicated public IP address (see web application gateway/firewall), then traffic from the Internet will come into those services without flowing through the firewall... . --- ### Who Owns Office 365 Deployment? Most Organizations Don’t Know - Published: 2019-02-07 - Modified: 2024-09-04 - URL: https://petri.com/who-owns-office-365-deployment-most-organizations-dont-know/ - Categories: Microsoft 365, Office - Tags: Office, Office 365 - Article Type: Overview In our industry, we are witnessing IT teams delegating and partitioning shifting responsibilities, often on an ad-hoc basis, with the organization leaders content to allow this adaptive strategy in the short term until problems or conflicts begin to arise. If you read the press releases and attend the industry conferences, you might believe that every organization has moved to – and is successfully operating in – the cloud. But having advised customers of all sizes across multiple industries, we can report that like every transition in the past, cloud adoption and the process of digital transformation has caused an industry-wide operational struggle. Nowhere is this struggle more apparent than in the organizational chart of IT departments. If you scan the titles of your IT colleagues, you may notice the occasional “SharePoint Administrator. ” In larger organizations, you may even see a “VP of User Services. ” But rarely will you find anyone with Office 365 in their title, despite it frequently being the platform where the vast majority of critical business data is generated, stored and shared. Why There is An Office 365 Admin Gap and Why It’s a Problem Operating in the cloud is fundamentally different than how organizations have operated in the past. IT roles like administrators of storage, databases, servers, applications and services are finding that their responsibilities begin to overlap, and the lines of their former roles become blurred as they move into a cloud-based collaboration ecosystem. This means that in nearly every industry, traditional IT professionals are forced adapt to new services and responsibilities. In our industry, we are witnessing IT teams delegating and partitioning shifting responsibilities, often on an ad-hoc basis, with the organization leaders content to allow this adaptive strategy in the... --- ### Microsoft Targets the Healthcare Industry with Several New Features for Teams - Published: 2019-02-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-targets-the-healthcare-industry-with-several-new-features-for-teams/ - Categories: Microsoft Teams, Office - Tags: Healthcare, Microsoft, Office 365, Teams - Article Type: News Microsoft is working on new features for Teams that they hope will entice workers in the healthcare industry to adopt the collaboration platform. Microsoft hopes that one day, every company is using Teams as the central hub for productivity. Since the platform was announced a few years ago, the company has invested heavily into turning the tool that makes communication easier and more secure, into a digital hub for all aspects for many different types of businesses. Earlier this year, we saw Teams add new features for educators and today, the company is announcing new updates that are aimed squarely at the healthcare industry. Health organizations, unlike many other types of businesses, are heavily regulated. In addition, a timely response to a message, can mean the difference between life or death. Microsoft is looking to assist these types of organizations with three new features to make it easy to securely collaborate in this field and to make it easier to alert the proper personnel during emergencies. New advanced messaging features include: Priority notifications for urgent messages Message delegation to securely manage urgent patient care New platform enhancements that provide the ability to integrate electronic health records for care coordination The idea here is quite simple, healthcare workers typically use several different tools for communication; urgent messages use one set of technologies and secure communications use another. Microsoft's goal is to bring all this into one application and make it easier for healthcare workers to collaborate and communicate. But the real advantage that Microsoft has in this space is that everything is already compliant with the various healthcare regulations in the US and around... --- ### Leave Those SharePoint Permissions for Office 365 Groups Alone > Office 365 Groups and Teams make SharePoint much easier for people to use, but the price paid is the imposition of the groups permission model on SharePoint. - Published: 2019-02-07 - Modified: 2024-09-04 - URL: https://petri.com/leave-sharepoint-permissions-office-365-groups-alone/ - Categories: Microsoft 365, Office, SharePoint, SharePoint Online - Tags: Azure Active Directory, Delve, Office 365, Office 365 Groups, permissions, SharePoint Online, Teams - Article Type: How To Office 365 Groups and Teams make SharePoint much easier for people to use, with the price paid being the imposition of the groups permission model on SharePoint. On the upside, everything is very simple. On the downside, the permissions assigned to group members might not be what you want. Moving from On-Premises to Cloud Permissions The move from SharePoint on-premises to SharePoint Online is “interesting” and migrations can throw up many challenges. One of the non-technical changes is the transition to a new world of Office 365 permissions, where traditional SharePoint permissions are replaced in many cases by Office 365 Groups. This throws up many questions in the minds of those who have run SharePoint on-premises deployments and who might be used to customizing permissions. Simplicity is Key to Office 365 Groups Office 365 Groups implement a very simple permissions model. Owners have administrative permissions and manage the resources belonging to the group, including its membership. Members have access to the resources. They can see everything in the group inbox or calendar, upload and edit all the documents in the site library, take part fully in team conversations and meetings, schedule and update tasks in a plan, and so on. With just a few exceptions, the rule that a member has access to everything owned by a group even extends to guests (this is why you must use rights management to stop guest members being able to open documents in a group document library). Office 365 Groups are a type of an Azure Active Directory group. When you create a new Office 365 group, you also create an Azure Active Directory group. The members and owners of the Azure Active Directory group form the membership and owners of the Office 365 group. Azure Active Directory is the... --- ### Microsoft's Build Registration Opens February 27th - Published: 2019-02-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-build-registration-opens-february-27th/ - Categories: Main - Tags: BUILD, Microsoft, News - Article Type: Opinion Microsoft's Build conference will take place again in Seattle with registration opening up later this month. Earlier this year, we saw dates on Microsoft's website that said that Build would be May 7-9 but thanks to their updated website, the company has shifted the dates slightly to the 6-8. Like the past couple of years, the event will be held at the company's headquarters in Seattle, Washington. If you are looking to attend the event, registration opens February 27th and you can find out more information, here. Like last year, Microsoft's developer conference overlaps with Google's IO, which is being held May 7-9th. Obviously, this means you can't attend both but this wasn't a big issue last year as both conferences tend to attract slightly different audiences. As for what the company will talk about at the event? It’s a still bit too far out to fully know but I expect to hear about Windows Lite and if we are lucky, possibly next generation Hololens content too. And of course, there will be lots of talk about Azure, IoT, and the company’s graph too. --- ### How to Secure A Network Using NSGs and ASGs > Learn how to use Application Security Groups (ASGs) with Network Security Groups (NSGs) to create secure network designs for virtual machines in Azure. - Published: 2019-02-06 - Modified: 2024-09-04 - URL: https://petri.com/how-to-secure-a-network-using-nsgs-and-asgs/ - Categories: Microsoft Azure - Tags: Application Security Groups, ASGs, Azure, firewall, Network Security Groups, networking, NSGs, Security, Virtual Network, VNET - Article Type: How To In this post, I will explain how you can use Application Security Groups (ASGs) in addition with Network Security Groups (NSGs) to create secure network designs for virtual machines in Azure. Before you read this post, you should read Understanding Application Security Groups in the Azure Portal to understand the purpose of ASGs and how to deploy them. The Scenario In a previous post, How to Secure A Network Using NSGs, I explained how you could secure a reference architecture for a web application that is deployed using virtual machines in an Azure virtual network. In the design, the service has three tiers, each of which is deployed into its own subnet and secured with a dedicated NSG resource: Web Tier: The web servers that are accessed from the Internet. Business Tier: The application servers that are only connected to by the web servers. Data Tier: The database servers that are only connected to by the database servers. Securing a web service using NSGs The above example is quite simple. In the real world, I’ve seen designs that might have 10+ subnets and one NSG resource per subnet. That is a complex design and could be fun to troubleshoot firewall rules in many NSG resources. Application Security Groups If you “zoomed out” on the above design, you might say that there is an external tier (the web servers) and an internal or backend tier (everything else). What if we could flatten the above... --- ### Microsoft's Windows 7 Extended Support Pricing Announced - Published: 2019-02-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-windows-7-extended-support-pricing-announced/ - Categories: Windows 7 - Article Type: News With Windows 7 support coming to an end next year, Microsft has announced pricing for extending Windows 7 support for commercial customers. With less than a year of support for Windows 7, Microsoft has begun heavily pushing Microsoft 365 and other programs that they hope will entice customers who have yet to migrate. But for those who have not made the move or plan on sticking with Windows 7, pricing for extended support has been announced. As with the previous version of Windows, pricing will double each year after the expiration of public support for the operating system. Pricing is listed below: Windows 7 Extended Security Updates Year 1 (January 2020 through January 2021): Windows 7 Pro is $50 per device, Windows Enterprise (add-on) is $25 per device. Year 2 (January 2021 through January 2022): Windows 7 Pro is $100 per device, Windows Enterprise (add-on) is $50 per device. Year 3 (January 2022 through January 2023): Windows 7 Pro is $200 per device, Windows Enterprise (add-on) is $100 per device. Microsoft uses this model to incentivize customers to move off of the platform. With support fees doubling each year, supporting the outdated OS in your environment can quickly become the most expensive reoccurring fee that you are paying. The company is hoping that many of its Windows 7/Office 2010 customers will move to Microsoft 365. And with a couple hundred million users still running Windows 7, it will likely be the single largest year of growth for Microsoft 365. --- ### Surface Go: Six Months Later - Published: 2019-02-05 - Modified: 2024-09-04 - URL: https://petri.com/surface-go-six-months-later/ - Categories: Hardware - Tags: review, Surface Go - Article Type: Opinion Microsoft's Surface Go is six months old and this is a closer look at the hardware after using it a considerable length of time. The Surface Go was released about six months ago and during that time, I have used the device on a couple road trips, a significant amount of time around the house, and a little bit to knock out a few work-related tasks. This 'review' is more of an update of the device after using it a significant amount of time, rather than a comprehensive deep dive into the hardware. It's important to remember what this hardware is designed for; first line workers, education, and casual use. It's not designed to be a workhorse, that's the Pro, but at the same time, it is a Surface, which means it has a pedigree that it should still be a quality piece of hardware. The version of the Go that I have is the 128 GB model with 8GB of RAM, Microsoft is selling this device for $549. 00 and here is how it has fared for the past six months: Pros: I quite like the size of this hardware. While the 10in screen can feel small at times, it's also excellent at being an ultra-mobile computing device. I can toss it in a bag and with it weighing only a bit over 1lb, you don't even know it's in there. The Go works best when running one application at a time, full screen. Yes, you can snap apps and run two side by side, which is ok for a browser and a word doc, but the screen size is a bit... --- ### How to Use Windows 10 Quick Assist to Give or Receive Remote Support - Published: 2019-02-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-windows-10-quick-assist-to-give-or-receive-remote-support/ - Categories: Windows 10 - Tags: Quick Assist, remote support software, Support, Windows 10 - Article Type: How To Looking to better understand Quick Assist in Windows 10 for remote support? Russell has you covered. Quick Assist is an application in Windows 10 much like Team Viewer, and it provides a quick way to support remote users. While Remote Assistance, which was originally part of Windows XP, is still available in Windows 10, Quick Assist is a more flexible tool and easier to use. Remote Assistance can also be vulnerable to attack, so it’s something you might want to disable. Provide Remote Support Using Quick Assist Using Quick Assist is easy. Unlike some other remote support tools, everything works over standard Internet protocols, so it is firewall-friendly. To start Quick Assist, type Quick Assist in the search box in the bottom left of the taskbar and then click Quick Assist in the list of results. If you are providing support, click Assist another person. The person providing support should initiate the Quick Assist session. Windows 10 Quick Assist (Image Credit: Russell Smith) Before you can help someone, you must sign in to Quick Assist using a Microsoft Account, or a work or school account. If you have an account connected to Windows or are logged in with an MSA account, Quick Assist will try to use that account. You can always change the account by clicking Sign in with a different account. A code will be generated which you must share with the remote user within 10 minutes. After that time, the code expires. You can either verbally share the code with the remote user or send it by... --- ### Groups Membership Model Makes Teams Private Channels Hard to Implement > Secure (or private) channels is the biggest user request to the Teams development group, possibly because Slack has this feature. Office 365 - Published: 2019-02-05 - Modified: 2024-11-19 - URL: https://petri.com/teams-secure-channels/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: private channel, secure channel, SharePoint Online, Slack, Teams - Article Type: Opinion Secure (or private) channels is the biggest user request to the Teams development group, possibly because Slack has this feature. The only problem is that the Office 365 Groups membership model doesn't allow for filtering within a group, so introducing elements available to a selected set of members might create all sorts of difficulties for how Teams interacts with the rest of the Office 365 ecosystem. Teams Fervent Work to Satisfy UserVoice Despite being the most popular UserVoice request (by quite a margin), the desire for Teams to have secure channels isn’t on the Office 365 Roadmap. However, a UserVoice response from the Teams development group says that they are “working on it, fervently. ” Every team has at least one channel (the default channel is called General) and can have up to 200. A channel is a way of dividing discussions within a team into logical topics. Each channel can be customized with its own tabs and apps to support the discussions it hosts. For now, all channels in a team are open to all members. In other words, once you post something in a team, any member can see what you’ve done. It’s all very democratic. The idea behind secure channels seems simple on the surface. It’s a feature that exists in Slack, the major competitor for Teams and basically means that a channel can be public (like they are today) or private (limited to certain members). And there lies the problem. Teams and Groups Teams is built on top of the Office 365 Groups service. A central principle of Groups is members enjoy equal access to all resources belonging to the group, whether that resource is a SharePoint team site, plans inside Planner, or as noted above, all the conversations in all channels in the team. Equal access extends to guest users from outside the tenant. Access granted by group membership only... --- ### Azure Firewall in a Single Virtual Network > In this post, I will show you how to design the deployment of an Azure Firewall in a single virtual network with full inspection and logging of traffic. - Published: 2019-02-04 - Modified: 2024-09-04 - URL: https://petri.com/azure-firewall-in-a-single-virtual-network/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, firewall, networking, Public IP Address, Route Table, Routing, Security, Subnet, Virtual Network, VNET - Article Type: How To This s how to design the deployment of an Azure Firewall in a single virtual network. Design Concept Because of the cost of Azure Firewall, I would normally expect it to be used in larger implementations. But high-value assets do not have to be large; a few virtual machines can be responsible for millions of dollars of business – I have seen it – and that is something that the business will wish to protect. Therefore, one might expect to see a design such as the below. Although Microsoft normally sees Azure Firewall being deployed into a hub-and-spoke virtual network deployment (peered VNets), you can deploy Azure Firewall into a dedicated subnet in a single VNet. Azure Firewall deployed into a single virtual network For the purposes of illustration and explanation, I have kept this architecture simple, but I will expand on it later in the post. The Firewall As is required by Azure Firewall, a dedicated subnet is deployed. This subnet, which must be called AzureFirewallSubnet, must have a subnet mask of at least /25. The Azure Firewall has two IP addresses: A public IP address (PIP): You must note the IPv4 address of the PIP for any NAT rules that you want to create. NAT rules require a “destination IP address”, which is the address that Internet traffic will be sent to. Internal IP Address: The Azure Firewall will consume a single IP address from the AzureFirewallSubnet. This address will be later used in route tables for the web and backend subnets. Web Subnet A subnet for... --- ### How to Secure A Network Using NSGs > This post shows how you can use Network Security Groups (NSGs) to secure the subnets of a typical virtual machine-based web application deployment in Azure. - Published: 2019-02-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-secure-a-network-using-nsgs/ - Categories: Microsoft Azure - Tags: Azure, firewall, Network Security Groups, networking, NSGs, Security - Article Type: How To Here's how you how you can use Network Security Groups (NSGs) to secure the subnets of a typical virtual machine-based web application deployment in Azure. In this post, I will show you how you can use Network Security Groups (NSGs) to secure the subnets of a typical virtual machine-based web application deployment in Azure. Note that I will focus on inbound rules in this article. The Web Farm The deployment that I will secure in this article is a typical design you will find for deploying a web farm using virtual machines in Azure. If you have browsed Microsoft’s Azure reference architectures then you might recognize the design – I took their Internet DMZ design and chopped it down to focus just on the machines and their subnets. In the design, there is a single virtual network and three subnets. Each subnet hosts a tier of virtual machines and has a single network security group (NSG) created for it and associated with it: Web Tier: A subnet for virtual machines hosting web services. An NSG dedicated to this subnet will allow web traffic from the Internet and through the external load balancer to the virtual machines. Business Tier: This subnet is where the applications servers are. Another dedicated NSG will allow traffic from the web tier into this tier. Data Tier: Here you can find the database servers. A third dedicated NSG will allow database client-server traffic from the business tier into this subnet. The design of the Azure virtual network that NSGs will secure The Concept of Stacking Rules An NSG resource has inbound... --- ### What To Consider when Building Your Azure Firewall Design > This post discusses some considerations when planning for or designing a deployment of the Azure Firewall with VNets, peering, NSGs, web services & more. - Published: 2019-02-01 - Modified: 2024-09-04 - URL: https://petri.com/what-to-consider-when-building-your-azure-firewall-design/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, firewall, Gateway, Network Security Group, NSG, Peering, PIP, Public IP Address, Security, Virtual Network, VNET, VPN, WAF, WAG, Web Application Firewall, Web Application Gateway - Article Type: Overview Aidan explains what you need to consider when planning for a deployment of the Azure Firewall. Post General Availability The Azure Firewall was quite limited during its preview. In fact, I would go as far as saying that if it had not improved, I would not consider it as a firewall option in Azure – but that’s not the case anymore! I have recommended the Azure Firewall because it has the core features I commonly need for customers now, plus I can “set it and forget it”. The most important feature of all is the ability to create NAT rules (DNAT to be precise) for inbound traffic. Yes; during the preview, the Azure Firewall only inspected outbound traffic. Network Security Groups (NSGs) Azure Firewall does not replace NSGs. Defense in depth is still a good thing. Typically, you will use 1 NSG per subnet for local or distributed firewalling, plus the Azure Firewall for central or edge protection. There are scenarios where internal traffic will not be inspected by the Azure Firewall. If packets are routing from one subnet to another inside a virtual network, then those packets will not be routed by the firewall even if a user-defined route (UDR) in a route table directs traffic via the internal IP address of the firewall. If you want to force inspection then you can do one of the following: Create UDRs that list precise subnet prefixes. Break the subnets out into different virtual networks that are peered with a hub/firewall virtual network. Common Designs Microsoft has been slow to produce reference architectures for the... --- ### Paul Thurrott's Short Takes: February 1 - Published: 2019-02-01 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-1/ - Categories: Cloud Computing, Windows 10, Windows 7, Windows Client OS - Tags: News - Article Type: Overview Because I’m stuck in this polar vortex, this edition of Short Takes looks at Microsoft’s and Apple’s earnings, Microsoft’s Super Bowl ad, a slow-moving October Update for Windows 10, and much, much more. Go get 'em, Owen. Because I’m stuck in this polar vortex, this edition of Short Takes looks at Microsoft’s and Apple’s earnings, Microsoft’s Super Bowl ad, a slow-moving October Update for Windows 10, and much, much more. Microsoft earnings: A quick recap I’ve already covered the recent Microsoft earnings over on Thurrott. com, and Premium members can check out my deeper-dive analysis too. But here’s a quick recap: Microsoft posted net income of $8. 4 billion on revenues of $32. 5 billion in the quarter ending December 31, in-line with analyst expectations. Its biggest business, More Personal Computing, is ironically focused solely on Microsoft’s legacy technologies, and not the cloud services that it hypes so much. That said, Azure continues to rock with 76 percent year-over-year growth, and Microsoft’s “commercial cloud”---a made-up metric in which Microsoft cherry-picks its best cloud-based businesses and lumps them together---compares quite favorably to Amazon. From a growth perspective, Surface was a welcome surprise with 39 percent growth and nearly $1. 9 billion in revenues. And Windows fell harder than the PC industry, which is usually not the case. Meanwhile, gaming did great, but only because of a third-party game called Fortnite, which is not an Xbox exclusive: Microsoft’s hardware sales actually tanked in the quarter, falling 19 percent. “Microsoft Shares Slip Despite Q2 Earnings Beat as Azure Growth Rate Stalls” And by “stalls,” we mean it’s maintained a mammoth 76 percent growth rate for an entire year. Oh, Apple announced earnings too Microsoft’s... --- ### Everything You Need to Know About Azure Infrastructure – January 2019 > In my monthly wrap-up, I will share what happened in the world of Azure infrasructure-as-a-service (IaaS) during January, 2019. - Published: 2019-01-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-january-2019/ - Categories: Microsoft Azure - Tags: App Services, Azure, Azure Backup, Azure Data Box Disk, Azure Files, Azure Migrate, Azure Security Center, Azure Site Recovery, Azure Virtual Machine, Disaster Recovery, DNS, DR, IaaS, linux, Managed Disks, Office 365, Outage, PowerShell, Security, storage, Traffic Manager, virtual machine - Article Type: Overview It was another busy month for Azure, here's a wrap-up of what you need to know for January. Azure Backup & Azure Firewall Once something I covered only in theory for my posts here, Azure Firewall has become a reality in my working life. A concern with introducing a new firewall into an Azure virtual machine deployment is that I might break how other services work, particularly something like Azure Backup. The good news regarding Azure Backup for Azure virtual machines and Azure Firewall is split into two pieces: Back up of virtual machines is done at the fabric level. These backup jobs that protect the entire machine are unaffected by what we do with firewalls, such as Azure Firewall. Protection of services inside of virtual machines (just SQL Server today) relies on outbound data transfer from the virtual network to “Internet” (Azure in this case). There is a built-in infrastructure tag for Azure Backup that allows you to create an outbound exception (FQDN tags in Application Rules) to allow this traffic. 2019 – The Year of Upgrades Windows 7, Windows Server 2008/R2, and SQL Server 2008/R2 all have end-of-support dates in the next 12 months. That means no more security fixes unless you pony up some large piles of money for extended security fix support. Microsoft has promised that customers that move Windows Server 2008/R2 or SQL Server 2008/R2 to Azure (or Azure Stack) will continue to get free security fixes for up to 3 years. Ideally, one won’t just move old stuff to the cloud and leave it like that. The idea here is... --- ### Everything you need to know about Office 365 - January 2019 > Office 365 alerts and clients, Microsoft Stream, PowerApps, Encryption, and so much more. This monthly news and notes has everything you need to know. - Published: 2019-01-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-january-2019/ - Categories: Microsoft 365 - Tags: encryption, Forms, Microsoft Stream, Office 365, Office 365 Admin Center - Article Type: News It was a busy month for Office 365, here's a wrap-up of the highlights for the month. As I sit here in the frozen tundra that is Ohio I decided to go super diverse with this month’s article. We cover O365 alerts, the clients, Stream, PowerApps, and encryption. So, no real theme. The big win for you? I don’t think I included any of my usual snark either. Nope, I was too cold to be funny (or not funny as you often tell me in the comments) so enjoy the pure bliss of just the facts. Office 365 Alerts being configured for Role-based access If you have lots of different people helping to manage Office 365 then one issue you may have noticed is all of them see all of the alerts. Which is great for awareness but kind of annoying for people who can’t do anything about the alert. Mail administrators aren’t fixing SharePoint alerts so why clutter their feed with the alerts. Not for much longer, starting February 19th new role-based alerts will begin to role out. If your company is like mine, where I do everything, then not a big deal, but if you have multiple people in various roles this will be great. Maybe I can use this to justify getting an intern to push some of these roles out to? Office Clients getting Save to the Cloud Ever since I did a project where I had to explain the difference (there is a lot) between Office 365 and Office 2016 clients I have been obsessed. There are just so many cool little... --- ### Everything you need to know about SharePoint – January 2019 > This month read about SharePoint Online enhancements that continue to focus on helping you make the move to Modern sites from Classic. - Published: 2019-01-31 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-january-2019/ - Categories: SharePoint, SharePoint Online - Tags: Microsoft SharePoint, Modern SharePoint, SharePoint List, SharePoint Online - Article Type: News With January coming to an end, SharePoint had quite a few announcements this month; here's your wrap-up. This is like memory lane and the future all tied into one post. There are lots of great updates on new features that are all about Modern SharePoint. The downside for you is most of them make me reflect back to the days of SharePoint Portal Server of 2003. Crazy. I don’t know about you, but I have been doing SharePoint for a long time. Anyway, check out content around list updates, how to deal with Modern vs. Classic, and then talk your boss into sending you to SharePoint Conference. SharePoint Lists getting Cooler and Cooler I think one of my favorite things about the constant evolution in Office 365 does not only do we get new features, but they also continue to improve old faithful features. For example, in this post, they announce a pile of changes to the SharePoint Online list. Bulk check in/out, new visuals, stick column headers, drag and drop changes and more. The SharePoint list has been roughly the same since 2003 because it just worked. But now, they are using their powers of change for good, to show the list some love. Maybe I am just being over positive this morning, but I really love the changes here. Nothing drastic, just some nice to haves which is a “thumbs up” in my book. Don’t forget SharePoint Conference If you are reading this article, you care a lot about SharePoint. And if you are reading this in the US you are probably a... --- ### Everything You Need to Know About Windows – January 2019 - Published: 2019-01-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-january-2019/ - Categories: Windows 10 - Tags: Internet Explorer, Windows 10, Windows 10 19H1, Windows 8 Embedded, Windows Server 2008, Windows Server 2019 - Article Type: Overview This month sees Windows Server 2019 finally reach general availability in Azure and appear in the Windows Evaluation Center, plus some changes to Internet Explorer in older versions of Windows. This month sees Windows Server 2019 finally reach general availability in Azure and appear in the Windows Evaluation Center, plus some changes to Internet Explorer in older versions of Windows. Windows Server 2019 Evaluation ISOs It’s been a long wait since Microsoft first announced Windows Server 2019 availability in September but now you can download an evaluation of the new server operating system from Microsoft’s website here. October 2nd saw the bits briefly offered for download in the Evaluation Center, the Volume Licensing Service Center, and the Azure Marketplace, before being pulled due to a bug that could delete user data during an in-place upgrade. As a reminder, Windows Server 2019 is the first version of Windows Server not to reach the Release-To-Manufacturing (RTM) milestone, which means that it isn’t ready for hardware until the first certifications appear in the Windows Server Catalog. Now at the end of January, some server products are listed as ‘Certified for Windows Server 2019’. Windows Server 2019 is also now generally available in Microsoft Azure. For more details on the release of Windows Server 2019, see Windows Server 2019 Skips RTM, But What Does that Mean? on Petri. Internet Explorer 11 Coming to Windows 8 Embedded and Windows Server 2012 Since January 2016, only the most current version of Internet Explorer (IE) available for supported versions of Windows received technical support and security updates. For Windows 7, Windows 8. 1, Windows 10, and their equivalent server versions, that meant IE11. But Windows 8... --- ### Enterprise Dish: The Right (and Wrong) Way to Deal with a Cloud Outage - Published: 2019-01-31 - Modified: 2024-11-19 - URL: https://petri.com/enterpirse-dish-the-right-and-wrong-way-to-deal-with-a-cloud-outage/ - Categories: Enterprise Dish, Podcasts - Tags: Enterprise Dish - Article Type: Opinion On this edition of the Enterprise Dish, we dive into if you should host critical exchange servers locally, new features for Microsoft 365, Azure gets Server 2019, and a conference you might want to attend. On this edition of the Enterprise Dish, we dive into if you should host critical exchange servers locally, new features for Microsoft 365, Azure gets Server 2019, and a conference you might want to attend. Subscribe iTunes | Google Play | YouTube | RSS --- ### Microsoft Begins Rolling Out Overhauled Microsoft 365 Compliance and Security Center - Published: 2019-01-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-rolling-out-overhauled-microsoft-365-compliance-and-security-center/ - Categories: Microsoft 365 - Tags: Microsoft 365, News - Article Type: News Microsoft is rolling out an updated security and compliance center for Microsoft 365 customers. Back in April of 2018, Microsoft rolled out a new security and compliance center for Microsoft 365 customers. The goal of this product is to provide a single dashboard of your organization to help maintain security and compliance across your devices and software. Starting today, the company is rolling out an overhauled security and compliance center which will provide easier navigation and make it easier to digest the information that is presented. The company expects that this rollout will be completed by March 2019 which means if you don't see it today, you should see it soon. To little surprise, once the rollout is complete, the company plans to retire the current security and compliance center. To be eligible to use the new Microsoft 365 security center and Microsoft 365 compliance center, your organization must have a subscription to Microsoft 365 E3 or E5, or a Volume Licensing equivalent (which consists of Office 365 Enterprise E3 or E5, Enterprise Mobility + Security E3 or E5, and Windows 10 Enterprise E3/E5). With compliance and security exposures becoming exponentially more expensive each time there is an issue for your company, staying on top of these challenges is imperative. Microsoft hopes that its compliance and security center will be enough of an incentive for some organization so that they jump into the Microsoft 365 portfolio. --- ### What is Amazon WorkLink? - Published: 2019-01-31 - Modified: 2024-09-04 - URL: https://petri.com/what-is-amazon-worklink/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Cloud, WorkLink - Article Type: Overview Amazon has a new tool that is designed to make it easier to access intranet sites on mobile devices. The mobile workforce of today is vastly different from a few years ago. Where it was once common to only use a laptop to connect to the office environment, mobile devices like tablets and phones connect every single day. The goal of Amazon's new WorkLink is to provide secure, mobile access to your internal websites and apps. The tool is a fully managed service that lets employees securely access internal websites on their mobile devices. This type of feature isn't exactly new, employees have been able to use VPNs for years to access internal sites. What Amazon hopes to do with WorkLink is make it more convenient to access internal company content with any type of device. The days of issuing corporate phones to every employee are far behind us. WorkLink enables the BYOD environment to be more secure. When a user accesses an internal website, the page rendered in a browser running in a secure container in AWS; WorkLink then sends the contents of that page to employee phones as vector graphics while preserving the functionality and interactivity of the page. This approach is more secure than traditional secure connections because internal information is never stored or cached by the browser on employee phones, and employee devices never connect directly to your corporate network. Amazon handles the security by rending the site securely within AWS and keeps all the traffic on the AWS network as well. What Amazon has built is a turn-key solution to accessing internal websites... --- ### Why Exchange Transport Rules are a Good Way to Encrypt Email > Exchange Online transport rules are a powerful way to ensure that email from Office 365 tenants to specific recipients are encrypted in a consistent manner. - Published: 2019-01-31 - Modified: 2024-09-04 - URL: https://petri.com/exchange-transport-rules-good-way-encrypt-email/ - Categories: Exchange Online, Microsoft 365, Office - Tags: encryption, Exchange Online, Information Protection, Office 365, Rights management - Article Type: How To Exchange Online transport (mail flow) rules are a powerful way to ensure that email from Office 365 tenants to specific recipients are encrypted in a consistent manner. Using rules relieves the need for users to become involved and makes sure that email is protected in a way that recipients can read messages. It's a good way to use the protection features built into Office 365. Microsoft Reverses Course On January 8, I reported how Microsoft planned to install an Exchange transport (mail flow) rule into the configurations used by Office 365 tenants to automatically encrypt outbound email holding sensitive data. On the surface, the idea is a good one, but when you understand how transport rules are used in production environments, it loses it shine. Making the rule an op-out rather than an opt-in feature, and the fact that Microsoft shouldn’t ever alter customer Office 365 data without permission, caused the idea to founder. On January 25, Microsoft announced (Message Center notification 170958) that they had withdrawn the idea. Instead, they would give instructions about how to create a rule to encrypt email containing sensitive data and leave it to tenants to decide if they wish to deploy the rule as is or tweak it for their environment. For instance, it is generally a good thing to put rules that encrypt email at the end of rule processing so that encryption happens after any other changes are made to messages. The Right Approach Delivering a optional rule for email encryption is the right way to help Office 365 tenants understand the value of email encryption and how they can exploit the work Microsoft has done since 2016 to make rights management-based encryption easier to use. All tenants are now automatically enabled for information protection, the Office 365 Message Encryption (OME) portal has been refreshed, and the Encrypt-Only default template introduced. Even after making encryption easier... --- ### Microsoft's Q2 Shows Stability in a Turbulent Market - Published: 2019-01-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-q2-is-a-small-miss-on-revenue-but-company-remains-stable/ - Categories: Main - Tags: Earnings, Microsoft - Article Type: News Microsoft has released their Q2 earnings for 2019, fiscal Q4 2018, with a revenue of $32.5 billion, an increase of 12% with an operating income of $10.3 billion. Microsoft has released their Q2 earnings for 2019, fiscal Q4 2018, with a revenue of $32. 5 billion, an increase of 12% with an operating income of $10. 3 billion. For the quarter, Microsoft had a net income of $8. 4 billion and the company returned $9. 6 billion to shareholders in the form of share repurchases and dividends. On the Office side of life, the commercial cloud services revenue grew at 11% with the primary driver being commercial seat growth which was up 27% and increased revenue per user. On the consumer side, Microsoft says that they now have 33. 3 million consumer Office 365 subscribers. Dynamics revenue grew a healthy 17% and LinkedIn revenue jumped 29% as well. For the Intelligent cloud, which is an important part of Microsoft's go-forward revenue, revenue jumped 20% and gross margin dollars grew 20%. Operating expenses grew by 26% during Q2 with the company citing investments in cloud and AI engineering, GitHub and commercial sales activity. For the period, Azure revenue grew 76%, server products and cloud services revenue grew 24%, and enterprise mobility install base grew to over 94 million seats. In the more personal computing category, Xbox Live users jumped to 64 million active users and gaming revenue came in at $4. 2 billion. During the same period, Microsoft recorded a healthy $1. 8 billion in Surface revenue; a growth of 39% YoY. Overall, this was another healthy quarter for Microsoft. While Wall St was hoping for slightly more revenue and possibly higher growth in Azure, overall the company put... --- ### What Are AWS Gravitron Processors? - Published: 2019-01-30 - Modified: 2024-09-04 - URL: https://petri.com/what-are-aws-gravitron-processors/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Amazon Web Services - Article Type: Overview Amazon has new Gravitron processors for its services, here's how they can help save you some money. Data centers are quickly becoming more diverse. For years, it was Intel or nothing and then AMD made inroads with its EPYC processors. But in the past few years, ARM has become a hot new commodity. Along with ARM, large companies like Apple, Microsoft, Google and Amazon have been designing their own chips. And with ARM being easily accessible for these companies, it makes sense that they would use this architecture for their in-house designed chips. Amazon's Graviton processors fall right into this category and are built around Arm cores and are custom-built chips that the company says are designed for performance and cost. The ideal use-case for these processors are micro services, web servers, development environments, and caching fleets. Amazon has five sizes of a1 instances available and are EBS-Optimized by default: If your application is written in one of the many scripting languages, there is a high probability that you can move over to these A1 instances and run your application without any additional coding required. It should be a simple drag and drop and off you go. These instances are available now in the US and will spread out as demand is increased for these types of workloads. While not everything should be run on ARM-based servers, for those that need this functionality, --- ### How To Run Commands on Remote Windows Servers Using Puppet Bolt - Published: 2019-01-30 - Modified: 2024-09-04 - URL: https://petri.com/how-to-run-commands-on-remote-windows-servers-using-puppet-bolt/ - Categories: Windows Server - Tags: Configuration Management, PowerShell, Puppet Bolt, Windows Server - Article Type: How To Russell explains how to use Puppet Bolt to run commands remotely on Windows Server. Back in December of last year, I wrote about a new configuration management solution from Puppet Labs. Puppet Bolt is a free, open source, agentless, cross-platform tool that aims to make it easier to get started with automation. Bolt is essentially a remote task runner that supports any language the remote nodes natively run, and it can execute any existing management scripts that you have. But what makes Bolt more interesting is that it can be used to orchestrate operations across multiple devices using sharable tasks; and plans written using Puppet DSL. Because Bolt is agentless, DevOps teams can use it to orchestrate operations without installing agents or using a Puppet Master server. Additionally, much like Puppet itself, Bolt can be used in mixed Linux and Windows Server environments. For more information on Puppet Bolt, see Puppet Bolt Agentless Automation for Linux and Windows Server on Petri. While you can create complex plans, you don’t need to know Puppet to work with Bolt to run ad-hoc commands on remote devices. The question is why would you want to do that on Windows because PowerShell already has built-in support for remoting? The answer is that you probably wouldn’t use Bolt as a standalone remote task runner for Windows, but you might use it if you intend to run Bolt tasks and plans that also touch Linux devices. So, there is no harm in learning how to run commands remotely on Windows using Bolt if you want to work with... --- ### Sponsored: Evolving Office 365 Tenants - Published: 2019-01-30 - Modified: 2024-12-03 - URL: https://petri.com/sponsored-evolving-office-365-tenants/ - Categories: Microsoft 365 - Tags: Office 365 - Article Type: Overview Office 365 serves a wide spectrum of organizations. Many are very small, some belong to government agencies, and some are used by large enterprises. And in the enterprise space, mergers, acquisitions, and divestitures are common events. This post was sponsored by Quadrotech, you can learn about their Office 365 solutions on their website. Office 365 serves a wide spectrum of organizations. Many are very small, some belong to government agencies, and some are used by large enterprises. And in the enterprise space, mergers, acquisitions, and divestitures are common events. Companies transform themselves to meet new business challenges, take advantage of the opportunity, or exit businesses that no longer match their strategy. If an enterprise uses Office 365, they need to understand how to transform IT to match the changing shape of the business. When Microsoft launched Office 365 in June 2011, it was a very different and much simpler beast. Two mildly “cloudified” version of server products (Exchange and SharePoint) came together under a wrapper of cloud infrastructure. Few tenants used Lync, reflecting the difficulty of moving voice communications to the cloud at that point. The two basic workloads operated in their own space, but in truth, Exchange was the only game in town in the early days of Office 365. Migration was a matter of moving mailboxes to the cloud, and a combination of Microsoft and third-party tools were available to solve the problem. Things were more difficult for SharePoint because many on-premises installations were customized, and the SharePoint migration toolset wasn’t as mature. Over time, Office 365 has become more complex. Several contributory factors influenced the shape of Office 365 today. Cloud users have more data. Corporate on-premises 10 GB mailboxes are now 100... --- ### The Three Different Types of Rules that are in the Azure Firewall > In this post, I will explain what the three types of rules that are in the Azure Firewall, what they do, and how they are different from each other. - Published: 2019-01-29 - Modified: 2024-09-04 - URL: https://petri.com/the-three-different-types-of-rules-that-are-in-the-azure-firewall/ - Categories: Microsoft Azure - Tags: Application Rules, Azure, Azure Firewall, firewall, Infrastructure Rule Collection, NAT Rules, Network Rules, networking, Rules, Security, Virtual Network - Article Type: Overview Aidan explains what the three types of rules that are in the Azure Firewall, what they do, and how they are different from each other. Block by Default There are three kinds of rules that you can configure in the Azure Firewall. We’ll delve in these in a few moments, but the first thing you should know is that the Azure Firewall blocks traffic by default. If you do not enable it, it is not allowed ... almost entirely ... but I’ll explain that later in the post. The three kinds of rule sets are: NAT Rules Network Rules Application Rules Configuring rules in the Azure Firewall NAT Rules The Azure Firewall allows you to share network services with external networks, such as on-premises or the Internet through the inspection and logging of the firewall. This traffic routes through the external public IP address of the firewall. Scenarios that you might consider are publishing SSH, RDP, or non-HTTP/S applications to the Internet. Microsoft refers to the form of NAT as being Destination Network Address Translation (DNAT). The rules work with the following parameters: Name: A label for the rule. Protocol: TCP or UDP. Source Address: * (Internet), a specific Internet address, or a CIDR block. Destination Address: Expect this to be renamed – this refers to the external address of the firewall that the rule will inspect. Destination Ports: The TCP or UDP ports that the rule will listen to on the external IP address of the firewall. Translated Address: The IP address of the service (virtual machine, internal load balancer, and so on) that privately... --- ### The Only Hardware Battle that Matters for Microsoft is Education - Published: 2019-01-29 - Modified: 2024-09-04 - URL: https://petri.com/the-only-hardware-battle-that-matters-for-microsoft-is-education/ - Categories: Hardware, Office - Tags: education, Microsoft, Office, Windows - Article Type: Opinion A new generation is being brought up not on Windows and Office, but with iPads and Chromebooks; Microsoft needs to find a way to win in the hardware space at the low end of the market. Microsoft faces competition in many different markets, from Amazon with its cloud services, to IoT platforms trying to win over the next generation of smart manufacturing. But when it comes to software, the company has owned the desktop market for several decades and has been able to hold its own in the productivity space as well. In the hardware space, the company builds personal computers, gaming consoles, peripherals, and a few other items but the only hardware battle that matters for Microsoft is the one in the classroom. While the personal computing space is crowded with many different companies, the Surface brand is now churning out billion dollar quarters on a frequent basis. The Xbox brand, while highly important to Microsoft, is a two-horse race with Sony and Xbox competing for console dollars; Nintendo has carved out its own island and is typically a complement to an Xbox or Sony console. This isn't to say that Xbox, Surface, or anything else Microsoft is building isn't important but there is one race where the company is struggling to compete; the education segment. Last week, Microsoft made several announcements around new hardware for educators, new features with Teams to help make teaching easier, and a new pen that works with the Surface Go. But on the other side of the coin is Google, who also announced that G-Suite for Education has 80 million users. Further, Google also shared that there are 30 million Chromebooks being used in education, up from... --- ### Fixing a Multi-Protocol Exchange Server Vulnerability > No fix is available yet for the Exchange vulnerability reported by Mollema and described in CVE-2018-8581. Stay calm and Microsoft will generate a patch. - Published: 2019-01-29 - Modified: 2024-09-04 - URL: https://petri.com/fixing-multi-protocol-exchange-server-vulnerability/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Server - Tags: CVE-2018-8581, Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Mollema, Vulnerability - Article Type: News No fix is available yet for the Exchange vulnerability reported by Dirk-jan Mollema and described in CVE-2018-8581. Apart from deploying a split permissions model, no out-of-the-box mitigation exists today. Microsoft is working actively to fix the problem and in the meantime, the brains of the Exchange community are hard at work to come up with possible solutions. Last week’s revelation of an Exchange Server vulnerability certainly created quite a stir. Anything to do with security and a potential flaw that might be exploited by attackers has to be dealt with seriously. I’m pretty sure that this is exactly what the Exchange development group are doing as they figure out how to solve the problem. The vulnerability exists in all versions of Exchange on-premises servers, so the solution must work across a large combination of Exchange and Windows versions. This complicates testing to validate any fix and it’s why we haven’t heard Microsoft report much progress to date. The Ninety Per Cent Question In the interim, I spoke to several experienced Exchange administrators about the issue. Many questioned the assertion that the attack is feasible in “probably 90% of the organisations ... that use Exchange “ Although it’s true that the statement is based on a single person’s experience, most of the administrators I spoke to said that they had already enforced LDAP signing and channel binding for Windows domain controllers, as per Microsoft’s security baseline. Some had also disabled NTLM and use Kerberos or modern authentication; others had disabled SMB V1 and implemented SMB2 signing using the RequireSecuritySignature registry key. Restrictions might also be in place to block some or all application access to the URLs used by EWS. Considering the number of mailboxes migrated to Office 365, I think most of the “Exchange server in the closet” type of installation has moved to the... --- ### What is AWS Firecracker? - Published: 2019-01-28 - Modified: 2024-09-04 - URL: https://petri.com/what-is-aws-firecracker/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Firecracker - Article Type: Overview Amazon Firecracker is a new feature that makes it easier and safer to run micro-services. Amazon is a major player in the cloud segment. Started more than a decade ago, Amazon and its cloud empire have grown significantly thanks to AWS (Amazon Web Services) and it's large margins when compared to the company's retail business. One of the company's newer features is called Firecracker which is a new virtualization technology. This feature is built on-top of Kernel-based Virtual Machine that allows the kernel to function as a hypervisor. This new tool makes it possible to launch lightweight micro-virtual machines in non-virtualized environments in less than a second. What this allows you to do is to create workload isolation that VMs have traditionally offered but with the resource efficiency that containers provide. Secure – Amazon has implemented a simple guest model, process jail, and static linking to keep the isolated workloads, isolated. High Performance – You can launch a microVM in as little as 125 ms Battle-Tested – Firecracker has been battled-tested and is already powering multiple high-volume AWS services including AWS Lambda and AWS Fargate. Low Overhead – Firecracker consumes about 5 MiB of memory per microVM. You can run thousands of secure VMs with widely varying vCPU and memory configurations on the same instance. Open Source – Firecracker is an active open source project. We are already ready to review and accept pull requests and look forward to collaborating with contributors from all over the world. Amazon looks at Firecracker as the first step of many towards a more sustainable and productive microservices architecture. Going forward, look for the company to innovate on this idea to make... --- ### The Benefits of Backing Up Your Data to the Cloud - Published: 2019-01-28 - Modified: 2024-09-04 - URL: https://petri.com/the-benefits-of-backing-up-your-data-to-the-cloud/ - Categories: Backup & Storage, Cloud Computing, Hybrid Cloud - Tags: Backup, Cloud, cloud computing, Disaster Recovery, hybrid cloud - Article Type: Overview We all have heard about backing up our data to the cloud, but outlining all the benefits shows the true reason you should consider this approach. Backuping up data is the foundation of all Disaster Recovery (DR) plans. Backups can be both a crucial tool for restoring failed systems and corrupted data and it can also serve as an archival point for your systems. In the past, most businesses performed a disk backup and then took that back up to tape which was then rotated offsite for DR protection. However, with the global explosion of data, many businesses are turning to the cloud for more economical ways to keep pace with the ever-growing amount of data they need to backup and archive. In addition to costs, the cloud has opened up other benefits for backup as well. Let’s take a closer look at some of the main benefits of moving to cloud backups. Takes Advantage of Existing Infrastructure One of the first advantages of cloud backup is that you don’t have to purchase any new infrastructure or supplies in order to use it. You simply need an Internet connection and a subscription with a cloud provider who will store your backups. There’s no need for more servers, disks or tapes. Your backups will be stored in the in the cloud and you can restore them to either your on-premise servers or to other cloud-based servers. Reduce Storage Costs With today’s rapidly growing data volumes storage costs have become an important issue. Data volumes are growing very rapidly which means storage requirements for your backups will grow at the same rate. Using the cloud as a backup... --- ### Windows Server 2019 GA Arrives on Azure > Microsoft has finally made Windows Server 2019 (WS2019) generally available for IaaS virtual machines on their public cloud, Microsoft Azure. - Published: 2019-01-28 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2019-ga-arrives-on-azure/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, IaaS, virtual machines, Windows Server 2019, WS2019 - Article Type: News Microsoft has finally made Windows Server 2019 (WS2019) generally available for IaaS virtual machines on their public cloud, Microsoft Azure. Microsoft has finally made Windows Server 2019 (WS2019) generally available for IaaS virtual machines on their public cloud, Microsoft Azure. Wasn’t It GA Already? Windows Server 2019 has had a bit of a confusing release. The original general availability (GA) release was on October 2nd of last year. On October 6th, Microsoft stopped distribution of the new server OS because it suffered from the same issues as Windows 10 (they share a “core”) – it’s bad to have users lose data but it’s pretty horrific to have the same experience on a server! Distribution restarted on November 13th so all was well with the world ... right? This release of Windows Server was different. Microsoft skipped the release-to-manufacturing (RTM) phase of distribution. Instead, Microsoft shared the finished bits with everyone, including hardware manufacturers, virtualization makers, and cloud vendors, at the same time as customers. This means that few vendors were ready within the first few weeks – in other words, Windows Server 2019 wasn’t supported by your typical hardware or virtualization supplier ... and it wasn’t supported on Microsoft Azure! Up until recently, all you could find on Microsoft Azure was Windows Server 2016 (and older) and a preview release of Windows Server 2019. General Availability on Azure Microsoft announced “Azure Guest OS Family 6” on January 25th – this includes Windows Server 2019. What does that mean? At first, it sounds like Microsoft made Windows Server 2019 available for IaaS virtual machines but if you read the... --- ### All Versions of On-Premises Exchange Server Vulnerable to New Attack > A newly-discovered vulnerability in Exchange potentially allows attackers to gain control over Active Directory. - Published: 2019-01-25 - Modified: 2024-09-04 - URL: https://petri.com/exchange-server-vulnerable-new-attack/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Server - Tags: Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019, Security, Vulnerability - Article Type: News A newly-discovered vulnerability in Exchange potentially allows attackers to gain control over Active Directory. Since Exchange 2000, Exchange has been a highly-privileged server that's tightly connected to Active Directory. Add in some NTLM weakness, Exchange Web Services push notifications, and everything comes together for the bad guys. Exploiting Active Directory Dutch security researcher Dirk-Jan Mollema caused a stir when he reported an Exchange Server vulnerability that exploits the privileges Exchange has over Active Directory. The fact that Exchange can write into and change Active Directory permissions is not new as the situation has existed since Exchange 2000 adopted Active Directory in 1999. What is new is the combination of the server’s access to Active Directory, NTLM authentication, and a weakness within the push subscription model used by Exchange Web Services. Essentially, the weakness allowed an attacker to impersonate another user and grant themselves elevated privileges. Once the attacker has privileges over Active Directory, they can impersonate any account known to the directory. No Comment from Microsoft (yet) The issue was reported on earlier today by the Register. Although Microsoft spokespeople are unwilling to comment in detail, the issue is recognized by the Microsoft Security Response Center (MSRC), who say that no workarounds are available for the vulnerability. Some workarounds are suggested in the original post, but I would be slow to make any changes before hearing from Microsoft. The problem exists on all current on-premises versions of Exchange. Exchange Online is unaffected, but only because an attacker would have to penetrate the many layers of security wrapped around Exchange servers running in Office 365 datacenters. Background communications reveal that the Exchange product group is actively working on a resolution “as quickly as possible. ” While it’s impossible to say when a fix will be... --- ### Paul Thurrott's Short Takes: January 25 - Published: 2019-01-25 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-25/ - Categories: Amazon Web Services, Cloud Computing, G Suite, Hardware, Microsoft 365, Microsoft Azure, Mobile - Tags: News - Article Type: Overview Because I live for the controversy, this edition of Short Takes looks at Microsoft’s hypocritical attack on fake news, the irony of Microsoft employees stuck in “Reply All” hell, Microsoft’s big year in education, and much, much more. Because I live for the controversy, this edition of Short Takes looks at Microsoft’s hypocritical attack on fake news, the irony of Microsoft employees stuck in “Reply All” hell, Microsoft’s big year in education, and much, much more. Microsoft takes on fake news, then pretends it’s not responsible for doing so Another week, another self-induced Microsoft controversy: The mobile version of Microsoft’s Edge browser picked up fake news detection capabilities that flagged an admittedly terrible UK-based tabloid The Daily Mail as untrustworthy because, among other things, it “generally fails to maintain basic standards of accuracy and accountability. ” Fair enough, it is terrible. But when I pointed out the irony of Microsoft---whose own news apps, sites, and services routinely push fake news, ads masquerading as news, and even malware---punishing another publisher for doing the same, it fought back: I was asked to fix an “inaccuracy” in my story. Which was that I wrote that “Microsoft punished The Daily Mail. ” It wasn’t Microsoft, I was told, it was NewsGuard. I respectfully disagree: It doesn’t matter who makes a specific component in Edge mobile if you ship it in the app bundle that the user gets from Apple’s or Google’s online store. That thing they download is Microsoft Edge, and its maker is Microsoft. And that means that Microsoft is responsible, is, in fact, punishing a publication for making some of the same missteps that it does itself. And no, Microsoft Edge does not flag Microsoft’s news sites and services. Curious... --- ### Auditing Access to Microsoft LAPS Passwords in Active Directory - Published: 2019-01-25 - Modified: 2024-09-04 - URL: https://petri.com/auditing-access-to-laps-passwords-in-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, LAPS Tool, Password Management, Security - Article Type: How To Russell shows you how to audit access to LAPS passwords in Active Directory and how to establish a process for managing access to local administrator passwords. A couple of weeks ago, I wrote on Petri about using Microsoft LAPS (Local Administrator Password Solution) to manage local administrator accounts for remote administration instead of domain accounts. While domain accounts for remote management don’t need to be privileged in the domain, i. e. members of Domain Admins or other privileged AD groups, they could be used to compromise every workstation. If a helpdesk user wants to remotely access a workstation, it is more secure to retrieve a LAPS-managed local administrator account password from Active Directory (AD), limiting damage to the device if the password is compromised. And furthermore, some remote access tools expose credentials. While there are clearly some security benefits to this approach, as I noted in the previous article, there are also drawbacks. One is that it requires more administrative effort for helpdesk staff to retrieve local admin passwords from AD every time they need to log in to a remote system, as opposed to logging in directly with a domain account. Secondly, using an unnamed account to log in means there is no record of who accessed the device with administrative privileges. But as I’ll show you in this article, you can work around these limitations by enabling auditing of access to LAPS passwords in AD and resetting passwords after each use with the PowerShell Set-AdmPwdAuditing and Reset-AdmPwdPassword cmdlets. Before running the commands in this article, make sure that LAPS is set up properly in your domain. Installing LAPS involves several steps, including extending the Active... --- ### Office 365 Outage is Blocking Access to Mailboxes - Published: 2019-01-24 - Modified: 2024-09-04 - URL: https://petri.com/office-365-outage-is-blocking-access-to-mailboxes/ - Categories: Microsoft 365 - Tags: News, Office 365, Outage - Article Type: News There is an active outage impacting customers in Europe from accessing their Office 365 mailboxes. The benefits of the cloud are well documented; you have increased flexibility to expand and contract services, the ability to quickly geo-replicate your data, and you always have the latest version of software available to you. But, when an outage occurs, 'fixing' the problem is beyond your control and you are left twiddling your thumbs. If you are in Europe and you can't access your Exchange Online services, you are not alone. Microsoft is stating that they are investigating an issue that is currently preventing its users from accessing Exchange, primarily that users are unable to access their mailboxes. Microsoft believes that the issue is related to a networking configuration and they are currently looking into the issue. At this time, there is not a known timeline for restoration. While Microsoft has posted on their Twitter account that they are aware of the issue and they have alerted admins in their portals about the impact. Further, if you look at Down Detector, it's quite clear where the issue is impacting users. These types of outages happen on occasion with Microsoft's cloud services. And while this is not a global outage, it is certainly causing quite a few headaches for customers in Europe. --- ### Encrypted Office 365 Content is a Wake-Up Call for ISVs > The signs are that Office 365 will store more encrypted content as time goes by. But ISV products might not be able to process that content. - Published: 2019-01-24 - Modified: 2024-09-04 - URL: https://petri.com/encrypted-office-365-content-wake-up-call-isvs/ - Categories: Microsoft 365, Office - Tags: Azure Information Protection, Exchange Online, ISV, Office 365, Rights management - Article Type: Opinion The signs are that Office 365 will store more encrypted content as time goes by. But ISV products might not be able to process that content because they cannot decrypt it. All of which creates the prospect that you might archive or move data somewhere only to discover later that it is inaccessible. And that's a bad thing. New Challenges for ISVs It’s much easier than ever before for users to encrypt Office 365 content. It is simple to protect email with the Encrypt-Only or Do Not Forward options in OWA and Outlook or by assigning a sensitivity label to SharePoint and OneDrive documents. The net result is that the percentage of encrypted content stored within Office 365 is only going to grow over time. Microsoft's plan to introduce a transport rule to encrypt outbound email containing sensitive data is another example of where the puck is heading. Much of the success of on-premises products like Exchange and SharePoint came from the development of a thriving ecosystem of third-party (ISV) products created to enhance and expand product functionality. As anyone who has visited a major Microsoft-centric technology exhibition recently can testify, those ISVs have transferred their attention to Office 365. The new world of protected content creates new challenges for Office 365 ISVs because encryption has not been much of a factor in the past. I’ve pointed out in a previous article that cloud-based autosignature services can’t process protected email, but the problem is much wider and extends across the entire ISV community. ISV Products for Email and Documents Let’s look at three examples of how encrypted content might pose problems for products that interact with Office 365 data. If you export email from an Exchange Online mailbox to a PST, any protected email copied to the PST is only accessible if the user can authenticate... --- ### Azure Az Module for Windows PowerShell, Core, and Cloud Shell Replaces AzureRM - Published: 2019-01-23 - Modified: 2024-09-04 - URL: https://petri.com/azure-az-module-for-windows-powershell-core-and-cloud-shell-replaces-azurerm/ - Categories: Cloud Computing - Tags: Azure, cloud computing, PowerShell, PowerShell Core, Windows Server - Article Type: News Learn about the new Az PowerShell module for managing and deploying resources in Microsoft Azure. I’ve written quite a bit on using PowerShell to deploy and manage Windows Server virtual machines and other resources in the Azure cloud for Petri. But since those articles were published a lot has changed. Not only do we now have PowerShell Core, but Microsoft will no longer be adding features to Windows PowerShell, although it will still be supported. PowerShell Core is based on the . NET Core Framework, which means it also runs on Linux and MacOS. And if you want to start using PowerShell Core it can run side-by-side with Windows PowerShell on the same device. For more information on PowerShell Core, see PowerShell Core 6. 0 and Why Windows PowerShell Is No Longer Being Developed and 5 Things to Know About PowerShell Core on Windows on Petri. Open Source Az PowerShell Module for Azure The new open source Az module for PowerShell is cross-platform and replaces AzureRM, which Microsoft will continue to support. Az was released December 18th and Microsoft says that it will be updated twice a month, starting in the middle of January. New features for this release include: Az runs on Windows PowerShell 5. 1 and PowerShell Core (cross-platform) Az is always up to date with the latest tooling for Azure services Az ships in Cloud Shell Az shortens and normalizes cmdlet names – all cmdlets use ‘Az’ as their noun prefix Az simplifies and normalizes module names – data plane and management plane cmdlets for each service use the same Az module Az... --- ### Patch Tuesday January 2019 - Published: 2019-01-23 - Modified: 2024-11-19 - URL: https://petri.com/patch-tuesday-january-2019/ - Categories: Security - Tags: Patch Tuesday, Security, Windows 10, Windows 7, Windows Server - Article Type: News The first Patch Tuesday of 2019 sees a critical remote code execution vulnerability fixed in the Windows DHCP client. Windows 10 Three critical remote code execution vulnerabilities are patched this month, the most alarming of which is a memory corruption flaw in the Windows DHCP client. If an attacker sends specially crafted DHCP responses, it is possible to run arbitrary code. This vulnerability has already been patched in Windows 10 version 1809, which is the latest feature update. The other two remote code execution vulnerabilities are when Hyper-V hosts fail to validate input from authenticated users in guest operating systems, allowing attackers to run specially crafted applications in the guest that might cause the Hyper-V host OS to execute arbitrary code. This vulnerability is harder to exploit than the DHCP client issue. None of these vulnerabilities are currently being exploited but as always it is best to patch your systems as soon as possible. There are 24 important patches for Windows 10 version 1803, including 8 elevation of privilege, 5 information disclosure, and 11 remote code execution flaws. There’s one important vulnerability for Internet Explorer 11, a remote code execution vulnerability where the MSHTML engine improperly validates input and it could allow an attacker to run arbitrary code in the context of the current user. A patch for CVE-2018-8653, which was released late last month to plug a zero-day in IE, is also included in January’s Patch Tuesday rollups and it should be applied as soon as possible if you haven’t done it already. Microsoft Edge gets 4 critical remote code execution updates. 3 are memory corruption... --- ### Microsoft Unveils new Pen, Laptops, and Teams Features for Education - Published: 2019-01-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-new-pen-laptops-and-teams-features-for-education/ - Categories: Hardware, Microsoft Teams, Office - Tags: Classroom, education, Microsoft, News, Pen, Surface - Article Type: News Microsoft is announcing a new peripheral for the Surface Go, new laptops aimed at educators, and new features for Teams. This week, the annual Bett conference is taking place in London and Microsoft's Education team is making a number of announcements ranging from new hardware to new Teams features. The Bett conference is the world's largest education-focused technology conference with educators from around the globe attending the event. Microsoft has found itself in a position where they are facing continued pressure from Apple and Google in this space which means that if they aren't pushing forward, they will quickly fall behind. And this year, the company is announcing a new series of Windows 10 devices for education, a new Microsoft Classroom pen, and new features for Teams to help make the role of the educator, easier. When it comes to hardware in schools, it needs to be inexpensive, durable, and simple to operate. This year, Microsoft and several of its OEM partners (Lenovo, Acer, and Dell) are working on new devices that start at $189 and are 2-in-1 class hardware with most of the devices hovering around the $300 price point. Of the new hardware, the 300e by Lenovo has a garage built in for the pen but if you lose the peripheral, the company says you can use a #2 pencil instead. I'll be curious to see how well the display handles jabs from the graphite but if it works like a traditional stylus, this is an excellent feature as it makes it easier to use the hardware when the stylus is inevitably lost. Of all the hardware announced,... --- ### Using Document IDs with SharePoint Online > Most Office 365 users might be unaware of SharePoint's Document ID service, which generates unique document identifiers for documents in a site. - Published: 2019-01-22 - Modified: 2024-09-04 - URL: https://petri.com/using-document-ids-sharepoint-online/ - Categories: Microsoft 365, Office, SharePoint, SharePoint Online - Tags: Document ID, Records management, SharePoint Online - Article Type: How To Most Office 365 users might be unaware of SharePoint's Document ID service, which generates unique document identifiers for documents in a site. That's OK, because records management is not the kind of subject that turns everyone on. But business situations do occur when document IDs might be useful, which is why I went looking at how this SharePoint feature works. Looking For Buried Office 365 Features One of the joys of Office 365 life is finding features buried in an application that you never knew existed. It’s possible that you might never end up using the feature, but there’s a certain deliciousness in discovering something new and probing how it works. Which is what happened when I stumbled across automatic SharePoint document IDs, a way of assigning a system-generated identifier to documents. The document ID service goes back to SharePoint 2010, when Microsoft introduced the feature as part of its expansion of SharePoint’s record management capabilities. I’ve worked with legal and government agencies over the years and understand the deep and abiding love that exists in some quarters for document ids, which they can use as file or case numbers. The thought of referring to a document as PRJ0-1974991961-1874 instead of MyDoc. docx might not appeal to you, but it does make sense when you want to be able to assign a unique identifier to a document in a mass of many hundreds or thousands of similar documents. Enabling Document IDs for a SharePoint site Most SharePoint Online site collections belong to Office 365 Groups or Teams (aka, modern team-enabled sites). I selected a couple of groups to play with document IDs. The directions to enable the Document ID service in Microsoft’s online documentation were incorrect (they might be adjusted now). To enable the Document ID service, a site administrator (group or team owner) or tenant administrator performs the following steps:... --- ### Manage Azure Virtual Machines Using Windows Admin Center - Published: 2019-01-21 - Modified: 2024-09-04 - URL: https://petri.com/manage-azure-virtual-machines-using-windows-admin-center/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Windows Admin Center, Windows Server - Article Type: How To Russell shows you how to manage Azure virtual machines (VMs) using the Windows Admin Center (WAC). Now that Windows Server 2019 is generally available, it seems like a good time to start using Windows Admin Center (WAC) as the default management tool. WAC is a web-based tool for managing local or remote servers via a gateway that uses PowerShell Remoting and Windows Management Instrumentation (WMI) over WinRM. And while Windows Server 2019 still includes Server Manager, Windows Admin Center is where Microsoft is now investing all its efforts. In this article, I’m going to show you how to manage Windows Server 2019 running in an Azure VM. I will use a WAC gateway installed on my Windows 10 PC. This requires the VM you want to manage to have a public IP address and you need to make the necessary management ports available over the Internet. Naturally, this is not the most secure option, but it is a quick way to start managing Windows Server. If your VM doesn’t have a public IP address or you want a more secure way to manage your cloud servers, you’ll need to install a WAC gateway on an Azure VM and/or connect your local network to the Azure VNet using ExpressRoute, Site-to-Site VPN, or Point-to-Site. But that’s beyond the scope of this article. Configure Windows Firewall for Inbound WinRM Let’s start by configuring Windows Firewall to allow an inbound connection for WinRM. Start the Windows Server 2019 Azure VM that you want to manage using the Azure management portal. Log in to the Windows Server 2019 virtual... --- ### Paul Thurrott's Short Takes: January 18 - Published: 2019-01-18 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-18/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because this time it’s personal, this edition of Short Takes looks at Cortana’s slow-motion suicide, Microsoft trying to fix the housing crisis it created, the October update is finally ready in January, the Windows 7 farewell tour, and much, much more. She's dead, Jim. Because this time it’s personal, this edition of Short Takes looks at Cortana’s slow-motion suicide, Microsoft trying to fix the housing crisis it created, the October update is finally ready in January, the Windows 7 farewell tour, and much, much more. She’s dead, Jim Microsoft CEO Satya Nadella finally said the words that the rest of the world has known to be true for at least two years now: The firm will never try to compete with Amazon Alexa and Google Assistant in the ambient computing market and will instead use its back-end technologies to integrate with these far more successful services. “Would it be better off, for example, to make Cortana a valuable skill that someone who is using Alexa can call? Or should we try to compete with Alexa? We, quite frankly, decided that we would do the former,” Mr. Nadella said at a media day in Redmond this week. This defeat follows a similar defeat in mobile, in which a slow-moving Microsoft half-heartedly pretended to compete for a few years before giving up. And it kind of makes you wonder, because their story at that time was that, yes, Microsoft missed the mobile wave so it was pushing to make sure it didn’t miss the next wave. Heads up, Microsoft. This is the next wave. “Microsoft no longer sees Cortana as an Alexa or Google Assistant competitor” No one else does either. Microsoft seeks credit for helping solve... --- ### Use a Local Administrator Account for Remote Administration - Published: 2019-01-18 - Modified: 2024-09-04 - URL: https://petri.com/use-a-local-administrator-account-for-remote-administration/ - Categories: Security - Tags: Active Directory, LAPS Tool, Password Management, Security, Security Baseline Templates, Windows - Article Type: Overview LAPS-managed local administrator accounts can be used for remote administration providing that policy doesn’t block their use. Local administrator accounts are commonly configured with the same password across all devices in corporate environments, making it easy for attackers to own every device if the password is compromised. Microsoft’s security baseline templates block remote use of local accounts because until Local Administrator Password Solution (LAPS) was released in 2015, there was no mechanism for securely managing local administrator accounts. LAPS is a free tool from Microsoft that randomizes local admin passwords every 30 days and stores them securely in Active Directory for each computer account. The risk posed by local administrator accounts can be managed by manually setting a random password on each device and then recording it in a spreadsheet. But that doesn’t address the issue of changing passwords periodically and requires you to make sure the spreadsheet isn’t accessed by malicious or unauthorized users. Microsoft LAPS solves these problems, ensuring that local administrator accounts remain secure and can’t be used by hackers to laterally move around your network. Microsoft’s security baseline templates for Windows and Windows Server are available as part of the Security Compliance Toolkit. Despite the convenience LAPS provides for managing local admin accounts, IT helpdesk staff often use a domain account that is granted administrator rights on each workstation in the domain. While this account doesn’t need to be a privileged domain account, i. e. not a member of Domain Admins or other privileged AD group, the account could still be used to compromise every workstation in the domain. Local Accounts for Remote Administration... --- ### Microsoft Misses Deadline for African Data Centers - Published: 2019-01-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-misses-deadline-for-african-data-centers/ - Categories: Cloud Computing, Microsoft Azure - Tags: Africa, Azure, Microsoft, News - Article Type: News Microsoft has missed a self-imposed deadline to open data centers in Africa but the company is still committed to the location. Back in 2017, Microsoft touted that in the following year, the company would open new data centers in Africa. Specifically, they were going to open data centers in Cape Town and Johannesburg but in 2018, the doors never opened. At the time of the announcement, a lot of noise was made celebrating the expansion as these were the first location for Microsoft on the continent that had not traditionally seen investments in this segment. But, after the dust settled from the announcement, the company has yet to open the locations but they do remain on Microsoft's future locations. Microsoft says that the complexity of building out its first data centers in that region is what caused the delay. A spokesperson for the company stated the following: “We’ve built one of the largest cloud infrastructures in the world and are working towards availability of our new enterprise-grade cloud datacenters in South Africa in 2019. ” A local publication first noted the delay and points out that Huawei beat Microsoft to the punch after it announced data centers following Microsoft and then made them available by the end of 2018. Huawei is also planning more data centers in the region as well. Despite the delay, Microsoft is still committed to the location and should be opening up the regions in South Africa in 2019. This location is still an important part of the company's cloud strategy but missing a publicly stated deadline, while not typical for the company, it has happened before. --- ### Exchange 2010 Nears the End > Exchange 2010 will become unsupported on January 14, 2020. It's time to decide whether to move to Office 365 or Exchange 2016/2019. - Published: 2019-01-17 - Modified: 2024-09-04 - URL: https://petri.com/exchange-2010-nears-end/ - Categories: Exchange 2010, Exchange 2019, Exchange Server, Microsoft 365, Office - Tags: Exchange 2010, Exchange 2019, Exchange Online, Office 365 - Article Type: News Exchange 2010 will become unsupported on January 14, 2020. It's time to decide whether to move to Office 365 or Exchange 2016/2019. Exchange 2010 was a really big and important release in the 23-year history of the product, so it's sad to see it heading to the software scrapyard. All software eventually hits the buffers. On October 8, 2009, Microsoft announced the Release to Manufacturing of build 639. 21 of Exchange, or Exchange 2010. Some 3,750 days later, on 14 January 2020, Exchange 2010 reaches end of support and it’s time for those still running this server to plan their next step. The current version is Exchange 2010 SP3 RU25, released on 8 January 2019. So far, Microsoft has released three service packs and 50 updates (or roll-up updates) for Exchange 2010 in its long and distinguished history. Why say distinguished? Well, it’s because Exchange 2010 shaped what hundreds of millions of people use today in Office 365 and Outlook. com. When Office 365 launched in June 2011, Microsoft’s work to transform their on-premises servers for the cloud was incomplete. But Exchange 2010 included some critical features that continue to be important to Office 365 today. Major Technical Achievements in Exchange 2010 The most obvious technical achievement in Exchange 2010 was the introduction of the Database Availability Group (DAG). Its model of log replication first appeared in Exchange 2007 with the LCR, CCR, and SCR clusters and was extended to deal with 16 member servers in a DAG. Microsoft has improved the DAG over the years (for instance, by removing the need to configure IP addresses and in the introduction of the metacache in Exchange 2019), but what we see running today is very familiar to Exchange 2010 administrators. The ability to activate databases across other servers in the... --- ### Microsoft Teases HoloLens 2 Event for Mobile World Congress - Published: 2019-01-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teases-hololens-2-event-for-mobile-world-congress/ - Categories: Hardware - Tags: HoloLens, Microsoft, News - Article Type: News Microsoft is teasing a Hololens 2 reveal for late next month as corporate executives will be traveling to Barcelona for Mobile World Congress. We knew it was coming this year and it now it's looking official, HoloLens 2 is on the agenda for next month. Specifically, February 24th at 5 PM CET, the company will host a press event in Barcelona at Mobile World Congress. While the company does not explicitly say that that this is a HoloLens 2 event, Satya Nadella and Alex Kipman will both be at the event. In addition, Julia White will be there; when Microsoft's brings executives to a keynote, it's because the company has a major announcement planned. As for what we can expect? The project is code-named Sydney and will use a Qualcomm 850 chip, have a slightly wider field of view, better battery life and will feature a new generation of its Holographic Processing Unit or HPU. Of course, the company isn't talking availability but I have previously heard that it should arrive in late Q2 of 2019, but that timeline could slip. Microsoft has been working on its second generation Hololens for several years. The company initially scrapped what would have been V2 after competitors failed to launch products following the initial release of HoloLens. The company has made inroads into selling these devices into the corporate channel, which includes NASA, and is looking to build upon this momentum. The big challenge will be pricing. The company currently sells the HoloLens hardware for several thousands of dollars but if they hope to reach a broader audience, they will need to significantly lower the price... --- ### Azure VM Image Builder Makes Customization of ISO and Marketplace Images Easier - Published: 2019-01-16 - Modified: 2024-09-04 - URL: https://petri.com/azure-vm-image-builder-makes-customization-of-iso-and-marketplace-images-easier/ - Categories: Cloud Computing - Tags: Azure, Azure VM Image Builder, cloud computing, Configuration Management, linux, Orchestration, Packer, Puppet - Article Type: Overview Azure VM Image Builder is a new tool for Microsoft’s cloud that lets you provision ISO or Azure Marketplace images with your own customizations, like security settings or installed software. Azure VM Image Builder is a new tool for Microsoft’s cloud that lets you provision ISO or Azure Marketplace images with your own customizations, like security settings or installed software. Again, I’m talking Linux in today’s Ask the Admin. Not because I’ve moved over to the dark side but because Microsoft says Azure VM Image Builder will be made available for Windows Server at some point in the future, so it’s interesting to talk about it today. And let’s face it, Linux is everywhere and in many cases it is the best choice. Until now, if you wanted to customize an image deployed to a virtual machine in the Azure cloud, you’d have to perform some post processing to make any changes. As I’ve showed you on Petri before, there are several ways of doing that, including Azure Automation DSC and Azure infrastructure-as-a-service JSON templates, or plain old PowerShell after the fact. None of these solutions are ideal however. Either because they are Windows-centric or don’t integrate properly into an image building pipeline. Azure Resource Manager (ARM) JSON templates come somewhere close, but it’s unique to Azure and is far from a simple exercise. For more information on Azure Automation DSC, see Introduction to Azure Automation Desired State Configuration and Getting Started with Azure Automation Desired State Configuration on the Petri IT Knowledgebase. And here is the first part of my series on deploying Active Directory with Certificate Services in Azure using infrastructure-as-code. Azure VM Image Builder Private... --- ### Microsoft Hopes 2019 is the Year of the Modern Desktop - Published: 2019-01-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hopes-2019-is-the-year-of-the-modern-desktop/ - Categories: Microsoft 365 - Tags: Microsoft 365 - Article Type: Opinion With the demise of Windows 7 coming in about a year, Microsoft is hoping to push customers on legacy platforms to Microsoft 365. In about a year, Windows 7 will reach its end of life and unless you are willing to open up the checkbook, you need to start planning to migrate. Along with Windows 7, Office 2010 will reach its end of life in the same year which means organizations that are running both platforms, a significant migration needs to occur in 2019. While we don't know how many organizations are running Office 2010, we can ballpark the number of users running Windows 7 at around 400 million. Microsoft has said that more than half of commercial active devices are already on Windows 10 but stated another way, there are still likely hundreds of millions of devices that need to move to Windows 10; many of which are still running in corporate environments. For 2019, expect to see Microsoft make a huge push towards the 'modern' desktop'. The primary reason for this is that the company sees a huge opportunity with customers who are upgrading to Windows 10 from Windows 7. While most large companies are likely utilizing Software Assurance (or similar) meaning, they are already paying annually for Windows, moving from 7 to 10, doesn't move the revenue needle much for Microsoft. But, if Microsoft can get these customers to move to Microsoft 365, this is a sales-win for Redmond. And the pitch is quite easy here too. If you are running Windows 7 and Office 2010, you need to migrate from these legacy platforms to something new. And... --- ### Conditional Access Blocks Downloads of Office 365 Attachments and Documents > Azure Conditional Access policies are pretty powerful, especially when applications accommodate their controls. OWA and SharePoint Online now do for Office 365 - Published: 2019-01-15 - Modified: 2024-11-19 - URL: https://petri.com/conditional-access-blocks-office-365-downloads/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Azure Active Directory, Azure Active Directory Conditional Access, conditional access, Exchange Online, owa, SharePoint Online - Article Type: How To Azure Conditional Access policies are pretty powerful, especially when applications accommodate their controls. OWA and SharePoint Online can co-operate with conditional access policies to block the ability of Office 365 users to download email attachments and documents. Although not a perfect solution, it's a good start. Office 365 and Conditional Access The blog entitled “Read-Only and Attachment Download Restrictions in Exchange Online” by MVP Brian Reid prompted me to think about Azure Active Directory conditional access policies. These policies have been around for a while. For instance, in April 2017, I reviewed how to use conditional access to enforce MFA when users opened documents protected by Azure Information Protection. But it does take time for any technology to find its way into all aspects of a large suite like Office 365. To change behavior at an application level, conditional access policies depend on an interaction between application settings and policy settings. In short, Azure Active Directory watches inbound sign-ins and notes if a user is subject to control. This information is passed to applications, which impose the restriction. Recent changes improve the interaction between the base Office 365 workloads and conditional access policies. Briefly, you can configure OWA and SharePoint Online (including OneDrive for Business) to stop users downloading attachments (OWA) or items in document libraries (SharePoint and OneDrive. I followed the steps laid out in Brian’s post to create a conditional access policy. To make things easier to manage, I created a new security group with the intention that the members of this group would be subject to the new policy. Updating Exchange OWA uses OWA mailbox policies to control settings. Every Office 365 has a default OWA mailbox policy and you could update it with a new value for the ConditionalAccessPolicy setting, which is... --- ### How To Configure Delivery Optimization in Windows 10 - Published: 2019-01-14 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-delivery-optimization-in-windows-10/ - Categories: Windows 10 - Tags: Delivery Optimization, Windows 10, Windows Update - Article Type: How To Here's how the Windows Update Delivery Optimization feature works in Windows 10 and show you how to configure it using Group Policy. Windows Update for Business (WUfB) was introduced in Windows 10 as part of Microsoft’s model for delivering Windows as a service. WUfB is Microsoft’s preferred update mechanism in Windows 10 and it allows organizations to control how quality and feature updates are applied to devices. It uses a peer-to-peer technology to distribute updates called Delivery Optimization and it is a configurable feature in Windows 10. The primary benefit for organizations using WUfB is that Delivery Optimization removes the need to deploy a local update server and it lets devices pull updates from local and Internet peers while optimizing bandwidth usage. For more information on WUfB, see Understanding Windows Update for Business and Configure Windows Update for Business using Group Policy on Petri. Windows Server Update Services and Delivery Optimization Delivery Optimization is also used by Windows Update clients that are configured to use Windows Server Update Services (WSUS). For a device to be a Delivery Optimization peer, it must have at least 4GB RAM and 32GB of free disk space. When the Windows Update (WU) client is invoked, it first checks in with the local WSUS server to find out what updates are needed. The client then communicates with the Delivery Optimization service on the Internet to build a list of peers that have the necessary content. If there are peers available, then the client will try to pull the content. Any content that isn’t available is pulled from WSUS instead. Configuring Delivery Optimization Delivery Optimization is enabled... --- ### With One Year Left of Windows 7 Support, Microsoft Hopes Hundreds of Millions will Migrate to Windows 10 - Published: 2019-01-14 - Modified: 2024-09-04 - URL: https://petri.com/with-one-year-left-of-windows-7-support-microsoft-hopes-hundreds-of-millions-will-migrate-to-windows-10/ - Categories: Windows 7, Windows Client OS - Tags: Microsoft, Support, Windows 7 - Article Type: News Windows 7 will reach end of life in 52 weeks, but with more than 400 million customers still running Windows 7, Microsoft has a big challenge in front of it. Windows 7, what many regard as Microsoft's best operating system, will reach its end of life support in one year. If you are one of the hundreds of millions of users who are holding out and haven't upgraded to Windows 10, this will be the year you need to consider making the migration. Microsoft launched Windows 7 in July of 2009 and it was widely loved by consumers upon release. For those who were following the development of the OS closely, there were calls for the company to release it early as the first preview builds were shown to be stable and reliable for most users. That being said, corporate customers didn't instantly upgrade and some took several years to move, only once Windows XP was being phased out. Many keep asking if Microsoft will provide extended support for Windows 7, similar to how the company extended support for XP by several years. Everything that I have heard so far, is that the answer is no. But there are caveats, you can continue to receive updates for the OS after the expiration date of support but you must be an enterprise customer and in most cases, you will be required to pay a significant fee for those updates. Microsoft has previously stated that for customers who are in the process of migrating to Windows 10 from 7 after the support window expires, they may provide those customers with free updates too, for qualifying scenarios. The challenge for Microsoft... --- ### Microsoft's Build Conference to take place May 7-9, in Seattle - Published: 2019-01-12 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-build-conference-to-take-place-may-7-9-in-seattle/ - Categories: Main - Tags: BUILD, Microsoft, News - Article Type: News Microsoft is planning to host its Build conference in Seattle, May 7-9th. Each year, Microsoft hosts its premier developer conference in the spring, typically in San Francisco or Seattle, and 2019 appears to be no different. The company is planning the event for early May and like last year, it will be located near the company's corporate offices. While the company has not formally announced the dates for the event, thanks to the terms and conditions for a hackathon the company is hosting, the details have been spilled. According to the rules posting here, the first place prize for the contest includes "a free pass to Microsoft Build on May 7-9, 2019 in Seattle, WA". This shouldn't be a huge surprise to anyone who has been attending these events for the past couple of years as they are typically held around the same time. And considering Microsoft typically secures venues for three years at a time, this will be the third year in a row that the event is being held in Seattle. As for what the company will talk about at the event? It's a still bit too far out to fully know but I expect to hear about Windows Lite and if we are lucky, possibly the next generation Hololens as well. And of course, there will be lots of talk about Azure, IoT, and the company's graph too. --- ### Paul Thurrott's Short Takes: January 11 - Published: 2019-01-11 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-11/ - Categories: Cloud Computing, Hardware, Mobile, Security - Tags: News - Article Type: Overview This smart toilet is the perfect metaphor for CES. Because CES is a pointless disaster, this edition of Short Takes looks at Microsoft’s brief view from the top, when a partnership is not a partnership, Bing and illegal content, Cortana’s ongoing problems, and much more. All goods things must end Microsoft’s months-long run as the world’s most successful company---as measured by market capitalization---has come to an end. No, Apple didn’t suddenly have an unexpected resurgence; in fact, it just cut iPhone product again. Instead, e-retailing giant Amazon has surged to surpass Microsoft as the most valuable. As of this writing, Amazon’s market cap is $809 billion, compared to a paltry $788 billion for Microsoft. The good news? Amazon CEO Jeff Bezos just announced that he’s divorcing his wife---who, like Bill Gates’ wife, was a former employee---and that should put a dent in Amazon’s stock price. Especially after she walks away with half his fortune. “Cramer picks his favorites in the race back to a $1 trillion market cap” It’s a tight race between AOL and Yahoo. Microsoft’s partnership is not a partnership Mary Jo Foley’s take on this past week’s news that Microsoft is “partnering” with the supermarket chain Kroger to build a suite of retail-as-a-service products on top of Azure is an interesting one: It’s not a partnership. As she discussed on this week’s episode of Windows Weekly, Microsoft is pulling its own version of “what does ‘is’ mean” by redefining the term... --- ### Static Website Hosting on an Azure Storage Account > In this post, I will show you how to host a static website on an Azure storage account – a great way to host websites with a small budget. - Published: 2019-01-11 - Modified: 2024-09-04 - URL: https://petri.com/static-website-hosting-on-an-azure-storage-account/ - Categories: Microsoft Azure - Tags: Azure, DNS, General Purpose v2, GPv2, Static Website, Storage Account - Article Type: How To Aidan shows you how to host a static website on an Azure storage account – a great way to host websites with a small budget. Overview There are many ways to host websites in Azure. The newest of these is to store static website code in a special container in a General Purpose v2 (GPv2) storage account. The benefit of this is that you get an ultra-simple configuration and an ultra-low cost. The website code must be static, but backend process execution can be done with Azure platform features such as Functions. If you need dynamic content, then Microsoft recommends you stick with Azure App Services or, if you really need to, virtual machines. At the most basic level, the cost of hosting will be: Hot blob storage (GB per month) in a GPv2 storage account. Outbound data transfer Additional costs might be accrued if you add extra features such as Content Delivery Network (CDN), Functions, and so on. The Storage Account The infrastructure you require for this hosting is a GPv2 storage account – GPv1 is not supported. Creating an Azure GPv2 storage account Wait for the storage account to be created. Once it is, open the storage account and browse to Static Website under settings. Here you should: Set Static Website to enabled. Add the filename for Index Document Name, the default website document. Optionally add the Error Document Path, the default error page to load. Click Save. After the save commits, the URL of the website will appear – document this. Enabling static website hosting in an Azure storage... --- ### What Is the Difference Between WMI and CIM? - Published: 2019-01-10 - Modified: 2024-09-04 - URL: https://petri.com/what-is-the-difference-between-wmi-and-cim/ - Categories: Windows Server - Tags: CIM, OMI, PowerShell, Windows Management Instrumentation, Windows Server - Article Type: Overview Russell explains whether there is a difference between WMI and CIM. Most Windows administrators are familiar with Windows Management Instrumentation (WMI), which is Microsoft’s implementation of the Common Information Model (CIM). CIM is a standard from DMTF. org (Distributed Management Task Force) that provides a common definition of management information for systems, networks, applications, and services. Without going into too much detail, the standard includes a Specification, Schema, and Metamodel that allow vendors to provide a standard way to manage their products. CIM includes some standard classes that represent information like computer hardware and software. CIM classes can be extended so that vendors may add properties relevant to their products. WMI History WMI is Microsoft’s implementation of CIM and it first appeared in Windows NT 4. 0. Because Microsoft was an early adopter, DCOM was used for remote management because there was no other defined standard at the time. DCOM stands for Distributed COM and it uses Remote Procedure Calls (RPCs) to make remote connections, which is fine if all devices are on the same network but once they are separated by NAT routers and firewalls, remote connectivity becomes a challenge. Windows Server 2012 and Windows 8 saw Microsoft make some changes to WMI by aligning it with CIMv2 and moving to WS-MAN for remote connections. Because WS-MAN is a HTTP-based protocol, it is more firewall friendly than DCOM. Although it’s worth noting that the updated WMI stack can be accessed using DCOM for backwards compatibility. Microsoft Deprecates WMI Commands Microsoft has since deprecated the WMI commands in Windows in favor... --- ### New OWA Makes Categories into Favorites > Microsoft is still building out the new OWA (for Exchange Online) interface. One new feature is the ability to make categories into Outlook favorites. - Published: 2019-01-10 - Modified: 2024-09-04 - URL: https://petri.com/new-owa-makes-categories-favorites/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Categories, Exchange Online, Outlook, owa - Article Type: How To Microsoft is still building out the new OWA (for Exchange Online) interface. One new feature is the ability to make categories into Outlook favorites. This seems like a small thing, but it's really quite useful if you make an effort to use categories. Some people will love it. Some will say "blah." Categories and Outlook The ability to categorize Outlook items has been available since Outlook 2003, yet few probably know or use the feature. How-to recipes for successful use of categories exist on the internet (here is an example and here’s another), but my guess is that the biggest use of categories is to add color to calendar items (each category has a color). Certainly, that’s how I have used categories over the years. Another common use case is where people processing email in a shared mailbox assign categories to mark items in different ways. For example, if the mailbox handled customer complaints, the categories might include “Urgent Customer Issue” or “Awaiting Further Information. ” A shared mailbox has its own set of categories that are not dependent on the categories defined in the personal mailboxes of those who process items in the shared mailbox. Client Support Outlook and OWA support categories, but the Outlook for iOS and Android clients do not. And other clients connected to Exchange via protocols like ActiveSync don’t either. In any case, a small but interesting change in the new OWA interface might make you reconsider how to use categories. The change is that categories can now be added to the set of Outlook favorites. That doesn’t sound earthshattering by itself, but it’s very useful in practice. The new OWA interface is available to Exchange Online users but not to Exchange on-premises. Category Basics To go back to basics for a moment, a category is... --- ### Getting Started with Windows Server 2019 System Insights - Published: 2019-01-09 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-windows-server-2019-system-insights/ - Categories: Windows Server 2019 - Tags: System Insights, Windows Server 2019 - Article Type: How To Install Windows Server 2019 System Insights using Windows Admin Center. System Insights is a local analytics feature that doesn’t require any connectivity to the cloud. All data is processed and analyzed directly on the local server, bringing predictive capabilities to Windows Server that help system administrators keep everything running smoothly. Although, you can optionally forward events created by System Insights to Azure Monitor and System Center Operations Manager (SCOM), giving you a unified view of your environment. Each predictive capability is designed to warn administrators if there could be a potential problem. Using data collected from performance counters and the Windows Event Log, System Insight’s machine-learning models help reduce the cost of managing Windows Server. System Insights can be managed using PowerShell or the Windows Admin Center (WAC). For more information on working with WAC, see Windows Admin Center - The Future of the Windows Server GUI and Getting Started with the Windows Admin Center on Petri. In this article, I will use WAC to install and work with System Insights. System Insights Capabilities System Insights capabilities are machine learning or statistics models that analyze system data to give administrators greater insight into system health. Windows Server 2019 includes four capabilities out-of-the-box: CPU capacity forecasting Networking capacity forecasting Total storage consumption forecasting Volume consumption forecasting Capabilities are packaged as . dll files and can be developed by Microsoft, third parties, or in house. When capabilities are run (invoked), they provide an output that contains Status and a Status Description. Status can be OK, Warning, or Critical. Status Description provides... --- ### The Hybrid Cloud Trends We Expect to See in 2019 - Published: 2019-01-09 - Modified: 2024-11-19 - URL: https://petri.com/the-hybrid-cloud-trends-we-expect-to-see-in-2019/ - Categories: Cloud Computing, Google Cloud Platform, Hybrid Cloud, Microsoft Azure - Tags: Azure, Backup, Cloud, cloud computing, Disaster Recovery, hybrid cloud, Microsoft, vmware - Article Type: Overview As we head into the new year, here are the hybrid cloud trends that we expect to see in 2019. It won’t surprise anyone to say that cloud usage is going to continue to grow in 2019. A recent Gartner projection estimated that the cloud market will hit $206 billion in 2019 up from $175 billion in 2018 and $145 billion in 2017. Likewise, IDC research shows that almost half of IT spending in 2018 was for the cloud. These estimates include both public cloud and hybrid cloud implementations. However, not all businesses can adopt the public cloud’s one-size-fits-all type of solutions. The hybrid cloud has proven to be an effective intermediate step that enables a business to combine the best of both worlds by leveraging their existing infrastructure investments and technologies and combining them with flexible and expandable cloud resources. Let’s have a look at some of the biggest hybrid cloud trends to expect for 2019. The cloud market will continue to be dominated by Amazon and Microsoft While IBM made some significant hybrid cloud announcements in 2018 with their Red Hat acquisition, there’s no doubt that the cloud will continue to be dominated by Amazon AWS and Microsoft Azure. According to a recent Cloud Security Alliance (CSA) report, Amazon AWS was the leading public cloud infrastructure platform running 41. 5% of application workloads. Azure was in the number two spot with 29. 4%. Google Cloud Platform was a distant third with 3. 0% followed by IBM with 2. 6%. While Azure is growing quickly don’t expect this hierarchy to change much through 2019. Hybrid cloud offerings will continue to grow There’s every... --- ### Microsoft's Bringing New Features to Teams to Assist Firstline Workers - Published: 2019-01-09 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-new-features-to-teams-to-assist-firstline-workers/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Microsoft is bringing new features to Teams that will make it easier for firstline workers to communicate with other employees. Microsoft isn't being shy about the future of Teams, this is the platform for communication going forward for Office 365 customers. This week, the company is announcing a couple of new features for the Teams platform that are targeted at assisting first-line workers. As is often the case in retail or shiftwork environments, work-related communication takes places using insecure platforms. It could be as simple as SMS messages or calling another employee on their smartphone but the reality is that these communications are happening outside the control of IT. While this may not seem like a big deal for some environments, for more sensitive areas, like hospitals or finance related activities, this can be a liability.   To help combat this risk, Microsoft is announcing today a new customizable mobile Teams experience that makes it easier for first-line workers to communicate with other employees. The idea is quite simple, when a new employee is on-boarded, you can set them up with a Firstline worker template that gives them access to other team members, location sharing, and smart camera functionality on their existing mobile device so that they can safely and effectively communicate with other employees. One of the other new features coming to teams is that Shifts is now available to all Teams customers and Graph API for Shifts will be arriving in preview in the first quarter. This new API will make it possible to integrate the Shifts feature in Teams with enterprise scheduling systems. Additionally, there... --- ### Test Microsoft Security Patches Early on the Security Update Validation Program - Published: 2019-01-09 - Modified: 2024-09-04 - URL: https://petri.com/test-microsoft-security-patches-early-on-the-security-update-validation-program/ - Categories: Security - Tags: Patch Tuesday, Security, Security Update Validation Program, System Center Configuration Manager, Windows 10, Windows 7, Windows Server Update Services, Windows Update for Business - Article Type: Overview SUVP provides patches up to three weeks before their official release and encompasses all Microsoft products that are supported for security fixes. It’s not a secret that Microsoft’s attempts at delivering Windows 10 as a service have hardly been a roaring success. This year alone has seen two bungled feature updates, causing lots of pain for early adopters. Both consumers and enterprises are struggling with the cadence of feature updates, not to mention buggy quality updates that come two or three times a month. Enterprises have several options when it comes to testing and distributing updates. For those without a third-party patch management system or centralized control via Windows Server Update Services (WSUS) or System Center Configuration Manager (SCCM), Windows 10 includes Windows Update for Business (WUfB), which can be configured using the Settings app or through Group Policy. WUfB relies on the peer-to-peer technology in Windows 10 to efficiently distribute updates between devices on the local area network, so a local server isn’t required. Although WUfB doesn’t include the reporting facilities provided by WSUS, you can use Windows Analytics update compliance to track your devices. For more information on WUfB and Windows Analytics, see Understanding Windows Update for Business and Use the Update Compliance in Operations Management Suite to Monitor Windows Updates on Petri. Windows Server Update Services and System Center Configuration Manager can both be used like in previous versions of Windows to approve and distribute updates from a local server. But you will fall out of support if you put off feature updates forever. The spring releases are supported for 18 months and fall features updates for... --- ### Microsoft Plans to Launch Automatic Email Encryption for Office 365 Tenants > Microsoft plans to create an automatic policy to encrypt outbound email containing sensitive data for all Office 365 tenants. - Published: 2019-01-08 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-to-launch-automatic-email-encryption-office-365/ - Categories: Exchange Online, Microsoft 365, Office - Tags: encryption, Exchange Online, Office 365, Rights management, Transport rule - Article Type: News Microsoft plans to create an automatic policy to encrypt outbound email containing sensitive data for all Office 365 tenants. It sounds like a good idea until you begin looking at the operational consequences of such an action. For instance, how to insert a new transport rule into a complex set of existing rules. All in all, this is not a good plan. Spoiling the Success of Information Protection I like what Microsoft’s Information Protection team has done recently to make encryption more accessible to Office 365 tenants. Changes to Office 365 Message Encryption, including the introduction of the Encrypt-Only feature supported by Outlook clients, have improved the ability of Office 365 tenants to protect critical information. And then something comes along to upset the apple cart. In this case, according to documentation published on 13 December 2018, it’s Microsoft’s plan to create a transport (mail flow) rule in Office 365 tenants to encrypt outbound messages that hold sensitive data. According to the documentation, Microsoft “will be creating a new automatic policy in Office 365 tenants,” but they don’t say when. Microsoft does say that they will give tenants a 30-day notice via the Office 365 Message Center to prepare for the change and to opt-out if desired. I can’t find any evidence of the intention to introduce a new encryption policy in the Office 365 roadmap. Good in Theory, Horrible in Practice On the surface, this seems like a tremendous idea that demonstrates the value of integration of different components across the Office 365 suite. The transport rule will use the special Encrypt-Only template to encrypt all outbound email with a set of sensitive data types like credit card or password numbers (which might differ based on an organization’s locale). Office 365 tenants can sit back and relax and let Microsoft do the heavy lifting to protect their email traffic... . --- ### What Is WSUS Dual Scan? - Published: 2019-01-08 - Modified: 2024-09-04 - URL: https://petri.com/what-is-wsus-dual-scan/ - Categories: Windows 10 - Tags: Dual Scan, Security, Windows 10, Windows Update, Windows Update for Business, WSUS - Article Type: Overview Dual Scan enabled clients scan WSUS and WU, but only download Windows patches from Microsoft’s update servers (Windows Update). Windows Server Update Services (WSUS) is a Windows Server role that organizations use to manage and centralize distribution of updates. But the added flexibility of WSUS brings a layer of complexity which can sometimes cause problems, especially when combined with Windows Update. Before I talk more about WSUS, it’s worth looking at Windows 10 and Windows Update for Business (WUfB). Microsoft says that WUfB is the future as it doesn’t require administrators to approve every update and relies on peer-to-peer technology to distribute updates between devices on a local area network (LAN). This fits in with Microsoft’s vision for delivering Windows 10 as a service. For more details on WUfB, see Understanding Windows Update for Business and What Has Changed in Windows Update for Business on Petri. But because many organizations also have Win32 in-house or third-party business apps, WUfB as it stands now can’t update that software. To address this issue, Microsoft introduced Dual Scan for the Windows Update (WU) client in Windows 10 version 1607. Dual Scan behavior is enabled automatically if the following Group Policies or Mobile Device Management (MDM) options are set: Specify intranet Microsoft update service location (i. e. WSUS) Either of the policies belonging to Windows Update for Business: Select when Feature Updates are received Select when Quality Updates are received When Dual Scan is enabled, the WU client scans WSUS and WU, but it only downloads Windows patches from Microsoft’s update servers (Windows Update), effectively ignoring updates on WSUS servers in the... --- ### Troubleshoot Windows Update Delivery Optimization - Published: 2019-01-07 - Modified: 2024-09-04 - URL: https://petri.com/troubleshoot-windows-update-delivery-optimization/ - Categories: Windows 10 - Tags: Delivery Optimization, Windows 10, Windows Update - Article Type: How To Russell explains how to troubleshoot problems with the Delivery Optimization service in Windows 10. In Configure Delivery Optimization in Windows 10 on Petri, I explained how Delivery Optimization works and how to configure the ‘Download mode’. Delivery Optimization is enabled by default and can save bandwidth when downloading cumulative quality updates and feature updates. Here’s a quick reminder of how Delivery Optimization works when Windows Update clients are configured to get updates from Windows Server Update Services (WSUS). When the Windows Update (WU) client is invoked, it first checks in with the local WSUS server to find out what updates are needed. The client then communicates with the Delivery Optimization service on the Internet to build a list of peers that have the necessary content. If there are peers available, then the client will try to pull the content. Any content that isn’t available is pulled from WSUS instead. Delivery Optimization also works with Microsoft’s Internet update servers and when Windows Update for Business (WUfB) policy settings are enabled. For more information on WUfB, see Understanding Windows Update for Business and Configure Windows Update for Business using Group Policy on Petri. If Delivery Optimization is not working, there are likely to be three primary reasons. Because Delivery Optimization uses a cloud service, it’s important that devices can reach the service on the Internet. Delivery Optimization builds a list of peers that a device can use to download content but naturally the device must be able to access the peers. And finally, the cloud service must be able to see peers on the... --- ### How to Deploy Traffic Manager for Azure App Services for Disaster Recovery > This post will show you how to deploy and configure Azure Traffic Manager to redirect clients from a production Azure App Services plan to a failover plan. - Published: 2019-01-07 - Modified: 2024-09-04 - URL: https://petri.com/how-to-deploy-traffic-manager-for-azure-app-services-for-disaster-recovery/ - Categories: Microsoft Azure - Tags: App Service Plan, App Services, Azure, Disaster Recovery, DNS, DR, Traffic Manager, Web App, Website - Article Type: How To Aidan explains how to deploy and configure Azure Traffic Manager to redirect clients from a production Azure App Services plan to a failover plan. The Production and DR Deployments Two Azure App Services websites/plans have been deployed: Petriprod: A production app service is hosted on an app service plan in North Europe. Petridr: A disaster recovery or secondary app service is hosted on an app service plan in West Europe The production and disaster recovery Azure App Services deployments It is the responsibility of the dev/operator to duplicate the app service/web app content from app service in North Europe to the app service in West Europe. This could be done via the publishing or DevOps mechanism(s), or via an app service extension. Create Traffic Manager Profile The Traffic Manager Profile is a DNS abstraction mechanism that is hosted globally in Azure. Clients will browse to the DNS name of the profile, via a CNAME alias for their website URL, and the profile will direct them to the production or failover site, depending on the situation. To create a Traffic Manager profile, click Create a Resource in the Azure Portal, search for and select Traffic Manager Profile, and click Create. Enter the following information in the Create Traffic Manager Profile blade: Name: A globally unique name that will form the suffix of a Microsoft-managed . trafficmanager. net domain name. Routing Method: Priority is the method that should be used for failover/disaster recovery. Subscription: Select the subscription that the profile will be created in. Resource Group: Select a resource group to create the profile in. Resource Group Location: The... --- ### Microsoft's Retail Narrative Continues, Partners with Kroger for Retail-as-a-Service - Published: 2019-01-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-retail-narrative-continues-partners-with-kroger-for-retail-as-a-service/ - Categories: Cloud Computing, Microsoft Azure - Tags: Data, Kroger, Microsoft, News - Article Type: News Microsoft and Kroger have teamed up to take on Amazon's expansion into retail with Retail-as-a-Service. Microsoft has found itself in an interesting, yet profitable, position in the cloud wars while competing with Amazon. Even though both companies offer a wide range of cloud solutions, Amazon is limiting its own success. This week, Microsoft and Kroger have announced a new partnership to help advance the retailer's digital transformation. The two companies will use Azure and create a new Retail-as-a-Service (RaaS) offering that will showcase how traditional brick and mortar establishments can digitize their sales workflow. As a pilot for the new partnership, Kroger will build new connected experience stores in Cincinnati and Redmond that will be supported by Azure to showcase the RaaS offering. The first RaaS product offerings – EDGE Shelf, guided shopping, personalized ads, and pick-to-light, are being shown off this week at NRF 2019 in NYC. If this sounds familiar, Amazon is experimenting with checkout-less stores where they use a suite of technologies to know what items you place in your basket and then charge your linked-account, upon exiting the store. The idea that both Amazon and now Kroger are chasing is that the traditional checkout stations are a thing of the past and that the purchase process can be streamlined with new technology. But this also highlights another challenge for Amazon and its AWS platform, large retailers do not like to use their service. Microsoft has locked up Walmart, Gap, and now Kroger as retail partners who find themselves in a tough position. They can choose AWS for their cloud,... --- ### Microsoft To Fix One of the Annoying Aspects of Deploying Windows 10 - Published: 2019-01-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-fix-one-of-the-annoying-aspects-of-deploying-windows-10/ - Categories: Windows 10 - Tags: Microsoft, Windows 10 - Article Type: News Microsoft is removing one of the annoying aspects of installing Windows 10; Cortana screaming at you. Starting with the next major update to Windows 10, the company will be implementing a simple, but notable change, to the deployment process. This spring, Microsoft will be releasing a new iteration of Windows 10 and with it, the company will be muting Cortana during the setup experience. If you have ever been up late, installing Windows 10, there's a good chance you have been spooked by the voice that always seems to be at 100% volume. The idea for the implementation of Cortana was to make it possible to complete the installation process by voice only. And there is justification for this type of feature but the implementation was sub-optimal. Thankfully, with the next update, Cortana will be muted by default but you can turn it back on if you desire. Also in the next update, the company is expanding the use of 'password-less' sign in options. This feature allows you to replace the password with other options. The company explains: If you have a Microsoft account with your phone number, you can use an SMS code to sign in, and set up your account on Windows 10. Once you’ve set up your account, you can use Windows Hello Face, Fingerprint, or a PIN (depending on your device capabilities) to sign in to Windows 10. No password needed anywhere! As a reminder, you will likely want to bypass installing the 19h1 build of Windows 10 in your environment. Microsoft will only support those iterations of Windows 10... --- ### Paul Thurrott's Short Takes: January 4 - Published: 2019-01-04 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-4/ - Categories: Mobile, Windows 10 - Tags: News - Article Type: Overview Because I can already feel the mornings getting lighter, the first 2019 edition of Short Takes looks at Microsoft’s 2018, Microsoft’s 2019, Apple’s comeuppance moment, Spectre and Meltdown, and much more. Technology has never failed me! Said no one ever. Because I can already feel the mornings getting lighter, the first 2019 edition of Short Takes looks at Microsoft’s 2018, Microsoft’s 2019, Apple’s comeuppance moment, Spectre and Meltdown, and much more. Microsoft’s biggest story of 2018 For the all the excitement around cloud computing, privacy, and “ethical AI,” I’m sorry to report that the software giant’s inability to reliably and successfully ship both of Windows 10’s 2018 Feature Updates is indeed my top Microsoft story of 2018. And this is very much ironic, since the Windows team was cast asunder in 2018, with Terry Myerson leaving the company, and Windows development being split between the adults in the Azure group and the kids in the Windows Experiences group. If you had asked me which of these two groups was the less reliable, the choice would have been obvious. And yet all the problems have been with core development and feedback triaging (i. e. the adults) while the Windows Experience guys have actually delivered high-quality fit-and-finish improvements. Yep. Welcome to Bizarro world. And let’s hope this situation is fixed in 2019. “5 Things We Love About Microsoft's Surface Go With LTE” Well, we know it can’t be the performance, the battery life, or the tiny keyboard. Looking ahead to Microsoft in 2019 While I’m not much on predictions---by which I mean I’m not very good at predictions---I do have some advice for Microsoft for 2019: Focus less... --- ### How To Host a DNS Domain in Azure > This post will explain how you can host an external (Internet) DNS domain in Azure using Azure DNS to get better performance, security and manageability. - Published: 2019-01-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-host-a-dns-domain-in-azure/ - Categories: Microsoft Azure - Tags: Azure, Azure DNS, DNS, DNS Zone, Name Servers - Article Type: How To Aidan explains why and how you can host an external (Internet) DNS domain in Azure using Azure DNS. Azure DNS One of the important things you will do with any online service is to configure DNS. You obtain a DNS domain from a registrar and either host the domain with the registrar’s own hosting service or on your own public DNS servers. People often don’t consider the impact of DNS on the performance on their online service. The first thing that a client (or potential customer) will do when browsing your site is to attempt to resolve the name of your service. So, if they browse to petri. com the browser/operating system will attempt to convert that name into an IP address to connect to – the address might be hidden by several layers of abstraction (CNAMEs). How fast that resolution happens impacts the overall performance of the site, and the longer a site takes to load, the less profitable it will be. Many DNS hosting services are located in one or a few data centers in a relatively small area. For example, I might host a DNS name in California. If a customer in the Western US browses the site, the name will resolve quickly and then the site can start to load. But if a customer in India attempts to browse to the site, the name is on the other side of the globe and it will take much longer for the name to resolve and the site to start loading – customer lost! Azure DNS hosts your domain in Azure’s global network of data... --- ### The Easy Ways to Restore Azure VMs From Backup > In this post, I will explain the different ways that you can use Azure Backup to restore an Azure virtual machine. - Published: 2019-01-03 - Modified: 2024-09-04 - URL: https://petri.com/the-easy-ways-to-restore-azure-vms-from-backup/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure Virtual Machines, Backup, Disks, Managed Disks, Restore, storage, virtual machine - Article Type: Overview In this post, Aidan explains the different ways that you can use Azure Backup to restore an Azure virtual machine. Overview Azure Backup can protect a virtual machine via backup – Azure Site Recovery (ASR) provides disaster recovery services. The backup job protects the metadata and disks of the virtual machine to long-term storage. This backup can be used to recover the machine, the disks, and even files from the backup storage. Additionally, a workload-specific extension (SQL Server today) can be installed in the machine to protect SQL Server using its own APIs instead of just a machine-based backup. Each of the ways that you can restore an Azure virtual machine from a backup are generalized into four categories: Workloads: Strictly speaking, this is a workload backup and not a virtual machine backup. The backup of a workload is done independently of virtual machine backups. Create new virtual machine: Either you want to test a backup by restoring to a new machine, or a virtual machine was accidentally deleted, and you need to replace it. Replace existing virtual machine: The virtual machine still exists, but you need to reset it back to the time of a previous backup. File recovery: You want to restore one or some files from the disk(s) of the virtual machine. Workloads When you back up a virtual machine, the metadata and disks are protected. This might offer application consistency for workloads such as SQL Server inside a Windows virtual machine, but it does not offer a backup that leverages the APIs of the workload. For example, backing up a machine with SQL Server doesn’t... --- ### Microsoft Hopes to Up-sell E3 Customers with Two New M365 Tiers - Published: 2019-01-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hopes-to-up-sell-e3-customers-with-two-new-m365-tiers/ - Categories: Microsoft 365 - Tags: Microsoft 365 - Article Type: News Microsoft is adding two new tiers to its Microsoft 365 platform that are designed as up-sells to current E3 customers. If there was one 'trend' that I would predict for 2019, I would expect to see Microsoft add more tiers and services to its Office 365 and Microsoft 365 offerings. It's probably the safest bet you can make, other than new Surface hardware will be released this year, when it comes to Microsoft predictions but kicking off 2019, the company is wasting no time.   This week, the company has announced two new tiers of Microsoft 365 that focus on compliance and security. Listed below, each tier packages together existing products into a new 'suite' of services that are easy to 'bolt-on' to your existing services. Identity & Threat Protection—This new package brings together security value across Office 365, Windows 10, and EMS in a single offering. It includes best of breed for advanced threat protection services including Microsoft Threat Protection (Azure Advanced Threat Protection (ATP), Windows Defender ATP, and Office 365 ATP including Threat Intelligence), as well as Microsoft Cloud App Security and Azure Active Directory. This offer will be available for $12 per user per month. * Information Protection & Compliance—This new package combines Office 365 Advance Compliance and Azure Information Protection. It’s designed to help chief compliance officers perform ongoing risk assessments with a compliance score across Microsoft Cloud services, automatically classify and protect sensitive data, and efficiently respond to regulatory requests leveraging artificial intelligence (AI). This offer will be available for $10 per user per month. * At $10 and $12 per user per month, the... --- ### MyAnalytics – Open to All with Teams and SharePoint Insights Coming > Microsoft announced that the MyAnalytics app is available to any Office 365 user with an Exchange Online license. Also, Teams and SharePoint signals are soon - Published: 2019-01-03 - Modified: 2024-09-04 - URL: https://petri.com/myanalytics-teams-and-sharepoint-insights-coming/ - Categories: Microsoft 365, Office - Tags: Exchange Online, MyAnalytics, OneDrive for Business, SharePoint Online, Skype for Business Online, Teams - Article Type: News Microsoft announced that the MyAnalytics app is available to any Office 365 user with an Exchange Online license. Also, Teams and SharePoint signals are soon to be included in the MyAnalytics analysis and dashboard. Expanding the user base is a good idea, but the really big news is the expansion of MyAnalytics to cover a much wider breadth of Office 365 activity. Microsoft’s January 2 announcement that MyAnalytics is now “available to everyone using Office 365 and Microsoft 365 Enterprise and Business suites that include Exchange Online” is welcome but expected. Launched in early 2016 when it was known as Delve Analytics, the simple fact is that MyAnalytics has failed to capture the imagination of those who really wanted a “fitness tracker for work. ” The announcement means that tenants no longer must buy Office 365 E5 licenses or the MyAnalytics add-on ($4/user/month) to use the app. However, the deployment of MyAnalytics outside the Office 365 E5 base will take some time. When it shows up in a tenant, users can access MyAnalytics through the Delve interface (Figure 1), a legacy of its previous attachment to that app. Figure 1: MyAnalytics app in Delve (image credit: Tony Redmond) Focused on Exchange The biggest reason why is the Exchange-centric nature of MyAnalytics to this point. If your working day is occupied processing email and attending meetings scheduled in your calendar, then MyAnalytics does a splendid job of interpreting where you spend your time. That model worked for Office 365 in 2015-2016 but changes in the workload balance and usage within Office 365 mean that MyAnalytics became less effective since. Changes in Office 365 since 2016 Two big factors have changed the way people work inside Office 365. First, new applications have come along to seize a slice of Office 365 users’ attention. Teams is a prime example, but Office 365... --- ### How To Convert A Virtual Machine's Disk Tiers - Published: 2019-01-02 - Modified: 2024-09-04 - URL: https://petri.com/how-to-convert-a-virtual-machines-disk-tiers/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, Managed Disk, Premium SSD, Standard HDD, Standard SSD, Tier, virtual hard disk, virtual machines - Article Type: How To Aidan shows you how you can switch a virtual machine’s disks between the different tiers, such as from Standard HDD to Premium SSD, or from Premium SSD to Standard SSD. Note that this post is based on managed disks – anyone using un-managed disks should upgrade to managed disks because un-managed disks are no longer being improved. You can learn more here: Converting Azure VM Disks to Managed Disks Converting Availability Set Virtual Machines to Azure Managed Disks The Process How you will do the conversion will depend on the type of virtual machine that you have and the tier of disk that you want to convert to: Standard HDD: Can be associated with any kind of virtual machine. Standard SSD: Also can be associated with any kind of virtual machine. Premium SSD: Can only be associated with virtual machines with the “S” specialization. For example, if I want to convert a disk of an A_v2-Series virtual machine to Standard SSD then there will be no change required to the virtual machine. However, if I want to change the disk to a Premium SSD, I would have to convert the machine to something like a DS_v3 or FS_v2 virtual machine. So this means there are two possible conversion processes. If your desired disk tier is supported by the virtual machine’s current specification then you will: Shut down the virtual machine Change the series of the virtual machine Change the disk tier Start up the virtual machine If your desired tier is not supported by the machine then you will: Shut down the virtual machine Change the disk tier Start up the virtual machine While the human act of... --- ### Microsoft's Upcoming Webcams are Codenamed Bari - Published: 2019-01-02 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-upcoming-webcams-are-codenamed-bari/ - Categories: Hardware - Tags: Microsoft, Surface, webcam - Article Type: News Microsoft is working on a pair of new webcams and they are currently codenamed, Bari. Ever since the announcement of Windows Hello, many have been waiting for the introduction of a webcam from Microsoft that supported the feature. The company has been including the technology in many of its Surface devices but for those who don't want a new laptop or desktop, they have been forced to look at third-party solutions. As Paul reported a couple weeks ago, there are a couple new cameras in the pipeline that appear to be for a 2019 release but this timeline could slip. These products are currently codenamed Bari but are also sometimes referred to as Aruba camera as well. Aruba, for those not familiar, is the name of the shell used by the Surface Hub 2. And it's not hard to put these two products together; this is the webcam the company has shown off previously when announcing the Surface Hub 2 last year (above image). As for the specs, it looks like they will support depth sensing and Windows Hello functionality. With depth sensing, this should make it possible to remove (or blur) the background from behind the user and we have seen Microsoft implement this type of feature on the software side with Teams. I wouldn't be surprised to see them push the limits with a 4k sensor too. Paul is hearing that it may work with the Xbox One; possibly as a way to login or what may be more enticing, making it easier to stream to the company's Mixer service. It has... --- ### How to Enable Windows Sandbox - Published: 2019-01-02 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-windows-sandbox/ - Categories: Windows 10 - Tags: Virtualization, Windows 10, Windows Insider, Windows Sandbox - Article Type: How To Learn how to enable Windows Sandbox in Windows 10 to help protect against malicious applications. Back in August, I wrote on Petri about a new feature that Microsoft was reportedly introducing in Windows 10 Enterprise called InPrivate Desktop. Exposed during a bug-bash quest in the Feedback Hub, the text of the quest said that InPrivate Desktop would provide admins a way to launch a throwaway sandbox for secure, one-time execution of untrusted software. As Brad reported, this feature is now being officially previewed in the latest Windows Insiders update for Windows 10, build 18305. InPrivate Desktop Renamed Windows Sandbox Windows Sandbox provides an isolated, temporary desktop where users can run software that might make unwanted changes to Windows. Every time Windows Sandbox is started, users are presented with a clean installation of Windows, meaning no files are preserved from the previous session. And unlike Hyper-V virtual machines, you won’t need to download load a Windows image file to work with Windows Sandbox. Enable Windows Sandbox There are a few prerequisites before you can use Windows Sandbox. You must be running Windows 10 (18305 or later) 64-bit Pro or Enterprise SKUs, with at least 4GB of RAM, virtualization capabilities enabled in the BIOS, 1GB of free disk space, and at least 2 CPU cores. Windows Sandbox is a built-in Windows feature which you can enable from the Control Panel. Open the Control Panel. Click Programs. Under Programs and Features, click Turn Windows features on or off. Give consent or provide an administrator password in the UAC prompt. Enable Windows Sandbox... --- ### Microsoft Fails to Uphold Promise to Pay Developers More for Apps in the Windows Store - Published: 2019-01-01 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-fails-to-uphold-promise-to-pay-developers-more-for-apps-in-the-windows-store/ - Categories: Windows 10, Windows Client OS - Tags: App Store, Microsoft - Article Type: News Microsoft promised developers in 2018 a more generous revenue split for the Microsoft Store but failed to deliver on its promise. Back in the spring of 2018, Microsoft published a blog post saying that the company would soon be more generous with its revenue share in the Microsoft store. At the time, the company said that the Microsoft Store will soon give developers 95% of the revenue earned from some purchases and that this update would arrive in 2018. Seeing as today is the first day of 2019, the new pricing model has yet to be implemented; the company failed to live up to its promise to be more generous with its app store. According to the post, the Microsoft Store Team said they will split revenue 85%/15% for some sales of non-games and up to 95%/5% for deep link sales but as of today, this payment model has not rolled out to developers. The specific payment model language is pasted below: Starting later this year, consumer applications (not including games) sold in Microsoft Store will deliver to developers 95% of the revenue earned from the purchase of your application or any in-app products in your application, when a customer uses a deep link to get to and purchase your application. When Microsoft delivers you a customer through any other method, such as in a collection on Microsoft Store or any other owned Microsoft properties, and purchases your application, you will receive 85% of the revenue earned from the purchase of your application or any in-app products in your application... Later this year (2018). We’ll prompt you to accept... --- ### Petri's Top Posts of 2018 - Published: 2019-01-01 - Modified: 2024-12-03 - URL: https://petri.com/petris-top-posts-of-2018/ - Categories: Main - Tags: Petri - Article Type: Overview With 2019 starting fresh today, it's time to take one last look at 2018 for Petri. During the year we relaunched our forums, converted our database, updated site mechanics, and prepared the site for even bigger things in 2019. With 2019 starting fresh today, it's time to take one last look at 2018 for Petri. During the year we updated our forums, converted our database, updated site mechanics, started a new podcast and prepared the site for even bigger things in 2019. Much of the content we publish on Petri falls into two categories: news, and technical information. This results in two different types of traffic waves, news which draws in readers quickly and technical information which will bring in readers for months and often times, for several years. For the 2018 year, the top posts were a mixture of news and technical with news taking four of the top spots and technical filling out the remaining six. Below you will find the list of our top posts of the year: What is Windows Lite? Solve RDP Error 'CredSSP Encryption Oracle Remediation' Hiding Office 365 Groups Created by Teams from Exchange Clients What Is Windows 10 Fast Startup And How to Disable It Office 365 Makes Message Encryption Even Easier PowerShell Core 6. 0 and Why Windows PowerShell Is No Longer Being Developed Microsoft's Preparing a Free Version of Teams to Take on Slack Microsoft Cuts More From its Payroll, Layoffs Across Several Orgs Blocking Internet Access for Azure VMs Microsoft Outlines Performance Impacts of Meltdown and Spectre Patching For the year ahead, I fully expect Azure and Office 365 to continue to be growth segments for not only Microsoft but for our content as well. In 2018, we pushed deeper... --- ### An Azure Infrastructure Year in Review – 2018 - Published: 2019-01-01 - Modified: 2024-09-04 - URL: https://petri.com/an-azure-infrastructure-year-in-review-2018/ - Categories: Microsoft Azure - Tags: 2018, Application Security Groups, Az, Azure, Azure Blueprints, Azure File Sync, Azure Policy, Backup, Confidential Computing, DC-Series, Disaster Recovery, File Server, firewall, Governance, Hyper-V, Ignite, live migration, machine learning, Management Groups, Meltdown, MFA, Microsoft, Microsoft Ignite, Multi-Factor Authentication, Network Security Groups, open-source, PowerShell, PowerShell Core, Security, Service Endpoints, Service Fabric, Spectre, storage, Storage Account - Article Type: Overview Aidan takes a look back at 2018 and discusses some of the highlights from each month. It is interesting to me how I underrated some announcements which later became significant to Microsoft customers or to me. January - Spectre In early December we received notification from Microsoft to expect full Azure host reboots on January 9th instead of the usual 30-second (approx. ) warm hypervisor reboots (in-place migration). Rumour was a big security fix was being deployed. We returned from the Christmas break to find Google started talking to the world on January 3rd about Spectre & Meltdown, two CPU vulnerabilities, a week ahead of schedule. This forced Azure, and other vendors/clouds, to accelerate their plans and push out updates over the following 48 hours. That night, Azure customers had virtual machines go down for up to 15 minutes, instead of the usually unnoticeable in-place migration. Microsoft’s fix for Spectre was done at the software layer, offering a level of fix that Intel continues to deliver to the firmware of their chipsets. Downtime is always considered bad, but the advantage that every Azure customer had was “instant” mitigation to the vulnerability – something that I bet many hypervisors and hosting customers still don’t have. February – Storage Service Endpoints Service endpoints are a mechanism for virtually connecting platform features of Azure to a virtual network. This simplifies the “routing” of packets from subnets to these services and allows customers to have greater firewall control (network security groups). A service endpoint for storage accounts allowed virtual machines to connect to these storage accounts “over the virtual network”. Firewall support was added to the storage account to control what source IP addresses/ranges could access the storage. You... --- ### Everything You Need to Know About Windows – December 2018 Edition - Published: 2018-12-31 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-windows-december-2018-edition/ - Categories: Windows 10 - Tags: Microsoft 365, Microsoft Edge, OpenSSH, Windows 10, Windows Sandbox, Windows Server 2019 - Article Type: News December is usually a quiet month at Microsoft, but this year there have been several newsworthy events, including Microsoft’s plans to drop the EdgeHTML rendering engine and a new virtualization feature called Windows Sandbox. December is usually a quiet month at Microsoft, but this year there have been several newsworthy events, including Microsoft’s plans to drop the EdgeHTML rendering engine and a new virtualization feature called Windows Sandbox. Edge to Ditch EdgeHTML for Chromium and Add Support for Windows 7, 8, and MacOS Let’s start with what caught many by surprise at the beginning of the month but makes a lot of sense. Microsoft announced that it would replace the EdgeHTML rendering engine in its Edge browser with Chromium, the open source browser on which Google Chrome is based. If you’ve ever used Edge, you’ll know that while in many respects it is a capable browser, there are still sites that don’t render properly or that don’t work at all. Developers test web apps in Chrome, but Edge is not a priority because its market share is so small. That’s a real problem for Microsoft, especially as it tries to push Windows 10 S Mode, which doesn’t allow the installation of third-party browsers. Microsoft says that the changes will be under the hood and that users shouldn’t notice any changes to the browser itself, and that the move to Chromium will bring a more consistent web experience. Users will also be able to install extensions designed for Chrome, although it’s not clear how that will work. But this change will also see Microsoft bring Edge to all supported versions of Windows, and MacOS. Time will tell whether this change helps Edge compete... --- ### Everything you need to know about Office 365 – December 2018 > Microsoft Teams, Power BI, Artificial Intelligence and more Office 365 news and notes you need to know from December 2018 from MVP Shane Young. - Published: 2018-12-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-december-2018/ - Categories: Microsoft 365 - Tags: Microsoft Teams, Office 365, Power BI - Article Type: News As the year comes to an end, here's what Microsoft talked about during the month of December for Office customers. Teams People, Teams. I start this month’s article off with two articles about Microsoft Teams. Why? Because I keep remind you (and me) that Microsoft wants this to be a major part of our Office 365 experience, so we have got to embrace it. It is growing quickly and touches everything that we love. So, quit ignoring it. After that there is talk of Artificial Intelligence, licensing updates, and Power BI getting a better admin experience. Not too heavy on the news this month. If you want heavy go look at the SharePoint stuff. Those guys were busy! Happy New Year. Microsoft talks about rolling out Teams internally In the early days of SharePoint these were some of my favorite posts. Where Microsoft pulled back the curtain and showed you how they ran one of the world’s largest deployments. Well, they have kept that proud tradition alive with a focus on their rollout of Microsoft Teams to 220,000 people and counting. They talk governance mostly here and how they really just built on their governance plan for O365 instead of reinventing the wheel. A good read as you think about how you are going to roll Teams to your company. Teams passes up Slack As they predicted, a survey by Spiceworks shows that Teams passed up Slack for the number of companies using it by the end of 2018. As a self-proclaimed hater of Slack, this makes me very happy. Now as with any of this type of... --- ### Everything you need to know about SharePoint – December 2018 Edition > News on new web parts, dressing SharePoint up to make it prettier, the SharePoint Conference, and Shane's terrible opinions. Enjoy and happy new year. - Published: 2018-12-31 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-december-2018-edition/ - Categories: SharePoint - Tags: SharePoint - Article Type: News Even though the year has come to an end, it was a busy month for SharePoint announcements. You better read this! I know that it is rolling into your inbox right about the time you are thinking about your plans to party like it is 1999 but calm down. There is plenty of time for you to party later do a little lite reading first. Surprisingly there were a lot of really cool things released this month. Guess the people who actually do work in Redmond got that work done while the slackers used up a bunch of holiday time. Anyway. Check out the stuff on updating your site and list looks, the really cool new web parts, and then sign up for the conference to get that expense on this year’s budget. Happy New Year! SharePoint column formatting now with no code No, this isn’t me pitching you PowerApps (note to self what a great idea for a new video) what this is, is Microsoft extending (fixing? ) the column formatting capability they released earlier this year. With the previous release, you could update columns with the help of some guy name JSON. Most of us didn’t know what that meant. Starting to roll out now is the same concept of formatting columns, but for Choice, Date, and Boolean columns there are pre-built templates — no more JSON. This is pretty cool. And in case you are having a tough time with what do they mean by formatting columns just think color coding. Change the column in the view so that based on the color you can... --- ### Everything You Need to Know About Azure Infrastructure – December 2018 Edition - Published: 2018-12-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-december-2018-edition/ - Categories: Microsoft Azure - Article Type: News We’re closing in on the end of 2018, so let’s see what goodies Microsoft is leaving with us in Azure Infrastructure this month. Live Migration in Azure When Microsoft launched Hyper-V on Windows Server 2008, it did not have a Live Migration (vMotion) feature. If a cluster node failed, failover would restart the virtual machine on another host, just like VMware. But we could not proactively move a virtual machine from one host to another. So imagine, after years of engineering made Hyper-V Live Migration best-in-class, Azure “didn’t have Live Migration”. Realistically, there were 3 scenarios when you would want Live Migration to move virtual machines from one host to another with perceivably no downtime: Load balancing: A host is overloaded so you want to move virtual machines from one host to another. Azure doesn’t overload hosts – other than the Bs-Series machines, all machines are given dedicated cores/RAM. Patching: We have had Cluster-Aware Updating since WS2012 to allow us to patch and reboot hosts after an orchestrated drain of virtual machine via Live Migration. Azure offers In-Place Migration, where there is effectively little/no downtime by pausing virtual machines, rebooting the Nano Server-like host without rebooting the hardware, and un-pausing the virtual machines. We don’t notice this downtime, which is awesome. Only once since the feature went live has there been a full reboot of host hardware in Azure (Spectre/Meltdown fixes on Jan 3/4). Hardware Fault: If hardware is faulty, we can live migrate virtual machines to another host. Azure hasn’t had this feature ... or has it? Microsoft finally admitted recently that Live Migration is in Azure for the above... --- ### Patch Tuesday December 2018 - Published: 2018-12-28 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-december-2018/ - Categories: Security - Tags: exchange, Office, Patch Tuesday, Security, Windows 10, Windows Server - Article Type: News In what Microsoft says will be the last cumulative update in 2018 before the holiday season, there are patches for 38 CVEs, including a zero-day. In what Microsoft says will be the last cumulative update in 2018 before the holiday season, there are patches for 38 CVEs, including a zero-day. Windows 10 and Server 2016 This month there are patches for 12 CVEs for Windows 10 and Server 2016, 2 of which are rated critical. CVE-2018-8626 is a DNS server heap overflow vulnerability that could allow an attacker to run arbitrary code in the context of the Local System Account on Windows Servers by sending malicious requests to servers where the DNS service is installed. A remote code execution vulnerability in Microsoft Text-To-Speech could let an attacker take control of affected systems. Users who run with fewer privileges are at less risk. There are three escalation of privilege patches rated important, six information disclosure patches and one denial of service, all rated important. CVE-2018-8611 is a Windows kernel escalation of privilege vulnerability where the kernel fails to properly handle objects in memory, allowing an attacker to run code in kernel mode. This flaw would require an attacker to log in to a system and then run code to exploit the vulnerability. Microsoft says that this flaw is already being exploited. The Microsoft Edge and ChakraCore are patched for 5 critical remote code execution vulnerabilities. All of them could allow an attacker to run arbitrary code in the context of the logged-on user, so users without administrative privileges are at less risk. The . NET Framework also gets a patch for a remote code injection... --- ### The Cloud Predictions for 2019 > This post on IT predictions for 2019 covers Azure, Azure Stack, Microsoft 365, Containers, outages & bugs, and a growing skills shortage in the business. - Published: 2018-12-28 - Modified: 2024-09-04 - URL: https://petri.com/the-cloud-predictions-for-2019/ - Categories: Microsoft Azure - Tags: 2019, Azure, Azure Stack, Containers, Docker, Kubernetes, Microsoft 365, Office 365, SQL Server 2008, SQL Server 2008 R2, training, W2008, W2008 R2, Windows 10, Windows 7, Windows Server 2008, Windows Server 2008 R2 - Article Type: Opinion With 2019 right around the corner, Aidan makes a few predictions about what we will see in the year ahead. You can’t write a blog series without an end-of-year prediction post. I’ve been doing these posts for a few years. My annual posts focused on Hyper-V at first. Last year I switched to Hyper-V & Cloud. This year I will focus entirely on cloud – there simply is not enough in news in the world of on-premises Hyper-V to talk about. Review I like to review how I scored in the previous year – it gives you a basis for judging my 2019 predictions! Last year I started with “PaaS Before IaaS” – I thought that 2018 would be the year that people would start realizing that digital transformation is more than just moving old problems to a new place (migrating existing virtual machines). I was wrong – people are still machine-focused, so I give myself an F on this. My “Containers Are the VDI of 2018” predicted that containers (“Docker”) would be a huge talking point in 2018. Along with IoT and AI, it’s been wall-to-wall containers. Azure Kubernetes Service, Service Fabric v2, and the whole microservices thing ... along with Microsoft repeatedly telling us that Containers are the virtualization of this decade. That was an easy A+. One of the things that has annoyed me and other Microsoft watchers is the mainstream media’s ignorance of how large Microsoft’s cloud adoption has been. It’s been all Google, Amazon, and Facebook, but Microsoft has been the number 1 overall cloud company for quite a while, thanks mainly to... --- ### Azure AD Authentication for Azure Files > In this post, I will clarify what this new permissions feature for Azure Files shares, powered by Azure AD Domain Services supports, and does not support. - Published: 2018-12-28 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-authentication-for-azure-files/ - Categories: Microsoft Azure - Tags: AAD, Azure, Azure AD, Azure AD Domain Services, Azure Files, General Purpose Storage Account, storage, Storage Account - Article Type: Overview Aidan explains what this new permissions feature for Azure Files shares, powered by Azure AD Domain Services, offers, supports, and does not support. In this post, I will clarify what this new permissions feature for Azure Files shares, powered by Azure AD Domain Services, offers, supports, and does not support. Reminder – Azure Files Microsoft added the Azure Files service to general purpose (now GPv1 in addition to GPv2) storage accounts to provide a means for creating SMB shares in the cloud. Normally, when people hear “Azure Files” they imagine end user shares that magically reside in The Cloud without an actual file server; this is partly correct. Azure Files does allow you to create a share from the capacity of a general purpose storage account. However, these shares are not for end users. They are for other systems that would otherwise require a file server or file server cluster to run as more expensive virtual machines. For example, you can replace a file server/share that is used to store configuration data for a legacy line-of-business application that is being migrated to the cloud, or use an Azure Files share as shared SMB 3. 0 storage for a cluster running in Azure virtual machines. Note that a service that uses Azure Files shares and does facilitate end-user access is Azure File Sync. Yes; users are accessing a share in Azure Files, but they do it via their on-premises file server, which is connected to Azure File Sync, and that is connected to the share. Permissions While a service such as Azure File Sync can store permissions in Azure File shares, the shares... --- ### Surface Book 2 - 15in: One Year Later - Published: 2018-12-27 - Modified: 2018-12-27 - URL: https://petri.com/surface-book-2-15in-one-year-later/ - Categories: Hardware - Tags: review, Surface Book 2 - Article Type: Review It has been more than a year with the Surface Book 2 and in that time, I have taken the machine on many road trips and used it as a daily driver; here's how it stood up during the past 365 days. https://youtu. be/ptvJ6k2TMww For more than a year, I have been using Microsoft's largest and most expensive laptop, the Surface Book 2 15in. The device was released last November and with several business trips, personal vacations, and many rides in the back of an airplane with this machine, it's time for the final review of the hardware. If you are looking for a detailed breakdown of the specs and features, check out my initial review of the device, this post is intended to be more of a reflection of the high (and low) points of the hardware during the last year. And while there have been a few low points, overall, I have been quite happy with the device. On the positive side of the coin, the Surface Book 2 is pretty close to a true mobile workstation. With enough grunt from the GPU and CPU, you can accomplish most tasks in a reasonable amount of time. If you have intensive compute tasks, like rendering lengthy 4k videos or large animations in After Effects, on a daily basis, you are likely better off with a dedicated box where you can get more bang for your buck. That being said, I have taken this machine to multiple conferences this year and press events where I would render 15-20 minute 1080P videos in under 15 minutes from the show floors. The ability to do rough edits from the floor and get content published quickly from a laptop makes my job significantly easier... . --- ### Are IT Certifications Worth It? - Published: 2018-12-27 - Modified: 2024-09-04 - URL: https://petri.com/are-it-certifications-worth-it/ - Categories: Career Skills - Tags: certifications, education, Microsoft Certified Professional - Article Type: Opinion Russell Smith looks at whether certifications are worth having and how they can help your IT career. I started my career in IT with no experience but with a passion for learning Windows Server, desktop management, and security. I was self-taught in HTML and Flash, and got a job developing websites for a multimedia company. But my real interest was in systems management and Windows, and I was able to get some hands-on experience with Windows NT Server. Off the back of that, I took a course on Windows Server 2000 that lead to me getting my first Microsoft Certified Professional (MCP) certificate. Soon after, I got a job working for an IT consultancy firm, supporting and managing Windows Server and desktops. During my time there, I became a Microsoft Certified Systems Engineer (MCSE). Even all those years ago, there was a lot of debate around whether IT certifications were worth having. And today the debate continues. It’s hard to say whether my certifications helped me get jobs, but as a completely inexperienced newbie, they gave me confidence that I could do the job and the knowledge I gained proves invaluable even today. While I’ve never specialized in databases, I did become an MCP in Microsoft SQL Server. And the knowledge I gained has come in useful. Like when a developer deleted a table in a production database for which there was no backup. I was able to restore the table by playing back the database logs. It was something that I’d only ever done ‘theoretically’ in a lab environment, but I was the only... --- ### IT Governance with Azure Policy - Published: 2018-12-26 - Modified: 2024-09-04 - URL: https://petri.com/it-governance-with-azure-policy/ - Categories: Cloud Computing - Tags: Azure, Azure Policy, cloud computing, Governance - Article Type: How To Learn how to control the properties users can select when provisioning resources in the Azure cloud. Learn how to control the properties users can select when provisioning resources in the Azure cloud. If you are like me and you regularly deploy servers and other resources in the Azure cloud, you’ll know how quickly things can get out of control if you share a subscription with a team. Azure Policy allows you to create rules that ensure resources conform to standards to remain compliant. Azure Policy is a service that runs hourly and evaluates your resources to make sure they are compliant with your policies. For example, you could create a policy that limits users to creating virtual machines of a certain SKU size, which could help manage costs. Unlike Role-Based Access Control (RBAC), which controls the actions users can undertake in Azure, policies let you determine the properties that users can set when provisioning or updating resources. Microsoft has created some built-in policies to help you get started but you can also create your own. As I outlined above, one of the built-in policies, Allowed Virtual Machine SKUs, lets you determine which VM sizes (SKUs) users can deploy. Another, Allowed Resource Type, lets you set what resource types can be provisioned. For example, you might allow users to deploy virtual machines but not backup vaults. Policies can be assigned to resource groups, management groups, and subscriptions. Create a Policy Assignment Let’s start with the basics and assign one of the built-in policies to an Azure subscription. If you don’t already have an Azure subscription, you can... --- ### Disaster Recovery Features in Windows Server 2019 - Published: 2018-12-26 - Modified: 2024-09-04 - URL: https://petri.com/disaster-recovery-features-in-windows-server-2019/ - Categories: Backup & Storage, Hyper-V, Microsoft Azure, SQL Server, Windows Admin Center, Windows Server 2019 - Tags: Azure, Backup, Disaster Recovery, Hyper-V, PowerShell, Virtualization - Article Type: News Microsoft has released a new version of SharePoint and with it comes a couple new features to help you recover from an outage. Dealing with a disaster is without a doubt the last thing every business wants to do. However, if that time comes you’ll want to be sure that you’re taking advantage of the right technologies to ensure the fastest recovery possible with the least amount of data loss. Windows Server is at the core of most businesses IT infrastructure and this past October 2018 Microsoft came out with the new Windows Server 2019 release that definitely adds to its availability and disaster recovery capabilities. Let’s take a closer look at the different disaster recovery (DR) features that are included in Windows Server 2019. Windows Failover Clustering Windows Failover Clustering (WFC) continues to be Microsoft’s primary high availability and DR technology for Windows Server 2019. WFC provides server-level protection for both planned and unplanned downtime. WFCs can have up to 64 nodes on Windows Server 2012, 2012 R2 and 2016 and they can be used locally for high availability (HA) and geographically stretched clusters can provide DR as well. You install WFC as a Windows Feature using Server Manager or PowerShell. With Windows Server 2019, Microsoft addressed the problem of moving clusters from one domain to another with Cross-Domain cluster migration. In previous versions of WFC moving a WFC to a new domain required that the domain membership of the WFC destroyed and re-created. Windows Server 2019 provides two PowerShell cmdlets, Remove-ClusterNameAccount and New-ClusterNameAccount, which delete the cluster name account from the original Active Directory domain, shut down the cluster and remove... --- ### Edge (Chromium) for the Enterprise - Published: 2018-12-24 - Modified: 2024-09-04 - URL: https://petri.com/edge-chromium-for-the-enterprise/ - Categories: Windows Client OS - Tags: Chromium, Edge, Google Chrome, Microsoft, Windows - Article Type: Overview Russell Smith takes a preliminary look at whether Microsoft’s shift to using Chromium in its Edge browser will affect enterprise adoption. Back in January this year, I wrote a piece for Petri, Google Chrome Versus Microsoft Edge in the Enterprise, and concluded that Google Chrome was the best choice for enterprises that wanted the best site compatibility and fewer complaints from users. With this week’s news that Microsoft is abandoning the EdgeHTML rendering engine in its Edge browser in favor of the open source Chromium project, I felt it was time to revisit that advice and see whether Microsoft’s latest move will change anything for enterprises and their choice of browser. Performance One concern that many are voicing is that when Edge moves to Chromium it will increase resource consumption and in turn have a negative on battery life for users of mobile devices. And while in my experience I’ve found it to be true that Google Chrome drains batteries considerably faster than Edge, I don’t have benchmark tests for how Chromium compares to Chrome. It’s likely that Google’s browser does add a bit of bulk. But even if that’s not the case, Chromium is an open source project and Microsoft is looking to contribute, which means they can influence standards, performance, and features. So, we’ll have to wait and see how Edge (Chromium) performs compared to Edge (EdgeHTML). Features We don’t know yet if Edge (Chromium) will have feature parity with Edge (EdgeHTML), although Microsoft has said that some features ‘might’ be dropped. Microsoft has created a repository on GitHub where it intends to publish documents outlining what... --- ### Choosing an Azure Virtual Machine - December 2018 > This post will explain how to select an Azure virtual machine (VM) series and size from the myriad of B-Series, A-Series, D-Series and more options. - Published: 2018-12-21 - Modified: 2024-09-04 - URL: https://petri.com/choosing-an-azure-virtual-machine-december-2018/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, virtual machines - Article Type: How To Aidan breaks down what you need to know before choosing an Azure virtual machine. This post will explain how to select an Azure virtual machine (VM) series and size, updated to include virtual machine series that were available at this time.  The post will categorize virtual machines based on general roles and series and describe features such as ACUs and the impact of size on elements of performance. Order from the Menu Azure is McDonald’s. It is not a Michelin Star restaurant. You cannot say, “I’d like a machine with 4 cores, 64GB RAM, and a 200GB C: drive. ” That simply is not possible in Azure. Instead, there is a pre-set list of series of machines. Within those series, there are pre-set sizes. Sizing a Virtual Machine There are two things to consider here. The first is common sense – sizing the performance requirements. The machine will need as much RAM, CPU (see the ACU section later in this article), and disk space as your operating system and service(s) will consume. That is no different than how you sized on-premises physical or VMs in the past. You should also consider disk performance (IOPS and MB/second throughput) and network performance. Typically, the more physical cores that power a virtual machine, the more interrupts it can handle, and therefore the more disk/network throughput the machine can handle. The other factor of cloud-scale computing is that you should deploy an army of ants, not a platoon of giants. Big virtual machines are extremely expensive. A more affordable way to scale is to deploy smaller machines. Smaller... --- ### Paul Thurrott's Short Takes: December 21 - Published: 2018-12-21 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-21/ - Categories: Cloud Computing, Hardware, Microsoft 365, Mobile, Virtualization, Windows 10 - Tags: News - Article Type: Overview Because it's not going to be a white Christmas, this edition of Short Takes looks at Windows Sandbox, a Microsoft Edge urban legend, a zero-day flaw in IE, a new Surface market, and much, much more. Greetings from decidely non-snowy Pennsylvania.   Because it's not going to be a white Christmas, this edition of Short Takes looks at Windows Sandbox, a Microsoft Edge urban legend, a zero-day flaw in IE, a new Surface market, and much, much more. Note: I'll be traveling next week and will be taking the week off from Short Takes. See you in 2019! ---Paul Microsoft evolves desktop virtualization with new Sandbox The latest Windows Insider build for the next version of Windows 10 includes a new virtualization feature called Sandbox that uses host PC system components to build more efficient, lightweight, and temporary virtual environments on the fly so that IT staff and users can test potentially dangerous apps safely. But that seems like a rather limited use case for this technology, methinks, and I'm wondering if this isn't Microsoft's first step towards adding container technology to the desktop versions of Windows so that all legacy desktop applications can be run in an isolated, safe fashion going forward. Hey, a boy can dream. "Microsoft Surface Go with LTE Review: The Best Netbook" LOL, wow. A really low bar there. No, Google did not break YouTube to hurt Microsoft Edge A (supposed) Microsoft intern claimed on Reddit recently that Google purposefully broke YouTube when browsed by Microsoft Edge in order to harm the rival web browser. But this claim isn't just ridiculous, it's not true. As another web developer explained, Microsoft Edge is, in fact, broken,... --- ### DR Fail Over of Azure App Services Using Automation > In this post, I will explain how you can implement disaster recovery failover for an application that has been built on Azure’s App Services and Azure SQL. - Published: 2018-12-21 - Modified: 2024-09-04 - URL: https://petri.com/dr-fail-over-of-azure-app-services-using-automation/ - Categories: Microsoft Azure - Tags: App Service, App Service Plan, Automation, Azure, Azure Automation, Azure SQL, Business Continuity, Disaster Recovery, replication, Traffic Manager, Web App - Article Type: How To In this post, I will explain how you can implement disaster recovery failover for an application that has been built on Azure’s App Services and Azure SQL. Business Continuity One of the great things about Azure is how easy it can be to solve some of the old business & technology challenges, especially if you have gone through a digital transformation and moved beyond the limits of virtual machines and infrastructure. Microsoft Azure allows us to deploy in locations around the world, at fairly modest costs, and easily switch users from one deployment to another. The core feature that I stress for people to consider when thinking about installation flexibility and disaster recovery, even outside of Azure, is Traffic Manager. This micro-cost service abstracts DNS records and public IP addresses (together they are referred to as an endpoint by Azure) and enables simple direction, load balancing, geo-redirection, performance enhancement, and prioritization (automating failover) of endpoints. A simple application can be deployed in one region, along with its database. A duplicate can be created in another region, and with a combination of Azure solutions, replication and failover can be implemented. More complex applications can have single databases feeding into a central data warehouse, or maybe even use a geo-resilient database such as Cosmos DB. Simple Scenario In this post, I’m going to stick with a very common and simple scenario. Imagine a deployment that has two load-balanced web servers and a backend machine running SQL Server – that’s not... --- ### Microsoft Will Remove a Significant Windows 10 Enterprise Pain Point in 2019 - Published: 2018-12-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-remove-a-significant-windows-10-enterprise-pain-point-in-2019/ - Categories: Windows 10 - Tags: ARSO, Automatic Restart and Sign On, Windows 10 - Article Type: News With the next major update to Windows 10, the company is going to remove a significant pain point from the process for the end-user. With the release of Windows 10 and Microsoft's mandate that it be updated twice a year, installing major Windows 10 updates is very slowly becoming a routine activity. Even though the company is expanding the life cycle of each fall update, when are required to update your environment, it's about to become slightly less painful. The challenge is that after a Window 10 update is applied, when the user sits down to start working, they are greeted with the update dialog and then have to sit there and wait for Windows 10 to finish installing. With the next major update to Windows 10 that should arrive around the month of March in 2019, it will include Automatic Restart and Sign-On (ARSO) for Enterprises. This new feature will automatically sign-in a user after an update is applied to finish the setup procedure and then re-lock the PC. The end result is that when the user returns to their machine, it will be fully updated. This feature will be enabled on Cloud Domain Joined devices that meet certain security requirements: BitLocker is enabled and is not suspended during the upgrade TPM 2. 0 SecureBoot This feature will need to be explicitly enabled (Settings > Accounts > Sign-in options > Privacy) and as long as your devices meet all the requirements, this should significantly reduce the friction of your next major update. Of course, you won't be able to take advantage of this update until after you update to the next release... --- ### Using PowerShell to Check Group or Team Membership > PowerShell is great at getting lots done for Office 365 administrators. As an example, here are a couple of ways to check group membership. - Published: 2018-12-20 - Modified: 2024-09-04 - URL: https://petri.com/powershell-check-group-team-membership/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, membership, Office 365 Groups, PowerShell, Teams - Article Type: How To PowerShell is great at getting lots done for Office 365 administrators. As an example, here are a couple of ways to check the membership of an Office 365 Group or a Microsoft Team to find out whether a specific user is already present. You might never need to use this tip, but then again, it's always surprising when PowerShell comes to the rescue. Probing Membership for Office 365 Groups, Teams, and Azure AD Groups When I wrote “A Teams PowerShell Primer,” about a year ago, I spent some happy days hacking my way through the Teams PowerShell module, weak and flawed as it is. Although the module has improved since (and is now at 0. 9. 6), some problems still remain. For example, we have the Get-TeamUser and Add-TeamUser cmdlets to report team membership and add a new team member, all of which is nice. What the module does not include is any way to detect whether a user is a member of a group (team). The same challenge exists for the cmdlets available for Office 365 Groups, which are part of the Exchange Online module. Again, we have cmdlets to add someone to a group (Add-UnifiedGroupLinks) and return group membership (Get-UnifiedGroupLinks), but nothing to tell us if an account is already a member. The cmdlets for Teams and Office 365 Groups both work against Azure AD Groups, so it comes as no surprise that the native cmdlets offer no relief either. The question therefore is “given a user account, what’s the best way to check whether the user is a member of a group (or team)? ” The Classic Approach There are many joys to be found in PowerShell. One of these is that many examples and suggestions exist about how to attack problems. If you browse the web, most of the solutions involve iterating down through the group membership to find if... --- ### Microsoft's Releasing a new 'Office' app for Windows 10 - Published: 2018-12-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-releasing-a-new-office-app-for-windows-10/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Office - Article Type: News Microsoft is releasing a new Office app for Windows 10 that is designed to make it easier to switch between apps and dive into previous tasks. In 2017, Microsoft overhauled Office. com with a modern experience that makes it easier to move between applications and to dive back into content that you had been previously working on. The company says that more than 40 percent of Office 365 web users start by visiting Office. com. To help extend that same experience that you can find on the web to the desktop, Microsoft is releasing Office, the app. This new app, which you can see at the top of this post, is available today for those who are running on the Insider Fast ring and will eventually be available to all Office 365 users. The new app isn't going to revolutionize your Office experience in any capacity but may make it a bit easier to move around inside the different products. The idea is to make it faster to switch apps, easier to return to previous tasks, enhance the search experience and organizations will also be able to apply their own branding to the app. If you are already using the My Office app, you will get the new Office experience via automatic updates. The new free app can be used with any Office 365 subscription, the latest perpetual versions of Office, or Office Online. --- ### How To Get NTFS File Permissions Using PowerShell - Published: 2018-12-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-get-ntfs-file-permissions-using-powershell/ - Categories: Windows Server - Tags: file management, PowerShell, Security, Windows Server - Article Type: How To In today’s Ask the Admin, Russell takes a look at using PowerShell to determine the NTFS permissions set on files and folders. iCacls is a built-in command line tool for reporting NTFS access permissions in Windows. And while it is a comprehensive tool with lots of options, PowerShell provides more flexibility on how results are formatted. Like all PowerShell cmdlets, objects generated by Get-Acl can be easily processed by other PowerShell cmdlets, or the output can be formatted so that it can be passed to other applications. In this article, I will look at using Get-Acl with files and folders, but it can also be used with registry keys and other objects. Check out this article on Petri about how to modify access control lists using icacls if you don't want to use PowerShell. Running Get-Acl without any parameters will return the NTFS permissions set on the current working directory. Or you can provide Get-Acl with a path instead. Get-Acl -Path C:temp -Path is a positional parameter, so if it appears in the first position, you can omit -Path. But I will include it in the examples here for completeness. Get-Acl C:temp If the output is truncated, pipe the output to the Format-Table cmdlet as shown below: Get-Acl -Path C:temp | Format-Table -Wrap To get more information, you’ll need to use Format-List instead: Get-Acl -Path C:temp | Format-List You can also return more specific information like this: (Get-Acl -Path C:temp). Access Use PowerShell to get NTFS file permissions (Image Credit: Russell Smith) And again, you can narrow the output down further. Access. IdentityReference shows the users or groups listed... --- ### Windows Sandbox: A New Lightweight Desktop Environment for Running Untrusted Apps - Published: 2018-12-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-sandbox-a-new-lightweight-desktop-environment-for-running-untrusted-apps/ - Categories: Windows 10 - Tags: News, Windows Sandbox - Article Type: News Microsoft has a new sandbox feature for Windows 10 that makes it safer to run untrusted apps without exposing your entire device to the threat. We have all be there before, you download an application you think is safe, but in the back of your mind, you are second-guessing yourself. You run a virus scanner, maybe toss it into a VM, but eventually, you double-click the executable and hope that the application isn't going to crypto-lock all your data. With the next major update to Windows 10, Microsoft will introduce Windows Sandbox, a new feature that will make running these types of application significantly more secure. When you run Windows Sandbox, it creates an isolated, temporary, desktop environment where you can run untrusted software without the fear of lasting impact to your environment. Microsoft made this announcement in the Windows Kernel Internals blog, but considering how significant this feature is, you would think that they would have attempted to make a bit more noise as this security functionality is a perfect carrot to get users to migrate from Windows 7 to 10. As the post notes, Windows Sandbox has the following properties: Part of Windows – everything required for this feature ships with Windows 10 Pro and Enterprise. No need to download a VHD! Pristine – every time Windows Sandbox runs, it’s as clean as a brand-new installation of Windows Disposable – nothing persists on the device; everything is discarded after you close the application Secure – uses hardware-based virtualization for kernel isolation, which relies on Microsoft’s hypervisor to run a separate kernel which isolates Windows Sandbox from the host Efficient – uses... --- ### To Make Office 365 Smarter, Microsoft's Getting More Ambitious with Internal AI Testing - Published: 2018-12-18 - Modified: 2024-09-04 - URL: https://petri.com/to-make-office-365-smarter-microsofts-getting-more-ambitious-with-internal-ai-testing/ - Categories: Microsoft 365, Office - Tags: AI, Data, Microsoft, News, Office 365 - Article Type: News Microsoft will start a mass data collection practice for US employees that the company hopes will help them improve their AI and ML data models. If you work at Microsoft, there is a good chance that you are beta, or more likely, alpha testing new software and services. The company calls this dog-fooding and this week, the company sent out an internal memo about an update to data policies that will have the company going all-in on its own AI and ML bets. Starting in Q1 of 2019, the company will broadly begin using its own business-related data such as email, work documents, messages, video and audio data, to help improve the company's AI. Microsoft will be rolling out this data collection practice internally to all employees in the US next year with a global rollout, depending on local laws and regulations, in the months ahead. There are a bunch of caveats to how this data will be collected such as omitting communications from anyone not on a Microsoft. com domain email address, items marked as personal and confidential will be excluded as well but the goal here is simple, the company needs a lot of sample data to train its algorithms. And this shouldn't be a big surprise. Microsoft wants to improve its AI to make it easier to detect spam, malicious messages, and be more proactive with corporate content to make Office 365 a better tool for productivity. As you would expect, this is a sensitive topic, even for employees at Microsoft. Because all of this data is now being collected, employees are concerned that their conversations may be taken out of... --- ### Multi-User Windows 10 Powers Windows Virtual Desktop - Published: 2018-12-18 - Modified: 2024-09-04 - URL: https://petri.com/multi-user-windows-10-powers-windows-virtual-desktop/ - Categories: Windows 10 - Tags: Azure, cloud computing, Multi-User Windows 10, Office 365, Remote Desktop, Windows 10, Windows Virtual Desktop - Article Type: Overview Russell explains how multi-user Windows 10 enables Microsoft's new Windows Virtual Desktop on Azure. Microsoft announced the availability of Windows Virtual Desktop (WVD), a new service hosted in the Azure cloud, back at its Ignite conference in September. A new multi-user Windows 10 SKU will power the service. In this article, I look at how multi-user Windows 10 enables WVD. If you want to provide users with a full remote desktop experience, the only available option in Azure is RDS on IaaS, which is complex and difficult to manage. And when Microsoft discontinued Azure RemoteApp, customers were left with the option of either deploying a full Remote Desktop Services (RDS) infrastructure in the cloud - RDS or Citrix on IaaS as Microsoft refers to it - or to use Citrix Virtual Apps Essentials, a Platform-as-a-Service (Paas) offering that has similar functionality to Azure RemoteApp. But Microsoft’s new multi-user Windows 10 SKU will allow organizations to deploy Windows 10 VMs that can host up to ten users simultaneously. While Windows Server has had this capability for years, the desktop experience isn’t the same as in Windows 10. For example, there is no support for UWP apps or Edge, and some applications aren’t compatible with RDS or have limited support. One example is Outlook, which has limited support for search in an RDS environment because the local Windows Search service depends on the machine ID and a user might be assigned a different VM each time they log in. OneDrive for Business is only supported when a persistent virtual desktop infrastructure (VDI) is used... . --- ### What Aidan Wants for Azure Christmas 2018 > It’s that time of year when we write a letter to Azure-Claus and ask for the special things that we would like at this festive time of year. Here’s my wish list. - Published: 2018-12-18 - Modified: 2024-09-04 - URL: https://petri.com/what-aidan-wants-for-azure-christmas-2018/ - Categories: Microsoft Azure - Tags: 2018, Azure, Azure Migrate, certifications, Pricing Calculator - Article Type: Opinion It’s that time of year when we write a letter to Azure-Claus and ask for the special things that we would like at this festive time of year. Migration Microsoft is hooked on conversations about SAP deployments on Azure and migrations to Azure. This coming 13 months sees the end of support (and security fixes) for Windows Server 2008/R2 and SQL Server 2008/R2. Customers can get an additional 3 years of security fixes (for free) if they migrate those workloads to Azure. So, we can expect “lift and shift” conversations to pick up the pace. I have two asks in this space. The first is related to the fact that I have given up putting any serious effort into these pre-sales efforts because they just don’t happen – at least they don’t for me. There is plenty of new work being done in Azure, but migrations ... they’re not that common. The cause is that people just don’t understand how the cost of on-premises is more than the sticker on the tin. Quite honestly, the purchase price of the server/storage is just the tip of the iceberg: support contracts, rent, electricity, cooling, operating system, hypervisor, management systems, your time wasted during purchase cycles and driver/firmware maintenance, and so much more. IT rarely concerns themselves with some/many of the bigger additional costs because they come from another budget. And calculating those costs is a nightmare. I’d love if an army of cloud-elves could descend on a computer room or data center and calculate how much it costs to run monthly, including the refresh cycles that occur every 3-5 years. On a related note, those of us working... --- ### OneNote for Windows 10 will Finally Support Custom Tags in 2019 - Published: 2018-12-17 - Modified: 2024-09-04 - URL: https://petri.com/onenote-will-finally-support-custom-tags-in-2019/ - Categories: Microsoft 365 - Article Type: News Microsoft will finally bring custom tags to OneNote in early 2019 which will make it easier to index older content. For those that migrated from Evernote, or nearly any other note taking application, being able to apply custom tags to your content to make it easier to discover was an essential part of the application. Surprisingly, Microsoft's OneNote application does not have this functionality. The good news is that this feature is coming to OneNote for Windows 10 and Mac and you won't have to wait too much longer. Starting in early 2019, the feature will become available to everyone, according to Microsoft. To create a new custom tag once the feature arrives in your app, click the Tags drop-down in the Home tab and select “Create New Tag. ” When the Create a Tag pane opens, name the new tag, select an icon to represent it and click Create to add your new tag to the list of tags. While it took a significant amount of time for this feature to be announced, it's good that it will be here soon. The lack of custom tags, especially for a robust application like OneNote in Windows 10, was always perplexing. For those who use the Windows 10 application heavily, as I do, the lack of tags made searching historical content harder than it should be for a productivity application. While I haven't had a chance to personally test custom tags, as long as they work similarly to how other products operate, this will be a welcomed addition to the app. As for what else the team should add in... --- ### Memory-Based Attacks are on the Rise - Published: 2018-12-17 - Modified: 2024-11-19 - URL: https://petri.com/memory-based-attacks-are-on-the-rise/ - Categories: Security - Tags: Security, Windows 10, Windows 7, Windows Defender ATP - Article Type: How To Microsoft updates Windows Defender ATP to detect and auto remediate memory-based attacks. Microsoft updates Windows Defender ATP to detect and auto remediate memory-based attacks. Hackers are moving beyond delivering files with malicious payloads because traditional AV can block them. Security is a cat-and-mouse game where you need to constantly stay on top of the latest developments to make sure your systems are protected. To help secure its customers, Microsoft is updating Windows more frequently than in the past - although Redmond’s attempts at turning Windows into a service have been a bumpy ride - and updates to Windows Defender ATP provide the latest protections. What is a Memory-Based Attack? While memory-based attacks are not new, WannaCry and Petya both used memory-based techniques, they are on the rise because it’s easier to get past traditional antimalware software. Crypto mining malware is also on the rise. So, you can’t use the excuse that you don’t have anything worth stealing. Even if you think your data and login credentials are worthless, we all have spare compute resources that can be tapped into for somebody else’s gain. Ironically, memory-based attacks, or fileless attacks as they are sometimes known, usually find there way onto a device with the help of a file. For example, via a macro-enabled Word document. But vulnerabilities in Flash Player are also another entry point that attackers can use to send instructions to a user’s device. Once compromised, instructions are sent from a command-and-control (C2) server and run legitimately, avoiding the need to send a file containing a malware payload to... --- ### Microsoft Releases Exchange 2019 Preferred Architecture > Microsoft has publsihed the preferred architecture for Exchange 2019. As you'd expect, the architecture is highly influenced by the cloud. Exchange Online - Published: 2018-12-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-exchange-2019-preferred-architecture/ - Categories: Exchange 2019, Exchange Server - Tags: Exchange 2019, Preferred Architecture - Article Type: News Meeting the commitment given at Ignite 2018, Microsoft has published the preferred architecture for Exchange 2019. As you'd expect, the architecture is highly influenced by the cloud. The fingerprints of Exchange Online are all over the document, but at least it's nice to see some technology (the MetaCache) being transferred from the cloud to on-premises customers. The One True Way Last week, Microsoft released a document describing their preferred architecture for Exchange 2019. A preferred architecture is just that: it describes the way that Microsoft thinks you should deploy their technology based on their experience drawn from customer engagements and Office 365. Customer engagements are the usual source of problems and flaws while Office 365 is where Microsoft can test components at scale. In this case, the MetaCache (SSD acceleration) for the Information Store. Good as it is to have a preferred architecture, it’s still only preferred. You can deploy Exchange 2019 according to your own recipe for success because it’s on-premises and you control how and when software is deployed. Recognizing that customers ultimately control on-premises software, it’s useful to understand how Microsoft builds their preferred architecture. You can then make your mind up to follow the architecture or use your own design. Or as Microsoft says, “not our recommended practice. ” Nothing Surprising If you’ve followed the advice given by Microsoft for Exchange 2013 and Exchange 2016, there’s nothing surprising listed for Exchange 2019. Four basic principles are advanced. Simplify your namespace. Deploy datacenter pairs. Use physical servers with lots of memory and CPU cores. Use DAGs as basic building blocks for resilience. Namespace and Datacenters An uncluttered namespace to make it easy to switch resources and a site resilient datacenter design is what you find in Exchange Online. Think about what happens in the cloud. Users connect to outlook. office. com and behind the... --- ### Modern SharePoint Web Parts - YouTube Web Part - Published: 2018-12-15 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-youtube-web-part/ - Categories: SharePoint Online - Tags: Modern SharePoint, Modern SharePoint Team Site, Modern Web Parts - Article Type: Overview Jasper Oosterveld, Microsoft MVP dives into the latest developments around Modern SharePoint Web Parts. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the YouTube Web Part. To be honest, I didn't really expect this Web Part. We already had an Embed Web Part to display YouTube videos. That said, I always cheer the arrival of Modern SharePoint Web Parts. Let's take a look. The YouTube Web Part has the following options: The options are self explanatory. The last one needs some explanation: "Privacy-enhanced mode: When this option is on, YouTube doesn't store information about visitors unless they play the video. " Source I don't know if this is an issue for companies. Its a bit unclear what information is actually stored by YouTube. The Web Part is displayed as following: I can see the watch later option because I am logged into YouTube. The share option allows me to share the video on other social media. How does the YouTube Web Part compare to the Embed Web Part? Embed has the following options:   Let's set them... --- ### Paul Thurrott's Short Takes: December 14 - Published: 2018-12-14 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-14/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it's beginning to look a lot like year-end retrospectives, this edition of Short Takes looks at a new Windows 10 urban legend, Microsoft 365 for consumers, HoloLens v2, and much more. Because it's beginning to look a lot like year-end retrospectives, this edition of Short Takes looks at a new Windows 10 urban legend, Microsoft 365 for consumers, HoloLens v2, and much more. No, Windows 10 is not sending your activity data to the cloud when you tell it not to You may have seen reports this week that Windows 10 was ignoring users that configure the system to not send activity data to the cloud. It's not true. But you may be amused that the real problem here is a Microsoft classic: Its inability to communicate effectively. "In this case, the same term 'Activity History' is used in both Windows 10 and the Microsoft Privacy Dashboard," a Microsoft statement explains. "Windows 10 Activity History data is only a subset of the data displayed in the Microsoft Privacy Dashboard. We are working to address this naming issue in a future update. " Maybe Microsoft could work to address the whole communication thing too. "How Microsoft Got Its Groove Back, Surpassing Apple and Amazon in Market Cap" Not that Groove. Microsoft is reportedly making a consumer version of Microsoft 365 Microsoft 365 makes tons of sense for businesses of all sizes, as it combines Office 365 with Windows 10 Enterprise and Intune-based management services. But what would a Microsoft 365 for consumers look like? That's not clear, actually, but Microsoft is, in fact, plotting such a thing right now. Ideally, this would simply be... --- ### Microsoft Has Found its New 'Excel' - Published: 2018-12-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-found-its-new-excel/ - Categories: Microsoft 365, Office - Tags: Microsoft, Teams - Article Type: Overview Microsoft is frequently expanding the functionality of Office 365 and with the success of Teams, the company may have found its new Excel. In every accounting shop around the globe, there is likely one universal truth; some part of month-end close is performed in Excel. It may be a small (or large, depending on your operational efficiency) task but there is a consolidation of statements, reconciliations, or other sorts of processes that occur inside of Excel for nearly every company to close their books on a monthly and quarterly basis. It's the fact that Excel is nested deep inside the finance world that has made Office, 'sticky'. Meaning, that no matter how the world changes with apps and updates, the one thing that remains constant for these shops is that Excel is the corner stone to productivity. Everything from custom macros to formulas and the always fun pivot tables do not translate well into other products; Excel is one of the few apps that silicon valley has yet to build a better solution. But for Microsoft, they know that every year, new companies pop up that are trying to do just that, build a better excel. While the barrier to entry is high, it's not insurmountable. It's because of this that we have seen Microsoft throw everything it has at making Office 365 provide a wider array of solutions in hopes to find that new, 'sticky' service. While it may have looked like 'just another chat app', Teams is the new Excel for Microsoft, or so they hope. And candidly, the early indicators are that Teams is the new app to... --- ### Using the Office 365 Audit Log to Track Retention Labels > Office 365 allows users to apply retention labels to SharePoint and OneDrive documents and to Exchange messages. Audit log analysis. - Published: 2018-12-13 - Modified: 2024-09-04 - URL: https://petri.com/analyzing-document-classifications-office-365/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: Azure Information Protection, data governance, Office 365, retention labels, SharePoint Online - Article Type: How To Office 365 allows users to apply retention labels to SharePoint and OneDrive documents and to Exchange messages. But after you've done the work to create a nice set of retention labels as part of your data governance framework, it's good to know that people are using the labels. Here's how to find out. Office 365 Data Governance, Labels, and Protection Office 365 retention labels (previously called classification labels) are part of the Office 365 data governance framework. They are applied by users to mark documents and messages to be kept for a certain retention period, or to simply add a visual clue to a document to show its importance, state of processing, or other status. These labels differ from sensitivity labels, used to indicate the importance of documents and messages and optimally apply protection (encryption) with rights management. Auditing Classification Every time a user assigns, changes, or removes, a retention label to a document, folder, or list item in a SharePoint Online or OneDrive for Business site (Figure 1), an Office 365 audit record captures the event. Figure 1: Applying a label to a SharePoint document (image credit: Tony Redmond) Office 365 also captures audit records when auto-label policies (available in Office 365 E5 and the Advanced Data Governance SKU) scan SharePoint document libraries and classify documents based on keyword queries or sensitive data types. You can review audit records for retention labels through the Audit log search in the Security and Compliance Center. Select “Changed compliance policy label” (Figure 2) as the target event for the search. A record for a classification action includes the site, the document name, the user, and the name of the label applied to the document (the DestinationLabel). If the document was previously classified with another label, that label is captured... --- ### Hybrid Cloud: Microsoft Azure vs Amazon AWS - Published: 2018-12-12 - Modified: 2024-09-04 - URL: https://petri.com/hybrid-cloud-microsoft-azure-vs-amazon-aws/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, Microsoft Azure, Windows Admin Center - Tags: Azure, Azure Active Directory, Cloud, cloud computing, hybrid cloud, vmware - Article Type: Overview A closer look at how Amazon and Microsoft are attacking the hybrid cloud markets with each having a slightly different approach. While there are a number of players in the cloud computing marketplace, it’s perfectly clear that the battle of the titans is between Microsoft Azure and Amazon AWS. Rising from a humble add-on to Amazon’s e-commerce business, Amazon’s AWS has become the undisputed cloud leader in the cloud market. Until recently, Amazon’s primary focus has been on public cloud services and moving workloads from on-premise to the cloud -- not the hybrid cloud. However, recent announcements at re:Invent have shown that they are now taking hybrid cloud solutions much more seriously. Currently, in the number two spot, Microsoft has approached the cloud from a different angle. A longstanding provider of enterprise software solutions, Microsoft entered the cloud market with Azure after Amazon had already developed a substantial lead. However, it didn’t take long for them to realize that it was going to be a long time before businesses moved completely to the cloud so they quickly made the hybrid cloud their primary focus. Driven in a large part by the success of Azure, Microsoft has recently become the world’s most valued company surpassing Apple. Let’s take a closer look at the differences in the hybrid cloud solutions offered by Amazon AWS and Microsoft Azure. On-premise solutions Certainly, a major attribute of the hybrid cloud is its integration with on-premise infrastructure. Here, Microsoft offers a clear hybrid cloud advantage as their roots are in on-premise enterprise software like Windows Server, SQL Server and Exchange. Over the past few years, Microsoft has... --- ### Understanding Kerberos Delegation in Windows Server Active Directory - Published: 2018-12-11 - Modified: 2024-11-19 - URL: https://petri.com/understanding-kerberos-delegation-in-windows-server-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Delegation, kerberos, Security, Windows Server - Article Type: Overview Understanding how Kerberos delegation works in Active Directory is key to keeping your systems secure. Delegation is used when a server or service account needs to impersonate another user. For example, front-end webservers impersonate users when accessing backend databases, providing seamless access to data users are allowed to view or edit. Active Directory (AD) provides delegation for scenarios like this. Unconstrained Delegation is Risky Microsoft added unconstrained delegation to Active Directory in Windows Server 2000. When unconstrained delegation is configured on a server, it can impersonate connecting users because their Ticket-Granting Ticket (TGT) is placed into the service ticket if the Service Principal Name (SPN) is included in the Ticket Granting Server (TGS) request. SPNs define what services can run under a given user or computer account. Attackers can compromise credentials when unconstrained delegation is configured. Imagine a situation where a domain administrator uses an IIS website that has its application pool account set for unconstrained delegation. If Windows Authentication is enabled on the site, it will be able to get a service ticket from a domain controller and authenticate to any service it likes as a domain admin. While that service should probably be a database, if the website or database is compromised, it could easily be a malicious application or even a domain controller instead. Once connected to a domain controller, the KRBTGT account password could be changed or the user could add themselves to the Enterprise Admins group, allowing the malicious actor to own the AD forest. Constrained Delegation Introduced in Windows Server 2003, constrained delegation allows system administrators to... --- ### Outlook Click-to-Run Optimizes AutoDiscover for Office 365 > Microsoft has optimized the Click-to-Run version of Outlook for Office 365. There's nothing startling about that, but the Outlook team communication - Published: 2018-12-11 - Modified: 2024-11-19 - URL: https://petri.com/outlook-optimizes-autodiscover-office-365/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office, Outlook - Tags: Exchange Online, Office 365, Outlook, UserVoice - Article Type: News Microsoft has optimized the Click-to-Run version of Outlook for Office 365. There's nothing startling about that, but the Outlook team didn't communicate the change well and they weren't very kind to people who asked them to reconsider the change in UserVoice. That's not good. Autodiscover Makes Life Easier Years ago, we had to configure Outlook profiles manually to connect to the right mailbox and server. This wasn’t a good experience. Then Microsoft came up with the idea that computers could probably figure out how to find someone’s mailbox and the Autodiscover feature was born. In a cloud service like Exchange Online, it is literally impossible for a user to know what server hosts the active copy of a mailbox at any time. With an infrastructure spanning over 175,000 physical servers, Exchange Online is a beast. Autodiscover is hugely important because it makes it easy for users to configure Outlook even when the choice of mailbox servers is massive. With that in mind, it seems reasonable that the Outlook team would “continue to optimize for the Office 365 experience. ” Unfortunately, in this zero-sum game, optimization for the cloud means pain for on-premises users. At least, that’s the impression given by Outlook. Spreading Happiness in UserVoice The statement about optimizing for the cloud is from the Outlook team’s December 8 response to a UserVoice request asking Microsoft to adjust a change made to optimize Autodiscover queries for Office 365. If you use the click to run version of Outlook 2016 for Windows, Outlook checks Office 365 first and has done so since the 16. 0. 6741. 2017 update. Checking Office 365 works well if you have an Exchange Online mailbox. Office 365 will respond to the Autodiscover request and return details of your mailbox and other associated... --- ### Modern SharePoint Web Parts — News Web Part - Published: 2018-12-10 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-news-web-part/ - Categories: SharePoint, SharePoint Online - Tags: Modern SharePoint Team Site, Modern Web Parts Jasper Oosterveld, Microsoft MVP shows the latest updates to the Modern SharePoint News Web Part. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the latest updates to the News Web Part. I have been a huge fan of the News Web Part since its release. The Classic SharePoint Experience required us to create custom solutions & branding to provide a news solution for our customers. This all changed with the Modern SharePoint News Web Part. Recently, a series of new features have been released in Targeted Release. Let's take a look! News link Do you want to share an external news article? No need to copy & paste the article within your SharePoint Team Site. By using news link, you immediately bring an external news item within your SharePoint News Web Part: This is awesome! SharePoint automatically enters all the required information. Do you work with SharePoint Page Properties? Just click on the Edit news link details link and enter the corresponding properties. Be warned! I am getting mixed results with the automatically added content for news... --- ### Surface Go with LTE Review - Published: 2018-12-10 - Modified: 2024-09-04 - URL: https://petri.com/surface-go-with-lte-review/ - Categories: Hardware - Tags: LTE, Surface Go - Article Type: Opinion Microsoft's Surface Go with LTE offers flexibility in connectivity but it doesn't come cheap and the battery life does take a hit. Earlier this year, Microsoft released the Surface Go and the company is back again with an updated version that supports LTE. Having spent about a week with the new hardware, here's the mini review. The reason that this is a shorter review is that I did a much more detailed look at the device earlier this year that you can check out, here. What's different with this device is one simple, but key feature, the addition of LTE. For consumer needs, I'm still on the fence about if you need a device with LTE, but on the corporate side, there is certainly value to be had here. But that value can be drilled down into dollars as this version of the Go, with 8GB of RAM, and 128 GB of storage will cost an additional $130, over the non-LTE iteration, for a total of $679. 00 without a keyboard. For that extra fee, you can put a sim of your choosing into the device and tap into an LTE Advanced network. And this is what makes this device an ideal choice for field workers who need a small, portable, Surface. If you like the Surface Pro, the Go is the same thing but in a more mobile form factor. While the keyboard is smaller, it's not too cramped that I find it to be a hindrance in use. And thankfully, Windows 10 is smart enough to know when to use the LTE network or Wi-Fi. With a simple checkbox,... --- ### Puppet Bolt Agentless Automation for Linux and Windows Server - Published: 2018-12-10 - Modified: 2024-09-04 - URL: https://petri.com/puppet-bolt-agentless-automation-for-linux-and-windows-server/ - Categories: Cloud Computing - Tags: cloud computing, Configuration Management, DevOps, linux, Puppet, Puppet Bolt, Windows Server - Article Type: News Puppet Bolt is an agentless and masterless remote task runner that you can use with your existing PowerShell, Python, and Bash scripts. Puppet Bolt is an agentless and masterless remote task runner that you can use with your existing PowerShell, Python, and Bash scripts. Over the last few months on Petri, I’ve been looking at using Puppet to automate Windows Server configuration. While PowerShell Desired State Configuration (DSC) provides similar functionality and is built in to Windows, Puppet is a more mature solution, is widely adopted in enterprise environments, and it is cross platform. If you missed my articles on using Puppet to manage Windows Server, you can get the links to all seven parts here. There are also some additional articles on setting up open source Puppet and Puppet Enterprise on Red Hat Enterprise Linux here and here on Petri. Introducing Puppet Bolt Earlier this month, Puppet Labs announced the availability of Puppet Bolt 1. 0, an open source, agentless, cross-platform configuration management solution that aims to make it easier to get started with automation. Puppet Bolt is a remote task runner and supports any language that your nodes can run. You don’t need to know Puppet to work with it. Bolt can run any existing management scripts that you have. Masterless and Agentless Unlike Puppet, Bolt uses WinRM (or SSH on Linux) to communicate directly with remote systems, doing away with the need to install agents on managed nodes. Puppet Bolt allows sysadmins to run existing scripts written using Bash, PowerShell, Python, and any language that your nodes can run; and use more than 5,000 modules in the Puppet... --- ### Paul Thurrott's Short Takes: December 7 - Published: 2018-12-07 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-7/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because Microsoft is actually in the news for a change, this edition of Short Takes looks at Microsoft's new Edge, facial recognition regulation, market cap, Windows 10 on ARM, and much more. Because Microsoft is actually in the news for a change, this edition of Short Takes looks at Microsoft's new Edge, facial recognition regulation, market cap, Windows 10 on ARM, and much more. Microsoft will use Chromium as the basis for a new version of its Edge browser It's been a curiously newsworthy week, but the top story, for sure, is that Microsoft is finally giving up on the foundation for its web browser---which literally dates back over two decades---and will instead adopt the open source Chromium project as the basis for the next version of Edge. There's nothing but good news here, folks. The new Edge will be more compatible and offer better performance. It will run on Windows 7 and 8. 1 and on the Mac, in addition to Windows 10. It will be updated every month, and thus be kept up-to-date with the latest web standards, and not twice a year as has been the case so far. Some have complained about a web "monoculture," since Chromium powers Google's dominant Chrome web browser too. But that's wrong-headed: This will result in a de facto standard where we need one---how the web works at a low level---while Microsoft, like other web browser makers, can continue to innovate where it really matters, with unique features and user experiences. Bravo, Microsoft. Bravo. "Mozilla says that Microsoft adopting Chromium is bad for the internet" That's not true. It is, of course, bad for Mozilla. And for any other firm that thinks... --- ### Browser Reboot: Microsoft's Building a 'new' Edge for Windows 7,8,10 and MacOS - Published: 2018-12-06 - Modified: 2024-09-04 - URL: https://petri.com/browser-reboot-microsofts-building-a-new-edge-for-windows-7810-and-macos/ - Categories: Windows Client OS - Tags: Browsers, Edge, Microsoft, News - Article Type: News Microsoft is saying goodbye to Edge and hello to a 'new' Edge. The company is dumping its old rendering engine and servicing model and will launch a new browser early next year. The browser, likely the most used app on your computer, is a pivotal part of the desktop experience. With nearly everything now accessible via the web, the future of the browser is only growing in importance and Microsoft is announcing a significant shift in how the company will play in this market. With the launch of Windows 10, Microsoft tried to build a new browser that was based on their Trident rendering engine that we now know as Edge. But the browser has failed at its objective, to create a Microsoft-built browser that could compete with the likes of Chrome and Firefox. Because of their lack of momentum since the release of Windows 10, the company is announcing a significant change today, they are building a new browser that is based on Chromium. And the company is bringing the new browser to every platform: Windows 7, 8, 10 and even MacOS. While the company is not commenting on any timeline for availability aside from a preview build in early 2019, the basics are this: it's building a new version of Edge, based on Chromium, that will be updated at a cadence that is not tied to Windows updates. Further, this app will not be in the Microsoft Store and will be serviced outside of that platform. As part of this shift, Microsoft will also become a significant contributor to Chromium to help improve the rendering engine. The company is committed to supporting web standards and will now shift... --- ### Analyzing the Numbers for Different Office 365 Workloads > Microsoft says that Office 365 has 155 million monthly active users. That's an interesting statistic, but how many people use Exchange, SharePoint, Teams, Yammer, and Planner? - Published: 2018-12-06 - Modified: 2024-11-19 - URL: https://petri.com/analyzing-numbers-different-office-365-workloads/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Exchange Online, Office 365, Planner, SharePoint Online, Teams, Yammer - Article Type: Opinion Microsoft says that Office 365 has 155 million monthly active users. That's an interesting statistic, but how many people use Exchange, SharePoint, Teams, Yammer, and Planner? Microsoft never gives firm numbers, only clues to what might be happening, so we have to do some analysis to tease out what might be happening behind the Office 365 curtain. Office 365 Keeps Growing With the active user count for Office 365 now at 155 million, thoughts turn to how many people use each of the major workloads. Microsoft doesn’t give this information, but hints emerge in articles and conference sessions as clues for what the situation might be. Add a healthy dose of informed guesswork and we can come up with some figures. The major Office 365 workloads are: Exchange Online. SharePoint Online (including OneDrive for Business). Teams. Yammer. Planner. The 155 million number for Office 365 covers paid subscribers. Office 365 supports many unpaid users too (including Microsoft’s own tenant, many development tenants, partners and others), so the comparison offered here is based on paid subscribers. Exchange Online Email was the first workload to move en masse to the cloud and it still is the single biggest workload in the cloud. Statistics released by Microsoft at Ignite 2018 revealed the massive scale of the Exchange Online infrastructure (Figure 1). Figure 1: The scale of Exchange Online (image credit: Microsoft) Over its 22-year history, Microsoft has never revealed the size of the Exchange installed base. Competitive reasons always kept mouths closed. Industry analysts such as the Radicati Group tracked mailbox growth over the years and the consensus reached by analysts was that more than 300 million Exchange seats were sold. Perhaps some of these were licensed and never used, but there’s enough wiggle room in the guesswork figures to say that the Exchange... --- ### How to Choose the Correct Azure VM Disk Tier > In this post, I will explain he differences between the four Azure virtual hard disk tiers that you can deploy for Azure virtual machines. - Published: 2018-12-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-choose-the-correct-azure-vm-disk-tier/ - Categories: Microsoft Azure - Tags: Azure, Managed Disks, Premium SSD, Standard HDD, storage, Ultra SSD, Un-managed disks, vhd, Virtual Hard Disks - Article Type: Overview Aidan explains the differences between the four Azure virtual hard disk tiers that you can deploy for Azure virtual machines. Overview There are currently four tiers of virtual hard disk (VHD) storage for Azure virtual machines: Standard HDD Standard SSD Premium SSD Ultra SSD The choice of disk tier will impact your consumption costs, performance, and service level agreement (SLA). In this post, I will delve into each of these. Note that I am going to focus on managed disks. Un-managed disks (where you explicitly pick a storage account to place the VHD page blobs) are old, no longer improved, have lower levels of availability, and don’t offer the Standard SSD or Ultra SSD tiers. You can convert single machines or availability set members with un-managed disks to managed disks with only a small amount of downtime. All Azure disks are designed for 99. 999% availability and all managed disks are stored with locally redundant storage (LRS) resilience (3 copies in a single storage cluster, in a single room, in a single data center) – see availability zones and/or Azure Site Recovery for Azure virtual machines if you need greater levels of resilience. Standard HDD The Standard is described by Microsoft as being: “... suited for dev/test and other infrequent access workloads that are less sensitive to performance variability. ” One might assume that they should go to the next level up (Standard SSD) for entry-level production workloads but that would be wrong. Most of the machines that I see being used are based on Standard HDD drives. This is because they: Are the cheapest option Are good enough for... --- ### What You Need to Know About Windows 10 S Mode - Published: 2018-12-05 - Modified: 2024-09-04 - URL: https://petri.com/what-you-need-to-know-about-windows-10-s-mode/ - Categories: Windows 10 - Tags: education, Microsoft Store, Security, Windows 10, Windows 10 S Mode, Windows Autopilot - Article Type: Overview Microsoft is continuing to improve the S Mode experience in Windows 10 version 1809 and beyond, here's what you need to know. Microsoft hasn’t made much noise about Windows 10 S Mode, the version of Windows that is restricted to Store apps. And with the death of the Windows 10 S SKU, some have speculated that S Mode is on its way out. But Microsoft is continuing to improve the S Mode experience in Windows 10 version 1809 and beyond. S Mode provides firstline workers and the education sector with a secure OS and performance that lasts. Versions of Windows that support Win32 installers are prone to ‘Windows Rot’, where applications leave files and registry entries behind that impact performance over time. But the Microsoft Store uses containers to isolate apps from each other and the operating system, providing a clean mechanism for installing and removing apps. Microsoft says that when pitching Windows 10 S Mode to management, you should present protection outcomes rather than product specifications. For example, because Group Policy isn’t supported, you can’t block USB devices. But because Win32 apps can’t run, Windows 10 S Mode is protected against malware distributed on portable USB drives. And data leakage prevention can be managed by Windows Information Protection (WIP). For more information on WIP, see Introduction to Windows Information Protection on Petri. The Evolution of Windows 10 S Mode S Mode originated in Windows 10 version 1703 as a separate SKU (Windows 10 S) and was designed to restrict users to installing apps from the Microsoft Store. Legacy Win32 app installers were blocked using what is now called Windows... --- ### Visual Studio 2019 Preview Now Available for Mac and PC - Published: 2018-12-04 - Modified: 2024-09-04 - URL: https://petri.com/visual-studio-2019-preview-now-available-for-mac-and-pc/ - Categories: Visual Studio - Tags: News, Visual Studio 2019 - Article Type: News Microsoft is releasing a new Visual Studio Preview today for both Mac and PC, this is your first look at the new 2019 version. If you are a developer, there's a pretty good chance that you have used Visual Studio at some point during your career. While it may not be your tool of choice for everything, it's hard to discount the features and functionality of that platform for those that need it. In this updated version of the development suite, the company is adding a new start window experience to make it easier to get into your code faster, there is a new search experience, and productivity improvements like AI-powered assistance with IntelliCode. In addition, there are also more refactoring capabilities and smarter debugging. The preview is available starting today for both Mac and PC. In addition to the 2019 preview of Visual Studio, the company is also releasing Visual Studio Live Share for Visual Studio 2019. The updated sharing functionality makes it easier to share desktop apps, source control diffs, and code commenting. The public preview of Live Share is built into Studio 2019 and you can download it as an extension for Visual Studio Code. For Microsoft, Visual Studio is an important part of maintaining a healthy developer ecosystem. With the company earlier this year buying GitHub and also offering new tools like Visual Studio code, the company's ambitions are to offer up an end-to-end development suite that is flexible and extensible. --- ### Microsoft and Docker Team up for Cloud-Native App Bundles Standard - Published: 2018-12-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-and-docker-team-up-for-cloud-native-app-bundles-standard/ - Categories: Cloud Computing - Tags: Cloud Native App Bundles, Docker, Microsoft, News Microsoft and Docker have teamed up to create an open source, cloud-agnostic specification for packaging and running distributed applications. This week, Microsoft is hosting its Connect ; conference where the company dives deeper into its development tools and platforms to help developers better understand the tools available for building applications. At the event, Microsoft announced a new industry standard for a universal installer for cloud-native application bundles for distributed systems. While that name is a mouthful, the underlying concept is quite simple. Microsoft and Docker have created an open source, cloud-agnostic specification for packaging and running distributed applications. Called Cloud Native Application Bundle (CNAB), the platform is designed to work with Azure and Docker to on-prem software like OpenStack and Kubernetes. Microsoft and Docker are providing open source tools to help customers get started with the software that allows you to define resources that can be deployed to any combination of runtime environments. Meaning, CNAB can be run on everything from a workstation, public cloud, to an IoT environment. The goal of the new standard is to make it easier to work with and deploy applications across environments. Rarely is an organization using a single runtime which means it has to manage each platform and deployment with its own provisioning tools; Microsoft and Docker are hoping to reduce the complexity and make it easier to work in these types of environments. Seeing as this 'standard' is only becoming available today, the real test will be if other organizations will adopt and embrace the tooling. While Microsoft and Docker are a good first step, there are other notable... --- ### Windows 10 October 2018 Update Still Experiencing Issues - Published: 2018-12-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-october-2018-update-still-experiencing-issues/ - Categories: Windows 10 - Tags: AMD, Apple iCloud, F5 VPN, Windows 10 version 1809, Windows Update - Article Type: News Apple iCloud, mapped drives, Trend Micro, F5 VPN clients, and AMD graphics still causing problems for Windows 10 version 1809 users. Apple iCloud, mapped drives, Trend Micro, F5 VPN clients, and AMD graphics still causing problems for Windows 10 version 1809 users. Microsoft rereleased Window 10 version 1809 on November 13th but it looks like the software update is still causing problems for some. If you are not aware of the story behind the ongoing saga, the Windows 10 October 2018 Update, or Windows 10 version 1809 as it’s officially known, was originally released on October 9th for ‘seekers’, i. e. those who actively open the Settings app and click Check for updates. But a few days later, Microsoft pulled the update due to issues where some users were losing data during the upgrade process. In October, Microsoft used the Windows Insider Program to test patches for the data loss issue, plus another other problem that came to light when extracting files from zip archives. Build 17763. 134, which is the version Microsoft released on November 13th, fixes both these problems. Users that had already installed 1809 before it was pulled received a cumulative update via Windows Update, also bringing them up-to-date with the latest build. For the original story, see Microsoft Pulls Windows 10 October 2018 Update from Windows Update on Petri. Mapped Drives Don’t Reconnect After the first release of Windows 10 1809 in October, some IT professionals noticed that mapped drives weren’t reconnecting after a reboot, displaying a red mark in File Explorer. This problem wasn’t fixed in the latest update. According to Microsoft, a patch should be... --- ### Outlook Mobile Gets a New Architecture > Microsoft has simplified the synchronization architecture used to connect Outlook mobile clients to Exchange. The new approach sets the scene for some new features - Published: 2018-12-04 - Modified: 2024-09-04 - URL: https://petri.com/outlook-mobile-gets-new-architecture/ - Categories: Exchange Online, Microsoft 365, Office, Outlook - Tags: Acompli, ActiveSync, Office 365, Outlook Mobile - Article Type: News Microsoft has simplified the synchronization architecture used to connect Outlook mobile clients to Exchange. The new approach sets the scene for some new functionality, like support for S/MIME and access to shared mailboxes. It's all good and it marks the continued progress of Outlook mobile since the Acompli acquisition in 2014. Outlook Mobile’s Simplified Architecture Last week, Microsoft announced that they have made big changes to simplify the architecture used to connect Outlook mobile clients to Exchange Online. This change was flagged at the BRK2177 session at the recent Ignite 2018 conference. Going back in time, in late 2014, Microsoft bought Acompli. In early 2015, Microsoft launched a rebranded Acompli client as Outlook for iOS and Outlook for Android. The new clients solved a big problem in Microsoft’s mobile email connectivity strategy, which up to that time was busily going into the dead-end called OWA for Devices. Acompli’s highlight feature was the Focused Inbox, which is now available in all varieties of Outlook. To make features like the Focused Inbox work, Acompli relied on its own API. Clients connected to Exchange with Active Sync and the mailbox data was transformed by services running on AWS before being consumed by the clients. From AWS to the Microsoft Cloud In Fall 2016, Microsoft dumped the AWS infrastructure and moved Outlook processing to Azure. The clients persisted with their own API and the gap between the Acompli heritage and the Microsoft Cloud was bridged by a stateless protocol translator. In effect, a component that translated calls into a format that either side could understand. Stateless No More Now, Microsoft is replacing the stateless protocol translator and replacing it with some home-grown synchronization technology using HTTP connections. According to Microsoft, the synchronization technology “is a stable data sync protocol that has been used... --- ### Exploring Microsoft's Azure Backup Server v3 > Microsoft has launched v3 of their on-premises backup server that integrates into Azure’s cloud backup & storage services, Azure Backup Server or MABS. - Published: 2018-12-04 - Modified: 2024-09-04 - URL: https://petri.com/exploring-microsofts-azure-backup-server-v3/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Backup, Hyper-V, MABS, Microsoft Azure Backup, vmware, vSphere - Article Type: Overview Microsoft has launched v3 of their on-premises backup server that integrates into Azure’s cloud backup & storage services, Azure Backup Server or MABS. MABS Azure’s backup service is called Azure Backup; this service is responsible or enabling customers to protect Azure resources such as Azure virtual machines, SQL Server in machines, Azure SQL long-term retention, Azure Files, and the list grows longer. Azure Backup also provides on-premises protection services that can send data to the cheap storage of The Cloud. The original, and probably most widely used part of Azure Backup, in on-premises protection, is the MARS agent. MARS is a small agent that you can install onto a Windows Server to protect folders & files and system state. It’s great in small businesses, PCs, and in branch office scenarios, offering infrastructure-free backups that are securely sent straight to the cloud. However, as good as MARS is, it did not protect VMware, Hyper-V, SQL Server and Office servers such as Exchange/SharePoint – though backup needs for the latter are changing as Office 365 takes their place ... yes, you really do need backups – I’ve seen the customers that weren’t served by replication or recycle bins. So Microsoft introduced Microsoft Azure Backup Server (MABS) – a customized version of System Center Data Protection Manager. You do not need to buy System Center. There is no software fee for MABS; you pay the “instance” fee for each protected item and a block blob storage fee for any storage you elect to use in Azure. MABS will protect VMware, Hyper-V, SQL Server, Exchange, and SharePoint, in addition to system state and files &... --- ### Windows Subsystem for Linux Improvements in Windows 10 Version 1809 - Published: 2018-12-03 - Modified: 2024-09-04 - URL: https://petri.com/windows-subsystem-for-linux-improvements-in-windows-10-version-1809/ - Categories: Windows 10 - Tags: linux, Windows 10 1809, Windows Subsystem for Linux, WLinux - Article Type: Overview Now that the Windows 10 October 2018 Update has been rereleased after the initial rollout was paused in early October, here is a list of improvements Microsoft has made to the Windows Subsystem for Linux (WSL) in Windows 10 version 1809. Now that the Windows 10 October 2018 Update has been re-released after the initial rollout was paused in early October, here is a list of improvements Microsoft has made to the Windows Subsystem for Linux (WSL) in Windows 10 version 1809. WLinux The most interesting development is the availability of WLinux in the Microsoft Store, the first paid-for Linux distribution designed specifically to run on WSL. WLinux is based on Debian and was created by software startup Whitewater Foundry. It offers access to over 25,000 open source packages that can be installed and managed using apt-get. Also included is the wlinux-setup tool, which allows you to set up a working environment quickly, including tools like Python, Go, Ruby, NodeJS, PowerShell, and Azure Cloud tools. WLinux is primarily intended for developers who need a terminal-only version of Linux. But using a third-party X server, it is possible to run many GUI apps. Because WLinux doesn’t use emulation or run in a virtual machine, Whitewater Foundry claims that Linux apps run at native speed. While performance may be better than in Linux running inside a VM, WSL still uses a translation layer to convert Linux system calls. And WSL has its own performance bottlenecks that aren’t present natively in Linux. The bad news is that it costs $20 and there’s no trial. But Whitewater Foundry says that WLinux gets faster patching for WSL-specific bugs and that buying the OS helps fund a small team of developers to add new features... --- ### What is Windows Lite? It's Microsoft's Chrome OS Killer - Published: 2018-12-03 - Modified: 2024-09-04 - URL: https://petri.com/what-is-windows-core-os-its-microsofts-chromebook-os-killer/ - Categories: Windows 10, Windows Client OS - Tags: Windows 10, Windows Core OS - Article Type: News Microsoft is working on a new iteration of Windows that may not be called Windows and will finally be it's true, ChromeOS, competitor. For more than a year, we have been hearing about Windows Core OS and how it is a modern version of Windows. As Microsoft continues to build out the platform, it's time to take a look at what the secret project actually includes and how the company is positioning the platform. In Microsoft's feverish attempts to shove out insider builds at an impressive rate, the company doesn't always do a great job at scrubbing the finer details from the builds. Because of this, and some help from a couple insiders, I have been able to piece together what Lite is and where it's headed. Microsoft is working on a new version of Windows that may not actually be Windows. It's currently called Lite, based on documentation found in the latest build, and I can confirm that this version of the OS is targeting Chromebooks. In fact, there are markings all over the latest release of the insider builds and SDK that help us understand where this OS is headed. If you have heard this before, it should sound a lot like Windows 10 S and RT; Windows 10 Lite only runs PWAs and UWP apps and strips out everything else. This is finally a truly a lightweight version of Windows that isn't only in the name. This is not a version of the OS that will run in the enterprise or even small business environments and I don't think you will be able to 'buy' the OS either;... --- ### Digging Into Azure VM Disk Performance Features > In this post, I will discuss some Azure features that allow you to obtain better virtual hard disk (VHD) performance with virtual machines. - Published: 2018-12-03 - Modified: 2024-09-04 - URL: https://petri.com/digging-into-azure-vm-disk-performance-features/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machine, Host-Based Caching, performance, Premium SSD, SQL Server, Standard HDD, Standard SSD, storage, storage spaces, TempDB, Ultra SSD, vhd, virtual hard disk, virtual machine, Write Accelerator - Article Type: How To Aidan breaks down some Azure features that allow you to obtain better disk performance with virtual machines. Disk Tier The first, and most important, factor in disk performance is the tier of disk that you choose to create – remember that managed disks are easier to convert that un-managed disks. The first tier is the Standard HDD. Microsoft says that this entry-level tier is best suited to: ... dev/test and other infrequent access workloads that are less sensitive to performance variability. A certain amount of that quote is sales-driven and based on “ivory tower computing”. In reality, most of the workloads I see are running on Standard HDD because, just like in on-premises deployments, HDD is good enough and it’s also the cheapest form of machine storage. You should expect up to 60 MB/second throughput and 500 IOPS per disk, but that performance could be up and down as your virtual hard disks (VHDs) compete with other VHDs for seeks, reads and writes on the physical disk spindles. Standard SSD is the next tier up from Standard HDD; the maximum throughput and IOPS remain unchanged but latency will be lower and the performance should be more smooth – a benefit of moving to flash storage. Premium SSD offers lower latency than either of the Standard tiers. The IOPS and throughput do vary, depending on the size of the disk – bigger VHDs offer more performance. The largest support Premium SSD disk, the 4 TiB P50, offers up to 7,500 IOPS with 250 MB/second transfers. Two things to note about Premium SSD: Make sure that the... --- ### Restore an Azure Virtual Machine’s Disks from Backup > This post will explain how a new way to restore an Azure virtual machine from backup simplifies some complexity we have had with availability sets/zones. - Published: 2018-12-03 - Modified: 2024-09-04 - URL: https://petri.com/restore-an-azure-virtual-machines-disks-from-backup/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure Virtual Machines, Disks, Managed Disks, storage, virtual machines - Article Type: How To Aidan explains how a new way to restore virtual machine’s disks from backup simplifies some of the complexity we have had with recovering infrastructure assets in the past. Back to Basics No matter what hypervisor you use, a virtual machine has a common makeup. There are two components: The metadata: A description of the virtual machine, which is what we see and typically works with through administrative tools, such as the Azure Portal. The disks: This is everything of value in the virtual machine is kept, such as the operating system, identity, software, OS and software configuration, and the data. The metadata of an Azure virtual machine is normally of little value, and everything we care about is in the disks. If we lose the metadata, we can recreate it. But that leads us to an issue. The Problem We have had an issue with restoring virtual machines in all but the simplest deployments in Azure. When we restore a virtual machine, we cannot restore membership of an availability set (highly available placement in a single compute cluster) or an availability zone (highly available placement across data centers in a region). We have had workarounds based on restoring the disks of a virtual machine instead of the whole virtual machine (including the metadata): Un-Managed Disks: A JSON file is also restored with the disks in blob storage, and you can deploy the JSON file to recreate the virtual machine, including the availability set/zone membership. Managed Disks: We had a process that took more time where we could restore the disks as un-managed disks, convert them to managed disks, create a new virtual machine from the OS... --- ### Modern SharePoint News - Layout update inbound - Published: 2018-12-02 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-news-layout-update-inbound/ - Categories: Microsoft 365, SharePoint Online - Tags: Modern SharePoint, SharePoint News - Article Type: Overview Jasper Oosterveld, Microsoft MVP, dives into the latest developments around Modern SharePoint. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The features delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so today I want to share with you a very interesting update to the Modern SharePoint News Post. The update is immediately visible once you create a news post: The post displays, by default, the name of the author. You can remove the name and add a new one. Currently, there is only space for one author. I can imagine this to be extended in the near future. After adding an image, its time to explore the new layout options for the image header:   Image and title I can set the alignment in the center, add an additional text and show the published date: This looks really nice and professional! I really like this one. Let's move on to plain (that lives up it its name). Plain You can't deny this isn't plain! I don't see much use of this in the real world but that doesn't mean its bad. The majority of people just prefer a nice banner with their news posts. On to the next one. Color block Nice! I... --- ### Everything you need to know about SharePoint – November 2018 > SharePoint is awesome. Come check out the news and notes for November 2019 including things for both on-prem and online. There is something for everyone. - Published: 2018-11-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-november-2018/ - Categories: SharePoint, SharePoint 2007, SharePoint 2010, SharePoint 2013, SharePoint 2016, SharePoint 2019, SharePoint Online - Tags: OneDrive, SharePoint 2010, SharePoint Framework, SharePoint Online - Article Type: News Looking for everything announced in the month of November for SharePoint? Shane has you covered.   This month I get to remind you that even though it is 2018 you need to keep your eye focused on a product from 2010 coming out of support in 2020. Seems like a silly conversation but we are going to talk about it. Then we can talk about some developer stuff, security this and that, and a pending return of a feature we have missed for a long time. Fun times, fun times. And can we just say how proud I am? This will be two articles in a row where I am going to talk about developer things and do so nicely. Miracles never cease to happen. SharePoint 2010 Extended Support is ending in Oct 2020 This is just a reminder that one of these years you have to get rid of SharePoint 2010. Bill from the SharePoint product team gently reminds you with this post with such an upbeat tone. Good job Bill. I, on the other hand, am going to say “GET IT TOGETHER PEOPLE”. I know, I am rude. I still talk to customers on a regular basis who have 2010 at no fault of their own. It was a great, stable platform that they don’t want to leave but they must. I mean I still know a lot of customers are still on 2007 and a few on 2003. Change is hard. So anyway, I will skip the lecture and just remind you 23 months of extended support left. I will also remind you... --- ### Everything you need to know about Office 365 – November 2018 > What is news and noteworthy in November 2018 for Office 365? Here is your rundown that includes Power BI, the Graph API, and a licensing change. - Published: 2018-11-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-november-2018/ - Categories: Microsoft 365, Office - Tags: Microsoft Flow, Office 365, Office Graph, Powerapps - Article Type: News It was another busy month for Office 365, here's the highlights from the previous month. This month was pretty actioned pack. I am guessing this was the rush to get things out the door before December where no one, anywhere, does anything. Maybe I will be wrong, the pace of change is so crazy these days I secretly hope the world takes a month off. Maybe then we can catch up a tad. I doubt it. Anyway, check out the fun around new icons, some documentation, licensing changes, and more. As a bonus, I included some developer stuff and resisted the urge to make fun of developers. I must be in the holiday spirit already. PS – Knowing that December will be slow please tweet me @ShanesCows with ideas you have for next month. Power BI keeps on rolling This month I came across two announcements of interest. First, the introduction of paginated reports. This is part of the roadmap for making sure that Power BI (PBI) can do everything that SQL Reporting Services (SSRS) can. While PBI has always had amazing interactive reports, it turns out a lot of people still like to print reports that are just as beautiful. With this announcement, you will see the preview release of these features, which looks pretty well done. Personally, I wish people would stop printing these things but what do you do. I even have several customers who want to print from PowerApps. The Paperless office continues to be elusive. PBI adds the ability to do data preparation with dataflows. And while this... --- ### Everything You Need to Know About Azure Infrastructure – November 2018 Edition > This post contains a summary of all the Azure IaaS news and announcements from November 2018. - Published: 2018-11-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-november-2018-edition/ - Categories: Cloud Computing, Microsoft Azure - Tags: Az, Azure, Azure AD, Azure Portal, Azure Security Center, Azure SQL, Azure Virtual Machines, Customer Lockbox, DC-Series, DDOS, H-Series, HPC, linux, live migration, machine learning, MFA, Mutli-Factor Authentication, PowerShell Core, Reference Architectures, Security, storage, Ultra SSD, virtual machines, Windows Admin Center - Article Type: Overview It's the end of the month and if you missed any of the Azure announcements, we have you covered. If you look at the below content and compare it to previous months you might find that there are not as many technical articles and releases by Microsoft. This is because we have entered one of the quiet periods in the Azure calendar. The holiday season is approaching and much of Microsoft will shut down for an extended period – introducing changes at this time of year is not normally considered a good thing! But we still do have some news. Outages In the cloud world, November 2018 will be remembered for Multi-Factor Authentication (MFA), an Azure AD feature that requires users to prove who they are when they attempt to sign in. The user does the usual keyboard dance of entering a username and password, and then MFA requires the user to enter a code (via SMS or the Microsoft authenticator app), confirm a sign-in attempt (the app) or answer a phone call. If you cannot prove your identity with MFA then you cannot sign in. So, MFA would be considered a critical service. On November 19th, MFA suffered a serious outage that lasted for up to 14 hours for some customers. A series of issues, stemming from an update to Azure AD MFA, caused the outage. What made it worse was: Microsoft’s own monitoring wasn’t detecting the issues correctly The official status page was overloaded by customers and wouldn’t load for many of us. A root cause analysis was released, promising fixes to the faults, the... --- ### Everything You Need to Know About Windows - November 2018 - Published: 2018-11-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-november-2018/ - Categories: Windows Client OS - Tags: Active Directory, Microsoft Account, Universal Windows Drivers, Windows 10, Windows 10 version 1809, Windows Hello, Windows Machine Learning, Windows Template Studio - Article Type: News Windows 10 version 1809 is rereleased but users still face problems, Microsoft issues security advisory for devices with self-encrypting SSDs, Windows 10 gets support for 64-bit ARM apps, and researcher finds Active Directory forest trust security bug. Windows 10 version 1809 is rereleased but users still face problems, Microsoft issues a security advisory for devices with self-encrypting SSDs, Windows 10 gets support for 64-bit ARM apps, and researcher finds Active Directory forest trust security bug. Windows 10 1809 Rereleased Microsoft finally rereleased Window 10 version 1809 on November’s Patch Tuesday to Windows Update and for those that want to download the media. The update was originally released on October 9th for ‘seekers’ but Microsoft pulled it a few days later after users started reporting lost data during the upgrade process. Windows Server 2019 was also pulled. After a month of testing fixes with Windows Insiders, the update is now rolling out via Windows Update, although more slowly than the April 2018 Update. Windows Server 2019 is still missing in action on Azure and Microsoft’s evaluation center. Despite the updated release, users are still experiencing problems. According to Microsoft’s Windows 10 update history page, there are some major issues. Most notably with mapped drives but also with F5 VPN clients, some new Intel display drivers, and unsupported AMD graphics cards. An issue with Apple iCloud and Windows 10 1809 has recently been patched by Apple and users can now upgrade their iCloud software. Microsoft has issued blocks on the update for users that have currently incompatible hardware or software on their devices. It goes without saying that before upgrading your organization’s devices to Windows 10 1809, you should undertake thorough testing to make sure the update... --- ### Paul Thurrott's Short Takes: November 30 - Published: 2018-11-30 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-30/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it's been a while, sorry, this edition of Short Takes looks at how cute it is when the mainstream press has to notice that Microsoft still exists. Plus much more. Happy holidays from the flood zone Because it's been a while, sorry, this edition of Short Takes looks at how cute it is when the mainstream press has to notice that Microsoft still exists. Plus much more. Mainstream press finally wakes up to Microsoft being a thing Microsoft has consistently posted strong and growing profits and revenues over the past three decades. And its stock price, finally, has surged under Satya Nadella. But you have to beat the mainstream press with a stupid stick to get them to even notice. Which, actually, they finally did because Microsoft's market capitalization surpassed that of industry darling Apple, if briefly, this past week. "Microsoft Is Worth as Much as Apple. How Did That Happen? " the New York Times asked, as if perplexed that this strong and diverse tech giant still exists despite its non-stop history of success. This is the BS I deal with regularly, and the anti-Microsoft bias in mainstream media is really hard to deal with. For this reason alone, Apple's fall---the real reason for Microsoft's "sudden surge," sadly---is all the sweeter. It is forcing the world to acknowledge that Microsoft hasn't gone anywhere. Sorry, everyone. It's time to rewrite that script. "There's a very simple reason why the resurgent Microsoft is threatening to overtake the slumping Apple" Microsoft isn't "resurgent. " Also, wake up. Top PC makers are on the rise HP and Dell both just posted their most recent quarterly earnings and both firms,... --- ### Rights Management, Protection, and Email AutoSignatures > Given the increased ways to apply rights management protection (encryption) to Exchange Online messages, the volume of encrypted traffic should rise. Autosignature - Published: 2018-11-29 - Modified: 2024-11-19 - URL: https://petri.com/rights-management-protection-email-autosignatures/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Autosignature, encryption, Exchange Online, Office 365, Rights management, sensitivity labels - Article Type: News Given the increased ways to apply rights management protection (encryption) to Exchange Online messages, the volume of encrypted traffic should rise. That's good for users because their email is protected, but it's not so good for ISVs who must deal with encrypted email. One such example is autosignature products, where server-based components can't touch protected email to add their text. Protection for the Masses As part of its Microsoft 365 Information Protection initiative, Microsoft has done a good job to make encryption more accessible for Exchange Online users through the introduction of Sensitivity Labels and the Encrypt-Only and Do Not Forward options in Outlook and OWA. The net effect is that it’s easier than ever before for Office 365 users to protect their email with encryption and rights management. Increased use of inbuilt encryption might see a reduction of the use of third-party encryption schemes like S/MIME or PGP, simply because sensitivity labels and the inbuilt protection are so easy to use. You don’t have to install add-ins for clients, there’s no need for key management, and any recipient on any email system can read a protected message. Everything works out of the box for Office 365 E3 and E5 tenants because the licenses for rights management are baked into these plans. Encryption and Rights Management Protecting email with easy-to-use encryption has many benefits, especially when combined with rights management. If a protected message reaches someone who shouldn’t have it, the assigned permissions will probably stop the recipient being able to read the message. Even if the permissions allow access (for instance, you can now assign a special Any Authenticated Users permission to allow any account authenticated with a Microsoft directory to access content) the sender can easily revoke access to the message. Another advantage is that no one can read a protected message if a recipient forwards... --- ### Amazon is targeting the Hybrid Cloud by Bringing Metal to your Data Center - Published: 2018-11-28 - Modified: 2024-09-04 - URL: https://petri.com/amazon-is-targeting-the-hybrid-cloud-by-bringing-metal-to-your-data-center/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Outposts - Article Type: News Amazon is launching a new hybrid cloud solution called Outposts that will bring metal to your data center. For years, Amazon has been pushing that it has the best cloud available and that AWS was the market leader. But there was one little problem, most companies are not all 'cloud', most are hybrid environments and Amazon is coming full-steam ahead for those customers. Announced at its RE:Invent conference in Las Vegas, AWS Outposts finally brings a truly hybrid solution to customers who are using or are thinking about using, AWS. Outposts is an on-premises, private cloud service with hardware and software solution that runs either AWS native stack or VWware cloud on AWS stack. This is a big step for Amazon as it will put actual racks of AWS hardware in your data center that use the same APIs for AWS. While you might think that 'on-premises' hardware is a thing of the past, the truth is that most companies prefer to keep mission-critical hardware local with failover and redundancy in the cloud. This model helps reduce data center costs while also giving enterprise customers maximum control over their operations - the hybrid cloud model. The integration with VMware will also play perfectly into Amazon's strategy. Most companies using this software have resisted some of Microsoft's stack, such as Hyper-V, which means that they are excellent candidates for this on-premises hardware and this new offering. For Amazon, this is an interesting, but not unexpected, play. The company was the pioneer of cloud-based computing and bringing local metal to its clients is a shakeup to their business... --- ### Amazon Walks Into Microsoft's Backyard with FSx for Windows File Server - Published: 2018-11-28 - Modified: 2024-09-04 - URL: https://petri.com/amazon-walks-into-microsofts-backyard-with-fsx-for-windows-file-server/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, FSx Amazon is walking into Microsoft's backyard with a new Windows file system that the company hopes will steal a bit of thunder from Azure's pitch. This week in Las Vegas, Amazon is hosting its Re:Invent conference where the company announces new features for its cloud platform and other enterprise services. Unveiled at during today's keynote, is a new Windows File server that has Microsoft directly in its crosshairs. For companies who are running Windows applications in the cloud, they typically need a network-based file storage that is fully compatible with both their applications and their Windows environments. Not a shocking revelation by any means but up until this point, if this was a critical requirement for your operations, you were likely looking at Azure as your cloud provider. Amazon is hoping that changes with its new FSx for Windows File server which the company says is fast, fully managed, and of course secure. The idea is to make it significantly easier to lift-and-shift your workloads to AWS and the company is betting that by targeting Windows File Server users, they can steal a bit of thunder from Microsoft's Azure pitch. The company says that their native Windows file system is backed by the fully-managed Windows file servers, and can be accessed server message block (SMB) protocol. File systems can be as big as 64 TB, and can deliver up to 2,048 MB/second of throughput. As expected, Amazon wasn't holding back from showing that it is the true cloud leader in Microsoft's own domain. They claim that they have 57% of the market with Microsoft coming in at second at 30% for Public Cloud... --- ### What’s New in Azure File Sync? - November 2018 Edition > This post will discuss some of the new features that were introduced with version 4 of the Azrue File Sync agent in November 2018. - Published: 2018-11-28 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-azure-file-sync-november-2018-edition/ - Categories: Microsoft Azure - Tags: Azure, Azure File Sync - Article Type: Overview Improvements are coming quickly to Azure File Sync (AFS), a new hybrid service that has server admins very interested. This post will discuss some of the new features that were introduced with v4 of the AFS agent. Improvements are coming quickly to Azure File Sync (AFS), a new hybrid service that has server admins very interested. This post will discuss some of the new features that were introduced with v4 of the AFS agent. Rapid Improvement I frequently remind people not to judge an Azure service by its first generally available (GA) release. The developers of Microsoft Azure code in sprint runs. Development cycles last 6 months and planning is done every 3 months. Within those overlapping cycles, the teams can change direction quite quickly and produce new features in a matter of weeks, instead of years. Azure File Sync was not perfect when it was released – and the team knew that. They already had years of feedback from private and public tests and had built plans. Adoption came with GA, and that brought more feedback and empirical data based on real-world usage. Better informed, the team can now improve the product in ways that will be meaningful to current and potential customers. V4 Improvements Version 4 of the AFS agent was released in November. This new agent version comes with many improvements: Windows Server 2019: WS2019 might still be lacking a lot of hardware support, but AFS now supports an installation of the v4 agent on the new server OS version. Now the supported file server operating systems are Windows Server 2019, Windows Server 2016, and Windows Server 2012 R2. Date-based tiering policy: I had quite a few people ask for this –... --- ### The new Petri forums are open for business > Your Community Magnate for Petri.com is back.I'm here to participate with you in the new-and-improved Petri forums. - Published: 2018-11-27 - Modified: 2024-12-03 - URL: https://petri.com/the-new-petri-forums-are-open-for-business/ - Categories: Main - Tags: Forums - Article Type: Overview Hi. It's me again. Your Community Magnate for Petri.com is back.   Hi. It's me again. Your Community Magnate for Petri. com is back. I'm here to participate with you in the Petri forums. This was part of my planned mission last year when I first became Community Magnate here. But like any big project, good things take time. The new-and-improved Petri forums are now live. We'll be looking to continue the good conversations that already have been percolating there and start up some new ones. Our plan here is to build a strong and vibrant community -- one that is dedicated to helping IT professionals stay informed and stay up-to-date by sharing with one another tips, tricks, ideas and questions/answers. I'll be working to bubble up some of the most interesting and informative topics here in the forums. If there are any I miss that you think deserve highlighting, send me a tip (mjf@bwwmediagroup. com). Thanks to all of you who already are participating in the Petri forums. And welcome to those just jumping in for the first time! P. S. : I hear there's a secret beer forum somewhere around here. Free virtual pint for any pointers as to where it is :) Mary Jo --- ### Microsoft Needs A Quality Review > In this opinion post, I share why I beleive that Microsoft needs to stop writing new code, do a complete reset, and focus on quality. - Published: 2018-11-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-needs-a-quality-review/ - Categories: Microsoft Azure - Tags: 1809, Azure AD, MFA, Microsoft, Multi-Factor Authentication, Quality, Windows 10 - Article Type: Opinion Aidan is convinced that Microsoft needs an “XP SP2” fix to everything that they are doing today; he explains why in this post. I’m tired of bugs in software shutting us down. I am convinced that Microsoft needs an “XP SP2” fix to everything that they are doing today. I explain why in this post. Downtime I have the blow open in one of my monitors as I am writing this post: The second Azure AD Multi-Factor Authentication outage in 8 days MFA had a 14-hour outage that affected worldwide customers that were attempting to securely sign into Microsoft (and potentially 3000+ other) cloud services using their Azure AD licensing. Imagine not being able to do any work for 14 hours! How much money did that cause people? A week later – yesterday – Microsoft released a root cause analysis (RCA) to explain how an update combined with two other issues caused the outage. I’m all good about these “warts and all” reports – transparency inspires confidence that things will improve and that professionals are dealing with issues. But when the service fails 1 day later – that’s not inspiring at all. Failing Fast Microsoft is all-in on “fail fast” – get new code out there as quickly as possible. Quality – Nah, that’s secondary. Testers – who needs them because every dev can review their own code. I studied computer science in college – I have my BSc, after learning to code in ancient languages like Cobol, as well as C and C++. My education included lots of commercial stuff, software engineering, and... --- ### Using Office 365 Sensitivity Labels > Sensitivity labels allow Office 365 tenants to encrypt messages and documents very easily. That is, as long as you have applications that understand labels. - Published: 2018-11-27 - Modified: 2024-09-04 - URL: https://petri.com/using-office-365-sensitivity-labels/ - Categories: Microsoft 365, Office - Tags: AIP, Azure Information Protection, data governance, Labels, Office 365, Rights management - Article Type: How To Sensitivity labels allow Office 365 tenants to encrypt messages and documents very easily. That is, as long as you have applications that understand labels. A preview version of the AIP client integrates a Sensitivity button in the Office desktop applications, but we must wait for native integration across desktop, web, and mobile clients. Office 365 Sensitivity Labels In part 1 of this mini-series, I described the migration process to transform a set of Azure Information Protection (AIP) labels into Office 365 sensitivity labels. As you’ll recall, sensitivity labels are how users mark documents and messages with various levels of confidentiality. The most confidential material can be protected using labels that invoke rights management encryption. Labels and Security and Compliance Center Management of sensitivity labels is through the Classifications section of the Security and Compliance Center (SCC). You’ll find two types of labels here: sensitivity and retention, the latter being used to assign retention periods to Office 365 content. These labels were originally called classification labels, but the Office 365 UIs have now been updated to use their new name. Following the migration, the original AIP labels and protection templates are still available through the Azure portal, but any work on labels intended for use within Office 365 should be done via Security and Compliance Center (Figure 1). Figure 1: Office 365 Sensitivity Labels (image credit: Tony Redmond) The SCC displays labels in order of precedence with the label with the lowest sensitivity at the top of the list and the one with the highest sensitivity at the bottom, and you should take care to create labels in order of sensitivity. You can move labels up or down in the list using commands exposed in the ellipsis menu. The order becomes important when a user removes a label... --- ### What You Need to Know About Cloud Backup and Disaster Recovery - Published: 2018-11-26 - Modified: 2024-09-04 - URL: https://petri.com/what-you-need-to-know-about-cloud-backup-and-disaster-recovery/ - Categories: Backup & Storage, Cloud Computing, DNS, Security - Tags: Backup, Cloud, Disaster Recovery, hybrid cloud, storage, virtual machine - Article Type: Overview Using the cloud for backup and recovery is a choice many businesses utilize but make sure you understand the entire picture before moving to that recovery model. Backup is the foundation of every business’ disaster recovery (DR) strategy and today many organizations are choosing to back up to the cloud. There are a lot of good reasons for using the cloud as a backup target. The cloud has global data access that can service a geographically dispersed business. Cloud storage tends to be less expensive than local storage – and this can be an important consideration as most businesses are experiencing very rapid data growth. Cloud storage can also fulfill the requirement for offsite storage which can be used to recover your systems in the event of a site failure. While cloud backup has a number of advantages, there are also several considerations that you to be aware of before moving your backups to the cloud. First, backing up to the cloud means that you are no longer in control of the backup media. Instead, the control over your backups is in the hands of your cloud provider. Next, cloud backups have the potential to increase your backup window. Backing up to the cloud means the backup data has to be transferred across the Internet which means that there can be both security and latency issues. The backup data itself needs to be encrypted as it is transferred to the cloud to prevent any unauthorized access. Backup and restore times to the cloud are also impacted by network latency which can extend your Recovery Time Objectives (RTOs). To offset the network latency issue, some backup products offer... --- ### Getting creative with SharePoint News - Published: 2018-11-26 - Modified: 2024-09-04 - URL: https://petri.com/getting-creative-with-sharepoint-news/ - Categories: SharePoint, SharePoint Online - Tags: Modern SharePoint, SharePoint News - Article Type: How To Jasper shows how the latest News Web Part in combination with SharePoint Page Properties can create new 'news' experiences/ I have been a huge fan of SharePoint News ever since its release. Not to long ago, with the Classic SharePoint Experience, it wasn't easy to setup an out-of-the-box news solution. We had to apply custom page lay-outs, content types and XSLT style sheets. A lot of development, time and money. Those days are finally over with SharePoint News. The following advantages are applicable by using SharePoint News: Incredibly easy to use for business users. Multiple lay-out options to fit your design needs. Out-of-the-box news archive. Distribute news with the news digest. Comments, likes & save for later. Integrated with the Microsoft SharePoint Mobile App. Great advantages with an out-of-the-box solution! There have been a couple updates for SharePoint News: New views for the news Web Part and SharePoint Page Properties. I would like to show you some creative options by using these two updates within your Intranet Portal. I created a SharePoint Communication Site for the DG Product Line Portal. This Portal showcases all the DG Products of Contoso. I assigned this Portal as SharePoint Hub, and added three news Web Parts on the home page: The first Web Part is a carousel and only displays news pages tagged as being displayed for the carousel. How can you do this? Microsoft released Page Properties last August. I applied the following page property: The authors are apply to select yes (carousel) when they want to display the news page within the carousel. I had to use a SharePoint choice field because the yes/no column isn't... --- ### Microsoft Launcher 5.0 for Android Brings Timeline Support - Published: 2018-11-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launcher-5-0-for-android-brings-timeline-support/ - Categories: Mobile - Tags: Android, Microsoft Launcher, Mobile, Productivity, Timeline, Windows 10 - Article Type: News While Microsoft has finally re-released the Windows 10 October 2018 Update (version 1809) since the rollout was paused early October, the company has been busy with version 5.0 of its Launcher software for Android phones, which now supports Windows 10 1803’s one new major feature, Timeline. While Microsoft has finally re-released the Windows 10 October 2018 Update (version 1809) since the rollout was paused early October, the company has been busy with version 5. 0 of its Launcher software for Android phones, which now supports Windows 10 1803’s one new major feature, Timeline. Previously called Project Rome, Microsoft’s effort to bridge the gap between devices, apps, people, and the cloud, Timeline records user activities and presents them in chronological order in Task View. Timeline displays user activities as Adaptive Cards. A user activity might be editing a Word document or viewing a web page. Applications record user activities on the Activity Feed using Microsoft Graph, which is accessible to applications via the Project Rome APIs. For more information on how Timeline works, see Project Rome and Windows 10 Timeline on Petri. Microsoft Launcher 5. 0 for Android Since the release of Windows 10 version 1803, Microsoft has been promising that it would deliver Timeline integration in the Microsoft Launcher for Android. While Timeline is somewhat hidden in Windows 10 - and you could be forgiven for not even knowing where to find it - what has limited its usefulness until now is that if you wanted to pick up where you left off with an activity, you could only do so on your Windows 10 devices. Microsoft Launcher version 5. 0 makes Timeline much more useful. For example, if you are browsing a web page on a Windows 10 device, and assuming you are signed in to Launcher... --- ### Good News for Office 365 as Microsoft Acquires FSLogix > Microsoft announced on November 19 that they had acquired FSLogix, a developer of software aimed at easing the pains of VDI deployments. - Published: 2018-11-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquires-fslogix/ - Categories: Microsoft 365, Office - Tags: FSLogix, Microsoft 365, Office 365, VDI - Article Type: News Microsoft announced on November 19 that they had acquired FSLogix, a developer of software aimed at easing the pains of VDI deployments. The news is good for Office 365 tenants because if there's one suite that needs to have some VDI pain eased, it's Office 365. Microsoft’s acquisition of FSLogix announced on November 19 is good news for Office 365 tenants who want to use Virtual Desktop Infrastructure (VDI) environments like Citrix XenApp and XenDesktop. Moving data around is a big problem in virtualized environments like VDIs. Desktop applications like Office 2016 are designed to run on physical workstations that usually have good network connectivity. As more and more functions are added to the software, the demand for local data cache and network resources to populate and maintain those caches increase, which makes VDI management more difficult. Network Containers FSLogix’s main product in the Office 365 space is their Office 365 Container, which manages the local data caches used by Office 365 applications like Outlook’s OST, the Offline Address Book (used by Skype for Business Online and Outlook), OneNote, and OneDrive for Business. FSLogix allows these files to follow users from machine to machine in a VDI environment by keeping the files in a container on remote storage. When a user moves to a different machine, they connect to the container and have access to all the files they need to run Office or OneDrive. The Challenge of Outlook Take Outlook for example. Never known as a svelte application in terms of its network demands (“fat pig” is a more common moniker), any version of Outlook is best used in cached Exchange mode, meaning that mailbox contents are cached in the OST file. Since Outlook 2003, the complete mailbox can be cached to allow... --- ### Patch Tuesday November 2018 - Published: 2018-11-20 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-november-2018/ - Categories: Security - Tags: Microsoft Office, Patch Tuesday, Windows 10, Windows 7, Windows Server 2008, Windows Server 2016, Windows Server 2019 - Article Type: News Microsoft rereleases Windows Server 2019 and Windows 10 version 1809, and patches 62 flaws, 13 of which are rated critical. Windows 10 October 2018 Update Rereleased It’s been a long wait, but Microsoft has finally rereleased Window 10 version 1809 to Windows Update and for those who want to download the media. Originally released on October 9th for ‘seekers’, i. e. those who actively open the Settings app and click Check for updates, Microsoft pulled Windows 10 1809 a few days later after receiving reports that some users had lost data during the upgrade process. Windows Server 2019 was also pulled. Microsoft later rolled out cumulative patches to Insiders to fix the original data loss issue, plus some other problems that came to light, including a problem extracting files from zip archives. Clearly, Microsoft decided to carry out more comprehensive testing before the update was released again as it took over a month to resurface. Windows 10 and Windows Server 2016 There are 9 critical updates for Windows 10 this month. CVE-2018-8544 fixes a problem with how Visual Basic Script (VBS) handles objects in memory that could allow an attacker to run arbitrary code in the context of the logged in user. All the other critical vulnerabilities are connected to the ChakraCore scripting engine used by Edge and can all be exploited remotely. CVE-2018-8566 patches a flaw in BitLocker that could allow an attacker with physical access to read data because Windows suspends encryption. CVE-2018-8549 fixes a vulnerability where Windows incorrectly validates Kernel driver signatures, potentially allowing unsigned kernel drivers to be loaded into memory. And CVE-2018-8417 fixes a problem that... --- ### Unifying Office 365 Sensitivity Labels with Azure Information Protection > The new sensitivity labels available in Office 365 bring marking and protection functionality for Exchange and SharePoint previously available with AIP. - Published: 2018-11-19 - Modified: 2024-09-04 - URL: https://petri.com/unifying-office-365-sensitivity-labels/ - Categories: Exchange Online, Microsoft 365, Office, SharePoint Online - Tags: AIP, Azure Information Protection, data governance, Labels, Office 365, Rights management - Article Type: How To The new sensitivity labels available in Office 365 bring marking and protection functionality for Exchange and SharePoint that was previously only available with Azure Information Protection. In this article, we consider how to migrate AIP labels to Office 365 so that users can encrypt their way to happiness. Extending Office 365 Labels to Encryption At the Ignite 2016 conference, Microsoft revealed a new data governance strategy for Office 365. The first practical implementation of parts of the new strategy appeared in April 2017 and Microsoft has been building out other pieces since, notably by adding retention policies for Teams. The Office 365 data governance story lacked the ability to encrypt sensitive content. Tenants could use rights management to protect email (and rights management is enabled automatically for all tenants), but applying encryption to protect SharePoint Online content was rudimentary compared to the out-of-the-box protection features available for email, like Encrypt-Only. In this article, I cover the introduction of sensitivity labels to Office 365 and the migration from Azure Information Protection. In part 2, we’ll look at using sensitivity labels to protect Office 365 content. Azure Information Protection Azure Information Protection (AIP) offers a solution for documents, spreadsheets, and presentations. Its labels link to rights management templates to protect documents that users labeled and offered the ability to apply other visual markings to highlight the sensitivity of content such as watermarks, headers, and footers. But AIP isn't part of Office 365 and its labels were different to the labels used in Office 365. Label Unification Now, Microsoft is “unifying” labels within Office 365. The first steps along the way are the general availability of sensitivity labels and a preview of the migration process to move AIP labels into Office 365. On a technical level, unification involves a... --- ### What’s New in Windows 10 Version 1809 For IT Professionals - Published: 2018-11-15 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-windows-10-version-1809-for-it-professionals/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 version 1809 - Article Type: Overview In today’s Ask the Admin, Russell takes look at what’s new in Windows 10 version 1809 for system administrators and developers. Windows 10 version 1809 was released October 2nd for those that manually check for updates in the Windows 10 Settings app or use one of the manual options available on Microsoft’s website here. October’s Patch Tuesday, October 9th, will see the update roll out automatically via Windows Update to compatible devices. There are no major new features in this feature update but there are many minor improvements and additions, although the list for sysadmins and developers is shorter than for business users, which you can find here What’s New in Windows 10 Version 1809 For Users on Petri. Here are the most important changes for IT pros in Windows 10 version 1809. Windows Autopilot Self-Deploying Mode If your organization is already onboard with Microsoft’s Modern Desktop deployment and management strategy for Windows 10, then the new self-deploying mode in Windows Autopilot provides zero-touch deployment. Users plug their new device into the network and power on. In this mode, users don’t need to click Next at each stage of the deployment. Using self-deploying mode, organizations can register devices in Azure Active Directory, enroll with Mobile Device Management (MDM), and push out policies and apps without any need for users to touch devices. Log In to Remote Desktop Using Biometrics Active Directory and Azure Active Directory users with Windows Hello for Business can log in to remote desktop sessions using biometrics. When you fire up a remote desktop session, Windows already knows that you’re logged in using Windows Hello for... --- ### Cross Platform Azure Az PowerShell Modules > In this post, I will discuss the preview “Az” PowerShell modules that are designed to be a replacement for the older AzureRM modules and AzureRM.Netcore. - Published: 2018-11-14 - Modified: 2024-09-04 - URL: https://petri.com/cross-platform-azure-az-powershell-modules/ - Categories: Microsoft Azure - Tags: Az, Azure, AzureRM, PowerShell, PowerShell Core - Article Type: How To Aidan takes a look at the preview “Az” PowerShell modules that are designed to be a replacement for the older AzureRM modules and AzureRM.Netcore. In this post, I will discuss the preview “Az” PowerShell modules that are designed to be a replacement for the older AzureRM modules and AzureRM. Netcore. Az, which is still in preview, is intended to replace AzureRM later this year. PowerShell – Change Is Constant Here Too Azure is constantly changing. And this is true of PowerShell too. Yes, with every month, there are new Azure features and a new set of AzureRM PowerShell modules to install or update to. But that’s not all. Last January Microsoft launched a new form of PowerShell called PowerShell Core 6. 0, describing it as: ... cross-platform (Windows, Mac OS, and Linux), open-source, and built for heterogeneous environments and the hybrid cloud. Imagine – PowerShell on Linux and MacOS and it’s the same PowerShell as on Windows. Sort of – because the PowerShell we have been using is “Windows PowerShell” and was built on . Net Framework which is only available on Windows.   PowerShell Core is built on . NET Core (CoreCLR) which is cross-platform. The Az Module Microsoft wants Azure to be all things for all people, plus they want it to be efficient. Azure’s Cloud Shell, the Azure Portal experience of PowerShell or CLI, is built on an on-demand container: You start Cloud Shell Azure commissions a container You use PowerShell or CLI In the original release of Cloud Shell, you could select a Linux (CLI) or Windows (PowerShell) experience. The Windows experience was funny; a notification would tell you that a container would... --- ### Microsoft's Releasing Tools to let Companies Build their Own Cortana - Published: 2018-11-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-releasing-tools-to-let-companies-build-their-own-cortana/ - Categories: Cloud Computing - Tags: AI, Bot, Microsoft, News - Article Type: News Microsoft has released a new set of tools that will allow companies to build their own version of Cortana. Back at Ignite in September, Microsoft showed off on stage how BWM is using Microsoft's services to build their own digital assistant. At that time, it became clear that Microsoft's path forward with a digital AI was not that Cortana was the future, it was that Cortana would be the showcase of what is possible. And that's exactly what Microsoft is announcing today. Entering preview this week is what the company calls a solution accelerator for virtual assistants. Exactly as the name suggests, for companies looking to build conversational AI bots, Microsoft has the tool to spin up these services nearly overnight. Customers do not need to build language models from scratch or understand the nuances of bot interaction but can simply plug in their own voice, name, and other basic requirements and create a Cortana-like experience quickly. Out of the box, calendar, point-of-interest, linked accounts, and to-do skills and a lot more are supported for customers. While Microsoft's digital AI hasn't exactly taken the world by storm, the company has figured out a way to monetize their tools and that is likely a much more lucrative objective than having Cortana on every device in the world. I'll be curious to see if this effort materializes better than the company's bot efforts. A couple of years ago at Build, bots were all the rage, but as time has passed, the bot revolution has yet to take off as many had expected. That's not to say that bots are... --- ### Microsoft's Bringing Cognitive Services to a Container Near You - Published: 2018-11-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-cognitive-services-to-a-container-near-you/ - Categories: Cloud Computing - Tags: Container, Microsoft - Article Type: News Microsoft is working to extend the reach of its cognitive services with the release of new features that can run in containers. If there is one thing that Microsoft is good at doing, it's shoving its services into every conceivable use-case possible. I don't mean this in a negative light, the company is good at adapting its platforms to where customers need solutions; Microsoft is announcing this week that it is adding container support to some of its cognitive services. Starting today, Microsoft will begin offering, in the preview, key phrase extraction, language detection, sentiment analysis, face/emotion detection and OCR recognition container support. The company says that they will be adding more features in the future. The goal of supporting containers with these services is to get the compute closer to the edge, where real-time analysis is needed. While you can off-load these features to other compute-stacks like the cloud, by having this type of functionality available where the data is collected, it can reduce the latency from detection to action which is a big win in time-sensitive environments. Further, containers make it easier to architect one solution and deploy it to multiple iterations of the edge and at the same time, deploy new AI models at their own pace without significant overhead. The goal is to make it easier to work with AI which is one of Microsoft's big bets for the next decade and by containerizing solutions like cognitive services, this aligns to the company's objective to bring AI to where the data is collected. In addition to these services being offered in containers, Microsoft is also enabling logo detection... --- ### Customer Lockbox Preview for Azure VMs > This post will explain what the preview for Customer Lockbox for Azure virtual machines is and how to enable it and use the feature. - Published: 2018-11-14 - Modified: 2024-09-04 - URL: https://petri.com/customer-lockbox-preview-for-azure-vms/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, Compliance, Customer Lockbox, Governance, Security, virtual machines - Article Type: How To This post will explain what the preview for Customer Lockbox for Azure virtual machines is and how to enable it and use the feature. Fear of Operator Access Despite assurances, some customers are worried that Microsoft support engineers or operators might have unfettered access to their data in the cloud. We can use bring-your-own-key encryption, such as BitLocker inside of Azure virtual machines, but that extreme action can have negative side effects. Office 365 has an opt-in feature called Customer Lockbox. This lockbox concept is not new – some of you working in controlled environments probably experience something like this: You require physical access to a server It is required that you get sign-off from one or two managers You bring the signed form to Security You are granted one-time access to the computer room or rack in question The Lockbox concept in Office 365 works as follows: You open a support call with Microsoft The support engineer requests access to something in your subscription You grant access via the Office 365 Admin Portal This feature is being brought to Azure, starting with a preview for Azure virtual machines: You open a support call about an Azure virtual machine with Microsoft The Microsoft support engineer has no access to the machine and asks for access Anyone marked as the “owner” of the subscription will be notified of a support engineer request The owner can grant access to the support engineer via Customer Lockbox in the Azure Portal Granting Microsoft access via the Customer Lockbox for Azure As you’ll see later in this article, this just in... --- ### Dutch Report Slams Microsoft for GDPR Violations in Office > A report prepared for the Dutch Government slams Microsoft for GDPR personal data violations discovered in Office 2016 and Office 365. - Published: 2018-11-14 - Modified: 2024-11-19 - URL: https://petri.com/dutch-report-slams-microsoft-gdpr-violations/ - Categories: Microsoft 365, Office - Tags: click-to-run, GDPR, Office 2016, Office 365, Telemetry A report prepared for the Dutch Government slams Microsoft for GDPR personal data violations discovered in Office 2016 and Office 365. The best intentions lie behind the amount of telemetry sent back to Microsoft for user actions and the audit data gathered by Office 365, but GDPR makes it clear that personal data must be protected, and Microsoft might be failing. Dutch Government Data Assessment and Office A blog posted on November 13 by the Privacy Company in the Netherlands slams Microsoft for the amount of telemetry and diagnostic data gathered by Office applications without customer control. The report is based on work done for the Dutch SLM Rijk organization, which deals with Microsoft for procurement of its services for use within the Dutch government. The information presented is after a Data Protection Impact Assessment (DPIA) done by the Privacy Company for SLM Rijk. Under the European Union’s General Data Protection Regulations (GDPR), companies must perform a DPIA for new high-risk processing projects. To get the full picture, you can download and read the complete PDF of the complete DPIA. Largescale Covert Collection of Personal Data The original focus of the DPIA considered the telemetry gathered by Windows 10 Enterprise but switched to Office 2016 (MSI and Click to Run) and the Office online apps as used by Office 365. According to the report, Microsoft told SLM Rijk that 23,000 to 25,000 different events are gathered by Office and sent to Microsoft for analysis by between 20 and 30 engineering teams. Although this isn't the first time that people have raised concerns about the collection of diagnostic data for Office (here's an example), the Dutch report calls this activity “large scale and covert collection of personal data” and points out that there’s no way for an individual user or an Office 365 admin to turn off the collection. On... --- ### Microsoft Re-Releases Windows 10, 1809 - 30 Month Support Window Starts Today - Published: 2018-11-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-re-releases-windows-10-1809-30-month-support-window-starts-today/ - Categories: Windows 10 - Tags: News, Windows 10, Windows 10 1809 - Article Type: News Microsoft is re-releasing Windows 10 1809 and the company is promising a commitment to improved quality but the question is if they really mean it this time or if they will quickly revert to their old ways. To say that 2018 has been a rough year for Windows is likely an understatement; with two delayed releases of Windows 10 and activation issues, the year can't come to an end soon enough. But if you have been waiting for version 1809, Microsoft is releasing the update to Windows 10 today. Early last month, Microsoft pulled 1809 after it was discovered to be deleting user data for a limited number of users. Even though the impact of the bug was a fraction of one percent, when you are talking at a scale of 700 million users, the ramifications would be widespread if the update was delivered to everyone. The company ultimately made the right decision to pull the update and now that the deletion bugs have been squashed, 1809 is available once again. But, unlike the release earlier this year where Microsoft aggressively rolled out 1803, the company is slowing down the cadence this time around. More importantly, for commercial customers, today starts the 30-month servicing windows; this applies for all updates including Windows 10 and Windows Server 2019. It's no secret that Microsoft has had a few issues with the quality of Windows 10 updates and the company is publicly stating that they are working to improve the hardening of each release before it makes its way to the public. The company has announced today that they will be increasing their communication regarding each build of Windows as well as doing a deep dive into their... --- ### What to Expect when you Migrate to SharePoint Online - Published: 2018-11-13 - Modified: 2024-09-04 - URL: https://petri.com/what-to-expect-when-you-migrate-to-sharepoint-online/ - Categories: SharePoint - Tags: migration, SharePoint - Article Type: Overview As Microsoft begins to roll out the next generation of on-premises version of SharePoint, you may be considering moving to SharePoint online and here's what to expect if you do make that move. Have you really thought about what happens when you migrate to SharePoint Online? Sure, you have thought about how great it will be not to manage servers anymore. And of course, not having to ever think about migrations or patching again is glorious. But what else happens? What changes? It turns out there are a lot more benefits and things to think about then how your Minesweeper skills will improve when you don’t have to manage infrastructure anymore. Take a few minutes with me now and let’s talk about how things evolve in the cloud. All done through the eyes of the customers I have been talking to as they make the transition. All of this should help you plan your migration better. Workflows don’t have to be from 2010 I had the strangest conversation with a client who is migrating from SharePoint 2010 to 2016 the other day. They asked what seemed like a simple question “What do I use for SharePoint Workflows on-prem? ” Are you ready for the mind-twisting answer? “For SharePoint 2016 you use SharePoint Designer 2013 to create SharePoint 2010 workflows. ” That feels... . Wrong. But that is the default state. With SharePoint online you can continue some form of that madness using SharePoint Designer (SPD) 2013 but why? Instead, with SharePoint Online, you can now leverage Microsoft Flow to build workflows. So, step away from SPD and step into Microsoft Flow. It is included for free with most Office 365 licenses, so it most likely isn’t... --- ### What Does IBM’s Acquisition of Red Hat mean for the Hybrid Cloud? - Published: 2018-11-13 - Modified: 2024-11-19 - URL: https://petri.com/what-does-ibms-acquisition-of-red-hat-mean-for-the-hybrid-cloud/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Hybrid Cloud, Microsoft Azure, Windows Server 2016, Windows Server 2019 - Tags: Azure, Cloud, cloud computing, hybrid cloud, linux, Windows Server 2016 - Article Type: Overview A lot is changing in the world of Hybrid Cloud and IBM is making a big play to win the segment by purchasing Red Hat. There’s little doubt that the majority of businesses have been moving to the hybrid cloud. The hybrid cloud provides all the benefits of on-premise computing with the flexibility and cost savings of the cloud. Businesses can leverage their investments in their existing infrastructure and applications to take advantage of the cloud where it makes sense for new applications and add resources on demand. Gartner Research estimates that 72% of all enterprises have a hybrid cloud strategy. It’s no secret that to date the cloud market has been dominated by Amazon AWS and Microsoft Azure. IBM has been a distant number four in the cloud market behind Amazon AWS, Microsoft Azure and Google Cloud. IBM is looking to change that and to evolve from its former mainframe-centric orientation to a top tier hybrid cloud provider. To make that transition IBM has recently announced that it will be buying Red Hat for $34 billion which equates to $190 per share. IBM has stated that it expects the hybrid market to top $1 trillion. IBM and Red Hat have had a partnership for the past twenty years and both have significant investments in open source. This new merger will enable them to create a new hybrid cloud platform using IBM Cloud Private and Red Hat OpenShift as the foundation. This new platform is geared to support modern container-based Kubernetes application development and it is intended to allow developers to deploy new applications faster and to take advantage of IBM’s cloud-based services such as... --- ### How To Install Puppet Enterprise on Red Hat Linux - Published: 2018-11-12 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-puppet-enterprise-on-red-hat-linux/ - Categories: Cloud Computing - Tags: cloud computing, Compliance, DevOps, linux, Puppet Enterprise, Security, Windows - Article Type: How To Russell shows you how to install Puppet Enterprise server version 7 on a Red Hat Linux VM running on Hyper-V. In a previous article, I showed you how to install open source Puppet 5 on Red Hat Linux. Today, I’m going to show you how to install Puppet Enterprise, which comes with extra features, including reporting, interactive dependency visualizations, event inspection, role-based access control, and integration with Active Directory and LDAP to name just a few. If you missed the previous articles on setting up Puppet in Red Hat Linux, I recommend looking here to learn how to get up and running with Red Hat Linux on Hyper-V. You can skip the second article if you want to install Puppet Enterprise server instead of open source Puppet. Install and Configure Puppet 5 Part 1: Set Up Red Hat Linux in Hyper-V Install and Configure Puppet 5 Part 2: Set Up Puppet Download Puppet Enterprise The open source version of Puppet is easier to install, because you can install it using a package manager like apt-get or yum. But if you want to install Puppet Enterprise, you’ll need to register with Puppet and download the package manually. If you haven’t already registered, you can do so here and download the Puppet Enterprise Master package for RHEL. Because Puppet doesn’t provide a direct download link, you can’t use a command-line utility, like wget, to download the package. You’ll need to use a browser. Once you’ve downloaded the package, start your Red Hat Linux VM and log in as root. Let’s make sure that Red Hat is up-to-date using the yum... --- ### Surface Go with LTE Arrives November 20th, Starting at $679 - Published: 2018-11-12 - Modified: 2024-09-04 - URL: https://petri.com/surface-go-with-lte-arrives-november-20th-starting-at-679/ - Categories: Hardware - Tags: Microsoft, News, Surface Go, Surface Go LTE - Article Type: News Microsoft's Surface Go with LTE arrives later this month but it won't come cheap. We knew it was coming and now we know the details, Microsoft's Surface Go with LTE arrives later this month. And if you are looking to buy the new hardware, pre-orders are opening up today. The Surface Go with LTE is exactly what it sounds like, the smaller tablet with the ability to connect directly to a cellular network. For consumers, the entry price will set you back $679 and for commercial customers, the price is $729; you are paying more for the higher SKU of Windows 10. If you are in the US or Canada, the device arrives on the 20th of this month, and a few days later on the 22nd, it will reach much wider availability. The device will come with an Intel Pentium Gold 4415Y processor, 8GB of RAM and you will have the option of 128 or 256 GB of storage. While not everyone needs LTE connectivity, for first-line workers, those who work in the field, and business travelers, having connectivity anywhere they go is a valuable asset. Microsoft historically ships its LTE variants a few months after the initial availability of the device but I do hope that one day they will ship LTE devices when the products are announced. This update is neither groundbreaking nor revolutionary but fills the gap in the lineup and is one of the most requested features for the Surface Go. Considering that the Go fits into the ultra-mobile category, it wouldn't surprise me if the Go... --- ### Microsoft Plans New Migration Tools to Move G Suite to Office 365 > Microsoft plans to deliver new migration tools to move Google G Suite email, contact, and calendar data to Office 365 (which means Exchage Online) by Q2 2019. - Published: 2018-11-12 - Modified: 2024-09-04 - URL: https://petri.com/new-migration-tools-g-suite-to-office-365/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, G Suite, Google, migration, Office 365 - Article Type: News Microsoft plans to deliver new migration tools to move Google G Suite email, contact, and calendar data to Office 365 (which means Exchage Online) by Q2 2019. The new tools are likely to move from the existing implementation built around the antique IMAP4 protocol, which only covers email and is prone to throttling by Google. Moving G Suite to Exchange Online Now included in the Microsoft 365 Roadmap, Microsoft is on course to deliver tools to move email, calendar, and contacts from Google G Suite to Office 365 (in reality, to Exchange Online) with an expected availability in the second quarter of 2019. It's hardly a surprise that Microsoft should focus on what might be the only mainstream cloud competitor for Office 365. A case can be argued that these are tools that Microsoft should have had years ago, but perhaps the real reason why Microsoft is making the moves now is that migration from the Exchange on-premises installed base is tailing off (Office 365 is now at 155 million active users). If this is the case, then capacity might be available in Microsoft's FastTrack organization to take on new challenges. After all, Office 365 needs more fuel to maintain its growth. IMAP Migration Already Available Microsoft already offers guidance to migrate mailboxes from G Suite to Exchange Online using IMAP and the Exchange Mailbox Migration service, and there are ISV products available to help too. What's changing is that Microsoft is now going to migrate calendar and contact data, which probably means that they need to use Google's REST-based APIs (for example, the calendar API) as the now-antique IMAP protocol only handles messages. Moving away from IMAP has a further advantage in that the throttling Google applies on data transfer might not be quite so evident with their own APIs. I expect Microsoft to continue... --- ### 7 Ways to Authenticate Users and Devices in Windows 10 - Published: 2018-11-09 - Modified: 2024-09-04 - URL: https://petri.com/7-ways-to-authenticate-users-and-devices-in-windows-10/ - Categories: Windows 10 - Tags: Active Directory, Authentication, Azure Active Directory, Microsoft Account, Security, Windows 10 - Article Type: Overview In today’s Ask the Admin, I’ll look at all the different ways Windows 10 users and devices can authenticate with Azure AD, Active Directory, Microsoft, and the local security manager. Windows 7 offered just two ways to log in. Either with a local user account or if the device is joined to a domain, an Active Directory account. But in Windows 10, Microsoft supports a much wider variety of sign-in options, largely to support cloud and hybrid cloud scenarios. In this article, I’ll look at the available options for signing in to Windows 10. 1. Windows 10 Local Account Signing in with a local account is still possible in Windows 10. But Microsoft really doesn’t want you to do it. Whether you are installing Windows, running the OOBE setup experience, or configuring a new user account in the Settings app, Microsoft makes it hard for you to set up a local account. 2. Microsoft Account A Microsoft Account is the default way consumers log in to Windows 10. Microsoft Accounts are those associated with Microsoft’s services, like Outlook and Skype. To use these services, you need a Microsoft Account. When you log in to Windows 10 with a Microsoft Account, you can access Microsoft’s services without entering your username and password each time. Secondly, your files, photos, contacts, and settings can follow you securely to any device where you log in with the same Microsoft Account. 3. Windows Server Active Directory Join In the same way that Windows 7 could be joined to a domain, Pro, Enterprise, and Education editions of Windows 10 can also be joined to an Active Directory (AD) domain. The only difference is that joining a... --- ### With Windows 1809 Delayed, OEMs are Shipping New Devices With Unsupported Software - Published: 2018-11-08 - Modified: 2024-09-04 - URL: https://petri.com/with-windows-1809-delayed-oems-are-shipping-new-devices-with-unsupported-software/ - Categories: Windows 10 - Tags: 1809, News, Windows 10 - Article Type: News Because Windows 10 1809 is delayed, Microsoft's partners are now shipping new hardware running on unsupported software. In late September, Microsoft signed off on the latest version of Windows 10, known as 1809. This version of Windows was released in October and after it was discovered that it was deleting user data, it was quickly pulled. After it was pulled, the company uncovered another data deletion bug that was related to zip files. And while the company has released a new version of 1809 to insiders, for those who are not participating in this release, the company is not communicating anything about when it will be released; it could be tomorrow or it may not arrive until December. For consumers, this isn't all that big of a deal. Even for corporate customers, this does not impact anyone negatively other than for planning purposes, this could shift a few plans. But for OEMs, this is a major headache and having talked to a couple of them off the record, they are not only stuck between a rock and a hard place, but they are also dealing with shipping hardware on untested software. It's no secret that the holiday shopping season is a crucial time for every retail company. Black Friday got its name from being a day when retailers would become profitable, or move into the black, for their annual sales and this year is fraught with challenges because of the delay of 1809. For any OEM who built a laptop and was planning to ship it this fall with 1809, the challenges here are obvious... . --- ### Windows 10 Activation Servers Hit A Snag, Deactivates Legitimate Installs of Windows - Published: 2018-11-08 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-activation-servers-hit-a-snag-deactivates-legitimate-installs-of-windows/ - Categories: Windows 10 - Tags: Activation, News, Windows 10 - Article Type: News If your install of Windows 10 is suddenly no longer activated, Microsoft is aware of the issue, but we don't know when this problem will be resolved. While we sit and wait for Microsoft to figure out what is wrong with Windows 10 1809 that was released and then pulled, the company is dealing with another issue this week. If you have suddenly found your install of Windows 10 to no longer be activated, you are not alone. There is a lengthy support thread over in the Microsoft Answer forums where users are complaining that their install of Windows 10 Pro is no longer valid. This issue does not appear to be isolated and is impacting a significant number of users. The thread, at the time of this posting, is over 11 pages in length, all with customers who are reporting that their install is no longer activated. In a support chat, a Microsoft rep stated the following: Microsoft has just released an Emerging issue announcement about current activation issue related to Pro edition recently. This happens in Japan, Korea, American and many other countries. I am very sorry to inform you that there is a temporary issue with Microsoft's activation server at the moment and some customers might experience this issue where Windows is displayed as not activated. Our engineers are working tirelessly to resolve this issue and it is expected to be corrected within one to two business days The good news is that based on this information, Microsoft is aware of the problem, but what we don't know is how long it will take for it to be resolved. For customers that... --- ### Exchange Online Introduces Office 365 Privileged Access Management > Microsoft has made privileged access management (PAM) generally available for Office 365, but in reality it's only Exchange Online that supports the new feature. - Published: 2018-11-08 - Modified: 2024-09-04 - URL: https://petri.com/exchange-online-office-365-privileged-access-management/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Elevated Access, Exchange Online, Office 365, PAM, Privileged Access - Article Type: How To Microsoft has made privileged access management (PAM) generally available for Office 365, but in reality it's only Exchange Online that supports the new feature. This isn't surprising because Exchange has a well-developed role-based access control system that the PAM developers can leverage, but it does pose a question about how they'll extend PAM to other Office 365 workloads. Controlling Elevated Access to Office 365 Traditionally, on-premises administrators are all-powerful and can access anything they want on the servers they manage. In the multi-tenant Office 365 cloud, Microsoft’s datacenter administrators are both few in number and constrained in terms of what they can do, and tenants must grant Microsoft access to their data if needed to resolve support incidents. Tenants with Office 365 E5 plans can use the Customer Lockbox feature to control support access to tenant data. Privileged Access Management (PAM) for Office 365 is now generally available. PAM is based on the principle of Zero Standing Access, meaning that administrators do not have ongoing access to anything that needs elevated privileges. To perform certain tasks, administrators need to seek permission. When permission is granted, it is for a limited period and with just-enough access (JEA) to do the work. Figure 1 shows how the concept works. Figure 1: : Privileged Access Management (image credit: Microsoft) This article examines the current implementation of PAM within Office 365. I don’t intend to repeat the steps outlined in the documentation for privileged access management or in a very good Practical365. com article here. Instead, I report my experiences of working with the new feature. Only Exchange Online Exchange is a large part of Office 365, but it’s only one workload. The first thing to understand about PAM is that it only covers Exchange Online. It’s unsurprising that the PAM developers focused on Exchange. Its implementation... --- ### Self-Encrypting SSDs Vulnerable to Attack, Microsoft Warns - Published: 2018-11-07 - Modified: 2024-11-19 - URL: https://petri.com/self-encrypting-ssds-vulnerable-to-attack-microsoft-warns/ - Categories: Security - Tags: bitlocker, encryption, Security, Self-Encrypting Drives, Windows 10 - Article Type: News Researchers from Radboud University in the Netherlands, Carlo Meijer and Bernard van Gastel, have published a paper claiming that encryption on SEDs can be bypassed using different attack vectors Software-based full-disk encryption (FDE) has been around for a long time. But newer solid-state disks (SSDs) use hardware-based FDE, where the cryptographic operations are performed on an AES coprocessor baked into the disk rather than on the host computer’s CPU. These types of disk are sometimes referred to self-encrypting drives (SEDs). But researchers from Radboud University in the Netherlands, Carlo Meijer and Bernard van Gastel, have published a paper claiming that encryption on SEDs can be bypassed using different attack vectors. SEDs are popular because they don’t impact performance like software-based FDE and were not supposed to be prone to cold boot and DMA attacks, where attackers can steal the encryption key from the computer’s RAM. But the new research suggests that SEDs are also susceptible to these types of attack. To support Suspend-to-RAM (S3), a secret key is usually stored in RAM so that users don’t need to enter a password to decrypt the disk when the computer wakes from sleep. BitLocker uses this method. And if the secret key is moved to the SSD, its controller is just as susceptible as the computer’s RAM. Master Password Capability In addition to the Media Encryption Key (MEK) that is required to decrypt an SED, manufacturers set a master password. If an attacker finds out the master password, which is written in the drive’s manual, then they can decrypt data without the MEK. The paper suggests that users must either change the master password or set the disk’s Master... --- ### EUC and VMware Cloud on AWS Announcements from VMworld Europe 2018 - Published: 2018-11-07 - Modified: 2024-09-04 - URL: https://petri.com/euc-and-vmware-cloud-on-aws-announcements-from-vmworld-europe-2018/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, Virtualization, VMware - Tags: Cloud, cloud computing, Disaster Recovery, hybrid cloud, Virtualization, vmware, vSphere - Article Type: News At this year’s VMworld Europe 2018 in Barcelona VMware made a number of announcements about the new enhancements to their End User Computing and VMware Cloud on AWS solutions. To get more detailed information on these announcements I spoke with Renu Upadhyay, Sr. Director, Product Marketing for End-User Computing at VMware and Ivan Oprencak, Director of Product Marketing for VMC at VMware. End User Computing (EUC) becomes broader and deeper Renu pointed out that modern management is nontrivial and that the new enhancement to Workspace One makes it an open and interoperable management platform that provides both broad and deep management capabilities. First, leveraging their close relationship with DELL, VMware announced the availability of Dell Provisioning for Workspace ONE with ProDeploy which is essentially a service from Dell that preconfigures PCs from the factory and ships them to end users. These systems have all the required applications pre-loaded providing a ready-to-work experience right out of the box. Workplace One also offers a new Intelligence Automation Connector which is a cloud-based service that provides automated diagnostic capabilities. The Intelligence Automation Connector can automatically generate helpdesk tickets for various service desk platforms including Slack and ServiceNow. In addition to the existing Windows support for Windows sensors, Workspace ONE also now includes sensors for MacOS. These sensors enable IT administrators to query deep system attributes including the status of firmware, BIOS, peripherals, and installed applications. Workspace One is now integrated with Flexera AdminStudio. Flexera AdminStudio is a popular application deployment tool... . --- ### Microsoft's Plan to Automatically Email Office 365 Users Is A Rare Disconnect - Published: 2018-11-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-plan-to-automatically-email-office-365-users-is-a-rare-disconnect/ - Categories: Microsoft 365 - Tags: Microsoft, News, Office 365 - Article Type: News Microsoft has scrapped plans to send out tips and tricks email to Office 365 customers after harsh feedback from IT pros. Microsoft's Office 365 is the crown jewel for the company's software-as-a-service model; the platform has passed 155 million commercial customers and shows little signs of slowing down. So when the company announced that they would start automatically emailing users of Office 365 and Microsoft 365 tips and tricks, to get the most out of their subscription, it was a record-scratch moment. Microsoft was planning, in late November, to start emailing users and had begun notifying admins of this practice. It may seem harmless to want to help your customers learn more about the product they are paying for but that completely misses the issue. Especially for Microsoft 365 and I'd be willing to be a large portion of the user-base of commercial Office 365, has no idea what either product is; they simply know it as Office and Windows. That point aside, emailing your paying customers with what will likely be viewed as spam is a bold move and the feedback has been harsh. So harsh in fact that the company has put a hold on rolling out this practice while it reviews the messages it has received. As it should be, Microsoft does not fully know how each company uses each platform and sending content to the end user about how to get the most out of Yammer, when a company may not be using the software, is filling corporate inboxes with junk. And for backend staff, this could cause unnecessary inquiries about software they don't use... --- ### Acompli Founder and Cortana Boss, Javier Soltero, To Depart Microsoft - Published: 2018-11-06 - Modified: 2024-09-04 - URL: https://petri.com/accompli-founder-and-cortana-boss-javier-soltero-to-depart-microsoft/ - Categories: Office - Tags: Cortana, Microsoft, News, Office, Outlook - Article Type: News After acquiring the app, Microsoft rebranded it to Outlook and the rest is history; the email app remains one of the top downloaded applications for iOS and Android. But the founder, Javier Soltero, is departing Microsoft. One of the best acquisitions Microsoft has made in the past couple of years was of Acompli, an email application for iOS and Android. This app, at the time, was one of the best email tools available and Microsoft snatched it up. After acquiring the app, Microsoft rebranded it to Outlook and the rest is history; the email app remains one of the top downloaded applications for iOS and Android. But the founder, Javier Soltero, is departing Microsoft. Soltero, who recently moved over to run Cortana, will depart with Andrew Shuman taking controls of the digital assistant. Last month, Cortana was one of the teams that was moved under the Office org which makes his departure not all that surprising; Mary Jo Foley is also hearing the same thing as well. Insiders are mixed on the move, many enjoyed Soltero's work with Outlook but traction with Cortana has been lackluster at best. With Shuman taking back control of the digital assistant, I'll be curious to see if the platform gets a renewed focus or if it continues to flounder. Any way you look at it, Cortana is now being tossed around inside of Microsoft and has been without a solid leader for the past couple of years. While Microsoft hopes that by putting the digital AI inside of Office that it will find a new home (and hopefully traction), it's fair to say things aren't going well for the platform. Update: Javier has announced on Twitter that he is leaving... --- ### Teams PowerShell Module Gets a Refresh > Microsoft has updated the Teams PowerShell module to version 0.9.5. The best thing about the refresh is that the Get-Team cmdlet works. - Published: 2018-11-06 - Modified: 2024-09-04 - URL: https://petri.com/teams-powershell-module-refresh/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Get-Team, PowerShell, Teams Microsoft has updated the Teams PowerShell module to version 0.9.5. The best thing about the refresh is that the Get-Team cmdlet works. Well, it can now retrieve a full list of Teams in an Office 365 tenant. It would be good if Get-Team returned more data and supported server-side filtering, but it's a start. New Console, New Module Given that the Teams and Skype for Business Online Admin Center recently introduced support for team management, it is unsurprising that Microsoft has refreshed the Teams PowerShell module. You can now download version 0. 9. 5 from the PowerShell Gallery). In terms of the administrative control over Teams, the module has improved steadily from the first release and is now capable of handling most of the administrative operations available in the Teams and Skype for Business Online Admin Center. Cmdlets are available to create teams (including a team for an existing Office 365 group), list all teams in the tenant, update settings for teams, and create new channels. Because the module is still evolving, some change is inevitable before the final release. Even with this warning, you can depend on the current release for production use. Download from the Gallery Before you can use the Teams module, you must download it from the PowerShell gallery and then install the module on your PC. To update to the latest release, use PowerShell with administrator permissions and run the following commands to remove the previous version and download and install the latest module. Uninstall-Module -Name MicrosoftTeams Install-Module -Name MicrosoftTeams -Repository PSGallery If you haven’t ever installed the module, you naturally don’t need to remove it. After installing the module, you run the Connect-MicrosoftTeams cmdlet to connect to the Teams service. Get-Team is Useful Up to 0. 9. 5, the Get-Team cmdlet suffered from the severe restriction of only being able... --- ### What’s New in Windows 10 Version 1809 For Users - Published: 2018-11-05 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-windows-10-version-1809-for-users/ - Categories: Windows 10 - Tags: Productivity, Windows 10, Windows 10 version 1809 - Article Type: Overview In today’s Ask the Admin, I’ll look at what’s new in Windows 10 version 1809 for business users. Windows 10 version 1809 was released yesterday for those that manually check for updates in the Windows 10 Settings app or use one of the manual options available on Microsoft’s website here. October’s Patch Tuesday, October 9th, will see the update roll out automatically via Windows Update to compatible devices. There are no major new features in this feature update but there are many minor improvements and additions, although nothing that I would consider a ‘must have’. Nevertheless, along with some fit and finish, the update should make using Windows a better experience. What follows isn’t a complete list but includes what I think are the most significant changes for business users. Your Phone App Available now in Windows 10 version 1809 in preview form, the Your Phone app allows users to access recent photos and send SMS messages directly from their PC. The only requirements are that Android should be version 7. 0 or higher and the Microsoft Apps ‘app’ must be installed on the phone. iOS users can only share URLs between PC and phone. Snip & Sketch A new screen clipping app and function replaces the Snipping Tool. You can access snip by pressing WIN+SHIFT+S and edit your clips in the Snip & Sketch app. The Snipping Tool is still included in Windows 10 but is now deprecated. There are still many different ways to take a screenshot on Windows devices, and you can learn how on this post. Cloud Clipboard Not enabled by default, the... --- ### Azure Launches DC-Series Confidential Compute VM Preview > Microsoft launched a new kind of Azure virtual machine using new Intel hardware features to offer a secure computing platform for secure data processing. - Published: 2018-11-05 - Modified: 2024-09-04 - URL: https://petri.com/azure-launches-dc-series-confidential-compute-vm-preview/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, Confidential Compute, DC-Series, Generation 2, Security, SGX, TEE - Article Type: Overview Microsoft has launched a new kind of Azure virtual machine that uses new Intel hardware features to offer a secure computing platform for data security-sensitive operations. Microsoft has launched a new kind of Azure virtual machine that uses new Intel hardware features to offer a secure computing platform for data security-sensitive operations. The Need for Security There are countless ways to secure data in Azure. At the edge, we have network security groups, the web application firewall, third-party network virtualization appliances (firewalls) from the likes of Watchguard or Checkpoint, and the brand new Azure Firewall. But that’s just edge security. In the virtual machine, you have Microsoft or third-party anti-malware, but that’s only for known software-based attack patterns. SQL Server and Azure SQL have their own firewalls, transparent data encryption, column encryption, and data masking. Azure storage also offers encryption at rest. KeyVault can secure secrets with FIPS levels of defense but that’s only good for specific secrets such as keys or passphrases. Azure Security Center can detect an attack in progress, but wouldn’t it be better to prevent data loss? The recent British Airways compromise showed us that hackers can be quite creative. This was reinforced by the recent announcement of a vulnerability that was found by Facebook. The value of the data that online services can hold is incredible and justifies the efforts that are made by professional criminal organizations. With data encryption at rest becoming more common, and Azure is increasingly enabling it by default, criminals are willing and able to compromise code to capture data while it is being processed. Confidential Computing The next evolution of security is to protect data while... --- ### Using Exchange Address Book Policies with Teams > Teams borrows from many other Office 365 applications to build its functionality.The latest component taken is Exchange Online address book policies. - Published: 2018-11-04 - Modified: 2024-09-04 - URL: https://petri.com/using-exchange-address-book-policies-teams/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office - Tags: ABP, Address Book Policy, Exchange Online, Teams - Article Type: How To Teams borrows from many other Office 365 applications to build its functionality.The latest component taken is Exchange Online address book policies, used to segment the directory and stop users getting in touch with other people in the organization outside the scope of a policy. But it's an imperfect and partial block, and if you really want to stop people talking, you'll have to do a lot more work. Teams Uses the Office 365 Toolbox One of the nice things about Teams is that it makes full use of components available in the Office 365 software toolbox. There’s no question about reinventing wheels when perfectly good wheels are available for reuse. Teams uses Exchange for a calendar and compliance records, SharePoint for document storage, OneDrive for Business for personal sharing, and so on. It’s absolutely the right attitude to take. The latest component adopted by Teams is directory segmentation, or the ability to give different views of directory contents to selected users. This feature is called Address Book Policies (ABPs) and first appeared in Exchange 2013. Directory Views Directory segmentation is often used by organizations like conglomerates made up of different operating companies or schools that have different colleges. The organization has a common infrastructure (in this case, Office 365), but wishes to limit what users can see. For example, they might decide that a user can only see other employees in the same company, or in the same country. An address book policy implements the limitation by giving users a customized view of the Global Address Book (GAL). An ABP is made up of four parts: A custom GAL. A custom Offline Address Book (OAB). One or more custom address lists. A custom room list. If you don’t use ABPs, Exchange Online mailboxes use the default GAL, OAB, and address lists. Filtered Views Creating an ABP is a matter of defining the recipient filters for Exchange... --- ### Everything You Need to Know About Azure Infrastructure – October 2018 Edition - Published: 2018-11-03 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-october-2018-edition/ - Categories: Microsoft Azure - Tags: App Services, ASR, Availability Zones, Avere, Azure AD Domain Services, Azure Files, Azure Firewall, Azure Migrate, Azure Monitor, Azure Portal, Azure Security Center, Azure Site Recovery, Azure Virtual Machines, Customer Lockbox, DevTest Labs, Ephemeral OS Disk, Front Door, Germany, Governance, linux, Managed Disks, Microsoft Azure, open-source, PowerShell, storage, vFXT, Virtual Machine Scale Set, virtual machines, VMSS, Windows Server 2019, WS2019 - Article Type: Overview October was a busy time for Azure announcements, here's what you need to know about the announcements last month. Intro You might think that Microsoft had no more news after the crazy announce-a-palooza that was Ignite, but you would be wrong! Some things were quietly released the following week, and then new features started to appear a week later. In The Cloud, no one can hear you scream “no more changes”. October was a very busy month for those of us working in the community. It’s typically a very big conference month with lots of sessions diving deep into the new information from Microsoft Ignite. I helped organize and spoke at an event in Dublin (Ireland) that my employer sponsored. The theme of that event was change – the idea that cloud has changed business, and whether you like it or not, you must go through a digital transformation or someone else will do it for your employer/competitor instead of you. We need to change how we learn, how we design, and how we maintain systems – the days of 1 web server + 1 database server and upgrade machines/skills every 6-9 years are long over. Ephemeral OS Disk Microsoft has announced an Ephemeral OS Disk in limited preview for virtual machine scale sets (VMSS). In case you don’t know, a VMSS is a cluster of virtual machines that perform a specific task. I can tell Azure to create up to 1000 identical virtual machines to run a task, such as a job or to host a service. Azure can measure the performance of the VMSS and... --- ### Paul Thurrott's Short Takes: November 2 - Published: 2018-11-02 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-november-2/ - Categories: Cloud Computing - Tags: News Because it's summer in November, this edition of Short Takes looks at cloud comparisons, Chinese software piracy, Microsoft loves the military, LinkedIn employees love Google, and much, more more. "Have you reported this in the Feedback Hub? " Because it's summer in November, this edition of Short Takes looks at cloud comparisons, Chinese software piracy, Microsoft loves the military, LinkedIn employees love Google, and much, more more. Is the Microsoft cloud bigger than the Amazon cloud? Every quarter, Microsoft talks up a non-business called Commercial Cloud that includes cherry-picked parts of its real business units that add up to something that looks competitive with Amazon. But this diversionary waving of hands may not be so illusory: According to the Cloud Security Alliance, Microsoft Azure's share of the public cloud market has surged to 29. 4 percent over the past year while Amazon's has fallen, from 60 percent in 2017 to just 41. 5 percent. And Forbes says that Microsoft is already winning by revenue: The software giant's cloud revenue was $26. 7 billion over the previous 12 months, compared to $23. 4 billion for Amazon. "What It Means When Microsoft Stops Supporting Your Version of Windows" It's on a farm, chasing rabbits. Chinese piracy of Windows is in the news again. For some reason. It's time to party like it's 1999 again: Former Microsoft CEO Steve Ballmer said in an interview this week that 90 percent of Chinese firms were using Windows but only 1 percent were paying for it. The damage to Microsoft? $10 billion or more, he says. But the question here, of course, is why he's even talking about this. He's no longer at Microsoft,... --- ### Everything you need to know about Office 365 – October 2018 > Read about the news and notes for Office 365 for October 2018. It includes Teams, OneDrive, Microsoft 365, Halloween, and too many hastags. - Published: 2018-11-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-office-365-october-2018/ - Categories: Microsoft 365 - Tags: Governance, Microsoft 365, Microsoft Teams, Office 365, OneDrive Microsoft keeps the updates flowing and last month, Office 365 received a number of updates that continue to enhance the platform. Hi, all of you ghost and ghouls. I just finished 2 hours of trick or treating in the rain so I thought there was no better time to finish up this article. Like my kids’ candy bags Office 365 is a mixed bag of surprises that you just find something new and awesome every time you look. This month lets dig into the bag and see what we come up with. And unlike the bag of candy, consuming this entire article will not get you a sugar high. Sorry. Oh, and this is the hashtag edition. Sorry for that too. #NotReallySorry Do you have to log into multiple Office 365 tenants? If you answered yes then sit down, I am about to change your life. As a consultant, I have accounts in roughly 10 different clients Office 365. There is a lot of shane@ accounts out there. And it used to be to use any of them I had to fire up an in-private browser session to log in. It was terrible. Then my buddy Todd wrote the best thing written in all of 2018. How to Connect to Multiple Office 365 Accounts in your Browser without Losing Your Damned Mind. It is a stroke of genius and legitimately changed my life. Turns out Chrome has a built-in capability that makes this all so much easier. Please, read the article and the Tweet @ToddKlindt a thank you. #LifeChanged Automatically remove unused OneDrive files This is an interesting new... --- ### Everything you need to know about SharePoint – October 2018 > A day late, but not a dollar short, this will give you all of the late breaking news and notes you need for SharePoint from October 2018. - Published: 2018-11-01 - Modified: 2024-11-19 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-october-2018/ - Categories: SharePoint, SharePoint 2019, SharePoint Online - Tags: Microsoft Flow, Microsoft SharePoint Looking to see what happened in the SharePoint world last month? Look no further than Shane's coverage of all the announcements. Yeah, yeah I was supposed to publish this yesterday. My bad. The good news is if there had of been some life-changing SharePoint announcement on the 31st it would have been included in this article. Sadly, nothing life changing but one of the pieces is from yesterday so still pretty new. Yay me! So, you just sit there and enjoy your bag of candy you stole from the kids and I will catch you up on the news and notes for last month. The SharePoint Migration Tool got a facelift The SharePoint Migration Tool is the free tool that Microsoft provides to help you transition from on-prem to SharePoint Online. It may not be the be all, end all but it is part of the process for a lot of people. This month the gave it a facelift to make it look more like SharePoint Online. That isn’t terribly exciting but I thought I would use this as an opportunity to make sure you knew they do keep a running changelog of the updates here. So, if you haven’t looked at the tool lately or are waiting on it to do that “one thing” then keep your eyes peeled on that post. How to make SharePoint look prettier I am not good at making SharePoint, PowerApps, or myself look pretty. Thankfully, Microsoft released some new guidance around using their newest features to have a snazzy looking SharePoint Online site. Check it out and make your SharePoint site look... --- ### Everything You Need to Know About Windows – October 2018 - Published: 2018-11-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-october-2018/ - Categories: Windows 10 - Tags: Microsoft, Spectre, Windows 10, Windows 10 version 1809, Windows Server 2019 Microsoft bungles rollout of the Windows 10 October 2018 update, Windows Server 2019 skips RTM, and Always-Connected PCs are the next big thing for businesses. Windows 10 October 2018 Update Released and Then Pulled Windows 10 version 1809 and Windows Server 2019 were made available for download October 2nd for those who wanted to use the Media Creation Tool or click Check for updates in the Settings app. But it didn’t take Microsoft long to pull both downloads after it was discovered there was a bug that caused users to lose data during the upgrade process. In a message posted on its support site, Microsoft announced that it had paused the rollout due to reports that some users were missing files after installation in common system folders like Documents. Microsoft asked users that had already downloaded the bits to wait before upgrading until new media was released. The update had been marked for wider distribution via Windows Update on October 9th but instead, Microsoft released a new build of version 1809 to Windows Insiders to test the necessary bug fixes. A few days later, Microsoft bungled the release of an Intel HD audio driver that was pushed out automatically to Windows 10 and caused some users to lose sound completely. A fix was later released to reverse the change. And if all of that wasn’t enough, Microsoft acknowledged another problem with the October 2018 update when copying files from a zip archive. The zip and missing files problems were both reported in the Feedback Hub by Insiders during the development process. But it seems because they weren’t common problems, they fell through the... --- ### Does Your Office 365 Tenant Need Backups? > Do you need to backup Office 365 data? The question isn't simple because technology changes all the time and it's hard to backup some applications.. - Published: 2018-11-01 - Modified: 2024-12-03 - URL: https://petri.com/determining-need-office-365-backups/ - Categories: Microsoft 365, Office - Tags: Backup, Exchange Online, Office 365, OneDrive for Business, Planner, SharePoint Online, Teams Do you need to backup Office 365 data? The question isn't simple because technology changes all the time and it's hard to backup some applications like Teams and Planner because APIs don't exist. The important thing is for companies to review what data they use, the features available to them, and then figure out if any gaps exist. To Backup or Not to Backup The question whether a company using a cloud system like Office 365 should deploy third-party backups is asked frequently in the Microsoft Technical Community (here’s another post). Some people are passionate advocates for backups while others assert that backups aren’t necessary because Microsoft can be trusted to take care of the data. Indeed, the only backups Microsoft takes of customer data within Office 365 are for SharePoint Online. No backups are taken for Exchange Online, Teams, Planner, or Azure Active Directory. I've written about this topic before. Generally speaking, I'm not a huge fan of taking backups of Office 365 data unless forced into the situation by something like legal or audit requirements. This time round I want to raise the question of whether technical change within Office 365 is making the notion of backups more irrelevant over time, especially if you use the full spectrum of functionality available in the suite. Not a Simple Question Deciding whether external backups are needed isn’t a simple question and there isn’t a simple answer. Some companies operate under strict regulatory environments that are interpreted to need to need some form of external backup. Some have hybrid organizations and others are cloud-only. Some use all the Office 365 applications, while others use a limited selection. All these factors influence the choice a company might make. Among the reasons I see people cite to deploy backups for Office 365 are: Administrators purging data when they shouldn’t. Hackers... --- ### Windows Server 2019 Essentials Gets Stripped Back - Published: 2018-10-31 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2019-essentials-gets-stripped-back/ - Categories: Windows Server 2019 - Tags: Small Business, Windows Server 2019 Essentials - Article Type: News Microsoft says that it is working on some recommendations for its small business customers on how best to replace the lost features in Windows Server 2019 Essentials. Microsoft had made so little noise about the Essentials edition of Windows Server 2019 that until an announcement was made on the Windows Server blog at the beginning of September, I wondered whether Windows Server 2016 Essentials would be the last. Considering Microsoft’s push towards the cloud and subscription services, it seemed a likely outcome. And when Windows 10 version 1803 was released earlier this year, Microsoft said that the Windows Server Essentials Experience server role was no longer being developed for Standard and Datacenter editions of Windows Server and that organizations should look at Microsoft 365 for Business or use Windows Server 2016 Essentials. Therefore, it should come as no surprise that while there is an Essentials edition of Windows Server 2019, Microsoft has stated that it is very likely to be the last. And while we still get Essentials this time round, most of the features that made it unique have been stripped out. The management dashboard, and the features that were integrated into it, is gone and has been replaced by the Windows Admin Center (WAC). That means no Office 365 password sync, Client PC Backup, Remote Web Access (RWA), or the connector that made it easy to join devices to the domain and set up File History. But it is still possible to use Windows Server 2019 Essentials as an Active Directory (AD) domain controller, although like previous versions, it must be the only domain controller in the domain, host all the Flexible Single... --- ### Microsoft Stream Mobile App for iOS has arrived - Published: 2018-10-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-stream-mobile-app-for-ios-has-arrived/ - Categories: Microsoft 365 - Tags: Microsoft Stream - Article Type: Overview Microsoft Stream iPhone App has arrived and here's what you need to know. Microsoft Stream was released a while ago. I had to look it up. The date was June 2017. I have been a Stream fan since its release. I was very happy to hear that Stream was going to be the successor of the Office 365 Video Portal. Video streaming finally found it's rightful place. That's of course within Azure. Stream showed a lot of promise, with amazing features such as deep search, face recognition, automatic transcripts and much more. That said, one importing thing was missing. That was a mobile app. The wait is finally over! Microsoft release an iOS and Android App. I am an iPhone owner so I am going to take you on a brief tour through the iPhone app. Are you an Android user? No problem, just click here. Let's start! Discover videos The start screen starts with an discovery view: This view shows trending videos but you have the option to change this for yourself: You can add videos to your watchlist and, wait for it, make available offline! That's right. We can finally have videos offline available. A highly requested feature by the community. Your watchlist and offline videos are available in the my content section of the app:   As expected, you can remove offline videos and videos from your watchlist with a couple of clicks. The app runs very smoothly. Let's open a video and see what options we have available: The description allows us to like the video (likes are... --- ### Purging Offensive Material from Teams > Teams is a great place to have conversations, but sometimes certain messages need to be purged.How can Office 365 admins do this? - Published: 2018-10-30 - Modified: 2024-09-04 - URL: https://petri.com/purging-offensive-material-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: content search, Office 365, Search-Mailbox, Teams - Article Type: How To Teams is a great place to host conversations, but sometimes certain messages need to be purged. It's easy for a team owner to remove something offensive from a single channel, but what happens if someone posts in multiple channels across multiple teams. As it turns out, some manual intervention is needed. Keeping Teams Polite Teams is a nice place to discuss the issues of the day, but what happens if someone abuses the platform and sends some abusive or otherwise objectionable messages? The simple answer is that team owners should keep an eye on discussions and remove anything that shouldn’t be there. That’s OK if team owners are omnipresent and have the time and energy to check every channel in every team they own. Not every owner does so. In December 2017, I discussed the problem and reported how the Teams developed intended to respond to a Uservoice request. Not much has happened since. Now that GDPR is in force and people can ask for their personal information to be removed, it's a good time to reflect on the topic again. Tenant Administrators to the Rescue Humans being fallible, bad posts can slip through the cracks and stay undetected for a while. When an administrator learns that something unpleasant exists in Teams, they can ask the team owner to act. Or, in extreme cases, they might consider removing the offending content. A tenant administrator can add themselves as an owner, open the team, and remove the posts. Two problems exist with this approach. First, it’s manual and tiresome. Second, the poster might have posted the same message to multiple teams in the organization, meaning that we must track down and remove the message from all those teams. Finding the message in multiple teams isn’t a problem. Because Office 365... --- ### Microsoft Kills Support for Teams App on Windows 10 S - Published: 2018-10-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-kills-support-for-teams-app-on-windows-10-s/ - Categories: Microsoft 365, Microsoft Teams, Office Microsoft is ending support for its Teams app on Windows 10 S, the rug gets pulled out late next month. It is with little doubt that Microsoft looks at Teams as the future of its collaboration platform. The chat and organizational platform has quickly become the company's premier tool inside the Office 365 ecosystem and the company is investing significantly in the future of this product. So when you hear that Microsoft is killing support for a specific version of Teams, it highlights how that particular platform is clearly not receiving much attention. In this case, Microsoft is ending support for the Microsoft Teams app on Windows 10 S next month. Now, this doesn't mean that you can't use Teams with Windows 10 S, you still have the option to use the web client, but the native app will no longer be functional starting later this year on this particular instance of Windows. To me, this means that the future of Windows 10 S isn't all that bright. The SKU of Windows has failed to attract wide-support from OEMs and even Microsoft's Surface Laptop, which was used to introduce the OS last year, no longer ships with this version of Windows. Officially, Microsoft says that on November 29th, you will no longer be able to use the Microsoft Teams app with Windows 10 S. I do think the long-term plan for many of Microsoft's products will be to convert them to proper PWAs which would allow them to run in the browser, stand alone on the desktop, and also with Windows 10 S. But for now, that dream has... --- ### Microsoft's 800 Million Challenge - Published: 2018-10-29 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-800-million-challenge/ - Categories: Windows Client OS - Tags: News, Windows, Windows 10 Microsoft has shared a few statistics about Windows 10 and Windows itself which paints a picture of the challenge ahead for migration to Windows 10. Over the weekend, Microsoft updated its 'Microsoft by the Numbers' website and reiterated that there are 1. 5 billion people using Windows. While that number is clearly impressive, it also highlights a serious challenge ahead for Microsoft as the deadline of Windows 7 updates quickly approaches. As it stands now, there are roughly 700 million devices running Windows 10 and in January of 2020, Windows 7 will reach end of life and no longer receive security updates. Granted, for enterprise customers who are willing to pay, they can continue to use the OS, but it will come at a significant premium. Knowing that there 1. 5 billion active machines running Windows, with 700 million running Windows 10, that means there are roughly 800 million devices that have not upgraded to Windows 10. This is a massive opportunity for Microsoft but it doesn't quite paint the entire picture. During the company's earnings call last week, Satya Nadella said that about 50% of its commercial customers were already running Windows 10. And thanks to a post made by the company in late September, Microsoft said that Windows 10 has approximately 200 million commercial devices in use which means that the commercial install base could be around 400 million devices; these are rough numbers and don't account for PCs not connected to the Internet and other variables. We know that not every single commercial device will make the upgrade to Windows 10 before the deadline (or possibly ever) but if a majority of... --- ### Windows Defender Gets Put in the Sandbox - Published: 2018-10-29 - Modified: 2024-09-04 - URL: https://petri.com/windows-defender-gets-put-in-the-sandbox/ - Categories: Security, Windows Client OS Microsoft is putting Defender into a sandbox as the company looks to lock down the platform against future attacks. Windows Defender, the built-in antivirus protection for Windows 10, is receiving a significant update that will help make the tool more robust for detecting and protecting your device. Microsoft is making this transition for the product to further harden it from attacks and to improve its ability to handle increasingly complex malware. Because the antivirus software has elevated system permissions, this makes it a bigger target for attack. If a malicious piece of software is able to compromise the antivirus platform, in theory, it could take over the impacted system; Microsoft is moving Defender to its own sandbox and is trialing this new feature today. By moving Windows Defender to a sandboxed environment, if the application is compromised, the impact is minimal. Microsoft has a lengthy blog post, which you can read here, that describes in detail the update. While this feature may not be revolutionary, it will significantly help Defender remain a secure application in even the most hostile of environments; think of it as a security blanket, for your security blanket. Microsoft is currently enabling this functionality with Windows Insiders but if you want to force your install into a sandbox, you change the variable (setx /M MP_FORCE_USE_SANDBOX 1) and restart your machine. This functionality is supported on Windows 10 version 1703 and later. --- ### Small Businesses Targeted by 43% of Cyberattacks - Published: 2018-10-29 - Modified: 2024-09-04 - URL: https://petri.com/small-businesses-targeted-by-43-of-cyberattacks/ - Categories: Windows Client OS - Tags: Malware, Ransomware, Security, Small Business, Windows Core OS, Windows S Mode - Article Type: News According to SCORE, the US association for small businesses, a survey conducted for National Cybersecurity Awareness Month shows that 43% of cyberattacks are targeted at small businesses. According to SCORE, the US association for small businesses, a survey conducted for National Cybersecurity Awareness Month shows that 43% of cyberattacks are targeted at small businesses. Despite the devastating WannaCry and NotPetya malware outbreaks that quickly swept the globe in 2017, many small businesses are still indifferent about security. While FedEx and Maersk hit the headlines as the big victims of malware in 2017, Malwarebytes reported that 1 in 5 small and medium businesses were forced to halt operations completely and 1 in 3 were infected with ransomware. Macro-Based Malware The SCORE report says that macro-based malware was the principal means of infection, with online banking and ransomware attacks following up behind. Businesses can protect themselves from macro-based malware by running the latest versions of Office 365 and the Office suite, educating users to only download attachments from trusted senders, and disabling macros for users that don’t require the them. For more information about managing macro security in Microsoft Office, see Managing Macro Security in Office 2016 and Code Signing Microsoft Office Macros and Visual Basic for Applications on Petri. Online Banking and Ransomware Online banking customers should make sure that multifactor authentication is enabled for their accounts. Many banks force the use of multifactor authentication by default, usually with the help of a separate mobile application. Employees should be particularly aware of emails requesting personal information or login details. It’s often possible to spot fraudulent emails because of poor grammar or spelling. If in doubt, use... --- ### IBM is buying Red Hat in $34 billion Bid to Rule the Hybrid Cloud - Published: 2018-10-28 - Modified: 2024-11-19 - URL: https://petri.com/ibm-is-buying-red-hat-in-34-billion-bid-to-rule-the-hybrid-cloud/ - Categories: Hybrid Cloud - Tags: IBM, Redhat IBM is buying Red Hat to help boost its hybrid-cloud operations as well as its portfolio of security products. For the past decade, IBM has been trying to transition its aging on-premises operations and grab a slice of the cloud pie. While their efforts have been mostly without large-scale success, there have been a few bright spots during the past decade. That being said, the company does still build servers and its Watson solution has become the public face of the company. But, the company is about to make a massive change as it has announced that it will be buying Redhat for $34 billion. IBM is buying Redhat for $190 per share and is pending regulatory approval. This is a significant change for IBM and if their acquisition is successful, will help IBM offer a significantly wider range of software and services to its portfolio. In addition, Red Hat has a number of high-value partnerships with companies like Microsoft that should help IBM expand its footprint. In the announcement, the company notes that after this acquisition, the company will be the top hybrid cloud provider in a growing market that is expected to crest $1 trillion in the future. While cloud operations have been all the talk of late, hybrid environments are proving to be the preferred model of most large companies and this acquisition plays into that growing scenario. This is a massive bet for IBM on nearly every front, from a financial outlay to pivoting their business. As of the time of this posting, IBM has a market cap of about $113 billion and... --- ### With Acquisition Complete, Microsoft Commits to GitHub - Published: 2018-10-26 - Modified: 2024-09-04 - URL: https://petri.com/with-acquisition-complete-microsoft-commits-to-github/ - Categories: Main - Tags: GitHub, Microsoft - Article Type: News Microsoft now owns GitHub and paid $7.5 billion for the privilege but the big question is what happens next? Microsoft has announced today that its $7. 5 billion acquisition of GitHub is now complete. The company stated its intent to acquire the company back in June and now the deal is done; Microsoft owns the developer platform. The company has said that they plan to leave the service independent of the larger company; this is a similar strategy to what they have done with LinkedIn. That being said, you can expect that the service will now be fully integrated into everything the company offers and for developers who use the Microsoft stack, this should make DevOps easier as well. In the announcement of the closing of the acquisition, Nat Friedman, who will now run the company, states: GitHub will operate independently as a community, platform, and business. This means that GitHub will retain its developer-first values, distinctive spirit, and open extensibility. We will always support developers in their choice of any language, license, tool, platform, or cloud. Following the announcement, reaction to the news was all over the board with some, who are still stuck in 1993, viewed this as Microsoft destroying competition. But for those who have been following the company during the past few years, especially as it has embraced open source methodologies, view this as a positive thing for the ecosystem and expect Microsoft to only enhance the offering. Following the announcement in June that Microsoft would acquire the company, the platform has added 3 million developers to its userbase which now stands at 31... --- ### Paul Thurrott's Short Takes: October 26 - Published: 2018-10-26 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-26/ - Categories: Cloud Computing, Hardware, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it's that time of the quarter, this edition of Short Takes looks a bit more closely at Microsoft's most recent earnings announcement. Boo! Because it's that time of the quarter, this edition of Short Takes looks a bit more closely at Microsoft's most recent earnings announcement. Note: On Wednesday---a day earlier than usual---Microsoft posted a quarterly net income of $8. 8 billion on revenues of $29. 1 billion, jumps of 34 percent and 19 percent, respectively. This edition of Short Takes will dive a bit deeper into the news. --Paul Azure as a "hyperscale cloud" While Microsoft's continued use of the term "commercial cloud" continues to vex---this isn't a business at all, and its constituent parts are hand-picked to make Microsoft's cloud offerings appear more competitive---I do like the shift to a new term, "hyperscale cloud. " "Azure is the only hyperscale cloud that extends to the edge across identity, data, application platform and security and management," Mr. Nadella said this week. And ... yeah. That's how you differentiate your offerings. By being honest. Office 365 usage ticks upward Microsoft actually provided new numbers for Office 365 on both the commercial and consumer sides of the fence, something it doesn't always do. As of this quarter, there are now 155 million Office 365 commercial users (a 29 percent gain year-over-year) and 32. 5 million Office 365 consumer subscribers. As important, revenues are up by 36 percent on the commercial side and 16 percent on the consumer side. Good news, bad news for Windows 10 Microsoft is allegedly still shy of the 700 million active devices mark that former Windows chief... --- ### Office 365 Soars to 155 Million Active Users > Office 365 now has 155 monthly active users and is gaining new users at over 3 million seats per month. That's impressive by any measure. - Published: 2018-10-25 - Modified: 2024-09-04 - URL: https://petri.com/office-365-soars-155-million-active-users/ - Categories: Microsoft 365, Office - Tags: Microsoft results, Monthly active user, Office 365 - Article Type: News Office 365 now has 155 monthly active users and is gaining new users at over 3 million seats per month. That's impressive by any measure, with growth fueled by migrations from on-premises servers, new customer wins, and the influence of new applications like Teams. Three Million Plus Added Per Month Microsoft reported its Q1 FY19 results on October 24 and noted that Office 365 now has more than 155 million monthly active users (MAU). To put this in context, that's a growth of over three million users per month since the last time Microsoft supplied a number for Office 365 in April. Table 1 lists the growth in users since November 2015. Date Microsoft official number for active Office 365 users Monthly growth over previous number November 2015 60 million N/A April 2016 70 million 2 million/month October 2016 85 million 2. 5 million/month April 2017 Over 100 million 2. 5 million/month October 2017 120 million 3. 33 million/month April 2018 135 million 2. 5 million/month October 2018 155 million 3. 33 million/month Table 1: Growth in Office 365 monthly active users Given this pace, it's likely that Office 365 will get to around 165 million users by the end calendar 2018 and head towards 185 million users by the end of Microsoft's FY19 next June. More E5 The 29% growth in seats was accompanied by a 35% growth (in constant currency) in Office 365 revenues. This shows that Microsoft is successful in extracting more revenue per month from its users and is probably due to a higher mix of E5 licenses compared to the lower-cost E1/E3 or even frontline (F1) licenses. There's no surprise here because Microsoft has steadily been stuffing Office 365 E5 with a range of new features and functionality to attract customers to... --- ### Microsoft's Enterprise Windows 10 Battle Hits the Halfway Mark - Published: 2018-10-25 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-enterprise-windows-10-battle-hits-the-halfway-mark/ - Categories: Windows 10, Windows 7 - Tags: Microsoft, News, Windows 10, Windows 7 Microsoft says that half of its commercial customers are now running Windows 10 but how will they get the other half to upgrade before the deadline hits? In January of 2020, Microsoft's Windows 7 platform will reach its end of life and the company will stop providing 'free' updates. After this date, if you are running Windows 7 in your environment, you will be forced to pay for security patches. While it is possible that you could upgrade to Windows 8, from Windows 7, the vast majority will certainly move to Windows 10 and Microsoft is highlighting that more than half of its enterprise customers have already moved to the new OS. During the company's earnings call yesterday, Satya Nadella stated that more than half of its commercial install base is running Windows 10. This is a significant milestone for Microsoft as the company is doing everything it can, including offering free Windows 7 patches for those migrating during the transition period, to help customers upgrade to Windows 10. Further, the company is also extending the lifecycle of each build released in the fall so that customers are not required to upgrade their environments annually. But, we are more than three years into Windows 10 being released and the company has only managed to convince half of its commercial clients to migrate. And while we don't know how many exactly still need to migrate, it's roughly around 50% need to migrate in the next 14 months which is a significant mountain to climb. As we head into 2019, I fully expect Microsoft to move more aggressively to get the remaining customers off of Windows 7... --- ### Microsoft Posts $29.1 Billion for Q1 Earnings With Strong Growth Across the Org - Published: 2018-10-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-posts-29-1-billion-for-q1-earnings-with-strong-growth-across-the-org/ - Categories: Main - Tags: Earnings, Microsoft, News - Article Type: News Microsoft reported their first-quarter earnings for 2019, calendar Q3, with $29.1 billion in revenue, an increase of 19% when compared to a year ago, and a Net Income of $8.8 billion. Microsoft reported their first-quarter earnings for 2019, calendar Q3, with $29. 1 billion in revenue, an increase of 19% when compared to a year ago, and a Net Income of $8. 8 billion. During the quarter, Microsoft returned $6. 1 billion to shareholders in the form of dividends and share repurchasing. On the Office side, Microsoft now has 155 million commercial customers and over 32 million consumers now using Office 365. Office 365 revenue for commercial customers grew 36% and 17% for consumers, year over year. There is little doubt at this point but Office 365 continues to grow and keeps bringing sustainable revenue to Microsoft's bottom line. Dynamics 365 revenue grew 51% and Dynamics cloud services revenue grew a total of 20%. The company's Intelligent Cloud org saw revenue grow 28% but Azure revenue growth was lower than in previous quarters. The company reports the revenue grew at 76% and while that is less than the near triple digits we have seen in the past, just because the percentage is lower, this is still showing strong growth in the segment as it's significantly harder to grow at triple digits once the underlying business reaches into the billions. On the Windows side, OEM revenue was up 3% and Windows commercial products and cloud services revenue was up 12% thanks to an increase in multi-year agreements. For gaming, revenue was up 44% with Xbox hardware reporting a significant 94% growth in revenue; the prior year was soft from no new hardware releases;... --- ### Managing Windows 10 Updates in a Small Businesses Environment - Published: 2018-10-24 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-10-updates-in-a-small-businesses-environment/ - Categories: Windows 10 - Tags: Security, Small Business, Windows 10, Windows Update - Article Type: Overview In this article, Russell explains the ways you can manage Windows Update to give you a more reliable computing experience. In this article, I’ll look at some of the ways you can manage Windows Update to give you a more reliable computing experience. This year has been a disaster for Windows Update and Microsoft’s Windows-as-a-Service delivery model. Both the Spring and Fall Windows 10 feature updates proved to be problematic. So much so that Microsoft was forced to pull the October 2018 Update from its servers. And shortly after October’s Patch Tuesday, Microsoft rolled out a buggy Intel HD Audio driver to some Windows 10 users that caused sound to stop working. Despite these issues and the bad publicity, Windows Update is unlikely to get more reliable any time soon. Because for most of Microsoft’s enterprise customers, the problems consumers and small businesses face are usually not a concern as they have managed environments and the resources to test updates and implement phased deployments. But whether you are a one-man band or a small business, there are some basic things you can do to ensure that Windows Update doesn’t ruin your day. Windows 10 Home Isn’t for You Windows 10 Home isn’t suitable for any kind of business environment. That should be perfectly obvious but still I come across people that insist on using Home edition for their business needs. And while there are key business features missing from Home, like the ability to join an Active Directory domain, the biggest reason not to use Home is that you have no control over Windows Update. Microsoft will force... --- ### Azure AD Domain Services Gets a Few Improvements > In this post, I will share some information about improvements that were made to Azure Active Directory (Azure AD) Domain Services. - Published: 2018-10-24 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-domain-services-gets-a-few-improvements/ - Categories: Microsoft Azure - Tags: AAD, AADDS, Azure AD, Azure AD Domain Services - Article Type: Overview Aidan shares some information about improvements that were made to Azure Active Directory (Azure AD) Domain Services. Azure AD Domain Services – A Reminder If you are building an infrastructure-based application deployment in Azure (virtual machines) then it’s not unusual to require a domain – correctly referred to in Windows Server as Active Directory Domain Services (ADDS). ADDS provides us with a directory that has features such as organizational units (OUs), role-based access control (RBAC), and group policy objects (GPO). You can deploy some virtual machines, even modestly priced B-Series machines, to host this Windows Server role and then join the other Windows Server machines to the domain. In The Cloud, we should want to push as many services as possible down into the fabric. This approach allows us to spend less time on the mundane and time-consuming work, and spend more time on more valuable work at the application, settings, and data layers. Azure AD Domain Services is an example of this. Instead of building virtual machines as domain controllers which we then must maintain, patch, backup, and eventually replace with machines with a newer OS, Microsoft offers us a domain-as-a-service – and no, that is not Azure AD. We can deploy Azure AD Domain Services which is linked to the Azure AD tenant. Under the covers, Microsoft deploys a pair of virtual machines that will act as domain controllers. The machines are connected to a virtual network of our choice in an Azure region of our choice. The domain controllers synchronize with Azure AD but, unlike Azure AD, they offer OUs, GPOs, RBAC, and classic... --- ### What Is Microsoft Entra ID Conditional Access? (And How To Use It) - Published: 2018-10-23 - Modified: 2024-05-30 - URL: https://petri.com/understanding-azure-active-directory-conditional-access/ - Categories: Cloud Computing, Microsoft 365, Security - Tags: Azure Active Directory, Azure Active Directory Conditional Access, cloud computing, intune, Microsoft Entra ID, Mobile Device Management, Office 365, Security - Article Type: Overview Conditional Access is a security feature that allows organizations to control corporate resource access based on certain conditions. Common reasons for utilizing this technology include the enforcement of multifactor authentication (MFA), requiring stronger authentication measures during authentication, and more. Learn more about how to use Conditional Access to protect your data and devices. What is Conditional Access (CA)? Conditional Access is a core security feature of Microsoft Entra ID (formerly Azure AD). It focuses on access control for applications and identities in Microsoft's 365 cloud services. Think of it as a security policy engine that analyzes various signals and attributes of incoming authentication and authorization requests and enforces organizational policies to either grant access or deny access to resources based on those criteria. The scope of settings, conditions, and criteria when setting up these policies affords you the ability to craft one that meets your security and compliance needs. Why do we need Conditional Access? The main reason we need these policies is due to the quickly evolving security landscape and the fact that traditional access control methods are becoming less robust. The strongest case for why companies need it is the enforcement of multifactor authentication (MFA). CA adds an extra layer of protection by going beyond passwords and mitigating risks like unauthorized access or compromised devices in your organization. Other reasons include compliance requirements, cybersecurity insurance requirements, Zero Trust security models becoming more prevalent (more on that shortly), and, on a 'positive' note, an enhanced end-user experience. IT Pros... --- ### Windows Server 2019 Skips RTM, But What Does that Mean? - Published: 2018-10-23 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2019-skips-rtm-but-what-does-that-mean/ - Categories: Windows Server 2019 - Tags: Hyper Converged Infrastructure, Hyper-V, Software-Defined Networking, Storage Spaces Direct, Windows Server 2019, Windows Server Software-Defined program - Article Type: News Windows Server 2019 is the first version of Microsoft’s server OS not to RTM. But what does that mean in practice? Microsoft announced at its Ignite conference in September that Windows Server 2019 would reach generally availability (GA) in October. Then October 2nd saw the bits briefly offered for download in the Evaluation Center, the Volume Licensing Service Center, and the Azure Marketplace, before being pulled due to a bug that could delete user data during an in-place upgrade. But despite the teething problems that caused Microsoft to remove the download, IT pros should know that Windows Server 2019 is the first version of Windows Server not to reach the Release-To-Manufacturing (RTM) milestone. That means that while the bits are available for download - or should be again soon after you read this article - Windows Server 2019 isn’t ready for hardware. Vendors that produce certified hardware got the final bits for testing October 2nd, the same day as everyone else, meaning that the first certifications won’t appear until the middle of January 2019. Windows Server hardware availability (Image Credit: Microsoft) An announcement on the Storage at Microsoft blog by Cosmos Darwin reads: “Windows Server 2019 is the first version to skip the classic Release To Manufacturing (RTM) milestone and go directly to General Availability (GA). This change is motivated by the increasing popularity of virtual machines, containers, and deploying in the cloud. But it also means the hardware ecosystem hasn't had the chance to validate and certify systems or components before the release; instead, they start doing so today. ” Windows Server Software-Defined Launch Microsoft’s... --- ### SharePoint Server 2019 Now Generally Available - Published: 2018-10-22 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-server-2019-now-generally-available/ - Categories: SharePoint 2019 - Tags: News, SharePoint Server 2019 Microsoft is making SharePoint Server 2019 now generally available which means it may be ready for your production environment. Last month at Ignite, Microsoft said that SharePoint Server 2019 would reach general availability in October and today they are upholding that promise with the platform reaching general availability. Alongside the release of SharePoint Server 2019, Project Server 2019 is also available too. There are quite a few new things in SharePoint Server 2019 including modern: sites, pages, lists, and libraries. In addition, there are significant updates to mobile and intranet communication sites, OneDrive for Business receives the latest generation sync client and the platform now support for uploading files up to 15GB. Download: SharePoint Server 2019; the company made the announcement on their SharePoint blog, you can find all the details here. This is a major milestone for the product as not only does it mean that it is ready for production environments but it also starts the support lifecycle of the product. That being said, you still should undertake a significant amount of testing before deploying the update to your environment because even though Microsoft says its production ready, it may not be ready for your environment. If you were running a preview version of SharePoint Server 2019, Microsoft will not allow you to upgrade it to RTM; a full clean install is required. And this is likely a best practice, you don't want to be running production environments on an install that may have leftover baggage from the preview days. Before you do upgrade, it's worth checking out the technical documents before you get started,... --- ### Container Availability and Disaster Recovery - Published: 2018-10-22 - Modified: 2024-09-04 - URL: https://petri.com/container-availability-and-disaster-recovery/ - Categories: Backup & Storage, Cloud Computing, SQL Server, Virtualization - Tags: Backup, Cloud, cloud computing, Disaster Recovery, Virtualization, Windows Server 2016 - Article Type: Overview Looking to dive into containers as a possible recovery option but don't know where to start? Mike Otey has you covered. It’s no secret that containers have begun to emerge as the new building blocks for modern cloud-base applications. While containers have been supported in the Linux world for some time, they became a viable option for Microsoft oriented businesses when Docker support was included with Windows Server 2016. Containers are essentially a lighter weight construct than VMs. Like VMs, containers enable you to run applications that are isolated from the underlying host. Containers are designed to be stateless and changes made to the container are sandboxed and they do not affect the container host. Unlike VMs, containers do not provide hardware virtualization. Instead, they provide virtualization at the operating systems level. Containers share portions of the host operating system kernel which is why Windows containers are limited to Windows hosts and Linux containers can only run on Linux hosts. However, recent changes in Windows Server container support include using a small specialized Linux VM to enable the running of Linux containers on Windows hosts.  A container host can be a VM or it can be a physical system. Today, most businesses are using VMs as container hosts. Let’s look at some of the issues to consider in container availability and disaster recovery (DR). Container Orchestration and Availability Unlike most monolithic legacy applications, containerized applications are composed of multiple microservices that run independently and communicate with one another using various protocols like HTTP, REST, AMQP, or TCP. Containers are often the foundation for these microservices and since containers are stateless recovering... --- ### Exchange 2019 Server On-Premises Debuts > Microsoft has shipped Exchange 2019, the latest in a long line of enterprise-class email servers stretching back to 1996. The latest version runs on Windows 2019. - Published: 2018-10-22 - Modified: 2024-09-04 - URL: https://petri.com/exchange-2019-server-debuts/ - Categories: Exchange 2019, Exchange Server - Tags: Exchange 2019, Windows 2019 Server - Article Type: News Microsoft has shipped Exchange 2019, the latest in a long line of enterprise-class email servers stretching back to 1996. The latest version runs on Windows Server 2019 and Microsoft recommends that you use Server Core. There's fewer people using on-premises servers today, but those that do can install the best email server in the business. FYDIBOHF28SPDLT! Following their normal three-year cycle of October releases, Exchange 2019 made its debut yesterday (will Exchange 2022 be the next release? ). Although the on-premises installed base has reduced, evidence from the recent Ignite 2018 conference showed that strong customer demand still exists for on-premises software, especially for the best email server available today. After all, there are parts where the cloud can’t reach. Exchange 2019 is now available through the Microsoft Volume Licensing Center (VLC) and MSDN. If you don’t get what FYDIBOHF28SPDLT means, don’t worry. I made it up based on the code used for Exchange 2007. Microsoft’s internal version number for Exchange 2019 is 15. 2 rather than 17, but that doesn’t work as well when retrofitting to an old tradition. Windows 2019 Moving back to the actual technology, some fuss resulted from Microsoft’s decision to only support Exchange 2019 on Windows Server 2019 (and to prefer Server Core to boot), especially because Windows Server 2019 suffered from some of the same kind of problems as Windows 10. In any case, I doubt people will rush to introduce Exchange 2019 into production, so a small delay in the O/S isn’t going to be a problem. Proven Code Of course, Exchange 2019 – or rather, a variant of the code base – has been running in production inside Exchange Online for several months now. Deploying new software early into the cloud is good for on-premises customers because it allows Microsoft to test features like the metacache at... --- ### Don't Be Stupid - Microsoft Is Not Killing Surface > This post explains why the Canalys guess that Satya Nadella will kill off the Microsoft Surface line is just silly and how Surface is more than a PC. - Published: 2018-10-22 - Modified: 2024-09-04 - URL: https://petri.com/dont-be-stupid-microsoft-is-not-killing-surface/ - Categories: Windows 10 - Tags: Microsoft, Surface, Windows 10 - Article Type: Opinion The silliest thing has been riding high in my Google News headlines since last week - The CEO of Canalys still thinks Microsoft is going to kill the Surface line in 2019 The silliest thing has been riding high in my Google News headlines since last week - The CEO of Canalys still thinks Microsoft is going to kill the Surface line in 2019. I am here to tell you I am LOLing myself silly at that piece of awful crystal ball viewing. Stubborn Stupidity Surface got a pretty rocky start, and the group does still have the occasional brain fart. The original ARM Surface was a horrible mistake of a Sinofsky-an scale. No one was ready and no one wanted an ARM-only Surface that could only run the horrendous apps that were in the Windows 8 app store – mostly fart apps at the time. The Surface Pro was a better machine, barely. It had a small screen, was too thick, it ran hot, and the battery life was short. But something happened with the third generation of machines. We expected a Surface Mini with an Atom CPU. A plethora of Atom-powered Windows tablets appeared in retail, mostly from Chinese brands were never heard of before (or since). But a few days before the launch even, Satya Nadella (rightly) killed off the new Surface Mini because he knew it would be a commercial disaster, much like the nearly $1 billion write-off for the original Surface line has been. Instead, the Surface Pro 3 was launched, with a better battery, a slim body, a flexible hinge, a workable (but still un-lappable unless you are a leggy freak) keyboard, and a... --- ### Modern SharePoint Web Parts — Quick Links Web Part - Published: 2018-10-19 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-quick-links-web-part/ - Categories: SharePoint, SharePoint Online - Tags: Modern SharePoint, Modern Web Parts - Article Type: Overview Jasper Oosterveld, Microsoft MVP, dives into the latest developments around Modern SharePoint Web Parts. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! (more... ) --- ### Following Development Challenges, Next Gen HoloLens Targeted for Q2, 2019 - Published: 2018-10-18 - Modified: 2024-09-04 - URL: https://petri.com/following-development-challenges-next-gen-hololens-targeted-for-q2-2019/ - Categories: Hardware - Tags: HoloLens, Microsoft - Article Type: News The release of Microsoft's next-generation HoloLens has been pushed back into 2019 but the company still has plenty of time. It's no secret that Microsoft is working on a next-gen HoloLens as the company released the first iteration several years ago. The big question is when the next iteration will arrive as the company has been building the product in broad daylight. In early 2018, the target was to show off the device this year but following development hurdles, the company has pushed back the announcement of the hardware. Microsoft is now targeting a late Q2, 2019 release, according to people familiar with the company's plans; this assumes that the remaining development challenges are overcome and manufacturing ramps up as expected. The next generation device will be smaller, have a wider field of view, and longer battery life. None of this should be a surprise as it's typical for a new device to follow this development model but unlike laptops, bending light to increase the FoV isn't nearly as easy as increasing battery capacity. The company is also making a big bet on 'localized-AI' which has increased the difficulty of building the device. Microsoft's primary competitor in this space, Magic Leap, has finally started to ship some early hardware and it is fully expected that Google, Apple, and many others will enter this space in the near future. As long as the company can ship the hardware in 2019, they should continue to lead this segment as they have an early advantage in adoption among corporate customers as well as a handful of consumer applications as well. But, you... --- ### Managing Office 365 Guest Accounts > Many Office 365 applications (Teams, Groups, Planner, SharePoint, etc.) now support external guest access. you might end up with a lot of guests. - Published: 2018-10-18 - Modified: 2024-09-04 - URL: https://petri.com/managing-office-365-guest-accounts/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: external users, guest users, Office 365 Groups, OneDrive for Business, Planner, SharePoint Online, Teams - Article Type: How To Many Office 365 applications (Teams, Groups, Planner, SharePoint, etc.) now support external guest access. you might end up with a lot of guests, and like any good accommodation, some management is needed. In this article, we look at how to manage the guests created by Office 365. The Sharing Side of Office 365 Given the array of Office 365 apps that now support external sharing – Teams, Office 365 Groups, SharePoint Online, Planner, and OneDrive for Business – it should come as no surprise that guest user accounts accumulate in your tenant directory. And they do – in quantity, especially if you use Teams and Groups extensively. The Guest Lifecycle Nice as it is to be able to share with all and sundry, guest accounts can pose an administrative challenge. Creating guest accounts is easy, but a lack of out-of-the-box tools exist to manage the lifecycle of those accounts. Left alone, the accounts are probably harmless unless a hacker gains control over the account in the home domain associated with a guest account. But it is a good idea to review guest accounts periodically to understand what guests are present in the tenant and why. Guest Toolbox You can manage guest accounts using through the Users blade of the Azure portal (Figure 1), which is where you can add a photo for a guest account (with a JPEG file of less than 100 KB) or change the display name for a guest to include their company name. You can also edit some settings for guest accounts with the Office 365 Admin Center. Figure 1: Guest accounts in the Azure portal (image credit: Tony Redmond) Of course, there’s always PowerShell. Apart from working with accounts, you can use PowerShell to set up... --- ### Everything but Windows is what will save Windows - Published: 2018-10-17 - Modified: 2024-11-19 - URL: https://petri.com/everything-but-windows-is-what-will-save-windows/ - Categories: Windows Client OS - Tags: Microsoft, Windows - Article Type: Opinion Microsoft has shifted its priorities and while it doesn't always include Windows, this is what will save Windows. For the past few months, I have been working on a book documenting the inside baseball of building Microsoft's Surface hardware. While digging into the strategy the company used to sell hardware during the past six years, it has become clear that the thing that will save Windows is everything but Windows. At Ignite and previous Microsoft conferences during the last 24 months, it's become clear that the company has removed the overhead of Windows from its operations. In prior years, it was always Windows first, or at least, at the same time as other platforms like Android and iOS. But the company no longer thinks like this anymore and is showing time and time again that they will support any platform, made by any vendor, with their products. We have seen this with its contribution of 60,000 patents to shield the Linux community, Cortana being available on all platforms, Windows Defender spanning everything from iOS to Linux and the list goes on and on. This may seem obvious now, but a few years ago, to see Microsoft place other operating systems on the same playing field as Windows was sacrilegious; it truly has been an entire reboot for the way Microsoft operates. Things like bringing the Linux-subsystem to Windows has been a huge win for the community and fifty-percent of the VMs running in Azure are also based on Linux. When you begin to understand how much Microsoft has embraced rival platforms, you will start to understand how... --- ### What is Standard SSD Managed Disks? > In this post, I will discuss the general availability of Azure’s Standard SSD managed disks, and what this means for virtual machines. - Published: 2018-10-17 - Modified: 2024-09-04 - URL: https://petri.com/what-is-standard-ssd-managed-disks/ - Categories: Microsoft Azure - Tags: Azure, Managed Disks, Standard SSD - Article Type: Overview In this post, Aidan explains what Standard SSD Managed Disks is and how you can utilize the service. A New Tier Microsoft launched a preview for Standard SSD Managed Disks in the North Europe region in June, and expanded availability to include other regions over time. At Microsoft Ignite, this third tier of managed disks was made generally available, joining the previously available Standard HDD and Premium SSD disks. Note, Standard SSD is only available as a managed disk. Un-managed disks, which are disks kept in human-created/managed storage accounts, will not have this new tier. You can convert virtual machines and availability sets to managed disks to avail of the new tier. Standard HDD remains the entry-level disk offering basic performance and the lowest cost storage option. Premium SSD gives us the fastest generally available (the faster Ultra SSD is in preview) with low latency and high IOPS, plus a single virtual machine SLA. Note that Premium SSD is only available on “S” variant virtual machines, for example, the D4s_v3 but not the D4_v3. Standard SSD is a middle ground between the two older tiers. Being flash-based, it offers low latency and a smoother flow of data than Standard HDD. However, Standard SSD provides the same IOPS as the HDD alternative and does not come with a single virtual machine SLA. Standard SSD does not require “S” variant virtual machines. For example, you can deploy Standard SSD disks with an A4_v2 virtual machine. Comparing the tiers of Azure managed disks Pricing Billing for Standard SSD is based on: The... --- ### Forms – an Undervalued Part of Office 365 > Microsoft Forms is available through Office 365 subscriptions, but how many people actually use Forms? As it turns out, Forms are easy to develop and share - Published: 2018-10-16 - Modified: 2024-09-04 - URL: https://petri.com/forms-office-365/ - Categories: Microsoft 365, Office - Tags: Forms, Office 365 - Article Type: How To Microsoft Forms is included in Office 365 business subscriptions (and in preview for Office 365 home), but how many people actually use Forms? As it turns out, Forms are easy to develop and share through web sites and Microsoft Teams, so maybe they should be used more often in your Office 365 deployment? Forms, Questionnaires, and Quizzes Microsoft released Forms, an app to allow users to collect information from other people through surveys, quizzes, and polls, to Office 365 for Education customers in June 2016. A year later, Microsoft made Forms available to commercial tenants, possibly as a competitive move against Google Forms. The application is now in public preview for Office 365 home plans, with the intention that it will be available to anyone with a Microsoft account. The idea is simple. Create the questions you want to ask and then publish the form online or through an application like Teams for the target audience to complete. After the answers come in, evaluate and analyze the responses using the built-in analytics or export the answer data for analysis using Excel or Power BI. Forms for All By default, any Office 365 tenant user can access Forms by using their tenant credentials to sign into the Forms portal or by selecting Forms from the Office 365 waffle menu. If you want to limit Forms to specific users, you can disable the Forms option in user licenses through the Office 365 Admin Center or PowerShell. An individual user can create up to 200 forms. Each form can receive up to 50,000 responses, which seems more than enough for even the most curious questioner. Creating a Form The application supports forms and quizzes. The difference between the two is that a form leads respondents through a series of questions to collect ad-hoc information... --- ### Surface Pro 6: A Cautious But Quality Upgrade - Published: 2018-10-16 - Modified: 2024-09-04 - URL: https://petri.com/surface-pro-6-a-cautious-but-quality-upgrade/ - Categories: Hardware - Tags: News, review, Surface, Surface Pro 6 - Article Type: Opinion Microsoft's Surface Pro 6 packs a new CPU and a new color but is it the same old Pro or has Microsoft changed the game again? When your hardware is entering its sixth iteration, you either have a proven formula or you are continuing to throw the pasta at the wall to see what sticks. For Microsoft, the Pro 6 is about as proven as it gets and with the latest generation, the company didn't take any risks. Microsoft's productivity tablet continues its path forward and while the sixth generation doesn't make any significant external changes, the silicon is getting a solid performance bump. The company has overhauled the internals and dropped in a quad-core CPU vs dual-core of the previous generation, which makes this device significantly faster than the previous generation but the company didn't take this time to include USB-C. This is an odd omission for Microsoft because their baseline Surface, the Go, has USB-C, and the top end, Book and Studio, have USB-C, but the Laptop and Pro do not. These updates will likely arrive with the next hardware refresh that is expected to include a significant update to the exterior but for now, Microsoft is holding back on pushing the industry forward without the inclusion of USB-C. But at the same time, the corporate world isn't magically all using USB-C and for deployments in your environment, the lack of newer generation USB isn't going to cause many headaches. And what it really boils down to is that if you like the Pro form factor, you will absolutely love the new Pro 6. And that's for good reason, Microsoft took the... --- ### Patch Tuesday October 2018 - Published: 2018-10-15 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-october-2018/ - Categories: Security - Tags: exchange, Patch Tuesday, Security, SharePoint, Windows 10, Windows 10 October 2018 Update, Windows 10 version 1809, Windows Server 2016, Windows Update - Article Type: News This month sees the Windows 10 October 2018 Update pulled from Windows Update, 49 vulnerabilities patched in Windows, and the usual round of security fixes for other Microsoft and Adobe products. Windows 10 October 2018 Update Microsoft was due to release Windows 10 version 1809 more widely on Patch Tuesday via Windows Update. It had been made available a week earlier for ‘seekers’, i. e. those who have compatible hardware and manually Check for updates in the Settings app, or who downloaded the updated Media Creation Tool. But reports of deleted user data prompted Microsoft to halt the rollout. For more information on the October 2018 Update for Windows 10, see Microsoft Pulls Windows 10 October 2018 Update from Windows Update on Petri. Windows 10 and Windows Server 2016 This month sees 49 vulnerabilities patched for Windows Server 2016 and Windows 10, 7 of which are critical remote code execution flaws. 3 of them apply to Hyper-V, 2 to MS XML, one to the Win32k graphics subsystem, and one to Windows. The bugs are rated critical because they could be exploited without any user interaction. The remaining fixes are all rated important. 5 are remote code execution vulnerabilities and 12 are elevation of privilege, one of which affects the Win32k graphics subsystem and was already being exploited in the wild. Two other vulnerabilities were also publicly disclosed before Patch Tuesday but are not known to have been exploited. They are CVE-2018-8497, which is an elevation of privilege vulnerability and a remote code execution flaw in Microsoft's JET Database Engine (CVE-2018-8423). There are also four security feature bypass patches. Two apply to Windows Defender Application Control (Device Guard), one in the... --- ### What is Azure Public IP Address Prefix? > In this post, I will explain what the new Public IP Address preview Azure feature offers customers of Microsoft’s cloud service. - Published: 2018-10-15 - Modified: 2024-09-04 - URL: https://petri.com/what-is-azure-public-ip-address-prefix/ - Categories: Microsoft Azure - Tags: Azure, networking, PIP, Public IP Address, Public IP Address Prefix - Article Type: Overview Aidan explains what the new Public IP Address preview Azure feature offers customers of Microsoft’s cloud service. Public IP Addresses You need some form of publicly addressable location for any service in Azure that will be available on the Internet. In Azure, this comes in the form of a public IP address, a low-cost option where you consume an address from Microsoft huge repositories – typically based on IPv4. Public IP addresses, often referred to just as PIPs, are normally allocated on demand. For example, you might deploy a load balancer to NAT a number of virtual machines, and Azure will assign an address to you. You have no idea what that address will be until you get it. By default, the address is dynamic, but with resources such as load balancers or virtual machines, it’s usually best to configure the address with: A static address at no extra cost, so that the address does not change when the associated resource(s) become deallocated. A DNS prefix for a Microsoft-managed domain name. Challenge Some organizations, particularly those with bureaucracies or slow-moving change control processes, will struggle with services that are being deployed publicly on the Internet. For example, let’s pretend that we work for a such an organization that is setting up a service in Azure that will have multiple PIPs. The firewalls of the organization need to be updated to allow inbound or outbound traffic to these PIPs. The typical experience is that we have to wait until the service is deployed before we can start to configure the on-premises firewall rules. I have visited... --- ### Modern SharePoint Web Parts — Recent Documents Web Part - Published: 2018-10-12 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-recent-documents-web-part/ - Categories: SharePoint, SharePoint Online - Tags: Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the Recent Documents Web Part. (more... ) --- ### Paul Thurrott's Short Takes: October 12 - Published: 2018-10-12 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-12/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10 - Tags: News - Article Type: Overview Because I'm between continents at the moment, this edition of Short Takes looks at Microsoft's abortive release of Windows 10 version 1806, Microsoft's patent reversal for Linux, the EU approval of Microsoft's GitHub acquisition, and so much more. Any power outlet in a storm Because I'm between continents at the moment, this edition of Short Takes looks at Microsoft's abortive release of Windows 10 version 1806, Microsoft's patent reversal for Linux, the EU approval of Microsoft's GitHub acquisition, and so much more. Microsoft quickly pulls Windows 10 version 1809 It was intended to be a celebration of improved quality and speed. But the Windows 10 October 2018 Update was shipped out the door too quickly and with too little testing in order to meet an arbitrary date. And now Microsoft is paying the price: After users began complaining of data loss post-upgrade---the most unforgivable sin in software design---Microsoft had to do the unthinkable and halt the deployment of the update. According to Microsoft, it's figured out the problem and is testing a fix, which it will deploy as part of a "re-release" of the update. But the software giant actually admitted that it knew about the problem before deploying the update. And, now we have a new most unforgivable sin in software design. Great work there, guys. "How Microsoft Plans To Avoid Nasty Windows 10 Update Bugs In The Future" Maybe they could actually test it first. Microsoft embraces Linux. No, really In the sharpest turnaround yet of the Satya Nadella era, Microsoft this week turned its biggest anti-Linux asset into the Linux community's best friend: Microsoft announced that it will now protect over 2,600 companies that use Linux with its library... --- ### Microsoft Shuffles the Deck Again, Cortana Finds a new Home - Published: 2018-10-11 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-shuffles-the-deck-again-cortana-finds-a-new-home/ - Categories: Microsoft 365, Office - Tags: Cortana, Microsoft, Office - Article Type: News Microsoft is moving Cortana from AI to Office which likely signals a big shift in the way the company is going to position the digital assistant. Microsoft loves to make software, sell it as a service, re-org the company and make employees change buildings. According to those with direct knowledge of the company's plans, Microsoft is shuffling the deck once again. This time around, it's part of Harry Shum's AI org that is being moved around with the end result being that Cortana is no longer under the company's AI org and is now nested inside of Office. For some time, the Office team has been pressuring Shum to move Cortana over to their unit, especially after it became apparent that the digital AI was no longer going to be a stand-alone product. With Cortana now fully inside of Office, expect the assistant to gain new features related to the productivity suite but I also believe that Cortana will simply become another tool for Office, rather than it's own product. Earlier this month, I wrote about where I thought Cortana was headed following Ignite and this seems to align to that plan. With this change, Cortana is being moved out of the AI and Research organization which paints the picture of how the company now looks at the digital assistant. At this time, the charter for Cortana isn't clear internally and the dust hasn't even started to settle on this announcement but understand that going forward, Microsoft is significantly changing the way it thinks about and utilizes Cortana. What I don't fully know at this time is how widespread the re-org is inside of... --- ### How Event-Based Retention Works for Office 365 > Office 365 classification labels dictate how workloads like SharePoint and Exchange retain content. Now you can control retention based on events. - Published: 2018-10-11 - Modified: 2024-09-04 - URL: https://petri.com/office-365-event-based-retention/ - Categories: Microsoft 365, Office - Tags: data governance, Exchange Online, Office 365, OneDrive for Business, Security and Compliance, SharePoint Online - Article Type: How To Office 365 classification labels dictate how workloads like SharePoint and Exchange retain content. Now you can control retention based on events like a contract completing or an employee leaving the business. Events start the retention clock and it's a way to make sure that you keep material needed for the business for a predetermined interval after the event occurs. Office 365 Data Governance Takes Care of Events Office 365 classification labels have properties that dictate how content is processed by Office 365 when specific conditions occur. The properties include a retention action and retention period. Together, when users assign classification labels to content, the retention action control whether Office 365 keeps items for the period or removes them after the period elapses. The newest action requires a manual review of content before it can be removed (manual disposition). Up to now, classification labels use date-based retention where the last modified or created date governs the calculation when a retention period expires to invoke the retention action. Microsoft is adding event-based retention to increase the flexibility of Office 365 data governance. Event Driven Retention Event-based retention recognizes that circumstances arise that affect how content is retained. For example, the completion of a project, termination of a contract, or when an employee leaves the organization. When these events occur, the organization might wish to make sure to keep documents for a set period or make sure that certain content is removed after that period expires. Office 365 Events An event commences when an administrator creates it, following which background processes look for content relating to the event and take the retention action defined in the label. The retention action can be to keep or remove items, or to mark them for manual disposition. In all cases, the countdown for the retention period starts when the event commences rather than... --- ### Top Ways Businesses are Using the Hybrid Cloud - Published: 2018-10-10 - Modified: 2024-09-04 - URL: https://petri.com/top-ways-businesses-are-using-the-hybrid-cloud/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft 365, Microsoft Azure - Tags: Azure, Backup, Cloud, cloud computing, hybrid cloud, Office 365, Windows Server 2016 - Article Type: Overview Today the hybrid cloud has become the new norm for many businesses and in this post, Mike shows you how many companies are using this technology. Today, the hybrid cloud has become the new norm for many businesses. The hybrid cloud can help businesses modernize their infrastructure and processes as well as cut costs and improve efficiencies; hybrid cloud uses compute or storage resources from your on-premises network and combines them with cloud resources. Microsoft identifies four essential elements for successfully implementing hybrid cloud scenarios. Networking – Forming the basis for all hybrid cloud scenarios networking connects your local and cloud resources. Identity – Azure AD can act as a common identity provider enabling both local and cloud identity management. Azure AD can be synchronized with your on-premises Active Directory or federated with other identity providers. Security -- Providing protection for identities, data, administrative accounts as well as internal and external threats is especially for hybrid cloud implementations as the attack surface spans both on-premise and cloud resources. Management --The ability to monitor the health of your hybrid cloud components as well as maintain settings, accounts, policies, and permissions are all vital to successful hybrid cloud scenarios. The combination of these essential elements enables businesses to use the hybrid cloud for a number of useful functions. Let’s look at the top ways that businesses today are using the hybrid cloud. Office 365 There’s no doubt that Office 365 is one of the biggest cloud drivers for Microsoft. Office 365 delivers all of the different office productivity applications as a Software-As-a-Service package as well as 1TB of cloud storage. After it’s downloaded from the cloud, Office 365... --- ### As Microsoft Struggles to Manage Feedback, Windows 10 1809 Has Been Re-Released - Published: 2018-10-10 - Modified: 2024-09-04 - URL: https://petri.com/as-microsoft-struggles-to-manage-feedback-windows-10-has-been-1809-re-released/ - Categories: Windows 10 - Article Type: Opinion Microsoft has re-released Windows 10 1809 after fixing an issue that was deleting content but the company is still trying to win a race that doesn't exist. Last week, Microsoft was forced to pull the latest feature update to Windows 10 after 1809 was deleting content upon installation. While the company has issued an update that resolves the issue and is once again pushing out the 1809 release, this problem has highlighted a frequent obstacle for Microsoft, an overwhelming amount of data. In a post on the company's blog, Microsoft details the problem and how it was related to Known Folder Redirection (KFR) which could create a confusing mess of the update process and ultimately ending with content being deleted. You can read the entire triage report here but it highlights several issues with the current development process. Microsoft says that their data showed that this issue impacted one one-hundredth of one percent of version 1809 installs and while that number is quite small, with around 700 million users of the platform, even a fraction results in 10s of thousands of users having their data deleted. The challenge is that this issue was reported to Microsoft prior to the release of this update. While the reports were low in volume, they indicated that the feedback hub did work as designed and that it is also flawed; only highly 'upvoted' reports are visible and not the more important and less appealing bugs are ignored because of a lack of traction in the reporting tool. Because the feedback hub has a significant amount of content, issues like this are overlooked and to address this, Microsoft is adding... --- ### OWA Gets a Refresh > Microsoft has released a new version of Outlook Web Access (OWA) to preview. Office 365 targeted release tenants can try the new UI. - Published: 2018-10-09 - Modified: 2024-09-04 - URL: https://petri.com/owa-gets-refresh/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Outlook. Office 365, owa - Article Type: News Microsoft has released a new version of Outlook Web Access (OWA) to preview. Office 365 targeted release tenants can check the new UI out to see how it works. It's new and it's early, so some glitches exist, but the new OWA is more attractive than the old, which might be all that's important. Clean, Smooth, and Unfinished On September 4, Microsoft announced that an early version of the new OWA client would be available starting September 10. The roll-out reached 100% completion world-wide on September 21, and if your account is in an Office 365 targeted release tenant, you can toggle the switch to test the new UI. My tenant must have been in the last percent that was provisioned, but the new OWA eventually turned up. I’ve been using the new client (Figure 1) in anger for a few days and I can report that it is an elegant and worthwhile improvement to the old OWA. Figure 1: The new face of OWA (image credit: Tony Redmond) It’s important to emphasize that what’s available now is not the final version of the new OWA. Although the new client looks and feels like the Outlook. com client and Outlook. com and Exchange Online share the same infrastructure, OWA is far more complex than its consumer counterpart. That fact is underlined by the list of enterprise features that are currently unavailable in the new OWA, like the ability to assign a retention tag to a folder or item. Another thing I missed was that the new OWA ignored my setting to delay sending messages for 30 seconds and insisted on sending them immediately. Controlling the Toggle The toggle controlling the option to use “the new Outlook” appears in the top right-hand corner (as it did when Outlook. com tested the new... --- ### Microsoft Pulls Windows 10 October 2018 Update from Windows Update - Published: 2018-10-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-pulls-windows-10-october-2018-update-from-windows-update/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 1809 - Article Type: News Microsoft acknowledges disappearing files after installation of the Windows 10 October 2018 Update (version 1809) and pauses rollout. Microsoft acknowledges disappearing files after installation of the Windows 10 October 2018 Update (version 1809) and pauses rollout. In a message posted on its support site, Microsoft has announced that it has paused the rollout of the Windows 10 October 2018 update due to isolated reports that some users were missing files after installation. As Brad reported earlier this week, ‘some users were saying that content inside of documents, pictures, music, and videos are gone. Others are reporting that they are unable to access partitions as well following the update. ’ Microsoft has acknowledged the issue and encourages users that have downloaded the update manually not to install it until new media is made available. Some users were also seeing excessive CPU usage on certain devices. If you see a warning about an Intel driver issue, don’t proceed with the update. It doesn’t appear that the CPU bug is connected to the disappearing files. The first cumulative update (CU) for the October 2018 Update would have been expected next week on Patch Tuesday, October 9th. But now that Microsoft is having some big issues with the rollout of this update, it might take longer for a CU to arrive. After the issues that Microsoft had rolling out the April update earlier this year, these new issues are a worrying trend. But despite the bug in the update, only users who manually downloaded it or clicked Check for updates in the Settings app might have been affected. Microsoft had planned... --- ### Microsoft's Hiding its Productivity Future Behind A Game Streaming Service - Published: 2018-10-08 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-hiding-its-productivity-future-behind-a-game-streaming-service/ - Categories: Windows Client OS - Tags: Microsoft, streaming - Article Type: Opinion This week, Microsoft announced a new game streaming platform called xCloud but it's what they are not saying that is actually interesting. This week, Microsoft unveiled a few more details about their upcoming cloud game service called xCloud. The new platform will allow the company to stream consoles games to nearly any hardware using its Azure infrastructure and public trials will start next year. Microsoft has been working on this technology for several years and announced their intentions to enter this space at E3, 2018. While this platform will be immensely important to the future of Microsoft's gaming ambitions, they are hiding other intentions right in front of us. If Microsoft can perfect this technology and reduce latency to a tolerable degree, the company will be able to radically transform how it sells services and productivity software going forward. Last month at Ignite, Microsoft took the wraps off of a new managed desktop service along with Windows Virtual Desktops which is a multi-user VDI in the Azure Cloud. While these services are independently important, when you couple them with the idea that Microsoft is moving towards a software-streamed future, they make significantly more sense in the direction of the company. While Microsoft is building out xCloud, the company is also working on new Windows APIs to help developers build streaming apps. One app that has been explored internally is AutoCAD; you can run the interface locally on a thin client but the heavy-lifting needed for rendering would take place in the cloud and streamed to your local device. Imagine running Adobe Premier on a Surface Go and having it rendered... --- ### Amazon Announces AWS Storage Gateway Hardware Appliance - Published: 2018-10-08 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-aws-storage-gateway-hardware-appliance/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, Cloud, Hybrid, News, Storage Gateway - Article Type: News Amazon recently announced a new AWS Storage Gateway hardware appliance that can be used to connect an organization’s existing on-premise hardware configurations to various AWS services. In a recent post on the AWS blog, Amazon announced a new AWS Storage Gateway hardware appliance that can be used to connect an organization’s existing on-premise hardware configurations to various AWS services. AWS Storage Gateway enables admins to set up a hybrid storage environment using several AWS services, making it easy to migrate an organization’s data to the cloud, create off-site backups, or make use of cloud-based processing services, among other options. Even though AWS Storage Gateway has been around for a while now, previously the only way to use it was to download the software and install it on a virtual machine on either a local server or one managed by a hosting or cloud service provider. Depending on the resources available, creating and managing an infrastructure for this sort of hybrid environment could potentially be costly and time-consuming - something that may be undesirable for many IT departments, especially those that are smaller or those with limited resources. However, the new AWS Storage Gateway hardware appliance - a Dell EMC PowerEdge R640XL server with the AWS Storage Gateway software pre-installed - makes moving to a hybrid environment even easier, as admins no longer have to worry about setting up a virtual machine and configuring the software to run on it. The new hardware appliance is configured to have 2 10-core Intel Xeon Silver 4114 2. 20 GHz processors, 128GB of DDR4 RAM, and 6 TB of SSD storage. Also included with the purchase of the server... --- ### What is Azure Front Door? > In this post, I will discuss another surprise service announcement from Microsoft Ignite, Azure Front Door, and answering what this service is. - Published: 2018-10-08 - Modified: 2024-09-04 - URL: https://petri.com/what-is-azure-front-door/ - Categories: Microsoft Azure - Tags: Azure, Front Door, load balancing, networking, performance - Article Type: Overview Aidan details another surprise service announcement from Microsoft Ignite, Azure Front Door, answering what this thing is, and dealing with the fear of “version 1.0”. In this post, I will discuss another surprise service announcement from Microsoft Ignite, Azure Front Door, answering what this thing is, and dealing with the fear of “version 1. 0”. Performance and Redirection Options We have no shortage of network performance, load balancing and redirection options in Microsoft Azure: Load Balancer: If you wish to present a number of virtual machines as a single public or private IP address to other services or clients, then either the Basic (free) or Standard tier load balancers can be used to load balance TCP or UDP traffic. (Web) Application Gateway (WAG): Layer 7 load balancing for HTTP or HTTPS services is possible using this instance-based option. Third-Party Network Virtualization Appliances: A variety of third party applications can be run in Linux appliances to offer load balancing from the likes of Kemp, Citrix, F5, and more. Traffic Manager: This micro-payment service can abstract the public endpoints (IP address and DNS name) of Azure or external services, allowing you to use a CNAME DNS record that is load balanced, prioritized, or redirected (geography or performance) to the most suitable service host. Content Delivery Network (CDN): Azure supports a native CDN, as well as Akamai and Verizon, to improve the delivery of static content. Third-Party CDN: You can use the likes of Cloudflare or Incapsula as an external CDN, and they often provide additional services such as DDoS protection. Microsoft decided that this wasn’t enough, so they have made Front Door available to us –... --- ### Microsoft Pulls October Update, Windows Server 2019 Missing as Well - Published: 2018-10-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-pulls-october-update-citing-issues-with-content-deletion/ - Categories: Windows 10 - Tags: 1809, News, Windows Update - Article Type: News Microsoft has paused its rollout of Windows 10 1809 after users were reporting that it was deleting content from My Documents. It has been a busy week for Microsoft, on Tuesday they announced the availability of Windows 10 1809 update, yesterday it became apparent that there were serious issues with the update, and now the company is removing the files from Windows Update. While we don't know the scale of the users impacted, it's large enough that the company is taking the feedback seriously. The main issue is that after upgrading to 1809, the October update, all files in My Documents are being deleted and cannot be recovered from Windows. old. For those who do not have proper backups, this can result in a significant amount of data being lost. The Windows 10 Update history page states that Microsoft has paused the rollout of 1809 as it investigates the issue: We have paused the rollout of the Windows 10 October 2018 Update (version 1809) for all users as we investigate isolated reports of users missing some files after updating. While this issue is bad enough, the bigger challenge here is that this issue was reported by several users in Microsoft's feedback hub before this release went public. The problem is that they were lost in the noise of the feedback as they were not receiving a significant number of upvotes to make them more visible. This lack of visibility highlights the challenges of the feedback hub and also the scale of Windows. With hundreds of millions of users being updated, if a small percentage of users are affected, this can... --- ### Changes to Azure Germany Operations > Microsoft recently announced the opening dates of the two new Azure regions in Germany, and the freezing of the Azure Germany sovereign regions. - Published: 2018-10-05 - Modified: 2024-09-04 - URL: https://petri.com/changes-to-azure-germany-operations/ - Categories: Microsoft Azure - Tags: Azure, Germany - Article Type: News Microsoft recently announced the opening dates of the two new Azure regions in Germany, and the freezing of the Azure Germany sovereign regions. Microsoft recently announced the opening dates of the two new Azure regions in Germany, and the freezing of the Azure Germany sovereign regions. Codename Black Forest Germany is the fourth largest economy in the world. That makes the country a big target for the growing business of cloud computing. However, Germany has a strange relationship with the cloud. Whether it’s a belief in a law that I’m told doesn’t exist, or a personal desire, a lot of German businesses do not want to use foreign owned cloud services. So even if Microsoft or Amazon built data centers in Germany, German customers wouldn’t be interested. To get over this issue, Microsoft duplicated an approach that they used to enter the Chinese market, the second largest economy in the world. Microsoft opened two Azure regions that were not a part of the normal Azure network. The two regions, dubbed Azure Germany (Codename Black Forest), were a partnership with a subsidiary of the German telecoms company Deutche Telekcom called T-Systems, and opened in September 2016. The idea was that if you wanted Azure, but with isolation from the potential oversight of the US government, then you could get an Azure Germany tenant and deploy subscriptions into it. That sentence includes the first gotcha. You could not deploy an Azure Germany subscription into an existing tenant, so you had double the administrative and governance overhead. As an “outside” system, Azure Germany was always going to be behind the rest of Azure when... --- ### Connecting LinkedIn and Office 365 > You can connect LinkedIn to Office 365 so that Office 365 users are able to look up LinkedIn contacts from applications like OWA and SharePoint Online. - Published: 2018-10-04 - Modified: 2024-09-04 - URL: https://petri.com/connecting-linkedin-office-365/ - Categories: Microsoft 365, Office - Tags: Linkedin, Office 365, Outlook, owa, SharePoint - Article Type: How To You can connect LinkedIn to Office 365 so that Office 365 users are able to look up LinkedIn contacts from applications like OWA and SharePoint Online. Some privacy concerns have been expressed about the connection, but there's really nothing to worry about because users are in control of what they see and what they share with others. Exploiting LinkedIn Microsoft closed its acquisition of LinkedIn in December 2016. It was always likely that they would look for opportunities to connect LinkedIn with Microsoft products and we duly started to hear about a connection between LinkedIn and Azure Active Directory at Ignite 2017. Some organizations had the opportunity to connect the two in the last year, but sorting out concerns about privacy, making sure that the connection respected GDPR, and dealing with the inevitable bugs slowed full deployment. Now Office 365 tenants can allow users to connect to their LinkedIn accounts to view information about 575 million LinkedIn users if they wish. Making the Connection The basis of the connection between Office 365 and LinkedIn is to match Office 365 user accounts with LinkedIn accounts. Every Office 365 tenant has an instance of Azure Active Directory to hold its account information, so if you want to allow users to connect their accounts to LinkedIn, the link must be enabled. As it happens, Microsoft has enabled the link by default for most Office 365 tenants, with the exceptions being the German and French datacenter regions where the link must be enabled before users can connect to LinkedIn. Tenants in the sovereign clouds (U. S. Government, China, and the “Black Forest” cloud in Germany) cannot connect LinkedIn to Office 365. It’s always slower to deploy software into these clouds, so this is unsurprising. For more information about how LinkedIn connects to Office 365 apps and services, read the Microsoft... --- ### Windows 10 October Update Is Deleting Content, Users Beware - Published: 2018-10-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-october-update-is-deleting-content-users-beware/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 1809, Windows Update - Article Type: News Microsoft's latest Windows 10 release is causing serious headaches for some users as the update is deleting content from personal folders. Earlier this week, at Microsoft's hardware event in NYC, the company announced that the latest update to Windows 10,1809, is now available for everyone. While the company did test several candidates before releasing this particular build, a handful of users are reporting serious issues. What started as a thread on Reddit, has spread to Microsoft's support forums and Twitter, the primary issue is that after installing the update, users are reporting that content inside of documents, pictures, music, and videos are gone. Others are reporting that they are unable to access partitions as well following the update. Typically, you could locate the content in Windows. old but those who are impacted by this issue are saying that this folder is empty following the update. User Picaresque on Reddit stated: I upgraded three devices yesterday (desktop PC, laptop, Surface) - on two the upgrade went perfectly, but on the desktop PC one profile had the documents and pictures folder deleted. Completely gone, nothing in Windows. old either. Restored to the previous Windows version, but files were still missing. What's unknown right now is how widespread this issue actually is at this time, but when you're working on a scale of hundreds of millions, it doesn't take a large percentage to impact a significant number of users. That being said, you may want to hold off on upgrading while the scope of this issue is determined. If you do attempt the update and see an issue about an Intel driver warning, do... --- ### Microsoft Takes the Cautious Route With Surface Updates - Published: 2018-10-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-takes-the-cautious-route-with-surface-updates/ - Categories: Hardware - Tags: Microsoft, News, Surface Microsoft updated several of its core products this week and announced a new peripheral; while they didn't hit a home run, this is a reasonable update to the lineup. This week in NYC, Microsoft unveiled several updates to its popular Surface hardware. The Studio, Pro, and Laptop were all updated with new internals and Microsoft also tossed in a new color option for the Pro and Laptop as well. At the event, Microsoft updated the branding for the Surface Pro, whereas the company previously launched Surface Pro 3, Pro 4, Pro, and now the Pro 6; officially there was no ' Pro 5'. The new device utilizes Intel's 8th generation Quad-Core CPU and the Surface Laptop 2 is also getting the same processor as well. Both devices come in a new black color that feels a bit more durable than what shipped with the original Surface Pro several years ago. One thing that these new devices do not ship with is USB-C which is an odd omission considering that the Surface Studio and Go now support the format. The Surface Studio was updated with a new display that is 38% brighter with 22% increased contrast, and the GPU is now from NVIDIA's Pascal family. The Studio does not come in black and retains its original color that matches the Surface Book 2 and other Surface hardware. From an update perspective, Microsoft played it overly-cautious. The company didn't deliver the heavily-requested USB-C port for the Pro or Laptop, nor did they deliver Thunderbolt 3 to any of the company's products. Considering the Studio is the company's flagship product, it's a bit disappointing that we will have to wait for another... --- ### What is Azure Firewall > In this post, I will discuss the Azure Firewall, a cloud-scale firewall service that was made generally available at the recent Microsoft Ignite conference. - Published: 2018-10-02 - Modified: 2024-09-04 - URL: https://petri.com/what-is-azure-firewall-2/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, DNAT, firewall, NAT, networking, Security, Virtual Network, VNET, VNet Peering - Article Type: Overview Aidan details Azure Firewall, a cloud-scale firewall service that was made generally available at the recent Microsoft Ignite conference. Firewall Options We are not short of options to deploy network security in the form of a firewall in Azure: Network Security Groups (NSGs): A Layer-4 policy that is associated with subnets in a virtual network (VNet). Web Application Firewall (WAF): A Layer-7 firewall for HTTP and HTTPS services that are deployed on the Medium or higher sizes of the Azure (Web) Application Gateway. Network Virtualization Appliances (NVAs): Linux virtual machines that contain firewall software from third-party vendors such as CheckPoint, Watchguard, Cisco, and so on. And earlier this year, Microsoft released a preview of the Azure Firewall, a new Azure firewall service. Unlike NSGs, Azure Firewall is intended to be a centralized deployment. And unlike the WAF, Azure Firewall is not instance-based; it operates as a true PaaS feature and doesn’t bother you with worrying about deployed instances. Instead, the Azure Firewall automatically scales under the covers to deal with your workloads. And unlike NVAs, you won’t need to license a third-party service to use the WAF. Azure Firewall The Azure Firewall is not a budget service; it will start at over $900 per month for a deployment, plus $0. 03 per GB of inbound/outbound of data that is processed. This will give you a clue as to how Azure Firewall should be used. Very often in the cloud, firewall services are distributed. It’s not uncommon to see NSGs on every subnet and a WAF for every application. Azure Firewall is intended to be deployed in a hub... --- ### Yammer’s New Vision – More Integrated with Azure and Office 365 > At the Ignite conference last week, GM Murali Sitaram laid out a new vision for Yammer and explained how the product will be better integrated with Office 365 and Azure - Published: 2018-10-02 - Modified: 2024-11-19 - URL: https://petri.com/yammer-new-vision-office365/ - Categories: Microsoft 365, Office - Tags: Azure, Office 365, SharePoint Online, Teams, Yammer At the Ignite conference last week, GM Murali Sitaram laid out a new vision for Yammer and explained how the product will be better integrated with Office 365 and Azure. At first blush, the vision addresses the obvious deficiencies that have afflicted Yammer for years and sets out a path for Yammer to become the social layer for Microsoft 365. Time will tell. Surprising Yammer The announcements made for Yammer at Ignite surprised me. I have long been critical of the application’s poor integration with the rest of the Office 365 suite and its deficiencies in areas like eDiscovery, compliance, and data sovereignty. The signs are that Microsoft plans to address all these problems over the next year or so, which is good news for a small but loyal fan base. Slow Progress Since 2012 Microsoft bought Yammer in 2012. Six years on, I think it is fair comment to say that it seems like Yammer stayed stuck in its own time warp since. Sure, Yammer uses Azure Active Directory for authentication and Office 365 Groups for membership, but these developments are poor return for such a long period of association with Office 365. The problem, I think, is that Yammer ploughed its own furrow since the acquisition. This might have been OK in 2012 when Office 365 consisted of a collection of mildly cloudified applications inherited from on-premises. It might even have been OK in 2014 when Microsoft expended enormous marketing effort to convince people that enterprise social networking was terrifically important. But ignoring other Office 365 services is not OK in 2018 when applications like Teams and Planner cheerfully consume multiple Office 365 workloads to deliver new functionality at a very high rate. The biggest benefit an application like Teams gets from using Office 365 components instead of rolling its own is that it doesn’t have to worry about... --- ### Microsoft Ignite – New Windows 10 Features Coming to Intune - Published: 2018-10-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-new-windows-10-features-coming-to-intune/ - Categories: Cloud Computing - Tags: cloud computing, Configuration Management, Microsoft Intune, System Center Configuration Manager, Windows 10 - Article Type: News Intune plays an important part in Microsoft’s modern desktop strategy, allowing organizations to deploy and manage Windows 10 without an on-premises Active Directory domain. Microsoft announced several new features that will make it easier to manage Windows 10 using Intune. Intune plays an important part in Microsoft’s modern desktop strategy, allowing organizations to deploy and manage Windows 10 without an on-premises Active Directory domain. Microsoft announced several new features that will make it easier to manage Windows 10 using Intune. Deploy Win32 Apps with Intune Currently in preview, Microsoft announced the ability to deploy ‘most’ legacy Win32 apps using the Intune Management Extension, including MSI, setup. exe, and MSP files. System administrators will also be able to use Intune to remove these apps. Intune already had the ability to install line-of-business (LOB) and Microsoft Store apps but this new capability will enable businesses to manage more legacy business apps using Intune. LOB applications are those that rely on a single MSI file with no external dependencies. Microsoft says that this new feature was built by the same team that created the Windows app deployment capabilities in System Center Configuration Manager (SCCM) and that Intune will be able to evaluate requirement rules before an app starts to download and install, notifying users via the Action Center of install status and if a reboot is required. Legacy Win32 apps are packaged using the Intune Win32 application packaging tool, which converts installers into . intunewin files. If you want to go further, we invite you to check out our detailed guide on how to package and deploy Windows applications with Intune. Security Baselines Microsoft publishes security baselines for supported client and server versions of Windows as part of the Security Compliance Toolkit (SCT),... --- ### Everything you need to know about SharePoint - September 2018 - Published: 2018-10-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-september-2018/ - Categories: SharePoint, SharePoint 2013, SharePoint 2019, SharePoint Online - Tags: Microsoft SharePoint, Microsoft Teams, OneDrive for Business, SharePoint Online - Article Type: News The month of Septemeber was filled with SharePoint news from Ignite 2018 and Shane helps you find the signal in all the noise. Okay. I will be upfront with you this month the word everything may be a stretch. Why? Because TechEd (I mean ignite, gosh I am old) was last week and I just haven’t consumed the 10,574, 212 announcements. My bad. They just announced way too much all at once. Shame on them. But don’t fret, still lots of good news here. Just the word EVERYTHING felt like too much even for this optimist. Oh, and now that I am done I realize I went admin heavy. If you aren’t an admin don’t despair. The last section is for you. SharePoint 2019 will be General Availability 2019 That is right on-prem fans, you get new bits within the next month. Crazy! I will be honest I haven’t used them much yet but I think the jist is most of the enhancements are around making on-prem feel more like online. 2016 was mostly back-end changes and 2019 will be mostly front end (user-facing) changes. In a bit of an oddity, I cannot find a blog post announcing SharePoint 2019 Server to link you to. Oh, how the mighty have fallen becoming just a footnote from Ignite. If you only read one post from TechEd (I did it again) read this one Bill Baer had the privilege of posting the here is everything we just said on stages from an admin’s point of view blog post. You can find it here. But as always here is my breakdown on the highlights... --- ### Windows Virtual Desktop is Multi-User VDI in the Azure Cloud - Published: 2018-10-01 - Modified: 2024-09-04 - URL: https://petri.com/windows-virtual-desktop-is-multi-user-vdi-in-the-azure-cloud/ - Categories: Virtualization - Tags: Azure, Ignite 2018, Microsoft 365, VDI, Windows 10, Windows 10 for Remote Desktops, Windows Virtual Desktop - Article Type: News Microsoft announced at its Ignite conference on Monday a new service called Windows Virtual Desktop that will preview later this year. In today’s Ask the Admin, I’ll take a closer look at exactly what this service provides. Microsoft announced at its Ignite conference on Monday a new service called Windows Virtual Desktop that will preview later this year. In today’s Ask the Admin, I’ll take a closer look at exactly what this service provides. Windows 10 for Remote Desktops As Brad Sams wrote Monday, Microsoft has announced a new Azure service called Windows Virtual Desktop. But how does this service differ from other VDI solutions? Firstly, Windows Virtual Desktop is hosted in the Azure cloud, alleviating the need to deploy expensive on-premises infrastructure, which is often a deal breaker for small businesses. Using a new edition of Windows 10, called Windows 10 for Remote Desktops, you will be able to deploy one VM in the cloud that can be used by up to ten users, a feature that was only previously available in Windows Server. Microsoft will also provide an option for organizations to provision a full VDI solution in Azure, where each user has a single persistent or non-persistent virtual machine. Microsoft will look after making sure Windows 10 stays up-to-date and that it is optimized to run Office 365 ProPlus. Although exactly what those optimizations are, Microsoft has yet to reveal. Because Windows Virtual Desktop (WVD) runs on Azure, organizations can quickly virtualize and scale modern and legacy desktop apps, and then manage the solution without needing all the infrastructure to monitor and back up an on-premises VDI solution. Additionally, while Windows Server has long supported multi-user remote sessions, the desktop experience isn’t... --- ### Everything you need to know about Office 365 September 2018 - Published: 2018-10-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-september-2018/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Teams, Office 2019, Office 365, Powerapps, Security - Article Type: News With Ignite happening last month, there was a lot of Office 365 news and Shane distills it down into an easy to read format. I am sticking with honesty is the best policy. Everything might be a stretch this month. With Ignite only ending a few hours ago I still haven’t read the bazillion announcements they made. So if I missed one don’t shoot the messenger, instead leave me a comment and I will try to roll it into October’s article. Good news is I have no life and read a lot of them so lots of cool stuff to follow. I hope. Oh, and I still call Ignite TechEd because I am old. Hopefully, the editor caught them all but if not “get off my lawn! ”. Multi-Geos scenarios continue to improve I don’t know if you have noticed but it seems there are a lot of countries that have some pretty strict rules on what data lives where. That is great for those countries but painful if you have to administer a global company and you want to use Office 365. Microsoft wants you to continue to use Office 365 so they continue to make some of the best investments of any company I know of, allowing you to comply with data residency. This time around the stand out piece for me is additional data residency reporting allowing you to prove you are meeting the requirements. Unfortunately, the Antarctica satellite office for PowerApps911 hasn’t opened yet. So if you want more info you will have to dig in yourself here and get the details from the horse’s mouth. PowerApps has a... --- ### Everything You Need to Know About Azure Infrastructure – September 2018 Edition - Published: 2018-10-01 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-september-2018-edition/ - Categories: Microsoft Azure - Tags: Alias DNS Records, App Services, Application Gateway, Avere vFXT, Azure, Azure AD Authentication for Azure Files, Azure File Sync, Azure Files Data Box, Azure Firewall, Azure Migrate, Azure WAN, Backup, Blueprints, CDN, Containers, Data Box Edge, Data Box Heavy, DC-Series, DDoS Standard, Deployment Manager, ExpressRoute, ExpressRoute Direct, ExpressRoute Global Reach, Front Door, Governance, HB-Series, Hyper-V, Java SE, linux, Load Balancer, Managed Disks, Microsoft Ignite, Microsoft Learn, Microsoft Secure, Monitor, ND_v2-Series, networking, NV_V2-Series, Premium Blob Storage, Premium Files, Public IP Address Prefix, Quickstart Center, RDMI, Remote Desktop Modern Infrastructure, Serial Console, Service Endpoint, Service Endpoint Policies, Service Fabric Mesh, Standard SSD, storage, Tomcat, Ultra SSD, virtual machines, Virtual Network for Containers, Virtual Network TAP, VM Image Builder, WAF, WAG, Web Application Firewall, Windows 10 Enterprise Multi User, Windows Admin Center, Windows Server 2019, Windows Virtual Desktop, WS2019 - Article Type: Overview Septemeber was full of Azure announcements from Ignite, Aidan breaks all the news down so that it is easier to digest. This article is a summary of all the Azure IaaS news from the month of September. I’ve been promising that Microsoft Ignite, which ran last week in Orlando, Florida, would be a gigantic dump of news. I was not wrong; this post can also be called The Monster Azure News Drop From Microsoft Ignite 2018. Microsoft actually published a 27-page “book of announcements” – I read it last week and it was far from complete because much more news was released during the keynotes and many breakouts. I’ll do my best to hit the big items here, but if Microsoft’s blog posts and “book” couldn’t include everything, then I know I won’t either - any of the items that don't have a hyperlink were noted during sessions. And note that there were hundreds of breakout sessions so I was not everywhere and there probably are things that I did not hear about. Microsoft Ignite - Compute This is the news related to virtual machines and other ways of running your applications: Windows Server 2019: WS2019 will be available and supported on virtual machines in early-mid October. DC-Series virtual machines: These machines, coming in October, will offer confidential computing. NV_v2 and ND_v2 virtual machines: Entering limited preview, the ND_v2 is for HPC workloads and the NV_v2 improves the spec of desktop virtualization, CAD, and gaming machines. HB-Series and HC-Series virtual machines: Specialized hardware focused performance on memory bandwidth (HB) and CPU-intensive (HC) workloads. Serial Console: Serial console access for... --- ### Everything You Need to Know About Windows – September 2018 - Published: 2018-09-28 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-september-2018/ - Categories: Windows 10 - Tags: Desktop Analytics, Desktop App Assure, Ignite 2018, Microsoft Search, Windows 10, Windows Admin Center, Windows Server 2019, Windows Virtual Desktop - Article Type: News This month sees lots of announcements coming out of Microsoft’s annual Ignite conference for IT pros, including about a preview version of Windows Virtual Desktop and Windows Server 2019 general availability. This month sees lots of announcements coming out of Microsoft’s annual Ignite conference for IT pros, including about a preview version of Windows Virtual Desktop and Windows Server 2019 general availability. Windows 10 Support Lifecycle At the beginning of the month, Microsoft announced more changes to Windows 10’s support lifecycle. Starting with the next major release of Windows 10, version 1809 which is due in October, Microsoft will support all Enterprise and Education edition fall releases for 30 months. The spring release will be supported for 18 months, suggesting that Microsoft might focus on fit and finish in the fall releases and introduce new features in the spring. Users running Home and Pro will get 18 months’ support for both spring and fall releases. With Windows 7 support soon ending, it’s likely that Microsoft has made these changes to the Windows 10 support lifecycle to appease customers and encourage migration to Windows 7. Windows 7 Extended Security Updates In related news, Microsoft announced that it will provide extended security updates for Windows 7 Professional and Enterprise Volume License customers that are willing to pay for it through to January 2023. Microsoft will charge for extended security support on a per-device basis and the price will increase each year. Another incentive for organizations to migrate to Windows 10 sooner rather than later. Desktop App Assure and Desktop Analytics Again on the subject of migration off Windows 7 to Windows 10, with time running out, Microsoft has released two new... --- ### Paul Thurrott's Short Takes: September 28 - Published: 2018-09-28 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-28/ - Categories: Cloud Computing, Microsoft 365, Office, Windows 10 - Article Type: Opinion Because hazy, hot, and humid doesn't even begin to explain the weather in Orlando, this edition of Short Takes looks some of the other news that came out of TechEd, er ah, Microsoft Ignite this week. Before the tsunami of people: Microsoft Ignite, early in the morning Because hazy, hot, and humid doesn't even begin to explain the weather in Orlando, this edition of Short Takes looks some of the other news that came out of TechEd, er ah, Microsoft Ignite this week. Unlike Sasquatch, Surface Hub 2 is real Microsoft kicked off its Ignite conference this week with some bad news buried in a (literal) book of announcements: Its hotly-anticipated Surface Hub 2 collaborative display will basically be delayed until 2020, though a stripped-down version running the current Hub OS will ship in 2019 as first promised. But here's the thing: We were able to actually use Surface Hub 2---both with the original Hub OS and 2020's Hub OS 2. 0---and it is awesome. The only features we weren't able to experience first-hand were its incredible tiling capability, where you can attach three of the displays in portrait mode for a truly immersive experience. And video calling; in portrait mode, the person you're talking to appears life-sized. All-in-all, Microsoft has yanked a victory out of the mouth of defeat here by letting people like Brad and I actually use the device. It's real, not demo-ware, and that is perhaps the most surprising news of all. "VW partners with Microsoft to build cloud-connected cars" In its next scandal, VW will be found using on-premises technology to make "cloud" connectivity seem faster. Microsoft ships Office 2019 A new release of Microsoft Office... --- ### What Is Cortana's Future? Here's My Prediction - Published: 2018-09-27 - Modified: 2024-09-04 - URL: https://petri.com/what-is-cortanas-future-heres-my-prediction/ - Categories: Cloud Computing, Microsoft Azure - Tags: Cortana, Digital AI, Microsoft - Article Type: News The future of Cortana may be vastly different than what most imagined but it makes a lot of sense for Microsoft. This week in Orlando, Microsoft held it's Ignite 2018 conference where the company announced updates to many of its products and also introduced new features as well. But one thing is becoming more clear after hearing about how the company is pushing ahead in the enterprise, Microsoft's path forward for Cortana is changing and I have an educated guess about where the platform will land. For the consumer, Amazon, Google, and Apple have won. Each of those companies owns a piece of the pie in different ways but it's clear that Cortana, outside of Windows 10, will not see a wide adoption as a stand-alone product. The Invoke that Microsoft built with Harman-Kardon didn't exactly ignite the world on fire and the thermostat sold by Johnson Controls called GLAS, also works with Alexa and Google Assistant. While fans of Cortana may be upset about the direction Microsoft is taking with this agent, it falls perfectly into how the company operates and makes complete sense from a business perspective. Cortana, I believe, is going to become the 'queen' of the bots for Microsoft; an example of what is capable, being the best-in-class experience that you can build on top of Microsoft's digital services. Microsoft may continue to try to shove Cortana inside of its own services, but I don't see it grabbing a large foothold outside of Redmond software. Microsoft is creating a white-label experience for any company to come and build their own digital assistant using its platform... . --- ### New Search Experiences Also coming to Office 365 - Published: 2018-09-27 - Modified: 2024-09-04 - URL: https://petri.com/new-search-experiences-also-coming-to-office-365/ - Categories: Microsoft 365, SharePoint Online - Tags: Office 365, SharePoint Online - Article Type: How To, Overview In the same way Microsoft is introducing a new modern search experience in modern SharePoint Online (SPO) sites, the same strategy is being applied to search in Office 365. In this article we will make a review of the modern search features you can find in Office 365. In the same way Microsoft is introducing a new modern search experience in modern SharePoint Online (SPO) sites, the same strategy is being applied to search in Office 365. In this article we take a look at the modern search features you can find in Office 365. New search experiences in Office 365 From the Office 365 Home page, as soon as we click on the search box we automatically get suggested Applications, Documents, People and Sites (across the tenant) in which current user has been recently working on.    Figure 1. - Suggested content when doing click on the search box in the Office 365 Home page. If we type a search term in the search box, we will get search results suggested by the search engine. Bear in mind, that these results are coming from the SPO sites the user has access too. We will also have the possibility to get more results than the suggested ones. Figure 2. - Searching for a specific search term. If you click on the “See more results for ”, you will be redirected to the modern search results page in Office 365: Figure 3. - Search results page in Office 365. As you can see in Figure 3, apart from a modern user interface, the new search results page comes with the following elements: A search box where the user can change the search criteria. Search scopes, so the user can narrow the results he gets once he performs the query. As... --- ### Managing Teams Through the Teams and Skype for Business Online Admin Center > Microsoft announced at Ignite that you can soon manage Teams through the Teams and Skype for Business Online Admin Center. Office 365 - Published: 2018-09-26 - Modified: 2024-11-19 - URL: https://petri.com/managing-teams-admin-center/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Management, Skype for Business Online, Teams, TSBAC - Article Type: How To Microsoft announced at Ignite that you can soon manage Teams through the Teams and Skype for Business Online Admin Center. Office 365 administrators will welcome this because it means that they can manage teams without being a member of those teams. And they can avoid PowerShell, which is a pity. Teams Are A-Changing At first blush, the notion that it is news that you can now manage teams through the Teams and Skype for Business Online Admin Center (TSBAC) seems a tad surprising. After all, isn’t the whole point of the TSBAC that you should be able to manage teams? Like life, the answer is complicated. As we all know, Microsoft is in the middle of a transition from Skype for Business Online to Teams. The introduction of TSBAC is part of that transition, as is the move from tenant-wide settings that govern Teams behavior to policy-based management. All of this has been happening over the past few months. Improved Management Among the new features for Teams Microsoft announced this week at Ignite is that TSBAC now offers tenant administrators the ability to manage teams without having to log into the Teams client or connect to Teams with PowerShell. The update to TSBAC is in private preview now and according to Microsoft sources, it will be available to customers in October. Integrating team management in TSBAC is a good thing because it removes the need for an administrator to be an owner of a team before they can make changes to team settings. It’s also basic functionality that it has taken far too long for the Teams development group to deliver, probably because their focus over the past year has been on cranking out the functionality needed to move customers off Skype for Business Online. Manage Teams with... --- ### Microsoft Ignite 2018 - Azure Management And Governance News > This post includes some of the great news about managing and ensuring governance in Microsoft Azure that was shared at the Ignite conference this week. - Published: 2018-09-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-2018-azure-management-and-governance-news/ - Categories: Microsoft Azure - Tags: Azure, Azure Monitor, Azure Policy, Blueprints, Cloudyn, Cost Management, DevOps, Governance, Ignite 2018, Log Analytics, Resource Graph - Article Type: Overview Aidan discusses some of the great news about managing and ensuring governance in Microsoft Azure that was shared at the Ignite conference this week.   Azure Blueprints Microsoft has a number of individual solutions that can be used together to ensure governance: Role-based access control (RBAC): Using a combination of delegated permissions via roles assigned to management groups, subscriptions, resource groups, and (ideally never) resources, you can limit people to just the tasks that they need to complete their jobs. Azure Policy: Policy allows you to create a ... policy that controls what can be done by people who have permissions. These policies are assigned to management groups, subscriptions, or resource groups. For example, you can force tags to be assigned, limit regions that can be used, or prevent certain kinds of virtual machines from being deployed. However, governance of a deployment is more than the above. Sometimes you need to control how applications are designed and deployed; Azure Blueprints, generally available today, addresses this need by combining the above into a packaged deployment with: Resource groups: Controlling which resources go where so RBAC roles can be assigned appropriately. ARM Template: The techie bits of the deployment are controlled centrally, assigning approved architectures for deployment. Guest Configuration for Azure Policy Until now, Azure Policy was limited to dealing with management groups, subscriptions, resource groups, and resources. In the case of virtual machines, it could audit and control virtual machine configurations, but that’s just a small part of the story. What about what’s happening inside the guest OS? A new preview feature, called Guest Configuration for Azure Policy, allows you to reach inside... --- ### Surface Hub 2's Best Feature Isn't The Screen or Hinge - Published: 2018-09-25 - Modified: 2024-09-04 - URL: https://petri.com/surface-hub-2s-best-feature-isnt-the-screen-or-hinge/ - Categories: Hardware - Tags: Ignite 2018, Surface Hub 2 - Article Type: News Microsoft's Surface Hub 2 attracted a lot of attention for its hardware but it's the software that will steal the show. When Microsoft announced yesterday that the Surface Hub 2S would arrive in 2019 and the 2x, the version they showed off earlier this year, wouldn't arrive until 2020, to say that news was disappointing is a bit of an understatement. Earlier today, I was able to get my hands on one of the new pieces of hardware and the future looks promising. First are foremost, we were not allowed to take pictures or video of the device as it was prototype hardware and had a few rough edges. That being said, the hardware is absolutely real and the updated hub operating system was running relatively smoothly for it being a prototype. While the hardware is great, the unique aspect of the Hub 2 will absolutely be the software. The rotation of the screen from a physical perspective was simple and it very easy to manipulate but the animation needs a bit of refinement; for a product that's not coming for at least another year, they have plenty of time to fix this little issue. But the bigger innovation with the hardware is multiple users being able to authenticate to the device. Using the fingerprint sensor, up to 16 users can be logged into the hardware at one time to access their own content and share it with the people in the meeting. Further, the authentication is per-app based. Meaning, one person can be logged in and open a word document and another person can authenticate to open an... --- ### Microsoft Ignite 2018 - Azure Miscellaneous News - Published: 2018-09-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-2018-azure-miscellaneous-news/ - Categories: Microsoft Azure - Tags: Azure, Azure Migrate, certification, Hyper-V, Ignite, Ignite 2018, Learn, Microsoft Ignite, Microsoft Virtual Desktop - Article Type: Overview Aidan shares the latest information that I have on various Azure announcements that don’t easily fit into other categories. In this post, I will share the latest information that I have on various Azure announcements that don’t easily fit into other categories. I’m going to seem like a total "Negative Nelly" here, but I have lots of great Azure news in other posts. As I like to remind people, you don’t have to like the entire menu to recommend a restaurant. Education One of the themes this week at Ignite is career transformation for IT pros. There is no choice – you must adapt to The Cloud or face becoming irrelevant. That means that you must learn. But even if you have gone on training and gotten some experience, The Cloud waits for no one. The old practices of clinging to knowledge from a decade ago won’t work because change is a constant in The Cloud. Microsoft has founded Microsoft Learn to deliver small chunks of cloud training to IT Pros. The idea is to make it easy to learn how to do certain tasks, with some measurement and achievement processes. It is still early days and I have only had a quick look, but this site looks to me like another method of delivering information that Microsoft already delivers on docs. microsoft. com – a site which Microsoft and the community keeps current via edits on GitHub. I can’t see Microsoft Learn staying current. Also, Learn lacks something that all Microsoft education does – it doesn’t have joined up architectural training. Hopefully Learn has a strong command with... --- ### The Tenth Version of Exchange Shows There’s Life in this On-Premises Server > Microsoft released lots of information about Exchange 2019 at the Ignite conference. Administrators will love some of the new features. - Published: 2018-09-25 - Modified: 2024-09-04 - URL: https://petri.com/exchange2019-email-server/ - Categories: Exchange 2019, Exchange Server - Tags: email, Exchange 2019, On-Premises, Server Core, Windows 2019 - Article Type: News Microsoft released lots of information about Exchange 2019 at the Ignite conference. Administrators will love some of the new features, but end users will find little to amuse them. But then again, the Exchange on-premises story is all about being a bulletproof enterprise-class email server. And that's just what Exchange 2019 delivers. Exchange 2019 on the Way While much of the attention at the Microsoft Ignite conference focused on Microsoft 365, artificial intelligence, Azure, and the cloud, there’s still life in on-premises software, a fact underlined by the strong interest in Exchange 2019 when the developers took the wraps off the tenth version of Microsoft’s enterprise email server. Two thousand people signed up to attend a session introducing Exchange 2019. Not everyone got into the room because it was packed to overflowing, but the thirst for information was palpable. Given that email was the first and easiest workload to move to Office 365, it might seem surprising to find that a new generation of Exchange is about to ship. But this is a different Exchange. Shorn of any pretension to be a collaboration platform, Exchange 2019 is an enterprise email server, pure and simple. Still Many On-Premises Users Microsoft has never released a public figure for the number of Exchange licenses it has sold. Some industry experts estimate that the number might be as high as 350 million. Microsoft says that Office 365 has 135 million monthly active users (maybe 150 million now), so the numbers say that there’s still lots of Exchange mailboxes happily running on-premises. I think most small to medium businesses have moved to Exchange Online, so the remainder are likely in large deployments. Large enterprises are notoriously reluctant to embrace new technologies. And to be fair, some of the attractiveness of the cloud is undermined by... --- ### Windows Admin Center 1809 Reaches General Availability - Published: 2018-09-25 - Modified: 2024-09-04 - URL: https://petri.com/windows-admin-center-1809-reaches-general-availability/ - Categories: Windows Admin Center - Tags: Configuration Management, Ignite 2018, Microsoft Ignite, Windows Admin Center, Windows Server - Article Type: News Just before Microsoft’s Ignite conference got started this week, version 1809 of the Windows Admin Center and SDK reached general availability. In this Ask the Admin, I’ll look at some of the new features. Just before Microsoft’s Ignite conference got started this week, version 1809 of the Windows Admin Center and SDK reached general availability. In this Ask the Admin, I’ll look at some of the new features. This week’s Ignite conference will see lots of announcements from Microsoft. But before the week even got started, Microsoft announced that version 1809 of the Windows Admin Center and Software Development Kit (SDK) had reached general availability, ready to support Windows Server 2019. Windows Admin Center (WAC) is a web-based GUI management tool for Windows Server. Microsoft is investing heavily in WAC and it is likely that it will replace the management consoles (MMCs) that have been part of the OS since Windows 2000. WAC first reached general availability in April 2018. Since then, Microsoft has been improving the tool rapidly. Version 1809 isn’t the first update since WAC came out of beta, with several preview versions being released over the summer. According to Microsoft, WAC is the fastest growing Windows Server management tool ever, reaching more than a million managed nodes just two months after general availability. For more information on Windows Admin Center, see Windows Admin Center — The Future of the Windows Server GUI and Getting Started with the Windows Admin Center on Petri. Windows Admin Center 1809 New Features Microsoft says that most the core new features added since version 1804 are a result of user feedback. One of the main features I noticed was missing in my initial review... --- ### Office 2019 Now Available for Mac and PC - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/office-2019-now-available-for-mac-and-pc/ - Categories: Office - Tags: Microsof, Office 2019 - Article Type: News Microsoft is making Office 2019 available starting today but only for a small group of customers; consumers will have to wait a few more weeks. It has been a busy day in Orlando where Microsoft is hosting its Ignite conference where the company is talking about new virtual desktops, updates to Surface Hub 2 availability and a lot more. But that's not all, the company is announcing today the availability of Office 2019 as well. Starting today, Office 2019 is becoming available for Mac and Windows users but there are a few caveats that you should be aware of before you go hunting for the download links. Office 2019 is the next on-premises version of Word, Excel, PowerPoint, Outlook, Project, Visio, Access, and Publisher If you are a Commercial volume license (trusted) customers can access Office 2019 starting today but if you are any other type of customer, the software will be available in the coming weeks. For customers that are running Office 365, all of the updates in Office 2019 are already available to you but for those who are not running the cloud software, the updates bring new features like morph and zoom functionality for PowerPoint, Excel adds new data analysis functions, and Outlook/Word has new learning tools like Read Aloud and Text Spacing. There's a lot more in the latest on-premises version of Office 2019 that starts rolling out today and you can learn more here. --- ### Microsoft Ignite 2018  - Azure Storage News - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-2018-azure-storage-news/ - Categories: Microsoft Azure - Tags: Azure, Azure AD, Azure AD Authentication for Azure Files, BLOB, Data Box, Managed Disks, Premium Blob, Premium Files, storage - Article Type: Overview This week at Ignite, Microsoft has announced a sizeable amount of data storage news and Aidan breaks it all down for easy consumption. In this post, I will discuss some of the headline news about networking in Azure that has emerged this week at Microsoft Ignite 2018. Virtual Firewall Microsoft’s new in-Azure virtual network firewall is generally available much sooner than I expected. This firewall auto-scales with your deployments, offering security and performance no matter how big your application gets – according to Microsoft. You can create and control network security in a central location. Unlike in the preview, Azure Firewall now support inbound and outbound data flows. It also supports ExpressRoute and VPN connections, and has support for Network Watcher, Azure Monitor, Azure Security Center, and Application Services. This service has evolved much quicker than I thought it would! Virtual WAN Microsoft’s cloud-based software-defined WAN service, Azure WAN, went into preview at the same time as Azure Firewall, and it has also beat my expectations by becoming generally available this week. Azure WAN offers a solution where you can create a WAN from lots of offices/locations using VPN connections. Ideally, this is done using a supported software-defined WAN partner product, but you can use any Azure-supported IKEv2 VPN device with a bit more manual configuration. ExpressRoute connections can also be integrated into Azure WAN; this means that central offices with a low latency/high speed connection can integrate with remote offices which are limited to VPN. ExpressRoute Direct This new offering, which is in preview, allows customers to get connections up to 100 Gbps to Microsoft’s global backbone. This can be... --- ### Is Microsoft's Surface Hub 2 Delayed? It's Complicated - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/is-microsofts-surface-hub-2-delayed-its-complicated/ - Categories: Hardware - Tags: Ignite 2018, News, Surface Hub 2 - Article Type: News Microsoft has announced the availability of Surface Hub 2 for 2019 but it's complicated and the next-gen OS won't arrive until much later. Earlier this year, Microsoft showed off where the company was taking its Surface Hub with the expectations that customers would be able to buy the hardware in 2019. While technically you will be able to buy the new hardware next year, the new software that offers dynamic rotation and other features will not arrive until 2020. Announced at Ignite, Microsoft will be offering two iterations of Surface Hub 2 - 2S and 2X. The 2S, which is the version arriving in Q2 of next year, will run the current Surface Hub software and you will be able to upgrade it to the 2X but it's not as simple as downloading the new OS; the compute unit inside the hardware is modularized and you will have to physically swap the silicon. Surface Hub 2X is the next generation hardware that runs an OS that is cloud-backed and offers features like dynamic rotation, multi-user authentication, tiling; both the 2S and 2X are 50. 5in 4k+ panels with a 3:2 aspect ratio. This product will not arrive until 2020 which makes it arriving later than most expected. The reason I say that it is complicated if the hardware is delayed is that the company will ship some of the new hardware next year. The physical device of the 2S will look like the new generation hardware but under the hood, it's running the older components. These components can be swapped for the new 2X bits once they are ready but Microsoft isn't... --- ### Microsoft's Windows Virtual Desktop Delivers A Modern Desktop with Azure - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-windows-virtual-desktop-delivers-a-modern-desktop-with-azure/ - Categories: Cloud Computing, Virtualization, Windows Client OS - Tags: Ignite 2018, News, Windows 10, Windows Virtual Desktop - Article Type: News Windows Virtual Desktop is a new cloud service that delivers a multi-user Windows 10 experience which is optimized to work with Office 365 Pro Plus. This week, Microsoft is hosting their largest conference of the year for IT Pros. The company has made a number of announcements related to Azure, Office but for those who use virtual desktops, Windows Virtual Desktop is likely something you will want to pay close attention to. Windows Virtual Desktop is a new cloud service that delivers a multi-user Windows 10 experience which is optimized to work with Office 365 Pro Plus. The new offering makes it significantly easier to scale Windows 10 and Office deployments on Azure and comes with built-in security and compliance. Microsoft hasn't revealed all the details about how licensing will work with this service but the company is targeting to release the product in preview by the end of 2018. Interestingly, if you sign up for this service, Microsoft will provide free Windows 7 Extended Security Updates. The company is clearly using the security updates as a carrot on a stick to help move users off of that aging operating system. I fully expect that as we approach the 2020 deadline for the end of lifecycle support of Windows 7, that Microsoft will continue to find ways to provide 'free' updates to Windows 7 that they will bundle with other products. We don't have all the details yet on the virtual desktop experience that is coming to Azure but as Microsoft makes the information available, I'll keep you posted. --- ### SQL Server 2019 Now Available In Public Preview - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-2019-now-available-in-public-preview/ - Categories: SQL Server - Tags: Ignite 2018, News, SQL Server 2019 - Article Type: News Microsoft is making available the next generation of on-premises SQL Server software but be aware that this is a preview and not the final package. This week, Microsoft is filling up the news feeds with announcements from Ignite 2018 with everything from improved searching to announcing the availability of Surface Hub 2. For those who have been waiting for SQL Server 2019, the preview is now available. This new version of SQL Server brings with it the ability to ingest, store and analyze vast amounts of data with a built-in Spark and Hadoop distributed file system. The company is also expanding the connectors to make it possible to query databases like Oracle, Teradata and MongoDB directly from SQL Server. The expansion of the connectors will be key for companies who have multiple types of databases as it will make it possible to bring queries from separate systems significantly faster. Faster queries means, faster reporting and less overhead for creating reports that management needs to make decisions. Microsoft hasn't officially said when SQL Server 2019 will come out of preview but the company typically leaves software like this in this state for 3-5 months. Depending on how feedback is with early adopters, this timeline can be accelerated. Even though the cloud is all the rage for Microsoft, there is still a significant presence of on-premises hardware that the company will not abandon anytime soon. Hybrid environments continue to be popular options for larger companies and I don't see that trend going away anytime soon. --- ### Windows Server 2019 Arrives in October - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2019-arrives-in-october/ - Categories: Windows Server, Windows Server 2019 - Tags: Ignite 2018, News, Windows Server 2019 Microsoft has announced that Windows Server 2019 will arrive next month and if you are still running 2008, you need to start planning your upgrade. We knew it was coming and now Microsoft is making it official, the next release of Windows Server is coming in October. The company has been testing the operating system with a public preview for several months. This release will also be the latest update to the Long-Term Servicing Channel which means that it will receive active support for five years with an additional five years of extended support. If you don't like updating your server operating system frequently, and I don't blame you, this is the version you will want to install if you are upgrading. For those that are running are the faster Semi-Annual Channel, version 1809 will release alongside Sever 2019 and brings new support for containers and micro-services. Windows Server 2019 brings Azure and on-premises installations closer together and includes built-in layers of protection for increased security and provides hyper-converged infrastructure for greater efficiency and scale. In addition, Windows Admin Center, version 1809, will also be available in October as well. For Microsoft, this is a significant release as it is the next major update to the software that is the backbone of millions of businesses. I don't expect many customers to upgrade to Server 2019 immediately but if you are running an older version of Windows Server, especially 2008, you need to start planning for migration as that product reaches end of life in January of 2020. --- ### Cortana's New Skills Kit Hopes To Make it the AI for the Enterprise - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/cortanas-new-skills-kit-hopes-to-make-it-the-ai-for-the-enterprise/ - Categories: Windows 10 - Tags: Cortana, enterprise, Ignite 2018, News - Article Type: News Microsoft is working on a new skills kit for enterprise customers that will make it easier to integrate the digital assistant into your workflow. While Microsoft's digital assistant has not caught on with consumers like Alexa or Google's Assistant, there is one place where Microsoft is uniquely positioned to win, the enterprise. This week at Ignite, the company is announcing a new skills kit that they hope will help increase the adoption of the platform. Appropriately named, Skills Kit for Enterprise, this solution allows customers to build end-to-end skills and agents, test with users, and then manage the deployment to their organization. The goal is to help enterprises build custom skills for their organizations that achieve specific tasks that may have otherwise not been built because of their niche application. This is one of those things that makes complete sense for Microsoft to offer with Cortana but it also makes you wonder why it took this long to arrive. And on that note, the preview is only available to those invited to the program which means if you are looking to build a skill, you are going to have to wait a bit longer. But, know that custom Cortana skills are coming and if your organization has been using the AI platform, this is the next step to making each digital encounter with Cortana, truly unique. Microsoft's efforts to advance its AI capabilities manifest inside of Cortana as this is the easiest way for that technology to make a direct connection to the end user. Even if Microsoft's digital assistant never catches on with consumers or the enterprise, the AI work going... --- ### Microsoft's New Unified Search Looks to Crack the Internal Content Discovery Nut - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-unified-search-looks-to-crack-the-internal-content-discovery-nut/ - Categories: Microsoft 365 - Tags: Ignite 2018, Microsoft, News, Unified search - Article Type: News Microsoft is bringing a new unified search experience to Microsoft 365 that it hopes will making Each day, we create more data than we did yesterday and with each new insight, comes a significant amount of content. One of the problems with creating this much data is discoverability of other's content but also being able to quickly find your own files. Microsoft has long preached that they are creating the best productivity software on the planet but one of the major problems was that you needed to rely on outdated searching workflows to jump between files. Announced at Ignite, the company is bringing a unified search experience to all of its Microsoft 365 products. Yes, apps like Word and Excel have had search bars for many years but now the search experience will reach outside the application and be able to pull back anything that Microsoft 365 touches. The idea is that every search bar should be a resource center for your content and that you shouldn't have to leave Word to find content in other documents. Currently, the search experience in Windows 10 is lacking depth but if Microsoft's upcoming implementation dramatically overhauls what Windows 10 currently offers, this will be a significant benefit to Microsoft 365 customers. And the fact that this search experience will be accessible from inside any of the company's productivity applications shows the company truly believes that they have cracked the nut on internal content-discovery. While Microsoft has previously used search content from the Microsoft graph, they are now introducing AI technology from Bing. A preview of this... --- ### Microsoft Ignite 2018 - Azure Networking News > In this post, I will discuss some of the headline news about networking in Azure that has emerged this week at Microsoft Ignite 2018. - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-2018-azure-networking-news/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, Azure WAN, DDOS, ExpressRoute, Front Door, networking, VPN - Article Type: Overview There was quite a bit of networking news from Ignite and Aidan breaks it down for you to digest. In this post, I will discuss some of the headline news about networking in Azure that has emerged this week at Microsoft Ignite 2018. Virtual Firewall Microsoft’s new in-Azure virtual network firewall is generally available much sooner than I expected. This firewall auto-scales with your deployments, offering security and performance no matter how big your application gets – according to Microsoft. You can create and control network security in a central location. Unlike in the preview, Azure Firewall now support inbound and outbound data flows. It also supports ExpressRoute and VPN connections, and has support for Network Watcher, Azure Monitor, Azure Security Center, and Application Services. This service has evolved much quicker than I thought it would! Virtual WAN Microsoft’s cloud-based software-defined WAN service, Azure WAN, went into preview at the same time as Azure Firewall, and it has also beat my expectations by becoming generally available this week. Azure WAN offers a solution where you can create a WAN from lots of offices/locations using VPN connections. Ideally, this is done using a supported software-defined WAN partner product, but you can use any Azure-supported IKEv2 VPN device with a bit more manual configuration. ExpressRoute connections can also be integrated into Azure WAN; this means that central offices with a low latency/high speed connection can integrate with remote offices which are limited to VPN. ExpressRoute Direct This new offering, which is in preview, allows customers to get connections up to 100 Gbps to Microsoft’s global backbone. This can be... --- ### Microsoft Ignite 2018  - Azure Virtual Machines News > In this post, I will share some of the news about Azure virtual machines from the Microsoft Ignite 2018 conference. - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-2018-azure-virtual-machines-news/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, Managed Disks, SQL Server 2019, virtual machines, Windows Server 2019 - Article Type: Overview Aidan breaks down all the Azure Virtual Machine news from Microsoft's Ignite conference. In this post, I will share some of the news about Azure virtual machines from the Microsoft Ignite conference that is currently being held in Orlando Florida. On-Premises Too The first couple of pieces are for on-premises products that can also be used in Azure virtual machines. Windows Server 2019 was announced as being completed with general availability to come in October – I’ve always suspected early-mid October on a Thursday, morning time (west coast USA) to be precise because that seems to be a thing with Microsoft. Azure is going to be one of the few places where you might want to run Windows Server 2019 at first. This is because customers are getting the bits at the same time as manufacturing, and the likes of Dell and HPE have not had time to certify/fix their hardware, firmware and drivers for the new release. Azure, being completely virtual (Hyper-V) and owned by Microsoft will have full support from day one – although this support issue doesn’t hard-stop you from using the bits on your own hardware. Also being launched is a preview for SQL Server 2019. Big data seems to be the focus here, with support for Hadoop and Spark, and connectors for external databases such as Oracle, MongoDB, and Teradata. New Virtual Machines Microsoft still has 16 more letters from the English alphabet left for naming new series of virtual machines. But instead of expanding out, they are expanding varieties of existing series. Two new specialties... --- ### No Skype for Business Online for Small Office 365 Tenants > In news gently leaking out, Microsoft is set to announce that new Office 365 tenants with 500 or fewer licensed seats will have to use Teams. - Published: 2018-09-24 - Modified: 2024-09-04 - URL: https://petri.com/no-skype-for-business-online-small-office-365-tenants/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Office 365, Skype for Business Online, Teams - Article Type: News In news gently leaking out, Microsoft says that new Office 365 tenants with 500 or fewer licensed seats will have to use Teams. These tenants won't have the option to use Skype for Business Online. Then again, you have to ask the question whether they want or need to use Skype for Business Online? Existing tenants aren't affected by the news. Teams is The Primary Communications Client To help accelerate the transition from Skype for Business Online to Teams, news leaked last week that Microsoft will force new small Office 365 tenants to use Teams as their communications platform. The text posted to partners in a publicly available forum says: "Starting Oct. 1st, new Office 365 customers with 500 seats or less will be onboarded to Microsoft Teams and will not have access to Skype for Business Online. Tenants that are already using Skype for Business online will be able to continue doing so (including provisioning new users) until they complete their transition to Microsoft Teams. Microsoft has begun offering automatic upgrades from Skype for Business Online to Teams for Microsoft direct customers. Starting November 1st, we will begin offering partner associated customers automatic upgrades from Skype for Business Online to Teams.   Tenant Administrators will be given advance notification via email and through the Office 365 Message Center. " Sharing the News The information was shared with Microsoft partners in a Yammer network, which then led to some partners communicating the news to their customers (here's an example). Following some pushback, Microsoft published a support article yesterday to clarify the situation before their Ignite 2018 conference started in Orlando. The support article is short and blunt, but the news remains the same. Moving to Teams The important point in all these communications is the cut-off point for Teams. If you have 500 licensed users or less in a new Office 365 tenant, you head direct for Teams... . --- ### Should you be Using Disaster-Recovery-as-a-Service? - Published: 2018-09-23 - Modified: 2024-09-04 - URL: https://petri.com/should-you-be-using-disaster-recovery-as-a-service/ - Categories: Amazon Web Services, Backup & Storage, Cloud Computing, Hybrid Cloud, Microsoft Azure, Virtualization - Tags: Azure, Backup, Cloud, Disaster Recovery, hybrid cloud, Virtualization - Article Type: Overview There’s no doubt that building disaster recovery (DR) plans for your organization can be tough. There are an amazing number of factors that you have to consider, plan for, and purchase. There’s no doubt that building disaster recovery (DR) plans for your organization can be tough. There are an amazing number of factors that you have to consider, plan for, and purchase. First, you need to identify your business critical workloads and all of their components as well as knowing their dependencies and their startup precedence. You need to determine your Recovery Time Objectives (RTOs) -- the maximum period of time that an application can be unavailable and your Recovery Point Objectives (RPOs) -- the maximum amount of data loss you can tolerate. In many cases, setting up an effective DR plan for your business often involves building up physical DR backup sites, buying hardware to handle your DR workloads, and using a data replication solution to transfer your production data to the backup DR site. Although there’s no doubt this is an essential undertaking it can also be lengthy, complicated and incredibly expensive. Even though most businesses do have a DR plan in place, it’s not surprising that many organizations are not confident in their DR capabilities. The Veeam Availability Report for 2017  showed that six out of seven organizations lack a high level of confidence in their ability to reliably recover the data from their virtual environments. Further, 85% of respondents rated themselves less than very confident in their organization’s capabilities of VM backup and recovery. Disaster-Recovery-as-a-Service (DRaaS) has emerged as an alternative to traditional DR implementations and it promises the ability to simplify your DR processes as well... --- ### Paul Thurrott's Short Takes: September 21 - Published: 2018-09-21 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-21/ - Categories: Cloud Computing, Windows 10 - Tags: News - Article Type: Overview Because half the planet is waiting for their new iPhone to arrive this morning, this edition of Short Takes looks at Microsoft coming victory in the cloud and its coming defeat in advertising, Microsoft Managed Desktop, another Google betrayal, and much, much more. I miss on-prem computing. Because half the planet is waiting for their new iPhone to arrive this morning, this edition of Short Takes looks at Microsoft coming victory in the cloud and its coming defeat in advertising, Microsoft Managed Desktop, another Google betrayal, and much, much more. Of Microsoft's predicted cloud victory There is a growing consensus among industry analysts that Microsoft, and not Amazon, or Google, or Salesforce, or any other firm, will effectively "win" the enterprise cloud market. And it has to do with Microsoft's years of experience with the enterprise, and the trust that has developed as a result. Also, Microsoft---like the rest of the industry---is talking up the so-called "digital transformation" that is happening as we all collectively turn to cloud computing. And the fact that Microsoft is itself making this transition, and doing so successfully, helps it sell its wares as well. But the cherry on this cloud-based pie is an advantage that Microsoft's competitors can never match: Only Microsoft can offer true hybrid solutions, which will be a requirement for virtually all enterprises, for regulatory, legal, or other reasons. In other words, these other firms may get the occasional win. But Microsoft will almost always be a part of the story too. And I have to say, I buy into this story. And while Microsoft's future may have a lot less to do with the client technologies I personally find the most interesting, it will be a rich---and,... --- ### New Features Start Showing up in Azure Portal Ahead of Ignite > In this post, I share some Azure storage news that has either appeared or been announced for blob storage and the Azure Portal. - Published: 2018-09-20 - Modified: 2024-09-04 - URL: https://petri.com/some-pre-ignite-azure-storage-news/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, BLOB, Immutable Storage, Managed Disks, Standard SSD, storage, Storage Account, virtual machines, WORM - Article Type: News Ahead of Ignite, a few new Azure features have started to show up. Some of the new Azure features that will be announced next week at Microsoft Ignite have been appearing in the Azure Portal in the last few weeks, and some have already been announced online. This post will look at some of the Azure storage news we know in advance of the humongous conference. New Storage Account Creation Experience Microsoft has been looking at how to improve the user experience in the Azure Portal since the first day that it was launched. It looks like the “blade” approach is coming to an end. Blades have been the buts of many a joke since the Azure Portal was launched in preview as Codename Ibiza – some wondered if every Azure operator should get an 84” Surface Hub to offer the acres of screen space that were required in the early days. Things did improve quite a bit, but Microsoft still had empirical data to show that improvements were needed. The first sign I had of this in the Azure Portal was the new tabbed UI for Application Security Groups – a way to group NICs for Network Security Group firewall rules. Briefly last week, some saw a glimpse of the new tabbed experience for Azure VMs before it was withdrawn – but it is back again. And this UI is also available for creating storage accounts. The tabbed UI for creating a new Azure storage account The tabbed UI proves a smoother approach,... --- ### Understanding Application Security Groups in the Azure Portal > This post will show how to deploy application security groups to create granular (per-NIC/virtual machine) network security group rules in the Azure Portal. - Published: 2018-09-20 - Modified: 2024-09-04 - URL: https://petri.com/understanding-application-security-groups-in-the-azure-portal/ - Categories: Microsoft Azure - Tags: Application Security Group, Azure, Azure Virtual Machines, firewall, Layer-4, Network Security Group, virtual machines - Article Type: How To Aidan shows you how to deploy application security groups to create granular (per-NIC) network security group rules in the Azure Portal. Application Security Groups Normally when you deploy a network security group (NSG) it is either assigned to a NIC or a subnet (preferred). If you deploy that NSG to a subnet then the rules apply to all of the NICs, or virtual machines, in that subnet. This is OK when you’re deploying a new system where you can easily place virtual machines into subnets, and treat each subnet as its own security zone. But in the real world, things aren’t always that clean, and you might need something that allows a more dynamic or flexible means of assigning rules to some machines in a subnet. An application security group allows you to logically group a number of virtual machine NICs from the same virtual network and apply a network security group (NSG) rule to them. I covered this topic last February but until now, the feature was not available in the Azure Portal so it was hard for many to implement and not very discoverable. Luckily, application security groups recently appeared in the Azure Portal. Last year, from late August until Microsoft Ignite at the end of September was an interesting time of year. New Azure features and services started to appear in the Azure Portal and were announced at the big Microsoft conference. Application security groups in the Azure Portal might be one of these. And the eagle-eyed reader might notice a new style of UI in the Azure Portal. Creating an Application Security Group You can start the... --- ### Microsoft Releases Teams Administrative Roles > To make things easier for Office 365 tenant administrators, Microsoft has released four new administrative role for Teams. - Published: 2018-09-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-teams-administrative-roles/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: administration, Azure Active Directory, Office 365, Roles, Skype for Business Online, Teams - Article Type: News To make things easier for Office 365 tenant administrators, Microsoft has released four new administrative role for Teams. You can now assign these roles to other people and have them take care of areas like Teams general admin or the more complicated area of voice and audio meetings and calling. It's a sign of increased maturity in the Teams product. Teams Roles Now Available In a surprise move because we expect Microsoft to keep all announcements until the Ignite conference rolls around next week, Microsoft released four new administrative roles to help Office 365 tenants to manage Teams more effectively, especially when the complexity of the Teams infrastructure for video and audio meetings and calling scales up. Four New Roles This move is to help organizations move from Skype for Business Online to Teams. Office 365 tenant administrators already have the necessary rights to manage Teams through the Teams and Skype for Business Admin Center or PowerShell. In small tenants, it’s likely that the tenant administrator will manage Teams along with all the other workloads. However, if you run a larger tenant, you can assign the new administrative roles to users to allow them to perform specific management actions for Teams. The new roles are: Teams Service Administrator: This role can perform every action available in the Teams and Skype for Business Admin Center. Anyone assigned the role can also run the equivalent PowerShell cmdlets. Teams Communications Administrator: Anyone assigned this role can manage the meetings and voice settings for Teams, including the ability to troubleshoot call quality problems. This role is typically given to those responsible for managing the video and audio meeting infrastructure for a tenant, something that often needs specialized knowledge and experience that might not be possessed by the average Office 365 tenant admin. Teams Communications Support Engineer: This role is intended for people who... --- ### Modern SharePoint - Working with Document Templates - Published: 2018-09-20 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-working-with-document-templates/ - Categories: SharePoint, SharePoint Online - Tags: document management, Modern SharePoint - Article Type: How To Jasper Oosterveld takes a look at the new document template experience within the Modern SharePoint Document Libraries.   A while back, almost 1. 5 years ago, I wrote my first article for Petri. com. I ranted about all the issues we have with content types & content type hub. Unfortunately, not much has changed. That's really a shame because these items need an update for a reliable content management strategy and adoption. That said, Microsoft is working very hard on improving content types. We just have to be patient! An important part of working with content types was, and always have been, document templates. Recently, Microsoft released an update for the Modern SharePoint Document Libraries. This update allows for more flexibility while working with document templates. Let's take a closer look! My tenant (I have Targeted Release enabled) received the following update: We can modify our document templates. Awesome! Let's click on Edit New menu: We can change the order or remove the current templates. Let's deselect OneNote and move PowerPoint up: Easy peasy! What about adding new content types and templates? Before this update, adding a custom content type resulted in all the default templates to disappear. Very annoying. Those days are over: My custom content, and template, called customer document is now available together with the default templates. That's great news!  What about adding new templates through the menu? After clicking on Add template, we have to select a document and voila. We added our own template and have the following options: Change content type allows us the attach our newly uploaded template to another content... --- ### Docker For Windows: Create a Linux Container on Windows 10 - Published: 2018-09-19 - Modified: 2024-09-04 - URL: https://petri.com/docker-for-windows-create-a-linux-container-on-windows-10/ - Categories: Windows 10 - Tags: Containers, Docker, linux, Windows 10 - Article Type: How To Looking to create a Linux container in Windows 10? Russell shows you how with easy step-by-step instructions. If you are a developer or system administrator that wants to learn about working with containers, Docker for Windows provides a great way to get up and running quickly. Windows 10 contains built in support for Windows Containers and Hyper-V Containers. Additionally, you can run Linux containers using Hyper-V, a minimal Linux kernel and userland in the Windows 10 Fall Creators Update and in Windows Server 1709 or later. In this article, I will show you how to create a Linux container in Windows 10 using Docker for Windows. If you want to perform the same task on Windows Server, you’ll need Docker Enterprise Edition (Docker EE) instead. To follow the instructions below, you must be running Windows 10 version 1709 or later, on a device that supports Hyper-V with at least 4096MB of RAM. Docker for Windows supports 64-bit Pro and Enterprise editions of Windows 10 only. Download and Install Docker For Windows The first step is to download and install Docker for Windows. You can find the downloader on Docker’s website here. Run the installer and follow the instructions. You might be required to reboot your computer once or twice during the installation process. The installer will automatically enable Hyper-V and support for Windows Containers if they are not already turned on. Download and install Docker for Windows (Image Credit: Russell Smith) Before you can download base images from Docker’s repository, you’ll need to sign in to Docker on the welcome screen... . --- ### Google Announces "What-If" Tool for Analyzing Machine Learning Models - Published: 2018-09-19 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-what-if-tool-for-analyzing-machine-learning-models/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Google AI, Google Cloud Platform, machine learning, News, TensorFlow, What-If - Article Type: News Google recently announced a new “What-If” tool that can be used to analyze changes to machine learning models. Machine learning is something that can be incredibly useful for a variety of applications across many different fields. When it comes to conceptualizing, implementing, and training these models, though, it can often be quite challenging. This is especially true when it comes to determining how different data and “what-if” scenarios will affect a model. However, in a recent post on the Google AI blog, Google announced a new “What-If” tool that can be used to observe how a machine learning model works when adding or working with new data or datasets. This tool, which is a feature of the open-source TensorBoard web application, can take some of the stress out of analyzing, debugging, and fine-tuning machine learning models. Traditionally, training machine learning models and analyzing different “what-if” scenarios required programmers who would write code to see how a model would be affected. And while programmers are still an important part of developing and working with such models, Google’s new tool makes it easy for those without a programming background to participate in the training and analysis of machine learning models through the use of a graphical user interface. With the new “What-If” tool, programmers and non-programmers alike can explore and work with TensorFlow models to see what results may be produced after applying changes. Users can easily add, edit, and remove data points and can view the results visually, with the tool offering several different ways to display the results. This makes it easy to see, at a... --- ### Looking Forward to Office 365 at Ignite 2018 > MIcrosoft has scheduled 1,500+ sessions for the Ignite 2018 conference in Orlando next week. What's happening for Office 365? Exchange, SharePoint, Teams. - Published: 2018-09-18 - Modified: 2024-11-19 - URL: https://petri.com/office-365-ignite-2018/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Microsoft Teams, Office - Tags: exchange, Ignite 2018, Office 365, OneDrive for Business, SharePoint, Teams, Yammer - Article Type: Opinion Microsoft has scheduled 1,500+ sessions for the Ignite 2018 conference in Orlando next week. What's happening for Office 365? Well, there are many sessions to attend, but the interesting thing is the huge number of sessions assigned to Teams compared to other workloads. SharePoint does OK, but Exchange is low, and Yammer gets a surprising allocation. Lots to do at Ignite The session catalog for next week’s Microsoft Ignite conference boasts a total of 1583 keynote, theater (20 minute), breakout (45 or 75 minute), meet-up, and podcasts. The total includes repeats for some sessions. Even so, the 26,000 Ignite attendees have a wide spectrum to choose from over the five days, even without taking the hours occupied talking to vendors at the technology exhibition into account. It’s good to know that Microsoft is making recordings of every session available in the Microsoft Technical Community to allow both attendees and those who can’t get to Ignite to catch up later. Ignite is Microsoft’s premier vehicle for connecting to the IT Pro community, so the content selected for Ignite reflects the themes and messages Microsoft wants to communicate to that audience, and they naturally want to talk about all the shiny new products instead of the old boring stuff (that customers use). Office 365 Sessions A quick browse of the session catalog reveals that Office 365 is mentioned by 630 sessions. This is a raw and unfiltered number without close examination of the session abstracts, but it’s good enough to give an overall sense of how much Office 365 content is at Ignite. By comparison, Azure is mentioned in 786 sessions, while Microsoft 365 receives 686 mentions. If we go a little deeper and see how individual Office 365 workloads feature in sessions, we get the following: Teams 264 SharePoint 174 OneDrive 99 Yammer 87 Exchange... --- ### News Forecast - Ignite Downpour > Microsoft Ignite is coming – and that means there will be lots of cloud news coming out of Microsoft - here's what I'm hoping will be discussed. - Published: 2018-09-17 - Modified: 2024-09-04 - URL: https://petri.com/news-forecast-ignite-downpour/ - Categories: Microsoft Azure - Tags: Azure, Microsoft Ignite - Article Type: Opinion Microsoft Ignite is coming – and that means there will be lots of cloud news coming out of Microsoft. Drought If you’ve been following announcements on Microsoft Azure for more than a few months, then you know that the announcements come frequently. But July and August were quiet – I struggled to write my monthly Azure IaaS summary articles. Things started to liven up a little bit over the last couple of weeks. I’ve noticed new things appear in the Azure Portal, such as the appearance of Network Security Group Application Security Groups in the Azure Portal (command line only previous to this), the general availability of serial console access to virtual machines, and a sneak peak of a tabbed UI for creating new virtual machines instead of the current blade system. The following tweet is by Fitzgerald Steele, an Azure senior program manager: Imminent News Why was it so quiet for the last two months? Obviously, it was the Summer break. Anyone who knows Microsoft knows that the company essentially grinds to a halt in July/August with the start of their new financial year (planning) and vacations. But there is a very important calendar item soon – Microsoft Ignite starts on September 24th in Orlando, Florida, and Microsoft wants to have lots of big announcements to share during a week when they have the attention of enterprises from around the world and the tech press is in the building. If last year is anything to go by, the announcements will come thick and fast. The opening keynote will be about vision, digital transformation, and other cuddly... --- ### Microsoft 365 Closes the IT Loop With Managed Desktop Service - Published: 2018-09-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-closes-the-it-loop-with-managed-desktop/ - Categories: Microsoft 365 - Tags: Managed Desktop, Microsoft, News - Article Type: News Microsoft has pulled the covers off of its new managed desktop service which will provide Surface hardware and service the operating system. Back in July, I caught wind of where Microsoft was headed next with Microsoft 365 and the company is announcing the next step on its journey with Microsoft Managed Desktop. Announced today, this service brings Microsoft 365 Enterprise, hardware, and cloud-based management, all together. Microsoft Managed Desktop, or MMD as the company calls it, is designed to allow customers to focus only on their business and will let Microsoft manage the desktop experience. With this new service, Microsoft is opening the door to not only building the software that businesses use but also managing the entire workflow for keeping it secure and updated. What this means is that, as of right now, the company will provide Surface hardware, keep it updated with the latest patches and versions of Windows: this service includes Microsoft 365 Enterprise, which includes Windows 10, Office 365, the Enterprise Mobility and Security services. All of this functionality will be wrapped into one monthly fee. As of now, only Surface hardware is included in MMD but it will expand to Dell, HP, and others in the near future. With the hardware, Microsoft is promising a 3-year refresh cycle, next day replacement for broken devices, and self-service deployment - likely offered via Windows Autopilot. In addition, the end user will have 24x7 desktop support available to them as well. What Microsoft is doing here is closing the loop on all of the services they now offer to include hardware and end-user management to their productivity and management... --- ### Replicating Between File Servers Using Azure File Sync > In this post, I will explain how you can replicate folders between multiple Windows Server file servers using Azure File Sync. - Published: 2018-09-17 - Modified: 2024-09-04 - URL: https://petri.com/replicating-between-file-servers-using-azure-file-sync/ - Categories: Microsoft Azure - Tags: Azure, Azure File Sync, File Server, storage, Windows Server 2012 R2, Windows Server 2016, WS2012 R2, WS2016 - Article Type: How To Aidan explains how you can easily synchronize folders between multiple file servers via Azure File Sync. Topology I explained how the components of Azure File Sync interconnect in The Architecture of Azure File Sync. When you deploy a sync agent to a file server, each replicated folder, referred to as a server endpoint, synchronizes to an Azure Files share, referred to as a cloud endpoint. This combination us referred to as a sync group. It is possible to have more than on server participate in a sync group. This allows us to synchronize folders between file servers, using Azure as the middle-man. The file servers do not have to synchronize all folders to each other. For example, let’s pretend there are 3 file servers: Chi-FS1 Dub-FS1 Syd-FS1 Chi-FS1 synchronizes: “Chicago Files” to Azure only “All Users” to Dub-FS1 and Syd-FS1 via Azure “Sales” to Syd-FS1 via Azure Dub-FS1 synchronizes: “Dublin Files” to Azure only “All Users” to Chi-FS1 and Syd-FS1 via Azure Syd-FS1 synchronizes: “Sydney Files” to Azure only “All Users” to Chi-FS1 and Dub-FS1 via Azure “Sales” to Chi-FS1 via Azure Registering Additional File Servers The process of adding a file server to an existing sync group re-does what is done to register the first file server. You will start by ensuring that the file server meets the requirements of Azure File Sync. Next you will: Install the Azure Resource Manager (Azure RM) PowerShell modules on the file server Download the Sync Agent from the Azure File Sync sync service and install it on the file server The sync agent will need to... --- ### Microsoft Details How and Why its Data Center went Offline This Month - Published: 2018-09-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-how-and-why-its-data-center-went-offline-this-month/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News - Article Type: News Microsoft has detailed the exact reasons why its data centers went offline earlier this month and why it took longer for some users to recover their data. When you place your data in the 'cloud', you are always promised one thing, increased availability. The idea is that companies like Microsoft, Amazon, and Google can build out redundancy at a scale that most companies cannot afford. But even the best data centers in the world will go offline which is why we always preach that you should be prepared for an outage because it's not a matter of if, but when. For Microsoft, a couple weeks back, one of their data centers went offline and now we have the full triage report of what happened. Thanks to the company's transparency, you can read exactly what happened here. The short version of it is that an electrical storm, after multiple repeated strikes, tripped all of the protections in place to prevent such a failure. Specifically, the cooling system inside the data center failed and as the temperatures quickly peaked above safe levels; automated shutdown procedures started running to protect the hardware inside the facilities. The temperatures delta was so fast that some hardware was damaged by the high heat before the shutdown procedures could be completed; this is why some users experienced an extended outage as Microsoft was recovering and migrating data. This type of an outage is one that was not directly Microsoft's fault and despite their best efforts to prepare for an electrical storm strike, their protections failed to isolate the data center successfully. This is a good lesson in that building out a data... --- ### Patch Tuesday September 2018 - Published: 2018-09-14 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-september-2018/ - Categories: Security - Tags: Patch Tuesday, Security, Windows - Article Type: Overview Microsoft patches 62 vulnerabilities, 17 of which are rated Critical. Including a patch for the zero-day ALPC vulnerability that was publicly disclosed on Twitter at the end of August. Microsoft patches 62 vulnerabilities, 17 of which are rated Critical. Including a patch for the zero-day ALPC vulnerability that was publicly disclosed on Twitter at the end of August. This month Microsoft patches five critical vulnerabilities for all versions of Windows 10 and Windows Server 2016, and some of them affect older versions of Windows. All are remote code execution flaws, one of which is in Hyper-V and could allow an attacker to execute arbitrary code. There are also patches for flaws caused by embedded fonts, the MS XML parser, and specially crafted image files. ALPC Zero-Day On 27th August a Twitter user (@SandboxEscaper) publicly released information about a zero-day Advanced Local Procedure Call (ALPC) vulnerability in Windows that could allow hackers with local access to the Task Scheduler to elevate privileges to SYSTEM. The user posted a link to proof-of-concept code, which was verified independently by the United States Computer Emergency Readiness Team (US-CERT) to work on fully-patched Windows 10 and Windows Server 2016 64-bit systems. The flaw was found in the way Task Scheduler handles Advanced Local Procedure Calls (ALPCs), which is a kernel process that allows client processes to communicate with server processes. Microsoft acknowledged the ALPC bug and in this month patches it. While rated Important and not Critical by Microsoft, this one is important to patch because it is already being exploited in a targeted campaign. Among the other flaws rated Important, the Hyper-V BIOS loader fails to provide a high-entropy source and... --- ### Paul Thurrott's Short Takes: September 14 - Published: 2018-09-14 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-14/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10 - Tags: News - Article Type: Overview Because Microsoft can't stop punching Windows 10 in the face, this edition of Short Takes looks at a foolish new ad in Windows 10, Microsoft v. Salesforce, an October Microsoft event, Apple's new iPhones, and much, much more. Because Microsoft can't stop punching Windows 10 in the face, this edition of Short Takes looks at a foolish new ad in Windows 10, Microsoft v. Salesforce, an October Microsoft event, Apple's new iPhones, and much, much more. Oh, Microsoft Microsoft opened a new front in its manic bid to piss off as many Windows 10 users as possible this week: The nearly-complete Windows 10 version 1809, which as its version number does not suggest, is set for an October release, contains yet another pop-up advertisement for Microsoft Edge. But this time, the ad appears when you use the browser to download a web browser you actually want to use, like Chrome or Firefox. While most Windows 10 users are probably getting pretty numb to the incessant ads in this product, I find it reprehensible. And I'm tired of Microsoft disrespecting this product and the people who use it. Microsoft, end the madness. "Microsoft is inviting Windows Insiders to its October 2 Surface event" Two things. No, it isn't (they are going to a different event). And I kind of wish this were true, as I have a few words for the people shaping this product right now. Could Microsoft overtake Salesforce? Citing the "growing momentum for Dynamics 365 software applications," a glowing CBS Marketwatch report suggests that Microsoft is poised to overtake Salesforce in the lucrative CRM market. "As the integration between Dynamics 365 and Microsoft’s ecosystem of collaboration and productivity solutions grows, I expect to see a... --- ### Azure Update Management Part 2: Schedule Updates, Check Update Compliance, and Enroll Non-Azure VMs - Published: 2018-09-13 - Modified: 2024-09-04 - URL: https://petri.com/azure-update-management-part-2-schedule-updates-check-update-compliance-and-enroll-non-azure-vms/ - Categories: Microsoft Azure - Tags: Azure, Azure Update Management, cloud computing, Compliance, Security, WSUS - Article Type: How To In the first part of this series, Russell showed you how to enroll Azure virtual machines to Azure Update Management. In the final part, Russell demonstrates scheduling updates, checking update compliance, and how to enable Update Management on non-Azure VMs. In the first part of this series, I showed you how to enroll Azure virtual machines to Azure Update Management. In the final part, I’ll demonstrate scheduling updates, checking update compliance, and how to enable Update Management on non-Azure VMs. Schedule Updates You can create a specific schedule for updates on each VM that is enrolled with Azure Update Management. If a VM is configured to use WSUS, those settings will always take precedence over any deployment schedule configured in Azure Update Management. To create a new deployment schedule: In Update Management in the Azure management portal, click Schedule update deployment. In the New update deployment pane, give the new deployment a name. You can choose to exclude certain update categories, like security updates and service packs. You can also exclude specific updates by providing their Knowledge Base IDs. Finally, you must provide schedule settings. A time and start date. The schedule can be one time only or recurring. If you set a recurring schedule, you can set the frequency and set an expiration date. Create a deployment schedule in Azure Update Management (Image Credit: Russell Smith) The standard maintenance window is set to 2 hours. The last 20 minutes of which is reserved for rebooting the server. The minimum maintenance window is 30 minutes. Any updates that have not been started by the time the maintenance window is over will be skipped. If updates are already in progress, they will be completed. The... --- ### Preserving Teams Messages for an Ex-Employee > When someone leaves your company, you might need to preserve their Office 365 data. Email, OneDrive, and SharePoint are straightforwards, but what about Teams? - Published: 2018-09-13 - Modified: 2024-09-04 - URL: https://petri.com/preserving-teams-messages-ex-employee/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: compliance records, content search, data governance, GDPR, Office 365, Teams - Article Type: How To When someone leaves your company, you might need to preserve their Office 365 data. Email, OneDrive, and SharePoint are straightforward, but what about Teams? As it turns out, a content search or an Office 365 DSR is a good way to retrieve information about Teams messages and information about their activities can be found in the audit log. Traces Left Behind in Office 365 When someone leaves a company, they leave many traces of their presence in the organization’s digital memories. The challenge for companies is to decide how long to keep information associated with an ex-employee, a procedure now complicated by regulations like GDPR. Essentially, you need good and well-documented business reasons to keep personal information about someone for any length of time. Email is Easy Keeping the mailbox of an ex-employee is easy. Either make the mailbox a shared mailbox or put the mailbox on hold and then delete the user’s account to make the mailbox inactive. Either route is good, with shared mailboxes more popular because they are easier to access and don’t need a license unless the mailbox is larger than 50 GB or has an archive. The Deleting User wizard in the Office 365 Admin Center will make a mailbox shared before it removes an account, and the wizard also takes care of the user’s OneDrive for Business account. However, the wizard can’t deal with hybrid users. SharePoint is Easy Too SharePoint is also straightforward. The nature of sites is that they are shared by groups of users, so the remaining users will continue to have access to documents after the removal of the ex-employee’s account. If an ex-employee was the owner of a site, you should make sure that the site continues to have at least one owner and promote someone into that rule if needed. And as noted above,... --- ### How to Use Azure Update Manager - Published: 2018-09-12 - Modified: 2024-11-19 - URL: https://petri.com/azure-update-management-part-1-overview-and-enrolling-azure-vms/ - Categories: Microsoft Azure - Tags: Azure, Azure Update Management, cloud computing, Compliance, Security, Windows Update - Article Type: How To In today’s Ask the Admin, Russell shows you how to enroll Azure virtual machines to Azure Update Management and provide a general overview of how the solution works. If you need a simple and effective way to manage Windows updates from the cloud, look no further than Azure Update Manager. As part of an Azure subscription, Update Manager allows you to schedule and monitor update compliance for Azure virtual machines, and VMs hosted on-premises or by other cloud providers. Update Management provides an overview of all your VMs, including their compliance status. Update Management is available for both Windows and Linux. The solution uses the Microsoft Monitoring Agent (MMA) for Windows or Linux, PowerShell Desired State Configuration (DSC) for Linux, an Automation Hybrid Runbook Worker, and Microsoft Update or Windows Server Update Services (WSUS) for Windows servers. Update Management reports how up-to-date each VM is based on where it is configured to synchronize updates from. For example, if the VM is configured to pull updates from Windows Server Update Services (WSUS), then the results might differ from a device that synchronizes directly with Microsoft Update, depending on when WSUS last synced with Microsoft Update. Azure Update Management solution in action (Image Credit: Microsoft) If VMs are running Windows Server 2008 or Windows Server 2008 R2 RTM, Update Management only supports update assessments. Windows Server 2008 R2 SP1 and later support the full feature set. Windows clients and Nano Server are not supported. Update Management supports the following versions of Linux: CentOS 6 (x86/x64) and 7 (x64) Red Hat Enterprise 6 (x86/x64) and 7 (x64) SUSE Linux Enterprise Server 11 (x86/x64) and 12 (x64)... --- ### Synchronizing Hybrid Cloud Data with Azure SQL Data Sync - Published: 2018-09-12 - Modified: 2024-09-04 - URL: https://petri.com/synchronizing-hybrid-cloud-data-with-azure-sql-data-sync/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, Azure Virtual Machines, Cloud, cloud computing, hybrid cloud - Article Type: Overview Azure SQL Data Sync is useful where data needs to be unidirectionally or bidirectionally synchronized across several Azure SQL Databases or SQL Server databases. SQL Server includes a number hybrid cloud technologies including Backup to URL that lets you backup on-premise SQL Server databases to Azure and the Stretch Database feature that enables you to seamlessly extend a local database to the cloud. However, what if you want to synchronize the contents of two databases that are on separate servers where one is in the cloud and the other one is local? SQL Server replication is able to replicate database changes but it is not designed to work with the cloud. To address this problem of hybrid cloud database synchronization Microsoft provides their Azure SQL Data Sync service. Azure SQL Data Sync is useful where data needs to be unidirectionally or bidirectionally synchronized across several Azure SQL Databases or SQL Server databases. It enables hybrid SQL deployment where you can split different workloads across multiple servers. For example, if you have a large production database in the cloud you can use Azure SQL Data Sync to copy the data to another SQL Server instance where you might run reporting or analytics workloads on the data. You can also use it to facilitate global data access where you might have multiple databases in different regions around the world synchronized with each other enabling each region to use its own local data minimizing network latency and possible connection failures. How SQL Azure Data Sync Works The core of Azure SQL Data Sync is the Sync Group. A Sync Group is essentially a group of... --- ### Expectations for Microsoft's Upcoming 'Hardware' Event - Published: 2018-09-11 - Modified: 2024-09-04 - URL: https://petri.com/expectations-for-microsofts-upcoming-hardware-event/ - Categories: Hardware - Article Type: News Microsoft has announced a hardware event for early next month but it's important to set your expectations before the curtain drops. In about four weeks, following directly after Ignite, Microsoft will be holding a 'hardware' event in New York City where the company will announce updates to several of its products. But when comparing this to previous October events, you need to lower your expectations a bit. The reason I say 'hardware' is that I don't think that this keynote will be focused explicitly on Surface and I believe it may be a broader demo of how Microsoft still fits into the consumer world from a software perspective. On the hardware side, I'm expecting a chip refresh for the Pro and Laptop, not so sure about the Surface Studio yet, and don't be surprised to see the addition of USB-C ports. I've been hearing about this refresh since early August and it also aligns with what Mary Jo has been hearing as well. The fact that we are both hearing similar things for this not-so-hardware focused event, it almost feels like Surface is being added to the mix to help generate additional noise for the keynote. The one device that we know will not be there is Microsoft's Andromeda hardware; look for larger updates next year for the Surface Pro, codenamed Carmel. Microsoft also promised this year a Surface Go with LTE, this would be the ideal time to announce the release date for the hardware. Traditionally, Microsoft has launched LTE iterations about 5 months after the initial product release; the timing is right for them to tell us... --- ### Publishing SharePoint News to Teams > SharePoint Online makes it easy to publish news items, but people might miss the news if it only exists there. Publishing to Teams spreads your message - Published: 2018-09-11 - Modified: 2024-09-04 - URL: https://petri.com/publishing-sharepoint-news-teams/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: News, Office 365, SharePoint, Teams - Article Type: How To SharePoint Online makes it easy to publish news items, but people might miss the news if it only exists there. Publishing to Teams spreads your message and there's three ways to get the job done. Choose from email, a connector, or linking to news with a tab. All the News That’s Fit to Share According to my SharePoint buddies, the purpose of the News web part is to publish authoritative information to the organization. I guess they are thinking about things like grand announcements from senior executives about how well the business is going. Or perhaps a note from HR about a new corporate policy that will make our lives easier. That kind of thing. Using the News Web Part In any case, the web part is available in all modern team sites. You can post news on a site or from the SharePoint Online home page. It’s easy to create a good-looking news item, complete with graphics, text, hyperlinks, and a range of other web parts to bring in content like video stored in Stream or Office 365 video (Figure 1). Figure 1: Creating a News item in SharePoint (image credit: Tony Redmond) When the news item is ready, click Publish and the news is spread to the world. Or at least, within your Office 365 tenant. Spreading the News Well, not really. The news shows up on the home page of the site where it is published and on the SharePoint home page, and you can create a digest of news items to email to interested parties. But you cannot guarantee that people will visit the relevant team site or the SharePoint home page, and if you’re going to email the information in the form of a news digest,... --- ### What Happened to Microsoft’s Clouds Last Week? > In this post, I will explain how a lighting strike to one of Microsoft’s data centers in America affected Microsoft cloud customers around the world. - Published: 2018-09-10 - Modified: 2024-09-04 - URL: https://petri.com/what-happened-to-microsofts-clouds-last-week/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Azure Active Directory, Azure AD, Microsoft 365, Outage, Visual Studio Team Services - Article Type: Opinion Aidan explains how a lightning strike to one of Microsoft’s data centers in America affected Microsoft cloud customers around the world. The Problems trying to set up some new Azure subscriptions for customers but the required permissions work that Microsoft does in the back ground (Azure AD permissions) didn’t appear to be working. I suspected there was a glitch in Microsoft somewhere and told them to open a support call. Later in the day, I started hearing that some Microsoft partners and their customers were having issues with Office 365. When one hears of problems across multiple clouds then you start to look for a commonality. The Tenant Few people seem to understand what The Tenant is in a Microsoft cloud deployment. Any business that signs up to Microsoft cloud service such as Office 365, CRM 365, Azure, and so on gets a tenant; that’s the process where you set up a something. onmicrosoft. com domain name, such as petri. onmicrosoft. com. This is a unique directory that is used to store your usernames and password hashes. This service is powered by Azure AD – no; you do not have user accounts in Office 365 or Azure. Just like you don’t have user accounts in on-premises Exchange. A directory provides authentication and authorization services. On premises you use a Windows domain powered by Active Directory Domain Services. In Microsoft’s clouds, you use Azure AD, even if you do not know it. Microsoft’s cloud services authenticate and authorize against Azure AD. Whenever you sign into Office 365, Office 365 asks Azure AD to sign you in and authorize you. This is your tenant. Office 365 is... --- ### How To Stop Windows 10 Updating Device Drivers - Published: 2018-09-10 - Modified: 2024-09-04 - URL: https://petri.com/how-to-stop-windows-10-updating-device-drivers/ - Categories: Windows 10 - Tags: Device drivers, Windows 10, Windows Update - Article Type: How To In today’s Ask the Admin, Russell shows you how to stop Windows 10 updating device drivers automatically via Windows Update regardless of which edition of the OS you are running. Not everybody is happy about the way Microsoft pushes out updates to Windows 10. What with the biannual feature updates, which bring a new major version of Windows, and monthly quality updates, some people feel that Microsoft is taking away control from users. And if you are running Windows 10 Home, then you can’t defer updates. But while Microsoft’s new update model might seem draconian, you can control whether Windows Update downloads and installs new device drivers, even in Windows Home edition. Hardware manufacturers release new drivers and sometimes certify them for inclusion in the Microsoft Update Catalog so that they get automatically installed on relevant devices. While there is much to be said in not touching something that isn’t broken, sometimes a driver update is required to fix a major bug, improve stability, or plug a serious security vulnerability. But I don’t recommend changing the default Windows Update settings unless you are experiencing a specific problem related to an updated driver. If you want to hide a specific update rather than all driver updates, you can try Microsoft’s Show or hide updates troubleshooter. Stop Driver Updates Using Group Policy If you have identified that a new driver is the root cause of a problem, you can use Group Policy to prevent Windows Update downloading updated drivers. The setting I will describe below is only available in Windows 10 version 1607 and later. For the setting to be effective, the Allow Telemetry setting must not be set to... --- ### What is Windows Defender Application Control? - Published: 2018-09-07 - Modified: 2024-11-19 - URL: https://petri.com/what-is-windows-defender-application-control/ - Categories: Windows 10 - Tags: Application Control, applocker, HVCI, Security, virtualization based security, Windows 10, Windows Defender Application Control, Windows Defender Exploit Guard, Windows Device Guard, Windows Server 2016 - Article Type: Overview In this blog post, Russell looks at the story behind Windows Defender Application Control in Windows 10. If you are not familiar with Windows Defender Application Control (WDAC), let me fill you in. Not to be confused with Windows Defender Application Guard, a containerization solution for Microsoft Edge that uses Hyper-V to isolate browser sessions, WDAC is one part of Windows Device Guard. Just to add to the confusion, Microsoft uses Windows Device Guard to refer to the use of WDAC and hypervisor-protected code integrity (HVCI) together. For more information on Windows Defender Application Guard, see Revisiting Application Guard in the Windows 10 April 2018 Update on Petri. Windows Device Guard was introduced in Windows 10 as a new, robust application control solution designed to be more flexible than AppLocker. But Microsoft promoted Device Guard along with HVCI and many IT administrators wrongly assumed that the application control part of Device Guard couldn’t be used without HVCI, which has some hardware requirements that many older devices don’t meet. Last year, Microsoft announced that the two technologies that makeup Device Guard had been separated into Windows Defender Application Control, which deals with application whitelisting, and Windows Defender Exploit Guard would handle protecting WDAC using HVCI if required. By separating Device Guard into two distinct technologies, Microsoft hopes that IT administrators will understand that HVCI isn’t required to use WDAC. Windows Defender Application Control Application control first appeared in Windows XP as Software Restriction Policies (SRP), but it was not widely adopted because it was difficult to implement. AppLocker in Windows 7 was designed to solve that... --- ### Paul Thurrott's Short Takes: September 7 - Published: 2018-09-07 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-7/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10, Windows 7 - Tags: News - Article Type: Overview Because just when I thought I was out, they pull me back in, this edition of Short Takes looks at Microsoft's continued concessions to the customers that matter most, an Office 365 throttling issue, weather v. Microsoft, and much more. Because just when I thought I was out, they pull me back in, this edition of Short Takes looks at Microsoft's continued concessions to the customers that matter most, an Office 365 throttling issue, weather v. Microsoft, and much more. Microsoft keeps inching closer to what its customers really want As you might have heard, Microsoft this week issued its second major concession to business customers who complained about the too-rapid Windows 10 support cycle. And ... that's cute. It's also as expected: Microsoft's biggest business customers have historically updated at a fairly glacial pace, following a classic "if it ain't broke, don't fix it" philosophy. While Microsoft, meanwhile, is treating Windows 10 like one of those mobile battle royale games you see advertised on TV. Heads up, Microsoft: Listening to customers is supposed to be job one. And you need to stop pretending that only you hold the key to keeping Windows customers secure, especially given your shoddy quality reputation. Windows 10 is often serviced by two or more quality updates every month now. This is not working. "Is Microsoft killing off Windows 7 early? " Insightful, given that Microsoft just extended Windows 7 support for customers that need it. Office 365 users suffer through "throttled" errors this week Speaking of shoddy update quality, Office 365 commercial customers were just delighted to discover that they'd been shut out of Outlook on the Web and Skype this week with just the word "throttled" appearing on-screen. Hey, at least it... --- ### Microsoft Acknowledges it Can't Force Businesses to Modernize Their Software - Published: 2018-09-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acknowledges-it-cant-force-businesses-to-modernize-their-software/ - Categories: Office, Windows Client OS - Tags: Windows 10, Windows 7 - Article Type: Opinion With the company announcing today support changes to Office and Windows, Microsoft is throwing in the towel on trying to force you to upgrade. Today, Microsoft made several announcements that are designed to help companies migrate from Windows 7 to Windows 10. The company has come to the realization that it can't force modernization onto its clients and that having all of its customers migrate by next January is not going to happen. Announced today were not only updates to Windows 10 that change the support window from 18 to 30 months for fall updates but also that Office 2016 support is being extended so that it doesn't expire in 2020. Further, the company is also promising to fix any compatibility issues for any customer running Education or Enterprise SKUs. The reason why Microsoft is making changes to the Office support cycle is to clear the deck to make migrating from Windows 7 to Windows 10 the only objective before January of 2020. At the time of this post, according to Net Marketshare, Windows 7 has a market share of around 40% and Windows 10 is about 38%. According to this data, more companies need to migrate to the OS in the next 15 months than have in the previous 3 years of availability; the transition is not going to happen overnight. This is a major concern for Microsoft, the company is trying desperately to avoid what happened when Windows XP support expired but if a large portion of the Windows 7 userbase does not migrate next year, the number of unsupported Windows devices in the world will jump significantly. And while... --- ### Microsoft Promises to Fix Your Windows 10 App Compat Issue For 'Free' - Published: 2018-09-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-promises-to-fix-your-windows-10-app-compat-issue-for-free/ - Categories: Windows 10, Windows Client OS - Tags: Microsoft, migration, News, Windows 10 - Article Type: Opinion With the Windows 7 support window quickly coming to an end, Microsoft is throwing everything it has to make sure you will upgrade before time runs out. With a little over a year left before Windows 7 reaches its end of life, Microsoft Is taking big steps today to help make sure that the remaining users on Windows 7 will migrate to 10 before the support window closes. And there are quite a few users who still need to migrate, Net Marketshare estimates that of the Windows userbase, around 40% are still running Windows 7 with around 38% are running Windows 10. With time running out, Microsoft is announcing two new tools to help users move to the new OS; Desktop App Assure and Desktop Analytics. Desktop Analytics is a new cloud-based service that integrates with ConfigMgr and is designed to document apps running in your organization, asses their compatibility with Windows 10 and future updates, and simplify the process of creating pilot groups that are representative of your entire environment to test applications. The company believes that this insight and piloting will help to ease the burden of updating and testing your applications with each release; Microsoft will share more details about this feature at Ignite. But the bigger promise from Microsoft is that the company will work with any Enterprise or Education customer to address app compatibility with Desktop App Assure. If you have a single license for Windows 10 Enterprise or Education and you have a compatibility issue that is preventing you from running Windows 10 or a specific update of Windows 10, Microsoft will fix it, for 'free'. Starting on October... --- ### Microsoft is Changing Windows 10 Support Lifecycle, Again - Published: 2018-09-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-changing-windows-10-support-lifecycle-again/ - Categories: Windows 10, Windows Client OS - Tags: News, Support, Windows 10 - Article Type: News When Microsoft announced Windows 10 and said that they were going to move Enterprise customers to a rapid update cycle, IT Admins from around the globe likely choked on their morning coffee. Microsoft's ambitious task of modernizing the corporate world has been met with significant headwinds and the company is once again changing its stance on the support lifecycle of its latest operating system. When it became apparent that companies could not update annually, Microsoft began extending the support window for older versions of Windows 10 to 24 months, instead of 18. But, it looks like that was not enough and starting with the next release of Windows, 1809, the support window will now be 30 months. But because this is Microsoft and they couldn't have made things easy, it's more complicated than each version of Windows being supported for 30 months, it's only the fall releases that will receive this additional time. If you update to a build that is released in March, that iteration of Windows 10 will only be supported for 18 months. In short, you will want to transition your environment to iterations of Windows 10 that are released and start ignoring releases that arrive in the spring. This latest update to Windows servicing schedule almost gets it right, Microsoft should have pushed the support window to 36 months. At 30 months, this still forces one upgrade every two years, instead of being able to update once every three years. This new servicing cycle... --- ### Microsoft will Offer Windows 7 Extended Security Updates Through January 2023 - Published: 2018-09-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-offer-windows-7-extended-security-updates-through-january-2023/ - Categories: Windows 7, Windows Client OS - Tags: Support, Windows 7 - Article Type: News Microsoft has announced that they will offer extended support for Windows 7 but unlike with Windows XP, it will not be free. On January 14th of 2020, Microsoft will end extended support for Windows 7. This will be a major milestone as it means that Windows 7 is effectively no longer generally supported by Microsoft and means that if you are using the operating system, you need to plan to migrate to Windows 10 today. But, just like with Windows XP, the transition to Windows 10 from Windows 7 will not be as simple as simply turning off support for the operating system. At the time of this post, according to Net Marketshare, Windows 7 has a market share of around 40% and Windows 10 is about 38%. According to this data, more companies need to migrate to the OS in the next 15 months than have in the previous 3 years of availability; the transition is not going to happen overnight. Despite the warnings and assistance the company is offering services like Desktop App Assure, there will be customers who will opt to continue to run Windows 7 for the next couple of years. To support those users, Microsoft will offer paid Windows 7 Extended Security Updates (ESU) through January 2023. The company says that Windows 7 ESU will be sold on a per-device basis for an escalating yearly price. Windows 7 ESUs will be available to all Windows 7 Professional and Windows 7 Enterprise customers in Volume Licensing, with a discount to customers with Windows software assurance, Windows 10 Enterprise or Windows 10 Education subscriptions. This announcement shouldn't... --- ### Microsoft Reverts Office Support Lifecycle Changes, Connectivity Support - Published: 2018-09-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reverts-office-support-lifecycle-changes-connectivity-support/ - Categories: Microsoft 365, Office - Tags: News, Office, Office 2016, Office 365, Support - Article Type: News Microsoft is making changes to the lifecycle support of Office 2016 and support on Windows 8.1 for Office. Earlier this year, Microsoft made several announcements the company hoped would push its customers to modern versions of its Office platform. But, the company is learning that just because you try to force a company to upgrade, doesn't mean that's what will actually happen. Microsoft is revising several announcements made earlier this year when it comes to supporting Office 365 Office 365 ProPlus on Windows 8. 1 and Windows Server 2016. In addition, they are also making changes to Office 2016 connectivity support for Office 365 services as well. The company is announcing today that Office 365 ProPlus will continue to be supported on Windows 8. 1 through January 2023, which is the end of support date for Windows 8. 1 and that Office 365 ProPlus will also continue to be supported on Windows Server 2016 until October 2025. In addition to these changes, the company is also making changes for Office 2016's connectivity support to Office 365. Earlier this year, the company said this connection would no longer be supported after October 13, 2020 but they are revising that date to October of 2023. All of these updates are designed to make it easier to migrate to Windows 10 as Microsoft wants its customers to focus on moving off of Windows 7, instead of updating their Office installation. Of course, the company would prefer that you move to Windows 10 and Office 2019 as soon as possible, but that's not a reality for most organizations. These changes to the support... --- ### Breaking Old Email Habits Increases Security in Office 365 > A recent survey revealed that 22% of executives in small to medium businesses continue to share email passwords. There's no way this should happen inside Office 365. - Published: 2018-09-06 - Modified: 2024-09-04 - URL: https://petri.com/breaking-old-email-habits-increases-security-office-365/ - Categories: Exchange Online, Microsoft 365, Office - Tags: email, Exchange Online, OneDrive for Business, passwords, Security, SharePoint Online, Teams - Article Type: How To A recent survey revealed that 22% of executives in small to medium businesses continue to share email passwords. There's no way this should happen inside Office 365 because many techniques exist to support more secure collaboration. Take your pick from mailbox delegation, shared mailboxes, Office 365 Groups, and Teams Never Share Office 365 Passwords A ZDNet report described a number of bad security habits in small to medium companies, among which was the headline statistic that 22% of business leaders share their email passwords with co-workers or assistants. Much of the success of Office 365 is fueled by small to medium businesses, who find it much easier to use cloud services than to deploy their own Exchange and SharePoint servers. I hope that 22% of business leaders who use Office 365 don’t share their passwords. It’s old-school thinking that doesn’t reflect the reality of today. Sharing passwords is bad practice and it is utterly unnecessary. Office 365 Account Passwords Access More than Email Knowing someone’s Office 365 account password gives you access to much more than their email. You can then log onto Teams and read the conversations in the private teams that person belongs to, or open protected SharePoint documents, or read whatever’s in their OneDrive for Business account, or take part as that person in Yammer conversations. As people move more data into cloud services, knowing personal passwords becomes the key to access all that data rather than just a mailbox. Deploy MFA to Force Behavioral Change Every Office 365 account used by senior people (and administrators) should be protected by multi-factor authentication (MFA), which is easy to deploy and manage within Office 365. Failure to use MFA opens accounts to potential business email compromise attacks. And accounts that are only protected by passwords, especially... --- ### What Is Tiering in Azure File Sync > In this post, I will explain what tiering is in Azure File Sync, how to enable it, and how the policy-based system works. - Published: 2018-09-05 - Modified: 2024-09-04 - URL: https://petri.com/what-is-tiering-in-azure-file-sync/ - Categories: Microsoft Azure - Tags: Azure, Azure File Sync, Cloud-Tiering, File Server, hybrid cloud, Tiering, Windows Server 2012 R2, Windows Server 2016, WS2012 R2, WS2016 - Article Type: How To In this post, Aidan explains what tiering is in Azure File Sync, how to enable it, and how the policy-based system works. Tiering One of the benefits of deploying Azure File Sync (AFS) is the ability to cloud-tier your code file server storage –it’s the primary reason, in my opinion. You can enable file sync in a granular manner: for each server endpoint in each sync group. For example, if I had a sync group for a share called Marketing with server endpoints synchronizing this share between three different file servers, I could enable a different tiering policy on each server. When you enable tiering, the mechanism should not change how users see or use the data, or how permissions are applied – and that’s exactly how AFS does things. When a file is tiered to the cloud, the cold file is removed from the file server, and is replaced with a pointer or reparse point, with the same name and permissions, that points to the cloud copy of the file. From the users’ point of view, little has changed: The file is in the same place The filename has not changed The permissions are the same as before The icon is dimmed The file now has an O (offline) attribute Note: the tiering is handled by a filter driver called StorageSync. sys. Policy-Based As I mentioned before, you can configure tiering on each server endpoint that you want to enable tiering on. The settings are simple: Cloud Tiering: Enabled or Disabled (default). Volume Free Space (%): How much space should tiering try to free up on the volume that the... --- ### Tips for Troubleshooting Azure File Sync > This how-to post will explain methods you can use to debug, troubleshoot, and solve issues with Azure File Sync, including capturing logs and traces. - Published: 2018-09-05 - Modified: 2024-09-04 - URL: https://petri.com/tips-for-troubleshooting-azure-file-sync/ - Categories: Microsoft Azure - Tags: Azure File Sync, Cloud-Tiering, File Server, Filter Driver, SyncService StorageSync, Troubelshooting - Article Type: How To Looking for a few tips on how to troubleshoot issues with Azure File Sync? Aidan has some insight on how to resolve your problems. In my testing of Azure File Sync, I have encountered some issues. I have been able to get to the bottom of the issues, sometimes with support, by using a few sources of information.  In this post I will share some tips on how to troubleshoot issues with Azure File Sync. The Azure Portal From an operational point of view, the first port of call will be the Azure Portal. In the Sync Service you can view each of the sycn groups and server registrations. The first thing you should do is check the registered file servers: Check the Last Seen timestamp so see if the sync agent on your file servers is communicating with the sync service in Azure. Next you should check the sync agent version. You will be warned if one is out of date, but you can see in my screenshot that one is older than another. It might be supported, but it is older and might have issues that have since been fixed by Microsoft. Checking registered servers in Azure File Sync Next you should open the sync groups. Any sync groups with a problem will be highlighted by the sync service. Inside, you can see the synchronization status with each server endpoint (a synchronized folder on a file server). If there are any files that aren’t synchronization, you will see a count of failing files, and you can click this number to investigate more. The File... --- ### With Office 365 Offline For Some, It's Time to Remember Who Has Control of Your Data - Published: 2018-09-04 - Modified: 2024-09-04 - URL: https://petri.com/with-office-365-offline-for-some-its-time-to-remember-who-has-control-of-your-data/ - Categories: Microsoft 365, Office - Tags: News, Office 365 - Article Type: News Microsoft's cloud platform is having a rough day with Azure experiencing a significant outage and Office 365 inaccessible for others. While today may be a Tuesday, Microsoft's cloud is having a case of the Monday's as reports from across the web are citing issues with accessing the company's online services. And when you can't access your data, it's important to remember who has control of your valuable assets. According to Microsoft's Azure status page, the South Central US region is experiencing an outage impacting a significant number of services utilized from that location. You can view the Azure status page for the latest information on the outage but the company does say that there may be downstream issues because of the impact related to Azure Active Directory. Users from around the globe are reporting issues as well, while Microsoft says this is only impacting the South Central US, it's clear that the outage is having a wide impact. For those of you who are having issues with Office 365, that status page is completely offline and has been for a couple of hours. Microsoft is aware of these issues and is working to resolve the problem but has not provided a timeline for service to return to normal operation. When an outage like this occurs, it's important to remember that when you are all-in with the cloud, you are not fully in control of your data when an outage occurs. Because of this, having a backup copy of your assets stored elsewhere is critical to making sure that your business remains flexible when a vendor's service does go... --- ### How To Defer Windows 10 Feature Updates - Published: 2018-09-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-defer-windows-10-feature-updates/ - Categories: Windows 10 - Tags: Windows 10, Windows Update, Windows Update for Business, WSUS, WUfB - Article Type: How To In this Ask the Admin, Russell explains how you can defer Windows 10 Feature Updates by up to 18 months. Microsoft provides two types of updates for Windows 10. Quality updates come at least once a month and provide bug fixes and security patches. Feature updates are released biannually and are a major new version of the operating system. Biannual feature updates are released on the Semi-Annual Channel (SAC) and are supported for 18 months. For ongoing servicing, you must upgrade to a supported version of Windows 10 once the version installed reaches its end-of-service date. For a list of supported versions and end-of-service dates, you can check Microsoft’s Windows lifecycle fact sheet. However, there is one exception to the rule. If you are running Windows 10 Enterprise or Education SKU version 1709 or an earlier supported version, you get an extra six months of support. Enterprise and Education customers can also pay for support beyond the end-of-service dates. The Long-term Servicing Channel (LTSC) version of Windows 10 gets ten years of support: five years mainstream and five years extended. But unless you need to install Windows 10 on a mission-critical system that can’t be regularly updated, you should deploy Windows 10 using the Semi-Annual Channel. Windows Server Update Services (WSUS) Organizations using Windows Server Update Services can choose when to approve feature updates. But as I mentioned above, once the currently installed version reaches its end-of-service date, Microsoft will no longer provide quality updates. Even if you don’t approve a feature update in WSUS, Dual Scan could mean that it gets installed anyway if you are running Windows... --- ### Microsoft Edge – Performance vs. Battery Life - Published: 2018-09-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-edge-performance-vs-battery-life/ - Categories: Windows 10 - Tags: Google Chrome, Microsoft Edge, Mobile, performance, Windows 10 - Article Type: Opinion Despite Microsoft’s claim that its Edge browser in Windows 10 is faster than Mozilla Firefox and Google Chrome, putting Edge through its paces in several different benchmark tests shows that it is slower in those that simulate real-world usage. Despite Microsoft’s claim that its Edge browser in Windows 10 is faster than Mozilla Firefox and Google Chrome, putting Edge through its paces in several different benchmark tests shows that it is slower in those that simulate real-world usage. Chrome and Firefox are more mature browsers than Microsoft Edge. And despite the improvements that Microsoft has made over the last three years, it hasn’t been enough to make any significant change to the browser’s market share. I’m not a big fan of Chrome, including the constant updating and the problems some of those updates introduce. Although it’s safe to say that Google is expert in software-as-a-service compared to Microsoft. But worse than the regular updates, Chrome drains my notebook’s battery much faster. Regardless of my complaints about Chrome, I’m not a typical user and accept that most prefer it over Edge. And one reason for that is extensions. Adding support for extensions in Edge was an important step but Chrome and Firefox both have a much larger selection. Benchmarks and Real-World Experience Edge improves on IE in almost every aspect, and I would describe the performance as more than serviceable. Microsoft’s claims for performance are based on the JetStream benchmark. And independent testing by PCWorld and TekRevue has confirmed that Edge is 25 percent faster than Chrome. Firefox and Opera are both marginally faster than Chrome. JetStream is a JavaScript benchmarking suite for browsers, and while JavaScript is important, it’s not the only measure of web app performance... . --- ### Verifying Administrator Access to Office 365 User Content > Office 365 Administrators have many ways to access user data. It's important to set up a policy to control access and then check access. Exchange SharePoint - Published: 2018-09-04 - Modified: 2024-09-04 - URL: https://petri.com/office-365-user-content-admin-access/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Compliance, content search, eDiscovery, Office 365, Search-Mailbox - Article Type: How To Office 365 Administrators have many ways to access user data. It's important to set up a policy to control and then verify that access. If you don't, your administrators might be looking into Exchange mailboxes, SharePoint, and OneDrive without oversight. And that would be a bad thing. Office 365 Administrators Always Have Access to User Data Shortly after posting the article explaining how to use compliance records captured for Teams and Skype for Business Online conversations in eDiscovery, I received a question asking if Office 365 administrators can access user content through eDiscovery. Of course, the answer is “yes. ” Administrators have always been able to access user content and don’t need eDiscovery functionality to do this. Administrators can log onto someone’s mailbox or give themselves permission to access a user’s OneDrive account, or use the Search-Mailbox cmdlet to copy messages from user mailboxes to another mailbox. And they can run content searches to scan mailboxes, SharePoint, OneDrive, Teams, Office 365 Groups, and public folders and export whatever they find to PST files, ZIP files, or individual files. In short, many ways are available to an Office 365 administrator to poke around in user content if they so wish. The Need to Control Access Those of us who have been around Microsoft Office server technology for a while don’t consider this news or shocking. Someone has to hold the keys to the kingdom and when you grant administrative permissions to a user, you create a contract that holds that person responsible for how they use that access. With great power comes awesome responsibility. Given the existence of regulations like GDPR, organizations need to define how administrators access user information in their data governance policy. The policy should set out the circumstances when administrators are allowed to... --- ### VMworld 2018 Executive Wrap-up: WorkSpace One, vSphere, Cloud Management - Published: 2018-09-03 - Modified: 2024-09-04 - URL: https://petri.com/vmworld-2018-executive-wrap-up-workspace-one-vsphere-cloud-management/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure, Mobile, VMware - Tags: Automation, Azure, Cloud, cloud computing, hybrid cloud, Virtualization, vmware, vSphere - Article Type: News WorkSpace One, vSphere, Cloud Management are the hot buzzwords leaving VMworld and Mike breaks down the latest on these products following the conference in Las Vegas. At this past VMworld 2018 in Las Vegas VMware made an impressive number of announcements covering a wide range of their latest products including their End-User Computing (EUC) solution Workspace One, their flagship vSphere product and their new cloud computing initiatives. I got a chance to sit down with three of the VMware execs to dig deeper into the details of each of these announcements. WorkSpace One To find out more about the new Workspace ONE changes I met with Renu Upadhyay, Senior Director Product Marketing, End User Computing, VMware. Workspace One is VMware’s End User Computing (EUC) solution that enables cloud-first modern management. It provides a common digital workspace for end users across all of today’s popular devices including Windows 10, Android, iPhone and the Mac. One of the main goals of Workspace One is to simplify the user experience. Renu explained that although Workspace One makes the end user experience look simple, that doesn’t mean it is simple. Devices are all different and VMware has done all the heavy lifting to provide a common experience across all of these devices. In addition to simplifying the end user experience, Workspace One also simplifies how IT manages devices by allowing administrators to end the constant cycle of testing updates and to control when updates are rolled out to end users. Renu explained how the new DELL Provisioning for Workspace One can take a huge burden off IT. DELL Provisioning for Workspace One enables systems to be deployed with... --- ### Everything you need to know about Office 365 – August 2018 - Published: 2018-08-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-august-2018/ - Categories: Microsoft 365 - Tags: #MSIgnite, Flow, Microsoft Teams, O365, Office 365, Powerapps - Article Type: News It was a busy month for Office updates and if you missed any of them, you can catch up quickly with this post. Gosh, this product is giant. There are so many little things that change what seems like every day I will do my best to not list all of them or even 1% of them but instead let's focus on the ones I felt were noteworthy. I realize you have been on holiday all summer (don’t we all wish) so I will try to help you catch up in one quick article. I also end with my version of crystal ball gazing so you can mock me when you get there. Microsoft Teams has completed its master plan The roadmap item for bringing Skype for Business functionality into Teams is complete. Making Teams an all up business communication tool. The timing of this seems right since I had just gotten comfortable using Skype for Business (S4B) here at PowerApps911. That is the fun part of this cloud world, right? We get new things almost every day. If you, like me, are a current S4B user then you will need to plan your transition to Teams. There is plenty of options and guidance linked at the bottom of the announcement here. I keep telling you guys (and myself) it is past time to embrace Teams. So get to work and let me know how it goes. Content to help you with rollout and adoption across the Microsoft ecosystem Check out this handy resource of Fast Track templates, announcements, guides, surveys and more to help you plan for and speed... --- ### Everything you need to know about SharePoint – August 2018 - Published: 2018-08-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-sharepoint-august-2018/ - Categories: SharePoint - Tags: OneDrive, SharePoint, SharePoint 2019, SharePoint mobile, SharePoint Online - Article Type: News With August coming to an end, it's time to catch up on all the SharePoint news announced this month. The summer has come and the summer has gone. I don’t know about you but August is always crazy town around here both personally (kids back to school and soccer every day of their lives) and professionally. Seems like a lot of events and customers look at this as the month to get things done before September comes and they want to get back to work in busy time. I don’t know about you but I am leaving summer “break” exhausted. Enough complaining. Let’s get to the news so we can all get back to work. More hub sites and other improvements Man, if I could do memes you know which one I would use here. “You get a hub site, you get a hub site, you get a hub site, ... ” Because now as part of this announcement you can create up to 100 hub sites in your tenant. I don’t even understand why but I am sure you do. And even if you don’t need 100 there were more updates that are great. Things like better controlling editing, colors, and even running scripts when a site gets associated. Also, changes to page editing and new web parts layouts.  Pretty cool really so not sure why my first reaction was to make fun of 100 hub sites. I think I just want to yell “Get off my lawn” and take a nap. The features are still rolling out so maybe I will wake up before they get... --- ### Everything You Need to Know About Azure Infrastructure – August 2018 > This post will summarize what's been going on in Azure IaaS in August, and discuss a few features and services that you might have missed or forgotten. - Published: 2018-08-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-august-2018/ - Categories: Microsoft Azure - Tags: Activity Log, App Services, ASR, Auditing, Azure, Azure File Sync, Azure Migrate, Azure Policy, Azure Portal, Azure Site Recovery, Azure Virtual Machines, Backup, Backup Exec, BLOB, Cloudyn, Containers, Cost Management, Disaster Recovery, DR, Governance, IaaS, Infrastructure, linux, Managed Disks, Management Groups, Microsoft, MySQL, PostgresSQL, Power BI, RBAC, Reference Architectures, Reserved Instances, resize, Resource Groups, Role-Based Access Control, Service Endpoints, SQL Server, storage, Subnet, Veritas, virtual machine, Virtual Network, VM, W2008, Window Server 2008 - Article Type: Overview Aidan summarizes what's been going on in Azure IaaS in August, and I'll also discuss a few features and services that you might have missed or forgotten about. In this post, I will summarize what's been going on in Azure IaaS in August, and I'll also discuss a few features and services that you might have missed or forgotten about. Governance One of the topics that I have found myself talking to customers about lately is governance in Microsoft Azure. Azure offers a number of tools to help you with governance – control, auditing, and role-based access control: Management Groups: This feature, which reached general availability in August, allows you to create an inheritance hierarchy for grouping and organizing subscriptions in your tenant (linked to your Azure AD domain). Resource Groups & Resources: Everything you deploy is a resource and is deployed into a resource groups. Resource groups can be used to logically group resources, such as AppA in a resource group called AppA. Role-Based Access Control: Azure provides a set of roles and enables you to create custom roles that can be used to assign rights to groups of users within Azure. The concept is that you can give people just enough rights to get the job done. Permissions can be assigned, using these roles, to resources (ideally not), resource groups, subscriptions, and management groups. Azure Policy: You can create and deploy policies to control and restrict what is deployed, and how it is deployed/configured in Azure. Policies can be deployed to management groups, subscriptions, and resource groups. Activity Log: Everything that happens in Azure is logged in the Activity Log, such as a successful backup, creating... --- ### Everything You Need to Know About Windows – August 2018 - Published: 2018-08-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-august-2018/ - Categories: Windows 10 - Tags: Driver Module Framework, InPrivate Desktop, Windows 10, Windows 10 Enterprise for Remote Sessions, Windows Community Toolkit, Windows Insider, Windows Server 2019 - Article Type: News This month sees lots of changes in Windows Server 2019 Insider builds, Microsoft announced more efficient Windows 10 updates, and a last minute zero-day drama. This month sees lots of changes in Windows Server 2019 Insider builds, Microsoft announced more efficient Windows 10 updates, and a last minute zero-day drama. Windows 10 and Server 2019 Insider Builds As we rapidly approach the general release of Windows 10 version 1809 (Redstone 5), Microsoft has updated the Insider builds on the Fast Ring several times this month. Mainly with bug fixes, and fit and finish. Slow Ring users got build 17738, although that’s not the latest build available on the Fast Ring. A working version of the new Your Phone app, which connects users directly to their Android phones, has been available since build 17728 but was also made available recently to users on the Release Preview Ring running build 17134 or later. We’re near the finishing gate for Windows 10 version 1809, so I’m not expecting so see any major changes in new builds. Windows Server 2019 Insider Preview Build 17733 Windows Server 2019 Insider Preview Build 17733 brought with it a new preview version of the Windows Admin Center (version 1808). The new Apps & Features tool allows admins to manage Microsoft Store and Win32 apps on Windows 10. Microsoft also updated the Task Scheduler, File Share, Azure Update Management, and Hyper-Converged Infrastructure tools. New networking features in Server and Windows 10 debuted in this build. Microsoft Edge on Windows 10 clients use connection coalescing for HTTP/2 and there’s better security in Microsoft Edge due to guaranteeing HTTP/2 preferred cipher suites. Performance also... --- ### Paul Thurrott's Short Takes: August 31 - Published: 2018-08-31 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-31/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because my kid is 20 and I need parental leave, this edition of Short Takes looks at a big boost for consumer Office 365, a possible inroad for Google in the enterprise, Microsoft's liberal agenda, AI vs. bank crime, and much more. Because my kid is 20 and I need parental leave, this edition of Short Takes looks at a big boost for consumer Office 365, a possible inroad for Google in the enterprise, Microsoft's liberal agenda, AI vs. bank crime, and much more. Office 365 for consumers just got even better I've often described Office 365 Home and Personal as being among the rare "no-brainers" in personal technology. For the low price of $70 to $100 per year, you get access to full and mobile Office on multiple PCs and devices and 1 TB of OneDrive storage, and in the case of Office 365 Home, this all applies to five people. What could be better? Well, this week Microsoft showed us the way: It's removing all the device limits, raising the user limit on Home to 6 people, and integrating Home more tightly with Microsoft Family. Bam. Suck it, Google Docs. "Windows 10 Pro for $12. 41 and Office 2016 Pro for $28. 10 Sounds legit. Also, I found this in Google News. G Suite sign-ins may be coming to Windows 10 A code commit to Google's Chromium project suggests that the online giant may be working to make its corporate-oriented G Suite accounts available as a login type on Windows 10. Presumably this would work similarly to Azure Active Directory (AAD) sign-ins on Windows 10, and would not be made available to consumer-oriented Gmail accounts. (Users can already use Gmail accounts as Microsoft accounts, so if you want to do... --- ### An IT Pro's Opinion of Using the Surface Pro > In this opinion post, I’m going to share what my experience of owning and using a Surface Pro for work has been like over the last six months. - Published: 2018-08-31 - Modified: 2024-09-04 - URL: https://petri.com/an-it-pros-opinion-of-using-the-surface-pro/ - Categories: Hardware - Tags: IT pro, Surface Pro - Article Type: Opinion In this opinion post, Aidan shares what my experience of owning and using a Surface Pro for work has been like over the last six months. A Review? You might think that this is usually the sort of review post that you’ll see a few weeks after a product is launched. I find reviews that are written sometime after a release by people in the industry to be more informative, so I want to share with you my opinion of what it’s like to own and use a Surface Pro for work over an extended period. Machine Choice In my day job, I use a Surface Book, which has been awesome for the most part. Every once in a while, the Surface Dock and it have a falling out, but disconnecting and reconnecting the dock normally fixes things. And once in a while, the Surface Book doesn’t wake up cleanly and requires a cold boot; I’m normally met by Windows Updates at that point, but I think this is a general laptop problem since Windows 8 started installing updates without a reboot, even if policies supposedly prevent that. I started a business about a year ago to provide Azure training. I was staying in my day job but I decided to make a clear division between my day job and my side business so I decided not to use the Surface Book that my employer supplied. As a teacher, I rely on whiteboarding quite a bit to explain concepts/architecture and to answer scenario questions. As most of you probably know, you cannot rely on the pens that are supplied. Instead, I use the Microsoft Whiteboard app... --- ### Microsoft Unifies Quality Updates in Windows 10 Version 1809 - Published: 2018-08-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unifies-quality-updates-in-windows-10-version-1809/ - Categories: Windows 10 - Tags: Security, Windows 10, Windows 10 version 1809, Windows Server, Windows Server 2019, Windows Update - Article Type: News In this Ask the Admin, Russell explains the changes that Microsoft is making to full, delta, and express updates in Windows Server 2019 and Windows 10 version 1809. In this Ask the Admin, I’ll explain the changes that Microsoft is making to full, delta, and express updates in Windows Server 2019 and Windows 10 version 1809. Windows 10 as a service has run a rocky road since it first debuted. Unlike Windows 7, feature updates that introduce a major new version of the OS are released biannually, and monthly quality updates have proven to be less than reliable. But despite the issues IT departments have been having with the software-as-a-service delivery model, Microsoft is continuing to invest in improving the backend update technology. Delta versus Express Updates Cumulative updates (CU) for Windows 10 allow users to install just the latest CU (LCU) because it contains all the changes contained in previous CUs. While this is convenient for users, it does mean that the CUs get progressively larger. The first CU for a new version of Windows 10 usually starts off at between 100-150 MB in size. But by the end of a version’s supported life, CUs are closer to 1 GB. To help overcome this problem, delta updates were introduced with Windows 10 version 1607. They allow users who had the previous CU installed to download just the changes in the new update rather than the entire package. Delta updates are on average 30% smaller than full update packages and are usually 300-400 MB in size. Updates contain the full updated components rather than just files that have changed since the previous CU. In the Windows... --- ### Microsoft's Making Office 365 Home and Personal Better, Still Can't Buy More Storage - Published: 2018-08-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-office-365-home-and-personal-better-still-cant-buy-more-storage/ - Categories: Microsoft 365 - Tags: Microsoft, Office 365 - Article Type: News Microsoft is introducing new quality-of-life updates for Office 365 but they still will not let consumers buy more storage. For Microsoft, Office 365 is a cornerstone product that the company must continuously improve so that their customers see value in paying the annual subscription for the software. While Google continues to challenge Microsoft with updates as well, Microsoft is announcing a couple of key updates to Office today that will improve the platform for consumers. Starting on October 2nd, Microsoft is going to relax the restrictions on the number of devices you can install the software on before having to remove it from another machine; the current limit for Home subscribers is 10 devices and 1 PC and 1 tablet for Personal. After October 2nd, you will be able to install Office on an unlimited number of devices and have five of those machines signed-in at the same time. The other significant change coming to Office 365 Home is that Microsoft is upping the number of users from 5 to 6. Simply put, you now have six licenses to Office 365 with a Home subscription. The final update is that you will now be able to manage your Office subscription through your Microsoft account page, rather than having to login Office. com directly. While none of these changes are going to dramatically change the course of history, they do make using the software a little bit easier. These are simple quality of life changes that the company is making likely based off of feedback the team has received during the first couple years of offering the software as... --- ### Google's Next G-Suite Feature? Logging Into Windows - Published: 2018-08-30 - Modified: 2024-11-19 - URL: https://petri.com/googles-next-g-suite-feature-logging-into-windows/ - Categories: G Suite, Uncategorized - Tags: G Suite, Windows 10 - Article Type: News Google is working to make it easier to use Windows with G-Suite and may soon enable the ability to login to Windows with G-Suite credentials. There is no question about it, Google is diving headfirst into the corporate world and it shows no signs of slowing down. With the company investing billions into its cloud platform, expanding G-Suite with new features, and even taking on Microsoft's Surface Hub, the search-engine giant is expanding far beyond the ability to surface relevant content based on your queries. But the one area that Google has yet to fully penetrate is Windows. Microsoft's operating system is, and for the foreseeable future, the backbone of the enterprise workload for the end user. While Chromebooks certainly have there place in the world, they have yet to make a serious dent in replacing Windows for productivity. Just because the company's desktop operating system isn't upending Windows doesn't mean their productivity suite isn't having an impact on Microsoft. G-Suite is proving to be a compelling alternative to Office 365 and while it may not overtake the number of users Microsoft currently has with its productivity tools, you can't ignore Google's success either. But one of the awkward points of using G-Suite is that you need to have two accounts, one to login to Windows and another to login to G-Suite. That may soon be changing based on the discovery of what Google has been quietly working on; the ability to login to Windows using your G-Suite credentials. Chromestory has uncovered that Google is working on a new credential provider for Windows 10. Credential providers allow third-party developers to create their own channels... --- ### Proving that Teams Retention Policies Work > You can create an Office 365 retention policy to process Teams channel conversations and personal chats, but how do you prove that the policy is working? - Published: 2018-08-30 - Modified: 2024-09-04 - URL: https://petri.com/proving-teams-retention-policies-work/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Exchange Online, Managed Folder Assistant, MFA, Office 365, retention policies, Teams - Article Type: How To You can create an Office 365 retention policy to process Teams channel conversations and personal chats, but how do you prove that the policy is working? As it turns out, the only way is by checking the mailboxes where Teams stores compliance items and the statistics generated by the Exchange Online Managed Folder Assistant. Teams Retention In April 2018, Microsoft introduced support for Teams as a workload processed by Office 365 retention policies. The concept is simple. Teams captures compliance records for channel conversations and private chats in Exchange Online mailboxes, including messages from guest and hybrid users. When you implement a Teams retention policy, the Exchange Managed Folder Assistant (MFA) processes the mailboxes to remove the compliance records based on the policy criteria. The creation date for a compliance record in a mailbox is used to its assess age for retention purposes. Given that Office 365 creates compliance records very soon after users post messages in Teams, the creation date for a compliance record closely matches the original message in Teams. A background synchronization process replicates the deletions to the Teams data service on Azure, and eventually the deletions show up in clients. A Pragmatic Implementation If you were to design a retention mechanism from scratch, you might not take the same approach. However, the implementation is pragmatic because it takes advantage of existing components, like MFA. The downside is that because so many moving parts exist, it’s hard to know if a retention policy is having the right effect. Setting a Baseline Before a retention policy runs against a mailbox, we need to understand how many Teams compliance items it contains. This command tells us how many compliance items exist in a mailbox (group or personal) and reveals details of the oldest and newest items in the “Team Chat” folder... . --- ### Backing Up Files with Azure File Sync > This post will explain how you can back up folders & files that have been synchronized and/or tiered to the cloud with Azure File Sync. - Published: 2018-08-29 - Modified: 2024-09-04 - URL: https://petri.com/backing-up-files-with-azure-file-sync/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure File Sync, Backup, Cloud-Tiering, File Server, Windows Server 2012 R2, Windows Server 2016, WS2012 R2, WS2016 - Article Type: How To Aidan explain's how you can back up folders & files that have been synchronized and/or tiered to the cloud with Azure File Sync. Backup in the Cloud One of the primary features of Azure File Sync (AFS) is the ability to move your backups from the file server to the cloud. When you synchronize a folder to Azure with Azure File Sync, it is strongly recommended that you relocate the backup task to Azure. This is because you’ll probably have introduced cloud tiering, and an on-premises backup solution might not respect the offline status (O attribute) of a cloud tiered file, and needlessly download gigabytes or terabytes of files every night. By using Azure Backup, you can: Centralize the backup function. Simplify deployments in branch offices and small businesses. Backup to the cloud ... because the files are already in the cloud. Store files “offsite” by using the default geo-redundant blob storage of the recovery services vault, which will replicate your backups to the region that is paired to the location of your AFS storage sync service. Reduce costs by using storage and pay-per-usage backup in the cloud. Tip: Those of you using Azure Backup MARS agent to protect on-premises file servers might consider AFS because it also adds disaster recovery and multi-site replication, and the entire backup function is cloud-based. Today, the backup works by creating incremental snapshots of the files in the storage account. Backups are not transferred to the Azure Backup recovery services vault – but this is supposed to be coming. It is important to place a delete lock on the storage account to prevent accidental deletion of the... --- ### Understanding Windows Server 2016’s Disaster Recovery Features - Published: 2018-08-29 - Modified: 2024-09-04 - URL: https://petri.com/understanding-windows-server-2016s-disaster-recovery-features/ - Categories: Backup & Storage, Hybrid Cloud, Hyper-V, Microsoft Azure, Windows Server 2012, Windows Server 2016 - Tags: Azure, Azure Virtual Machines, Backup, Disaster Recovery, Hyper-V, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016 - Article Type: Overview If you are running Windows Server 2016, you already have a robust set of DR tools at your disposal but the question is, are you utilizing them? A solid understanding of the Disaster Recovery (DR) options that your systems have can help you build a reliable disaster recovery plan for your organization. Most businesses are using some version of Windows Server as core part of their IT infrastructure and understanding Windows Server’s built-in DR capabilities can definitely help you protect your mission-critical systems and applications from data loss and downtime. Let’s take a closer look at Windows Server’s built-in DR features. Windows Server Backup Backup is the most fundamental DR technology that’s been a part of Windows Server since the very beginning. However, the latest versions of Windows Server 2016 don’t actually install Windows Server Backup by default. Instead, it is an optional feature that you have to install using Server Manager or PowerShell. Windows Server Backup is functional although fairly limited in backup and scheduling options. In addition, it doesn’t provide advanced features that you’ll find in third-party backup products like encryption and deduplication. While it does provide the ability to backup Hyper-V VMs most businesses are using VM-specific third-party backup tools to take image-level backups of their VMs. Windows Failover Clustering Primarily a technology that’s designed to provide high availability for mission-critical applications, Windows Failover Clustering (WFC) is used to provide server-level protection from both planned and unplanned downtime. Windows Failover Clusters can have up to 64 nodes on Windows Server 2012, 2012 R2 and 2016. Like Windows Server Backup, WFC is an optional feature for Windows Server that you must install using... --- ### VMworld 2018 Day 2 – Digital Transformation Stories and a Guest Appearance by Malala Yousafzai - Published: 2018-08-29 - Modified: 2024-09-04 - URL: https://petri.com/vmworld-2018-day-2-digital-transformation-stories-and-a-guest-appearance-by-malala-yousafzai/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, VMware - Tags: Automation, Cloud, cloud computing, hybrid cloud, vSphere - Article Type: News he VMworld 2018 Day 2 keynote took a different turn than the previous day but was still packed with updates and announcements. The VMworld 2018 Day 2 keynote took a different turn than the previous day. It began with Sanjay Poonen, VMware Chief Operating Officer Customer Operations, VMware, demonstrating his surprising and not inconsiderable skills on the keyboard playing with the band. With most of the big announcements already spilled on day 1, day 2 focused more on customer stories and a guest appearance by Noble Peace Prize winner Malala Yousafzai. Sanjay started by discussing how VMware is a company known for innovation and that they now see themselves as a Digital Foundation Company. Brinks, Sky, National Commercial Bank Next, Sanjay kicked off a panel discussion with IT leaders from the Brink’s Company, SKY and the National Commercial Bank of Jamaica. These companies discussed the importance of cloud integration, software-defined technologies, and modern Agile app development. Some of the high points each company hit were: Brinks, the secure cash management company, was able to use SDN and the cloud to create the same network in the cloud as they had on-site and that they had moved all their critical data to AWS. They also stated they will no longer have any physical DR centers. All DR has been moved to the cloud. Sky, a media company, explained how they adopted SDN and that NSX was a common control plane for their company. SDN and the use of containers helped to make sure developers can move at a pace to keep up with their need for development – speeding up some... --- ### Microsoft Details New Features Coming to OneDrive and SharePoint - Published: 2018-08-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-new-features-coming-to-onedrive-and-sharepoint/ - Categories: Office, SharePoint - Tags: News, OneDrive, SharePoint - Article Type: News Later this year, Microsoft will be rolling out a set of significant updates to its SharePoint and OneDrive platforms. Later next month, Microsoft will head to Orlando where the company will host its Ignite conference. Ahead of that event, the company is announcing a few new features that will be coming to SharePoint and OneDrive. Later this year, automated transcription services will be natively available for video and audio files in OneDrive and SharePoint. While not every video or audio file needs to be transcribed, this functionality does make discoverability of content inside of these mediums significantly easier to locate. Coming later this year to OneDrive and the Office. com is a new files view that will recommend documents and other forms of content based on your profile from the Microsoft Graph. This intelligent surfacing of content is something that Microsoft likes to pitch as a differentiator for its products as it is unique to the company. Earlier this year, Microsoft revamped the file card that provides insight into any document that is stored in OneDrive or SharePoint. This made it easier to see who has viewed the content and changes that have been made; later this year additional insights will be added including time to read and key points from the file. One of the core features of OneDrive and SharePoint is the ability to share content, crazy I know, but Microsoft is looking to make intelligent sharing even easier. A new feature coming down the pipeline is a simpler way to share content with people who are attending a meeting by recommending that you distribute content... --- ### Restoring Files with Azure File Sync > In this post, I will show you how to restore files that were synchronized to the cloud, using Azure File Sync, and backups up using Azure Backup. - Published: 2018-08-28 - Modified: 2024-09-04 - URL: https://petri.com/restoring-files-with-azure-file-sync/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure File Sync, Backup, Cloud-Tiering, File Server, Restore, Windows Server 2012 R2, Windows Server 2016, WS2012 R2, WS2016 - Article Type: How To Aidan shows you how to restore files that were synchronized to the cloud, using Azure File Sync, and backups up using Azure Backup. In this post, I will show you how to restore files that were synchronized to the cloud, using Azure File Sync, and backups up using Azure Backup. Note that this post is based on the preview release of Azure Backup support for Azure Files. Demo Lab In my lab, a file server is synchronizing three shares (Accounting, Marketing and Sales) to the cloud using Azure File Sync. Each share is in its own sync group and is synchronizing to an Azure Files share in a general purpose storage account. Each Azure Files share is named after the synchronized folder on the file server (accounting, marketing and sales). I have already deployed Azure Backup to protect the files and the backups are stored as snapshots with the Azure Files share in the storage account. Restoring a Share I have created a scenario where all of the files in the Accounting share were deleted on the file server, and this damage was synchronized to the share in Azure Files. This could also have been a ransom-ware attack. Now I will show how to restore the entire share in the storage account. You will start the restore process in the Manage Backups blade which you can reach by: Navigating to the share in the storage account > Files and clicking Manage Backups. Browsing to Backup Items in the recovery services vault that is managing the backups, and opening the share in question under Azure Storage (Azure Files)... . --- ### Using Office 365 IM Conversation Records for eDiscovery > Teams and Skype for Business Online both capture conversation records that can be found by Office 365 eDiscovery (content) searches. - Published: 2018-08-28 - Modified: 2024-11-19 - URL: https://petri.com/office-365-conversation-records-ediscovery/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: content searches, eDiscovery, Exchange Online, MFCMAPI, SharePoint Online, Skype for Business Online, Teams - Article Type: How To Teams and Skype for Business Online both capture IM conversation records that can be found by Office 365 eDiscovery (content) searches. All of which is good, but if you ever get around to performing eDiscovery and need this information, you'll find that Skype for Business Online conversation transcripts are easier to use than the individual copies of conversation contributions captured by Teams. The Exciting World of eDiscovery eDiscovery is an activity based on seeking answers to questions. Who did something and when did they do it? Who was involved? How were they involved? Where is the evidence and how strong is the evidence? And so on. Lots of Data to Search When it comes to performing eDiscovery in an Office 365 tenant, a lot of data is available to search to find answers. The two basic workloads, Exchange and SharePoint, began adding compliance features in their 2010 on-premises versions. The on-premises technology is now largely superseded by newer and more capable cloud-specific implementations in the Office 365 data governance framework. For example, content searches are much faster and more capable than their on-premises counterparts because they can search multiple locations. Office 365 retention policies make sure that all workloads keep information based on the same criteria. Some older methods, like Exchange litigation holds, continue in use, but overall, Office 365 is a good place to go hunting for information. Compliance Records for Communications Given that an increasing number of organizations use Teams for internal communications and that Teams will replace the Skype for Business Online client, anyone interested in eDiscovery needs to understand how the two applications record information that might turn up in searches. As summarized in Table 1, both Skype for Business Online and Teams capture records for text-based communications (Skype calls these IM, Teams uses chats or conversations). Neither application captures compliance records for video or audio... --- ### VMworld 2018 Day 1 Keynote – VMware Bridges the Hybrid Cloud and Multi Cloud Management - Published: 2018-08-28 - Modified: 2024-09-04 - URL: https://petri.com/vmworld-2018-day-1-keynote-vmware-bridges-the-hybrid-cloud-and-multi-cloud-management/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Hybrid Cloud, Microsoft Azure, Virtualization, VMware - Tags: Automation, Azure, Cloud, cloud computing, hybrid cloud, Virtualization - Article Type: News VMWorld is happening this week and if you missed the action from day one, here's a brief summary of everything that was announced. As VMworld 2018 kicked off with the day one keynote, its 20,000+ enthusiastic attendees packed into the Mandalay Bay in Las Vegas, I was once again impressed at the sheer size of this conference. I was even more impressed at the breath of enterprise offering VMware now has. Pat Gelsinger, CEO VMware begin his keynote with some VMware history. Pat noted that this year marks VMware’s 20th anniversary. Two decades ago VMware started with all of 5 people and a single virtualization product. Today VMware employs 23,000+ employees and offers a wide range of enterprise products that bridge the on-premise private and multi-public clouds. VMware is far more than just a virtualization company. Pat guided the VMworld 2018 day 1 keynote through a number of significant announcements. VMware expands VMware Cloud on AWS Pat introduced Amazon AWS CEO Andy Jassy to present the recent enhancements and implementations of VMware Cloud on AWS. VMware Cloud on AWS is essentially a VMware cloud-native implementation on Amazon AWS. Organizations can use the same software and methods to manage VMware AWS in the cloud as they do their private on-site vSphere infrastructure. Andy said that adoption has been very strong with implementations doubling every quarter. He mentioned it was mostly used by enterprises working to migrate on-premises workloads to the cloud. One example he presented was MIT who recently migrated 3000 VMs to VMware Cloud on AWS. Andy announced that they have recently expanded VMware Cloud on AWS to the Australia region completing the... --- ### Adding a 0 to the 3-2-1 Rule - Published: 2018-08-27 - Modified: 2024-09-04 - URL: https://petri.com/adding-0-3-2-1-rule/ - Categories: Backup & Storage - Article Type: Overview We are all familiar with the 3-2-1 data recovery rule but as the technology modernizing, it's time to modernize how we think about data storage. When it comes to disaster hitting your environment, it's not a matter of if, but when. We all like to think that we are prepared and practice is always important but when an outage does occur, having a playbook ready will help you not only recover faster but will help to turn the chaos into a little bit of sanity. Over the years, the 3-2-1 rule has become a bit of a guiding light for the industry as it helps to create a foundation for solid backup and recovery. If you aren't familiar with the rule, let me break it down for you. The first digit, three, means that you should be keeping at least three copies of your data. This may sound excessive but when it comes to a disaster, they can range from a simple switch failure to an entire loss of a data center; the more copies you have of your data, the better off you will be when it comes to a recovery scenario. The second digit, two, means that of your three copies of your data, you need to store them on two different mediums. This is self-explanatory, if you keep your data on tapes, make sure you have another copy stored on internal disks; simply put, don't solely depend on having tapes as your only means of backup. And the last digit,1, means that you need to store one of your copies of your data offsite. With the explosive growth in cloud-storage services, every... --- ### Microsoft Has Fixed One of the Annoying Aspects of Teams - Published: 2018-08-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-fixed-one-annoying-aspects-teams/ - Categories: Microsoft Teams, Office - Tags: Microsoft, Teams - Article Type: News Microsoft has recently rolled out an update to Teams that fixes one of the most annoying issues with the application. Last week, Microsoft announced that Teams had reached feature parity with Skype for Business Online which is a major milestone for the communications platform. In addition, the company highlighted some updates that have been released which thankfully includes an update that was a blocker for using this app full time for my workflow. Previously, with Teams, you could not adjust your audio and video configuration before making a call. The only way to adjust these peripherals was once you were in a call, you could then edit the settings. For someone who uses Skype/Teams as the conduit for podcasting, not being able to edit these settings ahead of a call meant that Teams was not production-ready for our needs. Thankfully, Microsoft has added the ability to swap mics and cameras before joining a conference call which will significantly reduce the 'can you hear me? ' conversations that are typical when trying to join a call. In addition to this update, Microsoft has rolled out a number of other enhancements during the past six months including support for existing enterprise relationships with federated meeting join and that the meeting lobby now supports audio conferencing dial-in users. There are quite a few other updates you can read about here including improved recovery for when a call is dropped for desktop and mobile users. For Microsoft, Teams is a must-win application as the company needs a modern communication solution and is investing heavily in the development of the software. So far, it... --- ### Google Adds In-App Messaging to Firebase - Published: 2018-08-27 - Modified: 2024-09-04 - URL: https://petri.com/google-adds-app-messaging-firebase/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Cloud, Firebase, Google, In-App, Messagine, News - Article Type: News Google recently announced Firebase In-App Messaging, a new service that enables developers to configure triggers that send in-app messages to iOS and Android users.   When it comes to building and maintaining mobile apps, it’s important that the app is able to communicate various messages to users. This is especially true when it comes to frequent users who spend a great deal of time engaged within an app. And with Firebase In-App Messaging, one of the latest additions to Google’s Firebase platform, developers can provide users with the information they need via native in-app messages. Firebase In-app Messaging, which was designed to help developers promote engagement within mobile apps, can be used for a variety of purposes. For example, developers may want to configure a trigger that sends a message to users that are browsing a “Pricing” or “Sign Up” page in order to entice them to complete a purchase or to register a user account. In the case of a game, a developer might want to notify a user of available in-app purchases or provide users with hints if they are having trouble completing a level. In order to actually trigger messages within an app, Firebase In-app Messaging makes use of both Google Analytics for Firebase and Firebase Predictions, which provide a variety of parameters that can be used to determine when a message should be sent. Some of the available parameters that can be used for triggering a message include the user’s language or country, the version of the app being used, purchases that were made, screens or pages that were visited within the app, as well as what buttons... --- ### Microsoft Brings Intune Support to To-Do - Published: 2018-08-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-intune-support/ - Categories: Office - Tags: Microsoft, News, To-Do - Article Type: News Microsoft is finally bringing Intune support to its task management application, To-Do. A few months ago, Microsoft started making serious improvements to its To-Do application that the company hopes will soon replace Wunderlist. While the app sat dormant for what felt like years, there is no question that Microsoft is once again committed to improving the product. This week, in an update delivered to those who are beta-testing the mobile application, the team enabled support for Intune. If you are running this build, you can now test it with your Azure Active Directory accounts. Intune is a cloud-based service in the enterprise mobility management (EMM) space that helps to distribute applications while keeping your corporate data protected. It's quite surprising that the company's task management application was not supported by this platform but now that this support will soon arrive, it will make it significantly easier for Intune customers to deploy the app. If you aren't familiar with To-Do, the app is Microsoft's attempt to remake Wunderlist but after a series of missteps, the app sat idle for many months. Bundle this with confusing information about when Wunderlist would be retired and when To-Do would reach feature parity with Wunderlist and you end up with users becoming upset at Microsoft for botching the Wunderlist acquisition and effectively ruining the original product. With that baggage in the background, the To-Do team is once again updating the application at a much faster rate. Microsoft is quickly taking an app that was at the bottom of the 'task management' barrel and turning it... --- ### Microsoft Teams Matches Skype Functionality, Ready For The Road Ahead - Published: 2018-08-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-matches-skype-functionality-ready-road-ahead/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft, News, Skype for Business, Teams - Article Type: News Microsoft says that Teams now matches Skype for Business Online's feature set but the company still won't say when they will decommission Skype. Last September, Microsoft made a significant announcement, Skype for Business was no longer the future and that the company was putting all their communications eggs into the Teams basket. But at that time, Teams wasn't quite ready to fully-overtake Skype for Business but that changes today. Microsoft has announced that Teams is now ready to become the primary client for communication inside the Office 365 platform. But, this doesn't mean Skype for Business is going away overnight, Microsoft plans to support that plan form for many years to come. This is an important milestone for Teams because up until this point, it was playing catch-up to Skype for Business Online, going forward it will be able to add new features and expand that app's footprint as well. And while day one it may not have been better than Skype for Business Online, the future is clear, Microsoft is investing in Teams and you should consider switching platforms. Of course, just because Microsoft says that it has reached feature parity doesn't mean that customers agree. Some functionality is still in beta and others may not work as reliably as Skype for Business but let's not let that get in the way of Microsoft's marketing. The big question, though, is when Microsoft will require customers to fully leave Skype for Business behind. Microsoft has yet to tell me (or Mary Jo) these details which likely means it's not anytime soon. The company knows that switching communication platforms is not a simple task and... --- ### Paul Thurrott's Short Takes: August 24 - Published: 2018-08-24 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-august-24/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because this literally isn't your father's Microsoft, this edition of Short Takes looks at a nonsense puff-piece about the software giant, a new SEC/DOJ investigation of Microsoft, a poor forecast for the PC industry, and much more. Brad's next dog. Because this literally isn't your father's Microsoft, this edition of Short Takes looks at a nonsense puff-piece about the software giant, a new SEC/DOJ investigation of Microsoft, a poor forecast for the PC industry, and much more. Not your father's Microsoft? Damn straight it isn't In just the latest of what now appears to be an endless series of insipid puff pieces about the "new Microsoft" under Satya Nadella, CNET, that bastion of originality, has carted a famous old car marketing slogan, "this is not your father's Oldsmobile" and applied it to the software giant, as in "this is not your father's Microsoft. " Damn right it isn't. Your father's Microsoft controlled personal computing for decades and destroyed erstwhile competitors real and imagined with a ruthlessness that would give some mobsters pause. And your father's Microsoft crested at the cusp of the Internet bubble with a market cap that still surpasses what the new Microsoft has achieved today when adjusted for inflation. The new Microsoft is a cushy teddy bear of a company in which everyone's a winner and no competitor is too dangerous to not partner with. And if this doesn't bother you, you're either a Microsoft shareholder---because, go figure, this rah-rah baloney is working with Wall Street for some reason---or just delusional. "You join not to be cool, but to make others cool" --Satya Nadella Why can't you join Microsoft to be cool and to make others look cool? ... --- ### Install and Configure Puppet 5 Part 2: Set Up Puppet - Published: 2018-08-23 - Modified: 2024-09-04 - URL: https://petri.com/install-configure-puppet-part-2-set-puppet/ - Categories: Windows Server - Tags: Configuration Management, Desired State Configuration, linux, PowerShell, Puppet, Red Hat Enterprise Linux, Windows Server - Article Type: Overview In the final part of this two-part article, Russell shows you how to install Puppet 5 on Red Hat Linux. As a companion to my series on managing Windows Server with Puppet 5, this short two-part article will guide you through installing your own Puppet 5 server on Red Hat Linux in Hyper-V. In the final part of this two-part article, I’m going to show you how to install Puppet 5 on Red Hat Linux. In the first part, I installed Red Hat Enterprise Linux (RHEL) in a Hyper-V virtual machine running on Windows 10. I also registered and subscribed RHEL using my Red Hat Developer Program account. If you missed my series of articles on managing Windows Server using Puppet, here are the links to the pieces published so far. Managing Windows Server with Puppet Part 1: Configure Puppet Master and Bootstrap the Puppet Agent in Windows Server Managing Windows Server with Puppet Part 2: Log in to Puppet Master, Accept Node Certificate, and Test Connectivity Managing Windows Server with Puppet Part 3: Install Modules and Edit the Site Manifest Managing Windows Server with Puppet Part 4: Working with Files and ACLs Managing Windows Server with Puppet Part 5: Managing Local Users and Groups Managing Windows Server with Puppet Part 6: Installing, Updating, and Removing Software Managing Windows Server with Puppet Part 7: Installing Active Directory Download and Install Puppet Let’s get started and install Puppet. The VM will need Internet connectivity to complete the steps below. Boot the Red Hat VM using Hyper-V manager. Log in to Red Hat using root. Type root at the login... --- ### New GDPR Data Loss Prevention Template Needs Some Tweaking > Microsoft has done a good job of preparing Office 365 for GDPR, but the best intentions sometimes run into difficulties. - Published: 2018-08-23 - Modified: 2024-09-04 - URL: https://petri.com/gdpr-data-loss-prevention-template-needs-tweaking/ - Categories: Microsoft 365, Office - Tags: Data Loss Prevention, DLP, Exchange Online, GDPR, Office 365, OneDrive for Business, SharePoint Online - Article Type: Opinion Microsoft has done a good job of helping Office 365 tenants prepare for GDPR, but the best intentions sometimes run into difficulties. Such as what you might find with the new GDPR Data Loss Prevention policy template, which does an excellent job of finding things like European tax numbers... but sometimes too good a job. GDPR Came and the World Didn’t Stop GDPR went live on May 25 and no puppies, kittens, or other small animals were harmed, rather like what happened when Y2K happened. But the effect of GDPR is more important because of the influence it has over how companies protect and manage personal data. One of Microsoft’s responses to GDPR was the introduction of a GDPR Data Loss Prevention (DLP) template policy together with a set of GDPR sensitive data type definitions. The idea is that Office 365 tenants can use the template to create a DLP policy to protect against the inadvertent transmission of sensitive data that comes within the scope of GDPR outside the organization. Two Types of DLP DLP comes in two flavors inside Office 365: DLP as originally introduced in Exchange 2013. This variant uses transport rules to make sure that emails that violate the tenant policy cannot be sent. The transport block is backed up by client-side checking in Outlook desktop and OWA to detect potential violations as users compose messages. The system works well and has some unique characteristics like support for document fingerprinting, but it is limited to email. Office 365 DLP policies support Exchange, SharePoint, and OneDrive for Business – with the potential for support in Teams soon. Because of its multi-workload support, Microsoft is putting its weight behind this variant as the go-forward choice for Office 365. If you want to deploy DLP from scratch, you should use Office 365 DLP... --- ### What’s New in Windows Server 2019 - Published: 2018-08-22 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-windows-server-2019/ - Categories: Windows Server - Tags: Azure, cloud computing, hybrid cloud, Hyper Converged Infrastructure, Security, Windows Admin Center, Windows Server 2019 Windows Server 2019 is all about improved support for hybrid cloud scenarios, hyper-converged infrastructure, and security. In this Ask the Admin, Russell looks more closely at these features in Windows Server 2019. Windows Server 2019 is all about improved support for hybrid cloud scenarios, hyper-converged infrastructure, and security. In this Ask the Admin, I’ll look more closely at these features in Windows Server 2019. Windows Server 2019 is the forthcoming long-term servicing channel (LTSC) version of Windows Server and includes all the features of releases from the semiannual channel (SAC). Some of the improvements that Microsoft is touting for Windows Server 2019 have been previously available in the semiannual channel releases. But nevertheless, they are new to LTSC. Microsoft doesn’t recommend using the LTSC version of Windows 10 in most circumstances but it’s a different story for Windows Server. LTSC is good for apps like Exchange, SQL, and SAP. Microsoft also recommends it for building hyper-converged infrastructure. Hyper-Converged Infrastructure (HCI) It should come as no surprise that Microsoft is improving support for HCI in Windows Server 2019. Microsoft has built Azure on Windows Server using local storage connected via Ethernet and software-defined compute and networking, moving away from expensive SANs that once dominated the datacenter. Microsoft has been promoting Azure Stack and Windows Server Software Defined Solutions (WSSD) for some time. And while Azure Stack and WSSD solutions are available today built on Windows Server 2016, there are many improvements coming to Windows Server 2019 to enhance performance and make management easier. If you want to know more about HCI, see What Is Hyper-Convergence in Windows Server 2016? and Modernizing IT with Hyperconverged Infrastructure and the Hybrid Cloud on Petri... . --- ### Microsoft's Killing its Sway iOS App - Published: 2018-08-22 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-killing-sway-ios-app/ - Categories: Microsoft 365 - Tags: Microsoft, News, Office 365, Sway - Article Type: News Microsoft is ending support for its Sway iOS app but the company says that they are not sunsetting the entire platform...yet. Here's an odd one for you, Microsoft is retiring its Sway iOS app but the company says it remains committed to the platform and that you should not worry about the longevity of Sway. The company posted the announcement on the Sway blog where they note that on December 17, 2018, the company will be retiring the app. Microsoft never released Sway for Android but they do say that the web service will continue to operate. For those not familiar, Microsoft built Sway as a 'modern' way to tell a story and made it easy to create dynamic web pages that allowed you to share content with users on any type of device. But, with the company never releasing an Android app, retiring its iOS app, and only leaving its web component as the surviving piece of the service, it does feel a bit like Sway may be on its last leg. The service is currently part of Office 365 and even though it's limiting entry-points to the platform, I could see Microsoft simply letting this service live-on, as-is, for many years to come. Seeing as the company wants to create as much value for Office 365 as possible, pulling the service from the productivity suite would work against this idea and simply leaving it as-is creates little overhead for the company. I've used Sway a couple of times in the past and it does work well if you want to create and share content via a webpage... --- ### Enable OneDrive for Business Known Folder Migration - Published: 2018-08-22 - Modified: 2024-09-04 - URL: https://petri.com/enable-onedrive-business-known-folder-migration/ - Categories: Office - Tags: OneDrive, OneDrive for Business In this Ask the Admin, Russell explains what Known Folder Migration (KFM) is in OneDrive for Business and show you how to configure it using Group Policy. Microsoft started rolling out Known Folder Migration in an update to the OneDrive client in June 2018. KFM lets users migrate their documents, desktop, and pictures to the cloud. But the feature isn’t enabled by default and for the time being is only supported for eligible OneDrive for Business users. KFM differs from Folder Redirection in that it migrates files to the cloud. OneDrive Folder Redirection does not migrate files and should only be used on new machines with empty folders. So, what does Microsoft mean by ‘eligible’ OneDrive for Business users? As far as I can work out, KFM is only accessible to users whose devices are joined to an Active Directory domain. Although, I haven’t tested Windows 10 joined to Azure Active Directory (AAD). KFM also requires a supported version of Windows and a OneDrive client version 18. 111. 0603. 0004 or higher. If you need to download a newer version of the OneDrive client, check out Microsoft’s website here. Enable OneDrive Known Folder Migration (Image Credit: Russell Smith) Once users have an up-to-date client, a new tab appears in Settings. The Auto Save tab allows users to start the process of synchronizing known folders from the PC to OneDrive. Clicking Update Folders starts the process. Before the configuration is complete, users can select which folders they want to sync. Known folders are limited to Documents, Pictures, and Desktop. Enable OneDrive Known Folder Migration (Image Credit: Russell Smith) Using Group Policy... --- ### Take the Petri Reader Survey for a Chance to Win a Surface Go - Published: 2018-08-21 - Modified: 2024-09-04 - URL: https://petri.com/take-petri-reader-survey-chance-win-surface-go/ - Categories: Main - Tags: Petri, Survey - Article Type: Opinion Every couple of years, we poll our readers to make sure that we are covering the right content, with the right format, in a way that is easy to digest and is helpful to our readers. Every couple of years, we survey our readers to make sure that we are covering the right content, with the right format, and in a way that is easy to digest. As we continue to expand our footprint and grow the focus areas of our content, it's important that we are aligned with what our readers find interesting and useful for their careers in the IT world. This year, our survey will take about 7 minutes to complete and if you agree to enter the drawing, you will have a chance to win a Surface Go. View: Petri Reader Survey     --- ### Removing the License for an Office 365 Feature with PowerShell > The licensing model for Teams is now per-user instead of tenant-wide. That's fine if you leave everyone enabled for Teams, but Office 365 Admin Center - Published: 2018-08-21 - Modified: 2024-09-04 - URL: https://petri.com/removing-license-for-office-365-powershell/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, Keywords: Teams, Licenses, Office 365 - Article Type: How To The licensing model for Teams is now per-user instead of tenant-wide. That's fine if you leave everyone enabled for Teams, but removing licenses one at a time for a set of users through the Office 365 Admin Center is a tiresome and boring operation. PowerShell can help ease the pain, and here's a script to do the job. Changing Licenses for Teams As part of the transition to the Teams and Skype for Business Online Admin Center (TSBAC), Microsoft is changing the way tenants manage Teams licenses. Instead of turning Teams on or off for users and guests at a tenant level (Figure 1), Teams now uses the licenses assigned to individual users to control access. Figure 1: The old way of assigning Teams licenses (image credit: Tony Redmond) Removing a Teams License By default, Teams is enabled for all users with a suitable license, such as Office 365 E3 or E5, so if you want to disable access to Teams, you must edit the account and remove the Teams licenses from the Product Licenses section (Figure 2). Figure 2: Removing a Teams license from a user with the Office 365 Admin Center (image credit: Tony Redmond) Moving a slider is OK for one user, gets boring after several users, and becomes a royal pain after a few more. Fortunately, you can use PowerShell to remove licenses for sub-features bundled into an Office 365 plan like Teams, Forms, To-Do, or Stream. PowerShell License Management Licenses are assigned to Azure Active Directory accounts, so the cmdlets to manage licenses are in the Azure Active Directory PowerShell module. Two versions of the module are in common use today. The example shown below uses V1; the exercise to upgrade the script to V2 is left for the reader. Microsoft has a... --- ### How To Deploy Azure File Sync > In this post, I will show you, with step by step instructions, how to deploy Azure File Sync to synchronize files to Azure. - Published: 2018-08-20 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-file-sync/ - Categories: Microsoft Azure - Tags: Azure, Azure File Sync, File Server, storage, Storage Account, Sync Service, Tiering, Windows Server 2012 R2, Windows Server 2016, WS2012 R2, WS2016 In this post, Aidan will show you how to deploy Azure File Sync to synchronize files from a file server to Azure, which you can then use to enable tiering of hot/cold files, inter-site replication, cloud-based backup. and disaster recovery. In this post, Aidan will show you how to deploy Azure File Sync to synchronize files from a file server to Azure, which you can then use to enable tiering of hot/cold files, inter-site replication, cloud-based backup. and disaster recovery. The Scenario In this demo lab, I have a file server which will synchronize 3 folders called Accounting, Sales, and Marketing. The destination will be a storage account in the West Europe region of Azure (Netherlands).   The components of Azure File Sync Prepare the File Server The file sync agent will require the AzureRM (ARM) PowerShell modules to be installed first. You can retrieve the latest version of the released MSI installer from GitHub. Note that a new installation of the modules will require a reboot of the file server – this will probably require a maintenance window. Storage Account Create a general purpose (v1 or v2) storage account in the region that you want to synchronize to. Note that this storage account should be in a close Azure region (latency) to the file server – this will minimize the impact of tiering (if enabled later) or disaster recovery. In the storage account, you should create an Azure Files share for each sync group that you require: If you will have multiple servers, then you might have different synchronization requirements, each needing a sync group. A sync group will replicate to a cloud endpoint – this is an Azure Files share... . --- ### Ahead of Ignite, Microsoft will Combine Office and Microsoft 365 Roadmaps - Published: 2018-08-20 - Modified: 2024-09-04 - URL: https://petri.com/ahead-of-ignite-microsoft-will-combine-office-and-microsoft-365-road-maps/ - Categories: Microsoft 365 - Tags: Microsoft 365, News, Office 365 - Article Type: News Ahead of Microsoft's Ignite conference, the company will combine the roadmaps for Office 365 and Microsoft 365 signaling that these two products will continue to be deeply intertwined. In about a month, Microsoft and many of its employees will head to Orlando where the company will be hosting its Ignite conference. At the event, the company will announce new features and updates to existing products and it also looks like it will be bringing a couple services closer together. On the support page for Office 365 that shows the product's roadmap, the company is notifying users that the roadmap for Office 365 and Microsoft 365 will be combined next month. Considering that Office is part of Microsoft 365, this shouldn't be that big of a surprise and is likely simplifying the process for the company as they will have one roadmap for these two subscription services. The announcement says that this update will occur in mid-September which is when Ignite is occurring, these changes and the conference announcements are likely related. At Ignite, one announcement that is expected is the general availability of SharePoint Server 2019. The company has said that product will be available in the second half of 2018 and announcing the general availability of the software at that conference lines up with release-patters from previous years. If you are headed to Ignite, make sure to let us know as both Paul and I will be attending the show and will be podcasting both Monday and Tuesday from the show-floor. Thanks for the tip Tero --- ### Windows Search Improvements in Redstone 5 - Published: 2018-08-20 - Modified: 2024-09-04 - URL: https://petri.com/windows-search-improvements-redstone-5/ - Categories: Windows 10 - Tags: Productivity, Redstone 5, Windows 10, Windows 10 1809, Windows Search - Article Type: News In this Ask the Admin, Russell looks at how Microsoft is improving Windows Search in Windows 10 version 1809. It’s hard to imagine Windows without its built-in search index. First, we got Windows Desktop Search (WDS) as an add-in for Windows XP and Windows Server 2003. But there was a time when Windows needed to crawl the hard disk to find a long-lost file. Windows Search is the service that indexes your hard disk to provide near-instant results when you search from the taskbar, File Explorer, Outlook, Timeline, web history in Edge, and some UWP apps. But Windows Search isn’t perfect. Back in the Fall Creators Update, Microsoft introduced some important changes to reduce the number of index merges. A fully merged index can return results ten times faster than a fragmented index but merging indexes is CPU intensive. The changes included less merges and a series of other improvements. And according to Microsoft, resulted in a forty percent reduction in processing of text-heavy files, smoothing out some CPU spikes, and many fixes to prevent index corruption. Cosmetic and Performance Improvements Roll forward to Windows 10 version 1809 (RS5), due to be released late September or early October, and Microsoft is making more changes to Windows Search. The most obvious are cosmetic changes to the results presented in the taskbar. In Windows 10 version 1803, you get search previews for web results. But they are not expanded by default. In RS5, previews will be expanded by default and additionally, recent documents, files, Bing quick-answers, and software downloads also get previews. Some results will give users the option... --- ### Patch Tuesday August 2018 - Published: 2018-08-17 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-august-2018/ - Categories: Security - Tags: Microsoft, Patch Tuesday, Security, Windows - Article Type: News This month sees a host of memory corruption vulnerabilities patched and Intel discovers a new speculative execution side channel flaw. This month sees a host of memory corruption vulnerabilities patched and Intel discovers a new speculative execution side channel flaw. Month of Memory Corruption Vulnerabilities The latest version of Windows 10, Windows Server version 1803, IE and Edge get 11 critical patches for remote code vulnerabilities, including Adobe Flash. There are five fixes for Chakra scripting engine memory corruption flaws, while CVE-2018-8371 and CVE-2018-8373 fix scripting engine memory corruption vulnerabilities in IE. CVE-2018-8373 is a zero-day vulnerability, discovered by security researcher Elliot Cao, that can be exploited using web-based attacks or documents that use IE’s rendering engine. Microsoft says that details about the flaw were made public before Patch Tuesday and that some attacks had already been seen in the wild. Three fixes patch memory corruption vulnerabilities in ‘Microsoft browsers’, and CVE-2018-8377 and CVE-2018-8387 fix memory corruption flaws in Edge. These vulnerabilities are rated critical because the attacker could run code in the context of the logged in user without gaining physical access. And if the user has administrative privilege, that means the attacker could potentially ‘own’ the device. 19 other patches are rated important, 10 of which are elevation of privilege vulnerabilities. A Windows shell remote code execution vulnerability (CVE-2018-8414) that does not properly validate file paths, could lead to an attacker exploiting a Windows Control Panel shortcut to distribute malware. This flaw has been actively exploited since July. Microsoft blocked the ability to embed SettingContent-ms files in emails and Office 365 documents in the middle of... --- ### Paul Thurrott's Short Takes: August 17 - Published: 2018-08-17 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-17/ - Categories: Cloud Computing, Hybrid Cloud, Mobile, Windows 10 - Tags: News - Article Type: Overview Because jetlag is the worst, this edition of Short Takes looks at Microsoft's most recent Cortana defeats, stepping back from the Skype Classic cliff, so much for hybrid MDM, and much more. Invoke, we hardly knew ye Because jetlag is the worst, this edition of Short Takes looks at Microsoft's most recent Cortana defeats, stepping back from the Skype Classic cliff, so much for hybrid MDM, and much more. Cortana and Alexa, sitting in a tree, T-A-L-K-I-N-G-L-A-B-O-R-I-O-U-S-L-Y In August 2017, Microsoft announced that it would integrate Cortana with Amazon's far more successful digital personal assistant, Alexa by the end of that year. But 2017 passed by silently, and the Microsoft, in March, quietly revealed that it had no release timeline for the integration. This week, finally, Microsoft and Amazon made a public preview of the assistant integration available. And it is exactly as tedious to use as you feared. To summon Alexa from Cortana, you literally have to say "Hey Cortana, open Alexa" and then give the command you want. (And vice versa. ) So I have two things to say to this. First, Cortana has utterly failed and will one day be remembered only as one of the hundreds of thousands of skills that Alexa once had. And second, technology is supposed to make life easier, not put the onus on the user: Having to remember which assistant does what better makes this whole thing pointless. "Microsoft’s Cortana Mistake: Relying on Windows" Right. It should have relied on Windows phone. Wait. Remember that Cortana smart thermostat? Yeah, about that And speaking of Cortana failures, we've seen two tiny dots of light at the end of the... --- ### Blocking Guests from Classified Office 365 Groups (and Teams) > Office 365 Groups and Teams can hold tons of secrets that we don't want to share outside our organization. You can block guest users from groups. - Published: 2018-08-16 - Modified: 2024-09-04 - URL: https://petri.com/blocking-guests-classified-office-365-groups-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, Classification, Office 365 Groups, Teams - Article Type: How To Office 365 Groups and Teams can hold tons of secrets that we don't want to share outside our organization. To keep sensitive information secure, you can block guest users from groups by setting a directory policy on your most important and confidential groups. Keeping Secrets As I have discussed previously, some Office 365 Groups and Teams hold confidential information that you might not want to share with guest users. Using Azure Information Protection to stop guest users accessing the content of sensitive files certainly works, but it goes against the model of Office 365 Groups where all members enjoy the same access rights to all resources. With that in mind, perhaps it’s best to stop guest users getting into sensitive groups in the first place. You can do this by blocking the ability of owners to add guests to their groups and teams at a group level. Administrators can always add guests if needed. Groups Policy Settings The Azure Active Directory policy for Groups defines settings for how Office 365 Groups behave in a tenant. One of those settings is AllowToAddGuests, which is True if the tenant allows guests to be members of groups, and False if you want to block guests. This policy covers all groups, unless individual groups have their own settings. One approach to protecting sensitive groups is to assign them a special classification that we can later use as the basis for blocking guest access. A classification is a label defined in the ClassificationList setting of the Groups policy. You can’t manage the settings in the Groups policy through a GUI. Everything is done through PowerShell. Strictly Advisory Group owners apply classifications as a visual sign to inform users about the sensitivity of the information contained in... --- ### New Search Experiences Arriving (finally) to SharePoint Online - Published: 2018-08-16 - Modified: 2024-09-04 - URL: https://petri.com/new-search-experiences-arriving-finally-sharepoint-online/ - Categories: Microsoft 365, SharePoint Online - Tags: Office 365, SharePoint Online - Article Type: News Search in SharePoint Online (SPO) is one of the areas in the platform where we will see more changes in the future. In this article, I will introduce you to some of the new search features almost arriving in your SPO sites. Search in SharePoint Online (SPO) is one of the areas in the platform where we will see more changes in the future. Indeed, you are probably starting to see some of the new search experiences in your modern SPO sites. In this article, I will introduce you to some of the new search features almost arriving in your SPO sites. Modern search in modern SPO sites From a modern SPO Site, as soon as we click on the search box we automatically get suggested content in which current user has been recently working on. So, from the beginning, search is contextual to the current user: Figure 1. - Suggested content when doing click on the search box in a modern SPO Site. If we type a search term in the search box, we will get search results suggested by the search engine. We will also have the possibility to get more results than the suggested ones. Finally, bear in mind that all the results the user gets are limited to the current site. Figure 2. - Searching for a specific search term. If you click on the “See more results for ”, you will be redirected to the new search results page in SPO: Figure 3. - New search results page in SPO. As you can see in Figure 3, apart from a modern user interface, the new search results page comes with the following elements: A search box where the user can change the search criteria. Search scopes, so... --- ### Review: Microsoft's Surface Go hits the Mark for the First Line Worker - Published: 2018-08-15 - Modified: 2024-09-04 - URL: https://petri.com/surface-go-review/ - Categories: Hardware - Tags: News, review, Surface, Surface Go - Article Type: Opinion Microsoft's Surface Go is smaller in every way but does the limited performance impact it's big picture dreams? https://youtu. be/Y6wevo-Kk6k Microsoft has been building smaller tablets for years but they never really caught on with customers like the large Pro. It started with the Surface RT and ended with the Surface 3 but along the way, the Surface Mini and a few other ideas never made it to outside world. This time around, Microsoft is back with a smaller device called the Go and the company is significantly more confident in this product. This tablet is designed for first-line workers, education, and the lower end of the consumer market. From a hardware perspective, it’s just like the Surface Pro but smaller in nearly every way. The screen, keyboard, battery, and performance are all a slice of the bigger Pro and with a starting price of $399, without the keyboard, it’s price is much lower than that of the Pro as well. The model that Microsoft sent to me is in the middle of the road hardware with 8GB of RAM and 128GB SSD for storage whereas the entry-level device has 4GB of RAM with 64 GB of slower eMMC storage; this device costs $549. 99 at retail.  The device does ship with Windows 10 S, but I upgraded to Windows 10 Pro for this review. In nearly every aspect, the Surface Go feels premium. The metal construction, buttons, the bonding of the screen to the chassis, the kickstand, and the weight of the device gives it that ‘quality’ feel without it being too heavy to carry comfortably. And at... --- ### Azure File Sync Requirements - Published: 2018-08-15 - Modified: 2024-09-04 - URL: https://petri.com/azure-file-sync-requirements/ - Categories: Microsoft Azure - Tags: Anti-virus, Azure File Sync, Azure Files, Backup, Cloud Endpoint, Server Endpoint, Sync Group, Windows Server 2012 R2, Windows Server 2016, WS2012 R2, WS2016 - Article Type: Overview This post will detail the system requirements and considerations for planning an Azure File Sync deployment. The Server Endpoint A server endpoint is any file server with a registered Azure File Sync agent that is a part of a sync group, that is, the file server is synchronizing files/folders to an Azure storage account through a sync service. There are a few system requirements for the server endpoint. The components of Azure File Sync The operating system must be either: Windows Server 2012 R2 Datacenter or Standard with a Full UI (not Core) Windows Server 2016 Datacenter or Standard with a Full UI (not Core) Windows Server 2012 and older are not supported and will not work. Core installations are also not supported and will not work. Before you can successfully install & register the sync agent, you must install the latest released version of the Azure Resource Manager (AzureRM) PowerShell modules, which you can download from GitHub. Note that this installation will require a reboot if the modules have never been installed on the file server before – you will not be prompted to do this reboot. A server endpoint can be a highly available file server that is made from a traditional active/passive cluster. The sync agent must be installed on each node of the cluster. Note that Scale-Out File Servers (shared Storage Spaces or Storage Spaces Direct) are not supported. Some of you might consider building file servers using Sysprep. Generalizing a file server that has the sync agent installed is not supported. Files... --- ### Azure File Sync is now Generally Available > This post will discuss what the general availability of Azure File Sync will mean to customers that are continuing to use on-premises file servers. - Published: 2018-08-15 - Modified: 2024-09-04 - URL: https://petri.com/azure-file-sync-now-generally-available/ - Categories: Microsoft Azure - Tags: Azure, Azure File Sync, File Server, Windows Server 2012 R2, Windows Server 2016, WS2012 R2, WS2016 - Article Type: Overview This post will discuss what the general availability of Azure File Sync will mean to customers that are continuing to use on-premises file servers. This post will discuss what the general availability of Azure File Sync will mean to customers that are continuing to use on-premises file servers. Cloud versus On-Premises For over 5 years, you’ve been hit over the head repeatedly with the mantra of cloud is cheap, highly available, and easily accessible, and that you should store your files there. But many people do not store files there, or only store some of them there. The role of the file server has continued for many businesses, but with continued pain points. Azure isn’t just about “move everything to the cloud”. Azure is built to do that “digital transformation”, but it also offers many hybrid services to improve existing on-premises investments in IT. One of these is Azure File Sync which is designed to improve how file servers work, and to reduce capital and operational costs & complexities. File Server Pain Points I don’t think I’ve ever been in an office where there has been enough disk capacity in the file server. No matter what is done, there is never enough disk. You can keep buying disk until the server is full, then add on a NAS or LUN capacity from a SAN. In many organizations, the only server left in the building is a file server, so keeping backup and disaster recovery (DR) solutions around is an excessive but necessary cost. Good news: Azure File Sync, which is generally available now, aims to solve these problems and more. Master Copy... --- ### Migrating SharePoint, the Testing Plan, and what was really tested - Published: 2018-08-14 - Modified: 2024-09-04 - URL: https://petri.com/migrating-sharepoint-testing-plan-really-tested/ - Categories: SharePoint - Tags: SharePoint, SharePoint Migration, SharePoint Online, SharePoint Upgrade - Article Type: How To We all know that testing your migration plan should be done but realistically, that's not always a luxury you may have time to do. Testing... it is one of those things we all universally agree is a great idea and should be law. We all hop on our high horse and say things like “We will test and re-test until this migration project is iron tight. Leave no stone unturned”. HA HA HA! What we really mean is testing is awesome and someone else should do it because we do not want to do it. It is okay. We are in a safe place. Remember in the previous parts of this series we agreed to not getting defensive. We talked about the SharePoint sins of our past and how we should have organized our content better and like one of those workout places we don’t go to; this is a judgment free zone. So, it is okay to admit that while you talk big about testing, you aren’t going to do it really. To help us better understand the reality of testing I am going to tell you about the migration project I just finished up. Names will be changed to protect the innocent, but in reality, they spent so much time with me on this project there is no way they would read anything I wrote. So, they will never know I am writing this. The migration Their project was to move a SharePoint 2010 on-prem environment to SharePoint 2016 on-prem. I tried to get them to move to SharePoint Online, but licensing issues stopped that conversation pretty quickly. The best compromise we... --- ### Network Principles for Office 365 Connectivity > Two simple principles are key for Office 365 network connectivity. Keep things simple and get user data to a Microsoft edge node as quickly as possible. - Published: 2018-08-14 - Modified: 2024-09-04 - URL: https://petri.com/network-principles-office-365-connectivity/ - Categories: Microsoft 365, Office - Tags: Connectivity, Network, Office 365, VPN Two simple principles are key for Office 365 network connectivity. Keep things simple and get user data to a Microsoft edge node as quickly as possible. However, some organizations insist on using VPNs and proxy servers to interfere with Office 365 network traffic, which slows things down and makes users unhappy. It's strange that people haven't gotten the message after so many years... The Joy of Network Connections In the good ol’ days, the definition of offsite access to corporate resources was dial-up connections over a VPN. And although the VPN allowed secure access to web sites inside the corporate firewall, the experience was awful and slow. The software wasn’t much better. Until Outlook 2003 came along with “drizzle mode synchronization,” we enjoyed the unique experience of single-threaded synchronization. The net effect was that anytime someone sent you a presentation, you waited. And waited. And then waited some more. But at least we had time to sip a cool drink while the presentation downloaded. Networks for the Cloud I sometimes wonder if corporate networks are stuck in a rut when the time comes to embrace the cloud. Information Security teams have a difficult job to keep networks secure, but that’s no reason to cling to an array of VPNs and proxy servers with the same enthusiasm as a drowning man clutches a gently-deflating life vest. We’ve known that proxy servers can interfere with Office 365 traffic for years (here’s an article from 2015). Microsoft made a big effort at the Ignite 2017 conference to emphasize the steps customers should take to configure networks for Office 365 services. At the time, I summarized Microsoft’s message as “keep it simple” by not forcing Office 365 traffic through proxies or intermediate steps. Trusted Network Connections The mistake often made by Information Security is to consider traffic going to trusted cloud services with the same... --- ### Amazon Announces Availability of Serverless Aurora MySQL - Published: 2018-08-13 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-availability-serverless-aurora-mysql/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Aurora, AWS, Cloud, Database, MySQL, News, Serverless - Article Type: News Amazon recently announced that a serverless version of their Aurora MySQL database product is now generally available. In a recent post on the AWS blog, Amazon announced that a serverless version of their Aurora MySQL database product, which was originally announced at Amazon’s 2017 AWS re:Invent conference, is now generally available. Amazon's Aurora, which provides both cloud-based MySQL and PostgreSQL database services is a great option for those looking for a place to store their data in the cloud. While the standard version of Aurora allows for a high degree of scalability in the event of increased usage or traffic, admins themselves are responsible for scaling resources up when there is an increase in demand. And after the demand has returned to normal levels, admins are also then responsible for scaling their database resources back down. Failure to scale server resources appropriately during a spike in traffic can result in users having trouble accessing the data from the databases that live on those servers. And once the traffic spike has subsided, admins must also remember to scale resources back down again or they run the risk of incurring cost for extra resources that were not fully utilized. However, Amazon’s new serverless Aurora for MySQL was designed to prevent this from happening, as the service automatically scales server capacity as needed. All admins have to do is create a database endpoint and connect their applications to it. There is also the option to specify a capacity range, which could be helpful for those looking to avoid excess cost. Currently, serverless Aurora has autoscaling thresholds of 1. 5... --- ### Windows 10 Enterprise for Remote Sessions - Published: 2018-08-13 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-enterprise-remote-sessions/ - Categories: Windows 10 - Tags: Remote Desktop Services, SME, Windows 10, Windows 10 Enterprise for Remote Sessions - Article Type: Overview In this Ask the Admin, I’ll look at a new Windows 10 SKU, Windows 10 Enterprise for Remote Sessions, that recently appeared in a Windows Insider preview build. In this Ask the Admin, I’ll look at a new Windows 10 SKU, Windows 10 Enterprise for Remote Sessions, that recently appeared in a Windows Insider preview build. Back in May, Mary Jo Foley reported for ZDNet that Microsoft was preparing a new version of Windows 10 that would be able to host multiple remote desktops/apps, a task for which Windows Server is usually required. There was a lot of speculation at the time that Microsoft was preparing to dump the Remote Desktop Session Host (RDSH) server role in Windows Server 2019 because it had not been available to install in a preview version of the software released at the time. But this turned out to be a storm in a teacup as it was actually just a bug that Microsoft quickly fixed. Nevertheless, last year Microsoft did say that it was working on a modern refresh of Remote Desktop Services. "Remote Desktop Modern Infrastructure (RDmi), planned for general availability in late 2018, will bring changes to RDS that could make it more attractive to host the service in Azure, in addition to offering improvements to security and other benefits," from the Directions on Microsoft report says that changes are coming but it is not clear exactly when and how. Foley’s sources say that Windows 10 Enterprise users will still have the rights to run one virtual desktop but also to provide remote access to win32 and UWP apps for a small set of multiple users. And according... --- ### Multiple Ways to Backup SQL Server in an Azure VM > This post will discuss several ways that you can back up SQL Server which is running in an Azure virtual machine. - Published: 2018-08-10 - Modified: 2024-09-04 - URL: https://petri.com/multiple-ways-backup-sql-server-azure-vm/ - Categories: Microsoft Azure, SQL Server, Virtualization - Tags: Azure, Azure Backup, Azure Virtual Machines, Backup, Blob Storage, SQL Server, storage, virtual machine - Article Type: Overview Aidan dives into several ways that you can back up SQL Server which is running in an Azure virtual machine. This post will discuss several ways that you can back up SQL Server which is running in an Azure virtual machine. SQL Server One of the more common workloads that I encounter in Azure is SQL Server – often deployed in lift & shift scenarios into Azure. There are Azure SQL and Managed Instance alternatives which can reduce direct or operational costs, but sometimes SQL Server in a machine is the only choice. The databases contain valuable information so they must be backed up. Note: Azure does not back up any virtual machine by default. You must choose to and pay for backups. Azure Virtual Machine Backup Azure allows us to protect running virtual machines. This service works very well, and recent enhancements have improved the performance for virtual machines with large amounts of disk capacity. An extension is deployed from a Recovery Services Vault into the virtual machine, allowing a consistent backup of the machine to blob storage. A backup policy allows the machine to be backed up once per day. The costs of this solution are the Azure Backup instance charge plus the amount of general purpose v1 blob storage that is consumed to store the back ups. You can deploy Azure Backup as a part of the virtual machine creation There is no actual “SQL Server” backup. Instead, all of the virtual machine is backed up, including the databases. You can restore the virtual machine, or restore the files... --- ### ‘InPrivate Desktop’ Coming to Windows 10 Enterprise - Published: 2018-08-10 - Modified: 2024-09-04 - URL: https://petri.com/inprivate-desktop-coming-windows-10-enterprise/ - Categories: Windows 10 - Tags: InPrivate Desktop, Security, Virtualization, Windows 10 - Article Type: News Microsoft is working on a new Windows 10 feature called ‘InPrivate Desktop’ that will make running risky applications, easier. Earlier this month, BleepingComputer. com ran a report on a new security feature in Windows 10 that was exposed during a bug-bash quest in the Feedback Hub. The new feature is installed as an app from the Microsoft Store. But according to Lawrence Abrams, the app wasn’t available in the Store despite the instructions found in the Feedback Hub. The text of the quest read: “Microsoft is Developing a Sandboxed "InPrivate Desktop" for Windows 10 Enterprise. InPrivate Desktop (Preview) provides admins a way to launch a throwaway sandbox for secure, one-time execution of untrusted software. This is basically an in-box, speedy VM that is recycled when you close the app! ” The prerequisites were listed as follows: Windows 10 Enterprise Builds 17718+ Branch: Any Hypervisor capabilities enabled in BIOS At least 4GB of RAM At least 5GB free disk space At least 2 CPU cores I tried to access a link provided in the text, referring to feature limitations, but it requires a Microsoft account associated with the Microsoft tenant. I suspect that this feature was only available for internal testing at the time of the bug bash. What is InPrivate Desktop for? While Windows 10 Enterprise users have the right to run one Windows 10 virtual machine, someone needs to set up the VM and potentially maintain it. But InPrivate Desktop looks to provide a readymade environment that users can spin up with no configuration and easily start from scratch each time InPrivate Desktop is launched. I don’t have... --- ### Debugging Teams Clients When Something Goes Wrong > Most of the time, the Teams clients run along without a problem. But like all software, they have their moments. Here's how to Office 365 - Published: 2018-08-09 - Modified: 2024-09-04 - URL: https://petri.com/debugging-teams-clients/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: debug, Office 365, Problems, Support, Teams - Article Type: How To Most of the time, the Teams clients run along without a problem. But like all software, they have their moments. Here's how to attack the problem if your Teams clients start to misbehave, including how to give the Microsoft developers some feedback. Something Went Wrong with Teams When I use Teams, I switch between the iOS, browser, and desktop clients. The iOS client is a great mobile client. It performs well, switches between different Office 365 tenants snappily, and has a nice interface. I don’t do any Teams administration using the mobile client, and that’s where I use the Teams desktop client most. Like all software, the Teams desktop client has its moments. Both the full-blown Electron-based client and the new-fangled Windows S Hosted Web App (HWA – Microsoft’s version of a Progressive Web App, or PWA) encounter problems from time to time. The question is then how best to restore the client to good health. Sign Out of Teams Expired network credentials can be the root cause of failure to connects, failure for notifications to arrive, mysterious problems with message loading (Figure 1), and so on. Figure 1: Teams runs into a problem (image credit: Tony Redmond) Teams keeps credentials in the Windows Credential Manager, but before you do anything else, take the easy way out and sign out of Teams and then sign back in. It’s amazing how many times this cures a problem. Stop Teams If a Teams desktop client becomes unresponsive, one way to attack the problem is to stop all Teams processes running on the workstation. Use Task Manager to find the Teams processes, select the top process, right click, and select End Task (Figure 2). Restart Teams and the problem... --- ### Hybrid Cloud Trends in 2018 - Published: 2018-08-08 - Modified: 2024-11-19 - URL: https://petri.com/hybrid-cloud-trends-in-2018/ - Categories: Cloud Computing, Hybrid Cloud - Tags: cloud computing, hybrid cloud - Article Type: Overview The hybrid cloud is growing in popularity as the benefits are quickly realized; here are some of the trends seen in 2018 so far. Cloud adoption has been gaining steadily over that past few years; most businesses are using the cloud in some capacity and the hybrid cloud has become the new norm for most businesses. That adoption rate is expected to accelerate in the coming years as the benefits are tangaible for nearly all users. According to the research firm MarketsandMarkets, the expected hybrid cloud market will increase from $33. 28 billion in 2016 to $91. 74 billion by 2021.  In part, this is due to the flexible and inclusive nature of the hybrid cloud. The hybrid cloud is used to describe a number of different types of implementations. It has generally come to mean a mix of private and public cloud platforms with some required connection between the two. Let’s have a look at some of today’s most prevalent hybrid cloud trends. Businesses are moving more mission-critical workloads to the hybrid cloud – Not too long ago cloud usage was limited to test and development and tier 2 type workloads that were not really mission critical. However, as cloud usage had matured more businesses have moved all or part of their mission-critical tier 1 applications into the cloud. The hybrid cloud model can provide these applications with improved flexibility and often improved scalability though cloud-bursting and using high-performance cloud service levels. Businesses are becoming more cost-conscious of the hybrid cloud – As hybrid cloud usage has become more common businesses have begun moving to a workload-centric deployment model to optimize costs by splitting workloads... --- ### Don’t Upgrade Crap - Published: 2018-08-08 - Modified: 2024-09-04 - URL: https://petri.com/dont-upgrade-crap/ - Categories: SharePoint, SharePoint 2019 - Tags: migration, SharePoint, SharePoint 2019, upgrade - Article Type: Overview Now that we have the SharePoint 2019 Public Preview in our hands we can really start getting serious about planning our migration. Last month I told you the 5 Things you Can do to Prepare for your upcoming SharePoint 2019 migration. Each week since then I’ve broken each of the 5 steps down to help you plan your migration. This week we cover one of my favorites, “Don’t Upgrade Crap. ” I’ve been upgrading SharePoint since there was a second version of SharePoint to upgrade the first version to. It has been exhilarating, and it has also been dark and terrifying. In the 15 years I’ve been upgrading SharePoint I feel like I’ve either seen or made every mistake there is to make. I’ve upgraded the wrong thing. I’ve taken production down when I thought it was test. I’ve taken production down because I filled the drives on shared storage. You name it, I’ve done it. But one lesson I learned very early on was not to upgrade anything I didn’t have to. This lesson pays dividends. Not only is it less you need to upgrade now, it’s also less you’ll need to upgrade each upgrade after that. It’s the gift that keeps on giving. What is Crap? The obvious question is what exactly what I mean by “crap? ” In the context of SharePoint upgrades, I think of crap as any content, features, settings, or 3rd party software that won’t be of value in the new environment. When someone... --- ### The Ups and Downs of the Deleting Microsoft 365 Users Wizard > Microsoft issued a new wizard to delete Office 365 accounts last week. It has the normal quota of cute graphics and some glitches to boot - Published: 2018-08-07 - Modified: 2024-09-04 - URL: https://petri.com/deleting-microsoft-365-users-wizard/ - Categories: Microsoft 365, Office - Tags: delete user, Exchange Online, Office 365, OneDrive for Business, Workflow - Article Type: How To Microsoft issued a new wizard to delete Office 365 accounts last week. It has the normal quota of cute graphics and some glitches to boot, but the wizard gets the job done in terms of converting a user mailbox into a shared mailbox and reassigning access to their OneDrive for Business account. A new Guided Workflow On August 2, Microsoft announced “a new guided workflow for deleting Microsoft 365 users. ” In fact, it’s really all about removing users from an Office 365 tenant and it’s limited to dealing with just their personal mailbox and OneDrive data. That being said, it’s good to see that Microsoft has put some time to bring more automation to a common task. The Account Removal Wizard One challenge facing the designer of a process to remove an Office 365 user is the breadth of the service. The new workflow, implemented like wizards used elsewhere inside Office 365, tries to do no more than preserve the personal data of the deleted user and allow the administrator to decide what to do with their license. The assumption is that any other data the user is responsible for, such as SharePoint documents, are taken care of elsewhere. No attempt is made, for instance, to highlight situations where the user is the sole owner of an Office 365 Group or Team that someone might need to take over. When you delete a user, the first screen in the account removal wizard outlines what can be done (Figure 1). An immediate glitch appeared. Although the chosen user has an Office 365 E5 license, which includes an Exchange Online license, Office 365 said that the user didn’t have that license, so it couldn’t have a mailbox. Sometimes you wonder about the quality of testing in the cloud... ... --- ### Turn On Windows 10 NTFS Case Sensitivity - Published: 2018-08-07 - Modified: 2024-09-04 - URL: https://petri.com/turn-windows-10-ntfs-case-sensitivity/ - Categories: Windows 10 - Tags: linux, Windows 10, Windows 10 April 2018 update, Windows Subsystem for Linux - Article Type: How To In this Ask the Admin, Russell show's you how to enable the flag on a folder and explain why you might need this feature. Now that Windows 10 supports running several different Linux distros, Microsoft has added a flag to NTFS that forces the file system to recognize files and folders that are only different by case differently. In this Ask the Admin, I'll show you how to enable the flag on a folder and explain why you might need this feature. Recently, I have been doing a lot of work with Linux. But not because I’m abandoning Windows. Quite the opposite. I’ve been using Linux because Puppet Enterprise uses it for its master server. If you are not familiar with Puppet, it is a configuration management system popular for managing servers in DevOps environments. The main reason to look at Puppet instead of PowerShell DSC is that Puppet is a more mature solution and has better support for managing Linux. Many environments use Windows Server and Linux, so a configuration management product that can manage both equally well is a bonus. If you missed my two-part article on configuring Puppet Enterprise in Red Hat Linux running in a Hyper-V virtual machine, you can read both parts here: Install and Configure Puppet Enterprise Part 1: Set Up Red Hat Linux in Hyper-V Install and Configure Puppet Enterprise Part 2: Set Up Puppet Enterprise 5 If you are interested in learning how to manage Windows Server using Puppet, here are links to the seven parts published so far: Managing Windows Server with Puppet Part 1: Configure Puppet Master and Bootstrap the Puppet Agent... --- ### Modern SharePoint Web Parts — Weather Web Part - Published: 2018-08-06 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-weather-web-part/ - Categories: SharePoint Online - Tags: Modern SharePoint, Modern Web Parts - Article Type: Opinion Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Are you ready? This is the moment we have all been waiting for. Ready? The Weather Web Part is here! Sorry, couldn't resist. All joking aside, this is actually a very common web part on Intranet Portals. There are still plenty of companies who buy a 3rd party SharePoint weather app. I have seen it many times. Those days are over! Let's take a look. The Weather web part has a very simple set of settings: Looking at this option, I can't believe its 2018 and we still have two options to talk about the heat or cold of our local weather conditions. Why can't we just go for one? I am going for Celsius! The next option requires us, again no surprise, to select a location: Let's check the weather in Amsterdam: Oh my, it's hot! The web part does it what it needs to do, to display the weather. There is one thing,... --- ### Microsoft's 'Immersive Productivity' Agenda Extends to Visio - Published: 2018-08-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-immersive-productivity-agenda-extends-visio/ - Categories: Microsoft 365 - Tags: Ignite, Microsoft, mixed reality, News, Visio - Article Type: News Next up on Microsoft's Mixed Reality agenda is bringing the platform to Visio and we shouldn't have to wait too much longer to learn more about this update. If there is one market that Microsoft does not want to miss out on, it's the growing AR/VR market. The company is gearing up to announce a new HoloLens either later this year or early in 2019 and Microsoft continues to build out applications that can be utilized with the mixed reality headsets that are shipping today. Earlier this year, the company announced SharePoint Spaces which is a mixed reality feature for the collaboration platform and next on the agenda looks to be Visio. Spotted by Walking Cat in the Ignite session list is a session about the future of visualization using Visio. The session description lays it all out: Come for a sneak peek into the future of visualization using Visio. Visio Immersive enables users to view, create, modify and share Visio diagrams in VR, MR and AR views. Organizations are increasingly using 3D models to train, prototype, collect feedback and sell . Learn how your organization can leverage the power of Visio Immersive to connect diagrams to data and create digital twins to monitor, control and manage operations and businesses. Microsoft is pushing productivity with its mixed reality tools heavily as it looks to find unique ways to use the technology. So far, the company has not found wide-spread success but these types of technologies are expected to be slowly adopted and not an overnight wildfire of success. With this being the second major Microsoft application in the company's productivity suite to add MR/AR functionality, this... --- ### Google Announces Istio Version 1.0 - Published: 2018-08-06 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-istio-version-1-0/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Google Cloud Platform, Istio, Microservice, News, Service Mesh - Article Type: News Google has announced the launch of version 1.0 of the open-source Istio service mesh platform. In a recent post on the Google Cloud Platform blog, Google announced the launch of version 1. 0 of the open-source Istio platform. Istio, an open-source service mesh platform, is the result of the collaboration between several different technology companies including IBM, Lyft, Cisco, Red Hat, and VMware. A service mesh is a way to use and manage multiple networked microservices and Istio was designed to enable admins and developers to do this in a manner that is easy to configure, monitor, and build upon. With Istio, admins can worry less about things like security, load balancing, and authentication between services. Some of the features that Istio offers include automatic load balancing for a variety of different types of network traffic including HTTP and TCP traffic among others, along with the ability to configure a multitude of rules and settings for the traffic. Related, Istio provides admins with a variety of logging capabilities, which can be used to keep track of both inbound and outbound traffic from the platform. Admins can view logs and metrics that include the number of network requests sent and received per second, error rates, and network latency, among others. Istio was also designed with security in mind, with the platform providing encrypted communication channels by default, along with the ability to configure authentication and authorization settings as well. Additionally, Istio gives admins the ability to test new software or features using A/B testing and canary deployments, which makes rolling out updates less stressful, especially... --- ### How to Resize an Azure Virtual Machine > This step-by-step how-to post will instruct you on how to change the series and size of an Azure virtual machine. - Published: 2018-08-03 - Modified: 2024-09-04 - URL: https://petri.com/resize-azure-virtual-machine/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, virtual machine - Article Type: How To This step-by-step how-to post will instruct you on how to resize an Azure virtual machine, including changing the size within a series or switching the virtual machine to another series. 12404760 - electric background This step-by-step how-to post will instruct you on how to resize an Azure virtual machine, including changing the size within a series or switching the virtual machine to another series. The Process I will discuss the actual process before I discuss two of the common problems that are commonly encountered and how to resolve them. The typical process for resizing a virtual machine is pretty simple. I am going to add an extra step because it will avoid one of the common problems for you: Shut down the virtual machine Resize the virtual machine Start up the virtual machine Step 1 is to deallocate the virtual machine. Sometimes you won’t need to do this, but all too often I hear this from a customer: “I want to switch to Series X, but it’s not available – what’s wrong? ”. When the customer tries to switch to another series of virtual machine, the virtual machine’s current host cluster hardware doesn’t support the new series, so it’s not listed as an option. By deallocating the virtual machine (Azure shutdown, not a guest OS shutdown), all of the possible options in the region are made available, and the resize process will migrate the virtual machine to a new compute cluster. So as a result, I always recommend deallocating the virtual machine to avoid this question. The next step is to resize the virtual machine. Open the virtual machine in the Azure portal and select... --- ### Paul Thurrott's Short Takes: August 3 - Published: 2018-08-03 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-3/ - Categories: Mobile - Tags: News - Article Type: Overview Because one trillion, that's why, this edition of Short Takes looks at Apple's $1 trillion market capitalization and how it compares history. Plus some Microsoft stuff. Because, you know. Because one trillion, that's why, this edition of Short Takes looks at Apple's $1 trillion market capitalization and how it compares history. Plus some Microsoft stuff. Because, you know. Apple hits a $1 trillion market cap Apple is now worth over $1 trillion by market capitalization, making it the first U. S. -based company to hit this milestone. That Alphabet (Google), Amazon, and Microsoft are close on its heels is perhaps not coincidental, as Big Tech seems to be making a post-Internet boom comeback these days. But Apple is, of course, unique, and it has made its run to $1 trillion on the back of exactly one incredibly profitable product, the iPhone. Likewise unique, Apple's biggest valuation gains have come since the death of Steve Jobs, the person most credit for Apple's successes. Under CEO Tim Cook, Apple has released exactly zero incredible new products and has seen its financial success multiply regardless. Because stock price---which is what drives market cap---is black magic, not logic. "4 Things Retailers Should Learn From Apple As It Nears $1 Trillion Market Cap" People driving themselves in cars to other physical locations is absolutely the future of retail sales? Jobs: Turning Apple around is the "booby prize Speaking of Steve Jobs, Apple's mercurial co-founder once had something interesting to say about turning around Apple when he returned to the company in 1997. Discovering that Apple was just weeks away from bankruptcy---"Apple was on the rocks," he later said publicly---he aggressively started trimming products and... --- ### First Look: Microsoft's Surface Go - The Tablet for the First Line - Published: 2018-08-02 - Modified: 2024-09-04 - URL: https://petri.com/first-impressions-microsofts-surface-go-the-tablet-for-the-front-line/ - Categories: Hardware - Tags: News, Surface Go - Article Type: Opinion Microsoft's Surface Go is a smaller version of the Pro but it does cut a few corners to keep the price down. Starting today, you can buy Microsoft's latest addition to the Surface family, the Surface Go and earlier this week, Microsoft sent me one of these new devices for evaluation. I've only had the tablet since Monday which means there hasn't been enough time for a full review, that will come next week, but here's what you need to know about the device from a 'first impressions' perspective. This tablet is designed for first-line workers, education, and the lower end of the consumer market. From a hardware perspective, it's just like the Surface Pro but smaller in nearly every way. The screen, keyboard, battery, and performance are all a slice of the bigger Pro and with a starting price of $399, without the keyboard, it's price is much lower than that of the Pro too. The model that Microsoft sent to me is in the middle of the road hardware with 8GB of RAM and 128GB SSD for storage whereas the entry-level device has 4GB of RAM with 64 GB of slower eMMC storage. In nearly every aspect, the Surface Go feels premium. The metal construction, buttons, the bonding of the screen to the chassis, the kickstand, and the weight of the device gives it that 'quality' feel without it being too heavy to carry comfortably. And at 9. 65" x 6. 90" x 0. 33" (245 mm x 175 mm x 8. 30 mm), this device is ultra-portable; it's very easy to toss this tablet in a bag and forget that it is in... --- ### Checking Exchange Online Email Addresses to Make Sure They're Not Compromised > Scammers and spammers love having large databases of email addresses to use for their nefarious purposes. Your Exchange Online addresses might be there. - Published: 2018-08-02 - Modified: 2024-12-03 - URL: https://petri.com/checking-office-365-email-addresses-compromise/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, hacked, Office 365, pwned, scam - Article Type: How To Scammers and spammers love having large databases of email addresses to use for their nefarious purposes. Your Exchange Online addresses might be in those databases, so here's how to check the email addresses for your mailboxes against the Have I been pwned service (HIBP) using some PowerShell. Email Scams for BitCoin Last month, I posted a description of an email extortion scam to my personal blog. The scammer used my Gmail address, possibly as a result a gigantic leak of millions of Linkedin. com. In any case, the scam failed with me, even though there’s evidence that it has successfully relieved others of thousands of dollars. Inevitably, thoughts turned to Office 365. I don’t use Office 365 email addresses to sign into other services, so the only way that a hacker could recover an address/password combination would be to penetrate Azure Active Directory. So far, there’s no evidence that any such attempt has been successful. Pwned Office 365 Mailboxes But others use their Office 365 email addresses to sign into other services and those services might be penetrated. The question therefore arises how to check addresses used by Office 365 mailboxes against the Have I been Pwned service maintained by security researcher and MVP Troy Hunt. Commercial products like Quadrotech Nova include reports for compromised accounts, but a post by Elliott Munro caught my eye because it used PowerShell to check Office 365 tenant accounts. Using PowerShell to Check the Pwned Database The beauty of PowerShell is that you can take code and “improve” it. Beauty is in the eye of the beholder, and a PowerShell improvement is in the eye of a coder. I asked Elliott if I could make some changes to his code. He had done all the heavy lifting and I just... --- ### Install and Configure Puppet 5 - Published: 2018-08-02 - Modified: 2024-11-19 - URL: https://petri.com/install-configure-puppet-5-part-1-set-red-hat-linux-hyper-v/ - Categories: Windows Server - Tags: Configuration Management, Hyper-V, linux, Puppet Enterprise, Red Hat, Windows Server - Article Type: How To As a companion to my series on managing Windows Server with Puppet Enterprise, this short two-part article will guide you through installing your own Puppet 5 server on Red Hat Linux in Hyper-V.   As a companion to my series on managing Windows Server with Puppet Enterprise, this short two-part article will guide you through installing your own Puppet 5 server on Red Hat Linux in Hyper-V. If you are wondering why I’m writing about Linux on Petri, you might have missed my series of articles on managing Windows Server using Puppet. So far, there are seven parts and you can find the links below. Puppet is a more mature configuration management solution than Microsoft’s PowerShell Desired State Configuration (DSC) and natively manages both Windows and Linux. Managing Windows Server with Puppet Part 1: Configure Puppet Master and Bootstrap the Puppet Agent in Windows Server Managing Windows Server with Puppet Part 2: Log in to Puppet Master, Accept Node Certificate, and Test Connectivity Managing Windows Server with Puppet Part 3: Install Modules and Edit the Site Manifest Managing Windows Server with Puppet Part 4: Working with Files and ACLs Managing Windows Server with Puppet Part 5: Managing Local Users and Groups Managing Windows Server with Puppet Part 6: Installing, Updating, and Removing Software Managing Windows Server with Puppet Part 7: Installing Active Directory In the articles, I have been using a Puppet Master server automatically deployed in the Azure cloud using a template provided by Microsoft. But what if you want to install your own Puppet Master locally or in a virtual machine? That’s what I’m going to show you how to do in this article. Download Red Hat Linux Enterprise... --- ### Everything You Need to Know About Azure Infrastructure – July 2018 - Published: 2018-07-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-azure-infrastructure-july-2018/ - Categories: Uncategorized - Tags: App Service, Azure, Azure AD, Azure Advisor, Azure File Sync, Azure Firewall, Cloud Shell, Data Box Disk, DNS, Immutable Blob Storage, Java SE, Managed Service Identity, MySQL, netapp, networking, PostgreSQL, Security Center, Static Website Hosting, storage, Virtual WAN, Visual Studio Code, WORM - Article Type: Overview July was a busy month for Azure announcements, in this post, we wrap it all up so that you can stay up to date on the latest announcements. This month, Microsoft held their annual partner conference, Inspire, in Las Vegas, Nevada. As expected, there was lots of talk about Microsoft 365 and Intelligent Cloud/Intelligent Edge. This is the month when Microsoft typically is at its most quiet publicly, and most active privately. New Preview Networking Features A couple of very interesting networking feature previews started in July. We have lots of ways to do “firewalls” in Azure: The guest OS firewall Network Security Groups (NSGs) offering free layer-4 (UDP/TCP transport layer) security Web Application Gateway & Firewall adding layer-7 (HTTP/S application layer) security Third-party network virtualization appliances, such as Checkpoint, Cisco, and such But a new option has been added called Azure Firewall. An illustration of Azure Firewall architecture An illustration of Azure Firewall architecture The Azure firewall offers the following: High-availability without the need to deploy load balancers. Note that a standard-tier public IP address is used with the appliance. Cloud scalability with the firewall being able to handle your growing & shrinking bandwidth/flow requirements. Outbound traffic can be filtered based on FQDNs; in other words, HTTP/S websites can only be reached if they are on the firewall’s whitelist. You can filter outbound traffic based on IP address, port, and protocol with stateful inspection. All outbound traffic from the virtual network is routed/translated through the public IP address of the firewall giving you SNAT (Source Network Address Translation). All events appear in Azure Monitor and can... --- ### Everything You Need to Know About Windows – July 2018 - Published: 2018-07-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-windows-july-2018/ - Categories: Windows Server - Tags: 19H1, Everything You Need to Know, Microsoft Edge, Precision Time Protocol, Redstone 5, Remote Desktop Web Client, Web Authentication, Windows 10, Windows Server - Article Type: News This month Microsoft trials a new managed desktop service as part of Microsoft 365 in the US and UK, Windows gets leap second support and a new time protocol, and Windows Update will use machine learning to learn when you’ve gone for a coffee break. This month Microsoft trials a new managed desktop service as part of Microsoft 365 in the US and UK, Windows gets leap second support and a new time protocol, and Windows Update will use machine learning to learn when you’ve gone for a coffee break. 3 Cumulative Updates for Windows 10 I reported earlier this month that Patch Tuesday had been a relatively quiet one. But things did get a bit more interesting a week later when Microsoft offered another cumulative update (KB4345421) for Windows 10 to fix some bugs introduced by the first (KB4338819). The patch resolved issues including one with the DHCP Failover server that could cause devices to receive an IP invalid configuration and a problem that could cause SQL Server to fail with the error ‘Tcp port is already in use’. But Microsoft released a third cumulative update (KB4340917) July 24th that includes a much longer list of patched issues than KB4345421. For more details on what’s fixed, see Microsoft Releases New Cumulative Update for Windows 10 April 2018 Update on Thurrott. com. Microsoft Reportedly Readying New ‘Managed Desktop Service’ Let’s continue with the subject of updates. It’s no secret that Microsoft Windows 10 is a service. What that means is that in most cases, you have no choice about updating to the next version of the operating system. Microsoft expects that most customers will update Windows 10 biannually or at a minimum, roughly once every 18 months. Consumers with Windows 10 Home must update... --- ### Everything You Need to Know About Office 365 - July 2018 - Published: 2018-07-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-office-365-july-2018/ - Categories: Microsoft 365, Office - Tags: Everything You Need to Know, Office 365 - Article Type: News The month of July had quite a few Office 365 announcements, here's a wrap-up of what was announced. The pace of change is intense for sure. Hopefully, this article helps you keep up. You will also notice a theme; you need to learn new stuff. I am fired up after a week at the Business Applications Summit and I hope you are too. Also, keep in mind that while we used to think of all of this as a strictly IT world that the end users just lived in that story is flipping real fast. PowerApps and company are flipping the narrative on its head with innovation coming from non-technical people. I challenge you to be an enabler of those people and not a blocker. Let’s do this thing! Shane The Business Application Summit was Awesome Seriously, if you are into Office 365 that means you already have licenses for PowerApps, Power BI, and Microsoft Flow so why aren’t you using them every day? I had the honor to speak at the conference and hang out with 3,800 of my closest friends. It was amazing. Very much had the same feel as SharePoint did back in 2007. Lots of excited people knowing they are about to witness explosive growth. SharePoint changed a lot of people’s lives (some even for the better), and these new tools are going to do the same. As a matter of fact, that has been an interesting theme in this space. I would say over half the conference was not IT people. It was accountants, salespeople, dispatchers, and even a security... --- ### Everything You Need to Know About SharePoint - July 2018 - Published: 2018-07-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-sharepoint-july-2018/ - Categories: SharePoint - Tags: Everything You Need to Know, SharePoint - Article Type: Overview It was a busy month of SharePoint announcements, Shane wraps it all up into one easy to digest post. Two Words this Month: SharePoint 2019. (Is 2019 a word, or a bunch of words, or a number... ) None the less that is the thing you probably care the most about, especially if you are still a SharePoint on-prem customer. I also am really excited that the Power BI announcement talks about cool stuff with SharePoint 2019. I don’t know about you but really drives the “on-prem ain’t going away soon” message for me. Which a couple of years ago I did not believe. Anyway, back to real news. SharePoint 2019 is in preview – Go play! If you are the on-prem time, then this is always exciting. Your first chance to dive in and click the buttons on V. next. And what are the new buttons? So far it seems a lot of them are around making the user experience better and of course more hybrid. I will actually be interested to see how the new user stuff goes. Why? One of the things I have found with SharePoint Online is people who are new to SharePoint learn it faster but people who are grizzled veterans (like on-prem user maybe) they tend to get annoyed that everything is slightly different. I look forward to their reactions in another year when the upgrades start to roll out. Time will tell how the cloud enhancements land on-prem. To learn more and to get all the links go check out this post from Todd. SharePoint Self Service Site Creation gets some... --- ### Dealing with Protected Documents Found by Office 365 Content Searches > Office 365 content searches can find all sorts of information, but they cannot decrypt protected files in SharePoint and OneDrive for Business sites. - Published: 2018-07-31 - Modified: 2024-09-04 - URL: https://petri.com/protected-documents-office-365-content-searches/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: AIP, Azure Information Protection, content search, DSR, eDiscovery, GDPR, Office 365, Security and Compliance - Article Type: How To Office 365 content searches can find all sorts of information, but they cannot decrypt protected files in SharePoint and OneDrive for Business sites. This prompts the question of how to deal with protected files exported by a search. As it turns out, the combination of a rights management superuser and some PowerShell makes short work of unprotecting files so that they can be read by all. DSRs, Content Searches, and Office 365 In May, I wrote about the new feature in the Office 365 Security and Compliance Center designed to handle GDPR article 15 Data Subject Requests (DSRs). A DSR is a special form of Office 365 eDiscovery case that depends on content searches to find content relating to a named individual (the data subject). Microsoft estimates that 90% of an organization’s data stored in Office 365 is in Word, Excel, PowerPoint, OneNote, or email, all of which is indexed and searchable. It’s therefore reasonable to assume that a DSR will find anything held in Office 365 relating to a named individual. Well, that’s certainly the hope, but as pointed out in the article, some repositories like Yammer, Sway, and Planner, might hold information needed to satisfy a DSR. Scanning an Office 365 tenant with a content search is a good first step to responding to a DSR. Interpreting the results and figuring out what relates to the data subject create some added challenges. Some challenges take time to resolve, such as examining found items to ensure that personal data belonging to the data subject exists. Others need a more technical solution. Rights Management More Popular in Office 365 Dealing with protected documents fall into the latter category. Because it’s much easier to manage online, Azure Information Protection (aka rights management) is used more heavily inside Office 365 than it is on-premises. Microsoft has also made it easier for users to apply protection to... --- ### What is Azure Firewall? > In this post, I will explain what the new Azure Firewall, recently launched in preview, can do and what it cannot at this time. - Published: 2018-07-30 - Modified: 2024-09-04 - URL: https://petri.com/what-is-azure-firewall/ - Categories: Microsoft Azure - Tags: Azure, Azure Firewall, firewall, networking, Security - Article Type: Overview Microsoft has a new firewall feature for Azure and in this post, Aidan breaks down how it works and how to use it. In this post, I will explain what the new Azure Firewall, recently launched in preview, can do and what it cannot at this time. Firewall Options in Azure There is no shortage of firewall options in Azure for network security at the transport (Layer-4) and application (Layer-7) layers of the network stack. The foundational component is the free networks security group (NSG), providing allow/deny filtering for TCP/UDP traffic. NSG policies are deployed no matter what virtual network architecture you design, offering a low-level hard filter. In addition to NSGs, we have: Azure Web Application Firewall (WAF): An extra add-on for the web application gateway (WAG) to protect HTTP/S traffic at Layer-7. Network Virtualization Appliances (NVAs): Third-party appliances, deployed as Linux virtual machines with firewall software, can provide Layer-4 and Layer-7 security at the edge of a virtual network, and between machines with micro-segmentation architectures based on routing tables. Azure doesn’t supply an alternative to the third-party NVA, but that is starting to change with a new preview release – which isn’t ready for production yet. Azure Firewall The Azure Firewall is a new preview network security feature in Azure, sitting at the edge of the virtual network to provide additional security beyond what is offered by NSGs. An illustration of Azure Firewall architecture The features today are: High availability (HA): You do not need to deploy multiple instances for high availability as you do with NVAs. The appliance has built-in HA. Cloud... --- ### Azure AD Password Protection to Prevent Password Spraying Attacks - Published: 2018-07-30 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-password-protection-to-prevent-password-spraying-attacks/ - Categories: Active Directory (AD) - Tags: Active Directory, Azure Active Directory, Azure AD Password Protection, cloud computing, Security, Windows Server - Article Type: News In today’s Ask the Admin, Russell takes a look at Azure AD Password Protection and why Microsoft believes it will improve Active Directory security. In today’s Ask the Admin, I look at Azure AD Password Protection and why Microsoft believes it will improve Active Directory security. Azure AD Password Protection is a new feature that recently went into preview for Azure Active Directory. Azure Active Directory is Microsoft’s cloud-based version of Active Directory that offers identity and access capabilities for applications running in Microsoft Azure and on-premises. Windows Server Active Directory can be extended to Azure Active Directory in hybrid cloud/on-premise environments. Some features, like Password Protection, self-service password resets, and multi-factor authentication, are only available for Windows Server Active Directory when it is connected to an Azure Active Directory tenant. Azure AD (AAD) Password Protection is a new tool that aims to prevent password spray attacks. If a hacker tries to guess a user’s AD password, they will be locked out quickly because policy limits the number of incorrect login attempts. To get around that, hackers use password spraying. Instead of hammering a single account continuously, a common password, like Password123, is used against many accounts in the hope that one will use it. Hackers are often able to gain privileged access to Active Directory even if the starting point is a standard user account. Lateral movement around the network and elevation of privilege isn’t so hard because most organizations ignore security best practices, like removing local administrative rights from end users and not using privileged AD accounts for everyday IT administration tasks. Password Best Practices While it has long been... --- ### Aidan's Essential Azure Toolkit (July 2018) > In this post, I’ll share some of the tools that I install on my PC to learn, teach & write about, and work with Microsoft Azure. - Published: 2018-07-27 - Modified: 2024-09-04 - URL: https://petri.com/aidans-essential-azure-toolkit-july-2018/ - Categories: Microsoft Azure - Tags: Azure, Azure Portal, Azure Virtual Machines, PowerShell, Storage Explorer, Visual Studio Code - Article Type: Overview Looking to see what the pro's use every day? Aidan shares the apps that help him in the workplace. In this post, I’ll share some of the tools that I install on my PC to learn, teach & write about, and work with Microsoft Azure. Browsers Best practice is that you use as few accounts as possible to sign into multiple tenants (customers or companies). This can be accomplished using guest accounts – re-using an external account in a tenant – for single sign-on, auditing, and leveraging Azure AD Premium features such as multi-factor authentication. But there are times where that just doesn’t work well and you need multiple accounts, and you need to sign into them simultaneously. Tip of the month: You can sign into the Azure Portal in multiple tabs. I typically work on the same subscription in 2+ tabs at a time, referencing one resource, working on another, while waiting for a third to deploy. To deal with this I use 2+ browsers on my PC, normally using Chrome first, then Chrome Incognito second, and Edge Private third. There are some browser extensions that enable multiple private tabs in a single browser session. I’ve tried them on Chrome, but they eventually become malware and start to hijack Google results – watch out for a google search result refreshing immediately after it loads and strangely formatted search results appearing. I avoid these extensions now – which is a pity! AzureRM PowerShell In my many speaking opportunities outside of the world of Microsoft Ignite, few attendees ever user PowerShell, and those that do are normally limited... --- ### Microsoft Releases Remote Desktop Web Client for Windows Server 2016 and 2019 Preview - Published: 2018-07-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-remote-desktop-web-client-windows-server-2016-2019-preview/ - Categories: Windows Server - Tags: Remote Desktop Services, Remote Desktop Web Client, Windows Server 2016, Windows Server 2019 - Article Type: News Microsoft has announced Remote Desktop Web Client general availability for Windows Server 2016 and 2019 Preview. Microsoft has announced this week Remote Desktop Web Client general availability for Windows Server 2016 and 2019 Preview. At last year’s Ignite, Microsoft announced that it was working on an HTML5 web client for Remote Desktop Services (RDS) that would allow users to connect to Windows Server remote desktops and apps from any browser without additional software. At the end of March, a preview was made available. Last week, Microsoft announced that the Remote Desktop Web Client had reached general availability for Windows Server 2016 and Windows Server 2019 Preview. It has been possible to connect to a remote desktop via a browser for some time using Remote Desktop Web Connection. But it requires Internet Explorer and an ActiveX control, both of which are legacy technologies that Microsoft has deprecated in Windows 10. And because of the reliance on IE, users of non-Windows platforms couldn’t use it. ActiveX Controls also come with their own security issues and management headaches. Remote Desktop Web Client is released for Windows Server 2016 and Windows Server 2019 Preview (Image Credit: Microsoft) That’s where the new HTML5 web client comes in. It works cross platform because it doesn’t rely on proprietary Microsoft technologies. There is official support for Edge, IE11+, Chrome, Firefox, and Safari but mobile devices are not currently supported. The client can be added to existing Windows Server 2016 Remote Desktop Services (RDS) deployments and it is built-in to the preview version of Windows Server 2019, which... --- ### Adding Photos for Office 365 Guests > Office 365 apps like Teams, Groups, Planner, and SharePoint support guest user access, so they create guest accounts. - Published: 2018-07-26 - Modified: 2024-09-04 - URL: https://petri.com/adding-photos-office-365-guests/ - Categories: Microsoft 365, Office - Tags: AAD, Azure Active Directory, guests, Office 365, Office 365 Groups, SharePoint, Teams - Article Type: How To Office 365 apps like Teams, Groups, Planner, and SharePoint support guest user access, so they create guest accounts. Those accounts are pretty bare-boned, but you can liven them up by adding details, including user photos - which you might just copy from LinkedIn. Complete Guest User Accounts Guest user accounts can be added by multiple Office 365 applications, including Office 365 Groups (via OWA, Outlook, and SharePoint), Planner, and Teams. In all cases, a new guest account object is created in Azure Active Directory and then synchronized to other workload directories. Like tenant accounts created through the Office 365 Admin Center, guest accounts are populated with a skeleton set of attributes necessary for them to work. If you want your directory to include job titles, locations, and phone numbers, you must add this information to accounts. Often administrators forget to update guest accounts, and the accounts stay in a usable but threadbare state. Updating Account Details It is a good idea to edit the properties of guest accounts to make them more approachable. For example, no matter what application invites a guest to join the tenant, the default display name for the new account is the guest’s email address. This can make it hard to understand who a guest is, especially when they have consumer email addresses like OperaAllStar111@gmail. com. The display name and other details like the job title, phone numbers, and address can be changed through the Office 365 Admin Center (edit the account’s Contact Information) or the Azure Active Directory portal. Guest Photos It’s common for users to upload photos for their accounts through apps like the personal info section of Office 365 settings or Delve (owners can do the same for Office 365 Groups or Teams). This picture... --- ### Where's Microsoft 365 Headed Next? The Managed Desktop - Published: 2018-07-26 - Modified: 2024-09-04 - URL: https://petri.com/wheres-microsoft-365-headed-next-managed-desktop/ - Categories: Microsoft 365 - Tags: Managed Desktop, Microsoft 365, News - Article Type: News Microsoft is testing out a new Managed Desktop service and is looking for feedback as it gears up to bring it to market. Microsoft's 365 suite is the company's latest play into offering its products as a service, rather than a one-time license. Following on the massive success of Office 365, Microsoft 365 brings into the fold Windows, device management, and security to be a complete solution for a company's 'modern office' requirements. But where is the service heading next? While Microsoft doesn't reveal its plans publicly, the company's job postings often give us hints about what's coming down the pipeline. A few days ago, Microsoft posted several new open positions that highlight that the company is gearing up to launch a Managed Desktop service or MMD. The job description states "Microsoft 365 Managed Desktop (MMD) is a new, per-user subscription service that enables customers with devices that can take advantage of the latest productivity tools and technologies (Device as a Service) in a secure, monitored, and supported IT environment (IT as a Service). " The posting goes on to state that those who are hired for this role will use their learnings to "influence the Go to market strategy of this new and exciting service". Managed desktop services typically provide remote support for software and in this case, it's likely related to Office and Windows for the end-user. It wouldn't surprise me if this was limited to Surface hardware initially but also will eventually support OEM hardware as well. Further, a service like this typically involves a substantial investment which means that the company is likely gearing up for a broader launch... --- ### Google Adds More Features to G-Suite, Becomes a Bigger Thorn in Office 365's Side - Published: 2018-07-25 - Modified: 2024-09-04 - URL: https://petri.com/google-adds-features-g-suite-becomes-bigger-thorn-office-365s-side/ - Categories: G Suite, Google Cloud Platform - Article Type: News Google is adding new features to G Suite, the company's productivity platform that rivals Office 365. During the past decade or two, many companies have tried to compete with Microsoft's Office suite but nearly all of them have slowly faded away. One suite that has managed to stick around and is continuing to grow in usage-share is Google's G-Suite. Despite Google's cloud being late to the party, the company is investing billions to grow the platform. An integral part of that portfolio is G-Suite which continues to be a thorn in the side of Microsoft 365. This week, Google announced several new features coming to its productivity suite including enhanced security and broader availability in data regions for its business customers. In addition, the company is bringing Smart Compose, Smart Reply for Hangouts chat, grammar suggestions to Google Docs, and voice commands to Hangouts Meet hardware. You can read about all the enhancements in detail here but know that the availability of most of these features is limited to its Early Adopters program at this time. The more important thing here is that Google continues to chip away at Microsoft's crown jewel, Office 365. While I don't expect Google's tools to supplant Office anytime soon, as the company continues to add new features, it becomes harder to ignore what the company is doing. Unlike others who have tried to take on Microsoft, Google is finding traction with smaller companies and on occasion, bigger establishments as well. But what's most important here is that Google has the bankroll to take on Microsoft and even though... --- ### The new SharePoint is Here: SharePoint 2019 Public Preview is Now Available - Published: 2018-07-25 - Modified: 2024-11-19 - URL: https://petri.com/new-sharepoint-sharepoint-2019-public-preview-now-available/ - Categories: SharePoint, SharePoint 2019 - Tags: News, SharePoint, SharePoint 2019 - Article Type: News The preview of the next major update to SharePoint 2019 is here and this is what you need to know. If you haven’t seen the Steve Martin movie, The Jerk, I’m jealous. You’ll get to watch it for the first time and it enjoy it with fresh eyes. I’ve watched it somewhere around 12,000 times, and while I enjoy it every time, it’s never quite as satisfying as that first time. If you haven’t gotten me anything for my birthday yet, the finest gift you can get me is to watch The Jerk and love it half as much as I do. I bring up The Jerk because there is a scene where our hero, Navin Johnson, gets excited, some might say over-excited, when the new phonebooks are delivered. Kids, if you don’t know what a phonebook is, ask the cranky guy on your block that shakes his cane at you, or the crazy cat lady. They can fill you in on this long past part of Americana. Today I had one of those, “The new phonebooks are here! ” moments. Microsoft released the Public Preview of SharePoint Server 2019. Much like every viewing of The Jerk is enjoyable, every new version of SharePoint has been as well. SharePoint is no exception 2019. Back in May at the SharePoint Conference North America, Microsoft had SharePoint 2019’s coming out party and announced that they would be releasing a Public Preview. They made good on that promise today. They did a good job making sure all of us eager SharePoint admins had everything we needed to hit the ground running. Here’s... --- ### Microsoft Launches Exchange 2019 Into Preview > Microsoft has just launched the preview version of Exchange 2019. The good news is that it's a new version. What might be unexpected is the lack of new. - Published: 2018-07-24 - Modified: 2024-11-19 - URL: https://petri.com/exchange-2019-preview/ - Categories: Exchange 2019, Exchange Server - Tags: email, Exchange 2019, On-Premises, Preview - Article Type: News Microsoft has just launched the preview version of Exchange 2019. The good news is that it's a new version. What might be unexpected is the lack of new features. Some worthy plumbing won't turn user heads, but then again, when you're the best standalone email server on the planet, do you need to change very much? Dropping Unified Messaging will cause some brows to darken. Expect some sparks at Ignite. The Last Great Email Server? At the Ignite 2018 conference last September, Microsoft announced that they would release new versions of the Exchange, SharePoint, and Skype for Business on-premises servers. Today, Microsoft released a preview build of Exchange Server 2019, which you can download here. The build is strictly for evaluation and should not be used in production. The preview runs on either Windows 2016 Server or Windows 2019 Server. Twenty-two years since the original release of Exchange, I can’t help feeling that what we see here is the last hurrah for the world’s best email server. It’s obvious that Microsoft’s attention is focused on Office 365, and it’s hard to argue against the results they have delivered in the cloud. Income from commercial cloud services has risen faster than anyone predicted, with the most recent quarterly results ($6. 9 billion) equating to an annualized run rate of $27. 6 billion). Microsoft lumps Azure, Office 365, and Dynamics into the commercial cloud bucket, but analysts think that Office 365 contributes the bulk of these revenues. And although some struggle to cope with the sheer pace of change inside Office 365, if you’re a feature junkie, Office 365 just keeps on delivering with new applications, new integrations, and new functionality. Much of what we see happening inside Office 365 is Microsoft deploying its complete portfolio, such as adding Microsoft Translator to Teams, connecting Office 365 Groups to SharePoint, or using cloud power to improve security and enable features like automatic transcript and face... --- ### Microsoft Brings Local Predictive Analytics Capabilities to Windows Server - Published: 2018-07-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-local-predictive-analytics-capabilities-to-windows-server/ - Categories: Windows Server - Tags: Azure Operational Insights, machine learning, predictive analysis, System Insights, Windows Server 2019 - Article Type: News In this Ask the Admin, Russel looks at the new analytics capabilities in Windows Server 2019. Microsoft is steaming ahead with development of Windows Server 2019, which should see release later this year. The latest Insider preview adds System Insights, which is a local analytics feature that doesn’t require any connectivity to the cloud. System Insights brings predictive capabilities to Windows Server to help system administrators keep servers running smoothly. Each predictive capability is designed to warn administrators if there could be a potential problem. Using data collected from performance counters and the Windows Event Log, System Insights machine-learning models help reduce the cost of managing Windows Server. It’s not the first time this kind of capability has been available for Windows Server. Azure Operational Insights goes beyond what System Insights offers, also using data collected from servers and machine learning to help reduce administrative costs. The key difference with System Insights is that all data is collected and stored locally, and the machine-learning models also run without needing to connect to Azure or the Internet. In the current release, System Insights focuses on capacity forecasting and predicting future usage for compute, networking, and storage. Administrators can look through predictive capabilities and start them on-demand or on a schedule. It’s also possible to trigger a task to run when a capability generates a specific result. Windows Admin Center provides System Insights with an administrative GUI, plus PowerShell support allows administrators to access remote System Insights instances and collect prediction results. Microsoft is planning to add new features to System Insights before Windows Server 2019... --- ### Understanding SQL Server’s Disaster Recovery Options - Published: 2018-07-23 - Modified: 2024-09-04 - URL: https://petri.com/understanding-sql-servers-disaster-recovery-options/ - Categories: Backup & Storage, SQL Server, Windows Server - Tags: Backup, Disaster Recovery, Windows Server - Article Type: Overview Learn about the differences in SQL Server's disaster recovery options so that you know what options you have to prevent your next outage. SQL Server is the core database platform for a majority of today’s business-critical applications and it has a number of built-in features that you can use to protect your mission-critical applications and data from disasters and extended outages. Let’s take a closer look at some of SQL Server 2017’s built-in disaster recovery (DR) options. Backup Backup is and has always been the most fundamental DR technology. SQL Server provides the ability to backup databases using either the SQL Server Management Studio (SSMS), T-SQL BACKUP commands or PowerShell. SQL Server supports full database backups, differential backups as well as log file backups. Most organizations perform a full database backup regularly and then perform differential backups in between full backups and then transaction log backups frequently throughout the day. Transaction log backups give you the ability to restore your database to a point-in-time you choose. SQL Server’s backup supports both compression and encryption. Log Shipping Log Shipping has been included with SQL Server since the SQL Server 2000 release but you could enact the same functionality on earlier versions using T-SQL scripts and SQL Agent jobs. Log Shipping is supported on both the Standard and Enterprise editions of SQL Server 2017. Log Shipping works by first taking backups of the protected databases, restoring them to the target servers and then periodically running a stored procedure to forward and apply transaction log backups to one or more target servers. Log Shipping allows a user-specified delay between when the primary server backs up... --- ### Microsoft's Not Abandoning the Consumer, But Its Future is Productivity - Published: 2018-07-23 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-not-abandoning-the-consumer-but-its-future-is-productivity/ - Categories: Microsoft Azure, Office, Windows Client OS - Article Type: Opinion As Microsoft continues to evolve its business in a world without Windows, the company wants to be known as the productivity kings, not the developer of operating systems. What's the difference between a business user and the consumer? In the large enterprise world, it's a bit easier to distinguish this as you need more granular control over mobile hardware and you likely buy software that runs in a data center. But at a smaller level, the end-user scenario, there are a lot of things in common. Business and consumers both want to be productive, either with spreadsheets or lists for the grocery store, they both want to browse the web safely, they both need email, Office apps, a web browser and the list goes on and on. The difference between what you need at the workplace and what you need at home is rarely all that different. Microsoft knows this and now that Windows is fading from the limelight, the company is more forcefully making the transition away from being known as the 'Windows' company and more so as the 'productivity' company. There are many signs of this, including how Microsoft presented aspects of their Inspire conference last week and there is a good write-up by Mary Jo about this topic as well. There are also more obvious signs like Yusuf Mehdi's title being changed to Corporate Vice President, Modern Life & Devices Group, instead of Windows and Devices Group. Microsoft is on a path to make Windows a lesser-known brand and its promotional efforts will continue to put less focus on Windows and more on individual products. That may sound crazy but it's clear that... --- ### Teams Brings Inline Translation to the Masses > Microsoft Teams now supports inline translation for messages and personal chats. The translation is done by Microsoft Translator for over 60 languages - Published: 2018-07-23 - Modified: 2024-11-19 - URL: https://petri.com/teams-inline-translation/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Translator, Office 365, Teams - Article Type: How To Microsoft Teams now supports inline translation for messages and personal chats. The translation is done by Microsoft Translator for over 60 languages, and it works well. A couple of small glitches might occur in translation, but Microsoft Translator is probably better at generating foreign language text than you are... Multilingual (and Intelligent) Teams In March, Microsoft celebrated the first anniversary of Teams and highlighted some of the features due to appear in 2018, including “Inline message translation—People who speak different languages will be able to fluidly communicate with one another by translating posts in channels and chat. ” Part of Microsoft’s Intelligent Communications and Collaboration initiative, inline translation also responds to a Uservoice request. As of last week, inline translation is generally available to all Office 365 enterprise tenants. The good news is that the feature adds real value, especially for multinational organizations, even if you must go through some PowerShell hoops to make it work. Translating Messages Teams uses the Microsoft Translator service for inline translation of messages in both channel conversations and personal chats. Figure 1 shows a conversation in five languages – English, Slovak, Arabic, Danish, and French. The user can select Translate from the ellipsis menu to translate a message into the language selected in the user's Teams client Settings. Figure 1: A Teams conversation in different languages (image credit: Tony Redmond) Some Translation Glitches We see the translated conversation in Figure 2 (note the indicator to show that translated text is displayed). As you’d expect, given the complexities in how people use language to communicate, some minor glitches happen in translation. For example, “wonderful feature” in Arabic ends up as “great advantage” in English, and “fluent text” in Danish becomes “floating text. ” But overall, the translated output is good enough... --- ### Adding a New Office 365 Group to an Existing (Classic) SharePoint Online Site - Published: 2018-07-20 - Modified: 2024-09-04 - URL: https://petri.com/adding-new-office-365-group-existing-classic-sharepoint-online-site/ - Categories: Microsoft 365 - Tags: Office 365, SharePoint Online The ability to add a new Office 365 Group to an existing SharePoint Online site is finally coming to Office 365. You will be able to connect existing classic SPO sites to new Office 365 Groups by means of two possible mechanisms. As announced in this post in the Microsoft Tech Community, the ability to add a new Office 365 Group to an existing SharePoint Online (SPO) site is finally coming to Office 365. You will be able to connect existing classic SPO sites to new Office 365 Groups by means of two possible mechanisms: PowerShell (first mechanism available after the official announcement of this feature) The “Connect to new Office 365 Group” option available in the site settings menu     In this article I will explain step by step how to connect an existing SPO site to a new Office 365 Group or, in other words, how to Groupify an existing SPO site. Adding a New Office 365 Group to the Site Through the UI To add a new Office 365 Group to an existing site through the UI: Click on Settings -> Connect to new Office 365 Group. Figure 1 -- Connect to New Office 365 Group Option   Then, a panel explaining the process and the results that will happen when the new Group is added to the site is displayed. Figure 2 -- Initial Configuration Panel in the Process   As you can see in that panel, the process will do the following tasks: Add a shared mailbox and calendar for group conversations. Create a Planner Plan for Tasks management. Provision a new, modern page as a home page for the site. Configure Group membership based on existing site membership. Keep existing site contents, hierarchy, and permissions. Once we... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (July 2018) - Published: 2018-07-20 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-9/ - Categories: Cloud Computing, Microsoft 365, Microsoft Azure, Windows 10, Windows Server - Tags: News - Article Type: Overview Because $110 billion, that's why, this edition of Short Takes looks exclusively at Microsoft's blockbuster quarterly and fiscal 2018 results. Keep Calm and Nadella On. Because $110 billion, that's why, this edition of Short Takes looks exclusively at Microsoft's blockbuster quarterly and fiscal 2018 results. Note: On Thursday, Microsoft announced that it earned a net income of $8. 9 billion on revenues of $30. 1 billion for the quarter ending June 30. Revenues for the fiscal year, which also ended June 30, were $110. 4 billion.  Check out Brad's new story for a good overview of the results. Here, I'll dive into additional information that Microsoft provided during its post-earnings conference call. ---Paul Irony alert We've been beating the drum of "the cloud is the future of Microsoft" for a few years now, but here's an awkward reality that the software giant purposefully ignores in order to keep Wall Street happy: Of its three top-level business units---Intelligent Cloud, Productivity and Business Processes, and More Personal Computing---it is the latter, responsible for such non-cloud products as Windows, Surface, and Xbox---that generates the most revenue. And while Intelligent Cloud is growing a bit faster---23 percent, year-over-year, compared to 17 percent---the gap isn't all that great, and a big chunk of that business is actually traditional server products too. Point being, sure, the cloud is the future. But Microsoft's legacy products are what's bringing home the bacon right now. Let's not lose sight of that, please. "Microsoft soars past $800 billion in value after bumper results" Mission accomplished. Microsoft sees Azure as "the world's computer" I'm always fascinated by how Microsoft---and... --- ### Microsoft's Cloud Continues to Drive Earnings, The Company Forward - Published: 2018-07-19 - Modified: 2024-09-24 - URL: https://petri.com/microsofts-cloud-continues-drive-earnings-company-forward/ - Categories: Main - Tags: Microsoft, News - Article Type: News If you needed any (more) evidence that Microsoft's Cloud platform is the future of the company, for the year ended June 30th, Microsoft smashed earnings expectations with Net Income of $8.9 billion. If you needed any (more) evidence that Microsoft's Cloud platform is the future of the company, for the year ended June 30th, Microsoft smashed earnings expectations with Net Income of $8. 9 billion. For the quarter, Wall St was looking for $1. 08 a share on revenue of $29. 2 billion. with Microsoft reporting $1. 13 per share at the $30. 1 billion. The company's investments in cloud and edge continue to payoff as Nadella noted that Microsoft topped $100 billion in revenue for the year. Leading the charge is the company's revenue was the company's cloud services which were up 53 percent to $6. 9 billion. This on-going trend of Microsoft's cloud growth is why the company is frequently opening new data centers around the globe. On the productivity side of the coin, Office, Dynamics, LinkedIn saw revenues jump 13 percent in the quarter to $9. 7 billion; Office 365 commercial revenue grew 38 percent. Surface revenue increased 25% (up 21% in constant currency) driven by strong performance of the latest editions of Surface against a low prior year comparable. What you need to know is that Microsoft's cloud services business continues to grow at a significant rate and will continue to sustain the company going forward. With no signs of slowing down, Microsoft's investment in Azure and related services is paying massive dividends for the organization. Things to watch for are how Microsoft will expand this model. While it isn't likely to contract anytime soon, when you have a cash cow like Azure,... --- ### Windows 10 April 2018 Update Brings UWP Multi-Instancing, UWP Console Apps and Broader File System Access - Published: 2018-07-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-april-2018-update-introduces-uwp-console-apps-and-broader-file-system-access/ - Categories: Windows Client OS - Tags: Security, UWP, Windows 10, Windows 10 April 2018 update - Article Type: Overview The Windows 10 April 2018 Update introduces support for UWP Multi-Instancing, UWP console apps, and broader access to the file system. In this Ask the Admin, I'll give you an overview of these new features and why Microsoft introduced them. The Windows 10 April 2018 Update introduces support for UWP Multi-Instancing, UWP console apps, and broader access to the file system. In this Ask the Admin, I'll give you an overview of these new features and why Microsoft introduced them.     Microsoft has been slowly pushing forward with the Universal Windows Platform (UWP) app model to close the gap with legacy Win32 applications. In the latest update to Windows 10, three important changes bring UWP one step closer to that goal. Multi-Instancing UWP Apps The first, and possibly most important, is multi-instancing. Until now, UWP apps could only run multiple windows in a single process, which is difficult to manage and leads to reliability concerns. For example, if one window crashes, then it will bring down all the other app’s windows with it. Multi-instancing addresses this issue by allowing multiple instances of an app to open in separate processes. In the Windows 10 April 2018 Update, if an instance of an app is running and a new activation request is made, by default a new instance of the app will be created. Before the April 2018 Update, if an app is already running and activated again, for example by a user clicking the app’s Start menu tile, then the activation calls the running instance of the app. It then decides how to handle the activation request. Developers can opt to create multi-instance ‘redirection’ UWP apps, where the app controls exactly how each instance is activated. Microsoft has... --- ### Revisiting Application Guard in the Windows 10 April 2018 Update - Published: 2018-07-18 - Modified: 2024-09-04 - URL: https://petri.com/revisiting-application-guard-in-the-windows-10-april-2018-update/ - Categories: Windows Client OS - Tags: Microsoft Edge, Security, Windows 10, Windows 10 April 2018 update, Windows Defender Application Guard - Article Type: Overview In this Ask the Admin, I'll look at new functionality and examine whether performance has improved. I first reviewed Windows Defender Application Guard (WDAG) on Petri last year. At that time, it was only available in the Enterprise SKU. But starting in the Windows 10 April 2018 Update, WDAG is also available to Windows 10 Pro users. In this Ask the Admin, I'll look at new functionality and examine whether performance has improved.     Windows Defender Application Guard (WDAG) is a containerization solution for Microsoft Edge that uses Hyper-V to virtualize browser sessions. As with any container solution, WDAG protects the operating system and other running applications from security breaches that might occur inside the container. The biggest change to WDAG in the April 2018 Update is that it is now available to users of Windows 10 Pro. Previously, you needed to be running the Enterprise or Education SKU. For more information on the technical requirements for WDAG, see Protect Users Against Malicious Websites Using Windows 10 Application Guard on Petri. Performance Starting WDAG for the first time took a little over a minute on my Intel Core i5-6200 2. 4Ghz Dell XPS notebook with 8GB RAM. That’s with nothing else running on the system. Subsequent launches in the same user session are instant. But after a reboot, WDAG still takes almost a minute to start up for the first time. I haven’t run any scientific tests on page load times but WDAG does seem to load pages a little slower. On sites like Petri, the difference was barely noticeable. But a lot will... --- ### SharePoint Best Intentions – Planning versus Reality - Published: 2018-07-18 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-best-intentions-planning-versus-reality/ - Categories: SharePoint 2013, SharePoint 2016, SharePoint 2019 - Tags: Best Practices, Governance, migration, SharePoint, upgrade - Article Type: How To If you are thinking about updating to SharePoint 2019, it's time to take a serious look at how upgrades work in the real world. In my excitement for SharePoint 2019 two weeks ago I published an article on the 5 Things you Can do to Prepare for your upcoming SharePoint 2019 migration. Last week I covered the first step, Dig Deeper into your Farm in greater depth. This week I’m going to spend some time on the second step, comparing your current SharePoint environment to the plan you put into place when you created it. I think we all agree that Mike Tyson is an American treasure. And while I’m not a big boxing fan I’ve always enjoyed his often quoted, “Everybody has a plan until they get punched in the mouth. ” By nature, I like to plan things out, and this quote reminds me that while planning things is important, we have to be realistic about all the curveballs life is going to throw at us. While I find planning and governance a little less fun than dental work, I recognize that both are important in the long run, so I force myself to suffer through them. And while I know that those plans will likely not be followed, they do serve as a blueprint of sorts. They’re like my car’s GPS, they give me a general idea where to go, but I pepper its advice with what’s really going on. If it tells me to drive through a barrier and off a cliff, I don’t. My SharePoint governance documents are the same way. I try to map out how the... --- ### Microsoft Finally Makes Mailbox Auditing Happen for Exchange Online > The news that Microsoft will make mailbox auditing the default in Exchange Online is very welcome, as is the new mechanism they plan to use. - Published: 2018-07-18 - Modified: 2024-09-04 - URL: https://petri.com/mailbox-auditing-exchange-online/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, mailbox auditing, Office 365, Office 365 Audit Log - Article Type: How To The news that Microsoft will make mailbox auditing the default in Exchange Online is very welcome, as is the new mechanism they plan to use. Microsoft won't get the new feature rolled out across Office 365 until the end of 2018, so there's still a gap to fill to make sure that audit records are gathered for mailbox activity. Exchange Brings Mailbox Auditing to the Masses The news that Microsoft has belatedly decided to enable auditing for all Exchange Online mailboxes in Office 365 commercial tenants came as a pleasant surprise. I’ve been complaining about this omission for years, and commented as recently as July 10 that making sure that auditing is enabled for all user and shared mailboxes is an important step in combating Business Email Compromise attacks. Microsoft will take until the end of 2018 to ensure full coverage of mailboxes in all tenants. When that happens, Exchange will be at par with SharePoint Online when it comes to gathering audit information about user activities. In both cases, the audit events are normalized and flow through to the Office 365 audit log. The Wrong Call I never understood why Microsoft was so reluctant to enable mailbox auditing by default. Perhaps it was a throwback to the on-premises world when organizations made their own rules up about when auditing should occur, and a desire to respect the same right to choose in the cloud. Any such justification was wrong. And it’s been wrong since the Office 365 audit log appeared in 2015 to bring sanity to the various ways that workloads generated and reported audit data. By comparison, SharePoint, the other core Office 365 workload, stepped up and made sure that user and administrative events are sent to the Office 365 audit log as quickly as possible. SharePoint might be a tad verbose at times, and... --- ### Amazon Announces Several AWS Storage Gateway Updates - Published: 2018-07-17 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-several-aws-storage-gateway-updates/ - Categories: Backup & Storage, Cloud Computing - Tags: Amazon, AWS, Cloud Storage Gateway, Hybrid, News - Article Type: News Amazon recently announced several updates to the AWS Storage Gateway service. This is a product that was designed to serve as an interface between on-site and AWS cloud storage. In a recent post on the AWS News blog, Amazon announced several updates to the AWS Storage Gateway service. This is a product that was designed to serve as an interface between on-site and AWS cloud storage.     AWS Storage Gateway now allows users and applications to access their files using both v2 and v3 of the Server Message Block, or SMB, network protocol. As a result, users will now be able to transfer files between applications running locally on Windows machines and AWS S3 cloud storage. This can prove useful for those who may be looking for an easy way to increase storage and create offsite backups among other tasks. For those users who store files in S3 buckets across multiple AWS accounts, AWS Storage Gateway now allows admins to give S3 buckets owned by other users full permissions. While this doesn’t necessarily seem like an important feature, it can be helpful to those who are using different AWS accounts for billing, tracking, or management purposes. Storage Gateway now also supports the option for users to designate S3 buckets as “Requester Pay Buckets”. This will enable bucket owners to request payment for data storage and transfer costs associated with the bucket, should they choose to share that data with other users who request it. In its blog post, Amazon gave an example of this feature being useful in research scenarios, where many users are simultaneously collecting files and data for an organization using their own S3... --- ### Preview of Azure Blob Storage Lifecycle Management > I this post, I will talk about the new automatic management of tiered Azure blob storage by a new preview Azure feature called Lifecycle Management. - Published: 2018-07-17 - Modified: 2024-09-04 - URL: https://petri.com/preview-azure-blob-storage-lifecycle-management/ - Categories: Microsoft Azure - Tags: Archive, Azure, BLOB, Blob Storage, Cool, Hot, Life Cycle Management, storage, Tiering - Article Type: Overview Aidan Finn talks about the new automatic management of tiered Azure blob storage by a new preview Azure feature called Lifecycle Management. I this post, I will talk about the new automatic management of tiered Azure blob storage by a new preview Azure feature called Lifecycle Management.     Blob-Level Tiering Azure’s blob storage allows us to move individual blobs (files) between three storage tiers in the same storage account (Hot Blob, Cool Blob, or General Purpose v2/Gpv2), optimizing the cost of our storage based on the frequency of usage: Hot: For frequently accessed blobs, with higher (still low cost) per-GB storage charges and lower access charges. Cool: For infrequently access blobs, with lower per-GB storage charges but higher access charges. Archive: The cheapest form of blob storage, for blobs that must be retained for legal or regulatory reasons. These blobs are very rarely otherwise accessed. Archived blobs must be moved to a cool/hot tier to be accessed and this hydration can take up to 15 hours. By default, blob tiering is something that is not done automatically for you by Azure. You will either need to: Do it by hand, which probably offsets most/all savings with labor costs. Come up with your own solution. There is Logic App template in Azure for doing this based on each blob’s last access time. Storage Lifecycle Management Microsoft has launched a limited preview for a new feature called Lifecycle Management in General Purpose v2 (GPv2) storage accounts: West US 2 and West Central US regions to begin with. You must apply to become a part of the preview. You can request access by... --- ### Azure Blob Storage Soft Delete > This post discusses and shows how to deploy & use a new preview recycle bin feature for Azure blob storage called Soft Delete. - Published: 2018-07-17 - Modified: 2024-09-04 - URL: https://petri.com/azure-blob-storage-soft-delete/ - Categories: Microsoft Azure - Tags: Azure, Azure Storage, BLOB, Soft-Delete, storage - Article Type: How To Aidan Finn discusses a new preview recycle bin feature for Azure blob storage called Soft Delete. This post will discuss a new preview recycle bin feature for Azure blob storage called Soft Delete.     What Is Soft Delete? Microsoft Azure customers are becoming more aware of the cost-effectiveness of cloud storage, especially blob storage. If they have a means, probably a web app, to upload and access files to the blob service in a storage account, then they can store huge capacities at a very low cost. A file, now referred to as a blob, can be kept in the hot tier (for frequent access), the cold tier (for infrequent access), or the archive tier (for legal/regulator retention). Now this storage becomes important and things happen. We have the ability to convert blob storage into WORM storage but if the storage account is more interactive, then users will do things like accidentally deleting a file. Backups can be restored, but recycle bins are faster to use for these kinds of regular restores. And now, there is a preview for: Keeping historical versions of blobs Retaining blobs after deletion Both of these features are offered by Soft Delete and are easily configured with a simple retention window. How Soft Delete Works The following graphic, by Microsoft, illustrates a file/blob life cycle with Soft Delete enabled in the storage account. A file/blob, version B0, is uploaded into a storage account. An update is made to the blob, and this is saved by the storage account as B1. The original version is retained as B0 in... --- ### Patch Tuesday -- July 2018 - Published: 2018-07-16 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-july-2018/ - Categories: Security - Tags: Patch Tuesday, Security, Windows - Article Type: Overview This month’s Patch Tuesday was a relatively quiet one. Microsoft made a minor update to Spectre v4 patches, issued critical updates only for desktop editions of Windows, and patched three vulnerabilities that had already been publicly disclosed. This month’s Patch Tuesday was a relatively quiet one. Microsoft made a minor update to Spectre v4 patches, issued critical updates only for desktop editions of Windows, and patched three vulnerabilities that had already been publicly disclosed.     No Critical Patches for Windows Server Microsoft issued 15 critical patches for Windows on Tuesday, July 10th. Unusually, they only apply to supported desktop editions of Windows, i. e. Windows 7 SP1 through to the Windows 10 April 2018 Update and not to any version of Windows Server. The patches affect Microsoft Edge, Internet Explorer, and the ChakraCore scripting engine. They could all lead to remote code execution, apart from one (CVE-2018-8324), which could cause information disclosure. Publicly Disclosed Vulnerabilities There are no zero-days in this month’s round of patches but there are three vulnerabilities that had already been publicly disclosed. CVE-2018-8313 is an elevation of privilege vulnerability and according to Microsoft, it is not being actively exploited. It affects Windows Server and desktop editions of Windows. Nevertheless, Microsoft says that is likely that attacks will occur. CVE-2018-8314 is another elevation of privilege vulnerability that only applies to older versions of Windows. Finally, a Microsoft Edge spoofing vulnerability (CVE-2018-8278) affects Windows 10 Version 1803. An attacker could make it look like you are on a legitimate website. To exploit the vulnerability, hackers must either persuade the user to browse to a malicious website or be redirected to it. Windows 10 1803 Promoted to Semi-Annual Channel Windows 10 version 1803 build... --- ### View Diagnostic Data in Windows 10 April 2018 Update - Published: 2018-07-16 - Modified: 2024-09-04 - URL: https://petri.com/view-diagnostic-data-in-windows-10-april-2018-update/ - Categories: Windows Client OS - Tags: Diagnostic Data Viewer, Diagnostics, Privacy, Windows 10 April 2018 update - Article Type: How To In this Ask the Admin, I'll show you the new Diagnostic Data Viewer in Windows 10. In this Ask the Admin, I'll show you the new Diagnostic Data Viewer in Windows 10.     One of the biggest controversies surrounding Windows 10 since its release has been privacy. The collection of user data has increased to apparently provide users with a better experience as part of Microsoft’s Windows-as-a-Service initiative. This has led to privacy concerns and is causing some users to put off upgrading to Microsoft’s latest and greatest. But the problems don’t end there for Microsoft as France, the European Union, and the Electronic Frontier Foundation have all voiced their concerns as well. To help address worries about the data being sent back to Microsoft, the Windows 10 April 2018 Update includes an app that shows the data being collected in a readable format. There are also new options for configuring privacy settings during the out-of-box-experience (OOBE) when you first set up Windows 10. Configure Privacy Settings If you want to view diagnostic data collected by Windows 10, you’ll need to enable the Diagnostic Data Viewer in the Settings app. Press WIN+I to open the Settings app. Go to Privacy and then click Diagnostics and feedback under Windows permissions. Here you have the option to set the level of diagnostic data that Windows collects. The default setting is Full but you can change it to Basic. While the differences between the two settings aren’t spelled out very clearly in the Settings app, Microsoft does provide a link here that gives more information about... --- ### Microsoft's Ending Support For Classic Skype on September 1st, 2018 - Published: 2018-07-16 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-ending-support-classic-skype-september-1st-2018/ - Categories: Messaging - Tags: News, skype - Article Type: News Microsoft will retire classic Skype in September of 2018 with the company pushing desktop users to version 8.0 Microsoft has announced today that they are rolling out a new version of Skype, 8. 0, for desktop users that will replace Skype 7. 0 or better known as classic Skype. This update brings with it several new features and an update to the UI as well but this also means that 7. 0 will no longer be supported I know that many small businesses are using Skype for communication which makes today's announcement that Skype Classic will be going away in September of 2018 an important change. If your organization is dependent on a specific feature-set of classic Skype, you will need to begin testing 8. 0 immediately as you only have about six weeks before that software will be retired. That being said, 8. 0 should work with just about everything that 7. 0 supported and I don't expect there to be too many transitions issues. But, with millions of people using the platform, there are always outlier scenarios and it's in your best interest to take a look at version 8. 0 that is rolling out today. You can read about everything that's new with Skype 8. 0 here. After the September date, if a user opens up version 7. 0 of Skype, they will be prompted to upgrade to version 8. 0. After this date, it's not that Skype 7. 0 won't be supported and that you can still use the application; you will no longer be able to login and must update if you plan on using the communication software. Microsoft has been moving more aggressively... --- ### Paul Thurrott's Short Takes: July 13 - Published: 2018-07-13 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-13/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Overview Because this edition of Short Takes is rated M for suggestive themes and strong language, we take a look at Surface Go, a free version of Microsoft Teams, why Spectre and Meltdown are the gifts that keep on giving, and much, much more. Because this edition of Short Takes is rated M for suggestive themes and strong language, we take a look at Surface Go, a free version of Microsoft Teams, why Spectre and Meltdown are the gifts that keep on giving, and much, much more. Andromeda? Nope! Surface Go? Yep Windows enthusiasts---yes, they exist---who were hoping for Microsoft to release a crazy-innovative new mobile computing form factor called Andromeda were disappointed this week when Microsoft instead released yet another low-end Surface tablet called Surface Go. But Surface Go---unlike Andromeda---makes tons of sense. It's a much lower-priced way for customers of all kinds---consumers, students, firstline workers, whatever---to experience the quality and functionality of Microsoft's premium PC lineup. And unlike most PC makers, Microsoft isn't cutting corners---at least from a build quality standpoint---with this $500 to $650 PC. So we'll see how it does in the real world, but I welcome Microsoft's return to the budget PC space. "Could a Surface That Fits in Your Pocket Succeed? " No. Surface Go triggers the stupid The initial response to Surface Go has been sadly predictable, with pundits far and wide weighing in with their weeks of experience. The Apple-biased immediately dismissed Surface Go ("not an iPad killer") while those of a more Redmond orientation proudly declared that Microsoft was back in mobile, sort of. What these kids are missing out on, of course, is the nuance in life. Surface Go isn't going to push aside some other product. It's designed to be additive, and... --- ### Inside the Free Version of Teams > A free version of Teams is now available and it's pretty good. Up to 300 users, free storage, and lots of functionality - and a phantom Office 365 tenant - Published: 2018-07-13 - Modified: 2024-12-03 - URL: https://petri.com/free-teams-version-works/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, free, Office 365, Slack, Teams - Article Type: News A free version of Teams is now available and it's pretty good. Up to 300 users, free storage, and lots of functionality - and a phantom Office 365 tenant (or so it seems). The nice people at Slack might not like what they see, but there's fierce competition to secure the hearts and minds of those who choose to collaborate using a free platform. Free Teams for All With a great fanfare, Microsoft unveiled the next step to make life difficult for Slack by making a free version of Teams available on July 12 (a Microsoft Mechanics video gives some insight into their thinking). Brad has already commented on the commercial aspect of the move (basically, “Ouch” for Slack). I want to look at what Microsoft has done on a technical level. Last March, when the first hints that a free version of Teams might surface, I guessed at how things might work. As is normal when guessing, I was right in some parts, and not in others. The biggest surprise to me is that Microsoft uses the same Office 365 infrastructure to host both the free and enterprise versions. Because of this, the free version is updated at the same cadence as the enterprise. But Only for up to 300 In other words, when you set up the free version of Teams for an organization of up to 300 people, you create an Office 365 tenant and an Azure Active Directory instance to support the tenant. The person who creates the tenant becomes the owner of the first team in the tenant and can then invite others to join the tenant. You can’t use an account from an Office 365 tenant or Azure Active Directory domain to create a free Teams tenant. The account must be from a domain that isn’t connected to a domain managed by Azure Active Directory, such... --- ### Modern SharePoint Web Parts — Image Web Part - Published: 2018-07-13 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-image-web-part/ - Categories: SharePoint Online - Tags: Modern SharePoint Team Site, Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates!     (more... ) --- ### Microsoft's Newest Azure Feature Lets You Bring Your Network to the Cloud - Published: 2018-07-12 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-newest-azure-feature-lets-bring-network-cloud/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, Azure Firewall, Azure Virtual WAN, Microsoft - Article Type: News hile Microsoft has introduced services and technologies like Azure Stack to bring the cloud closer to home the company is making two key announcements today that will make it easier to deeply integrate the cloud service into your environment. For all the hype around the 'cloud' and how it will change everything, for most companies, it has simply been a bolt-on service to expand your own environment. While Microsoft has introduced services and technologies like Azure Stack to bring the cloud closer to home the company is making two key announcements today that will make it easier to deeply integrate the cloud service into your environment. Announced today and entering preview are two new services, Azure Virtual WAN and Azure Firewall. Azure Virtual WAN allows you to construct a hub and spoke model of connectivity inside of Azure to significantly reduce the complexity of routing traffic to virtual appliances like firewalls. This service provides optimized branch to branch connectivity to and through Azure, reducing the complexity of connecting your sperate branches which will reduce network latency and help to improve consistency with your throughput as well. Also announced today is Azure Firewall which is a cloud-native service that is designed to protect your Azure Virtual Network resources. This new tool is a fully stateful firewall with built-in high availability and cloud scalability that allows you to centrally create, enforce, and log application and network connectivity policies, spanning Fully Qualified Domain Names (FQDNs), IP Addresses, ports and protocols across subscriptions and virtual networks. One of the key benefits of the hybrid cloud world that most of us live in these days is that data centers are separated geographically to provide unparalleled availability. While the cloud has made it... --- ### Microsoft Makes Its Slack Competitor, Teams, Available for Free - Published: 2018-07-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-makes-slack-competitor-teams-available-free/ - Categories: Microsoft Teams, Office - Tags: Microsoft Teams, News - Article Type: News Microsoft is finally offering a free version of Teams and it's far more robust than you may think even though it costs nothing to use. We knew it was coming since February and now we have the details, Microsoft is finally making a free version of Teams available to anyone who wants to try out the collaboration platform. Starting today, a free version of Teams is available worldwide in 40 different languages. This is an important step for Microsoft and its Teams platform as it takes on Slack which has captivated the startup world with its modern take on a communication platform. Up until now, the only way to use Teams was to have an active Office 365 subscription which was a barrier to entry for small companies who may have been using G-Suite or other tools. Even though this iteration is free, it's far more robust than I thought it would be considering there is no cost to use the software. The free version includes support for up to 300 people and provides the following functionality: Unlimited chat messages and search Built-in audio and video calling for individuals, group, and full team meetups 10GB of team file storage plus additional 2GB per person for personal storage Integrated real-time content creation with Office Online, including built-in Word, Excel, PowerPoint, and OneNote Unlimited app integrations with 140+ business apps to choose from, including Adobe, Evernote, and Trello Ability to communicate and collaborate with anyone inside or outside your organization,backed by Microsoft’s secure, global infrastructure As you would expect, Microsoft hopes to use this free iteration as a pipeline for future customers of Office 365... --- ### Licensing Exchange Online Shared Mailboxes > Microsoft made a mistake in their provisioning process for Exchange Online shared mailboxes, so lots of mailboxes have 100 GB quotas. - Published: 2018-07-12 - Modified: 2024-09-04 - URL: https://petri.com/licensing-exchange-online-shared-mailboxes/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, licensing, Office 365, shared mailbox - Article Type: How To Microsoft made a mistake in their provisioning process for Exchange Online shared mailboxes, so lots of mailboxes have 100 GB quotas. Things are changing now and new shared mailboxes will have 50 GB quotas, unless you license them. Here's how to check the status of your shared mailboxes. Microsoft Changes Exchange Online Provisioning Beginning later this month, Microsoft will change the provisioning process for Exchange Online shared mailboxes to ensure that these mailboxes receive a 50 GB quota. Microsoft’s documentation has always said that shared mailboxes get 50 GB, but errors in the provisioning process led to the allocation of 100 GB quotas, just like regular user mailboxes. The Need for Licenses Shared mailboxes can have a 100 GB quota, but only if they have an Exchange Online Plan 2 license. However, unlicensed mailboxes that received a 100 GB quota keep it unless the mailbox’s “state” changes. In other words, if you convert a shared mailbox to be a user mailbox. If an unlicensed shared mailbox grows past 50 GB, Exchange will stop delivering email to the mailbox until the size is reduced under the quota or it is licensed. Shared mailboxes also need licenses if they have archives (including auto-expanding archives) or you apply a litigation hold to the mailbox. Popular Shared Mailboxes Despite the availability of more modern collaboration methods within Office 365, shared mailboxes continue to be popular with customers. Common use cases include: Converting mailboxes belonging to ex-employees to shared mailboxes to free up Office 365 licenses. If the converted mailboxes are bigger than 50 GB, they’ll need licenses if you want to keep them receiving email. If you don’t want to have ongoing access to the mailbox and just want to have the content available receiving email. If you don’t want... --- ### Copy An Azure VM Using Managed Disk Snapshots > In this post, I will show you how you can use the snapshot feature of managed disks to create an exact copy of a virtual machine. - Published: 2018-07-12 - Modified: 2024-09-04 - URL: https://petri.com/copy-azure-vm-using-managed-disk-snapshots/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, Managed Disks, Snapshots, virtual machines - Article Type: How To Aidan Finn shows you how you can use the snapshot feature of managed disks to create an exact copy (including identity and SID) of a virtual machine. In this post, I will show you how you can use the snapshot feature of managed disks to create an exact copy (including identity and SID) of a virtual machine.     This technique should only be used for lab and troubleshooting purposes. The official creation/deployment methods of Azure should be used for production deployments from a generalized image. Managed Disks This technique is based on the snapshot feature of managed disks. If you are using un-managed disks (VHD files in storage accounts) then check out what managed disks offer and how to convert un-managed disks into managed disks. Create Snapshots The method I am using does the following: Create a snapshot from each disk attached to the virtual machine. Create a managed disk from each snapshot. Create a virtual machine from the new OS disk. Add any data disks to the virtual machine. Reboot the virtual machine. Delete the snapshots. Managed disk snapshots are done on a per disk basis. To create a consistent image of the original virtual machine, you must shut it down first (via Azure, not the guest OS). Once the virtual machine is shut down (deallocated), you can create a snapshot of each disk, one at a time. Identify each of the disks of the virtual machine. Then open each disk and click Create Snapshot. Creating a Snapshot of the Virtual Machine’s OS Disk   When you are creating the snapshot, use a descriptive name for... --- ### How Hybrid Use Benefit Reduces Azure VM Costs > This post will explain how Hybrid Use Benefit (HUB) or Azure Hybrid Benefit (AHB) can be used to reduce the cost of Azure virtual machines. - Published: 2018-07-12 - Modified: 2024-09-04 - URL: https://petri.com/hybrid-use-benefit-reduces-azure-vm-costs/ - Categories: Microsoft Azure - Tags: AHB, Azure, Azure Hybrid Benefit, Azure Virtual Machines, Cloud Solution Provider, CSP, HUB, Hybrid Use Benefit, licensing, Software Assurance, Subscription, virtual machines, Windows Server - Article Type: Overview Aidan Finn explains how you can use volume licensing Software Assurance or Cloud Solution Provider subscriptions for Windows Server to reduce the cost of Microsoft Azure virtual machines. In this post, I will explain how you can use volume licensing Software Assurance (SA) or Cloud Solution Provider (CSP) subscriptions for Windows Server to reduce the cost of Microsoft Azure virtual machines.     Understand What You Are Paying For Have you ever notice the below “Save Money” option when creating a Windows Server virtual machine in Azure? Enable Hybrid Use Benefit Discounts for New Windows Virtual Machines in Azure   “Of course, I want to save money,” you might think, click Yes, and not consider what that means. Checking Yes does reduce the cost of the virtual machine but there are licensing pre-requisites to do so. I’ll explain all that in this post. The Cost of a Windows Virtual Machine When you are looking at the regular pricing, referred to as pay-as-you-go, of a Windows virtual machine in Azure, the price includes: CPU RAM Any host RAM used for disk caching The temp drive And the Windows Server operating system It does not include things such as the OS disk or the data disks which are consumed outside of the host (a storage cluster). What the price list hides from you is that under the covers, and even behind the curtains of how Azure billing works, Azure bills you for that Windows virtual machine using two metrics: Compute: The physical components (above) that are consumed from the host to make a virtual machine possible. Operating System: Windows Server. Although... --- ### SharePoint Page Properties Arriving in Targeted Release - Published: 2018-07-11 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-page-properties-arriving-targeted-release/ - Categories: SharePoint Online - Tags: Modern SharePoint Team Site - Article Type: How To Jasper Oosterveld, Modern Workplace Consultant and Microsoft MVP, examines the new Page Property Experience within the Modern SharePoint Experience. You must be aware by now that I am a huge fan of the Modern SharePoint Experience. Is it perfect? Definitely not but the new experience offers many advantages.     For example: Responsive design Improved user experience Integration with Microsoft SharePoint Mobile App These advantages improve the overall user adoption and efficiency for our customers on a daily basis, while working with Modern SharePoint. That said, a key feature in Classic SharePoint, was the ability to work with page layouts. A page layout allowed us to manage the location of web parts (and other components) but also displaying metadata. The location of web parts is currently facilitated by sections. Metadata is finally supported by page properties! Let's take a look, shall we? (more... ) --- ### Demoting a Windows Server 2016 Domain Controller - Published: 2018-07-11 - Modified: 2024-09-04 - URL: https://petri.com/demoting-a-windows-server-2016-domain-controller/ - Categories: Windows Server - Tags: Active Directory, Windows Server 2016 - Article Type: How To In this Ask the Admin, I'll show you how to demote a domain controller and remove the Active Directory Domain Services server role. In this Ask the Admin, I'll show you how to demote a domain controller and remove the Active Directory Domain Services server role.     Most Windows system administrators know how to promote a server to a domain controller. In older versions of Windows Server, this was easily achieved by running dcpromo. In newer versions, you add the Active Directory Domain Services (ADDS) role using Server Manager. Once the role has been added, Server Manager prompts you to complete the process and opens a wizard that guides you through the installation of a domain controller. There are several ways to demote a domain controller. Server Manager offers two ways to achieve this. The first, and maybe most obvious, is to use the Remove Roles and Features command in the Manage menu. If you try to remove the ADDS server role this way, you will be guided through the removal process by a wizard. Another way you can start the process is to click on Local Server in the left of Server Manager and then scroll down to ROLES AND FEATURES on the right. Then right click Active Directory Domain Services in the list of roles and click Remove Role or Feature in the menu. In the Remove Roles and Features wizard, click Server Selection on the left, and then click Server Roles below it. In the list of roles on the right, deselect Active Directory Domain Services. In the pop-up dialog, confirm that you want to remove associated... --- ### Standard SSD Disks Preview for Azure VMs > This post will discuss a new tier of virtual machine storage that was recently went into preview in Microsoft Azure, called Standard SSD Disks. - Published: 2018-07-11 - Modified: 2024-09-04 - URL: https://petri.com/standard-ssd-disks-preview-azure-vms/ - Categories: Cloud Computing - Tags: Azure, Managed Disks, Premium SSD Disks, Standard HDD Disks, Standard SSD Disk, Tiers - Article Type: Overview Aidan Finn discusses a new tier of virtual machine storage that recently went into preview in Microsoft Azure, called Standard SSD Disks. This post will discuss a new tier of virtual machine storage that recently went into preview in Microsoft Azure, called Standard SSD Disks.     Until Now When Microsoft launched Azure IaaS virtual machines in production, it supported VHD-format disks that were stored as page blobs in a storage account. Today we know these as un-managed disks. Originally, these unmanaged disks were only available on physical HDD storage, which is referred to as Standard tier storage. We could expect up to 500IOPS per virtual disk, without host-based caching being enabled, and a certain level of throughput and latency that is normal for HDD storage. After some time, Microsoft added a Premium Tier of un-managed disks based on physical SSD storage. Greater levels of throughput and lower latency were available, and IOPS (based on the VHD file size) improved as the file got bigger, offering (today) up to 7,500IOPS per Premium Tier virtual disk. Last year, Microsoft made a new storage option generally available, called managed disks. Instead of creating and selecting storage accounts to place VHD page blobs into, you just created a disk and Azure would handle the placement behind the scenes. Managed disks are easier to use, offer more management features, and have better levels of availability when used with availability set-member virtual machines. Managed disks come in both the Standard and Premium tiers with the same levels of expected performance as un-managed disks. Managed Standard SSD Disks Microsoft has launched a preview of a new... --- ### How to Dig Deeper Into Your SharePoint Farm - Published: 2018-07-11 - Modified: 2024-09-04 - URL: https://petri.com/dig-deeper-sharepoint-farm/ - Categories: SharePoint, SharePoint 2013, SharePoint 2016, SharePoint 2019, SharePoint Online - Tags: Microsoft SharePoint, migration, Pandas, PowerShell, SharePoint 2019 - Article Type: Overview Want to learn the clean and pretty ways to dig into your SharePoint farm? Here's an easy to follow guide to get the process started. Last week I talked about things you could do to spend your nervous energy while you wait for those tasty SharePoint 2019 bits. This week I thought I’d expound a bit on one of my suggestions. Today I’ll cover my first suggestion, “Get The Lay Of The Land” in a little more depth. Free SharePoint Discovery No one sets out to be a bad SharePoint admin, or to have a bad SharePoint farm. It’s one of those things that happens gradually when you’re not looking because you’re busy with the 1,000 other fires going on in your organization. The printer won’t print. The phones are down. Someone can’t watch the newest virile funny panda video. These are the kinds of things that pop up when you really wish you could be learning more about SharePoint. Between that, and SharePoint and the guidance around it changing as time goes by, things can really get out of whack. While you should also be vigilant about these things, planning for and executing a migration or upgrade is a good inflection point. These events help move the “SharePoint care and feeding” part of your job from the Important column, to the Urgent column. So how do get your arms around this seemingly Herculean task? It’s like the old saying goes, “How do you eat an elephant? One bite at a time. ” When I do SharePoint discovery tasks, I first break them down into two general areas; farm architecture and information architecture. The first, farm... --- ### Microsoft Promotes Windows 10 1803 to SAC For Broad Availability - Published: 2018-07-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-promotes-windows-10-1803-sac-broad-availability/ - Categories: Windows 10, Windows Client OS - Tags: 1803, News, Semi-Annual Channel, Windows 10 - Article Type: News Microsoft is now reccomending that you deploy Windows 10 1803 to all corporate users With Windows 10, Microsoft has moved most of its customers to a semi-annual release cadence. This means that twice a year, the company will approve the consumer release of Windows 10, in this case, 1803, as ready-for-business for all machines in your environment. Windows 10 version 1803 has been approved for the corporate world after the release of KB4338819. The official release date for 1803 was July 10th but the targeted release was announced back on April 30th. Microsoft, of course, recommends that you begin rolling out this release to your environment as soon as possible but if you have not previously tested it for compatibility, it's best to do so even if 1709 installed without any issues. Best practices for this type of deployment is to create a targeted ring inside your company to test the latest release of Windows 10 as they become available to the general public. Then, once Microsoft promotes the build to the Semi-Annual Channel (SAC) for broad availability like they have done today, you should begin rolling it out to users across your environment. Of course, this all sounds easy on paper and assumes that there are minimal compatibility issues between each release but as we have seen, this rapid release cadence is creating frustration among IT Pros who now have to dedicate more time to maintaining Windows than they had to with Windows 7. --- ### Resisting Business Email Compromise Attacks on Office 365 Users > Recent news (or FUD) about an "undocumented" Office 365 API got the security world in a tizzy, but in reality it's likely just part of the Graph. BEC - Published: 2018-07-10 - Modified: 2024-12-03 - URL: https://petri.com/resisting-business-email-compromise-attack-office-365/ - Categories: Microsoft 365, Office - Tags: BEC, Business Email Compromise, Cloud App Security, CloudStrike, Management API, Microsoft Graph, Office 365, Security - Article Type: Opinion Recent news (or FUD) about an "undocumented" Office 365 API got the security world in a tizzy, but in reality it's likely just part of the Graph. What's more important is to help tenant administrators understand how to harden their tenant against Business Email Compromise (BEC) attacks. As it turns out, there are many different things you can do, if you want to. Some Security FUD About an Undocumented API Last week I discussed how to use the Office 365 edition of Microsoft Cloud App Security (CAS) to gain greater insight into the security profile of an Office 365 tenant. If you already have Office 365 E5 subscriptions, using CAS is a no-brainer because it is included in your plan. If not, CAS is available as an add-on for $36/user/year and all accounts in the tenant need to be licensed to make the CAS analytics effective. Since I wrote the article, several people have asked me about the “undocumented” API for Outlook mailbox activity reported in a blog written by a security forensics company called CloudStrike on June 18. Apparently, the security community discovered the new API through a video posted by the Anonymous hackers on June 8 revealing an API called Activities. Different security commentators took up the story to create some hype (here’s an example). Most of what I read was good old-fashioned FUD. Activities Are Recorded by Office 365 Let’s consider what’s going on here. Microsoft has been quite clear that it gathers information about user activities within Office 365. Tenants can control whether administrators can search the audit log, but the same article makes it clear that “If you turn off audit log search in Office 365, you can still use the Office 365 Management Activity API to access auditing data for your organization. ” In other words, disabling the audit log search doesn’t stop Microsoft gathering activity... --- ### Modernizing IT with Hyperconverged Infrastructure and the Hybrid Cloud - Published: 2018-07-10 - Modified: 2024-09-04 - URL: https://petri.com/modernizing-it-with-hyperconverged-infrastructure-and-the-hybrid-cloud/ - Categories: Cloud Computing, Hybrid Cloud - Tags: Backup, Cloud, cloud computing, Disaster Recovery, hybrid cloud - Article Type: Overview See how businesses are modernizing their IT infrastructure with HCI and the hybrid cloud to make for a more stable computing environment. Today, many businesses are in the process of modernizing their IT infrastructure and two of the most popular technologies that business are moving toward are hyperconverged infrastructure and the hybrid cloud. Both of these technologies offer the promises of revolutionizing and updating your IT infrastructure with simplified operations and greater flexibility. Hyperconverged Infrastructure Hyper-converged infrastructure (HCI) has become a mainstream option for both the tier 1 and tier 2 workloads that IT administrators have typically virtualized on traditional three-tier architectures. A recent study by 451 Research showed that more than 40 percent of surveyed businesses have already deployed HCI. HCI enables a business to reduce the complexity found in today’s three-tier architecture where the compute, storage and networking are often provided independently and many times from completely different OEMs. HCI can vastly simplify your on-premise IT infrastructure by combining your compute, storage, networking and virtualization into a cluster of 2U appliances that are designed to work immediately right out of the box. You can scale HCI simply by adding more nodes to the cluster.  HCI eliminates the need for complex and expensive SANs by pooling together the storage from all of the different appliances. Data is duplicated to different nodes to provide built-in availability. Extending HCI with the Hybrid Cloud Many businesses have also extended their on-premise HCI using the hybrid cloud. Most companies have gotten over their initial reluctance to embrace cloud technologies as they have realized that the cloud is essentially just someone else's computer and infrastructure and... --- ### The Delve People Profile: A Sad State of Affairs - Published: 2018-07-10 - Modified: 2024-09-04 - URL: https://petri.com/delve-people-profile-sad-state-affairs/ - Categories: Microsoft 365 - Tags: Delve, Office 365 - Article Type: Opinion Jasper Oosterveld, Modern Workplace Consultant at InSpark and Microsoft MVP, examines the state of the Delve Profile Page. April 14th 2015, this is the day the Delve People Profile was introduced by Microsoft. The new experience was very welcome due to the old SharePoint 2010 experience still being used within Office 365. We were ready for a new look, new feel, and new features. Move forward three years. Apart from a couple minor changes, being able to edit default profile properties within the profile page, not much has changed. Three years later the Delve Profile Page feels abandoned by Microsoft. Let's start and take a look at what the Delve People Profile currently has to offer.     (more... ) --- ### Hands-On: Microsoft's Surface Go - Published: 2018-07-09 - Modified: 2024-09-04 - URL: https://petri.com/hands-on-microsofts-surface-go/ - Categories: Hardware - Article Type: Overview Microsoft has announced a new member of the Surface family and I got to spend a little bit of time with the new Surface tablet.  Two weeks ago, Microsoft invited me to NYC to take a look at the newest addition to the Surface family, the Surface Go. The tablet is an entry-level device designed for firstline, education, and the consumer markets with a starting price of $399. When you first look at the device, if it reminds you of the Surface 3, that shouldn't be a big surprise. It falls into exactly the same category, has similar external measurements, and has everything you would expect in a Surface 4 but with a new name. In your hand, the device feels like nearly every other Surface hardware to date. It has that premium feel to it that gives you the confidence that this device will stand the test of time as long as you treat it well. But the only thing that matters with this device is the performance of the CPU which is an Intel Pentium Gold Processor 4415Y. This CPU sits below the Core class and in my limited time using the hardware, it was adequate for basic tasks like browsing the web and working with Office apps. That being said, this is far from an in-depth look at the performance of the hardware and I'll have more on this once I get my hands on a review device. The kickstand uses the same mechanism as the Surface Pro which means you have significantly more versatility in the positioning of the device unlike the Surface 3 which had fixed positions... . --- ### Surface Go: Microsoft's Entry Level Tablet Arrives in August for $399 - Published: 2018-07-09 - Modified: 2024-09-04 - URL: https://petri.com/surface-go-microsofts-entry-level-tablet-arrives-in-august-for-399/ - Categories: Hardware - Tags: Microsoft, News, Surface, Surface Go - Article Type: News Microsoft has a brand new entry-level Surface tablet called the Go and it starts at $399 when it becomes available later this year.  Microsoft is about to lower the entry point to the Surface family with a new product called the Surface Go. This entry-level tablet is targeted at firstline workes, education, and consumers with a starting price of $399 with availability in early August. The device, which is the spiritual successor to the Surface 3, has a 10in display with an 1800x1200 resolution, 4GB of RAM, 64GB of storage (8GB of RAM with 128GB/256GB is available with a proper SSD) a Pentium Gold 4415Y CPU, USB-C, Micro SDXC card reader, headphone jack and the Surface Connect port for charging and expansion; there is also a Windows Hello camera included and TPM 2. 0 as well. The company also has a new Type cover for the hardware which brings several improvements over the last iteration of the Surface 3, namely a significantly improved trackpad. If you take a look at the keyboard, Microsoft has included a trackpad large enough to hold an Olympic-sized swimming pool with full support for gestures as well. Microsoft is claiming 9hrs of battery life but their test for this metric is purely for video playback. While I have not fully tested the battery on the Surface Go, I would put real-world usage at around 6 hrs based on my experience with other Surface devices. By lowering the entry level pricing of the Surface family to $399, this opens the door to more usage scenarios where I higher-powered device is not needed. Specifically, with firstline workers or the education segment,... --- ### Managing Windows Server with Puppet Part 7: Installing Active Directory - Published: 2018-07-09 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-server-with-puppet-part-7-installing-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Configuration Management, PowerShell DSC, Puppet, Windows Server - Article Type: How To In this Ask the Admin, I'll show you how to install and configure Active Directory using Puppet. In this Ask the Admin, I'll show you how to install and configure Active Directory using Puppet.     It has been a while since I wrote the previous installment of this series, so in case you need a refresher, here are links to the other articles available on Petri. If you’re not familiar with Puppet, PowerShell DSC, or configuration management in general, I recommend reviewing the articles to get a grip on the concepts. Managing Windows Server with Puppet Part 1: Configure Puppet Master and Bootstrap the Puppet Agent in Windows Server Managing Windows Server with Puppet Part 2: Log in to Puppet Master, Accept Node Certificate, and Test Connectivity Managing Windows Server with Puppet Part 3: Install Modules and Edit the Site Manifest Managing Windows Server with Puppet Part 4: Working with Files and ACLs Managing Windows Server with Puppet Part 5: Managing Local Users and Groups Managing Windows Server with Puppet Part 6: Installing, Updating, and Removing Software Before following the instructions in this article, you should also be familiar with installing Active Directory. For more information, see Install Active Directory on Windows Server 2012 with Server Manager on Petri. Using DSC and Puppet to Install Active Directory First, let’s talk about the good news. Installing and configuring Active Directory using Puppet doesn’t differ much from using PowerShell DSC. In fact, the DSC code just needs a little tweaking to work in Puppet. The manifest will use three DSC resources: file, windowsfeature, and xaddomain. The... --- ### Paul Thurrott's Short Takes: July 6 - Published: 2018-07-06 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-6/ - Categories: Hardware, Mobile - Tags: News - Article Type: Overview Because there were two Mondays in this holiday-shortened week, this edition of Short Takes looks at Microsoft's Androme-drama, a rumored low-cost Surface tablet, slowing growth at Samsung, Apple's many App Store successes, and more. Andromeda. So close. And yet so far. Because there were two Mondays in this holiday-shortened week, this edition of Short Takes looks at Microsoft's Androme-drama, a rumored low-cost Surface tablet, slowing growth at Samsung, Apple's many App Store successes, and more. Oops, maybe Microsoft won't even release Andromeda Bad news, Microsoft enthusiasts: A recent report from the reliable Mary Jo Foley has cast the cold water of reality on theories that Microsoft is set to re-enter the mobile market with a dual-display device code-named Andromeda. This product, she says, will not ship in 2018, as enthusiast blogs recently insisted, and it may not ship at all. Why, you ask? Well, the software isn't ready for starters. But the most obvious reason is even more practical: Without a supporting ecosystem of apps and content, Andromeda, like Windows phone, Windows Mobile, and Windows 8 before it, is DOA. "There's still no compelling reason for Microsoft to come to market with its current iteration of a small, dual-screen mobile device," Foley explains. Exactly so. As I've noted many times, "But it just sounds cool" is not reason enough to ship hardware. "Fewer than 22 percent of Microsoft employees believe the company should sever ties with ICE" Told you so. Microsoft's rumored iPad competitor could launch soon Details about a $400 Microsoft Surface tablet are leaking all over the place, suggesting that it could launch soon. Among the rumors: It's based on a Pentium chip, features a 10-inch... --- ### Google Announces Firestore Security Rules Simulator - Published: 2018-07-06 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-firestore-security-rules-simulator/ - Categories: Backup & Storage, Cloud Computing - Tags: Database, Firestore, Google, News, Rules, Security, Simulator - Article Type: News Google recently introduced the Firestore Security Rules Simulator - a new tool that developers and administrators can use to write and test security rules for Google’s Cloud Firestore database in a quick and efficient manner. When storing and working with company or user data, it can be a challenge to ensure that it is safe and secure. Whether it be keeping outsiders with malicious intent away from the data or simply making sure that only employees who require access to the data have it, there is a lot of work that goes into developing and testing security rules and procedures.     As a way to make this process easier, Google recently introduced the Firestore Security Rules Simulator. This is a new tool that developers and administrators can use to write and test security rules for Google’s Cloud Firestore database in a quick and efficient manner. Previously, those writing and testing Firebase security rules had no choice but to actually deploy the rules and then run tests against them once they were live. If any of the rules didn’t function as expected, they would then have to be edited, re-deployed, and then re-tested in a process that was both tedious and time-consuming. However, with the introduction of the Firestore Security Rules Simulator, developers are now able to write security rules and test them against their actual Firestore databases from right within the Firebase console. And perhaps the best part about this new tool is that testing can be done without having to actually deploy the rules to an actual Firestore database. Some of the functions that developers can write rule tests for include document reads, writes, and deletes, all of which can be... --- ### Storage Explorer Preview in the Azure Portal > This post will discuss the preview release of Microsoft’s Storage Explorer for Azure storage which is built into the Azure Portal. - Published: 2018-07-06 - Modified: 2024-09-04 - URL: https://petri.com/storage-explorer-preview-azure-portal/ - Categories: Microsoft Azure - Tags: Azure, Azure Files, Azure Portal, Azure Storage Explorer, BLOB, Queues, storage - Article Type: How To This post will discuss the preview release of Microsoft’s Storage Explorer for Azure storage, which is built into the Azure Portal. This post will discuss the preview release of Microsoft’s Storage Explorer for Azure storage, which is built into the Azure Portal.     Azure Storage Explorer An Azure operator or administrator might find that they want to interact with data or containers in a storage account in a GUI-based tool that the usual Azure Portal interface doesn’t allow. Microsoft provides, free of charge, the Azure Storage Explorer, which you can download/start from the Azure Portal when browsing a storage account. The Azure Storage Explorer on Windows   The tool is extremely useful: Upload/download files Open blobs directly from Azure Copy/paste blobs Rename blobs Manage snapshots And much more Sometimes you won’t have a tool installed and you just want to get a job done. The Azure Portal has been offering some services like this in the recent past, such as the Cloud Shell for Azure PowerShell/CLI commands. And now, a preview for an Azure Portal version of Storage Explorer has been added. Storage Explorer Preview in the Azure Portal You can find Storage Explorer in the settings of the storage account in the Azure Portal. Clicking this will open a basic version of the desktop tool. Storage Explorer Preview in the Azure Portal   You can use the Azure Portal version of Storage Explorer with blob, file share, and queue storage. You can do the following with blob (file) storage: Browse blobs Upload and... --- ### Preview of WORM Storage Added To Azure > This post will discuss and demonstrate the new write once-read many (WORM) blob storage feature that Microsoft recently launched in preview. - Published: 2018-07-06 - Modified: 2024-09-04 - URL: https://petri.com/preview-worm-storage-added-azure/ - Categories: Microsoft Azure - Tags: Archive, Azure, BLOB, Immutable Blob Storage, Legal Retention, storage, Tiering, WORM - Article Type: How To Aidan Finn discusses and demonstrates the new write once-read many (WORM) blob storage feature that Microsoft recently launched in preview. This post will discuss and demonstrate the new write once-read many (WORM) blob storage feature that Microsoft recently launched in preview.     More Cheaper Storage Many organizations around the world have a legal, regulatory, or compliance requirement to retain data in an immutable form. You might have, for example, been on the phone with call center and told that your call “might” be recorded for training purposes. In a past life in the finance world, the IT department that I was a part of maintained a storage system for digitally recording paper contracts on laser discs. Normal disk storage was not accepted by courts as proof of an unmodified contract but WORM storage with write-only PDF scans was. As you can imagine, phone calls, contracts, and the many kinds of data that pharmaceutical, banking, legal, and many more organizations can generate is huge. Keeping that data on-premises is a big expense that can impact profits, but more likely impacts the bottom line of clients. Cloud storage is much more cost-effective and Azure blob storage is a very cost-effective way to store data in the cloud; blob storage is low cost and moving blobs (files) to cool or archive tiers can bring down the cost even more! The problem with blob storage is that it has not been capable of WORM storage and blobs (file) can be deleted before they should be ... until now. Immutable Blob Storage A new policy for a blob (file) storage container (folder) called... --- ### 5 Things You Can Do to Prepare for your SharePoint 2019 Migration - Published: 2018-07-05 - Modified: 2024-09-04 - URL: https://petri.com/5-things-can-prepare-sharepoint-2019-migration/ - Categories: Hybrid Cloud, Microsoft 365, SharePoint, SharePoint 2016, SharePoint 2019, SharePoint Online - Tags: migration, Office 365, SharePoint 2019 - Article Type: Overview Upgrading, even for the best of environments, always has a surprise or two in store, even for the most vigilant admin. Getting a good idea what’s going on in your farm right now is one of the best things you can do to improve your changes of a successful, less stressful upgrade when SharePoint 2019 comes around. Ever since Microsoft officially announced SharePoint Server 2019 at the SPC NA conference in May, I have been getting a lot of questions about it. Lots of questions about what it will do, how best to leverage it, which side the cog will be on this time around, things like that. As a long time on-prem server guy it does my heart good to see so much interest in it. The biggest questions I've gotten though, have been around how and when to roll it out. While I appreciate the enthusiasm, a little more patience might be in order. However, as an impatient person myself I can empathize, so this week I’m going to tell you about 5 things you can to start getting ready for SharePoint 2019. This article is mainly just an appetizer to whet your appetite, we’ll cover all of these activities in greater depth in later articles. 1) Get the Lay of the Land Upgrading, even for the best of environments, always has a surprise or two in store, even for the most vigilant admin. Getting a good idea what’s going on in your farm right now is one of the best things you can do to improve your changes of a successful, less stressful upgrade when SharePoint 2019 comes around. There are a variety of methods and tools you can use to do that, and we’ll cover many of them in a later article. 2) See How it Matches Your Plan Mike Tyson... --- ### Diving Deeper into Office 365 Audit Data with Cloud App Security > Office 365 generates lots of audit data. Some of the data seems a little strange, and we need some help to understand it. Office 365 Cloud App Security - Published: 2018-07-05 - Modified: 2024-09-04 - URL: https://petri.com/office-365-audit-data-cloud-app-security/ - Categories: Microsoft 365, Office - Tags: Audit, CAS, Cloud App Security, Office 365 - Article Type: How To Office 365 generates lots of audit data. Some of the data seems a little strange, and we need some help to understand it. Office 365 Cloud App Security helps, but at a considerable cost. Do you need the extra insight provided by Cloud App Security? That's a decision you must make. Strange Entries in the Office 365 Audit Log After I wrote about using data from the Office 365 audit log to analyze sharing behavior, fellow MVP Vasil Michev pointed out some strange audit entries related to sharing activities that deserved some further investigation. The entries show up as UserLoggedIn events. Normally, these events include the name of the user or guest who signs into a tenant, but in this case the events have “Unknown” as the user identifier. A quick scan of the event log in my tenant revealed 72 entries of 5,000 log-in events registered as coming from the mysterious Unknown user. The Search-UnifiedAuditLog cmdlet returns a maximum of 5,000 events, so there might have been more had I cared to check further. Ingestion from Many Sources The Office 365 audit log ingests records from many different workloads. During this process, the records are normalized to make sure that all events have some common fields. A set of schemas govern the common fields created for all workloads and the fields specific to each workload. This is a sensible approach because the audit information generated for a document-centric event such as the creation of a new document is different to an event like the creation of a new group. The downside of the normalization process is that some interesting information captured by a workload might not make it into the Office 365 audit log. And that’s just what happened here. This becomes important when we investigate events that... --- ### How To Use The DISM Command to Repair Windows 10: A Step-By-Step Guide > Learn how to use the DISM command in Windows 10 and Windows 11 to troubleshoot and fix common issues with your Windows operating system and key system files. - Published: 2018-07-05 - Modified: 2024-06-06 - URL: https://petri.com/fix-corrupt-system-files-using-dism/ - Categories: Windows - Tags: CHKDSK, DISM, file corruption, System File Checker, Windows 10, Windows Server - Article Type: How To In this Ask the Admin, I'll show you how to fix corrupt system files when System File Checker isn't up to the job. Learn how to use the DISM command in Windows 10 and Windows 11 to troubleshoot and fix common issues with your Windows operating system and key system files. Follow our step-by-step guide to learn all about System File Checker (SFC), DISM, and to gain some knowledge about what your 'local Windows image' is. What is the DISM command used for? DISM stands for Deployment Image Servicing and Management. This is a command-line tool used to create, modify, or repair system images, including Windows 10 and Windows 11. It is used for various types of Windows system images including the Windows Recovery Environment, Windows Setup, and Windows PE (WinPE). The system image is referenced whenever routine checks on system files are performed. There are a few utilities included in Windows that allow you to scan your system for any potential data corruption. Let me explain how this works in the next section. How do I scan my Windows system for errors? There are two main command-line utilities included in Windows to scan the local system for any corruption of key system files. These include all the files to maintain Windows and its robustness. These utilities are often used as a first step in troubleshooting general issues with Windows. Using SFC to scan for errors If your Windows system is having trouble booting or if you're trying to resolve a specific error, you can try the SFC command tool. The System File Checker will scan the integrity of all protected system... --- ### Google Announces Cloud Filestore - Published: 2018-07-05 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-cloud-filestore/ - Categories: Cloud Computing - Tags: Cloud Filestore, file system, Google, Google Cloud Platform, News, storage - Article Type: News Google recently announced the coming beta of Cloud Filestore. This is a new service that will provide customers with managed storage with a shared file system interface. In a recent post on the Google Cloud Platform blog, Google announced the coming beta of Cloud Filestore. This is a new service that provides customers with managed storage with a traditional shared file system interface.     Cloud Filestore will provide high performance, low latency storage but with a file system interface, rather than an abstract or object-based database that many other current cloud products offer. This is done by setting up fully-managed network attached storage, or NAS, that can be used in conjunction with Google’s Compute and Kubernetes Engine services. Google’s Cloud Filestore will be offered in both Standard and Premium tiers. The Standard tier will cost $0. 20 per GB per month and will provide a maximum throughput of 180MB per second and a maximum IOPS of 5,000. The Premium tier will cost $0. 30 per GB per month and will provide a maximum throughput of 700MB per second and a maximum IOPS of 30,000. Both service tiers will provide a maximum capacity of 64TB per share, use the third version of the Network File System protocol (NFSv3), and offer a typical customer availability of 99. 9 percent. Given the high throughput and low latency of this new service, it can be ideal for storing and retrieving large amounts of unstructured data with some examples including audio and video editing or web hosting. Organizations could also utilize Cloud Filestore for research and development purposes, especially those that involve the analysis of a large number of files. Those who... --- ### OpenSSH Comes Out of Beta in Windows April 2018 Update - Published: 2018-07-03 - Modified: 2024-09-04 - URL: https://petri.com/openssh-client-comes-out-of-beta-in-windows-april-2018-update/ - Categories: Windows Client OS - Tags: OpenSSH, PowerShell, PowerShell Remoting, remote administration, Secure Shell, Security, Windows 10, Windows Server - Article Type: How To In this Ask the Admin, I'll show you how to get started with the OpenSSH client in the Windows 10 April 2018 Update. In this Ask the Admin, I'll show you how to get started with the OpenSSH client in the Windows 10 April 2018 Update.     Microsoft has quietly been integrating an OpenSSH client and server into Windows 10 and Windows Server over the last year. Without much fanfare, both client and server came out of beta along with the Windows 10 April 2018 Update. As of Windows 10 version 1803, the OpenSSH client is installed by default. But if you want to use the server component, you’ll need to manually install it. The addition of OpenSSH in Windows is intended to make it easier for system administrators who manage hybrid Windows/Linux environments. SSH is also the default remoting protocol in PowerShell Core (PowerShell 6). WinRM remains the only supported remoting protocol in Windows PowerShell. SSH allows true multiplatform remoting in PowerShell Core but in the current release, Core doesn’t support all the features of WinRM. One missing feature is Just Enough Administration (JEA), so you can’t configure constrained endpoints. Although Microsoft does have JEA on its roadmap. For more information on using PowerShell Core, see Managing Linux, Windows, AWS, and Azure Using PowerShell Core Part 1: Installing PowerShell Core and Modules for Azure and AWS and Managing Linux, Windows, AWS, and Azure Using PowerShell Core Part 2: PowerShell Remoting Over SSH on Petri. OpenSSH Client Let’s start by looking at the client. Unlike popular SSH client Putty, the OpenSSH client in Windows is only accessible from the command... --- ### Office 365 Video Transition to Stream Coming. Are You Ready? > If you use Office 365 Video today, you will use Stream in the future. The migration is happening - slowly. But when it does, you can use Office 365 Groups - Published: 2018-07-03 - Modified: 2024-09-04 - URL: https://petri.com/office-365-video-transition-stream/ - Categories: Microsoft 365, Office - Tags: migration, Office 365, Stream, video - Article Type: News If you use Office 365 Video today, you will use Stream in the future. The migration is happening - slowly. But when it does, you can use Office 365 Groups to organize videos into mini-portals and take advantage of some interesting "intelligent" features to better use content in videos. The only downside is that you'll have to pay a little more. Stream Migration Coming Slowly In June 2017, I noted that Stream, Microsoft’s video sharing and management service for consumers and businesses, had reached General Availability (GA). One year later, Office 365 tenants wait for solid details about how they will transition from Office 365 Video to Stream. Microsoft hasn’t updated the documentation covering migration since February 2018. Apparently, we are in a phase when only certain tenants in specific datacenter regions are moving video to the new platform. Later, when Microsoft has taken care of any glitches, we move to a “tenant opt-out” phase when administrators can choose to stay with Office 365 Video, and then to “automatic transition,” when switching happens without further notice. Functionality Gaps One of the biggest gaps that still exist in Stream is the lack of support for enterprise search. Not only does this stop tools like Delve finding videos, it prevents content searches unearthing this content too. That’s a huge gap in an era when compliance and data governance are critical. Stream works with or without Office 365, so this creates some added technical difficulties for engineering that might be slowly progress. Other highlighted gaps include a lack of a REST (Microsoft Graph) API for Stream and no support for software-defined networking (SDN) for video caching. Although an update was given in the Microsoft Technical Community last January, Microsoft has been quiet since. Stream Audit Records On the upside, Stream now logs audit events in the Office 365 audit log (Figure 1),... --- ### Happy 10th Birthday Hyper-V! - Published: 2018-07-02 - Modified: 2024-09-04 - URL: https://petri.com/happy-10th-birthday-hyper-v/ - Categories: Virtualization - Tags: Azure, Hyper-V, Red-Dog, Semi-Annual Channel, Viridian, W2008, W2008 R2, Windows Admin Center, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, WS2012, WS2012 R2, WS2016, WS2019 - Article Type: Opinion On February 19, 2003, Microsoft announced that the corporation has acquired a privately held virtualization vendor called Connectix. It might not have seemed like it then, but this acquisition was the genesis of something huge in the IT world, and I’m not limiting that to just Hyper-V. In this post, I will look back on the history of Hyper-V, and look to the future of Microsoft’s virtualization. Happy 10th Birthday Hyper-V It All Started With An Acquisition On February 19, 2003, Microsoft announced that the corporation has acquired a privately held virtualization vendor called Connectix. It might not have seemed like it then, but this acquisition was the genesis of something huge in the IT world, and I’m not limiting that to just Hyper-V. Two Connectix products, Virtual PC and Virtual Server, were brought into the Microsoft portfolio. After brief betas, both products were made available ... for purchase. At the time, I was running the Microsoft infrastructure for an international finance company. I found myself needing more capacity for underutilized hardware, and virtualization made sense. My test lab, a duplicate of core production systems, ran on the beta of Virtual Server 2005 and I used Virtual PC on our desktops for smaller scale work such as application distribution. On day 1 of general availability, I contacted our licensing provider and bought 2 copies of Virtual Server and 3 copies of Virtual PC – one of those Virtual Server copies went into production and we started a re-deployment of physical machines to a single host. Microsoft went on to make Virtual Server and Virtual PC free products. Virtual Server 2005 R2 was released and Virtual Server 2005 R2 SP1 followed. These products filled a gap... --- ### Microsoft's Making Golf (Even) More Enjoyable to Watch - Published: 2018-07-02 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-golf-even-enjoyable-watch/ - Categories: Cloud Computing, Microsoft Azure - Tags: Data, Golf, Microsoft - Article Type: News Microsoft and the PGA Tour have teamed up to help uncover new insights using all the data collected during each golf tournament. On nearly any Sunday during Golf season, you can find me parked on a couch in front of a TV watching the leaders wrap-up the back nine. And if it's a large tournament, that couch-riding may start on Thursday afternoon. So when Microsoft tells me that they are using their AI to help improve the game, it's a pitch made in heaven. Golf is a data-intensive sport and if you are not familiar with the game, here's why. The goal of golf to put that little white ball into the small hole but depending on the wind, club selection, ball construction, and my awful swing, this will determine how it flies through the air. Because professional golfers have a very consistent swing (mine is about as stable as a jello mold) means that they can use data to help them find the perfect shot and swing combination to hopefully land a ball on the green depending on the conditions of that day. We see an analog version of this data tracking with the yardage books that golfers carry but on the other side of the coin, the PGA Tour is also tracking golfers shots. With dozens of players playing in each tournament and roughly 65 shots per golfer per round of golf, the data adds up very quickly. For presenters, you can use this data to help tell a story about a shot such as the exact swing and club setup Sergio Garcia used to rack up an... --- ### Everything You Need to Know About Windows -- June 2018 - Published: 2018-06-29 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-june-2018/ - Categories: Windows Server - Tags: Microsoft Edge, Microsoft Intune, MSIX, Windows 10, Windows Insider, Windows Server 2019 - Article Type: News This month sees Microsoft hold its first virtual Windows Server Summit with lots of news about upcoming features. Plus, Sets disappear from the latest RS5 Insider build and Microsoft is using AI to drive the Windows 10 April 2018 Update rollout. This month sees Microsoft hold its first virtual Windows Server Summit with lots of news about upcoming features. Plus, Sets disappear from the latest RS5 Insider build and Microsoft is using AI to drive the Windows 10 April 2018 Update rollout.   Windows 10 June Cumulative Update Causes Intune Woes Enterprise system administrators have been reporting that this month’s Patch Tuesday cumulative update (CU) for Windows 10 is causing some PCs to unregister with Microsoft’s Mobile Device Management (MDM) service Intune. When PCs unenroll from Intune, managed apps and VPNs are also removed from users’ devices. Microsoft is aware of the issue and is currently working to resolve it. A second CU was released for Windows 10 version 1803 26th June, but the Intune issue isn’t listed as resolved. Until Microsoft finds the root cause of the problem, it could be that June’s CU update for Windows 10 isn’t to blame. AI Takes Control of Windows 10 April 2018 Update Rollout Microsoft reported this month that it is using Artificial Intelligence (AI) to drive the rollout of the Windows 10 April 2018 Update. According to a post on the Windows Blog, AI is being used at scale for the first time to greatly improve the quality and reliability of the rollout by intelligently selecting devices that feedback telemetry indicates would experience a good upgrade experience. The post explains that AI/Machine Learning was first piloted with the Windows 10 Fall Creators Update. A model was trained using data that... --- ### Everything You Need to Know About SharePoint -- June 2018 > This month read about SharePoint and Teams joining forces, new PowerShell, a SharePoint Starter Kit, and how Repeating Tables have finally been solved. - Published: 2018-06-29 - Modified: 2024-11-19 - URL: https://petri.com/everything-need-know-sharepoint-june-2018/ - Categories: SharePoint - Tags: InfoPath, Microsoft Teams, OneDrive, Powerapps, SharePoint - Article Type: News This month, we are going to cover the SharePoint announcement with a little summertime flare. Anybody else needing a vacation? I sure do. The summer is flying by. The good news is I am writing this while I am waiting on my tee time to come. Golf is wonderful. Anyway. This month, we are going to cover the SharePoint announcement with a little summertime flare. On to the show...     The SharePoint Starter Kit – Great Tool, Misleading Name The awesome team at the SharePoint PNP team just released the SharePoint Starter Kit. This is an amazing set of tools but a terrible name. Why? Because the name implies it is for someone starting out with SharePoint. That isn’t the case. It is more like for someone starting out with Group sites, Hub sites, SPFX, and a bunch of the other cool new pieces. Don’t get me wrong, I love the kit, I just don’t want you to dismiss it based on its name. I also will give you a gentle reminder. The solution is meant to put everything into action and show you what is possible, use it in a sandbox. It is not meant to be your production SharePoint environment. You can steal pieces (like the web parts) and put them in your tenant but please don’t deploy the whole thing and customize it to make your intranet. Please. If you want an intranet in a box, there are vendors for that. This ain’t that. Please, remember the children and the Fab 40. Oh yeah, and it is open source,... --- ### Everything You Need to Know About Office 365 –- June 2018 > Catch up on everything you need to know about Office 365 for June 2018. Topics include GDPR security, OneDrive, Teams, and more. - Published: 2018-06-29 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-office-365-june-2018/ - Categories: Microsoft 365 - Tags: DNS, exchange, GDPR, Microsoft Teams, Office 365 - Article Type: News This month's updates cover some GDPR stuff, Teams reminding me that it is important, and some other fun tidbits. Good news for you? I kept the snark to a minimum. You are welcome. Can you believe that June is over, meaning the year is halfway over? OMG. Where does the time go? Hopefully, it went to the beach where we should all be. This month's updates cover some GDPR stuff, Teams reminding me it is important, and some other fun tidbits. Good news for you? I kept the snark to a minimum. You are welcome.     New GDPR Sensitive Information Types I thought we were done with GDPR news. I guess not. This month, Microsoft announced new built-in sensitive information types to help you with your data governance and data protection policies bringing the grand total up to 87 types. Yikes, who knew there was so much sensitive info. The new types include EU Passport, driver’s license numbers, and a bunch of others that sound like the equivalent to the US social security number. For more information, read the announcement here. Microsoft Teams Can Now Be Archived Last month, I gave the opinion that investing some time in teams would be good for all of us. I got some reader feedback that agreed. Yay me! More proof we should know more is hot off the presses. Microsoft just announced that it is bringing archiving to Teams. That sounds like the more serious types thought of a tool they want to be around for the long term. So one of you go learn all of the Teams stuff and then teach me. Please? OneDrive Message Center Gets an Update Turns out... --- ### Paul Thurrott's Short Takes: June 29 - Published: 2018-06-29 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-29/ - Categories: Cloud Computing, Windows 10 - Tags: News - Article Type: Overview Because it's the Dog Days of Summer, this week's edition of Short Takes looks at non-controversial controversies, Azure getting a case of the vapors, Microsoft re-Setting expectations on Windows 10, and much more. Because it's the Dog Days of Summer, this week's edition of Short Takes looks at non-controversial controversies, Azure getting a case of the vapors, Microsoft re-Setting expectations on Windows 10, and much more. Microsoft's non-controversial controversy of the week Microsoft would have to work pretty hard to out-do last week's incredible ICE controversy, and here's some good news. They didn't, and this week's Microsoft controversy barely rates: The firm has quietly ended support for Windows 7 running on older PCs. To be fair, this did trigger an outcry of sorts online, but then what doesn't these days? Truth: The PCs that are no longer supported are Pentium III- and 4-based PCs that support the ancient SSE2 floating point capabilities. So it's not like we're talking about a PC that anyone should be using anymore. They're not a decade old. They're over 15 years old. It's time to upgrade, folks. "Microsoft Teams coming to U. S. Government Cloud users" Because our government isn't inefficient enough already. Microsoft Azure goes down for the count in northern Europe The data center that serves Microsoft's Azure customers in northern Europe went offline for 11 hours this week. Any outage is bad and even potentially news, but it's the reason for this outage that I find most interesting: It was too hot. In Ireland. Which is where the data center is. And by "too hot," I mean 64 degrees, which I think anyone would describe as both "pleasant" and "a bit on the cool... --- ### Everything You Need to Know About Azure Infrastructure -- June 2018 > This post is a summary of all the Azure infrastructure (IaaS) news from Jun e 2018, covering virtual machines, networking, storage, security, and more. - Published: 2018-06-29 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-azure-infrastructure-june-2018-edition/ - Categories: Microsoft Azure - Tags: ASR, Availability Zones, Azure, Azure Backup, Azure Monitor, Azure Portal, Azure Site Recovery, Azure SQL, BLOB, Disaster Recovery, DR, ExpressRoute, GDPR, IaaS, linux, MySQL, PostgreSQL, PowerShell, Project Natick, scripts, Security, Security Center, SQL Server, Standard SSD, storage, vhd, Virtual Network, VPN - Article Type: Overview We’re entering the laid-back days of Summer. There isn’t much Azure IaaS news, but we’re after quality, not quantity.  June was a good news month for those of us using Microsoft Azure. We’re entering the laid-back days of Summer. There isn’t much Azure IaaS news, but we’re after quality, not quantity.   June was a good news month for those of us using Microsoft Azure.   Standard SSD Disks The news of Standard SSD disks caught quite a few people by surprise. This new kind of managed disk is intended to replace Standard HDD disks for Azure virtual machines when running low-level workloads. Standard SSD disks are in preview today, running only in a few regions to begin with, and spreading over time. With Standard SSDs we will have the following kinds of managed disk: Standard HDD: Intended for ... I don’t know, as you’ll see in a moment. Standard SSD: For workloads where you do not need high IOPS. Premium SSD: Higher IOPS and throughput than Standard disks, and offer a 99. 5 percent SLA for single virtual machine services. You’re probably thinking, “I bet Standard SSD is a play to get more money from me. " You’d be wrong! The pricing shows that Standard SSD disks are cheaper than Standard HDD disks. This is probably because HDD disks cost much more to run and every penny save on electricity lowers the precious PUE measure for Microsoft. You won’t get any more IOPS with Standard SSD over Standard HDD, but you will get: Smoother levels of performance Lower latency Microsoft states that Standard HDD will continue for backup workloads. I’d question that. I have Azure Backup. Plus, the SSD option is cheaper... --- ### Create InfoPath Repeating tables for SharePoint with PowerApps > Do you need to create Repeating Tables like you had in InfoPath? Then read this to learn how you can get them plus more with PowerApps. - Published: 2018-06-28 - Modified: 2024-09-04 - URL: https://petri.com/create-infopath-repeating-tables-sharepoint-powerapps/ - Categories: Microsoft 365, SharePoint, SharePoint Online - Tags: InfoPath, Office 365, Powerapps, SharePoint, SharePoint Online - Article Type: How To ow do you create InfoPath repeating tables with PowerApps? The answer is you use some really fancy, customized galleries. Finally, I have a real answer to the most common question I have received since dedicating my life (over dramatic? ) to PowerApps. How do you create InfoPath repeating tables with PowerApps? The answer is you use some really fancy, customized galleries. There have been a lot of quasi-solutions to this problem, but when I looked at them, I didn’t like them. They were very manual for the person doing data entry. Nobody wants to click a mouse when trying to enter a lot of data. So this solution is focused on easy data entry using the tab key, allowing inline edits and deletes, and making sure we don’t let users submit partial data. Cool! And more importantly, it is super flexible for you the app builder. The secret sauce It turns out the other solutions were all form driven because it was easy for the app builder. But the forms caused the clumsiness for the end user. To overcome this, we will use a gallery and a form connected to two different lists. The form for creating the single line item master record and the gallery for the repeating sections. The great thing about the gallery is they are super flexible and let you do almost anything you want. Letting you build the data entry experience your users want. With our gallery in tow, we feed the gallery a collection instead of our data source. The great thing about the collection is every time we add a new... --- ### Archiving Teams the Official Way > Microsoft Teams has introduced a way for Office 365 tenants to archive teams. Basically you set the team to be read-only. - Published: 2018-06-28 - Modified: 2024-09-04 - URL: https://petri.com/archiving-teams-official-way/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Archive, Office 365, Teams - Article Type: How To Microsoft Teams has introduced a way for Office 365 tenants to archive teams. Basically you set the team to be read-only, a status that affects conversations and files. However, it doesn't stop team members having read-write access to other group resources, like Planner or Power BI. Two Ways to Archive Teams In February, I wrote about how to archive inactive Office 365 Groups, including those used by Teams. My method is based on PowerShell. Earlier this week, Microsoft disclosed that Teams now boasts an official solution (here’s Brad’s coverage of the announcement). Based on comments in Twitter and other media, many people seem pleased at the prospect of archiving some teams. I think the approach taken by Teams is interesting, but the mechanism needs to be understood before it is deployed. Let’s discuss how the Teams archive mechanism works. Finding Teams to Archive To archive a team, click Teams in the navigation bar in the desktop or browser client to expose the list of teams, then the Manage cogwheel icon under the list of teams. You see a list of teams that you belong to, divided into active teams and archived teams. You can only archive a team when you are an owner of that team. The choice to Archive team is in the ellipsis menu for the team (Figure 1). Figure 1: Active and archived teams (image credit: Tony Redmond) No cmdlet to archive a team is available yet in the Teams PowerShell module. In addition, you can't extract a list of archived teams with PowerShell. Archiving a Team The archive process is very swift. The only other choice you must make is to decide whether to make the SharePoint site read-only for team members. Click Archive when you’re... --- ### Microsoft's Making it Easier to Keep Teams Organized with new Archive Option - Published: 2018-06-27 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-easier-keep-teams-organized-new-archive-option/ - Categories: Microsoft 365, Microsoft Teams - Tags: Archive, Microsoft Teams, News - Article Type: News Microsoft is making it easier to keep Teams organized with a new archive option for historical content. With Teams, Microsoft is hoping to make the platform your central hub for productivity. Seeing as it can natively integrate with the entire Office suite, many third-party services, and also features a robust messaging platform, the company is heading down the right path with the application. But, like any good product, it can become overwhelming if you don't maintain the content. Announced this week is the ability to archive a 'team' which will help you clean up inactive conversations to avoid being overwhelmed with a massive list of teams inside your organization. To Archive a team, follow these steps: Select Teams Teams button on the left to see the list of your teams. At the bottom of the list, select Manage Settings button. In the Active list, find the name of the team you want to archive, then select More options More options button > Archive team. To prevent people from editing the content in the SharePoint site and Wiki tab associated with the team, select Make the SharePoint site read-only for team members. (Teams owners will still be able to edit this content. ) Only a team owner has the ability to archive and restore a team. Once you archive a Team, the content becomes read-only but you will still be able to search through the information if you need to review it at a later time. Further, you can restore a Team as well if the project becomes active again in the future. This is a small... --- ### Protecting Files in Office 365 Document Libraries Against Guest Users > Office 365 Groups and Teams support guest users, who enjoy full access to the SharePoint document libraries. You might not want this. - Published: 2018-06-26 - Modified: 2024-11-19 - URL: https://petri.com/protecting-office-365-document-libraries-guest-users/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Information Protection, guest users, IRM, Office 365, Rights management, SharePoint Online, Teams - Article Type: How To Office 365 Groups and Teams support guest users, who enjoy full access to the SharePoint document libraries. You might not want this, because not every document in those libraries are suitable for sharing with guests. The question is how to collaborate with guests while maintaining some control over information. Rights management seems like a good way to accomplish the task. Office 365 Makes Rights Management Easy I like rights management. It’s a feature that is much easier to deploy and manage in the cloud than on-premises, yet it is a mystery why more tenants don’t use the technology to protect confidential and sensitive information. Microsoft has done their best to make rights management more approachable, including a new Encrypt message feature, and while progress is being made, it’s not enough. Collaboration and Guest Users Which brings me to Office 365 Groups and Teams and the ability of these collaborative applications to welcome guest users into their midst. Generally, everything goes well, and guest users can interact with other group members freely and easily, thanks to the relatively simple membership model that gives every member the same level of access to group resources. Owners are the only exception because someone must corral the cats and manage membership and settings. The downside of the simple membership model appears when you invite guests to join a group or team and realize that guest members can see, open, and even remove documents in the shared document library. Although logical (remember, everyone has equal access), it might not be what you want. Private Channels Coming Microsoft says that they are working on private or secure channels, a popular request in UserVoice to restrict the content of specific channels to specific members. The idea is that you might want to have private sections of a team that you don’t want everyone to see, including... --- ### Execute Scripts Inside Azure VMs from the Portal - Published: 2018-06-26 - Modified: 2024-09-04 - URL: https://petri.com/execute-scripts-inside-azure-vms-portal/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, PowerShell, Run Command, Scripting, virtual machines - Article Type: How To This post will show how to use the Run Command to execute PowerShell scripts inside an Azure virtual machine running Windows Server from the Azure Portal. Note that this can also be done using PowerShell, CLI, and REST API. This post will show how to use the Run Command to execute PowerShell scripts inside an Azure virtual machine running Windows Server from the Azure Portal. Note that this can also be done using PowerShell, CLI, and REST API.     The Need I often find myself in situations where I want to get something done with a virtual machine that I have access to via the Azure Portal but I haven’t got network access to it. I could configure network access and RDP into the virtual machine but that will either require time or an unwanted configuration change. I could use the Serial Access Console to log into the machine and get a PowerShell user interface but that’s more of a back door. What if I just want to run a one-off PowerShell script to get something done? The Run Command Microsoft added a new method for executing PowerShell scripts inside of a virtual machine in a simple, on-demand basis, called the Run Command. At any time, I can execute one of a set of supplied scripts or a custom script on one of several ways: The Azure Portal PowerShell from my PC, using the AzureRM PowerShell modules CLI REST API This method requires that you have a certain level of permissions for the virtual machine in question. You must have the Microsoft. Compute/virtualMachines/runCommand/action permission, which is available to administrators with Contributor or higher rights over the virtual machine resource. Using Run Command in the Azure Portal You... --- ### Keeping your DR Plan from Becoming a Disaster - Published: 2018-06-25 - Modified: 2024-09-04 - URL: https://petri.com/keeping-your-dr-plan-from-being-a-disaster/ - Categories: Backup & Storage - Tags: Backup, Disaster Recovery - Article Type: Overview Vital steps to maintaining an effective DR plan so that you don't find yourself in the dark during the next outage. Having a disaster recovery (DR) plan is essential in order to minimize the downtime and business disruption that can happen when your business experiences some type of site, server or application outage or failure. While there’s no doubt that a DR plan is a necessity, a bad DR plan can be just as bad as no DR plan at all. A bad DR plan can actually impede the recovery of your essential applications and services by failing and then forcing IT to attempt to jury rig some type of solution. All this can lengthen the time it takes to recover as well as increasing the potential for data loss. Let’s take a closer look at some of the important factors that can prevent your DR plan from becoming a disaster. Keeping Your DR Plan Updated One point that is absolutely critical to prevent your DR plan from being a disaster is to be sure to periodically review your business requirements and then update your DR plan. An effective DR plan isn’t a static entity that you can create once and then forget about. IT environments constantly change and evolve and you need to change your DR plan to keep abreast of these changes. If your DR plan doesn’t evolve with your business it cannot provide the protection and recoverability that your business requires. Some of the important factors that can require you to update your DR plan include: Changes in your environment – New building, facilities or locations Changes in... --- ### General Availability of Azure Site Recovery for Azure VMs > This post discusses the newly generally available Azure Site Recovery for Azure IaaS virtual machine replication and disaster recovery. - Published: 2018-06-25 - Modified: 2024-09-04 - URL: https://petri.com/general-availability-azure-site-recovery-azure-vms/ - Categories: Microsoft Azure - Tags: A2ASR, ASR, Azure, Azure Site Recovery, Azure Virtual Machines, Disaster Recovery, DR, virtual machines - Article Type: Overview After quite a long preview, Microsoft has made Azure Site Recovery (ASR) for Azure virtual machines generally available, providing inter-region replication of IaaS workloads. This is also known as Azure to Azure Site Recovery or A2ASR.  After quite a long preview, Microsoft has made Azure Site Recovery (ASR) for Azure virtual machines generally available, providing inter-region replication of IaaS workloads. This is also known as Azure to Azure Site Recovery or A2ASR.     Myth Busting Many people who are novices to The Cloud make two incorrect assumptions: All virtual machines are backed up by default: They’re not but Azure Backup is quite affordable. It has made its availability very clear and easily enabled in the Azure Portal when creating a virtual machine. Everything is replicated from one Azure region to another: Some things are, but most things are not. It requires you to enable replication or to duplicate deployments at some additional cost. If an Azure region was to fail, all of your Azure virtual machines would go with it, even if you had deployed using availability sets (single compute cluster in a single building) or availability zones (workloads spread across buildings in a region). Without A2ASR, you would have had to: Duplicate the virtual machine deployment in another region, thus doubling your Azure costs. Enable inter-region networking and replicate all data, configurations, and settings between the deployments across that link. Azure and other costs would have been very high. Luckily, ASR is quite affordable! A2ASR The general availability of A2ASR should impact customers very quickly: Simplicity: The ASR team has made the process of replicating an Azure virtual machine very easy. In some ways, I think it’s too easy because some will... --- ### Google App Engine Adds Node.js Support - Published: 2018-06-22 - Modified: 2024-09-04 - URL: https://petri.com/google-app-engine-adds-node-js-support/ - Categories: Cloud Computing - Tags: App Engine, Google, Google Cloud Platform, News, Node.js - Article Type: News Google recently announced the ability for developers to deploy Node.js apps to Google’s fully-managed App Engine standard environment. In a recent post on the Google Cloud Platform Blog, Google announced the ability for developers to deploy Node. js apps to Google’s fully-managed App Engine standard environment.     Google’s App Engine enables developers to write and deploy applications to a fully-managed, serverless, platform that’s designed to scale when traffic spikes and additional resources are needed. And while Google’s App Engine already offers support for a variety of popular languages, including Java, PHP, Python, and Ruby among others, the addition of the popular Node. js framework means that developers will have even more tools at their disposal. Node. js developers will now be able to take advantage of the benefits of Google’s App Engine, with one such benefit being that developers can quickly deploy their Node. js applications. In fact, most basic applications are capable of being deployed in only a few minutes or less, making it easy to get the latest applications and updates in front of users in as little time as possible. Another feature offered by Google’s App Engine is that when application traffic spikes, developers don’t have to worry about manually managing their hardware or other resources, as App Engine is designed to automatically scale according to the amount of traffic an application is receiving. And when a traffic spike eventually subsides, App Engine will automatically scale resources back down - something that can help save on cost. The App Engine experience was also designed so that developers would be able to write and deploy code with... --- ### Paul Thurrott's Short Takes: June 22 - Published: 2018-06-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-22/ - Categories: Cloud Computing, Microsoft 365, Mobile, Office, Windows 10, Windows Client OS - Tags: News - Article Type: Overview Because ethics is tragically unfunny, this week's edition of Short Takes examines Microsoft's controversial non-moves on its ICE contracts, Microsoft's spending spree, more Microsoft Edge problems, and much more. Because ethics is tragically unfunny, this week's edition of Short Takes examines Microsoft's controversial non-moves on its ICE contracts, Microsoft's spending spree, more Microsoft Edge problems, and much more. Microsoft's new controversy of the week, part one With U. S. Immigration and Customs Enforcement (ICE) operatives separating illegal immigrants from their children at the border, a group of about 100 Microsoft employees wrote an open letter to CEO Satya Nadella, urging him to sever ties with the agency. "We are part of a growing movement, comprised of many across the industry who recognize the grave responsibility that those creating powerful technology have to ensure what they build is used for good, and not for harm," the letter noted. Given all the happy-happy-joy-joy, inclusive, everyone's a winner nonsense coming out of the software giant these days, you'd expect a swift and decisive response from Mr. Nadella. Nope. In a response to the employees, he instead claimed that "Microsoft is not working with the U. S. government on any projects related to separating children from their families at the border," suggesting that ICE's behavior was somehow happening without the aid of Microsoft software and services. Or something. This is the same argument that social networks and website hosters claim when their services are used by others to post hate speech. In other words, "not our problem. " But before anyone gets too up in arms about this milquetoast response, I'll just remind you that Microsoft also does business with China and other rampant... --- ### Microsoft Teams for Surface Hub is Now Available in Preview - Published: 2018-06-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-surface-hub-now-available-preview/ - Categories: Hardware - Tags: News, Surface Hub - Article Type: News Microsoft has released Teams in preview for the Surface Hub, expanding the app's footprint across the Office 365 ecosystem. Microsoft is throwing everything it has at making Teams the central hub of your productivity. While email will likely never go away, for everything else, Microsoft hopes that you can accomplish those tasks inside of Teams. With the Surface Hub 2 being announced this year and arriving next year, the company needs to have Teams ready for that platform. And of course, existing Surface Hub owners likely need access to Teams as well via the Windows Store. If you are a Windows Insider, it looks like the Surface Hub version of Teams from the Windows store is entering preview and you can download it here, as spotted by Aggiornamento Lumia. There shouldn't be too many, or really any, surprises with this app for the Hub but for those that have invested in these devices and are using the tool on the desktop/mobile, this will be good news. Of course, the natural question is when will it leave the preview state which should be coming a couple weeks or so after this preview formally is launched but only time will tell when the app is fully available to everyone. This is another small step for Teams as the product expands its footprint in the Office 365 ecosystem. --- ### Office 365 News and Views – June 2018 > Lots happens in a month within Office 365. I can't possibly write about every change in SharePoint, Teams, Exchange, etc. released by Microsoft, - Published: 2018-06-21 - Modified: 2024-09-04 - URL: https://petri.com/office-365-news-june-2018/ - Categories: Microsoft 365, Office - Tags: Forms, GDPR, Microsoft 365, Office 365, Office 365 Groups, Planner, SharePoint Online, Teams, To-Do - Article Type: News Lots happens in a month within Office 365. I can't possibly write an article about every change in SharePoint, Teams, Exchange, etc. released by Microsoft,, so sometimes I need to publish a catch-up (or catch-up) post. Here are ten things that I think are interesting enough for you to know about. Office 365 News All Round Once again, I find myself in the position where lots is happening inside Office 365 and it’s hard to keep track of everything, let alone write long-form articles. To close the gap, here are eight or so snippets about stuff that you should know about. Microsoft 365 Admin The biggest news in Office 365 land recently is Microsoft’s decision to rename the Office 365 Admin Center to be the Microsoft 365 Admin Center (Figure 1). Announced on June 6, the change is part of Microsoft’s efforts to convince Office 365 customers that life would be so much better if they would only buy the complete Microsoft 365 suite. Figure 1: The new Microsoft 365 Admin Center in all its glory (image credit: Tony Redmond) Buying into Microsoft 365 makes sense for enterprise customers, who can certainly use the extra functionality in Enterprise Security and Mobility and Azure Active Directory Premium, but the advantage is less obvious for smaller tenants. In any case, the renaming is due to be effective across Office 365 by mid-July and if you buy Microsoft 365, this is where you’ll manage everything. SharePoint Plans Planner has been slowly improving recently with better views of tasks and the much-awaited guest user access. On the other hand, SharePoint has rolled out tools to help customers move classic team sites over to those powered by Office 365 Groups. The two applications come together to support the creation of... --- ### Azure File Sync Nearing General Availability > Microsoft has launched the final preview release of Azure File Sync, a service that I, and many of my customers, have been anticipating. - Published: 2018-06-21 - Modified: 2024-09-04 - URL: https://petri.com/azure-file-sync-nearing-general-availability/ - Categories: Microsoft Azure - Tags: Azure, Azure File Sync, File Server, storage, Windows Server - Article Type: Overview Microsoft has launched the final preview release of Azure File Sync. Microsoft has launched the final preview release of Azure File Sync, a service that I, and many of my customers, have been anticipating.     What Is It? Azure File Sync (AFS) is a new service that is designed to integrate on-premises file servers with Azure in several ways: An agent is installed on the file server and will synchronize selected folders to the Azure Files service in a general purpose storage account. The Azure copy will become the master copy. Azure Backup will protect the master copy of the files in Azure, this making on-premises backup redundant (and not recommended, anyway). If you lose the file server, you can connect a new one and bring your shares/data back online in a matter of minutes by pressing the metadata of the shares/folders/files and downloading files on demand. File servers in different offices can synchronize files/folders via Azure, instead of DFS-R ... And no, file lock synchronization is not there yet but Microsoft knows you want it. The best bit is tiering. You can set per-server policies to remove cold data from the servers without users noticing. Metadata is presented in place of the folders/files with the same permissions and names as before. Cold files will be downloaded from Azure on demand. In short, AFS solves lots of problems that we have with file servers today and it can do it non-disruptively. You install an agent, don’t have to migrate data onto an appliance, and no one will notice. Refresh... --- ### New Windows Autopilot Deployment Options in Windows 10 1803 and Redstone 5 - Published: 2018-06-20 - Modified: 2024-11-19 - URL: https://petri.com/new-windows-autopilot-deployment-options-in-redstone-5/ - Categories: Windows Client OS - Tags: Configuration Management, Redstone 5, Windows 10, Windows 10 April 2018 update, Windows Autopilot - Article Type: Overview In this Ask the Admin, I'll look at the new deployment options for Windows Autopilot in the current and next version of Windows 10. In this Ask the Admin, I'll look at the new deployment options for Windows Autopilot in the current and next version of Windows 10.     Windows Autopilot was first introduced in the Windows 10 Fall Creators Update (Professional, Enterprise and Education SKUs, version 1703) and it allows IT departments to provision off-the-shelf PCs to users without having to create, maintain, and deploy custom Windows images. From a user’s standpoint, they can get their new PC up and running in a few simple clicks with no intervention from IT. Windows Autopilot requires Windows 10, Azure AD Premium, Microsoft Intune, or other Mobile Device Management (MDM) service. All users need to do when receiving their new PC is to select a region, select a keyboard layout, and then enter the credentials associated with their Azure AD account. Windows 10 April 2018 Update Before getting on to what’s new in Redstone 5, there are several new Autopilot features in the April 2018 Update. The most prominent new capability is the enrollment status page. It’s an optional feature that IT can enable to show users the status of the device during and after enrollment. In the first release of Autopilot, users can log on to the desktop before the device is in a business-ready state. I. e. not all applications, profiles, and certificates are fully installed by the time a user is enrolled. The enrollment status page shows the deployment status, so users can understand whether the device is fully configured before... --- ### Microsoft's Subtle Branding Changes to its Core Products - Published: 2018-06-20 - Modified: 2024-09-24 - URL: https://petri.com/microsofts-subtle-branding-changes-core-products/ - Categories: Cloud Computing, Windows Client OS Microsoft has quietly changed the way it brands two of its core products and if you aren't looking closely, you will have missed the updates. If you jumped in a time machine and went back about five years, at any Microsoft conference, you would hear the words Windows and Azure in every other sentence. But today, those words are used less often because of how Microsoft has quietly, and not so quietly, been changing the organizational chart of the company and restructuring some of its core assets. The evolution of Microsoft's sub-brands has been subtle but necessary as the market has changed and so has the direction of the company. That being said, the company is now placing its own name first, rather than its products for two of its foundational services. Microsoft no longer promotes Windows directly, instead they talk about Microsoft 365. This became apparent at Build 2018 and flavors of this change showed up last year at Build 2017, but now the company is all in on Microsoft 365 instead of Windows. Why? Windows has stagnated, it has reached its peak and is now in maintenance mode for Microsoft. Sure, they will continue to update it and add new features, but from a growth perspective, it comes up short when compared to other services offered by Microsoft. Windows still has a massive user-base which the company hopes to use to leverage other services like Office 365. And because Office 365 is the company's premier SaaS offering, creating Microsoft 365 which includes both Windows and Office (and a few other services), this helps to introduce users of these platforms to the entire... --- ### Microsoft Expands Its Cloud Footprint to Norway - Published: 2018-06-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-cloud-footprint-norway/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Datacenter, Microsoft, News, Norway - Article Type: News Microsoft is opening up a new data center in Norway with availability starting in late 2019. Let me know if this sounds familiar, Microsoft is adding another new region to its cloud footprint. This time around, Microsoft is adding new data centers in Norway and while these two items are not related, Google announced on Monday that they were opening a new data center in Finland. As you would expect, this new region will offer Azure, Office 365, Dynamics and of course 'enterprise-grade reliability'. And as with other regions, Microsoft will be opening two locations in Norway for redundancy inside the borders of the country. With an expected opening date in late 2019, Microsoft will first offer Azure and Office/Dynamics will follow at a later date. This release pattern for services offered in a new data center follows the same trend with how the company has opened up other locations around the globe. Microsoft says that the new data centers will be located in the greater Stavanger region and the other in Oslo. Even though on-premises spending is still higher than cloud spend, there is no doubt that Microsoft is uniquely positioned in this space to grow significantly as more companies abandon traditional data centers and move to cloud services. The company's stock price has reached an all-time high as the momentum behind Microsoft's cloud growth does not show any signs of slowing down. Because of the significant cost involved in building out a global network of data centers, Microsoft, Amazon, and Google are likely going to be the only major players for the... --- ### Google Opens a New Cloud Region in Finland - Published: 2018-06-19 - Modified: 2024-09-04 - URL: https://petri.com/google-opens-new-cloud-region-finland/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Google, News - Article Type: News Google opened a new data region in Finland as the company works to grab more cloud market share. Earlier this year, Google announced that they would be opening five new computing regions in 2018 which comes after spending more than $30 billion during the past three years to improve its infrastructure. These new regions will help expand the company's cloud footprint as it takes on Microsoft and Amazon in the cloud wars. Announced this week, Google has opened a new region in Finland which the company claims will significantly improve latency by up to 65% for users in the Nordics and by up to 88% for users in the Eastern portion of Europe. This data center joins others in the area including Netherlands, Belgium, London, and Frankfurt in Europe. While Amazon, and notably Microsoft, have many more regions, Google was late to the cloud game but is investing heavily to catch-up with the market leaders. Amazon is ahead of Microsoft in terms of market share but it is believed that Microsoft is closing the gap. For Google, even if they can maintain their 3rd position in the cloud race, it's still a lucrative spot to be as billions of dollars shift away from on-premises spending to cloud services. Owning even a small percentage of the market over the next decade will likely reward billions in revenue for Google. Because of the significant cost involved in building out a global network of data centers, Microsoft, Amazon, and Google are likely going to be the only major players for the foreseeable future. Knowing this, the ‘cloud wars’, while... --- ### Patch Tuesday -- June 2018 - Published: 2018-06-19 - Modified: 2024-11-19 - URL: https://petri.com/patch-tuesday-june-2018-2/ - Categories: Security - Tags: Flash, Microsoft Office, Patch Tuesday, Security, Spectre, Windows 10, Windows Server - Article Type: News In this month’s Patch Tuesday, Microsoft released a disabled-by-default patch for Spectre 4, Adobe plugs a zero-day Flash vulnerability that can be exploited via Excel, and there are fixes for DNS, black screens, and Cortana. In this month’s Patch Tuesday, Microsoft released a disabled-by-default patch for Spectre 4, Adobe plugs a zero-day Flash vulnerability that can be exploited via Excel, and there are fixes for DNS, black screens, and Cortana.     This month sees Microsoft release 26 fixes for Windows 10 version 1709 and 7 updates for Microsoft Edge. Four of the patches for Windows 10 are critical remote-code execution exploits. One affects DNS and could allow a hacker to run code under the local system account by sending corrupted DNS responses to the target server. The most likely to be exploited is a media foundation memory corruption vulnerability that could allow an attacker to install programs; view, change, and delete data; or create new user accounts if the logged in user is persuaded to visit a malicious webpage. As reported on Thurrott. com and discovered by McAfee, CVE-2018-8140 fixes a vulnerability that could allow an attacker with physical access to a device to run code with elevated rights, retrieve confidential information, and even change a user’s password by using Hey Cortana from the lock screen. Some Windows 10 users were experiencing problems with a black screen after updating to Windows 10 version 1803. The month’s cumulative update for the April 2018 Update bumps the version number to 17134. 112 and includes a fix for this issue. Adobe has patched a zero-day flaw affecting Flash that could be exploited through Microsoft Excel. CVE-2018-8229 affects the Chakra Core scripting engine and could be exploited using... --- ### Hybrid Configuration Wizard Transfers Settings – Too Little, Too Late > Microsoft has updated the Hybrid Configuration Wizard (HCW) to transfer some Exchange on-premises configuration settings. That's nice, but just too late. - Published: 2018-06-19 - Modified: 2024-09-04 - URL: https://petri.com/hybrid-configuration-wizard-transfers-settings-exchange/ - Categories: Exchange Online, Microsoft 365, Office - Tags: exchange, HCW, Hybrid Configuration, Office 365, On-Premises - Article Type: Opinion Microsoft has updated the Hybrid Configuration Wizard (HCW) to transfer some Exchange on-premises configuration settings. That's nice, but possibly too little and too late to make any real difference. Office 365 has moved on, most people who wanted to configure hybrid connections are now in the cloud, and the settings aren't all that exciting. HCW and Exchange Configurations Microsoft’s announcement that the Exchange Hybrid Configuration Wizard (HCW) is now able to transfer some configuration settings from an Exchange on-premises organization to Exchange Online came as a disappointment. Not because of the functionality, which is welcome, but because it is limited and far too late. HCW is a venerable part of the Office 365 landscape. Originally launched in 2011 to replace a torturous multi-step process to connect on-premises servers to Exchange Online, Microsoft last gave the HCW a major refresh in 2015. To be fair to the HCW team, they have made many incremental improvements since, including the introduction of the “minimal configuration” mode in June 2016. Although the HCW does an excellent job of linking on-premises Exchange to Office 365, nothing has ever been done to make sure that the two sides share a common configuration. Things are certainly different in the cloud, but it’s strange that Microsoft never incorporated some basic transfer capability into the HCW – until now. Transfer to Exchange Online Starting soon, when you configure an HCW connection, you can choose to transfer some elements of the organization configuration from on-premises to Exchange Online: Mailbox retention policies and retention tags. OWA mailbox policies. ActiveSync mailbox policies and mobile device mailbox policies. The transfer misses some surprising pieces, like a distribution list naming policy. More understandably,  no attempt is made to transfer complicated parts of the on-premises configuration, like transport rules. The transfer is one-way and one-time, and HCW... --- ### Project Natick -- Microsoft's Undersea Data Centers > Microsoft recently shared information on Phase 2 of Project Natick, a research effort to deploy cloud data centers in the sea with tidal/wave/wind power. - Published: 2018-06-18 - Modified: 2024-09-04 - URL: https://petri.com/project-natick-microsofts-undersea-data-centers/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Microsoft, Office 365, Project Natick - Article Type: Overview Microsoft recently shared information on its efforts to develop an undersea distributed data center solution to power The Cloud in the future. Microsoft recently shared information on its efforts to develop an undersea distributed data center solution to power The Cloud in the future.     Data Center Challenges Constructing and operating data centers for a global market is a challenging proposition. Imagine what Microsoft’s data center planners and operators go through on a daily basis. No matter how many regions with multiple data centers each that are built (50 for Azure have been announced so far), there are never enough. It is never close enough to customers. The cost and complexities are never-ending. The cost of land for one of these huge endeavors alone could be staggering. I know that in the USA, Microsoft typically builds out because land is relatively affordable. But in other locations such as Dublin, Ireland, Microsoft acquired a large tract of land when it was at its most expensive. In Japan, there is no such thing as affordable land. To date in Europe, there are 8 Azure regions (2 being in Azure Germany) with two more planned for Germany and an additional two announced for Switzerland. But my bet is that companies in Luxembourg, Sweden, Lichtenstein, and more, all will refuse to consider Azure because there isn’t a region close to them. No matter how much you build or announce, there will never be enough. It’s not like a data center is a building you just inflate overnight at a whim! Power is also a challenge. A cloud region (a cluster of data centers)... --- ### A New Planner Apps Arrives to Modern SharePoint Online Sites - Published: 2018-06-15 - Modified: 2024-11-19 - URL: https://petri.com/new-planner-apps-arrives-modern-sharepoint-online-sites/ - Categories: Microsoft 365 - Tags: Microsoft Planner, Office 365 - Article Type: How To Microsoft is releasing an update to the way a Planner Plan can be integrated in a modern SharePoint Online (SPO) site. This update allows to easily add a Planner Plan as a full-page app in a modern SPO site. As disclosed by Microsoft in the SharePoint Virtual Summit and in the SharePoint Conference North America, Microsoft is releasing an update to the way a Planner Plan can be integrated into a modern SharePoint Online (SPO) site. This update allows to easily add a Planner Plan as a full-page app in a modern SPO site. Bear in mind that this new Planner integration is not available in Communication Sites.     Adding a New Planner Plan to a Modern SPO Site With the new Planner integration in modern SPO Sites, adding a new Planner Plan to an existing site is a very straightforward process: From the site home page, just click on New -> Plan: Figure 1 -- Adding a Planner Plan to a Modern SPO Site A "Create a plan" panel is displayed. You can either create a new Plan or just choose an existing one. Provide the name for the new Plan and then click on “Create”: Figure 2 -- Create a Plan Panel If you choose to use an existing Plan, then you will be asked to select an existing Plan linked to the underlying Office 365 Group: Figure 3 -- Adding an Existing Plan In a similar way, by means of the modern Planner WebPart, it’s possible to add to any modern page in the Site and existing Planner Plan or create a new one. Figure 4 -- Existing Planner Plan Added to a Modern SPO Page The result we get when adding a... --- ### Intel's Spectre Variant 4 Microcode Update Off by Default - Published: 2018-06-15 - Modified: 2024-09-04 - URL: https://petri.com/intels-spectre-variant-4-microcode-update-off-by-default/ - Categories: Security - Tags: AMD, Intel, Meltdown, Security, Spectre, Windows - Article Type: News In this Ask the Admin, I look at Spectre Variant 4 and whether it will affect performance as its distributed over the coming weeks. In this Ask the Admin, I look at Spectre Variant 4 and whether it will affect performance as its distributed over the coming weeks.     Unless you’ve been hiding under a rock since January, you probably know about the Spectre and Meltdown vulnerabilities that were made public at the beginning of 2018. Spectre and Meltdown could allow a malicious program to access protected memory using speculative execution and caching, two techniques that improve the performance of modern processors. Spectre and Meltdown are both forms of side-channel attack where a malicious program establishes the location of data in the CPU cache. Microsoft issued patches for CVE-2017-5753 (Spectre Bounds Check Bypass – Variant 1), CVE-2017-5715 (Spectre Branch Target Injection – Variant 2), and CVE-2017-5754 (Meltdown Rogue Data Cache Load – Variant 3) in January’s round of cumulative updates for Windows. For complete protection against the three vulnerabilities listed above, a microcode update from Intel also needs to be applied. The January updates protect against three specific ways of exploiting the Spectre and Meltdown vulnerabilities. But last month, Google Project Zero made public a new way to exploit Spectre. Intel has dubbed the new threat as a Speculative Store Bypass (SSB). Or Spectre Variant 4. It has been assigned a Common Vulnerability and Exposures (CVE) number: CVE-2018-3639. Additionally, another vulnerability has been identified. Rogue System Register Read (RSRR), or Spectre Variant 3a (CVE-2018-3640) as it’s also known. Although, this one is thought to be less serious than Spectre Variant 4... . --- ### Paul Thurrott's Short Takes: June 15 - Published: 2018-06-15 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-15/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because I do not like it Sam-I-Am, this week's edition of Short Takes looks at Windows 10 version 1803 out in the wild, Microsoft's coming Office UI change, new Surface PCs, and much, much more. Because I do not like it Sam-I-Am, this week's edition of Short Takes looks at Windows 10 version 1803 out in the wild, Microsoft's coming Office UI change, new Surface PCs, and much, much more. Windows 10 version 1803 is "fully available. " God help us all. With rampant reports of instability and unreliability pouring in from all corners, Microsoft this week inexplicably claimed that Windows 10 version 1803---aka the April 2018 Update---is being made "fully available" to all customers. Why, you ask? Because AI tells it that this is the highest-quality and most reliable Windows 10 feature update yet. This reminds me of my favorite story from the Vietnam War: In 1968, the Pentagon built a humongous supercomputer that took up its entire basement to determine when it would win the war. When it was completed, officials fed the machine all the data it needed to calculate the end date and then let in churn and bubble overnight. When they returned in the morning, there was a single card in the tray. It said, "You won the war in 1965. " "Microsoft says Windows 10 April update is fit for business rollout" Well, it will give you fits. Microsoft's about to rejigger the Office UI and I feel fine The last time Microsoft screwed around with the user interface of Office, it added the ribbon to everything and ruined its reputation with at least 50 percent of the customer base. So it is perhaps understandable that they've taken almost... --- ### Understanding External Access to Documents in an Office 365 Tenant (Part 3) > Office 365 logs sharing information in the audit log. Here's how to find out how tenant users share documents from SharePoint with external people. - Published: 2018-06-14 - Modified: 2024-09-04 - URL: https://petri.com/external-access-documents-office-365-part-3/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint, SharePoint Online - Tags: audit log, Office 365 Groups, OneDrive for Business, SharePoint Online, sharing, Teams - Article Type: How To The Office 365 Audit Log holds lots of interesting information about how people share information. In this article, we explore how to use the audit log records to discover the document sharing habits of users, including the documents shared with guest users and people outside the tenant. Easy Sharing with Office 365 In part 1 of this series, we explore how document sharing occurs within Office 365, and how to use some SharePoint cmdlets to report details of guest users. In part 2, we look at how to report external users from the membership information for Office 365 Groups and Teams. Between the two techniques, we can examine external access to traditional SharePoint Online sites and those belonging to Office 365 Groups and Teams. Office 365 Audit Records This article wraps up the series by considering how to interrogate the Office 365 audit log to understand who outside the tenant is accessing files in SharePoint. As you might know, the Office 365 audit log ingests audit events generated by many different workloads and normalizes the events so that they look almost the same. The audit log holds records for 90 days. If you need to go back further, you need to use Microsoft’s Advanced Security Management (part of Office 365 E5 or available as an add-on) or an ISV product. SharePoint is a “chatty” application in that it generates many audit events, possibly because of its background in document management. The downside is that you might have to look harder to find the right information; the upside is that if you need to know something about who did what and when, SharePoint probably logs a record for that operation. Auditing Document Access Among the data SharePoint records is when someone accesses (opens) a document in... --- ### A Free Version of Microsoft Teams Moves Closer to Availability - Published: 2018-06-14 - Modified: 2024-09-04 - URL: https://petri.com/free-version-microsoft-teams-moves-closer-availability/ - Categories: Microsoft Teams, Office - Tags: Microsoft Teams, News - Article Type: News A free version of Microsoft Teams is still in development and new documentation suggests its release will happen in the near future. Back in February, I was tipped off that Microsoft was working on a free iteration of Teams. And while we haven't heard much since then, we are seeing more evidence today that the free offering is moving closer to reality. Uncovered by WalkingCat on Twitter, he found the new end-user documentation and agreements for a 'free' version of Microsoft Teams. Even though we do not have a release date yet, this is a big step forward for the offering and shows that it is moving closer to public availability. Here is how Microsoft describes the new tier: Microsoft Teams (free) is intended for use by organizations, such as small businesses or groups of coworkers. If you were invited to join a group in Microsoft Teams (free), the group you are joining in the Microsoft Teams (free) instance will be considered your organization for the purposes of this notice, and the person administering the group will be considered the administrator of your account in Microsoft Teams (free). The reasons for why Microsoft would offer a free iteration of Teams is quite simple, get them hooked on the platform and then upsell Office 365. The company is hoping to make Teams the new center of productivity in the corporate space and by having a free iteration of the platform, it reduces the friction to start the customer journey of being an outside to subscriber. But, know that if you do opt for the free version, there was evidence from February... --- ### How To Deploy Azure Policies > This post will show you how to enforce/audit governance to Azure subscriptions or resource groups using Azure Policy by assigning an initiative definition. - Published: 2018-06-14 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-policies/ - Categories: Microsoft Azure - Tags: Azure, Azure Policy, Initiative Definition, Policy Definition - Article Type: How To Aidan Finn shows you how to enforce or audit governance to Azure subscriptions or resource groups using Azure Policy. In this post, I will show you how to enforce or audit governance to Azure subscriptions or resource groups using Azure Policy.     Overview It is possible to deploy a single policy definition to a management group, subscription, or resource group. That is pretty quick and easy to do. However, like with most quick and easy things, it’s not the best way in the long run. Microsoft recommends that you deploy a policy initiative instead: Identify sets of policies that will be deployed together Create an initiative definition, selecting those policies. Assign the initiative definition. The result is something like Active Directory Group Policy Objects (GPOs) for Azure; an initiative creates an organizational policy that can be deployed, effectively reusing components. General rules can be deployed at a top level (a management group) and more specific initiatives can be deployed at the subscription or resource group level. Azure Policy uses inheritance. By default, everything beneath the assignment picks up the policy/initiative. For example, if I deploy an initiative at the root management group, all subscriptions within the management group hierarchy will inherit the policies, all resource groups within the subscriptions will inherit the policies, and all resources within the subscriptions will inherit the policies. You can select exclusions in an assignment. For example, you can prevent the creation of Internet-connected network resources in a management group hierarchy but exclude a particular subscription from that policy. Combined with role-based access control, this can be a powerful way to... --- ### Solve RDP Error 'CredSSP Encryption Oracle Remediation' - Published: 2018-06-13 - Modified: 2024-09-04 - URL: https://petri.com/solve-rdp-error-credssp-encryption-oracle-remediation/ - Categories: Security - Tags: CredSSP, RDP, Security, Windows Server - Article Type: How To In this Ask the Admin, I'll explain how to resolve an RDP error that might appear after the May 2018 cumulative updates. In this Ask the Admin, I'll explain how to resolve an RDP error that might appear after the May 2018 cumulative updates.     If you’ve had trouble logging in to remote Windows servers using Remote Desktop Protocol (RDP) recently, you are not alone. I started noticing an error last month when logging into Azure VMs running Windows Server. Because I use Windows Server VMs for testing, it isn't updated with the latest Windows patches on a regular basis. The Windows PC from which I connect, on the other hand, is patched as soon updates are available on Windows Update. This disparity in patch level between client and server doesn’t usually cause a problem but can sometimes lead to issues. Remote Desktop Connection 'CredSSP Encryption Oracle Remediation' Error (Image Credit: Russell Smith)   Microsoft fixed a remote code execution vulnerability in CredSSP in the March updates for Windows. The Credential Security Support Provider protocol (CredSSP) is a Security Support Provider that lets applications delegate user’s NTLM or Kerberos credentials from clients to servers for remote authentication over an encrypted Transport Layer Security (TLS) channel. The vulnerability could allow a man-in-the-middle attack where user credentials are relayed and used to run code on the remote system. Microsoft outlined an example where an attacker could perform a man-in-the-middle attack against an RDP session, enabling them to install programs, view, change, or delete data, and create new user accounts. Patch One, Two, Three The first patch that... --- ### Windows Server 2019 Improves Hybrid Cloud Support - Published: 2018-06-13 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2019-improves-hybrid-cloud-support/ - Categories: Cloud Computing, Hybrid Cloud, Hyper-V, Microsoft Azure, Windows Server - Tags: Azure, Cloud, cloud computing, Hyper-V, Virtualization, Windows Server - Article Type: Overview Microsoft's upcoming Windows Server 2019 release improves its support for hybrid cloud scenarios. Expected in the second half of this year, Windows Server 2019 will be Microsoft’s first major release of the Windows Server operating system since Windows 2016. Windows Server 2019 is expected to have a strong focus on improving support for hybrid cloud scenarios. Strengthening Windows Server’s support for the hybrid cloud makes a lot of sense as most companies today are using hybrid cloud environments.   This trend toward hybrid cloud adoption is expected to continue into the future as well; Gartner has predicted that by 2020 90 percent of organizations will adopt hybrid infrastructure management capabilities. Windows Server 2019’s hybrid cloud support is designed to improve the connections between on-premises servers and cloud services on Azure. Hybrid cloud improvements include better support for Azure Backup, File Sync, disaster recovery and other Azure services. Windows Server 2019’s hybrid approach is designed to help enable apps running locally to be able to take advantage of cloud services likes Artificial Intelligence (AI) and Machine Learning (ML). Windows Server 2019 also has a new server management program that enables you to work with both local and cloud servers. Windows Admin Center, formerly known as Project Honolulu, provides a new browser-based management application for Windows Server.  The new Windows Admin Center provides a single pane of glass for local and cloud management that consolidates many of the functions provided by older tools like Server Manager and Computer Management. To better support cloud applications several significant improvements have been made to Windows Server 2019’s support for... --- ### Microsoft's Updating Office with new Ribbon, Icons and Search - Published: 2018-06-13 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-updating-office-new-ribbon-icons-search/ - Categories: Microsoft 365, Office - Tags: Office, Office 365 - Article Type: News Microsoft is starting to roll out significant UI changes to Office applications with updates to the ribbon, search, and new icons. When it comes to updating Office apps, most of the time, Microsoft is working to add more features and finding new ways to integrate other services into the applications. But, every so often, the company makes UI changes and being announced today is the start of a significant update to the user experience. Microsoft knows that they must move cautiously when changing up the appearance of its productivity suite because after all, it's productivity first, everything else last. But starting today, the company is rolling out a few changes that will impact Word, Excel, PowerPoint, and Outlook. An updated Ribbon is being developed that is more compact and has two rows. The company says that the classic 3-row ribbon is still available but the new two-row design will be the preferred layout going forward. The goal with the more compact ribbon is that it frees up screen real-estate and is also intended to make collaboration easier inside of the applications. The company is also placing a big focus on search as well with smarter recommendations and faster access to commands. And who doesn't love a new icon? Microsoft is introducing new colors and icons inside of the updated apps which are scalable graphics that should make them crisp at any resolution on any screen size. The timing for the rollout of the updated ribbon varies by application but some users may start seeing the changes today if they are using Office online. Starting in July, a small group... --- ### Protect SQL Server in Azure VMs using Azure Backup > In this post, I will show you how to use a new preview feature in Azure Backup to protect SQL Server databases that are hosted in Azure virtual machines. - Published: 2018-06-12 - Modified: 2024-09-04 - URL: https://petri.com/protect-sql-server-azure-vms-using-azure-backup/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure Virtual Machines, SQL Server, virtual machines - Article Type: How To Aidan Finn shows you how to use a new preview feature in Azure Backup to protect SQL Server databases that are hosted in Azure virtual machines.   In this post, I will show you how to use a new preview feature in Azure Backup to protect SQL Server databases that are hosted in Azure virtual machines.     Background When I cover protection of Azure virtual machines in my training, I warn people that it’s great to protect the machine. You also need to perform maintenance on SQL Server. DBAs expect granular database backup, not just recovery of disks or files, and transaction log truncations must also take place to stop data disks from filling up. To date, we’ve had a few ways to accomplish this including: Enable a maintenance plan in SQL Server to back up to a disk device that is stored on a data disk. This backup file would be captured as a part of the disk backup. Configure a SQL Server maintenance plan to back up to an Azure storage account (blob storage). This can be done in SQL Server Management Studio or when you deploy a SQL Server machine image from the Marketplace. Ideally, you’ll only use one backup solution. If Azure Backup is to be used for machine protection, wouldn’t it make sense that it could reach into a virtual machine and perform a backup job in SQL Server? Microsoft agreed. It recently launched a preview of SQL Server protection by Azure Backup, which was introduced at Microsoft Ignite in September of last year. What It Does Most DBAs that I have met don’t like external backup solutions... --- ### Spanning Continues to Fight for Office 365 Backups > I don't consider backups necessary for Office 365, but ISVs continue to offer these products and customers continue to buy, so I chatted with Spanning - Published: 2018-06-12 - Modified: 2024-11-19 - URL: https://petri.com/spanning-office-365-backups/ - Categories: Exchange Online, Microsoft 365, Office, SharePoint Online - Tags: Backup, Exchange Online, Groups, Office 365, OneDrive for Business, SharePoint Online, Spanning, Teams - Article Type: Opinion I don't consider backups to be a necessity for Office 365, but ISVs continue to offer these products and customers continue to buy, so I chatted with Spanning to find out what's happening in the Office 365 market, who's using cloud backups, and why. We also spoke about the challenges that backup vendors continue to have in coping with some of the unique aspects of Office 365. The Continuing Question of Office 365 Backups I’m not a big fan of backup vendors selling to Office 365 tenants. I think most backup vendors sell based on some outdated thinking founded on what worked for on-premises deployments. In any case, that’s no reason to avoid talking to vendors to take the pulse of what they’re seeing with Office 365, which brought me to a conversation with Mat Hamlin, VP of Products at Spanning Cloud Apps. Spanning Backup Like most cloud-based backup vendors, Spanning has no problem dealing with the base Office 365 workloads of Exchange Online, SharePoint Online, and OneDrive for Business. With over 1,200 Office 365 tenants signed up, Spanning is experiencing solid growth in demand from customers who respond to stories about ransomware, hackers, and administrative failures that compromise data integrity and decide that they need more than Office 365 delivers. Backups copy data across the internet to Spanning’s Amazon Web Services-based services. Backups are automatic and use Microsoft APIs like Exchange Web Services to read information from mailboxes and sites. Restores can be granular, down to an individual message or file, or based on a point-in-time. All for $4 per user/month. In addition to Office 365, Spanning offers backup services for Google G Suite and Salesforce, and stores more than 16 PB of customer data, about 7 PB of which is Office 365 data. According to Spanning, they backup approximately 60 million items daily from Exchange Online, SharePoint Online, and OneDrive for Business. Multiple... --- ### Azure Policy for Governance Enforcement > This post will explain how Azure Policy can be used to audit or restrict usage, and apply settings, to automatically enforce governance. - Published: 2018-06-11 - Modified: 2025-01-10 - URL: https://petri.com/azure-policy-governance-enforcement/ - Categories: Microsoft Azure - Tags: Azure, Azure Policy, Governance - Article Type: Overview Microsoft recently made Azure Policy generally available. This post will explain the role of Azure Policy and how you can use it to audit for or enforce governance. Microsoft recently made Azure Policy generally available. This post will explain the role of Azure Policy and how you can use it to audit for or enforce governance. Azure Policy If you have a need to enforce restrictions or to assess for company, industry, or regional compliance, then you can use Azure Policy to deploy policies. Typically this type of solution is used in combination with delegated administration for governance. For example: Large company: A company with a large collection of subscriptions and an even larger set of resource groups has a dispersed set of administrators around the country, continent, or globe. Azure Policy allows the organization to unify policy across the catalog of subscriptions. Developers: Developers are often given administrative rights via role-based access control (RBAC) and they often do things without human supervision. Azure Policy can bring some control back on behalf of the organization. Policies Control and auditing are obtained using policies, written using JSON, and are created from one of two kinds of definition: Built-in: A set of policies that are supplied automatically by Microsoft Custom: Policies that you can write and store in Azure Policy Definitions in Azure Policy There are some interesting examples in the selection of built-in policies: Enforce tag and its value: Enforce a tag that might be used for cross-charging consumption of a single Azure subscription. Require SQL Server version 12. 0: Prevent deployments of older versions of SQL Server. Not allowed resource types:... --- ### Paul Thurrott's Short Takes: June 8 - Published: 2018-06-08 - Modified: 2024-12-03 - URL: https://petri.com/paul-thurrotts-short-takes-june-8/ - Categories: Cloud Computing, Hardware, Mobile - Tags: News - Article Type: Overview Because Brad's finally coming back from vacation, this week's edition of Short Takes looks at Microsoft's planned GitHub acquisition, Microsoft's market cap gains, another drop in the bucket, and much more. Because Brad's finally coming back from vacation, this week's edition of Short Takes looks at Microsoft's planned GitHub acquisition, Microsoft's market cap gains, another drop in the bucket, and much more. Microsoft announces plans to buy GitHub, all hell breaks loose Remember that magical time when Microsoft was actually aggressive competing with Linux and other open source projects, and the two sides hated each other? Yeah, that's long gone. But please tell the folks, stuck in the past, who are now opposing Microsoft's planned $7. 5 billion acquisition of the company that it's not 2003 anymore. Please. Anyway, as Microsoft's Brad Smith noted this week, the firm has been on a 15-year "journey" to "transform" its relationship with the open source community. And I fully agree that Microsoft will be an excellent steward of the developer service, which is used by millions of developers of all kinds. Smith called it an "important responsibility," but the bigger point is this: Rather than ripping at Microsoft like its another decade, the open source community should be embracing this change. Microsoft will do right by GitHub. "Microsoft's GitHub acquisition celebrated by the Linux Foundation" More like tolerated. Microsoft will rename Git Virtual File System Surprisingly, there are a lot of little issues with Microsoft's proposed GitHub acquisition. For example, GitHub maintains a developer editor called Atom that competes with Microsoft's (similar) Visual Studio Code. (Microsoft says it will continue improving Atom and Code side-by-side. ) And here's another one: Microsoft had previously created... --- ### Ways To Use Azure Traffic Manager > This post will show how Azure Traffic Manager can be used in a few non-obvious scenarios, including DR, migration, and international deployments. - Published: 2018-06-08 - Modified: 2024-09-04 - URL: https://petri.com/ways-use-azure-traffic-manager/ - Categories: Microsoft Azure - Tags: Azure, Disaster Recovery, failover, migration, Traffic Manager - Article Type: Overview Aidan Finn explains several ways that you can use Traffic Manager, Azure’s website redirection solution, that enables high availability, fault tolerance, and more between different application deployments. In this post, I will explain several ways that you can use Traffic Manager, Azure’s website redirection solution, that enables high availability, fault tolerance, and more between different application deployments.     Azure Traffic Manager Traffic Manager is a DNS-based redirection solution for endpoints. An endpoint is any public IP address that has a DNS name. Note that simple definition includes DNS-configure public IP addresses in Azure but also endpoints anywhere else, such as on-premises, AWS, Google Compute, GoDaddy, or anywhere else that you can host a web application with an IP address/DNS name combination. The system is pretty simple: A web application is presented to the Internet with a public IP address that has an associated DNS record. You create a Traffic Manager profile in Azure. Note that the location/region is irrelevant because Traffic Manager is a rare instance of a global service. When creating the profile, you select a routing method. This is how Traffic Manager will route traffic to endpoints (more later). The Traffic Manager profile will have a Microsoft-owned trafficmanager. net DNS name. Configure your web application with a CNAME record pointing to the traffic manager domain name. For example, www. joeelway. com (CNAME pointing to joeelway. trafficmanager. net) will resolve to my traffic manager profile, which in turn will resolve to the IP address/name of an endpoint depending on the selected routing method. There are 4 possible routing methods: Priority: Clients are sent to one endpoint. If that fails, they are redirected to another. Weighted: Traffic is load... --- ### Google Announces VPC-Native Clusters for Kubernetes Engine - Published: 2018-06-07 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-vpc-native-clusters-kubernetes-engine/ - Categories: Cloud Computing - Tags: Alias IP, Google Cloud Platform, Kubernetes, News - Article Type: News Google recently announced the ability for admins to create native Virtual Private Cloud clusters within Google Kubernetes Engine. In a recent post on the Google Cloud Platform blog, Google announced the ability for admins to create native Virtual Private Cloud clusters within Google Kubernetes Engine.     These VPC-native clusters make it easy to create enterprise-level systems that are capable of scaling to meet high levels of demand, while also ensuring the security of the applications and data that are contained within the clusters. This is possible due to support for Alias IP routing, which enables admins to assign a range of internal IP addresses to resources within a cluster. While the Google Cloud Platform has offered the ability to use Alias IPs for a while now, it wasn’t previously available for Google’s Kubernetes Engine. And as a result of this addition, admins can expect improved scalability, as the VPC control panel takes care of routing traffic along routes that are used for Pod networking. As a result of this update, admins can expect enhanced scaling abilities, with VPC-native clusters not having quotas or limits when it comes to Routes. This allows for admins to increase the size of a VPC-native cluster without having to worry about performance degradation or other issues related to increased bandwidth. Alias IP also enables Google’s Kubernetes Engine Pods to have direct access to other Google Cloud Platform services, including Google Cloud Storage and Google’s BigQuery data warehouse among other services that are served from the googleapis. com domain. In terms of security, Alias IP lets users perform anti-spoofing checks for the... --- ### Understanding External Access to Documents in an Office 365 Tenant (Part 2) > Many Office 365 Groups and Teams have external guest members. This article explains how to use PowerShell to query groups about external guests. - Published: 2018-06-07 - Modified: 2024-09-04 - URL: https://petri.com/external-access-documents-office-365-part-2/ - Categories: Microsoft 365, Office, SharePoint, SharePoint Online - Tags: Get-UnifiedGroup, Get-UnifiedGroupLinks, Office 365 Groups, OneDrive for Business, PowerShell, SharePoint Online, sharing, Teams Many Office 365 Groups and Teams have external guest members.Part 2 of our series about external access to documents in Office 365 explains how to use PowerShell to query groups about external guests so that we understand where the guests come from and what groups and teams they can access. Understanding Office 365 Sharing In part 1 of this series, we explore how document sharing occurs within Office 365 and how to use two cmdlets in the SharePoint Online PowerShell module to understand with whom outside the tenant we share documents. As noted, the Get-SPOUser and Get-SPOExternalUser cmdlets have some problems when processing group-enabled SharePoint sites. These sites use Office 365 Groups to manage membership, and the results returned by the cmdlets do not necessarily reflect the view of Office 365 Groups. Given the popularity of Teams and Groups, it is likely that most sites now running inside Office 365 tenants use Groups for their membership. We can absolutely use the SharePoint cmdlets to process sites that are not group-enabled, but we need another solution to deal with the sites owned by Office 365 Groups. Examining Group Guests The solution is to examine the membership of Office 365 Groups with guest members. Fortunately, Groups gives use a filterable property (GroupExternalMemberCount) that makes it easy to extract the set of groups with guest members. A similar property (GroupMemberCount) holds the total number of members in a group. Groups updates the two properties automatically as membership changes occur, including changes made through Teams. Once we know what groups to examine, we can loop through each group to extract details of guest members. Here’s some code to do the trick. $Groups = (Get-UnifiedGroup -Filter {GroupExternalMemberCount -gt 0} | Select Alias, DisplayName, SharePointSiteURL, GroupExternalMemberCount) If ($Groups. Count -gt 0) { Write-Host "Processing" $Groups. Count... --- ### Microsoft Breathes Life into Win32 Apps with .NET Core 3.0 and UWP XAML Islands - Published: 2018-06-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-breathes-life-into-win32-apps-with-net-core-3-0-and-uwp-xaml-islands/ - Categories: Windows Client OS - Tags: .NET Core Framework, Desktop Bridge, Fluent Design, UWP, UWP XAML Islands, Windows Forms, Windows Presentation Foundation - Article Type: News At the beginning of March and at its developer conference in May, Microsoft made several announcements about the future of Win32 apps. In this Ask the Admin, I'll look at how those developments will affect the application landscape in Windows. At the beginning of March and at its developer conference in May, Microsoft made several announcements about the future of Win32 apps. In this Ask the Admin, I'll look at how those developments will affect the application landscape in Windows.     It’s no secret that Microsoft has been aggressively pushing the Universal Windows Platform (UWP) over the last few years. Though more recently, we haven’t been hearing as much about it. That’s not to say that Microsoft has abandoned the platform. Far from it. But now that Microsoft doesn’t have a mobile offering, the importance of UWP seems diminished. Developers haven’t taken up the UWP gauntlet in big numbers, so Microsoft is looking to bridge more legacy apps to UWP. At the same time, it wants to expand the features of Windows Presentation Foundation (WPF) so that it’s not frozen in the past. Bridging Universal Windows Platform Microsoft’s Desktop Bridge allows developers to port its applications to UWP with only minimal changes to the code. But it does require access to the source code. As I mentioned in MSIX Installer to Bring More Win32 Apps to Microsoft Store on Petri, a new unified cross-platform installer technology will enable system administrators and developers to move win32 apps to the Microsoft Store even when there’s no access to the source code. Dropping Backwards Compatibility and . NET Core On the back of that news, it makes sense for Microsoft to continue investing in more popular frameworks, like WPF. Microsoft announced... --- ### Reset Expired Domain Admin Password in Azure VM - Published: 2018-06-06 - Modified: 2024-09-04 - URL: https://petri.com/reset-expired-domain-admin-password-in-azure-vm/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Domain Controller, Security, Virtualization, Windows Server - Article Type: How To If you only have one domain admin account set up in a Windows Server domain running in an Azure VM, you might be left struggling to enter a new password when the current one expires. In this Ask the Admin, I'll show you how to reset a domain account password using an Azure VM extension. If you only have one domain admin account set up in a Windows Server domain running in an Azure VM, you might be left struggling to enter a new password when the current one expires. In this Ask the Admin, I'll show you how to reset a domain account password using an Azure VM extension.     If like me, you use Azure for testing, you may have come across an issue where a Windows Server domain admin password expires. There’s no way to reset it when it expires. You get the option to log in as another user but the ability to reset the password is not displayed when connecting to the virtual machine using Remote Desktop (RDP). This wouldn’t be a problem provided you have more than one domain administrator account. But in testing scenarios, it’s easy to forget that having only one domain admin account might cause you a problem in the future. Azure includes a feature for resetting VM administrator passwords in cases where you get accidentally locked out. But it doesn’t support Windows domain controllers because Azure can only reset passwords of the local administrator account that is created when the VM is provisioned. Domain controllers don’t have a local administrator account, so there’s nothing for Azure to reset. Create a Script to Reset the Domain Admin Account Password The first step is to create a script to reset the domain administrator password. Open Notepad and save a file with the following command:... --- ### Teams Now Captures Compliance Records for Hybrid and Guest Users > Teams is now able to capture compliance records for contributions to private chats by users with on-premises Exchange mailboxes in a hybrid Office 365 org, - Published: 2018-06-05 - Modified: 2024-09-04 - URL: https://petri.com/teams-compliance-records-hybrid-exchange/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Compliance, Exchange on-premises, Exchange Online, Hybrid, Office 365, Teams - Article Type: News Teams is now able to capture compliance records for contributions to private chats by guests or on-premises users in a hybrid Office 365 organization. The new mechanism uses "phantom mailboxes" in the cloud to hold the compliance records for on-premises users. You must register your tenant to be able to get an updated GUI for the Security and Compliance Center, but PowerShell can find these records now. Capturing Compliance Data Since January Neatly aligned with the need for better compliance mandated by GDPR, Microsoft announced on June 1 that they have been collecting compliance records for messages sent by on-premises users in personal chats since January 31, 2018. Microsoft says that they are working to create compliance records for chats before this date but cannot commit to when this data might be available. Filling a Gap Capturing these conversations fills a big gap in the Teams compliance story. Before this, if someone with an on-premises Exchange mailbox participated in a personal chat, Teams did not capture copies of their messages. On-premises users do not have cloud mailboxes, and the mechanism used by Teams to capture compliance records relied on the ability to store compliance records in the hidden Team Chat folder in mailboxes. The problem is obvious when you think that two on-premises users could have had a personal conversation in Teams without leaving a trace of what they discussed. That’s not a desirable situation in a world when the ability to enforce compliance is demanded for regulatory or legal reasons. Channel conversations never had the same problem because Office 365 captures compliance records for these conversations in the group mailbox for to the team that owns the channel. Only for Synchronized On-Premises Mailboxes Starting last January, Microsoft provisioned special “phantom” mailboxes inside Office 365 for enterprise tenants (those with E1, E3, or E5 licenses) for on-premises mailboxes whose accounts are synchronized to Azure Active... --- ### Features Added to Azure for GDPR > This post describes a number of features and tools that you can use to enforce, comply with and assess GDPR compliance with for your Azure subscriptions. - Published: 2018-06-05 - Modified: 2024-09-04 - URL: https://petri.com/features-added-azure-gdpr/ - Categories: Cloud Computing - Tags: Azure, Blueprint, Compliance, compliance manager, Data Subject Request, Export, GDPR, Reference Architectures, Search - Article Type: Overview Microsoft has added a number of new features to Azure to support the European Union’s General Data Protection Regulation (GDPR), which many organizations outside and inside of Europe will require to avoid stiff penalties. Microsoft has added a number of new features to Azure to support the European Union’s General Data Protection Regulation (GDPR), which many organizations outside and inside of Europe will require to avoid stiff penalties. This post discusses the new features.   GDPR Plenty of material has been published in the last few weeks that covers GDPR more than we have time for here. In short, if you store personally identifiable information (PII) on a European Union citizen, then you must have consent for a suitable amount of data for the consented processing, keep it only as long as the data subject has agreed, secure that data, be able to produce reports on that data for data subjects, and delete that data upon request by the data subject. Azure has either added new features, modified existing services, or made previously preview functions generally available to support compliance with GDPR as of May 25th. Note that these announcements are to support your usage of the Azure infrastructure and platform, where the data subjects are your employees, contract staff, or external engineers with access to the administrative features of Azure. What happens inside a virtual machine or at the application layer is your responsibility, so you will either need to acquire third-party solutions or implement changes to custom-developed code. Data Subject Requests A data subject is a natural person that might have PII data stored in your systems. Azure does not have some magic tool that gathers everything into one place... . --- ### Automatic Shutdown Settings in Azure VMs > This post discusses the Auto-Shutdown settings in Azure virtual machines, how to configure them, and whether you should use this feature or not. - Published: 2018-06-04 - Modified: 2024-09-04 - URL: https://petri.com/automatic-shutdown-settings-azure-vms/ - Categories: Microsoft Azure - Tags: Automation, Azure, Azure Virtual Machines, Shutdown, virtual machines - Article Type: How To Let's discuss the Auto-Shutdown settings in the properties of an Azure virtual machine, how to configure them, and whether you should use this feature or not. This post will discuss the Auto-Shutdown settings in the properties of an Azure virtual machine, how to configure them, and whether you should use this feature or not.     Overview We normally pay for Azure virtual machines on a pay-as-you-go (PAYG) basis; for each minute that a virtual machine is running, you pay for that virtual machine’s consumption of compute and operating system (in the case of Windows Server). There are some variations to this rule, but this is the norm. A virtual machine might not be required to run all of the time. For example: A business application might be used only for end-of-month processing/reporting. A company might only operate during certain hours. A lab machine might only be required during the work day. By powering off the virtual machine, we can save money. Note that additional costs, such as the OS disks and data disks, will continue to accrue. Because of this, many customers want to be able to automatically power down virtual machines. Auto-Shutdown The auto-shutdown feature that Microsoft added to Azure virtual machines comes to us from Azure DevTest Labs; the sandbox service for developers and testers allows a subscription administrator to minimize compute costs by automatically powering down virtual machines at the end of the workday and optionally power them up again in the morning. However, things are slightly different for normal virtual machines that are not controlled by DevTest Labs. We only get the auto-shutdown feature and there is no option... --- ### With GitHub Acquisition, Microsoft Moves Fully into the Open Source Community - Published: 2018-06-04 - Modified: 2024-09-04 - URL: https://petri.com/github-acquisition-microsoft-moves-fully-open-source-community/ - Categories: Main - Tags: Acqusition, GitHub, Microsoft - Article Type: News Microsoft is buying GitHub, an online code repository company that is popular collaboration tool and a social network for developers. The rumors have been swirling for a couple days and now the ink has been signed, Microsoft is acquiring GitHub; an online code repository company that is popular collaboration tool. GitHub is used by a significant number of companies and represents a way for Microsoft to remain at the focal point of the developer conversation. Microsoft offers a wide variety of tools to help developers build applications and with the acquisition of GitHub, the company now owns the most popular online tool for creating, sharing, and documenting projects. Microsoft is paying $7. 5 billion for the company and Nat Friedman, former CEO of Xamarin (acquired by Microsoft in 2016), will take over as CEO. Additionally, GitHub is also a social network for developers and it serves as a way for a user to easily show off their portfolio of apps and services that they have created and the projects where they have contributed code. Seeing as Microsoft also owns LinkedIn, the company now has a complete social platform for both its business and developer audiences. The online tools is one of the primary embodiments of the open source community. Even though Microsoft, many years ago, shunned this type of development, the company has fully embraced this model under Satya Nadella. Github's business model is to charge users per month to host their code and projects on the platform. Seeing as it is a private company, we don't know what the balance sheet looks like but Bloomberg noted that in 2016... --- ### MSIX Installer to Bring More Win32 Apps to Microsoft Store - Published: 2018-06-01 - Modified: 2024-11-19 - URL: https://petri.com/msix-installer-promises-to-bring-legacy-win32-apps-to-the-microsoft-store/ - Categories: Windows Client OS - Tags: App-V, Desktop Bridge, Developers, Microsoft Store for Business, MSIX, Project Centennial, UWP, Windows 10 - Article Type: News Microsoft's new MSIX unified packaging format promises to make it easier to bring legacy apps to the Store, even if you don't have access to the app's source code. In this Ask the Admin, I'll explore how MSIX differs from existing tech, like the Desktop Bridge. Microsoft's new MSIX unified packaging format promises to make it easier to bring legacy apps to the Store, even if you don't have access to the app's source code. In this Ask the Admin, I'll explore how MSIX differs from existing tech, like the Desktop Bridge.     At the beginning of March, Microsoft announced a new unified packaging format at its Windows Developer Day. The MSIX format is Microsoft’s vision for ‘a complete containerization solution and it inherits all the great features in UWP and most importantly, it applies to all Win32, WPF, Windows Forms, and UWP applications. The MSIX packaging format was open sourced today. ’ MSIX will let developers use one format for packaging modern and legacy Windows 10 applications. It pulls elements from Windows Installer (MSI) while providing modern features of the Universal Windows Platform (UWP), like robust updating, a managed security model with flexible capabilities, support for the Microsoft Store, enterprise management, and custom distribution models. Microsoft Announces MSIX Installer (Image Credit: Microsoft) A Bridge to UWP MSIX was built from scratch to provide complete containerization for all types of Windows 10 application. Microsoft is trying to move away from Windows Installer (MSI) and legacy applications in general. But while UWP offers many advantages, apps are limited because of a restricted API set. To overcome the limitations of UWP and the need to completely rewrite win32 apps, Microsoft’s Desktop Bridge provides a way to port legacy apps to the Microsoft... --- ### Paul Thurrott's Short Takes: June 1 - Published: 2018-06-01 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-1/ - Categories: Windows 10 - Tags: News - Article Type: Overview Because it's hazy, hot, and humid, this week's edition of Short Takes looks at Microsoft's market cap gains, more internal shakeups at the software giant, a fast-moving Windows 10 release, and much, much, more. Because it's hazy, hot, and humid, this week's edition of Short Takes looks at Microsoft's market cap gains, more internal shakeups at the software giant, a fast-moving Windows 10 release, and much, much, more. Of Microsoft's unexpected market cap gains This week, Microsoft's market capitalization---essentially a company's worth or value, as calculated by multiplying its stock price by the number of outstanding shares---unexpectedly surpassed that of Google parent Alphabet, the first time that's happened in several years. So what's the reason for this sudden gain? Some new product release? The success of Microsoft's cloud efforts? Nope. As many of you know, market cap, like anything stock price related, is black magic hoo-hickey. And Microsoft's gains in recent years are due to only one thing: A PR charm offensive centered around Satya Nadella's love of inclusion and accessibility. It's a weird thing to watch a company like Microsoft for about 25 years and see this nonsense actually work. But after 15 years or so stock price flat-lining under previous CEO Steve Ballmer---who had actual product ideas and wanted to compete, not cooperate, with everyone---it's still a welcome change. "Amazon and Microsoft Embrace the Blockchain Future" It's what the Borg would have wanted. More shakeups in the wake of Windows demotion When Microsoft kicked Terry Myerson and his ambitions for Windows to the curb earlier this year, I noted that this would be the first step of many this year. And that we could expect further course corrections in the... --- ### In latest Microsoft Re-Org, Edge Becomes a Bigger Focus - Published: 2018-06-01 - Modified: 2024-09-24 - URL: https://petri.com/latest-microsoft-re-org-edge-becomes-bigger-focus/ - Categories: Windows Client OS - Tags: Microsoft, News, re-org - Article Type: News Microsoft has once again changed up its org structure but this time around, Edge is becoming a bigger focus while other changes help align the new leadership structure. Around, around, and around we go as Microsoft continues to shuffle the deck chairs to change the org structure of its massive ship. In this latest update which occurred earlier this week, Microsoft is disbanding Kudo's org (which completes changes I wrote about earlier this year), is moving Edge to a more prominent role, and a few other changes but I want to focus on Edge as this is the item you should be watching. At a high level, some of the items previously nested under Jason Zander (CVP in charge of Windows engineering) are now under EVP Rajesh Jha's umbrella of the Experiences and Devices team. Specifically, as Mary Jo notes and who did a great writeup about this as well, Windows mobile-device management and the analytics piece of the org have been moved. Further, Kudo's team, I'm told, is now no longer a group and those reports are now in other parts of the Microsoft's org. I believe this process actually started a few months ago with Megan Saunders leaving Kudo's team and she is now heading up Cortana, based on the demos at Build and her role in the keynote. For those wondering where Marcus Ash landed, previously he was working on Cortana, he is now the General Manager for Tasks at Microsoft. Aside from all these changes, the way Microsoft is looking at Edge is evolving and it's going to play a larger part in the company's future as Windows continues to be pushed... --- ### Everything You Need to Know About Office 365 -- May 2018 > News, notes, and opinions from Microsoft MVP Shane Young for the Office 365 Ecosystem in May 2018 without any GDPR bashing. - Published: 2018-05-31 - Modified: 2024-11-19 - URL: https://petri.com/everything-need-know-office-365-may-2018/ - Categories: Microsoft 365 - Tags: Excel, Microsoft Teams, Office 365, SharePoint - Article Type: News Another month has come and gone and the pace of change in the Office 365 ecosystem continues to wear me out. Another month has come and gone and the pace of change in the Office 365 ecosystem continues to wear me out. That is okay. I did a bunch of keeping up so you could quickly read this article and be up to speed. This month, I sprinkled in plenty of side comments and also kept coming back to challenge that the line between SharePoint and Office 365 is getting really fuzzy. At some point, we will have to discuss how they absorbed each other. Shane     Watch Out for Phishing Emails Disguised as Office 365 Invoices and SharePoint Sharing Emails Well, it is official. O365 is as mainstream as it gets. Now it looks like the evil doers of the world are now sending you realistic looking SharePoint and O365 emails with links that do bad things to your computer. I personally received two of these this month and while my keen eye (ha! ) immediately knew better, I still had to look twice. Then I immediately warned my co-workers to be careful, the Twitterverse, and now I am passing it along to you. I know bad emails are the norm but never hurts to remember to double check even the real looking ones. Turns out quite a few people on Twitter were seeing the same thing. Office. com Gets Artificial Intelligence Turns out that Microsoft wants everyone to start their day at Office. com and to encourage this behavior, it announced a whole host of new functionality. Microsoft... --- ### Everything You Need to Know About Windows -- May 2018 - Published: 2018-05-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-may-2018/ - Categories: Windows Client OS - Tags: Cortana, Progressive Web Apps, Windows 10, Windows 10 April 2018 update - Article Type: Overview This month I look at Windows 10 April 2018 Update woes, Progressive Web Apps in the Microsoft Store, new productivity features, and new security features in the next version of Windows. This month I look at Windows 10 April 2018 Update woes, Progressive Web Apps in the Microsoft Store, new productivity features, and new security features in the next version of Windows.     Windows 10 April 2018 Update Released As I reported in this month’s Patch Tuesday article, April was supposed to see the release of the Windows 10 April 2018 Update (version 1803). Because of a last-minute bug, Microsoft released build 17134 to Insiders rather than a cumulative update for build 17133. This had previously been thought to be the version Microsoft would release in the middle of April. Microsoft announced the Windows 10 April 2018 Update on April 27th and made it more widely available May 8th via Windows Update. Timeline is the only major new feature in the update. Other improvements include Near Share, Focus Assist, enhancements to Microsoft Edge, including Service Workers for Progress Web Apps (PWAs), and improvements to Cortana. Applications Hang or Freeze The April 2018 Update has seen its fair share of issues. The first users noticed that certain applications could freeze or hang, including Cortana and Chrome. Microsoft released an update (KB4103721) for this and several other problems on May 8th. Intel and Toshiba SSDs Just as that problem had been fixed, Microsoft acknowledged an issue installing the April 2018 Update on devices with Intel SSD 600p Series and Pro 6000p Series drives. An update to address the problem should be available by next month’s Patch Tuesday. In the meantime,... --- ### Everything You Need to Know About SharePoint -- May 2018 Edition > A rundown of the news and notes for SharePoint for May 2018 from SharePoint MVP Shane Young. Yes, we are getting more SharePoint on-prem and VR. - Published: 2018-05-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-sharepoint/ - Categories: SharePoint - Tags: Microsoft SharePoint - Article Type: News This month's article is really just a who-is-who from the SharePoint Conference NA that was held in Las Vegas. This month's article is really just a who-is-who from the SharePoint Conference NA that was held in Las Vegas. I pulled out some of my favorite announcements and gave you some context. Kind of nice of Microsoft to hold a whole conference to make my job easier this month. Here we go:     Watch the SharePoint Virtual Summit on Demand The Summit was the keynote from SharePoint NA recorded for your viewing pleasure. Good news is they did a good job of hitting on all of the announcements. Really, if you watch it, you probably don’t need me this month. Yeah right! They had no opinion or snark. That is what I am here for. You can view it here. SharePoint spaces Let’s get this one out of the way early. The announcement was met with a lot of... opinions. If you haven’t seen it yet, spaces (yes, the lower case S is on purpose) is the integration of mixed reality with SharePoint. The idea is that you can use a virtual reality headset to interact with a SharePoint document library to discover and then interact with content. No, this isn’t one of those weird stories where the words dance and jump off the page. Instead, think of the library hosting things like a blueprint or product that you can manipulate. While I think it is easy to mock today, I think it is laying the groundwork for a cool future. What that is, I don’t know... --- ### Understanding External Access to Documents in a Microsoft 365 Tenant > It's a good idea to understand whether any external people have access to documents in your Office 365 tenant. SharePoint Online doesn't tell us. - Published: 2018-05-31 - Modified: 2024-09-05 - URL: https://petri.com/external-access-documents-office-365-part-1/ - Categories: Microsoft 365, Microsoft Teams, Office, Outlook, SharePoint, SharePoint Online - Tags: Get-SPOExternalUser, Get-SPOUser, Office 365 Groups, OneDrive for Business, SharePoint Online, sharing, Teams - Article Type: How To It's a good idea to understand whether any external people have access to documents in your Office 365 tenant. There's no option on the Office 365 or SharePoint Online consoles to tell you what access external users enjoy to SharePoint sites, so we must use some PowerShell to interrogate SharePoint and see what that reveals.   A recent exercise to analyze the potential leakage of information from an Microsoft 365 tenant following a hacking attack posed the question: “with whom outside the company do we share documents and files? ” It’s a great question, and it’s one that has no obvious answer. The usage data for SharePoint Online available in the standard Office 365 reports tells us who shares documents inside and outside the tenant (Figure 1), but it tells us nothing about what they share. Figure 1: Office 365 Sharing report (image credit: Tony Redmond). Email Sharing Before we consider how to discover more about the sharing habits of tenant users, we need to understand how sharing happens within Office 365. Sharing has always been a big part of email. Users attach files to messages and send to all and sundry on an as-needed basis. Message tracking logs have been part of Exchange for twenty-odd years, but (and rather bizarrely) have never captured attachment names. A transport agent might do the trick, but you cannot install transport agents within Exchange Online. Content searches can also find messages sent with attachments, but this is an activity best done during a formal investigation when you have some knowledge about what you are looking for. Given that users will continue to share documents by email, if you want to protect sensitive documents, you have a choice of data loss prevention rules, message encryption (applied by users or by transport rules), or... --- ### Everything You Need to Know About Azure Infrastructure -- May 2018 Edition > This post provides a summary of the Azure infrastructure (IaaS) news from May 2018, spanning virtual machines, storage, networking, compute, and more. - Published: 2018-05-31 - Modified: 2024-12-03 - URL: https://petri.com/everything-need-know-azure-infrastructure-may-2018-edition/ - Categories: Microsoft Azure - Tags: Android, App Services, Avere Systems, AzCopy, Azure, Azure Lab Services, Azure Monitor, Azure Portal, Azure Security Center, Azure SQL, Azure Virtual Machines, CDN, Cloud Shell, Compute, Containers, Content Delivery Network, Emulator, ExpressRoute, GDPR, Hyper-V, IaaS, linux, migration, Network Watcher, PowerShell, Reserved Instances, Scale Sets, Service Fabric, storage, Traffic Manager, virtual machine scale sets, virtual machines, Windows Hypervisor Platform - Article Type: Overview I predicted that the Build conference would give us lots of Azure news. In one respect, I was right; there was lots of news. I predicted that the Build conference would give us lots of Azure news. In one respect, I was right; there was lots of news. However, it was mostly related to PaaS, data, machine learning/AI, and IoT services. A little came out of the conference for the world of infrastructure but lots of smaller things happened over the course of the month.     What Service In Azure ... ? As a server person, you might find yourself facing a group of developers across a meeting room table one day. They’ll be asking you what services in Azure that you would recommend for their application’s platform. If you spend enough time watching videos from the Microsoft Ignite conferences, you might have a good idea. However, each video is probably 75 minutes and there are many of them to watch over three years. A recently posted page on Microsoft Docs summarizes the decision-making process into a pretty simple flow chart. An Azure Compute Selection Chart   Using this chart and some basic information, you can steer your way through choosing a compute platform for hosting the binaries of a new or migrated service. Appearances Matter One of the benefits and/or downsides of working in the cloud is the rate of change! I remember long conversations with people about “Codename Ibiza”, the once-new portal for Azure that would become the Azure Portal. I, like many others, did not like the new user interface. It felt... --- ### SharePoint Hub Sites -- A Bit Buggy but Still Very Valuable for Enterprises Worldwide - Published: 2018-05-30 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-hub-sites-bit-buggy-still-valuable-enterprises-worldwide/ - Categories: SharePoint Online - Tags: Modern SharePoint, SharePoint Communication Sites - Article Type: Opinion Jasper Oosterveld, Microsoft MVP and Modern Workplace Consultant at InSpark, discusses issues with the SharePoint Hub Sites. The Intranet is still, often to my surprise and annoyance, an important part of the Modern Workplace. The SharePoint Communication Sites have been created for the facilitation of an Intranet Portal. A Communication Site has a number of powerful features     Communicating and publishing content Fast delivery of communication and Intranet Portals Powerful out-of-the-box Apps such as news and event modules Responsive design Integration with Microsoft SharePoint Mobile App Uniformity & structure and access through SharePoint Hub Sites (more... ) --- ### What Is Microsoft's Intelligent Edge? - Published: 2018-05-30 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsofts-intelligent-edge/ - Categories: Cloud Computing - Tags: artificial intelligence, Azure, Azure IoT, Azure IoT Edge, Azure Stack, cloud computing, Containers, Docker, IoT - Article Type: Overview There's been a lot of talk again this year at Build about Azure, IoT, and cloud computing in general but one term that keeps cropping up is the 'Intelligent Edge'. In this Ask the Admin, I'll explain Microsoft's cloud vision in more detail. There's been a lot of talk again this year at Build about Azure, IoT, and cloud computing in general. But one term that keeps cropping up is the 'Intelligent Edge'. In this Ask the Admin, I'll explain Microsoft's cloud vision in more detail.     Microsoft already has two products incorporating the words ‘Intelligent’ and ‘Edge’. Edge is the modern browser that comes with Windows 10 and IntelliSense is a code completion technology in Visual Studio and the Windows PowerShell ISE. But Microsoft’s Intelligent Edge, which Satya Nadella touted at this year’s Build conference, is a term used to describe the offloading of artificial intelligence (AI) from the cloud to on-premises Internet-of-Things (IoT) devices. IoT devices collect data using sensors to provide information about the operational status of machines, like cars, fridge freezers, factory machines, and much more. Cloud Latency Cloud computing allows organizations of all sizes to utilize compute resources on a massive scale, whenever they need it, but without the burden of paying for it at times when it isn’t required. But doing all the heavy lifting in the cloud also comes at a cost. Sending telemetry to the cloud, waiting for it to be processed, and then sending data back to devices can involve a significant latency. Microsoft Intelligent Edge (Image Credit: Microsoft)   The Intelligent Edge solves that problem by lifting logic developed to run in the cloud and exporting it to devices near to where data is collected. Not... --- ### A Couple of Tips For Ransomware Defense for Disaster Recovery - Published: 2018-05-29 - Modified: 2024-09-04 - URL: https://petri.com/ransomware-defense-disaster-recovery/ - Categories: Backup & Storage - Tags: Backup, Disaster Recovery, Security - Article Type: Overview Building in disaster recovery protection from ransomware is a key step to making sure that when, not if, your company is impacted by these viruses that you remain protected. Just like Harry Potter had to learn new skills in his defense against the dark arts studies, today’s IT administrators need to add new and improved defenses to protect your businesses from the ever-growing threat of ransomware. With traditional disaster recovery, the administrator was mainly concerned with recovering from a hardware or software failure or sometimes in extreme cases, from a natural disaster or site failure. While that’s all certainly still valid, there’s little doubt that exposure to a ransomware attack can leave your business every bit as inoperable as if the servers and OS had failed; the security firm Malwarebytes estimates that ransomware attacks increased more than 90 percent from 2016 to 2017. Several recent high profile ransomware attacks serve to highlight the dangers of a ransomware infestation; notably, the ransomware attack that crippled the city of Atlanta for several days shows that ransomware isn’t just restricted to hospitals or Eastern European countries that still run Windows 7. The Atlanta attack in March of 2018 left 8000 city employees without access to their systems for several days. Atlanta was hit by ransomware named SamSam and they were asked for a ransom of approximately $50,000 worth of bitcoin. They refused to pay the ransom and brought in eight different security firms to assist with ransomware cleanup efforts as their email, financial software, CRM and other vital city services were inaccessible. Overall, it’s estimated that the city of Atlanta spent $2. 6 M to recover from the attack and their key services... --- ### GDPR Is Here -- What Does It Mean To You? > In this post, I will summarize the General Data Protection Regulation (GDPR) and what it means to organizations inside and outside of Europe. - Published: 2018-05-29 - Modified: 2024-09-04 - URL: https://petri.com/gdpr-is-here-what-does-it-mean-to-you/ - Categories: Security - Tags: Data Protection, EU, European Union, GDPR, Privacy, Security - Article Type: Overview The General Data Protection Regulation applies to any business storing personal data on EU citizens. GDPR Is Here - What Does It Mean To You? The General Data Protection Regulation (GDPR) applies to any business storing personal data on EU citizens. If you’re outside of Europe, you probably haven’t heard of the rules and potentially massive penalties. In this post, I will summarize GDPR and what it means to you.     Data Protection The last time that the European Union attempted to protect personal data was in 1995 with the Data Protection Directive. This set of guidelines instructed EU member states on how to protect personal data ... based on how things were in 1995. There was no cloud, no Facebook, and the Internet was still toddling around college campuses and a few corporations. Things have changed, the nature of personally identifiable information (PII) has changed, and how that data is stored, shared, and easily transmitted around the world has completely changed. The EU has updated its data protection with a new regulation (more rigid than a directive) called the General Data Protection Regulation, or GDPR. The GDPR document is quite a beast to read and understand. It is 11 chapters with 99 articles. Each article documents scope, protection, requirements, and penalties. More often than not, the articles cross-reference each other, requiring the reader to have many tabs open to fully understand an individual article. But worst of all, GDPR is often subjective and open to interpretation, leading to many “experts” having opposing opinions on how it should be implemented. However, one... --- ### Interpreting SharePoint Online Audit Records > Microsoft says that SharePoint Online and OneDrive for Business offer secure collaboration within Office 365. Good auditing is part of the logic. - Published: 2018-05-29 - Modified: 2024-12-03 - URL: https://petri.com/sharepoint-online-audit-records/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: OneDrive for Business. Office 365 audit log, SharePoint Online - Article Type: Opinion Microsoft says that SharePoint Online and OneDrive for Business offer secure collaboration within Office 365. Good auditing is part of the reason why, but because SharePoint is so chatty when it comes to generating audit records, you might need some help to filter what's in the audit log to see what's really important. Microsoft Says SharePoint Online is Secure A recent Microsoft post entitled “SharePoint and OneDrive Security and Compliance: Security you can trust, control you can count on” sets out some reasons why Microsoft thinks SharePoint Online and OneDrive for Business are capable of handling today’s security challenges. Given that I store all my work in the cloud, I hope that the assertion is true. In any case, the post included the promise of a free eBook (in reality, a 22-page marketing white paper). The eBook “Securing your content in the new world of work with SharePoint and OneDrive eBook”) makes a big thing of auditing, saying: “With advanced auditing in Office 365, you can track changes and user activity in SharePoint Online and OneDrive for Business. This allows you to audit changes made to files and site collections, as well as the users who made changes. Every user action is recorded for a full audit trail. ” And recommends that you use the “RESTful APIs” to get an “unprecedented level of visibility into user and admin transactions within Office 365. ” Quite. SharePoint Audits Activity There’s both good and bad in these statements, or rather, some loose language. For instance, I have no idea what “advanced auditing in Office 365” means because there’s only the Office 365 audit log. Perhaps I missed the advanced class. It is true that the Office 365 audit log gathers a great deal of information about admin and user activity. Audit records from SharePoint and OneDrive... --- ### Choosing an Azure Storage Account Type > This post will explain how to pick a storage account type in Azure, from the four types: Cool Blob, Hot Blob, General Purpose v1, and General Purpose v2. - Published: 2018-05-25 - Modified: 2024-09-04 - URL: https://petri.com/choosing-azure-storage-account-type/ - Categories: Microsoft Azure - Tags: Azure, Cool Blob, General Purpose v1, General Purpose v2, GPv1, GPv2, Hot Blob, storage, Storage Account, Storage Transactions - Article Type: Overview There are four kinds of storage account in Azure and it can be hard to decide on which one to use. There are four kinds of storage account in Azure and it can be hard to decide on which one to use. This post will explain how to pick a storage account type in Azure.     The Storage Services There are several storage services in Azure. It is important to understand what these are before we start discussing storage accounts. First, let’s ask if you need a storage account at all! Azure offers managed disks as a new way to create virtual machine storage. A managed disk is ... managed by Azure on your behalf. It handles the placement to guarantee high availability and performance and you get additional functionality. With Managed Disks, you do not need to create a storage account/container to store the disks. All the work is done under the covers for you. The managed disk is my choice when creating a new virtual machine. There are a couple of minor gotchas today: You cannot move managed disks to another resource group or subscription. This will be fixed soon by Microsoft but there is a workaround that requires you to rebuild the virtual machine (no data, identity or application/settings loss). If you wish to use Azure Site Recovery (ASR) for on-premises to Azure disaster recovery, you must use a storage account to store the replicated disks. Now for the storage account services. There are five of them, which are automatically selected by Azure for the data you are using. Each has its own billing rate: Blob:... --- ### Handling GDPR Right to Erasure Requests for Office 365 > GDPR Article 17 allows individuals to request an organization to erase their personal data. Now that GDPR is in effect, how can you erase Office 365 data? - Published: 2018-05-25 - Modified: 2024-09-04 - URL: https://petri.com/gdpr-right-erasure-requests-office-365/ - Categories: Exchange Online, Microsoft 365, Microsoft Teams, Office, SharePoint Online - Tags: Exchange Online, GDPR, Office 365, OneDrive for Business, SharePoint Online, Teams, Yammer - Article Type: How To GDPR Article 17 allows individuals to request an organization to erase their personal data. Now that GDPR is in effect, what are the practical steps to take to process an erasure request against Office 365 data? As it turns out, the answer is not straightforward. GDPR Becomes Reality The European Union General Data Protection Regulation (GDPR) comes into force today and we move from preparation to reality. Maybe now the flood of email asking for consent to remain on mailing lists will abate and we won’t see quite so many people trying to make hay from GDPR FUD. It’s not quite as bad when The Irish Times reported that “an army of advisors, some of them chancers, have fanned out in recent months to make GDPR the most profitable cash cow/scare story since the millennium bug,” but it has come close. In any case, organizations must now cope with the requirements set down in GDPR, which means that practical interpretations of what needs to be done with IT systems are the order of the day. Lots of preparatory work has no doubt been done; now it’s game time. Two practical issues that Office 365 tenants might be asked to deal with soon are Data Subject Requests and Data Erasure Requests, defined under Articles 15 and 17 respectively. Office 365 has an off-the-shelf (partial) answer for one; how to handle the other is not as obvious. Data Subject Requests The release of support for GDPR Data Subject Request (DSR) cases in the Security and Compliance Center is a welcome step to help Office 365 tenants cope with the new regulations. However, discovering what personal information exists in Exchange, SharePoint, OneDrive, and Teams in response to a request to know what a data controller (an... --- ### Managing Linux, Windows, AWS, and Azure Using PowerShell Core Part 2: PowerShell Remoting Over SSH - Published: 2018-05-25 - Modified: 2024-09-04 - URL: https://petri.com/managing-linux-windows-aws-and-azure-using-powershell-core-part-2-powershell-remoting-over-ssh/ - Categories: Cloud Computing - Tags: cloud computing, linux, OpenSSH, PowerShell, PowerShell Core, PowerShell Remoting, remote management, SSH, Windows Server - Article Type: How To In this second part, I’ll look at how to manage Linux and Windows systems remotely using PowerShell Core. In the first part of this two-part series, I showed you how to use PowerShell Core in Azure Cloud Shell, install Core in Windows and Ubuntu, and how to install modules for managing AWS and Azure. In the second part, I’ll look at how to manage Linux and Windows systems remotely using PowerShell Core.     PowerShell Remoting and SSH PowerShell Core’s real selling point is its ability to manage different platforms remotely, whether it be Linux or Windows. You can even create remote PowerShell sessions to Linux and Windows systems at the same time and run commands against all open sessions. The easiest way to connect to Linux from PowerShell Core is using OpenSSH. $ubuntuip = “104. 214. 222. 33” ssh ubuntuadmin@$ubuntuip The above commands open a terminal session on Linux but you won’t be able to run PowerShell cmdlets even if PowerShell Core is installed on the remote Linux device. To use PowerShell, you’ll need to use standard PowerShell Remoting cmdlets, like Enter-PSSession, and modify the sshd_config config file in Linux to start PowerShell Core when making a remote connection. If your Linux distribution doesn’t already have SSH installed, you can download and install it using the following two commands: sudo apt install openssh-client sudo apt install openssh-server If you are not familiar with Linux, the sudo command is used to run code with root privileges, which is roughly equivalent to the local administrator account in Windows. In Linux, add the following two lines of code to the sshd_config... --- ### Managing Linux, Windows, AWS, and Azure Using PowerShell Core Part 1: Installing PowerShell Core and Modules for Azure and AWS - Published: 2018-05-24 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-powershell-core/ - Categories: Cloud Computing - Tags: cloud computing, linux, OpenSSH, PowerShell 6.0, PowerShell Core, SSH, Windows Server - Article Type: How To In the first part of this two-part series, I'll show you how to get started with PowerShell Core for managing heterogenous cloud environments. In the first part of this two-part series, I'll show you how to get started with PowerShell Core for managing heterogenous cloud environments. In the second part, I look at how to manage Linux and Windows systems remotely using PowerShell Core.     In case you missed it, Microsoft announced the general availability of PowerShell Core (PSC) 6. 0 in January 2018. PowerShell Core is a cross-platform (Windows, Linux, MacOS), open-source version of PowerShell built for managing the hybrid cloud and mixed-OS environments. Windows PowerShell, which is what ships with modern versions of Windows, is based on the . NET Framework. But PowerShell Core is built on . NET Core, a scaled-down and open-source version of the . NET Framework for Windows and Linux. If you use PowerShell exclusively to manage Windows, continue using Windows PowerShell because Core is missing dedicated Windows modules and a lot of functionality, like Out-GridView, PowerShell Workflows, WIM and COM support, and support for Remote Procedure Calls (RPC). But PowerShell Core, while in its infancy, is worth a look if you want to use a common shell to manage both Windows, Linux, and IaaS cloud solutions. PowerShell Core and Azure Cloud Shell If Microsoft Azure is your cloud platform of choice, you’ll be pleased to know that PowerShell Core is built-in to Cloud Shell. If you’re not familiar with Cloud Shell, it provides an interactive, browser-accessible shell for managing Azure resources. To access Cloud Shell, open the Azure management portal and click the Cloud Shell icon in... --- ### What's New In SharePoint Server 2019 - Published: 2018-05-24 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-sharepoint-server-2019/ - Categories: SharePoint, SharePoint 2019 - Tags: News, SharePoint, SharePoint 2019 - Article Type: News This week, Microsoft announced SharePoint Server 2019 that will be released later this year and here is a list of everything that is arriving with the update. If you spend any time around the Microsoft ecosystem, you would think that the entire world is already running cloud software and that on-premises deployments are a legacy scenario. But the truth is that more organizations are still running on-premises environments in some capacity which means that running software locally is a reality that Microsoft cannot ignore. In the upcoming release of SharePoint Server 2019, the experience is optimized to work across all of your screens. Everything from your phone to your desktop is supported in a way that provides a familiar experience regardless of your resolution. The goal of the uninformed design is that you will spend less time searching for settings and content and more time on productivity based tasks. One of the big improvements is the new native support for hybrid scenarios that you can configure during deployment. This alone is a huge win for any company that still has a significant on-premises operation but also has assets in the cloud as well. And for those of you who have large libraries, the significantly improved OneDrive sync client will arrive with this iteration of SharePoint. All of the new features for front-end users come from SharePoint Online but now operate locally. Here is a list of many of the changes and enhancements that will be included in this release: Modern Sites, Pages, Lists, and Libraries Team News SharePoint Home Communication Sites Improved support for business process with PowerApps and Flow In addition to these changes,... --- ### Changed Process for Remoting into Azure VMs > This post explains how to log into Windows (RDP) or Linux (SSH) virtual machines using the new experience in the Azure Portal. - Published: 2018-05-24 - Modified: 2024-09-04 - URL: https://petri.com/changed-process-remoting-azure-vms/ - Categories: Microsoft Azure - Tags: Azure, Azure Portal, Connect, console, Log-in, puTTY, RDP, Remote, Remote Desktop, SSH, virtual machines - Article Type: How To Aidan Finn explains how the new process for logging into Windows Server and Linux virtual machines works in the Azure Portal.   This post will explain how the new process for logging into Windows Server and Linux virtual machines works in the Azure Portal.       Background The method that we used for logging into Azure virtual machines has remained unchanged since the preview days of the Azure Portal when it was still known as Project Ibiza. Microsoft changed this process recently and this post will explain how you can log into your machines today. There are some pre-requisites: There must not be a firewall rule preventing access to RDP (Windows – TCP 3389) or SSH (Linux – TCP 22), whether it’s an Azure network security group (NSG) or a third-party firewall virtual appliance. Note that Just In Time VM Access could be blocking access via an NSG and you might need to request access via Azure Security Center. You must have network connectivity, either via a public IP address, point-to-site VPN, site-to-site VPN, or ExpressRoute. Connect To log into an Azure virtual machine via the Azure Portal, open the virtual machine and click on Connect in the Overview blade. A popup blade will appear on the right called Connect To A Virtual Machine. What you do from here will depend on whether your virtual machine has a Windows or a Linux guest operating system (OS). Logging into a Windows or Linux Virtual Machine in the Azure Portal Windows Virtual Machine If the virtual machine is running Windows, then the... --- ### Azure AD Login for Azure Linux VMs > This post explains how to sign into Linux virtual machines in Azure using Azure Active Directory (AD) for better security, auditing, and ease of use. - Published: 2018-05-23 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-login-azure-linux-vms/ - Categories: Microsoft Azure - Tags: Authentication, Azure, Azure AD, Azure Virtual Machine, Connect, linux, SSH, virtual machines - Article Type: How To Aidan Finn discusses what Azure Active Directory Authentication for Azure Linux virtual machines is, how to configure it, and how to login. This post will discuss what Azure Active Directory Authentication for Azure Linux virtual machines is, how to configure it, and how to login.     Note that this is a preview feature. Most of the time, preview features are supported for production workloads but this time, Microsoft has stated: This feature is in preview and is not recommended for use with production virtual machines or workloads. Use this feature on a test virtual machine that you expect to discard after testing. It is a cool new feature and it is worth having a look at. At this time, it only works with the following Linux distributions but in all regions, except for the sovereign/government clouds: CentOS 9 and 7. 4 RedHat Enterprise Linux RHEL 7 Ubuntu 14. 04 LTS, 16. 04, and 17. 10 Windows Server support is scheduled for later this year. Microsoft’s documentation explains how you can deploy the setting using CLI (an alternative to PowerShell) but it is possible to deploy using the Azure Portal, as I will show here. What Is Azure AD Authentication Normally you sign into a Linux virtual machine using a local username with a password or SSH key. It is possible to join machines to a central authority, such as Active Directory Domain Services (or Azure AD Domain Services), but Active Directory is not always suitable. With this new preview feature, you can get server/application administrators/developers to sign in using their corporate credentials via Azure AD without any kind of domain join. Benefits include:... --- ### Surface Book 2: Six Months Later - Published: 2018-05-22 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-2-six-months-later/ - Categories: Hardware - Tags: review, Surface Book 2 - Article Type: Review Microsoft's Surface Book 2 has been available for six months and it's time to look back at the good, the bad and the indifferent aspects of the hardware. When the Surface Book 2 was announced late last year, I had high hopes that this was going to be among my favorite laptops, ever. All Microsoft had to do was take the original Book and address the few issues with the hardware and voila, a hero device for the category. It's a bit hard to believe but the device was released six months ago and since that time, I have taken the high-end 15in Surface Book 2 on the road to Vegas, NYC, Seattle, Chicago and a few other locations and after all that time with the hardware, here is my long term update. The Good: The hardware has held up well. One question with any laptop is will it age gracefully or will it quickly turn into a grape that has been sitting in the sun for a few days? I use the Book 2 nearly every day and there are few signs of wear and tear. The only noticeable tarnishing is on the trackpad where you can see the heavily used regions but this is hardly a unique problem to the Surface Book 2. The keyboard has held up well, the screen is in excellent shape, and the lid, where I grab it to open the display, shows very little signs of use. Aside from the trackpad, if I properly cleaned this machine up, I bet that I could convince just about anyone that it is brand new. When it comes to performance, this machine... --- ### Guest Access in Planner Rolls Out > Planner now supports guest user access to its plans. Office 365 tenants will celebrate this feature because they've been waiting for it to arrive. - Published: 2018-05-22 - Modified: 2024-09-04 - URL: https://petri.com/guest-access-planner-rolls-out/ - Categories: Microsoft 365, Office - Tags: Azure B2B Collaboration, external access, Guest Accounts, Office 365, Planner - Article Type: News Planner now supports guest user access to its plans. Office 365 tenants will celebrate this feature because they've been waiting for it to arrive. It's curious that it has taken Microsoft so long to upgrade Planner for this feature given that Groups and Teams have had this capability for a while. But it's here now, so enjoy. External People are Team Members Too On May 5, the Microsoft announced guest access for Planner. Allowing external users to access plans has been a much-desired feature for customers, but apparently the developers only recently realized that teams involve people from outside an Office 365 tenant. It’s curious that it took the Planner folks so long to realize that teams span more than people from inside an organization. Perhaps they should have chatted with their Teams and Office 365 Groups colleagues to discover the usefulness of having guest users join teams. In any case, the functionality is here now. Azure B2B Collaboration is the Key Like Teams and Groups, Planner uses the Azure B2B Collaboration model for guest access. Like those applications, guest users join the membership of the underlying Office 365 Groups to gain access to all the resources associated with the group, now including its plans. Because Planner uses the Azure B2B Collaboration framework, it means that the deny or allow lists created for the Azure B2B External Collaboration policy control access to Planner too. Adding Planner Guests Planner doesn’t yet support the ability to add a new guest user to a group (but the support article is written, so it must be coming soon). This is a curious omission because issuing an invitation for a guest to redeem to join a group is a well-understood process at this point. It might be the case that Planner hasn’t worked out the details of how the redemption... --- ### Patch Tuesday -- May 2018 - Published: 2018-05-21 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-may-2018/ - Categories: Security - Tags: Patch Tuesday, Security, Windows 10 April 2018 update, Windows Server - Article Type: News This month the Windows 10 April 2018 Update finally drops, although some Intel SSDs don’t seem to be happy about it, and a zero-day vulnerability is being exploited in the wild. This month, the Windows 10 April 2018 Update finally drops, although some Intel SSDs don’t seem to be happy about it, and a zero-day vulnerability is being exploited in the wild.     Windows 10 April 2018 Update April’s Patch Tuesday was supposed to see the release of the Windows 10 April 2018 Update, or version 1803 as it is otherwise known. But as I reported last month, that didn’t happen because of a last-minute blocking bug. Microsoft decided to release another build (17134) to Insiders rather than release a cumulative update for build 17133, which was previously thought to have been the version that would be released to the masses. Microsoft officially announced the Windows 10 April 2018 Update on April 27th and made it available for download a few days later on April 30th. The update was made more widely available on May 8th via Windows Update. Timeline is the only major new feature in the update and it is part of Windows 10 Task View (WIN+TAB). Timeline is part of Project Rome, a set of APIs and features intended to drive deeper engagement by bringing together apps, people, and cloud services across different platforms. Other improvements in the update include Near Share, Focus Assist, enhancements to Microsoft Edge, including Service Workers for Progress Web Apps (PWAs), and improvements to Cortana. For more information on Project Rome and Timeline, see Project Rome and Windows 10 Timeline on Petri. Intel SSDs Stumble on April Update On May 8th,... --- ### With 400,000 Companies Now using SharePoint, Microsoft's Bringing Mixed Reality to the Platform - Published: 2018-05-21 - Modified: 2024-09-04 - URL: https://petri.com/400000-companies-now-using-sharepoint-microsofts-bringing-mixed-reality-platform/ - Categories: SharePoint - Tags: mixed reality, News, SharePoint - Article Type: News Microsoft is announcing a new feature for SharePoint today called Spaces that will bring Mixed Reality to the collaboration platform. This week, Microsoft is hosting the largest SharePoint conference of the year in Las Vegas and at the event, the company is talking about what's next for the platform. And with 400,000 organizations now using the software, it is the second most popular service as part of Office 365 with only email being more widely used. At the conference, the company announced SharePoint Spaces, a mixed reality experiences that allows you to view and interact with content from every angle and to visualize and manipulate data and product models in real time. The company is pitching this as the first major platform to 'mainstream' mixed reality and there is no doubt that the company hopes that this will be a significant step in bringing MR content and hardware to more companies around the globe. SharePoint Spaces makes it simple to create MR environments where a user of any skill level can create a gallery of products and content for viewing in a 3D space; at Build 2018 earlier this month, I was able to try out SharePoint Spaces and it really is simple for anyone to create a simple, high-quality, gallery and environment using mixed reality. During the SharePoint Spaces demo, I constructed from scratch a 'Space' and was then able to view it using a mixed reality headset; Microsoft says that its customers already have created a petabyte of content that can be used in these environments. But, I must admit, while the tools are easy to... --- ### SharePoint Server 2019 Public Preview to be Released in June - Published: 2018-05-21 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-server-2019-public-preview-released-june/ - Categories: SharePoint - Tags: News, SharePoint, SharePoint 2019 - Article Type: News SharePoint Server 2019 will enter public preview in June of 2018 but its final release date isn't know yet, but I have an educated guess. If you spend any time around the Microsoft ecosystem, you would think that the entire world is already running cloud software and that on-premises deployments are a legacy scenario. But the truth is that more organizations are still running on-premises environments in some capacity which means that running software locally is a reality that Microsoft cannot ignore. This week, Microsoft is hosting the largest SharePoint conference of the year in Las Vegas and at the event, the company is talking about what's next for the platform. For those that are waiting to get their hands on a local install of the next iteration of SharePoint, that download arrives in June of 2018. The feature improvements for the next iteration of SharePoint are not all that surprising include expanded support for hybrid scenarios out-of-the-box and user interface improvements including modern team sites, communication sites, lists, libraries, pages and news; all of these features arrive for cloud users first and then they are distributed to on-premises users. But the most significant improvement in the next iteration of SharePoint Server is delivering the extensibility of SharePoint Framework to SharePoint Server 2019, this will help eliminate the harsh differences between on-premises and Office 365. While we don't know the official release date yet for SharePoint Server 2019, with a public preview in June, I would expect the software to be released in the second half of this year. Specifically, I would expect Microsoft to make an announcement about the release date at... --- ### Paul Thurrott's Short Takes: May 18 - Published: 2018-05-18 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-18/ - Categories: Cloud Computing, Hardware, Mobile - Tags: News - Article Type: Overview Because I'm so tired my eyes hurt, this week's edition of Short Takes examines Surface Hub 2, a rumored $400 Surface tablet, the unbearable shyness of a young Bill Gates, and so much more. My God, that shirt. Because I'm so tired my eyes hurt, this week's edition of Short Takes examines Surface Hub 2, a rumored $400 Surface tablet, the unbearable shyness of a young Bill Gates, and so much more. Surface Hub 2 impresses in an early preview It won't really ship until 2019, but Microsoft's Surface Hub 2 is already impressing critics---even jaded ones such as myself---with its versatile and accessible design. It's still early yet, but this device appears to single-handily justify Microsoft's years of hardware investments and wipe away the ignominious defeats of such products as Zune, Lumia, and Surface RT. We should learn more about the fascinating and potentially revolutionary Surface Hub 2 at Ignite this September. I can't wait. "Bing Bans Bitcoin Ads" Bam. Microsoft rumored to be plotting a $400 Surface tablet And speaking of Surface, Microsoft appears to be making some other good decisions about this product line: A credible Bloomberg report says that the firm will release a smaller, non-Pro Surface tablet this year for just $400, setting off speculation about the markets---education, various verticals, I bet---that it may target. I think a low-cost Surface tablet is a brilliant, even necessary idea: Microsoft's premium strategy has not worked, and this could help ward off low-priced competitors and give users a reason to actually set foot in Microsoft retail stores. Never a bad thing. "Microsoft's Excellent Surface Laptop Is $300 Off" "Surface Pro is marked down 50 percent to... --- ### Google Introduces Cloud Memorystore Beta - Published: 2018-05-18 - Modified: 2024-09-04 - URL: https://petri.com/google-introduces-cloud-memorystore-beta/ - Categories: Backup & Storage, Cloud Computing - Tags: Cloud Memorystore, Database, Google Cloud Platform, News, Redis, storage - Article Type: News Google recently announced that the beta of its Cloud Memorystore service is now available to the general public. In a recent post on the Google Cloud Platform blog, Google announced that the beta of its Cloud Memorystore service is now available to the general public.     Cloud Memorystore, which was initially announced at the Redisconf event this past April, provides a highly-scalable managed Redis datastore that’s hosted on the Google Cloud Platform. Powered by Redis, Cloud Memorystore provides in-memory data storage, which ensures that data is delivered to users quickly and efficiently. With Cloud Memorystore service, data latency and throughput can be had at the sub-millisecond level, with a maximum network bandwidth of up to 12Gbps. And with support for a variety of data structures and other features that include persistence, replication, and the publish-subscribe pattern, developers can easily implement a variety of features within their applications. Google’s Cloud Memorystore allows developers to start off with with Redis instances as small as 1GB in size, with the ability to easily these instances up to a maximum size of 300GB. Instances can be created and configured within a few minutes with admins simply having to choose a few options in order to create an instance, such as the tier, capacity, and region. The estimated monthly cost of the instance will be displayed on the configuration screen, based on the settings that are selected. If an application happens to have a spike in traffic, creating a need for more storage, admins can easily scale the Redis instances to meet the increased demand. Admins can view metrics related to the instances... --- ### Google Announces Asylo Framework for Confidential Computing - Published: 2018-05-18 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-asylo-framework-confidential-computing/ - Categories: Cloud Computing, Security - Tags: Asylo, Google, Google Cloud Platform, News, Security - Article Type: News Google recently announced Asylo, the firm’s newest open-source framework for securing and protecting applications and data that are contained within a trusted execution environment. In a recent post on the Google Cloud Platform Blog, Google announced Asylo, the firm’s newest open-source framework (and SDK), for securing and protecting applications and data that are contained within a trusted execution environment or TSE.     With the Asylo framework, developers can reduce the risk of attacks on the back-end hardware and software layers that applications run on. This is done by enabling developers to create trusted execution environments (or “enclaves”), which prevent unauthorized access to the data and processes that are running within them. Asylo also helps to increase security by providing checks for code integrity and by offering the ability to encrypt communications that contain private or otherwise sensitive information. Asylo's aim is to make it easy to implement these security features by making trusted execution environments more widely available, whether it be for local environments or those based in the cloud. Previously, securing applications and data in a similar manner could have required specialized hardware and also hiring someone with expertise in configuring and managing the secure environment (as TSEs are traditionally found within a processor itself). Google designed Asylo with portability in mind so that developers can easily create applications without worrying about the specific environment or back-end the trusted execution environments are built on. Asylo can be deployed on a wide array of hardware options. And because Asylo is an open-source framework, users can begin using it for free and can even explore or modify the underlying codebase should they wish... --- ### Consumers Gain from Enterprise-Class Office 365 Features > Outlook.com (premium) now boasts two new protected email features taken directly from Exchange Online. It's an example of how the shared Office 365 - Published: 2018-05-17 - Modified: 2024-09-04 - URL: https://petri.com/outlook-gains-enterprise-class-office-365-features/ - Categories: Exchange Online, Microsoft 365, Office, Outlook - Tags: AIP, Azure Information Protection, Email Encryption, Office 365, Office 365 Home, Outlook.com, owa - Article Type: How To Outlook.com (premium) now boasts two new protected email features taken directly from Exchange Online. It's an example of how the shared Office 365 infrastructure enables Microsoft to make functionality available to users of its consumer and enterprise platforms as they want. OneDrive Restore is another example. In both cases, the features aren't available to free seats. The Benefit of a Common Office 365 Platform As reported some time ago, Exchange Online and Outlook. com share a common infrastructure. The same is true for OneDrive for Business and OneDrive. The consumer versions are less functional than their business counterparts found in Office 365, but because they use the same technology, it is relatively easy for Microsoft to transfer functionality from one side to the other. In the past, Microsoft has trialed technology like Inbox Sweep rules in Outlook. com before making it available in OWA. More recently, the flow of functionality seems to be from enterprise to consumer, with recent examples being the (much maligned by some) Focused Inbox and OneDrive restore. The newly-redesigned Outlook. com boasts a more modern user interface than the several-years-old skin worn by the enterprise version of OWA, and the addition of industrial-strength email encryption built on top of Azure Information Protection means that you don’t need to install any extra software to protect messages sent to any email address. Encrypt or Do Not Forward Before Outlook exposes the encryption feature, your account needs to have an Office 365 Home or Office 365 Personal subscription. In other words, free Outlook. com accounts don’t have this functionality. In addition, encryption only appears in the new Outlook. com interface. When the requirements are satisfied, you have two options to protect email (Figure 1): The message is encrypted, but the user can do anything they like after they decrypt the content. Encrypt and Prevent Forwarding (equivalent to the... --- ### Solving Problems Using Reliability Monitor in Windows 10 - Published: 2018-05-16 - Modified: 2024-09-04 - URL: https://petri.com/solving-problems-using-reliability-monitor-in-windows-10/ - Categories: Windows Client OS - Tags: performance, Reliability Monitor, troubleshooting, Windows 10 - Article Type: How To In today's Ask the Admin, I'll look at how you can use the Reliability Monitor in Windows 10 to solve problems. In today's Ask the Admin, I'll look at how you can use the Reliability Monitor in Windows 10 to solve problems.     Reliability Monitor first appeared in Windows 7 and it provides a great way to look back at the past few months to get an overview of critical errors, warnings, and informational events that could be causing crashes or performances issues. Where the Windows Event Log provides too much detail for average users to process, Reliability Monitor gives a filtered view of the most important events and allows you to spot patterns that could indicate a problem. Events are shown on a timeline, so if you know a problem started in the last week, you can look at the timeline and see if any critical events or warnings have appeared since the problem started. Using Reliability Monitor To open Reliability Monitor in Windows 10, type reliability in the search bar in the bottom right of the taskbar. Select View reliability history from the results. A blue line across the top of the timeline shows your PC’s stability. You can see in the screenshot that Reliability Monitor is only showing events from April 27th. That is the day that I installed the Windows 10 April 2018 Update. After that, the stability of my PC took a nosedive. Not a good advertisement for the update. Although, it’s impossible to say with any certainty that the update caused these issues. Reliability Monitor in Windows 10... --- ### How to Deploy An Azure Virtual Machine (May 2018) > This post will show you how you can quickly deploy an Azure virtual machine for evaluation purposes. - Published: 2018-05-16 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-virtual-machine-may-2018/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machine, Create, New, virtual machine, VM - Article Type: How To Aidan Finn shows you how you can quickly deploy an Azure virtual machine for evaluation purposes. This post will show you how you can quickly deploy an Azure virtual machine for evaluation purposes.     Before You Continue It is actually very easy to next-next-next your way through the process of building a virtual machine in Azure. The “wizard” has been designed for newbies to get something up and running quickly. However, the results are not what anyone would recommend for production. Every next-next-next deployment will produce a virtual machine that has its own network security rules, public IP address with direct RDP/SSH access from the Internet, and so on. In the training that I deliver, I strongly urge people to pre-create things such as their network, a diagnostics storage account, and remote/on-premises connectivity; then, when they create virtual machines in the Azure Portal, they tweak the wizard to use the already-created resources. In this post, I will walk you through the default process at a high level. Note that Microsoft is constantly renaming and moving things around in the Azure Portal, so things might have changed since this post was written. Starting Off Log into the Azure Portal and click the button (highlighted below) in the top-right corner to make sure you are working in the correct customer tenant and Azure subscription. Switch Customer Tenant and Azure Subscription in the Azure Portal   Now you will start the process of creating a virtual machine. Click Create A Resource in the top-left corner to open the New blade... . --- ### Veeam's Making it Easier to Create New Production Environments, On-Demand - Published: 2018-05-15 - Modified: 2024-09-04 - URL: https://petri.com/veeams-making-easier-create-new-production-environments-demand/ - Categories: Backup & Storage - Tags: DataLabs, Veeam, VeeamOn - Article Type: News DataLabs allows developers and operations teams to use production-like workloads to validate updates, security vulnerabilities, forensics and GDPR compliance. This week in Chicago, Veeam is hosting their annual conference called VeeamOn where they are announcing new products and openly discussing their roadmap for the next couple of years. This year, the company is announcing a new component of their 'Hyper-Availability' platform called DataLabs. This new feature is designed to reduce the friction in spinning up a new production environment which will help with not only recovery scenarios but also in other aspects of your organization. When it comes to your workflow, being able to dynamically spin up production environments and sandboxes makes it much easier for DevTest, DevOps, and DevSecOps to work on their specific tasks. This is a significant step for Veeam as it helps them deliver value outside of their traditional core strength, backup and recovery. This new feature also makes it possible for a self-service model of spinning up instances of production environments to exist inside an organization without the need of employee overhead. What this allows is for employees to use the most recent iteration of data on-demand, a key factor in making sure your latest features and information operate correctly when new functionality is enabled. Everything from compliance teams looking at data for regulation objectives to opsec making sure vulnerabilities are patched and protected, can all now be done without impacting the production environment in an on-demand basis. For customers of Veeam and those that need this type of functionality, DataLabs will be a key feature towards driving increased efficiency inside an organization. You... --- ### Microsoft Goes Back to the Drawing Board with the Surface Hub 2 - Published: 2018-05-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-goes-back-drawing-board-surface-hub-2/ - Categories: Hardware - Tags: News, Surface Hub, Surface Hub 2 - Article Type: News Microsoft has unveiled the Surface Hub 2 and while it has a similar name to the original product, the company is making significant changes to the hardware. A few weeks back, Microsoft announced that the Surface Hub stock was running low and that the device would soon be nearly impossible to buy. The reason why stock is running short is that the company is working on the second gen device. This week, Microsoft has begun more openly talking about the new hardware and we finally have our first look at the new device. It should be noted that we don't have a full list of specs at this time, the company is still working on finalizing the hardware which means they aren't ready to share the weight or internal specs of the display but this early look at the hardware will certainly raise a few eyebrows. Microsoft has re-thought a lot about how displays function in the collaboration space and we are seeing quite a few changes in this new device. For starters, the hardware only comes in one size, 50. 5in, and the aspect ratio now matches that of the rest of the Surface lineup at 3:2. And Microsoft loves their hinges and this device is no different, it can now rotate 90 degrees. The resolution is higher than 4k which means that there shouldn't be any issue with clarity when standing up close to the hardware. Pen input is still available as well and I'm told the input accuracy should match that of other Surface products. Microsoft is also introducing biometric login support with a fingerprint reader which is designed as a method of enabling two-factor... --- ### How Planner Synchronizes its Tasks to Outlook's Calendar > Many Office 365 tenants use Planner for group-based task management. Generally, the application is OK and has been getting better. Now it links to Outlook - Published: 2018-05-15 - Modified: 2024-09-04 - URL: https://petri.com/planner-synchronizes-outlook-calendar/ - Categories: Microsoft 365, Office - Tags: calendar, iCalendar, Outlook, Planner, synchronization - Article Type: How To Many Office 365 tenants use Planner for group-based task management. Generally, the application is OK and has been getting better. Now it can connect to Outlook to synchronize tasks into a user calendar, which then allows users to see tasks alongside their other commitments and print details off if needed. It's an imperfect but acceptable solution to the lack of print capabilities within Planner. Making Tasks Appear in Your Calendar Despite rolling out some recent upgrades (and yes, guest access is finally rolling out), the Planner team have left one of the biggest complaints about their product unanswered No option exists to print off a plan, lists of tasks for a plan or a bucket within a plan, or details of the tasks assigned to an individual. It’s a strange oversight for an application designed to help people to organize work. Of course, you could make the argument that people don’t need old-fashioned printouts to help them manage tasks because they can do this through the Planner browser and mobile clients (for IOS and Android). But that’s ignoring the fact that some people find it easier to print stuff off and review items on paper. In any case, printing task lists is hardly an act of extraordinary software engineering. Plenty of examples exist within Microsoft for how to format and print task information, including the range of options available in OWA to print calendar and task data. Planner Synchronization to Outlook The solution now offered is to synchronize tasks with Outlook calendars. Outlook calendar synchronization is automatically enabled for all Office 365 tenants that have Planner as part of their subscription. If you don’t want to allow users to synchronize Planner tasks to Outlook, you can disable the feature by following the instructions in this article. I hope Microsoft simplifies this aspect soon as the ability to enable and disable features should... --- ### Continuing the SharePoint Migration Journey – Site Collections > Take a read to learn how site collections and not breaking inheritance can make for a better SharePoint environment and why to do it during migration. - Published: 2018-05-14 - Modified: 2024-09-04 - URL: https://petri.com/continuing-sharepoint-migration-journey-site-collections/ - Categories: SharePoint, SharePoint 2007, SharePoint 2010, SharePoint 2013, SharePoint 2016, SharePoint Online - Tags: migration, SharePoint, SharePoint Online, upgrade - Article Type: How To SharePoint migration can be a daunting task but if you follow Shane's guidance, the process can be significantly more manageable. Hi friends – It is that time again to talk about your migration off of your old, rusty version of SharePoint and into something new and shiny. In the last article, Starting Your SharePoint Migration from Scratch,  we framed up the sins on the past (looking at you Fab 40 templates) and we answered the question where you should you move to. Hint; It rhymes with SharePoint Online. Today we are going to discuss how you organized your content, what your new goal should be, and why. A lot of these learnings come from the 1000s of SharePoint projects I have touched over the years and one of the universal truths, nobody got their SharePoint content organized right the first time and maybe not even the third time. So just like we didn’t feel bad for ourselves in the last article when we talked about all of the bad things we did to make our site not look like SharePoint today we aren’t going to get defensive on the poor decisions we made when it came to organization. The reason now is the time to have this conversation is you are in a great spot. To leave your old version of SharePoint you are going to touch all of your data and whether you are moving from to SharePoint Online or On-Prem the design goals are the same. So why not take the moment of change to reorganize your SharePoint? In a perfect world, how would SharePoint be organized? I... --- ### Swapping the OS Disk of an Azure Virtual Machine > This post explains how you can restore or replace just the OS disk of an Azure virtual machine that is using managed disks. - Published: 2018-05-14 - Modified: 2024-09-04 - URL: https://petri.com/swapping-os-disk-azure-virtual-machine/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machine, Managed Disks, virtual machine - Article Type: How To Aidan Finn explains how you can replace the OS disk of an Azure virtual machine with managed disks without touching the data disks. In this post, I will explain how you can replace the OS disk of an Azure virtual machine with managed disks without touching the data disks.     Note that this solution can be useful when you need to restore an OS disk of a virtual machine from backup, without restoring the data disks and losing a day of operations. One example situation is when an anti-virus scanner corrupts the OS boot loader of an Azure virtual machine. The scenario below is yet another example of why data should be put in data disks! Restore and Swap the OS Disks of an Azure Virtual Machine Restore Disks from Backup Azure Backup recently made a change to how virtual machines are backed up. Azure Backup has always used a snapshot mechanism as the first step of backing up a virtual machine. This was to help calculate the differences for the incremental backup before data was sent across the network to the recovery services vault. After you upgrade your subscription, Azure Backup maintains those snapshots for 7 days and they can be used to quickly restore virtual machines without copying data over a network. This greatly improves the time to restore operations. You can open the virtual machine, click Backup under Operations, and click Restore VM to start the restoration process. Alternatively, you can go to Backup Items in the recovery services vault, click Azure Virtual Machine, and select the machine in... --- ### Office 365 Groups and Governance - Published: 2018-05-11 - Modified: 2024-09-04 - URL: https://petri.com/office-365-groups-governance/ - Categories: Microsoft 365 - Tags: Governance, Office 365 Groups - Article Type: Opinion Jasper Oosterveld, Microsoft MVP and Modern Workplace Consultant, dives into the importance of Governance when using Office 365 Groups. Governance is and always has been a crucial part of the success of any Modern Workplace. The introduction of Office 365 Groups (Groups) made Governance even more important. Before I dive into the Governance aspect of Groups, I briefly want to discuss the definition of Groups. (more... ) --- ### Paul Thurrott's Short Takes: May 11 - Published: 2018-05-11 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-11/ - Categories: Cloud Computing, Microsoft 365, Microsoft Azure, Mobile, Windows 10 - Tags: News - Article Type: Overview Because traveling is the worst, this week's edition of Short Takes examines Microsoft Build 2018, Microsoft product demotions, Google I/O 2108, and much, much more. Because traveling is the worst, this week's edition of Short Takes examines Microsoft Build 2018, Microsoft product demotions, Google I/O 2108, and much, much more. Microsoft delivers a grueling set of Build keynotes And here I was thinking that Microsoft demoting Windows 10 into Microsoft 365 was going to be the big controversy from Build 2018. Nope: Instead, it was the software giant's mammoth day one keynote address, which clocked in at nearly 3 hours and 40 minutes. Add that to the nearly one hour and 40 minutes of the day two keynote, and you've got over five hours of butt-numbing fun. Or ... not "fun," really, which was part of the problem. Microsoft careened drunkenly from topics as diverse as saving the world and embedded devices, but it never really pulled off the "wow" factor that so much of the audience was looking for. Not helping matters, Google delivered a light, fun, and informative look at its own version of the future right after the second Build 2018 keynote stumbled to a close. And it did so in just one hour and 45 minutes. There's a lesson in there somewhere, Microsoft. "Microsoft wants to work with Apple to bring iMessage support to Windows 10" Yeah. Good luck with that. Windows 10 is better seen but not heard This was telegraphed ahead of Build because Microsoft punted Terry Myerson out of the company back in April. But it still sent tremors of discontent to long-time Microsoft watchers and... --- ### Windows Admin Center HCI Management Now Available for Windows Server 2016 - Published: 2018-05-10 - Modified: 2024-09-04 - URL: https://petri.com/windows-admin-center-hci-management-now-available-for-windows-server-2016/ - Categories: Windows Server - Tags: Highly-Converged Infrastructure, Storage Spaces Direct, Windows Admin Center, Windows Server 2016 - Article Type: News After the release of a patch for Windows Server 2016 on April 16th, it's now possible to manage hyper-converged infrastructure using the Windows Admin Center. After the release of a patch for Windows Server 2016 on April 16th, it's now possible to manage hyper-converged infrastructure using the Windows Admin Center.     Windows Server 2016 includes several features that allow you to create a hyper-converged infrastructure (HCI). Instead of using an expensive storage area network (SAN) for your virtual machines and file server needs, Windows Server Storage Spaces Direct uses locally-attached drives to form highly-available, highly-scalable, software-defined storage. The solution’s hyper-converged architecture makes it easier to deploy and cheaper than traditional SANs or NAS. Plus, some cool features like caching and storage tiers, along with Remote Direct Memory Access (RDMA) networking and NVMe drives, Storage Spaces Direct delivers all the features you’d expect from a high-end SAN, with new levels of efficiency and performance. Storage Spaces Direct isn’t the only HCI technology in Windows Server 2016. Hyper-V is used to virtualize CPUs and memory. Network Controller is used for software-defined networking (SDN). Compute, networking, and storage can be hyper-converged in one tier, which is typical for small deployments. Larger deployments often separate compute and storage because it provides more flexibility. For example, storage needs often grow much faster than compute. For a great visual explanation of Storage Spaces Direct, check out this YouTube video from Microsoft. Windows Admin Center and HCI Join Forces Project Honolulu, as Windows Admin Center (WAC) was known before Microsoft made it generally available, supported management of HCI if you were using Insider previews of Windows Server. But earlier this... --- ### Expiring Teams Now Available in Office 365 > Microsoft Teams now shows team owners when their team is going to expire - that if, if you use the Office 365 Groups expiration policy. - Published: 2018-05-10 - Modified: 2024-09-04 - URL: https://petri.com/expiring-teams-office-365/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, expiration policy, Office 365 Groups, PowerShell, Teams - Article Type: How To Microsoft Teams now shows team owners when their team is going to expire - that if, if you use the Office 365 Groups expiration policy. But tenant administrators don't have a report showing them when groups expire, so we wrote one in PowerShell for you to use (and improve). Office 365 Groups Gently Age, Then Disappear The Azure Active Directory expiration policy for Office 365 Groups (to give it its full name) is now generally available. The idea is simple. Tenants decide on how long they are happy for a new group to be active before needing to be renewed (the lifecycle period – say, two years). They then figure out whether all or selected groups should come within the scope of the policy. With an expiration policy in place, once a group within its scope ages to 30 days before their lifecycle period lapses, their owners receive notifications via email to tell them to renew the group. If an owner renews the group, its lifecycle is extended by a further period. If not, Office 365 soft-deletes the group when it expires. Owners can still rescue a soft-deleted group at any time during the next 30 days, but after that deletion is permanent. Some Extra Cost Before you all get excited at the prospect of using the expiration policy to impose order on a swelling number of groups, you should remember that this is a premium Azure Active Directory feature. Unlike some other features in this category (for instance, the groups naming policy), I think Microsoft can reasonably charge extra for the expiration policy because it helps tenants by automating an aspect of management. BTW, I liked the way that the Teams release notes say that "this feature is for AAD premium members only. " I have always considered myself... --- ### The Hybrid Cloud Database Benefits - Published: 2018-05-09 - Modified: 2024-09-04 - URL: https://petri.com/hybrid-cloud-database-benefits/ - Categories: Cloud Computing, Hybrid Cloud, Hyper-V, SQL Server, Virtualization - Tags: Azure, cloud computing, Disaster Recovery, hybrid cloud, Hyper-V, Virtualization - Article Type: Overview If you haven't moved to a hybrid cloud scenario, you should consider these benefits as there are many reasons to upgrade your environment. Hybrid cloud adoption has been one of the hottest trends in IT over the past year. Recent IDC research shows that 80 percent of enterprise IT organizations are now preparing to move to a hybrid cloud-based IT model. Further, IDC reported that 70 percent of IT decision-makers say they will always have a mix of traditional IT and cloud architectures. In a hybrid environment, the ability to scale and be agile is crucial for the business to succeed. Databases are one of the more challenging technologies to move to the hybrid but there are serval benefits for doing so. One of the main reasons that hybrid cloud databases are growing is in response to the massive data growth that all businesses are facing today. Gartner has estimated that data is growing at a rate of 30 to 50 percent per year. Likewise, according to IDC data is expected to double every two years for the coming decade. The cloud and the hybrid cloud can be an effective measure to stem the need to continually buy more local storage capacity for your local databases. The hybrid cloud offers virtually unlimited storage capacity at reasonably low costs. Hybrid Cloud Backups Database backups are one of the easiest areas to benefit from hybrid cloud technologies. Using the hybrid cloud backups frees up local storage requirements and serves as an offsite backup repository providing built-in disaster recovery protection. Some enterprise databases provide a number of different hybrid cloud integration options. For instance, SQL Server... --- ### Microsoft Previews Storage Migration Service in Windows Server 2019 - Published: 2018-05-09 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-previews-storage-migration-service-in-windows-server-2019/ - Categories: Windows Server - Tags: Azure, cloud computing, storage, Storage Migration Service, Windows Server 2003, Windows Server 2008, Windows Server 2019 - Article Type: Overview Microsoft releases a preview of Storage Migration Service in the latest Insider version of Windows Server 2019. In this Ask the Admin, I'll provide an overview of what it is and how it works. Microsoft releases a preview of Storage Migration Service in the latest Insider version of Windows Server 2019. In this Ask the Admin, I'll provide an overview of what it is and how it works. It’s never been an easy task to migrate Windows file servers using the tools provided by Microsoft. But finally, Microsoft is doing something to right that wrong. Part of the reason is that Microsoft wants to make it easy for you to migrate file servers to the cloud. Microsoft wants customers to move off Windows Server 2003 and by 2020, Windows Server 2008. Even if you are not planning to migrate to the cloud, the Storage Migration Service supports migrating to on-premises Windows Server. So, there is some good news for everyone. The preview of Storage Migration Service migrates files to SMB file servers like on-premises physical or virtual Windows Server, Azure File Sync, and Azure VMs. The Storage Migration Service runs on Windows Server 2019, which acts as an orchestrator for the inventory, transfer, and coming soon, cutover phases of the migration process. The service supports migrating from any version of Windows Server going back as far as Windows Server 2003. But the only supported destination server is Windows Server 2019, Standard or Datacenter Edition. The service transfers data, shares, configurations, security, file attributes, and share permissions on nodes that you decide to migrate. It can transfer files that are currently in use and files that you don’t have the privilege to access... . --- ### Processing GDPR Data Subject Requests with Office 365 > GDPR comes into force on May 25, 2018. To help Office 365 tenant administrators respond to GDPR data subject requests, a new DSR case feature is available. - Published: 2018-05-08 - Modified: 2024-09-04 - URL: https://petri.com/processing-gdpr-data-subject-requests-office-365/ - Categories: Microsoft 365, Office - Tags: Compliance, Data Subject Request, DSR, GDPR, Office 365 - Article Type: How To GDPR comes into force on May 25, 2018. To help Office 365 tenant administrators respond to GDPR data subject requests, a new DSR case feature is available as a preview in the Security and Compliance Center. The feature is based on the existing eDiscovery case and content search functionality, so it should be very familiar to anyone who has searched Office 365 for email, documents, and other information. GDPR Data Subject Access Requests With GDPR taking effect on May 25, any company operating in the European Union must be able to deal with Data Subject Access Requests (DSRs). Section 3 of Article 15 says that “The controller shall provide a copy of the personal data undergoing processing . ” In the context of Office 365, the controller is the administrator of an Office 365 tenant while the personal data is anything held in an Office 365 data store relating to the data subject (a person). An organization has up to 30 days to respond to a request, which might come from a current or former employee, or someone who does business with the organization. Here’s an interesting blog post describing the kind of request you might receive. Office 365 Data Governance Fortunately, Microsoft has done a lot of work to index Office 365 data and make the data easily discoverable and retrievable. Some applications still need work, notably Planner and Yammer, but email, documents, and Teams messages are covered by the Office 365 data governance framework. In addition, Microsoft has prepared documentation to assist tenant administrators to handle data subject requests covering Office 365, Azure, and other cloud services, which administrators can download from the Service Trust portal. Content Searches The Office 365 Data Subject Request Guide focuses on content searches as a method to retrieve and export information belonging to someone who makes a request. According to the guide, “Microsoft estimates that over... --- ### Associating Azure Network Security Groups > In this post, I will explain how the two options for associating a network security group (NSG) work, and I’ll recommend a method to use. - Published: 2018-05-08 - Modified: 2024-09-04 - URL: https://petri.com/associating-azure-network-security-groups/ - Categories: Microsoft Azure - Tags: Architecture, Azure, Design, firewall, Layer-4, Network Security Group, NIC, NSG, Security, Subnet, Virtual Network, VNET - Article Type: Overview Aidan Finn explains how the two options for associating a network security group (NSG) work, virtual machine NIC or subnet, and I’ll recommend a method to use. In this post, I will explain how the two options for associating a network security group (NSG) work, virtual machine NIC or subnet, and I’ll recommend a method to use.     Associate with a NIC The first way to associate an NSG is to associate with a NIC; this is the method used when you next-next-next your way through creating a virtual machine in the Azure Portal. My choice of words might hint at my attitude to that but more on this later. When you associate an NSG with a virtual machine’s NIC, the inbound and outbound rules allow or deny packets as the hit the NIC. How Filtering Works with a NIC-Associated NSG   Any inbound rule is applied after traffic leaves the subnet and attempts entry to the virtual machine via the NIC. A deny rule will drop the packet at this point and an allow rule will allow the packet in to be further inspected by any firewall in the guest OS, such as the Windows Firewall. Associating an NSG with a NIC is very powerful and granular but in no time at all, this approach will become a nightmare to manage. One could have one NSG for lots of virtual machines but that will quickly become unworkable as rules become specialized and difficult to troubleshoot. In reality, this approach is OK for very small deployments that will remain very small, for example, a single virtual machine... . --- ### Microsoft's Modern Meetings Demo Shows the Future of Surface Hub - Published: 2018-05-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-modern-meetings-demo-shows-future-surface-hub/ - Categories: Hardware - Tags: News, Surface Hub, Surface Hub v2 - Article Type: News At Microsoft's Build conference, the company provided hints about what will be coming with Surface Hub v2. At Build this week in Seattle, Microsoft announced a wide array of new features and functions for many of its software platforms. During the keynote on day 1, the company provided hints at what is coming to the next generation Surface Hub. Earlier this year, Microsoft said that they would begin talking about the next generation Surface Hub later in the year and the 'modern meeting' demo shown at Build is likely giving us an early look at where that hardware is headed. During the demo, Microsoft used a prototype device that can recognize the person who is entering the room but more importantly, it can take a real-time transcription of what was being said during the meeting. Further, it can also translate the content and broadcast it to others who are dialed-in with Teams. Microsoft has been showing off this type of technology for a couple of years, initially being shown at a partner conference where it was used to translate a Skype conversation. Based on the demos today, it looks like the company is becoming increasingly confident in the translation and transcription abilities and will soon be rolling it out in an enterprise-grade product. Cortana will likely play a big part in this scenario as the company is positioning the digital assistant as the front end to all of its AI efforts. While Microsoft may be able to bring some of these features to existing Surface Hubs, it's becoming obvious why the company has said that... --- ### A Better Understanding of What and Where Microsoft 365 is Headed - Published: 2018-05-07 - Modified: 2024-09-04 - URL: https://petri.com/better-understanding-microsoft-365-headed/ - Categories: Windows Client OS - Tags: Microsoft 365, News - Article Type: News Microsoft is evolving Microsoft 365 and now positioning it above Windows when it comes to developing for the company's various platforms. Last year, Microsoft unveiled Microsoft 365 and while it is been around for some time, the company is evolving the product and better defining what this new service encompasses. At Microsoft's Build conference this week, the company announced new development opportunities for the platform but more importantly, they helped provide clarity about how the company looks at the suite of software. From a company blog post, Microsoft defines 365 as: "A comprehensive development platform – with pen, ink, mobile, devices, cloud and developer tools – all with infused intelligence bringing simplicity to customers and streamlining development" In summary, Microsoft is positioning all of its productivity software under the Microsoft 365 umbrella which includes Office and Windows. The branding also includes things like the Microsoft launcher for Android, Your Phone app that works with iOS and Android, Edge on iOS and Android; the umbrella brand stretches far and wide across the Microsoft landscape. But more importantly, the company is branding it as a "comprehensive development platform", this is a notable change from previous years when the company would say this about Windows. This is a minor update but shows once again that Windows is no longer the hero-brand for the company and is simply part of a larger package of brandable products. The packaging of products like Your Phone and the company's Android launcher are apps that deliver value to those that are 'all-in' in the Microsoft ecosystem but the company does not have an easy way to market... --- ### Microsoft's Working Towards A Smarter Edge, Cloud Not Always Required - Published: 2018-05-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-working-towards-smarter-edge-cloud-not-always-required/ - Categories: Microsoft Azure - Tags: Azure, Azure IoT, IoT, News - Article Type: News Microsoft has announced several new features for its Azure IoT Edge but more importantly, the cloud is not always required. This week, Microsoft is hosting its largest developer conference of the year in Seattle where the company is diving deep into changes for developers, Office, and Windows too. When the company announced a major re-org to the Windows business unit, Microsoft said that they were putting cloud and the intelligent edge at heart of their new strategy. At Build this year, the company is going all-in on this agenda with several announcements that the company hopes will give them a competitive advantage in these segments. When it comes to the intelligent edge, Microsoft has announced this week that they will be open sourcing its Azure IoT Edge Runtime. The goal with this move is to give developers more control over the edge applications as well as providing more transparency into how the app operates. Microsoft has become a key contributor to the open source community in the past few years. While it will take time to fully realize that the locked-in world of Microsoft is well behind us, this is yet another area where the company is embracing the open-sourced mindset with its newer products. But the bigger news this week is that Microsoft's Custom Vision will now run on Azure IoT Edge. This new feature allows devices like drones and other remote equipment to make critical decisions quickly, even if there is no connectivity to the cloud. We are slowing getting to the point where edge computing can make intelligent, real-time decisions, that impact critical operations without... --- ### Microsoft's Adding New Developer Opportunities to Teams, Power BI - Published: 2018-05-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-adding-new-developer-opportunities-teams-power-bi/ - Categories: Microsoft 365 - Tags: Microsoft, News, Power BI, Teams - Article Type: News At Build this week, Microsoft has announced a couple of new opportunities for developers to add additional value to Teams and Power BI. Office 365 is a core pillar of Microsoft's future which is why it is no surprise to see the company announcing new features this week. In Seattle, at the company's Build conference, the company is opening up new APIs and tying deeper into SharePoint as well. Microsoft has announced new and updated Teams APIs that provide access to the company's Graph which will allow developers to create localized and intelligent experiences based on the usages of the application. Further, devs can then publish these custom apps into the local Teams app store as well. Deeper integration with SharePoint is coming soon too; Microsoft will be enabling the functionality to pin a SharePoint page direction into a channel. The company says that devs will be able to use script-based frameworks like React within their projects to add more pieces that can be organized within SharePoint page. For those that use Power BI, there is new support coming for visualizations in Excel; it is now possible to extend custom visuals created for Power BI to be used in Excel. Microsoft creates these openings into its services to allow third-party companies to build on top of its applications and services to fill out its ecosystem of offerings. While today's news may not be ground-breaking in what is being offered, it's another small avenue where vendors can build add-on services that increase the value of Microsoft's underlying product to help make Office 365 the most robust productivity offering available. --- ### Microsoft's Making it Easier to Work with GitHub - Published: 2018-05-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-easier-work-github/ - Categories: Windows Client OS - Tags: GitHub, Microsoft, News - Article Type: News Microsoft is making it easier for developers to work with GitHub inside its own development tools. If you are a developer, there is a good chance that you have used GitHub at some point during your career. The online repository platform has become extremely popular and even Microsoft is now using it internally for its own projects. Knowing this, it's not a huge surprise to see Microsoft making it easier to use the platform with its own dev ops tools. At Build in Seattle this week, the company announced a new partnership with Git Hub that brings Azure DevOps service to GitHub customers. Starting today, the company is releasing the integration of Visual Studio App Center and GitHub which allows the user to seamlessly automate DevOps processes right from within the GitHub experience. Because of the diverse ecosystem of platforms and the fact that it's no longer a Windows-only world, Microsoft has found itself in a position where they need to be as diverse as possible with its tooling. By locking themselves into a single channel of dev ops like that had done a decade ago, they were writing their own death-warrant. Thankfully the company has found a way to work with the open-source industry and to take advantage of the many tools available to those who previously or still live in a *nix world. Microsoft's development suite of tools is one of the most used platforms in the industry and by making it easier to use its products with the GitHub platform, this will be a huge win for developers using both applications. --- ### What Are PowerApps and How to Get Started with Them > Learn what PowerApps are, why you should care, and finally how to get started with them. They, like the children, are the future. - Published: 2018-05-04 - Modified: 2024-09-04 - URL: https://petri.com/powerapps-get-started/ - Categories: Microsoft 365 - Tags: Office 365, Powerapps - Article Type: How To Do you keep hearing about this PowerApps thing but not really sure what it is? If so, you have found the right article to help you get over the hump and get productive. Do you keep hearing about this PowerApps thing but not really sure what it is? Did you play with it for five minutes but couldn’t really figure out what the heck to do with it? Or worse yet, did you try to build an app and got overwhelmed by all the options and choices? If any of this sounds familiar, then you found the right article to help you get over the hump and get productive.     I will admit, I am guilty of pimping PowerApps, I even went as far as to declare 2018 the year of PowerApps. Then I ran off, made all of these beginner PowerApps videos on YouTube, started a PowerApps Consulting company but never really considered that some people need to better understand why they need PowerApps. My bad people, my bad. What Are PowerApps That is a fair question. Microsoft has a goofy definition that is on every piece of content it produces, so I will not recite it. Instead, I will give you my definition. PowerApps is an enabler that lets Power Users create and publish fully functional apps in a simple editor that doesn’t require you to write code. Seriously, if you can use Excel, InfoPath, Access, or in my case PowerShell, you can use PowerApps. And while the tool can be used to build anything and everything you can think of, the primary use I see is to enable non-technical people to collect information. Saving Trees If... --- ### Enabling DDoS for Azure Virtual Networks - Published: 2018-05-03 - Modified: 2024-09-04 - URL: https://petri.com/enabling-ddos-azure-virtual-networks/ - Categories: Microsoft Azure - Tags: Azure, Azure DDoS Protection Service, DDOS, Security, Standard Tier, Virtual Network, VNET, WAF, Web Application Firewall - Article Type: How To This post will explain what DDoS protection is offered in Azure and how to deploy Standard tier protection in a virtual network. This post will explain what DDoS protection is offered in Azure and how to deploy Standard tier protection in a virtual network.     DDoS Protection Distributed Denial of Service attacks have the potential to shut down a business. Often, we associate the term with hacktivists attacking high-profile companies or international espionage. However, businesses of all sizes are attacked this way. I’ve seen how a start-up tech business was attacked using a rented botnet and probably received a bribe request from the attacker to stop the flood of traffic. DDoS protection systems are usually complex and specialized. Azure makes networking easy and this is true of DDoS protection. This was made generally available recently. Every virtual network has the Basic tier of DDoS protection enabled for free. Everyone gets it! Every resource connected to the virtual network is protected with added protection if you also have a Web Application Firewall offering external protection. There is also a Standard tier, which is paid for: A substantial charge for protecting up to 100 resources per month An overage charge for each resource beyond the first 100 resources A processing charge for each GB of data processed The Standard tier adds the following functionality: Dynamic protection policies that are managed by machine learning algorithms. Your normal traffic patterns are understood by the system and exceptions become subject to potential filtering. Protection against the cost of scale-out. If Standard tier DDoS protection fails to mitigate an attack completely and your online services... --- ### Sharing Azure Portal Dashboards > This post will explain how to share custom Azure Portal dashboards with other administrators and delegated administrators of your subscription. - Published: 2018-05-03 - Modified: 2024-09-04 - URL: https://petri.com/sharing-azure-portal-dashboards/ - Categories: Microsoft Azure - Tags: Azure, Azure Portal, Dashboard, RBAC - Article Type: How To Aidan Finn discusses how you can share the customizable experience of the Azure Portal with other administrators and delegated administrators of your subscription.   This post will explain how you can share the customizable experience of the Azure Portal with other administrators and delegated administrators of your subscription.     Customizable Dashboards One of the Azure administrator “life hacks” is to create customized dashboards. I typically create one of these for every application, lab, or demo environment that I’m working with. I will pin shortcuts to the resource group(s), critical resources, and I will also pin critical Azure Monitor metrics. When I am working on something, I’ll switch to that dashboard and I’ll have the handy shortcuts and critical information right in front of me without having to go look for it. A Custom Azure Dashboard for My Azure File Sync Lab   If you are working in a team, or you are enabling other people that have delegated rights to resources in Azure, then a useful thing to do is to share these dashboards with other users. I’ll show you a few ways that you can do that in this article. Export/Import A recent unheralded addition to the Azure Portal was the ability to export or import a customized dashboard. There are Export and Import buttons at the top of the dashboard. If you click Export, a save action will start in your browser and the configuration of the current dashboard will be saved to your computer as a JSON file. A Snippet of a Customized Azure Dashboard [Image... --- ### Boost in SharePoint Storage Allocation to Move Data to the Cloud > Microsoft has boosted the per-user storage allocation for SharePoint Online by 20x in an attempt to convince people to move data to Office 365. - Published: 2018-05-03 - Modified: 2024-12-03 - URL: https://petri.com/20x-boost-sharepoint-storage-allocation/ - Categories: Microsoft 365, Office, SharePoint, SharePoint Online - Tags: Office 365, SharePoint, SharePoint Online, storage, Teams Office 365 Groups - Article Type: Opinion Microsoft has boosted the per-user storage allocation for SharePoint Online by 20x to make it easier for people to move data to Office 365. It's a good move, and one that's probably overdue. Teams and Office 365 Groups have accelerated the use of SharePoint over the last year or so. However, Exchange also increased its storage allocation and that hasn't got everyone to the cloud. Yet. SharePoint Heads to Vegas The folks in SharePoint marketing are working overtime recently as they ramp up for the SharePoint North America conference in Las Vegas later this month. Although not a Microsoft event, such is the support in terms of speakers and sponsorship, you’d be forgiven for assuming that the folks in Redmond are running the conference. I guess “co-producing” a third-party conference is marketing’s way to get SharePoint more airspace than it gets at the Microsoft Ignite conference. As part of the run-up to the conference, the “Father of SharePoint”, Jeff Teper, published an interesting post (on LinkedIn) talking about “hitting refresh on SharePoint,” where he revealed that SharePoint Online now runs on 150,000 servers. In September 2017, Jeff said that 65% of all SharePoint seats are online. I assume that figure is even higher now, given that Office 365 has passed the 135-million mark for monthly active users. Where the Growth in SharePoint Online Comes From My theory is that much of the growth in SharePoint Online is propelled by the popularity of Teams and Office 365 Groups. Every new group (or team) means a new SharePoint site collection with a document library to hold the group’s files. Microsoft says that Teams is now used by over 200,000 organizations. Microsoft’s crusade to move Office 365 tenants off old-fashioned distribution lists to use Office 365 Groups instead generated 10 million monthly users by April 2017. Although some of the Groups user base have possibly moved to... --- ### Options for Load Balancing Services in Azure > This post compares methods for load balancing services hosted in Azure using the Azure Load Balancer, Web Application Gateway, and virtual appliances. - Published: 2018-05-02 - Modified: 2024-09-04 - URL: https://petri.com/options-load-balancing-services-azure/ - Categories: Cloud Computing - Tags: Architecture, Azure, Basic, Citrix, F5, High Availability, Kemp, Load Balancer, Network Virtualization Appliance, NVA, Scale-out, Standard, WAG, Web Application Gateway - Article Type: Overview Aidan Finn explains the options you have for load balancing applications or services in Azure. In this article, I will explain the options you have for load balancing applications or services in Azure.     Why Load Balance? There are a few reasons for deploying a load balancer in Microsoft Azure and they aren’t always about load balancing, I’ll explain a few reasons here. If you want high availability, then you will typically need more than one machine or maybe even many machines across data centers or even Azure regions! Load balancing allows stateless services, such as web servers, to be aggregated and presented to clients as a single unit; if one fails, the client is redirected to another that is still responding to a load balancer probe. Tied into this is the ability to scale out services. The cloud is designed to add performance by adding more machines. If you need more RAM/CPU, add another machine. If the service is abstracted by a load balancer, then the new capacity is added/removed without the client needing to make any changes. A load balancer can do other cool things too, including but not limited to: SSL offload Content or domain redirection Security functions Geo-fault tolerance Azure Load Balancer Azure includes a load balancing service called the Load Balancer. This is a simple Layer-4 (TCP or UDP) service that can load balance services and is commonly used. A probe tests to see if the members of a backend pool are responsive; if so, traffic is directed to one of the running members. A simple client... --- ### Firewall Options for an Azure Virtual Network > In this post, I will explain several ways that you can protect virtual machine and web services using firewall services in Azure. - Published: 2018-05-02 - Modified: 2024-09-04 - URL: https://petri.com/firewall-options-azure-virtual-network/ - Categories: Microsoft Azure - Tags: Appliance, Azure, DDOS, firewall, Network Security Group, Network Virtualization Appliance, NSG, NVA, Security, virtual appliance, WAF, WAG, Web Application Firewall, Web Application Gateway, windows firewall - Article Type: Overview Aidan Finn explains several techniques that you can use to secure and protect Azure virtual networks. In this post, I will explain several techniques that you can use to secure and protect Azure virtual networks.     The Importance of Virtual Network Security If you’re reading this, then you’re not stupid and I don’t need to explain the importance of a firewall to you. We take it for granted that virtual machines in the cloud should have some level of firewall security. Azure offers us several ways that we can do this, which I will cover in this article. These same techniques are also important to the developer side of Azure, Platform-as-a-Service or PaaS, because many platforms use virtual networks for privacy or communications, such as Service Fabric or Azure Service Environment (ASE, where the Isolated App Service Tier is hosted). Network Security Groups Azure offers free Layer-4 security in the form of Network Security Groups or NSGs. Using an NSG, you can allow or deny TCP, UDP, or wildcard protocols into or out of a virtual network. An NSG contains default inbound rules and outbound rules, which block everything from outside the virtual network from coming in and allow everything outbound. You can create additional prioritized (or stacked) rules to take more control over network security. An Azure Network Security Group or NSG   An NSG object can be associated with either a virtual machine NIC or a subnet (a better practice) in a virtual network and filters traffic at that resource level. For example, a deny... --- ### Disabling Document Sharing for Users with No Access to a SPO Site - Published: 2018-05-02 - Modified: 2024-09-04 - URL: https://petri.com/disabling-document-sharing-users-no-access-spo-site/ - Categories: Microsoft 365, SharePoint Online, Uncategorized - Tags: Office 365, SharePoint Online SharePoint Online not only provides controls to enable/disable document/site sharing with external users but also some features to manage how existing site members can share or not share existing documents in a site or even the entire site. As I say many times, it’s not possible to know and/or remember everything about a huge platform such as SharePoint Online (SPO). There are always new opportunities to learn stuff about the service. A good example is the topic I will cover in this article: how to disable sharing documents with users (no matter if they are corporate users or external ones) in a SPO site.     Disabling Document Sharing with Non-Member Users To disable document sharing with non-member users in a SPO site, browse the SPO site you want to configure and then navigate to the site settings page. Here, click on Site Permissions. Figure 1 -- Site Permissions Option in the Site Settings Page In the Site Permissions page, click on “Access Request Settings” option in the PERMISSIONS Ribbon: Figure 2 -- Access Request Settings Option In the dialog that opens, apply the configurations you require so that site members cannot share documents or the site itself. In my case, I have disabled any sharing option in the current site so that I can be sure that any important document cannot be shared from the site itself. Figure 3 -- Disabling Sharing Settings in the Site Testing the Configurations Done To test the configurations are done correctly, we will start adding a new user as a member of the site. We can check user experience when the user tries to share a file on the site. With our site member user, access the site and... --- ### Google Announces Several Cloud Database Improvements - Published: 2018-05-01 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-several-cloud-database-improvements/ - Categories: Cloud Computing - Tags: Cloud, Database, Google, News - Article Type: News Google recently announced several improvements to the managed cloud database offerings that are available as a part of the Google Cloud Platform. When it comes to creating and managing databases, the Google Cloud Platform provides a number of different services that can make it easy to store, manage, and analyze data, without having to worry about managing hardware, backups, security, and scaling to meet the needs of users.     In a recent post on the Google Cloud Platform blog, Google announced several updates and improvements to its managed cloud database offerings. This includes: Commit Timestamps for Cloud Spanner - Google’s Cloud Spanner is a database service that allows for horizontal scaling with an uptime guarantee of over 99. 99 percent. One of the most recent updates to this service is an addition of commit timestamps, which enables users to determine when data was committed to the database. This can be useful for a variety of purposes, such as for knowing when data was added or updated within a table. Cloud Bigtable Replication (Beta) - When it comes to storing and managing data, it’s important that admins ensure that the data is always available to those who need it when they need it. This is especially important in the case of systems that are frequently accessed, where a missing or slow-loading database can be problematic for users. This is where Bigtable’s data replication can be useful. Not only does it help to ensure the durability and accessibility of the data by placing copies of it in multiple zones within the Google Cloud Platform, but it can also increase the scalability of a... --- ### Tony’s Random Office 365 Updates > Anyone running an Office 365 tenant knows that it's hard to keep up with everything that changes. Imagine what it must be like to write about Office 365 - Published: 2018-05-01 - Modified: 2024-11-19 - URL: https://petri.com/random-office-365-updates-april-2018/ - Categories: Microsoft 365, Office, SharePoint, SharePoint Online - Tags: AIP, Azure Information Protection, Multi-Geo, Office 365, Office 365 Groups, Secure Score, SharePoint Online, SLA - Article Type: Opinion Anyone running an Office 365 tenant knows that it's hard to keep up with everything that changes. Imagine what it must be like to write about Office 365! To clear my list of things that I want to mention but haven't had the chance to, here's some short snippets that you might or might not have heard about. Many Changes inside Office 365 As is now the norm, far too much change happens to Office 365-related technology in a single month to cover in long pieces. Some important things did go past me in April 2018 that I felt deserve mention, so here’s a set of short snippets to bring everyone up to date. Intelligent Labels The arrival of Version 1. 26. 6 of the Azure Information Protection (AIP) client brings some new ways to mark documents, presentations, spreadsheets, and messages with labels. Figure 1 shows a custom footer inserted into a Word document by an AIP label. Figure 1: A custom footer created by an Azure Information Protection label (image credit: Tony Redmond) AIP labels can also stamp files with protection templates. I like this client a lot and will like it even more when Microsoft integrates AIP labels with Office 365 classification labels later this year. Group Access Reviews Another preview item covered late last year was Azure Active Directory Access Reviews. These allow you to set up a mechanism to have group membership reviewed by owners to decide whether members should stay in the group. The feature is now generally available, and while it needs Azure Active Directory Premium P2 licenses, I think this is a price worth paying for the functionality. Multi-Geo Goes Live Another capability launched into general availability is Multi-geo for Exchange Online and OneDrive for Business. SharePoint Online and Office 365 Groups are next, and Microsoft is... --- ### Comparing the Basic and Standard Azure Load Balancers > In this post, I will discuss the differences between the Basic and Standard tier Azure load balancers and why you would choose one over the other. - Published: 2018-05-01 - Modified: 2024-09-04 - URL: https://petri.com/comparing-basic-standard-azure-load-balancers/ - Categories: Microsoft Azure - Tags: Availability Zones, Azure, HA Ports, Load Balancer, networking - Article Type: Overview Microsoft recently added a new tier of load balancer to Azure, the Standard Load Balancer, in addition to the previous (now renamed) Basic Load Balancer. In this post, I will compare the two and explain why you might opt to deploy the Standard Load Balancer. Microsoft recently added a new tier of load balancer to Azure, the Standard Load Balancer, in addition to the previous (now renamed) Basic Load Balancer. In this post, I will compare the two and explain why you might opt to deploy the Standard Load Balancer.     Layer-4 Load Balancing Azure has offered load balancing functionality for as long as I have worked with Microsoft’s cloud platform (over 4 years). The Azure Load Balancer was free (and still is) and offered simple, Layer-4 (TCP or UDP), load balancing to application or web services on a virtual network. If you need more than the Layer-4 functionality of the Azure Load Balancer, then you can deploy third-party solutions as network virtualization appliances (specialized Linux virtual machines) from the likes of Kemp, Citrix, and F5, and more. Recent changes to Azure’s architectural possibilities and the ever-growing demands of customers means that the Azure Load Balancer, as it has been, is no longer enough for many customers, even those that were happy with Layer-4 load balancing. This is why: The Azure Load Balancer is now known as the Basic tier load balancer A new Standard tier load balancer is generally available and offers higher-scale and new features. The Standard tier load balancer is a paid-for feature using a complex set of consumption-based charges and the Basic tier continues to be free. Comparing the Load Balancers The following will explain why you would use the Standard tier load balancer from Azure. Backend Pool Size... --- ### Everything You Need to Know About Office 365 -- April 2018 > Office 365 news including Security updates, performance enhancements, external sharing management, and OneNote 2016 headed for retirement. - Published: 2018-04-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-office-365-april-2018/ - Categories: Microsoft 365 - Tags: external sharing, Office 365 news, office 365 security, on-premises data gateway, Powerapps - Article Type: News Take a look how Microsoft is better at security than you are, how you can control external sharing, me showing some self-control on telling you about PowerApps, getting better performance, and my personal sadness around OneNote. This month it seems that security became the theme. Take a look how Microsoft is better at security than you are, how you can control external sharing, me showing some self-control on telling you about PowerApps, getting better performance, and my personal sadness around OneNote. Oh, what fun and like the SharePoint article, light on the snark this month. I expect you to complain in the comments and tell me to bring back the snark.     Security Keeps Getting More Awesome It is funny how we went full circle. We used to say the cloud was unsecured and only good for non-important stuff. This is not the case anymore. Now we are starting to realize that the Microsoft cloud (probably others but I ignore them) is way more secure than on-premises. Why? Scale and resources. If you are lucky, your company has one full-time person doing security for everything. Not at Microsoft. It has offices full of people who live and die for security and it has a million (probably more) data points than we do. They are better at security than we are. The latest case in point. I had never heard of a password spray attack but because they watch all of the accounts all of the time, Microsoft figured out what it is and how to detect it. Even cooler, Microsoft released a tool in preview that lets you try one of these attacks against your own tenant. Check out the Attack Simulator and... --- ### Everything You Need to Know About Azure Infrastructure -- April 2018 - Published: 2018-04-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-azure-infrastructure-april-2018/ - Categories: Microsoft Azure - Tags: April 2018, Availability Zones, Azure, Azure Backup, Azure Container Instances, Azure Monitor, Azure Portal, Container, Dashboard, DDOS, DNS, ExpressRoute, GDPR, Global VNet Peering, Managed Disks, MySQL, Network Watcher, OMS, Operations Mangement Suite, PostgreSQL, RDMI, RDS, Regions, Remote Desktop Modern Infrastructure, Security Center, Service Fabric, SQL Server, storage, VNet Peering, Windows Server 2019, WS2019, Zone Redundant Storage, ZRS - Article Type: Overview We’re just a few weeks away from the Microsoft Build conference, where historically, a lot of announcements are made. Although there were plenty of announcements in April 2018, most of them were small. We’re just a few weeks away from the Microsoft Build conference, where historically, a lot of announcements are made. Some things might be held back until then. Those of you in the platform and data side of things did have a busy month. The Azure blog has 8 pages of announcements!     GDPR -- Not Just A European Thing! If you don’t work in IT in the European Union, then there’s a very good chance you don’t know what GDPR is ... and that might be a problem! You cannot ignore GDPR if you are outside the USA because this regulation does not care about data location. In short, the General Data Protection Regulation (GDPR) is a European Union order to protect personally identifiable information (personal data that can identify a person). It’s a big update to the older data protection laws, which were out of date and inconsistent. Any personal data that identifies a European Union citizen is covered – no matter where that data is. The fines for non-compliance are huge, up to €20 million or 4 percent of a company’s global revenue, whichever is higher. Inside the EU, I got the feeling that most companies have ignored GDPR, expecting it to be pushed back like the end of life of Windows XP. Some of the requirements are actually impossible to comply with today, such as the right to be forgotten,... --- ### Everything You Need to Know About SharePoint -- April 2018 - Published: 2018-04-30 - Modified: 2024-11-19 - URL: https://petri.com/everything-need-know-sharepoint-april-2018/ - Categories: SharePoint, Uncategorized - Tags: OneDrive, Powerapps, SharePoint mobile, SharePoint News, SharePoint storage - Article Type: News SharePoint continues to be awesome and Microsoft continues to make cool investments. Check out this month’s news and highlights. More Storage, more geo-capabilities, more features, more, more, more... SharePoint continues to be awesome and Microsoft continues to make cool investments. Check out this month’s news and highlights. I also turned down the snark this month. Not on purpose, just in proofreading, I see that I wasn’t as me as usual. Is that good or bad? I also didn’t post the 200 things I wanted to about PowerApps. I think it needs its own monthly article. Leave comments below if you agree. Here we go:       Hot Off the Presses: SharePoint Online Storage Gets 20X Increase Man, I felt the excitement just typing those words. If you are SharePoint Online user (and who isn’t? ), Microsoft announced that starting to roll out July 1 they are increasing everyone’s storage. It used to be 1TB + half a gig per user. Now it will be 1TB + 10GB per user. That is pretty crazy. This means two things for you. One, you will be able to reduce your spending if you are buying extra capacity today and two more pictures of cute puppies. That is right, tell your users to go all in and upload all of the pictures they want to SharePoint. The internet will be a better place for it.   Read more from our illustrious editor Brad. The SharePoint Migration Tool Got Even Better Are you moving your SharePoint on-premises or file share to SharePoint Online (sooner or later we will all say yes)? Well, the... --- ### Everything You Need to Know About Windows -- April 2018 - Published: 2018-04-30 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-april-2018/ - Categories: Windows Server - Tags: FIDO2, Security, Windows, Windows Admin Center, Windows Defender Advanced Threat Protection, Windows Hello, Windows S Mode, Windows Server - Article Type: News This month, Windows 10 goes on a diet, the April Update is delayed, and Project Honolulu reaches general availability as the Windows Admin Center. This month, Windows 10 goes on a diet, the April Update is delayed, and Project Honolulu reaches general availability as the Windows Admin Center.     Windows 10 April Update Delayed April’s Patch Tuesday was the expected release date for the next major version of Windows – the Windows 10 April Update. But the update (build 17133) didn’t roll out as expected and there was no word from Microsoft about why. Several days later on April 16th, Microsoft announced a new build was being released to Insiders (build 17134) on the Fast Ring because of a bug in the previous build that caused more BSODs than expected on some devices. Build 17134 includes fixes released on Patch Tuesday from KB4100375. The final 1803 was released on April 30th, 2018. While Microsoft could have released a cumulative update for build 17133 to fix the BSOD issues, it was obviously felt that the problem was serious enough to warrant delaying the April Update and to take extra time to iron out serious bugs. A week later, build 17134 was released for Insiders on the Slow and Release Preview Rings. At the time of writing, we don’t know when Microsoft will make the Windows 10 April Update generally available. But assuming build 17134 has solved the BSOD issues, it could slip out the gate any time. Windows 10 Lean Last month, Microsoft announced the availability of Windows 10 Redstone 5 for Insiders on the Skip Ahead Ring. The latest build (17655)... --- ### Microsoft Increases SharePoint Online Storage 20x - Published: 2018-04-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-increases-sharepoint-online-storage-20x/ - Categories: SharePoint, SharePoint Online - Tags: News, SharePoint, SharePoint Online - Article Type: News Microsoft is significantly increasing the amount of storage for SharePoint Online which may allow you to save a few dollars each month. There are few things that you can guarantee in life; death, taxes, and the fact that we will create more data tomorrow than we do today. If you are a heavy user of SharePoint, you will know that the data offered with a SharePoint Online license is paltry compared to what users actually need. In a post, late on Friday last week, which is always a good time to announce feature enhancements to billion dollar products, SharePoint Online per user license storage is increasing twenty-fold. The new storage allocation jumps to 1 TB plus 10 GB per user license purchased, up from 1 TB plus . 5 GB per user license purchased. If you are using Office 365 in any capacity that has a SharePoint component you will benefit from this substantial upgrade in storage. Microsoft outlines example scenarios below that paint the picture of how this increase will impact your environment. Any way you look at this, it's good news. Microsoft providing more storage to users for no additional fee and if you are paying for additional storage, this upgrade may cut your monthly expense. The upgraded storage will start rolling out on July 1, 2018 and should be completed by the end of August 2018. Once it is applied to your account, you will see it show up in the SharePoint Online admin center. --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2018) - Published: 2018-04-27 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-8/ - Categories: Cloud Computing, Dynamics, Hardware, Microsoft Azure, Mobile, Office, Windows 10 - Tags: News - Article Type: Overview Because this happens once a quarter, this week’s edition of Short Takes looks exclusively at Microsoft’s earnings announcement and the information it provided to analysts after that announcement. Because this happens once a quarter, this week's edition of Short Takes looks exclusively at Microsoft's earnings announcement and the information it provided to analysts after that announcement. Note: Microsoft announced its latest quarterly earnings last night. As Brad previously reported, the software giant beat analyst expectations by delivering a net income of $7. 4 billion on revenues of $26. 82 billion. So this edition of Short Takes will focus on what we've learned about Microsoft's earnings since the announcement. ---Paul "How Microsoft helped imprison a man for 'counterfeiting' software it gives away for free" Um. It helped imprison a man that was selling software that Microsoft gives away for free and doing so with faked discs that looked real. The elephant in the room: Microsoft just split up Windows One of the things I was very curious about was how Microsoft would present the health of its Windows business, given that it literally just split the whole thing up and (figuratively) scattered it to the wind. And ... they didn't really address it yet. For this quarter (and, I assume, for the fiscal year, which ends on June 30), Windows revenues are reported as they always have been. And I've been told that, structurally, the non-core parts of Windows have been split between enterprise/commercial (Brad Anderson) and consumer/nonsense (Joe Belfiore). So I am betting that we'll see a reporting change beginning in the next fiscal year. And that layoffs will be a big part of that change. For now:... --- ### What's in the Windows 10 April 2018 Update for The Enterprise - Published: 2018-04-27 - Modified: 2024-09-04 - URL: https://petri.com/whats-windows-10-april-2018-update-enterprise/ - Categories: Windows 10, Windows Client OS - Tags: News, Windows 10, Windows 10 April 2018 update - Article Type: News With the release of the Windows 10 April 2018 update, Microsoft is introducing several new functions and features for enterprise users. With Microsoft pushing out two large updates to Windows 10 per year, it can be difficult to keep track of all the new updates and changes to the OS. In this post, I'll identify the key features you should be aware of in this release and how you can apply them to your environment. For starters, you should know that the update will begin rolling out on Monday, April 30th; once this happens, this begins the lifecycle support window for the update. The release this spring is known by several names, Redstone 4, 1803, and the April 2018 release. To clarify, Redstone 4 is the codename, 1803 is the year/month it was completed and April 2018 is the month of the release and the proper marketing name. While there are consumer features in this release, for the enterprise, there are a number of reasons why you should start testing this update and move to it in the near future. The first critical feature is Delivery Optimization. This streamlined way of bringing updates to your environment reduces the bandwidth needed to grab the latest bits from Microsoft. Starting with the April 2018 update, you will be able to monitor Delivery Optimization Status using Windows Analytics; you will also be able to see the amount of data saved using this tool. Speaking of bandwidth, there are new options under Group Policy to throttle the bandwidth used based on the time of the day. You can find these new functions in... --- ### Microsoft Releases Office 2019 in Preview for Commercial Customers - Published: 2018-04-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-office-2019-preview-commercial-customers/ - Categories: Office - Tags: Microsoft, News, Office 2019 - Article Type: News Microsoft is making available today a preview of Office 2019 and here is where you can download it. In the second half of this year, Microsoft will make available Office 2019 for on-premises customers. Starting today, you can download a beta of the apps (Microsoft calls this 'preview) for testing and validation purposes. This latest version of Office for on-premises users will bring the features that have rolled out to Office 365 customers in an offline package. While Microsoft would love every customer to move to the SaaS model for Office, they know that a large number of their customers still prefer the offline iteration of the software. Download: Office 2019 Office 2019 will only run on supported versions of Windows 10 (Semi-annual Channel), Windows 10 LTSC 2018, and the next LTSC version of Server. If you are running an older version of Windows or Server, you will not be able to install this version of Office. In addition to only running on Windows 10, Microsoft has shortened the lifecycle support as well. This product will receive five years of mainstream support but ‘approximately’ two years extended support. --- ### Yammer: A Tip of the Hat to You! - Published: 2018-04-27 - Modified: 2024-11-19 - URL: https://petri.com/yammer-tip-hat/ - Categories: Yammer - Tags: Modern Workplace, Office 365, Yammer - Article Type: Opinion Jasper Oosterveld, Microsoft MVP and Modern Workplace Consultant, shares his opinion about the progress Yammer made over the last couple of years. Yes, you are seeing it correctly. A positive article about Yammer. A couple years ago, I wrote a critical article about the future of Yammer. During those years, Yammer was struggling. A lot. There weren’t many improvements and overall Yammer was a frustrating experience. I was struggling with this development because I sincerely believe in the essence and promise of Yammer. It is an Enterprise Social Network where people connect with each other. Organizational and hierarchal boundaries disappeared. In Yammer, everyone was equal. I helped many organizations deploying and adopting Yammer the way it was supposed to be used. That was the key: Using Yammer as it was intended to be used. A tool to connect people, sharing expertise, and asking questions. That said, things weren’t looking very bright.     (more... ) --- ### Microsoft Continues to Climb with Cloud and Office Growth in Q3 - Published: 2018-04-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-continues-climb-cloud-office-growth-q3/ - Categories: Main - Tags: Earnings, Microsoft, News - Article Type: News Microsoft reported their Q3 earnings today and the company beat Wall St. expectations with strong Office and Cloud growth. Microsoft reported their Q3 earnings today and the company beat Wall St. expectations with $26. 82 billion in revenue versus $25. 77 expected; earnings per share was 0. 95 ($0. 85 expected). Overall, these are healthy numbers for Microsoft but let's break it down into more bite-sized chunks. The company had an Operating Income of $8. 3 billion with Net Income coming in at $7. 4 billion. During the period, Microsoft returned $6. 3 billion to shareholders. Office 365 now has 30. 6 million consumer subscribers and on the commercial side of the coin, the company has 135 million subscribers. The productivity suite continues to be a bright spot for the organization and a continued spot of growth for the bottom line. Microsoft's commercial cloud business revenue rose by 58% to $6 billion; the margins improved as well to 57% Surface also saw a strong quarter when compared to a year ago with revenue up 32%; the product line brought in $1. 094 billion in revenue. While the revenue figure is solid, the growth number is a bit misleading as a year ago, the company had a stale product line but during this latest quarter, it reflects newer hardware. Xbox Live active users remained stable at 59 million which is the same figure as the last quarter. While this may seem like no growth, this is likely a good thing as the previous quarter was a holiday season which means there was not a dramatic post-holiday decline in active users. Further, Gaming Revenue was $2. 25 billion dollars for the quarter, which is about $300... --- ### Access Azure Virtual Machines Using the Serial Console Recovery Tool - Published: 2018-04-26 - Modified: 2024-09-04 - URL: https://petri.com/access-an-azure-virtual-machine-using-the-serial-console-recovery-tool/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machines, cloud computing, linux, Serial Access Console, Serial Console, Windows Server - Article Type: How To In this Ask the Admin, I'll show you how to access an Azure Windows Server virtual machine using the serial console independently of the OS and network. In this Ask the Admin, I'll show you how to access an Azure Windows Server virtual machine using the serial console, independently of the OS and network.     One of the disadvantages of using virtual machines (VMs) in the Azure cloud has been that if something goes wrong, for instance, a Windows Firewall rule is configured that blocks RDP access or the Remote Desktop service is stopped, it might be impossible to regain access to the VM. Unlike an on-premises Hyper-V Server, you don’t have physical access to the Azure cloud fabric. Microsoft recently launched a preview of the Serial Console Recovery Tool, which provides text-based console access to Linux and Windows Server VMs via the COM1 serial port. A connection to the COM port can be established regardless of the operating system state or if the VM loses network connectivity. Using Serial Console Access There are a couple of prerequisites that must be fulfilled before you can connect to a VM’s COM port. The VM must have boot diagnostics enabled and the account using the serial console must have Contributor role for the VM and the boot diagnostics storage account. Linux VMs have support for serial console access (SAC) enabled by default but Windows Server is a more complex story. SAC has been included in all versions of Windows since Windows Server 2003 but it is disabled by default. Serial console access is enabled by default in new Windows Server VMs that are deployed using the Azure... --- ### Azure Active Directory External Collaboration Policy Now Generally Available > Office 365 makes it easy to collaborate with external users through Office 365 Groups and Teams, both of which use Azure B2B Collaboration. - Published: 2018-04-26 - Modified: 2024-09-04 - URL: https://petri.com/azure-active-directory-external-collaboration-policy/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, Azure B2B Collaboration, collaboration, Office 365 Groups, Teams - Article Type: How To Office 365 makes it easy to collaborate with external users through Office 365 Groups and Teams, both of which use Azure B2B Collaboration. In fact, collaboration is so easy that users might be carried away and share with all and sundry, including your competitors. Which is why it's nice to have a policy to control sharing with certain domains that works for applications like Groups, Teams, and Planner.   A Policy to Govern Office 365 External Collaboration In August 2017, I reported on the preview of a policy to block external access for guest accounts created by Azure B2B Collaboration and used by applications like Office 365 Groups, Teams, and Planner. At that time, the interface to the policy was a PowerShell script. Now, the policy is generally available complete with some user interface to guide administrators who don’t like messing with scripts. The policy is available to all Azure AD customers without the need for a special license. External Collaboration Settings To access policy settings, click the External collaboration settings link in User settings in the Azure Active Directory portal, and then the section called Collaboration restrictions. Three values are available: Allow invitations to be sent to any domain (most inclusive): This is the default setting and it means that invitations to join Office 365 Groups and Teams can go to users in any other domain. Deny invitations to the specified domains: You can create a policy to block invitations going to specific domains. Microsoft believes that using a deny list is the most common scenario as most organizations know the domains that they do not wish to share information with. For example, if you decide that you do not want users to invite guest users with consumer email addresses, you block domains like Gmail. com, Yandex. com, Outlook. com, Yahoo. com, and so on. When a deny list is in place, Office 365 blocks any attempt to invite... --- ### Windows Admin Center -- The Future of the Windows Server GUI - Published: 2018-04-25 - Modified: 2024-09-04 - URL: https://petri.com/windows-admin-center-the-future-of-the-windows-server-gui/ - Categories: Windows Server - Tags: administration, Security, Server Core, Windows Admin Center, Windows Server - Article Type: Opinion In this post, I’ll look at why Windows Admin Center is the new GUI management tool of choice for Windows Server. In this post, I’ll look at why Windows Admin Center is the new GUI management tool of choice for Windows Server.     I first dabbled with Linux nearly 15 years ago and installed Webmin to help me get up and running quickly without having to manually edit config files from the command line. At that time, Webmin was already a mature product that made Linux a little less scary for Windows sysadmins. Real Linux experts might not ever need a tool like Webmin but it is worth bearing in mind that Linux is designed to be managed from the command line. Unlike Linux, Windows exposes a set of APIs through which various tools can manage the operating system. This disparity is important when talking about Server Core, which is the default installation option for Windows Server. Introduced as part of the work Microsoft is doing to make Windows modular, Server Core doesn’t include a GUI (desktop experience) for a couple of reasons. The idea is that without a GUI, disk and memory footprint is much smaller than a full install of Windows Server. Server Core also reduces the attack surface by removing code that isn’t necessary for most server tasks. In turn, this makes Core easier to patch with fewer reboots. But despite Microsoft’s efforts to push Core, Windows system administrators remain unconvinced. For example, Windows Server 2016 no longer allows you to change between Server Core and the full GUI after install. This is not necessarily because they... --- ### With 4 Million Businesses Using G Suite, Google Is Pushing Further into Office 365's Playground - Published: 2018-04-25 - Modified: 2024-09-24 - URL: https://petri.com/4-million-businesses-using-g-suite-google-pushing-office-365s-playground/ - Categories: Google Cloud Platform - Tags: G Suite, Google, News, Security - Article Type: News Google is rolling out one of its largest updates ever to G-Suite and at the same time, is chipping away at the unique features that were previously only found in Office 365. While Microsoft has the clear advantage when it comes to productivity software, Google is continuing to chip away at Microsoft's offering and today is releasing a significant update to their email platform. As most companies are doing these days, Google is looking to help differentiate its product with advanced security features to help protect your corporate data. Last month they released an update to mitigate Business Email Compromise (BEC) threats and today they are rolling out Gmail confidential mode. This new mode makes it possible to protect sensitive content with expiration dates and the ability to revoke previously sent messages. Further, because you can now require additional authentication to view an email, content can be protected even if an account has been compromised. Additionally, built-in Information Rights Management lets you control the ability to forward, copy or download/print messages. While not a perfect solution as a malicious user can easily work-around these protections, it does stop accidental data leakage. Even though Microsoft offers these features with Office 365, the key here is that Google shows no signs of slowing down in entering the productivity space to take on Microsoft. Apple and many others have tried to dive into this segment but few have had any meaningful success; Google is showing that it can be done and are making slow, but steady progress, in becoming a viable alternative to Microsoft's platform. There are many other enhancements rolling out to G-Suite customers like Nudging, Smart Reply and high-priority notifications and... --- ### Microsoft Switches Office 365 Groups to Private by Default > Microsoft is switching the default access type for Office 365 Groups to be private. It's a change that you can easily reverse, if you want it to be public. - Published: 2018-04-24 - Modified: 2024-11-19 - URL: https://petri.com/office-365-groups-private-default/ - Categories: Microsoft 365, Office - Tags: Office 365 Groups, Outlook, owa, Set-OrganizationConfig, Teams - Article Type: News Microsoft is switching the default access type for Office 365 Groups to be private. It's a change that you can easily reverse, if you want it groups to be public. The change will be effective for Outlook endpoints first, meaning OWA, Outlook desktops, and the Outlook mobile apps. Later, the other Office 365 apps that create Office 365 Groups might fall into line. Or not, as the case might be. All Change with Office 365 Groups Microsoft’s original vision for Office 365 Groups emphasized openness. Anyone could create a group and all groups were public. The aim was to foster collaboration and make sure that anyone could join in any group discussion as they liked. Time passes by and software matures in the fierce heat of customer opinion. The original dedication to openness is less than it was. A group creation policy allows tenants to restrict the creation of new groups to a limit set of users. Teams hides groups that it creates from Exchange clients to avoid the chance of confusing users and Yammer-originated groups are invisible anywhere outside Yammer. And now, Microsoft has decided to change the default access type for a group from public to private to satisfy  the third-highest rated request for Groups on Uservoice, the place where customers voice their opinion about changes they’d like Microsoft to make. Figure 1: User Voice makes its point (image credit: Tony Redmond) Change Happens for Outlook First Microsoft announced that they are rolling out the change iin Message Center notice MC134487 on April 20. OWA is the first client to go private-by-default (Figure 2), followed by the four other Outlook endpoints for group creation (Outlook for Windows and Mac, Outlook mobile for iOS and Android). Microsoft can change OWA quickly, but it takes a lot longer to work user interface changes into the other clients, so you can expect public-by-default to be... --- ### VMware Announces vSphere 6.7 - Published: 2018-04-23 - Modified: 2024-09-04 - URL: https://petri.com/vmware-announces-vsphere-6-7/ - Categories: Cloud Computing, Virtualization - Tags: Cloud, Hybrid, News, Virtualization, vmware, vSphere - Article Type: News VMware recently announced vSphere 6.7, the latest version of its cloud virtualization platform, which includes a variety of updates in the areas of management, security, and more. In a recent post on the vSphere blog, VMware announced vSphere 6. 7, the latest version of its cloud virtualization platform. Included in this update are a variety of updates in the areas of management, security, and the overall platform itself.  The latest version of vSphere now includes several improvements related to the management of a virtual or hybrid environment with one such improvement being the introduction of an enhanced vCenter Server Appliance or vCSA. These improvements include several new APIs that allow for more efficient deployment and management of vCenters. What’s more is that admins can now make use of the “enhanced link mode” of the vSphere platform services controller.     When compared to the previous vSphere version (6. 5), users of vSphere 6. 7 can expect some significant performance improvements, including a 2x increase in the number of operations per second that vCenters are capable of, a 3x reduction in memory usage, and a 3x speed increase in Distributed Resource Scheduler or DRS operations. These performance improvements should help to ensure that things are running smoothly even when resources are under heavy loads. Also included in this update is the ability to perform major ESXi version updates with only one reboot compared to the two reboots that were previously required. And for when an ESXi hypervisor has to be restarted, admins can take advantage of vSphere’s Quick Boot, which only restarts the hypervisor itself and not the physical hardware that it runs on. This can help to save time as... --- ### Choosing a Disaster Recovery Technology: Backup vs. Replication - Published: 2018-04-23 - Modified: 2024-09-04 - URL: https://petri.com/choosing-a-disaster-recovery-technology-backup-vs-replication/ - Categories: Backup & Storage, Cloud Computing, Disk Management, Virtualization - Tags: Backup, Cloud, Disaster Recovery, hybrid cloud, storage, Virtualization - Article Type: Overview There are two primary types of backup technologies and knowing the difference between backup and replication will help you choose the best path forward. Backup and replication are two of the most fundamental availability and disaster recovery (DR) technologies. While many businesses use these technologies, there’s a lot of confusion about their different roles for high availability and disaster recovery. While in some respects, these two technologies seem similar in their essence, the fundamental purpose behind them is very different. On the surface, both backup and replication can copy a VM to a separate remote location and that copy can be used to restore or replace the original VM in the event of some type of failure. However, these technologies are actually designed with very different purposes in a mind and not surprisingly, they operate very differently. Let’s take a closer look at each of these technologies to get a better idea of the role that each one plays in a disaster recovery scenario. Backup for DR Backup is the foundation of your disaster recovery plan. Backup captures the state of a given system at the time of the backup. Copies of the backup are usually archived and often moved offsite, enabling the business to use the backup copy to potentially restore your production servers in the event of some type of site failure or outage. For optimum data protection, businesses are recommended to follow the 3-2-1 rule of backup which states your backups should have: 3- Have at least three copies of your backups 2- Store the copies on two different types of media 1-Keep one copy of the backup offsite Three copies... --- ### Paul Thurrott's Short Takes: April 20 - Published: 2018-04-20 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-20/ - Categories: Hardware, Mobile, Security, Windows 10 - Tags: News - Article Type: Overview Because security and privacy are fashionable, this week's edition of Short Takes examines Microsoft's new Azure Sphere platform, a Windows 10 S vulnerability, data requests, the race to $1 trillion, and much, much more. My next computer. Because security and privacy are fashionable, this week's edition of Short Takes examines Microsoft's new Azure Sphere platform, a Windows 10 S vulnerability, data requests, the race to $1 trillion, and much, much more. Mainstream press continues to misunderstand Microsoft's relationship with Linux This week, Microsoft delivered a blockbuster news announcement when it revealed Azure Sphere, its new "intelligent cloud and intelligent edge" platform for ambient computing. But some were aghast when the software giant revealed that the IoT-like OS it would use for this platform was based on Linux, and not Windows. "Microsoft Turns to Old Enemy Linux to Solve Vexing Tech Threat," one particularly clueless report noted. Guys, wake up. Microsoft has been working with, and escalating its use of, Linux for several years. And, no, it did not pick Linux because it was more secure than Windows. Linux is just better suited for these tiny, resource-constrained sub-IoT systems. "What to do if you don't want Windows 10 update to install automatically Switch to Linux. Sorry, even Windows 10 S isn't secure Microsoft promotes the sickly Windows 10 S for its "Microsoft-verified security" prowess in a bid to offset the fact that it cannot run Windows applications. But as a recent Google security vulnerability disclosure points out, Windows 10 S isn't actually "secure," it's just slightly more secure than other Windows 10 editions. You know, the ones that can run Windows applications. Microsoft's push for a more streamlined Windows... --- ### Next Generation Alerts Generally Available in Azure > This post explains how the new alert system of Azure has improved with better scoping, merged functionality, and reusable action groups. - Published: 2018-04-20 - Modified: 2024-09-04 - URL: https://petri.com/next-generation-alerts-generally-available-azure/ - Categories: Microsoft Azure - Tags: Action Group, Activity Log, alerts, Azure, Azure Monitor, email, ITSM, Log Analytics, OMS, SMS, Text, Voice - Article Type: How To This post will explain the improvements that Microsoft has made by making the next-generation alert system of Azure generally available. This post will explain the improvements that Microsoft has made by making the next-generation alert system of Azure generally available.     Alerts An important part of any large or complex IT system is being able to ignore it until something goes wrong or, ideally, is about to go wrong. The key to this is being able to configure alerts if something breaks, an unexpected thing happens, or if a threshold is exceeded. Azure has had a system for creating alerts but it has a fragmented history. You could configure alerts in all kinds of places, such as a virtual machine, in a web app, in Log Analytics (OMS), in Azure Backup (recovery services vault), or in Activity Log. Slowly, all of this is being centralized into Azure Monitor. The real system for monitoring performance and managing all alerts in Azure. The configuration of alerts was quite fragmented too. Recovery services vaults only handled notifications by email. Log Analytics had its own complete system. Activity Log used a combination of Action Groups and alerts, which offered a lot of functionality. Azure monitor resource alerts were more powerful than those in the recovery services vault but still didn’t offer alerts by SMS text message. Next Generation Alerts After a fairly long public preview, Azure has made the next generation alert system generally available. With this new system, we see a unification of the methods used by Activity Log and Azure Monitor resources. Action Groups An Action Group allows you to... --- ### SharePoint Online, Groups, Regional Settings, and Pacific Time > Office 365 Groups are the reason why many SharePoint Online sites appear in tenants. If you're on the Pacific coast of the U.S., the regional settings OK - Published: 2018-04-19 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-online-groups-regional-settings/ - Categories: Microsoft 365, Microsoft Teams, Office, SharePoint, SharePoint Online - Tags: Groups, Office 365, Regional settings, SharePoint Online, Site Scripts, Teams - Article Type: How To Office 365 Groups are the reason why many SharePoint Online sites appear in tenants. If you're on the Pacific coast of the U.S., the regional settings are OK. But anyone else in the rest of the world who uses the SharePoint browser interface will see times and dates in that instead of the local format. You can change the regional settings for a site, and now you can make sure that new sites have the right settings. The Odd Case of Office 365 Groups and Pacific SharePoint Sites For whatever reason, Office 365 Groups love to create SharePoint sites with the time zone set to Pacific Daylight Time (UTC -8 hours). It’s probably a historical legacy of some decision about provisioning taken years ago, but today, all my sites created in a Western Europe tenant, proudly display Redmond-centric times. This is fine for people in Microsoft but not so good for users elsewhere in the world. The problem existed since Microsoft launched Office 365 Groups in November 2014. The increasing number of SharePoint sites created by Office 365 Groups (and Teams) has led to nice growth in SharePoint usage, which is a good thing. Manual Updates are Never Good You can always update these settings by accessing the Regional Settings of a site (Figure 1). However, given that Teams and Office 365 Groups create many of the new SharePoint Online sites and their owners are usually people with little SharePoint expertise, it is best if the settings are correct from the start. In addition, as MVP Marc D Anderson notes in a blog post, finding and resetting regional settings for multiple sites is tedious. In short, a royal pain. Figure 1: Site regional settings (image credit: Tony Redmond) When regional settings are set correctly, the SharePoint browser interface displays creation and modification dates for documents in local time rather than Pacific time. That’s the biggest advantage gained through this exercise. Teams... --- ### Microsoft Brings Windows Defender Protections to Chrome - Published: 2018-04-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-windows-defender-protections-chrome/ - Categories: Security, Windows Client OS - Tags: Browser, Chrome, Defender, News, Windows - Article Type: News Microsoft is bringing Windows Defender to Chrome via an extension but there are a few things you need to consider before installing the add-on. One of the key advantages that Microsoft pitches for you to use Edge is the built-in Defender protection. Because Microsoft has a massive network of connected devices, it is able to successfully crowd-source protections against malicious online activity. But, it looks like if you are using Chrome, you can install an extension from Microsoft that will deliver some of those protections. The extension is free and you can download it from the Chrome Web Store, here. The extension, uncovered by Walking Cat, does read all of your browsing activity as that's the only way for it to actively stop you from visiting malicious websites. What this means is that you must be comfortable knowing that Microsoft has access to your browsing history but considering the company does not primarily make its revenue from advertising, it's unlikely that they are selling this data or profiling your information. That being said, you should always be aware of who has access to your data so that you can turn it off if there is a breach of your trust. This is an interesting step for Microsoft as this extension reduces the built-in value of using Edge as your primary browser. But, the more information that Microsoft can gather from the web to identify malicious websites, the better they can protect users on both Edge and Chrome. For those organizations that depend heavily on Defender to protect their environment, this is one more branch of the security tree that can be installed... . --- ### Patch Tuesday -- April 2018 - Published: 2018-04-18 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-april-2018/ - Categories: Security - Tags: Patch Tuesday, Security, Windows, Windows Server - Article Type: Overview This month’s Patch Tuesday fixes 63 CVE vulnerabilities, 17 of which are critical for Windows 10. This month’s Patch Tuesday fixes 63 CVE vulnerabilities, 17 of which are critical for Windows 10.     Let’s start with what didn’t happen as expected on Patch Tuesday this month and that’s the release of Windows 10 version 1803, or Spring Creators Update as Microsoft watchers believe it will be dubbed. According to Windows Central, Microsoft found a blocking bug at the last minute and decided to delay the release, possibly for a couple of weeks. But Insiders who already have build 17133, previously thought to be the RTM release, did receive a cumulative update. Windows This month’s update for Windows 10 for x64-based systems patches twenty-five vulnerabilities in total. Eleven of which are information disclosure, two privilege elevation, one security feature bypass, four denial of service, and seven remote code execution vulnerabilities. Critical updates for Edge and Internet Explorer include several memory corruption flaws that could allow an attacker to run arbitrary code on a user’s PC and a fix for Adobe Flash that encompasses three remote code execution flaws and three information disclosure vulnerabilities. There are five remote code execution bugs (CVE-2018-1010, CVE-2018-1012, CVE-2018-1013, CVE-2018-1015, and CVE-2018-1016) in the graphics component of Windows that could allow an attacker to take control of a device using a specially-crafted font. Windows 7 gets six critical patches this month. Five relate to the font issue in the graphics component and CVE-2018-1004 is a remote code execution vulnerability in the VBScript Engine. Windows Defender is also patched for a... --- ### Creating a Simple Flow to Send OnDemand Notifications on Specific Documents - Published: 2018-04-18 - Modified: 2024-09-04 - URL: https://petri.com/creating-simple-flow-send-ondemand-notifications-specific-documents/ - Categories: Microsoft 365 - Tags: Microsoft Flow, Office 365, SharePoint, SharePoint Online Microsoft Flow integration in SharePoint Online provides a very simple way to model common collaboration scenarios, such as send an OnDemand notification when a specific document has been uploaded to a document library or a list item has been created in a list. In this article I will show you how to create a simple Flow to send an OnDemand notification when a document is selected in a document library. Microsoft Flow integration in SharePoint Online (SPO) provides a very simple way to model common collaboration scenarios such as send an OnDemand notification when a specific document has been uploaded to a document library or a list item has been created in a list. In this article, I will show you how to create a simple Flow to send an OnDemand notification when a document is selected in a document library.     Creating the Flow In my example, I’m going to create a Flow for a document library. The first step is to access an existing document library. Click on Flow in the actions bar and then click on Create a flow: Figure 1: Creating a Flow From an Existing Document Library From the “Create a flow” panel, click on “See your flows” link so that you can access Flow authoring and management environment. Figure 2: “Create a Flow” Panel In the home page of the Flow environment, click on “My Flows” link in the navigation bar and then on “Create from back”: Figure 3: Creating a Flow From Blank Creating a Flow from blank allows you to select the trigger that is going to start the Flow. To choose the right trigger just click on “search hundreds of connectors and triggers”: Figure 4: Choosing the Start Trigger for the Flow Select “SharePoint – For a selected item” as the start trigger of the flow. From here, you will be able to launch your Flow when you... --- ### What You Need to Know About Teams and Office 365 Retention Policies > With GDPR coming, it's good news that Teams now supports Office 365 retention policies. You can apply retention to messages posted to channels and chats. - Published: 2018-04-17 - Modified: 2024-09-04 - URL: https://petri.com/teams-supports-office-365-retention-policies/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Compliance, data governance, GDPR, Office 365, Retention, Teams - Article Type: How To With GDPR coming, it's good news that Teams now supports Office 365 retention policies. You can apply retention to messages posted to channels and chats, or use a mixture of policies to target different sets of users and teams. You might be surprised how Teams has implemented retention - and remember, we're only talking about messages - other content might also need a policy. Teams Becomes More Compliant It’s April, so it must be time for Microsoft to launch some new compliance features for Office 365. Last April, Microsoft launched the new Office 365 data governance framework, including retention policies and classification labels. Around the same time, Teams began to record compliance records for personal and channel conversations in user and group mailboxes. Now, to complete the circle, Office 365 retention policies can process Teams compliance records. All of which is good news with regulations like GDPR on the near-term horizon. Office 365 retention policies support OneDrive for Business and SharePoint Online libraries, so it has always been possible to control some Teams content. The new initiative covers retention management for conversations, which exist in the Teams chat and media services running in Azure. The MFA Helps with Compliance Microsoft took an interesting approach to apply retention policies to conversations. Instead of building a new background process to interpret and execute the instructions as described in retention policies, Teams uses the Exchange Managed Folder Assistant (MFA) to process the compliance records held in user and group mailboxes. As you might recall, each time someone posts a message to a channel, Teams captures a copy of the message in the Team Chat folder of the group mailbox belonging to the host team for the channel. Copies of messages sent to personal chats end up in the same folder in the mailboxes of participants. Office 365 indexes these compliance records to make them available... --- ### Microsoft Announces New Project VAST Security Visualization Tool - Published: 2018-04-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-new-project-vast-security-visualization-tool/ - Categories: Security - Tags: Azure, Azure Log Analytics, cloud computing, Kusto, Project VAST, Security - Article Type: News With a little help from Power BI and Azure Log Analytics, Microsoft's new Project VAST promises to make it easier to identify important security events. With a little help from Power Bi and Azure Log Analytics, Microsoft's new Project VAST promises to make it easier to identify important security events. At the end of March, Microsoft unveiled Project VAST or the Visual Auditing Security Tool (VAST). VAST takes different SIEM products that aggregate security logs by providing rich interactive data visualization so that organizations can get a better idea of security vulnerabilities. VAST also works alongside existing security solutions, including Advanced Threat Analytics.     In a recent blog post, Microsoft states that many of its customers struggle withsecurity-relatedd activities, such as: removing deprecated protocols securing LDAP traffic controlling service accounts enforcing compliant use of Privileged Access Workstations (PAWs) safeguarding privileged accounts understanding authentication patterns Project VAST visualizes big data, like aggregated log sets that contain a lot of useful information but that are difficult to effectively make use of. VAST works be capturing domain controller events and aggregating the results using Azure Log Analytics. A new query language (Kusto Query) is then used to find relevant event data in Azure and transfer the information to Power BI. Once in Power BI, the data is displayed visually to help security administrators make intelligence-driven decisions in near real-time. With the help of Kusto, VAST pinpoints exactly the data which is needed for VAST’s detections and key performance indicators (KPIs). Kusto is borrowed from the Azure AppInsights team and promises to significantly improve Azure Log Analytics, allowing large datasets to be queried faster and making it... --- ### Microsoft's Bringing Azure and Xbox Security to the Edge - Published: 2018-04-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-azure-sphere-intelligent-edge/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure Sphere, Microsoft, News Microsoft has announced a new Azure service targeted at the growing IoT segment that they hope will secure the edge of our computing environments. It was only a couple weeks ago that Satya Nadella stated that Microsoft was shifting priorities towards the intelligent edge and today at the RSA conference, the company is pulling back the covers on Azure Sphere. This new service is designed for creating secure, Internet-connected microcontroller devices. Azure Sphere is broken up into three parts: Sphere OS, Sphere Security Service, and Sphere certified microcontrollers (MCUs). Microsoft made the announcement on their Azure blog which you can read here and a description of each new component is posted below: Azure Sphere certified microcontrollers (MCUs): A new cross-over class of MCUs that combines both real-time and application processors with built-in Microsoft security technology and connectivity. Each chip includes custom silicon security technology from Microsoft, inspired by 15 years of experience and learnings from Xbox, to secure this new class of MCUs and the devices they power. Azure Sphere OS: This OS is purpose-built to offer unequalled security and agility. Unlike the RTOSes common to MCUs today, our defense-in-depth IoT OS offers multiple layers of security. It combines security innovations pioneered in Windows, a security monitor, and a custom Linux kernel to create a highly-secured software environment and a trustworthy platform for new IoT experiences. Azure Sphere Security Service: A turnkey, cloud service that guards every Azure Sphere device; brokering trust for device-to-device and device-to-cloud communication through certificate-based authentication, detecting emerging security threats across the entire Azure Sphere ecosystem through online failure reporting, and renewing security through software updates. It brings... --- ### Microsoft Releases Remote Desktop HTML5 Client Preview - Published: 2018-04-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-preview-of-remote-desktop-web-client/ - Categories: Windows Server - Tags: Citrix, cloud computing, Remote Desktop Services, Windows Server 2016 - Article Type: News At last year's Ignite, Microsoft announced that it was developing an HTML5 web client for Remote Desktop Services. At the end of March, Microsoft made a preview available. At last year's Ignite, Microsoft announced that it was developing an HTML5 web client for Remote Desktop Services. At the end of March, Microsoft made a preview available.     Connecting to Windows Server Remote Desktop (RDP) sessions from a browser is not new. The current implementation, known as Remote Desktop Web Connection, requires Internet Explorer and an ActiveX control. There are a couple of disadvantages to this approach. The first is that ActiveX controls are only compatible with Internet Explorer so that clearly leaves users of non-Microsoft platforms in the cold. ActiveX controls must be installed, so users or IT must perform an extra step before a remote session can be established. Finally, Internet Explorer (IE) is a legacy technology that at some point will be removed from Windows. This means no more ActiveX controls. At last year’s Ignite, Microsoft announced that it was working on a HTML5 client for Remote Desktop Services (RDS) that would allow users to connect to Windows Server remote desktops and apps from any browser without additional software. At the end of March, a preview was made available. The first release of the HTML5 web client can be added to an existing Windows Server 2016 RDS deployment and users can access published apps and desktops. The client can also copy text to and from sessions using the standard Windows keyboard shortcuts, print to a PDF file, and it will be available in 18 languages. Microsoft says that additional functionality will be added... --- ### Paul Thurrott's Short Takes: April 13 - Published: 2018-04-13 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-13/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it's Friday the 13th, this week's edition of Short Takes looks at a quiet Windows 10 delay, the next Xbox console, a new Qualcomm controversy, and much, much more. Because it's Friday the 13th, this week's edition of Short Takes looks at a quiet Windows 10 delay, the next Xbox console, a new Qualcomm controversy, and much, much more. Microsoft quietly delays Windows 10 version 1803 This one doesn't really register all that highly on the drama-o-meter, but I am curious why Microsoft has been so quiet about this release, and its delay. As you may know, Windows 10 is on a biannual release schedule, with new versions---called feature updates for some reason---being finalized in both March and September. The newest of these, codenamed Redstone 4, will iterate Windows 10 to version 1803, and it was supposed to ship this past Tuesday. But didn't. Instead, Microsoft issued a post-RTM cumulative update---which it calls a quality update now for some reason---to this version, which again is not even public, and it addresses some pretty serious security issues. Was that the reason Windows 10 version 1803 was delayed? And when will Microsoft now begin deploying it to customers? Most important, why has Microsoft never revealed this update's real name (which is not the Spring Creators Update), or detailed its feature-set for reviewers and customers? These are the questions that keep me up at night. Well, that and the whole UFO cover-up thing. "Apple, Google, Facebook, Amazon, Microsoft: Which Tech Giant Will Fall First? " Why can't they all fail? Yes, there is a next-generation Xbox While I've openly wondered whether Microsoft would exit the game console business after the Xbox One... --- ### Google Launches Cloud Functions 1.0 for Firebase - Published: 2018-04-13 - Modified: 2024-09-04 - URL: https://petri.com/google-launches-cloud-functions-1-0-firebase/ - Categories: Cloud Computing - Tags: Cloud, Firebase, Functions, Google, News, SDK - Article Type: News Google recently announced version 1.0 of the Firebase Cloud Functions SDK, which includes several improvements over the previous beta version when it comes to implementing, debugging, and managing functions within an application. In a recent post on the Google Firebase blog, Google announced the release of version 1. 0 of the Firebase Cloud Functions SDK, which includes several improvements over the previous beta version when it comes to implementing, debugging, and managing functions within an application.     Cloud Functions are an easy way for developers to write JavaScript or TypeScript functions that are then executed based on events that occur within a Firebase product or via an HTTP request. Some examples of events that could trigger a Firebase Cloud Function include changes to data within a database and user sign-ups, among others. What’s nice about Cloud Functions is that users don’t have to worry about manually scaling their servers to match demand, such as when there is a large influx of traffic, as the Google Cloud Platform takes care of it automatically. This allows for functions to continue to run efficiently, even if they are being triggered by many users or events simultaneously. While Firebase Cloud Functions have been around for a while now, Google recently released the latest version of the Cloud Functions SDK, which includes the following updates: Mobile Client SDKs - Developers can now easily implement functions that are triggered by events within apps on iOS, Android, and web clients. This can be accomplished via a new type of function that manages HTTP requests from the mobile app or web client, which cuts down on the amount of code involved in making such a request. Easier Unit... --- ### What Is Azure SQL Database Managed Instance? > Azure SQL Database Managed Instance (Preview) is a new PaaS solution that offers near 100% compatibility with SQL Server with a private VNet connection. - Published: 2018-04-13 - Modified: 2024-09-04 - URL: https://petri.com/azure-sql-database-managed-instance/ - Categories: Microsoft Azure - Tags: Azure SQL, Azure SQL Database Managed Instance, Database, Managed Instance, migration, SQL Server, Virtual Network, VNET - Article Type: Overview There is a new SQL Server option that recently launched a preview in Azure called SQL Managed Instance, enabling you to run a private, managed version of SQL that is almost 100 percent compatible with on-premises SQL Server. In this post, I will discuss a new SQL Server option that recently launched a preview in Azure called SQL Managed Instance, enabling you to run a private, managed version of SQL that is almost 100 percent compatible with on-premises SQL Server.     PaaS Versus IaaS In a post, I  wrote a few months ago, I compared and contrasted the (then) two options for deploying SQL Server in Azure: IaaS: You install SQL Server in a virtual machine and live with the cost and pain of managing SQL Server, patching it, upgrading it, backing it up, and so on. PaaS: You get an Azure SQL database and use it, letting Microsoft keep the code up to date, secure, fault tolerant, manage your backups, and more. I believe that Azure SQL is a better offering. So why doesn’t everyone use it? As one comment on the post indicated, sometimes we have old code that expects to find the features of SQL Server and it is simply not there. Azure SQL gives you connection string access to SQL databases but it’s not the full-blown lots-of-services SQL Server that you know from the past. Azure SQL is great for new projects but it’s no good for lift-and-shift. It turns out that customers have a lot of lifting-and-shifting that they’d like to do. Those customers have had no choice but to bring SQL Server virtual machines to the cloud, which only extends the old problem. It isn’t exactly the most affordable! ... --- ### Project Honolulu Graduates, Say Hello to Windows Admin Center - Published: 2018-04-12 - Modified: 2024-09-04 - URL: https://petri.com/project-honolulu-graduates-say-hello-windows-admin-center/ - Categories: Windows Server - Tags: News, Windows 10, Windows Admin Center, Windows Server - Article Type: News Microsoft has announced today that the Windows Admin center has reached general availability and that with the release of Server 2019, it's about to become much easier to manager Windows desktop and Server. While Honolulu may have invoked thoughts of warm tropical breezes and fruity drinks on the beach, Microsoft's Project Honolulu has graduated and reached general availability. The remote management experience will now be called Windows Admin Center. This tool was announced last year and will be heavily utilized with the release of Windows Server 2019 later this year. In addition to helping manage Windows Server 2019, the admin center also makes it easier to remotely manage Windows 10 as well. With the hybrid-world of IT continuing to expand, the new Admin Center will simplify the management of both end-user and server installations from a single pane of glass while remote. Here's a high-level view of what this new management center offers today: Simple and modern management experience: Windows Admin Center is a lightweight, browser-based GUI platform and toolset for IT admins to remotely manage Windows Server and Windows 10 machines. Hybrid capabilities: Windows Admin Center can manage Windows Server and Windows 10 instances anywhere including physical systems, virtual machines on any hypervisor, or running in any cloud. Connect to the cloud with optional value-added features like integration with Azure Site Recovery for protecting your virtual machines, and support for Azure Active Directory to control access with multi-factor authentication. Integrated toolset: Rather than switching between several different tools and contexts, with Windows Admin Center you get a holistic overview of your resources and the ability to dig into granular details. In addition to server and client machines, it allows you to manage failover clusters and... --- ### Why the Last Login Date Reported by the Get-MailboxStatistics Cmdlet is so Wrong > The venerable Exchange Get-MailboxStatistics has been around for over ten years, but now it's telling lies about Office 365 users. - Published: 2018-04-12 - Modified: 2024-12-03 - URL: https://petri.com/get-mailboxstatistics-cmdlet-wrong/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange 2007, Exchange Online, Get-MailboxStatistics, LastLogonTime, PowerShell, scripts - Article Type: How To The venerable Exchange Get-MailboxStatistics has been around for over ten years, but now it's telling lies about Office 365 users. Well, just the last login date to their mailbox. The problem is that the world is a very different place to when Microsoft first introduced PowerShell in Exchange 2007. Mailboxes didn't get so many visits from mailbox assistants then... Exchange and PowerShell: Better Together The Exchange developers took a brave decision when choosing to use PowerShell as the basis for the Exchange 2007 administration tools. When that decision happened in 2005, PowerShell was still the “Monad” project, based on the manifesto for next-generation administration published by Jeffrey Snover in August 2002. Exchange 2007 was the first major Microsoft server product to embrace PowerShell, and it set the standard for comprehensive coverage of administrative features still held by Exchange today. The Latest Statistic: Big Funnel Get-MailboxStatistics was one of the earliest cmdlets to appear. Over the last 12 years, the statistics reported by the cmdlet have expanded enormously, the latest being information about “big funnel,” the new method of holding content indexes for Exchange mailboxes inside the mailboxes. The intention is that any search performed against a mailbox gets the latest information because up-to-date content indexes are always available. To see the details about the index held in the mailbox (but not the index itself), use a command like this: Get-MailboxStatistics -id tredmond | Format-List *Funnel* BigFunnelIsEnabled : True BigFunnelUpgradeInProgress : False BigFunnelMaintainRefiners : True BigFunnelFilterTableTotalSize : 864 KB (884,736 bytes) BigFunnelFilterTableAvailableSize : 0 B (0 bytes) BigFunnelPostingListTableTotalSize : 984. 7 MB (1,032,552,448 bytes) BigFunnelPostingListTableAvailableSize : 2. 625 MB (2,752,512 bytes) BigFunnelLargePOITableTotalSize : 4. 719 MB (4,947,968 bytes) BigFunnelLargePOITableAvailableSize : 576 KB (589,824 bytes) BigFunnelTotalPOISize : 478. 7 MB (501,951,588 bytes) BigFunnelMessageCount : 321162 BigFunnelIndexedSize : 6. 065 GB (6,512,255,010 bytes) BigFunnelPartiallyIndexedSize : 130 MB (136,304,982 bytes) BigFunnelNotIndexedSize : 51. 85 KB (53,096 bytes)... --- ### 5 Things to Know About PowerShell Core on Windows > PowerShell MVP offers 5 important things you'll want to know before diving into PowerShell Core on Windows. - Published: 2018-04-12 - Modified: 2024-09-04 - URL: https://petri.com/5-things-to-know-about-powershell-core-on-windows-2/ - Categories: PowerShell - Tags: PowerShell Core - Article Type: Overview Unless you've been stuck in a data center server rack, you've most likely heard about the next version of PowerShell, referred to as PowerShell Core. Unless you've been stuck in a data center server rack, you've most likely heard about the next version of PowerShell, referred to as PowerShell Core. This version will run on Windows, Linu,x and Mac systems. For those of you considering running it on a Windows box, allow me to share 5 things you should know.     Side by Side Perhaps the best feature of PowerShell Core is that you can run it side by side with Windows PowerShell. PowerShell Core is installed in a separate location from Windows PowerShell and even has a different executable: pwsh. exe. PowerShell Core on Windows (Image Credit: Jeff Hicks)   I have not run into any issues running both versions of PowerShell at the same time. Where you potentially might encounter an issue is establishing a traditional remoting connection to a server that might be running both Windows PowerShell and PowerShell Core. The latter has its own PSSession endpoint but connecting to it has proven problematic. Long-term Microsoft intends for us to use SSH anyway (more on that below) and that this may be a moot point. Add Modules Out of the box, PowerShell Core on Windows has a minimal number of available modules. There is a $env:PSModulePath variable but it may not point to all the available modules on your Windows box. For example, I have Hyper-V running but the Get-VM cmdlet isn't recognized in PowerShell Core. The solution is to download and install the WindowsPSModulePath module... --- ### Office 365 Hybrid Cloud Data Protection Considerations - Published: 2018-04-11 - Modified: 2024-09-04 - URL: https://petri.com/office365-hybrid-cloud-data-protection-considerations/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft 365, Microsoft Azure, Office 2016 - Tags: Azure, Backup, Cloud, cloud computing, Office 365 - Article Type: Overview Even though Microsoft has your data, that doesn't mean you are protected from an outage...here's what you need to consider with Office 365 and your data. Office 365 might be the biggest driver for cloud adoption that there has been so far. Since Microsoft introduced Office 365 back in 2011, businesses have adopted it en masse making it the most widely used cloud app – providing essential office apps like Words, Excel and PowerPoint. Microsoft Office 365 requires downloading the suite and agreeing to an annual or monthly subscription -- you can't buy it on a disc. Once downloaded, it does need to connect to the cloud every 31 days or it goes into reduced functionality mode. One big reason for the widespread adoption of Office 365 is the multi-device licensing which allows the use of Office 365 on 5 PCs or Macs, 5 tablets, and 5 phones. Office 365 itself is integrated with OneDrive for cloud document storage but you can also choose to save documents locally. For businesses, the ability to provide cloud-based hosted email is another great reason to choose Office 365 as it can replace the need to run your own email servers and reduce your complexity locally. Data Protection and Office 365 Mailboxes Just because Office 365 is in the cloud that doesn’t mean that your data is automatically protected. It’s still important for you to remain in control of your own data and you need the ability to backup and recover Office 365 data. This is especially true for your email data. Email is the backbone of almost all communication for most businesses. Even though Microsoft hosts the infrastructure, it’s still... --- ### Serial Console Access for Azure Virtual Machines - Published: 2018-04-11 - Modified: 2024-09-04 - URL: https://petri.com/serial-console-access-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, BCDEdit, linux, Serial Access Console, Serial Console, virtual machine, Windows - Article Type: How To Aidan Finn shows you how to access an Azure Windows or Linux virtual machine console using serial access when you can no longer log in using RDP or SSH over the network. This post will show you how to access an Azure Windows or Linux virtual machine console using serial access when you can no longer log in using RDP or SSH over the network.     Troubleshooting Network Connectivity What do you do when you can no longer sign into an Azure virtual machine? Imagine that RDP (Windows) or SSH (Linux) has failed and the repair and redeploy actions from the Azure Portal don’t help. The issue is internal to the virtual machine’s guest OS? Or what if you made the rookie mistake of configuring a static IP address in the guest OS? Before Microsoft added serial console access, the only way to sign into an Azure virtual machine was over the virtual network using SSH or RDP. There was no console access. A feature called Boot Diagnostics gave us a simple screenshot (a low-resolution BMP file in a storage account) of the machine to show us what the console looked like recently. I’ve not had a situation where I’ve needed this console access. I have had some customers who needed access because of issues caused by misbehaving antivirus. And, according to Corey Sanders, Corporate Vice President of Azure: Ever since I started working on the Virtual Machine (VM) platform in Azure, there has been one feature request that I consistently hear customers asking for us to build. Serial Console Access (Preview) Today, we cannot get access to the console of an Azure virtual machine like we can with... --- ### Redstone 4 Brings Better WebM Support in Edge - Published: 2018-04-11 - Modified: 2024-09-04 - URL: https://petri.com/redstone-4-brings-better-webm-support-in-edge/ - Categories: Windows Client OS - Tags: Redstone 4, Windows 10, Windows 10 Spring Creators Update - Article Type: Overview Microsoft adds support for embedded WebM video content in Edge.   One of my bugbears with Microsoft Edge is that it doesn't support playing embedded WebM content. That's a problem, especially for users of Windows 10 S. Redstone 4 now adds full WebM support and Microsoft has released the 'Web Media Extension for Microsoft Edge' to backport full WebM support to older versions of Windows 10.     Microsoft has supported the WebM container format, and the VP9 and Opus video codecs in Edge, since the Windows 10 Anniversary Update. But there was a catch. WebM content could only be displayed using Media Source Extensions (MSEs), an extension to the HTMLMediaElement specification that allows JavaScript to generate media streams for playback. MSEs allow you to watch videos and live streams in your browser without any plugins. It also gives better control over how content is streamed when compared to using a simple tag. Full WebM Support in Windows 10 Redstone 4 (Image Credit: Russell Smith)   MSEs sound great in principle and sites like YouTube make use of them to good effect. However, most sites don’t bother to implement MSEs and instead embed WebM content using simple tags. Because Microsoft Edge only supports WebM through MSEs, it is quite possible that video content won’t play in Edge. Microsoft cited ‘performance’ as the reason for only supporting MSEs. It seemed unlikely that Microsoft would budge from this position but it looks like it has reconsidered due to pressure from customers. If Microsoft wants Windows... --- ### New Teams and Skype for Business Online Admin Center Appears > Office 365 has a new admin center for Teams and Skype for Business Online. It's still early days for the TSBAC, as I like to call it, but you can see - Published: 2018-04-10 - Modified: 2024-09-04 - URL: https://petri.com/new-teams-skype-for-business-online-admin-center/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Admin Center, Office 365, Skype for Business Online, Teams - Article Type: News Office 365 has a new admin center for Teams and Skype for Business Online. It's still early days for the TSBAC, as I like to call it, but you can see where Microsoft is going as it unifies the disparate parts of Teams and Skype for Business Online into one uber-admin center to beat them all. The Joy of Yet Another Office 365 Console On April 4, Microsoft announced that they have begun the roll-out of a new Teams and Skype for Business Admin Center (TSBAC – my term, not Microsoft’s) to Office 365 tenants. The new admin center is not yet listed in the 12 other admin centers accessible from the Office 365 Admin Center, but you can get to it at https://admin. teams. microsoft. com/ (see above). A Work in Progress The TSBAC is a work in progress and lots of the functionality does not yet work, so this is very much a “kick-the-tires and tell us what you think” kind of console. In other words, give it a month or so to before you can expect to use this interface in any serious way. Microsoft needs that time to build out features and transition work from other places in Office 365. But going forward, the direction is clear. Microsoft will combine the features available in the current Skype for Business Online own console (lovingly referred to as the “legacy portal” here), and the settings that control how Teams behave and who has access to the application (now found in the Settings section of the Office 365 Admin Center) to deliver a single place to manage both Teams and Skype for Business Online. This is part of the transition of Teams to take over from Skype for Business Online. The New Way to Manage Teams From a Teams perspective, the big new piece of functionality... --- ### 5 Things to Know About PowerShell Core on Linux > Resident PowerShell expert Jeff Hicks shares his top 5 things Windows pros should know about PowerShell Core on Linux. - Published: 2018-04-10 - Modified: 2024-11-19 - URL: https://petri.com/5-things-to-know-about-powershell-core-on-linux/ - Categories: PowerShell - Tags: PowerShell Core - Article Type: Overview For those of you jumping into PowerShell on Linux, here are 5 things you'll want to keep in mind. For many long time PowerShell users, the introduction of PowerShell to Linux was a welcome addition. Now IT Pros with cross-platform management responsibilities could leverage the same skill set. But PowerShell Core, which is the version available on non-Windows platforms, is not quite the same beast as its Windows PowerShell counterpart. I expect many readers are familiar with the latter. For those of you jumping into PowerShell on Linux, here are 5 things you'll want to keep in mind.     No WMI or CIM First, many Windows PowerShell scripters are used to using commands like Get-WmiObject or Get-CimInstance to retrieve management information. There are also a number of commands that rely on WMI under the hood like Restart-Computer. In the PowerShell Core world on Linux, these commands don't exist. The reason is simple: there is no CIM infrastructure on Linux platforms. This isn't a defect in PowerShell, just a recognition of the platform. In much the same way, there is no Get-Service command on Linux because it doesn't have "services" in the Windows sense. Now, this doesn't mean all hope is lost. There is a long-term solution in play that involves OMI (Open Management Infrastructure). If you do a web search for "linux omi", you'll find a number of results, including references to Microsoft's plans regarding OMI and Linux. Once these bits are in place, the CIM story will change but for now, you'll have to live without it. No Scheduled PowerShell Jobs This one makes sense... --- ### Focus Assist Replaces Quiet Hours in Windows 10 Redstone 4 - Published: 2018-04-09 - Modified: 2024-09-04 - URL: https://petri.com/focus-assist-replaces-quiet-hours-in-redstone-4/ - Categories: Windows Client OS - Tags: Productivity, Windows 10, Windows 10 Spring Creators Update - Article Type: Overview In Redstone 4, Quiet Hours has been renamed to Focus Assist and brings several improvements. In Redstone 4, Quiet Hours has been renamed to Focus Assist and brings several improvements.     Notifications are more of a plague of modern computing than a productivity aid. If it wasn’t already enough that most of us are drowning in a sea of email and other communications, the Windows 10 Action Center helps applications and the OS nag us about every conceivable event. And that’s only set to get worse if Progressive Web Apps (PWAs) take off post-Redstone 4. Quiet Hours was introduced in Windows 8 to silence notifications in Windows at specific times or if you manually enable it. But in Windows 10, while Quiet Hours still exists, the ability to configure it was removed from the Settings app. It is automatically enabled between midnight and 6am. If you want to change when it is turned on, you must use Group Policy. Quiet Hours can still be enabled manually in Windows 10 in the Action Center. Windows Phone and Windows 10 Mobile both had more configurable Quiet Hours, allowing calls from specific people to ‘break through’. Focus Assist in Windows 10 Spring Creators Update (Image Credit: Russell Smith) Focus Assist Quiet Hours has been renamed in Windows 10 Redstone 4 to Focus Assist. The concept remains the same but the feature has been improved by making it much more configurable. First off, the ability to configure when Focus Assist is automatically enabled is now back in the GUI. Focus Assist has... --- ### Modern SharePoint Web Parts — Yammer Web Part - Published: 2018-04-09 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-yammer-web-part/ - Categories: SharePoint Online, Yammer - Tags: Modern Team Site, Modern Web Parts, Yammer - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates!     Let’s continue with the new Yammer Web Part. (more... ) --- ### Paul Thurrott's Short Takes: April 6 - Published: 2018-04-06 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-april-6/ - Categories: Cloud Computing, Hardware, Mobile, Windows Client OS - Tags: News - Article Type: Overview Because I heard you missed me, I'm back, this week's edition of Short Takes examines Microsoft's massive reorg and my seven stages of grief, US v. Microsoft ends in a whimper, Microsoft helps consumers with ransomware, and so much more. How Paul dealt with this week's Windows news. Photo credit: Flickr Because I heard you missed me, I'm back, this week's edition of Short Takes examines Microsoft's massive reorg and my seven stages of grief, US v. Microsoft ends in a whimper, Microsoft helps consumers with ransomware, and so much more. Microsoft reorg, a week later Last week, Microsoft announced a blockbuster corporate reorganization that was ostensibly about focusing on the cloud and AI. But it was really about something else: Demoting Windows in shocking, unexpected ways. First, Terry Myerson, who has led the development of Windows 10 since its inception, has been booted unceremoniously out of the company (or soon will be), and the product, for the first time in decades, is no longer represented by a direct report to the CEO. Second, Windows itself has been torn asunder, with core OS development jammed in under Azure and "experiences" (read: mostly nonsense) scattered to several other parts of the company. A week later, I'm still struggling to understand why such drastic steps were required. I mean, we know that Windows is the past and that the cloud is the future. But we don't get from here to there that quickly, and Windows will never truly disappear. Well, unless you shoot it in the head, I guess. Which Microsoft just did. "Microsoft has now rebuilt the company around the cloud instead of Windows, and employees approve" "Employees"? The employees I speak to are freaking out... . --- ### Foundation of Many Microsoft Cloud Services Is Now Open Source > Microsoft has made Service Fabric, the foundation of many of their cloud services, available under MIT open source licensing. - Published: 2018-04-06 - Modified: 2024-09-04 - URL: https://petri.com/foundation-many-microsoft-cloud-services-now-open-source/ - Categories: Cloud Computing - Tags: Azure, Azure Service Fabric, linux, open-source, Service Fabric, Windows Server - Article Type: Overview Microsoft recently stunned a lot of people by announcing that Service Fabric, the platform upon which many of Microsoft’s cloud services are built, was being released under MIT open-source licensing. Microsoft recently stunned a lot of people by announcing that Service Fabric, the platform upon which many of Microsoft’s cloud services are built, was being released under MIT open-source licensing.     Service Fabric I started to learn about Service Fabric last year. I had heard the term and thought I knew what it was. It wasn't until I attended an architect boot camp for Microsoft staff and partners, that I realized I didn't have a clue of what the platform was or how important it was. Service Fabric is a system that allows you to deploy applications as easy-to-update (and rollback) microservices or containers. These services can be load-balanced and/or replicated across a cluster of machines (as many as 1000 in Azure) offering fault tolerance at the machine and microservice levels with huge levels of scalability. Clever things can be done with storage, enabling microservices to use local fast storage or to use external capacity (shared cluster storage or database services). A Conceptual View of Applications Deployed as Microservices on Service Fabric   Service Fabric has existed for a long time and it has played a huge role in Microsoft’s cloud services. Azure SQL is built on Service Fabric, as are bits of Skype for Business, Cortana, Azure Cosmos DB, and CRM 365. Microsoft has proven this technology and then released it to us. Service Fabric is available in Azure, where it uses a cluster of virtual machines in a... --- ### Restore Azure Virtual Machine From a Backup Snapshot > In this post, I will show you how you can quickly restore an Azure virtual machine from a snapshot-based backup. - Published: 2018-04-05 - Modified: 2024-09-04 - URL: https://petri.com/restore-azure-virtual-machine-backup-snapshot/ - Categories: Microsoft Azure - Tags: Azure Backup, Azure Virtual Machines, Backup, Restore, Snapshot, virtual machines - Article Type: How To Aidan Finn shows you how you can restore an Azure virtual machine from a snapshot, using the recent update that was rolled out to Azure Backup. In this post, I will show you how you can restore an Azure virtual machine from a snapshot, using the recent update that was rolled out to Azure Backup.     Note that you must have upgraded your subscription to use the new snapshot features of Azure Backup. Background If you have upgraded your Azure subscription, Azure Backup will change how backups are completed. Step 1 will create a snapshot. Step 2 will transmit the differences from the last backup to the recovery services vault. What does change is: The snapshots are retained for up to 7 days. You can restore virtual machines from the snapshots before the backup data is sent to the recovery services vault. If you want to restore a virtual machine from a backup from the last 7 days, it is quicker to restore it from the snapshot instead of from the recovery services vault. Restoring a Virtual Machine In my example, I have started a virtual machine backup. After a few minutes, the status showed that the snapshot was completed: A Backup Where the Snapshot Has Completed   At this time, I can browse to the virtual machine, click Backup > Restore VM, and then select a restore point. The just-completed snapshot will be listed as an option along with the traditional vault backups. Any scheduled snapshots from the last 7 days will also be listed. Selecting a Snapshot as a Restore... --- ### Microsoft Extends Advanced Protection Capabilities to Office 365 Home and Personal - Published: 2018-04-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-extends-advanced-protection-capabilities-office-365-home-personal/ - Categories: Microsoft 365, Office - Tags: Microsoft, News, Office 365 - Article Type: News Microsoft is bringing many of its corporate data protection services to Office 365 Home and Personal. Microsoft's Office 365 platform is a guiding light for the company when it comes to showing how to turn traditional software into a service. The suite of productivity applications has become popular in the corporate space and has strong traction with consumers as well. Announced today, Microsoft is expanding the advanced protection capabilities of Office 365 previously available to corporate users, to consumers. This includes features like file restore, passwords protected sharing links, email encryption and a lot more. Microsoft is bringing Files Restore that was previously only available for OneDrive for Business to all OneDrive users which will help you recover from a ransomware attack. This feature lets you restore a file to a previous point in time during the last 30 days - this can help with accidental mass delete, file corruption, ransomware, or another catastrophic event. In addition to being able to restore files, Office 365 can also detect ransomware attacks and help prevent the spread of the infection. With this feature, you will be alerted if an attack is detected on your data and using Files Restore, recovering a large batch of files will make recovery a lot easier for the user. One of the big feature requests for sharing content is finally coming to all users as well, the ability to share password-protected links. On the email side, Microsoft is bringing email encryption to Outlook. com which may sound trivial, but with a wide variety of email platforms and vendors, it can be complex... . --- ### Hiding Office 365 Groups Created by Teams from Exchange Clients > Teams now hides the Office 365 Groups that it creates from Exchange clients (Outlook, OWA, and the mobile apps). You can run the Set-UnifiedGroup cmdlet - Published: 2018-04-05 - Modified: 2024-09-04 - URL: https://petri.com/hiding-office-365-groups-exchange-clients/ - Categories: Microsoft 365, Microsoft Teams, Office, Outlook - Tags: HiddenFromExchangeClients, Office 365 Groups, Outlook, owa, PowerShell, Set-UnifiedGroup, Teams - Article Type: How To Teams now hides the Office 365 Groups that it creates from Exchange clients (Outlook, OWA, and the mobile apps). That's as it should be for groups created for new teams. If you want to hide groups created for older teams, you can run the Set-UnifiedGroup cmdlet, but that soon becomes boring when you might have hundreds of groups to process. PowerShell to the rescue once again. Microsoft issued Office 365 Message Center update MC133135 on March 30 to inform tenants that Office 365 will hide groups created by Teams from Outlook by default. This is to end the potential confusion that can occur when a group used by Teams also appears in Outlook and OWA. Users then have the choice of collaborating through Outlook-based conversations or Teams. It’s possible that a team member might then make a mistake and post important information in the wrong place. Hiding the Office 365 Groups used by Teams to manage membership and for access to resources like the group calendar and SharePoint team site cleans up the situation and focuses collaboration on Teams, which is what you’d expect when Teams creates a new group. Two Important Flags This change is only rolling out now and needs updates in both the back-end and clients. After it is effective in a tenant, when Teams creates a new group, Office 365 sets the HiddenFromExchangeClients property for the group to $True, meaning that Outlook clients ignore the existence of these groups. In addition, Office 365 sets the HiddenFromAddressListsEnabled property to $True so that the groups do not show up in Exchange’s Global Address List or Offline Address Book (OAB). Some Clean-Up Required All of this is goodness and it will lead to a cleaner situation in the future. However, some clean-up is necessary because many Office 365 Groups have been created by Teams since its preview started in November 2016. Office 365... --- ### Stop Taking Advice From "A Person Connected To Microsoft" > In this opinion post, I explain why those working in IT need to start taking technical education seriously and using reliable sources of news & information. - Published: 2018-04-04 - Modified: 2024-09-04 - URL: https://petri.com/stop-taking-advice-person-connected-microsoft/ - Categories: Career Skills - Tags: Azure, Windows 10, Windows Server 2016, Windows Server 2019 - Article Type: Opinion One of the things that annoys me in our industry is how supposedly educated people take advice and guidance on IT from no-nothings, the barfly, or the town idiot. One of the things that annoys me in our industry is how supposedly educated people take advice and guidance on IT from no-nothings, the barfly, or the town idiot.   Continuous Learning and Intelligence I’m going to say something here that some will find controversial. I believe, that if you work in IT and you want to be good at IT, you need to learn more, more often, than any doctor or medical consultant, for the entire length of your career. In this job, it is impossible to sit through some classes until you’re 22 and then move out into the workforce never learning again. I’d say that I learn more in a week, at the age of forty-something, than I ever did in school. Why is this? I want to stay on top of my job. I want to be good at my job. I made a conscious decision back in 2001 that sitting back and letting things come to me had not worked. There was just too much to know. Expecting that someone else would feed me the information when I needed it, wasn’t going to work. A simple thing like explaining why a person couldn’t log onto their PC (my favorite question that I was asked in an interview) or why a mapped drive doesn’t map after a reboot (classic Windows XP scenario) requires an admin to understand a lot of parts with deep interconnections in the network. And that crazy thing was that the... --- ### Managing Windows Server with Puppet Part 6: Installing, Updating, and Removing Software - Published: 2018-04-04 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-server-with-puppet-part-6-installing-updating-and-removing-software/ - Categories: Windows Server - Tags: Compliance, Configuration Management, DevOps, Puppet, Software - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to manage Puppet, Windows Installer, and Chocolatey. In today's Ask the Admin, I'll show you how to manage Puppet, Windows Installer, and Chocolatey.     So far in this series, I’ve looked at installing Puppet Master Enterprise in Azure and automatically bootstrapping the Puppet agent in a Windows Server VM. In parts four and five I showed you how to manage files and permissions and manage local users and groups. If you missed any of the previous articles, here’s a complete list of them so far: Managing Windows Server with Puppet Part 1: Configure Puppet Master and Bootstrap the Puppet Agent in Windows Server Managing Windows Server with Puppet Part 2: Log Into Puppet Master, Accept Node Certificate, and Test Connectivity Managing Windows Server with Puppet Part 3: Install the Modules and Edit the Site Manifest Managing Windows Server with Puppet Part 4: Working with Files and ACLs Managing Windows Server with Puppet Part 5: Managing Local Users and Groups Puppet Package Providers There are two ways you can manage software using Puppet. The built-in package provider allows you to install software using executables (. exe files) and Windows Installer (. msi) packages. It’s possible to change the default provider and use Chocolatey, which is an open source package manager for Windows. The open source version of Chocolatey is free. Chocolatey for Business (C4B) must be licensed and it adds features for organizations that want a centralized software management solution, such as Package Builder. For more information on Chocolatey, see Package Management in Windows Using Chocolatey and... --- ### Managing Windows Server with Puppet Part 5: Managing Local Users and Groups - Published: 2018-04-03 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-server-with-puppet-part-5-managing-local-users-and-groups/ - Categories: Windows Server - Tags: Configuration Management, DevOps, Puppet, Security, Windows Server - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to manage local users and groups using Puppet. In today's Ask the Admin, I'll show you how to manage local users and groups using Puppet.     Just because you can do something, doesn’t mean that you should. And while Puppet can create local user accounts in Windows, you should always try and use Active Directory for user management and authentication. There might be some situations where you want to use Puppet to manage local users and groups. For example, where a server is not a member of an Active Directory domain. Or you might want to add Active Directory users or groups to a member server using Puppet instead of Group Policy. Create a Local User Account Let’s start by looking at how to create a new local user. The built-in Puppet user and group resources know how to manage Windows local users and groups. The resource below creates a new local user, petriuser1 and sets the password for the account. Make sure you create a password that meets the complexity requirements set in policy on the Windows device. user { 'petriuser1': ensure => present, password => 'Petri! Kn0Wledge' } When you are creating a new user, you can also add it to a group straight away: user { 'petriuser1': ensure => present, password => 'Petri! Kn0Wledge', groups => 'Administrators' } Creating a New Local User in Puppet (Image Credit: Russell Smith) Managing Group Membership Using the group resource, you can either add or remove users from an existing group or create a new... --- ### The Path Ahead for Microsoft's Windows - Published: 2018-04-03 - Modified: 2024-09-04 - URL: https://petri.com/path-ahead-microsofts-windows/ - Categories: Windows Client OS - Tags: Windows - Article Type: Opinion Microsoft has made some major changes to how Windows is organized that will have a profound impact on its future. When Microsoft announced the major reorganization of Windows late last week, the impact it will have is profound and is raising a lot of questions about the future of the platform. In an effort to help better understand what is happening, I poked around a bit and talked to everyone from IT pros around the globe to people who directly work on Windows to shine a bit of light on the subject as we wait for the dust to settle. And it may not take too long for this dust to settle. To recap what Microsoft has done, they took the Windows and Devices Group and split it into two groups; the eye candy and experience side of Windows is now run by Rajesh Jha but the core of Windows development is now lead by Jason Zander (all flavors, desktop, server, etc) but he reports to Scott Guthrie which means he truly has the final say on this portion of Windows. So yes, this could get a bit messy with all of Windows decisions bouncing around several people instead of one (Terry Myerson) but this is the new future of the platform. What's interesting to look at now is what got us to this point. Microsoft went down a massive process called 'OneCore' where the company tried to have one base for Windows and then add layers on-top for different scenarios like IoT, Desktop, Mobile, Xbox, etc. But, seeing how the reality of this played out, it appears... --- ### Why the Office 365 Group Expiration Policy Needs Help > It is nice to have an Azure Active Directory Expiration Policy for Office 365 Groups, but it's not so good that the policy functions based on age. - Published: 2018-04-03 - Modified: 2024-09-04 - URL: https://petri.com/better-office-365-group-expiration/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, expiration policy, Groups, Office 365, PowerShell, Teams - Article Type: How To It is nice to have an Azure Active Directory Expiration Policy for Office 365 Groups, but it's not so good that the policy functions exclusively based on age. Another problem is that administrators have no way of knowing when groups will expire. So we take out PowerShell, write a script, and hey presto, we have a report. We still need to solve the problem of creating a policy that functions based on activity rather than age, but that's another day's work. Blessed Relief at Office 365 Groups Expire On March 14, Microsoft said that the Azure Active Directory expiration policy for Office 365 Groups was now generally available. The world sighed with relief, and then we all remembered that the expiration policy is a premium feature. In other words, you need an Azure AD Premium P1 license “for every user who is a member of an Office 365 group configured for expiration. ” Why Expiration is a Necessary Evil In this case, I don’t mind Microsoft charging extra for a feature that can help bring order to unruly groups. Some tenants now have several thousand groups created for Outlook Groups, Teams, Yammer, and so on. I am sure that solid justification exists for each one of the groups through some urgent need for people to collaborate, but the cynical (or experienced) side of me says that many of these groups will be short lived. People think they need a group or team and spin it up or convince an administrator to create one for them, and promptly cease using the new collaboration space soon thereafter. This happened with public folders, shared mailboxes, site mailboxes, Yammer groups, team sites, and pretty well any other attempt by Microsoft to conquer collaboration. The Problem with the Expiration Policy The expiration policy works, and it does a good job of expiring groups after they reach a certain age. The only problem is that age is the only criterion considered by the policy. In the... --- ### A Checklist for Pricing Azure Virtual Machines > This post contains a checklist of things to price when estimating how much a virtual machine solution in Azure will cost. - Published: 2018-04-02 - Modified: 2025-01-29 - URL: https://petri.com/checklist-pricing-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure, Pricing, virtual machines - Article Type: How To Check out this set of things to consider when pricing a virtual machine solution that will eventually run in Microsoft Azure. This post contains a set of things to consider when pricing a virtual machine solution that will eventually run in Microsoft Azure. Most people struggle to price up solutions when they start working with a utility-based-billing system such as Azure or AWS. The price of a virtual machine isn’t just the price of the virtual machine; things such as storage for the disks, backup, disaster recovery replication, and IP addresses are additional costs. All of this isn’t necessarily that obvious until you have used Azure and then analyzed the billing report afterward. This post will show you what to consider when pricing up a virtual machine architecture in Azure, whether you are using Microsoft Excel or the Azure Pricing Calculator. Hours-Per-Month In Azure, there are 730 hours-per-month. This math is based on multiplying 24 hours by 365 days (8,760) and dividing 8,760 hours- per-year by 12 months (730). Many charges that Microsoft publishes are listed on a per-hour basis, with the per-month charge being estimated, designated by the tilde (~) symbol, based on an average month of 730 hours. Virtual Machine The pricing of the virtual machine is a per-minute charge, which is listed as an hourly charge. Start by sizing the machine: Series Size (processor, RAM, disk speed, data disk numbers, NICs and NIC speed) Then you will determine how many hours/minutes per-month that the machine will be running. The next step is to determine the operating system image (Windows, Ubuntu, RedHat, etc) that the machine will... --- ### Enable Unauthenticated Access to a Windows File Share - Published: 2018-03-30 - Modified: 2024-09-04 - URL: https://petri.com/enable-anonymous-access-to-a-windows-server-file-share/ - Categories: Windows Server - Tags: File Sharing, Security, Windows, Windows 10, Windows Server - Article Type: How To In today's Ask the Admin, Russell Smith explains how unauthenticated access to Windows file shares works. In today's Ask the Admin, I'll explain how unauthenticated access to Windows file shares works.   If you’ve ever tried to configure file share access from one Windows device to another in a workgroup, you’ll know that it can be a bit of a pain. One of the primary advantages of setting up an Active Directory (AD) domain is that configuring access to network resources becomes much easier. Not everybody wants or needs Active Directory. If you don’t have AD, there are a couple of ways to set up access to file shares. Windows HomeGroup HomeGroup was first introduced in Windows 7 and makes it easier for users to share file shares and printers on the local area network using a simple wizard-driven process. Microsoft recently announced that it is removing HomeGroup from Windows 10 version 1803, which is due to be released in April. I don’t recommend using HomeGroup because it won’t be supported going forward. Nevertheless, if you do want to use HomeGroup, you can find more information on how to set it up here on Petri: Share Network Resources Using Windows 7 HomeGroup. The other way to share folders doesn’t differ much from how you might share a folder on a server or device joined to an AD domain. The key difference is how users authenticate to the device hosting the file share. In a workgroup, users must have an account on each device they need to access. For example, if you configure a file... --- ### Microsoft Overhauls Windows Org, Names New Leader Along with Other Changes - Published: 2018-03-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-overhauls-windows-org-names-new-leader-along-changes/ - Categories: Windows Client OS - Article Type: News Microsoft is making big changes to its Windows org by changing up the leadership and also changing the internal priorities as well. For the past few weeks, I have been hearing that Microsoft was looking to re-org its Windows division and today, the company is making these changes public. While the most significant change comes in the form of new leadership, insiders are saying this will be significant changes from a priority and objective perspective too. Microsoft is replacing Terry Myerson who was the Executive Vice President of the Windows and Devices Group with several executives, Terry will remain on-staff for several months to help with the transition. Rajesh Jha will lead a new team focused on Experiences & Devices Scott Guthrie will lead a new team focused on Cloud + AI Platform. Jason Zander is being promoted to EVP and will lead Azure and Windows of all flavors. Harry Shum will continue to lead AI + Research. Joe Belfiore will continue leading Windows experience Panos Panay is the new Chief Product Officer As for why Microsoft is making this change, I have been hunting this down for a couple of weeks and here is what I have heard from several people inside the company. For starters, the Windows Org is apparently over budget and that it needs to reduce head-count by June 30th (fiscal year-end for Microsoft). Obviously, cutting only Terry is not going to solve this issue but it's likely part of a broader range of changes that are inbound for the organization. Although Microsoft says as part of this re-org, layoffs are not going to happen but... --- ### Everything You Need to Know About Office 365 -- March 2018 > Get all of the news and notes you need for Office 365 from March 2018. Topics include Teams, Dynamics, SharePoint Hub sites, and employee engagement. - Published: 2018-03-29 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-office-365-march-2018/ - Categories: Microsoft 365, Microsoft Teams, PowerBI, SharePoint Online - Tags: Azure Active Directory, Dynamics, Microsoft Teams, Power BI, Powerapps - Article Type: News Tons of Spring Updates in the Office 365 space to cover this month. As always, it will be the news you need with the two cents you don’t. Spring has sprung... I hope. I live in the Midwest, so you never know for sure.  Either way, lots of Spring Updates in the Office 365 space to cover this month. As always, it will be the news you need with the two cents you don’t. For this month’s theme, I defend why every article made it into this month’s roll-up. Let’s jump in. Shane PS – Do you like that I have a theme every month? Leave a comment and tell me yes. If not, leave a comment and make fun of me. I can take it.     Teams Keeps Adding Features –- Anyone Can Be a Guest Technically, this is from February 28th news but it still makes the cut. Microsoft Teams added the functionality to allow you to add anyone with an email address as a guest. This is a big change. Forever you have been able to add anyone with a Microsoft Account but this now lets the rest of the internet in. Yay! This gets us one step closer to getting rid of Slack, my nemeses, from our daily lives. SharePoint Hub Sites Are Rolling Out Online First announced at Ignite 2017, Hub Sites are starting to roll out to Targeted Release customers. These beauties allow for building that central portal you always wanted. (Though writing that is making me have some flashbacks to SharePoint 2003 and bucket webs. ) They include features like cross-site navigation (how long have we wanted that? ), more content... --- ### Everything You Need to Know About SharePoint -- March 2018 > The SharePoint news roundup for March 2018. Read about Hub Sites, SharePoint using Azure AD, support ending, and how to get into the TAP. - Published: 2018-03-29 - Modified: 2024-11-19 - URL: https://petri.com/everything-need-know-sharepoint-march-2018/ - Categories: SharePoint - Article Type: News, Opinion Check out this quick rundown of all of the news and notes you may have missed for SharePoint, along with a little Shane Young opinion. Another month has come to a close and that means it is time for me to give you a quick rundown of all of the news and notes you may have missed for SharePoint, along with a little Shane opinion. This month the opinion comes with bonus excitement because I like to have a theme, other than just SharePoint each month.     SharePoint 2013 (Pre-April 2017 Patch) Mainstream Support Ends April 10, 2018 Yikes! I know a great many people still doing on-premises SharePoint that are still on 2013. If that is you, then you need to make sure you are on a supported patch level. You need to be at 15. 0. 4919. 1003 or higher to be eligible for mainstream support going forward. For more details on SharePoint 2013 patch levels support lifecycle, check out this post from Stefan Gossner. And if you are confused on what build you are on and what are all of those version numbers, the cheat sheet I use is here. Don’t tell Todd. Do You Want to Help Steer the Future of SharePoint Documentation? Of course, you do. The TechNet doc team is currently gathering feedback as they try to figure out how to evolve the documentation. So go put in your two cents worth. Me? I voted for video because that is where my heart is these days. Here is the survey. And kudos to Microsoft. They are embracing that the user demand is changing. SharePoint -- Who Is in and... --- ### Everything You Need to Know About Azure Infrastructure -- March 2018 Edition > March of 2018 brought lots of news on Azure infrastructure services, including plenty of evidence of the new & open Microsoft. - Published: 2018-03-29 - Modified: 2024-11-19 - URL: https://petri.com/everything-need-know-azure-infrastructure-march-2018-edition/ - Categories: Microsoft Azure - Tags: alerts, App Services, Azure, Azure Backup, Azure Files, Azure Migrate, Azure Monitor, Azure Security Center, Azure SQL, Azure Virtual Machines, Database, DNS, linux, Load Balancer, networking, Portal, S2D, storage, Storage Spaces Direct, StorSimple, virtual machines, vmware, vSphere, Windows Server 2016, Windows Server 2019 - Article Type: Overview Month 3 of 2018 brought us some interesting news in Azure IaaS. Some things that have been in the oven for a while are starting to rise and there’s lots more evidence of the new and open Microsoft. Month 3 of 2018 brought us some interesting news in Azure IaaS. Some things that have been in the oven for a while are starting to rise and there’s lots more evidence of the new and open Microsoft.   Microsoft Doesn’t Want Access To Your Data In a time when the future of American-owned clouds has been put in doubt, Microsoft is trying its hardest to make it impossible to access your data. The latest of these ventures is self-service storage encryption. With this feature, you can supply your own encryption keys to secure data and secure those keys in Key Vault, a FIPS 140-2 Level 2 validated Hardware Security Module (HSM) service in Azure. Encrypting Azure Storage with Customer-Managed Keys The US Versus Microsoft And why does Microsoft want no access to your data? It’s because if Microsoft has no access to your data, then it cannot respond to warrants from the US government that should have been issued to you in the first place. A long-running case of the US government versus Microsoft, where the FBI is trying to force Microsoft to hand over a mailbox from Dublin, Ireland recently hit the US Supreme Court. The FBI could have gotten the mailbox contents years ago via the MLAT Treaty but instead is attempting to force Microsoft to break Irish and European Union law. Interestingly, a future breach of Irish law could cost Microsoft up to €20,000,000 under the EU... --- ### Everything You Need to Know About Windows -- March 2018 - Published: 2018-03-29 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-march-2018/ - Categories: Windows Client OS - Tags: HoloLens, Progressive Web Apps, Redstone 4, Windows 10, Windows Server 2019 - Article Type: Overview Windows 10 Redstone 4 reaches RTM and Microsoft announces the availability of a preview version of Windows Server 2019. Windows 10 Redstone 4 reaches RTM and Microsoft announces the availability of a preview version of Windows Server 2019.     Windows 10 Redstone 4 Reaches RTM Windows 10 Redstone 4 build 17133 was released March 27th and this is the version Microsoft watchers believe will be the RTM build. Microsoft also released ISO files for build 17115 to Windows Insiders on the fast ring. April’s Patch Tuesday should see build 17133, or what will be known as the Spring Creators Update, rolled out to Windows 10 users on modern hardware. Although, by that time, there will likely already be one or more cumulative updates to fix any last-minute issues. As with the last feature update for Windows 10, the rest of us will receive the new update as part of a phased rollout. Windows Server 2019 Preview Released Windows Server is updated at the same cadence as Windows 10. But if you are on the Long-Term Servicing Channel (LTSC), the next version of Windows Server for you will be released in the second half of this year. There have been several iterations of Windows Server 2016 on the Semi-Annual Channel since it was first released, the last of which (Windows Server version 1709) was released in September last year alongside the Windows 10 Fall Creators Update. Windows Server 2019 will roll up all the changes in the semi-annual versions of Windows released since Windows Server 2016, bringing cloud and on-premises closer together with new hybrid scenarios. It... --- ### Why PowerShell is a Core Skill for Office 365 Administrators > PowerShell is a critical skill for Office 365 tenant administrators. A knowledge of PowerShell allows you to fix things that Microsoft leaves undone. Teams - Published: 2018-03-29 - Modified: 2024-09-04 - URL: https://petri.com/powershell-important-office365-admins/ - Categories: Career Skills, Microsoft 365, Microsoft Teams, Office - Tags: Exchange Online, Office 365, PowerShell, SharePoint Online, Teams - Article Type: Opinion PowerShell is a critical skill for Office 365 tenant administrators. A knowledge of PowerShell allows you to fix things that Microsoft leaves undone in apps like Exchange Online, SharePoint Online, and Teams. Sure, black holes exist for PowerShell (like Planner) and it is slow to process thousands of objects, but there's nothing like a little script for getting things done. Office 365 Pros Know PowerShell Because I come from the Exchange side of the Office 365 house, PowerShell is a natural tool for me to turn to whenever I need to do something with Office 365 that Microsoft hasn’t included in the admin tools. The PowerShell coverage for Exchange is deep and extensive, even in the cloud. By comparison, PowerShell is not well covered in other Office 365 applications. Skype for Business Online has some administration functions while SharePoint Online offers mediocre support. Planner has no support, and the first version of the Teams PowerShell module could be so much better. Given the spotty coverage in other parts of the service, I guess it should come as no surprise that Office 365 administrators who do not have a background in Exchange might consider PowerShell to be an odd but sometimes useful command-line interface. But that’s not the case. Simply put, PowerShell is a core skill for Office 365 administrators. PowerShell Quirks It’s true that PowerShell has its quirks. Like any scripting language, PowerShell syntax can be baffling and obscure, so using an IDE is the best approach for someone starting out. Writing raw PowerShell in the console is for masochists. PowerShell has significant scalability limitations too, especially inside Office 365 where throttling controls clamp down on anyone who tries to consume resources with abandon. PowerShell will not process tens of thousands of objects rapidly, but that’s not its purpose. If you think you need to process large numbers... --- ### Azure Backup Instant VM Recovery and Large Disks > Azure Backup has just rolled out new functionality to make virtual machine backup & restore jobs faster & more efficient, and to support >1 TB disks. - Published: 2018-03-29 - Modified: 2024-09-04 - URL: https://petri.com/azure-backup-instant-vm-recovery-large-disks/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure Virtual Machines, Backup, Restore, Snapshots, virtual machines - Article Type: Overview Aidan Finn discusses recent improvements that were announced for Azure Backup, making backups more efficient, large VM restores faster, and enabling support for virtual hard disks that are larger than 1TiB (1024GB). This post will discuss some recent improvements that were announced for Azure Backup, making backups more efficient, large VM restores faster, and enabling support for virtual hard disks that are larger than 1TiB (1024GB).   Large Virtual Machine Challenges One of the nice things about the cloud is cloud-scale. We can build more and bigger. Rcently, we’ve been going through a transition phase in Azure, especially with Azure virtual machine storage. A virtual hard disk was limited to 1TiB (the computer alternative to TB, which was hijacked by marketing people and rounded down to 1000GB). Today, we can deploy (in preview) 4TiB disks for Azure virtual machines, which means we can deploy some very big machines. And that causes a problem. The process of backup is a file copy, typically over a network, to another, lower cost, storage system. If virtual machines become bigger, then the process of backup takes longer (annoying, but not too bad. Restores take longer too (pretty troubling). More importantly, until recently, Azure Backup did not have the ability to protect virtual machines with disks that were larger than 1 TiB. Larger Than 1TiB Disks Azure Backup has rolled out support for virtual machines with large hard disks, larger than 1TiB. This means that you can deploy machines with huge amounts of storage and protected by using the backup. Faster Backup A virtual machine backup has two phases: A snapshot of the virtual machine’s disks is created. The snapshot is copied across the... --- ### Yes, You Can Use Your On-Premises Data with Office 365 > Do you have data both on-prem and in Office 365? Would you like to use that data together for true hybrid? Read about the on-premises data gateway. - Published: 2018-03-28 - Modified: 2024-09-04 - URL: https://petri.com/yes-can-use-premises-data-office-365/ - Categories: Hybrid Cloud, Microsoft 365, PowerBI, SharePoint - Article Type: How To Yes, You Can Use Your On-Premises Data with Office 365. Say what? What!     For a lot of people, hybrid just means Active Directory and works in both the cloud and on-premises. Then all of the other IT functionality is purely online or purely on-premises. Exchange is hosted in O365. They have SharePoint in both but neither talks to each other. There are a whole host of other solutions and calling them hybrid can be a stretch. I think of it more like, they have two data centers that just happen to have the same username and password. Well, it doesn’t have to be that way. One of the smartest pieces of technology Microsoft has created in years flies under the radar but it can get you out of this "here or there" mentality. The software is called the On-Premises Data Gateway. The On-Premises Data Gateway The Data Gateway (that is what we are going to call it to get down on wordiness) allows you to connect to your on-premises data to several tools in the Microsoft Cloud. PowerApps, Power BI, Microsoft Flow, Azure Logic Apps, Azure Analysis services, and probably a few others all natively support the Data Gateway. This allows you to truly bridge the gap and build hybrid environments. It is also the answer to how do you deal with the fact that amazing tools like... --- ### Office Customization Tool for Click-To-Run - Published: 2018-03-28 - Modified: 2024-09-04 - URL: https://petri.com/office-customization-tool-click-run/ - Categories: Microsoft 365, Office - Tags: Office 365 - Article Type: How To The Office Customization Tool for Click-To-Run is a web-based Tool created by Microsoft to simplify the generation of configuration files required to centrally deploy custom Office installations in any kind of organization. The tool, currently in preview, is very simple to use and it allows us to create such configuration files in minutes. Microsoft has recently released a new tool aimed to simplify the configuration files required to make a custom deployment of Office in an organization. The tool, called Office Customization Tool for Click-To-Run, is currently in preview and provided as a cloud service available here.     Getting Started with the Office Customization Tool for Click-To-Run The fiirst thing you should do is just access the tool available here. On the tool home page, just click in the “Next” link, so you can start working with the tool: Figure 1 -- Office Customization Tool for Click-To-Run As you can see in Figure 2, the tool provides a productive user experience to customize your Office installation providing the following initial settings: Office version to install: 32bits vs. 64bits. Software to be installed that it’s grouped in the following categories: Office Suite, Visio, and Project. Depending on the software selected, you will be able to select what Office applications you want to install on your user’s PCs. For instance, if you select Office 365 ProPlus, you can select which applications you want to install and simply unselect the ones you want to exclude. Figure 2 -- Software and Language Settings in the Office Customization Tool for Click-To-Run In my case, I have selected Office 365 ProPlus as software to be installed and I have decided to exclude from the installation the following applications: OneDrive (Groove) Publisher Access As you can also see in Figure 2, all the configurations done are reflected in... --- ### Choosing the Best Mobile Office 365 Email Client > Companies that move to Office 365 have to decide what mobile email client to use. A native client that uses EAS or Outlook? - Published: 2018-03-27 - Modified: 2024-11-19 - URL: https://petri.com/best-mobile-office-365-email-client/ - Categories: Exchange 2016, Exchange Online, Exchange Server, Microsoft 365, Office - Tags: ActiveSync, Apple, exchange, iOS, Office 365, Outlook - Article Type: Opinion Companies that move to Office 365 have to decide what mobile email client to use. A native client that uses Exchange ActiveSync (EAS) or Outlook? In the past, the best choice was probably something like the iOS mail app. Now, Outlook is the focus of Microsoft's mobile efforts and it's where all the new functionality appears. EAS is still valuable, just less so than it was before. Moving Mobile Email to Office 365 I am frequently asked to recommend the best mobile client to use with Office 365. Usually, the question is what email client to use because it is in the context of a company moving from on-premises Exchange to Exchange Online. Mail is often the first workload a company moves to the cloud, so it is unsurprising that this issue arises, especially as Exchange has included native support for mobile clients since the advent of the ActiveSync server in Exchange 2003 SP1 (the real action started with Exchange 2003 SP2). Mobile Office 365 Clients Of course, a wide range of other mobile clients are available for other Office 365 applications, as you can see from those installed on my iPhone (Figure 1). One thing to note here is that the Groups app (for Office 365 Groups) is now deprecated as its function is being absorbed into the Outlook mobile apps. Figure 1: iPhone Pro for Office 365 (image credit: Tony Redmond) The apps receive regular updates and are generally of a high quality. iOS tends to be a little ahead of Android when it comes to functionality, but that varies from app to app. The recent upgrade for the Teams client to enable switching between tenants is especially good because it is much faster to switch than the desktop clients. The Success of Exchange ActiveSync Originally designed to evangelize connectivity between the nascent Windows smartphones and Exchange to compete... --- ### Google Introduces Several New Ways to Keep Accounts Secure - Published: 2018-03-27 - Modified: 2024-09-04 - URL: https://petri.com/google-introduces-several-new-ways-keep-accounts-secure/ - Categories: Cloud Computing, Security - Tags: Data, Google Cloud Platform, News, Security - Article Type: News Google recently announced several new tools and services that can be used to protect data stored on the Google Cloud Platform. Protecting data is something that is more important today than ever before, especially with much of today’s data being stored in the cloud. And in a recent post on the Google Cloud Platform blog, Google announced several new tools and services that can be used to protect data stored on their platform. The following are some of the updates that Google announced in their recent blog post: VPC Service Controls - This new feature provides a secure perimeter around data stored on the Google Cloud Platform, which can be especially useful when storing or processing sensitive information. With VPC Service Controls, users can configure the level of access that each cloud resource is allowed to have with other Google Cloud Platform resources. In addition, admins can also create context-aware access control rules, restricting access to only those users that need access. Cloud Security Command Center - The Cloud Security Command Center (Cloud SCC) enables admins to view all of their cloud assets and resources all in one central location. From the Cloud SCC, users can also scan resources to see if they contain sensitive data or vulnerabilities that could potentially put that data at risk. Access Transparency - Should a member of the Google Support or Engineering team ever require access to any of a user’s Google Cloud Platform services to provide customer support or to resolve an issue, Google will automatically log this access in near-real time so that admins can see who accessed their services and... --- ### The SMB’s Essential Disaster Recovery Checklist - Published: 2018-03-26 - Modified: 2024-09-04 - URL: https://petri.com/the-smbs-essential-disaster-recovery-checklist/ - Categories: Backup & Storage, Cloud Computing - Tags: Backup, Cloud, Disaster Recovery - Article Type: Overview If you don't know where to start with your DR planning check out this essential DR checklist to make sure you have the basics covered. While almost every business would agree that it’s essential to have a disaster recovery (DR) plan, the sad fact is that not all businesses do. Most of those businesses that don’t have a DR plan tend to be the smaller and medium sized businesses (SMBs) that actually need a DR plan the most. Many of these SMBs could potentially go out of business if they were hit by a disaster and they were not able to effectively recover. Today’s businesses need more availability and uptime than at any point in the past. Plus, they need to be able to deal with potential threats like ransomware as well as disasters and site outages. Creating an essential DR checklist is an important starting point for enacting your DR strategy. Let’s take a closer look at the main points that should be on your essential DR checklist. Identify your critical business processes – Not all processes are created equal. You first need to identify your most important business applications. These typically are the essential applications that your business needs to operate on a daily basis. Ideally, IT should meet with the business management and/or applications owners to identify and prioritize these applications. Backup and optionally replicate your critical servers – Backup is the foundation for all DR strategies. Backup enables you to restore your servers to a known-good point in time enabling you to recover your essential IT operations. In addition, while it’s no fun, your backups need to be periodically tested. Various... --- ### The Ball is in Microsoft's Court To Capitalize on Teams - Published: 2018-03-26 - Modified: 2024-09-04 - URL: https://petri.com/ball-microsofts-court-capitalize-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Microsoft Teams - Article Type: Opinion Microsoft's Teams is off to a strong start but the company needs to be aggressive with feature deployment and not become complacent upon its success. A couple years ago, Microsoft was in a position where it had to make a decision, buy Slack or incubate a product internally with the hope that they could best the rising threat from the independent software company. While Slack is still a threat to Microsoft, the idea that the platform could destabilize Office 365's dominance is fading as Teams has quickly found its way into the corporate world. Earlier this month, Microsoft noted that Teams celebrated its first birthday and that more than 200,000 organizations are now using the software. While we don't know how many of those organizations are simply trialing the software or are deeply integrating the platform into their workflows, either way, the software is showing that it does have the attention of the IT Pro. Having watched Teams grow up from the Skype Teams brand to eventually become its own entity, I'm optimistic on the long-term future of the platform as Microsoft is positioning Teams to be your workplace hub for content, communication, and yes, even Email. While the app is far from perfect, needs better multi-business integration, and even guest access can use a bit of love, the stickiness of this app is achieving is a rarity, even for Microsoft. Office 365 provides many benefits for its users including security, cloud-scale, and a robust set of productivity applications. But, many of the pieces of the building blocks of the platform can easily replaced like Word, OneDrive, PowerPoint, Email, OneNote but there are... --- ### Modern SharePoint Web Parts -- Planner Web Part - Published: 2018-03-23 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-planner-web-part/ - Categories: SharePoint Online - Tags: Modern SharePoint Team Site, Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the new Planner Web Part.     (more... ) --- ### The Architecture of Azure File Sync > In this post, I will explain how the components of an Azure File Sync architecture, and how they work together in an example multi-site scenario. - Published: 2018-03-23 - Modified: 2024-09-04 - URL: https://petri.com/architecture-azure-file-sync/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Azure File Sync, Azure Files, Backup, Cloud Storage, Disaster Recovery, DR, File Server, Tiered Storage - Article Type: Overview Aidan Finn explains how the components of Azure File Sync fit together and how they work together in an example multi-site scenario. In this post, I will explain how the components of Azure File Sync fit together and how they work together in an example multi-site scenario.     Azure File Sync Microsoft’s Azure File Sync (in preview at the time of writing) is an Azure subscription service that enables: File servers to sync folders/files to Azure storage accounts in the Azure Files service. Optionally tier storage, keeping hot files on-premises and cold files in the cloud without changing the folder structure that a user sees. This effectively turns the file server into a proxy for the master copy in Azure. Synchronize (without synchronized file lock at this time) folders/files between file servers in different locations. Move the process of backup to Azure. Azure Backup support is in private preview at the time of writing. Simplify the disaster recovery of file servers. You connect a new file server (proxy) to the master copy of the data in Azure and users can start accessing folders/files within minutes. There are a number of components that make all this possible. To aid with the explanation of this, I will use a theoretical scenario with three file servers running in Dublin, Stockholm, and Frankfurt. Synchronize all shares to Azure. The Accounting share will be on all file servers. The Sales share will be in Dublin and Frankfurt. The Marketing share will be in Stockholm and Frankfurt. Tiering will be enabled for each server endpoint to keep only hot data on each file server. The... --- ### The Hidden Price of “Lift and Shift” Migrations - Published: 2018-03-22 - Modified: 2024-09-04 - URL: https://petri.com/hidden-price-lift-shift-migrations/ - Categories: Cloud Computing - Article Type: Overview Migrating, managing, backing up, and protecting useless data has a cost. Are you willing to pay it? Two questions I get frequently from customers are, “how much will my Office 365 or SharePoint migration project cost? ” and before I can even answer they will ask, “and how can I do it for less than that? ” I get it. We are all trying to derive maximum value from our IT projects, and no one has an unlimited budget. In this context, a simple lift and shift migration can have a certain simplistic appeal. Why not just bring everything? No need to have potentially challenging conversations with different business units about their data, their unique workflows or even heavily customized SharePoint sites No need to determine if the information management, governance and security policies that have been put in place are actually being followed No need for a discovery process that could potentially complicate your project timeline But fair warning. The Siren song of lift and shift, like the creatures of Greek mythology, will capsize your project and drown you in unnecessary and unseen costs. Here is why lift and shift is absolutely the wrong approach for your SharePoint or Office 365 migration. Without a Discovery Process; You Miss the Migration Tripwires According to Gartner, through 2019, more than 50 percent of data migration projects will exceed budget and/or result in some form of business disruption due to flawed execution. That right there is the unacceptably high cost of lift and shift migrations. More often than not, flawed execution on a migration project can be traced directly... --- ### Office 365 Makes Message Encryption Even Easier > Office 365 now includes out-of-the-box email encryption, which might just mean that the era of using S/MIME and PGP might be coming to a close. - Published: 2018-03-22 - Modified: 2024-09-04 - URL: https://petri.com/office-365-encrypted-email/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Azure Information Protection, GDPR, Message Encryption, Office 365, OME, Outlook, owa - Article Type: How To Office 365 now includes out-of-the-box email encryption, which might just mean that the era of using S/MIME and PGP might be coming to a close, at least inside Office 365. The new functionality scores highly on ease of use and integration, but the lack of support in the current Outlook desktop clients means that adoption will be slow. Office 365 Encryption for All In October 2017, I wrote about the refreshed Office 365 Message Encryption (OME) functionality that was just showing up around that time. I noted that new features and better client integration made it easier than ever before to protect messages, even between Office 365 tenants and other domains. Now, Microsoft has introduced a new protection policy called "Encrypt-Only" (or just Encrypt) to encourage users to protect sensitive email more than it happens today. Simple Encryption is not Always Simple Message encryption is a very old concept and well-regarded technologies like Pretty Good Privacy (PGP) and Secure MIME (S/MIME) have been in common use for many years. You can use S/MIME with Office 365 or find a PGP plug-in for Outlook, but in both cases the configuration can be tricky and involve several moving parts. Although Microsoft would not say that their aim is remove the need for Office 365 tenants to use S/MIME, PGP, or other third-party encryption, it seems likely that providing an out-of-the-box solution that can encrypt messages to any email address is a powerful hint that this is their direction. And given that Microsoft controls a large percentage of the clients that access Exchange Online, they can make the encryption/decryption process much simpler and better integrated than any third-party software can. How to Encrypt a Message As explained in the previous article, you protect messages by applying a rights management template. The template can be one of the default set... --- ### Microsoft Begins Rolling out SharePoint Hub Sites - Published: 2018-03-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-rolling-sharepoint-hub-sites/ - Categories: SharePoint, SharePoint Online - Tags: Hub sites, News, SharePoint - Article Type: News Microsoft is now ready to start rolling out SharePoint hub sites but there is a catch as it's not coming to everyone today. Announced at Ignite in 2017, Microsoft is now ready to start rolling out SharePoint hub sites but there is a catch as it's not coming to everyone today. The company is only rolling them out to Targeted Release customers but it's not all bad news for those anxious to get their hands on this new feature. While Targeted Release customers are starting to receive the feature and the company expects this initial rollout to take one month, a worldwide rollout is expected to happen in early May. Even though that's obviously not today, you don't have to wait too much longer as the bits make their way through the final layers of testing. As a quick refresher, here is what this feature brings to your intranet: Cross-site navigation – increase visibility of and navigation among associated sites Content rollup – read aggregated news and discover related site activities Consistent look-and-feel – establish a common theme to improve visitor awareness of connected sites Scoped search – focus on finding content that resides within the hub site’s associated sites If you need a deeper look at what this feature provides, you can take a look at the announcement post, here. Microsoft has been investing heavily into SharePoint during the past few years and it has begun to pay serious dividends. While it wasn't all that long ago the name SharePoint resulted in eyes rolling around the meeting table, the platform has matured nicely and is quickly becoming the go-to tool... --- ### Patch Tuesday March 2018 - Published: 2018-03-21 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-march-2018/ - Categories: Windows Server - Tags: Microsoft, Office 2016, Patch Tuesday, Windows - Article Type: Overview This month, Microsoft patches a remote code execution vulnerability for CredSSP, helps Intel distribute microcode updates to protect against Spectre Variant 2, and Office 2016 gets updated to version 1803. This month, Microsoft patches a remote code execution vulnerability for CredSSP, helps Intel distribute microcode updates to protect against Spectre Variant 2, and Office 2016 gets updated to version 1803.     This month’s cumulative update for Windows 1709 64-bit patches twenty-four vulnerabilities in total. Fourteen of which are information disclosure, six privilege elevation, two security feature bypass, one denial of service, and one remote code execution vulnerability. Of particular interest is the remote code execution vulnerability CVE-2018-0886, which affects all supported versions of Windows. Remote code execution vulnerabilities are especially important to patch because they can be exploited from a remote computer that has access to your network. The vulnerability is in the Credential Security Support Provider (CredSSP) protocol and could allow an attacker to relay credentials to run code on a remote system. CredSSP is used by WinRM and the Remote Desktop Protocol (RDP). In a worst-case scenario, the vulnerability could provide access a domain controller (DC) if an administrator initiates a session to a DC using Remote Desktop. The patch updates CredSSP and Remote Desktop clients for all affected platforms. But for complete protection, it is not enough to install the patch. System administrators also need to apply some new Group Policy settings that are included in the patch. For more information about the new settings and configuring your environment, see Microsoft’s website here. Group Policy Settings for CredSSP Patch (Image Credit: Russell Smith) CVE-2018-0886 isn’t the only remote... --- ### Architecting Availability Zones for Azure VMs > This post will explain the architecture of Azure availability zones which offer a higher SLA for virtual machines in a single Azure region. - Published: 2018-03-21 - Modified: 2024-09-04 - URL: https://petri.com/architecting-availability-zones-azure-vms/ - Categories: Cloud Computing - Tags: Architecture, Availability Zones, Azure, Azure Virtual Machines, Disaster Recovery, High Availability, Load Balancer, PIP, Public IP Address, Scale Sets, SLA, virtual machines, Virtual Network - Article Type: Overview Aidan Finn discusses some architectural elements that you will use if you wish to deploy services across availability zones within a single Azure region. In this post, I will discuss some architectural elements that you will use if you wish to deploy services across availability zones (in preview at the time of writing this article) within a single Azure region.   Higher Levels of Fault Tolerance If you deploy a virtual machine solution in a valid availability set design, then your deployment will qualify for a financially backed 99. 99 percent SLA from Microsoft. Microsoft has created availability zones from a single region; the data centers in different availability zones do not share dependencies. For example, the Azure West Europe region is split into 3 availability zones. Each availability zone is one or more buildings that share redundant power, cooling, etc. Zone 1 has no shared dependencies with Zone 2, or with Zone 3. This means that if a single zone has a local failure, the other two zones remain online. What is a valid availability set design? An example of a valid design is where a web farm, made up of several virtual machines hosting the same web content, is deployed across several availability zones (more in a moment) in a region. An example of an invalid design is when you have a domain controller in one availability zone and an RDS session host in another availability zone. The Components of an Availability Zone Today, the following Azure resource types are aware of and support availability zones: Linux virtual machines Windows virtual machines Virtual machine scale sets (VMSS) Managed disks Standard tier... --- ### Microsoft Announces Windows Server 2019, Preview Now Available - Published: 2018-03-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-windows-server-2019-preview-now-available/ - Categories: Windows Server - Tags: News, Windows Server 2019 - Article Type: News Microsoft has announced Windows Server 2019 and you can download preview bits today to test before the platform reaches general availability. For Server fans, today is a big day as Microsoft has announced that Windows Server 2019 will be coming in the second half of this year and it will focus on hybrid, security, application platform, and hyper-converged infrastructure. In addition, a preview of the new software is available today for those that want to dive ahead of general availability. As expected, Server 2019 is built on-top of Server 2016 which the company says is the fastest adopted server version in the company's history. The next-gen Server OS will bring cloud and on-premises close together with new hybrid scenarios. When Server 2019 is released, along with Project Honolulu, this will make it significantly easier to integrate with services like Azure Backup, Azure File Sync, disaster recovery, and much more. Security with Server 2019 focuses on protection, detection, and response. This include features like shielded VSM now support Linux VMs and with the addition of Encrypted Networks; this lets admins encrypt network segments with the push of a button to protect the network layer between servers. To address detection and response, with Server 2019 Windows Defender Advanced Threat Protection is being embedded into the operating system. The benefit of this is that it provides customers with access to deep kernel and memory sensors to improve anti-tampering and faster response time to new threats. One thing to note about this release is that it will be a Long-Term Servicing Channel release which means that it will be supported for 5 years of... --- ### With Project Denali, Microsoft Looks To Standardize Data Center Cloud Storage - Published: 2018-03-20 - Modified: 2024-09-04 - URL: https://petri.com/project-denali-microsoft-looks-standardize-datacenter-cloud-storage/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Cloud, Denali, Microsoft, News, SSD, storage - Article Type: News Microsoft is at the Open Compute Project Summit and the company is going public with Denali, a next-generation spec for solid-state storage. This week, Microsoft is at the Open Compute Project Summit and the company is going public with Denali, a next-generation spec for solid-state storage. In addition, they are also revealing details about Cerberus, an additional security layer for server hardware. Microsoft argues that while on-premises storage paradigms have performed well, that model has not translated well to the cloud. And seeing that Microsoft is one of the largest cloud providers on the planet, they likely have unique insight into this segment. In an effort to make flash storage targeted specifically for cloud-based workloads, the company is announcing Project Denali which standardizes the SSD firmware interfaces by disaggregating the functionality for software-defined data layout and media management. Microsoft is working with CNEX labs for this standardization process and they believe that by implementing this standard, customers will be able to achieve better performance in the cloud while reducing the cost that comes with cloud-scale. This new standard is an evolution of the Open Channel that defines the roles of SSD against that of the standard interface. In addition to CNEX Labs, Samsung, Intel, and several others are already onboard with this new standard. One important aspect of Denali is that it allows for support of FPGAs on the host side, and considering that Microsoft is a big fan of these field-programmable-gate arrays for its data centers, this would be a big win for them. In addition, Microsoft is a large buyer of SSDs for its cloud services which will... --- ### Microsoft's Employee Engagement Summit Kicks off at 11AM ET, You can Watch it Here - Published: 2018-03-20 - Modified: 2018-03-20 - URL: https://petri.com/microsofts-employee-engagement-summit-kicks-off-11am-et-can-watch/ - Categories: Training & Certification - Tags: Microsoft - Article Type: Overview Today, at an online event, Microsoft is discussing how technology can improve employee engagement and communications; we have embedded the live stream so that you can view the conference. Today, at an online event, Microsoft is discussing how technology can improve employee engagement and communications. Kathleen Hogan, Microsoft’s chief people officer, will be sharing trends, challenges, and best practices and customers will also be sharing their stories; you can watch the live event below starting at 11AM ET/8AM PT. Learn more about how to improve employee engagement and open communications here. --- ### The Evolution of Microsoft’s Collaboration Story for Office 365 > Since Office 365 appeared in 2011, Microsoft's collaboration story has varied according to whatever technology is available Teams, Yammer, Groups, email - Published: 2018-03-20 - Modified: 2024-11-19 - URL: https://petri.com/evolution-microsoft-collaboration-story-office-365/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Exchange Online, Office 365 Groups, SharePoint Online, site mailboxes, Teams, Yammer Since Office 365 appeared in 2011, Microsoft's collaboration story has varied according to whatever technology is available. Originally based on Exchange and SharePoint, it's gone through Yammer, Office 365 Groups, and now Teams. You'd be forgiven for being confused by the frequent changes in the strategy du jour. And now we have inner and outer loops to consider, at least according to Microsoft's favorite collaboration slide. Here's my take. Office 365 is a Collaboration Platform Anyone who attends a Microsoft briefing about Office 365 collaboration technology has seen the compulsory “inner-outer” loop slide. Microsoft started using the slide at the Ignite 2017 conference to position the various methods available to users within Office 365 to communicate with each other. I’ve nothing against the slide. It is a reasonable marketing position. However, the reality within most tenants is that the demarcation between products is seldom so clear. The reason why is simple. Microsoft’s collaboration story for Office 365 has been in a state of constant evolution since 2011. Because of the many changes in strategy and emphasis by Microsoft, customers have struggled to understand the available technology and what approach will likely work best for them. Communicating a “strategy du jour” is a failing of many technology companies. Technical developments, customer requirements, competitive pressure, acquisitions, new learnings and insights, and people shape the outbound messages from a company. In the case of Office 365, all these influences apply. The Early Days: Barely Cloudified When Microsoft launched Office 365 in June 2011, the collaboration technologies were plain old email with Exchange and document-centric workflow from SharePoint. Both products tried to make collaboration easier, but Exchange struggled with the legacy of public folders and a history of failed attempts to expand from its core strength as an email server. Exchange Routing Objects, for instance, seemed promising, but failed. SharePoint did not do much better. Despite a huge ecosystem of third-party... --- ### Deploy Azure App Service Environment with Internal Load Balancer > This shows how to deploy the internal (load balancer) Azure App Service Environment (ASE) with an app service running on an isolated tier app service plan. - Published: 2018-03-20 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-app-service-environment-internal-load-balancer/ - Categories: Microsoft Azure - Tags: App Service, App Service Environment, App Services Plan, ASE, Azure, Internal, Internal Load Balancer, Isolated, Load Balancer, Private, Virtual Network - Article Type: How To Aidan Finn shows you how to deploy an internal Azure Service Environment, which will share its hosted app services via an internal load balancer. In this article, I will show you how to deploy an internal Azure Service Environment (ASE), which will share its hosted app services via an internal load balancer.         An internal Azure Service Environment (ASE) with internal Load Balancer Create A New ASE Start the creation by clicking Create A Resource > Web + Mobile > App Service Environment. Enter the following details: Name: Enter a unique name in the . p. azurewebsites. net domain for your new ASE. Subscription: Specify the subscription you want to create the ASE in. Resource Group: Select an existing resource group or create a new one for the ASE resources. The Virtual Network/Location setting is important because this is where you: Select/create a virtual network Specify the region Create the ASE as an internal one Click Virtual Network/Location. Here you will enter: Virtual Network: Either select or create a virtual network. Note that the location of the virtual network will be the location of the ASE. VIP Type: Select Internal. Domain: Enter the domain name that will be used for all app services in the app services plan (instead of the usual . azurewebsites. net). Create an Internal Virtual Network ASE   When you close the Virtual Network blade, you can click Create in the App Service Environment blade. The creation job might take around one and a half hours to complete. Creating a New Internal... --- ### Project Rome and Windows 10 Timeline - Published: 2018-03-19 - Modified: 2024-09-04 - URL: https://petri.com/using-the-timeline-in-windows-10-redstone-4/ - Categories: Windows Client OS - Tags: Project Rome, Redstone 4, Timeline, Windows 10 - Article Type: Overview Redstone 4 will be finalized later this month, so I decided it was time to spin up the latest insider build to see if Timeline is a useful feature or just a marketing gimmick. Redstone 4 will be finalized later this month, so I decided it was time to spin up the latest insider build to see if Timeline is a useful feature or just a marketing gimmick.     If you haven’t already heard, one of the biggest new features in Windows 10 Redstone 4 is Timeline. Part of Project Rome, Microsoft is making an effort to bridge the gap between devices, apps, people, and the cloud, Timeline records user activities and presents them in chronological order in Task View. Here’s is a description of Project Rome in Microsoft’s own words: Project Rome is an initiative conceived to rethink Windows as a platform as we seek to deliver a more personal operating system for the next generation of computing. Its focus is on delivering APIs and features to drive deeper engagement by bridging silos between devices, apps, people, and cloud services – democratizing our vision of mobility of experiences and people-centric, ubiquitous computing.   Project Rome consists of the following components: A set of infrastructure services for Windows and other operating systems. A programming model provided as a set of RESTful APIs for Windows, Android, iOS, and Microsoft Graph. Microsoft Graph exposes multiple APIs from Microsoft cloud services through a single endpoint. A device runtime to connect Windows and other devices to the Project Rome infrastructure. Project Rome (Image Credit: Microsoft) You may have already experienced one of Project Rome’s features: Cortana’s ‘Pick up where I left... --- ### [Sponsored] Overcoming Remote Desktop Challenges with Remote Desktop Manager - Published: 2018-03-19 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-overcoming-remote-desktop-challenges-remote-desktop-manager/ - Categories: Windows Client OS - Tags: Remote Desktop - Article Type: Overview In today’s corporate environment IT administrators typically need to manage many different remote systems but it's important to know the gaps in these offerings too. In today’s corporate environment IT administrators typically need to manage many different remote systems. These systems can be physical systems or they might be VMs. Many times, these systems reside locally as well as in remote locations and in the cloud. For Windows IT administrators the Remote Desktop is the primary tool that the vast majority of IT administrators use every day for these necessary remote management tasks. Remote Desktop enables you to start an interactive session with a remote system that has been configured to allow Remote Desktop access. Remote Desktop opens a window on your local system that contains the desktop of the remote system that you connect to. Your mouse and keyboard actions are sent to the remote system and the interactive session allows you to operate and troubleshoot the remote system very much like you are sitting at a local display. This kind of control and interactive display is essential when you’re trying to troubleshoot problems or configure systems remotely. In this post, you’ll learn about some of the challenges of using Remote Desktop to manage your enterprise servers and then see some of the best ways that you can address these issues. Many companies use Microsoft’s Remote Desktop Connection Manager for their remote Windows management requirements. However, Remote Desktop Connection Manager has several critical limitations in an enterprise desktop environment. You’ll see how you can address these limitations as well as how Devolutions Remote Desktop Manager provides an enterprise-ready feature set to address your remote... --- ### Amazon Announces New EC2 Spot Instance Pricing - Published: 2018-03-16 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-new-ec2-spot-instance-pricing/ - Categories: Cloud Computing - Tags: Amazon, EC2, Instance, News, Spot - Article Type: News Amazon recently announced a new pricing model for its EC2 Spot Instance offering, which makes it easier to purchase spare AWS compute power with fewer service interruptions than before. In a recent post on the AWS Compute Blog, Amazon announced a new pricing model for its EC2 Spot Instance offering, allowing users to easily purchase spare EC2 instances for only a fraction of what the same instances would cost if they were purchased on-demand.     Amazon EC2 Spot Instances allow users to purchase spare computing capacity that AWS has available and are up to 90 percent cheaper than a launching traditional on-demand EC2 instances. Because Spot Instances make use of extra AWS computing capacity, Amazon can temporarily pause them, if needed, in order to reclaim the extra capacity for other customers. While this may not be ideal for processes that require 100 percent uptime, it can prove useful for those who are looking for a simple boost in performance or for applications where there is some flexibility when it comes to fault-tolerance. The previous EC2 Spot Instance pricing model involved users bidding for available instances, with instances being terminated based on the number of bids that each instance had. The price for a Spot Instance would then change to whatever the highest unfulfilled bid was. This lead to Spot Instance pricing being quite volatile at times. However, the new Spot Instance pricing model makes it easier for users to know what they will be paying to create a Spot Instance, with prices changing only once per one-hour period. This means that users no longer have to analyze the prices over time in order to... --- ### Paul Thurrott's Short Takes: March 16 - Published: 2018-03-16 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-16/ - Categories: Cloud Computing, Hardware, Mobile, Security - Tags: News - Article Type: Overview Because I told you so, this edition of Short Takes looks Microsoft's future in cloud gaming, Intel's plans to fix security flaws, Microsoft's new bug bounty, Samsung's rocky year, and much more. What! ? Samsung added AR Emoji to the Galaxy S9? ! ? Nooooo... ... Because I told you so, this edition of Short Takes looks Microsoft's future in cloud gaming, Intel's plans to fix security flaws, Microsoft's new bug bounty, Samsung's rocky year, and much more. Yes, Microsoft's gaming future really is in the clouds Months ago, I predicted a potentially bright future for Microsoft in gaming, thanks to its unique ability---unmatched by current market leaders Sony and Nintendo---to deliver games to any device from the cloud. Well, my prediction of Microsoft's coming strategy is now a fact: The software giant confirmed this week that it has created a new gaming cloud division aimed at convincing game developers to use Microsoft Azure to host games that can run across PC, Mac, gaming consoles, and mobile. "We believe there is going to be 2 billion gamers in the world, and our goal is to reach every one of them,” Microsoft's Kareem Choudhry irritatingly told The Verge, instead of the guy who's been talking up this stuff for months. Sigh. "We continue to believe in user choice, and we also believe there’s room in the industry for a gaming subscription and that’s what we’re going to build. " So there you have it: Microsoft's future in gaming really is in the cloud. And I'll just reiterate that I think they're going to see great success. "Microsoft Edge Beta is Available on iPad" Oh good. Another place to not use Microsoft Edge... . --- ### Office 365 Takes Aim at Spoofers but Users See Warnings About Fraudulent Messages > Microsoft upgraded their EOP anti-spoofing capabilities inside Office 365, but users saw messages stamped "the sender failed our fraud detection checks" - Published: 2018-03-16 - Modified: 2024-11-19 - URL: https://petri.com/office-365-aims-spoofers-fraudulent-messages/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Advanced Threat Protection, anti-spam, ATP, EOP, Exchange Online Protection, Office 365, spoofing - Article Type: News Microsoft upgraded their EOP anti-spoofing capabilities inside Office 365, which is good, but they didn't tell anyone. The first users knew was when they started to receive messages stamped with "the sender failed our fraud detection checks" - something that is never assuring. This only applies to ATP customers, but it's not the first time Microsoft has failed to communicate important news. Microsoft has partially rolled back the rigor of its anti-spoofing policy to reduce the number of messages marked as potentially fraudulent. This does not take away from the need for organizations to authenticate their outbound email stream so as to avoid problems in the future. All large email providers recommend that email senders are authenticated using one or more of DKIM, DMARC, and SPF. It's up to you! The formal bog announcing Microsoft's anti-spoofing initiative is now online. It would have been nice had they communicated first before firing the gun... The Spam War Email vendors are in a state of constant warfare with hackers, attackers, spammers, spoofers, and generally anyone who wants to use email as a threat vector. This isn’t new, and we have ups and downs all the time as each side seeks to gain an advantage over the other. I consider Office 365 to offer good protection against the bad guys through the combination of Exchange Online Protection (EOP) and, if you can afford it, Advanced Threat Protection (ATP). I’ve seen evidence of the commitment they have to eradicating bad stuff from email flowing into Office 365, a task that is surely the modern-day equivalent of Hercules cleaning out the Augean stables. Behind the scenes, Microsoft tweaks their toolset and algorithms on an ongoing basis to deflect new threat, suppress new spam, and quash new attacks with features like Dynamic Delivery for attachments. New Anti-Phishing Policy Recently, they... --- ### Managing Windows Software Using Chocolatey - Published: 2018-03-15 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-software-using-chocolatey/ - Categories: Windows Client OS - Tags: Automation, Chocolatey, Configuration Management, PowerShell, Windows, Windows Server - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to get started with the Chocolatey package manager for Windows. In today's Ask the Admin, I'll show you how to get started with the Chocolatey package manager for Windows.     If you need to install and manage software in Windows, there’s no built-in package manager comparable to what is available for Linux. Chocolatey is a third-party open source package manager that aims to bring the convenience of Linux package managers to Windows. If you missed it, check out Package Management in Windows Using Chocolatey for an overview of Chocolatey and package management technology in Windows. Installing Chocolatey Chocolatey requires PowerShell and the . NET Framework 4 or higher. That shouldn’t be a problem on modern versions of Windows. Chocolatey doesn’t make any changes to the registry or get installed as such. When you run the PowerShell Chocolatey install script (install. ps1), it creates a folder in the ProgramData folder and an environment variable that allows you to run Chocolatey from the command line in any directory. To install Chocolatey, open a command prompt with administrative privileges, paste the code below into the command prompt, and press ENTER. @"%SystemRoot%System32WindowsPowerShellv1. 0powershell. exe" -NoProfile -InputFormat None -ExecutionPolicy Bypass -Command "iex ((New-Object System. Net. WebClient). DownloadString('https://chocolatey. org/install. ps1'))" && SET "PATH=%PATH%;%ALLUSERSPROFILE%chocolateybin" Once Chocolatey has installed, you are ready to install packages. The easiest way to use Chocolatey is to install one of the thousands of available packages in Chocolatey’s community-maintained online repository. For example, if you want to install Git on a PC, you just need to run: choco install git Install a Package Using Chocolatey (Image Credit: Russell Smith)... --- ### Recovering Deleted Email with New Exchange Online Cmdlets > Exchange Online has two new cmdlets to help administrators recover deleted email on behalf of users. Office 365. PowerShell - Published: 2018-03-15 - Modified: 2024-09-04 - URL: https://petri.com/recovering-deleted-email-exchange-online/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Get-RecoverableItems, Recoverable Items, Restore-RecoverableItems - Article Type: How To Exchange Online has two new PowerShell cmdlets to help administrators recover deleted email on behalf of users. You can now search for deleted items and recover found items without having to sign into a user's mailbox, something that will be popular with both administrators and users alike. The joy of helping users find email they deleted and can't find themselves...   Exchange Makes It Easy for Users to Fix Deletion Mistakes Exchange has used a two-step item deletion process for nearly 20 years. When someone deletes an item from a mailbox, it moves into the Deleted Items folder. Later, when the user empties the Deleted Items folder, or the Managed Folder Assistant empties the folder under the instruction of a retention policy, the items go into the Recoverable Item folder. Users can rescue items from Recoverable Items using the Recover Deleted Items feature in OWA or Outlook (Figure 1). Figure 1: Recovering deleted items with Outlook (image credit: Tony Redmond) When Microsoft added the Recover Deleted Items feature to Exchange 2000, the idea was to avoid administrators having to restore deleted items from backup tapes. If users made a mistake, they can fix the problem themselves. Eventually, the Managed Folder Assistant clears deleted items out of Recoverable Items and they become irrecoverable. The exception to the rule is when items come under the control of a hold, in which case Exchange holds the items until the hold expires. When Exchange Admins Rescue Users Although Recover Deleted Items works, it is a mechanism best suited to restoring limited numbers of items. If someone deletes a folder holding thousands of items and doesn’t notice the problem, that folder and its items eventually end up in Recoverable Items and might need to be restored. Invariably, this is a problem that users are quick to escalate to look... --- ### Deploy Azure App Service Environment With A Public IP > This post shows how to deploy an Azure external App Service Environment (ASE) with a public IP address and your first Isolated tier app service. - Published: 2018-03-14 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-app-service-environment-public-ip/ - Categories: Microsoft Azure - Tags: App Service, App Service Environment, App Service Plan, ASE, Azure, External ASE, Isolated, PIP, Public IP Address, Web App - Article Type: How To Aidan Finn shows you how to deploy the “public” version of App Service Environment (ASE), where the app services are shared through a single, simple public IP address. In this post, I will show you how to deploy the “public” version of App Service Environment (ASE), where the app services are shared through a single, simple public IP address.     An Azure App Service Environment (ASE) with a Simple PIP   Note that you can create an ASE while creating the first app service and Isolated-Tier app service plan within it. However, this does not give you control over the method of connectivity to the app services. In this how-to article, you will see how to create the new ASE and then how to add app services plans to it. Create the ASE Start by going to the Azure Portal and clicking Create a Resource. Pick Web + Mobile > App Service Environment. An App Service Environment blade will appear; enter the following details: Name: Give the ASE resource a name that will be unique in the . p. azurewebsite. net domain. Subscription: Choose the target subscription. Resource Group: Create a new or select an existing resource group to put the ASE into. Virtual Network/Location: Either choose an existing virtual network or create a new one. Creating a New Azure App Service Environment (ASE)   There are two things to note about the virtual network blade: Choosing/creating a virtual network will define the region that the ASE will be created in. This is where you choose (VIP Type) if the ASE will be external (public... --- ### Microsoft's Adding new Data Centers in Europe and the Middle East - Published: 2018-03-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-adding-new-data-centers-europe-middle-east/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, Microsoft Cloud, News - Article Type: News Microsoft is adding two new regions to its cloud platform while also turning on services in other countries as products begin to reach general availability at new data centers. It's no secret that Microsoft is going all-in on its cloud services as the company is announcing today that they are expanding once again with new regions in Switzerland and the UAE. In addition, Microsoft Cloud services in France have reached general availability with Microsoft Office 365 today, and Dynamics 365 will follow in early 2019. Follow the money, that's what you should be doing if you are paying attention to Microsoft as it shows where the company's heart truly resides. With each data center costing upwards of a billion dollars, this isn't a small investment and considering that the company's cloud services are driving the largest growth on the balance sheet, it's obvious why the company is bringing these new regions online. The company is building its first cloud region in the Middle East which will be located in Abu Dhabi and Dubai in the United Arab Emirates. Microsoft's cloud expansion has been full-steam ahead for several years with the company having 38 regions online with 12 additional regions announced. With 50 regions coming online in the next few quarters, the company will be well-positioned for the additional growth that is expected in this segment. As more data retention laws are signed, having local data centers strategically located throughout the world will become a strength of Microsoft's cloud services. While cloud services can make protecting and backing up your data easier, this only matters if its aligned to the local laws of the company who wants to move... --- ### Microsoft Begins Testing Teams PWA - Published: 2018-03-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-testing-teams-pwa/ - Categories: Microsoft Teams, Office - Tags: Microsoft, News, Teams - Article Type: News Even though Teams only turned one this week, the company has begun testing a PWA version of the platform with a small group of users. Earlier this week, Teams passed its first anniversary and with more than 200,000 organizations now using the software; the product is here to stay as it is now being widely used in the enterprise world. More than just here to stay, it will eventually replace Skype for Business and the company is also taking the bold step of re-architecting the solution too. Last year, it was announced that Teams would eventually be built as a PWA and make its way to the store; it looks like that future is nearly here as a lucky few are now able to download the app. Microsoft has begun testing the Teams PWA with a small group of users based on several sources who are using the app which is a big step towards releasing the application via the Microsoft Store. Considering that starting with the next release of Windows 10, Microsoft will enable the ability to place these types of apps into the store, the timing ripe. That being said, the early alpha of the Teams PWA is still quite rough and needs quite a bit of work. While testing the app, Microsoft is also calling it a Hosted Web App (HWA) instead of a PWA but both operate on a similar basis; turning your web code into an app that runs locally with increased access to system resources. If done correctly, the end user should not notice the switch to the HWA from the current Electron version of Teams. While... --- ### Digging Into A Couple of the Hybrid Cloud Best Business Practices - Published: 2018-03-13 - Modified: 2024-09-04 - URL: https://petri.com/hybrid-cloud-best-business-practices/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, Azure Active Directory, Backup, Cloud, cloud computing, hybrid cloud - Article Type: Overview Learn a few of the best practices that businesses today are using for the hybrid cloud to make sure you get the most bang for your buck. The hybrid cloud has been widely adopted by businesses of all sizes and it is expected to continue to grow. According to a study conducted by MarketsandMarkets, a B2B research firm, the hybrid cloud market is expanding at a compound annual growth rate of 22. 5%. There’s no doubt that the hybrid cloud can and is being used in lots of different ways. However, following some best practices can allow your business to get more out of the hybrid cloud.   Let’s take a closer look at some of the best hybrid cloud practices that businesses are adopting today. Focus on security Security is rarely an exciting topic but in these days of increasing cloud adoption, high profile exploits and growing threats like ransomware security has been pushed squarely to the forefront of most business’s IT priorities. Increasing utilization of the hybrid cloud requires a strong focus on security as the cloud can be used to store sensitive information and it potentially provides near global access to that data. One of the most important best practices for effective hybrid cloud security is the use of federated identity management like Azure AD or AWS Directory Service for Microsoft Active Directory. Federated identity enables you to integrate your on-premise AD and the cloud streamlining user access with single-sign-on capabilities. Utilizing multi-factor authentication can also help boost the security for your cloud resources – especially for connectivity from today’s devices like phones and tablets. Multi-factor authentication adds an extra layer of protection from a trusted... --- ### Monitoring the Removal of Office 365 Groups (and Teams) > Owners of Office 365 Groups can delete groups if they want. Some don't like this as it means that SharePoint site collections, teams, and plans are removed. - Published: 2018-03-13 - Modified: 2024-09-04 - URL: https://petri.com/monitoring-removal-office-365-groups/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Exchange Online, Office 365 Groups, Planner, remove group, restore group, SharePoint Online, Teams - Article Type: How To Owners of Office 365 Groups can delete groups if they want. Some don't like this as it means that SharePoint site collections, teams, and plans are removed. The simple membership model used by Office 365 Groups is the cause, and while you cannot stop owners deleting their groups, you can take action to detect and recover deleted groups if necessary. Preventing Office 365 Group Owners Doing the Wrong Thing I recently received a question from a reader asking if there was any way to prevent the owners Office 365 Groups from being able to remove groups. The fear is that someone will go ahead and remove a group that holds important information. The answer is that you can do nothing to prevent an owner removing a group, including all the resources associated with the group – mailbox, team site, team, plan, notebook, and so on. Office 365 gives tenant administrators the tools to restrict group creation but offers nothing to stop group removal. Owners are all-powerful when it comes to their group. Different in the Cloud If you worked with SharePoint on-premises, granting this kind of authority to group owners might seem excessive. In the world of SharePoint on-premises, it’s a big deal to create a site collection and those who have control over site collections tend to be people who know their way around SharePoint permissions and administrative functions. Things are a lot more democratic in the cloud, at least in this respect. Every Office 365 group (or team) has its own site collection. And every group or team has its own set of owners that have all the control in the world over the site collection due to radically simplified membership model used by Office 365 Groups. Remember, there are only two types of permissions – owners and members, and members enjoy the rights to access... --- ### Managing Windows Server with Puppet Part 4: Working with Files and ACLs - Published: 2018-03-13 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-server-with-puppet-part-4-working-with-files-and-acls/ - Categories: Windows Server - Tags: Compliance, Configuration Management, DevOps, PowerShell, Puppet, Security, Windows Server - Article Type: How To In this Ask the Admin, Russell Smith shows you how to use the file resource and manage permissions on files and folders. In this Ask the Admin, I'll show you how to use the file resource and manage permissions on files and folders.     In part three of this series, I showed you how to locate the site manifest file on your Puppet master, how to edit it using the vi text editor, and install the Puppet on Windows module pack. In the fourth part of this series, I want to show you how to perform basic file and permissions tasks on Windows Server by adding resources to the site manifest. (If you would like to start at the beginning, part one of this series can be found on Petri. com. )   Managing Files and Folders For the time being, I’m going to make life simple and add resources directly to the site manifest (site. pp). In a production environment, you’d probably create classes that contain a series of resources and then call those classes from the site manifest. But it is not obligatory to create classes. In part two of this series, I showed you how to add a file resource to the manifest that added a text file to the root of the system drive: file { 'c:/petri. txt': ensure => present, content => 'The Petri IT Knowledgebase' } But what if you want to delete a file instead of adding one? All you need to do is change ‘ensure’ from present to absent. file { 'c:/petri. txt': ensure => absent, } Backward and Forward Notice that I’m using a forward slash in... --- ### Microsoft Details Teams Feature Roadmap - Published: 2018-03-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-shares-teams-feature-roadmap/ - Categories: Microsoft 365, Microsoft Teams - Tags: Microsoft Teams, News - Article Type: News Microsoft has unveiled the features roadmap for its Teams platform which includes further Cortana integration, Cloud recording and a lot more. Microsoft's Teams platform is turning one this week and with more than 200,000 organizations using the software, it's fair to say that it has been a successful first year for the product. But, more importantly for those that are using the software, the company is sharing a few features that are working their way down the pipeline. When the company announced the general availability of Teams, there were 50,000 organizations who were using it at that time, and with 200,000 orgs now using the software, this shows a considerable amount of growth during the first full year of availability. That being said, Microsoft doesn't detail how many users inside of the 200,000 organizations are using it or if companies are simply trialing the software or have limited deployments. But for those that are using the software, Microsoft has detailed features that will be arriving this year but also know this is likely not a complete list of everything the company is working on for the platform: Cloud recording, providing one-click meeting recordings with automatic transcription and timecoding, enabling all team members the ability to read captions, search within the conversation, and playback all or part of the meeting; In-line message translation, enabling people who speak different languages to fluidly communicate with one another by translating posts in channels and chat; Cortana voice interactions for Teams-enabled devices, including IP phones and conference room devices, enabling you to easily make a call, join a meeting or add other people to... --- ### Google Releases Firebase Crashlytics from Beta - Published: 2018-03-12 - Modified: 2024-09-04 - URL: https://petri.com/google-releases-firebase-crashlytics-beta/ - Categories: Cloud Computing, Mobile - Tags: apps, Crashlytics, Firebase, Google, Mobile, News - Article Type: News Google recently announced that the latest version of Firebase Crashlytics, the firm’s tool for reporting and managing app crashes, has been released from beta and has also been updated to include several new features. In a recent post on the Google Firebase blog, Google announced that the latest version of Firebase Crashlytics, the firm’s tool for reporting and managing app crashes, has been released from beta and will now serve as Firebase’s default crash reporting tool going forward.     Along with the news that the service is no longer in beta, Google also announced that Firebase Crashlytics has been updated to include several major new features. All of this can be useful to developers and project managers who are tasked with building and maintaining mobile apps. The major updates included in this release are: Integration with Analytics Events - Firebase Crashlytics can now be integrated with Google Analytics events, providing developers with the ability to see a trail of “breadcrumbs”, or steps a user took within an app that led to a crash right from within the Google Firebase console. This feature does require that the latest Firebase SDK is installed and that Google Analytics for Firebase is enabled. It can potentially save developers a lot of time when it comes to learning about a crash and what may have caused it. They will no longer have to rely on user reports and trying to manually replicate it. One can simply log into the console and view the trail of events that led to the crash. Crash Insights - In addition to providing breadcrumb trails, Crashlytics now also has the ability to provide insights as to what the potential cause of... --- ### Controlling Resource Usage and Costs in Azure DevTest Labs > This post will show you how to control and understand costs in development & test deployments using Azure DevTest Labs. - Published: 2018-03-12 - Modified: 2024-09-04 - URL: https://petri.com/controlling-resource-usage-costs-azure-devtest-labs/ - Categories: Microsoft Azure - Tags: Azure, DevTest Labs, Policies, virtual machines - Article Type: How To Aidan Finn shows you how to configure DevTest Labs to control what can be deployed by testers and developers, how much of it they can deploy, and importantly, what the cost of the service will be. In this post, I will show you how to configure DevTest Labs to control what can be deployed by testers and developers, how much of it they can deploy, and importantly, what the cost of the service will be.     Configuration All Policies All settings for an Azure DevTest Lab can be found in Settings > Configuration And Policies. Here you can perform many things, including but not limited to: Cost monitoring and analysis Control what virtual machine series/sizes can be deployed Set up lab-wide or per-user quotas Enable/configure auto-shutdown and/or auto-start Define the available Marketplace and custom images Allowed Virtual Machine Sizes By default, all virtual machine sizes are allowed. If you enable Allowed Virtual Machine Sizes, you can limit the available series/size of virtual machines that devs/testers can deploy. Limiting the Series and Size of Virtual Machines in Azure DevTest Labs Virtual Machines Per User/Lab The main cost of a DevTest Lab is the virtual machines that run in it, which are charged at the subscription’s normal virtual machine rates. You can limit the number of machines that can be deployed in a DevTest Lab. This can be done per-user and/or per-lab. Both policies are enforced if you enable both and the lowest threshold will limit the users of the lab. Both policies have identical settings: Do you want to limit the number of virtual machines? If so, what is the limit? Do you want... --- ### Paul Thurrott's Short Takes: March 9 - Published: 2018-03-09 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-9/ - Categories: Hardware, Mobile, Windows 10 - Tags: News - Article Type: Overview Because baseball season can't start soon enough, this edition of Short Takes looks at Windows's not-so-new S mode, Microsoft's best-selling Surface PC, the Windows 10 Spring Creators Update, and so much more. Because baseball season can't start soon enough, this edition of Short Takes looks at Windows's not-so-new S mode, Microsoft's best-selling Surface PC, the Windows 10 Spring Creators Update, and so much more. Microsoft confirms S mode, with a twist Last month, Thurrott. com exclusively revealed that Microsoft was killing Windows 10 S---the version of Windows that cannot even run Windows applications---and would instead offer an "S mode" in all mainstream Windows 10 product editions. This week, Microsoft confirmed that news, but it provided a few interesting wrinkles. First, users that wish to escape S mode hell will no longer need to pay a $50 upgrade fee, as was the case with Windows 10 S. And second, Microsoft claims that it "expects the majority of customers to enjoy the benefits of Windows 10 in S mode. " That is incredibly delusion, given that Windows 10 S was an abject failure: No PC makers adopted it on mainstream PCs, no businesses or educational institutions rolled it out, and virtually no human being is even using this system. Why Microsoft expects S mode to work now is unclear. It's not like the Microsoft Store has gotten appreciably better in the past nine months. "Crazy Microsoft Is The Best Microsoft" I could not agree more. "Developers, developers, developers! " Guess which Surface PC sells best in big enterprise! Microsoft this week revealed that it will produce a Surface Hub 2 later this year, with more details coming before mid-year. (Think: May, when Build 2018 is held. ) There... --- ### Microsoft Confirms It's Working on Surface Hub 2 - Published: 2018-03-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-confirms-working-surface-hub-2/ - Categories: Hardware - Tags: Surface Hub, Surface Hub 2 - Article Type: News Microsoft has confirmed that the company is working on the second generation Surface Hub and that it will share details about the device in the near future. Microsoft's Surface Hub has been a quiet success for the company. The large productivity display has found its way into more than half of Fortune 100 companies and while some may have scoffed at the high price of entry, the device is clearly popular for those looking to upgrade their collaboration areas. But, with the device not being your average hardware purchase and prices starting at around $9,000 for the smaller device and over $20,000 for the larger Hub, investing in a Hub is a serious commitment which is why Microsoft is being candid that V2 is on the horizon. The company, which will share more information about the next iteration of the device in the first half of 2018, is acknowledging that the supply of V1 is becoming a bit thin and that if you are thinking of buying a Hub, it may be in your best interest to hold off on that purchase. While we don't know what hardware enhancements the Hub 2 will bring to the table, for those that have already purchased the first generation device, it is expected that Microsoft will continue to upgrade the software for that iteration of the device. Microsoft issued the following statement about the Hub V2: Surface Hub created an entirely new device category and we’re thrilled with the strong momentum we have seen across the globe. We’re working on V2 and will share more in the first half of this year. Now the question becomes what hardware... --- ### Modern SharePoint Web Parts -- Connectors Web Parts - Published: 2018-03-09 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-connectors-web-parts/ - Categories: SharePoint, SharePoint Online - Tags: Modern SharePoint Team Site, Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the new Connector Web Parts.     (more... ) --- ### Managing Windows Server with Puppet Part 3: Edit the Site Manifest - Published: 2018-03-09 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-server-with-puppet-part-3-edit-the-site-manifest/ - Categories: Windows Server - Tags: Compliance, Configuration Management, DevOps, PowerShell DSC, Puppet, Security, Windows - Article Type: How To In today's Ask the Admin, Russell Smith shows you to install modules on your Puppet master and how to open and edit the main site manifest using Secure Shell. In today's Ask the Admin, I'll show you how to install modules on your Puppet master and how to open and edit the main site manifest using Secure Shell.     In part 2 of this series, I showed you how to log into Puppet master using Secure Shell, accept the certificate from the Windows Server node, and how to test connectivity between agent and master. In part 3, I want to show you how to locate the site manifest file on Puppet master and edit it using the vi text editor. We’ll also install the Puppet on Windows module pack on the master. If you want to start at the beginning, check out part 1 of this series. Let’s get started. The first task is to log into Puppet master using Secure Shell. I’m going to use the beta OpenSSH client built into the Windows 10 Fall Creators Update but you can use any SSH client. If you need a reminder about how to log in to Puppet master using SSH, check out ‘Log in to Puppet Master using Secure Shell’ in part 2 of this series. Install the Puppet on Windows Module Pack All Puppet commands must be executed with root access. This can be achieved by adding sudo to the beginning of every command. But I prefer to change to sudo interactive mode like this: sudo -i You’ll need to confirm your password to continue. Before we can administer Windows Server using Puppet, we’ll need... --- ### Common Questions About Teams Guest Access > Office 365 now supports external access to Teams for guests with any email address. Office 365 questions, including Planner. - Published: 2018-03-08 - Modified: 2024-09-04 - URL: https://petri.com/common-questions-teams-guest-access/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, Office 365, Office 365 Groups, Planner, Teams - Article Type: How To Office 365 now supports external access to Teams for guests with any email address, a development that creates some questions in the minds of those who might want to add guests from non-Office 365 domains. In this article, I try and answer some common questions that you might have about guest access. Opening Up Teams for All Now that the fuss around Microsoft’s announcement that Teams supports guest access for any email account has subsided, it’s a good time to answer some of the questions raised. Microsoft says that the they have started to deploy the new capability, but it takes some time to upgrade software to every tenant across all Office 365 regions. Microsoft says that the new capability is now deployed for all Office 365 commercial (enterprise) tenants. Make sure that you refresh clients (open and close) before you try to add a new guest from a non-Office 365 domain. Tenants running in the US government sovereign cloud should be able to use Teams during 2018. ] Getting the Upgrade You might or might not be able to can add guests from consumer email domains and other services at this point. There’s no good way to check except to try to add a guest from a consumer email service. If that works, your tenant is updated. If not, you must wait a little longer. The good news is that you do not need to do anything more to configure Teams if you already took the steps to enable guest users from other Office 365 domains. Number of Guests A team can have up to 2,500 members. This is not a hard limit; it is more of a recommendation to ensure that members receive good performance when they access team resources. An Azure Active Directory group (an Office... --- ### Package Management in Windows Using Chocolatey - Published: 2018-03-08 - Modified: 2024-09-04 - URL: https://petri.com/what-is-chocolatey-and-should-i-use-it-in-my-environment/ - Categories: Windows Server - Tags: Chocolatey, Configuration Management, OneGet, PowerShell, Software Updates, Windows 10 - Article Type: Overview In today's Ask the Admin, Russell Smith looks at the Chocolatey package manager for Windows, what it does, and how it can simplify software deployment on servers and end-user devices. In today's Ask the Admin, I'll look at the Chocolatey package manager for Windows, what it does, and how it can simplify software deployment on servers and end-user devices.     Windows has long been a second-class citizen when it comes to package managers. In Linux, it is easy to install an application using apt-get or Yum from the command line. But until recently, there has been no built-in way to do the same in Windows. For end users, the Microsoft Store partly addresses the problem because apps can be installed in one click and updates are managed for the user. Legacy Win32 apps are a different story. Windows Installer Windows Installer became the standard technology for deploying software in enterprises and it is supported by Group Policy and Microsoft System Center Configuration Manager (SCCM). But unlike apt-get in Linux, it can’t be used to quickly install and update software from online repositories using a simple command. Windows Installer is complex to work with and isn’t as flexible as the package managers available for other operating systems. In the last few years, Windows has gained support for several third-party package managers, of which, Chocolatey is the most well-known. Created by a former Puppet engineer, Chocolatey is supported by most configuration management solutions, like Chef and Puppet. Based on NuGet, a free and open-source package manager designed for Microsoft . NET, Chocolatey uses PowerShell on the front end to make software installation easier. Chocolatey for Business The open source version... --- ### SharePoint -- Who’s In and Who’s out? > Shane Young gives you a rundown of what is in and what is out when it comes to SharePoint. Give it a read and join the conversation. - Published: 2018-03-07 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-whos-whos/ - Categories: SharePoint, SharePoint 2016, SharePoint Online - Tags: InfoPath, Powerapps, SharePoint, SharePoint Designer - Article Type: Opinion In the past, SharePoint administrators were forced to employ some ugly methods to get where our users wanted SharePoint to be. I have been doing a lot more hands-on customer work recently and it got me to thinking about all of the conversations I have been having. As luck would have it, both customers are SharePoint 2010 currently, with plenty of 2007 mode webs still running around. Sigh. Both are also very heavily customized but in different ways. One used lots of third-party web parts and one used a lot of (too much) elbow grease. Both used SharePoint Designer a ton. Neither is very happy with what they have today.     To be clear, I don’t judge either of them. They got to where they are today by responding to user demand and trying to make the best of the tools they had in front of them. It’s not uncommon for things that were a good idea at the time, like bell bottoms and butterfly collars, do not age well. In this case, it’s actually a good thing. In the past, we SharePoint administrators were forced to employ some ugly methods to get where our users wanted SharePoint to be. These methods feel old and outdated now because there are better, less unpleasant alternatives available to us. After reflecting on what they did and how they got there, I thought it would be fun to write a total opinion piece. Here are Shane’s thoughts on what features and functionality are good and which are not so much. There are exceptions to every rule but if you asked me... --- ### Microsoft Debuts New AI Platform in Windows 10 - Published: 2018-03-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-debuts-new-ai-platform-windows-10/ - Categories: Windows 10 - Tags: AI, News, Windows 10 - Article Type: News Microsoft is building a new AI platform for Windows 10 that the company hopes developers will use to make their applications, smarter. Microsoft loves to talk about their investments in AI and machine learning; nearly everything they announce is 'infused' with this technology. That is no different today as the company is announcing a new AI platform for Windows 10 that the company says will make it significantly easier for developers to take advantage of this technology inside their own apps. Quite simply called the AI platform in Windows 10, this tool-set will allow developers to use pre-trained machine learning models in their Apps on Windows devices. Microsoft is touting that this platform will provide apps with low-latency processing by using local capabilities to deliver real-time results. In addition, there will be reduced cost when coupled with Microsoft's Cloud AI platform as devs can build solutions that combine training models in the cloud with local hardware which will reduce the impact of having to stream large data sets. To help developers get started with this new platform, with Visual Studio Preview 15. 7, when adding an ONNX file to a UWP project, this will automatically generate a model interface for your app. What this means is that Microsoft is making it simpler to hook into AI/ML services while building your app as a default operation. The end goal with this new platform inside of Windows 10 is two-pronged; make it easier to build high-quality apps for Windows but also to introduce developers to Azure's ML/AI capabilities. Because this platform ties in natively to the company's cloud services for AI/ML, a natural... --- ### Microsoft Looks to Streamline Moving SQL and Open Source Apps to Azure - Published: 2018-03-07 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-looks-streamline-moving-sql-open-source-apps-azure/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News - Article Type: News Microsoft is rolling out new options to make moving their SQL Server and OSS apps to Azure to easier and more cost effective. It's not a secret that Microsoft wants everyone to run everything in Azure. The company recently announced new services for its government sector and today, they are looking to help move more workloads from on-premises to the cloud including open source applications. To help make the migration process easier, Microsoft is bringing several products out of preview and announcing a few new features that they hope will convince those who are thinking of moving and providing assistance those who have already decided, to migrate. The announcements from Microsoft's Developer Day are listed below: SQL Database Managed Instance is now available for public preview Azure Hybrid Benefit will now support SQL Server Azure Database Migration Service is expanding to support Database Managed Instance Azure now offers built-in support for Apache Tomcat and OpenJDK One interesting thing to note is that for Azure Hybrid Benefit, customers can move on-premises SQL Server licenses with active Software Assurance to Managed Instance. Additionally, the SQL Server Integration Services licenses to Azure Data Factory can help save customers 30%, according to Microsoft. The goal of these announcements is to make it easier to move to Azure without having to make any compromises in your software selection. The hope is to have consistency across on-premises and cloud service as the company knows that for some customers to be able to move to the cloud, they also have to support every type of workload and application that is used locally. While it feels like we are... --- ### How a Free Version of Teams Might Work > Microsoft might be working on a free version of Teams to take on Slack. As it turns out, not many technical changes are needed. Office 365 - Published: 2018-03-06 - Modified: 2024-09-04 - URL: https://petri.com/technical-aspects-free-version-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Office 365, OneDrive, Outlook, Slack, Teams - Article Type: Opinion Microsoft might be working on a free version of Teams to take on Slack. As it turns out, not many technical changes are needed to transform the full enterprise version of Teams as available inside Office 365 into a limited version that Microsoft can make available for free, leveraging its existing consumer office services like Outlook and OneDrive. Teams Takes On Slack Brad’s scoop about Microsoft preparing a free version of Teams to take on Slack got me thinking about the technical shape of such a product and how it might differ from the enterprise version available to Office 365 tenants. As Brad explains in his article, Microsoft is aiming at the free version of Slack. I assume that the idea is to block the route companies take from using the limited free version to buying the full paid edition of Slack. Since the introduction of Teams in November 2016, Microsoft has competed head-to-head with Slack, but has lacked an introductory version. Anyone who wants Teams must have an Office 365 tenant and license every user. Open to All Microsoft's announcement last week that they Teams now supports external access from any account is really important to their ability to deliver a free Teams client. The free version won’t depend on Azure Active Directory as the authoritative directory or Office 365 Groups to manage team membership. Instead, I could see a scenario where someone with an MSA (Microsoft) account (connected to any email address) signs up to create a team and then nominates other members, each of which is identified by an email address. Teams sends invitations to those addresses and when the addresses are redeemed, connects the addresses to the team. Behind the scenes, the collection of members might be represented by a group in the MSA directory. Limited Functionality for Free Teams Microsoft is... --- ### Review: Surface Pro with LTE - Business in the Front, Data in the Back - Published: 2018-03-06 - Modified: 2024-09-04 - URL: https://petri.com/review-surface-pro-lte-business-front-data-back/ - Categories: Hardware - Tags: Surface, Surface LTE - Article Type: Review Microsoft has a new flavor of its Surface Pro and I have been using the device for the past week, here's what you need to know. Microsoft's Surface Pro line of tablets is very likely the most successful Surface product on the market. While the Studio, Book, and Laptop are all solid pieces of hardware, the Pro 3 and each iteration after has proven to be popular with a wide variety of users. The Pro, which is quickly approaching its one-year anniversary date, is getting a new flavor with LTE Advanced baked in. If this sounds a bit familiar, that's because this iteration has been available to business users since December but a consumer version is arriving in May. While I'm sure there are business customers rolling out Books or possibly the Laptop, the Pro line has by far seen the widest adoption among corporate users which is where the addition of LTE is needed as most consumers typically tether rather than needing a dedicated LTE tablet. Yes, I know there are exceptions to consumers using LTE models but for field agents who need connectivity to the home base, it's easier to have them deployed with connected hardware instead of tethering to personal devices and dealing with the messiness of reimbursements for business vs personal data used. Available online and in stores, you'll be able to grab the LTE variety in one SKU: 256GB/Intel Core i5/8GB RAM - $1,449 Because nothing else about this hardware has changed besides the addition of LTE, for a more in-depth review, head on over to my post where I reviewed the device after six months of usage. Which... --- ### Microsoft's Bringing Azure Stack to Government Customers - Published: 2018-03-05 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-azure-stack-government-customers/ - Categories: Microsoft Azure - Tags: Azure, Government, Microsoft, News - Article Type: News Microsoft has announced several new features and functionality for its Government customers including Azure Stack. This week, in Washington D. C, the Government Technology Summit is being held and as you would expect, Microsoft is there making several announcements. The company is heavily involved in helping to secure sensitive data for governments around the globe as well as locally and the company is looking to expand their footprint in this segment. Announced today is Microsoft 365 Government, this is, as the name suggests, the Microsoft 365 platform for the Government. This product brings Office 365, with security and device management capabilities for Windows 10 and mobile devices in an intelligent and secure solution for governments to meet compliance standards and the needs of their citizens. If you need a refresher on Microsoft 365, take a look at this post as it details what this product offers. Microsoft is also bringing Azure Stack for Government to life; Azure Stack is Microsoft's Hybrid IT solution that makes it significantly easier to join on-premises and cloud services together with a software fabric. In addition, Dynamics 365 now has the required security and compliance functionality for government use so that customers can customize, develop, and deploy applications that work online and offline. Along with the new services, Microsoft will soon be turning on two new Azure Government Secret regions as well. With these two new data centers, Microsoft will now have a total of eight regions that are enabled for storing data that is classified as Secret. This is on the tip of the iceberg of the announcements... --- ### Deploying Azure DevTest Labs > This post show you how to deploy an Azure DevTest Lab in the resource group of your choice, with the virtual network of your choice. - Published: 2018-03-05 - Modified: 2024-09-04 - URL: https://petri.com/deploying-azure-devtest-labs/ - Categories: Microsoft Azure - Tags: Azure, development, DevTest Labs, Resource Group, Sandbox, test, Virtual Network - Article Type: How To Aidan Finn walks you through the step-by-step instructions for deploying an Azure DevTest Lab in the resource group of your choice, with the virtual network of your choice. In this post, I will walk you through the step-by-step instructions for deploying an Azure DevTest Lab in the resource group of your choice, with the virtual network of your choice.     Create a Resource Group You had better get ready for resource group shock when you deploy DevTest Labs! When you create a lab, the default process will create a randomly named resource group for the lab. You can take some control over this process if you wish. Create a resource group with the name you want, in the region and subscription of your choosing. Create a New Resource Group in the Azure Subscription   You might even consider deploying an additional subscription in your tenant for this DevTest lab. Why would you do that? Because you will end up with lots of new, randomly named resource groups when users start to deploy virtual machines in the lab. This is a crude mechanism that allows Azure to apply unique permissions to each user’s virtual machines. Create the DevTest Lab My preference is to create the DevTest Lab in the resource group that I have already created; otherwise, you have no control over the resource group name. Browse into the resource group in the Azure Portal and click + Add. Search for and click DevTest Labs and then click Create. You will only be asked for a few bits of information: Lab Name: The name of the new lab. Subscription:... --- ### How to Connect Azure Web Apps To On-Premises > In this post, I will explain & compare the different ways that an Azure app service or web app can integrate with on-premises or remote networks or systems. - Published: 2018-03-05 - Modified: 2024-09-04 - URL: https://petri.com/connect-azure-web-apps-premises/ - Categories: Microsoft Azure - Tags: App Services, App Services Plan, ASE, Azure, Azure Services Environment, ExpressRoute, Hybrid Connection, Hybrid Networking, On-Premises, Point-to-Site VPN, Site-to-site VPN, Virtual Network, VNet Integration, VPN, Web Apps - Article Type: Overview Aidan Finn explains how app services, or web apps, can be connected to external users or services. In this post, I will explain how app services, or web apps, can be connected to external users or services. No App Service Is an Island The purpose of an app service is to allow someone or something to connect to it, or for it to connect to something, and do some service. Internal users or external clients need to connect to a line-of-business (LOB) application interface. Partners or suppliers need to connect to an application via an API. Or an application might need to integrate with some external service, such as a database. Azure App services allow you to have external connectivity. Of course, an app service can be accessed across the Internet. We take that for granted. But what if you don’t want to share your service for all to see? What if IP filtering or x. 509 security is not enough? There are some alternatives that you can use in your architecture. VNet Integration A Standard, Premium, or Isolate app service plan offers the ability for an app service to connect with a virtual network via a point-to-site VPN. The virtual network must have a VPN gateway that is Basic/Dynamic, VpnGw1 or a higher size, and configure for point-to-site connectivity. Azure App Service VNet Integration Once an app service is connected to a virtual network, you can: Enable the app service to talk with Azure virtual machines on that virtual network. Hop to on-premises via site-to-site VPN connections also... --- ### Paul Thurrott's Short Takes: March 2 - Published: 2018-03-02 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-2/ - Categories: Hardware, Microsoft 365, Mobile - Tags: News - Article Type: Overview Because March showers bring the Apocalypse, this edition of Short Takes looks at Microsoft helping Intel to ship firmware updates, Microsoft and Google going after Slack, a new boss for Cortana, and so much more. I think I can, I think I can... Because March showers bring the Apocalypse, this edition of Short Takes looks at Microsoft helping Intel to ship firmware updates, Microsoft and Google going after Slack, a new boss for Cortana, and so much more. Microsoft helps distribute Intel's Spectre and Meltdown patches One of the weird side-issues with Intel needing to patch its CPUs to protect against the Spectre and Meltdown vulnerabilities is that the microprocessor usually doesn't have a direct relationship with any of its users. So it has to rely on PC makers to ship these updates to their customers, and then hope that those people even pay attention to the often hokey software updaters that the PC makers use. So Microsoft has stepped in, and it is now providing yet another way for PC users to access Intel's firmware patches. Via Windows Update, right? Right? ? Nope: You have to manually download the patches from the Microsoft Update Catalog ... and know exactly which version(s) you need. Yes, this is aimed mostly at businesses, but come on. This needs to be immediate and automatic for everyone. "Could Microsoft be working on a foldable Surface tablet? " If you don't know, don't write a story. Microsoft Teams gets (somewhat) serious about competing with Slack While Microsoft Teams is correctly lauded for coming to market as a fairly full-featured product, it has, to date, lacked the one thing that could make it a Slack killer: The... --- ### What Is App Service Environment? > In this post, I will explain how the isolated Azure App Services Environment works, and why you would deploy it, despite the apparent high cost. - Published: 2018-03-02 - Modified: 2024-09-04 - URL: https://petri.com/app-service-environment/ - Categories: Microsoft Azure - Tags: App Services, App Services Environment, App Services Plan, ASE, Azure, External ASE, Hybrid Network, Internal ASE, Isolated, Isolated Tier, Virtual Network, VPN, Web Apps - Article Type: Overview Aidan Finn explains how you can run Azure App Services in an isolated or virtual network-connected deployment and why, despite the price, it was the right choice for some projects he has been working on. In this post, I will explain how you can run Azure App Services in an isolated or virtual network-connected deployment and why, despite the price, it was the right choice for some projects I’ve been working on.     Normal App Services When you deploy an app services plan (a set of under-the-cover virtual machines) to host one or more app services in the Free, Shared, Basic, Standard, or Premium Tiers, then the infrastructure that your app services are deployed into are multi-tenant. This means that the virtual machines that make up your app services plan are in a shared pool. Those virtual machines might be dedicated to you, but they come from a shared environment. A set of transparent and hidden front-end servers (offering the load balancing functionality) are shared between all of the tenants (customers) using the virtual machines in this app services environment. And finally, because you are in a multi-tenant environment, the app service plan is not connected directly to a virtual network. Although, you can connect your app services to a virtual network via a P2V VPN connection and use this to route externally via a site-to-site VPN connection. The goal of app services is to make things easy for you. But easy means making some small compromises. For a small number of customers, these compromises are too much. And it is because of this, that Microsoft launched the Isolated tier app services plan, which allows you to deploy your own app services... --- ### Is Azure SQL Highly Available? > This post will explain how Azure SQL uses the underlying Service Fabric to implement primary + secondary AlwaysOn high availability or fault tolerance. - Published: 2018-03-02 - Modified: 2024-09-04 - URL: https://petri.com/azure-sql-highly-available/ - Categories: Microsoft Azure - Tags: AlwaysOn, Azure, Azure DB, Azure SQL, Clustering, Fault Tolerance, HA, High Availability, Microservice, replication, Service Fabric - Article Type: Overview Is Azure SQL highly available? Spoiler alert... Yes, Azure SQL has automated high availability. In this post, I will answer the question: is Azure SQL highly available? Spoiler alert! The answer is, yes, Azure SQL has automated high availability. Keep reading to learn how this is accomplished and what this means.     Attitude Attaining higher levels of service availability is an attitude thing. You either want to do it for real or you’re not really interested. I have worked in an environment with a 100 percent service level agreement (SLA) that was more of a marketing tool than a lock-down promise; attaining even 99. 99 percent high availability is hard and expensive. The reality is that things go wrong. Even in the cloud, things go wrong. At least in the cloud, the best people are fixing it with the best available tools. Operating systems crash. Patches don’t behave as expected when they’re deployed. Humans pull the wrong cable. And scheduled reboots happen. I like the attitude of the Azure SQL group, as documented in their document on high availability. Sure, Azure SQL can give you a 99. 99 percent SLA but if you fall into the 0. 01 percent, then you’re not happy. And you’ll tell everyone you know about it. The Azure SQL team understands that data availability is critical to its customers, so they have engineered a platform that aims to ensure that the database remains online as long as data center does (see Disaster Recovery later in this post). Service Fabric The key to understanding how Azure SQL remains... --- ### Managing Windows Server with Puppet Part 2: Log Into Puppet Master, Accept Node Certificate, and Test Connectivity - Published: 2018-03-01 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-server-with-puppet-part-2-log-in-to-puppet-master-accept-node-certificate-and-test-connectivity/ - Categories: Windows Server - Tags: Compliance, Configuration Management, DevOps, Puppet, Security, Windows Server - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to log in to Puppet master using Secure Shell, accept the certificate from the Windows Server node, and how to test connectivity between agent and master. In today's Ask the Admin, I'll show you how to log in to Puppet master using Secure Shell, accept the certificate from the Windows Server node, and how to test connectivity between agent and master.     In the first part of this series, I showed you how to deploy a Puppet Enterprise master server in Azure and provision a Windows Server virtual machine with the Puppet agent installed and configured to work with the Puppet master. Let’s pick up where we left off. The first step is to log into the Puppet master. There are two ways to log into the master. Most of the time you will use Secure Shell (SSH). But there’s also the Puppet Console, which you can open in a browser. The console provides a dashboard that gives an overview of the status of all your nodes. You can also perform some basic tasks in the console. Log Into Puppet Master Using Secure Shell Before using Secure Shell (SSH), you’ll need an SSH client. If you are using the Windows 10 Fall Creators Update, there’s a beta client built in to the OS. To install it, open a PowerShell prompt with administrator privileges and run the command below: Add-WindowsCapability -Online -Name OpenSSH. Client~~~~0. 0. 1. 0 If you are using another version of Windows, you can download Putty, which is the most commonly-used free SSH client. To log into the Puppet master, open a command prompt and type ssh, followed by the username of the... --- ### What Is Windows 10 Fast Startup And How to Disable It - Published: 2018-03-01 - Modified: 2024-09-04 - URL: https://petri.com/how-to-disable-windows-10-fast-startup-and-why-you-might-want-to/ - Categories: Windows Client OS - Tags: Windows 10 - Article Type: How To In this Ask the Admin, Russell Smith shows you how to disable Fast Startup, explains what it does, and discusses why you might want to disable it. In this Ask the Admin, I'll show you how to disable Fast Startup, explain what it does, and discuss why you might want to disable it.     Fast startup was introduced in Windows 8 as a way to improve boot times. It works by putting your PC into a state that’s a mix of shutdown and hibernation instead of completely shutting down the PC. This is sometimes referred to as ‘hybrid shutdown’. If fast startup is enabled, Windows logs off any active user sessions and saves the kernel session to disk when shutting down. This allows Windows to boot faster compared to when performing a full system initialization. For more detailed technical information about fast startup and the performance benefits, see Microsoft’s website here. Different Phases Between Cold Boot and Fast Startup (Image Credit: Microsoft) In most cases, fast startup doesn’t cause any problems. But there are a couple of situations where you might consider disabling it. The first is enterprises where Wake-on-LAN is used to service computers. Wake-on-LAN doesn’t work if fast startup is enabled. The second reason to disable fast startup is that Group Policy and preference settings that are targeted during shutdown and startup aren’t applied when users shut down and start up their PCs. Settings are only applied during a reboot. If you want to disable fast startup in your organization, you’ll need to change the HiberbootEnabled registry value to 0. There’s no Group Policy setting for disabling fast... --- ### Teams Now Supports Guest Users from Non-Office 365 Domains > Six months after allowing users from other Office 365 domains to access Teams as guest users, Microsoft now supports access from any email address. - Published: 2018-02-28 - Modified: 2024-09-04 - URL: https://petri.com/teams-supports-guest-users-office-365/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, Azure B2B Collaboration, MSA, Office 365, Office 365 Groups, Teams - Article Type: News Six months after allowing users from other Office 365 domains to access Teams as guest users, Microsoft now supports access from any email address. You can now invite people to join teams from Gmail, Yahoo! Mail, Yandex, Outlook.com, or any other email system. The same basic Azure B2B collaboration flow is used to invite guests and redeem the invitations, so it should be a well-worn path for administrators at this stage. An Open World of Guests for Teams When Microsoft introduced the first iteration external (guest) access for Teams in September 2017, an important limitation existed. Guests could only come from Azure Active Directory domains with Office 365. Although there are some 130 million active Office 365 users, that’s still a subset of the folks that you might want to add as a guest user, including those who use other systems like Gmail or Yahoo! The lack of support for non-Office 365 domains surprised many because Office 365 Groups support external access from these domains, and Teams uses Office 365 Groups. However, the connection between the two applications means nothing when it comes to controlling guest user access to resources. In fact, guest access to Office 365 Groups is based on an older SharePoint model that has been around for years and it only allows access to SharePoint resources. Teams is a very different application, so Microsoft needed to do extra work to make guest access safe and secure for these domains. Now, maintaining the rapid cadence of updates Microsoft makes to Teams, you can add guest users with any email address to Teams. You can read Microsoft’s blog post on the topic to learn details of supported clients (for instance, you cannot invite guest users or redeem invitations on Teams mobile clients, while Safari is still a no-go browser for Teams). In the rest of this article, I look at how a guest user with one of the newly-supported email... --- ### Everything You Need to Know About Windows –- February 2018 Edition - Published: 2018-02-28 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-february-2018-edition/ - Categories: Windows Client OS - Tags: Microsoft, Windows, Windows 10, Windows Server - Article Type: Overview This month is all about Redstone 4, always-connected PCs, and changes to the SKU lineup and licensing. This month is all about Redstone 4, always-connected PCs, and changes to the SKU lineup and licensing.     First Always-Connected Windows 10 on ARM Device Coming March 9th Microsoft first demonstrated win32 user-mode emulation on ARM at the tail end of 2016. Roll forward more than two years, and the first always-connected Windows 10 on ARM PC is available for pre-order at $1000. It will ship March 9th. The HP Envy X2 is a 2-in-1 tablet promising up to 22 hours of battery life, 1000 hours connected standby, integrated 4G LTE modem, Windows 10 S, USB-C, 4GB RAM, Qualcomm Snapdragon 835 processor, SIM-card slot and eSIM support. This month, Microsoft published a list of limitations for Windows 10 on ARM but then quickly pulled it. But most of this information was already in the public domain. Here is the list: Only ARM64 drivers are supported x64 apps are not supported OpenGL later than 1. 1 and hardware-accelerated OpenGL aren’t supported Apps that customize the Windows experience may not work correctly Apps that assume Windows 10 on ARM is Windows Mobile may not work correctly Hyper-V is not supported Intel 5G-Connected Windows 10 PCs Coming Next Year Last month at CES, Intel announced three of its own always-connected PCs. Including an Intel version of the HP Envy X2. But this month at Mobile World Congress in Barcelona, Intel revealed that it will be bringing 5G-connected Windows 10 PCs to market in the second half of 2019. Redstone... --- ### Modern SharePoint Web Parts Updates -- Twitter Web Part - Published: 2018-02-28 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-twitter-web-part/ - Categories: SharePoint, SharePoint Online - Tags: Modern SharePoint Team Site, Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the new Twitter Web Part.     (more... ) --- ### Office 365 Updates Keep on Piling Up > Office 365 keeps on changing, which makes it very hard to keep up with detail. The big stuff gets covered in articles but small changes might be overlooked. - Published: 2018-02-27 - Modified: 2024-09-04 - URL: https://petri.com/office-365-updates-feb-2018/ - Categories: Microsoft 365, Office - Tags: Azure Information Protection, Classification, data governance, Exchange Online, GDPR, mailbox auditing, Office 365, Planner, Teams, Yammer - Article Type: News Office 365 keeps on changing, which makes it very hard to keep up with detail. The big stuff gets covered in articles but small changes might be overlooked. In this post, Tony looks at some of the changes that happened in the last week or so that you might have missed, including Teams, Planner, OneDrive, Yammer, and Exchange. And preparation for GDPR... Random Office 365 Developments Those who know my writing style might consider me verbose. I think of it as “detailed,” meaning that I like to discuss stuff in some depth. In any case, Microsoft makes so many changes in Office 365 now that it is hard to discuss everything in a full-size article. To address the knowledge gap, here’s some brief notes about recent happenings in Office 365. Teams and Planner Teams and Planner are both children of the cloud, so you’d expect them to be tightly integrated. Planner got some recent updates, which were nice, but now some updates for the Planner/Teams integration have shown up. I like the way that you can now see all the plans available to the Teams to which you belong (Figure 1), exposed through More options (... ) menu in the navigation pane. Figure 1: Listing the plans available to Teams (image credit: Tony Redmond) I also like the intelligent way that Teams allows you to remove a plan from a channel without disturbing the underlying Office 365 Group and any of its resources. Good work! Planner’s Complicated Link But then Planner spoils things with a convoluted support article describing how to disable Outlook calendar sync for your tenant. I haven’t seen the ability to use an iCalendar link to synchronize tasks to Outlook show up in Planner yet, so the support article might be an early version. Nevertheless, it allows me to chide Microsoft and say that... --- ### Google Launches AdSense Auto Ads - Published: 2018-02-27 - Modified: 2024-09-04 - URL: https://petri.com/google-launches-adsense-auto-ads/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Ads, AdSense, Auto, Google, News - Article Type: News In a recent post on the Google AdSense blog, Google announced AdSense Auto Ads, the firm's latest AdSense offering that uses machine learning to determine the best type of ad and the best location for that ad to be displayed on a webpage. In a recent post on the Google AdSense blog, Google announced AdSense Auto Ads, the firm's latest AdSense offering that uses machine learning to determine the best type of ad and the best location for that ad to be displayed on a webpage.     With AdSense Auto Ads, publishers only have to include one snippet of code on its webpages. The service will then crawl through these pages and not only find locations that are optimal for serving ads, but also determining the ad type that would provide the best user experience. Like with the traditional version of AdSense, users can choose from a variety of ad options that they may like to have served on their webpages. This includes text and display ads, in-feed ads, in-article ads, matched content, anchor ads, and vignette ads. Should a publisher wish to modify the type of ads that are being displayed, they can easily toggle the various ad types on or off from their AdSense account settings. Publishers can also use Google's new Advanced URL settings feature to choose which type of ads appear on the various webpages that make up their website. For publishers who currently have manually placed ads on their websites by including AdSense code where they want ads to appear, there is no need to remove this code. Auto Ads takes all AdSense ads into account when deciding what type of ads to display, along with where the ads should be placed. While... --- ### Everything You Need to Know About Azure Infrastructure -- February 2018 Edition > This post is a summary of the changes and announcements in Microsoft Azure infrastructure services from the month of February 2018. - Published: 2018-02-27 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-azure-infrastructure-february-2018-edition/ - Categories: Microsoft Azure - Tags: 70-533, ASR, Azure, Azure Backup, Azure Files Azure File Sync, Azure Site Recovery, Azure SQL, Backup, BGP, Disaster Recovery, DR, Gateway, Managed Disks, Routing, Service Endpoints, storage, Storage Account, Virtual Network, VNET, VPN - Article Type: Overview Aidan Finn summarizes everything that was announced or changed in the world of Azure infrastructure. Another month, another truck load of Azure news to summarize. This article will list summarize everything that was announced or changed in the world of Azure infrastructure. This has been a pretty quiet month on the infrastructure side of things, even though the data/PaaS parts of Azure were very busy.     General Availability: Virtual Network Service Endpoints and Firewalls for Azure Storage Technically, this is a January story, but it came out on Jan 31st after my January summary article, so some services, such as Azure Storage or Azure SQL, have only been available as “Internet” services. That means, if you deployed a virtual machine and tried to connect an app in that machine to Azure’s storage or database services, that traffic went across the Internet. Some customers won’t like that even if the traffic is encrypted. Virtual Network Service Endpoints enable you to: Enable service endpoints on a virtual network for Azure SQL or storage accounts. Connect Azure storage accounts or Azure SQL servers (logical configurations) to a virtual network. Route traffic from virtual machines to a storage account or an Azure SQL database across the virtual network with complete privacy. Accessing Azure Services Over a Virtual Network Using Service Endpoints   This will be useful in lots of scenarios, including Azure Service Environment (ASE), the implementation of private Isolated tier Application Services Plans in Azure, which I’ve written some articles about recently (and should appear in coming weeks). Article... --- ### Everything You Need to Know About Office 365 -- February 2018 Edition > Get a rundown of all of this month's news from O365 including updates to iOS apps, Teams goes external, governance, and more. - Published: 2018-02-26 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-office-365-february-2018-edition/ - Categories: Uncategorized - Tags: Office 365 news - Article Type: News Shane Young shares a monthly dose of Office 365 information. Hello friends. Me again with your monthly dose of Office 365 information. Good news this month, instead of snark, I went with hyperbole as appropriate. Guessing you know there weren’t 1 million new features this month, so I think it will be okay. As always, I would love to hear from you in the comments on things you would like to see me cover differently, why you disagree with my interpretations, or how great I am. All comments welcome. Shane     New Features Make Doing Real Work on Your iPod and iPhone Awesome Let’s be honest, as we bounce from meeting to meeting, hauling around our laptops is no fun. So most of us take with us either our phone or the real productive take a tablet. Good news! Microsoft got the memo and is this article, Jeff Teper announced about a million new features for the iOS apps of Word, Excel, PowerPoint, and OneDrive with the OneDrive app getting the majority of the love. I am sure you already have the apps (darn forced updates) but make sure you play around with the new integrations, drag and drop, and the ability to preview over 130 file types. If you do real work with your fruit devices, this was an awesome update. Teams Takes Another Big Swing at Slack Interesting theory crafting. Brad Sams, after digging around in the new developer preview of Teams has come to the conclusion that a free tier is coming down the... --- ### Everything You Need to Know About SharePoint -- February 2018 Edition > Do you need a quick overview of the news for SharePoint Online and on-premises this month then this is the article for you from SharePoint MVP Shane Young. - Published: 2018-02-26 - Modified: 2024-11-19 - URL: https://petri.com/everything-need-know-sharepoint-february-2018-edition/ - Categories: SharePoint, Uncategorized - Tags: SharePoint News - Article Type: News Shane Young shares a monthly break down of the content you need to know and his two cents on what you should do with it Hey, it is Shane, your favorite SharePoint MVP, with a monthly break down of the content you need to know and my two cents on what you should do with it. Love it or hate it, I would love to hear from you in the comments on what I can do to make these articles better. Shane     What the Heck Is Modern SharePoint? That is a great question that thankfully I haven’t gotten directly. It turns out that some of my friends over at Microsoft get this question on a regular basis, so much so, that one of them, Bob German, decided to write a blog post on it. It is a great read even if you already know the answer. Why? One, it is a reminder of where we came from and also a reminder that while us die-hard SharePoint nerds love this stuff, the casual user doesn’t. So, looking at the information Bob outlined is a good guide for us to help with that conversation when we are selling users, especially on-premises users, the beauty and power of SharePoint Online. Give it a read and tell Bob he did a good job. Are You Still Running SharePoint 2007, 2010 or 2013? This month’s community content comes from me. Whoops. So far this year, the bulk of my customer work has been migrating SharePoint 2010 to something not so old. One client is going to 2016 on-premises with their eye on going to the cloud... --- ### Microsoft's Preparing a Free Version of Teams to Take on Slack - Published: 2018-02-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-preparing-free-version-teams-take-slack/ - Categories: Microsoft Teams - Tags: Microsoft, News, Teams - Article Type: News Microsoft is preparing to offer a free SKU of Teams with the long-term goal of hoping that these users will upgrade to Office 365 to unlock all the features. Microsoft has been investing heavily in Teams and the company is showing no signs of slowing down. Last year, the company announced that Skype for Business would be going away with Teams taking the lead role for the company's communication platform and now it looks like a free offering is on the agenda as well. In the latest developer preview of Teams, there are several references to a freemium tier of the platform. While this may seem like it is simply part of the upcoming support for MSAs, one line from the dev preview specifically states that this is for non-guest MSAs. In short, it looks like Microsoft is going to offer Teams for free to those who don't have an Office 365 account. The reasons for why Microsoft would do this is quite simple, get them hooked on the platform and then upsell Office 365. Another line from the dev preview states "Storage exceeded... Admin action to upgrade to paid version" which means that there will be limitations on the free iteration and to unlock all the functionality of Teams, you will need Office 365. While I don't know explicitly what functionary will be limited, it's not too hard to make an educated guess. For instance, I would expect that the total number of people allowed per team and into a single Teams org would have a low ceiling for users and sharing files could be limited in size as well. Further, the use of third-party plug-ins... --- ### Paul Thurrott's Short Takes: February 23 - Published: 2018-02-23 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-23/ - Categories: Hardware, Mobile, Networking, Security, Windows 10, Windows Client OS - Tags: News - Article Type: Overview Because he started it, this edition of Short Takes looks at HP's PC resurgence, Intel's next mobile setback, Always Connected PCs, the limits of Windows 10 on ARM, and much more. Because he started it, this edition of Short Takes looks at HP's PC resurgence, Intel's next mobile setback, Always Connected PCs, the limits of Windows 10 on ARM, and much more. HP surges on healthy PC sales Hold on to your butts, folks: I bet no one saw this one coming. When HP split into two firms, one focused on cloud computing (the future) and one focused on PCs (the past), most probably expected the former to be the more successful. Nope. HP Enterprise, the firm that focuses on the cloud, struggled out of the gate, but has since settled down, with the firm announcing net income of $1. 4 billion on revenues of $7. 7 billion in the most recent quarter. But check this out: HP Inc. , the PC company, also posted its quarterly results this week, and it had even better numbers: net income of $1. 94 billion on revenues of $9. 44 billion. So how did this happen? Easy: HP Inc. is winning in a market that many thought was dead. It is the world's largest maker of PCs once again, thanks to a healthy mix of premium and more affordable offerings, most of which come with leading-edge designs and technology. And the results speak for themselves: Revenues from PCs are up 15 percent year-over-year, and total unit growth is 7 percent. Impressive. "Microsoft Design Decisions Caused this Mess" If only I had a dollar for every time I've said that. Intel is partnering with Microsoft, PC makers to... --- ### Managing Windows Server with Puppet - Published: 2018-02-23 - Modified: 2024-09-05 - URL: https://petri.com/managing-windows-server-with-puppet-part-1-configure-puppet-master-and-bootstrap-the-puppet-agent-in-windows-server/ - Categories: Windows Server - Tags: Azure, Configuration Management, DevOps, PowerShell Desired State Configuration, Puppet, Windows Server - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to set up Puppet Enterprise Master in Azure and provision Windows Server so that it bootstraps with the Puppet agent installed.   In today's Ask the Admin, I'll show you how to set up Puppet Enterprise Master in Azure and provision Windows Server so that it bootstraps with the Puppet agent installed and is configured to talk to your master. In this article, I’m going to look at managing Windows Server using Puppet and PowerShell DSC. If you need a primer on Puppet and configuration management principles, read my recent article PowerShell DSC and Puppet — Why It Is Not Either/Or on Petri. In the article, I explain some DevOps principles pertaining to configuration management and why Puppet and PowerShell DSC are ideal partners when it comes to Windows Server config management. Puppet Architecture Puppet uses a client/server model or can be used in a stand-alone architecture. But for the purposes of these articles, I will discuss the most commonly deployed architecture, the client/server model. Puppet compiles catalogs that describe the desired state of each node. Catalogs are like the . mof files used by PowerShell DSC. Puppet automatically creates catalogs from files (manifests) that are written in Puppet’s own Ruby-based language. These files are built up from resources. Below you can see a resource that ensures the Windows time service is running: service { 'w32time': ensure => 'running' } Resources can be grouped together to form classes, which might describe everything needed to configure a service or app. Nodes are devices where the Puppet agent is installed. You can target sets of nodes with different classes using node classification. Puppet... --- ### Google Cloud TPUs Now Available in Beta - Published: 2018-02-23 - Modified: 2024-09-04 - URL: https://petri.com/google-cloud-tpus-now-available-beta/ - Categories: Cloud Computing - Tags: Cloud, Google, machine learning, News, performance, TPU - Article Type: News In a recent post on the Google Cloud Platform blog, Google announced the beta availability of their new Cloud TPUs, which were designed to speed up various machine learning processes that use the TensorFlow framework. In a recent post on the Google Cloud Platform blog, Google announced the beta availability of its new Cloud TPUs, which were designed to speed up various machine learning processes that are programmed using the open-source TensorFlow framework.     These cloud-based TPUs, or tensor processing units, can provide a high level of performance, up to 180 teraflops of floating-point performance with 64GB of RAM. This makes it easier for those working with machine learning algorithms, frameworks, and processes to get things done quicker and more efficiently than what they may have been previously used to. Given that configuring and using a Cloud TPU is easier than setting up a traditional high-performance machine or supercomputer, users are able to fine-tune their machine learning processes much quicker than perhaps they were able to on native hardware. With the ability to quickly set up a Cloud TPU, users can use multiple units for training different variants of the same machine learning model, thus saving organizations time when it comes to training and then choosing the best model variant. Google also enables users to use a custom Google Compute Engine VM to access its network-attached Cloud TPUs. What’s more is that Google will be providing users with the ability to connect multiple Cloud TPUs together into what the company refers to as a “TPU pod”. Depending on how many TPUs are linked together, a TPU pod is capable of delivering multiple petaflops of floating point performance. While this feature... --- ### Intel's Bringing 5G to Windows 10 PCs Next Year, Here's Why It Matters - Published: 2018-02-22 - Modified: 2024-09-04 - URL: https://petri.com/intels-bringing-5g-windows-10-pcs-next-year-heres-matters/ - Categories: Hardware - Tags: 5G, Intel, News, Windows 10 - Article Type: News The next generation of wireless connectivity is launching soon and next year, Windows 10 PCs with 5G will be released by various OEMs. Intel is announcing today, along with Dell, HP, Lenovo, and Microsoft, that they will be bringing 5G connectivity to Windows 10 PCs next year. The company is making this announcement ahead of Mobile World Congress in Barcelona but seeing as we already have 4G laptops, why does this matter? While 5G is yet another jump in wireless connectivity, it will bring with it the capability to do mass data-intensive workloads while outside the office. Yes, LTE offers excellent speeds but limitations in bandwidth are quickly causing congestion issues whereas 5G will help alleviate many of these problems. The ability to download a several hundred megabyte file in seconds while sitting in the back of a car or being truly untethered with a wireless headset that is streaming video content is not currently possible. Starting later this year, many companies like Verizon and AT&T will begin rolling out upgrades to their network to bring 5G to life in the United States. But the real benefit is the increased upload and download speeds these new laptops will provide as we have all been in the scenario where we "wait to get back to the office" to download something as you know it will go faster... 5G looks to bring the 'office' speed, everywhere. The future of wireless connectivity looks fantastic and the first iterations of this technology will arrive sooner, rather than later. Of course, the big unknown here is how will the cellular networks use this new technology to increase... --- ### Office 365, GDPR, Data Spillage, and the Right to be Forgotten > GDPR is coming and Office 365 tenants need to be prepared to deal with topics like data spillage and the right to be forgotten. PII data removal. - Published: 2018-02-22 - Modified: 2024-12-03 - URL: https://petri.com/office-365-gdpr-data-spillage/ - Categories: Microsoft 365, Office - Tags: data spillage, Exchange Online, GDPR, Office 365, OneDrive for Business, SharePoint Online, Teams - Article Type: Opinion GDPR is coming and Office 365 tenants need to be prepared to deal with topics like data spillage and the right to be forgotten. It's easy to see how to remove someone's PII from Exchange mailboxes and SharePoint Online, but you might have a bigger challenge dealing with offline data in PSTs and OneDrive-synchronized folders. More to ponder... GDPR Coming Soon As the May 25 introduction of the EU’s General Data Protection Regulations (GDPR) approaches, companies are busily getting their ducks in a row to handle their GDPR responsibilities. Technology suppliers like Microsoft offer help like the Information Protection Guide for Office 365 or the Compliance Manager. These are generic tools that give Office 365 tenants a framework to work within, but at the end of the day, the devil is in the detail and companies need to understand where potential data problems lurk in their IT systems. PII in Office 365 The move to Office 365 means that companies store a lot of PII data in cloud databases. To be fair to Microsoft, they do their best to master detail on behalf of customers and communicate that information. A good example is the long support article covering data spillage into the Recoverable Items folders of user mailboxes. I bet you never knew that data spillage can happen in mailboxes. As defined in the article, this means that Office 365 unintentionally keeps email with sensitive information because one or more holds exist on mailboxes. The Effect of Holds When a hold exists, Exchange Online keeps copies of messages that match the hold criteria until the hold elapses. In the case of some holds, the entire mailbox might be in scope, and that hold might be indefinite. The net effect is that Exchange will never allow the permanent removal of a message from the mailbox while a... --- ### How Can I Store Secrets in Azure? > In this post, I will tell you about a service in Azure called Key Vault, which you can think of as secret storage/handling-as-a-service. - Published: 2018-02-22 - Modified: 2024-09-04 - URL: https://petri.com/can-store-secrets-azure/ - Categories: Microsoft Azure - Tags: Azure, Certificates, Cryptography, encryption, FIPS, FIPS 140, Hardware Security Module, HSM, Key Vault, Keys, Secrets, Security - Article Type: Overview Aidan Finn tells you about a service in Azure called Key Vault, which you can think of as secret storage/handling-as-a-service. In this post, I will tell you about a service in Azure called Key Vault, which you can think of as secret storage/handling-as-a-service.     Secrecy It’s probably fair to say that a concern that most prospective and current cloud customers have is secrecy. Some things must not be known outside of an organization. Sometimes secrets must not be known by more than a few people. Some secrets must be kept in the cloud: A developer wants to store private encryption keys for use by an application. A service provider doesn’t want to know or handle the secrets of its customers. An Azure virtual machine will have BitLocker enabled and the key must be stored in the cloud. An operator wants to store some passwords for later reference. Microsoft introduced Azure Key Vault to handle these kinds of secrets. When it launched, it seemed like a service that I would have little to do with. But more and more, Microsoft is finding more ways to use Key Vault, making the service one of the things that are hard to avoid in Azure. Reliable Storage Any secrets that you generate or store in Key Vault are kept in the same physical data centers as the applications that have stored and are using the secrets. That provides you with performance. But much like with many systems in Azure, the vaults are replicated within the region and also to the documented paired region. This is a twinned region, at... --- ### Patch Tuesday February 2018 - Published: 2018-02-21 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-february-2018/ - Categories: Windows Server - Tags: Compliance, Patch Tuesday, Security, Windows, Windows Server - Article Type: News This month’s cumulative update for the Windows 10 Fall Creators Update sees the OS build bumped to version 16299.248. February’s patch Tuesday is a quieter affair than last month’s.     This month’s cumulative update for the Windows 10 Fall Creators Update sees the OS build bumped to version 16299. 248. Included in the update are fixes for docking and undocking Internet Explorer (IE) windows, for issues when pressing delete in IE inserts a new line in input boxes and selected elements won’t update. Microsoft Edge has a fix for an issue where users might not be able to log in to websites using third-party accounts and for a problem that causes delays when switching languages using the ALT+Shift key combo. For admins, Microsoft has fixed a problem where loading snap-ins in a MMC console failed if Windows Defender Application Guard (previously Device Guard) was turned on. A Hyper-V OS activation issue was also fixed for Automated Virtual Machine Activation (AVMA) when the host OS had already been activated. A host of issues with App-V have also been resolved. For a complete list of published fixes, check out knowledgebase article KB4074588. If you’re still running the Creators Update, the latest build is 15063. 909. It includes several fixes for Internet Explorer, addresses a stop error in embedded devices, and improves performance of Intel processors that have Hardware P-States (HWP) enabled. There’s also a fix for a ‘Something went wrong’ message that some users saw at the end of the out-of-box installation experience. Naturally, there is a host of security updates for the usual suspects in this update... . --- ### Power BI and PowerApps Are Two Peas in a Pod > Learn how you can now make your actionable data from Power BI actually actionable using the PowerApps Visual. It sounds like a mouthful but it is awesome. - Published: 2018-02-20 - Modified: 2024-09-04 - URL: https://petri.com/power-bi-powerapps-two-peas-pod/ - Categories: Microsoft 365, PowerBI, Uncategorized - Tags: O365, Power BI, Powerapps - Article Type: How To Shane Young has already introduced you to building your first Power BI report and your first PowerApps app. Now, he is going to make sure you know about the coolest idea ever, combining the two. In case you forgot: Power BI is an outstanding tool for making interactive dashboards and reports. PowerApps is the ultimate tool for building business apps without code. The fact that Power BI has a space in its name and PowerApps does not drive me crazy.     In previous articles, I have introduced you to building your first Power BI report and your first PowerApps app. Well, today I am going to make sure you know about the coolest idea ever. You can combine the two. With the latest preview feature, you can embed a PowerApps app into your Power BI report. And while sticking an app on the page would be cool, they went all the way and you can even pass data to the  PowerApps app from the Power BI report. WOW! I am imagining scenarios such as: Creating an inventory dashboard that provides for on-demand ordering through the app An executive status dashboard where they assign tasks and send feedback on the fly Something much cooler that you thought of and I didn’t The only limit is your imagination. The idea though, as we continue to move to a more data-driven world, is there will be greater demand for actionable data and if this data is actionable, shouldn’t we make it as easy as possible to take the action? PowerApps and Power BI are ahead of the game as usual. One thing to keep in mind. Right now, the PowerApps Visual for Power... --- ### Starting Your SharePoint Migration From Scratch - Published: 2018-02-20 - Modified: 2024-09-04 - URL: https://petri.com/starting-sharepoint-migration-scratch/ - Categories: SharePoint - Tags: migration, SharePoint - Article Type: Overview It's time to start seriously planning your migration to the cloud and starting with SharePoint has the ability to pay immediate dividends. Do you realize that Microsoft has been providing us with SharePoint for 17 years? Oh my goodness. It has been a long, awesome journey but I will save you the romantic nostalgia and jump to the chase. It is time for you to take the next step in that journey. When I start a good migration or upgrade talk with a customer these days, I find that they are all carrying the emotional and physical baggage of all these years of SharePoint. They include some of the low lights of SharePoint’s fairytale life: The Fab 40 templates and the evil they delivered (2007) Bucket webs (2003) Blogs, wikis, anonymous sites and a host of buzz words concepts (all) Mega Site Collection (all) SharePoint Designer is Free (OMG) There is no chance you can read that quick list and not cringe or hang your head in shame. But that is why we are going to work through these series of articles. We all have SharePoint environments we aren’t proud of and that is okay. What we need to do now, before we move on, is to identify that baggage and figure out where we are going with it. The Fork in the Road Let’s put a pin in that baggage issue for a moment and talk about your destination. One of the biggest challenges you are facing today is where do you want to go; to the cloud or stay in your data center. Be careful not... --- ### How to Archive Inactive Office 365 Groups (and Teams) > Now that so many Office 365 apps use Groups, it's logical that some of the groups will serve their purpose and then need to be archived. - Published: 2018-02-20 - Modified: 2024-09-04 - URL: https://petri.com/archive-inactive-office-365-groups/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Archive, Compliance, inactive, Lifecycle, Office 365 Groups, SharePoint Online, Teams Now that so many apps (like Teams) create Office 365 Groups, it's logical that some of the groups will serve their purpose and then need to be archived. Office 365 offers no way to do this, but conceptually it's a reasonably easy task and something that PowerShell handles with aplomb. Office 365 Groups Fade Out Eventually Sooner or later some of the Office 365 Groups or Teams created within a tenant will become inactive. When this happens, you might be able to remove the group because the data in its resources is no longer needed. However, given the litigious nature of the business world, but some might need to be retained for compliance purposes. There’s no out-of-the-box method to mark an Office 365 group or team as inactive, but we can accomplish the goal with PowerShell. Nice Vision with a Downside Microsoft’s vision for Groups and Teams is that they are collaboration platforms that users should be able to create and use without hindrance. It’s a nice idea because it gives users collaboration tools to get things done. Nice as the vision is, there is a downside. If you allow users to create new groups without oversight, you can end up with groups that are created for a purpose, used, and then discarded. This is not an issue in terms of resources because Microsoft provides the necessary horsepower to create as many mailboxes, sites, and plans as you might need However, it is an issue for address lists as the organization GAL can become very cluttered with groups. The Joy of Clutter We’ve seen similar problems in the past when administrators failed to secure the public folder root. Twenty years after Exchange 4. 0 launched public folders on the unsuspecting world, we know all about the problems that free... --- ### How to Develop and Test Software with Azure VMs > This post covers Azure DevTest Labs, a way to provide self-service for developers and testers, with helpful automation, but budge control for the business. - Published: 2018-02-20 - Modified: 2024-09-04 - URL: https://petri.com/development-test-software-azure-vms/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machines, development, DevTest Labs, testing, virtual machines - Article Type: Overview Aidan Finn discusses Azure DevTest Labs, a way to provide self-service for developers and testers with helpful automation but budge control for the business. In this post, I will discuss Azure DevTest Labs, a way to provide self-service for developers and testers with helpful automation but budge control for the business.     Lack of Control When I started working with Microsoft Azure, I quickly learned that the first people to adapt the cloud in a large business were software developers and testers. Even in the most restricted environments, or should I say, probably because they were restricted environments, shadow IT grew in the cloud to work around the budget and procedural restrictions that prevented getting the work done that the business required. The self-service and measured usage traits of the cloud made services such as AWS and Azure attractive to developers and testers. Azure especially is always “right there”, thanks to the built-in integrations with Visual Studio and Visual Studio Team Services. In the virtualization world, we have a phrase: virtual machine sprawl. Virtualization was the very long rope that many budget owners feared. Thanks to Hyper-V and vSphere, virtual machines were easy to deploy. Virtual machines popped up overnight like mushrooms on a shady lawn. Quickly, the role and importance of those machines is forgotten, but they continue to consume storage, licensing, and other costs, and the remaining length of rope inches shorter. Then along came a cloud and promised to fix all that. On-premises administrators can breathe a sigh of relief because their SANs are drained of waste that it turns out was being rarely used. At first,... --- ### How to Use the Cloud as a DR Site - Published: 2018-02-19 - Modified: 2024-09-04 - URL: https://petri.com/using-the-cloud-as-a-dr-site/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, Hyper-V, Microsoft Azure, Virtualization, VMware - Tags: Azure, Backup, Cloud, Disaster Recovery, hybrid cloud, Hyper-V, Virtualization, vmware - Article Type: Overview See how the cloud can enhance your backup and DR capabilities and make sure that you are prepared for the next interruption to your environment. Businesses first began using the cloud mainly for testing and development because it allowed developers and QA personnel to quickly and easily spin up test VMs without needing the intervention of IT administrators or storage administrators. As business began to get more comfortable and knowledgeable about cloud services and capabilities, they have also begun to leverage the cloud for more essential IT functions including the backup of critical data and using the cloud as a disaster recovery (DR) site. For a very basic level of DR, you can use the cloud as a remote backup location. Cloud backup enables you the flexibility to pick and choose the data you want to protect as well as choosing the length of time you want to store the backup data. As data volumes are growing rapidly for almost every organization, cloud backup eliminates the need to worry about managing space on more expensive local SAN or NAS storage or by using a specialized backup storage devices; cloud backup is also a great way to protect against ransomware. The cloud is disconnected from your local infrastructure and you can secure your backups with their own authentication giving them a degree of isolation from your online processes. You can also store multiple cloud backup points ensuring that you have an uncorrupted backup that you can restore from. The DR capabilities of the cloud go far beyond just basic backups. For DR, most businesses are looking at VM replication to improve their recovery point and time... --- ### Paul Thurrott's Short Takes: February 16 - Published: 2018-02-16 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-16/ - Categories: Cloud Computing, Hardware, Mobile, Office 2016, Windows 10 - Tags: News - Article Type: Overview Because it was 62 degrees yesterday but it will still snow tomorrow, this edition of Short Takes looks at 5 years of Surface Pro, an unfixable Skype bug that was already fixed, Amazon v. Microsoft, and so much more. Because it was 62 degrees yesterday but it will still snow tomorrow, this edition of Short Takes looks at 5 years of Surface Pro, an unfixable Skype bug that was already fixed, Amazon v. Microsoft, and so much more. Microsoft celebrates five years of Surface Pro In 2012, Microsoft surprised everyone, especially its PC maker partners, by announcing its Surface lineup of in-house PCs. The first one it shipped, the terrible Surface RT, flamed out in the market, much to the delight of, yes, Microsoft's PC maker partners. But in February 2013, Microsoft shipped its first Surface Pro, and that device was a success. Especially after it was iterated to a third-generation design with a thinner form factor and a 3:2 display. By that release, PC makers were openly copying Surface Pro for their own products, and while the relationship is still strained, things seem to have mostly calmed down. So this week, Microsoft is celebrating five years of Surface Pro. And it's doing so with a sale: The latest, fifth-generation Surface Pro is now $200 off if you're so inclined. Or, it will be, if you can get to a Microsoft Store or Best Buy this weekend. "Microsoft's Surface Pro is $200 off this weekend" Buy four and you could save $800! There's a bug in Skype that's so bad Microsoft can't even fix it Was the story. Which is untrue, as it turns out. A sensational report in ZDNet kicked off a week of silliness in... --- ### Introduction to the IT Roadmap Planning Tool for Microsoft 365 - Published: 2018-02-16 - Modified: 2024-09-04 - URL: https://petri.com/introduction-roadmap-planning-tool-microsoft-365/ - Categories: Administrative Tools and Scripts - Tags: IT Roadmap Tool, Microsoft 365, Microsoft Office 365, Office 365 - Article Type: How To, News In this article. I will make an overview of the IT Roadmap Planning Tool for Microsoft 365. Microsoft introduced at Microsoft Ignite 2017 a new Planning Tool designed to help organizations to make a more proper and effective use of Microsoft 365 services and applications. The tool, still in preview, allows you to build custom deployment and configuration plans for Microsoft Office 365 services and applications based on current deployment status and the next level(s) the organization wants to meet. In this article, I will make an overview of the IT Roadmap Planning Tool for Microsoft 365.     Getting Started with the IT Roadmap Planning Tool for Microsoft 365 First thing you should do is just access the light edition of the tool. Note that If you are a Microsoft Partner, you can access a more complete version of the tool through the Microsoft Business Value Programs. On the welcome page, just click the “Start Assessment” button, so you can see the tool in action. Figure 1 -- IT Roadmap for Microsoft 365 Home Page   The next step is to select Microsoft 365 services we want to use to start defining the IT Roadmap. As you can see in the services selection page, Microsoft recommends choosing no more than 4 services as the starting point. Once you have selected the desired services, just click on “Get Started”. Figure 2 -- Services Selection to Start Building the IT Roadmap   In my case, I have selected the following services: Group collaboration services Intranet and search services For each service selected, you have a... --- ### PowerShell DSC and Puppet -- Why It Is Not Either/Or - Published: 2018-02-15 - Modified: 2024-09-04 - URL: https://petri.com/puppet-vs-dsc-why-puppet-might-suit-your-windows-server-configuration-management-needs/ - Categories: Windows Server - Tags: cloud computing, Configuration Management, DevOps, linux, PowerShell DSC, Puppet, Windows Server - Article Type: Opinion In this Ask the Admin, Russell Smith discusses why Puppet and DSC together is often the best configuration management solution in mixed Windows/Linux environments. In this Ask the Admin, I'll discuss why Puppet and DSC together is often the best configuration management solution in mixed Windows/Linux environments.     If you are not familiar with Puppet, it is roughly equivalent to PowerShell Desired State Configuration (DSC), a PowerShell technology that’s built in to modern versions of Windows. Both Puppet and DSC are configuration management tools that allow system administrators and developers to define how servers should be configured using a declarative syntax. In standard PowerShell code, or Ruby in the case of Puppet, you use imperative syntax to execute a series of instructions to achieve your required configuration. Install this component. Configure these settings. If x is true, let setting z be equal to y. Reboot. To install and configure Active Directory in Windows Server using PowerShell, you need to know how to install the required roles and features and then how to configure them. But using declarative syntax, you state how you want your server to be configured. Or how you want it to ‘look’. You don’t need to know the technical steps required to achieve the desired result. Or as Puppet puts it, ‘Modeling instead of scripting’. Make sure Active Directory is present with these parameters (... ) This is a significant departure from how system administrators have traditionally configured Windows Server because the available tools for Windows weren’t designed with DevOps environments in mind. Group Policy vs. Text-Based Configuration Management Group Policy and DSC overlap with each other... --- ### The Ups and Downs of the Simplified View of SharePoint in Teams > Teams is one of Microsoft's hubs for teamwork within Office 365. People work with documents all the time and the documents are in SharePoint. - Published: 2018-02-15 - Modified: 2024-09-04 - URL: https://petri.com/simplified-view-sharepoint-teams/ - Categories: Microsoft 365, Office, SharePoint Online - Tags: data governance, document management, Office 365, SharePoint Online, Teams - Article Type: Opinion Teams is one of Microsoft's hubs for teamwork within Office 365. People work with documents all the time and the documents are in SharePoint Online libraries. However, Teams imposes its own view of documents and omits some of the functionality available through the SharePoint browser interface. This doesn't seem to matter very much, except in the case of data governance. Applications Dictate Their View of SharePoint When I made the case for How Office 365 Groups saved SharePoint Online. I said that “people don’t think about using SharePoint. They think about using Teams, or Planner, or Yammer, or Outlook. ” In other words, people see SharePoint through the prism of whatever application they use to interact with documents. Teams and Files Teams is an excellent example. Every team has a SharePoint document library. The Files feature available for each channel opens a folder which stores documents relevant to the channel, which makes sure that documents are indexed and available for eDiscovery. In addition, you can create a SharePoint tab to open folders in any site within the tenant (if team members have access rights for the folder). Figure 1 illustrates an example. In this case, the URL used to create the tab points to the folders where I store the text of blog posts. Clicking the tab reveals the files stored in the folder. Figure 1: Browsing files in a SharePoint document library through Teams (image credit: Tony Redmond) The options presented by Teams for a document library are a subset of those available through the SharePoint browser interface. Table 1 lists the differences. Option SharePoint web interface Teams Open Yes Yes Share Yes No Copy/Get link Yes Yes Download Yes Yes Delete Yes Yes Flow Yes No Pin to top Yes No Move Yes Yes Copy Yes Yes Rename Yes Yes Version history Yes... --- ### Microsoft DSC Environment Analyzer Creates Compliance Reports for Power BI - Published: 2018-02-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-dsc-environment-analyzer-creates-compliance-reports-for-power-bi/ - Categories: Security - Tags: Compliance, DSC, PowerShell Desired State Configuration, PowerShell DSC, Security - Article Type: Overview Compliance is always a hot topic, so in this Ask the Admin, I'll look at how Microsoft's DSCEA can be used to create compliance reports for servers configured using PowerShell DSC. Compliance is always a hot topic, so in this Ask the Admin, I'll look at how Microsoft's DSCEA can be used to create compliance reports for servers configured using PowerShell DSC.     PowerShell Desired State Configuration (DSC) is a configuration management solution that allows system administrators to configure and manage servers using text files that define declarative resources instead of procedural PowerShell code. But unless you intend to use Azure Automation Desired State Configuration, which makes DSC easier to deploy and extends it by providing some basic reporting features, PowerShell DSC doesn’t have built-in reporting to quickly check which nodes are compliant. For more information on Azure Automation DSC, see Introduction to Azure Automation Desired State Configuration and Azure Automation DSC Reporting on Petri. Last year, Microsoft addressed that issue by introducing the Desired State Configuration Environment Analyzer (DSCEA), which itself is a DSC resource that scans systems to check compliance against a . MOF file. Reports show the compliance status of scanned nodes in HTML format or DSCEA XML can be converted to . csv format and imported into other tools, like Power BI. HTML Report Generated by Desired State Configuration Environment Analyzer (Image Credit: Russell Smith) I installed and ran DSCEA to see what the reports look like. There are two basic types of HTML report that can be generated from the XML output files. The first report lists all the devices scanned when a report was generated and lists its compliance status. The... --- ### Getting Started with Windows Information Protection - Published: 2018-02-14 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-windows-information-protection/ - Categories: Security - Tags: Azure Rights Management, desktop, Security, Windows Information Protection - Article Type: Overview We are going to dig into WIP's requirements, how it works, and how you can use it. In my previous article on  Windows Information Protection, I described how Windows Information Protection (WIP) and Azure Information Protection (AIP) work together to help protect organizations against data loss and leakage. In this article, I'll dig into WIP's requirements, how it works, and how you can use it.     Separating Personal and Business Data The main idea behind WIP is simple. WIP applies tags to files and web pages to mark them as coming from an enterprise source. When you copy a file from OneDrive, copy text from an intranet web page, or open an email attachment, WIP knows based on the source of that object whether it's work-related or not. It then restricts what you can do with the data item based on the policy that's in force. By tagging work data as such, the idea is that applications, services, and users can keep work and personal data separate and keep work data from being sent or copied where it doesn't belong. That means that WIP has to be aware of two things: whether a given data item is enterprise or personal and where the data item came from in the first place. Windows Information Protection Components WIP is made up of a few key components: Applications: You can use existing applications with WIP without changing them. For example, if you have a line-of-business application, you can configure it to work with enterprise-owned data without changing the app itself. You can also use enlightened applications that can honor WIP... --- ### Keeping an Eye on Small but Important Changes in Office 365 > A recent vacation meant that I didn't spend as much time as usual monitoring changes inside Office 365, Yammer, Teams, Office 365 Groups, and Planner. - Published: 2018-02-13 - Modified: 2024-11-19 - URL: https://petri.com/small-important-changes-office-365/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, Office 365 Groups, OneDrive for Business, Outlook, Teams, Yammer A recent vacation meant that I didn't spend as much time as usual monitoring changes inside Office 365. As it happened, lots of change occurred. The large stuff (major updates for Teams and Planner) has already been covered in detail, but many other small but important changes are now active inside Office 365. And, as always, it's the small stuff that can trip you up. Here's what I learned after a weekend of catching up... Office 365 Keeps a-Changing I’ve been on vacation a couple of weeks. While on vacation, I did not spend as much time as I usually do to keep abreast of changes inside Office 365. Some big stuff happened, like major refreshes for Teams and Planner, but what’s more interesting is how many small but important changes occurred. Truly, if you take your eye off Office 365, something changes. After spending the weekend catching up, here’s my pick of the changes that took my eye. Yammer Seen Count The enterprise social network community were excited because Yammer now supports “seen counts” for conversations. As shown in Figure 1, a seen count tells the author of a conversation the number of unique people who have seen the conversation. This does not mean that those people read and absorbed the content, but they did look at it. Figure 1: Yammer seen count (image credit: Tony Redmond) Teams and Office 365 Groups do not support seen counts for conversations, so Yammer is the first Office 365 app to have the feature. However, seen counts are not a new concept. Facebook, for instance, also supports seen counts for posts to groups. Perhaps the next step for Yammer is to support Facebook’s ability to tell you which members of the group saw a post and who did not. Combined Mobile Groups Office 365 Groups has had a mobile app for about two years. The app, available on iOS and Android,... --- ### Microsoft's Bringing Windows Defender ATP to Windows 7 - Published: 2018-02-12 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-windows-defender-atp-windows-7/ - Categories: Windows 10, Windows 7 - Tags: Advanced Threat Detection, News, Windows 10, Windows 7 - Article Type: News Microsoft is expanding the reach of ATP and will soon offer it for users of Windows 7 but only if you are also running Windows 10. With each new release of Windows 10, Microsoft is building in new security features and hardening the software against external threats. Seeing as the security of your environment is becoming more complex to protect as threats are becoming increasingly complicated to defend against, it does make sense to upgrade your environment to Windows 10. That being said, moving to Windows 10 comes with the risk that it may increase the workload on IT staff with multiple updates per year. And, up until today, managing multiple version of Windows inside of one environment can be complicated as Windows 10 and 7 have vastly different security profiles. Microsoft is looking to make the migration process easier and is announcing Windows Defender Advanced Threat Protection support for Windows 7 and Windows 8. 1 The idea here is that if you are running Windows Defender on Windows 10, you can now extend that security profile to other machines while you wait for them to be upgraded. Starting this summer, customers moving to Windows 10 can add Windows Defender ATP Endpoint Detection & Response (EDR) functionality to their Windows 7, and Windows 8. 1 devices, to create a single view of their environment. The company says for Windows 7/8. 1 users, they are building a behavioral-based solution to provide insights into their endpoints and all detections will be surfaced in the Defender Security center. If you are a current customer, a preview of this offering will arrive in the spring. Microsoft states that this solution can... --- ### 5 Things you Need to Know about the Hybrid Cloud - Published: 2018-02-12 - Modified: 2024-09-04 - URL: https://petri.com/5-things-you-need-to-know-about-the-hybrid-cloud/ - Categories: Hybrid Cloud - Tags: Azure, Azure Active Directory, Cloud, hybrid cloud - Article Type: Overview There are five things every business should know about the hybrid cloud before you move to maximize your efforts. Today, a lot of businesses have begun adopting a hybrid cloud strategy for various business initiatives; there’s no doubt that this is beginning to be a popular trend. According to a Gartner report, the hybrid cloud will be the way most businesses are using the cloud by 2020. The hybrid cloud brings together on-premise and cloud resources enabling businesses to maximize the flexibility and performance they need for their IT operations while simultaneously reducing their IT costs. The hybrid cloud actually describes a lot of different cloud usage scenarios. Technically, as soon as your business starts paying for some cloud service you are in a hybrid cloud model -- no matter what the scope of that service might be; in essence, hybrid cloud simply means you’re delivering IT services that use multiple hosting models where one is in the cloud. There are a lot of practical benefits for the hybrid cloud but before jumping in too deep into the hybrid cloud there are five important things you need to know. Hybrid is not just about the cloud – The hybrid cloud is also about continuing to deliver traditional IT and legacy applications. Many businesses use on-premise infrastructure to run core business functions and then leverage the cloud for dev and test, backup, and DR, SaaS or other new applications. The hybrid cloud enables you to choose the best platform for the application. For instance, an application with periodic workload spikes may be best supported in the cloud where it won’t... --- ### How Does the Windows 10 Subsystem for Linux Work and What Is It For? - Published: 2018-02-12 - Modified: 2024-09-04 - URL: https://petri.com/bash-out-of-beta-in-windows-10/ - Categories: Windows 10 - Tags: DevOps, linux, Ubuntu, Windows 10, Windows Server, Windows Subsystem Linux - Article Type: Overview In this Ask the Admin, I’ll look at what you can do with Bash and the Windows Subsystem for Linux in Windows 10 and Windows Server 1709. In this Ask the Admin, I’ll look at what you can do with Bash and the Windows Subsystem for Linux in Windows 10 and Windows Server 1709.     If you’re a developer that needs to compile Linux binaries, then the Windows Subsystem for Linux (WSL) is for you. And while it’s possible to run Linux GUI programs using an X Server, WSL isn’t intended for the average user who wants to spin up their favorite Linux apps. WSL is a tool for developers and sysadmins that need Linux interoperability in Windows. The most important thing to understand about WSL is that it isn’t based on virtual machines or containers. When you download a supported Linux distro from the Microsoft Store, it doesn’t mean that a virtual machine is created. WSL provides a layer for mapping Windows kernel system calls to Linux kernel system calls. This allows Linux binaries to run in Windows unmodified. WSL also maps Windows services, like the filesystem and networking, as devices that Linux can access. Install a Linux Distro From the Microsoft Store (Image Credit: Russell Smith) Instead of using a VM or container, WSL virtualizes a Linux kernel interface on top of the Windows kernel. This means that running WSL only requires a minimal amount of RAM. And when not in use, the WSL driver isn’t loaded into memory, making it much more efficient than a solution based on a VM or container. Apart from giving... --- ### Google Updates G Suite Meet Room Hardware - Published: 2018-02-09 - Modified: 2024-09-04 - URL: https://petri.com/google-updates-g-suite-meet-room-hardware/ - Categories: Cloud Computing - Tags: Cloud, collaboration, Google, Hangouts, Hardware, Meet, News, Room - Article Type: News In a recent post on the G Suite Updates blog, Google announced several new updates to it Hangouts Meet Room hardware lineup, including a new camera and a new combination speaker-microphone. In a recent post on the G Suite Updates blog, Google announced several new updates to its Hangouts Meet hardware lineup, which is designed to help employees meet and collaborate in real-time even if it means doing so from different states, countries, or even continents.     The Hangouts Meet Room kit, which consists of a touchscreen controller, a combined speaker-microphone unit, a 4K camera, and an ASUS Chromebox can be used to hold real-time meetings with others both in-person and virtually. This solution makes it easy for organizations to come together, even from across the world, and focus on getting business done without the distractions that may be present with other virtual meeting solutions. Google Hangouts Meet Room Hardware   In order to improve the user experience, Google’s recent update to the Hangouts Meet Room kit will include a Logitech PTZ Pro 2 camera, which is capable of capturing video of groups as large as 20 people. This camera is capable of 10x zoom and can pan and tilt around a room in order to focus on individual meeting participants. Where other meeting solutions may simply make use of a built-in camera on one’s laptop, this one can make it easy for groups to come together while still being able to focus on individual speakers. The Hangouts Meet Room kit is also getting a new combination speaker-microphone unit, which was designed by Google to capture high-quality audio of meeting conversations. This speakermic features... --- ### Paul Thurrott's Short Takes: February 9 - Published: 2018-02-09 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-february-9/ - Categories: Cloud Computing, Hardware, Mobile - Tags: News - Article Type: Overview Because I've fallen and I can't get up, this edition of Short Takes examines Microsoft's latest marketing gaff, Build 2018 vs. Google IO 2018, Google vs. Nest, Broadcom vs. Qualcomm, and much, much more. Because I've fallen and I can't get up, this edition of Short Takes examines Microsoft's latest marketing gaff, Build 2018 vs. Google IO 2018, Google vs. Nest, Broadcom vs. Qualcomm, and much, much more. Microsoft marketing 101: Let's promote a survey that shows a strong preference for Macs I'm not sure whether this is funny or sad, but this is pretty much typical for Microsoft marketing these days: The software giant this week promoted a survey that allegedly shows interest in its Surface PCs. But what it really shows is that this same audience thinks Macs are even better than Surface. No matter: As with Microsoft's "customer satisfaction" claims for Surface, this survey doesn't do a thing to change the fact that Surface sales are both tiny and falling. And it doesn't help that the surveyed group cites "Sony" as one of their favorite PC makers ... given that Sony hasn't sold PCs in four years. Which is pretty much everything you need to know about the relevance of the survey. "New report finds more employees want to choose Surface" By "want to," they mean "don't. " Microsoft finally reveals a date for Build 2018, and it's already taken by Google For months, we've been wondering when Microsoft would finally reveal the dates for Build 2018, its upcoming developer show. And as the time frame for the normal announcement passed, we started getting nervous. So I checked with some sources and found out that, no worries, Build is happening, it... --- ### Microsoft's Build Conference is May 7-9, Registration Opens in February - Published: 2018-02-08 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-build-conference-may-7-9-registration-opens-february/ - Categories: Windows 10, Windows Client OS, Windows Server - Tags: BUILD, Microsoft - Article Type: News Microsoft's Build conference is happening May 7-9 but unlike the past few years, the company has serious competition for this conference. If you are a Windows Developer, the best event of the year for learning more about the future of the platform is Microsoft's Build conference. If you are planning to attend, it's time to clear your calendar in early May. Build is happening May 7-9 and it will be hosted again in Seattle. If you are wanting to buy tickets, registration opens February 15th and the tickets may sell out quickly as they have done in previous years. I say that it may sell out quickly as Microsoft has competition from Google this year who is hosting their own developer conference from May 8-10. It will be interesting to see if these overlapping conferences will lower the rate at which tickets are purchased as many Windows developers are also Android developers too. Based on the website, it looks like the theme of the event is 'Code your tomorrow' and as this is a developer event, it will be heavy on under-the-hood updates and announcements and not new consumer services. The full conference pass costs $2,495 and you can view the Build website, here. --- ### MyAnalytics Outlook Add-In Highlights Personal Commitments > MyAnalytics is one of the AI components inside Office 365. Its Outlook add-on can highlight commitments you have made in email. - Published: 2018-02-08 - Modified: 2024-09-04 - URL: https://petri.com/myanalytics-highlights-personal-commitments/ - Categories: Microsoft 365, Office - Tags: MyAnalytics, Office 365, Outlook, owa MyAnalytics is one of the AI components inside Office 365. Part of the E5 plan or available as an add-on, MyAnalytics is usually seen as a dashboard of weekly activity. Its Outlook add-on can highlight commitments you made in email and remind you about other ways you can work smarter. The only problem is that MyAnalytics is handicapped by a lack of signals... Analytical Insights for Office 365 In July 2017, I wrote about the two kinds of analytics applications available inside Office 365. In that article, I reported that the Outlook add-in for MyAnalytics now delivers personal insights for users rather than tracking the progress of email. The add-in aims to help users by highlighting issues such as unanswered email or conflicting meetings. Of course, it is up to the human to figure things out after they learn about problems. “Personal commitments” is a new insight now highlighted by the MyAnalytics add-in, which works for both Outlook and OWA. The idea is simple but the implementation needs lots of complex processing. As we exchange email with correspondents, we make all types of commitments to others, like promising to follow up with some extra information or to do something requested by your boss. Humans like to please, but we are flawed and often forget to fulfil our commitments. However, text in email captures our communications and it should be possible to scan email to find commitments and then remind users about things that they should follow up. Simple. And that is just what the MyAnalytics add-in now does. MyAnalytics Reminders Take the example shown in Figure 1. Among the insights generated by the add-in, you can see that MyAnalytics reminds me that I have several things I should follow up on and specifies the people associated with the most recent commitments. Figure 1: MyAnalytics signals some commitments... --- ### G Suite Takes a Big Step Forward Towards No Longer Needing Microsoft Office - Published: 2018-02-07 - Modified: 2024-09-04 - URL: https://petri.com/g-suite-takes-big-step-forward-towards-no-longer-needing-microsoft-office/ - Categories: Google Cloud Platform - Tags: G Suite, Google, News - Article Type: News Google is taking a big step forward with G Suite to make it so that you no longer need to use Office while using the cloud service. When it comes to productivity platforms, Microsoft has a significant advantage over its competitors, primarily Google, as it has a long history in this space as well as the largest userbase. While G Suite is significantly smaller than Office 365, Google is continuing to invest in its productivity platform and they are making it much easier to work with Microsoft documents. Starting today, the company is enabling the functionality to let users comment directly on Microsoft Office files, PDFs, and images without having to convert them into Docs, Sheets or Slides. With this new feature, you no longer need other tools to interact with this type of content and this makes using Google Drive in corporate environments, a little bit easier. While this type of feature has obviously been available with Microsoft's own solution, with Google now offering this functionality, it removes one of the barriers to using Google Drive in an otherwise Microsoft environment. For those that are using G Suite, this is one less reason why they would need to also be a user of the Office suite if they are primarily using Docs, Sheets or Slides. Microsoft is no stranger to the threat that Google is becoming in this space and are even offering free solutions to migrate from Google Drive to OneDrive for Business. Google still has a long way to go to fully match the functionality of Office 365 and while they may never truly grab the size of the market that Office... --- ### Set Up Active Directory to Support Tiered Administration and Privileged Access Workstations - Published: 2018-02-07 - Modified: 2024-11-19 - URL: https://petri.com/keep-active-directory-secure-using-privileged-access-workstations/ - Categories: Active Directory (AD) - Tags: Active Directory, Privileged Access Workstation, Security, Tiered Administrative Model, Windows Server - Article Type: How To In this Ask the Admin, Russell Smith discusses setting up Active Directory to support a secure tiered administrative model and Privileged Access Workstations. In this Ask the Admin, I'll discuss setting up Active Directory to support a secure tiered administrative model and Privileged Access Workstations (PAWs).     At the end of last year, I wrote several posts on how to administer Active Directory securely. Some of the concepts in those articles might have been new to you, such as the clean source principle and tiered administration. If you need to recap those topics, see Managing Privileged Access to Active Directory, Why You Should Use Microsoft’s Active Directory Tier Administrative Model, and Secure Active Directory Using the Clean Source Principle on Petri. I also mentioned Privileged Access Workstations, which use a dedicated installation of Windows for sensitive Active Directory management tasks. PAWs are hardened to protect them from threats that might otherwise be pervasive on user workstations. The separation of tasks and accounts from workstations and accounts used for everyday computing tasks helps to protect Active Directory from vulnerabilities and many different types of attack. Originally, I was going to write a post on setting up Privileged Access Workstations. But Microsoft has a good set of instructions here that you can follow with a detailed architectural overview. However, I will provide a summary of the process below. But remember that the instructions are frequently updated, so I recommend you refer to Microsoft’s detailed instructions. The instructions include a link to a set of PowerShell scripts that set up an Organizational Unit (OU) structure and the required groups for managing PAWs. The... --- ### Azure SQL Backups > This post will explain how Azure SQL makes backups extremely easy, what you get from this automatic service, and how you can do restores. - Published: 2018-02-07 - Modified: 2024-09-04 - URL: https://petri.com/azure-sql-backups/ - Categories: Microsoft Azure - Tags: Azure, Azure SQL, Azure SQL Database, Backup, Database, Long-Term Retention, LTR, Recovery Services Vault, Restore - Article Type: Overview Aidan Finn explains how Azure automatically protects any databases you create with the Azure SQL service. In this post, I will explain how Azure automatically protects any databases you create with the Azure SQL service.     Database-as-a-Service Benefit When you run SQL Server in a virtual machine, you are responsible for backups. I have found that people typically underestimate the workload involved here. Azure Backup for IaaS virtual machines will do a very nice job of backing up your virtual machines. But what about your databases? An “SQL backup” does not take place, therefore your transaction logs don’t get truncated. After some time, the volume(s) that contain transaction logs will be filled and SQL Server will grind to a halt. And to be honest, your DBAs probably won’t be happy with VM-only backups. Note: Azure Backup announced at Microsoft Ignite 2017 that they are working on a service to back up SQL Server in Azure virtual machines with SQL-native full, differential, and transaction log backups. If you deploy databases using Azure SQL, then Microsoft takes care of all your backups for you. Unless you go outside the norms, there’s nothing for you to do or even enable! Have I caught your interest now? What Backups Are Done? When you create your database, Azure will automatically start protection. The first full backup will commence and complete within 30 minutes of database creation. After that you will have: A weekly full backup Differential backups every few hours Transaction log backups every 5-10 minutes The “prime order” of Azure SQL backups is that impact on the... --- ### Microsoft Looks to Poach Dropbox, Box, and Google Customers with 'Free' OneDrive - Published: 2018-02-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-looks-poach-dropbox-box-google-customers-free-onedrive/ - Categories: Microsoft 365 - Tags: News, Office 365, OneDrive for Business - Article Type: News Microsoft is playing hardball and will offer corporate customers free 'One Drive' services if they are currently contracted with another vendor. Microsoft, in the past couple of years, has started to become quite aggressive in trying to convert customers using competitor's software to using its own solutions. We have seen free Server offers to Oracle customers and now the company is going after Box, DropBox, and Google Drive. Starting today, the company is offering OneDrive for Business for free for the remaining term of an existing contact for those companies using a competitors product. But, and there is a larger qualifier for the offer, you must have at least a 500 user commitment. Based on the user commitment, it's clear that Microsoft is only going after the medium to large companies with this offer. That's not all that surprising as the company has traditionally served larger organizations better than small operations/startups and this type of offer solidifies that thinking. If you are thinking of taking the company up on this, Microsoft is providing migration services through its FastTrack offering. The company says that over 350,000 organizations now use the storage service and clearly they have confidence in the platform with this new offering. With Microsoft aggressively trying to move customers from on-premises to its cloud solution, this is one more economic lever they are hoping will entice those that have held-off migrating to make the transition. That being said, by only limiting this to the largest of companies, Microsoft wants to chase after big contracts and try to hit their competitors where it hurts the most. --- ### Updates for Planner but No Sign of Guest Access > Microsoft has released some useful updates for the Office 365 Planner app, but external access is still not there. - Published: 2018-02-06 - Modified: 2024-09-04 - URL: https://petri.com/planner-updates/ - Categories: Microsoft 365, Office - Tags: external access, Groups, Office 365, Planner, Teams - Article Type: News Microsoft has released some useful updates for the Office 365 Planner app, but external access is still not there, which is baffling. On the other hand, you now have an OWA-like schedule view, filters to suppress tasks that you don't want to see, and better notifications to tell you when you must do some work. And an iCalendar feed is coming soon to allow you to clutter up your Outlook calendar with even more stuff. Planner Pushes Forward Planner, the Office 365 app to organize tasks for teams (but definitely not as well as Microsoft Project) received a set of welcome changes recently. The upside is that Microsoft is delivering on the commitments they made at Ignite last September to improve Planner. The downside is that Planner still does not support access to plans for users outside an Office 365 tenant, something that the app needs to support guest access in Teams and Office 365 Groups. Slow Progress I like Planner and use it to organize the work for different projects, including the Office 365 for IT Pros eBook. It is a frustrating app because Microsoft does not appear to give Planner the same loving care as other parts of Office 365 receive. Teams is out on its own in this respect as new features pop up in it every couple of weeks. Office 365 Groups does things differently by keeping interesting new features in preview for months, perhaps because Microsoft needs space to figure out the licensing rules. Planner plods on with new features showing up once in a blue moon. It’s not as if Planner is complicated, or that it has multiple clients (just browser and mobile). The lack of progress is puzzling and has been a disappointment over the twenty-odd months of Planner’s existence. Schedule View But now we have a schedule view, a welcome addition to the paltry charting capabilities in Planner to date. People use schedule views all... --- ### Secure Microsoft Azure VMs Using Just-In-Time Access - Published: 2018-02-06 - Modified: 2024-09-04 - URL: https://petri.com/just-in-time-access-beta-comes-to-azure-vms/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Just-In-Time Administration, Security, Virtualization - Article Type: Overview In this Ask the Admin, Russell Smith looks at how the solution works and why you should use it when it reaches general availability. Microsoft has released a public beta of Just-In-Time (JIT) access for Azure VMs. In this Ask the Admin, I'll look at how the solution works and why you should use it when it reaches general availability.     If you’ve ever provisioned a virtual machine or another resource in Microsoft Azure, you’ll know that by default, the Network Security Group (NSG) associated with the resource allows access from any IP address if the resource was assigned a public IP address. The default configuration is convenient because it means you can connect to the resource from any device with an Internet connection. But on the downside, so can everybody else. Or at least they can try. It’s worth remembering at this point that even if you believe your Azure resources aren’t of value to anyone else, attacks against cloud resources are automated. You don’t need to be a big multinational or government agency because attacks are arbitrary. In this Microsoft blog post on the subject, the author notes that there were a million security events in one week on a virtual machine not protected by JIT. What Is Just-In-Time Access? Just-Enough Administration (JEA) and Just-In-Time (JIT) access are both important tools that can improve security. I’ve talked about JEA before on Petri in my two-part series on PowerShell Just Enough Administration. As the name suggests, JEA provides users with access to servers with only the privileges required to perform a specific set of tasks. The JEA Toolkit for PowerShell helps... --- ### Stress Testing Azure Accelerated Networking > In this post, I test Azure's Accelerated Networking feature for virtual machines to see how it impacts networking performance and bandwidth availability. - Published: 2018-02-05 - Modified: 2024-09-04 - URL: https://petri.com/stress-testing-azure-accelerated-networking/ - Categories: Microsoft Azure - Tags: Accelerated Networking, Azure, Azure Virtual Machines, Bandwdith, networking, NTTTCP, performance, virtual machines - Article Type: Overview Aidan Finn shares the results of some stress tests that were run on the Azure virtual machines with and without the Accelerated Networking feature enabled. In this post, I will share the results of some stress tests that I ran on the Azure virtual machines with and without the Accelerated Networking feature enabled.   The Test Environment I deployed 4x Azure Resource Manager (ARM) virtual machines in a single virtual network, all connected to the same single subnet. Each virtual machine had a single NIC with a public IP address. All were deployed with Standard tier managed disks. A single network security group was assigned to the virtual network. The Virtual Network Design, Captured Using Azure Network Monitor   The four virtual machines were: vm-petri2-an1: Accelerated Networking enabled vm-petri2-an2: Accelerated Networking enabled vm-petri2-sw1: Accelerated Networking not enabled vm-petri2-sw2: Accelerated Networking not enabled The purpose of having two sets of machines was: Accelerated networking can only be enabled at the time of NIC and virtual machine creation. I wanted to be able to compare results between two scenarios; one where the sender and receiver had Accelerated Networking enabled, and the other where both machines did not have Accelerated Networking enabled. To make life easier for the tests, the Windows Firewall was disabled in the guest OS of each virtual machine. The last configuration was to ensure that all the machines were spread onto different hosts; this was achieved by creating the machines in a single availability set. This ensured that the packets had to hit a physical network instead of being routed end-to-end inside of a single... --- ### How Do I Apply NSG Policies To Applications in Azure? > This post describes Application Security Groups, a feature of NSGs, which allows you dynamically assign firewall policies to Azure virtual machines. - Published: 2018-02-05 - Modified: 2024-09-04 - URL: https://petri.com/apply-nsg-policies-applications-azure/ - Categories: Microsoft Azure - Tags: Application Security Groups, Azure, DMZ, firewall, Network Security Group, NSG, Security - Article Type: Overview Aidan Finn describes a preview feature of Network Security Groups, called Application Security Groups, which allows you dynamically assign firewall policies to groups of Azure virtual machines. In this post, I will describe a preview feature of Network Security Groups, called Application Security Groups, which allows you dynamically assign firewall policies to groups of Azure virtual machines.   Network Security Groups Azure has a built-in, distributed Layer-4 stateful firewall system called Network Security Groups (NSGs). An NSG is a firewall policy, defining a collection of inbound and outbound allow or deny rules for network traffic. A collection of default rules are included and administrators typically add inbound rules to allow traffic into applications or services running on virtual machines, and optionally add outbound rules to control data leakage. NSGs can be and are by default in the Azure Portal, assigned to the NICs of virtual machines on a 1:1 basis but that doesn’t really scale well. Instead, we should create and assign NSGs at the subnet level. The source and destinations in the firewall rules can be tags/locations such as Azure SQL,Virtual Network, or a network/specific address. When we create inbound rules, it is recommended that we be as specific as possible with the destination address. In a well-structured virtual network, each subnet is treated as a security domain. For example, the subnet 10. 0. 1. 0/24 might be the web server subnet and an NSG might allow TCP 443 into 10. 0. 1. 0/24. However, some (including Azure Security Center’s recommendations) would prefer that individual machine addresses were specified as the destination instead. A Problem with Dynamism The problem with the best practice specific destination approach is that... --- ### New Windows 10 Commercial SKU Roadmap Revealed - Published: 2018-02-03 - Modified: 2024-09-04 - URL: https://petri.com/new-windows-10-commercial-sku-roadmap-revealed/ - Categories: Windows 10 - Tags: News, roadmap, Windows, Windows 10 - Article Type: News Microsoft is about to refresh its SKU offering for Commercial customers and they are also making significant changes to their Windows 10 S SKU offering as well. In the next month or two, Microsoft will be releasing the next large update to Windows 10, Redstone 4, and with it will come with a significant amount of changes to how the company is positioning its software as well as pricing it for its partners. Recently, I was able to view some content being shared with select partners that details the company’s plans and changes coming to Windows 10. When it comes to SKUs offered to OEMs for installing Windows 10, they have six different options for Commerical/EDU customers. While most of these SKUs are not offered directly to the user, this breakdown will give you a better understanding of how Microsoft sells licenses to OEMs and where the price changes with different hardware configurations. The SKU tier breakdown for Commercial/EDU is posted below, you can find the consumer chart here: Small Tablet: Atom/Celeron/Pentium ≥ 7“ and < 9” screen size Entry: Intel Atom/Celeron/Pentium ≤ 4GB RAM & ≤ 32GB SSD & ≤ 14. 1” screen size (NB), ≤ 11. 6” (2in1, Tablet), ≥ 17” AiO Value: Intel Atom/Celeron/Pentium ≤4GB RAM & 64GB SSD AND ≤ 14. 1” screen size (NB, 2in1, Tablet), ≥ 17” AiO Core: Cannot be used on devices that meet the Core+ and Workstation SKU Hardware Specifications Core+: High end CPU & >4 GB RAM (All Form Factors) ≥8 GB RAM & ≥1080p (NB, 2in1, AiO) >8 GB RAM & ≥2TB HDD or SSD storage (Desktop) Workstation: Intel Xeon, Intel i9, AMD Opteron or AMD Ryzen Threadripper... --- ### Paul Thurrott's Short Takes: February 2 - Published: 2018-02-02 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-2/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Microsoft Azure, Mobile, Windows 10 - Tags: News - Article Type: Overview Because we get much closer to Spring every day, this edition of Short Takes corporate earnings from Microsoft, Google, Apple, and Amazon, and some of the interesting facts we can mine from each. Plus some other stuff. Lipstick on a pig. Or, Microsoft's Windows 10 support policy. Credit: Ixocactus Because we get much closer to Spring every day, this edition of Short Takes corporate earnings from Microsoft, Google, Apple, and Amazon, and some of the interesting facts we can mine from each. Plus some other stuff Microsoft slyly adjusts its support lifecycle for Windows 10, Office 365 As I've argued many times, Microsoft's "Windows as a Service" scheme, where we all pretend that Windows 10 is an online service and not an unmanageable hairball of legacy code, is a disaster. And the firm's business customers, in particular, have no interest in upgrading at the pace Microsoft demands. So something has to give. And it has: This week, Microsoft revealed that it will extend the support lifecycle for all (currently supported) Windows 10 versions (1607, 1703, and 1709) for businesses from 18 months to 24 months. (It had previously done so for the version 1511 too. ) I expect further extensions, but in a bid to drive these same customers to Windows 10, Microsoft also cut support for Windows 7 and 8. x from Office 365 ProPlus and the coming Office 2019. Yep, these products will artificially require Windows 10 going forward. Suck it, enterprise! "Microsoft's new Surface Laptop is cheaper and slower at $799" So kind of a mixed bag then. Microsoft earnings point to upward trajectory As Brad reported earlier this week, Microsoft announced that it posted a net income of $8. 7... --- ### Office 2019 Will Only Run On Windows 10, Shortened Lifecycle - Published: 2018-02-01 - Modified: 2024-09-04 - URL: https://petri.com/office-2019-will-run-windows-10-shortened-lifecycle/ - Categories: Office - Tags: News, Office 2019 - Article Type: News Microsoft has announced that if you are running Windows 7, you will not be able to install Office 2019. At Ignite last year, Microsoft announced Office 2019 and it will be arriving int he second half of 2018. This will be the next perpetual release of the Office Suite but if you are running an older version of Windows, you better be prepared to upgrade if you want to install this version of the software. Microsoft announced today that Office 2019 will only run on supported versions of Windows 10 (Semi-annual Channel), Windows 10 LTSC 2018, and the next LTSC version of Server. If you are running an older version of Windows or Server, you will not be able to install this version of Office. In addition to only running on Windows 10, Microsoft has shortened the lifecycle support as well. This product will receive five years of mainstream support but 'approximately' two years extended support. The wording here is a bit ambiguous as they don't say it will be exactly two years but roughly that timeframe; does this mean they may extend or even shorten the support window? If you are running a current version of Office, the company says there will not be any changes to the support lifecycle of those iterations. This is a bold move for Microsoft by forcing customers to upgrade to Windows 10 if they want the latest version of Office but don't want to subscribe to Office 365. That being said, Windows 7 support is coming to an end in the next couple of years which means you should be... --- ### Microsoft's Making More Changes to the Windows 10 Lifecycle, Extended Support for Some versions - Published: 2018-02-01 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-changes-windows-10-lifecycle-extended-support-versions/ - Categories: Windows 10 - Tags: Lifecycle, Windows 10 - Article Type: News Microsoft is making more changes to the lifecycle support of Windows 10 and this time, they are giving you six more months to upgrade. With the release of Windows 10, Microsoft embarked on a bold strategy of trying to modernize every single company on the planet with a new operating system and a new wave of updates. In short, Microsoft wanted to have companies on a rapid release update schedule that had them upgrading to a new build of Windows roughly once a year and they did this by releasing two large updates per year but only requiring that one be installed. But, as it turns out, just because Microsoft wants you to do something, doesn't mean it's always possible. Announced today, the company is adding additional six months of support for enterprise customers to versions 1607, 1703 and 1709. If this sounds familiar, it's because Microsoft did the same thing with version 1511. The reality of a company going from a multi-year release cycle to an annual update regiment is causing unnecessary strain on many IT shops and the end result is that ramming new updates down the pipes of large companies isn't an effective way of helping them modernize. The extended lifecycle is only for Enterprise and Education customers; if your shop is running Windows 10 Pro, you will still need to update on Microsoft's timeline. You can see the new deadlines for these releases below: The company is also announcing that the next release of the Long Term Servicing Channel (LTSC) will arrive in the fall of 2018; this release adheres to the lifecycle policy of 5 years of mainstream... --- ### Design Considerations for Azure Web Apps > In this post, I will discuss some things you should consider when planning or designing an Azure App Service deployment. - Published: 2018-02-01 - Modified: 2024-09-04 - URL: https://petri.com/design-considerations-azure-web-apps/ - Categories: Microsoft Azure - Tags: Apache, API Apps, App Services, App Services Plan, Azure, CDN, Containers, Content Delivery Network, Database, Design, Docker, DR, Fault Tolerance, Framework, IIS, linux, Location, Logic Apps, PaaS, performance, Planning, Redis, Regions, Sizing, Traffic Manager, Web App, Web Apps, Web Jobs, Windows Server - Article Type: Overview Aidan Finn discusses things you should consider when designing an Azure App Service deployment. In this post, I will discuss some things you should consider when designing an Azure App Service deployment.     Public or Private? I think this is the most critical question you should start with. Will the application be published publicly or privately? Note that security via authentication is an option for public sites. Until recently, all App Services on an Azure App Service Plan were published on the Internet in a multitenant environment (App Service Environment or ASE). Today, there is an isolated App Service Plan tier, which allows you to create a private ASE on a virtual network, thus allowing you to control network security, enable direct site-to-site VPN/Expressroute (WAN) connections, and allow App Services to interact with virtual machines at NIC performance speeds instead of Point-to-Site VPN (gateway) speeds. An ASE can be shared publicly using a virtual IP address (VIP or Azure public IP address) or privately using an Azure internal load balancer. Azure App Service Environment Enables Isolated App Services Service Tier Do you want a Free, Shared, Basic, Standard, Premium, or Isolated deployment? Your choice is a balance of price, performance, capacities, SLA, and features. A free plan has the obvious benefit of being free but is quite restrictive in functionality. Those restrictions might be irrelevant for a test and dev environment where you want costs to be minimized. It is possible to have a free App Service Plan running alongside another App Service Plan in... --- ### Microsoft's Q2 Earnings: $28.9 billion in Revenue, Stock Approaches $100 - Published: 2018-01-31 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-q2-earnings-28-9-billion-revenue-stock-approaches-100/ - Categories: Main - Tags: Microsoft, News - Article Type: News Microsoft's second quarter ended on December 31st and the company announced earnings for the time period of revenue of $28.9 billion which is a 12% increase over the prior year. Microsoft's second quarter ended on December 31st and the company announced earnings for the time period with revenue of $28. 9 billion which is a 12% increase over the prior year. But, because of the Tax Cuts and Jobs Act, these results include a $13. 8 billion net charge; so keep that in mind when reading the following financial results. During the period, Operating Income was $8. 7 billion which is an increase of 10% but because of the charge, GAAP net loss was $(6. 3) billion and non-GAAP net income was $7. 5 billion. Becuase of the tax charge, on paper, the company lost money, but in actuality, they made $7 billion more than they spent (net income). Microsoft has more than $130 billion held outside the US, and the repatriation of this cash and cash equivalents will trigger a US tax bill estimated of $13. 8 billion. During the period, the company had gaming revenue of $3. 92 billion, thanks to hardware sales, with 59 million Xbox Live active users which is up from 53 million in the previous quarter. Surface revenue was relatively flat, at 1%, which is surprising as I would have thought the Surface Laptop and Book 2 would have helped sales this year but that does not appear to be the case. LinkedIn contributed revenue of $1. 3 billion during the quarter with sessions growth of over 20% for the fifth consecutive quarter. Office commercial products and cloud services revenue increased 10% driven by Office 365 commercial revenue growth of 41% and Office 365 consumer... --- ### Everything You Need to Know About SharePoint -- January 2018 Edition > SharePoint news that includes the SharePoint Conference, a pulled patch, renaming those URLs, a great migration tool, and more. Check it OUT! - Published: 2018-01-31 - Modified: 2024-12-03 - URL: https://petri.com/everything-need-know-sharepoint-january-2018-edition/ - Categories: SharePoint - Tags: SharePoint News - Article Type: News, Opinion The month of January was filled with SharePoint news and in this monthly breakdown, Shane highlights all of the important elements impacting the platform. Hi folks. My name is Shane Young and I am a lifelong SharePoint MVP. This month we kick off a new monthly article. Basically, it is all of the key SharePoint news from the month and why I think you should care about it. I will cover both on-premises and online for you along with some context. We get hit with a lot of news in the ever-changing SharePoint landscape we now live in, so I will give you just my personal highlights. Feedback or want to talk about it? Leave me a note in the comments and let's discuss. -Shane     SharePoint Conference –- Get Thee to Vegas! I have gotten this question a lot over the last month. Should I go to the SharePoint North America Conference? The answer is a resounding yes. This is not a random SharePoint buzz word conference. This conference is fully supported, backed, and suggested by our friends at Microsoft. Jeff Teper will be the keynote with some major announcements (SharePoint Server 2019? ), roughly 100 members of the various Product Teams will be there, and I am doing multiple sessions and a post-con. What more proof do you need that this is the place to be? And if you sign up and use the code Young, you get $50 off. You also get a hug from me. Win, win, win! SharePoint Migration Tool Now Available Are you still putting off moving all of your on-premises SharePoint data or file shares to... --- ### Everything You Need to Know About Office 365 - January 2018 Edition > Office 365 News and notes covering OneDrive for Business file restores, Teams functionality, Flow User Connector improvements, a GDPR guide, and more. - Published: 2018-01-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-need-know-office-365-january-2018-edition/ - Categories: Microsoft 365 - Tags: Office 365 news - Article Type: News, Opinion The month of January was filled with Office 365 news and in this monthly breakdown, Shane highlights all of the important elements impacting the platform. Office 365 News and Notes for January 2018 Hello! My name is Shane Young and I will be your snarky guide for these monthly articles covering Office 365 news and notes. My goal is to help you sort through the millions of news articles we get each month for O365 by highlighting the ones I think you need to read and giving you some context on how they apply. Then after you consume the info, feel free to leave comments below, so we can continue the conversation. You can also steer me to talking about things from your point of view in the future. -Shane     Microsoft Is adding file restore to OneDrive for Business –- Free I love me some OneDrive and one of the best parts is that it keeps getting better. You already had file versions for undoing boo-boos but now they are adding file restore. If you don’t just mess up the content but actually delete it, you can get it back with a couple clicks of the mouse. This protects you from you from silly ransomware. They delete or encrypt all your files? No problem. Just restore them. So cool. Read more here from Mary Jo Foley. It Will Be the Year of PowerApps This falls more under Shane’s opinion than actual news. Have you tried out PowerApps yet? They are pretty darn awesome. Long story short, they let you create web and mobile apps without writing code by connecting to over... --- ### Everything You Need to Know About Azure Infrastructure - January 2018 Edition > This post is a summary of all the news and interesting posts that were released in January 2018 on Azure infrastructure solutions & services. - Published: 2018-01-31 - Modified: 2024-11-19 - URL: https://petri.com/everything-need-know-azure-infrastructure-january-edition/ - Categories: Microsoft Azure - Tags: Accelerated Networking, Action Groups, alerts, ASR, Azure, Azure Backup, Azure Monitor, Azure Site Recovery, Azure Virtual Machines, BEK, bitlocker, Global VNet Peering, IaaS, Infrastructure, Infrastructure-as-a-Serivce, Intel, linux, Meltdown, Network Security Groups, networking, NSG, Service Tags, Spectre, SR-IOV, Support, virtual machine, vmware, VNet Peering, vSphere - Article Type: Overview It’s a new year and it’s time for new things. This month I’m starting a monthly series to summarize some notable things that have happened in Azure IaaS. It’s a new year and it’s time for new things. This month I’m starting a monthly series to summarize some notable things that have happened in Azure IaaS.     Nothing to See Here! If you’ve just come back from Mars via a craft with no processors, then (a) welcome home and (b) there was some news about something called Spectre and Meltdown. Microsoft quietly let the news out before the holidays that Azure services would be scheduled to reboot starting on January 9th. At the start of the month, some news started to leak that there was a big security flaw in Intel processors. On January 3rd, Intel and Google (who found the flaw) confirmed the security flaw in the Intel processors and ARM & AMD too. Microsoft quickly sent out emails to let people know the reboots were brought forward and they started on January 3rd. Since then, Microsoft has issued guidance for mitigating the “speculative execution side-channel vulnerability”, or Meltdown, on Azure virtual machines. Microsoft did patch its Hyper-V hosts in Azure. This should not impact the performance of most virtual machines. However, anyone with machines with larger networking loads might see a reduction in performance. If so, Microsoft recommends: ... turning on Azure Accelerated Networking (Windows, Linux), which is a free capability available to all Azure customers. Sadly, you cannot “turn on” Accelerated Networking. You will have to redeploy the virtual machine and NIC with the existing disks. I feel OK about the whole... --- ### Everything You Need to Know About Windows – January 2018 Edition - Published: 2018-01-31 - Modified: 2024-09-04 - URL: https://petri.com/everything-you-need-to-know-about-windows-january-2018/ - Categories: Windows Client OS - Tags: Intel, Meltdown, Spectre, Windows 10, Windows Insider, Windows Server - Article Type: Overview It’s been a busy month for Windows, and in case you didn’t get a chance to catch all the news, here’s everything you need to know from January 2018. It’s been a busy month for Windows and in case you didn’t get a chance to catch all the news, here’s everything you need to know from January 2018.     Spectre and Meltdown Patches With more twists and turns than an episode of Santa Barbara, Spectre, and Meltdown have been causing Microsoft multiple headaches this month. Information about the attack vectors leaked January 3rd as Microsoft was preparing to release patches for all supported versions of Windows on Patch Tuesday. Initially thought to affect just Intel processors, it later came to light that the attacks could be used against chips from Qualcomm, Apple, ARM, and AMD. Although, only Intel’s chips are vulnerable to all three attacks. For complete protection, you need to install a microcode update for Intel processors alongside Microsoft’s Windows patches. And that’s where the real fun started because the microcode update Intel supplied to PC vendors was buggy, causing system instability, and potential data loss. In response, HP and Dell pulled the firmware updates for the hardware. If you have installed the firmware update with Intel’s buggy code, there’s no way back to a previous version. To address that problem, Microsoft released another update (KB4078130) at the weekend for Windows that disables Intel’s CVE-2017-5715 ‘Spectre Branch target injection’ microcode fix. Microsoft is also making it possible to manually enable or disable Intel’s fix via the registry. You can find more information about that on Microsoft’s website. Assumedly, the patch will make its way to... --- ### Microsoft Teams Gets a User Interface Makeover > Teams is the poster child for Office 365 right now, so it's only right that Microsoft has refreshed the Teams UI a year into the app's life. - Published: 2018-01-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-user-interface-makeover/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Office 365, Teams, User Interface, Who bot - Article Type: News Teams is the poster child for Office 365 right now, so it's only right that Microsoft has refreshed the Teams UI a year into the app's life. The changes look pretty good and are useful, even if the Who Bot might not be able to unpick the complexities of the organization you work for. A New Face for Teams There’s lots of excitement around Teams, the Office 365 application of the moment. Microsoft is in the middle of incorporating the functionality to allow customers to move from Skype for Business Online to Teams, and the signs are that many tenants are trying Teams out, if only to test whether it really can be a hub for teamwork. A year after Teams reached general availability, and just before it is due to be available to government customers, Microsoft has refreshed the user interface. The changes are good and improve the usability of Teams. Here’s a brief flypast of the major UI changes. Search and Command Teams has always had a search box. In January, I said that Teams needs better search. Well, that hasn’t shown up, but now the search box is a command bar. You can still type searches into the box, but now you can also type commands (prefixed by /). Type / or use ALT+K to see the set of available commands (Figure 1). Figure 1: Teams commands (image credit: Tony Redmond) Some of the commands are to set your status (busy, away, do not disturb), some reveal sets of messages (saved, unread, activity, mentions), and some bring you to a Teams function (files, call, join). For instance, to call someone, type /Call and some characters of their name. Teams shows a list of people to choose from, select your target and you’re connected. It does... --- ### Using the Office 365 Groups Naming Policy > One of the premium features for Office 365 Groups is the ability to use a naming policy so that all groups (and Teams) have a compliant name. - Published: 2018-01-30 - Modified: 2024-09-04 - URL: https://petri.com/office-365-groups-naming-policy/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, Exchange Online, Group naming policy, Office 365 Groups, Planner, Stream, Teams - Article Type: How To One of the premium features for Office 365 Groups is the ability to use a naming policy so that all groups (and Teams) have a compliant name. The policy is a nice-to-have feature if you are concerned about having a well-organized directory with all your groups gathered in the same place. The question is whether enough business value is gained from a naming policy to make it worthwhile. Office 365 Groups with Compliant Names Exchange has had a distribution group naming policy since Exchange 2010. The policy is defined in settings in the Exchange organization configuration and is still available today in both on-premises and cloud versions. Applying a naming policy allows organizations to ensure that groups use consistent names as well as blocking users from including objectionable words in group names. When Office 365 Groups came along in 2014, no naming controls were available. Groups occupy an increasingly important position inside Office 365 as more and more applications use Groups as a membership and identity service, so it is somewhat puzzling that Microsoft took so long to come forward with a naming policy. Part of the reason was the need to create a new mechanism that applied to all Office 365 applications. The temptation might exist to use the distribution groups policy as that would mean a single consistent policy applied to both distribution groups and Office 365 Groups. However, Exchange configuration settings are good for Exchange, but not for applications like Stream and Power BI that create groups but know nothing about Exchange. The solution is to use settings in the Azure Active Directory policy for Groups. All Office 365 applications can access the policy to retrieve the naming controls. The naming policy is now in preview and will be released when Microsoft considers it to be ready. [Update February 21: Microsoft has released the policy to public preview. It is named Azure AD Naming Policy... --- ### Backing Up Azure App Service > This post will show you how to backup an Azure App Service or web app, protecting the content, settings, and, optionally, connected Azure databases. - Published: 2018-01-29 - Modified: 2024-09-04 - URL: https://petri.com/backing-azure-app-service/ - Categories: Microsoft Azure - Tags: App Service, App Service Plan, Azure, Azure SQL, Backup, Storage Account, Web App - Article Type: How To Aidan Finn shows you how to backup Web apps that are hosted as an Azure App Service in an App Service Plan. In this post, I will show you how to backup Web apps that are hosted as an Azure App Service in an App Service Plan.     Protect the Service An App Service or Web app might run in PaaS but your requirements to protect it are probably no different than they would be if it was running in a virtual machine. This is why it is possible, using the Standard and Premium App Service Plan tiers only, to backup your Web apps. The following kinds of data can be protected: Web app content Settings Any connected (connection string in the settings) databases Note that the following database types are supported: Azure SQL Azure Database for MySQL Azure Database for PostgreSQL MySQL in-app (also an App Service) There are three requirements to back up a web app: The web app must be running on a Standard or Premium tier App Service Plan. You will need a storage account to store the backups (Blob storage). The entire backup must be no bigger than 10GB, including the web app content, settings, and database content. Enabling Backups The first step for enabling backups is to create a storage account. If you want to use blob tiering (this would require a bit of effort), then you could use a General Purpose v2 (GPv2) storage account. However, if you do not need blob tiering, I would recommend a General Purpose v1 (GPv1) storage account because of the much lower storage transaction... --- ### Microsoft Finds Itself Stuck in the middle of Intel's on-going PR Disaster - Published: 2018-01-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-finds-stuck-middle-intels-going-pr-disaster/ - Categories: Hardware - Tags: Intel, Microsoft, News - Article Type: News Intel's latest fix to patch the Spectre vulnerability is causing more issues than it fixes; Microsoft to the rescue. Intel has found itself on the wrong side of a security vulnerability and the company can't seem to figure out how to properly get out of this hole beside continuing to dig down. After the company released vague and understated statements regarding the impact of these vulnerabilities, the company has now released a microcode update that is causing more issues than it fixes. Microsoft has released an out-of-band Windows update that disables Intel's fix. Why is Microsoft doing this? Intel's update that was intended to make your device more secure is resulting in unexpected reboots and more alarming, data loss or corruption. While Intel is testing and updating their code, Microsoft has released an update, KB4078130, that disables the mitigation against CVE-2017-5715 – “Branch target injection vulnerability". Microsoft says that this update will prevent the reboots and data corruption and it covers Windows 7 (SP1), Windows 8. 1, and all versions of Windows 10. Microsoft has found itself in the middle of a security disaster and is being forced to work-over Intel's sloppiness. Intel, which has been slow to release relevant information like the performance impact of patching your system, has continued to trip over its own feet while putting Microsoft in the middle of a problem that it cannot effectively handle on its own. For the end user, if their computer randomly reboots or their data is lost because of the Intel patch, who are they going to blame? We all know the answer here is Microsoft when... --- ### Blocking Internet Access for Azure VMs > This post will show how to use Network Security Group (NSG) Service Tags to block Internet access for Azure Virtual Machines without failing reboots. - Published: 2018-01-26 - Modified: 2024-09-04 - URL: https://petri.com/blocking-internet-access-azure-vms/ - Categories: Microsoft Azure - Tags: Azure, Azure SQL, Azure Storage, firewall, Internet, Network Security Groups, Service Tags, SQL Server, storage - Article Type: How To How do I block Internet access for my Azure virtual machines? This post will answer a question that I always get when I am teaching the subject of network security groups, “How do I block Internet access for my Azure virtual machines? ”     Blocking Internet Access Every Azure virtual machine has direct connectivity to the Internet via a NAT IP address by default and that access is unfiltered. Tip: That NAT IP address is the public IP address of the load balancer or NIC if the virtual machine is assigned to either one. You can use this for creating firewall rules to allow inbound access at remote sites for your Azure virtual machines. Some organizations do not like any machine having such access. For example: All access should be blocked, no matter what. Internet traffic should be routed via on-premises (see an Azure solution called Forced Tunnelling, using user-defined routing). Internet traffic should be controlled. One reason might be to stop malware from activating after it reaches out to a controller on the Internet. Another reason is to stop data leakage. One can use a number of solutions for accomplishing the above but in this post, I will show you how to do this using Network Security Groups. Be Careful What You Ask For The demand to “block all outbound traffic” is easily accomplished using Azure’s Layer-4 (TCP/UDP/etc) solution, Network Security Groups (NSGs). You create a single outbound rule to Deny traffic to the service tag (or location) of Internet. This Azure NSG Outbound... --- ### OpenSSH Doesn’t Replace PowerShell Remoting in Fall Creators Update - Published: 2018-01-26 - Modified: 2024-09-04 - URL: https://petri.com/connect-to-windows-server-1709-using-ssh/ - Categories: Windows Client OS - Tags: linux, OpenSSH, PowerShell, PowerShell Remoting, remote administration, Windows 10, Windows Server - Article Type: How To The Windows 10 Fall Creators Update and Windows Server 1709 include a beta OpenSSH server and client. In this Ask the Admin, I will discuss how OpenSSH differs from PowerShell Remoting. The Windows 10 Fall Creators Update and Windows Server 1709 include a beta OpenSSH server and client. In this Ask the Admin, I'll discuss how OpenSSH differs from PowerShell Remoting. Microsoft has been working to port OpenSSH to Windows over the last couple of users and in the Fall Creators Update, you can try it out in beta. But just because Microsoft is adding an OpenSSH client and server to Windows, doesn’t mean that you should ditch PowerShell Remoting in favor of SSH. PowerShell Remoting Versus OpenSSH While Microsoft hasn’t made an official statement about why it’s adding SSH to Windows, there are some scenarios where using SSH might be a requirement or a better option than the existing remoting tools. Management systems that were built for Linux, like Ansible, use SSH as the default method of connecting to remote servers. Although, Ansible version 1. 7 did add support for PowerShell Remoting. But nevertheless, it would be useful if Windows had a built-in SSH server in these scenarios. More mature configuration management solutions, like Puppet, use a client/server model and don’t rely on the server accepting an SSH connection. But unlike Ansible, Puppet requires an agent on each managed endpoint. Installing the OpenSSH Client Beta in Windows 10 (Image Credit: Russell Smith) Probably more interesting though is that Microsoft’s OpenSSH implementation will include a client. For Windows administrators, that’s not likely to be very exciting but for those who need to manage Linux, having a... --- ### Modern SharePoint Web Parts Updates -- People Web Part - Published: 2018-01-26 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-people-web-part/ - Categories: SharePoint, SharePoint Online - Tags: Modern SharePoint Team Site, Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly.     I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the renewed People Web Part. (more... ) --- ### Paul Thurrott's Short Takes: January 26 - Published: 2018-01-26 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-26/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10 - Tags: News - Article Type: Overview Because winter in Narnia was shorter than this, this edition of Short Takes looks at Microsoft's coming $1 trillion market cap valuation, a major Surface Laptop correction, Microsoft v. AWS, and much, much more. "Faun crossing" Because winter in Narnia was shorter than this, this edition of Short Takes looks at Microsoft's coming $1 trillion market cap valuation, a major Surface Laptop correction, Microsoft v. AWS, and much, much more. Report: Microsoft could hit $1 trillion market cap as soon as 2019 Microsoft is less than two years away from a $1 trillion market capitalization---it's a bit over $710 billion as I write this---according to the researchers at Cannacord. That gain will come from Microsoft's aggressive pursuit of high growth markets like cloud computing and e-sports (see below), the firm says. And the Microsoft of this near-future will look a bit different from today's Microsoft, with certain parts of the company---Office 365, Azure, and even Dynamics CRM---growing at the expense of some legacy businesses. "It is reasonable to expect Microsoft to appreciate between 10 and 20 percent annually for the next five years," Cannacord's Richard Davis noted. That means a $1 trillion market cap "as early as calendar Q4 2019, or more like sometime in early 2020 ... We are quite bullish intermediate and long-term. " "Do I Dare to Eat a Tide Pod? " If you're dumb enough to ask, yes, please eat one. Microsoft is (sort of) selling Surface Laptop with Windows 10 Pro As you may know, Microsoft's stunning Surface Laptop is let down in only one major way: It ships with the lackluster Windows 10 S, which provides no way for customers to download or install... --- ### Drilling into PowerShell Core > Resident PowerShell guru Jeff Hicks shares his thought on the release of PowerShell Core. - Published: 2018-01-25 - Modified: 2024-11-19 - URL: https://petri.com/drilling-into-powershell-core/ - Categories: PowerShell - Tags: PowerShell Core - Article Type: How To Jeff Hicks discusses Microsoft releasing the next generation of PowerShell tools as PowerShell 6.0. Recently Microsoft finally released the next generation of PowerShell tools as PowerShell 6. 0. However, this version, which is also known as PowerShell Core, is a departure from what you might be used to. You may be wondering what it all means and more importantly, what it means to you. I know I have plenty of questions about where this is all going, so let's spend a few minutes drilling into PowerShell Core. A Fork in the Road Up to now, when someone mentioned "PowerShell" we knew what that meant. But now, we need to be more specific. The world of PowerShell is now split. On one hand, it is the PowerShell you've always known. This will be referred to as Windows PowerShell as it will only run on Windows platforms. It utilizes the full . NET Framework. One "benefit" from this split is that that Windows PowerShell is complete. Barring security updates, version 5. 1 will be the last shipped version of Windows PowerShell. That doesn't mean it is going away or that you need to stop using it. Only that going forward, Microsoft is putting all of its development efforts into PowerShell Core. This new version, which is the v6. 0 release, is built on top of . NET Core. As the name suggests, it is a subset of the full . NET Framework. However, because Microsoft made . NET Core open source, PowerShell Core is also open source. Is designed to run not only on Windows but a number of Linux distributions, MacOS,... --- ### What Meltdown Means for Office 365 > The Meltdown vulnerability is clearly serious, especially if you run on-premises servers. But if you use Office 365, should you be worried? - Published: 2018-01-25 - Modified: 2024-09-04 - URL: https://petri.com/meltdown-office-365/ - Categories: Microsoft 365, Office - Tags: exchange, Meltdown, Office 365, SharePoint The Meltdown vulnerability is clearly serious, especially if you run on-premises servers. But if you use Office 365, should you be worried? Well, maybe, but when you sign up for a cloud service, you transfer responsibility for understanding and responding to threat to the service provider. Over to Microsoft... The Meltdown Headache Anyone running on-premises servers received a real headache when the Meltdown and Spectre vulnerabilities became known. Careful sizing plans, disaster recovery configurations, and datacenter failover arrangements all went out the door with the realization that applying the fixes released by CPU and O/S vendors could impact server performance. It wasn’t a nice period. Since the original reports of the vulnerabilities and the first release of patches (albeit including some buggy BIOS fixes), we have a better picture of the impact. The bad news is that software vendors are unable to be anyway precise about the effect that any specific customer can expect after applying the mitigations. Exchange is an Impacted Workload You might criticize advice like that released by Microsoft for Exchange because of the fuzziness of statements like “Exchange Server is one of those workloads that may experience a significant decrease if KVAS is enabled,” but this is all they can really say. Every customer environment is different in terms of server hardware, BIOS levels, patches, software revisions, and mix of Microsoft and third-party software running on the servers. Throw in variations in CPU and I/O load and you have an impossible matrix of possibilities. The advice of testing in a lab environment before deploying fixes into production is both sensible and the only possible course. (For more on this topic, read Paul Cunningham’s article). Much More than Exchange It is not just on-premises Exchange servers that incur a performance penalty. Every Windows server running... --- ### Populate Active Directory with Test User Accounts - Published: 2018-01-24 - Modified: 2024-09-04 - URL: https://petri.com/populate-active-directory-with-test-user-accounts/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell, User Provisioning - Article Type: How To In this Ask the Admin, Russell Smith uses a PowerShell script to populate Active Directory with test user accounts. In this Ask the Admin, I'll use a PowerShell script to populate Active Directory with test user accounts.     Active Directory (AD) is the chosen user-authentication mechanism in most organizations and a key infrastructure component that’s central to giving users access to business applications. Because of Active Directory’s critical role, it is usually a required component in pre-production test labs. Setting up AD in Azure is quite easy. If you want to automate provisioning Windows Server Active Directory in Azure, look at my series on automating the process using Infrastructure-as-Code: Deploy Active Directory and Certificate Services in Azure Using Infrastructure-as-Code — Part 1 Deploy Active Directory and Certificate Services in Azure Using Infrastructure-as-Code — Part 2 Deploy Active Directory and Certificate Services in Azure Using Infrastructure-as-Code — Part 3 Once you’ve got AD up and running, you’ll need to populate it with user accounts to get a realistic test environment. Instead of reinventing the wheel and writing my own script, I decided to look at what’s already out there. There are lots of examples available, some of them more complicated than others. In the end, after looking at different scripts, I settled on a script from the Tailspintoys – 365lab. net blog by Johan Dahlbom. I liked the script because of its simplicity and it is well thought out, making it easy to adapt. Some of the other examples had more options for creating user object attributes but also used different text files for male and female usernames,... --- ### Amazon Introduces AWS Auto Scaling - Published: 2018-01-24 - Modified: 2024-09-04 - URL: https://petri.com/amazon-introduces-aws-auto-scaling/ - Categories: Cloud Computing - Tags: Amazon, Auto, AWS, Cloud, Management, News, Resource, Scaling - Article Type: News Amazon recently announced AWS Auto Scaling, a new service that enables admins to simultaneously configure scaling options for multiple AWS resources. When operating a large website or SaaS platform that's hosted in the cloud, there will often be periods of time that require the underlying resources to be scaled up in order to handle periodic spikes in usage. While most cloud hosting providers make it easy to scale up when needed, doing so often required managing resources individually. This would require more work of admins.     However, with AWS Auto Scaling, a new service that Amazon recently announced in a post on the AWS blog, managing resources and ensuring that there are no outages has just become a bit easier. This new service enables users to monitor and manage multiple AWS resources and services simultaneously, all from one unified dashboard. With AWS Auto Scaling, users can simply select a set of resources or AWS services, choose a scaling option, and then Auto Scaling will create a scaling plan for those resources that are able to scale. This is something that can save quite a bit of time when compared to manually configuring the same scaling options for each resource or service individually. What's great about Auto Scaling in AWS is that users can choose from several different scaling options based on factors such as desired cost and availability. For example, users could optimize for cost, which would keep prices low. With a lower scaling threshold, it could also potentially lead to performance issues in the event of a usage spike. Alternatively, users could decide to configure their resources to... --- ### Adding WebJobs to Azure App Service - Published: 2018-01-24 - Modified: 2024-09-04 - URL: https://petri.com/adding-webjobs-azure-app-service/ - Categories: Microsoft Azure - Tags: App Service, App Service Plan, Azure, Functions, Webjob - Article Type: How To Aidan Finn explains how you can use WebJobs to execute tasks on Azure App Service. In this post, I will explain how you can use WebJobs to execute tasks on Azure App Service.   The Requirement You might require some sort of task to run in Azure, for example, when I upload an image via a Web App, a background task will pick up that image, do something to it, and then email me a link to download the results. This sort of task was historically done by a WebJob, a task that could execute in the abstracted virtual machine environment of Azure App Services. A WebJob, in short, is some script or executable that can be run continuously, manually started, or triggered on a scheduled basis. Functions as an Alternative WebJobs run in Azure App Service plans. There are two considerations, especially for larger applications: Performance and Cost: When you have a large-scale mobile or web application, it is recommended that any WebJobs are placed into a different App Service plan (pool of abstracted virtual machines), giving you the ability to scale the background tier separately from the web tier and giving the web tier its own processor/memory capacity. This means that you will have an additional fixed cost for each virtual machine instance in the additional App Service plan(s). Scale-Out: You can auto-scale an App Service plan. This is very fast but it will reach a limit. And, there is a large increment in the cost (per-minute charge for the App Service instance).   Azure Functions are similar to... --- ### Evolution of Mixed Reality Continues as Microsoft Combines Teams, Re-orgs NEXT - Published: 2018-01-23 - Modified: 2024-09-04 - URL: https://petri.com/evolution-mixed-reality-continues-microsoft-combines-teams-re-orgs-next/ - Categories: Main - Tags: Microsoft, News - Article Type: News Microsoft has changed up some of its organizational structure as well as combing a couple of teams in its mixed reality org. Earlier this week, Microsoft made a few cuts across several different orgs and while the company typically doesn't share details about these changes, insiders at the company have been able to shine a little bit of light on what is happening. For fans of inside baseball at Microsoft, this is about as close to the chest as it can get thanks to documents I was able to view regarding the deck chairs being moved about. Some of the changes this week impact those who work on mixed reality applications as well as apps for Windows 10. This is not intended to be a breakdown of every change made at Microsoft this week as that's a full-time job but this is a look inside the NEXT org and some of the updates happening under Kudo Tsunoda's umbrella. Microsoft is combining its EDM and Evoke Studios. If those names don't sound familiar, EDM stands for Everyday Magic which includes Paint 3D, Remix3D, Mixed Reality Viewer, MR/VR/AR app development and Evoke was responsible for Photos and Videos app. Inevitably, this resulted in some employees being cut which happened earlier this week. This new group is reporting to Chris Pratley and for those who are curious about what is happening to Megan Saunders, she is moving internally at Microsoft to a role that has yet to be announced. Previously, she helped create Skype for HoloLens, the creation of EDM Studio as well as the 3D for Everyone initiative. Also noted in the... --- ### PowerShell Core 6.0 and Why Windows PowerShell Is No Longer Being Developed - Published: 2018-01-23 - Modified: 2024-09-04 - URL: https://petri.com/powershell-core-and-why-windows-powershell-is-no-longer-being-developed/ - Categories: PowerShell - Tags: cloud computing, linux, macOS, PowerShell, PowerShell Core - Article Type: Overview Microsoft announced the general availability of PowerShell Core 6.0 on January 10th. In this Ask the Admin, we will look at the roadmap for PowerShell and some of the dramatic changes since Microsoft announced that PowerShell will be open source. Microsoft announced the general availability of PowerShell Core 6. 0 on January 10th. In this Ask the Admin, I'll look at the roadmap for PowerShell and some of the dramatic changes since Microsoft announced that PowerShell will be open source.     40 percent of all VMs provisioned in Azure run Linux. And 26 percent of VMs in Amazon Web Services (AWS) run Windows. If you take Azure and AWS as the two biggest providers, that’s not a small number of Windows servers running in the cloud, although Linux has a clear lead. The reality for many organizations is that they manage a mixture of Windows and Linux servers, whether in an on-premises datacenter, in the cloud, or both. But Windows and Linux are conceptually different operating systems and there are different management tools and systems to reflect that reality. Bash, Puppet, and Python are common tools used for managing Linux environments. While those tools can be run in Windows, they are not native to the platform. Although if you install Ubuntu, openSUSE, SLES, or Fedora using the Windows Subsystem for Linux (WSL), you get access to a limited Bash shell. Windows isn’t called Windows for no reason and system administrators generally avoid the command line. But in 2006 Microsoft introduced PowerShell, a new task automation and configuration management framework that was designed to give Windows administrators a powerful set of command line tools like those available for Unix. The key difference between Bash and PowerShell is that where... --- ### Finding Obsolete Office 365 Groups with PowerShell > Office 365 Groups (and Teams) can become obsolete quickly, but administrators need some help to find the underused groups. PowerShell comes to the rescue. - Published: 2018-01-23 - Modified: 2024-12-03 - URL: https://petri.com/identifying-obsolete-office-365-groups-powershell/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Exchange Online, Office 365 Audit records, Office 365 Groups, PowerShell, SharePoint Online, Teams - Article Type: How To Office 365 Groups (and Teams) can quickly become obsolete, but administrators need some help to find the underused groups. PowerShell comes to the rescue through a mixture of checks against the group mailbox, Office 365 audit log, and Teams compliance records. A nice HTML report is the result - and isn't that always welcome. The Problem of Old Groups In August 2016, I wrote about a PowerShell script to find obsolete Office 365 Groups and published the article on ITUnity. com. Time moves on and the mission of ITUnity. com is different, but the need to keep some control over user-created groups that are not in active use remains. In fact, the general availability of Microsoft Teams in March 2017 and the attendant increase in the number of groups created means that the need for control is even greater now. Microsoft now has the group expiration policy, which requires premium Azure Active Directory licenses for all users in groups that come under the control of the policy. The group expiration policy finds potentially-obsolete groups, but does not take activity into account. The decision to ask a group owner to confirm that a group is still active is entirely based on date. , Apart from the cost, some people have complained that the emailed notifications for expiring groups look like spam and want to be able to generate tenant-customized messages. That feature is not available today. I dusted off the text of the ITUnity. com article and present an updated version here, including an updated script that checks for Teams activity. Using PowerShell to Solve Application Administration Like any resource, Office 365 Groups can become unused over time. Some enthusiastic hacking PowerShell to use Office 365 audit records about SharePoint file activity and a check against conversation items in the group mailbox turns up some interesting results... . --- ### Microsoft Cuts More From its Payroll, Layoffs Across Several Orgs - Published: 2018-01-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cuts-payroll-layoffs-across-several-orgs/ - Categories: Main - Tags: layoff, Microsoft, News - Article Type: News Microsoft has cut more employees from its payroll today, with a heavy impact to the Windows and Devices Group. Today, somewhat unexpectedly, Microsoft conducted a small round of layoffs impacting its corporate offices as well as regions around the globe. While I don't know the exact distribution of the cuts, based on evidence sent to me, it looks like the WDG (Windows and Devices Group) was impacted at a higher rate than other orgs inside Microsoft. That being said, individual staff were cut from several different product groups including Bing, some of the tooling teams, and a few other operational areas as well. When I reached out to Microsoft about the layoffs, they confirmed that the cuts did occur today but did not provide any additional information. As for the size of the cuts, while I don't know the exact figure, think in the hundreds, not in the thousands. Considering the company has over 100,000 employees, this is a minor cut when compared to the thousands who have been let go in previous rounds. Over the years, Microsoft's ranks have continued to swell and from time to time, they do need to scale back their operations. Headcount reduction at a company that has over 100,000 employees isn't that uncommon, especially as business plans change and markets shift. But with any cuts, this will have a deep impact on the individual as well as morale at the company. Even though Microsoft has had several rounds of cuts the past few years, I don't believe that this a larger trend for the future of the company. Microsoft has successfully shifted to a cloud-first... --- ### Google Adds Salesforce Sales Cloud Integration to Google Analytics 360 - Published: 2018-01-22 - Modified: 2024-09-04 - URL: https://petri.com/google-adds-salesforce-sales-cloud-integration-google-analytics-360/ - Categories: Cloud Computing - Tags: 360, analytics, Cloud, Google, Integration, News, Sales, salesforce - Article Type: News Google recently announced that Salesforce's Sales Cloud will be integrated with Google Analytics 360, enabling businesses to better track and analyze customer data. Back in November, Google announced a partnership with Salesforce, which would involve a series of integrations between the two companies that would enable customers to integrate sales, marketing, and advertising data from the Salesforce Sales Cloud platform into Google Analytics 360.     The first of these integrations, which was recently introduced on the Google Analytics Blog, enables users to import sales pipeline data from Sales Cloud into Google Analytics 360, including various types of data related to potential leads and opportunities for sales. This can enable organizations to better visualize how customers are driven to make purchases so that they can improve the process, better engage customers, and ultimately lead to an increase in conversions. What’s more is that this new integration can even be used to gather insights from offline conversions that are tracked using Salesforce, which, when combined with analytics from digital transactions and movements, can provide a great deal of information on how the customer was led to make the transaction chosen. And for those organizations that use Google’s BigQuery data warehousing service, there is also the option to import the data from Sales Cloud into BigQuery, enabling organizations to take advantage of the analytics tools that are available to BigQuery users as well. This would allow for a variety of further insights to be drawn from the data collected not only from Sales Cloud, but also from any other sources that feed into the cloud-based data warehouse. Over the next few months, Google... --- ### Azure Accelerated Network Is Generally Available > This post discusses the GAof Accelerated Networking for Windows and Linux Azure virtual machines, improving networking performance. - Published: 2018-01-22 - Modified: 2024-09-04 - URL: https://petri.com/azure-accelerated-network-generally-available/ - Categories: Microsoft Azure - Tags: Accelerated Networking, Azure, Azure Virtual Machines, linux, networking, RSS, SR-IOV, virtual machine, Virtual NIC, Windows - Article Type: Overview Aidan Finn discusses Microsoft's recent announcement that Accelerated Networking is now generally available for Windows and Linux virtual machines running in Azure. Microsoft recently announced that Accelerated Networking is now generally available for Windows (previously GA) and Linux (new) virtual machines running in Azure.   Background Accelerated networking is a system where virtual machines bypass the virtual switch of the underlying Azure Hyper-V host and inbound and outbound packets travel directly between the virtual machine’s virtual NIC (virtual function or VF) and the host’s physical NIC (physical function or PF). This results in: Better bandwidth per virtual NIC Lower latency Reduce latency Better processor performance (more on this later) How Accelerated Networking Impacts Azure Virtual Machine Architecture Enabling Accelerated Networking You can enable Accelerated Networking when creating a new virtual NIC for a new virtual machine. If you have an existing virtual machine, then you will have to delete the virtual machine and recreate it from the existing disks (you lose nothing but time): Managed disks: Build the new virtual machine, with Accelerated Networking enabled, from the pre-existing OS disk (Azure Portal or PowerShell) and add the data disks afterward. Un-Managed disks: You will have to use PowerShell or JSON to re-create the virtual machine with Accelerated Networking enabled. Availability The availability of Azure PowerShell depends on: The series/size of the virtual machine The guest operating system Only ARM virtual machines are supported – another reason to upgrade from classic/ASM deployments! The following series are supported: D/DS_v3 with 8 vCPUs or more E/ES_v3 with 8 vCPUs or more D/DS_v2 with 4 vCPUs or... --- ### New Yammer Features: Counts, Group Types, and Move Conversations - Published: 2018-01-19 - Modified: 2024-11-19 - URL: https://petri.com/new-yammer-features-counts-group-types-move-conversations/ - Categories: Microsoft 365, Yammer - Tags: Enterprise Social, Updates - Article Type: Overview Jasper Oosterveld, Modern Workplace Consultant and Microsoft MVP, announced and reviews three new Yammer features. Time flies and so do the updates in Office 365. You look away for a moment and countless new features are introduced by Microsoft. I would like to take a look at a couple Yammer updates I noticed in the Office 365 Message Center. I am a long time but critical fan of Yammer. The only real social service within Office 365 received a lot of criticism over the past years. Especially within the SharePoint and Office 365 community and MVP's but is definitely stepping up its game lately. The integration with Office 365 Groups really was a step in the right direction and definitely a turning point for Yammer.     The following updates are being released the coming weeks: Yammer seen counts Group types Move conversations Let's take a closer look! Yammer Seen Counts Hereby the official description of this new feature: This feature will allow you to see how many people have viewed your conversations.      The first post will now show the number of unique users that have seen the first message in a conversation. These counts will only show if there is at least one person who has seen the conversations. The creator of the conversation will not be included in the count. Replies to a conversation will not be added to the count. Only the original creator will be able to see the counts for their conversations.   This is a great new feature because people post conversations to share their knowledge,... --- ### Paul Thurrott's Short Takes: January 19 - Published: 2018-01-19 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-january-19/ - Categories: Cloud Computing, Messaging, Mobile, Windows 10 - Tags: News - Article Type: Overview Because baby it's cold outside, this edition of Short Takes looks at Surface Book 2 market expansion, IBM revenue growth, Apple's $350 billion "contribution," new tech industry corporate headquarters, and much more. Apple's new headquarters Because baby it's cold outside, this edition of Short Takes looks at Surface Book 2 market expansion, IBM revenue growth, Apple's $350 billion "contribution," new tech industry corporate headquarters, and much more. Yes, Surface Book 2 is heading to the world When Microsoft announced Surface Book 2 late last year, it surprised everyone by limiting availability of the new 15-inch version to just the United States. After all, the previous few Surface releases, Surface Pro (2017) and Surface Laptop, were made available to the world pretty much from day one. But we were told on the hush-hush at CES that a worldwide launch was imminent, and this week, Microsoft confirmed that Surface Book 2 15-inch would ship to 17 new markets immediately. "Surface Book 2 is coming to all current Surface markets in both 13-inch and 15-inch sizes," the firm confirmed. So, good news there. "Here's One Way Microsoft's Amazon Alexa Rival Could Win" Time travel. IBM announces its first revenue growth in six years I keep wondering when the PC market is going to stop shrinking, and maybe IBM's experience transforming itself into a cloud services provider is an interesting model, at least from a time frame perspective: The once-mighty overlord of the tech industry this week announced its first year-over-year revenue growth in six years, or 23 consecutive quarters. IBM revenues in the quarter were $22. 54 billion, up 3. 6 percent. But this is IBM, so there has to be... --- ### Google's Bringing a Unified Security View to G Suite - Published: 2018-01-18 - Modified: 2024-09-24 - URL: https://petri.com/googles-bringing-unified-security-view-g-suite/ - Categories: Google Cloud Platform - Tags: G Suite, Google, News - Article Type: News Google is starting to fuse security into its productivity suite in a similar way that Microsoft has done with Office 365. When it comes to productivity, there are two primary offerings; Office 365 and G Suite. It's not a big surprise to say that Office 365 has a much larger install-base than G Suite but as each year passes, Google keeps adding to its platform. Even though Google is a minor player, at this time in the productivity space, it's hard to ignore them as they are showing growth. The company says that there are 3. 5 million organizations using G Suite and today they are announcing a new security center for the platform. The new security center brings together analytics and insight into a single pane of glass that should help administrators more effectively manage their environments. Considering that email is often a primary attack vector for malware and social engineering, having finite control over it from a top-down approach is critical. The pitch is pretty simple, with improved insight into how emails are floating around your network and by monitoring who they are targeting, you can better protect your users. Of course, if you are coming from Office 365, this type of feature is expected and it's clear that Microsoft is ahead in this segment. But, Google is actively building out this platform and I suspect will add more functionality to its security-view in the near future. Microsoft has invested heavily in its Advanced Threat Protection services to move Office from a suite of productivity tools to another layer of data protection. This is one of the primary... --- ### PowerShell for SharePoint Online Toolset - Published: 2018-01-18 - Modified: 2024-11-19 - URL: https://petri.com/powershell-sharepoint-online-toolset/ - Categories: PowerShell - Tags: Office 365, PowerShell, SharePoint Online We can use PowerShell for SPO by using any of the development environments provided by Microsoft. If you ask my recommendation about what tool to use, I would say Windows PowerShell ISE or Visual Studio Code. Finally, there are also third-party tools to run PowerShell scripts and modules for SPO. In my last article at Petri. com, I introduced some of the usage scenarios we can face when managing SharePoint Online (SPO) using PowerShell. In this article, I will describe some of the Tools (Figure 1) we can use to run our SPO PowerShell Scripts.     Figure 1 -- PowerShell for SPO Toolset   So, let’s talk a little bit about each of the tools represented in Figure 1: Windows PowerShell Windows PowerShell refers not only to a command-line shell tool for Windows but also to a scripting language that has become a standard to manage almost any Microsoft platform (OnPremises and in the Cloud). You can execute SPO default cmdlets in the native Windows PowerShell shell whenever you first install the SPO Management Shell. Note: You can download last SPO Management Shell from here. Figure 2 -- Executing SPO Cmdlets in Windows PowerShell Of course, you can also execute any PowerShell Script that uses any of the SPO APIs: Client Side Object Model (CSOM) SPO REST API Microsoft Graph API     SPO Management Shell SPO Management Shell is the default PowerShell shell provided by Microsoft to execute latest SPO cmdlets against a SPO tenant. It’s updated quite often by Microsoft (at the time of writing, last update available was release on the 21st of December). This means that we have to keep an eye on the usual channels used by the SPO Dev Team to communicate that a new version of the SPO Management... --- ### The Mysterious Files Folder and its Importance to Office 365 Apps > Many differences exist between the on-premises and cloud worlds. The Files folder is one of Office 365's unique features. - Published: 2018-01-18 - Modified: 2024-11-19 - URL: https://petri.com/mysterious-files-folder/ - Categories: Microsoft 365, Office - Tags: cloudy attachments, Delve, Exchange Online, MFCMAPI, Microsoft Graph, MRU, Outlook, owa, SharePoint Online Many differences exist between the on-premises and cloud worlds. The Files folder is one of Office 365's unique features. The folder exists in user mailboxes to hold information about "file-oriented experiences." As it turns out, apps like Delve, SharePoint, and Office 365 Groups like to display file information to users, but they need a fast and efficient way to get to that data. Files is the answer! The Importance of Files to Office 365 Microsoft introduced the Files folder to Exchange Online mailboxes in 2015. Files is a system folder, meaning that it is in every mailbox. The idea behind the folder is that it holds information about files that the user might be interested in, including attachments that received in email, “cloudy attachments” added to outbound messages or received inbound, hyperlinks in email, and files from SharePoint Online and OneDrive for Business that the user recently worked with. An example of how clients use this data is when you select Files for an Office 365 group in OWA. The information presented comes from the Files folder in the group mailbox. Another is the “Your recent documents” list presented in Delve (Figure 1), which you can view by documents and attachments, just attachments, or just documents. Delve lists recent documents (image credit: Tony Redmond) Still another is the SharePoint home page, which presents users with information about documents they have recently worked with or viewed in different sites. Finally, there’s the Office 365 People card, which includes details of emails and files shared by a user when someone views their profile. The Reason for Files In all cases, the need exists for fast access to information. No one wants to wait while Office 365 consults SharePoint Online, OneDrive for Business, and Exchange Online to figure out what information to display. Keeping copies of relevant information gathered from different sources in the... --- ### Google Cloud is Adding 5 New Data Centers, Rolling Out 3 New Subsea Cables - Published: 2018-01-17 - Modified: 2024-09-04 - URL: https://petri.com/google-cloud-adding-5-new-data-centers-rolling-3-new-subsea-cables/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Google - Article Type: News Google is expanding its cloud footprint with new data centers and also three new subsea cables coming in 2019. While Google may be coming from behind in the cloud race and after spending more than $30 billion during the past three years to improve its infrastructure, the company is going to invest significantly more capital to expand its footprint. Announced this week, the company will open five new regions in 2018 followed by three new subsea cables in 2019. Opening new data centers isn't all the special as both Microsoft and Amazon outnumber what Google has available today but this shows their continued investment in their cloud platform. Data centers for cloud operations are not cheap and can easily surpass $1 billion in expense when all said and done, and that's not counting on-going maintenance costs too. Likely of more importance for Google is that they commissioning three subsea cables; "Curie, a private cable connecting Chile to Los Angeles; Havfrue, a consortium cable connecting the U. S. to Denmark and Ireland; and the Hong Kong-Guam Cable system (HK-G), a consortium cable interconnecting major subsea communication hubs in Asia. Considering Google's vast network infrastructure is of vital importance to its core business, adding additional bandwidth to new markets will help reduce latency. Further. since Google gets to design the data pipelines, they will be able to configure the cables to their own specifications that match that of their datacenters. It is important to have data centers in strategic locations around the globe for local compute capabilities and failover but latency is also of vital importance. For cloud providers, investing in... --- ### Azure App Services on Linux > In this post, I will discuss App Services on Linux, how it differs to the Windows Server offering, and what you can do with the Linux alternative. - Published: 2018-01-17 - Modified: 2024-09-04 - URL: https://petri.com/azure-app-services-linux/ - Categories: Microsoft Azure - Tags: 8.8, Apache, App Service Plan, App Services, Azure, Containers, Debian, Docker, Jessie, linux, Web App for Containers, Web Apps - Article Type: Overview Aidan Finn discusses App Services on Linux, what this service is, how it differs to the Windows Server offering, and what you can do with the Linux alternative. In this post, I will discuss App Services on Linux, what this service is, how it differs to the Windows Server offering, and what you can do with the Linux alternative.     Background In a previous post, I explained that Azure offers an alternative to the legacy way of deploying web applications on virtual machines. Instead, one can focus on the application by using Web Apps on Azure Application Services. Up until recently, this was a Windows Server-only offering. By that, I mean that the virtual machines, hidden away by Azure and completely managed by Microsoft, that made up your app service used Windows Server (today it is Windows Server 2016) as its guest OS and IIS as the web server. Every Web App that you deployed on an App Service plan (a deployment of Application Services) was an application pool on each load balanced instance. However, not everyone wants to use Windows Server. Some people just prefer Linux and because of that, and a few other reasons that I’ll mention, Microsoft has offered a Linux option for customers that want to deploy Web Apps in Azure. Web App for Containers As I mentioned before, when you deploy an App Service plan for a Windows based Web App, you are getting one or more abstracted virtual machines that Microsoft will manage. The build and configuration of this virtual machine is completely managed by Microsoft. If you choose to deploy a Linux-based App Service plan, then things change... --- ### Top 4 Disaster Risks for SMBs - Published: 2018-01-16 - Modified: 2024-09-04 - URL: https://petri.com/top-4-disaster-risks-for-smbs/ - Categories: Backup & Storage, Cloud Computing - Tags: Backup, Cloud, Disaster Recovery - Article Type: Overview See how you can handle the biggest disaster risks for small and medium-sized businesses before they impact your business. Having a disaster recovery (DR) plan is essential for businesses of all sizes. However, it’s especially important for small and medium-sized businesses. For a large business or an enterprise, a disaster is certainly a serious event. However, they have the reserves and the resources to weather outages – even extended outages and then resume operations. That’s not always the case for smaller and medium-sized businesses. For many smaller and medium-sized operations, an extended outage can be a catastrophic event from which they can never recover. Unfortunately, preparing for these types of event is something that many small business overlook or simply don’t get around to discussing. Let’s look at five of the biggest disaster risks that are faced by small and medium-sized businesses. Physical disasters – Events like fires, hurricanes, tornados, and storms can physically damage your place of business or your inventory costing thousands of dollars in losses. These types of disasters almost always result in site-wide damage. Smaller businesses with only one or two locations are especially vulnerable because this can completely disrupt the ability to do business. According to the Federal Emergency Management Agency (FEMA), almost 40 percent of small businesses permanently close after a disaster. To protect your business from a potentially devastating property loss, it’s important to ensure that you have a DR plan in place as well as adequate site insurance coverage. As part of your DR plan, it is essential that files and data are backed up and there is at least one... --- ### Patch Tuesday January 2018 - Published: 2018-01-16 - Modified: 2024-09-04 - URL: https://petri.com/patch-tuesday-january-2018/ - Categories: Security - Tags: Meltdown, Microsoft, Office, Patch Tuesday, Security, Spectre, Windows - Article Type: News This month’s Patch Tuesday is one of the most interesting in a while. Not just because the patches Microsoft was preparing for release today came a week early, but also because of the potential issues these patches might cause. This month’s Patch Tuesday is one of the most interesting in a while. Not just because the patches Microsoft was preparing for release today came a week early, but also because of the potential issues these patches might cause.     Patch Tuesday came early this month on January 3rd because details of several serious processor vulnerabilities were leaked. Cumulative updates were released for Windows 10, Windows Server 2016, Internet Explorer, Edge, and SQL Server. Security-only patches were released for Windows 7, Windows 8. 1, Windows Server 2008 R2, and Windows Server 2012 R2. The Windows 10 updates include fixes for 35 CVEs, three of which are for 2017 CVEs relating to the speculative execution side-channel processor vulnerabilities. CVE-2017-5753 – Spectre Bounds check bypass CVE-2017-5715 – Spectre Branch target injection CVE-2017-5754 – Meltdown Rogue data cache load For more details on the vulnerabilities, see Intel Misled Industry on Security Vulnerabilities on Thurrott. com. Here is a complete list of the updates released on January 3rd that address the three speculative execution side-channel vulnerabilities. Full information about each patch and the fixes included are contained in the link for each KB article. Windows 10 Knowledge Base Articles Windows 10 version 1709 KB4056892 (Cumulative) Windows 10 version 1703 KB4056891 (Cumulative) Windows 10 version 1607 and Server 2016 KB4056890 (Cumulative but only one fix) Windows 10 version 1511 LTSC KB4056888 (Cumulative but only one fix) Windows 10 version 1507 LTSB KB4056893 (Cumulative with an extra fix for a Smart Card memory spike issue)... --- ### Behind the Scenes in an Office 365 Group Mailbox > You know that Office 365 Groups have a mailbox and that the mailbox holds conversations and the group calendar. But many other folders exist. - Published: 2018-01-16 - Modified: 2024-11-19 - URL: https://petri.com/behind-scenes-office-365-group-mailbox/ - Categories: Microsoft 365, Office - Tags: EOP, Exchange Online, group mailbox, Groups, Junk email, Office 365, spam - Article Type: How To You know that Office 365 Groups have a mailbox and that the mailbox holds conversations and the group calendar. But many other folders exist in a group mailbox. Some are used for internal purposes, some by clients. And sometimes you want to look to see what those folders hold, as when some mail might have been misdirected to Junk Email. A Need to Check Junk Email My esteemed MVP colleague, Vasil Michev, sometimes gets very hot under the collar about topics that I dismiss. A recent example is his frustration that Microsoft doesn’t have a supported method to allow you access all the folders in a group mailbox. This need arises when he wants to check the Junk Email folder for spam. Normal EOP Processing Apparently, some email arriving into a group mailbox ends up in Junk Email. This is the way that things should work as Exchange Online Protection (EOP) processes messages addressed to group mailboxes in the same way as any other mailbox. If a message exceeds the spam threshold, it goes into Junk Email. Spam might arrive into a group mailbox if you publish the SMTP address for a group outside your organization. For instance, putting a list of group email addresses on your web site is a good way of making sure that spammers will pay attention and add the addresses to their lists. Normally, group email addresses are not widely known outside an organization. They are unlike the addresses of user or shared mailboxes, which might show up on business cards or as contact addresses on the web. Perhaps people are replacing shared mailboxes with Office 365 Groups now that Microsoft supports the send as and send on behalf of features for these mailboxes. In any case, I am not quite sure why so many of the group mailboxes Vasil checked receive spam,... --- ### Why is Everyone Scared of Microsoft Becoming the Next IBM? - Published: 2018-01-15 - Modified: 2024-09-04 - URL: https://petri.com/everyone-scared-microsoft-becoming-next-ibm/ - Categories: Cloud Computing, Microsoft Azure - Tags: IBM, Microsoft - Article Type: Opinion As Microsoft continues to evolve its business model, it is frequently compared to IBM but is that such a bad thing? Microsoft is a company that has been evolving during the past decade and it's future, while still bright, is not what some expected from a company who dominates the home-pc market with its Windows operating system. As the company refines its strategy going forward, many keep wondering if the company is going to become 'the next IBM'? Every time that question is posed, I keep wondering somewhat aloud if that's really a bad thing? IBM, who is still a significant player in the IT space, has survived its own transition periods and Microsoft is uniquely positioned for the next generation of computing. The company is slowly exiting the consumer space by shutting down its mobile OS platform, closing its music service, and Cortana is falling far behind Alexa and Google Assistant but for Microsoft, this isn't a significant impact to their operations. The company's bread and butter has always been in the corporate segment and the future looks to mimic the past. There is little doubt that cloud computing is the future and that the data center is going to become a monument of the past. Yes, there will always be a need for local metal but for new companies that haven't been birthed and older giants looking to modernize, moving to the cloud is a logical move. Microsoft is going to live on in the cloud, even if all other business initiatives fail, the cloud hardware will survive because of the significant barrier to entry in this... --- ### Active Directory Security: Understanding the AdminSDHolder Object - Published: 2018-01-15 - Modified: 2024-11-19 - URL: https://petri.com/active-directory-security-understanding-adminsdholder-object/ - Categories: Active Directory (AD) - Tags: Active Directory, AdminSDHolder, Privileged Access Management, SDPROP, Security - Article Type: How To In this Ask the Admin, Russell Smith explains how this mechanism works and how you can change the way that it works. The AdminSDHolder object manages the access control lists of members of built-in privileged Active Directory groups. In this Ask the Admin, I'll explain how this mechanism works and how you can change the way that it works.     A couple of months back on Petri, I looked at a new feature in Windows Server 2016: Short-Lived Active Directory Group Membership. In that article, I noted that adding user objects to special AD groups, like Account Operators, might cause the adminCount attribute for the account to be changed to 1 if the account is in the group long enough for the AdminSDHolder mechanism to make the account a protected object. If the adminCount attribute is changed and the account is removed from the group, the adminCount attribute remains set to 1. The Security Descriptor Propagation (SDPROP) process runs every hour on the domain controller holding the PDC emulator FSMO role. It is this process that sets the adminCount attribute to 1. The main function of SDPROP is to protect highly-privileged Active Directory accounts, ensuring that they can’t be deleted or have rights modified, accidentally or intentionally, by users or processes with less privilege. SDPROP scans the domain for protected accounts, disables rights inheritance, and applies an access control list (ACL) on the object that mirrors the ACL of the AdminSDHolder container. But if SDPROP determines that an object’s rights inheritance is already disabled and that the ACLs match those of the AdminSDHolder container, then adminCount is not set to... --- ### Mount an Active Directory Backup Using the Database Mounting Tool - Published: 2018-01-15 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-domain-services-database-mounting-tool/ - Categories: Active Directory (AD) - Tags: Active Directory, Active Directory Database Mounting Tool, Backup, Windows Server - Article Type: How To In this Ask the Admin, Russell Smith explains how to use the ADDS Database Mounting Tool to look at backups of AD. In this Ask the Admin, I'll explain how to use the ADDS Database Mounting Tool to look at backups of AD.     Restoring Active Directory (AD), or part thereof, is rarely an easy task. One of the first questions that needs to be answered before restoring AD is which backup to use. In cases where you need to restore a complete forest or domain, Microsoft recommends using a trusted backup that’s a few days old to avoid restoring a copy of AD that has the same issues that you are trying to recover from. Using the built-in Windows Server Backup tool, you can restore AD to an alternative location but there’s no way to quickly view the contents of the AD database stored in each backup before restoration. Starting in Windows Server 2008, the Active Directory management tools include dsamain. exe, which allows you to mount a volume shadow copy snapshot or backup of ntds. dit, and explore it using standard admin tools, like Active Directory Users and Computers (ADUC) and the PowerShell AD cmdlets. In this article, I’m going to mount an AD backup on a domain controller for the sake of simplicity. In a production environment, you can use the following tools on any device where the Active Directory management tools are installed. If you would prefer to read about how to mount a VSS snapshot instead, take a look at Working with Active Directory Snapshots in Windows Server 2008 on Petri. Attach a Backup to Windows... --- ### Do You Need Third-Party Antimalware in Windows? - Published: 2018-01-12 - Modified: 2024-09-04 - URL: https://petri.com/need-third-party-antimalware-windows/ - Categories: Windows Client OS - Tags: Antimalware, Security, Windows 10, Windows Defender, Windows Defender Advanced Threat Protection, Windows Server 2016 - Article Type: Opinion In today's Ask the Admin, we discuss whether it's necessary to use third-party antimalware in Windows 10 and Windows Server 2016 on your company’s PCs. In today's Ask the Admin, I'll discuss whether it's necessary to use third-party antimalware in Windows 10 and Windows Server 2016 on your company’s PCs.     One of my responsibilities when I started out in IT was managing antivirus on PCs. At that time, there was no built-in antimalware solution in Windows and antivirus usually meant software from Symantec or McAfee. One of our clients had an email gateway that was effective at quarantining viruses. But it was common for PCs to be infected, despite the presence of AV, because in those days AV was bad at detecting zero-day threats. Move on 18 years, the threat landscape has changed beyond recognition but so has the effectiveness of AV. Windows now has built-in AV in the form of Windows Defender. It sometimes gets a bad rap for being less effective at detecting viruses than the competition and that seems to stack up. According to AV-Test, which is an independent anti-virus research firm, Windows Defender generally performs slightly worse than the best of the competition. For example, in October 2017 Windows Defender detected 96. 3 percent of malicious zero-day samples but McAfee Internet Security detected 100 percent. In September 2017, Windows Defender scored 100 percent. Defender really fell in the number of false positives. It clocked up 21 false positives when scanning the system for malware from a sample size of 1,425,641. In comparison, McAfee didn’t come up with any false positives. But Defender was able to detect most real... --- ### Change the System Partition From MBR to GPT in Windows 10 - Published: 2018-01-12 - Modified: 2024-09-04 - URL: https://petri.com/change-the-disk-partition-from-mbr-to-guid-in-windows-10/ - Categories: Windows Client OS - Tags: GPT, MBR, Microsoft Deployment Toolkit, Security, UEFI, Windows 10, Windows PE - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to change the system disk partition type from MBR to GPT in Windows 10 Creators Update using a command-line tool. In today's Ask the Admin, I'll show you how to change the system disk partition type from MBR to GPT in Windows 10 Creators Update using a command-line tool.     New devices that come pre-installed with Windows 10 have UEFI firmware and a system partition formatted as GUID Partition Table (GPT). GPT is the successor to MBR, which is only supported on systems with a legacy BIOS or UEFI systems booted in BIOS-compatibility mode. GPT is a more robust solution that stores partitioning and boot data in multiple locations and uses cyclic redundancy check (CRC) values to identify corrupt data and attempt recovery. It also overcomes some of the limitations of MBR, allowing disk sizes larger than 4TB and more than four primary partitions. For clean Windows 10 installs, there should be no issue with formatting the system partition with GPT. But organizations upgrading to Windows 10 on UEFI hardware want to take advantage of UEFI and GPT. Until recently, that meant reformatting the disk on each device, complicating the upgrade process because formatting a disk is a destructive process. All user data and applications should be backed up and then restored. To address this issue, Microsoft released MBR2GPT in the Windows Creators Update. The new tool converts MBR disks to GPT non-destructively. The tool is included in Windows 10 version 1703 out-of-the-box and is designed to be used in the Windows Preinstallation Environment (Windows PE). It can also be used in full Windows.   ... --- ### Paul Thurrott's Short Takes: January 12 - Published: 2018-01-12 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-12/ - Categories: Cloud Computing, Hardware, Security - Tags: News - Article Type: Overview Because Meltdown and Spectre are the gifts that keep on giving, this edition of Short Takes looks at more news about these vulnerabilities, CES 2018, and more. Because Meltdown and Spectre are the gifts that keep on giving, this edition of Short Takes looks at more news about these vulnerabilities, CES 2018, and more. Intel and AMD both fail when it comes to communicating with their customers It's been a fascinating couple of weeks. First, news of major security vulnerabilities in Intel microprocessors leak. Then Intel claims that concerns are overblown, is found to have lied about that, and then it doubles down on the lies. Meanwhile, after first claiming that there was "near-zero risk" to its microprocessors, AMD had to about-face because, get this, there is very much a huge risk to their microprocessors too. Put simply, these guys are terrible. And I wish we had other, more honest, choices. "AMD processors: Not as safe as you might have thought" Actually, I never thought they were safe. Even Intel's patches are buggy Pity poor Intel, which handled the discovery of its flawed microprocessor designs with all of the elegance of Chris Farley in Chippendales. And then followed it up with more bungling. The microprocessor giant is now reporting that its firmware updates for older "Haswell" and "Broadwell" Core chips are causing "higher system reboots. " So Intel is working on yet another fix. "We are working quickly with these customers to understand, diagnose and address this reboot issue," an Intel statement notes. "If this requires a revised firmware update from Intel, we will distribute that update through the normal channels. " Oh, it will. You bet... --- ### Secure Active Directory Using the Clean Source Principle - Published: 2018-01-11 - Modified: 2024-09-04 - URL: https://petri.com/secure-active-directory-using-clean-source-principle/ - Categories: Active Directory (AD) - Tags: Active Directory, administration, Clean Source Principle, Privileged Access Management, Privileged Access Workstation, Security, Windows Server - Article Type: Overview Russell Smith explains how to integrate the clean source principle into your Active Directory design and management practices to keep your systems secure. In this Ask the Admin, I'll explain how to integrate the clean source principle into your Active Directory design and management practices to keep your systems secure.     The clean source principle (CSP) is important in information system security and states that a system can be dependent on a higher trust system but not on a lower trust system. In practice, this means that you should identify all of an object’s security dependencies and make sure that they are as trusted as the object you are trying to secure. Analyzing Control Relationships Any subject that controls an object is a security dependency of the object. Let’s take the example of a domain controller (DC). A DC’s security dependencies (subjects) are other objects that have direct or indirect control of the DC. Domain administrator accounts and workstations, where domain administrators log in, are both subjects. If a hacker can compromise a domain administrator account or a workstation that a domain administrator uses, they can get effective control of the domain controller. Understanding the security dependencies in your environment might not be as simple as it first seems. The best way to analyze security dependencies is to look at control relationships. I can determine that domain administrators are in control of domain controllers but the workstations they log in to are also subjects because control is transitive. Analyzing Control Relationships (Image Credit: Microsoft)   Domain administrator accounts and the workstations they log into must be secured to... --- ### Office 365 Starts on Road to Support International Email Addresses > Microsoft says that Office 365 will support internationalized email addresses (EAI) in Q1 2018. Support is limited to inbound and outbound email. - Published: 2018-01-11 - Modified: 2024-05-23 - URL: https://petri.com/office-365-international-email-addresses/ - Categories: Exchange Online, Microsoft 365, Office - Tags: EAI, email addresses, Exchange Online, IETF, Office 365, Office 365 Groups, SharePoint Online, Teams - Article Type: News Microsoft says that Office 365 will support internationalized email addresses (EAI) in Q1 2018. Support is limited to inbound and outbound email and you will not be able to assign email addresses with non-Latin characters to Office 365 accounts until all the heavy lifting is done to make sure that nothing breaks, including in hybrid organizations. Office 365 Catches Up on Internationalization Microsoft’s announcement that Office 365 “will enable Email Address Internationalization (EAI) support in Q1 2018” might seem in the less-than-interesting category, but it is an important step forward from the legacy of email history. And it addresses an issue where Microsoft lagged its major competitor, as Gmail reached the same point in August 2014. The History of Email Addresses SMTP email addresses, which are what we use to communicate across the internet, divide into mailbox names and domain names. Mailbox names go back to the earliest systems, where the operating systems of the time dictated what the characters could appear in a mailbox name and the length of mailbox names. Thus, IBM PROFS, a popular system in the 1980s, limited mailbox (and account) names to 8 ASCII 7-bit uppercase characters. VMS supports 12-character account names and we could send mail between systems from the early 1980s using DECnet and VMSmail with addresses like BISTRO::REDMOND (an actual address I used). Big as IBM and DEC were in those days, they did not serve every customer and interconnectivity of email systems became an increasingly important issue. The earliest attempt to standardize email addresses came in X. 400, a set of recommendations that first appeared in 1984. The industry still considered X. 400 to be an important email interconnect method when Exchange 4. 0 appeared in 1986, but SMTP and its radically simpler email addresses rapidly obsoleted X. 400.  Microsoft recognized this development by including the Internet email connector... --- ### My Azure Infrastructure Highlights of 2017 - Published: 2018-01-10 - Modified: 2024-09-04 - URL: https://petri.com/azure-infrastructure-highlights-2017/ - Categories: Microsoft Azure - Tags: ASR, Azure, Azure Backup, Azure Backup Server, Azure Migrate, Azure Site Recovery, Azure Stack, Azure Virtual Machines, Digital Transformation, MABS, Managed Disks, storage, Storage Accounts, training, virtual machines, vmware, vSphere - Article Type: Opinion Aidan Finn reviews his highlights in the last year of Azure infrastructure improvements. Please share your highlights too. As we close in on the end of 2017, I thought I’d get all misty-eyed and review what were my highlights in the last year of Azure infrastructure improvements. Please share below what you thought were your highlights.     VMware Is Our Friend Although the feeling might not be mutual... Microsoft Azure truly depicts the new Microsoft. No matter who you are, or what you do, Microsoft would like your cloud business. Many moons ago, “Windows Azure” was renamed to Microsoft Azure, Linux became an equal citizen (and was running in 40 percent of all Azure virtual machines), Microsoft shared its own Linux distro used as a network switch operating system, Docker was used to manage containers, Hadoop was adopted instead of Microsoft’s own big data solution, and more recently, Kubernetes (out of Google) became a central part in Microsoft’s container orchestration. So should we really be shocked that Microsoft reached out more into the world of VMware? It’s been a while since Azure Site Recovery (ASR) supported replication and migration of vSphere virtual machines to Azure. In 2017, Microsoft added: Microsoft Azure Backup Server: Support for protecting VMware virtual machines using on-premises and cloud backup with Microsoft’s backup-as-a-service, using VMware’s own agentless API. Azure Migrate: A management and orchestration solution to discover and assess candidates for migration to Azure from vSphere. And then there was the really big news... Microsoft is working with some undisclosed partner(s) to deploy vSphere in Azure data centers! The idea is... --- ### Protect Users Against Malicious Websites Using Windows 10 Application Guard - Published: 2018-01-10 - Modified: 2024-09-04 - URL: https://petri.com/protect-users-against-malicious-websites-using-windows-10-application-guard/ - Categories: Windows Client OS - Tags: Chrome, Microsoft Edge, Security, Windows 10, Windows Defender, Windows Defender Application Guard - Article Type: How To In today's Ask the Admin, Russell Smith shows you how Windows Defender Application Guard can protect enterprise users against malicious websites. In today's Ask the Admin, I'll show you how Windows Defender Application Guard can protect enterprise users against malicious websites.     Windows Defender Application Guard (WDAG) uses Hyper-V containers to virtualize Edge browser sessions, helping to protect the operating system in the case of a browser security breach. WDAG is currently only available to customers with Windows 10 Enterprise and Education licenses. But Microsoft has promised to make WDAG available to Windows 10 Professional customers in the spring 2018 update. WDAG requires a device with a 64-bit CPU, Second Level Address Translation (SLAT), and VT-x (Intel) or AMD-V. And because of the performance overhead of WDAG, Microsoft recommends 8GB of RAM, although it will work with less. Another recommendation is VT-d (IOMMU) support, which is a hardware virtualization technology designed to isolate and restrict device access to the owner of the managing partition. If your hardware supports VT-d, you’ll probably need to manually enable it in the BIOS. Most modern hardware should support the basic system requirements for WDAG. WDAG has two operational modes: standalone and enterprise-managed. In standalone mode, users can start Edge in Application Guard and browse untrusted sites. Enterprise-managed mode uses a list of sites, defined in policy, that when opened force Edge to run in Application Guard.     Install Windows Defender Application Guard Both modes require that WDAG is installed on the device. The easiest way to do that is in PowerShell. The following command should be run in a... --- ### Azure SQL Elastic Pool, Single Databases, and DTUs > This post, about Azure SQL, will answer questions such as "What are DTUs?", "What are eDTUs?", and what is an "elastic pool?". - Published: 2018-01-10 - Modified: 2024-09-04 - URL: https://petri.com/azure-sql-elastic-pool-single-databases-dtus/ - Categories: Microsoft Azure - Tags: Azure, Azure DB, Azure SQL, DTUs, eDTUs, Elastic Pool, Single Database, SQL Server - Article Type: Overview Aidan Finn explains some of the language that is used to specify and size Azure SQL, the database-as-a-service offering from Microsoft Azure. In this post, I will explain some of the language that is used to specify and size Azure SQL, the database-as-a-service offering from Microsoft Azure.     DTUs There are two ways that you can deploy Azure SQL in Microsoft Azure. The first, and the most common one that I see, is the Single database option. When you select a Single database, Azure deploys 1 database that runs in it’s on bubble of performance. The database has several ways to size it’s performance, but the most commonly quoted and confusing one is Database Transaction Units (DTUs). Every database in Azure SQL offers a maximum number of DTUs. But what the heck are these things? I’ve heard of IOPS, virtual CPUs, RAM, and so on, but DTU was a new one to me. Microsoft describes DTUs as being: ... a blended measure of CPU, memory, I/O (data and transaction log I/O) The goal of DTUs is to simplify the planning of performance for a database. There’s a good chance that you’ve had a part in this conversation before: Database/App developer: “I’d like a database server, please. " IT Pro: “OK. How much CPU do you need? ” Database/App developer: “Average ... whatever the normal is. " IT Pro “Uh ... OK. How many IOPS do you need? ” Database/App developer: “What’s an IOP? ” And in the end, either too many or too few resources are provided and no one is happy. DTUs take the metrics that determine the performance of a database and... --- ### Microsoft Outlines Performance Impacts of Meltdown and Spectre Patching - Published: 2018-01-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-outlines-performance-impacts-meltdown-specture-patching/ - Categories: Windows Client OS - Tags: Intel, Meltdown, Microsoft - Article Type: News With the patching of the Meltdown vulnerability, there will be serious impacts to performance to older CPUs and thanks to Microsoft, we now have a better understanding of the implications of this security flaw. Last week, a serious flaw involving Intel processors was detailed and the impact of the remediation techniques are now starting to be better understood. As Microsoft has begun patching its side of the equation and hardware vendors are now shipping out updates to patch their side of the flaw, the real-world performance impact is starting to be felt by customers. First and foremost, as most know by now, this is a hardware security vulnerability and not something that is the fault of Microsoft. But, seeing as Microsoft is the behind the software running on this impacted chipsets, it has to work with the cards it was dealt to make sure that the end-user is protected. Because of the seriousness of this vulnerability, not patching to avoid the performance hit is not an option. This is a hardware level design flaw in Intel chips and unfortunately, there is no way to retain the performance state of today after patching to fix the security flaw to protect you from the threats of tomorrow. It's important to know that there are three vulnerabilities, two under the Spectre name and one under the Meltdown name as shown in the chart below. The software and hardware patching impacts older chips (prior to Kabylake and Sklake) at a more noticeable rate than newer silicon which means that Windows 7 and Windows 8. 1 users will likely see a more significant impact to their daily operations than those running newer chips. That being said, tasks that... --- ### Infrastructure-as-Code Part 3: Deploy Active Directory and Certificate Services in Azure - Published: 2018-01-09 - Modified: 2024-09-04 - URL: https://petri.com/infrastructure-code-part-3-deploy-active-directory-certificate-services-azure/ - Categories: Cloud Computing - Tags: Active Directory, Azure, Azure Resource Manager, Certificate Services, cloud computing, Infrastructure as Code, JSON, PowerShell DSC - Article Type: How To In the final part of this series, Russell Smith shows you how to use the code I created in the previous two installments to provision the resources in Azure. In the final part of this series, I’ll show you how to use the code I created in the previous two installments to provision the resources in Azure.     In part one, I explained how I created the JSON template that provisions the resources in Azure. I combined two templates from Microsoft’s Quickstart gallery and walked you through how the resources are provisioned. The final template provisions two domain controllers and a member server. In part two, I showed you how to add a PowerShell Desired State Configuration (DSC) resource to the project. The final step is to provision the resources, which you can do directly from Visual Studio. Prerequisites In part one, I showed you how to import the project template into Visual Studio. But before you can use it to provision resources in Azure, there are several components that need to be in place. If you haven’t already got an Azure subscription, sign up for a free trial here. You’ll also need the latest version of PowerShell, which is part of the Windows Management Framework (WMF). If you have Windows 10, the latest version of WMF should be installed on your device. If you are using an earlier version of Windows, you can download WMF 5. 1 from Microsoft’s website here. You will also need Microsoft Azure PowerShell installed. I recommend that you use Microsoft’s Web Platform Installer to get the Azure PowerShell cmdlets. Because we’re using PowerShell Desired State Configuration (DSC) as part of the... --- ### A Teams PowerShell Primer > The Teams PowerShell module is flawed, but that does not mean that you cannot do work with it. Here's a primer of the most important cmdlets. - Published: 2018-01-09 - Modified: 2024-09-04 - URL: https://petri.com/teams-powershell-primer/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Exchange Online, Get-UnifiedGroup, Office 365, Office 365 Groups, Planner, PowerShell, Teams - Article Type: How To The Teams PowerShell module is flawed, but that does not mean that you cannot do work with it. Here's a primer of the most important cmdlets, together with a link to a rather interesting approach to finding out what Office 365 Groups are team-enabled. A Flawed Approach to Automation In November, Microsoft released the first beta version of a PowerShell module for Teams. I did not like the module too much because I consider it critically flawed. The module is user-centric rather than administrator centric, so it is difficult to automate tasks. For instance, you cannot write a script to process every team in the tenant unless you use an account that is a member of every team. The original module was very buggy. Microsoft updated it in December to version 0. 9. 1. The module is more stable but some parameters and expected features still do not work, which is what you expect from beta releases.  Documentation for the cmdlets is available online. Connecting to Teams Before you can use the Teams PowerShell module, you must download the module from the PowerShell gallery and install it on your PC (see the instructions in the link above). You can then run the Connect-MicrosoftTeams cmdlet to connect to the Teams service and start using the cmdlets. Because a team always has an underlying Office 365 group, you can use the cmdlets that work against Office 365 groups with Teams, so you probably want to connect PowerShell to Exchange Online too. And then throw in a connection to Azure Active Directory for good measure. The examples shown in the rest of this article are based on and tested against version 0. 9. 1 of the Teams PowerShell module. Manipulating Teams... --- ### Hybrid Cloud Security Risks - Published: 2018-01-08 - Modified: 2024-09-04 - URL: https://petri.com/hybrid-cloud-security-risks/ - Categories: Active Directory (AD), Hybrid Cloud, Microsoft Azure, Security - Tags: Active Directory, Azure Active Directory, hybrid cloud, Security - Article Type: Overview Learn about the main Hybrid Cloud security risks so that you are protected as you add complexity to your data center. Many businesses today have adopted the Hybrid Cloud to address a variety of different business solutions. According to Gartner, 50% of all organizations were using or planned to implement Hybrid Cloud solutions by the end of 2017. The Hybrid Cloud brings a number of benefits to the organization like pay-as-you go compute and storage capabilities, near unlimited scalability and global accessibility. However, unlike standard on-premise infrastructure security, the hybrid cloud has some unique security challenges. Let’s have a closer look at some of the main hybrid cloud security risks. Securing connections between on-premise and the cloud Unlike private LAN connections, most Hybrid Cloud connections are made across the Internet making them a potential security exposure. With the Hybrid Cloud, it’s important to secure the network connection and its endpoints. One of the best ways to do this is using VPN connections between your local network and the cloud. Cross-platform authentication The goal of identity authentication is to control access to systems, applications, data, and services. The Hybrid Cloud changes your organization’s authentication requirements. In a traditional data center, you might use a directory service like AD for authorization. However, Hybrid Cloud implementations require you to have both an authorization method for the cloud as well as your local resources. Technologies like Azure AD can provide authentication for the Hybrid Cloud. Azure AD is multi-tenant, cloud-based directory and identity management service. Azure AD can be integrated with your existing on-premise AD enabling you to leverage your existing AD to manage Hybrid... --- ### Expanded Azure Virtual Machine Availability and Locations > Microsoft Azure is growing fast to meet demand, and this post explains how VM availability and regional capacity are growing too. - Published: 2018-01-08 - Modified: 2024-09-04 - URL: https://petri.com/expanded-azure-virtual-machine-availability-locations/ - Categories: Cloud Computing - Tags: Azure, data centers, Regions, virtual machines - Article Type: Overview Aidan Finn discuss the recent expansions of Azure, adding support for virtual machines to more regions, and the expansion of the number of regions internationally. This post will discuss the recent expansions of Azure, adding support for virtual machines to more regions, and the expansion of the number of regions internationally.     Virtual Machine Expanded Availability Azure offers lots of different series of virtual machines. One of the things that catches people out when they are new to Azure is that the list of available regions changes from series to series. For example, machines such as the “Goliath” (big) G-Series and the N-Series (3 kinds of NVIDIA-powered workload) are only in a subset of regions. In recent months, we have seen the following series being launched: B-Series D_v3, including the DS_v3 E_v3, including the ES_v3 FS_v2 The “burstable” B-, the “database” D_v3-, and “even bigger database” E_v3 series were originally launched into just a few regions. But things have started to change. The B-Series became generally available on December 5th but soon before that, Microsoft expanded availability to 19 regions. The D_v3 and E_v3 are successors to the general computing and memory optimized sizes of the D_v2-Series, respectively. Both were launched with limited region availability but quietly Microsoft has expanded the regional availability of the Hyper-threaded v3 machines to include (as best as I could count) 32 of the Azure regions.     Note that if you’ve been using the promotional pricing of the D_v2-Series, then you should expect that to end soon. The price should go up by approximately 28 perect. You can either bite that increase to non-promotional pricing... --- ### Google Adds Community Connectors Feature to Data Studio - Published: 2018-01-08 - Modified: 2024-11-19 - URL: https://petri.com/google-adds-community-connectors-feature-data-studio/ - Categories: Cloud Computing, Google Cloud Platform - Tags: community, Connector, Data, Google, News, Studio - Article Type: News In a recent announcement, Google introduced Community Connectors to Data Studio, which is designed to make data collection, analysis, and visualization easier. What's more is that users can also share their connectors with others. When it comes to collecting and managing data and providing visualizations of that data to users, there are a variety of ways to go about doing so. And depending on the data sources, collecting this data and sharing it with others can sometimes be quite the challenge. However, Google recently introduced a new feature to their Data Studio service called Community Connectors, which is designed to make this process a bit easier. This new feature enables users to build "connectors" to any Internet-accessible data source using Google’s Apps Script, the firm's JavaScript-based cloud scripting language. The data can then be used to create a variety of custom visualizations within Google’s Data Studio. Users can pull data into their connectors from a variety of sources, including Google's BigQuery or CloudSQL services, as well as a number of third-party services via their respective APIs, so long as they can be accessed using Google's App Script. A full list of supported services and available connectors can be found on the Google Data Studio website, which also shows the level of interest that both developers and users have for each service. Depending on user preference, connectors either be private, shared with only certain users, or made available to the general public by publishing the connector to Google's Community Connector Gallery. This new service even enables users to monetize the connectors that they create, with users able to use whichever monetization approach they desire (such as offering a free and premium version, having a... --- ### Paul Thurrott's Short Takes: January 5 - Published: 2018-01-05 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-5/ - Categories: Cloud Computing, Hardware, Mobile, Security, Windows 10 - Tags: News - Article Type: Overview Because it's the end of the world as we know it, this edition of Short Takes looks at the many issues swirling around the Spectre and Meltdown security vulnerabilities. TDLR: We're doomed. Because it's the end of the world as we know it, this edition of Short Takes looks at the many issues swirling around the Spectre and Meltdown security vulnerabilities. TDLR: We're doomed. Of Intel lies and tech blogger stupidity Oh, what a week. First, two major chipset vulnerabilities, called Spectre and Meltdown, were leaked by a tech blog just days before Intel and the entire PC industry were set to release patches to mitigate the problems. Then Intel said the issues were minor and, within hours, was found to have lied about that. Given this dismal state of affairs, Microsoft and others pushed out the security patches, which they had been planning for weeks, a few days early. And now the entire planet is worried that we're all doomed because one of these flaws, as it turns out, can't be completely eradicated and the fixes that have shipped could harm performance---especially in the cloud---by as much as 30 percent. So yeah. A great start to 2018, for sure. "How to protect your PC against the major 'Meltdown' CPU security flaw" Nothing. It keeps itself up-to-date. Tech industry works to mitigate impact of security flaws With the spectre of a meltdown looming---OK, sorry---the tech industry is rallying this week to perform the same sort of "security theater" we see at airports these days. Which is to say, address yesterday's problems with a great deal of huffing and puffing. There's a new announcement every day, basically, and by all accounts,... --- ### Deploy Active Directory and Certificate Services Using Azure Resource Manager - Published: 2018-01-05 - Modified: 2024-11-19 - URL: https://petri.com/deploy-active-directory-certificate-services-azure-using-infrastructure-code-part-1/ - Categories: Cloud Computing - Tags: Automation, Azure, Azure Resource Manager, cloud computing, Infrastructure as Code, JSON, PowerShell, PowerShell DSC - Article Type: How To In this three-part series, Russell Smith discusses how he deployed an Active Directory forest with 2 domain controllers and a member server running certificate services in Microsoft Azure. In this article, I'll discuss how I deployed an Active Directory (AD) forest with 2 domain controllers, and a member server running certificate services, in Microsoft Azure. In the first part, I'll walk you through the JSON Azure Resource Manager (ARM) templates used to provision the three virtual machines (VMs) and required infrastructure. I’ll show you how to add a PowerShell Desired State Configuration (DSC) resource to the template for deploying AD Certificate Services (ADCS) in Windows Server. And finally, I’ll show you how to use Visual Studio to provision the solution in Azure. Azure Resource Manager (ARM) is a deployment model that allows organizations to provision Azure resources using JavaScript Object Notation files (JSON). Microsoft has a collection of templates in JSON format that can be used to provision Azure resources. If you need a primer on using Visual Studio and JSON templates to provision Azure resources, read Microsoft Azure: Use Visual Studio to Deploy a Virtual Machine on Petri. The solution is based on two JSON templates, which I downloaded from Microsoft’s Quickstart gallery and PowerShell Desired State Configuration (DSC). The first template deploys two domain controllers in a new Active Directory forest with a high availability configuration. The second template deploys a virtual machine and joins it to the domain. Finally, I added some additional PowerShell DSC code to install Active Directory Certificate Services (ADCS) on the member server. For a primer on working with JSON templates and Azure resources, see Aidan Finn’s articles on Petri:... --- ### Why Teams Needs Better Views > Microsoft Teams is the hot property in Office 365, but sometimes its user interface shows signs of immaturity. Better views are needed to sort items. - Published: 2018-01-04 - Modified: 2024-09-04 - URL: https://petri.com/teams-needs-better-views/ - Categories: Microsoft 365, Office - Tags: Office 365, Outlook, Rules, Teams - Article Type: Opinion Microsoft Teams is the hot property in Office 365 right now, but sometimes its user interface shows signs of immaturity. For example, when you got back to work after the holidays, you might have seen a ton of new activity to deal with. Email clients have rules, views, and automated assistants to help with the load, but with Teams you have to sort it all out yourself. Teams, Me, and the Holidays The notion purveyed by some that Microsoft Teams is a much superior tool to email (Outlook, in most cases) because it’s so much easier to manage communications met a dramatic end when I returned to work after the holiday break. Apparently, Teams reduces the stress and trauma of returning from a break by keeping all communications categorized neatly into channels. When you come back to work, you can sip a coffee and review the latest developments in your favorite channels and catch up with anything that happened in personal chats. Well, that’s the idea. And if people are ultra-organized and follow some basic rules of Teams etiquette (like always starting a new topic with a subject and never replying to a thread by starting a new thread). Unfortunately, humans are flawed and not always as disciplined as they should be. Chaos in Channels The result is often a chaotic mass of conversations, especially in busy channels. It takes way more than a single double-strength coffee to sort out what’s important and what’s not. And the stress of dealing with chats is roughly the same as sorting out an Inbox. At least it is for me. Structure and Tools are Important Perhaps it’s because I follow some basic processing rules that I find taming a busy Inbox relatively straightforward. For example, I delete many messages without reading them, relying on the glimpse into the content given by Outlook to tell me whether I should... --- ### Amazon Takes Its Microsoft Fight to On-Premises Hardware with Linux 2 - Published: 2018-01-03 - Modified: 2024-09-04 - URL: https://petri.com/amazon-takes-microsoft-fight-premises-hardware-linux-2/ - Categories: Amazon Web Services, Cloud Computing, Microsoft Azure - Tags: Amazon, Azure Stack, Linux 2, Microsoft - Article Type: News Amazon is expanding the footprint of its cloud platform with Linux 2, an on-premises software package that can be used to build out a hybrid-IT shop but it does have one key drawback. Amazon's cloud service has been nothing short of a spectacular success for the company. While the adoption of the 'cloud' started off slowly, it's now in full-swing and Amazon, along with Microsoft, are reaping the rewards of billions of dollars of investment that started more than a decade ago. While Microsoft has traditionally been the dominating force for on-premises datacenter software, Amazon is slowly moving into this space with Linux 2. This was actually announced late last month but now that I have had some time to look further into the details, this is a very big announcement by Amazon that was overlooked by many. Linux 2 is actually the second generation of the software but the key here is that this is the first iteration to offer long-term support. How long? Once finalized, the software will be supported for five years. At first, I was hoping that this would be Amazon's response to Microsoft's Azure Stack solution and if it fully morphs into that, it has one major advantage, it's not tied to a specific set of hardware. Microsoft's Azure Stack requires you to buy new metal and cannot be retrofitted to existing deployments. At this time, Linux 2 is available in all regions in AMI and Docker image form as well as VMs for Hyper-V, KVM, VirtualBox, and VMware are also available too. Amazon says that the software is suited for virtualized and container-based workloads such as web and desktop applications, open source and proprietary databases, data... --- ### Google Chrome Versus Microsoft Edge in the Enterprise - Published: 2018-01-03 - Modified: 2024-09-04 - URL: https://petri.com/google-chrome-versus-microsoft-edge-enterprise/ - Categories: Windows Client OS - Tags: Google Chrome, Microsoft Edge, Security, Windows 10 - Article Type: Opinion In today's Ask the Admin, Russell Smith looks at the pros and cons of each browser for use in the enterprise. In today's Ask the Admin, I'll look at the pros and cons of each browser for use in the enterprise. Emotions usually run high in any discussion about browsers. Most of us spend a good part of our working day in a browser, so it makes sense that it should be fast, reliable, secure, and have the extensions we need. Most users have an automatic preference for Google Chrome and it will be one of the first apps they download when setting up a new PC. Chrome is also the most widely used browser today according to Net MarketShare, with Internet Explorer taking second place, Firefox third, Microsoft Edge fourth, and Safari bringing up the rear. Google Chrome Unlike Microsoft Edge, Google Chrome is not installed in Windows by default. But Google does provide a Windows Installer file that allows system administrators to distribute the software using Group Policy, script, or System Center Configuration Manager (SCCM). Google Update is a separate mechanism used to update Google Chrome and any other Google software installed on the PC. Google offers Group Policy administrative templates that can be used to manage the configuration of Chrome and Google Update and let sysadmins enforce more than 200 policies, such as website blacklisting and content filtering. The Chrome Enterprise Bundle, which Google released in May, provides all the necessary downloads in one package. Chrome 63 introduces site isolation as an experimental feature. Site isolation allows sysadmins to force Chrome to render sites in their own... --- ### Creating Your First PowerApps App Using a SharePoint List -- Part 2 > In this follow-up article we cover how to edit and publish the PowerApps app we created in the first article. All using SharePoint Online as the data source - Published: 2018-01-03 - Modified: 2024-09-04 - URL: https://petri.com/creating-first-powerapps-app-using-sharepoint-list-part-2/ - Categories: Microsoft 365, SharePoint, Uncategorized - Tags: Office 365, Powerapps, SharePoint, SharePoint Online - Article Type: How To Get connected to PowerApps and create your first app. In the first article, we got connected to PowerApps and created our first app. It was pure magic if I do say so myself. Now we will continue with that app. We will make some edits to the app and then publish the app. There are two reasons we are going to make these changes. The first is because this will familiarize you with just how PowerApps works and how easy editing is. Secondly, the default app, while magical. wasn't exactly perfect and you deserve perfection. The third reason is I enjoy writing, but the editor said I couldn't include that as a reason so nevermind, let's just get started.     Make Your First Edit Time to dig in, press some buttons, and see how the sausage is made. Okay, maybe we will not go quite that deep but we will look at some of the mechanics of how this thing is put together while we change what shows up on the search screen. The list items are shown via a Gallery that is connected to the list. The Gallery control is great because it has a tool pane for making changes like the one we want to make. The best way to open it up (because there are about 10) is to first click View from the toolbar and then click Data sources. This will create a pop out on the right side of your screen where you will see all of the current, in-use Data sources... . --- ### Microsoft Posts Office 365 Information Protection Guide for GDPR > Microsoft has a new Information Protection guide to help Office 365 tenants prepare for GDPR. The guide is incomplete, but it has some good information. - Published: 2018-01-02 - Modified: 2024-09-04 - URL: https://petri.com/office-365-information-protection-guide-gdpr/ - Categories: Microsoft 365, Office - Tags: compliance manager, exchange, GDPR, Office 365, OneDrive for Business, Quadrotech, SharePoint Online, Teams, Yammer - Article Type: News Microsoft has a new Information Protection guide to help Office 365 tenants prepare for GDPR. The guide is incomplete because it focuses on SharePoint Online and OneDrive for Business, but it contains some good information that will help companies figure out what they need to do to prepare for the May 25, 2018 deadline. Expect more guides of this type to appear in the future. Less Than Five Months to GDPR The European Union’s General Data Protection Regulation (GDPR) comes into force on May 25. Any company doing business in the EU or EEA needs to follow GDPR, and with the countdown towards the May deadline, companies are busy reviewing their exposure and understanding where they need to make changes to achieve compliance. Remember, GDPR dictates how to collect, store, process, and share personal data, so there’s a lot to think about. GDPR Tools from Microsoft Microsoft’s Compliance Manager breaks down GDPR into a set of tasks. Some of the tasks might not apply to your tenant, but it’s better to be safe than sorry, so consider them all. In addition, Microsoft has an online GDPR assessment tool designed to help companies understand their overall level of readiness. Potential GDPR Impact on Office 365 Applications Once you understand how GDPR affects data stored in Office 365, you can figure out how to protect and control that data. And, very importantly, how to educate users to deal with personal data correctly. Data that might come under the scope of GDPR can exist in repositories used by applications like Exchange, SharePoint, OneDrive, and Teams. The need therefore exists to understand: What types of personal data exists inside your Office 365 tenant (passport numbers, credit card numbers, other identifiers). How users gather and use personal data. For example, the HR department is likely to store tax identifiers for employees. Although this information is probably in a... --- ### Paul Thurrott's Short Takes: December 29 - Published: 2017-12-29 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-29/ - Categories: Mobile, Security, Windows 10 - Tags: News - Article Type: Overview Because there's a chill in the air, this short New Year edition of Short Takes looks at Windows Hello security, Surface Pro with LTE, and much, much more. Because there's a chill in the air, this short New Year edition of Short Takes looks at Windows Hello security, Surface Pro with LTE, and much, much more. Windows Hello? Not so safe Security researchers from Germany have successfully bypassed the Windows Hello facial recognition authentication scheme in Windows 10, casting doubts on its effectiveness. What's alarming is how they did it: They used a printed headshot of an authenticated user, a scenario that Microsoft has claimed is impossible. Granted, that headshot photo needs to have been taken with an IR camera---Windows Hello uses an IR scan to authenticate users---and such images are, of course, very rare. But this episode may trigger a rethinking of this technology on Microsoft's part, right? Nope. This very week, Microsoft promoted Windows Hello as a more secure alternative to passwords, PINs, and other authentication methods. Which, maybe it is. Technically. "What It's Like To Compete With Microsoft" These days? Not so tough, I bet. Now anyone can buy a new Surface Pro with LTE When Microsoft announced the availability of the new (2017-model) Surface Pro with LTE in early December, only business customers could acquire the device: It was sold, at the time, only through resellers and was officially listed as a business-only model called Commercial Microsoft Surface Pro with LTE Advanced. (Yes. Awkward. ) Well, here's some good news for fans of always-connected PCs: Now, anyone can buy a Surface Pro with LTE directly from the Microsoft Store. As Mehedi reports over... --- ### Creating Your First PowerApps App Using a SharePoint List > Learn how to create and customize your first PowerApps app using SharePoint list with step-by-step instructions. A must know skill. - Published: 2017-12-29 - Modified: 2024-11-19 - URL: https://petri.com/creating-first-powerapps-app-using-sharepoint-list-part-1/ - Categories: Microsoft 365, SharePoint - Tags: Office 365, Powerapps, SharePoint, SharePoint Online - Article Type: How To If you have been on the internet at all in the last year and read anything about the Office 365 ecosystem, you have heard of PowerApps. If you have been on the internet at all in the last year and read anything about the Office 365 ecosystem, you have heard of PowerApps. PowerApps allows us common folks (non-developers) to create and publish web and mobile apps through an easy to use web-based tool. No Visual Studio, no coffee-based languages, and no dealing with getting something published to the fruit store. If you can use a web browser, you can build and publish your own app for you or your whole team to use. Pretty awesome stuff. In this article, we walk through creating your first PowerApp using SharePoint Online list data. It will not be the sexiest app ever, but it will introduce you to the core concepts and give us a base to build on for future articles that will show more advanced functionality. Logging Into PowerApps. com If you go to www. PowerApps. com, you will be redirected to your language version of the site. For now, skip over all of the marketing hoopla and instead, click Sign in at the top right-hand corner. Here you will want to log in with your Microsoft Account. To make the most out of this example, you should be using your Office 365 username and password. That will make life easier when we connect to your SharePoint Online content shortly. If you don’t have a PowerApps account, already you will be prompted to register for your free account. If you don’t have an account at all, then click Sign up free... . --- ### Modern SharePoint Web Parts Updates — Text Web Part - Published: 2017-12-28 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-text-web-part/ - Categories: SharePoint - Tags: Modern SharePoint, Modern SharePoint Team Site, Modern Web Parts - Article Type: How To Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the renewed text Web Part.   (more... ) --- ### The Highs and Lows of Office 365 in 2017 > Lots of good things happened in the world of Office 365 during 2017. More people than ever before use the service, new applications and functionality - Published: 2017-12-28 - Modified: 2024-09-04 - URL: https://petri.com/office-365-highs-and-lows-in-2017/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, Groups, Office 365, OneDrive for Business, SharePoint Online, Teams, Yammer - Article Type: Opinion Lots of good things happened in the world of Office 365 during 2017. More people than ever before use the service, new applications and functionality appeared, and Microsoft delivered a robust service. On the other hand, a few lows happened as well, as sometimes bad decisions and miscommunication soured the experience. But overall, 2017 was good and laid a great foundation for 2018. Growth and Success for Office 365 2017 saw Office 365 power through the 100 million active user mark, reaching 120 million in October in October and now growing at more than 3 million active users monthly. Microsoft attained Satya Nadella’s goal of a $20 billion annualized run rate for cloud revenues three quarters ahead of schedule, most of which is generated by Office 365. Despite some change management snafus in the middle of the year, the Office 365 SLA remained unaffected by the growth. With new applications like Teams and Planner making an impact and lots more Exchange seats and SharePoint sites to move to the cloud, new datacenter regions in places like South Africa coming on stream, and new multi-geo capabilities to meet complex customer data sovereignty issues, Office 365 can expect more success in 2018. The cadence of change stayed high within Office 365. Lots of things happened. Here’s my personal list of some of the more notable highs and lows that occurred during 2017. Best New Feature: Files on Demand (OneDrive for Business) My vote for the best new feature in 2017 is Files on Demand, which works with SharePoint Online, OneDrive for Business, and OneDrive consumer. The reason why is that the feature removes a major barrier for companies who want to move users away from local or local-network storage (aka obsolete Windows file servers) to the cloud. Instead of incurring major synchronization overheads to have local copies after moving data to SharePoint Online... --- ### Modern SharePoint Web Parts Updates -- Image Web Part - Published: 2017-12-27 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-image-web-part/ - Categories: SharePoint - Tags: Modern SharePoint, Modern SharePoint Team Site, Modern Web Parts - Article Type: How To Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint. The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the renewed image Web Part.     (more... ) --- ### Azure Site Recovery Deployment Planner for VMware and Hyper-V > The ASR Deployment Planner for VMware and Hyper-V will help you understand, size, and price your DR solutions based on Azure. - Published: 2017-12-27 - Modified: 2024-09-04 - URL: https://petri.com/azure-site-recovery-deployment-planner-vmware-hyper-v/ - Categories: Microsoft Azure - Tags: ASR, Azure, Azure Site Recovery, Deployment Planner, Disaster Recovery, DR, Hyper-V, Sizing, Tool, virtual machines, vmware, vSphere - Article Type: Overview Microsoft has finally released the Azure Site Recovery Planner to help you understand, design, and size your disaster recovery solutions in Azure for on-premises VMware and Hyper-V deployments. Microsoft has finally released the Azure Site Recovery (ASR) Planner to help you understand, design, and size your disaster recovery (DR) solutions in Azure for on-premises VMware and Hyper-V deployments.   Background The process of enabling replication of a virtual machine to Azure is very simple. It’s actually the first hands-on lab that my students do when I reach ASR. What is more complicated is understanding what is already deployed, determining what to deploy in Azure, and sizing the bandwidth requirements. Ah! The ever-present question with the cloud, “How much bandwidth do I need? ” In the case of ASR or any DR solution/service, the only answer is, “You need as much as you require. " Few are ever happy with that answer, as you might imagine. The bandwidth requirements break down as follows: Initial Sync: The initial sync is when you use the most bandwidth; you will gradually add virtual machines to the ASR service and each VM will completely copy its disks to the cloud. Replication: Each virtual machine transitions from initial sync to replication after the initial sync is finished. VMware and physical machines use continuous asynchronous replication and Hyper-V virtual machines use interval-based asynchronous replication based on a policy that you define (every 30 seconds, 5, or 15 minutes) and associate with virtual machines. The initial sync will probably take a long time to complete, from machine 1 all the way to the last machine. How long is a matter of how much data you need... --- ### Amazon Launches Amazon Linux 2 - Published: 2017-12-26 - Modified: 2024-09-04 - URL: https://petri.com/amazon-launches-amazon-linux-2/ - Categories: Cloud Computing - Tags: Amazon, Amazon Linux 2, AWS, Cloud, linux, LTS, News - Article Type: News In a recent post on the AWS blog, Amazon announced the latest version of its Linux offering, Amazon Linux 2. In a recent post on the AWS blog, Amazon announced the latest version of their Linux offering, Amazon Linux 2. This upgraded offering includes access to the latest 4. 9 LTS kernel and was created for those who run enterprise or high-performance applications on Linux and, as such, was designed with performance, stability, and security in mind. Users will also have access to the latest systemd initialization system, which enables faster boot times and performance, along with more fine-grained control over the services that are running on the system. With Amazon Linux 2, organizations will have access to a variety of feature and functionality add-ons via the Amazon Linux Extras Library. While having access to this sort of library is great on its own, users will be able to add these extras to their environment without having to worry about bogging things down. Some of the add-ons available include open source databases and languages, among others, with each of the add-ons coming with any dependencies that may be needed to use or run them. There are also a variety of security features available with this latest Linux service, with critical security updates automatically being applied to the OS upon initial boots. Additionally, remote access is limited by using SSH key-pairs. Users are also prohibited from having remote access to the root directory. Amazon is also considering the latest Amazon Linux 2 build (2017. 12) for long-term support, which is good news for those organizations that desire to maintain the same... --- ### Azure Launches Archive Storage and Storage Account v2 > In this post, I'll explain the benefits of new Azure storage features: tiered blob storage, and general purpose v2 (GPv2) storage accounts. - Published: 2017-12-25 - Modified: 2024-09-04 - URL: https://petri.com/azure-launches-archive-storage-storage-account-v2/ - Categories: Microsoft Azure - Tags: Archive, Azure, BLOB, Cool, General Purpose, General Purpose v1, General Purpose v2, GPv2, Hot, storage, Storage Accounts, Tier, Tiered, Tiering - Article Type: Overview Aidan Finn explains what Microsoft’s General Purpose v2 (GPv2) storage account is and how this is related to the general availability of tiered blob storage. In this post, I’ll explain what Microsoft’s General Purpose v2 (GPv2) storage account is and how this is related to the general availability of tiered blob storage.   Tiered Blob Storage Azure blob storage is very affordable. It costs just $0. 0208 per PG per month (RRP East US region, LRS) to store a file in Azure storage. But if you are working for a company that needs to store lots of data for long periods of time, then that low cost might still feel high. Many organizations have data that must be kept around but isn’t used that frequently or at all. Microsoft kicked off the Summer of 2016 by launching hot and cool storage in Azure. A new kind of storage account called the blob storage account (blobs only), enabled you to define a default tier for any blobs that were stored in the account. And then you could change the tier of that storage. The two tiers were: Hot: Blob storage was at the highest rate but access was at the cheapest rate. Files/blobs that are frequently accessed should be stored here. Cool: Blob storage was more affordable but access rates were higher. Less frequently access files/blobs should be stored here. Storage became cheaper but it could be even more affordable. AWS Glacier storage offered a lower-cost service where data is kept in an offline media with longer read latency (hours instead of milliseconds).     Now Microsoft has made a new tier of storage... --- ### Azure SQL Versus SQL Server In An Azure VM > This post will compare the options for deploying SQL Server in Microsoft Azure, Azure SQL (PaaS) or SQL Server running in virtual machines (IaaS). - Published: 2017-12-22 - Modified: 2024-11-19 - URL: https://petri.com/azure-sql-versus-sql-server-azure-vm/ - Categories: Microsoft Azure - Tags: Azure, Azure SQL, Azure Virtual Machines, IaaS, PaaS, SQL Server, virtual machine - Article Type: Overview Aidan Finn compares and contrasts the two options for deploying SQL Server in Microsoft Azure, Azure SQL, and SQL Server running in a virtual machine. This article will compare and contrast the two options for deploying SQL Server in Microsoft Azure, Azure SQL (SQL-as-a-service) and SQL Server running in a virtual machine.     SQL Server in a Virtual Machine In my experience, when customers (developers and IT pros, alike) want to use SQL Server they typically start thinking about deploying SQL Server in a Windows Virtual Machine. Note that there is a Linux option for SQL Server 2017 too, such as this Azure Marketplace image for SQL Server 2017 Enterprise on an Ubuntu virtual machine. The good things about this default choice are: Familiarity: You know how to work with SQL Server. You know the backup tools, how to explain it, what works and what doesn’t work, and some of the problems that you will encounter. Compatibility: When some application requires SQL Server you know that SQL Server on Windows Server will work. However, some of that familiarity includes the knowledge of the work that is ahead for you. You know that you’re going to have “fun” making SQL Server highly-available and tolerant of disasters. You know that you’re going to have more machines to patch, secure, and manage. You also know that you have another SQL installation, and that comes with more maintenance, backups, log file management, performance/capacity planning of the infrastructure, and the eventual SQL Server upgrades. But most of all, you’re familiar with the cost. Whether you’ve got a small business with a single SQL Server Standard installation, or... --- ### Paul Thurrott's Short Takes: December 22 - Published: 2017-12-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-22/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it's the gift that keeps on giving, this special holiday edition of Short Takes looks at Microsoft v. Google, the next version of Windows 10, some new Apple controversies, Eric Schmidt, and much, much more. Because it's the gift that keeps on giving, this special holiday edition of Short Takes looks at Microsoft v. Google, the next version of Windows 10, some new Apple controversies, Eric Schmidt, and much, much more. Microsoft and Google spar over Chrome in Windows 10's Store Let's see if we can explain this controversy in less than 1,000 words. Microsoft would like Google to make a version of its popular Chrome browser for the Microsoft Store. Google would like to do this, but it cannot abide by Microsoft's far-too-limiting restrictions. But Microsoft will not change those restrictions. So Google released a Chrome Installer app for the Store this past week that just triggers the web installer for Chrome. Microsoft allowed it in the Store but then pulled it within 24 hours because there are policies against that kind of web-installer app. So Google went public with why Microsoft's Store restrictions are too onerous. Microsoft's response? Google should just make a better browser. Sorry, Microsoft, but I already solved this problem. And that solution is for you to change, not Google. You're hurting your own customers with this restrictive, anti-competitive baloney. "Forbes boasts 'confirmed' Galaxy S9 design, looks just like previous leaks" Right. That's what a confirmation is. Microsoft quietly reveals the next version of Windows 10 If there's one thing that's consistent when it comes to Windows 10 and the way that Microsoft announces what it's doing, it's that it's never consistent. Witness the next Windows 10 version,... --- ### Deploy Active Directory and Certificate Services in Azure Using Infrastructure-as-Code -- Part 2 - Published: 2017-12-21 - Modified: 2024-09-04 - URL: https://petri.com/deploy-active-directory-certificate-services-azure-using-infrastructure-code-part-2/ - Categories: Cloud Computing - Tags: Azure, Azure Resource Manager, cloud computing, JSON, PowerShell DSC, Visual Studio - Article Type: How To In part two of this series on deploying Active Directory and a member server running certificate services in Microsoft Azure, Russell Smith shows you how to add a PowerShell Desired State Configuration resource to the project. In part two of this series on deploying Active Directory and a member server running certificate services in Microsoft Azure, I’ll show you how to add a PowerShell Desired State Configuration (DSC) resource to the project.     In part one, I explained how I created the JSON template that provisions the resources in Azure. I combined two templates from Microsoft’s Quickstart gallery and walked you through how the resources are provisioned. By the end of the first part, I’d covered the deployment of two domain controllers and a member server. But I still need to install and configure AD Certificate Services (ADCS) on the member server. Add a Resource Active Directory is configured on the two domain controllers using PowerShell DSC. DSC is Microsoft’s management platform based on PowerShell. It allows DevOps and system administrators to manage IT and development infrastructure using code. DSC uses a declarative model that lets you state how you’d like servers to be configured without having to worry about the ‘mechanics’. For more information on working with PowerShell DSC, see How Do I Create a Desired State Configuration? on Petri. The first step is to add a PowerShell DSC resource to the third VM. Remember that this VM is a member of our domain. Make sure that the azuredeploy. json file is open in the central pane. Locate the VM in the JSON Outline panel on the left, right-click and select Add New Resource from the menu. In the Add Resource dialogue, give... --- ### The Pain of Removing Unwanted Content from Teams > Creating great content in Microsoft Teams is all very well. But what happens when some not-so-good content turns up? You might just want to remove it. - Published: 2017-12-21 - Modified: 2024-11-19 - URL: https://petri.com/pain-removing-content-teams/ - Categories: Microsoft 365, Office - Tags: Compliance, Office 365, OneDrive for Business, Search-Mailbox, SharePoint, Teams - Article Type: Opinion Creating great content in Microsoft Teams is all very well. But what happens when some not-so-good content turns up or the CEO posts something secret into a public team? You might just want to remove those messages. It's all good as long as you don't need to remove complete threads or messages from multiple teams, at which point things get tiresome. UserVoice, Teams, and Deleting Chats Browsing the UserVoice site for Teams is often a good way to understand what concerns people have with Teams. To be fair to the product team, they are good at monitoring the issues raised and responding when they can. Recently, a fair amount of debate has flowed around the topic of deleting chats. Over 170 UserVoice comments have protested the inability to remove complete chat threads, many because they wanted to be able to remove threads with inappropriate content. Others wanted to be able to clean up chats to remove clutter. In response, a representative of the Teams product team said on November 22: “... the current decision is to not allow the deleting of chat threads. However, the ability to hide chats will soon be released. To access it you will simply click the “... ” overflow menu from the left rail, on the chat you wish to mute. A fly-out will appear allowing you to either Favorite, Mute, Hide, or Leave the chat. Look for this by the end of the calendar year! ” Deleting Teams Threads Removing something posted to an electronic forum is a fundamental piece of functionality. After all, you are can always have second thoughts and want to remove something written in error. The issue here is not with removing individual messages posted in channels or in private chats. Teams has controls to govern how users and team owners to remove messages from conversations at a tenant level and within... --- ### Sponsored: Conquering Remote Desktop Challenges - Published: 2017-12-21 - Modified: 2024-09-04 - URL: https://petri.com/remote-desktop-challenges/ - Categories: Administrative Tools and Scripts - Tags: Remote Desktop, Windows 10, Windows Server, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016 - Article Type: Overview Conquer your Remote Desktop challenges by overcoming a few of the more common hurdles. Remote Desktop is one of the IT administrator’s core go-to tools. While Microsoft has pushed hard for scripted remote management using PowerShell, there’s no doubt that for the vast majority of IT administrators, Remote Desktop is used more often. Remote Desktop gives you immediate access to your remote systems for management, configuration, and troubleshooting. Remote Desktop can be found on the Start menu under Windows Accessories, Remote Desktop Connection for Windows 10 and Windows Server 2016. While Remote Desktop is an essential remote management tool, using it has its challenges. Let’s take a look at some of the biggest Remote Desktop challenges. Managing multiple connections One of the biggest challenges with Remote Desktop is managing and securing multiple remote connections. Many administrators need to connect to dozens if not hundreds of remote systems which can be hard to manage. You can use RDP files to save your connection settings for connecting to your frequently used systems. RDP files allow you to save both your remote system connection and authentication information. To connect, all you need to do is click on the RDP file. This works great for a few systems but it quickly gets messy when the number of remote connections grows. One way to deal with this is to create shortcuts to the shared folders that contain related collections of RDP connections. You can lock down the access to the folders using Windows share permissions; Third-party Remote Desktop management tools can provide additional benefits for managing and securing large... --- ### Cloud and Hyper-V Predictions for 2018 - Published: 2017-12-20 - Modified: 2024-11-19 - URL: https://petri.com/cloud-hyper-v-predictions-2018/ - Categories: Cloud Computing - Tags: 2018, Amazon, AWS, Azure, Cloud, Containers, Cortana, DevOps, Docker, Forecast, Google, Hyper-V, IaaS, Kubernetes, Mesos, Microsoft, PaaS, predictions, Windows Server 2016 - Article Type: Opinion Aidan Finn delves into the mists of the future to discover what will work and what will not in the world of Hyper-V and the Microsoft cloud in 2018. In this post, I will delve into the mists of the future to discover what will work and what will not in the world of Hyper-V and the Microsoft cloud in 2018.     PaaS Before IaaS Although Microsoft doesn’t share any information about the consumption of Azure, I am pretty sure that infrastructure (IaaS or infrastructure-as-a-service) dominates the resource utilization of Microsoft’s public cloud. This is based on: Observations in my market. Conversations with the natural consumer of PaaS (platform-as-a-service), the developer. Recent IaaS resource shortages in Azure that were in the news and observed by my customers. In the last couple of months, I have started to notice a change in how Azure is being used by developers. The natural inclination is to attempt to do things in the cloud as they would have been done on-premises: deploy a machine with 8+ cores and load it up with RAM. That doesn’t work in the cloud because that legacy scale-up approach costs too much. I think that the message of “digital transformation” is starting to creep into the consciousness of devs and IT pros. The cloud offers new ways of doing things, and if you use the new ways, you can reduce costs (sometimes). You can find many new opportunities to improve work practices and give better services and intelligence to the business. Simply moving old work practices and design patterns to the cloud doesn’t change anything, doesn’t give the business what it seeks, or what the... --- ### System State Support by Azure Backup Is Generally Available > This post explains what the value is of system state backup, and how to backup & restore system state using Azure Backup's MARS agent. - Published: 2017-12-20 - Modified: 2024-09-04 - URL: https://petri.com/system-state-support-azure-backup-generally-available/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Backup, Domain Controller, File Server, IIS, MARS, Restore, System State - Article Type: Overview Aidan Finn discusses what the recent GA of system state protection by Azure Backup means for you and shows how to add system state to MARS agent backup policy. This post will discuss what the recent GA of system state protection by Azure Backup means for you and will show you how you can add system state to your MARS agent backup policy.   Feedback I keep saying it and the Azure Backup keep keeps proving it. Microsoft Azure loves feedback and that feedback shapes the products and services that the cloud provider offers. Time after time, this team acts on feedback gathered via through different channels: Conferences Direct meetings with customers Conversations with people in the market The official feedback form A top request that I (and the Azure Backup team) kept hearing was “we need system state backup”. This request was from those who were considering using the MARS agent method of Azure Backup, which is an agent that backs up directly to the cloud. This is intended today for smaller customers with one or two servers or maybe some PCs that need to be backed up. Note that Microsoft Azure Backup Server (MABS) already had the ability to protect system state. This feature request was specifically for the MARS agent where an on-premises backup server is not required. It took a while but System State protection did make it to preview earlier this year. Recently, Microsoft made the feature addition generally available and fully supported. System State Protection For some types of servers that fall into the workload type covered by MARS, a system state backup is important. Imagine you have a small business or... --- ### Microsoft Outlines New Business Features Coming In The Next Update of Windows 10 - Published: 2017-12-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-outlines-new-business-features-coming-next-update-windows-10/ - Categories: Windows 10 - Tags: Redstone 4, Windows 10 - Article Type: News Microsoft has outlined the features coming in the next major update of Windows and there are a few items that will interest IT Pros too. Today, Microsoft has unveiled the major updates coming to Windows 10 with the next release of the OS that will arrive in the spring. While there are quite a few consumer features that you can read about here, there are also updates for corporate users as well. The first big change is that Windows Defender Application Guard footprint is being expanded and will now be included in the Pro SKU of Windows 10. Starting with the next update, this feature will be available to Pro users which is going to be a big win for small businesses that use this iteration of Windows 10 instead of Enterprise. As a quick refresher, Windows Defender Application Guard provides protection against targeted threats using Microsoft’s Hyper-V virtualization technology. In the next release of Windows 10, there are a couple new features for delivery optimization as well. There are new policies for Group and MDM that provide admins with a means to throttle bandwidth, restrict peer selection to the same subnet, automatically join devices into peer groups by using a DHCP server’s User option or the connection’s DNS suffix as well as the ability to increase the usage of peers by delaying the use of the HTTP source. To view the list of new configs options, open the GP Editor and view the new policies under Administrative Templates > Windows Components > Delivery Optimization. For those using the Windows Substem for Linux, there are several updates including the ability to allow WSL to... --- ### What Is Hyper-Convergence in Windows Server 2016? - Published: 2017-12-19 - Modified: 2024-09-04 - URL: https://petri.com/hyper-convergence-windows-server-2016/ - Categories: Windows Server - Tags: Datacenter, Failover Clustering, Hyper-Convergence, software defined datacenter, Software-Defined Storage, storage spaces, Storage Spaces Direct, Virtualization - Article Type: Overview In this Ask the Admin, Russell Smith explains what hyper-convergence is and how it can help simplify your IT systems. In this Ask the Admin, I'll explain what hyper-convergence is and how it can help simplify your IT systems.     There’s a new buzzword in Microsoft’s recent literature – hyper-convergence. Microsoft is improving Storage Spaces Direct in Windows Server as part of its hyper-convergence efforts to lower costs and reduce complexity in its Azure cloud platform. But understanding hyper-convergence requires some background knowledge first. Virtualization and high availability clusters have long been key technologies in the datacenter. Clusters need access to shared storage, which is typically provided by a storage area network (SAN). Not only are SANs expensive, but they also require expertise to set up and keep them running. SANs fall into the category of dedicated hardware and servers also need special hardware to connect to them. So, if you don’t know your LUNs from your Fibre Channel (FC) over Ethernet (FCoE), or your SFP modules from your HBAs, then a SAN will present a real technical challenge. One reason virtualization gained popularity was that it is software based and is more flexible than physical hardware. Because clusters are required for high availability, adding a SAN to the equation negated some of the benefits provided by virtualization in the first place. The software-defined datacenter aims to bring the flexibility of software but retain the benefits of hardware solutions. Hypervisors and software-defined networking are already baked into Windows Server 2016. If you are not familiar with software-defined networking (SDN), it allows you to use network virtualization instead... --- ### Reviewing My Hyper-V and Cloud Predictions for 2017 > This post will review my Hyper-V and Microsoft cloud predictions of 2017, in advance of making more new year's forecasts for 2018. - Published: 2017-12-19 - Modified: 2024-09-04 - URL: https://petri.com/reviewing-hyper-v-cloud-predictions-2017/ - Categories: Cloud Computing - Tags: 2017, Azure, Azure Stack, Hyper-V, IaaS, Microsoft, Nano Server, PaaS, predictions, S2D, storage spaces, Storage Spaces Direct, Surface Phone - Article Type: Opinion Aidan Finn grades his predictions on what would happen with Hyper-V and Microsoft cloud computing in the year of 2017. In this post, I will look back on and grade my predictions on what would happen with Hyper-V and Microsoft cloud computing in the year of 2017.     How Broken Is my Crystal Glass? Every prognosticator projects themselves as a professional or expert. But how expert are they? (American) Football fans sit through months of predictions about how good college players will be in the NFL after they turn professional. Those same experts forget those predictions as soon as players sign their contract and either defy expectations or stink up the stadium. Me? I like to have a little fun at year end. This predictions lark thing is more of a laugh than anything someone should plan their budget on. So I’m going to take last year's predictions, dissect them, and give them a fair score. Let’s see how I did. Ignite “Azure Stack-Palooza” I expected that Microsoft was going to push Azure Stack hard at Ignite. My bet is that at Ignite in September, Microsoft will spend a lot of time talking about its unique offering, which is a common platform (Azure Resource Manager) that can run on Azure in Microsoft’s cloud, or Azure Stack in a customer’s private cloud or a hosting partner’s public cloud.     The opening keynote by Satya Nadella contained almost no product information. A following keynote by Scott Guthrie did contain some information on Azure Stack. As Ignite attendees will tell you, the meat of the conference is... --- ### VMware and Microsoft Are Friends Again, VMware virtualization on Azure Moves Forward - Published: 2017-12-19 - Modified: 2024-11-19 - URL: https://petri.com/vmware-microsoft-friends-vmware-virtualization-azure-moves-forward/ - Categories: Cloud Computing, Microsoft Azure, VMware - Tags: Azure, Microsoft, News, vmware - Article Type: News Microsoft and VMware are friends again with both companies agreeing to work together to bring VMware products to Microsoft's cloud. Late last month, Microsoft made a bold move and started working with an unnamed partner to bring VMware applications to Azure. At the time, VMware was upset with the announcment and Microsoft skirted around the issue of who would be providing support for these services. In the initial blog post by VMware, the company stated “VMware does not recommend and will not support customers running on the Azure announced partner offering” but the company has quietly updated their post after a change of heart. The company is saying that "This offering is being developed independent of VMware, however, it is being offered as a dedicated, server-hosted solution similar in approach to other VMware Cloud Provider Partners (VCPP). The deployment is on VMware certified hardware consisting of FlexPod. ". In short, it looks like Microsoft and VMware have figured out a way to work together where both parties are now happy with the outcome. Microsoft, for its part, has created a new blog post that outlines that they are now working with multiple VMware vendors, as opposed to one in the first post, and that discussions with VMware are ongoing. What I wonder is why Microsoft took this approach in the first place; meaning, why did they work around VMware? My guess here is that there was an impasse between the two companies that resulted in Microsoft taking the aggressive path to getting these services running on Azure. While we will likely never know the true story here, I suspect... --- ### How Office 365 Groups Saved SharePoint Online > Office 365 Groups have been very good for SharePoint Online. Because many apps use Groups, they also use SharePoint, even if they don't know it. - Published: 2017-12-19 - Modified: 2024-09-04 - URL: https://petri.com/office-365-groups-saved-sharepoint-online/ - Categories: Microsoft 365, Office, SharePoint - Tags: Jeff Teper, Office 365, Office 365 Groups, Planner, SharePoint, SharePoint Online, Teams Office 365 Groups have been very good for SharePoint Online. Because many apps use Groups, they also use SharePoint, even if they don't know it. Teams, Planner, Yammer, StaffHub, Stream, and Groups in Outlook (or whatever the name is this week) all drive SharePoint usage. SharePoint Online is Office 365 document management, and that's a good thing. The Large Number of SharePoint Online Users In April 2017, Microsoft Corporate Vice President Jeff Teper, often called the “father of SharePoint,” told Brad Sams that SharePoint had “more than 200 million users. ” At the time, Microsoft claimed 85 million monthly active users for Office 365. According to Microsoft’s latest results, that number is now more than 120 million, as I predicted (it wasn’t hard). Recently, Jeff Teper presented at the European SharePoint Conference, where he noted that 65% of all SharePoint seats are online (in other words, use SharePoint Online). Sixty-five percent of 200 million is 130 million, which is more than the official Office 365 user base. Jeff’s figures seem off, or perhaps Microsoft is growing Office 365 even faster than expected. In either case, the fact is that an awful lot of people use SharePoint Online. Things Weren’t So Good for SharePoint in 2015 But looking back, when Teper returned to run SharePoint in July 2015, the product was running out of steam. Although powerful in knowledgeable hands, SharePoint was often too complex (and therefore costly) for organizations to deploy and manage well. In a 2009 interview, Teper acknowledged that Microsoft “may have oversold how simple SharePoint was to deploy. ” Things had not improved much between 2009 and 2015. SharePoint’s progress in Office 365 was hampered by poor administrative interfaces, complex migrations, and poor hybrid capabilities. Office 365 Groups Changed the Picture Microsoft launched Office 365 Groups in November 2014 but did not make much... --- ### Veeam’s 'Biggest Release' In their 10 Year History Arrives Today - Published: 2017-12-19 - Modified: 2024-09-04 - URL: https://petri.com/veeams-biggest-release-10-year-history-arrives-today/ - Categories: Backup & Storage - Tags: News, Veeam - Article Type: News Veeam, once a niche company with a unique product has been growing at a serious rate the past couple of years is releasing their biggest update in 10 years. Veeam, once a niche company with a unique product, has been growing at a serious rate the past couple of years. With more than 267,000 customers, the company is redefining what it means to have availability of your data and today they are releasing a major update to their software. With the 9. 5 Update 3, shipping today, the company can now provide centralized data management for virtual, physical and multi-cloud workloads. With this update, companies can remove legacy backup silos from their environment and manage all of their data with one pane of glass which is going to make life a lot easier for IT pros. While the cloud was envisioned as a way to simplify the data center, the reality is that it is increasing complexity for most IT Pros. A decade ago, it was common to have one large box that stored all your data and that was replicated to another site for redundancy. Now we have on metal on premises, virtualized environments on premises, containers as well as cloud services and offsite and cloud failover; simply put, your data is in a lot of different places and in many different states which means managing it can be a serious burden. This is where Veeam is stepping in with the latest update that is going to make it easier to keep your data available, no matter where it is stored. Also included in this release is support for VMware on AWS, IBM storage integration, Lenovo storage integration and... --- ### Using the Azure Pricing Calculator > This post will show you how to using the Azure Pricing Calculator to estimate the cost of using Azure services, using an example of a virtual machine. - Published: 2017-12-18 - Modified: 2024-09-04 - URL: https://petri.com/using-azure-pricing-calculator/ - Categories: Microsoft Azure - Tags: Azure, Calculator, Cloud Calculator, Costs, Pricing, virtual machines - Article Type: How To Aidan Finn discusses how to estimate your consumption using the public Azure pricing calculator. In this post, I will show you how to estimate your consumption using the public Azure pricing calculator.   Rates and Tools There are many ways that you can acquire Azure for your business for production systems, including: Credit Card: Stop right here! This is the dumbest way to acquire Azure because you pay the full regular retail price (RRP). The below methods offer better pricing and potential benefits. Azure in Open: Sold via Microsoft partners through the distribution channel, this is a credit based system, similar to pre-pay mobile phone. Partners should no longer sell this method and use CSP instead. CSP (Cloud Solutions Provider): This is a channel where partners sell managed solutions to customers, either directly via Microsoft or via the distribution channel. Azure consumption rates can/should be lower than RRP, and for Microsoft partners, there are a bunch of benefits including free technical support, rebates, and accelerators from Microsoft. MPSA: This plan for companies of more than 500 seats was for companies that didn’t want to have the commitments of an enterprise agreement. Existing Azure subscriptions are being honored. However, customers must migrate to either EA or CSP at the end of the contracts because Azure will no longer be sold via this license type. EA (Enterprise Agreement): This is a plan for companies with 500 or more seats where the company must (officially) pre-pay for at least $25,000 of Azure consumption per year, use it or lose it. EA offers the best cheapest... --- ### Surface Pro: Six Months Later - Published: 2017-12-18 - Modified: 2024-09-04 - URL: https://petri.com/surface-pro-six-months-later/ - Categories: Hardware - Tags: News, Surface Pro - Article Type: Review The Surface Pro has been available for six months and now that the dust has settled, it's time to take another look at the hardware. It's hard to believe but the Surface Pro was released six months ago. While Microsoft doesn't release official figures, I firmly believe that this is the most popular Surface in the company's lineup and there is some evidence to support that assertion as well. With the device now reaching the halfway point of the one year mark and there is a new model out for business customers with LTE, it's time to take a look back at the hardware to see how it has performed during the first half of its life. While everyone will have a slightly different experience with the product, here is what it has been like for me up until this point. The good news is that there is not much to report. I say that because there hasn't been any massive recall of the hardware or any single issue that has been causing these machines to be returned by the truckload. In fact, of the 30+ people I asked about their usage of the hardware, only one issue was reported that was abnormally low WiFi throughput which resulted in replaced hardware. I have traveled quite a bit with this hardware including visitng Amsterdam and a couple trips to NYC. For plane rides, it's ideal thanks to its small footprint but I will say that the Type cover, while good, is no match for the Surface Book 2 keyboard. https://www. youtube. com/watch? v=lwOUDTe9U-Q&feature=youtu. be In my testing, I feel comfortable now saying that this machine gets a solid... --- ### PowerShell for SharePoint Online Usage Scenarios - Published: 2017-12-18 - Modified: 2024-09-04 - URL: https://petri.com/powershell-sharepoint-online-usage-scenarios/ - Categories: PowerShell, SharePoint - Tags: PowerShell, SharePoint Online - Article Type: Overview PowerShell for SPO is a tool not only for platform administration and configuration tasks but also for doing many other common activities. PowerShell is not only a powerful tool to administer and manage a SharePoint Online (SPO) tenant but also for common activities as an Office 365 Administrator or an SPO. In this article, I will cover some of the most common PowerShell for SharePoint Online usage scenarios as described in Figure 1.     Figure 1-- Common PowerShell for SPO Usage Scenarios. Service Configuration and Administration Scenarios Under these scenarios, we have any action that implies to apply specific SPO settings available through SPO PowerShell cmdlets and/or SPO APIs. Some examples of typical operations that fall under these scenarios are the following ones: While it’s true that OneDrive for Business (ODFB) and SPO provides support for hashtag and percent symbols in files names and folder names, you need to explicitly enable in your tenants by using PowerShell. Note that there is not a way to enable the support for these characters in the SPO Administration UI. To enable the support for these symbols in ODF and SPO, you must use Set-SPOTenant cmdlet as follows: Set-SPOTenant -SpecialCharactersStateInFileFolderNames Allowed $O365SPOTenant=Get-SPOTenant $O365SPOTenant. SpecialCharactersStateInFileFolderNames Configuring sharing capability at the tenant or site collection level is very important when we want to share an Office 365 Group site with external users without adding them as a guest in the Group. To enable external users sharing in an Office 365 Group site, we only need to use Set-SPOSite cmdlet as detailed below: $sO365GroupSite="https://" Set-SPOSite -Identity $sO365GroupSite -SharingCapability ExternalUserSharingOnly Auditing Operations and Reporting scenarios On the one hand,... --- ### Amazon Releases New Unified CloudWatch Agent - Published: 2017-12-18 - Modified: 2024-09-04 - URL: https://petri.com/amazon-releases-new-unified-cloudwatch-agent/ - Categories: Amazon Web Services, Cloud Computing - Tags: Agent, Amazon, AWS, CloudWatch, logging, Metrics, News, Unified - Article Type: News Amazon has announced a new unified agent for their AWS CloudWatch monitoring service, making it easier for admins to log and view data. In a recent post on the AWS Blog, Amazon announced a new unified agent for their CloudWatch monitoring service. With Amazon's CloudWatch service, users are able to use a variety of scripts and services to monitor and collect data regarding their AWS configurations and the applications running on them. All of this data is added to one's CloudWatch Dashboard, where it can be analyzed to check for potential performance or resource issues before they affect users. Amazon's new unified agent can help to simplify and improve the data collection process, as it has made it easy to filter all of the collected data into CloudWatch while also adding support for the collection of more system-level metrics on servers based in the cloud, as well as on-premises (this also includes hybrid environments). The new unified CloudWatch agent supports both 32 and 64-bit Windows and Linux environments, regardless of whether they are cloud-based or on-site, with support for HTTP proxy servers. By default, the agent collects and logs data that is deemed the most useful, but can also be configured to collect additional data about one’s set-up, including data about network and resource usage, hardware utilization, and hundreds of other detailed metrics. What's more is that the agent supports the logging and reporting of metrics with Amazon's standard 1-minute resolution, as well as high resolution (1-second) metrics, which Amazon announced earlier this year. Also supported by the agent are a variety of EC2 dimensions, including Instance Id, Image Id, and... --- ### Automatically Resize an Azure VM > In this “how to” post, I will show you how to use Azure Automation to scale up (increase) or scale down (decrease) the size of an Azure virtual machine. - Published: 2017-12-17 - Modified: 2024-09-04 - URL: https://petri.com/automatically-resize-azure-vm/ - Categories: Microsoft Azure - Tags: Alert, Automation, Azure, Azure Virtual Machines, performance, PowerShell, Runbook, script, virtual machines - Article Type: How To In this “how to” post, Aidan Finn shows you how to use Azure Automation to scale up (increase) or scale down (decrease) the size of an Azure virtual machine. In this “how to” post, I will show you how to use Azure Automation to scale up (increase) or scale down (decrease) the size of an Azure virtual machine.   The Scenario In the cloud world, we are supposed to, as I teach, deploy “an army of ants, not a squad of giants”. By deploying lots of small workloads, each instance has little value (especially if it fails). We then have the granular ability to scale in or out, depending on workload (see virtual machine scale sets). The latter is financially beneficial because machines are only running and therefore paid for, while there is a load for them to exist and service. There are times when an application cannot scale out or in, and the only choice is to add more performance by changing the processor, RAM, etc. I can think of two examples of this: Monolithic Application: A line-of-business application is coded to run on one machine only. There are times when this machine must use more resource than normal, so you want to optimize costs when the loads are less. We could use metrics alerts + Automation to trigger a change of virtual machine spec/size depending on resource usage. Pending Disaster Recovery: Some applications, such as Active Directory with 2+ domain controllers in the forest, don’t support the replication of domain controller machines. In this case, you need to run 1+ additional domain controllers in the DR site. We could run the domain controllers as low-end... --- ### Improve Office 365 Security Using Secure Score - Published: 2017-12-15 - Modified: 2024-11-19 - URL: https://petri.com/improve-office-365-security-using-secure-score/ - Categories: Cloud Computing - Tags: cloud computing, Office 365, Office 365 Secure Score, Ransomware, Security - Article Type: How To In this Ask the Admin, Russell Smith shows you what Office 365 Secure Score can do for the online security of your business. Office 365 Secure Score is a portal that helps you assess the security posture of your Office 365 tenant. In this Ask the Admin, I'll show you what it can do for the online security of your business.     Moving sensitive business data to the cloud is a step too far for many organizations. There can be valid reasons for keeping data on-premises but the cloud can be at least as secure as your own datacenter, sometimes more secure. To help manage security in the cloud and give extra confidence to businesses that are still sitting on the fence, Office 365 Secure Score is a tool for analyzing and implementing security best practices in your Office 365 tenant. Office 365 is complex and trying to understand your security posture quickly and easily is an almost impossible task using the Office 365 management portal and various admin centers. Secure Score taps into the power of Microsoft Graph, which uses a set of REST-based APIs to collect information from multiple endpoints, like Exchange, SharePoint, and Microsoft Teams. Secure Score also has its own API which administrators can connect to using PowerShell to get reports. For more information on connecting to the Secure Score API, see Microsoft’s website here. Secure Score’s dashboard gives your tenant a score, from a maximum of 364, and a list of actions that can be used to improve the score. The score is calculated based on your tenant’s security settings and user behavior, with the... --- ### Paul Thurrott's Short Takes: December 15 - Published: 2017-12-15 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-15/ - Categories: Cloud Computing, Mobile, Security, Windows 10 - Tags: News - Article Type: Overview Because there's a chill in the air, this edition of Short Takes looks at Microsoft's embrace of fake news, OpenSSH in Windows 10, more bad news for Microsoft Edge, mixed news for Xbox One, and much, much more. Because there's a chill in the air, this edition of Short Takes looks at Microsoft's embrace of fake news, OpenSSH in Windows 10, more bad news for Microsoft Edge, mixed news for Xbox One, and much, much more. Of Microsoft's confusing stance on fake news Microsoft this week unveiled an interesting set of AI-based improvements to Bing, Cortana, and Office 365, and while most of them are actually very interesting, one is troubling. In a bid to accommodate an increasingly stupid user base who are far too easily swayed by fake news, faux facts, and opinion-based reporting, Microsoft is modifying Bing search results to show both sides of various stories. So when you search for something like "is cholesterol bad for you? " you will get both the truth (no) and, in this case, the conventional wisdom, which is that all of us need to be on statins. One can only wonder how it will handle political or religious topics, but it's not hard to argue why this design decision is a huge mistake. Thus, I expect it to be very popular. "Guess what the hottest Google searches were for 2017? " Can't you just tell me? Microsoft is bringing OpenSSH to Windows 10 Those who are still uncomfortable with Microsoft's embrace of open source technologies may want to skip ahead to the next blurb. Following in the footsteps of Microsoft's earlier efforts to integrate various Linux command line environments into Windows 10, a report this week revealed that it... --- ### Microsoft Releases Compliance Manager Preview - Published: 2017-12-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-compliance-manager-preview/ - Categories: Cloud Computing - Tags: cloud computing, Compliance, GDPR, Microsoft 365, Office 365, Regulatory Compliance, Security - Article Type: Overview In this Ask the Admin, Russell Smith looks at how Microsoft's new service can help organizations meet compliance requirements. In this Ask the Admin, I'll look at how Microsoft's new service can help organizations meet compliance requirements.     Earlier this week, I attended an event hosted by Microsoft announcing its new Compliance Manager for Microsoft 365. While the presentation was geared towards Microsoft 365’s unique approach to GDPR, the EU General Data Protection Regulation comes into force May 25th next year, Compliance Manager will be made available to all customers of Microsoft’s cloud services. Microsoft views GDPR as a way to drive digital transformation and has responded by creating Compliance Manager to help organizations in that process. EU GDPR differs from current legislation. Organizations must comply, even if the data controller and processor are located outside the EU because it is important to note the location of the data subject. Because of the pending new legislation, Microsoft has updated Office 365 to comply. And as part of that effort, Compliance Manager passes on Microsoft’s knowledge about GDPR, and other standards and regulations, to customers to help them achieve compliance. For more detailed information on GDPR, see What You Need to Know About the EU General Data Protection Regulation on Petri. Microsoft 365 fits into the picture by providing end-to-end data governance and protection of sensitive data. Not just on Microsoft’s servers in the cloud but also on end-user devices and on-premise servers. And this is the part that Office 365 alone cannot provide because Microsoft 365 Enterprise brings together Office 365, Windows 10 Enterprise, and the... --- ### Microsoft Clarifies Premium Features for Office 365 Groups. Prepare to Spend More! > A new Microsoft support article clarifies premium features used by Office 365 Groups that require premium licenses. Also used by Teams. - Published: 2017-12-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-clarifies-premium-features-office-365-groups/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: AAD, Azure Active Directory, licensing, Office 365 Groups, Teams - Article Type: News A new Microsoft support article clarifies premium features used by Office 365 Groups that require premium licenses. While good to know when you have to pay extra, it is baffling why some of the features fall into the premium category and why so many licenses are needed. The solution is to buy the Enterprise Mobility and Security suite. Or just pay for the extra licenses. AAD Dictates Licensing for Office 365 Groups On October 10, 2017, I wrote about how the licensing requirements imposed by Azure Active Directory can create extra costs for Office 365 tenants. The problem is simple. If you want to use some features of Office 365 Groups (or with Microsoft Teams), you need Azure Active Directory premium licenses. The issue blew up at the Ignite conference when Microsoft included a slide (Figure 1) listing features that need premium licenses in all the presentations about Office 365 Groups. Figure 1: Azure Active Directory licensing requirements for Office 365 Groups (image credit: Microsoft) The reason why Azure Active Directory is involved is that Microsoft views these features as extensions of the basic Azure Active Directory plan bundled with every Office 365 tenant. No one minds paying extra for new functionality that adds real business value, like the group expiration policy. But asking more for features that are hardly premium or should be in the basic Office 365 package causes discontent, especially when features replicate existing functionality. New Support Article Lays Down the Law In any case, on December 12, Microsoft published a new support article (Learn about Office 365 Groups) to lay out their case. Although it is welcome for Microsoft to say clearly what features are free and included in Office 365 plans and what you need to pay extra for, it is disappointing that they have not responded more positively to the pretty blunt feedback... --- ### Microsoft and Reddit Partner To Make Search Better - Published: 2017-12-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reddit-partner-make-search-better/ - Categories: Office, PowerBI, Uncategorized - Tags: Bing, Microsoft, News, Reddit - Article Type: News Microsoft and Reddit have teamed up to make searching the site a little bit better and also adding a new tool for marketers. Reddit is a unique asset on the Internet, a community filled with millions of users and billions of page views but if you have ever used the site, you will know that searching for content is nearly impossible. With sub-reddit naming not always following the typical SEO friendly conventions and questions being buried in the 2. 3 million daily comments, finding an answer to your question can be nearly impossible. The Microsoft and Reddit are announcing a partnership that they say has been two years in the making and will make it significantly easier to use Bing to search content on Reddit. In addition to improved search, Microsoft is also building services for Power BI to make it easier for brands to view their impact on the community. The new Bing Intelligent Search feature will make it easer to search nested content inside of AMAs and sub-Reddits and other places on the site but sadly, you will still have to go to Bing. com to use the features. The reason I say 'sadly', is because the search on Reddit. com, based on the information give to me today, is not based on Bing's new services and will still be as bad as it is today. In addition to the search features, there is a more important update for marketers that will allow them to use Power BI to monitor the impact of advertising across the site. Using pre-built templates, Power BI is now becoming a key tool for measuring and monitoring marketing activities... --- ### Lack of Migration Tools Can Cause Problems Moving to Teams > Microsoft Teams is popular now, but if you decide to use it, how can you move content from other applications to Teams. Microsoft does not have an API. - Published: 2017-12-12 - Modified: 2024-09-04 - URL: https://petri.com/migration-tools-slow-migration-teams/ - Categories: Microsoft 365, Office - Tags: email, HipChat, migration, Office 365, SharePoint, Slack, Teams - Article Type: How To Microsoft Teams is popular now, but if you decide to use it, how can you move content from other applications to Teams. Getting email into Teams can be done individually and moving documents into SharePoint is straightforward, but moving content from other chat platforms is problematic because of the lack of a migration API. No-one Likes Migrations but Everyone Loves Teams Let’s say that you decide to embrace Microsoft Teams and move some email traffic to the new platform. Or that you want to move away from a competing chat platform like Slack or HipChat because Teams is part of your Office 365 plan and better integrated with other Office 365 applications, or because Teams is taking over from Skype for Business Online. The question might then arise whether you need to move any information from your current platform to Teams. In some cases, the answer is no, and you can start with a clean slate. Users finish up whatever they are working on with the old platform before moving to Teams. In other cases, the old platform holds corporate knowledge or other essential information (like records needed for compliance) that you must preserve before you can decommission that platform. Moving Email to Teams Email includes personal mailboxes, shared mailboxes, and site mailboxes. Because email exists alongside Teams, there is often no need to move anything unless you have an important message or attachment that must be in Teams. In this case, because you cannot drag and drop items from an email client into Teams, the easiest solution is to email it to the channel that you want it to be in. Unless blocked by tenant settings, each channel has a unique email address in the form 7040819b. tenant-name@region. teams. ms. To get the address, click the ellipsis menu for the channel. You can then... --- ### Getting Started with Project Honolulu - Published: 2017-12-12 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-project-honolulu/ - Categories: Windows Server - Tags: PowerShell Remoting, Project Honolulu, remote management, Windows Server 2016 - Article Type: Overview In this Ask the Admin, Russell Smith looks at the technical preview of Project Honolulu in Windows Server version 1709.   In this Ask the Admin, I'll look at the technical preview of Project Honolulu in Windows Server version 1709.     If you’ve ever opened Computer Management, Device Manager, or Active Directory Users and Computers (ADUC), you will know what a typical Microsoft Management Console (MMC) looks like. It is a hierarchical tree that can be expanded to view configuration options. MMCs were first introduced in Windows 2000 and Microsoft has improved the original concept in Server Manager and the Active Directory Administrative Center. Neither is a major departure from the consoles they were designed to replace. MMCs have an unfriendly UI design and need to make a remote procedure call (RPC) to manage remote computers. Project Honolulu is a complete reimagination of not only the user interface but also the back end. It uses a website to manage remote servers via a gateway using PowerShell remoting and WMI over WinRM. The gateway can be installed on Windows Server 2016 and Windows 10. Project Honolulu can manage Windows Server 2016, Windows Server 2012 R2, and Windows Server 2012. Because the gateway is a webserver application, administrators can connect to it from the public Internet and the local area network. Connecting to a gateway, rather than directly to the nodes you want to manage, allows for more flexibility and the option to secure communications easily.   Install a Gateway in Windows Server 2016 The gateway can be installed on Windows 10, for small-scale environments, or on... --- ### What's the benefit of Windows on ARM for the Enterprise? - Published: 2017-12-11 - Modified: 2024-09-04 - URL: https://petri.com/whats-benefit-windows-arm-enterprise/ - Categories: Hardware - Tags: ARM, News, Windows on ARM - Article Type: Opinion There is a lot of talk about how Windows devices based on ARM will be a huge shift in desktop security but Microsoft needs to come out and explain the value of an ARM-based devices. Last week, I was at the Snapdragon Summit in Maui where the company announced several new products including a few laptops that run Windows that are based on an ARM processor. The devices, one by ASUS and the other by HP, are a glimpse into the future of computing but both the vendors and Microsoft have a lot of work ahead of them. The benefit of an ARM-based piece of hardware has multiple fronts including better battery life, LTE connection, and it's not strapped down by legacy infrastructure (more on this point later). With Qualcomm (the maker of Snapdragon chips) boasting that these devices get up to 20hrs of battery life and 30 days of standby time, take this with a grain of salt until we get our hands on these devices outside of controlled environments, the future does sound promising. Even though this is a completely new (ok, there was Windows RT but that platform 'died') architecture that is powering the devices shown off this week, there is little benefit for the average user as it stands right now. The always-connected pitch that Microsoft and Qualcomm are branding these devices as can already be achieved by numerous devices with LTE such as the Surface Pro LTE. While 20 hrs of battery life is great, the Surface Book 2 is marketed as 17 hrs even though usage-reality is much less and I suspect the ARM-based PCs will also be much less than 20hrs. Even the 30 days of... --- ### Taking Advantage of Azure’s DR Options to Keep Your Data Safe For Tomorrow - Published: 2017-12-11 - Modified: 2024-09-04 - URL: https://petri.com/taking-advantage-of-azures-built-on-dr-options/ - Categories: Microsoft Azure - Tags: Azure, Cloud, Disaster Recovery - Article Type: Overview Learn about Azure's different options to protect your business-critical data to avoid your next possible outage. Two of the biggest advantages of the cloud are the high levels of availability and data protection that it provides. Azure is one of the most used cloud providers, especially for Windows-centric organizations. Azure provides tight integration with many of Microsoft’s on-premise offerings. In addition, while cloud availability is not perfect, its uptime and data protection capabilities exceed the vast majority of private on-premise implementations. As Microsoft states in their SLA summary for Azure services, most Azure services like Azure Active Directory, Analysis Services, and Backup are guaranteed to provide 99. 9% uptime. Other offerings like Cloud Servers and Virtual Machines that have two or more instances deployed in the same Availability Set are guaranteed to provide 99. 95% availability. Let’s have a closer look at Azure storage and its built-in DR data protection capabilities. Azure Storage Option First, it’s important to understand Azure’s different storage options. Azure provides three types of file storage as well as NoSQL and relational SQL database storage. Azure Blob (Binary Large Objects) Storage can be used to store any type of text or binary file data including documents, photos, and VHD/VHDX files. Azure provides two types of blob storage: page blobs and block blobs. Page blobs provide persistent block storage and like Amazon’s EBS and they are optimized for representing Virtual Machine VHDs or Cloud Services drives. Block blobs provide object storage like AWS S3 and they are optimized for streaming and storing cloud objects like documents and media files. Azure Premium Storage uses page blobs on... --- ### Adding a Subscription to an External Office 365 User - Published: 2017-12-11 - Modified: 2024-09-04 - URL: https://petri.com/adding-subscription-external-office-365-user/ - Categories: Cloud Computing - Tags: cloud computing, Office 365, Office 365 Licensing - Article Type: Overview In this Ask the Admin, Russell Smith walks you through what happened when he converted an external Office 365 user to a paid subscriber and how to avoid the problems encountered. In this Ask the Admin, I'll walk you through what happened when I converted an external Office 365 user to a paid subscriber and how to avoid the problems that I encountered.     OK, let me start out with a spoiler. Microsoft doesn’t support adding product licenses to external users in Office 365. At least according to one of its support professionals. What’s confusing about this is that you can physically add product licenses to external users in the Office 365 portal. But in my experience, you won’t want to do that. Office 365 supports the ability to invite users that are external to your organization (home tenant) so that they can view and edit content. Microsoft Teams currently supports guest users from other Office 365 tenants. But Office 365 groups can include users from other Office 365 tenants and users that are not a member of any Office 365 tenant. The only requirement is that they must have an email address. Group owners, group members, and tenant administrators can invite guest users. A Guest User in Office 365 (Image Credit: Russell Smith) For the sake of clarity, it’s worth noting that Microsoft uses the term external and guest user interchangeably in much of its documentation. ‘External users’ was more commonly used when all users outside of the tenant authorized externally. I. e. with a username and password that was not managed by the home Office 365 tenant. Guest user was introduced when users without... --- ### Extending Your On-Premise databases to the Hybrid Cloud with SQL Server Stretch Databases - Published: 2017-12-11 - Modified: 2024-09-04 - URL: https://petri.com/extending-your-on-premise-databases-to-the-hybrid-cloud-with-sql-server-stretch-databases/ - Categories: Hybrid Cloud, SQL Server - Tags: Azure, hybrid cloud, SQL Server - Article Type: Overview See how SQL Server Stretch Databases can extend your data to the hybrid cloud and it is easy to configure too. There’s no doubt that cloud technology is evolving very rapidly; using the cloud today is no longer a choice between on-premise and the cloud. Instead, many parts of the Windows Server operating system and Microsoft’s server applications have built-in Azure hybrid cloud integration capabilities. One great example of Microsoft’s hybrid cloud integration is SQL Server’s Stretch Databases feature. First introduced with SQL Server 2016 and carried forward to SQL Server 2017, Stretch Databases enable you to seamlessly extend a database from an on-premise SQL Server deployment to Azure. SQL Server Stretch Databases can be a good hybrid cloud option when you have large amounts of historical data that you need to keep online for a long time and you need to query that data. Stretch Databases can enable you to provide longer data retention times for archiveing data using low-cost Azure storage. It can eliminate the need to expand your local storage which is typically much more expensive than cloud storage. It can also be an attractive option if you can’t get the historical data in your large tables backed up and restored within your allotted backup window. Requirements The Stretch Database feature requires that you have SQL Server 2016 or 2017. It is supported by all editions of SQL Server. Not surprisingly, the Stretch Databases feature also requires that you have an Azure account and makes use of Azure SQL Database. To learn more about the costs involved in using Stretch Databases you can look at SQL Server Stretch... --- ### IBM Announces new Power Systems Servers and POWER9 Processor - Published: 2017-12-11 - Modified: 2024-09-04 - URL: https://petri.com/ibm-announces-new-power-systems-servers-power9-processor/ - Categories: Hardware - Tags: AI, artificial intelligence, IBM, News, Power Systems Servers, POWER9 - Article Type: News In a recent press release, IBM announced its new Power Systems Servers and POWER9 processor, which can be useful when working with artificial intelligence and other compute-intensive applications. When it comes to developing and working with artificial intelligence and other processor-intensive systems, it’s important that there is ample computing or processing power available. This is where IBM's newest Power Systems Servers, which the firm recently announced in a press release, come into play.     Powered by IBM's new POWER9 processor, the latest Power Systems Servers were designed for computation-intensive artificial intelligence work. Featuring an embedded PCI-Express 4. 0 connection, an NVIDIA NVLink High-Speed Interconnect and the OpenCAPI interface, the servers are capable of transferring data at speeds that are up to 9. 5 times as fast as 32-bit PCI-E 3. 0 based systems. The new POWER9 processor also supports 2. 6 times as much RAM and 1. 8 times as much memory bandwidth compared to similar 32-bit processors. For organizations or institutions that use artificial intelligence frameworks like Chainer, TensorFlow, and Caffee, upgrading to a Power Systems Server with the new POWER9 processor should lead to an increase in performance, allowing for work to get done more quickly and efficiently.     In fact, companies like Google and the U. S. Department of Energy will be making use of this new server technology, with Google planning to use them in its data centers, and the U. S. Department of Energy planning to use them to power some of the world’s most powerful supercomputers - "Summit" and "Sierra". Organizations can use the aforementioned technology for many processor or compute-intensive activities, including deep-learning and real-time systems, among others. Artificial intelligence, combined with... --- ### Managing File Associations in Windows 10 - Published: 2017-12-08 - Modified: 2024-09-04 - URL: https://petri.com/managing-file-associations-windows-10/ - Categories: Windows Client OS - Tags: default apps, file associations, Windows 10 - Article Type: How To In this Ask the Admin, Russell Smith explains the changes to how default app file associations are managed in Windows 10. In this Ask the Admin, I'll explain the changes to how default app file associations are managed in Windows 10.     Windows 10 helps to prevent file associations being hijacked. In previous versions of Windows, when new applications are installed or run for the first time, it often checks to see if the new app is the default app for a given file type. For example, a browser might check to see if it is the default program for opening HTML files. If the developer followed best practices, the user would be asked to provide consent before the app was set as default. Some developers skipped this step and changed the file association settings in the registry without the user’s consent.   The UI for managing file associations in Windows 10 aims to put the user in control. Neither Store apps nor win32 apps can invoke a prompt asking for consent to change app defaults. Now in Windows 10, a notification is displayed when a user launches a file type that has multiple programs registered as handlers. When a new application registers an extension, unless the user previously checked the ‘Always use this app to open . doc files’ box, the notification will popup for the given file type. If a win32 app tries to invoke a consent prompt for changing app defaults in Windows 10, you will receive a warning that you’ll need to change the default settings in the Settings app under Apps > Default apps... . --- ### Modern SharePoint Site Themes - New customizations - Published: 2017-12-08 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-site-themes-new-customizations/ - Categories: SharePoint, Uncategorized - Tags: Branding, Modern SharePoint Team Site - Article Type: How To Jasper Oosterveld, Microsoft MVP & Consultant, reviews the latest updates to the customizations of the Modern SharePoint Team Site look and feel. I have never been a real fan of branding in SharePoint. That's because SharePoint isn't meant to be branded, definitely not in an extensive manner. SharePoint never had the branding capabilities of other platforms such as WordPress. The branding expectations all started because of the Ferrari Intranet in the MOSS 2007 era. Many companies wanted a similar branding, which resulted in an overload of customizations, increasing budgets, and frustrations with everyone involved.     The arrival of Modern SharePoint was a blessing in disguise. The new experience was responsive by default, integrated with a Microsoft SharePoint App and a user interface aimed at business users. There was also no way to brand Modern SharePoint Sites. That made me very happy. That said, I do understand the need for minimal corporate branding.  Microsoft re-introduced themes (remember SharePoint 2010? ) to provide a series of colors for the SharePoint sites. These are now being extended with new customizations. Let's take a look! (more... ) --- ### Modern SharePoint Web Parts Updates -- Spacer and Divider - Published: 2017-12-07 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-spacer-divider/ - Categories: SharePoint - Tags: Modern SharePoint, Modern Web Parts, SharePoint Online - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy-to-use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint.     The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the spacer and divider. The formatting of Modern SharePoint Pages had room for improvement from the start. We were able to add a text web part but that's basically it. We are now receiving additional web parts to create diverse and creative pages. The new web parts are the spacer and divider. Let's take a look at the divider first: No rocket science here, you add a grey line between web parts, which will separate content blocks from each other. That's a great web part for all you content editors out there.  Unfortunately, there are no additional settings to change the look and feel of the divider. I am hoping for changes to the color or thickness of the divider. Next up: Spacer! You add space between web parts based on pixels. You can hide the web part for mobile devices. That's probably a good idea because of the smaller screen sizes.   ... --- ### G Suite for Office 365 Admins: Calendar Structured Resource Data - Published: 2017-12-07 - Modified: 2024-09-04 - URL: https://petri.com/g-suite-office-365-admins-calendar-structured-resource-data/ - Categories: Cloud Computing - Tags: cloud computing, G Suite, Google Calendar, Office 365, Small Business - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to create additional calendars for people and resources with structured resource data. In today's Ask the Admin, I'll show you how to create additional calendars for people and resources with structured resource data.     One of the few areas where Google G Suite can be more flexible over Office 365 is its calendar application. Earlier this year, I looked at G Suite Calendar appointment slots, which allows users to ‘open’ available times on a calendar that anyone can book. While G Suite slots are similar to Office 365 meeting rooms, they work differently. If you’ve never used G Suite before, as you navigate features in Calendar, you get the impression that it has been designed with the education sector in mind. On October 17th, Google made changes to how Calendar resources work, which can now include structured resource data. Creating calendar resources differs significantly from Office 365, so some of the concepts in this article might be new for you. Let’s start by creating a new calendar resource. Add a Calendar Resource Before you can complete the instructions below, you’ll need a Google G Suite subscription. If you don’t already have a subscription, you can sign up for a free trial here. Open the G Suite admin console here (admin. google. com). Click the Apps icon. Click G Suite. Under Services, click Calendar. On the Calendar page, click Resources. Add a Calendar Resource in Google G Suite (Image Credit: Russell Smith) On the Resources page, you’ll see two columns. On the left, you can add locations for... --- ### Microsoft Brings Advanced Threat Protection to SharePoint Online > Microsoft launched Advanced Threat Protection for SharePoint Online, OneDrive for Business, and Teams on December 5. - Published: 2017-12-07 - Modified: 2024-09-04 - URL: https://petri.com/atp-sharepoint-online/ - Categories: Microsoft 365, Office, SharePoint - Tags: Advanced Threat Protection, ATP, Malware, Office 365, OneDrive for Business, Security, SharePoint Online, Teams - Article Type: News Microsoft launched Advanced Threat Protection for SharePoint Online, OneDrive for Business, and Teams on December 5. It's good to have extra anti-malware capabilities, but ATP requires Office 365 E5 or an extra add-on, so it might be out of the reach of some tenants. And it's all about SharePoint - Teams is just there because Teams can store documents. More Anti-Malware Protection for SharePoint Online Microsoft’s December 5 announcement that Advanced Threat Protection (ATP) is now available for “SharePoint, OneDrive for Business, and Microsoft Teams” generated a lot of excitement. And so it should, because increasing the level of protection against malware infections is always a good thing. And given that more people than ever before are storing files in the cloud, making sure that the bad stuff is detected and stopped in place is sensible. The Cost of Protection My excitement faded a little when I read the blog to find that ATP for SharePoint (for that is what this is) requires tenants to buy either Office 365 E5 licenses or separate add-on licenses, Microsoft is steadily increasing the number of features that you can only use if you have E5 grow the average revenue per seat. When you have 120 million active users, Office 365 can drive a lot of extra dollars. How ATP for SharePoint Works ATP for SharePoint works differently to ATP for email, which is also part of Office 365 E5. The Exchange Online mail transport service is a single chokepoint where email moving into and out of a tenant must pass through. ATP for email examines inbound messages to detect and remove malware, using techniques like Dynamic Delivery to process potentially suspicious attachments. Overall, ATP works well for email. But SharePoint does not have a single chokepoint where content can be checked. This is the same problem that the Data Loss... --- ### Deploy From Your Code Management into Azure Web Apps > This post will explain how to deploy code into Azure Web apps from VSTS, GitHub, Git, BitBucket, and so on, instead of FTP, using a GitHub example. - Published: 2017-12-06 - Modified: 2024-09-04 - URL: https://petri.com/deploy-code-management-azure-web-apps/ - Categories: Microsoft Azure - Tags: Azure, deployment, Deployment Integration, Deployment Slot, DevOps, FTP, GIT, GitHub, Visual Studio Team Services, VSTS, WebApps - Article Type: How To Aidan Finn explains why using FTP isn’t the best way to get your code into an Azure web app and how you can integrate your code management solution into Azure web apps for direct delivery without using FTP. In this post, I will explain why using FTP isn’t the best way to get your code into an Azure web app and how you can integrate your code management solution into Azure web apps for direct delivery without using FTP. In this example, I will create a deployment integration from GitHub into an Azure web app.     FTP In another post, Uploading to Azure Web Apps using FTP, I explained how you could use FTP to publish your code and web content to an Azure web app or deployment slot. That’s a method that has been used for years but it’s very manual. These days, there are better ways to do things. Code can be shared and stored in lots of ways, including very basic solutions, such as OneDrive or DropBox. More organized teams might use solutions, such as a Git server, GitHub, BitBucket, or Visual Studio Team Services (VSTS). This is not only to share code but also to manage it. So, if we have better ways to store code, manage versions, push/pulls/merges, and to collaborate, then wouldn’t it make sense to integrate these code management solutions into Azure. This would help to deliver our latest and greatest version directly to the web app or deployment slot without using FTP? I think so! Web App Deployment Options If you open a web app or deployment slot, you will find under Deployment something called Deployment Options. This allows you to connect your web app or deployment slot... --- ### Amazon Announces New AWS Cloud Media Services - Published: 2017-12-05 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-new-aws-cloud-media-services/ - Categories: Cloud Computing - Tags: Amazon, AWS, Cloud, Media, News, services - Article Type: News In a recent post on the AWS blog, Amazon announced several new media services that can be used to process, store, deliver, and monetize cloud-based video. With the ever increasing popularity of web-based video, it is becoming more and more important that organizations produce content that customers and users are interested in seeing. However, doing so means that the organization must have an efficient method of processing, storing, and delivering this media. This is where Amazon’s new AWS Cloud Media services come in.     Announced earlier this week on the AWS blog, these new services enable users to easily and efficiently process, store, deliver, and monetize web-based video.   Included in the announcement are the following new AWS cloud media services: AWS Elemental MediaConvert This service provides file-based transcoding for over-the-top (OTT), broadcast, or archiving media and video, with support for a variety of different video formats and codecs. What's more is that AWS offers a variety of video enhancement features, including support for multi-channel audio, video overlays, and closed captioning. For those who would like to ensure the security of their video files, Elemental MediaConvert also supports several different digital rights management (DRM) options. AWS Elemental MediaLive Elemental MediaLive is a service that provides broadcast-level video encoding that can be used for streaming video to broadcast television as well as multiscreen devices. This service enables live source video to be compressed in real time and sent to viewers, which can be useful for streaming occasional live events and live 24x7 broadcasts alike.     AWS Elemental MediaPackage Elemental MediaPackage can be used to prepare video for live streaming or on-demand delivery... --- ### What's New in Windows Server 1709 Hyper-V > This post explains what new features you will find in the 1709 release of Windows Server 2016 Hyper-V. - Published: 2017-12-05 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-windows-server-1709-hyper-v/ - Categories: Hyper-V - Tags: 1709, Containers, Docker, Failover Clustering, Hyper-V, Nano Server, networking, S2D, Security, Semi-Annual Channel, Semi-Annual Release, storage, Storage Spaces Direct, virtual machines, Windows Server 2016, WS2016 - Article Type: Overview Learn about the new features and changes to Hyper-V in the recent 1709 semi-annual channel release of Windows Server. In this article, I will describe the new features and changes to Hyper-V in the recent 1709 semi-annual channel release of Windows Server.     The Semi-Annual Channel 1709 is the first semi-annual channel release of Windows Server by Microsoft, so it’s probably a good idea to have a quick reminder of what this means. Microsoft split the timing of releases for Windows Server. The year-themed releases, such as Windows Server 2012 and Windows Server 2016 will continue to occur; these are known as the long-term servicing channel or LTSC. But twice a year, Microsoft will also distribute a semi-annual channel (SAC) release. The SAC is available to customers that: Acquired Software Assurance with Windows Server Opted into the SAC via a clean installation of 1709 Microsoft will gradually improve Windows Server features in SAC releases. “Most” of these features will be bundled into later LTSC releases. From time to time, you might see a feature not included (at all) in a SAC release, so you’ll have to use an older build. For example, in 1709, Storage Spaces Direct (S2D) is missing; you have to deploy S2D clusters using Windows Server 2016 LTSC media, and 1803 will include an updated version of S2D. Note that SAC is intended for customers that want/need the latest releases, such as those working with containers or using Windows Server for infrastructure roles (S2D and/or virtualization). Microsoft provides 18 months of support for each released build. 1709 is our first SAC release and... --- ### Protecting Office 365 Documents with Conditional Access Policies > Azure Conditional Access policies can be used with Azure Information Protection (AIP) to secure protected documents against unauthorized access. - Published: 2017-12-05 - Modified: 2024-11-19 - URL: https://petri.com/conditional-access-policies-protect-office-365-documents/ - Categories: Microsoft 365, Office - Tags: AIP, Azure Active Directory, Azure Information Protection, conditional access, GDPR, Office 365 - Article Type: How To Azure Conditional Access policies can be used with Azure Information Protection (AIP) to secure protected documents against unauthorized access. If you have already decided to use AIP as part of your Office 365 data protection strategy, adding a conditional access policy is a quick way to frustrate people who try to access documents when they shouldn't. Better Protection for Office 365 Having technology that can do one thing well is goodness. Combining that technology with other technology to do more is even better, which is what Microsoft is doing with the preview of Conditional Access for Azure Information Protection (AIP). Labels Documents Containing Sensitive Information AIP is one of the multiple ways to label information within Office 365. Thankfully, Microsoft has embarked on a plan to bring classification labels (as used in data governance) and AIP labels together to create a label to rule them all. For now, we operate on the basis that users apply AIP labels through the Office applications (Figure 1) to mark documents and messages with different levels of sensitivity. For the most sensitive material, AIP labels can invoke protection templates to restrict what recipients can do with information. Figure 1: The AIP menu bar appears in a Word document (image credit: Tony Redmond) A classified document is a Word, Excel, or PowerPoint file stamped with an AIP label. Users can also apply AIP labels to email through Outlook. Conditional Access and Office 365 Conditional access policies are an Azure Active Directory premium feature to control the access users have to applications running in your environment. Multiple access policies allow fine-grained control over who can access what and when, if that is how you want access to work. As explained here, when a user is subject to a conditional access policy, Azure AD redirects their request... --- ### Cross-Platform Administration for Office 365 with Office 365 CLI Tool - Published: 2017-12-04 - Modified: 2024-09-04 - URL: https://petri.com/cross-platform-administration-office-365-office-365-cli-tool/ - Categories: Microsoft 365 - Tags: cross-platform, linux, Office 365, PnP - Article Type: How To, Overview In this article, Jussi Roine discusses the purpose of Office 365 CLI. Office 365 CLI ("Command-Line Interface") is a new open source tool that was incubated within the Office Developer Patterns and Practices (Office Dev PnP for short) group. The purpose of the tool is to allow administrators to view and change settings in Office 365, although for now, the tool is limited to SharePoint Online only.     Currently, the tool can be used to connect with a specific SharePoint Online site, to change and review settings for CDN, SharePoint customizations known as apps (or add-ins depending which documentation you're following), and storage settings. Although this leaves a lot to be desired, it's still a good start as the tool is cross-platform and can be used in Linux and macOS as well. Installing Office 365 CLI The tool is distributed as a pre-compiled package and can be installed easily with the npm tool. This is a package manager, which is not installed by default in Windows or other OS's. You first need to either download npm or install it through your operating system's package manager. I'm using a virtual machine with Ubuntu Linux and it did not have npm installed with the basic installation. The quickest way to install npm is to execute the following command. Note that I'm using sudo to elevate my privileges for the installation to succeed: sudo apt install npm This takes a minute or so to install. You can try out if npm works now with: sudo npm --version You should see the version number. For me,... --- ### Azure Launches FS_v2-Series Virtual Machines - Published: 2017-12-04 - Modified: 2024-09-04 - URL: https://petri.com/azure-launches-fs_v2-series-virtual-machines/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machines, F_v2-Series, F-Series, FS_v2-Series, virtual machines - Article Type: Overview Aidan Finn discusses Microsoft's launch of a new version of the F-Series virtual machines aimed at providing Xeon performance for application servers in Azure. Microsoft has launched a new version of the F-Series virtual machines aimed at providing Xeon performance for application servers in Azure.   The F-Series Virtual Machine The first version of the F-Series was a kind of rebirth for Azure virtual machines; the F-Series introduced a new naming standard that gave us meaning to the names of each machine. The F4 name indicated that the machine had 4 virtual processors and it wasn’t just the 4th size on a list. The name, F-Series, also indicated what this machine was; it had good horsepower and was a jack-of-all-trades, just like a certain pickup truck. Here’s how I explained the F-Series to customers: When the A-Series wasn’t enough, you’d consider either the D-Series or the F-Series. The D-Series focused on database workloads adding more memory than processors, such as the D2_v2 with 2 cores and 7GB of RAM. The F-Series focused on application workloads with a more equal processor/RAM balance, such as the F2 with 2 virtual processors and 4GB RAM. The F-Series was the sibling of the D_v2-Series virtual machine; both ran on the same host hardware based on the 2. 4GHz Intel Xeon® E5-2673 v3 (Haswell) processor. Interestingly, this has been in great demand and in short supply in some Azure regions. Changes The close relationship between the F-Series and the D-Series began to split with the release of the D_v3 virtual machines. The D_v3 was the first of the D-Series to stop chasing processor GHz. Microsoft aimed the D-Series... --- ### Paul Thurrott's Short Takes: December 1 - Published: 2017-12-01 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-december-1/ - Categories: Cloud Computing, Mobile, Security, Windows 10 - Tags: News - Article Type: Overview Because it's beginning to look a lot like Festivus, this edition of Short Takes looks at the success of Windows 10, Microsoft's ASLR blunders, Microsoft's new-new gaming strategy, and much, much more. Because it's beginning to look a lot like Festivus, this edition of Short Takes looks at the success of Windows 10, Microsoft's ASLR blunders, Microsoft's new-new gaming strategy, and much, much more. Windows 10 now in use on 600 million active devices Just six months since it hit the 500 million milestone, Microsoft announced this week that Windows 10 is now in use on over 600 million devices, most of them PCs. (Some are Xbox consoles, phones, Surface Hubs, and other mostly niche devices. ) I did some math on this over at Thurrott. com(always dangerous), but long story short, Windows 10 is doing great: It's seeing an uptick of almost 17 million new users every single month. And while Microsoft will fall short of hitting its original goal of 1 billion active devices by mid-2018, it will surely hit that milestone sometime in the following 6 months or so. Sorry haters, but Windows 10 is a smash hit. "Microsoft adds 4 new board members" We're going to need a bigger Star Chamber. Microsoft: Seriously, that ASLR thing was purposeful Less successfully, Microsoft is continuing to argue this week that a widely-reported Address Space Layout Randomization (ASLR) flaw in Windows 8 and 10 is a feature, not a bug. "In short, ASLR is working as intended," Microsoft explains. "The configuration issue is not a vulnerability, does not create additional risk, and does not weaken the existing security posture of applications. " So there you go, right? Not according to certain security... --- ### Microsoft's Forced Enterprise-Modernization Reaches Its First Roadblock - Published: 2017-11-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-forced-enterprise-modernization-reaches-first-roadblock/ - Categories: Windows 10 - Tags: Microsoft, Modernization, Windows 10 - Article Type: Opinion Microsoft is forcing every company of every size to modernize their IT practices and while this may be a good thing for some, for others, it is creating a serious burden. Earlier this month, Microsoft made a quiet announcement that they would be extending lifecycle support for Windows 10, 1511. The company is adding additional six months of support to its lifecycle to accommodate companies who are struggling to move off of the version of Windows 10 which should be a red flag for the folks in Redmond. Why 1511? For the most part, early adopters of Windows 10 are not going to install the first release of the OS. They waited until the first patch was released before deploying the new version of Windows which made me wonder, how are companies actually dealing with this migration outside of Microsoft's always-positive PR spin? I started poking around on Twitter a bit and asking friends in the industry about what they are hearing and the feedback was not exactly great. In fact, there is a lot of concern about the new modernization Microsoft is forcing on to companies as it may not be sustainable without serious investment which is the opposite of what is happening in the IT space. The cloud, for all the great things it offers, also makes it harder for any company with on-premises deployments to keep up to speed with Microsoft and their feverish new rate of development. Remember, Microsoft is setting the pace here, not the user. With Windows 10, Microsoft is pushing down on users two updates per year. Yes, you can skip one update but at a minimum, you will be installing one... --- ### Measuring the Impact of Teams on Email Traffic > Saying that Teams will reduce the amount of email traffic is one thing; proving it is another. After making the case that Teams reduces email traffic - Published: 2017-11-30 - Modified: 2024-12-03 - URL: https://petri.com/measuring-impact-teams-email-traffic/ - Categories: Microsoft 365, Office - Tags: email, Exchange Online, MyAnalytics, Office 365, Power BI, Radar Reporting, Teams, traffic - Article Type: Opinion Saying that Teams will reduce the amount of email traffic is one thing; proving it is another. After making the case that Teams reduces email traffic, I set out to prove the case by looking at data in the Office 365 usage reports, Office 365 content pack for Power BI, and third-party reporting software. Email or Teams It is natural that when someone like me who has been involved with email for so long argues a case like “Teams won’t replace email,” people will say “well, he would say that, wouldn’t he. ” After all, we all show some form of personal bias in the technology choices we make. But I am a data-driven guy, so to back up my assertion, I reviewed the available data to prove the case. Or at least, to discover what the data revealed. Getting Email Usage Data Before reviewing the data, we should talk about what data is available. In the past, and even now for on-premises servers, message tracking logs are the source of email traffic data. All versions of Exchange have generated message tracking logs, and many articles are available to explain how to interpret and parse the logs using tools like Microsoft’s LogParser utility to generate statistics. In the Microsoft cloud, the Graph reigns supreme. Although Exchange Online servers still generate message tracking logs and those logs hold interesting and useful data, the usage reports in the Office 365 Admin Center and the usage data made available for public consumption are based on the Graph reporting API. There is both goodness and badness in this situation. It is good to have a single definitive source of Office 365 data. What’s not so good is the relative inflexibility of the API. For example, the Graph reporting API is happy to return data for 30 days... --- ### Modern SharePoint Web Parts Updates -- Forms - Published: 2017-11-29 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-forms/ - Categories: SharePoint - Tags: Modern SharePoint, Modern Web Parts, SharePoint Online - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy to use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint.     The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the forms web part. (more... ) --- ### Amazon takes on Microsoft's Azure Advanced Threat Protection with GuardDuty - Published: 2017-11-29 - Modified: 2024-09-04 - URL: https://petri.com/amazon-takes-microsofts-azure-advanced-threat-protection-guard-duty/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, GuardDuty - Article Type: News Amazon has announced a new security service for AWS called GuardDuty that will challenge Azure Advanced Threat Protection for the top spot for cloud security. When it comes to Amazon and Microsoft, cloud services are their premier offering and this week, Amazon is unveiling a new service called Guard Duty that is going to take on Microsoft's Advanced Threat Protection suite of services. Announced at AWS Reinvent, the new offering is a fully managed intelligent threat detection service that is designed to help protect workloads and accounts against malicious and unauthorized activities. As you would expect from this type of service, it monitors your activity to create a baseline of operation and then can alert you to anomalies occurring in your environment. The platform will help Amazon compete with Microsoft's Azure offering which has Advanced Threat Detection services that provide similar safeguards for operations that are hosted inside of its cloud. With attacks on environments becoming increasingly complex and harder to detect, these types of services are going to be critical for 'best-in-class' operations. Amazon is licensing their product on a use-case basis which means that you only pay for data that is monitored. The company says that you don't need any additional hardware and that the service will have no service impact on your performance. Of course, what many will be waiting for is a deep-dive comparison of both these products to see which platform, Guard Duty or Azure ATP, provides better protection for the customer. That being said, switching cloud services is not a trivial task and not something that many companies do frequently, if ever, so unless one offering has... --- ### Uploading to Azure Web Apps Using FTP > In this post, I will show you how to use FTP to upload web content to an Azure web app - you can also use this method to download files. - Published: 2017-11-29 - Modified: 2024-09-04 - URL: https://petri.com/uploading-azure-web-apps-using-ftp/ - Categories: Microsoft Azure - Tags: App Service, Azure, FTP, Web App - Article Type: How To Aidan Finn shows you how you can upload your web content to an Azure web app using FTP. In this post, I’m going to show you how you can upload your web content to an Azure web app using FTP.     Upload My Code! What good is a web hosting plan if you cannot put your website code on it? Azure offers a few ways to get code into an Azure web app or app service from automated solutions using the like of Visual Studio Team Services (VSTS) and GitHub to a more basic option such as using FTP. In this post, I will show you how to use an FTP client to upload your website into a web app. My web app is called preprod. It’s actually a pre-production deployment slot for a web app called petri, which has its own FTP configuration. Configure FTP Account Each web app and deployment slot has its own FTP username and address. You must enter a new password to use this FTP account, which is known in Azure as a deployment credential.     To set up the FTP user account, open the web app and browse to Deployment Credentials under the Deployment settings. Here you can specify the user account name and the password. Please note that the password: Must be between 8 and 60 characters long and longer is better. Must have at least two of the following: uppercase letters, lowercase letters, and numbers. Configuring the Azure Web App FTP Account in Deployment Credentials   Note... --- ### Microsoft's Bringing Location Based Services to Azure - Published: 2017-11-28 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-location-based-services-azure/ - Categories: Microsoft Azure - Tags: Azure, IoT, Microsoft, News - Article Type: News Microsoft is pushing out a new service into preview that will finally bring location-based services to the cloud platform. Everything connected, everything streaming, and everything monitored is future of IoT. You can fight it all all you want but everything from the office water cooler to vans delivering goods are already connected or will be soon. Microsoft has been playing in the IoT space for a couple years and today they are taking a large jump forward with the announcement of Azure Location Based Services to help customers overcome issues like traffic congestion and improve fleet management. Announced in Los Angeles, the new cloud service is entering public preview and offers geospatial service APIs that are natively integrated into Azure. Microsoft isn't offering this service in a silo, they are working with TomTom who will be supplying the location data for the product. This will allow the offering to provide mapping, search, routing and traffic information to the user to help make more informed decisions. As IoT continues its spread across 'dumb' devices, services like this will become more important. For Microsoft, it's critical that Azure has this functionality baked in as this is an area of growth for the IT sector and as you can imagine, Microsoft wants all IoT data sent to its cloud. Location-based services like what Microsoft is bringing into preview today will be critical as more movable hardware connects to the Internet. While it's obvious that fleet management benefits from an offering such as this, there are other creative ways to use this service such as searching for deployments 'near water' or... --- ### The Fuss About VMware and Azure - Published: 2017-11-28 - Modified: 2024-11-19 - URL: https://petri.com/fuss-vmware-azure/ - Categories: Cloud Computing - Tags: AWS, Azure, Azure Stack, Cloud, Dell, DellEMC, vmware - Article Type: Opinion Aidan Finn shares what he thinks about the recent reaction by VMware to Microsoft’s news that they would be enabling customers to run VMware in Azure data centers. In this opinion post, I will share what I think about the recent reaction by VMware to Microsoft’s news that they would be enabling customers to run VMware in Azure data centers. Yes, you read that right – VMware in Azure!     An Admission I am biased towards Microsoft in the whole Hyper-V versus vSphere thing. I have been since I started working with the release candidate of the original release of Hyper-V for Windows Server 2008. I understood Microsoft’s strategy. Even though Hyper-V didn’t have all the bells and whistles and even a couple of important features didn’t arrive until Windows Server 2008 R2 or Service Pack 1 for Windows Server 2008 R2, I loved the performance of Hyper-V. I loved the tight integration with System Center (the latter would change). And I am a Microsoft MVP, with an expertise in Hyper-V (Cloud and Datacenter Management), so I have been in many a meeting and feedback session with the Hyper-V team over the years. But despite all that, I recognized VMware as what it was, the first real and biggest player in server virtualization. It was the company that made this technology work in the enterprise. Its product is awesome and it continues to be the market leader (with a degraded market share over the years) – just like Microsoft is the market leader in PC operating systems. Of course, we don’t talk about that too much anymore either. A Heated History As a tech enthusiast... --- ### Teams Won’t Replace Email but It Can Reduce Email Traffic > Some observers say that Teams will replace email. Well, Teams won't because Email has so many advantages. But Teams will take some traffic. - Published: 2017-11-28 - Modified: 2024-09-04 - URL: https://petri.com/teams-wont-replace-email/ - Categories: Microsoft 365, Office - Tags: email, exchange, Office 365, Outlook, Teams - Article Type: Opinion Some observers say that Teams will replace email. Well, Teams won't because email still has so many advantages over what Teams offers. But Teams has its own capabilities that will lead it to take some of the traffic currently carried by email. Because of its internal focus, the traffic that moves to Teams is in-house chats, and Teams is a good place for those conversations to be. The Notion that Teams Will Replace Email Given its progress since its launch in November 2016 and Microsoft’s focus on Teams as the “hubwork for teamwork within Office 365,” Teams should be of interest to any Office 365 tenant. However, the idea voiced by some commentators that Teams will replace email is more debatable. Because so many variables exist, this is a tricky question, including personal preference, the desktop environment, organizational culture, and even the age of a user. Stripping those factors out, let’s look at some of the practicalities of using Teams to replace email in the full understanding that messaging is only one of the ways that members can communicate within a team. Apart from audio and video capabilities, Teams supports a range of connectors, bots, and tabs to expand the ways that people receive and consume information. Our comparison therefore focuses on a narrow slice of the complete Teams picture. The Advantages of Teams Among the advantages cited for Teams are: Conversations and documents exist in the team rather than in multiple mailboxes. Thus, users have just one place to find information. Conversations are in channels while documents (including attachments in email sent to the channel) exist in Files (a SharePoint document library). Conversations do not fork. It is easy for a small subset of recipients to start off their own conversation after receiving email. This does not usually happen inside a channel because the conversation stays there and is visible to all team members... . --- ### What Is Windows Defender System Guard in the Fall Creators Update? - Published: 2017-11-27 - Modified: 2024-09-04 - URL: https://petri.com/windows-defender-system-guard-fall-creators-update/ - Categories: Windows Client OS - Tags: Security, Windows, Windows 10 Fall Creators Update, Windows Defender System Guard - Article Type: Overview In this Ask the Admin, Russell Smith explains how Windows Defender System Guard reorganizes existing security defenses. In this Ask the Admin, I'll explain how Windows Defender System Guard reorganizes existing security defenses.     Windows Defender System Guard in the Fall Creators Update is a new label for a set of technologies designed to ensure that the system can’t be compromised or if it is, notify the user. Microsoft says it has three goals for System Guard: Protect and maintain the integrity of the system as it starts up Protect and maintain the integrity of the system after it’s running Validate that system integrity has truly been maintained through local and remote attestation It is important to focus on maintaining system integrity because if Windows is compromised, then all other security defenses will likely fail. System Guard isn’t compromised of new features but instead brings together existing security defenses. Microsoft hopes this will make it easier to invest in security and make further improvements in the next major Windows release, which is expected in spring 2018. Hardware-based root of trust, or Secure Boot as Microsoft refers to it, was introduced in Windows 8 and helps protect the OS during startup, ensuring that a malicious bootloader cannot start before Windows loads. Secure Platform Boot then ensures that as Windows loads, files and drivers are signed. Finally, antivirus is started to check third-party drivers.     See Enabling Secure Boot in Windows 8 and Windows Server 2012 to check if Secure Boot is enabled on your system. Virtualization-based security (VBS), which was introduced in... --- ### 5 Ways a DR Plan can help your ROI - Published: 2017-11-27 - Modified: 2024-11-19 - URL: https://petri.com/5-ways-a-dr-plan-can-help-your-roi/ - Categories: Backup & Storage, Cloud Computing, Windows Server - Tags: Backup, Disaster Recovery, Windows Server - Article Type: Overview An effective DR plan has a big ROI in a number of different ways but only if you construct it correctly. In the recent aftermath of hurricane Harvey in Texas and Maria in Puerto Rico, coping with disasters is high on every administrator’s radar. Natural disasters like these can take many forms and they can be crippling to businesses and their mission critical applications and IT operations. However, it’s important to realize that it doesn’t take a hurricane to create a disaster – a fire, a ransomware attack or even a sustained internet outage could result in a significant IT outage. Making DR plans is never fun and they aren’t cheap; DR plans are typically complicated. Well constructed plans require the involvement of many different personal including executives and business people outside the IT department; while they are necessary, the time spent on them is time away from the other projects that you could be working on. However, DR plans are like your company’s insurance policy – you have them in case something unexpected happens. Let’s look at five ways that DR plans can help your ROI. Reducing costs -- Downtime is expensive – far more expensive than the costs of creating a DR plan. According to a recent ITIC survey one hour of downtime can cost over $100,000 and up to $300,000 depending on the business. Another study by Gartner showed that on average downtime costs businesses approximately $5600 per minute or $300,000 per hour. An effective DR plan minimizes the downtime costs of a disaster and can quickly pay for itself in the event that you need it. Reducing... --- ### Microsoft is Bringing VMware to Azure, VMware Is Not A Happy Camper - Published: 2017-11-24 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-bringing-vmware-azure-vmware-not-happy-camper/ - Categories: Uncategorized - Tags: Azure, Microsoft, News, vmware - Article Type: News VMware is upset with Microsoft over its new Azure service and will not provide support for the platform. Earlier this week, Microsoft announced that they would help support moving VMware workloads to Azure which includes migrating VMware-based applications to Azure, integrating with Azure, and deploying VMware virtualization on Azure hardware. This sounds like an excellent option for VMware workshops to move to Azure and VMware is onboard with this and will help guide the migration, right... right? Starting on November 27th, Azure Migrate will become broadly available (for free) and the tool works in parity with a new preview program called VMware virtualization on Azure, to help you to easily digest the major steps in migrating to Azure; including discovery/assessment, resource and cost optimization, as well as integrating workloads with Azure services. Specifically, VMware virtualization on Azure will make it possible to integrate VMware workloads with Azure services. Being able to run the VMware stack in Azure is likely appealing to nearly anyone who is invested heavily in the platform. While not everyone is willing or has the need to migrate, having options is never a bad thing. This new service is expected to reach general availability in 2018 but what we do not know right now is who is working with Microsoft to support this stack on Azure because it's not VMware. We know this because VMware is less than pleased with this announcement. So much so that they released a statement about the new service saying that "VMware does not recommend and will not support customers running on the Azure announced partner offering". The post from the... --- ### Azure Web App Deployment Slots > In this post, I will explain the role of web app deployment slots in Azure, for controlled release management & QA (quality assurance), and how to use them. - Published: 2017-11-24 - Modified: 2024-09-04 - URL: https://petri.com/azure-web-app-deployment-slots/ - Categories: Microsoft Azure - Tags: App Service Plan, Azure, deployment, Deployment Slots, Dev, Production, QA, Release, Release Management, test, Web Apps - Article Type: Overview Aidan Finn explains the role of web app deployment slots in Azure and how to use them.   12404760 - electric background In this post, I will explain the role of web app deployment slots in Azure and how to use them.     What Are Deployment Slots? Normally in the application development world, code goes through several phases before it is pushed into production, such as: Development Test Production You can create these three separate environments in several ways with web apps: Shared App Service Plan: You create a web app for each phase in a single app service plan. This reduces costs but it does create a potential for conflicts. Separate App Service Plans: A web app is deployed for each phase in different app services plans. There might be an app service plan for each phase. Alternatively, you might have a plan for dev and test and a second plan for production. Isolation does increase costs but you can minimize this by using lower cost/scale plans for test/dev than you would for production. Some organizations like to take things a little further. You can QA your code quite a bit in a test environment but there nothing like running it on a real system ... or even with real users. We can do this using deployment slots.     A deployment slot is a release of a web app. On the face, it is a deployment slot of a web app but it is actually a linked and re-release of the original web app. For example, we... --- ### Windows Server: Protected Privileged Accounts - Published: 2017-11-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-protected-privileged-accounts/ - Categories: Windows Server - Tags: Active Directory, Authentication policies, Authentication silos, Credential Guard, Privileged Access Management, Security, Two, Windows Server 2016 - Article Type: Overview In this Ask the Admin, Russell Smith outlines some of the security features in Windows Server that can be used to help keep sensitive accounts safe. In this Ask the Admin, I'll outline some of the security features in Windows Server that can be used to help keep sensitive accounts safe.     Windows Server contains several technologies to help keep privileged accounts secure, including the Protected Users group and Authentication Silos. Before you look at implementing any of the solutions below, be sure to check out Why You Should Use Microsoft's Active Directory Tier Administrative Model, Managing Privileged Access to Active Directory, and Windows Server 2016: Understanding Microsoft’s Enhanced Security Administrative Environment on the Petri IT Knowledgebase. It’s worth remembering that the technologies I’ll describe in this article don’t replace security best practices. For example, in Why You Should Use Microsoft's Active Directory Tier Administrative Model, I explain why domain administrator accounts should never be used to log into end-user devices. The Protected Users group can help mitigate some of the risks with using privileged AD accounts on Tier 2 devices but it doesn’t remove the risks entirely. Active Directory Protected Users The Protected Users group first appeared in Windows Server 2012 R2 and can be used to restrict what members of Active Directory privileged groups can do in the domain. Protected Users is a global security group and its primary function is to prevent users’ credentials being abused on the devices where they log in. Protected Users group features are supported on devices running Windows 8. 1 and Windows Server 2012 (or higher). Here is the full list of restrictions: Cached credentials. I. e... . --- ### Paul Thurrott's Short Takes: November 22 2017 - Published: 2017-11-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-22/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Overview Because I am thankful for a short work week, this edition of Short Takes looks at Microsoft's portable gaming acumen, a Skype disaster in China, Meg Whitman's exit from HP Enterprise, Belgium vs. in-game gambling, and much more. We're home for the holidays. Because I am thankful for a short work week, this edition of Short Takes looks at Microsoft's portable gaming acumen, a Skype disaster in China, Meg Whitman's exit from HP Enterprise, Belgium vs. in-game gambling, and much more. Note: Short takes is early this week because it's Thanksgiving week here in the United States. We'll be off Thursday and Friday. --Paul Microsoft says Surface power problem is a feature not a problem Another week, another Surface controversy: After reviewers noticed that the new 15-inch Surface Book 2 actually loses power while plugged and playing games, Microsoft issued a statement declaring that this wasn't by mistake. "In some intense, prolonged gaming scenarios ... the battery may discharge while connected to the power supply provided in-box with Surface Book 2," the software giant admits. "However, through power management design, the battery will never drain entirely, ensuring that users are able to keep working, creating or gaming. " Um. Here's an idea, Microsoft: Just provide a power supply that is strong enough to keep the device powered while it's plugged in. What a concept. "Microsoft sued over HoloLens patent infringements" Wait. Someone actually noticed that HoloLens exists? Skype pulled from mobile app stores in China Microsoft's Skype mobile app and over VoIP messaging apps have been pulled from Apple's and Google's app stores in China due to governmental censorship. "We have been notified by the Ministry of Public Security that a number of... --- ### What's Next For Azure Stack? Here's What's Coming in CY18 - Published: 2017-11-21 - Modified: 2024-09-04 - URL: https://petri.com/whats-next-azure-stack-heres-whats-coming-cy18/ - Categories: Microsoft Azure - Article Type: News Microsoft has released a roadmap for what is coming next for Azure Stack and it includes a wide variety of requested features. Microsoft's Azure Stack platform is the company's offering for bringing cloud-tech down to the local data center. With the hardware now available to run the software, for those who are thinking about investing in this platform or may have already done so, Microsoft has released a roadmap of what's on the agenda for next year. The roadmap, which you can find here (PDF), outlines what Azure Stack offers and provides a solid overview of the platform. On page 11 of the PDF, you can find the roadmap for what is scheduled for release during 2018. The roadmap addresses both Azure capabilities on the hardware as well as Azure Stack infrastructure functionality too. One feature that I know has been requested by many users who are looking at new hardware with Azure Stack is improved failback integration and thankfully, that will arrive next year. I'll be watching the adoption of Azure Stack closely and I don't expect it to be an overnight success. Seeing as it requires new hardware that only became available in the second half of 2017, adoption and deployment will take time. That being said, Azure Stack is a native way to bring Azure functionality to on-premises metal and is a gateway to moving fully to the cloud. Microsoft has a unique proposition for companies that are looking to live in a hybrid world where they can support both on-premises deployments and cloud with Azure Stack while making the two platforms act as one unified system... . --- ### Validate the Integrity of Installation Media - Published: 2017-11-21 - Modified: 2024-09-04 - URL: https://petri.com/validate-integrity-installation-media/ - Categories: Security - Tags: Clean Source Principle, Privileged Access Management, Security, Software Assurance, Windows - Article Type: How To In this Ask the Admin, Russell Smith shows you how to be sure the source media you use to install software in your business hasn't been tampered with.   In this Ask the Admin, I'll show you how to be sure the source media you use to install software in your business hasn't been tampered with.     In a previous Ask the Admin, I talked about the clean source principle, which states that a system can be dependent on a higher trust system but not on a lower trust system. Part of implementing the principle is to determine the security dependencies systems have on each other, including servers, users, hardware, and management tools. Server and PC setup starts with the installation source, such as a downloaded file or physical media. If the media used to install or update software has been modified by a malicious actor, then the device on which the software is installed will be compromised from the get-go, along with any systems dependent on it. So, it’s important to understand that installation media is also a security dependency. Apply the Clean Source Principle to Installation Media (Image Credit: Microsoft) It’s best practice to validate the integrity of media before it’s used. Once the integrity has been confirmed, the media should be stored in a location that is restricted to systems with the same or higher level of trust as the devices where the software will be installed. For example, application installers should be protected against write access from Internet-connected hosts.   Certutil and Sigcheck It might seem like overkill but you should check the validity of... --- ### Managing GDPR with Teams, Planner, and Compliance Manager > Microsoft's Compliance Manager is intended to help cloud tenants cope with regulations like ISO 27001 and GDPR. Teams and Planner make it better. - Published: 2017-11-21 - Modified: 2024-09-04 - URL: https://petri.com/teams-planner-compliance-manager-gdpr/ - Categories: Microsoft 365, Office - Tags: Compliance, GDPR, Office 365, Office 365 Groups, Planner, Teams - Article Type: How To Microsoft's Compliance Manager is intended to help cloud tenants cope with regulations like ISO 27001 and GDPR. The Compliance Manager has a nice dashboard, but it is passive and offers very weak options in terms of organizing the work needed to achieve compliance. But Office 365 has Planner and Teams, and it is easy to create the necessary collaboration structure to allow people to work on GDPR controls. Driving for Better Compliance Following its announcement at Ignite 2017, Microsoft launched the preview of its Compliance Manager on November 16. The Compliance Manager is available to all organizations with a paid or trial subscription to a Microsoft cloud service, except tenants of the Office 365 datacenter regions in China and Germany. Microsoft describes Compliance Manager as: “A dashboard that summarizes Microsoft’s and your organization’s control implementation progress for Office 365 across various standards and regulations, such as the EU General Data Protection Regulation (GDPR), ISO 27001, and ISO 27018. ” To access Compliance Manager, log into this site using your Microsoft cloud credentials. Office 365 and GDPR Although Azure is in the mix (due in early 2018), given the widespread presence of personal information (PII) in documents and email, I suspect that the new tool will be of interest to Office 365 tenants who operate anywhere in the European Union and the other countries, like Norway and Switzerland, where the General Data Protection Regulation (GDPR) becomes effective in six short months. Office 365 already includes many compliance features to help an organization control data, including data loss prevention (DLP) and retention policies, classification labels, encryption and rights management for documents and email, content searches, and auditing. Some of the features are easier to use with higher-priced plans (like auto-label policies in Office 365 E5) and some will extra software (like Azure Information Protection P2). The issue is not of having enough technology to control the misuse of PII;... --- ### First impressions on Compliance Manager Preview - Published: 2017-11-20 - Modified: 2024-09-04 - URL: https://petri.com/first-impressions-compliance-manager-preview/ - Categories: Microsoft 365, Security - Tags: compliance manager, GDPR, iso 27001:2013, Office 365, Security - Article Type: How To, Review Microsoft released Compliance Manager Preview, after initially announcing the new service during Ignite 2017 in late September. It is, for now at least, a free service for existing Office 365 customers, that aims to provide a management interface for organization's compliance management activities. Microsoft released Compliance Manager Preview, after initially announcing the new service during Ignite 2017 in late September. It is, for now at least, a free service for existing Office 365 customers, that aims to provide a management interface for organization's compliance management activities.     To start uusingCompliance Manager Preview, access the service on the Service Trust portal as a Office 365 administrator. After agreeing to the terms of usage during beta, you can take a tour of Compliance Manager or go directly to configuring the settings and viewing your compliance reports. I chose to run the tool in one of my test tenants, before activating it in my production tenants. As such, most of the reports looks clean, as there is little data to worry about for now. Here's the initial view in one of my test tenants. I'm being offered a compliance overview for the ISO 27001:2013 and GDPR. The former is a well-known specification for information security management systems and General Data Protection Regulation is a data protection act within EU. Under Action Items, I will be getting assigned tasks for actually implementing and becoming compliant with the different specifications. As the preview is still very fresh, I do not have any action items that I've set myself or the tool would have created. Performing assessments with Compliance Manager Preview By clicking on GDPR in Assessments, I can start drilling down to the actual compliance settings and items. There's a total of 118 assessed controls for... --- ### Google Announces General Availability of BigQuery Data Transfer Service - Published: 2017-11-20 - Modified: 2024-11-19 - URL: https://petri.com/google-announces-general-availability-bigquery-data-transfer-service/ - Categories: Cloud Computing - Tags: BigQuery, Data, Google Cloud Platform, News, SaaS, Transfer - Article Type: News Google recently announced the general availability of their BigQuery Data Transfer Service, which can be used to automate the transfer of data from SaaS applications into Google’s cloud-based BigQuery data warehouse service. In a recent post on the Google Cloud Big Data and Machine Learning blog, Google announced the general availability of their BigQuery Data Transfer Service. This service, which was originally announced this past March at Google’s Cloud Next conference can be used to automate the transfer of data from SaaS applications into Google’s cloud-based BigQuery data warehouse service. To start, the data transfer service offers support for the transfer of data from several Google services, including AdWords, DoubleClick Campaign Manager, DoubleClick for Publishers, and YouTube. While currently these are the only services that can be used with the BigQuery Data Transfer service at the moment, hopefully Google will work with other SaaS service providers in the future, in order to make it easier to transfer other data into Google’s BigQuery service. What’s more is that the data transferred into BigQuery can be analyzed using BI visualization tools from companies that are a part of the Google Partner Ecosystem, including Tableau, Locker, and ZoomData. Some of the key features available with the BigQuery Data Transfer Service include: Data Delivery SLA - Users can expect that the service will send data to a user’s BigQuery Project within 24 hours of it being received. Customer-Managed Scheduling - Users can set custom data delivery schedules so that they can have the data they need, when they need it. Regionalization - Google’s BigQuery service is now available in all of the regions that BigQuery is, making it easy for admins to configure data... --- ### Deploying a Web App in Azure > This step-by-step post will show how to set up a new Azure Web App, as an alternative to deploying a website in a virtual machine. - Published: 2017-11-17 - Modified: 2024-09-04 - URL: https://petri.com/deploying-web-app-azure/ - Categories: Microsoft Azure - Tags: App Service Plan, Azure, IIS, linux, Tomcat, Web App, Website, Windows - Article Type: How To Aidan Finn shows you how to create a new web app using Azure App Services, the PaaS alternative to running web services on virtual machines. In this post, I will show you how to create a new web app using Azure App Services, the PaaS (Platform-as-a-Service) alternative to running web services on virtual machines.     Reusing an App Service Plan? Azure web apps are web server instances that run on an app service plan; this app service plan is a collection of 1 or more load-balanced virtual machines that are managed for you by Azure. You don’t have to manage them in any way other than picking a size for them. Depending on the scale of your web app and the spec of the app service plan, the app service plan can host more than 1 web app. For example, petri. com, thurrott. com, and aidanfinn. com could all be hosted on a single app service plan, thus sharing the cost and performance potential of the plan. A Single Azure App Service Plan Running Several Web Apps   In the following example, I will be deploying a web app on a new app service plan. You will also see how an existing plan can be reused if this is desired.     Deploying the Web App Log into the Azure Portal and Click New in the navigation bar on the left. Select Web + Mobile and then click See All. The Marketplace will open and be filtered for all of the web app options in Azure. There are many examples, such as a web app that will... --- ### Yammer Presents: Group Insights - Published: 2017-11-17 - Modified: 2024-09-04 - URL: https://petri.com/yammer-presents-group-insights/ - Categories: Yammer - Tags: Insights, Yammer - Article Type: Overview Jasper Oosterveld, Microsoft MVP and Consultant, introduces the new Yammer Group Insights. In the past, I wrote about my doubts concerning the future of Yammer. That said, a lot of people were also having doubts about the future of SharePoint. We all know what happened: The future is bright! I can tell you this also applies to Yammer. Microsoft really committed to Yammer by releasing many new and important features, such as Office 365 Groups Integration.     (more... ) --- ### Paul Thurrott's Short Takes: November 17 - Published: 2017-11-17 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-november-17/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because perfect is the enemy of good, this edition of Short Takes looks at Windows as a (dis)service, Windows 10 on ARM performance, Satya Nadella's biggest problem, Surface Book 2, and more. My relationship with technology in a nutshell Because perfect is the enemy of good, this edition of Short Takes looks at Windows as a (dis)service, Windows 10 on ARM performance, Satya Nadella's biggest problem, Surface Book 2, and more. Windows as a Service is a lie As Brad reported earlier this week, Microsoft has extended support for Windows 10 version 1511---right, the version that is now two years old---by six months in order to ease enterprise migrations. While this is certainly customer-centric, let's please view this move for what it is: A comeuppance for Microsoft's "Windows as a Service" plan, which is absolutely not customer-centric. Because Microsoft's enterprise customers have never, and will never, update their infrastructure at the speed at which Microsoft now demands. Put simply, a legacy code base like Windows cannot be updated like a service, not successfully. It has never worked, it will never work, and this kind of exception will simply become the norm. Sorry. "Xbox One X Sells 1344 Units in its Debut Week in Japan" Finally, some hard unit sale numbers. Wait, what? 1344? ! Our first peek at Windows 10 on ARM performance is not reassuring An HP product support page briefly provided some details about a coming Windows 10 laptop based on an "SD835" processor. That stands for Snapdragon 835, obviously, so this is one of our first in-the-wild peeks at what a Windows 10 on ARM device might be like. And it looks like a... --- ### Controlled Folder Access in Windows 10 FCU - Published: 2017-11-16 - Modified: 2024-09-04 - URL: https://petri.com/controlled-folder-access-windows-10-fcu/ - Categories: Windows Client OS - Tags: Antivirus, Ransomware, Security, Windows 10 Fall Creators Update - Article Type: How To In this Ask the Admin, Russell Smith explains how Controlled Folder Access can help protect users against ransomware. In this Ask the Admin, I'll explain how Controlled Folder Access can help protect users against ransomware.     Ransomware has been in the headlines a lot this year. WannaCry has been the most notable example, exploiting vulnerabilities in Windows that Microsoft had already patched. Automatic updates in Windows 10 left Microsoft’s latest version of Windows largely unaffected. Despite Windows 10’s resilience to WannaCry, Microsoft has added several features to Windows Defender in the Windows 10 Fall Creators Update to bolster security. Windows Defender Exploit Guard replaces the Enhanced Mitigation Experience Toolkit (EMET) in Windows 10. Controlled Folder Access (CFA) is part of Exploit Guard and helps users and organizations protect folders, such as Documents, from malicious apps. CFA is disabled by default. However, users can enable it and receive better protection with the default settings. The protected folders list includes the Documents, Videos, Music, Favorites, and Pictures folders for all users. You can add your own folders to the list but the default folders cannot be removed. Most importantly, network shares can also be protected, although the use of wildcards is not supported. Enable Controlled Folder Access I enabled Controlled Folder Access on my main PC with the default settings. To enable CFA, open the Windows Defender Security Center, click Virus and threat protection and then Virus and threat protection settings. Scroll down the list of settings and set Controlled folder access to On. Enabling Controlled Folder Access in Windows 10 (Image Credit: Russell... --- ### Surface Book 2 Review: A Workhorse for the Workplace - Published: 2017-11-16 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-2-review-workhorse-workplace/ - Categories: Hardware - Tags: News, review, Surface Book 2 - Article Type: Review Microsoft's Surface Book 2 bridges the gap between laptop and desktop but with a starting price of $2499, is it worth the expense? When you think about a powerful computer, one that can run the Adobe suite without any hiccups or 3D rendering, you are likely imagining a desktop. And that's for good reason as traditional desktops are where you can find the most powerful hardware but as desktop components shrink in size, the ability to build a laptop that can do all of these tasks becomes a reality. Microsoft's second-generation Surface Book, the 15in Surface Book 2, delivers the performance needed to run these applications in a form factor that can be carried to the coffee shop. On-sale today is the newest member of the Surface family and it is an ultra-premium laptop with a starting price of $2499 for the 15in model. While that is not cheap, Microsoft aimed for the stars when it came to specs and they didn't leave much behind but there are a few areas where they could improve. Outfitted with a quad-core Intel i7 CPU, 16GB of RAM, and a variety of storage options topping out at 1TB, that alone would warrant a lot of crunching power. But when you add in a GTX 1060 from NVIDIA, what you end up with is desktop-class power in a mobile form factor. And of course, for security-minded IT Pros out there, it has Windows Hello login support and TPM 2. 0 for enterprise security so that when it travels outside the corporate firewall, everything on the inside stays protected. There is an interesting dynamic occurring in the... --- ### European SharePoint Conference Swings into Dublin > The European SharePoint Conference took place in Dublin, Ireland this week. Here's what I learned from the event. - Published: 2017-11-16 - Modified: 2024-09-04 - URL: https://petri.com/european-sharepoint-conference-dublin/ - Categories: Microsoft 365, Office, SharePoint - Tags: Conference, Office 365, SharePoint, Teams - Article Type: Opinion The European SharePoint Conference took place in Dublin, Ireland this week. The SharePoint content was top-notch and the conference ran smoothly, but I was a little disappointed at the relative lack of Office 365 coverage despite the claim made in the conference moniker. SharePoint Hits Dublin This week, I had the unique experience (for me) of attending a large Microsoft-centric technology conference in my home town. The European SharePoint Conference (ESPC) came to the National Conference Center (Figure 1) in Dublin, Ireland over three days, complete with keynote speakers like Microsoft’s Jeff Teper, backed up by a cast of other well-known MVP, industry, and Microsoft speakers. Figure 1: Ireland’s National Conference Center in Dublin (image credit: Tony Redmond) Over sixteen hundred people turned up and the conference organization and delivery were well up to the desired standard, including some rather good Irish dancing (Figure 2 – think “Riverdance lite”) to set the tempo on Tuesday morning. Figure 2: Irish dancing gets SharePoint moving (image credit: Tony Redmond) Regional conferences like ESPC give local audiences the chance to hear about product roadmaps and announcements without having to travel to Microsoft events like Ignite or the Tech Summits. Given that Ignite is in the recent past, the content was mildly tweaked over that presented in Orlando in September. The Problem Posed by Office 365 for Conference Agendas As you would expect, the ESPC agenda was dominated by SharePoint. Given that ESPC aspires to cover both Office 365 and Azure, I expected more coverage of these topics. I guess it takes time for conferences to evolve, and maybe the 2018 event will. After all, in the intermingled world of Office 365, IT professionals need to acquire... --- ### Introducing SharePoint Attention View - Published: 2017-11-15 - Modified: 2024-09-04 - URL: https://petri.com/introducing-sharepoint-attention-view/ - Categories: SharePoint - Tags: document management, Modern SharePoint, SharePoint Online - Article Type: Opinion Jasper Oosterveld, Microsoft MVP and Consultant at InSpark, introduces the new attention view in SharePoint Document Libraries. Making our lives, while working with metadata, a little bit easier. Many moons ago, I held a webinar about structuring documents in SharePoint. The video is incredibly popular. After three years, almost 200. 000 people have seen the video. This isn't to brag, well maybe a little bit, but it shows the struggle of many businesses around this topic. The Classic SharePoint Document Library was pretty solid with its document management features but the introduction of the Modern SharePoint Document Library changed a lot. Not all the features we worked with for many years were immediately available. For example, Managed Metadata wasn't supported from the start and the Quick Edit view wasn't there. Microsoft has mostly caught up. You can click here to view the current differences.     We are now seeing new features being released that are aimed at the Modern Document Libraries. One of these new features is the Attention View. We are all familiar with mandatory metadata and people forgetting to assign metadata. This has been a real pain and struggle for content owners all over the globe. Attention View is here to help out! Let's take a look:     The Document Library contains two mandatory columns. Apparently, some users forgot to enter the two metadata fields. The Attention View, actually called Files that need attention, shows us what documents need attention. We can also see what metadata is actually missing. We can click on the yellow marked column and start assigning the missing metadata: Pretty awesome right?  I do have one critique. This feature didn't work with managed metadata.  Let's hope... --- ### Microsoft and Apache Jump Into the Cloud Bed, New Tools for Devs Announced - Published: 2017-11-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-apache-jump-cloud-bed-new-tools-devs-announced/ - Categories: Microsoft Azure - Tags: Apache Spark, Azure, Microsoft, News - Article Type: News Microsoft is bringing more features to Azure including tech from Apache Spark to create a new Azure Databricks service. This week, Microsoft is in New York where they are hosting their Connect; 2017 conference. This year, the company is focusing on making sure its platforms work for any dev, for any app, on any platform. In addition, they are continuing their pursuit of working more with open-source technologies and by being a contributing partner to the open source community. Announced today is Azure Databricks Preview which was designed in concert with the founders of Apache Spark. This new service is an Apache Spark-based analytics platform that delivers simple set up, streamlined workflows, and an interactive workspace. More importantly, native integration with Azure SQL Data Warehouse, Azure Storage, Azure Cosmos DB, Azure Active Directory and Power BI which makes it much easier to create a modern data warehouse for self-service analytics. For Apache fans, this will obviously be good news but the company also announced that there is now a Cassandra API preview for Azure Cosmos DB too. For those that are using the company's newest database, this delivers Cassandra as-a-service for simplified global distribution with redundancy and SLA-backed services. If you work with Visual Studio, Visual Studio App center has reached general availability. This product is designed to help developers ship higher quality applications more frequently and can be used by Objective-C, Swift, Android Java, Xamarin and React Native developers. And for the developer who is looking to improve their collaboration while coding, Visual Studio Live Share is for you. Developers can share projects with teammates, or... --- ### Microsoft's Extends Support of Windows 10 1511 to Ease Adoption Pain - Published: 2017-11-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-extends-support-windows-10-1511-ease-adoption-pain/ - Categories: Windows 10 - Tags: 1511, News, Windows 10 - Article Type: News After early adopters were not able to upgrade in time, Microsoft is extending support of Windows 10 1511 by six months for Enterprise and Education customers. I bet no one saw this coming when Microsoft said that they would be moving forward with two updates per year for Windows 10 but some customers are having trouble adapting to 'rapid release'. Announced today, the company is extending support for Windows 10 build 1511. The company will continue to support for this version of Windows 10 until April 2018 which is an additional six months after support was set to expire. Microsoft says that they will be providing a 'supplemental servicing package' that will address critical and important security issues for those who are still running the older version. The updates will be available for Windows 10 Enterprise and Education only which means if you are running Pro or Home, you need to move off of 1511 as soon as possible. If you are running the higher SKUs, updates will come via Windows Update, WSUS, Configuration Manager and the Windows Updates Catalog. For those that have moved to Windows 10 but are struggling with the idea of upgrading all your users every 18 months, this will come as a welcomed change. But, this is only a one-off exception to the upgrade policy but it will be interesting to watch to see how this develops. The reason I say that is 1511 is the first widely-deployed version of Windows 10 to enterprise customers who didn't want to be an early adopter on day one when Windows 10 was released. Seeing as these customers are already struggling with meeting... --- ### My Tasks App Arrives For Microsoft Teams - Published: 2017-11-14 - Modified: 2024-09-04 - URL: https://petri.com/tasks-app-arrives-microsoft-teams/ - Categories: Microsoft 365 - Tags: Microsoft Planner, Office 365 - Article Type: How To, Overview My Tasks App is a new feature that is not delivered as a regular Microsoft Teams App but as the integration of the Planner My Tasks page into Teams. Microsoft is adding new features and enhancements to Planner at a very slow pace. However, from time to time, we can find small and nice additions such as the “My Tasks” App that is in the process to be rolled out to Microsoft Teams. This new feature is not delivered as a regular Microsoft Teams App but as the integration of the Planner My Tasks page into Teams. To get My Tasks App in Microsoft Teams, you need first to enable Public Developer Preview in Teams. This is a very straightforward task that can be achieved by clicking on your Teams avatar and then About -> Developer preview: Note: You can read an overview of latest additions to Microsoft Planner and expected Planner Roadmap in this blog post published in the Microsoft Tech Community by Dave Heller. As we work towards having a full-featured Planner experience within Microsoft Teams, we will deliver the My Tasks page to Teams via Teams’ apps functionality.     Figure 1 -- Enabling Microsoft Teams Developer Preview   Once you enable Developer Preview in the Microsoft Teams App, you will see the application is re-started with two new sections added to the Teams UI: Figure 2 -- New Settings Displayed in Teams Once the Microsoft Teams Developer Preview Is Enabled   There is a Get apps section that allows you to discover all the applications available for Microsoft Teams (Tabs, Bots, Connectors, and Compose) and also (if enabled) to sideload your custom Teams apps:... --- ### Checking Office 365 Group Membership with Azure AD Access Reviews > A new premium Azure Active Directory feature allows you to force group owners to certify that external members should have continued access. - Published: 2017-11-14 - Modified: 2024-09-04 - URL: https://petri.com/azuread-access-reviews-group-membership/ - Categories: Microsoft 365, Office - Tags: external users, GDPR, guest users, Information Protection, Office 365 Groups, Teams - Article Type: How To A new premium Azure Active Directory feature allows you to force group owners to certify that external members should have continued access. Given that Office 365 Groups and Microsoft Teams now both support guest users, it is wise to check on who can access what from time to time. Whether you will want to pay extra for such a feature is quite another matter! External Guests for Office 365 Apps Make Reviews More Important When tenants were self-contained and only people with tenant accounts could access information, it was easy to ignore group memberships. Now that Office 365 Groups, Planner, and Microsoft Teams support guest users, a more obvious need exists to review group memberships periodically. Letting people who have permissions to any resource keep their status just “because” is a bad idea. Permissions become stale when users have access they don’t need any more and stale permissions can lead to compromised information, an aspect of data governance that comes under increased focus due to regulations like the EU’s GDPR. Finding Groups with Guests To make sure that sensitive information is not exposed to people who do not need access, you can ask group owners to check the guest users in the groups that they manage and hope for the best. Alternatively, you can impose a more structured approach. In either case, you need to know what groups have guest members. To start the ball rolling, some PowerShell creates a report of groups that have guest users. For example: Get-UnifiedGroup | Sort-Object GroupMemberCount -Descending | Format-Table -AutoSize DisplayName, GroupMemberCount, GroupExternalMemberCount, @{Name=”Tenant Users”; Expression = {$_. GroupMemberCount - $_. GroupExternalMemberCount}} DisplayName GroupMemberCount GroupExternalMemberCount Tenant Users ----------- ---------------- ------------------------ ------------ Exchange's Grumpy Old Men 62 57 5 Office 365 Discussion 61 55 6 Office 365 Experts 42 41 1 Company Communications 28 0 28 Teams that have external members show up in the report because their... --- ### Amazon Announces New S3 Encryption and Security Features - Published: 2017-11-13 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-new-s3-encryption-security-features/ - Categories: Cloud Computing, Security - Tags: Amazon, AWS, encryption, News, S3, Security - Article Type: News In a recent post on the AWS blog, Amazon announced the addition of several new encryption and security features that are now available to AWS S3 customers. In a recent post on the AWS blog, Amazon announced the addition of several new security features to its S3 service. While AWS had offered a variety of security features prior to this update, these new additions can be useful to admins and organizations that are looking for ways to increase the security of the data.     Included in this AWS S3 security update are five new security features: Default Encryption -- Admins can now choose from among three server-side encryption options for Amazon S3 objects, including SSE-S3, SSE-KMS, and SSE-C. Additionally, admins can configure S3 buckets so that every object stored within them must be encrypted. What’s particularly nice about this option is that any unencrypted objects that get added to an S3 bucket, can be automatically encrypted. Permission Checks -- Amazon S3 buckets can now be secured using the same access control list (ACL) technology that’s used when applying Managed Configuration Rules. What’s more is that users can view each bucket’s access control level from within their dashboards. This can be particularly useful for checking permission levels at a glance when there are many S3 buckets on the same account.     Cross-Region Replication ACL Overwrite -- When using Cross-Region Replication to copy objects from one bucket to another bucket on a different AWS account, users can now allow full access control list (ACL) access to the owner of the destination bucket. This splits the ownership of the source and destination data amongst the... --- ### Amazon Adds Improvements to CloudWatch in the AWS GovCloud Region - Published: 2017-11-13 - Modified: 2024-09-04 - URL: https://petri.com/amazon-adds-improvements-cloudwatch-aws-govcloud-region/ - Categories: Cloud Computing - Tags: Amazon, AWS, CloudWatch, GovCloud, News - Article Type: News Amazon recently announced several improvements to CloudWatch within the AWS GovCloud (US) Region, including support for extended metric retention, the addition of percentile statistics for metrics, and the ability to add high-resolution custom metrics and alarms. Amazon recently announced several improvements to CloudWatch, its real-time AWS resource monitoring service. While some of these updates have been available in public AWS regions for some time now, it has only recently been released to the more secure AWS GovCloud (US) region.     Included in these improvements are support for extended metric retention, the addition of percentile statistics for metrics, and the ability to add high-resolution custom metrics and alarms. These additional features can provide a great deal of insight into how one’s AWS resources and applications are being used, with admins now being able to see utilization at a more granular level than they were previously able. Amazon’s CloudWatch service can be used to monitor AWS resources and applications, while also collecting metrics that can later be analyzed. Some examples of data that can be monitored with CloudWatch include CPU and memory usage, storage space, and disk reads and writes, among others.     In terms of updated metrics, CloudWatch users in the GovCloud region can now make use of three new metric retention schedules: 1-minute metric data points – available for 15 days 5-minute metric data points – available for 63 days 1-hour metric data points – available for 445 days With these new schedules, admins can spot trends that may indicate potential issues. This is something that may have been missed with the previous retention periods that were offered. What’s more is that the AWS GovCloud region also gained support for... --- ### Paul Thurrott's Short Takes: November 10 - Published: 2017-11-10 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-10/ - Categories: Cloud Computing, Dynamics, Microsoft 365, Mobile, Office 2016, Windows Client OS - Tags: News - Article Type: Overview Because friends don't let friends use Linux, this edition of Short Takes looks at Kroger's Amazon problem, Salesforce's CEO problem, the enterprise's LinkedIn problem, Intel's GPU problem, and all kinds of other problems. Munich finally makes a good decision. Because friends don't let friends use Linux, this edition of Short Takes looks at Kroger's Amazon problem, Salesforce's CEO problem, the enterprise's LinkedIn problem, Intel's GPU problem, and all kinds of other problems. Munich gets its Linux comeuppance Remember when Munich infamously decided in 2003 to drop Windows and Microsoft Office because of licensing costs and then adopted Linux and an open source office suite? Yeah? Well, that's over. This week, city of Munich voted to pave over all 29,000 of those nearly useless PCs and deploy Windows 10 instead. And it will be trialing Microsoft Office 2016 as well. Why make such a major change, again, you ask? Because Linux was a dumpster fire. "Our fundamentally works but it's not efficient or intuitive and there are regular problems when you have to add other software, regular compatibility problems," a regional politician noted of the change. Yeah, that sounds like it works great. "Why the iPhone X Isn't for Everyone" Because no product is for everyone? Supermarket chain pits Microsoft and Google against Amazon In a bid to undermine Amazon. com, the Kroger chain is deploying a mixture of Microsoft and Google cloud technologies. Why undermine Amazon. com, you ask? Because Amazon owns Whole Foods, which is a grocery store and a competitor. "For obvious reasons competitively, it doesn't make sense for us to do a ton to help grow that business for them," Kroger CEO Chris... --- ### Managing OneDrive Files On Demand in The Windows 10 Fall Creators Update - Published: 2017-11-10 - Modified: 2024-09-04 - URL: https://petri.com/managing-onedrive-files-demand-windows-10-fall-creators-update/ - Categories: Windows Client OS - Tags: cloud computing, File On-Demand, OneDrive, OneDrive for Business, Windows 10, Windows 10 Fall Creators Update - Article Type: How To In today's Ask the Admin, Russell Smith shows you how you can manage the new OneDrive Files On-Demand feature in the Fall Creators Update. In today's Ask the Admin, I'll show you how you can manage the new OneDrive Files On-Demand feature in the Fall Creators Update.     Files On-Demand is the long-awaited replacement for Windows 8. 1-era OneDrive placeholders, a flawed system that allowed users to see their full OneDrive file hierarchy without downloading the contents to the local device. Placeholders were popular because OneDrive can store much more data than there is disk space on a device, especially in the case of devices using solid-state drives. Due to the way placeholders were implemented in Windows 8. 1, issues could arise that meant applications would not retrieve files that were only available in the cloud. Placeholders relied on Windows Explorer and the OneDrive sync client to do the heavy lifting. The Explorer icon overlays, which indicated whether files were available offline, sometimes failed to display if other apps also registered overlays with Explorer. This lead to confusion for users.     Files On-Demand in the Windows 10 Fall Creators Update uses a file system driver and the OneDrive client to resolve the issues with placeholders. Instead of icon overlays in Explorer, Microsoft has added attributes that display the status of OneDrive files, which can be always local, demand-synced and available offline, and demand-synced but not available offline. The new attributes are displayed in a separate column in File Explorer and in the details view. OneDrive Sync Status Is Displayed in File Explorer (Image Credit: Russell Smith)... --- ### Amazon Announces New AWS EC2 P3 Instances - Published: 2017-11-09 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-new-aws-ec2-p3-instances/ - Categories: Cloud Computing - Tags: AWS, cloud computing, EC2, News, P3 - Article Type: News Amazon recently announced the availability of new AWS Elastic Compute Cloud (EC2) P3 instances, which are ideal for computation-intensive activities. In a recent post on the AWS Blog, Amazon announced the availability of the newest Elastic Compute Cloud (EC2) P3 instances. These new P3 instances are designed for processor intensive activities like machine learning, deep learning, fluid-dynamics, and computational finance, among others.     Amazon's new P3 instances are powered by up to eight NVIDIA Tesla V100 GPUs, as well as custom Intel Xeon E5-2686v4 processors, clocked at up to 2. 7GHz. Each NVIDIA GPU contains 5,120 CUDA cores, along with 640 Tensor cores that are capable of providing varying levels of floating point precision. Specifically, these GPUs can provide up to 125 TFLOPS of mixed-precision floating point, 15. 7 TFLOPS of single-precision floating point, and 7. 8 TFLOPS of double-precision floating point. Available in three different sizes, the new P3 instances should be able to fit the computing needs of many organizations that require reliable high-performance computing at scale. The smallest of the new P3 instances features one NVIDIA Tesla V1000 GPU, the mid-tier instance features four NVIDIA GPUs, and the largest instance features 8 NVIDIA GPUs. In its announcement, Amazon provided the following chart that details the full specifications of the latest EC2 P3 instances:   Model NVIDIA Tesla V100 GPUs GPU Memory NVIDIA NVLink vCPUs Main Memory Network Bandwidth EBS Bandwidth p3. 2xlarge 1 16 GiB n/a 8 61 GiB Up to 10 Gbps 1. 5 Gbps p3. 8xlarge 4 64 GiB 200 GBps 32 244 GiB 10 Gbps 7 Gbps p3. 16xlarge 8 128 GiB 300 GBps 64 488 GiB 25... --- ### Microsoft's Advanced Threat Protection Adds Support for Android, iOS, and Linux - Published: 2017-11-09 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-advanced-threat-protection-adds-support-android-ios-linux/ - Categories: Security, Windows 10 - Tags: Advanced Threat Protection, Microsoft, News, Security - Article Type: News Microsoft is expanding the footprint of Advanced Threat Protection with the ability to now monitor iOS and Android devices. In Microsoft's perfect world, you would be using their entire stack of software for all of your needs. But with Windows Mobile no longer being a relevant option for the mobile space, it's inevitable that companies will be supporting mixed environments. Over the past few years, Microsoft has been moving heavily into the security space with its Advanced Threat Protection branding. Everything from Office to Windows is now being baked-in with security at the heart of the platform with the end result being a single pane of glass that you can view to monitor your entire environment. That is, unless you are running other platforms, or so, that was the case up until this week. Microsoft has announced the first third-party partners who can now bring their data to the Defender ATP platform to help you monitor these devices through your security operations dashboard. The process to onboard these new devices requires no additional infrastructure and the company is achieving this integration with the help of Bitdefender, Lookout, and Ziften. These are the first partners announced for integration into this security platform and I fully expect Microsoft to announce more partners in the future. The integration with Bitdefender is now available in public preview (learn more here) and the other services will come online soon. For Microsoft, this is a strategic play as they need their security software to envelope the entire enterprise which includes devices and hardware that they do not manufacture or are the developer the... --- ### Windows Server: New Features in Version 1709 - Published: 2017-11-09 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-new-features-version-1709/ - Categories: Windows Server - Tags: Windows Server 2016 - Article Type: Overview In this Ask the Admin, Russell Smith provides a summary of the new features in the latest version of Windows Server. In this Ask the Admin, I'll provide a summary of the new features in the latest version of Windows Server.     Without much of a splash, Microsoft announced the availability of Windows Server version 1709 in September, the first version which comes in the new Semi-Annual Channel. It was made available for download October 17th. As with the initial release of Windows Server 2016, most of the new features in this version are either related to building cloud infrastructure or for DevOps. So, if your interests don’t fall into either of those two categories, there’s not much to see here. The possible exception is Project Honolulu, which will eventually replace Server Manager and other Microsoft Management Consoles (MMCs). Semi-Annual and Long-Term Servicing Channels Beginning with this release of Windows Server, there are two channels customers can choose from: Semi-Annual (SAC) and Long-Term Servicing (LTSC). SAC is available for Software Assurance and Azure (cloud hosted) customers and we will see a new version released twice yearly, in spring and fall. Each new version will be supported for 18 months. LTSC versions of Windows Server will be released every 2 to 3 years with 5 years of mainstream support and 5 years of extended support.   DevOps If you’re deploying Windows Server container images, Nano Server is 80 percent smaller in this release. Server Core hasn’t been forgotten and is 60 percent smaller. Microsoft has also added Hyper-V isolation compatibility for Linux containers. And while we’re on... --- ### Microsoft Wants LinkedIn to Help You Create Your Next Resume - Published: 2017-11-08 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-wants-linkedin-help-create-next-resume/ - Categories: Microsoft 365 - Tags: Linkedin, Microsoft, News, Office 365, Resume Assistant - Article Type: News Microsoft has a new tool for Office365 customers that uses LinkedIn data to help you build a better resume. The job hunting process can be an overwhelming and frustrating experience. With headhunters calling at every hour, hundreds of applications to fill out, and trying to make sure your resume stands on its own, this is all part of the process of landing your next promotion or dream job. Announced today, Microsoft is trying to help ease the pain with the resume part of the job hunting process. Called Resume Assistant, this new feature for Office 365 brings LinkedIn data directly into Microsoft Word to help you build a better product. The feature works by the Resume Assistant pulling in LinkedIn context for wording suggestions for your role, industry, and skills. And of course, being that it is LinkedIn, it will also recommend relevant jobs as well. The assistant will also show how other people in your field are representing their work and experiences to help you craft your own descriptions. Further, it will also pull in top skills for a specific field to make sure that you are covering everything needed for a specific career-type. At the end of the day, this feature is something that will help make creating resumes easier which is at the heart of what Microsoft's trying to do with Office. But, the one thing to keep in mind that when finding a job, it's about standing out and if everyone is using this feature, you will once again become just another resume in a large stack of applicants. When Microsoft purchased LinkedIn... --- ### Modern SharePoint Web Parts Updates -- Group Calendar - Published: 2017-11-08 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-group-calendar/ - Categories: SharePoint - Tags: Modern SharePoint, Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy to use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint.     The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s continue with the Group Calendar. (more... ) --- ### Why the PowerShell Module for Teams is Critically Flawed > Microsoft has released a beta version of the Teams PowerShell module. The only problem is that the module is not very good. - Published: 2017-11-08 - Modified: 2024-09-04 - URL: https://petri.com/powershell-module-teams-critically-flawed/ - Categories: Microsoft 365, Office - Tags: administration, Automation, Office 365 Groups, PowerShell, Teams - Article Type: Opinion Microsoft has released a beta version of the Teams PowerShell module. The only problem is that the module is not very good. In fact, the module is very disappointing because it does not contain the cmdlets that an Office 365 administrator might except to automate operations around Teams. Maybe the 1.0 release will be better. We can only hope! Update 5 December:Microsoft has released Version 0. 9. 1 of the PowerShell module for Teams. Use this version for your testing. It is less buggy than 0. 9 and has the ability to create a new team for an Office 365 Group that already exists. Remember to run Uninstall-Module MicrosoftTeams -AllVersions to remove the old version before you try to install the updated module. Update: See this article for the latest on the Teams PowerShell module. PowerShell for Teams Fans of Microsoft Teams applauded the release of a beta version (0. 90) of a PowerShell module for Teams, the first sign that Microsoft is close to fulfilling their commitment made at the Ignite 2017 conference. Some documentation is also available on GitHub. The Teams module holds 24 cmdlets from Connect-MicrosoftTeams, which you use to connect to the endpoint for Teams, to Set-TeamGuestSettings, to set the properties of a team that govern how guest users interact with the team. You can use the cmdlets to update team settings, add or remove channels, add or remove members to a team, or even create a new team. And most importantly, you can update the photo (avatar) for a team. The module is easy to install, but that is the highlight. Everything else about the Teams PowerShell module is a disappointment, not least because it is unstable (at least, in my hands). Figure 1 shows how the fundamental Get-Team cmdlet responds sometimes. Figure 1: Problems with the Teams PowerShell module (image credit: Tony Redmond) Problems... --- ### The Five Big Benefits of the Hybrid Cloud - Published: 2017-11-08 - Modified: 2024-09-04 - URL: https://petri.com/five-big-benefits-hybrid-cloud/ - Categories: Cloud Computing, Hybrid Cloud - Tags: Azure, Cloud, Disaster Recovery, hybrid cloud, Hyper-V - Article Type: Overview The hybrid cloud has a lot to offer and here are the five biggest benefits of the new hybrid environments. The hybrid cloud offers a number of important capabilities that can benefit businesses of all shapes and sizes. These new capabilities enable businesses to leverage the hybrid cloud to extend their IT infrastructures in ways they never could before. Let’s look at five of the biggest benefits of the hybrid cloud. 1. Reduced costs – Reducing costs is one of the biggest benefits of the cloud. It’s also one of the primary driving forces that compel C-titles to look into cloud services. The incremental costs of adding capacity on-premises is high. Adding on-premise computing resources requires the outlay of capital expenses to buy additional servers, storage, power or sometimes in extreme cases building entirely new data centers. The hybrid cloud enables organizations to reduce costs. Utilizing cloud resources can allow you to eliminate the need to buy these local resources and instead utilize pay-as-you-go cloud services. 2. Increased storage and scalability – The hybrid cloud also offers a very cost-effective way for businesses to expand their storage capacity. Cloud storage tends to cost significantly less than the equivalent amount of on-premise storage. While cloud storage typically does not provide the same level of performance as local storage it can be a good choice for backups, replicated VMs and archived data. In addition, increasing cloud storage capability is as simple as paying for a higher tier of service – there are no capital expenses or local resource requirements. 3. Increased availability and accessibility – While they do not deliver 100% uptime,... --- ### Cloud Security: Create a Custom RBAC Role in Microsoft Azure - Published: 2017-11-07 - Modified: 2025-02-07 - URL: https://petri.com/cloud-security-create-custom-rbac-role-microsoft-azure/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Role-Based Access Control, Security - Article Type: How To In this Ask the Admin, Russell Smith shows you how to add a custom Azure role for restarting virtual machines. In this Ask the Admin, I'll show you how to add a custom role for restarting virtual machines. Microsoft Azure uses Role-Based Access Control (RBAC) to determine ‘which users get access to what’. There are 60 built-in roles that you can use out-of-the-box, such as Owner, Contributor, and Reader. Azure RBAC is more flexible than group-based access control. If you need more granular control than the built-in roles provide, you can create one or more custom roles. Each role has a set of actions that it will be assigned. In addition to who will be a member of a role, role scope determines the users and devices the role can manage. In the case of Azure, that means subscriptions, resource groups, or resources. The definition of a role’s members and scope is known as an assignment. Roles can have more than one assignment. If none of the built-in roles meet your requirements, you can create up to 2000 custom roles per subscription. Roles are stored in Azure AD and can be shared between subscriptions. There are three ways that you can create custom roles: using Azure PowerShell, Azure Command-Line Interface (CLI), and the REST API. In this article, I’ll show you how to use PowerShell to add a custom role to your subscription that allows members to restart virtual machines. Before continuing, make sure that you have access to an Azure subscription. If you don’t already have one, you can sign up for a free trial here. Additionally, you’ll need... --- ### Microsoft's Next Great Challenge, Selling Microsoft 365 - Published: 2017-11-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-next-great-challenge-selling-microsoft-365/ - Categories: Main - Tags: Microsoft 365 - Article Type: Opinion Microsoft is embarking on its next great SaaS challenge, convincing the enterprise that Microsoft 365 is not only a good service but that its software is better than the competition. About a decade ago, if you were to be told that Microsoft was making a significant amount of revenue selling Office to 120+ million commercial users on a monthly basis, you would have received a few odd looks. But here we are with Microsoft reporting last month that they have 120 million Office 365 users in the commercial segment and nearly 30 million consumers using the platform with no signs of user-adoption slowing down. For Microsoft, the Software as a Service model has been nothing short of a huge success. The company has pivoted nearly all of its software to this model and now the company is trying to bundle it together under the Microsoft 365 umbrella. As of now, there are two primary SKUs of Microsoft 365: Business and Enterprise. If you are not familiar with the offering, read Aidan's post here as it does a terrific job highlighting the differences between the tiers. But there is much more to this story for Microsoft and Microsoft 365 is likely going to be a much tougher upsell than Office 365. For one thing, nearly all organizations need Office, not every company needs provisioning software or security. Yes, the latter is always needed but let me explain. When it comes to productivity software, Microsoft stands (for the most part) on an island. Google and even companies like Slack don't offer a complete solution that competes with Microsoft at the enterprise scale. But for device provisioning, security, cloud storage, and... --- ### Cray Supercomputers in Microsoft Azure > Microsoft and Cray have announced that Cray's supercomputers are coming to Azure to offer physical high performance computing (HPC) to cloud customers. - Published: 2017-11-07 - Modified: 2024-09-04 - URL: https://petri.com/cray-supercomputers-microsoft-azure/ - Categories: Microsoft Azure - Tags: Azure, Cluster, Cray, High Performance Computing, HPC, Physical, Supercomputer - Article Type: News Microsoft and Cray have announced a partnership that will bring physical Cray supercomputers to the Azure cloud. Microsoft and Cray have announced a partnership that will bring physical Cray supercomputers to the Azure cloud.     HPC in Azure High-performance computing is one of the central services of a cloud such as Microsoft Azure. Virtual machines, such as the H-Series, were designed for this workload, offering high-performance processors, lots of memory, and fiber-based RDMA (Remote Direct Memory Access) networking running at 56Gbps. Other virtual machines, such as the NC-Series, use the power of NVIDIA chipsets to enable simulations, such as car crashes or chemical engineering to be efficiently offloaded to dedicated mathematics processing chipsets. HPC has always been something that only large enterprises and universities did because it was just too expensive for everyone else. But the cloud lowered the entry point to offer HPC-on demand, enabling you to perform some calculation without spending millions of dollars on infrastructure. You will only pay for the resources that you used while you used them. Microsoft’s commitment to this technology continues. The Redmond cloud giant has announced a successor to the NC-Series virtual machines, the NC_v2-Series, which will double the computation performance of its predecessors by using the NVIDIA Tesla P100 GPU and by adding Infiniband RDMA networking, similar to the H-Series machines. Microsoft has also acquired a company called Cycle Computing to simplify the deployment of HPC solutions. Some customers always want more. When it comes to supercomputing, there’s no name like Cray! Alliance Cray and Microsoft released a joint statement to announce the exclusive arrangement... . --- ### Why S2D Is Missing from Windows Server 1709 > This post explains why Storage Spaces Direct (S2D) is missing from the 1709 semi-annual release of Windows Server 2016, and what Microsoft's plans are. - Published: 2017-11-06 - Modified: 2024-09-04 - URL: https://petri.com/s2d-missing-windows-server-1709/ - Categories: Hyper-V - Tags: 1709, Failover Clustering, Hyper-V, S2D, Semi-Annual Release, storage, storage spaces, Storage Spaces Direct, Windows Server, Windows Server 2016 - Article Type: Overview Aidan Finn explains why Microsoft did not include the bits for Storage Spaces Direct in Windows Server 1709 and why this causes upgrades or installations of S2D to result in an error. This post will explain why Microsoft did not include the bits for Storage Spaces Direct (S2D) in Windows Server 1709 and why this causes upgrades or installations of S2D to result in an error that says, “The requested operation is not supported. "   The Problem Microsoft recently released its first semi-annual release of Windows Server, called 1709. This is the start of a new release schedule for Windows Server for customers that: Want to have the latest bits, understanding that they’ll be on the bleeding edge Have Software Assurance for Windows Server and have opted into the program The typical customer that will opt into this program is one that uses the latest technology from Windows Server, such as the Software-Defined Datacenter (SDDC), a term that Microsoft uses to describe how they use software with hardware to create more flexible, faster performing, cost-effective, and manageable compute solutions. A part of the SDDC is Storage Spaces Direct, S2D, a hyper-converged cluster that combines the compute, networking and storage tiers of a Hyper-V cluster into a single layer of servers that share/replicate storage across a high-speed network.   The Concept of Storage Spaces Direct (S2D)   Obviously, these keen customers that embraced Microsoft’s software alternative to Nutanix were hungry to get the latest version of the platform and rushed to deploy 1709. Except, they hit a snag, which promptly lit up Twitter for people in these circles. When you try to enable S2D on... --- ### Managing Privileged Access to Active Directory - Published: 2017-11-06 - Modified: 2024-09-04 - URL: https://petri.com/managing-privileged-access-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Privileged Access Management, Security, Windows Server - Article Type: Overview In this Ask the Admin, Russell Smith looks at what you need to take into consideration when planning access to privileged AD groups. Active Directory has a very flexible delegation model. And while it can be used to improve security, if you don't plan carefully, you can inadvertently make Active Directory vulnerable. In this Ask the Admin, I'll look at what you need to take into consideration when planning access to privileged AD groups.     Have you ever wondered why domain controllers (DCs) don’t have a local administrator account? When you promote a server to a domain controller, the local administrator account is removed and administrative access to the server is gained by using an account in the Domain Admins, BUILT-INAdministrators, or Enterprise Admins groups. These groups also give users access to Active Directory (AD), so there is no separation of admin access to the server and Active Directory. It’s all or nothing. Restrict Privileged Domain Groups It is common for IT to get requests to make some users members of the domain Backup Operators or Server Operators group. Although neither gives direct access to Active Directory, both grant admin-like privileges to domain controllers. The list below shows domain groups that have Tier 0 access to Active Directory. For more information on tiered administration, see Why You Should Use Microsoft's Active Directory Tier Administrative Model on the Petri IT Knowledgebase. Enterprise Admins Domain Admins Schema Admin BUILTINAdministrators Account Operators Backup Operators Print Operators Server Operators Domain Controllers Read-only Domain Controllers Group Policy Creators Owners Cryptographic Operators There should be no permanent members of any of the groups listed above. Only... --- ### Big Brother Watches Your Email with Office 365 Supervision Policies > Office 365 includes supervision policies to allow tenants to monitor the content of email sent by different groups of users to each other and externally. - Published: 2017-11-04 - Modified: 2024-11-19 - URL: https://petri.com/office-365-supervision-policies/ - Categories: Microsoft 365, Office - Tags: Compliance, email, Office 365, Security, Supervision Office 365 includes supervision policies to allow tenants to monitor email traffic between selected groups to ensure that they comply with regulations. Supervision policies are easy to set up, but be careful about the workload involved in processing the captured email. The Need for Supervised Email None of us likes the idea that someone might be watching what we send in mail, but in some highly regulated industries, review of communications is a necessary evil. For example, FINRA, the U. S. Financial Industry Regulatory Authority, enforces rules governing the activities of brokers and dealers to ensure market transparency and fairness. In the past, on-premises organizations had to write and install special software to capture and examine messages sent between employees. The software was inserted in the transport pipeline to capture copies of messages and route them for review to ensure that no problems exist. Supervision Policies are Microsoft’s second version of policies to create a framework for email review and reached general availability in May 2017. These policies are part of Office 365 Advanced Data Governance, which means that all accounts coming under the scope of a supervision policy need to have an Office 365 E5 license or the Advance Compliance SKU. Components of a Supervision Policy A supervision policy includes the following components: Reviewees: The people (individuals or groups) whose communications need to be reviewed. You can use email distribution groups to define the reviewees for a policy. Conditions: Queries and conditions to find items for review. Like content searches, queries are in KQL syntax. However, supervision policies only support relatively simple queries when compared to content searches. Conditions include size limits and types of attachments. Sample size: The percentage of messages satisfying the policy conditions captured for review... . --- ### Understanding Microsoft 365 - Published: 2017-11-03 - Modified: 2024-09-04 - URL: https://petri.com/understanding-microsoft-365/ - Categories: Uncategorized In this post, I’ll discuss one of the hottest subjects that my customers want to learn more about; Microsoft 365. In this post, I’ll discuss one of the hottest subjects that my customers want to learn more about; Microsoft 365. Complete User Management What is the function of It when it comes to enabling end users to contribute to the organization? Our job is to: Provide them with the tools that they require Aid employees as required Protect the assets of the company All too often, IT departments view each component of each of those functions as different tools. That started to change with Office Servers. When we combined Active Directory with email (Exchange Server), we realized that we could have a smarter communications system that understood us and our intentions. Along came Lync Server and SharePoint server and we not only communicated, but we collaborated as dynamic teams, not just as loosely coupled co-workers. In response to external threats, Microsoft created a cloud alternative to Office Servers called Office 365. This was a game changer – now we can all have the latest version of Exchange Online, SharePoint Online, Skype for Business, and many other features were added such as Teams, Office Groups, Flow, and the Office suite on our devices. By being in the cloud, we can access those services from anywhere, with the knowledge that the smartest IT security minds in the business are protecting our data while it is in the cloud. But that was just one part of the toolset. There are other requirements, such as provisioning and protecting devices, and securing those devices. We... --- ### What Are Azure Containers -- For IT Pros > This post, aimed at IT pros, will explain what Azure containers are, what the deployment options are, and how you can orchestrate the solutions. - Published: 2017-11-03 - Modified: 2024-09-04 - URL: https://petri.com/azure-containers-pros/ - Categories: Microsoft Azure - Tags: Azure, Azure Container Instances, Azure Container Service, Containers, Docker, Docker Swarm, Kubernetes, Mesos DC/OS, Service Fabric - Article Type: Overview Aidan Finn discusses what Azure Containers can do and how they can be used and managed in Azure. In this post, I’ll discuss what Azure Containers can do and how they can be used and managed in Azure. The intended audience for this post are IT pros, such as consultants, engineers, operators, and architects.   Relevance Microsoft was quite blunt about the importance of containers at the recent Ignite conference. Jeff Woolsey, a Principal Program Manager at Microsoft for the Cloud and Enterprise Division, repeatedly stated that containers are the new virtualization. 10+ years ago, machine virtualization changed how we deployed applications and services in the data center. The role and importance of machine virtualization will continue, sometimes in different places (public cloud, for example), but operating system virtualization (containers) has started to penetrate the market. Containers offer near-instant deployment and are a great way of moving legacy code into a DevOps lifecycle. Deployment times are shortened, maintenance is easier, and scale-out/in is possible in seconds; this is why large enterprises such Ticketmaster use container technology, why SQL Server for containers was released, and why Microsoft has put so much effort into developing container technologies in Windows Server 2016 and Azure. What Are Containers? Machine virtualization, such as Hyper-V or ESXi, creates a partition for each operating system deployment. Each partition simulates a machine using software and gives the illusion of multiple physical machines running instead of a single host. For each application, you’ll have one or more virtual machines, each with its own OS to configure, patch, and maintain. As much as you optimize the deployment... --- ### Paul Thurrott's Short Takes: November 3 - Published: 2017-11-03 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-3/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because there's a new Call of Duty out and I feel a, ahem, cold coming on, this edition of Short Takes looks at the Xbox One X, a very public Edge crash, a free way to upgrade to Windows 10, and more. Everybody loves a clown! Because there's a new Call of Duty out and I feel a, ahem, cold coming on, this edition of Short Takes looks at the Xbox One X, a very public Edge crash, a free way to upgrade to Windows 10, and more. Microsoft set to launch the Xbox One X Microsoft will formally launch its 4K Xbox One X console on Tuesday, but reviewers---including me---were able to post their first write-ups today so you can see what you're getting into. And what you're getting into, folks, is awesomeness: True 4K/HDR gaming at up to 60 fps, silent operation (which is itself a miracle), and complete backward compatibility with your existing Xbox One game library. Gaming perfection? I think so. In fact, I'll just go ahead and say it: This one is a game changer. (See what I did there? ) "Are you ready for Microsoft's Fall Creators Update? " I hope so, since it shipped two weeks ago. Remember that time Edge kept crashing during a Microsoft presentation so they installed Chrome? That sounds fake, I know. But it happened: Midway through a live presentation at Ignite back in September, Microsoft's Edge browser kept crashing, so the presenter literally had to install Google Chrome---which works great, by the way---so that he could continue. Embarrassing? Sure. But I'd be more embarrassed by not being more prepared. Chrome should have already been installed on that PC. In any event, this is coming up now... --- ### Microsoft Outlines What's New in the Fall Creators Update for IoT - Published: 2017-11-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-outlines-whats-new-fall-creators-update-iot/ - Categories: Cloud Computing - Tags: IoT, Windows IoT - Article Type: News Microsoft is bringing several new features to its IoT platform with the Fall Creators update to increase security and make the devices easier to manage. While it may not be in the headlines every single day, Microsoft is building out a presence in the IoT space and today the company has outlined their enhancements arriving with the Fall Creators Update. In this release, the company is enhancing security, making it easier to connect to Azure and improving performance as well. With this update, the company is working to make 'bringing-it-all-together' easier with richer . NET API surface for UWP apps, improved ink support for IoT Core, and Assigned Access for single-purpose devices like kiosks. In addition, Microsoft is updating the language support to include Chinese (Simplified, China), English (United Kingdom), English (United States), French (France), French (Canada), Spanish (Spain, International Sort), Spanish (Mexico). But IoT also has a hardware component to it as well and to make servicing the devices easier, there is new functionality for accessing the components. The company has enabled Emergency Management Services that provides a redundant communication channel to perform low-level hardware checks and the company has also enabled user mode bus access on Windows 10 IoT Enterprise through the Windows. Devices APIs. And for those devices with displays, this release extends support for controlling customer facing 2x20 line displays. And for those who like to live on the edge (not that Edge), there are also a couple new preview programs in this update. This includes hosting Nano Server containers for 64-bit editions of Windows 10 IoT Core and Enterprise as well as Azure IoT Edge/Hub Device Provisioning services which you... --- ### What Are Logic Apps -- For IT Pros > What are Azure Logic Apps? This post, aimed at IT Pros, will explain how Logic Apps can be used to create coordinated & integrated workflows in Azure. - Published: 2017-11-02 - Modified: 2024-09-04 - URL: https://petri.com/logic-apps-pros/ - Categories: Microsoft Azure - Tags: Azure, Integration, iPaaS, Logic Apps, PaaS, workflows - Article Type: Overview Aidan Finn explains how Azure’s Logic Apps service can be used to orchestrate activities in the platform-as-a-service side of Azure. In this post, aimed at IT pros, I’ll explain how Azure’s Logic Apps service can be used to orchestrate activities in the platform-as-a-service (PaaS) side of Azure.   Relevance Once upon a time, Logic Apps would have been something for the developers. But times, and Azure, are changing. More and more organizations are embracing the work methodologies of DevOps, where IT pros and developers work as a coordinated team, instead of the traditional one-versus-the-other. In the DevOps world, the traditional IT pro (the operator) needs to understand the architectures being used by developers so that they can function as an integrated team. Recently, Logic Apps popped over into the infrastructure side of Azure by appearing as “Playbooks” in Azure Security Center. Playbooks, which are a use of Logic Apps, allow you to define automated actions to security alerts: when an alert occurs, do one or more things automatically. So knowing that Logic Apps are creeping into our world, it makes sense to know what they are for and what they can potentially do.     Workflows In the developer side of Azure, each of the resource types that you deploy can be very role-specific. For example, one might have an app service plan that hosts a scalable website. Behind that, there might be a blob storage account that stores customer uploads. Whenever a customer uploads a file, a series of parallel actions might need to be triggered. Notifications might need to be sent to internal sales/marketing... --- ### Microsoft Turns up the Heat on Oracle, Amazon, and IBM Databases - Published: 2017-11-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-turns-heat-oracle-amazon-ibm-databases/ - Categories: SQL Server - Article Type: News Microsoft is turning up the heat on Amazon and Oracle by offering a new tool that will take the pain out of migrating databases and they are offering it for free. There was a saying a few years ago that when it comes to enterprise tech, choose wisely as you will never choose again. The reason for this is that it is expensive to uproot your database and move platforms but with modern tools, the pain is now a bee sting to what used to be a shark bite. In the not-so-distant past, we have seen Microsoft offer Oracle customers 'free' licenses for SQL Server and now the company is taking it up a notch. Announced this week and in partnership with Attunity, the company is offering a free license of their migration tool to dramatically simplify the move away from competitor platforms to Microsoft's on-premises and cloud solutions. The idea is quite simple, if you are running a competitors platform, using this new software, you can migrate, with little-to-no downtime (in their words, not mine), for free. It's the last part of that sentence that is key. Take a look at the image on the right for all the currently supported platforms and as you can see, it's a wide selection of popular platforms. With a free license for each database that you need to migrate, you have twelve months to complete the process and other than the time you invested, it's possible to do it without any additional cost. Of course, for large-scale migrations, this is easier said then done but with a free tool that is backed by Microsoft and Attunity, the process has been significantly... --- ### Exchange Online Protection Highlights Unauthenticated Senders > Exchange Online Protection(EOP) now highlights unauthenticated users - or messages that come from people who cannot prove their identity. - Published: 2017-11-02 - Modified: 2024-09-04 - URL: https://petri.com/exchange-online-protection-highlights-unauthenticated-senders/ - Categories: Exchange Online, Microsoft 365, Office - Tags: DKIM, DMARC, EOP, Exchange Online Protection, Malware, Office 365, Outlook.com, spam, SPF - Article Type: Opinion Exchange Online Protection now highlights unauthenticated users - or messages that come from people who cannot prove their identity. Instead of a nice picture (or avatar), you see a question mark for the user. Maybe this might make people think twice about the opportunity to send money to someone to liberate funds held in a bank. Just maybe. EOP’s Ongoing Fight to Protect Office 365 Although some might complain that the rate of change in a cloud service like Office 365 is too fast, one advantage gained is availability to new protection techniques for email as soon as they are ready. Malware evolves all the time as hackers, spammers, and phishers search for new vulnerabilities. The battle against new attack vectors is ongoing and constant. Few tenants have the time, energy, or knowledge to fight malware attackers on their own, which is why it is good to have Microsoft’s security team do the heavy lifting for Office 365 as part of Exchange Online Protection (EOP). Highlighting Dubious Email Recently, Microsoft has added support for dynamic delivery and safety tips in EOP. The latest innovation is highlighting messages received from unidentified sources to give recipients a visual warning to take care. It is part of the array of technologies deployed within EOP like SPF, DKIM, DMARC, and anti-spoofing to verify the identity of message senders. Ideally, any email you receive should come from a domain that publishes its credentials for all to check, like a DKIM signature. Unfortunately, some organizations continue to ignore the need to publish credentials. This might be by oversight, but often a malicious intent exists because an attacker wants to exploit technical or social weaknesses in target domains through malware. The latest advance means that when Exchange Online Protection cannot verify the sender of a message using the array of techniques deployed for... --- ### Microsoft Has A New (Free) Tool To Help Make Your SQL Databases Faster - Published: 2017-11-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-new-free-tool-help-make-sql-databases-faster/ - Categories: Uncategorized - Tags: Microsoft, Microsoft SQL Operations Studi - Article Type: News In the coming weeks, Microsoft is going to release a free cross-platform tool that will help you improve the performance bottlenecks in your SQL databases. This week in Seattle, Microsoft is making several announcements at the PASS summit that includes the new SQL Operations Studio. In addition, the company is making available a new version of Power BI Report Server and Scale Out feature for Azure. In the coming weeks, Microsoft will be releasing a new (and free) tool to help develop modern databases. Called Microsoft SQL Operations Studio, which is coming to Windows, Linux and the Mac, this tool will help you identify bottlenecks in your on-premises or in Azure SQL databases. Further, this lightweight tool will integrate with all of the popular command line interfaces like PowerShell, Bash, sqlcmd, bcp and ssh in the Integrated Terminal window. The tool will also help lower the learning curve for performing tasks like development, deployment, monitoring, and trouble-shooting. SQL Operations Studio uses a perspective approach to performing these tasks and provides guidelines/best practices for making changes to your database. As for product support, Initially, Microsoft SQL Operations Studio  will support SQL Server 2017 anywhere, Azure SQL Database and Azure SQL Data Warehouse will be included with the first release. For Azure fans, the company announced the 'Scale Out' feature of Azure Analysis. This feature makes it easier for users to replicate their Azure Analysis Service instances on-demand to increase performance when concurrent users reach critical mass. Finally, Power BI Report server is getting a new release that enables the ability to keep Power BI reports on-premises that connect to any data. For more information, you can check out the blog... --- ### What Is Azure Service Fabric -- For IT Pros - Published: 2017-11-01 - Modified: 2024-09-04 - URL: https://petri.com/azure-service-fabric-pros/ - Categories: Microsoft Azure - Tags: Azure, Microservices, PaaS, Service Fabric - Article Type: Overview Aidan Finn discusses Service Fabric, a microservices deployment compute-based system in Azure. In this post, I’ll example Service Fabric, a microservices deployment compute-based system in Azure.     Relevance This post is aimed at IT pros and you might wonder why you’ll care about some system in Azure’s Platform-as-a-Service (PaaS). Service Fabric is one of the many resource types in Azure that is a bit of a cross-over technology, using compute as a platform and therefore requires networking, security, and more. Whether you work in DevOps or not, if developers in your company plan on using Service Fabric, then you’ll be involved in the deployment and maintenance of the underlying infrastructure. What Is Service Fabric? Service Fabric is a solution that layers and orchestrates microservices on top of a compute cluster. That compute cluster is a scale set of Azure virtual machines; this means that you can create a relatively small deployment and scale it out and in automatically, depending on application demand. Developers using Service Fabric to run their application use a different approach to writing their code. Instead of creating one big executable or DLL, they write smaller chunks of code that are uploaded and run separately as microservices (called agents) in the service fabric cluster. An Illustration of a Scale-Set Cluster   Each microservice instance is replicated across the scale set and that replication is extended as the scale set grows. This offers two things: High availability Performance via scale-out Service Types When a programmer is creating a new service for... --- ### What Is Remote Desktop Modern Infrastructure? > This post explains how Remote Desktop Services (RDS) Modern Infrastructure will use Azure PaaS & Azure AD to simplify and secure client app deployments. - Published: 2017-11-01 - Modified: 2024-09-04 - URL: https://petri.com/remote-desktop-modern-infrastructure/ - Categories: Microsoft Azure - Tags: IaaS, PaaS, RDS, RDS Modern Infrastructure, RDSMI, Remote Desktop Services, Web Apps, Windows Server 2016 - Article Type: Overview Aidan Finn discusses Microsoft's development of a deeply re-factored version of the Windows Server Remote Desktop Services infrastructure, which leverages the power of Windows Server, Azure PaaS, and Azure AD. Microsoft is developing a deeply re-factored version of the Windows Server Remote Desktop Services infrastructure, leveraging the power of Windows Server, Azure PaaS, and Azure AD. This looks so good, I can almost forgive them for killing off Azure RemoteApp. And I probably will, after this goes GA in mid-2018.     RDS Today With my ever-growing involvement in Azure, one might expect that I would be less involved with RDS; the opposite is true! RDS is often the answer when I have a customer that wants to move legacy clients/data to the cloud. That’s easy enough when it’s a very small business but once they get to mid-large, RDS starts to require a lot of complexity and machines. The information below is from a slide that Microsoft shared at Ignite 2017. This is actually the most modern way that one can deploy a scaled out RDS farm in Azure today. It will be taking advantage of Azure SQL to host the Connection Broker database, instead of a cluster of Azure virtual machines running SQL Server. In this deployment, if you want high availability (and you would), then you would have: Two load-balanced RD Web servers A pair of load-balanced RD Gateway servers. Connection broker A farm of session hosts for desktop/app publishing A file server to host user profile disks (UPDs) All of the above is deployed into virtual machines connected to a single network (possibly over multiple subnets) in a completely domain-joined environment. [caption align="aligncenter"... --- ### Microsoft 365 Graduates, Grabs A Few New Apps - Published: 2017-11-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-graduates-grabs-new-apps/ - Categories: Main - Tags: Microsoft 365 - Article Type: News Microsoft is bringing Microsoft 365 out of preview and as it graduates, the company is adding a couple new apps to the service. Earlier this year, Microsoft unveiled Microsoft 365 with the hopes of building on the success of Office 365 by bundling Office with device management and security tools. Today, the company is officially moving this service out of preview and into general availability. Microsoft 365 Business is designed for small and medium-sized companies with up to 300 employees. The service helps to simplify the IT shop by utilizing Microsoft's security tools which the company pitches this as a means to focus more time on building your business, not dealing with overhead. Along with making this service available to customers in the US, UK and Canada today, Microsoft is tossing a few more apps into the product pool. To help Microsoft 365 users grow their businesses, Microsoft Connections, Microsoft Listings, and Microsoft Invoicing are now included in this SKU. This is in addition to the other apps Bookings, Outlook Customer Manager, and MileIQ that were previously announced. It's quite simple to understand what Microsoft is doing here, they are creating bundles of services that they can then sell rather than one-off products or platforms. By specifically targeting small business with this offering, they are pitching it as a value proposition to simplify and increase the productivity with one service. Of course, that comes with a monthly fee attached but if you are currently patching together several platforms from several different vendors, this solution may be attractive to reduce your subscription service headaches. That being said, we are still in the... --- ### What Are Azure Functions -- For IT Pros > This post will explain how Azure Functions offer pay-per-second serverless computing, without the distractions or costs of IT infrastructure. - Published: 2017-10-31 - Modified: 2024-09-04 - URL: https://petri.com/azure-functions-pros/ - Categories: Cloud Computing - Tags: AWS, Azure, Computing, Functions, Lambda, Serverless, Triggers - Article Type: Overview Aidan Finn explains how Functions enable serverless code execution in Azure. You’ve probably heard the phrase “serverless” being thrown around over the last few months. In this post, I’ll explain how Functions enable serverless code execution in Azure. Server-Based Computing Think about the different ways we have for running code in Azure: Virtual machines: We have to pay per minute that the machine is running, which often is pay-per-month for the machine. There is also a substantial cost of ownership. App Service Plan: Web apps, mobile apps, and web jobs allow us to execute web/mobile application code but really are virtual machines with per-month (realistically) cost under the covers. Containers: We can put more services on a single machine or cluster of machines but there’s an infrastructure that must be orchestrated and paid for. Service Fabric: When you deploy a service fabric, you are actually deploying a scale set of virtual machines. With every one of those options, there is some infrastructure with the associated infrastructure and/or ownership costs. If I travel back in time to when I was once a programmer, (and Visual C++ came on 20 plus diskettes) I didn’t want to care about where my code ran. I just wanted my code to run. Until recently, something had to be deployed to run the code I had to spec that something, pay for that something on a per-month basis, and maintain that something. That’s a lot of work that distracts me from my job: writing code. Serverless Computing Azure introduced Functions, which is similar to... --- ### Microsoft Softens Stance but RPC over HTTP is still Dead > Microsoft said RPC over HTTP was dead for Exchange Online on Oct 31, 2017. The protocol is still dead, but it now in a zombie-like unsupported mode. - Published: 2017-10-31 - Modified: 2024-09-04 - URL: https://petri.com/rpc-over-http-still-dead/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, MAPI over HTTP, Office 365, Outlook, outlook anywhere, RPC over HTTP - Article Type: News A year ago, Microsoft said RPC over HTTP was dead from Oct 31, 2017 and that Outlook clients must use MAPI over HTTP to connect to Exchange Online. The protocol is still dead, but it will persist in a zombie-like unsupported mode. The question is for how long? The Preferred Connectivity Protocol for Exchange Online In November 2016, Microsoft told Office 365 customers that they would no longer support RPC over HTTP (aka "Outlook Anywhere") connections to Exchange Online. The idea was that if customers had almost a year to upgrade clients, Microsoft could hit the switch on October 31, 2017 (today) and everyone would move forward into a new world of MAPI over HTTP connectivity. Customers Said No As it turns out, life is sometimes difficult, and customers do not cooperate. Pushback from customers has forced Microsoft to soften its stance. Instead of a total ban on RPC over HTTP connections, Microsoft will cease supporting the protocol in a gentler attempt to convince customers to move their Outlook connectivity to MAPI over HTTP. Although RPC over HTTP connectivity will continue after today, it will no longer be a supported protocol. This means that Microsoft will no longer offer support for any issue connected with RPC over HTTP and will not release any code fix or update to resolve problems, except when those problems compromise security. Nothing dramatic will happen when Microsoft ceases support. RPC over HTTP connections will continue to work, and Outlook will be able to send and receive email. The Problem of Old Outlook The problem facing customers is quite simple. Large populations of older versions of Outlook are in daily use and customers have no appetite to refresh those clients. Desktop refreshes are always (un)popular with I. T. departments. They are complex, costly,... --- ### Introducing SharePoint Hub Sites - Published: 2017-10-30 - Modified: 2024-09-04 - URL: https://petri.com/introducing-sharepoint-hub-sites/ - Categories: Microsoft 365, SharePoint - Tags: Communication Sites, SharePoint Online, team sites - Article Type: Opinion Jasper Oosterveld, Microsoft MVP and Consultant, introduces the new SharePoint Hub Site. During the latest Ignite event, a ton of SharePoint features were announced. The announcement that really stood out for me personally, is the SharePoint Hub Site. This is the next step in providing an out-of-the-box Intranet and Communication Portal within Office 365 empowered by SharePoint.     June of this year, SharePoint Communication Sites started to roll out. This provided us with a site template to quickly set up an Intranet and Communication Portal. I have written a couple blogs about SharePoint Communication Sites. Since writing these blogs, I have been lucky enough to support customers setting up portals with the Communication Site. Believe it or not, within a couple of hours a portal can be up and running. One condition is the availability of content such as text, pictures, and documents. This is really a huge step up compared to previous projects where setting up an Intranet Portal could take a very long time. Modernized Team Sites have been around a bit longer. The modern experience provides businesses with the following features: User-friendly document libraries and lists Responsive design Beautiful and interactive pages New Web Parts Integration with Microsoft’s native SharePoint App All the features result in the SharePoint Team Site being an incredibly powerful template for collaboration scenarios. Did I also mention the integration with Office 365 Groups? Although I have been very positive about Communication and Team Sites, there was something missing. Imagine, you create multiple Communication and Team Sites. There is a Communication Site... --- ### Planned Maintenance For Azure Virtual Machines - Published: 2017-10-30 - Modified: 2024-09-04 - URL: https://petri.com/planned-maintenance-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure, Patching, Planned Maintenance, service health, virtual machines - Article Type: Overview Aidan Finn examines Microsoft's new feature that allows you to control the forced outages that occur to virtual machines when patches are delivered to Azure’s compute hosts. Microsoft is adding a new feature that allows you to control the forced outages that occur to virtual machines when patches are delivered to Azure’s compute hosts.     Minimize Service Downtime Ideally, when you deploy a service using Azure virtual machines, those virtual machines should be a part of a valid availability set. Here’s a quick reminder on availability sets: There is no live migration in Azure. Imagine tens of thousands of machines live migrating on a single cluster and what that would do to the infrastructure and the applications in the virtual machines! Instead, when the host reboots the virtual machines have downtime. An availability set tags virtual machines so that Azure knows to put them into different update domains. When Microsoft deploys updates to Azure, they do so in an ordered fashion, one update domain at a time. This means that only a small number of hosts are ever offline because of patching and rebooting. If you have configured anti-affinity by using availability sets, then only one (or a few) virtual machines will ever be down at one time. The key part is: this must be a valid availability set to achieve the 99. 95 percent SLA for the service on those machines. Putting one domain controller and one file server into an availability set achieves nothing for uptime and the SLA won’t apply. But putting 2 load balanced web servers into an availability set qualifies the web service for the SLA and minimizes downtime [caption... --- ### Paul Thurrott's Short Takes: Earnings Special Edition (October 2017) - Published: 2017-10-27 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-earnings-special-edition/ - Categories: Cloud Computing, Microsoft 365, Office, Windows 10, Windows Server - Tags: News - Article Type: Opinion Because quarterly earnings are in the air, this edition of Short Takes focuses on Microsoft's earnings announcement this week. Because quarterly earnings are in the air, this edition of Short Takes focuses on Microsoft's earnings announcement this week. Note: As Brad reported last night, Microsoft this week reported net income of $6. 6 billion on revenues of $24. 5 billion for the first quarter of fiscal 2018. The firm reached a number of milestones in the quarter, which I'll examine here. ---Paul MSFT: New quarter, new revenue reporting standard Microsoft has once again introduced a new revenue reporting standard, in this case ASC 606. The firm was nice enough to report its results in a way that makes things comparable with the same quarter a year ago. "The adoption of this standard had several impacts," Microsoft's Chris Suh noted during a post-earnings conference call, "but most materially the revenue recognition for Windows 10 OEM licenses and the license component of on-premises annuity contracts. " In other words, a side effect of this kind of change is that it is now basically impossible---and will become more so over time---to compare the firm's subsequent results with those of the past. And there is a cynical part of me that believes that is the real reason for the change, especially for those two exact things: Old-school Windows licensing (the past) and cloud subscriptions (the future). The good news? No more GAAP (generally accepted accounting principles)/non-GAAP silliness. It's all GAAP going forward. "Microsoft and Harman Kardon built a smart speaker that's more speaker than smart" OK, that one is pretty good. MSFT: Microsoft talks... --- ### App Management Using Microsoft Store for Business - Published: 2017-10-27 - Modified: 2024-11-19 - URL: https://petri.com/app-management-using-microsoft-store-business/ - Categories: Cloud Computing - Tags: Application Delivery, Microsoft Store for Business, Windows 10, Windows Store - Article Type: How To In today's Ask the Admin, Russell Smith looks at the prerequisites for setting up Microsoft Store for Business and show you how to set up your own private store. In today's Ask the Admin, I'll look at the prerequisites for setting up Microsoft Store for Business and show you how to set up your own private store. Add Apps to Your Microsoft Store for Business Inventory (Image Credit: Russell Smith)   Curated app stores have been all the rage in the consumer space for years. Popularized first by Apple, and becoming commonplace thanks to the prevalence of Android. App stores aren’t only for consumers. Windows 10 has a built-in consumer store but Microsoft also offers a business store that can be set up to restrict the distribution of apps to your company’s users.     Microsoft Store for Business allows organizations to purchase apps and manage licenses for users. Not only can IT purchase apps published in the public Windows Store, but Microsoft Store for Business allows administrators to invite developers to publish line-of-business Universal Windows Platform (UWP) apps. They can tag them for private use so that only the company’s users can install them. In addition to providing an easy way to license and assign apps, Microsoft Store for Business manages app updates. When an app update is submitted by a developer, Windows automatically downloads and installs the new version of the app, potentially doing away with the need for an on-premises solution, such as System Center Configuration Manager (SCCM), to distribute and manage software updates. App Distribution Options Microsoft Store for Business offers several ways to distribute apps. Creating a private... --- ### Microsoft's Cloud Hits 20 Billion Run Rate, Revenue Climbs 12% in Q1 - Published: 2017-10-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-cloud-hits-20-billion-run-rate-company-posts-strong-q1-results/ - Categories: Main - Tags: Earnings, Microsoft - Article Type: News It's earnings day for Microsoft and the company has posted another strong quarter (Q1 with revenue of $24.5 billion with Net Income being reported as $6.6 billion. It's earnings day for Microsoft and the company has posted another strong quarter (Q1 FY18) with revenue of $24. 5 billion and Net Income is reported at $6. 6 billion. Both of these figures are up year over year at 12% and 16% respectively; Microsoft returned $4. 7 billion to shareholders in the form of repurchases and dividends. Notably, during this quarter, Microsoft has met its goal of making its cloud services reach a $20 billion annual operation. The run rate for the business services was $20. 4 for the quarter and outpaced the goal the company set a little over two years ago to meet this milestone. Office 365 continues its forward progression as well with the company now having 120 million monthly active commercial subscribers and 28 million consumer subscribers. During this period, commercial products and services revenue grew 10% and Office 365 commercial revenue grew 42% primarily driven by the increase in the number of seats. LinkedIn during the period added $1. 1 billion in revenue with sessions growing over 20% during the period. Surface had a solid quarter as well with revenues of $1. 03 billion, up from $926 million year-over-year. This was driven by the release of the Surface Pro and the Surface Laptop. Windows OEM Pro revenue was up 7% driven by higher mix of premium SKUs and the timing of license purchases. Windows OEM non-pro revenue was down 1% which was in-line with the consumer market. Overall, it was a relatively healthy quarter for Microsoft and the fact that Office 365 and... --- ### Google Adds Improvements to Data Loss Prevention API - Published: 2017-10-26 - Modified: 2024-09-04 - URL: https://petri.com/google-adds-improvements-data-loss-prevention-api/ - Categories: Cloud Computing, Security - Tags: API, Cloud, Data, Google, Loss, News, Prevention, Security - Article Type: News Google recently announced several improvements to their Data Loss Prevention API, a service that can be used to manage sensitive user data.   In a recent blog post on the Google Cloud Platform blog, Google announced several improvements to their Data Loss Prevention API, a service that can be used to manage sensitive user data. The Data Loss Prevention (DLP) API, which was released as a beta this past March, can be used to detect and secure a variety of different types of personal data, including names, credit card numbers, and social security numbers, among others. This is done by analyzing the data using more than 50 predefined detectors that look for patterns, formats, checksums, etc. in order to determine if it contains personally identifiable information. The DLP API offers built-in support for Google’s Cloud Storage, BigQuery, and Cloud Datastore platforms. Those who use third-party data storage services can also check to see if their data contains any potentially sensitive information by simply feeding it into the Data Loss Prevention API. Some of the features that were recently added to the DLP API include: Redaction and Suppression - This can be used to remove entire values or records from user data, which can be useful when it comes to keeping data out of the hands of those who don’t require access to it. In the case of a redaction or suppression, identifying data is removed or “covered up” so that users can’t see what the underlying data actually is. For example, the phone number “555-555-5555” may become “***-***-****” when redacted or may not be included at all if suppressed. Partial... --- ### Windows Server Essentials: File History - Published: 2017-10-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-essentials-file-history/ - Categories: Windows Server - Tags: Backup, file history, Small Business, Windows 10, Windows Server Essentials 2016 - Article Type: Overview In this Ask the Admin, Russell Smith looks at how Windows Server Essentials can help small businesses manage File History, users recover files, and how it compares to other backup options. In this Ask the Admin, I'll look at how Windows Server Essentials can help small businesses manage File History, users recover files, and how it compares to other backup options.     File History first appeared in Windows 8 and replaced Previous Files in Windows 7. File History is a useful companion to full system backups as it allows users to restore files right in Windows Explorer, or File Explorer in Windows 10. Windows Server Essentials 2016 makes File History easy to set up by automatically configuring it for all users and providing system administrators a way to manage it centrally. File History vs. Previous Versions The ability to restore previous versions of files is not new. The Previous Versions tab in Windows 7 gave users the ability to restore previous versions of files available in snapshots created by the Volume Snapshot Service (VSS), which by default makes block-level differential shadow copies of a volume twice a day. VSS was originally designed to facilitate backing up open files making snapshots of volumes before backup runs so that open or locked files are successfully backed up. The Previous Versions tab, which can be found in the Properties dialog of a file or folder in Windows Explorer in Windows 7, shows the versions held in available shadow copies. From the Previous Versions tab, users can restore files or folders without assistance from IT.     Not only did Previous Versions provide limited protection because of the way VSS... --- ### Easier Than Ever to Protect Email with Office 365 > Office 365 has given its rights management capabilities a complete refresh. Clients deal with protected email better and it's easy to send protected email. - Published: 2017-10-26 - Modified: 2024-09-04 - URL: https://petri.com/protect-email-office-365/ - Categories: Microsoft 365, Office - Tags: AIP, encryption, Exchange Online, IRM, Office 365, OME, Outlook, owa, Protection, Rights management Office 365 has given its rights management capabilities a complete refresh. Clients deal with protected email better and it's easy to send protected email to people inside and outside your organization, including coverage of consumer email systems like Gmail and Outlook.com. And protected email works on mobile devices too. Offices 365 Refreshes Its Protection Capabilities Information rights management (IRM) has been available for on-premises deployments for years, yet relatively few companies use the technology to protect confidential material. Cost and complexity are often reasons cited for why companies avoid IRM. Both are less of an issue inside Office 365 as IRM (or Azure Rights Management) is part of the E3 and E5 plans and Microsoft does the heavy lifting to configure and run the service. At Ignite 2017, Microsoft shared details of how they have improved rights management for Exchange Online with a new simplified setup that makes it easier for users and tenants to protect email. Smarter clients create and consume protected messages and the Office 365 Message Encryption service gets a refresh. It’s all good stuff. Templates Rights management uses protection templates to define a set of rights that a recipient has for a file or message. When you enable rights management for a tenant, three default templates are available: Do Not Forward, Confidential, and Confidential – View Only. For instance, if you receive a message stamped as Confidential, you cannot print or copy its content. IRM also protects attachments, if they are in a format that supports IRM (like Word, PowerPoint, or Excel). You can create custom templates to meet different business needs, including templates scoped to certain users or groups. For example, you could have a template designed to protect ultra-confidential information belonging to those working on a specific project. If they are... --- ### Create a Cloud Storage Local Cache Using Azure File Sync - Published: 2017-10-25 - Modified: 2024-11-19 - URL: https://petri.com/create-cloud-storage-local-cache-using-azure-file-sync/ - Categories: Cloud Computing - Tags: Azure File Sync, Azure Files, cloud computing, File Server, Microsoft Azure, Windows Server - Article Type: Overview In this Ask the Admin, Russell Smith looks at how Azure File Sync works and how to enable it in the Azure management portal. Microsoft announced the availability of Azure File Sync in preview last week at MS Ignite. Azure File Sync turns a Windows fileserver into a lightweight, disposable, performance cache for Azure Files. In this Ask the Admin, I'll look at how Azure File Sync works and how to enable it in the Azure management portal.     Cloud storage to most people means Dropbox, OneDrive, or SharePoint. These services are popular because they integrate with Office and provide collaboration features. Azure Files provides a way to set up traditional SMB 3. 0 compatible file shares as a service in the cloud. This is especially useful for companies looking to migrate legacy on-premises apps that rely on files share to the cloud. Azure Files could be a replacement for on-site fileservers in some situations. This is especially true when you consider all the features offered by Azure Storage, such as automatic geographic replication, a single global infrastructure, storage tiering, and scaling on demand. As it stands, Azure Files shares don’t offer the same performance as a local fileserver. To solve that problem, Microsoft has released Azure File Sync. The idea is simple. Install an agent on a local fileserver that keeps directories in sync with an Azure Files share. Users access the local Windows Server instead of the cloud share. The local fileserver effectively acts as a cache for the cloud share. Microsoft has included cloud tiering as an optional feature that keeps frequently accessed files on the local fileserver but... --- ### Understanding G Suite Licensing - Published: 2017-10-25 - Modified: 2024-09-04 - URL: https://petri.com/understanding-g-suite-licensing/ - Categories: Office - Tags: Google G Suite, licensing, Office 365, Office 365 Licensing, Software Assurance, Volume Licensing - Article Type: Overview In today's Ask the Admin, Russell Smith explains the different licensing options for G Suite and how they compare to Office 365 plans. In today's Ask the Admin, I'll explain the different licensing options for G Suite and how they compare to Office 365 plans.     G Suite Plans Google keeps it simple. Unlike Microsoft Office 365 (O365) that has a bewildering set of plans on offer, G Suite has just three editions: Basic, Business, and Enterprise. Basic edition costs $5 per-user a month on the flexible plan and includes the following features: Business email through Gmail Video and voice conferencing Shared calendars Documents, spreadsheets, and presentations 24/7 support by phone, email, and online Security and administration controls 30GB cloud Business email through Gmail means that you get something similar to consumer Gmail but it uses your company domain name instead of joe@gmail. com. In fact, unlike O365, you can’t run a free G Suite trial unless you have already purchased a domain name. Google G Suite Editions (Image Credit: Russell Smith)   In addition to the features in Basic, Business edition ($10 user/month) has unlimited cloud storage (or 1TB per user if fewer than 5 users), search across the entire app suite, email archive and retention policies, eDiscovery features, and audit reports of user activity. The Enterprise edition ($25 user/month) was introduced earlier this year and builds on Business edition features to add Data Loss Prevention (DLP), which was previously available as part of Business edition, hosted S/MIME, integration with third-party archiving tools, enterprise-grade access control with security key enforcement, and Gmail log analysis in BigQuery... . --- ### Azure Preview for DDoS Protection > In this post I’ll discuss a new preview release in Azure, that offers us a protection service against distributed denial of service (DDoS) attacks. - Published: 2017-10-24 - Modified: 2024-09-04 - URL: https://petri.com/azure-preview-ddos-protection/ - Categories: Microsoft Azure - Tags: Azure, Azure DDoS Protection Service, Basic, DDOS, Ignite 2017, Security, Standard, Virtual Network, VNET, WAF, WAG, Web Application Firewall, Web Application Gateway - Article Type: Overview Aidan Finn discusses a new preview release in Azure that offers us a protection service against distributed denial of service attacks. In this post, I will discuss a new preview release in Azure that offers us a protection service against distributed denial of service (DDoS) attacks.   DDoS Attacks One of the top concerns of companies with online services is becoming the target of a DDoS attack. Whether this is a ransom attack or a motivated one (sabotage, competition, politics, ideology), a DDoS attack can shut down the online presence of a business. It can also bring that business to its knees if that online service is the main way of generating revenue. DDoS attacks are normally conducted by an army of bots, which are all managed by a central (probably compromised) server on the Internet. The bots are PCs and servers all around the world that have been taken over via a trojan downloader. Some bot networks (botnets) are maintained privately and some are available to rent – I presume with Bitcoins or with a credit card that you’ve stolen! Don’t make the mistake of thinking that DDoS victims are just political parties, TV networks, or large corporations. Just like with the many cyrpto-locker clones out there, DDoS attacks can be used to force a ransom out of a victim. Who is more likely to have no defense and be forced to pay? Will it be a large enterprise with lots of security facilities and IT budget or a small-medium business with little/no security facilities and IT budget? I have only witnessed a DDoS attack once. It targeted... --- ### Microsoft Puts Deis Acquisition to Work, Makes Kubernetes its Platform of Choice - Published: 2017-10-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-puts-deis-acquisition-work-makes-kubernetes-platform-choice/ - Categories: Uncategorized - Tags: Azure, Kubernetes, Microsoft, News - Article Type: News Microsoft is throwing its weight behind Kubernetes and is making it the preferred container for Azure. In April of this year, Microsoft announced that they would be acquiring Deis to push Azure deeper into the Kubernetes playing field. Today, the company is announcing the fruits of that labor with a new fully managed Kubernetes service. As is tradition with Microsoft, the naming of this service is a bit confusing. The company is calling the platform Azure Container Service but is abbreviating it AKS with the K being for Kubernetes. Here's the thing though, Microsoft is keeping their existing Azure Container Service with the abbreviation ACS which means that there are two platforms called Azure Container Service but one is ACS and the other is AKS. Confusing naming-scheme aside, the new preview of AKS is designed to make it easier to manage your Kubernetes environment on Azure with the ability to scale as needed. The company says that this new service features Azure-hosted control plane, automated upgrades, self-healing, easy scaling, and a simple user experience for both developers and cluster operators. In short, you can get the benefits of this open platform without the overhead complexity required to operate the platform. Microsoft is taking a slightly different approach to the fees it will charge for the service. On Azure, you will not be directly paying for the management of the infrastructure and instead, you will only pay for the VMs that are adding value to your operation. Microsoft pitches this as you only pay for what you use, not what the company uses for management... . --- ### Why You Should Use Microsoft's Active Directory Tier Administrative Model - Published: 2017-10-24 - Modified: 2024-09-04 - URL: https://petri.com/use-microsofts-active-directory-tier-administrative-model/ - Categories: Active Directory (AD) - Tags: Active Directory, Privileged Access Management, Security, Tiered Administrative Model - Article Type: Overview In this Ask the Admin, Russell Smith explains what Microsoft's AD tier administrative model is and how it can improve security. In this Ask the Admin, I'll explain what Microsoft's AD tier administrative model is and how it can improve security.     Access controls are an important defense mechanism for sensitive information systems. But access controls can be ineffective if poorly implemented. One bad decision can lead to a compromise. You only have to look at many organization’s Active Directory (AD) to realize that little thought has been put into how to grant access to the directory, domain controllers (DCs), and other sensitive assets. It is common to find IT support staff with domain administrative privileges, domain admin accounts used to log in to users’ PCs, and administrative user accounts and passwords shared across multiple devices. Microsoft has been working to reduce the impact of breaches caused by poor access controls. For example, Windows 10 Credential Guard aims to protect domain credentials on compromised PCs. The new Azure Confidential Computing initiative uses Trusted Execution Environments (TEEs) to protect unencrypted data as it is being processed. For more information on Azure Confidential Computing, see Microsoft Announces Azure Confidential Computing on the Petri IT Knowledgebase. You can read about Windows 10 Credential Guard on Petri here: Windows 10 Enterprise Feature: Credential Guard. Active Directory Administrative Tier Model Despite the security features Microsoft is including in Windows 10 and Windows Server 2016, implementing proper access controls is still an important defense. The tiered administrative model aims to help organizations to better secure environments. The model defines three tiers that create buffer... --- ### It’s the Small Changes in Office 365 That Make the Difference > Microsoft says they will communicate large changes in Office 365 better, but what about all the small changes that show up without warning. - Published: 2017-10-24 - Modified: 2024-11-19 - URL: https://petri.com/small-changes-office-365-make-difference/ - Categories: Microsoft 365, Office - Tags: Change Management, Office 365, owa, OWA mailbox policy, roadmap, Teams Microsoft says they will communicate large changes in Office 365 better, but what about all the small changes that show up without warning? Teams is a serial offender, perhaps because it's the new kid on the block and is rushing to replace Skype for Business Online. In any case, it would be nice if we heard about small changes before we found them. Detail Matters in the Office 365 Evergreen Cloud Much as I admire the efforts of the Office 365 change management people to make major changes more transparent to tenants, I cannot help wondering that their work is undermined by the way that small changes make it into the service. Microsoft has told us what they consider a major change. Introducing the Focused Inbox, moving Outlook for iOS and Android to use the Microsoft Cloud, availability of a new Office 365 datacenter region, and so on. The most recent example is the transition of Microsoft To-Do from preview to general availability. It is a good and logical list. What is not so good is the way that new features turn up on an ongoing basis without ever appearing in the Office 365 roadmap. Or indeed, without a notification to tenants in the Office 365 Message Center. The Clean Up Mailbox feature hidden in OWA Options is a good example. No roadmap item, no notification to tenants, just a new and useful feature appearing ready to go. Many Small Changes for Teams Microsoft Teams is a serial offender. If you look at the Teams section of the roadmap (Figure 1), you see some nice changes, including the introduction of the new 2,500 member limit for a team announced as available through Twitter on October 18. Figure 1: What the Teams developers are working on (image credit: Tony Redmond) Some features that need heavy lifting are in... --- ### SharePoint Online Administration Center: New and improved - Published: 2017-10-23 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-online-administration-center-new-improved/ - Categories: Microsoft 365, SharePoint - Tags: SharePoint Online Administration Center - Article Type: Review Jasper Oosterveld, Microsoft MVP en Consultant, is reviewing the new SharePoint Administration Center in Office 365. The last few years, our SharePoint experiences have all been modernized. Starting with the document libraries, pages, lists, web parts and team sites.     The SharePoint Online Administration Center hasn’t really changed since the release of Office 365 in 2010:     The major downside of the classic administration center is the absence of modern SharePoint Site Collections empowered by Office 365 Groups. These sites simply don’t appear in the site collections list. You have to use PowerShell to manage these. Showcased during the SharePoint Virtual Summit and officially announced at Ignite, the new and modern SharePoint Online Administration Center:   Apart from the clean look and feel, there are a ton of improvements: SharePoint Activity: The SharePoint usage reports from the Office 365 Administration Center are accessible. Message Center: The SharePoint messages from the Office 365 Administration Center are accessible. Service Health: The SharePoint Service Health from the Office 365 Administration Center are accessible.   All SharePoint related activities and statistics are now centrally available in the SharePoint Administration Center. That makes administrators lives easier because you immediately see your relevant information. Although these improvements are nice, Microsoft really steps up its game with the Site Management Page:   The overview is displayed as SharePoint List with filters. With a couple clicks, we can view all the Team Sites connected to an Office 365 Group. No more need for PowerShell. We can extend the default view with valuable columns such as external sharing or... --- ### What Are Azure Availability Zones? - Published: 2017-10-23 - Modified: 2024-09-04 - URL: https://petri.com/azure-availability-zones/ - Categories: Cloud Computing - Tags: 99.99%, Availability Sets, Availability Zones, Azure, Azure Virtual Machines, Datacentres., High Availability, Regions, service level agreement, SLA, virtual machines - Article Type: Overview Aidan Finn explains explains a new high-availability and service level agreement (SLA) feature of Microsoft Azure called availability zones. This post will explain a new high-availability and service level agreement (SLA) feature of Microsoft Azure called availability zones.   Availability Before Availability Zones Today, if you want an Azure virtual machine with an SLA, then you must deploy the virtual machine in one of two ways: Single virtual machine: The machine must be deployed only with Premium (SSD) storage – no Standard (HDD) storage – to qualify for a 99. 9 percent SLA. There is something about the nature of Premium Storage clusters in Azure that enables Microsoft to offer better availability for IaaS workloads. Availability Sets: Similar to the concept of anti-affinity in on-premises virtualization clusters, this tool spreads machines that share responsibility for performing a particular task across multiple fault domains and update domains inside a computer (Hyper-V) cluster. If you deploy machines in valid availability sets, the service that the machines perform qualifies for a 99. 95 percent SLA. Fault Domain (FD) and Update Domain (UD) Assignment in Azure Availability Sets (Image Credit: Microsoft) Single Datacenter We need to remind ourselves a little about Azure theory before we go forward. Let’s say that you deploy a pair of virtual machines, in an availability set, into the East US Azure region. This region is made up of numerous data centres (Microsoft never states how many data centers are in each region). Your virtual machines are deployed into a single data center. That data center can give you so much high availability, but every... --- ### Essential Components of a Successful DR Strategy - Published: 2017-10-20 - Modified: 2024-09-04 - URL: https://petri.com/essential-components-of-a-successful-dr-strategy/ - Categories: Backup & Storage, Hybrid Cloud, Virtualization, Windows Server - Tags: Cloud, Disaster Recovery, Virtualization, Windows Server 2012 - Article Type: Overview Learn about the essential elements for building a DR that works for your environment and all types of scenarios. Building a successful disaster recovery (DR) strategy for your business is anything but an easy task. Today’s businesses are complex -- often utilizing multiple platforms as well a mixture of hybrid cloud processes. A successful DR strategy enables you to minimize the downtime and lost data by enabling you to restore access to your critical applications and services as quickly as possible. Let’s have a deeper look at some of the essential components of a successful DR strategy. Start with the business priorities and requirements To create your DR strategy, you first need to take into account all the different aspects of the company’s recovery requirements. First, you need to identify your critical business processes. Make a list of the applications and services that your business requires along with the cost of downtime (lost sales and inability to operate the business) and identify any legal or compliance requirements. Next, make an estimate of the time required to restore the services and identify key operational personnel including the non-IT staff who are needed to run the business systems and the IT staff require to restore the services. Define your RPO and RTOs Next, understand what the Recovery Time Objectives (RTOs) and Recovery Point Objectives (RPOs) are for your critical applications and services. Your RTOs and RPOs will essentially drive your data protection technologies. RTO defines the time period that you have to recover your services – essentially answering the question how long can this application be down. RPO defines how much data... --- ### Paul Thurrott's Short Takes: October 20 - Published: 2017-10-20 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-20/ - Categories: Cloud Computing, Windows 10 - Tags: News - Article Type: Overview Because I'm about to be gonged again, this edition of Short Takes looks at Microsoft's market cap, the Fall Creators Update, Microsoft's iffy security disclosure history, and much more. Because I'm about to be gonged again, this edition of Short Takes looks at Microsoft's market cap, the Fall Creators Update, Microsoft's iffy security disclosure history, and much more. Microsoft market cap hits $600 billion For the first time since the Dot Com boom, Microsoft's market cap has soared past $600 billion, sending the "Microsoft is doomed" crowd scurrying back into their parents' basements. And it's literally been over 17 years: The last time the stock hit $600 billion was January 3, 2000, back when Microsoft literally ruled the personal computing industry. But Microsoft's stock performance in 2017 is a thing of beauty, and its risen over 25 percent this year, so far. And if you're wondering, no, Apple has nothing to fear: Its market cap is over $800 million. And Google's is over $687 billion. "Moving the Windows 10 Taskbar by Hand" Step 1, get a touchscreen. Microsoft speeds the Fall Creators Update rollout Microsoft delivered the previous Windows 10 feature update, the Creators Update, at a snail's pace in order to avoid the issues that plagued the Anniversary Update from mid-2016. But the firm surprised everyone this week when it started rolling out the Fall Creators Update to a vast array of device types. Anecdotally---since that's all we have to go on right now---it appears that this one is roaring out of the gates. And, go figure, it appears that there are relatively few issues. You know, anecdotally. Cross your fingers, knock on wood, or whatever... . --- ### The Cortana Smart Speaker is here, but is it your Office Assistant? - Published: 2017-10-20 - Modified: 2024-09-04 - URL: https://petri.com/review-cortana-smart-speaker-office-assistant/ - Categories: Hardware - Tags: Cortana, Harman Kardon, Invoke, review - Article Type: Review The Invoke is finally here but is Cortana inside a smart speaker the next great digital assistant or is it playing catchup? After what might have been the longest unveiling to release in recent memory, the device was announced in December of 2016, the Harman Kardon Invoke is finally here. I have had the device for a few days and I compiled what you need to know before you put down $199 to bring this device home. A little background about how I use these types of devices, I am an avid user of Amazon's Echo ecosystem and have a setup with various IoT devices. For me, the Echo is the center of my smart home and I would like to replace with a Cortana smart speaker. Why? Well, simply put, Cortana is everywhere. I have it on my PC and my phone and by tying it into my the rest of my house, it allows me to keep one central platform for all of my home and productivity needs. It's the second part of that sentence, the productivity aspect, as Cortana ties into Office 365 and LinkedIn, that provides a unique advantage that only Microsoft can offer that has me hopeful for this device. You see, Microsoft's Graph of all their services is incredibly powerful. For instance, using the graph, applications can query data from any other Microsoft service and it allows a service like Cortana to reach across your entire organization and provide contextual data about meetings, documents, or even if a conference room is available. Further, for someone in the sales team, imagine being able to ask Cortana... --- ### Azure Portal Life Hacks > This post contains a number of tips to help you make the most of the Azure Portal and reduce the amount of navigation and clicking required. - Published: 2017-10-19 - Modified: 2024-09-04 - URL: https://petri.com/azure-portal-life-hacks/ - Categories: Microsoft Azure - Tags: Azure, Azure Portal, Dashboards, Tags - Article Type: Overview Aidan Finn explains how you can make better use of the Azure Portal by using the features that we overlook. In this post, I will explain how you can make better use of the Azure Portal by using the features that we overlook. We focus most of our time figuring out the latest networking whiz-bang or untangling the ever-expanding maze of virtual machine series. However, we never pay much attention to the thing that Azure admins, operators, and devs are staring at all day: the portal.     Not Just For Azure Before we start looking at the Azure Portal features, I should remind you that the Azure Portal (which needs a rename, I think) is not just the -Azure- Portal. More and more services are moving into this portal, making this the MS cloud portal. Any organization with a “tenant”, think of that as an Azure Active Directory (AAD) domain, can use the Azure Portal. In fact, any user can sign in. They just can’t see or do anything unless they have been granted some rights. If an AAD global admin signs in, they can manage the domain, users, groups, and advanced features such as Azure AD Connect. Customers with AAD Premium (never buy AAD Basic because you will regret not buying Premium) licensing must use the Portal to manage their premium features, such as conditional access, branding, and so on. Other examples include the Intune portal and Azure Information Protection. I think I heard at Ignite that the OMS (Log Analytics) Portal was also moving into the Azure Portal.     Navigation Bar We will... --- ### The Useful Clean Up Mailbox Option Hidden in OWA > OWA now boasts a useful mailbox option, which is helpful if you feel that you need to remove some old and lingering email. - Published: 2017-10-19 - Modified: 2024-09-04 - URL: https://petri.com/owa-clean-up-mailbox-option/ - Categories: Microsoft 365, Office - Tags: Clean Mailbox, Exchange Online, Office 365, owa - Article Type: How To OWA now boasts a useful mailbox option, which is helpful if you feel that you need to remove some old and lingering email. The funny thing is that Microsoft doesn't seem to have told anyone about the feature - or my search-karma is failing me in finding any information about it. Even with Massive Mailboxes, Some Run Out Even with 100 GB mailbox quotas, some people do run out of space and need more to keep receiving new mail. There is no way to increase an Exchange Online mailbox quota past 100 GB, so if someone like this comes calling, you can recommend them to move a pile of email into an expandable archive or empty their Deleted Items folder to free space. Later, when the panic has abated, you might consider applying a retention policy to the mailbox to keep it under some sort of control. A New Option Or you can tell the user to fire up OWA and select some folders for cleaning with the very useful “Clean up mailbox” feature buried in OWA. Go to Options (cogwheel), select Mail, and voilà (Figure 1)!   A link to Clean up mailbox also appears under mailbox usage in the General section of options. Figure 1: OWA Options reveals “Clean up mailbox” (image credit: Tony Redmond) The feature appeared without warning. At least, no one from Microsoft said anything about it at the recent Ignite conference, I can find no documentation online, and it is not listed in the Office 365 Roadmap. The feature is unique to OWA and does not appear in Outlook desktop or the mobile clients. It’s a mystery, albeit a nice surprise. Cleaning Up Before you can do anything, OWA enumerates the folders in your mailbox and calculates how much space each... --- ### Azure Site Recovery Announcements from Ignite > This post is a summary of the announced new features that are coming to Azure Site Recovery, Microsoft's DR-as-a-Service solution in the cloud. - Published: 2017-10-18 - Modified: 2024-09-04 - URL: https://petri.com/azure-site-recovery-announcements-ignite/ - Categories: Microsoft Azure - Tags: ASR, Azure, Azure Site Recovery, Disaster Recovery, Disaster recovery-as-a-Service, DR, DRaaS, Hyper-V, Ignite 2017, vmware, vSphere - Article Type: Overview Microsoft announced several improvements to its cloud-based disaster recovery service, Azure Site Recovery at Ignite 2017. Microsoft announced several improvements to its cloud-based disaster recovery (DR) service, Azure Site Recovery (ASR) at Ignite 2017. Most of these features aren’t publicly available yet but should be either generally available or in preview in the coming weeks and months.     Reminder ASR is a DR service that covers three scenarios for Windows and Linux machines On-premises to on-premises replication for vSphere and System Center and Hyper-V customers On-premises to Azure replication for vSphere, System Center and Hyper-V, Hyper-V, and physical server customers Replicating Azure virtual machines from one Azure region to another – currently in Preview New Recovery Services Vault Dashboard Some customers were quite vocal about how difficult it was for them to manage their ASR deployments; they needed an overall view that could quickly dive into the details, highlighting exceptions that needed to be managed. As a result, a new dashboard for ASR is being added to the recovery services vault, the resource type in Azure that is used for managing ASR and Azure Backup. This new dashboard should provide comprehensive replication and failover monitoring. Azure Site Recovery Deployment Planner for Hyper-V We’ve had a version of the ASR Deployment Planner for VMware since March. VMware is a bigger market than Hyper-V, so I was OK with a planner being released for those customers first. Microsoft promised a version for Hyper-V by the end of Q2 of the calendar year 2017, but it had yet to surface by Ignite 2017 (end of Q3). I asked... --- ### Microsoft Announces SQL Server 2017 for Docker - Published: 2017-10-18 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-announces-sql-server-2017-docker/ - Categories: SQL Server - Tags: Database, DevOps, Docker, linux, SQL Server 2017 - Article Type: News In this Ask the Admin, Russell Smith looks at Microsoft SQL Server 2017 being available for the first time on Windows, Linux, and Docker and what this means for DevOps and database admins. Microsoft SQL Server 2017 is now available for the first time on Windows, Linux, and Docker. In this Ask the Admin, I'll look at what this means for DevOps and database admins.     When Microsoft announced that it was releasing SQL Server for Linux last year, it caused something of a stir. Microsoft hasn’t always embraced Linux. But times are different, and SQL isn’t the only Microsoft service or product that works on Linux. Notably, Microsoft Azure offers Linux-friendly services and is a member of the Linux Foundation. At its Ignite conference in Orlando last week, Microsoft announced that SQL Server 2017 is now available for Linux as a certified Docker image based on Ubuntu 16. 04. SQL Server for Linux is supported on Red Hat Enterprise Linux 7. 3, SUSE Linux Enterprise Server 12, Ubuntu, and Docker on devices with 3. 25GB of RAM.     Microsoft claims that performance is the same on both Windows and Linux, although the Linux version of SQL Server doesn’t have Reporting Services, Analysis Services, or Machine Learning Services. Replication is also missing but SQL Server on Linux has what it needs for high availability. And there’s no Stretch DB for hybrid local or Azure storage. File Table is also unsupported on Linux. Command-line management tools work on Linux but Microsoft expects you to use the Windows-based GUI management tools. What’s most interesting about the announcement is that the Docker image is SQL Server 2017 on Linux. There is an official SQL... --- ### Gallery: Hands On With 13in and 15in Surface Book 2 - Published: 2017-10-17 - Modified: 2024-09-04 - URL: https://petri.com/gallery-hands-13in-15in-surface-book-2/ - Categories: Hardware - Tags: Surface Book 2 - Article Type: News Microsoft has announced a new 15in Surface Book and they have also overhauled the internals of the 13in model too. This week, Microsoft announced the Surface Book 2 and it comes in two sizes, 13. and 15in. For a full list of the specs and a breakdown of each model, check out the announcement post here but for a closer look at the new hardware, take a look at the gallery below. For the most part, aside from the USB-C port, the exterior of the device should look very familiar. Microsoft hasn't changed up much about the device and it still features the distinguishable hinge and the same color too. There are a few minor other differences such as the connection points between the Surface Book base and display are a little bit taller and narrower. Additionally, the icons on the top row of the keyboard have changed and the keyboard layout now matches that of the Surface Laptop. Aside from these minor changes, it looks much like that last generation of the Surface Book. Take a look at the gallery below for a closer look at the size differences between the 13in and 15in models as well as the other updates with the new device. --- ### Microsoft Expands Surface Family with 15in Surface Book 2 - Published: 2017-10-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-surface-family-15in-surface-book-2/ - Categories: Hardware - Tags: Surface Book 2 - Article Type: News Microsoft has updated its Surface Book family to include updated internals like a quad-core processor and also a new 15in model. Nearly two years after introducing the Surface Book, Microsoft is adding a new member to the family, a 15in Surface Book 2. This new machine is bigger in every way and also packs significantly more power. The 15in Surface Book 2 is positioned as a high-end machine and comes with 8th gen Core i7 CPU with 256GB to 1TB SSD configurations and all iterations ship with 16GB of RAM (32GB is not currently offered). The GPU is getting a large bump as well to the NVIDIA GTX 1060 with 6GB of GDDR5 and when you don't need the power, Intel's 620 integrated graphics will carry the load. The display is 3240 x 2160 (260PPI) with 10 point multi-touch and a contrast ratio of 1600:1. As you would expect from the Surface family, the screen looks great but it is glossy too and not everyone may like that. The ports are being updated as well and this machine finally includes a USB-C port but it does not support Thunderbolt. In addition, there are 2x USB Type A 3. 1 USB ports, full-size SDXC card reader, headphone jack and Surface Connect port. While this device does have a USB-C port and it can charge over that connection, Microsoft is still using the Surface Connect port for providing power. The reason for this, Microsoft tells me, is that the device will charge significantly faster over this connection than the USB-C port at this time. If you are hell-bent on wanting to charge... --- ### Microsoft Makes Major Changes More Transparent for Office 365 > Based on user feedback and a horrible year of change management missteps, Microsoft is changing the way it handles major updates for Office 365. - Published: 2017-10-17 - Modified: 2024-09-04 - URL: https://petri.com/office-365-major-changes-transparent/ - Categories: Microsoft 365, Office - Tags: Change Management, major updates, Office 365, Standard Release, Targeted Release - Article Type: News Based on user feedback and a horrible year of change management missteps, Microsoft is changing the way it handles major updates for Office 365. The plan seems like it might work and let's hope that it does. No one wants to experience the same kind of update surprises we have seen in 2017. Relief on the Horizon On October 11, Microsoft released message MC123292 to Office 365 tenant administrators to tell them that they plan to improve the way they communicate major changes within Office 365. Sighs of blessed relief all round. Change Management Problems Change management has long been an issue for Microsoft. Despite an array of communication methods from the Office 365 Roadmap to weekly change digests emailed to administrators, Microsoft has just not been able to share news at the right time. The fiasco when news broke that Teams will replace Skype for Business Online two weeks ahead of schedule is one example. Changing how support works without telling people the reasons why is another. The March 2017 plan to create Office 365 Groups for managers based on their direct reports was  another disaster. Other Problems Not all the problems lie with Office 365 as the Azure Active Directory team has not helped either. In August, Office 365 tenants found out about the new sign-in experience on August 1, a day before the Azure AD people told us what they had done. The recent “clarification” about Azure AD Premium licensing requirements for Office 365 Groups and Teams included some shocks too. I could go on. However, what is important is that the folks who run change management for Office 365 understand that Microsoft has not been at its sparkling best when it communicates how and when change occurs. According to Microsoft, approximately 25 changes roll out within Office... --- ### AWS and Microsoft Announce Gluon - Published: 2017-10-16 - Modified: 2024-09-04 - URL: https://petri.com/aws-microsoft-announce-gluon/ - Categories: Cloud Computing - Tags: Amazon, AWS, Gluon, Microsoft, Neural Networks, News - Article Type: News Amazon and Microsoft recently announced Gluon, a new interface for open-source deep learning that enables developers to quickly and easily build efficient machine learning models. In a recent announcement, Microsoft and Amazon announced Gluon, a new open source deep learning interface that enables developers to create efficient machine learning models and enabling them to do so in a way that is quicker and easier than previously possible.     The Gluon interface provides developers with an API that enables access to a collection of pre-built neural network components that are optimized for efficiency right out of the box. This interface can be especially helpful to developers that are new to machine learning. It enables them to define and manipulate various models in a manner that is similar to traditional object-oriented code. For those developers who are more experienced with machine learning, the interface can also be quite useful. It enables them to create new prototypes. It is also useful for utilizing dynamic neural network graphs without having to put great amounts of effort into learning how to use new tools. When it comes to working with neural networks and deep learning, Gluon can prove quite useful. The interface includes several innovative features: An Easy to Use API -- Because Gluon enables developers to build and work with neural networks using code that is clear and easy to learn, it can make it easier to get started than in the past. Previously, developers would have to manually weight and score nodes. Dynamic Networks -- Unlike more traditional neural networks, Gluon enables networks to scale dynamically, which makes them easier to manage. Developers can also... --- ### Surface Studio: Long Term Update - Published: 2017-10-16 - Modified: 2024-09-04 - URL: https://petri.com/surface-studio-long-term-update/ - Categories: Hardware - Tags: Surface Studio - Article Type: Review As the Surface Studio comes up on its one year announcement anniversary, it's time to take a look back at using the device over a long period of time to see how it stands up today. Earlier this year, I reviewed the Surface Studio and have been using the device heavily since that post went live. As I have done with several of the Surface devices, it's time to take a look at the device once again with more than six months of usage behind it. As when I first reviewed the device, the design is still timeless. I believe Microsoft did an excellent job here and with extended usage, I enjoy the design as much today as I did when it was first unboxed. In addition, there are no obvious signs of wear or tear either despite the fact that I have lugged this thing all over town and use it frequently. In fact, in terms of hardware, there have been zero issues. Everything has performed flawlessly with no hiccups with the hinge or yellowing of the screen like you occasionally see in other high-end displays. The keyboard is still simply average, I much prefer a mechanical keyboard with longer key travel but the peripherals that ship with the Studio have held up well. If nothing else, ditch the mouse immediately as it is not ergonomic and is uncomfortable to use. Windows Hello continues to works well for those who like that type of feature. Personally, I prefer a PIN for authentication over using my face but for those that like the face-login option, this machine is a solid choice if you are looking for that functionality. And as expected, the screen is still... --- ### What Is Azure File Sync > This post explains how Microsoft is solving common file server problems such as capacity, backup, disaster recovery (DR), and inter-office collaboration. - Published: 2017-10-13 - Modified: 2024-09-04 - URL: https://petri.com/azure-file-sync/ - Categories: Microsoft Azure - Tags: Azure, Azure File Sync, Azure Files, Backup, Branch Offices, Cloud Storage, Disaster Recovery, DR, File Server, storage, StorSimple, Tiered Storage, Windows Server 2012 R2, Windows Server 2016, WS2012 R2, WS2016 I have known about Azure File Sync for quite a while under NDA and have been itching to start talking about it. It's a killer service that an incredible number of businesses could benefit from. Have you ever struggled with file server capacity? Would you like the same file shares to be available in multiple offices? Would you like to centralized the backup of file shares? Would you like all of that, but make it transparent and without compromising performance for users? Read on!     A New Hybrid Service Microsoft has managed to introduce Azure services into business without customers necessarily relocating or deploying applications in Azure. Services such as StorSimple (tiered storage appliance), Azure Backup, and Azure Site Recovery (disaster recovery) supplement existing investments in IT with cloud-based or cloud-first storage, backup, and DR solutions. Azure File Sync is another of these kinds of services that solves problems with the good ole’ file server, which exists despite the best efforts of SharePoint, OneDrive for Business and other efforts from Microsoft, its partners, and competitors. Azure File Service is in preview now and Microsoft is keen for you to test it and give your feedback. Synchronization The first function of Azure File Sync is to synchronize file shares (data and ACLs) to a (general) storage account using the Azure Files service. One can create a sync group and then specify a path on a file server to synchronize to Azure. A non-disruptive agent is installed onto the file server, meaning that there is no need to relocate data onto different volumes to take advantage of this service. Non-system data volumes are supported. The results of this are: Azure File shares are created... --- ### Paul Thurrott's Short Takes: October 13 - Published: 2017-10-13 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-13/ - Categories: Amazon Web Services, Cloud Computing, Mobile - Tags: News - Article Type: Overview Because autumn is in the air, this edition of Short Takes looks at Microsoft's new Amazon partnership, Windows phone is dead again, a new privacy problem, and much more. Sign the license agreement or Teddy gets it. Because autumn is in the air, this edition of Short Takes looks at Microsoft's new Amazon partnership, Windows phone is dead again, a new privacy problem, and much more. Strange bedfellows: Microsoft teams with Amazon in the cloud When Microsoft and Amazon announced that they would link Cortana and Alexa, their respective digital personal assistants, it was curious, but it wasn't earth-shattering. But this week, hell may have actually frozen over, with the two companies announcing another partnership, this time in the cloud: Microsoft and Amazon Web Services (AWS) are teaming up on Project Gluon, a cloud-based deep learning library that they say will "allow developers to prototype, build, train and deploy sophisticated machine learning models for the cloud, devices at the edge and mobile apps. " Everything about this announcement is weird. But here's what really stands out to me: The word "Azure" doesn't appear in it even once. What the heck. "Sony's projector that turns your surface into a touchscreen is now available" My Surface already is a touchscreen. Oh, I see. Satya Nadella admits to smartphone defeat Microsoft spent a lot of time this week belatedly explaining that it has, in fact, surrendered the smartphone market. Which, you may recall, I reported had happened over two years ago. But for some reason, people need to hear this again and again. So this week, Satya Nadella was asked about whether the firm would ever make... --- ### Windows Server 2016: Understanding Microsoft’s Enhanced Security Administrative Environment - Published: 2017-10-12 - Modified: 2024-11-19 - URL: https://petri.com/windows-server-2016-understanding-microsofts-enhanced-security-administrative-environment/ - Categories: Windows Server - Tags: Active Directory, Enhanced Security Administrative Environment, Microsoft Identity Manager, Privileged Access Management, Privileged Identity Management, Security, Shadow Principals, Windows Server 2016 - Article Type: Overview In today's Ask the Admin, I'll look at Microsoft's recommendations for securing Active Directory forests using its Enhanced Security Administrative Environment model. In today's Ask the Admin, I'll look at Microsoft's recommendations for securing Active Directory forests using its Enhanced Security Administrative Environment (ESAE) model.     It is no secret that security is a major headache for organizations in today’s Internet-connected landscape but securing existing production Active Directory (AD) forests can be difficult for two reasons. In many cases, production forests may already be compromised. And the only way to be sure that hackers no longer have control is to rebuild the forest from scratch. This is a task that is costly and unrealistic in many cases. Secondly, it may not be possible to harden production forests enough to provide sufficient protection for highly privileged domain accounts. Doing so would break functionality in the domain. To address these issues, new features in Windows Server 2016, including Shadow Principals and short-lived AD groups, help businesses take control of production Active Directory (AD) forests by implementing a specially hardened AD forest for administration. Microsoft’s complete solution for this is ESAE. Not only does ESAE allow better security to be applied to privileged accounts but it also allows the provisioning of standard user accounts in the administrative forest that are granted Just-in-Time (JIT) administrative access to production forests. Enhanced Security Administrative Environment Admin Forest (Image Credit: Microsoft)   For more information on JIT administration, short-lived AD groups, and Privileged Identity Management (PIM) trusts, see Windows Server vNext Privileged Access Management and Windows Server 2016: Set Up Privileged Access Management... --- ### Office 365 Growth Doesn’t Reduce SLA Performance > Office 365 continues to grow strongly but all the added users do not seem to have impacted the reliability (SLA) of the service. - Published: 2017-10-12 - Modified: 2024-09-04 - URL: https://petri.com/office-365-growth-good-sla-performance/ - Categories: Microsoft 365, Office - Tags: Availability, Office 365, Service Level, SLA - Article Type: Opinion Office 365 continues to grow strongly but all the added users (and tenants) do not seem to have impacted the reliability of the service, at least not measured by performance against the guaranteed 99.9% SLA for availability. Incidents do steal minutes away from users, but not enough to make a difference. Strong SLA Performance Since 2013 Office 365 continues to grow strongly and contribute to Microsoft’s cloud resources. Now supporting more than 100 million monthly active users, Office 365 has experienced some recent hiccups in service quality, but if you look at the Service Level Availability (SLA) quarterly data for Office 365 posted by Microsoft, it shows that service availability has been robust since 2013 (Table 1), which is when Microsoft first started to publish the SLA results. Q1 2013 Q2 2013 Q3 2013 Q4 2013 Q1 2014 Q2 2014 Q3 2014 Q4 2014 99. 94% 99. 97% 99. 96% 99. 98% 99. 99% 99. 95% 99. 98% 99. 99% Q1 2015 Q2 2015 Q3 2015 Q4 2015 Q1 2016 Q2 2016 Q3 2016 Q4 2016 99. 99% 99. 95% 99. 98% 99. 98% 99. 98% 99. 98% 99. 99% 99. 99% Q1 2017 Q2 2017 99. 99% 99. 97% Table 1: Office 365 SLA performance since 2013 The latest data, posted for Q2 2017 (April through June), shows that Office 365 delivered 99. 97% availability in that period. The Q2 result marked a slight decrease in availability over the prior seven quarters. Even so, the fact that a massive cloud service posts 99. 97% availability is impressive. Financial Commitment Microsoft takes the SLA seriously because they “commit to delivering at least 99. 9% uptime with a financially backed guarantee. ” In other words, if the Office 365 SLA for a tenant slips below 99. 9% in a quarter, Microsoft will compensate the customer with credits against invoices. Last November, I posed the question whether anyone still cared about the Office 365... --- ### Microsoft Announces Azure Confidential Computing - Published: 2017-10-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-azure-confidential-computing/ - Categories: Cloud Computing - Tags: #MSIgnite, Azure, cloud computing, enclaves, Intel SXG, Security, trusted execution environment - Article Type: Overview In this Ask the Admin, Russell Smith provides a brief overview of Microsoft's Azure Confidential Computing technology and looks at how it might help persuade otherwise hesitant organizations to move sensitive data to the cloud.   In this Ask the Admin, I'll provide a brief overview of Microsoft's Azure Confidential Computing technology and look at how it might help persuade otherwise hesitant organizations to move sensitive data to the cloud.     Persuading organizations to move sensitive data, such as Personally Identifiable Information (PII) and financial data, to the public cloud is a challenge that faces cloud service providers (CSPs). Businesses are reluctant to hand over data where it might be compromised by insiders with administrative privileges to the CSP’s infrastructure or by hackers that exploit vulnerabilities in hypervisors or operating systems. And because most public clouds are multitenant, i. e. you share the infrastructure with other customers, you don’t have the assurance that data is always under your control. Microsoft is hoping to address many of these concerns with Azure Confidential Computing (ACC), a new initiative that is currently accessible via an Early Access Program. ACC is the result of four years’ research and it encrypts data that is in use. Azure already provides encryption for data at rest and over the network but data must be decrypted so that it can be processed efficiently. Trusted Execution Environment Microsoft’s solution is to protect data in an enclave, or Trusted Execution Environment, as it’s being processed ‘in the clear’. Enclaves ensure that data inside cannot be viewed by anything on the outside, providing access only to authorized code. If the code is tampered with, access to the enclave is denied... . --- ### Google Launches Cloud Firestore - Published: 2017-10-11 - Modified: 2024-09-04 - URL: https://petri.com/google-launches-cloud-firestore/ - Categories: Backup & Storage, Cloud Computing - Tags: Cloud, Firestore, Google, News, storage - Article Type: News Google announced Cloud Firestore, a fully-managed NoSQL document database that is designed to easily store and sync app and website data at global scale. Recently Google announced Cloud Firestore, a new service within Google's Firebase platform that provides an easy to use document database for both mobile and web app development.  Cloud Firestore uses NoSQL to store app data, which can be synced between users and devices at a global scale.     Powered by Google's cloud infrastructure, Cloud Firestore can easily scale to accommodate an increase in data, users, or traffic. This is enabling developers to focus on their apps and websites and not on managing the underlying database or the servers that power them. https://www. youtube. com/watch? v=QcsAb2RR52c Data stored with Cloud Firestore can easily be structured using collections and documents and developers can create data hierarchies to store related data. This makes it easy to query the database and get the information that is needed. What’s more is that every query scales with the size of the result set and not the size of the dataset. This makes it easy to query and return data at consistent speeds, regardless of how much data is being queried.     The service supports a variety of SDKs, including those for iOS, Android, and the web, and even provides support for offline data access via a local database. Using these SDKs, developers can build apps that are reactive and sync data in real-time through the use of listeners coded into the apps. Should an app not require real-time data syncing, developers also have the option to simply call a method to retrieve the data whenever... --- ### 4 Ways to Add a Secondary Administrator to OneDrive for Business - Published: 2017-10-10 - Modified: 2024-11-19 - URL: https://petri.com/4-ways-add-secondary-administrator-onedrive-business/ - Categories: Microsoft 365, SharePoint - Tags: Office 365, OneDrive for Business, SharePoint Online - Article Type: How To Adding a secondary administrator to OneDrive For Business in Office 365 is a very common ask for an Office 365 Administrator. Fortunately, this task can be achieved in at least 4 different ways as this article describes. Adding a secondary administrator to OneDrive For Business (ODFB) in Office 365 is a very common ask that from time to time you, as an Office 365 Administrator, might be asked to do. This would be so another user (or yourself) can take the ownership of a user’s ODFB. At times, there is a requirement to take the control of another's data. Fortunately, this task can be achieved in at least 4 different ways as I will demonstrate in this article: By means of the Office 365 Admin Center By using the SharePoint Online (SPO) User profiles service settings in the SPO Administration By means of PowerShell using SPO standard cmdlets By means of PowerShell using SPO Client Side Object Model (CSOM)     Adding a Secondary Administrator to User’s ODFB from the Office 365 Admin Center As an Office 365 Administrator, you can easily take the ownership of an existing user’s ODFB by using the “Access files” option available when selecting a user in the Users Management section: Browse Office 365 Administration portal and then go to the Users Management section. In the users' list, just select an existing user so that the user’s details panel is shown. In the user’s detail panel, scroll down until you see the OneDrive settings section that allows you to become the administrator of the user’s OneDrive by simply clicking on Access files link. Figure 1 -- OneDrive Settings Section in the Users’ Details Panel Once you click on the Acces files... --- ### AAD Licensing for Groups and Teams Features Burdens Office 365 Tenants > Microsoft clarified what AAD features need premium licenses at Ignite. Tenants need many of those features to control Office 365 Groups and Teams. - Published: 2017-10-10 - Modified: 2024-09-04 - URL: https://petri.com/aad-licensing-groups-teams/ - Categories: Microsoft 365, Office - Tags: AAD, Azure Active Directory, Groups, licensing, Office 365, Planner, Premium, Teams - Article Type: Opinion Microsoft clarified what AAD features need premium licenses at Ignite. Tenants need many of those features to control Office 365 Groups and Teams, and some of the listed features are surprising. Did you know that the group creation policy is a premium feature? Or adding a default classification. The chosen set of features seems odd, but at least Microsoft is now clear about what you must license. Microsoft Reveals New Licensing Information at Ignite No one likes to be forced to pay extra for a facility that they have used for over a year. It is not a nice feeling to see a bill coming for something previously regarded as free. That's what happened at the Ignite 2017 conference when Microsoft laid out the AAD licensing requirements for Office 365 Groups. Premium AAD Features for Office 365 When Microsoft introduced recent new functionality to manage Groups, such as the expiration policy and the naming policy, they have been clear that these are premium features and need to be licensed. However, the overall situation around what features Microsoft regarded as premium was still unclear. It came as a relief when several Ignite sessions about Groups included a slide to clarify when premium licenses are necessary. I included the slide (Figure 1) in my wrap-up for Ignite. Some questions from readers resulted. Some asked about the logic behind the need for premium licenses to have a URL displayed to users (usage guidelines) or to apply a default classification to a new group. Others were more upset that Microsoft charges for dynamic Office 365 Groups and the naming policy because the equivalent features for distribution lists are both free in Exchange Online. Figure 1: Azure Active Directory licensing requirements (image credit: Microsoft) A Short-Sighted Approach I have some sympathy for this view because I think that Microsoft is being short-sighted here. After all, if... --- ### Azure Networking Announcements from Ignite > Microsoft announced lots of new generally available and preview features for networking in Azure at the Ignite 2017 conference. This post has all the news. - Published: 2017-10-09 - Modified: 2024-09-04 - URL: https://petri.com/azure-networking-announcements-ignite/ - Categories: Microsoft Azure - Tags: Accelerated Networking, Azure, Data Plane Data Kit, DDOS, DNS, DPDK, ExpressRoute, Load Balancer, macOS, Network Security Groups, networking, NSG, point-to-site, Service Endpoints, Site-to-Site, Traffic Manager, Virtual Network, VNET, VNet Peering, VPN - Article Type: Overview Aidan Finn describes the many networking announcements that were made at Microsoft Ignite 2017. This post will describe the many networking announcements that were made at Microsoft Ignite 2017.     Some Statistics Microsoft likes to tell us how cloud-scale its Azure regions are whether it’s trillions of objects or millions of petabytes. A couple of statistics were shared about the networking in Azure: Up to 1. 6 Pb/s of intra-regional capacity Nearly 2 million miles of fiber in the data centers I guess they should be able to get 4K streams from Netflix on that! Global VNet Peering Last year, Microsoft announced VNet Peering; a way to very easily connect virtual machines in different virtual networks. This solution didn’t require gateways and allowed virtual machines to communicate at NIC speeds rather than at lower gateway speeds. A big restriction was that VNet peering only worked inside of a region and VNet-to-VNet VPN was required for inter-region VNet integration. This year, Microsoft announced that inter-region VNet peering is being added as a design option, thus greatly simplifying communications between virtual machines in different regions. This feature is currently in preview in limited regions. Azure DDoS Protection Service A new security service is being added to protect virtual networks from DDoS attacks from the Internet, supplementing the basic service that is already there. Over 60 types of attack are protected against with layer-7 (application) protection coming from the Application Gateway Web Application Firewall. AI is being used to provide adaptive tuning and the protection will integrate with Azure Monitor and alerting. VNet Service... --- ### Choosing an Azure Virtual Machine - September 2017 > This post will help you decide which of the Azure virtual machine (VM) series and size you should choose for your IaaS-based application deployments. - Published: 2017-10-09 - Modified: 2024-09-04 - URL: https://petri.com/choosing-azure-virtual-machine-september-2017/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, virtual machines - Article Type: Overview Aidan Finn explains how to select an Azure virtual machine series and size, including updates to past versions of this post, adding the D_v3, E_v3, and L_v2 virtual machines, as well as using the Azure Compute Unit (ACU) measurement. This post will explain how to select an Azure virtual machine series and size, including updates to past versions of this post, adding the D_v3, E_v3, and L_v2 virtual machines, as well as using the Azure Compute Unit (ACU) measurement.   Order From The Menu Azure is McDonald's, not a Michelin Star restaurant. You cannot say, “I would like a machine with 4 cores and 64GB RAM and a 200GB C: drive. " That simply is not possible in Azure. Instead, there is a pre-set list of series of machines and within those series, there are pre-set sizes. Unless you upload your own template, the size of the OS disk is always the same. It does not matter what the pricing pages claim as the disk size. (It is actually the size of the temp drive. ): Standard (HDD) un-managed disk: 127GB Premium (SDD) un-managed disk or Standard/Premium managed disk: 128GB Any data you have goes into a data drive, which you specify the size of (and therefore control the cost). Remember that storage (OS and data disks) costs extra! Sizing a Virtual Machine There are two basic things to consider here. The first is quite common sense. The machine will need as much RAM, CPU (see Azure Compute Units later in this article), and disk as your operating system and service(s) will consume. This is no different than how you sized on-premises physical or virtual machines in the past. Other elements of capacity that are dictated by the size of... --- ### The Azure IaaS Announcements from Ignite 2017 - Published: 2017-10-06 - Modified: 2024-09-04 - URL: https://petri.com/azure-iaas-announcements-ignite-2017/ - Categories: Cloud Computing - Tags: Automation, Azure, Azure Cost Management, Azure Virtual Machines, B-Series, Batch, Cloudyn, Configuration, DSC, Governance, IaaS, Ignite 2017, linux, Maintenance, Managed Disks, Microsoft Ignite, NV_v2, Patching, Python, RBAC, Reserved Instances, Scale Sets, Security, Serial Console, Updates, virtual machines - Article Type: Overview Aidan Finn shares a summary of the improvements to the Azure virtual machine and related services and features announced at the Microsoft Ignite 2017 conference. This post is a summary of the improvements to the Azure virtual machine and related services and features announced at the Microsoft Ignite 2017 conference. B-Series Virtual Machines A couple of things were announced just before Ignite but were talked about here at the conference. The B-Series virtual machine runs on Intel Xeon processors but is a much lower cost option than a D_v2-, DV_3, F- or A_v2-Series machine. This is because Microsoft achieves higher levels of virtual machine:host densities by limiting processor performance. You earn credits by staying below this threshold and can burn those credits during the current billing period to remove the performance cap. This type of virtual machine will be great for cost-optimizing “burstable” workloads. Availability Zones Also shared just before Ignite started, availability zones allow customers to spread a machine-based service across multiple data centers within a single region so that they don’t share common power and network points of failure. With this comes increased high availability with the offered SLA promising 99. 99 percent uptime for the service. Note that this is still not a DR solution; you will need to replicate machines to another region using Azure Site Recovery for a DR design. Availability Zones Concept Reserved Instances Microsoft lists virtual machine costs on a per-hour basis but we are actually charged for every minute that the virtual machine is running. Microsoft is adding (back) a reserved instance option, which was previously available (and removed) from the Enterprise... --- ### Windows Store Apps Can Compromise PC Security - Published: 2017-10-06 - Modified: 2024-09-04 - URL: https://petri.com/windows-store-apps-can-compromise-pc-security/ - Categories: Windows Client OS - Tags: applocker, Device Guard, Hosted Web Apps, Progressive Web Apps, Security, Windows 10, Windows Store, Windows Store For Business - Article Type: Opinion In this Ask the Admin, Russell Smith explains why you should use application control to restrict which Windows Store apps users can run. In this Ask the Admin, I’ll explain why you should use application control to restrict which Windows Store apps users can run.     Most security experts agree that curated application stores are beneficial in helping protect operating systems from malware. Windows Store brought with it the promise of more secure personal computing. And it can lead to a more secure environment. But there are several ways developers can use the store to compromise a PC. As reported by Ed Bott on ZDNet last year, an app he downloaded from the Windows Store called Torrenty contained a hyperlink that appeared to provide an update to the app. When the user clicks on the update link, it opens the default browser and downloads a file called setup. exe. To the unsuspecting user, it might seem like a genuine update for the Windows Store app. But the file installs a win32 BitTorrent client. As Bott points out, it could have been much worse. Setup. exe might have installed a keylogger or ransomware. Torrenty is no longer available in the Windows Store. Torrenty was a Universal Windows Platform (UWP) app and would have needed to pass Microsoft’s approval process before it was published in the store. The inclusion of a hyperlink that tricked users into downloading a separate app should have been flagged as an issue but Microsoft’s approval process for apps at the time was clearly flawed. The ability to launch hyperlinks from UWP apps provides an easy way for developers to break... --- ### Paul Thurrott's Short Takes: October 6 - Published: 2017-10-06 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-6/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Overview Because I'm in a real Groove this week, this edition of Short Takes looks at Microsoft Edge on Android and iOS (no, really), rumors of an impending death for Microsoft Surface, Microsoft's share price, and much, much more. RoboPaul. "I'd buy that for a dollar. " Because I'm in a real Groove this week, this edition of Short Takes looks at Microsoft Edge on Android and iOS (no, really), rumors of an impending death for Microsoft Surface, Microsoft's share price, and much, much more. Microsoft brings its Edge browser to Android and iOS. No, seriously Bowing to massive customer pressure, Microsoft this week finally announced what its users have been demanding: It will bring Microsoft Edge to Android and iOS. OK, just kidding. About the "massive demand" bit, anyway: Microsoft really is bringing Edge to mobile, and while I'll understand why you're checking the calendar to see if April 1 has arrived a bit early, there is good reason for this move: For those (few) people who do want to use Edge on Windows 10, there is currently no way to sync things like bookmarks, history, reading list, passwords, open tabs, settings, and so on. And Edge Mobile, as I'll call, will certainly address that need. Now if we could only figure out a way for more than 5 percent of PC users to actually use Edge, maybe we'd have something to get excited about. "Microsoft could become the 'Ticketmaster of eSports,' analyst says" Huh. And here I was thinking they'd become the 'Grandmaster Flash' of music services. Will Microsoft kill off Surface in 2019? In a curiously specific prediction that is based on nothing more than one person's psychological profiling of Microsoft... --- ### Upgrading your Infrastructure with the Hybrid Cloud - Published: 2017-10-05 - Modified: 2024-09-04 - URL: https://petri.com/upgrading-your-infrastructure-with-the-hybrid-cloud/ - Categories: Backup & Storage, Cloud Computing, Hybrid Cloud, Hyper-V, Microsoft Azure, VMware - Tags: Azure, Backup, Cloud, hybrid cloud, Hyper-V, Virtualization - Article Type: Overview Hybrid IT has many use-cases and while it's not for everyone, the vast majority of scenarios can benefit from this model. There’s no doubt the businesses today are rapidly adopting hybrid cloud technologies. The cloud’s cost-effective storage, pay-as-you-go model, and global access make it a valuable asset to all types of organizations. The hybrid cloud computing model brings with it several important new capabilities that can significantly upgrade your IT infrastructure and processes. Let’s take a closer look at some of the most effective ways you can upgrade your IT operations using the hybrid cloud. Cloud Backup One of the easiest and most effective ways to upgrade your infrastructure using the hybrid cloud is to move your backups to the cloud. The cloud provides very cost effective storage which makes it a natural choice for backups. Backing up to the hybrid cloud can enable your organization to replace older legacy tape and other offsite storage technologies. Cloud services like Azure Backup and several applications like SQL Server 2014 and higher offer integrated cloud backup capabilities for your on-premise systems. When using the cloud as a backup target it’s important to realize that there is a tradeoff between backup performance and storage costs. While the cloud is typically less expensive, the latency for cloud backup and restore operations is higher than on-premises backup and restore. Cloud HA and DR One of the other ways that the hybrid cloud can modernize your IT environment is by using it to enhance your application’s availability and disaster recovery capabilities. Technologies like vSphere Replication, Hyper-V Replica, and SQL Server AlwaysOn Availability Groups (AGs) have the ability to use... --- ### PowerShell Classes Part 5 -- Classes or PSCustom Objects? - Published: 2017-10-05 - Modified: 2024-09-04 - URL: https://petri.com/powershell-classes-part-5-classes-pscustom-objects/ - Categories: PowerShell - Tags: Automation, Intermediate, PowerShell, Scripting - Article Type: How To Custom PowerShell objects are one way to represent a set of data as a single object and so are PowerShell classes. In this article, take a look at some of the similarities and differences between the two object structures so that you can best define custom objects for your needs. Introduced with PowerShell 5. 0, Programming with Classes in PowerShell benefits a wide range of scripters and toolmakers, from developers experienced in object-oriented programming to sysadmins who are completely new to scripting. However, with any programming or scripting language, there may be more than one way to accomplish a task and one way may be better or more efficient than another. This article explores a traditional PowerShell programming approach using a custom object and compares it to an object-oriented approach using classes.     Recap and Reasons for the Comparison There are four articles to date in this series on PowerShell classes. The first article introduces object-oriented programming terminology and the concept of a class. Part two discusses custom types using Enums, and the third article discusses class methods. Lastly, part four talks about defining the specific properties needed for a class using constructors and class inheritance. After Part 1 published, a reader asked if I was going to talk about custom objects vs. classes and I thought that would make a great topic to round out the series. To the reader who requested this, thank you for the idea! Revisiting the Class Definition for ConstructionMaterial As a quick recap, the ConstructionMaterial class has 4 properties: Color, Shape, Size, and Location. Size’s data type is an enum that can only be of the values Small, Medium, or Large. For this example, I am not defining any specific constructors. My example object of type ConstructionMaterial is named $ClassObj. ​ Using a... --- ### Windows Defender Exploit Guard Replaces EMET in Fall Creators Update - Published: 2017-10-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-defender-exploit-guard-replaces-emet-fall-creators-update/ - Categories: Security - Tags: EMET, Security, Windows 10, Windows Defender Advanced Threat Protection, Windows Defender Exploit Guard, Windows Defender Security Center - Article Type: Overview In this Ask the Admin, Russell Smith looks at the technical details of how Windows Defender Exploit Guard will replace the Enhanced Mitigation Experience Toolkit (EMET) in Windows 10. In this Ask the Admin, I'll look at the technical details of how Windows Defender Exploit Guard (WDEG) will replace the Enhanced Mitigation Experience Toolkit (EMET) in Windows 10.     The Fall Creators Update is bringing additional security features and changes for enterprise customers, including improvements to Windows Defender Security Center and Advanced Threat Protection (ATP). Windows Defender Application Guard will allow administrators to isolate untrusted websites in Edge using hardware virtualization and Exploit Guard replaces EMET. Microsoft’s EMET, which can be used to harden the security of apps like Internet Explorer, was retired at the end of last year. While each new version of EMET protected against exploits at the time of release, without customers having to wait for the next version of Windows, hackers found ways to bypass EMET because the mitigations were not durable and often worked in ways that caused OS and app stability issues. So, Microsoft decided to retire EMET to focus on providing a better experience in Windows 10. Managing Exploit Guard in the Windows Defender Security Center in Windows 10 Fall Creators Update (Image Credit: Russell Smith)   Because Windows 10 is Software-as-a-Service, the latest defense mechanisms can be integrated directly into the OS. It is shipped to customers much faster than in previous versions of Windows, which received feature upgrades only once every 3-4 years. EMET will be supported through to January 2018 for customers that do not have immediate plans to upgrade to Windows 10... . --- ### Microsoft's Bringing Edge to iOS and Android - Published: 2017-10-05 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-edge-ios-android/ - Categories: Mobile - Tags: Android, Edge, iOS, Microsoft, News, Webkit - Article Type: News Microsoft is bringing its Edge browser to iOS and Android but this also means that they are now actively developing two different browser platforms. With Microsoft no longer pursuing its own mobile platform, the company has found itself in a peculiar position of trying to figure out how to support cross-platform scenarios. Specifically, when it comes to a browser, the company was stuck between a rock and a hard place. Why? If you want to play inside of Apple's walled garden, you must play by their rules. One such rule is that all browsers must use WebKit as the rendering platform but Edge uses its own Trident engine. Thus, if Microsoft wants 'Edge' on iOS, it had to play by Apple's guidelines. Alas, Microsoft has announced today that they are bringing Edge to both Android and iOS which means that the company is now building Edge with also a WebKit rendering engine on iOS and Chromium engine on Android. While I do not think that Microsoft will stop building its Trident engine for the desktop version of Edge or switch to WebKit for the desktop anytime soon, the company is now effectively building two versions of its web browser. That being said, this is a good move for Microsoft and Edge. With the app release, which is now in beta testing and you can sign up here, Microsoft can finally support cross-device browsing experiences with Edge. This is actually a big deal as it has been a missing component of the Edge ecosystem that was supported by other browsers. But there is also bad news too. This beta is only for US residents... --- ### The Big Flaw in Exchange Online Auditing > You can capture Exchange mailbox events in the Office 365 audit log, but only if you remember to enable auditing for target mailboxes. - Published: 2017-10-05 - Modified: 2024-11-19 - URL: https://petri.com/flaw-in-exchange-online-auditing/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: audit log, Compliance, Exchange Online, mailbox auditing, Office 365 - Article Type: Opinion You can capture Exchange mailbox events in the Office 365 audit log, but only if you remember to enable auditing for target mailboxes. Exchange Online doesn't enable new mailboxes for auditing by default, so administrators must remember to enable the mailboxes manually - and check for new mailboxes periodically. If you don't, nothing is recorded and your audit log will be empty. Ingesting Office 365 Audit Events When I wrote about the Office 365 Audit Log last month, I noted that the log holds entries from many different workloads, including SharePoint Online, Exchange Online, Teams, and so on. The ingestion into the log puts audit data extracted from Office 365 workloads through a normalization process (Figure 1) to make sure that audit events have common properties, such as the date and time. Figure 1: The Office 365 Audit Log pipeline (image credit: Microsoft) The detailed information held in the events and the quantity of the events depends on the workload. Some workloads generate many events daily, others are more taciturn. Some need to do better – the Teams product group acknowledged that they have work to do here during Ignite. But overall the system works, and the unified audit log delivers a lot of benefit. Exchange Auditing Exchange Online generates audit events from two sources. Administrative events are those generated by administrators and background processes when they perform actions like creating new mailboxes or updating the Exchange configuration, including events generated by the datacenter administrators. You do not have to do anything to force Exchange to generate administrative audit events. It happens automatically. Mailbox Auditing Mailboxes are the other source of Exchange audit events. Exchange groups mailbox audit events into three categories – owner, delegate, and administrative. You can configure mailbox auditing to capture a range of events, such as hard-deleting messages. In most cases, audit... --- ### Windows Server 2016: Short-Lived Active Directory Group Membership - Published: 2017-10-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-short-lived-active-directory-group-membership/ - Categories: Windows Server - Tags: Just-In-Time Administration, PAM, PIM, Privileged Access Management, Privileged Identity Management, Security, Windows Server 2016 - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to temporarily add users to Active Directory groups. In today's Ask the Admin, I'll show you how to temporarily add users to Active Directory groups.     The Just-in-Time (JIT) administration model was introduced in Windows Server 2016 and allows system administrators to grant users privileges for a limited period of time. Adding to PowerShell Just-Enough-Administration (JEA), which restricts users to a pre-defined list of cmdlets, parameters, and modules in a PowerShell session, the JIT model has two objectives. The first is to prevent privilege creep where users are granted elevated privileges for much longer than necessary or indefinitely. And secondly, to avoid permanently assigning privileges that might only be required for short periods of time. The ability to add users to groups with a time-to-live (TTL) value is a feature of the JIT model. This can be useful in scenarios where you do not have the resources to set up Microsoft’s recommended infrastructure for JIT administration but would still like to benefit from short-lived Active Directory (AD) group membership. For more information on PAM in Windows Server 2016 and Microsoft’s recommendations for implementing JIT administration, see Windows Server vNext Privileged Access Management on the Petri IT Knowledgebase. Use Short-Lived Active Directory Group Membership I am not going to show you how to set up a Privileged Identity Management (PIM) trust or how to configure Shadow Principals but just how to add users to AD groups and have them automatically removed after some time. Add an Account to an Active Directory Group... --- ### Post-Ignite 2017 Reflections About Office 365 > After returning from the Ignite conference, I have pages of notes to pour over. Here are some of the more interesting things i learned about Office 365. - Published: 2017-10-03 - Modified: 2024-09-04 - URL: https://petri.com/post-ignite-2017-reflections-office-365/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange on-premises, Exchange Online, licensing, Microsoft 365, Office 365, Office 365 Groups, Outlook Mobile, SharePoint Online, Teams - Article Type: News After returning from the Ignite conference, I have pages of notes to pour over. Here are some of the more interesting things i learned about Office 365, including who should be in my "inner loop" and "outer loop", why Microsoft talks about Microsoft 365 when they really mean Office 365, and some Exchange Online cmdlets I had not heard about before. Winding Down from Ignite Like any major technology conference, it is important to separate out what is available today and the future functionality announced at the event. I have already covered some of the major Office 365 announcements in other others (like multi-geo capabilities, upgrades for Office 365 Admin, the transition of Skype for Business Online to Teams, and some new hybrid features for Exchange Online). This post is a collection of other random updates from the conference. Inner and Outer Loops Office 365 offers a spectrum of collaboration technology from plain old email to Microsoft Teams. Although an impressive range of capabilities are available in the tools, it can be confusing for users to sort out which tool is best in any situation. In terms of communication alone, should I send an email, chat with someone in Teams (or Skype for Business), or post something in Yammer or a SharePoint site? Well, Microsoft introduced the notion of “loops” to the discussion in a way that reminded me of “the circle of trust” from the movie “Meet the Fockers” (Figure 1). Figure 1: Office 365 Teamwork (image credit: Microsoft) Apparently, the people you communicate with through Teams are your inner loop because you work with them regularly in a way that does not need email. On the other hand, Yammer is the outer loop where you broadcast your thoughts to the entire community. I can see how you can make the case for the... --- ### Configure DNS to Enable a Trust Between Two Active Directory Forests - Published: 2017-10-02 - Modified: 2024-09-04 - URL: https://petri.com/configure-dns-enable-trust-two-active-directory-forests/ - Categories: Windows Server - Tags: Active Directory, Conditional Forwarder, DNS, Name resolution, Trust, Windows Server 2016 - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to set up DNS in Windows Server so that you can establish a cross-forest trust. Before you can create a cross-forest trust in Active Directory, DNS name resolution needs to be working between the two forests. In today's Ask the Admin, I'll show you how to set up DNS in Windows Server so that you can establish a cross-forest trust.     A robust DNS infrastructure is critical for a healthy Active Directory. DNS can be automatically set up and configured when you install a domain controller. But when you need to create a trust between two AD forests, you will have to perform some manual configuration in DNS to ensure that name resolution works between the two forests. Secondary Zones and Delegation There are different ways to set up name resolution between two DNS domains. One is creating a secondary zone on your DNS server. A secondary zone contains a complete copy of a DNS zone from another DNS server. For example, I could create a secondary zone for pim. contoso. com on a DNS server running in the ad. contoso. com domain. Delegation allows a domain’s root DNS server to resolve queries for subdomains. When creating a delegation, you specify the subdomain to delegate and the IP address or fully-qualified domain name (FQDN) of the DNS server that will host the delegated zone. For instance, a root DNS server hosting contoso. com could delegate DNS for ad. contoso. com to another DNS server. Stub Zones and Forwarding Stub zones are copies like secondary zones but contain just Name Server (NS), Start of Authority (SOA), and sometimes glue Host... --- ### Windows Server 2016: Set Up Privileged Access Management - Published: 2017-10-02 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-set-privileged-access-management/ - Categories: Windows Server - Tags: Just-In-Time Administration, Privileged Access Management, Privileged Identity Management, Security, Shadow Principals, Windows Server 2016 - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to implement Privileged Access Management (PAM) in Windows Server 2016. In today's Ask the Admin, I'll show you how to implement Privileged Access Management (PAM) in Windows Server 2016.     Privileged access to Active Directory (AD) and other sensitive systems is often granted to IT staff permanently. Hackers target these users as they provide an easy way to compromise an entire network. To help combat the problem, Microsoft recommends organizations adopt its Enhanced Security Administrative Environment (ESAE) model where a hardened administrative forest (bastion forest) is dedicated to managing AD and enables organizations to regain control over already compromised domains. Just-In-Time Administration As part of the ESAE initiative, Just-in-Time (JIT) administration was introduced in Windows Server 2016 and it allows system administrators to grant users privileges to resources for a limited period of time. Adding to Just-Enough-Administration (JEA), which restricts users to a pre-defined list of PowerShell cmdlets, parameters, and modules in a PowerShell session, the JIT model has two objectives: Prevent privilege creep where users are granted elevated privileges for much longer than necessary Avoid permanently assigning privileges that might only be required for short periods of time For more information on using JEA, see PowerShell 5. 0 Just Enough Administration (JEA) Part 1: Understanding JEA and Configuring the Demo Toolkit and PowerShell 5. 0 Just Enough Administration (JEA) Part 2: Creating Toolkits and Understanding Logs on the Petri IT Knowledgebase. Shadow Principals and PIM Trust Shadow Principals are new in Windows 2016 and are created in the bastion forest. Shadow Principals mirror objects in your production forest,... --- ### Microsoft's Roadmap Shows What's Ahead for Office 365 - Published: 2017-10-02 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-office-365-roadmap/ - Categories: Microsoft 365 - Tags: Ignite 2017, News, Office, Office 365 - Article Type: News Last week, Microsoft announced several new features coming to Office 365 and now we have a roadmap to make sense of all the announcements. Last week at Ignite, Microsoft announced several key updates to many of its products including Windows 10 S and Microsoft 365. In addition to a new version of on-premises iteration of Office, Office 365 is also being updated as well. To help keep everyone updated on when and where the new features will arrive, the company created a roadmap that outlines the features arriving over the next 3 quarters. It's worth pointing out that the roadmap is a bit dated as it shows items released in Q3 which ended on September 30th. As with all roadmaps, the feature release cadence is subject to change but this image should give you a rough idea of when all the large updates should arrive. If you are looking at this roadmap and are concerned that in Q1 and Q2 feature deployment looks slim, there's no reason to be alarmed. While Microsoft goes as far to qualify these quarters by saying that they will add new features to this timeframe in the future, they also don't want to announce everything today in the event they can't meet the deadlines set by this roadmap. Microsoft is heavily invested in Office 365 and many of its platforms are growing each year. SharePoint has been a huge success under the Office 365 umbrella and Teams is showing a lot of promise too. --- ### Windows 10 Protected Event Logging - Published: 2017-09-29 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-protected-event-logging/ - Categories: Security - Tags: encryption, PowerShell, Protected Event Logging, Security, Windows 10, Windows Management Framework - Article Type: Overview In this Ask the Admin, Russell Smith looks at how Protected Event Logging is implemented in Windows 10. Protected Event Logging is a new feature in Windows 10 and uses a cryptographic standard designed for event logs to prevent sensitive data getting into the hands of hackers. In this Ask the Admin, I'll look at how this feature is implemented in Windows.     Collecting information about exactly what is happening across your systems is usually a good thing, even if it can be hard to process so much data. PowerShell script-block logging, when enabled, writes code to the Windows Event Log that ran even if a hacker attempts to evade detection by using encoding. But with all this information stored in the logs, there is a risk that sensitive information, like credentials, could be exposed if the logs are compromised. For more information on how hackers try to avoid detection, see What Is Antimalware Scan Interface (AMSI) in Windows 10? on the Petri IT Knowledgebase. To protect sensitive data that might find its way into the event log, Windows 10 Protected Event Logging (PEL) encrypts data using the IETF Cryptographic Message Syntax (CMS) standard as it is written to the logs. The logs can be decrypted once they have been moved to a centralized log server using Windows Event Forwarding. PEL is not enabled by default and PowerShell is the only participating application in Windows 10.   CMS Encryption The CMS encryption standard used by PEL is public key cryptography. A public key is deployed to all machines where Windows PEL is enabled... . --- ### Exchange Relieves Hybrid Deployment Blockers for On-Premises Customers > Some changes are coming relatively soon to relieve the complexity and overhead of deploying and managing hybrid Exchange organizations. - Published: 2017-09-29 - Modified: 2024-09-04 - URL: https://petri.com/hybrid-deployment-blockers-exchange/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange Online, Hybrid, Office 365 - Article Type: News Revealed at the Ignite conference, Microsoft plans to make some changes relatively soon to relieve the complexity and overhead of deploying and managing hybrid Exchange organizations. Microsoft also showed how to move mailboxes between tenants. It's a small part of the tenant-to-tenant migration scenario, but it's good to see it happening. Easing the Path to Office 365 At the very interesting “Thrive as an enterprise organization in Microsoft Exchange Online” session at the Ignite conference, Microsoft's Jeff Kizner discussed some of the issues that block on-premises customers from moving to Office 365. The focus here is specifically on Exchange, but it’s important because email is often the first workload that moves to Office 365. Fixing the Delegate Chain Microsoft acknowledges that many of the scenarios for delegate access to mailboxes break in hybrid configurations. This is a major source of frustration to customers, especially when users want to give access to other people whose mailboxes are on the other platform. For example, a manager’s mailbox is on-premises and their assistant is in the cloud. The good news is that Microsoft is working hard to provide cross-platform delegate access for Exchange hybrid organizations. You will be able to grant Full Access, Send As, and Send On Behalf Of permissions to users and expect the permissions to work no matter what platform their mailbox is on. Send On Behalf Of is coming first and should be available before the end of 2017. Send As is more difficult because the feature depends on permissions stored in Active Directory, but it is coming. A Better Hybrid Connector for Exchange I see a lot of potential in what Microsoft called an “Exchange Hybrid Connector” to solve some issues that customers have in configuring network firewalls to support hybrid Exchange traffic. Not everyone is happy... --- ### Paul Thurrott's Short Takes: September 29 - Published: 2017-09-29 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-29/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because I'm suffering from Ignite fever, this edition of Short Takes looks at Satya Nadella's book tour, Microsoft's Ignite messaging, Microsoft stores data in DNA, Google and Apple are best buds again, and much more. Because I'm suffering from Ignite fever, this edition of Short Takes looks at Satya Nadella's book tour, Microsoft's Ignite messaging, Microsoft stores data in DNA, Google and Apple are best buds again, and much more. Too soon? Satya Nadella markets his leadership skill Satya Nadella is a polarizing figure, of sorts. He can be credited with navigating Microsoft away from the bad behavior of its past and for aggressively pushing the firm to a future of AI, machine learning, and cloud computing. But he's also laid off many tens of thousands of employees, has cut beloved product lines, and has been nothing but confusing when it comes to mobile strategy. So naturally, he's written a new book telling the world what a genius he is. Which, quite frankly, is my first real beef with him: He's only been the CEO of Microsoft for three years and there is zero evidence that the direction he's chosen will propel the software giant to sustained success. What I'd have rather seen is a book by Steve Ballmer, who can explain the ups and downs of his many years as Microsoft's CEO, and how it was he, and not Mr. Nadella, that actually put the software giant on its current path. After all, "mobile first, cloud first" is just a cute way to saying "devices and services. " Which was Steve Ballmer's idea. "Microsoft's Satya Nadella shares the leadership lesson in watching Amazon win the cloud business" Losing is not leadership. Nadella offers... --- ### Microsoft Withdraws Plans to Charge for Office 365 Inactive Mailboxes > A leak in the UK revealed a plan to require Office 365 inactive mailboxes to have licenses. Storage costs, but for inactive mailboxes? - Published: 2017-09-29 - Modified: 2024-09-04 - URL: https://petri.com/no-licenses-office-365-inactive-mailboxes/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Inactive Mailboxes, licensing, Office 365 - Article Type: News A UK-based leak revealed a plan to require Office 365 inactive mailboxes to have licenses. Storage costs, but because Microsoft told people to use inactive mailboxes for purposes such as keeping content for ex-employees, it wasn't a good idea to suddenly demand licenses. Good sense prevailed and the plan isn't going ahead. A New License for Inactive Mailboxes Just before Ignite, a UK-based publication reported that Microsoft planned to require Exchange Online inactive mailboxes to have a new license. Inactive mailboxes are a cloud-only feature that Office 365 tenants use to preserve the mailboxes of ex-employees or as a migration target for information ingested from legacy archives. On-premises organizations do not need inactive mailboxes because they can keep mailboxes for as long as they want, assuming that enough storage is available. Against the Trend Microsoft has long emphasized the advantage of having all your data in the cloud. Inactive mailboxes are part of this approach because the mailbox contents are indexed and available for eDiscovery. To now reverse tack and begin to require these mailboxes to have Exchange Online Inactive User licenses came as a surprise. Costs for Inactive Mailboxes It is possible to construct a case to justify a small charge for inactive mailboxes. After all, Microsoft has to install and maintain the storage for inactive mailboxes. A large tenant might have several thousand inactive mailboxes belonging to ex-employees that they keep for a year or so after an employee leaves. If each mailbox holds an average 20 GB, five thousand occupy nearly 100 TB. Storage is cheap and Microsoft buys it at volume, but that 100 TB is quadrupled because every mailbox database has 4 copies, so Microsoft needs to manage 400 TB of mailbox data, Include the content indexes for the mailboxes and at least 500 TB... --- ### The "CPU Burst" B-Series Azure Virtual Machine > This post discusses the new Azure B-Series virtual machines, which use "burst-able" processor utilization to greatly reduce costs. - Published: 2017-09-28 - Modified: 2024-09-04 - URL: https://petri.com/cpu-burst-b-series-azure-virtual-machine/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, B-Series, virtual machines - Article Type: Overview Aidan Finn shares information about a new ultra-low-cost series of Azure virtual machine that is perfect for light workloads with intermittent requirements of higher CPU utilization. This post contains information about a new ultra-low-cost series of Azure virtual machine that is perfect for light workloads with intermittent requirements of higher CPU utilization.   Background Many headlines are occupied with “more” and “bigger”. It is easy to get excited about machines with 128 virtual processors, 2TiB RAM, huge amounts of flash disk capacity, or GPUs that are designed for running neural nets. But in reality, most workloads are small. A cloud like Azure is like a paper clip factory. It makes its money from producing tons of the small stuff. To date, the lowest cost virtual machines that one might consider for production workloads are the A_v2-Series. You might consider the Basic A-Series but it has some limitations, such as disk speed and the lack of compatibility with the Azure load balancer (NAT and load balancing rules). The A2_v2 with 2 cores and 4GiB RAM costs approximately $84. 08 per month in the West US 2 region. That might not sound like much but if that machine is lightly used, that relatively low price can rule out Azure as an option. Over in AWS, you can find something called a T2 Instance. This is a low-cost virtual machine that makes itself more affordable by offering less CPU performance per virtual processor. The virtual machine earns credits by staying under a processor utilization cap. Should the virtual machine go over that cap, it burns those credits. Once there are no credits, the host reduces CPU performance back... --- ### Office 365 Multi-Geo Solves Data Sovereignty but not Network Problems > Microsoft will release Office 365 multi-geo tenants to general availability in early 2018. You can then deploy Exchange Online and SharePoint Online - Published: 2017-09-28 - Modified: 2024-09-04 - URL: https://petri.com/office-365-multi-geo/ - Categories: Microsoft 365, Office - Tags: Data Sovereignty, Exchange Online, Ignite, Multi-Geo, Office 365, OneDrive for Business, SharePoint Online - Article Type: News Microsoft will release Office 365 multi-geo tenants to general availability in early 2018. You can then deploy Exchange Online, OneDrive for Business, and (later) SharePoint Online across multiple Office 365 datacenter regions. It's good for data sovereignty, but won't solve network problems. Microsoft announced multi-geo capabilities for Office 365 tenants at Ignite. More details have emerged over the last few days in conference sessions. In addition, we have had some time to digest the information and reflect on some issues that people need to understand about this new capability. Here’s a summary of the issues discussed at Ignite. Multi-Geo Tenants Microsoft has been running a pilot of multi-geo Office 365 tenants for a few months and are approaching the point when they will make this feature generally available in early 2018. Multi-geo means that a tenant spans multiple Office 365 datacenter regions. When a tenant is first created, it exists within a home datacenter region. Generally, tenants and their core data (Exchange and SharePoint) stay in that datacenter region unless Microsoft offers the chance to relocate, which really only happens when they introduce a new datacenter region, what happened when the U. K. datacenter region commenced operations in October 2016. Multi-geo is a way of making sure that user data resides in a specific Office 365 datacenter region even if the tenant’s home region is different. The usual reason why this happens is to satisfy a data sovereignty requirement, which is the reason why Novartis (a trial customer cited by Microsoft) embraced multi-geo. For example, your tenant might be homed in the U. S. , but you have some users based in the U. K. In this case, you could configure your tenant to be multi-geo and Microsoft will move the data belonging to... --- ### Analyzing New Site Theming Options for SharePoint Online - Published: 2017-09-27 - Modified: 2024-09-04 - URL: https://petri.com/analyzing-new-site-theming-options-sharepoint-online/ - Categories: Microsoft 365, SharePoint - Article Type: How To, Overview New site theming options for SharePoint Online are starting to be rolled out to First Release Office 365 tenants.   As promised by Microsoft at the SharePoint Virtual Summit and announced by Mark Kashman in this post published in the Microsoft Tech Community, new site theming options for SharePoint Online (SPO) are starting to be rolled out to First Release Office 365 tenants. While this feature looks promising, it only provides quick “cosmetic” changes to the look and feel of modern team sites and it’s not available in classic SPO. Specifically, we will be able to apply those quick cosmetic changes on the following SPO site types:  Modern SPO Sites linked to Office 365 Groups. As you know, we can create modern SPO Sites from OWA, SPO landing page, Microsoft Teams, Planner, PowerShell or by using SPO / Office 365 APIs. SPO Communication sites.     Let’s see how to this feature works in a new fresh Communication Site: From the SPO landing page let’s create a new SPO Communication site choosing one of the available templates. Note that I have chosen the “Showcase” template. Figure 1. - Creating the Communcation Site.   Once the site is ready, click on Settings –> Change the look so you can access to the new theming options: Figure 2. - Accessing the “Change the look” setting.   Then, a Change the look panel with the 6 themes available (Blue, Orange, Red, Purple, Green, Gray) will be displayed. You can select any of these themes and change the look & feel of your site on the fly without applying the theme. You will... --- ### IBM Announces Cloud Mass Data Migration - Published: 2017-09-27 - Modified: 2024-09-04 - URL: https://petri.com/ibm-announces-cloud-mass-data-migration/ - Categories: Backup & Storage, Cloud Computing - Tags: Cloud, Data, IBM, mass, migration, News, storage - Article Type: News Earlier this week, IBM announced Cloud Mass Data Migration, a new service that enables organizations to quickly and easily transfer large amounts of data to IBM’s cloud infrastructure. Earlier this week, IBM announced Cloud Mass Data Migration, a new service that enables organizations to quickly and easily transfer large amounts of data to IBM’s cloud infrastructure. What makes this particular data migration solution unique is that the data transfer is actually done without having to upload it all to the cloud using the Internet. In fact, the data transfer is done by physically shipping the data to IBM, who will then upload the data to the IBM Cloud Platform. With this data transfer method, an organization can order a Mass Data Migration portable storage unit (which looks like a rolling plastic container) from IBM, who will pre-configure and ship the unit to the organization. From there, the portable storage unit can be connected to the organization’s network so that the organization’s data can be loaded onto the device. IBM Cloud Mass Data Migration Portable Storage Device Once all of the desired data has been loaded onto the device, it is then shipped back to IBM, at which point the data is offloaded to IBM Cloud Object Storage, giving the organization access to their data along with the ability to use it across the IBM Cloud Platform. Following this, the Mass Data Migration portable storage unit is then erased using Department of Defense level guidelines. What’s more is that this entire process can be completed in as little as seven days - something that might take much longer if large amounts of data are uploaded... --- ### Tony’s Office 365 Snippets from Ignite – Day 2 > Day 2 at Ignite featured news about SharePoint, Exchange, Office 365 Groups, and Teams, And on a personal note, I had the chance to speak twice. - Published: 2017-09-26 - Modified: 2024-09-04 - URL: https://petri.com/tonys-office-365-snippets-ignite-day-2/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Groups, Ignite, Office 365, SharePoint Online, Teams - Article Type: News Day 2 at Ignite featured news about SharePoint, Exchange, Office 365 Groups, and Teams, And on a personal note, I had the chance to speak twice. That was nice, but I'm exhausted and there's still three days to go. The second day of Ignite featured some important general sessions like the one for SharePoint and some interesting technical sessions covering different aspects of Office 365. Here’s what I got from day 2. Network Simplicity is Beautiful The Office 365 team took the opportunity to drive home the message that network simplicity is the way to help users get the performance they expect when accessing Office 365. They made a pretty good argument that Office 365 traffic should not be handled in the same way as regular Internet traffic and should therefore be trusted and bypass network proxies or not be forced through intermediate cloud services. I think this is reasonable because Office 365 traffic goes to a trusted destination. Too many hops between user and Office 365 leads to unhappiness and poor performance. Groups Gets Drag n’ Drop The Office 365 Groups team told a session that Outlook clients will soon support drag and drop to move items from user mailboxes into group conversations. OWA will be first to support drag n’ drop followed by Outlook 2016 (click to run) and then Outlook for Mac. This small but important feature will allow people to share information better with groups, so it’s welcome. It will also help tenants who deployed site mailboxes to move information to Office 365 Groups. Other Groups News Microsoft is going to update the read/unread model for items in group conversations so that items are treated as read or unread, just like it works for... --- ### SharePoint's Future Continues to Look Bright - Published: 2017-09-26 - Modified: 2024-09-04 - URL: https://petri.com/sharepoints-future-continues-look-bright/ - Categories: SharePoint - Tags: News, SharePoint - Article Type: News Microsoft's SharePoint platform continues to grow at a healthy rate and the company has successfully transitioned the majority of its users to the cloud. If you would go back about five years and tell me that SharePoint would be growing quickly and have a wide range of fans of the platform, I'd think you are crazy. At that time, SharePoint felt disconnected and functionally, it could be tough to manage. Fast forward to today and the platform looks to be growing at a healthy rate and Microsoft has successfully managed to move a significant number of users from on-premises to its cloud solution.  At Ignite today, I had the chance to talk with Seth Patton of Microsoft and he shared a number of stats highlighting how well the platform is performing. For starters, there are now 300,000 organizations using the platform as part of Office 365; this is up from 250,000 from May of this year. In addition, 65% of all SharePoint seats are online with about 35% on-premises remaining. While Microsoft would not specifically say this, the remaining 35% of SharePoint users can likely be classified as the legacy at this point as the future of the platform is in the cloud. I know it may seem odd to get excited about SharePoint, but the platform has a serious following and is one of the quiet services that Microsoft has that is a huge business for the company. The collaboration platform is adding features (read about some of them here) at a feverish pace and its penetration into the enterprise world is growing deeper with each passing month. The future of SharePoint continues... --- ### Microsoft Announces Office 2019 - Published: 2017-09-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-office-2019/ - Categories: Office - Tags: News, Office, Office 2019 - Article Type: News Microsoft has announced a new version of Office for on-premises users and it will arrive in the second half of 2018. Today at Ignite, Microsoft announced the next on-premises version of its productivity suite called Office 2019. This is a perpetual release of Office and for those who are not using Office 365, this will come as a welcomed announcement. This version of Office will be released in the second half of 2018 and it includes Office apps (Word, Excel, PowerPoint, and Outlook) and servers (including Exchange, SharePoint, and Skype for Business). If you are wanting to test these new updates, you will have to wait until the middle of 2018 for the preview to begin. Microsoft isn't saying exactly what is new but is instead using broad terms like adding new IT capabilities for customers who are not already using cloud services along with inking updates and enhancements to Excel. For anyone using Office 365, none of these features will be new to you as Microsoft frequently updates that platform with new tools. The bigger announcement here is that with this release, provided Microsoft sticks to its traditional support cycle, means that there will be an on-premises version of Office until 2029. But, I wouldn't be surprised if this is the last version of this software for on-premises users as Microsoft is heavily pushing all users towards the cloud. Several years ago, a new version of Office would be a huge release for Microsoft but with cloud services, on-premises users will be catching up to what Office 365 customers are using today. That being said, I know that... --- ### Office 365 Admin News from Ignite 2017 > Microsoft made a number of announcements about improvements they are making to Office 365 administration at the Ignite 2017 conference. - Published: 2017-09-26 - Modified: 2024-11-19 - URL: https://petri.com/office-365-admin-news-ignite-2017/ - Categories: Microsoft 365, Office - Tags: Admin Roles, administration, Office 365, Reports - Article Type: News Microsoft made a number of announcements about improvements they are making to Office 365 administration at the Ignite 2017 conference. Here's a synopsis of what was announced from support for scoped administration using Azure AD admin units to a new "Usage Score." Lots of Change in Office 365 At the Ignite conference in Orlando, Microsoft revealed that they had rolled out 150 changes in Office 365 in the last year. These are roadmap features and Microsoft acknowledged that some smaller features find their way into production without much fanfare (or notification). Microsoft also made a series of announcements about changes in Office 365 administration that you can expect to see over the next year. This article covers the announcements about Office 365 administration to help you know what to expect in Office 365 Admin between now and mid-2018. Of course, given the ever-changing nature of the service, other changes will happen too! New Usage Reports Microsoft is naturally keen that tenants understand how much use people make of different Office 365 applications and includes usage reports for Exchange, SharePoint, OneDrive for Business, and Yammer in the Reports section of the Office 365 Admin Center. Microsoft Teams is a relatively new kid on the block, but when Microsoft announced external access for Teams, they said that 125,000 Office 365 tenants now use the technology. A new usage report for Teams is coming, which will tell you the activity in channel conversations, private chats, meetings, and calls. You can expect to see the Teams reports in about two weeks. Available now is the ability to assign a new reports reader role so that people can access Office 365 reports without having administrator permissions (Figure 1). This is a welcome step forward. Users... --- ### Tony's Snippets from Ignite 2017 (Day 1) > Everyone has a different experience at a massive conference like Microsoft Ignite. Here's some personal notes from Day 1 of the 2017 event. - Published: 2017-09-25 - Modified: 2024-09-04 - URL: https://petri.com/ignite-2017-day-1/ - Categories: Exchange Server, Microsoft 365, Office - Tags: Exchange 2019, Ignite, Office 365, Teams Everyone has a different experience at a massive conference like Microsoft Ignite. Here's some personal notes from Day 1 of the 2017 event. As always, my conference days are a mixture of sessions, chats, and walking. The first day of Ignite is traditionally when Microsoft lays out its product vision in a series of carefully-choreographed keynote and general sessions. We got what we received in Orlando, much of which has already been reported in-depth elsewhere. Here’s my personal take on Day 1. Crowds and Miles to Walk Elsewhere, after navigating the huge crowds on walkways between the West and South parts of the Orange County Convention Center to attend keynotes, general sessions, breakouts, and take a tour of the technology exhibition, I managed to clock up 10. 5 miles of walking, according to my Fitbit. As expected, the crowd was especially dense going in and coming out of Satya Nadella’s keynote. It is now much easier and more pleasant to view keynotes online than to attend them in person. Quantum Computing Some asked why the discussion of quantum computing occurred during the keynote (Figure 1). After all, this is technology that is a long way out in practical terms, rather like it has taken HP eight years or more to bring “The Machine” forward to a point where developers can contemplate writing code for the platform. Figure 1: Satya gets into quantum computing (image credit: Tony Redmond) But making a highly public statement that Microsoft is thinking about the future of computing is an important message to give to the world and given Microsoft’s passive investment in cloud datacenters, it is reasonable to assume that they might be able to deploy... --- ### Transitioning Skype for Business Online to Microsoft Teams > Microsoft confirmed that they will transition Skype for Business Online to Teams over the next year or so. - Published: 2017-09-25 - Modified: 2024-09-04 - URL: https://petri.com/transitioning-skype-teams/ - Categories: Microsoft 365, Office - Tags: Office 365, Skype for Business Online, Teams, Transition - Article Type: News At the Ignite conference in Orlando, Microsoft confirmed that they will transition Skype for Business Online to Teams over the next year or so. Here's how the transition will happen. One Client to Rule Them All In a blog post today, Microsoft confirmed the news inadvertently disclosed on September 7 that a transition is under way to replace Skype for Business Online with Microsoft Teams. Given that we have had two weeks to digest the potential impact of the news, it didn’t have quite the shock that it might otherwise have. Here’s what’s happening. Two Clients, Two Back-Ends Today, Microsoft has the Skype for Business client and the Teams client. Each client has its own unique capabilities and is connected to a different back-end. The Skype for Business Online back-end is an evolution of what evolved for on-premises deployment with Office Communications Server and Lync, albeit a platform that now hosts high-end features like PSTN Conferencing, Cloud PBX, and PSTN Calling that allow companies to replace traditional telephony systems with Skype for Business running on-premises or within Office 365. Teams uses “a new, modern Skype infrastructure for enterprise-grade voice and video communications” shared with Skype consumer. Microsoft emphasizes that because new infrastructure is hosted in the cloud, they can innovate and introduce new features rapidly. Upgrades Coming Teams currently supports audio and video calls. However, it doesn’t support some of the advanced enterprise-focused telephony features found in Skype for Business. Over the next few months, Microsoft says that Teams will gradually acquire new features to become the primary client for business communications inside Office 365. As examples of what you can expect, Microsoft says that they will soon... --- ### It's Official: Skype For Business Sidelined in Favor of Teams - Published: 2017-09-25 - Modified: 2024-09-04 - URL: https://petri.com/official-skype-business-sidelined-favor-teams/ - Categories: Messaging, Microsoft 365 - Tags: Microsoft, Microsoft Teams, News - Article Type: News Microsoft has made the news official, Skype for Business will be going away and Teams is the new future for communication. The news accidentally leaked earlier this month but today at Ignite, Microsoft is making it official, Skype for Business is going away in favor of Teams. But, if you are still using Skype for Business and have no intentions of switching yet, there is some good new for you as well. Microsoft is moving to make Teams the core communication client in Office 365 with the full intent that it will replace Skype for Business. To make this possible, Teams will be upgraded with new calling and meeting features including inbound and outbound calls to PSTN numbers, hold, call transfer and voicemail; audio conferencing will also be coming in preview. This change is likely going to make quite a few nervous who have invested heavily into Skype for Business. For those users, Microsoft is not abandoning them (yet) as there will be a new version of Skype for Business Server out in the second half of 2018. But, knowing that Microsoft is moving its preferred communication tool to be nested inside of Teams, you can expect that new features will arrive for that platform first going forward. Because of this, while you do not have to move your infrastructure to the Teams-based model today, you should start thinking about how you may do this one day as eventually, Skype for Business will go away. This is a big change for Microsoft as it means the end of the Skype of Business brand. As for why they are doing... --- ### Microsoft Begins to Pitch Windows 10 S for the Enterprise - Published: 2017-09-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-pitch-windows-10-s-enterprise/ - Categories: Windows 10 - Tags: Ignite 2017, News, Windows 10, Windows 10 S - Article Type: News At Microsoft's Ignite conference, the company has started to pitch Windows 10 S for the enterprise along with new low-end hardware. Earlier this year, Microsoft announced a new version of Windows called Windows 10 S. If you are not familiar with this SKU of the software, it's Windows 10 but it only runs store apps. Up until Ignite this week, Microsoft had primarily been pushing Windows 10 S towards the education segment. But today, the company will begin pushing the new SKU of the OS towards enterprise customers with new devices and Microsoft 365. Specifically, Microsoft is calling low-end Windows hardware from HP, Lenovo and Fuitsu that have starting prices of $275 as "Microsoft 365-powered devices". These machines will offer self-service deployment and simplified management as well as always staying updated thanks to Windows 10 S. The pitch is that this type of a model will result in a lower cost of ownership for the business. Further, since they are low priced devices, they are perfect for firstline workers, students and educators. This is the first time that I can recall that Microsoft has pitched this new OS for the enterprise. Their strategy makes sense for pushing this type of a machine closer to the edge of their environment as the OS is heavily restricted, unlike Windows 10 Enterprise, which means if it is lost or compromised, the potential impact is limited. Of course, this OS is not for everyone and I hope that Microsoft is still evolving the SKU. As of right now, other than artificial limitations, the platform does not have any significant advantages over a well-managed... --- ### Microsoft Updates A Little Bit of Everything for Azure - Published: 2017-09-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-little-bit-everything-azure/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News - Article Type: News Microsoft has announced a significant number of updates to its Azure platform that includes everything from licensing terms to Azure stack. It's no secret that Azure is Microsoft's future and at Ignite today, the company announced updates to many different aspects of the platform. On the agenda are updates to licensing terms, Azure Stack hardware is now shipping, new hybrid cloud benefits, and a lot more. Earlier this summer, Microsoft announced that they would be acquiring Cloudyn and we are now seeing the fruits of that purchase materializing as Azure Cost Management. This service is exactly like the name sounds and helps customers optimize cloud spend from a single view for not only Azure but also AWS too. In addition to Azure Cost Management, Microsoft is announcing the following updates: Azure Stack shipping through OEM partners including Dell EMC, HPE and Lenovo. An extension of Azure, Azure Stack is truly unique in the marketplace, enabling consistency that allows organizations to build and deploy apps using the exact same APIs, tools and experiences they would have in the Azure cloud. SQL Server on Linux, Windows and Docker availability with SQL Server 2017 GA. SQL Server is the first born-in-the-cloud database that is also available on-premises. SQL Server 2017 brings the power of SQL Server to Windows, Linux and Docker containers for the first time, enabling developers to build intelligent applications using their preferred language and environments to drive even more productivity, along with high levels of performance and data security. The fully-automated Database Migration Service and SQL DB Managed Instance is now available for customers to easily lift and shift... --- ### Microsoft 365 Overhauled with New Features and Tiers - Published: 2017-09-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-overhauled-new-features-tiers/ - Categories: Uncategorized - Tags: Ignite 2017, Microsoft 365, News - Article Type: News At Ignite 2017, Microsoft announced a significant update to Microsoft 365 that brings with it new features and two new tiers of the service. This week, Microsoft is hosting their Ignite conference in Orlando and as expected, the company has quite a bit to talk about. Earlier this year, the company announced Microsoft 365 and today, they are expanding this service with new offerings and features. There are two new tiers of the platform; 365 Education and 365 F1. As the name suggests, 365 Education is for the education market and includes Windows 10, Enterprise Mobility + Security, and Minecraft: Education Edition. F1, which is for firstline workers (those employees who engage customers or represent a company) includes Office 365 F1, Windows 10, and Enterprise Mobility + Security. In addition to the new tiers, Microsoft is adding new features to Microsoft 365 designed around more personalized search. This includes a private preview of Bing for Business, Integration of LinkedIn data with Office 365 profile cards, general improvements to Office 365 search and the company is also touting 'My People' as an enhancement as well but that has already been announced as a feature of the Windows 10 Fall Creators update. To help IT Pros manage their environments, Microsoft is adding new features to make it simpler to manage users and devices. These new features include: New Intune capabilities including enhanced support for Windows AutoPilot, Office 365 ProPlus deployment, Windows Defender Advanced Threat Protection configuration, deployment of Win32 apps. Office 365 Usage Analytics coming in early 2018, which will enable admins to analyze and visualize service-wide usage data. Windows Analytics Update Compliance and... --- ### Microsoft Brings AI, Modular Apps and More to Dynamics 365 - Published: 2017-09-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-ai-modular-apps-dynamics-365/ - Categories: Dynamics - Tags: Dynamics, Dynamics 365, Microsoft, News - Article Type: News Microsoft's premier ERP software is getting several new features including AI, modular apps and deeper integration with PowerApps and Microsoft Flow. This week in Orlando, Microsoft is hosting its Ignite conference where the company is announcing updates to many of its product including Dynamics. The company's premier ERP software is getting several new features including AI, modular apps and deeper integration with PowerApps and Microsoft Flow. Inside of Microsoft, there is a big push to bring 'AI' to everything. We have already seen it included in the newest version of SQL server and now Dynamics gets the treatment as well. AI is very much a buzzword right now and while I believe that Microsoft is doing serious research and development in this field, the integrations we see today are early components of what many consider to be true AI. That being said, for Dynamics 365, Microsoft is introducing AI solutions that are designed to tackle high-value operations like customer care and an intelligent assistant for support stuff. These AI agents are already being used by HP and Macy’s to improve overall customer satisfaction and it has allowed them to handle more requests in a shorter amount of time. Microsoft is also introducing modular apps with Dynamics 365 that integrate with existing systems to help transform key processes by injecting insights from LinkedIn and Office 365. The first two new apps to support this data model are Attract and Onboard, these tools help companies recruit and create personalized on-boarding experiences; both of these apps will be added to Dynamics 365 for Talent later this year. Finally, there is deeper integration... --- ### More Efficient PowerShell with PSReadline -- Part 6 > PowerShell MVP Jeff Hicks wraps up his look at PSReadline and shares some time-saving tools from his PowerShell profile. - Published: 2017-09-25 - Modified: 2024-09-04 - URL: https://petri.com/more-efficient-powershell-with-psreadline/ - Categories: Uncategorized - Tags: PowerShell, PSReadline - Article Type: How To Jeff Hicks shares great information about the PSReadline module, which is now a default part of PowerShell. We have been spending a ton of time on the great stuff that is in the PSReadline module, which is now a default part of PowerShell. If you are just jumping in, take some time to get caught up on past articles or you will be a little lost.     Even though the module has been around for awhile, I never paid it much attention. Now that I have dug into it, I can see some terrific value. I think it will make my time at a PowerShell prompt more efficient and enjoyable. I spend most of my day with a PowerShell session running and other than a web browser and email, it is where I am most likely working. I thought I would share some of the things I am using with PSReadline. Some of these are drawn from the sample profile script I mentioned last time. But I have made a few modifications. Graphical Command History We already know that PSReadline maintains a historical record outside of PowerShell. You may also recall that in previous versions of PowerShell (and Windows) you used to be able to press F7 to get a graphical popup of recent commands. This was actually the command buffer from the CMD window that was running PowerShell. Regardless, I have a key handler assigned to F7 that uses Out-Gridview to display command history. Set-PSReadlineKeyHandler -Key F7 -BriefDescription HistoryList -Description "Show command history with Out-Gridview. " -ScriptBlock { $pattern = $null ::GetBufferState($pattern, $null)... --- ### 6 Things IT Pros Should Look Forward to At Microsoft Ignite 2017 > In this post, I'll list the 6 things that I predict that Microsoft will be emphasizing at Microsoft Ignite 2017 in Orlando. - Published: 2017-09-23 - Modified: 2024-09-04 - URL: https://petri.com/6-things-pros-look-forward-microsoft-ignite-2017/ - Categories: Cloud Computing - Tags: 2017, Azure, Azure Stack, ems, hybrid cloud, Ignite, linux, Microsoft, Project Honolulu, SQL Server 2017, Virtualization, Windows 10, Windows 10 Enterprise - Article Type: Opinion Microsoft's Ignite conference kicks off next week and here is what you should be looking for at the big event. In this post, I’ll list out the things that I think IT Pros should expect Microsoft to talk a lot about at Ignite. And while, as an MVP, I do have quite a bit of inside knowledge, I’m not using that or breaching any NDA here. There’s lots of tea leaves scattered about in the Microsoft world, and you don’t need a crystal ball to assemble them. Lots of Azure For his first trick, The Great Gambini will tell you the obvious. Day one is going to be Azure – Azure – Azure! Already, the news has started to drop with pre-announcements ahead of Monday on the Azure blog. And a few things have even appeared in the Azure Portal that haven’t been announced yet. If you thought that Microsoft overdosed you on cloud before, then you’ve not seen anything yet! The corporation’s global sales and marketing organization just went through one of the biggest shakeups in Microsoft’s history; there’s probably very few subsidiary staff members from before July that don’t have a new job today. The message from Microsoft is clear: the cloud is here, whether you like it or not. As an IT pro, you need to realize that the C-level staff are comparing what you do today with that the cloud can offer. Microsoft has an offering that is integrated and is an evolution of much of what you’ve been doing with Active Directory, Windows Server, Exchange, SQL Server, and so on, and has been... --- ### Headed to Ignite? We Are Too! - Published: 2017-09-22 - Modified: 2024-09-04 - URL: https://petri.com/headed-to-ignite-we-are-too/ - Categories: Main - Tags: Ignite 2017 - Article Type: Overview Next week, Microsoft is headed to Orlando where the company will be hosting its Ignite conference and it looks like it's going to be a big event. Next week, Microsoft is headed to Orlando where the company will be hosting its Ignite conference. The week is going to be filled with a lot of announcements and of course, we will have all the highlights posted here on Petri. Microsoft has a lot floating in the air right now like what is the future of Skype for Business and they will also be launching Windows Server 1709 as well. The company will also be live-streaming all the keynotes each day but the sessions will be private. If you are headed to Ignite, both Paul and I will be podcasting on Monday and Tuesday at 1PM from the podcast booth. Also, I will be interviewing execs from several different companies on the Petri Dish. If you haven't already, make sure to subscribe to our YouTube channel as we will be live-streaming interviews to that page. We have lined up several executives from various companies who will provide a unique perspective on the event too. The conference will bring thousands of IT Pros to Orlando and I am excited to see what Microsoft has prepared for this event.   --- ### Let PSReadline Handle PowerShell -- Part 5 > PowerShell teacher Jeff Hicks demonstrates how to take advantage of PSReadline key handlers to optimize your console experience. - Published: 2017-09-22 - Modified: 2024-09-04 - URL: https://petri.com/let-psreadline-handle-powershell-part-2/ - Categories: PowerShell - Tags: Advanced, PowerShell, PSReadline - Article Type: How To In this series, Jeff Hicks discusses PowerShell and PSReadline. ln the last article, I introduced you to PSReadline's key handlers. These are blocks of code that PSReadline will execute when a particular key or key combination is detected. You can get rather sophisticated, although it might require some advanced PowerShell scripting skills. Many of the things you might want to accomplish require some specific features of the . NET classes that support PSReadline.   Sometimes, the best way to learn is to copy, paste, and try it out for yourself.     There is some documentation in the about_psreadline help file, although some of it is outdated or not as specific as it needs to be. The help file also mentions SamplePSReadlineProfile. ps1 with additional examples, but as far as I can tell it is not installed as part of the module. But, you can view it in the GitHub repository. I have used some of the examples as starting points for my own handlers. You can always see your current handlers with Get-PSReadlineKeyHandler. Let's start with something simple. Add to History This handler will add the current command, entered at the prompt, to the PSReadlineHistory but not execute it. Set-PSReadlineKeyHandler -Key Alt+w -BriefDescription SaveInHistory -LongDescription "Save current line in history but do not execute" -ScriptBlock { $line = $null $cursor = $null #get the current line ::GetBufferState($line, $cursor) #add to the history file ::AddToHistory($line) #undo the current line ::RevertLine } I am using the ALT+W key combination, which is not case-sensitive in Windows. The premise is that you type... --- ### Paul Thurrott's Short Takes: September 22 - Published: 2017-09-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-22/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Overview Because it's that time of the year again---by which I mean Microsoft Ignite---this edition of Short Takes looks at Microsoft's first store in London, an undersea data cable, Uber's London problems, and so much more. This would be more impressive if it were underwater. Just saying. Because it's that time of the year again---by which I mean Microsoft Ignite---this edition of Short Takes looks at Microsoft's first store in London, an undersea data cable, Uber's London problems, and so much more. Microsoft to open flagship retail store in London As opposed, I guess, to its other---nonexistent---stores there, I guess. Anyway, Microsoft revealed this week that it will open its first-ever retail store in the U. K. with a location on Regent Street at Oxford Circus. Which, yes, is right next to a flagship Apple Store. "Our approach to retail is simple," Microsoft's Dave Porter explains, "a complete and quality experience for our customers to interact directly with Microsoft. " Weird. I thought it was to be the Burger King to the Apple's Store McDonald's. "Windows Store is being rebranded to Microsoft Store in Windows 10" Knowing Microsoft, they'll now rebrand their retail stores to "Windows Store. " Microsoft completes its undersea cable Announced back in May 2016, Microsoft's 4,000-mile transatlantic subsea cable---built in tandem with Facebook---is now complete. The cable connects Virginia Beach, Virginia, and Bilbao, Spain, and will be operated by Telxius, a subsidiary of telecom provider Telefónica. As noted previously, it operates at 160 terabits per second, about 16 million times the speed of an average home Internet connection, or about one-half the bandwidth needed to stream a single 4K video to an Apple TV. "There is no question that... --- ### Office 365 Audit Logging Generates Lots of Data - and Some Odd Entries > Office 365 audit logging generates a lot of data - sometimes too much. The trick is to know what events are recorded and what applications capture. - Published: 2017-09-21 - Modified: 2024-09-04 - URL: https://petri.com/office-365-audit-logging-generates-data/ - Categories: Microsoft 365, Office - Tags: audit log, Auditing, Cogmotive, Exchange Online, Office 365, SharePoint Online, Teams - Article Type: How To Office 365 audit logging generates a lot of data - sometimes too much. The trick is to know what events are recorded and what applications capture. Some pretty strange audit events turn up in the log, but everyone should relax because they are just traces of the system doing its own thing. A Single Audit Mart for Everything in Office 365 About two years ago, Microsoft set out to create the unified Office 365 audit data mart. The idea was simple. Instead of every application having its own way to generate and report audit events for user and administrator actions, the audit data mart would be a common repository for Office 365. Applications continue to generate events and the pipelines ingest those events into the data mart. At the same time, transformation occurs by applying common schema application-specific data so that the audit events have common fields. Things started slowly. Exchange and SharePoint were the first applications to generate events. Azure Active Directory joined the party followed by other applications like Teams and even Sway. Microsoft sped up ingestion processing so that events now appear within an hour (and often sooner) rather than lagging by 24 hours as happened for some sources. In short, a great deal of work over two years constructed a robust audit recording system. As good as the progress has been, some inconsistencies and challenges still lurk. Here are some of my observations. Some Applications Are Chatty, Some Are Not In the world of Office 365 audit records, some applications are chatty and generate many audit records and some are terse. SharePoint is the most granular of all applications and records multiple audit records for what you might think are relatively simple operations. Take the example of applying a classification label, updating the title,... --- ### PowerShell Classes Part 4 -- Constructors and Inheritance - Published: 2017-09-20 - Modified: 2024-09-04 - URL: https://petri.com/powershell-classes-part-4-constructors-inheritance/ - Categories: PowerShell - Tags: Automation, Microsoft, PowerShell, Scripting, Windows - Article Type: How To Take your PowerShell class programming to the next level! Define constructors to simplify the creation of the classes, and use inheritance to create a hierarchy of classes and subclasses that inherit properties and methods. Now that you’re familiar with PowerShell classes, as well as its programming concepts and terminology, it is time to show you some other benefits to using PowerShell classes. In this article, I’m going to talk about constructors and how you can use different constructors to create instances of classes with different members. I’m also going to introduce another new concept for classes called inheritance, along with showing some practical examples.     Previously on PowerShell classes... I started out by introducing PowerShell classes and general class programming concepts. Here I explored the similarities of a class to a PowerShell object, for example, classes have members – both properties and objects – just like an object in PowerShell. I also introduced creating a new class named Rock and assigning properties to it. Next, I discussed the use of a construct known as an enum to define a custom type for a property and compared enums to the PowerShell parameter validation attribute ValidateSet. Lastly, I showed how to put the three together. So the Rock class now has properties and methods and how some properties make use of enum types. Default Constructors In the previous articles, I have already shown how to use the default constructor to create an instance of a class. But what does “constructor” mean? A constructor is a method named the same name as the class. If no constructors are specified within the class, it automatically gets a default constructor with no parameters that I can use... --- ### Let PSReadLine Handle PowerShell -- Part 4 > PowerShell MVP Jeff Hicks takes you further with PSReadline by demonstrating how to incorporate key handlers. - Published: 2017-09-20 - Modified: 2024-09-04 - URL: https://petri.com/let-psreadline-handle-powershell/ - Categories: PowerShell - Tags: Advanced, PowerShell - Article Type: How To PSReadline can take advantage of something called a key handler. You have already seen some of them in action like the Up and Down arrow keys. In our exploration of the magic you can find in PSReadline, we have kept it pretty simple. But there is one more part of PSReadline that personally, I am finding extremely useful. The more I try it out, the more I realize how much value it adds to my work process. Although, I will warn you that to really leverage this feature will require some scripting experience. You could be dealing with parts of the . NET Framework. Or you can simply cut and paste my examples!     PSReadline can take advantage of something called a key handler. You have already seen some of them in action like the Up and Down arrow keys. In short, PSReadline executes a chunk of code when certain keys or key combinations are detected. Many of these are set for you automatically when you import the PSReadline module. You can also define your own custom settings. History Handler The first type of handler is actually something a bit specialized. You already know from a previous article, that PSReadline maintains a text list of your command history. But perhaps you would like some control over that process. With PSReadline, you define an AddToHistoryHiandler. This is a PowerShell scriptblock that returns True or False. If True, then the command is added to your PSReadline history. Here is a scriptblock that returns True if the length of the command is 5 or more characters. This eliminates short commands like 1+1. $sb = { #scriptblock returns... --- ### iOS 11 and Exchange 2016/Online: Not Kissing Cousins > Apple released iOS 11 and found that the mail app cannot connect to Exchange Online or Exchange 2016. It's all to do with HTTP2 connections. - Published: 2017-09-19 - Modified: 2024-11-19 - URL: https://petri.com/ios-11-exchange-not-kissing-cousins/ - Categories: Exchange 2016, Microsoft 365, Office - Tags: ActiveSync, Apple, Exchange 2016 CU7, Exchange Online, HTTP2, iOS 11, ios11, Mail App, Office 365, Outlook - Article Type: News Apple released iOS 11 and found that the mail app cannot connect to Exchange Online or Exchange 2016. It's all to do with HTTP2 connections. Apple tries to connect via ActiveSync but doesn't do so the way that Exchange likes, or something like that. In any case, maybe now's the time to consider Outlook for iOS. Update September 26: Apple says that iOS 11. 0. 1 fixes the problem of connecting to Exchange Online and Exchange 2016. An Easy Upgrade to iOS 11 The excitement barely stopped as I upgraded my iPhone 7s Plus to iOS 11 soon after Apple released the upgrade on September 19. The good news is that the upgrade was fast and seamless, which I expected because the phone is recent and I do not use any old 32-bit apps. All my apps worked after the upgrade, including those that I use with Office 365 such as Outlook for iOS (including support for multi-factor authentication), Outlook Groups, Yammer, Teams, Office 365 Admin (Figure 1), and so on. Figure 1: Office 365 Admin app running on iOS 11 (image credit: Tony Redmond) Problems for the iOS Mail App What is not so good is that the standard iOS mail app might not be able to connect to Exchange Online or Outlook. com. There is a good reason for this. Exchange Online and Outlook. com share a common infrastructure powered by Exchange 2016 servers running on Windows 2016. The software is ahead of Exchange 2016 cumulative update 7, which Microsoft released today along with Exchange 2013 CU18. The version of Exchange 2016 running inside Exchange Online has some special tweaks to support the Office 365 datacenter environment, but essentially it is the same software. In any case, Exchange 2016 uses HTTPS/2 TLS connections for its clients. When the iOS mail app attempts... --- ### Progressive Web Apps Are Coming To The Windows Store > Last week at the Microsoft Edge Summit, Microsoft discussed their plan for embracing Progressive Web Apps (PWAs). The plan is: Find, APPX, add to Store. - Published: 2017-09-19 - Modified: 2024-09-04 - URL: https://petri.com/progressive-web-apps-coming-windows-store/ - Categories: Windows Client OS - Tags: Microsoft Edge, Progressive Web Apps, Windows 10 S, Windows Store - Article Type: News Microsoft is going to be ingesting progressive web apps from around the web into the Windows Store...but is that a good thing? Last week Microsoft held its Microsoft Edge Summit where they began to discuss their plan for embracing Progressive Web Apps (PWAs). The Edge team only announced the overarching plan and a few details. Now that the general plan has been revealed, it is clear Microsoft identifies the importance of PWAs but many more questions remain. By next year, Microsoft will begin crawling the web looking for suitable Progressive Web Apps. Once found, an APPX package will be automatically created and submitted into the Windows Store. Users will then be able to search and find PWAs in the store alongside native UWP apps and Centennial apps. More details about  onboarding PWAs into Windows Store in the coming months... ! #msedgesummit pic. twitter. com/iJhBNM3NnW — Microsoft Edge Dev (@MSEdgeDev) September 13, 2017 Ideally, this will mean no need for any code changes for existing PWAs. Microsoft will be searching and ingesting PWAs into the store automatically, supposedly with no action by the website owner. The poster child for this strategy the Edge team touted was the Microsoft Teams web app. Currently, there is no UWP app in the Windows 10 desktop store for Microsoft Teams. That is going to change soon because the Teams PWA will be among the first to be converted and listed in the store. This is great news for users of Teams, and will be an interesting test of the Store model. However, the success of packaging Microsoft Teams into the store will not necessarily reassure developers of existing... --- ### Things You Should Know About External Access for Teams > A week into external access for Teams, it is obvious that Microsoft has some work to do to smoothen access and increase functionality. - Published: 2017-09-19 - Modified: 2024-09-04 - URL: https://petri.com/about-external-access-teams/ - Categories: Microsoft 365, Microsoft Teams, Office - Tags: Azure Active Directory, external access, guest users, Office 365, Office 365 Groups, Teams - Article Type: How To Now that Microsoft has shipped external access for Teams, it is obvious that they have some work to do to smoothen access and increase functionality. Although access works as long as guest users have accounts in other Office 365 tenants, areas like switching, auditing what external users do, compliance, and blocking deserve some consideration. Here's what we know from the last week. Microsoft Gets Its Numbers Wrong Lots of excitement occurred last week after Microsoft released the first version of external access for Teams. The thrill was only slightly lessened by the realization that Teams currently limits external access to accounts belonging to other Office 365 tenants. Microsoft’s post announcing external access for Teams was just plain wrong when it said: “That means anyone with one of the more than 870 million user accounts—across Microsoft commercial cloud services and third-party Azure AD integrated apps—can be added as a guest in Teams. ” Oh well, it was a marketing post after all, so hyperbole is the expected norm. Because external access is limited for now, the real number is about an eighth of what Microsoft claimed. In any case, after a week in the wild, it is good to look at some of the issues that people have with external access for Teams. The Need for Licenses The first point is that guest users need licenses before they can gain external access to Teams in a tenant. Administrators grant licenses to tenant users (“Business and Enterprise”) and guests through the Services & Add-ins section of the Office 365 Admin Center. If you do not enable guest access for Teams in your tenant by licensing them (it's really just a control mechanism and no licenses are involved), guests will never be able to access a team in your tenant, even if they receive an invitation to join the team. Generating Invitations Teams generates... --- ### Code Signing Microsoft Office Macros and Visual Basic for Applications - Published: 2017-09-18 - Modified: 2024-09-04 - URL: https://petri.com/code-signing-microsoft-office-macros-visual-basic-applications/ - Categories: Security - Tags: Certificates, Macros, Office 2016, Office 365, Security - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to sign Microsoft Office VBA code and macros so that it can be distributed securely to business partners. In today's Ask the Admin, I'll show you how to sign Microsoft Office VBA code and macros so they can be distributed securely to business partners.     Macros help save time and headaches by automating repetitive or complex tasks. Sometimes, macros prove such a productivity booster that you would like to share them with colleagues and business partners. The best way to do this securely and to keep your document being blocked as potential malware by antivirus software is to sign documents containing code with a certificate. There are several ways to obtain a certificate. If your organization has its own Public Key Infrastructure (PKI), speak to your IT department about how to request a code-signing certificate. Certificates issued by your organization’s PKI may or may not be trusted automatically by external partners, so you need to make sure you understand who you want to share your document with and the scope of the certificate issued. If an internal PKI is not available, then obtaining a certificate from a public certification authority (CA) is the best option. Certificates issued by any of Microsoft’s certificate root program members will be trusted by Windows. There is a fee for certificates issued by public CAs and they can vary a lot in price. Make sure you shop around. If you just want to test the code-signing process or some code internally, you can create a self-signed certificate. Self-signed certificates should not be used in production environments but can be useful for... --- ### Strategies to Minimize Data Loss with Hyper-V Replica - Published: 2017-09-18 - Modified: 2024-09-04 - URL: https://petri.com/strategies-to-minimize-data-loss-with-hyper-v-replica/ - Categories: Hyper-V, Virtualization, Windows Server 2016 - Tags: Cloud, Hyper-V, Virtualization - Article Type: Overview Learn about the factors that can help you minimize data loss with Hyper-V Replica and prevent your next downtime. Hyper-V Replica is a VM disaster recovery and data protection feature that’s especially well-suited to enable small and medium sized organizations improve their disaster recovery capabilities. Microsoft first introduced Hyper-V Replica as a part of Windows Server 2012 R2 and has continued to enhance it in the Windows Server 2016 release. Hyper-V Replica essentially works by asynchronously sending the changes in a local VM’s virtual hard disk from a primary site to a replica site. The Hyper-V server that hosts the replica doesn't need to be identical to your source Hyper-V server but it needs have adequate processing power and memory to run the replica VMs if the primary VM fails. You can setup Hyper-V Replica using the Hyper-V Manager. No additional software is required. When you create a new Hyper-V Replica there is a normally an initial synchronization process which typically takes place across the network. However, for large VMs you can also perform the initial synchronization using media like a USB drive or external hard drive. Setting the replication interval Once the initial replication takes place then Hyper-V Replica will use periodic asynchronous replication to send updates from the primary VM to the secondary replica. One of the biggest factors that governs the amount of possible data loss that can occur with Hyper-V Replica is the replication interval. The data on the secondary replica is synchronized according to the replication frequency you configure. You can select a replication interval of 30 seconds, 5 minutes, or 15 minutes. Business... --- ### Microsoft Begins Testing Bing For Business - Published: 2017-09-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-testing-bing-business/ - Categories: Main - Tags: Bing for business, News - Article Type: News Microsoft is testing a new service that allows you to use Bing to search your intranet. Microsoft has begun testing a new service that the company hopes will get more users searching with Bing. In an effort to help boost usage of the platform and make it easier to find internal links with the engine, the company is testing Bing for Business. Earlier today, Bing for Business was spotted by Walking Cat and while he didn't say what this service is, I was able to dig in a bit and uncover how Microsoft will be using this new tool. Bing for Business is currently in a private beta and allows a company to inject their own search results into Bing for searches performed on company-owned devices. For example, HR has a payroll portal but you can't remember the URL; if your company is using Bing for Business, you will be able to search using Bing to find your internal URLs. As you would expect, these intranet pages can only be accessed from inside the corporate firewall and are not visible to the outside world. The idea is pretty simple, make it easier to search the intranet with Microsoft's search engine. When a user does search, the intranet results will appear at the top of the web search results in their own unique section. I don't know when this product will come out of private beta and it's possible that it may never become an outward facing service but with that being said, the company is and will continue to experiment with new ways to... --- ### Paul Thurrott's Short Takes: September 15 - Published: 2017-09-15 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-15/ - Categories: Cloud Computing, Windows 10, Windows Server, Windows Server 2016 - Tags: News - Article Type: Overview Because it's ides of September, this edition of Short Takes looks at Project Honolulu, new Surface rumors, Azure confidential computing, supposedly high Microsoft Edge usage, and much, much more. Because it's ides of September, this edition of Short Takes looks at Project Honolulu, new Surface rumors, Azure confidential computing, supposedly high Microsoft Edge usage, and much, much more. Looks like we're getting more Surface devices in October Microsoft confirmed this past week that Surface executives will attend a London tech event in October, fueling speculation that it could be announcing a new device there. That could be, as the firm often announces new hardware at non-Surface events. But I'm hearing that a second Surface event, in New York, may also be in the cards for October. So that means that Microsoft might actually announce two new Surface devices next month. The first will almost certainly be a long-overdue Surface Book 2. But what might the second be? A standalone Surface display lifted from its Surface Studio? A minor Surface Studio revision? A new mobile device (code-named Andromeda)? Maybe. But how about Microsoft's first ARM-based Surface device? If it's that, I bet it's a Surface Laptop. We'll see. "Doritos and Mountain Dew give fans a chance to win Xbox One X consoles" In case you were wondering about the difference between e-sports and real sports: E-sports is the one where you can eat Doritos and Mountain Dew while playing. Azure confidential computing: It's like a privacy shield for your data Microsoft this week announced something called Azure confidential computing that will secure your cloud-based data from hackers---and, many think, governments---by using more powerful encryption. "Data can be processed... --- ### Color Your World with PSReadLine -- Part 3 > Resident PowerShell expert Jeff Hicks continues his exploration of PSReadline and shows you how to take advantage of command and syntax colorization. - Published: 2017-09-15 - Modified: 2024-09-04 - URL: https://petri.com/color-your-world-with-psreadline/ - Categories: PowerShell - Tags: Intermediate, PowerShell, PSReadline - Article Type: How To In this series, Jeff Hicks introduces you to the features and benefits of PSReadLiine. Over the course of the last few articles, I have been introducing you to the features and benefits of PSReadLiine. If you missed the previous articles, I encourage you to get caught up or you might feel a little lost today.     One of the real benefits of PSReadline is real-time colorized syntax in the PowerShell console. You have seen something similar when creating scripts in the PowerShell ISE. But now, you can get the same type of colorized highlighting in a PowerShell console. Colorized Commands with PSReadline (Image Credit: Jeff Hicks)   Different elements in a PowerShell expression, such as strings, operators, and commands are displayed in different colors. PSReadline has a default color configuration for these elements which you can see with Get-PSReadlineOption. Default Token Colors in Windows (Image Credit: Jeff Hicks)   Because PSReadline is cross platform, you can also use it in Linux. PSReadline in Ubuntu (Image Credit: Jeff Hicks)   As with Windows, you can check the current configuration, although settings may vary. PSReadline Color Options on Linux (Image Credit: Jeff Hicks)   This is nice and everything, especially if you stick with default settings for your console. But sometimes you might need to make a change. For example, in Windows the color for a string (e. g. text) is DarkCyan. That may be hard to read for some people. Thanks to my buddy Shane... --- ### Feature Pack 2 for SharePoint Server 2016 Has Been Released - Published: 2017-09-15 - Modified: 2024-11-19 - URL: https://petri.com/feature-pack-2-sharepoint-server-2016-released/ - Categories: SharePoint 2016 - Tags: Feature Pack 2, Microsoft, SharePoint - Article Type: News, Overview Feature Pack 2 for SharePoint Server 2016 is now available and it includes support for SharePoint Framework-based custom web parts that have previously only been available in SharePoint Online as part of Office 365. Microsoft announced that the latest major update to SharePoint Server 2016, Feature Pack 2, has been released. It is a free update, similar to Service Packs but in this case in a package that introduces new features.     Feature Pack 1 was released almost exactly one year ago, so it has been a while since SharePoint has received a major update outside Office 365's SharePoint Online. Feature Pack 2 contains all features from Feature Pack 1. If you have skipped on the previous release, you can install Feature Pack 2 directly. We advice you to install this in a test setup first before deploying to a production SharePoint Server 2016 farm for obvious reasons. To download the update for your SharePoint 2016 farms, you need to download the September 2017 Public Update. It includes Feature Pack 2 along with all the new functionality. The major new feature in Feature Pack 2 is support for SharePoint Framework (SPFx) web parts for on-premises SharePoint. With SPFx support, developers can now implement custom web parts that work similarly in the cloud with SharePoint Online and on-premises with SharePoint 2016. The newer SharePoint Framework Extensions, which is still a Release Candidate for SharePoint Online, is not part of Feature Pack 2. To learn more about SPFx development with Feature Pack 2, see here. In addition, Feature Pack 2 brings in several improvements and fixes for SharePoint Server 2016. --- ### Google Announces Dedicated Interconnect for Google Cloud Platform - Published: 2017-09-15 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-dedicated-interconnect-google-cloud-platform/ - Categories: Cloud Computing - Tags: cloud platform, direct, Google, interconnect - Article Type: News Google recently announced Dedicated Interconnect, a new service that enables enterprise-level consumers to connect directly to Google Cloud Platform. In a recent post to the Google Cloud Platform Blog, Google announced Dedicated Interconnect, a new service that enables enterprise-level customers to connect directly to Google Cloud Platform via one of Google’s Dedicated Interconnect locations. This new service can be particularly useful for businesses that provide data or latency-sensitive services, as Dedicated Interconnect can provide an increased network throughput and, in some cases, can lead to a reduction in network cost. This is due in part to the fact that traffic between an organization’s network and the Cloud Platform is direct and does not require that the traffic travel through the public Internet. Additionally, the connection between an organization and Google Cloud Platform can easily be scaled based on need. Dedicated Interconnect is available in 10 Gb per second increments and provides a direct connection to Google Cloud Platform VPC networks over internal IP addresses that are in the RFC 1918 address space. Depending on the service level agreement (SLA) chosen, this service can be configured to have either a 99. 9% or 99. 99% availability guarantee. What’s more is that Dedicated Interconnect is easy to configure and manage. Once the service is set up, admins won’t have to worry about installing any physical hardware, as additional VLAN can be added with a few simple clicks. For those organizations considering Google’s Dedicated Interconnect for connecting to Google Cloud Platform, Google has provided a flowchart that can help determine whether the service is a right choice for them. If it is determined... --- ### Doing More with PSReadline History -- Part 2 > PowerShell teacher Jeff Hicks continues his exploration of PSReadline and demonstrates how to take advantage of its command history features. - Published: 2017-09-14 - Modified: 2024-09-04 - URL: https://petri.com/doing-more-with-psreadline/ - Categories: PowerShell - Tags: Intermediate, PowerShell, PSReadline - Article Type: How To In this series, Jeff Hicks introduces you to the PSReadline module. This module packs a ton of functionality. In a previous article, I introduced you to the PSReadline module. This module packs a ton of functionality and I want to continue exploring it today.     Search Command History As I mentioned in the first article, PSReadline persists command history across PowerShell sessions. These commands do not show when you run Get-History but you can access them with the up arrow or F8. In this screen shot, I have a brand new PowerShell session with only two commands. When I press F8, I can go through the command history. Accessing Command History From PSReadline (Image Credit: Jeff Hicks)   If you go too far, use Shift+F8 to reverse direction. You can also search for a particular command from the history. In my command history, I have several commands using Get-Service. At the PowerShell prompt, I can press Ctrl+R and start typing the name of the command. PSReadline will display the most current matching command from the history. Getting the Most Recent Matching Command (Image Credit: Jeff Hicks)   If that is not what I want, I can press Ctrl+R again as often as needed to keep searching back. Continuing to Search Command History (Image Credit: Jeff Hicks)   If you go too far, you can use Ctrl+S to reverse direction and search forward. When you find the command you want, press Enter to run it or Tab to insert the command at the prompt... . --- ### Office 365 Disposition Reviews Process Sensitive Information > Office 365 disposition reviews mean that items awaiting deletion must be manually reviewed before a final decision is made. It's part of data governance. - Published: 2017-09-14 - Modified: 2024-09-04 - URL: https://petri.com/office-365-disposition-reviews/ - Categories: Microsoft 365, Office - Tags: classification label, Compliance, data governance, Office 365, Retention, retention policies - Article Type: How To The new Office 365 data governance framework has been updated to allow content marked with classification labels to receive a manual review before being removed. It’s the kind of thing that makes data governance administrators happy. Office 365 Classification Labels and Retention Policies In April, I reported on the new Office 365 data governance framework. Classification labels are part of the framework and allow users to mark documents and email as being especially important. A label can have a retention action (some labels do not, in which they mark items with a simple classification) to instruct Office 365 to keep any marked content for a certain period or to remove content after it reaches a certain age. Best of all, classification labels work across Exchange, SharePoint, OneDrive for Business, and Office 365 Groups with support for other Office 365 locations due soon. Manual Disposition is Sometimes Necessary Classification labels are good for marking Office 365 content for retention or removal, However, sometimes you do not want an automated process to function without supervision. For instance, you might have a classification label to mark documentation for customer projects. Usually the projects finish in a few months and it is certainly safe to remove them after five years. However, in some more complex or extended projects, you need to keep the documents for longer. A label that removes all documents classified as project documentation after five years would not work. The same might be true for items that the company might need for litigation or audit purposes. Manual disposition means that human intervention is necessary to check expired content to decide whether the business still needs the items or if they can be removed. A workflow... --- ### Microsoft Layoffs Impact US Employees, Sales and Product Teams - Published: 2017-09-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-layoffs-impact-us-employees-sales-product-teams/ - Categories: Main - Tags: layoffs, Microsoft, News - Article Type: News Microsoft has cut additional staff from their payroll with the layoffs impacting not only sales but engineering too. Earlier this week, Microsoft laid-off an unknown number of employees. While these may be part of the cuts announced earlier this year, the details I am hearing are a bit different than what was previously announced. Back in July, Microsoft said that they would be cutting roughly 3,000 employees and that most of the cuts would be from outside the US. On Tuesday of this week, the company informed an unknown number of employees that their jobs are being terminated. I have heard from at least four people at the company who have confirmed that individuals on product teams, including engineers, as well as sales teams, were impacted. Further, there were quite a few layoffs in the US whereas it was previously believed that most of the cuts would come from overseas. Microsoft's ranks have swelled over the years with acquisitions and slimming up the org chart is a natural part of a mature company. That being said, the company has been making cuts consistently the past few years and anyone who has worked in an environment where this occurs knows that it can seriously impact morale. With another round of cuts happening this week, the question becomes if they are going to inform any more employees this calendar year if their jobs have been terminated. While I don't know the answer to that question, anything seems possible as these cuts were kept under the radar unlike the last round of layoffs. --- ### Monitoring Azure Virtual Machine Performance > This post will help you answer "why is my Azure VM slow?". You'll learn how to enable performance monitoring using Metrics, and can create charts & alerts. - Published: 2017-09-13 - Modified: 2024-09-04 - URL: https://petri.com/monitoring-azure-virtual-machine-performance/ - Categories: Microsoft Azure - Tags: alerts, Azure, Azure Virtual Machines, Metrics, monitoring, performance, Performance Monitoring, virtual machines - Article Type: How To Aidan Finn explains how you can use Alerts in Microsoft Azure to monitor the performance of Azure virtual machines and create alerts or trigger actions when performance breaches pre-defined thresholds. This post will explain how you can use Alerts in Microsoft Azure to monitor the performance of Azure virtual machines and create alerts or trigger actions when performance breaches pre-defined thresholds.   Metrics There are two types of basic monitoring that we should do from the virtual machine’s perspective: Are the virtual machine and its services running? How well are the virtual machine and its services running? The second of those questions is our focus here. We can view and gather metrics in Azure to see how well a virtual machine is performing? That means we will be able to answer certain questions, such as “why is my Azure virtual machine slow? ” And you can ask without making wild guesses or silly generalizations, such as “Azure is slow. ” Instead, we want to use empirical data to solve any problems using computer science. Enabling Metrics Anyone who has worked on Hyper-V will know that there are two ways in which you can monitor the performance of a Hyper-V, and therefore an Azure virtual machine. There are (Hyper-V) Host metrics and guest OS metrics. In Azure, we get a set of Host metrics by default because Azure hosts can display this information without any interaction with the virtual machine. The Host Metrics of an Azure Virtual Machine   We get some useful metrics there but an important one is missing: available memory. If I want a general view on how a virtual machine... --- ### PowerShell Classes Part 3 -- Using Methods - Published: 2017-09-13 - Modified: 2024-09-04 - URL: https://petri.com/powershell-classes-part-3-using-methods/ - Categories: PowerShell - Tags: Automation, Beginner, PowerShell, Scripting - Article Type: How To In part 3 of the PowerShell Class series, Missy Januszko discusses how to define methods to perform actions against an instance of the class. PowerShell version 5. 0 introduced the concept of classes to enhance the appeal of PowerShell to the developer community. Traditionally, PowerShell has been a scripting language used by IT operations professionals to automate manual tasks. While in previous versions there have been other methods of constructing classes in PowerShell using C#, none have made it as easy as the changes in version 5. 0.   Recap of Classes in General -- The Rock Class Previously. I showed you how to define a class in PowerShell using properties and talked about using enums to define custom types for properties. Continuing with the example, I have defined a Rock class. The Rock class has several properties and some of those properties are using custom “enum” types to limit the possible values for the property. To encourage reuse, the enum types are defined outside the class, as they can be used in any other class or function through the duration of the PowerShell session. ​ Instantiate the Rock No, not “The Rock”.   First, I am going to instantiate or create an instance of a rock using the Rock class definition above. Then, I will assign some properties to the rock. Rock Class Methods Next, I am going to define some methods for the class. A method is an action that is performed on an object. I asked myself, “What can I do to a rock? Or what can I do with a rock? ” And the answers that came to mind are “ThrowRock” and... --- ### The Five Biggest Hybrid Cloud Mistakes - Published: 2017-09-12 - Modified: 2024-09-04 - URL: https://petri.com/the-five-biggest-hybrid-cloud-mistakes/ - Categories: Amazon Web Services, Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure, Cloud, cloud computing - Article Type: Overview Avoid these five common hybrid cloud mistakes to make sure that your environment is ready for the modern infrastructure. The adoption of the cloud and the hybrid cloud is growing quickly. The hybrid cloud promises the best of both worlds where you can keep your business critical processes and sensitive data on-premise and still expand to cloud for development and testing as well as backups and disaster recovery. Using the hybrid cloud can enable your organization the flexibility to provide more services without the costs of needing to buy new computer hardware. However, the hybrid cloud is a new technology and it’s easy to make missteps. Let’s look at five of the biggest hybrid cloud mistakes. Choosing the wrong cloud provider – While the major cloud providers all seem to offer similar services, there can be huge differences both in the specific types of services provided as well as the pricing for IaaS VMs and storage. For instance, if you’re looking to backup your SQL Server systems to the cloud then Microsoft offers several built-in Azure backup integration options that you won’t find in Amazon AWS. Choosing the wrong cloud provider can limit the options available to you as well as cost you more than you might expect. With cloud providers, it is really a case of needing to do your homework before jumping in. You need to understand the types of services that you need as well as the costs of each different cloud provider. Putting off security – One of the other most important hybrid cloud mistakes is making security an afterthought. Many businesses are not initially... --- ### How External Access for Microsoft Teams Works > Microsoft launched the long-awaited external access for Teams on Sept 11. The downside is that only Azure AD accounts are supported. - Published: 2017-09-12 - Modified: 2024-09-04 - URL: https://petri.com/external-access-microsoft-teams/ - Categories: Microsoft 365, Office - Tags: access, Azure Active Directory, external guest, guest users, Office 365, Office 365 Groups, Teams - Article Type: How To Microsoft launched the long-awaited external access for Teams on Sept 11. The downside is that only Azure AD accounts are supported, but the functionality is sufficient to support interaction between Office 365 tenants. You can access a team in my tenant and I can access a team in yours. What's not to like about that? Teams Gets Guests Long anticipated and much promised, Microsoft launched external access for Teams on September 11 (here's a link to Brad's news story). Well, they posted a blog describing the principles used for the design (motherhood and apple pie – teamwork, security and compliance, and manageability).  Releasing code that worked and satisfied those principles took a little longer and tenants reported some frustration that Teams and web clients had not received the updated code. It takes time to distribute new bits across Office 365 and tenants gradually received updates with the necessary code (version 1. 0. 00. 25151 of the desktop client works). External access for Teams is now available to all Office 365 commercial and education customers. The new feature allows Teams to compete with the likes of Slack and Hipchat. Office 365 Groups has supported external access since August 2016. However, the groups developers chose to build their external access around the existing model used for SharePoint. On the one hand, this was a good decision because it delivered external access faster. On the downside, external members of groups can access the files in the SharePoint team sites belonging to groups, but they cannot browse conversations or the group calendar. Given that Teams brings together resources from many Office 365 applications, Microsoft needed to make sure that their selected access mechanism delivered secure, robust, and reliable access to anything in a team. Doing so created some engineering difficulties that took more time to resolve than originally predicted. But Only for... --- ### Getting Started with PSReadline -- Part 1 > Do more in PowerShell faster with PSReadline. Master Jeff Hicks starts a series introducing you to this must-know feature. - Published: 2017-09-12 - Modified: 2024-11-19 - URL: https://petri.com/getting-started-with-psreadline/ - Categories: PowerShell - Tags: Intermediate, PowerShell, PSReadline - Article Type: How To Jeff Hicks shares tips on getting started using the features and commands of the PSReadline module. Back in the days of PowerShell v4, a member of the PowerShell team put together a module to make it easier to work with the console shell and to bring in some functionality from other shell experiences like bash. The module, PSReadline, was modeled after the GNU Readline library. The library offered a suite of functions and commands to enhance console based sessions. When WIndows 10 shipped with PowerShell 5. 0, PSReadline was included by default. You will also find it in the next generation of PowerShell that runs on Linux and MacOS. I thought it would be helpful to give you some tips on getting started using the features and commands of this module.     Command Completion PowerShell has long had tab completion for command and parameters, which you really need to get in the habit of using. PSReadline takes this a step further. Start typing a command like Get-Eventlog and then a dash to indicate the beginning of a parameter. Then hit Ctrl+Space and PSReadline will display all appropriate parameters. PSReadline Parameter Completion (Image Credit: Jeff Hicks)   Use the arrow keys to select the parameter and press the space bar to insert it.   Repeat the process to insert additional parameters. PSReadline will also display possible values, depending on the parameter. Listing Possible Parameter Values (Image Credit: Jeff Hicks)   If the enumeration will be large, PSReadline will prompt you: PSReadline Enumeration Confirmation (Image... --- ### Azure Archive Storage and Blob-Level Tiering > Azure has a new archive storage system for large-scale ultra-cheap storage, and the ability to move stored files between the hot, cool, and archive tiers. - Published: 2017-09-11 - Modified: 2024-09-04 - URL: https://petri.com/azure-archive-storage-blob-level-tiering/ - Categories: Cloud Computing - Tags: Archive, Archive storage, Azure, Blob Storage, blob-level tiering, Glacier, storage, Storage Account - Article Type: Overview Microsoft recently launched a limited public preview of Archive Storage and Blob-Level Tiering in Azure storage accounts. What does this mean for Azure customers?   Azure Blob Storage The first thing you should know is what a blob is. I first heard the term “blob” in database theory back in college. We were educated that a blob was a file that was stored in a database. You can think of an Azure storage stamp as a massive, resilient database cluster. When we store data in a storage account, Azure figures out how we are going to use that data and stores (and charges for it) appropriately. One of those kinds of storage is a blob, which is a file.     Azure has two kinds of storage account: General Storage Account: This is the storage account that IaaS users know best, capable of storing disks (Page Blob and Disk), blobs (Standard IO – Block Blob), queues, file shares (for simple legacy apps), and tables. Blob Storage Accounts: Two tiers, hot and cold, were available for storing blobs only. The cold tier is economical if you access blobs less than twice-per-month and the hot tier is cost-effective if you access blobs more frequently. When the hot and cold tiers were announced, the public responded with, “That is great but have you got something like Amazon Glacier? ” Cool storage costs $0. 01 per GB in the East US 2 Azure region. If you have petabytes of archive data that you need to keep but rarely access, even that paper clip cost can build up to be significant. Archive Blob Storage A new form of blob... --- ### Microsoft Begins Rolling Out Guest Access for Teams - Published: 2017-09-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-rolling-guest-access-teams/ - Categories: Microsoft 365, Office - Tags: Microsoft Teams, News, Office - Article Type: News Microsoft has announced that they have begun rolling out Guest access for Teams and that over 125,000 organizations are now using the platform. Last week, there was quite a bit of excitement around Teams as it looks like Microsoft is going to be favoring that platform over Skype for Business. To kick things off this week for Teams, Microsoft is finally bringing the long-awaited guest access feature to the platform. Announced today, Microsoft has begun rolling out this heavily requested update which aligns perfectly to what I reported two weeks ago when they started testing the feature privately with a small group of external users. In addition, the company is touting that Teams is being used by 125,000 organizations in 181 markets and 25 languages. With guest access, users can add anyone with an Azure Active Directory (AAD) account to their Teams channels with enterprise-grade security, compliance and IT manageability. In the next few weeks, customers will be able to add anyone with a free Microsoft Account (MSA). This is an important feature for Teams as many groups inside a company often use outside contractors or consultants for projects that need access to these collaboration tools. Without guest access, Teams lagged behind Slack in the collaboration space but this has now been rectified. While we don't know how many of the 125,000 organizations are using Teams heavily, the fact that a high number have at least tried out the platform is an encouraging sign for Microsoft. Considering that Office 365 is now a cornerstone of Microsoft's future, Teams being widely adopted in the first year is a good sign that this... --- ### Microsoft isn't Killing Skype for Business, But They Will be Making Changes - Published: 2017-09-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-isnt-killing-skype-business-will-making-changes/ - Categories: Microsoft 365, Office - Tags: News, skype, Skype for Business, Teams - Article Type: News Microsoft isn't killing Skype for Business but the company will be changing up how it is serviced and is trying to move customers to Teams. The past thirty-six hours have been filled with quite the excitement. After Microsoft began notifying some users, in what may have been an accident, that Skype for Business is now Microsoft Teams, the news did not sit well with many users who quickly began raising their voices about this change. In an effort to better understand what is going on, I reached out to Microsoft for a comment about the change. As you would expect, Microsoft did not provide a comment or clarification about what was happening which means the only option left was to poke around the Office 365 neighborhood. It is my understanding, after talking with a few people familiar with Microsoft's plans, is that they are not killing off Skype for Business. What the company is trying to do is to gently nudge anyone using Skype for Business, as well as many other parts of the Office 365 platform, into Teams. The goal is to make Teams the be-all solution for collaboration and communication which is why we are seeing this transition. That being said, this solution is not viable for everyone as some are using on-premises solutions like Skype for Business Server that cannot or will not be moving to Teams. For those users, the Skype for Business client will continue to live but I would not expect many feature updates or enhancements for that app; it will maintain with security updates. It is also my understanding that Microsoft wants to get the Skype... --- ### Paul Thurrott's Short Takes: September 8 - Published: 2017-09-08 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-8/ - Categories: Cloud Computing, Microsoft 365, Windows 10 - Tags: News - Article Type: Overview Because tech partnerships are such fun, this edition of Short Takes looks at Microsoft and DACA, Microsoft and Adobe, a security hole Microsoft won't fix, a security offering Microsoft is now trialing, and much more. Microsoft partners with Adobe. Because tech partnerships are such fun, this edition of Short Takes looks at Microsoft and DACA, Microsoft and Adobe, a security hole Microsoft won't fix, a security offering Microsoft is now trialing, and much more. Microsoft and other tech giants take on Trump administration in DACA fight Microsoft said this week that a Trump decision to end DACA (Deferred Action for Childhood Arrivals), a federal program by which the children of illegal aliens can become U. S. citizens, was a threat to the U. S. businesses that hire these legal citizens. But Microsoft's response has been notably tough. "The president of Microsoft, Brad Smith, said if the government moves to deport who are Microsoft employees, 'it's going to have to go through us to get that person'. " I'm not going to make a joke about this one, folks---there's plenty of that below---but will instead simply salute Microsoft, and in particular Mr. Smith, for having the balls to do the right thing and in the most forceful way possible. Bravo. "What to expect from Apple's September 12 event" Some kind of iPhone something something? Microsoft partners with Adobe ... again Microsoft and Adobe this week announced an expansion of its partnership with Adobe in which Azure is now the "preferred" (read: Not exclusive) public cloud for the Adobe Sign e-signature platform, while Adobe Sign will become the "preferred" (you know the drill) e-signature tool for Microsoft's various offerings. One gets the... --- ### Creating Azure Virtual Machine Performance Alerts > https://docs.microsoft.com/en-us/azure/backup/backup-configure-vault - Published: 2017-09-08 - Modified: 2024-09-04 - URL: https://petri.com/creating-azure-virtual-machine-performance-alerts/ - Categories: Microsoft Azure - Tags: alerts, Automation, Azure, Azure Virtual Machines, email, Metrics, Metrics Alerts, performance, Runbook, webhook - Article Type: How To Aidan Finn shows you how to use Azure virtual machine performance threshold alerts to trigger email alerts or start automated-response actions. This post will show you how to use Azure virtual machine performance threshold alerts to trigger email alerts or start automated-response actions.   Metrics A pre-requisite to creating alerts is that you have enabled metrics monitoring for your virtual machines. By default, we get guest-level metrics from the Azure Hyper-V hosts. However, more interesting information is available from the guest OS, such as SQL Server, memory available, and so forth. You can enable guest level monitoring in each virtual machine’s Diagnostics Settings and either stick with the default set of collected Basic metrics or customize the metrics that are gathered. Creating Alerts You can view metrics and create alerts in two ways: Open Alert Rules in the settings of the virtual machine. Select a virtual machine in Monitor > Alerts. It would be good to get into the habit of using Azure Monitor for centralized management of virtual machines, so I will use the latter option. I opened Monitor from the navigation bar in the Azure Portal and clicked Alerts. Each alert that you create is associated with a virtual machine, so I then selected: Subscription: Pick the subscription from the tenant that contains the virtual machine. Source: Choose Metrics. Resource Group: Select the resource group that the virtual machine is in. Resource: Choose the virtual machine that you want to create an alert for. The +Add Metric Alert button was then enabled, so I clicked it. The Add Rule blade appears. This is a long... --- ### The Teams-SfB Fiasco and What Might Happen Next > Microsoft inflicted a PR fiasco on themselves by leaking the imminent replacement of Skype for Business by Teams. But what does this really mean? - Published: 2017-09-08 - Modified: 2024-09-04 - URL: https://petri.com/teams-sfb-fiasco/ - Categories: Microsoft 365, Office - Tags: Lync, Office 365, Office 365 Groups. Admin, Skype for Business, Teams On September 7, Microsoft inflicted a PR fiasco on themselves by leaking the imminent replacement of Skype for Business by Teams. But what does this really mean? I think we will see a Teams-lite client replace the current SfB client with a formal announcement at Ignite. Although the leak was bad, some goodness does exist in what might happen. A Small Leak About the Future of Teams Like all big companies, Microsoft likes to keep announcements about important shifts in product strategy for its major events. With the Ignite conference on the horizon, I am sure that marketing had plans to talk about the future of Teams and Skype for Business at the conference. A senior executive would make the announcement in a measured but excited manner and everyone would be happy. That plan started to disintegrate when some people logging into Skype for Business saw a new splash screen with the startling news that Skype for Business is now Teams (Figure 1). Or, perhaps better put, Teams is now the new Skype for Business client. Figure 1: How the news about Teams leaked (image credit: unknown) Something like this is impossible to keep secret and the news quickly spread, including some articles (see the coverage from Brad Sams and Mary-Jo Foley) that stoked the fuels of passion within the Teams and Skype for Business communities. The Office 365 Message Center Says... Shortly after the story broke, Microsoft posted a notification (MC118018 – Figure 2) in the Office 365 Message Center. The interesting point here is the “action required” deadline of September 7, 2018, which might indicate how long the transition to Teams will take. Figure 2: Microsoft makes a short-lived announcement (image credit: Tony Redmond) Soon after they posted the notification, Microsoft removed it from Office 365. The... --- ### Goodbye Skype for Business, Hello....Teams - Published: 2017-09-07 - Modified: 2024-09-04 - URL: https://petri.com/goodbye-skype-business-hello-teams/ - Categories: Microsoft 365 - Tags: Microsoft, Skype for Business, Teams - Article Type: News It looks like Microsoft is going to rebrand Skype for Business and bring the platform under the Teams umbrella. Microsoft appears to be on the cusp of rebranding its business communications platform once again. What was formerly called Lync and currently known as Skype for Business is set to be rebranded once again. As users were trying to login today to Office 365, some were being prompted with the image you see in this post. Considering that this is coming directly from Microsoft, it would seem that Skype for Business is going to be rebranded under the Teams umbrella. This move isn't all that surprising, the Skype for Business branding never made much sense as it was often confused with the Skype consumer platform which is fundamentally different than the business offering. The message that showed this branding change was quickly pulled but not before it made its way to Twitter. Seeing as Ignite is coming up at the end of the month, I would expect this change to occur at that conference; Tony also has a few ideas about this change as well. Teams has been a bright spot for Microsoft with it quickly attracting a loyal fan base. While Slack still has the brand recognition Microsoft desires, for those using Office 365, Teams is proving to be a worthy competitor. With this announcement, it would appear that Microsoft is going to fold all of the capabilities of Skype for Business into this new tool and once again leave the Skype branding for only the consumer. Seeing as Ignite is only about three weeks away, we... --- ### Capturing and Inspecting Traffic in Azure Networks > Learn how to capture Azure virtual machine network traffic using Network Watcher Packet Capture and inspect the data using Wireshark. - Published: 2017-09-07 - Modified: 2024-09-04 - URL: https://petri.com/capturing-inspecting-traffic-azure-networks/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, Inspect, Network Monitor, Network Watcher, networking, Packet Capture, Virtual Network, VNET, Wireshark - Article Type: How To Aidan Finn teaches how to capture packets from the NICs of Azure virtual machines using Network Watcher and inspect Azure network traffic at the packet level using Wireshark. In this post, I will teach how to capture packets from the NICs of Azure virtual machines using Network Watcher and inspect Azure network traffic at the packet level using Wireshark.     Essential Skill Time and time again, I hear how important being able to capture and inspect network traffic is. Engineers at Microsoft consider this an important skill. Speakers at technical conferences recommend learning how to do this. I have had to do this sort of work myself to troubleshoot issues or supply data to Microsoft support engineers. Network Watcher -- Packet Capture The tools in Network Watcher provide us several methods for diagnosing communications issues in Azure virtual networks. One of these tools is called Packet Capture, which allows us to capture packets as they are passing through the NIC of a virtual machine. Note: the Network Watcher extension must be installed in the virtual machine that you want to capture traffic from. To do a packet capture, open Network Watcher and go into Packet Capture. Click Add to create a new packet capture and then enter the following information: Subscription: Specify the subscription in your tenant that contains the virtual machine that you will capture network packets with. Resource group: Select the resource group that contains the virtual machine. Target Virtual Machine: Choose the virtual machine. Packet Capture Name: Enter a name for the packet capture. You then must configure the capture configuration: Storage Account and/or File: A storage account must be specified. You... --- ### Blocking Access to Office 365 for an Ex-employee > Office 365 allows you to block a user when necessary, as when someone is leaving the organization. You can also initiate a forced sign-out. - Published: 2017-09-07 - Modified: 2024-11-19 - URL: https://petri.com/blocking-access-office-365-user/ - Categories: Microsoft 365, Office - Tags: ActiveSync, Admin, Exchange Online, intune, Office 365, OneDrive for Business, SharePoint Online, Teams - Article Type: How To Office 365 allows you to block a user when necessary, as when someone is leaving the organization. You can also initiate a forced sign-out, but the option to do so is buried in the user's OneDrive for Business settings, which seems like a logical place to find it! Easing Ex-Employees Out of Office 365 It is a natural part of business for employees to leave, one way or another. Some leave of their own volition, some receive encouragement to seek new challenges elsewhere, and some need to be marched out the door by a large security guard without their feet touching the ground. In the on-premises world, your next step is probably to disable the ex-employee’s Active Directory account and impose similar blocks in any other authorization systems that the person might use to access company assets, including keycard access to buildings. Many companies have scripts to automate the steps to secure systems following an employee’s departure. Organizations need similar processes when Office 365 is in the picture. With the growth in mobile apps and devices, it is not enough to simply change a password or disable an account. If someone is leaving the company, you need to consider at least four actions: Change the account password. Force sign-outs across all Office 365 applications. Wipe mobile devices using ActiveSync (or the Clear-MobileDevice cmdlet) or Intune (which offers both full and selective wipes). Recover and preserve data. For example, by making the user’s mailbox inactive. If your company provides devices to users, you can add recovery of those devices to the list along with other corporate paraphernalia like ID badges and smartcards. And then there is the small matter of ensuring that you do not pay for licenses (Office 365, Azure AD Premium, add-ons, etc. ) for ex-employees for longer... --- ### Making the Small Business Case for Chromebooks - Published: 2017-09-06 - Modified: 2024-09-04 - URL: https://petri.com/making-small-business-case-chromebooks/ - Categories: Cloud Computing - Tags: Chrome OS, Chromebook, cloud computing, Security, Windows 10 S - Article Type: Opinion In this Ask the Admin, Russell Smith looks at Chromebooks and why they have become a popular choice for small businesses. In this Ask the Admin, I'll look at Chromebooks and why they have become a popular choice for small businesses. Long gone are the days when Windows and Microsoft Office were the only choice for small businesses. Google G Suite has seen a lot of uptake for home, small business users, and even large enterprises. It provides an attractive alternative to Microsoft’s Office 365. For businesses that work in the cloud and have already made an investment in the Google Cloud, Chromebooks can provide a cheap and easy-to-manage option.     Microsoft has recently upped the stakes with the release of Windows 10 S, an edition of Windows 10 that is limited to a browser and Windows Store apps. Although intended to fend off Chromebooks in the education sector, Windows 10 S can be bought preinstalled on notebooks starting this summer. For the purposes of this article, I will refer to Windows in general, as Windows 10 S is still unavailable for most now. Chrome OS Is for Cloud Computing Chrome OS is based on Linux and provides users access to the Google Chrome web browser as the primary way to interact with Google’s cloud services. Google’s OS was initially intended for netbooks, which were small form-factor notebooks that were cheap but generally too underpowered to be useful. Despite the death of the netbook, Chrome OS lived on and found its way to more capable hardware. While chiefly designed to work with Google’s cloud, Chromebooks can also be... --- ### Google's Cloud Team Is Sending Chromebooks To Microsoft Partners - Published: 2017-09-06 - Modified: 2024-09-04 - URL: https://petri.com/googles-cloud-team-sending-chromebooks-microsoft-partners/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Cloud, Google, News - Article Type: News Google is sending Chromebooks to Microsoft resellers and customers in an attempt to get them to explore what Google has to offer. The next great enterprise battleground is the cloud. Microsoft has its Azure platform, Amazon has AWS, Google is entering the arena with Google Cloud and each company is throwing serious money to grab a slice of this market as it continues to expand. This shouldn't come as a major surprise but Google's cloud team is trying to woo over vendors of Microsoft's Azure. The company has been sending out packages to select companies and is also offering to ship them a Chromebook to play with to tempt them to explore what Google has to offer. For a few weeks, I have been hearing about how Google is ramping up their marketing efforts to attract new customers to their cloud services. Everything from targeting high-end Azure resellers to large enterprises are in the crosshairs of Google's Cloud marketing tactics. A recipient of one of these care packages was kind enough to share with me what's inside to show you how the company is trying to grow its cloud services. There is nothing too crazy here but seeing as Google is an underdog in this segment, I find it interesting in the tactics that they are using to sway vendors who sell Azure and AWS to potentially offer Google Cloud too. The pitch is completed by Google sending the recipient a Chromebook to conduct a call (over Hangouts) about how the company can use its suite of technologies to improve their operations or expand their potential re-selling services. This is not a... --- ### Check Communications Between Virtual Machines in Azure > This post shows how you can troubleshoot communications between two virtual machines in Azure by using the diagnostics tools in Network Watcher. - Published: 2017-09-06 - Modified: 2024-09-04 - URL: https://petri.com/check-communications-virtual-machines-azure/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, Connectivity Check, IP Flow Verify, Network Security Group, Network Security Group View, Network Watcher, Next Hop, NIC, NSG, Ping, Subnet, Topology, Virtual Network, VNET - Article Type: How To Aidan Finn demonstrates how you can use Azure's Network Watcher to check if one Azure virtual machine can talk to another. In this post, I will demonstrate how you can use Azure's Network Watcher to check if one Azure virtual machine can talk to another.     The Importance of Network Watcher "Broad network access" is not one of NIST's Essential Traits of a Cloud for no reason. Without network connectivity, resources in the cloud are useless. What use would a virtual machine be if you cannot access the services that it hosts or if you cannot integrate it with other systems? This is why Azure's Network Watcher is a critical troubleshooting tool. Network Watcher includes a number of tools that can be used in several scenarios. In this post, I will show you how you can figure out the root cause of a communications failure between virtual machines. The Demo Lab I have created a small demo lab in a resource group called rg-petri. There are two virtual machines in a simple flat network: vm-petri-01: This is a "bastion host" or "jump box" machine. I am only allowing remote desktop connections into this machine from outside of the virtual network. To access application servers, one must first log into vm-petri-01 and then jump from there to the required machine. vm-petri-02: This is my demo application server that a security consultant has recently hardened. The Diagram of the Azure Virtual Network, Generated by Network Watcher Topology   Administrators have just reported that they can no longer sign into the application server (vm-petri-02)... . --- ### VMWare Cloud Now Available on AWS - Published: 2017-09-06 - Modified: 2024-09-04 - URL: https://petri.com/vmware-cloud-now-available-aws/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, Cloud, News, vmware - Article Type: News Amazon has announced that VMware Cloud is now available on Amazon's AWS platform. With this update, users of VMware’s Software-Designed Data Center (SDDC) can now take advantage of the scalability and security provided by AWS. In a recent post on the AWS blog, Amazon announced that VMware Cloud is now available on the AWS platform. With this update, VMware’s Software-Designed Data Center (SDDC) can now be used on Amazon’s AWS infrastructure, enabling users to run VMware applications across consistent public, private, or hybrid vSphere-based cloud environments, while also having optimized access to AWS services. This service was designed to support popular use cases, including data center extension, as well as application development, testing, and migration. The benefit to running VMware Cloud on AWS is that those who are familiar with VMware can continue to use the services that they already know, while taking advantage of Amazon’s AWS infrastructure. While VMware admins may have previously had to manage servers and worry about scaling their services to meet large influxes in demand, they can now rest a bit easier, as VMware Cloud on AWS can take advantage of the scalability and security provided by the AWS platform. What’s more is that users of VMware Cloud on AWS will also have access to a variety of AWS services, including Amazon's compute, analytics, database, security, mobile, deployment, application, AI and IoT services. Should one decide to go with a hybrid setup utilizing both local and AWS based resources, existing VMware and third-party management tools should still work as expected, with users being able to view all of their resources, both local and cloud-based, using a new VMware Hybrid Linked Mode. This new service provides custom-sized virtual machines... --- ### Microsoft's Next Windows Variant Must Be the Modern Thin Client - Published: 2017-09-05 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-next-windows-variant-must-modern-thin-client/ - Categories: Cloud Computing, Microsoft Azure - Tags: Windows - Article Type: Opinion Microsoft needs to build the next generation of Windows that runs in Azure and is streamed locally if it hopes to compete with Chromebooks, Android, and iOS. We are quickly approaching the tipping point where running software locally will become a legacy approach much like on-premises hardware. This, I believe, is true for both the consumer and the enterprise and if Microsoft does not play its cards right, the company may find itself in an awkward position where other platforms will outperform its own operating system. Microsoft is pushing Windows 10 S as a modern version of Windows that will only run apps from the Windows Store and they claim this version of Windows will maintain optimal performance its entire lifecycle while also being more secure. This is fine as an in-between step for the evolution of Windows but it is not the correct long term solution to the "Windows" problem. What is this problem? It's the end goal for Windows. Where is it headed, what's the longevity plan for the software and more importantly, how is Windows going to remain relevant in a world that no longer needs it to survive? These are the questions that Microsoft must answer if the company wants to retain its position as the platform authority for productivity. You may write-off that ChromeOS is not a threat to the enterprise but that platform is very close to being a modern thin client; relatively lower-power hardware and nearly all tasks are performed through a web browser. Microsoft does not have a response to the growing threat of what Google is building and if you think it's Windows 10 S, it's... --- ### Role-Based Access Control Comes to Intune - Published: 2017-09-05 - Modified: 2024-09-04 - URL: https://petri.com/role-based-access-control-comes-intune/ - Categories: Cloud Computing - Tags: Azure Active Directory, cloud computing, Microsoft Intune, Mobile Device Management, Role-Based Access Control, Security - Article Type: News In this Ask the Admin, Russell Smith looks at how Microsoft's Role-Based Access Control can help you manage administrator access to its Mobile Device Management service. Microsoft recently announced the addition of Role-Based Access Control (RBAC) to Intune. In this Ask the Admin, I'll look at what is new and how RBAC can help you manage administrator access to Microsoft's Mobile Device Management (MDM) service.     Intune is Microsoft’s popular cloud-based MDM service. Over the past 18 months, the company has been transitioning parts of the Intune infrastructure over to the Azure management portal. As part of that work, Microsoft recently added the capability to manage access to Intune using RBAC. For more information on Microsoft Intune, read Introduction to Microsoft Intune on the Petri IT Knowledgebase. Integrating Intune with the Azure management portal has allowed Microsoft to also provide deeper integration with Azure Active Directory (Azure AD), the cloud directory service used to manage access to born-in-the-cloud apps, Office 365, and other Microsoft services. Azure AD includes the necessary infrastructure to bring RBAC to Intune. Intune leverages existing Azure AD Directory Roles for high-level access to the service, including Global Administrator. Company Administrator for managing everything in Intune, and Intune Service Administrator for managing Intune but without access to Azure AD. For more granular control, Microsoft has added the following roles: Intune Role Administrator Policy and Profile Manager Application Manager Helpdesk Operator Read Only Operator But that is not all. Microsoft allows you to create custom roles that include permissions for specific functions. The creation of custom roles can also be automated using the Microsoft Graph API. Managing RBAC is... --- ### Microsoft Migrates Exchange Public Folders to Office 365 Groups > Microsoft has new tools to migrate Exchange public folders to Office 365 Groups. Sounds good. The tools work, but they need a lot of manual oversight. - Published: 2017-09-05 - Modified: 2024-12-03 - URL: https://petri.com/migrate-public-folders-office-365-groups/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange 2010, Exchange 2013, Exchange 2016, Exchange Online, migration, MRS, Office 365, Office 365 Groups, Public Folder, Quadrotech - Article Type: How To Microsoft has new tools to migrate public folders (the "cockroaches of Exchange") to Office 365 Groups. Sounds good. The good news is that the tools work, even if they need a lot of manual oversight. ISVs offer tools to do the same job with more automation. The choice is yours! On the Way to Groups In May 2017, Microsoft made a second call for customers to help test a migration toolset to move public folders to Office 365 Groups. Testing has progressed since and Microsoft is approaching the point of making the tools available. In my view, it is likely that we will see an announcement about availability happen at the Ignite conference later this month. This description is based on the code made available by Microsoft to beta customers. Migrating Public Folders to Office 365 with MRS Microsoft’s approach to migrating public folders to Office 365 Groups uses migration batches and the Mailbox Replication Service (MRS). When it first appeared in Exchange 2010, MRS replaced an older mechanism for moving mailboxes from earlier versions of Exchange. The big advance was asynchronous movement, meaning that users could continue working while MRS moved their mailboxes. Asynchronous mailbox moves have proven their worth as we move into the era of 100 GB mailboxes. Today, MRS can: Move mailboxes from old versions of Exchange. Move mailboxes between databases/servers to rebalance workload, including cross-forest moves. Migrate mailboxes from on-premises servers to and from Exchange Online, including migrations from IMAP4 servers. Move old public folders to modern public folders. Move public folders from on-premises servers to Exchange Online. Because Exchange Online stores public folders in public folder mailboxes and MRS already supports access to pubic folder mailboxes, it is natural to extend MRS and give it a new migration target in Office 365 Groups. The... --- ### Paul Thurrott's Short Takes: September 1 - Published: 2017-09-01 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-1/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it’s time to go back to school, this edition of Short Takes looks at the Windows 10 Fall Creators Update, Windows Mixed Reality, a digital personal assistant fail, and much, much more. Sit down, Waldo! Because it's time to go back to school, this edition of Short Takes looks at the Windows 10 Fall Creators Update, Windows Mixed Reality, a digital personal assistant fail, and much, much more. Windows 10 Fall Creators Update will arrive in October The Windows 10 Fall Creators Update---which upgrades Windows 10 to version 1709---will arrive on October 17, 2017, which makes sense, since October is the 9th month of the year. Ahem. Anyway, the Fall Creators Update is sort of a mulligan for the original Creators Update, which didn't really have much in the way of creator features per se. Or business/IT features either, for that matter. Given the slow pace of feature update rollouts, I imagine this one will be fully deployed by March 2018. Just in time for the Spring Creators Update. Hopefully not its real name. "Fix iTunes High CPU usage on Windows 10" Control Panel > Programs > Uninstall a program. Windows 10: Yep, still at 500 million users When Windows 10 first arrived two years ago, Microsoft used to routinely update its figure for active PCs, which is a very accurate measure of the number of people actually using the system. But with Windows 10 adoption slowing dramatically since the first-year free upgrade offer expired, Microsoft has been a lot quieter about this figure. And in its Fall Creators Update announcement today, it repeated the same number, 500 million active PCs, that it provided back in... --- ### What Is Azure Virtual Machine Accelerated Networking? - Published: 2017-09-01 - Modified: 2024-09-04 - URL: https://petri.com/azure-virtual-machine-accelerated-networking/ - Categories: Microsoft Azure - Tags: Accelerated Networking, Azure, Azure Virtual Machines, IaaS, networking, performance, SR-IOV, SRIOV, virtual machines - Article Type: Overview Aidan Finn discusses how you can achieve better networking performance with Azure virtual machines by using a feature called Accelerated Networking. In this post, I will discuss how you can achieve better networking performance with Azure virtual machines by using a feature called Accelerated Networking.   Faster Is Better Most workloads in Azure will probably never find networking to be the bottleneck. However, some workloads are extreme and need to be able to send or receive data at high speeds with reliable streaming and with lower CPU utilization. If that is the case for you, then Accelerated Networking is a feature that you should consider enabling when creating your virtual machines. It will enable speeds of up to 25Gbps per virtual machine. What Is Accelerated Networking? If you have been doing lots of reading about Hyper-V or have dived deep into hardware offloads for VMware, then you might be familiar with something called Single-Root I/O Virtualization or SR-IOV. SR-IOV is a virtualization feature that allows a virtual machine to use a virtual function or VF (a special guest OS driver) to connect directly to the physical function or PF on a physical network card (NIC). SR-IOV was a feature introduced in Windows Server 2012 Hyper-V. Microsoft announced at Ignite last year that it had started to turn on this feature in waves around the Azure regions. The Azure Implementation of SR-IOV is called Accelerated Networking. The below diagram shows the changes that introduction of Accelerated Networking, if you decide to use it, would do to the architecture of a virtual machine’s networking. The enabled NIC no longer passes through... --- ### Next Major Windows 10 Update Arrives October 17, Here's What's in it for the Enterprise - Published: 2017-09-01 - Modified: 2024-09-04 - URL: https://petri.com/next-major-windows-10-update-arrives-october-17-heres-whats-enterprise/ - Categories: Windows 10 - Tags: 1709, Fall Creators Update, News, Windows 10 - Article Type: News Microsoft will release Windows 10 version 1709 on October 17th and there is a lot packed in this release designed for enterprise customers. Microsoft has been working on the next major update to Windows 10 for several months. The company initially showed off the update at its Build conference earlier this year and now they finalizing the bits to release to everyone in the near future. Starting on October 17th, the 'Fall Creators Update' will be available worldwide. If this release is like any of the past updates, expect it to roll out slowly of the next several months but you will likely be able to install that day if you wish to do so. In the announcement, Microsoft is still sticking to the 500 million devices running the OS, a number that they announced earlier this year. While it's a bit too early to say that adoption of the OS has stalled, if we don't hear an update in the near future, it may be cause for alarm. Starting with this release Microsoft will finally integrate Windows Defender ATP across the entire threat protection stack which includes protecting, detection, and response pillars. The new centralized management component offers increased visibility and also new Security Analytics that will review Windows security feature utilization and configurations as well as Windows 10 security patch status across Windows 10 endpoints to provide improved visibility into the current status of your network. Windows Defender Exploit Guard is on the agenda for the upcoming release as well. This new feature will make Enhanced Mitigation Experience Toolkit (EMET) native to Windows 10. Exploit Guard introduces new capabilities... --- ### Choosing Between Cloud or On-Premises Storage for Small Business - Published: 2017-08-31 - Modified: 2024-09-04 - URL: https://petri.com/choosing-cloud-premises-storage-small-business/ - Categories: Backup & Storage - Tags: cloud computing, Cloud Storage, Google G Suite, Local storage, NAS Devices, Office 365, Small Business, Small Medium Enterprise - Article Type: Opinion In this Ask the Admin, Russell Smith looks at the benefits of cloud storage and why a combination of cloud and on-premises solutions is sometimes a happy medium. I recently compared on-premises Windows and NAS small business storage solutions on Petri. In that article, both parts of which you can catch here if you missed them, Selecting the Right SME Storage Solution Part 1: Windows Server and Selecting the Right SME Storage Solution Part 2: Network Attached Storage, I advised that you should not move to local storage unless you really need to. Only a few years ago, the question would have been reversed. The question would have been, "Should I move to cloud storage? "     In this Ask the Admin, I will look at the benefits of cloud storage and why a combination of cloud and on-premises solutions is sometimes a happy medium. Cost and Scalability The first and often primary consideration with any storage solution is cost. Comparing the price of online storage and an on-premises server solution is not straightforward because plans include much more than just disk space. Let’s look at the two most popular cloud-productivity suites as they both include storage. Office 365 users get 1TB of OneDrive for Business space included in small business plans. Unlimited storage is available only in Enterprise subscriptions. Google G Suite has three plans, of which Business and Enterprise offer unlimited storage when you have 5 or more users. Otherwise, these plans default to 1TB per user. G Suite Basic offers users 30GB each. So, Office 365 Business ($8. 25 per user/month) is cheaper than G Suite Business ($10 per user/month) if you only consider storage. It... --- ### Amazon Announces Updates to AppStream 2.0, including Domain Join, Simple Network Setup, and More - Published: 2017-08-31 - Modified: 2024-09-04 - URL: https://petri.com/amazon-announces-updates-appstream-2-0-including-domain-join-simple-network-setup/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, Application, AppStream 2.0, AWS, Cloud, News, streaming - Article Type: News Amazon recently announced several updates to the company's application streaming service, AppStream 2.0, including domain join, simple network setup, and more! In a recent post on the AWS blog, Amazon announced several updates to their application streaming service, AppStream 2. 0. These updates span several different areas related to application streaming, such as domain management, file storage, and audio streaming. One of the updates included in the announcement is a feature called “Domain Join”, which allows users to connect their AppStream 2. 0 streaming instances to a Microsoft Active Directory domain. With this feature, existing Active Directory policies can be applied to one’s streaming instances, enabling application users to use single sign on to access to a variety of devices and services across an internal network. Related to the new “Domain Join” feature in AppStream 2. 0, users can make use of the new user management features found within the service’s web portal. This includes the ability to create and manage user accounts, send “welcome” emails, and provides access to whichever applications a user has access to. Another new feature that Amazon announced is the ability to store files for use in future AppStream 2. 0 sessions, which can be useful to those who want to simply pick back up where they left off within an application. Files that are stored will be made available at the beginning of a user’s next session and any updates to these files are periodically synced back to the Amazon S3 folder that is automatically created when this persistent storage feature is enabled. It’s important to note, however, that users of this service are required to pay... --- ### Games Vendors Play with Exchange Hardware Configurations > Hardware vendors publish their solutions for Exchange through the Microsoft ESRP. The only thing is that some of the solutions are illogical and unworkable. - Published: 2017-08-31 - Modified: 2024-11-19 - URL: https://petri.com/games-vendors-play-exchange-hardware-configurations/ - Categories: Exchange 2013, Exchange 2016, Exchange Server - Tags: ESRP, Hardware, Microsoft Exchange, Solutions, storage - Article Type: Opinion Hardware vendors publish their solutions for Exchange through the Microsoft ESRP. The only thing is that some of the solutions are illogical and unworkable. In fact, some solutions are simply ridiculous. Sure, you could implement them - but at what cost and what level of reliability. But the solutions get your attention and that's their purpose. Planning a Hardware Refresh for Exchange? Although the success of Office 365 means the market for on-premises servers is declining, many organizations want to stay master of their own destiny and run applications like Exchange or SharePoint in-house. One of the advantages of Microsoft’s approach is that they still produce new versions of these applications and enable hybrid connectivity between the cloud and on-premises environments. We do not know how long this will continue, but it seems reasonable to expect at least one more round of Exchange and SharePoint versions in the future. If you decide to stay on-premises, you might also decide to refresh your hardware platform, perhaps alongside a move to Windows Server 2016, So you go into the market and begin a search to find suitable configurations. If you are looking for Exchange servers, you might find your way to Microsoft’s ESRP page and conclude that anything listed there as an “Exchange reviewed solution” is a good bet. But it’s not and here’s why. The Race to Impress Hardware vendors like having the fastest solution or one that supports more users, mailboxes, I/Os than their competitors. It is natural to want to be the best, fastest, biggest, or whatever and it is part of the strategy played to attract and win customers. Microsoft helps vendors understand applications like Exchange so that customers can buy configurations with confidence that the software will run well. But a program like ESRP is no guarantee that a tested configuration... --- ### Auditing Azure Usage Using Activity Log > Learn how to audit actions in Microsoft Azure, save searches, and retain years of history using Activity Log in the Azure Portal. - Published: 2017-08-30 - Modified: 2024-09-04 - URL: https://petri.com/auditing-azure-usage-using-activity-log/ - Categories: Microsoft Azure - Tags: Activity Log, Audit Trail, Auditing, Azure - Article Type: How To Aidan Finn explains how all actions in Azure are recorded, can be archived for long term retention, and searched. In this post, I will explain how all actions in Azure are recorded, can be archived for long term retention, and searched.     The Importance of Auditing Organizations require auditing of activity for all kinds of reasons. For some, there is no choice. They have a regulatory requirement to track all activity, no matter how big or small. Even without that legal need, having a log of who has done the different tasks can be very useful. It is useful to understand who did what and when for assigning responsibility. Perhaps you need to know who deleted a critical resource. You may need to understand when an expensive resource was deployed. I have had a situation where a customer claimed that they did not deploy something that greatly increased costs and because of that, they should not be billed for it. A quick peek into the logs and I could prove that the person complaining was the actual person that was to blame for the expensive resource being deployed. I could even say when they did it. That was followed quickly by an, “Ah! I remember now ... ” Having such an audit log can also be useful for troubleshooting. Maybe something stops working at a certain time. For example, maybe a SQL Server stops responding on the network at 16:42 on Tuesday. If we have a look into the logs for what was done just before that, maybe we will see a new Network Security Group rule being... --- ### Modern Workplace Community Empowered by SharePoint Communication Sites -- Part 2 - Published: 2017-08-30 - Modified: 2024-09-04 - URL: https://petri.com/modern-workplace-community-empowered-sharepoint-communication-sites-part-2/ - Categories: Microsoft 365 - Tags: Adoption, Modern Workplace, SharePoint Communication Sites - Article Type: How To The new SharePoint Communication Site is an excellent tool for setting up a Modern Workplace Community. Your adoption of Office 365 is going to thrive with this solution. Welcome back! This is the second part in my series about creating a Modern Workplace Community with the brand new SharePoint Communication Sites. The first part gave you a nice overview of the content and look/feel of the community. We are now going more in depth. Follow me!     Welcome Tiles   First up is the brand new Hero Web Part. This is a great Web Part to introduce your community and immediately display valuable links.  The Hero Web Part is basically a web part with links to sites or content empowered with images. There are a couple options to display the images: Tiles (5 max) Layers (5 max) Tiles are displayed in my screenshot. Layers look a little bit different:     Personally, I am not a fan of the layers view. The view takes up a lot of space on the page. The last part of the configuration is the content and the image of the tiles. You have a couple options at your disposal: Link: Select the link behind the tile. Title: Select the title for the tile. You can also show or hide the title. Image: Select your own image, random image, or only a color. Call to action: Show a call to action, such as The Learn More. This option is only available for the first tile. It is very easy to switch the order of the tiles. You use the arrow icon at the left bottom of the tile. My main advice for the Hero Web... --- ### Microsoft Begins External Testing of Guest Access For Microsoft Teams - Published: 2017-08-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-external-testing-guest-access-microsoft-teams/ - Categories: Microsoft 365 - Tags: Microsoft Teams, News - Article Type: News Anyone who is using Microsoft Teams has been waiting patiently for guest access and while the company isn't saying anything publicly, there is progress on this feature. When Microsoft announced Teams, one of the first requests was that the product would allow for guest access. At launch, this feature was not available but Microsoft did say that it would arrive in the near future... but then it never did. Guest access was publicly stated to arrive at the end of June but that timeline has come and gone and Microsoft is now keeping quiet about when this feature will finally make its way to every user. To try and figure out what is going on, I've poked around a little bit and I can tell you that the company is testing the feature but with a very small group of users. And this testing isn't internal, there are now users outside the Redmond walls with guest access but it is quite buggy. The worst bug was that if you clicked on any Microsoft username, you could then browse the company's internal org charts and message anyone at Microsoft, even the CEO. I believe this bug has been fixed but it goes to show you some at least one of the issues involved with allowing guest access to the environment. Unfortunately, I don't have a timeline for when this feature will be moved from a small beta group to the general population. It has been in testing for several weeks (if not longer) and progress is being made on stability; if we get lucky, maybe the company will announce it at Ignite next month. This is an... --- ### Microsoft Launches the Security Compliance Toolkit 1.0 - Published: 2017-08-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-security-compliance-toolkit-1-0/ - Categories: Security - Tags: Compliance, group policy, Security, Security Compliance Manager, Security Compliance Toolkit, Windows - Article Type: News In this Ask the Admin, Russell Smith explains why SCM was killed off and how the Security Compliance Toolkit stacks up in comparison. Security Compliance Manager (SCM) is dead. To replace it, Microsoft has released the Security Compliance Toolkit (SCT). In this Ask the Admin, I'll explain why SCM was killed off and how the new toolkit stacks up in comparison.     Microsoft recently announced the availability of the Security Compliance Toolkit 1. 0, which replaces the now retired Security Compliance Manager (SCM). In an announcement on the TechNet blog at the beginning of June, Microsoft stated that because SCM was so complex, supporting export of security baseline settings in Group Policy Object (GPO) backup, SCCM DCM, SCAP v1. 0, and Excel formats, plus loading baselines in the tool’s own propriety format, it became too unwieldy to manage. It had to be updated for each new release of Windows. Additionally, because SCM was designed for GPO management, expanding it for Desired State Management (DSC) and Mobile Device Management (MDM) would have meant completely reworking the tool. For more information on SCM, see Secure Standalone Windows Servers Using Security Compliance Manager and Create GPOs Using the Security Compliance Manager Tool on the Petri IT Knowledgebase. Windows security baselines are published on Microsoft’s TechNet website as . zip GPO backups, along with associated reports, Excel spreadsheets, WMI filters, and scripts for applying settings to local policy. The files will continue to be published on TechNet but will now also be part of the Security Compliance Toolkit. The new tool does not allow system administrators to edit GPOs, so Microsoft recommends setting up a... --- ### AutoSave: Nice Feature, but Office 365 Tenants Need to Keep an Eye on Network Demand > The CTR version of the Office desktop applications include an autosave feature for files stored in SharePoint and OneDrive for Business. Network bandwidth! - Published: 2017-08-29 - Modified: 2024-09-04 - URL: https://petri.com/autosave-office-documents/ - Categories: Microsoft 365, Office - Tags: Autosave, Excel, OneDrive for Business, PowerPoint, SharePoint Online, Word - Article Type: Opinion If you use Office 365 and store documents in SharePoint or OneDrive for Business, the Office applications can autosave as you work to ensure that you never lose any content. It’s a good idea and the implementation works well. But I have a slight nagging doubt about the network impact for some tenants. Stop Worrying About the Save Button Last March, one of Microsoft’s posts to Blogs. office. com mentioned that an auto-save feature was coming to Word, Excel, and PowerPoint for documents stored in SharePoint Online and OneDrive for Business sites. The blog proclaimed: “With AutoSave, you can stop worrying about hitting the Save button... ” Several months later, autosave duly turned up in the click-to-run versions of Excel and PowerPoint. Now, Word boasts the feature. This made me a lot more interested in the feature because I work more in Word than any other application, so autosaving was going to affect my personal workflow. No one likes the idea of losing work just because Windows, the network, an application bug, or something else causes a crash, and the thought of having a near-guarantee that Office will preserve all changes made to files no matter what happens is compelling. What AutoSave Does AutoSave works by monitoring what users do inside files as they work with documents. If the user updates the content, AutoSave uploads the changes to SharePoint or One Drive for Business and merges them into the copy of the file stored in the site, with the only sign of activity being the change in the document name in the title bar (Figure 1). Here we can see that AutoSave is in the process of saving changes. When the save finishes, the title changes to inform the user that the document is "Saved to OneDrive" or "Saved to SharePoint. " Documents saved locally... --- ### Azure Just In Time Virtual Machine Access - Published: 2017-08-28 - Modified: 2024-09-04 - URL: https://petri.com/azure-just-time-virtual-machine-access/ - Categories: Microsoft Azure - Tags: Azure, Azure Security Center, firewall, JIT VM Access, Just In Time VM Access, NAT, Network Security Groups, NSG, RDP, Security, Security Center, SSH - Article Type: How To Aidan Finn explains how JIT access to Azure virtual machines enables you to further secure virtual network deployments and enable on-demand access to the machines. In this post, I will explain how JIT access to Azure virtual machines enables you to further secure virtual network deployments and enable on-demand access to the machines.     A Need for More Security How often do you enable NAT rules in your on-premises firewall to allow RDP or SSH access to on-premises machines from the Internet? I bet, or should I say that I hope, that you never do that. If you need remote access to servers for remote troubleshooting, then you have secure solutions, such as VPN, DirectAccess, or similar. An Overview of the Azure Load Balancer Enabling Remote Virtual Machine Access   So why do we do things differently in Azure? Most of the machines that I see in Azure have NAT rules or direct public IP connections with accompanying Network Security Group (NSG or Azure firewall) rules that allow SSH or RDP access from the Internet to the machines. Some companies “solve” this public-access issue in a few ways, including: Create a “jump box” or “bastion host” that is the only machine that can be remotely accessed. Admins log into this box from the Internet and then jump to other virtual machines over the virtual network (VNet) or a VNet peering. The company limits SSH or RDP access to the public IP address/range of its on-premises firewall. An RDP Rule Permanently Opens RDP Access to the Subnet From the Internet [Image Credit: Aidan... --- ### NYPD Forced to Replace 36,000 Windows Phones After Microsoft Abandons Support - Published: 2017-08-28 - Modified: 2024-09-04 - URL: https://petri.com/nypd-forced-replace-36000-windows-phones-microsoft-abandons-support/ - Categories: Windows Client OS - Tags: News, Windows phone - Article Type: News The NYPD purchased 36,000 Windows Phones that now must be replaced as Microsoft is no longer servicing the OS which renders the devices obsolete. We have known for some time that Windows Phone was on its way out. After Microsoft began axing new devices, no longer updating older phones to Redstone 3 and not even mentioning its name in its earning statements anymore, the end of the road is here. But for those who made big bets on the devices, like the NYPD, this is a major problem. A 36,000 Windows Phones problem. As part of the NYPD's $160 million mobility initiative, they deployed Windows Phones to their officers which are no longer supported by Microsoft; the phones use nearly a dozen custom-engineered apps that now must be ported to iOS. The report comes from the NYPost who cites multiple sources and with 36,000 devices needing to be replaced, the upgrades will not come cheap; the phones were running Windows Phone 8. 1 Microsoft is usually known for having exceptional support for enterprise customers and this burn of the NYPD is not typical of their standard business practices. That being said, for the millions that were spent on these phones, Lumia 830s and 640XLs, the devices are no longer serviceable for the NYPD and now must be replaced at taxpayer expense. Delta also uses Windows Phones on their planes for in-flight purchases, I wonder if they will be dropping support for the devices in the near future as they also run Windows Phone 8. 1. Those who used Windows Phone will know that there was nothing wrong with the fundamental platform but the third-party support is what... --- ### PowerShell Classes Part 2 -- Enumerated Types - Published: 2017-08-28 - Modified: 2024-09-04 - URL: https://petri.com/powershell-classes-part-2-enumerated-types/ - Categories: PowerShell - Tags: Automation, Beginner, PowerShell, Scripting - Article Type: How To In the second part of the series on PowerShell classes, learn how and where to declare constant values using Enums and explore the differences between enums and ValidateSet. In my previous article, Creating Your First PowerShell Class, I introduced you to the concept of a programming class. Using an example of a “Rock” class, I discussed how to create a class in PowerShell using the class{} keyword, how to add properties to a class, and how to instantiate or create an instance of a class. In this article, I am going to expand on the “Rock” class by defining allowed values for a few properties using an enumerated type or simply called an enum.     Revisiting the Rock Class To recap, the Rock class definition contained 7 properties: Color, Luster, Shape, Texture, Pattern, Size, and Location. The first 6 properties were String properties and Location was an integer or a distance between some arbitrary point and the rock itself. ​ In addition, I also used the New constructor to create an instance of the rock and once I had an instance of the rock defined ($Rock), I could assign properties to it. ​ Limiting Allowed Values using an Enum Using string types for the rock properties will allow for an endless combination of possible property values. For example, I could define an instance of a rock’s size to be “HUGE” (as in the example above) or I could define it to be “VeryVeryLarge”. Conversely, I could define it as “teeny-tiny” or crumb-sized”. In this case, I want to limit the possible values for size to be only sizes that I have defined, like the shirt sizes of small,... --- ### Paul Thurrott's Short Takes: August 25 - Published: 2017-08-25 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-25/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because I'm finally settled in Pennsylvania like a tick, this edition of Short Takes looks at Microsoft sneakiness, no more forced Windows 10 upgrades, Microsoft's new SkyNet efforts, and much, much more. "Do these wands make me look silly? " Yes. And, yes, that is an Atari 2600 on the desk behind him. Because I'm finally settled in Pennsylvania like a tick, this edition of Short Takes looks at Microsoft sneakiness, no more forced Windows 10 upgrades, Microsoft's new SkyNet efforts, and much, much more. Sneaky, sneaky: Microsoft quietly removes ReFS from Windows 10 Pro In the latest in an alarming series of secretive moves by Microsoft, the software giant will defang Windows 10 Pro's file system capabilities with the Fall Creators Update. Now, only Windows 10 Enterprise and Windows 10 Pro for Workstations will be able to create ReFS ("resilient file system") volumes. (Yes, existing ReFS volumes will continue to work as you'd expect. ) The issue here isn't so much that Microsoft is changing the functionality, but rather the way it communicated the change. By which I mean didn't communicate the change. Back in July, the software giant documented the features it would deprecate in this new Windows 10 version. But this past week, it silently added ReFS to the list. Guys, you gotta be better than this. "How to run Windows 10 on your Mac" Gingerly. Microsoft promises Germany it won't force Windows 10 users to download future upgrades (wink, wink) As you may recall, Microsoft got itself into a bit of trouble two summers ago when users started complaining that their Windows 7/8. 1-based PCs were silently upgrading to Windows 10 without their consent. Microsoft... --- ### The Cloud -- Don't Be the Driver, Be the Mechanic > Training & experience are as important as ever with cloud computing, even though some features have dumbed down deployment by making it "too" easy. - Published: 2017-08-25 - Modified: 2024-09-04 - URL: https://petri.com/cloud-dont-driver-mechanic/ - Categories: Cloud Computing - Tags: Azure, cloud computing, education, JSON, The Cloud, training - Article Type: Opinion Aidan Finn argues why knowledge of how infrastructure works is still as important as ever. In this opinion post, I am arguing why knowledge of how infrastructure works is still as important as ever. Maintaining Your Car Have you ever taken your car, automobile, or horseless carriage, depending on what terminology you use, to a mechanic and watched them work? I recently had a breakdown on Ireland’s busiest road. I called my roadside rescue service and a mechanic was out pretty quickly. Once we had the car at a safer location, the mechanic went to work. He asked me about any alerts I saw, which I reported. He asked about any symptoms, which I reported.     And then the mechanic did what all mechanics do. He took out a little gadget and plugged it into the car. This is the equivalent of asking a computer, “Hey, what is wrong? ” After a second or two, the gadget reported that the car had no errors but the car still did not want to start. The engine attempted to ignite but it sounded like it was starved of fuel. After some attempts to start the car, the mechanic used his knowledge, experience, and skill. He took out a spanner, tapped the engine (I am not kidding), and asked me to try to start it ...  And, it started. It died a minute later but the mechanic knew the cause. It was a thing called a solenoid on the fuel pump that was jamming. Every time he tapped this tiny component, the jam cleared and after a while,... --- ### Google Cloud Speech API Improves Longform Audio Recognition -- Adds New Language Variants - Published: 2017-08-25 - Modified: 2024-09-04 - URL: https://petri.com/google-cloud-speech-api-improves-longform-audio-recognition-adds-new-language-variants/ - Categories: Cloud Computing - Tags: API, Cloud, Google, News, speech - Article Type: News In a recent update, Google's Cloud Speech API received improved longform audio recognition, as well as the addition of 30 new language variants. Cloud Speech, Google's neural network powered speech-to-text API, provides an easy way for developers to recognize and convert audio into text. The service also enables this conversion to happen in real time and in environments with background noise.     With the most recent updates to the service, Cloud Speech can now be used to transcribe files up to three hours long, a 44. 4 percent increase from the previous maximum file length of 80 minutes. If an application should require support for files longer than three hours, users can apply for a quota extension via Google's Cloud Support. However, these extension requests will be granted on a case-by-case basis. While this particular update likely will not be used by everyone, it can certainly be beneficial to those who may have to transcribe longer audio files, like companies that offer transcription services. Additionally, Google added support for 30 additional language varieties to Cloud Speech, which already supported 89 different languages prior to the update. Given the reach of technology today, this can open up voice and audio services to more people around the world. A complete list of the languages supported by Google Cloud Speech is available on the service's "Language Support" page. Google also unveiled new word-level timestamps, which enable users to jump to a particular moment in an audio file where the associated text was spoken. Conversely, this feature can also be used to display the associated text while playing back the audio. According to Google, this... --- ### Microsoft Will Release Windows Server 1709 at Ignite in September - Published: 2017-08-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-release-windows-server-1709-ignite-september/ - Categories: Windows Server - Tags: Microsoft, Windows Server - Article Type: News Microsoft is planning to release the first iteration of Windows Server from its semi-annual channel at Ignite next month. In about a month from now, Microsoft will be hosting its annual IT Pro conference in Orlando called Ignite. At the event, the company will be releasing Windows Server 1709 which is the first public build from its new semi-annual channel. Earlier this year, Microsoft announced that they would be changing up the servicing model for Server to include a long term servicing channel and a semi-annual release. Version 1709 falls into the semi-annual release pipeline with LTSC iterations getting the proper Windows Server 20XX year naming convention to help distinguish the difference between the two version of the software. In addition to the new servicing channel, Microsoft has also created an 'Insiders' program for the server software that allows you to beta test the semi-annual channel before the software is released. That being said, this software should not be used in production and is for testing purposes only as there are no guarantees for stability or performance. Microsoft has already released two Insider builds of the platform to testers and if you are interested in testing the software, you can sign up here. There are several new features coming with this release including SMB volume mounting as well as support for shielded Linux VMs. Additionally, persistent memory can now be utilized by Hyper-V VMs; this is a small smapling of the updates coming and Microsoft will discuss this release in detail next month. If you are headed to Ignite next month, make sure to let us know... --- ### Nano Server End of Support Is "Spring 2018" > The end of support for Windows Server 2016 Nano Server is probably April 2018. I'll explain this calculation and how you can deal with the issue. - Published: 2017-08-24 - Modified: 2024-09-04 - URL: https://petri.com/nano-server-end-support-spring-2018/ - Categories: Windows Server 2016 - Tags: End of Support, Microsoft, Nano Server, Windows Server 2016, WS2016 - Article Type: Overview Aidan Finn discusses the impact of the end of Nano as a viable operating system for physical and virtual machines. Microsoft recently announced the end of Nano as a viable operating system for physical and virtual machines. This is effectively ending its infrastructure role for scenarios, such as storage and Hyper-V. Some people have Nano Server deployed already, so this will have an impact on them. That impact will be sooner than some might have expected.     Support Life Cycle Normally when Microsoft launches an enterprise product, such as Windows Server, we know that it will have 5 years of mainstream support, including development, bug fixing, and security updates. It also usually has 5 years of extended support, which is mostly bug fixing but also limited support for management agents. It generally also has an option to purchase additional Premium Support. Recent years have seen Microsoft change how they deal with support life cycles. We know this from Windows 10, where the official support statement says that a ... ... device needs to install the latest update to remain supported. Nano Server was intended by Microsoft to be it cloud operating system for customers, as Microsoft stated here. Nano Server is serviced with a more active model, called Current Branch for Business (CBB), in order to support customers who are moving at a “cloud cadence," using rapid development cycles. Nano Server was supposed to have a new release two or three times per year, which never happened. Each release of Nano Server was supposed to be supported if it was no more than two CBB releases behind... . --- ### Groups versus Teams: Two Sides of the Same Coin > Office 365 Groups and Microsoft Teams are two of the collaboration offerings available within Office 365. Some get very vexed about the two applications. - Published: 2017-08-24 - Modified: 2024-09-04 - URL: https://petri.com/groups-and-teams-office365/ - Categories: Microsoft 365, Office - Tags: Office 365 Groups, Outlook, Teams, Yammer - Article Type: Opinion Office 365 Groups and Microsoft Teams are two of the collaboration offerings available within Office 365. Some get very vexed about the two applications. I don't because I think the two serve different audiences and exist for different reasons. Arguing About Teams I am bemused by those who want to compare Office 365 Groups and Teams in a sort of technology deathmatch to decide which application is better. Perhaps this always happens when new applications appear. People are naturally curious and want to know whether they should embrace new technology if it is much better than what they use today. In this case, Teams are not better than Groups. Rather, Teams are just different to Groups. The Same Root Sometimes I think Microsoft struggles to position Office 365 Groups. To me, there are two major elements to consider. First, the identity service that defines groups and manages their membership. Figure 1 is the best pictorial representation I have seen from Microsoft to explain the use of Groups as a membership service. Figure 1: Groups as a membership service (image credit: Microsoft) Then we have the original Office 365 Groups application, now referred to as Outlook Groups because Outlook clients store conversations in Exchange mailboxes Teams uses the same identity service. A team is a group and team membership is group membership. Yammer groups also use the identity service and a Yammer group is a group and its membership is the group membership. Stream does the same if used inside Office 365. The point here is that Teams and Groups share the same foundation. They also share many of the same resources, like a SharePoint team site, shared notebook, shared calendar, and plans. In... --- ### Modern Workplace Community Empowered by SharePoint Communication Sites -- Part 1 - Published: 2017-08-23 - Modified: 2024-09-04 - URL: https://petri.com/modern-workplace-community-empowered-sharepoint-communication-sites-part-1/ - Categories: Microsoft 365 - Tags: Adoption, Modern Workplace, SharePoint Communication Sites - Article Type: How To The new SharePoint Communication Site is an excellent tool for setting up a Modern Workplace Community. Your adoption of Office 365 is going to thrive with this solution. Microsoft launched the new SharePoint Communication Sites. This is an excellent new release of a SharePoint template for communicating and publishing content. It is also a first-step toward an out-of-the-box Intranet within Office 365.     You probably, knock on wood, remember my adoption series on Petri. You do? Awesome! You don't? Shame on you. Here are the articles: Driving Adoption for Office 365, Part 1 Driving Adoption for Office 365, Part 2 Driving Adoption for Office 365, Part 3 Driving Adoption for Office 365, Part 4 Driving Adoption for Office 365, Part 5 Driving Adoption for Office 365, Part 6 Office 365 empowers the Modern Workplace for businesses worldwide. Although the Office 365 services and tools are often intuitive, adoption is crucial in turning your projects into a success. An important part of adoption is bringing people together to share ideas and expertise for the modern workplace. Traditionally, the following components were used: SharePoint Document Library: Storing manuals, quick reference cards, and other documents SharePoint Pages: Guidelines and best practices Yammer Group: Asking questions, sharing ideas, and expertise Office 365 Video Portal or Stream: Storing how-to-videos The release of the Communication Site offers an incredible change to bring all these components and people together. This can help in creating a real community within your business for the people and by the people! I would like to share a community that I created for our customers.  This part shows an overview of the community. The follow-up article contains a detailed... --- ### Microsoft Sunsets GigJam, Never Found A Place To Party - Published: 2017-08-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-sunsets-gigjam-never-found-place-party/ - Categories: Office - Tags: Gigjam, News - Article Type: News Microsoft is shutting the doors on Gigjam, a service that was trying to align unstructured content to create new workflows. In 2015 at its then named Worldwide Partner Conference, Microsoft showed off what the company hoped would be a new service to help streamline workflows and help users get work done. As of Septemeber 22nd, the service will be retired. The announcement was posted on the company's blog and does not provide any direct reasoning for the closure of the service. The oddly named GigJam never quite found its place in Microsoft's portfolio by trying to create unstructured workflows known gigs. The product was not formally offered to users and only existed in a preview program; with its end now marked on the calendar, it's safe to say that this product did not materialize in a way that offered meaningful value to its users. As Mary Jo Foley notes, there isn't an existing Microsoft product that offers what GigJam was designed to accomplish. That being said, it wouldn't surprise me if the company finds a way to extract the more valuable parts of the application and include them in other workflow related applications. Flow automation is a big part of what Microsoft is working towards across several of its platforms including Azure and this service attempted to bring that functionality to the Office workflow. It's not often that Microsoft ends the life of a product that had potential in the enterprise. The company is continuously looking for ways to improve the value of Office 365 and GigJam likely could have fit into that portfolio. With that being said, if... --- ### Avoiding the Five Biggest Disaster Recovery Mistakes - Published: 2017-08-22 - Modified: 2024-09-04 - URL: https://petri.com/avoiding-the-five-biggest-dr-mistakes/ - Categories: Windows Server - Tags: Disaster Recovery - Article Type: Overview Michael Otey talks about avoiding the five biggest disaster recovery mistakes. Having a disaster recovery (DR) plan is critical for businesses of all types and sizes. This concept is a given but creating and executing good and comprehensive DR plans for most organizations is complex and difficult. Businesses today have sophisticated and interconnected infrastructures that have lots of moving parts, which makes it difficult to completely protect all of the different components. Let’s have a look at the five biggest DR mistakes that your business should try to avoid.     Inadequate testing of your DR plan -- Without a doubt, the biggest mistake to avoid in your DR planning is not adequately testing. Just like programming, where an application needs to go through multiple iterations of development and testing before its ready to be released into production, the same is true of your DR plans. If you do not test your DR plans, then you can be certain they will not work when you need them. Even the best-laid plans will fail if they are not tested. Today’s IT environments are simply too complex to rely on a DR plan that is untested. Inadequate copies of your recovery data -- The next big problem is not making enough copies of your critical DR data. Backup data corruption is the number one cause of failure for restore operations. The best way to protect your company from media-restore failures is by following the 3-2-1 backup rule. Make sure that you have at least three copies of your backup data with... --- ### Microsoft and Red Hat Extend Partnership, Simplify Deploying Containers - Published: 2017-08-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-red-hat-extend-partnership-simplify-deploying-containers/ - Categories: Cloud Computing, Microsoft Azure, SQL Server - Tags: linux, Microsoft, News, Red Hat - Article Type: News Microsoft and Red Hat are deepening their relationship to make it easier to run containers in your environment regardless of the operating system. What was once an oddity in the Microsoft world is now common practice. The company is no longer the enemy of open source technology but has now fully embraced the software and is also contributing to it as well. Today, Microsoft and Red Hat have announced that they are deepening their relationship and are working together to make it easier to run containers in your environment. The two companies are working together to bring native support for Windows Server containers on Red Hat OpenShift Container Platform, Red Hat OpenShift Dedicated on Microsoft Azure, and SQL Server on Red Hat Enterprise Linux and OpenShift. Microsoft is betting big on containers as their value is starting to materialize with the minimal overhead needed to run applications. Last month, the company announced Azure Containers Instances which streamlines the process of deploying containers without the need for an underlying virtual machine. This is not the first time that Microsoft has worked with Red Hat, they initially partnered with the company back in 2015 to bring some of the company's software to Azure. This collaborations between Microsoft and Red Hat is significant as very few IT organizations are homogenous. With organizations running OpenShift soon having the ability to natively run Windows Server containers, this makes the container platform the first to both support Linux apps and Windows Server on a single platform; this functionality is expected to arrive in the Spring of 2018. On the Microsoft side of the coin, Red Hat OpenShift... --- ### Microsoft Has Problems as They Work to Improve Office 365 Support > Microsoft is working on ways to improve how tenants receive support for Office 365. The problem is that they haven't told anyone. - Published: 2017-08-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-problems-office-365-support/ - Categories: Microsoft 365, Office - Tags: Office 365, Office 365 Admin, Office 365 roadmap, Support - Article Type: News Microsoft is working on ways to improve how tenants receive support for Office 365. The problem is that they haven't told anyone what they or doing or why they are changing the support process. Some good things are happening, but it's all cloaked in darkness. The Challenge of Office 365 Support A vast variety of organizations use Office 365 from 5-people businesses to the largest multinationals. The experience of the people working in those tenants range from zero IT experience to some of the most experienced technologists. The upshot is that Microsoft receives a massive stream of support requests daily in over 100 languages looking for help with anything from very basic questions to some very deep and specific problems that might take weeks to solve. Microsoft needs to record, work on, and solve all those requests. It is truly a Herculean task. A team within the Office 365 product organization, called “Satisfy”, is responsible for making the support experience as good as possible for customers. Some of those changes are flowing out to tenants now, but it has been a bumpy ride. Flawed Switchover for Office 365 Support UI Over the past few months, several posts appeared in the Microsoft Technical Community to describe problems that people had with Office 365 support. To be fair to Microsoft, any system has a certain volume of ongoing support problems. And the sheer size of Office 365 means that its support load and support issues can be large. Given the scale of Office 365, there are always likely to be some support snafus ongoing at any time. An April 19 post describes how Microsoft had changed the “support experience” or the UI in the Office 365 Admin Center to allow tenant administrators to file support... --- ### Managing Macro Security in Office 2016 - Published: 2017-08-21 - Modified: 2024-09-04 - URL: https://petri.com/managing-macro-security-office-2016/ - Categories: Security - Tags: Macros, Malware, Microsoft Office, Office 365, Security - Article Type: How To In this Ask the Admin, Russell Smith looks at how you can secure Office 2016 macros and VBA code to prevent attacks. Office macros are one of the most common ways hackers infiltrate Windows PCs. In this Ask the Admin, I'll look at how you can secure Office 2016 to prevent attacks.     Macro-based malware used to be one of the most popular ways of infecting Windows and had largely become extinct. But at the beginning of 2015, Microsoft reported that macro-based malware had started to make a comeback. Despite efforts by Microsoft to bolster security in Office 2016, infections caused by macro-based malware are on the rise. Microsoft’s Security Intelligence Report volume 21, which presents data collected from January to June 2016, shows that Microsoft Word documents were the most common file type to contain malicious payloads: Microsoft Word files accounted for 38. 5 percent of malicious files. Of these, the most common file extensions were . doc, used for the binary file format used in Word 97-2003 and . docm, used for Word documents that contain macros. Types of Malicious Files Blocked by Office 365 ATP (Image Credit: Microsoft) Visual Basic for Applications and Macros Visual Basic for Applications (VBA) is a programming language, based on Visual Basic, that is included in the Microsoft Office desktop apps. Developers can use it to automate complex or repetitive tasks, or users can create macros to automate tasks without any programming knowledge. Like any powerful technology, VBA can be abused by hackers to run malicious code. According to Microsoft, 98 percent of all attacks against Office involve macros. Attacks... --- ### Microsoft's Removing ReFS Creation Functionality from Windows 10 Pro - Published: 2017-08-21 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-removing-refs-creations-functionality-windows-10-pro/ - Categories: Windows 10 - Tags: News, ReFS, Windows 10 pro - Article Type: News Microsoft is removing some ReFS functionality from Windows 10 Pro likely to force users to a higher-priced version of the operating system. Tell me if you have heard this one before, Microsoft is cutting features from Windows 10 Pro to push you towards a higher-priced version of Windows 10. As of August 17th, Microsoft has quietly updated the list of features that are being removed or deprecated in the Fall Creators update and this will impact Pro users. On August 17th, Microsoft added to its technical document that details what features will be removed or deprecated with the Fall Creators Update to include that the creation of ReFS drives is no longer supported in Windows 10 Pro. To get this feature, you must be on Enterprise or Windows 10 Pro Advanced Workstations; both SKUs are more expensive than Pro. The decision to remove this functionality came late in the development cycle of the Fall Creators Update as the last Insider build to be released, 16257, still supports the creation of a ReFS drive using Storage Spaces but the process does fail during the formatting process. To check that this is a new restriction, on Windows 10 Pro 1607, I was able to create a storage pool using ReFS and the exact same process failed with the latest build of the OS worked fine on the older builds of Windows 10. Using this type of feature is for advanced users and likely won't impact too many users of Pro but it's the fact that Microsoft has no problems cutting features from this SKU that is more alarming. Microsoft has already trimmed... --- ### Managing Azure Resources with Cloud Shell - Published: 2017-08-18 - Modified: 2024-09-04 - URL: https://petri.com/managing-azure-resources-cloud-shell/ - Categories: Cloud Computing - Tags: Azure, Azure CLI, Azure Cloud Shell, cloud computing, PowerShell - Article Type: Overview In this Ask the Admin, Russell Smith looks at the different ways Azure can be managed from the command line, including Cloud Shell, which is currently in preview.   Get stuff done from almost anywhere with Azure Cloud Shell. In this Ask the Admin, I'll look at the different ways Azure can be managed from the command line, including Cloud Shell, which is currently in preview.     If you have read some of my previous posts on managing Azure, you will know that I am a big fan of automation using PowerShell and Azure Resource Manager (ARM) JSON templates. It is rare that I need to do something only once, so it makes sense most of the time to learn how to configure or deploy a resource using one of the above methods. For more information on using PowerShell and ARM to manage Azure, see Deploy VMs Using Azure Resource Manager and PowerShell and Provision a Domain Using a Microsoft Azure Resource Manager Template on Petri. There are five main ways in which you can deploy and configure Azure resources: Azure management portal Microsoft Azure PowerShell Azure Command Line Interface (CLI) Azure Resource Management templates REST API The Azure management portal is good for making one-off configuration changes and quickly deploying ARM templates from the QuickStart gallery. You can also use it to generate ARM templates from applications that you have deployed manually. The portal is usually the best solution if you need a visual overview of what is going on in your Azure environment. The RESTful APIs are largely intended for developers so that they can configure Azure using web services. Azure PowerShell Versus... --- ### Paul Thurrott's Short Takes: August 18 - Published: 2017-08-18 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-18/ - Categories: Cloud Computing, Mobile, Windows 10 - Article Type: Overview Because it's important to curate images on the Bing home page, this edition of Short Takes looks at the new Skype on Windows, Microsoft's case for Defender, Bill Gates nets $4.6 billion, and much more. Because it's important to curate images on the Bing home page, this edition of Short Takes looks at the new Skype on Windows, Microsoft's case for Defender, Bill Gates nets $4. 6 billion, and much more. Dickgate: Microsoft exorcises sand art from the Bing home page In what is an increasingly long list of words I never thought I'd write, Microsoft this week had to Photoshop a Bing home page photo of a beach to remove a penis someone had drawn in the sand. That would pretty much be the end of the story, except that---and, seriously, this is hilarious---British Airways was kind enough to repost the unedited version of the image on its own website too. Like minds, I guess. "World's Best Teens Compete in Microsoft Office World Championship" I think you mean "world's nerdiest teens. " Hate the new Skype on mobile? Just wait until you see it on the desktop! As you may recall, Microsoft released a Snapchat-inspired update to its Skype mobile app earlier this summer, angering the remaining users of the service thanks to all the superfluous and silly animations and other nonsense. But after pledging to address the complaints, Microsoft fired another salvo against those who just want to send messages and get on with life: It released a desktop version of this atrocity to Mac and Windows 7/8. x/10 users that has all of the same features and user experiences. That said, the desktop version does have a few unique features, too, and not... --- ### Starting an Azure Runbook from Your Phone > This post will show you how to use the Microsoft Flow app on your phone to start and stop Azure VMs via Automation runbooks in a user friendly way. - Published: 2017-08-18 - Modified: 2024-09-04 - URL: https://petri.com/starting-azure-runbook-phone/ - Categories: Cloud Computing - Tags: Automation, Azure, Azure Automation, Azure Virtual Machine, Flow, Flow App, Microsoft Flow, Mobile Phone, Office 365, Start, Stop, virtual machines - Article Type: How To Aidan Finn shows you how to execute Azure Automation runbooks from your phone. In this post, I am going to show you a way to make it easy for people to execute Azure Automation runbooks from their phone. This solution, based on Office 365 Flow, does not require signing into the Azure admin app or the Azure Portal. It is also very easy. For example, a user can start or stop a line-of-business (LOB) app with the click of a single button.     The Desired Solution In my demo lab, I have deployed an Azure Automation account called auto-petriauto. There are two custom runbooks in the account for starting and stopping a set of virtual machines that make up an LOB app: StartVMs StopVMs The Runbooks in Azure Automation   In my solution, I want to create a button in Flow for each runbook. When I install the Flow app on my phone, each of these buttons will appear. If I click the StartVMs button, Flow will reach out to Azure Automation, via a webhook, and trigger the execution of the StartVMs runbook. The result is a very easy way to start and stop my LOB app without having to do anything with Azure on a day-to-day basis. I have actually used this solution to start up and shut down demo labs on demand to save credit. I like it because it is very quick and easy to do. Note: The Runbook Gallery in Azure Automation is full of examples for starting/stopping virtual... --- ### What Are Azure Web App Service Plans? > This post describes how Azure app services are run in an App Service Plan, and the features of each tier of the App Service Plans. - Published: 2017-08-17 - Modified: 2024-09-04 - URL: https://petri.com/azure-web-app-service-plans/ - Categories: Microsoft Azure - Tags: API App, App Service Environment, ASE, Azure, Azure App Service, Mobile App, PaaS, Plan, Tier, Web App, Web Job - Article Type: Overview Aidan Finn explains how elements of the Azure App Service are executed in instances of an Azure App Service plan and what those plans are. What Are the Azure App Service Plans? In this post, I will explain how elements of the Azure App Service (except Functions) are executed in instances of an Azure App Service plan and what those plans are.     Under the Covers The Azure App Service offers several services for running your line-of-business (LOB) application code: Web Apps Web Jobs Mobile Jobs API Apps Logic Apps Functions All but Functions from the above list are executed inside of virtual machines that are abstracted and managed by the Azure Service Fabric. A Representation of the Azure Service Fabric   Those virtual machines: Must be sized to determine RAM and processor capacities Tiered by Microsoft so that you get more functionality for higher spec machines Must be paid for based on the tier that is chosen, the size used within that tier, and the consumption of that tier Execute in a specific Azure region The role of the App Service Plan is to specify a series of virtual machines with a set of capabilities and to size the virtual machine’s RAM and processor capacities. When you deploy a new Web App, API App, mobile app, or Web Job it will be assigned to an App Service Plan in a specific Azure region. Think of this as deploying an app into a virtual machine. You will choose a tier (a set of capabilities) and the size (processor and RAM) of the plan, so ensure... --- ### What GDPR means to Office 365 > The EU introduces the GDPR in May 2018. What consequences will GDPR have for Office 365 customers. - Published: 2017-08-17 - Modified: 2024-11-19 - URL: https://petri.com/gdpr-office-365/ - Categories: Microsoft 365, Office - Tags: Compliance, Exchange Online, GDPR, Office 365, OneDrive for Business, personal data, Retention, SharePoint Online - Article Type: Opinion The European Union will introduce the General Data Protection Regulations (GDPR) in May 2018. The intention is to deliver better protection for personal data, which is laudable. Like with many regulations, the problems arise in implementation. Office 365 holds a lot of personal data, so Office 365 tenants must cope with GDPR. GDPR Affects All European Businesses From May 25, 2018, companies with business operations inside the European Union must follow the General Data Protection Regulations (GDPR) to safeguard how they process personal data “wholly or partly by automated means and to the processing other than by automated means of personal data which form part of a filing system or are intended to form part of a filing system. ” The penalties set for breaches of GDPR can be up to 4% of a company’s annual global turnover. For companies like Microsoft that have operations within the EU, making sure that IT systems do not contravene GDPR is critical. And as we saw on August 3, even the largest software operations like Office 365 can have a data breach. Because many applications can store data that might come under the scope of GDPR, the regulation has a considerable influence over how tenants deal with personal data. The definition of personal data is “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. ” GDPR goes on to define processing of personal data to be “any operation or set of operations which is performed on personal data or on sets... --- ### Amazon launches Amazon Macie, a Service for Discovering, Classifying, and Securing Data at Scale - Published: 2017-08-16 - Modified: 2024-09-04 - URL: https://petri.com/amazon-launches-amazon-macie-service-discovering-classifying-securing-data-scale/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, macie, News, Security - Article Type: News In a recent update, Amazon announced Amazon Macie, a new security service that uses machine learning to discover, classify, and secure data stored in Amazon S3 at scale. Recently, Amazon announced the launch of Amazon Macie, a new service that uses machine learning to detect, classify, and secure sensitive data stored in Amazon S3. Amazon Macie uses machine learning algorithms for natural language processing to automate data classification, assigning a business value to new objects in near real-time as they’re added to S3 buckets. This is done with the help of AWS CloudTrail, with the service continuously checking CloudTrail events within S3 buckets for new PUT requests. Amazon’s new service will then continuously monitor the data, looking for suspicious activity based on access patterns. This is done by using predictive analytics algorithms, with the service also running an engine used to detect common sources of sensitive or personally identifiable information. If Amazon Macie detects what it believes may be suspicious behavior, it can then notify users of this, which can be beneficial, especially to those who may be storing and working with data that requires tight security. According to Amazon, some of the key features of Macie include: Data Security Automation Data Security and Monitoring Data Visibility for Proactive Loss Prevention Data Research and Reporting When it comes to alerts and reporting, Amazon Macie supports 20 different alert categories that can be used to notify users of high-risk data events, API keys and other credentials being stored within the source code, potential attacks, and more. Users can also view dashboards that contain information on the data itself (which data may have a high business value, etc. ),... --- ### Microsoft Quietly Moved Font Parsing to AppContainer in the Anniversary Update - Published: 2017-08-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-quietly-moved-font-parsing-appcontainer-anniversary-update/ - Categories: Security - Tags: Anniversary Update, App, Font, Micorosft, Security, Windows 10 - Article Type: News In this Ask the Admin, Russell Smith explains why you probably should not enable Untrusted Font Blocking in Group Policy. Last May on Petri, I wrote about a security feature in Windows 10 that enables the blocking of untrusted fonts. Fast forward a year and news of a change in the Windows 10 Anniversary Update has rendered this setting less-useful with Microsoft recommending that it should not be enabled.     In this Ask the Admin, I'll explain the changes and why you probably should not enable Untrusted Font Blocking in Group Policy. Windows 10 contains a security feature that allows system administrators to prevent users loading fonts not located in the trusted %windir%/Fonts directory. This should help to prevent remote web-based and local escalation of privilege attacks that can occur when Windows uses graphics device interface (GDI) APIs to load and render fonts. There are three levels of operation: On, Audit, and Exclude apps to load untrusted fonts. However, enabling the Untrusted Font Blocking settings comes with some drawbacks, including causing sites in Internet Explorer that use embedded fonts to revert to using a default font. For more information on the Untrusted Font Blocking setting, see Windows 10 Tip: Block Untrusted Fonts on Petri. The Windows 10 Anniversary update included a new always-on mitigation against GDI parsed fonts. Although, Microsoft only published information about it on its website six months later. Because blocking GDI parsed fonts caused so many issues for users, Microsoft needed to come up with a more effective workaround. Starting in the Anniversary Update, GDI font parsing is moved from kernel mode to a... --- ### Microsoft Adding Support for Progressive Web Apps in Windows 10 - Published: 2017-08-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adding-support-progressive-web-apps-windows-10/ - Categories: Windows 10 - Tags: Chrome, Hosted Web Apps, HTML5, Microsoft Edge, Mobile, Progressive Web Apps, Windows 10 - Article Type: Overview In this Ask the Admin, Russell Smith explains how Progressive Web Apps could change the future of apps across all platforms. Progressive Web Apps, Hosted Web Apps, Universal Windows Apps... that is a ton of apps. How do Progressive Web Apps (PWAs) differ from what is supported in Windows 10 today? In this Ask the Admin, I will explain how PWAs could change the future of apps across all platforms.     However you look at it, Google Chrome has a monopoly on web apps. Most Chrome Apps are HTML5 sites. Some of these work offline, are tested, and then packaged to work in Chrome. Some Chrome Apps are also just web wrappers, such as WhatsChrome. Most Chrome Apps can be opened in any HTML5-compliant browser, including Microsoft Edge. Sometimes, these exhibit quirks because they are only tested in Chrome. So at the end of the day, if you choose to use an unsupported browser, HTML5-compliant or not, you are probably on your own if you run up against problems. Other apps do not support Microsoft Edge outright, one way or another. Grammarly for example only provides a free service to users of Chrome, Safari, and Firefox. If you want to use Edge, you will need to sign up for Grammarly Premium(Grammarly now has an Edge extension). And Join. Me does not support audio if the browser is Edge. This is possibly because Edge does not run WebM codecs in HTML5 media elements, like the Video tag, but only with Media Source Extensions (MSEs). Whether a technical issue or politics, Microsoft is left with a problem. Especially for Windows 10 S, where... --- ### What Is Outlook Customer Manager? - Published: 2017-08-15 - Modified: 2024-09-04 - URL: https://petri.com/outlook-customer-manager/ - Categories: Office - Tags: cloud computing, Customer Relationship Management, Office 365, Outlook, Productivity, Small Business - Article Type: Overview In this Ask the Admin, Russell Smith explains what Outlook Customer Manager is and how it integrates with Office 365. Microsoft has recently made Outlook Customer Manager available for Office 365 Business Premium subscribers after releasing it in preview form last fall. In this Ask the Admin, I'll explain what Outlook Customer Manager is and how it integrates with Office 365.     There is a problem that plagues small companies not using technology effectively to manage client relationships. How does the company stay organized enough to deliver on promises and requests for information? It is all too easy to forget to reply to an email or miss a project deadline, which can lead to lost opportunities, reputational damage, and valuable customers ending their relationship with your company. Salesforce is a well-known enterprise product that addresses this issue but now, Microsoft has come up with a solution for the SME space. Outlook Customer Manager is a lightweight Customer Relations Management (CRM) solution that makes it very simple to organize and collate tasks, email, notes, and deals related to clients and customers. It keeps track of all details about a client or potential client in one place, which proves invaluable for smaller organizations that need to spend more time doing and less time sitting in front of a computer. Outlook Customer Manager is available in Office 365 in your browser or as an add-in for Outlook 2016. It will soon be available as a mobile app for iOS. As an add-in for Outlook, Customer Manager integrates with email, tasks, contacts, and Office 365 groups. All your customer information appears... --- ### Microsoft's Latest Acquisitions Aims to Democratize the Super Computer - Published: 2017-08-15 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-latest-acquisitions-aims-democratize-super-computer/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, cloud computing, Cycle Computing, Microsoft - Article Type: News Microsoft has acquired Cycle Computing which is a cloud orchestrator and should make it easier to tap into the raw power of Azure. The cloud is a wonderful piece of technology that has made it easier to access vast compute power with minimal overhead for the end user. With Microsoft's acquisition today of Cycle Computing, the company is looking to make it easier to access the raw power of Azure. The word supercomputer has been around for decades and has been often limited to either scientific processing or governments who need them for determining how uranium decays during its lifecycle (as an example). But with the cloud now being fully available and with it comes a massive compute-footprint, accessing a modern day super computer has never been easier. Cycle Computing is a cloud orchestrator that streamlines the process for customers to access these high compute services and other intensive computing applications. Microsoft believes that with this acquisition, along with Cycle Computing's expertise, they will be able to democratize the super computer. This is a natural acquisition for Microsoft as it fits perfectly into their Azure narrative. With the company's cloud run rate quickly approaching $20 billion, this type of acquisition will expand the value of Azure for its customers while also adding to the bottom line for Microsoft. Pricing for the purchase was not announced but for its founders, it's likely a big payday. Jason Stowe notes in his blog post announcing the acquisition that Cycle Computing was bootstrapped and did not accept any VC funding. Microsoft hasn't said how this product will be brought into the Azure family of services... --- ### Office 365 Powers Microsoft to Higher Cloud Revenues > Microsoft must have been happy with the $18.9 billion run rate they achieved for commercial cloud products in fiscal 2017. But what makes the money? - Published: 2017-08-15 - Modified: 2024-09-04 - URL: https://petri.com/office-365-powers-cloud-revenues/ - Categories: Microsoft 365, Office - Tags: Amazon, AWS, Azure, Dynamics 365, Office 365, results, revenue Microsoft must have been happy with the $18.9 billion run rate they achieved for commercial cloud products in fiscal 2017. But what segment makes the majority of this revenue? Microsoft is not saying, but given the number of Office 365 users, it seems like it is Office 365. Pushing Cloud Revenues to $30 Billion On July 20, Microsoft reported their results for the 2016-2017 fiscal year (ending on June 30). As expected, the results were good, especially for commercial cloud products. I like to keep an eye on what’s happening in this space, so was interested in a graph published by BusinessInsider. com showing how Microsoft would meet their goal of achieving an annual run rate (ARR) of $20 billion for commercial cloud products with some ease and blow on past it to push towards $30 billion over the next year (Figure 1). Figure 1: Microsoft’s path to $30 billion ARR for commercial cloud products (image credit: BusinessInsider. com) BusinessInsider bases their prediction on Microsoft achieving a similar compound growth rate over the next year. On that basis, the target is realistic. Microsoft’s 10-K To gain more insight into what is happening in the space, we can look at Microsoft’s latest 10-K filing, where they confirm that the ARR for commercial cloud revenues run rate was $18. 9 billion. As defined by Microsoft, commercial cloud products mean Azure, Office 365, Dynamics 365, and “some other cloud properties. ” It does not include the Office desktop applications, nor does it include LinkedIn. Microsoft clarifies what they mean by this to be “Commercial cloud annualized revenue run rate is calculated by multiplying revenue for the last month of the quarter by twelve... ” In other words, the $18,9 billion means that Microsoft booked $1. 575 billion of commercial cloud revenue... --- ### Microsoft's Bringing Data Down Under With Two New Azure Regions - Published: 2017-08-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-data-two-new-azure-regions/ - Categories: Microsoft Azure - Tags: Australia, Azure, Microsoft - Article Type: News Microsoft is opening two new data regions in Australia and hopes to grab a large section of that growing market. Microsoft has been aggressively adding new data centers around the globe to expand the footprint of its Azure platform. Starting in 2018, the company will have two new regions in Australia. Considering that Microsoft is now certified by the Australian Signals Directorate, including services for machine learning, internet-of-things, cyber security and data management, Office 365 and Dynamics 365, the timing is right for new regions. Microsoft is looking to grab a significant market share for cloud usage in that region and starting next year they will be in a position to grow this portion of their business. With these two additions, Microsoft now has 42 Azure regions around the globe and the company says that this is more than any of its competitors. But, it’s worth noting that Amazon still has a significant lead in this segment when it comes to market share, although, with this kind of rapid expansion, it’s clear that Microsoft is playing to win and is willing to invest billions in growing its slice of the pie. Microsoft is investing a significant amount of resources into Azure regions and has no issues opening local centers to abide by state regulations. It's because of this that the company is positioning the platform as having local regulatory compliance and global reach. --- ### Deploying Azure Automation in the Azure Portal > This is a step-by-step guide on deploying a new Azure Automation Account, ready to use with updated and additional PowerShell modules. - Published: 2017-08-14 - Modified: 2024-09-04 - URL: https://petri.com/deploying-azure-automation-azure-portal/ - Categories: Microsoft Azure - Tags: Automation, Automation Account, Azure, Azure Automation, Azure PowerShell Modules, PowerShell, Runbook - Article Type: How To Aidan Finn explains how to use the Azure Portal to deploy Azure Automation, install additional PowerShell modules, and ensure that all PowerShell modules are up to date. In this post, I will explain how you can use the Azure Portal to deploy Azure Automation, install additional PowerShell modules, and ensure that all PowerShell modules are up to date.     As always with an Azure “how to” post, Microsoft will probably change the user interface/steps as soon as this post is submitted. The changes will probably be minor, so you should be still able to get through the process with this guide. Deploying an Automation Account Unfortunately, some of the nomenclature in Azure Automation is confusing. An Automation Account is a bucket/engine for storing/running automation runbooks (scripts). It is not actually a user account in the way that the name would suggest! Creating an Automation Account is pretty simple. Note that Automation is only available in some of the Azure regions but this has no impact on where you can use Automation. For example, I can deploy Azure Automation in one region and execute runbooks against resources in another region. Log into the Azure Portal, expand the navigation bar, search for Automation, select Automation Accounts, and then click Add. Enter the following details: Name: Give the new Azure Automation Account a name. Subscription: Select the subscription that the Automation Account will be created in. Resource Group: Select an existing resource group or name a new one to be created. Location: Select which region the Automation Account will be created in. Create Azure Run As account: Runbooks sign in using a run as account. By selecting Yes,... --- ### Microsoft, Elon Musk, OpenAI and Dota Walk Into a Bar - Published: 2017-08-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-elon-musk-openai-dota-walk-bar/ - Categories: Cloud Computing, Microsoft Azure - Tags: Elon Musk, Microsoft, News, Open AI - Article Type: News Elon Musk's Open AI organization used Azure to power its AI bot that was able to beat the top players in Dota at the recent International tournament. It may sound like a strange meetup but at the intersection of artificial intelligence and video games, Elon Musk's OpenAI with help from Microsoft's Azure platform, has shown the world that AI is not a marketing gimmick. Last week at the DOTA international championship, a team powered only by AI made a surprise appearance and was able to take down a professional-level player and caused him to forfeit. In a one-on-one match versus Danylo "Dendi" Ishutin and an AI bot, the bot was able to win two matches in what is being hailed as a big win for Musk's Open AI organization. During the past week, the AI bot was able to beat several top rated players in the world and showed that the power of artificial intelligence can easily master a complex game like Dota. The interesting part is that the bot did not study prior games to learn about Dota but instead, played itself over and over to learn the optimal way to navigate and win a match. Musk pointed out that this victory is more impressive than what Google's DeepMind had done when it beat a world champion at Go. https://twitter. com/elonmusk/status/896216646670471168 Dota is a highly complex game that has 113 playable heroes that each have unique abilities. Combine that with in game upgrades and attacks, a bot simply can't memorize a few scenarios but must understand the game and strategize against the opponent as the match evolves. For Microsoft, who was providing the infrastructure and... --- ### Paul Thurrott's Short Takes: August 11 - Published: 2017-08-11 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-11/ - Categories: Cloud Computing, Windows 10 - Tags: News Because Jamon Iberico is God's perfect food, this edition of Short Takes looks at a surprisingly contentious and controversial week for Microsoft. "Nothing to see here. " - Microsoft PR's week in a nutshell. Because Jamon Iberico is God's perfect food, this edition of Short Takes looks at a surprisingly contentious and controversial week for Microsoft. Consumer Reports drops its recommendations for Microsoft Surface The product testing experts at Consumer Reports have pulled their recommendations for Surface products, citing an industry-worst failure rate. The change comes after a massive survey of over 90,000 laptop and tablet users showed that Microsoft's devices were the least reliable, with 25 percent of them needing a repair within two years. "If you are very concerned about how long your products are going to last, it might be better for you to go with a brand that has a higher predicted reliability," the publication noted. "Laptops and tablets ... made by Microsoft were significantly less reliable than most other brands. " Here's the thing: They're right. I get a lot of reader feedback, and I hear about Surface device reliability issues all the time. Maybe we shouldn't be surprised that the world's newest PC maker has no idea what it's doing here. "Do NOT buy a Microsoft Surface or Surface Book, experts warn in shock verdict" Clickbait headline for the win. Microsoft responds to Consumer Reports Of course, Microsoft had to respond to Consumer Reports: You can't just leave terrible news like that out there without a retort. So the firm penned its support for Surface---called "We stand behind Surface"---explaining, in great detail,... --- ### Modern SharePoint Web Parts Updates — Highlighted Content - Published: 2017-08-11 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-highlighted-content/ - Categories: SharePoint - Tags: Modern SharePoint, Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy to use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint.     The changes are following each other rapidly. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let’s start with highlighted content. Highlighted Content Classic SharePoint contains a ton of Search Web Parts. We have all used the Search Results and Content Search Web Parts. These fantastic Web Parts allow us to step away from the limits of the Content Query Web Part. We are able to aggregate content from multiple site collections and change the look and feel with display templates. Unfortunately, Modern SharePoint Team Site is missing these two Web Parts, which limits us in aggregating content, such as Office documents. The initial release did contain a new Web Part, the Highlighted Content Web Part. This is a modern Search Web Part allowing us to display content, such as documents or pages from multiple locations. There have been a couple updates. Let's take a look. A new item appeared in the Source drop-down menu: This allows us to see aggregated content from a specific library, which is... --- ### Create Surveys and Questionnaires Using Forms in Office 365 - Published: 2017-08-11 - Modified: 2024-09-04 - URL: https://petri.com/create-surveys-questionnaires-using-forms-office-365/ - Categories: Office - Tags: cloud computing, Office 365, Office Forms - Article Type: How To In this Ask the Admin, Russell Smith shows you what you can do with Office 365 Forms. Released in preview last year, Microsoft Forms allows educators and businesses to create online surveys and assessments. In this Ask the Admin, I'll show you what you can do with Forms.     Microsoft recently launched a preview of Office 365 Forms for business customers that have chosen to receive first release Office builds. Forms has been available to education customers since last summer but it is now being made more widely available. Microsoft is challenging Google in the education space and needed a solution to match Google Forms. It now makes sense to present Forms to a wider audience. Even in its design, you get the feeling that Forms has been planned with education in mind. When selecting a theme, there are various backgrounds available that seem more suitable for a young audience than business partners. Regardless of the visual elements, organizations and businesses can use Forms to conduct polls amongst customers or gather information internally. Forms could not be easier to use. It can be accessed from the apps menu in Office 365 or by going here. On the main screen, you can create a new form or quiz, see any forms you previously created, or see forms shared with you by other users. Forms can be restricted to Office 365 users in your tenant or you can opt to share forms with anyone via email or a URL. Form Creation The process of creating forms is straightforward. The formatting is handled automatically. All you... --- ### Microsoft Has a New SKU of Windows 10 Designed for High-End Hardware - Published: 2017-08-10 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-new-sku-windows-10-designed-high-end-hardware/ - Categories: Windows 10 - Tags: News, Windows 10 pro, Windows 10 Pro Workstation - Article Type: News Microsoft has announced a new SKU of Windows 10 Pro for workstations and it will arrive this fall with the Fall Creators update. Microsoft has announced a new SKU of Windows 10 and this new iteration is for the workstation. Officially called Windows 10 Pro for Workstation, this version of the OS will arrive in the coming months with the Fall Creators Update. This SKU of Windows comes with unique support for server grade hardware and is intended for mission critical applications and workloads. Because the OS will run on server grade silicon, the company is including optimized support for that hardware while running Windows 10. With this version of the OS, the workstation will support ReFS (Resilient file system), persistent memory, SMB direct (for faster file sharing) and of course, expanded chip support to take advantage of server grade chips from Intel and AMD. This build of Windows 10 has slowly leaked out over the past few months but it is good to see Microsoft coming forward and formally announcing the software. For those that are running server grade silicon as a workstation, there is now finally a version of Windows 10 that supports that hardware. While I don't think that this will usher in a massive new wave of devices upgrading from older versions of Windows to 10, every little bit helps. Microsoft likes to point out that this iteration of the OS was shaped by feedback from Insiders which means if you have more feedback about this SKU, they are listening. At this time, we don't know yet how this version of the operating system will be licensed... --- ### Consumer Reports No Longer Recommends Surface Hardware - Published: 2017-08-10 - Modified: 2024-09-04 - URL: https://petri.com/consumer-reports-no-longer-recommends-surface-hardware/ - Categories: Hardware - Tags: Hardware, News, Surface - Article Type: News Consumer Reports is no longer recommending Surface hardware after their survey found that 25% of owners had issues in the first two years. Microsoft's Surface line of tablets, laptops, and desktops is on the receiving end of a black eye today as Consumer Reports is removing its recommended rating for the hardware. Considering that Microsoft is making a big push into this space, a downgraded rating from Consumer Reports is likely going to impact sales. The evidence the firm is citing is that they surveyed 90,000 tablet and laptop owners and found that 25% of them had issues with the device within two years. In the same report, Apple was listed as having the most reliable devices and noted that Microsoft's hardware was an outlier. Issues range from freezing, touchscreen issues, and unexpected shutdowns. Anyone who has been following the Surface brand for a few years will know that Skylake chips in the last generation hardware created quite a few headaches for Microsoft which likely had an impact on the survey conducted by Consumer Reports. For its part, Microsoft does refute the findings, not that we would expect them to say anything different, and says that their return and support rates differ from the findings in the Consumer Report Survey. Building hardware is not a simple task and while Microsoft has had some experience in this segment with the Xbox and a few other devices, they are still relatively new to the game. That being said, Consumer Reports carries a lot of weight with its ratings and this report will likely have a serious impact on sales. Further, for enterprise customers... --- ### Azure Active Directory Flavors - Published: 2017-08-10 - Modified: 2024-02-07 - URL: https://petri.com/azure-active-directory-flavors/ - Categories: Microsoft Azure, Security - Tags: Azure Active Directory, Exchange Online, Microsoft, Office 365, Security - Article Type: Overview Sjoukje Zaal gives an overview of the different flavors of Azure Active Directory. Azure Active Directory (AD) is the heart of everything inside of Microsoft Azure. All Azure services are depending on it and using it for Identity Management in the Microsoft Cloud. Office 365, Intune, Exchange Online, and Enterprise Mobility Suite are all examples of Azure Services that depend on Azure AD for both security and identity management. When implemented correctly, all of your custom applications, which are hosted in Azure or somehow integrated with Azure services, are using Azure AD as well. That is why Azure AD is high on the agenda of Microsoft and it is constantly evolving. In this article, I want to give an overview of the different flavors of Azure AD and where it stands currently. What once started as a basic user directory, has now become something much more than that. Azure Active Directory (now Microsoft Entra ID) As pointed out before, Azure AD is the heart of everything inside of Azure. Plain Azure AD, is the root service, where you create the user accounts for your organization. It can also be used for application access management. It is designed for a single tenant, so it is designed for a single organization. This does not mean that it does not support a multi-domain environment but there are differences and restrictions. Azure AD has been set up using a different architecture as the Windows Server AD was set up many years ago. Customers that are using Office 365, Intune, or Dynamics CRM online are not always... --- ### Microsoft Launches Group Expiration Policy into Preview > Microsoft launched the Office 365 Groups expiration policy into preview. It expires groups after a set period and helps keep groups under control. - Published: 2017-08-10 - Modified: 2024-09-04 - URL: https://petri.com/group-expiration-policy-preview/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, deletion, Expiry, Groups, Office 365, Planner, Policy, Removal, Stream, Teams - Article Type: News On August 9, Microsoft launched the Office 365 Groups expiration policy into preview. It expires groups after a set period and helps keep the spread of groups under control. All sounds good, but the new feature needs an Azure Active Directory Premium license, which isn't so welcome. The Groups expiration policy is now generally available. Automatically Expiring Office 365 Groups On August 9, Microsoft put the Groups Expiration Policy into preview. Or, as the blog says, “automated expiration. ” The new policy helps tenants keep the spread of Groups under control by timing them out after a set period, after which the expired groups are first soft-deleted and then permanently removed. The expiration policy applies to Office 365 Groups no matter what application creates or uses the groups –Teams, Outlook Groups, Yammer Groups, Stream, or anything else. Automated management processes are always welcome, but in this case, you need Azure Active Directory Premium licenses. Gently Degrading Groups Office 365 Groups have been available to tenants since November 2014. It is possible to restrict the ability to create new groups to a select set of users, but even in the most tightly-managed tenant, it is likely that groups eventually reach their best-by date and become disused. Groups are not unusual in this respect. Experience shows that the same falloff in usage over time happens for shared mailboxes, distribution lists, public folders and other objects shared by teams of people. Azure Active Directory Premium Needed Office 365 creates a group expiration policy in a disabled state for every tenant. A different Azure AD policy controls the general settings for Office 365 Groups, including group creation. The expiration policy is an Azure Active Directory premium feature, so to enable the policy, your account needs an... --- ### Google Optimize Adds Support for 37 New Languages - Published: 2017-08-09 - Modified: 2024-09-04 - URL: https://petri.com/google-optimize-adds-support-for-37-new-languages/ - Categories: Cloud Computing - Tags: analytics, Google, language, optimize - Article Type: News Google announced this week that they have added support for 37 new languages to Google Optimize, the firm's website testing and optimization service, something that can be beneficial to teams that are spread across the globe.   Google announced this week that they have added support for 37 new languages to Google Optimize, the firm's website testing and optimization service. One of several products available through Google Analytics Solutions, Google Optimize is a service that better enables companies to perform A&B, multi-variable, and other tests across their websites, in order to better understand how their customers respond to and interact with them. With tools like a built in WYSIWYG editor for creating new webpage variants and the ability to customize target segments for testing, Google Optimize makes it easy for companies to try out new ideas to see how customers respond to them, something that would have required quite a bit of effort in the past. For many companies, it's important that they have a strong understanding of a how customers use their products or services, something that is especially true for those that offer web-based services as their main product. For example, an e-commerce website may want to understand how a user ultimately ends up making a transaction or what actions can be taken to prevent a user from abandoning their shopping cart. This is where Google Optimize can be useful, as companies can create and run various tests to determine what users like and what they don't, providing valuable insight into which changes should be implemented and which ones should be taken back to the drawing board. With many companies operating on a global level, ensuring that customer needs are met can... --- ### Selecting the Right SME Storage Solution Part 2: Network Attached Storage - Published: 2017-08-09 - Modified: 2024-09-04 - URL: https://petri.com/selecting-right-sme-storage-solution-part-2-network-attached-storage/ - Categories: Backup & Storage - Tags: Backup, NAS, NAS Devices, Remote Access, SME, storage - Article Type: Opinion In the second part of this article, Russell Smith looks at Network Attached Storage solutions for SMEs. If your small business has determined that it needs on-premises file storage, you can either purchase Network Attached Storage (NAS), such as the popular Netgear ReadyNAS, Synology DiskStation devices, or a server running Windows Server. In part one of this article, I looked at hardware running Windows Server Essentials. In this final part, I move my attention to NAS devices.     Network Attached Storage Much like Windows Server, NAS devices allow you to create file shares, manage storage quotas, manage user access, and provide remote access to files. While cost is the primary advantage, NAS devices can also run a limited amount of additional third-party software. This can add extra features like DNS resolution and RADIUS. If Chromebooks or Macs are what you use to run your business, then a NAS device might provide everything you need. There are some features of Windows Server that are only available to Windows clients, such as the ability to access the Windows Server search service and control access to Offline Folders. SME NAS devices generally run a Linux-based OS created by the manufacturer. For instance, Netgear ReadyNAS runs the ReadyNAS OS. Because of this, generally comparing Windows Server to NAS devices is difficult because each manufacturer bases its devices on a different OS. But for the purposes of this article, I will compare my experience to Netgear ReadyNAS OS. Many of the features in Windows Server are not present in ReadyNAS OS, including: Work Folders Search indexing and integration with... --- ### How to Manage the Common Productivity Drop During SharePoint Adoption - Published: 2017-08-08 - Modified: 2024-11-19 - URL: https://petri.com/productivity-drop-sharepoint-adoption/ - Categories: SharePoint - Tags: Adoption, Productivity, SharePoint - Article Type: Overview If left unchecked, the dip in productivity during the SharePoint adoption period may have a negative impact on business and make users fall back to the old systems. Learn how to minimize the productivity drop by inflating morale, deflating expectations, and accelerating learning. Adoption of a new technology is more about changing habits than anything else. It is about dumping old habits and adopting new ones. And, SharePoint adoption is mostly about changing habits.     Certainly, established habits help get things done faster. That is why dumping them in order to adopt new ones results in a temporary dip in productivity. This is true for all technologies with a significant level of complexity. It is an inevitable consequence of innovation. This temporary drop in productivity is explained by the fact that people need the time to learn new different ways of doing things and adapt to them. Imagine that you were using DropBox for file sharing and suddenly you have to use SharePoint. How will you feel when the learning curve slows you down and episodes of frustrations put you off balance? The dip in productivity is one of the most common events that lead to SharePoint adoption failure. If left unchecked, it may have a negative impact on business and make users fall back to the old systems. It is the job of the leadership to find solutions that will preserve productivity in the company and ensure a smooth transition. Managing the productivity drop comes down to simply making the period shorter and imperceptible. Here are some of the steps that you can take: Inflate the morale Deflate expectations Accelerate learning How do you accomplish all of these things? The 3 Proven Steps Inflate Morale Building your team morale... --- ### Microsoft to Remove Some Chinese Certificate Authorities from Windows 10 - Published: 2017-08-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-remove-chinese-certificate-authorities-windows-10/ - Categories: Security, Windows 10 - Tags: China, Microsoft, News, Security, Windows 10 - Article Type: News Microsoft is removing certificate authorities from WoSign and StartCom from Windows 10 after multiple violations of its Trusted Root program. Image credit: Associated Press Microsoft has announced today that the company will be removing certificate authorities from WoSign and StartCom from Windows 10. The company says that these providers have failed to maintain the standards required by the Trusted Root Program. The listed offenses committed by these authorities include back-dating SHA-1 certificates, mis-issuances of certificates, accidental certificate revocation, duplicate certificate serial numbers, and multiple CAB Forum Baseline Requirements (BR) violations. To little surprise, Microsoft does not approve of any of these violations and as such, is removing their ability to issue new certificates and invalidating their old files. Starting on September 26th, Microsoft will begin the process of removing support for these certificates. If your company is using a CA from one of these providers, you will need to update your certificates immediately. In the blog post which you can view here, Microsoft notes that they value the CA community and only makes these decisions after careful consideration. Or in other words, these providers screwed up so badly and repeatedly that the company was forced to revoke their access after they failed, on multiple occasions, to fix their processes. The Trusted Root program, starting with Vista, is updated on Windows automatically. Knowing this, the revoke process for removing these expired certificates will not require any interaction be the end user. --- ### Azure AD Sign-in Changes Cause Problems for Office 365 > The Azure AD team changed the sign-in experience used by services like Office 365 to improve and rationalize it. But things didn't work out so well. - Published: 2017-08-08 - Modified: 2024-09-04 - URL: https://petri.com/azuread-sign-changes-cause-problems-office-365/ - Categories: Microsoft 365, Microsoft Azure, Office - Tags: Azure Active Directory, Log-in, Office 365, Problems, Sign-in - Article Type: News The Azure AD team changed the sign-in experience used by services like Office 365 to improve and rationalize it. But things didn't work out so well as tenants reacted badly to the way Microsoft communicated the change. Or rather, failed to communicate the change. Dark Clouds Gather Another day, another dark cloud scuttles across the sky to make life difficult for cloud administrators. In this case, one Microsoft development group delivered a valuable update that makes sense but did so in a way that caused problems for many Office 365 tenants. And as sometimes happens in the cloud, the change came without warning. Azure Active Directory Tries to Make Life Better The root of the problem is an effort to make Azure Active Directory sign-ins work more rationally and effectively. On August 2, Alex Simons, Director of Product Management for Microsoft’s Identity Division, announced that the “New Azure AD Sign-in Experience is now in public preview”. According to the post: “Azure AD & Microsoft account sign-in pages will both change to have a consistent look and feel, so you won’t experience anymore jarring transitions when you move between the two. Pagination of the Azure AD sign-in page. The new design (Figure 1) prompts you to enter your username on the first screen followed by a credential (typically a password) on a second screen. We’ve done a lot of testing of this design and our telemetry shows that people are able to sign in with a notably higher success rate using this approach. It also sets us up to be able to easily introduce new forms of authentication like phone sign-in and certificate-based authentication. We know that this will be a disruptive change for some of you, but we believe that this sets... --- ### Hybrid Cloud HA and DR Using SQL Server AlwaysOn Availability Groups - Published: 2017-08-08 - Modified: 2024-09-04 - URL: https://petri.com/hybrid-cloud-ha-and-dr-using-sql-server-alwayson-availability-groups/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure, SQL Server, Uncategorized - Tags: Azure, Cloud, Disaster Recovery, High Availability, hybrid cloud - Article Type: Overview Today, many businesses are in the process of looking for ways to leverage the hybrid cloud for high availability (HA) and disaster recovery (DR). Find out how SQL Server’s AlwaysOn Availability Groups provide protection for multiple user databases. Today, many businesses are in the process of looking for ways to leverage the hybrid cloud for high availability (HA) and disaster recovery (DR). The results from this year’s survey by RightScale found that 95 percent of respondents are now using the cloud in some capacity and that hybrid cloud adoption is at 67 percent for all businesses. SQL Server provides the core database support for the mission-critical applications used by many of these businesses, and HA and DR are two of the primary considerations when you’re implementing a business-critical database system. SQL Server has several different HA and DR capabilities but AlwaysOn Availability Groups (AGs) are SQL Server’s primary HA and DR technology.   First introduced with SQL Server 2012, SQL Server’s AlwaysOn AGs provide protection for multiple user databases with up to eight secondary replicas. The primary replica is the source or original host for the protected databases and the secondary replicas serve as a potential failover targets for the AG. SQL Server AlwaysOn AGs support two types of availability modes for the secondary replicas: Synchronous-commit mode – Primarily used with other local servers, this availability mode provides HA and automatic failover at the cost of increased transaction latency. Asynchronous-commit mode – Primarily used with geographically remote or cloud-based replicas, this availability mode is mainly used for DR. It provides lower latency but does not support automatic failover. You have the ability to optionally configure one or more secondary replicas to support read-only access to secondary... --- ### Windows as a Service is Windows' Second Life, Because It Had To be - Published: 2017-08-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-as-a-service-is-windows-second-life-because-it-had-to-be/ - Categories: Windows 10 - Tags: WaaS, Windows 10 - Article Type: News Microsoft pivoted to WaaS as it found the perfect time to introduce it's truly new feature, Security as a Service. Microsoft has said time and time again that Windows 10 is the last version of Windows. Based on everything the company has done during the first two years of availability of the OS, there is no reason to doubt this but there is more to the story too. As for why the company went to the service model, that was purely out of necessity. As Microsoft looked to modernize Windows, they likely wanted to prove that it was more flexible than mobile operating systems that update once per year but more importantly, this gave the company a road to introduce new premium features. And when I say premium features, I don't mean the company will eventually charge for the semi-annual updates but for the enterprise, these frequent updates create new opportunity to keep Windows revenue climbing. Make no mistake, the old model of Windows has stagnated and with WaaS, Microsoft's goal is to keep the business unit growing while the potential market-base levels off or possibly declines. The sales of PCs have been on the decline and most will agree that we have passed peak hardware sales. While this is the natural cycle of any market, for Microsoft, this created a new challenge. Even though consumers were buying fewer PCs, corporations still have stable demands and are placing large orders. But the problem for Microsoft is that companies buying new hardware doesn't always drive new revenue. A large number of corporations around the globe use Software Assurance from Microsoft. This... --- ### Microsoft to Deprecate PowerShell 2.0 in the Windows 10 Fall Creators Update - Published: 2017-08-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-deprecate-powershell-2-0-windows-10-fall-creators-update/ - Categories: Windows Client OS - Tags: Creators Update, Fall Creators Update, PowerShell 2.0, PowerShell 5.0, Security, Windows 10 - Article Type: News In this Ask the Admin, Russell Smith discusses why PowerShell 2.0 poses a security risk and how to remove it from Windows 10. If you still rely on PowerShell 2. 0, you should think about updating your code to work with PowerShell 5. 0. Starting in the Windows 10 Fall Creators Update, Microsoft will no longer support PowerShell 2. 0. In this Ask the Admin, I'll discuss why PowerShell 2. 0 poses a security risk and how to remove it from Windows 10.     If you thought that PowerShell 2. 0 had been killed off long ago, you might be surprised to find out that it is installed by default today in Windows 10. That is about to change in the Fall Creators Update. Microsoft has decided to deprecate it and is recommending organizations ensure its scripts are compatible with PowerShell 5. 0. As I recently discussed in Protect Against Malware by Enforcing PowerShell Constrained Language Mode on Petri, hackers have been using the PS>Attack and Mimikatz frameworks to exploit Windows, primarily to compromise users’ credentials. That is not to say PowerShell is vulnerable per se. As with any technology, Microsoft recommends running the latest version to benefit from recent security enhancements, such as script block logging and the ability to enforce the use of constrained language mode. The Problem with PowerShell 2. 0 New security features in PowerShell 5. 0 make it much harder for hackers to uncover users’ credentials, using frameworks like Mimikatz, if you follow security best practices. Anti-Malware Scan Interface The Anti-Malware Scan Interface (AMSI) interface in Windows 10, which is supported out-of-the-box by Windows Defender and available to other antimalware products, can perform... --- ### Adding Script to Your PowerShell HTML Reports > PowerShell master Jeff Hicks wraps up his series on going further with ConvertTo-HTML by adding javascript to his PowerShell generated HTML reports. - Published: 2017-08-07 - Modified: 2024-09-04 - URL: https://petri.com/adding-script-to-your-powershell-html-reports/ - Categories: PowerShell - Tags: Intermediate, PowerShell, Reporting - Article Type: How To Join Jeff Hicks in this series of articles demonstrating a variety of tips, tricks, and techniques to generate killer HTML reports with PowerShell and ConvertTo-HTML. I have been having a lot of fun with this series of articles demonstrating a variety of tips, tricks, and techniques to generate killer HTML reports with PowerShell and ConvertTo-HTML. By all means, use as little or as much as you want. If you missed the previous articles, get caught up before continuing. I will not explain the previously covered material.     I will confess right up front that I am not a web developer or even close. I know some basic HTML techniques and like you, have gleaned ideas from searching the Internet. One of those techniques is the use of javascript. While I probably could not write a javascript function from scratch, I do know how to use it in my PowerShell scripts. At some point in the past, I found some functions to create expandable sections. This is great for a long HTML document because you can collapse one or more sections. In my header here string, where I define my CSS, I am going to insert this code. function toggleDiv(divId) { `$("#"+divId). toggle; } function toggleAll { var divs = document. getElementsByTagName('div'); for (var i = 0; i < divs. length; i++) { var div = divs; `$("#"+div. id). toggle; } } The code assumes you will have a named DIV section that you want to collapse or expand. Let's revise the example from the last article. $computername = $env:COMPUTERNAME $fragments = @ #insert a graphic $ImagePath = "c:scriptsdb. png" $ImageBits... --- ### Paul Thurrott's Short Takes: August 4 - Published: 2017-08-04 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-4/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because it's 125 degrees in the shade, this edition of Short Takes looks at Microsoft's not-so-new AI focus, Microsoft's rural broadband plans, iPhones and asteroids, and much, much more. The IE logo finds a new home in the olive oil industry Because it's 125 degrees in the shade, this edition of Short Takes looks at Microsoft's not-so-new AI focus, Microsoft's rural broadband plans, iPhones and asteroids, and much, much more. Microsoft's AI focus isn't new, but what the heck The crack investigative journalists at CNBC took 10 minutes to read a Microsoft financial filing and believe they've found a scoop: Microsoft has removed the term "mobile-first, cloud-first" from its annual report. And this new report uses the term AI six times, compared to zero for last year. CNBC, you are so cute. Microsoft revealed its AI push, as well as the phrase "intelligent cloud, intelligent edge," which replaces "mobile-first, cloud-first," back in May at its Build conference. So this stuff isn't new. It's just new to you. "Two secret Windows 10 buttons you need to know" OK and Cancel. Microsoft's plan to bring broadband to the rural U. S. may not be as good natured as it seems A month ago, Microsoft announced its plan to bring broadband Internet to the rural areas of the United States that are still under-serviced by traditional broadband providers. The software giant presented this as an egalitarian vision for "better education and living. " But critics are publicizing the dark side of this plan, which would utilize "mostly unused" UHF television spectrum called TV White Space. The problem, critics say, is that "mostly unused" really means "actually used" spectrum... --- ### Enhancing HTML Reports with PowerShell > PowerShell sensei Jeff Hicks continues his exploration of creating killer HTML reports with PowerShell by adding an image and multiple sections. - Published: 2017-08-04 - Modified: 2024-09-04 - URL: https://petri.com/enhancing-html-reports-with-powershell/ - Categories: PowerShell - Tags: Intermediate, PowerShell, Reporting - Article Type: How To I hope you have been enjoying this little series on tips and tricks for doing more with ConvertTo-HTML and creating great looking reports in PowerShell. Today, I want to continue where we left off. I am assuming you have been following along. If not, take some time to start at the beginning or you may be a bit lost.     Often, I create reports from a number of HTML fragments. Usually, I have multiple pieces of information that I want to display. Perhaps, I want to parse the HTML, so I can do things, such as dynamically add style classes as I did last time. I am going to repeat that process today by reusing the core code from the previous article. In addition to event log information, I want to get some other system information as well. Let's begin with it empty: $fragments = @ The first thing I want to do is embed a graphic file in the document. The easy way would be to use the tag and specify the path to a graphic file. However, I like making my HTML files portable or self-contained. The first step is to convert the file to a Base64 string. $ImagePath = "c:scriptsdb. png" $ImageBits = ::ToBase64String((Get-Content $ImagePath -Encoding Byte)) When I create the IMG tag, I want to include an ALT attribute for the file name. I also need to know the file type. $ImageFile = Get-Item $ImagePath $ImageType = $ImageFile. Extension. Substring(1) #strip off the leading . All that... --- ### Data Leak as Office 365 Admin Center Displays Usage Data from Other Tenants > The Office 365 Admin Center experienced a problem on August 3 when it began to include data from other tenants in its usage reports. - Published: 2017-08-04 - Modified: 2024-11-19 - URL: https://petri.com/data-leak-office-365-admin-center/ - Categories: Microsoft 365, Office - Tags: Admin Center, GDPR, Office 365, Security - Article Type: News The Office 365 Admin Center experienced a problem on August 3 when it began to include data from other tenants in its usage reports. It seems like the problem arose in a flawed code change and Microsoft fixed the issue quickly. What's worrying is what data leaks like this mean in the context of regulations like the EU GDPR. Oh Look, That’s not Our Data The danger of making mistakes when changing cloud systems that run at massive scale was demonstrated on Thursday evening (August 3) when the Office 365 Admin Center suddenly started to reveal usage data belonging to other tenants. Reports flooded in from administrators who noticed that the reported email and SharePoint usage for their tenants had spiked enormously When they went to look at the underlying data, they saw that it included users from one or more domains outside their tenant. The leak revealed names and email addresses of those users. The problem surfaced in multiple Office 365 datacenter regions, including both the U. S. and EMEA. Microsoft Fixes the Problem As they worked the problem, Microsoft issued a service health advisory (MO112471 – Figure 1) to tell tenants that usage reports were unavailable. As seen in the notification, Microsoft fixed the problem and had usage reports back online and working properly by 3:35 AM UTC today. Given that this problem happened outside normal working hours (for many), it is possible that you missed it. Figure 1: Service advisory for problem with usage reports (image credit: Tony Redmond) I have many examples of screenshots from tenants showing data from other tenants in their usage reports but will not publish them here for obvious reasons. The More Important Issue The service advisory says that a recent code update impacted the accessibility of usage reports. I guess being able to access other... --- ### Upload Files or Entire File Shares with METADATA to SharePoint Online > Learn how to use PowerShell to move your content to SharePoint Online and keep the key metadata like owner and dates. It is pure magic! - Published: 2017-08-03 - Modified: 2024-11-19 - URL: https://petri.com/upload-files-entire-file-shares-metadata-sharepoint-online/ - Categories: Microsoft 365, PowerShell, SharePoint, Uncategorized - Tags: Office 365, Office 365 Admin, Office 365 PowerShell, pnp powershell, PowerShell, SharePoint, SharePoint Online - Article Type: How To Learn how PowerShell lets you automate the move to cloud while preserving your metadata. What? Does that title say that it is possible to push all of my on-premises files to SharePoint Online and retain the Created by, Created Date, and Modified Date? Why yes, yes it does. In this article, I am going to walk you through how to use the Patterns and Practices (PNP) PowerShell to accomplish just that. As a bonus at the end, I will tell you about a PowerShell Function that I wrote that takes all the work out of writing 400 lines of PowerShell. It does the work for you. Who is excited?     What Exactly Are We going to Do? So, the idea is that we are going to learn how to use PowerShell to take a group of files from the file share and push them to SharePoint Online. We will do this while automatically retaining all of the file's metadata. When we are done, we will take this: With a few lines of PowerShell Magic, we will get: Pretty cool? I thought so. Also, if you want to watch me walk through these concepts, the companion video is available. Making Sure You Are Ready Before you can do all of this fun stuff, you will need to have a recent version of the PNP SharePoint Online PowerShell available. I am using version 2. 16. 1706. 1. If you are not sure you have that version or the PNP PowerShell at all, then run this: Get-Module | select Name, Version If you need to get the... --- ### Microsoft Launches External Access Block Policy for Groups, Teams, and Planner > Microsoft has launched a new external sharing policy for groups that allows tenants to set allow and block lists for domains. - Published: 2017-08-03 - Modified: 2024-11-19 - URL: https://petri.com/external-access-policy-groups-teams-planner/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, external access, Groups, Office 365, Planner, Teams Microsoft has launched a new external sharing policy for groups that allows tenants to set allow and block lists for domains. The new policy is due for use with Teams, Planner, and other applications that need to block external users from specific domains. It's a set along the path to getting full external access for Office 365 apps. A New Approach When Microsoft introduced external guest access for Office 365 Groups in September 2016, they built the new mechanism on top of SharePoint external sharing. Both good and bad flowed from this decision. On the upside, Microsoft used something that they knew worked. External guest accounts can access files in the document library in group team sites as easily as tenant users can. The downside is that the mechanism cannot support access to other group resources. External users can communicate with other group members via email, but they have no access to the group calendar or plan. Roll forward a year and Office 365 is a different place. The advent of Teams means that Microsoft has another application that needs external access, as does any application that depends on Groups like Planner or Stream. A SharePoint-based mechanism is unacceptable and, as I described in June, Office 365 needs a new common external access method that works for all applications. The Teams developers said that they would support external access in mid-2017. They have acknowledged that they will not meet that date, possibly because creating an external access mechanism that satisfies the needs of multiple applications is difficult. The External Sharing Policy However, the first glimmer of what might be the solution appeared in a PowerShell script to control allow and block lists for external sharing to Office 365 Groups. According to a Microsoft post on the topic, “This policy works for all workloads with Guest access... --- ### G Suite Adds Improvements to Google Calendar Interop for Microsoft Exchange - Published: 2017-08-02 - Modified: 2024-09-04 - URL: https://petri.com/g-suite-adds-improvements-google-calendar-interop-microsoft-exchange/ - Categories: Cloud Computing, Exchange Server - Tags: G Suite, Google, Google Calendar, Google Cloud, Microsoft Exchange - Article Type: News Google has made several improvements to G-Suite that make it easier for organizations that use both Google Calendar and Microsoft Exchange Server to integrate and maintain functionality across the two platforms. In a recent update to G Suite, Google's office and productivity platform, the company added several improvements that make it easier for organizations that use both Google Calendar and Microsoft Exchange Server to integrate and maintain functionality across the two platforms. Announced on Monday, the update enables organizations that use both Google Calendar and Microsoft Exchange (which also includes Office 365) to view if a colleague is busy or free at a given point in time, with a feature called "Calendar Interop". Google noted that this feature had been a popular request from customers that make use of both G Suite and Microsoft Exchange. Calendar Interop is not enabled in G Suite by default, but admins can easily configure this feature in the G Suite Admin Console by going to Apps > G Suite > Settings for Calendar and then selecting the Calendar Interop management option. Additionally, Google added new tools that enable G Suite administrators to easily maintain their hybrid calendar configuration. The interoperability troubleshooting tool provides admins with the ability to generate Exchange authentication credentials and also provides information on how to use those credentials with their existing Exchange setup. Admins can also use the tool to test the free-busy lookup functionality, in order to ensure that it works as expected across the hybrid calendar configuration. Also, users can now view logs related to the interoperability between the two calendar providers from within the G Suite admin console. These logs contain information regarding successes and failures for each user. These... --- ### Protect Against Malware by Enforcing PowerShell Constrained Language Mode - Published: 2017-08-02 - Modified: 2024-09-04 - URL: https://petri.com/protect-malware-enforcing-powershell-constrained-language-mode/ - Categories: Windows Client OS - Tags: Malware, PowerShell, PowerShell Remoting, Security, Windows 10 - Article Type: How To In this Ask the Admin, Russell Smith shows you how to enforce constrained language mode in PowerShell to restrict hackers' ability to abuse the shell. In this Ask the Admin, I'll show you how to enforce constrained language mode in PowerShell to restrict hackers' ability to abuse the shell.     The increase in ransomware attacks in the last few months has prompted organizations to review security. One worry is that the ‘power’ in PowerShell might just be a little too prevailing. The truth is that if properly managed and configured, PowerShell and PowerShell Remoting are the most secure ways to manage Windows. Frameworks, such as PS>Attack and Mimikatz, can exploit PowerShell so that attackers are easily able to compromise users’ credentials. As with any other Microsoft technology, it is recommended to run the latest version of PowerShell to benefit from recent security enhancements, such as script block logging. Starting in PowerShell 5. 0, constrained language mode can be enforced to help protect devices from malicious activity. This aids in preventing hackers from loading COM objects, libraries, and classes into PowerShell sessions. Some of the features of constrained language mode, as described in more detail on Microsoft’s website, including a complete list of allowed types: All cmdlets in Windows modules and other UMCI-approved cmdlets are fully functional and have complete access to system resources, except as noted. All elements of the Windows PowerShell scripting language are permitted. All modules included in Windows can be imported and all commands that the modules export run in the session. The Add-Type cmdlet can load signed assemblies but it cannot load arbitrary C# code or Win32 APIs. The... --- ### Adding Style to PowerShell HTML Reports - Published: 2017-08-02 - Modified: 2024-09-04 - URL: https://petri.com/adding-style-powershell-html-reports/ - Categories: PowerShell - Tags: Intermediate, PowerShell - Article Type: How To Jeff Hicks shares more tips for using PowerShell, including some tricks for creating HTML reports. Over the last few articles, I have demonstrated some HTML tips and tricks for creating HTML reports in PowerShell. We are going to pick up where we left off. If you are just jumping in, take a few minutes to get caught up. I am going to use the same event log data as my source.     $data = Get-Eventlog -List | Select @{Name="Max(K)";Expression = {"{0:n0}" -f $_. MaximumKilobytes }}, @{Name="Retain";Expression = {$_. MinimumRetentionDays }}, OverFlowAction, @{Name="Entries";Expression = {"{0:n0}" -f $_. entries. count}}, @{Name="Log";Expression = {$_. LogDisplayname}} In the previous file, I used a CSS that included this entry: . footer{ color:green; margin-left:25px; font-family:Tahoma; font-size:8pt; } However, my final files never had any green text. My original intention was that the date information at the end of the report would be the footer. In order for the style to apply, the final HTML code needs to look like this: 07/24/2017 15:07:29 Because this is post-content, all I need to do is use a value like this for the -PostContent parameter: "$(get-date)" Here is the complete hashtable of parameters that I am going to splat to Convertto-HTML: $convertParams = @{ PreContent = "$($env:COMPUTERNAME)" PostContent = "$(get-date)" head = @" Event Log Report body { background-color:#E5E4E2; font-family:Monospace; font-size:10pt; } td, th { border:0px solid black; border-collapse:collapse; white-space:pre; } th { color:white; background-color:black; } table, tr, td, th { padding: 2px; margin: 0px ;white-space:pre; } tr:nth-child(odd) {background-color: lightgray} table { width:95%;margin-left:5px; margin-bottom:20px;} h2 { font-family:Tahoma; color:#6D7B8D; } . footer { color:green; margin-left:10px; font-family:Tahoma; font-size:8pt; font-style:italic;... --- ### Apple Results Beat Expectations with Services Surge - Published: 2017-08-02 - Modified: 2024-09-04 - URL: https://petri.com/apple-results-beat-expectations-services-surge/ - Categories: Cloud Computing, Mobile - Tags: Apple, News - Article Type: News Apple's net income and revenues both surged in the most recent quarter, thanks in large part to its quickly-growing services business. Thanks to persistent rumors about next-generation iPhones, sales of the current devices barely grew in the most recent quarter. But Apple's net income and revenues both surged, thanks in part to its services business. That last bit is important: It suggests that Apple's billions-strong user base will continue to deliver for the company for years to come. "With revenue up 7 percent year-over-year, we’re happy to report our third consecutive quarter of accelerating growth and an all-time quarterly record for Services revenue," Apple CEO Tim Cook said in a prepared statement. "We hosted an incredibly successful Worldwide Developers Conference in June, and we’re very excited about the advances in iOS, macOS, watchOS, and tvOS coming this fall. " Apple reported net income of $8. 7 billion on revenues of $45. 4 billion in the quarter ending June 30. In the same quarter a year ago, Apple reported $7. 8 billion in net income and $42. 36 billion in revenues. Unit sales of Apple's three primary hardware product lines all grew year-over-year, even those of iPad, which had fallen each quarter for over three straight years. Likewise, revenues from each of Apple's major businesses all grew as well. Apple sold 41 million iPhones in the quarter, up just 2 percent from the 40. 4 million it sold a year ago. But that's still good news, given the heady volume of rumors about a so-called 10th anniversary iPhone lineup that may or may not be delayed; Apple refused to discuss the coming upgrade. The firm also sold 11. 4... --- ### Change Management Tools for Office 365 - Published: 2017-08-01 - Modified: 2024-09-04 - URL: https://petri.com/change-management-tools-office-365/ - Categories: Microsoft 365 - Tags: Change Management, Office 365 - Article Type: Overview Read an overview of tools and resources recommended to keep up with the changes in Office 365. I have talked more than once about how difficult it is to keep up with changes in Office 365. I did again last June at the Office 365 Engange Conference. This was an awesome event in Haarlem! I think in the future, I will have more opportunities to talk about this interesting topic.     Office 365 is a platform that is continuously evolving and adding new features. It seems that almost every day, we have something new and sometimes unexpected. This makes it difficult to keep up with changes happening. While it is true that we have some built-in tools that can help us on the follow up of the new staff being added by Microsoft in the platform, the reality is that there is not a single location or place where we can see all what is new. It is difficult to be better prepared for changes coming to the platform. We will need to use a combination of tools and resources to be as updated as possible. In this article, I will provide you with an overview of the tools and resources to help keep up with changes in Office 365.   (Official) Microsoft Change Management Toolbox First of all, try to use change management tools and resources provided by Microsoft. Office 365 guys are supposed to be the most authoritative source of information about what is happening around the platform. Figure 1 -- Official Microsoft Change Management Toolbox   As you can see in Figure... --- ### Microsoft's Making it Easier to Buy Surface Hardware, Including Hub - Published: 2017-08-01 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-easier-buy-surface-hardware-including-hub/ - Categories: Hardware - Tags: Microsoft, News, Surface, Surface Plus, Surface Plus for Business - Article Type: News Microsoft is making it easier to buy Surface hardware, including the Hub, but the company is once again only offering this service in the US. Microsoft has announced two new programs today that the company hopes will make it easier for organizations to buy Surface hardware. Called Surface Plus and Surface Plus for Business, these are flexible financing options for Microsoft hardware that include other benefits besides low payments. These services are targeted at the individual and businesses. The goal is to not only make it easier to buy Surface hardware but to also make it easier to upgrade to the next model when it is released; effectively locking you into the Surface brand in a similar way to the smartphone sales model carriers offer. Surface Plus benefits include: Low monthly payments: Customers can purchase a Surface device with an easy, 24-month payment plan at 0% APR. Device upgrades: Customers can upgrade to the latest Surface after just 18 months. Dedicated Service & Support: Surface Plus offers best in class service and support from Microsoft Stores. Customers also have the option to add the Microsoft Complete extended service plan. Microsoft Store benefits: All customers who shop at Microsoft Store enjoy access to benefits like a 30-day hassle free return policy, a Surface training and health check as well as a year of free in-store support and technical assistance. Surface Plus for Business benefits: Multiple Surface models: Customers can add as many devices as they want into a single agreement and can have a mix of models across the Surface portfolio. The latest devices: Previously unavailable, customers can now finance a 55” Surface Hub... --- ### Controlling Message Deletion in Microsoft Teams > Microsoft Teams now allows tenants and team owners to control whether users (or team owners) can delete messages. - Published: 2017-08-01 - Modified: 2024-09-04 - URL: https://petri.com/controlling-message-deletion-teams/ - Categories: Microsoft 365, Office - Tags: Compliance, deletion, Office 365, Teams - Article Type: News Microsoft Teams now includes the ability to control whether team owners or members can remove items from conversations. It’s a useful feature. All of us have probably regretted something said electronically! Allowing for Second Thoughts Some organizations hate the idea of anyone removing something contributed to a conversation, no matter whether that conversation occurs in email, Yammer, Teams, or any other medium. They take the view that these communications are records to preserve as they are. Others consider it sensible that you should be able to recover from an error. After all, it is always possible to have second thoughts. Like just after you post to inform the world that your boss is an idiot. Recalling a message sent by mistake is difficult because email systems deliver messages so quickly today. However, email travels between recipients. With persistent conversations like those in Groups, Yammer, or Teams that might be open to all to see, it is good to be able to erase or edit mistakes when they happen. Blink and Teams Change Microsoft Teams is an application under constant development. Microsoft publishes new features regularly and because the Teams client is self-updating, you might not be aware of changes until you go looking. In this case, some recent updates to Teams deliver controls to allow tenants and team owners to control deletions. Tenants can set default controls over deletions while team owners can dictate what team members can do to edit or remove items. Controlling Deletions Tenant-wide control over all teams is through settings accessed for Microsoft Teams in the Services & add-ins section of the Office 365 Admin Center. Navigate to the Messaging section, where you can tweak... --- ### Triggering Actions with Webhooks in Azure > This post will explain how webhooks can be used to start actions in Azure from other Azure systems or external services running anywhere. - Published: 2017-07-31 - Modified: 2024-09-04 - URL: https://petri.com/triggering-actions-webhooks-azure/ - Categories: Microsoft Azure - Tags: Automation, Azure, Runbook, Web App, webhook, Webjob - Article Type: Overview Aidan Finn explains what a webhook is and how to use them. In this post, I will explain what a webhook is, in the context of Azure, and how we can use webhooks to trigger tasks inside of Azure from other Azure systems or even systems outside of Azure.     Background I have heard the phrase “webhook” before but it sounded like one of those things that was just for developers. It did not seem relevant to what I was spending time on, so I ignored it. A few months ago, I was meeting a customer to have a chat about their Azure business and to give them an update on some new things. I brought up the subject of Azure Automation and how it might be useful for some of their customers. We can use Automation runbooks to schedule the shutdown and start-up of Auzre virtual machines. Therefore, this can reduce the per-minute-of-runtime charges. This particular customer did not really need an update because they stay on top of things. Their CTO responded with, “We already do that. Look, I can even start the runbooks using my phone. " That is when my facial expression changed to, “Whatchoo' talkin’ ‘bout Willis? ” Since then, I have had other encounters with customers, where similar kinds of solutions might be useful. Recently, one customer requested a simple way for end users to start and stop the virtual machines that host a rarely used line of business application. Immediately, I thought of that solution, which was based on webhooks. So what are webhooks? ... --- ### Sponsored: Managing Email Signatures > Microsoft has never given Exchange customers a way to manage email signatures on behalf of users. Some commercial solutions exist. - Published: 2017-07-31 - Modified: 2024-11-19 - URL: https://petri.com/managing-email-signatures/ - Categories: Exchange 2010, Exchange 2013, Exchange 2016, Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Autosignature, Exchange 2013, Exchange 2016, Exchange Online, Office 365, Outlook, owa Surprisingly, Microsoft has never included a central method to manage user autosignatures within the cloud or on-premises versions of Exchange. Which means that you must let users manage their signatures, build your own tools, or deploy a commercial solution. Auto-Signatures For All In the early days of email, we didn’t worry so much about applying signatures to outbound messages. Even when Exchange came along in 1996, the focus stayed on the content rather than adding pretty company information at the bottom of messages. Roll on twenty years, the situation is different and it is common to find various disclaimers, logos, and contact information added to messages, sometimes to meet legal requirements (as in the U. K. ). The Signature Options Given that a real need might exist to ensure that messages contain some form of signature information (if only to fully identify the sender), the question is then how best to make this happen when using either Office 365 or on-premises Exchange. You can use three approaches to solve the problem: Have users apply disclaimers. Central management using PowerShell or transport rules. Deploy a commercial product. The last two options depend on information extracted from Active Directory to populate fields in email signatures, so making sure that correct user and organizational data are present in the directory is fundamental to success. Making Users do the Right Thing Option one relies on users to create and maintain signatures. You can tell users what they need to do to create a suitable email signature through their client of choice. Figure 1 shows how to edit a signature with Outlook 2016. Figure 1: Editing an email signature with Outlook 2016 (image credit: Tony Redmond) A signature can pretty complex and... --- ### Managing State in the SharePoint Framework Using Redux - Published: 2017-07-31 - Modified: 2024-11-19 - URL: https://petri.com/managing-state-sharepoint-framework-using-redux/ - Categories: SharePoint, SharePoint 2016 - Tags: Microsoft SharePoint, React JS, Redux, SharePoint Framework - Article Type: How To Learn to manage state in the SharePoint framework using React and Redux, including the creation of a client web part. Over the last few months, I have written several articles detailing how to create client web parts in the SharePoint Framework (SPFX) using ReactJS. More recently, I dove deeply into a single web part to show how to interact with SharePoint lists, create component trees, and manage communication between parent and child components. In all of those articles, I had to manage state for the various web parts but I chose to keep the management simple and traditional using properties. In this article, I will discuss state management more deeply. I will explain why a structured approach is important in complex SPFX projects and better than a more traditional approach.     Explaining the Problem In my recent articles, I have been working on a spreadsheet web part that I called CRUDSheet, which you can download from my GitHub repository. This web part consists of a hierarchy of components representing a sheet, rows, and cells in a spreadsheet all backed by a SharePoint list. In one article, I discussed managing state between the components using a traditional React approach with properties. The traditional React approach involves state management through the use of properties and state information passed between parent and child components. Parents can communicate with children by passing data down to them. This data can also contain callback functions that the child can use to communicate with the parent. Within a component, state can be maintained in an object. If state changes, then a component can call the... --- ### Windows 10 Overhead is Slowing Enterprise Adoption - Published: 2017-07-31 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-overhead-slowing-enterprise-adoption/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News The complexity of maintaining Windows 10 is slowing its adoption as IT administrators try to figure out how to deal with the additional overhead. Every time a new operating system is released, there is always excitement around the new features and performance enhancements. Windows 10 is no different and with a new servicing model, you would expect that the new OS would make it easier to operate your environment but after talking with 50+ IT Pros in firms ranging in size from a few dozen employees to more than 100,000 users, there was a pattern to their concerns about moving from Windows 7 to 10. The way Windows 7, simply put, operates today is that once a month you will receive a few patches that need to be reviewed and tested before being deployed to your environment. For IT administrators, this has been the routine for making sure that Windows is secure and the predictable delivery from Microsoft has made this process easy to integrate into the IT workflow. Starting with Windows 10, at least once a year and possibly twice a year, IT shops will now be required to upgrade the version of Windows 10 deployed in their environment. And simply thinking that these upgrades are like the monthly patches from the Windows 7 and prior days is a big mistake as with each new version of Windows 10, full testing of application compatibility will need to be done to make sure nothing breaks post-upgrade. You might think the full validation part seems unnecessary but Microsoft is removing and deprecating features with each release and while you would think that they... --- ### Paul Thurrott's Short Takes: July 28 - Published: 2017-07-28 - Modified: 2024-05-29 - URL: https://petri.com/paul-thurrotts-short-takes-july-14-2/ - Categories: Cloud Computing - Tags: News Because it's the dog days of summer, this edition of Short Takes examines Microsoft's new bug bounty religion, a "fully ready" Creators Update, the health of the PC industry, and more. Because it's the dog days of summer, this edition of Short Takes examines Microsoft's new bug bounty religion, a "fully ready" Creators Update, the health of the PC industry, and more. Microsoft finally wakes up to bug bounties After tepidly supporting a bug bounty for only certain key Windows features, Microsoft this week finally joined the 21st century and announced that it will pay bug bounties for any series problems found in Windows. Better still, it is upping its maximum payout to $250,000, for serious bugs found in Hyper-V. And that ... is interesting. In keeping with my theory that the future of Microsoft is all in the cloud, one of the ways you get there is through virtualization and containers and, oh my, isn't Hyper-V just a key piece of that transition? Yeah it is. So hammer away at Hyper-V, hackers. Let's make some money. "How Microsoft Excel Could Be Your Secret Weapon" Math is hard. "Microsoft Excel may be hazardous to your health" Wait, what? Suddenly, the Creators Update is ready. Somehow. After deploying the Windows 10 Creators Update--e. g. Windows 10 version 1703---more slowly than any version of the OS before it, Microsoft this week suddenly opened up the gates and just unleashed it on the world. The Creators Update, for some reason, is now "fully available," it says. "We’re now moving from a targeted offering to full availability for all compatible devices running Windows 10 globally via Windows Update," Microsoft's John Cable revealed. "Similarly, our commercial customers... --- ### Making the Small Business Case for Windows 10 S - Published: 2017-07-28 - Modified: 2024-09-04 - URL: https://petri.com/making-small-business-case-windows-10-s/ - Categories: Windows Client OS - Tags: Chrome OS, Chromebook, Fall Creators Update, Google G Suite, Office 365, Small Business, Windows 10 S - Article Type: Opinion In this Ask the Admin, Russell Smith looks at how Windows 10 S stacks up for businesses that are either already using Chromebooks, or are trying to decide between Windows 10 and Chrome OS. Chromebooks have proven popular with startups and small businesses, especially those that have invested in Google G Suite. With the release of Windows 10 S, business users can get most of the benefits of Chrome OS. They can also get the Office desktop apps if they have an Office 365 subscription. In this Ask the Admin, I will look at how Windows 10 S stacks up for businesses that are either already using Chromebooks, or are trying to decide between Windows 10 and Chrome OS.     Windows has always had one major problem in the small business space. It is difficult to secure and manage without full-time IT support. Because of that, Chromebooks have become popular. They are maintenance-free and perform reliably until the hardware starts to give up. However, Chrome OS is limited in ways Windows is not. For instance, Chromebooks requires the Internet. Essentially, Chrome OS is Google Chrome browser nicely bundled as an operating system. Reliance on the Internet might not be a problem as some websites have an offline function. Google G Suite apps, such as Docs and Mail, support offline use. This allows users to create and edit documents, search and compose email, and edit photos that are stored locally. Microsoft Word Online cannot be used offline so that might restrict use of Office 365 on a Chromebook. Although, Office 365 Outlook does have an offline mode. Windows 10 S was announced alongside the new Surface Laptop at an event in New... --- ### Amazon CloudWatch adds Support for High-Resolution Custom Metrics and Alarms - Published: 2017-07-28 - Modified: 2024-09-04 - URL: https://petri.com/amazon-cloudwatch-adds-support-high-resolution-custom-metrics-alarms/ - Categories: Amazon Web Services, Cloud Computing - Tags: Amazon, AWS, Cloud, News - Article Type: News Amazon has announced this week an update CloudWatch that will improve the visibility into the events that may negatively impact your cloud operations. Amazon announced this week that they have added support for new high-resolution metrics and alarms to their CloudWatch service, which can be used to monitor AWS cloud resources and applications. Amazon CloudWatch now enables AWS applications to publish metrics to the service with intervals as frequent as once a second; this is a significant improvement over the previous lowest resolution, which allowed for metrics to be reported in one-minute intervals. Additionally, users can now configure CloudWatch Alarms to evaluate as frequently as once every 10 seconds. With these improvements, CloudWatch users can now catch and even be alerted to potential issues that may have previously been undetectable. For example, if an application received a brief spike in usage and started to run low on available resources, like RAM or storage space, an admin would be able to view the application's CloudWatch logs to determine the exact time and duration of the spike and subsequent resource issue. In the event of a one-off usage spike, this sort of thing may have not even shown up on previous CloudWatch reports, given that the highest resolution prior to this update was an update once every minute. While these new high-resolution metrics are great for pin-pointing potential resource issues, there are constraints to how long they are available for viewing once published. Fortunately, there are also lower-resolution metrics (with reporting intervals of 60 seconds, 5 minutes, and 1 hour) that are available for longer periods of time once published. The schedule of Amazon... --- ### Docker LinuxKit Brings Linux Containers to Windows Server - Published: 2017-07-28 - Modified: 2024-09-04 - URL: https://petri.com/docker-linuxkit-brings-linux-containers-windows-server/ - Categories: Windows Server - Tags: cloud computing, Containers, Docker, linux, Windows Server 2016 - Article Type: News In this Ask the Admin, Russell Smith looks in detail at the mechanics of how Linux containers will be supported in Windows Server 2016. In April, Microsoft announced that it was bringing support for Linux Containers to Windows Server. You can read more about that announcement here on Petri. In this Ask the Admin, I'll look in more detail at the mechanics of how Linux containers will be supported.     DevOps teams have been looking for more flexibility in where they can run Linux containers. Docker supports Windows Containers running on Windows Server but there is no official support for Linux containers. Docker for Windows When container support was first announced in Windows Server three years ago, Microsoft made it clear that only Windows Server images would run natively in containers. But Docker for Windows, a community edition app from Docker for Windows 10, supports Linux containers in a Hyper-V Virtual Machine running Moby Linux. This allows developers to work in Windows 10. Paradoxically, Docker for Windows has limited support for Windows Containers and Docker suggests testing Windows Containers on Windows Server 2016. Docker for Windows is not required for Docker support in Windows Server 2016. Imagine if it were possible to run Linux containers not only on Linux, but on Windows Server, or on any other platform that supports containers. Last year, Docker collaborated with several companies, including Microsoft and the Linux Foundation, to take up the challenge. Container-Specific Operating Systems The result of that project is LinuxKit. This is a secure and portable Linux subsystem that provides Linux container functionality. It will be part of the Docker platform. Linux... --- ### PowerShell Classes - Your Ultimate Guide - Published: 2017-07-28 - Modified: 2024-09-11 - URL: https://petri.com/creating-first-powershell-class/ - Categories: PowerShell - Tags: Automation, Beginner, Classes, PowerShell, Scripting - Article Type: How To Take your PowerShell programming to a new level by learning how to use classes. PowerShell 5. 0 introduced the concept of being able to create classes directly from within PowerShell. Prior to version 5. 0, you needed to define a class in C# and compile it, or use some pretty complicated PowerShell to create one. For PowerShell scripters without a programming background, you may be wondering what all the fuss around classes is about.   You may also be thinking, “so what? ” You may feel intimidated on getting started with classes.   This article intends to take the fear out of using classes in your PowerShell programming. What Is a PowerShell Class, Exactly? Wikipedia states, "In object-oriented programming, a class is an extensible program-code-template for creating objects, providing initial values for state (member variables), and implementation of behavior (member functions of methods). " Huh? Well, wait a second.   First, a class is a template for creating objects. You have been using PowerShell to create and manipulate objects all along. Next, the class template provides initial values for its members. PowerShell objects have members too, properties and methods, and you can provide values for the properties. Lastly, the class implements behavior via methods. So does PowerShell! You Have Been Using Classes All Along Take a moment to reflect on what happens when a PowerShell cmdlet runs. For example, when the get-service command runs, it returns an object. By running get-service and then piping it to get-member, we find out that the output of get-service is an object of type System. ServiceProcess. ServiceController. A quick MSDN lookup reveals that ServiceController is a... --- ### Microsoft is Changing The Windows 10 Servicing Model, Again - Published: 2017-07-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-changing-windows-10-servicing-model/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft is once again changing the servicing model of Windows 10; the company is removing one of the safety-nets used to prevent bugs from reaching corporate customers. Microsoft has moved Windows to a servicing model with the release of Windows 10 which means that the company is updating the software at a much faster rate. Long gone are the three-year gaps between major updates with the company boldly moving to updating its operating system with a major release twice a year. This new model, known as Windows as a Service, has its positives and its negatives but one thing that has been inconsistent is Microsoft's servicing of the OS. When the OS came out, large updates could be released at any time of the year and then the company moved to only shipping updates in March and September along with several branches for stability including Current Branch, Current Branch for Business and Long Term Servicing Branch. These branches are changing and I suspect many may not like what is happening here. Microsoft is moving Windows 10 to the same servicing as Windows Server which means that they are doing away with Current Branch and Current Branch for Business channels and is renaming the Long Term Servicing Branch. Going forward, there will be two Windows servicing branches; Semi-annual channel and Long Term Servicing Channel. The big change here is that under the current model, Microsoft would test the new build release with consumers for about five months and then ship it to enterprise customers using the Current Branch for Business channel. That process is going away and the company is now passing the burden of testing... --- ### Microsoft Ends Windows 10 1511 Support in October, Pushes 1703 to Everyone - Published: 2017-07-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ends-windows-10-1511-support-october-pushes-1703-everyone/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has announced that in October, the company will be ending support for Windows 10 build 1511. With the release of Windows 10, Microsoft has dramatically changed up their servicing life cycle for the operating system. Long gone are the three-year release timelines with the company moving to releasing two large updates per year. Announced along side today's updates to the servicing model that removes the current branch for business from the equation is that in October, Microsoft will end support for version 1511 of Windows 10. Specifically, after October 10th, the company will no longer release security and quality updates for that version of the software. In addition to ending support for 1511, Microsoft is now pushing Windows 10 1703 (Creators Update) to everyone starting today. This also means that the company is signaling that this version of Windows 10 is now ready for corporate customers too. This isn't a major surprise as Microsoft only committed to 18 months of support for each major release of Windows 10 and with the Creators Update now rolling out worldwide to everyone, this version of Windows is set to be retired. If you are running this version of Windows 10 inside your company, you need to begin the upgrade process in the near future as Microsoft will not be extending the support period. If you haven't done so yet, it is worth taking a look at the updates to the servicing model as well. Microsoft is once again changing the terminology and methodology used to ship future updates to Windows 10 and this will impact how some... --- ### Interview with Vijay Tewari of Microsoft About Azure Stack > I interviewed Vijay Tewari, one of the leaders of the development of Azure Stack, Microsoft's implementation of their private/hybrid cloud solution. - Published: 2017-07-27 - Modified: 2024-09-04 - URL: https://petri.com/interview-vijay-tewari-microsoft-azure-stack/ - Categories: Microsoft Azure - Tags: Azure, Azure Stack, Azure Stack Development Kit, interview - Article Type: Interview Aidan Finn interviews Vijay Tewari of Microsoft about Azure Stack. Microsoft recently launched Azure Stack at the Microsoft Inspire conference, which gives you the ability to run Azure in your own premises. One of the leaders of this strategically important product is Vijay Tewari, a Principal Group Program Manager for Microsoft Azure Stack and hybrid cloud infrastructure and solutions. Vijay kindly agreed to answer some questions about Azure Stack, so our readers could learn a bit more.     The Interview You’ve announced the availability of the Azure Stack Development Kit and pre-orders of Azure Stack. What is Azure Stack and why does it exist? Azure Stack is an extension of Azure and facilitates running Azure Services in a customer’s data center. Customers are adopting Azure for a variety of different scenarios and use cases but we have identified three patterns where Azure Stack provides a solution. Edge and disconnected solutions: You can address latency and connectivity requirements by processing data locally in Azure Stack and then aggregating in Azure for further analytics with common application logic across both.  Consider the case of an oil rig or a cruise line, which has computational capacity and would like to have cloud applications provide services to these environments. Customers are desirous of developing cloud applications which can then be deployed to these edge environments. Cloud applications that meet every regulation: You can develop and deploy applications in Azure. This is with full flexibility to deploy on-premises with Azure Stack to meet your regulatory or policy requirements. Code changes are not... --- ### Office 365 Alert Policies Automate Audit Monitoring > Office 365 alert policies allow tenants to monitor Office 365 audit events for different patterns to detect suspicious or unwanted behavior. - Published: 2017-07-27 - Modified: 2024-09-04 - URL: https://petri.com/office-365-alert-policies-automate-audit-monitoring/ - Categories: Microsoft 365, Office - Tags: Activity Alerts, Alert Polices, audit log, Office 365, Security and Compliance No one likes looking at a stream of audit events flowing by, especially when an Office 365 tenant generates so many events. Alert policies allow tenants to define patterns of activity that indicate suspicious or harmful behavior. There's goodness here, as long as you have Office 365 E5 subscriptions. Alerts All Round Activity alerts have been available in Office 365 since mid-2016. An activity alert watches the flow of events into the Office 365 audit log and fires when users perform a selected activity, like checking in a file into a document library. You can create an alert for any activity recorded in the audit log, that is, if you enable auditing for your tenant (don’t forget to enable mailbox auditing too). Activity alerts are and straightforward and deliver the benefit that an administrator does not have to check the audit log for specific events. However, firing an alert does not need much intelligence. An event happens and an alert fires. Simple. Alert Policies Alert policies apply a lot more intelligence to check audit entries. A policy can trigger alerts for every instance of a certain activity, such as when an administrator grants another user elevated permissions, or can look for patterns of events, such as when a certain number of activities occur within a specific time. For instance, users download 100 files from a SharePoint library within an hour. That might be evidence of a hard-working user. On the other hand, it might be a sign that someone is grabbing some valuable intellectual property that they plan to take with them to another job. More impressively, Office 365 can set the threshold for a trigger by analyzing up to a week’s worth of activities to understand what usually happens within a tenant. If something then happens... --- ### Creating Portable HTML in PowerShell - Published: 2017-07-27 - Modified: 2024-09-04 - URL: https://petri.com/creating-portable-html-powershell/ - Categories: PowerShell - Tags: Intermediate, PowerShell - Article Type: How To Jeff Hicks shares tips and tricks for doing more with HTML in this PowerShell series. In a previous Petri. com article, we were exploring ways to do more with HTML in PowerShell. At the end, I showed you a finished file that used a path to a local copy of a CSS file. There is nothing wrong with this if the file will never leave your computer or when testing. To make the document portable, you can embed the style information directly into your HTML file.     To keep my code samples a bit easier to read, I am going to be working with the same data. $data = Get-Eventlog -List | Select @{Name="Max(K)";Expression = {"{0:n0}" -f $_. MaximumKilobytes }}, @{Name="Retain";Expression = {$_. MinimumRetentionDays }}, OverFlowAction,@{Name="Entries";Expression = {"{0:n0}" -f $_. entries. count}}, @{Name="Log";Expression = {$_. LogDisplayname}} I will pipe $data to ConvertTo-HTML. I am also going to start using a hashtable of parameter values to splat to ConvertTo-HTML. $convertParams = @{ Title = "Event Log Report" PreContent = "$($env:COMPUTERNAME)" PostContent = "$(get-date)" } The style information goes in the html header. I will copy the code from my CSS file to a here string variable. Then, I will add the variable to the parameter hashtable, since I have already created it. $head = @" "@ $convertParams. add("Head",$head) Let's try it... --- ### Microsoft Launches Windows Bug Bounty Program Because Late Is Better Than Never - Published: 2017-07-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-bug-bounty-program-late-better-never/ - Categories: Windows 10 - Tags: Bug Bounty, Microsoft, News, Windows 10 - Article Type: News Microsoft has finally opened up a bug bounty program for Windows 10 where the company will pay up to $250,00 for reporting a security flaw. If you find a bug in a popular application from a large company, there is a good chance that they offer a 'bug bounty' program where you can report the issue and make a little bit of money for uncovering the flaw. These programs have been around for some time but surprisingly, Microsoft did not offer a reward for reporting issues with Windows. Starting today, Microsoft is expanding programs it has offered as far back as 2012, to include Windows 10 in addition, to focus areas in Hyper-V, Mitigation bypass, Windows Defender Application Guard, and Microsoft Edge. Payouts can range from as low as $500 for finding a flaw in an Insider preview build to $250,000 for an issue with Hyper-V. These types of bounty programs are necessary in a world where exploits found in a program can be sold to nation states or to other malicious groups to create ransomware. With Microsoft now offering a direct payout for reporting security flaws in its products for Windows, the goal is to reduce the number of exploits released in the wild and make Windows a more secure product. What's odd is that it has taken Microsoft this long to create a Windows 10 bounty program. You would think they would want everyone to report any flaw to them right away but when there is financial gain to be made by keeping an exploit private, there is little incentive to do so unless Microsoft was willing to offer a reward which... --- ### Microsoft Looks to Make Azure More Container Friendly With Container Instances - Published: 2017-07-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-looks-make-azure-container-friendly-container-instances/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure container instance, Microsoft, News - Article Type: News Microsoft is rolling out a new container service that is being pitched as the easiest way to launch and manage containers in the cloud. If you look at any recent earnings report from Microsoft, there is one consistent segment of growth that is outpacing other company operations, cloud services. Microsoft's Azure platform is the backbone of the future of the company and they are continuously making large investments in this platform. Announced today, Microsoft is making it easier to deploy and manage containers in Azure without the need to manage a virtual machine. The service is being called Azure Container Instances (ACI) and the company says this is the fastest and easiest way to run a container in the cloud. The new containers will be customizable based on your needs with the ability to define the amount of memory needed and an exact count of vCPUs. The company says that these containers will be first-class objects on Azure and will also offer Role-Based Access Control (RBAC) as well. Somewhat surprising is that the service is entering preview today for Linux containers only. The company says that Windows container support will be available in the coming weeks and that all containers will be billed by the second so that you don't pay for when you are not using the service. This new container service is not an orchestrator and the company does not plan to turn this service into that type of product but they do intend for ACI to fuel orchestrators. As part of the announcement today, Microsoft is also releasing an open source ACI connector for Kubernetes that enables Kubernetes clusters to... --- ### What Is the Azure App Service? > In this post, aimed at IT pros, I'll describe the heart of Azure platform-as-a-service (PaaS), the Service Fabric and the App Service Suite. - Published: 2017-07-26 - Modified: 2024-09-04 - URL: https://petri.com/azure-app-service/ - Categories: Microsoft Azure - Tags: API Apps, App Service, Azure, Functions, IaaS, IT pro, Logic Apps, Mobile Apps, PaaS, Service Fabric, Web App, Web Job - Article Type: Overview Aidan Finn discusses the Azure App Service, the heart of Microsoft’s platform-as-a-service. In this post, I will discuss the Azure App Service, the heart of Microsoft’s platform-as-a-service (PaaS). This is the first bucket of things that I have started learning as an IT pro that is expanding their knowledge beyond the comfortable world of infrastructure-as-a-service (IaaS).     The Service Fabric In our comfortable world of IaaS, when we need a new web server, we deploy a virtual machine, log into it, and set up something like nginx on Linux or IIS on Windows Server. Deploying such an application comes with the implied responsibility of managing that virtual machine, making it highly available, patching it, updating the operating system, and keeping the web service binaries patched and up to date too. The idea of PaaS is that we spend our time managing the application; the infrastructure exists, certainly, but we stop caring about it because it is no longer our responsibility. Microsoft Azure accomplishes this by using an abstraction called the Service Fabric. The Service Fabric presents the capabilities of Azure virtual machines to users of Azure as “simple” services. For example, if you want a web server, you do not deploy a web server. Instead, the Service Fabric uses a virtual machine to make web server functionality available to you and you manage the web server through a portal experience (PowerShell, Azure CLI, Visual Studio, etc). A Representation of the Azure Service Fabric The App Services The Service Fabric makes several... --- ### ConvertTo-HTML Tips and Tricks - Published: 2017-07-25 - Modified: 2024-09-04 - URL: https://petri.com/convertto-html-tips-and-tricks/ - Categories: PowerShell - Tags: Intermediate, PowerShell, Reports - Article Type: How To In this series, Jeff Hicks shares tips and tricks for creating reports in PowerShell. Everybody loves a nice HTML report. Am I right? Creating these reports in PowerShell is not that difficult. I thought I would offer up some tips and tricks you may not be aware of, including a few that I use all the time when I am creating reports. Some of these are documented in the help for ConvertTo-HTML. You do read the help, correct? Remember that ConvertTo-HTML does not create an actual file, just the HTML code. This is good for us. This means that we can modify the HTML on the fly and save the file when finished.     Be Selective The first, and perhaps most important tip, is to be selective. Let's take a simple command and output like this one. A Simple PowerShell Command (Image credit: Jeff Hicks) You want to create an HTML version of this, so you run a command like this: Get-EventLog -list | convertto-html | out-file d:tempa. htm When you open the file in your browser, things are not quite what you expected. Converted Output (Image credit: Jeff Hicks) This is because Convertto-Html, like Export-CSV and Export-Clixml, take the entire object. This is not just the default result you see on the screen. Remember, everything will be treated as a string. In my example, if I want a similar HTML file, I will have to recreate the output with Select-Object. This might require piping the original result to Get-Member to discover the "real"... --- ### Selecting the Right SME Storage Solution Part 1: Windows Server - Published: 2017-07-25 - Modified: 2024-09-04 - URL: https://petri.com/selecting-right-sme-storage-solution-part-1-windows-server/ - Categories: Backup & Storage - Tags: Local storage, NAS Devices, Small Business, SME, Windows Server Essentials - Article Type: Overview In part one of this article, Russell Smith looks at the advantages for small businesses of server hardware running Windows Server Essentials for local storage needs. If your small business has determined that it needs on-premise file storage, you can either purchase Network Attached Storage (NAS), such as the popular Netgear ReadyNAS, Synology DiskStation devices, or a server running Windows Server. In part one, I will look at the advantages of hardware running Windows Server Essentials. In part two, I will move my attention to NAS devices.     Before I get started, let me say that you should not go down the on-premises storage route unless you really need to. Cloud storage, such as Microsoft OneDrive for Business, is so much easier to work with and implement. It does not require any on-site infrastructure and is available anywhere you can find an Internet connection. But if you decide that on-premises storage is a requirement, and you want a flexible solution, life will become more complicated. Windows Server Essentials Small businesses often look at NAS as an on-premises storage solution before Windows Server. The reason for this is that in the short term, it works out cheaper and can be easier to set up. But depending on how you to intend to use it, a NAS device may not be the best option. Much like SME NAS devices that include space for two or more removable disks, similar hardware is available that can be used with Windows Server. For instance, HP offers Windows Server Essentials as a Reseller Option Kit (ROK) with its ProLiant MicroServer Gen8, which also has Integrated Lights-Out (iLO) and a... --- ### Modern SharePoint Web Parts Updates -- Quick Links and News - Published: 2017-07-25 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-updates-quick-links-news/ - Categories: SharePoint - Tags: Modern SharePoint, Modern Web Parts - Article Type: Overview Jasper Oosterveld compares the Modern SharePoint experience to the Classic SharePoint experience. I am a huge fan of the Modern SharePoint experience. Is it perfect? Definitely not. However, the modern experience offers a responsive design, easy to use web parts, and is user-friendly. I have seen customers adapting to Modern SharePoint faster than they did to Classic SharePoint.     The changes are following each other rapidly. Recently, I wrote about the new SharePoint Communication Sites. This new site experience offers many new web parts and features. Many of these new web parts and features are also available in the Modern SharePoint Team Site. The web parts delivered with the initial release of the Modern SharePoint Team Site are also evolving and regularly receiving updates. I want to keep you all up-to-date, so I decided to start a new series called Modern SharePoint Web Part Updates! Let's start with part 1: Quick Links and News. Quick Links The Quick Links Web Part has been around since the launch of the Modern SharePoint Team Site. After editing the web part, a new view had been released: The Compact View looks as following: After adding links, we are able to add an image for the Quick Link:   This results in the following:   Looks pretty nice right? I like the Compact View! What I do not like is changing back to the Filmstrip View:   The images do not scale automatically and this looks bad. I hope Microsoft (let's hope they are reading this blog) will fix this in the near future... . --- ### Windows 10 Gains In the Enterprise But Windows 7 Is Still The Top Dog - Published: 2017-07-24 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-gains-enterprise-windows-7-still-top-dog/ - Categories: Windows 10, Windows 7, Windows Client OS - Tags: Market Share, Windows 10, Windows 7, Windows XP - Article Type: News Microsoft's Windows 10 operating system is making inroads in the corporate world but it may not be fast enough to overtake Windows 7 before that platform reaches its end of life. This week, Windows 10 will turn two years old and while the general sentiment is that this OS will eventually take over Windows 7 market share, there is still a long road to climb. For Microsoft, it is critical that they entice companies to move to Windows 10 as it opens up new revenue streams and avoids the issue of having an unsupported OS being widely used after it reaches end of life. As of June 30, 2017, Spiceworks, which has been regularly conducting surveys about Windows 10 penetration, notes that 60% of business have installed Windows 10 on at least one machine based on a survey of more than 500 IT Pros. Based on this data, Windows 10 adoption rate is exceeding that of Windows XP, 8 and Vista. Of course, just because one machine is running the OS does not mean that a company is rolling out the OS today. More so, Windows 7 still holds the top position with a penetration rate of 84% but more surprisingly, and is a large point of concern for Microsoft, is that 42% of the survey respondents reported having at least one machine running Windows XP. Looking beyond how many companies have only one machine running an OS paints a much weaker picture for Windows 10 as it holds about 13% of the corporate market. Windows 7, to little surprise, has over two-thirds of the market. Even though Windows 7 is still the leader in the business world by a considerable... --- ### Introducing Azure Web Apps > This post is an overview of Azure Web Apps, an enterprise-class cloud-based hosting solution for online line-of-business and SaaS applications. - Published: 2017-07-24 - Modified: 2024-09-04 - URL: https://petri.com/introducing-azure-web-apps/ - Categories: Microsoft Azure - Tags: Azure, virtual machine, Web Apps, Web Hosting - Article Type: Overview Aidan Finn explains what Azure Web Apps are and what they offer to businesses that require an enterprise-class facility for line-of-business web-based applications running in the cloud. In this post, I will explain what Azure Web Apps are and what they offer to businesses that require an enterprise-class facility for line-of-business web-based applications running in the cloud.     Familiar Territory You have probably already learned a great deal about the concepts of Azure Web Apps without even realizing it. You have probably worked with Web Apps in the past. Most IT pros have done one or both of the following: Set up IIS on Windows Server or a web server, such as nginx, on Linux. Set up a website, costing a few dollars per month, running with a hosting company that takes care of the virtual machines for you. Web Apps are a service provided by the Azure Service Fabric, enabling you to run a website or application without worrying about the virtual machines. Underneath the Service Fabric are a collection of Hyper-V virtual machines that the Service Fabric and Azure manage. This is its responsibility to give you a highly available, self-healing service on which your web app runs. This abstraction frees you of most responsibilities: Deploying virtual machines Patching Running IIS Instead, you focus all your efforts on: Architecting the application Coding the application If you have used a web hosting service before, then the concept will be familiar: You request and are given capacity to host a web application. The website is written and you upload your code. The desired DNS domain name is associated with your site. You... --- ### Microsoft's Bringing AI To HoloLens v.Next with Custom Silicon - Published: 2017-07-24 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-ai-hololens-v-next-custom-silicon/ - Categories: Hardware - Article Type: News Microsoft is working on a new chip that will be the next generation Holographic Processing Unit that will bring AI down to local hardware. A few months back, I was able to uncover the fact that Microsoft had canceled its upcoming Hololens 2 release as the company shifted its attention to a truly next generation release. Today, the company revealed that they are building a new, custom fabricated chip, for the next generation device that will bring AI from the cloud down to the local device. The second generation of the company's Holographic Processing Unit (HPU) will include an AI coprocessor that will include support for Deep Neural Networks. The reason for the need for a new type of HPU is that offloading intensive tasks to the cloud results in an unacceptable amount of latency when working with objects in real-time which means to solve this problem, Microsoft needs to bring 'AI' processing directly to the HoloLens. Microsoft has taken a keen interest in designing its own chips, the company has previously architected its own silicon with Kinect, field programmable gate arrays (FPGA) and of course, the first HPU. And considering the company is investing heavily in AI, it's not all that surprising to see them building out new silicon that is designed specifically for this task as its use-case reaches far beyond the Hololens headset. Microsoft isnt saying when the next generation Hololens will be available for everyone but insiders have told me to expect 2018 at the earliest with a more likely goal of 2019 for broad availability. --- ### Hyper-V Replica for Disaster Recovery - Published: 2017-07-21 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-replica-disaster-recovery/ - Categories: Hyper-V - Tags: Disaster Recovery, Hyper-V, Microsoft, virtual machine, Windows Server 2012, Windows Server 2012 R2 - Article Type: Overview Michael Otey discusses Hyper-V Replica as an option for protecting business-critical virtual machines from site or system outages. The use and capabilities of Hyper-V have grown rapidly since its introduction with Windows Server 2008. Hyper-V is now a feature-rich platform that is on par with VMware’s vSphere. Hyper-V has become an integral part of many businesses' IT infrastructures. Establishing a disaster recovery strategy to protect your Hyper-V servers and virtual machines (VMs) is essential. A disaster is any event that renders your data center or server unusable. It is necessary to be able to minimize the downtime in the event a disaster hits your organization. Downtime can be very costly and being able to rapidly recover in the event of a disaster is vital. A recent study by Gartner calculated that the average cost of downtime for businesses was $5,600 per minute. Microsoft estimates that companies lose an average of $80,000 to $90,000 per hour of downtime.     Without a doubt, the most important Hyper-V disaster recovery feature is Hyper-V Replica. First announced with Windows Server 2012, Hyper-V Replica enables you to create a copy or replica of your mission-critical Hyper-V VMs on another Hyper-V host. When you enable Hyper-V Replica for a specific VM on the primary Hyper-V host server, the initial replication task will create an identical VM on the secondary Hyper-V host. After the initial replication completes, Hyper-V Replica will begin creating a log file of the changes to the primary VM's VHDs. The log file is then periodically captured and forwarded to the secondary Hyper-V host according to the specified replication... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (July 2017) - Published: 2017-07-21 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-7/ - Categories: Cloud Computing - Tags: News - Article Type: News Because Microsoft just announced its quarterly and fiscal year 2017 earnings, this edition of Short Takes focuses on those results. Are those GAAP or non-GAAP results? Because Microsoft just announced its quarterly and fiscal year 2017 earnings, this edition of Short Takes focuses on those results. Note: As with my previous takes on Microsoft's earnings, this article will analyze key details from the software giant's regulatory filings and post-earnings conference call with analysts. But long story short, Microsoft just posted quarterly net income of $6. 5 billion on revenues of $23. 3 billion. And for the year, it reported net income of $21. 2 billion on revenues of $90 billion. Not too shabby. Microsoft touts its "digital transformation" The reporters and bloggers who cover Microsoft have a running gag about the term "digital transformation" because Microsoft executives say it so much these days. And sure enough, it was a key theme of this quarter's results: Microsoft is very keen on proving to the world that it is transforming, successfully, from the company that sold PC software to become one of the world's biggest makers of cloud services. And, sure, they are absolutely making this transition. But it's still a transition, and I'm worried that Microsoft will over-emphasize future revenue streams over current revenue-generators, triggering a complete misunderstanding of where the money is actually made. For example, the firm revealed last night that it has adopted a new revenue accounting standard that will make comparisons to the past very difficult. And I'm pretty sure that is exactly why they are making this change. Too much of Microsoft's financial results reporting is about... --- ### Microsoft Security Risk Detection is Ready for Customers - Published: 2017-07-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-security-risk-detection-now-generally-available/ - Categories: Microsoft Azure, Security - Tags: Microsoft Security Risk Detection, News - Article Type: News Microsoft Security Risk Detection, a new Azure-hosted "whitebox fuzzing" service, is now generally available following several months of external testing. Microsoft Security Risk Detection, a new Azure-hosted "whitebox fuzzing" service, is ready to ship to customers after several months of external testing. It will be generally available later this summer. Previously codenamed Project Springfield, Microsoft Security Risk Detection (MSRD) began life inside Microsoft Research over ten years. It was designed to seek out the vulnerabilities in Microsoft's software that hackers would later try to find and exploit so that the software giant could fix them preemptively. It was battle-tested by the Windows team and other groups within Microsoft. And now, with Satya Nadella's rise to CEO, it has matured from an internal tool to a shipping product. Microsoft first announced MSRD at Ignite 2016 last September, when it asked for external help testing the service. Over 11,000 potential testers signed up during the week of Ignite alone, I was told, and Microsoft selected an unknown number of select customers---DocuSign, OSIsoft, and Deschutes Brewing among them---for real-world testing. MSRD works like an automated "super debugger," project lead David Molnar told me this week, examining software binaries as they run and probing for vulnerabilities. This means that it doesn't need source code access, which makes it safe for customers to deploy from the public cloud. And because it is a public cloud service, MSRD doesn't require developers to have any particular security expertise. Molnar said that MSRD contains two big breakthroughs. The super debugger provides time travel-like benefits that help organizations step back through running code and find out where and when... --- ### Strong Office 365 and Azure Growth Delivers $18.9 Billion Annual Revenues > Microsoft's Q4 FY17 results show strong growth in cloud revenues with the ARR reaching $18.9 billion and actual revenues of $15 billion. - Published: 2017-07-21 - Modified: 2024-05-24 - URL: https://petri.com/fy17-q4-office365-azure-revenues/ - Categories: Cloud Computing, Microsoft 365, Office - Tags: Azure, financial results, Microsoft, Office 365 - Article Type: News It's results time again and Microsoft released earnings for Q4 FY17 on July 20. As always, there are nuggets to be minded. The billions of revenues generated by Azure and Office 365 are the highlights for me, even if Microsoft did not update the number of Office 365 users. Cloud Money, Money, Money It is results time again and Microsoft released earnings for Q4 FY17 on July 20. As always, there are nuggets to be minded from the data provided by Microsoft, including the transcript of the call with analysts. The billions of cloud revenues generated by Azure and Office 365 are the highlights for me, even if Microsoft did not update the number of Office 365 users. Within Touching Distance of Nadella’s $20 Billion Goal In her comments to analysts, Microsoft CFO Amy Hood said, “for the first time, Office 365 commercial revenue surpassed revenue from our traditional licensing business. ” In other words, the balance in revenue between on-premises and cloud Office servers has now tilted to the cloud. Allied with a 97% year-over-year growth in Azure boosted by the “highest-ever number of multi-million dollar Azure deals,” Microsoft’s annualized revenue run-rate (ARR) for commercial cloud products zoomed by $3. 7 billion in the quarter to $18. 9 billion. The year-over-year growth for Office 365 was 43%. Overall growth in the commercial cloud products ARR for the year was $6. 8 billion and Microsoft is now within a quarter of reaching Satya Nadella’s goal of $20 billion ARR by the end of their FY18 year. Table 1 lists how the ARR has grown quite dramatically since April 2015. Quarter results Microsoft reported annualized revenue run rate for commercial cloud products FY15 Q3 (April 2015) $6. 3 billion FY15 Q4 (July 2015) $8. 0 billion FY16 Q4 (July 2016) $12. 1 billion FY17 Q1 (October 2016)... --- ### Microsoft Q4 Earnings: Net income of $6.5 billion on $23.3 billion of revenue - Published: 2017-07-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-q4-earnings-net-income-6-5-billion-23-3-billion-revenue/ - Categories: Main - Tags: Earnings, Microsoft, News - Article Type: News Microsoft has released its Q4 earnings (Q2 calendar) and during that time period, the company brought in Net income of $6.5 billion on $23.3 billion of revenue. Microsoft has released its Q4 earnings (Q2 calendar) and during that time period, the company brought in Net income of $6. 5 billion on $23. 3 billion of revenue. The diluted earnings per share was $0. 83 with operating income of $5. 3 billion. Revenue in Productivity and Business Processes was $8. 4 billion and increased 21% (up 23% in constant currency), with the following business highlights: Office commercial products and cloud services revenue increased 5% (up 6% in constant currency) driven by Office 365 commercial revenue growth of 43% (up 44% in constant currency) Office consumer products and cloud services revenue increased 13% (up 13% in constant currency) and Office 365 consumer subscribers increased to 27. 0 million Dynamics products and cloud services revenue increased 7% (up 9% in constant currency) driven by Dynamics 365 revenue growth of 74% (up 75% in constant currency) LinkedIn contributed revenue of $1. 1 billion during the quarter Revenue in Intelligent Cloud was $7. 4 billion and increased 11% (up 12% in constant currency), with the following business highlights: Server products and cloud services revenue increased 15% (up 16% in constant currency) driven by Azure revenue growth of 97% (up 98% in constant currency) Enterprise Services revenue decreased 3% (down 1% in constant currency) with declines in custom support agreements offset by growth in Premier Support Services Revenue in More Personal Computing was $8. 8 billion and decreased 2% (down 1% in constant currency) driven primarily by lower phone revenue, with the following business highlights: Windows OEM revenue increased 1% (up 1% in constant... --- ### Exploring Office 365 with the Graph Explorer > The Microsoft Graph is a common programmatic interface to Office 365 and other data, including Azure AD. The Graph Explorer guides you through endpoints. - Published: 2017-07-20 - Modified: 2024-11-19 - URL: https://petri.com/exploring-office-365-graph-explorer/ - Categories: Microsoft 365, Office - Tags: Exploring Office 365 with the Graph Explorer - Article Type: Opinion The Microsoft Graph is a common programmatic interface to Office 365 and other data, including Azure Active Directory. The Graph Explorer is an excellent guide to help programmers understand what is possible with the Microsoft Graph and how to interact with the various endpoints. In the Beginning: PowerShell, EWS, and PnP When Microsoft launched Office 365 in June 2011, the basic workloads brought their own approaches to automation to Office 365. After many mishaps with APIs that never quite worked as intended, much of the focus for Exchange was on PowerShell. This was natural because Exchange 2007 was the first major Microsoft server product to embrace PowerShell. However good PowerShell is at automating common administrative tasks, it does not handle access to content. To close this gap, Exchange Web Services (EWS) handles programmatic access to data in user mailboxes. EWS is the basis of the Outlook for Mac client and is a very effective method to access Exchange data, as you can find out by examining the many code examples available on the Internet, including the repository managed by MVP Glen Scales. SharePoint also supports PowerShell, but the coverage of the SharePoint PowerShell module is less comprehensive and powerful than its Exchange counterpart. For this reason, the SharePoint development community built the SharePoint PnP (Patterns and Practice) initiative. PnP is an excellent choice for developers who want to extend SharePoint functionality. The Microsoft Graph Office 365 is a different environment. PowerShell plays a key role in the automation of Office 365 administrative. EWS is available to access mailbox data and PnP continues to flourish. However, for programmatic access, Microsoft’s focus is clearly on a set of REST-based APIs for a common access approach to all manner of Office 365 data from Exchange... --- ### With Windows as a Service, Microsoft is Forced to End Feature Support Early for Some Hardware - Published: 2017-07-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-service-microsoft-forced-end-feature-support-early-hardware/ - Categories: Windows 10 - Tags: Intel, News, Windows 10 - Article Type: News Microsoft is making changes to its support policy for Windows 10 as some vendors are no longer updating hardware that was initially supported when Windows 10 was released. With the release of Windows 10, Microsoft has moved its desktop operating system to a service model and with that comes complexity from many different sides. On one hand, you have the human aspect of trying to keep up with a rapid release cadence for IT pros and on the other side, Microsoft is depending on hardware vendors to support their products for the lifecycle of the OS. We have officially hit the first road bump of this new model where Microsoft is still supporting a product but the vendor is not. The culprit is Intel's Clover Trail chips which were released as Intel Atom Processors Z2760, Z2580, Z2560, Z2520 and are now out of support for Intel but can still run Windows 10. After this issue was noted by ZDNet, I wanted to get the full picture of the impact this may have and make sure that there is no confusion around support for these processors and Windows 10. Notably, when Windows 10 came out, it was possible to install Windows 10 on devices with these chips but with the latest release, Creators update, you can no longer upgrade to that build. If you have one of the impacted chips and you try to upgrade to the latest iteration of Windows 10 (Creators Update), you will be prompted that your machine is not compatible and it will not install the updates. This is done as a safeguard as there are reported issues including text appearing fuzzy, icons... --- ### Google Pushes Further Into Business World With Hire - Published: 2017-07-19 - Modified: 2024-09-04 - URL: https://petri.com/google-pushes-business-world-hire/ - Categories: Google Cloud Platform - Tags: G Suite, Hire, News - Article Type: News Google has announced a new feature for G-Suite, called Hire; the service makes it easier to streamline the recruitment process for new employees. It's no secret that Google wants to tap into the business world. The company has launched a renewed effort to build out Google Cloud, G-Suite is starting to see some corporate adoption, and up next, the company is going to help small to medium sized business streamline their hiring process. Google Hire is targeted at making it easier find, track, and manage the entire hiring process which for small and medium sized companies, can be serious overhead. According to a study by Deloitte, it takes on average 52 days to fill an open position and costs about $4000 to interview each candidate. Hire is integrated into Google's G-Suite and allows you to use the platform to communicate with a candidate and that information will sync with your email and calendar. Think of Hire as a scenario-drive front-end to Google's G-Suite that is designed for one specific task that integrates the data across the entire platform. This new feature for G-suite may not be a killer app or something that gets someone to leave Office but what Google is doing is slowing building up its productivity platform to add additional value for its users. And if Google can keep adding these benefits, even if they are small in their use-case, they can be enough to keep someone from leaving G-suite for Office 365 which in the long run, is a big win for the company. The productivity space is dominated by Microsoft's platform and that company is also pitching... --- ### Azure Web Applications -- IaaS Versus PaaS > In this post I will compare the IaaS and PaaS capabilities of Azure for running a website or web-based application in the cloud. - Published: 2017-07-18 - Modified: 2024-11-19 - URL: https://petri.com/azure-web-applications-iaas-versus-paas/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, IaaS, PaaS, virtual machines, Web App, Website - Article Type: Overview Aidan Finn explains the two ways that you can deploy a web-based application in Azure. In this post, I will explain the two ways that you can deploy a web-based application in Azure. One will be familiar to IT pros because it builds on the familiar infrastructure-as-a-service (IaaS) concept of networks, storage, and virtual machines. The other will be less familiar because none of those things will be used in the platform-as-a-service (PaaS) alternative.     This post is the result of a journey that I have started. How far I will get with this is unknown! I have started to learn the developer side of Microsoft Azure because my customers have started to move in that direction. I do not plan to abandon the infrastructure world because it will continue to play a big role. I need to stay with or ahead of my customers. Otherwise, my role as an advisor will be redundant. As IT pros, I think we all need to be advisors and therefore, I think we need to know the options. IaaS-Based Web Service If you are deploying a web service in Azure, then you are going to be deploying and enabling familiar concepts from the available Azure services. A virtual network will be created with a subnet for each security zone. Firewall rules in the form of network security groups will block or allow traffic into or out of each subnet. Load balancers will be used to share services via load balancing or NAT rules. Standard (HDD) and/or Premium (SSD) storage will be used to store virtual... --- ### Two Kinds of Office 365 Analytics – For You and The Company > Microsoft offers Workplace Analytics to help Office 365 Enterprise tenants understand the internal dynamics of their company. It's not MyAnalytics. - Published: 2017-07-18 - Modified: 2024-09-04 - URL: https://petri.com/office-365-analytics/ - Categories: Microsoft 365, Office - Tags: exchange, MyAnalytics, Office 365, OneDrive, SharePoint, skype, Teams, Workplace Analytics, Yammer - Article Type: News Microsoft Workplace Analytics is not a “Fitbit for the enterprise” that you can deploy off-the-shelf to get instantly usable information. Expect to invest considerable time or spend some consulting dollars to make sense of organization dynamics, office politics, and internal friction. All the stuff that makes working in large companies so worthwhile! Analytics for the Business On July 5, Microsoft announced that Workplace Analytics is now available as an add-on for any Office 365 enterprise plan. The post says: “Workplace Analytics provides unprecedented behavioral insights that can be used to improve productivity, workforce effectiveness and employee engagement. ” Sounds good, but let’s be clear. Workplace Analytics is not something like Teams or Groups that an organization can deploy reasonably simply. This is a full-blown organizational analytics package that companies usually need some consulting support to plan and deploy and then make sense of the data. Two Analytics in Office 365 Office 365 boasts two analytics applications. The first, launched initially as “Delve Analytics” and now called MyAnalytics, delivers a personal dashboard to help users understand how they spend their working life (Figure 1). The intention is that people reflect on how much time they spent processing email, in meetings, or outside normal working hours and readjust what they do to become more effective, in whatever way you define that term. Figure 1: The MyAnalytics personal dashboard (image credit: Tony Redmond) For some, being more effective means achieving a better work-life balance. For others, it means realizing just how much time corporate meetings soak from their schedule and then dropping some meetings or reducing the time assigned to others. And for people like me who are email junkies, it might mean a more sensible cadence to the working day with specific periods set aside to process new messages. I... --- ### Microsoft Release First SQL Server 2017 Release Candidate - Published: 2017-07-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-release-first-sql-server-2017-release-candidate/ - Categories: SQL Server - Tags: News, SQL Server 2017 - Article Type: News Microsoft has released the first Release Candidate of SQL Server 2017 which means major development work is complete and that the retail release is around the corner. Microsoft announced today that the major development work behind SQL Server 2017 is now complete as they have ended the technical preview stage and have shifted to release candidates. The company has previously said that they expected this software to be available later this summer and it appears that they are still on-track to meet that public timeline. As part of the development process, the company has released the first release candidate (RC) of the software that you can test out in your environment ahead of general availability to identify any potential conflicts or roadblocks to deployment. During the development of the platform, Microsoft released seven technology previews but now the focus is getting the software ready for the masses and removing as many bugs as possible before pushing the software out the door. As a reminder, this release works for Windows and Linux and listed below are the key enhancements with RC1: SQL Server on Linux Active Directory integration – With RC1, SQL Server on Linux supports Active Directory Authentication, which enables domain-joined clients on either Windows or Linux to authenticate to SQL Server using their domain credentials and the Kerberos protocol. Transport Layer Security (TLS) to encrypt data – SQL Server on Linux can use TLS to encrypt data that is transmitted across a network between a client application and an instance of SQL Server. SQL Server on Linux supports the following TLS protocols: TLS 1. 2, 1. 1, and 1. 0. Machine Learning Services enhancements – In RC1, we... --- ### Azure Adds D_v3 and E_v3 Virtual Machine Series - Published: 2017-07-17 - Modified: 2024-09-04 - URL: https://petri.com/azure-adds-d_v3-e_v3-virtual-machine-series/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machines, D_v3, E_v3, virtual machines - Article Type: Overview Aidan Finn discusses the features of Microsoft's 2 new series of virtual machines, the D_v3 and the E_v3, which are successors to the D_v2-Series. Microsoft launched 2 new series of virtual machines in July, the D_v3 and the E_v3, which are successors to the D_v2-Series. There are some interesting new firsts with these series. In this article, I will discuss the features of these new series and how this impacts the promotional pricing of the D_v2-Series virtual machines. Successor Series This is not the first time that Microsoft has launched a successor series of virtual machines. In the past, the Standard A_v2-Series replaced the Standard A-Series with a more recognizable set of sizes and lower costs. We have seen the D_v2-Series come in with newer hardware and (eventually) lower costs than the original D-Series.     Recently, Microsoft has started to split the categorization of the D_v2-Series machines into two groupings: General purpose: A normal balance of CPU to RAM, including the D1_v2 to D5_v2 machines Memory optimized: Higher than normal RAM, including the D11_v2 to D15_v2 machines This split is a little confusing. Instead of continuing this split of the D-Series, Microsoft has decided to replace the D_v2 machines in the memory optimized category with a new E_v3 series. The general purpose D_v2 virtual machines are replaced by the new D_v3 virtual machines. Host Changes The D_v2-Series machines were based on a 2. 4GHz Intel Xeon E5-2673 v3 (Haswell) processor, which is capable of bursting up to 3. 1GHz with Intel Turbo Boost Technology 2. 0. The D_v3 and the E_v3-Series machines are based on the newer 2. 3GHz Intel XEON ® E5-2673 v4 (Broadwell)... --- ### Enable Storage Sense in Windows 10 Creators Update - Published: 2017-07-17 - Modified: 2024-09-04 - URL: https://petri.com/enable-storage-sense-windows-10-creators-update/ - Categories: Windows Client OS - Tags: Mobile, SSD, storage, Windows 10, Windows 10 Creators Update - Article Type: How To In this Ask the Admin, Russell Smith shows you how to turn on Storage Sense in the Windows 10 Creators Update. Ensuring that there is enough free disk space to install updates and keep Windows running smoothly can be a problem on devices with solid state storage. New in Windows 10 Creators Update, Storage Sense can automatically delete unnecessary files to maintain a healthy level of free disk space. In this Ask the Admin, I will show you how to turn it on.     As solid-state disks (SSDs) become more common in all types of Windows 10 devices, there is often no reason to have massive amounts of storage on your device while working with cloud solutions like Office 365 and Google G Suite. A 256GB SSD should be plenty for most Windows 10 installations with a modest set of installed applications. There are always exceptions. If you edit video or need to keep tons of media available offline, 256GB might be stretching it. Most business users can make do with the minimum of local storage. In theory, 256GB should be enough storage most of the time. It might require either the user or an IT admin to perform periodic maintenance to ensure Windows has adequate free space to work properly and install updates. This is where Storage Sense can help. Windows Defender and Storage What do security and storage have to do with each other? In the Creators Update, Microsoft added a new user interface for Windows Defender that alerts you about device health and performance, including issues with storage capacity. If the device is... --- ### Paul Thurrott's Short Takes: July 14 - Published: 2017-07-14 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-14/ - Categories: Cloud Computing - Tags: News - Article Type: News Because Brad just took a baseball bat to a hornet's nest, this edition of Short Takes looks at Microsoft as a Service, the Windows Server Insider Program, a Surface Hub non-controversy, Microsoft's AI push, and more. Union Station, Washington DC Because Brad just took a baseball bat to a hornet's nest, this edition of Short Takes looks at Microsoft as a Service, the Windows Server Insider Program, a Surface Hub non-controversy, Microsoft's AI push, and more. Microsoft finally unveils Microsoft as a Service (Maas) This past week, Microsoft announced a new bundling of Office 365, Enterprise Mobility + Security, and---for reasons that elude everyone---Windows 10, creating what I think of as "Microsoft as a Service. " Fortunately, Microsoft does better branding than I do, and they call this offering Microsoft 365. But when you consider how the software giant is barreling towards its consolidated cloud services future, it's not hard to imagine that some future version of Microsoft 365, with different tiers, is pretty much all Microsoft will need to offer. Would you like a little Azure with that Office 365, sir? How to make the most out of Windows 10 S Upgrade to Windows 10 Pro for free. End of article. Windows Server heads to the Windows Insider Program Last night, Microsoft announced the first-ever build of the Windows Server Insider Preview, so I'm assuming that Windows Server usage instantly doubled overnight as eager nerds foolishly attempt something that is better left to the professionals. The Windows Server Insider Preview is tied to Windows Server's beloved new rapid release model, where IT admins from around the world are linking their arms together and singing "Kumbaya" as they march towards retirement,... --- ### Getting Started with Power BI and SharePoint Online -- Part 2 > In this article we cover how to publish your Power BI visual online, configure your SharePoint data refresh, and use the Power BI Web Part. - Published: 2017-07-14 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-power-bi-sharepoint-online-part-2/ - Categories: Microsoft 365, PowerBI, SharePoint, Uncategorized - Tags: Office 365, Power BI, Power BI Pro, SharePoint, SharePoint Online - Article Type: How To Shane Young walks you through getting your SharePoint list data visualized through a fancy Power BI Report. In the first part, we looked at Getting Started with Power BI, connecting to your SharePoint data, and making a beautiful visual with that data. If you have not already, read that article on Petri. com. I promise to be here waiting when you get done. Done? Cool. With that out of the way, we are going to dive into publishing that visual to Power BI, configuring the SharePoint data refresh, and displaying your work of art on your SharePoint page using the Power BI Web Part. I promise this will be amazing.     Publish to Power BI Before you can consume this awesome visualization in your SharePoint online site, you need to publish this to Power BI. We will publish and look at a couple of settings for refreshing your data. Who is excited? To start, click on Publish in the Ribbon. You will be prompted for a destination. To make it easy, choose My workspace and click Select. Once we get logged into the Power BI website, we will look at how you could have created other dashboards to publish to. Wait 15 seconds or so. After you get Success! , (their exclamation mark, not mine) click on the link underneath it, Open ‘Your File. pbix’ in Power BI. If you are prompted, sign in with your same account. This will open a browser window with your beautiful visualization looking back at you. Cool. Now that it is online, let's adjust some of the settings. On the left,... --- ### Microsoft Releases The First Insider Server Build - Published: 2017-07-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-releases-first-insider-server-build/ - Categories: Windows Server - Tags: News, Server Insider, Windows Server Microsoft has released today the first Insider build of Windows Server, a pre-release version of the platform that allows you to test new features before they ship in a final product. Last month, Microsoft announced that they would be bringing the Insider pre-release program to the Server platform. Today, the company is releasing their first build and you can find the announcement post, here. The goal of this program, much like that of Windows and Office, is to let customers have access to new features before they are made available in shipping versions of the product. Of course, the tradeoff is that the software may have bugs or be unstable and is only recommended for test and dev environments. The version the company is releasing today is build 16237 and if you want to access the download, you will need to be enrolled in the Insiders for Business program or the Windows Insider program. Listed below are the new features available in this build: Persistent Memory can now be exposed to Hyper-V VMs: In this build, NTFS-formatted direct access volumes that are created on non-volatile DIMMs can now be exposed Hyper-V VMs. This enables Hyper-V VMs to leverage the low-latency performance benefits of Persistent Memory devices. Virtualized Persistent Memory (vPMEM) is enabled by creating a VHD file (. vhdpmem) on a direct access volume on a host, adding a vPMEM Controller to a VM, and adding the created device (. vhdpmem) to a VM. Using vhdpmem files on direct access volumes on a host to back vPMEM enables allocation flexibility and leverages a familiar management model for adding disks to VMs. PowerShell can be used for the creation and management of Virtualized... --- ### Preview of Centralized Reporting for Azure Backup > Microsoft has launched a preview solution for monitoring and reporting on Azure Backup deployments, using the visualization and reporting of Power BI. - Published: 2017-07-13 - Modified: 2024-09-04 - URL: https://petri.com/preview-centralized-reporting-azure-backup/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure Backup Reporting, Backup, monitoring, Power BI, Recovery Services Vault, Reporting - Article Type: Overview Aidan Finn discusses the preview that has been launched to allow you to centrally visualize and report on your usage of Azure Backup. Microsoft has started to address one of the big feature requests for Azure Backup: centralized reporting. A preview has been launched to allow you to centrally visualize and report on your usage of Azure Backup.     Feature Gap Azure Backup has been with us for a few years now but it is still much younger than many other online backup solutions. There is still a feature gap. I have been promoting Azure Backup with my customers for 3 years. In all that time, the question that always presents, “Can I get a report on successful backups? ” Excuse me? Do you mean failed backups? No, they do not mean that. They want to be able to show their internal and external customers that backups are working. I can go on and on about that line of thinking but the question pointed out something that was missing in Azure Backup. We did not have a means for centrally monitoring and reporting on many sources of backup and cloud (recovery site vault) usage. Preview Release Microsoft launched a preview of Azure Backup Reports at the end of June. In this initial release, we can monitor and report on: MARS (referred to as MAB in the user interface) backup jobs Storage usage We do not have support for but it is on the way: Microsoft Azure Backup Server (MABS) or System Center Data Protection Manager (DPM) Azure virtual machine backups The Mechanism The consumption of data in this solution is enabled... --- ### Microsoft Reverses eDiscovery Decision Because of Discovery Mailboxes > Microsoft told us some months ago that they would block the creation of new eDiscovery cases in Exchange and SharePoint. A course reversal has happened. - Published: 2017-07-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reverses-ediscovery-decision/ - Categories: Exchange Online, Microsoft 365, Office - Tags: discovery mailboxes, eDiscovery, Exchange Online, Office 365, SharePoint Online - Article Type: News Microsoft told us some months ago that they would block the creation of new eDiscovery cases in Exchange and SharePoint. A course reversal has happened because of the humble discovery mailbox, which Exchange uses as a target for eDiscovery results. The block has lifted for Exchange but remains for SharePoint. It will eventually happen for Exchange but Office 365-wide functionality is better than workload-specific features. Moving from Workload-Specific eDiscovery In May, I noted Microsoft's announcement that they planned to block the creation of new workload-specific searches in the Exchange Administration Center (EAC) and SharePoint Admin Center. The block was scheduled to descend on July 1, 2017.  However, given that the nature of eDiscovery activities tends not to be fast, Office 365 tenants could continue to run existing in-place eDiscovery searches and holds in Exchange and eDiscovery cases in SharePoint until those cases finished. As a go-forward plan, Microsoft gave tenants a strong message to focus any new eDiscovery activity on the search and eDiscovery case functionality available in the Security and Compliance Center. That remains Microsoft’s intent, but the best-laid plans of mice and large software companies are always subject to unexpected problems. We Overlooked Discovery Mailboxes! When July 1 rolled around and the time came for Microsoft to impose the block, customers pointed out that although the SCC searches are faster, more scalable, and more functional, they miss an essential piece of functionality that many companies have built their eDiscovery workflow around – the ability to export search results to a discovery mailbox. Microsoft introduced discovery mailboxes as the target for eDiscovery searches in Exchange 2010. When investigators are satisfied that their search queries find the right content in user mailboxes, they can export copies of found items into discovery mailboxes. A discovery mailbox is like a large shared mailbox that serves as a target for eDiscovery searches. All tenants who use Exchange... --- ### Microsoft Defines Its Path Forward for On-Premises - Published: 2017-07-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defines-path-forward-premises/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, On-Premises - Article Type: News During the past few weeks, Microsoft has defined the path forward for on-premises users and while they are not abandoning local deployments they do give preference to the cloud. Every time I present or speak at an event, one question that always comes up is "what is the future for on-premises" data centers. It's a valid question as Microsoft is pushing everything cloud these days and while it may look like they are moving beyond supporting local data centers, that's not accurate, but they are going to force the modernization of the environment. Let's be clear, the on-premises data center is not going away anytime soon. While Microsoft, Amazon, and Google would like to think that Cloud is the be-all, end-all solution to IT infrastructure, HPE, Dell, and Lenovo can prove that based on their sales of hardware, this isn't the case. That being said, Azure, AWS and similar will reduce the number of new data centers built because as new companies are born, it typically makes sense to build in the cloud than investing in server hardware. Granted, that doesn't work for every company and there are genuine reasons why the cloud is not for everyone but for most, cloud solutions are viable options going forward. There are two things you need to understand about Microsoft's support for on-premises data centers, the new servicing model for Windows Server and Azure Stack; these two items represent a genuine look at how Microsoft is viewing the evolution of your data center. There are two primary servicing channels for Windows Server going forward, Long Term Servicing Channel (LTSC) and Semi-annual Channel (SAC). As both names suggest, long term has... --- ### Azure Backup Server Adds Support for WS2016 and VMware 6.5 > Microsoft released a new version of Azure Backup Server (MABS), with support for Windows Server 2016, VMware 6.5, and improved on-premises modern storage. - Published: 2017-07-12 - Modified: 2024-09-04 - URL: https://petri.com/azure-backup-server-adds-support-ws2016-vmware-6-5/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure Backup Server, Azure Backup Server v2, ESXi 6.5, MABS, MABS v2, Microsoft, VMware 6.5, Windows Server 2016, WS2016 - Article Type: Overview Aidan Finn looks at Microsoft's recently launched Azure Backup Server, additional support for Windows Server 2016, and VMware 6.5 to its on-premises extension to the cloud backup service. Microsoft recently launched Azure Backup Server (MABS) v2, additional support for Windows Server 2016 (WS2016), and VMware 6. 5 to its on-premises extension to the cloud backup service.     What Is MABS? Microsoft Azure Backup Server or MABS was released by Microsoft to solve a gap in service in Azure Backup. Azure Backup’s MARS agent was only able to protect files and folders (system state support was added recently) and that meant that anything outside the smallest of businesses or branch offices was not a potential customer for Azure Backup. Microsoft solved this problem by releasing MABS. The MABS software was free but usage was subject to normal “instance size + storage consumed” Azure Backup pricing. MABS is based on System Center Data Protection Manager (DPM). The original releases (v1 and v1 Update 1) were based on DPM 2012 R2 with cumulative updates built-in. There were a few differences: No tape support: In the world of cheap and “infinite” cloud storage, sticking with 1951 technology makes no sense. Back then, computers were 8 feet high, 7-1/2 feet wide and 14-1/2 feet long. Less cumulative updates: System Center receives quarterly updates, which some of us prefer to delay by 1 or 2 months. MABS received 1 update over a year and a half but the cloud functionality of MABS (the MARS agent) was regularly updated. Easier setup: MABS is actually very easy to get running. No System Center licensing: System Center is relatively expensive for small-medium organizations or those that... --- ### Replicate Azure Virtual Machines to Another Region for Disaster Recovery > In this step-by-step post I will guide you on how to replicate Azure virtual machines from one region to another for disaster recovery. - Published: 2017-07-12 - Modified: 2024-09-04 - URL: https://petri.com/replicate-azure-virtual-machines-another-region-disaster-recovery/ - Categories: Microsoft Azure - Tags: Azure, Azure Site Recovery, Disaster Recovery, Regions, replication, virtual machines - Article Type: How To Aidan Finn discusses how to enable disaster recovery replication of Azure virtual machines from one region to another region, which will enable your services to survive a massive outage in an Azure data center or region. In this post, I will show you how to enable disaster recovery replication of Azure virtual machines (VMs) from one region to another region. This will enable your services to survive a massive outage in an Azure data center or region.     Note that this service is in preview at the time of writing this article, so the UI is very likely to change by the time of general availability. The Source Machines In my demo lab, I have deployed two ARM VMs in a resource group called petri-rg in the Azure North Europe region. The Virtual Machines Running in North Europe   Note that at this time there is no support for: VMs running Windows Server 2016 Microsoft recently added support for WS2016 virtual machines VMs with managed disks I want to enable replication of these VMs to another region. I have to choose from a region that is in the same geographic cluster as my VMs in North Europe: The Azure to Azure Site Recovery Geographic Clusters   Create Recovery Services Vault I am going to replicate my VMs to West Europe. Here, I will create a recovery services vault in a resource group that is also in West Europe. Creating a New Recovery Services Vault in West Europe   All we have now in the “disaster recovery site" (a resource group in the West Europe... --- ### Microsoft to Close Surface Hub Manufacturing Plant in Oregon - Published: 2017-07-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-close-surface-hub-manufacturing-plant-oregon/ - Categories: Hardware - Tags: Hardware, Surface Hub - Article Type: News Microsoft is closing the operational facility where the company was building its Surface Hub but I don't believe this is the end of the line for this device. Microsoft has informed the state of Oregon that it intends to close location where it has built the Surface Hub. The plant was located in Wilsonville and will impact 124 jobs in that region. In a letter to the state, as noted by OregonLive, Microsoft will close the plant with 61 job cuts coming on September 8 with 63 jobs being cut the following months. The reason Microsoft had a facility in the state is that it was part of Perceptive Pixel that the company acquired in July of 2012 and likely used that team to help build the Surface Hub. As for the future of the Surface Hub, I don't think this has much to do with the long-term outlook for that product. Early indications about the sales pipeline was that Microsoft could not make enough of them and feedback from users has been positive. Further, references to Surface Hub 2 have shown up in some internal documentation from Microsoft which makes it appear that another device is on the horizon. As such, I do not think this is the end of the line for the Surface Hub. When the company announced where they were going to build the Surface Hub, it was a point of pride for the company as they were making the device in the United States; an unusual move by modern standards. But, here we are, with the company closing down the facility as they likely found that they can produce the device elsewhere... --- ### Modernizing Your IT Infrastructure with Windows Server 2016 and the Hybrid Cloud - Published: 2017-07-11 - Modified: 2024-09-04 - URL: https://petri.com/modernizing-your-it-infrastructure-with-windows-server-2016-and-the-hybrid-cloud/ - Categories: Hybrid Cloud, Hyper-V, Microsoft Azure, Windows Server 2016 - Tags: Azure, hybrid cloud, Hyper-V, Windows Server 2016 - Article Type: Overview Take advantage of the Hybrid Cloud capabilities in Windows Server 2016. There’s no doubt that the cloud has become a core component for most businesses these days. IDC predicts that by 2018, half of IT spending will be on the cloud. Even so, most businesses have not switched their core IT operations to the public cloud. Instead, they have opted to use a hybrid cloud model in which the majority of their core IT functions remain on-premises but many ancillary functions are moved to the cloud. Gartner Research estimates that today 72 percent of enterprises are pursuing a hybrid cloud strategy. One of the first places business began adopting the cloud was in the area of development and testing. Using the cloud for development enables businesses to provide a more flexible and responsive environment, freeing up IT administrators from the time required to provision, backup, and later delete those VMs. The cloud enables a self-service model that doesn’t impact on-premises operations. Later, businesses began adopting the hybrid cloud for storage, backup, and, more recently, high availability and disaster recovery (DR).     As hybrid cloud adoption has increased, Microsoft has taken steps to add hybrid cloud features to the Windows Server OS. Microsoft Windows Server 2016 provides several capabilities that can help you modernize and extend your on-premises IT infrastructure into the hybrid cloud. Some of the main Windows Server 2016 capabilities that can take advantage of the hybrid cloud include: Shielded virtual machines (VMs) in Windows Server 2016 – Security is one of the biggest issues with virtualization... --- ### Intractable Problems Involved in Merging Office 365 Tenants > Microsoft makes it easy to use Office 365, but things are not so straightforward if you need to merge, split, or acquire an Office 365 tenant. - Published: 2017-07-11 - Modified: 2024-11-19 - URL: https://petri.com/problems-merging-office-365-tenants/ - Categories: Microsoft 365, Office - Tags: acquisition, Binary Tree, BitTitan, merger, Metalogix, Office 365, Quadrotech, split, Tenant - Article Type: Opinion Microsoft makes it easy for companies to use Office 365 and has been very successful in moving customers to the cloud. But when you get to the cloud and find that your company is involved in a corporate merger, acquisition, or split, things are not so easy because the tools to do the work don't exist. Some glimmer of hope exists as ISVs have started to take interest in the space. Microsoft Makes It Easy to Move to Office 365 Microsoft launched Office 365 in June 2011 and has achieved great market success since then. They make it tremendously easy for companies to move to the cloud, offer hybrid connectivity to ease migration, and continue to deliver new functionality at a staggering rate. It is all good. Although Microsoft’s FastTrack program is available to help companies move to Office 365, no tools exist to combine or divide Office 365 tenants. This is a surprising situation to be in because it does not reflect the reality of how business works. Business evolves through competition and does not remain nicely packaged in forms that stay intact for extended periods. Instead, companies merge and split as industries flex and change over time. Mergers and acquisitions are a vital part of how companies grow, evolve, enter new markets, resist competition, and divest assets belonging to businesses associated with markets that they no longer want to be in. Static Office 365 For all intents and purposes, Office 365 takes a static view of tenants. No mechanisms exist within Office 365 to split off a group of accounts if part the company divests itself of some operating units or absorbs an incoming batch of accounts from an acquisition. Given that Office 365 (for business) now has more than 100 million monthly active users, it is strange to discover that Microsoft’s only advice on the topic is a support article describing how to migrate mailboxes between... --- ### Configuring Windows Server 2016 Hyper-V Compute Resiliency > This post will explain how to configure the settings of Windows Server 2016 Hyper-V/Failover Clustering Compute Resiliency. - Published: 2017-07-10 - Modified: 2024-09-04 - URL: https://petri.com/configuring-windows-server-2016-hyper-v-compute-resiliency/ - Categories: Hyper-V - Tags: Compute Resiliency, Failover Clustering, Hyper-V, Windows Server 2016, WS2016 - Article Type: How To Aidan Finn explains how to customize the functionality of Compute Resiliency, which is a feature that increases tolerance of transient errors in Hyper-V failover clusters. In this post, I will explain how you can customize the functionality of Compute Resiliency, which is a feature that increases tolerance of transient errors in Hyper-V failover clusters.     Reminder of Compute Resiliency Microsoft analyzed support calls and feedback for Hyper-V and found that a big pain point was how a Hyper-V cluster responded to very brief problems. For example, if a data center operator accidentally pulled the wrong network cable or a top-of-rack switch port became unstable, the cluster would probably react by assuming that hosts had gone offline and restarted the virtual machines on other hosts. The response to the problem, booting up virtual machines and restarting services, takes longer than the problem would take to resolve itself. As a result, Microsoft created a number of features to become more flexible and tolerant in response to these short-term issues. One of these features or improvements is Compute Resiliency. Thanks to this improvement, Failover Clustering will be less aggressive with moving virtual machines from a host that is having heartbeat issues. The cluster will wait longer before failing over the virtual machines. In the event of a host having repeat issues (3 in one hour), the host will be quarantined for two hours. This results in virtual machines being live migrated to other healthy nodes. Compute Resiliency has a collection of default configurations that Microsoft tuned to suit most customers but you might wish to modify this behavior. The settings for Compute Resiliency can be... --- ### Microsoft 365: A Simplified Approach To Subscription Headaches - Published: 2017-07-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-365-simplified-approach-subscription-headaches/ - Categories: Uncategorized - Tags: Microsoft, Microsoft 365, News - Article Type: News At Inspire, Microsoft has announced a new tier of services that they are calling Microsoft 365 that will serve as the virtual wrapper of the company's SaaS products. The words 'Software as a Service' will make any Microsoft exec's eyes light up and if you building a new product inside the company, it must align with this business model. The most popular product that falls into this category is Office 365 but the company has many other offerings that include everything from Windows to security services. This week, Microsoft is in Washington, D. C. where they are hosting their Inspire (formerly Worldwide Partner) conference and the company is taking the wraps off the newly minted Microsoft 365. This new offering will come in two flavors, Business, and Enterprise, and will become available in early August. Microsoft 365 Enterprise is the maturing of what was known as Secure Productive Enterprise offering and includes Office 365 Enterprise, Windows 10 Enterprise, and Enterprise Mobility + Security. Microsoft 365 Business will enter the preview stage starting August 2nd and it includes Office 365 Business Premium as well as security and management features for Office apps and Windows 10 devices; the additional services make it possible to manage all aspects of the service in a centralized console for deploying and securing devices. There are two ways to interpret what Microsoft is doing here. On one hand, if you subscribe to several Microsoft services that are being bundled into Microsoft 365, this can likely streamline the process of utilizing these services and reduce the complexity of your licensing agreements and subscriptions. On the other hand, this is a new service SKU for Microsoft... --- ### Put A little Cloud In Your On-Premises With New Azure Stack Hardware - Published: 2017-07-10 - Modified: 2024-09-04 - URL: https://petri.com/put-little-cloud-premises-new-azure-stack-hardware/ - Categories: Cloud Computing, Hybrid Cloud, Microsoft Azure - Tags: Azure Stack, hybrid cloud, Microsoft, News - Article Type: News Microsoft and its partners are finally ready to start selling Azure Stack hardware but sadly, few options available to retrofit existing hardware. For the past year or so, Microsoft has been working on Azure Stack, a software solution that resides on hardware that bridges the gap between on-premises data centers and Microsoft's cloud solution. As of today, the hardware needed to run Azure Stack is now available for purchase from a wide variety of vendors such as Dell and HPE. Azure Stack has had a bit of an odd lifecycle as when it was first initially announced, it was expected to be a software based solution but during its development, it transitioned to a hardware required implementation. The reason for this? Well, it's not exactly clear but what I have heard from various folks around the world is that hardware vendors forced Microsoft's hand to require new infrastructure to be purchased to gain access to the technology. The reason for the change is quite obvious, it throws a bone to hardware vendors to sell more product but for Microsoft, this makes Azure Stack have a longer implementation pathway to getting more users onto Azure. With only a software-defined solution, Microsoft wanted to retrofit data centers to work natively with Azure but as we now know, they are favoring their partners with Azure Stack. Many refer to Azure Stack as Microsoft's Trojan horse as it makes any data center with Azure Stack hardware deployed much easier to move to Azure than AWS or Google. That being said, there are many benefits for on-site users as well as they get some of... --- ### This IT Pro Is Learning Dev Stuff! > In this post I will explain why IT pros, like myself, might want to consider learning the developer side of the cloud, platform-as-a-service (PaaS). - Published: 2017-07-10 - Modified: 2024-09-04 - URL: https://petri.com/pro-learning-dev-stuff/ - Categories: Microsoft Azure - Tags: Azure, IaaS, IT pro, PaaS, sysadmin - Article Type: Opinion Aidan Finn discusses learning about Platform-as-a-Service. The world is changing. The cloud is real. It is here and it is happening. Infrastructure-as-a-Service plays a huge role in the world of Microsoft Azure. I have come to the conclusion that I need to start learning PaaS.     Two Worlds Collide If you want to start a fight at work, put a sysadmin IT pro and a developer into a small room with a slow database server. It should not take more than a few minutes before heads are locked and chairs are swinging! To keep things civil, the IT pros and the devs should be kept away from each other. Ok, that is a bit of an exaggeration but we all know that there is tension. In the world of Microsoft Azure, the lines are blurred. You will find classic IT pro stuff, such as virtual networks and storage side-by-side with the dev stuff, such as app services and functions. There is still a human divide. I have been learning and evangelizing about Azure at my day job for the last 3 and a half years. My customers are systems integrators. They are IT pros that look after server and PC stuff for small and medium enterprises. The logical things in Azure to market to this audience would be the things with the most familiarity and the regularly performed functions: Virtual machines Backup Disaster recovery It just so happens that those were the three verticals that Microsoft also promoted to this market. The Azure... --- ### Shuffle At the Top: Microsoft CVP of Windows Apps and CIO Leave the Company - Published: 2017-07-08 - Modified: 2024-09-04 - URL: https://petri.com/shuffle-top-microsoft-cvp-windows-apps-cio-leave-company/ - Categories: Main - Tags: layoffs, Microsoft - Article Type: News This week, Microsoft has made at least two changes to high-level position at the company with a CVP and the CIO leaving the company. This week has been a busy one for Microsoft as the company has announced layoffs and also delayed a few features for Windows 10. Among the departures are CIO Jim DuBois and also CVP of the teams building applications for Windows, William Kennedy. Officially, both of these individuals are retiring from the company but considering the cuts this week, it is more likely that Microsoft is asking these individuals to step down. DuBois was on sabbatical at the time of this announcement and will be replaced by Kurt Del Bene who will take on the title of Chief Digital Officer and at this time, I do not know if there is a replacement for Kennedy. The departure for DuBois leaving the company was first reported by Puget Sound Business Journal and Kennedy's departure was confirmed to me by sources inside the company who asked not to be named. Microsoft routinely makes cuts as its ranks have swelled up during the past few years and this is the third July in a row where Microsoft has announced layoffs. While the primary cuts from the layoffs announced this week will come from the sales org and outside the US, it is clear that based on these two positions being reworked that the impact of the announcement reaches outside of that channel. If I hear about any other high-profile changes inside the company, I'll pass those along once I can verify the information.   --- ### Paul Thurrott's Short Takes: July 7 - Published: 2017-07-07 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-july-7/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because my Surface hibernated and it won't wake up, this edition of Short Takes looks at this week's curiously vague Microsoft layoffs, a new timeline for a Windows 10 feature, OneDrive and Skype controversies, and much more. Crash-testing the new Surface Pro in The Netherlands. Because my Surface hibernated and it won't wake up, this edition of Short Takes looks at this week's curiously vague Microsoft layoffs, a new timeline for a Windows 10 feature, OneDrive and Skype controversies, and much more. In Microsoft layoffs, a game of numbers As you may have heard, Microsoft reorganized its sales organization this week, laying off 3,000 employees in the process. Or was it 4,000? Or "several thousand"? See, it's hard to say, because everyone is just making up numbers, and they're doing so because Microsoft, literally, will not give us the real number. So here's my number: A source reached out to me last week and said that the job eliminations would hit in two waves, one this week, and one in the fall, and that the total number of people being let go could hit almost 10,000. But that was stated as an upper limit, and I suspect the actual number, once you account for those employees that find jobs elsewhere in the company, will be about half that. "Microsoft to cut 400 to 500 Seattle-area jobs in latest round of layoffs, sources say" So there's another (more local) number, I guess. In Microsoft layoffs, a game of who's getting the ax and why Speaking of the Microsoft layoffs and reorg, the other big controversy here is the reason Microsoft has stated for the job eliminations. That is, why would Microsoft need... --- ### Getting Started with Power BI and SharePoint Online -- Part 1 > Learn how to create your first Power BI visual using SharePoint list data and then display that visual on SharePoint Online. - Published: 2017-07-07 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-power-bi-sharepoint-online-part-1/ - Categories: PowerBI, SharePoint - Tags: Office 365, Power BI, Power BI Pro, SharePoint, SharePoint Online - Article Type: How To Shane Young explains how Power BI interacts with SharePoint Online lists to build cool reports and display those reports on SharePoint.   You have heard the buzz that Power BI is awesome. You have also heard that it is the future of all things Microsoft BI but you are a SharePoint person. Therefore, you do not really care about all of the bells and whistles. You want to see and understand how Power BI interacts with SharePoint Online lists to build cool reports. You want to see how to turn around and display those reports on your SharePoint site. Makes sense. You want to know what is in this thing for you. Good news! This two-part article is all about that. We are going to look at going from nothing to a kick-butt data visualization using your friend and mine, SharePoint.     In part one, we will walk through installing Power BI Desktop, connecting to your SharePoint Data, and building a cool visualization. In part two, we will handle publishing Reports online, configuring SharePoint data refreshes, and adding the report to your SharePoint site using the Power BI Web Part. Very exciting. First, there is one thing we need to get out of the way. To use the SharePoint Online Power BI web part, you and all of your users must have a Power BI Pro license. I barely understand what that means. If you have any questions, I recommend consulting a licensing specialist. There is a trial available where you can get more information. Let's build something like this together. It is super quick! At the end,... --- ### My Experiences Using the Surface Laptop - Published: 2017-07-07 - Modified: 2024-09-04 - URL: https://petri.com/experiences-using-surface-laptop/ - Categories: Windows 10 - Tags: adapters, Mobile, Surface Laptop, Windows 10 S - Article Type: Opinion, Review Jussi Roine shares experiences using the Surface Laptop. I have been using a Surface Pro 4 i5, 16GB model since late last year. I held off on getting a Surface device for actual work. I found the first three generations of devices to be too much of a compromise and they seemed to have too many reliability issues. Eventually, I had to replace my old laptop. I chose the Surface Pro 4, which I have been quite happy with this year.     When Microsoft announced the two new Surface devices in early May, the Surface Laptop and Surface Pro, I was immediately intrigued on the Surface Laptop. It was much cheaper than a Surface Book. It also did not have bold new design choices, such as the dynamic fulcrum hinge. As Surface Laptop comes preloaded with Windows 10 S, I knew I might have some challenges in being my usual productive self. I knew I may have to upgrade to a normal Windows 10 version. It is possible to simply upgrade to Windows 10 Pro or Enterprise simply by changing the product license key. I placed a pre-order for a Surface Laptop i5-model with 8GB of RAM and 256GB SSD. This seems to be the sweet spot in terms of cost, performance, and battery life. Compared to my Surface Pro 4, it is not as powerful. However, I was really looking for better battery life. Many people have complained about the awkwardness of the Surface Pro while traveling and using it on the go. To... --- ### Azure Active Directory is a Core Part of the Office 365 "Experience" > Recent developments from Microsoft show that Azure Active Directory is a core part of the overall Office 365 experience. - Published: 2017-07-07 - Modified: 2024-11-19 - URL: https://petri.com/aad-core-office-365/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, Delve, exchange, SharePoint, Teams - Article Type: Opinion Recent developments show that a fully-populated Azure Active Directory is considered by Microsoft to be a core part of the overall Office 365 "experience." Yet many tenants have partly-populated directories. Is that a problem? Or might it be a future problem? Populate That Office 365 Directory or Else Microsoft’s plan to auto-generate Office 365 Groups to “help” managers collaborate better with their direct reports might have run into choppy waters in March, but it delivered a useful wake-up call to people who might be neglecting their tenant directory. It is obvious that Microsoft believes that a fully-populated Active Directory is the only kind of directory to have. Shame on you if you do not share the same belief. Complete All Fields Fully Having a fully-populated directory is not as important in the on-premises world. Applications have their own requirements and the directory is often populated to meet those needs. SharePoint needs to authenticate users and create some groups, but when it comes to displaying employee details, some like to roll their own employee directory.  Quite why this approach should be taken forward into Office 365 is beyond me. Exchange and Active Directory have had a tight working relationship since Exchange 2000 was the first major server application to exploit Microsoft’s new enterprise directory. This was unsurprising given that Active Directory was derived from the original Exchange Directory Store (used in Exchange 4. 0 through 5. 5). Exchange still has a symbiotic relationship with Active Directory. Even so, many Exchange organizations populate just enough in Active Directory to produce a bare-bones Global Address List. Phone numbers might be there along with some address information, but reporting relationships are often missing or just plain wrong. The lesson that we learn is that people... --- ### Azure Information Protection Versus Windows Information Protection Overview -- Part 1 - Published: 2017-07-06 - Modified: 2024-09-04 - URL: https://petri.com/azure-information-protection-versus-windows-information-protection-overview-part-1/ - Categories: Security - Tags: Azure, Azure Information Protection, Cloud, Office 365, Security, Windows Information Protection - Article Type: Overview Paul Robichaux discusses how to reduce information leakage by using Azure Information Protection and Windows Information Protection. In the security world, the saying that locks keep honest people honest is a hoary old saying. The saying lingers because it is true. One time-tested way to reduce the risk that someone will accidentally or purposefully leak sensitive information is to lock it up. In this article, I will talk about two "locks" that Microsoft provides for helping to reduce information leakage, Azure Information Protection (AIP) and Windows Information Protection (WIP). They are related but different. I will explain when to use each one.     The Disclosure Problem Information leakage is a real and growing problem for organizations of all sizes. A 2017 Ponemon Institute Study that was funded by IBM estimates the average cost of a data breach worldwide is $3. 6 million. The breaches we hear about in the news mostly involve two things, intentional attacks that steal financial data and insiders who leak sensational data about politically sensitive matters. However, many organizations have suffered lower-level breaches when someone forwarded, lost, or leaked a sensitive document or message to someone else who was not supposed to have it.  Sometimes, these breaches are accidental and sometimes they are on purpose. Either way, preventing them requires adding more security controls but those controls carry baggage. This baggage can make it harder for users to work and be productive. It can restrict legitimate sharing and make it more difficult to support BYOD. It also requires extra infrastructure. A useful solution for leakage protection has to: Allow users and organizations to keep work and personal data... --- ### Microsoft's Re-Org Takes Shape, Up to 3,000 Job Cuts - Published: 2017-07-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-re-org-takes-shape-3000-job-cuts/ - Categories: Uncategorized - Tags: Microsoft, News - Article Type: News Microsoft has announced today that they are cutting back on their headcount as they reorganize the company's sales structure as well as a few other areas inside the Redmond walls. Earlier this week, Microsoft announced that they were changing up their sales organization structure with a renewed focus on selling cloud services by organizing the commercial field sales team around two customer segments: Enterprise and Small, Medium and Corporate. As part of these changes and larger updates across the entire company, Microsoft is laying off a portion of its staff. Layoffs like this are common in the corporate world and Microsoft has previously made cuts to its staffing which typically occur in the month of July. The reason for this is that the company's fiscal year end is in June; July is when new org structures and budgets go into effect. In this round of layoffs, up to 3,000 employees will be impacted by the reorg; most of the cuts will come from outside the US and as expected, impact the Sales organization. The natural reaction to this type of announcement is that Microsoft is struggling and that these cuts are a sign of Nadella reducing costs to keep the company in the black. And while that is certainly a pragmatic approach, there is more at play here for the company. Microsoft has well over 100k employees and they are frequently buying new companies which adds additional overhead to the organization. Further, with Kevin Turner leaving the company, the sales organization was due for an overhaul to better align to customer needs and that's part of what we are seeing today. The other layoffs are likely part of... --- ### SharePoint Communication Sites: Taking Your Modern Workplace to the Next Level - Published: 2017-07-06 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-communication-sites-taking-modern-workplace-next-level/ - Categories: SharePoint - Tags: Communication Sites, Microsoft SharePoint, Modern Workplace, Office 365, Template - Article Type: How To, Review Jasper Oosterveld discusses a world moving toward a modern workplace for collaboration tools, personalized dashboards, and communication portals. Not too long ago, I wrote a blog about the death of the Intranet. I still stand by the message of the blog and believe the role of the Intranet is slowly diminishing. We are moving towards a new world with three components: Modern Workplace for collaboration tools Personalized Dashboard Communication Portals     In future blogs, I am going to discuss the first two components. For now, I am focusing on Communication Portals. Although the Intranet is dying, there is always going to be a need for communicating information and content. We used to have SharePoint publishing sites and pages at our disposal. The team sites received an update with the modern experiences but no news about the publishing part of SharePoint. During Ignite 2016, Microsoft finally announced the modern publishing pages. These were eventually rebranded to Communication Sites. We had to wait for it but on the 27th of June, Microsoft finally sent the communication sites into First Release. I was able to get my hands on the latest update from Redmond and I am ready to share my thoughts with you. Are you ready? Let's go! Templates You create the Communication Site from SharePoint Home:   We have three options of Topic, Showcase, and Blank. The first two provide you with a pre-configured site. The two templates give you inspiration to quickly get up and running. You are always able to start from scratch with the blank site. Hopefully, we are able to add our own templates in... --- ### What Are Hyper-V VM Failover Cluster Group Sets? > This post explains how Failover Cluster Group sets can be used to order the failover of Hyper-V virtual machines to model application dependencies. - Published: 2017-07-06 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-vm-failover-cluster-group-sets/ - Categories: Hyper-V - Tags: Cluster Group Sets, failover, Failover Clustering, Hyper-V, Orchestration, Windows Server 2012, Windows Server 2016 - Article Type: Overview Aidan Finn explains how to orchestrate and order the failover of virtual machines in a Windows Server 2016 Hyper-V cluster using Cluster Group Sets. In this post, I will explain how you can orchestrate and order the failover of virtual machines in a Windows Server 2016 (WS2016) Hyper-V cluster using Cluster Group Sets.     The Need For Ordered Failover Let’s assume that you have a line-of-business application, called LobA that is running as a set of virtual machines on a Hyper-V cluster. LobA is made up of several tiers: A web virtual machine that depends on an application virtual machine The application virtual machine that depends on a database virtual machine A database virtual machine Let’s assume that all three virtual machines are running on a Hyper-V host. This host has a genuine fault and the cluster initiates a failover. Without any form of orchestrated failover, the three virtual machines will start at the same time. The application server will come online before the database server and fail. The web server might be online before the application server and end users will start reporting failed attempts to use the service. A Workaround WS2012 gave us an ability to prioritize virtual machines. In a way, this gave us some hack for solving the above problem. However, we only have 3 priorities of low, medium, and high, which was not what the feature was intended for. We really use priorities for: Prioritizing resources for more important virtual machines when there is RAM contention after a failover Optionally using Quick Migration instead of Live Migration for lower class virtual machines to protect bandwidth. The truth... --- ### Mapping the Migration, Easing the Transition to the Cloud - Published: 2017-07-05 - Modified: 2024-09-04 - URL: https://petri.com/mapping-migration-easing-transition-cloud/ - Categories: Uncategorized - Tags: Cloud, Turbonomic - Article Type: Overview Moving from on-premises to the cloud can be a challenge but there is software available that can help you map out what instances you will need for each type of workload. While we often talk about 'the cloud' being an emerging technology, the reality is that for many companies, they have already made the transition to the cloud or at the minimum, a hybrid infrastructure. But the challenge is that once you are invested in cloud solutions, optimizing the services so that you get the most value out of the platform for the dollars spent, can be challenging. During the past year for my own personal use and knowledge, I've poked around with a few third-party services like Veeam's backup tools and have been recently pointed to another new service that helps optimize cloud usage and migration. Turbonomic (formerly VMTurbo) has a new update out that can likely bring clarity into your cloud usage, especially if you are using multiple vendors like AWS and Azure. Frankly, what turned me on to this tool is the migration feature that can help those who are new to the cloud move their on-premises operations to the AWS/Azure without overspending. In version 5. 9 of the software that was recently released, Turbonomic can map your on-premises workloads to AWS instances and Azure VMs while also helping to identify the best placement across zones and regions based on the performance needs of your operation. This type of mapping is typically pushed onto outside consultants who are helping with a transition to the cloud. By doing this purely with software, it can not only save time but also a significant amount of spend as consulting hours... --- ### Unraveling the Mystery of $MyInvocation - Published: 2017-07-05 - Modified: 2024-09-04 - URL: https://petri.com/unraveling-mystery-myinvocation/ - Categories: PowerShell - Tags: Automation, PowerShell, Scripting, Windows - Article Type: How To Missy Januszko explores the uses of $MyInvocation. You have seen $MyInvocation before. It was probably in a piece of code online or on GitHub. Perhaps, you observed it used in a module you downloaded from the PowerShell Gallery or came across it in a PowerShell book you are reading. And like me, you have probably wondered to yourself what its use was. When I would see it, my brain always registered it as noise that was not essential to the functionality of the code. I thought it was used for verbose logging and other informational recordings. However, I have seen it in enough code to make me want to understand what it is and why to use it. Let's investigate more.     Starting Simple with Get-Help My research began with a simple get-help command. This is the place you always start to investigate things in PowerShell. Not really knowing what to search on exactly, I started out here: Once I found the about_Automatic_Variables topic, I was hopeful I would find more and I did. The $MyInvocation automatic variable provides information about the current command, including name, parameters, and information about how the command was invoked. Further, it notes that $MyInvocation only gets populated for scripts, functions, and script blocks. That was enough information to get me started. Retrieving Properties with Get-Member Next, I used the get-member command to retrieve the properties of $MyInvocation. I wanted to see what kind of useful information it contained. $MyInvocation | Get-Member $MyInvocation contains about 15 different properties. I... --- ### Gartner Sees Strong Position and Momentum for Office 365 > Gartner's recent SWOT analysis of Office 365 contains some interesting thoughts and observations. I do not agree with them all. - Published: 2017-07-05 - Modified: 2024-09-04 - URL: https://petri.com/gartner-strong-position-momentum-office-365/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Gartner, Office 365, OneDrive for Business, Planner, Power BI, SharePoint Online, SWOT, Teams, Yammer - Article Type: Opinion Gartner's recent SWOT analysis of Office 365 contains some interesting thoughts and observations. I do not agree with them all because I think some of their thinking is a little dated, but it is always interesting to read what Gartner is whispering into the ears of their customers. Gartner’s View of Office 365 Gartner, the eponymous consulting group famed for inventing devices such as the “magic quadrant” to explain the leading products in different areas of technology, issued a SWOT analysis about Office 365 on June 20. The summary of the report is a little odd, saying “Technology business unit leaders can use this report to determine how to help with migration or poach them before settling in with O365. ” Hmmm... poach what exactly? In any case, the text makes interesting reading. Like any consulting report, there are statements that I disagree with and facts that I would argue (for instance, Microsoft launched Delve in 2015, not 2016 and the NextGen Portals lauded by Microsoft at the 2015 Ignite conference have never appeared). But given that Office 365 is a moving target, it is difficult for any written work to be 100% correct when viewed through the lens of today. With that in mind, let’s look at some of the report highlights. Office 365 SWOT Analysis A SWOT analysis examines the strengths, weaknesses, opportunities, and threats for something. Gartner’s’ SWOT for Office 365 (Figure 1) is a reasonable take on what’s happening in the market. Figure 1: SWOT analysis for Office 365 (image credit: Gartner) Some Debatable Points Gartner says that “independent software vendors (ISVs) and service providers that want to play along can invest in Office 365 with confidence that its position, Microsoft's commitment to innovation and its broad set of... --- ### Microsoft Expands FastTrack to Include Azure - Published: 2017-07-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-fasttrack-include-azure/ - Categories: Uncategorized - Tags: Azure, Fast Track, Microsoft - Article Type: News Starting in August, Microsoft will be expanding its FastTrack service for those who are moving to Azure but there are several requirements you must meet to be eligible. Starting on August 1st, Microsoft is going to expand its FastTrack program to include Azure as a preview in US, Canada, and Australia. If you aren't familiar with the FastTrack service, it is designed to help accelerate customer transitions so that they are able to achieve their ROI objectives faster and this also provides partners the opportunity deliver additional value-added services. With the new FastTrack service, Microsoft's engineers will work with partners to guide them through customer setup, configuration, and development. Initially, Microsoft will be offering the Fast Track service for Azure for the following areas: Backup and Archive Disaster Recovery Development and test Internal Line of Business Applications (Database Migration, App Modernization, App Lift & Shift) Additionally, the service will only be available from Microsoft-field nominated customers that meet the following requirements: Located in the United States, Canada, or Australia (English-only). Have an Azure project of USD $60,000 or more per year or equivalent in local currency. Not supported by a Microsoft Cloud Solution Architect. Aim to deploy a supported solution. The goal of this project is to accelerate customers who have decided to move apps and services to Azure for a significant line of business process. To help make the "fast" part of FastTrack a reality, Microsoft will provide up to a $15,000 incentive to use with partners to help offset the cost incurred while transitioning to the cloud. For Microsoft, Azure's success is critical to the long-term stability of the company. Seeing as they are... --- ### Microsoft to Re-Org Sales Team, Layoffs Expected - Published: 2017-06-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-re-org-sales-team-layoffs-expected/ - Categories: Uncategorized - Tags: layoffs, Microsoft, News - Article Type: News For the upcoming fiscal year, Microsoft is expected to re-org the sales team and as part of that change, layoffs are expected. Today is the final day of the fiscal calendar year for Microsoft which means the company is working to close the ledgers and the sale's team is trying to book any last minute deals before the end of the day. But, as the company has done many times before, the end of the fiscal year also means a change to the org structure. This year, it looks like Microsoft is planning to change up the organizational structure for its sales operations, according to Dina Bass. She notes that this will impact Judson Althoff and JP Courtois's group and that layoffs are expected. Microsoft has historically announced layoffs and org changes in early July and this year appears to be no different. Seeing as Kevin Turner left Microsoft, he lead the sales team from 2005-2016, large changes to the org structure have been expected for some time. This may not be the only organization impacted this year as rumors have been circling for some time that there may be larger changes impacting other areas like Windows too. As Microsoft's ranks continue to swell with acquisitions and older products like Windows not growing at historical rates, it's easier to boost margins by cutting expenditures than selling more SKUs of the OS. As for the number of employees impacted by the upcoming changes, that is not yet known. Seeing as the company should be announcing these changes in the very near future, we likely won't have to wait too much longer... --- ### Paul Thurrott's Short Takes: June 30 - Published: 2017-06-30 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-30/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because this Russian hacker is asking for Bitcoin, this edition of Short Takes looks at Petya, a Microsoft reorg rumor, the DOJ v. Microsoft, and much, much more. Because this Russian hacker is asking for Bitcoin, this edition of Short Takes looks at Petya, a Microsoft reorg rumor, the DOJ v. Microsoft, and much, much more. Microsoft reorg coming? Today is June 30, which is the literal end of Microsoft's fiscal year, and that means next week could be interesting: The software giant typically announces major organizational changes each year in early August. And according to the Puget Sound Business Journal, that's exactly what's happening this year. The publication claims that Microsoft will unveil a major reorg on July 5, and that it will better align the company on what it calls Microsoft's "cloud first" strategy. Which is interesting, because Microsoft has a "mobile first, cloud first strategy. " Are things changing? We're about to find out. "5 Reasons To Buy Microsoft's Surface Laptop" Followed by 100 reasons to choose something more affordable. Is this a clue about the Microsoft reorg? While I've been claiming for years now that Microsoft's future is all-cloud, I do find the timing of this interesting. Why would Microsoft align itself around the cloud now, at this point in time? A report about where Microsoft's revenues come from in Motley Fool may provide an important clue: The parts of the company related to cloud and productivity deliver over three and a half times as many profits as Microsoft's once-core Windows business. Looked at from a revenues perspective, just Microsoft Office is three times the size of Windows. This is a company in... --- ### Team Foundation Version Control Verses Git in Visual Studio Team Services - Published: 2017-06-30 - Modified: 2024-09-04 - URL: https://petri.com/team-foundation-version-control-verses-git-visual-studio-team-services/ - Categories: Cloud Computing - Tags: Azure, cloud computing, GIT, Infrastructure as Code, Team Foundation Version Control, Visual Studio Team Services - Article Type: Overview In this Ask the Admin, Russell Smith looks at centralized versus distributed version control in Visual Studio Team Services and how to choose for your Infrastructure-as-Code project. In this Ask the Admin, I will look at centralized versus distributed version control in Visual Studio Team Services (VSTS). I will also look at how to choose for your Infrastructure-as-Code project. VSTS is a source code management solution for developers that is based on an Azure-hosted version of Microsoft's Team Foundation Server. It includes Git and Team Foundation Version Control (TFVC), integration with Visual Studio 2017, team collaboration tools, and features that enable continuous integration. For more information on VSTS, see What Is Visual Studio Team Services? on the Petri IT Knowledgebase. While VSTS offers Git as the default for version control, VSTS users can also choose TFVC, which is Microsoft's own version control solution. Git Git is an opensource distributed version control solution that allows developers to download code from a server, make changes to the code locally, and perform operations, such as comparing and viewing history. This is done without needing to maintain a connection to a server. Unlike most version control solutions, Git's lightweight path-independent branching allows developers to quickly create new branches, usually one for each new feature they are working on so that they can work on code without affecting the main branch. Once a developer has completed the code in a branch, it can be merged, published, or deleted as needed. If needed, we also have instructions on how to check a remote Git branch on Petri. Team Foundation Version Control Microsoft's TFVC is a centralized version control system where members... --- ### Schedule Meetings the Easy Way by Using Microsoft FindTime - Published: 2017-06-30 - Modified: 2024-09-04 - URL: https://petri.com/schedule-meetings-easy-way-using-microsoft-findtime/ - Categories: Office - Tags: calendar, cloud computing, meetings, Office 365, Outlook, Productivity, Schedule - Article Type: How To In this Ask the Admin, Russell Smith shows you an easier way to schedule meetings using an add-in for Office 365 called FindTime. Scheduling meetings can be a time-consuming business, especially when it involves attendees who are external to your organization. In this Ask the Admin, I will show you an easier way to schedule meetings using an add-in for Office 365 called FindTime.     How often do you waste time trying to schedule meetings with a client or vendor? Sometimes, it can seem like the actual meeting takes less time than the back and forth trying to schedule it. Exchanges may end up something like this: "Can we meet sometime this week? Thursday would be good for me, in the afternoon, perhaps? " "Thursday is out. I have a prior engagement. What about Friday? " "Friday works. What about in the afternoon, around 3? " "I can make it in the afternoon but only after 4. " "Okay, would 4:30 suit? " "Yes, that would be excellent. See you then. " That exchange would be one of the faster examples. Multiply that by several people with conflicting schedules and you have an email tag headache on your hands. Microsoft FindTime makes the process easier by allowing the meeting organizer to propose a series of options that attendees can vote on. You can access FindTime from Outlook within Office 365. It is also available from within the Outlook app. Let's look at how FindTime works from within Office 365. Open Calendar in Office 365 and create a new calendar event. Set the preferred time for the meeting, add attendees, and set the time zone... --- ### How to Prioritize Your SharePoint Adoption Campaigns for Optimal Results - Published: 2017-06-29 - Modified: 2024-11-19 - URL: https://petri.com/how-to-prioritize-your-sharepoint-adoption-campaigns/ - Categories: SharePoint - Tags: SharePoint Adoption - Article Type: Overview Although every SharePoint adoption plan is different, there are 3 activities that are universal and essential to the success of every project plan -- communication, training, and motivation. See what each campaign entails. No company has unlimited resources. Helping employees to fully embrace and actually use SharePoint is an expensive and time-consuming endeavor. That’s why it is wise to prioritize the most effective efforts first -- prioritizing your SharePoint adoption efforts may yield more results at lower costs. Although every SharePoint adoption plan is different, there are 3 activities that are universal, essential to the success of every project plan. They are: Communication (explaining to employees all the benefits that come with using SharePoint) Training (showing employees how to use SharePoint) Motivation (giving employees incentives for using SharePoint) When these activities are well planned and meticulously executed, you can call them “campaigns. ” Over the years, many SharePoint adoption experts and consultants have laid out step-by-step action plans for these campaigns. Let’s briefly descuss what each campaign may look like. A communication campaign usually consists of explaining to your employees the following: How SharePoint solves their problems The features and capabilities of SharePoint Quick tips on how to use the company’s SharePoint workflows An effective training campaign may include In-person coaching sessions Training contests and challenges Support and feedback mechanism Contextual self-help and guidance system A motivation campaign is always tailored to the corporate culture of an organization. It may include Incentives and reward programs SharePoint success stories Improved productivity case studies Business benefits of adopting SharePoint These campaigns do not cost the same amount of money nor do they take the same amount of time. And, depending on a company, they produce different... --- ### Leveraging OneNote: Working with a Distributed Team > Working on a distributed team can be frustrating and difficult. OneNote can ease some of the pain which comes from a team being spread out. - Published: 2017-06-29 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-working-distributed-team/ - Categories: Microsoft 365 - Tags: Leveraging OneNote, Office 365, OneNote, Teams - Article Type: How To Joseph Finney takes a look at how OneNote can fill in the IT gaps. Working with a distributed team is typical for many teams today. Finding the right tools which assist collaboration and are not too cumbersome can be a serious pain point. If your company uses Office 365, then OneNote should be a core tool for every team whether it is distributed or not.     Durable Communication Blank OneNote Template Page Teams need more than chat, email, voice, or video calls to communicate effectively. Tools like Outlook, Teams, and Skype for Business are all essential for getting work done at many businesses but they are only part of the equation. Building a library of lessons learned, customer information, product history, and more, all happen outside normal channels of communication. This information could be stored in Excel or Word documents but the best place for it would be organized and curated in OneNote. OneNote can be a source of information for teams to build on their history, make improvements, and save success or failure stories to learn for the future. OneNote delivers a flexible canvas for text, files, images, inking, audio, and video that the whole team can access and use. OneNote’s search is incredibly powerful and linking between notes easily makes information discovery easy and fast. Emails and chats are organized by time but OneNote is organized by you. There is no single method for organizing notebooks. Make the tool fit your business model instead of the other way around. Notebooks can be stored on SharePoint making... --- ### Microsoft's Cloudyn Acquisition Will Help You Spend Less On Azure - Published: 2017-06-29 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-cloudyn-acquisition-will-help-spend-less-azure/ - Categories: Uncategorized - Tags: Amazon, AWS, Cloudyn, Google, Google Cloud, Microsoft, News - Article Type: News Microsoft has announced today that they are acquiring Cloudyn, a company that specializes in managing and optimizing cloud usage Microsoft has announced today that they are acquiring Cloudyn, a company that specializes in managing and optimizing cloud usage. The acquisition price was not announced and is subject to regulatory approval. The concept is quite simple, you have a lot of cloud services and managing all of the different tiers of VMs and storage layers can be difficult. More specifically, optimizing your compute needs against the cost of the level of service you are paying for is a challenge and it's often easier to simply leave a VM on a tier than constantly move it around to find the right price and performance model. This is what Cloudyn does, they provide visibility into the cost and performance to help keep projects on budget and to make sure you are paying for what you need for the task you are trying to complete. While the service works well with Azure, it also supports other cloud vendors such as AWS and Google. Think of Cloudyn as your dashboard for cloud cost and optimization and considering that Microsoft is investing billions into its cloud services, it's not a surprise that the company is buying this solution. What's not known is if Microsoft will keep this functionality as a separate service or if they will fold it into their Azure portal. I could see them keeping it on the outskirts of their portfolio as it does work with other platforms. It would seem foolish for Microsoft to remove functionality from the software... --- ### Update on Nano Server and Semi-Annual Release > This post is a follow up with more details on the fate of Nano Server, the future of the Semi-Annual Channel, and your support options. - Published: 2017-06-29 - Modified: 2024-11-19 - URL: https://petri.com/update-nano-server-semi-annual-release/ - Categories: Windows Server - Tags: Nano Server, Windows Server 2016, WS2016 - Article Type: Overview Aidan Finn discusses Microsoft's recent announcements about the end of infrastructure roles for Nano Server and the twice-yearly updates to Windows Server. Microsoft recently made some announcements about the end of infrastructure roles for Nano Server and the twice-yearly updates to Windows Server. Microsoft has since clarified some of the points, so I thought it would be worth revisiting these inter-related topics.     The Announcements Microsoft made two announcements: Semi-Annual Releases: Microsoft will be starting a new program that Software Assurance (SA) customers can opt into. With this program, you will get a new release of Windows Server every Autumn/Fall or Spring. Non-SA customers will continue to get the every-3-years or so releases that will contain most Windows Server features. Nano Server: It was announced that all of the infrastructure roles of Nano Server, such as Hyper-V and Storage Spaces Direct, and the ability to use Nano Server in a virtual machine, would be removed in the next release of Windows Server. This will probably be in September. Many of the questions were raised after these inter-related announcements. Nano Server was supposed to be supported only in SA. To be supported, you had to run it in the Current Branch for Business, which was supposed to result in twice-yearly releases. Jeff Woolsey, a Principal Program Manager in Windows Server, is a guy we Hyper-V veterans respect for his frankness. We also enjoyed his back-and-forth via blog posts with VMware back in the 2008/R2 era. He recently responded to a number of questions on the semi-annual release blog post and filled in some of the knowledge gaps. Nano... --- ### Windows AutoPilot, Coming this Fall with the Creators Update - Published: 2017-06-29 - Modified: 2024-09-04 - URL: https://petri.com/windows-autopilot-coming-fall-creators-update/ - Categories: Uncategorized - Tags: News, Windows 10, Windows Autopilot - Article Type: News With the release of the Fall Creators Update later this year, Microsoft will be introducing a new feature designed to streamline the deployment process called Windows AutoPilot. Earlier this week, Microsoft announced several new security features coming to the next iteration of Windows 10 that focus on helping protect against external intrusion threats. Today, the company is announcing a few more features that they hope will entice their corporate customers to upgrade to the latest version of the OS. Coming this fall, Microsoft will be introducing Windows AutoPilot, AutoPilot Reset, and Device Health. All of these features will make the provisioning process easier and also let the end-user see more information about their machine to proactively avoid hardware and software issues before they degrade the performance of the device. Windows AutoPilot is a suite of technologies Microsoft is using that are designed to simplify the setup process for a new device. When combined with the Windows AutoPilot Deployment Program that enables OEMs and distributors/resellers to link devices to an organization's Azure Active Directory and Intune mobile device management (MDM) services, a new device can be provisioned by the user out of the box rather than having IT do all the heavy lifting. What this means is that a device can automatically be enrolled in Intune, transformed to Windows 10 Enterprise, local settings/security applied, Office 365 ProPlus and line-of-business apps installed all without the need for IT intervention. Further, if a machine does run into an issue with software corruption or a similar problem during its lifecycle, AutoPilot Reset allows the machine to be reset to a known good configuration while maintaining the MDM management and... --- ### Exchange Cumulative Updates and Distribution List Upgrades > The quarterly cumulative updates for Exchange Server quietly appeared with little fuss while Office 365 has bulk conversions for distribution lists. - Published: 2017-06-29 - Modified: 2024-09-04 - URL: https://petri.com/exchange-cumulative-updates-dl-upgrades/ - Categories: Exchange 2013, Exchange 2016, Exchange Server, Microsoft 365, Office - Tags: distribution lists, EAC, Exchange 2013, Exchange 2016, Office 365, Office 365 Groups - Article Type: Opinion The quarterly cumulative updates for Exchange Server quietly appeared with little fuss this week. Meanwhile, in cloud land, Office 365 continues the crusade to eradicate distribution lists with new bulk conversions to Office 365 Groups. No Big News in June Exchange Cumulative Updates As is their norm, Microsoft released cumulative updates for Exchange 2013 (CU17) and Exchange 2016 (CU6) on June 27. There is not much to report about these updates as Microsoft flagged the major feature upgrade for Exchange 2016 (Original Folder Item Recovery) two weeks ago. That is, unless you consider the fix described in KB4024650 that makes emojis appear as expected in email on iOS devices to be important. Which of course it is... Customers running hybrid Exchange environments need to follow the requirement to keep their on-premises servers updated to match what runs in the cloud, but aside from that, the arrival of Exchange 2016 CU6 and Exchange 2013 CU17 is rather a non-event. Which is what you want updates to be. The Sacred Database Schema But an interesting nugget lurked deep in Microsoft’s blog post when they said that some customers have reported issues after installing Exchange 2016 CU5 with backup products that support “brick level backup” or single mailbox restore. First, I wondered what these products are and why people still use brick level backup. Second, the reason cited is that Microsoft changed the database schema in CU5 (as they have done in the past) and it seems like developers ignored the warnings not to depend on the schema. Microsoft notes that the Exchange database schema is not publicly defined and that programmers should use public interfaces like MAPI or Exchange Web Services to access mailboxes and... --- ### Launch a UWP App When Windows Starts - Published: 2017-06-28 - Modified: 2024-09-04 - URL: https://petri.com/launch-uwp-app-windows-starts/ - Categories: Windows Client OS - Tags: Slack, UWP, Windows 10, Windows Store - Article Type: How To Russell Smith shows you how to launch a UWP app when Windows starts. In this Ask the Admin, I will show you how to launch a UWP app when Windows starts.     I recently moved over to the Windows Store version of Slack, which is not a true UWP app but a win32 desktop app packaged for distribution in the store. One annoyance is that there is not an option to automatically launch the app when Windows starts. I do not get notifications until I manually start the app. According to Slack's website, "To launch Slack whenever you start Windows, click your team name to open the Team Menu, select Preferences, click the Windows App tab, and check Launch app on login. " However, in the Windows Store version of Slack, this option is missing. Slack Windows App Preferences (Image Credit: Russell Smith) After a bit of digging around, it seems that there is not an official way to automatically launch Windows Store apps at login. With the help of the command line, you can create a shortcut that launches a UWP app from the Startup folder. There are a couple of things you should note about this method. The first is that because it uses the start. exe command to launch the app, you will see a command line prompt appear as the user logs in. It appears momentarily but then disappears. Secondly, Slack will start but it is not automatically minimized to the system tray. Find the App URL To create a shortcut, you will need... --- ### Microsoft Presents Stream -- The Video Enterprise Service - Published: 2017-06-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-presents-stream-video-enterprise-service/ - Categories: Microsoft 365 - Tags: Microsoft Stream, Office 365, Stream, video - Article Type: Opinion, Review Jasper Oosterveld discusses Microsoft's release of Stream to the general public. The beginning of this year, I wrote a blog about the future of video in Office 365. The main takeaway? The Office 365 Video Portal is on the way out and Microsoft Stream is on the way in. After being in preview for almost a year, Microsoft finally released Stream to the general public. The release brings us many new features and delivers a lot of excitement. Let's take a look!     Brand New Homepage Stream delivers a brand new and interactive homepage. The following components have been added: Slideshow with trending videos Instruction videos about Stream My Watchlist Followed channels Trending videos Popular channels While it has many components, it does not hurt the usability. The new homepage delivers a personal experience for the users. New Video Experience The video experience is extended with the following components: Captions Deep Search Faces Transcript Captions Stream enables captions and subtitles for videos. Is the language of your video in English or Spanish? Stream automatically extracts captions from the video. This is not only convenient but this feature also ties in with a new feature called Deep Search. Click here to learn more about automatic captioning. Deep Search The captions of a video are added to a transcript. Deep Search allows you to find videos based on keywords. Fantastic! This is going to make finding videos incredibly easy. Do you think that is it? Nope! After clicking on the result, the video is automatically loaded at the time the... --- ### Install Folder Management Add-In for Visual Studio Team Services - Published: 2017-06-27 - Modified: 2024-09-04 - URL: https://petri.com/install-folder-management-add-visual-studio-team-services/ - Categories: Cloud Computing - Tags: Azure, Azure Resource Management, GIT, Infrastructure as Code, Visual Studio Team Services - Article Type: How To Russell Smith shows you how to add support for folder management in Visual Studio Team Services. In today's Ask the Admin, I will show you how to add support for folder management in Visual Studio Team Services (VSTS).     For those of you that have been following my Infrastructure-as-Code articles, including What Is Visual Studio Team Services? and Deploy an Azure Application Using Visual Studio Team Services on Petri, here is a tip to help you manage files. If you have uploaded files to a project, you might have noticed that it is not possible to upload or create folders. You can clone, check out a repository to your PC, create a folder, make any necessary changes, and then commit it back to VSTS but that is a bit of a pain. Git is the default version control used for new projects in VSTS. Git does not retain empty folders without files, so there is not an option to create new folders by default in VSTS. There is a handy add-on that adds this functionality. Install Folder Management for VSTS The first step is to install the Folder Management add-on from the Visual Studio Marketplace. Go to the folder management add-on in the Visual Studio Marketplace. Click Install to add folder management to VSTS. If you are not already logged into VSTS, you will be prompted to do so. If your Microsoft account is associated with more than one VSTS, you can choose the account from the drop-down menu on the Select Account. Install the Folder Management Add-on for Visual Studio... --- ### Microsoft Focuses on Security with Redstone 3 for the Enterprise - Published: 2017-06-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hopes-entice-enterprise-new-security-features-windows-10-fall-creators-update/ - Categories: Uncategorized - Tags: Advanced Threat Protection, Windows 10 - Article Type: News This fall, Microsoft will be releasing a new update for Windows 10 and with it will comes several new security features that the company hopes will entice users to upgrade from Windows 7 or move from E3 to E5. This fall, Microsoft will be releasing a new build of Windows 10 called the Fall Creators Update and while the company has announced features for consumers, it has been quiet on the enterprise front. That changes today as the company is announcing a couple of new security enhancements for the platform that will arrive this fall when the new update starts shipping. Starting with the Redstone 3 release (Fall Creators Update) Microsoft will finally integrate Windows Defender ATP across the entire threat protection stack which includes protecting, detection, and response pillars. The new centralized management component offers increased visibility and also new Security Analytics that will review Windows security feature utilization and configurations as well as Windows 10 security patch status across Windows 10 endpoints to provide improved visibility into the current status of your network. Windows Defender Exploit Guard, which I wrote about a few weeks back, is on the agenda for the upcoming release as well. This new feature will make Enhanced Mitigation Experience Toolkit (EMET) native to Windows 10. Exploit Guard introduces new capabilities that makes exploiting vulnerabilities more difficult and also introduces a new class of intrusion prevention rules derived from the Microsoft Intelligent Security Graph that will limit the threat of advanced attacks including zero day exploits. The goal of this feature is to make the once difficult process of defining the rule-set for attack mitigation that required significant expertise and time to craft, easier to integrate into your environment. Last year at... --- ### Common External Access Needed for Office 365 Applications > The news that Teams won't support external access when they planned is not a shock. But what is needed is a common external access mechanism for Office 365. - Published: 2017-06-27 - Modified: 2024-11-19 - URL: https://petri.com/common-external-access-office-365/ - Categories: Microsoft 365, Office - Tags: external access, Groups, guest users, Office 365, Planner, Stream, Teams, Yammer - Article Type: Opinion The news that Teams won't support external access when they planned is not a shock. But what is needed is a common external access mechanism that can work for all of the Office 365 applications. Let's not reinvent the wheel! No Surprise That Teams Won’t Make Promised Date for External Access The news that Microsoft Teams will miss its goal and not support external access by mid-2017 did not come as a surprise. After all, it took Microsoft nearly two years to enable external access for Office 365 Groups. Even so, while external guest users is available for Office 365 Groups (but only the Outlook kind, not those that use Yammer), access for those users is limited to the SharePoint resources belonging to the group. Guest users can communicate with groups through email but they cannot access the complete threaded conversations. Groups had a head start when it came to external access because Microsoft could build on top of the way SharePoint shares documents outside an organization. Teams cannot take that approach because sharing is not simply all about SharePoint anymore. See this article describing how external access works for Teams. Office 365 Needs a Common Sharing Mechanism What Microsoft needs now for Office 365 is a simple, secure, and functional mechanism that works for Teams, Planner, Stream, Yammer, Groups, and any other application that might want to allow external access to its resources. It simply does not make sense for every application to roll its own variant of external access as that has the potential to lead to access (and possibly security) hell. Most of the time external access works well for Groups. But it took time for Microsoft to figure out how to... --- ### EU Fines Google a Record $2.7 Billion for Antitrust Violations - Published: 2017-06-27 - Modified: 2024-09-04 - URL: https://petri.com/eu-fines-google-record-2-7-billion-antitrust-violations/ - Categories: Cloud Computing - Tags: Google, Google Search, News - Article Type: News As we've seen before with Microsoft, Intel, and Apple, the EU is not shy about protecting competition. Now Google has learned this lesson as well. As we've seen before with Microsoft, Intel, and Apple, the EU is not shy about protecting competition. Now Google has learned this lesson as well, with the EU fining the search giant a record €2. 4 billion---or $2. 71 billion---for its anticompetitive business practices there. More specifically, this case is about online shopping. Google is being separately charged in at least two other antitrust concerns involving online search advertising and Android. Right. Google's two most-dominant products. "Google has abused its market dominance as a search engine by giving an illegal advantage to another Google product, its comparison shopping service," the EU complaint reads. "The company must now end the conduct within 90 days or face penalty payments of up to 5 percent of the average daily worldwide turnover of Alphabet, Google's parent company. " This case is clear-cut: As I've noted before, Google was found to have artificially doctored its search results to favor its own services over those of niche or vertical market competitors. And because it is the gateway to the Internet for most of the EU's population, with over 90 percent usage share, it has unique insight into what people are searching for, so it can quickly ramp up its own offerings to compete with any new EU-based services. "Google's strategy for its comparison shopping service wasn't just about attracting customers by making its product better than those of its rivals," EU Competition Commissioner Margrethe Vestager said in a prepared statement. "Instead, Google abused its market dominance as... --- ### Nano Server Is Here Today. Gone... Pretty Soon > Microsoft is removing the ability to use Nano Server for Hyper-V, SOFS, and other infrastructure and application roles. This post details what is happening. - Published: 2017-06-26 - Modified: 2024-11-19 - URL: https://petri.com/nano-server-today-gone-pretty-soon/ - Categories: Windows Server - Tags: Hyper-V, Microsoft, Nano Server, S2D, Storage Spaces Direct, Windows Server 2016, WS2016 - Article Type: Opinion Aidan Finn discusses Microsoft's announcement to remove all the infrastructure features, such as scale-out file server and Hyper-V from Nano Server. Microsoft has announced that they are removing all the infrastructure features, such as scale-out file server (SOFS) and Hyper-V from Nano Server. What the heck is going on? What do you do if you deployed Nano Server for infrastructure roles? What is the future now?     Nano Server Everywhere At the original Microsoft Ignite two years ago, Microsoft employees stood on stage and evangelized about the future of Windows Server, namely Nano Server. This new installation option, which is not an edition of Windows Server, was a deeply refactored build of Windows Server. It removed all of the non-essentials for providing some very specific roles. Gone was the UI. I do not mean like with Server Core, which is the command line installation option of Windows Server. This was the entire UI being removed to make Nano Server a headless option that was managed remotely. During the preview process, a very basic text-based UI was added for some limited networking diagnostics. The signal went out. We should never install a UI on Windows Server ever again. Those of us, including me, that installed a UI were bad people. We were the worst. Never had the world seen such badness. PowerShell advocates ridiculed the rest of us for using a UI. It was irrelevant that they are a very small minority. It also did not seem to matter that a UI does not prevent scripting. They had bought, drank, and were serving the Kool-Aid. In the right conditions,... --- ### The Door Opens To New Windows Linux Subsystems - Published: 2017-06-26 - Modified: 2024-09-04 - URL: https://petri.com/door-opens-new-windows-linux-subsystems/ - Categories: Uncategorized - Tags: News, Suse, Windows Subsystem Linux - Article Type: News Microsoft has officially opened the door to new variants for the Windows Linux Subsystem with SUSE now offering two apps in the Windows Store. Last year at Build, Microsoft made headlines when they announced a tech preview of Bash on Ubuntu for Windows. This new feature, by nearly all accounts, has been a huge success for Microsoft and to build upon that win, the company is expanding the Linux flavors that can be run on the Windows 10 subsystem for Linux. For those users who are running the latest version of Windows 10 via the Insider program, you can now install SUSE Linux Enterprise Server 12 and SUSE openSUSE Leap 42. As promised, these new services are available from the Windows Store and can be installed with one click. By offering this type of feature in Windows 10, it accomplishes two goals for Microsoft. First, it expands the functionality of Windows 10 and is bringing back users who switched to Linux environments. Second, it gets additional quality apps into the Windows Store which has been an on-going struggle for Microsoft; this should also help increase the download rate of users who visit the store too. This is certainly not an end-all solution for everyone and there are still reasons why you would want to run a native *nix setup instead of running it inside of Windows but for development purposes, having Bash on Windows is a big leap for productivity. Microsoft’s goal is to allow Windows to run the best Linux and Windows apps side-by-side and they are continuously taking iterative steps to making that vision a reality. --- ### Leveraging VM Replication for Fast Recovery - Published: 2017-06-23 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-vm-replication-for-fast-recovery/ - Categories: Cloud Computing, Hyper-V, Virtualization, VMware - Tags: Backup, Disaster Recovery, Hyper-V, virtual machine, Virtualization, vmware, vSphere - Article Type: Overview Replication is one of the fastest and most effective high availability technologies for protecting and quickly restoring VMs in the event of a site or system failure. Find out how virtual machine replicas enable you to minimize downtime. Downtime is a major concern for all businesses. Downtime both hurts the business and it can be costly. While costs vary according to the organization and the application, downtime can be expensive. For instance, a 30-minute outage for Amazon in 2013 reportedly cost the company an estimated $3 million in lost revenue.     In addition to the loss of revenue, downtime has other costs as well. There is a loss of operational resources while you struggle to bring your applications back online. Plus, there are softer costs. Downtime can result in lost customer loyalties as well as a damaged company reputation. The bottom line is that downtime means lost business and reducing downtime is a vital concern for all organizations. Protecting against downtime is different today that it was in the past. Today’s highly virtualized servers provide new challenges as well as new tools for protecting and recovering data. Legacy backup tools were built to address the needs of physical servers. They often have lengthy long backup times, high I/O requirements, and limited recovery capabilities. Today’s virtual machines (VMs) have more options for backup and recovery. You can still use legacy guest backed tools for VM backup but it’s far faster and more efficient to use host based backup. Even host-based VM backups have limitations. With plain host-based backup your RPO (Restore Point Objective) is only as current as your last backup, which isn’t adequate to meet the more demanding needs of many of today’s businesses. That’s... --- ### Stream Reaches GA but Office 365 Video Users Must Wait for Transition > Microsoft has launched Stream, its new video streaming and management service for Office 365 and consumers. Office 365 Video will be converted to Stream. - Published: 2017-06-22 - Modified: 2024-09-04 - URL: https://petri.com/stream-ga-office365-transition/ - Categories: Microsoft 365, Office - Tags: migration, Office 365, Office 365 Video, Stream - Article Type: News Microsoft has launched Stream, their new video streaming, sharing, and management service for consumers and business. You can use Stream now, but not yet if you have used Office 365 Video in the past. Microsoft has some work to do to make that transition flawless. Stream is now King of Microsoft Video Services On June 20, 2017, Microsoft announced that Stream, their new video sharing and management service for consumers and businesses, is now generally available (GA) worldwide. Microsoft launched Stream into preview in July 2016. At that time, Microsoft's position was that “Stream builds upon the learnings and success of Office 365 Video, and over time the two experiences will converge, making Stream the de facto video experience in Office 365. ” Although Stream is now GA, Office 365 users must wait for the promised convergence, or migration. Microsoft now says “Once we’ve incorporated the best of Office 365 Video into Microsoft Stream and have transitioned all existing Office 365 Video customers and their videos into Stream, we will retire the existing Office 365 Video portal and iOS app. ” Why Stream? Office 365 Video was introduced to the service in late 2014. Video uses SharePoint site collections to hold the original video files uploaded to the portal and metadata for the videos. Another link to Office 365 is the way that Yammer is used to host discussions about videos. Behind the scenes, Azure Media Services processes videos and makes them available for delivery to different devices via a content delivery network.  Although Stream shares many of the technologies used by Office 365 Video, it has no dependency on SharePoint or Yammer (you can still share a video to a Yammer network). Office 365 Video works well but is limited to people who have Office... --- ### Microsoft Will Remove SMB1 Networking Protocol from Upcoming Windows 10 Release - Published: 2017-06-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-remove-smb1-networking-protocol-upcoming-windows-10-release/ - Categories: Uncategorized - Tags: News, Secuirty, SMB1, Windows 10 - Article Type: News In the next release of Windows 10, Microsoft will be removing SMB1 by default from the OS for clean installs. This week, Microsoft released a new build of Windows 10 to Insiders that is removing a legacy networking protocol from the default configuration. SMB1 will no longer be installed with Windows 10, by default, which may have implications for your environment if you are still using the older technology. SMB1 (Server Message Block) is nearly thirty years old and is not designed for the modern web or operating systems. Despite the fact that this old protocol has had many successors released that are far more secure and offer additional functionality, this protocol is still in use inside some companies around the globe. By default, Microsoft will no longer be installing SMB1 networking protocol with a clean install of Windows 10. It's important to note that they are not removing support for the protocol in Windows 10 but this is another step to removing the use of the old technology in Windows. If you are upgrading or need to install the protocol after a clean install, you will still be able to do so but it is not advised as this opens up a new attack vector on your environment. Microsoft has already made several important changes regarding SMB1 and Windows 10 that are listed below: All Home and Professional editions now have the SMB1 server component uninstalled by default. The SMB1 client remains installed. This means you can connect to devices from Windows 10 using SMB1, but nothing can connect to Windows 10 using SMB1. We still recommend you... --- ### Validating PowerShell Input Using Parameter Validation Attributes - Published: 2017-06-21 - Modified: 2024-09-04 - URL: https://petri.com/validating-powershell-input-using-parameter-validation-attributes/ - Categories: PowerShell - Tags: Automation, PowerShell, Scripting, Windows - Article Type: How To Missy Januszko uses parameter validation attributes to define the acceptable input without writing a ton of additional code. PowerShell provides ways to validate acceptable parameter input for a function or a script. If you have taken an introductory computer science or programming course, you have learned first-hand about the importance of validating the values of parameters passed into your script, function, or program. You were taught that your program should nicely tell the user what was wrong and how to fix the problem. You may have ended up writing thousands of lines of code to cover every possible scenario where the user could mess up the input. Perhaps, you wrote one line of code that tells the user the input does not match the desired input. Huh? Sometimes it would almost be better to throw an error! PowerShell parameter validation attributes define what is acceptable for parameter input without needing to write massive amounts of code to handle it.     Timing of Parameter Validation The benefits to using parameter validation attributes is two-fold. First, you do not have to write the error messages yourself. You define the acceptable or non-acceptable attributes directly on the parameter and it throws the error. It is understandable and readable to the end user. Second, there is no code for the validation. You never enter the actual code if the parameter validation does not pass and the code does not get bloated from all the input checking. Checking For Empty Parameters Some PowerShell parameter validation attributes allow you to specifically permit a null or empty value on an input parameter. For example,... --- ### Parent-Child Components with ReactJS and SharePoint Framework - Published: 2017-06-21 - Modified: 2024-11-19 - URL: https://petri.com/parent-child-components-reactjs-sharepoint-framework/ - Categories: SharePoint, SharePoint 2016 - Tags: Contacts, CRUDsheet, Flux, React JS, SharePoint 2016 - Article Type: How To Scot Hillier continues this series on CRUDSheet web parts created in the SharePoint Framework, including the components that make up the project. In a previous article, I introduced the CRUDSheet client web part, which is used to edit a contacts list in a spreadsheet user interface. I also explained the service for performing CRUD operations on the SharePoint list. In this article, I am going to cover the components that make up the project. The CRUDSheet project consists of several ReactJS components designed to represent elements in a spreadsheet. These components have a parent-child relationship representing the entire grid, a grid row, and a grid cell. Figure 1 shows the component hierarchy:                                                                       Figure 1 -- Component Hierarchy Understanding the CRUDSheet Component The CRUDSheet component is the component that represents the spreadsheet itself. The CRUDSheet component receives a set of contacts through its properties when it is initialized. The CRUDSheet renders a CRUDRow component instance for each contact in the sheet.     When creating web parts with parent-child React components, you must always think about how the parent communicates with the child and how the child communicates with the parent. Parent-to-child communication is fairly straightforward and involves sending data to the child via its properties. The CRUDSheet communicates with the CRUDRow by sending an individual contact as shown in the following code: {this. state. contacts. map(contact => { return ; })} Children communicate... --- ### Microsoft's Enterprise Video Sharing Service Goes Mainstream - Published: 2017-06-20 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-enterprise-video-sharing-service-goes-mainstream/ - Categories: Office - Tags: Microsoft Stream, News, video - Article Type: News Microsoft has announced that its corporate video sharing platform called Stream is now generally available. Way back in July of 2016, Microsoft announced a new service designed to make the sharing process of corporate video, easier. The platform, called Stream, is finally reaching general availability today, nearly a year after it was initially announced. The corporate videos that we all love have existed for decades and are nothing new but what has historically been a challenge is sharing them internally in a way that is secure and offers a high level of collaboration. The Stream service offers a single destination for all of your video to make discoverability easier and to offer a unified solution for hosting the content as well. The basic premise behind the tool is that in a controlled environment, employees can easily upload, share and discover internal videos through one site. The goal of the service is to take the ‘work’ out of sharing video internally and make it accessible to all employees while also maintaining the high levels of security that the enterprise demands. This new feature will be included in Office Enterprise (K1, K2, E1, E3, E5), Education (and plus), and is rolling out today to customers in every market around the globe. If you don't see the feature in your Office app launcher, it should appear in the near future. As part of the announcement today, Microsoft will begin transitioning Office 365 Video to Stream which will be a complicated process. Microsoft outlines the process here and it is worth reading as the transition has potential implications on how you... --- ### Single Data Disks -- Up To 4TB With Azure Virtual Machines > In this post I will discuss the benefits of the limited preview release of 4 TB (TiB) disks for Azure virtual machines, and how to create & use them. - Published: 2017-06-20 - Modified: 2024-09-04 - URL: https://petri.com/single-data-disks-4tb-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: 4 TB, 4 TiB, Azure, storage, vhd, virtual hard disk, virtual machines - Article Type: Overview Aidan Finn discusses Microsoft's recent preview of disks that are up to 4TB in size in Azure and explains the benefits of using. Microsoft recently launched a preview of disks up to 4TB in size in Azure. I will explain the benefits of this offering and show you how to deploy these disks.     Max Disk Size of 1023GB One of the common gripes for people working with Microsoft Azure infrastructure services is that virtual machine hard disks are limited to a maximum size of 1023GB. This is just under 1TB or technically 1TiB or 1024GiB thanks to the marketing corruption of computer science. There were two sources of complaints. Some customers wanted data volumes in their Azure virtual machines that could be larger than 1TB. Maximum disk size never stopped on-premises servers from having bigger volumes. We just aggregated the capacity and performance of multiple disks to create larger volumes. We can do the same with data disks in Azure virtual machines using Storage Spaces. This applies to the use of Windows Server machines. The result is a larger volume and multiples of the potential performance of a single data disk. This is what we call a win-win. There are some cases where a customer needs very large volumes but performance is not an issue. Let’s imagine a customer that needs a relatively slow machine with 16TB of storage. With 1023GB disks, I need a machine that supports at least 16 data disks, such as an A8_v2. This costs around $305 per month. If I could deploy 4TB data disks, then I would only need an A2_v2. This is... --- ### Migrating Modern Public Folders to Exchange Online (or Elsewhere) > Microsoft now supports the migration of modern public folders to Exchange Online. More interestingly, you can migrate public folders to other repositories. - Published: 2017-06-20 - Modified: 2024-11-19 - URL: https://petri.com/migrating-modern-public-folders-exchange-online/ - Categories: Exchange 2016, Exchange Online, Microsoft 365, Office - Tags: Binary Tree, BitTitan, Code Two, Exchange 2013, Exchange 2016, Exchange Online, migration, Office 365, public folders, Quadrotech Microsoft now supports the migration of modern public folders to Exchange Online. ISV solutions allow you to migrate public folders to other places, like Office 365 Groups and shared mailboxes, which seems like a lot more interesting. Modern Public Folders Microsoft introduced “modern” public folders in Exchange 2013. The only modern aspect of the implementation is storing public folders in mailboxes, where they can take advantage of Exchange’s Native Data Protection functionality instead of depending on the creaky replication mechanism used since the introduction of public folders in Exchange 4. 0 in 1996. Initially, Microsoft supported the migration of old-style public folders from on-premises servers to Exchange Online. For whatever reason, customers who went through the torturous process of migrating old-style public folders to modern public folders in Exchange 2013 hit a brick wall. They could not move those modern public folders to Exchange Online, even though the folders were the same type on both side of the cloud divide. Onto the Cloud Microsoft eventually solved the problem and introduced the ability to move modern public folders from Exchange 2013 and 2016 servers to Exchange Online in March 2017. All you need is to make sure that you run the latest cumulative updates on your on-premises servers and follow Microsoft’s directions to flow data to the cloud. The process is manual and tiresome and involves manipulation of CSV files, but it does work. It is reasonable to ask why it took Microsoft so long to deliver this functionality. I think it comes down to priorities and available development resources. When Microsoft delivered the public folder migration tools for Exchange 2013, the goal was to move customers off old-style public folders. Later, when Exchange Online introduced support... --- ### G Suite Appointment Slots - Published: 2017-06-19 - Modified: 2024-09-04 - URL: https://petri.com/g-suite-appointment-slots/ - Categories: Messaging - Tags: calendar, G Suite, Google, Productivity - Article Type: How To Office 365 users and admins might not be familiar with appointment slots but as with most things G Suite, it is a well-implemented feature that can be mastered in minutes. In this Ask the Admin, I will explain G Suite appointment slots, including how to use them.     Office 365 users and admins might not be familiar with appointment slots but as with most things G Suite, it is a well-implemented feature that can be mastered in minutes. Appointment slots are popular among users in the education sector. Similar in concept to calendar resources, such as meeting rooms, appointment slots allow users to block out periods of time on their calendars that other users can then book. For example, a professor might make time slots available for students to view and book. Create an Appointment Slot Let's have a look at how to create appointment slots in G Suite calendar. To follow the instructions below, you will need a G Suite subscription. Log into G Suite calendar. Click anywhere on the calendar to create an appointment slot. In the event box that pops up, click Appointment slots in the top right corner. Create an Appointment Slot in G Suite (Image Credit: Russell Smith) If it is the first time creating an appointment slot, you will be presented with some text explaining what appointment slots are. Click Get started with appointment slots to create one. On the details page, enter a title for the slot. The Time block fields will already be completed according to where you clicked on the calendar. You can modify the time and date if necessary. By default, G Suite... --- ### Set Up Azure Active Directory Connect Pass-Through Authentication - Published: 2017-06-19 - Modified: 2024-09-04 - URL: https://petri.com/set-azure-active-directory-connect-pass-authentication/ - Categories: Active Directory (AD) - Tags: Active Directory, Azure Active Directory, Azure AD Connect, cloud computing, Identity Management, Security - Article Type: How To In this Ask the Admin, Russell Smith shows you how to set up Azure Active Directory Connect pass-through authentication. Microsoft has recently made it easier to securely connect Windows Server Active Directory (AD) to Azure AD, without needing to set up and maintain Active Directory Federation Services (ADFS). In this Ask the Admin, I will show you how to set up Azure AD Connect pass-through authentication (PTA).     A couple of weeks back on Petri, I wrote about how Microsoft added PTA to Azure AD Connect. This is the tool that replaced DirSync for connecting on-premises Windows Server AD to cloud-based Azure AD. ADFS provides federated identities with true single sign-on (SSO). Password hashes are never synchronized to the cloud but ADFS is complicated to set up. PTA provides the main benefits of ADFS, such as storing password hashes on-premises and high availability, without the complexity. Password synchronization is also an option in Azure AD Connect but as the name suggests, password hashes are stored in Azure AD. If you missed it, you can read the details in Azure Active Directory Connect Makes Cloud Single Sign-On Easy on Petri. It is worth remembering that at this stage PTA is a preview. This means that it is not supported by Microsoft and should not be configured in production environments. If you want to test it in a lab, you can download the latest version of Azure AD Connect and run the wizard. The setup process for connecting Windows Server AD to Azure AD using PTA does not differ much from password synchronization. There are some key points... --- ### Deploy an Azure Application Using Visual Studio Team Services - Published: 2017-06-16 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-application-using-visual-studio-team-services/ - Categories: Cloud Computing, Visual Studio - Tags: Azure, Azure Resource Manager, cloud computer, DevOps, Visual Studio Team Services - Article Type: How To In today's Ask the Admin, Russell Smith walks you through deploying an app in Azure using an ARM template and Visual Studio Team Services. In today's Ask the Admin, I will walk you through deploying an app in Azure using an Azure Resource Manager (ARM) template and Visual Studio Team Services (VSTS).     If you have been following my series of articles on VSTS, you will know that it can be useful for sysadmins who are working with DevOps teams that deploy apps to Microsoft Azure. For more information on VSTS, see What Is Visual Studio Team Services?  on the Petri IT Knowledgebase. The instructions that follow show you how to upload an ARM template to VSTS. It can be your own or one downloaded from the Azure quickstart templates gallery hosted on GitHub. You will deploy the template to Azure without leaving VSTS. Upload an ARM Template to VSTS The first step is to get an ARM template into VSTS. You might have created a template already from scratch or you can upload an existing template. This is what I will show you how to do below: Log into your VSTS site using the URL provided at sign up. It should look something like this: myproject. visualstudio. com. On the VSTS homepage under Projects, click the project where you want to upload the template. In the list of options across the top of VSTS, click Code and select Files from the menu. On the left of the VSTS, you will see the name of the current branch under the project name. If you only have one branch, you will see Master. If you have... --- ### Paul Thurrott's Short Takes: June 16 - Published: 2017-06-16 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-16/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Overview Because time flies when you're being dumb, this edition of Short Takes looks at a new rapid release schedule for Windows Server, Microsoft updates Windows XP again, Chromebooks, AI and Ms. Pac-Man, and more. Because time flies when you're being dumb, this edition of Short Takes looks at a new rapid release schedule for Windows Server, Microsoft updates Windows XP again, Chromebooks, AI and Ms. Pac-Man, and more. NOTE: Much of the Petri and Thurrott. com staff will be in Haarlem, The Netherlands this coming week for our Office 365 Engage event. If you're in the area, we're having a Haarlem House Party on June 21 at the Philharmonie Haarlem, and everyone is invited. At 5:45, Mary Jo Foley, Brad Sams, Tony Redmond and I will take part in that day's closing keynote, Office 365: The Good, the Bad, and the Ugly. Then, we're having a Windows Weekly meetup at 6:45 pm. And finally, we will be recording Windows Weekly live at 8:00 pm. Please come if you can! --Paul Microsoft's move to rapid release for Windows Server may be too rapid As Brad wrote yesterday, Microsoft is controversially moving its Windows Server products to a twice-yearly feature update schedule that mimics the rapid release model used by Windows 10. This move is sure to upset beleaguered IT shops worldwide, and Microsoft's content that keeping its on-premises products in-line, functionally, with its cloud offerings will outweigh any disruptions is, to some, far-fetched. This change may seem aggressive, but I think it was inevitable. The real pattern here, frankly, is to essentially punish those who stick with what Microsoft sees as out-of-date, on-premises technologies and help prod them to move to the cloud or,... --- ### What Is Windows Server 2016 Hyper-V Compute Resiliency? > Compute Resiliency is a feature of WS2016 Hyper-V that reduces the impact of transient issues on highly available virtual machines. Read on to learn more. - Published: 2017-06-16 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-hyper-v-compute-resiliency/ - Categories: Hyper-V - Tags: Compute Resiliency, Failover Clustering, Hyper-V, Windows Server 2016, WS2016 - Article Type: Overview Aidan Finn explains Compute Resiliency. In this post, I will explain Compute Resiliency. This feature of Windows Server 2016, where Failover Clustering is more tolerant of transient failures, can cause downtime to Hyper-V virtual machines.     Unnecessary Failovers Many people, especially those new to high availability or building complex environments, find that Failover Clustering can be difficult. If you stick to the well-walked path, the designs are not that hard. The things that cause the most trouble are the things that should be dependable, such as drivers and firmware in network cards. Unfortunately, these unpredictable hardware faults and external issues, such as switch reboots or operators pulling the wrong cables, can cause transient issues. Keep in mind, these can also be predictable hardware faults and external issues depending on the brand of the network interface. Regardless, this can be very difficult to troubleshoot and can lead to downtime. Every node or host in a Hyper-V cluster sends a heartbeat to the cluster. This heartbeat lets the other nodes know that the sending host is still alive. If a host fails to send a heartbeat for a long enough period, then that host is assumed to be offline. The remaining nodes in the cluster seize the clustered roles, or virtual machines in the case of Hyper-V, from the assumed-dead node. If a transient networking issue interferes with the heartbeat of a host, then the cluster assumes that there is a problem. It seizes the virtual machines from that host. The virtual... --- ### Microsoft Moves Windows Server To Rapid Release, Releasing Two Feature Updates Per Year - Published: 2017-06-15 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-moves-windows-server-rapid-release-releasing-two-feature-updates-per-year/ - Categories: Windows Server, Windows Server 2016 - Tags: News, Windows Server - Article Type: News Microsoft is making big changes to the way it services Windows Server including a new servicing branch and shipping two feature updates per year. Several years ago, Microsoft started pushing the idea of 'rapid release' for many of its products including Office, Windows, and many other platforms and now they are bringing this methodology to Windows Server. Starting this fall, Server will now join Office and Windows by releasing two feature updates per year. The release cadence will align to Windows and Office which means you can expect the updates to arrive in the spring and fall; this rapid release cycle also includes Server Core. Additionally, System Center will also be moving to the two feature updates per year as well. The obvious advantage here is that Microsoft will be able to ship new features faster and the company highlights that those using containers and in software-defined hybrid environments will see a significant benefit by adopting rapid release. The downside is that if you are adverse to updating your server software frequently, this news may not sit well with you. Much like Windows, Microsoft has defined two servicing branches that they hope will appease customers for both long term stability and those who want new features, faster. There are two primary servicing channels, Long Term Servicing Channel (LTSC) and Semi-annual Channel (SAC). As both names suggest, long term has a new release every 2-3 years with 5 years mainstream, 5 years extended support and also an option for 6 years of Premium Assurance assistance. The Semi-annual channel ships updates twice a year that will deliver new features to the platform; the slide... --- ### Microsoft Defines New Path For Nano Server, Server Core - Published: 2017-06-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-defines-new-path-nano-server-server-core/ - Categories: Windows Server - Tags: Microsoft, Nano Server, News, Server Core - Article Type: News Microsoft has defined a new direction for Nano Server while also expanding the role for Server Core; the company is removing features from Nano Server. Today, Microsoft is making a substantial announcement regarding the servicing of Windows Server. The company is moving to the Windows model where they will provide two feature updates per year as well as a long-term servicing channel; you can read more about there here. In addition to these changes, they are also re-defining Nano Server and to some extent, Server Core, to better align the swim lanes where each product resides. If you are using Nano Server, there are big changes that you need to be aware of as Microsoft is pivoting this software to focus solely on making it a container image. As part of this effort to streamline the product, the company will be removing functionality for infrastructure related roles. With this new focus, the company is able to reduce the size of the image by more than 50 percent which decreases startup times and allows you to increase container density. Microsoft came to the conclusion of pivoting Nano Server after they realized the majority of the users of this technology were using the platform for containers and not infrastructure based services. Microsoft is now recommending that for infrastructure related roles that you use Server Core. For those not familiar, Sever Core is the modernized version of Windows Server and is the correct choice for the data center instead of Windows Server 2016. That platform is the only choice for when you need a server operating system that has a desktop experience which is typically used... --- ### Microsoft is Bringing Native Linux Container Support and Bash to Windows Server - Published: 2017-06-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bringing-native-linux-container-support-bash-windows-server/ - Categories: Windows Server - Tags: linux, News, Windows Server - Article Type: News Microsoft is enabling new support for Linux technology on Windows Server including Bash support and native Linux containers. Microsoft has become quite the bedfellow of open source software with the company embracing several technologies on its Windows platforms like the Windows subsystem for Linux and also supporting many open source Linux versions in Azure. That natural next step is to integrate more of these platforms into Windows Server and that's exactly what the company has done. Microsoft is enabling Linux containers and workloads natively on Windows Server and they are also extending the Hyper-V isolation capability, introduced with the 2016 release, to Linux containers as well. This means that you will no longer need to deploy two different container infrastructures to support both Windows and Linux applications. And to support these new features, Microsoft is enabling the Windows Subsystem for Linux on Server as well. This feature is commonly known as BASH on Windows and allows you to utilize the same scripts and packages on Linux on the Windows host. For those that manage applications on both Windows and Linux containers, this will streamline the management process and generally make your life a bit easier. This move is a natural extension of the work the company has been doing to support open source platforms. The goal is to make Microsoft's software (and hardware in Azure) the most flexible solutions on the market and by supporting Linux in this way, they are positioning their products to be the one-stop shop for running your data center. I know many Linux diehards will never use Windows as there are still some... --- ### Block Untrusted Apps Using AppLocker - Published: 2017-06-15 - Modified: 2024-09-04 - URL: https://petri.com/block-untrusted-apps-using-applocker/ - Categories: Windows Client OS - Tags: Application Control, applocker, Security, Windows 10 - Article Type: How To In today's Ask the Admin, Russell Smith shares his strategy for using AppLocker to block untrusted apps. In today's Ask the Admin, I will share my strategy for using AppLocker to block untrusted apps.     Application Control, along with removing administrative privileges from users, is an essential part of your defense-in-depth strategy. Users with local administrative privileges can always find ways to bypass AppLocker and other Group Policy settings. If you are serious about controlling what users can install, the first and most important step is to remove users from the local Administrators group. Removing users from the Administrators group is not enough to block portable applications. The Google Chrome installer offers users who do not have administrative privileges the option to install the browser for the logged-in user only. Fortunately, it is enough to enable AppLocker with the default rules to block the Chrome installer. The default AppLocker rules only permit executables to run from trusted locations, such as the Windows directory. Standard users, those that are not members of the local Administrators group, do not have write access to trusted locations. Google offers Chrome as a Windows Installer (. msi) download for enterprise distribution. The default AppLocker rules allow . msi files to run from publishers trusted by Windows. Google signs the MSI, so it runs. However, unlike the consumer version of the Chrome installer, it will not install Chrome without administrator privileges. AppLocker Goals For many organizations, the default AppLocker rules combined with standard user accounts can provide a fair amount of additional protection against malware. AppLocker can be configured to... --- ### Bottlenecks of Modern Data Storage Technologies - Published: 2017-06-15 - Modified: 2024-09-04 - URL: https://petri.com/bottlenecks-of-modern-data-storage-technologies/ - Categories: Backup & Storage - Tags: Data storage, Drobo BeyondRAID, NAS Devices, ReFS, storage spaces - Article Type: Overview Get an overview of storage technologies focusing on the internal organization of data storage – going from the hardware level of a physical hard drive to the logical level of a file system layout. We all know that the amount of data both globally in the world and on our personal computers, in particular, is growing constantly – day by day. The need for new data storage technologies exists and they appear with reasonable regularity.     Let's consider storage technologies focusing on the internal organization of data storage – going from the hardware level of a physical hard drive to the logical level of a file system layout. Basic Concepts The problem, which users encountered almost from the moment the personal computers were designed, was that the capacity of a single disk, to put it mildly, was not very large – just imagine that in 1991 IBM introduced a disk with the "unimaginable" size... 1004 MB! The disk was composed of eight 3. 5-inch platters. This situation with disk capacities will always remain the same -- hard disk vendors are constantly trying to design larger capacity disks, but the sizes (as well as prices) do not satisfy the user needs. Back in those days, it became clear that a technology that allows you to combine several disks into a single storage space was needed. That's how the RAID (Redundant Array of Independent (or Inexpensive) Disks) technology was invented. The technology is based on combining different disks -- from different vendors, with different characteristics -- into a single storage option using the mirror, stripe, and parity techniques. Mirror (RAID1) – array member disks store the identical copies of data. To be honest, a... --- ### Microsoft Surface Pro Review: Making The Good A Little Bit Better - Published: 2017-06-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-surface-pro-review-making-good-little-bit-better/ - Categories: Hardware - Tags: Microsoft, News, review, Surface Pro - Article Type: Review Microsoft's Surface Pro is all about refinement and improves on many key areas over the previous generation device but it is not perfect. A few weeks back, Microsoft announced the long-awaited successor to the Surface Pro 4, the Surface Pro. If the name is a bit confusing that's ok, the company is simply dropping the number following the name and every version going forward will simply be known as the Surface Pro; think of this as the Surface Pro (2017). I have been using this device for a little over a week and what the company has done is taken the well-received Surface Pro 4, refined it with new internals, reduced the ambient noise the device creates, updated the pen and made the hinge even more flexible. In short, they took a good device and made it better. As you would expect, this is very much an evolutionary upgrade and is not a generational leap by any means; especially since it does not include USB-C or Thunderbolt 3 support. While that omission is a bit disappointing, all of the other upgrades are exactly what I would want from a new version this machine. The Surface Pro design is mature which means making any radical changes to what has been the best selling Surface product would seem foolish; I'm happy they kept it conservative. If you are looking for a spec breakdown, check out my announcement post here. There is one improvement to this machine that likely won't make a lot of noise in the headlines but is important to know. This machine is quiet, Microsoft sent me the i7 model which... --- ### Small Change in Recover Deleted Items. Big Impact for Exchange Users > Microsoft has made a small change in the Original Folder Item Recovery feature to allow deleted items to be recovered from where they came. - Published: 2017-06-15 - Modified: 2024-11-19 - URL: https://petri.com/exchange-recover-deleted-items/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office - Tags: Exchange 2016 CU6, Exchange Online, Office 365, Outlook, owa, Recover Deleted Items, Recoverable Items - Article Type: News The IT world often focuses on big changes and announcements instead of looking at how small changes can really make a difference. One example is how Microsoft has changed what happens when users recover deleted items to allow items go back to where they came. It's a great change, even if it is seven years overdue. One Step Forward for Exchange It’s often the case that a change that seems small and unimportant can have a big impact. Such is the case of the change Microsoft made to OWA’s Recover Deleted Items function to allow Exchange to restore items into the folder from which they were deleted. You might wonder why this was never the case beforehand. And you are right to wonder because it makes perfect sense to restore an item from whence it came. At least, it makes perfect sense to users but not to the minds of those who originally designed the recovery feature. Original Thinking The original decision, implemented in Exchange 2010 when Microsoft introduced “dumpster 2. 0”, aka the Recoverable Items folder structure, can be defended. After all, when you use the Recover Deleted Items option (Figure 1) to restore a deleted item, it is reasonable to expect that Exchange might put the recovered items back somewhere sensible. Before now, Microsoft used the “folder type origin” to figure out where items go. For most mailbox items, OWA put them back into the Inbox. For calendar items, it is the Calendar, Contacts go to the Contacts folder, and Tasks go to Tasks. Figure 1: OWA’s Recover Deleted Items option (image credit: Tony Redmond) The advantage of this approach is that is it simple. Far too simple. Which is the point made by customers who attended a spirited debate on the topic at the Ignite conference in 2015... . --- ### Can Microsoft Reignite a Passion for Creating and Learning with Windows 10? - Published: 2017-06-14 - Modified: 2024-09-04 - URL: https://petri.com/can-microsoft-reignite-passion-creating-learning-windows-10/ - Categories: Windows Client OS - Tags: education, Mobile, Surface, Windows 10, Windows 10 S, Windows Ink - Article Type: Opinion It will take new device form factors to move us to a future where small devices are better able to adapt to a wider variety of tasks. Bill Gates recently revealed that he uses technology to learn. In an interview with Axios, Gates stated that he watches lectures by experts. Although he notes that it is not considered a cutting-edge use of technology, it is possible to learn about any subject online. Even without the Internet, computers can be great learning tools.     Over the years, I have taught myself to edit pictures in Photoshop, to program and script, to work with desktop publishing software, to record music, to create and query databases, and the list goes on. Sure, I am a geek but if there had not been a PC at home, I would have been less likely to develop any of the technical and creative skills I have today. Size Matters Smartphones are now the primary computing device for most of us but limited screen size restricts what we can do with them. Most of us are rarely moving beyond taking quick snapshots, writing short messages, and applying Instagram filters. While Bill Gates is making good use of his time, the rest of us are preoccupied with Facebook likes and videos of cute cats. I am always surprised at how many smartphone owners do not know how to get from A to B using maps. We have become consumers of information, instead of creators and innovators. These ultra-portable, dumbed-down devices are partly responsible for the limited way in which we engage with computers. But is there a shift about to happen that... --- ### Azure Backup Agent Adds Support for System State > In this post I explain how you can use a preview feature of the Azure Backup MARS agent to backup and restore system state for Windows Server machines. - Published: 2017-06-14 - Modified: 2024-09-04 - URL: https://petri.com/azure-backup-agent-adds-support-system-state/ - Categories: Backup & Storage, Microsoft Azure - Tags: Active Directory, Azure, Azure Backup, Backup, MARS, System State, Windows Server - Article Type: How To Aidan Finn explains how to use a preview feature of the Azure Backup MARS agent to backup and restore system state for Windows Server machines. In this post, I will explain how you can use a preview feature of the Azure Backup MARS agent to backup and restore system state for Windows Server machines.     Background The MARS agent is one of the 3 ways that we can use Azure Backup to protect on-premises data to the cloud. In my experience, MARS has been the most commonly adopted solution for enabling small businesses to backup files and folders, usually from the only server that a small business has. I have been talking and writing about Azure Backup for around 3 years now. One of the common requests was for MARS to support protection of system state. Please note that System Center Data Protection Manager and Microsoft Azure Backup Server already offer this. Why was system state protection required? The one server that a small business has is also the domain controller. It is also the way that we protect Active Directory to do a system state backup. Not having support for system state meant that another backup solution was required. System state also includes meta data for the server, such as file server or web server configuration. I found that the request for System State protection was one of the factors that prevented adoption by some companies of Azure Backup. One factor has been centralized management, which is being worked on. Another is support for applications and virtualization by MARS agent, which is also being worked on. Those services do have support... --- ### Microsoft Sets Dangerous Precedent With Another New Patch for Windows XP - Published: 2017-06-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-sets-dangerous-precedent-another-new-patch-windows-xp/ - Categories: Windows Client OS - Tags: Security, Windows, Windows 10, Windows XP - Article Type: News Microsoft is releasing another patch for Windows XP today which raises the question of why pay for extended support and is the OS truly dead? When is software really dead? That's a great question because Microsoft will tell you that this occurs when the company states that a product has reached the end of its support lifecycle. But, for Windows XP, that does not appear to be the case as Microsoft is releasing a second patch for the discontinued OS today. After the WannaCrypt ransomware made its way around the web and likely made its creators quite a bit of money, Microsoft took the unprecedented action and patched Windows XP to stop this exploit from continuing to spread. Today, the company is releasing another patch for the outdated operating system to put a stop to what Microsoft refers to as nation-state cyber attacks. The patches going out today will be released for all supported versions of Windows closes a significant hole in the operating system being exploited by governments and other perpetrators. What's more interesting is that this is the second 'nation-state' type vulnerability that Microsoft has patched, that we know of, this year, and further raises the question about how closely the company is working with governments around the globe to share exploits in the operating system. This move is questionable on multiple levels. First, if Microsoft says that Windows 7 truly reaches end of life in 2020, is it really going to cut off support or will they release critical patches like they have done twice with Windows XP? Second, for those customers who are paying exuberant fees for continued Windows... --- ### Overcoming the Last Mile Problem - Published: 2017-06-13 - Modified: 2024-09-04 - URL: https://petri.com/overcoming-last-mile-problem/ - Categories: Hybrid Cloud, Networking - Tags: Cloud Connectivity, hybrid cloud, Internet Connectivity, ISP, networking - Article Type: Overview We all know that the cloud services have scalability and availability that is typically better than most businesses. However, that last mile of Internet connectivity is often the weakest link in your cloud connectivity chain. Today, the Internet’s near ubiquitous connectivity has really fueled the growth of cloud and hybrid cloud computing. Just a few years ago, Internet connectivity was spotty and if you were traveling you had to be on the lookout for when and where you could connect. Now it’s virtually everywhere from coffee shops and supermarkets to airplanes. This widespread connectivity has really driven the cloud and mobile computing growth that have become a core part of many businesses today. While connectivity to the cloud has definitely improved over the past few years, it’s still not perfect. One weakness that many businesses share is the last mile problem. We all know that the cloud services have scalability and availability that is typically better than most businesses. However, that last mile of Internet connectivity is often the weakest link in your cloud connectivity chain.     This widespread connectivity has really driven the cloud and mobile computing growth that have become a core part of many businesses today. While connectivity to the cloud has definitely improved over the past few years, it’s still not perfect. One weakness that many businesses share is the last mile problem. We all know that the cloud services have scalability and availability that is typically better than most businesses. However, that last mile of Internet connectivity is often the weakest link in your cloud connectivity chain. One weakness that many businesses share is the last mile problem. We all know that the cloud services have scalability... --- ### Connect Visual Studio Team Services to Azure Using a Service Principal Name - Published: 2017-06-13 - Modified: 2024-11-19 - URL: https://petri.com/connect-visual-studio-team-services-azure-using-service-principal-name/ - Categories: Cloud Computing, Microsoft Azure, Visual Studio - Tags: Active Directory, Azure, cloud computing, DevOps, Visual Studio, Visual Studio Team Services - Article Type: How To Russell Smith shows how to connect Visual Studio Team Services to Azure using a Service Principal Name so that you can deploy code directly to Azure from Visual Studio Team Services. In today's Ask the Admin, I will show you how to connect Visual Studio Team Services (VSTS) to Azure using a Service Principal Name (SPN) so that you can deploy code directly to Azure from VSTS.     VSTS allows sysadmins and developers to build apps on code in a VSTS project directly in Azure. VSTS uses an Azure Resource Manager (ARM) service endpoint to connect to Azure. If you use the same account to log into VSTS and Azure, give the connection a name to set up a new endpoint. Then, select the Azure subscription from the dropdown menu. I recently came across a problem. If the Microsoft account used to log into VSTS is different from the one used for your Azure tenant, you will not be able add an ARM service endpoint to VSTS. You have to perform extra configuration. The solution to the problem, create an SPN in the Azure Active Directory (Azure AD) associated with the Azure tenant. This is where the app will be deployed. Add an ARM Service Endpoint in Visual Studio Team Services Let's look at how to add an ARM service endpoint in VSTS without an SPN. Log into your VSTS site using the URL provided at sign up. It should look something like this: myproject. visualstudio. com. On the VSTS homepage under Projects, click the project where you want to add a service endpoint. At the top of the project page, click the gear settings icon... . --- ### Still No Good Option for Office 365 Backups > ISVs propose backup solutions for Office 365 but no product exists that takes a comprehensive and integrated approach to Office 365 applications. - Published: 2017-06-13 - Modified: 2024-09-04 - URL: https://petri.com/no-good-option-office-365-backups/ - Categories: Microsoft 365, Office - Tags: Backup, Exchange Online, Office 365, OneDrive for Business, Planner, SharePoint Online, Teams - Article Type: Opinion Backup solutions for Office 365 are available from many ISVs. However, six years after the Office 365 launch, no product exists that takes a comprehensive and integrated approach to Office 365 applications. Are Office 365 Backups Necessary? The most popular question people ask me about Office 365 is to recommend how to take backups, specifically for Exchange Online. Few who ask like my answer: Don’t bother. I have been consistent in this opinion for the last five years (see this piece from last year). The feeling gets stronger as time goes by. I do not blame people for asking about backups. It is natural for those who migrate from an on-premises environment to want to have the same kind of facilities that they have come to depend on when their data is in the cloud. However, applying on-premises principles to Office 365 is never a great idea because this approach ignores the simple fact that Exchange Online is very different to Exchange 2016 (or whatever version you use). More Challenging as Time Goes By In fact, backups of Exchange Online become more challenging over time. Users keep more data online than they do on-premises. Microsoft encourages this trend by making 100 GB mailboxes the new norm, not cleaning out the Deleted Items folder automatically, and implementing expandable archive mailboxes (now rolling out after a pause). Allowing users to have huge mailboxes makes it more difficult for companies to move away from Office 365. It also makes it more difficult to transport all the data across the Internet from Microsoft’s datacenters to those owned by cloud backup companies. Recovering from Ransomware People often raise the prospect of mailbox infection with ransomware... --- ### With Data Being the New Oil, Microsoft Bets on Power BI Premium - Published: 2017-06-12 - Modified: 2024-09-04 - URL: https://petri.com/data-new-oil-microsoft-bets-power-bi-premium/ - Categories: PowerBI - Tags: News, PowerBi - Article Type: News Microsoft has announced that PowerBI Premium has reached general availability and will start at $625 a month. This week, Microsoft is hosting its Data Insight Summit at its campus in Seattle and the company has announced that Power BI Premium is now generally available. James Phillips, corporate vice president of Microsoft’s Business Applications, Platform, and Intelligence made the announcement on Monday. One of the key advantages of Power BI Premium, which was first announced on May 3rd, is that it simplifies the evergreen issue in the corporate world, licensing. Yes, there is still licensing involved but it is much simpler as you can now share reports across your entire organization and externally without the recipient needing to have a licensed copy of the software. One of the key features for Power BI Premium is that it introduces the ability to maintain BI assets in your own data center with Power BI Report Server. This Report Server allows you to run the software locally with the same number of virtual cores an organization provisions in the cloud for on-premises deployments without the need to split capacity. Microsoft is starting the pricing for this service at $625 a month which may sound like a lot, but the analytics segment of the market is highly competitive and the pricing is in-line with what other companies are offering. Data is often referred to as the new oil. The amount of data that we output each year is growing exponentially and as IoT solutions become more widespread and self-driving cars come online at mass-market scale, our data outputs will continue... --- ### Avoiding Accidental Changes with PowerShell's WhatIf and Confirm Parameters - Published: 2017-06-12 - Modified: 2024-09-04 - URL: https://petri.com/avoiding-accidental-changes-powershells-whatif-confirm-parameters/ - Categories: Administrative Tools and Scripts, PowerShell - Tags: Automation, Parameters, PowerShell, Scripting, Windows - Article Type: How To Learn how to prevent PowerShell mistakes by adding -whatif and -confirm parameters. Have you ever accidentally run a PowerShell cmdlet that modified your system? You were not quite ready to run the cmdlet. To avoid disaster, you may take advantage of native PowerShell cmdlet's -whatif switch. You can use this to test what a cmdlet would do. With -whatif, you can test the changes to the system but not actually make the changes. Alternatively, you can use the -confirm switch to make sure that you are ready to execute the script. These scripts can often modify the system in a potentially dangerous way. PowerShell built these parameters into its native cmdlets in order to save your sanity and your system. Luckily, not only did they build these parameters into the native cmdlets but you can also build these parameters into your own custom functions.     Mistakes Happen Mistakes do happen and evidence of IT mistakes appear in the news from time to time. At times, they are widely publicized. The Amazon S3 outage in February caused a widespread internet outage due to "one of the inputs to a command being entered incorrectly. " PowerShell’s ShellFather, Jeffrey Snover, tweeted that this is the reason why PowerShell contains the -whatif and -confirm parameters. When you use these parameters, you protect yourself from accidentally performing an action. Make Your Function an Advanced Function To allow inclusion of the -whatif and -confirm parameters on your functions, you need to turn your simple function into an advanced function. To accomplish this, add the cmdletbinding declaration on... --- ### Migrate Content from Docs.com to OneDrive for Business - Published: 2017-06-12 - Modified: 2024-09-04 - URL: https://petri.com/migrate-content-docs-com-onedrive-business/ - Categories: Administrative Tools and Scripts, Microsoft 365, Security - Tags: docs.com, migration, Office 365, OneDrive for Business, retired - Article Type: How To, News Jussi Roine discusses Microsoft's announcement that Docs.com is being phased out. Microsoft recently announced that its document sharing site is being phased out.  Docs. com is effectively retiring on December 15th, 2017. This means that all user content will be deleted by that time. Here is the official announcement.     I have been an active Docs. com user since 2015. I have been happy with this free and modern-feeling service from Microsoft. I also knew about SlideShare, a similar document sharing service that LinkedIn owns. When Microsoft bought LinkedIn last year, I realized something would eventually happen with Docs. com or SlideShare. Docs. com has had recent security issues. The most prominent issue was around private documents uploaded by users being marked as public by default. Unknowingly, users would share confidential information such as usernames, passwords, and internal service details. Visitors would be able to query contents with search on the site and it would reveal information that was best kept secret. At the very least, it was not for the public to see. As a result of this, Microsoft removed search functionality on the site in March of this year. Later, Docs. com started analyzing documents being uploaded in order to verify that confidential information would not leak. Many users found themselves with a situation where old, publicly-shared documents were automatically marked private and only visible for the owner. In order to make documents public again, users would have to verify it was safe to publish and re-upload the same document. What You Need to Do In order to save your documents, Microsoft will... --- ### VMware’s vRealize Suite Refresh Provides Enhanced Hybrid Cloud Automation and DevOps Support - Published: 2017-06-09 - Modified: 2024-11-19 - URL: https://petri.com/vmwares-vrealize-suite-refresh-provides-enhanced-hybrid-cloud-automation-devops-support/ - Categories: Amazon Web Services, Cloud Computing, Microsoft Azure, Virtualization, VMware - Tags: Cloud, Virtualization, vmware, vRealize Suite - Article Type: Interview, News VMware announced a complete refresh of its vRealize Suite with support for intelligent operations, hybrid cloud, automation and DevOps I recently meet with VMware's Mark Leake, Senior Director of Product Marketing and Taruna Gandhi, group manager, Product Marketing, Cloud Management to talk about VMware’s latest enhancements in its June 6, 2017 launch of VMware’s vRealize Suite. VMware’s vRealize Suite is an enterprise-level hybrid cloud management platform for managing local, hybrid, and public cloud infrastructures. Marke told me that with this release VMware has refreshed all of the components in the vRealize Suite with new functionality for intelligent operations, IT automation, and Dev-Ops ready support. The overall goal for vRealize Suite is to provide a consistent operational model the spans the local SDDC and multiple public clouds.     Intelligent Operations Enhancements to vRealize Operations 6. 6, vRealize Log Insight 4. 5, and vRealize Business for Cloud 7. 3 provide the foundation for more intelligent IT operations. vRealize Operation 6. 6 has a new HTML5 UI and it provides enhanced intelligent workload placement capability that is automated across clusters and data stores with Storage vMotion. The new version enables you to directly view and change Distributed Resource Scheduler (DRS) settings and it provides predictive DRS actions to avoid possible contention issues. The new release also provides native vSAN management and monitoring as well as reporting of deduplication and compression savings. vRealize Log Insight provides real-time log monitoring. It integrates with vRealize Operations Manager to help provide visibility and troubleshooting across physical, virtual, and cloud environments. Enhancements to vRealize Log Insight 4. 5 include the ability to directly launch vRealize Log Insight from vRealize... --- ### Paul Thurrott's Short Takes: June 9 - Published: 2017-06-09 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-9/ - Categories: Cloud Computing, Mobile, Security, Windows 10 - Tags: News - Article Type: Overview Because our three days of Spring have finally arrived, this edition of Short Takes looks at an amazing Intel threat against Microsoft, Microsoft's security buy is no Nokia, out-of-date Skype clients head off to a farm to chase rabbits, and much more. Because our three days of Spring have finally arrived, this edition of Short Takes looks at an amazing Intel threat against Microsoft, Microsoft's security buy is no Nokia, out-of-date Skype clients head off to a farm to chase rabbits, and much more. Intel implicitly threatens Qualcomm over Windows 10 Intel this week issued an interesting threat at no one in particular. "Intel carefully protects its x86 instruction set architecture (ISA) intellectual property rights," the firm notes. "There have been reports that some companies may try to emulate Intel's proprietary x86 ISA without Intel's authorization. " So. There have been announcements that Microsoft is working with Qualcomm to bring x86 application compatibility to Windows 10 on ARM, which is due in the market later this year. Meaning that Intel is, in fact, threatening both Microsoft, its biggest partner, and Qualcomm, its biggest competitor, with the same patent infringement lawsuits that it used successfully against Transmeta over 10 years ago. And as Intel reminds us, "Transmeta was not commercially successful, and it exited the microprocessor business 10 years ago. " Yikes. "If Windows 10 on ARM Works Properly, It Will Be Boring" So much for that theory. : ) Microsoft to buy Hexadite Microsoft announced this week that it will purchase Hexadite, a U. S. -Israeli security technology firm that offers automated cyberattack response solution. Aside from the obvious scrambling---I suspect the term "Hexadite" spiked on Google Search for about 10 minutes while we all figured out what it was---the real questions are "why"... --- ### Microsoft's Next Windows 10 Security Feature Looks to Be Exploit Guard - Published: 2017-06-09 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-next-windows-10-security-feature-looks-exploit-guard/ - Categories: Security, Windows 10 - Tags: Advanced Threat Detection, Exploit Guard, Security, Windows 10 - Article Type: News Microsoft is working on a new security feature for Windows 10 called Exploit Guard that will allow admins to block users and applications from accessing dangerous domains. Microsoft has been working diligently to build advanced security features into Windows 10. The reason the company is doing this is to not only protect their users but to provide a serious incentive for enterprise users to upgrade from Windows 7 and they know that better security is the best carrot to dangle. In the latest build of Windows 10 that has been released to Insiders, it looks like the company is set to announce a new feature in the near future called Exploit Guard. This new security feature allows administrators to block any application from accessing a dangerous domain. This feature sounds somewhat similar to Application Guard which protects browsers from attacks by using isolated virtualized environments for Edge but looks to protect across the entire OS. According to the group policy editor feature, uncovered by Tero Alhonen, by enabling this feature you can block users and applications from accessing dangerous domains and you can also audit attempts to access these domains as well. Blocking domains in the corporate world is nothing new and there have been several third party services that enable similar functionality. What may be different here is that by running this type of block at the OS level, it can block applications that are quietly trying to access dangerous domains without the users' knowledge but I'll need to see how Microsoft pitches this option to know how it differentiates from other security offerings. Security, it’s one of the many differentiators Microsoft pitches as a reason... --- ### Microsoft is Shutting Down Docs.com - Published: 2017-06-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-shutting-docs-com/ - Categories: Microsoft 365, Office - Tags: docs.com, Office, Office 365 - Article Type: News Microsoft has announced that they will be closing Docs.com; an online service used to share Office content and track its performance. Microsoft has announced today that they will be shutting down their Docs. com online repository for Office content. The announcement, posted on the Docs. com landing page, states that after December 15th, the site will be going to the virtual graveyard in the cloud. The company says that the reason they are closing the site is that with the acquisition of LinkedIn, Slideshare is the new preferred platform. That site has an audience of 70 million users and appears to be a much large platform than Docs. com which means it one service has to go and Docs. com is the loser in this situation. Not long ago, Docs. com made headlines after it was discovered that content on that site was easily discoverable via the search feature on the site which exposed sensitive content under the right scenario. That issue does not appear to be related to the closing of the site but does make you wonder if it started the process of Microsoft reevaluating the service. The sunset roadmap is quite aggressive as you can no longer create new accounts and starting August 1st, you will not be able to publish or edit content. After December 15th, the site will be going away permanently and all content will be deleted. Microsoft is offering to move any content from Docs. com to OneDrive for Business starting on June 19th; more information about this migration will be posted here once the information is ready. Even though Docs. com is closing, the domain will likely be repurposed... --- ### 5 Tips for Modern Task Management - Published: 2017-06-09 - Modified: 2024-11-19 - URL: https://petri.com/5-tips-modern-task-management/ - Categories: Career Skills - Tags: calendar, Outlook, Task Management, Wunderlist - Article Type: How To If you can control your workload, you can sleep better, feel less overwhelmed, and actually enjoy the calm moments. Matthew McDermott shares 5 tips for better managing your workload and time. I am a self-employed, independent Office 365 and SharePoint consultant. One day, I was having lunch with a great friend of mine who is a self-employed, independent animator. We were talking shop and when I asked how business was going he said “Great! Except for when I feel like I have nothing to do! ” I joked that “I wish I knew what that felt like! ” But the look on his face was that he really wasn’t kidding. The conversation carried on and we dug into the heart of what he was really feeling, overwhelmed. My brother, another self-employed, independent consultant with an MBA once told me that “Being self-employed is great! Except for when you have no work... or when you have too much work! ” It seems counterintuitive, but at times I have felt most uneasy during BOTH feast AND famine. So, it is with that notion in mind that the idea of, if you can control your workload and really get your hands around it, you can sleep better, feel less overwhelmed, and actually enjoy the calm moments when you “don’t have anything to do”, or at least know what to do next The “system” I use is based on having been a disciple of first, Hiram Smith (Franklin Planner), and later Steven Covey (7 Habits of Highly Effective People). I also use a little Getting Things Done (GTD) sprinkled in. There are two elements that make my approach work for me -- my approach to work (my thought process)... --- ### Azure Site Recovery for Azure Virtual Machines > This post explains how you can get disaster recovery replication for Azure virtual machines using a new preview feature. - Published: 2017-06-08 - Modified: 2024-09-04 - URL: https://petri.com/azure-site-recovery-azure-virtual-machines/ - Categories: Backup & Storage, Microsoft Azure, Security - Tags: Azure, Azure Site Recovery, Azure to Azure Site Recovery, Disaster Recovery, Regions, replication, virtual machines - Article Type: Overview Aidan Finn explains how a new preview feature, Azure Site Recovery for Azure Virtual Machines, can provide disaster recovery services for virtual machines that are running in Azure. In this post, I will explain how a new preview feature, Azure Site Recovery for Azure Virtual Machines, can provide disaster recovery services for virtual machines that are running in Azure.     Avoiding Downtime Disaster recovery is a hot topic. British Airways has had days of flight issues because of data center and power issues. AWS had a massive outage in one of its regions in February. WannaCrypt/WannaCry has made everyone think about dat availability, services availability, and security. I wrote an article back in March that discusses how to avoid AWS-style outages when deploying virtual machine-based services in Azure. In that article, I explained that despite the myths and assumptions, neither AWS or Azure replicates virtual machines for you to another region. If that region goes offline, as has happened to AWS US East in Virignia many times now, then anything you have there will stay offline. No magic fairies are sprinkling dust to wormhole your machines and data to another online region. This means that you have to deploy duplicate virtual machine builds, mirror the application installations and maintenance, enable inter-region connectivity, and replicate data from one region to another. In the event of an outage in a cloud service region, you need to have more than double the amount of effort and costs to ensure business continuity. Until now... Azure-to-Azure Site Recovery Microsoft has launched a preview service that allows you to optionally replicate virtual machines from one region to another close-by region. For... --- ### Microsoft Looks To Bolster Advanced Threat Detection Services With Hexadite Acquisition - Published: 2017-06-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-looks-bolster-advanced-threat-detection-services-hexadite-acquisition/ - Categories: Security - Tags: Advanced Threat Detection, Security, Windows - Article Type: News Microsoft is acquiring Hexadite and will integrate the company's technology into Windows Advanced Threat Protection. Security, it's one of the many differentiators Microsoft pitches as a reason to use one of its services and the company has built up a marketing movement around its 'Advanced Threat Detection' branding. The company is betting big on security and is offering hardening services on nearly all of its products for the enterprise. To further expand upon what the company already provides, Microsoft has announced its intentions to acquire Hexadite, a company that offers agentless, automatic incident investigation and remediation solutions. The terms of the agreement were not announced and the deal has not formally closed at this time. To little surprise, Microsoft says that they will be integrating this technology into its Windows Advanced Threat Protection services to help its clients detect, investigate, and respond faster to sophisticated attacks on their networks. Specifically, with this acquisition, the company says that they will be adding endpoint security automated remediation. With security related incidents happening on a broader scale and sophisticated attacks increasing in frequency, having robust security solutions in place to protect your on-premises and cloud infrastructure is vitally important. Microsoft is placing its bet that security will always be an evergreen topic (and I doubt anyone disagrees with this ideology) and as such, is continuing to invest in helping protect their clients with advanced services that are also padding the bottom line as well. The acquisition today further solidifies the fact that Microsoft is a security company who also offers productivity software. All of their key... --- ### The Rebirth of Yammer Groups > Microsoft hopes that by linking Yammer Groups to the Office 365 Groups service they will make Yammer more popular with Office 365 tenants. - Published: 2017-06-08 - Modified: 2024-11-19 - URL: https://petri.com/the-rebirth-of-yammer-groups/ - Categories: Microsoft 365, Office, Yammer - Tags: collaboration, Compliance, Office 365 Groups, Planner, Teams, Yammer - Article Type: Review Microsoft has updated Yammer so that new groups use the Office 365 Groups service to manage the identity and membership of the groups. There are far too many “groups” in that last sentence, which kind of illustrates how a surplus of groups might be building up within Office 365. Yammer and Office 365 Groups When Microsoft announced that Yammer Groups were going to use Office 365 Groups as an identity and membership service it gave new life to the moribund enterprise social networking platform. Perhaps it even lit new hope that Yammer would drive Microsoft to the leadership in the space promised after its $1. 2 billion acquisition in 2012. Yammer’s Slow Progress Following the acquisition, Microsoft did its best to exploit Yammer by telling all and sundry that it would solve the collaboration needs of all kinds of organizations. To ensure greater awareness of the platform, Microsoft enabled Yammer for all enterprise Office 365 tenants. To encourage use of Yammer, Microsoft also integrated it into applications like Office 365 Video where users share comments on videos through Yammer conversations. At times, it seemed like every second sentence uttered by Microsoft representatives included “Yammer. ” While the Yammer PR campaign droned on, other parts of Office 365 prospered. SharePoint received a new lease of life with the release of modern team sites in 2016 and a new administration center. The Exchange-centric Office 365 Groups debuted in November 2014 and are now used by more than 10 million active users. Even more competition in the collaboration space appeared with Microsoft Teams. The chat-based application quickly acquired substantial traction with Office 365 tenants. Questions appeared about the future of Yammer, with some commentators concluding that it is now time for Microsoft “to put Yammer out of its misery. ” For all the effort and... --- ### TCP Fast Open -- Disabled in Microsoft Edge - Published: 2017-06-08 - Modified: 2024-09-04 - URL: https://petri.com/tcp-fast-open-disabled-microsoft-edge/ - Categories: Security, Windows 10, Windows Client OS - Tags: Anniversary Update, Creators Update, Microsoft Edge, networking, Security, TCP/IP, Windows 10 - Article Type: Overview In this Ask the Admin, Russell Smith explains how TCP Fast Open helps to speed up browsing in Microsoft Edge and why it has been turned off by default in the latest cumulative update for Windows 10 Creators Update. In today's Ask the Admin, I will explain how TCP Fast Open (TFO) helps to speed up browsing in Microsoft Edge and why it has been turned off by default in the latest cumulative update for Windows 10 Creators Update.     Support for TFO has been in Windows 10 since last year's Anniversary Update but was only enabled in Edge on the release of the Creators Update in April. TFO is a new protocol option that allows data to be sent using Transport Layer Security (TLS) in the initial TCP handshake. It speeds up successive connections to the same server. TFO stores a cookie on the client once the initial handshake has completed. If a subsequent connection is made from the client, the cookie is sent to the server. This allows further handshakes to be performed more efficiently. TFO results in a Round Trip Time (RTT) of 1. It has a bit of help from TCP False Start, as opposed to 3-RTT for standard TLS 1. 2 connections. Not only is a low RTT important for reducing latency, it also means power savings for mobile devices. Enable TCP Fast Open in the About:Flags Settings in Microsoft Edge (Image Credit: Russell Smith) The initial release of the Creators Update enabled TFO in Edge for the first time but Microsoft disabled TFO in Edge in a recent cumulative update. Microsoft cited that it caused issues for some customers but that users could manually re-enable TFO in... --- ### What Is Visual Studio Team Services? - Published: 2017-06-07 - Modified: 2024-09-04 - URL: https://petri.com/visual-studio-team-services/ - Categories: Cloud Computing, SharePoint, Visual Studio - Tags: Azure, cloud computing, DevOps, GitHub, Visual Studio, Visual Studio Team Services - Article Type: Overview In this Ask the Admin, Russell Smith explains what Visual Studio Team Services is and how it compares to GitHub. In today's Ask the Admin, I will explain what Visual Studio Team Services (VSTS) is and how it compares to GitHub.     The popularity of DevOps is forcing sysadmins to learn how to use new tools, such as Visual Studio. Last year, I wrote a series of articles about deploying resources in the Azure cloud using JSON templates and GitHub. These can be found on the Petri IT Knowledgebase. The aim was to introduce sysadmins to the basics of DevOps in the Microsoft world. I chose to write about GitHub partly due to its popularity but now it is time to look at VSTS. For more information, check out What Is GitHub? on Petri. Visual Studio Team Services Based on a hosted version of Microsoft's Team Foundation Server in the Azure cloud, which is much like GitHub, VSTS is a source version control solution for developers. It includes Git source control, integration with Visual Studio 2017, team collaboration tools, and features that enable continuous integration. If you are already familiar with Azure and Visual Studio, you might feel more at home with VSTS. Unlike GitHub, VSTS allows users to create private repositories on its free tier for up to 5 users. If you plan to deploy builds to Azure, the free tier agent is limited to apps that take no longer than 30 minutes to deploy. GitHub's pricing model provides free public repositories for an unlimited number of users. Private repositories cannot be created on the free... --- ### Ransomware Is Indiscriminate -- Secure Your Systems Now - Published: 2017-06-07 - Modified: 2024-09-04 - URL: https://petri.com/ransomware-indiscriminate-secure-systems-now/ - Categories: Security, Windows 10 - Tags: Antivirus, Ransomware, Security, Windows 10 - Article Type: Opinion Russell Smith explains how attackers target businesses indiscriminately and outlines some steps for securing your devices.   In this Ask the Admin, I explain how your business might become a target and why bedroom hackers are a thing of the past.     As an IT consultant, persuading companies to invest in security has always been an uphill battle. WannaCry indiscriminately infected more than 200,000 Windows devices. Even if you think your company has nothing worth stealing, losing access to all your data is no longer an unlikely event. There are steps you can take to secure your company's data assets. Should I Avoid Using Windows? No. All operating systems (OS) have vulnerabilities and bugs. It is true that Windows is often targeted because it is more widely deployed. If updated regularly and best practices followed, you can benefit from what made Windows the leader in desktop OS. The reasons are ease of use, enterprise manageability, and the widest selection of available software. Microsoft is steadily working toward making security a key differentiator in Windows 10, Office 365, and Azure. Isn't Antivirus Enough to Protect Me? Antivirus software is not as effective as it once was but it still has a role to play. Hackers Will Not Bother Targeting My Business That is not how it works. The idea of a bedroom hacker, a spotty teenager locked away in a room for hours that spends time trying to hack a specific resource, went away many years ago. The malware and ransomware business is sophisticated and automated. In many cases, ransomware strikes indiscriminately to grab... --- ### Create a Room Mailbox in Office 365 - Published: 2017-06-07 - Modified: 2024-09-04 - URL: https://petri.com/create-room-mailbox-office-365/ - Categories: Microsoft 365, Office - Tags: calendar, Conference Room, exchange, Office 365, Room Mailbox - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to create and use conference rooms in Office 365. In today's Ask the Admin, I will show you how to create and use conference rooms in Office 365.     Office 365 has a feature with many different names. It is referred to as room mailbox, meeting room, conference room, etc. Regardless of what you call it, it is a feature that allows members of the Organization Management or Recipient Management role groups to create a resource mailbox that is assigned to a physical location in your organization, such as a meeting room. Room Versus Equipment Mailboxes Office 365 allows you to create equipment mailboxes, which are similar in concept to room mailboxes. They are not tied to a physical location, however. For example, an equipment mailbox might be created to let users reserve a resource, such as a projector or PC. Users can reserve physical spaces by selecting the resource location when creating meeting requests. Additionally, users can be given permissions to a resource mailbox so that they can directly manage its calendar. Create a Room Mailbox There are two ways to create room mailboxes in Office 365. The easiest way is by using the Admin app and that is what I will show you below. It is also possible to use the Exchange Administration Center (EAC). Log in to Office 365 using an administrator account. Click Resources in the list of options in the left pane. Click Rooms and equipment under Resources. Click Add under Home > Rooms and equipment on the right... --- ### Office 365 Apps Make Parts of Outlook Desktop More Usable > Outlook desktop supports Tasks and Contacts. Dedicated users like these bits of Outlook but many people do not. Recent Office 365 apps improve matters. - Published: 2017-06-06 - Modified: 2024-09-04 - URL: https://petri.com/office-365-apps-make-outlook-desktop-usable/ - Categories: Microsoft 365, Office, Outlook - Tags: Contacts, Exchange Online, iOS, Outlook, Tasks, To-Do - Article Type: Opinion Outlook desktop includes Task and Contacts functionality that has not changed in years, which is why many users probably don’t use these client features. Mobile apps exploit Tasks and Contacts and make them much more usable. Goodness in App Updates On March 16, 2017, I discussed the question of why contacts are a problem for the Outlook apps and noted that among other issues “Currently, no way exists in the Outlook app to add or edit contacts either. In other words, if you want to add, amend, or remove one of Outlook’s contacts, you have to use OWA or Outlook desktop. ” Well, Microsoft has now updated the Outlook for iOS app to add the ability to edit contacts. The code is in Outlook for iOS version 2. 27. 0, which I downloaded and installed on May 30. According to Microsoft, the feature will come soon to the Android version of Outlook. Editing Contacts There is not much to report about editing contacts. Open your list of contacts by selecting People in the Outlook app, then select a contact and click Edit. You can then update contact details such as their telephone numbers, email address, work address, and so on (Figure 1). Figure 1: Editing a contact with Outlook for iOS (image credit: Tony Redmond) The importance of being able to edit contacts through Outlook is not that Microsoft has finally added the feature. What’s really important is how much more useful this makes Outlook contacts. Contacts have been part of the Outlook desktop client for as long as I can remember, probably because no self-respecting personal productivity application could not include a contact book. But the problem with contacts is that they... --- ### Surface Book Performance Base: Long Term Update - Published: 2017-06-06 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-performance-base-long-term-update/ - Categories: Hardware - Tags: Surface Book - Article Type: Review I have been using Microsoft's Surface Book with Performance base for seven months which means it is time for a long-term update. Nearly seven months ago, I began using the Surface Book with the Performance base as my preferred laptop while traveling. The device promises good battery life and higher-end mobile graphics which for the kind of work that I do when attending conferences, is critical. In the interest of providing potential buyers with a long-term viewpoint of the device, here is a quick review about the good and bad of the device after taking it on the road to Vegas, New York City (twice), New Orleans, Seattle, Destin, and probably a few other places that I am forgetting. The Good: Battery life has been a positive experience across all use-cases. Microsoft claims 16 hrs of video playback and while I do consider that a vanity metric as there are few instances where that's all anyone would do with a device, I have been getting anywhere from 6 to 10 hours with the laptop. My use of the device varies widely; while traveling there is a significant amount of video editing which drains that battery quickly and also writing posts that sips down the juice slowly. When editing video, 6 hrs is the norm, post writing, 10hrs or a tad longer is about average; during both scenarios, I am almost always streaming music via Spotify. The GPU in the performance base helps out significantly when crunching video. In short, faster rendering means more editing can occur and helps allows me to typically complete our 'behind the scenes' videos on the... --- ### Anatomy of a PowerShell Advanced Function - Published: 2017-06-06 - Modified: 2024-09-04 - URL: https://petri.com/anatomy-powershell-advanced-function/ - Categories: PowerShell - Tags: Automation, PowerShell, Scripting, Windows - Article Type: How To PowerShell advanced functions provide modularity in automating system administration tasks and by structuring PowerShell scripts as advanced functions, you can transform your scripts and functions into reusable tools. PowerShell advanced functions provide modularity in automating system administration tasks. Advanced functions allow administrators to create reusable code snippets that can look and behave just like the in-box PowerShell cmdlets. In this article, I will show you how to structure an advanced function to transform your scripts and functions into reusable tools.     Start with a Script The first step in modularizing your PowerShell scripts is to turn a script into a function. Scripts can easily be turned into functions by adding a function keyword and a parameter block. For example, consider the following script. It grabs some information from the WMI database on the local computer and displays it in a table format to the console. ​ Turn the Script Into a Function Next, changing the script into a PowerShell function is easily accomplished by adding a function keyword on the first line and enclosing the entire script in curly braces. Adding a $ComputerName parameter in a param block will allow the function to be run against remote machines, instead of just the local machine. The get-CimInstance allows a -ComputerName parameter. ​ function get-myDiskInfo {     param (         $ComputerName         )     $Dev = get-CimInstance -class Win32_OperatingSystem `         -computerName $Computername | `         Select-Object -expandproperty SystemDevice     $Disk = Get-CimInstance -Class Win32_LogicalDisk `         computerName $ComputerName -filter "drivetype='3'" |     Select-Object -Property DeviceID,Size,FreeSpace     $props = @{            "HardDisk"= $dev            "DeviceID" = $Disk. DeviceID            "DiskSize" = $Disk. Size            "FreeSpace" = $Disk. FreeSpace            }... --- ### Azure Storage Announcements at Build > A number of Azure storage improvements were announced at Build: 4 TB virtual machine VHDs, 5 PB storage accounts, tiered storage and network access control. - Published: 2017-06-05 - Modified: 2024-09-04 - URL: https://petri.com/azure-storage-announcements-build/ - Categories: Cloud Computing, Hyper-V, PowerShell, Virtualization - Tags: 1023 GB, 4 TB, 5 PB, 500 TB, Access Keys, Azure, Network Access Control, Storage Account, Tiered, Tiered Storage, vhd, Virtual Hard Disks, virtual machines - Article Type: Overview Learn about several infrastructure-related feature enhancements for Azure Storage that Microsoft announced at the recent Build conference. Microsoft announced several infrastructure-related feature enhancements for Azure Storage at the recent Build conference. I will discuss what these features are and what we might expect from them.   4TB Disks The big news first, Microsoft is starting a preview for 4TB disks for Azure virtual machines. This preview is starting off in the West Central US region and will expand globally in June. Administration is limited to PowerShell and CLI initially. Support will be coming to the Azure Portal soon after. Microsoft Announced 4TB Azure Virtual Machine Disks   The addition of support for 4TB disks will make people very happy. Today, Azure virtual hard disks are limited to 1023GB. This is not a restriction from the VHD format or Hyper-V. It is actually a restriction from the bespoke storage system that Azure offers to the compute service. Standard and Premium storage will be supported. Note that when using flash Premium storage, larger virtual hard disks offer faster performance so that the new size will offer 7,500 IOPS or 5,000 for 1023GB. It also offers a data transfer of 250MBps. When we deploy virtual machines to Azure, we are not restricted to 1023GB data volumes. Of course, we are also not restricted to 900GB data volumes in a physical server. We can use Storage Spaces inside the guest OS of the virtual machine to aggregate the capacity of individual data disks. An extra feature, we can aggregate the performance of the... --- ### Set Up Email Rules in Office 365 - Published: 2017-06-05 - Modified: 2024-09-04 - URL: https://petri.com/set-email-rules-office-365/ - Categories: Cloud Computing, Microsoft 365, Office - Tags: cloud computing, email, Office 365, Outlook - Article Type: How To Russell Smith shows you how to set up email rules in the Office 365 web portal. In today's Ask the Admin, I will show you how to set up email rules in the Office 365 web portal.     Email rules can improve your workflow and focus. Instead of facing an unsorted inbox filled with masses of email messages, you can sort messages into different folders. You can organize them into those needing attention immediately and emails that can wait. For instance, I use Office 365 to sort my incoming email into separate folders for those pertaining to meetings, newsletters, and invoices. This makes my inbox less cluttered and enables me to concentrate on tasks that I need to complete at once. Set Up a Rule from the Email Message The simplest way to set up a rule is right from the email message. To complete the instructions below, you will need an Office 365 subscription. If you do not already have one, you can sign up for a free trial. Log in to Office 365 Outlook. Right-click the message title. In the context menu, select Create rule at the bottom of the list. On the next screen, you will be prompted to set up the rule. You need to name your rule. It is best to keep the name short. Outlook rules are flexible and powerful. There are many customization options. First, you set up the criteria for the rule by using actions including forwarding, redirecting, and marking messages. After that, you can set exceptions. For instance, you could filter out marketing emails... --- ### Microsoft's Working on New SKUs of Windows for Workstations And Server - Published: 2017-06-05 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-working-new-skus-windows-workstations-server/ - Categories: Windows 10 - Tags: Windows 10 for Workstation - Article Type: News Microsoft is working on a new SKU of Windows 10 that is designed for the workstation PC that includes support for multi-CPUs for intensive compute tasks. Last week, Microsoft had a rather big issue: it pushed unintended builds of Windows 10 to desktop and phone users to Insiders. While this kind of problem is significant and is an extremely rare event, the one good side is that it provides access to bits that would have otherwise not been released. Tucked away in this unintended release is a plethora of information including that Microsoft is working on several new versions of Windows including Windows 10 Pro for Workstation PCs and Server R. These names are likely not final but do provide the direction that the company is heading with its software roadmaps. While we don't know the specifics about Server R, other than it is likely an optimized version of Server for that language and is likely an evolution of the existing R server SKU, we do know quite a bit about the workstation SKU. Microsoft is positioning this SKU as a new edition of Windows with support for server grade hardware that is designed for mission critical and compute intensive workloads. Key features include enhanced performance, resilient file system (ReFS), faster file sharing and expanded hardware support. In a slide deck that highlights more information about the Workstation version of the OS, Microsoft refers to 'workstation' as a mode to be engaged when intensive graphical and compute applications are utilized. While not confirmed, this feels like Microsoft is bringing more high-end server component style features down to the core OS for those users who wish... --- ### Azure Virtual Machine Announcements from Build > Microsoft made a number of announcements about Azure virtual machines at the recent Build 2017 conference. This post will describe those announcements. - Published: 2017-06-02 - Modified: 2024-09-04 - URL: https://petri.com/azure-virtual-machine-announcements-build/ - Categories: Hyper-V, Microsoft Azure, PowerShell, Virtualization, Windows Server 2016 - Tags: Azure, Azure Site Recovery, Containers, Cross-Region Site Recovery, Dv3-Series, Ev3-Series, Hyper-V, Hyper-V containers, M-Series, NCv2-Series, ND-Series, Nested Virtualization, RAM, virtual machines, Windows Server 2016, WS2016 - Article Type: Overview Aidan Finn goes over several announcements Microsoft made regarding Azure virtual machines at the recent Build conference. Microsoft made several announcements regarding Azure virtual machines at the recent Build conference. This post will describe those announcements.     M-Series Virtual Machines While quietly presented, a new massive series of virtual machines has been announced. How massive? Well, these machines have so many processors and so much RAM that the Hyper-V team had to increase the maximum limits in their testing for Windows Server 2016. Note, the new series of machines mentioned in this article are running on Windows Server 2016 Hyper-V in the Azure data centers. Scott Guthrie has recently been showing off the new M128ms virtual machine during his Red Shirt Tour in Europe. This machine has 128 virtual processors and 3. 5TB RAM. Yes, you read that correctly. It has three point five terabytes of RAM! A page on running SAP on Azure lists three M-Series virtual machines: M64ms: 1. 75TB RAM, 2TB local disk M128s: 2TB RAM, 4TB local disk M128ms: 3. 5TB RAM, 4TB local disk The s designation leads us to believe that the local disk is flash based. A large temp drive would be required to host a paging file for virtual machines with so much RAM. Dv3-Series Virtual Machines We have known about the Dv3-Series of virtual machines for a while. Microsoft introduced a promotional price for Dv2 virtual machines in April and reduced that cost again in May. The goal was to get more people using the D-family of virtual machines. This came with the promise that the new Dv3... --- ### Fine Tuning the Active Directory Searcher - Published: 2017-06-02 - Modified: 2024-09-04 - URL: https://petri.com/fine-tuning-active-directory-searcher/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory Searcher, Intermediate, PowerShell - Article Type: How To Jeff Hicks shares more information on fine tuning the Active Directory Searcher. Last time, we started looking at the Active Directory Searcher object and how to find a single user object. If you missed it, take a moment to get caught up.     If you recall, I created a simple searcher. $searcher = New-Object system. DirectoryServices. DirectorySearcher $searcher. filter = "samaccountname=jeff" My Active Directory (AD) domain is not especially large, so the query does not take long to run. However, you will want to fine tune your search to be as specific and limited as possible. We will look at some filtering techniques later. Right now, I want to focus on search scope by discussing how much AD you will need to search. When you create a search object, it defaults to the domain root for the current logged on user. The Searcher Search Root (Image Credit: Jeff Hicks) When I invoked the FindOne method, it searched the entire domain structure. That may be perfectly acceptable if you have no idea where the object is located. In my case, I know that all active user accounts are under the Employees organizational unit. I will need to know the distinguished name, and assuming that I do, I can reposition my search. $searcher. SearchRoot = "LDAP://ou=employees,dc=globomantics,dc=local" Now the search runs very quickly. Searching For an Object (Image Credit: Jeff Hicks) This search took 27ms and it took 35ms when searching the entire domain. Sure, that is hardly earth shattering but this will make a difference when searching... --- ### Paul Thurrott's Short Takes: June 2 - Published: 2017-06-02 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-2/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because the stress level has hit Defcon-1, this edition of Short Takes looks at Microsoft's intelligent edge, Steve Ballmer's rewriting of history, Skype's SnapChat jealousy, Paul Allen's crazy plane, and much more. Because the stress level has hit Defcon-1, this edition of Short Takes looks at Microsoft's intelligent edge, Steve Ballmer's rewriting of history, Skype's SnapChat jealousy, Paul Allen's crazy plane, and much more. Sorry, the intelligent edge? At recent Microsoft events, the software giant has started discussing a subtle evolution of its "mobile first, cloud first" mantra that it calls "the intelligent edge. " (And "mobile first, cloud first" used to be called "devices and services," remember? ) On the face of things, this concept doesn't seem all that different from "mobile first, cloud first," as it relies on devices that are connected to cloud-based services. But this is a smart change, even if it's just marketing: "Mobile first, cloud first" puts mobile at the beginning of the conversation, and as you must know, Microsoft doesn't really have its own mobile platform anymore. So by moving to "the intelligent edge," Microsoft can achieve the impossible: It's not really a new strategy, but it puts the emphasis on the part of this conversation that Microsoft does control, the cloud. In other words, the devices on "the edge" are intelligent because of Microsoft's cloud services. No matter which devices they are. "How to disable Microsoft Edge's 'First Run' welcome page in Windows 10" Yes, take the time to disable something innocuous that only appears once. Smart. Steve Ballmer regrets not embracing hardware sooner Former Microsoft CEO Steve Ballmer said this week that he was "too slow" in understanding the importance of embracing hardware... . --- ### Microsoft 'Millennializes' Skype With Big Changes to the UI - Published: 2017-06-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-millennializes-skype-big-changes-ui/ - Categories: Messaging - Tags: News, skype - Article Type: News Microsoft is making big changes to Skype's Interface with the hope of attracting more users to the platform with new features targeted at a younger audience. Back in 2011, Microsoft purchased Skype for $8. 5 billion and today the app is used by millions around the globe as it made video calls a simple process.  The application has gone through many transitions during its lifetime but most of those changes have been on the backend as the service updated its infrastructure to adapt to modern architectures. Today, Microsoft is making what might be the biggest change to the communication app that is on the front-end by overhauling all the apps the company supports (iOS, Android, Windows, and Mac). And with the upcoming changes, you will either love or hate them and I suspect the younger demographic will embrace these changes while older users may find the updates less than useful. Microsoft is Millennial-ifying the app. I don't know if this is a word but that's exactly what they have done with the updated apps that are arriving on Android first and iOS to follow shortly after. As you can see from the images in this post, text chat is much more colorful and now uses text on colored backgrounds which is very similar to the feature Facebook rolled out a few months back. From Snapchat, Microsoft is now utilizing the ability to edit photos with stickers and the familiar black bar of text in the middle of images and the company's 'highlights' panel is very similar to stories that first showed up on Snapchat and is now on all of Facebook's products. Each chat window has a wide... --- ### Deploying Azure Virtual Machines with Smaller OS Disks > You can reduce the cost of storage for Azure virtual machines with managed disks by using smaller OS drives. This post will explain why and how. - Published: 2017-06-01 - Modified: 2024-09-04 - URL: https://petri.com/deploying-azure-virtual-machines-smaller-os-disks/ - Categories: Backup & Storage, Microsoft Azure, Virtualization, Windows Server - Tags: Azure, Image, Managed Disks, OS Drive, smalldisk, Standard Storage, storage, virtual machines, Windows Server - Article Type: How To Aidan Finn walks you through deploying Azure virtual machines with smaller OS disks.   Microsoft recently made it possible to deploy a virtual machine from the Azure Marketplace with a smaller-than-usual OS drive. This helps you to reduce your storage costs.     Changes with Managed Disks Microsoft introduced Managed Disks earlier this year. Several technical new features were enabled by Managed Disks but this came at a cost, literally. If you use unmanaged disks or Standard Storage, then you pay for the amount of data that is stored in the virtual hard disks or Hyper-V VHD files. You do not pay for the size of the disks. Let's look at what this means. If you deployed a virtual machine on Standard Storage from a Microsoft image, then the OS disk was 127GB in size. Ignore the disk size that the Microsoft pricing pages and tools use because that refers to the free temp drive. The cost of the virtual machine does not include the cost of the OS disk or data disks, so they must be accounted for. If the C: drive has 20GB of files, then you pay for 20GB of page blob and disk, not for 127GB of disk. Note, Premium Storage is always charged based on the size of the disk, even with unmanaged disks. If you added 4 x 1023GB of unmanaged data disks to that virtual machine and created a 3. 99TB volume using a simple virtual disk from a Storage Spaces disk pool that has 4 times the performance of a single disk, then the same guidance... --- ### Office 365 Groups Support Mail Contacts as Guest Members > Office 365 Groups now support the addition of Exchange Online mail contacts as guest members. This solves a problem for many tenants - Published: 2017-06-01 - Modified: 2024-09-04 - URL: https://petri.com/office-365-groups-mail-contacts/ - Categories: Microsoft 365, Office - Tags: Guest members, Mail contacts, membership, Office 365 Groups - Article Type: News Office 365 Groups now support the addition of Exchange Online mail contacts as external group members. The new feature solves a problem for many tenants but it does not help you to convert old DLs that contain mail contacts. Solving a Problem with External Access Microsoft added support for external people (guest users) to join the membership of Office 365 Groups last year. Because guest user access is based on SharePoint sharing, it works well in terms of letting external people get to the group document library and shared notebook. It does not support direct access to conversations in the group mailbox, but external people can receive copies of conversations via email. Guest user access works by creating a guest user object in Azure Active Directory to allow the external person to identify themselves to the Office 365 tenant. Azure Active Directory uses the email address of the guest user to create a unique User Principal Name and stores the email address in the object’s OtherMails and ProxyAddresses attributes. Although this is an effective approach, it runs into problems when tenants already have mail contacts defined with the same email address. If you attempt to add an email address for a guest user that already exists as a mail contact, youl see the following error: “You are trying to add a contact created by your admin. Contact your admin to add the user as a guest to this group” The Workaround and Some Problems To solve the problem, administrators had to remove the mail contact and then add the user as a guest. This is the approach that I took when I explained how to convert distribution groups with many mail contacts in their membership to Office... --- ### Why You Should Run a Data Inventory Before Your SharePoint Migration - Published: 2017-05-31 - Modified: 2024-11-19 - URL: https://petri.com/run-data-inventory-sharepoint-migration/ - Categories: SharePoint - Tags: Inventory, migration, SharePoint, VisualSP - Article Type: Overview Before you migrate to a newer version of SharePoint or a different environment, always run a complete data inventory. This crucial step will give you clarity over your migration project and help you save a lot of time and money along the way. Are you thinking about migrating to a newer version of SharePoint? There is one common mistake you should avoid: skipping the inventory of your data.     Before you migrate to a newer version of SharePoint or a different environment, always run a complete data inventory. This crucial step will give you clarity over your migration project and help you save a lot of time and money along the way. Any IT professional who has worked on a few SharePoint migration projects will most likely give you the same advice. Running an inventory of your data ensures that your migration project runs smoothly and successfully. It is all about knowing exactly what you have so that you know exactly what to do. Whether your SharePoint environment is on-premises or Online, make sure that you itemize and understand every single piece of data that you have. This information will play an indispensable role in helping you make the right decisions every step of the way. A hassle-free, successful migration depends on it. Find out what all you have: documents, applications, lists, libraries, workflows, sites, site collections, etc. For every document, you should know the answers to these questions: What is the format? How many are there? How big is it? Where is it stored? File Share, DropBox, SharePoint, or the cloud? What is the hierarchy? Which activities surround it? Who are the owners? And more ... Knowing the owners of sites and sites collections is particularly important, as it... --- ### New Sharing User Experience in OneDrive for Business and SharePoint Online - Published: 2017-05-31 - Modified: 2024-09-04 - URL: https://petri.com/new-sharing-user-experience-onedrive-business-sharepoint-online/ - Categories: Microsoft 365 - Tags: File Sharing, Office 365, OneDrive for Business, SharePoint Online - Article Type: How To Microsoft has released the latest sharing experience for SharePoint Online and OneDrive for Business. Find out why Juan Carlos Gonzalez Martin thinks this version is more intuitive and easy to use. Microsoft has once again updated the user experience for sharing files and folders from OneDrive for Business (ODFB) and SharePoint Online (SPO). The new version, currently available in Office 365 tenants in which First Release is enabled, Microsoft has moved away from the classic sharing pop-up window, replacing it for a “callout” like experience, as I will demonstrate in this article. Before presenting this new sharing experience in ODFB and SPO, I have to say that I was a little bit surprised by the update, primarily because this is the third time Microsoft has changed the way Office 365 users can share files and folders across the platform.     To try the new sharing experience, browse your ODFB or a modern SPO document library, select a file or folder, and click Share in the actions bar. New sharing experience in ODFB and SPO As you can see in the above screenshot, the new sharing experience allows you to configure how the user wants to share a file or folder by selecting how the file or folder is going to be shared. In my case, the default sharing option is Anyone with the link can view and edit, which means an anonymous sharing link is going to be generating when clicking the Send button. You can then enter the name(s) or emails(s) of the people you want to share the files or folders with and an optional message where you can type any details about the information files or... --- ### Deploying VHD Sets on Windows Server 2016 Hyper-V > This post will show you how to create a VHD Set, the replacement for Shared VHDX, and deploy it to a new virtual or guest cluster running on WS2016 Hyper-V. - Published: 2017-05-31 - Modified: 2024-09-04 - URL: https://petri.com/deploying-vhd-sets-windows-server-2016-hyper-v/ - Categories: Backup & Storage, Hyper-V, PowerShell, Virtualization, Windows Server 2016 - Tags: Failover Clustering, Hyper-V, PowerShell, Resizing, Shared VHDX, storage, VHD Sets, Virtualization, Windows Server 2016, WS2016 - Article Type: How To Aidan Finn shows you how to deploy VHD Sets on Windows Server 2016 Hyper-V. In this post, I will show you how to deploy VHD Sets on Windows Server 2016 (WS2016) Hyper-V.     Creating a VHD Set A requirement of any cluster disk is that all nodes in the cluster can access it. Therefore, the cluster disk should reside on storage that the guest cluster nodes can access. This is the case regardless of where they go: SMB 3. 0 storage Cluster shared volume (CSV) I can create a VHD Set using New-VHD. This is the same New-VHD as always but now it understands that a virtual hard disk with a . VHDS extension is a VHD Set. The following example will: Create a new VHD set called DBCluster-Witness. VHDS on a host called Host1. Store the VHD Set in folder called VHDSets in a CSV called CSV1. Make the data disk of the VHD set a dynamic 1GB disk. New-VHD -ComputerName "Host1" -Path C:ClusterStorageCSV1VHDSetsDBCluster-Witness. vhds -SizeBytes 1GB -Dynamic The above example is perfect for a witness disk. I can create a data disk too: New-VHD -ComputerName "Host1" -Path C:ClusterStorageCSV1VHDSetsDBCluster-Data1. vhds -SizeBytes 500GB -Dynamic At this point, there are 4 files in the VHDSets folder: DBCluster-Witness. vhds DBCluster-Witness. avhdx DBCluster-Data1. vhds DBCluster-Data1. avhdx Attaching the Disks Now, we need to connect the VHD Set disks to the virtual machines of the cluster. I will connect the two VHD sets to virtual machines called vDB1 and vDB2. First, I will attach the witness disk. Note, we are using Add-VMHardDiskDrive and the -SharedVirtualDisk flag will instruct the virtual machine that... --- ### Use the Update Compliance in Operations Management Suite to Monitor Windows Updates - Published: 2017-05-30 - Modified: 2024-11-19 - URL: https://petri.com/use-update-compliance-operations-management-suite-monitor-windows-updates/ - Categories: Backup & Storage, Security, Windows 10 - Tags: Azure Operational Insights, Compliance, Microsoft Operations Management Suite, Reporting, SCCM, System Center Operations Manager, Windows 10, Windows Update, Windows Update for Business, WSUS - Article Type: How To, Overview Russell Smith shows you how to configure Operations Management Suite's Update Compliance to monitor Windows updates. In today's Ask the Admin, I will show you how to configure Operations Management Suite (OMS) Update Compliance.     Microsoft's OMS, previously known as Azure Operational Insights, is a cloud-based platform for collecting large amounts of telemetry data from devices. It helps to provide greater insight into your environment and operations. While not a replacement for System Center Operations Manager (SCOM), it is useful where organizations would struggle to provision the necessary on-site infrastructure to store and collect the required amounts of data. OMS is made up of different solutions, which can be added to workspaces to collect data and provide information on the workspace dashboard. The Update Compliance solution provides information on the Windows patches installed on each connected device. OMS Update Compliance is a useful companion to Windows Update for Business (WUfB) in Windows 10 because WUfB does not provide the comprehensive reporting of Windows Server Update Services (WSUS) and System Center Configuration Manager (SCCM). For more information on OMS, see What Is Azure Operational Insights? and On Board Servers to Azure Operational Insights on the Petri IT Knowledgebase. The instructions that follow will show you how to set up an OMS workspace and how to set up the OMS Update Compliance solution. Add Update Compliance to Operations Management Suite Workspace The first step is to set up the Update Compliance solution in OMS. Go to the OMS website and click Sign in. Log in using your Microsoft Account. If you are asked... --- ### Planner Mobile App: Another Milestone for the Office 365 Task Management Service - Published: 2017-05-29 - Modified: 2024-09-04 - URL: https://petri.com/planner-mobile-app-another-milestone-office-365-task-management-service/ - Categories: Microsoft 365, SharePoint - Tags: App, Office 365, Planner, SharePoint, task manager - Article Type: Review The Mobile Planner app is another milestone for the Office 365 Task Management Service. Task management is not new in Office 365. SharePoint Online contained a task list for many years. The task list was not bad. We could fill a timeline with important tasks, create subtasks, and open the list in Microsoft Project. Thankfully, time did not stand still. A new task tool called Trello was introduced and became very popular. The card system for tasks was very intuitive and easy to use. Microsoft needed to answer with a similar tool and provided us with Planner. I really liked Planner from the start. The tool is easy to use. The bucket system is really helpful to facilitate your project methods and we finally had a graphical overview of the status of all our tasks. There was always one aspect missing, a mobile app. Finally, the app is here! Let’s take a look at it.       After downloading, installing, and opening the app, we must login: Just enter your Office 365 credentials and you are good to go! The Planner Hub opens: I see my favorite plans and other plans that I am part of. Let’s open a plan and create a new task: Enter a title for the tasks. Next, click on the Calendar icon to set the due date: Very easy! Next, click the People icon to assign the task to your colleagues: Again, very easy to use the app. Now, it is time to provide more details. Click on Add to create the task and open the... --- ### Scaling the PowerShell Active Directory Searcher - Published: 2017-05-29 - Modified: 2024-09-04 - URL: https://petri.com/scaling-powershell-active-directory-searcher/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, Intermediate, PowerShell - Article Type: How To Continuing this series on Active Directory Searcher with PowerShell, Jeff Hicks looks at managing large environments. Over the course of the last several articles, I have been demonstrating how to find Active Directory objects using the Active Directory Searcher Object from . NET and PowerShell. I have purposely kept my examples simple and constrained but today we are running free. I need to show you how to manage large environments.     I know that my domain has 6351 user accounts. Let's see what I get with the searcher object. $searcher = New-Object system. DirectoryServices. DirectorySearcher $searcher. filter = "(objectclass=user)" $all = $searcher. FindAll Total Users Found (Image Credit: Jeff Hicks) Well, that cannot be right. Actually, it is. By default, the searcher object will only return the first 1000 matching objects. Heaven forbid that we ask a server to do any work! The solution is to modify the searcher's PageSize property. The default value is 0. You can set it to a new value and PowerShell will return matching objects in pages or groups of that number. $searcher. PageSize=100 $all = $searcher. FindAll $all. count I have experimented with different page sizes and cannot seem to find any value that is necessarily better than another. I tend to use 100 but you should experiment in your own test environment. Regardless, $all now has 6447 objects! I have cleared the first hurdle and appear to be getting more than 1000 objects. However, I have even more than expected. My searcher is defaulting to the domain root, so I know it is not missing anything. Using my... --- ### Windows 10 Is Running on More than 50 Million Business PCs - Published: 2017-05-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-running-50-million-business-pcs/ - Categories: Windows 10 - Tags: Market Share, Windows 10 - Article Type: News Microsoft's latest operating system, Windows 10, is now running on more than 50 million corporate machines and is continuing to gain more traction in this segment. Microsoft has frequently shared how many computers are running Windows 10 and most recently stated that there are more than 500 million active users of the operating system. But, on the other side of the coin, the company has rarely shared how many corporate customers are running the OS. In a video posted to Microsoft's Windows YouTube channel, the company shares that there are more than 50 million business machines running the operating system. Of course, it's worth noting that this figure also says there are 400 million Windows 10 users as well which we know is an older figure. Still, if we know the figure is above 50 million, that's roughly 12. 5% of the 400 million figure cited which gives us a reference point for estimating the penetration rate of the OS in the business world. Using this same number, we can estimate that there are roughly 62. 5 million business users when comparing it to the 500 million figure released earlier this month. This number does seem a bit low which is likely a good thing. Microsoft expects that its enterprise clients will move to the OS and see that the overall usage of Windows 10 is still mostly made up of consumers, this means they have a huge opportunity ahead to continue to move corporate clients on to the OS and boost their market appeal with developers. It was somewhat surprising that Microsoft has not shared this figure publicly prior to the release of this video. At... --- ### Deciphering PowerShell Providers - Published: 2017-05-26 - Modified: 2024-09-04 - URL: https://petri.com/deciphering-powershell-providers/ - Categories: PowerShell - Tags: Automation, Beginner, PowerShell, Scripting - Article Type: How To Learn what a PowerShell provider does and how it allows a common set of cmdlets to interact with differently-structured data stores. The mere word "provider" can send a shiver down your spine. This is especially true as you contemplate an abstract concept that only developers truly understand. The word is really only a fancy word for adapter or translator.     A PowerShell provider translates a storage system into a concept familiar to developers and non-developers alike, a disk drive. PowerShell comes with a few providers built in, which you can display with the get-PSProvider cmdlet. You will see provider names for stores that you are already familiar with in Windows. In addition, you can also see which built-in drives are accessed by which provider. Besides the C drive, which is listed under the FileSystemProvider, the rest of these “drives” are not actual drives. Many are stores that Windows administrators are familiar with. Navigating a FileSystem Drive All the drives have a similar structure: They all have a root or entry point into the drive, also known as the parent. They can all have children. The type of children varies by provider. Typically, there are two types of children, container children and endpoint children. The simplest example is a filesystem drive. It has a root and the drive or mount point itself. It can have a container child/directory or an endpoint child/file. You navigate the file system using the cd alias, the set-location cmdlet to move between folders, and the dir alias or the get-childitem cmdlet to list the files. How Do Providers Help Me? The providers... --- ### What Are Shared Virtual Hard Disk Sets on Windows Server 2016 Hyper-V? > This post explains how VHD Sets offer a new way to do virtual cluster storage on WS2016 Hyper-V, with support for backup, resizing, and Hyper-V Replica. - Published: 2017-05-26 - Modified: 2024-09-04 - URL: https://petri.com/shared-virtual-hard-disk-sets-ws2016-hyper-v/ - Categories: Cloud Computing, Hyper-V, Virtualization, Windows Server 2012, Windows Server 2016 - Tags: Backup, Failover Clustering, Hyper-V, Hyper-V Replica, resize, Shared VHDX, storage, VHD Sets, Windows Server 2016, WS2016 - Article Type: Overview Aidan Finn explains what Shared Virtual Hard Disk Sets are and why to use them to create shared virtual storage on Windows Server 2016 Hyper-V. This post will explain what Shared Virtual Hard Disk (VHD) Sets are and why to use them to create shared virtual storage on Windows Server 2016 (WS2016) Hyper-V.     Shared VHDX Hyper-V clusters allow us to have high availability (HA) at the host level but it does nothing for solving service HA. The best solution for this is to develop or acquire applications that have HA built into the application layer. All too often, we need to create clusters to allow service failover. This means that we need to build a cluster from virtual machines. A requirement of clustering is that the data of the service is placed in storage that both cluster nodes can access. Traditionally, this was a SAN but other options appeared, such as SMB 3. 0 and Storage Spaces in Windows Server 2012 (WS2012). We can use iSCSI, virtual fiber channel, and SMB 3. 0 for cluster storage with Hyper-V virtual machines but this causes a problem. Normally, virtualization administrators dislike when the guest layer crosses a boundary to the physical layer. An example of this is when a guest OS connects to an LUN in a SAN. This boundary crossing is a total no-no in hosting or cloud computing. WS2012 R2 included a way to create completely virtual guest clusters. A VHDX file was created and connected to the SCSI controllers of two virtual machines. Keep in mind, sharing had to be enabled on the connection. Each virtual machine saw the disk as SAS storage,... --- ### Paul Thurrott's Short Takes: May 26 - Published: 2017-05-26 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-26/ - Categories: Cloud Computing, Hardware, Mobile, Security, Windows 10, Windows 7, Windows Client OS - Tags: News - Article Type: Overview Because it's my 27th anniversary, this edition of Short Takes looks at WannaCry's sad final statistic, the Windows 10 Creators Update rollout, the new Surface Pro, Andy Rubin, and much more. Because it's my 27th anniversary, this edition of Short Takes looks at WannaCry's sad final statistic, the Windows 10 Creators Update rollout, the new Surface Pro, Andy Rubin, and much more. With WannaCry in the rearview mirror, common sense finally rears its ugly head Last week, I assailed all of the baloney around the WannaCry ransomware attack, with critics accusing Microsoft of being at fault and, worse, further accusing the software giant of making things worse by charging Windows XP users for a fix. Well, I was too kind to these idiots, as it turns out. Contrary to the Chicken Little scare-mongering reporting at The Financial Times and elsewhere, fully 98 percent of those impacted by the attack were running Windows 7, and not Windows XP. In fact, the number of Windows XP-based PCs impacted by this attack was "insignificant," and was somewhere under 0. 2 percent of all impacted PCs. Folks, you gotta let this one go: No, Microsoft should not be forced to update out-of-support versions of Windows, especially for free. There is just no good reason to do so. "ANOTHER big reason why Windows 7 users should upgrade to Windows 10 right NOW" The all-caps tells me that you ARE A TROLL, not that this is IMPORTANT. Windows 10 Creators Update is "on track," Microsoft says After the ugliness of the Windows 10 Anniversary Update last year, Microsoft is understandably concerned about getting it right for the latest Windows 10 feature update, called the Creators Update... . --- ### Deploying Software Using Desired State Configuration - Published: 2017-05-25 - Modified: 2024-09-04 - URL: https://petri.com/deploying-software-using-desired-state-configuration/ - Categories: PowerShell, Windows Server - Tags: Automation, deployment, Desired State Configuration, PowerShell, Windows Server - Article Type: How To While other commercial products may be more robust, there are a few different ways Desired State Configuration can be used for software deployment. Desired State Configuration (DSC) is an awesome configuration management tool that is built into Windows on top of PowerShell. It allows administrators to declare what the state of a server should look like. The DSC agent, known as the Local Configuration Manager, will check for compliance with the desired state. If necessary, it will correct.     Configuration Management or Software Deployment? Throughout the PowerShell community, many administrators want to use DSC as a software deployment mechanism. While this is possible, DSC should not take the place of System Center Configuration Manager (SCCM) or any other third-party software deployment product. There are a couple of options for DSC configurations to deploy software. You may find as you navigate down this path that there are other less cumbersome options. The Package Resource The first option is to deploy software using the built-in Package Resource. The package resource deploys software contained in MSI files. It requires: Name: This is the name of the software package. Path: This is the path to the MSI file. Product ID: This is the GUID of the version of the software to install. Finding the Product ID from an MSI is fairly easy. I found the Product ID of my sample MSI file on the properties of the file itself. It was under the Details tab of the Origin section. I did not find a PowerShell command to retrieve it from the MSI file itself. If you install the software on a test... --- ### What Is the Storage Resiliency of Windows Server 2016? > This post will explain how Storage Resiliency decreases downtime for virtual machines running on Windows Server 2016 Hyper-V. - Published: 2017-05-25 - Modified: 2024-09-04 - URL: https://petri.com/storage-resiliency-windows-server-2016/ - Categories: Backup & Storage, Hyper-V, Windows Server 2012, Windows Server 2016 - Tags: High Availability, Hyper-V, storage, Storage Resiliency, virtual machines, Windows Server 2016, WS2016 - Article Type: How To Aidan Finn explains how storage resiliency decreases downtime to virtual machines that are running on Windows Server 2016 Hyper-V. In this post, I will explain how storage resiliency decreases downtime to virtual machines that are running on Windows Server 2016 (WS2016) Hyper-V. This is caused by transient storage issues.     Storage Is Not Perfect No matter how much money you spend on storage, outages will happen. Some folks think that because they have spent a fortune on switches, SAN controllers, disk trays, disks, and cables that downtime will never occur to them. I do love to burst bubbles! Sadly, no storage system is impervious to problems. I have known of a few sites, including a rumor of a certain large software and services company, that have had massive SAN outages. This can lead to corrupted data. Those headline outages are few and far between. More commonly, you will see the transient error. This is the brief glitch in the controller software, a faulty switch port, or an operator pulling the wrong cable. This is the sort of error that even though it only lasts a few seconds, can cause significant service disruption. Let's pretend that there is a storage glitch in your virtualization farm. Each of your virtual machines is performing reads/writes or inputs/outputs (IO) to the storage system. As soon as the glitch happens, the guest OS of each virtual machine will detect a failed IO. It will do what every operating system does. It will protect the integrity of itself and the hosted services by crashing. After a few seconds, the glitch ends. This... --- ### The Biggest Threat To Microsoft's Future is Artificial Intelligence - Published: 2017-05-25 - Modified: 2024-09-04 - URL: https://petri.com/biggest-threat-microsofts-future-artificial-intelligence/ - Categories: Cloud Computing - Tags: artificial intelligence, Google, Microsoft, News - Article Type: News The next revolution in computing is around the corner and for Microsoft, if they miss this opportunity it stands to destabilize the entire company. During the past decade, Microsoft has found a way to align itself to the future of the tech sector by building out a massive cloud infrastructure that the company calls Azure. In addition, by turning its software into a service model, the company has been able to dramatically change up its software business operations and has aligned itself well for the short-term future. Sure, the company has not had a perfect record and they missed out in the mobile segment but of the large tech brands from the 90s, they are one of the few that are still around. And they are not simply still 'around' but they are relevant and create software used by billions of users around the globe.   This changing of strategy with software and building out the next generation of computing with the cloud will keep the company relevant and in the headlines but the next generation of computing is on the horizon and is likely the biggest threat to Microsoft's long-term success. Artificial intelligence will not only change how and where compute happens but also the underlying structure of the technology that we use every day. Today, Windows is the de facto operating system for the desktop and that brand is also carried over into enterprise operations with Windows Server. Then there are products like SQL Server that are a foundational component of the company's cloud and baked into all of this is Active Directory for identity management. Yes, this dramatically simplifies the... --- ### Microsoft’s Crusade to Convince Office 365 Tenants to Move Away from Distribution Groups > Microsoft really wants Office 365 tenants to migrate old email distribution lists to Office 365 Groups. Is their enthusiasm just a tad too much? - Published: 2017-05-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-crusade-office-365-groups/ - Categories: Microsoft 365, Office - Tags: conversion, distribution group, DL, EAC, Exchange Online, New-UnifiedGroup, Office 365 Groups, owa, Teams - Article Type: Opinion Microsoft is very keen that Office 365 tenants should move away from email distribution groups to embrace the world of Office 365 Groups. There is lots to like about Groups, but I have some doubts about the way Microsoft is cajoling people to move. Please Convert Your Old Distribution Groups A Microsoft blog post in April 2017 reported that “more than 10 million people rely on Groups in Outlook every month to work together and get things done. ” Although 10 million is a substantial number and sounds impressive, it is still only 10% of the overall monthly active user count for Office 365. In other words, the transition to modern groups is still a work in progress. It is obvious that Microsoft is experimenting with different approaches to drive adoption. Skeptics will say that this strategy is to embed tenants more deeply in the Office 365 ecosystem so that customers will never be tempted to move. A more charitable view is that it’s just a gentle encouragement for tenants to explore the extensive functionality available through Groups. Sometimes the plans go wrong, like the ill-fated plan to automatically generate Office 365 Groups for the direct reports of managers. Creating new objects in customer GALs without their say-so is not a good thing, Upgrading old objects to new is a different matter. Email distribution groups (or DLs) have existed forever, or at least since the very earliest email systems. DLs exist in every modern email system and are a simple, effective method of communicating with large numbers of recipients. Office 365 Groups only exist in the cloud, but Microsoft expects that Office 365 Groups will replace DLs in tenants for many scenarios over the next few years. And to help move things forward, Microsoft has a... --- ### New Azure Active Directory Admin Experience Is Generally Available > The new Azure AD administrator interface has gone generally available in the Azure Portal for administrators of all Microsoft enterprise cloud services. - Published: 2017-05-24 - Modified: 2024-11-19 - URL: https://petri.com/new-azure-active-directory-admin-experience-generally-available/ - Categories: Microsoft 365, Microsoft Azure - Tags: ARM, Azure, Azure Active Directory, Azure Portal, Cloud Solution Provider, Microsoft, Office 365, Tenant - Article Type: Overview Microsoft finally launched an updated interface for managing Azure Active Directory in the Azure Portal, which makes it available for administrators of all Microsoft enterprise cloud services. Microsoft finally launched an updated interface for managing Azure Active Directory (Azure AD) in the Azure Portal on May 15th. It is available for administrators of all Microsoft enterprise cloud services. Managing Azure Active Directory Before May 15th, many of us were in a bit of a quandary with Azure AD. Those of us that were using ARM-only subscriptions, such as the Cloud Solution Provider (CSP), were left in the lurch. Azure AD is the glue that holds together Microsoft's cloud services. This identity system provides administrators with a way to access systems and enable users to authenticate against cloud services. Many cloud newbies are unaware of Azure AD. Those user accounts reside behind the likes of Office 365. For very basic work, the Office 365 portal offers enough of a GUI. For large scale operations, PowerShell can be useful. Once you get beyond resetting passwords and creating the occasional Office 365 group, you will need the power of an Azure AD interface. For example, if you want to use any of the features of Azure AD Premium, you really need an Azure AD tool. Historically, this tool was the Azure management portal but that tool is not available to anyone with an ARM-only subscription. We are restricted to the newer Azure Portal. However, this newer interface did not have a UI for Azure AD. Those of us that jumped into the CSP channel early, had to learn complicated hacks to open our tenants or Azure AD domains in the management portal. It... --- ### Expanding the Active Directory Searcher and PowerShell - Published: 2017-05-24 - Modified: 2024-09-04 - URL: https://petri.com/expanding-active-directory-searcher-powershell/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, Active Directory Searcher, Intermediate, PowerShell - Article Type: How To Learn about using Active Directory Searcher in this series. I hope by now that you are comfortable using the Active Directory Searcher object. If you have no idea what I am talking about, take a few minutes to get caught up on the previous articles, Discovering the Active Directory Searcher with PowerShell and Finding Groups with the Active Directory Searcher and PowerShell.     Let's expand the scope and find multiple objects with user accounts. $searcher = New-Object system. DirectoryServices. DirectorySearcher $searcher. SearchRoot = "LDAP://ou=employees,dc=globomantics,dc=local" $searcher. filter = "(objectclass=user)" $props = "distinguishedname","name","samaccountname","title","department","directreports", "whencreated","whenchanged","givenname","sn","userprincipalname","adspath" foreach ($item in $props) { $searcher. PropertiesToLoad. Add($item) | out-null } I have limited my search to an OU that contains my active user accounts. I have also specified the properties I want to retrieve. Once the searcher is configured, I can find all matching objects. Finding All User Objects (Image Credit: Jeff Hicks) Let's look at a representative sample. A Search Result (Image Credit: Jeff Hicks) As we looked at before, it might be nice to clean this up and create an object to write to the pipeline. foreach ($user in $all) { $h = @{} foreach ($p in $props) { $value = $user. Properties. item($p) if ($value. count -eq 1) { $value = $value } $h. add($p,$value) } new-object psobject -property $h } Creating a Better Result Object (Image Credit: Jeff Hicks) Because the result properties are treated as collection objects, I needed to expand them. I still wanted to keep properties that were actual collections, like directreports. I tested... --- ### Microsoft Announces a New Surface Pro, Refreshes Branding and Marketing - Published: 2017-05-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-new-surface-pro-refreshes-branding-marketing/ - Categories: Hardware - Tags: News, Surface Pro - Article Type: News Microsoft has announced a new Surface Pro that is an iterative update but also packs a few key new features like an improved hinge, pen, and silicon. Today in Shanghai, Microsoft announced a new Surface Pro and it's not called the Surface Pro 5 or the Surface Pro 4 Refresh but simply Surface Pro. Microsoft is doing away with the number designation and is taking an Apple-like approach to naming it's hardware products which likely means when the Surface Book is refreshed, it will still be called the Surface Book instead of Surface Book 2. The new Surface Pro begins shipping June 15th (same as the Surface Laptop) with a starting price of $799, notably $200 cheaper than the Laptop. Sporting 13. 5hrs of battery life (current Pro 4 only gets 9 hrs) and a 12. 3in PixelSense display, the 7th gen processors will also provide more performance. One other significant change is that Microsoft has made the m3 and i5 versions both fanless; these devices will be incredibly quiet during operations although I do have my concerns about the i5 being possibly throttled as that chip will run hotter than the m3. The display is nearly the same as the last generation but the graphics chips are getting a bump and included the Intel HD Graphics 615 (m3), 620 (i5) and Iris Plus 640 (i7) which should help make the device perform better with multimedia content. Microsoft is also making changes to the hinge and it can now open to 165 degrees to what Microsoft calls Studio mode. This feature makes it easier to draw on the display and will allow the device to work more... --- ### Azure Active Directory Connect Makes Cloud Single Sign-On Easy - Published: 2017-05-23 - Modified: 2024-09-04 - URL: https://petri.com/azure-active-directory-connect-makes-cloud-single-sign-easy/ - Categories: Active Directory (AD), Cloud Computing, Security - Tags: Active Directory Federation Services, Authentication, Azure AD, Azure AD Connect, cloud computing, DMZ, Office 365, Security, SSO, SSPR, Windows Server - Article Type: How To, Overview Russell Smith outlines two new features of Azure Active Directory Connect, Seamless Single Sign-On and Pass-Through Authentication. Azure Active Directory (Azure AD) Pass-Through Authentication is now in preview and makes providing Single Sign-On (SSO) capabilities in the cloud super easy. It also keeps passwords on-premises without having to deploy Active Directory Federation Services (ADFS).     Organizations that want to use Azure AD to manage access to cloud apps, but also want to centralize account management in on-premises Active Directory (AD), currently have several options. Only ADFS provides true SSO capabilities and the security that organizations demand. This is changing with a new lightweight solution built into Azure Active Directory Connect (Azure AD Connect). Azure Active Directory Cloud -- Synchronized and Federated Identities Before describing the new features in Azure AD Connect, it is worth understanding the existing types of Azure AD identities and the different authentication features provided by each one. Cloud-only identities are useful when there is no on-premises Windows Server Active Directory (WSAD) but require usernames and passwords to be managed separately. This leads to increasing administration costs. Azure AD Connect can be used to create synchronized identities in Azure AD from on-premises AD accounts. This does not provide real SSO capability. Users must provide their credentials again after they have signed into Windows to access cloud services. ADFS provides federated identities with true SSO and it is compatible with multifactor authentication. Password hashes are never synchronized to the cloud. Other AD features, such as account login restrictions, also work with Azure AD. ADFS is complicated to set up and... --- ### Recent Outlook and OWA Enhancements Disappoint On-Premises Exchange Customers > Microsoft has provided many recent updates for Outlook but the new functionality often only works for Office 365 users. That's sad for on-premises users. - Published: 2017-05-23 - Modified: 2024-11-19 - URL: https://petri.com/on-premises-exchange-owa-outlook-enhancements/ - Categories: Exchange 2013, Exchange 2016, Exchange Online, Microsoft 365, Office, Office 2016 - Tags: Exchange on-premises, Exchange Online, Office 365, Outlook, owa - Article Type: Opinion Microsoft is obviously putting a lot of effort into improving the functionality available in the OWA and Outlook clients, but only for Office 365 users. It’s now got to the point where on-premises customers must be wondering where their next update will arrive. The answer may be “Never”. Outlook and OWA Offer Great Functionality, but Only for The Chosen A reader of Microsoft’s announcements on the blogs. office. com site can only be impressed by the blizzard of functionality that has dropped into the laps of users. The server can automatically create events based on travel reservations. People can address each other with @mentions. Important messages are sorted with the Focused Inbox (unless you use Outlook desktop, in which case you're still waiting). And if you need to share a calendar, Outlook and OWA now makes it so easy. Not to mention that well-regarded Archive folder so thoughtfully provided to store items of interest. And Microsoft even drops in new features into OWA without mentioning that they are doing it, which is what happened when the ability to select text to quote in replies appeared to First Release tenants a few days ago (Figure 1). Select some text, click quote, and voila - OWA creates a message with the text quoted in the same way that Markdown blockquotes work in Teams. The quote marks show up quite nicely in OWA and Outlook for iOS and Android, but not yet in Outlook desktop. Figure 1: OWA's new ability to select text for quoting in replies It all sounds wonderful, unless you’re one of the great unwashed whose mailbox remains firmly anchored to an Exchange on-premises server. All the recent changes made to Outlook and OWA (including OWA's Undo Send feature) require an Exchange Online mailbox. In short, life is... --- ### Microsoft Lets China's Government Use its Own Encryption in Windows 10 - Published: 2017-05-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lets-chinas-government-use-encryption-windows-10/ - Categories: Windows 10 - Tags: China, News, Windows 10 - Article Type: News Microsoft has built a customized version of Windows 10 for China that has new features including the ability to change the encryption algorithms. Image credit: Associated Press Today, Microsoft hosted an event in China where the company announced an updated Surface Pro and that the version of Windows 10 designed for the Chinese government is now ready for use. This version of Windows was created in partnership with CETC and will soon be available on devices from Lenovo. Windows 10 has had a few publicity issues with users being concerned that Microsoft is spying on them by logging too much telemetry about what they are doing on their PC. With China being a critical market for Microsoft, the company was willing to go the extra mile to make sure that this OS finds a home in this region of the world that is known for pirating software; Steve Ballmer once stated that 9 out of 10 copies of Windows XP running in China were pirated. The version of Windows 10 for China's Government is based on Windows 10 Enterprise and will have additional options to remove unwanted features from the OS. Microsoft specifically cites that government employees will be able to remove OneDrive and fully manage all telemetry and updates. Additionally, with this version of Windows will allow the government to use its own encryption algorithms as well. Seeing as this functionality is now possible in a version of Windows, you'd expect other governments (and users) to demand the same functionality as well. For Microsoft, this will hopefully be a big win for the company. China is a... --- ### Finding Groups with the Active Directory Searcher and PowerShell - Published: 2017-05-22 - Modified: 2024-09-04 - URL: https://petri.com/finding-groups-active-directory-searcher-powershell/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, Groups, Intermediate, PowerShell, Remote Server Administration Tools - Article Type: How To In this series, Jeff Hicks continues looking at ways to use the Active Directory Searcher with PowerShell. We will continue looking at ways to use the Active Directory Searcher with PowerShell. If you are just joining in, you might want to start at the beginning with this article. If you have been following along, you know that this is a powerful way to work with Active Directory. It works without requiring the Active Directory module that is a part of Remote Server Administration Tools (RSAT). Let's start with a fresh searcher object on a domain member that is configured with a filter to find group objects.     $searcher = New-Object system. DirectoryServices. DirectorySearcher $searcher. filter = "(objectclass=group)" We will leave the search root alone, which will default to the domain root. Let's see what type of object we can find.   Getting an AD Group Object (Image Credit: Jeff Hicks)   Even though this is a group, it is still an Active Directory search result. This means that I can use techniques from my previous articles like specifying the properties to retrieve and Convert-ADSearchResult function. $props = "distinguishedname","name","member","description", "whencreated","whenchanged","grouptype" $searcher. PropertiesToLoad. Clear foreach ($item in $props) { $searcher. PropertiesToLoad. Add($item) | out-null }   Now, I can get all the groups in my domain. A Sample Group (Image Credit: Jeff Hicks)   I can look at $groups by itself. I can also pipe it to Out-Gridview or Export-Csv. Really, I can do just about anything I want with it. There is one bit of information that is not readily apparent in the output. It is... --- ### Shut Down Remote Workgroup Computers - Published: 2017-05-22 - Modified: 2024-09-04 - URL: https://petri.com/shut-remote-workgroup-computers/ - Categories: PowerShell, Windows 10, Windows Client OS - Tags: Active Directory, firewall, Operations Management, PowerShell, uac, Windows 10, Windows Management Instrumentation - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to shut down a remote workgroup computer using PowerShell. In today's Ask the Admin, I will show you how to shut down a remote workgroup computer using PowerShell.     The easiest way to shut down remote Windows 10 devices in a workgroup is by using the PowerShell Stop-Computer cmdlet. This is for those that are not part of an Active Directory domain. Before you can use it, you will need to perform the following three steps on each remote device: Enable file and printer sharing. Enable remote administration firewall exceptions. Change UAC policy for remote administrators. Enable File and Printer Sharing Before you can run psshutdown against a remote machine, you will need to enable file and printer sharing on each remote device that you want to shut down. File and printer sharing is disabled by default on workgroup devices. The quickest way to achieve this is by using the command prompt. You will need to open a PowerShell prompt with administrative privileges and run the command below: netsh advfirewall firewall set rule group="File and Printer Sharing" new enable=yes Enable Remote Administration Stop-Computer uses Windows Management Instrumentation (WMI) and requires some firewall ports to be open on each remote device. The following command is deprecated but it still works. It seems to be the only easy way to enable the necessary firewall exceptions for remote administration on a workgroup Windows 10 device. netsh firewall set service type=remoteadmin mode=enable Change UAC Policy UAC strips administrator accounts, which connect remotely, of their admin privileges by default... . --- ### Microsoft Introduces Low Priority VMs to Cut Batch Processing Pricing - Published: 2017-05-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-introduces-low-priority-vms-cut-batch-processing-pricing/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News - Article Type: News Microsoft is introducing a way to complete batch processing jobs in Azure with pricing reductions of up to 80% if you are willing to live on the fringe of capacity. Microsoft's Build conference was packed with announcements including everything from CosmosDB to more flavors of Linux running inside of Windows 10. One item that I missed is that Microsoft has introduced a way to perform batch computing at significantly reduced costs. By using low-priority VMs, Microsoft is enabling a way to use Azure Batch with price reductions of up to 80%. Low-priority VMs are spare capacity in each region which does vary by location and VM size but each region does have additional capacity at certain times of the day that can now easily be accessed using this new service. The idea is quite simple, for batch processing jobs that are not time sensitive and are flexible on when the compute job can be completed, this new service will reduce the cost to complete the process. Microsoft warns that these significantly reduced priced VMs may not always be available and that if you are using low-priority VMs and a higher priority job is initiated, you may lose the ability to complete your batch process; hence the name low-priority. These types of VMs are ideal for media processing and transcoding, rendering, testing of services and of course, batch processing. If you do a have a process that is interrupted if the VM is no longer low-priority, the service will attempt to find additional capacity elsewhere or it will be automatically re-queued and re-run if necessary. The goal here is quite simple for Microsoft, being able to extract additional value... --- ### Using RPOs and RTOs to Drive Your Disaster Recovery Strategy - Published: 2017-05-22 - Modified: 2024-09-04 - URL: https://petri.com/using-rpos-rtos-drive-disaster-recovery-strategy/ - Categories: Backup & Storage - Tags: Disaster Recovery, Restore Point Objectives, Restore Time Objectives, RPOs, RTOs - Article Type: Overview When you’re creating a disaster recovery strategy for your business, there are two main criteria that you need to consider: your Restore Point Objectives and your Restore Time Objectives. Take a look at how your RPOs and RTOs affect your DR strategies. When you’re creating a disaster recovery (DR) strategy for your business, there are two main criteria that you need to consider: your Restore Point Objectives (RPOs) and your Restore Time Objectives (RTOs). Although these acronyms sound complex, the idea behind them is fairly straightforward. Let’s have a closer look at how your RPOs and RTOs affect your DR strategies.     Determining Your RPOs To better understand what your RPO is you should ask yourself “How much data can I afford to lose if a disaster occurs? ” Your RPO represents the amount of data loss that your organization is able to sustain in the event of a disaster. As you might expect, this varies greatly between different organizations as well as different applications within an organization. Some businesses, such as banking and financial organizations, have zero tolerance for data loss. Others, such as many small manufacturers, can tolerate a couple days’ worth of data loss and can therefore afford to have a much higher RPO. Determining Your RTOs Similarly, to understand what your RTO is you should ask yourself “How long can I can afford to be without service if a disaster occurs? ” For online retailers, such as Amazon, every minute of downtime costs hundreds of thousands of dollars and they can’t afford any downtime at all if possible. For these types of businesses it’s worth the extra costs to ensure maximum ability even in the event of a disaster. Conversely, a small or medium-sized office firm might... --- ### Modern SharePoint Web Parts : Document Library and List Web Parts Are Finally Here! - Published: 2017-05-19 - Modified: 2024-09-04 - URL: https://petri.com/modern-sharepoint-web-parts-document-library-list-web-parts-finally/ - Categories: Microsoft 365, SharePoint - Tags: Document library, GitHub, Modern SharePoint Team Site, Office 365, SharePoint, Web Parts - Article Type: How To The Modern SharePoint Team Site releases Document Library and List Web Parts, which provides for an easier and more user-friendly experience for business users. I was very happy with the release of the modern SharePoint experiences for our beloved SharePoint Team Site. The usability of modern document libraries has become easier and more user-friendly. Is it perfect? No, but it is a huge step in the right direction in simplifying SharePoint for business users.  Believe me, this is going to improve and increase the adoption of your Office 365 and SharePoint implementations.     Team Site Homepage The modern home page makes use of modern web parts. For example, the activity web part:   This is one of my favorite web parts. In one overview, every member sees the latest and most important activities of the Team Site. Imagine, you have been away for a couple days and with one glance you are up-to-date and ready to dive into action. It is very easy to add new modern web parts by clicking on the + symbol: These are all the available modern web parts. There are not as many available compared to the classic web parts. Microsoft is working overtime to update the existing web parts and provide new web parts. The web parts are built with the SharePoint Framework. You can create your own, so definitely hook up your developers. Get them up to speed. There are 40 modern web parts available on Github created by Olivier Carpentier. I recommend you download these 40 awesome web parts. Two common and old school SharePoint web parts were missing from the start, Document Library and List... --- ### Paul Thurrott's Short Takes: May 19 - Published: 2017-05-19 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-19/ - Categories: Cloud Computing, Mobile, Windows Client OS - Article Type: Opinion Because nothing happens quickly in New Orleans, this edition of Short Takes on a ransomware attack. WannaCry, WannaCry, WannaCry. Why does it always have to be WannaCry?! Because nothing happens quickly in New Orleans, this edition of Short Takes on a ransomware attack. WannaCry, WannaCry, WannaCry. Why does it always have to be WannaCry? ! WannaCry is just the latest example of Microsoft's biggest problem Which is that the software giant can't win no matter what it does. You are no doubt familiar with the WannaCry ransomware attack from the past week. That Microsoft fixed the flaw that this attack exploits two months ago. And that it took the unprecedented step of releasing a patch for the years-out-of support Windows XP despite the fact that it said it never would and that no one responsible should be running this OS now. And that, yes, everyone is blaming Microsoft anyway. Because of course they are. "All New Windows 10 Has A Serious, Unfixable Problem" Is that problem your ceaseless FUD about Windows 10? WannaCry is not Microsoft's fault If you're looking to point the finger of blame for WannaCry, I think we can find some better culprits than Microsoft. For example, the hackers responsible for this attack are an obvious place to start. The businesses---which include hospitals and other medical facilities, banks, and more---that are still inexplicably running Windows XP and putting their customers's data in harm's way. And yes, sorry, also the over-cautious IT staffs at businesses around the world who delay Microsoft security patches for far too long because they are in some cases trying to justify their employment or have just lost sight of... --- ### Hyper-V Virtual Machine Groups > This post explains how to use VM Groups, a way to manage and orchestrate (Hyper-V Replica with VHD Sets) a set of virtual machines on WS2016 Hyper-V. - Published: 2017-05-19 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-virtual-machine-groups/ - Categories: Hyper-V, Virtualization, Windows Server 2016 - Tags: GUI, Hyper-V, hyper-v manager, PowerShell, Virtual Machine Groups, virtual machines, VM Groups, Windows Server 2016, WS2016 - Article Type: How To, Overview Aidan Finn shows you how to use virtual machine groups on Windows Server 2016 Hyper-V to manage a set of virtual machines, including adding support for operational actions on VHDX Sets. In this post, I will show you how you can use virtual machine groups on Windows Server 2016 Hyper-V to manage a set of virtual machines. This includes adding support for operational actions on VHDX Sets, such as Hyper-V Replica. What Are Virtual Machine Groups Let's say that you had a set of one or more virtual machines that you wanted to perform some repeatable tasks against. Maybe you need to perform an orchestrated action. An example of this would be enabling Hyper-V Replica against a pair of virtual machines that share some VHDX Sets, such as shared VHDX v2. 0. We can use virtual machine groups to perform these actions. Creating a Virtual Machine Group All virtual machine group actions are performed using PowerShell. There is no GUI option in Hyper-V Manager. The relevant cmdlets identify virtual machines only by the object and not by the name. In larger deployments such as a private cloud, virtual machine names can be reused by different tenants or customers. Make note, failover clustering has a different kind of group for ordering the failover of virtual machines. We can create a new virtual machine group using the New-VMGroup cmdlet. The -type flag is instructing Hyper-V to create a virtual machine group. We also have another type called a management group, which we will look at later. New-VMGroup -Name "CrmDBClu" -GroupType VMCollectionType I can add a single virtual machine to this new group. This is shown below. I am using the name of... --- ### 6 Steps to Prevent WannaCrypt and Other Ransomware > Learn how to prevent ransomware such as WannaCrypt & CryptoLocker from damaging your business using these 6 best practices steps. - Published: 2017-05-19 - Modified: 2024-09-04 - URL: https://petri.com/6-steps-to-prevent-wannacrypt-other-ransomware/ - Categories: Security - Tags: Advanced Threat Protection, Antivirus, ATP, cryptolocker, Malware, Patching, Ransomware, Security, wannacrypt, Windows - Article Type: Overview Take a look at the steps which, when taken together, should minimize your risks of being successfully attacked by ransomware such as WannaCrypt, CryptoLocker, and a plethora of other variants that are ravaging businesses of all sizes around the world. This post will list a number of steps which, together, should minimize your risks of being successfully attacked by ransomware such as WannaCrypt, CryptoLocker, and a plethora of other variants that are ravaging businesses of all sizes around the world. Note: There has been some advice specifically for WannaCrypt such as disabling SMBv1, but this article focuses more of general practices for dealing with ransomware.     Background WannaCrypt made mainstream news headlines on Friday, May 12, but for at least 12 months before that, ransomware has been quietly squeezing money out of businesses around the world. Ransomware isn't like traditional hacking, which normally focuses on government and large enterprises. Ransomware targets the vulnerable, those that have to pay up because they have no choice. Note: MVP Troy Hunt, a known Microsoft security expert, has posted a good breakdown of WannaCrypt here. WannaCrypt uses SMB to spread, and Microsoft has been begging people to disable SMBv1 and dump products that require SMBv1. Ransomware is the electronic version of a protection racket. Mostly run by organized crime, a ransomware attack enters a company, often by an email attachment that is crafted (with a specific target) or automated (from the contact list of a previous victim). An unwitting employee sees a reasonable looking attachment, opens it, and some time later (it could be days), the malware spreads across the network and encrypts every document that it can find. Users are informed, either by ransom notes left in affected folders or an... --- ### Windows Server 2016 Joins Windows Insider Program - Published: 2017-05-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-joins-windows-insider-program/ - Categories: Hyper-V, Windows Server, Windows Server 2016 - Tags: Build 2017, Hyper-V, Microsoft, RTM, Windows Insider, Windows Server 2016, Windows Subsystem Linux - Article Type: News Windows Server 2016 is joining the Insider Program this summer. Windows Server 2016 is joining the Insider Program this summer.     Microsoft has not said much about how it intends to update Windows Server 2016. We are still on the Release to Manufacturing (RTM) version that was released last fall. New features have been announced for Windows Server 2016, such as the ability to run Linux containers directly on Windows using Hyper-V and that the Windows Subsystem for Linux (WSL) will be added to support this initiative. When these features will appear is less clear. On the first day of Build 2017, Microsoft announced that Windows Server 2016 would join the Windows Insider Program this summer. And although that still does not give us a clear idea of when and how Windows Server 2016 will be updated, it will give users a chance to test new features and fixes ahead of any official release. Users will be able to download regular and frequent builds of Windows Server and container images via the Windows Insider Program. You can sign up to join Windows Insiders using your Microsoft account. Windows Insider Program for Business If you are planning to test pre-release builds of Windows 10 or Windows Server 2016 in your organization, the Windows Insider Program for Business allows employees to sign up with their organization accounts. Microsoft hopes that it will allow the collection of feedback within organizations to resolve critical issues faster. --- ### Bypass the Lock Screen in Windows 10 - Published: 2017-05-18 - Modified: 2024-09-04 - URL: https://petri.com/bypass-lock-screen-windows-10/ - Categories: Hyper-V, Windows 10, Windows Client OS - Tags: Hyper-V, Remote Desktop Connection, Remote Desktop Services, Security, Windows 10 - Article Type: How To In today's Ask the Admin, I will show you how to set up Windows 10 to bypass the lock screen. In today's Ask the Admin, I will show you how to set up Windows 10 to bypass the lock screen.     The lock screen is there for a reason. It is to secure access to your personal files and data. In general, I do not recommend configuring automatic login. But there are scenarios where you might want to have Windows boot straight to the desktop. I use an old PC as a media server and I prefer to power it off overnight. That means that every morning, I need to enter a password to login to Windows because the installed media software does not run as a Windows service. As the device does not contain any files or other sensitive information, I do not need to worry about the security too much. Additionally, if I can login to Windows automatically, it is also possible to remove the monitor. Set Up Automatic Login The instructions below are for Windows 10 but should work with earlier versions of Windows. Login to your Windows 10 device. Type netplwiz in the search box on the taskbar and click netplwiz in the list of results. In earlier versions of Windows, press WIN + R to open the Run dialogue and type netplwiz into the Open: box. Click OK. If prompted by UAC, enter an administrator username and password. In the User Accounts dialogue box, unchecked Users must enter a username and password to use this computer. Click OK. In the... --- ### SharePoint Online Administration Joins the 21st Century. Office 365 Admins Relieved > Microsoft plans to modernize the SharePoint Online Admin Center. That's good news for Office 365 admins, especially those who don't know SharePoint. - Published: 2017-05-18 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-admin-center/ - Categories: Microsoft 365, Office, SharePoint - Tags: Admin Center, administration, SharePoint Online, Virtual Summit Microsoft gave details of many new features at the SharePoint Virtual Summit. Introducing a modern SharePoint Admin Center is the best feature in my eyes, but then again, I am not a SharePoint Pro. SharePoint in The News As anyone who has anything to do with SharePoint surely knows, Microsoft ran a SharePoint Virtual Summit in Redmond this week. Brad reported the news from the event and noted Microsoft’s claim that 250,000 organizations now use SharePoint and that 85% of the Fortune 500 use SharePoint Online as part of Office 365. On April 10, Jeff Teper, Microsoft VP for SharePoint said that “over 200,000” organizations used SharePoint. Now they are up to 250,000, so it seems that Microsoft has done some good business in the interim. Or they simply miscounted. SharePoint Usage Driven by Applications Big customer numbers are good, but you must realize that some of the use of SharePoint Online comes through applications like Office 365 Groups and Teams rather than people setting out to use SharePoint Online on its own merits. Or indeed, to migrate workload from an on-premises SharePoint farm, a task that can be extremely challenging if you have customized SharePoint. As I noted after Microsoft’s latest quarterly results, there is still lots of room for on-premises accounts to move to the cloud. And the more on-premises customers move to Office 365, the more use SharePoint gets. It is just the way numbers work. The Different SharePoint Communities At the risk of offending some friends, three kinds of people deal with SharePoint Online. The SharePoint pros. Those who know the finer details of site collections, SharePoint permissions, and can debate the value of its client object model... --- ### Microsoft will Open Two New Data Centers in Africa in 2018 - Published: 2017-05-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-open-two-new-datacenters-africa-2018/ - Categories: Microsoft Azure - Tags: Africa, Azure, Microsoft, News - Article Type: News Microsoft has announced that they will be opening up two new Azure regions in Africa in 2018. Building out a new data center is not a small investment. In the past, Microsoft has said that each new location costs about a billion dollars or more which means that when they decide to open up a new region for Azure, it's a serious investment. Recently, we have seen Microsoft announce new regions where local laws require data to stay inside the countries borders and also in other areas where they are adding additional capacity due to strong growth. But, one area of the world that has not seen much attention is Africa but that will all change in 2018. Microsoft has announced that they will be opening up two new locations on that continent next year. The company will build two new data centers in Johannesburg and Cape Town with these new regions offering Azure, Office 365, and Dynamics services. After these two locations open, Microsoft will have 40 regions online around the globe. Considering the significant investment that a new data center requires, this is one of the company's primary differentiators when it comes to its competitors. While Amazon and Google certainly have the capital to compete in the cloud game, for new companies or smaller firms, the capital expense required to create a 'cloud' is significant and also prohibitive as well. The cloud segment is of vital importance for Microsoft as the company looks to find a way to topple Amazon who owns the largest slice of the pie. For now, the company is investing heavily in... --- ### Veeam Looks to Expand its On-Premises Horizon with support for AWS - Published: 2017-05-17 - Modified: 2024-09-04 - URL: https://petri.com/veeam-looks-expand-premises-horizon-support-aws/ - Categories: Backup & Storage, Cloud Computing - Tags: News, Veeam - Article Type: News Veeam is looking to move beyond the on-premises data center and has announced that they will soon be supporting Amazon's cloud platform. This week, Veeam is hosting its product conference in New Orleans where the company has announced updates to a wide variety of backup solutions that have been quickly growing in popularity with enterprise customers. With news this week and last week of ransomware penetrating networks all around the globe, having a robust backup and recovery solution is imperative as it’s only a matter of time before an attack interrupts your daily operations. Veeam has traditionally been thought of as an on-premises operation but with the announcements this week, they are further expanding across the public and private clouds. The company has historically worked well with Azure and for users on Amazon, Veeam is coming to AWS. Veeam services running on AWS is a big leap for the company as AWS is by far the largest public cloud vendor. By firing up services that run explicitly on this platform, Veeam is opening up a significant new revenue opportunity as AWS shows little sign of its growth slowing down. As expected, the company is offering to protect against accidental deletion, malicious activity, and outages. The company also announced new features coming to Veeam V10 including CDP (continuous data protection) that provides SLAs for using continuous replication to the public or private clouds. This feature allows you to recover data in seconds, not minutes or hours and is backed by an SLA that provides assurance for how robust this pipeline tool is and it is designed for private and managed the cloud. As... --- ### Bash for Windows Comes to Windows Server 2016 - Published: 2017-05-17 - Modified: 2024-09-04 - URL: https://petri.com/bash-windows-comes-windows-server-2016/ - Categories: Hyper-V, Windows Server, Windows Server 2016 - Tags: Bash on Windows, Hyper-V, Microsoft, Unix, Windows 10 Anniversary Update, Windows 10 Creators Update, Windows Server 2016, Windows Subsystem Linux, WSL - Article Type: News Microsoft announces that the Windows Subsystem for Linux is coming to Windows Server 2016 at Build 2017. Microsoft announces that the Windows Subsystem for Linux (WSL) is coming to Windows Server 2016 at Build 2017.     Bash is a popular Unix shell for managing Linux. Microsoft introduced Bash as a native component in Windows 10 Anniversary Update. WSL allows you to run standard Bash commands, use a Linux-compatible file system to access fixed Windows storage, run Bash shell scripts, run Linux command-line apps, and install additional Linux tools. Bash on Windows does not require a Linux VM and it runs Ubuntu user-mode binaries from Canonical. It runs Bash commands found in a native Ubuntu environment. Despite Microsoft bringing Bash to Windows Server 2016 soon, it is still a beta in Windows 10. This means that while most commands and tools work, there are some that do not. There are others that do not work quite as they should. Launch Linux Commands From Within Windows 10 Creators Update (Image Credit: Microsoft) Native Linux Containers in Windows Server Microsoft is working on support for native Linux containers in Windows Server 2016. WSL will allow administrators and developers to manage Linux containers that are running on Windows Server 2016 using standard Linux tools. Hyper-V Containers will be used to provide support for Linux on Windows Server 2016 and you will be able to use your Linux kernel of choice. WSL Updated in Creators Update The recent Creators Update for Windows 10 introduced some new features to WSL, which will also make... --- ### SharePoint Virtual Summit: Continuing the Rebirth of SharePoint - Published: 2017-05-16 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-virtual-summit-continuing-rebirth-sharepoint/ - Categories: Microsoft 365, SharePoint - Tags: OneDrive for Business, SharePoint Virtual Summit - Article Type: Opinion Learn about the many new features and updates announced at the SharePoint Virtual Summit event that are going to make my, your, and our client's lives easier, efficient, and fun! May 4th, 2016 was a special day. Not only because of the annual celebration of Star Wars (May the 4th be with you! ) but also because of the online Microsoft Future of SharePoint event. Jeff Teper, the Godfather of SharePoint, laid down his and Microsoft’s four areas of innovation for SharePoint Online and SharePoint on-premises for 2016 and beyond: Simple and powerful file sharing and collaboration on any device. The mobile and intelligent intranet, with modern team sites, publishing, and business applications on your desktop and in your pocket. An open and connected platform that evolves SharePoint extensibility to embrace modern web development. Investments in security, privacy, and compliance across Office 365.     The Future of SharePoint event started the rebirth of SharePoint. Back to basic! Mobile! Easy! You can read all my thoughts about the event here. This year, Microsoft hosted a brand-new event called the SharePoint Virtual Summit. The focus for 2017 and beyond are the following areas: Share with confidence Transform business process Inform and engage employees Harness collective knowledge Manage The event was, as expected, fantastic with loads of new features and updates! I hope you are as excited as I am. I would like to share my thoughts about the announcements with you. Let’s take a closer look. Share with Confidence Sharing content has never really been SharePoint and OneDrive's strongest feature. That said, loads of improvements have been made over the past few years. Internal sharing became easy and intuitive. External sharing really... --- ### With More than 250,000 Organizations Now Using SharePoint, Microsoft Adds More Features - Published: 2017-05-16 - Modified: 2024-09-04 - URL: https://petri.com/250000-organizations-now-using-sharepoint-microsoft-adds-features/ - Categories: SharePoint - Tags: News, SharePoint - Article Type: News Microsoft has announced that they are bringing new features to SharePoint such as new community sites and improved sharing directly from File Manager. Today, Microsoft hosted its SharePoint Virtual Summit where the company unveiled several new features coming to SharePoint and OneDrive for Business as well as integration into Office 365, Windows and of course, Azure. These new features are in addition to what the company announced last week at Build which includes placeholders for both OneDrive and SharePoint Online. For those that think that SharePoint is a platform for yesterday, the company continues to show solid growth for this product. As of the writing of this post, Microsoft says that they have over 250,000 organizations using SharePoint and that over 85% of Fortune 500 companies now have SharePoint Online as part of Office 365. Starting this summer, you will soon be able to share Office 365 files directly from the File Explorer for both PC and Mac. The process to share files has also been simplified for both inside/outside your organization and you can also provide links that expire and easily view and modify the permissions granted as well; the sharing experience is the same on all supported platforms. Also announced for release this summer are SharePoint communication sites. This new feature makes it easy to create a dynamic and aesthetically pleasing intranet sites to help keep your users engaged and informed; these sites are designed to work well on PC, Mac, the web and of course mobile too. Communication sites can be built quickly and can utilize Yammer to gather feedback from users as well as drag and drop... --- ### Introduction to Azure Active Directory Auditing - Published: 2017-05-16 - Modified: 2024-12-03 - URL: https://petri.com/introduction-azure-active-directory-auditing/ - Categories: Cloud Computing, Security - Tags: Auditing, Azure Active Directory, cloud computing, Security - Article Type: How To, Overview Find out what auditing features are available in Azure Active Directory. In today's Ask the Admin, I will provide a brief overview of Azure Active Directory (Azure AD) auditing in the new administration portal.     Microsoft has gradually been moving Azure features to the new admin portal. One of the latest is Azure AD, which until last year, had to be managed using the classical web management portal or PowerShell. In November 2016, Microsoft added detailed audit logs to the portal for those with Azure Premium AD or Enterprise Mobility Suite subscriptions. If you are not signed up for one of these plans, you can get a free 30-day trial of Azure Premium AD. View Audit Logs in Azure AD To view the log information for your tenant, you will need to log into Azure with an administrator account. Azure AD can be accessed by clicking the hamburger menu on the left of the portal and selecting Azure AD from the list of options. If you do not see it, click More services > at the bottom and search for Azure Active Directory. Once you have opened the Azure AD panel, scroll down to ACTIVITY. You will see two options, Sign-ins and Audit logs. Audit logs will show all available logs. If you are interested in user login information, then click Sign-ins. Audit logs and Sign-ins provide customized views of the available log data. Audit Log Search in Azure AD (Image Credit: Russell Smith) If you need more than sign-in data, Audit... --- ### Convert Your Old Distribution Lists to Office 365 Groups > Microsoft is making a method available to allow users to convert old-style email distribution groups to Office 365 Groups. - Published: 2017-05-16 - Modified: 2024-11-19 - URL: https://petri.com/convert-dl-office-365-groups/ - Categories: Microsoft 365, Office - Tags: conversion, distribution group, DL, EAC, Exchange Online, Office 365 Groups, owa, Teams - Article Type: Opinion Microsoft is convinced that Office 365 tenants should move from old-fashioned email distribution lists to embrace the new world of collaboration enabled by Office 365 Groups. A new conversation method allows OWA users to convert DLs that they own. Is it a winner? Old DLs Transformed to Bright Shiny Office 365 Groups On April 24, Microsoft announced that distribution group owners can upgrade these objects to Office 365 Groups (message center item MC99607). Microsoft says that the new feature is in response to customer requests for ways to upgrade distribution groups, which some now consider obsolete. Distribution groups (or lists – DLs) have certainly existed for a long time in the world of email. Simplicity is their major benefit. A DL is a way to send messages to multiple email recipients using a single address – no more, no less. DLs are a known entity for most email systems, making them easy to synchronize, including back to on-premises Exchange. Microsoft’s view is that Office 365 Groups are a better platform for collaboration as they can act like a DL (for some recipient types) while also giving group members access to a shared calendar, notebook, and team site. And of course, Groups are the gateway to Teams and Planner. All of which is true. For well over a year, Microsoft has made the point that Office 365 Groups are so much better than old-fashioned, primitive, simple DLs. Although Microsoft correctly says that Office 365 Groups offer huge value, DLs are hard to dislodge. Microsoft hopes that user-driven conversion will help to accelerate progress. Conversion is Good Because they should know how people use their DLs, allowing DL owners to make the decision to transform a DL to an Office 365 Group is... --- ### PowerShell Remoting Basics - Published: 2017-05-15 - Modified: 2024-09-04 - URL: https://petri.com/powershell-remoting-basics/ - Categories: PowerShell, Security - Tags: Active Directory, Automation, Management, PowerShell, Scripting, Windows, Windows Server - Article Type: How To, Overview Missy Januszko provides an overview of PowerShell remoting and explains the use of different cmdlets for managing multiple machines at once.   PowerShell remoting enables an administrator to remotely manage many Windows Servers from a central location. With open-source releases of PowerShell, your target servers could be running Linux or macOS as well. PowerShell remoting simplifies cross-platform system management. As a result, you will be able to send PowerShell commands to control all your servers regardless of the operating system. This article will help you understand how remoting works. In addition, I will show you various methods for remotely connecting to machines in order to manage your environment. Explaining PowerShell Remoting to Others Other members of your organization may take a heightened interest in PowerShell remoting because of its powerful capabilities. They may also be fearful of PowerShell remoting because its power can be perceived as dangerous. Once you learn how remoting works and how to secure an implementation, the implementation will be easier to discuss and defend. Your co-workers will see that when configured correctly, it is not any less secure than other remoting protocols. In addition, you can mitigate perceived risks by putting security protection in place, such as SSL. If you make an effective argument to allow PowerShell remoting in a secure and effective manner, it will make your job easier. Remoting Basics in a Nutshell The current implementation of PowerShell remoting on Windows runs as the Windows Remote Management Service or WinRM for short. The WinRM service contains at least two endpoints or listeners. By default, enabling PowerShell remoting enables both an http and an https listener. The listeners run on default ports 5985 for http and 5986 for https. You can... --- ### Sponsored: Remote Desktop Team Considerations - Published: 2017-05-15 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-remote-desktop-team-considerations/ - Categories: Windows Client OS - Tags: Devolutions, RDP, Remote Desktop Connections, Remote Desktop Manager - Article Type: Overview Almost all mid-to-large businesses have many people using Remote Desktop Connections, and these users are often separated into different systems or application management teams. Let’s have a closer look at some of the most important team considerations for using Remote Desktop Connections. In today’s corporate environment, IT administrators typically need to manage many different remote systems. These systems can be physical systems that are on-premises or they can be virtual machines (VMs) that are local or in the cloud. Although scripted management is a growing trend for remote management, almost every administrator uses Remote Desktop Connections for various management tasks many times a day. Almost all medium businesses up through the enterprise have many people using Remote Desktop Connections, and these users are often separated into different systems or application management teams. Let’s have a closer look at some of the most important team considerations for using Remote Desktop Connections. Standardize Your RDP Connection Names One of the first steps toward better team support for your Remote Desktop Connections is to standardize your RDP file connection names. Using standardized system names and RDP files names enables all of your administrators and other Remote Desktop Connection users to quickly identify and connect to the desired remote systems. Standardized system and RDP names eliminate guesswork and prompt better team efficiency. Organizing Your RDP Connections with Shared Folders One of the best ways you can make your team usage of Remote Desktop Connections more efficient is by organizing your different RDP files into shared folders. Shared folders enable all your administrators and other authorized users to manage like groups of remote systems without having to create their own set of unique and different desktop icons. Instead, they can just create shortcuts to the existing shared... --- ### Don’t Blame Microsoft For WannaCrypt Vulnerability Exploitation - Published: 2017-05-15 - Modified: 2024-09-04 - URL: https://petri.com/dont-blame-microsoft-wannacrypt-vulnerability-exploitation/ - Categories: Windows Client OS - Tags: Microsoft, News, Ransomware, Windows - Article Type: News Microsoft has found itself on the receiving end for some blame of the Wannacrpyt cyber attack but the finger is pointing at the wrong users as the company has done nothing wrong. It’s a rare occurrence that I find myself defending Microsoft’s actions but the rampant finger pointing after the WannaCrypt ransomware is an all-to-often reminder that Windows should be treated as a mission critical application and not a microwave that warms up your food. The short story is that there is an exploit that was stolen from the National Security Agency (NSA) that Microsoft then patched on all supported versions of Windows two months ago; this attack vector was used against organizations who are using outdated software like Windows XP. Unfortunately, one of those corporations is the NHS (Nation Health Service) in England which impacted hospital operations by locking up critical data and requiring a BitCoin payment to release the information. If you haven’t heard or read about the issue, you can find your favorite source here or read Microsoft’s take on the issue here. After this issue became widespread and the vulnerability was running rampant, the blame game started. Was it Microsoft’s fault for no longer supporting Windows XP and other software, was it the NSA’s fault for having their weapon stolen, was it the NHS’s fault for running outdated software or someone else? If you do a quick search on the web, you can find many pointing the finger at just about everyone with Microsoft getting the most amount of heat for the situation which is honestly laughable; they NYT's Opinion section posted that the company should provide security updates to all of its outdated software for all... --- ### Windows 10: Pin Apps to the Taskbar Using Group Policy - Published: 2017-05-15 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-pin-apps-taskbar-using-group-policy/ - Categories: Windows 10, Windows Client OS - Tags: Active Directory, group policy, Windows 10, Windows 10 Anniversary Update - Article Type: How To Learn how to customize the taskbar in Windows 10 Anniversary Update using Group Policy. In this Ask the Admin, I will show you how to pin apps to the taskbar using Group Policy in Windows 10 Anniversary Update.     Back in 2014, I showed you how to Customize the Start Menu in Windows 10 using the Export-StartLayout PowerShell cmdlet on the Petri IT Knowledgebase. Last summer’s Anniversary Update expanded the Group Policy settings and provided a supported way of customizing the taskbar. Create a Layout File To customize the taskbar, we will need to manually create an XML file. If you want to customize both the taskbar and Start menu, you can add code to an XML file generated by Export-StartLayout. The code below pins Paint, IE, and Outlook Calendar to the taskbar. By adding PinListPlacement="Replace" to , the default pinned apps are replaced by those specified in the file. Finding the AppUserModelID for UWP Apps UWP apps are identified in an XML file using the AppUserModelID and win32 desktop apps are identified by the executable path. Unfortunately, the only way to get the AppUserModelID for each UWP app is to export an existing Start menu layout. This is done by using the Export-StartLayout cmdlet. You will open the resulting XML file and search for the AppUserModelID manually. The . PackageFamilyName parameter returned by the Get-AppXPackage cmdlet is similar to AppUserModelID but it... --- ### PowerShell Problem Solver: Finding Needles in the Active Directory Haystack - Published: 2017-05-12 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-finding-needles-active-directory-haystack/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, Intermediate, PowerShell - Article Type: How To Jeff Hicks walks you through some problems using Active Directory and PowerShell. Recently, a follower sent me an email with a problem that he was trying to solve with Active Directory (AD) and PowerShell. At first, I was a little puzzled by what he was trying to do. We spent some time going back and forth on possible solutions. During the process, I realized his situation presented a great teachable opportunity. Let's see what we can learn about PowerShell.     The initial problem was to find all AD computer accounts, where part of the name was found in a list of names. The initial code, which was not working, looked something like this: $Filter = (Get-Content names. txt) Get-AdComputer -Filter * | where-object{"*"+$_. name+"*" -match $Filter} | select name It did not have errors but it also did not have results. Let me show you what is in the names. txt file. Getting the List of Names (Image Credit: Jeff Hicks) We needed to find computer accounts that had usernames as part of the name. I am using a small list but it could easily be hundreds of names. My friend knew there were accounts that should be found because he could find them on an individual basis.  Finding a Matching Computer Account (Image Credit: Jeff Hicks) Naturally, he was looking for a way to scale out this process. One approach we considered, was using the -Contains operator. He was really checking to see if the computer name belonged to a list. Get-AdComputer -Filter... --- ### Paul Thurrott's Short Takes: May 12 - Published: 2017-05-12 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-12/ - Categories: Cloud Computing, Windows 10 - Tags: News - Article Type: Overview Because Build 2017 made for a very long week, this edition of Short Takes looks at Microsoft's new Windows strategy, the Fall Creators Update, the Microsoft Graph, Microsoft Edge, Mixed Reality, and more. Because Build 2017 made for a very long week, this edition of Short Takes looks at Microsoft's new Windows strategy, the Fall Creators Update, the Microsoft Graph, Microsoft Edge, Mixed Reality, and more. Microsoft's brave new strategy for Windows: Stop pretending it's the center of your life I wrote about this over on Thurrott. com, but it's worth repeating: Lost in all the hub-bub over Microsoft's 1273 Build announcements this week was the biggest news of all: Microsoft has answered its wake-up call and now understands that Windows, once its core product, now plays only an ancillary role in its customers' lives. So instead of improving without any regard to this reality, Microsoft will instead make Windows 10 truly useful for people by making it work better with the devices---smartphones, mostly---that people really use all day long. I cannot applaud this move enough, as it's pragmatic, smart, and respectful of customers. And for those of you still stuck in the past, no worries: Windows will still continue to get better and better with each release. "Windows 10 Features Are Coming to iOS and Android" And you thought Microsoft didn't have a mobile strategy. With the "Fall Creators Update," Microsoft runs out of (naming) ideas No offense to Microsoft, but this company can't brand things properly. Consider the so-called Windows 10 Creators Update, which includes exactly two "creator" features---3D Paint and Beam game streaming---that, worse, virtually no one will ever use. So you'd think that the software giant would learn... --- ### Create Deployment Rings Using Windows 10 Update for Business - Published: 2017-05-12 - Modified: 2024-09-04 - URL: https://petri.com/create-deployment-rings-using-windows-10-update-business/ - Categories: Windows 10, Windows 7, Windows Client OS - Tags: Azure Active Directory Groups, deployment, Microsoft, Microsoft Intune, Security, Windows 10, Windows 10 Anniversary Update, Windows 10 Creators Update, Windows Update for Business, WSUS - Article Type: How To Russell Smith shows you how to use Windows Update for Business policy settings to create deployment rings for Windows 10 Feature Updates. In today's Ask the Admin, I will show you how to assign Windows 10-based devices to deployment rings using Windows Update for Business (WUfB).     WUfB is a new feature in Windows 10. It allows organizations to manage Windows updates without deploying Windows Server Update Services (WSUS) on-premises or using agent-based methods, such as Microsoft Intune for Windows 7. WUfB is a set of group policy settings that can be used to manage how Windows 10-based devices receive updates from Microsoft's servers. Using a combination of settings available in WUfB, such as servicing branch, deferring updates, and pausing updates, you can create deployment rings for groups of devices. The Windows 10 Creators Update is an example of a Feature Update. A Quality Update does not bring any new features but it does bring more stability and security. You can use WUfB policy settings to create several deployment rings. For example, some devices might update on the Current Branch as soon as a Feature Update is released. Other devices might use the Current Branch for Business and a third ring defers updates for three months. For more information on WUfB, see Understanding Windows Update for Business on the Petri IT Knowledgebase. WUfB options were changed in Windows 10 Anniversary Update. Details can be found in What Has Changed in Windows Update for Business. Create a Deployment Ring Using Policy If you are not familiar with Group Policy, take a look at How to Create and Link... --- ### Microsoft Brings ‘Placeholders’ to Windows 10 for OneDrive and SharePoint - Published: 2017-05-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-placeholders-windows-10-onedrive-sharepoint/ - Categories: SharePoint, Windows 10 - Tags: News, OneDrive, SharePoint, Windows 10 - Article Type: News Microsoft has announced that they are bringing back one of their most requested features, placeholders for OneDrive and SharePoint. Several years ago, Microsoft had a feature for OneDrive that would allow you to see files stored in the cloud locally without having to actually download the file to your machine. This feature was loved by many but because the implementation did not work well with third party applications and confused users, it was removed. Today, Microsoft is announcing the triumphant return of this feature but there are a few changes including the name. This new feature is called On-Demand files and it works with both OneDrive personal and business as well as SharePoint online. With this feature, you can access all your files stored on these services locally by downloading the file on demand by accessing it with File Explorer or any other Windows Store app just like it was always stored on your local drive. As with the previous version of this feature, the non-downloaded files will not take up any meaningful amount of space. To help users distinguish where a file is stored as this was an issue with the original implementation of placeholders, a new status icon will be used in File Explorer. As you can see in the image above, the files are clearly shown to be stored either locally or in the cloud. Additionally, you can right-click on any file or folder and make that content always available. As you would expect, if you are not connected to the Internet, files stored in OneDrive that are not downloaded locally will be unavailable. For IT... --- ### Windows 10 'Fall Creators Update’: New UI Elements, Placeholders and More - Published: 2017-05-11 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-fall-creators-update-new-ui-elements-placeholders/ - Categories: Windows 10 - Tags: Fall Creators Update, News, Windows 10 - Article Type: News Microsoft has announced the next major update to Windows 10 will be called the Fall Creators update and it's packed with new features. Later this year, Microsoft will be releasing another large update to Windows 10 and the company is calling this release the Fall Creators update. If that name sounds familiar, that’s because the spring update that was released a few weeks ago was also called the Creators update. Confusing naming convention aside, this release contains many new features and is much more substantial in what it delivers when compared to the spring Creators update. There are new apps to help you transform your photos and videos, a new design language called Fluent Design System, placeholders for OneDrive, one clipboard for all your devices, a feature to jump backwards in time to find what you were working on and finally the ability to move between devices and pick up where you left off. Here is how Microsoft describes each of the new major features coming to Windows 10 later this year: Timeline: With Timeline in Windows 10, you can now jump back in time to find what you were working on. With a visual timeline that displays what you were doing when, you can easily hop back into files, apps and sites as if you never left. Pick Up Where You Left Off: With Cortana, you can pick up where you left off across Windows, iOS, and Android devices. Imagine logging off your PC and having the doc you were editing pop up on your phone. Cortana asks if you want to pick up where you left in your app, doc or... --- ### Microsoft is Bringing New Flavors of Linux to Windows 10 - Published: 2017-05-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bringing-new-flavors-linux-windows-10/ - Categories: Windows 10 - Tags: Bash, linux, News, Windows 10 - Article Type: News Microsoft has announced that they are bringing more flavors of Linux to Windows 10 and that the features will be installable from the Windows Store. Last year at Build, Microsoft made headlines when they announced a tech preview of Bash on Ubuntu for Windows. This new feature, by nearly all accounts, has been a huge success for Microsoft and today, the company is expanding the Linux flavors that can be run on the Windows 10 subsystem for Linux. For starters, Microsoft is going to streamline the installation process of the Ubuntu subsystem by moving the install process to the Windows Store. While the previous method of installing Bash on Windows 10 was not all that cumbersome, by bringing the bits needed to get up and running with Ubuntu inside of Windows 10 to the store, the process becomes significantly easier. In addition to Ubuntu, Microsoft is also working with SUSE and Fedora to allow those iterations of Linux to be able to run inside of Windows 10. These versions of Linux will also make their way to the Windows Store as well in the near future. Microsoft’s goal is to make developing on Windows a better experience than using a flavor of Linux. In the past, many developers preferred the console on Linux to that of Windows and now that Microsoft has opened its doors to Bash, the company is making serious strides to remove the last vestiges of why you want to develop in Linux instead of Windows. This is certainly not an end-all solution for everyone and there are still reasons why you would want to run a native *nix setup instead of... --- ### Configuring StorSimple as a File Server/NAS > This post will explain why you would deploy a StorSimple appliance as a file server, and show you how to create a shared folder. - Published: 2017-05-11 - Modified: 2024-09-04 - URL: https://petri.com/configuring-storsimple-file-servernas/ - Categories: Backup & Storage, Microsoft Azure - Tags: Azure, Branch Office, File Server, NAS, Office 365, Small Business, SMB, StorSimple - Article Type: How To Aidan Finn walks you through configuring a StorSimple appliance as a file server/NAS. In this post, I will show you how to deploy an already deployed StorSimple appliance as a file server/NAS.     Why You Should Deploy a StorSimple as a File Server An interesting scenario with StorSimple is to use it as a file server. Your shares are created from the Azure Portal but managed locally. They are normal Windows shared folders that offer the usual features of SMB networking. They also potentially have great speed. There are a few scenarios that you can consider, including the small business and branch office. Many small businesses, even those using cloud services such as Office 365, continue to run a domain controller, accounting application, and file server on servers. Hopefully, these are virtual machines. If all three roles are running on a single virtualization host, no matter what virtualization that was, it would normally require 3x the virtual licenses. This requires the host to be licensed twice for Windows Server Standard. You need 2x the virtual licenses per Standard license assigned to a physical machine. However, if the file server was a StorSimple appliance: It would not require a virtual license. The customer would only need the host to be licensed once for Windows Server Standard for the domain controller and application server. The customer gets the storage scale, cost, backup, and DR benefits of StorSimple. Larger businesses with branch offices can also benefit in a very similar way. The appliance can offer file services in each branch office and use... --- ### Microsoft Continues Battle Against Malware with Outlook Add-in > Microsoft provides Office 365 users with a Report Message add-in for Outlook 2016 to help them report junk and phishing email. - Published: 2017-05-11 - Modified: 2024-09-04 - URL: https://petri.com/outlook-anti-malware-addin/ - Categories: Microsoft 365, Office, Outlook - Tags: Anti-Malware, EOP, Exchange Online, Exchange Online Protection, Junk email, Office 365, Outlook 2016, Phishing, spam - Article Type: News Microsoft has released the Report Message add-in for Outlook 2016 to help Office 365 users report when spam arrives into Inboxes or messages are incorrectly treated as Junk. It's a good way to get information about new threats to Microsoft security researchers. Ongoing Battle Against Malware I have covered the changing tactics used by Exchange Online Protection (EOP) in its ongoing battle to combat malware several times recently. EOP runs in the background to analyze and block suspicious email, using techniques like Dynamic Delivery to make sure that end users only receive safe email. Inevitably, although Microsoft has some of the best security experts in the world working on EOP, a small percentage of bad stuff gets through and arrives into user mailboxes. Now, Microsoft is making it easier to report when unwanted email arrives in the Inbox. Or conversely, to let them know when Exchange redirects messages to the Junk Email folder and those messages are perfectly good. A New Outlook Add-in Microsoft’s solution is the “Report Message” add-in for Outlook 2016 that they automatically publish to Exchange Online users. The add-in shows up in the menu bar and is available when any email folder is chosen (the add-in is deactivated when Outlook is positioned in a non-email folder, like one that stores an RSS feed). Figure 1: The Report message add-in (image credit: Tony Redmond) The intention is that people use the add-in to report bad messages that sneak into their Inbox to Microsoft. Messages can be reported as “Junk”, such as spam that you do not expect to see arrive into your Inbox, or “Phishing”, one of those dangerous messages that lure people into doing the wrong thing, like giving their credit card... --- ### Microsoft’s New Database Migration Service Helps You Move Beyond Oracle - Published: 2017-05-10 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-database-migration-services-helps-move-beyond-oracle/ - Categories: Microsoft Azure - Tags: Microsoft, News, Oracle - Article Type: News Microsoft is once again on the offensive and is going after Oracle customers with a new migration service to help those users leave that database platform. At some point in time, nearly every large company has likely used an Oracle product and while hardware is a bit easier to move away from, changing your software infrastructure can become a serious headache. Announced at Build today, Microsoft is looking to help Oracle (and other) customers come into the Microsoft fold with a new service called Database Migration Services. The goal is to make moving from Oracle’s infrastructure to Microsoft’s a much simpler task and the company is announcing an early preview of this new offering. This is not the first time we have seen Microsoft go directly after Oracle. Last year, the company began offering a ‘free’ SQL Server 2016 license to those customers who are moving to the Microsoft world but this latest offering is a bit more aggressive. Starting today, the service is in private preview and Microsoft is formally saying that the service is designed to help move existing competitive and SQL Server databases to Azure. By making the process of migrating database platforms easier, this is Microsoft’s best-foot-forward for attracting new customers in this lucrative space. As Oracle has shown, once the customer builds a database around your infrastructure, it is a rarity that they will change services. Thus, Microsoft has built the tools needed to make the migration away from Oracle easier with the long-term goal of locking new customers into the company’s software and cloud database services. Details around this new service are still a bit light but I’ll keep... --- ### Microsoft Adds 440,000 Windows 10 Users Per Day During Last Seven Months - Published: 2017-05-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-440000-windows-10-users-per-day-last-seven-months/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft's Windows 10 OS is growing quickly and is showing few signs of slowing down. Microsoft has announced today at Build that the company’s latest desktop operating system has reached 500 million monthly active users. This milestone comes about 650 days after the OS was released to consumers but the one question we don’t know is how many corporations are adopting the OS. For comparison, Windows 7 reached 630 million installs in 983 days which equates to about 640,000 copies being sold every day whereas with Windows 10, the OS is running about 769,000 active users being added each day since its release. But, these numbers don’t tell the entire story and we can get a better adoption rate of Windows 10 since we have additional figures to utilize. On September 26th, Microsoft told us that there were 400 million Windows 10 active users and with today’s announcement of 500 million active users, this is a span of 226 days since the two figures were announced. Using these numbers, Microsoft added 442,447 new users to Windows 10 during that time period. Sure, the adoption rate has cooled from the initial release of the OS but that’s expected as Windows 10 is no longer a spring chicken. That being said, the OS is still growing at a healthy rate but what I really want to know is at what rate are corporations adopting the OS. Windows 7 is entering the later phases of its lifecycle which means large corporations need to start moving more aggressively to the OS as it’s not expected that Microsoft will... --- ### Microsoft Azure Cosmos DB: A Globally Distributed, Multi-Model Database Service - Published: 2017-05-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-cosmos-db-globally-distributed-multi-model-database-service/ - Categories: Cloud Computing, Microsoft Azure - Tags: Cosmos DB, News - Article Type: News Microsoft has announced a new DB service for Azure that they are calling Cosmos that is available everywhere starting today. Microsoft’s Azure platform is growing in a big way with the company announcing a new DB service that they are calling Azure Cosmos. The new service is launching globally and unlike nearly every previous Microsoft product, this is not in a preview state; the product is now generally available. This new DB service is designed for everything from IoT to AI to mobile with high levels of performance, fault tolerance and support for nearly every data type. The company claims that this is the first globally distributed, multi-model database service that provides horizontal scale with guaranteed uptime, throughput, and millisecond latency to the 99th percentile that is also backed by SLAs. Cosmos DB is a schema-free database service that supports platforms like NoSQL APIs and is also capable of auto-indexing all of your data too. Because of this auto-indexing, queries can be performed faster and more accurately as you no longer have to overcome the restraints of complex schema and index management or schema migration in a globally distributed setup. The goal of Cosmos DB is to allow developers to scale across a wide number of geographic regions with SLAs supporting uptime, performance, latency, and consistency. In short, you can launch an application or service nearly instantly with global support with extremely low latency in nearly any region of the world. If you are curious about how Microsoft was able to launch this product, not in preview and already available globally, the product started out as Documents DB. I... --- ### Converting Availability Set Virtual Machines to Azure Managed Disks > This post explains the benefits of using Azure Managed Disks with availability set virtual machines, and shares a PowerShell script to do the conversion. - Published: 2017-05-10 - Modified: 2024-09-04 - URL: https://petri.com/converting-availability-set-vms-azure-managed-disks/ - Categories: Cloud Computing, Hyper-V, PowerShell - Tags: Availability Sets, Azure, Azure Storage, Managed Disks, storage, virtual machines - Article Type: How To Aidan Finn explains the benefits of using Azure Managed Disks with availability sets. In this post, I will explain the benefits of using Azure Managed Disks with availability sets. I will also show how to convert virtual machines in an availability set with unmanaged disks to Managed Disks. These will respect the protection offered by the availability set.     Availability Sets Azure uses availability sets for virtual machines in a few ways: Fault domains: Virtual machines in a common availability set are spread across fault domains. This means that if there is an unplanned localized outage, such as a top-of-rack (ToR) switch failure, the other virtual machines in the availability set are unaffected. A scenario might be, the service offered by a set of load-balanced web servers survives the outage because the remaining web servers pick up the load of the down machine. Update domains: Microsoft patches the Hyper-V hosts used by Azure several times per year. They use a rolling upgrade. Hosts have upgraded one update domain at a time. Virtual machines in a common availability set are spread out across multiple update domains. Imagine that you have two domain controllers. If Microsoft reboots a set of hosts because of host updates, then only one of your domain controllers will be offline. This is because of host reboots and the use of an availability set for the domain controllers. An Illustration of Update Domains and Fault d=Domains in Azure Managed Disks Availability sets sound like they give us ample protection but there... --- ### Leveraging the Hybrid Cloud for Backup and Disaster Recovery - Published: 2017-05-09 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-hybrid-cloud-backup-disaster-recovery/ - Categories: Backup & Storage, Cloud Computing - Tags: Backup, Data Protection, hybrid cloud, Recovery - Article Type: Overview The hybrid cloud has become an integral part of most business IT infrastructures, and many businesses have begun to leverage it for core IT services. Find out how the hybrid cloud can be used as a backup target and for disaster recovery. The hybrid cloud has become an integral part of most business IT infrastructures. At first, businesses started adopting the cloud because it made it much easier to setup up development and test scenarios.   As cloud capabilities matured and prices dropped, businesses expanded their use of the cloud to take advantage of more cloud services along with the comparatively low cost of cloud storage. Two of the main ways that businesses have begun to leverage the hybrid cloud for core IT services is in the area of cloud backup and disaster recovery (DR).     Using the Hybrid Cloud as a Backup Target Using the hybrid cloud as a backup target can make a lot of sense for many businesses. The cloud storage is typically lower in cost than local storage; in addition using the cloud ensures that you have an offsite copy of the data. The ability to use cloud backups is built into Windows Server 2016 as well as other server products, including SQL Server 2014 and higher. Having a copy of your backups in the cloud can help you comply with the 3-2-1 rule of data protection. The 3-2-1 rule of data protection states that to be fully protected you should have at least three copies of your data in two different locations with one copy being offsite. Using hybrid cloud backup helps to fulfill three parts of the 3-2-1 rule. First, using the cloud as a backup target gives you one additional copy of your... --- ### Enabling Windows 10 Device Guard - Published: 2017-05-09 - Modified: 2024-09-04 - URL: https://petri.com/enabling-windows-10-device-guard/ - Categories: Security, Windows 10, Windows 7, Windows Client OS, Windows Server 2016 - Tags: Application Control, Code, Device Guard, PowerShell, Security, Windows 10 Enterprise - Article Type: How To Russell Smith shows you how to get up and running quickly with Device Guard in Windows 10 Enterprise. In today's Ask the Admin, I will show you how to enable and configure Device Guard in Windows 10 Enterprise and Windows Server 2016.     Device Guard is new in Windows 10 Enterprise. For the first time, it allows system administrators to customize kernel-mode and user-mode, code integrity checks using Configurable Code Integrity (CCI). Using a Device Guard policy, untrusted code can be blocked once the boot loader has started. This can help in preventing malware or other untrusted code from running on your systems. Additionally, if Virtual Secure Mode (VSM) is enabled, Device Guard provides more robust application control than Windows 7 AppLocker by utilizing a chain of trust. This can extend from the device hardware right through to the Windows kernel. For more information on how Device Guard differs from AppLocker, the native application control solution in Windows 7, see Windows 10 Device Guard Versus AppLocker and What Is Windows 10 Device Guard? on Petri IT Knowledgebase. Create a Device Guard Policy In this article, I am going to run you through a basic proof-of-concept so that you can see how Device Guard works. In a production environment, you would need to do more work to ensure that policies do not prevent Windows booting or line-of-business apps from functioning correctly. There is no GUI for Device Guard, so you will need to be comfortable using PowerShell cmdlets. The cmdlets work by scanning a clean, malware-free reference system. It will then, generate a set of rules... --- ### Outlook Apps Support Office 365 Groups – But Only for Conversations > The Outlook apps for iOS and Android now support Office 365 Groups. You can access conversations in groups as easily as email in the Inbox. - Published: 2017-05-09 - Modified: 2024-11-19 - URL: https://petri.com/outlook-apps-support-office-365-groups/ - Categories: Microsoft 365, Office, Outlook - Tags: Android, iOS, Office 365 Groups, Outlook, Windows 10 Mobile - Article Type: News Microsoft has updated the Outlook apps for iOS and Android so they can now access conversations in Office 365 Groups. It's a good step forward, if only maybe to reduce the number of Office 365 related apps you have to install on a phone. The Outlook Apps meet Office 365 Groups Microsoft first shipped an Outlook Groups mobile app in September 2015. The app is available for Apple iOS (iPhone and iPad), Android, and Windows 10 Mobile. It is easy to use and allows users to access conversations stored in Office 365 Groups along with the shared notebook and the files in the group document library. If they have the permission, users can create new groups or maintain the membership of the groups that they own. Outlook Groups is a highly functional app.     Consolidating Outlook Microsoft recently expanded the functionality of the Outlook email app (for iOS and Android) to allow it to access Groups as well. The latest updates for Outlook contain the Groups integration. According to Microsoft’s announcement, the long term plan seems clear: Outlook is the king and will gradually get the functionality now available in the Outlook Groups app. “The Outlook Groups app will still be available while we continue to enhance Groups experiences in Outlook, such as adding support for group files, calendar and notebooks. ” In other words, after Microsoft transfers the missing functionality from the Outlook Groups app to Outlook, it will be removed. The Outlook Groups app might persist for Windows 10 Mobile because the Outlook app available for that platform is based on Exchange ActiveSync and does not use the same architecture as its iOS and Android counterparts. Just Conversations Today, the Groups integration in Outlook is limited to conversations and does... --- ### Evolving The Windows SKUs - Published: 2017-05-08 - Modified: 2024-09-04 - URL: https://petri.com/evolving-the-windows-sku/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News With the release of Windows 10 S, it seems likely that Microsoft may be preparing to overhaul its SKU lineup for its operating system. Last week, Microsoft announced a new SKU of Windows called Windows 10 S and after pondering how this new version of the OS fits into Microsoft's overall roadmap for the platform, it seems logical to conclude company is finally going to go all-in on UWP with Windows for desktop users. Further, Windows 10 S dilutes the Windows SKU lineup and I believe Microsoft may look to simplify its offering in the near future With Windows 10 S, as Terry Myerson called it, you get the soul of Windows. In essence, Microsoft believes that this SKU of Windows 10 offers the best Windows experience and the company hopes this is the future of the platform as well. To simplify, there are three basic SKUs of Windows 10, prior to the announcement last week, Windows 10 Home, Pro, and Enterprise. Yes, I know there are other offerings but for simplicity sake, let's use these three as the primary examples as they are used by the majority of the customer base. It would not surprise me at all to see Microsoft drop Windows 10 Home and replace it with Windows 10 S. The reason I think this is for one, upgrading Windows 10 S moves you to Pro, not home and two, Windows 10 S and Windows 10 Home overlap for the same customer base, the basic user. While I don't believe this will happen in the immediate future, it seems logical to believe that Microsoft will eventually drop the 10... --- ### Discovering the Active Directory Searcher with PowerShell - Published: 2017-05-08 - Modified: 2024-09-04 - URL: https://petri.com/discovering-active-directory-searcher-powershell/ - Categories: Active Directory (AD), PowerShell, Windows 10 - Tags: Active Directory, Active Directory Searcher, Get-ADUser, Intermediate, PowerShell, Remote Server Administration Tools, Windows 10 - Article Type: How To Jeff Hicks discusses using Active Directory Searcher with PowerShell. Over the last several weeks, I have been demonstrating how you can manage Active Directory with PowerShell. I have been doing so without relying on the Active Directory module that ships as part of Remote Server Administration Tools (RSAT). There is nothing inherently wrong or bad about using Get-ADUser but there may be situations where you do not have that toolset handy. One topic I still need to address is searching. For the sake of demonstration, all of my commands are being run on a domain-joined Windows 10 desktop. It is under an account that has domain admin privileges. For simple searching, you should be able to use a normal user account. You may do this differently if you have messed around with default permissions.     To begin, we need a searcher object: $searcher = New-Object system. DirectoryServices. DirectorySearcher You will end up with an object like this: AD Searcher Object (Image Credit: Jeff Hicks) The key property is the filter. This tells the searcher what to find. Unfortunately, this is also the trickiest part because you need to use an LDAP query string. I will give you some examples to get started. Currently the filter, (Objectclass=*), will return every single object in Active Directory. You probably do not need this function. Instead, let's find my user account: $searcher. filter = "samaccountname=jeff" How do we use this? One step you can take is to use Get-Member. You can see the different methods that are available: [caption... --- ### Paul Thurrott's Short Takes: May 5 - Published: 2017-05-05 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-21-2/ - Categories: Mobile, Windows 10 - Tags: News - Article Type: Overview Because Microsoft just had a big event and I'm still as giddy as a schoolgirl, this edition of Short Takes looks at Surface Laptop, Windows 10 S, Microsoft's education push, and so much more. Because Microsoft just had a big event and I'm still as giddy as a schoolgirl, this edition of Short Takes looks at Surface Laptop, Windows 10 S, Microsoft's education push, and so much more. With Surface Laptop, Microsoft finally delivers the device customers want As you may know---it received a small amount of press---Microsoft announced Surface Laptop this week, a new Surface, um, laptop. It's exactly what it sounds like---a Surface Book with a non-detachable screen---but with a few twists: It starts at just $999, comes in four cool colors, and feature a unique "Alcantara" material on the keyboard deck that is fun to touch. There are all kinds of ways to criticize this device, but ultimately Microsoft has given the people what they've been asking for, and for years. And for that, we are grateful. "Why Google, Apple and Microsoft are battling for education" It's an age-old strategy: Get 'em while they're young. Windows 10 S is like Windows RT, but with fewer drawbacks One of the odder things about Surface Laptop is that it comes with Windows 10 S, a new edition of Microsoft's desktop OS. The "S" stands for "streamlined," by the way, and this system, like Windows RT before it, will only run Windows Store apps (and web apps, of course), meaning you can't use popular desktop applications like Google Chrome, Apple iTunes, or Adobe Creative Suite. But unlike Windows RT, Windows 10 S is upgradeable "with one click" to Windows 10 Pro, and... --- ### Network Device Naming in Windows Server 2016 Hyper-V > This post explains why and how to to name the virtual NICs of a Windows Server 2016 Hyper-V virtual machine using network device naming. - Published: 2017-05-05 - Modified: 2024-09-04 - URL: https://petri.com/network-device-naming-windows-server-2016-hyper-v/ - Categories: Backup & Storage, Hyper-V, Virtualization, Windows Server 2016 - Tags: Hyper-V, networking, storage, virtual machines, Windows Server 2016, WS2016 - Article Type: How To Aidan Finn shows you why and how to use a new feature in Windows Server 2016 that is called Network Device Naming. In this post, I will show you why and how to use a new feature in Windows Server 2016 (WS2016) that is called Network Device Naming. You can name your virtual NICs in the settings of the virtual machine and retrieve or use that name in the guest OS.     The Need for Device Naming Most of the time, a virtual machine will have a single virtual NIC that is connected to a virtual switch or network. In turn, it is connected to a team of physical NICs in the host. On rare occasions, you need to add more than one NIC to a virtual machine: Guest clusters: An application will be made highly available in 2 or more virtual machines. You will want to use more virtual NICs to make up additional clustering or storage networks. Virtual network appliances (NVAs): The role of a firewall, router, or similar networking device can be played by a virtual machine that is running a special OS and/or software. This is common in cloud and private cloud computing. These devices might have multiple ports, where each is a virtual NIC. They are connected to different networks. Storage networking: Some virtual storage appliances (VSAs), such as the Microsoft Azure StorSimple 1200, can enable iSCSI. This should be partitioned out to separate virtual NICs. Adding NICs to Hyper-V virtual machines is easy. It is even easier with hot-add support in WS2016 but this can create some problems. Let’s say you build a... --- ### What Has Changed in Windows Update for Business - Published: 2017-05-04 - Modified: 2024-09-04 - URL: https://petri.com/changed-windows-update-business/ - Categories: Windows 10, Windows Client OS - Tags: Cumulative update, Security, SKU, Windows 10, Windows 10 Creators Update, Windows 10 Enterprise, Windows 10 pro, Windows as a service, Windows Server Update Services, Windows Update for Business - Article Type: How To Russell Smith looks at changes in Windows Update for Business in the Windows 10 Anniversary Update 1607.   In today's Ask the Admin, I will explain the changes Microsoft has made to Windows Update for Business (WUfB) in Windows 10 Anniversary Update 1607, which also applies to Creators Update.     WUfB is new in Windows 10 Professional, Enterprise, and Education SKUs. It provides organizations with control over how quality and feature updates are applied. You do not have to install a local infrastructure component. That is not the case with Windows Server Update Server (WSUS). You also do not have to install a client on each device, which is needed to manage Windows 7 using Microsoft Intune. For more detailed information on WUfB, see Understanding Windows Update for Business on the Petri IT Knowledgebase. Deferrals and Pausing Updates Windows as a Service requires that most users install updates on a regular basis. Even large organizations that are licensing Windows 10 Enterprises need to do this. Addressing customer concerns, Microsoft changed the options for deferring and pausing quality and feature updates in Windows 10 Anniversary Update 1607. Starting in version 1607, feature updates can be deferred for up to 180 days in daily increments. Previously, updates could be deferred for up to 8 months in monthly increments. Quality updates in version 1607 can be deferred for a maximum of 30 days in daily increments. The previous setting had a maximum of 4 weeks in weekly increments. As you can see, these changes are relatively minor. In Windows 10 version 1511, feature and quality... --- ### Surface Laptop: 48 Hours Later - Published: 2017-05-04 - Modified: 2024-09-04 - URL: https://petri.com/surface-laptop-48-hours-later/ - Categories: Hardware - Tags: News, Surface Laptop - Article Type: News Now that the excitement has settled down and the confetti cleaned up, it's time to look at the Surface Laptop again without all the fanfare and music. Earlier this week, Microsoft announced its newest Surface device, the Laptop. As with all major product announcements, there is a lot of excitement around the event and often times, you can get caught up in the carefully crafted marketing and displays. With about 48hrs now having passed and more time to reflect on the device, it’s appropriate to look at the device a bit more critically. First off, the device looks gorgeous and Microsoft did a great job with choosing colors that help differentiate the device from other laptops on the market; the Alcantara covering on the keyboard is a unique touch that makes it stand out in a crowd. The battery life and specs all look fine and nothing too shocking on that front. I am still a bit perplexed about Microsoft’s choice to not include USB-C. Yes, I know that as of today, only having USB-A is fine but the company clearly stated this device is designed to last four years; in four years USB-C will be the default and USB-A will be the legacy port like VGA is today. What’s more frustrating is that a Surface Laptop prototype had two USB-C ports and one A, that would have been the perfect combination. Alas, here we are with only one USB-A and DisplayPort. While the keyboard being covered in Alcantara looks fantastic, I do worry about the longevity of the material. In four years, is the material going to look like the futon I had in... --- ### All Change for Office 365 eDiscovery on July 1 > Microsoft moves to a consistent eDiscovery platform for Office 365 from July 1, 2017. Some changes are needed for Exchange and SharePoint. - Published: 2017-05-04 - Modified: 2024-09-04 - URL: https://petri.com/office-365-ediscovery-changes/ - Categories: Microsoft 365, Office - Tags: Compliance, eDiscovery, exchange, Searches, Security and Compliance Center, SharePoint - Article Type: Opinion Further signs of Microsoft discarding the on-premises roots of Office 365 in favor of consistent cross-workload functionality comes when the Security and Compliance Center takes center stage for eDiscovery from July 1. Getting It Right About Office 365 eDiscovery When you write about Microsoft on an ongoing basis, there is always the chance of receiving email from someone in a development or marketing group to tell you that something you said is wrong. Which is what happened when I received a note about my post on Restricting Office 365 Content Searches with Permission Filters.     As it turned out, my error was minor. When making the point that Office 365 will block the creation of new workload-specific searches from July 1, 2017, I failed to emphasize that existing searches and eDiscovery cases will continue to work until they are no longer needed. This is the way that you would hope compliance technology would work as it makes no sense to disable some perfectly technology mid-way through its lifecycle. I pleaded guilty as charged and adjusted the text (one of the reasons why writing for an online site is much easier than for print publications). All is well. That is, until July 1 comes around and the unwary are surprised by something that Microsoft has flagged for several months now. What Happens for Exchange Exchange eDiscovery administrators are accustomed to going to the Compliance section of the Exchange Administration Center (EAC) to create and manage eDiscovery searches. The searches are in-place, meaning that no information is moved out of mailboxes to be searched, and you can apply a hold to keep information until whatever caused the search no... --- ### Build 2017: Here’s What I'll Be Watching For at Microsoft’s Developer Conference - Published: 2017-05-03 - Modified: 2024-09-04 - URL: https://petri.com/build-2017-heres-ill-watching-microsofts-developer-conference/ - Categories: Windows Client OS - Tags: Build 2017, Microsoft, News - Article Type: News Microsoft's Build conference takes place next week and here is what I'll be watching for as the company announces their plans for the year ahead. Next week, Microsoft will host its annual Build conference in Seattle where the company will lay out its plans for the year ahead and showcase new tools and features that it hopes developers will use to build apps and services for Windows and beyond. Every year, Microsoft typically manages to find a way to offer up a few surprises and we expect to see things like the updates coming with Redstone 3, new Azure features and services, updates to existing development tools like Visual Studio for both PC and Mac, and more at the show this year. Further, there is likely to be an expansion of support for software on Linux; Microsoft has already said there are improvements coming to SQL Server 2017 for those users. While looking forward is an important part of Build and undoubtedly a key focus of the event, looking backward has significant value as well and here’s what I’ll be watching for this year. This is not an exhaustive list by any means but is what piques my interest about how Microsoft is moving forward. Bots: Microsoft made a huge deal about bots last year at Build and it’s hard to say how well the initiative has taken off with developers. We have seen a few bots show up on Skype but have yet to see a massive deployment of these services. That being said, it’s far too early to say that bots are not the future. In fact, I suspect the opposite... --- ### Using MPIO with the Windows Server iSCSI Initiator > This post will explain how to configure the Windows Server iSCSI Initiator to use Multi-path I/O (MPIO) for fault tolerant storage networking. - Published: 2017-05-03 - Modified: 2024-09-04 - URL: https://petri.com/using-mpio-windows-server-iscsi-initiator/ - Categories: Windows Server, Windows Server 2016 - Tags: Azure, iSCSI, iSCSI Initiator, MPIO, Multi-path I/O, SAN, StorSimple, virtual appliance, Windows Server - Article Type: How To Aidan Finn shows you how to use the Windows Server iSCSI Initiator to create a network fault-tolerant connection to an iSCSI target by configuring MPIO. In this post, I will show you how to use the Windows Server iSCSI Initiator to create a network fault-tolerant connection to an iSCSI target by configuring MPIO. Note that the lab used for the below scenario was based on a Windows Server 2016 connecting to an Azure StorSimple 1200 virtual appliance.     iSCSI Networks Add two network interfaces to the server that will be connecting to the storage appliance. Each interface will connect to the iSCSI storage system. Various vendors will have requirements for the network configurations: Some will require both iSCSI NICs to be on different networks/VLANs. Others will require both iSCSI NICs to be on the same network/VLAN. And some vendors will be okay with either option. In my case, both iSCSI NICs are on different networks: iSCSI NIC1: 10. 0. 1. 13/255. 255. 255. 0 iSCSI NIC2: 10. 0. 2. 13/255. 255. 255. 0 Each iSCSI NIC on the server will have 1 connection to a corresponding NIC on the storage appliance. This means that there will be 2 iSCSI sessions for each iSCSI volume on the storage appliance that the server will connect to. If I used a single VLAN/subnet for all iSCSI traffic, each iSCSI NIC on the server could connect to both iSCSI NICs on the storage appliance. There are 2 sessions per iSCSI NIC per volume. This means that there would be 4 sessions per volume that the server will connect to. Make sure that the two iSCSI interfaces on the server can communicate reliably with the corresponding iSCSI NICs or the... --- ### List Operations with React JS and SharePoint Framework - Published: 2017-05-03 - Modified: 2024-09-04 - URL: https://petri.com/list-operations-react-js-sharepoint-framework/ - Categories: Microsoft 365, Office, SharePoint 2013, SharePoint 2016 - Tags: CRUDsheet, React JS, SharePoint Framework;React - Article Type: How To Learn to use the SharePoint Framework and React JS to perform CRUD operations against SharePoint lists. For the past few months, I have been posting articles that walk through the basics of SharePoint Framework (SPFX) development with React JS. This month, I am going to introduce a completed web part that shows how to perform CRUD operations against SharePoint lists. After introducing the web part in this article, I will focus on the code necessary to interact with the SharePoint list APIs. In subsequent articles, I will examine additional aspects of the project in more detail. You can grab the completed code right away from my GitHub repository.     Introducing the CRUDSheet Project CRUDSheet is a client web part design to demonstrate operations against SharePoint lists. Many of the patterns you need to know for web part development are embodied in this sample, which performs CRUD operations against a list of contacts. Contacts are displayed in a grid format with in-place editing of each cell. Figure 1 shows the grid with a cell in edit mode.  Figure 1 -- Editing a Cell The CRUDSheet project consists of several React JS components designed to represent elements in a spreadsheet. These components have a parent-child relationship representing the entire grid, a grid row, and a grid cell. Figure 2 shows the component hierarchy.  Figure 2 -- Component Hierarchy Understanding the Contacts Service Along with the React JS components, the project also has a service that supports SharePoint API calls against the contact list. For the remainder of the article, I am going to focus on... --- ### Windows 10 S: Microsoft’s new Windows SKU for Education and Beyond - Published: 2017-05-02 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-s-microsofts-new-windows-sku-education-beyond-draft/ - Categories: Windows 10 - Tags: News, Windows 10, Windows 10 S, Windows Cloud - Article Type: News Microsoft has introduced a new SKU of Windows 10 called Windows 10 S that will only run store apps and is targeted at educators and consumers. This week in New York, Microsoft hosted its Education focused event where the company has announce a new SKU of Windows 10. Called Windows 10 S, this is the version of Windows I have been referring to for several months as Windows Cloud, we now have all the details about how it operates and fits into the Windows 10 family. In the education segment, at least in the US, Microsoft is fighting an uphill battle against Google with their Chromebooks and Apple’s iPads. Microsoft is hoping that Windows 10 S will have the right mix of features, performance and hardware with attractive price points to take on Chromebooks and claw back some market share. This new SKU of Windows 10, as I previously reported, will only run Windows Store applications. This includes Centennial applications which are classic Win32 apps that have been ported to the Windows Store; this version of Windows will not run any third-party application that comes from outside the Windows Store. If this sounds like Windows RT, it does have many similarities to that operating system. The one big difference is that Windows 10 S can be upgraded to Windows 10 Pro but it should be noted that no Windows 10 SKU can be downgraded to Windows 10 S. To upgrade from Windows 10 S to Windows 10 Pro, it will cost $49 to do so, but if you are an educational institution, the upgrade is free. One of the attractive features with Chromebooks is... --- ### Microsoft Is Bringing Desktop Office Apps to the Windows Store - Published: 2017-05-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-bringing-desktop-office-apps-to-the-windows-store/ - Categories: Windows Client OS - Tags: News, Office, Windows 10, Windows 10 S, Windows Store - Article Type: News Microsoft has announced that they are bringing desktop Office apps to the Windows Store to support Windows 10 S. Last week, I noted that Microsoft was preparing to bring its desktop Office apps to the Windows store and today at the company’s Education event in NYC, the company announced the apps imminent arrival. By bringing the desktop apps to the Windows store, the company can now fully support the newly minted Windows 10 S, which will only run Windows store apps. If the company did not complete this transition before the launch of Windows 10 S, they would have been in an awkward position of not allowing third-party Windows apps, aside from their own. Also, by now servicing these apps from the store, this is one more way that Microsoft is showing its commitment to its own UWP platform. While the Windows store has been slow to develop with high-quality apps and Microsoft took its time to bring its own premier apps to the store, this addition will certainly help boost end-user usage of the Windows store. What’s not quite clear at this point is how Microsoft will continue to support its classic Office apps on the desktop. Even though Windows 10 users can download Office apps from the store, users on Windows 7, the most popular version of Windows being used in the market today, this is not possible. Knowing this, it would seem logical that Microsoft will still service the desktop apps of Office for Windows 10 as it would be quite odd for them to remove that support to force users to use the... --- ### Microsoft Adds a New Member to the Surface Family, the Laptop - Published: 2017-05-02 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-adds-new-member-surface-family-laptop/ - Categories: Hardware - Tags: News, Surface, Surface Laptop - Article Type: News Microsoft has announced a new member of the Surface family, the Surface Laptop At Microsoft’s New York Education event, the company announced a new addition to their Surface lineup called the Surface Laptop. This device is being positioned as the premier device for the Windows 10 S platform which the company is hoping will propel them forward in the education Space. The device has a 13. 5in Pixel Sense display, weighs 2. 76lbs, is 14. 47mm thick in the back, 9. 9mm in the front and comes in several different colors. For ports, the device is charged using the Surface Connect charger (no USB type C unfortunately) and has a USB type A port as well as DisplayPort. For battery life, it lasts 14. 5hrs, and the device will start at $999 and is coming June 15th; pre-orders open today. This new device fills a void in the Surface lineup, a proper laptop. Yes, the Surface Book is a laptop but it may be a bit much for the casual users. Sure, if you are a professional who wants the best hardware, the Book is the way to go, but the Laptop fits in the lower price bracket for those who need a proper laptop where the Surface Pro 4 will not work well. The price point will be a big player in the success of this device. Microsoft is hoping to position this as the premier product for this segment and will let its OEM partners fill in the lower price points. --- ### Focused Inbox Comes to Outlook Desktop at Last > Outlook desktop clients can now use the Focused Inbox feature, but only when the right conditions exist and only for Office 365. - Published: 2017-05-02 - Modified: 2024-09-04 - URL: https://petri.com/outlook-focused-inbox/ - Categories: Microsoft 365, Office, Outlook - Tags: click-to-run, Focused Inbox, Office 365, Outlook, ProPlus Outlook 2016 click-to-run desktop clients are now getting the necessary code for the Focused Inbox feature. It's a good step forward when a really important client is upgraded with an important feature, but you kind of wonder what's happening for the poor-old on-premises community... Long-Delayed Focused Inbox Makes it to Outlook In January 2017, I wrote about how some deployment hiccups had delayed the arrival of the Focused Inbox feature for some clients, especially Outlook desktop. The good news is that the latest builds of Outlook ProPlus (the click-to-run version for Office 365) have the Focused Inbox. All is well and Inboxes around the world are increasingly focused. At least, if you have the right software. Apart from Windows 10 Mobile, the Outlook apps have had Focused Inbox for years because this was the key feature of the Acompli apps acquired by Microsoft in November 2014 and then rebranded as Outlook in January 2015. Of course, today’s Outlook apps are very different, especially in the way that they exploit the Office 365 infrastructure. Outlook 2016 was the last major client to support the Focused Inbox, largely because this client has the most complex of all user interfaces. It is also much harder to update a traditional Windows client than it is to introduce new features into the web client. Coming Soon to a Desktop Near You The long-awaited support for Focused Inbox in Outlook desktop began to appear in the click-to-run version in March with the release of build 7967. 2082. In April, Users (including me) with Office ProPlus configured to use the First Release Current channel for updates received the necessary update in build 8067. 2032. Following Microsoft’s April 20 announcement about a new release schedule for Office ProPlus to have two updates annually, the... --- ### Configure StorSimple as an iSCSI Storage System > This step-by-step instructional guide will show you how to configure an Azure StorSimple 1200 virtual appliance as an MPIO-capable iSCSI storage system. - Published: 2017-05-02 - Modified: 2024-09-04 - URL: https://petri.com/configure-storsimple-iscsi-storage-system/ - Categories: Microsoft Azure - Tags: Azure, Cloud, iSCSI, MPIO, storage, StorSimple, Tiered Storage - Article Type: How To Aidan Finn shares a step-by-step instructional guide, showing you how to configure an Azure StorSimple 1200 virtual appliance as an MPIO-capable iSCSI storage system. In this step-by-step instructional guide, I will show you how to configure an Azure StorSimple 1200 virtual appliance as an MPIO-capable iSCSI storage system.     Please read Deploying a StorSimple Virtual Appliance before proceeding with this article. Why Use iSCSI? StorSimple will often be used when demands on an existing storage system have exceeded its capabilities. For example, an application server uses an E: drive to store terabytes of data. Demand continues to grow. The business has decided that instead of continuing to invest in fast and expensive local storage for the virtual hard disks of the virtual machine, they are going to switch to using cloud storage. They need to do so without too much configuration change. By using the iSCSI capabilities of StorSimple, the customer can: Configure a volume (iSCSI LUN) on-premises of the StorSimple virtual appliance. Connect the application server to the StorSystem volume using the guest OS’s built-in iSCSI initiator and bring the volume online as F:. Shut down the application in the virtual machine. Copy the data from E: to F:. Disconnect E: from the virtual machine and change the StorSimple volume from F: to E: on the application server. Start the application in the virtual machine. The data is in the same volume letter but it is kept in StorSimple. This is storage that is local and tiered to Azure. Deploying the StorSimple Virtual Appliance When you are designing the virtual machine, you probably should keep normal iSCSI concepts in mind: Use... --- ### Understanding Windows Update for Business - Published: 2017-05-01 - Modified: 2024-09-04 - URL: https://petri.com/understanding-windows-update-business/ - Categories: Windows 10, Windows Client OS - Tags: Security, Windows 10, Windows Update for Business, WSUS - Article Type: Overview Find out how Windows Update for Business makes it easier for organizations to keep Windows 10 patched and up-to-date. In this Ask the Admin, I will explain what Windows Update for Business (WUfB) is and how it is different from Windows Update, Windows Server Update Services (WSUS), and System Center Configuration Manager (SCCM).     Windows pulls updates directly from Microsoft's Windows Update servers. There are some limited options that users can set to determine when and how updates are downloaded and applied. But if organizations wanted to take control of the update process in Windows 8. 1 or earlier, it involves installing some local infrastructure. This would be in the form of WSUS with or without SCCM integration. WSUS allows administrators to create deployment rings, download updates from Microsoft for distribution on a local area network, and decide when updates are applied to devices. WUfB makes it easier for organizations to manage updates in Windows 10 Pro, Enterprise, and Education SKUs. Unlike the update mechanisms that most organizations are familiar with, WUfB does not require any infrastructure to be installed. Instead, it allows IT to control how updates are applied using Group Policy or Mobile Device Management (MDM). WUfB relies on the peer-to-peer technology in Windows 10 to efficiently distribute updates amongst devices on the local area network. A local server is not required. It is worth noting that WUfB does not include the reporting facilities provided by WSUS. Configuring Windows Update for Business To configure WUfB using MDM, a mobile-device management solution such as Microsoft Intune is required. And while Intune could manage updates... --- ### Build a Cloud-Integrated Surveillance System Using Microsoft Azure and Windows 10, Part 1 - Published: 2017-05-01 - Modified: 2024-09-04 - URL: https://petri.com/build-cloud-integrated-surveillance-system-using-microsoft-azure-windows-10-part-1/ - Categories: Backup & Storage, Microsoft Azure, Security, Windows 10 - Tags: Cloud Storage, Integration Components, Microsoft Azure, Microsoft Flow, Office 365, Powerapps, Security, Windows 10 - Article Type: How To Jussi Roine shares the beginning stages of how he built a security surveillance system that integrates with Microsoft Azure and Windows 10. I believe that in order to really learn new technologies and services, one needs to ingest the theory. Then, you need to build something based on that theory along with a little bit of improvisation and frustration. I recently had a chance to build a real-world deployment for a cheap surveillance system that integrates with Microsoft Azure and Windows 10.     This blog post is part 1 of the solution that I initially built in early 2017. Part 2 will expand and extend the solution with new capabilities, including Microsoft Flow and PowerApps. The Premise Finnish people have a weird fixation about owning a summer cottage. Preferably, it would be by the lake. According to an older statistic from 2005, we have over 474,000 summer cottages. I guess we like our personal space so much that during holidays we travel to the countryside. We want to stay in solitude in a cabin by the lake. I have never been a big fan of the countryside, summer cottages, or staying longer periods of time in remote locations. Until this February. Due to almost comical coincidences, my brother and I inherited a very small piece of land in rural Finland. Eventually, we decided to build a summer cottage, which turned out to be an actual house. It is also by the lake, which is where all decent summer cottages need to be. We imagined having a nice and spacious cabin for company retreats and workshops. Visits with customers and... --- ### Converting a Desired State Configuration Script Resource to a Resource Module - Published: 2017-05-01 - Modified: 2024-09-04 - URL: https://petri.com/converting-desired-state-configuration-script-resource-resource-module/ - Categories: PowerShell - Tags: Automation, Desired State Configuration, PowerShell, Windows Server - Article Type: How To Learn the necessary steps to convert a script resource into a custom resource module. If you use Desired State Configuration (DSC), you may have already explored many of the resources. There are built-in and community-provided resources that can help to solve configuration management problems. You have probably even played around a bit with building your own resources using the built-in script resource. Script resources, while handy during an initial research phase in determining if something can be done, are not considered the best practice for a production deployment. In this article, I am going to show you how to quickly convert a script resource into a modular resource.     Follow Along with a Practical Example To follow along with an example, I have a script resource that creates a GPO in a domain that I would like to convert to a modular resource. The script resource creates a GPO that is named PKI AutoEnroll. script CreatePKIAEGpo {     Credential = $DomainCredential     TestScript = {         if ((get-gpo -name "PKI AutoEnroll" -domain $Using:Node. DomainName `                 -ErrorAction SilentlyContinue) -eq $Null) {             return $False             }         else {             return $True}             }     SetScript = {         new-gpo -name "PKI AutoEnroll" -domain $Using:Node. DomainName         }     GetScript = {         $GPO= (get-gpo -name "PKI AutoEnroll" -domain $Using:Node. DomainName)         return @{Result = $($GPO. DisplayName)}         }  } Decide to Use a Function-Based or Class-Based Resource There is no hard-and-fast rule for whether a resource should be function-based or class-based. The PowerShell community expects that best practice recommendations will steer us away from function-based... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2017) - Published: 2017-04-28 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-6/ - Categories: Cloud Computing, Dynamics, Hardware, Microsoft 365, Microsoft Azure, Mobile, SQL Server, Windows 10, Windows Server - Tags: News - Article Type: Overview Because it's that time of the quarter, this edition of Short Takes looks exclusively at Microsoft's quarterly earnings announcement. Because it's that time of the quarter, this edition of Short Takes looks exclusively at Microsoft's quarterly earnings announcement. Note: Microsoft announced the financial results for its fiscal year 2017 third quarter on Friday, delivering net income of $4. 8 billion on revenues of $22. 1 billion, narrowly missing analyst estimates.  Brad has already written up a news story covering this announcement, so I will dive into the results and the post-earnings conference call here. "Microsoft dips 2% as revenue misses expectations" "Microsoft meets expectations with $23. 6B in revenue" Um. Office 365 growth is perhaps the biggest news to come out of this announcement Microsoft CEO Satya Nadella started off the post-earnings conference call with press and analysts by stating that one of its most important product lines had "crossed a major milestone": There are now over 100 million monthly active users of Office 365 commercial (in addition to 26. 2 million Office 365 consumer subscribers). "Office 365 commercial seats grew 35 percent year-over-year, and revenue is up 45 percent in constant currency," he noted, and I believe this may be the most important data point to come out of this announcement. Why? Because when you talk "digital transformation," as Microsoft does incessantly these days, you have to look at the software giant's own transformation first. And Office 365 is the bellweather of this transformation, and its success---or lack thereof---will determine how well this company can transition into its future as a cloud services provider. I have questions about the size of... --- ### Office 365 Hits 100 Million Users. On Course for 120 Million This Year > Microsoft's latest results say that Office 365 now has "over 100 million active users". Microsoft will grow Office 365 to 120 million by end 2017. - Published: 2017-04-28 - Modified: 2024-09-04 - URL: https://petri.com/office-365-hits-100-million-users/ - Categories: Microsoft 365, Office - Tags: Office 365, results, revenue, seats - Article Type: News Microsoft's Q3 FY17 results tell us that Office 365 now has over 100 million monthly active users. That's great, but the really interesting thing is how many on-premises seats remain to move to the cloud. More Than 100 Million Active Office 365 Seats The last time Microsoft commented formally, they claimed 85 million active monthly Office 365 users in October 2016. On their April 27 analyst call to discuss their Q3 FY17 results, CEO Satya Nadella said that the new number is “more than 100 million monthly active users. ” In other words, Office 365 has gained over 15 million new users over the last two quarters, or 2. 5 million new users each month. If Microsoft maintains this rate, Office 365 will have close to 120 million active users by the end of calendar 2017. Achieving the Run Rate Goal That’s good progress, but there are still many on-premises seats for Microsoft to harvest. Not all these seats are yet happy to move to the cloud, but there should be enough to allow Microsoft to meet its goal of a $20 billion annualized run rate by the end of June 2018. Yesterday, Microsoft said “Our commercial cloud annualized revenue run rate now exceeds $15. 2 billion. ” To put that number in context, that’s an extra billion-plus over the number last quarter. Five billion more is needed over the next five quarters to reach the $20 billion goal, so Microsoft is moving at the right pace. Where Office 365 Growth Will Come From To return to the question of moving on-premises seats to the cloud, in response to a question from Brad Sams on April 10, Microsoft VP Jeff Teper said that SharePoint is now used... --- ### Microsoft's Cloud Continues To Drive Its Q3 Results Upward - Published: 2017-04-27 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-cloud-continues-drive-q3-results-upward/ - Categories: Main - Tags: Earnings, Microsoft - Article Type: News Microsoft's Cloud performance continues to be a key driver of revenue for the company with Q3 results indicating that its services have a run rate of $15.2 billion. Microsoft has released it's third quarter earnings today with the company reporting revenue of $22. 1 billion with operating income at $5. 6 billion, GAAP. Net Income during the period was $4. 8 billion with a diluted EPS for the quarter being $0. 61; during the quarter Microsoft says that it returned $4. 6 billion to shareholders in the form of share repurchasing and dividends. As with most things Microsoft, most eyes are on cloud performance with the company saying their cloud services are on a $15. 2 billion run rate. Revenue in the company's Productivity and Business Processes segment was $8. 0 billion which is an increase of 22% with LinkedIn contributing revenue of $975 million. Office commercial increased 7% with Office 365 commercial growth up 45% and Office 365 consumer subscribers increased to 26. 2 million; on the commercial side, Microsoft has passed 100 million monthly active users. Digging a bit deeper into LinkedIn which the company purchased for $26. 2 billion, even though it had revenue of $975 million, operating income was negative $386 million. Investors will be watching closely to see how the company can turn this massive acquisition into a positive revenue driving line of business. Intelligent Cloud revenue was $6. 8 billion, up 11% with Azure revenue growing at 93% during the period. Server products and cloud services revenue increased 15% but Enterprise Services revenue was down 1%; the drop was a result of a decline in custom support agreements. Revenue for the company's More Personal computing was $8. 8 billion which is a decline of 7% that the... --- ### Windows 10 Device Guard Versus AppLocker - Published: 2017-04-27 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-device-guard-versus-applocker/ - Categories: Security, Windows 10, Windows Client OS - Tags: Antimalware, Application Control, applocker, Device Guard, Malware, Security, Windows 10 - Article Type: Overview Russell Smith discusses the key differences between AppLocker and Device Guard in Windows 10. In this Ask the Admin, I will explain the difference between Device Guard and AppLocker in Windows 10. We will also discuss whether they should be used independently of each other or together.     Application control or application whitelisting is an important line of defense for enterprises in the fight against malware. It has long been recognized that signature-based antimalware software is not enough by itself. Removing administrator privileges from end users, while definitely a critical step, also needs to be part of a defense-in-depth strategy. Software Restriction Policies and AppLocker Application whitelisting technology first appeared natively in Windows XP as Software Restriction Policies (SRP). It was not widely adopted because it was difficult to implement. AppLocker was introduced as a replacement for SRP in Windows 7. It is more flexible and easier to deploy. So, why does Windows 10 need a new application to control technology? The tech behind Device Guard is not completely new but it is being exposed for the first time. There are other technologies such as Kernel Mode Code Integrity (KMCI) and User Mode Code Integrity (UMCI). KMCI came as part of Windows Vista and UMCI is new in Windows 10. These enforce policy rules that will allow drivers, user-mode binaries, MSIs, and scripts to run if signed off on by a trusted publisher. Furthermore, in Windows 10, KMCI can be protected by Virtualization-Based Security (VBS) on supported hardware. This isolates KMCI in a virtual machine that protects it. This is especially... --- ### Windows Cloud + Education: The Challenge Microsoft Must Solve - Published: 2017-04-27 - Modified: 2024-09-04 - URL: https://petri.com/windows-cloud-education-the-challenge-microsoft-must-solve/ - Categories: Windows Client OS - Tags: Microsoft, News, Windows, Windows Cloud - Article Type: News Microsoft is working on a new OS targeted at the education market, called Windows Cloud, but they have a few hurdles to overcome to push back against Chromebooks. Next week, Microsoft is hosting an event in NYC where the company is expected to announce Windows Cloud. The invite points to the fact that this is an education focused event and if the company wants to push back against Chromebooks and iPads, they have a tough challenge ahead. Stepping back and looking in, the education market is vastly different from the corporate and personal computing segments. For starters, cost, durability, serviceability, and warranty are highly important. Sure, you could argue this is the same for everyone else but in education a four-year warranty is ideal, rugged devices are essential, and they need a simple interface as well. Everything I wrote above is not new and represents the reasons Chromebooks have done so well. They are inexpensive, they have a good browser, easy to manage and are almost disposable at prices starting around $199. FutureSource recently shared their data on operating system share based on the annual shipment for the education market and it shows that Chrome OS is taking a large slice of the market share pie, 58% in the US, up from 50% last year, and you can begin to understand why Microsoft is concerned. It is worth pointing out that the company holds a significantly larger portion of the market share outside the US but on the company’s home turf, they have room for growth. In education, time is not a luxury. A teach has a full plate of educating the students, lesson planning, grading... --- ### Best Practices for Deploying StorSimple Virtual Arrays > This post will describe Microsoft's best practices for designing and deploying the Azure StorSimple 1200 virtual appliance for tiered storage to the cloud. - Published: 2017-04-27 - Modified: 2024-09-04 - URL: https://petri.com/best-practices-deploying-storsimple-virtual-arrays/ - Categories: Hyper-V, Microsoft Azure, VMware - Tags: 1200, Azure, Best Practices, Calculate, Calculdation, Configure, Create, Deploy, Design, Estimate, ESXi, Hot Tier, Hyper-V, Local Disk, size, Sizing, StorSimple, virtual appliance, virtual machine, vmware - Article Type: How To Aidan Finn looks at some of the best practices for using the StorSimple 1200 virtual appliance. Let's look at some of the best practices for using the StorSimple 1200 virtual appliance. It was recently made available by Microsoft to small and medium enterprises (SMEs), as well as small and medium businesses (SMBs).     The Virtual Machine The virtual appliance can be deployed on-premises as a virtual machine on one of three virtualization platforms: Windows Server 2012 or later Hyper-V VMware ESXi 5. 5 or later Windows Server 2008 R2 SP1 Hyper-V On Hyper-V hosts: Use Generation 2 virtual machines on Windows Server 2012 or later Hyper-V. Do not use Dynamic Memory. Use dynamic disks. Do not use the differencing disks option for the data disk. Resizing the disks is not allowed and will lead to data corruption. On ESXi hosts: Use virtual machine versions 8 through 11. Thin provisioning should be used for the data disk. Resizing the disks is not allowed and will lead to data corruption. Note that time synchronization for the virtual machine via the VMware Tools or Hyper-V integration services should be enabled. Sizing the Data Disk The virtual appliance data disk is where all hot data is stored. This disk must be sized appropriately between 500GiB and 8TiB. This is x1024 instead of 1000. The size of the data disk will directly control how much local plus cloud or total storage can be provisioned in the appliance. Local storage is used as follows: Approximately 12 percent of the local disk is reserved for each volume (iSCSI) or share (file... --- ### New Hyper-V Features in Creators Update > Windows 10 Creators Update added new features to Hyper-V and Hyper-V Manager - read this post to learn about these additions and changes. - Published: 2017-04-26 - Modified: 2024-11-19 - URL: https://petri.com/new-hyper-v-features-creators-update/ - Categories: Hyper-V, Windows 10 - Tags: Connect Zoom, Creators Update, Dynamic Connect Resize, Hyper-V, hyper-v manager, NAT, Nested Virtualization, Quick Create, Windows 10 - Article Type: Overview Aidan Finn discusses how Microsoft's release of the Creators Update will impact your Windows 10 client Hyper-V deployments. Microsoft released the Creators Update recently and that should make its way out to our Windows 10 PCs over the coming months. In this post, I will show you how this update will impact your Windows 10 Client Hyper-V deployments.     Please note, there is no Creators Update for Windows Server 2016. This was confirmed by Elden Christensen. He is a Principal PM Manager in the clustering and file services team within the Microsoft Enterprise Cloud Group. Keep in mind, the Hyper-V Manager in Windows 10 is also the Hyper-V Manager that you use to remotely manage Windows Server 2016 hosts. The Theme Typically, Hyper-V features are aimed at infrastructure or private cloud deployments. This is the first time where I can say that this is not the case. Every one of these updates appears to be focused at developers, testers, or people using Hyper-V to demonstrate other products. In other words, professional consumers of virtualization should like this latest big update to Windows 10. Quick Create The first feature that Microsoft talked about in Creators Update (CU) was Quick Create. If you create a virtual machine using the New Virtual Machine Wizard in Hyper-V Manager, then you get a traditional next-next-next wizard. It asks a lot of questions and offers a lot of options. Perhaps, you just want a virtual machine and you want it now. Quick Create opens one dialogue that asks you: The name of the desired machine How you want to install the... --- ### Discover the Power of Hybrid Search in SharePoint 2016 - Published: 2017-04-25 - Modified: 2024-11-19 - URL: https://petri.com/discover-the-power-of-hybrid-search-in-sharepoint-2016/ - Categories: SharePoint, SharePoint 2016 - Tags: cloud hybrid search, Hybrid federated search, Hybrid search, SharePoint 2016 - Article Type: Overview In this short video, discover the power of hybrid search in SharePoint 2016. Find out all the things that are now possible with a seamless integration of SharePoint on-premises and SharePoint Online. Among the new features in SharePoint 2016, Hybrid Search is the most popular. The video below gives you an overview on Hybrid Federated Search, Cloud Hybrid Search, as well as major improvements in user experience.     Actually, the capabilities were inspired by feedback that Microsoft received from users. They have been built to fulfill the wishes of existing users as well as to meet the needs of new adopters of the platform. Microsoft aims to push SharePoint more to the cloud and mobile environment. With this feature, the company has just jumped one big step forward. As you may know, most organizations prefer hybrid deployment, the ability to access the best of both worlds. For example, SharePoint Online provides flexibility on infrastructure but SharePoint on-premises still gives peace of mind on data security. Hybrid Search has definitely made it easier for organizations to move deeper into hybrid environments. There are great video tutorials that explain all sorts of things you can do within a well-configured hybrid environment. In a nutshell, Hybrid Search allows users to get results from both SharePoint on-premises and SharePoint Online in one place, with one query. And, this is just the beginning; there are many more capabilities that come with Hybrid Search. The short video below explains what you need to know in order to leverage the power of this indispensable feature. Watch more video tutorials at VisualSP. com. --- ### Why Has Microsoft's Project Centennial Been So Unsuccessful? > Microsoft built a bridge, Project Centennial, so Win32 desktop apps could be submitted to the Windows 10 app store, but things have not gone well so far. - Published: 2017-04-25 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-project-centennial-unsuccessful/ - Categories: Windows 10 - Tags: App Store, Developers, iOS, Microsoft, Project Centennial, Windows 10, Windows 10 App Store - Article Type: Opinion, Overview Joseph Finney explains why there are so few popular desktop apps in the Windows app store. Two years ago, at Microsoft's developer conference, Terry Meyerson announced the use of four different bridges. These bridges provided a way that developers could bring apps to Windows 10. There was an iOS bridge, Android bridge, web apps bridge, and the classic win32 desktop apps bridge. Currently, the Android bridge is dead. The web apps bridge has been silent. Only the iOS bridge and the Win32 bridge have had any success.     Of these four bridges, three of them were an attempt to draw developers from alternative platforms to Windows. Project Centennial is different. This bridge was aimed at existing Windows developers who have built applications for the Windows desktop environment. It wants to bring them into the new Microsoft app store. I expected these Windows developers to gladly run a command line application, package up their app, and submit it to the Windows 10 app store. That is not what has happened. There have been very few Project Centennial apps to come through the store and those who have come through are not big names. This article attempts to understand why there are so few popular desktop apps in the Windows app store. Who Is Missing? Most Popular Windows 10 Apps Nearly every single big and medium Windows desktop application is missing from the Windows 10 app store. The only big-name application is Adobe Photoshop Elements. Even though Adobe and Microsoft said that Premiere Elements would be available in the store, it... --- ### Teams Adds to the Office 365 Compliance Story > Microsoft Teams now boasts support for a range of Office 365 compliance features as chats are captured in mailboxes to make them searchable. - Published: 2017-04-25 - Modified: 2024-09-04 - URL: https://petri.com/teams-compliance-story/ - Categories: Microsoft 365, Office - Tags: Audit, Compliance, content searches, Exchange Online, Retention, Teams - Article Type: News Microsoft extends the Office 365 data governance framework to cover conversations in Teams. Office 365 captures chats as items in Exchange Online mailboxes that are discoverable with content searches. And audit events work too! Better Than Expected Compliance in Teams I have criticized the support for compliance functionality in Teams and Planner in the past. Now, it seems that Microsoft is doing the right thing for Teams. However, Planner appears to be left behind, which seems to be its normal status. In a recent blog post, Microsoft laid out the compliance features supported by Teams today and what their immediate plans are in this area. There is much to like here, including support for the new Office 365 data governance framework. Chats and Conversations People communicate in Teams through “chats”, or threaded conversations. Teams stores chats in a Teams data store hosted by Azure. Because the data store lies outside Office 365, the information is unavailable to the data governance framework. The solution is to capture contributions into users’ Exchange Online mailboxes. As people contribute to chats, a process running in the “Office 365 substrate” (think of a mailbox assistant type process) logs contributions to conversations as mailbox items. In some respects, this is a similar approach to what happens when Exchange captures mailbox audit events in a hidden folder in user mailboxes. Chats are captured as follows: Group and 1:1 chats are captured in the mailboxes of the participating users. For example, if John and Pat have a 1:1 chat, copies of the chat are recorded in both their mailboxes. Contributions made to a chat in a channel are recorded in the group mailbox belonging to the team. In all cases,... --- ### Microsoft Begins Putting LinkedIn To Use, Challenging Salesforce - Published: 2017-04-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-begins-putting-linkedin-use-challenging-salesforce/ - Categories: Dynamics - Tags: Dynamics 365, Linkedin, News - Article Type: News Microsoft has announced today that Dynamics 365 customers can now integrate with LinkedIn Sales Navigator and that they have a new product called Dynamics 365 for Talent designed for HR organizations. LinkedIn CEO Jeff Weiner, Satya Nadella, LinkedIn chairman Reid Hoffman. When Microsoft acquired LinkedIn for $26. 2 billion, it raised a few eyebrows but also likely made Salesforce groan as well. Both companies were bidding to buy the business social network and it was Microsoft who came out victorious. To little surprise, Microsoft is not wasting any time to integrate the social network's products and services into its Dynamics 365 platform. Microsoft has announced today that Dynamics 365 customers can now integrate with LinkedIn Sales Navigator and that they have a new product called Dynamics 365 for Talent designed for HR organizations to integrate with LinkedIn’s Recruiter and Learning solutions. Microsoft does not have the best record when it comes to large acquisitions (Nokia, aQuantive) which means the company’s shareholders are going to be scrutinizing this massive purchase to see how the company will extract value out of its purchase. The integration between LinkedIn and the company’s sales platform is a natural fusion of technology and data which the company is counting on to help it push back against Salesforce who has the mindshare and market share in this segment. The social business platform continues to grow under Microsoft’s ownership, the company announced today that there are more than 500 million registered users in 200 countries. All of this personal and corporate data is what is now helping to the company’s sales engine and should allow Dynamics to better compete with Salesforce. --- ### Deploying a StorSimple Virtual Appliance > This step-by-step instructional post will guide your through creating, deploying & registering a StorSimple tiered cloud storage appliance on your network. - Published: 2017-04-24 - Modified: 2024-11-19 - URL: https://petri.com/deploying-storsimple-virtual-appliance/ - Categories: Hyper-V, Microsoft Azure, VMware - Tags: Azure, Cloud Storage, Device Manager, storage, Storage Account, StorSimple, StorSimple Device Managers, Tiered Storage, virtual appliance - Article Type: How To Aidan Finn shares how to deploy a new StorSimple 1200 virtual appliance on Hyper-V. In this post, I will show you how to deploy a new StorSimple 1200 virtual appliance on Hyper-V. Please note that VMware is quite similar to this. It also includes the StorSimple device manager in the Azure Portal.     StorSimple Device Manager StorSimple appliances are deployed on-premises but they are managed from the cloud. Some Azure channels, also called Microsoft offers, such as EA or Open will offer management from the Legacy Management Portal. Moving forward, we should use the newer experience in the Azure Portal. I am documenting the latter. In the Azure Portal, we can manage many StorSimple appliances using the StoreSimple Device Managers. This is really an experience with a grammatically incorrect name that will probably be changed in the ever-fluid Azure Portal. Browse over to More Services and search for StorSimple. Select StorSimple Device Managers and click + Add to create a new resource. Give the new device manager a name and select/create a resource group to place it in. You can optionally create a new storage account. This storage account will be used in the cloud tier for your on-premises StorSimple appliances. Choosing this option does limit your flexibility. You can create a storage account yourself. This will give you what you want rather than taking the default. Here are the details: General storage account GRS Same resource group as the device manager You might opt to create a blob storage account for the hot or the cool tier. Afterward, you can... --- ### Driving Adoption for Office 365, Part 6 - Published: 2017-04-24 - Modified: 2024-12-03 - URL: https://petri.com/driving-adoption-office-365-part-6/ - Categories: Microsoft 365 - Tags: Adoption, Microsoft, Office 365 - Article Type: How To Jasper Oosterveld shares guidance through this series on driving adoption for Office 365. We are done with our digital transformation roadmap. What is next? We decided which Office 365 business scenarios we are going to work on. It is time to go more into detail with one or more requirement workshops. You need to sit down with the stakeholders and define the exact requirements for each scenario. It needs to be absolutely clear what you are going to build and deliver.  The customer has to sign off. Please do not take this lightly. You want to prevent a situation where you are building a Volkswagen with the customer expecting a Porsche.  The deliverable of a requirement workshop should be a functional design or a detailed overview of the requirements.     Do you remember the second part of the series? We discussed the absence of Office 365 tools for the business scenarios. I mentioned that assigning an Office 365 tool did not matter at that point. The benefits for the business are what matter. We are now at the stage, after the requirement workshop, where we start assigning Office 365 tools. For example, we have the scenario collaboration within projects and teams. Do the requirements and the company culture match the Microsoft Teams? Go for it! Or do they match Outlook Groups? Go for it! Let me share one final bit of advice. Start out small. Do not dive into all the scenarios at the same time. Pick one or two. This will help in delivering quick wins for the organization in weeks rather than months. [ad... --- ### Microsoft’s Preparing to Release Desktop Office Apps in the Windows Store - Published: 2017-04-24 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-preparing-release-desktop-office-apps-windows-store/ - Categories: Microsoft 365, Office - Tags: News, Office, Office 365, Windows Store Microsoft is preparing to release its productivity apps in the Windows Store which will help show the company's commitment to Windows Cloud. Since the release of Windows 8, Microsoft has been trying to get its Windows Store off the ground. Everything from paying developers to build apps to building bridges that allow you to leverage code you have already been written has been tried with only marginal success so far. With the company trying desperately to show the value of its Windows Store, you would think that they would be taking all of their classic applications and bringing them into the modern app environment. But, here we are in 2017 and the company’s premier productivity applications are still classic Windows applications. That is about to change as evidence of the new Office apps have started to appear in the store and the company may be lining up an announcement alongside Windows Cloud for next week. At the company’s media event in NYC, Microsoft is expected to announce Windows Cloud which will only run modern apps from the Windows Store; to show their commitment to this Windows SKU, they must also have Office apps ready for release. We don’t know exactly when Windows Cloud will be released but Office apps delivered through the Windows Store could arrive as soon as they are ready for public testing. It would not be surprising to see Microsoft launch a ‘preview’ of these applications first, followed by the full release later in the year which would require an Office 365 subscription to utilize the applications. The other application that Microsoft has not brought to the... --- ### Building Your Disaster Recovery Plan - Published: 2017-04-21 - Modified: 2024-09-04 - URL: https://petri.com/building-disaster-recovery-plan/ - Categories: Backup & Storage, Cloud Computing - Tags: Disaster Recovery - Article Type: Overview Building and testing Disaster Recovery (DR) plans isn’t anyone’s favorite activity, but it is very important. Find out how to get started building a new DR plan or revamping an existing one. Let’s face it, building and testing Disaster Recovery (DR) plans isn’t anyone’s favorite activity. However, it’s like a life boat on a cruise ship -- you hope you never need it but if anything happens it can be a lifesaver. Although your DR plan doesn’t help you much in day-to-day operations, the lack of one can be disastrous. This is especially true for small and medium-sized businesses that typically have fewer resources and are often tapped out just covering their daily operations. However, these are the businesses who probably need a DR plan the most because a prolonged failure in their IT infrastructure has the potential to put them out of business permanently. A solid DR plan is essential to businesses of all sizes, as it makes your company more resilient to serious IT outages and enables you to restore your critical services with as little impact on business operations as possible.     DR isn’t without its challenges. Business processes are complex and protecting them is equally complex. Just as important, DR can be expensive. For instance, if your DR plan requires a physical hot site, then you need to buy the computing, networking, storage, and software required to support your mission critical workloads. These types of costs have driven many businesses to look to the cloud to replace the need for a DR hot site. So how do you go about building a DR plan? It’s not just making regular backups. Although there isn’t room to... --- ### What Is Software Defined Networking In Windows Server 2016? - Published: 2017-04-21 - Modified: 2024-09-04 - URL: https://petri.com/software-defined-networking-windows-server-2016/ - Categories: Windows Server, Windows Server 2016 - Tags: Cloud, Network virtualization, Software-Defined Networking, Windows Server 2016 - Article Type: Overview Russell Smith takes a look at how Software Defined Networking in Windows Server 2016 can add a virtualization layer on top of your physical network hardware. In today's Ask the Admin, I will look at how Software Defined Networking (SDN) in Windows Server 2016 can add a virtualization layer on top of your physical network hardware. This can provide more flexibility, security, and reliability for cloud apps.     Cloud computing is all about agility and elasticity. It is also about being able to quickly deploy the resources an app needs on demand. Windows Server 2016 was updated to include several features that helped Microsoft achieve those goals in Azure. One of these is SDN. Instead of depending on what your physical network infrastructure has to offer, SDN provides an abstract layer of virtualized services that sits on top of your physical network. This enables easier and faster management and networks that can be more granularly defined for specific applications. SDN allows networks to evolve as quickly as other cloud resources, while still providing all the security and isolation of physical network hardware. It adds micro-segmentation by means of policy. Windows manages SDN policies, which can be created and managed programmatically. Integration with Azure Stack, Azure in the cloud, or other Windows Server services allows you to have the flexibility and elasticity required for distributed cloud applications. Traditional hardware-based networks lack this. Windows Server 2016 Network Controller (Image Credit: Microsoft) Network Controller Provisioned inside three Hyper-V virtual machines, Windows Server 2016 Network Controller is a central management service for configuring and monitoring SDNs. Network Function Virtualization Network technologies... --- ### Paul Thurrott's Short Takes: April 21 - Published: 2017-04-21 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-21/ - Categories: Cloud Computing, Microsoft 365, Mobile, Windows 10 - Tags: News - Article Type: Overview Because it always rains when I drive, this edition of Short Takes looks at Microsoft's new schedule for Windows 10 and Office 365, Qualcomm confirms Windows 10 on ARM schedule, Microsoft puts killing Wunderlist on its To-Do list, and more. How I'll be spending the day today. Because it always rains when I drive, this edition of Short Takes looks at Microsoft's new schedule for Windows 10 and Office 365, Qualcomm confirms Windows 10 on ARM schedule, Microsoft puts killing Wunderlist on its To-Do list, and more. Microsoft's new schedule means more Windows 10 upgrades? ? Yesterday, Microsoft announced that it is aligning the Windows 10 and Office 365 (and System Center) development schedules. On the Windows front, this means that "feature updates"---which are major OS upgrades---will arrive twice a year, in March and September, and utilize the same (existing) schedule as Office 365. This is nice for enterprises in that it's predictable. But with each Windows 10 version getting an 18-month support window---down from 10 years with versions previous to Windows 10---this is also bad for enterprises. My guess is that these feature updates will become less major, and the Creators Update is perhaps a great example, since this is the most minor major update to Windows 10 yet, if you will, with very few major new features. "Microsoft will now make major changes to Windows twice a year" No, it will add new features to Windows 10 twice a year. Microsoft's new schedule means that, yes, it is killing traditional Office Yesterday, Microsoft announced that it is aligning the Windows 10 and Office 365 (and System Center) development schedules. Buried in its announcement is an interesting statement of the end-of-life of traditional Office... --- ### StorSimple Available -- Priced for Small and Medium Enterprises > Microsoft made their tiered storage solution, StorSimple, available through the Cloud Solution Provider (CSP) program, targeting small/medium businesses. - Published: 2017-04-21 - Modified: 2024-09-04 - URL: https://petri.com/storsimple-available-priced-small-medium-enterprises/ - Categories: Backup & Storage, Microsoft Azure, Security - Tags: Azure, Cloud Solution Provider, Cloud Storage, CSP, Small Medium Business, Small Medium Enterprise, storage, StorSimple, Tiered Storage - Article Type: Opinion, Overview Learn about how StorSimple provides affordable, cloud-scale storage to SMEs. Microsoft released its hybrid/tiered storage solution, StorSimple on March 1st. This is a virtual appliance via the Cloud Solution Provider (CSP) program. This release aims, via Microsoft partners, to provide affordable, cloud-scale storage. It hopes to solve several problems for small and medium enterprises (SMEs).     A Brief History of StorSimple StorSimple started out as a physical appliance that Microsoft acquired in 2012. This acquisition provided Microsoft with its first physical storage solution. Prior to this, Microsoft did have some history in storage. A large percentage of Windows Server licenses are used as storage servers of some kind but they never went below the operating system layer. The StorSimple physical appliance is a tiered storage solution. It has several layers of SSD-based and HDD-based local storage that can extend into very affordable, blob storage within the cloud. The product works by locally retaining active, hot, or working-set data. It moves inactive or cold data to the cloud. This tiered storage operates transparently to the end user or the system that is consuming storage from the appliance. A share or volume is created and this spans local and cloud storage. The system moves data as required and places it into optimal locations. Microsoft quickly started attempting to sell StorSimple. I attended training for the appliance and I was not impressed. I liked the idea but disliked the execution. The appliance was extremely expensive. It required a large Enterprise Agreement (EA) licensing deal with Microsoft, which was limiting the... --- ### Microsoft Will Release Two Feature Updates Per Year for Windows 10; Redstone 3 Arrives in September - Published: 2017-04-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-release-two-feature-updates-per-year-windows-10-redstone-3-arrives-september/ - Categories: Windows 10 - Tags: News, Redstone 3, Windows 10 - Article Type: News Microsoft has announced that Windows 10 will received two feature updates per year and that Redstone 3 will arrive in September. Microsoft is making a few changes to how it will service Windows, Office 365 ProPlus and System Center Configuration Manager. Announced today, Microsoft will be releasing two feature updates a year for Windows 10 in March in September and with each release, System Center Configuration Manager will support this new aligned update model for Office 365 ProPlus and Windows 10, making both easier to deploy and keep up to date. This is a big change for Microsoft as Windows will now be on a more predictable pattern for major updates and by aligning it with Office 365 Pro Plus, this should make these two platforms easier to service from an IT Pro perspective. It’s worth pointing out that when I surveyed IT Pros earlier this year, they preferred one major update per year but at least Microsoft is now being more transparent about when they are targeting the releases. The big news here is also that Microsoft is announcing when Redstone 3 is targeted for release. The company is looking at a September release window but it is worth pointing out that they traditionally release the month after the code is completed. For the Creators update, it goes by the figure of 1703, the 03 being March, and for the Anniversary update, it is called 1607 but was released in August. And as always, these are guidelines for release, dates could change at any time. This is a big promise by Microsoft and I will be curious to see if... --- ### Microsoft Deepens Its Commitment to IoT - Published: 2017-04-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-deepens-commitment-iot/ - Categories: Cloud Computing - Tags: IoT Central, Microsoft, News - Article Type: News Microsoft is digging in when it comes to enterprise IoT with the company announcing several new products and security enhancements. There are two sides of the IoT world, the consumer side and the enterprise channel. On the consumer side, Microsoft has been mostly absent but on the enterprise side, the company is digging in its heels to secure its position in this growing segment. The company has announced today IoT Central which is a new software-as-a-service (SaaS) offering that will help reduce the complexity of the wide variety of IoT solutions. This service is a fully managed cloud product that enables companies to extract the value out of IoT products without having cloud solution expertise on staff. Currently, this product is in private testing but it will be rolling out to new users over the coming months; you can sign up here to notified when the product reaches general availability. In addition to IoT Central, Microsoft is introducing a new pre-configured solution in the Azure IoT Suite, Connected factory, which makes it easier to connect on-premises OPC UA / OPC Classic devices to your environment and Azure Time Series Insights, a fully managed analytics, storage, and visualization service that simplifies the ability to quickly explore and analyze data from IoT solutions. Every time someone mentions IoT devices, one of the topics that comes up quickly is security. With millions of these edge devices being placed inside and outside of corporate firewalls, they create a large attack vector. To help customers using Azure with their IoT products, Azure IoT now supports standards Device Identity Composition Engine (DICE) and Hardware... --- ### Turning Office 365 Off at the Weekend > France has a new law to allow employees to disconnect from work at the weekend and holidays. How can we implement a block with Office 365? - Published: 2017-04-20 - Modified: 2024-11-19 - URL: https://petri.com/turn-office-365-off-at-the-weekend/ - Categories: Microsoft 365, Office - Tags: El Khormi, Exchange Online, France, Office 365, Set-Mailbox, Set-MsolUser - Article Type: Opinion A French law might force companies to turn Office 365 off at the weekend. It might be blissful to never receive mail or be asked for a document when you’re supposed to have downtime. The question is how to make this happen with Office 365? France Says No to Weekend Working The French El Khomri law that allows “the full exercise by the employee of his right to disconnect and implementation by the company of devices to regulate the use of digital tools” came into effect on January 1, 2017. The law gives employees the right to avoid the use of IT systems, including Office 365, at weekend and holiday periods. The exact details of how employees can disconnect are subject to discussions within individual companies and agreement between management and bodies such as workers’ councils.     The logic behind the new law is that everyone deserves the right not to be disturbed by work interruptions when they are at home or on vacation and should be spending time with their families. It is hard to argue against the intent of the law. It seems like everyone is interrupt-driven today and our lives are governed by the squeaks, beeps, and other noises emitted by PCs and other devices. Tools like MyAnalytics allow people to measure how much time they spend on activities outside normal working hours, but it is unclear how effective this data is in persuading corporate employees to ease back. Hence the new requirement on companies operating in France to come to some arrangement to protect employees against overwork caused by “digital tools”. It is easy to imagine how to cut off IT for on-premises servers. After all, the easiest thing in the world is to power down all systems... --- ### Making the Most of Virtual Desktops, Task View, and Snap Assist in Windows 10 - Published: 2017-04-20 - Modified: 2024-09-04 - URL: https://petri.com/making-virtual-desktops-task-view-snap-assist-windows-10/ - Categories: Windows 10, Windows Client OS - Tags: Productivity, Snap Assist, Task View, Virtual Desktops, Windows 10 - Article Type: Overview Russell Smith takes a look at putting virtual desktops to use with a bit of help from Task View and Snap Assist in Windows 10. In this Ask the Admin, I will take a look at putting virtual desktops to use with a bit of help from Task View and Snap Assist.     Virtual desktop technology has been built into Windows since NT days. It has only recently been realized as a baked-in feature of Windows 10. Before that, you needed to either download a third-party application, use Microsoft’s own Virtual Desktop Manager PowerToy for XP, or use Windows Sysinternals Desktops. Power users rejoiced. This was a feature they had been requesting for years. I have tried a few times to incorporate virtual desktops into my workflow but it always seemed to take too much effort to set up. In the end, it was not useful enough to warrant the effort involved. Perhaps, I had the wrong approach. Instead of creating a virtual desktop for each group of tasks that have a result in the real world, it would be better to break down my understanding of tasks to groups of windows. I had been creating one for emails, chats, Petri articles, personal tasks, etc.   Let me explain further. Organize and Quickly Access Groups of Windows The problems with Windows is that there are too many windows. Consider a feature like Snap and now Snap Assist in Windows 10. Two windows can be quickly positioned, one on the left and one on the right. This works well if there are only two windows open on the desktop. Usually, there are many more... --- ### Managing SharePoint Online Files with PowerShell > Learn to use the Patterns and Practices PowerShell to move, copy, and delete SharePoint Online files from document libraries. - Published: 2017-04-19 - Modified: 2024-09-04 - URL: https://petri.com/managing-sharepoint-online-files-powershell/ - Categories: Microsoft 365, Office, PowerShell, SharePoint, Uncategorized - Tags: Office 365, patterns and practices, pnp powershell, PowerShell, SharePoint Online - Article Type: How To Shane Young discusses managing user content by using PowerShell and Patterns and Practices PowerShell to write your own script. Managing user content inside of SharePoint Online is the least favorite work of every administrator I know. While moving one file from Document Library A to Document Library B is not exactly hard, using a mouse to move hundreds of files based on a metadata value is just plain terrible. When that type of job comes up, the only good solution is to use a third-party tool. Not anymore. Thanks to the might of PowerShell and the Patterns and Practices (PNP) PowerShell, you can now write your own script to do the work for you. You can be the office hero.     What You Need To do this magic without a third-party tool, you need to install the PNP PowerShell. If you are not familiar with these awesome and free tools, then check out my previous article. It will give you some context and walk you through installing PNP. Watching this should only take you 5 minutes. After that, you just need access to the content. With the official SharePoint Online Management Shell, you have to be a global administrator in Office 365 to make things work. You connect to the tenant and then work down from there. With the PNP PowerShell, you connect at the site collection level and all of the cmdlets are just making web API calls. If you have permissions to copy a file in the browser, you have access with the PNP PowerShell. Pretty cool. The Magical PowerShell You Came For In this... --- ### Microsoft is Bringing AI and More To SQL Server 2017 - Published: 2017-04-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bringing-ai-sql-server-2017/ - Categories: SQL Server - Tags: Microsoft, News, SQL Server 2017 - Article Type: News Microsoft has announced that it is improving the performance of SQL Server 2017 for Linux users and also bringing new tools to the table with easier access to AI. Today, Microsoft is hosting an online conference that they are calling Data Amp where they will make several announcements related to upcoming products. The goal of the sessions and presentations is to show how you can bring analytics and artificial intelligence into your data pipelines to make better decisions, faster. Over the years, one message Microsoft has consistently communicated is that they are trying to make machine learning and artificial intelligence easier to access and utilize. While these two buzzwords get tossed around frequently, the truth is that unless you have a large budget that can support a team of data scientists/engineers on your team, building out these technologies yourself can be a costly endeavor. With that being said, Microsoft is working towards making these two technologies more readily available in their existing products; Microsoft is announcing SQL Server 2017 CTP 2. 0 which the company claims is the first RDBMS with built-in AI. This release, which Microsoft says is a production quality preview (take that with a grain of salt, deploying CTP into production is always a risky move), is introducing in-database support for a robust library of machine learning capabilities as well as the support for Python (in addition to R). Further, SQL Server can utilize the GPU via R/Python to provide the horsepower behind its deep learning queries and this can also be applied to unstructured data as well. For those who are using SQL Server on Linux, SQL Server 2017 will get a speed bump... --- ### A Number of Azure Monitoring Solutions Now Available in GA > A number of Azure management tools recently became generally available: Azure Monitor, Network Watcher, Azure Advisor, and Resource Health. - Published: 2017-04-19 - Modified: 2024-09-04 - URL: https://petri.com/number-azure-monitoring-solutions-now-available-ga/ - Categories: Microsoft Azure - Tags: Azure, Azure Advisor, Azure Monitor, Management, monitoring, Network Watcher, networking, Operations Management Suite, Resource Health - Article Type: How To, Overview Aidan Finn discusses Microsoft making Azure Monitor, Azure Network Watcher, Azure Resource Health, and Azure Advisor generally available in GA. Microsoft has made a number of Azure monitoring and management services generally available. You can now access Azure Monitor, Azure Network Watcher, Azure Resource Health, and Azure Advisor in general availability (GA).     Many Management Options It has been a busy period of time as a number of different management solutions became generally available in Microsoft Azure. Each of these solutions can be used separately but most, if not all, can be integrated into other services. An example of this is using Operations Management Suite (OMS) for consolidated management. Azure Monitor The goal of Azure Monitor is to give you essential monitoring capabilities without acquiring or configuring costly and timely third-party solutions. With Azure Monitor, you get platform-level and service-level telemetry. Effective management starts with designing for management by exception. Failing IT managers want status displays to constantly be updating. Successful IT managers spend their time more wisely. They only want to know when things are not working as they should. You can get classic alerts based on thresholds. You can also get alerts based on activities such as virtual machine reboots, deployment failures, or permission changes. Monitoring data sources include: Activity logs Host Virtual machines including hidden virtual machines underneath cloud services and Service Fabric Resource metric and diagnostic logs Application diagnostic logs, application logs, and metric logs from inside a virtual machine Monitoring data can be used as follows: Visualization including Azure Portal, Azure Application Insights, PowerBI and third-party tools Archived for local or third-party... --- ### Microsoft Adds Another Acquisition to its Portfolio, Intentional Software - Published: 2017-04-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-another-acquisition-portfolio-intentional-software/ - Categories: Office - Tags: Acqusition, Intentional Software, Microsoft, News - Article Type: News Microsoft has announced today that they are buying Intentional Software, a company that builds productivity software designed for teams. Add another to the list, Microsoft has announced today that they are buying Intentional Software, a company that builds productivity software designed for teams. Pricing for the acquisition was not announced and the company is based in Bellevue, Washington. The announcement, which you can read here, says that Intentional Software was working on a platform for a new generation of team productivity applications.   The company was founded by Charles Simonyi, a former Microsoft employee who helped develop Excel and Word. Microsoft says that they will use the newly-acquired IP to help enhance the tools the company offers to help make sense of the information-rich pipelines many organizations now have internally. The entire team of Intentional Software will be joining Microsoft to work on these technologies as well. With information pipelines becoming more data-dense with each passing year, managing all the output of this content can be a serious challenge. With autonomous vehicles starting to hit the road and IoT sensors being installed on every moving part, the ability to filter and surface the relevant bits of data from these streams will separate the industry leaders from the laggards. This acquisition is the latest in a serious of purchases by the company including Maluuba, Dies, and Simplygon, all in 2017. With the company’s stock price near an all-time high and plenty of cash on-hand, expect Microsoft to continue to snatch up any company that resides in the productivity and cloud-based segments that could further benefit the company’s agenda. --- ### Testing DSC Configurations Using Pester - Published: 2017-04-18 - Modified: 2024-09-04 - URL: https://petri.com/testing-dsc-configurations-using-pester/ - Categories: PowerShell, Windows Server - Tags: Automation, Desired State Configuration, DSC, Pester, PowerShell, Windows Server - Article Type: How To Learn how to use Pester to test a Desired State Configuration to ensure that servers are configured exactly the way you want them. Desired State Configuration (DSC) is an awesome configuration management tool built into the most recent versions of PowerShell. As your DSC knowledge increases, you build larger and more complex configurations. Large DSC configurations also become harder to test. If a configuration does not work as expected, you may have some complex troubleshooting to do. Building a Pester test alongside the configuration ensures that your configuration does exactly what you need it to do.   What Is Pester? Pester is a testing framework, which is built into WMF 5. 1. It is also available for download from the PowerShell Gallery for WMF 5. 0. According to the documentation, Pester consists of a simple set of functions that exposes a testing domain-specific language (DSL) for isolating, running, evaluating, and reporting the results of PowerShell commands. In simple terms, it provides its own language for describing what a test should do. Organizing a Pester Test Like DSC, Pester has a hierarchical layout. DSC’s layout contains a Configuration block, one or more Node blocks, and one or more Resource blocks. A Pester test layout contains one or more Describe blocks, one or more Context blocks, and one or more It blocks. The Describe block contains a grouping of tests at the highest level. You can have multiple Describe blocks. This may be as simple as, "These tests examine Configuration X. " The Context block contains a grouping of tests at the next level. If the Describe block contains a grouping of tests for a single... --- ### Restricting Office 365 Content Searches with Permission Filters > Office 365 content searches are very powerful at finding content. Permissions filters can restrict the ability of eDiscovery managers to see results. - Published: 2017-04-18 - Modified: 2024-09-04 - URL: https://petri.com/restricting-office-365-content-searches/ - Categories: Microsoft 365, Office - Tags: Compliance, content search, eDiscovery, Get-ComplianceSecurityFilter, New-ComplianceSecurityFilter, Office 365, permission filter, security filter - Article Type: Review Office 365 content searches are very powerful at finding content in SharePoint, Exchange, Groups, public folders, and OneDrive. Permissions filters can restrict the ability of eDiscovery managers to see results. With a little PowerShell, you can create effective filters. One Place for Office 365 Compliance From July 1, 2017, Microsoft will disable the ability for Office 365 tenants to create new workload-specific eDiscovery searches for Exchange Online and SharePoint Online through the EAC and SharePoint eDiscovery Center. Existing searches will continue to work. The Exchange and SharePoint searches are replaced by Office 365 content searches, a development that reflects Microsoft's general direction to concentrate development on Office 365 functionality that works across all workloads rather than just one. Overall, it is a positive development. Tenants manage content searches through the Office 365 Security and Compliance Center. These searches are faster and more functional than either Exchange or SharePoint eDiscovery searches. They can search mailboxes, archives, inactive mailboxes, group mailboxes, SharePoint sites, OneDrive sites, and public folders. The searches are very scalable and exploit the hardware available in Microsoft’s datacenters to handle literally hundreds of millions of items, if needed. Last week, I wrote about two major updates to compliance functionality that Microsoft has just introduced inside Office 365: a new data governance framework and expanding compliance coverage to Office 365 Groups. Both are important steps forward and plug holes in the Office 365 compliance story. Although these updates received a lot of press, the ability to add permission filters to content searches was added in May 2016 without much comment. I think that search permission filters are a hidden gem that eDiscovery administrators sometimes overlook. Permissions A set of permissions collected into “role groups” like “eDiscovery Manager” and... --- ### Create an Azure Virtual Machine Using a Customized Virtual Hard Disk - Published: 2017-04-18 - Modified: 2024-09-04 - URL: https://petri.com/create-azure-virtual-machine-using-customized-virtual-hard-disk/ - Categories: Cloud Computing, Microsoft Azure, PowerShell, Virtualization - Tags: ARM, Azure, Azure Resource Management, cloud computing, customize, PowerShell, virtual hard disk, virtual machine, Virtualization - Article Type: How To Learn how to attach a customized virtual hard disk to a new Azure virtual machine.   In this article found on Petri. com, I showed you how to copy a virtual hard disk (VHD). In today's Ask the Admin, I will show you how to attach a VHD to a new Azure virtual machine (VM).     When provisioning a new VM in the Azure management portal, you will find the option to select which OS to deploy from the Azure gallery. A pre-configured OS disk cannot be attached. It is possible to attach a customized VHD to a VM using PowerShell. In Deploy VMs Using Azure Resource Manager and PowerShell on Petri, you will see how to deploy a Resource Manager (ARM) VM. As part of the script, I defined a variable ($osSKU) to specify which OS image to use for the deployment. The script uses the Set-AzureRmVMOSDisk cmdlet to set the OS disk for the new VM, as well as these two other cmdlets, Set-AzureRmVMOperatingSystem and Set-AzureRmVMSourceImage. Use these to set the image to install on the OS disk. If we have a custom VHD that we would like to use for the VM’s OS disk, then the same script can be used to provision the VM. Remove the previous two cmdlets and modify Set-AzureRmVMOSDisk to point to an existing VHD. The original code looks like this: Set-AzureRmVMOperatingSystem -Windows -VM $newVM -ProvisionVMAgent -EnableAutoUpdate -Credential $creds -ComputerName $vmname Set-AzureRmVMSourceImage -VM $newVM -PublisherName $images. PublisherName -Offer $images. Offer -Skus $images. Skus -Version $images. Version Set-AzureRmVMOSDisk -VM $newVM -Name $disknameOS -VhdUri $vhduri -Caching ReadWrite -CreateOption fromImage We... --- ### Manage Azure Resources with Visual Studio Cloud Explorer - Published: 2017-04-17 - Modified: 2024-09-04 - URL: https://petri.com/manage-azure-resources-visual-studio-cloud-explorer/ - Categories: Cloud Computing - Tags: Azure, cloud computing, DevOps, Visual Studio - Article Type: How To, Overview Learn how to hierarchically browse Azure resources using Cloud Explorer in Visual Studio. If you need to manage more than just a few Azure resources, then Visual Studio Cloud Explorer might be the tool for you. In this Ask the Admin, I will give you a quick guided tour.     Microsoft's Azure cloud platform is large and complex. It is expanding every month with new features. Love it or hate it, the web management portal’s system of panels is the primary method for managing Azure resources. Of course, you can stick with the classic portal, which at some point will be retired. There is also the Azure command-line interface (CLI) and PowerShell but neither offers a visual way to quickly explore resources. Visual Studio 2017 includes a tool called Cloud Explorer, which provides a hierarchical view of Azure resources. This is not dissimilar from traditional management consoles that you might be familiar with in a Windows Server. Active Directory Users and Computers (ADUC) is an example of this. Visual Studio is not a tool for sysadmins. Bring on the advent of cloud computing and resources that can be programmatically provisioned. Visual Studio is a DevOps tool you should not overlook. In addition to Cloud Explorer, Visual Studio is also useful for working with JSON Azure Resource Manager (ARM) templates. Cloud Explorer is ARM based. It cannot see resources deployed using the classic model. For more information on using Visual Studio to create and edit ARM templates, see Using VS Code to Edit Azure JSON Templates on the Petri IT Knowledgebase... . --- ### Sponsored: Best Practices for Securing Remote Desktop Connections - Published: 2017-04-17 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-best-practices-securing-remote-desktop-connections/ - Categories: Security, Windows Client OS, Windows Server - Tags: Remote Desktop Connection, Security - Article Type: Overview Properly securing your Remote Desktop Connections is vital because of the far-reaching access and capability that Remote Desktop Connection has. Find out how to manually secure your Remote Desktop Connections. Windows Remote Desktop Connection is one of the administrators most commonly used tools. It can provide remote desktop access to all the different Windows Server systems that are part of your local network or in the cloud. Properly securing your Remote Desktop Connections is vital because of the far-reaching access and capability that Remote Desktop Connection has. Enterprise solutions such as Devolutions Remote Desktop Manager can also help you secure and manage your Remote Desktop Connections. In this post, I’ll cover some of the best practices for manually securing your Remote Desktop Connections. Use Strong Passwords Passwords are your first line of defense in securing your corporate infrastructure and that is just as true for Remote Desktop Connection as it is for your traditional desktop environment. All accounts with access to Remote Desktop Connections need to require strong passwords. You can require strong passwords in your domain using the Group Policy Computer ConfigurationWindows SettingsSecurity SettingsAccount PoliciesPassword PolicyPasswords must meet complexity requirements. Don’t Save Login Credentials in Your RDP Files Saving your remote login credentials is a feature of Remote Desktop Connection that can make your connections to remote systems faster and easier by enabling you to log into the remote system by using the saved credentials. However, this can also be a potential security exposure because it bypasses the remote login. To always require a login to the remote system to edit the RDP file, click the General tab, then select the Always ask for credentials check box. Limit Administrators... --- ### After NSA Exploits Leak, Microsoft Finds Itself in an Odd Position - Published: 2017-04-17 - Modified: 2024-09-04 - URL: https://petri.com/after-nsa-exploits-leak-microsoft-finds-itself-in-an-odd-position/ - Categories: Windows 10 - Tags: News, nsa, Patching, Secuirty, Windows 10 - Article Type: News Microsoft has quietly patched security vulnerabilities used by the NSA after they were made public over the weekend but who tipped off Microsoft remains unknown. This weekend was a busy one for security researchers. The hacking group Shadow Brokers released a series of exploits that attacked nearly all versions of windows released during the last 20 years including the desktop OS, Server, and other platforms. Simply put, if you are using any desktop version of Windows, these exploits could potentially impact your environment. This type of information should not be taken lightly as these exploits are real and for those who are slow to patch your own PC or your environment, there is a plausible reason to believe you are leaving yourself open to attack. After these exploits and tools made their way to the web, the hot takes from the leaks suggested that every version of Windows, including Windows 10, was vulnerable. Partially, this was Microsoft’s fault, as they had not acknowledged that these exploits had been fixed and those making these statements later acknowledged that the latest updates from the company protected the OS from these exploits. Microsoft did finally acknowledge that these vulnerabilities have been patched in a blog post here but this post went up after the tools leaked and several weeks after the patches had already been shipped. What this means is that if you are running a supported version of Windows, as long as you have the latest patches downloaded from Microsoft, your machine/environments are protected. But, not every company installs the latest patches as the company has released a few bad apples in the past that have done more... --- ### Creating Active Directory User Accounts with ADSI and PowerShell - Published: 2017-04-17 - Modified: 2024-09-04 - URL: https://petri.com/creating-active-directory-user-accounts-adsi-powershell/ - Categories: PowerShell - Tags: Active Directory, ADSI, Intermediate, LDAP, PowerShell, User account - Article Type: How To Jeff Hicks continues his series on using Active Directory with PowerShell, ADSI, and LDAP by walking you through the creation of Active Directory accounts. I hope you have been enjoying our exploration of PowerShell Active Directory alternatives. Certainly, the Active Directory module from RSAT is the way to go but sometimes you may want a bit more control. You also may have a need to roll your own tools.  Today, I want to give you some ideas on how to create user accounts using LDAP and ADSI. If you are just jumping in, I recommend you take a few minutes to get caught up with the previous articles: Active Directory PowerShell with ADSI Active Directory with PowerShell, ADSI, and LDAP Active Directory User Accounts with PowerShell, ADSI, and LDAP Managing Active Directory Groups with ADSI and PowerShell             The first thing you will need is an ADSI reference to the organizational unit or container. $OU = "LDAP://OU=IT,OU=Departments,OU=Employees,DC=Globomantics,DC=Local" I want to create a user account for a new hire, Ginger Snaps. I will do this with the Create method on the OU object. This method needs an object type and a canonical name. Be sure to save the results to a variable because you will need it. $new = $OU. Create("user","CN=Ginger Snaps") Right now, this account only exists locally. The first property to set is the account name. This is a new object, which means we need to use the Put method. $new. put("samaccountname","gsnaps") You can also use the InvokeSet method. $new. InvokeSet("samaccountname","gsnaps") Even though I will be setting additional properties, I need to commit the account to Active Directory before going... --- ### Paul Thurrott's Short Takes: April 14 - Published: 2017-04-14 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-14/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because Windows Vista is finally dead, this edition of Short Takes looks at the last stand for an unfairly maligned Windows version, the Creators Update, and upcoming Microsoft hardware events. Because Windows Vista is finally dead, this edition of Short Takes looks at the last stand for an unfairly maligned Windows version, the Creators Update, and upcoming Microsoft hardware events. Windows Vista rides off into the sunset When it comes to end-of-life, different versions of Windows go out in different ways. Some---like Windows XP---go out screaming, while some end with a whimper. And so it was this past week for the unfairly maligned Windows Vista, which ended a controversial ten years of service and is no longer supported by its maker. Despite some FUD stories to the contrary, very few people are still using Windows Vista today---well under one percent of the overall user base, in fact---so this milestone passed mostly in silence, and with none of the Chicken Little posturing that greeted Windows XP's demise. But I remember what really happened, so let me just state for the record that Windows 7 was nothing more than Windows Vista Service Pack 3. And we should give Vista, and its makers, the measure of respect they deserve. "Yes, Some Businesses Still Run Microsoft's Much-Maligned Windows Vista" Sure. "Some" businesses probably use pen and paper too. Microsoft queues up a confusing new event Coincidental to the demise of Windows Vista, Microsoft also gave birth to a new version of Windows this past week: Windows 10 version 1607, or the Creators Update, began deploying to users via Windows Update. And now the software giant is getting ready to celebrate a new... --- ### Restore Azure Virtual Machines to an Availability Set Using PowerShell > A restored virtual machine will not join an availability set by default. This post shows a PowerShell method to restore the machine to an availability set. - Published: 2017-04-14 - Modified: 2024-11-19 - URL: https://petri.com/restore-azure-virtual-machines-availability-set-using-powershell/ - Categories: Microsoft Azure - Tags: Availability Sets, Azure, Azure Backup, Backup, PowerShell, virtual machines - Article Type: How To Learn one way to restore an Azure virtual machine from Azure Backup and join that machine to an existing availability set. In this post, I am going to show you one way to restore an Azure virtual machine from Azure Backup. From there, we will join that machine to an existing availability set.     The Problem When you do a simple next > next > next restore of an Azure virtual machine from Azure Backup, the newly created machine does not join an availability set. That is a problem because you might have joined the original machine to an availability set with high higher levels of planned or unplanned outage tolerance. You would expect the restored machine to have the same levels of redundancy. However, it will not. There is not a “re-join the original availability set” option. There are a few workarounds available to us now. In this post, I am going to focus on the original workaround. I will show you how to do a restore of the disks to a storage account only. There will not be a virtual machine created. Using those disks, we will have to create a new virtual machine in the availability set of choice. This example is based on Azure Resource Manager or ARM. Restore the Disks Using PowerShell The first things you need to do with Azure PowerShell: Make sure you have the latest version of the PowerShell modules or you will get weird errors. Sign into Azure. Select the correct subscription. In my example, I “accidentally” deleted a protected virtual machine called vm-petri-01. This was in a resource... --- ### Security Driving Enterprises to Windows 10 - Published: 2017-04-14 - Modified: 2024-11-19 - URL: https://petri.com/security-driving-enterprises-windows-10/ - Categories: Security, Windows 10, Windows Client OS - Tags: Adoption, enterprise, Security, Windows 10, windows deployment - Article Type: News Enterprises are migrating to Windows 10 faster than expected and one of the key reasons is security. Microsoft made some bold claims about Windows 10 adoption around the time of its release in 2015. Remember the one billion installs by mid-2018? By July 2016, Microsoft admitted that it was unlikely to meet that target. That is not to say that Windows 10 is doing badly, however.     Gartner is not known for making spot-on predictions. In 2015, it forecasted that 50 percent of businesses would start deploying Windows 10 by early 2017. This forecast was supported by surveys on Spiceworks. By July 2016, 38 percent of companies said they had already deployed Windows 10.  These were mostly large businesses. Microsoft is keeping schtum about Windows 10 enterprise adoption numbers. According to a report on cio. com, 96 percent of business customers using System Center and Intune have been piloting Windows 10. They are also starting to deploy the OS. Senior Director of Product Marketing for Windows Commercial, Craig Dewar, also says that Windows 10 is being adopted by business customers 150 percent faster than Windows 7. Gartner’s VP, Steve Kleynhans, told CIO that he thinks 50 percent of business customers will start some form of deployment between now and June. He also thinks another 85 percent will start deployments before the end of 2017. Kleynhans also points out that deployment can take between a year and 18 months. This means Windows 10 will not overtake Windows 7 in the enterprise until the end of 2018. Windows 10 can start deploying sooner than was possible... --- ### Bringing Compliance to Office 365 Groups > Tenants have not been able to exert control over the content of Office 365 Groups for compliance purposes. Now they can with retention policies. - Published: 2017-04-13 - Modified: 2024-09-04 - URL: https://petri.com/office-365-groups-compliance/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Classification, Compliance, data governance, Groups, Labels, Office 365, OneDrive for Business, Policies, Retention, SharePoint, Tags - Article Type: Review As part of the Office 365 data governance framework, tenants can now create retention policies that apply to the mailbox and team site belonging to Office 365 Groups. The process is quite straightforward, but some gotchas exist that you need to think about! Retention Policies for All On April 6, Microsoft announced that “You are now able to manage group content produced by setting up retention policies to keep what you want and get rid of what you don’t want. Admins can now create Office 365 Groups retention policies that apply to the group’s shared inbox and files in one step using the Office 365 Security and Compliance Center. ”  Sounds good. But what does this mean in practical terms? In my last article, I explained how Office 365 classification labels and retention policies function inside the new Office 365 data governance framework. In this, I explore how to apply retention policies to Office 365 Groups. Keeping Office 365 Groups Compliant Is compliance important for Groups? The answer is obviously yes, especially when organizations use Groups as the basis for teams to collaborate using conversations, OneNote, and documents. Valuable information that needs to be controlled by an organization can swiftly accumulate inside Groups and that information is no less important than what exists inside mailboxes and public folders. My previous article covers the basic of Office 365 classification labels and retention policies. You can use both features with Office 365 Groups. Group owners (but not members) can use classification labels to mark specific conversations for special processing. Only OWA shows classification labels for conversations in the group mailbox today. Outlook and the Outlook Groups mobile app both need refreshes before labels show up in their interfaces. However, all group members can assign classification labels... --- ### Choosing an Azure Virtual Machine -- April 2017 > This updated post explains how to pick an Azure VM Series, and size or spec a virtual machine to run in the cloud. - Published: 2017-04-13 - Modified: 2024-09-04 - URL: https://petri.com/choosing-azure-virtual-machine-april-2017/ - Categories: Microsoft Azure - Tags: Azure, Choosing, Deciding, Selecting, virtual machines - Article Type: How To We will dig into choosing between the different series and sizes of Azure virtual machines. This post will explain how to select an Azure virtual machine (VM) series and size. This article includes updates to past versions of this post such as N-, H-, and L-Series VMs, as well as using the Azure Compute Unit (ACU) measurement to compare processor performance.     Order from the Menu Azure is McDonald's. It is not a Michelin Star restaurant. You cannot say, “I’d like a machine with 4 cores, 64GB RAM, and a 200GB C: drive. " That simply is not possible in Azure. Instead, there is a pre-set list of series of machines. Within those series, there are pre-set sizes. The C: drive is always 127GB unless you upload your own template. No matter what the pricing pages claim as the disk size, it is actually the size of the temp drive. Any data you have goes into a data drive, which you specify the size of. Therefore, you control the cost. Remember that the storage (OS and data disks) costs extra! Sizing a Virtual Machine There are two things to consider here. The first is common sense. The machine will need as much RAM, CPU (see the ACU section later in this article), and disk space as your operating system and service(s) will consume. That is no different than how you sized on-premises physical or VMs in the past. The other factor of cloud-scale computing is that you should deploy an army of ants, not a platoon of giants. Big VMs are extremely expensive... . --- ### Using the Patterns and Practices PowerShell with SharePoint > Make working with SharePoint PowerShell easy and much more powerful with the Patterns and Practices PowerShell. Both Online and On-Prem. - Published: 2017-04-13 - Modified: 2024-09-04 - URL: https://petri.com/using-patterns-practices-powershell-sharepoint/ - Categories: Microsoft 365, PowerShell, SharePoint, SharePoint 2013, SharePoint 2016, Uncategorized, Windows 10, Windows 7, Windows 8 - Tags: Office 365, Office 365 PowerShell, patterns and practices, pnp powershell, PowerShell, SharePoint, SharePoint Online - Article Type: How To Learn about a superior tool called Patterns and Practices PowerShell with SharePoint Online and on-prem. If you are the type of person who needs to manage SharePoint with PowerShell, then do I have good news for you. If you find the PowerShell cmdlets that Microsoft provides for Online to be lacking, then I have even more good news for you.   By the way, everyone should fit into both of those categories. This good news is not about the recent updates Microsoft made to the SPO management shell. It is about a far superior tool called Patterns and Practices (PNP) PowerShell. And while the focus is on using PNP with SharePoint Online, there are versions for on-premises, too. Keep reading.     What Is Patterns and Practices If you are not familiar with PNP, then most likely, you are not a developer. This is good because I write for admins, not those yucky devs. Anyway, the PNP team started in 2013 to help guide developers on how to transition from BPOS-D to BPOS. If you were not around back then, BPOS stood for Business Productivity Online Services. It was the first version of what we now know and love as Office 365. Of course, you are not here for a history lesson. Here in 2017, the team is made up of a group of Microsoft consultants backed by community contributions. They develop guidance and functionality for things like the SharePoint Framework, Office 365 APIs, and Microsoft Graph. While that all might be cool, we do not really care. What we do care about is that... --- ### Microsoft Adds New Features to Azure Active Directory - Published: 2017-04-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-new-features-azure-active-directory/ - Categories: Microsoft Azure - Tags: Azure Active Directory - Article Type: News Azure Active Directory B2B is now generally available and the company is expanding options available to European users too. Tell me if you have heard this one before, Microsoft is working towards making its cloud-based solutions the best offering the company has and also the most secure? It’s little surprise that Microsoft has frequently updated and advanced its cloud capabilities as the infrastructure is easier to update and deploy new features when compared to traditional on-premises software. In the modern business environment, companies are working closer than ever with third-party vendors who supply or buy their products. In an effort to help these external parties work with internal documents and content, Microsoft is rolling out Azure Active Directory B2B with the feature reaching general availability today. B2B collaboration provides external user accounts with secure access to documents, resources, and applications—while maintaining control over internal data. With this feature, you do not have to add these users to your AD tree, you can simply invite them with any email address - Office 365, on-premises Microsoft Exchange, or even a personal address (Outlook. com, Gmail, Yahoo! , etc. Seeing as using a basic email may feel less secure, it is possible to setup conditional access policies. Further, you can mandate that external parties use multi-factor authentication as well. In addition to the B2B collaboration feature, Microsoft is also making Azure Active Directory B2C now available in Europe Microsoft is constantly pushing for a cloud first, mobile first world but the company has not become obtuse to the on-premises customers as Azure Active Directory can work in both worlds. Additionally, the company... --- ### Microsoft Announces Windows Event For May 2nd in NYC - Published: 2017-04-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-windows-event-may-2nd-nyc/ - Categories: Hardware - Tags: Hardware, Microsoft, Surface - Article Type: News Microsoft has announced a Windows event for May 2nd where the company is expected to talk about Windows Cloud and refresh hardware. The rumors have been circling for some time and now we have the hard details, Microsoft is hosting a Windows event in New York City on May 2nd. As always, both Paul and I will be there, so make sure to stick with Petri and Thurrott as we will be covering the event in detail. As for what will be shown, details are still coming together but it looks like Windows Cloud is likely on the agenda and there may be some hardware announcements as well. I'm not sure we will see a Surface refresh at the event but something ARM based may be on the agenda; it looks like this event will have an educational focus as well. The timing of the event plays well to the recent headlines where Microsoft has managed to top Apple in customer satisfaction for tablets. I fully expect that they will point this out at the event as this is a big win for the company and shows that their bets in this space are paying off. Seeing how close this event is to the company’s Build conference the following week, they may be using this opportunity to set the stage for what will be one of the primary focuses at that developer conference. If this holds true, I’d expect Windows Cloud to be a key focus of this event as well as Build. --- ### Intersecting DSC Configuration Design and Personal Style - Published: 2017-04-12 - Modified: 2024-09-04 - URL: https://petri.com/intersecting-dsc-configuration-design-personal-style/ - Categories: PowerShell - Tags: Automation, Desired State Configuration, DSC, GUI, PowerShell, Security, Windows Server 2012 - Article Type: How To DSC configurations require logical thinking through the steps necessary to make changes to a server's configuration. Learn my process for developing a DSC configuration. Some of the most thought-provoking conversations I have with other IT professionals and PowerShell aficionados have stemmed from discussions around DSC configuration design. In these discussions, it is not the technology that is up for debate. It is the thought process and how different people set about tackling a problem that is in question. You can learn a lot from other people when it comes to problem-solving. This is especially true when they think differently than you do.     Acknowledging Differences in Thought Processes Sometimes, you may believe that everyone else thinks like you. Through discussions with others, you realize that is not the case. You also learn unusual ways to think about a problem. This can help you become a better programmer in the long run. In this article, I am going to discuss my own thought process for solving a problem using DSC. I will also document the tools and resources I use when developing a DSC configuration. Gain Experience with the Technology It is a common misconception that you should jump right into writing that DSC configuration. You may need to touch, explore, and see the problem before you can write the code. At times, this may even mean using the GUI. Doesn’t PowerShell mean never touching a GUI again?   Says who?  Let's look at an example. Research, Research, Research I wanted to use the DHCP Failover feature in Windows Server 2012 but I had never touched it or looked at it.   Wanting to jump right... --- ### Driving Adoption for Office 365, Part 5 - Published: 2017-04-12 - Modified: 2024-11-19 - URL: https://petri.com/driving-adoption-office-365-part-5/ - Categories: Microsoft 365 - Tags: Adoption, Office 365 - Article Type: How To Learn about driving adoption for Office 365 with a focus on measuring, planning, and budgeting. The first part in this series talked about the importance of adoption for the success of Office 365. The second part described the vision, goals, and business scenarios. The third part discussed stakeholders and audience. The fourth part digs into communication, learning, and launch. We are now going to discuss measuring, planning, and budgeting.     Measuring I have been working with SharePoint since 2008. One thing has always astonished me. The lack of interest in measuring the usage of SharePoint blows my mind. There were tools available. I remember Nintex Reporting, but it was often too expensive. Customers did not really care. Microsoft also did not really focus on measurement tools for SharePoint. There were a couple of statistics available. Nothing compared to professional third-party tools often aimed at internet sites. This changed with the success of Office 365. Why? Customers had more control over the licenses. Why spend loads of money on Office 365 licenses when nobody is using them. Microsoft realized it had to step up its game and provide out-of-the-box analytics. The Office 365 Admin Portal contains a wide selection of usage reports. The out-of-the-box reports give you a great insight into the usage of Skype for Business, Yammer, OneDrive for Business, SharePoint, and Exchange. This is really a great step in the right direction. After a long delay, Microsoft is releasing a Power BI Content Pack. I highly recommend getting your hands on the content pack once it is released. Analyze, Adjust, and... --- ### Office 365 Data Governance Framework Spans Multiple Workloads > Microsoft launched the data governance framework for Office 365 to span Exchange, SharePoint, Skype for Business, OneDrive, and Groups. - Published: 2017-04-11 - Modified: 2024-09-04 - URL: https://petri.com/office-365-data-governance/ - Categories: Microsoft 365, Office - Tags: Classification, Compliance, data governance, Groups, Labels, Office 365, OneDrive for Business, Policies, Retention, SharePoint, Tags - Article Type: Review Office 365 now boasts a new data governance framework to provide compliance coverage across multiple workloads. The new framework covers Exchange, SharePoint OneDrive for Business, Skype for Business, and Office 365 Groups. It is a big step forward for tenants that have been waiting for Microsoft to deliver common compliance processing across the full service. Compliance and Regulations Given the somewhat litigious nature of today’s business world, there is no surprise in the number of compliance features Microsoft builds into products like Office 365. In fact, the breadth and depth of those features is one reason why I think Office 365 is more popular with large enterprises than its major competitor, Google G Suite. But good as the Office 365 compliance features are, gaps still exist. Yammer is an example of a product that has weak compliance functionality.  Teams and Planner are others. Keep What You Need and Get Rid of the Rest Microsoft’s tag line for data governance is that “you keep what you need and get rid of what you don’t”. Last week, Microsoft made new functionality available through the Security and Compliance Center to help tenants keep content that they need and remove what they do not want to keep. The new functionality comes in the form of classification labels and retention policies, both of which combine to give tenants different options to control how long content exists in mailboxes, sites, and other Office 365 locations. You create classification labels under the Classifications section of the Security and Compliance Center. When ready, you publish sets of labels in label policies, which then show up as retention policies under the Data Governance section. That seems a tad confusing, but it all comes together in the framework. Think of it this way: labels are the way to control content at a precise, item-specific level. Retention... --- ### Deploy an Azure Network Watcher Instance -- Preview > This post will demonstrate how to enable and deploy the Network Watcher in your Azure subscription. - Published: 2017-04-11 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-network-watcher-instance-preview/ - Categories: Microsoft Azure - Tags: Azure, Network Watcher, networking, Virtual Network - Article Type: How To Learn how to enable the preview Network Watcher functionality in your Azure subscription and how to deploy a Network Watcher. I am going to show you how to enable the preview Network Watcher functionality in your Azure subscription. I am also going to show you how to deploy a Network Watcher, which is the new network monitoring solution in Azure. This is an instance in an Azure region.     Register the Provider Network Watcher is still a preview feature and must be opted into on a per-subscription basis. If you want to try out or use Network Watcher, then you will need to enable the feature using PowerShell. As usual with Azure PowerShell, you should do the following: Make sure you are running the latest version of the Azure PowerShell modules. Otherwise, strange errors might take place. Log into Azure Resource Manager using Login-AzureRMAccount. Select the appropriate subscription using Select-AzureRMSubscription. You can start the registration process using the following two lines: Register-AzureRmProviderFeature -FeatureName AllowNetworkWatcher -ProviderNamespace Microsoft. Network Register-AzureRmResourceProvider -ProviderNamespace Microsoft. Network The registration process can take a number of minutes. Go find something else to do. You can come back later and check progress by running: Get-AzureRmProviderFeature -FeatureName AllowNetworkWatcher -ProviderNamespace  Microsoft. Network Verifying the Progress of the Network Watcher Registration The RegistrationState returned by the above command will change to “Registered” once the process completes successfully. At that point, you can move on to the next step. Create a Network Watcher Instance Log into the Azure Portal with your subscription administrator account. Browse to More Services > Network Watcher. The overview... --- ### Microsoft Closes the Book on Windows Vista - Published: 2017-04-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-closes-book-windows-vista/ - Categories: Windows Client OS, Windows Vista - Tags: News, Windows, Windows Vista - Article Type: News Microsoft is ending support for Windows Vista today; an OS that never had a chance at long-term success. Windows Vista, codenamed Longhorn, reached general availability on January 30th, 2007 and today, the software is reaching the end of its lifecycle. After today, the software will no longer be supported by Microsoft which means any vulnerabilities uncovered going forward, will remain unpatched. The OS brought with it many new features including the Aero design language, improved Windows search, new desktop gadgets, improved security (thanks to the Trustworthy Computing Initiative) and of course new DRM for digital content and User Access Control (UAC). When the OS was released, it was not well received by consumers or corporations. Despite the fact that it took Microsoft over five years to develop the OS, when it reached retail shelves, it was unstable which lead to slower adoption rates of the operating system and a lack of consumer confidence for the product. The long development cycle between the release of Windows XP and Vista is because, at the early stages of development, Microsoft lost focus on what features were going to be included in Longhorn and what features would be saved for Blackcomb. The lack of a clear vision, among other large development issues, caused the company to reset development efforts in 2004. Apple was able to seize the opportunity of Microsoft’s misfortunes and launched the ‘Get a Mac’ advertising blitz which has become an iconic campaign in the marketing industry. These ads, better known as the “I’m a PC and I’m a Mac’ advertisements, helped Apple jump-start its hardware sales and gain... --- ### Create NAT Rules for the Hyper-V NAT Virtual Switch > This post will show how to create NAT rules for virtual machines running on Windows Server 2016 (WS2016) or Windows 10 Hyper-V NAT-enabled virtual switches. - Published: 2017-04-10 - Modified: 2024-09-04 - URL: https://petri.com/create-nat-rules-hyper-v-nat-virtual-switch/ - Categories: Hyper-V - Tags: Hyper-V, NAT, NAT Rules, networking, virtual machines, Windows 10, Windows Server 2016 - Article Type: How To Find out how to create NAT rules for virtual machines that are connected to an NAT-enabled virtual switch on a Windows Server 2016 (WS2016) or Windows 10 Hyper-V host. In this post, I will show you how to create NAT rules for virtual machines that are connected to an NAT-enabled virtual switch on a Windows Server 2016 (WS2016) or Windows 10 Hyper-V host.     Before proceeding, you should read these recent posts to understand the solution: Using a NAT Virtual Switch with Hyper-V Configuring VM Networking on a Hyper-V NAT Switch A NAT Switch on Windows 10 or Windows Server 2016 Hyper-V Understanding NAT Rules By default, there is no inbound access from the LAN to the virtual machines that are connected to an NAT-enabled virtual switch. You might find a situation, where you need to enable inbound access. For example, you might want to enable RDP access to virtual machines in an otherwise isolated lab. A NAT rule can be created and associated with your NAT configuration. The NAT rule pushes traffic from a source address. It then moves it forward to an address on the NAT-enabled virtual switch. We can create a rule with the following settings: ExternalIPAddress: This is the IP address of the host that the traffic is addressed to. This can be the IP address of a specific physical NIC or it can be 0. 0. 0. 0/0, which would cover all addresses on the host. ExternalPort: This is the port that the incoming traffic is sent to. For example, web traffic would target port 80 or RDP traffic would be destined for 3389. Protocol: This... --- ### Sponsored: In Your Rush to the Cloud, Don't Forget Where You Came From - Published: 2017-04-10 - Modified: 2025-01-14 - URL: https://petri.com/sponsored-rush-cloud-dont-forget-came/ - Categories: Active Directory (AD) - Tags: Active Directory, Azure Active Directory, Office 365 - Article Type: Overview If your on-premises Active Directory isn't secure, it doesn't matter how much you've locked down Office 365. Find why Active Directory has become more important than ever to protect. Editor's Note: This post is sponsored by ManageEngine. In the stampede to use (or at least talk about) cloud services, on-premises infrastructure gets little mention nowadays. But even though the cloud has hogged our attention for the past few years, the reality is that most of the data center that existed before the services revolution is still there today. And it's more important than ever to protect it -- in particular, your Active Directory forests that contain all your usernames and passwords. Why has Active Directory become even more important to protect today? Most companies have chosen to adopt a hybrid identity model that extends their on-premises Active Directory to an Identity as a Service (IDaaS) provider such as Azure Active Directory. If you use Office 365, whether you know it or not you have an Azure Active Directory instance in Microsoft's cloud. With this hybrid model, users can authenticate to Office 365 and other SaaS apps with their corporate Active Directory credentials. IT professionals tend to focus on the security around Office 365. This is good, but partly misses the point: if your on-premises Active Directory isn't secure, it doesn't matter how much you've locked down Office 365. Attackers will gain administrative access to a compromised Active Directory -- and thus Office 365 -- regardless of the controls you've put on it. They will go after the weakest link. Therefore, it's important to ensure that although your organization might be strongly pushing for Office 365 adoption, your management team... --- ### Microsoft Snatches Up Deis To Boost Azure Kubernetes Tech - Published: 2017-04-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-snatches-deis-boost-azure-kubernetes-tech/ - Categories: Cloud Computing, Microsoft Azure - Tags: Deis, Microsoft, News - Article Type: News Microsoft is acquiring Deis, a container technology company; the software improves application agility, efficiency, and reliability, through their Kubernetes software stack. For Microsoft, Azure is the company’s future from not only an infrastructure perspective but also for revenue. To make sure that its platform is available with the tools developers are using and also in the localized regions where laws require in-country data centers, the company is investing billions into this platform. Announced today, Microsoft is acquiring Deis, a container technology company. The software improves application agility, efficiency, and reliability, through their Kubernetes software stack. If Kubernetes doesn’t sound familiar, it should, especially if you are thinking about using containers in your environment. The container platform, widely used on Google’s cloud, has a large user-base and is one of the key strengths of Google’s cloud platform. With Microsoft acquiring Deis, the likely goal of this acquisition is to help persuade to move from Google to Azure or to stop users from leaving Azure to use Google’s Kubernetes tech. Microsoft is working feverishly to make Azure the most flexible cloud platform on the market. With the acquisition announced today, the company now offers a wide variety of containers including Linux and Windows Server Containers, Hyper-V Containers and Azure Container Service. Neither Microsoft nor Deis announced a sale price for the acquisition. --- ### Managing Active Directory Groups with ADSI and PowerShell - Published: 2017-04-10 - Modified: 2024-09-04 - URL: https://petri.com/managing-active-directory-groups-adsi-powershell/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, ADSI, Intermediate, PowerShell - Article Type: How To This series on managing Active Directory with PowerShell, ADSI, and LDAP continues with a look at group-user accounts. Ready for some more PowerShell and ADSI fun? In the last article, I showed you how to create an Active Directory (AD) user account with ADSI and PowerShell. Of course, you probably want to put that user into a group or two. In fact, you might even like to manage groups with PowerShell. Let's see how much we can cover today. As is usual with any series I do, I am assuming that you are caught up on the previous articles.     We will begin with a new user account. $ken = "LDAP://CN=Ken Dew,OU=IT,OU=Departments,OU=Employees,DC=Globomantics,DC=local" The MemberOf property, which will show groups that Ken belongs to is empty. The automatic Domain Users group is never shown. Empty MemberOf Property (Image Credit: Jeff Hicks) In AD, group membership is stored as a link in the group object. I want to add Ken to the Chicago IT group. I will need to get that object with ADSI. $group = "LDAP://CN=Chicago IT,OU=Groups,OU=Employees,DC=Globomantics,DC=local" The Member property shows the distinguishedname of each member. Group Members (Image Credit: Jeff Hicks) To add Ken, I will invoke the Add method on the group object and pass in the user's AD path. $group. Add($ken. ADSPath) Refreshing the caches on the objects and re-checking membership shows that it was successful. Adding a Group Member with PowerShell (Image Credit: Jeff Hicks) Removing a member is just about the same. The difference is to simply use the... --- ### Microsoft Confirms SharePoint vNext Will Have On-Premises Iteration - Published: 2017-04-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-confirms-sharepoint-vnext-will-premises-iteration/ - Categories: SharePoint - Tags: SharePoint, Sharepoint vnext - Article Type: News Microsoft has confirmed that its next version of SharePoint will also support on-premises deployments; no indication on when the next installment of SharePoint will be released. If you have attended any Microsoft event during the past five years, the word cloud is likely drilled deep into your brain. It’s no secret that the company wants all of its software running on Azure and they want all of their users to eventually move from on-premises to cloud-based solutions. But, we know the cold face of reality means that not everyone will move to the cloud nor does everyone want to either. For those who are running SharePoint locally and do not intend to move to the cloud for the next iteration of the software, the company has confirmed that they will release another version of SharePoint for these users. Jeff Teper, who is the Office, OneDrive & SharePoint, Corporate Vice President at Microsoft confirmed that they are working on SharePoint vNext for on-premises deployments. So, if you had any doubts that Microsoft was committed to on-premises operations, worry no more. And really, this shouldn’t be a major surprise; Teper has stated that there are more than 200 million SharePoint users with more than 200,000 companies using the software. Considering the software is a premium offering, the company is going to support those users no matter where the data center is located as long as on-premises deployments are around which is likely to be a significant length of time. Even though Microsoft’s SharePoint platform has faced increasing competition from a wide variety of vendors, the software continues to hold its value because of its integration with Office... --- ### Paul Thurrott's Short Takes: April 7 - Published: 2017-04-07 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-april-7/ - Categories: Cloud Computing, Hardware, Mobile, Windows 10 - Tags: News - Article Type: Overview Because Spring is finally in the air, this edition of Short Takes looks at Microsoft's customer satisfaction win over Apple, the Windows Insider Program for businesses, Xbox "Project Scorpio", and much, much more. There is nothing quite like Spring in New England. Because Spring is finally in the air, this edition of Short Takes looks at Microsoft's customer satisfaction win over Apple, the Windows Insider Program for businesses, Xbox "Project Scorpio", and much, much more. Microsoft Surface beats iPad in customer satisfaction survey J. D. Power released its 2017 U. S. Tablet Satisfaction Study this week, and let's just say that there is apparently no end to the bad news that Apple can get these days: For the first time ever, the iPad wasn't number one. Instead, Microsoft's Surface---oh, the indignity---took the top spot. Key to Microsoft's victory were Internet connectivity, official accessories availability, the variety of pre-installed applications, device attractiveness, quality of materials, and the physical size of Surface. You know, the types of areas in which iPad has simply won in previous years. "The Microsoft Surface platform sets the bar for customer satisfaction," J. D. Power noted. I mean, seriously. Microsoft PR couldn't have written a better script. In fact, one wonders... "It's official: People like Microsoft's tablets better than the iPad" Yeah. We like Microsoft better than Apple, too. Microsoft opens up the Windows Insider Program to businesses Following through on a threat---er, promise---it made late last year, Microsoft this week opened up its Windows Insider Program, which provides early access to new versions of Windows 10, to businesses. This doesn't seem like the type of thing that's going to gain a lot of traction to me,... --- ### Preview of Resource Policy in the Azure Portal > Read about the preview release of Azure resource policy administration in the Azure Portal - control what can be deployed and where they can be created. - Published: 2017-04-07 - Modified: 2024-09-04 - URL: https://petri.com/preview-resource-policy-azure-portal/ - Categories: Microsoft Azure - Tags: Azure, Azure Portal, JSON, Preview, Resource Policy - Article Type: How To Resource Policy is a very nice feature in Azure Resource Manager that allows you to control what delegated administrators can do in an Azure subscription or resource group. Microsoft has launched a preview of managing Azure Resource Policy using a graphical interface. This post will explain what this preview offers.     Azure Resource Policy Resource Policy is a very nice feature in Azure Resource Manager (ARM) that allows you to control what delegated administrators can do in an Azure subscription or resource group. For example, you can limit what series and sizes of virtual machines can be deployed. I use the JSON policy to control what can be deployed in a set of subscriptions that my employer uses for training purposes. Previously, one attendee went nuts with virtual machines, running SQL Server, and ran up a nice bill in a few days. Azure Resource Policy is written in a form of JSON, which you can see in the previously mentioned example. As much as I evangelize the benefits of JSON, I suspect that the adoption rate will mimic that of PowerShell. This is very high in blog readers and conference attendees but quite low in the much larger world of IT pros. A Graphical Interface A preview of Azure Resource Policy administration in the Azure Portal was launched on May 9th. This preview is running in the preview release of the Azure Portal, which was once called the Preview Portal. It provides an easy way to create and assign some simple resource policies. However, you can still edit JSON policies using a tool such as VS Code. Simply upload the policy using PowerShell and then... --- ### How to Copy a Virtual Hard Disk in Microsoft Azure - Published: 2017-04-07 - Modified: 2024-09-04 - URL: https://petri.com/copy-virtual-hard-disk-microsoft-azure/ - Categories: Cloud Computing - Tags: Azure, Azure Storage, cloud computing - Article Type: How To Learn how to copy a virtual hard disk in Azure using AzCopy. In today's Ask the Admin, I will show you how to use the AZCopy tool to copy an Azure virtual machine (VM) to a virtual hard disk (VHD).     Azure VMs are automatically provided with a VHD when you provision them using the Azure management portal. For instance, if you choose to deploy Windows Server 2016 Datacenter, then the attached OS disk will contain the appropriate server image. But sometimes, you might want to use a custom disk image and attach it to a VM. There are several ways you to get a custom disk image into Azure storage. You can upload an image from your local PC to Azure. You can also copy an existing VHD of a VM that has been generalized from an Azure storage account. That is what I am going to show you how to do in this article. I will use the AZCopy tool to copy the OS disk of an existing Azure VM to a new container in the same storage account. To follow the instructions below, you will need an Azure subscription and at least one VM already provisioned. If you do not have an Azure subscription, you can get a free 30-day trial here. For more information on provisioning VMs in Azure, see Create a Virtual Machine in the Azure Cloud on the Petri IT Knowledgebase. Prepare to Copy a VHD Before copying a VHD in Azure, you will need to download and install the AzCopy tool on... --- ### Windows as a Service: The Highs and Lows of Rapid Release - Published: 2017-04-06 - Modified: 2024-11-19 - URL: https://petri.com/windows-service-havoc-enterprise/ - Categories: Windows 10 - Tags: News, Windows as a service - Article Type: News Microsoft's Windows as a Service model for Windows 10 brings with it many benefits but it is also creating a few issues as well for IT Pros. There was a time not long ago when large updates to Windows were spaced several years apart. For many, this was the normal cadence of updating the operating system and it created a routine flow for IT Pros that gave them a stable way of managing their environment and also planning future infrastructure changes. When Microsoft announced that Windows would be moving to a service model, it was met with a wide variety of reactions. On the consumer side, it was mostly positive as this means feature updates come more frequently but on the corporate side, this means the potential for additional overhead to manage the operating system. In addition, the updated servicing model also brought with it new ways of communication with Microsoft (feedback hub and Insiders program) and advanced threat protection services too. Side note: We have a webinar later this month diving deep into WaaS, you can signup here. Now that we are more than a year into this servicing model of Windows model, it’s time to look back and see how these changes have impacted the world of IT. Over the past two weeks, I have asked both publicly and privately for feedback and received responses from about 50 individuals working at different companies for their insights into how Windows as a Service has impacted their operations. The respondents to my small survey span managing several dozen machines to tens of thousands of end users and work in fields like manufacturing, service industry and healthcare. The Positive: Nearly... --- ### Active Directory User Accounts with PowerShell, ADSI, and LDAP - Published: 2017-04-06 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-user-accounts-powershell-adsi-ldap/ - Categories: Active Directory (AD), PowerShell - Tags: ADSI, Intermediate, PowerShell - Article Type: How To This series of articles is about managing Active Directory with PowerShell, ADSI, and LDAP. This article focuses on single-user accounts. We have been exploring some alternatives to the Active Directory (AD) PowerShell module. Most of the time, this module should meet your needs. It is always good to have options so I have been demonstrating how to use the ADSI type accelerator with the LDAP moniker. As long as you know the distinguished name to an AD object, you can reference it in PowerShell. When we ended last time, we were beginning to look at AD user objects. Let's pick up that idea with a single-user account.     $al = "LDAP://CN=Al Fredo,OU=Sales and Marketing,OU=Departments,OU=Employees,DC=globomantics,DC=local" User LDAP Properties (Image Credit: Jeff Hicks) To display user properties, I have been using Select-Object to expand each property value. There is an alternative that takes a list of property names and then creates an ordered hashtable. This gets the value from the user object. The directive keeps all of the properties in the same order. This is not required but I like the look. $props = "Name","sAMAccountname","Displayname","Description","Title","UserPrincipalName","WhenCreated","WhenChanged" $hash = @{} foreach ($item in $props) { $hash. add($item,$al. $item. Value) } $hash Once the hashtable is complete, it can be treated as a PowerShell custom object. Selected Properties (Image Credit: Jeff Hicks) You could use this technique for most properties. Let's say you want to change a property. In most cases, all you need to do is assign a new value to the object. $al. description = "sales laptop user" An alternative is to use the Put... --- ### Planner Moves Forward – Slowly > Microsoft Planner added the ability to assign multiple people to a task. It's a good step, but it's the first new feature in 9 months. - Published: 2017-04-06 - Modified: 2024-11-19 - URL: https://petri.com/planner-moves-forward-slowly/ - Categories: Microsoft 365, Office - Tags: Office 365, Office 365 Groups, Planner, roadmap, Teams Microsoft Planner added the ability to assign multiple people to a task. It's a good step, but it's the first new feature in nine months. That's curious when you compare to the development cadence of other Office 365 applications. Planner’s New Trick On April 3, Microsoft announced that Planner now allows tasks to be assigned to multiple users and noted that this feature tops the list of requests made through the UserVoice feedback forum. While the new feature is welcome, it is the first addition to Planner functionality since it achieved general availability in June 2016.  It is a curiously slow development rate when compared to other Office 365 applications. Assigning Tasks to Many In summary, where a one-to-one relationship existed for tasks to assignees in the past, the change allows the same task to be assigned to multiple people (Figure 1). Many plans include tasks that are best assigned with joint responsibility, like the co-authoring of a report, so this step obviously makes Planner more useful in those scenarios. Figure 1: Assigning multiple people to a task (image credit: Tony Redmond) Interestingly, you can now assign tasks to external users. However, Planner does not yet support external access, and this remains the number 1 outstanding feature request for both Planner and Teams. Office 365 Groups do support external user access, but only to the SharePoint resources because Groups leverages the SharePoint capabilities to enable the guest user connection. The data used by Teams and Planner is hosted in Azure, so a different approach is required before guests can work with tasks or chats. Microsoft has promised to support external user access for Teams in mid-2017 and I imagine that this access will be available for... --- ### SharePoint Podcast Episode #332: Dance Like the Microwave Isn't Watching > Shane Young and Todd Klindt talk about SharePoint, O365, Identity, the new Ryzen chip, and Microwaves spying on you. Good times! - Published: 2017-04-06 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-episode-332-dance-like-microwave-isnt-watching/ - Categories: Active Directory (AD), Microsoft Azure, Office, SharePoint - Tags: Active Directory, Azure AD, Identity Management, Microsoft Outlook, Office 365, Outlook, SharePoint - Article Type: News, Opinion Shane Young and Todd Klindt discuss March patches, Microsoft Identity Management with SharePoint 2016, Shane's new computer, automatically created Office 365 groups, creation of direct reports groups in Outlook, not using @ in the SAMAccountName, SAM-Account-Name attribute specs, Outlook sign-in assistant, Azure active directory, integration with Github, and SQL data partners. I am disappointed that with such a great title, we do not actually have a picture of a microwave to replace Todd's ugly face. Insert sad face.     We start out with a solid discussion of the March Patches being available. Then, we get off on a tangent that I got a new PC. It is a top-of-the-line Ryzen with 32GB of RAM. It has a bunch of technologies that we aren't sure we even understand. If you are a hardware junky, it is pretty cool. We finally right the ship, talking about Microsoft Identity Manager (MIM) with SharePoint 2016. We also cover the new Office 365 feature that allows for automatic group creation based on direct reports. This is kind of a cool, yet scary feature. The show finishes up with some Active Directory chat and an Outlook sign-in assistant. We actually do not end off topic. Crazy. https://www. youtube. com/watch? v=smhkEFbPrGU Links from the show: Shane's Computer Build Deployment Considerations for Implementing Microsoft Identity Manager with SharePoint Server 2016 Automatically Created Office 365 Groups Based on Direct Reports Coming Soon Automatic Creation of Direct Reports Groups in Outlook Don’t Put an @ in the SAMAccountName SAM-Account-Name Attribute Specs Outlook Sign-in Assistant Azure Active Directory Integration with Github SQL Data Partners Podcast If you enjoy the show, then you can subscribe using the audio or video RSS feed. You can also join the show live at 5 PM ET, every Monday. There is even a Slack support... --- ### Azure Announces Ls-Series Virtual Machines > Microsoft announced the Ls-Series virtual machines, VM specs and sizes that are designed for use with services that require local low-latency flash storage. - Published: 2017-04-05 - Modified: 2024-11-19 - URL: https://petri.com/azure-announces-ls-series-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure, cloud computing, IaaS, Ls-Series, storage, virtual machines - Article Type: Overview This article discusses the newly launched Ls-Series Azure virtual machines and how they are intended to be used. We will cover the specs, performance, and availability. In this post, I will discuss the newly launched Ls-Series Azure virtual machines and how they are intended to be used.     The New Ls-Series Virtual Machines Azure has a variety of ways to optimize the storage of virtual machines. Some, such as the D:, F-, G-, and H- series use drive capacity for the host to store the temp drive, which is then used for the temp drive. This is a virtual hard disk for the paging file and for disk-based caching. Any virtual machine with an S designation offers the ability to use Premium Storage. This is shared storage that is based on SSD disks. Flash storage can offer low latency but Premium Storage is not local to the host. That means that there is always some additional latency between the host and the storage. The laws of physics cannot be bent to make packets move faster than the speed of electricity or light along the network cable. The only way to reduce latency even further is to bring the storage closer to the host. And that is what the Ls-Series does. L is for Local or L is for Low Latency. Instead of using shared storage, Microsoft says that the LS-Series is "optimized for workloads that require low latency local storage. " By using local storage, the virtual machine is running the same server as the data disks. Latency is as low as it can be while using current host architecture. The S in the... --- ### Driving Adoption for Office 365, Part 4 - Published: 2017-04-05 - Modified: 2024-09-04 - URL: https://petri.com/driving-adoption-office-365-part-4/ - Categories: Microsoft 365 - Tags: Adoption, Office 365 - Article Type: How To In this series about driving adoption for Office 365, we will focus on communication, learning, and the launch. The first part in this series talked about the importance of adoption for the success of Office 365. The second part described the vision, goals, and business scenarios. The third part discussed stakeholders and audience. Let's get ready to discuss communication, learning, and the launch.     Communication Although the current state of the world tells us otherwise, I do believe people are willing to accept change. You just need to be able to show them the long-term advantages. Looking at the introduction of a Cloud platform such as Office 365, communication is crucial for the Office 365 adoption. I advise you to include the following tips in your tools: What is in it for me Communicate your vision and goals Apply the analysis of the audience and company in your language and content Share the roadmap Be honest What Is in It for Me This is the key question to answer. Without an answer, most people are not going to follow your business scenarios. We discussed this in the first part of the series. Communicate Your Vision and Goals This is a bit of a follow-up to the previous tip. People need to be aware of the company's vision and goals that line up with using Office 365. An example of this would be telling the company, "Office 365 offers the employees of Contoso a digital and modern workplace to work anywhere, anytime, and on any device. " This lets everyone know how Office 365 directly relates to... --- ### What You Need to Know About the EU General Data Protection Regulation - Published: 2017-04-05 - Modified: 2024-11-19 - URL: https://petri.com/need-know-eu-general-data-protection-regulation/ - Categories: Security - Tags: Data Protection, EU, Regulatory Compliance, Security - Article Type: Overview Understand what the EU GDPR is and how it might affect your company. In this Ask the Admin, I will provide guidance on what you need to know about the new regulation.     All companies dealing with EU data subjects, even those not located in the EU, will need to comply with the EU General Data Protection Regulation (GDPR) by May 25, 2018. Fines for noncompliance can be up to 4 percent of annual turnover or 20 million euros, whichever is higher. It is impossible to cover all the intricacies of GDPR in this article. We will go over the basics. Data Subjects, Controllers, and Processors EU GDPR differs from current legislation. Organizations must comply, even if the data controller and processor are located outside the EU. It is important to note the location of the data subject. This is speaking about the person or body to which the data is related. A data controller decides how data can be used and in what manner it can be processed. Data processing includes actions such as retrieval, erasure, organization, alteration, and storage. Like most regulatory codes that involve protecting personally identifiable information (PII), the EU GDPR probably does not require you to do anything that is not already considered a best practice. But considering many organizations turn a blind eye to even the most basic of security principles, it might be time to make some changes to IT operations and business practices. This is especially true if the new rules apply to you. Data Protection By Design and By Default... --- ### 5 Ways the Hybrid Cloud Has Changed IT - Published: 2017-04-05 - Modified: 2024-09-04 - URL: https://petri.com/5-ways-hybrid-cloud-changed/ - Categories: Cloud Computing - Tags: Backup, Cloud Bursting, Disaster Recovery, High Availability, hybrid cloud - Article Type: Overview Most businesses have adopted a hybrid cloud strategy in which they have stretched several key IT elements into the cloud for more efficient operations, flexibility, and potential cost savings. Let’s look at five of the most important ways that the hybrid cloud has changed IT. Just a couple of years ago, the cloud was something that businesses were looking at but not really using for anything important. That’s all changed, and today, most businesses have adopted a hybrid cloud strategy in which they have stretched several key IT elements into the cloud for more efficient operations, flexibility, and potential cost savings. Let’s look at five of the most important ways that the hybrid cloud has changed IT.     Dev and Test — Extending development and testing to the cloud was where the cloud first started gaining traction for most companies. The cloud enables businesses to accelerate their development and test processes by giving developers and testers the ability to rapidly provision their own VMs without needing to wait for a request to go through all the proper IT channels. The hybrid cloud makes dev and test more agile and at the same time reduces internal operating requirements and costs. Backup — The next big area where businesses began adopting the hybrid cloud was for backups. Using the cloud as a backup target for your on-premises servers helps companies to implement the desired 3-2-1 rule for backups. To properly protect your data you should have at least three separate copies of that data that are stored on two different types of media with one copy of the data offsite. Implementing backup in the hybrid cloud provides at least one additional copy of the data, one copy on a different media type, and one... --- ### Using Tags to Help Delve Find Office 365 Content More Efficiently > Changing your tagging habits for documents can make a huge difference in the effectiveness of Delve searches for Office 365 content. - Published: 2017-04-04 - Modified: 2024-11-19 - URL: https://petri.com/efficient-delve-searches-office365/ - Categories: Microsoft 365, Office - Tags: Delve, Office 365, OneDrive for Business, Search, SharePoint Online - Article Type: How To Delve does a good job of finding Office 365 content stored in SharePoint Online and OneDrive for Business. But you can make Delve so much more effective by changing your habits to tag documents and add them to boards. Try these simple steps that pay big dividends.   Needles, Haystacks, and Delve Delve’s new intelligent search (powered by Office Graph) is good at finding information for users. That is, if people store files in SharePoint Online and OneDrive for Business and not on their local hard drives. But even if users embrace cloud storage, the fact remains that no search tool can find needles in haystacks, unless they get some help. In this case, the haystacks are the ever-swelling number of documents and other files stored inside SharePoint and OneDrive for Business, including all the data ingested through the Office 365 Import Service. The Search Foundation builds content indexes from the information held in Office 365, but the content indexes are handicapped if users don’t provide hints to help find information when the need arises. Helping Search with Hints We have all been in the situation where we need to find a document quickly. We know some attributes of the document, like a partial title (or what we think the title might be) and have some idea of when the document was last updated, but searches stubbornly refuse to find the right file. Cue frustration for the user and a potential call to support. The reason why it is sometimes so difficult to find files through searches is the non-precision of the data in the indexed content. This is not the fault of the content indexing engine as it can only process the information in sites. The real issue is how users label documents through titles, tags,... --- ### 3 Tips for Working with the Microsoft Azure Recovery Services Agent - Published: 2017-04-04 - Modified: 2024-09-04 - URL: https://petri.com/3-tips-working-microsoft-azure-recovery-services-agent/ - Categories: Backup & Storage - Tags: Azure, Azure Backup, Cloud - Article Type: How To Learn how to avoid some of the common problems with the Microsoft Azure Recovery Services agent. In this Ask the Admin, I will show you how to solve some common problems with the Microsoft Azure Recovery Services (MARS) backup agent on servers and Windows devices.     MARS is a cloud backup solution that supports Windows Server and Windows client OSs. It is a good option if you need a simple, no fuss, offsite backup. For more information about MARS and how to install the agent, see Backing Up Files and Folders Using Azure Backup on the Petri IT Knowledgebase. Connecting to MARS Service One of the frustrations I have experienced with the MARS agent is when opening the management console snap-in (MMC). MARS times out while connecting to the backend service. The easiest way to avoid this problem is to install the agent while logged into the server or PC with a local administrator account. Using Run as Administrator from a standard user’s desktop is creating the problem. Once the agent is installed and you have registered the device with Azure, you can switch back to a standard, user-account desktop. Finally, you can open the console using Run as Administrator. If you have not already guessed, you need local admin privileges to access the console. Make sure you follow best practices by removing admin privileges from users. Therefore, users will not have access to Azure Recovery Services on their devices. MARS Agent (Image Credit: Russell Smith) Device Notifications The MARS agent does not support local notifications but... --- ### Deploying ReactJS Web Parts Through the SharePoint Framework - Published: 2017-04-04 - Modified: 2024-09-04 - URL: https://petri.com/deploying-reactjs-web-parts-sharepoint-framework/ - Categories: Microsoft 365, Office, SharePoint, SharePoint 2016 - Tags: Office 365, ReactJS, SharePoint - Article Type: How To In this article, you will learn to deploy SharePoint Framework client web parts to Office 365. In a previous article, I showed you how to create a client-side web part using ReactJS and the SharePoint Framework. The web part used the SharePoint API to retrieve the current user’s name, which was then displayed in a welcome message.     In this article, I will show you how to package and deploy the web part to Office 365. Client-side web parts consist of bundled JavaScript, CSS, and other asset files. They also consist of a package of manifest information. The general strategy is to put the asset files in some central location like a content deployment network (CDN). From there, the SharePoint Framework will load them. The manifest information is packaged and uploaded into the App Catalog. It can then be made available to sites and pages. When a web part is added to the page, the SharePoint Framework loads the required assets from the CDN. As an alternative to using a CDN, the associated asset files could be uploaded into a SharePoint library such as Site Assets. The nice thing about using a document library is that you do not need any separate infrastructure to host a CDN. For this article, I will make use of this approach and show how easy it can be. Configuring the Deployment Before packaging the web part, you must make some changes to the configuration files used to control the build process. Within the web part project, you start by editing the write-manifests. json file located in the config... --- ### Windows 10 Creators Update Delivers a More Secure Edge - Published: 2017-04-03 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-creators-update-delivers-secure-edge/ - Categories: Windows Client OS - Tags: Microsoft Edge, Security, Windows 10 Creators Update - Article Type: Overview Learn about new security defenses in Microsoft Edge in the Windows 10 Creators Update. In today's Ask the Admin, I will look at how Microsoft is providing a more secure browsing experience with Edge in the Windows 10 Creators Update.     Microsoft Edge took a bit of a bashing at last week’s annual Pwn2Own competition. It came out on top as the most hacked browser. Considering how Edge is positioned as more secure than Chrome and Firefox, this is something of an embarrassment for Microsoft. On day one of the contest, Tencent Security – Team Ether managed to break out of the Edge sandbox. They were using an arbitrary write-in within the browser’s JavaScript engine, Chakra. On day two, Tencent Security – Team Lance, with some help from Team Sniper, exploited a Use-After-Free (UAF) vulnerability in Chakra. This elevated privileges to SYSTEM using another UAF vulnerability in the Windows kernel. On day three, 360 Security exploited a heap overflow in Edge. Doing so helped them escape from a VMware Workstation virtual machine (VM). This was the first time anyone has performed a full VM escape at the competition. Edge was targeted again by Richard Zhu. He used two separate UAF flaws to escalate to SYSTEM using a buffer overflow in the Windows kernel. Considering these results, it may be tempting to think that Edge is not as secure as Microsoft would have us believe. It is important to remember that Mac OS X and Linux were also successfully hacked. Also, keep in mind that the zero-day flaws in Edge will be... --- ### Microsoft Expands Office 365 K1 Tier - Published: 2017-04-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-office-365-k1-plans/ - Categories: Microsoft 365, Office - Tags: News, Office 365, Office 365 k1 - Article Type: News Microsoft is adding new features to its Office 365 K1 plan, a tier of the productivity suite designed for front-line workers. When it comes to Office 365, Microsoft has a wide variety of plans that the company hopes will fit your requirements. Everything from a personal iteration for use at home, all the way up to enterprise customers, there are many different options that mix and match features for different scenarios. One type of plan the company offers is what they call kiosk plans. This iteration of Office 365 is designed for workers who typically do not have a desk (retail or shift workers) and also where one machine is used by multiple different people per day. In an effort to make the company's Office 365 K1 plan more popular, Microsoft is expanding the tools offered with this tier. Rolling out over the next several weeks, Microsoft is adding StaffHub, 2GB of OneDrive for Business storage, Microsoft Teams, Office 365 Video and Microsoft PowerApps and Flow to the K1 offering. But, if you have been using this plan, you will know that not everything is new today. Back in January, the company added the StaffHub app to the plan and also recently added the 2GB of storage for OneDrive as well; Microsoft Teams, Office 365 Video and Microsoft PowerApps and Flow are new. The company hopes that by adding more value to this iteration of the platform, the company can attract the estimated 500 million people who work in this sector. Knowing the size of the potential market, you can begin to understand why the company wants to make this Office 365 tier, more... --- ### What Is Azure Network Watcher? > This post introduces the preview release of Azure Network Watcher, a tool for resource and end-to-end network monitoring & troubleshooting. - Published: 2017-04-03 - Modified: 2024-09-04 - URL: https://petri.com/azure-network-watcher/ - Categories: Microsoft Azure - Tags: Azure, cloud computing, ExpressRoute, Gateway, Load Balancer, monitoring, Network Security Groups, Network Watcher, networking, Traffic Manager, User-Defined Routing, VPN, Web Application Gateway - Article Type: Overview Server administrators are going to be responsible for much of the networking that was not formerly in their scope. Azure Network Watcher is a great tool to help monitor and troubleshoot your network deployments. In this post, I will explain the role of a new preview feature in Azure called Network Watcher. This will allow you to monitor your network deployments in Azure from both a single resource and a solution perspective.       The Problem Everything about cloud computing screams connectivity. Once you start to get beyond the most basic of deployments, you will build quite a bit of complexity into your solutions. I have covered most of these solutions on Petri. com over the past few years.   A few of the topics I have covered include: Hybrid networking using gateways for VPN and/or ExpressRoute VNet peering Layer 4 load balancing using the Azure load balancer Layer 7 load balancing using the web application gateway Layer 4 security at the subnet or NIC using network security groups Routing using user defined routing With complexity comes problems. We need more than just ping and trace-route to figure out where those problems reside. Network Watcher Microsoft recently launched a public preview of Network Watcher. It is available in US West Central, US North Central, and US West. It also will be rolled out to more regions over time. Network Watcher provides us with network monitoring at two levels: Scenario: This level is end-to-end monitoring of a solution. An example of this is being able to figure out why a packet cannot reach a destination from a given source. Resource: In this level, we can retrieve diagnostic logs and metrics. We can also troubleshoot... --- ### Leveraging OneNote: Getting Your Content into OneNote > OneNote has a multitude of different tools for getting your content into OneNote. From the standard paste to extensions to special printers; It's all there! - Published: 2017-04-03 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-getting-content-onenote/ - Categories: Microsoft 365, Office - Tags: Leveraging OneNote, Office 2016, OneNote - Article Type: How To OneNote is an incredible suite of programs. This enables you to work however you decide is best for you. Instead of restricting users, OneNote empowers you to get organized and get working. With OneNote, Microsoft did not just build a fantastic way to view and edit a range of different content types. They also built several different tools for getting the text, images, videos, audio, and more. In addition to the keyboard, pen, and mouse, you can also add content into OneNote from a few different apps and services.     The rules for importing media varies across different methods. The rules generally break into two categories, rich content and image content. When something is added as rich content the text is editable, the links clickable, and images are in original form. Many tools add the content into OneNote as a single image or a few different images of the content. Adding Content to Your Notes from Edge While both content insertion methods have their pros and cons, keep in mind how you intend to interact with the content once inserted into OneNote. If your intentions are to manipulate the text, then you should make sure to use a rich content insertion method. If your plan is to view content frozen in time and annotate or reference it, then having your content stored as images should work well for you. Rich Content Adding rich content into OneNote manually is easy and quick. Giving pages structure with tables (tab key) or lists (ctrl + . and ctrl + /) can be done as you go or after the fact. The insert tab has a massive range of... --- ### SharePoint Podcast #331 -- Unrelated > Shane and Todd, your favorite SharePoint MVPs, spend this episode covering Windows and Azure AD among other things. Why no SharePoint guys? - Published: 2017-03-31 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-podcast-331-unrelated/ - Categories: Active Directory (AD), SharePoint, Windows 10 - Tags: Azure AD, Enterprise Mobility Suite, SharePoint, Windows Insider - Article Type: News, Opinion Shane Young and Todd Klindt talk about the latest Windows 10 Insider build and its cool features, Enterprise Mobility hitting 85 million users, Azure AD, some authentication issues, and Shane gets upset about patches. We should really do a better job of posing for these screen grabs. I have no words for how awkward we look. The good news is this show is all of the awkward. We do a pretty good job of staying on topic talking about the latest Windows 10 Insider build and its cool features. We also cover Enterprise Mobility hitting 85 million users, Azure AD, some authentication issues, and I get upset about patches. Not a lot of SharePoint, but since authentication is key to getting into SharePoint still a helpful show. As the show winds down, we get sidetracked by billionaires and world leaders negotiating on Twitter. Very odd.     Oh, look below. More awkward photos. It is like high school yearbook all over again. https://www. youtube. com/watch? v=bDZAuhyf0pk Links from this week's show: Latest Windows 10 Insider build details Microsoft authentication issues Azure AD AMA Free Azure training course from Microsoft Enterprise Mobility Elon Musk makes a bet to fix a state's energy woes in 100 days or it's free If you enjoy the show, then you can subscribe using the audio or video RSS feed. You can also join the show live at 5PM ET, every Monday. There is even a Slack support group. Check out the podcast home page for more info on how to join the hooligans. If you are interested in being a featured listener, just tweet Shane or Todd and we can set it up. We don’t have many friends, so it is safe to assume... --- ### Sponsored: Eliminating Archived Email and PSTs in the Enterprise, Part 2 - Published: 2017-03-31 - Modified: 2024-12-03 - URL: https://petri.com/sponsored-eliminating-archived-email-psts-enterprise-part-2/ - Categories: Messaging, Uncategorized - Tags: Archived Email, PST - Article Type: Overview Eliminating archived email and PSTs doesn’t need to be overwhelming. Learn about the Locate, Identify, Migrate, and Eliminate phases of an archive consolidation or elimination project. For a long time, email archives and PST files have been commonly used by many organizations, and therefore eliminating them might seem like a daunting task. In the first post in this series, I introduced the five phases of an archive elimination project (Restrict, Locate, Identify, Migrate, and Eliminate) and discussed the Restrict phase in more detail. In this post, we’ll take a closer look at each of the remaining phases.   Locate The Locate phase is often the most difficult and time-consuming, especially when hunting down PSTs. The goal of this phase is to locate archives and PSTs across the organization and move them to a central location for further processing in later phases. Archives are usually simpler to locate because they exist in one or more archive solutions. PSTs, however, could exist in file shares, on network storage devices, on client workstations, or in all of these locations. PowerShell can be very useful when trying to locate PSTs, but don’t underestimate user self-service options. Self-service need not be complex and can be as simple as instructing users to rename and copy their PSTs to a file share. I once saw an organization develop their own self-service web portal to help facilitate the collection of PSTs and it worked really well for them, but this solution might be overkill in many other environments.  A lot can be achieved with a small amount of end-user training. This phase can also assist the Identify phase. For example, once you locate... --- ### Paul Thurrott's Short Takes: March 31 - Published: 2017-03-31 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-31/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Overview Because there's a Microsoft coffee shop in Berlin, this edition of Short Takes looks at the Windows 10 Creators Update rollout, Galaxy S8 preorders at Microsoft's retail stores, and much, much more. Would you like a latte with that Surface Book? Because there's a Microsoft coffee shop in Berlin, this edition of Short Takes looks at the Windows 10 Creators Update rollout, Galaxy S8 preorders at Microsoft's retail stores, and much, much more. Microsoft: Windows 10 Creators Update will roll out over "several months" After a wide-ranging series of reliability and quality issues scuttled Microsoft's plans to deploy last summer's Windows 10 Anniversary Update within a few months, the software giant has reset its expectations for the Creators Update, which will begin rolling out in April. This time, Microsoft says, the upgrade process will occur "over a period of several months," but on purpose, so that users will have a more "seamless" (read: error-free) experience. You might argue that this is the right approach. But I think this exposes the soft underbelly of Microsoft's "Windows as a service" (WaaS) plans, which is that this legacy software is too big, complex, and rooted in the 1990s to work well as a service. And that what really needs to happen is a more aggressive removal of legacy technologies from the platform until WaaS can actually make sense. And yes, I'm looking at you, Win32. It's time to make some tough decisions. "Thinking about switching to Windows 10? Now's the time to act" Seems to me the time to act was when it was free. Microsoft is offering Samsung Galaxy S8 preorders in its retail stores Nothing quite demonstrates... --- ### Active Directory with PowerShell, ADSI, and LDAP - Published: 2017-03-31 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-powershell-adsi-ldap/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, ADSI, Intermediate, LDAP, PowerShell - Article Type: How To This is series of articles about managing Active Directory with PowerShell. This one particularly focuses on using the LDAP moniker. In a previous article, we began looking at alternative ways to manage Active Directory (AD) with PowerShell using an ADSI type of accelerator and the WinNT moniker. One advantage is that with WinNT you do not need to know any details about what you are querying. You do not need to know what OU or container and object might reside because it does not matter. Everything via WinNT is relatively flat. You will not have access to the AD properties that you probably want to use. So let's see what we can do with the LDAP moniker, starting at the domain level. $domain = "LDAP://DC=globomantics,DC=local" As before, the LDAP moniker is case-sensitive. All you need to do is specify the distinguished name of the object you want to access. In this case, it is my domain. This object has much more detail. LDAP Domain Object (Image Credit: Jeff Hicks) I excluded a few properties so that I could fit a bit more into the screen shot. You will notice that WinNT values are arrays and COM objects. Therefore, expect to make a little effort in displaying results. $domain | Select @{Name = "Name";Expression = {$_. Name. value}}, @{Name = "DN";Expression = {$_. DistinguishedName. value}}, @{Name = "Created";Expression = {$_. whencreated. value}}, @{Name = "Modified";Expression = {$_. whenchanged. value}} Selecting Domain Properties (Image Credit: Jeff Hicks) In the previous article, we grabbed the domain's password properties. We can do the same thing here but it is a bit more... --- ### 3 Ways to Get More from IT -- And Not Be a BOFH - Published: 2017-03-30 - Modified: 2024-09-04 - URL: https://petri.com/3-ways-get-not-bofh/ - Categories: Main - Tags: Ask an Admin - Article Type: Opinion In this article, Russell Smith shares his thoughts about how to live peacefully with the tech in your life. In today's Ask the Admin, I will share my thoughts on how to have a more harmonious relationship with technology and those who support it.     The everyday problems we have with technology can be frustrating. As an IT guy, I share that frustrated feeling on an almost daily basis. At times, I think I would be better off just getting rid of the gadgets in my life. Many of the difficulties we experience, however, are actually not tech issues, but people issues. Before you vent anger at the IT guy, here are three things to bear in mind. 1. Understand How Apps Are Designed to Work -- Accept Their Limitations A good workman never blames his tools. However, we often expect the tools to work how we would like them to instead of the way they were designed. This sometimes happens in the name of finding creative solutions. While I’m all for thinking out-of-the-box, it is generally better to understand how an app is designed to be used and accept its limitations. This usually works better than trying to force a square peg into a round hole. Moving from a different platform or app requires time to adapt and understand new concepts. Just because you need to press return at the end of every line on a typewriter, does not mean you have to do the same when using a word processor. Yes, I have actually seen somebody insist on pressing ENTER at the end of... --- ### Building a Location Beacon Using Microsoft Flow, Power BI, and Azure Functions - Published: 2017-03-30 - Modified: 2024-09-04 - URL: https://petri.com/building-location-beacon-using-microsoft-flow-power-bi-azure-functions/ - Categories: Microsoft 365, SharePoint, Uncategorized - Tags: Azure, Location Beacon, Microsoft Flow, Office 365, Power BI, SharePoint List - Article Type: How To Jussi Roine shows you how to build a production-ready solution using Office 365 and Microsoft Azure for locating your dearest and nearest colleagues when you’re out and about. Okay, I admit that the title of this post is a bit 1984’ish. Trust me, that is not the intention, so let me explain this a bit before showing you how to build a production-ready solution using Office 365 and Microsoft Azure for locating your dearest and nearest colleagues when you’re out and about.     The Premise I run my own company, Onsight Helsinki, and we’re a team of about 30 people and counting. One of the major philosophies that I try to cultivate within our company culture is flexibility and freedom, along with the corresponding responsibility. What this boils down to is the fact that often our people are scattered around Finland and surrounding countries with their projects, classroom training, and those endless Skype conference calls. We still have physical desks. Everybody has a dedicated desk because I felt it would make people feel more comfortable on those occasional days when they do visit the office. So, the view when I (rarely) visit the office is something like in the picture below. Where’s everybody? I can always check Skype for Business, but it doesn’t help me much. Armed with this dilemma, I started building a solution that would allow me to provide a way for people to post their location, either semi-automatically or as a fully automated solution. You might call it a tracking solution, but I’d be inclined to call this a voluntary “hey, I’m currently here” location beacon. It could just be that a... --- ### Managing Cross-Node Dependencies with Desired State Configuration - Published: 2017-03-30 - Modified: 2024-09-04 - URL: https://petri.com/managing-cross-node-dependencies-desired-state-configuration/ - Categories: PowerShell - Tags: Automation, Desired State Configuration, PowerShell, Windows Server - Article Type: How To Learn how to control timing of Desired State Configuration across nodes using WaitFor resources in this how-to article. Desired State Configuration (DSC) simplifies server configuration management by allowing you to declare a server’s configuration in a document. It also allows for formatting all the settings as specified in the document. At times, there may be a need to configure a set of servers where you find that there are some dependencies between the servers’ configurations. For this scenario, DSC provides the built-in WaitFor resources.     Setting the Stage -- Example Consider a simple, two-tier, web application that has a web server and a database server. In this example, you are converting from manual install procedures to configuration management using DSC. Your instructions are the following: Configure SQL Server Install database Start SQL Server Configure Web Server After SQL Server starts, start IIS In this scenario, your web server’s startup needs to complete after SQL Server begins. Keep in mind, the SQL Server configuration is happening on another server. To accomplish this, you will need to use the WaitForAny resource. This will tell the web server to wait for a dependency to complete. Choosing the Right Resource You will want to use PSDesiredStateConfiguration. This is the module that contains the built-in DSC resources. It all contains the following three WaitFor resources: WaitForAny -- Waits for one of the nodes in the list to reach the prerequisite condition WaitForSome -- Waits for a minimum number of nodes in the list to reach the prerequisite condition WaitForAll -- Waits for all nodes in the list to reach the prerequisite condition Why... --- ### Leveraging OneNote: Using Page Templates > Use custom page templates in OneNote to make it easy to drive more consistent note taking in your business. OneNote has template support built in by default - Published: 2017-03-30 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-using-page-templates/ - Categories: Microsoft 365, Office - Tags: Leveraging OneNote, OneNote - Article Type: How To The desktop client of OneNote has template features, which can help standardize how new pages look and feel. Templates are a terrific way to keep your team on the same page and speaking a consistent organizational language. Working in a business means creating, following, and updating procedures. Flexibility becomes one of OneNote’s biggest flaws in business settings because of the need for consistency and templates. Luckily, the desktop client of OneNote has template features which can help standardize how new pages look and feel. This helps drive consistency across notes.   Making Page Templates Blank OneNote Template Page The first step in creating a template is to create the master page. This format will be copied for each new page. The master page design is up to you and it can contain rich content and formatting. I recommend keeping your master page template simple. I also suggest using tables and bold formatting. Putting a simple table at the top of the page as an information section gives structure and a starting point for your coworkers. I recommend including fields to help give the page clear context. Some of my usual fields are Added By, Project, Date Added, and Links. Do not expect unaccustomed users to have any context when they are asked to use a template. The more structure you give to your template, the easier it will be to understand. Ideally, the template will be self-explanatory. In the body of the page, it is important to give a rough framework for the layout of information. Remember, the purpose of using page templates is to give consistency to your notes. Using page templates should help people find information quickly and easily... --- ### How To Recover Deleted Office 365 Groups In Three Easy Steps > Microsoft has released the Azure Active Directory cmdlets to allow Office 365 tenants to recover deleted Office 365 Groups. - Published: 2017-03-30 - Modified: 2024-11-19 - URL: https://petri.com/recover-deleted-office-365-groups/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, Exchange Online, Office 365 Groups, Planner, PowerShell, Purge, Recovery, SharePoint Online, Soft-Delete, Teams, Yammer - Article Type: News The latest version of the PowerShell module for Azure Active Directory contains the cmdlets to recover a deleted Office 365 Group (and a plan or a team). We have been waiting for this feature for two and a half years, but maybe the waiting makes the feature all the sweeter... Recoverable Office 365 Groups The ability to recover deleted Office 365 Groups has been awaited for many months. Microsoft promised the feature by the end of 2016 at the Ignite conference in September 2016 but precious little has appeared since. That is, until the release of version 2. 0. 0. 98 of the Azure Active Directory PowerShell module on March 28. This module includes the cmdlets necessary to recover deleted groups. Documentation for the cmdlets will soon be available along with that for the other cmdlets in the module. The feature is listed in the "Rolling Out" section of the Office 365 Roadmap as “Recover deleted Office 365 Groups via PowerShell” (ID 72284). However, it has not shown up yet in the Office 365 Message Center. Only Possible Through PowerShell For some, the bad news is that recovery is only possible using PowerShell. You could also say that the cmdlets are in a preview version of the Azure Active Directory PowerShell module and that many tenants have not yet moved over from the older V1 module because of the way that cmdlet names and parameters have changed. No one, after all, likes to have to rewrite code. However, the fact is that Microsoft has deprecated the older V1 module and all further development will occur for the V2 module. Indeed, Microsoft has built out the cmdlet set over the last few months to a point where it is possible to translate older V1 cmdlets to their V2 counterparts with less pain than before. Of course, testing is... --- ### Driving Adoption for Office 365, Part 3 - Published: 2017-03-29 - Modified: 2024-09-04 - URL: https://petri.com/driving-adoption-office-365-part-3/ - Categories: Microsoft 365 - Tags: Adoption - Article Type: How To Office 365 is an incredibly powerful Cloud platform build on four strong pillars: collaboration, mobile, intelligence and trust. Although these are very strong characteristics, instant adoption isn't guaranteed. Learn how to drive adoption for Office 365 in this new series of articles on Petri.com. The first part in this series talked about the importance of adoption for the success of Office 365 within your organization. The second part described the vision, goals, and business scenarios for our digital transformation roadmap. We are continuing with our roadmap. Let’s talk about the stakeholders and the audience.     Stakeholders: IT   Times have changed for IT. Long ago, IT had all the control within a company. They decided what tools you were going to utilize during your working day. Due to the rise of the Cloud, which resulted in easy access toward collaboration services such as Slack or Dropbox, the times have changed. IT does not facilitate any longer. People are going outside the company walls. Do not think they won't. They definitely will.  IT has to become a facilitator again. They need to improve the business with the Modern Workplace. Doing so can help to get their job done as well as make everyone's work lives easier, more efficient, and more fun. We need IT to cover the complete technical side of implementing Office 365. IT needs to make sure all the employees are able to connect with Office 365. IT also needs to ensure everyone has up-to-date software on their work devices. Stakeholders: Business Let's talk about the users who are going to work with Office 365 on a day-to-day basis. Find people who are excited to start working with Office 365 and other new technologies. These people are going to be your early adopters... --- ### Windows 10 Creators Update Arrives April 11, Here’s What’s in it for the Enterprise - Published: 2017-03-29 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-creators-update-arrives-april-11-heres-whats-in-it-for-the-enterprise/ - Categories: Windows 10 - Tags: Creators Update, Windows 10 - Article Type: News Microsoft will release the Creators update for Windows 10 on April 11th; here's what is in this release for enterprise customers. Microsoft has announced that the next large update to Windows 10, called the Creators update, will arrive on April 11th. This update brings several new features to the platform that should be of interest to corporate users but it’s missing at least one that many expected to be in this release. The company says that this roll-out will start out slowly, so if you are not seeing the update right away on the 11th, be patient. If you do want to install the retail release of the Creators update, you can use the media creation tools to install the update today; distribution via Windows Update will be even slower than the Anniversary update. In this update, Microsoft is releasing the Windows Defender Security Center. This feature creates a single dashboard that gives you full control of your security options from one place; this includes everything from anti-virus, network and firewall protection to assessing your device performance and health and security controls for your apps and browser as well as family safety options. Windows Defender ATP is also getting several updates that will focus on detection, intelligence and remediation: Detection: Microsoft is expanding the use of sensors to detect threats that persist only in memory or at the kernel level. Intelligence: Microsoft is opening up Threat Intelligence to allow admins to feed their own data into the Windows Security Center. Remediation: New remediation features in Defender ATP provide IT admins tools to isolate machines, collect forensics, kill and clean... --- ### Azure Autoscaling with VMSS and Managed Disks, Part 3: Vertical Autoscaling - Published: 2017-03-28 - Modified: 2024-09-04 - URL: https://petri.com/azure-autoscaling-vmss-managed-disks-part-3-vertical-autoscaling/ - Categories: Cloud Computing - Tags: Azure, cloud computing, virtual machine scale sets - Article Type: How To Learn how to vertically scale VMs in a VMSS using Azure Automation. In part two of this series, I showed you how to autoscale virtual machines (VMs) using Virtual Machine Scale Sets (VMSS) and Managed Disks behind a load balancer. In part three, I’ll look at how to configure vertical scaling (up and down) as an alternative to the default horizontal scaling (in and out). For more information on VMSS, Managed Disks, and vertical versus horizontal scaling, read part ‎one and two of the series.     Azure Autoscale uses horizontal scaling by default. This is the best solution to avoid interruptions in service because it does not require rebooting VMs. But vertical scaling can be achieved with the help of metrics, VMSS alerts, and Azure Automation runbooks. As you have probably guessed, it is more complicated to set up, test, and maintain. Nevertheless, I will show you how to configure a runbook to scale down VMs in the VMSS if CPU utilization drops below five percent. The same method can be used to scale up VMs. Create an Azure Automation Run as Account Before you can use a runbook for vertical scaling, you will need an Azure Automation account with a Run as Account. This allows the runbook to authenticate with Azure Resource Manager (ARM) resources. Log in to the Azure management portal here. Scroll to the bottom of the list of services on the far left and click More services. In the Filter field, type automation and click Automation Accounts in the results. At the top of the Automation... --- ### Sponsored: Five Essential Remote Desktop Tips - Published: 2017-03-28 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-five-essential-remote-desktop-tips/ - Categories: Cloud Computing, Windows Client OS, Windows Server - Tags: Remote Desktop Connection - Article Type: Overview Michael Otey shares five essential tips that can make your work with Remote Desktop Connection faster and more efficient. Windows Remote Desktop Connection is the IT administrator’s best friend and is one of the Windows infrastructure management tools that’s in constant daily use for remotely managing both local and cloud-based virtual machines (VMs). In Windows 10 and Windows Server 2016, the Remote Desktop Connection can be found on the Start menu under Windows Accessories and Remote Desktop Connection. Let’s look at five essential tips that can make your work with Remote Desktop Connection faster and more efficient. Save Common Connections as RDP Files One of the most basic tips is to save your common connections as . RDP files, which you can put on the desktop or in a folder. Using . RDP files makes it far more convenient to open your frequently used systems because all you need to do is click on the . RDP file. There’s no need to reinput all your connection information. To save your Remote Desktop Connection settings, open Remote Desktop Connections and click Show Options; you will then go to the General tab and select the Save As option to supply a name and location for the . RDP file. Optimize Your Display Settings Another handy management tip for Remote Desktop Connection is the ability to customize the display settings. Some administrators prefer to run their Remote Desktop Connection sessions in full-screen mode with the connection bar at the top of the screen, while others prefer multiple windowed displays. To optimize your display settings, click the Display tab and then use the Display configuration slider to... --- ### Surface Studio Review: The C-Suite PC Has Arrived - Published: 2017-03-28 - Modified: 2024-09-04 - URL: https://petri.com/surface-studio-review-the-c-suite-pc-has-arrived/ - Categories: Hardware - Tags: Surface Studio - Article Type: Review Microsoft's Surface Studio is the hero of the segment and an artists dream but it can be used for much more than digital painting. Outside Surface Studio launch event, I ran into Panos Panay, who is the Corporate VP of Devices for Microsoft. We had a brief chat about Surface and discussed other pleasantries but one thing he asked me was that if I ever found a better display than the Studio, to let him know. A few weeks ago, Microsoft sent me a Surface Studio to review and after prying my daughter away from it for a few days, I began using the device on a daily basis to see if this $4200 PC is worth the price tag and if it is a fit for your Office. This machine comes with a 6th gen Intel Core i7 CPU, 32gb of RAM, 28-inch adjustable PixelSense Display GTX 980M 4GB GPU GDDR5, 128GB SSD with 2TB HDD and frankly, for most users, this is more than enough horsepower to handle just about any task with niche gaming being an outlier and possibly heavy video editing too. You can opt for lower specs on the Studio which brings the entry-level pricing down to $3000. For connectivity, you get four USB 3. 0 connections, gigabit ethernet, mini Displayport and a standard headphone jack. Oddly, Microsoft did not include a Thunderbolt 3 port which is disappointing for a device at this price point. Let’s get something out of the way. The Studio is the best PC on the planet for digital artists; this really isn’t a big surprise as Microsoft has done an excellent job of marrying a pen,... --- ### Exchange Online Provides Archive Folders to Users. Good or Bad Idea? > Exchange Online makes a new archive folder available to users. Now we have multiple ways to archive email in Office 365. What's best? - Published: 2017-03-28 - Modified: 2024-11-19 - URL: https://petri.com/exchange-online-archive-options/ - Categories: Microsoft 365, Office - Tags: Archive, Exchange Online, Office 365, Outlook, owa - Article Type: Opinion Exchange Online now boasts an “archive folder”, helpfully furnished to allow users to keep items they need to retain. Unless they have an archive mailbox. Or use Outlook auto-archive. It’s just a tad confusing. Exchange's Confusing Archives Recently, Microsoft added an Archive folder to Exchange Online as one of the default set of folders created for all mailboxes. On the surface, it is a baffling decision because Exchange already has an “online” or “in-place” archive mailbox for users who want to retain information for long periods, often for compliance purposes. Why complicate matters for users by making competing ways to archive available?     The Value of Online Archives The case to provide the Archive folder to users is not straightforward. It does close a gap for some users because the kiosk plans sold for Office 365 do not include archiving. All other business plans come with a 50 GB archive quota, but you need to have an E3, E4, or E5 license to benefit from the “auto-expanding, highly scalable archives for Office 365“. Although Microsoft has paused the deployment of the expandable archive, there is still plenty of archive space to fill in millions of Exchange Online mailboxes. The 50 GB limit for an archive is a reduction on the previous 100 GB limit, but as Microsoft notes “if you reach this capacity, additional storage is available” by contacting Microsoft Support. The reduction in the default quota likely reflects usage patterns and it is known that Microsoft Support can extend the quota to 170 GB when necessary. The limit will lift for some when the deployment of the expandable archive resumes. But even 50 GB is sufficient for the average user... --- ### Microsoft Adds Several New Features To Skype for Business - Published: 2017-03-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-several-new-features-skype-business/ - Categories: Microsoft 365 - Tags: Skype for Business - Article Type: News Microsoft is adding a couple of new features to Skype for Business that will allow the platform to handle high call volumes more effectively and new hardware is coming too. This week, Microsoft is at Enterprise Connect and as the name suggests, this is an event for unified communication industry. This year, the company is announcing several updates to Skype For Business in Office 365 which the company says is used to conduct one billion meetings per year. Microsoft’s Skype for Business platform has become an integral part of the Office 365 suite and while there is still confusion around the differences between Skype for the consumer and Skype for Business, the business version of the platform continues to grow as new users sign up for Office 365. Listed below are the new features coming to the platform that will help give it parity and edge ahead of some of the competitors in this segment. Auto Attendant: An automated system to answer and route inbound calls using dial pad inputs and speech recognition. Call Queues: Enables incoming calls to be routed to the next available live attendant in the order they are received. Preview of Call Analytics: A new dashboard in Office 365 admin console to increase IT visibility to identify and resolve call issues. New Skype Rooms System solutions from Creston, Logitech and Polycom: Polycom RealConnect for Office 365, which enables customers to connect existing video conferencing devices to Skype for Business Online meetings These new features will help Skype for Business be deployed in more scenarios where inbound calls are high in volume such as a call center. The new Skype Rooms system will also help... --- ### Sponsored: Eliminating Archived Email and PSTs in the Enterprise, Part 1 - Published: 2017-03-27 - Modified: 2024-12-03 - URL: https://petri.com/sponsored-eliminating-archived-email-psts-enterprise-part-1/ - Categories: Messaging, Outlook, Uncategorized - Tags: Archived Email, PST - Article Type: Overview There has never been a better time to address archived email data and reduce the costs associated with storing it on-premises. In part one of this series, Chris Goosen begins to walk you through the 5 phases of an archive consolidation or elimination project. In today’s ever-connected cloud world, our communication and collaboration platforms are constantly evolving. While team workspaces and enterprise social platforms are more prevalent than ever, email continues to be the predominant means of business communication.     In many organizations, the demand and usage of email have grown considerably over time. The proliferation of email archives and PSTs is a common occurrence and often stems from the early 2000s when storage was a lot more expensive than it is today. Back then, many organizations had no choice but to implement very small mailbox quotas, often less than 100MB. Personal Storage Table (PST) files can be created in Microsoft Outlook and provide a way for users to archive messages and other email data to their local computer. PSTs are usually a direct result of end users getting around small mailbox quotas and since these files are stored locally on the end users’ computers, they are an information management nightmare. In many instances, the challenge of managing PSTs is further complicated by the existence of one or more data archiving solutions, which were probably intended to ease the burden and replace PSTs. As more and more organizations look to the cloud for productivity efficiencies and cost reduction, there has never been a better time to address all this archived data and reduce the costs associated with storing it on-premises. Large mailboxes and auto-expanding archives in Office 365 make it the obvious choice for storing this data. In this two-part series,... --- ### Active Directory PowerShell with ADSI - Published: 2017-03-27 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-powershell-with-adsi/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To PowerShell is all about having options. This article spends some time going over how to manage Active Directory using alternative methods. One of the most popular targets for PowerShell management is Active Directory. While we may be moving to a post-AD world, it will be a while before you no longer need to deal with users, groups, and computers in Active Directory. Certainly, the easiest approach is to use the Active Directory module. You can get this by installing the latest version of Remote Server Administration Tools (RSAT). There may be situations, however, where you do not have access to those tools. There also may be times you want to build a customized toolset that doesn't rely on the module. PowerShell is all about having options. I thought I would spend some time over the next several articles on how to manage Active Directory with alternate methods.     It is probably a safe bet that there is an entirely new generation of IT Pros who have never been exposed to VBScript and other "old school" techniques. Sometimes those old school ways still have value. For Active Directory, one such tool is the ADSI accelerator. ADSI used to be the only way to connect and manage directory services. You should consider it a legacy technique. ADSI communicates with domain controllers over TCP port 389. Keep in mind, this might not work with cloud-based servers. It is very easy to make an ADSI connection to a domain. You won't even need to specify a domain controller. $domainname = "globomantics" #or use $env:userdomain #connect to the $domain $domain = "WinNT://$domainname" One... --- ### Windows 10: Intelligence and Office 365 Integration in Windows Ink - Published: 2017-03-27 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-intelligence-office-365-integration-windows-ink/ - Categories: Windows Client OS - Tags: Office 365, Surface, Windows 10, Windows Ink - Article Type: Overview Learn how Windows Ink enables pen input in useful ways in the Windows 10 Anniversary Update. If it seems like the soon to be completed Windows 10 Creators Update isn’t bringing anything too exciting to the table, there might be something that you’re overlooking. Are you aware of the Anniversary Update that was released last summer? Windows Ink isn't just about pen support for drawing squiggly lines on the screen. It's also a serious attempt to improve the way we interact with devices.     I spend a lot of time editing documents. While I’m happy with my Dell XPS 9350 notebook, I wonder if I made a mistake in not considering a Surface Book Pen. Now that Microsoft has added intelligence and Office 365 integration to Windows Ink, Surface Book brings more to the table. Microsoft is a longstanding advocate of natural input methods. Beyond the traditional mouse and keyboard, it offers plenty of ways to interact with devices. Microsoft has seen some success on the Surface line of hardware, where the pen has become a favorite feature. Windows Ink promises faster document editing, as well as intelligence for performing mathematical calculations. It will also automatically add Cortana reminders. These are all features that are available now with the Anniversary Update. But what particularly struck my attention was the integration with Office 365. Windows Ink allows you to strike through words to delete them, circle text to select it, highlight text with precision, and transform drawings into shapes. The Windows Ink Workspace allows you to write sticky notes that are intelligent... . --- ### Microsoft Azure: Enable Encryption for Data at Rest - Published: 2017-03-24 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-azure-enable-encryption-data-rest/ - Categories: Cloud Computing - Tags: Azure, encryption, Security, storage - Article Type: How To Learn how to enable Storage Service Encryption for storage accounts in Microsoft Azure. In today's Ask the Admin, I'll show you how to enable encryption for blob storage in Microsoft Azure. Microsoft announced the availability of Storage Service Encryption (SSE) in September 2016. This service allows you to add 256-bit AES encryption to new or existing storage accounts. Azure encrypts and decrypts data transparently to users and applications, as well as managing the service keys for you. Microsoft is also working on an option that will allow you to manage the service keys yourself.     Data is encrypted as it is written or rewritten to disk. This means that if you want to encrypt an entire blob, encryption needs to be enabled from the get go. Microsoft claims that the performance hit associated with SSE is inconsequential. Additionally, SSE is only supported for Azure Resource Manager (ARM) storage and blob storage accounts (i. e. , those created using the new management portal or ARM PowerShell cmdlets). SSE is available for blob storage in all regions. SSE for Azure File Service is available in preview. At the time of writing this article, SSE for Azure File Service can only be enabled for newly created ARM storage accounts in East US, East US2, Central US, North Central US, South Central US, West Central US, West US, West US2, East Asia, North Europe, West Europe, Australia East, and Australia Southeast regions. For more details on Azure storage accounts, see Understanding Azure Storage: Managed Disks and Storage Accounts on the Petri IT Knowledgebase. Enable... --- ### SharePoint Podcast #330 -- Number 4 Will Shock You > We created a click-bait style title to go with a click-bait chat. After that, we cover SharePoint, PowerShell, Azure, BGinfo, and Google Docs. Busy show. - Published: 2017-03-24 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-330-number-4-will-shock/ - Categories: Microsoft 365, Office, PowerShell, Security, SharePoint, Uncategorized - Tags: O365, pnp powershell, PowerShell, SharePoint, SharePoint Online - Article Type: News, Opinion Shane Young and Todd Klindt discuss the most popular version of SharePoint, the release of the new SharePoint Online management cmdlets, Azure AD Connect, the SharePoint Framework roadmap, a little Hotmail hacking, their love of BGInfo, and Google Docs. We start the show off by talking about which version of SharePoint is most popular. And because we are quick learners, we use the tried and true method of "#4 Will Shock You" to make the article as click-bait as possible. Then, we make fun of the tactic because that is what we do. I will save you the click here and just tell you the answer: SharePoint 2016 is the most popular. But you will have to watch the show to find out about numbers 1, 2 and 3. See what I did there? ;)     With the click-bait done, we then dive into our usual love of PowerShell and the release of the new SharePoint Online management cmdlets. Speaking of new, we also discuss Azure AD Connect and the SharePoint Framework roadmap. Pretty solid stuff for all of us SharePoint administrators to keep in mind. Sprinkle in some more PowerShell for Azure, a little Hotmail hacking, our love of BGInfo, and then we end with me whining about how terrible Google Docs is to use. Oh, the humanity. https://www. youtube. com/watch? v=BCLBKoczuHs Links from the show: Todd Recorded an Episode of the SQL Data Partners Podcast SharePoint Online is Now the Most Popular Version of SharePoint (with SharePoint 2016 coming in at 4th) New Version of SharePoint Online Management Shell Shane's PnP PowerShell Video Azure AD Connect: Version Release History SharePoint Framework Roadmap Suspicious Hotmail Activity BgInfo Automation Script Azure Command Line 2. 0 Now Generally Available If you enjoy... --- ### Deploying Windows Server 2016 Containers Using Azure and Docker - Published: 2017-03-24 - Modified: 2024-09-04 - URL: https://petri.com/deploying-windows-server-2016-containers-using-azure-docker/ - Categories: Windows Server - Tags: Azure, DevOps, Docker, Windows Containers, Windows Server 2016 - Article Type: How To Learn how to get started quickly with Windows Containers and Docker with a little bit of help from Microsoft Azure. In today's Ask the Admin, I'll show you how to work with containers in Windows Server 2016. More specifically, I will show you how to use an image from the Azure gallery that has the Windows Containers feature. It also has a ready-to-use Server Core along with Nano Server Docker images already installed.     Docker is a system for managing containers. This technology was borrowed from Unix-based operating systems and is now included in Windows Server 2016 in the form of Windows Containers. For more information on Docker and Windows Containers, see What is Docker? and Are Docker Containers Better than VMs? on the Petri IT Knowledgebase. The instructions in the article show you how to work with Windows Containers and Docker in an Azure Windows Server 2016 image. It has also been pre-configured to get you started quickly. If you’d like to configure Windows Containers and Docker engine yourself in Windows Server, see First Steps: Docker and Containers in Windows Server 2016 on Petri. Provision Windows Server 2016 with Containers in Azure Before continuing, you’ll need an Azure account. If you don’t already have one, sign up for a free 30-day trial here. Log in to the Azure management portal here. In the list of options on the far left, click Virtual Machines. In the Compute panel, type windows containers into the search field at the top. Select Windows Server 2016 Datacenter - with Containers from the results. On the Windows Server 2016 Datacenter - with... --- ### What You Need to Know About Data Replication - Published: 2017-03-24 - Modified: 2024-09-04 - URL: https://petri.com/need-know-data-replication/ - Categories: Backup & Storage - Tags: Disaster Recovery - Article Type: Overview Although the basics of replication are fairly straightforward, there are several factors that can influence the efficiency and effectiveness of the replication process.   When you are creating a highly available infrastructure for your virtual machines, replication is one of the most powerful tools that you can use to protect your virtual infrastructure. Replication enables you to keep one or more copies of your virtual machines (VMs) on secondary servers. Those servers can either be on-premises, in a geographically separate location, or even in the cloud. Replication provides very good recovery time objective (RTO) and recovery point objective (RPO) values because it enables you to have one or more copies of your VMs in a ready-to-start state. Fast RTO times are one of the main reasons many businesses use replication to protect their tier 1 mission-critical applications.     Replicas are typically created by using a snapshot or backup of an existing VM. The replication initialization process makes a copy of the VM running on the source host and then uses that copy to create a full replica of the VM on the target host. The replica is usually stored in its native virtualization format. Then, as the VM continues to be used on the source host, the changed data blocks in the source VM are replicated to the target VM replica. Although the basics of replication are fairly straightforward, there are several factors that can influence the efficiency and effectiveness of the replication process. Replication Frequency Replication is typically set up to take place at regular intervals. The frequency at which the replication process runs determines the RPO (i. e. , the... --- ### Leveraging OneNote: Using Tables in Your Notes > Too often notes are long walls of uninterrupted text. Break up the text by using tables to arrange information in a more coherent way to communicate better. - Published: 2017-03-23 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-using-tables-notes/ - Categories: Microsoft 365, Office - Tags: Leveraging OneNote, OneNote - Article Type: How To OneNote has some very robust tools for creating, editing, and manipulating tables as well as organizing notes. Organizing content within a OneNote page can be done in so many ways. Give clarity and structure to your notes by using tables and make your information instantly understandable. The way OneNote handles tables is unique but flexible for most use cases. If the simple table tool cannot do what you need, then embedding Excel into a page will surely be powerful enough.       Simple Tables Within OneNote, the tab key is the quickest way to start a table. When at the end of a line, just press the tab key and the table will start. Everything to the left of the cursor goes into the first cell and the cursor goes to the second cell. When there is nothing on a line, the tab key will add an indention just like it does in most text editors. These simple tables behave more like the tables you have used in Word, not Excel. They are used for arranging and organizing information; not for calculations. When the cursor is in a table, the Layout tab is added to the ribbon. From the Layout tab, you can quickly and easily select, edit, and format the content. Cells can be shaded to give definition and make information easier to find. If you want the grid lines of your table to be hidden, simply click the “Hide Borders” button under the format group in the layout tab. When working in teams, using clear consistent table formatting and layouts can go... --- ### Converting Azure VM Disks to Managed Disks > This post shares a simple example of how to convert an Azure virtual machine from a storage account to using Managed Disks. - Published: 2017-03-23 - Modified: 2024-09-04 - URL: https://petri.com/converting-azure-vm-disks-managed-disks/ - Categories: Cloud Computing - Tags: Azure, Managed Disks, storage, virtual machines - Article Type: How To I will show you how to convert a virtual machine, not in an availability set, but with virtual hard disks in a storage account to a virtual machine using Managed Disks. In this post, I will show you how to convert a virtual machine, not in an availability set, but with virtual hard disks in a storage account (without encryption) to a virtual machine using Managed Disks.     The Virtual Machine There is nothing unusual about the Azure Resource Manager virtual machine that I will convert. It has an OS disk, a temp drive, and some data disks. Keep in mind that the Managed Disk is ARM only. The Unmanaged Disks of the Azure Virtual Machine   The OS disk and the data disks are stored in a storage account. These are the disks that will be converted. The temp drive is stored on the Hyper-V host in Azure, not in a storage account, and is not subject to conversion. The Unmanaged Disks in the Storage Account Container Preparing to Convert We will be using PowerShell to do the conversion. Keep in mind, the necessary cmdlet is only available in the latest version of the PowerShell modules. Make sure you update the Azure PowerShell modules on your PC before you proceed. You will need to reboot if this is the first time you have installed the modules. We will be using a cmdlet called ConvertTo-AzureRmVMManagedDisk to do the conversion. If this cmdlet is not available on your PC, then try updating your ARM Compute module with the below command in an... --- ### Office 365 Adoption Content Pack for Power BI Coming Soon > Microsoft's new Office 365 Adoption content pack for Power BI makes new information and graphs available to tenant administrators - Published: 2017-03-23 - Modified: 2024-11-19 - URL: https://petri.com/office-365-powerbi-content-pack/ - Categories: Microsoft 365, Office - Tags: Content Pack, Exchange Online, Office 365, OneDrive for Business, Power BI, Reports, SharePoint Online, Skype for Business, Yammer - Article Type: News After an extensive trial, Microsoft is preparing to release the Office 365 Adoption Content Pack to all enterprise tenants. Gaining insight into how people use the Office 365 applications will help tenants maximize their investment in the cloud. However, the content pack is not a silver bullet and won’t make your organization any more effective than it is today. Update May 22: Microsoft has put the content pack into public preview. The big news is that this update allows for a daily data refresh. See this documentation to implement the content pack for your tenant. Power BI Casts a Light Onto Office 365 At the September 2016 Ignite conference, Microsoft began talking about a Power BI content pack designed to help Office 365 tenants gain insight into how engaged their users are with the various applications in the suite. You can view the Ignite session discussing the content pack as well as the blog announcement online.     Now, after several months of preview, the Office 365 Adoption Content Pack is almost ready for launch. A content pack is a collection of pre-packaged graphs and charts that can be loaded into Power BI, so this pack contains lots of graphs based on Office 365 data that collectively provide a dashboard for a tenant. The dashboard offers four overviews: Adoption: Tracks the usage of Office 365 and basic workloads like Exchange and SharePoint. Communication: Tracks how people use email, Skype (meetings), and Yammer to communicate. Collaboration: Tracks how people use SharePoint and OneDrive for Business. Activation: Tracks the activation of Office 365 ProPlus, Project, and Visio licenses. The content pack works with the free version of Power BI. The content pack will be available free of charge to all Office 365 enterprise tenants. Product Usage The content pack offers several useful overviews of usage for Exchange, OneDrive for... --- ### Microsoft Shares Interesting Secure Azure Network Design > Microsoft has shared very interesting design and JSON templates for a secure n-tier application DMZ network architecture in Azure. - Published: 2017-03-22 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-shares-interesting-secure-azure-network-design/ - Categories: Microsoft Azure - Tags: Application Gateway, Azure, DMZ, JSON, Load Balancer, N-Tier, Network Security Group, networking, Security, Template, Web - Article Type: Overview Microsoft recently shared a detailed design for a secure network deployment in Azure, based on the United Kingdom’s cloud security principles. The focus of Microsoft’s article was on the UK, but we can use this design as a basis for other deployments. Microsoft recently shared a detailed design for a secure network (or DMZ) deployment in Azure, based on the United Kingdom’s cloud security principles. The focus of Microsoft’s article was on the UK, but we can use this design as a basis for other deployments.     UK Cloud Security Principles The set of guidelines that steered the design that Microsoft has shared is from the UK government, and these principles are supposed to help potential cloud customers find and deploy a secure service in the cloud. The secure network design that Microsoft created is intended to meet the requirements of the Cloud Security Principles, but when you look at what is in the design, you have to admit that anyone wanting a secure network in Azure should consider this design, no matter what country they are in. Even better, Microsoft has shared the JSON templates for deploying this design in your own Azure subscription! The Microsoft Azure network design for UK Cloud Security Principles Understanding the Design The design is quite comprehensive, and brings together many elements that have been shared by Microsoft in many disparate documents; this is why I like this “UK” network design. Let’s start with management; the concept of a “jump box” is being used for remote management. A virtual machine is deployed into a separate management virtual network (VNet). The management VNET is peered with the operational VNet and this is where the service runs. Remote Desktop does not have... --- ### Azure Autoscaling with VMSS and Managed Disks, Part 2: Deployment - Published: 2017-03-22 - Modified: 2024-11-19 - URL: https://petri.com/azure-autoscaling-vmss-managed-disks-part-2-deployment/ - Categories: Cloud Computing - Tags: Autoscaling, Azure, cloud computing, virtual machine scale sets - Article Type: How To Russell Smith shows you how to deploy VMs in a Virtual Machine Scale Set with autoscaling enabled and a load balancer on the front end. In part two of this series on Azure Autoscale, I’m going to show you how to autoscale VMs using Virtual Machine Scale Sets (VMSS) and Managed Disks behind a load balancer.     In part one of this series, I explained how VMSS and Managed Disks make it easier to deploy VMs with Autoscale. If you missed part one, you can read it here. In today’s Ask the Admin, let’s get straight down to business and deploy our first VMSS in Azure. In this demo, I’m going to use one of Microsoft’s Azure Resource Manager (ARM) quickstart templates: 201-vmss-windows-autoscale. It is possible to deploy a VMSS, with or without Autoscale enabled, via the Azure management portal, but I’d need to manually configure a load balancer. Using a load balancer isn’t compulsory, but it’s the easiest way to present the VMs in the VM Scale Set as a single compute resource on one public IP address. The template allows you to choose from Windows Server 2012 R2 Datacenter, 2012 Datacenter, and 2008 R2 Service Pack 1. The VM size can be specified manually, but by default is Standard_A1. Remember that not all VM sizes support load balancing. The following Autoscale rules for the VM Scale Set are hard coded into the template: Sample for CPU (ProcessorPercentProcessorTime) in each VM every 1 minute If the Percent Processor Time is greater than 50% for 5 Minutes, then the scale out action (add more VM instances, one at a time) is triggered... --- ### Driving Adoption for Office 365, Part 2 - Published: 2017-03-22 - Modified: 2024-11-19 - URL: https://petri.com/driving-adoption-office-365-part-2/ - Categories: Microsoft 365 - Tags: Adoption, Office 365 - Article Type: How To Office 365 is an incredibly powerful Cloud platform build on four strong pillars: collaboration, mobile, intelligent and trust. Although these are very strong characteristics, instant adoption isn't guaranteed. Learn how to drive adoption for Office 365 in this new series of articles on Petri.com. Hopefully, you read the first part in this series and gained insight why adoption is so important for the success of Office 365 within your organization. We are now moving forward with our digital transformation roadmap. This article describes how to set vision and goals as well as define business scenarios.     Vision and Goals You need to sit down and really think through why you are using, or are going to use, Office 365. What do you want to achieve as an organization with Office 365? Write this down in one strong statement. For example: “We want our employees to work anywhere, anytime, and on any device with up-to-date and relevant content. " The above statement comes from one of our customers. Why is this important? In the previous article, I mentioned you must answer the following question from the business: “What’s in it for me? ” You are going to use the vision statement in your communication tools toward the business. The statement is going to answer their question. You can also apply goals to emphasize the vision. For example: Is a single-entry point for information and news Showcases tools and communication channels Facilitates information sharing Is a depository of information on key topics Builds bridges between the company's Intranet and local Intranets Again, the goals should support your vision statement and answer the question from the business. Business Scenarios Don’t use technology just because you can. Remember, you need to prove the benefits for the business... . --- ### Extend the Native Capabilities of DSC with the Script Resource - Published: 2017-03-21 - Modified: 2024-11-19 - URL: https://petri.com/extend-native-capabilities-dsc-script-resource/ - Categories: PowerShell - Tags: Automation, Desired State Configuration, PowerShell, Windows Server - Article Type: How To Many server configuration settings can be set using native Desired State Configuration (DSC) resources. Learn how to do more with DSC using the Script resource and your PowerShell skills. Desired State Configuration (DSC) allows server administrators to harness the power of PowerShell to manage the configuration of servers. It's no longer necessary to manually configure a server once you are familiar with DSC for configuration management. There are many DSC resources at your disposal, and determining which resources to use for your configurations requires some up-front planning. At times, though, you may find settings that can’t be configured using traditional built-in resources, which then becomes a problem that requires some PowerShell coding to solve -- using a script resource.     Comparing Script Resource vs. Custom Resources The Script resource is a great stepping stone for quickly experimenting with the capabilities of DSC. If it’s possible to configure an item with a PowerShell script, then configuring the item with a script resource is also possible. However, the script resource isn't the best solution for a production environment since it can quickly become very complex to debug and maintain. Luckily, the transition from a script resource to a custom resource doesn’t require too much extra effort once you have the script resource code written. Defining the Script Resource The example focuses on installing Windows Server Backup and configuring a system state backup. While installing the Windows-Server-Backup feature is easy enough to do using the WindowsFeature resource, no DSC resource exists to configure the backup. Because no DSC resource exists, I’ll create a script resource. First, the script resource contains 3 properties -- testScript, setScript, and getScript -- at a minimum. In addition, the script resource also includes the ability to... --- ### Microsoft Finalizes Creators Update, Version for China’s Government - Published: 2017-03-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-finalizes-creators-update-version-chinas-government/ - Categories: Windows 10 - Tags: China, Creators Update, News, Windows, Windows 10 - Article Type: News Microsoft has built a version of Windows 10 for the Chinese government that does not contain 'backdoors'; the company is also in the final stages of approving the Creators update.   Microsoft has always faced significant challenges in China, Windows XP was pirated so much that Steve Ballmer said that nine out of ten copies of the OS were pirated. With the release of Windows 10, Microsoft is hoping to tap into that countries vast corporate economy and finally be able sell Windows without fear of piracy but for government use, the company had to go down another path. Facing a crackdown on using software from other countries, China demanded that Microsoft build a version of Windows 10 without the ‘backdoors’ for government use. According to the WSJ, that iteration is now complete and seeing as the Creators update is also in the final stages of completion, the two products were likely on a similar development path. This week, Microsoft shipped what might be the last version of Redstone 2 (Creators Update) to Insiders as the company prepares to sign off of a build of the OS. It’s possible they may ship another build to Insiders but this is the final week of preparation before the company starts the process of delivering the Creators updates to the millions of Windows 10 users around the globe. Microsoft is not saying specifically what they changed in Windows 10 for the Chinese government but it likely won’t take too long for security experts to get their hands on this iteration to determine what is different. If the changes prove to be significant in appeasing those who are worried about data collection, expect... --- ### Microsoft’s Flawed Plan to Auto-Generate Office 365 Groups for Managers > Microsoft plans to auto-generate Office 365 Groups for managers with between 2 and 20 direct reports starting April 13, 2017. The plan has many flaws. - Published: 2017-03-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-auto-generate-office-365-groups/ - Categories: Microsoft 365, Office - Tags: Auto-created, Azure Active Directory, Groups, Office 365, Office 365 Groups - Article Type: News Microsoft plans to auto-generate Office 365 Groups for managers to enable them to collaborate better with employees. Sounds good, until you realize that the reporting relationships stored in Azure Active Directory drive the process. And we all know how reliable that information really is. Update (March 21): To be fair to Microsoft, they listened to the feedback and have decided to implement this change at a slower pace. The new status posted to the Office 365 Message Center says: **We listened to your concerns and have decided to limit the rollout of this feature to a smaller set of customers (notified via MC94808) whom we will work with directly to ensure feedback is considered, and the feature has a positive impact. We thank you all for your constructive feedback, we have learned a few lessons and look forward to continued Group innovations in the future. ** Update (May 13):  According to the Office 365 Roadmap, Microsoft has decided to cancel the plan to auto-generate groups for managers (Feature ID 15014) Office 365 Groups for all Managers Microsoft’s March 16 announcement that they will auto-generate Office 365 Groups for managers came as a surprise to many, mostly because we all missed the roadmap item describing Microsoft’s intention. Perhaps it is unsurprising that we missed the news because the announcement did not appear until very recently. RSS feeds like the Office 365 Roadmap Watch did not pick it up. Even the redoubtable Christophe Fiessinger, on point for Microsoft at the recent Ignite Australia event (February 2017), did not mention auto-generated groups in the “What’s Next” part of his "Get the Latest on Office 365 Groups session. Coming Soon: Office 365 Groups for Every Manager The notification in the Office 365 Message Center (MC96611) says that these groups will help... --- ### What Is Azure AD Privileged Identity Management? - Published: 2017-03-20 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-privileged-identity-management/ - Categories: Cloud Computing - Tags: Azure Active Directory, Privileged Access Management, Security - Article Type: Overview Learn how Azure Active Directory Privileged Identity Management can improve tenant security. In today's Ask the Admin, I'll look at Azure Active Directory (AAD) Privileged Identity Management (PIM) and how it can help protect user identities in the cloud.     Privileged Identity Management is available to AAD Premium P2 subscribers and allows organizations to better control what users are doing with privileged accounts. Just like in an on-premises Active Directory (AD) environment, the use of privileged domain accounts, such as Domain Admins and Enterprise Admins, should be kept to a minimum. To help facilitate that, Windows Server 2016 includes a new feature called Just-In-Time (JIT) administration, which allows users to be granted privileges on a temporary, time-limited basis. In AAD, Just-In-Time administration allows administrative privileges to be granted ‘on-demand’ to the directory and online services, such as Office 365 and Intune. Much of what Microsoft added to Windows Server 2016 was the result of features that were first appeared in Azure, so it should come as no surprise that JIT administration is also part of AAD. PIM also allows administrators to See which AAD users are tenant administrators. Run reports detailing changes and access attempts made by administrators. Set up alerts for access to privileged roles. Eligibility and Activation When PIM is enabled for a tenant, users that occasionally need privileged access can be assigned the role of Eligible admin, and only when they complete ‘activation’ are their accounts granted elevated privileges for a set period. Users activate a role by logging in to the AAD management portal and... --- ### The 8 New Features That Have Improved User Experience in SharePoint 2016 - Published: 2017-03-20 - Modified: 2024-09-04 - URL: https://petri.com/the-8-new-features-that-have-improved-user-experience-in-sharepoint-2016/ - Categories: Uncategorized This video explains the benefits of 8 new handy features in SharePoint 2016 that improve the user experience. Ask any user of any application what the main reason is they choose one application over another and they would tell you: user experience. How easy and pleasing it is to use an application determines adoption and retention.     To all SharePoint users, here is the great news -- Microsoft has built SharePoint 2016 with new features that have made it easy and enjoyable to use SharePoint. And, these new functionalities have added even more hybrid capabilities. To stay updated, new help videos on the topics have already been added to VisualSPTraining for Office 365 & SharePoint Online. Here are 8 new features that have made the overall user experience much, much better: Durable Links Higher View Threshold Hybrid App Launcher Hybrid Team Site Follow Mobile Views OneDrive for Business Profile Redirection Unified Hybrid Search The short video below explains the benefits of each of these 8 new handy features in SharePoint 2016.   Find more video tutorials at VisualSP. com.   --- ### The Productivity Wars Are Heating Up; Google and Amazon Take on Microsoft - Published: 2017-03-20 - Modified: 2024-09-04 - URL: https://petri.com/productivity-wars-heating-google-amazon-take-microsoft/ - Categories: Microsoft 365, Office - Tags: Amazon, G Suite, Google, Microsoft, News, Office 365 - Article Type: Opinion Google and Amazon both have their sights set on Office 365 as they hope to tap into the lucrative productivity software services that Microsoft has pioneered. Ask any corporate employee what they use to ‘get work done’ and you will likely hear a smattering of Office applications like Word, Outlook, PowerPoint and Excel. This shouldn’t come as a major surprise as Microsoft’s had done a good job of placing it’s productivity suite into the corporate workflow but on the horizon are several other companies who are slowly building up applications and services to challenge Office on every front. Office 365 has become a ‘hero’ product for Microsoft as the company has successfully pivoted a pay once, run forever (although patches are limited) to a service model that has everyone from consumers to corporations paying at least annually for the software with many paying monthly for seat licensing. While not every company has adopted the Office 365 platform, with more than 85 million corporate users, the cash flow from these operations has made the productivity software a shining example of success about how to adapt software to modern environments. But, if the company is not careful, there are several competitors, namely Google and Amazon, who are building up their arsenals to take on Office with the hope of tapping into the lucrative cash flow from these services. After Google hired Diane Greene to run its enterprise and cloud operations, the company has quietly become a growing force in the cloud segment. Even though Google still lags behind Amazon and Microsoft, you can no longer discount their services as being a pet project or a temporary... --- ### Paul Thurrott's Short Takes: March 17 - Published: 2017-03-17 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-17/ - Categories: Hardware, Mobile, Security, Windows 10, Windows Client OS, Windows Vista - Tags: News - Article Type: Overview Because I've pilkunnussija'd and I can't stop correcting my own writing, this edition of Short Takes looks at a Surface Book 2 report, Windows Vista's EOL, a controversial Windows 10 change, and more. Happy St. Patrick's Day ... from Call of Duty. For some reason. Because I've pilkunnussija'd and I can't stop correcting my own writing, this edition of Short Takes looks at a Surface Book 2 report, Windows Vista's EOL, a controversial Windows 10 change, and more. Report: Surface Book 2 will be a traditional notebook, not a detachable laptop When Microsoft first announced Surface Book, I complained that no one was asking for a big and heavy Surface laptop with a detachable screen. What they were asking for, I said, was a Surface Ultrabook, a thin and light wonder that could go head-to-head with the MacBooks of the world. Well, thanks to very slow sales, Microsoft may have finally gotten the message. According to a report in the occasionally reliable DigiTimes, Surface Book 2, which is due next month, will be a traditional notebook form factor---meaning its not clear if this thing is an Ultrabook or a bigger laptop---instead of a detachable laptop. And even better, the pricing will now be much lower: Surface Book 2 will allegedly start at just $999---about the same as Surface Book with a Type Cover---compared to the $1500 starting price of the original version. I know, I'm thinking the same thing: This sounds too good to be true. "Microsoft is killing Windows Vista: Here’s what you should do" Absolutely nothing, given that only . 78 percent of all active Windows PCs are still running this OS version. But great job... --- ### Understanding Azure Storage: Storage Types and Redundancy - Published: 2017-03-17 - Modified: 2024-09-04 - URL: https://petri.com/understanding-azure-storage-storage-types-redundancy/ - Categories: Cloud Computing - Tags: Azure, cloud computing, storage - Article Type: Overview Learn about the different storage services and redundancy settings in Azure Storage. In part two of this series, I’ll explain the differences between the four storage type options and redundancy settings for Azure storage accounts. In part one of Understanding Azure Storage, I explained the differences between the two Azure storage account options, and how Managed Disks can be used to provision VMs and Virtual Machine Scale Sets (VMSS) more easily. If you missed it, you can read it here: Managed Disks and Storage Accounts.     Storage Types Azure Storage provides four different storage services suited for varying application purposes. Blob Storage If your app needs to store unstructured object data, then blob storage is for you. Sometimes referred to as object storage, blob storage can be any form of text or binary data, such as a document or media file. Unstructured means that data isn’t stored in columns and rows, as is the case in relational databases. Blob storage can be accessed from anywhere using REST APIs, but unlike file storage, can’t be mounted using the SMB protocol. File Storage Intended mainly for legacy apps that you want to ‘lift and shift’ to the cloud, file storage allows files to be accessed from virtual machines using the standard SMB protocol. There’s also a REST API so that on-premises apps can access data stored in shares. Table Storage This is where it gets interesting because while table storage might sound like it’s just an SQL database, instead of storing data in rows and columns, data is stored in... --- ### Using a NAT Virtual Switch with Hyper-V > Learn why you might need a NAT virtual switch, and how to deploy one on Windows 10 Client Hyper-V or Windows Server 2016 (WS2016) Hyper-V. - Published: 2017-03-17 - Modified: 2024-09-04 - URL: https://petri.com/using-nat-virtual-switch-hyper-v/ - Categories: Hyper-V - Tags: Hyper-V, NAT, networking, virtual machines, virtual switch, Virtualization, Windows 10, Windows Server 2016, WS2016 - Article Type: How To Create a Windows 10 or Windows Server 2016 (WS2016) Hyper-V virtual switch that uses network address translation (NAT), enabling virtual machines to be isolated behind a single shared IP address on the host. In this post, I will show how you can create a Windows 10 or Windows Server 2016 (WS2016) Hyper-V virtual switch that uses network address translation (NAT), enabling virtual machines to be isolated behind a single shared IP address on the host. Scaling and Isolation What is NAT? NAT is a system that is used in just about every Internet-connected home and business, which we non-network types rarely think about. The system allows a private network to connect to a larger network using a single IP address; this means that we can have many machines in the private network, consuming just a single address on the larger network and this increases the scalability of the larger network. An added benefit of scaling out the possible number of machines on the network is that NAT effectively isolates the machines in the smaller private network. We can only access machines in the NAT’d network by creating NAT rules, translating an external TCP or UDP port on the external interface into a private TCP or UDP port listening on a NIC or IP address of a machine on the private network. It is these two features that make NAT interesting in WS2016 Hyper-V networking. We can create a NAT virtual switch and use it in a few interesting scenarios, including: Deploying Windows Server or Hyper-V containers on a virtual switch with a private address range, enabling many containers to be hosted on a single IP address that is assigned to the... --- ### Azure Autoscaling with VMSS and Managed Disks, Part 1: Concepts - Published: 2017-03-16 - Modified: 2024-09-04 - URL: https://petri.com/azure-autoscaling-vmss-managed-disks-part-1-concepts/ - Categories: Cloud Computing - Tags: Auto-Scaling, Azure, cloud computing, Virtualization - Article Type: Overview Learn how Virtual Machine Scale Sets and Managed Disks make Azure Autoscale easier to work with. In today’s Ask the Admin, I’ll introduce you to Azure Autoscale, and how Virtual Machines Scale Sets (VMSS) and Managed Disks, two Azure features that reached general availability in February, make using and managing Autoscale easier.     Azure Autoscale is a great solution for automatically scaling out cloud-based compute resources, such as virtual machines (VMs) and websites, when demand increases. It works by utilizing a set of identically configured VMs placed behind a load balancer so that they appear as one entity. A diagnostic agent on each VM collects utilization data, which Microsoft Insights uses to build a picture of the load across the VMs. If utilization goes above a predefined threshold, additional VMs are started to help manage the increased demand. And when demand falls, VMs are stopped. But Autoscale requires organizations to pre-provision enough identical VMs to meet demand at peak level, add them to an availability set, and to think about how VMs are removed and added while retaining high availability using update and fault domains. Virtual Machines Scale Sets Virtual Machines Scale Sets (VMSS) aim to make using Autoscale easier, by allowing you to focus on how many VMs you want in a scale set, and quickly deploy identically configured VMs, while providing full integration with Azure Autoscale and Load Balancer, resulting in a dynamically scalable compute layer. Virtual Machine Scale Sets in Azure Resource Manager (Image Credit: Microsoft) It is possible to automate the deployment of identical VMs... --- ### Configuring VM Networking on a Hyper-V NAT Switch > This post shares 3 ways to configure IPv4 address configurations in virtual machines that are connected to a NAT virtual switch on Hyper-V. - Published: 2017-03-16 - Modified: 2024-11-19 - URL: https://petri.com/configuring-vm-networking-hyper-v-nat-switch/ - Categories: Hyper-V - Tags: Client Hyper-V, DHCP, Hyper-V, NAT, networking, PowerShell, PowerShell Direct, virtual switch, Windows 10, Windows Server 2016, WMI, WS2016 - Article Type: How To Get an explanation of methods you can use to configure the IPv4 address configuration of a Hyper-V virtual machine that is connected to a NAT virtual switch on Windows 10 or Windows Server 2016 (WS2016). In this post, I will explain some methods you can use to configure the IPv4 address configuration of a Hyper-V virtual machine that is connected to a NAT virtual switch on Windows 10 or Windows Server 2016 (WS2016).     The Problem The virtual switch does not have a way to dynamically assign IPv4 configurations to connected virtual machines. So, we need to rely on something else. That something else is usually a DHCP server on the LAN. Virtual machines that are connected to a NAT virtual switch are in an isolated broadcast domain, a different one to the LAN. The NAT switch does not have flat, 2-way routing to the LAN that the host is connected to. The virtual switch is an internal virtual switch that the host NATs to the LAN. This means that, by default, the virtual machines can connect to the LAN, but the LAN cannot connect to the virtual machines. And even if we do create NAT rules, the virtual switch remains a separate broadcast domain from the LAN. The effect of this is that any DHCP services that you have running on the LAN cannot reach the virtual machines on a NAT virtual switch, and we have to manually assign IPv4 address configurations in each guest OS; you could do this by hand, but that’s time-consuming, and I have a few other ways that you can consider. DHCP in the Virtual Switch As I said, the virtual switch is somewhat isolated from... --- ### Why Contacts Are a Problem for the Outlook Apps > The Outlook for iOS and Android apps are popular with users, but they have a problem managing Contacts because of the control of the OS. - Published: 2017-03-16 - Modified: 2024-11-19 - URL: https://petri.com/contacts-problem-outlook-apps/ - Categories: Microsoft 365, Office, Outlook - Tags: ActiveSync, Android, Apple. Google, EAS, Exchange. contacts, iOS, Outlook - Article Type: Opinion My transition to an iPhone is fine and I have mastered Outlook for iOS. That is, except for Contacts, which are a problem because Outlook must obey Apple’s rules. And I won’t even discuss searching. Contacts and Outlook When I wrote about Outlook for iOS during my transition from Windows Phone to iOS, I concentrated on email notifications and downloads. Most of the time I use Outlook to receive and send email with calendar an important second priority.     Contacts come in third, but as I get to know the app better, it is blindingly obvious that the implementation of contacts within Outlook for iOS is not as good as it is in Outlook for Windows 10 Mobile. I understand that the situation is not much better with Outlook for Android. It’s All About the OS The OS dictates what apps can do on a mobile platform. Like any third-party app running on iOS, Outlook must follow the rules set by Apple. A contact manager is a default part of all mobile operating systems and iOS comes with its own Contacts app. The Android address book serves the same purpose. The app allows users to input, edit, and manage contacts that then become available to other parts of the OS, such as dialing numbers or recognizing incoming calls or assigning specific ringtones to different people. The iOS and Android app stores contains multiple third-party apps designed to help people organize contacts in many different ways by creating groups of contacts, detecting and removing duplicate contacts, and so on. But at the end of the day, contacts stay under the control of the OS. Synchronizing Outlook Contacts Outlook for iOS has its own... --- ### Microsoft Brings New Capabilities to HDInsight and DocumentDB - Published: 2017-03-15 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-brings-new-capabilities-hdinsight-documentdb/ - Categories: Microsoft Azure - Tags: DocumentDB, HDInsight, News - Article Type: News Microsoft is announcing new features for HDInsight and DocumentDB this week at the Strata Hadoop + World conference. Microsoft is headed to San Jose this week where they will be announcing new features for HDInsight and DocumentDB at Strata Hadoop + World. Additionally, the company is also announcing a new preview for SQL Server as well. DocumentDB is Microsoft’s fully-managed NoSQL database service that is designed to help developers build highly scalable applications. The service, which offers guaranteed single-digit millisecond low latency at the 99th percentile, is adding support for Apache Spark. This new connector will allow for real-time data science and exploration over all the content stored in DocumentsDB, no matter the region. Microsoft has posted the bits you need to get started with this feature on GitHub, which you can find here. On the HDInsight side of the coin, the company is making Hortonworks Data Platform 2. 6 continuously available to HDInsight before its on-premises release; meaning if you want the latest and greatest from Hortonworks, the cloud is the place to be. The company also announced a new fully managed SLA-backed Apache Spark 2. 1 offering as well as a new partnership with Zeppelin. Finally, SQL Server for both Linux and Windows has a new Community Technology Preview (CTP) that will be available in the coming days. Version 1. 4 brings to both Linux and Windows the ability to resume online index builds b-tree rebuild support that extends flexibility in index maintenance scheduling and recovery. If you want to learn more about what is new in the updated version of SQL Server, you can find that... --- ### Azure AD Connect Health General Availability > Microsoft announced the GA of Azure AD Connect Health to monitor synchronization or ADFS federation between on-premises Active Directory and the cloud. - Published: 2017-03-15 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-connect-health-general-availability/ - Categories: Cloud Computing - Tags: Active Directory, Active Directory Federation Services, AD DS, ADDS, ADFS, Azure Active Directory Connect Health, Azure AD, Azure AD Connect, Azure AD Connect Health - Article Type: Overview Get an overview of Azure AD Connect Health, a feature for monitoring the status of your synchronization or federation between on-premises Active Directory and the cloud-based Azure Active Directory. Microsoft recently announced the general availability of Azure AD Connect Health, a feature for monitoring the status of your synchronization or federation between on-premises Active Directory (AD) and the cloud-based Azure Active Directory (Azure AD).     The Value of a Healthy Azure AD Connection Microsoft describes Azure AD Connect Health as a feature that: ... helps you monitor and gain insights into your on-premises identity infrastructure and the synchronization services Azure AD is used by all of Microsoft’s enterprise cloud services, such as Azure and Office 365, to authenticate and authorize users -- many people are unaware that they are using Azure AD’s free version when they deploy Office 365. We can synchronize identity and password hashes from the cloud to Azure AD to get single sign-on with Microsoft’s cloud services and with at least 2,800 third-party cloud services, too, including Microsoft competitors such as SAP, Google, and AWS. The means for enabling this are: Active Directory Federated Services (ADFS): A beast of a deployment for large enterprises. Azure AD connects to your domain/forest via ADFS to authenticate/authorize users. Azure AD Connect: A simple to deploy and free solution that is quite scalable. This solution synchronizes usernames and password hashes to the cloud. With single sign-on via Azure AD deployed, the health of these solutions becomes critical to the business; therefore, Microsoft created Azure AD Connect Health. Azure AD Connect Health This Azure AD synchronization and federation health monitoring solution from Microsoft is a benefit that customers... --- ### Create "Programmer-Style" Class-Based DSC Resources - Published: 2017-03-15 - Modified: 2024-11-19 - URL: https://petri.com/create-programmer-style-class-based-dsc-resources/ - Categories: PowerShell, Uncategorized - Tags: Advanced, Automation, PowerShell, Scripting, Windows Server - Article Type: How To Learn how to create professional-looking class-based DSC resources in just a few easy steps. With Windows Management Framework (WMF) 4. 0, Microsoft introduced a new configuration management platform built on Windows PowerShell called Desired State Configuration (DSC/0. DSC evolved with new features in WMF 5. 0, one of which introduced class-based DSC resources -- a way for programmers familiar with object-oriented programming to use classes to create resources to configure systems. This article will get you started programming your own class-based resources.   Resources are the key building block to writing DSC configurations. As a result, some basic resources, such as files and registry settings, come built into PowerShell and reside in the PSDesiredStateConfiguration module. Beyond those basic items, you’ll need to rely on custom resources for configuring more advanced components or settings. The PowerShell Gallery contains Microsoft- and community-written DSC resources to cover a wide range of advanced configuration scenarios. This should be your first stop for a custom resource, after all, why reinvent the wheel?   However, if you find no custom resource for a configuration task, then it’s on to writing your own. Custom Resources in a Nutshell You can build custom resources using one of two programming styles -- function-based resources and class-based resources. Each has its own benefits and shortcomings, and it’s important to understand the differences between the two to decide which to use for your resources. Function-based DSC resources require a set folder structure and set of files. In order for the resource to work correctly, the files and folders must be named exactly as the Microsoft documentation states. Creating a schema. mof file defines the list of properties... --- ### Controlling Data Movement Using Azure Region Pairs > This post explains where Azure will replicate your data to if you decide to enable replication or turn it on. - Published: 2017-03-15 - Modified: 2024-09-04 - URL: https://petri.com/controlling-data-movement-using-azure-region-pairs/ - Categories: Cloud Computing - Tags: Azure, Compliance, Regulatory Compliance - Article Type: Overview In this post, I will explain how Microsoft replicates data in very predictable ways, assuming that you want that data to be replicated.     Mythology There are a lot of myths out there about Azure, such as Microsoft will replicate my virtual machines to a second region so that if there’s a problem in my region, all of my machines will stay online. Sorry, that’s not true. If you want disaster recovery, you need to implement it yourself. My personal favorite is this oldie: Why would I put my servers in the cloud where everyone can see them? If you don’t understand the basic concepts of WAN, VPN, and firewall rules, then maybe IT isn’t for you! The myth that inspired this post is: Microsoft moved my Azure data from Europe to the USA. Actually, it didn’t. While running Azure training classes, I’ve noticed that newbies to Azure are quite sloppy about picking regions, often selecting the default, so I suspect that’s to blame. How Microsoft Replicates Data In Azure, data is replicated only if: You leave replication enabled by default: As with a site recovery vault where the resiliency is set to GRS instead of LRS by default. You can change this, but only before you start using the vault. You enable replication: You might switch a storage account from LRS to GRS to force replication of the contained data to another region, which by the way, is not a disaster recovery solution for virtual machines... . --- ### Teams: Seeking a More Perfect State of Chatty Conversations > Microsoft Teams are now generally available to all Office 365 business tenants. There is much to like about the new chat-centered team workspace. - Published: 2017-03-14 - Modified: 2024-11-19 - URL: https://petri.com/teams-chat-based-workspace/ - Categories: Microsoft 365, Office - Tags: collaboration, Office 365, OneNote, Outlook, Planner, Slack, Teams, teamwork - Article Type: News The Microsoft Teams application is now generally available. Lots has been done to improve Teams since its preview release and Microsoft has made many good updates. Some edges remain for Microsoft to work on, but Teams is now more than a valid competitor for Slack in the chat-based collaboration market. Improving Teams from Preview Microsoft caused some market disruption when they announced the preview release of Microsoft Teams in November 2016. Five months on, Microsoft has worked hard to fix many of the issues in the preview and to make Teams a better platform for third-party developers. Microsoft has now moved Teams into “General Availability” (GA), meaning that Teams is now a fully-fledged part of Office 365. Teams is available in 19 different languages in the 181 markets where Office 365 is sold.     A Cloud Application Teams is a creature of the cloud, composed of elements drawn from across Office 365 and Azure mixed up with some new code. Like Office 365 Groups, Teams will never appear on-premises.  Client updates have rolled out over the past week, so if you have been using Teams up to now, you should have the latest functionality. The fundamental concepts of Teams have not changed since the preview release. Microsoft positions Teams as a hub for teamwork, a one-stop shop that brings together all the tools necessary to get stuff done, plus a great development platform for ISVs to build upon. In short, Teams is Microsoft’s major weapon to stop Office 365 tenants using tools like Slack. The Most Complete Team Workplace? Twenty years ago, Microsoft launched Outlook 97 as its premier workplace client. Outlook gathers tools (email, calendar, contacts, tasks) together into a single client and has been extremely successful in becoming the tool of choice for many office workers... . --- ### With 50,000 Organizations Onboard, Microsoft Teams Takes Flight - Published: 2017-03-14 - Modified: 2024-09-04 - URL: https://petri.com/with-50000-organizations-onboard-microsoft-teams-takes-flight/ - Categories: Microsoft 365 - Tags: Microsoft Teams, Office 365, Teams - Article Type: News Microsoft Teams has reached general availability and with more than 50,000 organizations using the platform, it is off to a strong start. Several years ago, in August of 2013, Slack made its grand debut. The application was well received in the small business and startup community and quickly grew to find fans in the enterprise segment as well. Today, Microsoft is releasing its take on a modern communication platform that it is calling Teams and to say it has been well received, is an understatement. With more than 50,000 organizations now using the software and 100 new features added since the software was released in beta late last year, Microsoft Teams is now available to more than 85 million Office 365 users. What helps separate Teams from all of Microsoft’s other productivity applications like Skype, Groups, Yammer, and Email is that this tool acts more like a hub for teamwork than a single, task focused application. What I mean is that from inside the app you can chat, video call, collaborate, share content, create threaded conversations around a single task or a channel around a single objective, and a lot more. Sure, this may sound familiar, but it’s the way that Teams integrates with other Office 365 content like OneDrive and allows for third-party plugins out of the box to bring everything you need into one application that makes Teams different than Microsoft’s other products.  It’s possible that you could, if your company fully adopted the platform, no longer need to open email or Skype and work entirely in Teams. While that scenario is unlikely as it’s quite difficult to fully... --- ### Understanding Azure Storage: Managed Disks and Storage Accounts - Published: 2017-03-14 - Modified: 2024-09-04 - URL: https://petri.com/understanding-azure-storage-managed-disks-storage-accounts/ - Categories: Cloud Computing - Tags: Azure, cloud computing, storage - Article Type: Overview Learn about the different types of Azure storage account and Managed Disks. Azure Storage is the foundation on which Azure provides scalable, durable, and highly-available storage for apps, data, and virtual machines (VMs) in the cloud. In this first part of Understanding Azure Storage, I'll explain the difference between general purpose and blob storage accounts, and how Managed Disks can be used to deploy VMs and Virtual Machine Scale Sets (VMSS) faster.     If in the past, access to large-scale compute resources required a significant upfront investment in data center hardware, one of the key benefits of cloud computing, especially for smaller businesses, is that it gives everyone access to massively scalable computing power. Also, pooling resources in the cloud is more efficient because when not in use by one customer, rather than remaining idle, they can be assigned to another. Azure Storage manages how disk size and I/O capacity are assigned to applications by load balancing data based on the traffic generated by an app, so as demand grows, Azure Storage adds disk capacity as required. While primarily intended for cloud apps, Azure Storage can also be used by apps running on local devices and on-premises servers. For high-performance workloads, the Premium Storage tier provides low-latency disk support for Azure-based VMs. Managed Disks If understanding Azure Storage and creating storage accounts seems like too much hard work, then Microsoft has made it easy to create VMs in Azure without needing to worry about configuring a storage account. Using Managed Disks, the process of creating a storage account and... --- ### Driving Adoption for Office 365, Part 1 - Published: 2017-03-14 - Modified: 2024-09-04 - URL: https://petri.com/driving-adoption-office-365-part-1/ - Categories: Microsoft 365 - Tags: Adoption - Article Type: How To Office 365 is an incredibly powerful Cloud platform built on four strong pillars: collaboration, mobile, intelligent, and trust. Although these are very strong characteristics, instant adoption isn't guaranteed. Learn how to drive adoption for Office 365 in this new series. Office 365 is an incredibly powerful Cloud platform built on four strong pillars: Collaboration Mobile Intelligent Trust These four pillars are the building blocks of the digital and modern workplace empowered by Office 365.     Collaboration “What do we want?  To collaborate! When do we want it? Now! ” Settle down, folks. Office 365 is here to help. We are provided with a large set of collaboration tools. For example, Office 365 Groups, Microsoft Teams, Yammer, SharePoint, Planner, and Skype for Business. Every group of people has their own way of working. They pick the tools suitable for their needs. Office 365 provides these tools. Mobile “What do we want? Working anywhere, anytime, and on any device! When do we want it? Now! ” Settle down, folks. Office 365 is here to help. We are provided with an app for almost every tool available in Office 365. Not only for the tools listed under collaboration but also for the Video Portal, Outlook, and Delve. Enabling us to work in different locations, time zones, and whenever we want. Ok, we do need an Internet connection, but we do live in 2017. Intelligent “What do we want? Relevant content and people! When do we want it? Now! ” Settle down, folks. Office 365 is here to help. We live in a world with an overload of information. Making it difficult to find and discover relevant content and people. Office 365 is empowered with the Microsoft Graph. The Graph creates a web of connected... --- ### Azure Stack TP3, Road Map, and Licensing Announced > This post discusses Technical Preview 3 of Azure Stack, the GA roadmap, new features, and how Microsoft will license or bill for their private cloud. - Published: 2017-03-14 - Modified: 2024-09-04 - URL: https://petri.com/azure-stack-tp3-road-map-licensing-announced/ - Categories: Cloud Computing - Tags: Azure, Azure Stack, Private Cloud - Article Type: Overview Aidan Finn shares details on when Microsoft plans to release Azure Stack, some partner news, how it will be licensed, and features in the new Technical Preview 3 (TP3) release. There has been lots of news about Azure Stack recently. This post will share some of that news, including when Microsoft plans to release Azure Stack, some partner news, how it will be licensed, and features in the new Technical Preview 3 (TP3) release.     Technical Preview 3 Microsoft has released the third technical preview of the “proof of concept” build of Azure Stack; The PoC build runs on a single host and is designed to give people an idea of how Azure Stack works without committing to a large hardware investment. The final product will run across a number of Windows Server 2016 servers supplied by a small set of partners, using a very tightly controlled set of hardware. As we have seen in the past with products such as System Center and Windows Server, TP3 of Azure stack includes bug fixes, as well as deployment and compatibility improvements. And, of course, there are new features: Use ADFS for disconnected scenarios Support for Azure Virtual Machine Scale Sets The ability to Syndicate VM images from Azure Marketplace to have a consistent compute environment Support to use Azure D-Series VM sizes Create Azure-consistent templates by including temp disks An isolated administrator portal for added security Improvements to IaaS and PaaS functionality Additional cloud infrastructure and fabric management functionality, such as improved alerting The Near Future of Azure Stack Potential customers want to know when they can start using Azure Stack in production. We have some general dates... --- ### Deploying Managed Disks with New Azure VMs > This post explains the recent changes that allow you to deploy Azure virtual machines with Managed Disks instead of storage account disks. - Published: 2017-03-13 - Modified: 2024-09-04 - URL: https://petri.com/deploying-managed-disks-new-azure-vms/ - Categories: Cloud Computing - Tags: Azure, Managed Disks, storage, virtual machines - Article Type: How To This post will show you how to deploy a new Azure virtual machine using Managed Disks using the Azure Portal. This post will show you how to deploy a new Azure virtual machine using Managed Disks using the Azure Portal. New Virtual Machine Log into the Azure Portal, and click New. Expand Compute and select an operating system such as Windows Server 2016 Datacenter. A blade will appear that describes the image that you have selected; click Create if this is the image that you want to deploy from.     A Create Virtual Machine blade will appear, and a Basics child-blade will automatically open; you will provide some basic information in this blade: Name: The name of the virtual machine, which will also be the computer name of the guest OS. VM Disk Type: Your options are HDD and SSD; this impacts the next blade where the series/specs of virtual machines are filtered based on your storage requirements. User Name: The name of the default administrator account, which cannot be one of the well-known names such as Administrator. Password: This must be between 12 and 123 characters long, and have 3 of the following - 1 lower case character, 1 upper case character, 1 digit, and 1 special character. Subscription: The subscription that you want to deploy the virtual machine into. Resource Group: Either create a new resource group for the new machine or place it into an existing one. Location: The Azure region that you will deploy the new machine into. Click OK when you have entered all of the required information. Creating... --- ### Leveraging OneNote: An Outlook Task-Based Project Dashboard > Stay on top of your projects by building a dashboard then give it extra power with Outlook tasks. Never again will the details get the best of you. - Published: 2017-03-13 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-outlook-task-based-project-dashboard/ - Categories: Microsoft 365, Office, Office 2016, Outlook - Tags: Leveraging OneNote, OneNote, Outlook, Outlook Tasks - Article Type: How To Find out how to set up a task-based project dashboard. Earlier in this OneNote series, I detailed how to build a project dashboard and how to use Outlook Tasks within OneNote. Now I will go through the process of setting up a task-based project dashboard. You can organize your projects however you like, but at the root of keeping them under control is ensuring everything gets done. Depending on the scale of your projects, you might want to consider making an Outlook Group for the project. Most medium or small projects can be done in a single notebook or section group. When working with a team it is important that everyone can easily access the notebook. Otherwise, the project lead ends up doing all the updates, which can become tedious. This means storing the notebook in the cloud and ensuring all team members have access. Build a Dashboard Project dashboard overview The first step to managing a project in OneNote is to build a dashboard. This dashboard can be designed how you choose using the built-in styles or formatting the text manually. You can use small tables to keep the same information organized and consistent across action items. Once you have a style you like, copy and use it again. Your projects might be organized differently, but for my projects, I use the following hierarchy: Project Task Group Task (one per page) Action Items Start with this layout and tweak it to fit your structure. Once you have a plan for how to organize... --- ### SharePoint Podcast Episode #329 -- Well-Known and Irritating to One and All > In this episode Shane and Todd talk about how to move SharePoint Online files with PowerShell, two factor auth, and new features for OneDrive and O365. - Published: 2017-03-13 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-episode-329-well-known-irritating-one/ - Categories: Microsoft 365, PowerShell, Security, SharePoint - Tags: O365, OneDrive for Business, Sha1, SharePoint, SharePoint Online, SharePoint PowerShell - Article Type: News, Opinion Todd Klindt and Shane Young talk about two-factor authentication hitting home in the last week and we remind you all to go turn it on yourself. Then discuss a new PowerShell Video Shane made that shows you how to copy, move, and delete SharePoint Online files using PowerShell and we hit on new features for OneDrive for Business and AD Group management for Office 365. First off, we could make fun of Todd for looking like the weird cat that is on his shirt. Second, we could make fun of the fact Todd couldn't figure out how to center me in the frame. Third, we could make fun of me for writing an intro that has nothing to do with the show. Too many choices, so we will skip all of the jokes and just move on.     In this episode, the first 20 minutes we do that thing where we get off on tangents. We talk about April the Giraffe, the Oscars, some guy named Rob from the UK who thinks Todd needs to learn to speak the Queen's English, and stories about tech with kids schools. Sheesh. You have my permission to skip the first 20 minutes and just start with the good content because it is actually pretty good stuff. Here is a link to when we go all tech nerd. You are welcome. In the nerd portion of the show, we talk about two-factor authentication hitting home for both of us in the last week and we remind you all to go turn it on yourself. Then we go over a new PowerShell Video I made that shows you how to copy, move, and delete SharePoint Online files using PowerShell. Man, I love PowerShell! Then we hit on new features for OneDrive for Business and AD Group management for Office 365. Finally, we close out with a sprinkling of... --- ### The Anatomy of a Privilege Escalation Attack - Published: 2017-03-10 - Modified: 2024-11-19 - URL: https://petri.com/anatomy-privilege-escalation-attack/ - Categories: Security - Tags: Active Directory, Hacking, Least Privilege, Security - Article Type: Overview Learn how an attacker can move laterally across a network to get access to a domain controller. ... or why it’s important to follow security best practices. In this Ask the Admin, I'll explain how an attacker can get local and domain admin privileges. Microsoft has designed modern versions of Windows to be more secure, but security is always a difficult balancing act as impermeable fortresses don’t lend themselves to providing the features and usability we’re accustomed to. For example, single sign-on, by nature, introduces some security compromises that allow it to function. But by following security best practices, the risks can be minimized.     To understand why adhering to security best practices is important, let’s look at the anatomy of a typical privilege escalation attack, where a hacker with no privileges on the network can gain domain administrator rights. I found this example buried in Microsoft’s Advanced Threat Analytics (ATA) Playbook, a document that outlines how you can test that ATA is providing the protection it promises on the tin. And because I think it describes an attack well, I’m going to summarize it below. Who’s Who? Nuck Chorris is a domain admin logged into Admin-PC. Ron works on the help desk and is a member of the Helpdesk group in AD, which in turn is a member of the local Administrators group on every device. Jeff is an employee at the company, who also has local administrator rights on his PC. The ultimate prize is Nuck, because he has domain admin privileges. The Anatomy of a Privilege Escalation... --- ### Using Azure Backup Instant Recovery with Azure VMs - Published: 2017-03-10 - Modified: 2024-09-04 - URL: https://petri.com/using-azure-backup-instant-recovery-azure-vms/ - Categories: Microsoft Azure - Tags: Azure Backup, Azure Virtual Machines, Instant File Recovery, virtual machines - Article Type: How To Learn how to restore one or a few files from an Azure virtual machine backup without restoring the entire virtual machine, thanks to Azure Backup Instant File Recovery, currently in preview. In this post, I’m going to show you how you can restore one or a few files from an Azure virtual machine backup without restoring the entire virtual machine, thanks to Azure Backup Instant File Recovery, currently in preview.     Before Instant File Recovery In the past, if you wanted to restore an individual file from an Azure virtual machine backup, things got very complicated. You could restore the entire virtual machine, but that’s a slow process, especially if you want to get just one or a few files back from the past. And what if you don’t know when the file was last there or last in a healthy state? You might end up having to do a lot of restores just to find when the file was last available and reliable. Instant File Recovery The clues for Instant File Recovery have been in the Azure Portal for a while, but the feature recently arrived for virtual machines. We now have the ability to mount a recovery point, from our on-premises PC, to restore a file from an Azure virtual machine with application consistency. We can browse the file structure as it was when the recovery point was created, find a file or folder, and copy/paste it to wherever we need it. Note: Veeam FastSCP might prove to be a handy tool to copy the file back to the desired virtual machine in Azure from your on-premises PC. Restoring Files You can use the new ability... --- ### Paul Thurrott's Short Takes: March 10 - Published: 2017-03-10 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-10-2/ - Categories: Cloud Computing, Windows Server - Tags: News - Article Type: Opinion Because Project Olympus hasn't yet fallen, this edition of Short Takes looks at a Wikileaks tech leak, Microsoft's ARM server initiative, Google's major new offensive against Microsoft's enterprise businesses, Slack competitors, and more. Project Olympus: Microsoft's amazing technology of the future Because Project Olympus hasn't yet fallen, this edition of Short Takes looks at a Wikileaks tech leak, Microsoft's ARM server initiative, Google's major new offensive against Microsoft's enterprise businesses, Slack competitors, and more. Microsoft says Wikileaks information is out of date When Wikileaks suddenly published a treasure trove of CIA hacking data that explained exactly how the US spy agency breaks into Microsoft, Apple, and Android devices, and various mobile apps, it set off alarm bells everywhere. But over just a few days, the major platform makers all announced that it was much ado about nothing: Most of the vulnerabilities cited had been fixed years ago. Microsoft, true to form, was last. It said this week that the vulnerabilities were "dated" and targeted "older systems" and pledged to continue its analysis, you know, just in case it wants to silently patch Windows 10 in the coming months. Meanwhile, Wikileaks was in full-blown Robin Hood mode, claiming that the leaks were aimed at making the world a better place. "We're going to work with some of these manufacturers to try and get these antidotes out there," altruist and all around great guy Julian Assange said. What's that? He's actually a clown? Ah, right. "Apple, Samsung and Microsoft react to Wikileaks' CIA dump" Yes, I thought I heard a yawn. Microsoft announces ARM server initiative In perhaps its most confusing announcement ever---and yes, I know that's a loaded... --- ### Google’s Jamboard Will Cost $4999 Plus $600 Yearly Maintenance Fee - Published: 2017-03-09 - Modified: 2024-09-04 - URL: https://petri.com/googles-jamboard-will-cost-4999-plus-600-yearly-maintenance-fee/ - Categories: Hardware - Tags: Google, Jamboard, News - Article Type: News Google's Jamboard will arrive in May for $4999 but the company is requiring that you pay an annual maintenance fee if you purchase the device. Late last year, Google announced new productivity hardware designed for the office called Jamboard. The device is a competitor to Cisco’s Sparkboard and the Surface Hub, Google said it will cost $4999 when it arrives later this year. But, there is a catch with the pricing, as Google is requiring a $600 annual fee for management and support for the device. If you do buy the device before September, Google will cut the yearly fee to $300 and will also include a wall mount. The 55in device is Google’s first big hardware play into the enterprise and the company hopes that its product will help those customers using G-Suite make the most of that productivity platform. Of course, you don’t have to be using G-Suite to buy a Jamboard as the product will work with existing mobile devices too. Google’s Jamboard was a surprise when it was announced as the company had not previously shown that it wanted to be in the corporate hardware space. But, with their new investments into Google Cloud and G-Suite, the product does fit into their portfolio as the company is now focused on moving quickly into the corporate atmosphere. The device will become available in May and it includes two styli and one eraser. For companies that are invested heavily in Google’s platform, such as their cloud and G-Suite, the Jamboard makes sense, but if you are using Office 365, a Surface Hub, while more expensive, integrates that experience more effectively into the conference... --- ### AvePoint Introduces Backup for Office 365 Groups (Well, Outlook Groups) > AvePoint is the first ISV to introduce a backup product that can deal with Office 365 Groups. Well, at least they can deal with Outlook Groups. - Published: 2017-03-09 - Modified: 2024-11-19 - URL: https://petri.com/avepoint-backup-office-365-groups/ - Categories: Microsoft 365, Office - Tags: AvePoint, Backup, DocAve, Office 365, Office 365 Groups, Outlook Groups - Article Type: News Backup vendors have been slow to move from an on-premises view of data. Office 365 applications form a software parts bin used to build new apps and backup and restore is more complex. AvePoint now supports backup and restore of Outlook Groups. One step forward… An On-Premises Approach to Data I have often been critical of ISVs who sell backup solutions to Office 365 tenants that are based on an application-centric view of data. Products can backup Exchange Online mailboxes or SharePoint document libraries, but fail when asked to deal with the emerging complexities that exist in cloud-only applications.     It’s understandable that vendors approach backup and restore from an application perspective. This is, after all, how software engineering has created and sold products for years. It is natural to worry about how to protect the contents of a mailbox or a document library because that is how it happens in the on-premises world. But, as I keep on telling people, the cloud is different in many ways. Where products are different to integrate on-premises, they become contributors to a software toolkit in the cloud. Take Exchange 2013 and SharePoint 2013. When these products appeared, Microsoft touted the close working relationship and how this resulted in features such as site mailboxes. Although it is possible to make the two products talk nice to each other inside an on-premises deployment, it a horrible and complex task. The complexity might even be too much for Microsoft, which could be why Office 365 will soon disable the creation of site mailboxes. In an on-premises situation, most organizations are happy to leave applications run in their own space and backup vendors follow that approach. Matters are very different when Microsoft takes care of integration. Features that... --- ### The SharePoint Permissions Struggles in Office 365 Groups - Published: 2017-03-09 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-permissions-struggles-office-365-groups/ - Categories: Microsoft 365, SharePoint - Tags: Modern SharePoint Team Site, Office 365 Groups - Article Type: How To Since the integration of the modern SharePoint Team Site with Office 365 Groups, there has been a call within the community for more permission controls. These controls are finally here. The permission structure within Office 365 Groups has always been very straightforward. On one hand we have the owners and on the other hand the members. The main difference? The owners were able to change minor details of the Group. For example, the name or the privacy status. To be honest, this wasn’t a big issue. We had an inbox for conversations (the rebranded name of email), a calendar, OneNote, and a document library for file storage.     The call for more permission control came when Groups finally integrated with a SharePoint Team Site, which was a huge step forward from simple file storage. We were now able to add new lists, pages, and libraries within a brand-new Team Site empowered by modern experiences. Last but not least, we were also able to invite guests (external users). I remember one of my demos during SharePoint Saturday Oslo last October 2016. The attendees were already pretty shocked about the look and feel and options of the modern SharePoint experiences. Frightened faces started to appear when I had to tell them guests received member permissions, which results in guests being able to create new lists, libraries, and remove all content. Being honest, this doesn’t have to be an issue. You can educate and guide guests in working with SharePoint to prevent awkward situations. There is also something called the recycle bin. That said, I definitely understood the need for more permission control for guests. Recently, Microsoft introduced a new mechanism... --- ### Google Continues To Push Forward In The Enterprise Space - Published: 2017-03-09 - Modified: 2024-11-19 - URL: https://petri.com/google-continues-push-forward-enterprise-space/ - Categories: Google Cloud Platform - Tags: Cloud, Google, News - Article Type: News Google is pushing its cloud agenda forward this week and is overhauling its support structure and offering new incentives. This week, Google is hosting its Google Cloud Next Conference in San Francisco where the company is touting its success with establishing itself as an enterprise cloud player while also pushing forward its agenda of digging deeper into this segment. Google’s VP of Cloud, Diane Greene, took to the stage to make the announcements and to highlight the wins for the company during the past year. Google’s productivity suite, G-Suite has had good success with Greene saying that Verizon will move 115,000 employees to the platform this year and that Colgate-Palmolive currently has 28,000 employees using the service.  This platform competes directly with Microsoft’s well-entrenched Office 365 platform and the fact that large companies are moving to this service gives it credibility. When it comes to Google products, one of the primary concerns from prospective users is support. The company has a long history of abandoning products like Wave, Reader, Buzz and the list goes on and on but the company wants you to know it is committed to the cloud in all aspects. The company is overhauling its support tiers to streamline the process to make it easier to understand. Blair Hanley Frank notes that for an eight-hour response, it will be $100 US per month, one-hour response is $250 per user per month and for 15 minute, 24/7 response time, it is $1500 per user per month. These support services are not company-wide, meaning you can mix and match the support needed for each project. To... --- ### Microsoft Commits to Bringing ARM to the Data Centers - Published: 2017-03-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-commits-bringing-arm-data-centers/ - Categories: Microsoft Azure, Windows Server - Tags: ARM, Microsoft, News, Qualcomm - Article Type: News Microsoft is bringing Windows Server to ARM-powered devices with the help of Qualcomm; this is Microsoft's second big commitment to ARM in less than a year. Microsoft has long signaled that it would like to extend its relationship with ARM, several years ago the company unsuccessfully tried to release a consumer device powered by these chips. Today, at the Open Compute Project Summit in Santa Clara, California, Microsoft is furthering its commitment to these types of chips by saying that it will soon incorporate them into its server designs. The company is pursuing ARM for several reasons; Intel has been the dominant player in this segment for many years and Microsoft would like other options as a way to reduce costs when building out its data centers. Further, ARM-based chips have proven to be more efficient and output less heat, ideal characteristics for a server farm. Microsoft is currently leaning on Qualcomm to help build out these devices and has demonstrated Windows Server running on Qualcomm’s 10nm ARM processors. Even though the company is currently working with Qualcomm, it’s highly probable that they will expand their relationships with companies like NVidia who also make ARM chips to give them additional sourcing options for its servers. With Microsoft releasing a new variant of Windows on Arm later this year targeted at the consumer and now that they are supporting the chipset in the server environment as well, this has a big impact on Intel’s bottom-line. That company has been the leading provider of chips in both server and desktop for many years but with Microsoft moving to support ARM at all levels, it’s possible, in... --- ### Keys to Ensuring Availability in a Hybrid Cloud Environment - Published: 2017-03-08 - Modified: 2024-09-04 - URL: https://petri.com/keys-ensuring-availability-hybrid-cloud-environment/ - Categories: Cloud Computing - Tags: Availability, Data Compression, data recovery, High Availability, hybrid cloud, replication - Article Type: Overview Ensuring the availability of hybrid cloud resources has different challenges than implementing on-premises HADR implementations. Check out the primary factors you should consider when you are modernizing your hybrid cloud availability environment. The cloud has become an important asset for businesses of all sizes, and most organizations have implemented some type of hybrid cloud environment in which the cloud is used for several different IT functions, including development, testing, backup, and business continuity. For many companies, these cloud resources have become an integral part of their infrastructure and they have leveraged the hybrid cloud for the high availability and disaster recovery (HADR) of their on-premises virtualization infrastructure. There are several important advantages to implementing HADR in the cloud. The cloud is an architecture that provides extremely high uptime and its ubiquitous connectivity enables cloud provider resources to be accessed globally. Perhaps more importantly, the cloud also offers a pay-as-you-go model in which you pay only for the cloud resources that you use. This can make the cloud a much lower cost option than a separate physical HADR site.     Ensuring the availability of hybrid cloud resources has different challenges than implementing on-premises HADR implementations. A common mistake that businesses make when they modernize their heterogeneous IT environments to incorporate the cloud is that they often fail to make corresponding enhancements to the protection environment as well. When the corresponding protection modernization efforts are not implemented, virtual machine (VM) availability can be limited and recovery failures can result. Some of the important factors that you should consider when you are modernizing your hybrid cloud availability environment include: Understanding Your SLAs – One of the first things that you need to... --- ### Visual Studio 2017 Is Not Supported on All Versions of Windows 10 - Published: 2017-03-07 - Modified: 2024-09-04 - URL: https://petri.com/visual-studio-2017-not-supported-versions-windows-10/ - Categories: Visual Studio, Windows 10 - Tags: Visual Studio 2017 - Article Type: News If you are planning on installing Visual Studio 2017 on Windows 10, it's important to know which versions are supported and which are not. Today, Microsoft has released Visual Studio 2017 and it arrives with several new features as well as a two-day long webinar highlighting all the updates; you can learn more here. But, not all versions of Windows 10 are supported with this release. Microsoft says that Windows 10 versions 1507 or higher: Home, Professional, Education, and Enterprise are supported but its Long Term Servicing Branch (LTSB) is not supported. Windows 10 version 1507 is the RTM release, the company has not made any announcements about how long it will support older iterations of Windows 10. It shouldn’t be a huge surprise that the LTSB branch of Windows 10 is not being supported as Microsoft is positioning this product for mission critical applications; Microsoft notes that LTSB is for devices like PCs that control medical equipment, point-of-sale systems, and ATMs. For those who are using an older version of Windows, Visual Studio 2017 will run on Windows 7 SP1, Server 2012 R2, Windows 8. 1 (with update 2919355) and Windows Server 2016. Windows 10 LTSB is not designed to be used as a daily driver and as such, should not be your primary development platform. I know that some prefer the LTSB as they see it as a baseline of the OS and they don’t have to deal with regular large updates but it may also be less secure as well since it does not contain the enhancements that were delivered with later builds. You can view the entire list of... --- ### Visual Studio 2017, Now Available for Download - Published: 2017-03-07 - Modified: 2024-09-04 - URL: https://petri.com/visual-studio-2017-now-available-download/ - Categories: Visual Studio - Tags: Visual Studio 2017 - Article Type: News The latest version of Microsoft’s development platform is now available to download. Today, Microsoft is making Visual Studio 2017 generally available for download. If you want to try out the updated development platform, you can find the application, here. For those who have Visual Studio 2015 installed, Microsoft says that you can install 2017 alongside the older application. Additionally, you can install Visual Studio 2017 on top of Visual Studio “15” preview and 2017 RC. Along with releasing the new version of the platform, the company is hosting a two-day online event to celebrate the anniversary of Visual Studio which has been around for twenty years. The event offers interactive technical demos of the new features and will help users get up to speed on all the enhancements of the platform. Visual Studio 97, which was announced on January 28th, 1997, has grown from an IDE to a suit of services that now includes Visual Studio Team Services, Visual Studio Code, and many others. Microsoft positions this suite of tools as the premier environment for developing applications and has done a substantial amount of work to make it cross platform as well as a viable tool for building applications for any operating system. Because Visual Studio can be prohibitive to new coders as the cost to utilize the entire application is quite high, the company has been working the past few years to bring this development platform to all coders with new applications like Visual Studio Code and also reduced pricing for the education markets. --- ### Delve Relaunches with Intelligent Search > Delve is Search for Office 365. In the past, it's been handicapped by poor user behavior. Now Office Graph is used to apply some extra intelligence. - Published: 2017-03-07 - Modified: 2024-11-19 - URL: https://petri.com/delve-relaunches-intelligent-search/ - Categories: Microsoft 365, Office - Tags: Delve, FAST, Office 365, Office Graph, OneDrive for Business, Search Foundation, SharePoint Online - Article Type: Opinion Delve is the mega-search option for Office 365. In the past, Delve has been handicapped because of poor user tagging of documents. Apply some Office Graph intelligence, and now Delve gets better results. Magic! 13 March Update: Microsoft has withdrawn the new Delve search to go through an "extra round of implementation" before they release the new bits generally within Office 365. I will update this post when the new search reappears. A New Delve Microsoft’s recent announcement that Delve now boasts “intelligence-based search” is interesting on many levels. This is the first major overhaul for an important Office 365 application since its introduction in 2014. Microsoft promises better search by leveraging information about user activity from the Office Graph along with a new home for Delve. Let’s see what they have done.     Too Much Data for Delve to Process Proclaiming that search is now intelligent implies that earlier searches were dumb, or at least ill-informed. I am sure that this is not what Microsoft’s marketing team meant, but it is in fact true. Older Delve searches use the content indexes created as users add documents to SharePoint Online and OneDrive for Business sites, together with documents attached to email. The Search Foundation (aka FAST) updates the content indexes. On-premises versions of Exchange and SharePoint use the same technology. Content indexes can only ever be as good as the data they index. Human beings are often unstructured in how they name documents. Titles are inconsistent (or incoherent) and few people bother to update properties and tags to use as search clues. The adage of “rubbish in, rubbish out” applies because the less structured the information, the harder it is to search... . --- ### How Can I Encrypt Generation 1 Hyper-V VMs? > In this post I'll explain the function of Key Storage Drive, a way to enable BitLocker encryption in the guest OS of a WS2016 Hyper-V Generation 1 VM. - Published: 2017-03-06 - Modified: 2024-09-04 - URL: https://petri.com/can-encrypt-generation-1-hyper-v-vms/ - Categories: Hyper-V - Tags: bitlocker, Generation 1, Hyper-V, Key Storage Drive, virtual machine, Windows Server 2016, WS2016 - Article Type: Overview Aidan Finn walks you through how to use a new feature in Windows Server 2016 Hyper-V called Key Storage Drive, which gives you the ability to encrypt your virtual machines’ disks. In this post, I’ll explain a new feature in Windows Server 2016 Hyper-V, called Key Storage Drive. More Security WS2016 Hyper-V is, in my opinion, the most secure hypervisor ever. Microsoft included many features to ensure trust in the host, to protect the host from guests, and to protect guests from rogue administrators. Some of these features included are as follows: Shielded virtual machines: A system where the host management OS and hypervisor are validated by an independent hardware-based infrastructure. This solution also provides layers of insulation between the run-time guest OS and the host, therefore protecting against console access, data transfer, and so on. Virtual TPM (vTPM): Generation 2 virtual machines have support for a vTPM chip. This allows guest OS administrators to enable BitLocker and protect themselves against rogue administrators (copy and mount the VHD/X files). However, all of the above requires that you have deployed Generation 2 virtual machines. This is fine for new systems on modern OSs, but what about all of those legacy systems that are out there or those installations that require guest OSs that do not support UEFI? Key Storage Drive Generation 1 virtual machines do not support vTPM, but Microsoft engineered a solution for these virtual machines. A special file, known as a Key Storage Drive, is attached to the IDE controller of the virtual machine. This file will be used instead of a vTPM to store the BitLocker secrets. The drive is created, prepared in the guest OS, and... --- ### How to Avoid an AWS-Style Outage in Azure > This post will explain how you can make your Azure services disaster and fault tolerant, following the news of how AWS crashed many businesses recently. - Published: 2017-03-06 - Modified: 2024-09-04 - URL: https://petri.com/avoid-aws-style-outage-azure/ - Categories: Microsoft Azure - Tags: Availability Sets, AWS, Azure, Backup, Disaster Recovery, Traffic Manager - Article Type: Overview Amazon's cloud service, AWS, recently had a major outage that affected almost an entire region. With that outage fresh in our memories, I thought I'd write a post on how to prevent services outages in Azure. Amazon's cloud service, AWS, recently had a major outage that affected almost an entire region. With that outage fresh in our memories, I thought I'd write a post on how to prevent services outages in Azure. Note that the focus of this article is Infrastructure-as-a-Service (IaaS).     The AWS Outage Amazon Web Services had a major outage on February 28th that affected thousands of its customers, including some very well-known names, and this likely affected millions of users. I was busy teaching a course on Azure at the time and did not notice the outage myself, but I did read that a large section of the Internet was affected. An after-action report by Amazon stated that the entire outage was the result of a typo by an administrator, who was supposed to remove a few machines (by command line, with obviously no process to prevent such mistakes) but accidentally remove a lot of machines. It would be easy for a pro-Microsoft person to crow about Amazon's failure, but Microsoft has not been immune to operational error, either -- in 2014, a procedural update error brought down Azure's storage system. One of the four cloud myths that I debunk in my aforementioned training course is that you get disaster recovery by default from your cloud vendor (such as Microsoft and Amazon). Everything in the cloud is a utility, and every utility has a price. If you want it, you need to pay for it and deploy it, and this... --- ### What Are Azure Managed Disks? - Published: 2017-03-06 - Modified: 2024-09-04 - URL: https://petri.com/azure-managed-disks/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Managed Disks, storage - Article Type: Overview Learn about how new Managed Disks in Azure make storage management easier. In today's Ask the Admin, I'll look at how Microsoft is making it easier to provision disks in Azure. Azure Storage provides scalable, durable, and highly available storage, and to facilitate this, there are two types of storage account that can be used to provision blob, table, queue, file storage, and virtual machine (VM) hard disks. Until recently, creating a virtual disk in the Azure cloud required working directly with a storage account, but Managed Disks can be created while leaving Azure to create and manage the necessary storage account.     In more complex scenarios, such as using Virtual Machine Scale Sets (VMSS) to create thousands of identical VMs, Managed Disks automate storage account scale management. Managed Disks now allow VMSS to scale up to one thousand VMs in a single set, 10 times more than was possible with unmanaged disks. Managed Disks are Azure Resource Manager (ARM) resources, and as such can be managed using JSON templates. As part of this release, Snapshots and Images are also now ARM resources. For more information on working with ARM templates, see What are Microsoft Azure Resource Groups? and Export Azure Resource Group as a JSON Template on the Petri IT Knowledgebase. But probably the best news is that existing ARM VMs can be converted to Managed Disks with just a reboot. For more information on creating VMs in Azure, see Create a Virtual Machine in the Azure Cloud on Petri. Unmanaged vs. Managed Disks Let’s have a look at... --- ### Diversify Your Cloud - Published: 2017-03-06 - Modified: 2024-09-04 - URL: https://petri.com/diversify-your-cloud/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Microsoft Azure - Tags: AWS, Azure, Backup, Cloud, Outlook replaces aws - Article Type: News Outages are inevitable and while the 'cloud' offers many advantages, it is vulnerable to the same issues as on-premises environments. The cloud is the magical, be-all, end-all, solution to every IT problem that has ever existed or will exist if you believe the marketing. Amazon, Microsoft, Google and everyone else who makes up the cloud segment make big promises about their infrastructure but they still face the same challenges as on-premises environments, you are only as strong as your weakest link. Last week, Amazon had a major outage with AWS that impacted thousands of companies and likely millions of end-users when an employee accidently entered the wrong command to attempt to fix a billing issue. The input took down many servers on accident which created a ripple effect that rendered much of AWS useless; you can read the triage report here. While this outage was significant and a serious problem for Amazon, it can serve as a warning signal for those who are using cloud services for all of their compute, storage, and other IT tasks. By only going with Azure or AWS or Google, you are held hostage to their infrastructure, and even though each service typically offers better up-time than on-premises environments, they are not immune to outages. During the AWS downtime, the status dashboard was running on its own infrastructure which then limited Amazon from being able to update that site to let its users know of the disruption. As with on-premises data centers, we all know that redundancy is key to maintaining a high level of service and that same philosophy should be applied... --- ### Paul Thurrott's Short Takes: March 3 - Published: 2017-03-03 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-3/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Overview Because Windows phone is still dead, this edition of Short Takes examines Microsoft's charitable contributions, a new LinkedIn strategy, security issues, and much more. Good night, and have a pleasant tomorrow. Because Windows phone is still dead, this edition of Short Takes examines Microsoft's charitable contributions, a new LinkedIn strategy, security issues, and much more. Good night, and have a pleasant tomorrow. Microsoft donated $650 million in software, services, and cash to non-profits in 2016 In a strategy I will dub "getting them while they're poor," Microsoft reported this week that it donated more than $650 million in cash, cloud services, and software to nonprofits around the world in 2016. That breaks down to $465 million in cloud services (emphasizing the company's real strategy), plus $142 million raised by Microsoft employees. Joking aside, this is amazing. Even more amazing: Microsoft has now raised $1. 5 billion for non-profits since 1983. "Why Microsoft Office 365 adoption keeps rising" More users? Google security researcher calls out Microsoft for not fixing a major software flaw While this kind of thing will always be controversial, Google may actually have a point. Back in November, security researchers from the search giant privately alerted Microsoft to a serious software flaw and then, according to its policies, waited 90 days to reveal it publicly. Microsoft, given 90 days to fix the problem, not only didn't do so, but elected to skip its monthly Patch Tuesday software fix releases for the first time ever in February. And now Google is calling bull@#t. "I will not make any further comments on exploitability, at least not until the bug is fixed," Google researcher Ivan Fratric writes... . --- ### IBM Patents Email Autoreply and Then Backs Down > The U.S. Patent Office granted IBM a patent on email autoreply. Which is silly, because the patent could never be upheld. - Published: 2017-03-02 - Modified: 2024-11-19 - URL: https://petri.com/ibm-patents-email-autoreply/ - Categories: Exchange Server - Tags: Autoreply, email, exchange, IBM, Outlook, Patent - Article Type: News The U.S. patent office granted IBM a patent in January that seems to cover email auto-reply. The only problem is that auto-replies existed a long time before IBM claimed to have invented them. But it’s all good now. Stupid Patent of the Month I was not the only one baffled and bewildered at the news that the U. S. Patent Office had awarded IBM a patent for “Out-of-office electronic mail messaging system“. Or, put another way, the auto-replies that users love to set on their mailboxes to inform all and sundry that they are unavailable because they are fishing/on holiday/too busy and cannot deal with email.     The issue came to light when the Electronic Frontier Foundation (EFF) nominated the patent as the “stupid patent of the month” and pointed out many reasons why this patent richly deserved the status. The method claimed is obvious and ignores many real-world examples exist prior to the date of application, including IBM’s own documentation about how the out-of-office feature works in Notes from 1998. The Strange World of Software Patents I know a bit about the strange world of software patents and the language beloved of patent lawyers. I ran a patent portfolio when I was at HP and have acted as an expert witness in major trials, including one when Google sued Microsoft in 2012 to allege that Exchange ActiveSync contravened a patent covering pager communications from 1986. Google did not win that case because their claims ran into the obstacle of “prior art”. In other words, the method claimed could be proven to be in use before the “priority date” of the patent. The same problem exists for IBM. Their claim dates from January 13, 2010. For... --- ### Deploy Hyper-V Management from Azure > This post shares step-by-step instructions for deploying Azure Server Management tools to allow cloud-based management of on-premises WS2016 Hyper-V hosts. - Published: 2017-03-02 - Modified: 2024-09-04 - URL: https://petri.com/deploy-hyper-v-management-azure/ - Categories: Hyper-V - Tags: Azure, hybrid cloud, Hyper-V, Server Management Tools, Virtualization, Windows Server 2016, WS2016 - Article Type: How To Find out how to deploy the Azure Server Management Tools solution so that you can manage your on-premises Windows Server 2016 (WS2016) Hyper-V hosts securely from anywhere, and from pre-Windows 10 PCs, Macs, and non-Windows tablets. In this post, I’m going to explain how to deploy the Azure Server Management Tools solution (which is in preview at the time of writing) so that you can manage your on-premises Windows Server 2016 (WS2016) Hyper-V hosts securely from anywhere, and from pre-Windows 10 PCs, Macs, and non-Windows tablets.     The Solution The Server Management Tools solution will provide us with an Azure-hosted web interface for managing Hyper-V hosts that are running on-premises. We need to deploy two items: Gateway: A gateway object in Azure will connect to a small management proxy that we will deploy to an on-premises server. All management traffic will flow through this single installation. Connection: Each host that we want to manage will be configured as a connection in Azure. We will require either a DNS name or an IPv4/IPv6 address and administrative credentials for each host. Overview of Azure Server Management Tools architecture Deploy the First Connection and the Gateway We will start by deploying a new connection; this might seem a bit backward, but this process allows us to create a new gateway. Note that the service was still in preview when this article was written, so: Exact names are likely to change over time. I didn’t find a way to deploy the gateway without a connection from the portal via the Marketplace Log into the Azure Console, click New and search for Server Management Tools. Select Server Management Tools from the... --- ### FastTrack Network Analysis for Office 365 - Published: 2017-03-02 - Modified: 2024-11-19 - URL: https://petri.com/fasttrack-network-analysis-for-office-365/ - Categories: Microsoft 365 - Tags: FastTrack Network Analysis, Office 365 - Article Type: How To FastTrack Network Analysis is a tool provided by Microsoft FastTrack Team that allows tenant administrators to perform a deep analysis of network connectivity to identify any gaps or challenges that could arise when connecting to Office 365 services. FastTrack Network Analysis for Office 365 is a tool provided by Microsoft to check whether an organization is ready to use Office 365 services. The tool analyzes several network parameters (e. g. , upload speed, download speed, RTT) to identify any possible challenges that might arise when connecting to Office 365. All the information generated by the FastTrack is available to the organization to make any necessary changes to accommodate a successful deployment of Office 365.     Using FastTrack Network Analysis FastTrack Network Analysis is web-based and available at http://em1-fasttrack. cloudapp. net/o365nwtest.   When navigating to this site, you will find an unexpected surprise: FastTrack Network Analysis runs as a Java applet, which means you will be only able to use the Internet Explorer or Mozilla FireFox browsers (Microsoft Edge and Google Chrome do not support Java). Once you install the applet and access the FastTrack Network Analysis, you provide the Office 365 tenant name to which you want to connect. The tenant name is provided in the following format: . onmicrosoft. com. Once ready, click OK to start the analysis (Figure 1). Figure 1: FastTrack Network Analysis initial configuration The first check verifies that the ports required to connect to Office 365 are available. For instance, the tool determines if you can connect to the following ports as well as the response time: HTTP / HTTPS (80 / 443), IMAP / POP (993 / 995), etc. As you can see in Figure 2, connectivity is fine since I’m running the tool from my... --- ### Office 365 License Management Made Easy with Azure AD Groups > Microsoft launched a preview feature to allow Office 365 tenants manage their licenses using Azure AD groups. It's a good solution for many tenants. - Published: 2017-03-02 - Modified: 2024-11-19 - URL: https://petri.com/office-365-license-management-azuread-groups/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory Groups, Azure AD, license, Management, Office 365, SKU - Article Type: News Microsoft has introduced a new feature into public preview to allow Office 365 tenants to manage license allocations to users via membership of security or Office 365 Groups. It is not a full-blown license management system by any means, but it will help small to medium companies get more from their Office 365 licenses. Group-based Office 365 License Management On February 22, 2017, Microsoft announced the preview of a new feature to control the assignment of Office 365 licenses using Azure AD Groups. Using groups to control licenses is a good idea because it introduces some automation to simplify and streamline a process that is often tiresome and prone to error when administrator assign licenses to users one at a time.     Third-party products, like 4Ward365, IAmCloud, and Cogmotive highlight their license management capabilities because they reckon that more efficient use of licenses is a good way for tenants to save money. After all, if you buy some licenses from Microsoft, you should use them. If you do not, you end up paying good money monthly for functionality that no one uses. And if you do not want to invest in a third-party product to control Office 365 licenses, you can write your own code. Most DIY license management projects leverage the cmdlets in the Azure Active Directory PowerShell module. You need an account with an Azure AD Basic license (or above) to use the new feature, which Microsoft says they will eventually incorporate into plans like Office 365 E3. If you do not have the necessary license, you can sign up for a free trial of Enterprise Mobility and Security and try your hand at license assignment. How Groups Control Licenses The concept behind using groups to control licenses is simple. You buy a certain number of licenses of a... --- ### Exchange 2007 Hits The End-Of-Life Buffers On April 11 > Exchange 2007 reaches end of lifetime on April 11, 2017. This version brought us PowerShell and log shipping for the first time, so it was an important step - Published: 2017-03-01 - Modified: 2024-11-19 - URL: https://petri.com/exchange-2007-hits-end-life/ - Categories: Exchange Server - Tags: DAG, Exchange 2007, Exchange Online, Native Data Protection, Office 365, PowerShell - Article Type: News Exchange 2007 reaches end of life on April 11. The importance of this version cannot be overstated, especially in terms of its contribution to Exchange Online and Office 365. But it is time to let go and move to a more modern platform. The End of the Line for Exchange 2007 Exchange customers are fond of old software. At least, I assume that this is the case because I meet people who tell me that they still run Exchange 2003 or even Exchange 5. 5. Good as those releases were, they do not hold a candle to Exchange 2007, which reaches formal end of life status on April 11, 2017. End of life does not mean that Exchange 2007, or rather, Exchange 2007 SP3 roll-up update 22, the last version released by Microsoft on December 13, 2016, will stop working. Instead, it means that Microsoft will cease free and paid support, bug fixes, and security updates. In short, you will be on your own. Some organizations are quite happy to run without support. That is the reason why some persist with really ancient software like Exchange 2003. It is true that Exchange 2007 is now very stable. After three service packs and twenty-two rollup updates, there cannot be very many new bugs to find. But that is not the point. Old software is fragile software, especially when viewed in the context of security and the kind of threat that exists today. It is entirely possible that a serious weakness exists within Exchange 2007 that hackers have not yet exploited. If an exploit occurs after April 11, you cannot look for help from Microsoft. It is that simple. The Legacy of Exchange 2007 Microsoft released Exchange 2007 in March 2007 and its legacy... --- ### DSC Configuration Data Layout Tips and Tricks - Published: 2017-02-28 - Modified: 2024-09-04 - URL: https://petri.com/dsc-configuration-data-layout-tips-tricks/ - Categories: PowerShell - Tags: Desired State Configuration, PowerShell, Scripting, tips - Article Type: How To Learn how to make your PowerShell DSC configurations and configuration data easier to read and maintain with these tips and tricks. Change is constant. IT shops have tons of moving parts as new servers are built and old servers are decommissioned. Is your PowerShell DSC configuration management design resilient enough to handle the constant change? This article will show you some tips and tricks for designing your DSC configuration and configuration data to reliably handle the growth in your environment.     Separating Code from Environment You might already know that it’s good practice to separate your configuration code from your configuration data into separate files. But why? Once the configuration code is developed and tested, it shouldn’t change unless there are changes to the server configuration – how a specific role is being built. When the code has gone through its testing cycle, there’s a level of confidence in the quality of the configuration. If you successfully build servers with a config for a specific role, but later have an issue with building a different server, you know to begin by investigating the piece that changed – what is being built – in the environmental data. Separating the how from the what allows you to keep that level of confidence in the configuration. Once that configuration is completely developed – and checked into source control, it should only change when the code (a role’s build process) is changing. Adding a new server should not require you to change your code.   It only requires a change to the parameters being passed to the code. When the configuration is fully... --- ### Why Outlook for iOS Sometimes Downloads Mail Slower Than You Expect > Outlook for iOS synchronizes with Exchange mailboxes differently to the way that Mobile Outlook on Windows 10 Mobile does. - Published: 2017-02-28 - Modified: 2024-11-19 - URL: https://petri.com/outlook-ios-synchronizes-exchange/ - Categories: Exchange Online, Microsoft 365, Office - Tags: ActiveSync, EAS, Exchange Online, iPhone, Notifications, Office 365, Outlook apps, Outlook for iOS, Windows 10 Mobile, Windows phone Changing from one mobile platform to another can be interesting. I went from Windows 10 Mobile to iOS and so far, no major damage is done. Some interesting differences exist in how Outlook for iOS and Outlook mobile synchronize email to devices. I wanted to learn more, so I poked and found out why the differences exist. Time to Move to Outlook for iOS I recently decided to move from Windows Phone to iPhone. After four years of supporting Windows Phone, it was time to give up, mostly due to the lack of apps and Microsoft’s disinclination to invest in the platform. I like the Lumia 950 XL very much, but appreciation for the hardware and how the operating system works is not enough to bridge the functionality gap. At least, it was not for me.     Now I have an iPhone 7 Plus. Because I have used iPhones over the years, returning to Apple was not a wrench. Instead, it was more like taking up the reins of a well-known system again, like riding a bike. Everything seemed to be as it was before, which might reflect the subtle rather than radical nature of the changes Apple has made to iOS recently. Slower Email Arrival (Sometimes) Although it is nice to have access to many more apps than I can get for Windows Phone, the fact still is that I spend a lot of my time working with Outlook. I have used the Outlook for iOS and Android clients in the past but only intermittently and always reverted to Windows Phone. After making the decision to switch, I spent an increasing amount of time working with Outlook for iOS (Figure 1). Figure 1: Where I spend most of my time working with Outlook for iOS (image credit: Tony Redmond)... --- ### Introduction to Azure VM Managed Disks > This post will describe what Managed Disks are, what they offer, and why you would use them with your Azure virtual machines. - Published: 2017-02-27 - Modified: 2024-09-04 - URL: https://petri.com/introduction-azure-vm-managed-disks/ - Categories: Cloud Computing - Tags: Azure, Managed Disks, storage, Storage Accounts, virtual machines - Article Type: Overview Aidan Finn explains the new mechanism that Microsoft has just introduced for providing virtual machine storage in Azure, called Managed Disks. In this post, I will explain the new mechanism that Microsoft has just introduced for providing virtual machine storage in Azure, called Managed Disks.     The Old Solution The legacy method for deploying virtual machines in Azure went as follows: Create a storage account: Similar to a LUN in usage, this is a way to carve out a slice of storage from Azure, and it allows you to place blobs into it. A virtual machine’s virtual hard disk (of the VHD format) is stored here as a blob, and is used as a disk (under the Disk billing rate). Create a virtual machine: A virtual machine is deployed. The OS disk is placed into a storage account. Add data disks: Data disks are the best place to store data (performance, support, and management) in Azure virtual machines. These data disks are also kept in a storage account. This means that there is a two-step process for creating a new virtual hard disk. Using storage accounts also brings in an element of planning. Each standard (HDD-based) virtual hard disk has a supposed (I’ve seen it burst well beyond this) rate limit of 500 IOPS. A single storage account has a rate limit of 20,000 IOPS. This means that a single storage account is capable of supporting 40 standard virtual hard disks at full throttle. If you need to scale out, then you need more than 1 storage account. Each storage account requires a globally unique name; this is... --- ### Using BitLocker with Hyper-V Key Storage Drive > This is a step-by-step set of instructions to enable and configure BitLocker inside of a WS2016 Hyper-V Generation 1 virtual machine with Key Storage Drive. - Published: 2017-02-27 - Modified: 2025-02-12 - URL: https://petri.com/using-bitlocker-hyper-v-key-storage-drive/ - Categories: Hyper-V - Tags: bitlocker, Encyrption, Hyper-V, Key Storage Drive, Security, Virtualization, Windows Server 2016 - Article Type: How To Learn how to enable and configure BitLocker to provide at rest encryption inside of a Generation 1 virtual machine using Key Storage Drive on Windows Server 2016 (WS2016) Hyper-V hosts. In this step-by-step post, I will show you how to enable and configure BitLocker to provide at rest encryption inside of a Generation 1 virtual machine using Key Storage Drive on Windows Server 2016 (WS2016) Hyper-V hosts. Enabling Key Storage Drive The easy part of deploying this solution for Generation 1 virtual machines is to enable Key Storage Drive in the settings of the virtual machine. Adding a Key Storage Drive to a WS2016 Hyper-V Generation 1 virtual machine If you are curious, like I was, you’ll probably look for this new disk. You will not find a virtual floppy or hard disk file in the storage of the virtual machine. However, when you start up the virtual machine, sign in, and start Disk Management, you will find that a new 42MB disk was added. The 42 MB disk in Disk Management Prepare the Disk You can quickly prepare the disk using Disk Management or Diskpart. I prefer to use Disk Management: Initialize the disk with the MBR partition style. Bring the disk online. Create a new simple volume, filling the disk. Format the drive with an available volume letter, such as K or Z. Use NTFS as the file system and clearly label the volume, such as Key Storage Drive. Formatting the key storage drive Local or Group Policy By default, BitLocker requires you... --- ### Using On-Premises Azure Backup Instant File Recovery > This post will show you how to do a restore using the January 2017 (or later) MARS agent for Azure Backup, using Instant File Recovery. - Published: 2017-02-27 - Modified: 2024-09-04 - URL: https://petri.com/using-premises-azure-backup-instant-file-recovery/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Backup, Instant File Recovery, MARS - Article Type: How To Learn to use Instant File Recovery with the MARS agent to restore files from Azure Backup. In this post, I will show you how to use Instant File Recovery with the MARS agent to restore files from Azure Backup.     Before Instant File Recovery The Azure Backup MARS agent had a very traditional file restoration process before the introduction of Instant File Recovery. You selected a time that you want to restore a file from, browsed the backup store using a dialog box in the restore wizard, and then committed to restoring a file or folder. This meant that you had to restore something before seeing if it was what you wanted to restore. Imagine your boss calls up to ask for a file to be restored that someone deleted some time ago ... how far back do you go? Do you go back one day? Two? Thirty? What if the file was corrupted sometime in the past but no one knows when; how far do you go back to restore the file? How many restores have you to do to get the file back and keep your boss from taking their anger out on you? Instant File Recovery Microsoft made restores easier with Instant File Recovery, which you can use with version 2. 0. 9062. 0 or later, with any age of backup you have completed with a recovery services vault. Click Recover Data in the Microsoft Azure Backup console to start the Recover Data Wizard. The first dialog box asks if you want to restore data from the current machine or another machine; select... --- ### Add a Network Interface to an Azure VM - Published: 2017-02-27 - Modified: 2024-09-04 - URL: https://petri.com/add-network-interface-azure-vm/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machine, PowerShell, virtual networking - Article Type: How To In this article, I show you how to add an additional network interface to an Azure VM that's already configured with 2 or more NICs. In today's Ask the Admin, I'll show you how to add a network interface to an Azure virtual machine. In Configure Multiple NICs in an Azure Virtual Machine on the Petri IT Knowledgebase, I showed you how to provision a virtual machine (VM) with two or more network interfaces (NICs) from the get go. But what if you want to add additional NICs at a later stage? That’s what I’m going to show you how to do today.     While it’s possible to create NICs in the Azure management portal, it’s not possible to attach them to VMs. That can only be done using PowerShell. So, for the purposes of this article, it makes sense that we do everything in PowerShell. Not all Azure VM sizes support multiple NICs, so make sure you check the size of your VM before trying to add an additional NIC. For more information on VM sizes, see Microsoft’s website here. Before following the instructions below, you’ll need to have an active Azure subscription. If you don’t already have one, you can sign up for a free trial here. Also, make sure you have the latest version of Microsoft Azure PowerShell installed on your PC. The latest release can be installed using the Web Platform Installer. Additionally, your VM must already have multiple NICs. A VM with a single NIC cannot be converted into a VM with multiple NICs. That is, if your VM already has two NICs, you can add a... --- ### Your First Web Part with ReactJS and the SharePoint Framework - Published: 2017-02-27 - Modified: 2024-11-19 - URL: https://petri.com/first-web-part-reactjs-sharepoint-framework/ - Categories: Microsoft 365, Office, SharePoint, SharePoint 2013, SharePoint 2016, Visual Studio - Tags: ReactJS, SharePoint Framework - Article Type: How To Learn to create a simple client web part using ReactJS and the SharePoint Framework. In a previous article, I introduced the main concepts binding the SharePoint Framework (SPFX) and React JS. In this article, I’m going to begin to dive deeper into ReactJS by building a client web part that welcomes the current user. As with my previous article, I’m going to stay focused on learning the fundamentals of ReactJS while limiting the SPFX details to the essentials. You can get the source code for this article from my GitHub repository.     Getting Started I started my new client web part project using the standard approach outlined in the previous article. This approach utilizes the SPFX generator to create the project files specifically for the ReactJS framework. I named my new client web part HelloUserPart. After the project was generated, I opened it in Visual Studio Code. Although there are many files associated with the project, the place to start is with the file named HelloUserPart. tsx located in the /src/webparts/helloUserPart/components directory. This file is the main component of the project and is written in TypeScript. Normally, you would expect TypeScript files to have a ts extension, but this file has a tsx extension. This extension indicates that the TypeScript file supports the XML syntax known as JSX. JSX is a preprocessor step that adds XML functionality to JavaScript and allows you to write HTML directly into your ReactJS components. If you examine the file created by the SPFX generator, you can see JSX code. This JSX will be modified as I create my custom component. Developing the Component... --- ### SharePoint Podcast Episode #328 -- Hello Kitty Lunchbox > This week contrary to the show title Shane and Todd talk about lots of news around SharePoint Online and OneDrive for Business. Then some PNP PowerShell. - Published: 2017-02-26 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-episode-328-hello-kitty-lunchbox/ - Categories: Microsoft 365, PowerShell, SharePoint - Tags: Office 365 PowerShell, OneDrive for Business, SharePoint, SharePoint Online - Article Type: News, Opinion Shane and Todd talk about the continued rollout of Conditional Access, the expansion of the file limit to 500MB, in place copying, and downloading multiple files to a zip, and patterns and practices (PNP) PowerShell for SharePoint with its updates and how to get it all installed. That picture is just terrible. Moving on. In this episode, you get to witness firsthand Todd embracing the life of being supported by his wife. Somewhere along the way, he tells a story about him going to his kid's school and I think that is where the title comes from. Hard to say. When he drones on about his life I tend to nod off. If you watch and discover any details I should have known, feel free to leave a comment. Until then I will just assume his story was wonderful. Also, while we are talking about kids I give a stellar review of the Lego Batman movie. Very helpful in your SharePoint career.     With all of the shenanigans out of the way, we jump into the meat of the show. Lots to cover this week for SharePoint Online and OneDrive for Business. There is a blog post reminding you about the continued rollout of Conditional Access, the expansion of the file limit to 500MB, in place copying, and downloading multiple files to a zip. All pretty cool stuff and great to see Microsoft continue to make helpful changes to security and usability for the platform. Then, because we are obsessed with PowerShell, we talk about the patterns and practices (PNP) PowerShell for SharePoint with its updates and how to get it all installed. Life changing stuff if I do say so myself. To round things out, we were going to have Mark Christman from... --- ### Monitoring & Troubleshooting Azure JSON Deployments > This step-by-step post will show you how to monitor a current Azure JSON template deployment, and how to troubleshoot faults if they happen. - Published: 2017-02-24 - Modified: 2024-09-04 - URL: https://petri.com/monitoring-troubleshooting-azure-json-deployments/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Explorer, Azure Resource Manager, Diagnose, Fault, JSON, monitoring, Template, troubleshooting, Visual Studio, VS Code - Article Type: How To Find out how you can monitor the deployment of an Azure JSON template using the Azure Portal and debug what went wrong using errors in the Azure Portal and the Azure Resource Explorer. In this article, I will show you how you can monitor the deployment of an Azure JSON template using the Azure Portal and debug what went wrong using errors in the Azure Portal and the Azure Resource Explorer (still in preview at the time of writing this post).     Monitoring a Deployment Azure Resource Manager (ARM) uses the concept of deployments to identify each execution of an Azure JSON template. It is possible to deploy multiple templates within a resource group, so it’s useful to be able to know which is which. After you deploy a template, using whatever method, you can browse to the new or existing resource group to monitor the deployment. Browse to the resource group in the Azure Portal and select Deployments. Each deployment (past and current) is listed there; select the current deployment that you want to monitor and you can track the progress of the deployment. Quite a bit of information is shared by ARM via this interface. Details of the deployment, such as the subscription and resource group, are shared at the top of the blade. The entered parameter values are also shown – it’s a good idea to double-check these values to ensure that you haven’t “fat fingered” something. Each resource appears in Operation Details as it is being created. The creation process is based on the dependencies that are defined within your JSON template. For example, you will require a storage account, virtual network, and NICs before creating... --- ### Doing More with PowerShell Verbose Messages - Published: 2017-02-24 - Modified: 2024-09-04 - URL: https://petri.com/doing-more-with-powershell-verbose-messages/ - Categories: PowerShell - Tags: Intermediate, PowerShell, Verbose messaging - Article Type: How To Here are some ideas on how you might want to start using Write-Verbose. Whenever I teach about PowerShell scripting I always stress the value of using verbose messages in your functions and scripts. Assuming you are using cmdletbinding, and why wouldn't you, you can insert Write-Verbose statements throughout your script. These statements won't do anything unless your command is run with the common -Verbose parameter. However, these statements can be very useful for tracing and troubleshooting. I use these Verbose statements to help me track what my command is doing so that if it fails I have a better idea of where it failed and what it was doing. I don't enjoy debugging and dealing with the interactive debugger and having Write-Verbose statements makes my life easier. Here are some ideas on how you might want to start using Write-Verbose.     First, if you want to try some of these things right from the command prompt, turn on your verbose pipeline. $VerbosePreference = "continue" When you are done testing, set it back to the default. $VerbosePreference = "silentlycontinue" Now you can run Write-Verbose commands to see what they look like. Remember that anything you want to write with Write-Verbose must be a string or at least be able to be treated as a string. Write-Verbose "I am doing something" You may need to use subexpressions as well. One suggestion is to include a timestamp in your verbose message. Write-Verbose " Starting to do something long running" Inserting a timestamp (Image credit: Jeff Hicks) Write-Verbose "$((get-date). TimeOfDay. ToString) Initializing... --- ### Azure Backup Instant File Recovery > Read how Azure Backup Instant File Recovery enables faster restores from hybrid/online and Azure VM backups, and you can test files before restoring. - Published: 2017-02-24 - Modified: 2024-09-04 - URL: https://petri.com/azure-backup-instant-file-recovery/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Backup, Instant File Recovery, MARS, Microsoft Azure Recovery Services, virtual machines - Article Type: Overview This post will explain how and why Microsoft recently changed how to restore individual or a collection of files from a backup, performed using either the MARS (Microsoft Azure Recovery Services) agent or the Azure for IaaS virtual machines solutions. This post will explain how and why Microsoft recently changed how we can restore individual or a collection of files from a backup, performed using either the MARS (Microsoft Azure Recovery Services) agent or the Azure for IaaS virtual machines solutions.     How Restores Were Done The restore process in Azure Backup was very traditional. In the case of an on-premises installation of the MARS agent, you started a recovery, selected a volume, and then browsed a representation of the file system in a wizard with the intention of restoring a file or folder. After you completed the wizard, the restore job was done. When working with Azure virtual machines, the process was very atomic; you could restore a virtual machine or not; there was no method for restoring a file from a virtual machine. Restoring a file was a very slow process: Restore the virtual machine – as another virtual machine, which incurs additional costs/complexity. Log into the virtual machine. Get the file(s)/folders that you desire. Therefore, people often deploy backup agents inside of Azure virtual machines. Azure Backup for IaaS virtual machines can restore the entire virtual machine, but another solution (like the MARS agent) can restore individual files. This solution doubles backup complexity and costs. With both above restore types, there is one glaring problem – is the file/folder the one you want or the version that you want? If you need to restore more files a few hours later, do you need to... --- ### Paul Thurrott's Short Takes: February 24 - Published: 2017-02-24 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-24/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because tech bloggers invented the entire concept of fake news, this edition of Short Takes looks at a bunch of Microsoft news, of course, but also a ton of BS click-bait headlines that make us collectively dumber. Because tech bloggers invented the entire concept of fake news, this edition of Short Takes looks at a bunch of Microsoft news, of course, but also a ton of BS click-bait headlines that make us collectively dumber. Microsoft confirms second Windows 10 update for 2017 I had thought that Microsoft already confirmed this, but as we (and other reported) this week, the software giant explicitly acknowledged its plans to deliver a second major upgrade for Windows 10, after the Creators Update, in 2017. The timing is currently TBD, but like Brad, I expect this to ship by November. And hopefully arrive with an even sillier and off-center name than Creators Update. Cross your fingers! "Microsoft Surface Pro 5: The Three Reasons Why It Could Be Better Than iPad Pro 2" I don't want to make fun of you personally. But I'm going to. Microsoft invests in drones Microsoft Ventures this week announced that it will invest in AirMap, a startup that makes software for managing drone air traffic. Apparently, this software is used in over 80 percent of all drones, and the firm counts Airbus, Qualcomm, Sony, and other companies among its investors. This is Microsoft's first drone-based investment, but I bet we'll see more. Including a silly diversion into something that will no doubt be called Drone . NET Core v1. "Microsoft Surface Phone: The Ultimate Windows Mobile Gadget" Nope. NSA approves Microsoft's Surface devices And, no, it wasn't because of a backdoor. The National Security Agency (NSA)... --- ### SharePoint Podcast Episode #327 -- Daily Grind of the Common Man > In this SharePoint Podcast Shane and Todd talk about Passwords with PowerShell, new web parts for SharePoint Online, O365 security, and treasure hunting. - Published: 2017-02-23 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-podcast-episode-327-daily-grind-common-man/ - Categories: Microsoft 365, PowerBI, PowerShell, Security, SharePoint, Uncategorized - Tags: passwords, Power BI, PowerShell, Security, SharePoint, SharePoint Online - Article Type: News, Opinion Todd and Shane talk about how to use passwords with PowerShell securely, a new SharePoint Online Web Part that is rolling out, new security and risk features in Office 365, how Power BI finally integrates with SharePoint, and Imposter Syndrome. Oh please, please let there be good news that Todd is being fired from the show. Please. That was my prayer. Turns out I only got half of what I wanted. In this episode, we talk about Todd being escorted out of the building since he lost his job. Which is awkward since he was working from home. After all of the crying is over, we make a plan to go treasure hunting. So if we don't show up for next week's show, you know we are in the Rockies looking for gold.     With all of the shenanigans out of the way, we dive into some pretty meaty topics. We cover how to use passwords with PowerShell securely. Lots of fun here that is backed up with a video and an article so that you can learn lots. Then we talk about a new SharePoint Online Web Part that is rolling out, new security and risk features in Office 365, and how Power BI finally integrates with SharePoint. Halleijulia! Then, to make sure we end off topic, we cover Imposter Syndrome. We had also hoped to bring on Gerry Le Canu from Texas to talk about the plight of the mouse squad in a Powershell world. I assume he wanted to cover some things that would upset PETA, Todd thinks he wanted to talk about automation and DevOps. Sadly, we will never know. If you want to find out more, feel free to tweet @glecanu and solve the... --- ### Hello, Petri. Meet Your New Community Magnate - Published: 2017-02-23 - Modified: 2024-09-04 - URL: https://petri.com/hello-petri-meet-your-new-community-magnate/ - Categories: Main - Tags: BWW Media Group, BWWMG - Article Type: Overview Magnate: A person of rank, power, influence, or distinction often in a specified area; that's quite a title to try to live up to. Magnate: A person of rank, power, influence, or distinction often in a specified area. That's quite a title to try to live up to. But that's me, the new "Community Magnate" for Petri. com. Enterprise tech is not as sexy -- to some, anyway -- as consumer tech. But there are people out there who can make enterprise tech understandable, compelling and, dare I say, fun. Unfortunately, many of these people are not (yet) household names or blogging stars, no matter how good they are at explaining how and why the latest developments in cloud, enterprise and mobile management, hybrid computing, security, identity, big data and analytics matter. I'm taking on a new role at Petri. com, effective immediately, where I'll be charged with helping to find more of the best people in the Microsoft tech communities and bring them to your attention. Some of these hidden gems may be Microsoft Most Valuable Professionals and Regional Directors. Some may be Microsoft OEMs, resellers, integrators. Others may be analysts, bloggers and journalists. (While my initial focus will be on the Microsoft realm, I'll be extending this to other leading tech providers in the near future. ) I know some of these folks already. But I'd love your help in finding more. If you see a news or analysis piece, blog post, tweet stream, knowledge base article or any other enterprise tech resource that made you think and/or helped you do your job better, I want to know about it. You can even nominate your... --- ### Mary Jo Foley Joins BWW Media Group As The Chief Community Magnate - Published: 2017-02-23 - Modified: 2023-03-28 - URL: https://petri.com/mary-jo-foley-joins-bww-media-group-chief-community-magnate/ - Categories: Main - Tags: Blue Whale Web Media Group, BWW Media Group, NoAD - Article Type: News Mary Jo Foley is joining BWW Media Group to help us lead a new community of technologists; we will be re-launching the site in the coming months.   About fifteen years ago, I would often find myself reading articles by Paul Thurrott and Mary Jo Foley when hunting for the latest tidbits about the inner-workings of Microsoft. During the early days of my career, both Paul and Mary Jo played a significant role in shaping my style of writing from learning how to look beyond the headline of a PR statement to writing longer, narrative style content. When I joined Blue Whale Web Media Group in late 2015, I began working directly with Paul Thurrott and starting on March 1st, 2017, I’m excited to announce that I will also begin working with Mary Jo Foley as well. Ms. Foley has been covering news on Microsoft and the industry for more than 30 years and will continue to write for publications such as ZDNet as she assumes the new role of Chief Community Magnate for BWW Media Group. Ms. Foley will use her vast knowledge of the Technology community to identify and illuminate the top contributors from the industry in a new community space on ‪Petri. com. In the coming months, BWW Media Group will re-launch the ‪Petri. com website with an improved user experience and stronger relationships with readers and contributors. With this re-launch, the full community experience with Ms. Foley as the leading voice of that community will be realized. Since joining BWW Media Group, I have said many times that I firmly believe that we are on a unique trajectory. From creating a streamlined workflow for our... --- ### IT Is Hard, Takes Grit … and IT’s All About Amazing People - Published: 2017-02-23 - Modified: 2023-03-28 - URL: https://petri.com/it-is-hard-takes-grit-and-its-all-about-amazing-people/ - Categories: Main - Tags: community, Mary Jo Foley - Article Type: News Great work in IT is made possible by real people, with real talent, and with an ever-present grit. And today that’s where the BWW Media Group story intersects with Mary Jo Foley, our new Chief Community Magnate and a dear friend to many in our company and the tech community.   A letter from George A. Coll, CEO and Managing Partner, BWW Media Group I have had the opportunity to work in all types of companies that provided a wide array of products and services. My career has meandered through many roles ranging from my first job as a quality engineer and all the way to the C suite -- having the opportunity to launch a variety of new businesses as an intra- and entrepreneur. Most of my time has been spent in business operations; however, one of the hardest roles I endured was as an executive in IT. As an Industrial Engineer coming out of Texas A&M University, I had no idea what an engineer would really do. And it wasn’t until nearly 10 years out of school that I understood where the IT department even was, and what IT pros really did. At the age of 31, I joined a team at CompUSA that was focused on launching a technology services division. In that moment, I realized that scaling a new business with approximately 100 locations on day one to nearly 250 locations within a couple of years was going to take enabling the business with new capabilities and process scalability. We had to put into place a business platform that enabled this business to achieve explosive growth and profitability. Revenue doubled year over year, and it was only because of an amazing team of people that made that happen. Within 2 years, I was challenged by our... --- ### How Exchange Online Protection Dynamic Delivery Works Inside Office 365 > Microsoft has upgraded Advanced Threat Prootection for EOP to enable dynamic delivery for Safe Attachments. This speeds up delivery of messages to users. - Published: 2017-02-23 - Modified: 2024-11-19 - URL: https://petri.com/atp-dynamic-delivery-works/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Advanced Threat Protection, ATP, Dynamic Delivery, EOP, Exchange Online Protection, Office 365, Safe Attachments - Article Type: Review Microsoft introduced the Safe Attachments feature as part of its Advanced Threat Protection (ATP) offering in 2015. ATP is an option for Exchange Online Protection (EOP). It is included in the Office 365 E5 plan and can be licensed as an add-on for $2/user per month for other Office 365 plans. Now Safe Attachments can handle dynamic delivery and the improvement is noticeable. ATP Plays Safe with Attachments Microsoft introduced the Safe Attachments feature as part of its Advanced Threat Protection (ATP) offering in 2015. ATP is an option for Exchange Online Protection (EOP). It is included in the Office 365 E5 plan and can be licensed as an add-on for $2/user per month for other Office 365 plans.  Now Safe Attachments provides the option to scan inbound attachments dynamically and allow users access to message bodies while the scan proceeds. This feature is called Dynamic Delivery.     The Problem Lurking in Email The idea behind Safe Attachments is simple. We know that attachments are a prime transmission vector for malware. This has been true since the first email-transmitted attacks like the famous “I Love You” virus appeared in 2002. The majority of email messages are safe in that anti-malware engines are able to detect that their content does not include anything that could damage the recipient. But because malware authors constantly alter their attack techniques in an attempt to bypass anti-malware blocks, the danger exists that items might contain something that is dangerous but cannot be detected because the attack vector has never been seen before. This content might belong to a so-called Day Zero attack. Messages and attachments that do not have a known malware signature are deemed unsafe. ATP routes these messages to a special hypervisor environment where a variety of techniques are used to test the content. If everything checks out, ATP releases the item back to... --- ### What Is Antimalware Scan Interface (AMSI) in Windows 10? - Published: 2017-02-22 - Modified: 2024-09-04 - URL: https://petri.com/antimalware-scan-interface-amsi-windows-10/ - Categories: Security - Tags: Antimalware, Security, Windows 10, Windows Server 2016 - Article Type: Overview Learn about the Antimalware Scan Interface in Windows 10 and Windows Server 2016. In today's Ask the Admin, I'll explain how a new set of APIs in Windows 10 and Windows Server 2016 can be used to block malicious activity.     It’s long been recognized that signature-based antivirus protection alone cannot adequately protect devices due to the sheer number of viruses in the wild and the speed at which they mutate. One of the issues of scanning files on disk and comparing them against a known database of threats is that hackers use various techniques to obfuscate the actual code that will run in memory. Let’s through some simple examples of the ways hackers can avoid detection. Antimalware Scan Interface APIs in Windows 10 (Image Credit: Microsoft) Using dynamic languages, such as VBScript and Ruby, much of the work is done at runtime rather than at the compilation stage. Objects can be created, by adding methods and properties, when the code is run; we don’t need to define objects in advance. Applying that knowledge, code can be written to cover up what will execute at runtime, helping to avoid detection. Scripting engines and shells, such as VBScript and PowerShell, are an ideal target because they are built into the operating system and used by system administrators, who hackers often target due to their likely overprivileged access to systems. Avoiding Detection Instead of simply using Write-Host ‘You have been hacked’ to output a message to the console, we can use string concatenation to change the script to... --- ### Microsoft Opens Two New Azure Regions, Kubernetes Reaches General Availability - Published: 2017-02-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-opens-two-new-azure-regions-kubernetes-reaches-general-availability/ - Categories: Google Cloud Platform, Microsoft Azure - Tags: Azure, Kubernetes, Microsoft, News - Article Type: News Microsoft is turning on two new data centers in South Korea and for Kubernetes fans, that service is now generally available on Azure. One of Microsoft’s focuses with Azure has been targeting local demographics where regional law has strict regulations over where and how data is stored. We have seen the company open up a data center in Germany and now the company is turning on two new regions in South Korea. With these two additions, Microsoft now has 38 Azure regions around the globe and the company says that this is more than any of its competitors. But, it’s worth noting that Amazon still has a significant lead in this segment when it comes to market share, although, with this kind of rapid expansion, it’s clear that Microsoft is playing to win and is willing to invest billions in growing its market share. If you ask anyone why they are using Google’s Cloud platform, you have a good chance of hearing them say it's because of Kubernetes. The container platform has a devoted following which has lead some companies to choose Google’s service over Azure and AWS. Microsoft, with it’s new and love-affair with open source software and its embracing of platforms developed by other companies, is not shying away from Kubernetes even though it was developed by Google. The company has announced today that the software is now generally available through Azure Container Service. Further, Microsoft is releasing a preview of Windows Server Containers with Kubernetes. The company says that this preview is a direct response from strong demand from its clients for using Google’s container software with Microsoft’s... --- ### Outlook.com and Exchange Online: Two Services and a Common Infrastructure > Outlook.com and Exchange Online share a common Office 365 infrastructure. The two services are very close. Here's how Microsoft made the change. - Published: 2017-02-21 - Modified: 2024-09-04 - URL: https://petri.com/outlook-com-exchange-online/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Hotmail.com, Office 365, Outlook.com, owa - Article Type: News Microsoft has moved 400 million Outlook.com mailboxes to an Office 365 infrastructure. Outlook.com mailboxes are now powered by Exchange Online and exploit other parts of the infrastructure like EOP. It's a good change from a engineering and economic perspective. The Move to Exchange Online That Vexed Paul Thurrott In 2015, Microsoft began to migrate Outlook. com from the venerable legacy of Hotmail. com to share a common infrastructure with its commercial Office 365 service. In February 2016, Microsoft moved Outlook. com out of preview, saying that their consumer email service was now “powered by Office 365”, with “the benefits of an email service that millions of businesses, governments and schools around the world rely on every day. ” Those benefits are gained because Outlook. com uses the same infrastructure and underpinnings as Exchange Online.     As Petri readers know, Paul Thurrott closely tracked the progress of the Outlook. com project, mostly to complain that Microsoft had not yet moved his mailbox. In September 2016, Paul reported that Microsoft had moved 90 percent of the user base. His mailbox eventually got to new Outlook. com the following month. Hints That Things Were Changing Anyone interesting in Microsoft email technology will have noticed the growing closeness of Outlook. com and Exchange over the last few years. Sure, the Outlook web client is simpler and less feature-rich (or cluttered) than OWA, but it recognizably shares the same roots and “design language”. Even the splash screens shown when the client initializes are identical. But having a suspicion that the two services share common roots is one thing, having evidence is another. One Way Forward When I asked Jon Orton, Microsoft's Director of Marketing for Exchange and Outlook, about the growing closeness between the two services, he explained: “Outlook. com... --- ### Manage On-Premises Hyper-V from Azure > This post will explain how to use Azure instead of RSAT on Windows 10 to manage Windows Server 2016 Hyper-V, a solution too for Windows 7 & Mac users. - Published: 2017-02-20 - Modified: 2024-09-04 - URL: https://petri.com/manage-premises-hyper-v-azure/ - Categories: Virtualization - Tags: Azure, Hyper-V, Nano Server, RSAT, Server Management Tools, Windows 7, Windows Server 2016 - Article Type: Overview Discover how to (remotely and securely) manage your on-premises Hyper- V hosts, including Nano Server, from Azure’s (remote) server management tools on Windows 7, Macs, and even non-Windows tablets. In this article I explain how you how you can (remotely and securely) manage your on-premises Hyper- V hosts, including Nano Server, from Azure’s (remote) server management tools, on Windows 7, Macs, and even non-Windows tablets.     The Problem with Server Management Tools How would you manage servers today? Unfortunately, I expect that most of you will say “I log into the server and ... ”. Although I remain an advocate for a GUI on Windows Server (mainly for troubleshooting reasons), I still prefer working remotely. The best way to manage a server is to use the Remote Server Administration Toolkit (RSAT), a set of tools that you would normally get on a server, but can be installed on your PC. That sounds perfect until you enter the real world. Most enterprises seem to adopt, not necessarily for widespread usage, newer versions of Windows Server faster than they deploy client OSs. This is often because there are some services that require a newer OS. The business might demand the latest CRM application, which requires Windows Server 2016 (WS2016). Some new ERP solutions might take advantage of a performance feature in WS2016. Or maybe you’ve opted to deploy WS2016 Hyper-V because of Nano Server, security, administration, operational, scalability, or management features? While that doesn’t force you to upgrade the guest OSs of your virtual machines, you might have been forced to look at your PCs. To manage Nano Server at all, or any other Windows Server installation type from... --- ### Auditing Improvements in Windows Server 2016 - Published: 2017-02-20 - Modified: 2024-09-04 - URL: https://petri.com/auditing-improvements-windows-server-2016/ - Categories: Windows Server - Tags: Auditing, Security, Windows Server - Article Type: Overview Learn about improvements to security auditing in Windows Server 2016 and Windows 10. In today's Ask the Admin, I'll look at two new audit events in Windows Server 2016 that can help identify malicious activity, as well as other general auditing improvements. Windows 10 included some improvements to auditing and new events. Those changes are naturally now available as part of Windows Server 2016. Let’s start with two new Advanced Audit Policy Configuration subcategories: Audit Group Membership and Audit PNP Activity.     Audit Group Membership in the Logon/Logoff category provides group membership information from users’ logon tokens. For an event to be logged an action must occur, on the device or session where the user is logged in, that enumerates group membership. When the logon is interactive, the event information is recorded on the PC where the user logs in. For network logons, the information is recorded on the device where the accessed resource resides. The Audit Logon setting must also be enabled for Audit Group Membership to work. Audit PNP Activity Event 6416 is new in the Detailed Tracking category and writes an event to the log when the plug and play subsystem detects an external device. Only Success audits are logged. Auditing for PnP activity is particularly useful on servers, where in general, external devices should not be attached without an approved change request. Auditing improvements in Windows Server 2016 and Windows 10 (Image Credit: Russell Smith) What follows explains improvements to audit policies that existed in earlier versions of Windows Server. Kernel Default Audit... --- ### How to Encrypt an Azure Virtual Machine - Published: 2017-02-17 - Modified: 2024-11-19 - URL: https://petri.com/encrypt-azure-virtual-machine/ - Categories: Cloud Computing - Tags: Azure, bitlocker, cloud computing, encryption, Security, Virtualization - Article Type: How To In this article, I'll show you to encrypt an Azure virtual machine. In today's Ask the Admin, I'll show you how to encrypt the OS disk of an Azure virtual machine (VM). Microsoft recommends that you encrypt Azure VMs using its BitLocker technology that’s built into Windows. If you don’t, the Azure Security Center will alert you, and mark the issue as High Severity. For more information on Azure security, see Getting Started with the Azure Security Center on the Petri IT Knowledgebase.     Configure Encryption Prerequisites Before you can encrypt VMs, there are a few prerequisites that need to be met, and Microsoft provides a script that creates the necessary Azure resources to enable VM encryption. A Key Vault is created if you don’t specify an existing Key Vault name. The Key Vault must be in the same region as the VMs to be encrypted. Additionally, an Azure Active Directory (AAD) application is required to write secrets to the Key Vault. Again, if you don’t specify the name of an existing AAD app, one will be created. For more information on Azure Key Vault, see Using Azure Key Vault to Encrypt Data in the Cloud on Petri. Before following the instructions below, make sure you have the latest version of Microsoft Azure PowerShell installed on your PC. You can download the latest release using the Web Platform Installer. You’ll also need a VM already provisioned in Azure. Open Windows PowerShell ISE. Open the prerequisites script here on GitHub. In the browser window, click Raw to the top right... --- ### Paul Thurrott's Short Takes: February 17 - Published: 2017-02-17 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-17/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because Microsoft Ireland is the coolest place in the world to work, this edition of Short Takes looks at a Patch Tuesday mulligan, a Digital Geneva Convention, Azure penetration and growth, and much more. It's the coolest place to work in the world! Because Microsoft Ireland is the coolest place in the world to work, this edition of Short Takes looks at a Patch Tuesday mulligan, a Digital Geneva Convention, Azure penetration and growth, and much more. Skipping a Patch Tuesday with a zero-day out in the wild? Classic Microsoft Microsoft took two unprecedented steps this week when it delayed Patch Tuesday for an indefinite period of time and then later announced it would skip it all together and just restart things next month. That alone would be newsworthy. But with a major zero-day vulnerability out in the wild, Microsoft is really taking things to 11. To be fair, it's possible that Microsoft could simply patch the zero-day flaw "out of band," as it describes such unscheduled drops. But this is very curious timing. And it makes me wonder if the sheer weight of the updating mechanisms that Microsoft now has in place are getting the better of it. "How the Microsoft Surface Studio made me forget my Wacom tablet" Well, you're a millennial. It's not like you have an attention span. Look! A puppy! Microsoft asks for a "Digital Geneva Convention Microsoft president and chief legal officer Brad Smith has started a conversation about the need for what he calls a "Digital Geneva Convention. " In a blog post and speech this week, he has outlined why governments around the world should commit to protecting civilians from electronic... --- ### Understanding Windows 10 Enterprise Licensing - Published: 2017-02-17 - Modified: 2024-09-04 - URL: https://petri.com/understanding-windows-10-enterprise-licensing/ - Categories: Windows Client OS - Tags: Windows 10, Windows 10 Enterprise E3 - Article Type: Overview Discover how Windows 10 Enterprise is licensed. In today's Ask the Admin, I'll explain the different options for licensing Windows 10 Enterprise edition. Windows comes in several editions aimed at different markets and audiences. For instance, Windows 10 Home and Pro are intended for consumers and SMEs, respectively. Home cannot be joined to an Active Directory (AD) domain, while Pro supports AD, but doesn’t have all the bells and whistles of Enterprise Edition, which includes application control (AppLocker) and Credential Guard, amongst other enterprise-class features.     What Features Are Unique to Windows 10 Enterprise? Quite a few features are unique to Windows 10 Enterprise, and some features that were previously available in Pro are now available only in Enterprise. Here’s a complete list of features that require Windows 10 Enterprise: Long Term Servicing Branch Windows To Go AppLocker Group Policy consumer experience settings Application Virtualization (App-V) and User Environment Virtualization (UE-V) Device Guard Credential Guard DirectAccess BranchCache Microsoft is gradually pushing small businesses, which in the past opted to use Pro editions of Windows, to Windows 10 Enterprise by removing features that enable organizations to restrict users’ access to the Windows Store, advertising, and customization features. For an overview of these changes, see Microsoft Cuts More Features From Windows 10 Pro To Push Businesses To Enterprise Edition on the Petri IT Knowledgebase. How to Get Windows 10 Enterprise Enterprise editions of Windows used to be only available through Volume Licensing. Software Assurance (SA), a subscription that included upgrade rights and the Microsoft Desktop Optimization... --- ### Secure Azure AD Using Identity Protection - Published: 2017-02-17 - Modified: 2024-09-04 - URL: https://petri.com/secure-azure-ad-using-identity-protection/ - Categories: Security - Tags: Azure Active Directory, cloud computing, Identity Management, Security - Article Type: Overview Learn how Azure Active Directory Identity Protection can help secure cloud identities. In today's Ask the Admin, I'll provide a brief overview of the anomaly detection features used by Microsoft to keep cloud identities safe and how these features have been made commercially available to enterprises in the form of Azure Active Directory (AAD) Identity Protection.     Microsoft claims that 60 percent of all successful attacks rely on compromised credentials, so extra care needs to be taken to protect user identities in Active Directory (AD), and Microsoft’s cloud-based directory services solution, AAD. Microsoft Advanced Threat Analytics (ATA) is a product for protecting user accounts in on-premises AD, and while I haven’t seen it stated anywhere, it’s likely that many of the features in AAD Identity Protection are provided by ATA behind the scenes. For more information on protecting user identities in on-premise AD using Microsoft ATA, see What Is Microsoft Advanced Threat Analytics? on the Petri IT Knowledgebase. AAD Identity Protection goes beyond simple monitoring and reporting by allowing organizations to set risk-based policies that respond to issues when a specified risk level is reached. For instance, a policy could block access, force a user to reset their password, or stipulate the use of multifactor authentication. AAD configuration issues are also flagged, such as the alerts from AAD Privileged Identity Management and the presence of unmanaged cloud apps. Azure Active Directory Identity Protection (Image Credit: Microsoft) There are six risk event types that AAD Identity Protection detects and each is assigned a risk level: High,... --- ### SharePoint Podcast Episode #326 - Be the Boss of Your MOSS > In this episode, Shane and Todd talk about the best intranets and why SharePoint owns the list. Then online updates and PowerShell. Check it out. - Published: 2017-02-16 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-podcast-episode-326-boss-moss/ - Categories: Microsoft 365, PowerShell, SharePoint - Tags: intranets, Office 365, Office 365 PowerShell, SharePoint, SharePoint Online, Windows Management Framework 5.1 - Article Type: News, Opinion This week, Todd and Shane discuss a top 10 list of intranets that SharePoint dominates, some features and announcements for SharePoint Online, new PowerShell cmdlets for SharePoint Online, and how to make PowerShell easier to use if you are on Windows 7 or 8. In this episode, Todd and I don't do a terrible job of staying on topic. We do start off talking about a big game but transition it into a motivating thought for the day. With that out of the way, we move on to a discussion of a top 10 list of intranets that SharePoint DOMINATES! But you probably already knew that. From on-prem to the cloud, the guys then talk about some features and announcements for SharePoint Online. Some of it is old news but that just serves as a reminder the rate of change in the cloud and confusing at times. It is not you, it is the cloud's fault.     To round out the show, there is talk of new PowerShell cmdlets for SharePoint Online and how to make PowerShell easier to use if you are on Windows 7 or 8. Finally, viewer Blake Olson was scheduled to join us to talk about the "crop report" for his home state of Colorado but we ran out of time. Better luck next time. If you want to talk to Blake about SharePoint or crops, you can find him on Twitter @blakeolson. https://www. youtube. com/watch? v=hGitDeZkWC4 Links from the show: 9 of 10 best intranets use SharePoint What is new in Office 365 administration - Jan 2017 New capabilities in SharePoint Online team sites including integration with Office 365 Groups SharePoint Management Shell has been updated again Video on installing WMF 5. 1 and PSReadLine If you enjoy the show, then you... --- ### Microsoft Gets Excited About Third-Party Extensions for Teams > Microsoft has announced new Bots and deep link capabilities for Teams and that they are enabling Teams for all tenants. - Published: 2017-02-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-excited-about-teams/ - Categories: Microsoft 365, Office - Tags: bots, Developers, Office 365, Teams - Article Type: News Microsoft has intensified its competition with Slack by making the Teams platform more attractive for developers. New Bots and deep link capabilities are now available. Meantime, Microsoft also says that they will enable Teams for all Office 365 business tenants.  All to Play for Between Microsoft Teams and Slack There is no doubt that Microsoft is in a bitter war with Slack to win the hearts and minds of both users and developers. The announcement of Teams in November delivered a cold blast to Slack, especially as Microsoft made Teams available at no-cost to all Office 365 business customers. After all, why would anyone pay more to use a different chat application?     As it turns out, customers do opt for Slack if they find that a third-party developer uses the Slack platform to provide functionality that makes sense to their business. It is therefore unsurprising that Microsoft wants to make it easy for developers to integrate their products with Teams. The Teams Developer Preview launched in November to support third-party integrations. Microsoft has now enhanced the features available to developers in two ways. Bots for All First, developers can now create Bots to do more than have a 1:1 chat with a user. Built with the Bot Framework (which curiously lists “Text/SMS, Skype, Slack, Facebook Messenger, and other popular services” but not Teams as target platforms), the sample T-Bot included in Teams answers questions about Teams – like “how does a channel work? ” Essentially, you type a question and T-Bot searches help files to locate potential answers. It is functional rather than exciting. Now, developers can move away from 1:1 chats and create bots that users can invoke in any channel (conversations or chats) to create... --- ### Microsoft Delays February Patch Tuesday To March - Published: 2017-02-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delays-february-patch-tuesday-march/ - Categories: Windows Client OS - Tags: News, Patch Tuesday, Windows - Article Type: News Microsoft has chosen to delay the February Patch Tuesday release until March due to an issue found late in the testing cycle. Once a month, on the second Tuesday, Microsoft releases updates for Windows that is commonly referred to as Patch Tuesday. Seeing as this date has come and gone and no patch was released, it may have caused a bit of confusion with IT Pros. Microsoft has stated that they are holding back this release because they found an issue during the last stage of validation that would have negatively impacted customers. The company will release this patch next month, likely on the second Tuesday. The company’s statement on the delay is below and can also be found here: Our top priority is to provide the best possible experience for customers in maintaining and protecting their systems. This month, we discovered a last minute issue that could impact some customers and was not resolved in time for our planned updates today. After considering all options, we made the decision to delay this month’s updates. We apologize for any inconvenience caused by this change to the existing plan. Considering that Microsoft has released several bad patches in recent memory, the fact that they are taking the cautious route with this release is a good sign. While we would all prefer to have our machines running the latest updates, if your device is crippled by a patch, being protected against a potential threat doesn’t matter if your box won’t operate because of a corrupted patch. We don’t know exactly what this patch was going to fix or what the last-minute issue... --- ### Microsoft Teams in the Real World - Published: 2017-02-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-teams-real-world/ - Categories: Microsoft 365 - Tags: Microsoft Teams - Article Type: How To Microsoft Teams is a powerful collaboration tool within the Office 365 platform. This article describes two business scenarios for using Microsoft Teams within your organization. The moment Microsoft Teams was released, I became very excited to start using it within Sparked. My first task was finding business scenarios suited for Microsoft Teams. My eyes immediately fell on the following: Sales with prospects and customers Working in teams and projects Last December we started implementing Microsoft Teams for these two scenarios. I would like to share our experiences and findings. My goal is to help you in your Microsoft Teams adventures and to be successful implementing Microsoft Teams within your own organization.     Sales with Prospects and Customers Our previous sales process with prospects and customers in Office 365 was purely focused at SharePoint Online. We used a custom solution to create a SharePoint Site Collection, based on a template, for every prospect or customer. This accumulated, over the past four years, to more than five hundred SharePoint Site Collections. Loads not even used and basically forgotten. I realize there's not a Site Collection limit in SharePoint Online, but if there is one thing I can't stand, it is clutter and unused stuff. I want to delete it! Can't wait to get my hands on the delete button! I decided to use PowerShell to create an Excel overview with all the Site Collections and designated owners. My colleagues were so nice to point out which Site Collections could be deleted and which couldbe archived. Of course, I used ShareGate to migrate content to a newly created archive. Just damn simple. We decided to create a Team for our... --- ### Managing Usernames and Passwords with PowerShell for SharePoint Online - Published: 2017-02-15 - Modified: 2024-09-04 - URL: https://petri.com/managing-usernames-passwords-powershell-sharepoint-online/ - Categories: Microsoft 365, PowerShell, SharePoint - Tags: Office 365, Office 365 PowerShell, Password Management, SharePoint, SharePoint Online, SharePoint PowerShell - Article Type: How To Shane Young shares the bad, the good, and the best ways to manage your accounts when it comes to PowerShell, including prompting, plain text variables, hashed files, and his new favorite, Windows Credential Manager. If you are like me, you find yourself logging into your Office 365 tenant via PowerShell almost every day. And you are probably doing it one of two ways: either you are using a cmdlet to prompt you for the information and then manually typing it in (or cutting and pasting from a text file) OR you have hard coded the plain text credentials into a login script, and you just run it. I will be honest, up until recently I have done both and just hoped no one ever looked in the file labeled passwords. Thanks to some questions on one of my YouTube Channel videos, I have learned and implemented a better way. In this article, we are going to start at the beginning to talk about the bad, the good, and the best ways to manage your accounts when it comes to PowerShell, including prompting, plain text variables, hashed files, and my new favorite, Windows Credential Manager. Once we have discussed all of the options, then the responsibility is on you to implement the correct solution. Ready? Let’s do this. One quick note: This article assumes you have already installed the Office 365 PowerShell and the Patterns and Practices PowerShell. If you have not, then check out my previous article on Getting Started with PowerShell for SharePoint Online. Prompting for Passwords This is the method that you will see most often, especially in “official” documentation. The idea is you use $Credentials = Get-Credentials , which will then... --- ### Microsoft’s Build Conference Tickets Now On-Sale - Published: 2017-02-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-build-conference-tickets-now-sale/ - Categories: Main - Tags: Build 2017, Microsoft - Article Type: News Microsoft's Build conference tickets are now on-sale, but if you plan to attend, you need to act quickly as they will likely sell-out in the near future. Every year, Microsoft hosts a conference in the spring called Build. This event, which is targeted at developers, is the company’s primary opportunity during the year to educate creators on the features available in Windows 10, as well as what’s in the pipeline for their desktop OS and their other applications like Windows Server, Visual Studio and of course, they also provide updates on Azure. For the last couple of years, Microsoft has held its conference in San Francisco but they are taking the show to their own backyard and hosting Build in Seattle. The tickets, if you are interested in attending, are on-sale and you can buy them here. The event takes place from May 10th to the 12th at the Washington State Convention Center. If you are planning to go, you need to act quickly; last year, tickets sold out in less than a minute. In response to the overwhelming demand for the tickets, Microsoft had stated, at that time last year, that they were looking to expand the show so that more developers would be able to attend. We don’t know how many tickets are available this year but seeing as it is a new venue in Seattle, I would expect that they have more available this year when compared to the years where the event was hosted in San Francisco. I will be attending the show this year, much like I have done for the past several events, and if you are headed up... --- ### Lurking Challenges for Teams and Planner > Teams and Planner are great Office 365 applications, but they have some aspects that Microsoft needs to address if the applications are to succeed. - Published: 2017-02-14 - Modified: 2024-11-19 - URL: https://petri.com/lurking-challenges-teams-planner/ - Categories: Microsoft 365, Office - Tags: Compliance, Data Sovereignty, Office 365, Office 365 Groups, Planner, Teams Teams and Planner are excellent examples of new functionality that Microsoft can create using the toolkit of parts that exist within Office 365. The two applications have excited and delighted customers since their announcement, but the applications are not yet complete. Some challenges exist that Microsoft really needs to take on to round out functionality and capabilities. Teams and Plans for Office 365 Tenants The recent announcement of Microsoft Teams, the so-called “Slack killer”, generated a lot of interest within Office 365 customers, not least because the new application is free to all Office 365 enterprise and business tenants. Microsoft Planner, the task-based project manager that attained General Availability in June 2016, shares many characteristics with Teams such as the way that both applications leverage Office 365 Groups for authentication and membership.     Microsoft updates Teams on a regular basis and users receive client updates automatically. For example, you can now disable the integration between Teams and Skype for Business if you don't want to have cross-platform instant messaging (or perhaps more importantly, multiple pop-up notifications for messages). The Teams back-end also receives updates. One recent advance is that you can now disable Teams for specific users by removing the license for the application through the Office 365 Admin Center. Like all software, the two applications have some challenges. Brad Sams recently surveyed companies to discover what they think of Teams in terms of functionality.  This is my take on where I think Microsoft needs to invest more development effort as Teams moves to General Availability status in "early 2017" (very soon). Much the same needs to be done to round out Planner in the same timeframe. Soft Delete, Please! Right now, a horrible lurking danger exists if you delete a team or plan in that the action leads to the permanent and irrevocable deletion of... --- ### Amazon Takes on Skype For Business With Chime But It Won’t Come Cheap - Published: 2017-02-14 - Modified: 2024-09-04 - URL: https://petri.com/amazon-takes-skype-business-chime-wont-come-cheap/ - Categories: Amazon Web Services - Tags: Amazon, Chime, Microsoft, News, Skype for Business - Article Type: News Amazon has announced a new chat service called Chime that will take on Skype for Business but the high price point may be a turnoff for many potential customers. The chat and collaboration space is getting a new player today with Amazon announcing Chime, a tool that will target Skype for Business and Cisco's WebEx services. Amazon is hoping to leverage its popular cloud service that is used by millions to help up-sell this new feature that runs on its AWS infrastructure. Amazon Chime, as the company describes it, is a modern and secure unified communications service that the company believes will make meetings easier and more efficient. The service supports video conferencing, calls, chat and the ability to share content with users outside of your company; there is a full suite of apps for Android, iOS, macOS and Windows. Even though Amazon does offer a free tier of Chime, this product is squarely targeted at corporate customers. The free basic offering allows for video calls for up to two people and basic chat services. If you want screen sharing and remote desktop control, it will cost $2. 50 a month but you are still limited to two users on a video call and if you want more users, it will cost $15 per month for up to 100 users on a call . Pricing may be a tough pill to swallow for some as Microsoft’s competing service offers more features and functionality for less money per month. For example, you can get Office 365 Business Premium which comes with Skype for Business that supports video/web conferencing for up to 250 people for $12. 50 a month per user... --- ### Updating Windows Server 2016 Hyper-V Integration Components > Microsoft changed how integration components are upgraded in Windows guest OS virtual machines running on Windows Server 2016. Learn how in this post. - Published: 2017-02-14 - Modified: 2024-09-04 - URL: https://petri.com/updating-windows-server-2016-hyper-v-integration-components/ - Categories: Hyper-V - Tags: Hyper-V, virtual machines, Windows Server 2016 - Article Type: Overview Aidan Finn explains how Microsoft changed the process for upgrading the Hyper-V integration components in a Windows guest OS virtual machine. In this post, I will explain how Microsoft changed the process for upgrading the Hyper-V integration components (or integration services, depending on what you’re reading) in a Windows guest OS virtual machine. Why Upgrading Is Important I posted an article in 2014 that described the basic architecture of the Hyper-V hypervisor. In that post, I explained the role of the integration components; these are a set of drivers/services that enlighten the guest OS, enabling it to avail of the underlying services and performance that the hypervisor makes available to it.     Note: If you’re a VMware administrator, then the integration components are similar to VM Tools. The architecture of Hyper-V (Source: MSDN) While the basic architecture has remained relatively unchanged since Windows Server 2008 Hyper-V, the integration components have continuously been updated by Microsoft: Each release of Hyper-V adds new features, and you need a current version of the integration components to use these features. Security and bug fixes update the integration components between major releases. It is, therefore, important to keep the integration components up-to-date so: You have access to the latest Hyper-V features Your deployments get fixes for bugs Security vulnerabilities are patched Why Upgrading Was Painful There were two ways that Microsoft supplied integration components before Windows Server 2016 (and therefore, Windows 10): The latest version of the integration components was built into that version of Windows at the time of release. A file on the host, called VMGuest. ISO, was... --- ### Azure Monitor: Creating Alerts - Published: 2017-02-13 - Modified: 2024-12-18 - URL: https://petri.com/azure-monitor-creating-alerts/ - Categories: Azure - Tags: alerts, Azure, cloud computing, Security - Article Type: How To Learn how to create an alert in Azure Monitor.   In today's Ask the Admin, I'll show you how to set up alerts in Azure Monitor. In Azure Monitor: Creating Metrics on the Petri IT Knowledgebase, I showed you how to set up metrics in Azure Monitor. The last piece of the Azure Monitor puzzle is to set up alerts, and in this article, I’ll show you how to do that using a metric as source information, so be sure to look at the article on metrics that I previously mentioned. Configure Alerts Before following the steps below, you’ll need access to an Azure subscription. If you don’t have one, you can sign up for a free trial here. Log in to the Azure portal here using an administrator account for the tenant. Click Monitor in the list of options in the left pane of the Azure portal. Monitor will appear in the list if you followed the instructions in the previous Azure Monitor article on Petri. If it doesn’t, click More services at the bottom of the list, and type monitor in the Filter box to access Monitor. Under MANAGE in the Monitor - Activity log panel, click Alerts. Add an alert in Azure Monitor (Image Credit: Russell Smith) Alternatively, if you want to create an alert using a metric as the information source, you can click + Add metric alert after creating the metric as described in Azure Monitor: Creating Metrics. In the Monitor – Alerts panel, select the subscription you’d like to... --- ### Microsoft’s New Tools Make Surface Devices Better Suited For The Enterprise - Published: 2017-02-10 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-tools-make-surface-devices-better-suited-for-the-enterprise/ - Categories: Hardware - Tags: News, Surface - Article Type: News Microsoft is introducing a new set of tools that will give IT admins more control over Surface hardware, including the ability to turn off features like the webcam. Microsoft’s line of premium laptops and tablets have been well received by enterprise customers and are being deployed all around the globe. The latest Surface devices, which all come with Windows Hello and are made of high-end materials, ship with Windows 10 but to help these clients have more control over the devices, Microsoft is giving them new tools for better management. In some environments, where data leaks and security are of the highest order, corporations will lock down hardware so that USB drives and webcams cannot be operated by the user. To help its corporate customers obtain more control over their own devices, Microsoft has announced Surface Enterprise Management Mode which can be deployed to Surface Pro 4, Surface Book and Surface Studio. This new tool allows an organization to take ownership of a device and lock down the hardware configurations within the device firmware. Hardware rules can be applied to Wi-Fi networks, Bluetooth, Ethernet, time of day, application access and certificates that can be included in initial deployments or dynamically pushed via the cloud. In the event that a Surface device is lost or stolen with SEMM deployed, it requires both physical possession and a unique certificate to make any changes to the configuration of the device. The goal with this new tool is obvious, to help move more of Microsoft’s hardware into the enterprise. By giving IT admins more control over the hardware, it helps to match what is considered best-in-class capabilities offered by other manufacturers and... --- ### Microsoft Increases Office 365 Security With Three New Tools - Published: 2017-02-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-increases-office-365-security-with-new-security-core-threat-intelligence-and-data-governance/ - Categories: Microsoft 365 - Tags: News, Office 365 - Article Type: News Microsoft is introducing three new security features for Office 365 that the company hopes will make the product indispensable in the productivity space. Microsoft’s Office 365 platform is nothing short of a huge success for the company. With tens of millions of users accessing the tools every day, the company has successfully pivoted an on-premises piece of software to a cloud-based platform of productivity tools. At Ignite last year, Microsoft began introducing new security features into the platform that started the process of turning this service into a new security layer for the company. Today, Microsoft is announcing three new features for the platform that will further enhance Office 365. Office 365 Threat Intelligence is now available in private preview with general availability planned for later this quarter. This service provides near real-time insight into the threats that impact a network (malware, adware, ransomware, ect) and can help isolate or deflect these malicious threats. A new public preview of Office 365 Advanced Data Governance has been announced; this feature uses the company’s foundation of machine learning to identify and protect data that may be exposing an organization to unnecessary risk. This appears to be an interesting feature but I’ll need a bit more time to fully dig in to see how it works and its effectiveness. Finally, there is the new Office 365 Secure Score; Tony has a great write-up about this tool that’s worth checking out for a deeper dive. This feature allows IT pros to evaluate the strength of their Office 365 configuration and model how simple changes can enhance and reduce their security vulnerabilities. Microsoft says that they... --- ### Azure SQL Database Threat Detection Reaches General Availability in April - Published: 2017-02-10 - Modified: 2024-09-04 - URL: https://petri.com/azure-sql-database-threat-detection-reaches-general-availability-in-april-draft/ - Categories: SQL Server - Tags: Azure, SQL Threat Protection - Article Type: News Microsoft has announced that Azure SQL Advanced Threat Protection will reach general availability in April of 2017. Earlier this year, I wrote about a new trend at Microsoft; the company is still focused on productivity but it’s also becoming a security vendor. We are seeing the company wrap all of their products with a new sub-brand that they call Threat Detection and today the company is talking more about this feature for its SQL products. In April of this year, Azure SQL Database Threat detection will reach general availability. This feature provides a new layer of security for your database to help protect against threats that can corrupt or steal your content. To little surprise, Microsoft is touting that they are using machine learning to understand the habits and uses of your data so that they can then detect suspicious activity. Considering that a database is generally the core of a company, any impact to these files can cause a significant disruption to your operations which is why having robust backups and intrusion detection is crucial to the well-being of your environment. Attacks on corporate networks are becoming more sophisticated each year and with ransomware also being a word that sends cold shivers down any IT admins spine, it’s imperative that your environment is fully protected. It’s because of these types of malicious attacks that we see Microsoft putting a strong focus on security as well as productivity. Further, for Microsoft, security is an on-going threat and falls in line with the company’s new servicing model. At the end of the day, customers will receive on-going... --- ### Windows Server 2016: DFS-R vs. Storage Replica - Published: 2017-02-10 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-dfs-r-vs-storage-replica/ - Categories: Windows Server - Tags: DFS, Storage Replica, Windows Server - Article Type: Overview What is the difference between Dfs-R and Storage Replica in Windows Server 2016? In today's Ask the Admin, I'll look at the key differences between Distributed File System Replication (DFS-R) and Storage Replica (SR), and why you might want to upgrade to Storage Replica if you're using DFS for server-to-server replication.     Storage Replica is a new feature in Windows Server 2016 Datacenter Edition that uses the Server Message Block (SMB) 3. 1. 1 protocol to enable volume-based synchronous replication at block level for disaster recovery, stretch clusters, and high availability. SR supports the following three scenarios: Server-to-server storage replication Storage replication in a stretch cluster Cluster-to-cluster storage replication Synchronous vs. Asynchronous Replication Synchronous replication mirrors data on low-latency high-bandwidth networks to ensure zero data loss at the file-system level in the case of a failure. Data must be written to both volumes in a replication set before an I/O operation is marked as complete. SR in synchronous replication mode uses logs to ensure data consistency, so write operations are likely to be slower than asynchronous replication, and low latency high-bandwidth networks are required to minimize performance overhead. As such, synchronous replication is best reserved for mission-critical applications. SR also supports asynchronous replication, which is designed for use across high-latency networks, but can’t guarantee that both volumes in a replication set will have the same data after a failure. Although unlike DFS-R, SR in asynchronous mode does provide near zero data loss. Microsoft’s implementation of asynchronous replication doesn’t use snapshots like most third-party solutions. Instead, it works like synchronous replication but doesn’t... --- ### Paul Thurrott's Short Takes: February 10 - Published: 2017-02-10 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-10/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Overview Because the irony is so thick I could cut it with a knife, this edition of Short Takes looks at Microsoft and patents, Microsoft's big legal win, and much, much more. Because the irony is so thick I could cut it with a knife, this edition of Short Takes looks at Microsoft and patents, Microsoft's big legal win, and much, much more. Microsoft and patents, oh the irony As Brad reported earlier this week, Microsoft is now providing intellectual property protection for content stored in its cloud services, with "uncapped indemnification coverage. " What many don't realize, of course, is that it was a Microsoftie that essentially invented patent trolling when Nathan Myhrvold created Intellectual Ventures and an industry unto itself. So now Microsoft has to protect its customers from even more serious patent trolls by creating an entire infrastructure dedicated to this one task. Ah, history. It's like the gift that keeps on giving. "Xbox Project Scorpio: True 4K Gaming is COMING To Xbox In 2017" That's exactly the word I would have capitalized too. Microsoft scores a big legal win for privacy This week, a US District Judge ruled that the government cannot evade a Microsoft lawsuit aimed at protecting user privacy. Microsoft sued the U. S. Justice Department last April, alleging that the agency’s growing use of secrecy orders violates its rights, and its customers’ rights. The DOJ tried to have the case thrown out, but failed, with U. S. District Judge James Robart noting that "government surveillance aided by service providers creates unique considerations. " But Microsoft did lose one aspect of its complaint: The judge said that so-called "sneak-and-peek searches" were in fact allowed by federal law. "Why... --- ### Create a Virtual Machine in the Azure Cloud - Published: 2017-02-09 - Modified: 2024-11-19 - URL: https://petri.com/create-virtual-machine-azure-cloud/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Virtualization - Article Type: How To Quickly provision your first virtual machine in the Azure cloud. In today's Ask the Admin, I'll show you how to quickly provision a virtual machine (VM) in the Azure cloud. Virtual machines can be provisioned in the cloud in much the same way as on a local VMware or Hyper-V server. The only difference is that you don’t have any real control over the host operating system or hypervisor, and configuration must be done through the cloud OS. The easiest way to provision a simple VM is to use a readymade template. To provision and connect to a VM in Azure, more than just the VM is required. For instance, a storage account, network interface, and IP address must also be provisioned. But Azure Resource Manager (ARM) makes the process easy, using Resource Groups to manage the cloud apps holistically. There are several ways to provision VMs using ARM. Today I’ll show you how to use a JSON template that’s available on GitHub and is free to use, but it’s also possible to provision VMs using ARM PowerShell or the management portal. For more information on using ARM PowerShell to provision VMs, see Deploy VMs Using Azure Resource Manager and PowerShell and Deploy VMs Using Azure Resource Manager on the Petri IT Knowledgebase. Provision a VM in Azure Before you can provision a VM in the Azure cloud, if you don’t already have a subscription, sign up for a free trial here. Open the Simple Windows VM template here in GitHub. In the GitHub window, scroll down and... --- ### Visual Studio 2017 Arrives On March 7 - Published: 2017-02-09 - Modified: 2024-09-04 - URL: https://petri.com/visual-studio-2017-arrives-march-7/ - Categories: Visual Studio - Tags: News, Visual Studio - Article Type: News Microsoft has announced that Visual Studio 2017 will arrive on March 7th and it will be accompanied with a two-day virtual event demoing the tools new features. Microsoft has announced that on March 7th, they will be releasing the next update to Visual Studio. The company had been previously calling this version Visual Studio vNext and now we know its retail name. Along with releasing the new version of the platform, the company will be hosting a two-day online event to celebrate the anniversary of Visual Studio which has been around for twenty years. The event will have interactive technical demos of the new features and will help users get up to speed on all the enhancements of the platform. Visual Studio 97, which was announced on January 28th, 1997, has grown from an IDE to a suit of services that now includes Visual Studio Team Services, Visual Studio Code, and many others. Microsoft positions this suite of tools as the premier environment for developing applications and has done a substantial amount of work to make it cross platform as well as a viable tool for building applications for any operating system. Because Visual Studio can be prohibitive to new coders as the cost to utilize the entire application is quite high, the company has been working the past few years to bring this development platform to all coders with new applications like Visual Studio Code and also reduced pricing for the education markets. If you are interested in attending the virtual two-day launch event of Visual Studio 2017, you can sign up for the conference, here. --- ### Amazon Continues To Lead Cloud Market Share, More than Microsoft and Google Combined - Published: 2017-02-09 - Modified: 2024-09-04 - URL: https://petri.com/amazon-continues-lead-cloud-market-share-microsoft-google-combined/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Microsoft Azure - Tags: Amazon, Cloud, Google, Microsoft, News - Article Type: News For the fourth quarter of 2016, Amazon continued to dominate the cloud market by having more market share than Microsoft and Google combined. It’s not too often that we get to watch a technology revolution take place. Yes, calling the ‘cloud’ a technological revolution may be extreme, but you can’t deny the fact that this new type of infrastructure is dramatically changing how companies operate and think about capital expenditures. The major players in this segment are Amazon, Microsoft, Google, and even IBM but it is Amazon who is winning the race for market share. A new report out from Canalys shows that during the fourth quarter of 2016, AWS owned 33. 8% of the market which is more than Google and Microsoft’s market share, combined. Unfortunately, the report does not break down Microsoft’s and Google’s share but the pie chart provides a visual representation of the current cloud market. In 2016, the cloud market had a total value of $38. 1 billion and Canalys believes that in 2017, the market will grow to $55. 8 billion. This is a growth of 46% which goes to show why Amazon, Microsoft, and Google are working diligently to expand their footprint of their services as there are significant opportunities ahead for revenue growth in this sector. Amazon, Microsoft, and Google are investing billions in their data centers with Google expected to open several sites this year and Amazon/Microsoft opened several last year to focus on local demographics. Even though there are significant opportunities in this segment, don’t expect many hardware startups to dive into this space as it will take tens-of-billions of dollars to match the... --- ### SharePoint Podcast Episode #325 > In this SharePoint show, Todd and Shane dive into OneDrive for Business syncing with SharePoint, SMAT, and FindTime before getting lost on TV. - Published: 2017-02-09 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-episode-325/ - Categories: Office, SharePoint - Tags: FindTime, iOS, OneDrive, OneDrive for Business, SharePoint, SMAT - Article Type: News, Opinion Todd Klindt and Shane Young discuss OneDrive for Business SharePoint Sync, the SharePoint Migration Assistant Tool (SMAT) for SharePoint 2013 and how it can help you evaluate your move to Office 365, and Shane gushes over his first use of the FindTime feature. Clearly, a 12-year-old boy made up the title to this episode. His name is Todd Klindt. The good news is we have lots of fun and relevant topics this week at the beginning of the show, not the end. We start with talking about OneDrive for Business SharePoint Sync. This is a much-anticipated feature that is now ready to rock and roll. We also take a stroll down memory lane and remember, not fondly, Groove. With the new features available we also cover the SharePoint Migration Assistant Tool (SMAT) for SharePoint 2013 and how it can help you evaluate your move to Office 365. Speaking of Office 365, Shane then gushes over his first use of the FindTime feature that allows computers to worry about scheduling your meetings instead of you. Artificial Intelligence is sneaking into our lives and it is great. There is also a new segment that is introduced this week. We bring on a listener for a quick discussion of the topic of their choice. Daniel Glenn from Tennessee was slated to talk about the trials of being a llama farmer in a goat farming community. Sadly, we ran out of time before we could bring him on. If you want to learn more about that or his other expertise in SharePoint and Office 365, check out his blog or pester him on Twitter. Do you want to be a featured guest? Check out below for more info. After so many solid, on topic conversations we... --- ### Office 365 Secure Score Analyzes Tenant Security > The Secure Score service allows Office 365 administrators to analyze the security of their tenant against a set of benchmarks established by Microsoft. - Published: 2017-02-09 - Modified: 2024-11-19 - URL: https://petri.com/office-365-secure-score/ - Categories: Microsoft 365, Office, Security - Tags: administration, Office 365, Secure Score, Security Microsoft offers Office 365 administrators the opportunity to measure the security of their tenant against standard benchmarks set by Microsoft. Despite some glitches, the Secure Score service is a worthwhile and useful tool. Scoring Office 365 Tenant Security In August 2016, I wrote about the Office 365 Secure Score service, which was then in preview and noted that my tenant had scored 50 out of 243. Now, the service is in production and my score has advanced to 55 (Figure 1). Naturally, I am thrilled. Figure 1: Viewing the Secure Score for an Office 365 tenant (image credit: Tony Redmond) The idea behind Secure Score is simple. Microsoft acknowledges that it can be difficult for an administrator to understand how best to secure an Office 365 tenant. There are many places in administrative consoles where settings can be tweaked and much to monitor on an ongoing basis. It therefore makes sense to measure a tenant against a set of predetermined standards and score the tenant based on the actions taken to increase security. At the same time, outstanding actions can be flagged to the administrator, who then decides whether to implement the action and so increase the tenant score. For example, if Rights Management is configured to allow tenant users to protect confidential content, it’s worth five points. Even better, if users store documents in OneDrive for Business, it’s worth ten points. Although you can argue that OneDrive for Business is a more secure location for documents than a local hard drive or a network file share, assigning ten points to this measurement seems like more of an encouragement to do better. The points awarded for different... --- ### How to Remove the 3 Main Roadblocks to SharePoint Adoption - Published: 2017-02-08 - Modified: 2024-09-04 - URL: https://petri.com/how-to-remove-the-3-main-roadblocks-to-sharepoint-adoption/ - Categories: SharePoint - Tags: Adoption, SharePoint - Article Type: How To In this short video, discover the 3 most common roadblocks and learn how to remove them so that you can make the SharePoint adoption process as pleasant as possible. How many of your SharePoint users find it sometimes frustrating to work with the application? Many organizations want the enterprise collaboration and increased productivity that come with SharePoint. But, successful and sustainable adoption remains challenging. In the pursuit of smooth and easy adoption, in addition to optimizing the training and keeping users engaged, you have to remove the things that stay in the way to making things done. Some roadblocks to SharePoint adoption are organic but many others are unnecessarily brought in. In this short video, discover the 3 most common roadblocks and learn how to remove them so that you can make the SharePoint adoption process as pleasant as possible. Watch more video tutorials at VisualSP. com. --- ### Azure Monitor: Creating Metrics - Published: 2017-02-08 - Modified: 2024-12-18 - URL: https://petri.com/azure-monitor-creating-metrics/ - Categories: Azure - Tags: Azure, cloud computing, monitoring - Article Type: How To Find out how to define metrics in Azure Monitor.   In today's Ask the Admin, I'll show you how to set up metrics in Azure Monitor. In Azure Monitor: Logs and Saving Queries on the Petri IT Knowledgebase, I showed you how to view and filter the results of the activity logs, save your queries, and view and enable diagnostic logging. But Azure Monitor has a couple of other features, called metrics and alerts, that allow us to configure performance thresholds and trigger alerts if they are exceeded. Configuring metrics in Azure Monitor (Image Credit: Russell Smith) Metrics collect information about resources you create in Azure, and about the Azure fabric. They can be used for tracking performance issues, used as the source information for alert notifications; and to initiate automated actions, such as autoscaling resources or starting an Azure runbook. Define Metrics in Azure Monitor In the instructions below, I’ll show you how to set up a metric for virtual machine (VM) CPU usage. For VMs, Azure divides some metrics into two categories: guest-os-level and host-os-level. Host-os-level metrics show information about the Hyper-V host server, and guest-os-level metrics about the VMs you create in Azure. Before guest-os-level metrics can be collected for a VM, diagnostic logging must be enabled, which you can do by either completing the instructions in Azure Monitor: Logs and Saving Queries, or by modifying the diagnostic logging option in the VM’s settings panel. The first task is to determine the resource type for which we want to create a metric:... --- ### Microsoft To Provide Patent Protection For Azure Customers - Published: 2017-02-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-provide-patent-protection-azure-customers/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News, Patent - Article Type: News Microsoft is now offering up its patent portfolio to Azure customers to help protect them against IP litigation; 10,000 Microsoft patents are available to Azure customers. Microsoft’s cloud service is growing at a feverish rate and the company is always looking for a way to differentiate its products from the likes of Amazon and even Google. With a recent report from the Boston Consulting Group stating there has been a 22% rise in cloud-based litigation over the last five years, Microsoft has set out to find a way to reassure the customers of its products that it won't end up in court over cloud technologies. Announced today, Azure IP Advantage is a new program being offered by Microsoft to help protect against intellectual property risk in the cloud. In short, Microsoft will loan its users the company's patent portfolio to help defend against litigation brought against a company for IP infractions. Specifically, Microsoft is offering up the following: Microsoft’s best-in-industry, uncapped indemnification coverage will now also cover any open source technology that powers Microsoft Azure services. For example Azure HD Insight service, which incorporates Hadoop technology. Microsoft will make 10,000 Microsoft patents available to Azure customers, to help defend against baseless patent lawsuits. Microsoft is pledging that if it ever transfers a patent to a non-practicing entity, that patent cannot be asserted against a regular Azure customer. The company does not have a general practice of making such transfers, but this is an extra protection that many customers value. Since the cloud offers an entirely new way of building out the infrastructure needed for modern workloads, new technologies are being developed and patented on a frequent... --- ### Top 5 Trends in Azure Hybrid Cloud Management - Published: 2017-02-07 - Modified: 2024-09-04 - URL: https://petri.com/top-5-trends-azure-hybrid-cloud-management/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Backup, Disaster Recovery, hybrid cloud, Operations Management Suite, Remote Desktop - Article Type: Overview As you begin to implement your organization’s 2017 tech strategy, here are the top five most interesting things that are going on in the world of Hybrid Cloud with Microsoft Azure that you should consider. As you begin to implement your organization’s 2017 tech strategy, here are the top five most interesting things that are going on in the world of hybrid cloud with Microsoft Azure that you should consider. Backup Almost every business struggles with backup, and the funny (or unfunny) thing about these struggles is that they are the same no matter what size the organization is. Complexity: Backup should be simple. Every minute we spend looking at backup is time wasted. We should take backup for granted and only spend time with it when we need to change services or restore things. Unfortunately, backup products, in a race to be the best, have bolted on unnecessary bells and whistles, and legacy (they support tape) solutions often never worked in the first place. Cost: Every business has a lot of data that must be protected. And that means you need lots of storage to protect that data on. We can be clever with that storage, but it’s another capital expenditure cost that detracts from business flexibility. Additionally, we have to pay upfront for backup software, which is often very expensive. There are some newer players in the backup market that don’t fall fowl of the above, but, like with email, many businesses view backup as a service that should be taken for granted as a utility. Many of us have moved email to the cloud, so why don’t we move backup, too? Backup is one of the easiest services to move... --- ### Office 365 Halts Workload-Specific eDiscovery > Microsoft will stop Office 365 tenants creating new workload-specific searches from July 2017. The direction is to use Office 365 content searches instead. - Published: 2017-02-07 - Modified: 2024-09-04 - URL: https://petri.com/office-365-content-searches-ediscovery/ - Categories: Microsoft 365, Office - Tags: eDiscovery, Exchange Online, in-place hold, Office 365, Security and Compliance Center, SharePoint Online - Article Type: News Microsoft has announced that they will block Office 365 tenants from creating workload-specific searches from July 2017. Instead of using Exchange Online and SharePoint Online, you have to create content searches and eDiscovery cases through the Security and Compliance Center. It's a good change, even with the complication of keeping old searches until they expire. Office 365 Moves to Cloud eDiscovery On January 25, Microsoft program manager Bill Baer posted an announcement in the Microsoft Tech Community to inform customers that Office 365 will block the creation of workload-specific eDiscovery searches and holds from July 1, 2017. These are the searches created and managed through the Exchange Admin Center and SharePoint eDiscovery Center.     Tenants can continue to process eDiscovery cases or perform in-place searches and holds, but if they want to create new searches, they must use the Security and Compliance Center. Because eDiscovery cases and associated in-place holds can last a long time, tenants might have to manage a hybrid eDiscovery environment for several years – or even longer in some cases. You might have missed the announcement because Microsoft posted it in the Tech Community rather than the Office blog. However, that does not take away from the fact that discarding workload-specific eDiscovery to use Office 365 functionality instead is an important step forward and the right thing to do. The Past When Microsoft launched Office 365 in June 2011, the eDiscovery capabilities were cloud versions of whatever features existed in the on-premises Exchange and SharePoint products. Even after the technology refresh in 2013 to use Exchange 2013 and SharePoint 2013 code base, eDiscovery remained firmly linked to its on-premises roots. Some goodness existed in this approach. On-premises customers were slowly moving to the cloud and it was reassuring to find familiar functionality in Exchange Online and SharePoint Online... . --- ### Microsoft Cuts Prices on Azure Virtual Machines and Blob Storage Up To 51% - Published: 2017-02-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cuts-prices-azure-virtual-machines-blob-storage-51/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Microsoft, News, Price Cuts - Article Type: News Microsoft has announced additional price cuts for its Azure service that lowers the cost by up to 51% for some of its virtual machines. Microsoft, Amazon and now Google are in a heated cloud race to grab as much market share as they can as they know that once a company starts using their service, the likelihood of switching platforms is low. With more services being offered via cloud vendors and more companies diving into these platforms, Microsoft and Amazon are frequently cutting prices to create a competitive advantage. On this edition of ‘cloud cuts’, Microsoft is slashing prices on some of its Azure Virtual Machines and its Blob storage. The company is dropping the prices on compute-optimized instances – F Series and general purpose instances – A1; the company says pricing cuts on its D-series general purpose instances will happen in the near future. For those that are using blob storage, Microsoft is cutting prices on Hot Block Blob storage by 26% and Cool Block Blob by 38%. The goal with these cuts is to make the barrier of entry a little bit lower for trying out Azure which Microsoft hopes will accelerate its adoption of its cloud. It’s well known that Azure is the future of Microsoft and is how the company will stay relevant for the decades to come which is why they are aggressively pursuing growth in this segment at the cost of revenue. With Microsoft announcing new cost-cutting measures, don’t be surprised to see Amazon following up in the near future; you can read more about the price cuts for Azure, here --- ### What Are the New File Types in Windows Server 2016 Hyper-V VMs? > This post will explain the new file formats of virtual machines running on Windows Server 2016 Hyper-V. - Published: 2017-02-06 - Modified: 2024-09-04 - URL: https://petri.com/new-file-types-windows-server-2016-hyper-v-vms/ - Categories: Hyper-V - Tags: Hyper-V, virtual machines, Virtualization, Windows Server 2016, WS2016 - Article Type: Overview Check out the new file types, their functions, and locations, which you’ll find in a Windows Server 2016 Hyper-V VM. In this post, I will describe the new file types, their functions, and locations, which you’ll find in a Windows Server 2016 (WS2016) Hyper-V virtual machine (VM). Quite a Lot of Change Hyper-V went through a lot of changes with the release of Windows Server 2016: Cloud inspiration from Azure, including software-defined networking and software-defined storage. More security. Increased scalability, including support for VMs with 12TB RAM! Feedback, driving improvements to features such as shared VHDX. Those improvements have affected Hyper-V throughout, including the files that are used. When you create your first VM on WS2016 Hyper-V, you will notice quite a few changes, especially when you open File Explorer and start to look at what files were created. The biggest change is that Hyper-V switched from using XML-based VM configuration files to a new binary format. There are two benefits: People will finally stop directly meddling with the XML configuration file; this was unsupported and caused failures. This change actually caused a little storm in a teacup when it was first announced. Those machines hosting lots of VMs will notice improved performance during a boot storm, such as Monday morning in a VDI deployment or after a patch run in a server deployment. The New Files I have yet to find a single complete listing of all of the files; the Microsoft documentation appears to be incomplete. So here is my best effort based on what information is available from various sources: Configuration (. VMCX): This is the binary machine... --- ### What Is Microsoft Advanced Threat Analytics? - Published: 2017-02-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-advanced-threat-analytics/ - Categories: Security - Tags: Active Directory, Advanced Security Management, Advanced Threat Analytics, cloud computing, Security - Article Type: Overview Russell Smith explains what Microsoft's Advanced Threat Analytics (ATA) is and how it can help keep your systems secure. In today's Ask the Admin, I'll explain what Microsoft's Advanced Threat Analytics (ATA) is and how it can help keep your systems secure. Microsoft has been putting a lot of effort into security over the past few years, making it the cornerstone of its cloud platforms, particularly Azure and Office 365. As the reach of IT systems extends ever further, Microsoft understands that business won’t adopt its services and on-site server products unless they’re proven to be secure and dependable solutions, in a world where cyberattacks are becoming the norm rather than an exception – for all types and sizes of business.   Identity-driven security is at the center of Microsoft’s security solutions, helped along by Active Directory (AD), and Azure Active Directory (AAD), a cloud-based directory services platform. But despite the improved security that’s baked into Microsoft’s products, best practices are routinely ignored. And even when adopted, there’s no such thing as 100 percent secure. So, any additional layers of defense are welcome, and that’s where Microsoft ATA comes in. Microsoft identified that 60 percent of all successful attacks rely on using compromised credentials and that there are several phases of a cyberattack that are common to all types of attack, regardless of the aim or size of business. The first phase is reconnaissance, where an attacker gathers information about systems so that they can plan for the next stage. Lateral movement involves using credentials to move from one system to another, increasing the number of compromised devices... --- ### Windows Cloud Will Be Upgradeable - Published: 2017-02-04 - Modified: 2024-09-24 - URL: https://petri.com/windows-cloud-will-upgradeable/ - Categories: Windows 10 - Tags: Windows 10, Windows Cloud - Article Type: News Microsoft's upcoming Windows Cloud OS will be upgradeable to Windows 10 Pro based on documentation found in a build of the platform. The last few days or so, Windows Cloud, a new SKU of Windows that Microsoft will be offering in the near future has been uncovered. If you haven’t seen it yet, I got my hands on an unreleased build of the OS that you can view here. The key differentiator between Windows Cloud and Windows 10, that we know of right now, is that it can only run UWP applications. This limitation is quite similar to what Microsoft offered several years ago with Windows RT but there is a difference this time around, you will be able to upgrade Windows Cloud to Windows 10 Pro. In this build of Windows Cloud that was leaked, in the Editions Matrix XML file, we see the following information which in short means this edition of Windows can be upgraded from Cloud to Pro; we don’t know yet if other versions of Windows will be an option. Further, there have been plenty of speculation and insiders who are saying that this upgrade will be possible and now we have additional proof for this mechanism. This feature is likely one of the differentiators that Microsoft is hoping will make Windows Cloud a success. If you buy a machine that has this OS on it, you will be able to convert the installation to a traditional Windows install. Of course, what we don’t know right now is how much this will cost and if upgrading requires a significant... --- ### Office 365 Drops Site Mailboxes. What Should You Do Next? > Office 365 will stop supporting site mailboxes soon. The question is then what to do? Use shared mailboxes, Office 365 Groups or what? - Published: 2017-02-03 - Modified: 2024-11-19 - URL: https://petri.com/office-365-drops-site-mailboxes/ - Categories: Microsoft 365, Office, SharePoint - Tags: Exchange Online, Office 365, Outlook, owa, SharePoint Online, site mailboxes - Article Type: News Beginning in March 2017, SharePoint site owners will no longer be able to create new site mailboxes. Existing site mailboxes will function until they are replaced by something else. Office 365 Starts the Countdown for Site Mailbox Termination According to a note (MC92090) published through the Office 365 Admin Center on January 31, 2017, beginning in March 2017, SharePoint site owners will no longer be able to create new site mailboxes. Existing site mailboxes will function until they are replaced by something else. The news was expected, but it poses some challenges for tenants who have deployed site mailboxes to serve purposes like contract management that involve a mixture of email communication and document management.     Site Mailboxes 101 A site mailbox allows users to share email information along with pointers (“stubs”) to files held in a document library. Administrators create a site mailbox by adding the mailbox app to a site, which causes SharePoint to create a new Exchange mailbox. Users can then create and send messages from the site mailbox or move items from their mailboxes to the site mailbox to share with other members of the site. Figure 1 shows how Outlook presents the stubs for documents stored in a SharePoint document library associated with a site mailbox. Figure 1: Site Mailbox in use with Outlook (image credit: Tony Redmond) Customers never embraced the concept of site mailboxes and their usage was low, even within Office 365 where Microsoft took care of the work required to integrate SharePoint and Exchange. The advent of Office 365 Groups and the continued popularity of shared mailboxes provided customers with sufficient means to share... --- ### Deploying JSON Templates Using the Azure Portal > Get step-by-step instructions on how to upload a JSON template to the Azure Portal and deploy the new template using the GUI experience. - Published: 2017-02-03 - Modified: 2024-09-04 - URL: https://petri.com/deploying-json-templates-using-azure-portal/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Portal, Azure Resource Manager, Ibiza, JSON, Parameters, Template, Visual Studio, VS Code - Article Type: How To Deploy an Azure JSON template from the Azure Portal using the (still in preview) Templates feature. In this post, I will show you how to deploy an Azure JSON template from the Azure Portal using the (still in preview) Templates feature. Note: This feature is still in preview so some functionality might change, and it is in the Azure Portal, so names and locations will change after this article is published.   Uploading a JSON Template I am going to upload an Azure JSON template file that I previously created in the post Deploying Multiple Resources Using an Azure JSON File. Open the JSON file in VS Code and then log into the Azure Portal using your browser. Navigate to Templates in the Azure Portal and click Add. You are asked to enter a name and description for the new template. I suggest that you version your new template; you will create new versions to change functionality and fix bugs, and you will want the ability to switch between versions. Create a new blank Azure JSON Template Click OK and move onto to ARM Template; here you will find a default blank template that we will overwrite. Select all of the code and delete it. Switch to VS Code, select your template and copy it into the clipboard. Switch back to the browser and paste your desired template into the window. Click OK. The Azure Portal will perform a quick validation – this is little more than a syntax check and does not validate that a deployment... --- ### Paul Thurrott's Short Takes: February 3 - Published: 2017-02-03 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-3/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because there's a nude jogger terrorizing the Microsoft campus, this edition of Short Takes looks at basically anything and everything else. Because there's a nude jogger terrorizing the Microsoft campus, this edition of Short Takes looks at basically anything and everything else. Microsoft asks White House for a travel ban exception Microsoft has formally requested that U. S. president Donald Trump grant it an exception to the unconstitutional travel ban he instituted via Executive Order. Oddly enough, exceptions are allowed by the order, and what Microsoft is asking for is reasonable enough: That "Responsible Known Travelers with Pressing Needs" be allowed to re-enter the United States. "There currently are law-abiding visa holders who are parents that were outside the United States last Friday and therefore cannot re-enter the country," Microsoft President and Chief Legal Officer Brad Smith writes. "These parents are stranded and separated from their children. Other individuals are confronting genuine family emergencies such as the need to visit a critically ill parent. " This will be an interesting test of logic vs. insanity but expectations are low. "Microsoft Partners With Tierion to Develop Immutable Blockchain For Identities" Gotta get me some immutable blockchain For identities! Microsoft and other tech firms distribute open letter on immigration And since we can never escape this immigration ban thing, Microsoft, Amazon, Apple, Facebook, Google, and other tech firms are circulating an open letter to the Trump administration explaining why his immigration ban is bad for business and, thus, the United States. "We share your goal of ensuring that our immigration system meets today’s security needs and keeps our country safe," a draft version... --- ### Azure Monitor: Logs and Saving Queries - Published: 2017-02-03 - Modified: 2024-12-18 - URL: https://petri.com/azure-monitor-logs-saving-queries/ - Categories: Azure - Tags: Azure, Cloud, Diagnostics, Event Logs, Security - Article Type: How To In this article, you'll learn how to view and filter activity and diagnostic logs in Azure Monitor and save your queries.   Azure Monitor is currently in preview and can be used to run searches against log information collected from resources across an Azure subscription. Alerts can also be triggered based on metrics that you define. In this article, I'll show you how to view and filter the activity log, save your queries, and view and enable diagnostic logs. Viewing Activity Logs and Saving Queries Let’s start by opening Azure Monitor and applying filters to find information about specific resources. To follow the instructions below, you’ll need an active Azure subscription. Log in to the Azure portal here using an administrator account for the tenant. In the portal window, click More services in the list of options on the far left. Type Monitor in the Filter box at the top of the panel, and click the star icon to the left of Monitor in the results to add it to the list of options on the far left of the portal. Click Monitor in the list of filtered results. Under EXPLORE in the Monitor - Activity log panel, click Activity log. In the Activity log pane, you can filter the view to find specific information. Leaving all the filter options set to their defaults, click Apply to see all the available logs. Activity Logs in Azure Monitor (Image Credit: Russell Smith) If you don’t get any results, you might need to change the Timespan filter option. I changed it from last hour to last month. Let’s... --- ### Why Free Windows 10 Upgrades in CSP Is Big News > Subscribers to Windows 10 Enterprise E3 now will get access to perpetual licensing for Windows 10 Professional. Find out why this is such a big deal. - Published: 2017-02-02 - Modified: 2024-09-04 - URL: https://petri.com/free-windows-10-upgrades-csp-big-news/ - Categories: Windows Client OS - Tags: Cloud Solution Provider, Credential Guard, CSP, Device Guard, licensing, upgrade, Windows 10, Windows 10 Enterprise, Windows 10 Enterprise E3, Windows 10 pro - Article Type: Opinion Find out why the recent changes to the licensing of Windows 10 Enterprise through the Cloud Solutions Provider (CSP) program is a big deal. In this post, I'd like to share with you why I believe that the recent changes to the licensing of Windows 10 Enterprise through the Cloud Solutions Provider (CSP) program is a big deal. Background I work for a Tier 2 CSP distributor – this means that we offer Microsoft's business cloud services to Microsoft partners, who then resell them to commercial customers – so I'm pretty familiar with some of the benefits and issues of the CSP program. CSP is a program aimed at commercial customers in the small-to-midsized enterprise (SME) market or larger customers with MPSA licensing that don't want to sign an enterprise agreement (EA), where they pay for what they use, for as long as they use it, on a month-by-month basis. Last September, Microsoft launched Windows 10 E3 in the CSP program. Microsoft's goal was to interest SMEs in the security features of the Enterprise edition: Credential Guard: Using hardware- and virtualization-based security, the LSASS process is hidden in an isolated virtual machine called a VSM; this protects against Pass-the-Hash or Pass-The-Ticket attacks where an intruder tries to harvest administrator access rights from a compromised machine. Device Guard: Code integrity policies dictate which applications are trusted by the operating system, helping against the flood of zero-day malware. AppLocker: You can create rules to define which programs and files a user can run. Also included in Windows 10 E3 is the ability to manage the user experience via Group Policy, which was removed from... --- ### Map Azure Templates Using ARMVIZ - Published: 2017-02-02 - Modified: 2024-09-04 - URL: https://petri.com/map-azure-templates-using-armviz/ - Categories: Cloud Computing - Tags: Automation, Azure, Azure Resource Manager, cloud computing - Article Type: How To Learn how to visualize Azure ARM templates using an online tool called ARMVIZ. In today's Ask the Admin, I'll show you how to visualize Azure ARM templates using an online tool called ARMVIZ. Apps in the Azure cloud consist of one or more resources that can be grouped into logical containers (resource groups) and managed using Azure Resource Manager, or ARM as it’s sometimes referred to. Resource groups are automatically created when virtual machines, databases, and other resources are deployed, no matter whether they are added to the cloud fabric using the Azure management portal, PowerShell, or via a Rest API. Additionally, they allow apps to be managed holistically, for the purposes of monitoring, access control, billing, and other administrative operations. An Azure ARM template visualized using ARMVIZ (Image Credit: Russell Smith) For more information on Azure Resource Manager and resource groups, see What are Microsoft Azure Resource Groups? on the Petri IT Knowledgebase. Although the resources required for an app can be provisioned one-by-one via the management portal, Microsoft provides a series of templates on GitHub for deploying commonly used apps, where all the necessary resources are provisioned in one operation. There are templates for deploying Remote Desktop Services (RDS) farms, SharePoint farms, Active Directory forests, and a host of other configurations. For more information about deploying apps in Azure using templates, see Deploy a Remote Desktop Services Farm in Azure on Petri. A good JSON editor, such as that included in Visual Studio, will help you understand the component parts of each template and the resulting... --- ### Google’s Cloud Platform Pushes Further Into Azure Territory - Published: 2017-02-02 - Modified: 2024-09-04 - URL: https://petri.com/googles-cloud-platform-pushes-further-into-azure-territory/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Azure, Google, Google Cloud Platform, Microsoft, News - Article Type: News Google is moving further into Microsoft's Azure territory with new SQL features for the enterprise. Microsoft, Amazon, and Google are all fighting for a piece of the mutli-billion dollar IT budget pie. While on-premises deployments are not going away anytime soon, cloud spending has been growing at double and triple digits rates for Microsoft and Amazon. Google, who offers its Google Cloud Platform (GCP), said last year that the company would be building out twelve new data centers and is investing billions into becoming a serious enterprise competitor. This week, the company announced further expansion of supporting Windows on GCP with the hope to attract new users to its cloud platform. Google is bringing pre-configured images for Microsoft SQL Server Enterprise and Windows Server Core to its cloud platform. In addition, the company has announced support for SQL Server Always On Availability Groups and persistent disk snapshots integrated with Volume Shadow Copy Service (VSS) on Windows Server. For Google customers, this is obviously good news as it makes it easier to use one of the industry-standard database tools and Microsoft should not be upset by this news as they still earn revenue from licensing the software. Even if you are not using GCP but use Azure or AWS, this is also good news as it gives the industry more options about where to run SQL server which, if this service grows significantly, can put a negative pressure on cloud pricing and make theses service more affordable for everyone. As to why you might choose GCP over Azure and AWS, for those who use containers, Google’s Kubernetes... --- ### How Background Office 365 Processes Cause Confusion > Office 365 background processes sometime reveal too much to end users. Like strange user names as document owners or odd system accounts in audit events. - Published: 2017-02-02 - Modified: 2024-09-04 - URL: https://petri.com/office-365-processes-cause-confusion/ - Categories: Microsoft 365, Office - Tags: audit log, Delve, Office 365, SharePoint Online, system maintenance Background processing usually remains hidden from end users. No need exists for a user to understand what maintenance goes on under the covers of the service. Office 365 delivers service with no fuss to its users, but recently I have noticed some instances when background processes have made themselves felt. Although these are not serious issues, they are a worrying sign of a lack of attention to detail. Some Fraying Edges in the Office 365 service Typically, system designers attempt to keep background processing hidden from end users. No need exists for a user to understand how server maintenance happens or what needs to be done to ensure databases stay in good health. Office 365 usually delivers service with no fuss to its users, but recently I have noticed some instances when background processes have made themselves felt. Although these are not serious issues, they are a worrying sign of a lack of attention to detail. SharePoint’s App Since mid-November, I have been complaining to Microsoft about the way that “app@sharepoint” shows up in Delve as the author of many documents (Figure 1). I was told that the problem was fixed in early December, but it came back and has remained constant since. Figure 1: Odd app@sharepoint document owners – at least, according to Delve (image credit: Tony Redmond) What Microsoft Support Says My tenant is not the only one affected by the problem. I have heard from many others who experience the same issue, including several who have reported the issue to Microsoft Support. One response received from Microsoft Support and reported on the Microsoft Tech Community is: “The Account app@sharepoint is related to the SharePoint Applications (Auditing logs/Virus), it is a system account, belongs to the SharePoint Farms infrastructure, it was created to run on all Site Collections/Personal sites to collect auditing information. When the user provides some changes for... --- ### SharePoint Podcast Episode #324 -- My Good Sweatpants > In this SharePoint Podcast MVPs Shane Young and Todd Klindt discuss using PowerShell to manage O365 domain, WMF 5.1, StaffHub, and FastTrack. - Published: 2017-02-01 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-episode-324-good-sweatpants/ - Categories: Microsoft Azure, Office, PowerShell, SharePoint - Tags: Azure, FastTrack, Office 365, PowerShell, SharePoint, Staffhub - Article Type: News, Opinion Todd and Shane talk about Microsoft FastTrack and all of the great services to help you move from on-prem to Office 365, StaffHub, Windows Management Framework 5.1, and do some good ole fashion whining about the client-side object model (CSOM). Yes, those sweatpants. This episode starts with some very important topics; my sweatpants and Todd's birthday. But don't worry, eventually, executive producer Lori Gowin applies the cattle prod and we get focused. With our newfound focus, we discuss using PowerShell to work with your SharePoint Online, Office 365, and Azure domains. We then manage to stay on topic talking about Microsoft FastTrack and all of the great services to help you move from on-prem to Office 365. We round out the show with a discussion of a new product called StaffHub, a quick blurb on the Windows Management Framework 5. 1, and some good ole fashion whining about the client-side object model (CSOM). So if you can power through the beginning, it turns out to be a pretty content heavy show. https://www. youtube. com/watch? v=xv4Uv1YNEWY Links from this show: Richard Lyon on Twitter www. pointgowin. com/tkcharity How to Add a Domain to Office 365 and Azure using PowerShell FastTrack expands to support Windows 10, Dynamics 365, and Microsoft Teams what FastTrack is Microsoft StaffHub WMF 5. 1 Released Puppy Training with our SharePoint book PowerShell 101 with Shane If you enjoy the show, then you can subscribe to the show using the audio or video RSS feed. You can also join the show live at 5 PM ET every Monday. There is a Slack support group, even. Check out the podcast homepage for more info on how to join the hooligans. You can reach us on Twitter @Toddklindt or @ShanesCows.  Be sure to check out Todd’s blog and me on YouTube without Todd to hold... --- ### iPhone 7 Powers Apple to Another Blockbuster Quarter - Published: 2017-02-01 - Modified: 2024-09-04 - URL: https://petri.com/iphone-7-powers-apple-another-blockbuster-quarter/ - Categories: Mobile - Tags: Apple, iPhone, News - Article Type: News Forget the naysayers: Apple has delivered another blockbuster quarter on the back of its most successful iPhone launch ever. Forget the naysayers: Apple has delivered another blockbuster quarter on the back of its most successful iPhone launch ever. Most interesting, perhaps, Apple has also revealed its next big product offering. And it's not a tablet, watch, or another hardware device; its the firm's services business, which rocked to over $7 billion in revenues in the quarter. And Apple now expects this business to double in four years. "We’re thrilled to report that our holiday quarter results generated Apple’s highest quarterly revenue ever, and broke multiple records along the way," Apple CEO Tim Cook said in a prepared statement. "We sold more iPhones than ever before and set all-time revenue records for iPhone, Services, Mac and Apple Watch. Revenue from Services grew strongly over last year, led by record customer activity on the App Store, and we are very excited about the products in our pipeline. " Apple's incredible results---net income of $17. 9 billion on record revenues of $78. 4 billion---have completely rewritten the script on what analysts were predicting from the company. Though its net income was a bit lower than the same quarter a year earlier, Apple beat all expectations, financial and otherwise. The most stellar result, of course, came from iPhone. Apple launched the iPhone 7 and 7 Plus in the quarter, and the new phones delivered to the tune of 78. 3 million units sold, up from 75 million in the year-ago quarter. That's doubly impressive given that the iPhone 7 family is just yet another minor... --- ### Leveraging OneNote: Getting Familiar with Outlook Tasks > OneNote is a great note taking tool, but it also works with Outlook Tasks to set reminders and delegate work. Keep your projects on track with tasks. - Published: 2017-01-31 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-getting-familiar-outlook-tasks/ - Categories: Microsoft 365, Office, Office 2016, Uncategorized - Tags: Leveraging OneNote, Outlook, Outlook Tasks - Article Type: How To Outlook Tasks is a tool you can use to set reminders and track tasks in OneNote with Outlook. Learn how to use this dynamic feature. For all the benefits of OneNote, it can be painfully motionless. For simple note-taking this is good; if you put something on a page, it will be there when you need it. Sometimes you need more help retrieving your notes at the right time. OneNote can be a very useful tool for managing your mini projects, but the lack of automation can make the project management tasks painfully manual. The only dynamic element of OneNote is Outlook Tasks. How to Start Using Outlook Tasks Outlook Task Drop-Down Menu A task tracking feature of Microsoft’s email program, Outlook Tasks is a tool you can use to set reminders and track tasks in OneNote with Outlook. Setting an Outlook Task is easy. To make a new task in OneNote, first place your cursor next to the content you want to link to the task. This will link to whatever you want: a page title, a paragraph, photo, table, etc. Then in the Tags group, click the flag icon to bring down a drop-down menu to set the reminder date. Clicking Custom opens an Outlook window, which enables the Outlook Task to be detailed, delegated, edited, and more. All your Outlook Tasks will be collected and listed in Outlook (not OneNote) under the Task pane. Here you can review, sort, complete, edit, create, and view all your tasks. The default sort method is by date, putting the Tasks in order by due date. Your Tasks that have a red... --- ### Microsoft Joins Suit Against Immigration Ban - Published: 2017-01-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-joins-suit-immigration-ban/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft has joined a Washington State lawsuit against a U.S. presidential Executive Order on immigration. The ban is unconstitutional. Microsoft has joined a Washington State lawsuit against a presidential Executive Order on immigration. As Attorney General Bob Ferguson notes, the immigration ban "violates the U. S. Constitution’s guarantee of Equal Protection and the First Amendment’s Establishment Clause, infringes individuals’ constitutional right to Due Process and contravenes the federal Immigration and Nationality Act. " "No one is above the law, not even the President," Mr. Ferguson said. "And in the courtroom, it is not the loudest voice that prevails. It's the Constitution. " Microsoft isn't the only Washington State-based corporation to support the lawsuit: Amazon and Expedia have both signed on as well. But the issues are the same for each: President Trumps' Executive Order has materially impacted their operations and their employees. Trump triggered worldwide chaos and alarm when he signed the order barring citizens of seven Muslim-majority countries from entering the United States. The order also suspends the admission of refugees into the United States and indefinitely suspends the previous Syrian refugee program. The order is, as Mr. Ferguson and others have pointed out, illegal. And when acting U. S. Attorney General Sally Yates refused to enforce it for that reason, she was summarily dismissed by the Trump administration. A federal judge in Brooklyn has also issued an order for an emergency motion for Stay of Removal because the Executive Order "violates Due Process and Equal Protection rights guaranteed by the United States Constitution. " Mr. Ferguson's suit goes further than this, Washington State says, because it is broader... --- ### Using the Office 365 Connector Incoming WebHook to Post Service Health Information > The Incoming WebHook connector for Office 365 can be used to transmit information from many different sources to Groups or Teams, with a little PowerShell. - Published: 2017-01-31 - Modified: 2024-11-19 - URL: https://petri.com/office-365-connector-incoming-webhook/ - Categories: Microsoft 365, Office, PowerShell - Tags: Connector, Microsoft Teams, Office 365 Groups, PowerShell, service health, webhook - Article Type: How To Office 365 Connectors provide a means to connect network data sources such as Twitter, Trello, and RSS feeds to Office 365 Groups and Microsoft Teams. The out-of-the-box connectors work well, but there’s nothing like being able to process your own data, which is exactly what the Incoming Webhook connector allows you to do. In this example, we grab some Office 365 service incident information and post it to a group. All a mere matter of writing some PowerShell code. Exploiting Office 365 Connectors for Groups and Teams Office 365 Groups and Microsoft Teams both support Connectors, which allow cards representing information drawn from a wide range of network data resources to be created in group conversations or team chats. A card holds a snippet of information extracted from a network data source, like Twitter or an RSS feed for a blog. They’re not intended to be full extracts, such as the complete text of a blog post. Instead, cards are there to notify users about events. Some cards include methods, like a hyperlink, to bring users to the original source. Connector sources The set of network sources that Connectors support is now over 90, including those featured on project activities (Trello, Asana, and Wunderlist), customer relationships (Salesforce, Dynamics 365, and Zendesk), news (Bing News, Twitter, and RSS feeds), and developer tools (GitHub and Visual Studio). In addition, an “Incoming Webhook” connector is available as a generic link to allow developers to fetch data from other services to an Outlook group. Programmers can use the webhook to create a link to a group for a company-specific system or some other network data source for which a connector does not currently exist. Connecting one of these sources to a group or team is simple. Use OWA or a Teams client to select the source to which you want to connect, give the necessary credentials to authenticate to the data source, find the data you want to extract, and let... --- ### Deploy a Remote Desktop Services Farm in Azure - Published: 2017-01-31 - Modified: 2024-09-04 - URL: https://petri.com/deploy-remote-desktop-services-farm-azure/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Remote Desktop Services, Windows Server 2016 - Article Type: How To Learn how to quickly deploy a Remote Desktop Services (RDS) farm in Microsoft Azure. In today's Ask the Admin, I'll show you how to quickly deploy a Remote Desktop Services (RDS) farm in Microsoft Azure. One of the great benefits of cloud computing is that all the required components of an app can be automatically deployed simply by providing Azure with a template, no matter how large, small, or complex the solution. So, although deploying an RDS farm in Azure seems like it should be a very complex task, with the help of a template, we can get a farm up and running in a matter of minutes, and that’s what I’m going to show you how to do in this article. For more information on Azure Resource Manager and resource groups, see What are Microsoft Azure Resource Groups? on the Petri IT Knowledgebase. And for further details on RDS deployment models, see Remote Desktop Services Deployment Options in Windows Server 2012 R2. Microsoft provides a series of templates for deploying RDS farms on GitHub. I’m going to use the Basic RDS farm deployment template, which you can find here. The template deploys virtual machines (VMs) with Active Directory domain controller and DNS roles, an RD Connection Broker and RD Licensing Server with per-user licensing, an RD Gateway, and a customizable number of RD Session Hosts. Deploy an RDS farm in Azure Before you can complete the steps below, you’ll need to have an active Azure subscription. If you don’t have one, you can sign up for a free trial here. To see... --- ### Microsoft’s Heading Down The Windows RT Path With Windows Cloud - Published: 2017-01-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-heading-windows-rt-path-windows-cloud/ - Categories: Windows 10 - Tags: Windows 10, Windows Cloud - Article Type: News Microsoft's upcoming Windows Cloud OS appears to follow the same path as Windows RT but will this SKU succeed the second time around? On Friday, Microsoft released a new build of Windows 10 to Insiders and tucked away in the build are references to a new SKU of Windows called Cloud. While the details are still coming together about the operating system, a few more bits of information have surfaced. Windows Cloud is a version of Windows 10 that will only be able to run UWP (Unified Windows Platform) apps that are installed from the Windows Store, according to Mary Jo Foley. If this sound familiar, that’s because Windows RT functioned in a similar way. Further, it looks like ‘Cloud’ is simply just a name and this operating system, as Foley notes, has little to do with a cloud-streamed operating system. The big question is how will Windows Cloud differentiate itself to make sure that this iteration is a success and not another black mark on the company’s attempt to streamline Windows like in the recent past. Microsoft’s Windows Store has come up short when it comes to quality applications. The company has tried many different avenues to get developers to either bring their iOS/Android apps to the Windows Store or even port older x86 apps but so far, it has been a slow crawl forward for the Windows store. Seeing as Microsoft wants to move to a version of Windows that will only run these apps means the store needs to fulfill all the needs of the user but that may be a tough task to achieve. For starters, based on what... --- ### Microsoft Adds DHCP Tools to RSAT for Windows 10 - Published: 2017-01-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-dhcp-tools-rsat-windows-10/ - Categories: Windows Server - Tags: DHCP, RSAT, Windows 10, Windows Server 2016 - Article Type: Overview Install the RTM version of the Remote Server Administration Tools for Windows 10. In today's Ask the Admin, I take another look at Remote Server Administration Tools (RSAT) for Windows 10 and what's changed since the initial release in August 2015. The Remote Server Administration Tools for Windows 10 have been available since August 2015, but although not officially labeled as such, the tools seemed to be a preview, as some consoles, such as DHCP, were missing and others didn’t work as expected. When Windows Server 2016 officially launched in October 2016, Microsoft made available the RTM version of Remote Server Administration Tools v1. 2 for Windows 10 around the same time, and can be downloaded from Microsoft’s website here. Windows 10 1607 -- or the Anniversary Update as it’s sometimes referred to -- is equivalent to Windows Server 2016, which means RSAT v1. 2 won’t run on earlier versions of Windows 10 because the tools are OS specific. Despite the dependency on Windows 10 1607, RSAT isn’t limited to managing Windows Server 2016, and, like older versions, it can be used to manage previous versions of Windows Server. Although it’s possible to install RSAT v1. 2 on Windows 10 1507 and 1511, many of the tools won’t work properly, so you have been warned. Additionally, if you upgrade from an earlier Windows 10 build to the Anniversary Update, RSAT will be removed if it was previously installed to prevent compatibility issues. And unlike in Windows 7, once the tools have been installed you don’t need to manually enable them. But that’s... --- ### Windows 10 Cloud SKU Shows Up In Latest Insider Build - Published: 2017-01-28 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-cloud-sku-shows-latest-insider-builds/ - Categories: Windows 10 - Tags: News, Windows 10, Windows Cloud - Article Type: News Microsoft appears to be working on a new SKU for Windows called Cloud and early signs of its arrival have appeared in the latest Insider release. Earlier this week, I started the conversation around Cloud shell, a new and modernized version of Windows that Microsoft is constructing. While the details are a bit slim at the moment, another piece of evidence has surfaced in the latest Windows insider release that was pushed out to the public on Friday. Inside of build 15019, if you use a third-party tool called Product Key Configuration Reader, you are able to view the contents of a Pkeyconfig. xrm-ms file. I compared three versions of this file, after being tipped by a reader, one from build 15002, 1607 retail release, and 15019 and what you can see is that a new iteration of Windows is showing up in this file called Cloud and Cloud N. While not fully conclusive, this information does point to the fact that Microsoft is toying with the idea of a new SKU of Windows called Cloud. As for all the details around this version of Windows, we may have to wait until the company’s Build conference in May to learn more. Or, seeing as this information is starting to show up in builds shipped to Insiders, more information may arise as each new build is released. For those who may not be familiar, N versions of Windows, such as Windows 7 N, are iterations of the OS that ship without Windows Media player and its associated technologies as part of the installation package. This edition exists (so does KN) because of regulations set by the European Union and... --- ### How to Reset Default Security ACLs in Windows - Published: 2017-01-27 - Modified: 2024-09-04 - URL: https://petri.com/reset-default-security-acls-windows/ - Categories: Windows Server - Tags: Security, Windows Server - Article Type: How To Learn how to reset Windows Server security to default settings. In today's Ask the Admin, I'll show you how to reset security ACLs in Windows to their defaults using the secedit tool. If you’ve ever been in a situation where Windows Server exhibits strange behavior, or even worse, something has stopped working completely, you might have traced the issue to changes in security permissions on files, folders, or registry keys. Access control lists (ACLs) determine access to the filesystem and registry and can be changed manually, using Group Policy, or other tools, and untested modifications to default security settings can prove catastrophic. Check out this article on Petri about how to modify access control lists using icacls if you want to work with individual files. Prevention is better than cure, so adhering to security best practices is the best way to ensure that unwanted changes don’t cause any nasty surprises in your production environment, such as not granting IT staff permanent administrative access to servers and implementing a solid change control process. But in cases where those measures have either failed or were not present to protect your systems, it might be necessary to reset permissions to their out-of-the-box defaults. The method I’m going to show you in this article resets filesystem and registry ACLs to their defaults. Production systems are rarely configured without significant changes to the OS defaults, so applying a mass rollback of ACLs is likely to cause some issues. But in a lab environment, you might decide it’s worth the risk. Back up and test a restore operation... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (January 2017) - Published: 2017-01-27 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-5/ - Categories: Cloud Computing, Microsoft 365, Windows Client OS, Windows Server - Tags: News - Article Type: Opinion Because there's nothing quite like the bitter taste of Starbucks coffee, this edition of Short focuses largely on Microsoft's quarterly financial results. Because there's nothing quite like the bitter taste of Starbucks coffee, this edition of Short focuses largely on Microsoft's quarterly financial results. Note: As Brad reported last night, Microsoft posted its results for its second quarter of fiscal 2017, which ended December 31. The software giant recorded net income of $5. 2 billion on revenues of $24. 1 billion, beating estimates. This edition of Short Takes will dive a bit deeper into the results, with some of my Twitter quips as interstitials. Yes, I am that lazy. ---Paul Paul, on Twitter: "Breaksclusive: MSFT earnings 'not materially impacted' by Satya Nadella's part-time job on Starbucks' board. " Microsoft earnings: Cloud posted the biggest gains Microsoft's saw quarterly revenues of $6. 9 billion in Intelligent Cloud, a new record. Azure was obviously a big contributor, with 93 percent year over year (YOY) revenue growth, leading the division to an 8 percent gain, despite the 4 percent drop-off in Enterprise Services revenues. Azure compute usage is double from one year ago, Microsoft said. And even server products revenues are up, by 5 percent, thanks largely to premium server SKUs. Paul, on Twitter: "'Transformation' is today's Microsoft drinking game key word. " Microsoft earnings: Surprise, Windows did great While Microsoft's Ministry of Silly Names---sorry, More Personal Computing---posted a revenue drop of 5 percent to $11. 8 billion---thanks, Windows phone---but here's the big surprise of the quarter: Windows did great, and much better than expected, on both consumer and commercial. Satya Nadella noted that the consumer PC market was... --- ### Using Virtual Desktops in Windows 10 - Published: 2017-01-27 - Modified: 2024-09-04 - URL: https://petri.com/using-virtual-desktops-windows-10/ - Categories: Windows Client OS - Tags: Virtual Desktops, Windows 10 - Article Type: How To Use virtual desktops in Windows 10 to improve productivity. I last visited virtual desktops in Windows 10 when the OS was still in preview. But now it's time to look at this feature again to see how it's matured since initial conception. I’ve always considered virtual desktops to be a bit of a gimmick. Whether it be add-on software, such as Stardock’s Virtual Desktops, or the built-in virtual desktop feature in Windows 10. And while I’ve never integrated virtual desktops into my workflow, I know that others have. So, I wanted to revisit virtual desktops in Windows 10 to see if there were any significant changes since the last time I looked. What’s Changed? Microsoft has made some small but important changes to virtual desktops since the feature was in preview. The firstchange is that when an app that is pinned to the taskbar is open on another desktop, you don’t see any indication of that. In preview, Windows would mark the app as open in the taskbar, even if it wasn’t visible on the active desktop. Task View in Windows 10 Anniversary Update (Image Credit: Russell Smith) Microsoft has cleaned up Task View, making it more aesthetically pleasing, and there are now more options in the context menu when you right-click an app preview, such as the ability to snap apps left and right. But probably the most significant change is that it’s now possible to have multiple instances of Edge open on different virtual desktops. In preview, only one instance of... --- ### Microsoft Adds Another Billion to Commercial Cloud Revenues > Microsoft's FY17 Q2 results chart another step to achieving a $20 billion run rate in commercial cloud products. Office 365 shows more growth. - Published: 2017-01-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cloud-grows-again/ - Categories: Cloud Computing, Microsoft 365, Microsoft Azure, Office - Tags: Azure, FY17 Q2, Linkedin, Microsoft, Office 365, Outlook, results, revenue - Article Type: News Microsoft’s FY17 Q2 results posted on January 26 boasted a 49% year-over-year growth in commercial Office 365 revenues, contributing to an annualized run rate for commercial cloud products that now “exceeds” $14 billion. The number of cloud users has grown again, underlying the continuing movement of work to the Office 365 and Azure. Fourteen Billion of Cloud Microsoft’s FY17 Q2 results posted on January 26 boasted a 49% year-over-year growth in commercial Office 365 revenues, contributing to an annualized run rate for commercial cloud products that now “exceeds” $14 billion. Commercial cloud products include Office 365 and Azure and other cloud products. Revenue for the segment that hosts Office 365, Productivity and Business Processes was $7. 38 billion, a year-over-year increase of 12% in constant currency. Operating income for the segment was $3. 26 billion. The recent strength of the U. S. dollar is obvious. in some results. For example, Productivity and Business Processes dropped $108 million through currency fluctuations. All those Office 365 subscriptions from around the world deliver less when converted to dollars! Office 365 Progress In terms of users, Microsoft said that Office 365 commercial seats grew 37% in the last year. CEO Satya Nadella said that Office 365 commercial seats had grew 37% year-over-year. Based on the reported April 2016 number of 70 million monthly active users, you could reckon the December 2016 number at around 96 million. A similar growth will take Office 365 seats to approximately 130 million seats by the end of 2017. Nadella cited the recent introduction of the Teams and StaffHub applications as examples of how Microsoft is “changing the nature of work with Office as the universal toolkit to help. ” The other products in the Productivity and Business Processes segment are consumer Office 365 subscriptions (now over 24. 9 million), Dynamics 365, and LinkedIn, which... --- ### Microsoft Beats Estimates For Q2 With Revenue of $24.1 billion - Published: 2017-01-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-beats-estimates-q2-revenue-24-1-billion/ - Categories: Main - Tags: Earnings, Microsoft, News - Article Type: News Microsoft has released its second quarter earnings (first quarter calendar) with revenue of $24.1 billion GAAP, and $26.1 billion non-GAAP; this tops analysts estimates for the quarter. Microsoft has released its second quarter earnings (first quarter calendar) with revenue of $24. 1 billion GAAP, and $26. 1 billion non-GAAP, Operating income was $6. 2 billion GAAP, and $8. 2 billion non-GAAP, Net income was $5. 2 billion GAAP, and $6. 5 billion non-GAAP, which results in EPS of . 66 GAAP and . 83 non-GAAP. This beats Wall St expectations that had the company's projected revenue at $25. 28 billion and $0. 79 EPS. Seeing as Microsoft has recently closed its acquisition of LinkedIn, the company is reporting that LinkedIn contributed $228 million in revenue but reported operating income of $(201) million and a net income of $(100) million. During the quarter, Microsoft returned $6. 5 billion to shareholders in the form of share repurchases and dividends. Revenue in the Productivity and Business Processes was $7. 4 billion and increased 10% with Office commercial products and cloud services revenue increasing 5% thanks to Office 365 commercial revenue growth of 47%. Microsoft says that there are now 24. 9 million consumers using Office 365 and that there are 65 million monthly active devices using Office on iOS and Android. Intelligent Cloud was $6. 9 billion which is an increase of 8% from the previous year with Azure revenue increasing 93%; Enterprise Services revenue dropped by 4%. Microsoft's More Personal Computing revenue decreased 5% to $11. 8 billion, Microsoft states lower phone revenue is the primary driver of the decline, but Windows OEM revenue did increase 5% during the period. Gaming revenue decreased 3% for the period with the company saying hardware sales were down but software and... --- ### Microsoft’s Cloud Shell Looks To Modernize Windows - Published: 2017-01-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-cloud-shell-looks-to-modernize-windows/ - Categories: Windows 10 - Tags: Cloud Shell, News, Windows 10 - Article Type: News Microsoft is working on a new shell for Windows that is internally being called Cloud Shell that looks to modernize Windows 10. Since the launch of Windows 10, Microsoft has been positioning Windows as a service, meaning the platform will receive frequent and substantial updates. When Microsoft first made the ‘as a service’ announcement, many assumed this to mean the company would move to a subscription model, much like it has done with Office 365 and for business, there is a new option to pay for Windows on a monthly basis, but it has also resulted in new features arriving for the OS every year. Microsoft is working on a new shell for Windows which is being referred to as Cloud Shell. While I don’t have all the details on the platform yet, it is being described as a new “lightweight iteration of Windows designed for the modern computing world” based on documents I have seen. The timeline for introduction is expected in 2017 but no firm date was given for its release or announcement. We have known for some time that Microsoft has wanted to modernize Windows and they previously tried (and failed) with Windows RT; it is possible that the company is going to reboot this effort. Further, this new cloud shell could be related to the company’s recently announced Windows on ARM version of its operating system that will show up this fall. Additionally, Cshell which has received quite a bit of attention around the web recently and Cloud shell do not appear to be related. Microsoft’s Windows Store and UWP framework appears to be part of Cloud Shell which may... --- ### OWA Search Now Supports Office 365 Groups > Microsoft has updated the OWA client to integrate searches of content stored in Office 365 Groups along with user mailbox data. - Published: 2017-01-26 - Modified: 2024-09-04 - URL: https://petri.com/owa-search-supports-office-365-groups/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Office 365, Office 365 Groups, owa, Search Foundation - Article Type: News Microsoft has long used OWA as the test-bed client for new features. After all, it's easy to update a web client. Now they've added the ability to integrate content stored in Office 365 Groups in OWA searches. It's a nice feature, as is the message digest for Office 365 updates that you can have sent to your mailbox. OWA’s Clever Searches In another example of how OWA continues to be the most innovative of all Office 365 clients, OWA now boasts the ability to search the conversations of the Office 365 Groups to which a user belongs. Microsoft is rolling out the new capability to First Release tenants now with the intention that the feature will be available throughout Office 365 by the end of January 2017.     Although search supports folders in the archive mailbox, OWA searches usually focus on content stored in folders in the primary mailbox. The “People” option is also available, which is just a quick way to find messages from a specific person with whom you have communicated via email. Now you can add “Your Groups” to the mix. You can use all the search qualifiers that you’d expect, like specifying “Sent:01-Dec-2016” to find items delivered to groups on that date. Search Magic Search magic is possible because the Search Foundation indexes all the information stored in Exchange Online mailboxes, including the group mailboxes used by Office 365 Groups. Because the content is indexed, it can be searched. The content searches created and managed through the Security and Compliance Center also use the Search Foundation indexes to include Office 365 Groups in eDiscovery cases. Figure 1 shows an example. In this case, I’ve opted to search for “ExchangeServerPro” to find items relating to MVP Paul Cunningham. Search allows me to look through the conversations held in the 50 groups where... --- ### Creating JSON Templates From Azure Resource Groups > This post provides step-by-step instructions on how to export Azure Resource Manager (ARM) templates from an existing resource group deployment. - Published: 2017-01-25 - Modified: 2024-09-04 - URL: https://petri.com/creating-json-templates-azure-resource-groups/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Portal, Azure Resource Manager, Resource Group, Resource Manager, Template, Visual Studio, VS Code - Article Type: How To Find out how to use the Azure portal to save JSON templates from an existing resource group. This post will show you how to use the Azure portal to save JSON templates from an existing resource group. Saving a Resource Group as a Template It is possible to manually deploy a service into a resource group and then create a JSON template from the contents of the resource group; you can use this template as the basis for a new service, or you can create more instances of this service; for example, development, testing, production, and diagnostics.     The process for getting the JSON is very simple. Browse to the resource group in the Azure Portal and select Automation Script. Note: The Azure Portal is constantly changing, so the names of entries in the GUI might (I should say “will”) change after we publish this article. The JSON that will duplicate the contents of the resource group is displayed here. You can also see the Parameters JSON file, as well as the CLI, PowerShell, . NET and Ruby options for deploying the JSON template. Viewing the JSON of a resource group There are some interesting actions that you can perform from here: Download: Get a zip file your JSON deployment. We’ll return to this later in the post. Add to Library: We’ll return to this option where you can save the JSON file in Azure. Deploy: You can create another copy of your service into another resource group. This option can work, but it’s messy if you do... --- ### Add a Taskpad to a Custom MMC - Published: 2017-01-25 - Modified: 2024-09-04 - URL: https://petri.com/add-taskpad-custom-mmc/ - Categories: Windows Server - Tags: Active Directory, microsoft management console, taskpad, Windows Server - Article Type: How To Learn how to create a new taskpad view in a Microsoft management console (MMC). In today's Ask the Admin, I'll show you how to perform advanced customization of a Microsoft management console (MMC) by adding a taskpad. In Create Custom MMC Consoles for Managing Windows Server on the Petri IT Knowledgebase, I showed you how to create a custom MMC to get quick access to all the tools you use on a regular basis in one console. But MMC aren’t always ideal for help desk staff because they can be complicated to navigate.     Active Directory Users and Computers (ADUC) gives users a complete view of the directory, even if the logged in user doesn’t necessarily have full access to all the objects. But taskpads allow IT to create highly customized MMCs where help desk staff get targeted access to the operations they’re allowed to perform. If we combine this with the ability in Active Directory (AD) to delegate permissions, we get better security and usability. For more information about delegating control in AD, see Delegate Permission to Reset AD User Account Passwords on Petri. Add a Taskpad View to an MMC In the instructions that follow, I’m going to create a taskpad view that allows help desk staff to create a new AD user account when they click on the domain in ADUC. You’ll need to perform the tasks below on a device that has the Active Directory GUI management tools installed. In your custom MMC, click Active Directory Users and Computers in the top of the left pane. Select New... --- ### Dell Takes On Surface Hub With 55in and 86in Displays - Published: 2017-01-25 - Modified: 2024-09-04 - URL: https://petri.com/dell-takes-surface-hub-55in-86in-displays/ - Categories: Hardware - Tags: Dell, Display, News - Article Type: News Dell has released two new displays that are set to challenge the Surface Hub but there are a few notable differences you should be aware of before purchasing. Microsoft’s Surface Hub has been a huge success for the company. The company initially sold out of its inventory and over the summer had long lead times for delivery of these devices. Google recently announced a device that is similar to the Surface Hub and now Dell is diving into this space as well with the company announcing new 55in and 86in displays. While Microsoft’s product is priced at $8,999 and $21,999, Dell is selling its 55in for “below $5,000” and the 86in will cost less than $11,000. Dell says that these devices support up to 20 touch points and support writing on the display with the included passive styluses. These devices do cost significantly less than what Microsoft is offering but there are some notable differences. For starters, these 4K displays are just that, a display while Microsoft’s devices are a complete package; meaning it includes a computer to drive the display, webcams and microphone arrays too. This is not Dell’s first foray into this territory but these new devices show that there is a need in the marketplace for large displays in the classroom and conference centers. With Dell, Microsoft and Google all taking slightly different approaches about how to fill this requirement, it gives the consumer several paths to choose from to find a solution right for their need. --- ### Microsoft Wins Another Victory in Federal Email Case - Published: 2017-01-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-wins-another-victory-federal-email-case/ - Categories: Cloud Computing - Tags: News - Article Type: News A federal appeals court refused to reconsider a previous decision in which the U.S. DOJ was prevented from forcing Microsoft to hand over customer data stored overseas. On Tuesday, a federal appeals court refused to reconsider a previous decision in which the U. S. Department of Justice (DOJ) was prevented from forcing Microsoft to hand over customer data stored in an overseas data center. The victory is a huge one for Microsoft, but also for cloud computing in general. “We welcome today's decision,” Microsoft president and chief legal officer Brad Smith in a statement. "We need Congress to modernize the law both to keep people safe and ensure that governments everywhere respect each other's borders. " As you may recall, the DOJ sued Microsoft in December 2013 after the software giant refused to turn off data in a customer's email account stored in a data center in Dublin, Ireland. Microsoft argued that because the data was stored outside the United States, it was outside of the DOJ's jurisdiction. The DOJ disagreed, noting that the contents of the email account were under Microsoft's control regardless of their physical location. And that as a U. S. -based company, Microsoft was indeed under its jurisdiction and subject to legal U. S. warrants. Microsoft lost the case in court in July 2014, with a U. S. district judge taking the DOJ's side. Microsoft immediately promised to appeal, with Mr. Smith noting at the time that "under well-established case law, a search warrant cannot reach beyond U. S. shores. " So in early September 2015, the case started its way through the Second U. S. Circuit Court of Appeals in Manhattan. And in July 2016, Microsoft won... --- ###  Microsoft’s Adding New Features To OneDrive For Business - Published: 2017-01-24 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-adding-new-features-onedrive-business/ - Categories: Microsoft 365 - Tags: News, OneDrive - Article Type: News Microsoft is updating OneDrive for Business with several new features and is also adding a stand-alone Mac application. Microsoft’s OneDrive storage platform has become a critical component for the company’s Office 365 service and today the company is announcing several new features coming to OneDrive that will enhance collaboration and management of content. Specifically, these new features will make it easier to sync, share, and collaborate with the content that you are storing in OneDrive. If you use SharePoint Online team sites and OneDrive, Microsoft is enabling the ability to sync content between the two services. This sync includes files inside of Teams, OneDrive, folders that are shared, and this service works across both PC and Mac. This feature is a huge improvement for companies that use both services as it finally bridges the gap between these two online repositories of content. When it comes to syncing files, Microsoft is adding a new 'Activity Center' that will provide visibility into the process. This feature is coming to both PC and Mac; in addition, there is a new stand-alone Mac OneDrive client that works outside of the app store. To help IT admins manage their content, sync, and sharing capabilities, Microsoft is releasing an updated OneDrive admin center. This updated control center has several improvements including a new dashboard for more granular control for sharing, syncing, and storage. As Office 365 continues to expand, so will the usage of OneDrive for Business and these new features will enhance compatibility with older services like SharePoint. You can read more about the updates to the platform, here. --- ### Microsoft Expands In Germany, Remains In The UK - Published: 2017-01-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-germany-remains-uk/ - Categories: Cloud Computing, Microsoft Azure - Tags: Germany, Microsoft, News, UK - Article Type: News Microsoft is expanding its Office 365 presence in Germany while also saying that the company is committed to the UK market. It’s not a secret that Microsoft is a massive company with its operations reaching every corner of the globe. This week, Microsoft has stated that they are expanding their Office 365 presence in Germany and that they will not be altering their commitment to the UK. Microsoft’s Office 365 platform has been a huge success for the company and they are expanding its availability in Germany to address the needs of this highly regulated market. Specifically, Microsoft says that German customer data is stored at rest exclusively inside of Germany and that their new operation abides by the EU data protection regulations. This new region for Office 365 will give the company further traction in the EU and allow them to expand the reach of their productivity platform. Considering that Office 365 is frequently adding new features like Teams and Staffhub, the platform is a key driver of growth for Microsoft and is why the company is continuing to invest heavily in its expansion. Additionally, during the past twenty-four hours, there has been noise made about Microsoft possibly halting expansion of its UK data centers if Brexit creates additional taxes on imported computer hardware. This morning, the company released a statement saying that the company’s commitment before and after EU referendum vote remains unchanged and that Microsoft is not going anywhere. The statements which cast doubt on the company’s commitment in the UK was directly sidelined by this statement with Microsoft saying “The comments reported today by a Microsoft employee... --- ### SharePoint Podcast Episode #323 -- Brownies from California > The title sounds good so the show must be. Today the guys talk about SharePoint Online Conditional Access, PowerShell, and more. Check it out. - Published: 2017-01-24 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-episode-323-brownies-california/ - Categories: Office, PowerShell, SharePoint - Tags: artificial intelligence, PowerShell, Privacy, SharePoint - Article Type: News, Opinion Todd and Shane discuss SharePoint Online conditional access, PowerShell, Privacy Dashboard, an AI company, and trolling the patent filings. I don't know about you, but the title for today's show makes me hungry. Unfortunately, the show isn't really about one of my favorite foods. Instead, we cover a whole bunch of technology topics. SharePoint Online conditional access is pretty exciting and gets us all worked up. Then we have a couple of quick PowerShell segments before we get into our "Microsoft. com" segment. I would try to pretend we aren't fanboys, but that just wouldn't be true. Privacy Dashboard, an AI company purchased, and trolling the patent filings. All very fun.     Along the way, there is plenty of the usual shenanigans, including Todd moping about his football team losing. Pretty standard show that hopefully you will tune in and enjoy. https://www. youtube. com/watch? v=x0EnqqBkXLM Links from this show: SharePoint Online Conditional Access Using The PowerShell Test-NetConnection Cmdlet on Windows Software "Patch" Microsoft Privacy Dashboard Microsoft Buys an AI Company Microsoft Patents a Phone with Foldable Screen TK Birthday Charity Drive PowerShell 101 with Shane If you enjoy the show, then you can subscribe to the show using the audio or video RSS feed. You can also join the show live at 5 PM EST every Monday. There is a Slack support group, even. Check out the podcast homepage for more info on how to join the hooligans. You can reach us on Twitter @Toddklindt or @ShanesCows.  Be sure to check out Todd’s blog and me on YouTube without Todd to hold me down. --- ### Microsoft Mounts an Attack on Chromebooks in Education - Published: 2017-01-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-mounts-attack-chromebooks-education/ - Categories: Windows 10 - Article Type: News Microsoft today announced an initiative that will push back against Chromebooks in education. It involves a new version of Intune and inexpensive Windows 10 PCs for schools. Microsoft today announced an initiative that will push back against Chromebooks in education. It involves a new version of Intune and inexpensive Windows 10 PCs for schools. "At Microsoft, our mission is to empower every person on the planet to achieve more," Microsoft senior vice president Yusuf Mehdi explains. "For students, we are committed to enabling better learning and preparation for the future through software and devices built for the modern era. " To this end, Microsoft is offering a three-pronged approach that includes a new version of its Intune cloud management solution aimed at education, new advances in Windows 10 and other Microsoft software, and a set of inexpensive new partner PCs for schools. The collective offering is aimed squarely at Google's Chromebook, which has made big inroads in the U. S. educational market in particular. More specifically: Microsoft Intune for Education. This cloud-based application and device management service offers "easy setup and management in shared learning environments," Microsoft says. Intune for Education makes lets teachers assign and deploy any web apps and education apps from the Windows Store for Business to students, and it integrates with Office 365 Education. Windows 10. Microsoft's latest OS offering provides modern capabilities like Windows Ink, and more complete functionality than is possible with web-browser-based Chromebooks. Microsoft software. Microsoft has various software platforms that target education, including Office 365, Office and the OneNote Learning Tools, and Minecraft: Education Edition. Inexpensive new PCs for schools. Partners such as Acer, HP, JP. IK and... --- ### New Office 365 Admin Center Takes Over > The Office 365 Admin Center has received a face lift and the new version is deprecated from January 31, 2017. Does the new admin console any better? - Published: 2017-01-24 - Modified: 2024-09-04 - URL: https://petri.com/new-office-365-admin-center/ - Categories: Microsoft 365, Office - Tags: Admin Center, administration, console, Management, Office 365 - Article Type: News The advent of the New Year is a catalyst for change. One change that’s been coming for a while is the “new” Office 365 Admin Center. Now it’s time for the “old” to be swapped out and the “new” to be used everywhere. The change is good. At least, I think it is. New Office 365 Admin Center Reaches General Availability In a totally unsurprising move, Microsoft is retiring the old-style Office 365 Admin Center from January 31, 2017. The new-style Admin Center soon then be the only option for administrators to manage tenants. Well, that’s not actually true. As we’ve explored in the past, PowerShell is often needed to solve administrative challenges and get work done. In any case, the new admin console is now the default. That is, until it’s replaced by a new design. New Designs All Round The “old” Office 365 Admin Center is the second version. The first version appeared when Office 365 launched in June 2011 (Figure 1) and was based on the then-current look and feel of the 2010-generation Office servers, like Exchange 2010. This was unsurprising because the applications running inside Office 365 were lightly “cloudified” versions of Exchange, SharePoint, and Lync. Figure 1: The original Office 365 Admin Center (image credit: Tony Redmond) As Microsoft worked on the 2013 Office applications, they adopted the “metro” design language that favored large expanses of white space and a minimum of color. The look isn’t to everyone’s taste, but it is functional and works in many applications, including the now-deprecated variant of the Office 365 Admin Center (Figure 2) and Outlook Web App. Figure 2: The second Office 365 Admin Console (image credit: Tony Redmond) A New Service-Wide Approach The new Office 365 Admin Center (Figure 3)... --- ### Azure Security Center Adds Support for Windows Server 2016 - Published: 2017-01-24 - Modified: 2024-09-04 - URL: https://petri.com/azure-security-center-adds-support-windows-server-2016/ - Categories: Cloud Computing - Tags: Azure, cloud computing, Security, Windows Server 2016 - Article Type: News Microsoft adds support for Windows Server 2016 virtual machines (VMs) to its centralized solution for monitoring the security of Azure apps. Microsoft adds support for Windows Server 2016 virtual machines (VMs) to its centralized solution for monitoring the security of Azure apps. The Azure Security Center automatically alerts you if threats are detected on VMs, Azure resources, and third-party solutions running in the Azure cloud. But when Security Center reached general availability in mid-2016, there was no support for VMs running Windows Server 2016. But since then, Windows Server 2016 has also officially launched, and Microsoft has now added support for its latest server operating system.     Security Center’s free tier provides an overview of the security posture of your Azure apps or you can upgrade to the standard tier, for which there is a 90-day free trial if you need behavioral analysis and alerts for threats identified by intelligence collected by Microsoft from telemetry and well-established best practices. Microsoft’s data can be used to identify issues, such as missing updates and problems with OS configuration, and behavioral analysis can detect malicious activity. The Azure Security Center can monitor the following resources: Azure VMs Azure Cloud Services Azure virtual networks Azure SQL service Partner solutions integrated with Azure With this latest update, Security Center supports Azure VMs running Windows Server 2008 R2, 2012, 2012 R2, and 2016. Plus, several Linux distros, such as Ubuntu 12. 04 and later, and SUSE Linux Enterprise Server 11 and later. Here is the full list of Linux OSes supported by Azure Security Center: Ubuntu 12. 04, 14. 04, 16. 04, 16. 10 Debian 7, 8 CentOS 6. x,... --- ### Outlook Client Updates Stall the Focused Inbox > Microsoft released information about the client updates required to support the Focused Inbox feature inside Office 365. - Published: 2017-01-23 - Modified: 2024-09-04 - URL: https://petri.com/outlook-updates-stall-focused-inbox/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Android, Clutter, Focused Inbox, iOS, Outlook 2016, owa - Article Type: News On January 20, Microsoft unexpectedly updated their original blog post from July announcing the Focused Inbox with information about client updates to support the feature. The update contains some answers to questions why people have not been able to use the much-trumpeted feature. On January 20, Microsoft unexpectedly updated their original blog post from July announcing the Focused Inbox with information about client updates to support the feature. The update contains some answers to questions why people have not been able to use the much-trumpeted feature. The Demise of Clutter Focused Inbox gained momentum to overtake and replace Clutter as the preferred mechanism for sorting messages into important and unimportant views based on user acceptance for its implementation in the Outlook for iOS and Android clients. Clutter works, but users considered it difficult to train and use. Microsoft therefore made the decision to implement Focused Inbox in all clients within the Outlook family. Implementing the Focused Inbox Two parts have to come together to achieve the implementation. The roll-out of the Exchange Online components to support the Focused Inbox began for Office 365 First Release tenants in October 2016. At that time, OWA and the Outlook for iOS and Android clients were able to support the Focused Inbox. Originally, the plan was to have the feature fully deployed across Office 365 by the end of 2016. However, some bugs and other deployment difficulties, including client updates, intervened to delay the roll-out. Microsoft has now revised their plans and has released information about when support for the Focused Inbox will appear in the remaining Outlook clients (Table 1). No plans exist to backport the Focused Inbox to Outlook 2013 as support for the Office 365 ProPlus version of this application ceases on... --- ### Apple Sues Qualcomm for $1 Billion - Published: 2017-01-23 - Modified: 2024-09-04 - URL: https://petri.com/apple-sues-qualcomm-1-billion/ - Categories: Mobile - Tags: Apple, Qualcomm - Article Type: News Piggybacking on U.S. Federal Trade Commission complaint, Apple sued Qualcomm late Friday for $1 billion. Piggybacking on U. S. Federal Trade Commission complaint, Apple sued Qualcomm late Friday for $1 billion. The issue? Apple says it is owed $1 billion in rebates it obtained by choosing Qualcomm as its exclusive provider of certain mobile chips; these contracts were at the heart of the FTC lawsuit. But Apple says that Qualcomm withheld the rebates from it because Apple aided a South Korean inquiry against the firm; South Korea subsequently fined Qualcomm $850 million for its unfair patent licensing practices. And Apple has begun shopping around for alternative chip providers. "For many years Qualcomm has unfairly insisted on charging royalties for technologies they have nothing to do with," an Apple statement reads. "The more Apple innovates with unique features such as TouchID, advanced displays, and cameras, to name just a few, the more money Qualcomm collects for no reason and the more expensive it becomes for Apple to fund these innovations. " For its part, Qualcomm says the Apple claims are baseless. "Apple has intentionally mischaracterized our agreements and negotiations, as well as the enormity and value of the technology we have invented, contributed and shared with all mobile device makers through our licensing program," the Qualcomm retort notes. "Apple has been actively encouraging regulatory attacks on Qualcomm's business in various jurisdictions around the world, as reflected in the recent decision and FTC complaint, by misrepresenting facts and withholding information. We welcome the opportunity to have these meritless claims heard... --- ### What Is Active Directory Federation Services? - Published: 2017-01-23 - Modified: 2024-11-19 - URL: https://petri.com/active-directory-federation-services/ - Categories: Active Directory (AD) - Tags: AD, ADFS, Cloud, Security, Single Sign-On, Windows Server - Article Type: Overview In this Ask the Admin, learn how ADFS can be used for sharing identity information between business partners.   In this Ask the Admin, I'll provide an overview of Active Directory Federation Services (ADFS) and how it can be used to simplify identity management. Microsoft is big on identity-driven security, and its Federation Services component for Active Directory is now an integrated part of Windows Server. While trust relationships can be set up between AD domains and forests to allow sharing of network resources, ADFS provides secure sharing of identity information between federated business partners. For example, if a user in Org A needs to access a web app hosted by Org B, Org A authenticates its own user. The user provides their credentials to Org A if no open browser session has authentication information for the user, and a signed XML-document containing the user’s email address or login name, or "claim" is sent back to Org B’s web app. The claim is then mapped to Org B’s trust policy to establish whether the user should be provided with authorized access to the app. Federation or Trust? A federation trust is designed to enable efficient and secure online transactions between business partners over the public Internet. ADFS uses the standards-based WS-Federation protocol and SAML (Security Assertion Markup Language), and credentials are only exposed to the user’s local ADFS server. Because of the standards-based approach, ADFS can also be used with other federation platforms, such as IBM Tivoli, Novell Access manager, and Sun Open SSO. The SAML protocol is designed for secure Internet communication, performing lightweight and secure communications... --- ### Samsung Explains the Galaxy Note 7 Debacle - Published: 2017-01-23 - Modified: 2024-09-04 - URL: https://petri.com/samsung-explains-galaxy-note-7-debacle/ - Categories: Mobile - Tags: Samsung - Article Type: News In a press conference on Monday, Samsung finally explained its Galaxy Note 7 disaster. As expected, the underlying cause was the battery design. In a press conference on Monday, Samsung finally explained its Galaxy Note 7 disaster. As expected, the underlying cause was the battery design. Less expected, however, was news that a variety of different issues conspired to trigger similar disastrous results across different battery designs from two separate manufacturers. "The lessons of this incident are deeply reflected in our culture and process," Koh told reporters at a press briefing. "Samsung Electronics will be working hard to regain consumer trust. " Samsung launched its Galaxy Note 7 phablet in August 2016 after a rushed schedule in order to beat Apple's iPhone 7 to market. The device received overwhelmingly positive reviews and quickly became a best-seller for the company, offering features like iris-recognition sign-in, expandable storage, and IP68 water resistance. But the problems mounted quickly, with customers reporting that the handsets were catching on fire. Samsung tried to quietly address the issues by replacing phones without question, but by late August, the firm was forced to suspend shipments to certain markets. On September 2, Samsung suspended Galaxy Note 7 sales worldwide so it could exchange all of the devices it had already sold. By that point, less than 30 days into the device's lifetime, it was clear the battery was at fault. So Samsung's fix was to switch battery manufacturers and issue a software fix. But because of the fire hazard, the U. S. Federal Aviation Administration (FAA)---and, later, other similar regulatory bodies around the world---recommended that passengers should not turn on Note... --- ### Microsoft Expected To Layoff Additional Employees On Monday - Published: 2017-01-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expected-layoff-additional-employees-monday/ - Categories: Main - Tags: layoffs, Microsoft, News - Article Type: News On Monday, Microsoft is expected to layoff around 700 employees but these cuts are not related to the recent LinkedIn acqusition. Earlier today, I received a tip from a trustworthy source that stated Microsoft was expected to announce layoffs on Monday. Seeing as this is a sensitive subject and goes well beyond writing about unreleased products that I typically hear about, I refrained from posting anything. This evening, other sites are now hearing the same thing with layoffs expected to be announced next week and my sources are indicating that it is on the 23rd as HR has reserved a significant number of conference rooms on the company's campus. Other reports state that the count will be 700 and this figure is part of the previously announced layoffs of 2850 individuals worldwide; my sources also state that this number appears to be accurate. Earlier this year, Microsoft reported that it employed around 113,000 employees and with the acquisition of LinkedIn now complete, the number has climbed around 5500 or so. These cuts are not related to the acquisition of LinkedIn. Microsoft is constantly evaluating its internal operations and these cuts are not expected to have a significant impact on its operations.  With the additional overhead of its LinkedIn acquisition now complete, it would not be too surprising if there are further cuts as there is typically overlap with these transitions that result in unnecessary redundancy but nothing has been announced at this time. --- ### Paul Thurrott's Short Takes: January 20 - Published: 2017-01-20 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-january-20/ - Categories: Mobile - Tags: News - Article Type: Opinion Because I will never tire of the Galaxy Note 7 jokes, this edition of Short Takes looks at Microsoft's Windows 7 FUD, the PS4 continues to destroy the Xbox One, Samsung's explosive live explanation, and more. Yes, this is still a thing. Because I will never tire of the Galaxy Note 7 jokes, this edition of Short Takes looks at Microsoft's Windows 7 FUD, the PS4 continues to destroy the Xbox One, Samsung's explosive live explanation, and more. Microsoft: Windows 7 is too dangerous to use As a platform maker, Microsoft is put in the strange position of dumping on its older platforms in order to sell the latest version. But its latest strategy, which bizarrely involves spreading FUD about Windows 7, is perhaps a step too far. In a German language post to its Technet website, Microsoft this week warned that Windows 7 "provides higher operating costs," terrible support for modern hardware, and is "based on long-outdated security architectures. " Put more succinctly, Windows 7 "does not meet the requirements of modern technology, nor the high security requirements of IT departments. " Well, ain't that neat. Here's the thing. Windows 7 is fully supported for 10 years, with support ending in 2020, or three years from now. So, Microsoft, if you don't want companies to actually use your products for the support time frame you concocted, maybe it's time for you to re-evaluate the promises you make when these systems are new. Until that happens, businesses should feel free to continue using a system that is paid for, is still supported, and still works. Just a thought. "Google Uses Its Search Engine to Hawk Its Products" Sure. Microsoft does the same thing... --- ### Deploying a JSON Template in Azure Using a Parameters File > This post will show you how to deploy an JSON template to Azure using PowerShell and a parameters JSON file. - Published: 2017-01-20 - Modified: 2024-09-04 - URL: https://petri.com/deploying-json-template-azure-using-parameters-file/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Manager, JSON, JSON Parameters, JSON Template, PowerShell, Visual Studio, Visual Studio Code, VS Code - Article Type: How To Find out how to deploy a JSON template in Azure using PowerShell and a parameters JSON file. This “how to” post will show you how to deploy a JSON template in Azure using PowerShell and a parameters JSON file. The JSON template that I will use has been built up using a series of previously published posts: Understanding the Structure of an Azure JSON File Using VS Code to Edit Azure JSON Templates Building a Simple Azure JSON File Deploying Multiple Resources Using an Azure JSON File     The Parameters The JSON template that was built in the above posts, MultipleResources. JSON, includes several parameters that are used to customize the deployment of: A storage (Standard Storage) account A VNet with 2 subnets An availability set Some of these parameters require completion and some include default values that you might want to override: Storage Account Name: The default value is null (empty) and is used to provide a unique name to the new storage account. Storage Account Resiliency: You can choose between LRS (Standard_LRS) and GRS (Standard_GRS). The default is LRS (Standard_LRS). Network Name: The name of the new VNet, which has a default of nw-petri. Network Address: The IPv4 address scope of the new VNet, which is set to 10. 0. 0. 0/16 by default. Subnet-1 Name: The name of the first subnet, which is sn-petri-01 by default. Subnet-1 Address: By default, the address scope of the first subnet is 10. 0. 0. 0/24. Subnet-2 Name: The name of the second subnet, which is sn-petri-01 by default. Subnet-2 Address: By default, the address scope of the second subnet is 10. 0. 0. 0/24. Availability... --- ### How to Start a Threaded Conversation in Slack - Published: 2017-01-20 - Modified: 2024-09-04 - URL: https://petri.com/start-threaded-conversation-slack/ - Categories: Office - Tags: collaboration, Slack - Article Type: How To Learn how to start a threaded conversation in Slack. In this Ask the Admin, I'll show you how to work with threaded conversations in Slack. Slack has proved to be popular in the small business collaboration space, first with developers adopting the tool as a replacement for email, and then as it gradually filtered out to other teams who saw the benefits Slack provided over email as a collaboration tool. The ability to make calls and share documents was also added, posing a threat to document management and collaboration solutions from Microsoft, which responded late 2016 with Microsoft Teams, its Slack challenger that should reach general availability sometime in Q2 2017.     For more information about Slack, see What is Slack and Is It Better Than Email? on the Petri IT Knowledgebase. But the problem I’ve always had with Slack channels is that they get cluttered over time, meaning that while a channel is initially created to discuss a particular topic, at some point, the conversation goes off on various tangents, making the thread hard to follow. That is until a recent update to Slack that provides for threaded conversations, making it easier to keep channels in order. It’s worth noting that the addition of threads is no doubt a response to Microsoft Teams, which supports threaded conversations, even though it’s still in preview. Start a New Thread To complete the instructions below, you’ll need to log into a Slack team using the desktop app, version 2. 4. 1 or later, or open Slack in a browser window... . --- ### Apple and Audible Amend Audiobook Deal to Appease EU Regulators - Published: 2017-01-19 - Modified: 2024-09-04 - URL: https://petri.com/apple-audible-amend-audiobook-deal-appease-eu-regulators/ - Categories: Cloud Computing, Mobile - Tags: Amazon, Apple, Audible, News - Article Type: News The European Commission announced today that Apple and Audible have ended an exclusive audiobook deal in order to avoid antitrust charges. The European Commission announced today that Apple and Audible have ended an exclusive audiobook deal in order to avoid antitrust charges. "The European Commission welcomes an agreement to end all exclusivity obligations concerning audiobook supply and distribution between Amazon's subsidiary Audible and Apple," the EC announcement notes. "This step is likely to improve competition in downloadable audiobook distribution in Europe. " The agreement does not mean that Apple has to stop distributing Audible audiobooks through its iTunes store. Instead, the deal is no longer exclusive, meaning that Audible can sell its content through other stores, while Apple can work with competing audiobook services. The change is a smart one, and for Apple in particular given its recent antitrust history in Europe: In 2012, the consumer electronics firm settled an antitrust case with the EC that grew out of its illegal entry into the e-book market in 2010. At that time, Apple colluded with the world's biggest book publishers to raise and fix the price of e-books and illegally wrest control of this market from Amazon. Apple was also sued by the United States, but fought and lost that case, and eventually paid millions in damages to consumers. But Apple's illegal entry into the e-book market has had a lasting effect despite these major legal defeats: Today, e-book prices are much higher than they were when its iBooks service was launched, with new titles typically selling for $14. 99 or more, instead of the $9. 99 pricing model that Amazon... --- ### Microsoft Expands CSP Program, Offers ‘Free’ Windows 10 Upgrades To Windows 7/8.1 Devices - Published: 2017-01-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-csp-program-offers-free-windows-10-upgrades-windows-78-1-devices/ - Categories: Windows 10 - Tags: Cloud Service Provider, News, Windows 10 - Article Type: News Microsoft is expanding its CSP program to make it easier to upgrade Windows 7 and 8.1 machines by offering a free upgrade to Windows 10 if enrolled in Windows E3 or E5. Last year, Microsoft launched a new service with its Cloud Solution Providers (CSP) to offer Windows 10 as a service. Much like Office 365, the company is licensing Windows 10 in E3 and E5 tiers, with prices starting at $7 for E3 and $14 for E5. Announced today, Microsoft is expanding its CSP program to make it easier to upgrade Windows 7 and 8. 1 machines. With the CSP offer, Microsoft is allowing anyone with a Windows Enterprise E3 or E5 subscription as well as Secure Productive Enterprise E3 and E to upgrade Windows 7 and 8. 1 machines at no additional cost. Clearly put, this means you do not need to purchase a separate license; prior to this announcement, Microsoft did not offer an upgrade SKU in CSP which means a customer would need to buy a Windows 10 Pro retail key for $199. These upgrade licenses are not conditional (other than you must be initially enrolled in one of the services listed above) on maintaining your subscription. Microsoft states that the license will not expire or be revoked if you end your Windows subscription. These new upgrade options are rolling out now and should become available over the next 48hrs. This latest upgrade initiative is Microsoft’s next direct effort to get its users off of older versions of Windows and utilizing Windows 10. Microsoft has already shown that its new platform is more secure than its older systems and the company is doing everything it can to avoid having Windows 7... --- ### Microsoft’s Newly Acquired LinkedIn Overhauls Its Platform - Published: 2017-01-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-newly-acquired-linkedin-overhauls-platform/ - Categories: Main - Tags: Linkedin, News - Article Type: News Microsoft has overhauled its LinkedIn platform to make it easier to find and locate content as well as making messaging more intelligent; there are also improvements to individual profiles. In 2016, Microsoft announced that it would be acquiring LinkedIn for $26. 2 billion. The social business network, which many in the industry consider as your ‘online resume’, has been completely overhauled with a refreshed interface and improved navigation. The goal of the update was to elevate conversations and content to the center of the design while reducing the clutter of the platform. If you had not used the older design of LinkedIn, it was difficult to find the relevant content you may be searching for and visually appeared to be unorganized. The enhancements for the design focused on streamlining navigation, smarter messaging, improved search results, updated analytics and better suggestions for helping you improve your own profile. LinkedIn says that this is the largest overhaul in the company’s history and while Microsoft does now own the platform, it’s safe to assume that this project started well before the social network was acquired. Microsoft has lofty ambitions for its LinkedIn acquisition as they see this platform as the modern communication method for businesses to interact. The company is expected to integrate the social network's rich data into its contact management platforms and also make it easier to research individuals career history inside its Office 365 service. The new design is live for all users now and you should see the updated interface when you login to your account. --- ### Getting Started with the Azure Security Center - Published: 2017-01-19 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-azure-security-center/ - Categories: Cloud Computing - Tags: alerts, Azure, Cloud, Security - Article Type: How To In today's Ask the Admin, Russell Smith shows you how to get started with the Azure Security Center.   In today's Ask the Admin, I'll show you how to get started with the Azure Security Center. The Azure Security Center reached general availability mid-2016 and automatically alerts you if threats are detected on virtual machines (VMs), other resources, and third-party solutions running in the Azure cloud. Not only does Security Center provide an overview of the security posture of your Azure apps, but behavioral analysis also identifies threats based on intelligence collected by Microsoft from telemetry and well-established best practices.     Information is gathered using the Azure Monitoring Agent and Security Monitoring extension, which is then analyzed to produce a set of tailored recommendations for your environment based on existing knowledge. The Azure Security Center can monitor the following resources: VMs Cloud Services Azure virtual networks (vnets) Azure SQL service Partner solutions integrated with Azure The data collected is stored in a storage account in the same region as the VMs from which the data is collected, helping to protect privacy and maintain data sovereignty. It’s worth noting that the Microsoft Security Response Center (MSRC) monitors the Azure network and infrastructure, plus it receives threat intelligence and abuse complaints from third parties. Whereas Security Center is an Azure service that monitors the customer’s app deployments. Standard Tier Free for 90 Days In the steps that follow, we’ll sign up for a 90-day free trial of Security Center. The standard tier is required to enable threat intelligence, behavioral analysis, crash analysis, and anomaly detection. For more information... --- ### Microsoft Finally Adds an Undo Send Feature to OWA > OWA (in Office 365) now boasts an Undo Send feature that allows users to recall an outbound message for up to 30 seconds. - Published: 2017-01-19 - Modified: 2024-11-19 - URL: https://petri.com/undo-send-owa/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Office 365, Outlook, outlook web app, owa, Undo Send - Article Type: News Microsoft has finally provided an effective method to allow users to recall messages. Outlook’s Recall Message function usually doesn’t work, but OWA’s new Undo Send will stop messages that should never be sent. Five seconds might be too short to realize that you have made a mistake and should stop an outbound message, but ten seconds is about right. And if you are really indecisive, you can take up to 30 seconds to decide whether a message should go. OWA Copying from Gmail? Never... In June 2015, Google made the "Undo Send" feature an official part of Gmail. In fact, Undo Send had been available since 2009 as a Google Labs add-in and it was curious why Google took quite so long to give their imprimatur to Undo Send.  Well, Microsoft took even longer to decide to introduce an equivalent feature into OWA. Undo Send finally made its appearance for Office 365 users in early January 2017. Like its Gmail counterpart, OWA’s Undo Send allows you to wait for up to 30 seconds to make your mind up that a message should really go. Take Your Time Undo Send works by implementing a delay before OWA transmits an outbound message to the server. During this period, the message stays in the Drafts folder and can be recalled by clicking the Undo button (Figure 1). When the delay period elapses, OWA sends the message is transmitted to the server. It’s all very simple and straightforward. Figure 1: How Undo Send works in OWA (image credit: Tony Redmond) Control over Undo Send is available through the Automatic Processing section of OWA Options (Figure 2). You can decide whether to enable the feature and if yes, what delay to use. The minimum delay is five seconds and the maximum is 30. Figure 2: The Undo Send controls in OWA options (image credit: Tony Redmond) The warning that messages will not be sent if... --- ### Learning React JS in the SharePoint Framework > With the release of SharePoint Framework RC0, developers should begin to look more closely at client wed parts and React JS. - Published: 2017-01-18 - Modified: 2024-11-19 - URL: https://petri.com/learning-react-js-sharepoint-framework/ - Categories: Microsoft 365, Office, SharePoint, SharePoint 2016 - Tags: SharePoint Framework;React - Article Type: How To Learning the React framework for SharePoint Framework (SPFX) development is a good idea because the SPFX tooling can automatically generate React components. Find out how to get started with the React framework. This month, Microsoft released RC0 of the SharePoint Framework (SPFX), and all first-release tenants would now be able to use SPFX -- although the technology is still in preview. With these milestones met, it’s now time for developers to move beyond the theoretical and into the practical applications of SPFX.     For traditional Office and SharePoint developers, the move to SPFX presents several challenges. First, SPFX makes use of several open-source technologies such as NodeJS, NPM, and Gulp. Second, all of the samples and demonstrations make use of the Visual Studio Code development environment instead of Visual Studio. Third, SPFX development assumes knowledge of JavaScript frameworks such as React. All of this means that traditional Office and SharePoint developers have a lot to learn and should get started right away. For this article, I am going to focus on introducing the React framework in SPFX. There are already a lot of "getting started" articles around SPFX, but I’ll have to cover some basics in order to take a look at the code generated in a typical SPFX project and explain the basics of the React framework. Although SPFX can support any number of JavaScript frameworks, learning the React framework for SPFX development is a good idea because the SPFX tooling can automatically generate React components for you. Additionally, SPFX makes use of React components and concepts. Introducing React React is a JavaScript framework for building user interfaces that can react to changes in application state. The UI is broken down into small... --- ### Deploying Multiple Resources Using an Azure JSON File - Published: 2017-01-18 - Modified: 2024-09-04 - URL: https://petri.com/deploying-multiple-resources-using-azure-json-file/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Manager, JSON, JSON Template, Visual Studio, Visual Studio Code, VS Code - Article Type: How To Learn how to deploy multiple resources in a fairly simple example of an Azure Resource Manager JSON file.   This post will show you how to deploy multiple resources in a fairly simple example of an Azure Resource Manager JSON file, which was created in the following posts: Understanding the Structure of an Azure JSON File Using VS Code to Edit Azure JSON Templates Building a Simple Azure JSON File   The Starting Point We will start with a pretty simple JSON that deploys a storage account into a resource group. The template asks, using parameters, the administrator to name the storage account and select a resiliency level for the Standard Storage (HDD) account. A variable (RGLocation) retrieves the Azure region of the desired resource group and is used to automatically place the new storage account into the same Azure region. {     "$schema": "https://schema. management. azure. com/schemas/2015-01-01/deploymentTemplate. json#",     "contentVersion": "1. 0. 0. 0",     "parameters": {         "Storage Account Name": {             "defaultValue": null,             "type": "string"         },         "Storage Account Resiliency":             {             "type": "string",             "defaultValue": "Standard_LRS",             "allowedValues":                     }         },     "variables": {         "RGLocation": ""     },     "resources": ",                 "tier": "Standard"             },             "kind": "Storage",             "name": "",             "apiVersion": "2016-01-01",             "location": "",             "tags": {},             "properties": {},             "resources": ,             "dependsOn":         }     ] } Expanding the JSON Template... --- ### SharePoint Podcast Episode #322: The Ten Best Ways to Listen to Todd Klindt's Podcast > In this show the guys cover new Microsoft Flow Services, Office Web Apps now support Azure, CMD is forever and Shane calls dibs on his organs. - Published: 2017-01-18 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-podcast-episode-322-ten-best-ways-listen-todd-klindts-podcast/ - Categories: Microsoft Azure, Office, PowerShell, SharePoint, Uncategorized - Tags: Command Prompt, Microsoft Flow, Office Online Server, Office web apps, PowerShell, SharePoint, SharePoint Online - Article Type: News, Opinion Todd and Shane cover the Microsoft Band’s new replacement policy, Microsoft Flow’s new services, Office Online Server adding support for Azure, why the cmd prompt will be with us forever, new PowerShell, and the downside of self-driving cars. Well, clearly Todd is back this week. He made up the terrible title for the show, and he made this terrible image, also. UGH, what do you do?     The good news is that amateur hour was all saved for post production, as the show itself was pretty good. We start out talking about Todd going to the playoff football game, but then we quickly jump into coverage of the Microsoft Band's new replacement policy, Microsoft Flow's new services, Office Online Server adding support for Azure, why the cmd prompt will be with us forever, new PowerShell, and the downside of self-driving cars.  A lot of fun and a lot of practical updates along the way. Really, the only screws up were the title and the image. I cannot do everything. https://www. youtube. com/watch? v=3NAo5j4AK3M Links from this show: PSA: Microsoft Band No Longer a Swappable Unit Microsoft Flow adds 13 new services Office Web Apps and Office Online Server now supported in Azure CMD isn't going anywhere Self Driving cars will cause an organ shortage New version of SPO PowerShell If you enjoy the show, then you can subscribe to the show using the audio or video RSS feed. You can also join the show live at 5 PM EST every Monday. There is a Slack support group, even. Check out the podcast homepage for more info on how to join the hooligans. You can reach us on Twitter @Toddklindt or @ShanesCows.  Be sure to check out Todd’s blog and me on YouTube without Todd to... --- ### U.S. Charges Qualcomm with Antitrust Violations - Published: 2017-01-18 - Modified: 2024-09-04 - URL: https://petri.com/u-s-charges-qualcomm-antitrust-violations/ - Categories: Mobile - Tags: ARM, News - Article Type: News Qualcomm was charged with antitrust violations by the U.S. Federal Trade Commission this week. Did Apple complain about a key chipset provider? Qualcomm was charged with antitrust violations by the U. S. Federal Trade Commission this week. The charge: That the leading maker of mobile chipsets uses anti-competitive practices to illegally maintain its monopoly. "The Federal Trade Commission filed a complaint in federal district court charging Qualcomm Inc. with using anticompetitive tactics to maintain its monopoly in the supply of a key semiconductor device used in cell phones and other consumer products," the FTC complaint reads. Qualcomm microprocessors power the majority of mobile devices sold around the world. But the FTC isn't about microprocessors, it's about the baseband processors that mobile devices used to communicate with cellular networks. Qualcomm's baseband processors are so popular and so common that they're even used by rivals, such as Apple, which do not use that firm's microprocessors. The FTC complaint alleges the following: Qualcomm illegally strong-arms its partners into pay elevated licensing fees. The chipmaker has a "no license, no chips" policy that forces partners to license its chips at higher fees when they use other companies' baseband processors. The more Qualcomm parts you use, the more you save, a policy that obviously harms competition and prevents device makers from choosing the best parts. Qualcomm illegally withholds standards-essential patents from competitors. Despite a public commitment to license its standard-essential patents under "Fair, Reasonable, and Non-Discriminatory" (FRAND) terms, Qualcomm simply refuses to license those patents to companies it perceives as competitors. (FRAND licensing of standard-essential patents is not actually required by law, to my... --- ### Chrome Makes SharePoint Look Insecure > The latest version of the Chrome browser made some SharePoint Online sites look as if they were insecure because a SHA-1 cert is in the certificate chain. - Published: 2017-01-17 - Modified: 2024-11-19 - URL: https://petri.com/chrome-makes-sharepoint-look-insecure/ - Categories: Microsoft 365, Office, SharePoint - Tags: Chrome, Delve, Google, OneDrive for Business, SHA-1, SHA-2, SharePoint Online An update to SharePoint Online for some Office 365 tenants clashed with Google’s determination to move from SHA-1 to SHA-2 as the basis for securing web sites. The symptom is that Chrome flags SharePoint sites as “Not Secure”, which is a pretty worrying thing for an Office 365 administrator to see. Fortunately, Microsoft is reversing the update out to fix the problem. Chrome Says “No” to SharePoint Yesterday, I noticed that Chrome started to flag any access to SharePoint Online sites, including those for Delve and OneDrive for Business, as insecure (Figure 1). This is obviously a problem, so I reported the issue to Microsoft. I also raised the issue on Twitter to establish whether this was a common problem and received several responses that others had seen the same symptoms along with many observations as to the potential root cause. Figure 1: Chrome reports a SharePoint site as insecure (image credit: Tony Redmond) Neither the Internet Explorer nor Edge browsers reported any problem with SharePoint, so Chrome was clearly linked to the issue. Previous experience of a problem in Chrome version 37 (September 2014) when Google removed an API used by OWA heightened my anticipation that something Google did contributed to the problem. For the record, I run version 55. 0. 2883. 87 m (64-bit), the current version of Chrome. Another clue as to what was going on came from reports that not all Office 365 tenants experienced the problem. When only part of the Office 365 infrastructure has a problem, it’s a sign that the root cause might be an update package that Microsoft is “flighting” within Office 365 datacenter regions, perhaps to a small set of tenants such as those who have signed up for First Release.     Diving Deeper Of course, when you make an Office 365 service request, you should give as much... --- ### Learn the Most Useful Windows 10 Keyboard Shortcuts - Published: 2017-01-17 - Modified: 2024-09-04 - URL: https://petri.com/learn-useful-windows-10-keyboard-shortcuts/ - Categories: Windows Client OS - Tags: Windows 10 - Article Type: How To Navigate Windows 10 more efficiently with keyboard shortcuts. In this Ask the Admin, I'll share some of my favorite keyboard shortcuts for working with Windows 10 more efficiently. Keyboard shortcuts are useful because they allow you perform tasks that would otherwise require you to move your hand away from the keyboard. Some of the shortcuts here work in all versions of Windows, while others are unique to Windows 10.     The list isn’t by any means exhaustive, but these are the shortcuts I use most often. And even if you’re already a keyboard shortcut master, there might be some new ones below. For a complete official list of Windows 10 shortcuts, see Microsoft’s website here. WIN stands for the Windows key, which you’ll find down in the bottom left corner of the keyboard, close to the space bar, and can be identified by the Windows logo. For more information on Windows 10 specific features, such as virtual desktops and Snap Assist, see Windows 10 Technical Preview: Using Snap, Task View, and Virtual Desktops on the Petri IT Knowledgebase. WIN + D Minimizes all open applications to view the desktop. WIN + Left/Right Arrow Keys Snaps the active window left or right. WIN + E Opens File Explorer. CTRL + S Saves a file. CTRL + C Copies text, a picture, file, or another object. CTRL + X Cuts text, a picture, file, or another object. CTRL + V Pastes text, a picture, file, or another object. CTRL + ALT + DEL Allows you to perform... --- ### Microsoft’s Project Osaka Is A Collaborative Tables Tool - Published: 2017-01-16 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-new-project-osaka-collaborative-tables-tool/ - Categories: Microsoft 365 - Tags: News, Office 365, Project Osaka - Article Type: News Microsoft is working on a new tool that will make it easier to collaborate on large sets of data and it is currently testing this tool with a select group of Office 365 users. Microsoft is always looking for new tools to build that will help its users be more productive; after all, this is the company’s driving mission. Earlier this month the company released StaffHub to help manage employee scheduling and now it looks like they have a new collaborative tool designed to help organize data. Currently called Project Osaka, which you can view here but currently can’t authenticate too unless you have an approved account, is a tool that “allows anyone to organize information in a smart way” and allows you to “collaborate in real time on sets of data with co-workers using interactive tools from Microsoft Project Osaka”. The information, uncovered by WalkingCat, shows that this new tool is what was formerly known as CollabDB. At this time, it appears that this product is in a limited trial with select Office 365 users. If you do visit the website, it has a vague description that says you can "Create and share tables with your team" but when you click 'Get Started', you must login and that's all the further you can go without an approved account. Seeing as this trial is being utilized by Office 365, it’s likely safe to assume that this product, once it reaches general availability, will be included in the company’s productivity suite in the E3 or possibly only E5 tiers. Microsoft is continuously investing in Office 365 to make that service the cornerstone of productivity in the business environment. By adding new features and services, like Teams... --- ### How to Connect Existing Office 365 Groups with a Microsoft Team - Published: 2017-01-16 - Modified: 2024-09-04 - URL: https://petri.com/connect-existing-office-365-groups-microsoft-team/ - Categories: Microsoft 365 - Tags: Microsoft Teams, Office 365, Office 365 Groups, SharePoint - Article Type: How To In this how-to article I show you how easy it is to connect an existing Office 365 Group to a team within Microsoft Teams. Microsoft Teams, I am all in. In a short time, I have really started to enjoy working with Microsoft Teams. I love the integration of all the Office 365 collaboration services; the chat with giphy, memes, emojis, and stickers; and the tabs feature. These beautiful features are possible because of the underlying foundation of Office 365 Groups (Groups). If you create a Microsoft Team, an Office 365 Group is created. You automatically get: Modern SharePoint Team Site Planner Exchange Calendar & Inbox OneNote Office Online Skype for Business chat & meetings Connectors Pretty sweet, right? But wait a moment! Groups have been around for a couple years and you probably already have multiple Groups within your organization. You don't want another a duplication right? Find out how to connect a Group to a Microsoft Team.     Connecting a Group That's what happens, though. Just take a look. The first screenshot is from an existing Group with a connected SharePoint Team Site:   Clean URL, nice! Imagine I am a different user and have no idea about this existing Group and I decide to create a new Microsoft Team. The following happens: Ugh! Some random number is added after the name of the Microsoft Team. Not so nice!  This isn't the only issue. Let's say people start using both Groups. How do people know which one is the original and the one to use? Before you know it, you have a big mess on your hands. The above isn't necessary. It's actually very... --- ### Office 365 Meets Its SLA But Fails Elsewhere - Published: 2017-01-16 - Modified: 2024-09-04 - URL: https://petri.com/office-365-meets-sla-fails-elsewhere/ - Categories: Microsoft 365 - Tags: Office 365, Power BI, SLA - Article Type: Overview Find out why Microsoft's Office 365 uptime ratings aren't necessarily providing a complete picture of Office 365 reliability. A recent blog post summed up Microsoft’s commitment to reliability and noted that Office 365 achieved an average of 99. 98 percent uptime over the first three quarters of 2016. That equates to about 75 minutes of downtime, which isn't too bad when you look at it like that! However, as Tony Redmond pointed out, certain factors govern how the SLA is calculated that can mask the actual availability numbers for a single tenant. Your Office 365 tenant may have only achieved 99. 91 percent of uptime against the backdrop of 99. 98 percent rating for the service.     In my experience, the major Office 365 workloads such as Exchange, SharePoint, and Skype for Business are built on solid foundations and are run by experts in their field. It’s very unusual to see a business-impacting outage on these platforms affect more than a few tenants for more than a few hours at a time. Going Deeper into Secondary Office 365 Workloads The trouble with positioning Office 365 as “more reliable than on-premises services delivered by the majority of IT departments” is that Microsoft’s SLAs don’t give the full picture for availability. The problem I see is with the secondary, less mature workloads such as Power BI, that are not backed by comprehensive SLAs. For example, Figure 1 shows a screenshot of the Service Health Dashboard of our tenant displaying a current Power BI incident. Figure 1: A Power BI outage This is an example of an Office 365 workload that has... --- ### SUSE Linux Makes Its Way To Windows 10 - Published: 2017-01-15 - Modified: 2024-09-04 - URL: https://petri.com/suse-linux-makes-way-windows-10/ - Categories: Windows 10 - Tags: linux, News, Suse, Windows 10 - Article Type: News If you are a developer and are using the Windows Subsystem for Linux, you have a new tool at your disposal, Suse. Earlier this year, when Microsoft released the Windows Subsystem for Linux, this allowed for Bash on Ubuntu to be run natively inside of Windows 10. This feature, which has been widely praised by nearly everyone as it makes Windows more versatile, has opened the doors to those who believe that Linux provides the best development environment to use Windows again. But, what if you are using the new subsystem and you didn’t want to use Ubuntu? Up to this point, your options were limited but Suse is stepping up to the plate and has created a tutorial about how you can replace Ubuntu and run iterations of openSUSE inside of Windows 10. If you do go down this route, you have the option for installing either openSUSE Leap 42. 2 and SUSE Linux Enterprise Server 12 SP2. The benefits here are obvious, with Microsoft enabling the Windows subsystem for Linux, they are opening the door to more than simply running Bash inside of Windows 10. While that is a good feature and one of the most likely used instances of this subsystem, what Microsoft has actually done is opened the door for more vendors to bring their Linux tools to the Windows platform. Considering that, in the not-so-distant-past, Microsoft was trying to destroy Linux and the company's former CEO referred to it as cancer, Windows has come a long way in embracing these platforms and the tools that they provide. And quite frankly, it’s about time too. During the past few... --- ### Microsoft Acquires Maluuba; Adds New Technology to its AI Portfolio - Published: 2017-01-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquires-maluuba-adds-news-technology-ai-portfolio/ - Categories: Cloud Computing, Microsoft Azure - Tags: Acqusition, Maluuba, Microsoft, News - Article Type: News Microsoft has announced today that they have acquired Maluuba, a deep learning company focused on natural language understanding. Microsoft is making big bets on machine learning and artificial intelligence. The company, which currently offers a wide range of services through Azure in both of these areas, is expanding its portfolio with the acquisition of Maluuba. Maluuba, based in Montreal, focuses on deep learning research labs for natural language understanding. The company’s expertise in deep learning and reinforcement for question-answer platforms will help Microsoft advanced its agenda of being a leader in the AI and ML space. Before being acquired by Microsoft, Maluuba’s goal was to make computers more intelligent by creating machines that can think and reason like humans as well as communicate in a way that is natural and organic. Without question, Microsoft is pursuing this same goal with its services, namely Cortana, and this acquisition will help them reach this goal faster. Digital assistants are one technological area that is still maturing. While Cortana, Siri, Alexa, and Google’s Assistant are all growing in popularity, they have a long way to go before they reach a state where it feels like you are communicating with another human. All of the companies are working feverishly towards this goal but none of have mastered the technique yet. For all technology companies, having the best digital assistant will page huge dividends in the future. As consumers and enterprise clients look to standardize around a common platform, being the leader in this segment will be a large driver of revenue in the future. For now, the race goes on and Microsoft... --- ### Importing Complex XML into PowerShell - Published: 2017-01-13 - Modified: 2024-09-04 - URL: https://petri.com/importing-complex-xml-powershell/ - Categories: PowerShell - Tags: Advanced, PowerShell, XML - Article Type: How To Jeff Hicks wraps up his series on XML and PowerShell by walking you through the process of importing complex XML into PowerShell. We're almost finished with our exploration of using XML and PowerShell. Hopefully, you've been following along from the start and I hope you've been experimenting with your own XML files. In the previous article, I shared some techniques for bringing XML files back into PowerShell that you might have created using ConvertTo-XML. But you might have customized such a file, as I did in a previous article in this series when I created an inventory XML file. My inventory XML file (Image Credit: Jeff Hicks) The challenge is that there are several different type of objects described here and there is no explicit type information for anything. In order to import this into PowerShell as an object, you really have to know the XML file structure.     As before, the first step is to convert the file into an XML document. $in = Get-Content C:workMyInventory. xml The imported document (Image Credit: Jeff Hicks) I know that all of the data is in the Computers node. But how you import the data is completely up to you. Here's one scenario that "imports" the XML data as a complex object. $data = foreach ($computer in $in. computers. computer) { #initialize an ordered hashtable with the computername $hash = @{Computername = $Computer. name} $os = $computer. OperatingSystem #create a child object $osObj = @{ OS = $os. Name Version = $os. Version Architecture = $os. OSArchitecture Installed = $os. InstallDate -as } $hash. Add("OperatingSystem",$osObj) $cs = $computer. ComputerSystem $csObj = @{ Processors... --- ### Building a Simple Azure JSON File > This step-by-step post will show how to get started with Azure JSON deployments by building a simple JSON file from scratch using the free tool, VS Code. - Published: 2017-01-13 - Modified: 2024-09-04 - URL: https://petri.com/building-simple-azure-json-file/ - Categories: Cloud Computing - Tags: ARM, Automation, Azure, Azure Resource Manager, JSON, VS Code - Article Type: How To Learn how to build a simple JSON file using the Azure Portal, and customize it using the free version of Visual Studio, VS Code. In this step-by-step post, I’m going to show you, without using the paid-for version of Visual Studio, how to build a simple JSON file using the Azure Portal, and customize it using the free version of Visual Studio, VS Code. Before you proceed, you should read the following posts: Understanding the Structure of an Azure JSON File Using VS Code to Edit Azure JSON Templates     Start in the Azure Portal I have found that the easiest way to build a JSON that you can start with is to deploy something by hand in the Azure Portal. For this simple example, I’m going to deploy a resource group with a single storage account. Note that the boundary of a JSON deployment in Azure is the resource group: Every JSON deployment is done within a resource group. A JSON deployment cannot span resource groups. You can do multiple deployments to a resource group. My deployment is as follows: A resource group called rg-petri. A storage account that is in the rg-petri resource group, deployed into the West US region. The manually deployed resource group and storage account We can see the JSON that can be used to mimic this deployment by clicking Automation Script in the settings of the resource group. The default JSON of the manual deployment You can save this JSON a few ways: Download: Download a zip file that contains the... --- ### Paul Thurrott's Short Takes: January 13 - Published: 2017-01-13 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-13/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Opinion Because the end is listless, this edition of Short Takes looks at a bizarre Microsoft lawsuit, Microsoft's privacy ah-ha moment, Xbox fears, and more. What do you mean they canceled Scalebound? ! ? Because the end is listless, this edition of Short Takes looks at a bizarre Microsoft lawsuit, Microsoft's privacy ah-ha moment, Xbox fears, and more. Of Microsoft, torture porn, and PTSD I know. This isn't the headline one comes to expect here in Microsoft-land. But here's a terrible little story for you: Two former Microsoft employees are suing Microsoft for forcing them to watch "horrible brutality, murder, sexual assaults, videos of humans dying" and more, and without providing them with any adequate form of psychological support. Now, to be fair, these guys were not working on Windows, or whatever. They were part of a Online Safety Team that aims to keep such images out of Microsoft services. And Microsoft did have a so-called "Wellness Program" that the plaintiffs said was laughably inadequate. " is difficult, but critically important to a safer and more trusted internet," a Microsoft statement notes. "The health and safety of our employees who do this difficult work is a top priority. " The plaintiffs seek damages for pain and suffering---PTSD, essentially---plus treble economic damages under U. S. and Washington state laws. Yikes. "Today in Apple history: Bill Gates quits as Microsoft CEO" Seems like something from Microsoft history, but what do I know? Swiss data authority triggers Microsoft's sudden awareness of Windows 10 privacy concerns Microsoft made a big splash this week when it belatedly addressed long-running privacy concerns in Windows 10 by announcing a... --- ### Microsoft StaffHub – Another Use for Office 365 Groups > Microsoft StaffHub is an Office 365 application to allow managers to organize the work schedule of teams. The new app is based on Office 365 Groups. - Published: 2017-01-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-staffhub-use-office-365-groups/ - Categories: Microsoft 365, Office - Tags: Office 365, Office 365 Groups, Planner, Staffhub, Teams - Article Type: News Microsoft StaffHub is a new Office 365 application built from bits of Office 365 Groups, Exchange Online, SharePoint Online, Azure, and Teams. The concept is simple – provide an application to allow the schedules of workers to be managed through a combination of browser and mobile interfaces. It’s an idea that will be popular with some Office 365 tenants, but it’s probably of limited interest to the majority.  StaffHub Now Generally Available After appearing in preview in September 2016, Microsoft has released StaffHub, a new Office 365 application, to all Office 365 tenants who have enterprise and education plans, including the kiosk plans. According to Microsoft, “StaffHub is a cloud-based platform designed for employees whose job requires them to be on their feet or on the go. Examples include baristas, hair stylists, waiters, bus drivers, and so on. Microsoft StaffHub helps you create and manage work shifts, share files, and communicate important information with team members.     Brad Sams covered the StaffHub announcement yesterday. I want to look at what makes StaffHub tick. StaffHub Portal StaffHub is enabled by default for tenants, but tenant administrators can disable the application by going to the StaffHub Admin portal (Figure 1) and moving the switch to Off. Figure 1: StaffHub Admin portal (image credit: Tony Redmond) The Admin portal holds a section about Using Office 365 Groups. This is because Office 365 Groups provides a partial identity and membership service for StaffHub teams, which is different to the way that Groups interacts with other applications like Microsoft Teams and Planner. . And like those applications, the data created by StaffHub is not stored in Exchange or SharePoint. I assume StaffHub uses an Azure-based service for its data. The relationship between StaffHub and Groups is different to that of... --- ### Microsoft’s StaffHub Comes To Office 365 - Published: 2017-01-12 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-staffhub-comes-office-365/ - Categories: Microsoft 365 - Tags: Micorosft, News, Staffhub - Article Type: News Microsoft has announced a new tool to make it easier to manage a schedule called Staff Hubs and it is included with some tiers of Office365. Microsoft has announced a new feature for Office 365 and it is called StaffHub. The new tool, which is included with Office 365 K1, E1, E3 and E5 plans (including the Education version) helps with information sharing/scheduling and also has the ability to connect to other work-related apps and resources. If you have ever been in a role where you are required to manage a schedule for staff, it’s a serious time-sink if you don’t have the proper tools. While there are many options available to help with this task, Microsoft is now including one for ‘free’ with your Office 365 subscription (provided you are in the correct tier). The app makes it possible to setup a schedule quickly and also allows employees to swap shifts from inside the mobile apps. The apps also act as the scheduling manager where an employee can view their upcoming shifts and managers can update the schedules in real-time too. Currently, you can access the platform from the web and iOS/Android apps; there are no Windows 10 apps available at this time In addition, this app makes it easy for manager to distribute information to their teams; policy documents, news videos, etc. And if the need arrises, this is also an easy way for manager to communicate 1:1 with an employee as well. The StaffHub app does not work in isolation either, it can connect to other applications like Kronos. The app is now available today and comes at no additional charge to your Office 365... --- ### Microsoft Aims To Use Bluetooth To Auto Lock Your PC If You Walk Away - Published: 2017-01-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-aims-use-bluetooth-auto-lock-pc-walk-away/ - Categories: Windows 10 - Tags: Dynamic Lock, News, Security, Windows 10 - Article Type: News Microsoft is testing new ways to secure your PC, including auto locking your device if you walk away from your PC without locking the device. Securing a PC is one of the primary objectives of nearly every IT Pro. With valuable data floating around on laptops and these devices traveling outside the perimeter of the office, making sure they are secure in the event that they are stolen is something that keeps many security experts up at night. A new feature coming to Windows is the ability to lock your PC when you step away from it and it looks like the feature will work by using Bluetooth and a mobile device. Based on an image obtained by WalkingCat, the feature may be called Proximity Lock but there is a setting in the latest Windows 10 build called Dynamic Lock (seen above) that appears to be the same thing or at least similar. According to the leaked slide, the feature works by pairing your phone to your PC and when the connection breaks (the assumption is that you have left your PC) your PC is automatically locked. Microsoft also appears to be looking at other future protocols beyond Bluetooth to enable this functionality but for now is relying on this industry standard to enable this feature. It seems plausible that the company could eventually use Windows Hello cameras to accomplish the same goal but this will likely not sit well with users. There is already concern that Microsoft is collecting too much information about user activity with Windows 10 (they did recently increase transparency in its data collections process) and having a camera watching you... --- ### Azure AD: Set Up Self-Service Password Reset - Published: 2017-01-12 - Modified: 2024-11-19 - URL: https://petri.com/azure-ad-set-self-service-password-reset/ - Categories: Cloud Computing - Tags: Azure Active Directory, cloud computing, Office 365, password reset, passwords, Security - Article Type: How To Learn how to configure and test password reset policy for cloud-only users in Azure Active Directory. In today's Ask the Admin, I'll show you how to set up self-service password reset in Azure Active Directory (AD). One of the most time-consuming jobs for IT departments is dealing with users’ passwords. Microsoft claims that support-assisted password reset typically accounts for 20 percent of an organization’s IT budget. Practical problems can also impair the user experience, such as waiting for the help desk to respond to a password reset request, so any technology that reduces costs and improves the user experience, while keeping systems secure, is worth a look.     Because Azure AD can be integrated with on-premises AD, the self-service password features in the cloud can be extended to your onsite directory, although Azure AD Premium is required for that functionality. Azure AD Basic, or any Office 365 subscription, provides the ability for cloud-only users and cloud-only administrators to reset their own passwords, while the free Azure AD tier allows only cloud administrators to reset their own passwords. For more information on Azure AD, see What is Azure Active Directory? on the Petri IT Knowledgebase. Before starting, you’ll need an Azure AD tenant connected to an Azure subscription. Additionally, at least two users assigned an Office 365, an Azure AD Basic, or Premium license already assigned. For more information about assigning licenses to users, see Use PowerShell to Create and Assign Licenses to Office 365 Users on Petri IT Knowledgebase.  Licenses can also be assigned to users in the Office 365 management portal. Password Reset... --- ### Importing More Data into PowerShell - Published: 2017-01-12 - Modified: 2024-09-04 - URL: https://petri.com/importing-data-powershell/ - Categories: PowerShell - Tags: Advanced, PowerShell, XML - Article Type: How To In the seventh installment in this series, Jeff demonstrates how to properly import XML data into PowerShell. In a previous article, I guided you through using the Export-Clixml and Import-Clixml cmdlets to serialize and deserialize data from a PowerShell expression. However, as I demonstrated in earlier articles in this series, you could also use ConvertTo-XML. This cmdlet will generate XML that is more compatible with non-PowerShell applications. But what if you also wanted to bring the data back to life in PowerShell? There is no ConvertFrom-XML cmdlet, at least as of today, so it will take a little extra work.     Here is an XML file I created in a previous article from a Get-Service command. Converted XML (Image Credit: Jeff Hicks) I converted the result to XML and saved it to a file. To bring this back, I need to convert it back into an XML document, which is actually quite easy. $in = Get-Content C:workwu2. xml The tells PowerShell, "treat the content as an XML document. " Which it now becomes. Imported XML object (Image Credit: Jeff Hicks) This should look familiar. It is pretty easy to "walk" the object tree. The XML object (Image Credit: Jeff Hicks) The object properties are also easily discovered. XML Object Properties (Image Credit: Jeff Hicks) The tricky part is enumerating all of the XML nodes and writing them as objects to the pipeline. $data = $in. Objects. Object | foreach { #initialize an empty hash table $hash = @{} #enumerate each property... --- ### New Word Editor Feature Proves its Worth > The new Editor feature in Word provides a intelligent way to improve the conciseness and accuracy of writing. It's only available in Office 365 Pro Plus. - Published: 2017-01-12 - Modified: 2024-11-19 - URL: https://petri.com/word-editor-office-365/ - Categories: Microsoft 365, Office, Office 2016 - Tags: editor, Office 365, Word It’s hard to think of new features for an application like Word that has been around for so long. Adding something that nags the user to be more precise and concise wouldn’t seem like it would be popular, but I rather like the new “Editor” feature. And providing more context in spell checking is a good thing too! Nagging Words It’s hard to find new features for an application like Word that has been around since 1989. In July 2016, Microsoft announced “Editor”, a new feature for Word that’s unique to Office 365. The announcement said: “Editor assists you with the finishing touches by providing an advanced proofing and editing service. Leveraging machine learning and natural language processing—mixed with input from our own team of linguists—Editor makes suggestions to help you improve your writing. Initially, it will help you simplify and streamline written communications by flagging unclear phrases or complex words, such as recommending “most” in place of “the majority of. ” I didn’t take much notice of the announcement at the time. After all, what help would I need from an automated editor? I’ve spent the guts of a quarter-century escaping from insistence of copy editors that my text could be improved, so having Word nag me more than it already did was not an attractive notion. However, as it turns out, the Editor feature is really quite good and has already helped me to improve my writing. That’s quite an admission for someone who commonly turns out a million words per year in books and articles, but it’s true. Office 365 Pro Plus Channels My exposure to Editor came about when I changed the update channel I use for the click-to-run version of Office. Because I rely on stable tools, I had used the Deferred Channel for Office 365 Pro Plus, which means that I... --- ### Introduction to Windows Information Protection - Published: 2017-01-11 - Modified: 2024-09-04 - URL: https://petri.com/introduction-windows-information-protection/ - Categories: Security - Tags: DLP, Security, Windows Information Protection - Article Type: Overview Learn how Windows Information Protection in Windows 10 can help prevent data loss. In this Ask the Admin, I'll explain what Windows Information Protection (WIP) is and how it works to protect sensitive business data. As part of a defense-in-depth security strategy, Data Loss Prevention (DLP) products control how information that employees have legitimate access to is used. Microsoft says 87 percent of senior managers have admitted to sending corporate data to personal cloud storage and email, and that 58 percent of employees have accidentally sent information to the wrong person. Company documents might be sent to the wrong people when they’re copied in emails unnecessarily, and information might also leak online when posted either intentionally or by mistake.     Designed as an alternative to third-party DLP solutions, such as Samsung Knox and Symantec Data Loss Prevention, Windows 10 Anniversary Update includes support for WIP, previously known as Enterprise Data Protection (EDP). Unlike third-party DLP products, WIP is built into Windows so that Microsoft can offer a seamless user experience. Many other products require the use of special applications or to switch modes when working with corporate data, adding a significant layer of inconvenience for both users and IT. Windows Information Protection (Image Credit: Microsoft) WIP is managed using Mobile Device Management (MDM) policy, as it is also supported in Windows 10 Mobile. Any app can encrypt corporate data when WIP is configured on a device, but only enlightened apps (i. e. , those that are WIP-enabled through a set of APIs provided by Microsoft) permit users to... --- ### Microsoft Teams: The Trend Is Positive But Not Perfect - Published: 2017-01-11 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-teams-trend-positive-not-perfect/ - Categories: Messaging - Tags: Microsoft Teams, News - Article Type: News Microsoft's Teams application is resonating well with its users and the general consensus is that this is a good application but it's not perfect. A few months back, Microsoft announced Teams, a new collaborative tool that the company is using to challenge Slack in the productivity and collaborative space for office communication. The company has been developing this app for some time and has a public beta for testing and implementation. In an effort to better understand how Teams is performing in the workplace, I asked around to get a better understanding of the positive and negative attributes of the tool and compiled my results below. This information, which was gathered by conversing with more than 40 people, each at a different company, along with three phone conversations, has created a picture of how Teams operates and where the product is headed. The collection of interviews about Teams spans companies who work in services, manufacturing and even food distribution. Additionally, Teams was utilized with groups ranging in size from just a couple of employees, to several dozen. The Positive: Onboarding new users has been a relatively painless affair, with multiple respondents stating that the familiarity with the chat interface has made the process smooth. Getting a new user up and running is trivial and because everything is integrated with Office 365, a user is instantly surrounded by all of their content from day one. Aside from the integration with other Microsoft services, chat, video and group communication works well and threaded conversations are a high-point for the platform. Several users mentioned that threaded conversations are the best feature of the platform which help it... --- ### Sponsored: Everything You Need to Know About Microsoft Nano Server - Published: 2017-01-11 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-everything-you-need-to-know-about-microsoft-nano-server/ - Categories: Windows Server 2016 - Tags: Nano Server, Server Management, Windows Server 2016 - Article Type: Overview Aidan Finn and Mike Resseler discuss features and functionality available in Microsoft Nano Server. With security concerns and IT workloads on the rise, IT professionals need faster, more flexible, and more secure deployments. In response, Microsoft took steps to address these issues in Windows Server 2016. Nano Server is a new Windows Server installation option which focuses on remote management. Nano Server delivers significant improvements in servicing, security, resource utilization, and deployment processes. To deploy Nano Server quickly and efficiently, IT teams should become familiar with Nano Server packages, parameters, management options, and troubleshooting tools. Aidan Finn and Mike Resseler discuss features and functionality available in Microsoft Nano Server. Windows Server 2016 addresses IT concerns about agility, flexibility, and security. IT security is a major concern for business and IT leaders. Data breaches can take months to detect and can result in costly ransom demands, identity theft, and more. The stakes are high. And the risks aren’t limited to large enterprises as 60% of small companies that suffer a cyber-attack are out of business within six months. To protect companies’ data, IT professionals need faster, more flexible, more secure deployments. Microsoft’s Windows Server 2016 release, generally available on October 12, reacts to challenges facing businesses and IT teams. Windows Server 2016 includes built-in layers of security, a software-defined data center, and a cloud-ready application platform. Key aspects of the Windows Server journey and how it has led to the release of Nano Server include: Over time, Windows Server has migrated to the cloud. Windows NT and Windows Server 2003 existed during the Enterprise Era... --- ### Windows Server 2016: Apply Filters on DNS Queries - Published: 2017-01-11 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-apply-filters-dns-queries/ - Categories: Windows Server - Tags: DNS, Security, Windows Server 2016 - Article Type: How To Learn how to block DNS queries to malicious domains using DNS Policies in Windows Server 2016. In today's Ask the Admin, I'll show you how to use DNS Policy in Windows Server 2016 to apply filters to DNS queries. DNS Policies are a new feature in Windows Server 2016 that allow administrators to determine how DNS servers respond to client queries, based on several factors, including the client’s location, the time of day, transport protocol, etc. In Network Traffic Management Using DNS Policies in Windows Server 2016 on the Petri IT Knowledgebase, I introduced the concept of DNS Policy and how to use policies to manage network traffic.     In this article, I’ll show you how to create a DNS Policy that applies filters to DNS queries, creating blackholes for malicious domains, or whitelists that restrict clients to resolving a predefined list of domain names. Server and Zone-Level Filters Before we start, it’s worth mentioning that policies can be set at the DNS server or zone level. For the purposes of this article, I’ll set all the policies at server level, but if you need more granular control, you can modify the command lines below to apply zone-level filters. Just add the -ZoneName parameter to specify the DNS zone name to which the policy should apply. Create a Policy to Block a Malicious DNS Zone Log in to Windows Server 2016 with an account that has DNS administrator permissions and open a PowerShell prompt. The policy below will create a filter that blocks resolution of the malware. com domain. Note the use of IGNORE... --- ### Microsoft’s Next Windows 10 Update Will Increase Transparency, Privacy - Published: 2017-01-10 - Modified: 2024-09-24 - URL: https://petri.com/microsofts-next-windows-10-update-will-increase-transparency-privacy/ - Categories: Windows 10 - Tags: Creators Update, News, Windows 10 - Article Type: News Microsoft has created a new online dashboard that gives you more control over the data the company has collected and they are also introducing new privacy features into the Creators update too. One of the big complaints that you hear from users about Windows, and frankly many online services, is that your privacy is in jeopardy by using search engines and web browsers. With the release of Windows 10, there has also been push-back about the data that Microsoft collects while you are using the OS. Announced today, Microsoft is introducing a new online privacy dashboard and with the Creators update coming in April, there will be a new privacy setup experience that will simplify the process to block or allow data collection across its services. The new privacy dashboard, that you can view here, makes it much easier to review and clear out data Microsoft has collected related to search history, location activity and Cortana’s Notebook. This online dashboard is the company’s first steps in giving you more control over the data Microsoft collects across all of its services; the information stored by the company’s services is linked to your Microsoft account. With the Creators update, the new onboarding experience replaces the Express Settings and it looks slightly different depending on if you are upgrading or doing a clean install but the end result is the screen you see below that gives you more control over your privacy with the OS. When you turn the options off, the screen is updated to show you what features this will disable from the OS. Privacy is an interesting aspect of the modern web and services that we all use. On one hand, we... --- ### Using VS Code to Edit Azure JSON Templates > This post will explain how to set up and configure the free VS Code from Microsoft to edit Azure JSON template files, including code snippet functionality. - Published: 2017-01-10 - Modified: 2024-09-04 - URL: https://petri.com/using-vs-code-edit-azure-json-templates/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Manager, IntelliSense, JSON, Snippet, Template, Visual Studio, Visual Studio Code, VS Code - Article Type: How To Find out how to use VS Code to edit, review, and save JSON files to deploy resources in Azure. What tools should you use to edit Azure JSON templates? I’ll show you how to get started with the tool that I recommend – VS Code. Getting Started with VS Code Microsoft has a free and open-source, stripped down version of Visual Studio called VS Code. VS Code doesn’t have some of the fancy GUI and deployment options of Visual Studio, but VS Code makes for a great JSON editor, especially when you add a few Azure JSON extensions.     The Windows installer download is just over 32MB (at the time of writing), and it's a simple next-next-next routine, which differs greatly from my last, confusing, experience with Visual Studio. When you open VS Code for the first time it has basic functionality, such as IntelliSense, code validation, and formatting to fix up all that annoying indentation that makes the template readable. Add Azure Resource Manager Tools Extension VS Code doesn’t understand Azure JSON to begin with, so you need to add an extension to add JSON functionality. A marketplace of extensions exists for VS Code; these extensions include Microsoft-written extensions and others from interested third-parties, including community and business offerings. To add support for Azure Resource Manager (ARM) templates, do the following in VS Code: Press CTRL+P to open Quick Open. Run the following command: ext install azurerm-vscode-tools. An extension called Azure Resource Manager Tools will be found in the marketplace. Click Install to install this extension in VS Code. Click Reload when prompted to restart... --- ### XML Data and PowerShell - Published: 2017-01-10 - Modified: 2024-09-04 - URL: https://petri.com/xml-data-and-powershell/ - Categories: PowerShell - Tags: Intermediate, PowerShell, XML - Article Type: How To In the sixth installment in this series, you will learn how to bring XML files into PowerShell if you used the Export-Clixml cmdlet. Now that you've created some XML files, let's see how you can use them in PowerShell. If you're just jumping into the series now, I strongly encourage you to at least skim the previous articles. I want to demonstrate how to bring XML files into PowerShell and I will be using some of the files created earlier.     The easiest way to bring an XML file to life in PowerShell assumes you planned ahead and used the Export-Clixml cmdlet. This command is designed to serialize the pipeline output of a PowerShell expression and save the results to an XML file. This file is designed to be used within another PowerShell session. In a previous article, I ran this command. Get-Service wuauserv -comp chi-dc04,chi-p50,chi-core01 | Export-Clixml -Path c:workwu. xml The resulting XML file can be re-imported into any PowerShell session using Import-Clixml. This cmdlet will deserialize the contents of the file and in essence recreate the objects. Imported clixml (Image Credit: Jeff Hicks) The output is the same as it was when I originally ran the command. Using this set of commands can be very handy. I could send you the XML file and you could import it on your computer allowing you to see the results as if you had run the command on my computer. Although there is one significant difference. Look at the objects after they are imported. Imported XML objects (Image Credit: Jeff Hicks) The first thing to... --- ### Unifying Data Loss Prevention across Office 365 > Office 365 includes Unified Data Loss Prevention (DLP) policies to protect sensitive content contained in Exchange, SharePoint, and OneDrive. - Published: 2017-01-10 - Modified: 2024-11-19 - URL: https://petri.com/unifying-data-loss-prevention-across-office-365/ - Categories: Exchange Online, Exchange Server, Microsoft 365, Office, SharePoint - Tags: Compliance, Data Loss Prevention, DLP, Exchange Online, Office 365, OneDrive for Business, Protection, SharePoint Online, Unified DLP You might be familiar with the DLP policies available in Exchange or SharePoint. These policies work, but they are workload-specific. Microsoft has embarked on a journey to replace them with Unified DLP policies, which provide protection across multiple Office 365 workloads. The new policies are not yet as functional as those available for Exchange, but they will get there. Protection is Everything Data Loss Prevention (DLP) is a technology that is designed to protect against the misuse or accident disclosure of sensitive data contained in electronic files such as email and documents. The classic form of sensitive data is Personally Identifiable Information (PII) such as social security numbers, tax identification numbers, passport numbers, and driving license numbers. Credit and debit card numbers are another form of sensitive data but the definition of what is sensitive data differs across countries, industries, and even individual companies. One person’s sensitive data is another person’s rubbish.     DLP and Exchange Microsoft laid down the basic principles for DLP when it designed the implementation for Exchange 2013. DLP policies specify the kind of sensitive data that needs protection and rules that govern what happens upon the detection of sensitive data. The methods used to detect sensitive data in content use a mixture of algorithms, context, and confidence. For instance, DLP can validate a 16-digit credit card number using Luhn’s algorithm and confirm that it is a credit card number through the existence of other evidence such as a keyword (like “MasterCard”) and an expiry date. In addition, clients incorporate methods to assist people to understand how to deal with sensitive data within email and attachments. An analysis engine built into Outlook clients can detect sensitive data described by policy. Potential violations can then be signalled to users through policy tips, who can override policy if permitted. Finally, pre-packaged templates allow customers... --- ### Windows 10 Creators Update Arrives In April, Hardware Set For Refresh - Published: 2017-01-09 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-creators-update-arrives-april-hardware-set-refresh/ - Categories: Windows 10 - Tags: Creators Update, Surface Book, Surface Pro, Windows 10 - Article Type: News Microsoft is gearing up to release the Creators update this spring and it may arrive with new hardware as the Surface Book and Pro 4 start to show their age. This Creators update, which will bring new consumer and enterprise features to Windows 10 and is in the final stages of having new features added, is set to arrive in April. Microsoft had previously stated that the update would arrive in the spring and now we know the exact month. I had been hearing for several weeks that April is the target and last week at CES, Dell told me that that April is the release month for the update. The exact date isn’t known but this OS release will come out several weeks before the company’s Build conference which sets the stage for that event to focus on future updates coming to Windows 10 beyond the Creators enhancements. And then there is the hardware. For some time, we have been hearing that the company is planning on releasing new hardware in the spring of 2017 and the rumors and whispers behind closed doors seem to align to this strategy. For starters, DigiTimes states that Microsoft is planning to launch the Surface Pro 5 in Q1, 2017 and while I do not know the exact date of the Pro 5 release, it would make sense if the company released it alongside the updated OS, which arrives in April. Further, at CES last week, nearly every major PC vendor announced new hardware with Intel’s latest chips which means that Microsoft’s premium-priced and speced laptops/tablets, are now running on older silicon. Considering all the issues Microsoft has had with Skylake chips, it’s... --- ### How to Set Up Windows Hello for Business - Published: 2017-01-09 - Modified: 2024-09-04 - URL: https://petri.com/set-windows-hello-business/ - Categories: Security - Tags: Cloud, Password Management, Security, Windows Hello for Business - Article Type: How To Learn how to set up Windows Hello for Business using Microsoft Intune. In this Ask the Admin, I'll show you how to set up Windows Hello for Business using Microsoft Intune. Previously known as Microsoft Passport for Work, Windows Hello for Business replaces passwords with two-factor authentication: one factor being a key or certificate that’s bound to the device, and the second a gesture, such as a PIN or biometric authentication stored locally on the device. For more information on Windows Hello for Business, see Introduction to Windows Hello for Business on the Petri IT Knowledgebase.     Convenience PINs vs. Windows Hello for Business Windows Hello for Business provisions keys or certificates for users, effectively replacing their domain passwords. By default, Windows Hello credentials are based on an asymmetrical key pair that’s bound to the device and mapped to the user’s AD account during the registration process. Windows Hello for Business also supports certificate-based credentials for organizations that have a Public Key Infrastructure (PKI) in place. But it’s possible to log in to Windows with a domain account using a convenience PIN if enabled in policy. It’s important to note that convenience PINs provide an encrypted wrapper for domain passwords that is cached on the local device when users sign in. Configure an MDM Policy in Intune In the following example, I have user accounts in Azure Active Directory (AD) and Microsoft Intune is used for managing devices. Before you can complete the instructions, you’ll need both an Intune account and Azure Active Directory (Premium) subscription. You’ll also need... --- ### SharePoint Podcast Episode #321: Not Again > This episode Shane dives into installing SharePoint 2013 with all of the BI features on Azure in SouthEast Asia. Then he celebrates Festivus. - Published: 2017-01-09 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-podcast-episode-321-not/ - Categories: Office, SharePoint, SharePoint 2013, SQL Server - Tags: Podcast, SharePoint 2013 - Article Type: Opinion Shane discusses building a SharePoint 2013 BI Farm on Azure in SouthEast Asia, solar roads, and PowerShell training. Oh, this episode is glorious. Why? Because Todd forgot to show up, so it is just me. Hooray! Even better is that in this episode I get back to discussing pure SharePoint. I talk about building a SharePoint 2013 BI Farm on Azure in SouthEast Asia. Turns out it goes pretty well other than some self-inflicted pain of skipping some steps. And did I mention that I even used a real, physical book to do the work? It is like it 2005 all over again.     Then I get off on a tangent with the classic Seinfeld holiday of Festivus. This airing of the grievances gives me a chance to whine about how hard life is. Thankfully, the whining is short lived and I finish up by talking about solar roads and PowerShell training. This episode is an instant classic (they all are when Todd doesn't show up), so check it out today. https://www. youtube. com/watch? v=QpeiLCfKcWA If you enjoy the show, then you can subscribe to the show using the audio or video RSS feed. You can also join the show live at 5 PM EST every Monday. There is a Slack support group, even. Check out the podcast homepage for more info on how to join the hooligans. You can reach us on Twitter @Toddklindt or @ShanesCows.  Be sure to check out Todd’s blog and me on YouTube without Todd to hold me down. --- ### Using PowerShell to Locate Ownerless Office 365 Groups > Use PowerShell to locate Office 365 Groups that have no owners. It's easy to do and demonstrates the usefulness of PowerShell. - Published: 2017-01-08 - Modified: 2024-11-19 - URL: https://petri.com/powershell-ownerless-office-365-groups/ - Categories: Microsoft 365, Office, PowerShell - Tags: membership, Office 365 Groups, owners, PowerShell Microsoft can’t be expected to code for every possible scenario within Office 365. That’s why PowerShell is so useful as it lets administrators come up with their own solution. Master the Shell! The Need for PowerShell for Office 365 Administration Some Office 365 administrators break out in a cold sweat at the thought of having to write code. But PowerShell isn’t really code. Well, yes it is, but it’s more like a hacker’s dream in terms of its flexibility and ability to achieve impressive results with just a little effort, especially if you can find some sample code to use as a base. In a nutshell, properly used, PowerShell is an essential part of an administrator’s toolkit.     Group Owners Users who are nominated as the owners of Office 365 Groups are charged with the administration of those groups. Owners can, for instance, add external guest users to the group or modify the properties of the group. Tenant administrators can perform group management too, but at the expense of doing other stuff. All-in-all, it’s best to devolve group administration to their owners. However, it’s possible that some groups will eventually end up with no owners. For example, when the account of the only group owner is deleted from Office 365. Tenant administrators are unlikely to check that an account owns any groups (Office 365 Groups or email distribution groups) when they delete a user, so it’s easy to see how the problem might arise. No Owners, No Management Nothing really bad will happen if a group doesn’t have any owners. Members will still be able to access all the group resources. The only problem occurs when some group administration... --- ### Paul Thurrott's Short Takes: CES Special Edition - Published: 2017-01-06 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-ces-special-edition/ - Categories: Hardware - Tags: CES, News - Article Type: Opinion Because what happens at CES never stays in Vegas, this edition of Short Takes (mostly) focuses on the Consumer Electronics Show. I'm taking this one home with me. Because what happens at CES never stays in Vegas, this edition of Short Takes (mostly) focuses on the Consumer Electronics Show. Note: Brad and I have posted a ton of CES 2017 content over on Thurrott. com. Please be sure to check out our coverage there for a full picture of what happened this week in Las Vegas. ---Paul Microsoft takes another stab at connected cars Microsoft this week announced its Connected Vehicle Platform, a set of services built on the Microsoft Azure cloud. Renault-Nissan is the first to sign-on to deliver this technology in its next-generation vehicles, and the software giant notes that BMW and Volvo are also working with it on similar initiatives. Good news, right? Well, yes and no. As Mary Jo Foley points out, this is really just a new name for something Microsoft announced a year ago, or, as she puts it, "Microsoft's automotive strategy remains the same as it was in 2016. " I guess there's something to be said for consistency. "Nissan teases Microsoft's Cortana assistant in its cars" Tito, stop teasing. Amazon Alexa is coming to cars, too And speaking of connected cars, Cortana will have a bit of competition, it seems: Ford is going to add Alexa voice command support to select vehicles in the coming year. And in addition to buying stuff from Amazon, cough, you'll be able to do things like start or stop the engine, lock and... --- ### Dear SharePoint Online Content Types & Hub: What’s Going on with You? - Published: 2017-01-06 - Modified: 2024-11-19 - URL: https://petri.com/dear-sharepoint-online-content-types-hub-whats-going/ - Categories: Microsoft 365, SharePoint - Tags: Content type hub, Content types, Office 365, SharePoint, SharePoint Online - Article Type: Opinion SharePoint content types and the content type hub have been around for many years. Unfortunately, there hasn't been an update since SharePoint 2010. In this article I am sharing my real-world experience and pain around SharePoint content types and the content type hub. Before I kick off, I want to thank Petri IT Knowledgebase for giving me a platform to cheer, rant, and share love and frustration about SharePoint and Office 365. My goal in life is helping everyone out there in the SharePoint and Office 365 space. Believe me, you are going to need it. Just a small warning: This article is going to Just a small warning: This article is going to slam SharePoint content types and the content type hub. Don’t get me wrong, I love content types and the concept behind the hub. Unfortunately, there haven’t been any major developments around content types and the hub since SharePoint 2010. That’s a long, long, long time. Maybe you are wondering, what are these content types you are referring to? My dear friend Benjamin Niaulin wrote an excellent article on this topic. I want to start the article on a positive note, so I am going to address the reasons I really like content types.     Office Templates & Corporate Branding Most customers have put a lot of time and money into creating Office templates with their corporate branding. For a good reason: You want a uniform look and feel for all your internal and external communication materials. Imagine you are building a project portal in SharePoint Online. The portal contains a document library for storing project related documents such as proposals. You want to automatically provide users with the corporate proposal template. Just take a look at the... --- ### Creating Custom XML from .NET and PowerShell - Published: 2017-01-06 - Modified: 2024-09-04 - URL: https://petri.com/creating-custom-xml-net-powershell/ - Categories: PowerShell - Tags: Advanced, PowerShell, XML - Article Type: How To The fifth installment of this series demonstrates another technique to assemble an XML document from scratch using the .NET Framework. In my previous article, I walked through piecing together a custom XML file using ConvertTo-Xml. Obviously, this technique works, but it involves a lot of string parsing and manipulation and maybe even some regular expressions. In some ways, I find it to be too "busy. " So let me demonstrate another technique to assemble an XML document from scratch using the . NET Framework. Before I jump in, I want to head off any comments from readers who are just jumping into the series -- if you are intending to save output from a PowerShell expression to XML so that you can re-use it in another PowerShell session, then Export-CliXml is all you need. I covered that in previous articles. Instead, let's create an XML file with information pulled from PowerShell that you might need to use outside of PowerShell. You could still bring it back in a PowerShell session, it just requires a few more steps, which I'll cover in another article. My goal in this article is to create the same type of XML file as I did in the last article. I'm going to get some system information from WMI using Get-CimInstance on a collection of servers. $computers = Get-Content S:myservers. txt | Where { Test-WSMan $_ -ErrorAction SilentlyContinue } $os = Get-CimInstance Win32_Operatingsystem -ComputerName $computers | Select @{Name="Computername";Expression={$_. PSComputername}},InstallDate, Caption,Version,OSArchitecture $cs = Get-Ciminstance Win32_Computersystem -ComputerName $computers | Select PSComputername,TotalPhysicalMemory,HyperVisorPresent,NumberOfProcessors, NumberofLogicalProcessors $services = Get-Ciminstance Win32_Service -ComputerName $computers | Select PSComputername,Name,Displayname,StartMode,State,StartName The XML file will eventually contain this information in a structured format... . --- ### Understanding the Structure of an Azure JSON File > This post will explain the basic structure and syntax of a JSON file, to help you get started with automated and repeatable deployments in Microsoft Azure. - Published: 2017-01-05 - Modified: 2024-09-04 - URL: https://petri.com/understanding-structure-azure-json-file/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Manager, Infrastructure as Code, JSON, Syntax - Article Type: Overview Get an introduction to the syntax of an Azure JSON (JavaScript Object Notation) file, a template that you can use to quickly deploy a repeatable solution in Microsoft Azure. In this post, I will introduce you to the syntax of an Azure JSON (JavaScript Object Notation) file, a template that you can use to quickly deploy a repeatable solution in Microsoft Azure. JSON Templates Azure Resource Manager (ARM) enables operators, developers, and administrators to quickly deploy “infrastructure as code” to Microsoft Azure; this means that you can describe a deployment (IaaS and/or PaaS) of an Azure solution and push that template out. The template effectively becomes a cookie cutter, giving you the exact same (with some pre-defined changes, which I’ll get to later) deployment every time. So if I need to deploy the same solution to lots of small businesses, or deploy test, dev, and production systems, a JSON template enables me to do that with minimal effort – either a few mouse clicks or running a small PowerShell script, either of which only take seconds, while I go off and do something else. Not only am I saving time that I can reuse elsewhere but I'm also getting the same error-free result every time I deploy the template, but JSON allows for greater control (I like naming virtual machine NICs after the virtual machine that uses the NIC) and the deployment is faster than what I can do by hand or even by using PowerShell! Basic Structure of a JSON File At first glimpse (have a look in Automation in any Azure resource group where you’ve deployed resources) a JSON file looks scary to us IT pros;... --- ### Creating More Custom XML with PowerShell - Published: 2017-01-04 - Modified: 2024-09-04 - URL: https://petri.com/creating-custom-xml-powershell/ - Categories: PowerShell - Tags: Advanced, PowerShell, XML - Article Type: How To In the fourth installment of this series on working with XML in PowerShell, you will learn how to assemble an XML file from a variety of parts. I hope you've been following along with my series on working with XML in PowerShell. If you are just jumping in, you definitely want to get caught up first or material in this article might not make sense. In the previous article, I demonstrated how you might use ConvertTo-XML to create a custom XML file. In this article, I want to go through an alternate process.     Before we get started, let me re-iterate the importance of planning what you intend to do with the final XML file. If your intent is to serialize data to bring back into PowerShell, then Export-Clixml is the best tool to use. And even if you need to use ConvertTo-XML, if you can start with a complete object, that will simplify the process. But let's look at a situation in which you need to assemble an XML file from a variety of parts. As I did in the previous article, I'm going to use a list of computer names. #process list of computers filtering out those offline $computers = Get-Content S:myservers. txt | Where { Test-WSMan $_ -ErrorAction SilentlyContinue} With this list, I'm going to retrieve some system information from different WMI classes using Get-CimInstance. I'll convert each result to an XML stream, which, if you recall, will be an array of XML strings. $os = Get-CimInstance Win32_Operatingsystem -ComputerName $computers | Sort PSComputername | Select @{Name="Computername";Expression={$_. PSComputername}},InstallDate, Caption,Version,OSArchitecture | ConvertTo-XML -as Stream $cs = Get-Ciminstance Win32_Computersystem -ComputerName $computers | Sort PSComputername | Select... --- ### Windows 10 Tip: Verify Your Identity - Published: 2017-01-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-verify-identity/ - Categories: Windows Client OS - Tags: Security, two factor authentication, Windows 10 - Article Type: Overview In this article, I'll show you how to verify your identity in Windows 10 to gain the full benefits of logging in with a Microsoft account. In today's Ask the Admin, I'll explain what a trusted PC is and how to verify your identity in Windows 10. Windows 8 really wanted you to sign in with a Microsoft account and required you to Trust this PC before you could experience all the benefits of logging in with a Microsoft account, such as having your passwords synchronize to the local device from the cloud. From a security standpoint, this makes a lot of sense because it’s easy for cloud-based accounts, without two-factor authentication (2FA) enabled, to be compromised, so Microsoft requires you to verify your identity before the device is trusted.     2FA adds a second ‘factor’ in addition to your password, such as something you have like a smartcard or virtual token. Smartphone apps can also provide a second factor, making 2FA easier for businesses and consumers to implement. Microsoft has its own authenticator app – Microsoft Authenticator - which you can download from here for Windows devices, and it’s also available on Android and iOS. For more information on using 2FA with a Microsoft account, see What Is Multi-Factor Authentication and How Does It Work? and How To Set Up Two-Factor Authentication for a Microsoft Account on the Petri IT Knowledgebase. Verify Your Identity in Windows 10 Windows 10 has done away with the terminology of Trust this Device, and replaced it with verify your identity. To verify your identity in Windows 10, you’ll need to confirm a challenge/response code either via an alternate... --- ### Getting Started with PowerShell for SharePoint Online and Office 365 > Learn how to install and configure PowerShell for SharePoint Online and Office365. With everything installed then you can connect to run your first cmdlets. - Published: 2017-01-03 - Modified: 2024-11-19 - URL: https://petri.com/getting-started-powershell-sharepoint-online-office-365/ - Categories: Exchange Online, Office, PowerShell, SharePoint, Uncategorized - Tags: O365, Office 365, Office 365 PowerShell, PowerShell, SharePoint, SharePoint Online, SharePoint PowerShell - Article Type: How To Shane Young dives into the different PowerShell for SharePoint Online and Office 365 cmdlets available, how to get them installed, and then the tricky part of connecting. Ah, the cloud. The promise of no more managing servers and the magic of automation everything. If you have moved to Office 365 you have at least gotten the first step done. No more servers for you to hug in the cold, smelly, and noisy server room. And if you think your server room smells you should have been at my first job, we had the halon go off one time. Not cool. Anyway.     Now that you have achieved the no server hugging lifestyle, it is time for you to move on to the automation part. To help you get more of that gift in this article, we will dive into PowerShell for SharePoint Online and Office 365. We will talk about the different cmdlets available, how to get them installed, and then the tricky part of connecting. If all of this PowerShell talk has you freaked out, don’t fret. You can check out my earlier articles on Learning PowerShell and Working with PowerShell Objects and Scripts. They will excite and fascinate you as you learn all about the basics of PowerShell that you can build on to become a guru. What Do You Need to Install? Because Office 365 isn’t built into Windows (yet? ), you are required to install the necessary modules and helpers to connect to and use PowerShell. This will include modules for SharePoint Online, Skype for Business Online, and Azure Active Directory (AD) for Office 365. We will also talk about Exchange... --- ### Replacing the Deprecated Azure RemoteApp > This post explains your alternatives to the soon-to-be-dead Azure RemoteApp, including options from Microsoft and Citrix. - Published: 2017-01-03 - Modified: 2024-11-19 - URL: https://petri.com/replacing-deprecated-azure-remoteapp/ - Categories: Cloud Computing - Tags: Azure, Azure RemoteApp, Citrix, EOL, RDS, Remote Desktop Services, RemoteApp, Session Host, VDI, Windows 10, XenApp, XenDesktop - Article Type: Overview Aidan explains your options for replacing Azure RemoteApp, which Microsoft plans to terminate in August 2017. In this article, I will explain your options for replacing Azure RemoteApp, which Microsoft plans to terminate in August 2017. End of Azure RemoteApp Azure RemoteApp was a feature of Azure and was available only via Azure Service Management (ASM) and not in Azure Remote Management (ARM/CSP). It provided a very easy way to deliver remote desktop services connections to desktop applications that were hosted in a collection of Remote Desktop Services (RDS) session hosts. There were a few nice features about the solution, including: The licensing was a simple, all-inclusive, per-user charge. If you used the service, you were charged based on how many users had access and how much they used the service. If you didn’t deploy the service (maybe for “normal” times in a DR scenario), then there was no charge. And the cost of the RDS CAL was included with the cost of the VMs (including Windows license and CAL) that powered the service. It was simple to deploy and design compared to a normal RDS farm. There are a lot of pieces in an RDS farm. With Azure RemoteApp, Azure handled the connection broker, SSL gateways, and all the other RDS pieces behind the scenes; all you needed to provide RemoteApp with was an image of your session host, user accounts (via Azure AD), a domain to join (for optimal usage and management), and a virtual network to connect to. It made for a nice way to provide users with a way to connect to legacy... --- ### Fiat Chrysler Brings Android to the Car Dashboard - Published: 2017-01-02 - Modified: 2024-09-04 - URL: https://petri.com/fiat-chrysler-brings-android-car-dashboard/ - Categories: Mobile - Tags: Android, Google, News - Article Type: News Fiat Chrysler announced today that it has partnered with Google to bring Android to its car dashboards. The move appears unrelated to Google's Android Auto solution. Fiat Chrysler Automobiles (FCA) announced today that it has partnered with Google to bring Android to its car dashboards. The move appears unrelated to Google's Android Auto solution, which is already available in FCA vehicles. "This collaboration with Google has been an extremely beneficial opportunity for both companies to explore how in-vehicle infotainment and connectivity technology continues to evolve, and what it takes to meet consumers’ increasing desire for innovation of information with minimal distraction," FCA's Chris Barman said in a prepared statement. "With Android, we are able to maintain our unique and intuitive Uconnect user interface, all while integrating our easy-to-use systems with Android’s features and ecosystem of applications. " This isn't the first time a major automobile maker has partnered with a tech giant on an in-dashboard system: Microsoft created Ford Sync for Ford, for example, but was later pushed out in favor of a Blackberry QNX-based system. But it's still a major step for the industry as carmakers, thus far, have sought to prevent outside parties from taking control of such a major customer interaction point. This general issue has caused Apple and Google to design embedded systems, called CarPlay and Android Auto, respectively, that provide entertainment and navigation systems that can be used alongside carmaker systems. That is, these solutions do not replace what the carmaker provides, and both are now installed in many new cars as a result. The FCA/Google soltuion is a bit different in that FCA retains the ability to... --- ### Windows 10 Gains 14% Desktop Market Share in 2016, Edge Continues to Struggle - Published: 2017-01-02 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-gains-14-desktop-market-share-2016-edge-continues-struggle/ - Categories: Windows 10 - Tags: Edge, News, Windows 10 - Article Type: News Microsoft's Windows 10 operating system saw healthy growth in 2016 but its browser, Edge, is struggling to find a home with users. Microsoft has been investing heavily in Windows 10, not only for a development point of view but also with marketing as well. The company is pushing the OS at every opportunity and occasionally crossed the boundary of forcing it on to machines even when a user does not want the OS. With 2016 now behind us, we can take a look at how far the OS has come thanks to usage-share with statistics from Net Marketshare. Granted, these stats are not perfect but they do provide general insight about how the world is computing and what software they use to browse the web. At the end of December for 2016, Windows 10 is installed on ~24. 5% of devices whereas, at the end of 2015, the OS was only installed on around 10% of machines. During the same period, Windows 7 declined from 55. 68% to 48. 34%, Windows 8. 1 usage dropped from 10. 3% to 6. 9% and XP dropped slightly from 11% to about 9%. The last figure Microsoft publicly stated was that there are now 400 million devices running Windows 10 but this figure was released in late September. It’s safe to conclude that the OS is now installed on more machines at this point but we do not have an accurate figure beyond the number released in September. Also, released alongside Windows 10, is the company’s new browser, Edge. While the market share of the desktop OS has grown steadily, Edge has not performed as well. At the end of 2015,... --- ### Calendar Sharing Becomes Much Easier for Office 365 Users > Microsoft is making it easier for Office 365 users to share their calendars with users in other Office 365 tenants and Outlook.com. - Published: 2017-01-02 - Modified: 2024-11-19 - URL: https://petri.com/easier-calendar-sharing-office-365/ - Categories: Microsoft 365, Office - Tags: calendar, Exchange Online, Office 365, Outlook, Outlook for Mac, owa, sharing Microsoft is improving the way that people share calendars in Office 365 to make it easier and more straightforward. That's nice, especially as the new mechanism extends to Outlook.com as well. However, no joy for on-premises servers... Office 365 Aims to Make Calendar Sharing Work Calendar sharing is one of those banal but important pieces of functionality that makes offices work. Even with all of the collaboration options available to share calendars through Office 365 Groups and Microsoft Teams, individuals often need to share their calendar with others. The most commonplace example is where administrative assistants support managers and other knowledge workers and need access to their calendars to book appointments, schedule meetings, and so on.     Despite it’s nearly twenty years since the Outlook desktop client first appeared in 1997, sharing calendars has always been complicated. I can’t quite work out why the situation has persisted until now, but it did. In any case, Microsoft wants to make calendar sharing and delegate management much easier and set out their plans at the Ignite conference last September. The good news is that the new calendar sharing model has been enabled for all Office 365 users. The implementation supports different scenarios, including sharing between Office 365 tenants and sharing between Office 365 and Outlook. com. From a client perspective, the new sharing model is implemented in OWA now. Over time, the other Outlook clients will upgrade their interface to support the new sharing model. When this happens, a single consistent approach to sharing calendars will be used by all Outlook clients. Except of course for clients connected to on-premises servers, which will continue to use the old sharing model as Microsoft hasn’t yet announced any plans... --- ### Enterprise Agenda: Ransomware Threat Continues to Grow - Published: 2016-12-30 - Modified: 2024-09-04 - URL: https://petri.com/enterprise-agenda-ransomware-threat-continues-grow/ - Categories: Main - Tags: Enterprise agenda - Article Type: Overview Ransomware will continue to grow in popularity in 2017 and taking a look back at the past two years, you can see how widespread the attacks have become. If there is one trend that has been growing year over year, it’s the impact of ransomware on corporate networks. The attacks, which grew in popularity in 2016, will likely become more widespread in 2017 because of their simple attack-to-monetization pathway for the aggressor. Ransomware works in several different ways, but the underlying idea is the same -- take control of a user machine, lock the data or the device, and then demand payment to unlock the content. Typically, there is a timer associated with how quickly you must pay the attacker to unlock or decrypt your device or data, and if the time expires, the machine is permanently disabled with no means to recover your data. If only one machine was impacted by ransomware, the rapid growth of these malicious applications would not send cold shivers down the spine of IT admins, but what typically happens is that these applications swim upstream and can encrypt data on network drives and potentially shut down entire companies if the spread of the ransomware cannot be stopped. Earlier this year, Veeam surveyed nearly 1,000 organizations, as noted in the latest iteration of VeeamUp, to understand the scope of the ransomware attacks and the results show that this threat is real and is happening on a wide scale. The results indicated that nearly 46 percent of respondents had a ransomware incident in the past two years and of those affected, 91 percent had data encrypted. Of those impacted, 2 percent said that they... --- ### Paul Thurrott's Short Takes: December 30 2016 - Published: 2016-12-30 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-30-2/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Opinion Because it's the end of the year as we know it, this edition of Short Takes focuses on Microsoft, the would-be trillion-dollar company. Our New Year's Eve tradition: Fondu Because it's the end of the year as we know it, this edition of Short Takes focuses on Microsoft, the would-be trillion-dollar company. Microsoft, the trillion dollar company? An Equities. com analyst has triggered headlines around the web this week by claiming that Microsoft will beat Apple, Google, and Amazon to the $1 trillion market cap milestone. This is interesting on a number of levels, the most obvious being that Microsoft's market cap of $495 billion (at the time of the research note) trailed those of both Apple ($618 billion) and Google/Alphabet ($548 billion). Plus the elephant in the room: The fact that, you know, Microsoft is, well, Microsoft. So, what's the trigger for this little prediction? Yep, LinkedIn. "Will Amazon or Microsoft be the first trillion-dollar technology company? " Those wouldn't be my top two choices, sorry. Sorry, wait. Did you just say 'LinkedIn'? ? ! Yep. "The LinkedIn acquisition will result in an increase in Microsoft's PE (stock price-to-earnings) multiple," the Equities. com analyst explains. "Microsoft has the highest free cash flow yield of the 10 companies in my digital universe, it's the most undervalued. Microsoft clearly has the potential to outperform the market. " So, I'm not a financial analyst and can in fact barely balance a checking account. But this seems a bit far-fetched to me. I do agree that Microsoft deserves a place among tech's elite, whether you're talking about products and services or the financial side. But ... ... --- ### Cloud & Hyper-V Predictions for 2017 > It's time to make predictions on what I think will happen in the world of Hyper-V and cloud computing, as well as review last year's forecast. - Published: 2016-12-30 - Modified: 2024-09-04 - URL: https://petri.com/cloud-hyper-v-predictions-2017/ - Categories: Virtualization - Tags: 2017, ARM, Azure Stack, Hyper-V, Nano, Nano Server, Resource Manager, storage spaces, Storage Spaces Direct, Surface Phone, Virtualization, Windows Server 2016 - Article Type: Opinion The end of the year is fast approaching and it’s time to review my 2016 predictions and make my predictions for 2017. The end of the year is fast approaching and it’s time once again to do the sort of thing that I laugh at when Gartner and Forrester do it -- make predictions for the coming year. In the past, I called it “Hyper-V Predictions,” but this year I’ve expanded this out to include the Cloud.     Reviewing My 2016 Predictions I think I did pretty well with my 2015 predictions, so I was feeling pretty confident this time last year. But as it turns out, my crystal ball is cracked right down the middle. Let’s see how I did: Windows Server 2016 Licensing Woes Drag On: I said that the licensing of Windows Server 2016 (WS2016) was too confusing, and it clearly is based on the long conversations that I overhear from my sales colleagues, taking 20-30 minutes to explain cores versus CPUs or hyperthreads, the need to count pairs of cores, the need to buy a minimum of 16 cores, and doing this doesn’t cost more than WS2012 R2. But I predicted that Microsoft would remove the feature differences between the Standard and Datacenter editions. Microsoft did not, so I was wrong. Cloud Platform System (CPS) Will Become Interesting: Based on my conversations, no it did not. And if anything, the 2017 arrival of Azure Stack probably stopped any interest in CPS. Microsoft Azure Sales: I am seeing much greater interest in Azure in my local market. Classes that I teach are selling out in days. Every quarter we... --- ### SharePoint Podcast Episode #320: The Ransomware Christmas Special > This episode is pure fun. Nothing to make your brain hurt but more just to make you laugh while keeping you up-to-date on the plight of evil doers. - Published: 2016-12-29 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-podcast-episode-320-ransomware-christmas-special/ - Categories: Mobile, Office, Podcast, Security, SharePoint - Tags: Apple, Christmas, Podcast, Ransomware, SharePoint - Article Type: News, Opinion Even the people who hold your computer hostage with ransomware were running holiday discounts. Todd Klindt and Shane Young discuss this and other random topics on their weekly SharePoint podcast. The Ransomware Christmas Special This week we take it easy and pretty much talk about nothing but random stuff for an HOUR. A wise person might point out that we should get a life. Sadly, Santa Claus didn't bring either one of us one of those, so the show must go on. The most interesting revelation might be that the people who hold your computer hostage with ransomware were running holiday discounts. Even the bad guys are festive.     If you are looking purely for SharePoint and other deep technical content, then this week's episode might not be for you -- check back next week. Instead, we discuss random stuff such as football and Christmas movies, but then we do discuss 2016 technology topics. It is a fun show and if you enjoy shenanigans, then sit back and enjoy. Topics include: Breaking NFL updates The debate of is Die Hard a Christmas movie or not? (Spoiler: It is) Hanging out at the mall as punk teenagers and all of the fights The loss of the headphone jack FBI vs. Apple Exploding phones Hacking Cars that drive themselves https://www. youtube. com/watch? v=OwdgZT1O1X0 If you enjoy the show, then you can add the SharePoint Podcast to your personal rotation using the audio or video RSS feed. You can also join the show live at 5 PM EST every Monday. There is a Slack support group, even. Check out the podcast homepage for more info. You can reach us on Twitter @Toddklindt or @ShanesCows.  Be sure to... --- ### Skype for Business Comes to Volvo Cars - Published: 2016-12-29 - Modified: 2024-09-04 - URL: https://petri.com/skype-business-comes-volvo-cars/ - Categories: Microsoft 365 - Tags: Skype for Business - Article Type: News Volvo Cars announced today that it will be the first automaker to integrate Microsoft's Skype for Business into its vehicles. Volvo Cars announced today that it will be the first automaker to integrate Microsoft's Skype for Business into its vehicles. "We’ve all been there," Volvo's Anders Tylman-Mikiewicz notes in a prepared statement. "Sitting in the car trying to join a conference call. You either fumble with or drop your phone while trying to connect or you forget the long pin code to join. It’s not the best way to start an important call in the car. On top of all that your attention is not where it should be – on the road. With the addition of Skype for Business all that goes away. " Skype for Business will be offered in Volvo's 90-series cars, which includes the S90 sedan, the V90 crossover, and the XC90 SUV and hybrid. These are Volvo's top-of-the-line models, with the least expensive starting at about $45,000 in the US. According to Volvo, users will be able to access Skype for Business directly from the touch-based display in the center of the cars' dashboard. They will be able to "view upcoming meetings and participant details, and join meetings with one click. " The firm also notes that today's flexible workspace trends makes in-car productivity a necessity, not a nicety. "In-car productivity tools will enable people to reduce time spent in the office," Volvo's Anders Tylman-Mikiewicz notes. "This is just the beginning of a completely new way of looking at how we spend time in the car. " While one might naturally wonder... --- ### Petri Year In Review: Windows 10, Surface Hubs and Popular Deep Dives - Published: 2016-12-29 - Modified: 2024-09-04 - URL: https://petri.com/petri-year-review-windows-10-surface-hubs-popular-deep-dives/ - Categories: Main - Tags: News, Petri - Article Type: Overview As 2016 comes to an end, one of my favorite things to do is to take a look at all the content we published this year to see what resonated well with our audience. As 2016 comes to an end, one of my favorite things to do is to take a look at all the content we published this year to see what resonated well with our audience. On Petri, we have two main types of content, news and tutorials; the names are self-explanatory but this is how we break down the content that is published each day. On the news side, our top three performing posts are Microsoft cutting features from Windows 10 Pro and pushing them to Enterprise edition, Microsoft’s Surface Hub being a huge hit and the fact that Cisco is shutting down it’s cloud; Microsoft Teams content has performed well too. All of these stories brought in a wide variety of audience to Petri and the most interesting of the bunch is that Cisco is shutting down its cloud. This post, which happened only a few weeks ago, sent ripples through the cloud community as it showed that competing in this arena is not only prohibitively expensive, but if you haven’t already started building dozens of data centers, you are far behind and have a huge mountain to climb to reach parity with Amazon and Microsoft. Further, Surface Hub for Microsoft is performing exceptionally well and it’s clear based on the interest we have seen here at Petri for the device that Microsoft has another home-run on its hands. One of the reasons that many readers come to Petri is not for our industry news but for our deep dives... --- ### Creating Custom XML in PowerShell - Published: 2016-12-29 - Modified: 2024-09-04 - URL: https://petri.com/creating-custom-xml-in-powershell/ - Categories: PowerShell - Tags: Advanced, PowerShell, XML - Article Type: How To Sometimes, you have to take matters into your own hands to create the exact XML format that you need. Learn how to create custom XML in PowerShell. I hope you've been following along in our exploration of working with XML in PowerShell. If you are just jumping in, I encourage you to take a few minutes to read the previous articles in this series. In the last article, I demonstrated a number of ways to get PowerShell output into an XML file. But sometimes, you have to take matters into your own hands to create the exact XML format that you need. Before you begin, I want to re-iterate the importance of planning ahead. How will you be using the XML files? Will you be re-using them in a PowerShell session? Will they be processed by some external XML-driven application or process? Will humans need to interact with them or machines? I'm going to demonstrate several techniques but understand that there is no single best practice.     In the previous article, I introduced you to ConvertTo-Xml. Because the cmdlet doesn't immediately create a file, you have the option of modifying the XML first. Here's one scenario. I have a list of computers. #process list of computers filtering out those offline $computers = Get-Content S:myservers. txt | Where { Test-WSMan $_ -ErrorAction SilentlyContinue} I want to get disk information from each computer and save the results to an XML file. This XML file will be consumed by an external trend reporting process. In addition to the information I get back from Get-CimInstance, I need to include at least one custom property and I want to change... --- ### Microsoft To Provide Additional Windows Update Installation Options With Creators Update - Published: 2016-12-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-provide-additional-windows-update-installation-options-creators-update/ - Categories: Windows 10 - Tags: News, Updates, Windows 10 - Article Type: News Microsoft will release a new feature with the Creators update next year that will allow a user to defer updates for up to 35 days. In the Spring of 2017, Microsoft will be releasing a new update for Windows 10 that the company is calling the Creators update. While many of the features the company talked about back in October were for the consumer, there are several features targeted specifically at enterprise customers. In addition to those that have already been announced, thanks to a leaked build of Windows 10, Microsoft will soon let updates be deferred up to 35 days. Microsoft calls this featuring, “Pause Updates” and will give a small bit of control back to the user about the update process. This delaying of installation will be helpful for reviewing updates before they are installed to make sure that there will be no compatibility issues. But, honestly, the bigger benefit here is being able to stop updates from installing when it is uncovered that a patch is breaking features of Windows 10. While Microsoft hopes that this scenario never happens, seeing as it has already occurred several times with Windows 10, it’s inevitable it will happen again. While 35 days may not be enough for some, it should suffice for most to defer upgrades for a short period and if there are any major issues with a patch, it should be uncovered in that window of time. The build of Windows 10 that leaked is the Enterprise version of the software, so it’s safe to say that this feature is coming to corporate world and is not only for consumers. We don’t have... --- ### Microsoft Intune: Create an MDM Policy - Published: 2016-12-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-intune-create-mdm-policy/ - Categories: Cloud Computing - Article Type: How To Learn how to create and deploy a MDM policy in Microsoft Intune In today's Ask the Admin, I'll show you how to add a Mobile Device Management (MDM) policy to Microsoft Intune, and make sure it gets applied to your devices. In Microsoft Intune: Windows 10 Device Enrollment on the Petri IT Knowledgebase, I showed you how to set up Intune MDM autoenrollment of Windows 10 devices when they join an Azure Active Directory (Azure AD) domain. Once you have one or more devices enrolled with Intune, the next step is to create and apply an MDM policy. For more information about Microsoft Intune, see Introduction to Microsoft Intune on Petri IT Knowledgebase.     Create an MDM Policy in Intune Before you can complete the instructions below, you will need both a trial Intune account and Azure Active Directory (Premium) subscription. You’ll also need a Windows 10 device that is already enrolled with your Intune tenant. Log in to the Intune management portal here in Internet Explorer. The portal isn’t currently compatible with Microsoft Edge. In the list of options on the left of the Intune portal, click POLICY. Under TASKS on the right of the portal, click Add Policy. Add an MDM policy in Microsoft Intune (Image Credit: Russell Smith) In the Create a New Policy dialog box, expand Windows in the list of platforms on the left and then select General Configuration (Windows 10 Desktop and Mobile and later). Click Create Policy at the bottom of the Create a New Policy dialog box. In... --- ### Aidan's IT Pro Highlights of 2016 > In this post I share my IT pro highlights of 2016, from a world of Microsoft news, changes, and happenings. - Published: 2016-12-27 - Modified: 2024-09-04 - URL: https://petri.com/pro-highlights-2016/ - Categories: Uncategorized - Article Type: Opinion Aidan shares his tech highlights from 2016. In this post, I’ll list my IT pro highlights of 2016. Obviously, this is my list, so please feel free to post below what you’ll remember from 2016. We’ve entered a strange period in which changes and improvements don’t come in big bangs anymore. Instead, the cloud era gives us a constant trickle of new features and changes. Even OS updates that once gave us a once-every-three-years highlight have been lessened thanks to very public and common preview releases.   Window Server 2016 General Availability After nearly two years of public preview releases, Microsoft announced the general availability of WS2016 at the Ignite conference in September. I could list feature after feature, but instead, let’s talk about what this OS was about. Microsoft Azure has been using Windows Server since the 2012 release, and slowly we’ve been seeing the influence of cloud creep into Windows Server. This release includes actual services, features, and source code from Azure, making Windows Server a platform for cloud computing – see the Azure Stack, which will be released sometime in mid-2017. The business problems that Windows Server 2016 tackles The pitch for Windows Server is that it deals with the following conflicting requirements: The business demands more control over IT, versus the business requiring more flexibility. Application developers need more self-service, versus the demands of more control and security. IT needs to provide more capacity to the business, but the business is trying to create better... --- ### Microsoft Loses ‘Strategic’ Android Partner As Cyanogen Shuts Down - Published: 2016-12-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-loses-strategic-android-partner-cyanogen-shuts/ - Categories: Hardware - Tags: Cyanogen, Microsoft, News - Article Type: News Cyanogen has announced that it is ending its operations and seeing as they are a strategic partner with Microsoft, this has an impact on the company's mobile strategy. In April of 2015, Microsoft and Cyanogen announced a strategic partnership that would include the Android vendor integrating Microsoft services into its Cyanogen operating system. Cyanogen, which made its name by building optimized iterations of Android for popular smartphones, had raised 110 million but the company has announced it is shutting down. Microsoft, who has found itself left out of the smartphone segment, began looking to Android OEMs to help them distribute its software on Google’s operating system. The company has partnered with many vendors to bundle its apps but Cyanogen was seen as a different vendor because the company doesn’t make its own hardware. The third-party ROMs the company released were popular with enthusiasts as they allowed for further customization of the device and by partnering with Microsoft, this opened a new door to expose the tech-fluent crowd to the companies wide-range of services and software. As part of the agreement, Cyanogen included Bing services, Skype, OneDrive, OneNote, Outlook, and Microsoft Office. With Cyanogen announcing that it is shutting down servicers and appears to be closing up shop entirely, Microsoft is losing a strategic partner to help distribute it’s products in the smartphone segment. Will this be a big blow to the company’s bottom line? Not likely, but considering that they were rumored to be interested in acquiring Cyanogen at one point, it does look like the company made the correct decision to pursue a partnership than an outright takeover. Android has taken over the smartphone world and currently holds... --- ### SharePoint Podcast Episode #319 > Todd Klindt and Shane Young give your weekly updates on SharePoint DSC, Calendar.Help, Onedrive, updates, Star Wars, and More. Very random, very fun. - Published: 2016-12-23 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-episode-319/ - Categories: Office, Podcast, PowerShell, SharePoint - Tags: artificial intelligence, Automation, Microsoft, News, OneDrive, PowerShell - Article Type: News, Opinion Todd Klindt and Shane Young provide a weekly update on SharePoint DSC, Calendar.Help, OneDrive updates, Star Wars, and more. Very random, very fun. In this episode, Todd and I talk about reverse DSC for SharePoint and explain what that is and why it is cool. From there we dive into our civic duty of sharing a bunch of Microsoft links and how they impact your life. It turns out OneDrive gets a facelift; let's secretly hope Todd gets one, also. The last of the announcements we discuss is Calendar. Help, Microsoft's next Artificial Intelligence offering. Talk of AI gets us off topic on some tangents about how great a calendar full of meetings is and the hopes that our robot overlords will one day use AI to make us go to fewer meetings. Time will tell.     This week the shiny objects that get us off into left field come at the end of the show. Somehow, we manage to segway from AI to our opinions on college football players, why you should pay $10 for the new Mario game, and then we gush about Star Wars Rogue One. While discussing Star Wars, we do manage to avoid any spoilers, and you can see the great pain it causes us because they stop every conversation short, unlike the show that ran long. https://www. youtube. com/watch? v=5jKIm4w6yvA If you like what you hear, because you cannot like what you see, then you should add the SharePoint Podcast to your usual podcast rotation using the audio or video RSS feed. You can join the show live at 5 PM EST every Monday. There is a Slack support group, even... . --- ### Paul Thurrott's Short Takes: December 23 2016 - Published: 2016-12-23 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-23-2/ - Categories: Mobile - Tags: News - Article Type: Overview Because it's beginning to snark a lot like Christmas, this edition of Short Takes focuses on a series of headline riffs for the holidays. It's like getting a new Mac. For your nose. Because it's beginning to snark a lot like Christmas, this edition of Short Takes focuses on a series of headline riffs for the holidays. Note: In a blatant attempt to mail it in two days before Christmas, this edition of Short Takes will focus more on the headline riffs than the blurbs. Happy Holidays! --Paul Microsoft squeezes another $1 billion out of the U. S. military As Brad previously reported, Microsoft has re-upped a contract with the US Defense Information Systems Agency, which is basically the IT Crowd for the US Department of Defense. Worth nearly $1 billion, this contract is perhaps most interesting for what the military is getting: Access rights to Microsoft's source code, personal access to the Microsoft employees who can actually solve problems and explain that source code, and of course a technical support contract that would make most IT managers pee themselves a little bit. So what does Microsoft gets? Nearly $1 billion, obviously. Geesh. "Microsoft's 2017 could be bigger than 2016" Yes, that is one of two possibilities. Nokia and Apple File Competing Lawsuits Over Patents Nokia and Apple briefly competed in the smartphone market---a battle Apple won so decisively that Nokia sold off all of its phone assets---but now they've found a new way to fight: This week, Nokia sued Apple for violating various phone-related patents it still owns. And Apple has sued because---and I'm paraphrasing here---screw you, Nokia... . --- ### Microsoft Intune: Windows 10 Device Enrollment - Published: 2016-12-23 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-intune-windows-10-device-enrollment/ - Categories: Cloud Computing - Tags: Cloud, intune, Management, Mobile Device Management - Article Type: How To Learn how to set up Windows 10 Device Enrollment in Microsoft Intune. In today’s Ask the Admin, I’ll show you how to enable device enrollment in Microsoft Intune and enroll a Windows 10 PC. Microsoft Intune is a lightweight cloud-based PC and mobile device management product that uses Mobile Device Management (MDM), a set of standards for managing mobile devices, instead of Active Directory (AD) Group Policy, which is a Windows-only technology. For more information about Intune, see Introduction to Microsoft Intune on the Petri IT Knowledgebase.     Windows 10 PCs connect with Azure Active Directory and are then automatically enrolled in Intune. Before you can complete the instructions below, you will need both a trial Intune account and Azure Active Directory (Premium) subscription. Although the accounts are free for the trial period, credit card details are required to sign up for Azure AD Premium. I recommend creating an Intune account first, and then using the same account details to create an Azure AD Premium subscription. This will ensure that the Azure AD Directory is associated with your Intune subscription. Assign User Licenses The first step is to assign at least one user an Intune license. Licensing is managed from the Office 365 management portal. Log in to the Office 365 management portal here with the admin account for your Intune subscription. In the options on the right of the portal, click Users, and then Active users. Assign an Intune license to a user (Image Credit: Russell Smith) In the list of users, make sure that... --- ### Converting PowerShell to XML - Published: 2016-12-22 - Modified: 2024-09-04 - URL: https://petri.com/converting-powershell-to-xml/ - Categories: PowerShell - Tags: Intermediate, PowerShell, XML - Article Type: How To See a demonstration of different ways you can take results from a PowerShell expression or command and turn them into XML. Today we'll continue looking at working with XML in PowerShell. Now, the title of this article might be a bit misleading, as we aren't actually going to convert PowerShell to XML. But rather, I want to demonstrate different ways you can take results from a PowerShell expression or command and turn them into XML. This process is known as serialization and is a terrific technique for saving data that you can re-use later in PowerShell.     Because the XML format is hierarchical, it is a perfect vessel for storing all of the rich object information we get in PowerShell. But a word of caution. When you are considering turning the results of a PowerShell command into an XML document, the first question should be "How am I going to use the result? "  Do you plan on using the data in a PowerShell session? Do you need to use the file in an external XML-aware application? Does the file need to be easily read by a human? There are different tools and techniques you can employ depending on your requirements. Export-CliXml For the majority of your XML needs, I am expecting Export-Clixml to be your command of choice. This cmdlet is designed to take the output of any PowerShell expression, convert it to XML and save the results to a file. The primary purpose of this command is to create an XML document that you intend to bring back to life in a PowerShell session. The XML document that... --- ### SharePoint Podcast Episode #318 > Check out Shane and Todd talking about SharePoint and other Microsoft technologies with a good sprinkling of random topics and banter in their weekly show. - Published: 2016-12-21 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-podcast-episode-318/ - Categories: Microsoft 365, Microsoft Azure, Podcast, PowerShell, SharePoint, Uncategorized - Tags: Azure, Microsoft, Microsoft Azure, News, Office 365, PowerShell - Article Type: News, Opinion Todd Klindt and Shane Young discuss PowerShell, SharePoint Online boundaries, using WAN accelerators, and then about a million more Microsoft random notes, including events and Azure training on their SharePoint Podcast. This episode starts out on a high note with Todd sharing a blog post about Getting Unable to assign this license because it is invalid in Office 365 PowerShell with Set-MsolUserLicense when you know darn well it's valid, but then I try to steal all of the glory saying it was my idea. Finger-pointing ensues, and threats of screenshots follow. The good news is that after the show, I was vindicated thanks to Skype's history. After the children stop arguing, the show actually has some pretty useful news.     Todd and I discuss PowerShell, SharePoint Online boundaries, using WAN accelerators, and then about a million more Microsoft random notes, including events and Azure training. Quite frankly, if the podcast were sponsored by Microsoft, we knocked this show out of the park; if not, maybe next time we should look somewhere other than Microsoft. com for our news stories. We promise to try better next week. Also, we'll try not to both wear matching blue shirts. If you like what you hear, then you should add the SharePoint Podcast to your usual podcast rotation using the audio or video RSS feed. You can join the show live at 5PM EST every Monday. There is a Slack support group, even. Check out the podcast homepage for more info. Links and topics from the show: Todd's O365 Licensing Blog Post PowerShell 101 for SharePoint friends SharePoint Online software boundaries and limits! SharePoint Migration Assessment Tool Release Candidate Disaster Recovery best practices for SharePoint Server... --- ### Learn to Work with SharePoint PowerShell Objects and Scripts > This article shows you one of those complicated SharePoint PowerShell scripts and then explains what all of the pieces do so you can learn to write your own - Published: 2016-12-21 - Modified: 2024-09-04 - URL: https://petri.com/learn-work-sharepoint-powershell-objects-scripts/ - Categories: Office, PowerShell, SharePoint, SharePoint 2010, SharePoint 2013, SharePoint 2016, Uncategorized - Tags: PowerShell, SharePoint, SharePoint PowerShell - Article Type: How To Ever want to actually understand one of those SharePoint PowerShell scripts you find on the Internet? This article will help you understand and create those crazy scripts. Oh, SharePoint PowerShell. In a previous article, we talked about how to get started with PowerShell and at the end I showed you a nasty script. Something like: Get-SPContentDatabase | %{$db=0} {$db +=$_. disksizerequired; $_. name + " - " + $_. disksizerequired/1mb} {Write-Host "`nTotal Storage (in MB) =" ("{0:n0}" -f ($db/1024/1024)) -backgroundcolor magenta } That is cumbersome, and if you are new to PowerShell, you aren’t even sure those clicks and bangs are even real. Let’s just pause for a second and be honest. The whole reason you are here is people post scripts like that on the Internet all of the time and tell you they will cure what ails you. The problem is the Internet is a scary place, and SharePoint PowerShell is a powerful tool. It would be very easy for a bad person to post a script that looks like it will help that actually formats your hard drive or worse yet shaves your dog. (I told you PowerShell was powerful. ) You owe it to yourself and your dog to learn how to translate those scripts and make sure they are safe. From there it is a small leap to you writing your own.   Today you are going to learn what that script does, how to translate it, and what all of those crazy pieces are so that you can build your own scripts. Even better is you are going to use the tools you learned last time to break this script down. Enough words? ... --- ### Microsoft Lands $927 Million Pentagon Contract - Published: 2016-12-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lands-927-million-pentagon-contract/ - Categories: Microsoft Azure, Windows 10 - Tags: Microsoft, News - Article Type: News Microsoft has landed a lucrative contract with the Pentagon to the tune of nearly a billion dollars to provide technical service for the government agency. Microsoft provides a wide range of software and also services, everything from Azure to security tools, the software giant is embedded deep into the enterprise world. This week, it was announced that Microsoft has landed a lucrative contract with the Pentagon to the tune of nearly a billion dollars. In a statement released by the Pentagon, via Reuters, the government agency has awarded Microsoft a contract worth $927 million to provide technical support to the Defense Information System Agency. The statement in itself is vague and we don’t know the full extent of services that will be provided by Microsoft. It’s likely that they will assist with security, deployment of applications and possibly the upgrade to Windows 10. It wouldn’t be surprising if they were also assisting with upgrading the government's aging infrastructure and possibly moving some services to Azure. These types of contract are highly sought after, not only for the revenue that they generate, but they are also stable as well. Meaning, it’s unlikely that a few months into the contract that it will be canceled or re-negotiated. Microsoft’s stock price continues to climb and these types of announcements will only push the price higher. Upon opening this morning, the price peaked at 63. 66 but is currently at 63. 41 at the time of publication. --- ### Exchange Online Protection's Ongoing Battle Against Malware > The folks running Exchange Online Protection are in an ongoing battle against spammers, scammers, and other attackers. Will EOP succeed? - Published: 2016-12-21 - Modified: 2024-11-19 - URL: https://petri.com/exchange-online-protection-battle-malware/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Avanan, email hygiene, EOP, Exchange Online Protection, Malware, Office 365, Phishing, Punycode, spam - Article Type: Opinion It’s impossible for an email hygiene service like Exchange Online Protection (EOP) to suppress every possible piece of malware that attempts to penetrate Office 365. Even the broad array of anti-malware techniques will let some small percentage of spam through. Email administrators need to be on guard all the time. The Odd Attachment Containing a PayPal Receipt When I researched the innards of anti-malware protection to write about how Exchange Online Protection (EOP) uses safety tips to flag potential scams, I looked at multiple messages with the aim of seeing how well the visual clues worked. In most cases, EOP did a good job of picking up spam and phishing messages and those items were stamped with the appropriate safety tips.     However, in one case, EOP seemed to miss a pretty obvious scam. I received a message that contained an HTML attachment informing me that I had used PayPal to pay $49. 99 for some in-game purchases for Facebook’s Farmville game (Figure 1). Figure 1: An odd attachment that EOP should have caught (image credit: Tony Redmond) Naturally I was taken aback. The thought of playing Farmville let alone paying for the privilege was sufficient to rise my hackles. I imagine that many others who received similar messages would feel the same and hurry to click the “Cancel Payment” button, which is how people are lured into the web of lies and deceit woven by the phishers. Why Some Spam Gets Through The experience led to the question of why did EOP allow a message that looks to be so obviously a phishing attack to be delivered to my inbox? I posed the question to Microsoft’s Terry Zink, a program manager working on EOP who writes an excellent blog covering the trials and tribulations of... --- ### Microsoft’s Finalizing Creators Update, Redstone 3 Development is Around the Corner - Published: 2016-12-20 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-finalizing-creators-update-redstone-3-development-around-corner/ - Categories: Windows 10 - Tags: Creators Update, News, Redstone 2, Redstone 3, Windows 10 - Article Type: News Microsoft is winding down development of Windows 10 Redstone 2 in January which means the engineering efforts will shift to Redstone 3. This spring, Microsoft will be releasing an update for Windows 10 called the Creators update. Despite the name being targeted at consumers, Microsoft is going to be bringing several enterprise features to the platform that will improve security; you can read about all those features here. For those who like to understand what is happening internally at Microsoft around the development of Windows 10, specifically this update, the company is crunching down on completing the foundation for this release. Specifically, in mid-January, all code relating to foundational work must be completed and UI elements must be completed shortly thereafter. Microsoft has said publicly that the release will arrive this spring and with code completion being finished in January, this means that the second half of winter will be dedicated to bug smashing and stability. While there is no definitive timeline on how long this will all take, it will be roughly eight weeks, based on prior testing cycles. After the code completion milestone is reached for the Creators update, codenamed Redstone 2, the engineering teams will shift their priorities to Redstone 3. While nothing publicly has been stated about when this iteration of Windows 10 will be released, Microsoft appears to be looking to squeeze in another large update this year; a similar cycle to the first release of Windows 10 that had two large updates in the first year. Of course, these timelines are subject to change but this should provide a bit of clarity about how Microsoft is... --- ### The New Easy Way to Backup Azure Virtual Machines > This post shows the new Azure Backup experience for Azure virtual machines, driven from the settings of each virtual machine. - Published: 2016-12-19 - Modified: 2024-09-04 - URL: https://petri.com/new-easy-way-backup-azure-virtual-machines/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Azure Virtual Machines, Backup - Article Type: How To Discover how to use a new mechanism to enable backup of Azure IaaS virtual machines, which reduces the amount of clicking that you will need to do in the Azure Portal. In this post, I’ll show how you can use the new mechanism to enable backup of Azure IaaS virtual machines, which reduces the amount of clicking that you will need to do in the Azure Portal.     Recovery Services Vault The Recovery Services Vault (RSV) is the storage and management resource that is the center of all things Azure Backup, whether you are working on-premises or with virtual machines in Azure. To do anything with Azure Backup, you must first create an RSV. Normal practice would then be to create a backup policy, defining when backups take place and how long they are retained for. Configuring the policy for backing up Azure VMs Then, continuing to work in the RSV, you would associate virtual machines with the policy. Select the Azure VMs to backup Working with Virtual Machines The problem with a RSV-centric administration is that all Azure Backup work needs to be done in the RSV; this will probably be a distraction when you are working on deploying an application. I firmly believe that backup should be something I work with as little as possible; I want to turn it on, and in the best possible version of this universe, I never look at it again. Of course, I will have to do restores from time to time, but day-to-day administration of the backup should be zero. So the last thing... --- ### Sponsored: Automated Permissions Management: Turn a Mountain into a Molehill - Published: 2016-12-19 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-automated-permissions-management-turn-mountain-molehill/ - Categories: Security, Uncategorized - Tags: Active Directory, permissions, Security, Varonis - Article Type: Overview Learn how to effectively and efficiently manage access to your organization's data. Most businesses understand the importance of securing data. But with the rise of Big Data — not to mention the Internet of Things (IoT), the cloud, and the increasing complexity of so many organizations’ infrastructures — many IT departments lack the ability to effectively and efficiently manage access to that data. Permissions are a vital tool in your security architecture. Through permissions, your organization can enable individual or groups of end users, as well as specific systems or departments, to access the objects (e. g. , files, folders, Active Directory objects, registry keys) that make up your business network. Through permissions, object owners can grant end users access to view, change, or grant further permissions on these objects. Owners can also use permissions to lock down sensitive data and track who is doing what in your organization. In addition, permission types depend on object type; not every object has the same possible permissions available to the same potential users. To function fully, permissions must be constantly reviewed and updated as users’ positions or priorities change. As the number and type of objects increase, or as end users move in, out, or across the organization, tracking, and updating permissions — including who owns which objects — can become a Herculean task. Although Windows, UNIX, Linux, SharePoint, and Exchange all provide some level of native tools for assigning and reviewing permissions, none of these tools could be considered intuitive. The need for an all-encompassing, user-friendly solution has outpaced the trusty access control list (ACL)... . --- ### How Office 365 Collects and Reports Audit Data > Office 365 collects a lot of audit data from different applications running across the service. But how can you access and use that data? - Published: 2016-12-19 - Modified: 2024-11-19 - URL: https://petri.com/office-365-audit-data/ - Categories: Microsoft 365, Office - Tags: Advanced Security Management, ASM, Audit, Cogmotive, Compliance, Office 365, Security Auditing is usually one of the last things that are considered for implementation in an IT system. The Office 365 audit log gathers a lot of information. Can you use it? Office 365 Unified Auditing No one likes being audited. It is intrusive to be asked to account for your actions, but auditing is an important part of IT operations, if only to answer the perpetual question of who did what when. Office 365 is no different to any other system. Auditing is required to understand what actions happen to create, modify, or remove messages, files, and other items from the various workloads. Originally, audit events were handled by the individually workloads. Now they are gathered from all corners and stored in the Office 365 audit log from where the audit data can be searched through the Office 365 Security and Compliance Center.     Knowing how auditing happens and how to interrogate the audit data is an important skill for an administrator, so let’s run through the basics of how auditing works inside Office 365. Enabling Auditing Before Office 365 gathers audit events for a tenant, the Office 365 audit log must be enabled. To do this, go to the Search & Investigation section of Security and Compliance Center and select Audit Log Search. If a link saying Start recording user and admin activity is present, click it to start the collection of audit events. If not, events are already being collected and you can start to interrogate the audit log. It cannot be emphasized enough that if you don't enable auditing for a tenant, you won't be able to see audit events. Also, audit collection only proceeds... --- ### Paul Thurrott's Short Takes: December 16 - Published: 2016-12-16 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-december-16/ - Categories: Cloud Computing, Mobile - Tags: News - Article Type: Opinion Because 3 degrees is a terrible temperature in both Fahrenheit and Celsius, this edition of Short Takes focuses this week's news about Microsoft and the tech industry. Because 3 degrees is a terrible temperature in both Fahrenheit and Celsius, this edition of Short Takes focuses this week's news about Microsoft and the tech industry. Microsoft: We will not support or help build a registry of Muslim Americans Microsoft this week has clarified its stance against a potential effort by the incoming Trump administration to establish registries of religious groups, minorities, and immigrants. "We’ve been clear about our values," a Microsoft statement reads. "We oppose discrimination and we wouldn’t do any work to build a registry of Muslim Americans. " It's not clear if anyone has actually asked Microsoft to participate in such a thing, but Microsoft was asked about this following a meeting between Donald Trump and various tech leaders, including Microsoft CEO Satya Nadella. And no, I have nothing humorous to say about this. "Microsoft tries to reboot mobile strategy with new line of “convertible” smartphones that double as PCs" Nope. Actually, it's just a new line of convertible PCs. 2016 was the worst year yet for Windows security bulletins Did you guys enjoy this month's Patch Tuesday? Really? Well, things are about to change because, as you may have heard, Microsoft is phasing out security bulletins, and I think I know why: 2016 was a record year for Windows security vulnerabilities, with 155 security bulletins addressing over 150 individual vulnerabilities in Microsoft's flagship OS. That's a 15 percent increase from the year before, folks. Oh, 2016. You will not be missed. "Say good-bye to... --- ### Deploy Domain Controllers as Azure Virtual Machines > This "how to" post will walk you, step-by-step, through the creation of a domain controller using an virtual machine in an Azure virtual network. - Published: 2016-12-16 - Modified: 2024-09-04 - URL: https://petri.com/deploy-domain-controllers-azure-virtual-machines/ - Categories: Cloud Computing - Tags: Active Directory, Azure, Azure Virtual Machines, dcpromo, DHCP, disk management, DNS, Domain Controller, storage, virtual machine, Virtual Network, VM, VNET - Article Type: How To This guide will show you how to deploy an Azure virtual machine as a domain controller (DC). This guide will show you how to deploy an Azure virtual machine as a domain controller (DC). Extending Your Domain There are many reasons why you would extend your existing domain into the cloud, including: Single sign-on: Enable hybrid applications to work within a single Active Directory (AD) forest. Disaster recovery: Have your domain already running when failing over application/data workloads to the cloud. ADFS: Federate your forest to Azure AD using machines in the cloud, eliminating Internet connectivity at the office as a single point of failure for SaaS apps.     To extend an existing domain you will need: Site-to-site networking: You must have either VPN or ExpressRoute connectivity (with routing configured) from your on-premises network (including the VLANs with active DCs) to your Azure virtual network (VNet) that will host your new in-Azure DCs. Temporarily edit the DNS settings of the VNet: The new in-Azure DCs will need to find your existing domain, which requires DNS. Edit the settings of the VNet and temporarily use the IP addresses of some on-premises DCs as the DNS servers of your VNet – you will need to undo this after the successful promotion of your in-Azure DCs. Afterwards, you will use AD Sites and Services to create: An AD site for your AD deployment in that VNet or Azure region. Subnet definitions for the VNets that will contain domain members. Associate the subnets with your AD site. Create one or more site links to mimic your replication paths... --- ### Delegate a Domain to Azure DNS - Published: 2016-12-16 - Modified: 2024-09-04 - URL: https://petri.com/delegate-domain-azure-dns/ - Categories: Cloud Computing - Tags: Azure, Azure DNS, Cloud, DNS - Article Type: How To Learn how to delegate a domain name that you own to Azure DNS. In today's Ask the Admin, I'll explain how to delegate a domain name that you own to Azure DNS. In Microsoft Azure: A First Look at Azure DNS and Configure a DNS Zone Using Azure DNS on the Petri IT Knowledgebase, I explained what Microsoft’s new Azure DNS is and what it has to offer, plus how to set up a DNS zone using Microsoft Azure PowerShell.     Azure DNS doesn’t allow you to purchase domain names from Microsoft, so you’ll still need to pay a domain registrar a yearly fee for your own custom domain name, and delegate the domain to Azure DNS if you want your application to be accessible from the public Internet. Although, owning a domain name is not a prerequisite for using Azure DNS. What Is Delegation? When a local DNS server receives a request from a client to resolve a domain name, such as petri. com, it finds the name server hosting the petri. com zone by starting at the Internet root name servers, where there is a record for the . com zone. The . com name servers are then queried to find the name servers hosting the petri. com zone, which know where to find petri. com. Two copies of the name server (NS) records are made. An authoritative record is held in the child zone, and another in the parent zone that points to the child. If you want to make your application available on the Internet, you’ll need to register an NS record... --- ### Shane's SharePoint Watercooler News > Shane's quick hitter update on news you might have missed and his two cents on how the news applies to you and your work. - Published: 2016-12-15 - Modified: 2024-09-04 - URL: https://petri.com/shanes-sharepoint-watercooler-news/ - Categories: Microsoft 365, Patches and Service Packs, PowerShell, SharePoint, SharePoint 2016, SQL Server - Tags: Office 365, Office Online, PowerShell, SharePoint, SQL Reporting Services - Article Type: News, Opinion Shane's quick update on SharePoint and related news you might have missed and his two cents on how the news applies to you and your work. This article is not a hot off the presses article, but instead more of Shane’s watercooler talk about what is going on in our ecosystem. Also, this is my chance to make sure you didn’t miss an announcement that you needed because you were on vacation or buried by the unfair workload your boss gave you. Lots of opinion, interpretation, and snark included with a link to the actual story if you want to draw your own conclusions. If you have thoughts, feedback, or want to send me a story to talk about next time, leave a comment below or tweet me @shanescows. Remember, though; I don’t have to be nice on Twitter but comments on the site I do. Choose your path carefully. Feature Pack 1 for SharePoint 2016 Is a Month Old I am happy to say so far, so good. I have talked to a few people who are running it in production, and they had nothing but nice things to say. One company, with a small deployment, rolled it out and took advantage of the new minrole functionality in their farm. They said that they have seen a noticeable performance improvement over their previous configuration of both servers running the custom role. I thought that was pretty cool. Remember if you were waiting on an inflection point to move to SharePoint 2016, like Service Pack 1, you might be waiting forever. Feature Packs seem to be the plan, so I think the November 2016... --- ### Sponsored: Introduction to Docker Images on Windows Server - Published: 2016-12-15 - Modified: 2023-11-14 - URL: https://petri.com/sponsored-introduction-docker-images-windows-server/ - Categories: Windows Server - Tags: Containers, Docker, Windows Server - Article Type: Overview Docker Images are the transportable component of containers and provide a template that describes what each container looks like. There are two base Docker images provided by Microsoft, Windows Server 2016 Core and Nano, which can be used as a starting point for your containers.   Docker Images are the transportable component of containers and provide a template that describes what each container looks like. There are two base Docker images provided by Microsoft, Windows Server 2016 Core and Nano, which can be used as a starting point for your containers. Windows Server Docker images are larger than their Linux counterparts because, unlike Linux, which can start with a single process, Windows is a highly-integrated system that has dependencies even for performing basic tasks. For example, running just one service will require other services to be started because of OS dependencies. Docker and Union Filesystem Docker images are based on read-only layers that either add or replace the layers below, and do not change or have “state. ” The layers in an image are stacked to form what will be the container’s root file system. The base layer might contain barebones Windows Nano Server, and then an additional layer could comprise the files required for the IIS server role, and then another layer contains files for a web application, and so on. Only when the container is run does Docker add a read-write layer to the image. An additional read-only layer is added to the image if changes made while the container is running are committed. Otherwise, all changes are lost when the container is stopped. Docker manages layers using a union filesystem, which combines file system branches to form a coherent image that containers can use. NTFS + Union Filesystem To enable Docker support in... --- ### Azure Site Recovery Adds Support for WS2016 > Read about the support that Azure Site Recovery (ASR) introduced for Hyper-V on Windows Server 2016 (WS2016) and the current limitations of this support. - Published: 2016-12-15 - Modified: 2024-09-04 - URL: https://petri.com/azure-site-recovery-adds-support-ws2016/ - Categories: Cloud Computing - Tags: ASR, Azure Site Recovery, Failover Cluster, Hyper-V, Mixed Mode, Rolling Cluster Upgrade, scvmm, Support, System Center Virtual Machine Manager, Windows Server 2016, WS2016 - Article Type: Overview Microsoft recently added support for Windows Server 2016 (WS2016) Hyper-V to its disaster recovery (DR) service (DRaaS) or DR orchestration & replication solution, Azure Site Recovery (ASR). Find out what this means for you. Microsoft recently added support for Windows Server 2016 (WS2016) Hyper-V to its disaster recovery (DR) service (DRaaS) or DR orchestration & replication solution, Azure Site Recovery (ASR). This post will share some of those details.   About Azure Site Recovery ASR is a DR orchestration and/or replication solution that is offered by Microsoft Azure. It works in two ways: Orchestration between two private sites: You can use ASR to manage replication between two sites that you own, and to orchestrate failover. Replication is done directly between the two sites, supporting vSphere, Hyper-V with System Center Virtual Machine Manager (SCVMM), and compliant SAN systems. Replication to Azure with orchestration: You can use Azure as a DR site for Hyper-V (with or without SCVMM), vSphere, or physical servers. The benefit of ASR is that it offers a cost-effective solution (prices were quietly halved a few months ago) for orchestration and replication, and makes having a DR site affordable; instead of paying more than double up front (CapEx) to operate a second location with infrastructure, you pay-as-you-go (OpeX) for ASR, and only pay for running virtual machines while they are running in the cloud. Added Support for WS2016 The launch of WS2016 in September lead to an outcry from Azure Backup and ASR customers expecting, but disappointed, not to find support for the new version of Hyper-V that they wanted to adopt and protect using Microsoft’s cloud services. That started to change recently, with ASR announcing some, but not... --- ### Office 365 Mailbox Quotas Swelling to 100 GB > Microsoft is increasing mailbox quotas for Exchange Online to 100 GB, but only if you have the Office 365 E3 or E5 plans. Stay calm and fill that mailbox. - Published: 2016-12-15 - Modified: 2024-11-19 - URL: https://petri.com/exchange-online-mailbox-quotas-swelling/ - Categories: Exchange Online, Microsoft 365, Office - Tags: Exchange Online, Meta-keywords: Mailbox, Office 365, ProhibitSendQuota, ProhibitSendReceiveQuota, quota, roadmap, size - Article Type: News Microsoft is increasing the default mailbox quota for the Office 365 E3 and E5 plans to 100 GB. That's quite a lot of space to fill, but Microsoft has good reasons for upping the limit. Microsoft Stays Quiet but Office 365 Roadmap Reveals All Microsoft hasn’t said anything about increasing the default quota for Exchange Online mailboxes from the previous 50 GB limit, so it came as a surprise when the Office 365 Roadmap announced that an increase was on the way (Figure 1). Figure 1: The Office 365 Roadmap announces the change (image credit: Tony Redmond) The last increase occurred in August 2013 when Microsoft upped mailbox quotas from 25 GB to 50 GB. You might wonder why Microsoft is increasing mailbox quotas within Exchange Online. After all, only relatively few individuals need more than 50 GB. Well, storage is cheap, especially when bought in the quantities that Microsoft purchases to equip hundreds of thousands of Office 365 servers. And because storage is cheap, Microsoft is able to offer sufficient to users to enable them to keep all their data online. It's also a competitive advantage when Office 365 provides 100 GB mailboxes and Google's G Suite is limited to 30 GB (shared between Gmail, Google Drive, and Google Photos) Apart from anything else, storing data online makes sure that it is indexed, discoverable, and comes under the control of the data governance policies that can you can apply within Office 365. In particular, keeping data online is goodness because it means that users don’t have to stuff information into PST files. PSTs are insecure, prone to failure, invisible for compliance purposes, and a throwback to a time... --- ### Cisco Is Shutting Down Its Cloud - Published: 2016-12-14 - Modified: 2024-09-04 - URL: https://petri.com/cisco-shutting-cloud/ - Categories: Cloud Computing - Tags: AWS, Azure, Cisco, News - Article Type: News Joining HPE with Helion, Cisco is shutting down its cloud service that it has invested $1 billion into known as Intercloud. They say the cloud is expensive and it looks like not even Cisco is able to break into this market. Joining HPE with Helion, Cisco is shutting down its cloud service that it has invested $1 billion into known as Intercloud. For its part, Cisco says that it will be shifting its apps and data to another unnamed cloud provider as part of shutting down its operations. Considering that Microsoft and Amazon are the two leaders in this segment, it seems likely one of those platforms will be chosen; Cisco has not stated when or if they will make public which service they select. Intercloud, which was launched in 2014, was built in response to the growing threat of AWS and Azure, both services have prospered the past few years while competitors have struggled to compete. This is partially because Amazon and Microsoft are investing billions into these platforms with Microsoft saying at one point each data center was costing them a billion dollars. What this means is that for any new incumbent to be relevant, they need a near bottom-less checkbook to build out the infrastructure. Cisco confirmed to Venture Beat today that they are shutting down their service in March of 2017. With Microsoft, Amazon, Google, and even Facebook building their own hardware and software for networking and infrastructure, Cisco has found itself as a legacy provider and is looking for new ways to stay relevant as fewer companies buy its hardware. The being said, Cisco looked to... --- ### Azure Virtual Network Peering Using PowerShell - Published: 2016-12-14 - Modified: 2024-09-04 - URL: https://petri.com/azure-virtual-network-peering-using-powershell/ - Categories: Cloud Computing - Article Type: Overview Find out how to link two Azure virtual networks using VNet Peering. In today's Ask the Admin, I'll show you how to connect two Azure virtual networks using Virtual Network Peering and PowerShell. Virtual Network (VNet) Peering provides an easy way to connect two virtual networks in the same region. Once two VNets are connected, they work as one but are still managed separately. It’s even possible to peer two VNets in different Azure subscriptions, although that’s a little more complicated than what I’ll show you today. The main requirements for peering two VNets are: They must be in the same region. VNets created using Resource Manager (ARM) can be peered with those created using the classic deployment model, but not vice versa. Should not have overlapping address spaces. For more information on Virtual Network Peering and how to peer networks using the Azure Management Portal, see Connect Two Azure Resource Manager Virtual Networks Using VNet Peering on the Petri IT Knowledgebase.     Before following the instructions below, make sure you have the latest version of Microsoft Azure PowerShell installed on your PC. You can download the latest release using the Web Platform Installer. Log In to Azure Resource Manager First, you’ll need to log in to your Azure subscription using the Login-AzureRmAccount cmdlet. Open a PowerShell prompt and run the command below: Login-AzureRmAccount If you’ve got more than one subscription associated with your Microsoft account, select one of them using the Select-AzureRmSubscription cmdlet. To see the available subscriptions, run Get-AzureRmSubscription. I’m selecting a subscription called ‘Pay-As-You-Go’ using the... --- ### Cloud-Based Password Management Might Be Right for You - Published: 2016-12-14 - Modified: 2024-09-04 - URL: https://petri.com/cloud-based-password-management-might-right/ - Categories: Security - Tags: Online Safety, Password Management - Article Type: Overview It is almost impossible to keep track of all of the websites and systems we use in our daily lives; there are different passwords for online banking, social media, email, and Netflix and that is just for the personal accounts we keep. Here are some options for securing your passwords. Today, it is almost impossible to keep track of all of the websites and systems we use in our daily lives, there are different passwords for online banking, social media, email, and Netflix and that is just for the personal accounts we keep. In addition, there are passwords for computers and other resources at work. Some solutions use one password across many systems, but some do not and then they require regular changes. How do we as Internet-connected populous keep up? Well there are a few things that could help you keep a handle on things.   You could use one password and only one password, but that opens up more than a host of security concerns – don’t do that. You could also keep a notebook (paper or digital) to store the relevant information for every single application or website or computer you have ever come to surf upon in your entire online existence, but that option also isn't very maintainable long term. Another option is a password manager, which is the focus of this post. Which one should you use? There have been other solutions discussed on the Petri IT Knowledgebase in previous posts, which call out locally stored options, and these are great as they help you maintain your sanity and keep your passwords safe, sound, and encrypted. In addition to these methods, there have emerged a few players in the cloud-based password management space and this post intends to look at the general features provided... --- ### Windows 2016 Support (Again!) Is Key Element in Quarterly Exchange Updates > Microsoft fixed the Windows 2016 bug that caused problems for Exchange 2016 DAG member servers. Fix is in Exchange 2016 CU4. - Published: 2016-12-13 - Modified: 2024-11-19 - URL: https://petri.com/exchange-2016-windows-2016-redux/ - Categories: Exchange 2013, Exchange 2016, Exchange Server - Tags: CU15, CU4, DAG, Exchange 2013, IIS, Meta-Keywords: Exchange 2016, Windows 2016 - Article Type: News Microsoft has fixed the IIS crash that caused problems for Windows 2016 DAG members in Exchange 2016 CU4. Exchange 2013 also gets its quarterly overhaul of fixes in CU15. Windows 2016 Redux Much to the relief of the Exchange development team, the Windows team has fixed the bug that caused some embarrassment after Exchange 2016 CU3 was released to support Windows 2016. The bug appears to have been pretty deep in the operating system and only surfaced in the form of IIS crashes when Exchange 2016 CU3 servers were deployed in a Database Availability Group (DAG).     Some questioned why Microsoft didn’t find the bug during its testing of Exchange 2016 CU3. The simple answer is that the bug doesn’t appear in all circumstances. Unfortunately, Microsoft didn’t go down the path of provoking the bug in its six months of development and testing prior to the release of Exchange 2016 CU3. I know that the Exchange development group were gobsmacked when problem reports started to flow into Redmond. All of this proves the difficulty of building software on top of components controlled by others, even inside the same company. Windows changed their software and Exchange paid the price. Such is life. In any case, good order has been restored with the release of KB3206632. This update is required for all Exchange 2016 servers running on Windows 2016. More Goodness Reading Microsoft’s announcement about the quarterly releases that bring us Exchange 2016 CU4 and Exchange 2013 CU15 reveals some interesting changes. First, there’s support for . NET Framework 4. 6. 2, which can be installed before or after the Exchange updates if a server already runs 4. 6. 1. On the other... --- ### Install Windows Server DHCP, Configure Scopes, and Authorize in AD - Published: 2016-12-13 - Modified: 2024-09-04 - URL: https://petri.com/install-windows-server-dhcp-configure-scopes-authorize-ad/ - Categories: Windows Server - Tags: DHCP, PowerShell, Windows Server, Windows Server Core - Article Type: How To Learn how to install and configure a Windows DHCP Server using PowerShell. In today's Ask the Admin, I'll show you how to set up a DHCP server in Windows Server using PowerShell. If you’re working with Windows Server Core, or need to configure Windows Server DHCP using the Remote Server Administration Tools (RSAT) for Windows 10, learning how to install and configure DHCP using PowerShell will come in handy. Server Core doesn’t have a GUI, so there’s no Server Manager or DHCP management console. And RSAT for Windows 10 no longer includes a DHCP management snap-in.     In the instructions that follow, I’ll show you how to install the DHCP server role in Windows Server using PowerShell. Once DHCP is installed, we’ll configure a scope, authorize the DHCP server in Active Directory (AD), and add some DHCP server options. The instructions are intended for a DHCP server that will issue IP addresses to domain-joined devices. Log in to Windows Server with an account that has local administrator permissions and the right to authorize DHCP in AD. Open a PowerShell prompt by clicking the blue PowerShell icon on the desktop taskbar. In the PowerShell window, run the Install-WindowsFeature cmdlet as shown below to install the DHCP server role and management tools: Install-WindowsFeature DHCP -IncludeManagementTools Let’s add the DHCP Users and DHCP Administrators security groups to the local server using Add-DHCPServerSecurityGroup, replacing dhcpsrv1 with the name of your DHCP server. Add-DHCPServerSecurityGroup -ComputerName dhcpsrv1 We need to point the DHCP server to a DNS server, which it will use to register and... --- ### Are Containers the Future of the Cloud? > In this opinion post I wonder if containers are the ideal solution for developing in the cloud, offering the best of IaaS and PaaS. - Published: 2016-12-13 - Modified: 2024-09-04 - URL: https://petri.com/containers-future-cloud/ - Categories: Cloud Computing - Tags: AWS, Azure, Cloud, cloud computing, Containers, Docker, IaaS, PaaS, Windows Containers, Windows Server 2016, WS2016 - Article Type: Opinion I wonder out loud if containers are the future of the cloud, and if other types of infrastructure or platform solutions for running code have a long-term future. Please read what I think and then join the conversation below to let us know your views. How Cloud Is Being Used Now My view of how cloud platforms such as AWS and Azure are being used is limited -- I work for a distributor in the breadth market (customers with up to 500 seats), focusing mainly on infrastructure, and in a small market (6. 4 million on the island of Ireland). But despite my limited view, I interact with people in other types of business and in other markets and what I’ve learned is bigger than my limited scope, but it probably still isn’t all encompassing ... that’s why I’m interested in other people’s views.     From what I can tell, cloud platforms such as AWS and Azure are being adopted in the following ways: Start-up businesses: Microsoft admits that a lot of the usage metrics it announces at events are a result of start-ups. Start-ups don’t have legacy systems that anchor them to the past, so they are free to choose a future. As a result, start-ups are one of the key verticals that Microsoft Developer Experience (DX) group spends a lot of time on. My belief is that start-ups use their freedom, and build on PaaS (platform-as-a-service) instead of IaaS (infrastructure-as-a-service). Software development service providers: These specialist service... --- ### Customize Nano Server Using Nano Server Image Builder - Published: 2016-12-12 - Modified: 2024-09-04 - URL: https://petri.com/customize-nano-server-using-nano-server-image-builder/ - Categories: Windows Server - Tags: Cloud, DevOps, Nano, Virtualization, Windows Server 2016 - Article Type: How To Customize Nano Server images using a free tool from Microsoft. In today's Ask the Admin, I'll show you how to customize Nano Server images using a free tool from Microsoft. Nano Server is a headless install option for Windows Server 2016 that’s designed for cloud apps, microservices and DevOps environments. Windows Containers, when managed using Docker, allow developers to deploy apps to servers in seconds, providing businesses with a high-velocity development platform for creating more exciting products and faster innovation. For more information about Nano Server, see Thoughts on Windows Nano Server on the Petri IT Knowledgebase.     In the instructions below, I’m going to create a Nano Server image for a Hyper-V virtual machine (VM), using the Image Builder tool on Windows 10. Log in to Windows 10. Download the Windows Assessment and Deployment Kit (Windows ADK) for Windows 10, version 1607, and install it by running adksetup. exe. Download and run the Nano Server Image Builder (1. 0. 78) MSI installer file. Download the Windows Server 2016 ISO here. Once the ISO file has been downloaded, right-click it in File Explorer (WIN+E), and select Mount from the menu. Type nano in the search bar at the bottom of the desktop taskbar, and select Nano Server Image Builder from the list of search results. On the Create a new image or bootable USB page, click Create a new Nano Server Image. Click Next on the Before you begin screen. Create a new boot image or bootable USB (Image Credit: Russell Smith) On the Create a... --- ### Microsoft’s Surface Hub Is Here For the Long Haul - Published: 2016-12-12 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-surface-hub-long-haul/ - Categories: Hardware - Tags: News, Surface Hub - Article Type: News Microsoft's Surface Hub is here to stay, the product is selling well with the average order size being 50 units; the company is adding additional resellers too. Earlier this year, I noted that Microsoft’s Surface Hub was a hit; the company was selling them faster than they were being produced and today, Microsoft has announced new figures to back up this claim. Additionally, Microsoft is ramping up production (finally) to help fill its channel with more devices. The Surface Hub, while not cheap for the consumer, is proving to be a bargain for the enterprise. Microsoft released a few figures today that show, not only are companies buying the device, but they are buying them in bulk. The average order size is approximately 50 units (Microsoft doesn’t say if this is for the 55” or 84” models) and that one auto manufacturer ordered 1500 devices. Seeing as they can’t keep these things in stock, they are increasing production of the product to help fill its channels worldwide; Microsoft is also adding more partners to its reseller program too. Additionally, for customers who are interested in the device but are not ready to commit, Microsoft is now offering a try-and-buy program that will let a company use a device for 30 days before purchasing. This further cements the confidence that Microsoft has in the product, they know once an organization tries out the device, they will likely end up buying one (or fifty). It’s clear that Microsoft’s Surface Hub is a hit and is here to stay . The company’s product is selling so well that Google is trying to get into this segment with their own Jamboard... --- ### Bad Cookies Spell Trouble for Office 365 Admin Center > It's not good when the Office 365 Admin Center displays an HTTP 400 error when displaying a web page. Most likely the problem is caused by a corrupt cookie. - Published: 2016-12-12 - Modified: 2024-11-19 - URL: https://petri.com/bad-cookies-office-365-admin-center/ - Categories: Microsoft 365, Office - Tags: Browser, Chrome, Cookie, HTTP 400, IE, Office 365 Admin Center, owa - Article Type: How To It’s reasonably common for an HTTP 400 error to occur when accessing an Office 365 page. The Office 365 Admin Center seems to be particularly susceptible to the problem. What can you do when an Office 365 page barfs? Bad Requests Lead to Office 365 Unhappiness What do you do when an attempt to access the Office 365 Admin Center results in the response “Bad Request – Request Too Long. HTTP Error 400. The size of the request headers is too long”? The first action is probably to check the web to discover what a HTTP 400 error means. After reading pages of text (like this post), you’re still probably grasping for an answer. Traditional reasons encountered for on-premises IIS environments such as a Kerberos token being too large because the user is a member of too many groups are unlikely.     Too many possibilities exist to be definitive about why HTTP 400 errors occur, but when it happens with the Office 365 Admin Center, there’s a fair chance that a corrupted cookie lies at the heart of the problem. Originally invented by Netscape back in the 1990s (and formally defined in RFC2965 as the HTTP state management mechanism) are just arbitrary strings sent to the client by the server as part of a HTTP response. There’s nothing bad about cookies as they have many valuable uses for applications, including to track user preferences. It’s hard to find a major web site that doesn’t use cookies today. Lots and Lots of Cookies One easy way to check if a corrupt cookie is the problem when an Office 365 page refuses to display is to remove cookies for the portal. office. com site from the browser’s cache. After the... --- ### Paul Thurrott's Short Takes: December 9 - Published: 2016-12-09 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-december-9/ - Categories: Mobile - Tags: News - Article Type: Overview Because I can still hear Marc Benioff screaming, this edition of Short Takes focuses on Microsoft's LinkedIn acquisition, a new Premium Assurance offer for enterprises, the U.S. Supreme Court rules for Samsung, and so much more. "Microsoft's mobile strategy" Because I can still hear Marc Benioff screaming, this edition of Short Takes focuses on Microsoft's LinkedIn acquisition, a new Premium Assurance offer for enterprises, the U. S. Supreme Court rules for Samsung, and so much more. Microsoft's LinkedIn acquisition closed. What's next? As promised, Microsoft closed its acquisition of LinkedIn this week, leading to two inevitable questions. One, did Satya Nadella literally write a check for $26. 2 billion? And two, what happens after that check clears? The goal, of course, is not repeating the sins of the past: All of Microsoft's major acquisitions have thus far been busts: Witness Nokia and aQuantive for obvious examples. But according to LinkedIn's Jeff Weiner, Microsoft's plan is simple enough: It plans to grow the service. "If LinkedIn continues to grow its membership, if it continues to realize its mission, its vision, if it continues to grow the business, that’s going to create value for Microsoft," he says. What a novel concept. But when will value equal revenues, one wonders? "Microsoft Corporation Brings Windows Desktop Apps To Smartphones" "Microsoft is about to turn a phone into a real PC" "Existing Windows Phone Flagships Won't Be Able to Run Desktop Apps" Nope. Nope. Duh. Microsoft to offer option of 16 years of Windows Server, SQL Server support through new Premium Assurance offer Mary Jo Foley reports this week that Microsoft is rolling out an enterprise-focused Windows Server Premium Assurance and SQL Server Premium Assurance program that... --- ### PowerShell and XML Fundamentals - Published: 2016-12-09 - Modified: 2024-09-04 - URL: https://petri.com/powershell-and-xml-fundamentals/ - Categories: PowerShell - Tags: Intermediate, PowerShell, XML - Article Type: How To Learn some basic concepts and commands for using XML with PowerShell. I've had a few requests to write about using XML with PowerShell. XML is one of those topics that IT pros know they should probably understand better, but often feel intimidated or don't know where to begin. Sounds like a learning opportunity to me. So over the course of the next several weeks, we'll explore how to work with XML and PowerShell. This first article will cover some basic concepts and commands.     XML, which stands for eXtensible Markup Language, is a long-established industry standard intended to describe data in a text format. This description can be read by people (once you understand the syntax) and consumed by software for all sorts of purposes. I am not going to cover everything in the XML universe. But I want to impart enough information for IT pros who want to take advantage of XML in their PowerShell work. Because PowerShell is built on the . NET Framework, we have full access to the XML libraries. More on that later. Note: I will be focusing on current PowerShell releases. The open-source PowerShell project is still under early development and there's no guarantee that everything I plan on discussing will work on non-Windows platforms. But you are certainly encouraged to test it and find out for yourself. The core of your XML experience will be an XML document. This file will almost certainly have an XML file extension. It should be a simple text file, which means you can open it with... --- ### My OneNote Wishlist > OneNote has evolved as a product and seems to have stopped receiving new features. This is my feature wishlist the Office team should announce for OneNote. - Published: 2016-12-09 - Modified: 2024-09-04 - URL: https://petri.com/my-onenote-wishlist/ - Categories: Office - Article Type: Opinion A wishlist of features I would love for the OneNote team to add to OneNote. Long-term support has always been Microsoft’s strong suit. Introducing new compelling features has never been its strength. OneNote could be a case study for a wonderful product that has been stalling for years because of Microsoft’s changing focus. This article is a wishlist of features I would love for the OneNote team to add to OneNote. *Disclaimer: I understand that there are third-party add-ons for OneNote, but users should not need to go through all those extra steps to get some of these features. New features to Stay Competitive Reminders Google Keep reminders (via TechCrunch) To-do lists and task trackers are a dime a dozen these days. In fact, Microsoft has Outlook Tasks, Wunderlist, Planner, OneNote checkboxes, and now in development Project Cheshire. With all these different tools, there is no cross-platform way to get reminders in OneNote. Bottom line, OneNote needs some way to remind users to revisit a specific spot in their notes.     In the same vein as reminders would be location-based notes. Many times, a page, section, or notebook is only useful at a specific location or locations. The ability to make notes easily accessible depending on location would go a long way to making OneNote quicker and easier to use. Google Keep figured this out and has had the ability to set location-based reminders to notes for years now. I know many people who shop around and their note apps mention reminders are on their wishlist. Mentions Office... --- ### Initialize and Format a Disk in Windows Using Disk Management - Published: 2016-12-08 - Modified: 2024-09-04 - URL: https://petri.com/initialize-format-disk-windows-using-disk-management/ - Categories: Windows Server - Tags: disk management, Windows, Winodws Server - Article Type: How To Initialize and format a disk using Disk Management. In today's Ask the Admin, I'll show you how to initialize and format a disk using Disk Management. When attaching disks to a server or workstation running Windows, they don’t automatically appear in Windows Explorer. You need to bring disks online, initialize, and format them before they can be used. Disk Management is a tool in all versions of Windows that allows you to manage disks attached to the device.     In this article, I’m going to use Hyper-V to run Windows Server 2012 R2 in a virtual machine (VM). I’ve already installed the operating system, and as part of the process, a system disk is added by default. But I want to add an additional disk, so I used Hyper-V manager to add an additional disk to the VM. For more information on working with disks in Hyper-V, see Hyper-V Virtual Machine Storage Controllers Explained on the Petri IT Knowledgebase. Once the disk is attached to the server or VM, you need to log in to Windows and open Disk Management. The instructions that follow also apply to Windows 10, and most other supported versions of Windows: Log in to the device as a local administrator. Right-click the Start button on the taskbar, and select Disk Management from the menu. Disk Management in Windows Server 2012 R2 (Image Credit: Russell Smith) In the lower half of the Disk Management console, you will see a graphical representation of the disks attached to the... --- ### Sponsored: Securing Windows Containers with Hyper-V - Published: 2016-12-08 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-securing-windows-containers-hyper-v/ - Categories: Hyper-V, Security, Windows Server - Tags: Docker, Hyper-V, Security, Windows Containers, Windows Server 2016 - Article Type: Overview A malicious user could break out of a container if they uncover a design fault in the implementation of containers or an unpatched OS vulnerability. However, Windows Server addresses these security challenges by providing the option to place containers into Hyper-V partitions In Understanding Windows Containers on the Petri IT Knowledgebase, I introduced you to containers and Docker images, and how as a lightweight virtualization solution, containers share a kernel with the host OS and other containers. Using namespace isolation, resource control, and process isolation technologies, Windows restricts the files, network ports, and running processes each container can access, providing isolation between containers and the host OS. But because of the shared kernel in user mode, even with process isolation technologies in place, a malicious user could break out of a container if they uncovered a design fault in the implementation of containers or an unpatched OS vulnerability. Hyper-V Containers If all the code running on a host is trusted, then the isolation provided by Windows Containers is likely to be adequate. But if we don’t trust the code, then Hyper-V Containers provide the same level of isolation as virtual machines (VMs), but with many of the benefits of standard containers. Windows Server 2016 solves these security challenges by providing the option to place containers into Hyper-V partitions. Simply put, Hyper-V Containers are Windows Containers running in a VM, providing the kernel isolation and host separation that’s missing with standard container technology. The process for managing Hyper-V Containers, and associated images, is the same as with Windows Containers, but with the option to add the extra isolation provided by Hyper-V at deployment time. Not only does this extra isolation provide better security, but also completely abstracts the container from the underlying host... --- ### Microsoft Reboots Its Mobile Strategy With Cellular PCs - Published: 2016-12-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reboots-mobile-strategy-cellular-pcs/ - Categories: Windows 10 - Tags: Cellular PC, News, Windows 10 - Article Type: News Microsoft is about to reboot its mobile strategy, again, but this time they have a new arsenal of features that will make the transition much smoother.   This week, Microsoft made a significant announcement and if you read between the lines, you can begin to see the true impact of the statement. Microsoft is bringing x86 applications to ARM chips in a new partnership with Qualcomm starting next year. Up until now, the shortcomings of the ARM platform, from a Microsoft perspective, is that legacy applications written for Win32 would not run on mobile devices. This is changing and while Microsoft has not specifically stated what its new mobile intentions will be, it’s not too hard to figure out where the company is headed. For the past decade, we have referred to the devices we carry in our pocket as smartphones but the truth is, the phone you carry now is much closer to having the power of a low-end PC than being a smarter cell phone. We have already seen some vendors go after this segment, with the Motorola Atrix and more recently, Microsoft’s Continuum feature. The goal is to make the device in your pocket the only PC you need and Microsoft is taking a big leap towards making that dream a true reality. If you read Microsoft’s announcement closely, they refer to devices running Windows on ARM with x86 apps as cellular PCs. This is Microsoft’s new strategy, they are going after the cellular PC market where eSIMs rule the world and you can add any data plan, from nearly any vendor, directly on the device without the need for a SIM card... . --- ### Microsoft Wants You to Use the Outlook Brand Correctly (but OWA is still OWA and Outlook's the fat client) > Microsoft wants you to use Outlook as the brand name for a family of clients. However, OWA means OWA and Outlook is the fat desktop client. - Published: 2016-12-08 - Modified: 2024-11-19 - URL: https://petri.com/rebranding-outlook/ - Categories: Exchange Server, Microsoft 365, Office, Office 2016 - Tags: exchange, Office 365, Outlook, owa - Article Type: Review Microsoft set out to rename OWA as Outlook on the web last year. That effort never gained real acceptance in the Exchange community, but in fact the project isn’t to rebrand OWA. Instead, it’s all about preserving and building out the Outlook brand across multiple clients and different experiences. Microsoft is struggling against the weight of history here, so don’t expect any great success anytime soon. The Rebranding of Outlook On August 4, 2015, Microsoft announced an attempt to rebrand the browser-based client for Exchange and Exchange Online when they said “Formerly known as the Outlook Web App (or OWA for short), our browser-based Outlook experience will simply be referred to as “Outlook on the web” going forward. ”     The Exchange community looked, considered, and then decided to ignore Microsoft’s grand pronouncement. Outlook on the web (or Ootw) is a horrible name only beloved by its creator. It does not trip off the tongue easily. It is nonsensical insofar as something is never “on the web”. Or if you go to extremes and heap qualifiers upon qualifiers (Figure 1), things just get silly. Figure 1: Outlook on the web for business – uugh... (image credit: Tony Redmond) But really, OWA is OWA is OWA. Simple, well-known, practical. In short, a good name. The Meaning of OWA OWA used to mean “Outlook Web Access”, which was the name used for Exchange 5. 5 through Exchange 2007. OWA received a huge makeover in Exchange 2000 and began the journey from being a relatively simple interface that could interact with a mailbox to the highly functional client we have today. At that time, WebDAV (Distributed Authoring and Versioning) was all the rage and it was viewed by the Exchange team as the way to transform OWA’s capabilities so that it might become a client capable of handling both email and document access. Looking... --- ### Microsoft Is Bringing Windows 10 To ARM, x86 Apps Included - Published: 2016-12-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bringing-windows-10-arm-x86-apps-included/ - Categories: Windows 10 - Tags: ARM, News, Windows 10 - Article Type: News Microsoft has announced a strategic shift for how it will bring Windows 10 to mobile devices; x86 emulation on ARM chips to enable running classic applications. This week, Microsoft is in China where the company is detailing its strategy for the upcoming year on everything from VR headsets to new gaming experiences. While those announcements are important, the company also announced that it will be bringing x86 apps to ARM; this is a significant shift in computing and is one of the more ambitious projects the company has tackled. This announcement, made by Terry Myerson, has been the culmination of a partnership with Qualcomm and will allow for traditional Windows apps (Win32), peripherals and enterprise features on ARM-powered devices. Microsoft calls these devices cellular PCs and they will be ushering in a dramatic change in how we think about Windows. If this sounds familiar, Microsoft previously brought Windows to ARM chips with Windows RT and they also have Windows 10 Mobile that runs on these chips too. But, Windows RT failed in the marketplace because of confusion about how it operated and its lack of support for classic applications; Windows 10 Mobile also failed for lack of applications and being late to market. https://www. youtube. com/watch? v=A_GlGglbu1U&feature=share The above video shows Windows on ARM. The difference this time around is that Microsoft has found a way to bring the traditional apps for Windows to the new (and modern) architecture of ARM. And don’t think these are simple apps, Microsoft says that Photoshop will work with these new set of devices. While the performance of the emulated apps will be the final judge, Microsoft is making a significant strategic play... --- ### Microsoft Details Event Line Up For 2017, Build Heads To Seattle - Published: 2016-12-07 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-details-event-line-2017-build-heads-seattle/ - Categories: Windows 10, Windows Server - Tags: BUILD, Ignite, Microsoft, News - Article Type: News Microsoft is making big changes to its conferences for 2017 with Build heading to Seattle and Envision being combined with Ignite. As 2016 comes to an end, Microsoft is already looking forward to 2017 and the company will be making a few changes to its events. Everything from Build to Ignite has been refined and the company is sharing the dates for all of these events. Build, the company’s annual developer conference that it organizes each Spring, is headed to Seattle; the past couple of years it has been located in San Francisco. The event will run from May 10-12 but the company is not ready to announce yet when registration will open. During the summer, the company will be hosting its Inspire conference in Washington D. C from July 9-13. This conference, known to most as Worldwide Partner Conference, has been rebranded and registration for this event is open today. Finally, the company’s Envision conference for business leaders is being combined with Ignite. This event will take place Sept. 25-29 and will be hosted in Orlando. The most notable change here is the location for Build. Each year at the event, the conference sold out quickly and last year Microsoft promised to make the 2017 event open to more attendees. This is not the first time the company has hosted the developer conference on its campus and seeing as they know have more control over the venue, expect there be more room for additional attendees.   --- ### Enterprise Agenda: Planning for the Year Ahead - Published: 2016-12-07 - Modified: 2024-09-04 - URL: https://petri.com/enterprise-agenda-planning-year-ahead/ - Categories: Main - Tags: Enterprise agenda - Article Type: Overview It's time to break out the spreadsheets and documentation as it is planning season; with a few simple steps, you can make your process less painful and more effective for the year ahead. It’s hard to believe we are facing the end of 2016. As typical at this time of year, most are diligently working through the needs and priorities for the year ahead and determining the best IT strategy to support the business needs. Early planning, when done correctly, will save you time and help align your agenda to the overall function of the company so that minimal impact occurs during maintenance, upgrades, and routine testing. Done poorly, time and resources can be misallocated, resulting in lost productivity and possibly increased downtime. Before you begin your planning, one thing you will want to do is to obtain a list of dates when major milestones are expected to occur inside your company. If your co-workers are planning a major software release in July, then you want to avoid any potential hardware changes or downtime during that hectic period. The inverse is true as well; if there are going to be large gaps between product releases or expected heavy traffic, those periods are ideal for infrastructure maintenance. The two biggest items that are part of planning are budget and deadlines. It’s important to determine where and how you plan to invest in either expanding capabilities or shoring up older hardware to prevent outages. Often, it is possible to do both in larger organizations, but in smaller companies, this can be an ‘or’ situation where you have limited funds for investment. As you can see in the chart below, Veeam polled IT pros from around... --- ### Best Practices for Domain Controller VMs in Azure > This post explains the best practices, support policies and recommendations for deploying Active Direcotory Domain Controllers using Azure virtual machines. - Published: 2016-12-07 - Modified: 2024-09-04 - URL: https://petri.com/best-practices-domain-controller-vms-azure/ - Categories: Cloud Computing - Tags: Active Directory, Active Directory Domain Services, ADDS, Azure, Azure Virtual Machines, DNS, Global Catalog, networking, Read-Only Domain Controller, RODC, virtual machines, Virtual Network, VNET - Article Type: Overview Aidan explains the best practices and support policies for deploying domain controllers (DCs) as virtual machines in Microsoft Azure. This post will explain the best practices and support policies for deploying domain controllers (DCs) as virtual machines in Microsoft Azure. What About Azure AD Domain Services? In the not too distant past, if you wanted to run an application in the cloud with domain membership and consistent usernames and passwords, then you had no choice – you had to deploy one or more (preferably 2 or more) domain controllers as virtual machines in the cloud. Azure Active Directory (AD) didn’t offer domain membership, and couldn’t offer the same type of username/password authentication and authorization that you get with Active Directory Domain Services.     However, things have changed ... slightly. Azure AD has recently added Domain Services as a generally available and supported feature. But be careful; Azure AD Domain Services might not be what you think it is! Azure AD Domain Services allows you to deploy a domain-dependent application in the cloud without the additional cost of virtual machines that are functioning as domain controllers. However, Azure AD Domain Services is not another domain controller in your existing domain – in fact, it is not even your existing domain. Using Azure AD Connect you can clone your domain into Azure AD Domain Services. This means that your Organizational Units (OUs), group policies, groups, and so on can live on in the cloud, but in a different domain that is a clone of your on-premises domain. Stretching an Active Directory domain to Azure... --- ### PowerShell 101 for SharePoint Friends > If you use SharePoint or any Microsoft product, then you need to know and love PowerShell. Here I will help you with from a SharePoint PowerShell angle. - Published: 2016-12-07 - Modified: 2024-12-03 - URL: https://petri.com/powershell-101-sharepoint-friends/ - Categories: Microsoft 365, PowerShell, SharePoint - Tags: PowerShell, SharePoint, SharePoint PowerShell - Article Type: How To Are you a SharePoint or Microsoft person? Then you need to learn SharePoint PowerShell. Lucky for you, this article provides everything you need to get started. What I have found is that most people who still have not learned embraced PowerShell say they aren't doing so because they think it is for the other guy. If you are an administrator, you say it is a developer tool. If you are a developer, you say it is an administrator tool. And if you are a site collection administrator you say meh. However, PowerShell is for EVERYONE!     The next section is all about convincing you why you should love PowerShell. If you don't need convincing, then you can skip below to the section titled What Are the Basics You Should Know? Why Should You Care About PowerShell? Because I said so and everything you read on the internet is true. Here is the easy test to discover if you should learn PowerShell:                                 I don’t think the flowchart can be any clearer -- if you are going to continue to work with platforms in the Microsoft ecosystem, then PowerShell is an important part of your future. PowerShell’s rise to dominance in the Microsoft world is because everything is easier and more flexible with PowerShell. Think about that new feature you want to see Microsoft add to SharePoint. There are two ways for the company to release the feature -- as a new page in Central Administration or as a cmdlet in PowerShell. To make a new page in Central Admin... --- ### Version 2 of the Azure Active Directory PowerShell Module is Generally Available – But be Careful > Microsoft announced the general availability of the Azure AD PowerShell module. V2 means that scripts will have to be updated for use inside Office 365. - Published: 2016-12-06 - Modified: 2024-11-19 - URL: https://petri.com/version2-azure-active-directory-powershell-module/ - Categories: Microsoft 365, Office, PowerShell - Tags: Azure Active Directory, cmdlets, Microsoft Graph, PowerShell, scripts - Article Type: News Managing Azure Active Directory using PowerShell is a pretty common technique for Office 365 administrators to master. Many scripts to automate administrative processes have been written to leverage the -Msol* cmdlets included in version one of the Azure Active Directory PowerShell module. Version 2 of the module is now generally available, which is good, but be careful because scripts need to be updated before you can use the new module. What V2 of the Azure Active Directory PowerShell Module Means Microsoft has given the Azure Active Directory PowerShell module an extensive upgrade and released Version 2 to general availability on December 5. The upgrade features a completely new naming convention as cmdlets are now prefixed with AzureAD rather than Msol (Microsoft Online). The change in cmdlet naming is sufficient to mean that every script written to access Azure Active Directory needs to be rewritten before the new module can be deployed. Throw in some parameter changes and it’s clear that the work required to upgrade scripts to use the V2 module is more than a simple search and replace edit.     Microsoft makes a big thing that customers asked for “equivalent capabilities” between PowerShell and the Microsoft Graph API. The new module is based on the Graph API, which is the right thing to do, but I’m not sure that customers will welcome the disruption to operations that might occur as scripts are updated and tested against the new module. No Need to Rush Before you rush to install the new module, two really important points are made by Rob de Jong in the post announcing the release: “The new Azure AD PowerShell v2. 0 module don’t provide full functional parity with the older MSOL module yet. We’re working hard to make that happen in the coming months and will keep you updated on our progress. We are not planning to publish new functionality in the MSOL PowerShell... --- ### Microsoft Details New Enterprise Features Coming To Windows 10 - Published: 2016-12-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-new-enterprise-features-coming-windows-10/ - Categories: Windows 10 - Tags: Creators Update, News, Windows 10 - Article Type: News Microsoft has announced several new features coming to Windows 10 this spring that are targeted at the enterprise with the goal of further improving security. Earlier this year, Microsoft announced the ‘Creators’ update for Windows 10 and while the name didn’t invoke positive responses from the enterprise crowd, the company has announced today several features that will be targeted at the business world. Coming this spring, the Creators update will deliver enhanced security functionality that builds upon the narrative that Microsoft is using security as its differentiator for all of its products. With this release, the Creators update will include updates to Windows Security Center, Windows Defender Advanced Threat Protection (ATP), updates for Cloud-based Insights with Windows Analytics, in-place UEFI conversion, and improved mobile management. A significant focus of this release is based around monitoring the security of your environment and in the upcoming release, Windows Security Center will be updated to link natively with Office 365 ATP to create a single view of security events in a centralized portal.  The goal is to make it easier to monitor threats, across your entire ATP network, and respond faster to events as they arise. Windows Defender ATP is also getting several updates that will focus on detection, intelligence and remediation: Detection: Microsoft is expanding the use of sensors to detect threats that persist only in memory or at the kernel level. Intelligence: Microsoft is opening up Threat Intelligence to allow admins to feed their own data into the Windows Security Center. Remediation: New remediation features in Defender ATP provide IT admins tools to isolate machines, collect forensics, kill and clean running processes and quarantine or block files,... --- ### Microsoft Acquisition of LinkedIn is Cleared by Regulators - Published: 2016-12-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquisition-linkedin-cleared-regulators/ - Categories: Dynamics - Tags: Linkedin, News - Article Type: News As expected, Microsoft has cleared the final regulatory approval needed to complete its $26.2 billion acquisition of LinkedIn. As expected, Microsoft has cleared the final regulatory approval needed to complete its $26. 2 billion acquisition of LinkedIn. Microsoft announced its intention to purchase LinkedIn in June, noting that the social network would remain independent in the wake of the transition. ButMicrosoft purchased LinkedIn specifically for its rich trove of personal data, and it has been plotting to integrate the service into its broader portfolio of products, in essence turning LinkedIn into a public cloud version of its Microsoft Dynamics and Office Delve/Graph solutions. “This deal is all about bringing together the world’s leading professional cloud and the world’s leading professional network,” Microsoft CEO Satya Nadella said at the time. “If you think about how people work today, it’s split between these two worlds. They’re using Office on a daily basis, they’re using systems like Dynamics for CRM and human capital management. And then of course they’re using their professional network. And the dream I’ve always had is, how do we make this come together so that we can serve our customers? When I think about reinventing productivity and business process, this is really about completing that scenario. ” But as Microsoft's biggest acquisition by far, and coming as it is a year after the firm's Nokia write-downs---the losses are at $10 billion and counting from that debacle---LinkedIn is not a sure bet. And the acquisition has come under fire from those both inside and outside Microsoft's core ecosystem. The most stringent complaints, of... --- ### Control Virtual Machines Sizes That Azure Admins Can Deploy > This post will show you how to limit which Azure virtual machine specs and sizes can be deployed to a subscription or resource group using ARM policy. - Published: 2016-12-06 - Modified: 2024-09-04 - URL: https://petri.com/control-virtual-machines-sizes-azure-admins-can-deploy/ - Categories: Cloud Computing - Tags: ARM, ARM Policy, Azure, Azure Resource Manager, Azure Resource Manager Policy, Azure Virtual Machines, JSON, virtual machines, VSCode - Article Type: How To In this post, I will show you how you can prevent delegated administrators from deploying unwanted & expensive large virtual machine sizes, which granting them access to deploy smaller machines. Azure Resource Manager Policy One of the dangers, and understandable fears, about cloud services such as Azure is that IT as a utility makes it possible for IT people to go wild. I’ve seen it personally in my training courses, where a typical course should use maybe $50 of credit, but an attendee goes nuts and runs up a bill for hundreds of dollars. There are a few things we can do to control this, including: Monitoring bills: Every night, Azure produces data that allows you to see how much credit has been consumed. In CSP subscriptions, the CSP reseller has to retrieve and share this data. Note that this kind of data is not live -- you only see what happened up to and including the previous day. Credit caps: Depending on how you have purchased Azure, there are ways to cap credit on a per subscription basis. But how do you enforce policies? Maybe you want to restrict people to certain kinds and sizes of virtual machines? For example, for a light workload, do people genuinely need to deploy D14 or GS5 virtual machines?     Azure Resource Manager (ARM) has a feature called ARM Policy; this can be used in a variety of ways, including: Enforce the usage of certain kinds of fields, such as... --- ### Leveraging OneNote: Mastering Outlines and Lists > OneNote 2016 is a complex program with many features. Many of the features which make working with outlines and lists are hidden. Find and use them today! - Published: 2016-12-06 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-mastering-outlines-lists/ - Categories: Microsoft 365, Office 2016 - Tags: Leveraging OneNote, Office 365, OneNote - Article Type: How To In OneNote 2016, the lists and outlining options have a few bonus features. These extra tools take lists from rows of text to flexible elements. Lists have been around on computers in different forms for decades now. Nearly every text editor has the option to make bulleted or numbered lists. OneNote also has this capability, but in OneNote 2016 the lists and outlining options have a few bonus features. These extra tools take lists from rows of text to flexible elements. Make Lists You can get started with a list from the Ribbon or by using the keyboard shortcuts. To start a new bulleted list, press CTRL + . and press CTRL + / to start a new numbered list. The Ribbon offers a diverse range of different options such as arrows, letters, symbols, or even custom list options. Keep in mind these custom lists may not be supported on every OneNote app. You have your list picked out. Add a few list items using your standard keys for new line (enter) and indent a line (tab). You may notice that if you press tab after you add some text to a line OneNote will make a table in the list and not indent the line. To reduce the indent of a line, use shift + tab or backspace twice. The OneNote Shine So far nothing has been new or unique to OneNote. Where OneNote really begins to shine is when manipulating a list. Hover your mouse cursor near the bullets and you will see a diamond shape appear, which acts as a drag handle. Grab that icon and you can reorder lists and... --- ### HPE Turns The Ship Toward Hybrid Waters - Published: 2016-12-05 - Modified: 2024-09-04 - URL: https://petri.com/hpe-turns-ship-toward-hybrid-waters/ - Categories: Cloud Computing - Tags: HPE, HPE Discover - Article Type: Opinion Twelve months ago, HPE was a different organization. Today, the company has spun-off several of its assets and streamlined its operations so that it can focus on its next decade of sustainability. Twelve months ago, HPE was a different organization. Today, the company has spun-off several of its assets and streamlined its operations so that it can focus on its next decade of sustainability. As the market has shifted from everyone building out data centers locally to utilizing cloud services like AWS and Azure, HPE has found itself in a peculiar position as it makes many of the servers you find in data centers around the world. While cloud services ultimately will mean fewer on-premises data centers, there is still a vast market for server-based infrastructure along with new opportunities for services too. Last week, I attended HPE’s Discover conference in London with the intent to figure out where HPE is headed as the company shifts its strategy and offloads assets to fund its new growth while establishing itself for the new normal of the IT world. There is one notable message that I walked away with that helped to identify how HPE is thinking about its future; from multiple executives to the engineers walking the show floor, no single vendor can do it all. This is a stark contrast to how the company had traditionally operated, before its divestitures, that it had all the various bits and pieces one would ever need spread across its vast enterprise. Going forward, and this was prevalent at the conference last week, is that HPE is leveraging its ecosystem of partners, that when combined, can provide a solution for any business challenge that may arise... . --- ### Configure a DNS Zone Using Azure DNS - Published: 2016-12-05 - Modified: 2024-09-04 - URL: https://petri.com/configure-dns-zone-using-azure-dns/ - Categories: Cloud Computing - Tags: Azure, Cloud, DNS - Article Type: How To Learn how to set up an Azure DNS zone and add records using PowerShell. In today's Ask the Admin, I'll show you how to configure a DNS Zone using Azure DNS, and how to add records to the zone. In Microsoft Azure: A First Look at Azure DNS on the Petri IT Knowledgebase, I introduced you to Microsoft’s new Azure DNS service, and how it gives you the ability to use Microsoft’s DNS infrastructure for name resolution of your domain’s zones. For example, you might have an application, such as sharepoint. acme. com, for which you need to set up and manage DNS records, so it can be reached internally or from the public Internet. Azure DNS doesn’t allow you to purchase domain names from Microsoft, but it does enable you to utilize their infrastructure for fast and reliable DNS.     Set Up an Azure DNS Zone Azure DNS can be configured using the management portal or PowerShell, but in this article, I’m going to use PowerShell because it also allows for testing. If you’ve never used PowerShell to configure Azure, you’ll need to download Microsoft Azure PowerShell using the Web Platform Installer. Log in to Windows 10. Open a PowerShell window by typing powershell in the search box on the taskbar and selecting Windows PowerShell from the list of results. Log in to Azure using the Login-AzureRmAccount cmdlet, and enter your Azure tenant credentials when prompted. If you have more than one Azure subscription associated with your Microsoft account, you’ll need to select it using the Set-AzureSubscription cmdlet. In the example below,... --- ### Safety Tips Inserted by Exchange Online Protection Make Email Safer > Microsoft is rolling out safety tips in Office 365 to make users more aware of spam and phishing attacks. Exchange Online Protection inserts the tips. - Published: 2016-12-05 - Modified: 2024-11-19 - URL: https://petri.com/exchange-online-protection-safety-tips/ - Categories: Exchange Online, Microsoft 365 - Tags: ActiveSync, Exchange Online Protection, Malware, Meta-Keywords: EOP, Office 365, Outlook, owa, Phishing, spam Microsoft is introducing safety tips to Office 365 to highlight bad or suspicious email that might tempt users to do things that they shouldn’t. The initiative is good and valuable, but it rather loses some of its gloss because not all safety tips are exposed in Outlook. However, Microsoft is making sure that mobile and other clients see safety tips, even if not in the same interactive manner as is possible with OWA. Beware What Lurks in Email – It’s a Bad World Out There It’s a reasonable certainty that even the stupidest user realizes that bad things can lurk in email. Or perhaps not. After all, if the assertion was correct, those who enjoy filling our inboxes with noxious spam wouldn’t continue to do so. And if that happened, the world would have to cope with a sudden lack of offers to gain millions of dollars for just a small investment; or perhaps a great deal on Viagra; or even the chance to confirm our identity to a bank because of a problem with our account.     But spam, malware, spoofing, and phishing are the sordid underworld of email. Messages from people you don’t know or don’t care to know keep on being sent in ever-increasing quantities. Evidence of this fact can be found in the statistics published by anti-spam companies. For instance, TrendMicro provides an interesting global spam map showing the overall volume of spam and the rate of spam in different countries. The continuing growth of spam and the new and varying techniques used by spammers to get past anti-spam checks is why email service providers need to spend so much time and money suppressing crap before it hits user inboxes. Exchange Online Protection and Anti-Malware If you use Office 365 or Exchange Online Protection (EOP), you’ll know that Microsoft provides a wide range of tools to stop spam and malware. Safety tips were announced in April... --- ### Deploy Windows 10 Using MDT and WDS, Part 3: Deploy Windows 10 from a PXE-Enabled Boot Client - Published: 2016-12-05 - Modified: 2024-09-04 - URL: https://petri.com/deploy-windows-10-using-mdt-wds-part-3-deploy-windows-10-pxe-enabled-boot-client/ - Categories: Windows Server - Tags: MDT, WDS, Windows 10 - Article Type: How To Learn how to deploy Windows 10 over the network on a PXE-enabled boot client using MDT and WDS. In the second part of this series, I showed you how to customize a Windows 10 image in MDT using a task sequence, and configure WDS. In the third and final part, you’ll test a deployment of Windows 10 over the network on a PXE-enabled boot client.     Install Windows 10 on a PXE-Boot Client All that’s left to do is install Windows 10 on a client with a PXE-enabled network card. In this lab, I’m using a Hyper-V (gen 2) virtual machine to test this functionality. Let’s start by making sure that your device or VM is set to boot from the network card. The instructions below are for Hyper-V virtual machines. If you’re using another virtualization product or a physical device, refer to the provided instruction manual to modify the device’s BIOS/UEFI settings. In Hyper-V Manager, right-click the VM in the list of virtual machines and select Settings from the menu. In the Settings dialog box, click Firmware in the list of options on the left, and if Network Adapter is not at the top of the Boot order list, click Network Adapter in the list and use the Move Up button to move it to the top, and click OK. Configure a Hyper-V VM to boot from the network card (Image Credit: Russell Smith) Start the VM or physical device. Press F12 when prompted to boot the device from the WDS server. The device will boot using the . wim image... --- ### Paul Thurrott's Short Takes: December 2 - Published: 2016-12-02 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-december-2/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Opinion Because it's December all of a sudden and what the heck, this edition of Short Takes focuses Microsoft's LinkedIn acquisition, Windows 10 usage, faux outrage at the Microsoft shareholder meeting, and more. The most unrealistic thing about Dead Rising 4---which features zombies and an exo-suit---is that it takes place in a mall. Because it's December all of a sudden and what the heck, this edition of Short Takes focuses Microsoft's LinkedIn acquisition, Windows 10 usage, faux outrage at the Microsoft shareholder meeting, and more. Report: EU "likely" to clear Microsoft's acquisition of LinkedIn The Wall Street Journal has been claiming for the past week that EU antitrust regulators were "likely" to approve Microsoft's acquisition of LinkedIn. But now the publication has provided a bit more color to its prediction: There will be conditions attached to the approval, which will be based largely on the concessions that Microsoft previously offered. The EU has said it will announce its decision by December 6, next Tuesday. And somewhere, Marc Benioff's is dying inside. Which I'm frankly OK with. "Microsoft had made other attempts to buy LinkedIn: Co-founder" So now Marc Benioff can be retroactively upset too. Windows 10 usage share growth slows to a crawl Usage share statistics from Netmarketshare show that Windows 10 usage has remained flat for three months in a row, improving from 22. 53 percent to 23. 72 percent just 1. 19 percentage points over the past three months. Looked at objectively, it's hard to escape the fact that Windows 10 went gangbusters for its first year, during which the OS was a free upgrade, and then slowed down considerably. Although I'd argue that ~1 percent usage growth over... --- ### Deploy Windows 10 Using MDT and WDS, Part 2: Create an MDT Task Sequence and Configure WDS - Published: 2016-12-02 - Modified: 2024-09-04 - URL: https://petri.com/deploy-windows-10-using-mdt-wds-part-2-install-wds-boot-pxe-client/ - Categories: Windows Client OS - Tags: deployment, Microsoft Deployment Toolkit, Windows 10, Windows Deployment Services - Article Type: How To Customize Windows 10 deployment in MDT using a task sequence, and configure Windows Deployment Services. In the first part of this two-part series, I showed you how to deploy the Microsoft Deployment Toolkit (MDT) and import a Windows 10 image ready for distribution over the network using Windows Deployment Services (WDS). In the second part, you’ll create an MDT task sequence to manage the deployment of Windows 10, and configure WDS.     Create an MDT Task Sequence A task sequence specifies a list of jobs are required to install the OS after the PXE-enabled device boots. In this lab, we’ll use one of the standard task sequences supplied out-of-the-box in MDT. Open Deployment Workbench on the MDT server. In the left pane of Deployment Workbench, expand Deployment Share, your deployment share, right-click Task Sequences and select New Task Sequence from the menu. In the New Task Sequence Wizard, give the new sequence an ID and name, and then click Next. Create a new task sequence in MDT (Image Credit: Russell Smith) On the Select Template screen, select Standard Client Task Sequence from the menu to configure a complete client task sequence, and click Next. On the Select OS screen, select Windows 10 Enterprise Evaluation in Windows 10 Enterprise Evaluation x64 install. wim, or the OS of your choice, and click Next. On the Specify Product Key screen, select Do not specify a product key at this time. I’m using an evaluation version of Windows for this lab, so I don’t need a product key. You can choose a MAK... --- ### Azure Backup Adds Support for VMware - Published: 2016-12-02 - Modified: 2024-09-04 - URL: https://petri.com/azure-backup-adds-support-vmware/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Azure Backup Server, Backup, Cloud Backup, ESXi, ESXi 5.5, ESXi 6.0, MABS, Online Backup, virtual machines, vmware, vSphere - Article Type: Overview Microsoft announced that Azure Backup Server (MABS) added support for ESXi 5.5 and 6.0 (with or without vCenter) with the recently released Update 1 for Azure Backup Server. Find out what this means for VMware users. Microsoft recently added support for protecting VMware virtual machines (VMs) using Azure Backup Server, and storing your backups of these VM in Azure for long-term retention. The Need to Support VMware I am a self-confessed advocate of Hyper-V, but even I can admit that VMware has carved out a very large slice of the virtualization pie for themselves. Many of these VMware customers have looked for cloud services, and failing to find anything adequate from VMware, they’ve turned their attention to the likes of Amazon Web Services (AWS) and Microsoft Azure.     The new Microsoft would like you to run your apps or your services on its platforms and devices, but it isn't fussy about selling cloud services to Android users, Apple customers, and, as it turns out, VMware customers’ money is as good as that of a Hyper-V user. It’s been more than a year since Azure Site Recovery added support for replicating vSphere virtual machines to the cloud for disaster recovery purposes. Microsoft recently updates System Center Data Protection Manager (DPM) to add support for backing up vSphere virtual machines, and now Microsoft has added support for Azure Backup Server to do the same. vSphere Support in Azure Backup Server Microsoft announced that Azure Backup Server (MABS) added support for ESXi 5. 5 and 6. 0 (with or without vCenter) with the recently released Update 1 for Azure Backup Server. Azure Backup Server Update 1 supports ESXi 5. 5 and 6. 0 MABS provides disk-disk-cloud backup. You can... --- ### Deployment of Exchange Online Expandable Archives Paused > Exchange Online promised "bottomless" ever-expanding archive mailboxes. The deployment was limited to some Office 365 regions and is now paused. - Published: 2016-12-02 - Modified: 2024-11-19 - URL: https://petri.com/exchange-online-expandable-archives-paused/ - Categories: Exchange Online, Microsoft 365 - Tags: archive mailboxes, Exchange Online, Office 365 - Article Type: News Microsoft’s no-limit archive mailboxes were supposed to be available throughout Office 365 by now. As previously reported, the feature is available in some Office 365 datacenter regions but not others. Now word comes that Microsoft has paused the roll-out of the feature until sometime in the first quarter of 2017. What’s going on? Exchange Online and its Ever-Expanding Archives In a surprise announcement in the Office 365 Message Center, Microsoft revealed on December 1 that they had paused the deployment of the “bottomless” archive mailboxes within Exchange Online.     The most interesting words in the announcement was the reason given. The pause is “to ensure the most stable environment for our customers”. In other words, some problems have been found with how the expandable archives work. When I previously covered this topic on October 18, I noted that the deployment was complete in the Australia and APAC Office 365 datacenter regions. At that point, Microsoft anticipated being able to continue the deployment to the larger regions (EMEA and the U. S. ) in the coming months, subject to no problems being found. It’s hard to know where the problems that provoked the pause might lie. The idea of combining 50 GB chunks into a logical mailbox structure is both simple and complex at the same time. It’s easy to see how the mechanism might work well in the lab and then run into complications when exposed to the 100,000-server Exchange Online environment where mailboxes from multiple tenants are stored in databases. Fools Rush in Where Programmers Pause All in all, it’s good that Microsoft has paused to review how expandable archives work in practice and make whatever changes are necessary to allow the deployment to proceed. I understand that the largest expandable archive currently in production is well over the 1 TB mark... . --- ### The Nano Server Image Builder > Read about how the Nano Server Image Builder makes it easier to build WS2016 Nano Server images, and deploy them to physical servers via USB. - Published: 2016-12-01 - Modified: 2024-09-04 - URL: https://petri.com/nano-server-image-builder/ - Categories: Windows Server - Tags: deployment, Nano, Nano Server, Nano Server Image Builder, Windows Server 2016, WS2016 - Article Type: Overview Aidan Finn introduces you to the new GUI-based tool for deploying Windows Server 2016 (WS2016) Nano Server. This post will introduce you to the new GUI-based tool for deploying Windows Server 2016 (WS2016) Nano Server. Nano Server Deployment Options Before the release of the Nano Server Image Builder, there were a few ways that you could build images or deploy Nano Server, none of which were very user friendly. A PowerShell module could be imported from the installation media to create an image, a virtual hard disk (VHD). You could then manually deploy the VHD to a virtual machine, reconfigure a physical server to boot from the VHD on an existing file system, or deploy the VHD to a machine using Windows Deployment Services.     Microsoft released the Nano Server Image Builder soon after the general availability of WS2016. This GUI-based tools aims to simplify the creation of an image, and can create a once-off WinPE USB boot disk for deploying the image to a physical server. Prerequisites You will need a few pieces to make the tool work: Download a copy of the WS2016 installation ISO Install the Windows Assessment and Deployment Kit (ADK) Install the Nano Server Image Builder Hardware Detection USB Drive Veterans of Windows deployment will find that deploying Nano Server to a physical server has a very old feel to it. You will have to add drivers, configure boot type (UEFI/BIOS), determine NIC interface indexes to associate IP configurations, and more. You can use the Nano Server Image Builder to create a WinPE USB boot disk that will scan... --- ### Sponsored: Understanding Windows Containers - Published: 2016-12-01 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-understanding-windows-containers/ - Categories: Virtualization - Tags: Docker, Hyper-V, virtual machines, Virtualization, Windows Containers - Article Type: Overview Learn why containers are more efficient than virtual machines, and the benefits of using Docker images with containers. Containers are a lightweight virtualization solution that, unlike VMs, use the kernel of the host OS and other shared resources to create sandboxes that have their own process space, network interfaces, and can be configured independently of the host. Windows uses namespace isolation, resource control, and process isolation technologies to restrict the files, network ports, and running processes each container can access, so apps running in containers can’t interact or see apps running in the host OS or other containers. Containers vs. Virtual Machines There are significant technical differences between containers and VMs. The most important is that containers use a shared kernel, so despite the use of namespace isolation, a malicious user might be able to exploit a design flaw or security vulnerability to break out of a container. VMs provide better isolation, but load a full OS instance into memory, plus any required application libraries, resulting in a large memory and disk footprint that reduces efficiency, portability, and VM density. Containers are more efficient because files, directories, and running processes are shared between containers. And only when a change is made, or a new file added, does a container use a distinct copy of a file provided by the host OS -- and then just the blocks that have changed. When containers are started for the first time, they see what appears to be the file system of a freshly installed OS, even if changes have been made to the host, and the running memory only holds what... --- ### Outlook 2016 and its Many Connections to Office 365 Groups > If you examine the network connections opened by Outlook 2016, you'll find many to Office 365 Groups. The connections are used for synchronization. - Published: 2016-12-01 - Modified: 2024-11-19 - URL: https://petri.com/outlook-connections-office-365-groups/ - Categories: Microsoft 365, Office - Tags: GST, Office 365 Groups, offline synchronization, Outlook 2016 - Article Type: News If you examine the network connections opened by an Outlook 2016 client, you might find many connections established to the mailboxes belonging to Office 365 Groups. Using connections to grab data is fine, but why are the connections quite so persistent and what do they do anyway? Revealing Outlook's Connections Experienced Outlook users know that they can click on the Outlook icon in the system tray to reveal a menu of options. Instead of a simple click, using the CTRL+click combination forces Outlook to include a Connections option in the menu. In turn, this option exposes the network connections that Outlook has established to different resources, including the user’s mailbox, archive mailbox, public folders, and shared mailboxes. (and even site mailboxes, if you use them). This method works for on-premises and cloud servers and is a good way to find out to what resources Outlook is connected.     The Groups Connection If you use Office 365 Groups, Outlook also lists the connections to your favorite groups and any other group to which Outlook has connected during the current session (Figure 1). My observation is that the number of connections can grow during a session to a point where a connection exists to every group to which you belong. Figure 1: The many connections to Office 365 group mailboxes (image credit: Tony Redmond) The question is what purpose do these connections serve? The answer lies in the nature of the way Office 365 Groups integrate with Outlook 2016. Cached Mode Only Outlook 2016 can only connect to Office 365 Groups when the client is configured in cached Exchange mode. In this mode, Outlook works with a cached local copy of the mailbox rather than depending on server connections. Times do exist... --- ### Deploy Windows 10 Using MDT and WDS, Part 1: Create an MDT Deployment Share - Published: 2016-11-30 - Modified: 2024-12-03 - URL: https://petri.com/deploy-windows-10-using-mdt-wds-part-1-create-mdt-deployment-share/ - Categories: Windows Client OS - Tags: Microsoft Deployment Toolkit, Windows 10, Windows Deployment Services - Article Type: How To Learn how to deploy the Microsoft Deployment Toolkit (MDT) and import a Windows 10 image ready for distribution over the network using Windows Deployment Services (WDS). In the first part of this three-part series, I'll show you how to deploy the Microsoft Deployment Toolkit (MDT) and import a Windows 10 image ready for distribution over the network using Windows Deployment Services (WDS). If you need to deploy Windows 10 on more than a handful of devices, or redeploy the OS regularly, then Windows Server WDS may be the solution you’re looking for. WDS provides a subset of the deployment features found in System Center Configuration Manager (SCCM), but doesn’t have the targeting, zero-touch installation and thin imaging options found in SCCM.     MDT and WDS are two separate tools that can be used together or individually. MDT is a free download from Microsoft, and allows system administrators to quickly customize Windows 10 images using a wizard-based approach to include line-of-business applications and device drivers. MDT also provides options for migrating user settings and backing up the currently installed OS at install time, courtesy of tools from the Windows Assessment and Deployment Kit (ADK). WDS is a feature of Windows Server, and when used alone, can be used to install full Windows 10 images across the network to PXE-boot capable devices. But in conjunction with MDT, WDS becomes a more powerful tool, allowing administrators to tailor installations and deployment options. Preboot eXecution Environment (PXE) enabled network cards can retrieve boot images from the network with the help of DHCP and TFTP. If you are using Hyper-V, only generation 2 virtual machines (VMs) support PXE... . --- ### Remote Desktop to Azure VM Has Failed > This post contains a set of steps, actions, and solutions for when you cannot remote desktop into an Azure virtual machine. - Published: 2016-11-30 - Modified: 2024-09-04 - URL: https://petri.com/remote-desktop-azure-vm-failed/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machines, Remote Desktop, Remote Desktop Connection, virtual machine - Article Type: How To Walk through the troubleshooting steps for when you are unable to log into a Windows virtual machine (VM) in Azure via a remote desktop connection (aka RDP).   This post will step you through the troubleshooting steps for when you are unable to log into a Windows virtual machine (VM) in Azure via a remote desktop connection (aka RDP). There are several things that can prevent you from successfully logging into a Windows VM in Azure. Some of these are human errors -- configuration errors -- some are regular faults that sometimes happen in a Windows installation, and some are things that can go wrong in the Azure fabric.     Note that many of the methods shown in this post change locations the Azure Portal faster than a whack-a-mole. The methods shared in this post are correct, but their locations will probably have changed since this post was written! You should be able to find the Azure Portal tools in the settings of the VM in question without much effort. Check Boot Diagnostics From time to time a VM might have a problem starting up or it might have crashed. If you have enabled Boot Diagnostics (under Diagnostics Settings), you can view a screenshot that is regularly taken of the VM’s “console” where you can see if your VM is running. You can find this in Diagnose and Solve Problems (in the VM settings) > View Boot Diagnostics. Checking if an Azure VM is running Reset Remote Desktop Configuration This option allows you to reach into the VM via a back door, the VM extension, to reset some configurations in the... --- ### Microsoft Shares New Azure Server Specs - Published: 2016-11-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-shares-new-azure-server-specs/ - Categories: Cloud Computing - Tags: Azure, Hardware, Open Compute Project, Project Olympus, Servers, storage, virtual machines - Article Type: Overview Take a look at Microsoft’s newest contribution to the Open Compute Project (OCP), which gives us a peek behind the curtain and suggests what the next generation of Azure hosts will look like. In this post I’ll discuss Microsoft’s newest contribution to the Open Compute Project (OCP), which gives us a peek behind the curtain, and suggests what the next generation of Azure hosts will look like. The Open Compute Foundation Back in 2009, Facebook was challenged by the incredible growth of the business; the infrastructure needed to keep up, and the company realized that traditional large data center infrastructure is not suitable for cloud-scale computing. Facebook needed to rethink IT and innovate. In 2011, Facebook, Intel, Rackspace, and others created the OCP to share what they had learned and created. The goal is that by sharing ideas and shedding traditional intellectual property concepts, each of the member can benefit by maximizing innovation, reducing complexity, increasing scale, and decreasing costs. Since the launch, a who’s who of cloud innovators has joined and contributed to the OCP, including: Google Apple Dell Cisco Lenovo Microsoft Note that Bill Laing, Corporate Vice President of Cloud and Enterprise at Microsoft until September 2016, is listed as a member of the board of directors at the OCP. While at Microsoft, Laing worked on building Microsoft’s data center hardware.     Microsoft and the OCP The first time I heard of the OCP was when Microsoft contributed some hardware designs in January 2014. Since then, Microsoft has been an active contributor. Those initial contributions were based on the server and data center designs that powers Azure, and more recent submissions were based on the software-defined networking of Azure... . --- ### Windows 10 Anniversary Update Graduates To Current Branch For Business - Published: 2016-11-29 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-anniversary-update-graduates-current-branch-business/ - Categories: Windows 10 - Tags: Current Branch for Business, News, Windows 10 - Article Type: News Microsoft has announced that its Anniversary update for Windows 10 has graduated to the Current Branch for Business. Microsoft has several servicing branches for Windows 10, consumer, current branch for business and long term servicing branch. Each branch has its own purpose with updates typically being released to consumers first and then flowing down to the long term servicing branch. The Anniversary update was initially released to the consumer in August and now, Microsoft says, that version of Windows 10 is ready for business users. This release brings several new pre and post-breach detection protections, identity protection, enhanced information protection and more; you can read about all the business-focused features here. To reach this milestone, Microsoft said that they have addressed a thousand items of feedback from consumers and corporate customers. For organizations who are not already running the Anniversary update, no action needs to be taken as long as you have the latest cumulative update installed. Do keep in mind that this update does take some time to install, so it's best not to update user machines during normal business hours. The anniversary update that will be released is version 14393. 447 and you should begin to watch for that update to arrive in your environment in the near future. True to it’s word, Microsoft has consistently stated that CBB will be updated roughly six months after consumer release and the Anniversary release has fallen inside of that window. If you want to read more about this release, you can find Microsoft's announcement, here. --- ### Sponsored: Automate Office 365 User Licensing - Published: 2016-11-29 - Modified: 2024-11-19 - URL: https://petri.com/sponsored-automate-office-365-user-licensing/ - Categories: Microsoft 365 - Tags: Active Directory, Azure Active Directory, Office 365 Licensing, PowerShell, Softerra Adaxes - Article Type: Overview If you need to ensure that users have the correct Office 365 licenses assigned, and that licenses are automatically revoked as users are deprovisioned, then look to a third-party solution, such as Softerra Adaxes, to automating licensing. Editor’s Note: This blog post is the fourth in a four-part blog series from Adaxes. Azure Active Directory (AAD) is the identity management solution that powers Office 365, and just like on-premises Active Directory (AD), requires careful management to avoid security problems. But management and security are not the only concerns, and a common problem that organizations face is how to automate the assignment and revocation of Office 365 licenses. Microsoft doesn’t provide a turnkey solution for managing Office 365 licenses through the full lifecycle, but there are ways to automate the assignment of licenses using PowerShell. If you need to ensure that users have the correct licenses assigned, and that they’re automatically revoked as users are deprovisioned, then look to a third-party solution, such as Softerra Adaxes. PowerShell AAD Module PowerShell can be used to create new users in the directory associated with your Office 365 tenant, and at the same time you can assign Office 365 licenses, or assign and remove licenses after the fact. Before you can use the cmdlets below, you’ll need to install the AAD PowerShell Module, which can be found here. Use Connect-MsolService to log in to Office 365, and then run the Get-MsolAccountSku cmdlet to get a list of available licensing plans (AccountSkuId) and licenses accessible from your Office 365 subscription. The New-MsolUser cmdlet can be used with the -LicenseAssignment parameter to assign licenses when a user is provisioned: ​New-MsolUser -UserPrincipalName user2@mydomain. com -DisplayName ‘User 2’ -FirstName User -LastName 2 –Password ********* -ForceChangePassword $true –LicenseAssignment... --- ### Microsoft Says It's Time To Dispel Some Cloud Myths. Do The Myths Apply to Office 365? > Microsoft says it's time to dispel the myths that circulate about cloud services. Do those myths apply to Office 365? - Published: 2016-11-29 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-dispels-cloud-myths-office-365/ - Categories: Microsoft 365, Office - Tags: Azure, Cloud, Compliance, Julia White, myths, Office 365, Security Microsoft CVP Julia White says that it's time to dispel the top cloud myths of 2016. It’s good to have an opinion on these matters, but when an interested party like Microsoft advances a case that something is a myth, you have to ask yourself whether the myths are true or not. So here’s a look at those six top cloud myths in the context of Office 365. Office 365, Cloud Myths, Hot Air, and Bunkum Julia White is the Corporate Vice President for Azure and Security at Microsoft. She’s been around different parts of Microsoft for more years than I care to remember and I respect her opinion. Which then led me to consider her “Top Cloud Myths of 2016” post of yesterday.     The core point made is that cloud services are now very much mainstream. I agree. Cloud is way past the fabled tipping point so beloved of consultants, where a previously rare phenomenon is becoming more common. Cloud services are everywhere; are robust, reliable, and secure; and will take an increasing amount of work from on-premises systems as time goes now. Now that I have nailed my colors to the mast, let’s consider the six myths that worry Julia, using Office 365 as a test case. Myth #1: Enterprises need only one cloud vendor. Agreed. Diversity is good, even in the cloud. You don’t have to run Office 365 alongside Azure, but you’ll consume Azure as you use Office 365 simply because Azure is part of the framework upon which Office 365 is built. However, goodness can be gained by using Amazon Web Services as well. Or any other cloud service you care to deploy, assuming that the selected service delivers. Myth #2: Cloud Security is riskier than on-premises Agreed. There’s no doubt that cloud vendors devote more engineering resources and technology to keeping their systems more secure and more compliant... --- ### Microsoft and HPE Further Relationship To Expand The Hybrid Cloud - Published: 2016-11-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hpe-relationship-expand-hybrid-cloud/ - Categories: Cloud Computing, Microsoft Azure - Tags: Discover 2016, HPE, Microsoft - Article Type: News Microsoft and HPE have announced that they are expanding their partnership to help train and advance the deployment of Azure Stack. This year, at HPE’s Discover conference in London, Scott Guthrie joined Antonio Neri of HPE on stage to share how the two companies are expanding their relationship that was announced last year. Announced last year was that HPE would recommend Azure to its clients for cloud services and in return, Microsoft named HPE a preferred provider of the platform. During the past year, the two companies have collaborated on Hyper-Converged systems based on Microsoft’s Cloud Platform System standard and a few months ago, HPE announced an upcoming Azure stack solution that will make it easier for companies who are interested in, or are moving towards a hybrid environment, transition faster. Finally, HPE also has its consulting arm that is helping customers transition from on-premises to hybrid and full cloud environments. This year, the two companies have announced a joint innovation center that will host workshops to help customers’ setup Azure Stack solutions. The first center is in Seattle with plans to open another center in Europe in the near future. Seeing as HPE is in a transition mode, where the company is shifting how it operates and is streamlining its operations, partnerships like the one with Microsoft are a critical component to its evolving strategy. While HPE is working to become the leader in the hybrid IT environment, they are also becoming Azure Stack specialists which has a long-tailed future as Azure becomes more dominant in the cloud space. --- ### Azure Backup Protects Against Deliberate Attacks > Read how Azure Backup has added new security features to protect your cloud backups from ransomware and cryptoware. - Published: 2016-11-28 - Modified: 2024-11-19 - URL: https://petri.com/azure-backup-protections-deliberate-attacks/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Backup, Ransomware, Security - Article Type: Overview Microsoft’s cloud backup solution, Azure Backup, has added new protections to defend your data against deliberate attacks. Find out what this means for you. Microsoft’s cloud backup solution, Azure Backup, has added new protections to defend your data against deliberate attacks. This post will explain what this means for you. Background A report on the subject of “ransomware” and businesses that was published earlier this year by Symantec makes for very sobering reading. Malware, such as CryptoLocker, that attacks a business by scanning for data on the network, encrypting it, and demanding a bitcoin ransom to decrypt the data, is becoming more common. Ransoms are increasing, and terms such as ransomware-as-a-service have been coined to describe these professional attacks that are orchestrated by criminal organizations. The success of these forms of attacks has inspire other attackers, greedy for a slice of the pie; kits are available to build your own ransomware! Ransomware attacks were once entirely random, but targeted attacks are become more common. That’s a worry because it implies that an attack will be better planned to defeat defenses. One approach to protecting yourself against a crypto attack is to restore your files from backup. That can be an expensive (human effort and downtime) solution but that might be better than paying an attacker -- I have heard stories of a decryption failing and the attackers requiring a second ransom! What if the attacker also prevented access to your backup? Maybe they deleted your backups? Azure Backup has implemented new security mechanisms to protect your backup data from these deliberate kinds of attacks. New Azure Backup Security Features There are 4 features... --- ### Office 365 Achieved 99.99% Availability in Q3 2016. Does Anyone Still Care About Cloud SLAs? > Microsoft reports that Office 365 attained availability of 99.99% in the third quarter of 2016 and comfortably beat its SLA target. - Published: 2016-11-28 - Modified: 2024-11-19 - URL: https://petri.com/office-365-sla/ - Categories: Microsoft 365, Office - Tags: cloud services, G Suite, Google, Office 365, performance, service level agreement, SLA - Article Type: News The news that Office 365 achieved 99.99% availability in the last quarter comes as no real surprise. As cloud services become ever more massive, it becomes harder for any incident to affect a service’s SLA in any meaningful way. The SLA Record for Office 365 I suspect most people don’t care to check whether Office 365 meets its Service Level Agreement (SLA). But I am the pernickety type that cares about detail like this. Which brought me to the page in the Office 365 Trust Center where Microsoft publishes SLA results on a quarterly basis. The information posted for the third quarter of 2016 covers availability through the end of September 2016. For the sake of completeness, Table 1 details the quarterly figures reported by Microsoft since they first started to report SLA results in 2013. Q1 2013 Q2 2013 Q3 2013 Q4 2013 Q1 2014 Q2 2014 Q3 2014 Q4 2014 99. 94% 99. 97% 99. 96% 99. 98% 99. 99% 99. 95% 99. 98% 99. 99% Q1 2015 Q2 2015 Q3 2015 Q4 2015 Q1 2016 Q2 2016 Q3 2016 99. 99% 99. 95% 99. 98% 99. 98% 99. 98% 99. 98% 99. 99% Table 1: Office 365 performance against SLA since 2013 Data for the last quarter is usually available six weeks after the quarter ends. That is, if the folks responsible for maintaining the page remember to update it. There have been times in the past where a number of vexed messages had to be dispatched to the Office 365 team to ask what had happened to quarterly figures when the data didn’t appear on time. In any case, the process flowed smoothly on this occasion.     Calculating Availability Of course, many games are played with SLA figures to make the availability of systems seem better. Excluding planned... --- ### Introduction to Windows Hello for Business - Published: 2016-11-25 - Modified: 2024-09-04 - URL: https://petri.com/introduction-windows-hello-business/ - Categories: Security - Tags: biometric, Security, Windows 10, Windows Hello - Article Type: Overview Russell explains what Windows Hello for Business is and how it differs from Windows Hello for consumers. In today's Ask the Admin, I'll explain what Windows Hello for Business is and how it differs from Windows Hello for consumers. Nobody likes passwords. Users don’t like them, IT dislikes them even more, and most importantly, they’re an insecure relic from the past that we still rely on every day. But Microsoft is attempting to banish them to the great technology trash can in the sky. Passwords are bad for many reasons, not least because they can be guessed, recycled across different sites -- making it easier for hackers to gain entry to multiple systems -- exposed in server breaches, and can be used in replay attacks. Social engineering can also lead to users unwittingly handing over their credentials to the bad guys.     Windows Hello To put an end to this security quagmire, Microsoft introduced Windows Hello in Windows 10. Instead of entering a password to sign in to Windows, users can set up a gesture: either a PIN or biometric authentication method. If your device doesn’t support biometric authentication, Microsoft recommends using a PIN that’s unique to the device instead of signing in with a common password, to reduce the risk of your password being compromised. If the PIN gets compromised, then the hacker can gain access only to the device, and not your Microsoft account, as the PIN cannot be used to access your account from any other device. Windows Hello for Business (Image Credit: Microsoft) Enrollment is a... --- ### Leveraging OneNote: Build a Project Dashboard > Use OneNote to build a project dashboard and stay on top of your projects. Understand the status of all the moving parts in every project at a glance. - Published: 2016-11-24 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-build-project-dashboard/ - Categories: Office - Tags: Leveraging OneNote, Office, OneNote - Article Type: How To Learn how to use OneNote to build a project dashboard to keep track of each of your project's statuses. Projects can fall into a state of limbo where you are waiting for something outside your control to occur. When a project falls into limbo, it stops being tracked and can fall behind. You would think that Microsoft, the productivity company, would have a great solution to this, but it does not. I use OneNote to build a project dashboard and keep projects on my radar and out of limbo.     The static nature of OneNote is a double-edged sword. Building a dashboard to show project status can easily be done, but keeping that dashboard up-to-date takes work. Ideally, you will have your project notebook shared with your team so that they can keep their sections up-to-date. Creating a section in your project notebook for "status" lets different departments describe their status in whatever way fits them best. Build a Project Dashboard OneNote Project Dashboard Since OneNote is essentially digital paper, your project dashboard can look however you decide. This can a blessing and a curse because too many options can be overwhelming. However, not enough options can restrict the look and functionality. OneNote 2016 follows the Office paradigm when it comes to styles. I use the heading styles to build a single dashboard for all my teams. My project dashboard helps me know the status of all my different projects. Each project has a heading, then under the heading are activities. Each activity should have several tasks and a clear outcome (e. g. ,... --- ### Paul Thurrott's Short Takes: November 23 - Published: 2016-11-23 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-23/ - Categories: Mobile - Tags: News - Article Type: Opinion Because it's a short Thanksgiving work week here in the U.S., this edition of Short Takes focuses on Microsoft's inadvertently racist email newsletter, Facebook selling its soul, and much more. Oh, it's on. Because it's a short Thanksgiving work week here in the U. S. , this edition of Short Takes focuses on Microsoft's inadvertently racist email newsletter, Facebook selling its soul, and much more. Note: It's Thanksgiving week here in the United States, so today is like Friday for much of the country. As a result, I'm publishing Short Takes today, and it will be a bit shorter than normal. Much like this week. Happy Thanksgiving! --Paul Microsoft used the N-word in an Xbox email newsletter. Yes, really Sometimes, you just have to shake your head. And given the strange issues Xbox has had this year---like the party at which scantily-clad female students served as table dancers, and the "hella nom" episode of which we will never again speak---one has to wonder how something like this slipped through the censors. And yet it did: An email newsletter celebrating the release of a zombie-themed game called Dead Rising 4 included what was intended to be a zombie-themed subject line: "NNNNGGGHHHAAAA. " If you sound that one out, however, you'll see that it is, in fact, a racial slur. Guys. Seriously. "Today we sent a DR4 email where a zombie roar was interpreted by many as a racial slur," Microsoft's Larry Hyrb admitted on Twitter. "We apologize and promise to do better next time. " I guess that's all they can do. Every single time something like this happens. "No, Microsoft's zombie groan isn't racist" Obviously. It's just stupid... . --- ### Microsoft Offers Concessions to EU to Win Approval of LinkedIn Acquisition - Published: 2016-11-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-offers-concessions-eu-win-approval-linkedin-acquisition/ - Categories: Dynamics, Microsoft 365, Office - Tags: Linkedin, News - Article Type: News A report claims that Microsoft has offered to open up Outlook to rivals in order to win European Union approval of its $26.2 billion acquisition of LinkedIn. This change does not address the complaints of Salesforce.com, however. LinkedIn CEO Jeff Weiner, Microsoft CEO Satya Nadella, LinkedIn chairman Reid Hoffman A Wall Street Journal report claims that Microsoft has offered to open up Outlook to rivals in order to win European Union approval of its $26. 2 billion acquisition of LinkedIn. This change does not address the complaints of Salesforce. com, however. Citing "people familiar with the matter," the publication says that Microsoft's concessions all concern Outlook, the software giant's email and personal information management solution, and not an explicit promise to let rivals access the treasure trove of user data in the LinkedIn social network. Salesforce. com lost out on its own bid to acquire LinkedIn and has since mounted a furious campaign to convince antitrust bodies around the world to prevent Microsoft's acquisition. Key to this complaint is an unfounded claim that the Microsoft deal will "stifle innovation," a key phrase aimed at raising the eyebrows of antitrust regulators. "If Microsoft gains ownership of LinkedIn, the company will have the ability and incentive to use LinkedIn's one-of-a-kind dataset to enhance its own products, while preventing competitors from accessing and effectively utilizing that same data," Salesforce. com chief legal counsel Burke Norton wrote in a public plea. "The result will fundamentally change the marketplace in a way that will be harmful to consumers. Even more damaging, Microsoft could end up stifling future innovation in the market at large by further extending to the cloud the same monopolistic position upon which Microsoft has built its traditional... --- ### Microsoft Retires EMET Security Tool - Published: 2016-11-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-retires-emet-security-tool/ - Categories: Windows Client OS - Tags: EMET, Security, Windows 10 - Article Type: News Find out why Microsoft has discontinued EMET and how Windows 10 mitigates many of the threats that EMET was designed to counter. In today's Ask the Admin, I'll look at why Microsoft has discontinued EMET and how Windows 10 mitigates many of the threats that EMET was designed to counter.     Microsoft last released an update to its free Enhanced Mitigation Experience Toolkit (EMET) for Windows in January, but has since decided to retire the product. EMET was born out of Microsoft’s Trustworthy Computing initiative, a project designed to increase trust in the company’s software at a time when privacy and security issues in Windows were threatening to taint Microsoft’s reputation. With gaps of 3 to 4 years between major OS releases, EMET was needed to defend organizations against zero-day vulnerabilities. To learn more about EMET, see What’s New in Microsoft EMET 5. 2 on the Petri IT Knowledgebase. EMET was successful in protecting users between Windows releases, but there were also drawbacks. As a bolt-on solution, the protection techniques were not as robust as those built-in to the OS, which led to hackers finding ways to bypass EMET relatively quickly. The protections provided by EMET could lead to performance and reliability issues in applications, due to the low-level access required that was used in ways the OS wasn’t originally designed for. And finally, EMET didn’t keep pace with developments in Windows, and although Microsoft supports EMET 5. 5 in Windows 10, the protections weren’t always as good as those now integrated into the OS. Windows 10 – Software-as-a-Service It shouldn’t come as any surprise that Microsoft has stopped developing EMET... . --- ### Microsoft Overhauls Office 365 Roadmap – For the Better > Microsoft is overhauling the Office 365 Roadmap by providing unique feature IDs for development items. - Published: 2016-11-23 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-overhauls-office-365-roadmap/ - Categories: Microsoft 365, Office - Tags: Office 365, Office 365 Admin Center, roadmap - Article Type: News Microsoft plans to make the information contained in the Office 365 Roadmap more accessible so that software updates can be tracked from development through announcement to implementation. It all sounds good. The only question is why it took so long to happen. In other news, some odd things happened in Office 365 this week, but I’m not going to write about them (much) as Office 365 Snippets are no more. In a contribution posted to the “Change Alerts” group in the Microsoft Technical Community, Brian Levenson, an Office 365 product marketing manager, said that plans were in place to make improvements to the Office 365 roadmap. A Roadmap to Happiness The Office 365 roadmap is Microsoft’s public listing of development items in progress for all applications running in the service. It is divided into: Launched: Recent updates that are fully available across Office 365 Rolling Out: Updates that are currently being made available to Office 365 tenants. Not all customers yet have access to this functionality. In development: Updates that are currently in development or being tested. First Release tenants are likely to have access to some of the functionality in this category. Cancelled: Updates that Microsoft previously announced that are no longer in development or are “indefinitely delayed”. Previously Released: Updates that are available as part of the base functionality of Office 365. As you’d imagine, given that Office 365 is over five years old now, the last category is the largest. However, at the time of writing, there are some 154 updates in development and 55 rolling out, quantities that underline the work required for tenant administrators to keep abreast of what’s changing inside Office 365. The Happiness of Roadmap Items The Roadmap has been around for a couple of years now and it’s an extremely useful tool for tracking change within Office 365. That is, if you understand the text provided by Microsoft to explain... --- ### Azure Launches New Av2-Series VMs > Microsoft launched a replacement for the A-Series VMs that is faster, more affordable, with easier to understand sizing. - Published: 2016-11-22 - Modified: 2024-09-04 - URL: https://petri.com/azure-launches-new-av2-series-vms/ - Categories: Cloud Computing - Tags: Azure, licensing, virtual machines - Article Type: News Microsoft has announced sizing and pricing details for a successor to the Azure A-Series virtual machines, aimed at common/simple workloads that do not require much horsepower. Microsoft has announced sizing and pricing details for a successor to the Azure A-Series virtual machines, aimed at common/simple workloads that do not require much horsepower.     The A-Series Virtual Machines The low-end A-Series virtual machines originally ran on hosts with low-powered Opteron processors that were designed more for power efficiency than number crunching. Today, Microsoft runs these virtual machines on a variety of host hardware, but they reduce the abilities of the virtual processor to match the price point of this series of virtual machine. The size is throttled, based upon the hardware, to offer consistent processor performance for the running instance, regardless of the hardware it is deployed on. The A-Series offers the most affordable compute option in Azure, with a Standard A1 costing $66. 96 per month (North Europe), charged for per minute that the machine is running. The prices of the Azure A-Series virtual machines in North Europe Microsoft has faced some challenges with virtual machines. Many services in Azure have proven to be very affordable; I’ve found that hybrid and data services are moving very well. But many have commented that Azure virtual machines for common workloads don’t make much economic sense; some say it’s cheaper to run those workloads on-premises, along with all the power, cooling, and infrastructure maintenance costs. Note: Personally I find that Azure compute can be very useful for shared, online, and temporary/burst workloads, but it is hard to justify lift’n’shift of... --- ### Sponsored: Delegating Access in Active Directory - Published: 2016-11-22 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-delegating-access-active-directory/ - Categories: Active Directory (AD) - Tags: Access control, Active Directory, Delegation, Softerra Adaxes - Article Type: Overview Delegating access to Active Directory (AD) usually involves deciding which permissions to assign users so that they can perform a restricted set of tasks. However, providing access to AD also requires you to think about the appropriate management tool and user interface. Editor’s Note: This blog post is the third in a four-part blog series from Adaxes. Delegating access to Active Directory (AD) usually involves deciding which permissions to assign users so that they can perform a restricted set of tasks. However, providing access to AD also requires you to think about the appropriate management tool and user interface. A well-designed Organizational Unit (OU) structure lets IT assign permissions and Group Policy Objects (GPOs) to different sets of AD objects. For example, you might want to allow Help Desk users to reset user passwords and unlock accounts, but not to modify the AD schema. AD permissions can be assigned manually or using the Delegation of Control Wizard, which has a built-in list of common tasks that make it easy to assign the necessary rights. Windows Server’s out-of-the-box advanced tooling, such the Active Directory Users and Computers (ADUC) management console, has never been that easy to work with or suitable for non-technical users. It’s possible to customize the management consoles (MMCs) to a limited extent, but not enough to make them user friendly. Microsoft recognizes this, and in Windows Server 2008 R2 introduced the Active Directory Administrative Center (ADAC), which aimed to provide an enhanced management experience and a better graphical interface using data-driven and task-oriented navigation. Figure 1 If none of Microsoft’s solutions are a good fit for your purposes, there’s always the option to create your own management console based on PowerShell or other command-line tools. If you have developers in-house,... --- ### Microsoft’s Push To Turn Your Phone Into A PC Arrives With Redstone 3 - Published: 2016-11-21 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-push-turn-phone-pc-arrives-redstone-3/ - Categories: Windows 10 - Tags: News, Redstone 3, Windows 10 - Article Type: News Microsoft is working on new technology that would allow ARM chips to emulate x86 which could result in a significant shift in how our computers are built. In the second half of 2017, Microsoft is working towards the release of Redstone 3, this is the next update coming to Windows 10 after the release of the Creators update that is set to arrive in the Spring. According to new information from both public and internal sources, Microsoft is working on an emulation layer for ARM chips to run x86 applications. This information, which I had been hearing for some time gains more credibility with a discussion I had last night with WalkingCat on Twitter who has uncovered the tools to making this emulation possible. Currently called CHPE, this tool allows for emulation of x86 on ARM and we should see this sometime next year. Mary Jo Foley was able to dig up more information about the platform, which is currently called “Cobalt”; this emulation is targeted at phones/desktop and not the server market. To further add credibility to this information, the release of Redstone 3 aligns with Snapdragon 830 that will contain virtualization capabilities that will further make this emulation of x86 on ARM a reality. If Microsoft is able to pull off emulation successfully, in a way that does not have a significant performance hit, this will be a huge shift for computing. Currently, the biggest limit of ARM chips is not performance, price, heat, or availability, but its lack of capability to run legacy applications. This technology, provided it works well, has the ability to patch that gap and will help Microsoft finally obtain market... --- ### Microsoft Launches New Files Experience for Office 365 Groups > Office 365 Groups has a new Files experience. It's supposed to make documents and attachments more visible to group members. - Published: 2016-11-21 - Modified: 2024-05-24 - URL: https://petri.com/new-files-experience-office-365-groups/ - Categories: Microsoft 365, Office - Tags: Document library, Files view, Office 365 Groups, OneDrive for Business, SharePoint - Article Type: Overview Microsoft is rolling out a new Files view for Office 365 Groups to First Release tenants. The new view includes files circulated as attachments to messages sent to the group and files shared from OneDrive for Business and other SharePoint document libraries. New Files Experience Includes Email Attachments Microsoft is rolling out a new Files view for Office 365 Groups to First Release tenants. The old Files view (in OWA) opened the group document library to view the documents organized in a folder structure, just like you’d expect in a “regular” SharePoint Online document library. The new approach opens an all-encompassing view of all of the files available to the group. The new view includes files circulated as attachments to messages sent to the group and files shared from OneDrive for Business and other SharePoint document libraries. It's All About Attachments According to Microsoft, many active groups do not use the Files function as effectively as they might. Many users continue to circulate documents via email rather than placing them in a document library and sending a “cloudy attachment” link. This is not all that surprising as the majority of groups created to date are likely to be as replacements for email distribution groups. It's also hard to break user habits about how they handle attachments. Cloudy attachments work well, but they are still not as straightforward as attaching a file from the local PC, so people simply keep on doing what they have done since the dawn of time. The logic behind the change seems to be that the new view surfaces files that group members might not realize exist and makes those files easier to work with. In some respects, this is the same logic that underpins Delve,... --- ### Paul Thurrott's Short Takes: November 18 - Published: 2016-11-18 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-18/ - Categories: Mobile - Tags: News - Article Type: Opinion Because The Netherlands is perfect and you can't make me leave, this edition of Short Takes focuses on Microsoft joining the Linux Foundation, a US examination of Russia's LinkedIn ban, and more. The canals of Amsterdam Because The Netherlands is perfect and you can't make me leave, this edition of Short Takes focuses on Microsoft joining the Linux Foundation, a US examination of Russia's LinkedIn ban, and more. Microsoft joins the Linux Foundation Hell has frozen over, or all hell has broken loose, or at least something related to hell is happening, depending on who you ask: This week, Microsoft did the impossible by joining the Linux Federation. But let's be serious, this is just a formality, and Microsoft has been supporting Linux in major ways for a few years now. And when you compare this to Microsoft porting SQL Server to Linux, or to the inclusion of the BASH shell in Windows 10, I'm sorry. This doesn't even rate. "Microsoft just joined the Linux Foundation, but end users won't notice right away" Users? LOL. Users will never notice this. US is examining Russia's ban of LinkedIn In the wake of a politically-charge ban of LinkedIn in that country, the United States government has formally requested that Russia immediately restore access to the service. "The United States is deeply concerned by Russia’s decision to block access to LinkedIn," a statement attributed to the U. S. Embassy in Moscow reads. "This decision is the first of its kind and sets a troubling precedent that could be used to justify shutting down any website that contains Russian user data. " Well, yes. That was the point. "Microsoft looks to go... --- ### Microsoft’s New ‘Office 365 Hub’ Makes An Appearance in Insider Builds - Published: 2016-11-17 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-office-365-hub-makes-appearance-insider-builds/ - Categories: Microsoft 365, Office - Tags: News, Office 365 - Article Type: News Microsoft has updated the Get Office app for Windows Insiders and it shows how they are transitioning the app from an advertisement to an Office hub. With the next release of Windows, it was stated that Microsoft would be building an ‘Office hub’ into the OS to make it easier to use and manage your Office 365 subscription. With the latest update from the Windows Store for Windows Insiders, we are getting our first look at the new hub. The ’Get Office’ app for Insiders has been updated to be something more than an advertisement and finally gives you a reason to open the app . If you open up the non-insider Get Office app, it will instruct you on how to sign up for Office 365, the new iteration of the app makes it possible to manage your subscription and access your frequently used content. The screenshots in this post are from the updated app and it really does simplify the install and management process that previously had to be accomplished through a web browser. For me, the access to downloading the Office apps is the best part of this update as there are already numerous ways in Windows to view your frequently used Office documents. Additionally, managing your subscription is now much easier with this app and can be done from the desktop rather than in a browser; you can also see when you subscription will expire too. If you are running an Insider build of Windows, you likely have access to this feature now, simply open the Get Office app. If you are on a production release, this app is not yet available... --- ### Office 365 Snippets -- November 17, 2016 > Office 365 leads G Suite when it comes to deployments, why dynamic groups don't work for Teams and Planner, tenant isolation, and PowerShell is ten. - Published: 2016-11-17 - Modified: 2024-11-19 - URL: https://petri.com/office-365-snippets-november-17-2016/ - Categories: Microsoft 365, Office - Tags: authenticator, Bitglass, exchange, G Suite, Google, Microsoft Planner, Microsoft Teams, Office 365, Outlook, PowerShell, Privacy, Security, tenant isolation, Windows 10 Mobile - Article Type: News This week’s snippets span the tenth anniversary of PowerShell, a survey indicating that Office 365 has a solid lead in deployments over G Suite, Windows 10 Mobile finally gets the new authenticator app, Outlook starts to look like mini-CRM, why dynamic groups don’t work for Teams and Planner, and an interesting document from Microsoft describing Office 365 tenant isolation. PowerShell Turns 10 and Office 365 Says Thanks! The world of technology was a different place in 2006 when PowerShell made its debut (Office 365 was still five years away). Exchange 2007 was the first major Microsoft server product to embrace PowerShell and has gained enormously from the association over the years. It’s a pity that some other applications – notably SharePoint – have been so slow and so limited in their PowerShell support.     Today, neither the Office 365 platform nor its tenants could function without scripts and PowerShell has spread to other platforms, including Linux. The 10th anniversary of “Monad” was celebrated with a series of live video events on Channel 9, including “Provision a Minecraft server with PowerShell DSC. ” That program is less interesting to me than “PowerShell Evolution,” but to each their own. The recordings of all the sessions are available online. Bitglass Survey Puts Office 365 First Bitglass, who describe themselves as the “total data protection company,” regularly generate a survey of what’s happening across the public internet. As a security company, Bitglass is interested in finding out what applications companies are running and how those applications are protected. The most recent survey (November 15), which spanned some 120,000 domains, indicates that Office 365 leads Google’s G Suite when it comes to cloud suite deployments. 59 percent of domains scanned had deployed one or the other, with Office 365 found in 34. 8 percent and G Suite in 24. 5 percent. Comparing those results... --- ### Sponsored: Choosing an Effective AD Auditing and Reporting Tool - Published: 2016-11-17 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-choosing-effective-ad-auditing-reporting-tool/ - Categories: Active Directory (AD), Security - Tags: Active Directory, Directory Services, monitoring, Security - Article Type: Overview Successful, effective auditing is essential for the compliance and security of your network, but the complexity of Active Directory (AD) can present a roadblock. Find out what you need to ask when evaluating AD monitoring tools. Anyone who works with Microsoft Active Directory (AD) has experienced challenges around auditing and reporting. Successful, effective auditing is essential for the compliance and security of your network, but the complexity of AD can present a roadblock. Add in artifacts and human error, and you can end up in a mess that could consume a vast amount of time and resources to clean up. Today’s networks must put a premium on security. Add in ever-expanding regulatory requirements, a largely mobile workforce, and constantly evolving technology and devices, and upping your audit game becomes a necessity. You need a method for creating an audit trail that can be searched, sorted, and filtered to track relevant actions. You need the means to automatically monitor AD for suspicious behavior. And you need a way to clean up the artifacts that can slow down performance. When evaluating your AD monitoring options, ask whether the solution provides: Data visualization. Does the solution provide a full visual representation of your Directory Services, including domains, devices, users, groups, and organizational units (OUs)? Can you display, filter, and analyze your complete hierarchical directory structure, including AD domains and forests, as well as all LDAP-compatible directory services? Change tracking. Can you easily track changes to and permissions for AD objects? Does the solution let you automatically detect and fix changes that fall outside your organization’s change management policies? Do you have a way to detect actions that exceed baseline activity, to help you catch and prevent breach attempts? And... --- ### Microsoft Connect: Visual Studio 2017, SQL Server v.Next for Windows and Linux and More - Published: 2016-11-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-connect-visual-studio-2017-sql-server-v-next-windows-linux/ - Categories: SQL Server, Visual Studio, Windows Server - Tags: Connect, Microsoft, News - Article Type: News Microsoft held its Connect conference today and announced at the event are Visual Studio 2017, SQL Server v.Next for Windows and Linux, Visual Studio for the Mac, and that Microsoft has joined the Linux Foundation as a platinum member. Today, at Microsoft’s Connect conference, the company made several announcements that highlight where the company is moving towards for the year ahead. Announced at the event are Visual Studio 2017, next version of SQL Server for Windows and Linux, Visual Studio for the Mac, and that Microsoft has joined the Linux Foundation as a platinum member. Visual Studio 2017 is the next installment of the company’s development suite of tools and has been known to many as Visual Studio 15. The company is releasing an RC version of the software today for testing and Microsoft says that the software is nearly complete; the RC version is representative of the final product minus a few bug fixes. Microsoft is ready to talk more about the next version of SQL Server, which will run on Windows, Linux and macOS (via Docker). The next iteration of the platform will include enhanced support for R Services, improved machine learning capabilities, and deep neural networking features. The company is also opening up its Linux-based SQL Server preview which was previously available on an invite-only basis; starting today, anyone can download the new iteration SQL Server preview, which you can find here. The Linux version of SQL server, which many thought might be a watered-down iteration, is getting all the major features of the relational database engine. The Linux variant will come with the standard SQL management tools, such as encryption and row-level security as well as in-memory column stores.  With native install packages now available for... --- ### Azure N-Series General Availability Starting On December 1st - Published: 2016-11-16 - Modified: 2024-09-04 - URL: https://petri.com/azure-n-series-general-available-starting-december-1st/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, N Series, News - Article Type: News Microsoft has a new series of virtual machines called the N-series and they will be generally available starting on December 1st; these new virtual machines are based on NVIDIA GPUs. Microsoft has a new series of virtual machines called the N-series and they will be generally available starting on December 1st. These new virtual machines will be available in South Central US, East US, West Europe, and South East Asia at GA. The N-series VMs are powered by NVIDIA GPUs and are designed for developers who are looking to capitalize on the growth in computational power in the GPU segment. Microsoft says that they have had thousands of customers participating in its N-Series preview program that was launched in August and now feel the product is ready for production environments. This new offering is the latest effort from Microsoft to help differentiate its cloud platform to attract developers and IT Admins from around the globe to utilize the company’s cloud infrastructure. Cloud growth has been a key part of Microsoft’s recent success and the company shows no signs of slowing down on its investments into this service. Microsoft and Amazon are in a fiercely contested battle to win over new clients to adopt their cloud technologies. Amazon has announced this week that they will be cutting prices on their services by up to 25% and you can’t rule out Google, while they are coming from behind, has begun making significant investments into its cloud platform too. You can read more about the Azure N-Series, here. --- ### Microsoft Offers EU Concessions on LinkedIn Purchase - Published: 2016-11-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-offers-eu-concessions-linkedin-purchase/ - Categories: Cloud Computing, Dynamics - Tags: Linkedin, News - Article Type: News Facing resistance to its largest-ever corporate acquisition, Microsoft has offered concessions to the EU's antitrust agency. Facing resistance to its largest-ever corporate acquisition, Microsoft has offered concessions to the EU's antitrust agency. Today's news comes via Reuters, which reports that the European Commission has announced that it has received concessions from Microsoft. It will now garner feedback from Microsoft customers and competitors before deciding on December 6 whether to accept Microsoft's offer. EU antitrust regulators had previously expressed concerns about Microsoft's planned $26 billion acquisition of the LinkedIn social network. But it has faced strong opposition from Salesforce. com, which we later learned was irked because Microsoft swooped in and purchased LinkedIn out from under it. But according to LinkedIn CEO Jeff Weiner, there was nothing nefarious about the deal with Microsoft. The software giant simply offered more money and less risk. "Microsoft's offer was of greater value, an all cash offer versus stock and cash, where Salesforce would have potentially been diluted in a way where the stock that they offered to lose value, at least in the near term," Mr. Weiner said at a recent tech conference. One has to think that LinkedIn is a better fit at Microsoft as well, and it's not hard to imagine how the firms might integrate the service into Microsoft products such as Office 365 and Outlook. But Salesforce. com will have none of that. And as time as gone on, its complaining about Microsoft's acquisition of LinkedIn has gotten more and more strident. In early October, Salesforce. com CEO Marc Benioff accused Microsoft of anti-competitive behavior,... --- ### Outlook Anywhere Gets the Bullet > Microsoft will block Outlook Anywhere (RPC over HTTP) connections to Office 365 on Oct 31 2017. MAPI over HTTP is required thereafter. Be prepared! - Published: 2016-11-16 - Modified: 2024-11-19 - URL: https://petri.com/outlook-anywhere-terminates/ - Categories: Microsoft 365, Office - Tags: Connectivity, Exchange Online, HTTP, MAPI, Networks, Office 365, Outlook, outlook anywhere, RPC, Wi-Fi - Article Type: News Microsoft has announced the demise of RPC over HTTP (“Outlook Anywhere”) connections, which will be blocked for connections to Exchange Online from Outlook desktop clients from October 31, 2017. The year’s notice is intended to allow tenants to upgrade clients to the necessary versions. MAPI Over HTTP Is the default Outlook Desktop Connection Protocol for Office 365 Microsoft released MAPI over HTTP (the “Alchemy” project) as part of Exchange 2013 SP1 in May 2014. Well before that time, MAPI over HTTP had been running inside Office 365 to shake down the new protocol before it was released to on-premises customers. The replacement for the long-established RPC over HTTP (aka “Outlook Anywhere”) protocol, MAPI over HTTP is designed to accommodate the demands of modern networking environments where devices hop from network to network and seamless mobility is everything.     The natural conclusion for the process has now come to pass. Microsoft is giving Office 365 tenants almost a year's warning that RPC over HTTP connections will not be supported for Exchange Online after October 31, 2017. Outlook Anywhere is heading for the rubbish heap, but only for Office 365 as on-premises Exchange will continue to support this venerable protocol. Changing Networks, Changing Protocols When you consider what’s happening, the process seems fair. Outlook Anywhere was designed to transport the Remote Procedure Calls (RPCs) used by Outlook desktop clients across an internet connection. Only HTTPS needed to be enabled for firewalls and no VPNs were necessary. When it was released, Outlook Anywhere was an immediate hit, especially when used with the then-new Outlook 2003 client and its “drizzle mode synchronization. ” The protocol, client, and growing availability of Wi-Fi networks made mobility a reality for many and released users from the need for tiresome dial-up... --- ### Microsoft Partners with Elon Musk's OpenAI - Published: 2016-11-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-partners-elon-musks-openai/ - Categories: Microsoft Azure - Tags: artificial intelligence, News - Article Type: News This week, Microsoft announced a partnership with OpenAI, the nonprofit research organization co-founded by futurist Elon Musk. The goal? Nothing less than the democratization of AI. Microsoft's Harry Shum and OpenAI's Sam Altman This week, Microsoft announced a partnership with OpenAI, the nonprofit research organization co-founded by futurist Elon Musk. The goal? Nothing less than the democratization of AI. "We’re excited to announce a new partnership with OpenAI focused on making significant contributions to advance the field of AI, while also furthering our mutual goal of using AI to tackle some of the world’s most challenging problems," Microsoft Executive Vice President Harry Shum says. "We’re also excited that OpenAI chose Microsoft Azure as their primary cloud platform. " OpenAI’s use of Azure will help OpenAI advance their research and create new tools and technologies that are only possible with the cloud, a Microsoft representative told me. And while the two firms are aligned generally, Microsoft's recent embrace of open technologies hasn't hurt. The firm has outlined three Azure services that will play a key role in the partnership. These are: Azure Bot Service. Available now in preview, the Azure Bot Service helps developers accelerate the development of bots using the Microsoft Bot Framework and then deploy and management them in a serverless environment on Azure. Microsoft notes that over 50,000 developers are already creating bots with the Microsoft Bot Framework for companies as diverse as AllRecipes. com, Lowe's, and Uber. Azure Functions. Now generally available, Azure Functions can maximize development agility and operational efficiency for nearly any app or service. and do so at lower costs. Azure Bot Service also... --- ### How To Set Up Two-Factor Authentication for a Microsoft Account - Published: 2016-11-15 - Modified: 2024-09-04 - URL: https://petri.com/set-two-factor-authentication-microsoft-account/ - Categories: Security - Tags: Microsoft, multifactor authentication, Security - Article Type: How To In today's Ask the Admin, I'll show you how to set up two-factor authentication for Microsoft Accounts which is an excellent way to secure your account. A couple of weeks ago, I showed you how to set up two-factor authentication (2FA) for Office 365 users. In today's Ask the Admin, I'll show you how to do the same thing but for consumer Microsoft Accounts. Passwords are easily stolen or guessed, so it’s important not to rely on them alone. Multifactor authentication adds one or more factors, in addition to your password, to make it harder to use guessed or stolen credentials. A second factor might be something you have, such as a smartphone or token, along with something you know, like a password. Enabling 2FA for a Microsoft Account is relatively simple, and a smartphone application, email, or phone number can be used as the second form factor. If you are exclusively using Windows and Microsoft apps, you’ll find that enabling 2FA doesn’t cause any applications compatibility issues. If you are using apps with your Microsoft Account on other platforms, you might be required to enter app passwords where 2FA isn’t directly supported. For more information on how to enable 2FA in Office 365, see Enable Multi-Factor Authentication for Office 365 Users on the Petri IT Knowledgebase. Enable Two-Factor Authentication Before starting, it’s worth considering Microsoft’s advice about keeping three pieces of security information on your account. That means that your contact details should be up-to-date, and if you forget your password, you will need two contact methods if 2FA has been enabled. In the instructions that follow, I’ll set up 2FA for my... --- ### Sponsored: Active Directory Cleanup – Removing Stale Objects - Published: 2016-11-15 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-active-directory-clean-up-removing-stale-objects/ - Categories: Active Directory (AD) - Tags: Active Directory, Active Directory Cleanup, Softerra Adaxes - Article Type: Overview Due to the nature of the tasks Active Directory (AD) performs as an identity management solution, inactive objects are not only an inconvenience, cluttering the directory with outdated and unused objects, but also pose a security risk. Third-party AD management solutions, such as Softerra Adaxes, can take much of the risk out of the process. Editor’s Note: This blog post is the second in a four-part blog series from Adaxes. Due to the nature of the tasks Active Directory (AD) performs as an identity management solution, inactive objects are not only an inconvenience, cluttering the directory with outdated and unused objects, but also pose a security risk. User and computer accounts have passwords, so they can authenticate with AD, and like any object with credentials, provide a means of entry to your systems. Although other AD objects, such as Organizational Units (OUs) and groups, can also pose security and operational risks if not properly managed. Prevention is better than cure, so managing the full lifecycle of user objects so that they are added, updated, and removed in a timely manner can reduce security concerns. But as organizations tend to have more devices than employees, there might not be a one-to-one relationship between devices and users, so managing the lifecycle of machine accounts isn’t always so simple. Computers accounts authenticate to AD using a password, with the only difference from user accounts being that the password is changed every 30 days and this process is initiated by the computer, not AD, so the computer must be turned on and connected to a domain controller at least once a month. Additionally, computer account passwords don’t expire, so a password that’s older than 30 days can still be used until a password change is initiated by the client device. Removing Stale Objects Using PowerShell Although prevention is better than... --- ### Amazon Cuts Cloud Costs Up To 25%, Adds Fuel To The Cloud Race - Published: 2016-11-14 - Modified: 2024-09-04 - URL: https://petri.com/amazon-cuts-cloud-costs-25-adds-fuel-cloud-race/ - Categories: Amazon Web Services, Cloud Computing, Microsoft Azure - Tags: Amazon, EC2, Microsoft, News - Article Type: News Amazon is announcing a further reduction in pricing for their EC2 platform and if history is any judge of what will happen next, expect Microsoft to follow close behind with price cuts. Microsoft and Amazon are in a battle for cloud supremacy and while both platforms offer compelling services, the real winner the past couple of years has been the user. Today, Amazon is announcing a further reduction in pricing and if history is any judge of what will happen next, expect Microsoft to follow close behind with price cuts. The cuts announced today, which Amazon says is their 53rd price reduction, drops pricing up to 25% but the reductions are dependent on your location. The new pricing, for the C4, M4 and T2 tiers is below. C4 – Reductions of up to 5% in US East (Northern Virginia) and EU (Ireland) and 20% in Asia Pacific (Mumbai) and Asia Pacific (Sydney). M4 – Reductions of up to 10% in US East (Northern Virginia), EU (Ireland), and EU (Frankfurt) and 25% in Asia Pacific (Singapore). T2 – Reductions of up to 10% in US East (Northern Virginia) and 25% in Asia Pacific (Singapore). With more companies moving to the cloud each quarter as it’s easier, and often less expensive, to utilize cloud infrastructure than build out your own data center, these price reductions will only fuel the growth in this sector. Each quarter, Microsoft and Amazon continue to show positive trends in the cloud segments and its one of the contributing factors to why both of their stock prices continue to climb. The opportunity in the cloud segment, with primarily Amazon and Microsoft competing (although Google is finally starting to make a... --- ### Microsoft Is Bringing Visual Studio To The Mac - Published: 2016-11-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bringing-visual-studio-mac/ - Categories: Visual Studio - Tags: News, Visual Studio - Article Type: News Microsoft has announced that they will be bringing their popular Visual Studio development platform to OS X; the announcement is part of the company's Connect (); conference in NYC. This week, Microsoft will be hosting its Connect; conference in New York but the announcements at the event are coming out a bit early. The company has accidently announced today (the page has been pulled, here is a cached version) that they will be bringing Visual Studio, to the Mac. The Mac version of Visual Studio looks similar to that of the Windows version and is complemented by Visual Studio code. But, the similarities are far deeper than the UX, Visual Studio for Mac uses IntelliSense and for refactoring, Roslyn Compiler Platform gets the call. Compatibility was a key initiative for the first release of this platform and while Visual Studio for the Mac doesn’t support every project type, for those that are common across the two operating systems, it uses the same MSBuild solution and project format. Meaning, you can easily share compatible projects from Mac to Windows without any issues. Visual Studio for the mac is based on Xamarin Studio which means the application already has mature support for C#-based iOS, Android, and Mac development. This shouldn’t come as a major surprise as Microsoft has been making the most of its Xamarin acquisition and this is the latest step of integrating that technology into its development stack. The fact that Microsoft is bringing Visual Studio to the Mac shouldn’t come as a major surprise, considering how the company has been open-sourcing many of its technologies and also building applications for Linux like SQL Server, this is simply another step in... --- ### Paul Thurrott's Short Takes: November 11 - Published: 2016-11-11 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-11/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because Amsterdam may be the most wonderful place on earth, this edition of Short Takes focuses on tech industry fears of Trump presidency, LinkedIn still banned in Russia, Xbox One still number one in the US, and much more. Because Amsterdam may be the most wonderful place on earth, this edition of Short Takes focuses on tech industry fears of Trump presidency, LinkedIn still banned in Russia, Xbox One still number one in the US, and much more. Unrest in Silicon Valley in the wake of Trump election With the notable exception of PayPal co-founder Peter Thiel, most of Silicon Valley seems to have been completely unprepared for a Trump presidency. So this week, top executives from various Silicon Valley firms---including Apple, Box, eBay, Facebook, LinkedIn, and others---have penned messages to the troops asking them to rise above the political discourse that has poisoned the country this year. "The only way to move forward is to move forward together," Apple CEO Tim Cook noted. "We celebrate the diversity of our team here in the United States and around the world. " Box CEO Aaron Levie echoed the diversity theme, writing that the most amazing work that people can do is when they work with others. You get the idea, but it's interesting to me that so few of these intellectual leaders ever saw this as a possibility. "Zuckerberg denies Facebook News Feed bubble impacted the election" Right. That was Twitter. Nadella congratulations the president-elect For his part, Microsoft CEO Satya Nadella offered the following statement about the election. "Yesterday we witnessed the democratic process in action here in the US. The results are of importance around the world, and I know that interest is shared among Microsoft employees... . --- ### Customize Office 2016 Click-to-Run Installations - Published: 2016-11-11 - Modified: 2024-09-04 - URL: https://petri.com/customize-office-2016-click-run-installations/ - Categories: Office - Tags: Cloud, Office 2016, Office 365 - Article Type: How To Microsoft distributes Office 2016 to consumers and Office 365 users using Click-To-Run, a streaming and virtualization technology that’s based on App-V. There are several advantages to distributing Office with Click-to-Run, as opposed to a traditional Windows Installer package. In today's Ask the Admin, I'll show you how to customize Office 2016 Click-to-Run installations for use in your organization. Microsoft distributes Office 2016 to consumers and Office 365 users using Click-To-Run, a streaming and virtualization technology that’s based on App-V. There are several advantages to distributing Office with Click-to-Run, as opposed to a traditional Windows Installer package.     First, because the components stream in the background, you can start using the apps without waiting for an entire package to download. And because Office Click-To-Run executes in an environment that’s isolated from other apps and Windows, it’s possible to run the latest version of Office alongside earlier versions. Office Click-to-Run is up-to-date from the get-go, so there’s no need to search for and apply updates when provisioning new devices. And Microsoft can patch the product more easily; while you use Office, updates stream in the background. Despite the new distribution technology, old-school management tools can be used to control and deploy Office Click-to-Run, including Group Policy settings. Office 365 ProPlus is a Click-to-Run product, and users can download and install it directly from the Office 365 portal, or organizations can deploy it from an intranet location. If you need to control which individual Office programs are installed as part of Click-to-Run, how it is updated, which computers it’s installed on, and whether users get the 32-bit or 64-bit version of Office, then you should look at distributing Office from an intranet location. Users can be... --- ### Merge Your Skype Name with a Microsoft Account - Published: 2016-11-10 - Modified: 2024-09-04 - URL: https://petri.com/merge-skype-name-microsoft-account/ - Categories: Security - Tags: Microsoft, Security, skype - Article Type: How To Secure your Skype account by merging it with a Microsoft Account. In today's Ask the Admin, I'll show you how to secure your Skype account by merging it with a Microsoft Account. It’s been some time since Microsoft started linking Skype names with Microsoft Accounts. But recently there have been reports of hackers using stolen credentials to access Skype using legacy named accounts, even where users have linked Skype to a Microsoft Account, which offer hardened security and two-factor authentication. For more information on two-factor authentication, see What Is Multi-Factor Authentication and How Does It Work? on the Petri IT Knowledgebase.     The process of linking your Skype name to a Microsoft Account enables you to log in to Skype using either your legacy Skype name and password, or a Microsoft Account. To make sure that your Skype account is properly protected, I recommend that you merge the Skype name with your Microsoft Account. If you don’t have a Microsoft Account, log in to Skype and add an email address to your Skype account as part of the process that follows. You will be asked to verify the address. Open https://account. microsoft. com in a browser window. If you are currently logged in with a Microsoft Account, log out. Log in using your Skype name and password. If your Skype name is already linked to a Microsoft Account, click Next on the Your Skype account is now a Microsoft account screen. Merge a legacy Skype name with a Microsoft Account (Image Credit: Russell Smith) The email address... --- ### Office 365 Snippets - November 10, 2016 > Office 365 news and views for the week starting November 7. Moving datacenter regions, moving data back from an archive, & moving public folders to Groups. - Published: 2016-11-10 - Modified: 2024-11-19 - URL: https://petri.com/office-365-snippets-november-10-2016/ - Categories: Microsoft 365, Office - Tags: archive mailbox, Binary Tree, datacenter region, Exchange Online, Office 365, Office 365 Groups, public folders, retention policy, tenant movement - Article Type: News Lots of news about moving things around in Office 365 this week -- how to move items that have been archived by Exchange Online back to primary mailboxes, how to move tenants between data center regions, and finally, Microsoft plans to help public folders transform themselves into Office 365 Groups. Moving Items Back from an Archive to a Primary Mailbox It’s easy to create an Exchange retention policy (on-premises or in the cloud) that contains a default tag to archive items after a certain period. If you then assign that retention policy to mailboxes that are archive-enabled, the Managed Folder Assistant (MFA) will move items from the primary mailbox into the archive as their retention period expires. In other words, if the default archive tag in the retention policy calls for items to be archived after two years, they will be archived once that period elapses.     All is well, as long as you intend MFA to archive all those items. And you’ve prepared users to have their primary mailboxes cleaned out so that no one panics when they discover that an item they're looking for no longer exists. Of course, the item is safe and well in the archive mailbox, but if you haven't told the user to look there, they won't know. But let’s assume that this is the one time that you made a mistake and you shouldn’t really have assigned that retention policy to those mailboxes. Users now have a lot of data in archive mailboxes that they’d really like to have back in their primary mailboxes. The first thing to do is to remove the retention policy from the mailboxes. This won’t restore the archived items to their rightful place, but it will stop the archival of any other items. Users can... --- ### Review: Microsoft’s New Top-End Surface Book Is Bigger in Every Way - Published: 2016-11-10 - Modified: 2024-09-04 - URL: https://petri.com/review-microsofts-new-top-end-surface-book-bigger-every-way/ - Categories: Hardware - Tags: News, review, Surface Book - Article Type: News, Review Microsoft has a new Surface Book that has an improved GPU and more battery life; the shell of the device is also bigger too but is bigger really better? Earlier this month, when Microsoft held its Windows event in NYC, much of the attention was given to the Surface Studio. However, also announced at that event was an update to the Surface Book. The updated device features new internals inside the base but a nearly-identical exterior. Microsoft pitches the devices as a Surface Book with a performance base. The base, which is a bit different than the base that ships with the older Books, has more batteries and an updated GPU; NVIDIA GTX 965M 2GB GPU and claims of 16 hours of battery life. The laptop has a starting price of $2,399, which is not cheap, but this device is positioned to be the workhorse of the Surface Book family and has the most horsepower under the hood along with the longest battery life. Microsoft’s Surface Book family starts at $1,499 for those that like the form factor, features, and build quality but don’t need to max out performance and battery life. To pack in the new GPU and batteries, the base had to grow in both weight (3. 63 pounds compared to 3. 48 pounds) and height; the additional weight is minimal but if you hold the new and old bases at the same time, you can tell the new one is heavier. As you can see in the image below, the base is a bit thicker (right) when compared to a non-performance base (left) which does raise your hands up slightly and change your typing position. Unless you are... --- ### Microsoft Azure: A First Look at Azure DNS - Published: 2016-11-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-first-look-azure-dns/ - Categories: Cloud Computing - Tags: Azure, Azure DNS, Cloud, DNS - Article Type: Overview Azure DNS does give you is the ability to use Microsoft’s infrastructure for resolving name queries for your domain’s zones. Learn more about this new feature. In today’s Ask the Admin, I look at Azure DNS, a new service from Microsoft that recently reached general availability. It’s probably worth stating right from the get-go, that Microsoft’s Azure DNS service doesn’t allow you to purchase domain names from Microsoft. You’ll still need to pay a domain registrar a yearly fee for that privilege. But what Azure DNS does give you is the ability to use Microsoft’s infrastructure for resolving name queries for your domain’s zones.     What Is a DNS Zone? If you own a domain name, such as acme. com, a DNS zone holds records for the domain. For example, www. acme. com and sharepoint. acme. com are both DNS zones of the acme. com domain. In this case, both of these zones could be used with applications hosted in the Azure cloud, so it might make sense to manage the DNS for these zones in Azure as well, where you can put DNS under an existing contract and manage the billing in one place. If you want to link a DNS zone created in Azure to the global DNS hierarchy, you’ll need to own the top-level domain (TLD) name. Why Use Azure DNS? Unless your organization has multiple physical data centers, it’s not likely that you host your own external DNS. But if you do, and you are running unsupported versions of Windows Server or don’t have multiple physical locations, migrating to Azure DNS can bring much better reliability because of Microsoft’s global network of nameservers and Anycast... --- ### Understanding the technology and capabilities of Microsoft Teams > Microsoft Teams is a new application within Office 365. Now in preview and available to all enterprise tenants, it's touted as a Slack-killer. But is it? - Published: 2016-11-08 - Modified: 2024-11-19 - URL: https://petri.com/understanding-microsoft-teams/ - Categories: Microsoft 365, Office - Tags: collaboration, exchange, Office 365 Groups, OneDrive for Business, Planner, SharePoint, Slack, Teams - Article Type: Review Much excitement was sparked when Microsoft introduced Teams, their purported Slack-killer, on November 2. Now that everyone’s calmed down a tad and we’ve had the time to get some solid hands-on time with Teams, it’s appropriate to look at what Microsoft has delivered and explore the strengths and weaknesses of Teams. “Office 365 is the universal toolkit & today we added a new tool... . chat-based workspace. " – Satya Nadella Microsoft Teams is a new chat-based workspace inside Office 365 that is designed to compete with Slack, the acknowledged leader in chat. Those of us who remember IRC (fondly or not) probably have some misgivings about the reappearance of chat-based collaboration, but it appears to be all the rage. Hence Microsoft’s response in the form of Teams, which is now available for all enterprise Office 365 tenants in a preview release. General availability is expected in early 2017 and we can expect Microsoft to tweak performance, functionality, and the user interface between now and then. In the interim, I have spent the last week playing with Teams to understand how the technology works. The structure of Teams Teams organizes “channels” to host discussions and other relevant information. A channel is intended to represent some area of work and a default channel called “General” is created when a team is formed. After that you can create as many channels within a team as are required. For instance, a team might have a channel for their weekly update calls. Each channel has a number of associated tabs. A tab is analogous to a tab in a browser and serves as a link to a resource that’s available within the channel. Conversations, Notes, and Files are default tabs that appear in all channels. You can also add tabs to call Plans (a link... --- ### Sponsored: Automating User Provisioning in Active Directory - Published: 2016-11-08 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-automating-user-provisioning-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Adaxes, Adaxes Active Directory Management & Automation, PowerShell, User Provisioning - Article Type: Overview Manually setting up users in Active Directory is not only tedious, but also error prone. PowerShell alone doesn’t provide an easy way to create new AD user accounts. Learn about another option that saves time and money by reducing downtime for users and the workload for HR and IT. Editor's Note: This blog post is the first in a four-part blog series from Adaxes. Active Directory (AD) is an identity and authorization service for managing access to systems and applications, both on-premises and in the cloud, and is a key component in securing corporate data and assets. Such is the popularity of Microsoft’s directory services solution, that it’s often used for identity management in heterogeneous environments that include systems running Unix-based operating systems. Identity-driven security, where user logins are the primary control factor, is effective only if user details in AD are kept up-to-date. But unless you’re working with the smallest environments, managing AD user objects through the entire lifecycle can be complex using the built-in management consoles. Active Directory Users and Computers (ADUC) and Active Directory Administrative Center (ADAC), amongst other consoles, provide basic tools for provisioning user accounts, Organizational Units (OUs), groups, and other AD objects. Aside from the technical challenges, business processes can also cause delays in user provisioning, deprovisioning, and changes. A typical scenario for new employees is having to wait for access to resources while HR informs the IT department about the new employee, and then waiting again while IT provisions the account in AD. HR not informing IT about employee changes, or worse still that an employee has been put on gardening leave or left the company, is also a common situation that can lead to security breaches. Active Directory Management Consoles Windows Server 2008 R2 introduced ADAC, which provides management for features that... --- ### Microsoft's Servicing Of Windows Is Changing, Hopefully For The Better - Published: 2016-11-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-servicing-windows-changing-hopefully-better/ - Categories: Windows 10 - Tags: Delta, News, Windows Update - Article Type: News, Opinion Microsoft is changing the way it is servicing Windows with a new update model that will deliver delta upgrades but will this improve the process or create another point of failure? Earlier this month, Microsoft announced the ‘Creators’ update for Windows 10 that will be coming next year. While the company did focus on many of the new consumer features with that announcement, we do know of a couple enterprise updates that will be coming too. Announced last week and coming to Windows 10 next year, is the Unified Update Platform (UUP) feature that will streamline the update process; Microsoft says that this new update process can reduce the footprint of downloads by as much as 35%. This reduction in size is being achieved by using differential downloads, meaning it only downloads the individual components needed for the update that has changed since your last download. In other terms, Windows Update is moving to a delta model where only the deltas are downloaded and installed. The obvious benefit here is that large updates, like 1511 and 1607 will now be smaller in size. This is a win for everyone involved as it means less downtime for the end user as they wait for the download to complete and there is also less bandwidth consumed during transmission. The benefits are clear and why UUP is being built is obvious but with Microsoft having pushed numerous bad updates since the release of Windows 10, this new update process is raising a few concerns as well. Microsoft is limiting the new UUP updates to Windows 10 Mobile insiders only for now and they will eventually move desktop Insiders to this methodology before final release next year... . --- ### Paul Thurrott's Short Takes: November 4 - Published: 2016-11-04 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-november-4/ - Categories: Mobile - Tags: News - Article Type: Opinion Because queso tater tots are the perfect food, this edition of Short Takes focuses on Steve Ballmer's falling out with Bill Gates, Slack's stupid Microsoft ad, Microsoft's Edge failures, and so much more. Source: AdWeek Because queso tater tots are the perfect food, this edition of Short Takes focuses on Steve Ballmer's falling out with Bill Gates, Slack's stupid Microsoft ad, Microsoft's Edge failures, and so much more. Ballmer: Windows phone killed my relationship with Bill Gates In an interview with Bloomberg, former Microsoft CEO Steve Ballmer says that things went so badly with Windows phone that it actually impacted his relationship with long-time friend Bill Gates. " a fundamental disagreement about how important it was to be in the hardware business," he says. "I had pushed Surface, the board had been a little reluctant in supporting it, and things came to a climax about what to do about the phone business ... We should have been in the hardware business sooner, in the phone case, and we were still suffering what I would call some of the effects of our Vista release of Windows. " Ballmer still defended his decision to purchase Nokia, however, and that was an unmitigated disaster that Microsoft is still extricating itself from. "If executed in a certain way it made a lot of sense," he says. "The company chose to go another direction and that's the decision the company made. " That direction was about $10 billion in write-offs, and a complete retreat from the smartphone market. Ah well. "Here we go again: Microsoft's popping up ads from the Windows 10 toolbar" What was that... --- ### Sizing Bandwidth & Storage for Azure Site Recovery - Published: 2016-11-04 - Modified: 2024-11-19 - URL: https://petri.com/sizing-bandwidth-storage-azure-site-recovery/ - Categories: Cloud Computing - Tags: ASR, Azure, Azure Site Recovery, DR, DRaaS, ESXi, Hyper-V, Hyper-V Replica, Sizing, vmware, vSphere - Article Type: How To Learn Microsoft’s method for calculating the storage account requirements and replication bandwidth requirements for the DR-in-the-cloud solution, Azure Site Recovery (ASR), for VMware and Hyper-V. This post will show you Microsoft’s method for calculating the storage account requirements and replication bandwidth requirements for the DR-in-the-cloud solution, Azure Site Recovery (ASR), for VMware and Hyper-V. The Challenge I’ve been asked “How much bandwidth do I need for ASR? ” countless times. How long is a piece of string? The bandwidth requirements of any kind of replication system are dependent on several factors; I’ll break these into two phases: Synchronization: The first copy of your machines to the DR site (Azure in our case). This typically requires a lot of bandwidth. You can control the actual bandwidth requirements by starting synchronization a few machines at a time. Your bandwidth requirement will then be dictated by how quickly you need the average machine to be synchronized. There isn’t normally much pressure on this phase -- the business has probably survived without a DR solution for some time, and they’ll have one in a few days/weeks. Replication: This is the phase that will continue until the building burns down! All of your replicating machines will be sending data on a periodic basis to the DR site, so the bandwidth requirements will be dictated by the total rate of data churn.     Luckily, ASR uses asynchronous replication, so latency is not an issue. You might choose to use a local Azure region for your recovery services vault(s), or you might opt to use a remote region for an additional layer of protection. Storage is the second variable. Everyone... --- ### Exchange 2016 to Windows 2016: No Thanks – At Least, Not for the Moment > A bug has been discovered in Windows 2016 server that causes Exchange 2016 CU3 to crash. The bug seems to be in IIS but it's not. DAGs are affected. - Published: 2016-11-04 - Modified: 2024-11-19 - URL: https://petri.com/exchange-2016-says-no-to-windows-2016/ - Categories: Exchange 2016, Exchange Server, Windows Server 2016 - Tags: DAG, Exchange 2016, IIS, Windows 2016 - Article Type: News Exchange 2016 CU3 is the first version to support Windows 2016 as a deployment platform. At least, it was. Microsoft has discovered a problem lurking deep in the bowels of Windows 2016 that causes Exchange 2016 CU3 to crash when deployed in a database availability group (DAG). IIS is tagged as the problem child, but it’s really not. On September 20, 2016, Microsoft released Exchange 2016 CU3 as part of its quarterly release cycle of cumulative updates. Apart from the “read from passive” feature (very useful in large DAGs), Microsoft didn’t deliver much new functionality in Exchange 2016 CU3. However, the necessary engineering was done to make CU3 deployable on Windows 2016 servers. The normal caveats were given that customers should test the new cumulative update before deploying into production. Six weeks later, that advice is proven to be both sage and accurate (again).     A problem has been discovered in Windows 2016 that surfaces as crashes of the IIS host process (W3WP. EXE). The issue has been reported in several online forums (an example here). Windows engineering has updated their release notes to say: “If you attempt to run Microsoft Exchange 2016 CU3 on Windows Server 2016, you will experience errors in the IIS host process W3WP. exe. There is no workaround at this time. You should postpone deployment of Exchange 2016 CU3 on Windows Server 2016 until a supported fix is available. ” Based on all the reports that I have seen, the problem does not appear on standalone servers. It does once you deploy Exchange 2016 CU3 on Windows 2016 and form a database availability group (DAG). Remember, all member nodes in a DAG must run the same version of the operating system and as close as possible to the same version of Exchange. The problem is seen as repeated W3WP crashes reported in 4999,... --- ### Office 365 Snippets – November 3, 2016 > Teams launched for Office 365 and might kill Slack (or not). A new Outlook for iOS . meeting scheduler. And Skype for Business improved performance. - Published: 2016-11-03 - Modified: 2024-11-19 - URL: https://petri.com/office-365-snippets-3-november-2016/ - Categories: Microsoft 365, Office - Tags: archive mailbox, ASM, Cogmotive, Exam 70-345, Exchange 2016, Exchange Web Services, Outlook, PowerShell, retention policy, Skype for Business A busy week with lots of new things to discuss in the world of Office 365. The Outlook for iOS client has a new scheduling assistant, Microsoft launched Teams, its hoped-for Slack-killer, Quest returns to full life, and Skype for Business is going to improve voice calls. Office 365 Gets Even More Collaborative The November 2 announcement of Teams, Microsoft’s chat-based competitor to Slack, created a stir in those responsible for driving the collaboration strategy for Office 365 tenants. Teams is built from Office 365 components such as SharePoint, Exchange, and Azure AD. It will be available to all enterprise Office 365 tenants. In many respects, Teams is like Planner.     Whether or not Teams has any significant impact on Slack, I imagine that Teams will be pretty popular within Office 365. Next week, I’ll take the time to look at the technology in some depth and will write up my findings and report here. In doing so, I’ll remember that Teams is still a preview release and that lots of change might happen before the application reaches general availability in early 2017. What’s clear is that Microsoft is creating all manner of ways for users to collaborate together within Office 365 in Groups, Yammer, Planner, SharePoint, Exchange, and Teams. The question is how to provide users with the right tool at the right time, especially when issues such as compliance and data sovereignty taken into account. Outlook’s New Mobile Scheduling Assistant On October 31, a breathless announcement brought us the news that “Inspired by the well-loved scheduling assistant of Outlook on the desktop” Microsoft had delivered a “powerful scheduling assistant on Outlook for iOS. ” Hmmm... apart from debating whether a feature is delivered “on” or “for” a software product, the news is welcome for... --- ### The Challenges Ahead For Microsoft Teams - Published: 2016-11-03 - Modified: 2024-09-04 - URL: https://petri.com/challenges-ahead-microsoft-teams/ - Categories: Microsoft 365, Office - Tags: Microsoft Teams, News - Article Type: Opinion Microsoft's new collaborative tool is finally here but the product has a few challenges ahead that will not be easy to overcome. Yesterday, Microsoft announced their latest tool that they hope will improve productivity in the workplace. Called Microsoft Teams, this is the company’s take on Slack, a popular tool that has been growing rapidly with startups and with small teams inside of larger organizations. As Microsoft has learned with other products in the marketplace, just because you release something, doesn’t mean it will automatically be utilized by consumers or corporations. While Microsoft has put a good foot forward with Teams as it is robust for a 1. 0 iteration and is also available for every major platform, there are challenges ahead. To get the most out of Teams, you need to heavily utilize Office 365. For the majority of the 80 million plus corporate users, this shouldn’t be a barrier but for those who use only parts of the Office suite, the value of the platform may not be as strong. The real challenge that Microsoft is facing is to convince its Office users to give the tool a try. By offering it for no additional cost within Enterprise and Business SKUs, this is a good start but many employees generally resist change and Teams is a big twist to how they likely have operated up until the announcement of this product. For those that are already using Slack, Teams offers a compelling alternative and if those who are using Slack already paying for Office 365, the tool becomes a value proposition as well. This group of users will be easier to... --- ### Filtering Files and Folders in Azure Backup - Published: 2016-11-03 - Modified: 2024-09-04 - URL: https://petri.com/filtering-files-folders-azure-backup/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Backup, MARS - Article Type: How To Filter out specific files, file types, and sub-folders from a back selection when using the Azure Backup MARS agent to protect files and folders on a Windows PC or server. This post will show you how to filter out specific files, file types, and sub-folders from a back selection when using the Azure Backup MARS agent to protect files and folders on a Windows PC or server.     The Problem The MARS agent is typically being used in a few scenarios: Small-to-midsized enterprises Remote branch offices Mobile workers An administrator or a user might configure a backup selection, but there’s nothing that you can do to prevent users in these liberal environments from dumping their movie or music collection into the backup selection. The last few versions of Windows Server have included file type filtering to prevent storage of unwanted files, but few are aware that this role feature even exists. It also won’t prevent a situation where the files are allowed but we do not want to back them up. Another scenario that I encountered was an application that ingested terabytes of temporary files into the data folders; in this case, the temp files were large and scattered throughout the folder structure and existed for hours or days, making it impossible to deselect them. In both cases, the increased storage impacts costs: the instance charge ($10 for 500GB, RRP) and the amount of blob storage that will be required in Azure to accommodate the backup. We need a means to filter out those files, file types, and folders that are unwanted by the business. Filtering the Backup Selection You can control which files, file types, and folders are not... --- ### Build a WS2016 Demo/Training Lab on a Single PC - Published: 2016-11-03 - Modified: 2024-09-04 - URL: https://petri.com/build-ws2016-demotraining-lab-single-pc/ - Categories: Virtualization - Tags: Hyper-V, Nano Server, Nested Virtualization, Windows 10, Windows Server 2016, WS2016 - Article Type: How To Get a walkthrough of how to build a test/demo/evaluation lab for Windows Serve 2016, including Hyper-V and failover clustering, on a single machine (including a laptop). I will share how you can build a test/demo/evaluation lab for Windows Server 2016, including Hyper-V and failover clustering, on a single machine (including a laptop) in this post. An Overview A big challenge for those of us working with Hyper-V was that if we wanted to show Hyper-V in action, learn how it works, or test out some of the features, then you needed a rack of servers, switches, and storage. Windows 10 and Windows Server 2016 has changed all that.     One of the cool features of the latest release of Hyper-V is nested virtualization; this is where you can run a Hyper-V virtual machine inside of a Hyper-V virtual machine ... inside of a Hyper-V virtual machine inside of another Hyper-V virtual machine. What does this mean for a lab? I can now take a single good spec machine, such as a laptop, run Windows 10 (Anniversary update or later) with Client Hyper-V enabled on it, and deploy a bunch of virtual machines onto that laptop that will each be a Hyper-V host. Client Hyper-V is installed on Windows 10 You can deploy full-blown Hyper-V clusters, iSCSI storage, Storage Spaces (including Direct) clusters as virtual machines on this single laptop; all you cannot do is some of the clever hardware stuff such as SR-IOV, RDMA, and so on. The Laptop You will need a laptop with flash storage. Microsoft reckons that nested virtualization, the key to this... --- ### The Battle for Cloud Supremacy: Google G Suite and Office 365 > Microsoft and Google are battling for dominance in cloud application suites. The question is whether G-Suite trumps Office 365 or vice versa! - Published: 2016-11-02 - Modified: 2024-11-19 - URL: https://petri.com/battle-cloud-supremacy/ - Categories: Microsoft 365, Office - Tags: Apps for Work, Exchange Online, G Suite, Google, migration FastTrack, Office 365, SharePoint Online, SLA - Article Type: Opinion Google’s battle with Microsoft for dominance in cloud application suites continues. New developments, new applications, and even new names keep the pace up as Office 365 and G Suite go head-to-head for customer loyalties. Google launched its enterprise cloud app suite under the Google Apps Premier Edition brand in 2007. Later renamed Google Apps for Work, it was rebranded as G Suite in September 2016 and is the bitter and enduring competitor for Office 365. Industry pundits agree that the two companies are locked in battle to transition customers to the cloud. In a February 2016 study, Gartner noted: "Among public companies using cloud-based email, Microsoft is more popular with larger organizations and has more than an 80 percent share of companies using cloud email with revenue above $10 billion," said Jeffrey Mann, research vice president at Gartner. "Google's popularity is better among smaller companies, approaching a 50 percent share of companies with revenue less than $50 million. "     Its major competitor status means that Google exerts a huge influence over the development of Office 365. Microsoft always has one eye on what Google is doing. Google Set Cloud Standards In many ways, Google set the standards by which cloud applications are measured today. For example, Google was the first cloud provider to make a 99. 9 percent SLA the expected norm. In addition, Google blazed the trail to prove that the browser could be used as a fully-functional client for common office applications such as word processing and spreadsheets. In short, Google demonstrated that users could depend on the cloud to get real work done. In the 2007-2011 period, Google experienced a lot of success in convincing on-premises customers to move to... --- ### Microsoft Unveils Teams, Its Slack Competitor - Published: 2016-11-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-teams-slack-competitor/ - Categories: Microsoft 365 - Tags: Microsoft Teams, News - Article Type: News Microsoft is gearing up to go head-to-head with Slack with a new product called Microsoft Teams that will be included with Office 365. Today, at an Office event in New York, Microsoft pulled back the veil on Teams, the company’s Slack competitor. As I noted a few weeks back, the company was expected to announce the product in November and today they have given us the full rundown of the platform. Slack has become popular with startups and small teams inside of larger organizations and is often thought of as the ‘un-email’. For those who despise their inbox, Slack offered a ‘new’ way to communicate and collaborate with your team. I say ‘new’ because anyone who was around the early 2000s and prior often think of Slack as IRC with a few additional features. Nevertheless, Slack is growing quickly and while Microsoft was rumored to be considering purchasing the company at one point, they decided to build their own iteration which was shown off today. Called Microsoft Teams, it integrates into the Microsoft stack to bring all your content with you no matter where you are viewing a document. The service pivots around teams and channels where a team is a group of people working on a project and a channel is a topic in that group. For example, your team could be Accounting and a channel could be “Monthly Close”. In the “Monthly Close” channel, all conversations would be about the tasks and status of closing out each month and since the channel is persistent, you don’t have to create a new one each month. Additionally, each channel is indexed, so searching... --- ### Azure AD Domain Services Reaches General Availability - Published: 2016-11-02 - Modified: 2024-09-04 - URL: https://petri.com/azure-ad-domain-services-reaches-general-availability/ - Categories: Active Directory (AD) - Tags: Active Directory, Azure, Cloud, Identity Management - Article Type: Overview Get insight into the generally available Azure Active Directory (AAD) Domain Services and the changes that have been made to the managed service since it previewed. Roughly a year after it was released in preview form, Microsoft announced general availability of Azure Active Directory (AAD) Domain Services. In today’s Ask the Admin, I’ll look at the managed service in more detail, and the changes since it previewed last year.     AAD is primarily an identity management solution for apps born in the cloud, but many organizations also deploy full-scale server installations of SharePoint and Exchange in Azure that rely on AD for user and computer authentication. But because AAD supports a different set of protocols, such as OAuth and OpenID Connect, one or more domain controllers also had to be deployed. To address that problem, or as Microsoft puts it, “lift-and-shift” apps to the cloud, AAD Domain Services extends the capabilities of AAD to provide many of the features of an on-premises AD deployment without needing to install domain controllers (DCs) in the cloud, set up ExpressRoute, or a VPN to connect on-premises DCs to Azure. AAD Domain Services relieves organizations of having to maintain, secure and patch DCs in the cloud, is highly available and priced based on usage. AAD Domain Services adds some domain controller capabilities to AAD, including Kerberos, Windows Integrated Authentication, and NTLM, support for Group Policy and Lightweight Directory Access Protocol (LDAP). And although it’s not a necessity, it’s also possible to synchronize AAD to on-premises AD, further expanding the possible scenarios in which AAD Domain Services could be deployed. For a list of deployment scenarios, and restrictions of AAD... --- ### Microsoft to Fix Zero-Day Windows Flaw That Was Outed by Google - Published: 2016-11-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-fix-zero-day-windows-flaw-outed-google/ - Categories: Security, Windows 10, Windows 7, Windows 8, Windows Vista - Tags: News - Article Type: News Microsoft announced that it will fix a dangerous new zero-day security flaw in Windows that it says is being exploited by hackers in Russia. But Microsoft is also understandably outraged that Google inexplicably outed the flaw before a patch was ready. Microsoft announced that it will fix a dangerous new zero-day security flaw in Windows that it says is being exploited by hackers in Russia. But Microsoft is also understandably outraged that Google inexplicably outed the flaw before a patch was ready. "Recently, the activity group that Microsoft Threat Intelligence calls STRONTIUM conducted a low-volume spear-phishing campaign," Microsoft executive vice president Terry Myerson explains. "This attack campaign ... used two zero-day vulnerabilities in Adobe Flash and the down-level Windows kernel to target a specific set of customers. " That specific set of customers is the first bit of blockbuster news to come out of this event: Hackers in Russia, almost certainly stated-sponsored, were silently targeting "government agencies, diplomatic institutions, military organizations, defense contractors, and public policy research institutes," Microsoft says. Or, as has been more widely reported, the Democratic National Committee and the Democratic Congressional Campaign Committee: Russia is broadly suspected of trying to impact the outcome of the U. S. presidential election. How news of the flaw came to light is the second bit of blockbuster news to come out of this event: After privately warning Microsoft about the flaw on October 21, Google inexplicably chose to publicly reveal the flaw on Monday, and before Microsoft was ready to patch it. Why? Because Google's policy is to publish information about actively-exploited software flaws after seven business days. And to do so regardless of the impact it has on customers. "This vulnerability is particularly serious because we know it... --- ### PowerShell Problem Solver: Cleaning Up Old DSC Resources - Published: 2016-11-01 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-cleaning-up-old-dsc-resources/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To Learn how to use PowerShell to clean up the DSC Resources that you have installed. Desired State Configuration (DSC) is a fascinating technology that can dramatically alter an IT pro's job description. This is a big topic, but today I want to focus on one small piece, and one that I have found a little annoying. One of the elements that makes DSC work is a DSC Resource. A resource is a configuration element that is defined generally through PowerShell script and packaged as a PowerShell module. In the beginning we only had a small number of resources and everything was essentially version 1. 0. Now there are many, many resources, often in varying stages of maturity as reflected by version number.     You can find and install many of these resources from the PowerShell Gallery. The challenge is you can download new versions and end up with multiple versions locally. For example, look at a single DSC Resource I have installed. When I go to use the resource in a DSC Configuration I am presented with a related error condition. If I hover over the red squiggle, I'll get a message about multiple resource versions detected. The solution is simple enough. I merely have to explicitly state which resource module to import. Configuration WebConfig { Param(]$Computername) Import-DscResource -ModuleName PSDesiredStateConfiguration, @{ModuleName='xWebAdministration';RequiredVersion='1. 13. 0. 0'} Node $Computername { xWebSite My { Name = 'MyWebSite' Ensure = 'Present' PhysicalPath = 'C:WebMyWebSite' EnabledProtocols = 'http' } #additional configuration } } This is probably for the best because I can guarantee exactly which version to use. This is also a... --- ### Here Comes The Google Enterprise  - Published: 2016-10-31 - Modified: 2024-09-04 - URL: https://petri.com/comes-google-enterprise/ - Categories: Cloud Computing, Google Cloud Platform - Tags: Cloud, Google, News - Article Type: Opinion Google is finally making a serious move into the enterprise and cloud spaces; a series of announcements over the last year highlight this new initiative. For several years and maybe even longer, when you thought about the cloud, it was Amazon or Microsoft. Sure, there have been other companies who have come (and some gone) like HPE's Helion and you can't fully ignore IBM and others but for the most part, Amazon and Microsoft have had all the glory.  But, if you haven't been paying attention closely, Google is now (finally) moving seriously into this space. There hasn’t been a single move that shows their serious intent in this space but a culmination of announcements over the past few quarters that highlight this effort. For starters, back in November of 2015, Google announced that Diane Green would be heading up its cloud-computing business. Greene was the co-founder of VMware and it's fair to say that she knows the enterprise space better than most. She currently heads up all of Google's cloud business and is pushing the company aggressively into the enterprise market. Earlier this year, Google announced that it would be expanding its data centers with the development of 12 new locations over an 18 month period. These new locations will help give Google regional competition to what Microsoft and Amazon have already deployed and while Google is coming from behind with its efforts, building out 12 new data centers that can easily cost a billion dollars a piece, shows their commitment to this space. Historically, Google has been anti-Microsoft. The company has not built out apps for Microsoft's ecosystem and currently offers ChromeOS that... --- ### Top 5 Reasons to Deploy System Center 2016 - Published: 2016-10-31 - Modified: 2024-09-04 - URL: https://petri.com/top-5-reasons-deploy-system-center-2016/ - Categories: System Center - Tags: Configuration Manager, Data Protection Manager, DPM, Operations Manager, SCCM, SCOM, scvmm, System Center, System Center 2016, Virtual Machine Manager - Article Type: Opinion System Center 2016 was released with Windows Server 2016. As usual, if you want to manage the new Server operating system, then you need to have the latest version of Microsoft’s infrastructure and services management suite. In this post I will share the top 5 reasons why I think mid-to-large sized customers should deploy System Center 2016. Overview System Center 2016 was released with Windows Server 2016. As usual, if you want to manage the new Server operating system, then you need to have the latest version of Microsoft’s infrastructure and services management suite.     What is new this time around is that there are two ways to acquire System Center; you can buy the entire System Center bundle as it has been for several years, or you can acquire components of System Center through licensing of Azure’s Operation Management Suite (OMS). For example, paying $30 per month for OMS “Protection & Recovery” entitles each licensed node (virtual machine) to be backed up and replicated to Azure as well as being managed by System Center Virtual Machine Manager (SCVMM) and backed up on-premises by System Center Data Protection Manager (DPM). Now on to the 5 reasons that I think you should consider deploying System Center 2016 ... once you believe that the first cumulative updates have stabilized -- System Center cumulative updates have earned a pretty rough reputation over the past 4 years. Deploy New Infrastructure Some of the headline features of Windows Server and Hyper-V 2016 are as follows: Storage Spaces Direct (S2D): A hyper-converged deployment of Hyper-V on commodity hardware Host Guardian Service/Shielded Virtual Machines: New ways to protect virtual machines and tenant secrets from rootkits on hosts and rogue administrators. Although you... --- ### Microsoft Open Sources Its Next Gen Cloud Hardware Design - Published: 2016-10-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-open-sources-next-gen-cloud-hardware-design/ - Categories: Cloud Computing, Microsoft Azure - Tags: Microsoft, News, Project Olympus, Server - Article Type: News Microsoft is working on a new cloud-based server architecture and they are open-sourcing the designs so that others may contribute and gain from the company's cloud experience. Microsoft wants every company to move to the cloud, this is not a surprise. Microsoft’s Azure platform is growing at a healthy rate and the company knows that it’s cloud services are its long-term business model which is why they are moving all of their platforms to this infrastructure. During this internal transition to the cloud, the company has learned quite a bit about how to build out servers designed for this environment and now they are sharing their new hardware designs with everyone. Microsoft is submitting a new server design to the Open Compute Project (OCP) that they hope will open the door to the community-based hardware design of server infrastructure for cloud deployments. The company is publishing the specs of their new design earlier than typical Open Compute Project (they expect to finish up the design work in about eight months) that will allow any customers interested in using this design to submit feedback or add their own components to the design. Like any other open source project, Microsoft expects that other vendors will fork their designs and build on-top of their base configuration. One of the unique aspects about Project Olympus, this is the name of the project, is that is has a universal power connection that should cut down on the deployment of the server as power supplies and connections vary widely in different countries. Currently, more than 90% of the servers Microsoft has purchased are based on OCP hardware for the company’s data centers and... --- ### SCARY: “Atom Bomb” Windows Security Hole said to be Unfixable - Published: 2016-10-31 - Modified: 2024-11-19 - URL: https://petri.com/atombombing-windows-security-richij-1676989/ - Categories: Main, Security, Windows 10, Windows 2000, Windows 7, Windows 8, Windows Client OS, Windows Server, Windows Server 2003, Windows Server 2008, Windows Server 2012, Windows Server 2016, Windows Vista, Windows XP - Tags: IT Newspro, Microsoft, News, Security, Windows, Windows Server - Article Type: News, Opinion Windows has an unfixable security flaw. That’s the frightening conclusion of this researcher, who says he can inject code—at will—into browsers and other Windows apps. It affects all versions of Windows released in the past 16 years, he says. And it can’t be patched, without breaking legitimate desktop apps. It could be bad for containerized server workloads, too... An “unpatchable” design flaw? enSilo’s Tal Liberman looks coldly pleased Windows has an unfixable security flaw. That’s the frightening conclusion of this researcher, who says he can inject code—at will—into browsers and other Windows apps. It affects all versions of Windows released in the past 16 years, he says. And it can’t be patched, without breaking legitimate desktop apps. It could be bad for containerized server workloads, too. But is it actually a big deal? In today’s IT Newspro, we loosen the airtight hatchway. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Scray clowns... (more... ) --- ### Paul Thurrott's Short Takes: October 28 - Published: 2016-10-28 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-28/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because what happens in Vegas will dog me for the rest of my life, this edition of Short Takes focuses on Microsoft's and Apple's expensive new PCs, LinkedIn, Google, and Amazon results, much more. Only in Vegas Because what happens in Vegas will dog me for the rest of my life, this edition of Short Takes focuses on Microsoft's and Apple's expensive new PCs, LinkedIn, Google, and Amazon results, much more. With PC sales falling, Microsoft and Apple double down on expensive PCs The netbook killed PC pricing, and then Windows 8 turned off customers, perhaps for good. So faced with a PC market that has been declining ever since, the two biggest platform makers, Microsoft and Apple, have curiously adopted the same crazy strategy to revive sales: Make PCs so expensive that no one can afford them. This week, Microsoft announced new Surface Book models that start at $2400 and a new Surface Studio all-in-on PC that ranges from $3000 to $4200. Apple, meanwhile, unleashed new MacBook Pros, and the cheapest version with the new touch strip feature is a whopping $1800. Guys. Seriously. And what is this bizarro world we live in where Microsoft products are more expensive than Apple products? I keep expecting to wake up from some horrible nightmare. But no. This is really happening. "The artist behind Penny Arcade has been using Microsoft's new drawing computer — and he loves it" Sure he does. Can he afford to buy one? Microsoft a big presence at this week's Apple event And speaking of Microsoft and Apple, I'm surprised no one else noticed what a big presence Microsoft had at this week's Apple event. There... --- ### First Steps: Docker and Containers in Windows Server 2016 - Published: 2016-10-28 - Modified: 2024-09-04 - URL: https://petri.com/first-steps-docker-containers-windows-server-2016/ - Categories: Windows Server - Tags: Containers, DevOps, Docker, Windows Server 2016 - Article Type: How To Find out how to deploy an image to a container in Windows Server 2016, create a new image, and upload it to Docker. In today's Ask the Admin, I'll show you how to deploy an image to a container in Windows Server 2016, create a new image and upload it to Docker. One of the major new features in Windows Server 2016 is support for containers and Docker. Containers provide lightweight and agile virtualization capabilities that developers can use to quickly deploy and update apps, without the overhead associated with virtual machines. And in combination with Docker, a container management solution, container technology has exploded over the past couple of years.     This is an updated article for information that was previously included in Deploy and Manage Windows Server Containers using Docker that was relevant for Windows Server 2016 Technical Preview 3. For more information on Docker, see What is Docker? and Are Docker Containers Better than VMs? on the Petri IT Knowledgebase. To follow the instructions in this article, you’ll need access to a physical or virtual server running Windows Server 2016. You can download an evaluation copy of it here from Microsoft’s website, or set up a virtual machine in Microsoft Azure. You’ll also need a free Docker ID, which you can get here by signing up. Install the Docker Engine The first step is to install support for Docker in Windows Server 2016. Log in to Windows Server. Click the Search icon in the taskbar and type powershell in the search box. Right-click Windows PowerShell in the search results and select Run as administrator from the menu. Enter administrator... --- ### Security: The Next Big Battleground in Computing? - Published: 2016-10-28 - Modified: 2024-09-04 - URL: https://petri.com/security-next-big-battleground-computing/ - Categories: Cloud Computing - Tags: Cloud, Microsoft, Security, Windows - Article Type: Opinion Satya Nadella's recent "trust in computing" speech highlighted the need for dependable, secure, trustworthy computing. Let's look at how Microsoft is slowly building out Windows 10 to provide that trust for enterprises across all types of devices. Satya Nadella's recent "trust in computing" speech highlighted the need for dependable, secure, trustworthy computing. In this article, I'll look at how Microsoft is slowly building out Windows 10 to provide that trust for enterprises across all types of devices.     As technology invades every part of our lives, the need to provide trustworthy experiences grows more important. Just last week, the Dyn DDoS attack that brought down many of the Internet services we’ve come to rely on, such as Twitter and Amazon Web Services, highlighted the vulnerability of Internet of Things (IoT) devices, allowing attackers to launch a massive assault by leveraging systems with unchanged default usernames and passwords. This is a simple cost-cutting exercise by manufacturers, as providing unique default credentials for each unit would require unique documentation in each box, or some other means of registering the device so that it can be managed. And as more gadgets and household devices become Internet enabled, these kinds of attacks are likely to become more frequent and damaging. And although Friday’s attack utilized the IoT, Microsoft has recently pointed out that smartphone security also leaves a lot to be desired, calling out Apple’s inability to protect enterprise data. Microsoft hasn’t been traditionally synonymous with security, but Microsoft corporate vice president Brad Anderson thinks that executives shouldn’t blindly trust iOS because of its controlled and procured ecosystem, as the recent discovery of the Trident malware for iPhones might indicate. Microsoft appears to be preparing for what might be something... --- ### The Sometimes Surprising But Always Interesting Delve Results > Delve is the Office 365 search engine. Usually its results are accurate and useful but sometimes "interesting" results show up. - Published: 2016-10-27 - Modified: 2024-11-19 - URL: https://petri.com/odd-delve-results/ - Categories: Microsoft 365, Office - Tags: cards, Delve, Office 365, OneDrive for Business, preservation hold, Search, SharePoint - Article Type: Overview Delve makes it easy to find documents and other items stored in Office 365. Sometimes some surprising results show up after a search. Maybe Microsoft needs to adjust some filters! Delve Is Office 365 Search Delve is a great tool for searching document libraries managed by Office 365. I use Delve all the time to find items that I store in OneDrive for Business or SharePoint. In general, Delve makes it very easy to find information, with the caveat that searches are more reliable if you take the time to populate document properties with descriptive titles and tags instead of depending on file names.     The information displayed by Delve cards is extracted from the underlying items, with different “hints” used for different types of content. For example, a title or “heading 1” style found in a Word document is the usual source. Interestingly, Delve prefers to use “text in a larger font than what’s used in the styles can be picked up as the title” ahead of the formal title property as used by SharePoint. Preservation Holds that Should Stay Hidden (Even from Delve) Last week, I had reason to search for a particular document. Delve duly did its thing and returned its search results, among which was a rather odd item called “Tony Redmond – Preservation Hold,” which you can see in the first card shown in Figure 1. Figure 1: Delve unearths something odd (image credit: Tony Redmond) Clicking the item’s card brought me to the special (and usually hidden) Preservation Hold Library (Figure 2). This library is where items subject to an in-place hold are stored if they are deleted... --- ### The Surface Studio ‘Pro’ - Published: 2016-10-27 - Modified: 2024-09-04 - URL: https://petri.com/surface-studio-pro/ - Categories: Hardware - Tags: Surface Studio - Article Type: Opinion Microsoft’s newest Surface is designed for the professional which means it has a price tag to match but its features are targeted at one specific segment of its user-base. Yesterday, Microsoft announced a new Surface device called the Studio. The PC is an all-in-one computer that sits at the high end of the market; it starts at $2999. Make no mistake, this is not a consumer PC nor is it the Surface for everyone. Microsoft built this product for the professional designer/artist or as they call it, the ‘creator’ and it has the features to match as well. With the Studio, Microsoft is taking back a market once owned by Apple. While the Cupertino-based company is typically associated with creative hardware that allows its software to exceed the capabilities of Redmond-based devices, that idea is being turned on its head with the Studio. And even though design preferences are a personal opinion, it’s fair to say that the Studio looks modern and has clean lines. If your company has a design shop or anyone who has a Wacom tablet/display at their desk or even has a Surface Book/ Pro 4 for drafting or sketching, Microsoft is delivering an industry-best experience with the Studio. Quite frankly, this device is designed for those who need a display that allows them to create anything from advertisements to renderings with the highest quality display available. The reason I say this is that there are graphic artists emailing their IT shops today asking if they can get approval for ordering a Studio. And if you are in this position and thinking about approving or denying this request, know that this isn’t a devious attempt... --- ### Microsoft Surface Studio Dials it up to 11, as Apple Weeps - Published: 2016-10-27 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-surface-studio-wiondows-10-richij-1676931/ - Categories: Hardware, Main, Windows 10 - Tags: desktop, Hardware, IT Newspro, Microsoft, Microsoft Surface, News, Surface Studio, Windows, Windows 10 - Article Type: News, Opinion Microsoft launched its Surface Studio all-in-one desktop at the Windows 10 event yesterday. Here’s what people are saying. Just don’t mention the iMac. In today’s IT Newspro, we mention it once, but we think we got away with it... Big new Surface is for creators Microsoft launched its Surface Studio all-in-one desktop at the Windows 10 event yesterday. Here’s what people are saying. Just don’t mention the iMac. In today’s IT Newspro, we mention it once, but we think we got away with it. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Madge vs. Zep... (more... ) --- ### Installing WSUS 2016 - Published: 2016-10-27 - Modified: 2024-09-04 - URL: https://petri.com/installing-wsus-2016/ - Categories: Windows Server - Tags: WSUS - Article Type: How To Someone asked me recently on Twitter about WSUS in Windows Server 2016 and whether it "still mattered." I think it does, so let me show you how easy it is to install. Over the years, I've used a variety of flavors of Windows Update Services (WSUS) to keep my test domain current on patches and updates, since I don't have time to do it manually. I expect many of you use WSUS for the same reason. And although the product may not get a lot of love and attention, I personally still think it is relevant and even had someone ask me recently on Twitter about WSUS in Windows Server 2016 and whether it "still mattered. " I think it does, so let me show you how easy it is to install.     I have a fresh Windows Server 2016 Server Core installation that I intend to use as my WSUS server. I've installed nothing else. The only thing I've taken into consideration is disk space. Personally, I like to have at least 10GB of free space for all of the WSUS material.   Because there is no requirement to install or manage anything from the server console, I don't need a full desktop experience on the server, so Server Core should suffice. Instead, I have a Windows 10 client with Remote Server Administration Tools (RSAT) installed. That's where you should be managing from. I open up Server Manager and add the new server. Right-click All Servers and select "Add Servers. " Enter the name of the new server. Find the server and click the little arrow icon to select it. Click OK. Now to set up the new WSUS server. I'm keeping... --- ### Automating WSUS 2016 Installation with PowerShell - Published: 2016-10-26 - Modified: 2024-09-04 - URL: https://petri.com/automating-wsus-2016-installation-with-powershell/ - Categories: PowerShell, Windows Server - Tags: PowerShell, WSUS - Article Type: How To Learn how to automate the process of installing Windows Software Update Services (WSUS) on a Windows Server 2016 box. In a previous article I went through the manual process of installing Windows Software Update Services (WSUS) on a new Windows Server 2016 box. I don't expect many of you to have to go through this process more than once or twice, so a manual installation is not that much effort. But, some of you may want to automate the process. Perhaps as part of a larger server automation effort. So let's see how we can achieve the same result using PowerShell.     As before, I want to be able to achieve all of this from my Windows 10 desktop, which has the latest Remote Server Administration Toolkit (RSAT) installed. For the sake of this article, I've rolled my new server back to a fresh, domain-joined installation. I'm also logged on with a domain admin credential. Perhaps the easiest way to automate this process is with an existing XML configuration file. If you recall from the previous article, at the very end of the manual process there was an option to export the configuration to an XML file, which I did. Here's what part of that file looks like: System. Collections. ObjectModel. Collection`1] System. Object Microsoft. Management. Infrastructure. CimInstance#root/Microsoft/Windows/ServerManager/ServerComponent_NET_Framework_45_ASPNET Microsoft. Management. Infrastructure. CimInstance#root/Microsoft/Windows/ServerManager/MSFT_ServerManagerServerComponentDescriptor Microsoft. Management. Infrastructure. CimInstance#ServerComponent_NET_Framework_45_ASPNET Microsoft. Management. Infrastructure. CimInstance#MSFT_ServerManagerServerComponentDescriptor Microsoft. Management. Infrastructure. CimInstance System. Object ServerComponent_NET_Framework_45_ASPNET CHI-WSUS. GLOBOMANTICS. local 429 System. Collections. ArrayList System. Object MSFT_ServerManagerServerComponentDescriptor root/Microsoft/Windows/ServerManager CHI-WSUS. GLOBOMANTICS. local -271270728 --- ### Sponsored: Why Choose Between the Public or Private Cloud? Choose HPE Flexible Capacity to Get the Best of Both Worlds - Published: 2016-10-26 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-choose-public-private-cloud-choose-hpe-flexible-capacity-get-best-worlds/ - Categories: Cloud Computing - Tags: cloud computing, cloud management, HPE, HPE Flexible Capacity, HPE Technology Services, hybrid cloud, Private Cloud, Public Cloud - Article Type: Overview Public cloud and private cloud solutions both offer unique advantages (and limitations), and choosing the right platform for the right workload can be a difficult task. So why choose? One of the biggest challenges facing IT executives is finding the right mix of public and private cloud resources to meet the needs of their business. Public cloud and private cloud solutions both offer unique advantages (and limitations), and choosing the right platform for the right workload can be a difficult task. So why choose? HPE Flexible Capacity allows you to seamlessly manage both your private and public cloud resources. The solution delivers the IT infrastructure and the personalized support you need on-premises to flexibly provision capacity on-demand. This approach will enable you to have more flexibility with regard to where to place workloads based on the dynamic needs of your business, and allows you to rapidly deliver IT support with the scalability and pay-per-use flexibility of public cloud. With Flexible Capacity, HPE delivers a unique way to consume IT: through a partnership in which you and HPE together ensure that you have capacity to support evolving business needs. Now you can provide IT resources from the right mix of traditional IT, public cloud, private, or managed cloud, with one view of your consumption of both on-premises and cloud resources. Here are three unique ways that HPE Flexible Capacity differs from other resources: Unlike a public cloud service, Flexible Capacity delivers on-premises capacity, enabling you to maintain control of IT for reasons of privacy, compliance, latency, and security. Unlike leasing arrangements, Flexible Capacity is a service with variable payments based on actual metered usage, likely qualifying as OPEX. Unlike other... --- ### When Technology Becomes a People Problem - Published: 2016-10-26 - Modified: 2024-09-04 - URL: https://petri.com/technology-becomes-people-problem/ - Categories: Windows Client OS - Tags: Surface, Windows - Article Type: Opinion Technology gets a bad rap when it doesn’t work as expected, but experience shows it’s not always the tech that’s at fault. Selecting the right tool is crucial if it isn’t to be more hindrance than help. Technology gets a bad rap when it doesn’t work as expected, but experience shows it’s not always the tech that’s at fault. Selecting the right tool is crucial if it isn’t to be more hindrance than help. We all have high expectations of the technology we use, and it seems none more so than Patriots coach Bill Belichick, who recently lost his patience with a Microsoft Surface tablet. We don't know too much about the technical details of what went on, but choosing the right tool for the job, making sure the infrastructure is in place to support it, and understanding the technology’s limitations are all key to a successful deployment.     There’s an App for That! Computers can’t solve all life’s problems, and even where they can help, that help may be useful but restricted. Some apps are difficult to use because they’re poorly designed, and others just don’t work the way we’d like. Then there are apps that are intended to do specific things, in certain ways, but we often try to shoehorn in our own ideas about how we’d like them to work, or solve a problem, even if that’s not how they were designed. Don’t Get Too Creative In the days where it was more common for SMBs to run their own on-premises Exchange Server, it wasn’t unusual to find Outlook . pst files used for archiving, especially as space was at a premium on the server. As an archiving solution, it’s not ideal,... --- ### iPhone Sales Fall Again, But Apple Beats Estimates - Published: 2016-10-25 - Modified: 2024-09-04 - URL: https://petri.com/iphone-sales-fall-apple-beats-estimates/ - Categories: Mobile - Tags: Apple, iPad, iPhone, Mac - Article Type: News Apple sold fewer iPhones in the previous quarter than it did a year ago, the third quarterly decline in a row. But iPhone sales beat estimates, and the firm earned an astonishing $47 billion in revenues. Apple sold fewer iPhones in the previous quarter than it did a year ago, the third quarterly decline in a row. But iPhone sales beat estimates, and the firm earned an astonishing $47 billion in revenues. Apple chalked it up as a win. "Our strong September quarter results cap a very successful fiscal 2016 for Apple," Apple CEO Tim Cook said in a prepared statement. "We're thrilled with the customer response to iPhone 7, iPhone 7 Plus and Apple Watch Series 2, as well as the incredible momentum of our Services business, where revenue grew 24 percent to set another all-time record. " A quick look at each of Apple's primary businesses: iPhone. Apple's dominant smartphone business hit 45. 5 million units in the quarter, down from the 48 million it sold in the same quarter a year ago, but ahead of estimates. As noted, this is the third quarter in a row in which iPhone sales fell year-over-year. And iPhone, with $20. 2 billion in revenues, is responsible for fully 43 percent of Apple's revenues. iPad. Apple's tablet business has been falling for over two years now, but it still posts impressive numbers: Unit sales were 9. 3 million, down from 9. 8 million a year ago. And iPad revenues were roughly flat, at $4. 25 billion, compared to $4. 27 billion a year ago. This suggests that the more expensive iPad Pro is having an impact. Mac. With its PC lineup about two years overdue for a major overhaul, it's no... --- ### Backing Up Files and Folders Using Azure Backup - Published: 2016-10-25 - Modified: 2024-09-04 - URL: https://petri.com/backing-files-folders-using-azure-backup/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Backup, Files, Folders, MARS, Recovery Services Vault - Article Type: How To Aidan Finn shares an online backup solution for small businesses, branch offices, and mobile workers, where Azure Backup can be used to cost effectively protect files and folders in the cloud. In this post I will document an online backup solution for small businesses, branch offices, and mobile workers, where Azure Backup can be used to cost effectively protect files and folders in the cloud.     Note that this post is written for those using Azure Backup via the Recovery Services Vault in the newer Azure Portal, and not the Backup Vault in the old Azure Management Portal. The MARS Agent The solution that we are looking at deploying is the Microsoft Azure Recovery Services (MARS) agent. This is a simple disk-cloud backup solution; that means that the agent creates a backup that is sent directly to the cloud. Right now (and this is changing in the future), the MARS agent is restricted in the following ways: Files and folders only: The MARS agent cannot back anything other than files and folders. No Hyper-V VMs from the host, no SQL Server databases, no Exchange Server, no SharePoint, and no System State. In training, I find that I have to repeat this many times and promise physical remedial reminders: MARS will protect only files and folders ... but this will change. Local management only: There is no central console for the MARS agent. Each machine that you backup must be managed locally using the MARS console; this will also change. MARS is improving -- see Project Venus. Although MARS might be limited right now, it’s proven to be a popular solution for online backup in the small to midsized enterprise, probably thanks... --- ### Microsoft Updates How Exchange Online Processes License Removals Without Warning; Chaos Ensues > Microsoft changed the way that Exchange Online deals with the removal of an Office 365 license from an account and caused problems for customers. - Published: 2016-10-25 - Modified: 2024-11-19 - URL: https://petri.com/exchange-online-office365-license/ - Categories: Exchange Server, Microsoft 365, Office - Tags: Account, disconnected, Exchange Online, license, mailbox, Office 365, provisioning - Article Type: Opinion Some recent changes made by Microsoft in how an Exchange Online mailbox is treated when an Office 365 license is removed from their owner’s account caused chaos for the account provisioning system of a large U.S. university. The changes actually make a lot of sense, but it’s bad when Microsoft makes changes like this without warning anyone. It’s common to find that large Office 365 tenants create their own account provisioning tools to fit in with existing processes and procedures for maintaining user accounts. In the enterprise world, the need might arise to align Office 365 accounts with other internal systems. For instance, the creation of a new employee record in a HR system might lead to the creation of an Office 365 account and the assignment of whatever license is required for the employee to work. In the academic world, provisioning is a big deal because of the amount of churn in the student population that occurs at regular intervals. Thousands of accounts might have to be provisioned or deprovisioned quarterly.     Exchange Online and Licenses Recently, Microsoft made a change to the actions taken when a license for Exchange Online is removed from an Office 365 account. Previously, license removal resulted in a disconnected mailbox. A disconnected mailbox can be recovered by linking the mailbox back to an AAD account. Now, the mailbox remains in the database, but its previous owner is blocked from signing into Exchange Online. If necessary, access to the mailbox can be regained by reassigning a license to the Office 365 account. On the surface, the change seems reasonable. However, some bugs in the implementation meant that disconnected mailboxes retain their proxy addresses, meaning that Exchange continued to deliver... --- ### SharePoint App Drops on Windows 10 Mobile - Published: 2016-10-24 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-app-drops-windows-10-mobile/ - Categories: Cloud Computing - Tags: Mobile, Office 365, SharePoint - Article Type: Overview The lack of a SharePoint mobile app has always been a bit of a curiosity, but now, for Windows 10 Mobile users at least, Microsoft has put that right and the app that was first released at the end of September has lost its preview tag. Let's take a look at what it has to offer. In this Ask the Admin, I'll look at the new Windows Store SharePoint app for Windows 10 Mobile. The lack of a SharePoint mobile app has always been a bit of a curiosity, but now, for Windows 10 Mobile users at least, Microsoft has put that right and the app that was first released at the end of September has lost its preview tag. There’s no Windows 10 version of the app at the time of writing, although I assume there will be at some point, and a similar preview app is also available for Android and iOS. SharePoint app for Windows 10 (Image Credit: Russell Smith) The app acts as a hub for all things SharePoint, providing the ability to perform global searches, access links, and information about other users, provided by Microsoft Graph. Rather than simply replicating the features found in other Microsoft apps that can access SharePoint, such as Outlook Groups and OneDrive, files are presented in an Activity view, providing a list of files that have been recently modified by users. There’s also the ability to share files.     Once you’ve opened a SharePoint site in the app, Recent files provides access to lists, and files that you’ve recently worked with. But there’s no ability to create lists from within the app. Clicking Conversations opens the Outlook Groups app, and Documents unsurprisingly opens OneDrive. Other parts of the app are just a web wrapper, so if you click Home... --- ### Microsoft To Surpass 100 Million Office 365 Users in 2017 > According to their Q1 FY17 results, Microsoft's new figure for Office 365 active users is "over 85 million". That's an increase of 15 million since April. - Published: 2016-10-21 - Modified: 2024-11-19 - URL: https://petri.com/office-365-85-million-monthly-active-users/ - Categories: Microsoft 365, Office - Tags: financial results, MAU, News, Office 365, Q1 FY17 - Article Type: News Microsoft's Q1 FY17 results contain the news that the annualized revenue run rate for commercial cloud products is now over $13 billion. Perhaps even more interesting is the news that the new official figure for Office 365 monthly active users is 85 million. At this rate, the 100 million barrier will be cracked in early 2017. In their FY16 Q4 results, Microsoft revealed that the annualized revenue run rate for commercial cloud products, including Office 365, reached $12. 1 billion. A quarter later, Microsoft's Q1 FY17 results give the annualized run rate as "over $13 billion". The billion-dollar increase in the revenue run rate roughly matches the growth needed to achieve CEO Satya Nadella's $20 billion target for commercial cloud products by the end of June 2018. Microsoft’s cloud revenues have grown by over $5 billion from the $8 billion reported at the end of FY15.     Although Azure is growing faster than Office 365 (121% versus 54% in constant currency), the relatively higher prices paid for its plans means that it is reasonable to assume that Office 365 is a large part of the commercial cloud products revenue mix. Microsoft's financial data shows that the growth rate for Office 365 has slowed a tad over the last five reporting periods, but only slightly and the signs still strongly indicate a continuing movement of workload away from on-premises systems to the cloud. The first wave of Office 365 tenants was concentrated in the small to medium business segments. Evidence now suggests that larger enterprises are comfortable enough with the security, privacy, and operational aspects of cloud services to move an increasing amount of workload to the cloud. Although few large companies like to trumpet such a fundamental change, some stories do emerge. For instance, ABB’s migration of 125,000 Lotus Notes users to Office 365, a project that was apparently completed... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (October 2016) - Published: 2016-10-21 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-4/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because it's that time of the month, this edition of Short Takes focuses largely on Microsoft's quarterly earnings: Plus I riff on some headlines and report on a few other things. Because it's that time of the month, this edition of Short Takes focuses largely on Microsoft's quarterly earnings: Plus I riff on some headlines and report on a few other things. NOTE: Many of the blurbs in today's Short Takes reference Microsoft's quarterly earnings. The software giant posted net income of $4. 69 billion on revenues of $20. 45 billion, both of which are basically flat when compared to the figures for the year ago quarter---$4. 9 billion and $20. 38 billion, respectively---but better than expectations. There's not a lot of comedy to be had in financial reports, of course. --Paul "Microsoft Earnings: What to Watch" Follow the money. Which, by the way, Deep Throat never actually said. Microsoft earnings: "Transition" is the ongoing theme This year, Microsoft has really pushed the notion that it is transitioning from a maker of traditionally-delivered software to a major player in cloud computing, and they really drove home that theme during this week's earnings announcement. But there's proof in dem numbers: Fully one-third of Microsoft's revenues now come from its cloud operations, making the software giant one of the "bigliest" cloud vendors around. Looking at just Azure, revenues jumped 116 percent, Microsoft said. "Microsoft blunts losses" I guess that means the same thing as "Microsoft earns profits. " Microsoft earnings: MSFT hits an all-time high In the wake of Microsoft's solid quarter, shares in the firm jumped to an all-time high of $60. 45, eclipsing a record that was set back in 1999 ... yes, near the... --- ### Connect Two Azure Resource Manager Virtual Networks Using VNet Peering - Published: 2016-10-21 - Modified: 2024-09-04 - URL: https://petri.com/connect-two-azure-resource-manager-virtual-networks-using-vnet-peering/ - Categories: Cloud Computing - Tags: Azure, Connection, Peering, Routing, Virtual Network, VNet Peering - Article Type: How To Want to learn how to link two virtual networks using VNet Peering, a new feature in Microsoft Azure? Aidan Finn has you covered with a deep dive into this feature. In this post I will show you how to link two virtual networks using VNet Peering, a new feature in Microsoft Azure. What Is VNet Peering? VNet Peering is the easiest and best performing way to connect two virtual networks (VNets). The alternative, VNet-to-VNet VPN, requires that you deploy gateways in each of the connected VNets. Then you must create a VNet tunnel between the two VNets. Because you must use a gateway, the VPN option limits network speeds between the VNets to the bandwidth capabilities of the gateway -- 80 Mbps in the case of a Basic gateway (not 100 Mbps as often documented).     VNet peering links VNets using the underlying software-defined network, tunnelling packets across the physical data center networks using NVGRE. This means that you don’t need a gateway, and that two virtual machines in different VNets can communicate at the speed of their NICs (that’s going to be around 25 Gbps for some machines once a current hardware offload preview goes generally available). Limitations of VNet Peering My approach to linking VNets is that I always want to use VNet Peerng, but there are times that I must fall back to using VNet-to-VNet VPN. Here are some of the requirements and limitations of VNet Peering: VNets in different regions: VNet Peering requires that both VNets must be in the same Azure region. Network addresses: The IP address spaces of both VNets must not overlap. No A-B-C links: There is no implied transitive... --- ### Top 5 Reasons to Deploy Windows Server 2016 - Published: 2016-10-21 - Modified: 2024-09-04 - URL: https://petri.com/top-5-reasons-deploy-windows-server-2016/ - Categories: Windows Server - Tags: Azure Stack, bitlocker, Failover Clustering, Host Guardian Service, Hyper-V, Nano, Nano Server, Private Cloud, S2D, shielded virtual machines, SR, Storage Replica, Storage Spaces Direct, Virtual TPM, vTPM, Windows Server 2016, WS2016 - Article Type: Overview Explore the main reasons you should consider deploying the now generally available Windows Server 2016 in your network. In this article I will explain why I think that you should consider deploying the now generally available Windows Server 2016 (WS2016) in your network. Smaller and Faster Every version of Windows Server makes strides in improving the efficiency of the operating system (OS). Windows Server 2008 (W2008) introduced a new installation option called Server Core; Microsoft removed the Windows from Windows Server and left us with a server OS that only had a command prompt and a PowerShell prompt. This smaller installation required less RAM, had a smaller footprint, and had less of a surface area for attackers to target.     Windows Server 2012 continued this movement, and saw the kernel be improved with old code being reworked or removed. And in WS2016, yes, we continue to get Server Core as an installation option, but we also get something newer, smaller, and with an increased emphasis on remote management and automation. Nano Server (an installation option, not an edition) doesn’t just remove the GUI, it removes the UI completely! Nano Server is a headless server OS, with the smallest disk requirement I can remember seeing with Windows Server, and consumes less than 200MB RAM when sitting idle! If you want to run Hyper-V or Storage Spaces/Direct then you can use Nano Server, but where I see Nano Server being best used is for born-in-the-cloud applications, where you want to minimize resource usage, OS patching, and security vulnerabilities the most. Improved Service Availability A lot of the improvements... --- ### Microsoft Tops Earnings With Strong Cloud Growth - Published: 2016-10-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-tops-earnings-strong-cloud-growth/ - Categories: Main - Tags: Earnings, Microsoft, News - Article Type: News For the end of its first quarter fiscal year, third quarter calendar year, Microsoft has reported $20.5 billion in GAAP and $22.3 billion in non-GAAP revenue with operating income at $5.2 billion GAAP, and $7.1 billion non-GAAP. For the end of its first quarter fiscal year, third quarter calendar year, Microsoft has reported $20. 5 billion in GAAP and $22. 3 billion in non-GAAP revenue with operating income at $5. 2 billion GAAP, and $7. 1 billion non-GAAP; Net Income for the period was $4. 7 billion GAAP and $6. 0 billion non-GAAP.  During the quarter, Microsoft returned $6. 6 billion to shareholders in the form of share repurchasing and dividends. Revenue for its Productivity and Business Process saw strong growth to $6. 7 billion: Office commercial products and cloud services revenue growing 5% with Office consumer products and cloud services revenue growing 8% during the same period. Microsoft is also now reporting that there are 24 million Office 365 subscribers on the consumer side and 85 million monthly on the commercial side. Microsoft's cloud also had solid growth during the first quarter to $6. 4 billion which grew at 8%. Server products and cloud services revenue was up 11% and Azure revenue grew an impressive 116% as well. Revenue in the company's More Personal Computing division did drop by 2% with Windows OEM revenue being flat for the quarter; Windows commercial products and cloud service revenue was flat as well. Phone revenue dropped 72% for the quarter and a bit surprising is that game revenue dropped 5% as well. But, Search advertising was up 9%. Considering that Microsoft did not introduce any new Surface products this summer, $926 million in sales is a good result for the company; that's over $250 million more in sales when compared to the prior year quarter. Xbox... --- ### Offline File Support Arrives in OneDrive Windows Store App - Published: 2016-10-20 - Modified: 2024-09-04 - URL: https://petri.com/offline-file-support-arrives-onedrive-windows-store-app/ - Categories: Mobile - Tags: Cloud, Mobile, OneDrive, Windows 10 - Article Type: Overview Microsoft has a patchy history with offline synchronization for its OneDrive platform. The new synchronization client in Windows 10 is a big improvement, and it was recently announced at Ignite that a preview of the client now provides support for synchronizing SharePoint libraries, which will eventually free organizations from the terrible legacy Groove software that’s currently required. In today's Ask the Admin, I'll look at offline file support in Microsoft's UWP app for OneDrive. Microsoft has a patchy history with offline synchronization for its OneDrive platform. The new synchronization client in Windows 10 is a big improvement, and it was recently announced at Ignite that a preview of the client now provides support for synchronizing SharePoint libraries, which will eventually free organizations from the terrible legacy Groove software that’s currently required.     As with many things at Microsoft, there seems to be the misguided perception that we’re all connected to the Internet, all of the time, with unlimited data tariffs. At least in Europe that’s certainly not the case. You don’t have to travel very far to be on roaming -- although roaming in Europe will be scrapped by summer 2017. But even with that happy event on the horizon, data charges are high. One important feature that’s been lacking in the OneDrive UWP is support for offline files. But on mobile -- yes, there are individuals and companies that use Windows Phone -- if you needed access to files offline, the only option was to use another cloud provider, such as Dropbox, that supports that feature with its Windows 10 Mobile app, or manually download files. Offline files support in the OneDrive UWP app (17. 15. 6. 0) (Image Credit: Russell Smith) The ability to download files to the device using the OneDrive app has always been available, but offline files works differently, by... --- ### Sponsored: Not Paying the Ransom(ware) - Published: 2016-10-20 - Modified: 2024-09-04 - URL: https://petri.com/sponsored-not-paying-ransomware/ - Categories: Security - Tags: Data Protection, Ransomware, Security - Article Type: Overview   One of the worst nightmares for the IT professional is coming into the office in the morning and finding that your critical servers have been hijacked with ransomware. Business immediately grinds to a halt, and you need to have unpleasant meetings with management about how this happened and — more importantly — what you need to do next. You have two options: try to restore your impacted systems using a backup and hope that it will be malware-free, or elect to pay the ransom price and hope that you can trust that the perpetrators will restore your access to your own systems. There's no guarantee that you will regain access to your files even if you pay. Not an appealing choice — and no matter which option you choose, it will be costly. What Is Ransomware? Ransomware has become one of the newest high-profile threats to businesses. Ransomware is a denial-of-access attack that prevents computer users from accessing files. There are two types of common ransomware today. The simpler type uses a lockscreen that prevents you from accessing your PC or files, and it states you have to pay money to get access to your system again. The more sophisticated type of ransomware attacks work by encrypting your files, which makes them inaccessible without the decryption key. Then the ransomer demands you send a payment to get the keys required to decrypt your files. Both types of ransomwares are typically spread by infected email attachments or advertising from a... --- ### Office 365 Snippets -- October 20, 2016 > The world of Office 365 featured Yammer compliance, Skype Bots, Exchange videos, a collaboration with VMware, and some password problems. - Published: 2016-10-20 - Modified: 2024-11-19 - URL: https://petri.com/office-365-snippets-october-20-2016/ - Categories: Microsoft 365, Office - Tags: Azure Active Directory, Connectors, MyAnalytics, Office 365 Audit Log, Office 365 Groups, passwords, Skype for Business, theSkimm, vmware, Yammer - Article Type: News Some interesting announcements during the last week informed us about Yammer getting better at compliance and a new Office 365 connector. I’m not so hot on the bots, though. In other news, MyAnalytics has an unexplained love for Internet Explorer and the topic of password trimming and the Office 365 maximum password length caused some confusion – at least for one administrator! And some news about an interesting Exchange 20th anniversary video and a VDI collaboration project between VMware and Microsoft for Skype for Business rounds out the week. Yammer Generates Audit Events – Finally Microsoft’s October 13 announcement that “Yammer bolsters security and compliance with new auditing and reporting capabilities” is good news. However, it’s only one step along the path to bring Yammer to where it should be when it comes to compliance. There’s still no sign of support for the kind of retention and preservation policies that exist in Exchange Online and SharePoint Online, nor is it possible to include Yammer content in content searches.     Although Yammer is now capable of providing events to the Office 365 audit log, the audit data only tells us that something happened. A lot more is needed and it doesn’t seem that Yammer will be a first-class compliance citizen within Office 365 anytime soon, at least not if what I heard in Dheepak Ramaswamy’s excellent talk on data governance at Ignite holds true. A Connector for theSkimm The October 14 announcement that Microsoft had partnered with theSkimm to enable a connector to fetch items generated by theSkimm and create conversation items (cards) in an Office 365 group was labelled as bringing “smart and sassy content to Office. ” With such an endorsement, no one could be blamed for creating a new group to host such wonderful content. Connectors don’t extract complete copies of content from external data sources. The cards that are created are snapshots that tell users what content exists elsewhere that they might be interesting in reading. The idea with connectors is to advertise the... --- ### How Can I Connect 2 Azure Virtual Networks? - Published: 2016-10-19 - Modified: 2024-09-04 - URL: https://petri.com/can-connect-2-azure-virtual-networks/ - Categories: Cloud Computing - Tags: Azure, Gateway, networking, Peering, Virtual Network, VNET, VNet Peering, VNet-to-VNet VPN, VPN - Article Type: Overview In this post I will show you how to connect two Azure virtual networks (VNets) together, extending one to another, therefore enabling you to route from virtual machines on one VNet to virtual machines that are connect to another VNet, whether they are in the same region or in different regions.     Design Considerations Not all Azure deployments are simple; there can be reasons to deploy Azure solutions into different VNets. A virtual network is isolated from all other virtual networks by default, therefore making it a security boundary. So maybe a customer will decide the segregate applications, not with softer network security groups (NSGs), but with the harder wall provided by a VNet. A VNet cannot span across Azure regions. So if a business needs to deploy an application across multiple regions for disaster recovery or scale-out reasons, then they must deploy one VNet per region. Many mid-large customers have non-technical issues to deal with. Maybe different divisions have different IT budgets, and they each get their own Azure subscriptions, each with different spending caps and billing/invoice details. Or maybe company politics are at play; Mary & Bob just don’t get along, so they each instruct their departments to use their own Azure subscriptions. A VNet cannot span a subscription, so any deployments within those subscriptions will be isolated by default. A time will come when virtual machines in different VNets must be connected. Maybe Mary and Bob or those different divisions must share data? Maybe... --- ### Microsoft Roadshow: Three Events In Three Weeks - Published: 2016-10-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-roadshow-three-events-three-weeks/ - Categories: Cloud Computing, Office - Tags: Microsoft, News - Article Type: News Microsoft is hosting three separate events, all in New York City, during a three-week span with each event focusing on a different group of users; from consumer devices to updates for the developer community. Starting next week, Microsoft is kicking off a roadshow that will attract nearly all sides of its client base. In a week from today, the company will host a Windows event in NYC, on November 2nd they are hosting an Office event in NYC, and on Novemeber16th its Connect; developer event, is also happening in NYC. Seeing as Microsoft is having three different events, all within three weeks of each other in the same city, you would think they may have considered combining them to reduce the logistical headaches involved with the preparation that goes into each venue. But, seeing as each event is targeting a different audience, they are likely hosting separate events so that they don’t have a huge gathering at any one particular keynote which would need a much larger space. Next week, Microsoft is hosting a Windows event in NYC and while they are calling this a Windows keynote, it is widely believed that Microsoft will show off a new Surface device; likely an All-in-One PC. There are also whispers of a potential Home Hub, think Amazon Echo like device, but details are thin at this time. The following week, Microsoft has announced for November 2nd an Office related event. While nothing has been confirmed, I previously stated that Skype Teams was going to enter a wider-beta period during that month which makes me believe that this event will be used to showcase this new productivity software. Finally, on November 16th and 17th, the company will... --- ### Microsoft claims “Breakthrough” in Speech Recognition -- “Human Parity” - Published: 2016-10-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-speech-recognition-richij-1676638/ - Categories: Main, Microsoft Azure, Mobile, Office, Windows 10 - Tags: artificial intelligence, Azure, IT Newspro, Microsoft, News, Office 365, speech recognition, Windows 10 - Article Type: News, Opinion Skeptical Snowy Owl is skeptical Microsoft Research says it’s made a major breakthrough in converting human speech to text. Recognising continuous, conversational speech is really hard to do accurately, but Redmond reports it can do it as well as actual people can. The researchers claim their technology makes far fewer mistakes. That’s a bold assertion, given the 40-odd-year history of speech-recognition research, peppered as it is with false dawns. But who knows—perhaps this time, things will be different. So, what do you say? In today’s IT Newspro, we listen to reports and opinions, recognizing the very best. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Taking Bill Gates seriously... (more... ) --- ### Microsoft and SAP Deepen Ties With New Initiative - Published: 2016-10-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-sap-deepen-ties-new-initiative/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, News, SAP - Article Type: News Microsoft and SAP have announced an expansion of their partnership to bring more SAP products to Microsoft's cloud but it will take up to five years for the new software to materialize. Back in May of this year, Microsoft and SAP announced a new partnership that brought the two giant software companies a little bit closer together. At that time, the two companies announced that SAP HANA would be coming to Azure and today, the two companies are expanding the partnership. In what will be considered another win for Azure in the enterprise space, SuccessFactors is coming to the cloud platform. The project, which is what Microsoft is announcing today, will take some time to materialize as the announcement post, which you can read here, says it will take up to five years to complete. What’s notable about this announcement, besides Microsoft landing another enterprise partner for Azure, is that this is the first time Success Factors will be hosted on a third-party public cloud. The partnership gives SAP new capabilities and access to additional hardware and for Microsoft, they get a new enterprise client. Building out and maintaining sever infrastructure is expensive and with SAP working with Microsoft, it will become easier to expand their compute-footprint with SuccessFactros without the need to buy more metal. For Microsoft, they will be, for now, the only third-party hardware that can run the HR software which gives them a competitive advantage over other cloud platforms when attracting new clients to the service. Because Microsoft has transitioned into a cloud company that runs applications on a wide variety of hardware, they no longer need to shun competitors. By building a cloud platform that is capable of running... --- ### Those Exchange Online Bottomless Archives Aren't Quite There, Yet... Except in Some Places > Microsoft says that Exchange Online provides bottomless archives to its users. Yet those archives have not been made available to all Office 365 tenants. - Published: 2016-10-18 - Modified: 2024-11-19 - URL: https://petri.com/exchange-bottomless-archives/ - Categories: Exchange Server, Microsoft 365, Office - Tags: archive mailbox, auto-expand, Exchange Online, mailbox quota, Office 365, storage - Article Type: News It’s frustrating when a promised feature isn’t available. Microsoft announced auto-expanding archive mailboxes for Exchange Online in June 2016, but Office 365 customers have reported that their storage quota is limited to 170GB. That’s a lot of space, but hardly the “truly bottomless archive” that Microsoft promised. What’s going on? The Promise of the Bottomless Archive The June 3, 2015 announcement that Exchange Online would provide “new auto-expanding, highly scalable archiving. This allows you to take advantage of a truly bottomless archive... ” naturally created a lot of customer interest, especially for Office 365 tenants who need to retain large amounts of email information for compliance purposes. Tenants who want to import legacy email in the form of user PSTs or extracts from legacy archive servers also anticipate the ability to store this data in archive mailboxes. Unfortunately, the anticipated rollout of expandable archives has not proceeded quite as smoothly as predicted.     Although Microsoft “began a phased roll-out of this offering in the first quarter of 2016,” many tenants still report that their archive mailboxes are limited to 170GB composed of an initial 100GB allocation and an extension of 70GB that can be requested from Microsoft Support. The published limit for archive mailboxes for E3, E4, and E5 enterprise plans is “No Limit”, so what’s going on? The Complex Nature of Exchange Online Office 365 and Exchange Online are both complex infrastructures. Office 365 extends over 12 separate data center regions and Exchange Online is organized into a larger number of forests. When tenants sign up for Office 365, they elect to join a specific region and their Exchange Online mailboxes are assigned into a forest associated with that region. Just like an on-premises deployment, mailboxes are held in mailbox databases within Database Availability Groups (DAGs). Unlike any on-premises deployment, Exchange... --- ### Enterprise Agenda: Backing Up Office 365 - Published: 2016-10-17 - Modified: 2024-09-04 - URL: https://petri.com/enterprise-agenda-backing-office-365/ - Categories: Microsoft 365 - Tags: Enterprise agenda - Article Type: Overview On this edition of the Enterprise Agenda, we take a look at how and why you should be backing up your Office 365 data as it's not only Microsoft's responsability. With the advancement of cloud services, hardware servicing and uptime is a burden passed on to someone else. When you host applications on cloud platforms such as Azure, you are paying Microsoft to maintain the metal that keeps your applications online. Office 365 is one of Microsoft’s most successful products, with millions of users around the world who now depend on the product. For IT pros, Office 365 raises an interesting question: “Should you be backing up this part of your environment? ” At first thought, it seems that Microsoft should be responsible for making sure that all of your content is available 24x7x365. After all, with a cloud service you are paying for your content to remain safe and accessible at every hour of the day and being able to access it from anywhere in the world. Everything is good then, right? Not exactly. Microsoft backs up and replicates all of its data (including your data) with a high level of redundancy, but remember, the company is doing this to protect its own interest. Furthermore, cloud backup is for accidental outages and not accidental deletions, which makes recovering a document a user deleted a few months ago significantly harder than it would be on-premises deployment of Office. Many companies, especially large enterprises, are rarely fully cloud or fully on-premises. Hybrid environments are quite common where you may use some cloud services such as Office 365 but may also still have local Office deployments as well. In these types of environments,... --- ### The Browser Based Enterprise - Published: 2016-10-17 - Modified: 2024-09-04 - URL: https://petri.com/browser-based-enterprise/ - Categories: Cloud Computing - Tags: Browser - Article Type: Opinion How software is being delivered to the enterprise is changing; the cloud is having a significant impact on both hardware and software vendors which opens the door for some, while closing it for others. The web browser has come a long way, from being a novelty item that allowed you to access basic content on the web to a product that can possibly be the only application you need on the desktop. Google, Microsoft, Mozilla and many others are now making high-quality browsers (for free) and with more software moving to the cloud, the impact of a browser is expanding its reach to software and hardware companies. In the enterprise space, much of the critical software applications are moving to cloud-based infrastructure. The result of this fundamental shift in how software is developed, distributed and maintained is that the end user machine is no longer a significant variable in the performance pipeline. Many years ago when rolling out software upgrades, IT pros would have to seriously consider the age of its equipment and specs of local machines to see if the new software was supported. And while the goal of most large companies is to have all employees running identical machines/specs, we all know that’s not a reality. But with a browser, this goal is much closer to a reality as it is easier to deploy the latest version of Chrome/Firefox to all machines or know exactly which version of Edge each user has installed. And with software running in the cloud, and not just simple things like email, but full blow enterprise applications, the desktop PC is facing a new challenge like it has never faced before. Now, this isn’t a post about... --- ### DoJ v Microsoft: Feds Still Want to Snoop on Irish Cloud - Published: 2016-10-17 - Modified: 2024-11-19 - URL: https://petri.com/doj-microsoft-ireland-richij-1676587/ - Categories: Cloud Computing, Main, Messaging, Microsoft Azure, Security - Tags: Cloud, cloud computing, Ireland, IT Newspro, Microsoft, Microsoft Azure, News, Outlook.com, Privacy - Article Type: News, Opinion Microsoft’s fight to keep its European customers’ data private is back in the news. The U. S. Justice Department wants a court to revisit a ruling preventing the government from reading email stored in an Irish data center. Not only is the data stored outside the U. S. , but the owner of the data isn’t a U. S. resident. So Microsoft argues the jurisdiction should be Ireland. A few months ago, an appeal court agreed, but the DoJ isn’t giving up without a fight. Hope you ready for the next episode. In today’s IT Newspro, we gon’ rock it til the wheels fall off. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Martha and Snoop... (more... ) --- ### DOJ Appeals Microsoft's Ireland Verdict - Published: 2016-10-17 - Modified: 2024-09-04 - URL: https://petri.com/doj-appeals-microsofts-ireland-verdict/ - Categories: Cloud Computing - Tags: News - Article Type: News As expected, the U.S. Department of Justice has appealed a July legal victory for Microsoft, in which the software giant was relieved of having to honor a federal search warrant for data stored in an Ireland data center. The agency says that the ruling rests on a misinterpretation of law and sets a bad precedent for other cases. As expected, the U. S. Department of Justice has appealed a July legal victory for Microsoft, in which the software giant was relieved of having to honor a federal search warrant for data stored in an Ireland data center. The agency says that the ruling rests on a misinterpretation of law and sets a bad precedent for other cases. "The rests almost entirely on the erroneous conclusion that the enforcement of the disclosure obligation in the Warrant would be an impermissible extraterritorial application of ," the DOJ filing explains. The case---which is now over two years old---hits on issues of privacy, national sovereignty, and governmental spying. But it boils down to this: The DOJ and other US law enforcement agencies routinely and secretly demand that technology firms hand over user data, and Microsoft has had enough: This case, in particular, involves a non-U. S. citizen and data stored in an international location, and thus the US government has no legal right to that data. But the government argues that Microsoft is a U. S. company, and that the crime at the center of this case "affects U. S. residents and implicates U. S. interests. " In its July ruling, the 2nd U. S Circuit Court of Appeals in New York sided with Microsoft: The SCA at the center of this case applies only to data stored within the United States, it said. And U. S. service providers are not required to honor warrants seeking data stored overseas. Unfortunately for... --- ### Paul Thurrott's Short Takes: October 14 - Published: 2016-10-14 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-14/ - Categories: Mobile - Tags: News - Article Type: Opinion Because my Fitbit is telling me to exact revenge, this edition of Short Takes focuses on Xbox One's third month on top, an Amazon/VMWare partnership to take on Microsoft, an IBM/Google partnership to take on Intel, the iPhone isn't more secure than Android, HP job cuts, more. Because my Fitbit is telling me to exact revenge, this edition of Short Takes focuses on Xbox One's third month on top, an Amazon/VMWare partnership to take on Microsoft, an IBM/Google partnership to take on Intel, the iPhone isn't more secure than Android, HP job cuts, more. Xbox One outsold PlayStation 4 again in September Well, this is getting interesting: NPD reported this week that the Xbox One has now outsold the PlayStation 4 for the third straight month in the U. S. This is the first time the console has been on top for that long, and with a revamped PlayStation 4 having launched in mid-September, that achievement is all the more impressive. That said, a 4K-capable PS4 Pro is coming next month, and with the holiday selling season cranking up, it's highly likely that Sony will once again find itself on top. But that doesn't mean that Microsoft, and Xbox fans, shouldn't savor this moment while it lasts. "Sony Details Smartphone Game Plans, Launching by March 2018" March ... 2018? LOL. I hope Sony is still a company then. Amazon partners With VMware to take on Microsoft in the corporate cloud It was the shot heard 'round the Internet: Amazon and VMWare announced this week that they will partner on hybrid-cloud deployments, a market that Microsoft has pretty much had to itself so far. Under the terms of the deal, a new service, called VMware Cloud on AWS, will debut in 2017 and provide enterprise customers with... --- ### Connect Two Azure Resource Manager Virtual Networks Using VPN - Published: 2016-10-14 - Modified: 2024-09-04 - URL: https://petri.com/connect-two-azure-resource-manager-virtual-networks-using-vpn/ - Categories: Cloud Computing - Tags: Azure, Connections, Gateway, networking, Virtual Network, Virtual Network Gateway, VNET, VNet-to-VNet, VNet-to-VNet VPN - Article Type: How To Aidan Finn shows you how to connect two Azure virtual networks that are in the same subscription using a VNet-to-VNet VPN tunnel. In this post I will show you how to connect two Azure virtual networks that are in the same subscription using a VNet-to-VNet VPN tunnel. The Solution This solution allows two VNets in two different regions to be connected at the network layer. A gateway is created in each VNet, and the gateways are configured to connect to each other using a VPN tunnel. This provides a secure tunnel through which virtual machines on each VNet can communicate with each other. There are no security filters by default, but you can add or modify Network Security Groups to allow/block traffic. An Azure VNet-to-VNet VPN Prerequisites The solution shown in this post allows you to connect VNets that are in the same Azure subscription. You will follow a slightly different process if the VNets will reside in different subscriptions.     There are some prerequisites for configuring a VNet-to-VNet VPN connection: IP Addressing: The two VNets must not use overlapping network addresses. For example, you cannot connect a 10. 0. 0. 0/16 VNet to another 10. 0. 0. 0/16 VNet. ; this should make sense because how would those networks route? Always plan network addresses in advance, allowing for the fact that, one day, a VNet might need connectivity to either another VNet or a customer LAN, even if that day is far in the future. Gateway: Each VNet will require a gateway. It takes 45-60 minutes for Azure to deploy a gateway appliance. I typically schedule my time... --- ### Office 365 Snippets -- October 14, 2016 > A week after Ignite finishes, there's more Office 365 goodness to be mined from the vast collection of videos released by Microsoft. And more... - Published: 2016-10-14 - Modified: 2024-11-19 - URL: https://petri.com/office-365-snippets-october-13-2016/ - Categories: Exchange Server, Microsoft 365, Office - Tags: Azure AD, Exchange on-premises, Exchange Online, guest users, Microsoft Technical Community, Office 365 Groups, OneDrive for Business, Skype for Business, Youtube - Article Type: Overview Ignite is two weeks gone, but there’s still lots of work to reveal all the sessions that I missed. The OneDrive roadmap was one such session, and it included some interesting figures for OneDrive usage. The Grand Exchange on-premises or cloud debate is also online and I also listened to how the dedicated team at Microsoft has lovingly assembled a profanity list for you to use. Finally, some reflections on transforming distribution groups to Office 365 Groups and what this means for mail contacts. Ignite is two weeks gone, but there’s still lots of work to reveal all the sessions that I missed. The OneDrive roadmap was one such session, and it included some interesting figures for OneDrive usage. The Grand Exchange on-premises or cloud debate is also online and I also listened to how the dedicated team at Microsoft has lovingly assembled a profanity list for you to use. Finally, some reflections on transforming distribution groups to Office 365 Groups and what this means for mail contacts.     Downloading Content from Ignite Sessions It’s hard to get to every session that you want to attend at a large conference such as Ignite. And sometimes it’s hard to remember what was said during a session. Fortunately, Microsoft records and posts all of the Ignite sessions to YouTube for anyone to access. The script created by MVP Michel de Rooij automates the download of the sessions and the accompanying PowerPoint deck. Basic filtering is enabled on keywords and title (for example, BRK3001 is the code for the ”Ultimate Field Guide to Office 365 Groups” session). Previous Microsoft events used the Channel 9 network to host an RSS feed for each event that guided access to downloads for the different sessions. This time round, Microsoft elected to use a “Microsoft Ignite Content” space in the new technical community and posted details of all of the sessions there, probably to drive extra traffic to the network to encourage participation from those who might not know... --- ### How the Focused Inbox Replaces Clutter Inside Office 365 > Office 365 brought inbox automation through the Clutter feature in 2015. Now the Focused Inbox replaces Clutter because it's deemed to be more user-friendly - Published: 2016-10-13 - Modified: 2024-11-19 - URL: https://petri.com/focused-inbox-office-365/ - Categories: Microsoft 365, Office - Tags: Acompli, Clutter, EAS, Exchange ActiveSync, Focused Inbox, machine learning, Outlook 2016, Outlook for iOS and Android, owa - Article Type: Overview The Focused Inbox is the keynote feature of the Outlook for iOS and Android mobile clients. All other clients in the Outlook family have used the Clutter feature, which processes mail on the server and removes unimportant items into the Clutter folder. Now Microsoft is dropping Clutter and introducing the Focused Inbox across the entire Outlook family. Rationalization and commonality is good, especially when features that really work are made available to all clients. Here’s how the changeover will occur. The introduction of the “Clutter” mechanism in 2015 inside Office 365 provoked mixed emotions among users. A product of the machine learning work done by Microsoft Research, Clutter attempts to identify messages that are unimportant to a mailbox owner and moves them out of the Inbox into the Clutter folder. The idea is that users then see what’s important in front of them rather than being faced with an overflowing Inbox that’s cluttered up with unimportant notifications, update messages, marketing bulletins, and so on. Over time, people train Clutter to become more accurate by moving items into the Clutter folder to indicate that they’re unimportant. Conversely, they can mark messages that end up in the Clutter folder as important by moving them back to the Inbox or another folder.  Clutter certainly works, but perhaps doesn’t deliver the best end-user experience. Microsoft thinks that the “Focused Inbox” is a better way forward. The roll-out of Focused Inbox to First Release tenants is now in progress within Office 365 and will be supported by all Outlook clients. All Office 365 tenants will receive Focused Inbox in the near future.     Cluttered Confusion for Users The early days of Clutter were frustrating. Many users reported that it seemed like Clutter “forgot” what it had been taught on a regular basis and had to be continually retrained before the lessons stuck and email was filtered on a consistent basis. After a year or so of using Clutter, I was happy with its operation and... --- ### Microsoft HoloLens is Now in These 8 Countries (but Still Super Spendy) - Published: 2016-10-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-hololens-6-countries-1676535-richij/ - Categories: Hardware, Main, Mobile, Windows 10 - Tags: augmented reality, HoloLens, IT Newspro, Microsoft, Microsoft HoloLens, mixed reality, News, virtual reality, Windows 10 - Article Type: News, Opinion Microsoft HoloLens is now available in six more countries. Redmond wants more businesses and developers to get going with its augmented-reality Windows headset. As well as the U.S. and Canada, it’s now in four European countries and two down under. That’s where Microsoft is targeting developers next. You can get it in November, if you pre-order now... Microsoft HoloLens: Jobe horrified to learn that furriners can now buy it Microsoft HoloLens is now available in six more countries. Redmond wants more businesses and developers to get going with its augmented-reality Windows headset. As well as the U. S. and Canada, it’s now in four European countries and two down under. That’s where Microsoft is targeting developers next. You can get it in November, if you pre-order now. But it still costs $3000. In today’s IT Newspro, we mow the lawn like it’s 1992. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: A 180-degree shift in 180 seconds... (more... ) --- ### Native USB Audio 2.0 Coming to Windows 10 - Published: 2016-10-12 - Modified: 2024-09-04 - URL: https://petri.com/native-usb-audio-2-0-coming-windows-10/ - Categories: Windows Client OS - Tags: USB Audio, Windows 10 - Article Type: Overview In September, Microsoft announced native support for USB Audio 2.0 out-of-the-box in Windows 10, and is available starting in Redstone 2 build 14931 for Windows Insiders. This is not the same as USB 2.0, which Windows has supported for years, but a standard for connecting professional, semi-professional, and Hi-Fi audio equipment to computers. In this article, I explain what USB Audio 2. 0 is and why it's important for Windows 10. In September, Microsoft announced native support for USB Audio 2. 0 out-of-the-box in Windows 10, and is available starting in Redstone 2 build 14931 for Windows Insiders. This is not the same as USB 2. 0, which Windows has supported for years, but a standard for connecting professional, semi-professional, and Hi-Fi audio equipment to computers.     In an era in which many consumer audio devices provide support for wireless Bluetooth connections, you might be wondering if this development matters. Apple OS X has long had USB Audio 2. 0 class drivers built in, making Macs the industry standard choice of computer in recording studios. But for those that have Hi-Fi audio equipment at home, USB digital to analogue converters (DAC) are often used instead of CD players -- think high-quality external sound cards -- providing a high-quality audio source that allows playback of local or streaming media. And because of reliability and latency issues over wireless networks, professional recording and Hi-Fi audio equipment tends to stick to wired connections. USB Audio 1. 0 class drivers are included in all currently supported versions of Windows, but are limited to 24-bit/96kHz sample rates, and many USB DACs and some streaming services now support much higher sampling rates, up to 24-bit/192kHz, that require a third-party driver to be installed in Windows. Although support for high sample rates is not common in consumer tech right now, inevitably the market... --- ### Leveraging OneNote: Outlook Groups Can Auto-Share Notebooks > Sharing your OneNote notebooks can be done automatically when using Outlook Groups. Keep you team connected using Groups and use email less and less. - Published: 2016-10-12 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-outlook-groups-can-auto-share-notebooks/ - Categories: Microsoft 365, Uncategorized - Tags: Leveraging OneNote, OneNote - Article Type: How To Your team needs to be on the same page and always working from the most up-to-date information. This used to mean lots of meetings and emails to share information. Today, sharing information can look very different for your workflow. Your team needs to be on the same page and always working from the most up-to-date information. This used to mean lots of meetings and emails to share information. Today, sharing information can look very different for your workflow. Meetings and emails are still an essential part of communicating with your team. By adding OneNote, you can cut down on follow-up meetings and emails.     Outlook Groups Share Notebooks Automatically Group Conversations and Links Establishing who can view your team notes is a breeze. There are two ways to share notes with your team. The first method would be to have a OneNote notebook saved on a local server that anyone with network access can edit. The second method would be saving the notebook to the cloud and granting your team access. Sharing cloud notebooks can be done manually or through Outlook Groups. Storing your notebooks on a local server is easy and simple. The major drawback would be limiting access to your information to the local network. OneNote has a great suite of mobile apps, but they all rely upon the cloud to access notebooks. If everyone on your team uses the desktop client of OneNote, then they can all edit the same notebook at once. Sharing is as easy as emailing sending your team a link to the location on the network where you have the notebook saved. When storing a notebook on a local server, keep in mind the notebook has... --- ### Office 365: How Does the New Office Tap Feature Work in Word and Outlook 2016? - Published: 2016-10-11 - Modified: 2024-09-04 - URL: https://petri.com/office-365-new-office-tap-feature-work-word-outlook-2016/ - Categories: Office - Tags: Getting The Most Out Of Office 365, Office - Article Type: How To Microsoft recognizes the real power of cloud services, such as Office 365, lies not necessarily in the client apps that we use to access and work with data, but in the ability to tap into data and use analytics and business intelligence (BI) to get insights for making business decisions. Often knowledge workers don’t need complex BI or analytics, but just access to company data that has already been presented in a document so that it can be reused somewhere else. Sounds like it ought to be a simple task, right? In today's Ask the Admin, I'll look at the new Tap feature in Word and Outlook 2016. Find information using Tap in Word and Outlook 2016 (Image Credit: Russell Smith) Microsoft recognizes that the real power of cloud services, such as Office 365, lies not necessarily in the client apps that we use to access and work with data, but in the ability to tap into data and use analytics and business intelligence (BI) to get insights for making business decisions.     Often knowledge workers don’t need complex BI or analytics, but just access to company data that has already been presented in a document so that it can be reused somewhere else. Sounds like it ought to be a simple task, right? If you synchronize documents to your local device from SharePoint or OneDrive for Business, you can leave Office and use Cortana or File Explorer to search for information, open the desired document, and then copy and paste the text, object, or graphic once you’ve located it in the file. Or alternatively, you can search files using the Office 365 web portal. It’s not that hard, but there are a lot of steps in this process. Office Tap is available for Office 365 users with Business Premium, Enterprise E3, or Enterprise E5 subscriptions, and aims to provide an easier way to re-purpose frequently used information from Word, Excel, and PowerPoint documents. A list of recommended objects is presented when you open... --- ### Microsoft’s New Windows 7/8 Rollup Patches To Be Released Starting Tomorrow - Published: 2016-10-10 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-windows-78-rollup-patches-released-starting-tomorrow/ - Categories: Windows 7, Windows 8, Windows Server - Tags: News, Patch Tuesday, Windows - Article Type: News Microsoft is making significant changes to how it updates Windows and Server products; these updates go live starting tomorrow which means it is important for you to be prepared. Back in August, Microsoft gave notice that they would be changing how the company delivers updates for Windows 7 SP1, Windows 8. 1, Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2. Starting tomorrow, on October 11th, these changes go into effect and it’s important to understand how this will impact your operation. This new update model will be delivered via Windows Update and the Microsoft Update Catalog. Much like Windows 10, each update will supersede the previous month’s release which means that there will always only be one update that you need to download to patch your system. The company says that they will also retroactively add prior patches too so that these monthly updates eventually become fully cumulative; it may take a year or more for the process of previous patch inclusion to be completed. Also starting in this month, the company will release a single security-only update as well. This update will combine all the security patches and bundle them together for a single release but unlike the monthly roll-up, the security-only update will only include patches for that month. These updates will be available to download from WSUS, SCCM, and the Microsoft Update Catalog. To help IT Pros get ready for these changes, Microsoft published a blog post that gives more insight into what patches will be included in each release and how the new cadence will progress with each release. It’s important to understand that these changes will impact not only the operating... --- ### Azure Application Gateway Web Application Firewall Preview - Published: 2016-10-10 - Modified: 2024-09-04 - URL: https://petri.com/azure-application-gateway-web-application-firewall-preview/ - Categories: Cloud Computing - Tags: Application Delivery, Application Gateway, Azure, firewall, HTTP, HTTPS, L4, L7, Proxy, VNET, Web, Web Application Firewall - Article Type: Overview Find out about a new network security feature, the Web Application Firewall, for web applications that was launched in preview at Microsoft Ignite 2016. This post will describe a new network security feature, the Web Application Firewall, for web applications that was launched in preview at Microsoft Ignite 2016. Some Background You can run a pretty complex web hosting service in Azure. Load balancing (for multi-region scale-out and failover) can be done at the DNS-level using Traffic Manager, layer 4 load balancing can be done within a virtual network (VNet) using the ARM load balancer, and a year ago, Microsoft added layer 7 functionality in the Application Gateway. Azure Application Gateway provides layer 7 application delivery as a service You can place the Application Gateway behind the Azure load balancer and in front of sets of web servers to get the following functionality: HTTP load balancing: Layer 7 load balancing of HTTP(S) traffic. Cookie-based session affinity: Allow application layer session affinity between a client and a HTTP(S) server. Secure Sockets Layer (SSL) offload: Offload CPU-intensive encryption work from the web/application servers to the application gateway. Traffic is encrypted between the client and the application gateway, but in clear between the gateway and the servers over the trusted internal VNet. End-to-End SSL: A twist on SSL offload; traffic is re-encrypted between the application gateway and the web/application server. URL-based content routing: You can have farms of site content, for example a virtual directory is hosted by one set of servers. Or you can host multiple domains behind one gateway. The application sees the requested URL and forwards... --- ### With Problems Mounting, Samsung Halts Galaxy Note 7 Production - Published: 2016-10-10 - Modified: 2024-09-04 - URL: https://petri.com/problems-mounting-samsung-halts-galaxy-note-7-production/ - Categories: Mobile - Tags: News, Samsung - Article Type: News Samsung can't catch a break: After issuing its biggest-ever recall for the Galaxy Note 7 smartphone, the firm this past weekend was forced to acknowledge that supposedly-fixed versions of the phone are unsafe as well. So Samsung has temporarily halted production of the device. Samsung can't catch a break: After issuing its biggest-ever recall for the Galaxy Note 7 smartphone, the firm this past weekend was forced to acknowledge that supposedly-fixed versions of the phone are unsafe as well. So Samsung has temporarily halted production of the device. "Samsung is temporarily adjusting the Galaxy Note 7 production schedule in order to take further steps to ensure quality and safety matters," a terse Samsung statement explains. But according to reports in both The New York Times and The Wall Street Journal, Samsung may never recover from its Note 7 troubles. Released with much fanfare and overly-positive reviews from a tech press that generally spends very little time with the devices they recommend to readers, the Note 7 quickly succumbed to its unreliable reality. Customers immediately began reporting overheating issues, and then some of the devices started smoking and even catching fire and exploding in some cases. Samsung released the Note 7 on August 19, 2016. Just two weeks later, on September 2, it was forced to recall the device. But Samsung's handling of this crisis has been poor. The firm knew about the problems immediately and was silent as customer complaints rolled in, despite the obvious safety issues. Finally, Samsung belatedly blamed "a battery cell issue" in one of the two battery types that could ship with the Note 7. In mid-September, the firm announced a software patch it said would somewhat lower the risks of immolation, and it allowed any... --- ### MinRole Improvements in SharePoint 2016 Feature Pack 1 - Published: 2016-10-10 - Modified: 2024-09-04 - URL: https://petri.com/minrole-improvements-sharepoint-2016-feature-pack-1/ - Categories: SharePoint - Tags: Microsoft SharePoint, MinRole, SharePoint 2016 Feature Pack 1 - Article Type: Overview When SharePoint 2016 Feature Pack 1 (FP1) is released in November, one of the new features it will include is an updated version of MinRole. Find out how the changes made to this option make MinRole easier to use. At Ignite, Microsoft dropped a lot of great announcements on us. New versions of Windows, new Security offerings, and new functionality for on-premises SharePoint Server 2016. Although there were several things announced, the improvements made to MinRole are some of the most significant.     MinRole was functionality that made its debut in SharePoint 2016 as a way for your SharePoint 2016 farm to manage its own health by making sure services were running where they were supposed to be, and unexpected services were not running where they shouldn’t be. You could assign one of four roles -- Web Front End, Application, Search, or Distributed Cache -- to a SharePoint server and once a day SharePoint would run a timer job to make sure all of the appropriate services were running on that server to ensure they could do the jobs you expected them to do. Also, as long as you had one of each of the four roles assigned to a server in your farm, you knew you had 100 percent of SharePoint’s functionality covered. MinRole was another in a long list of features that have been added to SharePoint in part from Microsoft’s own experience hosting SharePoint Online. When farms are as large and numerous as SharePoint Online’s are, you need all the help you can get keeping the lights on, and MinRole helped make that possible. Microsoft could spin up a bunch of servers in each roll and as it was doing maintenance or cycling machines out it could verify in a glance that everything was covered... . --- ### Microsoft Windows Event Announced For October 26th - Published: 2016-10-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hardware-event-announced-october-26th/ - Categories: Hardware - Tags: Hardware, Microsoft, News - Article Type: News Microsoft has announced a hardware event for later this month where the company is expected to show off some new Surface good but it is important to keep expectations in-line with reality. Microsoft has sent out invitations for a press event at the end of this month in New York City. While the company is not saying what will be announced, we do know that they have been quietly working on new hardware but it’s important to keep expectations in check. What seems most likely that the company will announce is an All-in-One device or something along those lines. What I would not expect to see at this event is a Surface Phone, Band 3 or any major updates (if any at all) to Surface Pro 4/Surface Book. It is expected that the company will be showing off how Windows 10 is shaping the future of computing across its wide variety of devices including the PC, Xbox and Hololens. With the holiday shopping season quickly approaching and Microsoft holding this event at the end of the month, it looks like the company is going to be showing off products that it hopes you will be gifting to your friends and family. Additionally, because of the date of the announcements, it appears the turnaround time from announcement to product availability should be a small window of time. As always, I’ll be there covering the event and bringing you everything you need to know about Microsoft’s upcoming devices and announcements. --- ### The Sams Report EP 59: Should Microsoft Build An Android Flagship - Published: 2016-10-07 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-59-microsoft-build-android-flagship/ - Categories: Podcast - Tags: The Sams Report - Article Type: Overview On this episode, I cover all of the Microsoft news this week including the fixing broken updates, Band hitting the end of the road, Google announced a few things and should Microsoft build a proper Android phone. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including the fixing broken updates, Band hitting the end of the road, Google announced a few things and should Microsoft build a proper Android phone. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=WwBUgls5lqY   RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Microsoft Cloud AI Tests Turing Institute -- Data Science Meets Machine Learning - Published: 2016-10-07 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-cloud-ai-richij-1676433/ - Categories: Cloud Computing, Dynamics, Main, Microsoft 365, Microsoft Azure - Tags: artificial intelligence, Azure, Cloud, cloud computing, data science, Editor's Pick, IT Newspro, machine learning, Microsoft, Microsoft Azure, News, Office 365 - Article Type: News, Opinion Microsoft CEO Satya Nadella is talking up the company’s cloud chops in artificial intelligence. Azure and Office 365 are chock-full of machine-learning facilities, he says. Over the past few days, he’s appeared on stage in Dublin and London, preaching the gospel of AI and FPGAs. And now Microsoft’s donated Azure credits to a UK research consortium that specializes in data science... Nadella tours Europe in cloud charm offensive Microsoft CEO Satya Nadella is talking up the company’s cloud chops in artificial intelligence. Azure and Office 365 are chock-full of machine-learning features, he says. Over the past few days, he’s appeared on stage in Dublin and London, preaching the gospel of AI and FPGAs. And now Microsoft’s donated Azure credits to a UK research consortium that specializes in data science. But what does it all mean? In today’s IT Newspro, we learn deep. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Why 30 fps is actually 29. 97... (more... ) --- ### Paul Thurrott's Short Takes: October 7 - Published: 2016-10-07 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-7/ - Categories: Hardware, Mobile - Tags: News - Article Type: Opinion Because I'm still sick and I'm taking this entire town down with me, this edition of Short Takes focuses on the PC market nosedive, whether Microsoft should buy Fitbit, Samsung profits are exploding like its phones, Blackberry will try to license its mobile OS, and a lot more. The PC market, 2016. Because I'm still sick and I'm taking this entire town down with me, this edition of Short Takes focuses on the PC market nosedive, whether Microsoft should buy Fitbit, Samsung profits are exploding like its phones, Blackberry will try to license its mobile OS, and a lot more. PC market continues its slow downward slide, no end in sight I think it's time for all of us to come to grips with a harsh reality: The PC market is not going to rebound, is never going to return to a place where more than 300 million---let alone 400 million, its high-water mark---PCs are sold each year. A new report from Gartner claims that overall digital device shipments---which include PCs, tablets and phones---will fall for the second straight year. But that is mostly temporary, if you exclude PCs: PCs are never coming back. PC makers will sell just 288 million PCs this year, down 8 percent year over year. And that will fall to 265-266 million units over the next few years before a slight and very temporary rebound that is tied only to corporate refresh cycle. How bad is the free-fall? The PC market has contracted 30 percent in just 5 years. So the future for the PC is much lower unit sales and a renewed emphasis on the few sub-markets that can actually make small profits, like gaming PCs and other premium models. "MacBook Airs and Microsoft Surface haven't... --- ### Enable Modern Authentication in Exchange Online - Published: 2016-10-07 - Modified: 2024-12-03 - URL: https://petri.com/enable-modern-authentication-exchange-online/ - Categories: Exchange Server - Tags: Exchange Online, Office 365, Security - Article Type: How To Find out how to enable Modern Authentication in Exchange Online so that 2FA-enabled Office 365 can use Outlook 2013 or later. In this Ask the Admin, I'll show you how to enable Modern Authentication in Exchange Online so that two-factor authentication (2FA) enabled users in Office 365 can access Exchange Online using Outlook 2013 or later. If you’ve been following my article series on multi-factor authentication, you’ll know that Microsoft has been working hard to make deploying 2FA easier. The Microsoft Authenticator app allows mobile devices to be used like smartcards, acting as a second factor in the authentication process, and uses push notifications so that users don’t have to type codes to confirm that they’re in possession of the device. Office 2013 and later desktop apps and Office mobile apps all support 2FA out-of-the-box, and this support is known as Modern Authentication (MA). SharePoint Online has support for MA enabled by default, but if you want to allow 2FA-enabled Office 365 users to connect to Exchange Online using Outlook 2013 or later, you’ll need to enable MA in Exchange Online first. For more information on 2FA in Office 365, see Enable Multifactor Authentication for Office 365 Users and What is Multifactor Authentication and How Does It Work? on the Petri IT Knowledgebase. Enable MA in Exchange Online Modern Authentication must be enabled in Exchange Online using PowerShell. And you’ll also need to log in to Exchange Online using an account that isn’t 2FA-enabled. To make a connection to Exchange Online, open a PowerShell prompt or the Integrated Scripting Environment (ISE), and run the following two lines of code: $UserCredential... --- ### Enable Multi-Factor Authentication for Office 365 Users - Published: 2016-10-07 - Modified: 2024-12-03 - URL: https://petri.com/enable-multi-factor-authentication-office-365-users/ - Categories: Security - Tags: Cloud, Office 365, Security - Article Type: How To Learn how to enable two-factor authentication on a Microsoft Account with the help of Microsoft's Authenticator mobile app. In today's Ask the Admin, I'll show you how to enable two-factor authentication on a Microsoft account with the help of Microsoft's Authenticator mobile app. In What Is Multifactor Authentication and How Does It Work? on the Petri IT Knowledgebase, I explained the concept of two-factor and multi-factor authentication, and why you should enable it for sensitive accounts. Two-factor authentication (2FA) has been available in Office 365 for a couple of years, but you need to manually enable it for your users. Microsoft’s Authenticator app for iOS, Android, and Windows Phone makes it easier than ever to implement 2FA by using push notifications for verification rather than requiring users to type in access codes.     Before setting up 2FA for Office 365 users, make sure you enable Modern Authentication (MA) for Exchange Online if users are accessing Exchange using Outlook 2016 or 2013. Versions of Outlook prior to 2013 don’t support Modern Authentication. For details on how to enable MA for Exchange Online tenants, see Enable Modern Authentication in Exchange Online. I’ve tested 2FA with Microsoft’s mobile Office apps, Outlook Groups, Office 2016 desktop apps, and OneDrive for Business in Windows 10, and found no problems. But there may be apps that are incompatible or require an app password, so make sure you test all the apps in your organization before enabling 2FA. If you intend to set up 2FA for tenant administrator accounts, you should note that those accounts won’t be able to sign in to Office... --- ### Azure Automation DSC Reporting - Published: 2016-10-06 - Modified: 2024-09-04 - URL: https://petri.com/azure-automation-dsc-reporting/ - Categories: Cloud Computing - Tags: Automation, Azure, Cloud, Management - Article Type: How To Russell Smith describes how to access DSC node reports in Azure Automation DSC using the management portal. In today's Ask the Admin, I'll show you how to access and work with Azure Automation DSC reports. One of the great things about Azure Automation DSC is not only does it democratize PowerShell DSC and make DSC easier to implement, but it also makes the collection of information about the compliance state of your servers simple, either using the management portal or PowerShell. Unlike PowerShell DSC, which requires you to set up an infrastructure, including a pull server, Azure Automation DSC puts all the pieces into place without you having to configure servers or keep them running 24/7.     For more information on Azure Automation DSC, see Introduction to Azure Automation Desired State Configuration and Getting Started with Azure Automation Desired State Configuration on the Petri IT Knowledgebase. Reports in the Azure Management Portal Let’s start by accessing DSC node reports in the Azure management portal. Log in to the Azure management portal here. In the list of options on the left of the management portal, click More services > at the bottom. In the Filter box at the top of the menu, type auto and then click Automation Accounts in the results. The Automation Account pane in the Azure management portal (Image Credit: Russell Smith) In the Automation Accounts pane, click your automation account in the list. In the Automation Account pane, click the DSC Nodes tile under Resources. In the DSC Nodes pane, click the node for which you want to... --- ### Office 365 Snippets -- October 6, 2016 > Another week, more Office 365 snippets. Some news about Exchange bosses making good, a strange offer to block someone, and the Office 365 Admin Center is GA. - Published: 2016-10-06 - Modified: 2024-11-19 - URL: https://petri.com/office-365-snippets-october-6-2016/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Office 365, Office 365 Admin Center, Office 365 Exposed podcast, Rajesh Jha - Article Type: News A relaxed week between the bedlam of Ignite and the calmness of the IT/DEV Connections conference in Las Vegas gives me a chance to catch up with some of the less-important but still worthy things I learned about recently. The Exchange team celebrated the 20th anniversary of the product, another of its leaders joined the Microsoft SLT, email from Paul Robichaux caused some problems, and the new Office 365 Admin Center finally reached general availability. A relaxed week between the bedlam of Ignite and the calmness of the IT/DEV Connections conference in Las Vegas gives me a chance to catch up with some of the less-important but still worthy things I learned about recently. The Exchange team celebrated the 20th anniversary of the product, another of its leaders joined the Microsoft SLT, email from Paul Robichaux caused some problems, and the new Office 365 Admin Center finally reached general availability.     Exchange Bosses at the Top Table Terry Myerson led the development of Exchange 2007 and moved to Windows Phone in October 2008. His replacement as the Exchange chief was Rajesh Jha, who previously led Microsoft Office Live. Both are now at Microsoft’s top table as members of the Satya Nadella’s Senior Leadership Team (SLT), with Jha joining September 29 as the leader of a new Office Product Group after Qi Lu stepped down from Microsoft to recover from a bike injury. The Exchange development group threw a party at Ignite to celebrate the product’s 20th anniversary. Some interesting videos were shown during the evening, including this one to commemorate some of the features (like the ill-fated Exchange 2000 Conferencing Server) that the developers aren’t quite so proud of, including PSTs and Public Folders that remain remarkably difficult to eradicate. Overall, the commercial and technical success of Exchange both as the leading on-premises email server and in a remarkably effective transition to be a cornerstone of Office 365 has certainly been good... --- ### What Is Multifactor Authentication and How Does It Work? > This guide will walk you through all the technology behind multifactor authentication and give examples of how to protect your organization from phishing attacks and security breaches. - Published: 2016-10-05 - Modified: 2024-04-08 - URL: https://petri.com/multi-factor-authentication-work/ - Categories: Identity Management, Microsoft Entra ID (Azure AD), Security - Tags: Azure Active Directory, Microsoft Entra ID, multifactor authentication, Security, Windows Hello, Windows Hello for Business - Article Type: Overview Russell explain what multi-factor authentication is and why you should enable it. Multifactor authentication adds an extra layer of security, or authentication factor, to your online accounts and it should be enabled in your organization, period. This guide will walk you through all the technology behind it and give examples of how to protect your organization from phishing attacks and security breaches. What is multifactor authentication? Multifactor authentication (MFA) is a service that requires a user to use two or more authentication methods to authorize themselves to an application, service, online account, or virtual private network (VPN). Traditionally, users used a 'single factor' - a password. This was the baseline and was so for many decades of computing. MFA, sometimes referred to as two-factor authentication, is a robust security method that enhances the protection of all of your online accounts, including Microsoft 365 and Microsoft Entra ID. Let's move on to why it is so vital today. Multifactor authentication in Microsoft Entra ID (Image Credit: Microsoft) Why should I use multifactor authentication? Over the last two decades or so, hackers and threat actors have been able to compromise users' online identities by guessing passwords or using brute-force attacks. Cybersecurity has exploded in value. Phishing attacks have also been very prevalent. Once they have your identity, attackers have varying amounts of liberty, and time to infiltrate that user's information, and spread it to other parts of that user's identity or organization. Additional verification methods and strategies needed to be created to protect users' identities. This is why you should use MFA. Even if... --- ### H-Series Azure Virtual Machines - Published: 2016-10-05 - Modified: 2024-09-04 - URL: https://petri.com/h-series-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure, cloud computing, H-Series, IaaS, Public Cloud, virtual machines - Article Type: Overview Find out about the new H-Series Azure virtual machine, which was launched by Microsoft at the Ignite Conference in Atlanta. This post will tell you about the new H-Series Azure virtual machine, which was launched by Microsoft at the Ignite conference in Atlanta. More Choice If there’s one thing I don’t hear from customers, it’s that Microsoft doesn’t have a large and confusing portfolio of virtual machine specifications to choose from. Back in July, I explained how you could choose from the then-collection of Azure virtual machine series.     A virtual machine series is a collection of machine sizes that share some common traits, such as host CPU model, disk capabilities, and maybe some access to specialized components such as a GPU. Microsoft has added to the array of available series by giving us the H-Series virtual machine, which is currently only available in the South Central US Azure region. H = High Performance To remember what each series of Azure virtual machine does, I associate the series name with something that reflects the uniqueness of the series. For example: G = Godzilla: Virtual machines with massive amounts of memory F = F-Series trucks: General purpose virtual machines N = NVIDIA: Virtual machines with DDA (direct hardware) connections to NVIDIA GPUs Microsoft intends the H-Series virtual machine to be used in high-performance computing. This was once the role of the Standard A-Series A8, A9, A10, and A11 machines, but we see that in new regions, Microsoft has stopped deploying A-Series virtual machines. I suspect that the F-Series, Dv2-Series, and the H-Series virtual machines are replacing the A-Series... --- ### Skype Teams: Channels, Threads, Messaging And A Lot More - Published: 2016-10-05 - Modified: 2024-09-04 - URL: https://petri.com/skype-teams-channels-threads-messaging-lot/ - Categories: Microsoft 365 - Tags: News, Skype Teams - Article Type: News Microsoft is working on a new collaborative tool called Skype Teams and now we are starting to learn more about the individual features that will be included inside of the tool. Microsoft is working on a new collaborate platform under the Skype umbrella called Teams. I was able to reveal a bit more information about the product a few weeks back and since then, I have obtained a couple more bits of documentation and videos that give us a nearly complete look at the platform. The platform is organized by teams and channels with teams being the top of the hierarchy and channels being the sub-categories for that team. It is possible to favorite a channel so that it is always present and hide them if needed as well. When you create a team, you invite co-workers by their email address and you also have the ability to add by security groups too, which makes it faster than adding users individually for large groups. Once the team is created, you then can add new channels to organize the grouping; what is not known is if a user has to join a team or if they are automatically added if you provide their email. I suspect they have to accept the invite as automatically adding users to a team would quickly increase the noise at a personal level. In a channel, conversations are threaded individually, making it easier to control the flow of conversation from becoming tangled and disjointed. Users also have the ability to bookmark a thread and save it to their favorites folder and Skype Teams also support “@” mentions to flag a specific user to a thread. Files can... --- ### Improved Azure VM Networking Performance (Preview) - Published: 2016-10-04 - Modified: 2024-09-04 - URL: https://petri.com/improved-azure-vm-networking-performance-preview/ - Categories: Cloud Computing - Tags: Azure, networking, NVGRE, NVGRE Offload, performance, SR-IOV, SRIOV, virtual machines - Article Type: Overview Learn how Microsoft has recently started rolling out a preview of improved networking performance for Azure virtual machines. This post will describe how Microsoft has recently started rolling out a preview of improved networking performance for Azure virtual machines. The Announcement Microsoft announced at the Ignite 2016 conference that it has started work to greatly improve the networking performance of the entire global fleet of virtual machines. We will see reduced latency/jitter, and we will see maximum bandwidth improvements of 33 percent to 50 percent. This is being done by leveraging hardware offloads that are available in Windows Server Hyper-V.     Note: Azure runs the same Hyper-V hypervisor that we can use in Windows Server. Microsoft’s public cloud is currently running Windows Server 2012 and Windows Server 2012 R2 Hyper-V. The results of these improvements will benefit us in several ways: More peak bandwidth: Depending on what virtual machine series/size you run, you will gain access to more bandwidth, so you can move data around more quickly. Improved Storage Performance: Storage account customers will be improved storage IOPS. Reduced latency: Data will get from one machine to another more rapidly. Reduced jitter: This will benefit media streaming services, such as voice and video. Reduced CPU utilization: Which means your services have more compute available to them. One example that Microsoft shared is that SQL Server database In-Memory OLTP transaction performance was improved by 1. 5x in testing. They also reached speeds of 25 Gbps when testing with DS15v2 and D15v2 virtual machines. A demo of Azure networking performance from Microsoft Ignite 2016 So how... --- ### Transforming Exchange Distribution Groups to Office 365 Groups > Exchange distribution groups are popular, but Office 365 Groups are the new standard for collaboration within Microsoft's cloud platform. Here's how to convert. - Published: 2016-10-04 - Modified: 2024-11-19 - URL: https://petri.com/transform-exchange-dl-office-365-groups/ - Categories: Exchange Server, Microsoft 365, Office, PowerShell - Tags: AAD, Azure Active Directory, conversion, EAC, email distribution group, Exchange Online, EXODS, Office 365 Group, owa, PowerShell, synchronization - Article Type: How To Microsoft has made a big thing about the one-click option in the Exchange Online Administration Center (EAC) to convert a traditional email distribution group to an Office 365 Group. However, the option only works for groups that consist of Exchange Online mailboxes. Microsoft says that it doesn't recommend traditional email distribution groups (within Office 365) anymore. Although the company admits that Office 365 Groups can't handle all the scenarios that distribution groups deal with today, pressure is building to move to Office 365 Groups whenever possible. Among the tools that exist to help make the change is a one-click option in the Exchange Online Administration Center (EAC). However, the option only works for distribution groups that consist of Exchange Online mailboxes. If a group contains any other mail-enabled object such as a public folder or external contact, the EAC option doesn’t work. That's a problem because many distribution groups contain other types of email-enabled objects, such as other distribution groups, public folders, and mail contacts -- or even Office 365 Groups. When the time came to upgrade a particularly important distribution group, there was nothing to do but perform a manual conversion. And that's when some problems arose, mostly caused by synchronization delays between Exchange Online and Azure Active Directory.     Using Modern Collaboration Email is good at transmitting attachments, but it fails at maintaining an archive of those documents or indeed a record of the discussions that occur inside distribution groups. Since the dawn of Exchange 4. 0 in 1996, the problem of needing an archive for discussions inside distribution groups has often been dealt with by adding a mail-enabled public folder to the membership of groups. But public folders are old-time technology now and something modern should be used instead, especially when collaborating in the... --- ### Windows Server 2016: What's in It for Small Businesses? - Published: 2016-10-03 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-whats-small-businesses/ - Categories: Windows Server - Tags: #MSIgnite, SME, Windows Server 2016 - Article Type: Overview Let's examine whether there are any features in Windows Server 2016 that might be worth SMEs upgrading to it. I examine if there are any features in Windows Server 2016 that might be worth SMEs upgrading for. In September 2015, I wrote in What Does Windows Server 2016 Mean for Small Businesses? on the Petri IT Knowledgebase that if your small or medium business is already running Windows Server 2012 R2, that Windows Server 2016 would be unlikely to be an enticing upgrade, with some exceptions -- for instance, businesses requiring virtualization with failover capability. But now that Microsoft has announced general availability of Windows Server 2016 at Ignite, let’s take a more detailed look at what it means for SMEs. Much of the new functionality in Windows Server 2016 is aimed at large enterprises looking to support complex hybrid private/public cloud infrastructures and that need container technology as popularized by Docker. But some features might be of interest to SMEs, and it’s also worth noting that it’s not just about what’s new, but Windows Server 2016 is a more robust OS and has improved security out-of-the-box. Windows Server Essentials Just like previous versions of Windows Server, there are several editions of Windows Server 2016, including Standard, Datacenter, and Essentials. Foundation edition has been knocked on the head for this release. Windows Server Essentials was introduced after the demise of Small Business Server (SBS), the stalwart solution that SMEs relied on for the better part of a decade to get discounted access to Exchange and SQL Server, along with some specific server features designed to make Windows Server deployment easier. Unlike... --- ### What's New in Azure Stack TP2 - Published: 2016-10-03 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-azure-stack-tp2/ - Categories: Cloud Computing - Tags: Azure, Azure in a box, Azure Stack, Azure Stack Technical Preview 2, Azure Stack TP2, hybrid cloud, Technical Preview 2, TP2 - Article Type: Overview Aidan Finn walks you through the second technical preview release of Azure Stack, Microsoft’s on-premises version of Azure, that was released at Microsoft Ignite 2016 in Atlanta. This article will discuss the second technical preview release of Azure Stack, Microsoft’s on-premises version of Azure, that was released at Microsoft Ignite 2016 in Atlanta. Hybrid Cloud Is More Than a VPN Every Windows Server or cloud presentation that I’ve seen Microsoft do with customers in the room over the past 3 years has started with one message. Microsoft is producing hybrid cloud technology that allows you to choose where to run your workloads and store your data: Locally, on-premises With a Microsoft partner hosting company In one of Microsoft clouds, such as Azure A mixture of 2 or 3 of the above This hybrid approach is unique to Microsoft in the “big 3” clouds. Companies such as Amazon and Google preach that the only place you should consider placing your workloads and data is in their clouds, otherwise you’re just old fashioned and dumb -- a message that is sadly reflected by some media types with little tech or industry savvy. Hybrid, for Amazon and Google, means that you have some sort of network connection from your private network to your deployment in the public cloud, where you run all of your services and store all of your data. The cold hard reality is that businesses want choice. In my experience, a lot of customers do have a preference to deploy (public) cloud first, for example Office 365 or Azure. But there are times when that does not make sense. Consider a factory where a minute of downtime can... --- ### Microsoft Announces "A Cloud for Global Good" - Published: 2016-10-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-cloud-global-good/ - Categories: Cloud Computing, Microsoft 365, Microsoft Azure - Tags: News - Article Type: News Microsoft CEO Satya Nadella and President and Chief Legal Officer Brad Smith appeared in Dublin this morning at the beginning of a multi-city trip to woo customers in Europe. And in a ceremonial beginning to this trip, the two announced a major new cloud infrastructure investment in Europe and ... a new book. Microsoft President and Chief Legal Officer Brad Smith Microsoft CEO Satya Nadella and President and Chief Legal Officer Brad Smith appeared in Dublin this morning at the beginning of a multi-city trip to woo customers in Europe. And in a ceremonial beginning to this trip, the two announced a major new cloud infrastructure investment in Europe and ... a new book. "We continue to invest heavily in cloud infrastructure to meet the growing demand from European customers and partners," Mr. Nadella said in a prepared statement. "Building a global, trusted, intelligent cloud platform is core to our mission to empower every person and organization on the planet to achieve more. There’s never been a better time for organizations across Europe to seize new growth and opportunity with the Microsoft Cloud. " According to Microsoft, the firm has more than doubled its cloud capacity in Europe over the past year in order to meet its customer and regulatory requirements. It has spent over $3 billion to date building out cloud infrastructure there, and its next major datacenters, in France, will open for business in 2017. Those datacenters will deliver Microsoft Azure, Office 365 and Dynamics 365 from multiple locations, providing customers with both the geographical diversity and regional retention they require. Similar sets of datacenters in Germany, the U. K. , The Netherlands, and Ireland provide similar capabilities, and the German datacenters meet legal requirements there by placing an independent German trustee in control of customer data. In all,... --- ### Wrapping Up Ignite: More Office 365 Snippets > The Ignite conference was packed with information about Office 365. Here's another set of snippets to keep you updated with what's happening in the cloud. - Published: 2016-09-30 - Modified: 2024-11-19 - URL: https://petri.com/ignite-office-365-snippets/ - Categories: Microsoft 365, Office - Tags: ADAM, BMC Remedy, classification policies, data governance, Data Loss Prevention, DLP, Office 365, Office 365 Exposed podcast, OneDrive for Business, public folders, Quadrotech, retention policies, Veeam - Article Type: News Tony Redmond explores some things he found out or explored during the week, including a solid DLP roadmap for Office 365, how BMC Remedy creates incident tickets from DLP audit events, that Veeam now offers a backup for Exchange Online, how QUADROtech's ADAM plans to drag public folders into the 21st century, and more. I'm headed home from the Microsoft Ignite conference. Some of the things I found out or explored during the week include a solid DLP roadmap for Office 365, how BMC Remedy creates incident tickets from DLP audit events, that Veeam now offers a backup for Exchange Online, how Quadrotech's ADAM plans to drag public folders into the 21st century, the delights of recording a special version of the Office 365 Exposed podcast, why Office 365 will use classification policies in the future, and my continuing frustration with the old OneDrive for Business sync client. Maybe the new client will fix all known ailments.     Data Loss Prevention (DLP) for All Workloads Microsoft supports DLP policies for Exchange and SharePoint. At the moment, the two workloads are processed separately using transport rules for Exchange and a mixture of crawler/indexer and timer jobs for SharePoint. An effort is under way to provide unified policies that work across both Exchange and SharePoint and then it’s on to expand DLP coverage across additional Office 365 workloads such as Yammer and Skype for Business. For instance, someone who’s participating in a Skype conversation could be blocked from sharing sensitive data through IM. The work is on the DLP roadmap (see Figure 1), but Microsoft wouldn’t say when. Figure 1: The DLP roadmap for Office 365 (image credit: Tony Redmond) BMC Remedy Incorporates DLP Events Among tons of other events, Microsoft gathers DLP events in the Office 365 Audit... --- ### The Sams Report EP 58: The Microsoft Pivot - Published: 2016-09-30 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-58-microsoft-pivot/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including the big week of Ignite, the Microsoft pivot that is occurring, and placeholders are making a return in a big way. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including the big week of Ignite, the Microsoft pivot that is occurring, and placeholders are making a return in a big way. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=62zIc1o_ERY&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: September 30 - Published: 2016-09-30 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-30/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Microsoft Azure, Mobile, Windows 10 - Tags: News - Article Type: Opinion Because I already miss Atlanta, this edition of Short Takes focuses on Salesforce and Microsoft, Microsoft's new AI-focused reorganization, Google's new enterprise cloud push, Xbox strategy changes, China accuses Samsung of discrimination in Samsung Note 7 recall, and a ton of headline riffs. Don't cry for me, Atlanta. Because I already miss Atlanta, this edition of Short Takes focuses on Salesforce and Microsoft, Microsoft's new AI-focused reorganization, Google's new enterprise cloud push, Xbox strategy changes, China accuses Samsung of discrimination in Samsung Note 7 recall, and a ton of headline riffs. Salesforce v. Microsoft, part 127 On Facebook, the Salesforce and Microsoft relationship is described as "it's complicated," but this week it veered off in the direction it usually goes, which is to say south: Salesforce CEO Marc Benioff, who has let his membership in the Microsoft Fan Club lapse, has complained to EU regulators that the software giant should not be allowed to purchase LinkedIn. Benioff's reasoning is sound, he says, and has nothing to do with the fact that Salesforce wanted to buy LinkedIn, too, and failed: Microsoft, he says, will illegally "bundle" LinkedIn services with its own in Europe. Which sounds far-fetched until you remember that Europe forced Microsoft to de-bundle a media player that no one used from Windows. But the evidence is, um, lacking. Benioff claims that Microsoft executive Scott Guthrie unveiled his evil plans for world domination during a recent speech at a Deutsche Bank tech conference. Except, of course, that he didn't: Guthrie mentioned LinkedIn only once in passing because, go figure, he's not legally allowed to discuss future plans because the acquisition hasn't been finalized. Oopsie. "Microsoft announces Skype for Salesforce, available in beta now" This sounds ironic until... --- ### Office 365 Groups News from Ignite > Office 365 Groups occupy a special place in Microsoft’s collaboration strategy. Lots of information about their plans emerged at the Ignite conference. - Published: 2016-09-30 - Modified: 2024-11-19 - URL: https://petri.com/office-365-groups-news-ignite/ - Categories: Microsoft 365, Office - Tags: AvePoint, Delve, iOS, iPad, Lifecycle, MyAnalytics, Office 365 Groups, Outlook, WorkDay - Article Type: News Office 365 Groups occupy a special place in Microsoft’s collaboration strategy. The link-up between Yammer and Groups was the headline news for some, but a lot of other facts were revealed at the Ignite conference, mostly around operational improvements to help tenants manage groups better. Here’s some of what occurred. Figure 1: A skewed view of what’s coming for Office 365 Groups (image credit: Tony Redmond) Office 365 Groups occupy a special place in Microsoft’s collaboration strategy. The link-up between Yammer and Groups was the headline news for some people, but a lot of other facts were revealed at the Ignite conference, mostly around operational improvements to help tenants manage groups better. Here’s some of what I encountered.     iPad Version of Outlook Groups App Microsoft released an iOS version of the Outlook Groups app some time ago, as well as versions for Android and Windows 10 Mobile. It’s a nice app that leverages the Microsoft Graph API to allow users to interact with conversations, calendar, and documents and group owners to perform some basic group maintenance, including the creation of new groups (but only if permitted by policy). Until now, the iOS app has operated in phone mode and did not look good on an iPad. Now we have an iPad edition of the Outlook Groups app. The extra screen real estate makes it easier to track conversations, work with documents, and view group calendars, which is welcome for those of us with failing eyes. AvePoint Launches Office 365 Groups Lifecycle Product An interesting press release issued on September 21 revealed AvePoint's plans for its new Office 365 lifecycle management product. AvePoint’s background is in SharePoint management, so it’s unsurprising that it has expanded to cover Groups.  I spent some time with the AvePoint folks at Ignite and learned... --- ### Office 365 at Ignite -- SharePoint, Exchange, Auditing, and More > More news and views about Office 365 from the Ignite conference in Atlanta - SharePoint, Exchange, Delve, and Office 365 Auditing - Published: 2016-09-29 - Modified: 2024-11-19 - URL: https://petri.com/office-365-snippets-ignite/ - Categories: Microsoft 365, Office - Tags: Cogmotive, Delve, Exchange Online, Mailbox audit, Metalogix, MyAnalytics, Office 365, Office 365 Audit Log, OneDrive for Business, owa, Quadrotech, Set-MailboxCalendarConfiguration, SharePoint Online - Article Type: News There's lots to hear and learn about with regard to Office 365 at the Microsoft Ignite conference in Atlanta this week. All of the product groups are putting their best face forward to impress and amaze customers with what has happened or what will happen inside the service. Here's some of what I have been hearing. There's lots to hear and learn about relating to Office 365 at the Microsoft Ignite conference in Atlanta this week. All of the product groups are putting their best face forward to impress and amaze customers with what has happened or what will happen inside the service. Here's some of what I have been hearing. Delve-Like People Cards Come to Other Office 365 Apps Delve has always been pretty good at displaying information about co-workers when you navigate through its people view. SharePoint Online, OneDrive for Business, and OWA have borrowed some of the idea to display a nice summary of a person, including their position in the organization structure and recent documents that they have worked on (as shown in Figure 1). The information about documents is constrained to the site (Delve takes a wider perspective across all sites), but the new People Card is a nice touch. And detail matters. Figure 1: A people card reveals what I've recently done in a SharePoint Online site (image credit: Tony Redmond) Unfortunately, as can happen when new technology is introduced, some glitches have appeared. One glitch is being discussed in the Microsoft Technical Community. Cogmotive Takes on Office 365 Advanced Security Management Cogmotive, the London-based specialist in Office 365 reporting, launched a new “Discover and Audit” module at Ignite to help tenants make sense of the Office 365 audit log. As anyone who has ever reviewed audit events from a busy tenant knows, the... --- ### Google's Office 365 Competitor is Rebranded as G Suite, Adds New Functionality - Published: 2016-09-29 - Modified: 2024-09-04 - URL: https://petri.com/googles-office-365-competitor-rebranded-g-suite-adds-news-functionality/ - Categories: Cloud Computing, Google Cloud Platform, Microsoft 365 - Tags: Google Apps, Google G Suite - Article Type: News As part of a sweeping series of announcements aimed at business customers on Thursday, Google announced that it is rebranding its Google Apps offering as G Suite. But the mission remains the same: Chip away at the popularity of Microsoft's productivity offerings, in particular Office 365. As part of a sweeping series of announcements aimed at business customers on Thursday, Google announced that it is rebranding its Google Apps offering as G Suite. But the mission remains the same: Chip away at the popularity of Microsoft's productivity offerings, in particular Office 365. "What if technology lived up to its promise for us at work? What if it helped us cut through the noise so we could work together to focus on what matters? ," Google director of marketing Kelly Campbell asks in a new post to the Google Cloud Official Blog. "We created Google Apps for Work ten years ago (back when it was Google Apps for Your Domain) to do just that — to help people everywhere work and innovate together, so businesses can move faster and go bigger. And today, we’re introducing a new name that better reflects this mission: G Suite. " Looking over this announcement, and at the new G Suite website, it appears that this is literally just a new name. That is, nothing else has changed: The service still provides a suite of web/cloud-based productivity services---like Gmail, Docs, Drive, Calendar, Hangouts, and more---to businesses. It's mostly skewed towards smaller businesses (where Microsoft trends towards larger businesses). But there is in fact more to this. In a separate post, Google highlights "new capabilities across G Suite to help employees reclaim their time and come together as teams on strategic and creative projects so they can better serve their customers. " These are:... --- ### Synchronize OneDrive for Business Using the Next Generation Sync Client - Published: 2016-09-29 - Modified: 2024-09-04 - URL: https://petri.com/synchronize-onedrive-business-using-next-generation-sync-client/ - Categories: Windows Client OS - Tags: Cloud, OneDrive for Business, storage - Article Type: How To Find out how to synchronize OneDrive for Business using the Next Generation Sync Client in Windows 10.   In today's Ask the Admin, I'll show you how to synchronize OneDrive for Business using the Next Generation Sync Client in Windows 10. Microsoft’s OneDrive cloud storage solution for consumers and businesses is a bit of mess, and the story of the sync clients even more convoluted. But if you’re using Windows 10 or Office 2016 (Click-To-Run), there’s some good news: you already have the OneDrive Next Generation Sync Client (NGSC). The built-in OneDrive client in Windows 8 synchronized with Microsoft’s consumer OneDrive service that’s associated with the Microsoft account used to sign in to the PC, but it couldn’t be used to synchronize OneDrive for Business -- for that a separate client was required based on technology Microsoft purchased from a company called Groove in March 2005 (not to be confused with Microsoft’s ‘Groove’ music player and online streaming service). Not that the sync client for consumer OneDrive is perfect, but the Groove client for OneDrive for Business was beset with problems that made it hard to recommend. Microsoft started working on a combined sync client for consumer and business OneDrive known as the Next Generation Sync Client (NGSC), which is installed by default for Windows 10 and Office 2016 (Click-To-Run) users. If you’re not using one of those products, you can download NGSC here. For more information on OneDrive, see OneDrive versus OneDrive for Business on the Petri IT Knowledgebase.   Synchronize OneDrive for Business If you’re already using Windows 10 or Office 2016, it might... --- ### Deploy Azure OMS Log Analytics - Published: 2016-09-28 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-oms-log-analytics/ - Categories: Cloud Computing - Tags: Azure, Azure OMS, hybrid cloud, Log Analytics, monitoring, OMS, OMS Log Analytics - Article Type: How To Aidan Finn walks you through how to deploy an Azure Log Analytics workspace so that you can prepare the foundation of monitoring machines and services both on-premises, in (any) the cloud, and in Azure. This post will show you how to deploy an Azure Log Analytics workspace so that you can prepare the foundation of monitoring machines and services both on-premises, in (any) the cloud, and in Azure.   Create a Workspace All management and monitoring is done within an OMS workspace, which you will need to create. Open the Azure Portal, click More Services, enter Log Analytics (OMS), and click Add. In the new OMS Workspace blade you will need to do the following: Enter the desired name of the new workspace Select the Azure subscription Add the workspace to an existing resource group or create a new one (which is what I would do) Select the region in Azure that you want to create the workspace in Choose a pricing tier Create a new Azure OMS Log Analytics workspace Thanks to some confusing branding, it can be difficult to understand how OMS is priced. There are actually three pricing tiers for the OMS monitoring system (also known as Log Analytics): Free: Limited to 500MB of monitoring data being gathered per day and retaining up to 7 days of data Standard: Retaining up to 1 month of data Premium: Retaining up to 12 months of data Your search for “OMS pricing” might also turn up a page that describes the pricing of the OMS add-on for System Center, which is a bundle of discounted Azure pricing. For testing, proof of concept, and training, start with the... --- ### Leveraging OneNote: Empower Your Meetings with OneNote > Meetings can be a complete waste of time. Leverage OneNote in your company to take back time and be more productive than ever in meetings. - Published: 2016-09-28 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-empower-meetings-onenote/ - Categories: Office - Tags: Leveraging OneNote, Office, OneNote - Article Type: How To Meetings are essential to keeping businesses running, even though they can feel like a waste of time. Instead of ignoring how meetings can become a time waster, address the problem head on with OneNote. Meetings are essential to keeping businesses running, even though they can feel like a waste of time. Instead of ignoring how meetings can become a time waster, address the problem head on with OneNote. Build agendas, track attendees, and organize information, which can be automatically shared with everyone. Storing notes has always been the core selling feature of OneNote, but many note-taking features go unused. When paired with Outlook and Skype for Business, OneNote gains new intelligence.   Pre-Meeting Good meetings come from good agendas. Before a meeting occurs get your team collaborating on the agenda in OneNote. Getting everyone involved early gives team members time to add their agenda items as they think of them. As the agenda comes together items can be refined, tagged, and ordered by anyone and everyone. If needed, background information, such as hyperlinks, PDFs, Word documents, PowerPoint presentations, or Excel spreadsheets, can be attached to the agenda. Outlook Ribbon Meeting Notes Notes can be linked to Outlook meetings, which pulls all the meeting details into the OneNote page. When the meeting organizer takes notes, they can be shared with all the meeting attendees. Having one set of notes helps reduce overlapping work and keeps everyone in sync. To link notes, start in Outlook and open the meeting item. From there select the Meeting Notes button between the Scheduling Assistant and the Respond buttons. If you are not the meeting organizer, you cannot send notes to all the participants;... --- ### Yammer and Office 365 Groups Connect > Yammer and Office 365 Groups take two very different approaches to collaboration. Although slow, Microsoft is finally closing the gap. - Published: 2016-09-27 - Modified: 2024-11-19 - URL: https://petri.com/yammer-office-365-groups/ - Categories: Microsoft 365, Office - Tags: collaboration, Microsoft Planner, Office 365 Groups, Outlook, SharePoint, Skype for Business, Yammer - Article Type: News Yammer and Office 365 take two very different approaches to collaboration, but both exist inside Office 365. Although slow in coming, Microsoft has finally given details about how Yammer and Office 365 Groups will connect to each other. AAD is the glue and SharePoint, notebooks, plans, and calendars are the common functionality available to both types of groups. The Yammer community will have been relieved to have heard Monday's announcement that the long-awaited and much-promised connection between Office 365 Groups and Yammer is coming (Figure 1). According to Microsoft, the new capabilities will be delivered in a series of phased updates. However, only new Yammer groups will be able to take advantage of the linkup with Office 365 Groups.     One interesting thing is the storage of conversations, which will either be in Yammer or in Exchange Online (Outlook), depending on how you create the group. If you create through Yammer, conversations stay there; if you create a group from anywhere else, an Exchange Online mailbox is used. Figure 1: Microsoft explains how the initial Yammer integration with Groups will start (image credit: Microsoft) Deciding About Collaboration It seems pretty clear that those who want to deploy Groups will have to make a decision whether they want to follow the Outlook or Yammer option, as it won’t be possible to switch from one type to another. Figure 2 shows Microsoft’s view of the different kinds of collaboration that exist within office 365: Email centric: (Outlook) Office 365 Groups or traditional distribution groups Document centric: Office 365 Groups or SharePoint team sites Call and meet: Skype for Business calls Connect across the org: Office 365 Groups (for small organizations) or Yammer Figure 2: Different collaboration styles in Office 365 (image credit: Microsoft) There will be lots of argument about... --- ### On-Premises Deployment of Azure Log Analytics (OMS) - Published: 2016-09-27 - Modified: 2024-09-04 - URL: https://petri.com/premises-deployment-azure-log-analytics-oms/ - Categories: Cloud Computing - Tags: Agent, Amazon, Amazon Web Services, AWS, Azure, Deploy, install, Log Analytics, Log Analytics (OMS), MMA, monitoring, OMS, On-Prem, On-Premises, Operations Management Suite - Article Type: How To Aidan Finn shows you how to deploy an Azure Logs Analytics, otherwise known as Operations Management Suite (OMS), agent to a Windows Server machine that is running outside of Azure. This post will show you how to deploy an Azure Logs Analytics, otherwise known as Operations Management Suite (OMS), agent to a Windows Server machine that is running outside of Azure. This post assumes that the agent will have direct Internet access -- there is another solution that can use the OMS Log Analytics Forwarder. The Solution Microsoft OMS is capable of monitoring machines that are running in Azure, but it is also capable of monitoring machines that are running outside of Azure. Microsoft’s marketing mentions on-premises or Amazon Web Services (AWS), but the reality is that you can deploy the Microsoft Monitoring Agent (MMA) onto any Windows Server machine that meets the technical requirements and where you have admin-level login access to the operating system. The reach of OMS’s monitoring can then be extended to all of your servers, adding deeper insights into infrastructure and applications. You might already have a monitoring system for on-premises or hosted servers, such as System Center Operations Manager (SCOM); that’s not an issue because OMS can complement those solutions -- it actually integrates with SCOM. OMS adds other levels of monitoring, such as deeper insight into Active Directory and SQL Server, network performance monitoring, and security auditing. This solution option is based on agents communicating directly via the Internet Technical Requirements The following must be present for this solution: You must have deployed Log Analytics (OMS) in your Azure subscription. The MMA, in this solution, must have... --- ### Microsoft Expands Surface Enterprise Initiative Worldwide - Published: 2016-09-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-surface-enterprise-initiative-worldwide/ - Categories: Hardware - Tags: Microsoft Surface, News - Article Type: News One year ago, Microsoft launched its Surface Enterprise Initiative, in which it allowed select partners to both sell and support Surface devices to the enterprise. This week, the initiative is expanding to Microsoft partners worldwide. One year ago, Microsoft launched its Surface Enterprise Initiative, in which it allowed select partners to both sell and support Surface devices to the enterprise. This week, the initiative is expanding to Microsoft partners worldwide. "Surface has a history of pushing the envelope and setting new standards for how devices transform businesses and lives," Microsoft general manager Hayete Gallot explains. "While field serviceability is important today, as businesses embark on their digital transformation journeys, their support needs are evolving. Surface will evolve with them, to not only change and create lasting and meaningful employee engagement, but to also enable IT and Business Decision Makers. " A lot has changed since Dell became the first Surface Enterprise Initiative partner in September 2015. IBM and Booz Allen Hamilton have signed on to partner on application and solutions development. The number of Surface purchasing and deployment partners has grown from 200 to over 10,000. Reseller partners have enabled multi-national Surface purchasing capabilities. And Microsoft's "Surface as a Service" program has been a huge hit with partners, while bringing Surface purchasing in-line with the needs of the enterprise and other business customers. So now the Surface Enterprise Initiative is expanding to Microsoft partners worldwide, meaning that Microsoft's vast army of partners can now create services and support capabilities specifically for Surface. These include: Configuration and deployment services such as imaging, asset management, provisioning and integration services. Enhanced device replacement and exchange services which include next business day, advanced exchange and onsite replacement... --- ### Office 365 News from Ignite, Day 1 > An exhausting first day at Ignite brought lots of Office 365 news. Surprisingly, the number of Office 365 MAU hasn’t grown, at least not publicly, Confirmation arrived that the Outlook apps now run in the Microsoft Cloud. Lots of focus on using intelligence to repel threats. MyAnalytics arrived, and Exchange 2016 CU3 embraced the Outlook REST API. - Published: 2016-09-27 - Modified: 2024-11-19 - URL: https://petri.com/office-365-news-ignite-day1/ - Categories: Exchange Server, Microsoft 365, Office - Tags: AWS, Delve Analytics, Exchange 2016 CU3, Ignite, MyAnalytics, Office 365, Outlook for Android, Outlook for iOS, Security, Threat Intelligence - Article Type: News An exhausting first day at Ignite brought lots of Office 365 news. Surprisingly, the number of Office 365 MAU hasn’t grown, at least not publicly, and confirmation arrived that the Outlook apps now run in the Microsoft Cloud. Lots of focus on using intelligence to repel threats. MyAnalytics arrived, and Exchange 2016 CU3 embraced the Outlook REST API. The Size of Ignite As predicted, the Ignite conference is a bit of a bear garden. The conference is massive, the queues for escalators were historic and frustrating at times, the exhibit area is huge and teeming with exhibitors and attendees, the sessions are packed, the keynotes were moderately interesting, the Kool-Aid is flowing, and the parties are plentiful. In short, it’s your average Microsoft conference shared with thousands of other people. Although I enjoy the sessions that I get to, most of the value that I extract from a conference like Ignite is gained through direct interaction with individuals. That’s how I learn about what’s happening and what’s not. Who’s doing what with whom. Who might be investing in what technology or another company. And perhaps even why they are doing what they are.  In passing, my congratulations to Julia White, recently promoted to Vice President at Microsoft. Julia is well known to the Office 365 and Azure communities. Her advance is well merited. Keeping eyes and ears open at all times is exhausting at a conference like Ignite, but it can deliver some nuggets. Here’s what comes to mind so far. No Increase in Office 365 Monthly Active Users I expected Microsoft to announce that the number of monthly active users for Office 365 had grown from the 70 million figure provided to financial analysts at Microsoft’s 2016 fiscal year results in July and had also been used previously. But the same number was trotted out at... --- ### Microsoft Azure: Set Up Billing Alerts - Published: 2016-09-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-set-billing-alerts/ - Categories: Cloud Computing - Tags: Azure, cloud computing - Article Type: How To Learn how to set up billing alerts in Azure to keep your cloud expenses in check. In today's Ask the Admin, I'll show you how to set up billing alerts in Azure to keep your cloud expenses in check. Opt in to the Azure Billings Alerts service preview (Image Credit: Russell Smith) Keeping track of how much cloud services are costing can be a challenge, and it can easily get out of control if you accidentally leave apps or VMs running for long periods of time, or transfer large amounts of data. The best way to ensure that you don’t get any nasty surprises is to set up billing alerts, where you’ll be notified by email should your bill pass a given threshold. Sign Up for Billing Alerts Preview The Billing Alerts service is currently in preview, and before you can set up a billing alert, you’ll need to enable the preview feature in the billing portal. Sign in to the billing portal here using your Microsoft account Click preview features and scroll down the list to Billing Alert Service, and click try it now In the BILLING ALERT SERVICE dialog, select the subscription for which you’d like to enable alerts from the menu, and then click the ‘tick’ icon in the bottom right corner You should notice the status of the service change to you are active While my Billing Alerts service was activated immediately, you might have to wait some time before the service is activated. Set Up a Billing Alert Now that the Billing Alerts... --- ### Windows 10 Passes 400 Million Installs - Published: 2016-09-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-passes-400-million-installs/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has announced Windows 10 has passed 400 million installs and while they still have a long way to go to reach 1 billion, with Enterprise customers now starting to upgrade, the install base will continue to grow. Windows 10, Microsoft latest Windows operating system, has passed 400 million active installs; the company last announced 350 million installs back in late June. The company made the announcement at its Ignite conference in Atlanta, Georgia. In July, Microsoft ended its free upgrade offer for existing Windows 7 and 8. 1 users. While this will likely slow the overall adoption of the operating system, the company is starting to see Enterprise customers move from Windows 7 to 10. Accenture, a global consulting firm, stated that they have moved more than 100,000 employees to Windows 10 and are continuing to upgrade its remaining users over the next several quarters. It is the enterprise growth where Microsoft expects to make up a significant portion of the remaining 600 million installs as the company pursues its goal of having 1 billion machines running the operating system. With a couple hundred million machines coming off the assembly line each year being pre-installed with Windows 10 and Enterprise customers starting the long process of upgrading from Windows 7 to 10; they will likely have little issue hitting one billion installs within the next 24-36 months. The new security features announced this week for Enterprise customers will quickly make running Windows 10 a best-in-class practice as the suite of advanced threat protection services offered by Microsoft with both Windows and Office can significantly reduce the likelihood of a data breach or malicious file taking down an entire environment. Even though the Enterprise adoption of new operating systems... --- ### Microsoft Extends Its Security Layer To Office 365 - Published: 2016-09-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-extends-security-layer-office-365/ - Categories: Microsoft 365 - Tags: News, Office 365 - Article Type: News Microsoft is turning its Office 365 platform into not only a productivity tool but also a new security layer that can detect multiple attack vectors on your environment. It seems we can’t go a week without a major data breach occurring; from Yahoo! losing data to over 500 million accounts to point-of-sale systems being compromised. Data, security, and software are three fundamental parts of any corporation and at Ignite this week, Microsoft is announcing several new tools for its enterprise clients to help them keep their data secure. Microsoft has announced this week that they are extending and bringing new security features to Office 365. These new features include Office 365 Advanced Threat Protection (ATP) being extended to Word, Excel, PowerPoint, SharePoint Online and OneDrive for Business and Office 365 Threat Intelligence which will provide alerts and information on the origination of specific attacks inside your environment. With Office 365 ATP being extended to the Office apps and OneDrive, this reduces the number of open attack vectors and because this service includes a new dynamic delivery feature, this enables users to receive email immediately with a placeholder attachment while the actual attachment undergoes scanning; a user can still read the contents of an email while waiting for the attachment to arrive. Further, URL detonation with ATP looks at links in real-time to identify unknown and malicious websites and prevent a user for downloading or visiting a site. When you couple this information with the new Office 365 Threat Intelligence service, which provides alerts and information on the origination of specific attacks, when running Office 365, you are not only better protected from outside threats, you can also identify... --- ### Windows 10 Redstone 2: Edge Gets New Security Features To Combat Malicious Websites - Published: 2016-09-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-redstone-2-edge-gets-new-security-features-combat-malicious-websites/ - Categories: Windows 10 - Tags: Edge, Windows 10 RS2 - Article Type: News Microsoft will deliver a new feature for Edge with the Redstone 2 update in 2017 that will provide significant new protection against malicious websites for Enterprise customers. With the release of Window 10, Microsoft introduced a new browser called Edge. As the successor to IE, the browser stripped away legacy code in favor of a modern environment that the company hoped would be a success with consumers and the enterprise but the initial reception was not as warm as they had hoped. The release of the Anniversary update included a number of new features for Edge such as extension and at Ignite this week, the company has started to detail new features coming with the next major release of Windows arriving  in 2017. Like many of the topics this week at Ignite, Edge is getting a new security feature that will better protect corporate networks. Windows Defender Application Guard is coming to Edge in 2017, Windows Insiders will gain access to the feature much sooner if they are running the Enterprise SKU, and it utilizes virtualization-based security technology that uses isolated containers built directly into the hardware to prevent malicious code from moving across employee devices and the corporate network. How it works is that if a user clicks on a link that goes to a domain that is not on an approved list, as determined by network administrators, Edge will open the link in an isolated container, at the hardware level, to keep any malicious attacks generated by the user clicking on a link, to be contained in a locked-down instance of the browser. The goal is to contain any potential threat that may arise by... --- ### Windows Server 2016 and System Center 2016 To Arrive In October - Published: 2016-09-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-system-center-2016-arrive-october/ - Categories: Windows Server, Windows Server 2016 - Tags: Windows Server 2016 - Article Type: News Microsoft has announced that the general availability of Windows Server 2016 will arrive in October and that it will include the Docker Engine to Windows Server 2016 customers at no additional cost. For the past few quarters, Microsoft has been publicly testing the next version of its server platform, Windows Server 2016. The company has announced Ignite this week that the platform will become generally available in October of 2016. This release window has been widely expected and now we have the concrete timeframe from Microsoft. Company officials say that the trial bits will start becoming available this week with Server 2016 hitting pricing lists on October 1st; the actual launch date in October has not been specified. Also coming in October will be System Center 2016; this tool offers a streamlined management solution for Windows Server 2016 software-defined data center features. Server 2016 brings with it new layers of security and also brings Azure-born features down to the local data center. In addition, Microsoft and Docker are working together to make the commercially supported Docker Engine available to Windows Server 2016 customers at no additional cost. While the release of Server 2016 is a good step for Microsoft, it will be interesting to see how long it takes customers to migrate from prior version of the platform to this new release. Considering the complexity of migrating a server and also the need to fully test the release software to make sure there are not any critical bugs that would shut down a production environment, don’t expect the adoption to be swift. --- ### Microsoft Partners with Adobe on Dynamics 365 - Published: 2016-09-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-partners-adobe-dynamics-365/ - Categories: Dynamics - Tags: Dynamics 365, News Microsoft announced today that it will make Adobe Marketing Cloud the preferred marketing service for its Dynamics 365 Enterprise offering. The new partnership will give customers a powerful, comprehensive marketing service for intelligent business applications, Microsoft says. Microsoft announced today that it will make Adobe Marketing Cloud the preferred marketing service for its Dynamics 365 Enterprise offering. The new partnership will give customers a powerful, comprehensive marketing service for intelligent business applications, Microsoft says. First announced in July ahead of its Worldwide Partner Conference, Microsoft Dynamics 365 will become available to customers in the coming weeks. It is a new, Azure cloud-hosted combination of the software giant's CRM (customer relationship management) and ERP (enterprise resource management) solutions. The goal is clear enough: To modernize these capabilities and bring them to market as a public cloud business management service. Like its on-premises Dynamics offerings, Dynamics 365 allows customers to plug a wide array of business apps and services, customizing the solution according to their industry and other needs. And of course, it integrates deeply with Office 365, and with Microsoft's Office client software on Windows, the web, and mobile platforms. According to Microsoft, the new Adobe partnership will let the firms' customers work across both Adobe Marketing Cloud and Dynamics 365 business applications and leverage AI (artificial intelligence), machine learning and advanced analytics capabilities. "Customers will be able to use these integrations across Adobe and Microsoft solutions to create new data-driven sales and marketing capabilities," a Microsoft statement explains. "The underlying data models will be extensible to enterprise customers, as well as third-party developers and partners, which will foster innovation and development across a shared ecosystem. " The Adobe partnership was announced as part of the opening day of... --- ### Leveraging OneNote: An Intro to Projects > Stay on top of projects with OneNote. Keep information in one place where your team can contribute and gain updates about their projects. - Published: 2016-09-23 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-intro-projects/ - Categories: Office - Tags: Leveraging OneNote, Office, OneNote - Article Type: How To Keeping projects under control and on track is critical to the successful business. Although all businesses have projects, not every business has project managers or project management software. Keeping projects under control and on track is critical to the successful business. Although all businesses have projects, not every business has project managers or project management software. Even though OneNote was not built to be a project management tool, it can become the information backbone. Keeping track of what needs to get done, how problems were solved before, meeting notes, discussions, open issues, and more can all easily be done with OneNote. Specialized software can make project management less tedious, but it can be expensive, complicated, and ridged. OneNote is highly flexible and integrates with Office, making it super easy to use. Paired with Outlook tasks, OneNote can be used to delegate responsibilities and keep everyone on the same page. Since OneNote is great at storing and organizing information, your team can keep their work in one common place. Beginning New OneNote Notebook Before you start using OneNote to manage your projects first think about the lifespan of the project. Will you be working in a team? Will this project be short lived or does it reoccur annually? Does this project span departments? Will you be working with people outside of your organization? Will you be collaborating with people who do not share your local network? All of these questions can guide the original set up of the project notebook your team will be using. OneNote notebooks can be stored locally, on a network, or in the cloud (i. e. , SharePoint or OneDrive) and each type... --- ### Paul Thurrott's Short Takes: September 23 - Published: 2016-09-23 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-september-23/ - Categories: Mobile - Tags: News Because I'm sick and have to fly again on Sunday, this edition of Short Takes focuses on a massive Microsoft stock buyback, a UK consumer watchdog that hates Windows 10, Microsoft goes green, Yahoo reveals massive hack, over half of Samsung Galaxy Note 7 users are idiots, and more. Note 7 user just misses getting his phone back to the wireless carrier. Because I'm sick and have to fly again on Sunday, this edition of Short Takes focuses on a massive Microsoft stock buyback, a UK consumer watchdog that hates Windows 10, Microsoft goes green, Yahoo reveals massive hack, over half of Samsung Galaxy Note 7 users are idiots, and more. Microsoft to buy back $40 billion in stock When Microsoft announced earlier this week that it would buy back an estimated $40 billion of its own stock, I researched the story to see whether it deserved a write-up. Ultimately, I never did write it up, not because it wasn't newsworthy, but because there just wasn't enough to say. But I was mistaken: As CNBC notes, this buyback is both historic and much bigger than other stock buybacks this year: The biggest was Apple, at $10. 9 billion, about 25 percent of what Microsoft is doing. Stock buybacks are big business: They boost per-share earnings and tend to bump the price of the remaining stock, both of which positively impact shareholders. But here's the real context, courtesy of CNBC: "If Microsoft does buy that full amount, and it doesn't reissue any of those shares, then that $40 billion alone would be bigger than most S&P 500 companies have done in total over the last 10 years. " Yikes. "Windows 10 Maps will show the traffic on your route home" Google Maps just left a message... . --- ### The Sams Report EP 57: Hardware Is Hard - Published: 2016-09-23 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-57-hardware-hard/ - Categories: Podcast - Tags: The Sams Report - Article Type: Overview On this episode, I cover all of the Microsoft news this week including the on-going problems with Microsoft hardware, Skype Teams, Ignite, and good riddance to an annoying pop-up. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including the on-going problems with Microsoft hardware, Skype Teams, Ignite, and good riddance to an annoying pop-up. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=3TV2ID76XQs RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Microsoft TypeScript 2.0 Language -- Ready for Prime Time in IT? - Published: 2016-09-23 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-typescript-2-0-richij-1676000/ - Categories: Cloud Computing, Main, Visual Studio - Tags: Anders Heljsberg, Developers, development, DevOps, IT Newspro, javascript, language, News, open-source, TypeScript - Article Type: News, Opinion Microsoft updates TypeScript language to 2.0. It’s an open-source superset of JavaScript, but said to be easier to use, more productive, create more reliable code, and compile down to standard JavaScript. Version 2.0 adds features such as non-nullable types and expanded control flow analysis. Plus tagged unions, the never type, this types for functions, and of course glob support... Anders Heljsberg regrets a C# omission (2009) Microsoft updates TypeScript language to 2. 0. It’s an open-source superset of JavaScript, but said to be easier to use, more productive, create more reliable code, and compile down to standard JavaScript. Version 2. 0 adds features such as non-nullable types and expanded control flow analysis. Plus tagged unions, the never type, this types for functions, and of course glob support. Got all that? Anyway, it’s gaining huge momentum among developers. In today’s IT Newspro, we resist the temptation to say developersdevelopersdevelopers. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: A Heljsberg chalk-talk... (more... ) --- ### Microsoft Azure: Understanding Shared Access Signatures (SAS) - Published: 2016-09-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-understanding-shared-access-signatures-sas/ - Categories: Cloud Computing - Tags: Azure, Cloud, storage - Article Type: Overview In today's Ask the Admin, Russell Smith explains how Shared Access Signatures (SAS) can be used to grant access to objects in storage without revealing the storage account key. In today's Ask the Admin, I'll explain how Shared Access Signatures (SAS) can be used to grant access to objects in storage without revealing the storage account key. Azure storage accounts come in two flavors: standard accounts, which provide access to Azure Storage services such as tables, queues, files, blobs, and disks; and blob storage accounts, which are optimized for blob storage. But whichever account type you choose, a master key is used to grant administrative access. For more information on Azure Storage, see Deploying a Microsoft Azure Storage Account on the Petri IT Knowledgebase. But if you want to grant limited or temporary access, giving away your storage account key isn’t the best idea. To solve this problem, Azure uses Shared Access Signatures (SAS) for safely delegating access to objects in storage. A Shared Access Signature is a Uniform Resource Identifier (URI) that includes all the information about the resources to which you want to grant access, and relevant permissions in the form of a token. SAS Use Cases Shared Access Signatures can be used in any situation where you don’t want to give away your storage account key, primary or secondary, because both provide full administrative access to storage. Just as in any other situation where you would grant access to sensitive systems or data, it’s best to implement the principle of least privilege, where the client or system only gets the access needed to complete the required tasks, nothing more. Web applications can use SAS... --- ### Skype Teams Readies For Preview, Will Be Bundled With Office 365 - Published: 2016-09-22 - Modified: 2024-09-04 - URL: https://petri.com/skype-teams-readies-preview-will-bundled-office-365/ - Categories: Messaging - Tags: News, Skype For Teams - Article Type: News Microsoft is working on a new team collaboration application called Skype Teams; how the product will be offered and its release dates are coming into focus. A few weeks back, it was uncovered that Microsoft was working on a new application under the Skype umbrella that would take on Slack. The product, called Skype Teams, is in development and the company is gearing up to start testing it with select clients around the globe. The application has been in development for roughly 18 months and the company is now testing it privately with a select group of testers. The current plan, at this time, is to expand the beta tests in November with a full release in January; these plans could change at any time but are the current roadmap for release according to sources who asked not to be named. Skype Teams will be part of Office 365 and will be available to anyone who is already subscribed to a business plan, likely starting with E3 SKU. Skype Teams integrates deeply with your Office 365 content as well, with the ability to share your calendar inside the app as well as join meetings too. To no surprise, this application is built on the company’s new cloud platform and very well may be the future of Skype for Business. Make no mistake, Microsoft is going for the jugular on Slack with this product as many corporate customers already use Office 365 and with this product being bundled into that service, there will be no need to pay for Slack. Because this application has been in development for over a year, early previews are of a higher... --- ### Office 365 Snippets - September 22, 2016 > The world of Office 365 is ever-changing. This week my attention was distracted by the inability of the Admin Center to report unlicensed accounts, a Watson dump in an ActiveSync cmdlet, some interesting data about the number of Office 365 users affected by outages as revealed through an API, and more odd entries in the Audit Log. Thankfully Ignite is next week and nothing will happen. - Published: 2016-09-22 - Modified: 2024-11-19 - URL: https://petri.com/office-365-snippets-september-22-2016/ - Categories: Microsoft 365, Office - Tags: accounts, ActiveSync, license, Office 365 Admin, Office 365 Groups, Service Health Dashboard, SharePoint Online, SHD, team sites - Article Type: Overview The world of Office 365 is ever-changing. This week my attention was distracted by the inability of the Admin Center to report unlicensed accounts, a Watson dump in an ActiveSync cmdlet, some interesting data about the number of Office 365 users affected by outages as revealed through an API, and more odd entries in the Audit Log. Thankfully Ignite is next week and nothing will happen. Office 365 Admin Center and Unlicensed Accounts The new Office 365 Admin Center is now officially a year old. Originally announced with the normal fanfare beloved by Microsoft marketing in September 2015, the new console was supposed to roll out over the weeks following the subsequent announcement in March 2016. Perhaps Ignite will be the time when Microsoft concludes that the preview status can be ditched.     Before then, some changes are necessary in how the new Office 365 Admin Center reports unlicensed user accounts. As you can imagine, any service that charges on a per-user basis is likely to be picky when it comes to noting which accounts are licensed and which are not. The same goes for customers, who hate paying for accounts that are unused. To help tenant administrators, the Office 365 Admin Center has a filter that purports to list all unlicensed users. The bad news is that the filter doesn’t work. At least, it does work, but it confuses matters by including accounts that don’t need to be licensed, like those used for room or resource mailboxes, or site mailboxes. The accounts used for these objects are all disabled and are never logged into. The latest problem arose with the recent introduction of guest user access for Office 365 Groups. Guest users are represented by accounts in Azure Active Directory and don’t have or need a license. Yet the Office 365 Admin Center insists on listing guest user accounts and has caused some tenant... --- ### Surprise: Companies Who Effectively Use Big Data Make More Money - Published: 2016-09-22 - Modified: 2024-09-04 - URL: https://petri.com/surprise-companies-effectively-use-big-data-make-money/ - Categories: Cloud Computing - Tags: Big Data, News - Article Type: News Companies that can effectively use their data assets have a significant advantage over their competitors; Microsoft commissioned a new study that highlights the true value of digging in deep to your databases. Big data, it’s a phrase we have all heard millions of times from marketing material, senior management who want to sound ‘hip’ and of course from the likes of Amazon and Microsoft who want to help you sort through this material. But, depending on how you use the big data you have, it is either giving you a competitive advantage or is putting you behind the market curve. The truth is that every company has ‘big data’ even if it comes in small batches. Everything from sales data, trending data of market movements, customer buying patterns and anything like this is a goldmine of information if used correctly. Microsoft commissioned Keystone Strategy to take a look at investments in big data and found, to little surprise, that companies who dig into their data assets have higher gross and operating margins. The study sampled 344 large companies around the globe with a median of 6,000 employees and $3. 4 billion in revenue. The results will likely not be a shock to anyone who follows the growth in the analytics segment. With companies doing everything they can to gain a competitive advantage in their industry, finding insights into data you already own is a key strategy that has already shown to pay big dividends; you can read the new report, here. What may be of more value to users is the new assessment that the company is releasing as well. Microsoft has released a free tool that lets you create a ‘data maturity... --- ### New Azure AD Admin Experience - Published: 2016-09-22 - Modified: 2024-11-19 - URL: https://petri.com/new-azure-ad-admin-experience/ - Categories: Cloud Computing, Microsoft Azure - Tags: Active Directory, Azure, Azure AD, Azure Portal - Article Type: Overview Find out more about the recent launch of a preview Azure AD administration experience in the Azure Portal. This post will discuss the recent launch of a preview Azure AD administration experience in the Azure Portal. Azure AD -- Not What You Think It Is Based on my day-to-day dealings with potential customers of Microsoft cloud services, few people understand what Azure AD is. Most people hear the name and assume that Azure AD is a cloud alternative to running on-premises domain controllers; they think that they can join Windows 7 PCs to this domain and get Group Policy. Sorry; but that’s not what Azure AD is. Azure AD is a cloud extension of Active Directory for SaaS applications. For example, Azure AD is the username & password hash store for signing into all of Microsoft’s SaaS applications, including Office 365 and EMS, and is used for authenticating and authorizing usage of an Azure subscription. We can also use Azure AD for enabling single sign-on into third-party clouds, such as Google Apps and AWS. Microsoft has grown Azure AD to offer more on top of on-premises AD; if you want self-service sign-in, self-service group management, proxied access to IIS-based internal applications, auditing, and more, then Azure AD (probably one of the per-user licensed Premium SKU upgrades) is the path to take. Administration Challenge Those of us working with newer Microsoft cloud systems have had a problem with Azure AD. Microsoft has 2 UIs for managing Azure. The first is the older Management Portal; this portal, which is no longer being developed, includes the original experience for managing... --- ### Delegating Admin Access in Azure for Microsoft Partners - Published: 2016-09-22 - Modified: 2024-09-04 - URL: https://petri.com/delegating-admin-access-azure-microsoft-partners/ - Categories: Cloud Computing - Tags: Azure, Azure AD, Delegation of Administration, Microsoft Partner, Subscription - Article Type: How To Aidan Finn shows you how to delegate administrative access of an Azure subscription to users in an external Azure Active Directory (AD) Domain. This post will show you how to delegate administrative access of an Azure subscription to users in an external Azure Active Directory (AD) Domain. The method I will share can be used in Cloud Solution Provider (CSP) and other subscriptions, and will be of great relevance to Microsoft Partners that want their engineers to be able to manage many customer subscriptions with a single account, easily able to move between customers in the Azure Portal with a single sign-on. Benefits of Delegation Every Azure subscription (Microsoft cloud customer) is deployed with an Azure AD directory (you can think of this as an Active Directory forest). You may want to allow users from another Azure AD directory to sign into and use/manage services in an Azure subscription. The benefits of this approach are: You don’t need to create/manage those user accounts Azure AD still authenticates the users Here are a few examples: Microsoft Partner: A Microsoft Partner is reselling an Azure in CSP subscription to a customer. The partner wants to give their engineers admin rights in the subscription so that they can deploy and manage resources in multiple customer subscriptions. The benefit for the partner is that there is a single-account approach, which simplifies user/password management and lends itself to better security, and an engineer can quickly move between customer subscriptions in a single browser window without needing to re-authenticate. Application developer/vendor: It is not unusual for a company to hire a developer to create/manage an application within the... --- ### Microsoft Opens “Cloud Germany” with 2 New DCs -- Azure und 365 über alles - Published: 2016-09-21 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-cloud-germany-azure-richij-1675923/ - Categories: Cloud Computing, Dynamics, Exchange Server, Microsoft 365, Microsoft Azure - Tags: Azure, Cloud, cloud computing, Dynamics, Failover Clustering, hybrid cloud, IT Newspro, Microsoft, Microsoft Azure, Microsoft Dynamics, News, Office 365 - Article Type: News, Opinion Microsoft’s cloud: ready for Germany. Two new data centers now open for Azure IaaS/PaaS, with Office and Dynamics SaaS coming soon. Germany is well known for its strict data-privacy laws. And it’s one of the largest economies in the European Union. So it was a sensible location choice after the UK DCs opened earlier this month... The famous “Jerusalem Bridges” in Magdeburg, one of the new DC locations Microsoft’s Cloud Germany: ready for action. Two new data centers now open for Azure IaaS/PaaS now, and Office/Dynamics SaaS coming soon. Germany is well known for its strict data-privacy laws. And it’s one of the largest economies in the European Union. So it was a sensible location choice after the UK DCs opened earlier this month. And of course, Amazon already has an AWS DC in the country. In today’s IT Newspro, we sing of unity and justice and freedom. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: How movies lie to us... (more... ) --- ### Microsoft Officially Ends Its Controversial Windows 10 Upgrade Practices - Published: 2016-09-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-officially-ends-controversial-windows-10-upgrade-practices/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has finally removed the 'Get Windows 10' app with an update to Windows 10 that officially closes the book on the company's controversial upgrade practices. It has been more than a year since Microsoft released Windows 10 and the company is finally closing the book on its controversial update practices. With the release of Windows 10, the company began prompting Windows 7 and 8. 1 users that they could update for free as a way to increase the adoption rate of the OS. By placing a popup on the desktop, Microsoft was using ‘nagware’ to try and entice users to upgrade to the new OS. The company went as far as to downloading the bits in the background ahead of a user accepting the upgrade so that the process of installation would go faster once they finally agreed. Of course, this angered user as they were giving up hard drive space for files they did not want and anyone on a metered connection would have a significant amount of data utilized as well. The company has recently stopped using the popup on the desktop with the release of the Anniversary update back in July. At that time, the company ended the free upgrade offer but the application remained on the user’s PC. Microsoft has released KB 3184143, spotted by Mary Jo Foley, that removes the nagware from Windows 7 and 8. 1; this officially ends the controversial update practices Microsoft started with the release of Windows 10. At last official release, Microsoft said that there were over 350 million users running Windows 10 but that figure was announced in late June. With Ignite happening next week, the... --- ### Updates Released for Exchange 2016 and Exchange 2013 > With all the focus and attention paid to Office 365, you’d be forgiven for assuming that not much happens in the world of on-premises software. Microsoft will support Exchange 2016 until 2025 and has to maintain the software through patches and updates until then. Exchange 2013 isn’t forgotten either. New cumulative updates are available for the two servers. Cue excitement all round. - Published: 2016-09-20 - Modified: 2024-12-03 - URL: https://petri.com/updates-released-exchange-2016-exchange-2013/ - Categories: Exchange Server - Tags: CU, Cumulative update, Exchange 2013, Exchange 2016, Windows 2016 - Article Type: News With all the focus and attention paid to Office 365, you’d be forgiven for assuming that not much happens in the world of on-premises software. Microsoft will support Exchange 2016 until 2025 and has to maintain the software through patches and updates until then. Exchange 2013 isn’t forgotten either. New cumulative updates are available for the two servers. Cue excitement all round. Faithful to its quarterly cadence for Exchange Server updates, Microsoft issued new cumulative updates for Exchange 2016 and Exchange 2013 on September 20 2016. Downloads for Exchange 2016 CU3 or Exchange 2013 CU14 are now available. Although the quality level of Exchange cumulative updates is much improved since a series of initial hiccups after Microsoft introduced quarterly updates for Exchange 2013, the normal caveats apply. First, don’t deploy an Exchange update without having first installing the code into a test environment that accurately mimics your production servers. Second, suppress any inclination to deploy early. Wait and see what happens when braver individuals use the new software. Let them find (and hopefully report) any bugs that lurk in the software. The installation of the Exchange 2016 CU3 update is successful! (Image Credit: Tony Redmond) Remember that those running hybrid Exchange deployments connected to Office 365 must deploy updates so that on-premises servers run the latest cumulative update or the previous cumulative update. If not, the servers are not in a supported configuration. With these releases, Exchange 2016 CU3 or CU2 or Exchange 2013 CU13 and CU14 are the supportable releases for hybrid deployments. Windows and . NET support The headline feature for Exchange 2016 CU3 is support for Windows Server 2016. Apart from improved restart support in the Windows Installer, Exchange 2016 takes no advantage of Windows 2016. However, the fact that Exchange 2016 CU3 and Windows 2016 are now a supported configuration means that on-premises customers who are interested in... --- ### Microsoft Azure: Prevent Accidental Deletion by Locking Resources - Published: 2016-09-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-prevent-accidental-deletion-locking-resources/ - Categories: Cloud Computing - Tags: Azure, Cloud - Article Type: How To In today's Ask the Admin, Russell shows you how to apply locks to Azure resources, to prevent accidental deletion or to make them read-only. Azure has role-based access control (RBAC) to restrict access to resources and management features, and while an important feature, it can’t be used to quickly prevent all users from accidentally deleting a resource. There may be times when you want to protect a resource from accidental deletion, or prevent unwanted changes, even when users have high-level access to the resource. For more information on Microsoft Azure, see What is Microsoft Azure? on the Petri IT Knowledgebase. Azure Locks Locks come in two forms: Read-only and Delete; and can only be created or deleted by users that are assigned Microsoft. Authorization/* or Microsoft. Authorization/locks/* actions, and this includes the Owner and User Access Administrator roles. Read-only: No changes can be made to a resource. Delete: Resource cannot be deleted. Applying read-only locks should be done with care as they can have unpredictable results. For example, some resource types, such as storage accounts, require that users can write to them under normal operating circumstances. Locks can be applied to resource groups, and any child objects automatically inherit the lock from the parent. Additionally, the most restrictive lock always takes precedence. Apply Locks to Resources To complete the instructions below, you’ll need to have Owner or User Access Administrator access to an Azure subscription. Log in to the Azure management portal here with your Microsoft, or work or school account. In the list of options on the left of the portal window, click All resources. In the list of resources, click... --- ### Everyone Has Something to Steal - Published: 2016-09-20 - Modified: 2024-09-04 - URL: https://petri.com/everyone-something-steal/ - Categories: Security - Article Type: Overview With the increasing sophistication of hackers, and the rising black market price of sensitive data IT has a huge target on its back which means a SIEM solutions are critical. Sponsored IT content provided by SolarWinds With the increasing sophistication of hackers, and the rising black market price of sensitive data IT has a huge target on its back. Data breaches are expected to cost the global economy $2 trillion by 2019.   Therefore, the need for a SIEM – Security Information and Event Management – solution is critical for detecting attacks as early as possible. At the same time, IT has to support more and more devices, both in and outside of their organization. Technologies such as virtualization and SaaS solutions bring much-needed efficiencies to business, but further strain limited IT resources. Therefore, the SIEM solution needs to be easy-to-use and intelligent. And then there is compliance. No matter what industry you’re in, you are touched by compliance requirements whether it’s PCI, HIPAA, SOX or FISMA.   A SIEM solution can help with compliance in two ways: Fulfilling specific requirements in regulations that specifically call out monitoring and audit Meeting other requirements with controls facilitated by SIEM Are you prepared? Unlike internal IT programs, where the risk is controlled by the organization, compliance programs carry external risk, whether contractual or regulatory. Here are some examples of cases where companies have failed to meet their compliance requirements: $3,300,000 for unsecured electronic health records (OCR) $300,000 for failing to follow banking regulations (FinCEN) $25,000,000 for data breaches (FCC) Fines are only one negative consequence of improperly managed programs. Reputational damage, lost customers, and decreased morale are others. However, if starting a compliance program appears... --- ### Microsoft's New Goal: "Solve" Cancer - Published: 2016-09-20 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-goal-solve-cancer/ - Categories: Cloud Computing - Tags: News - Article Type: News Today, Microsoft announced an audacious new goal: its researchers will attempt to "solve" cancer by treating the disease group as information processing systems that can be modeled and reasoned, and then use sophisticated analysis tools to better understand and treat cancer. Today, Microsoft announced an audacious new goal: its researchers will attempt to "solve" cancer by treating the disease group as information processing systems that can be modeled and reasoned, and then use sophisticated analysis tools to better understand and treat cancer. "At Microsoft’s research labs around the world, computer scientists, programmers, engineers and other experts are trying to use computer science to solve one of the most complex and deadly challenges humans face: Cancer. " Microsoft's Allison Linn writes in a new post to Microsoft Stories. "And, for the most part, they are doing so with algorithms and computers instead of test tubes and beakers. " Yes, Microsoft's research labs are hard at work on tough computer science problems too. Linn notes efforts from system design and security to quantum computing and data visualization. But it has also turned its attention to biological research. And it feels like it can tackle cancer like a computer science problem. Microsoft has adopted two core approaches to solving cancer. First is the notion that that cancer and other biological processes are information processing systems: Microsoft is using traditional software development tools---programming languages, compilers and model checkers---to model and reason about biological processes. The second approach is more data-driven, Microsoft says: Its researchers are applying machine learning to publicly-available biological data and then using sophisticated analysis tools to better understand and treat cancer. Linn describes four teams of researchers that are applying these approaches in unique ways. One is using machine learning... --- ### Automated Failover of Internet Web Services to Azure - Published: 2016-09-19 - Modified: 2024-09-04 - URL: https://petri.com/automated-failover-internet-web-services-azure/ - Categories: Cloud Computing - Tags: Azure, Azure Site Recovery, DNS, Traffic Manager, Web Server - Article Type: How To Aidan shows you how you can fail over an Internet web service from a “local” data centre to Azure, which could optionally be included in a design for Azure Site Recovery (ASR). In this post, I will show you how you can fail over an Internet web service from a “local” data centre to Azure, which could optionally be included in a design for Azure Site Recovery (ASR). The Problem Let’s assume that I am running a web application that is important to my business. I have hosted this application either in an on-premises DMZ or in a Co-Lo (co-location) hosting facility where I am renting rack space, bandwidth and power. The business has decided that it needs this important application to survive a facility failure. Deploying a traditional disaster recovery (DR) solution will be too expensive and distracting, so it has been decided that I must use Azure as a DR site. The Solution The first component of the solution is basic Azure Site Recovery (ASR), Azure’s DR-as-a-Service offering. ASR replicates the machines (physical, vSphere, or Hyper-V) from the production environment to a recovery services vault in Azure. The virtual disks sit there until a failover is invoked. At that time, a recovery plan is started, and orchestrates the creation of virtual machines (attaching to the replicated disks), and boots them up in the desired order on the desired Azure virtual networks (VNets). The tricky bit is how to redirect end users from the now offline production site to a service running in Azure. The second component of the solution is to solve that redirection problem. An Azure Traffic Manager profile is deployed in priority (failover) mode. Two endpoints... --- ### Microsoft Azure Outage -- Was it a DNS DDoS? - Published: 2016-09-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-azure-outage-dns-richij-1675867/ - Categories: Cloud Computing, DNS, Main, Microsoft Azure, SQL Server - Tags: Azure, Cloud, cloud computing, DNS, Failover Clustering, IT Newspro, Microsoft, Microsoft Azure, News, System Uptime - Article Type: News, Opinion Azure recently experienced a nasty outage, lasting several hours. It seems to have been centered around DNS, but had wide side effects. Microsoft’s cloud platform took something of a beating. By the sound of it, a DDoS could have been to blame. Or not. Redmond isn’t saying... Azure DNS not found: (A)bort, (R)etry, (F)ail? Azure recently experienced a nasty outage, lasting several hours. It seems to have been centered around DNS, but had wide side effects. Microsoft’s cloud platform took something of a beating. By the sound of it, a DDoS could have been to blame. Or not. Redmond isn’t saying. In today’s IT Newspro, we avoid the potholes in the cloudy superhighway. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Meta-clickbait and the power of storytelling... (more... ) --- ### New Azure Office 365 Regions Go Live in UK - Published: 2016-09-16 - Modified: 2024-11-19 - URL: https://petri.com/new-azure-office-365-regions-go-live-uk/ - Categories: Microsoft 365, Microsoft Azure - Tags: Azure, Microsoft, Office 365 - Article Type: News In this post, Aidan talks about the effects on administrators of the launch of the new regions for Azure and Office 365 in the United Kingdom (UK). This post will discuss the effects on administrators of the launch of the new regions for Azure and Office 365 in the United Kingdom (UK). Announcement Adoption of cloud services in Europe Union (EU with a population of 508 million people) has been patchy, despite there being two EU-based Azure regions (Dublin and Amsterdam) and four EU-based Office 365 locations (Dublin, Amsterdam, Finland and Austria). This is thanks to: Microsoft being an American corporation. Aggressive attitudes of the USA government towards non-American customer data in American-owned data centres outside of the USA. Some markets, such as Germany and the UK have not reacted well. In Germany, Microsoft is building 2 Azure regions that will be operated by a German-owned trustee, therefore circumventing USA federal laws. The UK is a very interesting situation. Maybe Microsoft had amazing foresight, and maybe they got lucky. Microsoft’s announcement that they had just launched new data center regions in the UK made it clear that they wanted to attract Office 365 and Azure business from British government agencies. But recent events made Microsoft’s new regions even more important. The UK is a large market; it has a population of 64 million, London is one of the world’s financial hubs, and it has the fifth largest economy (GDP) in the world. What’s more, the UK is officially on the path towards leaving the European Union (see “Brexit”) and this uncertain plan might leave this very large market for Microsoft isolated outside of the European... --- ### The Sams Report EP 56: Surface Dreams And Redstone Hints - Published: 2016-09-16 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-56-surface-dreams-redstone-hints/ - Categories: Podcast - Tags: The Sams Report - Article Type: Overview On this episode, I cover all of the Microsoft news this week including Surface AIO dreams, Band debacles, a new build of Windows 10 with a few hints tucked away and a lot more in the world of Microsoft The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including Surface AIO dreams, Band debacles, a new build of Windows 10 with a few hints tucked away and a lot more in the world of Microsoft. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=GO8pFKX5GmA&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: September 16 - Published: 2016-09-16 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-september-16/ - Categories: Mobile - Tags: News - Article Type: Opinion Because it's International iPhone Day today, this edition of Short Takes focuses on the iPhone 6SE (sorry, iPhone 7), ongoing problems with the Windows 10 Anniversary Update, Microsoft's terrible new Surface ads, Microsoft Stores are now offering small business support, a Samsung Galaxy Note 7 recall, and more. Because it's International iPhone Day today, this edition of Short Takes focuses on the iPhone 6SE (sorry, iPhone 7), ongoing problems with the Windows 10 Anniversary Update, Microsoft's terrible new Surface ads, Microsoft Stores are now offering small business support, a Samsung Galaxy Note 7 recall, and more. Happy iPhone Day (tm) It's the most wonderful day of the year ... if you're an Apple fanboy, that is. Today, Apple unleashes the iPhone 7 and 7 Plus---or, as I call them, the iPhone 6SE and 6SE Plus---on the world, bringing a temporary stab of joy between the moment of acquisition and the moment your credit card bill arrives. But the biggest benefit of the iPhone 7, of course, is for Apple, which badly needed a hit. And this minor, evolutionary upgrade appears to be just that, despite being a ... well, a minor, evolutionary upgrade. All hail the two year upgrade cycle. And seriously, buy the damn thing already. "Verizon Announces Moto G4 Play Prepaid Smartphone For $85" So it's slightly less expensive than the new iPhone. Windows 10 version 1607 quietly shifts into Revision 2. 0 As I've written in the past, the Windows 10 Anniversary Update arrived in early August with an unprecedented number of problems, leading Microsoft to quietly slow down the rollout. But Woody Leonard adds more evidence to support my claims, noting that Microsoft has issued "five major updates in six weeks. No wonder Microsoft's holding off on the Anniversary... --- ### Leveraging OneNote: Making a Kanban system > OneNote is a powerful tool in business for note taking. It can also be used as a Kanban board to keep work flowing fast and efficiently. - Published: 2016-09-15 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-making-kanban-system/ - Categories: Office - Tags: Leveraging OneNote, Office, OneNote - Article Type: How To OneNote is a powerful tool that Microsoft offers for free, in this post, Joe shows you how to get the most out of this note taking application. Leveraging OneNote Improved efficiency is the goal of every business. To be efficient businesses must be sure their employees are not doing the same work and wasting their time. This problem has been around for ages and has a huge range of solutions. One such solution is a Kanban system which uses a card or ticket based task self-assignment to ensure everything gets done and only done once. OneNote can be easily used as a digital Kanban board to track issues, tickets, complaints, or whatever you want. Due to the way OneNote lets users organize their content in any way it can easily be used to fit nearly any system. Use notebooks to organize major tasks, then sections can organize the progress of a task. Finally, pages represent each individual issue being worked on. OneNote works particularly well because of the range of content it accepts. You can attach documents, links, URLs, tables, ink, images, videos, and more to document progress or status. A Kanban System OneNote is Unique How is OneNote significantly different from a task tracker like Wunderlist, Todoist, Trello, or any other to-do app? OneNote is more flexible and capable to handle incremental status updates without actually completing the action. Many task trackers are built to handle lists of singular tasks. While OneNote is more similar to a formal document system. This means people can document changes and attach documents in OneNote’s infinite canvas however they see... --- ### Tony’s Office 365 Snippets -- September 15 2016 - Published: 2016-09-15 - Modified: 2024-11-19 - URL: https://petri.com/tonys-office-365-snippets-september-15-2016/ - Categories: Microsoft 365, Office - Tags: data centers, external access, guests, Microsoft Ignite, Office 365 Groups, proxy addresses - Article Type: News Ignite is fast approaching and I have an impossible schedule at the event, so I’ll be viewing a lot of Channel 9 videos afterward. Ignite is fast approaching and I have an impossible schedule at the event, so I’ll be viewing a lot of Channel 9 videos afterward. Questions about what guest users might do when they gain access to Office 365 Groups need careful thought. You might be surprised that mail-enabled objects are limited in terms of proxy addresses, and the code for one of the new U. K. data centers is odd, but explainable.     The Difficulty of Scheduling at Ignite If you’re one of the 22,000 souls who will make their way to Atlanta for the Microsoft Ignite conference starting on September 26, you’ll be able to browse the session catalog and construct a personal agenda online. I’ve found quite a lot of sessions that I would like to attend, but when I add them to the schedule (as shown in Figure 1), it’s obvious that I cannot achieve my goal unless I master the art of co-location (in four different places at times). Figure 1: The sessions I would like to attend at Microsoft Ignite Tant pis, as my French friends would say. The solution is to view the session videos afterward on Channel 9. I believe all of the 75-minute sessions are being taped and should be available online within 48 hours. Channel 9 is a great resource for those who can’t attend Ignite or, like myself, find too much to do in too little time because of competing attractions. Bad Guest Behavior in Office 365 Groups... --- ### Surface Complete Warranty for Education Customers is Now Available - Published: 2016-09-15 - Modified: 2024-09-04 - URL: https://petri.com/surface-complete-warranty-education-customers-now-available-u-s/ - Categories: Mobile - Tags: Microsoft Surface, News, Surface - Article Type: News This week, Microsoft announced a new Surface Complete for Education warranty for schools and educational institutions. It's available starting today for K-12 and higher-education institutions in the U.S. and will be expanding to international markets on September 30. This week, Microsoft announced a new Surface Complete for Education warranty for schools and educational institutions. It's available starting today for K-12 and higher-education institutions in the U. S. and will be expanding to international markets on September 30. "We've seen great demand for Surface in education, which has nearly doubled its presence in classrooms around the world," Surface Education Product Marketing Manager Jean Blatchford writes in a new post to the Windows Devices blog. "Bringing the power of Surface devices to the classroom also means creating flexible and robust warranty programs that help schools more easily manage and deploy Surface. " At a high level, the Surface Complete for Education warranty works a lot like the Complete for Enterprise offerings. It gives schools and educational institutions access to accidental damage protection, claims sharing, exclusive end-user device training tailored to education, and onboarding resources, Microsoft says. It's priced at $225 for Surface Pro 4 and $359 for Surface Book, though pricing will vary in other markets based on volume. Key benefits include: Claims sharing. School districts, departments, or classrooms can share accident damage claims. This means they're grouped together so that educational institutions can spend less time managing the claims and more time ensuring that Surface devices are available for use. Onboarding Desk. An onboarding desk will help educational institutions get up and running smoothly, Microsoft says, with access to Smart Start resources that are customized for each institution. In addition to how-to content for Surface device and... --- ### In Praise of Inactivity - Why Exchange Online inactive mailboxes are so valuable > Inactive mailboxes are a valuable way for Exchange Online to preserve the content of mailboxes for compliance purposes. - Published: 2016-09-14 - Modified: 2024-11-19 - URL: https://petri.com/in-praise-of-inactivity/ - Categories: Microsoft 365, Office - Tags: Exchange Online, Inactive Mailboxes, legacy email archive, litigation hold, Office 365 - Article Type: Opinion, Overview Inactive mailboxes are only available inside Exchange Online and don’t exist outside Office 365. Litigation or in-place holds keep inactive but soft-deleted mailboxes in a state in which their data is easily accessible for compliance and recordkeeping purposes. Inactive mailboxes are only available inside Exchange Online and don’t exist outside Office 365. Litigation or in-place holds keep inactive but soft-deleted mailboxes in a state in which their data is easily accessible for compliance and recordkeeping purposes. Don’t let that hold go, though, because if you do, inactive mailboxes will disappear faster than you might think.     I wonder whether the Microsoft folks who made the decision to introduce the inactive mailboxes feature to Office 365 had any notion of quite how important and popular the feature might be. What’s for sure is that inactive mailboxes are used extensively and have become the lynchpin of Microsoft’s “bring the data home” campaign because they provide customers with a no-cost method to retain legacy data for as long as required. Inactive mailboxes are very much a creature of the cloud, where accounts are licensed and paid for on a monthly basis. They don’t exist on-premises because they are not required. No one except the administrators of an on-premises Exchange organization dictate how long mailboxes are retained after an employee leaves the company or passes on. It’s a sad fact of life that the death of an employee is something that companies have to deal with, including the retention of important corporate information that might exist in their mailbox. How Inactive Mailboxes Work The basics of inactive mailboxes are simple. An Office 365 account is created as usual and a license that includes Exchange Online is assigned to the... --- ### Microsoft’s Desktop App Converter Heads To The Windows Store - Published: 2016-09-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-desktop-app-converter-heads-windows-store/ - Categories: Windows 10 - Tags: Desktop App Converter, Windows Store - Article Type: News Microsoft's desktop app converter, also known as the Centennial bridge, is heading to the Windows store with the hopes that more developers will port their apps to the storefront. A couple years ago at Build, Microsoft announced a new initiative to help developers leverage their existing code to make it easier to build apps for Windows devices. The company called these products ‘bridges’ and today, the desktop app converter is heading to the Windows Store. The bridge, which you may know by its other name Centennial, is now available for download directly from the Windows Store. The version in the store is the latest iteration of Centennial and will also automatically receive updates and bug fixes as well. In addition to releasing this app, the company is expanding the way that developers can create apps with the bridge by partnering with, Flexera Software with InstallShield, FireGiant with WiX and Caphyon with Advanced Installer now have included support for the Desktop Bridge, enabling developers to directly build an app package when using the bridge as part of their development process. Apps like Evernote, Double Twist, Arduino IDE used the bridge to build their applications for the Windows store and these apps will show up in the next couple of days as they roll out to the store. These bridges had lofty ambitions when they were announced. Microsoft initially released a bridge to port apps from iOS, a separate bridge to port apps from Android, a bridge to convert desktop apps and one for hosted web apps. Microsoft has officially killed the Android bridge but the iOS and other bridges live-on. The company hoped that these bridges would significantly increase the... --- ### Secure Standalone Windows Servers Using Security Compliance Manager - Published: 2016-09-14 - Modified: 2024-09-04 - URL: https://petri.com/secure-standalone-windows-servers-using-security-compliance-manager/ - Categories: Windows Server - Tags: Security, Security Compliance Manager, Windows Server - Article Type: How To Russell Smith shows you how to use the localGPO command line tool in Security Compliance Manager (SCM) to apply security templates to computers that are not part of an Active Directory domain. In today’s Ask the Admin, I’ll show you how to use the localGPO command line tool in Security Compliance Manager (SCM) to apply security templates to computers that are not part of an Active Directory domain. Security Compliance Manager comes with a command line tool for applying template settings to Local Group Policy Objects, i. e. for use on devices that are not joined to an Active Directory domain. For more information on SCM, see Using the Microsoft Security Compliance Manager Tool on the Petri IT Knowledgebase. The installer for the localGPO tool is located in the c:program files (x86)microsoft security compliance managerlgpo directory, and you need to run the . msi file to install it on the computer where you want to use the tool. Note that at the time of writing, localGPO is not supported on Windows Server 2012 R2. Double click LocalGPO. msi. Click Next on the welcome screen. On the End-User License Agreement screen, check I accept the terms in the License Agreement and click Next. On the Features to install screen, click Next. The tool will now install. Click Finish to close the installer window. The tool is installed in the “c:program files (x86)localgpo” directory. To work with the tool, run the “command-line here” batch file in the localgpo directory. This will open a command prompt window in the right directory and display information about the available switches that can be used with the tool, along with some useful examples. To export the current local policy... --- ### Microsoft Usurps Oracle and Salesforce.com -- Inks Huge Dynamics Deal at HP Inc - Published: 2016-09-14 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-dynamics-oracle-salesforce-hp-richij-1675751/ - Categories: Cloud Computing, Dynamics, Main, Microsoft 365, Microsoft Azure - Tags: Azure, Cloud, cloud computing, Dynamics, HP, IT Newspro, Microsoft, Microsoft Azure, Microsoft Dynamics, News, Office 365 - Article Type: News, Opinion HP buys 26,500 seats of Microsoft Dynamics, displacing Salesforce and Oracle. It’s a huge deal, cementing Microsoft as the SaaS leader, according to analysts. As goes SaaS, so goes IaaS and PaaS? Scott Guthrie certainly thinks so, arguing that only Amazon stands between Microsoft and the cloud top spot. Who’d a thunk it... Scott Guthrie: “It was a Salesforce takeout. HP Inc. is planning a massive migration and a big bet on Dynamics. ” HP buys 26,500 seats of Microsoft Dynamics, displacing Salesforce and Oracle. It’s a huge deal, cementing Microsoft as the SaaS leader, according to analysts. As goes SaaS, so goes IaaS and PaaS? Scott Guthrie certainly thinks so, arguing that only Amazon stands between Microsoft and the cloud top spot. Who’d a thunk it, just a few years ago? In today’s IT Newspro, we marvel at how times change. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: SpaceX UFO foolishness... (more... ) --- ### Understanding Windows Server 2016 Licensing - Published: 2016-09-13 - Modified: 2024-09-04 - URL: https://petri.com/understanding-windows-server-2016-licensing/ - Categories: Windows Server - Tags: Hyper-V, licensing, Virtualization, vSphere, Windows Server, Windows Server 2016 - Article Type: Overview Aidan Finn describes some of the significant changes to Windows Server licensing that are coming with Windows Server 2016, that are sure to catch most of you by surprise. This post will describe some of the significant changes to Windows Server licensing that are coming with Windows Server 2016, that are sure to catch most of you by surprise. Note that this post will focus on the “core editions” of Windows Server, Standard, and Datacenter, that affect the majority of people. Always consult a certified licensing expert if you are unsure about any Microsoft licensing issues or have any licensing questions for your specific scenario. The Past In Windows Server 2012 (WS2012) and Windows Server 2012 R2 (WS2012 R2), things were pretty simple. The only feature differences between the two were: You got unlimited Windows Server installations on a host licensed by Window Server Datacenter Edition, and 2 installations on a host for every Standard Edition that was assigned to that host. The Datacenter Edition supported Hyper-V Automated Virtual Machine Activation (AVMA). Every processor in a server/host had to be licensed. A single Windows Server license covered two processors. That means if a machine had 4 processors, I needed to purchase 2 copies of Windows Server for that server or host. Per-Core Licensing Everything changes starting with the general availability of Windows Server 2016 (WS2016). Note that you always purchase the latest edition of Windows Server, so the latest rules always apply to you. You might opt to deploy an older version of Windows Server, if the license allows that, but the latest rules still apply. You can now purchase a Xeon processor with 24 cores. This... --- ### Create GPOs Using the Security Compliance Manager Tool - Published: 2016-09-13 - Modified: 2024-09-04 - URL: https://petri.com/create-gpos-using-security-compliance-manager-tool/ - Categories: Windows Server - Tags: group policy, Security, Windows Server - Article Type: How To In today’s edition of Ask the Admin, Russell Smith will show you how to export security templates as Group Policy Objects (GPOs). In Using the Microsoft Security Compliance Manager Tool on Petri, I showed you how to get started with Microsoft’s free Security Compliance Manager (SCM) tool, how to manage security and Group Policy settings, and how to track changes to baseline security templates. In today’s Ask the Admin, I’ll show you how to export security templates as Group Policy Objects (GPOs). Create a Group Policy Object Based on a SCM Template Before you can apply SCM settings to servers in an Active Directory domain, you need to export the settings to a Group Policy Object, which can then be linked to a forest, domain or Organizational Unit (OU). Export SCM Template Settings as a GPO Backup If Security Compliance Manager is not already open, launch it from C:Program Files (x86)Microsoft Security Compliance Manager. In the left pane of the Security Compliance Manager window, select the security template you created in part two of this series. In the right pane of SCM under Export, click GPO Backup (folder). In the Browse For Folder dialog, select or create a new folder within which to store the backup files and click OK. File Explorer will then open showing the exported Group Policy Object backup. Export SCM Template Settings as a GPO Backup (Image Credit: Russell Smith) Using the Group Policy Management Console (GPMC), we can create a Group Policy Object from the backup we just made. For the purposes of this demonstration, I’ve installed GPMC on the same... --- ### Deploy OMS Monitoring to Azure Virtual Machines - Published: 2016-09-12 - Modified: 2024-09-04 - URL: https://petri.com/deploy-oms-monitoring-azure-virtual-machines/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machines, Log Analytics, Log Analytics (OMS), monitoring, OMS, Operations Management Suite, Systems Management, virtual machines - Article Type: How To In this post, Aidan will show you two ways to deploy Azure Log Analytics (OMS) monitoring to Azure virtual machine, and to some of the services running on those machines. In this post I will show you two ways to deploy Azure Log Analytics (OMS) monitoring to Azure virtual machine, and to some of the services running in those machines. Monitor Virtual Machine Logs The first method that I am showing you is possible, but not optimal. You can configure Azure virtual machines to write the logs of some services to a storage account. OMS is capable of gathering the logs listed below that originated from a virtual machine from a storage account: Linux Syslog: Logs from a Linux guest OS. Windows Event: Classic logs from a Windows guest OS. IIS Log: Logs generated by IIS in a Windows guest OS Windows ETWEvent: Logging that a developer can enable. This capability means that instead of trying to troubleshoot applications, such as a website that is load balanced across many machines, on one machine at a time, you have a central repository of log data that you can query or create alerts from. I will need a storage account to store my log data. You could reuse the storage account that the virtual machines are stored in, but I prefer to create a dedicated storage account in a systems management resource group. I have created a general purpose storage account on standard storage in a resource group called rg-sysmgmt-01. This storage account will store all log data from virtual machines in the same region. The virtual machines must be configured to write their logs to this storage account. Open the... --- ### HP to Purchase Samsung Printer Business for $1 Billion - Published: 2016-09-12 - Modified: 2024-09-04 - URL: https://petri.com/hp-purchase-samsung-printer-business-1-billion/ - Categories: Hardware - Tags: HP, News - Article Type: News HP Inc. announced today that it has entered into a definitive agreement to purchase Samsung's printer business in a deal valued at just over $1 billion. The goal? To disrupt the $55 billion copier market with multi-function printers, HP says. HP Inc. announced today that it has entered into a definitive agreement to purchase Samsung's printer business in a deal valued at just over $1 billion. The goal? To disrupt the $55 billion copier market with multi-function printers, HP says. As you may recall, Hewlett-Packard last year split into two companies, the enterprise services-focused HP Enterprise, and HP Inc. , which sells PCs, printers, and related products. "When we became a separate company just 10 months ago, it enabled us to become nimble and focus on accelerating growth and reinventing industries," HP president and CEO Dion Weisler said in a prepared statement. "We are doing this with 3D printing and the disruption of the $12 trillion traditional manufacturing industry, and now we are going after the $55 billion copier space. The acquisition of Samsung's printer business allows us to deliver print innovation and create entirely new business opportunities with far better efficiency, security, and economics for customers. " Printers and copiers may not seem very exciting in this age of mobile apps and cloud services. But as it does with PCs, HP is trying to eke out a living in markets that are ostensibly shrinking. And it is doing so by finding sub-markets that---wait for it---are actually growing. For PCs, that means premium models, like luxury laptops an gaming PC rigs. But in the printer market, HP sees a big future in 3D printing, and would like to be a leader in that nascent market. Now, with this... --- ### Data Transformations with PowerShell Classes, Part 2 > PowerShell teacher Jeff Hicks wraps up his series on data transformations in PowerShell using a v5 class. - Published: 2016-09-09 - Modified: 2024-09-04 - URL: https://petri.com/data-transformations-with-powershell-classes/ - Categories: PowerShell - Tags: Advanced, Data, PowerShell - Article Type: How To I'm having fun with this series and hope you are as well. In my previous article, I introduced you to PowerShell classes and I built a class that I can use with my movie data file. If you are just joining us, you really should take a few minutes to read the previous articles (Making Data Dance with PowerShell & Dancing on the Table with PowerShell), plus part one of this article, Data Transformations with PowerShell Classes, Part 1. Otherwise, let's pick up where we left off. First, I'm going to use the same CSV file I've been using in the last few articles. $data = Import-CSV C:scriptsmoviedata. csv Then I'm going to need my class definition, which I explained in the previous article. Class MyUpcoming { #properties $Title $ReleaseDate $Comments $OpensIn $Rating $NowPlaying = $False #methods Update { $this. OpensIn = ($this. ReleaseDate - (Get-Date)). TotalDays if ((Get-Date) -ge $this. ReleaseDate ) { $this. NowPlaying = $True } return $this } #constructor MyUpcoming($Title,$ReleaseDate,$Rating,$Comments) { $this. Title = $Title $this. ReleaseDate = $ReleaseDate $this. Rating = $Rating $this. Comments = $Comments $this. Update } } #close class definition Now I'm ready to start creating instances of the class using my data. To create an instance of my class, I need to invoke the constructor and pass it parameter values from the data. Here's a quick proof of concept with a few items from $data. $data | foreach { ::new($_. Title,$_. ReleaseDate,$_. Rating,$_. comment) } Testing new objects (Image Credit: Jeff Hicks) See how this works? Or I can use New-Object. $data... --- ### The Sams Report EP 55: Hardwaring In October, Consoles All Year Long - Published: 2016-09-09 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-55-hardwaring-october-consoles-year-long/ - Categories: Podcast - Tags: The Sams Report - Article Type: Overview On this episode, I cover all of the Microsoft news this week including a hardware event for October, changes in Windows Insider provisioning, Scropio, Sony and it's impossible to avoid those iPhones. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including a hardware event for October, changes in Windows Insider provisioning, Scropio, Sony and it's impossible to avoid those iPhones. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://youtu. be/FNF5ysjyI6Q RSS | SoundCloud | YouTube | iTunes | Google Play --- ### External Access for Office 365 Groups - Published: 2016-09-09 - Modified: 2024-11-19 - URL: https://petri.com/external-access-office-365-groups/ - Categories: Microsoft 365 - Tags: Azure Active Directory, external access, guest user, Office 365 Groups - Article Type: Overview Microsoft has put a huge amount of emphasis on Office 365 Groups as the basis for team-based collaboration for its cloud service. Collaboration often requires input from external people and that hasn’t been possible until now. The announcement of external user support for Office 365 Groups is welcome, even if it is restricted in part. Microsoft has put a huge amount of emphasis on Office 365 Groups as the basis for team-based collaboration for its cloud service. Collaboration often requires input from external people and that hasn’t been possible until now. The announcement of external user support for Office 365 Groups is welcome, even if it is restricted in part. The need to support a controlled and secure mechanism to permit external people to collaborate with members of Office 365 Groups is evident. Many scenarios exist when teams come together and need the support of external expertise to accomplish tasks, such as when a team works with a supplier on the design of a new product, or when a team charged with leading the acquisition of another company needs to interact with people in that company and external lawyers and accountants. Up until now, it has been possible for some level of interaction to occur by permitting external people to share in group conversations by email. However, they have not been able to access other group resources such as documents, the shared notebook, or an associated plan managed by Microsoft Planner. Microsoft has just announced support for external access to Office 365 Groups. I’ve been using the capability for about a month now to collaborate with people from Microsoft and other companies, notably to prepare presentations for the upcoming Ignite conference. My observations reported here are based on that experience. Defining guest users for Office 365 Groups Microsoft’s solution introduces a new form... --- ### Paul Thurrott's Short Takes: September 9 - Published: 2016-09-09 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-9/ - Categories: Mobile - Tags: News - Article Type: Opinion Because it's Apple's world and we just live in it, this edition of Short Takes focuses on the U.S. Army migration to Windows 10, a rumored Surface AIO, a HoloLens tour comes to Microsoft retail stores, more Surface phone rumors, another Xbox One victory, and more. Microsoft's Senior Leadership Team debates the merits of a Surface phone. Because it's Apple's world and we just live in it, this edition of Short Takes focuses on the U. S. Army migration to Windows 10, a rumored Surface AIO, a HoloLens tour comes to Microsoft retail stores, more Surface phone rumors, another Xbox One victory, and more. U. S. Army expects to complete migration to Windows 10 by early 2018 I'm just sad they missed out on the free upgrade, but then they're used to paying $1400 for a fork, so no surprise there. Following in the footsteps of the U. S. Department of Defense, which previously committed to its own Windows 10 migration, the U. S. Army will put boots on the ground, or at least in front of PC displays, and complete its migration to Windows 10 by early 2018. "Windows 10 provides improved security features to mitigate cyber threats and a common baseline for Air Force cyber operators to manage, thereby reducing costs," a U. S. Army statement notes. And as it turns, the U. S. Air Force is working on a similar schedule as well. Nice. "Outlook Calendar now lets you keep track of your NFL team's schedule" Outlook. Always on the leading edge. Microsoft could debut a Surface All-in-One in October As I noted over on Thurrott. com, Microsoft will reportedly announced a Surface All-in-One desktop PC at a hardware event in late October. In keeping with previous Surface devices, I expect this AIO to... --- ### Will Microsoft Launch a Surface All-In-One Desktop Next Month? Sources say... - Published: 2016-09-09 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-surface-cardinal-all-in-one-richij-1675650/ - Categories: Hardware, Main, Mobile, Windows 10, Windows Client OS - Tags: Cardinal, desktop, Hardware, IT Newspro, Microsoft Surface, News, Windows 10 - Article Type: News, Opinion Microsoft is said to be launching a new Surface, codenamed Cardinal. The new device will be a one-box desktop PC—i.e., an all-in-one (AiO), as popularlized by Apple’s iMac. The avian-themed rumor seems credible and well-sourced. And an October hardware event would fit with Microsoft’s previous form. But beyond that, everything is mere speculation. None of which stops us from some amusing Friday musing... Redmond AiO rumored to give iMac the bird Microsoft is said to be launching a new Surface, codenamed Cardinal. The new device will be a one-box desktop PC—i. e. , an all-in-one (AiO), as popularlized by Apple’s iMac. The avian-themed rumor seems credible and well-sourced. And an October hardware event would fit with Microsoft’s previous form. But beyond that, everything is mere speculation. None of which stops us from some amusing Friday musing. This should ruffle a few feathers. In today’s IT Newspro, we go all in. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Holy holes... (more... ) --- ### Using Traffic Manager in Azure Resource Manager - Published: 2016-09-08 - Modified: 2024-09-04 - URL: https://petri.com/using-traffic-manager-azure-resource-manager/ - Categories: Cloud Computing - Tags: Azure, Azure Resource Manager, Disaster Recovery, load balancing, networking, Traffic Manager, Traffic Manager profile - Article Type: How To Learn how to perform geo-load balancing for deployments in different Azure regions using Traffic Manager profiles in Azure Resource Manager (ARM) or Cloud Solution Provider (CSP) subscriptions. Learn how to perform geo-load balancing for deployments in different Azure regions using Traffic Manager profiles in Azure Resource Manager (ARM) or Cloud Solution Provider (CSP) subscriptions. The Scenario I have deployed two web farms, one in the North Europe Azure region and one in West US Azure region. I want to use Traffic Manager to unify both of these installations with geo-load balancing so that I have: A disaster recovery solution for my Internet presence. Reduce latency for dynamic content for customers in the USA and in UK/Ireland. My web application spread across two Azure regions Note that this is a simple example; I could have deployed web farms in many Azure regions. The Endpoints An endpoint is the public connection to some service that you want to load balance. For example, a web farm will have a DNS name/IP address combination. You must configure a DNS name for any Azure resource that you want to use as an endpoint. I have configured the public IP address of my web farms with DNS names (under Settings > Configuration): Configure a DNS name for the endpoint IP addresses Now my web farms can be browsed using the Microsoft-owned and -managed domain names. New Traffic Manager Profile Open the Azure Portal and click New. Search for Traffic Manager and click Traffic Manager profile (also found under Networking). Give the Traffic Manager profile a name; note that this... --- ### Microsoft Azure: Using Linked ARM Templates - Published: 2016-09-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-using-linked-arm-templates/ - Categories: Cloud Computing - Tags: Azure, Azure Resource Manager, cloud computing - Article Type: How To In today's Ask the Admin, I'll explain how to use linked Azure Resource Manager (ARM) templates to facilitate complex deployment options. In today's Ask the Admin, I'll explain how to use linked Azure Resource Manager (ARM) templates to facilitate complex deployment options. There are several choices when deploying resources in Microsoft Azure, among them the classic service model, PowerShell scripts, or ARM templates. If you follow my Azure articles on the Petri IT Knowledgebase, you’ll have noticed that everything I do related to Azure is based on Azure Resource Manager (ARM), although occasionally I still provide how-to articles for beginners on configuring Azure using the web portal. In Use Visual Studio to Deploy a Virtual Machine on Petri, I showed you how to work with ARM templates in Visual Studio (VS). And today I’d like to extend that theme and show you how to link child templates to a master deployment template, again with the help of Visual Studio. Decomposition The ability to link templates enables administrators and developers to simplify complex Azure deployments using targeted templates for specific purposes. For example, rather than putting all the code to deploy resources for a complex app in one template, you can call child templates, based on decisions made at deployment time, to deploy the app from a set of smaller building blocks. This process is known as decomposition. Developers often use it to separate an application into code classes, enabling easier testing, reuse and deployment. Linking Templates Azure templates can be linked to a ‘master’ template, creating a hierarchy of a master and one or more child templates. Child templates... --- ### Apple Announces iPhone 7, Apple Watch Series 2 - Published: 2016-09-07 - Modified: 2024-09-04 - URL: https://petri.com/apple-announces-iphone-7-apple-watch-series-2/ - Categories: Mobile - Tags: Apple, Apple Watch, iPhone - Article Type: News As expected, Apple unleashed a new generation of mobile smart devices on Wednesday. The firm announced the iPhone 7 and 7 Plus smartphones, plus the Apple Watch Series 2 and some related accessories. As expected, Apple unleashed a new generation of mobile smart devices on Wednesday. The firm announced the iPhone 7 and 7 Plus smartphones, plus the Apple Watch Series 2 and some related accessories. As has been the case for the past several Apple events, every major product announcement had been leaked in the weeks leading up to the event, somewhat softening the message. But Apple still provided a few surprises, albeit of the more minor variety. "iPhone 7 and iPhone 7 Plus dramatically improve every aspect of the iPhone experience, reaching a new level of innovation and precision to make this the best iPhone we have ever made," said Apple senior vice president Philip Schiller in a typical bout of hyperbole. "The completely redesigned cameras shoot incredible photos and videos day or night, the A10 Fusion chip is the most powerful chip on any smartphone while delivering the best battery life ever in an iPhone, and an entirely new stereo speaker system provides twice the sound, all within the first water and dust resistant iPhone. " Right. So, the new iPhone 7 and iPhone 7 Plus closely mirror the iPhone 6S and 6S Plus they replace, with nearly identical designs, models and pricing. But this time around, Apple fans are treated to some new colors---two blacks, curiously, plus silver, gold, and rose gold---and what Apple describes as all-new cameras. The dual-camera setup in the iPhone 7 Plus looks particularly impressive. More controversially, Apple confirmed that it was... --- ### Microsoft Azure: Use Visual Studio to Deploy a Virtual Machine - Published: 2016-09-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-use-visual-studio-deploy-virtual-machine/ - Categories: Cloud Computing - Tags: ARM, Azure, Visual Studio, VM - Article Type: How To In today's Ask the Admin, I'll show you how to create an ARM template in Visual Studio for deploying Azure virtual machines (VMs). Having used VS to deploy resources in Azure, this is the way I now recommend you work with Azure templates. In today's Ask the Admin, I'll show you how to create an ARM template in Visual Studio for deploying Azure virtual machines (VMs). As a system administrator, I never thought I’d need to work with Visual Studio (VS) – that scary monolithic piece of software the developers use to conjure up their wares. Tools such as the Windows PowerShell ISE (Integrated Scripting Environment) have, until now, sufficed for my scripting needs. But since Azure has slowly moved away from the classic ‘service management’ model to JSON-based resource manager (ARM) templates, it’s clear that a professional developer tool that understands the JSON syntax, and can help debug and even deploy resources in Azure, is the best way to go. Not only does VS understand how to parse JSON files, but integration with Azure provides access to Cloud Explorer for resource management and predefined templates so that you can quickly deploy new resources without leaving VS. Having used VS to deploy resources in Azure, this is the way I now recommend you work with Azure templates. For more information on Azure Resource Manager, see What are Microsoft Azure Resource Groups? and Deploy VMs Using Azure Resource Manager on the Petri IT Knowledgebase. Install Visual Studio First you will need to install Visual Studio 15 Community, Professional or Enterprise Edition, with the Azure SDK for . NET. Community Edition is free, so that’s the version I’ll be installing. You can either download and install VS from Microsoft’s website and then add the... --- ### Moving Legacy Archives to Office 365 Is Painful - Published: 2016-09-07 - Modified: 2024-12-03 - URL: https://petri.com/moving-legacy-archives-office-365-painful/ - Categories: Exchange Server, Microsoft 365 - Tags: Archive360, Dell, Enterprise Vault, journal reports, legacy archive, mailboxes, migration, Office 365, Quadrotech, TransVault - Article Type: Overview Migration of legacy archives like Enterprise Vault are often left as the last part of the journey from on-premises servers to Office 365. A wide range of third-party migration tools are available, but many complex twists and turns await the unwary as they cope with journal reports, archive mailboxes, splitting and explosions, and the sheer amount of data to be migrated. It’s an interesting problem to solve. Migration of legacy archives like Enterprise Vault are often left as the last part of the journey from on-premises servers to Office 365. A wide range of third-party migration tools are available, but many complex twists and turns await the unwary as they cope with journal reports, archive mailboxes, splitting and explosions, and the sheer amount of data to be migrated. It’s an interesting problem to solve. The need for third-party archives such as Veritas Enterprise Vault was obvious a decade or so ago when Exchange 2003 depended on expensive SAN-quality storage and supported no compliance features apart from basic mailbox search. Reducing the demand for mailbox storage by offloading copies of messages to third-party archives, leaving small “stubs” behind, delivered a good solution. Companies could keep copies of email for as long as necessary and the third-party archives usually had much better compliance and eDiscovery features than existed inside Exchange. Time marches on and software evolves. Exchange now uses low-cost storage and provides sufficient mailbox quota to allow users to keep email as long as necessary and the product sports a wide range of compliance features to help companies satisfy regulatory or legal retention requirements. Search is much better and eDiscovery, especially in Office 365, is as powerful as many specialized software products. In the new reality, there’s no surprise that companies are discarding third-party archives and want to move data to Office 365, where the data becomes more discoverable, compliant, and accessible to users. Two years... --- ### To Compete with Slack, Microsoft Chooses Door Number Three - Published: 2016-09-07 - Modified: 2024-09-04 - URL: https://petri.com/compete-slack-microsoft-chooses-door-number-three/ - Categories: Microsoft 365 - Tags: News - Article Type: Opinion As Brad noted yesterday, Microsoft will take on the Slack team collaboration solution by leveraging its in-house Skype capabilities to create a new product called Skype Teams. This is just one of three obvious tactics the software giant could have employed, and it suggests, I think, a new-found confidence in Skype. As Brad noted yesterday, Microsoft will take on the Slack team collaboration solution by leveraging its in-house Skype capabilities to create a new product called Skype Teams. This is just one of three obvious tactics the software giant could have employed, and it suggests, I think, a new-found confidence in Skype. Since its initial release in 2014, Slack has quickly racked up users. According to the latest figures I could find, Slack now has over 3 million daily active users, and almost one million paying customers. That's a relatively small market compared to, say, Skype, with 350 million users, or Microsoft Office, an increasingly vague product family that claims north of 1. 2 billion users. But Slack's success is coming at the expense of these core Microsoft products, and many have called on Microsoft to buy Slack as a result. The problem is the asking price: This year, Slack was valued at more than $8 billion. That sounds like a lot of money---is a lot of money---but buying a competitor in order to remove it from the equation is in fact a viable business strategy. It's what I think of as "door number one" in this "Let's Make a Deal" scenario. Doing so would allow Microsoft's in-house collaboration tools---Office 365, SharePoint/Yammer, and so on---to continue along without having to worry about Slack. And Microsoft could of course integrate Slack (or Slack features and technology) into its Office 365 family of solutions. And Microsoft has done this before, with companies... --- ### Microsoft’s Cloud in Brexit Britain -- New Azure and Office 365 DCs for UK - Published: 2016-09-07 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-cloud-azure-office-365-uk-richij-1675561/ - Categories: Cloud Computing, Exchange Server, Messaging, Microsoft 365, Microsoft Azure, Security, SharePoint - Tags: Azure, Brexit, Cloud, EU, hybrid cloud, IT Newspro, Microsoft, News, Security, UK - Article Type: News, Opinion Microsoft Azure and Office 365 hosted in the UK for the first time. Redmond just opened up three new data centers in England and Wales, arranged in two Azure regions. This brings the number of Regions to 28 globally. Among the launch customers are Aston Martin, a regional health authority, and the Ministry of Defence . This should give a boost to Microsoft’s data-sovereignty story... James Bond’s favorite ride now runs on Microsoft’s Great British cloud Microsoft Azure and Office 365 hosted in the UK for the first time. Redmond just opened up three new data centers in England and Wales, arranged in two Azure regions. This brings the number of Regions to 28 globally. Among the launch customers are Aston Martin, a regional health authority, and the Ministry of Defence . This should give a boost to Microsoft’s data-sovereignty story. In today’s IT Newspro, we’re shaken, not stirred. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: McQ fail... (more... ) --- ### Microsoft Is Preparing To Take On Slack With Skype Teams - Published: 2016-09-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-preparing-take-slack-skype-teams/ - Categories: Messaging - Tags: News, skype, Skype Teams - Article Type: News Microsoft is working on a Slack competitor, internally called Skype Teams, that will be a new productivity tool for the company that features improved file sharing and threaded conversations. Slack, a communication tool that is quickly growing in popularity with small businesses and even some large enterprise companies, is encroaching on Microsoft’s productivity space. Microsoft, who was rumored to be contemplating a bid for Slack for around 8 billion, is now building its own product under the Skype umbrella to take on the new incumbent. Called Skype Teams, the tool is designed to bring all the features users love about Slack into Skype and integrate them with all of the Microsoft products including Office 365, OneDrive and of course email and calendar apps. Bots will also be part of the tool and as you can see from the image at the top of this post, obtained by MSPoweruser, threaded messaging is included as well. Skype Teams, like the Skype app, will allow for voice and video chat and will be available on all of your devices. While the release date is not known at this time, sources close to the development of the product say that the application is being tested internally with the company placing priority on getting this application shipped sooner rather than later. I asked Microsoft for comment about Skype Teams and the company said they had nothing to share at this time. Microsoft has stated numerous times that they have over 300 million actively monthly Skype users, so it will be interesting to see if they are able to shift that user-base over to the new Team application. Communication and collaboration tools are a vital... --- ### Should Azure Stack Be On Limited Hardware? - Published: 2016-09-06 - Modified: 2024-09-04 - URL: https://petri.com/azure-stack-limited-hardware/ - Categories: Virtualization - Tags: MAS, Microsoft Azure Stack, Private Cloud, Windows Server 2016, WS2016 - Article Type: Opinion Microsoft announced that Azure Stack (MAS) would be released in mid-2017 via a set of hardware partners on highly tested and certified systems, naming HPE, Dell, and Lenovo. This means that Microsoft’s new private cloud solution will only be available via a few partners, on very specific hardware sets. Is this a good or a bad thing? I’ll discuss that in this opinion post. Microsoft Azure Stack A lot of people were surprised when Microsoft announced a new private cloud solution called Azure Stack at Microsoft Ignite in 2015. Microsoft had already released Windows Azure Pack (WAPack), which was an Azure skin sitting on top of System Center. Administrators and tenants used the WAPack portals, based on the old Azure management portal, and System Center moved the pieces to make things happen. MAS was something different; it doesn’t require System Center, although Microsoft encourages the use of System Center for infrastructure and service management. MAS features the new Azure Portal interface, and it is based on Azure Resource Manager (ARM); the use of these offers an Azure consistent experience, more-so when coupled with the storage and networking capabilities of Windows Server 2016. MAS created a lot of excitement. Plenty of potential customers looked at MAS and wondered if this was going to be the future of managing Hyper-V deployments, and let them live the promise of 3-clouds-in-one (Azure, hosting partner, and customer site). That was all before Microsoft started to reveal how they would sell MAS to customers... --- ### Transforming Data with PowerShell Classes, Part 1 > PowerShell sensei Jeff Hicks continues his look at working with data in PowerShell and introduces us to classes in PowerShell v5. - Published: 2016-09-06 - Modified: 2024-09-04 - URL: https://petri.com/transforming-data-with-powershell-classes-part-1/ - Categories: PowerShell - Tags: Advanced, Data, PowerShell - Article Type: How To PowerShell sensei Jeff Hicks continues his look at working with data in PowerShell and introduces us to classes in PowerShell v5. I hope you've been enjoying this series on working with data in PowerShell. If you missed the first two articles (Making Data Dance with PowerShell  & Dancing on the Table with PowerShell) I encourage you to get caught up as I will be using the same data source and ideas. Remember, the point of these articles is to demonstrate techniques for working with data sources in PowerShell. It doesn't matter what they are or where they come from. Once you have the data as a set of objects, you can manipulate it just about anyway you need. As before, to keep this fun let's use a CSV file with movie information. "Title","ReleaseDate","Comments","Rating" "Jason Bourne","7/29/2016",,"PG-13" "The Magnificent Seven","9/23/2016","","PG-13" "Doctor Strange","11/4/2016","Marvel","PS-13" "Fantastic Beasts and Where to Find Them","11/18/2016","Harry Potter related","PG-13" "Rogue One","12/16/2016","Star Wars","PG-13" "The Dark Tower","2/17/2017","Stephen King","R" "Ghost in the Shell","3/31/2017","Sci-Fi","R" "Spectral","8/12/2016","Supernatural thriller","PG-13" "The Space Between Us","8/19/2016","space adventure","PG-13" "Miss Peregrine's Home for Peculiar Children","9/30/2016","Tim Burton","PG-13" "Arrival","11/11/2016","sci-fi","R" "Moana","11/25/2016","Disney animated","G" "Passengers","12/21/2016","sci-fi","PG-13" "Assassin's Creed","12/23/2016",,"R" "Sing","12/23/2016","animated","PG" "John Wick: Chapter Two","2/10/2017",,"R" "Wonder Woman","6/2/2017","comic book","PG-13" "Justice League","11/17/2017","","PG-13" "Transformation","10/7/2016","Syracuse film","R" "Night of the Living Dead: Genesis","12/30/2016","horror","R" In this article, I want to show you another way you might work with this data. In PowerShell v5, Microsoft introduced support for classes. The intention was for you to use classes to create custom Desired State Configuration resources, but you can use classes for other purposes as well. That's what we're going to do so you'll need PowerShell 5. 0 or later if you want to follow along. A class is... --- ### Windows 10 Market Share Reaches 23% in August, Windows 7 Remains Flat - Published: 2016-09-06 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-adoption-reaches-23-august-windows-7-remains-flat/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News With Microsoft ending the free upgrade for Windows 10, market share growth of the OS will likely slow but a new enterprise offering could add new users in all the right places. Microsoft released Windows 10 a little over a year ago, and the OS has quickly been adopted by users around the world. While the company said that there are over 350 million users of the operating system, that figure was released back in June and there are likely many millions more using the OS today, it's the last known hard number of how many users of the OS are out in the real world but using third-party sources, we can get a slightly better look at the bigger picture. According to Net Marketshare, Windows 10 during the month of August accounted for 22. 99% (21. 13% for July) of machines connected to the web that it was able to survey. During the same period, Windows 7 still commanded the lead with 47. 25% which is a small gain over July 2015 which had 47. 01% of the market. Of course, it should be noted that small gains or losses should not be scrutinized significantly as this data is a sample of the market as it is impossible to survey every machine connected to the Internet. Compared to a year ago, for September 2015, Windows 10 owned 6. 6% and Windows 7 56. 63% of the market; a year later we can see significant gains for Windows 10 and a sizeable drop in Windows 7 usage. With Microsoft ending the free upgrade promotion for Windows 10, the adoption rate of the OS will likely slow, but the company is hoping to lure enterprise customers with a new... --- ### Microsoft Sees Strong Support For Legal Case Against Government Secrecy - Published: 2016-09-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-sees-strong-support-legal-case-government-secrecy/ - Categories: Cloud Computing - Tags: News - Article Type: News On Friday, over 80 technology firms, media organizations, civil liberties groups, and others filed legal briefs supporting Microsoft's challenge to secret U.S. government orders. Amazon, Apple, and Google are among those supporting Microsoft, as are firms as diverse as Fox News and the A.C.L.U. On Friday, over 80 technology firms, media organizations, civil liberties groups, and others filed legal briefs supporting Microsoft's challenge to secret U. S. government orders. Amazon, Apple, and Google are among those supporting Microsoft, as are firms as diverse as Fox News and the A. C. L. U. Microsoft sued the U. S. Department of State in April, alleging that the agency's growing use of secrecy orders is illegal and violates its rights, as well as the rights of its customers. "We believe that with rare exceptions consumers and businesses have a right to know when the government accesses their emails or records," Microsoft president and chief legal officer Brad Smith wrote in an April post to the Microsoft On The Issues blog. "Yet it's becoming routine for the U. S. government to issue orders that require email providers to keep these types of legal demands secret. We believe that this goes too far and we are asking the courts to address the situation. " As evidence, Microsoft noted at the time that it had received over 5,600 federal demands for cloud-hosted customer data between September 2014 and March 2016, and that over half, or 2,576 of them, included a gag order, meaning that Microsoft was legally required to keep the order secret from the customer in question. "Notably and even surprisingly, 1,752 of these secrecy orders, or 68 percent of the total, contained no fixed end date at all," Mr. Smith explained. "This means that we effectively are prohibited forever from telling our... --- ### Windows 10 Tip: Change the System Language - Published: 2016-09-02 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-change-system-language/ - Categories: Windows Client OS - Tags: language, Windows 10 - Article Type: How To In today's Ask the Admin, following on from a previous article on how to change the interface language for a user account, I'll show you how to change the default interface language in Windows 10 for new users, the welcome screen and system accounts. In today's Ask the Admin, following on from a previous article on how to change the interface language for a user account, I'll show you how to change the default interface language in Windows 10 for new users, the welcome screen and system accounts. A few weeks ago in Add a Language Pack to Change the Display Language in Windows 10 on the Petri IT Knowledgebase, I showed you how to change the Windows interface language by adding a language pack and changing the language for individual user accounts. One point that I didn’t mention in that article, which also applies to the information that follows, is that you can’t install language packs in Windows 10 Home. For that you’ll need Windows 10 Pro or Enterprise. Changing the language of the display interface is useful when one device has multiple users that speak different languages, but there’s a different process for changing the display language of the welcome screen, system accounts and various other display elements within Windows. Additionally, you might want to set a default display language for all new user accounts. Change the Display Interface Language for New Users and System Account Before you can carry out the instructions below, you will need to have two or more MUI language packs installed. If you only have one, follow the instructions here on Petri to add at least one additional language pack. And don’t forget you need to be using Windows 10 Pro or Enterprise. Log in... --- ### Paul Thurrott's Short Takes: September 2 - Published: 2016-09-02 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-september-2/ - Categories: Mobile - Tags: News - Article Type: Overview Because Kaby Lake is a lie, this edition of Short Takes focuses on another forced Windows 10 upgrade, smartphone sales to slow further this year, an apology for Apple's actual tax rate, Samsung recalls the Galaxy Note 7, Google kills a modular phone project, and much more. The only safe way to use a Samsung Galaxy Note 7. Because Kaby Lake is a lie, this edition of Short Takes focuses on another forced Windows 10 upgrade, smartphone sales to slow further this year, an apology for Apple's actual tax rate, Samsung recalls the Galaxy Note 7, Google kills a modular phone project, and much more. The dark side of Intel "Kaby Lake": Forced Windows 10 usage While Intel's new Kaby Lake CPUs were wedged into its product lineup unceremoniously to fix issues with the previous-generation Skylake chips, there's another big story that many are missing: Microsoft only supports Windows 10 on Kaby Lake and future Intel (and AMD) CPUs. And that means that you will not be able to buy or downgrade to Windows 7/8. 1 on new PCs based on these chips, as you can with Skylake and previous Intel (and AMD) chips. "Future silicon platforms including Intel's upcoming 7th generation Intel Core (Kaby Lake) processor family will only be supported on Windows 10," a Microsoft statement confirms. "And all future silicon releases will require the latest release of Windows 10. " So I hope you like Windows 10. As that's your only choice going forward. "Microsoft Browsers Had High Ad Fraud Rate, Study Claims" I think we can all agree that IE is a fraud. IDC: Smartphone sales to slow even further this year than expected Though to be fair, there isn't a market prediction that IDC hasn't muffed yet. Anyway,... --- ### The Sams Report EP 54: Redstone Turns A Little Blue - Published: 2016-09-02 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-54-redstone-turns-little-blue/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including a couple new discoveries for Redstone 2, Outlook deployments, Windows as a Service gets a new price point, and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including a couple new discoveries for Redstone 2, Outlook deployments, Windows as a Service gets a new price point, and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=k3-0Gi0xO74 RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Microsoft Adds VMware Support to System Center DPM - Published: 2016-09-02 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-adds-vmware-support-system-center-dpm/ - Categories: System Center - Tags: Azure, Azure Backup, Backup, Cloud Backup, Data Protection Manager, DPM, DPM 2012 R2, SysCtr, System Center, System Center 2012 R2, System Center Data Protection Manager, virtual machines, vmware, vSpehre 6.0, vSphere, vSphere 5.5 - Article Type: News This post will discuss the recent announcement that Microsoft has added support for backing up VMware virtual machines using System Center Data Protection Manager (DPM) 2012 R2. This post will discuss the recent announcement that Microsoft has added support for backing up VMware virtual machines using System Center Data Protection Manager (DPM) 2012 R2. The Problem Microsoft had an interesting challenge with DPM. While plenty of mid-large enterprises purchase System Center to use it for monitoring and PC management, few are using DPM, which is actually a pretty good tool for backing up desktops, SQL Server, SharePoint, and Hyper-V support has become very interesting with the addition of offsite cloud backup via Azure Backup. But there is a problem for Microsoft with those customers. Many of them either run vSphere only, or have a legacy vSphere farm with a newer Hyper-V deployment. DPM has only ever supported Microsoft products, so that meant if you wanted to backup vSphere, you needed a third-party solution. Few will ever run more than one backup solution, so that means that DPM is sidelined, and that probably also ruled out the potential add-on of Azure Backup. I was sitting in a dull breakout session on Windows Server at Microsoft Ignite last May, when I looked down and saw that my Twitter feed had lit up with the news that the DPM/Azure Backup team had announced that they would be adding support for vSphere. And that support came in August with Update Rollup 11 (UR11) for System Center 2012 R2. The DPM solution now includes VMware virtual machines Features of the Solution... --- ### Dancing on the Table with PowerShell > PowerShell guru Jeff Hicks continues his exploration of working with data in PowerShell, this time with a DataTable object. - Published: 2016-09-01 - Modified: 2024-09-04 - URL: https://petri.com/dancing-on-the-table-with-powershell/ - Categories: PowerShell - Tags: Advanced, Data, PowerShell PowerShell MVP Jeff Hicks demonstrates some additional techniques with PowerShell and shows how easy it is to work with basic data and use the DataTable object. In the first article of this series we looked at a variety of ways of working with data in PowerShell. PowerShell doesn't really care where the data comes from or what it looks like. Once you have turned the data into objects, your options are practically unlimited. As I mentioned at the end of the previous article, which you should read first if you haven't already, it is very important to think about who will use your data and how they will consume it. To that end, in this article I want to demonstrate another technique for presenting data in PowerShell. We'll even keep this fun and non-technical and use my CSV file of movie information. Here's an updated version of that file. "Title","ReleaseDate","Comments","Rating" "Jason Bourne","7/29/2016",,"PG-13" "The Magnificent Seven","9/23/2016","","PG-13" "Doctor Strange","11/4/2016","Marvel","PS-13" "Fantastic Beasts and Where to Find Them","11/18/2016","Harry Potter related","PG-13" "Rogue One","12/16/2016","Star Wars","PG-13" "The Dark Tower","2/17/2017","Stephen King","R" "Ghost in the Shell","3/31/2017","Sci-Fi","R" "Spectral","8/12/2016","Supernatural thriller","PG-13" "The Space Between Us","8/19/2016","space adventure","PG-13" "Miss Peregrine's Home for Peculiar Children","9/30/2016","Tim Burton","PG-13" "Arrival","11/11/2016","sci-fi","R" "Moana","11/25/2016","Disney animated","G" "Passengers","12/21/2016","sci-fi","PG-13" "Assassin's Creed","12/23/2016",,"R" "Sing","12/23/2016","animated","PG" "John Wick: Chapter Two","2/10/2017",,"R" "Wonder Woman","6/2/2017","comic book","PG-13" "Justice League","11/17/2017","","PG-13" "Transformation","10/7/2016","Syracuse film","R" "Night of the Living Dead: Genesis","12/30/2016","horror","R" As before, the first step is to convert this data into objects using Import-Csv. $data = Import-CSV C:scriptsmoviedata. csv The CSV format is the easiest to use. If you need to use a different delimiter, be sure to read help and examples for Import-Csv. I suppose I should also mention that everything I'm showing you works because the data is structured... --- ### What Is Thunderbolt 3? - Published: 2016-09-01 - Modified: 2024-09-04 - URL: https://petri.com/what-is-thunderbolt-3/ - Categories: Windows Client OS - Tags: Hardware, Thunderbolt, USB - Article Type: Overview Russell explains what Thunderbolt 3 is and where USB Type-C connectors fit into the picture. As the Thunderbolt 3 cables start to roll out, remember to check to verify that they can handle transfer speeds of up to 40 Gb/s if you want maximum benefit. Despite being developed by Intel, Thunderbolt is a hardware interface that's more commonly associated with Apple than PCs. But that's slowly changing as new Windows 10 notebooks are being fitted with Thunderbolt 3 ports. In this article, I'll explain what Thunderbolt 3 is and where USB Type-C connectors fit into the picture.   USB Type-C connector (Image Credit: thunderbolttechnology. net) Thunderbolt is a technology designed to allow you to connect peripherals to your PC and other devices, while at the same time solving some of the problems associated with USB and Firewire. Offering speeds of up to 40 Gb/s, it’s twice as fast as Thunderbolt 2 and four times faster than USB 3. 1. Cables and Connectors Apart from the significant increase in speed, Thunderbolt 3 addresses a major concern that stopped the technology from being widely adopted in the past. Thunderbolt 2 required a Thunderbolt cable, but Thunderbolt 3 uses USB Type-C cables, with the new 24-pin reversible connectors that will eventually supersede USB Type-A and B. But Thunderbolt 3 and USB Type-C cables, while utilizing the same connector, are the same but different. And this is where it starts to get a little confusing. Thunderbolt 3 cables will come in three different flavors to suit user needs. A standard copper USB Type-C cable can be used to connect devices to Thunderbolt 3 ports, but are limited to transfer rates of up to 20 Gb/s. A second type of copper USB Type-C cable will... --- ### Windows 10 Enterprise E3 Now Available, E5 Coming October 1st For $14 Per User - Published: 2016-09-01 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-enterprise-e3-now-available-e5-coming-october-1st/ - Categories: Windows 10 - Tags: News, Windows 10, Windows as a service - Article Type: News Microsoft's new Windows 10 Enterprise E3 SKU is now available but the version most large companies are likely waiting for is the E5 version which will become available in October. Earlier this year, Microsoft announced a new Windows subscription service for enterprise clients that would offer Windows 10 Enterprise starting at $7 a month. The SKU is offered by Cloud Solution Providers but for most companies, the E5 offering is what most will want but that option will not launch until October 1st. For larger companies, the E5 version of Windows 10 Enterprise is the more compelling offer as it includes Windows Defender Advanced Threat Protection that will help mitigate attacks on a corporate network and combat the rising threat of ransomware.  As for a price, Microsoft is setting a $14 estimated retail price point for E5 but the price could vary by Cloud Service Provider depending on features included with the SKU. One of the new features in Windows 10 is that you can upgrade to Windows 10 Pro to Windows 10 Enterprise E3 without rebooting. For those looking to upgrade to Windows 10 Enterprise without the subscription fee, that option is still available through the tradition licensing channels. Moving Windows 10 to a subscription model for the Enterprise is a change that has been expected ever since Office 365 was announced. The company, at this time, has not made any indication if they will attempt to move the consumer version of Windows to a subscription model; I don’t see that happening in the near term but it is always a possibility. --- ### Making Data Dance with PowerShell > PowerShell MVP Jeff Hicks begins a series of articles demonstrating how to make the most out of data in PowerShell no matter where it comes from. - Published: 2016-08-31 - Modified: 2024-12-03 - URL: https://petri.com/making-data-dance-with-powershell/ - Categories: PowerShell - Tags: Add-Member, Get-Member, Import-CSV, Intermediate, PowerShell, select-object, Update-TypeData - Article Type: How To PowerShell MVP Jeff Hicks begins a series of articles demonstrating how to make the most out of data in PowerShell no matter where it comes from.   I think what you'll learn in this article is going to be fun. Because of PowerShell's emphasis on working with objects, once you get your head around that idea, you'll realize PowerShell is a terrific tool for managing just about anything. I use PowerShell for all sorts of what you might consider non-IT tasks from a simple task management system to a tickler program with popup reminders. These tools rely on data and PowerShell doesn't really care where the data comes from. Once the data becomes a collection of objects, PowerShell makes it a breeze to work with. I want to spend some time demonstrating how you might work with data in PowerShell. As with much of my work, focus as much on the techniques and concepts as the end result. I like coming up with fun applications so you can learn something with a smile on your face. Let's dig in. To keep you from getting too distracted, let's work with some non-technical data, which I'll bring in from a CSV file. The techniques and concepts I want to demonstrate should apply to any data source so you should be able to apply them to your more technical data. I have a CSV file of movies that I think I'd like to see. "Title","ReleaseDate","Comments","Rating" "Star Trek Beyond","7/22/2016","must see","PG-13" "Jason Bourne","7/29/2016",,"PG-13" "Patient Zero","9/2/2016","Horror","NR" "The Magnificent Seven","9/23/2016","PG-13" "Doctor Strange","11/4/2016","Marvel","NR" "Fantastic Beasts and Where to Find Them","11/18/2016","Harry Potter related","NR" "Rogue One","12/16/2016","Star Wars","NR" "The Dark Tower","2/17/2017","Stephen King","NR" "Ghost in the Shell","3/31/2017","SciFi","NR"... --- ### Windows 7 not supported on New PCs -- Intel and AMD Toe the Line - Published: 2016-08-31 - Modified: 2024-11-19 - URL: https://petri.com/windows-7-not-supported-intel-amd-richij-1675391/ - Categories: Hardware, Main, Windows Client OS - Tags: AMD, Intel, IT Newspro, Microsoft, News, Support, Windows, Windows 10, Windows 7, Windows 8, Windows 8.1 - Article Type: News, Opinion With new PC chips rapidly approaching, here’s a timely reminder about Windows 7 support: There isn’t any—at least not on Intel or AMD’s new silicon. Only Windows 10 is supported. Your downgrade rights were wrenched away, back in January... Microsoft’s sensible decision? Or foot in mouth? With new PC chips rapidly approaching, here’s a timely reminder about Windows 7 support: There isn’t any—at least not on Intel or AMD’s new silicon. Only Windows 10 is supported. Your downgrade rights were wrenched away, back in January. Previously, enterprises could buy today’s hardware, but put their current image on it, only upgrading when it made sense. But with this policy, Microsoft changed everything. (Oh, and it applies equally to Windows 8. 1, in case you care. ) So much for Windows 7 being supported thru 2020, amirite? In today’s IT Newspro, we wonder if we should stockpile PCs, or talk to the lawyers. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: How to drive better... (more... ) --- ### The Nano Server Debate - Yes or No? - Published: 2016-08-31 - Modified: 2024-09-04 - URL: https://petri.com/nano-server-debate-yes-no/ - Categories: Windows Server - Tags: Desktop Installation, Full Installation, Nano Server, Windows Server 2016 - Article Type: Opinion It is clear from Microsoft’s publicity about Windows Server 2016 that the corporation believes that the default choice for installing a new server is Nano Server. Do you agree with that view? In this opinion post, I discuss the merits of both sides of the argument, share my take on the matter, and ask what you think. It is clear from Microsoft’s publicity about Windows Server 2016 that the corporation believes that the default choice for installing a new server is Nano Server. Do you agree with that view? In this opinion post, I discuss the merits of both sides of the argument, share my take on the matter, and ask what you think. Nano Server Nano Server is a deep refactoring of Windows Server, which goes several steps beyond what Microsoft did with Server Core in Windows Server 2008. Server Core stripped away the graphical element of the interface, leaving us with a command prompt and a PowerShell prompt; it was, as just about every presenter on the topic has quipped, Windows without windows. It wasn’t long until Microsoft advised us that Server Core should be the default choice as the installation option. Four versions of Windows Server later, Microsoft has revisited the concept of server installation options and user interfaces. In an effort to streamline the operating system, Microsoft has gotten deep into the code of Windows Server and removed almost all traces of a user interface. In the first public preview of Server Core, a local login accomplished little more than tell us that the machine was on the network! Feedback has shaped this experience, and now we can: View and change some basic network address settings View and enable/disable Windows Firewall rules Reset WinRM so Hyper-V hosts can be managed by System Center Virtual Machine Manager, which continues to rely on... --- ### Microsoft Flow: Create a Workflow Using a Template > In today's Ask the Admin, I'll show you how to sign up for Microsoft Flow and create a simple workflow that posts a tweet with a hashtag from your Twitter account to your Slack channel. - Published: 2016-08-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-flow-create-a-workflow-using-a-template/ - Categories: Cloud Computing - Tags: Automation, Cloud, Microsoft Flow - Article Type: How To In today's Ask the Admin, I'll show you how to sign up for Microsoft Flow and create a simple workflow that posts a tweet with a hashtag from your Twitter account to your Slack channel. In today's Ask the Admin, I'll show you how to sign up for Microsoft Flow and set up a simple workflow using one of the many available templates. Microsoft Flow allows users to automate workflows without understanding how to work with the publicly available APIs that developers use to create complex solutions using multiple services and apps from different vendors. Flow contains a wide range of templates for automating workflows, or you can create and share your own. A workflow might automatically post photos you upload to Instagram to your Twitter feed, or post status updates on multiple social networks simultaneously. Or productivity solutions might include automatically creating a Wunderlist task from emails labelled important, or synchronizing files from one cloud storage provider to another. For more information on Flow, see What is Microsoft Flow? on the Petri IT Knowledgebase. In this article, I’m going to show you how to post tweets that match a hashtag to Slack. To complete this demo, you’ll need a Microsoft account, a Twitter account and a project configured in Slack. See What is Slack and Is It Better Than Email? on Petri for more details on Slack. Create a Flow using a Template Before you can use Flow, you’ll need to sign up with a Microsoft account. If you already have a Microsoft account and have previously registered for Flow, you can click Sign in on the Flow webpage here. If you haven’t signed up before, click Sign up free and provide... --- ### Microsoft Brings Windows Information Protection To Mobile Office Apps on Windows - Published: 2016-08-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-windows-information-protection-mobile-office-apps-windows/ - Categories: Office - Tags: News, Office, Office 365, Windows 10, Windows Information Protection - Article Type: News Microsoft has released new mobile Office apps for Windows that enables Windows Information Protection, a new feature that shipped with Windows 10 Anniversary update. Earlier this year, Microsoft outlined a new feature for Windows called Information Protection. Designed for the enterprise, the tool helps prevent the accidental leakage of data and now the functionality is supported on Windows-based mobile Office apps. Microsoft made the announcement on their Office blog where they note that WIP (Windows Information Protection) is a feature of the recently released Anniversary update for Windows 10. Microsoft has yet to move Windows 10 1607 (Anniversary update is version number 1607) to the current branch for business (CBB) and likely will not do so for several more months which means most companies do not have access yet to the WIP feature. But, once 1607 is pushed to CBB, it will enable organizations to have greater control of their content on everything from desktops to mobile phones. With that being said, at this time, this functionality is only available for Windows based devices which means iPhones and Android devices are not supported with the currently released apps. In a world where the ‘office’ is no longer bound to the four walls of a building, allowing your employees to work wherever and share content with third-parties (as needed) is becoming common-place and yet software security has been slower to adapt. While VPNs and other solutions have made it easier to get into the office from anywhere in the world, it has also been too easy to accidentally send out information as well which was the reason WIP was created. The mobile versions of the Office... --- ### Why an Office 365 Connector Generates Multiple SendAs Audit Events > Office 365 Connectors allow data drawn from multiple internet sources like Twitter to be imported into Office 365. This article explains why imported tweets result in multiple SendAs events logged in the Office 365 Audit log. - Published: 2016-08-30 - Modified: 2024-11-19 - URL: https://petri.com/why-an-office-365-connector-generates-multiple-sendas-audit-events/ - Categories: Microsoft 365 - Tags: Connectors, Exchange Online, Office 365 Audit Log, Office 365 Groups, Security and Compliance Center, SendAs, Twitter - Article Type: Overview Office 365 Connectors allow data drawn from multiple internet sources like Twitter to be imported into Office 365. This article explains why imported tweets result in multiple SendAs events logged in the Office 365 Audit log. Office 365 Connectors allow data drawn from multiple internet sources like Twitter to be imported into Office 365. Why imported tweets result in multiple SendAs events logged in the Office 365 Audit log came as a surprise. There is some logic into why this happened, but it’s kind of warped. Office 365 Connectors are a neat way to capture information from over 50 different internet sources and import them into Office 365 groups in the form of “cards,” each of which represents an item fetched from the source. For instance, if you connect to your company’s official blog, the card represents a snapshot of a blog post rather than the complete text. The idea is that the cards inform people that new information is available and provide sufficient context for them to decide whether or not they want to follow the link in the card to see the full content. The Office 365 Group also provides a suitable place for discussions about the content in the network source. When discussing how best to include the topic of Connectors in our “Explore the ultimate field guide to Microsoft Office 365 Groups” session at Microsoft Ignite (yes, all Ignite sessions start with a verb), Benjamin Niaulin, one of my co-presenters, complained that everyone uses Twitter as the example for how to use a connector. He’s off now to find a great example to use for the session and I await what he decides to show at Ignite with great interest... . --- ### EU Orders Ireland to Recover $14.5 Billion in Unpaid Taxes From Apple - Published: 2016-08-30 - Modified: 2024-09-04 - URL: https://petri.com/eu-orders-ireland-recover-14-5-billion-unpaid-taxes-apple/ - Categories: Mobile - Tags: Apple, News - Article Type: News A European Union investigation has concluded that Ireland illegally taxed Apple at a rate of just 1 percent for over 10 years. As a result, it has ordered Ireland to collect $14.5 billion in lost taxes from the consumer electronics giant. Source: European Commission A European Union investigation has concluded that Ireland illegally taxed Apple at a rate of just 1 percent for over 10 years. As a result, it has ordered Ireland to collect $14. 5 billion in lost taxes from the consumer electronics giant. "Member States cannot give tax benefits to selected companies," EU Competition Commissioner Margrethe Vestager said in a prepared statement. "This is illegal under EU state aid rules. The Commission's investigation concluded that Ireland granted illegal tax benefits to Apple, which enabled it to pay substantially less tax than other businesses over many years. " Apple's sweetheart deal with Ireland has been an open secret for years, and Apple has been funneling profits earned around the world through this country since 2003. And while Apple isn't the only tech giant to find tax success in Ireland, it is by far the biggest. Apple, of course, says it is simply taking advantage of legal tax breaks. "Apple follows the law and pays all of the taxes we owe wherever we operate," the company noted in a statement. However, Apple also changed its tax structure in Ireland in 2015, once in became aware of the EU investigation. And Ireland---which is the actual target of the EU action---said that it would appeal. "I disagree profoundly with the Commission's decision," Irish Finance Minister Michael Noonan said. " defend the integrity of our tax system. " Ms. Vestager isn't impressed by either opinion and says... --- ### Enterprise Agenda: The Great Migration of 2016 - Published: 2016-08-29 - Modified: 2024-09-04 - URL: https://petri.com/enterprise-agenda-great-migration-2016/ - Categories: Windows Server 2016 - Tags: Enterprise agenda - Article Type: Overview In this edition of the Enterprise Agenda, it's time to start preparing for the great migration to Windows Server 2016 and we have a guide to help you get started. Later this year, Microsoft will release Windows Server 2016 and with it comes a plethora of new features that will make it easier to administer your network, improve security and make life as an IT pro a little bit easier. If you plan to upgrade, you can never start preparing too soon. In this edition of the Enterprise Agenda, I will cover the high points of creating a battle plan for a migration to Windows Server 2016 that should help you avoid the obvious issues and have the smoothest upgrade experience possible. Step one — plan: You can never over plan this type of a migration, which means breaking out your favorite to-do list application. You should create a simple list in Word/Excel or dive deep with Microsoft Project. Whatever your tool of choice, it’s important to buffer in extra time for unexpected issues and it’s OK if you end up not needing it; when was the last time management was upset that you were ahead of schedule? Step two — define what goes into the plan: This consists of several steps starting with research, preparation, communication, practice, backing up, execution and post upgrade documentation. All of these steps are critical to a successful upgrade and skipping one or any will result in a shortcut that expands the probability of a failed upgrade or extended outage. Step three — research how, when and what you will upgrade: Take inventory of which servers you will migrate and determine the... --- ### What Is Microsoft Flow? - Published: 2016-08-26 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-flow/ - Categories: Cloud Computing - Tags: Automation, Cloud, Microsoft Flow, Workflow - Article Type: Overview In this post I'll provide a brief overview of IFTTT and Zapier and Microsoft's contribution to the user-friendly, user-powered workflow services tool, Microsoft Flow. In today's Ask the Admin, I'll take a look at Microsoft Flow and how it can help users automate common tasks and improve workflow. Microsoft Flow (Image Credit: Russell Smith) It’s not uncommon for applications and services to have publicly accessible Application Programming Interfaces, or APIs, allowing developers to create sophisticated solutions that utilize many apps or services from different providers. Enterprise products, such as SharePoint, provide a means to implement workflows, but the ability to connect to apps or services provided by third parties is often a complex affair. And for us mere mortals, tapping into this technology has until now generally relied on IT professionals or developers to provide the necessary skills to code a solution. IFTTT and Zapier IFTTT (If This Then That) has been around since 2011, and is a free service that triggers actions based on conditional IF statements. For example, you could configure a workflow that automatically posts photos you upload to Instagram to your Twitter feed, or post status updates on multiple social networks simultaneously. Productivity solutions might include automatically creating a Wunderlist task from emails tagged as important, or synchronizing files from one cloud storage provider to another. Recipes in IFTTT and predefined solutions that allow users to automate workflows without any understanding of how to work with channels, triggers or actions. There’s a wide range of publicly available IFTTT recipes available, or you can share your own. IFTTT is free and has apps available for... --- ### The Sams Report EP 53: Testers Unite In The Middle Of The Night - Published: 2016-08-26 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-53-testers-unite-middle-night/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including more issues with the Anniversary update, patches going rouge, and fragmentation. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including more issues with the Anniversary update, patches going rogue, and fragmentation. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=u2zM-VlAw2Y&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: August 26 - Published: 2016-08-26 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-26/ - Categories: Mobile - Tags: News - Article Type: Opinion Because my Kindle broke my webcam or something, this edition of Short Takes focuses on whether Excel should be blamed for scientific tunnel vision, why iPhone users need to check for updates right now, Windows 95 and Linux milestones, Xbox One S demand is better than expected, and more. Those were the days. Because my Kindle broke my webcam or something, this edition of Short Takes focuses on whether Excel should be blamed for scientific tunnel vision, why iPhone users need to check for updates right now, Windows 95 and Linux milestones, Xbox One S demand is better than expected, and more. Scientists blame Microsoft Excel for "systemic errors" Which proves, among other things, that even the smartest people in the world have no problem passing the blame when it suits them. ABBC report explains that scientists have belatedly found that Microsoft Excel was automatically changing the names of some genes into dates: SEPT2 (Septin 2), for example, was changed to "September 2. " Microsoft, to its credit, explained that the scientists are of course at fault. "Excel is able to display data and text in many different ways," a Microsoft spokesperson explained. "Default settings are intended to work in most day-to-day scenarios. Excel offers a wide range of options, which customers with specific needs can use to change the way their data is represented. " In other words, read the fricking manual. And stop blaming others for you not preventing what is, in retrospect, a very obvious issue. "The systemic error was not, however, present in Google Sheets" Right. Because Google Sheets is what Excel would look like if PlaySkool made it. Yes, iPhone users should upgrade their phones immediately A stunning report in Vice Motherboard reveals that government hackers have secretly been using... --- ### MS Excel’s Science SNAFUs -- Bug or User Error? - Published: 2016-08-26 - Modified: 2024-12-03 - URL: https://petri.com/excel-science-snafu-richij-1675204/ - Categories: Main, Office, SQL Server - Tags: Data, Database, databases, Excel, IT Newspro, News, SQL Server - Article Type: News, Opinion Microsoft Excel causes problems in genetic research. That’s the claim of three researchers from an Australian institute, who discovered almost 20% of data sets contained errors introduced by Excel. The problem is Excel being “clever”—guessing the type of data it’s being asked to import. Unfortunately... Users warned to use the right tool for the job Microsoft Excel causes problems in genetic research. That’s the claim of three researchers from an Australian institute, who discovered almost 20% of data sets contained errors introduced by Excel. The problem is Excel being “clever”—guessing the type of data it’s being asked to import. Unfortunately, some gene names look like dates. And other common data looks like floating-point numbers. But so what?  You don’t do genetics research, but what can we learn? In today’s IT Newspro, we look at the implication for IT pros—and it’s not good. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Fix the No Man’s Sky problem... (more... ) --- ### Filtering PowerShell with the Where Method > PowerShell expert Jeff Hicks wraps up his discussion on filtering with a look at a filtering method that is speedy and fun. - Published: 2016-08-25 - Modified: 2024-09-04 - URL: https://petri.com/filtering-powershell-methodically/ - Categories: PowerShell - Tags: filtering, Intermediate, PowerShell, Where method, where-object - Article Type: How To PowerShell guru Jeff Hicks shows how to use the Where() method to do similar filtering tasks that you might use Where-Object for. In some cases, the Where() method does more. Over the course of a few articles, I have demonstrated a variety of filtering techniques and strategies. I want to wrap up our exploration with a filtering method you may not know about as it is not well documented. And it is just that, a method. There Where method was introduced in PowerShell 4. 0 for Desired State Configuration (DSC) but you can use it in your everyday PowerShell work. Everything you know about the PowerShell Where-Object cmdlet still applies. You normally would think about running a command like this: get-service | where status -eq 'stopped' But the Where method belongs to any object collection. (get-service). where({$_. status -eq 'stopped'}) This produces the same result in a fraction of the time. The syntax looks like: . where({ --- ### Microsoft Delivers Another Bad Update, Breaks PowerShell with Latest Patch - Published: 2016-08-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delivers-another-bad-update-breaks-powershell-latest-patch/ - Categories: PowerShell - Tags: Desired State Configuration, News, PowerShell, Windows 10 - Article Type: News This week, Microsoft released a new patch for Windows and the update has done more harm that good as it broke a basic feature of PowerShell. This week, Microsoft released a new patch for Windows 10 and the company managed to do more damage than good. This is not the first time the company has released a patch that has broken features in Windows and unfortunately, the patch didn’t fix the millions of webcams the company broke with the Anniversary update. On Tuesday, the company released KB 3176934 via Windows Update, you can read everything that was patched here, but the update also broke a key feature of PowerShell. Specifically, DSC (Desired State Configuration), which is used to control and manage groups of PCs and systems using automation, does not function after this patch is installed. Microsoft says that the reason for this is that a . MOF file was not included in the build package which breaks the DSC function; if you are seeing an ‘Invalid Property error’, this is the reason. Additionally, this patch also breaks PowerShell implicit remoting. Fortunately, it is easy to uninstall the patch and from within PowerShell, you can type "wusa /uninstall /kb:3176934" to remove the package. When you couple this news with the fact that Microsoft is becoming more restrictive about how IT Pros can block updates from Windows, it creates a scenario where more hardware can be broken because of reduced control when servicing updates. Microsoft says that they will push out a fix next Tuesday, 8/30, that will resolve this issue but this is yet another black mark for the company who has been struggling with Windows patches. While... --- ### Microsoft Targets VMware Customers with ‘Free’ Windows Server License - Published: 2016-08-24 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-targets-vmware-customers-free-windows-server-license/ - Categories: Windows Server - Tags: News, vmware, Windows Server 2016 - Article Type: News Microsoft has announced a new offer to VMware customers that will give them a free Windows Server license if they switch to Hyper-v but there are some other caveats too. Earlier this year, Microsoft announced an offer where users who move from Oracle Database software to SQL Server, that they would receive a 'free' license to for the platform. Today, the company is targeting VMware customers with a similar offer with those who migrate to Hyper-V will receive a free Windows Server Datacenter license. Later this year when Microsoft releases Windows Server 2016, it will come with a significant number of new features and as you can imagine, they want all their current customers to upgrade. Up-selling to current users is much easier than new customers which is why Microsoft is targeting VMware users with this offer. Starting September 1 through June 30, 2017, if you switch from VMware to Hyper-V, Microsoft will give you a free Windows Server Datacenter licenses when buying Windows Server Datacenter + Software Assurance. As you can see, the license isn’t truly free, as you have to sign up for Software Assurance but with this deal, you are essentially only paying for the Assurance package which has several other benefits than just a Windows server license. If you are interested in this offer, there are a few steps that you need to follow that you can find at the bottom of the announcement post, here. Even though Microsoft will lose a bit of revenue by offering this license for free, the agenda is clear. The company wants to entice new users to its platforms and they know once you build an environment around a software platform,... --- ### Veeam Announces Availability Platform for the Hybrid Cloud, Office 365 Backup Tools - Published: 2016-08-24 - Modified: 2024-09-04 - URL: https://petri.com/veeam-announces-availability-platform-hybrid-cloud-office-365-backup-tools/ - Categories: Microsoft 365, Virtualization - Tags: News, Office 365, Veeam - Article Type: News Veeam has announced a suite of new tools that will be coming later this year that will make it easier to backup, recover and migrate data in your data center. In the world of disaster recovery, you are either prepared or offline. As we have recently seen with Delta, downtime can cost companies millions and impact consumer loyalty too. This week, Veeam announced their vision for the future along with a several new products that will help keep corporate data safe and secure. Announced during a 90-minute keynote, the company is preparing for the release of its hybrid cloud platform that will enable businesses of all sizes with a means of availability for virtual, physical and cloud based workloads. The company has three pillars for achieving these capabilities: Enterprise Continuity: Recovery Service Level Objectives (SLOs) of less than 15 minutes for ALL applications and data; automated Disaster Recovery (DR) orchestration Workload Mobility: Availability for workloads across any cloud or location, to maximize IT investments and increase flexibility Compliance and Visibility: Proactive monitoring, reporting, testing and documentation to ensure business and regulatory requirements are met The company is also preparing to release new agents for Windows, Linux and a new console called the Availability Console. The new console will make it easier to manage remote and distributed office environments and it is built upcoming Veeam’s Cloud Connect platform. One feature that I know will be high on the interest list for Petri readers is the new capabilities of backing up Office 365. As this platform becomes increasingly widespread in the corporate world, ensuring a backup process is in place to recover from an outage is critical to the productivity of every company. Veeam unveiled... --- ### Microsoft Windows 10 vs. EFF Privacy Voice -- Fight! - Published: 2016-08-24 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-windows-10-eff-richij-1675047/ - Categories: Main, Security, Windows 10, Windows Client OS - Tags: EFF, IT Newspro, Microsoft, News, Privacy, Security, Windows, Windows 10 - Article Type: News, Opinion Microsoft Windows 10 comes under fire for privacy. The Electronic Frontier Foundation last week reopened the case against Redmond’s telemetry and personalization efforts. Despite acknowledging previous press stories were wildly incorrect, EFF paralegal staffer Amul Kalia argues his case with sincere passion... EFF’s Amul Kalia: Not a Windows fanboi Microsoft Windows 10 comes under fire for privacy. The Electronic Frontier Foundation last week reopened the case against Redmond’s telemetry and personalization efforts. Despite acknowledging previous press stories were wildly incorrect, EFF paralegal staffer Amul Kalia argues his case with sincere passion. He says Microsoft “disregards” privacy, and that the company isn’t transparent about data collection. He even goes as far as to predict Microsoft might face “government investigations” over the issue. Oh what a tangled web. In today’s IT Newspro, we dive deep into the mire. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Cycling hundreds of ,miles in VR... (more... ) --- ### DIY PST Imports Using Azure Blob Storage - Published: 2016-08-23 - Modified: 2024-12-03 - URL: https://petri.com/diy-pst-imports-using-azure-blob-storage/ - Categories: Exchange Server, PowerShell - Tags: archives, drive shipping, Enterprise Vault, Exchange Online, MRS, network upload, New-MailboxImportRequest, Office 365 Import Service, PST, SharePoint Online - Article Type: Overview The Office 365 Import Service does a good job of “bringing data home” by ingesting PST files and other data into Exchange Online mailboxes and SharePoint Online libraries. But sometimes you just want to do your own thing – and you can with the New-MailboxImportRequest cmdlet. The Office 365 Import Service was introduced in a test version in late 2015 and became generally available in April 2016. It is used to import information into Office 365 in a variety of formats. The reason why the Import Service exists is simple. It is designed to ingest as much data as possible into Office 365 so that the information is indexed, discoverable, and available for compliance purposes.     A side-effect and benefit for Microsoft is that the data resides in its datacenters. Once inside Office 365, the cost and complexity of extracting the information again to bring it somewhere else means that the data is unlikely to leave. For example, if you move all of your email archives from Veritas Enterprise Vault into Exchange Online archive mailboxes, will you be in a hurry to move them again? Microsoft provides tools to handle ingestion of PST files and SharePoint data. Plans originally existed to allow data from other sources such as Facebook, LinkedIn, and Bloomberg to be packaged and ingested using the Import Service. The current strategy to ingest non-Microsoft data focuses on the use of third-party connectors based on Exchange Web Services that establish links from other data sources to Azure, from where the data can be moved into archive mailboxes. PST files are a popular source for the Import Service. I strongly support any effort to eradicate PSTs as I regard the file format to be obsolete, insecure, and prone to corruption and data... --- ### Lenovo to Bundle Microsoft Productivity Apps on Android Devices - Published: 2016-08-23 - Modified: 2024-09-04 - URL: https://petri.com/lenovo-bundle-microsoft-productivity-apps-android-devices/ - Categories: Mobile - Article Type: News Microsoft and Lenovo announced an expansion of their strategic relationship: Under the terms of the deal, Lenovo will bundle Microsoft's productivity apps on millions of its Android-based handsets and tablets over the next several years. Microsoft and Lenovo announced an expansion of their strategic relationship: Under the terms of the deal, Lenovo will bundle Microsoft's productivity apps on millions of its Android-based handsets and tablets over the next several years. The deal does not encompass all of Lenovo's Android devices. The announcement mentions "select Lenovo devices" and "Lenovo's premium devices. " But it also includes Lenovo's Moto-branded handsets too. "Microsoft is thrilled that our productivity apps will be pre-installed on Lenovo's premium devices," Microsoft vice president Nick Parker is credited with saying in a prepared statement. "The marriage of Microsoft's apps and Lenovo's Android-based devices will enable customers around the world to be more productive, more connected and achieve even more. " Likewise, the deal doesn't encompass all of Microsoft's Android productivity apps. The announcement notes that "some" of Microsoft's productivity apps will be bundled, and a few---Microsoft Office (which presumably means Word, Excel and PowerPoint Mobile; it's not clear if Outlook is included), OneDrive and Skype---are called out explicitly. "Our collaboration with Microsoft will create new opportunities for our customers to take advantage of some of Microsoft's most popular apps," Lenovo's Christian Eigen said in prepared statement of his own. "Installing Microsoft apps and services on our devices will bring additional value to consumers around the globe. " For Microsoft, the Lenovo partnership expansion is just the latest in a long line of Android hardware maker deals that includes Acer, Asus, HTC, Samsung, Xiaomi, and many others. And like previous deals, this one... --- ### Microsoft Acquires Genee, A Smarter Way To Schedule Meetings - Published: 2016-08-22 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-acquires-genee-smarter-way-schedule-meetings/ - Categories: Microsoft 365 - Tags: Genee, News, Office 365 - Article Type: News Microsoft has announced that they have acquired Genee, a smarter way to schedule meetings that uses artificial intelligence to coordinate meetings between recipients. Microsoft has announced today that the company is acquiring Genee, an AI powered scheduling service for an undisclosed sum. The service makes it easier to schedule meetings with people inside your organization but more importantly, it simplifies the task of coordinating events with those outside of your company. The tool, which will be integrated into Office 365, aims to reduce the time users spend scheduling meetings. It does this by intelligently coordinating the process using your calendar and working with those outside of your company to find a time that works for both parties. The service is initiated by copying Genee (like a personal assistant) on an email to a recipient and then the tool will use your calendar and can email invites on your behalf once it determines the availability of the recipient. The end goal is that Genee reduces the time you spend scheduling a meeting as the service already knows when you are free and allows you to work on tasks other than time management related items. It’s easy to see why Microsoft wanted to buy this company as it fits naturally into their goal of increasing user productivity. The company has not stated when this feature will go live for Office 365 users but seeing as the product has already been built, it shouldn’t be too long before we start hearing about its integration into Office platform. You can read more about Genee here. --- ### Microsoft’s New Patching Philosophy Sacrifices A Few For The Many - Published: 2016-08-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-patching-philosophy-sacrifices-many/ - Categories: Windows 7, Windows 8, Windows Server 2008, Windows Server 2012 - Tags: Patch, Windows - Article Type: Opinion Microsoft is making a big bet by changing how it will patch older versions of Windows with a goal of reducing the complexity of the Windows ecosystem but will it pay off? Earlier this week, Microsoft announced a significant change in its patching strategy for older versions of Windows that includes Windows 7 and Server 2012. Starting in October, the company will be moving to an all or nothing approaching with the release of its updates which for some IT Pros, has made them quite nervous. The company’s new approach for older versions of Windows will now mirror what it does with Windows 10. By issuing monthly patches that are all-encompassing of the previous updates, it will reduce the complexity of provisioning a new machine. This new model will also make it easier to maintain existing machines as there will only be one patch to install each month. But, the downside to all of this, is that IT Pros are losing the ability to individually deploy patches to each machine which has proven to be a useful strategy as Microsoft has released updates that have broken basic functionality. It’s a big change and one that could have executives yelling at IT shops for rolling out a bad patch to their network since they no longer have the ability to restrict unwanted updates. The end goal is to help Microsoft make the release patches more reliable and reduce the complexity of testing. As it stands right now, because a company can block a specific patch, this introduces a new configuration that all future patches need to be tested against. Because there are a significant number of configurations out in the wild, it is... --- ### Leveraging OneNote at Your Company > Use OneNote to manage information, track issues, follow tickets, make project hubs and more. OneNote connects existing documents and data for your team. - Published: 2016-08-19 - Modified: 2024-09-04 - URL: https://petri.com/leveraging-onenote-company/ - Categories: Office - Tags: Leveraging OneNote, Office, Office 365 - Article Type: How To OneNote is a free note-taking program that Microsoft offers to everyone at no charge, and it can be the perfect information management tool for your business. This series will show how to leverage OneNote at your business for project management, note tracking, issue tracking, ticket management, and more. Creating good information management systems can be difficult. Document creation has largely been solved with Word, Excel, and PowerPoint. Business communication has been solved with Outlook and Skype for Business. Yet, many businesses still do not have a solution for managing information which does not fit anywhere. Some examples of this kind of information would be issue tracking, light project management, ticket handling, product summaries, shared team progress and action items. Some large companies understand the importance of keeping on top of issues, tickets, meeting notes, action items, and project management so they have purchased specialized software to manage each task. However, many businesses leave those jobs up to their employees to find their own solutions. This usually means everyone finds their own system that works for them and everyone has a different system. While this works fine when everyone works alone, it can create issues when working in teams. Trusting everyone to manage their own projects and information can empower those who have the proper skills and burden those who do not. Time management should not be an afterthought and avoiding the problem does not make it go away. Microsoft does sell a few products that help with project management, like Microsoft Project. But for many companies those tools are too expensive and cumbersome. OneNote to the rescue OneNote is a free note-taking program that Microsoft offers to everyone at no charge, and it can be the perfect information management tool for your business. OneNote is extremely flexible and can... --- ### The Sams Report EP 52: Anniversary Woes - Published: 2016-08-19 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-52-anniversary-woes/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including more builds of Redstone, Anniversary woes, the best tech support, cameras breaking and a huge change to updates. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including more builds of Redstone, Anniversary woes, the best tech support, and a huge change to updates. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=GBRFlfNR0EY&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: August 19 - Published: 2016-08-19 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-19/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because I'm already planning my next trip, this edition of Short Takes focuses on Windows phone market share, Microsoft's Edge problem, PowerShell coming to Linux and macOS, Xbox One highs and lows, and the next Apple Watch. Unlike the next Apple Watch, this watch doesn't require an iPhone too. Because I'm already planning my next trip, this edition of Short Takes focuses on Windows phone market share, Microsoft's Edge problem, PowerShell coming to Linux and macOS, Xbox One highs and lows, and the next Apple Watch. Gartner: Windows phone tumbles as expected, but Apple is falling too Yes, this one is "news of the obvious," given Microsoft's well-publicized decision to stop marketing and selling its own phones. But, hey, it's still outselling Blackberry 4-to-1 somehow. Analysts from Gartner this week claimed that Windows phone fell to just 0. 6 percent market share in the most recent quarter, down from 2. 5 percent a year earlier. Worse, Android has positively surged somehow, despite already being dominant: Google saw its mobile OS share jump to 86. 2 percent, up from 82. 2 percent a year earlier. So that means it had to be stealing share from more than just Microsoft, and ... sure enough, Apple's share fell year-over-year from 14. 6 percent to 12. 9 percent. In fact, Apple has now experienced three consecutive quarters of falling sales, with sales declining 7. 7 percent in the most recent quarter alone. They can't ship the iPhone 6. something-something---sorry, the "iPhone 7"---quickly enough. "Microsoft isn't alone when it comes to Windows 10's sneaky data mining" Other companies are using Windows 10 to sneakily mine data? I doubt that. Microsoft Edge: The browser we want to love, but can't Brad tried it, and failed... . --- ### Microsoft Open-Sources PowerShell, on Linux -- World Turned Upside-Down - Published: 2016-08-19 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-powershell-linux-richij-1675002/ - Categories: Amazon Web Services, Cloud Computing, Main, Microsoft Azure, PowerShell - Tags: AWS, Azure, DevOps, IT Newspro, Jeffrey Snover, linux, macOS, Microsoft, News, open-source - Article Type: News, Opinion Microsoft PowerShell on Linux and macOS—yes, it’s now open source. If you think the world’s gone mad, you might be right. For die-hard Linux-heads, it’s never going to replace Bash, Perl or Python. But for Microsoft-centric dev/ops types, it promises to be a wonderful widget in the toolbag. Especially as more workloads move to “the cloud.” With the “new” Microsoft, I just don’t know which way is up Microsoft PowerShell on Linux and macOS—yes, it’s now open source. If you think the world’s gone mad, you might be right. For die-hard Linux-heads, it’s never going to replace Bash, Perl or Python. But for Microsoft-centric dev/ops types, it promises to be a wonderful widget in the toolbag. Especially as more workloads move to “the cloud. ” Happy Friday, everyone.  And hold on tight. In today’s IT Newspro, we predict dogs and cats living together. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Some small hyperbole... (more... ) --- ### A First Look At PowerShell on Linux > PowerShell MVP Jeff Hicks offers his insights and analysis of the big announcement that PowerShell is now an open source project. - Published: 2016-08-18 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-powershell-for-everyone/ - Categories: PowerShell - Tags: linux, PowerShell - Article Type: News Microsoft has released a version of PowerShell that will run on Linux, Jeff Hicks takes a closer look at this version of the powerful task-based command-line shell and scripting language. If you had any doubts that the Microsoft of today is vastly different from the Microsoft you grew up with, I think the news out of Redmond today should put those doubts to rest. Microsoft has finally put all the speculation to rest and announced that PowerShell is now an open source project released under the MIT license. This is a monumental step for a company long known for it's proprietary ways but for those of us in the PowerShell community it doesn't come as a total surprise. PowerShell creator and Microsoft Technical Fellow Jeffrey Snover has never hidden his hopes of  PowerShell open source. As you might imagine, for a company like Microsoft that is not a quick process. But today everything changes. Even though I'm talking about PowerShell going open source, this is possible because Microsoft has invested significant resources in developing a Core edition of the . NET Framework. The . NET Core Framework is also an open source project. If you are interested in learning more visit the DotNetFoundation. org site. I mention this because the open source version of PowerShell is based on the . NET Core which means (as it always has) if there are limitations or dependencies in . NET there will be limitations in PowerShell. But don't take that as a criticism it is merely an observation. So what do we get? Microsoft is announcing that you can now run an open source version of PowerShell on these platforms: Windows 8. 1/Windows Server 2012 R2 Windows 10/Windows... --- ### Microsoft Is Open-Sourcing PowerShell, Bringing It to Linux and macOS - Published: 2016-08-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-open-sourcing-powershell-bringing-linux-os-x/ - Categories: PowerShell - Tags: News, PowerShell - Article Type: News Microsoft has announced today that they will be open-sourcing PowerShell and also bringing the platform to Linux and OS X; an alpha preview is available today. The past couple of years, Microsoft has been slowly becoming a household name in the Linux communities. Everything from working closer with Red Hat to putting SQL Server on Linux has shown the Redmond giant extending an olive branch and now the company is taking yet another step, open-sourcing PowerShell and releasing a Linux variant. With nearly 1 in 3 VMs on Azure running Linux, it’s not a surprise to see the company embracing this community with open arms. Microsoft knows that its cloud platform is the company’s long-term future and they want to do everything they can to get developers building applications on its platform and enterprise customers moving their services to the cloud. With Microsoft bringing . NET Core to Linux, this enabled a PowerShell port as well. Starting today, you can grab an alpha build of the tool that currently supports Ubuntu, Centos, as well as Red Hat and macOS. For those users who are PowerShell experts, this announcement will be welcomed by those who also play outside the world of Windows. With PowerShell becoming available on all major operating systems, the skills learned on Windows can now be used elsewhere, much like Microsoft has done by bringing BASH to Windows; Linux users can bring those skills to Windows. In addition, by going to the open source model for PowerShell, the tool will be exposed to a deeper connection with the community who users it. And because the tool is now being exposed to the community, it will make it easier to extend... --- ### Git for Sysadmins - Using POSH-GIT - Published: 2016-08-17 - Modified: 2024-09-04 - URL: https://petri.com/git-sysadmins-using-posh-git/ - Categories: Windows Server - Tags: GitHub, PowerShell - Article Type: How To Apart from the amusing name, POSH-GIT is a PowerShell module for GitHub supplied as part of Git for Windows. In this Ask the Admin, I’ll show you how to use Git source control via this PowerShell module. Apart from the amusing name, POSH-GIT is a PowerShell module for GitHub supplied as part of Git for Windows. In this Ask the Admin, I’ll show you how to use Git source control via this PowerShell module. If you’ve been following my series on GitHub, you’ll understand the basics of Git, GitHub and how to work with GitHub for Windows, the free GUI tool. Git is an open-source versioning system for code, which when used with a hub - think GitHub - allows developers to collaborate on projects in the cloud. When GitHub for Windows is installed, the PowerShell module for GitHub, Git Shell, is also installed, allowing you to clone repositories, send pull requests, among other things, all from the command line. For more information on Git and GitHub, see What is GitHub? , Create a GitHub Repository, and GitHub for Windows – Installation, Adding Accounts, Committing Changes, and Syncing Repos on the Petri IT Knowledgebase. Make sure that GitHub for Windows is installed, and open the Git Shell by double clicking the Git Shell icon on your desktop. You can alternatively use Import-Module Posh-Git to import the module, but you’ll need to change the working directory, or specify the full path to the posh-git. psm1 PowerShell module file, to the GitHub for Windows LocalAppData directory. Clone a repository To clone a repo from GitHub, you first need the download URI. Open the repo you want to clone in GitHub on the web. On the Code tab, click the... --- ### More PowerShell Filtering Options > PowerShell MVP and trainer Jeff Hicks continues his exploration of filtering in PowerShell and offers up more tips and tricks. - Published: 2016-08-17 - Modified: 2024-09-04 - URL: https://petri.com/more-powershell-filtering-options/ - Categories: PowerShell - Tags: Beginner, PowerShell, where-object PowerShell MVP and trainer Jeff Hicks continues his exploration of filtering in PowerShell and techniques to help you make your filtering more efficient.   In my previous article on filtering with PowerShell, I gave you an introduction to the tools and techniques you will commonly use when filtering. But filtering can also be done with more than the Where-Object cmdlet. Although once you understand that cmdlet, there are a few other ways you can use it that might simplify your life. Starting in later versions of PowerShell, you no longer needed to use a filtering scriptblock with $_. For simple filters you can run an expression like this: get-service w* | where status -eq 'stopped' Simple PowerShell filtering (Image Credit: Jeff Hicks) If you think about it, I'm actually filtering in multiple ways. First, I'm only getting services that start with 'w' and then I am filtering those where the status property is equal to 'Stopped'.   There was no need to add extra characters and for many people this is easy to read. You can use the concept with any sort of simple comparison. Get-Process | where workingset -ge 75mb | sort WorkingSet -Descending Efficient Filtering and Sorting (Image Credit: Jeff Hicks) Here I'm getting all processes where the working set size is greater or equal to 75MB. Note that I perform the sort after the filtering. This is slightly more efficient because I'm not wasting time sorting objects I'm going to discard. If you're filtering needs are more complex then you'll need to turn back to the scriptblock. What you should... --- ### Azure OpInsights vs. System Center Operations Manager - Published: 2016-08-16 - Modified: 2024-09-04 - URL: https://petri.com/azure-opinsights-vs-system-center-operations-manager/ - Categories: Windows Server - Tags: Azure, Cloud, OpInsights, SCOM - Article Type: Overview In today’s Ask the Admin, I’ll compare Azure Operational Insights (OpInsights) with System Center Operations Manager (SCOM), and discover whether OpInsights replaces SCOM. In today’s Ask the Admin, I’ll compare Azure Operational Insights (OpInsights) with System Center Operations Manager (SCOM), and discover whether OpInsights replaces SCOM. OpInsights hit general availability in May 2015 and is part of the Microsoft Operations Management Suite (OMS), which includes products like System Center Configuration Manager (SCCM) and System Center Operations Manager. At first sight, OpInsights might look like it’s a cloud-based replacement for SCOM, but the details are a bit more nuanced. Azure Operational Insights (OpInsights) (Image Credit: Russell Smith) Gather, visualize, and analyze OpInsights is a great solution for enterprises wanting to collect information about their cloud-based or on premise infrastructure, and store large amounts of data that might be impractical on premise – think big data – and then analyze the collected data to provide insight into performance and configuration issues. Primarily an information gathering, analyzing, and alerting tool, OpInsights takes advantage of cheap cloud storage and machine learning services to analyze data in ways that traditional on premise operations management solutions haven’t been able to. OpInsights allows organizations to visualize collected data, provides forecasting, tending, and recommendations based on machine learning and best practices from Microsoft. Solutions OpInsights Solutions can be added to help manage storage capacity, detect malware, track changes to server configuration, monitor server patching, alert management, Active Directory best practices, and much more. The OpInsights team is also working on adding new Solutions all the time. But it’s worth noting that some Solutions... --- ### Outlook for iOS & Android Is Dumping AWS and Heading for an All-Microsoft Infrastructure in Q3 - Published: 2016-08-16 - Modified: 2024-11-19 - URL: https://petri.com/outlook-ios-android-dumping-aws-q3/ - Categories: Exchange Server, Microsoft 365 - Tags: Acompli, ActiveSync, Android, AWS, Azure, EAS, Exchange on-premises, Exchange Online, Gmail, iOS, Office 365, Outlook app, Outlook replaces aws - Article Type: News By the time Microsoft Ignite happens in September 2016, the Outlook app for iOS and Android will have an all-Microsoft infrastructure. The Amazon-based cache is being replaced by a new architecture that is shared by Exchange Online, Exchange on-premises and non-Microsoft email servers like Gmail. It’s a big change and it’s happening now. By the time Microsoft Ignite happens in September 2016, the Outlook app for iOS and Android will have an all-Microsoft infrastructure. The Amazon-based cache is being replaced by a new architecture that will be shared by Exchange Online, Exchange on-premises and non-Microsoft email servers like Gmail. It’s a big change and it’s happening now.     When Microsoft bought Acompli in November 2014, I wrote that the deal had transformed their mobile email strategy because it allowed them to move away from some of the restrictions that exist in the Exchange ActiveSync (EAS) protocol. Acompli used EAS to access Exchange mailboxes, but only to fetch message data for interim processing on Amazon Web Services (AWS). Being able to process data retrieved from mailboxes allowed Acompli to create features such as the Focused Inbox that proved enormously popular with users. The downside is that potentially sensitive information contained in messages exists outside the control that companies can normally exert over Exchange and remains on an unknown site for up to 30 days. Processing client data on AWS is acceptable when you’re a small startup. When Microsoft rebranded the Acompli apps and relaunched them as Outlook for iOS and Outlook for Android in January 2015, the internet had one of its frequent meltdowns about the security of the data accessed by the clients and how that data was stored on AWS. I concluded then that many commentators had overreacted. To be fair to Microsoft, since the launch of the Outlook apps,... --- ### Huge Change to Patch Tuesday -- IT Admins are Revolting [updated] - Published: 2016-08-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-windows-patch-tuesday-rollup-richij-1674925/ - Categories: Security, Windows 10, Windows 7, Windows 8, Windows Server 2008, Windows Server 2012 - Tags: IT Newspro, News, Patch Tuesday, Security, Windows 10, Windows 7, Windows 8.1, Windows Server, Windows Server Update Services, Windows Update - Article Type: News, Opinion Microsoft to change how older Windows versions get patches. For better or worse, it’ll be more like the Windows 10 way. Next Patch Tuesday, prepare for a single rollup patch. This means you won’t be able to pick and choose the patches that work for you. And that’s good, because… um, reasons. Nadella visualizes a monthly rollup Microsoft to change how older OS installs get updates.  From September, it’ll be more like the Windows 10 way of servicing. So on the next Patch Tuesday, get set for one single rollup update. This means you’ll no longer be able to select the patches that work for you. And that’s a really good thing, because... uhh, reasons. Well, it certainly makes Microsoft’s life easier, which is good, right? Right? In today’s IT Newspro, IT sysadmins brace for more update uncertainty, patch panic, and Tuesday terrors. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Coreographing success... (more... ) --- ### Microsoft To Change How It Updates Windows 7/8.1 and Server 2008 R2/2012 Starting In October - Published: 2016-08-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-change-updates-windows-78-1-server-2008-r2-2012-starting-october/ - Categories: Windows Client OS, Windows Server - Tags: News, Windows, Windows 7, Windows 8.1, Windows Server - Article Type: News Microsoft is making big changes to the way that it will release patches for many of its popular Windows products that will impact how IT Pros patch their environments. Microsoft is making changes to how it delivers updates to Windows 7 SP1 and Windows 8. 1, and also Windows Server 2008 R2 and 2012 and the impact will be felt by every IT Pro. Starting in October of 2016 and onward, Windows will be releasing a single monthly roll-up that will address both security and reliability issues in a single update. This new update model will be delivered via Windows Update and the Microsoft Update Catalog. Much like Windows 10, each update will supersede the previous month’s release which means that there will always only be one update that you need to download to patch your system. The company says that they will also retroactively add prior patches too so that these monthly updates eventually become fully cumulative; it may take a year or more for the process of previous patch inclusion to be completed. Also starting in October, the company will release a single security-only update as well. This update will combine all the security patches and bundle them together for a single release but unlike the monthly roll-up, the security-only update will only include patches for that month. These updates will be available to download from WSUS, SCCM, and the Microsoft Update Catalog. What this means is that individual patches will no longer be available and that to patch your system, you must accept all the releases for the month in the single patch. The company will be changing their documentation as well to match the style introduced with Windows 10 to provide consolidated... --- ### Filtering PowerShell > PowerShell is all about working with objects. But you need to be smart about and only work what you really need. This is the purpose of filtering. - Published: 2016-08-15 - Modified: 2024-12-03 - URL: https://petri.com/filtering-powershell/ - Categories: PowerShell - Tags: Beginner, PowerShell, where-object - Article Type: How To PowerShell is all about working with objects. Some commands can return hundreds if not thousands of objects and often you only really need small subset. To get the small subset, you need to perform some type of filtering. PowerShell is all about working with objects. (If you are fairly new to PowerShell objects, read Introduction to Objects in PowerShell on Petri. ) The commands you run in PowerShell such as Get-Service or Get-ADUser are designed to connect to something and create an object that represents something you care about such as a service or user account. Most of the time we don’t care how these commands work, only what the output looks like and what we can do with it. Some commands can return hundreds if not thousands of objects and often you only really need small subset. To get the small subset, you need to perform some type of filtering. For many PowerShell users, that means using the Where-Object cmdlet, which has an alias of where. There is nothing wrong with using Where-Object as long as you understand the implications. Without going into the intricate details of the PowerShell pipeline, consider that Where-Object can’t really do anything until the preceding command finishes. This means that if the first command takes 30 seconds to complete and then you want to filter, you have to wait. Depending on the preceding command you may not have any choice. But when I train IT pros in PowerShell, I always stress the importance of filtering as early in your pipelined expression as you can. This is often referred to as filter left. Filtering Parameters The interesting thing about filtering is that it doesn’t require a –filter parameter like you see with Get-CimInstance or... --- ### What You Need to Know About Converting Desktop Apps to UWP - Published: 2016-08-15 - Modified: 2024-09-04 - URL: https://petri.com/need-know-converting-desktop-apps-uwp/ - Categories: Windows Client OS - Tags: Desktop App Converter, UWP, Windows 10 - Article Type: Overview In today's Ask the Admin, I'll look at some of the benefits of converting Win32 desktop apps to run in a UWP wrapper that can be distributed via the Windows Store in Windows 10 Anniversary Update. Windows Store apps In today's Ask the Admin, I'll look at some of the benefits of converting Win32 desktop apps to run in a UWP wrapper that can be distributed via the Windows Store in Windows 10 Anniversary Update. With the Windows 10 Anniversary Update now dropping via Windows Update for Microsoft customers in the U. S. , you might find some surprises in the Windows Store in the form of apps that were previously Win32 only. Microsoft would prefer that apps are written or rewritten for UWP, but at the same time acknowledges not all organizations will be able to port applications. This might be due to a lack of resources, technical limitations of UWP, or because the original app developers are no longer in business to undertake a complete rewrite. As such, the ability to package Win32 apps for the Windows Store provides a temporary bridge in scenarios where apps cannot be converted to native UWP. Desktop App Converter Preview (Project Centennial) Сodenamed Project Centennial, the Desktop App Converter Preview for Win32, Windows Forms, and WPF-based apps allows developers to run existing installers through the tool, resulting in an UWP AppX package. The converter makes "before" and "after" snapshots of the OS, capturing changes made to the filesystem and registry as the installer executes. The Win32 app also receives an AppX package identity as part of the conversion process, allowing it to call UWP APIs. The Win32 app’s code isn’t changed by the converter,... --- ### Microsoft Sunsets Azure RemoteApp, Recommends Citrix XenApp ‘Express’ - Published: 2016-08-15 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-sunsets-azure-remoteapp-recommends-citrix-xenapp-express/ - Categories: Microsoft Azure - Tags: Azure, Citrix, News, RemoteApp - Article Type: News Microsoft has announced that they will be sunsetting Azure RemoteApp and is recommending users switch to a product made by Citrix. Several years ago, if Microsoft announced that they would be dropping one of their own, home-grown products, for an application made by a competitor, the idea would have seemed preposterous. But that’s what is happening as the company has said that they will be phasing out Azure RemoteApp in favor of Citrix Xenapp 'express'. The announcement, which you can read here, states that this is the next step for Microsoft to expand its partnership with Citrix where the two companies previously teamed up to make it easier move customers to Azure. In this newly announced arrangement, Microsoft will begin promoting XenApp 'express' (product is still in development and the name may change), with Azure RemoteApp reaching end of life on August 31, 2017. Azure RemoteApp allows users to access Windows applications from a variety of devices but this functionary will be replaced, in its entirety, by 'express', which Citrix is currently developing. As Mary Jo notes, when RemoteApp was announced, Citrix was not happy about Microsoft moving into its space and considering the partnership the two companies have formed, it looks like they have made peace. If you are currently using RemoteApp, you have likely received an email by now noting the upcoming changes to the service and seeing as the retirement of the application is more than a year away, you have time to figure out a migration strategy. Still, this is a big change for Microsoft and how it typically operates but considering the deep relationship the company has with... --- ### Add a Language Pack to Change the Display Language in Windows 10 - Published: 2016-08-12 - Modified: 2024-09-04 - URL: https://petri.com/add-language-pack-change-display-language-windows-10/ - Categories: Windows Client OS - Tags: Windows 10 - Article Type: How To Russell walks through the steps to add a language pack to a Windows 10 machine. As part of the process, a user should temporarily become a member of the local Administrators group. In today's Ask the Admin, I'll show you how to add a language pack to change the UI language in Windows 10. It’s long been possible to change the display interface language in Windows to view menus, dialog boxes, and other user interface items in a language other than that of the base install. The base language of the OS is chosen during the out-of-box user experience phase of setup when you start the device for the first time. But later you can change the display language. You can download Multilingual User Interface (MUI) language packs using the Settings app in Windows 10. Some language packs require English as the default base language, and others can be installed on top of any base language. For details about the available languages, see Microsoft’s website here. Download and install a language pack Language packs in Windows 10 are installed per user. The following instructions don’t make a system wide configuration change, so first decide which user requires a different language, and if they’re not already, temporarily make the user a local administrator. If you’re not sure whether the user is a member of the Administrators group, have the user log in and follow the instructions below: Type cmd and press ENTER in the search box on the taskbar. Type whoami /groups and press ENTER. Check for Administrators in the groups listed. If BUILTINAdministrators is not in the list, make the user an administrator as follows: Log on as a local administrator... . --- ### Testing PowerShell with Pester > PowerShell expert and MVP Jeff Hicks demonstrates how you can use Pester to test your server and network configuration. - Published: 2016-08-12 - Modified: 2024-09-04 - URL: https://petri.com/testing-powershell-with-pester/ - Categories: PowerShell - Tags: Advanced - Article Type: How To Learn some useful tips for using the open source project called Pester with PowerShell, which you can use for testing and more. If you are an experienced PowerShell user, chances are you have heard of Pester. This is an open source project that Microsoft started shipping as part of Windows 10. I'm not going to try and teach Pester here, although it really isn't that difficult to pick up. But I wanted to show you some ways to use Pester that you might not have considered. Pester is typically designed for software testing. You build a test script to run through different parts of your code and Pester validates it. This is a quick way to verify you haven't broken something while introducing something new. A traditional Pester test (Image Credit: Jeff Hicks) But there's no reason we can't use the Pester logic to test other things. Perhaps that status of a critical server. The centerpiece of Pester is a logical test of "If some condition meets some test it should be some value". It's not that difficult to write a test that says "the DNS service should be running. " Here's a simple Pester test to validate the state of my primary Hyper-V server. #requires -version 5. 0 $computername = "CHI-P50" Describe $Computername { It "should have Hyper-V Feature installed" { Get-windowsFeature -Name Hyper-V -ComputerName $Computername | Should Be $True } It "Hyper-V service should be running" { $s = Get-Service -Name vmms -ComputerName $computername $s. status | Should Be "running" } It "DNS service should be running" { $s = Get-Service -Name dns -ComputerName $computername $s. status |... --- ### The Sams Report EP 51: Getting Edgy With Redstone 2 - Published: 2016-08-12 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-51-getting-edgy-golden-keys/ - Categories: Podcast - Tags: The Sams Report - Article Type: Overview On this episode, I cover all of the Microsoft news this week including the first Redstone 2 build, playing with OneClip, and those mysterious cloud files are making progress. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including the first Redstone 2 build, playing with OneClip, golden keys and those mysterious cloud files are making progress. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=UTKOp32_8gs RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: August 12 - Published: 2016-08-12 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-12/ - Categories: Mobile - Tags: News - Article Type: Overview Because I can't stop interrupting Brad today, this edition of Short Takes focuses on the London police and their love affair with Windows XP, Xbox One success in July, Russia fines Google for antitrust abuses, and South Korea thinks about it, and much more. It's really getting hard to keep track of all of Microsoft's Azure services these days. Because I can't stop interrupting Brad today, this edition of Short Takes focuses on the London police and their love affair with Windows XP, Xbox One success in July, Russia fines Google for antitrust abuses, and South Korea thinks about it, and much more. 27,000 London police PCs are still using Windows XP Over 27,000 London police PCs are still running on Windows XP, a 15-year old operating system that Microsoft has not supported since April 2014. As a result, the London The Metropolitan Police are paying for security patches instead of receiving free updates with more-current software. "Operating Systems age more like milk than wine, and Windows XP is well past its sell-by date," London Assembly Member Andrew Boff says. "My major concern is the security of Londoners’ information on this dangerously out-of-date system, but I would also like to know how much money the Met have wasted on bespoke security updates. " Fair concern. "Microsoft debug policy leak could make Windows Phones useful again" Yes, I thought it was an Onion headline too. Xbox One was the number one selling console in the U. S. in July Which is interesting, since the Xbox One S didn't start shipping until August. Anyway, NPD reported a rare win for Microsoft---Sony's PS4 has consistently outsold it since the two consoles launched in late 2013---in July, most likely because Microsoft put its original Xbox... --- ### Preview for NVIDIA-Powered Azure VMs Begins - Published: 2016-08-11 - Modified: 2024-11-19 - URL: https://petri.com/preview-nvidia-powered-azure-vms-begins/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machines, graphics, HPC, N_Series, NC-Series, NV-Series, NVIDIA, virtual machines - Article Type: Overview Microsoft has launched a preview for a new set of NVIDIA-powered virtual machines in Azure that can be used for compute-intensive and graphic-intensive workloads. See the specs, pricing and availability. Microsoft has launched a preview for a new set of NVIDIA-powered virtual machines in Azure that can be used for compute-intensive and graphic-intensive workloads. The Need for NVIDIA To be quite frank, almost every sizing job that I have done for a customer has been satisfied with A-Series, D-Series, and sometimes F-Series Azure virtual machines. Rarely have I been asked about something more powerful. But there have been occasions where people have asked for something a little different. And a few times I have been asked if Microsoft had any virtual machines with NVIDIA chipsets. The request for NVIDIA hardware wasn’t to power some game in the cloud – although maybe this could power game streaming. The first reason has to do with graphics acceleration. Some “desktop” workloads do make use of graphics processing units (GPUs). Two examples are: Desktop virtualization: Remote Desktop Services and Citrix can leverage a GPU to provide a better graphical solution. Graphics-intensive applications: I’ve been asked a few times about running applications like AutoCAD in Azure. This wasn’t possible because accessing AutoCAD remotely would require a powerful GPU on the remote server. The second reason that GPUs are requested is because a GPU is a very powerful number cruncher. This makes it perfect for processing a lot of data, such as analyzing whale song (one of the most interesting scenarios that I’ve ever heard of, which I learned about at a Petri meetup at TechEd North America) or simulating cancer treatments. This is the... --- ### Always Encrypted Reaches General Availability in Azure SQL Database - Published: 2016-08-11 - Modified: 2024-09-04 - URL: https://petri.com/always-encrypted-reaches-general-availability-azure-sql-database/ - Categories: Cloud Computing - Tags: Azure, Cloud, SQL Server - Article Type: Overview Always Encrypted is a feature of SQL Server 2016 that Microsoft released in Azure SQL Database in June 2016. Russell describes what Always Encrypted technology is and how it works with Azure SQL Database. In today's Ask the Admin, I'll explain what Always Encrypted technology is in Microsoft SQL Server and how it works with Azure SQL Database. As Brad Sams reported back in October 2015, Azure SQL Database – Microsoft’s SQL Server as a Service offering in the cloud – has received an upgrade with the addition of Always Encrypted technology. Always Encrypted is a feature of SQL Server 2016, which also reached general availability recently on June 1, 2016, and protects sensitive data. Unlike other database encryption technologies, Always Encrypted allows data to be encrypted in the client application without sending the encryption keys to SQL Server, proving a separation of roles between data owners and those that are charged with managing the data. I. e. , SQL Server administrators. Always Encrypted can be useful in different scenarios, but has clearly been designed to allow organizations to store sensitive data on database servers that are not within their direct control, for instance, when SQL Server is hosted in the cloud. Because the encryption keys are never sent to the server, organizations can be sure that data stored in the cloud cannot be decrypted by unauthorized actors. Transparent to client applications, Always Encrypted uses a driver installed on client computers that automatically encrypts and decrypts data as it passes between the server and client application, ensuring that no changes to queries are required for client applications to work with this new feature. At release, Always Encrypted is supported by the . NET... --- ### Microsoft Backs Down From Skylake Support Limits - Published: 2016-08-11 - Modified: 2024-09-04 - URL: https://petri.com/skylake-windows/ - Categories: Windows 10 - Article Type: News Back in January, Microsoft announced a stark new hardware support policy for Windows that was secretly driven by rampant reliability issues with Intel's "Skylake" chipsets. But the software giant will soon reveal that it will back down from its previous limits and will instead support Windows 7 and 8.1 on Skylake normally. Back in January, Microsoft announced a stark new hardware support policy for Windows that was secretly driven by rampant reliability issues with Intel's "Skylake" chipsets. But the software giant will soon reveal that it will back down from its previous limits and will instead support Windows 7 and 8. 1 on Skylake normally. "This policy change affects our 6th generation Intel Core (Skylake) support policy for Windows 7 and Windows 8. 1 devices," Microsoft documentation notes. "It applies only to Windows 7, Windows 8. 1, and Windows Embedded 7, 8, 8. 1. " Back in January, Microsoft said that it would alter how it supports Windows 7 and 8. 1 going forward, mid-stream, and at the time I alleged that Microsoft was doing so in order to force more businesses to upgrade to Windows 10. That strategy, obviously, has not worked. "Windows 7 was designed nearly 10 years ago before any x86/x64 SOCs existed," Microsoft's official explanation noted. "For Windows 7 to run on any modern silicon, device drivers and firmware need to emulate Windows 7's expectations for interrupt processing, bus support, and power states- which is challenging for WiFi , graphics, security, and more. As partners make customizations to legacy device drivers, services, and firmware settings, customers are likely to see regressions with Windows 7 ongoing servicing. " What I was told by highly-placed sources at Microsoft, however, was something much darker: Intel had delivered its buggiest-ever chipset in Skylake, and Microsoft struggled through the second half of 2015 to adjust Windows 10 so... --- ### Google Buys Orbitera as It Continues to Chase Amazon and Microsoft in The Cloud Race - Published: 2016-08-11 - Modified: 2024-11-19 - URL: https://petri.com/google-buys-orbitera-continues-chase-amazon-microsoft-cloud-race/ - Categories: Amazon Web Services, Cloud Computing, Google Cloud Platform, Microsoft Azure, Uncategorized - Tags: Amazon, Gartner, Google, Microsoft, News - Article Type: News Google is continuing to expand its infastracutre to better compete with Amazon and Microsoft; Gartner is starting to recognize the company's new initiatives and has listed them as a visionary. When it comes to cloud services, Amazon and Microsoft are the leaders and Google is a distant third. But, during the past year or so, Google has been slowly ramping up its efforts to become a bigger player in this segment and by acquiring Orbitera, they are taking another small step to taking market share away from Amazon and Microsoft. Orbitera has announced that they have been acquired by Google; the company specializes in making it easier to buy and sell cloud based enterprise software and services. With this acquisition, Google is streamlining its sales and services model which is a critical step for ramping up its cloud platform and making it easier to service its customers. Gartner has recently released its IaaS rankings where it listed Amazon as the industry leader with Microsoft close behind. Both of these companies were in the upper right quadrant and were termed ‘leaders’ whereas Google was ranked third and is listed as a ‘visionary'. From the report by Gartner, only Google is listed in the bottom right quadrant with all other players, like IBM, VMWare and many others listed as niche players. Seeing as Google is the only vendor to be in the visionaries quadrant shows that they are the challenger to watch as they are ramping up services and infrastructure to take on both Microsoft and Amazon. Amazon, Microsoft and now Google are spending billions to build out their cloud services as that segment of the industry continues to grow rapidly. With only two,... --- ### Create a Self-Signed Certificate Using PowerShell - Published: 2016-08-10 - Modified: 2024-09-04 - URL: https://petri.com/create-self-signed-certificate-using-powershell/ - Categories: Security - Tags: PKI, PowerShell, Security - Article Type: How To Russell demonstrates how to use PowerShell to quickly create a self-signed certificate, which are handy to use in test scenarios where a certificate is a requirement. In today’s Ask the Admin, I’ll show you how to quickly create a self-signed certificate. Self-signed certificates are not recommended for use in production environments, but come in handy for test scenarios where a certificate is a requirement but you don’t have the time or resources to either buy a certificate or deploy your own Public Key Infrastructure (PKI). Create a self-signed certificate using PowerShell (Image Credit: Russell Smith) But generating self-signed certificates in Windows has traditionally been a bit of a pain, at least if you didn’t have Visual Studio or IIS on hand, as both these products include the ability to generate self-signed certificates. The makecert command line tool was otherwise the "go to" tool, but was only available as part of the Windows SDK, which is a hefty product to download and install just for the sake of using makecert. Starting in PowerShell version 4. 0, Microsoft introduced the New-SelfSignedCertificate cmdlet, making it much easier to create self-signed certificates. To get started, you’ll need a Windows device running PowerShell 4. 0 or higher. Open a PowerShell prompt. In Windows 10, type powershell in the search dialog on the taskbar, right-click Windows PowerShell in the list of app results, select Run as administrator from the menu and then enter an administrator username and password. The New-SelfSignedCertificate can only install certificates to the My certificate store, and that requires local administrator rights on the device. If you’re running a different version of Windows, check the... --- ### Microsoft Windows UEFI Secure Boot -- Insecure by Design? - Published: 2016-08-10 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-windows-uefi-secure-boot-richij/ - Categories: Main, Mobile, Security, Windows Client OS, Windows Server - Tags: IT Newspro, News, Secure Boot, Security, UEFI, Windows, Windows Server - Article Type: News, Opinion Microsoft Windows Secure Boot has a big problem. It’s no longer secure, and can’t be fixed—or so say a pair of security researchers who found the issue. Apparently, Microsoft created a secret backdoor, for internal QA use. But two Ring Of Lightning researchers uncovered the so-called “golden key.” Redmond loses control of “golden key,” and is said to be unable to fix it Microsoft Windows Secure Boot has a big problem. It’s no longer secure, and can’t be fixed—or so say a pair of security researchers who found the issue. Apparently, Microsoft created a secret backdoor, for internal QA use. But two Ring Of Lightning researchers uncovered the so-called “golden key. ” Now that the cat’s out of the bag, IT can’t rely on UEFI and Secure Boot to prevent boot-time malware, such as bootkits. Oops. The researchers also say that efforts to fix the problem are in vain. In today’s IT Newspro, we unlock the story. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Reimagining a 1970s-style home computer... (more... ) --- ### Troubleshooting Azure ARM Virtual Machines - Published: 2016-08-10 - Modified: 2024-09-04 - URL: https://petri.com/troubleshooting-azure-arm-virtual-machines/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machines, troubleshooting, virtual machines - Article Type: How To Aidan walks through how to use the built-in tools for troubleshooting faulty virtual machines in Azure: diagnose tools, activity logs, resource health, boot diagnostics, reset password, redeploy, and support request. This post will show you how to use the built-in tools for troubleshooting faulty virtual machines in Azure. Background No matter what platform that you use – physical servers, Hyper-V, vSphere, Azure, or AWS – sometimes a machine starts to act up a little. Veteran admins know the pain of working with a faraway server when remote desktop fails to connect – you either hope you still have the ability to reboot the machine remotely or that someone with administrator rights is in the locality. But what if an Azure virtual machine starts to misbehave? What do you do then? As a tenant in Azure, you have no access to the fabric. You cannot see if a localized host issue is breaking your virtual machine. Your only ways to connect to the machine are via PowerShell and remote desktop – you don’t have the Hyper-V Connect utility for console access. Luckily, Microsoft gave us a set of tools for troubleshooting virtual machines in Azure. ARM versus ASM Microsoft is not putting pressure on customers to migrate from ASM deployments, but it is clear from recent developments that Microsoft is focusing feature improvements on ARM, and is either not necessarily bringing the same capabilities (lesser functionality or not at all) to ASM workloads. This is the case with troubleshooting virtual machines. If you browse the settings of a classic (ASM) virtual machine then you will see the following troubleshooting options: Troubleshooting options for Azure classic... --- ### Backup Options for Office 365: SharePoint and OneDrive for Business - Published: 2016-08-09 - Modified: 2024-09-04 - URL: https://petri.com/backup-options-office-365-sharepoint-onedrive-business/ - Categories: Cloud Computing - Tags: Backup, Cloud, Office 365 - Article Type: Opinion In today’s Ask the Admin, I’ll look at why you might need to back up data stored in the cloud and two options for backing up Office 365. In today’s Ask the Admin, I’ll look at why you might need to back up data stored in the cloud and two options for backing up Office 365. Backup in the cloud. Let’s start with that because when you say it out loud, you might pause and think, is a backup of all my cloud data something I really need? Microsoft has several mechanisms in place to deal with data loss, but they're more about helping Microsoft meet its service level agreements (SLA) than helping you restore deleted data. Location Redundancy, Previous Versions, and Recycle Bin Covering its own back, Microsoft spreads your files around different datacenters, so if an outage or disaster should occur at one, data is still available at another geographical location in the same region. Additionally, OneDrive for Business and SharePoint support previous versions, allowing users to roll back to previously saved versions of documents. Deleted documents can be restored from the Office 365 portal for up to 30 days, assuming they haven’t been manually purged from the Recycle Bin. Offline Synchronization Is Not Backup While files often get synchronized to client devices so that users can work offline, the cloud data represents a single source of truth, i. e. , cloud storage hosts master copies of files, maintaining up-to-date versions of files that are edited offline and across different devices, to avoid situations where multiple versions of files are generated, and any one of them could be deemed the most current – think email attachment... --- ### New Azure IaaS Features Announced for August 2016 - Published: 2016-08-09 - Modified: 2024-09-04 - URL: https://petri.com/new-azure-iaas-features-announced-august-2016/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, IaaS, networking, virtual machines - Article Type: News In late July and into August 2016, Microsoft is releasing new IaaS features and making improvements for Microsoft Azure that will interest IT pros. Aidan summarizes some of the most interesting ones. Microsoft announced a number of new Azure features that would be coming online during the end of July and the start of August. This post will summarize the IaaS features that IT pros will be interested in. New Azure Regions in the USA Azure is continuing to grow, enabling Microsoft to meet the ever-growing direct and indirect market demand for their cloud services. Two new regions (a location with 1 or more Azure data centers) have been made generally available. West US 2 and West Central US were opened, bringing the number of generally available regions to 26 and the number of announced regions to 34. Both of the new regions are paired, meaning that one replicates to the other if you choose to enable replication, for example, geo-redundant storage. Azure In-Place VM Migration Did you know that Azure doesn’t have Live Migration. Yes; the world’s biggest and most advanced deployment of Hyper-V doesn’t have the one feature (introduced in Windows Server 2008 R2) that made Hyper-V acceptable to enterprises. That will stun many IT pros – we take Live Migration for granted when we are doing planned maintenance. I can pause a host, drain it of all machines, and do my work without causing any downtime to the services running in those migrated machines. But Azure is different; Azure sends us emails every now and then to let us know that host maintenance in our region is scheduled to start on Day X, end on Day Z,... --- ### Controlling Password Replication on Read-Only Domain Controllers - Published: 2016-08-08 - Modified: 2024-09-04 - URL: https://petri.com/controlling-password-replication-read-domain-controllers/ - Categories: Active Directory (AD) - Tags: Active Directory, Security, Windows Server - Article Type: How To Learn how to change which users can have their account credentials cached on read-only domain controllers (RODC). In today’s Ask the Admin, I’ll show you how to change which users can have their account credentials cached on read-only domain controllers (RODC). Windows Server 2008 saw the introduction of RODCs to address some of the security risks of placing DCs in locations that lack the physical security of centralized datacenters. Read-only copies of the Active Directory (AD) database partitions and SYSVOL folder are hosted on RODCs to prevent attackers making global changes to AD. When only a RODC is present on the local subnet, users are authenticated against a writeable DC, even if it’s located across a wide area network. But it’s possible to cache credentials of accounts that use the local branch office networks to improve login speed and reduce network traffic. Additionally, there’s a deny list preventing password caching of sensitive AD accounts, such as the domain administrator account. For more information on RODCs, see Deploy a Read Only Domain Controller on the Petri IT Knowledgebase. You can also modify which AD attributes are replicated to RODCs using the filtered attribute set (FAS). Cache credentials on an RODC To perform the instructions below, you must have an existing AD domain with at least one RODC. Log in to any domain controller with an account that has permission to modify AD group membership. Open Server Manager from the Start screen. In Server Manager, select Active Directory Users and Computers (ADUC) from the Tools menu. Allowed RODC Replication Group in Windows Server... --- ### What is Azure Log Analytics (OMS)? - Published: 2016-08-08 - Modified: 2024-09-04 - URL: https://petri.com/azure-log-analytics-oms/ - Categories: Cloud Computing - Tags: Azure, Log Analytics, monitoring, OMS, Systems Management - Article Type: Overview Aidan explains a bit of the history of how System Center Advisor (SCA) has evolved into Azure Log Analytics (OMS). Microsoft is rapidly adding solutions to Log Analytics (OMS) so it can eventually replace SCOM. This article will introduce you to a fast growing feature in Azure called OMS that you can use to manage server deployments in Azure, but also on-premises, in Amazon Web Services (AWS), and pretty much anywhere. What is OMS? It’s fair to say that understanding what Log Analytics (OMS) is has been made difficult by Microsoft marketing. Let’s go back in time to the origins of this service and start there. Many moons ago, when the term System Center was still new, Microsoft had started talking about creating new ways to manage servers and services. Traditional monitoring solutions that were pretty much limited to ping and 80% CPU or RAM utilization had long proven how useless they were. The business valued services, and service health & performance weren’t necessarily tied to that of a single server, especially not just a couple of uninformative metrics. System Center was born and we all know that story. A lesser known story is that Microsoft created an online service called System Center Advisor (SCA), which had an ever-changing route to market. SCA was interesting because it was operated using the monitoring-as-a-service concept. Microsoft managed the tool and the knowledge/expertise, and we deployed the agents and used the information. SCA didn’t do classic monitoring – that was the role of System Center Operations Manager (SCOM). Instead, SCA did best practices analysis and supplemental service monitoring. For example, it would monitor SQL and use current expertise to advise you on configurations and performance. The... --- ### Delta Reminds Us Of The Importance Of Disaster Recovery - Published: 2016-08-08 - Modified: 2024-09-04 - URL: https://petri.com/delta-reminds-us-importance-disaster-recovery/ - Categories: Cloud Computing - Tags: Delta, Disaster Recovery, News - Article Type: News Delta is experencing a global outage of its computer system becuase of a power outage at its headquarters which raises the question as to why they don't have a backup facility located in another part of the country. If you are traveling today and your plans involve flying on Delta, the news out of Atlanta isn’t just bad, it could outright ruin your entire week or vacation. Because of a power outage, Delta is grounding thousands of flights and is warning that the impact could be felt for days as the company attempts to bring its service back online. Starting at about 2:30AM ET, the company says a power outage knocked its computer system offline around the globe. While the company is not saying when the service will be back up and running to full capacity, they are offering waivers (change your flight with no penalty) between August 8 and August 12. An outage of this scale is impacting thousands of travelers and is surely ruining business meetings and stopping travelers from reaching their vacation destination. For those who work in the IT sector, this is a hard reminder of the importance to plan for outages and more importantly, the ability to recover gracefully from down time. What Delta is experiencing right now is about as bad as it gets for a company. They are losing revenue, their brand reputation is taking a hit and the outage has been on-going for several hours. What’s surprising here is that a company as large as Delta does not have geo-redundant replication of its datacenters to avoid power outages and other natural disasters so that today's scenario could be circumvented. If this event does nothing else, it will remind other companies that the... --- ### Office Tip: How to Extract Embedded Images from a Word Document - Published: 2016-08-05 - Modified: 2024-09-04 - URL: https://petri.com/office-tip-extract-embedded-images-word-document/ - Categories: Office - Tags: Office, Office 365 - Article Type: How To This handy Office tip demonstrates two techniques to export images from a Word document. In today's Ask the Admin, I have a tip for quickly extracting all the images from a Microsoft Word document. Images embedded in Word documents sometimes need to be removed but saved for later. It may be because you prefer to work with just a text document and enter placeholders for the images, or that before publishing a document, via WordPress for example, manually pasting the document into the WordPress editor requires that images be removed and uploaded separately. Word does allow posts to be published directly to WordPress but doesn’t offer all the features of the WordPress web-based GUI. Note that the instructions in this article refer to Office 2016 running on Windows 10. Zip Extraction Method If you are using a newer version of Word – Office 2007 or later – the default file format is Office Open XML (OOXML), which is essentially a zip file that also contains the images embedded into the document. If you are working with a different file format in Word, you’ll need to select Save As from the File menu and save the document as a Word Document (*. docx) before you can extract images. Once the file is saved in *. docx format, all you need to do is change the file extension from *. docx to *. zip. Make sure the file is not open in Word, locate the file in File Explorer (WIN+E) and make sure that you can see the file’s extension. If file extensions are not visible, click View... --- ### The Sams Report EP 50: Redstone in 2017 and 2016 - Published: 2016-08-05 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-50-redstone-2017-2016/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including now more feature releases this year, cutting features from Windows 10 Pro, Anniversary update and Xbox One S release. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including now more feature releases this year, cutting features from Windows 10 Pro, Anniversary update and Xbox One S release. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=Tl1FATYtEuk&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: August 5 - Published: 2016-08-05 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-5/ - Categories: Mobile - Tags: News - Article Type: Overview Because I still dream in French, this edition of Short Takes focuses on Apple's and Microsoft's new emojis, Nadella's cloud confirmation, Microsoft is helping ex-employees in Finland find jobs, all kinds of bug bounties, and more. Because I still dream in French, this edition of Short Takes focuses on Apple's and Microsoft's new emojis, Nadella's cloud confirmation, Microsoft is helping ex-employees in Finland find jobs, all kinds of bug bounties, and more. Microsoft and Apple take more than slightly different positions with new emojis You may be amused or disturbed to know that Microsoft and Apple both updated their emoji designs and that, in doing so, both changed the emoji used to represent a gun. But let's just say you didn't see this one coming. Apple, taking on an understandable politically correct position and turnings theirs into a toy gun. Microsoft, less understandably, has changed their emoji for a gun, which was previously represented by a toy phaser gun, into an image of a real gun. Wait. What? "Our intent with every glyph is to align with the global Unicode standard, and the previous design did not map to industry designs or our customers' expectations of the emoji definition," a ham-handed Microsoft statement tries to---but fails to---explain. Seems a bit clueless, and more than a bit insensitive---to me. "Is your Windows 10 user account an Administrator? Here's how to quickly find out" If you want to read that article, you probably don't need to know. In interview, Nadella confirms that Microsoft's future is the cloud In an interview with Bloomberg---in which he uttered the word "Windows" exactly one time and never uttered the word "phone" even once---Microsoft CEO Satya Nadella confirmed what we've known for... --- ### Microsoft: Two Windows 10 Feature Updates Coming In 2017 - Published: 2016-08-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-two-feature-updates-coming-2017-no-2016/ - Categories: Windows 10 - Tags: News, Redstone, Windows 10 - Article Type: News Microsoft has indicated that there will be no more feature updates to WIndows 10 in 2016 and that two updates are coming in 2017; one release is likely tied to a hardware refresh. This week, Microsoft released the first major update to Windows 10, called the Anniversary update. This release will be the only feature update this year, according to a TechNet post, and there are two updates scheduled for next year. While not an official roadmap for Windows 10, this is the first indications that information I had been sharing in my podcast and in various post is correct, an update is slated for roughly the first half of 2017 with another release later in the year. Unless the company has changed the codename recently, they are still referring to these releases as Redstone. In the event that Microsoft scrubs their TechNet post, the following line notes the feature updates coming to Windows 10: "Based on feedback from organizations moving to Windows 10, this will be our last feature update for 2016, with two additional feature updates expected in 2017. " Redstone 2, which is currently slated for a Spring release (likely late Spring) is expected to accompany a hardware refresh. Redstone 3 is currently penciled in for a release around the October timeframe but as always, these dates are paper-milestones and will likely change as the development process firms up and we approach the release window. What will these new builds include? While specific details are not ironed out quite yet, the goal is to make Windows more modular as the company truly pursues the Windows as a Service model. This doesn’t mean a subscription fee but, even Windows 10 in its current form,... --- ### Getting Started with Azure SQL Database - Published: 2016-08-04 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-azure-sql-database/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, SQL Server - Article Type: How To Russell shows how to create your first Azure SQL Database, configure a firewall and connect to the database using Visual Studio. In today’s Ask the Admin I’ll show how to provision SQL Server in the cloud using Azure SQL Database v12. There are lots of reasons why you might want to run SQL in the cloud, primary among them is to support cloud-based business applications. There two options for running SQL in the Azure cloud. The first is to use Database as a Service (DBaaS), which is optimized for software-as-a-service (SaaS) app development and is compatible with the most SQL Server features, and that’s what I’m going to show you how to do in this article. Secondly, you could deploy SQL Server in a virtual machine (VM) running in Azure. Azure SQL Database is designed to reduce costs by making it easy to deploy and manage one or many databases to support your applications. Because Microsoft deals with provisioning and updating the high availability back-end infrastructure on which Azure SQL Databases run, and backup, there’s much lower overhead compared to deploying your own VMs and installing SQL Server. The Azure SQL Data Sync service, currently in preview, allows data to be transferred from existing SQL deployments to Azure SQL Databases. Other tools, such as the Microsoft Sync Framework, T-SQL scripting, and the bcp utility can also be used to transfer data to Azure SQL Database. Unlike SQL Server, Azure SQL Database doesn’t need to be licensed but is sold as a service in several tiers and based on two models: Elastic Database or Single Database. The Elastic Database model... --- ### Microsoft Cuts Windows 10 Rollback Period To 10 Days - Published: 2016-08-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cuts-windows-10-rollback-period-10-days/ - Categories: Windows 10 - Tags: News, Windows 10 Microsoft has quietly changed the rollback period in Windows 10 that allows you to move to revert to an older build of Windows from 30 to 10 days. With each new version of Windows 10 that is released, Microsoft has included the ability to roll-back to a prior version of Windows within 30 days of installation. Starting with the Anniversary update that came out this week, the company is cutting that time Window to 10 days. The reason for the reduction, according to Microsoft, is that the telemetry they received said that users will roll-back in the first several days or not at all. In addition, by cutting the length of the roll-back period to ten days, this allows Windows 10 to remove the old files and clear up space on the hard drive. Winsupersite obtained the comment below from Microsoft regarding the change in the rollback period: Based on our user research, we noticed most users who choose to go back to a previous version of Windows do it within the first several days. As such, we changed the setting to 10 days to free storage space used by previous copies Typically, changes like this can be frustating for the end user as the company is reducing the options that a user has about removing significant changes to their operating system. But, in this case, I tend to agree with Microsoft that if you install a new build and it is running poorly on your machine, you will revert quickly and not on the 29th day. But, the company could be a bit more transparent about this change as OS does not flag this change until after 10... --- ### Anniversary Update Turns Windows 10 Into a Dumb Terminal for Continuum - Published: 2016-08-04 - Modified: 2024-09-04 - URL: https://petri.com/anniversary-update-turns-windows-10-dumb-terminal-continuum/ - Categories: Windows Client OS - Tags: Continuum, Mobile, Windows 10 - Article Type: Overview In today's Ask the Admin, I'll look at a new feature, coming in next week's Windows 10 Anniversary Update (AU), that allows Mobile Continuum to connect to the display of any device running Windows 10, without Microsoft's Display Dock or additional peripherals. In the time since I wrote Windows 10 Continuum: Could Your Next Phone Also Be Your Next PC? on Petri, Microsoft has all but killed off its Windows Phone business, and put Windows 10 Mobile into hibernation while it retrenches and improves the OS for its much talked about, but unconfirmed, Surface Phone. Microsoft hopes, with help from its partners, to create devices that will appeal to enterprises looking for security and manageability over and above app availability and consumer appeal. In the article and comments, I noted that I didn’t see the value in Continuum until portable displays become affordable and ubiquitous, and that Microsoft hadn’t spelled out exactly how it sees this technology would be used in practice. I’m still keen to see how portable display technology develops, but using Continuum in this way still requires a keyboard, mouse and hub – too much stuff to carry around. But a new feature in Windows 10 AU allows Continuum for Phones to use PCs and notebooks, and apparently devices running Android too, to be used as dumb terminals when a bigger screen, keyboard and mouse are needed. The Display Dock solution is suitable for enterprises that want to provide workspaces for employees, or enthusiasts and... --- ### Microsoft’s New Excel API Is A Leap Forward For The Spreadsheet Application - Published: 2016-08-03 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-new-excel-api-leap-forward-spreadsheet/ - Categories: Microsoft 365 - Tags: Excel, News, Office 365 - Article Type: News Microsoft has announced the general availability of its REST API for Excel that will extend the capaiblites of the spreadsheet application to new products. Microsoft is announcing today the general availability of its Excel API and on the surface, this seems like another simple feature for Office 365 but under-the-hood, this is a powerful update. Starting today, developers can use the Excel REST API to incorporate complex calculations easily into applications utilizing this new tool. In the corporate world, Excel is a fundamental app that is used in everything from financial reporting and forecasting sales for the upcoming quarter to keeping track of inventory. Quite frankly, many smaller companies are using Excel to operate their entire business and baked inside of these spreadsheets are complex computations that often need to be utilized for other applications to help make business decisions. The Excel API is a tool that developers can now use to access Excel data inside of spreadsheets which means that complex models no longer have to be rebuilt inside of applications. This is a significant improvement to the process flow of utilizing data inside of the Microsoft Graph as it reduces the likelihood of an error being coded into a model and reduces the time to build an application as you no longer need to build the model in the first place. The extensibility that this API brings to Excel will further solidify its position in the corporate world as an indispensable tool for a variety of scenarios. Considering that the API is just now making its way into a production-ready state, it will be interesting to see how quickly developers make use of this... --- ### GitHub for Windows - Branches, Pull Requests, and Conflicts - Published: 2016-08-03 - Modified: 2024-09-04 - URL: https://petri.com/github-windows-branches-pull-requests-conflicts/ - Categories: Cloud Computing - Tags: Cloud, GitHub, Scripting - Article Type: How To In this article about GitHub for Windows, learn how to add branches to GitHub repos, create pull requests and deal with merge conflicts. In today's Ask the Admin, I’ll show you how to add branches to GitHub repos, create pull requests and deal with merge conflicts. In GitHub for Windows – Installation, Adding Accounts, Committing Changes, and Syncing Repos on Petri IT Knowledgebase, I looked at the basics of working with repositories and GitHub’s desktop app. Today, I want to dig a little deeper and show you how to work with branches, generate pull requests to merge changes into the master branch, and resolve conflicts when collaborating with colleagues. Resolving Conflicts When you add collaborators to a repo, you give them permission to upload files to the server, and this sometimes results in two or more users making changes to code that results in conflicts during a sync operation. Good teamwork can help reduce the number of conflicts, but inevitably they will sometimes occur. Resolving conflicts in GitHub for Windows (Image Credit: Russell Smith) If a conflict is detected during a sync operation, you’ll need to resolve it manually, commit the files again, and then resync. Fortunately, GitHub for Windows displays conflicts directly in your files so that it’s easy to see where they’ve occurred and then remediate them. Create a Branch Probably you’ve noticed that by default you are working in the master branch. Branches are a key Git concept that enable workflow, and the master branch is always the final source code for your project that will be deployed. Create a... --- ### Microsoft's Blunder: Upgrade to Office 2016 and Lose Skype for Business - Published: 2016-08-03 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-blunder-upgrade-office-2016-lose-skype-business/ - Categories: Microsoft 365, Office, Office 2016, Uncategorized - Tags: Office 2013, Office 2016, Office 365, Skype for Business, upgrade - Article Type: News For some customers that use Office 365 or Office 2013 and try to upgrade to Office 2016 apps, they may lose Skype for Business. Paying customers using Office 365 or using Office 2013 have been receiving offers to upgrade to Office 2016 since September 2015. The upgrade process itself is quite easy to perform.  All you need to do is download an executable file from your Office 365 dashboard, run it, and wait a few moments. So far so good. However, almost one year after the upgrades began, some issues are still not solved, and in fact, some—like the one described here—are actually a downgrade for paying customers. Take, for example, Skype for Business. Many organizations rely on this application (once called Lync, and that was not the first name it used) for internal phone, chat and collaboration. Skype for Business, although not without small perks, is truly a useful app—especially since it was bundled so well with Office 365. All you needed to do, if you had the right Office 365 subscription, was to download it from the software portal, deploy it to your users, control some settings through GPO, and voila, it just worked. Yet since September 2015, when Office 365 customers using Office 2013 started getting the offer to upgrade to Office 2016, no warning was given to them that by doing so you are actually going to degrade your functionality and available services—even though you are actually paying for them. Install Office 365 Business with the new 2016 apps does not include Skype for Business Clicking on the "Why would I install Office 2013? "... --- ### Microsoft HoloLens -- Now Open for Business - Published: 2016-08-03 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-hololens-business-richij/ - Categories: Hardware, Main, Mobile, Windows 10 - Tags: Developers, HoloLens, IT Newspro, Microsoft, Microsoft HoloLens, News - Article Type: News, Opinion Microsoft HoloLens is now available to all. Redmond wants more businesses and developers to get going with its augmented-reality Windows headset. No longer do you need an invitation. And along with the latest build of Windows 10 come a container-load of new, enterprisey features. But it may (or may not) still cost $3000. In today’s IT Newspro, we mow the lawn like it’s 1992... Microsoft HoloLens: Jobe horrified to learn that anyone can now buy it Microsoft HoloLens is now available to all. Redmond wants more businesses and developers to get going with its augmented-reality Windows headset. No longer do you need an invitation—in the U. S. and Canada, anyway. And along with the latest build of Windows 10 come a container-load of exciting new, enterprisey features. But it may (or may not) still cost $3000. In today’s IT Newspro, we mow the lawn like it’s 1992. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Car alarm drops sick beat... (more... ) --- ### Windows Store for Business - Published: 2016-08-02 - Modified: 2024-09-04 - URL: https://petri.com/windows-store-business/ - Categories: Cloud Computing - Tags: Windows, Windows 10, Windows Store - Article Type: Overview This article is an overview of Windows Store for Business, which businesses can use to create their own private portals for distributing purchased apps or apps developed in-house. Windows Store for Business home page In today’s Ask the Admin, I’ll take a look at Microsoft’s Windows Store for Business, which was launched at the end of 2015. If you’re familiar with the Windows Store, a curated app store for consumers that first appeared in Windows 8, then the Windows Store for Business extends that model for enterprises in the form of a web-based portal and is available in 21 markets. Windows Store for Business can be accessed by anyone who’s signed up for the service, but businesses can also use it to create their own private portals for distributing purchased apps or apps developed in-house. The Windows Store for Business makes managing volume licensing easier too, giving organizations control over purchasing administration and licensing through integration with Azure Active Directory (AAD). Instead of requiring a Microsoft ID, Windows Store for Business allows apps to be purchased under an organizational identity, and licenses can be revoked and reissued as required. For more information on AAD, see What is Azure Active Directory? on the Petri IT Knowledgebase. Windows Store for Business basics To get started with Windows Store for Business, you’ll need an AAD account that has Global Administrator permissions for your tenant, and employees who need access to the store will also need AAD accounts if you don’t have infrastructure in place to distribute offline apps, which requires Microsoft System Center Configuration Manager (SCCM), Intune, or other Mobile Device Management (MDM) compatible... --- ### Getting Started with Azure Automation Desired State Configuration - Published: 2016-08-02 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-azure-automation-desired-state-configuration/ - Categories: Cloud Computing - Tags: Azure, Azure Automation, Cloud, DSC - Article Type: How To Russell shows how to create an Azure Automation account, upload and compile a DSC configuration, and on board an Azure VM. In today's Ask the Admin, I'll show you how to create an Azure Automation account, upload and compile a DSC configuration, and on board an Azure VM. In Introduction to Azure Automation Desired State Configuration on the Petri IT Knowledgebase, I explained how Azure Automation Desired State Configuration (DSC) relieves organizations of some of the infrastructure requirements of PowerShell DSC, along with other advantages, including controlling who can access DSC configurations, assign them to nodes, and check node configuration compliance. Today we’re going to get down to business and configure Azure Automation DSC. Create a DSC script Before we can test out Azure Automation DSC, we’ll need a DSC script. For the purposes of this demonstration, we’ll use a basic script that checks for the presence of a text file (test. txt). If the file is not present, it’s created. Configuration FileResourceDemo { Node "localhost" { File CreateFile { DestinationPath = 'C:Test. txt' Ensure = "Present" Contents = 'Hello World! ' } } } You can copy the above code into Notepad or the Windows PowerShell ISE. Save the script to your PC as TestDSC. ps1 Create an Azure Automation account Azure Automation DSC requires an Azure Automation account in addition to the Microsoft account associated with your subscription. If you don’t already have an Azure Automation account, create one using the steps below. Add an Azure Automation account (Image Credit: Russell Smith) Log in to the Azure management portal here. In the left pane of the portal,... --- ### Export Azure Resource Group as a JSON Template - Published: 2016-08-01 - Modified: 2024-09-04 - URL: https://petri.com/export-azure-resource-group-json-template/ - Categories: Cloud Computing - Tags: Azure, Cloud - Article Type: How To Learn how to export resource groups (RGs) as Azure Resource Manager (ARM) templates using JSON, then deploy that resource group using your JSON template. In today’s Ask the Admin, I’ll show you how to export resource groups (RGs) as Azure Resource Manager (ARM) templates. One of the great features of ARM is the ability to define how Azure resources interconnect with one another using resource groups, and deploy cloud applications, in the web-based management portal or using PowerShell, and then copy and redeploy that configuration using a declarative JSON template. If you need a primer on ARM and Azure resource groups, see Deploy VMs Using Azure Resource Manager, What is JSON and How Is It Used? , and What are Microsoft Azure resource groups? on the Petri IT Knowledgebase. In this article, I want to show you how easy it is to copy ARM-based deployments in Azure, and either save the configuration for later use as a JSON template, or deploy a new resource group based on the configuration of an existing set of resources. For example, I have a resource group called PetriWeb that contains several VMs, public IP addresses, a virtual network, storage, and other resources that make the application work. But I need to reproduce this configuration so that I can test some proposed changes in a lab environment. Azure allows the PetriWeb resource group to be exported and redeployed with a different name using the JSON template generated during the export process. Export a resource group Before starting, you’ll need an Azure account. If you don’t already have one, you can sign up for a free trial here. Log in... --- ### Azure ARM VMs and Availability Sets - Published: 2016-08-01 - Modified: 2024-09-04 - URL: https://petri.com/azure-arm-vms-availability-sets/ - Categories: Cloud Computing - Tags: Availability Sets, Azure, Azure Virtual Machines, virtual machines - Article Type: Overview Learn about availability sets and how to deploy them with Azure Resource Manager (ARM) or Cloud Solution Provider (CSP) virtual machines. This post will explain the use of availability sets and how to deploy them with Azure Resource Manager (ARM) or Cloud Solution Provider (CSP) virtual machines. Update Domains & Fault Domains Like every form of computing (physical, virtual, or cloud), Azure has outages. Some of these outages can be planned, such as host patching, and some are unplanned, such as power failures. Microsoft has designed Azure to deal with this so that you can maximize the uptime of services that are running in virtual machines. This involves two concepts: Fault domain: A group of hosts that share common power and network connections. During a localized outage, the issue is constrained within a single fault domain. For example, a power distribution unit failure knocks a rack of hosts offline. Update domain: This is a logical boundary that controls how Microsoft will deploy planned maintenance. Microsoft will only perform planned maintenance on one update domain at a time. There will be several update domains within a fault domain. An illustration of update domains and fault domains in Azure Let’s imagine a scenario where you deploy a tier of a service, such as five load balanced web servers, in Azure. You’ve deployed 5 web servers because: You need scaled-out capacity You are probably allowing for one web server going offline But what if Azure places 3 of those web servers in the update domain? When Microsoft deploys updates to Azure, the underlying host will experience... --- ### Microsoft Cuts More Features From Windows 10 Pro To Push Businesses To Enterprise Edition - Published: 2016-08-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cuts-features-windows-10-pro-push-businesses-enterprise-edition/ - Categories: Windows 10 - Tags: Windows 10 pro, Windows Store - Article Type: News Microsoft is removing more features from Windows 10 Pro to entice more businesses to move to the monthly subscription service that will launch this fall for the Enterprise edition of Windows 10. Earlier this month, Microsoft announced that its monthly subscription service for enterprise customers would start at $7 a month and it will launch later this year. If you are a business running Windows 10, large customers will almost always opt for the Enterprise edition but smaller and some medium sized companies have been using the Pro versions of Windows for several years. Windows 10 Pro is the preferred operating system for small and medium sized business but Microsoft is making this edition less attractive to those users as they continue to cut features from the OS. With the release of Windows 10 version 1511, the large update released in November, the company removed the option to disable Windows Store in Windows 10 Pro through Group Policy and with the anniversary update, they are removing additional features from Pro. Starting with the Anniversary update coming on August 2nd, you will no longer be able to manage Windows 10 tips and tricks and Windows Store suggestions. The chart below outlines the options available to disable these features post 1607 (Anniversary update) is installed. Specifically, after this update is installed, Windows 10 Pro will no longer be able to centrally manage Windows Spotlight on the lock screen, Start menu app suggestions, Windows tips, and Microsoft account notifications. While this particular update is not significant setback for administrators of machines with this OS, when coupled with the removal of features with 1511, it begins to show how Microsoft doesn’t want companies to be using Windows... --- ### Azure Security Center Generally Available - Published: 2016-07-29 - Modified: 2024-09-04 - URL: https://petri.com/azure-security-center-generally-available/ - Categories: Cloud Computing - Article Type: News This article generally describes how Azure Security Center works, lists which types of virtual machines it supports, and describes two Azure Security Center plans. Microsoft has announced the general availability of Azure Security Center, a centralized solution for monitoring the security of your Azure deployment. What is Azure Security Center? Microsoft announced Azure Security Center at their online event, AzureCon 2015, and launched a public preview on December 2nd, 2015. Security Center is a part of Microsoft’s vision for enterprise security, recognizing that the effectiveness of old methods based on independent solutions, such as a firewall and antivirus, were not enough to protect a business against today's attacks. Azure Security Center collects data from your deployment in Azure, including the fabric, the Azure resources that you have deployed, and even third-party solutions such as application gateways or next generation firewalls. The goal is to provide a unified view of the security status of your network. Imagine this scenario: A database server is experiencing an unusually large amount of activity from a remote login. The firewall is showing a large amount of data being sent from the database server to an IP address in Asia. The firewall is configured to allow outbound data, so there’s nothing wrong there. The database server has been configured to allow remote logins, and bursts of activity aren’t unusual. So malware scanning, the database, and the firewall see nothing wrong. But you have put the pieces together, and realized that there’s probably an attack in progress via a compromised identity, and the attacker is downloading the database to an IP address in Asia. This is the sort of... --- ### Add NAS-Based Network Locations to Windows 10 for Fast Search - Published: 2016-07-29 - Modified: 2024-09-04 - URL: https://petri.com/add-nas-based-network-locations-windows-10-fast-search/ - Categories: Windows Client OS - Tags: networking, Search, Windows 10 - Article Type: How To In this article, learn how to add network locations to File Explorer in Windows 10 for faster search. In today’s Ask the Admin, I’ll show you how to add network locations to File Explorer in Windows 10 for faster search. If you’re using Windows Server in an office environment as a file server, indexing of files on network shares is handled automatically by the OS so that you can quickly find what you’re looking for. But if instead you have some form of network-attached storage (NAS) that runs Linux, even though there is support for SMB baked in, you lose out on some of the advantages of Windows-based storage. Network locations in Windows 10 File Explorer (Image Credit: Russell Smith) Not that this poses too many issues for small businesses or home users, but one issue you may have is that when searching a network location, Windows will take much longer to return results because the OS has to manually crawl through the files each time rather than referencing a search index like it does for locally stored files. Add network locations in File Explorer But there’s an easy way to solve this problem, at least partially, and that’s by adding network locations that you’d like Windows to index to This PC in File Explorer. I say partially, because indexing on Windows Server also provides full-text indexing, where not only the name of each file is indexed, but also the contents of supported file formats. And when Windows Server is hosting the file share, the search client returns results provided by the... --- ### The Sams Report EP 49: A Trip To Redmond, A Final Reminder - Published: 2016-07-29 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-49-trip-redmond-final-reminder/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including my trip to campus, layoffs, Simplo batteries, and a final reminder. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including my trip to campus, layoffs, Simplo batteries, and a final reminder. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=96geQYaOnzY&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: July 29 - Published: 2016-07-29 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-july-22-2/ - Categories: Mobile - Tags: News - Article Type: Opinion Because Paris, vous me manques déjà, this edition of Short Takes focuses on more Microsoft layoffs related to phone disaster, Microsoft's phone sales revealed, Windows 10 Upgradegate triggers lawsuits, Windows NT 4.0 turns 20, and so much more. Would you buy a PC OS from this guy? Hell yes you would. Because Paris, vous me manques déjà, this edition of Short Takes focuses on more Microsoft layoffs related to phone disaster, Microsoft's phone sales revealed, Windows 10 Upgradegate triggers lawsuits, Windows NT 4. 0 turns 20, and so much more. New Microsoft layoffs are of course phone related While Brad covered this week's surprise Microsoft layoffs already, I'd like to emphasize that these cuts are just the latest example of the gift that just can't seem to stop taking: Microsoft's ill-fated purchase of Nokia's hardware and services businesses two years ago. $10 billion later, Nokia can't seem to stop failing, even from beyond the grave, and these cuts are of course mostly happening in the remains of Microsoft's phone business. Though Mary Jo says 900 were in sales. Probably phone sales. Geesh. "Microsoft Has Finally Discovered The Cause Of Battery Failure On The Surface Pro 3" Yep. It's Frank Stallone. Microsoft barely sold 1 million Windows phones in the previous quarter And speaking of bad news and Windows phone, the same regulatory filing that brought us news of the layoffs noted above also tells us how many Windows phones that Microsoft sold last quarter. Not many. "We sold 13. 8 million Lumia phones in fiscal year 2016," the filing notes, "compared with 36. 8 million sold in fiscal year 2015. " Since we know that Microsoft sold 5. 8 million, 4. 5 million, and 2. 3 million Lumias in... --- ### Microsoft To Cut An Addition 2850 Employees - Published: 2016-07-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cut-addition-2850-employees/ - Categories: Main - Tags: Employee, layoffs, Microsoft - Article Type: News Microsoft has announced that they will further cut their employee count by over 2000 staff by the end of fiscal year 2017. Deep in Microsoft’s 10Q filing, the company has stated that they plan to cut an additional 2850 employees to the previously announced 1850 layoffs announced in May of 2016.  The company expects these cuts to be complete by the end of fiscal year 2017 (June 2017). Microsoft does not state explicitly where the headcount reductions will occur but that they are in its mobile phone segment; the cuts will impact offices around the globe. Considering that Microsoft’s head-count has grown significantly via acquisitions (among the largest was the mobile assets from Nokia) and they will be adding more in the future with LinkedIn coming-onboard, these types of cuts are not all that uncommon.  Seeing as the company has been ramping down its ambitions in the mobile segment, it's not too surprising that this is the business org being impacted by these cuts. No matter how many or where they occur, headcount reduction is never an easy process for all parties involved. Microsoft will likely offer a severance package to those impacted and more importantly, they need to make the cuts quickly. Layoffs always bring down the moral of any company and the longer the process takes, the more internal damage it can create while employees wait to find out if they are now out of a job. Thanks for the tip Matt! --- ### Configure RDS Collections Using PowerShell - Published: 2016-07-28 - Modified: 2024-09-04 - URL: https://petri.com/configure-rds-collections-using-powershell/ - Categories: Windows Server - Tags: PowerShell, Remote Desktop Services, Windows Server - Article Type: How To Learn how to configure Remote Desktop Services (RDS) collections using Windows PowerShell, including how to create, enumerate, and remove collections from RDS Connection Brokers, and how to add and remove RemoteApps to collections. In today’s Ask the Admin, I’ll show you how to configure Remote Desktop Services (RDS) collections using Windows PowerShell. In Configure RDS Collections in Windows Server 2012 R2, I showed you how to configure collections using Server Manager. RDS collections are groups of RD Session Host servers with a shared set of RemoteApps, session host or VDI desktops that can be published to users. For information on RDS, see Remote Desktop Services Deployment Options in Windows Server 2012 R2 on the Petri IT Knowledgebase. Create a new collection To complete the instructions below, log in to the RD Connection Broker using an account that has permission to manage RDS. Open a PowerShell prompt from the taskbar or Start menu, and then use the New-RDSessionCollection cmdlet to create a new collection. In the example below, I’ve given the collection a name, a description, and specified the RDS Session Host and Connection Broker servers using their fully qualified domain names (FQDNs). In your environment, you will need to replace these values as appropriate. New-RDSessionCollection –CollectionName PetriDesktops –SessionHost srv1. ad. contoso. com –CollectionDescription ‘Desktop sessions’ –ConnectionBroker srv1. ad. contoso. com Create a new Remote Desktop Services (RDS) collection using the New-RDSessionCollection PowerShell cmdlet (Image Credit: Russell Smith) To verify the creation of the new collection, use the Get-RDSessionCollection cmdlet, replacing srv1. ad. contoso. com with the name of your RDS Connection Broker. Get-RDSessionCollection –ConnectionBroker srv1. ad. contoso. com To remove a collection from an RDS Connection Broker, use the Remove-RDSessionCollection cmdlet as shown here, again replacing the... --- ### Migrating Azure VMs to ARM/CSP using migAz - Published: 2016-07-28 - Modified: 2024-11-19 - URL: https://petri.com/migrating-azure-vms-armcsp-using-migaz/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Manager, Azure Virtual Machines, Classic, migAz, migration, Service Management, virtual machines - Article Type: How To Learn to use migAz to move Classic / Service Management / SM Azure IaaS virtual machine deployments to Azure Resource Manager / ARM in another subscription. In this “how to” article, I’m going to show you how you can quickly and easily move Classic / Service Management / SM Azure IaaS virtual machine deployments to Azure Resource Manager / ARM in another subscription. For example, you can migrate virtual machines and their dependencies from direct/Open/EA Azure subscriptions to Cloud Solution Provider (CSP) subscriptions. If you want to migrate Azure classic virtual machines to ARM in the same subscription, then have a look at Migrating Azure VMs from Classic Service Management to Resource Manager on Petri IT Knowledgebase. The Challenge If you were unsure after the recent Microsoft Worldwide Partner Conference (WPC), then let me be clear; CSP is Microsoft’s preferred way to sell cloud services (and more) via the Microsoft Partner Network. CSP offers quite a bit for partners and customers, because it gives them the billing the want/expect, with a built-in support program, and true OPEX flexibility. The first challenge with Azure in CSP is that, unlike every other channel, it supports only Azure V2, otherwise known as Azure Resource Manager or ARM. The vast majority of previously deployed solutions are based on the older Azure V1, or Service Management or Classic resources. The second issue with CSP is that Microsoft has not provided any support migration path from other subscription types to CSP. Without a migration tool, this means that CSP will be limited to new installations that require little to no integration to any previously deployed resources. The Solution A Microsoft employee,... --- ### Samsung Surges in Quarter Thanks to Strong Galaxy S7 Sales - Published: 2016-07-28 - Modified: 2024-09-04 - URL: https://petri.com/samsung-surges-quarter-thanks-strong-galaxy-s7-sales/ - Categories: Mobile - Tags: Android, News - Article Type: News With iPhone sales falling for the second quarter in a row, one might assume that overall smartphone sales have likewise stumbled. But don't tell Samsung: It just reported its best quarter in two years thanks to stronger-than-expected Galaxy S7 sales. With iPhone sales falling for the second quarter in a row, one might assume that overall smartphone sales have likewise stumbled. But don't tell Samsung: It just reported its best quarter in two years thanks to stronger-than-expected Galaxy S7 sales. For the most recent quarter, Samsung reported net income of $5. 17 billion---an improvement of 5 percent year-over-year---on revenues of $45 billion, up 18 percent. By comparison, Apple's profits fell 27 percent year-over-year, and the iPhone maker's revenues dropped 15 percent. Samsung, of course, has a much more diversified business than Apple. But over half of Samsung's profits were delivered by its mobile division. In many ways, mobile is to Samsung as iPhone is to Apple. The reversal of fortunes at the two companies was triggered by a number of factors. On Apple's end, upgrade fatigue combined with normal upgrade cycles and a lackluster new generation of iPhone hardware was responsible for the firm's shortfall. But for Samsung, stepping up to the plate with a vastly-improved new Galaxy S7 family of smartphones brought consumes out to stores in droves. And Samsung estimates that sold between 75. 6 million and 78. 3 million smartphones in the quarter, almost twice the number Apple sold. Samsung's new flagship handsets shipped in March, which is considered by the industry to be the annual sweet spot for launching new hardware. (This fact contributed to Microsoft's decision to delay new Surface hardware until next Spring, I was recently told by a high-placed company official. It... --- ### Making Windows 10 RS2 a Viable Tablet and Mobile Enterprise OS - Published: 2016-07-27 - Modified: 2024-11-19 - URL: https://petri.com/making-windows-10-rs2-viable-tablet-mobile-enterprise-os/ - Categories: Mobile - Tags: enterprise, Windows 10 Mobile - Article Type: Opinion It's not over until the fat lady sings, and Redstone 2 (RS2), Microsoft’s next major update to Windows 10 due in spring 2017, will focus on mobile. So if you’re not in the “it’s over” or “Windows Mobile is dead” camp, this article looks at the key changes I think Microsoft needs to make to Windows 10 Mobile to make it a viable smartphone and tablet OS for the enterprise. Microsoft has indicated that it’s Windows Mobile strategy is to focus on enterprise needs, and having failed to capture the public’s imagination with any of its recent handsets, this is probably a smart move as traditionally the enterprise is where Microsoft has been most successful. Plus, many enterprise requirements are already baked into the OS, such as Device Guard, BitLocker encryption, Azure Active Directory domain join, Windows Store for Business, native Mobile Device Management (MDM) support, and Enterprise Data Protection (EDP) is currently in testing. For the past few days I’ve been playing around with the Anniversary Update on my daily driver, a Lumia 950, and it brings much needed evolutionary improvements and is arguably the OS that Windows 10 Mobile should have been when it debuted at the tail end of last year. But what follows are, in no particular order, my thoughts on what needs to happen for Windows 10 Mobile to be a serious contender in the enterprise. BitLocker To Go support The USB Type-C and OTG support in the Lumia 950/XL handsets makes it... --- ### The Best Windows Laptop for $550? Xiaomi Mi Notebook Air - Published: 2016-07-27 - Modified: 2024-11-19 - URL: https://petri.com/xiaomi-mi-notebook-air-richij/ - Categories: Hardware, Main, Mobile, Windows Client OS - Tags: IT Newspro, Laptop, News, Windows Device, Xiaomi - Article Type: News, Opinion Xiaomi Mi Notebook Air is a sleek Ultrabook for an amazing price. It also beats its Apple namesake in many respects. It’s smaller, lighter and faster. But it might be tricky to buy—outside of China, anyway. Oh, and you can custom-order a famous painting on the lid. Perhaps that’s appropriate, given Picasso’s famous quote. In today’s IT Newspro, good artists copy, great artists steal... Doesn’t Xiaomi’s Mi Notebook Air remind you of something? Xiaomi Mi Notebook Air is a sleek Ultrabook for an amazing price. It also beats its Apple namesake in many respects. It’s smaller, lighter and faster. But it might be tricky to buy—outside of China, anyway. Oh, and you can custom-order a famous painting on the lid. Perhaps that’s appropriate, given Picasso’s famous quote. In today’s IT Newspro, good artists copy, great artists steal. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: A CGI sci-fi short... (more... ) --- ### GA of Azure VM Migration from Classic to Resource Manager - Published: 2016-07-27 - Modified: 2024-09-04 - URL: https://petri.com/ga-azure-vm-migration-classic-resource-manager/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Management, Classic, migration, Service Management - Article Type: Overview This post provides an overview of Microsoft's new migration service to move your Azure virtual machines and their dependencies from Classic / Service Management / ASM / Azure V1 to the newer Azure Resource Manager / ARM / Azure V2. Microsoft has announced the general availability of a new migration service to move your Azure virtual machines and their dependencies from Classic / Service Management / ASM / Azure V1 to the newer Azure Resource Manager / ARM / Azure V2. Reminder As I discussed in A Tale of Two Azures, Microsoft made significant changes to Azure when they introduced a new API for managing resources in the cloud. We can see that virtual machines that were deployed in the older ASM are based on a simpler design, probably based on a cloud service. Microsoft released ARM to speed up deployments and expansion via templates, and all of Microsoft’s focus is on this newer version of management and deployment. In fact, Microsoft’s preferred channel for selling cloud services to the “breadth market”, Cloud Solution Provider (CSP), has no support for classic or ASM resources. Most of Microsoft’s Azure customers will have deployed virtual machines using ASM. Microsoft wants those customers to use the newer version of Azure and the services & features that are being added & improved only in ARM. And to be honest, in my experience, deploying and owning resources in ARM is a much better experience. So those customers need a way to migrate their virtual machine workloads from Classic to Resource Manager, which is not just some simple change. Note that Microsoft goes to great lengths to say that they are not pressuring anyone to migrate from ASM to ARM, but that they do... --- ### Apple Device Sales Tumble for Second Quarter in a Row - Published: 2016-07-27 - Modified: 2024-11-19 - URL: https://petri.com/apple-device-sales-tumble-second-quarter-row/ - Categories: Mobile - Tags: Apple, Apple Watch, iPad, iPad Pro, iPhone, News - Article Type: News On Tuesday, Apple announced the results of its most recent quarter, posting net income of $7.8 billion on revenues of $42.4 billion. But the firm sold fewer iPhones, iPads, Macs, and Apple Watches than it did a year ago, for the second quarter in a row. On Tuesday, Apple announced the results of its most recent quarter, posting net income of $7. 8 billion on revenues of $42. 4 billion. But the firm sold fewer of all of its hardware products---iPhone, iPad, Mac, and Apple Watch---than it did a year ago, for the second quarter in a row. “We are pleased to report third quarter results that reflect stronger customer demand and business performance than we anticipated at the start of the quarter," Apple CEO Tim Cook said in a prepared statement. "We had a very successful launch of iPhone SE and we're thrilled by customers' and developers' response to software and services we previewed ... in June. " Apple earns 86 percent of its revenues from hardware sales, but with those businesses all experiencing unit sales shortfalls, the firm had to dig a bit to find some bright spots. Among them are its growing services business, which contributed $6 billion in revenues in the quarter, up from $5 billion a year ago. Too, the entry-level iPhone SE sold better than expected, Apple said. But even these bits of good news are somewhat contentious. The iPhone SE, for example, is much less expensive than the company's other handsets, and it stole sales from more lucrative iPhone models, lowering the average selling price of the devices to $595, from $662 a year ago. And that services business---which includes media and app/game content---represents the maturing of Apple's ecosystem: With about 1 billion iOS users worldwide, the market for new... --- ### GitHub for Windows – Installation, Adding Accounts, Committing Changes, and Syncing Repos - Published: 2016-07-26 - Modified: 2024-09-04 - URL: https://petri.com/github-windows-installation-adding-accounts-committing-changes-syncing-repos/ - Categories: Cloud Computing - Tags: Cloud, DevOps, GitHub - Article Type: Overview Learn how to get started with GitHub for Windows. We'll install it, add accounts, clone a repository, commit changes and sync repositories. In today’s Ask the Admin, I’ll show you how to get started with GitHub for Windows – the open source distributed version control system. As a system administrator, you may think that you don’t have much need for Git. After all, isn’t that a developer thing? But with the industry moving ever faster towards the cloud and DevOps, sysadmins need to understand technologies such as Puppet, Chef, PowerShell DSC, and JSON. An integrated scripting environment in principle is all you need to work with the code required to use the technologies I mentioned above, or even Notepad might do. But that is until you start collaborating with colleagues on a regular basis. Keeping track of who has made what changes to code can become a headache, and is reflected in the quality of code you produce and the time it takes to complete projects, so some kind of versioning control becomes as important as for any other file type. That’s where Git and GitHub step in, although by no means the only version control system available, with Microsoft’s own Team Foundation Version Control (TFVC) that’s built in to Visual Studio Online coming to mind, GitHub is one of the most widely adopted. Git keeps track of the changes you make to local copies of repositories, and then allows you to sync changes back to the server. If a merge conflict occurs, when two or more people have modified the same line of code, Git flags the conflicts so... --- ### Migrating Azure VMs from Classic Service Management to Resource Manager - Published: 2016-07-26 - Modified: 2024-09-04 - URL: https://petri.com/migrating-azure-vms-classic-service-management-resource-manager/ - Categories: Cloud Computing - Tags: ARM, ASM, Azure, Azure Resource Manager, Azure Virtual Machines, Classic, migration, Resource Manager, Service Management, virtual machines - Article Type: How To Aidan shows how to migrate your virtual machines from Azure Classic Service Managment (ASM) API to the newer Azure Resource Manager (ARM) API. Microsoft recently made the migration of Azure classic (Service Management or ASM) virtual machines to Azure Resource Manager (ARM) generally available. This post will show you how to migrate your virtual machines from the ASM API to the newer ARM API. The Process The method used to migrate virtual machines from ASM to ARM is actually pretty simple to use. This solution migrates virtual machines from ASM to ARM inside the same Azure subscription. If you need to migrate to a different subscription, for example from Open or Direct to CSP, then you will need to consider a different solution, such as “migAz”. Before you start the migration, you need to identify if your virtual machines are on a virtual network (VNet) or not. If they are, then things are simple; the entire virtual network will be migrated to ARM. If your virtual machines are not connected to a VNet, then you will either: Perform a migration and let Azure create a VNet for you Pre-create a VNet for yourself (probably best) The process of migrating from Azure virtual machines from ASM to ARM The simulation will: Create a resource group in ARM to contain migrated and any newly required resources. Deploy any required resources. For example, ARM virtual machines require NICs and a cloud service must be converted into an ARM load balancer. Connect the ARM API to your existing resources that will be migrated, while retaining management via ASM... . --- ### Configure Remote Desktop Services Collections in Windows Server 2012 R2 - Published: 2016-07-25 - Modified: 2024-09-04 - URL: https://petri.com/configure-remote-desktop-services-collections/ - Categories: Windows Server - Tags: Remote Desktop, Windows Server - Article Type: How To Learn how to configure Remote Desktop Services collections in Windows Server 2012 R2. In this article, I'll show you how to configure Remote Desktop Services collections in Windows Server 2012 R2. RDS collections are groups of RD Session Host servers with a shared set of RemoteApps, session host, or VDI desktops that can be published to users. A collection can contain either remote desktops or RemoteApps, not both at the same time. Use Server Manager to Create Collections Before you start, you’ll need to already have RDS deployed in your environment. For more information on deploying RDS, see Installing Remote Desktop Services in Windows Server 2012 R2 on the Petri IT Knowledgebase. An RDS deployment in Windows Server 2012 R2 (Image Credit: Russell Smith) Log in to the RD Connection Broker with administrator privileges. Open Server Manager from the taskbar or Start screen. In Server Manager, click Remote Desktop Services in the list of options on the left. In the Quick Start box at the top of Server Manager, click Create session collections below Session-based desktop deployment. In the Create Collection wizard, click Next on the Before you begin screen. On the Collection Name screen, type a name and optional description for the new collection, and then click Next. On the Specify RD Session Host servers screen, add RD Session Host servers from the Server Pool by selecting them from the list and then clicking the arrow in the middle of the screen. When you’re done adding servers, click Next. A RD Session... --- ### Microsoft Windows 10 Anniversary Edition -- Better for Professionals - Published: 2016-07-25 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-windows-10-anniversary-edition-richij/ - Categories: Cloud Computing, Patches and Service Packs, Windows 10 - Tags: IT Newspro, Microsoft, News, Windows 10, Windows 10 Anniversary Update - Article Type: News Microsoft Windows 10 gets its birthday build. But the Anniversary Edition isn’t just about pushing consumers to upgrade before Friday’s freebie deadline. It also brings loveliness for professional users. Enterprises large and small will see it working more smoothly, reliably and securely—according to Redmond. But not everything smells of roses. In today’s IT Newspro, we dig the dirt on “1607”. Terry Myerson, EVP of Windows and Devices wants you to upgrade, already Microsoft Windows 10 gets its birthday build. But the Anniversary Edition isn’t just about pushing consumers to upgrade before Friday’s freebie deadline. It also brings loveliness for professional users. Enterprises large and small will see it working more smoothly, reliably and securely—according to Redmond. But not everything smells of roses. In today’s IT Newspro, we dig the dirt on “1607”. (more... ) --- ### Microsoft Ends Major Development of Windows 10 Redstone 1, Prepares for August 2nd Release - Published: 2016-07-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ends-major-development-redstone-1-prepares-august-2nd-release/ - Categories: Windows 10 - Tags: Anniversary Update, Windows 10 - Article Type: News Microsoft has completed the Anniversary update, also known as Redstone 1 and the company is now preparing for the full release to all 350 million Windows 10 users. The time has come, Microsoft has signed off on the Windows 10 build that will become the Anniversary update and released to more than 350 million users of the OS early next month. With the completion of Redstone 1 (RS1), focus begins to shift to Redstone 2 (RS2) and the features and enhancements that update will bring to the operating system. RS1 will be released to Windows 10 users on August 2nd and will bring with it a significant number of updates to the operating system including a refined Start menu, improved inking support, extensions for Edge, updates to Cortana and a lot more. More importantly, the update marks the end of the free upgrade to Windows 10 which means if you have not yet upgraded, you need to act quickly. Even though the build is now complete, this does not mean development efforts are retired. Just like builds 1507 (Windows 10 initial release) and 1511 (November release), this build will be called 1607 and will receive patches and security updates each month when appropriate. In fact, Microsoft has already released the first patch, internally referred to as ZDP (zero day patches), to Insiders for testing. Seeing as this is a major milestone for the company, I’d expect there to be some celebration at Microsoft and since this week is One Week on campus, it will likely be wrapped into that event. For those not familiar, One Week is a company-wide activity that involves a hackathon and other events at its offices around the globe... . --- ### Verizon to Purchase Yahoo's Core Business for $4.8 Billion - Published: 2016-07-25 - Modified: 2024-09-04 - URL: https://petri.com/verizon-purchase-yahoos-core-business-4-8-billion/ - Categories: Cloud Computing - Tags: News - Article Type: News According to multiple reports, Verizon Wireless will announce as soon as Monday morning that it will acquire Yahoo's core business for $4.8 billion. The firm will combine Yahoo with AOL, another former Internet giant, bolstering its digital media and advertising offerings. According to multiple reports, Verizon Wireless will announce as soon as Monday morning that it will acquire Yahoo's core business for $4. 8 billion. The firm will combine Yahoo with AOL, another former Internet giant, bolstering its digital media and advertising offerings. The New York Times, The Wall Street Journal, Bloombergand other news agencies have all confirmed the deal, which represents an astonishing fall from grace from a firm that was worth over $125 billion at the height of the Dot Com boom. According to these reports, Verizon will acquire Yahoo's core business, which stumbled badly in the wake of competition from companies such as Google and Facebook and long ago lost its crown as the king of Internet content discovery. It will also acquire some real estate assets, while some Yahoo intellectual property will be sold separately, and presumably to another buyer. AT&T, Quicken Loans founder Dan Gilbert, Vector Capital Management, and TPG, were all said to have actively sought acquiring Yahoo. Today, of course, Yahoo's core business represents just a tiny portion of the Yahoo corporate entity: The bulk of its assets come in the form of an investment in the China-based e-commerce firm Alibaba, which is said to be worth an astonishing $41 billion. Yahoo's other assets include Yahoo Japan and a small portfolio of patents. But with the Internet and media portions of the company being sold off to Verizon, Yahoo as we know it will change hands. And it will lose its... --- ### Microsoft Expands Azure Service Locations - Published: 2016-07-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-azure-service-locations/ - Categories: Cloud Computing - Tags: Azure, Datacenter, ExpressRoute, networking, Regions - Article Type: News Microsoft recently announced further expansion of the number of Azure regions (datacenter locations) and ExpressRoute (WAN) points of presence around the world. New Regions In the parlance of Microsoft Azure, a region is a geographic location with one or more data centers that Microsoft uses to run the Azure public cloud. When you deploy something in Azure, you pick which region you want to deploy it into. There are a number of reasons that Microsoft wants Azure to be a global service: Performance: We should always seek to minimize latency. You can throw all the bandwidth you want at a data center on the other side of the globe; the laws of physics will not change how fast packets and their acknowledgements will be transmitted. Microsoft has placed Azure regions close to large markets, with exact locations dictated by a complex algorithm, to give customers the best possible performance. Fault tolerance: Customers are encouraged to co-locate services/data across multiple regions so that their services can survive localized outages or disasters. Every region is a part of a document pair. For example, if I deploy something in North Europe and enable replication, it will always replicate to West Europe. Local requirements: Whether it’s for regulatory compliance or feel-good-factor, sometimes you just need a local installation. On the other hand, some customers will require a remote installation! Scalability: Demand for Azure and other Microsoft cloud services is growing, with Morgan Stanley estimating that they will generate 30% of revenue by... --- ### Deploy a Read Only Domain Controller - Published: 2016-07-22 - Modified: 2024-09-04 - URL: https://petri.com/deploy-read-domain-controller/ - Categories: Active Directory (AD) - Tags: Active Directory, Security, Windows Server - Article Type: How To In today's Ask the Admin, I'll show you how to deploy a Windows Server 2012 R2 Read Only Domain Controller (RODC). In today's Ask the Admin, I'll show you how to deploy a Windows Server 2012 R2 Read Only Domain Controller (RODC). Read Only Domain Controllers were introduced in Windows Server 2008 as a response to the security risks of placing DCs in branch office locations that lack the physical security of centralized datacenters. Hosting read-only copies of the Active Directory (AD) database partitions, SYSVOL folder, and optionally the DNS database, RODCs can limit the damage caused if the server is compromised. The AD database is replicated from a writeable DC to each RODC, but not vice versa, so even if an RODC is hacked, global changes cannot be made to Active Directory. RODCs communicate with a writeable DC for user authentication because they don’t store account credentials locally, although you can elect accounts to have their passwords cached on a RODC for fast logons, which is useful for regular users of a branch office network. To protect privileged AD accounts, there’s also a deny list to prevent local password caching. Administrator role separation also gives local administrator access to an RODC but without any access to AD. While RODCs provide several security advantages over writeable DCs, it’s worth bearing in mind that not all applications are compatible with RODCs. So it’s important to check that server applications are compatible and that you test thoroughly before deploying RODCs in a production environment. Install an RODC An RODC can’t be the first domain controller in a domain, so you must... --- ### Deploy Azure RemoteApp with VNET using PowerShell - Published: 2016-07-22 - Modified: 2024-09-04 - URL: https://petri.com/deploy-azure-remoteapp-vnet-using-powershell/ - Categories: Cloud Computing - Tags: Active Directory, Azure, Azure RemoteApp, networking, PowerShell, RDS, Remote Desktop Services, RemoteApp, script - Article Type: How To Aidan shows how you can speed up and automate the deployment of Azure RemoteApp, Microsoft’s managed Remote Desktop Services farm in the cloud, using PowerShell. He also shares how you can use PowerShell to publish applications in the app collection and assign users access to those applications. In this article, I will show you how you can speed up and automate the deployment of Azure RemoteApp, Microsoft’s managed Remote Desktop Services farm in the cloud, using PowerShell. I will also share how you can use PowerShell to publish applications in the app collection and assign users access to those applications. RemoteApp Recap I have written quite a few articles over the last year or so about Azure RemoteApp. In summary, RemoteApp allows you to present desktop applications to users as publish applications without the desktop to RDS clients: Windows Android iOS Mac Windows “Phone” If you wanted to build an RDS farm in Azure from virtual machines, then you’d need to start with RDS CALs acquired via: Volume licensing with Software Assurance or The hosting/leasing SPLA-R program And then you’d need to build a complex infrastructure with load balanced SSL gateways, connection broker, and all that mess. RemoteApp makes it easy: You supply it with a Sysprep-ed image for your new session hosts (terminal servers). Deploy an app collection with optional domain membership and Azure virtual network connectivity. RemoteApp deploys all the rest of the RDS infrastructure, including the session hosts. You assign users and publish apps from the session hosts. Azure bills you, per user, for using RemoteApp, with no RDS licensing required. An overview of Azure RemoteApp As you can see, there’s quite a bit of clicking involved in setting up RemoteApp. One of the scenarios that... --- ### The Sams Report EP 48: OneWeek Of Billions - Published: 2016-07-22 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-48-oneweek-billions/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including hitting RTM, OneWeek, Billions, Office upgrades and a bit of travel next week. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including hitting RTM, OneWeek, Billions, Office upgrades and a bit of travel next week. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=oMuiHSAVcU4&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: July 22 - Published: 2016-07-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-22/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because in Paris *personne ne peut vous entendre crier*, this edition of Short Takes focuses on some important questions about Microsoft's earnings and lack of transparency, the relative success of Surface Hub, Intel vs. Qualcomm, Eric Snowden's new product offering, and more. Because in Paris personne ne peut vous entendre crier, this edition of Short Takes focuses on some important questions about Microsoft's earnings and lack of transparency, the relative success of Surface Hub, Intel vs. Qualcomm, Eric Snowden's new product offering, and more. Earningsgate: Microsoft accused of violating SEC accounting rules In the wake of its quarterly/annual earnings report earlier this week, Microsoft finds itself being criticized for hiding the true health of its various businesses by using non-GAAP financial measures. "That means they didn't conform to Generally Accepted Accounting Principles, which are designed to provide investors with the most transparent view of a company's latest financials," USA Today reports. It's a serious charge, and it appears that Microsoft is violating U. S. Securities and Exchange Commission (SEC) rules when it does this. For example, Microsoft CEO Satya Nadella claimed that the firm's quarterly revenues were "up" 5 percent, but that's using non-GAAP (read: invented) accounting; in reality, Microsoft's revenues were down 7 percent YOY. Microsoft CFO Amy Hood similarly used non-GAAP numbers when discussing the quarter in a public conference call with press and analysts. "As PCs Decline, Microsoft Betting Its Future on the Cloud" You don't say. Earningsgate: Why Microsoft is hiding how its really doing So why would Microsoft bury GAAP numbers in its financial reports and focus on non-GAAP numbers instead? Well, that's obvious: In this transition phase the company is now in---which I wrote about in Behind the Numbers: Microsoft Continues Its Transition to the... --- ### Azure Usage and Billing Portal Released - Published: 2016-07-21 - Modified: 2024-09-04 - URL: https://petri.com/azure-usage-billing-portal-released/ - Categories: Cloud Computing - Tags: Azure, Cloud - Article Type: Overview Russell provides a closer look at the recently released Azure Usage and Billing Portal. In today's Ask the Admin, I'll take a closer look at the recently released Azure Usage and Billing Portal. Azure Usage and Billing Portal (Image Credit: Microsoft) Understanding Azure resource use, and more importantly, how much it’s costing, can be a difficult puzzle to unravel, especially when you are dealing with multiple subscriptions. At the end of 2015, Microsoft released a set of APIs providing programmatic access to this information so that developers could create reports, a portal summarizing usage and billing information, or just ensure that resources weren’t being consumed after a project has finished by generating alerts. But unless you had the necessary skills and resources to develop your own portal, this wasn’t a solution that provided an easy way to visualize usage and billing data. It’s difficult to say that Microsoft has solved this issue, but has come to the rescue partly with the release of the Azure Usage and Billing Portal – a set of resources that can be deployed in Azure to provide visual access to usage and billing data. Rather than a readymade dashboard, the Azure Usage and Billing Portal is a set of open-source building blocks that enables you to deploy a portal based on a Power BI dashboard. And while it doesn’t require any scripting knowledge as such, it may not be suitable for small organizations that don’t have some experience of dealing with IT infrastructure directly. The portal can retrieve up to 3... --- ### Microsoft’s Surface Hub Is a Hit, Demand Outstrips Supply - Published: 2016-07-21 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-surface-hub-hit-demand-outstrips-supply/ - Categories: Hardware - Tags: News, Surface Hub - Article Type: News Microsoft's Surface Hub, the device designed for the conference room and can cost as much as $21,999, is a hit and the company is ramping up production to meet demand. When Microsoft announced its Surface Hub last year, there were quite a few people who raised concern that the device was too expensive and would never sell well, even in the enterprise who typically pays a premium for products. But, if you are trying to buy one of these devices, you will know that this is not the case as the device has been hard to find and according to Microsoft, it has exceeded their initial forecasts. Despite the fact that the Surface Hub was delayed twice and the company raised the price of the device, this has not deterred companies from buying the device. The device, which starts at $8,999 for the 55in and $21,999 for the 84in, has been purchased by more than 500 customers worldwide and Microsoft is ramping up production to meet the high level of demand. When I asked the company for a comment about the availability of the device after hearing from potential customers unable to obtain a Hub, they issued the statement below: “Demand for Surface Hubs is very strong and exceeded initial forecasts. To date, we've shipped to over 500 customers worldwide and that number continues to grow. We are ramping up production to meet this strong demand via our partner reseller channel as soon as possible. Customers are encouraged to speak with their sales representative if interested in ordering Surface Hubs. ” The Surface Hub is designed to be a collaborative device that lives in communal spaces like open office environments and conference... --- ### New Storage Support for Azure Site Recovery - Published: 2016-07-21 - Modified: 2024-09-04 - URL: https://petri.com/new-storage-support-azure-site-recovery/ - Categories: Cloud Computing - Article Type: Overview Microsoft recently announced improvements to the storage options in the Azure Site Recovery (ASR) disaster recovery-as-a-service (DRaaS) solution in Azure. This post describes support for premium storage, encrypted storage, and support for locally redundant storage (LRS) accounts. Microsoft recently announced a number of improvements to the storage options in the Azure Site Recovery (ASR) disaster recovery-as-a-service (DRaaS) solution in Azure. This post will break down the news on support for premium storage, encrypted storage, and support for locally redundant storage (LRS) accounts. Replicate to Premium Storage If a workload requires high throughput and low latency storage on-premises, then wouldn’t it require the same when running in the cloud? Before this announcement, you had only once choice when replicating to Azure; you had to replicate to standard (HDD) storage, which limits each data disk to 500 IOPS. You can aggregate data disks but this would require that you split up your volumes in your production on-premises machines, which to be frank, are probably using one VMDK/VHD/VHDX per data volume, and that re-engineering would be quite disruptive. Today, you can choose to replicate to Premium Storage which can offer up to 5000 IOPS per data disk (P30 size/spec/pricing). If a particular volume requires more IOPS, then you’ll need to split that volume across more virtual hard disks, and replicate those disks to Premium Storage. There are a number of things to know at this point: Replication to Premium Storage is limited to VMware virtual machines and physical servers (InMage Scout) at this time. Support for Hyper-V/SCVMM machines should come soon. This new feature is supported by classic and Azure Resource Manager (ARM) storage accounts. The virtual machine in Azure must be either a DS-Series or GS-Series virtual... --- ### France Says That Windows 10 Violates Personal Privacy Laws - Published: 2016-07-21 - Modified: 2024-09-04 - URL: https://petri.com/france-says-windows-10-violates-personal-privacy-laws/ - Categories: Windows 10 - Tags: News - Article Type: News France's CNIL, which is tasked with protecting personal data and preserving individual liberties, this week accused Microsoft of violating the French Data Protection Act by using Windows 10 to "collect excessive user data without their consent." Quelle horreur! France's CNIL, which is tasked with protecting personal data and preserving individual liberties, this week accused Microsoft of violating the French Data Protection Act by using Windows 10 to "collect excessive user data without their consent. " Quelle horreur! "The CNIL found that collecting diagnostic and usage data via its telemetry service, which uses such data, among other things, to identify problems and to improve products," the CNIL explains. "To this purpose, Microsoft Corporation processes, for instance, Windows app and Windows Store usage data, providing information, among other things, on all the apps downloaded and installed on the system by a user and the time spent on each one. Therefore, the company is collecting excessive data, as these data are not necessary for the operation of the service. " The CNIL further asserts that Windows 10 violates the French Data Protection Act by: ... not seeking individual consent. Windows 10 and various installed apps monitor user browsing and offer targeted advertising without obtaining users' consent... . being insecure. By letting users choose a four-digit PIN to authenticate themselves, Microsoft is opening up users to theft of their payment instruments. "The number of attempts to enter the PIN is not limited, which means that user data is not secure or confidential," the CNIL says... . offering no option to block tracking cookies. The CNIL charges that Microsoft "puts advertising cookies on users' PCs without properly informing them of this in advance or enabling them to oppose this. "... --- ### Attach a Data Disk to a VM in the Azure Portal - Published: 2016-07-20 - Modified: 2024-09-04 - URL: https://petri.com/attach-data-disk-vm-azure-portal/ - Categories: Cloud Computing - Tags: Azure, Azure Virtual Machine, storage - Article Type: How To Russell demonstrates how to create and attach a new disk to an existing virtual machine in Azure. In this Ask the Admin, I'll show you how to attach a data disk to a virtual machine (VM) in the new Azure Management Portal. Adding an additional disk to an Azure VM was easy and intuitive in the classic Azure management portal, but while the new portal has some benefits, sometimes the endless array of options and sliding panels makes it harder to find basic configuration options. There are lots of reasons why you might want to attach additional disks to VMs in Azure, but one common situation is the requirement to host Active Directory database files on a volume that doesn’t use write caching. By default, Azure deploys OS volumes with write caching enabled, and this can cause issues, such as data loss, with some applications. If you’ve never deployed a VM in Azure before, see Deploy VMs Using Azure Resource Manager on the Petri IT Knowledgebase. Azure Resource Manager (ARM) is the default deployment model for provisioning VMs, and other resources, in Azure using the new management portal. For more information on Azure resource groups, see What are Microsoft Azure Resource Groups? on Petri. Create and attach a data disk to a VM Before starting, you need to already have a virtual machine deployed in Azure. It doesn’t necessarily need to be running. Log in to the Azure management portal here. In the Azure management portal, click Virtual machines in the list of options on the left. In the Virtual machines pane, click the VM... --- ### Microsoft Enhances Office 365 With New SMB Bookings Platform - Published: 2016-07-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-enhances-office-365-new-smb-bookings-platform/ - Categories: Microsoft 365 - Tags: News, Office 365 - Article Type: News Microsoft has announced new service for Office 365 called Bookings that will make it easier for SMB clients to manage the appointment process. Microsoft loves its Office 365 platform as it is a shining example of how the company turned a static product into a service that has been well received by its customers. Today, the company is announcing another feature aimed at the small and medium sized business market to help them manage customer appointments. Called Microsoft Bookings, the new service will help the SMBs schedule, manage, send reminders, and make it easy to reschedule or cancel appointments. Anyone who has ever worked at a company where client bookings is an important part of the business knows how cumbersome this process can be without the right software which is why Microsoft is adding this feature to Office 365. In addition to streamlining the booking process, the service will also add this information to you (or your staffs) calendar to make this product a turn-key solution. The new service is rolling out now to First Release customers who subscribe to Office 365 Business Premium and the company will complete the roll-out to all users in the coming months. One of the benefits of this tool is that only one user needs to be Business Premium subscriber to enable this functionality for a company which expands the potential user base significantly as it reduces the cost of entry. Because customers only need to navigate to a website to book the appointment (no app is needed, customers don’t need to be Office 365 subscribers either), this solution is ideal for small businesses who need a... --- ### Using Microsoft Security Solutions Against Modern Threats - Published: 2016-07-20 - Modified: 2024-09-04 - URL: https://petri.com/using-microsoft-security-solutions-modern-threats/ - Categories: Cloud Computing - Tags: Advanced Threat Analytics, Advanced Threat Protection, Azure, Azure Information Protection, Azure Rights Management, Azure RMS, Cloud, Cloud App Security, ems, Enterprise Mobility + Security, Enterprise Mobility Suite, Exchange Online Advanced Threat Protection, Microsoft, Security - Article Type: Overview Aidan provides an overview of Microsoft’s cloud-based security solutions: Advanced Threat Analytics (ATA), Microsoft Cloud App Security, Azure Rights Management Services (RMS), Azure Information Protection, Microsoft Online Advanced Threat Protection (ATP), and Azure Security Center (ASC). In this post I will discuss the range of Microsoft’s cloud-based security solutions that have been launched recently to defend the attacks that are happening now. Background The nature of attacks has changed. Hackers aren’t relying on probing firewalls for vulnerabilities. Instead, they’re looking for the easy route, which is stealing identity from users and getting users to install zero-day malware from e-mails. You would think that if after countless surveys and reports confirming that hackers have changed their patterns of attack, then organizations would realize that relying on the traditional firewall and anti-malware filters/scanners just is not enough. A firewall blocks intrusions; it doesn’t stop apparently legitimate e-mails and malware scanners cannot detect zero-day attacks – someone has to suffer from an attack and submit the malware to the scanning companies before updated definition files can be distributed. Anti-virus companies admit that they cannot keep up with the rates of releases, and variants of malware such as CryptoLocker are too common & devious to give you 100% protection. So it’s time to evolve. And that’s what Microsoft has done. This article isn’t about some new generation of Forefront. Microsoft isn’t trying to do the same security that everyone else does. And Microsoft has not just released a bunch of version 1 solutions either – most of what is discussed in this article will include already mature products that Microsoft took control of by acquiring a number of Israeli tech security companies. Microsoft is... --- ### Need a Twitter Blue Check? Check Out the New Verification Form - Published: 2016-07-20 - Modified: 2024-11-19 - URL: https://petri.com/twitter-verification-form-blue-check-richij/ - Categories: Messaging - Tags: IT Newspro, News, social media, Twitter - Article Type: News, Opinion Do you want a blue check-mark for your Twitter account? Well there’s a new verification process for “popular” users. It involves filling in a form and proving your identity. And it promises to be a better way to get Twitter’s coveted blue badge than the previous, opaque mess. Leslie Jones: not a happy Twitter user Do you want a blue check-mark for your Twitter account? Well there’s a new verification process for “popular” users. It does involve filling in a form, and you may need to prove your identity. But it promises to be a better way to get Twitter’s coveted blue badge—better at least than the previous, opaque mess. Hopefully, this will help with Twitter’s terrible troll problem. In IT Newspro, we live in hope. Your humble newswatcher curated these news nuggets for your entertainment. Not to mention: Your three realities... (more... ) --- ### Behind The Scenes at Skype: The Troubles, Fixes And Future - Published: 2016-07-20 - Modified: 2024-09-04 - URL: https://petri.com/behind-scenes-skype-troubles-fixes-future/ - Categories: Main - Tags: News, skype - Article Type: News The past few months have resulted in Skype becoming unstable but the team has finally come forward to explain the issues and the future for the communication tool. Skype, Microsoft’s communication platform that is widely used around the globe and has hundreds of millions of users, has been in a rut. For the past few years, the service has jumped around to different types of applications and has also been slowly moving away from a P2P model to a cloud based solution that resulted in a less-than-favorable user experience. It’s the move to the cloud that has resulted in unwanted experiences and this month, I had a chance to talk to Gurdeep Pall, the Corporate Vice President of Skype, to learn more about the transition, the future of Skype and how the team is evolving to make sure that the platform is on a path to prosperity instead of decline. The story truly begins all the way back in the days of Windows 7 where Skype was a traditional desktop application, then with Windows 8 a modern app was developed and with the move to Windows 10, three separate UWP apps were created and then abandoned in favor of the desktop app and now we once again have a new UWP app that encompasses all of the desktop app features in a modern application. The new UWP desktop app will soon replace the desktop app on Windows 10 which means the service has built, abandon, rebuilt and abandon several types of applications. When talking with Pall, he acknowledged that Skype has been following the path of Microsoft’s new design languages and frameworks and that it did result in some loss of development... --- ### Behind the Numbers: Microsoft Continues Its Transition to the Cloud - Published: 2016-07-20 - Modified: 2024-09-04 - URL: https://petri.com/behind-numbers-microsoft-continues-transition-cloud/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion On Tuesday, Microsoft announced financial results for its fiscal fourth quarter: net income of $3.1 billion on revenues of $22.6 billion. For the full year, the software giant earned a net income of $16.8 billion on revenues of $85.3 billion. Photo credit: Paul Thurrott On Tuesday, Microsoft announced financial results for its fiscal fourth quarter: net income of $3. 1 billion on revenues of $22. 6 billion. For the full year, the software giant earned a net income of $16. 8 billion on revenues of $85. 3 billion. The results cement Microsoft's transition from a maker of traditionally-delivered software---mostly Windows and Office---to one of the premier providers of cloud services, especially for businesses. Fully two-thirds of Microsoft's revenues are now derived from cloud-based services, and this part of its business is steadily growing. While we've already covered the news around this announcement, I'd like to dive a bit deeper into the numbers and see what Microsoft really revealed about the strength and evolution of its business. This is based on the supporting financial documentation Microsoft has provided and its post-earnings conference call with analysts and the press. A few thoughts. Cloud transition comes with a cost. Transitioning a business as big and complex as Microsoft is by definition difficult and expensive. But in this case specifically, the move to the cloud is a double-edged sword. On the one hand, the steady cadence of subscription-based services will provide a financial stability that was never possible when it shipped "big bang" Windows and Office releases only every three years or so. But cloud services also come with a higher cost of revenues, because Microsoft needs to build out its infrastructure globally. And that reality, ironically, will result in less financial... --- ### Microsoft Reports Q4 Earnings: $22.6b In Revenue, $5.5b Net Income - Published: 2016-07-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reports-q4-earnings/ - Categories: Main - Tags: Earnings, Microsoft, News - Article Type: News For the fourth quarter of Microsoft’s fiscal year, ending June 30th, the company reported revenue of $22.6 billion non-GAAP (20.6 GAAP) with operating income of $3.1 billion GAAP, and $6.2 billion non-GAAP. For the fourth quarter of Microsoft's fiscal year, ending June 30th, the company reported revenue of $22. 6 billion non-GAAP (20. 6 GAAP) with operating income of $3. 1 billion GAAP, and $6. 2 billion non-GAAP. Net Income for the latest quarter was $5. 5 billion non-GAAP ($3. 1b GAAP) with EPS of $0. 69 ($0. 39 GAAP). During the quarter, Microsoft says that it returned $6. 4b to shareholders in the form of share repurchases and dividends. Revenue in Productivity and Business Processes grew 5% (up 8% in constant currency) to $7. 0 billion and revenue in Intelligent Cloud grew 7% to $6. 7 billion. Office 365 subscriptions continue to climb as well with 23. 1 million users but that represents a gain of less than 1 million users as last quarter the company had 22. 2 million subscribers. Azure revenue grew 102% and the company's server products and cloud services grew 8% during the quarter. The company says that this is the 8th consecutive quarter where Azure premium services revenue grew triple digits but they do not mention the actual revenue of the unit. Windows 10 is creating significant value for the company as well with 40% of search revenue in the month of June driven by Windows 10 devices.   Revenue in More Personal Computing declined 4% to $8. 9 billion where phone revenue dropped 71%. Notably, the company omitted how many phones it sold during the quarter which means the value of these devices is no longer material to its operations. Windows OEM non-Pro revenue grew 27%, outpacing the consumer PC market, and... --- ### Deploy Remote Desktop Services using PowerShell - Published: 2016-07-19 - Modified: 2024-09-04 - URL: https://petri.com/deploy-remote-desktop-services-using-powershell/ - Categories: Windows Server - Tags: Remote Desktop, Windows Server - Article Type: How To Russell demonstrates how to deploy Remote Desktop Services in Windows Server 2012 R2 using PowerShell. In today’s Ask the Admin, I’ll show you how to deploy Remote Desktop Services in Windows Server 2012 R2 using PowerShell. In a previous Ask the Admin, Installing Remote Desktop Services in Windows Server 2012 R2, I demonstrated how to deploy Remote Desktop Services (RDS) using the standard deployment model. For more information on the RDS components and deployment models, take a look at Remote Desktop Services Deployment Options in Windows Server 2012 R2 on the Petri IT Knowledgebase. Remote Desktop Services in Windows Server 2012 R2 (Image Credit: Russell Smith) Deploy RDS using PowerShell Servers that you want to use in your deployment need to be added to the Server Pool in Server Manager before you start the process below. For more info, see Managing Windows Server 2012 with Server Manager on Petri. You’ll need an Active Directory domain and an account that has permission to install the server roles on your chosen server(s). The RD Connection Broker role can’t be installed on a domain controller, and installation should not be carried out on the server where the RD Connection Broker role will be installed. Log into the Windows Server 2012 R2 server where you want to run the PowerShell cmdlets. The account should have administrative access to the server(s) where the RDS roles will be installed. Open a PowerShell prompt from the taskbar or Start screen. In the PowerShell window, type Import-Module RemoteDesktop and press ENTER. To install the three... --- ### Things to Do Before You Start with Azure in CSP - Published: 2016-07-19 - Modified: 2024-09-04 - URL: https://petri.com/things-start-azure-csp/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure, Cloud Solution Provider, CSP - Article Type: Overview Review Aiden's steps in this article to verify that you are ready to start an Azure deployment using the Cloud Solution Provider (CSP). Currently, Azure V2 lacks features some companies consider critical. Microsoft is making a huge push on a new reseller channel for cloud services (Office 365, EMS, Azure, and so on) called Cloud Solution Provider (CSP). There is a good chance that you will be talked to about using the CSP channel to purchase Azure. In this post, I will share some steps that you should go through to verify that you are ready to start an Azure deployment in CSP. Azure in CSP CSP is just one of many ways to purchase Azure, but it is the most unique of the ways because Microsoft has drawn a very hard line between Azure of the past (Azure V1 or Service Management) and Azure of the future (Azure V2 or Azure Resource Manager/ARM). The first thing that you should know about CSP is that it does not support Azure V1. That means that CSP does not include all of the features that you can get when you purchase Azure via an enterprise agreement, through Open, or via the direct (credit card) channels. The second thing that you should know is that you cannot use the legacy Azure Management portal with CSP. Instead, you must use the new Azure Portal (formerly known as “Codename Ibiza”), PowerShell, JSON, or REST to deploy and manage your services in a CSP subscription. This has a side-effect because some Azure features might be available in Azure V2 (and therefore in CSP) but the user interface might be missing. This was the case for Azure... --- ### Installing Remote Desktop Services in Windows Server 2012 R2 - Published: 2016-07-18 - Modified: 2024-09-04 - URL: https://petri.com/installing-remote-desktop-services-windows-server-2012-r2/ - Categories: Windows Server - Tags: Remote Desktop Services, Windows Server - Article Type: How To In today's Ask the Admin, I'll show you how to install RDS in Windows Server 2012 R2. In Remote Desktop Services Deployment Options in Windows Server 2012 R2 on Petri, I walked you through the available deployment options, but in this article I’d like to show you how to use Server Manager to deploy RDS. I’ll use the standard deployment model, which allows the RD server roles to be distributed or installed on a single server. Standard deployment is the default deployment model, and while for the purposes of this demonstration I’ll install the three server roles on one server, that’s not best practice. The Quick Start deployment model is useful in testing scenarios or in small branch offices where only a single server is available. The Windows Internal database is installed as part of the process to support the RD Connection Broker role, as are some IIS components for RD Web Access, which provides access to RemoteApps or desktops from the Start menu or a web portal. Licensing If you want to use your RDS deployment beyond the 120-day trial period, you’ll need to install the RD Licensing role, add your license, register the licensing server with Active Directory, and then add RD Licensing to your RDS environment. RD Licensing is installed like any other server role, and you don’t need to use the special RDS deployment option in Server Manager. Deploy Remote Desktop Services Servers that you want to use in your RDS deployment need to... --- ### Microsoft’s New Stream Service Aims To Simplify The Corporate Video Experience - Published: 2016-07-18 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-stream-service-aims-simplfythe-corporate-video-experience/ - Categories: Microsoft 365 - Tags: News, Office 365, Stream - Article Type: News Microsoft has announced a new video sharing service for the corporate environment called Stream; the goal of the new service is to make it easier to upload and share content internally. Microsoft is continuously looking for new ways to enhance the productivity for its larger clients and with its new Stream service, they are focusing on democratizing video inside the corporate firewall. Seeing as video is one of the most effective ways to communicate, the company is hoping to make the process of uploading and sharing easier as well as discovering content already loaded into the network. Microsoft Stream is entering public preview today and anyone with business email address can signup to test out the service. If the service sounds familiar, it is similar to Office 365 video but the company says that this tool builds upon that feature set and it looks like this product will eventually replace that offering. The announcement post does not explicitly state this but implies that Office 365 video is evolving into Microsoft Stream. The basic premise behind the tool is that in a controlled environment, employees can easily upload, share and discover internal videos through one site. The goal of the service is to take the ‘work’ out of sharing video internally and make it accessible to all employees while also maintaining the high levels of security that the enterprise demands. Stream will allow companies to not only share pre-recorded content but also stream it as well with the ability to share live video. And for developers/partners, there is a full suite of Stream APIs to enahnce the product through extensibility. As with all Microsoft enterprise products, when the final version of the platform is... --- ### What is Office 365 (2016) > This is an overview of the most successful productivity suite of all time. Office 365 has many different offerings, see what it can offer you. - Published: 2016-07-18 - Modified: 2024-09-04 - URL: https://petri.com/office-365-2016/ - Categories: Microsoft 365, Office - Tags: Office 365 This post written in 2016 gives an overview of what Office 365 is including plans, features, mobile, storage, management tools and more. It also lists similar products from other companies. You may have been hearing the term Office 365 around your office or maybe you have been seeing it as the subject of online articles, but what is Office 365 exactly? This post is designed to give a general overview of what Office 365 is for individuals and business in 2016. Simply put, Office 365 is a subscription to Microsoft’s Office productivity suite. There are many different Office 365 plans; however, they fall into two categories. These main categories are plans for individuals/families and plans for organizations. Any person or organization can go to Office. com and sign up for an Office 365 plan. What you get and what you pay will vary widely depending on which plan you choose. Is there a plan for me and/or my organization? Yes. Microsoft has Office 365 plans for: individuals, families, educational organizations, governments, small decentralized businesses, huge traditional corporations, and everything in between. From the smallest plan to the biggest they all offer access to Microsoft software and/or services related to productivity. Plans for individuals and families The smallest plan is Office 365 Personal for $6. 99 a month (or $69. 99 a year). For this price you gain access to the most up-to-date desktop Office programs (PC or Mac), 1TB of OneDrive storage, and 60 minutes of Skype calling. This plan is perfect for anyone who uses the Office programs on one or several devices because documents can be stored locally and synced using OneDrive. This plan makes financial sense for the... --- ### Understanding the basics of the Azure IoT Solution - Published: 2016-07-18 - Modified: 2022-07-25 - URL: https://petri.com/understanding-azure-iot-solution/ - Categories: Microsoft Azure - Tags: Azure IoT, IoT, News - Article Type: News Curious about what Azure IoT is? At Microsoft's WPC conference I had a chance to sit down with the company and talk about their solution.   The term IOT has been floating around for a few years and in the last 18 months or so, it has become a term that is widely used but not always universally understood. By connecting a device to the internet, it becomes connected to a new world of opportunities and in the enterprise space, it’s driving fundamental changes to how companies operate from a standard buy and sell to a service model. For a more detailed understanding, check out Securing IoT with Azure Sphere on Petri. Microsoft has been playing in this space well before IOT became a common acronym and along with the proliferation of these devices around the globe, the company has been working alongside its partners and internally to develop solutions to fully utilize the data streams IOT devices enable. At WPC last week, I sat down with Jerry Lee, Director of product marketing for Data Platform and Azure IoT to paint the picture of Microsoft’s solution in the growing market space. To extract the full value out of IOT devices, you need an entire suite of products; you need to gather and extract the data, analyze it and then act upon it to gain the full value of connecting new devices to the Internet. It all starts with the device and Microsoft’s strategy is to be open and encompassing of all products and platforms. You can bring any type of device to the Microsoft environment and utilizing an open SDK, connect the device to Azure; this... --- ### SoftBank to Buy ARM for $32 Billion - Published: 2016-07-18 - Modified: 2024-09-04 - URL: https://petri.com/softbank-buy-arm-32-billion/ - Categories: Mobile - Tags: News - Article Type: News Spurred in part by a British pound that has plummeted in value since that country's "Brexit" vote, Japan's SoftBank announced this morning that it will purchase UK-based mobile chip designer ARM Holdings for $32 billion in cash. Spurred in part by a British pound that has plummeted in value since that country's "Brexit" vote, Japan's SoftBank announced this morning that it will purchase UK-based mobile chip designer ARM Holdings for $32 billion in cash. "ARM and SoftBank share a vision of the way technology is going to change people's lives, the way technology is going to enable communication and collaboration around the world," ARM CEO Simon Segars said. "And with SoftBank's backing, with the level of investment that they can make in this business, we believe we'll be able to achieve more than we could standing on our own. " So, yes, this deal is all about the money. But many, especially here in the United States, are probably unfamiliar with both of these companies. SoftBank is a Japanese multinational telecommunications and Internet corporation which owns, among other things, the Sprint wireless carrier in the U. S. It invests heavily in high tech firms around the world, and recently sold Supercell, the Finnish maker of mobile video games like Clash of Clans for $8. 6 billion. It also just jettisoned about $10 billion of its stake in the China-based Internet giant Alibaba. ARM is the Intel of the mobile world, but with a twist: It doesn't actually manufacture any of the mobile chipsets it designs. Instead, it licenses its mobile chipsets to other firms, like Apple, Broadcom, Qualcomm, and many others. Those companies create the chips that power the vast majority of smart phones, tablets and... --- ### Introduction to Azure Automation Desired State Configuration - Published: 2016-07-15 - Modified: 2024-09-04 - URL: https://petri.com/introduction-azure-automation-desired-state-configuration/ - Categories: Cloud Computing - Tags: Azure, Desired State Configuration, PowerShell - Article Type: Overview Russell explains that Azure Automation Desired State Configuration (DSC) is comprised of Azure Automation and PowerShell DSC. In today’s Ask the Admin, I’ll explain the ins and outs of Azure Automation Desired State Configuration. Azure Automation Desired State Configuration (DSC) is composed of two key technologies: Azure Automation, a cloud service that’s been around for a couple of years, and PowerShell DSC, a declarative syntax based on PowerShell that allows system administrators to define device configuration. Azure Automation If you’re not already familiar with Azure Automation, it’s a management platform for automating and maintaining cloud resources using a PowerShell-based workflow engine (runbooks). Azure Automation can be used to automate and schedule routine tasks, such as starting and stopping virtual machines, restarting web services or doing anything that is supported by Azure PowerShell. And just like PowerShell, the platform is extensible, so in theory, any internet-connected service or platform can be managed. For more information on Azure Automation, see Getting Started with Microsoft Azure Automation and How to Use Microsoft Azure Automation on the Petri IT Knowledgebase. PowerShell DSC PowerShell Desired State Configuration is similar to Puppet and Chef, and is used for configuring servers and preventing configuration drift. Rather than scripting a configuration, for instance install this component, set registry keys and then reboot the server, DSC uses a declarative syntax that defines how servers should be configured without specifying a list of tasks needed to achieve the result. It’s like Group Policy on steroids, allowing servers to be configured without specialist knowledge of how components should be installed. For more information on... --- ### Restore Azure VMs in the Azure Portal - Published: 2016-07-15 - Modified: 2024-09-04 - URL: https://petri.com/restore-azure-vms-azure-portal/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Azure Virtual Machine, Backup, IaaS, Recover, Restore, virtual machine - Article Type: How To Aidan shows how to recover a virtual machine using the Azure Portal from a back up of your Azure Resource Manager (ARM) or CSP virtual machine. A previous post, Backing up Azure VMs in the Azure Portal, showed you how to back up your Azure Resource Manager (ARM) or CSP virtual machines, and this post will show you how to recover a virtual machine using the Azure Portal. Accident I needed to clean up my lab to save some money so I deleted some virtual machines. Accidentally deleting an Azure virtual machine I got a notification that the virtual machine was deleted ... and noticed the name of the virtual machine. I have a resource group that contains a load balanced web farm that I have been using for experimenting with and for writing articles such as this one. The virtual machine was a part of that lab. The wrong virtual machine was deleted I inspected the Azure audit logs and sure enough, I removed the wrong machine. This lab is important to my recent work so I, luckily, back up the virtual machines. Restore the Virtual Machine Navigate to (Browse > Recovery Services Vaults) and open the Recovery Services vault that you use to back up your virtual machines. Expand All Settings and select Backup Items. There you should see each virtual machine that was being backed up, along with the last backup status and latest available restore point. The blade informed me that my missing virtual machine was successfully backed up at 8:08 PM during the previous evening... . --- ### The Sams Report EP 47: Fearless Leader, Signoffs, and Windows as a Service - Published: 2016-07-15 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-47-fearless-leadr-signoffs-windows-service/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including the road to release, WPC announcements, Windows as a Service, build signoffs, and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including the road to release, WPC announcements, Windows as a Service, build signoffs, and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=i4NCdmJez4g RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: July 15 - Published: 2016-07-15 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-15/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because I'm traveling so much I don't even know where I am anymore, this edition of Short Takes focuses on businesses saving money with Windows 10, Microsoft's legal victory, Raspberry Pi's cry for help, a potential UK ban on encryption, and so much more. WPC 2015 opening day keynote Because I'm traveling so much I don't even know where I am anymore, this edition of Short Takes focuses on businesses saving money with Windows 10, Microsoft's legal victory, Raspberry Pi's cry for help, a potential UK ban on encryption, and so much more. Study: Businesses can save big by moving to Windows 10 A Microsoft-commissioned study by Forrester claims that businesses will save over $400 per employee over the first three years by moving to Windows 10. So it's like the OS is paying you to use it! "With Windows 10, IT and employee productivity are improved, and third-party license costs are reduced or eliminated," the study explains. "Desktop security issue remediation time is reduced by one-third, and client managers can recover 20 minutes per day to meet with more clients. Deployment is also significantly faster than past implementations. " One wonders why all companies haven't upgraded already. Don't they like to save money? "This Is Why the Doubters Are Wrong on Microsoft Corporation" Because so many people hear the word "Microsoft" and think "fuddy-duddy"? Microsoft's legal victory might not be the end of that story As Brad wrote yesterday, Microsoft won its closely-watched legal battle with the U. S. Department of Justice, with the U. S Circuit Court of Appeals in New York ruling that U. S. service providers are not required to honor warrants seeking data stored overseas. That's good news, of course. But consider the possible side-effects of this... --- ### Backing Up Azure VMs in the Azure Portal - Published: 2016-07-14 - Modified: 2024-09-04 - URL: https://petri.com/backing-azure-vms-azure-portal/ - Categories: Microsoft Azure - Tags: ARM, Azure, Azure Backup, Azure Resource Manager, Backup, Cloud Solution Provider, CSP, IaaS, virtual machines - Article Type: How To Learn how to configure backup of Azure virtual machines using the Recovery Services vault in the Azure Portal. Microsoft recently announced support for backing up Azure IaaS virtual machines in the new Azure Portal, which in turn means there is support for Azure Resource Manager (ARM) and Cloud Solution Provider (CSP) subscriptions. In this post, I will show you how to configure backup of Azure virtual machines in the Azure Portal. Background We’ve had support for backing up Azure virtual machines for a while now, via the class Azure management portal. This was great unless: You wanted to use the newer Azure Portal, which is probably going to be the center of all future management and feature improvements. You want to support ARM virtual machines. You are using an Azure in CSP subscription which doesn’t support ARM or the classic management portal. This is why Microsoft introduced the Recovery Services vault in the new Azure Portal, offering Azure Backup and Azure Recovery Services (disaster recovery), for Azure V1 (classic or Service Management) and Azure V2 (ARM or Azure Resource Manager) virtual machines. Deploy the Recovery Services Vault Log into the Azure Portal (https://portal. azure. com) and click New. Search for Backup and Site Recovery, select Backup and Site Recovery (OMS), and select Create. Name the vault, select your Azure subscription, and either create a new or select a resource group in your region of choice. Note that the region must match the region that the virtual machines that you want to protect are located in. Create a new Azure Recovery Services vault [Image Credit:... --- ### Google Faces New Antitrust Charges in EU - Published: 2016-07-14 - Modified: 2024-09-04 - URL: https://petri.com/google-faces-new-antitrust-charges-eu/ - Categories: Cloud Computing - Tags: Google, News - Article Type: News The European Commission this morning announced a third set of antitrust charges against Google, formally accusing the search giant with abusing its advertising and shopping services. Photo credit: Reuters The European Commission this morning announced a third set of antitrust charges against Google, formally accusing the search giant with abusing its advertising and shopping services. "Google's conduct, based on our evidence, is harmful to consumers," EU Competition Commissioner Margrethe Vestager said in a press briefing. "Google has come up with many innovative products that have made a difference to our lives. But that doesn’t give Google the right to deny other companies the chance to compete and innovate. " The charges against Google come via two statements of objections, and they will be familiar to anyone following Google's previous travails on the continent. That is, Google is once again abusing its market dominance by harming competitors so that it can enter new markets. In the advertising space, Google is charged with harming competition for online ads with its AdSense for Search service, primarily by preventing customers from using rival services. Citing "a broad range of evidence and data," the EU claims that Google artificially favors its own shopping services in its search engine over those of rivals. "We see that happen very, very, very often," Ms. Vestager said. "This is where we have the strongest evidence and it’s the same kind of investigation that we are pursuing when it comes to travel and local search to see if we find a pattern that suggests that Google is abusing a dominant position in general search. " Naturally, Google asserts its innocence... . --- ### What Is Azure Information Protection? - Published: 2016-07-14 - Modified: 2024-09-04 - URL: https://petri.com/azure-information-protection/ - Categories: Cloud Computing - Tags: Azure, Cloud, Data Protection - Article Type: Overview Russell Smith looks at components of Microsoft’s new Azure Information Protection service, which includes identity-driven security, encryption, information rights management, automatic classification and more. In today’s Ask the Admin, I’ll take a detail look at the components of Microsoft’s new Azure Information Protection service. A couple of weeks back, Microsoft announced its new Azure Information Protection (Azure IP) service, which is now available in preview. A cloud-based service designed to protect not only data in the cloud but also on premises, Azure IP keeps data secure when it’s at rest or moving across the wire. Identity-Driven Security Identity-driven security is the basis for most of Microsoft’s security products, and Azure IP is no exception. And whether users are internal or external to your organization, Azure Active Directory is used for authentication. Azure Rights Management Services (RMS) is at the core of Azure IP, which will replace Azure RMS when Azure IP reaches general availability. If you’re not familiar with Azure RMS, it protects data by using encryption, identity, and authorization policies, and works on phones and tablets (no mobile device extension required), as well as PCs and Macs with Office 2016. Even when files leave your organization, the protection provided by RMS remains in place. One of the advantages of the identity-driven approach is that unlike peer-to-peer encryption technologies, while data is kept from prying eyes, it can still be accessed by indexing and data mining services, ensuring it stays discoverable and valuable to the business. Data owners can control what users can do with files once they receive them. For instance, you might want to prevent users for forwarding an email... --- ### Microsoft Wins Appeal, Doesn't Have To Hand Over Data Stored In Ireland - Published: 2016-07-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-wins-appeal-data-stored-abroad-safe-us-government/ - Categories: Microsoft Azure - Tags: Azure, Data, News, US government - Article Type: News Microsoft has won an appeal that required it to turn over data stored in an Irish database; a big win for all cloud providers as it protects client information from the U.S. government. For years, Microsoft has been battling it out with the U. S. government about a warrant that was issued requiring the company to turn over information that was stored in an offshore data center. Today, the 2nd U. S Circuit Court of Appeals in New York overturned a 2014 ruling requiring the company to hand over the information from a narcotics case that was stored in one of its data centers. The problem began when the U. S. government wanted Microsoft to hand over email information that was stored on an Irish server. Microsoft argued that because the physical server was not located on US soil, the government did not have the right, nor ability, to require the company to hand over the documents. This court case has big implications in the cloud based world we are headed towards because this ruling means that the laws where the physical server is stored governs the data on the hard drives not where the company is headquartered. In short, just because Microsoft owns the data center in another country does not mean that the U. S. government can require the company to hand over information stored on hard drives in that facility. Circuit Judge Susan Carney, full text here, stated  that warrants issued under the Stored Communications Act are applicable to data stored within the United States; U. S. service providers are not required to honor warrants seeking data stored over seas. This is a big win for Microsoft and every other company in the US that stores data overseas... --- ### Microsoft Changes The Battle Plan For Azure Stack - Published: 2016-07-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-changes-battle-plan-azure-stack/ - Categories: Microsoft Azure - Tags: Azure Stack, News, WPC 2016 - Article Type: News Microsoft has announced a change in strategy for Azure Stack where they will be working with vendors to certify hardware for the platform. This week at WPC 2016, Microsoft has made several announcements including the pricing for its new Windows 10 Enterprise offering at $7 a month and launching Surface as a Service. In addition, the company is repositioning Azure Stack to be a turn-key product and is working with hardware vendors to develop solutions. Azure Stack is a product from the company that allows large companies to gain some of the benefits of Azure in their local data centers. And initially, the product was going to be available to existing hardware devices but now the company is switching plans to work with vendors to certify hardware that will work with the platform and this will be the only way to access the Microsoft is working with Dell, Lenovo and HPE to build turnkey integrated systems that combines software, hardware, support and services into one solution. Because the company is working directly to control the narrative about the hardware, this will allow them to release features at a faster rate and provide greater stability with the software. This change is not universally praised, while this works well for Dell, Lenovo and HPE to help sell new hardware and services, companies with existing deployments or small startups looking to use this type of service for private clouds now find themselves at a disadvantage. Later this year, the company will release the second technical preview of the platform with planned general arability arriving in mid-2017. After release, the company will look to expand the supported hardware... --- ### Servicing Options for Windows Server 2016 Announced - Published: 2016-07-13 - Modified: 2024-09-04 - URL: https://petri.com/current-branch-for-business-servicing-option-for-ws2016/ - Categories: Windows Server - Tags: CBB, Current Branch for Business, Long-Term Servicing Branch LTSB, Nano Server, News, Server Core, Server with Desktop Experience, servicing, Updates, Window Server 2016 - Article Type: News Microsoft announced a bunch of information about Windows Server 2016 (WS2016) at the Worldwide Partner Conference on July 12th in Toronto including how Microsoft will service, or release new features, to Windows Server 2016 after general availability. Microsoft announced a bunch of information about Windows Server 2016 (WS2016) at the Worldwide Partner Conference on July 12th in Toronto. Part of this was how Microsoft will service, or release new features, to Windows Server 2016 after general availability (confirmed as the week of Microsoft Ignite 2016 on the week of September 26th. Service Branches The first thing that we need to make clear is that the historical “5+5” model of 5 years of mainstream support followed by 5 years of extended support is not changing. Windows Server 2016 will continue that legacy, and this story isn’t about technical support. Servicing is about how fast features will be released by Microsoft and installed in your machines. You see this in Windows 10; Microsoft releases updates through different branches, such as preview (Windows Insiders), current branch (4 months), current branch for business (8 months), and long-term servicing branch (10 years). It’s clear from the lists of features in Windows Server, and the marketing since TechEd Europe 2014, that Windows Server 2016 is very cloud focused. The two target markets are private cloud (Azure Stack) in large enterprises and public/private clouds in hosting companies. Microsoft believes that these many of customers want cloud agility, that is, the ability to embrace feature improvements as soon as they are available: To be competitive And to offer more innovation to customers On the other hand, many organizations cannot support, either logistically or because of regulations, this pace of change or any change... --- ### Download an Azure VM to Hyper-V - Published: 2016-07-13 - Modified: 2024-11-19 - URL: https://petri.com/download-azure-vm-hyper-v/ - Categories: Microsoft Azure, Virtualization - Tags: Azure, Azure Virtual Machine, Download, Hyper-V, virtual machine - Article Type: How To Aidan provides step-by-step directions to download a virtual machine from Microsoft Azure and get it running on a local or on-premises Hyper-V host/cluster. In this article I will show you how to download a virtual machine from Microsoft Azure and get it running on a local or on-premises Hyper-V host/cluster. Background It seems like everyone wants to know how to migrate virtual machines into Azure. The answer is to use Azure Site Recovery. I have been working with Azure customers for over two years, and until very recently, no one had asked me, “How do I download a virtual machine from Azure? ” I suspected that I knew the answer, so I went online to confirm my suspicion. In this post, I will show you how to get your virtual machine downloaded and running on Hyper-V. What We Are Really Downloading The first thing you need is to understand the anatomy of a (Azure) virtual machine. This process is not going to download a whole virtual machine; instead we will download the disks that make up that virtual machine. The remaining data is metadata, which is pretty meaningless to us. The metadata is a machine specification that we will recreate locally using Hyper-V Manager, Failover Cluster Manager, or System Center Virtual Machine Manager. We will attach the downloaded disks, which contain the OS, programs, settings, and data, to the blank virtual machine. This process takes what we value from the machine and gets it back running where we want it. Tip: Log into the virtual machine in Azure and note any settings that you need to preserve, such as data drive letters. Download... --- ### Getting Started with Office 365 Planner - Published: 2016-07-13 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-office-365-planner/ - Categories: Microsoft 365 - Tags: Office 365, project management - Article Type: Overview Office 365 Planner has reached general availability and now it’s time to put it through its paces. I’m happy to say that it more than lives up to my expectations. In today’s Ask the Admin, I’ll walk you through the key features of Planner, the latest addition to the Office 365 fold. Back in April, I wrote an overview of Microsoft’s lightweight project management solution, Introducing Office 365 Planner. Since then, Planner has reached general availability for those with Enterprise, Business Essentials, Premium, and Education subscriptions, and now it’s time to put it through its paces. I’m happy to say that it more than lives up to my expectations. Long overdue in filling the gap between Wunderlist and Microsoft Project, Planner provides similar features to rival Trello, which is based on the Kanban scheduling system developed by Toyota. But what makes Planner shine is the integration with other Office 365 apps, such as Notebook, Files (think SharePoint/OneDrive for Business), Calendar, and Conversations (Outlook). It’s possible to link apps together yourself by using Groups. But Planner does all the hard work for you by creating workspaces in the aforementioned apps, which are all tightly integrated with plans, to which you can invite Office 365 users or external users if you’ve created accounts for them. And as you’ve probably guessed, this integration is based on Office 365 Groups. Getting Started with Office 365 Planner Planner is launched like any other Office 365 app, through the app launcher in the portal. Or you can directly access Planner by using the tasks. office. com URL. Starting Planner for the first time requires a bit of a wait while Microsoft sets up the system for... --- ### Microsoft’s Bringing A New Skype Client To Linux Users - Published: 2016-07-13 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-new-skype-client-linux-users/ - Categories: Office - Tags: News, skype - Article Type: News Microsoft is bringing a new Skype client to Linux users and they are also making it easier for users with Chromebooks access the messaging platform. Microsoft has announced today that they are bringing a new Skype client to Linux users, reaffirming the company’s commitment to make modern versions of Skype available to all users. This new app will eventually replace the existing Linux app once it reaches mature state. The new client is launching in an alpha state, meaning it is not feature complete and may not be ready yet for production use. The app is built on WebRTC which the company says will help them to keep the product updated for the years to come and that feature parity should remain on-par with the company’s other clients. In addition to the new Linux client, if you are using a Chromebook, you can now visit web. skype. com where you can access basic features of the service without needing to download a Skype application. During the past few months, Skype has come under heavy criticism for the product failing to deliver basic functionality on a reliable basis. While there is still work to be done, it does appear that the company has fixed the issue of messaging not appearing in order and syncing sporadically on multiple clients. Skype is a critical component of Microsoft’s future as the company has positioned the platform during the past few years as its preferred messaging platform for consumers. To maintain and grow the install base, the company is making sure that its apps, on all of its platforms, reflect the modern Skype experience which is why we are seeing the company... --- ### Remote Desktop Services Deployment Options in Windows Server 2012 R2 - Published: 2016-07-12 - Modified: 2024-09-04 - URL: https://petri.com/remote-desktop-services-deployment-options-windows-server-2012-r2/ - Categories: Windows Server - Tags: Remote Desktop Services, Windows Server - Article Type: Overview In this article, Russell explains how RDS Session Host deployment in Windows Server 2012 R2 differs from earlier versions of Windows Server and the deployment options available. In today’s Ask the Admin, I’ll explain how RDS Session Host deployment in Windows Server 2012 R2 differs from earlier versions of Windows Server and the deployment options available. Remote Desktop Services in Windows Server has improved over the years, but can be difficult to understand because of the many components involved. RD Session Hosts perform the dirty work by serving up your users’ terminal services sessions. But even in a single-server deployment scenario, an RD Connection Broker is mandatory. Before you plan a RDS deployment, it’s important to understand the role of the RD Connection Broker. RD Connection Broker When a remote desktop session is disconnected, the apps in the user’s session continue to run. To keep track of user sessions, RD Connection Brokers store information such as the name of the RD Session Host server where each session resides, session state and ID, and the user logged in to each session. This information is used to connect users to existing sessions, should they exist, on RD Session Host servers. When establishing new sessions, RD Connection Brokers also perform a role by connecting users to RD Session Host servers under the least load. Starting in Windows Server 2012, RD Connection Brokers not only store user session data, but also configuration information. RD Connection Broker uses the Windows Internal database to store session and configuration information, except when installed in high availability (HA) mode where SQL Server 2008 R2 (or later) is used. RD Connection Broker requires an... --- ### How to Choose an Azure Virtual Machine - Published: 2016-07-12 - Modified: 2024-09-04 - URL: https://petri.com/choose-azure-virtual-machine/ - Categories: Cloud Computing - Tags: Azure, virtual machines - Article Type: How To How should your company select an Azure virtual machine? Aidan Finn lays out what the series and preset sizes really mean and offers guidelines for getting the most for your budget. In this post, I’m going to give you an updated answer to one of the most common questions that I encounter while selling Azure to my customers: How do I select and size an Azure virtual machine? Order from the Menu Azure is McDonald's, not a Michelin Star restaurant. You have to take the burger their way, not yours, and you cannot say how you want your steak cooked. You take the menu that you are given but you get your order quickly and you can have a lot of what you order. You cannot say, “I’d like a machine with 4 cores and 64 GB RAM and a 200 GB C: drive. ” That simply is not possible in Azure. Instead, there is a preset list of series of machine, and within those series, there are preset sizes. The C: drive is always 127 GB (unless you upload your own template), no matter what the pricing pages claim as the disk size (it’s actually the size of the temp drive). Any data you have goes into a data drive, which you specify the size of (and therefore control the cost). Remember that storage (OS and data disks) costs extra! Sizing a Virtual Machine There are two things to consider here. The first is quite common sense: The machine will need as much RAM, CPU, and disk as your operating system and service(s) will consume; that’s no different from how you sized on-premises physical or virtual machines in the... --- ### Silicon Valley Darling Facebook Moves to Office 365 - Published: 2016-07-12 - Modified: 2024-09-04 - URL: https://petri.com/silicon-valley-darling-facebook-moves-office-365/ - Categories: Microsoft 365 - Tags: Facebook, News, Office 365 - Article Type: News Facebook is moving to Office 365, a big win for Microsoft in a region of the US that has typically been anti-Microsoft. Facebook, the unstoppable force in the social media space, has been a Silicon Valley success story about how a company can grow and take over an entire market in a few short years. The company made its investors billions, its employees millions and now the company, based in Menlo Park, is moving to Office 365. This move is a win for Microsoft but it’s the signal that will reverberate around the valley that’s the bigger win for the company. Silicon Valley has traditionally been anti-Microsoft and with Facebook, one of the largest companies in that region now utilizing the platform, it could be the start of winning over more companies in that market. With Facebook and it’s 13,000 employees moving to Office 365 (the blog post did not say what they were using previously), it will help Microsoft position the platform with startups who often look to mimic the path that Facebook has taken.  The blog post announcing the move, written by, Tim Campos, CIO of Facebook, cites the flexibility, security and collaboration tools within Office 365 as the reasons they are moving to the service. Office 365 has been a huge success for Microsoft. The company took a risk to move from the traditional software-sales model to a service and licensing model that has millions of companies now subscribing and paying a monthly charge to access the suite of productivity tools.   For customers, the Office 365 model offers a lower upfront cost and perpetual security and software upgrades which makes... --- ### Microsoft’s Enterprise Windows 10 Subscription Service Will Start At $7 A Month - Published: 2016-07-12 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-enterprise-windows-10-subscription-service-will-start-7-month/ - Categories: Windows 10 - Tags: News, Windows as a service, WPC 2016 - Article Type: News Microsoft has announced at WPC that for enterprise customers, starting this fall, Windows 10 will cost $7 per month per user. Microsoft is hosting its worldwide partner conference (WPC) this week in Toronto and the company is pulling back the curtains on its Windows subscription service. Announced today and starting this fall, Microsoft will be offering Windows 10 Enterprise, via its Cloud Solution Providers (CSP) network, on a per user monthly license. Windows 10 Enterprise E3 (E5 pricing was not announced) from CSPs will offered for the first time for $7 a month per user. This new arrangement allows CSPs to bundle services together to offer a complete Microsoft package where a per-user offering can be added on a line-item basis. In addition, because it is a per user license and not a per device license, you no longer have to do device audits. For example, customers can now buy a Windows, Office and Dynamics license on a monthly basis for one fee per user via a CSP portal. Seeing as the licenses are being sold on the monthly interval, the goal is to increase the flexibility of offerings provided to the enterprise with the addition of a monthly Windows license. For Microsoft, this new offering to its channel partners is a way for the company to push its operating system via its vast ecosystem in a way that benefits all parties involved on the sales side. With its third-party providers now also putting pressure on enterprise clients to upgrade, because the channel partner now benefits too, it’s a clever way for Microsoft to push the adoption of its new OS and help to... --- ### Microsoft Announces Surface as a Service - Published: 2016-07-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-surface-service/ - Categories: Mobile - Tags: Microsoft Surface, News - Article Type: News Last month, Microsoft quietly unveiled a Surface Membership plan that allows small businesses to buy the firm's devices on a monthly payment plan. Today, at its Worldwide Partner Conference, Microsoft offered a similar plan to its partners, allowing them to sell Surface as a service. Last month, Microsoft quietly unveiled a Surface Membership plan that allows small businesses to buy the firm's devices on a monthly payment plan. Today, at its Worldwide Partner Conference, Microsoft offered a similar plan to its partners, allowing them to sell Surface as a service. "We have seen how innovative devices shift people's behavior, inspire ideas, catalyze collaboration, accelerate progress, and transform business," Microsoft corporate vice president Yusuf Mehdi explained. "This year, we are investing in programs that increase partner revenue and profitability. " To achieve this, Microsoft is expanding its Surface Enterprise Initiative with a new set of programs for partners that will help them reach a broader set of customers. Among those changes is the ability for Microsoft cloud solution provider partners---which are also Surface authorized distributors---to sell Surface devices as a service alongside managed cloud solutions such as Office 365 and Windows 10. This new Surface as a service initiative is starting with ALSO in Europe, but Microsoft will expand it globally in the weeks and months ahead. "This new offering provides faster device refresh and more flexible purchasing options, and ensures customers can have the latest Surface devices that evolve with the best Windows and Office have to offer," Surface general manager Brian Hall says. Microsoft also announced an expansion of its Surface multi-national purchasing program, adding CDW, Insight, SHI and Zones to the list of companies that can resell Surface devices and accessories to enterprise customers around the world. The plan is open for... --- ### PC Market Declined Almost 5 Percent in Q2 2016 - Published: 2016-07-12 - Modified: 2024-11-19 - URL: https://petri.com/pc-market-declined-almost-5-percent-q2-2016/ - Categories: Hardware - Tags: News - Article Type: News Analysts from both Gartner and IDC reported this week that the PC market declined once again in the second quarter of 2016, by 4.8 percent, with PC makers shipping just over 63 million units. Analysts from both Gartner and IDC reported this week that the PC market declined once again in the second quarter of 2016, by 4. 8 percent, with PC makers shipping just over 63 million units. That said, there was some good news, too: Shipments exceeded expectations, and some markets---like the U. S. ---are finally showing signs of rebounding. "PC shipment declines became rather modest in the second quarter compared with previous quarters, which suggests a fading currency impact," Gartner principle analyst Mikako Kitagawa said, referring the negative impact the strong U. S. dollar has had on PC sales recently. "The strong results in the U. S. offer a glimpse of what the market could look like with pockets of growth and a stronger overall environment," IDC's Loren Loverde added. "It's not dramatic growth, but it could push the market into positive territory slightly ahead of our forecast for 2018. " With this quarter's decline, the PC market has now been shrinking for almost two full years. And both analyst firms believe that shrinking will continue through at least next year. That said, there were some positive signs, albeit subtle ones, of improvement in some markets. PC sales in the U. S. rose modestly, by 3 percent, in the quarter. And some of the biggest PC makers, like HP and Dell, experienced growth overall. Lenovo remained the number one PC maker in the world, however, selling 13. 2 million units, good for a bit over 20 percent market share. But Lenovo's PC sales declined for... --- ### Deploy & Configure Azure ARM Load Balancer - Published: 2016-07-11 - Modified: 2024-09-04 - URL: https://petri.com/deploy-configure-azure-arm-load-balancer/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Manager, Cloud Solution Provider, CSP, Load Balancer, load balancing, NAT, Network Security Group, networking - Article Type: How To In this post I will show you how to deploy and configure the Azure Resource Manager (ARM and CSP) network load balancer. The post will cover load balancing Azure virtual machines and creating NAT rules. In this post I will show you how to deploy and configure the Azure Resource Manager (ARM and CSP) network load balancer. The post will cover load balancing Azure virtual machines and creating NAT rules. Background As I explained in Understanding the Azure Resource Manager Load Balancer, Microsoft has made significant changes to how virtual machines are networked in a Resource Manager or ARM deployment. The concepts of cloud services and endpoints are dead. Instead, there are two options for making a virtual machine available on the Internet: Public IP (PIP) Address: This is also known as an instance-level address. You assign a public IP address resource, with an optional Microsoft-owned domain name, to the virtual NIC of an individual virtual machine. This is a simple approach, but it isn’t very scalable or manageable, and it will waste public IPv4 addresses and increase costs. Load Balancer: You create a single point of entry to your service that will have a single IP address. You can use the load balancer to create NAT rules, for example to enable remote desktop access to individual virtual machines with port remapping (TCP 50051 to TCP 3389 on VM01). You can also use the load balancer to create load balancing rules to spread traffic across a number of virtual machines. The load balancer, which is a function of the network fabric in Azure and not Windows Network Load Balancing (NLB), can be used to provide external or internal load balancing, as was explained in my... --- ### Windows 10 How to Get Better Battery Life - Published: 2016-07-11 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-get-better-battery-life/ - Categories: Windows 10 - Tags: Microsoft Edge, Mobile, UWP, Windows 10 - Article Type: How To If you want better battery life from Windows 10, adopt Edge as your browser after Microsoft releases the Windows 10 Anniversary Update at the end of July 2016, and use Windows Store (UWP) apps where possible. In today’s Ask the Admin, I’ll look at how you can get better battery life using Windows 10. If you search the web for ways to improve battery life in Windows, you’ll come across articles containing registry hacks, OS configuration changes, and tweaks to the default power plans, all aimed at getting you a bit more mileage out of your device. While I don’t want to dismiss all of that advice out of hand, in my experience, most of it is not worth the effort; or in some cases, even counterproductive. Microsoft Edge CPU usage with eight popular websites open in background tabs (Image Credit: Microsoft) So if you’re still with me, I have two pieces of advice. Adopt Edge as your browser and use Windows Store (UWP) apps where possible. Let me explain why. Microsoft has the Edge One of the first things that many of us do when configuring a new device is to install Google Chrome, by far the most popular alternative to Microsoft’s home-grown browsers: the much reviled Internet Explorer - and Edge - the new default in Windows 10. I’ve used Chrome intermittently in the past, and I’m not a fan for several reasons, one of which being because it drains my notebook battery much faster than IE or Edge. If you’ve been holding back on switching to Edge, you might want to take another look once the Windows 10 Anniversary Update is released at the end of July... . --- ### Nadella: Only the Microsoft Ecosystem Cares About the Individual and the Organization - Published: 2016-07-11 - Modified: 2024-09-04 - URL: https://petri.com/nadella-kicks-off-wpc-telling-partners-microsoft-ecosystem-cares-individual-organization/ - Categories: Main - Tags: Satya Nadella, WPC 2016 - Article Type: News Microsoft's WPC 2016 conference is being held this week in Toronto and the event kicked off with a keynote by Satya Nadella who emphasized how Microsoft and its partners are the foundation of productivity. Microsoft is hosting its Worldwide Partner Conference in Toronto today and taking center stage was Satya Nadella who shared the path the company has created in the mobile first, cloud first world he envisions. The event, which is focused around its partners and how Microsoft is building out new technologies to support corporate environments, is critical for the company as it allows for them to connect directly with their partner companies who play an important role in making Microsoft software a success. Nadella took center stage today to give insight into the overall strategy of the company and where they are headed. To little surprise, Azure, Office, bots, Windows, and the like are all part of the path forward but was emphasized several times is that Nadella believes only Microsoft cares about the success of both the individual as well as the organizations they create. Nadella stated, “We are the only ecosystem that cares deeply about both people and organizations people build to outlast them” and that Microsoft is the original democratizing force in the industry for technology. While there are certainly other companies in the industry who would scoff at Nadella’s statements, there is no denying the fact that the company is successful because of not only its own ambitions, but the vast partner network that creates the ecosystem around the Redmond software. If it were not for the plug-ins, bolt-ons, supplemental features, custom packaging and all the other value-ad third-party companies provide, Microsoft's impact in the corporate world would be... --- ### Manage Active Directory Groups Using PowerShell - Published: 2016-07-08 - Modified: 2025-01-08 - URL: https://petri.com/manage-active-directory-groups-using-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, PowerShell, Windows Server - Article Type: How To In this Ask the Admin, Russell Smith shows you how to create AD groups using PowerShell, how to add parameters when creating an AD group using the Windows PowerShell Integrated Scripting Environment (ISE), and then modify (or remove) AD group membership using PowerShell. In today's Ask the Admin, I'll show you how to create and add and remove users from Active Directory groups using PowerShell. In a previous article on the Petri IT Knowledgebase, Create New Active Directory Users with Excel and PowerShell, I showed you my preferred method for adding new users to Active Directory. It’s easier to collect all the required information about users in a database or Excel spreadsheet and then pipe that to the New-ADUser cmdlet, rather than trying to manually construct a command to create each user. But in that article, I didn’t take into consideration group membership. Today, I want to show you how to create Active Directory groups and modify group membership using PowerShell. Create a New AD Group To run the PowerShell cmdlets in this article, you’ll either need to be logged into a Windows Server 2012 domain controller or a domain-joined machine that has the AD module for PowerShell installed, and you'll need to be using an account that has permission to create and modify AD groups. For more information on installing the AD module for PowerShell, see How to Install the Active Directory PowerShell Module on a Member Server on Petri. To run the following cmdlets, you don’t necessarily need to remember their syntax. You can just type the cmdlet in a PowerShell prompt and follow the onscreen prompts for information. In the screenshot below, you can see I created a new AD group by simply typing New-ADGroup, pressing ENTER, and... --- ### The Sams Report EP 46: The Road Ahead, Podcast Turns 1 - Published: 2016-07-08 - Modified: 2024-09-24 - URL: https://petri.com/73949-2/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including the road to release, Windows phone upgrade info, WPC, and a few fireworks. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including the road to release, Windows phone upgrade info, WPC, and a few fireworks. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=p3dj8OOD4MA RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: July 8 - Published: 2016-07-08 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-8/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because I still kind of miss Steve Ballmer, this edition of Short Takes focuses on the mysteries around Kevin Turner's exit, Microsoft's cringe-worthy invite to Bay Area hipsters, AV market consolidation, Android malware, and more. Steve Ballmer facepalm. (Credit: Associated Press) Because I still kind of miss Steve Ballmer, this edition of Short Takes focuses on the mysteries around Kevin Turner's exit, Microsoft's cringe-worthy invite to Bay Area hipsters, AV market consolidation, Android malware, and more. Kevin Turner's exit was his idea, but why did Satya Nadella wait to "transform" that part of the business? There are some intriguing side-stories in this week's departure of Kevin Turner from Microsoft. For starters, Turner left Microsoft, he wasn't forced out. But in the wake of his leaving, CEO Satya Nadella announced a sweeping "tranformation" (read: controlled explosion) of Turner's sales organization, bringing it more in line with the rest of the company. Why did he wait? And despite both Turner and Nadella both complimenting each other quite a bit this week, the Microsoft employees I spoke with yesterday universally said that Turner was loathed within the company, mostly because of the adversarial nature of the "scorecard" employee rating system he brought with him from Wal-Mart. Quite clearly, many are celebrating his departure, leading me once again to question why Nadella even put up with this over the past couple of years while he transformed the rest of Microsoft. The answer may be simple enough: Despite the fear and loathing, Turner was successful, and he helped Microsoft grow during a time of transition and change. It's amazing what you'll put up with under those conditions. "Oops! Wearables can leak your PINs and... --- ### Best Practices with Azure ARM Network Security Groups - Published: 2016-07-08 - Modified: 2024-09-04 - URL: https://petri.com/best-practices-azure-arm-network-security-groups/ - Categories: Cloud Computing - Tags: Azure, Best Practices, DMZ, Network Security Group, networking, NSG, Security - Article Type: Overview In this post about Azure network security group best practices, Aidan offers tips for creating, configuring, and associating network security groups (NSGs) in Azure Resource Manager or CSP. This post will explain some of the best practices for creating, configuring, and associating network security groups (NSGs) in Azure Resource Manager or CSP. Reminder – What Are Network Security Groups I have written two previous posts that will explain what NSGs are and how to deploy them: What Are Network Security Groups in Azure Resource Manager? Deploying & Configuring Network Security Groups in Azure ARM In summary, a network security group is a policy that contains a collection of rules that block or allow traffic to and from a virtual NIC or a virtual network subnet in Azure. You can specify network addresses, locations, TCP/UDP/all protocols, and port numbers. Using a priority or weight value, you can stack rules. For example, a generic rule with a low value can block or allow everything, and more specific rules can override that, thanks to a higher priority. Start with a Plan Starting with a plan is a difficult conversation, especially when developers are granted the ability to deploy machines for themselves. There are those who think that devs are geniuses. In my experience, devs (and thus devops) are clueless when it comes to planning, security, and so on. But try, we must! You need to plan out the infrastructure that you are going to deploy. This will impact your network design and your network security groups design. Document: The virtual machines The network rules that you will require Your desired virtual network design – this will change! Will You Use... --- ### Office 365 Tip: Exchange Server Retention Policies - Published: 2016-07-07 - Modified: 2024-09-04 - URL: https://petri.com/office-365-tip-exchange-server-retention-policies/ - Categories: Exchange Server - Tags: Cloud, exchange, Office 365 - Article Type: How To In today’s Ask the Admin, I’ll explain how to use Retention Policies in Exchange Server, Exchange Online and Office 365. Hoarding information seems to be a hobby for many of us, and if you’ve ever been an Exchange administrator, you’ll be familiar with the problem of users who are determined to store every last email they receive – forever. But to be fair, it does require effort to manage email manually. You have to think about which emails to keep and how to categorize them if there’s no automated system in place. Inbox rules can go some way to help but still need to be planned and implemented by the user. Retention Policies Introduced in Exchange Server 2010, Retention Policies allow administrators to define the maximum amount of time items will be kept. It’s important to note that even if an administrator sets a policy to retain an item for a period of time, there’s nothing to stop items being manually deleted. In other words, it’s better to think of these as ‘Data Removal’ policies because there is no guarantee that anything will be retained. The Default MRM (Messaging Records Management) Retention Policy (Image Credit: Russell Smith) Retention Policies contain one or more Retention Policy Tags, and Retention Policies are linked to one or many mailboxes. The Default Retention Policy in Exchange is applied to every mailbox, and to archive mailboxes if enabled. Policies are enforced weekly on mailboxes bigger than 10MB by the... --- ### Microsoft’s Bringing More Data Driven Products To Market Starting Today - Published: 2016-07-07 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-data-driven-products-market-starting-today/ - Categories: Microsoft Azure, PowerBI - Tags: Data, News, Power BI - Article Type: News Microsoft is making Power BI publish to the web generally available and Power BI Embedded will reach GA on July 11th; the company is also announcing a preview of Cortana Intelligence with Bing Predicts too. Microsoft has been investing heavily in taking large quantities of data and turning them into insights that have meaningful value to businesses. Today, the company is giving updates on several of its products including GA dates and a data driven summit in September. Starting today, Microsoft is making Power BI publish to the web generally available and Power BI Embedded will reach GA on July 11th.   The company is also announcing a preview of Cortana Intelligence with Bing Predicts too. The new Cortana Intelligence capabilities allow its customers who use the service to leverage Microsoft’s social, search and web data to augment their own information to help predict outcomes to a wide variety of business problems. This program is built upon the success the company has had with the consumer version of Bing Predicts that accurately modeled every knockout game of the 2014 soccer World Cup and 95% of the 2014 US mid-term elections. If you are headed to Ignite this year, the company will be hosting its first Data Science Summit from September 26-28 in Atlanta. The event will offer the opportunity to interactive with the company’s latest big data technology and breakout sessions will provide access to individuals using these types of services in real-world environments. Microsoft has become obsessively data driven since the creation of its Azure platform. Because of the ability to deploy sensors, gather analytics and create databases has become so easy, the market for data analyzation is growing exponentially as every company, no matter... --- ### Kevin Turner Leaves Microsoft, Will Become CEO of Citadel Securities - Published: 2016-07-07 - Modified: 2024-09-04 - URL: https://petri.com/kevin-turner-leaves-microsoft-will-become-ceo-citadel-securities/ - Categories: Cloud Computing - Tags: News - Article Type: News Kevin Turner's 11-year run as Chief Operating Officer at Microsoft has come to a close: Citadel Securities announced this morning that Mr. Turner will become its CEO after a brief transition period. Kevin Turner's 11-year run as Chief Operating Officer at Microsoft has come to a close: Citadel Securities announced this morning that Mr. Turner will become its CEO after a brief transition period. "Kevin is a world-class business builder with experience managing large and complex organizations," Citadel Founder and CEO Kenneth Griffin said in a prepared statement. "He will be an outstanding leader for Citadel Securities. Kevin is a proven innovator who brings expertise in technology and operations with a client-first focus. I’m confident that under Kevin’s leadership we will further distinguish ourselves as the partner of choice for our clients. " Mr. Turner led Microsoft's worldwide sales, field marketing, and services organization, and managed Microsoft's support and partner channels, Microsoft stores, and corporate support functions. He oversaw over 50,000 employees in more than 190 countries, Microsoft notes. Among his accomplishments at the firm, Mr. Turner delivered the highest customer satisfaction scores in Microsoft's history. And he helped oversee Microsoft's transition into a cloud computing powerhouse: The firm ended fiscal 2015 $93. 6 billion in revenue, a jump of 8 percent growth year-over-year. The timing of Turner's exit is interesting, but coincidental, I was told: Mr. Turner has headlined Microsoft's annual Worldwide Partner Conference (WPC) for years, and this year's rendition starts next Monday in Toronto. Less coincidental, Mr. Turner was believed to be one of the top candidates for Microsoft's CEO role when Steve Ballmer announced that he was stepping down in 2013. That job eventually went to... --- ### Back Up and Restore Azure Premium Storage VMs - Published: 2016-07-07 - Modified: 2024-09-04 - URL: https://petri.com/back-restore-azure-premium-storage-vms/ - Categories: Cloud Computing - Tags: Azure, Azure Backup, Azure Virtual Machines, Backup, Premium Storage, virtual machines - Article Type: Overview After lots of feedback, Microsoft Azure has added public preview support for backing up and restoring virtual machines that use Premium Storage. This article will explain what that means for you. Background Most people who are new to cloud or hosting assume that any hosted virtual machine will be backed up by default and for free. That is usually not the situation. In the case of Azure, Microsoft only added generally available support for backing up virtual machines in the second half of 2015, years after we were able to run virtual machines in Azure! Azure Backup for IaaS virtual machines protects and restores virtual machines as an atomic unit, the same way that you might back up and restore Hyper-V or vSphere virtual machines: You back up a machine, and if that machine is lost, then you restore the entire virtual machine. I’ve had to use Azure Backup to restore my own web server, and I was glad that it worked as advertised. Unfortunately, Azure Backup for IaaS virtual machines did not support virtual machines with Premium Storage. This caused a problem because this is the choice of storage for those that need really high IOPS or low storage latency. In fact, Microsoft even advises the use of DS-Series virtual machines for SQL Server. (As an aside, that’s not necessarily a good recommendation for the common small database because it will cost a fortune. ) The Preview So if Premium Storage is recommended for big and critical workloads,... --- ### Using RemoteApp with Azure AD Domain Services - Published: 2016-07-06 - Modified: 2024-09-04 - URL: https://petri.com/using-remoteapp-azure-ad-domain-services/ - Categories: Cloud Computing - Tags: Active Directory, Azure, Azure AD, Azure AD Domain Services Azure ADDS, Azure RemoteApp, RDS, Remote Desktop Services, RemoteApp - Article Type: How To, Overview Microsoft recently announced that Azure RemoteApp can be used with Azure AD Domain Services (still in preview) for domain authentication, without running domain controllers as virtual machines in Azure. Microsoft recently announced that Azure RemoteApp can be used with Azure AD Domain Services (still in preview) for domain authentication, without running domain controllers as virtual machines in Azure. I’ll explain what this means in this post. Azure RemoteApp Many services that customers want to migrate or run in the cloud still depend on thick client applications. For example, a business might want to go all in on the cloud, deploy Office 365, and still need to run Office Pro Plus. This business could use Remote Desktop Services (RDS) in Azure to deploy Office Pro Plus and publish the applications to the users. Or in another example, an organization might use Azure Site Recovery (ASR) as a disaster recovery (DR) solution. In the event of a fire, they might need to failover. The services and data are safe in Azure, but they’re useless without end-user access. RDS comes in handy because it can provide near instant access to Mac, iOS, Android, and Windows devices. On the downside, RDS requires: A lot of infrastructure, such as a connection broker, load balanced SSL gateways, and more, for high availability or large numbers of users Software assurance for your RDS CALs to be used with a cloud service. Just how many people purchased that add-on or even have RDS CALs sitting there in case of a disaster? RemoteApp is licensed per-user (based on the service being deployed and the number of users assigned to the deployment). You don’t need RDS CALs... --- ### Understanding How Business IT Is Being Attacked - Published: 2016-07-06 - Modified: 2024-11-19 - URL: https://petri.com/understanding-business-attacked/ - Categories: Security - Tags: DDOS, IT, Malware, Phishing, Security - Article Type: Overview Aidan explains, using recent statistics, how the nature of attacks has changed from floppy disks and firewall probes, to a more intelligent system that targets human weaknesses. This article will explain, using recent statistics, how the nature of attacks has changed from floppy disks and firewall probes, to a more intelligent system that targets human weaknesses. Background I was writing a presentation on Microsoft’s new cloud-based enterprise security solutions for a sales event, and I realized that I needed some facts to support my assertions. I went digging and found some reports by Microsoft and HM (the United Kingdom) Government. The Microsoft report is a sales and marketing tool, but it does contain information that is sourced from multiple independent sources before the actual sales pitch begins. The UK government report, while based on UK business, does give us a good sample of attacks that are happening in businesses around the world. The information is gathered by survey, covering the calendar year of 2015, and deals with small/medium (< 500 employees) and large (500+ users) businesses. I read the reports, and the information was scary. The days of a teenager poking your firewall are over. Attackers have changed, and the origins of the vulnerabilities have changed too. The reason that this is scary is that most businesses (small and large) have built IT security to defend against threats from the 1990s and 2000s. Before you start planning, you need to understand the field of battle. So let’s get started. Scale of Attacks No matter what size of industry that you work in, you are a target. Businesses in all sizes of markets are reporting a... --- ### Microsoft AppSource Aims to Make It Easier To Discover Business Apps - Published: 2016-07-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-app-sources-aims-make-easier-discover-business-apps/ - Categories: Windows 10 - Tags: apps, Appsource - Article Type: News Microsoft AppSource solves one of the company's big problems with its developer ecosystem, discoverability; the new search engine is now live and ready for use. One of the key themes that Microsoft has been promoting over the last couple of years is ‘extensibility’, or the ability to extend a product with new plug-ins, add-ons and the like. Also, to no surprise, the company is also pushing its app store and while developers have been jumping on-board, the company has done a poor job at improving the visibility of these products. One of the problems the company currently faces is that searching its app store or looking for all of the available add-ons for its productivity applications is not a unified or seamless process. With repositories scattered and app stores not having everything Microsoft offers, finding the app or plug-in you need is a challenge. Microsoft is looking to fix this problem with AppSource, a new search engine for all of the company’s line-of-business (LoB) software-as-a-service (SaaS) apps from Microsoft and its partners; this will include apps and services built on-top of Dynamics, Office, Cortana and Azure too. The site, which you can view here, makes it easy to search for specific products and applications with the use of a search bar and the ability to focus searches on specific types of products. As of this post, the site contains more than 200 business apps. Making these apps and services more accessible is a big win for both the user and the developer. For developers, it makes finding your product much easier and with a unified search platform, users are more likely to discover your product on... --- ### Microsoft Updates Skype for Business Mac Preview - Published: 2016-07-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-skype-business-mac-preview/ - Categories: Microsoft 365 - Tags: Macintosh, News, Skype for Business - Article Type: News A new version of the Skype for Business for Mac Preview is now available, adding new contacts and presence, IM, peer-to-peer calling, group video calling, and conversation history capabilities. A new version of the Skype for Business for Mac Preview is now available, adding new contacts and presence, IM, peer-to-peer calling, group video calling, and conversation history capabilities. Microsoft released the first preview of Skype for Business for Mac back in April, first to a limited set of invite-only testers and then later to a broader audience. It included basic capabilities like access to upcoming scheduled meetings and the ability to join those meetings. Now, with the second preview of this client, Microsoft is expanding the capabilities of Skype for Business Mac fairly dramatically. Here's what's new: Contacts and presence. Now you can see whether contacts are offline or online. And if they're online, you can see whether they're busy, in a meeting or available. IM conversations. You can now start IM (text chat) conversations with your online contacts. Peer-to-peer (P2P) calling. You can now call other Skype for Business users directly using Voice over IP (VoIP). Group video calling. Skype for Business for Mac now supports group video calls with up to four meeting participants. Conversation history. You can view a list of previous conversations and restart them as needed. Unfortunately, the second Skype for Business for Mac Preview is only available to those who already registered for the pre-release program. Microsoft says there are over 7,000 organizations and 22,000 individuals participating in the program currently, and that it is "at capacity. " Those who are in the program will automatically be updated to the... --- ### Microsoft to Bundle App-V and UE-V with Windows 10 Going Forward - Published: 2016-07-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bundle-app-v-ue-v-windows-10-going-forward/ - Categories: Virtualization, Windows 10, Windows Server 2016 - Tags: News - Article Type: News Microsoft announced this week that it will take the long-awaited step of moving two key client virtualization solutions---App-V and UE-V---from its Microsoft Desktop Optimization Pack (MDOP) suite of utilities and bundle them for free with Windows 10 Enterprise and Education. Microsoft announced this week that it will take the long-awaited step of moving two key client virtualization solutions---Application Virtualization (App-V) and User Experience Virtualization (UE-V)---from its Microsoft Desktop Optimization Pack (MDOP) suite of utilities and bundle them for free with Windows 10 Enterprise and Education. "With the upcoming Windows 10 Anniversary Update, we’re reducing the effort of deploying two of the most popular components of MDOP by including them in the Windows Enterprise and Education editions instead of requiring a separate download and deployment," Microsoft's J. C. Hornbeck revealed in a post to the the Official Microsoft App-V Team Blog. "They will also be included in-box in Windows Server 2016 Datacenter. " As you may know, access to MDOP is a benefit of Microsoft's Software Assurance (SA) program for volume licensing customers. The suite debuted in 2008, has been updated yearly since, and consists of several useful virtualization, management, and restoration utilities, most of which would be quite useful to businesses and even individuals that are not in the SA program. Today, MDOP provides three virtualization tools: the App-V application virtualization and streaming solution, the UE-V roaming profiles solution, and Microsoft Enterprise Desktop Virtualization (MED-V), which supplies traditional desktop OS virtualization capabilities. This is changing, however. With Microsoft bundling App-V and UE-V into Windows 10 Enterprise and Education, those tools will be removed from MDOP, leaving MED-V as the sole virtualization solution in the suite. Furthermore, future updates to those tools will be deployed with Windows: The versions... --- ### Enabling HTTPS for PowerShell Remoting in Windows Server 2012 R2 - Published: 2016-07-05 - Modified: 2024-09-04 - URL: https://petri.com/enabling-https-powershell-remoting-windows-server-2012-r2/ - Categories: Cloud Computing - Tags: Azure, Cloud, PowerShell, Security - Article Type: How To In today’s Ask the Admin, I’ll kill two birds with one stone by showing you how to enable secure PowerShell Remoting in Azure virtual machines (VMs) and on-premises servers running Windows Server 2012 R2. In today’s Ask the Admin, I’ll kill two birds with one stone by showing you how to enable secure PowerShell Remoting in Azure virtual machines (VMs) and on-premises servers running Windows Server 2012 R2. PowerShell Remoting uses encryption to secure communications between devices, regardless of whether HTTPS is deployed as the transport. But outside of a domain environment where the Kerberos authentication protocol provides a trust relationship between computers, PowerShell Remoting could be subject to man-in-the-middle attacks. To thwart these kinds of threats, Microsoft recommends using HTTPS as the transport for PowerShell Remoting when a session is initiated from a workgroup device. Azure VMs deployed using the classic deployment model have PowerShell Remoting enabled and are securely configured by default. With that model, you could download a certificate from the management portal, install it on your device and then make a secure connection to an Azure VM. But that’s no longer the case for VMs deployed using Azure Resource Manager (ARM), where only RDP connections are permitted by default. In this article, I’ll show you how to generate a self-signed certificate for the purposes of establishing SSL connections. While self-signed certificates are useful in lab environments, if you need HTTPS in a production environment, certificates should either be issued by your own Certification Authority (CA) or by a public CA. Add a Rule to an Azure Network Security Group If the Azure VM you want to manage was deployed using the Resource Manager deployment model in the management... --- ### Getting the Most Out of Office 365: Revisiting Office 365 Groups > Microsoft has been making incremental improvements to Office 365 Groups over time. Now with the addition of Planner and Skype Groups are complete. - Published: 2016-07-05 - Modified: 2024-09-04 - URL: https://petri.com/getting-office-365-revisiting-office-365-groups/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365 Groups, Outlook Groups - Article Type: How To Teams who communicate well understand what needs to be done, what is being worked on, and what is coming up next. To many in the business world, communication is synonymous with email but what if there was an easier way to chat Teams who communicate well understand what needs to be done, what is being worked on, and what is coming up next. To many in the business world, communication is synonymous with email. Microsoft is finally catching on to the trend to dethrone email as the one and only business communication tool. For a couple of years now, Microsoft has been building and improving Office 365 Groups, and it has now come a long way. Office 365 Groups represent the future of business communication investments for Microsoft. Office 365 Groups embodies many core principles of the new Microsoft. Office Groups use new tools such as Planner to mirror many of the workflows, such as flagging emails, that have been staples of Office productivity. Microsoft has been working hard to bring all of their tools into the browser, and the most recent addition is Skype for Business. Office-365-Apps Email started out as an effective way to send memos around an office quickly. However, now email has become a monster to manage and work with. The success of chat tools like Slack and Hipchat have been sold upon the ill-will toward email. Many have wondered why Microsoft has not purchased a popular productivity chat application, and the reason probably has a lot to do with their investment in Office 365 Groups. Microsoft clearly believes that chat is just one piece of the productivity puzzle. You still need storage, notes, to-do trackers, calendars, contact lists, and... --- ### Microsoft Hangs Small Business Bait For Office 365, Free Skype Meetings - Published: 2016-07-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hangs-new-small-business-bait-office-365-free-skype-meetings/ - Categories: Office - Tags: meetings, News, skype - Article Type: News Microsoft has announced a new Skype meetings feature today that anyone can use but the company is quietly hoping that this offering will entice small businesses to start utilizing Office 365 as it has two major restrictions. Microsoft has announced a new Skype meetings feature today that anyone can use but the company is quietly hoping that this offering will entice small businesses to start utilizing Office 365. Skype Meetings, an online meetings tool that allows small businesses to easily host meetings, is now available for no charge but it has a number of restrictions that limit its capabilities. The feature allows any small business not subscribing to Office 365 (if you have Office 365, you already have access to more powerful tools) to host meetings with up to 10 people for the first sixty days and three people thereafter. The obvious key here is that after two months, the feature becomes much more restrictive and is likely when Microsoft hopes you jump into Office 365. The benefit to this meetings feature is that you don’t need a Skype account to join the online event. All you need is connectivity and the appropriate hardware (mic/camera) which nearly all new laptops include and of course, any modern smartphone will have these features too; the host does need a Skype account to setup the meeting. In a pinch, this type of offering can be quite useful as it reduces the complexity of asking everyone to add each other as a contact on Skype and allows you to simply host a meeting. But, with only being able to invite up to 10 people for sixty days, this isn’t a feature you can rely on to run your business which is likely the... --- ### Blackberry Finally Says Goodbye to Classic Phones - Published: 2016-07-05 - Modified: 2024-09-04 - URL: https://petri.com/blackberry-finally-says-goodbye-classic-phones/ - Categories: Mobile - Tags: BlackBerry, News - Article Type: News Blackberry has transitioned its devices, in turn, to touch-based Blackberry 10 and Android systems, but it has thus far always kept at least one classic smart phone in the market. But that's finally changing this week: Blackberry has announced that it will no longer make the BlackBerry Classic. Blackberry has transitioned its devices, in turn, to touch-based Blackberry 10 and Android systems, but it has thus far always kept at least one classic smart phone in the market. But that's finally changing this week: Blackberry has announced that it will no longer make the BlackBerry Classic. "Sometimes it can be very tough to let go," Blackberry COO Ralph Pini wrote in the official Inside Blackberry blog. "For BlackBerry, and more importantly for our customers, the hardest part in letting go is accepting that change makes way for new and better experiences. " That's a sentiment that many former handset rivals of Apple and Google share: As anyone behind the phone efforts at Nokia, Windows phone, or Palm could tell you, change consumes us all eventually. And for Blackberry, which once dominated the market for business smart phones, that change has hit hard: In the most recent quarter, the firm obtained just 0. 2 percent market share, behind even the woeful Windows phone. Pini says that Blackberry's current strategy hinges on three tenets: Expanding choice for customers, leveraging its unmatched experience and capabilities in security, and building on the BlackBerry pedigree. And while the firm feels that both Blackberry 10---the firm's in-house mobile platform, built on QNX--and Android have what it takes to deliver on those goals, they will do so on more modern, touch-based devices, not the older classic designs. Blackberry initially offered the Blackberry Classic, its latest and now last traditionally-designed handset---in December 2014, noting... --- ### Which Write Is Right For PowerShell? > PowerShell teacher Jeff Hicks explains the differences between Write-Output, Write-Host and when to use each command. - Published: 2016-07-01 - Modified: 2024-09-04 - URL: https://petri.com/which-write-is-right/ - Categories: PowerShell - Tags: Beginner If there is one cmdlet that confuses PowerShell beginners more than anything, it is Write-Host. Newcomers see commands like Write-Output, Write-Host, and if running PowerShell 5.0 Write-Information. Determining which one to use can be a bit overwhelming. So let me make it simple: For now you can ignore Write-Information. If there is one cmdlet that confuses PowerShell beginners more than anything, it is Write-Host. Newcomers see commands like Write-Output, Write-Host, and if running PowerShell 5. 0 Write-Information. Determining which one to use can be a bit overwhelming. So let me make it simple: For now you can ignore Write-Information. If you have a bit more experience, you can find an intro article here. Instead let's focus on Write-Output, which has aliases of write and echo and Write-Host: What's the difference? To answer this question we first need to take a step back and look at how PowerShell works. Think of PowerShell as an engine that you can install into different vehicles.  These vehicles are referred to as the hosting applications. Out of the box Microsoft lets you run PowerShell inside the console application (cmd. exe) and the PowerShell ISE. But other applications can also host PowerShell. A number of years ago tools like PowerGUI and PowerShell Plus were popular and also hosted the PowerShell engine. Commercial products like PowerShell Studio from SAPIEN Technologies also host PowerShell. And while there are guidelines for how applications should host PowerShell, there may be subtle differences in implementation that might mean a different experience for you. Ultimately, the choice of writing option comes down to your choice of destination. In other words, where is the cmdlet writing to? You have two choices: the pipeline or the host. There are perfectly valid reasons for writing to either destination, but you need to understand why. Here's... --- ### The Sams Report EP 45: White Bands With Internal Angst, More Ads Maybe - Published: 2016-07-01 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-45-internal-angst-ads-maybe/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including some internal musing, the company is trying more ads on the desktop, NYC trip, year end and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including some internal musing, the company is trying more ads on the desktop, NYC trip, year end and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=Ql2f2Ytl4p4 RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: July 1 - Published: 2016-07-01 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-1/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because how could it possibly be July already, this edition of Short Takes focuses on HP's new PC as a Service scheme, an Office 365 outage in the US, Dell's decision to kill its Android tablet line, Oracle's big court case loss, Elizabeth Warren's trust-busting, and so much more. The next time someone tells you that Microsoft's stores are always empty, send them to the one in New York City. Because how could it possibly be July already, this edition of Short Takes focuses on HP's new PC as a Service scheme, an Office 365 outage in the US, Dell's decision to kill its Android tablet line, Oracle's big court case loss, Elizabeth Warren's trust-busting, and so much more. HP launches PC as a Service (PCaaS) scheme With everything moving to subscription services these days, it is retroactively not that surprising that HP is launching a scheme, called PC as a Service (PCaaS), that lets enterprises "subscribe" to PC hardware too. Under the terms of the plan, customers will pay a monthly per-PC fee instead of paying for the PCs upfront. This saves money, freeing it for other purposes, while providing HP with more regular revenues. And the scheme also provides proactive PC support services, naturally, and a regular PC replacement schedule, ensuring that employees aren't routinely stuck with out-of-date equipment. This is what we in the industry call a "win-win," and now I'm curious why no one has tried such a thing before. I'll be writing more about PCaaS in the near future. "Microsoft adds Sprinklr as Azure provider" Those are nonsense words. Office 365 goes down for the count for some ZDNet's Mary Jo Foley reported this week that some Office 365 customers in the United States experienced sporadic service outages... --- ### Windows 10 Is Installed On Nearly 1 in 5 PCs - Published: 2016-07-01 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-installed-nearly-1-5-pcs/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Windows 10 is installed on nearly one in five PCs as the market share for the operating system continues to climb because of the company's aggressive tactics to install the OS on PCs around the globe. At the end of every month, we get new statistics about the install base of various operating systems and browser usage. For the month of June, Windows 10 was installed on nearly 1 in 5 PCs with it owning 19. 14% of the market share. The stats, which come from Net Market Share, show that the OS climbed from 17. 43% which is a modest gain for the period. Notably, though, Windows 7 went from 48. 57% for May to 49. 05%; during the same period Windows 8 usage shrank from 11. 39% to 10. 46%. Windows XP, which is still holding strong in the market despite being no longer supported, is slowly losing its grip as it has fallen slightly from 10. 9% to 9. 78%. While these percentages are not perfect as they do use a sampling technique, they are widely regarded as the best information available to the general public. It should also be noted that the data collected is from machines that are connected to the web which makes the Windows XP stat even more scary as those machines are not protected from 0-day vulnerabilities and malware. Microsoft’s aggressive tactics to install Windows 10 appear to be paying off as the install base is climbing at a steady pace. The company recently announced that the Anniversary update will be available on August 2nd and that there are more than 350 million machines running Windows 10. --- ### Enterprise Agenda: Finding Your Fit with Disaster Recovery - Published: 2016-06-30 - Modified: 2024-09-04 - URL: https://petri.com/enterprise-agenda-finding-fit-disaster-recovery/ - Categories: Virtualization - Tags: Enterprise agenda - Article Type: Overview Preparing for disaster recovery is worth more than gold when an outage occurs. When the recovery process acts and feels like muscle memory instead of a scramble to figure out what to do, a business can recover faster and avoid the costly outages that impact every organization at some time or another. Preparing for disaster recovery is worth more than gold when an outage occurs. When the recovery process acts and feels like muscle memory instead of a scramble to figure out what to do, a business can recover faster and avoid the costly outages that impact every organization at some time or another. There are two fundamental ways to prepare your company for an outage: building your own infrastructure with redundant data centers, or using a third-party Disaster Recovery as a Service (DRaaS) solution. Either option has its risks and challenges, as well as rewards. To help explain both the risks and challenges, in this iteration of the Enterprise Agenda, we are going to take a closer look at the DRaaS model and why it may be an option for your company. Business schools teach you to invest where you have strengths and to outsource non-core components of your company. A simple way to illustrate this is the example that many companies do not own the building they are located in, they rent or lease the space. Why? Because when you buy a building, you become a real-estate company and if that’s not your strength, then you are investing time and money into an aspect of your business that does not benefit your core capabilities. By leasing space, you pay a company whose core strength is real-estate This focus on core business is behind the DRaaS model: Let a company that specializes in disaster recovery handle your outages while... --- ### Satya Nadella to Publish First Book in 2017 - Published: 2016-06-30 - Modified: 2024-09-04 - URL: https://petri.com/satya-nadella-publish-first-book-2017/ - Categories: Cloud Computing - Article Type: News Microsoft CEO Satya Nadella will publish his first book, Hit Refresh, in 2017. In doing so, he follows in the footsteps of Microsoft's first CEO, Bill Gates, who published The Road Ahead in 1995. Microsoft CEO Satya Nadella will publish his first book, Hit Refresh, in 2017. In doing so, he follows in the footsteps of Microsoft's first CEO, Bill Gates, who published The Road Ahead in 1995. As you might infer from the title, Mr. Nadella's book will describe his philosophy for pivoting the Microsoft juggernaut to address the needs of the mobile first, cloud first world. "This book is about change," Mr. Nadella says in a press release announcement. "It is not a 'how to succeed' book, nor is it a memoir---it's premature for that. Ultimately, I am writing for Microsoft team members, customers, and partners in hopes that these stories of transformation will be useful to them as they navigate their own path. " HarperCollins says the book will follow three main threads: Nadella's personal journey of transformation The change that is taking place today inside his storied technology company The change and one that is coming in all of our lives as intelligent machines become more ambient and more ubiquitous throughout society. "Nadella explores how people, organizations, and societies can and must transform—hit refresh—in their persistent quest for new energy, new ideas, relevance and renewal," the publisher explained. "Nadella writes that uniquely human qualities like empathy will become more valuable in a world where the torrent of technology will disrupt like never before. " Mr. Nadella will donate the proceeds from the book to Microsoft Philanthropies to benefit nonprofits working on public cloud for public good projects, the... --- ### Deploying and Configuring Network Security Groups in Azure ARM - Published: 2016-06-30 - Modified: 2024-09-04 - URL: https://petri.com/deploying-configuring-network-security-groups-azure-arm/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Resource Manager, CSP, firewall, Network Security Group, NIC, NSG, Rules, Security, Subnet, virtual machine - Article Type: How To This post will show you how to use Azure Resource Manager (ARM) or a CSP subscription to deploy network security and policy enforcement in the form of network security groups (NSGs). This post will show you how to use Azure Resource Manager (ARM) or a CSP subscription to deploy network security and policy enforcement in the form of network security groups (NSGs). Overview I recently wrote another post, "What Are Network Security Groups in Azure Resource Manager? " I went into great detail about what an NSG is and how it works, but here is a quick reminder. An NSG is a collection of rules that describe what traffic is allowed in our out. The rules specify source and destination address, the protocol, and the source and destination port. We can associate an NSG with a subnet (best practice) which affects all virtual machines on a subnet. Or we can associate an NSG with a virtual NIC (not a virtual machine), which affects that connection of a virtual machine. Demo Lab I have configured a small environment in Azure with a single subnet in a virtual network in a resource group called web-rg. There are two virtual machines, each with a single virtual NIC. Both machines will be web servers. I am going to create an NSG that I will assign to the subnet that will: Allow TCP 80 (HTTP) in Allow TCP 443 (HTTPS) in Allow TCP 3389 (remote desktop) in Prevent all traffic from the web servers to the Internet Create an NSG Open the Azure Portal (https://portal. azure. com) and sign in. Click New, search for “network security group”, select Network Security Group (published by Microsoft in Networking), and... --- ### PowerShell Problem Solver: Extending the Hot Fix Reporting Tool > PowerShell author Jeff Hicks continues to extend his hotfix reporting tool with additional filtering parameters and converts it to a function. - Published: 2016-06-29 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-extending-the-hot-fix-reporting-tool/ - Categories: PowerShell - Tags: Intermediate, PowerShell - Article Type: Overview We’ve come along way since we started this project on building a PowerShell hot fix reporting tool. We’ve wrapped up our functionality around the Get-Hotfix cmdlet. But there’s more to be done. We've come along way since we started this project on building a PowerShell hot fix reporting tool. We've wrapped up our functionality around the Get-Hotfix cmdlet. But there's more to be done. Let's say our manager has gotten wind of the project and decides to make a few "suggestions". In addition to finding hotfixes installed by a certain user, he also wants to be able to easily see updates installed before and/or after a given set of dates. Yes, you could write a PowerShell expression with Where-Object but you'd have to write it anew every time. That's why we're building a re-usable PowerShell tool. New Parameters To begin, I'll add some new parameters to the script. Param( ]$Computername = $env:COMPUTERNAME, $Description, $Username, $Before, $After, $Credential = ::Empty ) Notice that I have specified that any value for -Before or -After will be treated as a datetime object. This allows the user to enter a value like "1/1/2016" and have PowerShell automatically convert it to a datetime value. I also chose parameter names that are used in other cmdlets like Get-Eventlog. There's no reason to invent something new.   The new parameters are optional and have no default values. It also also possible to use all of the parameters. I might want to find all Security Updates installed by the Administrator account between January 1, 2015 and June 1, 2015. So how do we use these new parameters? Filtering with Where Since I know that anyone running my... --- ### Windows 10 Anniversary Update Arrives August 2nd, 350 Million Installs - Published: 2016-06-29 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-anniversary-update-arrives-august-2nd-350-million-installs/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has announced that Windows 10's Anniversary Update will arrive on August 2nd and will be a free update for all users. On August 2nd, Microsoft will be releasing the Anniversary Update for Windows 10 that the company has been publicly testing with Windows Insiders for seven months. This is the second major update to the platform (the first arrived in November of 2015) and as the name suggest, these new features for Windows 10 arrive on (nearly) the one-year anniversary release of Windows 10. The update brings with it many enhancements including a refined Start menu, new features for the taskbar such as badging for UWP apps to highlight notifications, improved pen input with Windows Ink, Edge now supports extensions and the list goes on and on. But arguably the biggest improvements come in the form of security enhancements that will make the platform more secure for both consumers and corporations. There are two new security enhancements: Windows Hello for apps and Windows Defender. Windows Hello for apps allows modern applications to use the biometric support built into Windows 10 to login into an application. For example, if you own a Surface Book, you can authenticate to an app with your face using the built-in Windows Hello camera. Windows Defender, the company’s free anti-malware service, now has the ability to schedule periodic quick scans. Also, there are new reporting summaries and notifications if malware is found on your device. Microsoft has been pushing Windows 10 aggressively to consumers and to businesses by placing advertisements on the desktop and automatically downloading the OS via Windows Update. The company says that there are... --- ### What Are Network Security Groups in Azure Resource Manager? - Published: 2016-06-28 - Modified: 2024-09-04 - URL: https://petri.com/network-security-groups-azure-resource-manager/ - Categories: Cloud Computing - Tags: Azure, firewall, Network, Network Security Group, NSG, Policy, Security - Article Type: Overview Network security groups (NSGs) can offer network security and policy enforcement for virtual networks in an Azure Resource Manager (ARM) or CSP deployment. In this post I will explain how network security groups (NSGs) can offer network security and policy enforcement for virtual networks in an Azure Resource Manager (ARM) or CSP deployment. What Are Network Security Groups? You can think of an NSG as being a simple form of distributed firewall that you create and that Microsoft applies within the Azure network fabric. You can create a policy and associate it with a virtual machine NIC or a subnet. Any rules that you create within the policy are applied to the associated resources. Note: Classic/Azure V1/Service Management deployments allowed you to associate NSGs with virtual machines or subnets. ARM changes how networking is done, so you associate NSGs with NICs or subnets only. The purpose of a NSG is to control traffic either by allowing or blocking it. We can create inbound security rules: NSG associated with subnet: Blocked traffic is stopped before it enters the subnet. NSG associated with a NIC: Blocked packets will be stopped at the NIC, even if it is allowed on the subnet. Associating an NSG with a subnet We can also create outbound rules: NSG associated with a NIC: Traffic is dropped before it leaves the virtual machine. NSG associated with subnet: Packets are stopped at the subnet, even if the transmitting NIC is allowed to send it. What does this mean? You can create a single NSG and impact all machines on a subnet (recommended), or... --- ### Windows 10 Ignoring the Hosts File for Specific Name Resolution - Published: 2016-06-28 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-ignoring-hosts-file-specific-name-resolution/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: How To Modifying the HOSTS hosts file causes your computer to look directly at the IP address specified in it. This is useful, for example, when you want to test a website before going live with a public DNS name, or when you want to prevent your computer from resolving a DNS name, thus preventing it from reaching it. Ever since the beginning of Windows and the TCP/IP protocol, name resolution of computer names has been done through several methods (knowing there are NetBIOS names and DNS names, we'll focus on DNS names in this article). Using DNS for name resolution is the common practice nowadays, but another method of manually translating names to IP addresses has been the HOSTS file (the HOSTS file is also used in Linux/Unix and Mac systems). Modifying the HOSTS hosts file causes your computer to look directly at the IP address specified in it. This is useful, for example, when you want to test a website before going live with a public DNS name, or when you want to prevent your computer from resolving a DNS name, thus preventing it from reaching it. The HOSTS file located in %WINDIR%System32driversetc is a simple text file (although it does NOT have a . TXT suffix), where for what seems like ages, you could add text lines such as this one: And once this was saved and name resolution cache had been cleared (run ipconfig /flushdns in a Command Prompt window), your computer would resolve the DNS name to the given IP address. To prevent the computer from communicating to any external DNS name, add the relevant name to the HOSTS file and point it to the 127. 0. 0. 1 IP address (which is the local host itself), or to 0. 0. 0. 0. For example, adding a line to a domain name, and the subsequent PING command... --- ### Deploy a New Domain from a Microsoft Azure Template - Published: 2016-06-27 - Modified: 2024-11-19 - URL: https://petri.com/deploy-new-domain-microsoft-azure-template/ - Categories: Cloud Computing - Tags: Active Directory, ARM, Azure, Azure Resource Management, domain controllers, Template, virtual machines - Article Type: How To Learn how to quickly deploy a new virtual machine-based Active Directory domain in Azure using a JSON template in Azure Resource Manager (ARM). In this post, I'll show you how to deploy a virtual machine-based Active Directory domain in Azure using an Azure Resource Management (ARM) template. The Problem As you might tell from the frequency of my Azure content here on Petri. com, I use Azure a lot. I use the Azure benefit from an MSDN Premium subscription. This gives me a monthly allocation of free credit, so my test work doesn't impact my credit card. But this work comes at another price: Whenever I am finished with a test or demo, I have to destroy every part of that demo so that it doesn't accrue any further charges to my account. A lot of my demo labs require some kind of legacy Active Directory. For example, I recently wrote a series of articles on Azure RemoteApp. Every RemoteApp scenario that I've encountered in the real world requires a legacy Active Directory that is synchronized via Azure AD Connect. This gives me users, computers, group policy, and OUs that I can deploy to RemoteApp users in conjunction with other domain-joined virtual machine-based services. And that's where I spend a lot of my time -- deploying and configuring domain controllers. Imagine this scenario: Day 1: Deploy a new domain to write article X, write the article, and destroy the entire resource group, including the domain to save Azure credit. Day 4: Deploy a new domain to write article Y, write the article, and destroy the entire resource group, including the domain to... --- ### Current Status Episode 41: Nutanix discusses Women in Technology - Published: 2016-06-27 - Modified: 2024-09-04 - URL: https://petri.com/current-status-episode-41-nutanix-discusses-women-technology/ - Categories: Current Status - Tags: Current Status, Women In Tech - Article Type: News Join us Monday, June 27th at 9:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Julie O’Brien (@julieaobrien), Nutanix Vice President of Corporate Marketing. Join us Monday, June 27th at 9:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Julie O’Brien (@julieaobrien), Nutanix Vice President of Corporate Marketing. It’s no secret that the field of IT is a predominantly male industry. Currently there is an active movement of support towards Women in IT. During the Nutanix . NEXT 2016 conference in Las Vegas; during an after hours conference event, Nutanix may have appeared that they were not supportive of women in IT. There has been a lot of community backlash, join us to get the truth about what happened, and how we move forward in the industry. https://youtu. be/WBTXe9qdoiY --- ### What Is Exchange Online Archiving? - Published: 2016-06-27 - Modified: 2024-09-04 - URL: https://petri.com/exchange-online-archiving/ - Categories: Exchange Server - Tags: Archiving, Cloud, Compliance, exchange, Exchange Online, Office 365 - Article Type: Overview Learn all about Exchange Online Archiving, a set of optional features that can be purchased separately from Exchange Online, which is also included in some Office 365 plans. In this Ask the Admin, I'm taking a look again at the confusing world of Microsoft terminology and product offerings. Today is the turn of Exchange Online Archiving (EOA), a set of optional features that can be purchased separately from Exchange Online. EOA is also included in some Office 365 plans. Microsoft describes Exchange Online Archiving as 'a cloud-based, enterprise-class archiving solution,' although that description may be stretching the imagination somewhat. It aims to simplify on-premises infrastructure by providing everything for your archiving, compliance, and eDiscovery needs in the cloud. EOA supports on-premises Exchange Server 2010 (Service Pack 2 and later) and 2013 deployments, and some Exchange Online plans. EOA has four main features: Archive mailbox Deleted item recovery Deleted mailbox recovery Mailbox backup Archive mailbox The archive mailbox (In-Place Archive) appears alongside the user's Inbox in Outlook or the Outlook Web App and allows users to manually archive mail when they reach their Inbox limit, if one is imposed. By default, items that are more than two years old are moved to the archive mailbox, or mail can be automatically moved according to retention policies set by an administrator. Because there's no offline access to the archive mailbox, it's especially useful for those with earlier versions of Outlook, which synchronizes the entire Inbox to the local PC. This often causes IT administrators headaches when limited disk space is available or when . pst files are used for archiving purposes. In-Place Archive in Outlook Web... --- ### Azure Enterprise State Roaming for Windows 10 Now Generally Available - Published: 2016-06-24 - Modified: 2024-09-04 - URL: https://petri.com/azure-enterprise-state-roaming-windows-10-now-generally-available/ - Categories: Cloud Computing - Tags: Azure Active Directory, Azure AD, Enterprise State Roaming, Profiles, Roaming Profiles, UE-V, Windows 10 - Article Type: News Microsoft has announced the release of Enterprise State Roaming for Windows 10 business customers and we dive into what this feature offers. Microsoft has announced the release of Enterprise State Roaming for Windows 10 business customers in one of their regular Azure feature & pricing update emails. This feature brings user and app state roaming to the enterprise, similar to what consumers have had through OneDrive since Windows 8. 0 and later. The text of the announcement from Microsoft What is Enterprise State Roaming? This new service brings together Windows 10 and Azure Active Directory (Azure AD) to allow end users to synchronize their user settings and application settings/data across multiple devices using the power of the cloud. This is the sort of thing that users have experienced since Windows 8 if they associated their login with a Microsoft account; you change your wallpaper on a PC and, miraculously, it appears on all of your other associated devices. Microsoft wanted to bring this same sort of unified experience to enterprise users, but by using the power of the work account (an account that is synchronized with Azure AD). Enterprises need a bit more than consumers, so Microsoft added some additional functionality: A line between personal and consumer data: This is something similar to what we have seen with app control in Microsoft Intune. Organizations need control of their data, so corporate data is not in a consumer cloud and consumer data is not in an enterprise cloud account. Additional security: Data does not leave Windows 10 without being automatically encrypted using Azure Rights Management... --- ### The Sams Report EP 44: Goodbye Surface 3, Mobile Love, and Hardware Ahoy - Published: 2016-06-24 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-44-goodbye-surface-3-mobile-love-hardware-ahoy/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover all of the Microsoft news this week including a lot of love for mobile users, Thurrott Premium, Microsoft year end, the road to the Anniversary update and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover all of the Microsoft news this week including a lot of love for mobile users, Thurrott Premium, Microsoft year end, the road to the Anniversary update and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=bK_mofbrzCI RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: June 24 - Published: 2016-06-24 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-24/ - Categories: Mobile - Tags: News - Article Type: Opinion Because I said so, that's why, this edition of Short Takes focuses on whether Microsoft should rebrand itself, more changes to Product Activation, end of life for Surface 3 and Band 2, Sony's alleged surprise at Xbox plans, and more. Because I said so, that's why, this edition of Short Takes focuses on whether Microsoft should rebrand itself, more changes to Product Activation, end of life for Surface 3 and Band 2, Sony's alleged surprise at Xbox plans, and more. Should Microsoft rebrand itself? A new report in Forbes asks an interesting if semi-rhetorical question: is it time for Microsoft to rebrand? Once you get past the obvious knee-jerk reactions and calm down, you can kind of see where this could make sense. After all, some of Microsoft's strongest brands---Skype, Xbox, Azure, Office 365, and even LinkedIn---aren't exactly helped by Microsoft branding anyway. And maybe the software giant should pull an Alphabet and free its brands from the shackles of the old-timeyness of the staid Microsoft brand. Because that's the issue: Yes, everyone knows about Microsoft. But what they know about it is that it's old and non-innovative. A copier. An also-ran. A company that once led in personal computing and is now just a peripheral player. By the way, I'm not saying any of that is true. Just that that is what people really think. Hm. I could rally around such a change. And if you really think about it, I bet you could too. "How Microsoft Predicted The Future Of The Smartphone" The future of the smart phone is no apps and no market share? Microsoft is changing Windows product activation yet again I fondly remember when Microsoft announced product activation, and how members of the... --- ### Microsoft’s New Information Protection Capabilities Brings Modern Security Protection To Your Data   - Published: 2016-06-23 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-information-protection-capabilities-brings-modern-security-protection-sensitive-data/ - Categories: Microsoft Azure - Tags: Azure, Information Protection - Article Type: News Microsoft will open up a public preview of its Azure Information Protection service next month that will bring significant data protection enhancements to the enterprise. Next month, Microsoft will open up a public preview of its Azure Information Protection service to anyone who wants to try out this product. The feature, which very well could be the biggest leap forward in preventing accidental data leaks in decades, is a compelling solution for any organization that has sensitive data that must remain protected. Called Azure Information Protection, this feature is going to help companies who have completed the transition to a digitized environment by protecting their sensitive content from accidental leakage. And in an environments where accidentally pasting key information in an email is increasing in likelihood as we become more data and information hungry, Azure Information Protection will allow managers to rest a bit easier as they know they can now stop this process. Based around an identity-driven policy, Information Protection can utilizes policies to classify and label data so that it can safely be shared with customers and partners with the document owner able to revoke access to the document to any user at any time. These data protection policies and controls travels with the document too, it doesn’t matter if they are using iOS, Android or Windows. To put it simply, you now have document level control over your content that you can specify who and where they can see the files and if a document is shared with a person outside of the approved viewership list, the content is blocked. Or, if you have a person who has access to the content... --- ### Connecting Users to the Azure Cloud - Published: 2016-06-23 - Modified: 2024-09-04 - URL: https://petri.com/connecting-to-the-azure-cloud/ - Categories: Microsoft Azure - Tags: Azure, Citrix, ExpressRoute, HTTP, HTTPS, networking, RDS, RemoteApp, VPN - Article Type: Overview In this article Aidan Finn discusses the most forgotten aspect of migrating or deploying services into the cloud: Exactly how will the users connect to the services that will be running in Azure? In this article I’m going to discuss the most forgotten aspect of migrating or deploying services into the cloud: Exactly how will the users connect to the services that will be running in Azure? Wormhole Area Networking I invented a new form of networking last year to deal with a common problem I am encountering with people who are considering deploying new services or migrating old services to the cloud. Lots of people have tried to hop onto the cloud bandwagon as it has been zooming past them. But when caught in that flash, they fail to account for considerations that they’ve been dealing with for over a decade: If I put the user in Place A and the server in Place B, with a latent network connection between them, then how will the user connect to the service? What will the client experience be like when accessing a database over an 80 MS connection when you’ve always had less than 1 MS between the thick client application and the server? And then I realized that these people had been planning to use WHAN ... wormhole area networking. Packets would simply dematerialize from the user’s PC and rematerialize on the Azure virtual machine’s virtual NIC. Obviously, this is the way forward, so I *cough* trademarked it. Hey! If Apple can patent rounded icons then I can claim WHAN! Wormhole Area Networking (WHAN) Let’s get serious. What can you do to connect... --- ### PowerShell Problem Solver: An Advanced HotFix Reporting Tool > PowerShell scripter Jeff Hicks completes his HotFix reporting tool with some final advanced bells and whistles. - Published: 2016-06-22 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-an-advanced-hotfix-reporting-tool/ - Categories: PowerShell - Tags: hotfix, Intermediate - Article Type: How To It's time to dive deep into our series about how to build an advanced hotfix reporting tool and this time around, we provide assistance for those who have complex requirements. Over the course of several articles, we've been developing a PowerShell tool to provide hot fix information. The command is built around the Get-HotFix cmdlet but takes it a step further. If you are just jumping in, I encourage you go back to the beginning so you'll understand how we got here. Pipeline Input From the previous article, the function can take multiple computer names, but they can't be piped into the command like other cmdlets.   The solution is to create an advanced PowerShell function. To do that, the first change is that the body of the function needs three special scriptblocks: Begin, Process and End. The only one that is truly required is Process, but I always use all of them. In the Begin scriptblock, you put any commands you want to run before processing any pipelined values. In the End scriptblock, you put code to run after everything has been processed from the pipeline. The code in the Process scriptblock runs once for each computer. In my function, I'll move the code that creates the parameter hashtable into the Begin block. Begin { Write-Verbose " Starting: $($MyInvocation. Mycommand)" #create a hashtable of parameters to splat to Get-Hotfix $params = @{ ErrorAction = 'Stop' Computername = $Null } if ($Credential. UserName) { #add the credential Write-Verbose " Using alternate credential: $($Credential. username)" $params. Add("Credential",$Credential) } if ($Description) { #add the description parameter Write-Verbose " Querying for: $description" $params. add("Description",$Description) } } #begin I'll talk about the Write-Verbose commands later.  ... --- ### Gain enhanced visibility and control with Office 365 Advanced Security Management > Understand how your users are using Office 365 and automate malicious activity detection using Office 365 Advanced Security Management. - Published: 2016-06-22 - Modified: 2024-09-04 - URL: https://petri.com/gain-enhanced-visibility-control-office-365-advanced-security-management/ - Categories: Microsoft 365 - Tags: Advanced Security Management, Office 365 - Article Type: News Microsoft has delivered with the new Office 365 Advanced Security Management powerful tools to help IT pros understand how their network is being used. Collaboration teamwork concept pointing finger IT administrators need powerful tools to understand how their network is being used. Microsoft has delivered with the new Office 365 Advanced Security Management tool. Global communication may be easy, but security and management on a global scale is not. Advanced Security Management (ASM) helps it see and truly understand how their resources are being used. From usage reporting to automatic account suspension ASM gives admins the tools they need to keep their company safe. How does it work? All companies have a standard for what they would consider ‘typical user behavior’ and consider this behavior safe. This typical behavior becomes a baseline from which to judge what could be malicious activity. The threat detection within ASM will send warnings and can be configured to suspend accounts automatically for strange behavior. Administrators can pick from common policies, or build their own custom policies to flag behavior. Policies are composed of different triggers to deem activity anomalous. These triggers can be: sign-in failures, activity from new IP addresses, activity on accounts previously considered inactive, and more. Activity Policy and Anomaly Detection Policy Anomaly detection alert of suspicious administrator activity. - via Microsoft Policies are grouped into two categories Activity Policy and Anomaly Detection Policy. Activity Policies are simply alerts to important activities such as administrator activity from a new IP address, mass data downloads, new IP used to access corporate data, and more. Alerts can be... --- ### Microsoft’s Commitment To Linux Continues To Pay Azure Dividends - Published: 2016-06-22 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-commitment-linux-continues-pay-dividends/ - Categories: Microsoft Azure - Tags: Azure, linux, News - Article Type: News Microsoft's choice to embrace Linux inside of Azure is continuing to pay dividends as its usage expands with software made by other vendors. The past few years has seen a big shift in Microsoft’s strategy. Several years ago, the company was isolated and pushed its own products wherever it could but now with the company knocking down its own walls (internally and externally) and they are seeing the rewards of the new philosophy time and time again. At DockerCon 2016 in Seattle this week, Azure Chief Technology Officer, Mark Russinovich, said that nearly one in three virtual machines in its cloud service are running Linux. As for the other two-thirds, those machines are all running Windows server. Seeing as Azure has been growing at a significant rate and is helping to drive the company’s shares north, the open approach to running Linux on Azure has been a wise decision. Even though Microsoft would likely love to have all its customers running Windows Server instead of a Linux variant, having a customer build on its cloud technologies is more important at this time than licensing its software. This strategy is dramatically different to how the company approached the market a decade ago where it confined its customers to Microsoft based solutions. But, seeing as nearly one in three VMs is running a Linux-based product, Azure’s growth would have been severely limited if it required Windows Server on Azure. The company is not stopping at simply allowing Linux to run in its cloud as they are reaching out to competitors of all kinds and helping them create cloud instances of their software for Azure. Everyone... --- ### An Advanced PowerShell HTML HotFix Report > PowerShell expert Jeff Hicks completes his hotfix HTML report with an old-school approach. - Published: 2016-06-21 - Modified: 2024-09-04 - URL: https://petri.com/an-advanced-powershell-html-hotfix-report/ - Categories: PowerShell - Tags: Advanced - Article Type: How To Looking for an Advanced PowerShell HTML HotFix Report script? Jeff Hicks shows you how to make them. Last time, I showed you a PowerShell script that leveraged my hotfix reporting function to create a basic HTML report complete with highlights and active links. The challenge I left for myself, or perhaps you worked on it yourself, was to display the page title for the hotfix online link. That way I can tell at a glance what problem the hotfix is solving. The difficulty, at least in my development efforts, is that target HTML document does not lend itself to the typical way I would approach this task with Invoke-WebRequest or Invoke-RestMethod. My solution was to resurrect a technique I used back in my VBScript days, and that is to use Internet Explorer. This version of my reporting script includes the same features as last time so I won't repeat that discussion. If you recall, the function output includes a URL. All I need to do is navigate Internet Explorer to that page and get the document title. This will require a COM object for Internet Explorer. $ie = New-Object -ComObject internetexplorer. application As each hot fix is enumerated I can search for the URL. $frag. SelectNodes("//*") | foreach { #get the current value $url = $_. '#text' Now the fun part. I can tell the IE object to go to that page. $ie. Navigate($url) #need to give IE a chance to open the web page do { Start-Sleep -Milliseconds 10 } while ($ie. busy) In my experience I have found it helpful to loop while Internet Explorer is busy, otherwise... --- ### Getting Started with PowerShell's Get-Member > Most people think they know about Get-Member. PowerShell MVP Jeff Hicks dives into this useful cmdlet everyone should know how to use. - Published: 2016-06-21 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-powershells-get-member/ - Categories: PowerShell - Tags: Beginner, PowerShell - Article Type: How To If you are going to get anywhere with PowerShell you have to absolutely understand the concept of objects in the pipeline and in this post, Jeff Hicks breaks it down. If you are going to get anywhere with PowerShell you have to absolutely understand the concept of objects in the pipeline. In an earlier article I attempted to explain objects and how they work in PowerShell. In that article I mentioned the Get-Member cmdlet. This is a key command you need to be familiar with, so let's spend a few minutes getting acquainted. You can pipe any command or object to Get-Member, which has an alias of gm. If the piped objects are of different types, you will get a result from Get-Member for each type. But here's a simple example. Sample Get-Member output (Image Credit: Jeff Hicks) The first thing to notice is the TypeName. Anything that starts with System is part of the . NET Framework, not that it should make much difference. But in PowerShell you can have commands that reference a . NET class but drop 'System'. The only time you might need to know the typename is if you need to search online for some background information. Most likely you'll end up on an MSDN page for the given class. You should see descriptions of what you see in Get-Member. However, be aware that PowerShell might add members, and you can add members as well. In the output, you can see Properties and Methods, which is all you need to be concerned about. I don't even bother with Event members. The definition for each property member will indicate what type of... --- ### Creating Simple PowerShell HotFix HTML Reports > PowerShell guru Jeff Hicks guides you through using his hotfix reporting function to create snazzy HTML reports. - Published: 2016-06-20 - Modified: 2024-09-04 - URL: https://petri.com/simple-powershell-hotfix-html-reports/ - Categories: PowerShell - Tags: Intermediate, PowerShell Hotfix HTML - Article Type: How To Looking to learn how to create simple PowerShell hotFix HTML reports? Jeff Hicks has you covered with a new tutorial that will help any IT Pro master this powerful feature. Recently I went through a series of articles building a hot fix reporting tool. If I recall correctly, part of the original forum post was about creating reports and I think that meant HTML reports. Well, even if it didn't, IT pros (or maybe their managers) love HTML reports. PowerShell makes this a relatively simple task with ConvertTo-HTML.   With this cmdlet and the hot fix function, it is pretty easy to create an html report. Get-MyHotFix -Computername chi-p50,chi-hvr2 -After 5/1/2016 | ConvertTo-html -Title "HotFix Report" | out-file C:workreport. htm Don't forget you still need to save the results to a file. bare HTML hotfix report (Image Credit: Jeff Hicks) The report is pretty bare bones. But if you look at help for ConvertTo-HTML, you'll see that you can specify a path to a CSS file. Get-MyHotFix -Computername chi-p50,chi-hvr2 -After 5/1/2016 | ConvertTo-html -Title "HotFix Report" -CssUri C:scriptsblue. css | out-file C:workreport. htm a more colorful HTML report (Image Credit: Jeff Hicks) If you are saving the file to a network share or to an intranet server, as along as the CSS file is available to everyone this works pretty well. But I wouldn't want to have to type that long command everytime I needed a report. Or, suppose this was a monthly task and I was out of the office. I don't want to have to rely on someone else to type the command correctly. This is where a PowerShell script is useful... . --- ### How To Migrate Machines To Azure - Published: 2016-06-20 - Modified: 2024-11-19 - URL: https://petri.com/migrate-machines-azure/ - Categories: Cloud Computing - Article Type: Overview In this “how do I ..?” article I will explain how you can use Azure Site Recovery (ASR) to migrate machines, VMware, physical, or Hyper-V, running Windows or Linux, to Azure with minimized downtime. In this “how do I . . ? ” article I will explain how you can use Azure Site Recovery (ASR) to migrate machines, VMware, physical, or Hyper-V, running Windows or Linux, to Azure with minimized downtime. Background Back in 2014, I wrote an article that showed you 5 ways that you could use to move virtual machines from your computer room or data center to Azure. Back then, Microsoft had a different vision for Azure features such as Azure Site Recovery (focused just on large enterprises) and how they would support a migration to Azure. Things have moved on, so I thought I’d write an updated post on how to get your machines into Azure. Azure Site Recovery Microsoft’s DR site-in-the-cloud replication feature is the solution for getting machines into Azure. ASR can replicate the following types of Windows or Linux machine into Azure: Windows Server 2012 R2 Hyper-V or Hyper-V Server 2012 R2, with or without System Center Virtual Machine Manager. vSphere Physical machines Microsoft added support for VMware and physical machines thanks to the acquisition of InMage Scout. This was originally going to be used to power a solution called the Migration Accelerator, but Microsoft realized that they were wasting effort – a planned failover in ASR would do exactly the same thing that ASR would do. A planned failover is when you decide to proactively move a machine from one location to another. In the case of ASR, a planned failover will: Stop the on-premises machine Flush... --- ### Paul Thurrott's Short Takes: June 17 - Published: 2016-06-17 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-17/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because it's the end of the world and I feel fine, this edition of Short Takes focuses on the real reason Microsoft paid so much for LinkedIn, Bill Gates wakes up to take LinkedIn, Microsoft buy a bot chat firm, Google employees fight sexism, and more. Because it's the end of the world and I feel fine, this edition of Short Takes focuses on the real reason Microsoft paid so much for LinkedIn, Bill Gates wakes up to take LinkedIn, Microsoft buy a bot chat firm, Google employees fight sexism, and more. Is this why Microsoft paid so much for LinkedIn While I think I understand the rationale for Microsoft's purchase of LinkedIn, the one thing I don't quite have a handle on is why they paid so much for the social networking service: $26. 2 billion is quite a bit above LinkedIn's actual value. Well, this may be why: Salesforce. com was sniffing around LinkedIn as well, according to The Wall Street Journal. LinkedIn would have been a tough pill for Salesforce to swallow, since that $26. 2 billion selling price is fully half of Salesforce's value. Plus, with $106 billion in cash assets, Microsoft has about 50 times the spending power of Salesforce. Speaking of which. Maybe Salesforce. com should be Microsoft's next big purchase. Just a thought. "Why LinkedIn Will Make You Hate Microsoft Word" Clipping is making a comeback. As a bot zombie. Gates: LinkedIn is like Facebook for your career Suddenly, Bill Gates is the John Oliver of the tech world. Wait, that's my job. Anyway, Microsoft co-founder Bill Gates this week talked to Bloomberg and voiced his support for the firm's blockbuster takedown of LinkedIn. "This professional feed in LinkedIn, that is how I want to learn about my career, my company,... --- ### The Sams Report EP 43: E3 Hangover, Cut Features, Placeholders And Lots More - Published: 2016-06-17 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-43-e3-hangover-cut-features-placeholders-lots/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover my own rumor report from E3 and what Microsoft announced, Scorpio, Xbox One S, fiscal year end, Windows development and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover my own rumor report from E3 and what Microsoft announced, Scorpio, Xbox One S, Windows Mobile features going away, fiscal year end, Windows development and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=jgMuMz6j-SQ RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Working With Azure Cool Storage - Published: 2016-06-17 - Modified: 2024-09-04 - URL: https://petri.com/working-azure-cool-storage/ - Categories: Cloud Computing - Tags: Azure, Azure Cool Storage, Block Blob, cool storage, storage - Article Type: How To Microsoft recently announced the general availability of Cool Blob Storage in Azure, a new more affordable way to archive files in the cloud. In this post, I’ll explain what Cool Storage is, what Hot Storage is, how they are priced, how to deploy Cool Storage, and what you’ll see in the Azure Portal. Microsoft recently announced the general availability of Cool Blob Storage in Azure, a new more affordable way to archive files in the cloud. In this post, I’ll explain what Cool Storage is, what Hot Storage is, how they are priced, how to deploy Cool Storage, and what you’ll see in the Azure Portal. What is Cool Storage? Microsoft received a lot of feedback to further reduce the cost of storage in the cloud, particularly for data that is rarely accessed but must be retained for operational, legal, or regulatory reasons. Microsoft responding by creating a new tier of Block Blob storage in Azure. Remember, according to Microsoft, Block Blob storage is: ... used for streaming and storing documents, videos, pictures, backups, and other unstructured text or binary data. Now there are two kinds of Block Blob storage accounts: Hot: The kind that we used before, with a 99. 9% SLA. Cool: A more affordable storage account for archival purposes, normally with a 99% SLA. Creating a Cool Storage Account When you create a new ARM storage account in the Azure Portal at https://portal. azure. com, and not in the classic management portal, you get a new experience. You will be asked if you want to create a “Blob storage” account or a “General purpose” storage account. Creating a new cool Blob Storage account in Azure If you select “Blob storage” then you will select an Access Tier for the storage account, Hot or Cool,... --- ### Windows Server 2012 R2: Get a list of active Remote Desktop Users - Published: 2016-06-16 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-r2-get-list-active-remote-desktop-users/ - Categories: Windows Server - Tags: PowerShell, Remote Desktop, Windows Server - Article Type: How To In today’s Ask the Admin, I’ll show you how to quickly get a list of users connected to a server via Remote Desktop (RDP). In today’s Ask the Admin, I’ll show you how to quickly get a list of users connected to a server via Remote Desktop (RDP). Whether you have a fully-fledged Remote Desktop Services (RDS) deployment, or just want to see which administrators are managing a server, there are several ways to view the users currently connected via RDP. If you have a RDS deployment on Windows Server 2012 R2, it’s worth noting that there’s no Remote Desktop Services Manager management console in Windows Server 2012 and later. Server Manager displays some useful information about RDS and PowerShell can also be used to install, configure and manage RDS. Task Manager The Task Manager’s Users tab gives a list of currently logged in users, but by default doesn’t indicate whether they are logged in at the terminal or remotely. That can be easily rectified by adding the session column to the view. Using Task Manager to view logged in users (Image Credit: Russell Smith) Log in to Windows Server 2012 R2 and follow the instructions below to view the active remote users: Right click the taskbar and select Task Manager from the menu. Switch to the Users tab. Right click one of the existing columns, such as User or Status, and then select Session from the context menu. In Task Manager, you’ll now be able to see a list of users and if they’re logged in using RDP, it will be indicated in the Session column. The... --- ### Microsoft’s Chrome OS Migration Guide Shows the Company Is Aware of the Google Threat > Microsoft has a new migration guide that will help you move from Chrome OS to Windows which shows the company is aware the threat the growing OS represents. - Published: 2016-06-16 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-chrome-os-migration-guide-shows-company-aware-google-threat/ - Categories: Windows Client OS - Tags: Chromebook, migration, News - Article Type: News Microsoft has a new migration guide that will help you move from Chrome OS to Windows which shows the company is aware the threat the growing OS represents. It’s no secret that Chromebooks are quietly growing in popularity and while they have yet to become mainstream products that fully replace Windows devices, Microsoft is wasting no time to make it easier to move back to a windows product if you are using a Chromebook. Released this month is a new guide the company calls the “Chromebook migration guide”. The guide helps identify the comparable applications used on Chrome OS to those on Windows, such as the Chrome browser and Edge browser and if you use Google docs how the Office suite lines up to those applications. While I initially thought the guide might be somewhat of a joke, Microsoft has gone deep into the migration process to help those who are deeply entrenched in the Chrome OS environment. The guide covers everything from cloud migration to AD DS and Azure AD services deployment or remediation and should genuinely help those who have little experience in the Microsoft world move to Windows after using Chrome OS. Windows is still significantly ahead in terms of market share when it comes to desktop computing but Chrome OS has found a position at the low-end part of the spectrum as the devices can typically be purchased with starting prices under $200. Also, because of the low price, they have been finding a home in the educational sector too. While I don’t personally see this guide being used frequently, as of now, it serves as a starting point for Microsoft to help win... --- ### PowerShell Problem Solver: Improving the Hot Fix Report > Jeff Hicks continues developing his PowerShell HotFix reporting script with splatting, parameter validation and error handling. - Published: 2016-06-16 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-improving-the-hot-fix-report/ - Categories: PowerShell - Tags: Intermediate, PowerShell - Article Type: How To Sometimes learning the thought process is just as important as language and syntax and in this post, we show you how to improve the hotfix report. In the first article of this short series I laid out the business problem and began the process of creating a PowerShell tool to solve it. My goal is not necessarily to have a finished solution at the end, but rather to teach you along the way and understand the development process. Sometimes learning the thought process is just as important as language and syntax. The basic script I wrote for the first article works fine as long as nothing goes wrong. But what if one of the computers is offline or I don't have permission? Script Errors (Image Credit: Jeff Hicks) The script ran for the first computer, but when it failed for the second it terminated the pipeline and the last computer is never processed. In these situations, I think the best approach is to run the underlying command, Get-HotFix, once for each computer. Even though Get-HotFix will accept an array of names, that doesn't mean you have to use it that way.   By processing computer names individually, you can handle errors individually. For that, you will need to use Try/Catch. Try/Catch With Try/Catch, you use two scriptblocks. In the Try {} block, put in as much PowerShell code that you want to "try" to run. Typically these are commands that might have predictable errors like an offline computer or bad credentials. The corresponding Catch {} block contains the code to run when an error is raised or caught. It is possible... --- ### Microsoft’s Soliciting Feedback To Improve Insider Program For Businesses - Published: 2016-06-15 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-taking-feedback-improve-insider-program-businesses/ - Categories: Windows 10 - Tags: Windows Insider - Article Type: News Microsoft is soliciting businesses for feedback about its Insider program to make it more beneficial to its corporate customers. The Windows Insider program has been a huge success for Microsoft. The company has millions of users testing pre-release versions of the operating system that is helping to squash bugs and find compatibility issues before the company releases updates to the general public. In an effort to continue to help businesses adopt the platform, the company has begun sending out surveys to IT professionals, asking for feedback about the program and Windows 10 in general. The questions include if you are running Insider builds at your company, what features do you like the most in Windows 10, why (or why not) did you deploy Windows 10 and what areas of the OS are most important to your organization (security, reliability, ect). The survey is quite detailed and if you are included in the polling, the questionnaire will take about 10 minutes to complete. This is yet another way that you can now provide direct feedback to the company about the future of the OS in addition to their user voice forums. Since Microsoft has started developing Windows 10, they have been wide open to feedback and letting the user help shape the platform. This is in stark contrast to Windows 8, where the company built the OS behind closed doors but the success of that platform speaks for itself. Microsoft is hoping that features like Windows Hello/Passport, the UI being similar to Windows 7, and Windows Update for Business will be enough to entice companies running Windows 7 to upgrade... . --- ### Move an Azure VM from Standard to Premium Storage - Published: 2016-06-14 - Modified: 2024-09-04 - URL: https://petri.com/move-azure-vm-standard-premium-storage/ - Categories: Cloud Computing - Tags: AzCopy, Azure, Premium Storage, Standard Storage, storage, virtual machine - Article Type: How To In this article Aidan will show you how to migrate the data disks of an Azure virtual machine (in Azure Resource Manager or ARM) from a Standard Storage (HDD-based) account to a Premium Storage (SSD-based) storage account to improve performance (more IOPS and less latency). In this article I will show you how to migrate the data disks of an Azure virtual machine (in Azure Resource Manager or ARM) from a Standard Storage (HDD-based) account to a Premium Storage (SSD-based) storage account to improve performance (more IOPS and less latency). Background Most organizations will choose to deploy virtual machines on Standard Storage by default; this is because Premium Storage, which offers shared SSD capacity for OS disks and/or data disks, is quite expensive compared to the relatively affordable HDD-based infrastructure. There will come a time, for some customers or machines, when you’ll find that even with some IOPS engineering on Standard Storage, you’ll face the challenge of having to migrate some or all disks of a machine to Premium Storage. Unfortunately, there is no “click here to move disks” option for migrating disks to the faster shared storage option. This is a scenario where understanding the anatomy of an Azure virtual machine is valuable. The normal solution for migrating a virtual machine, some or all of the disks, is to do the following: Remove the virtual machine, while keeping the disks. Move the required disks to the desired Premium Storage account. Create a new virtual machine from the existing disks. Ensure that volume letters are consistent and services and access data. Remember that deleting a virtual machine and keeping the disks is just removing metadata; you don’t need that metadata, which is just “hardware configuration data” because you are creating a new machine... --- ### Why Is Microsoft Buying LinkedIn? - Published: 2016-06-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-buying-linkedin/ - Categories: Cloud Computing - Article Type: Opinion Yesterday, Microsoft pulled the trigger on the blockbuster purchase of LinkedIn in an all-cash deal valued at an incredible $26.2 billion. This isn't just Microsoft's biggest acquisition ever, it's one of the biggest tech acquisitions of all time. And it raises plenty of questions. LinkedIn CEO Jeff Weiner, Satya Nadella, LinkedIn chairman Reid Hoffman. Yesterday, Microsoft pulled the trigger on the blockbuster purchase of LinkedIn in an all-cash deal valued at an incredible $26. 2 billion. This isn't just Microsoft's biggest acquisition ever, it's one of the biggest tech acquisitions of all time. And it raises plenty of questions. Though I was traveling yesterday, I was able to speak with a Microsoft representative, select Microsoft employees (privately), and others in the industry in an attempt to understand why exactly Microsoft would acquire LinkedIn, and do so now in the wake of its disastrous $7. 2 billion acquisition of Nokia's devices and services businesses, and the resulting several thousand layoffs. I still have plenty of questions. But I think I can now offer a more nuanced view than my initial knee-jerk reaction to this acquisition, which came before any of this communication. First, it's helpful to analyze how Microsoft explains the deal, and how LinkedIn might fit in with Microsoft's commercial offerings. In a call with financial analysts and press, and in the accompanying documentation, Microsoft refers to the "common missions" of the two firms, where both are "empowering people and organizations. " Microsoft has traditionally done this via its software offerings, but in the Nadella era it has evolved into a major supplier of commercial cloud services. LinkedIn, meanwhile, is the only major social network for "professionals" rather than consumers. I don't recall Microsoft ever referring to its commercial (e. g. business-focused)... --- ### Implementing Azure User Defined Routing - Published: 2016-06-13 - Modified: 2024-09-04 - URL: https://petri.com/implementing-azure-user-defined-routing/ - Categories: Cloud Computing, Microsoft Azure - Article Type: How To In this post I will show you how to create a route table and routes, and associate that route table to virtual subnets. In a previous post, How Do You Customize Routing in Azure? , I explained why we might use user defined routing in Azure. In this post I will show you how to create a route table and routes, and associate that route table to virtual subnets. The Task I will start with a simple example based on a scenario that one of my customers faced recently. The customer was dealing with a site that had invested heavily in a software-based edge network solution that was not on Microsoft’s listed set of supported VPN devices. The customer wanted to deploy a site-to-site VPN connection, but didn’t want to purchase new edge firewalls. So the solution that was created was to deploy a virtual appliance in Azure that would act as the VPN gateway instead of using a gateway on the virtual network. If you use an Azure gateway for VPN connectivity, the local network setting will provide your subnets with a route to your on-premises network. However, when you deploy your own VPN solution in a virtual machine (that’s what a virtual appliance is) then there is nothing, by default, to tell Azure how to route subnet traffic to the on-premises network(s). Overriding the default routing of Azure networking with third-party VPN The Desired Solution User defined routing will be used to fix the above problem. A route table will be created. A single route will be added: Address Prefix: The network... --- ### Implementing Azure Routing Using PowerShell - Published: 2016-06-13 - Modified: 2024-09-04 - URL: https://petri.com/implementing-azure-routing-using-powershell/ - Categories: Cloud Computing, Microsoft Azure - Tags: Azure - Article Type: How To In this post I will show you how use PowerShell to create a route table and routes, and associate that route table to virtual subnets. In a previous post, How Do You Customize Routing in Azure? , I explained why we might use user defined routing in Azure. I then followed that up with a post to show you how to create a route table and routes using the Azure Portal. In this post I will show you how use PowerShell to create a route table and routes, and associate that route table to virtual subnets. Before We Begin Note that this post is based on Azure Resource Manager (ARM) PowerShell, so make sure that you have updated your Azure PowerShell module to the latest version first. You can also use classic (Service Manager) PowerShell cmdlets to create user defined routes. The Task Once again, I’m deploying a simple solution where a customer has chosen to deploy a site-to-site VPN solution using a virtual appliance from the Azure Marketplace. The virtual appliance, a virtual machine, is on the same subnet as the other Azure virtual machines. A user defined route is required to override the system route to ensure that all traffic to the customer’s on-premises subnet(s) will be redirected through the appliance and the VPN tunnel instead of to the Internet. Overriding the default routing of Azure networking with third-party VPN The Desired Solution User defined routing will be used to fix the above problem. A route table will be created. A single route will be added: AddressPrefix: The network address (192. 168. 1. 0/24) of the on-premises... --- ### Microsoft Is Acquiring LinkedIn for $26.2 Billion - Published: 2016-06-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquiring-linkedin-26-2-billion/ - Categories: Main - Tags: Acqusition, Linkedin - Article Type: News Microsoft has announced this morning that it is acquiring LinkedIn for $26.2 billion; Microsoft will acquire LinkedIn for $196 per share in an all-cash transaction. Microsoft has announced this morning that it is acquiring LinkedIn for $26. 2 billion; Microsoft will acquire LinkedIn for $196 per share in an all-cash transaction. After the transaction closes, LinkedIn will retain its independence; Jeff Weiner will remain CEO of LinkedIn, reporting to Satya Nadella. This is a major move for Microsoft and the company as it will allow them to use their large cash stockpile to obtain new assets for the company and seeing as LinkedIn is a tool used in the professional space, it aligns to their new productivity philosophy. But, the company’s history with large acquisitions, such as aQuantive ($6 billion) and Nokia assets ($7. 9 billion) is not exactly rock solid and if this product goes south, will easily be the biggest blunder in the company’s history. While not explicitly stated, some of the company's LinkedIn has acquired, Slide Share and Lynda, were likely part of the reason Microsoft bought the company. Lynda, in particular, is an online training site that the company can use to help sell additional educational services to corporations. LinkedIn has 433 million members worldwide and Microsoft cites, in their press release, that the social network is growing 19% year over year; the transaction has been approved by both Microsoft and LinkedIn’s board of directors. You can read the entire announcement, here. --- ### Paul Thurrott's Short Takes: June 10 - Published: 2016-06-10 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-june-10/ - Categories: Mobile - Tags: News - Article Type: Opinion Because the altitude is killig me, this edition of Short Takes focuses on a new Windows 10 site for business apps, Google and Lenovo team to put augmented reality in phones, Surface Hub chief leaves Microsoft, DOJ backs Samsung, and much more. Because the altitude is killig me, this edition of Short Takes focuses on a new Windows 10 site for business apps, Google and Lenovo team to put augmented reality in phones, Surface Hub chief leaves Microsoft, DOJ backs Samsung, and much more. New Microsoft web site catalogs Windows 10 business apps A new Microsoft web site called Are you ready for Windows? pretty much answers its own question in providing a catalog of business-ready Windows 10 apps. As Mary Jo Foley notes, the site breaks down app availability by market---education, financial services, health, manufacturing, media, public sector and retail---and appears to be focused mostly (but not solely) on Universal Windows Platform (UWP) apps. Smart. "Microsoft's Cortana Comes to the Xbox" Actually, Cortana started on the Xbox. But I see what you mean. Google and Lenovo team to put HoloLens capabilities in a smart phone This week, Lenovo announced the Phab2 Pro handset, which it bills as the first smart phone to use Google's Project Tango technology. Tango brings a few interesting features to Android, but key among them is augmented reality, or what Microsoft is selling with its $3000 HoloLens. The way it works is that you view the world around you using the phone's screen and its camera, and hologram-like elements blend onscreen with real-life objects. In other words, just like HoloLens, and considering the size of a smart phone screen, using just about the same field of view of HoloLens too. But Tango makes more sense... --- ### The Sams Report EP 42: Xbox, E3, and Windows 10 shenanigans - Published: 2016-06-10 - Modified: 2024-09-24 - URL: https://petri.com/73366-2/ - Categories: Office 2016 - Tags: The Sams Report - Article Type: News On this special report, I cover more about Xbox E3 plans, new build of Windows, and should Microsoft get in trouble for the Windows 10 upgrade tactics? The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover more about Xbox E3 plans, new build of Windows, and should Microsoft get in trouble for the Windows 10 upgrade tactics? If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=XYmAtVImDl0&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Copy Files In Azure Using Free Tool AzCopy - Published: 2016-06-10 - Modified: 2024-11-19 - URL: https://petri.com/copy-files-in-azure-using-free-tool-azcopy/ - Categories: Microsoft Azure - Tags: AzCopy, Azure, Storage Account - Article Type: How To Aidan Finn shows us how to copy files up to an Azure storage account, down from a storage account, and even between storage accounts using a free tool called AzCopy. In this post I'll show you how to copy files up to an Azure storage account, down from a storage account, and even between storage accounts (without upload/download) using a free tool called AzCopy. AzCopy If you use Azure, then you've probably faced similar scenarios that I've experienced. Let's say that you want to move files up to Azure and down from Azure. There are many options, including PowerShell and third-party tools that you can use. But what if you want to use a solution that offers the best performance? A free command-line tool, shared on GitHub, called AzCopy is intended to give you the ability to move files to, from, and inside of Azure, across Blobs, files, and tables with the best possible performance. Getting AzCopy As with all tools that you use with Azure, you should use the latest version of AzCopy, which you can download from here. After installation, you can find AzCopy. exe in "%ProgramFiles(x86)%Microsoft SDKsAzureAzCopy" on 64-bit computers and "%ProgramFiles%Microsoft SDKsAzureAzCopy" on 32-bit computers. By default, the AzCopy folder is not added to the system path on your computer, so you'll have to navigate on command-line or specify the full path to AzCopy. exe to run the tool. You can add the installation folder to your path. Uploading a File to Azure I am working with a container called demo in a storage account called pazcopy. I have copied the primary access key of the storage account; it will be required to use AzCopy. The... --- ### Create an Azure RemoteApp Collection with VNET - Published: 2016-06-10 - Modified: 2024-11-19 - URL: https://petri.com/create-azure-remoteapp-collection-vnet/ - Categories: Microsoft Azure - Tags: Active Directory, Azure, Azure RemoteApp, Cloud, cloud computing, Domain, Domain Services, RDP, RDS, Remote Desktop, Remote Desktop Services, RemoteApp, Virtual Network, VNET - Article Type: How To Aidan Finn explains how to deploy a newer and simpler architecture where a RemoteApp collection is created on an Azure VNET. This post is an update of a previous post that shows you how to create a RemoteApp collection that is connected to a VNet and a Windows Server Active Directory domain, using a simpler network design. A Simpler Network Design When Azure RemoteApp was released, it required a much more complicated network design to authenticate users against Active Directory and enforce Group Policy settings and restrictions, assuming that you wanted to run Active Directory in the cloud. The diagram below shows: RemoteApp was deployed into a dedicated virtual network. Active Directory domain controllers and other servers, such as file servers, were deployed onto another virtual network. Both virtual networks were connected via a VNet-to-VNet VPN connection, which required dynamic routing gateways; this route-based requirement caused compatibility issues with the majority of on-premises firewall appliances, and in turn, caused complications by adding site-to-Azure VPN connections to the solution. A hybrid Azure RemoteApp app collection (Image Credit: Aidan Finn) Since I wrote my how-to article on how to create a hybrid RemoteApp collection, Microsoft has simplified the architectural requirements of RemoteApp. We now can deploy a "With VNet" app collection that can optionally use Active Directory, instead of being forced into the complicated hybrid app collection. Now you can configure Azure to deploy the session hosts of a RemoteApp app collection to the same virtual network as your domain controllers and application and data virtual machines. Ideally, you'll do the following: Use a dedicated subnet at no cost... --- ### Current Status Episode 40: Citrix Synergy Recap with Steve Greenberg and Joe Shonk - Published: 2016-06-09 - Modified: 2016-06-09 - URL: https://petri.com/current-status-episode-40-citrix-synergy-recap-steve-greenberg-joe-shonk/ - Categories: Current Status - Tags: Citrix Synergy, Currrent Status - Article Type: News Recently Citrix Synergy held is annual conference, and we will be discussing our thoughts from the both the customer and partner perspective during this episode. From the latest software releases, to new devices, and announced partnerships we will cover it all! Get the real scoop here, and no we don’t mean ice cream! https://youtu. be/RYWRPvhT1v8 Join us Thursday, June 9th at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Steve Greenberg (@stevegreenberg) and Joe Shonk (@joeshonk) Both of our guests are Citrix CTP’s and come from Thin Client Computing. Recently Citrix Synergy held is annual conference, and we will be discussing our thoughts from the both the customer and partner perspective during this episode. From the latest software releases, to new devices, and announced partnerships we will cover it all! Get the real scoop here, and no we don’t mean ice cream! --- ### Resolving "Namespace is already defined' Group Policy Error in Windows 10 - Published: 2016-06-09 - Modified: 2024-09-04 - URL: https://petri.com/resolving-namespace-already-defined-group-policy-error-windows-10/ - Categories: Active Directory (AD) - Article Type: How To Learn how to resolve the "Namespace is already defined" Group Policy error in Windows 10. I recently went to a customer, where I had to modify some local Group Policy settings on a few computers. As you might know, this is done by opening the Local Group Policy Editor. While it all went perfectly fine on Windows 7 and 8. 1 computers, when I attempted to perform the same change on a Windows 10 machine, I received an error that I haven't seen before. The error you are getting looks like this: Namespace 'Microsoft. Policies. Sensors. WindowsLocationProvider' is already defined as the target namespace for another file in the store. File C:WINDOWSPolicyDefinitionsMicrosoft-Windows-Geolocation-WLPAdm. admx, line 5, column 110 Namespace Group Policy error in Windows 10. (Image Credit: Daniel Petri) Note: The error may also occur when you open an Active Directory-based Group Policy Object (GPO) from a Windows 10 machine, the only difference is that the error is slightly different, where represents your domain name. : Namespace 'Microsoft. Policies. Sensors. WindowsLocationProvider' is already defined as the target namespace for another file in the store. File \SysVolPoliciesPolicyDefinitionsMicrosoft-Windows-Geolocation-WLPAdm. admx, line 5, column 110 You can click "OK" to ignore the error message, and the Group Policy setting works as expected. So what's the reason for this error? How do we fix it? It turns out that the reason for this error is because in Windows 10, the "LocationProviderADM. admx" file was renamed to "Microsoft-Windows-Geolocation-WLPAdm. admx". Additionally, "LocationProviderADM. adml" file was renamed to "Microsoft-Windows-Geolocation-WLPAdm. adml". On a local computer, the path for these files is: C:WindowsPolicyDefinitions And C:WindowsPolicyDefinitionsen-US The policy definitions folder in Windows. (Image Credit: Daniel... --- ### Create a GitHub Repository - Published: 2016-06-09 - Modified: 2024-09-04 - URL: https://petri.com/create-github-repository/ - Categories: Cloud Computing - Tags: Azure, Cloud, DevOps, GitHub - Article Type: How To In today's Ask the Admin, I'll show you how to create a repo in GitHub that you can use with Azure DevTest Labs. As we move more towards using declarative configuration technologies like Azure Resource Manager (ARM), PowerShell Desired State Configuration (DSC), and in the not too distant future Azure Stack for Windows Server 2016, I’m gradually coming to the conclusion that there’s now a pressing need to adopt, even if at a basic level, DevOps practices such as using git to manage code. See What is GitHub? on the Petri IT Knowledgebase for more information. Create a new repository in GitHub (Image Credit: Russell Smith) Once you start using templates and PowerShell scripts for server deployment and management, you also need to find a suitable way to manage and develop those scripts in collaboration with your colleagues. OneDrive and SharePoint are good solutions for working with Office documents, but don’t lend themselves to code development. Push came to shove recently when I started to move my Azure VMs to DevTest Labs, a new feature that enables organizations to better manage lab environments in the cloud. Artifacts can be stored in Visual Studio Online (VSO) or GitHub repositories (repo) to allow developers to quickly deploy configurations to VMs, but while there’s a default public GitHub repo available with a selection of artifacts, I wanted to create my own artifact that runs a PowerShell script. And to do that you need your own repo. Create a new... --- ### Microsoft’s New F Series Azure VMs Target The Gaming Community - Published: 2016-06-09 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-f-series-azure-vms-target-gaming-community/ - Categories: Microsoft Azure - Tags: Azure, News - Article Type: News Microsoft has announced a new series of VMs for Azure, called the F series, that is targeted at gamers and other web services. Microsoft has announced a new tier of virtual machines for its Azure service that are compute optimized and will work well for tasks like gaming servers, web servers and batch processing. The new VMs are available today and are offered in many of the company’s data centers with plans to expand availability later this year. The new virtual machine tier is designed for tasks that need higher compute power but less storage and memory. Powering these new machines is the 2. 4 GHz Intel Xeon® E5-2673 v3 (Haswell) processor, which can achieve clock speeds as high as 3. 1 GHz with the Intel Turbo Boost Technology 2. 0; Microsoft says that the F series VMs offer the best performance to price offering in its lineup of VMs. One thing that Microsoft is changing with the F series VMs is the naming scheme for the different tiers that it offers. Starting with the F series, the number following the letter will designate the number of cores in that tier and after the number, letters will be used to denote premium storage and other features. The new naming scheme starts with the F series but it will not be retroactively applied to older SKUs. Microsoft is deeply committed to its Azure cloud service as many believe that it is the future of the company. With cloud revenue growing quarter over quarter every year, Microsoft is positioning its cloud platform to be the best solution in the market but it is facing strong competition from Amazon and... --- ### Mobile App Stores Are Adapting to Market Changes - Published: 2016-06-09 - Modified: 2024-09-04 - URL: https://petri.com/mobile-app-stores-adapting-market-changes/ - Categories: Mobile - Tags: News - Article Type: News Apple's App Store and the Google Play Store have collectively created a new economic engine, but their makers have big plans to keep growth growing as the market evolves. And to do so, they're willing to forego profits and push more money to app developers. Image credit: Apple Apple's App Store and the Google Play Store have collectively created a new economic engine, but their makers have big plans to keep growth growing as the market evolves. And to do so, they're willing to forego profits and push more money to app developers. Ever since Apple established its App Store to support the iPhone (and then later i-Devices) in 2008, the terms by which these stores operate has been fairly consistent: Apple and Google, and smaller stores provided by Amazon and Microsoft, each take 30 percent of all revenues from app sales. The app developers receive 70 percent. Beyond that, the details vary a bit. For example, Apple has had the most restrictive terms of all app platforms, requiring developers to pay them 30 percent of all in-app purchases as well, including any sales from services or subscriptions that begin from within the app. That's why you can't browse the Kindle or Audible libraries from within those apps on iOS: If you actually bought something, including a content subscription, Amazon would have to keep giving Apple 30 percent of any ongoing purchases. Content providers like Amazon already have their own stores, so they can always reach customers in other ways. But for app developers who wish to create an ongoing financial relationship with their customers, app store subscription policies can be costly since they have only one way to interact with their customers, potential or existing. But things are... --- ### Microsoft’s Session List For Ignite Is Live, 463 Options To Choose From - Published: 2016-06-08 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-session-list-for-ignite-is-live-463-options-to-choose-from/ - Categories: Uncategorized - Tags: Ignite, News - Article Type: News Microsoft has released the session list for its Ignite conference and this year will have over 400 sessions to choose from. If you are headed to Ignite later this year, the company has made the session list available so that you can start planning out your agenda for the conference. The show, which takes place in late September, is being hosted in Atlanta this year. Ignite is a venue where Microsoft makes it possible to connect directly with its teams to help understand and deploy its software more effectively. More importantly, the conference is a place to find peers in the industry who are facing similar challenges as you and to hear how they have overcome these obstacles. You can find the entire session list, here. If you are headed to the show, make sure to let us know as Petri will also be there too. These types of events are critical for Microsoft as it is one of the few times during the year that they can reach out directly to their to customers of all scale. Even though Microsoft has teams catered to working with teams of all sizes, it’s nearly impossible for them to visit all of their small and medium sized customers which means these events offer a touch-point for communication. --- ### PowerShell Problem Solver: Creating a Hot Fix Reporting Tool > PowerShell scripter Jeff Hicks starts a series of articles on building a hot fix reporting tool. - Published: 2016-06-08 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-creating-a-hot-fix-report/ - Categories: PowerShell - Tags: Get-HotFix, Intermediate - Article Type: How To PowerShell scripter Jeff Hicks starts a series of articles on building a hot fix reporting tool. I think I'm long overdue in giving you an example of PowerShell in action. A few months ago, I followed a thread in a discussion forum about finding installed hot fixes and creating some type of report. Instead of jumping to the finished product, let's spend some time going through the process to arrive at the final solution, or at least what I'm using. This process is just as important to learn and understand as the final result. We'll be working with installed hot fixes, but it could be just about anything you need to manage. To begin, we need a basic requirement or business need: "Find installed hot fixes on a remote computer. " In the forum, I believe the poster already knew what command to work with, but let's say he didn't. The first thing to do is ask PowerShell for help. help hotfix I'm not saying you will get a result the first time, although in this case, you'll see there is a cmdlet, Get-HotFix that we can use. Sometimes you need to try a variety of terms and maybe even use wildcard characters. Once you have a basic cmdlet, read the complete help and examples. With Get-HotFix, you can get a specific patch by its ID number or all of them. Since commands should work just fine locally, you should first test on your computer if you can. Running Get-Hotfix locally (Image Credit: Jeff Hicks) While this cmdlet is pretty simple... --- ### The Importance of Tools that Provide True Network Visibility > Gain insight and transparency into your network visibility with the right tools. SolarWinds explains how its NetPath solution does the trick. - Published: 2016-06-08 - Modified: 2024-12-03 - URL: https://petri.com/importance-tools-provide-true-network-visibility/ - Categories: Networking - Article Type: Overview Trying to troubleshoot networking issues outside the network is a troublesome task. Learn how to make this easier with the right tools that provide complete visibility into your network. Sponsored IT content provided by SolarWinds Ask anybody with kids "what is your worst experience as a parent? ” Is it the fears that rise up when they aren't home on time? The concern when they struggle -- socially, academically, emotionally, or otherwise? The self-doubt about choices regarding limits, permission, healthcare, and so on? Nope. The worst feeling is when your child lies to you. When this happens to you, it tears down your entire world. In early years, the lies can seem cute: there's the whole asking "did you eat the chocolate cake" (while they stare at you with a chocolate goatee). Or "did you color on the walls" (when they are an only child). But mostly, it just hurts. Maybe being lied to hurts less when children are little, but it seems to hurt more so when they are big. The pain is there regardless. The truth is, it's not just our kids. We don't like being lied to by anyone. And we especially don't like being lied to by people we trust. And that’s why I want to talk to you today about your ISP. I know very few IT professionals who trust their WAN provider, a feeling that is due, in large part, because of past lies. I'm not talking about mistakes or miscommunications. I'm talking about bold-faced whoppers. Like the time the tech on the phone told me they had looped my circuit. He said it looked good on his end, and the problem was... --- ### A Primer on Special PowerShell Operators > PowerShell trainer Jeff Hicks wraps up his look at operators with some special cases. - Published: 2016-06-07 - Modified: 2024-09-04 - URL: https://petri.com/special-powershell-operators/ - Categories: PowerShell - Tags: Beginner - Article Type: How To PowerShell trainer Jeff Hicks wraps up his look at operators with some special cases. Over the course of a few articles, I've been introducing you to PowerShell operators. Most of them like -eq and -And are not that difficult to figure out if you see them in an example. PowerShell has several other operators that I describe as special use and may not be intuitive, but I think you will find them quite useful. Related: Introduction to PowerShell Operators Related: More PowerShell Operators Range The range operator (. . ) is a quick way to get a range of numbers in either ascending or descending order. the PowerShell Range operator (Image Credit: Jeff Hicks) This operator only works with integer values. Range failures (Image Credit: Jeff Hicks) I like using the range operator as a counter. 1. . 5 | foreach { "do something here on pass $_" } This will run the code in the ForEach-Object loop five times. Or you could use it like this to build a random password. Function New-Password { Param($Length = 7) -join (33. . 126 | Get-Random -count $length | foreach {$_ -as } ) } And maybe you want to generate a list of passwords Creating a range of passwords (Image Credit: Jeff Hicks) Call The call operator (&) is used to invoke or run an expression. You might have a scriptblock you are using with Invoke-Command, but you will need to test it. Calling a PowerShell scriptblock (Image Credit: Jeff Hicks) True, I could also... --- ### What's New In Windows Server 2016 TP5: Clustering Features - Published: 2016-06-07 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-windows-server-2016-tp5-clustering-features/ - Categories: Windows Server 2016 - Article Type: Overview Learn all about new improvements to failover clustering in Windows Server 2016. This article describes some of the improvements that you'll see in the availability services offered by failover clustering in Windows Server 2016 (WS2016) Technical Preview 5 (TP5). Related: What’s New in Windows Server 2016 TP5 Storage? Keeping Services Running with Failover Clustering Failover clustering is all about keeping services running. And the failover clustering team is all about feedback. With each release of Windows Server, the team has improved uptime for services running on Windows Server and Hyper-V, and this continues again with WS2016. Most of what you'll read about in this article is a result of feedback from customers and partners, and it proves that participating in the process works and gives us a better product. Cluster Rolling Upgrade Recent years have proven that Windows Server isn't released every three years. It's much more frequent, and customers have been left behind. This isn't just because of license costs or fear, it's because upgrading a Hyper-V, storage, or application cluster just wasn't possible; we had to build a new cluster and swing the highly available services across. That's why you'll still find lots of Windows Server 2008 R2 clusters out there, even though those companies own Windows Server 2012 R2 licensing. Microsoft needed to allow cluster upgrades, especially if we might have a more frequent release schedule in the future. This is why we have a Cluster Rolling upgrade, which is a process that's similar to a domain upgrade. This process will work with Windows Server 2012 R2 and... --- ### Understanding In-Place Hold and Litigation Hold in Exchange > In today's Ask the Admin, Russell Smith explains the difference between an in-place hold and a litigation hold in Exchange. - Published: 2016-06-06 - Modified: 2024-09-04 - URL: https://petri.com/understanding-in-place-hold-and-litigation-hold-in-exchange/ - Categories: Exchange Server - Tags: Archiving, e-Discovery, exchange, Litigation - Article Type: Overview In today's Ask the Admin, Russell Smith explains the difference between an in-place hold and a litigation hold in Exchange. In today's Ask the Admin, I'll explain the differences between Exchange In-Place Hold and Litigation Hold. Litigation Hold was first introduced in Exchange 2010 and is designed to preserve all items in a mailbox indefinitely for the purposes of e-discovery. Litigation Hold can be applied to mailboxes or distribution groups. When a user's mailbox is put on Litigation Hold, they are still able to delete items, but Exchange retains the deleted items indefinitely with immutability. For example, if the user changes an item, it will remain preserved in its original form. While initially designed for e-discovery purposes in legal cases, Litigation Hold can also be used for archiving in other scenarios. The ability to define a hold period was added to Exchange Online in the form of the LitigationHoldDuration parameter, which allows you to set a retention period. This ability was later added to Exchange 2013. To put all mailboxes on Litigation Hold for seven years (2555 days), use the PowerShell code below. For more information on using PowerShell with Exchange Online, see "How to Connect to Exchange Online with PowerShell" on Petri. Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq "UserMailbox"} | Set-Mailbox -LitigationHoldEnabled $true -LitigationHoldDuration 2555 Litigation Hold and In-Place Hold objects can also be created using the Exchange Admin Center (EAC). In-Place Hold In-Place Hold was introduced in Exchange 2013 and is also available in Exchange Online. Although similar, In-Place Hold doesn't replace Litigation Hold and both are valid solutions in different scenarios. There are... --- ### Microsoft’s Making A Serious Commitment To Apache Spark - Published: 2016-06-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-making-serious-commitment-apache-spark/ - Categories: Microsoft Azure - Tags: Apache Spark, Microsoft, News - Article Type: News Microsoft has announced new support for Apache Spark and is also making some of its services generally available as well. This week in San Francisco, thousands of people are gathering for Spark Summit, the Apache Spark developer conference. Attending the show this year, and also keynoting, is Microsoft, who is making a serious commitment to the platform to help power the company’s big data and analysis offerings. Apache Spark is a general engine for large scale data processing that is used by more than a thousand organizations and that number will likely grow in the near future as Microsoft is announcing new support for the product. Spark for Azure HDInsight General Availability, previously announced as public preview, Spark for Azure HDInsight generally available today, and introducing a fully managed Spark service from Hortonworks that has been hardened for the enterprise R Server for HDInsight in the cloud powered by Spark, previously announced as public preview, R Server for HDInsight will be generally available this summer. R Server for Hadoop on-premises is now powered by Spark, R Server for Hadoop will support both Microsoft R and native Spark execution frameworks available in June. Power BI support for Spark Streaming, previously announced with Power BI General Availability, Spark support in Power BI is now expanded with new support for Spark Streaming scenarios. Several years ago, announcements like this would have seen out of the ordinary for a company who has its own products that compete with Apache Spark. But, in the past couple of years, the company has been opening up its platforms to be more inclusive in the open source community and these types of... --- ### How Do I Customize Microsoft Azure Routing? - Published: 2016-06-06 - Modified: 2024-09-04 - URL: https://petri.com/how-do-i-customize-microsoft-azure-routing/ - Categories: Microsoft Azure - Tags: Azure, Forced Tunneling, Network, networking, Routing, Subnet, Tunneling, User-Defined Routing - Article Type: How To Learn how you can customize network routing for Azure virtual machines on, from, and to a virtual network. In this article, I'll explain how you can customize network routing for Azure virtual machines on, from, and to a virtual network. How Routing Works by Default In a normal deployment of virtual machines, Azure uses a number of system routes to direct network traffic between virtual machines, on-premises networks, and the Internet. The following situations are managed by these system routes: Traffic between VMs in the same subnet. Between VMs in different subnets in the same virtual network. Data flow from VMs to the Internet. Allowing virtual machines to communicate with each other via a Vnet-to-Vnet VPN. Enabling virtual machines to route to your on-premises network via a gateway (site-to-site VPN or ExpressRoute). Every subnet in a virtual network is associated with a route table that enables the flow of data. This table can be comprised of three system route rules: Local Vnet Rule: Every subnet has this rule, which informs virtual machines that there is no hop (gateway) to machines in the same network. On-Premises Rule: A gateway enables connectivity to other networks outside of a virtual network, such as other virtual networks or the on-premises network(s). Use of local networks defines those networks; consider local networks as your method for defining this kind of rule. Internet Rule: All traffic that is destined for the Internet is managed by this rule by default. The Need to Customize Routing A lot of deployments never require routing customization, but there are scenarios where you might want to adjust... --- ### Understanding the Azure Resource Manager Load Balancer - Published: 2016-06-03 - Modified: 2024-09-04 - URL: https://petri.com/understanding-azure-resource-manager-load-balancer/ - Categories: Cloud Computing - Tags: ARM, Azure, Load Balancer, NAT, networking, Virtual Network - Article Type: Overview Learn how Azure Resource Manager (ARM) uses a virtual load balancer in the Azure fabric to implement NAT rules for Azure virtual machines. In this article, I'll explain how Azure Resource Manager (ARM) uses a load balancer instead of cloud services to implement NAT rules and internal/external network load balancing for virtual machines. Azure V1 and Endpoints The old ways of doing networking in Azure V1 or Service Management in the classic Management Portal were well understood by Azure administrators. Typically, a cloud-based virtual machine application or deployment was wrapped up in an abstraction called a cloud service. This cloud service has a public IP address that can be accessed by clients on the Internet. When you wanted to make a service available in a virtual machine, you edited the settings of the virtual machine and could do one of two things: Create a NAT rule, using an endpoint, that revealed a UDP or TCP port to the Internet via the cloud service's public IP address. Create a load balanced set by effectively duplicating an endpoint across two or more virtual machines. How Azure Service Management virtual machines are connected by a cloud service (Image Credit: Microsoft) For example: An endpoint might be created for a virtual machine that NATs TCP 13890 on the cloud service public IP address to TCP 3389 in the virtual machine; this allows remote desktop access to the virtual machine from the Internet. A load balanced set might be created on TCP 80 across three virtual machines via the cloud service public IP address; this creates a load balanced web server farm. Service Management virtual... --- ### Paul Thurrott's Short Takes: June 3 - Published: 2016-06-03 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-3/ - Categories: Mobile - Tags: News - Article Type: Opinion Because even Satya Nadella isn't moving quickly enough, this edition of Short Takes focuses on a misreport about "Get Windows 10" changes, Microsoft is not building a driverless car, excitement about coming Xbox hardware, Huawei's plans for world domination, and more. Our fearless leader Because even Satya Nadella isn't moving quickly enough, this edition of Short Takes focuses on a misreport about "Get Windows 10" changes, Microsoft is not building a driverless car, excitement about coming Xbox hardware, Huawei's plans for world domination, and more. Microsoft chairman: Satya is great ... but Microsoft is still not moving quickly enough Wow. In an interesting interview with Bloomberg, Microsoft chairman says that CEO Satya Nadella has done a great job pivoting Microsoft into the "mobile first, cloud first" world. But get this. He's not moving quickly enough. "Thompson said he and the board want to move much faster," the report notes. "They’re considering ideas like increasing spending, overhauling the sales force and managing partnerships differently to step up the pace ... No one knows exactly how quickly sales of legacy offerings will drop off, Thompson said, but it’s 'inevitable that part of our business will be under continued pressure'. " Interesting stuff. "Microsoft is killing off Windows Live Mail – what should I do? " For starters, use an email app that was updated this century. Microsoft denies that it has jumped the shark with Windows 10 forced upgrades After being accused by The Register of further changing the "Get Windows 10" advertisement in Windows 7/8. 1 so that users cannot cancel it anymore, Microsoft has finally spoken up. "The Register report is inaccurate," a Microsoft statement says. "The Windows 10 upgrade is a choice, designed to help... --- ### Create an Azure Network Security Group using ARM PowerShell - Published: 2016-06-02 - Modified: 2024-09-04 - URL: https://petri.com/create-azure-network-security-group-using-arm-powershell/ - Categories: Microsoft Azure - Tags: Azure, Cloud, networking, Security - Article Type: How To Learn how to create a Network Security Group in Azure, using PowerShell Azure Resource Manager, to control inbound and outbound traffic. In today's Ask the Admin, I'll show you how to create a Network Security Group in Azure using PowerShell. A year ago I wrote a primer on creating Network Security Groups (NSGs) using PowerShell, which you can read on Petri here. NSGs differ from endpoint-based ACLs in that they can be applied to more than one VM by associating them with NICs or subnets. They also survive the lifecycle of VMs and are typically used to fence off Azure subnets from one another without needing to specify endpoint-based network ACLs for each VM in the subnet. Microsoft's new portal for Azure has been made generally available since I wrote the original article, and along with it a new deployment model called Azure Resource Manager (ARM). For a better understanding of ARM, see "What are Microsoft Azure Resource Groups? " on the Petri IT Knowledgebase. And starting in Azure PowerShell 1. 0, ARM has its own distinct cmdlets, which I'll use in this demo to create a NSG. If you haven't yet installed Azure PowerShell 1. 0 or higher, read "Install Azure PowerShell 1. 0 Preview" on Petri. Before running the code below, you'll need to have a Resource Group, virtual network (VNET) and subnet. If you don't already have these resources deployed in your Azure subscription, see "Provision a domain using a Microsoft Azure Resource Manager template" on Petri, where I show you how to deploy a VM running Active Directory, including a Resource Group, VNET and subnet. Create a Network Security... --- ### Getting the Most Out of Office 365: Train on Teamwork > Many companies want to get the most out of their tools. To maximize how your company uses Office 365 focus on teamwork training. - Published: 2016-06-02 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-train-on-teamwork/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, teamwork - Article Type: How To Many companies want to get the most out of their tools. To maximize how your company uses Office 365 focus on teamwork training. If you are working at a medium or large company, then you are probably the member of several teams. Different companies divide teams differently; sometimes by product or by customer or discipline. Frequently teams do not set up shared spaces or use team communication tools. Too often email becomes the communication tool and sending documents back and forth is considered collaboration. Microsoft has been building new tools for teams to work better together. When planning training for Office 365 consider focusing on teamwork instead of individual productivity. Tools like Yammer, Office 365 Groups, OneDrive for Business, OneNote, and Office 2016 have all been built with a focus on teamwork. Sharing photos, videos, status updates, or other information typically gets done with email. Unfortunately, this means email becomes a file server and is overloaded with big attachments. IT staff will set a policy that will delete old emails, and this means critical information can get lost and work will need to be redone. Avoid losing work to expiring emails and stop bogging down email servers; instead use OneDrive for Business and OneNote to hold your important information. Yammer Groups via Microsoft Many companies believe they are underutilizing the Office 365 subscription they are paying for, but they do not know how to get their employees to change their habits. First, focus training on the team tools people will be using every day instead of mentioning supporting technology like OneDrive for Business or SharePoint... . --- ### Microsoft Announces Office 365 Advanced Security Management - Published: 2016-06-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-office-365-advanced-security-management/ - Categories: Microsoft 365 - Tags: News - Article Type: News This week, Microsoft announced Office 365 Advanced Security Management, a set of tools that will provide organizations with better visibility and control over their Office 365 environments. Some of this functionality is available immediately, while the remainder will ship by the end of the third quarter. This week, Microsoft announced Office 365 Advanced Security Management, a set of tools that will provide organizations with better visibility and control over their Office 365 environments. Some of this functionality is available immediately, while the remainder will ship by the end of the third quarter. Office 365 Advanced Security Management builds on Microsoft's Cloud App Security platform, which launched in early April and was itself the result of Microsoft's acquisition of Adallom. Microsoft describes this solution as "a set of capabilities to help companies design and enforce a process for securing cloud usage; from discovery and investigation capabilities, to granular control and protection. " In other words, it is designed as a way to fight so-called "shadow IT" cloud usage, where organizations without a formal cloud infrastructure find that employees are nonetheless heavily using cloud services. Office 365 Advanced Security Management, then, is an Office 365-specific implementation of Cloud App Security. And it provides three core capabilities: Threat detection. Advanced Security Management helps you configure anomaly detection policies that can help you identify high-risk and abnormal usage and prevent network breaches. "Anomaly detection works by scanning user activities and evaluating their risk against over 70 different indicators, including sign-in failures, administrator activity and inactive accounts," Microsoft explains. Advanced Security Management also assesses potentially risky user behavior, providing insights into your overall threat landscape. Enhanced control. Advanced Security Management lets you configure activity policies that can track specific activities such as unusually large downloads, multiple sign-in failures, and... --- ### SQL Server 2016 Reaches General Availability - Published: 2016-06-01 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-2016-reaches-general-availability/ - Categories: SQL Server - Tags: News, SQL Server 2016 - Article Type: News SQL Server 2016 has reached general availability, meaning that the software is now ready for production environments. Microsoft has announced today that SQL Server 2016 is ready for production environments. The updated platform brings with it improved security, performance and new features with a price point that allows it to target Oracle customers to grow its market share. With SQL Server 2016, there will be four editions: Express, Standard, Enterprise, and a Developer edition. The Developer edition is now a free version of the Enterprise edition of SQL Server 2016, but it cannot be used in production environments and is for development and testing only. The following image includes a full breakdown of the feature sets per edition. For those curious about the Linux version of the platform, which the company announced earlier this year, that product will not be ready until mid-2017. With this release, Microsoft is going after Oracle users by showing how the new platform can perform the same tasks as an Oracle-based deployment but for 1/10th the cost. And, seeing as Microsoft is also offering free licenses to Oracle customers to switch to SQL Server 2016, the company is playing hardball with their database counterpart. It will be interesting to watch the adoption curve of this platform as typically large clients will wait until the first few patches are released before implementing new software from Microsoft. But, seeing how the company has been publicly beta testing this platform for the past couple of months prior to launch, this may provide early adopters a bit more assurance that the platform is production ready from day one. --- ### More PowerShell Operators - Published: 2016-06-01 - Modified: 2024-09-04 - URL: https://petri.com/more-powershell-operators/ - Categories: PowerShell - Tags: Beginner - Article Type: How To PowerShell expert Jeff Hicks is back with more helpful tips on working with PowerShell operators. In a previous article I introduced you to some common PowerShell operators. In that article, I left you with a code example that used a few new operators. Let me explain those and a few others. Read: Introduction to PowerShell Operators Unary Operators These operators are kind of fun, I think. They are designed to increase or decrease a value. $i=1 $i++ The variable i has an initial value of 1, but after incrementing with the ++ operator, $i now has a value of 2. Yes, you could accomplish the same result with other operators. $i=1 $i+=1 But if you are merely increasing or decreasing a counter, I find the unary operators a bit more elegant. Typically, you will use the operators with something like this: for ($i = 1; $i -le 10; $i++) { $file = Join-Path "c:work" -ChildPath "TestFile_$i. dat" New-Item -Path $file -ItemType File -Force | Out-Null } This snippet of code will loop through while $i is less than or equal to 10. Each time through the loop, $i is increased by one. I'm using the value of $i as part of the filename. The end result is a group of files called TestFile_1. dat through TestFile_10. dat. Logical Operators A logical operator is used to test the validity of an expression or condition. The result will be True or False. -And Use the -AND operator to determine if an overall set of expressions or conditions is true. $x=2 $y=3 ($x -gt 0) -And ($y -lt 5) The use... --- ### What’s New in Windows Server 2016 TP5 Storage? - Published: 2016-06-01 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-windows-server-2016-tp5-storage/ - Categories: Windows Server 2016 - Tags: S2D, SMB 3.0, SR, storage, Storage Replica, storage spaces, Storage Spaces Direct, Technical Preview 5, TP5, Windows Server 2016, WS2016 - Article Type: Overview Learn about storage feature improvements in the Windows Server 2016 Technical Preview 5. In this post I'll describe some of the additions and improvements that you will find in Windows Server 2016 (WS2016) Technical Preview 5 (TP5) related to storage. Read: What’s New in Windows Server 2016 Technical Preview 5: Networking Features Evolution Most of what you will find in Technical Preview 5 is an evolution of concepts that started in Windows Server 2012. Not only are these features mostly improved in Windows Server 2012 R2 and inspired by industry trends, but these features were also based on customer feedback. Storage Spaces Direct (S2D) Storage Spaces has been with us since Windows Server 2012. Microsoft's primary use case for Storage Spaces is in large scale clouds, normally deployed in "stamps," a concept where compute (Hyper-V), networking and storage are deployed in one self-contained rack at a time. In this scenario, the storage is enabled by a Scale-Out File Server (SOFS) that uses two to four clustered servers with shared-SAS JBODs to create a continuously available file shares for storing virtual machine files using SMB 3. 0 networking. Classic Scale-Out File Server with Storage Spaces This SOFS architecture continues in WS2016, but Microsoft is adding a new architecture. Classic SOFS has two downsides in Microsoft's opinion: It requires a SAS hardware layer -- although this does add potentially huge scalability -- we can get over 2 petabytes in raw capacity in 16Us of JBOD these days. Storage Spaces has been driven by shared SAS disks, which are quite expensive, but we... --- ### Expanded Partnership with Xiaomi Brings Microsoft Apps to More Android Handsets - Published: 2016-06-01 - Modified: 2024-09-04 - URL: https://petri.com/expanded-partnership-xiaomi-brings-microsoft-apps-android-handsets/ - Categories: Mobile - Tags: News - Article Type: News Microsoft has announced a dramatic expansion of its partnership with China-based device maker Xiaomi on Wednesday. As part of the agreement, Xiaomi will ship Microsoft Office and Skype apps on its Android smart phones and tablets. Xiaomi Redmi Note 3 smart phone Microsoft has announced a dramatic expansion of its partnership with China-based device maker Xiaomi on Wednesday. As part of the agreement, Xiaomi will ship Microsoft Office and Skype apps on its Android smart phones and tablets. And Microsoft will reportedly sell 1,500 patents to Xiaomi. "We are excited to be working closely with Microsoft on a broad technology collaboration partnership," Xiaomi senior vice president Xiang Wang said in a prepared statement. "As demonstrated by this agreement with Microsoft, Xiaomi is looking to build sustainable, long-term partnerships with global technology leaders, with the ultimate goal of bringing the best user experience to our Mi fans. " "People want their favorite apps and experiences to work seamlessly on the device of their choice, and that's exactly what this partnership offers," Microsoft executive vice president Peggy Johnson said in a corresponding statement. "Together with Xiaomi, we're bringing the very best in mobile productivity to millions more customers in China and around the world. " Xiaomi (pronounced "shaow-mee," roughly) is unknown outside of tech enthusiast circles in the United States as they do not currently sell their smart phones and tablets here. But the firm was the 5th largest maker of smart phones in the world in 2015, having sold about 71 million units, and it is the biggest seller of smart phones in China. Xiaomi is also growing quickly, and expanding internationally as it goes. The expanded partnership that Microsoft... --- ### How to Install and Upgrade Azure PowerShell - Published: 2016-05-31 - Modified: 2024-09-04 - URL: https://petri.com/install-upgrade-azure-powershell/ - Categories: Microsoft Azure - Tags: ARM, Azure Resource Manager - Article Type: How To Learn quick and easy steps for how to install and upgrade the PowerShell module for Azure and Azure Resource Manager. In this post I'll show how you can install and upgrade the Azure PowerShell modules. I'll also show you how you can log into Azure and select a subscription to work with. Service Management in Classic Azure If you are still working with classic Azure, then these are the instructions to follow. There are two ways to install the Azure PowerShell module. The first is to use the Web Platform Installer. This GUI-based tool will download and install the necessary components. Yes, it gives you a UI, but it is a slower method for installing the module. Installing the Azure PowerShell module using the Web Platform Installer (Image Credit: Aidan Finn) The second method is to use PowerShell. You can run this quick one-liner, using an elevated PowerShell prompt, to download and install the latest version of the PowerShell module: Install-Module Azure Microsoft updates Azure quite frequently, and this has an impact on PowerShell. You should consider checking for an update very frequently, and if you do notice strange behaviour, then check for an update. The Install-Module Azure cmdlet is the quickest way to download the latest version of the module. Tip: Microsoft suggests that sometimes a PC will have report that Azure PowerShell cmdlets cannot be found after a new installation. In my experience, I always tell people to reboot their PC to upgrade their module search paths after a new installation. Once you are ready, launch the Azure console. You can log into... --- ### Microsoft Establishes Its Own Venture Capital Group - Published: 2016-05-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-establishes-venture-capital-group/ - Categories: Cloud Computing - Tags: News - Article Type: News In a bid to counter the Silicon Valley-centric nature of tech venture capital, Microsoft has created its own venture group. Dubbed Microsoft Ventures, this group will identify strategic and financial investments much earlier than has been the case so far, and will focus largely on cloud technologies. In a bid to counter the Silicon Valley-centric nature of tech venture capital, Microsoft has created its own venture group. Dubbed Microsoft Ventures, this group will identify strategic and financial investments much earlier than has been the case so far, and will focus largely on cloud technologies. "In Microsoft’s history of engaging with and supporting start-ups, we've done a lot of investing, but not a lot of early stage," explains Microsoft corporate vice president Nagraj Kashyap, who joined the firm earlier this year from Qualcomm and heads Microsoft Ventures. "Because we would often invest alongside commercial deals, we were not a part of the early industry conversations on disruptive technology trends. With a formalized venture fund, Microsoft now has a seat at the table. " Microsoft's entry into venture capital is, if anything, overdue. The software giant is often an afterthought or completely ignored in many discussions about current and future technologies, despite its massive presence and user base. With so much venture capital in this market stuck in Silicon Valley, Microsoft continually faces a self-replicating cycle of that area being the sole focus of start-ups. So it's hoping to change that. Microsoft will of course have a presence in Silicon Valley---that's unavoidable---but it will also set up shop in Seattle, New York City and Tel Aviv, and has plans to expand geographically going forward. Wisely, Microsoft will focus its early stage investment on cloud technologies, which is both its core competency and the future of the... --- ### Azure DevTest Labs Reaches General Availability - Published: 2016-05-31 - Modified: 2024-09-04 - URL: https://petri.com/azure-devtest-labs-reaches-general-availability/ - Categories: Microsoft Azure - Tags: Azure, Cloud, DevOps - Article Type: News Learn more about Microsoft's new Azure DevTest Labs service and what it has to offer to developers and sysadmins. In today's Ask the Admin, I'll take a look at what Azure DevTest Labs has to offer developers and sysadmins. For organizations that don't have the luxury of a private cloud, platforms like Azure allow quick and flexible deployment of test and DevOps environments. It wasn't that many years ago that I remember deploying twelve physical servers for a development environment that needed to be procured and then configured and managed manually; all of which are time-consuming and resource intensive tasks. Azure DevTest Labs (Image Credit: Russell Smith) Azure DevTest Labs brings together many of Azure’s existing features, and some new ones, in a package providing self-service automation for the deployment of sandboxed test and development environments, isolating lab resources in a subscription so that access, costs and change control can be managed effectively. Virtual machine deployment Azure DevTest Labs utilizes Azure Resource Manager (ARM) templates to automate the deployment of virtual machines (VMs). VMs can be deployed in advance, using the latest gallery or custom image, so that they're ready to go the next day and be claimed by a DevTest labs user. Auto start can also be set up to make sure there's no waiting around for VMs to be started. As you configure a new VM, an ARM template is generated to represent the deployment and can later be exported and shared with other teams using a public repository. There's an audit log that keeps a track of lab deployment and... --- ### Setting Application Control Policies with Microsoft's AppLocker - Published: 2016-05-27 - Modified: 2024-11-19 - URL: https://petri.com/setting-application-control-policies-microsofts-applocker/ - Categories: Windows Client OS - Tags: Application Control, applocker, Security, Windows - Article Type: How To Russell Smith shows us how best to set up application control policies in Windows using AppLocker. In today's Ask the Admin, I'll show you how best to set up application control policies in Windows using AppLocker. AppLocker was introduced in Windows 7 and can be used to prevent users from running executables, scripts, Windows Installer packages, and Windows Store apps (Windows 8 and higher) in Windows 7, Windows Server 2008 R2 and later. AppLocker is only available in Enterprise and Ultimate editions of Windows. Why is application control important? Removing administrative privileges from users goes a long way in protecting devices from unwanted configuration change and malware, but alone doesn't provide protection against scripts and portable software that might install itself into the user's profile. That's where AppLocker comes in, by preventing users from running installer packages or scripts that haven't been identified as trusted by IT. Configure AppLocker AppLocker is much easier to set up than Software Restriction Policies (SRP), which is the Windows XP technology that AppLocker replaces. In this article, I'll show you how to set up AppLocker in Local Computer policy in Windows Server 2012 R2, but you could easily apply the same settings to multiple computers using Active Directory Group Policy. Configure an MMC console (Image Credit: Russell Smith) Let's start by configuring a management console. Alternatively, you can configure a Group Policy Object for your domain following the instructions in "How to Create and Link a Group Policy Object in Active Directory" on Petri. Log in to Windows Server 2012 R2. Click the Start button... --- ### Paul Thurrott's Short Takes: May 27 - Published: 2016-05-27 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-27/ - Categories: Mobile - Tags: News - Article Type: Opinion Because Microsoft has finally killed all that was special about Nokia, this edition of Short Takes focuses on the Finnish government lashing out at Microsoft, China pirates unhappy about the forced Windows 10 upgrade, Microsoft's ban of dumb passwords, Microsoft's and Facebook's transatlantic subsea cable, and more. Microsoft's destruction of all that was special about Nokia is now complete. Because Microsoft has finally killed all that was special about Nokia, this edition of Short Takes focuses on the Finnish government lashing out at Microsoft, China pirates unhappy about the forced Windows 10 upgrade, Microsoft's ban of dumb passwords, Microsoft's and Facebook's transatlantic subsea cable, and more. Finnish government attacks Microsoft for its broken promises Microsoft this week announced that it would slash 1850 more jobs related to its failed Windows phone business, with most of the cuts coming to the few remaining ex-Nokia employees who joined the software giant in 2014. And the Finnish government is not happy, noting that Microsoft has broken all of the promises it made to the country when it convinced it to OK the $7. 5 billion purchase of Nokia's hardware and services businesses. "I am disappointed because of the promises made by Microsoft ," Finnish finance minister Alexander Stubb said this week. "One example is that the data center did not materialize despite the company's promise. " "The company must bear as big a responsibility as possible over what they have done by laying off people," Finnish employment minister Jari Lindstrom added. By my reckoning, Microsoft subsumed about 25,000 Nokia employees as part of that acquisition, and it has now laid off almost all of them. Mission accomplished? "Optical disc drives aren't dead" No, they are dead. Oh, the irony: China-based users unhappy about Windows 10... --- ### Deploy an Azure VM to an Existing Domain using an ARM Template - Published: 2016-05-26 - Modified: 2024-11-19 - URL: https://petri.com/deploy-azure-vm-existing-domain-using-arm-template/ - Categories: Microsoft Azure - Tags: Active Directory, Azure, Azure Resource Manager, Cloud - Article Type: How To Learn how to add a member server to an existing domain using a Microsoft Azure Resource Manager (ARM) template. In today's Ask the Admin, I'll show you how to deploy a Windows Server 2012 R2 VM in Azure and join it to an existing Active Directory (AD) domain. This tutorial uses Azure Resource Manager (ARM) to deploy a virtual machine and join it to a domain. If you need a primer on ARM and how to work with templates, or want to deploy a new AD domain in Azure, take a look at "Provision a domain using a Microsoft Azure Resource Manager template" on the Petri IT Knowledgebase. Get the template URI As in the previous article, I'm going to use a readymade template, 201-vm-domain-join, from the quick-start gallery on GitHub. First we need to get the template URI: Open the 201-vm-domain-join template in a browser. Click azuredeploy. json in the list of files. Click Raw above the template code on the right. Azure JSON ARM template (Image Credit: Russell Smith) Once the browser is displaying the raw template code, copy the URL from the browser address bar. This is the URI for the template required by the New-AzureRmResourceGroupDeployment cmdlet. Deploy a VM using an ARM template Before you can start working with the PowerShell ARM cmdlets, you'll need to make sure that you've got Microsoft Azure PowerShell 1. 0 or later installed on your system. For more information, see "Install Azure PowerShell 1. 0 Preview" on Petri. Open Windows PowerShell ISE. The 201-vm-domain-join template creates a new VM in the same Resource Group (RG) as... --- ### Considering an All-Flash Storage Solution? Hewlett Packard Enterprise Technology Services Storage Consulting Can Help - Published: 2016-05-26 - Modified: 2024-09-04 - URL: https://petri.com/considering-flash-storage-solution-hewlett-packard-enterprise-technology-services-storage-consulting-can-help/ - Categories: Backup & Storage - Tags: sponsored - Article Type: Overview If you're considering a move to flash storage – like HPE 3PAR StoreServ Storage -- HPE Technology Services Consulting (TSC) provides a Flash Total Cost of Ownership (TCO) Analysis Service that can help you see just how much money you might save by moving to an all-flash storage environment. Sponsored IT content provided by Hewlett Packard Enterprise If you're considering a move to flash storage – like HPE 3PAR StoreServ Storage -- HPE Technology Services Consulting (TSC) provides a Flash Total Cost of Ownership (TCO) Analysis Service that can help you see just how much money you might save by moving to an all-flash storage environment. In addition to simple cost savings, the Flash TCO analysis service will help you with designing, testing, implementing, and running the new storage solution, as well as reducing the cost of maintaining old and new storage solutions in parallel during the transformation period. The service will also help you: Quantify the hardware and software savings realized by optimizing storage capacity and utilization Quantify the environmental savings realized by optimizing DC space, power, and cooling Quantify the cost savings realized by increasing the availability/service levels of the storage services Note: I'd like to thank my HPE colleague Wim Van Poelvoorde for providing some additional background on the Flash TCO Analysis Service, which I've posted below. What is the Flash TCO Analysis Service? With the new IT technology trends of today, such as the cloud, mobility, and Big Data analytics, the need for transforming your infrastructure to make it ready for the New Style of IT is growing rapidly. Because all of these changing business areas are tightly linked to your business-critical data and information, storage plays an important role in this process. While the business reasons for transforming your storage infrastructure are generally... --- ### What's New in Windows Server 2016 Technical Preview 5: Networking Features - Published: 2016-05-26 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-windows-server-2016-technical-preview-5-networking-features/ - Categories: Windows Server 2016 - Tags: DNS, Hyper-V, IPAM, Network Controller, networking, NFV, Technical Preview 5, TP5, virtual switch, Windows Server 2016, WS2016 - Article Type: Overview Learn all about the new networking improvements in Windows Server 2016 Technical Preview 5. This post will describe the networking features that are changed or new to Windows Server 2016 (WS2016), as featured in Technical Preview 5 (TP5). It's All About the Cloud Windows Server 2016 has a very definite theme: running you own implementation of Azure that's managed using the Microsoft Azure stack. Many of the new and improved features of WS2016 are intended to enable Azure to run in your data center. Nowhere can you see this more than in the networking features of the newest version of Microsoft's server operating system. Network Controller A fabric in a cloud, such as networking, requires management. Microsoft has ported the network fabric controller of Azure to Windows Server and called it the Network Controller. Microsoft describes the Network Controller as a "centralized, programmable point of automation. " This means that there's one point of central control of the network fabric across your entire Hyper-V cloud, and you can also interact with the Network Controller using PowerShell. However, the envisioned mechanism of manual control will be Azure Stack, which will allow you to deploy your software-defined networks. Managing the physical and virtual networks of a cloud using Network Controller (Image Credit: Microsoft) Hyper-V Switch Improvements There are a few improvements to note: Converged NIC.  You can converge networks in a host to as few as a single NIC and still have support for RDMA. In other words, RDMA can be enabled in a management OS virtual NIC, meaning that all SMB Direct enhanced... --- ### Getting the Most Out of Office 365: Driving User Adoption > Many companies use Office 365, but many of their employees ignore the new tools. How do you train users to take advantage of everything? - Published: 2016-05-25 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-driving-user-adoption/ - Categories: Microsoft 365 - Tags: Delve, Getting The Most Out Of Office 365 - Article Type: How To Many companies use Office 365, but many of their employees ignore the new tools. How do you train users to take advantage of everything? Technology is constantly changing and improving, but that doesn't mean that users are keeping up. Frequently businesses struggle to keep their employees updated and on the most up-to-date software and services. Transitioning to Office 365 presents a new hurdle that many employees have a hard time overcoming. When people get to work, they usually just want to do their job and not fuss with the tools, and when the IT department keeps changing the tools, work becomes frustrating. On the other side of the equation, the IT department needs to continue to provide their company with the tools they need to keep up with the changing world with respect to productivity and security. New paradigms like BYOD, mobility, and the cloud push companies to adopt new technologies, such as SharePoint, OneDrive for Business, and Skype for Business. These new tools solve problems, but require the users to adapt as well, which can be the hard part. Many companies across the world are asking their employees to use tools they do not understand to do the same job. It is common for new tools to be avoided and the old way kept alive. Some of the modern productivity tools can be used with little change, like using the OneDrive for Business sync client to save documents to the cloud. More difficult hurdles are teaching users how to navigate SharePoint and how to save files for later access quickly. So what is an effective way to train your employees so they... --- ### Enterprise Agenda: Best Practices for Building Your Available Datacenter - Published: 2016-05-25 - Modified: 2024-09-04 - URL: https://petri.com/enterprise-agenda-best-practices-building-available-datacenter/ - Categories: Cloud Computing - Tags: Enterprise agenda - Article Type: Overview Knowing the best practices of any industry can help you avoid common pitfalls and in this edition of the Enterprise Agenda, we take a look at the best practices for data centers. The data center is the nerve center of every company. As we modernize our software, workflows and mobile operations, it all starts with your apps and data being available when and where your users need it. Focusing on recovery is growing in importance, as performance is always key but up-time is consistently the weak point of many operations. It doesn’t make sense to have the fastest data center in the world if it is only available 95 percent of the time. As we all chase the dream of 100 percent availability, we know that isn’t a real possibility. In a new whitepaper by IDC and commissioned by Veeam®, the IDC outlines best practices to create an available data center to satisfy the needs of employees, customers, partners and applications. The IDC cites six topical areas to help you understand if your data center is up to modern standards. If you are building out a new environment, these items also work as a guideline to make sure your design is up to par with your peers. The best practices, according to the IDC based on their observations, include focusing on recovery time, virtual fist, automate, modernize, achieve visibility and using cloud services. Each of these items is covered in more depth in the report, but I’ll go over the high points below. Several of these items we can group together, such as recovery time, modernizing your backup and focusing on recovery time. Recovery from an outage needs to be completed... --- ### Creating a GPO Central Store in Windows Server 2012 R2 - Published: 2016-05-24 - Modified: 2024-09-04 - URL: https://petri.com/creating-gpo-central-store-windows-server-2012-r2/ - Categories: Windows Server 2012 - Article Type: How To Daniel Petri shows us how to create a GPO central store in Windows Server 2012 R2 for easier management of policy settings. Group Policy Objects (GPOs) are a collection of thousands of various user and computer-specific settings that can be centrally managed by an administrator in an Active Directory environment. Since the days of Windows Server 2000 and 2003, when you created a GPO, its settings were stored in the SYSVOL folder of the domain controllers (DCs), which is replicated between the DCs in the domain.  However, because GPOs are essentially a collection of many settings that are combined together, these settings' files, also called "Administrative Templates," were also stored in the GPO folders on the SYSVOL share. In Windows Server 2000 and 2003, these settings were in form of . ADM files and were all located in five files: Conf. adm, Inetres. adm, System. adm, Wmplayer. adm, and Wuau. adm. But in Windows 2008 a new concept was introduced that separated the Administrative Templates into tens and hundreds of separate files that are now written in a different format and are made of two files for each section of the GPO: ADMX files that contain the settings themselves and language-specific ADML files that contain the localized explanation of what these settings do. The fact that the Administrative Templates are separated into two files means that global organizations with branch offices in multiple countries can use localized versions of their GPOs, allowing editing of a GPO by a German administrator, in German, and by a different administrator in the US, in English without affecting each other's language settings. So far so good. However another challenge existed -- where will these Administrative Templates be stored? Using the... --- ### Windows 10: Stop Data Flow to Microsoft - Published: 2016-05-24 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-stop-data-flow-microsoft/ - Categories: Windows 10 - Tags: Privacy, Windows 10 - Article Type: How To Russell Smith shows us how to stop various Windows 10 apps and OS components from sending or receiving data to and from Microsoft. In today's Ask the Admin, I'll look at how to stop various Windows 10 apps and OS components from sending or receiving data to and from Microsoft. Telemetry Windows 10 collects information about the OS and apps, such as performance and crash data, and then sends it back to Microsoft to improve future OS builds. You can control the amount of data sent by choosing from one of four telemetry levels: Security, Basic, Enhanced (default), and Full. For more information on managing telemetry in Windows 10, see Windows 10 Tip: Manage Telemetry Settings on the Petri IT Knowledgebase. Cortana While Cortana requires users to sign-in with a Microsoft Account, there have been concerns that even when disabled, Microsoft's personal assistant could still be active in the background. Windows 10 contains several Group Policy settings, including Allow Cortana and Don't search the web or display web results in Search, that allow system administrators to either disable Cortana completely or restrict her ability to perform web searches. The policy settings are located under Computer Configuration > Administrative Templates > Windows Components > Search in Group Policy. Despite the availability of these settings, Microsoft recommends that if you want to completely disable communication with Bing, the search engine that powers Cortana, you should create a Windows Firewall rule to block all outbound traffic from SearchUI. exe to prevent traffic being sent to Bing to ensure Cortana components on the PC are up-to-date. %windir%systemappsMicrosoft. Windows. Cortana_cw5n1h2txyewySearchUI. exe For more information on working with Group Policy, see... --- ### Microsoft Awards 12 Affordable Access Initiative Grants - Published: 2016-05-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-awards-12-affordable-access-initiative-grants/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft announced this week that has awarded 12 recipients with Affordable Access Initiative grants so that they can help bring affordable Internet access to underserved markets around the world. And in doing so, the software giant is taking a decidedly different approach than its competitors. Microsoft announced this week that has awarded 12 recipients with Affordable Access Initiative grants so that they can help bring affordable Internet access to underserved markets around the world. And in doing so, the software giant is taking a decidedly different approach than its competitors. "With these grants, we’re partnering with local entrepreneurs across five continents, each of whom deeply understand the unique needs of their own communities, and are already delivering hardware, applications, connectivity and power solutions to solve them," Microsoft executive vice president Peggy Johnson explains. "Our partners will receive seed funding, as well as a range of resources, including mentorship and BizSpark tools like free software, services and tech support so they can scale up the great work they are already doing in their communities. " Microsoft announced its Affordable Access Initiative back in Decemberas part of a major expansion of its philanthropic efforts. At the time, the firm revealed that it would invest more in digital inclusion programs and partnerships, and expand its Affordable Access Initiative, which is designed to help new business grow in remote areas and connect people to the cloud. "We don’t have to wait to make an impact," Ms. Johnson notes. "We have real, affordable solutions that truly bring the benefits of the Internet and computing to even the most remote communities. " By partnering with and assisting local people and companies, Microsoft can help ensure that the challenges of last-mile Internet connectivity are met with locale-appropriate solutions. These award recipients are... --- ### Microsoft Increases Baseline Specs Required for Windows 10 Anniversary Update - Published: 2016-05-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-increases-baseline-specs-required-windows-10-anniversary-update/ - Categories: Windows 10 - Tags: News, specs, Windows 10 - Article Type: News This summer, when the Anniversary update comes out for Windows 10, Microsoft will be increasing the baseline specs for 32bit machines. This summer, when the Anniversary update is released for Windows 10, it will bring with it many new features for business users as well as the consumer. In addition to these enhancements, Microsoft will also be increasing the baseline specs for 32bit machines. Dating back to the days of Vista, the system requirements recommended 1 GB of RAM for 32 bit machines but that is finally changing with the next update to Windows 10. Microsoft will require that you have 2 GB of RAM for 32 bit machines to be able to install the version of the OS. This update will not impact the majority of Windows 10 users but for those who are running low-end hardware, this is something to keep an eye one. Also, emerging markets are likely to be impacted by this change the most as they tend to have legacy hardware running Windows but even in those cases, that hardware is typically running an older version of the operating system. For 64 bit machines, there is no change; Microsoft has always required 2 GB of RAM. While this update will not impact many users, it’s important to know if you are running baseline hardware in your environment, that it will no longer be able to run the latest version of Windows starting later this year. You can view all the system requirements for Windows 10 Anniversary update (officially called 1607), here. --- ### Dynamics CRM 2016 Spring Wave Reaches General Availability - Published: 2016-05-23 - Modified: 2024-09-04 - URL: https://petri.com/dynamics-crm-2016-spring-wave-reaches-general-availability/ - Categories: Dynamics - Article Type: News Microsoft has announced today that its Dynamics CRM 2016 spring wave has reached general availability that brings with it several new features that leverage previous acquisitions. Microsoft announced today that its Dynamics CRM 2016 spring wave has reached general availability. This release adds new features to its enterprise solution that Microsoft will be leveraging to showcase that its platform is dynamic and a growing business line for the company. This new wave of updates brings enhanced capabilities that is making it easier for companies to capitalize on the new service economy with field and project service automation, more effective interaction with external communities with portal competencies, and enhancements to help employees deliver better customer experiences with adaptive and intelligent processes inside of Dynamics. This release is putting to use a couple of acquisitions Microsoft has made, which includes FieldOne and ADxstudio. In addition to the availability of the spring release, Microsoft will be hosting a virtual event on June 7th with Scott Guthrie, Jujhar Singh, and Paul Greenberg, where they will be talking about how Dynamics is being used to transform businesses.  If you're thinking about deploying Dynamics or have already done so at your company, then this event will help show the capabilities of the platform so that you can better understand how your company can utilize the software. You can learn more about the spring wave update by reading the official Microsoft blog that details the announcement, and you can also register to attend the virtual Dynamics event by visiting Microsoft's event page. --- ### Introduction to PowerShell Operators > Jeff Hicks provides an introductory overview into math, assignment, and comparison operators used in Windows PowerShell. - Published: 2016-05-23 - Modified: 2024-09-04 - URL: https://petri.com/introduction-powershell-operators/ - Categories: PowerShell - Tags: Beginner - Article Type: How To If you are going to use PowerShell, you'll need to know how to operate it. Start with these common operators. At first glance, PowerShell may appear overwhelming, but the language and syntax is actually quite simple, at least compared to other technologies such as VBScript or Perl. One reason I think it is easier to learn is that the operators are either things you already know or are easy to learn. You will use operators in filters and scripting constructs like if statements, so you need to take a little bit of time familiarizing yourself with them. Let me give you a quick rundown of operators you will most likely encounter or need to use. Related: Understanding PowerShell Terminology Math Operators The arithmetic operators are the same ones that you most likely have used all of your life. You can do addition (+), subtraction (-), multiplication (*) and division (/).   You can use operators right at the command prompt. PS C:> 5 + 2 Or with variables PS C:> $i * 100 You can also use parentheses to group operations like you learned in elementary school. These two expressions yield different results. 8+3/2 * 11 ((8+3)/2) * 11 Whenever I have a complex expression, I always use parentheses. Get-CimInstance -ClassName win32_logicaldisk | Select DeviceID,Size,@{Name="Used";Expression = {$_. size - $_. freespace}}, @{Name="PctUsed";Expression={ (($_. size - $_. freespace) /$_. size) * 100}} math operators (Image Credit: Jeff Hicks) Before we move on, one quick comment about the + operator. Some people will use it to join strings together. $name = "Jeff" $computername = $env:computername $OS = get-ciminstance win32_operatingsystem $logmsg = "[" + (Get-Date)... --- ### How to Purchase Microsoft Azure for Your Business - Published: 2016-05-23 - Modified: 2024-11-19 - URL: https://petri.com/how-purchase-microsoft-azure-your-business/ - Categories: Microsoft Azure - Tags: Azure, Cloud Solution Provider, CSP, EA, Enterprise Agreement, licensing, MOSP, Open, Volume Licensing - Article Type: Overview Aidan Finn provides advice on choosing a Microsoft Azure billing plan, including pros and cons for enterprise agreements, direct billing, Azure is Open, cloud solution providers, along with a list of freebies to get your hands on. Although the cloud is all the rage right now, momentum is slow. Personally, I think this jar of pickles is being jammed up by questions, and one of the big questions is how one can buy Azure.  Microsoft has given us several options, and sometimes a great variety of options can create indecision. In this article, my goal is to help you understand the options to pick the right version of Azure for you. No Single Purchasing Option for Microsoft Azure I work for a Microsoft distributor and my colleagues like to joke that we would be out of a job if Microsoft made things easy. One would think that the cloud would clear up licensing complexity, but that's not what happened with Microsoft. Office 365 and Azure licensing for the business is complex, where some options have sub-options. I guess the cloud has made my job safe for the foreseeable future! Enterprise Agreements (EAs) There are two kinds of EA available from Microsoft: Enterprise Enrollments Enterprise Subscription Enrollments The concept of an EA is that a large business enters into a multi-year agreement to purchase software from Microsoft. Typically this software is purchased in a "true up"; you purchase some of the software up front and then deploy as much as you need. At the end of the year, you report your usage and pay for the software going forward for the next year. Microsoft added Azure into the EA program. The idea is that you purchase a large amount of Azure... --- ### Windows 10 Tip: Block Untrusted Fonts - Published: 2016-05-20 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-block-untrusted-fonts/ - Categories: Windows Client OS - Tags: Security, Windows 10 - Article Type: How To Russell Smith shows us steps on how to block processing of untrusted fonts using the Graphics Device Interface (GDI) in Windows 10. In today's Ask the Admin, I'll show you how to block processing of untrusted fonts using the Graphics Device Interface (GDI) in Windows 10. Not the sexiest of topics, but Windows 10 contains a new security feature that allows system administrators to prevent users from loading fonts not located in the trusted %windir%/Fonts directory, helping to prevent remote web-based and local escalation of privilege attacks that can occur when parsing fonts. The feature has three levels of operation: On, Audit, and Exclude apps to load untrusted fonts. When the feature is set to On, only fonts contained in the trusted %windir%/Fonts directory are loaded using GDI and event logging is turned on. Audit turns on event logging but doesn't block fonts from loading. Exclude apps to load untrusted fonts allows you to set specific apps to load fonts using GDI outside of the %windir%/Fonts directory when the Untrusted Font Blocking feature is enabled. But before you rush to turn on font blocking, like many security defenses, it comes with some drawbacks. Microsoft notes that you might experience reduced functionality in the following circumstances: Sending a print job to a remote printer server if spooler. exe hasn’t been excluded. Fonts not available in the server's trusted fonts directory won't be used. Print jobs that use fonts, installed by the printer driver’s graphics . dll file, that reside outside of the trusted fonts directory. Apps that use memory-based fonts. Viewing websites in Internet Explorer that use embedded fonts. IE will use a... --- ### The Sams Report EP 40: Glorious Feature Phones, Promoted Apps and Google Gafs - Published: 2016-05-20 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-40-glorious-feature-phones-promoted-apps-google-gafs/ - Categories: Podcast - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including feature phones going bye bye, browsers market share, promoted apps and its impossible to avoid Google I/O. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including feature phones going bye bye, browsers market share, promoted apps and its impossible to avoid Google I/O. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=GdL33nrzxqg&feature=youtu. be RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: May 20 - Published: 2016-05-20 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-20/ - Categories: Cloud Computing - Tags: Google, News - Article Type: Overview Because Google is apparently taking over the world, this edition of Short Takes focuses on Microsoft's Bing Concierge Bot, two weeks of Google v. Oracle at trial, Google claims that Chromebooks outsold Macs in the US in Q1, Google appeals French order to take "right to be forgotten" worldwide, Google patents fly paper for pedestrians. Google's driverless cars save another pedestrian from disaster. Because Google is apparently taking over the world, this edition of Short Takes focuses on Microsoft's Bing Concierge Bot, two weeks of Google v. Oracle at trial, Google claims that Chromebooks outsold Macs in the US in Q1, Google appeals French order to take "right to be forgotten" worldwide, Google patents fly paper for pedestrians. A lot of Google news this week for some reason. I apologize in advance for not being able to invent what happened. --Paul Microsoft's answer to Alexa and Google Assistant? The Bing Concierge Bot! With Amazon's Alexa-based Echo proving surprisingly popular, Google this week announced Assistant, its own entry into the voice-based, conversational services market too. But what about Microsoft? A job posting on the software giant's web site, since removed but spotted by Mary Jo Foley, says its called ... wait for it ... the Bing Concierge Bot. Sigh. "We are building a highly intelligent productivity agent that communicates with the user over a conversation platform, such as Skype, Messenger, SMS, WhatsApp, Telegram, etc," the posting explained. "The agent does what a human assistant would do: it runs errands on behalf of the user, by automatically completing tasks for the user. The users talk to the agent in natural language, and the agent responds in natural language to collect all the information; once ready, it automatically performs the task for the user by connecting to service providers. " Sounds great. Sounds... --- ### Upgrading Software in Microsoft Azure RemoteApp - Published: 2016-05-20 - Modified: 2024-11-19 - URL: https://petri.com/upgrading-software-in-microsoft-azure-remoteapp/ - Categories: Microsoft Azure - Tags: Azure, Azure RemoteApp, RDS, Remote Desktop Services, RemoteApp, Software Updates - Article Type: How To Learn how you can upgrade software in a Microsoft Azure RemoteApp app collection in a managed way by replacing the collection's base image. In this article, I'll show you how to upgrade, remove, or replace software in a Microsoft Azure RemoteApp app collection by re-deploying the session hosts from an updated template image. The Problem Imagine that you have deployed even the smallest of app collections in Azure using a custom template; a basic plan app collection deploys two session hosts. You will have users logging into at least two hosts. Eventually, a time will come when you need to upgrade, remove, or replace software on those session hosts. How will you do this? Note that if you use Microsoft-supplied templates then Azure will update the deployments when required. If you use a custom template, then you are responsible for updating the deployments. In theory, you could log into each host via Remote Desktop with an administrator account and manage the installed programs. You could, in theory, use a software management tool such as System Center Configuration Manager, to do the work. But there remains a problem: users will have access to the session hosts, and you potentially will have a lot of work if you have lots of hosts. The Solution Fortunately, Azure RemoteApp does have a feature that allows you to update an app collection with a new image in an orchestrated manner. The process works as follows: You create a new version of your template and add it to RemoteApp. Select the Update action in your app collection and select the new image. Choose how to deal with currently... --- ### Microsoft EMS Components: Advanced Threat Analytics - Published: 2016-05-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ems-components-advanced-threat-analytics/ - Categories: Security - Tags: Advanced Threat Analytics, ems, Enterprise Mobility Suite - Article Type: Overview Diego Samuilov provides an overview of the Microsoft Advanced Thread Analytics service, which is part of Microsoft's Enterprise Mobility Suite (EMS), that enables organizations to detect and eliminate threats more quickly. The Enterprise at Risk - Advanced Threat Analytics - Statistics. Source: Microsoft This article is the fifth and last in the series "What is Microsoft Mobility Suite? " These days, we can't stop talking about cyber threats, hacking and data breaches to the enterprise. How much data has corporation X admitted to have lost or negligently disregarded? These are all valid concerns that should not be taken lightly, and oversimplifying this issue is making a great disservice to the public. What is Microsoft Advanced Threat Analytics? It is the public's data we are talking about, and it's this group that ends up suffering for the negligence of many, many corporations. Responsible enterprises protect data by having a set of services that prevent intrusions and data breaches. Microsoft Enterprise Mobility Suite includes the Microsoft Advanced Threat Analytics service. This article will cover what Advanced Threat Analytics is and how it works. This service is one of the best solutions to overly complicated and expensive alternatives. By leveraging the power Azure and their other cloud services, Microsoft's Advanced Threat Analytics offers a wide range of integrated solutions that help analyze behavior, detect malicious attacks and search for known threats with the common goal of preventing data breaches by reducing the size of breach vectors. Today's world shows us a harsh reality: Threats and attacks have grown and become increasingly more complex, more sophisticated and more frequent. Customer privacy, brand recognition, public relationships and even executives' reputation are at... --- ### Implementing a DMZ for Microsoft Azure Virtual Machines - Published: 2016-05-19 - Modified: 2024-09-04 - URL: https://petri.com/implementing-a-dmz-for-microsoft-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machine, DMZ, firewall, N, Network, Security, virtual machine - Article Type: How To Aidan Finn provides step-by-step instructions for deploying a DMZ in Microsoft Azure using Azure virtual networks. In this post I'll show you how you can create a DMZ for hosting an n-tier application based on Azure virtual machines, using a combination of Azure features: a multiple subnet virtual network, a firewall appliance from the Azure Marketplace, network security groups, and user-defined routing. Design In this article I'll be using a design that was discussed in "Designing a DMZ for Azure Virtual Machines. " The specific design in question uses: Virtual network: The network is split into three subnets, one for security, one for web servers, and the third for backend servers. Virtual firewall appliance: This is a third-party firewall that runs in a special Azure virtual machine that can be deployed from the Azure Marketplace -- check with the original vendor on how they license or bill for the appliance in addition to the virtual machine charges. The firewall appliance provides application-layer security between the Internet and the service, and between the networks and machines within the service. Network security groups (NSGs): NSGs are used to create protocol and port rules to enforce routing via the firewall appliance so that firewall rules and inspection are always used. User defined routing (UDR): We need to override default routing between the virtual network subnets and route via the virtual firewall appliance. An Azure DMZ made from user-defined routes, a virtual appliance firewall and NSGs (Image Credit: Microsoft) Resource Group Normally, I like to wrap up all components of a service in a single resource group and... --- ### Storage Tip: Understanding the Difference Between JBOD, DAS, NAS and SANs - Published: 2016-05-18 - Modified: 2024-09-04 - URL: https://petri.com/storage-tip-understanding-difference-jbod-das-nas-sans/ - Categories: Backup & Storage - Tags: storage, Storage Area Network - Article Type: Overview From a single portable USB disk to enterprise-grade Storage Area Networks (SANs), Russell Smith will explain the differences between three key storage technologies to help you understand which is most suitable for your needs. In today's Ask the Admin, I'll explain the differences between four types of disk storage: Just a Bunch of Disks (JBOD), Direct Attached Storage (DAS), Network Attached Storage (NAS), and Storage Area Networks (SANs). There's a bewildering choice of storage options available today, and while some organizations are moving data to the cloud, there's still an immediate requirement for onsite storage. If you're looking into disk storage solutions, the first challenge is to understand the differences between the four main types of storage. Just a Bunch of Disks (JBOD) JBOD is a collection of disks in a box presented to the OS either as a single volume or a combination of drives as larger logical volumes. However, there's no support for RAID fault tolerance or performance optimization. But for some applications, the lack of fault tolerance and performance optimization doesn't matter. Exchange Server Database Availability Groups (DAGs) are commonly stored on JBODs when budgets are limited for example. For more information on RAID, see "An Overview of RAID Storage Levels" on Petri. Direct Attached Storage More than 'Just a Bunch of Disks' (JBOD), Direct Attached Storage connects disks directly to the host controller of a PC or server, without going through a switched network, but doesn't allow the direct assignment of hard disks to multiple computers. As such, DAS is faster than other storage solutions. In its simplest form, DAS can be a single internal or external disk attached directly to a PC. And although it's a quick and... --- ### Microsoft Closes the Book on Nokia Assets, Ending in Disaster - Published: 2016-05-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-closes-book-nokia-acquisition-ending-disaster/ - Categories: Hardware - Tags: Lumia, News, Windows phone - Article Type: News Microsoft has sold off the last remaining asset it had from the Nokia acquisition, marking an end to the disastrous chapter of the Steve Ballmer era. Back in 2013, Microsoft announced that it would be acquiring Nokia’s mobile business in a move at the time that was seen as a defensive stake in the smartphone segment. At the time the company was buying the goods from Nokia, rumors were running rampant that the Finnish company wanted to build more Android devices and that’s why Microsoft bought the assets, to stop the one major brand supporting its platform from jumping off the Windows Phone platform. Announced today, Microsoft is selling its feature phone business, that it acquired from Nokia, for $350 million to FIH Mobile Ltd. , a subsidiary of Hon Hai/Foxconn Technology Group, and a newly formed company called HMD Global, Oy. The new company, HMD Global, will be headquartered in Helsinki, Finland will also receive an exclusive license to use the Nokia brand for phones and tablets which means that Nokia is back in the smartphone game. With the selling of the feature phone assets to a third-party, this signals the closure of Microsoft’s Nokia acquisition assets as the company previously wrote-off the business line to the value of $7. 6 billion while only paying $7. 2 billion for the division. When the deal closes, in the second half of this year, Microsoft be relieved of 4,500 employees who will transfer to either FIH Mobile or HMD Global Oy. Now that Microsoft has written down all of the assets and sold the last remaining division that was selling phones in any sort of volume, we can take a look... --- ### Understanding PowerShell Terminology - Published: 2016-05-17 - Modified: 2024-09-04 - URL: https://petri.com/powershell-terminology/ - Categories: PowerShell - Tags: Beginner PowerShell expert Jeff Hicks provides an overview of introductory PowerShell terms to help you get acquainted with PowerShell. When you are first learning what is PowerShell, there are often a number of terms and words that everyone assumes you know. Well let's not make that assumption. Instead, let me at offer at least a quick definition for much of the PowerShell terminology you will encounter. You should know how to use the help system to get additional information on these terms, but sometimes you need a little background to either know where to start looking or to put things in perspective. This is by no means an exhaustive list, but rather items based on my experience presenting PowerShell at conferences and in private training classes. Cmdlet A cmdlet, pronounced "command-let" is PowerShell's core unit of execution. Think of it as a little command that you run to do something. Not that it should matter to you, but a cmdlet is a compiled program written in a . NET language, usually C#. These programs follow a naming convention of Verb-Noun, which makes them easy to understand. The verb comes from a standard set of verbs, which you can see by running Get-Verb at a PowerShell prompt. The noun is a singular version of the object or thing that you want to work with. This makes it pretty easy to understand what a command like Get-Eventlog is going to do. You can get a list of all available cmdlets by running Get-Command. Alias An alias is an alternate name for a PowerShell command. The command might be a cmdlet,... --- ### What is Azure Active Directory Enterprise State Roaming? > Learn how Microsoft's Azure Active Directory Enterprise State Roaming (ESR) feature works and how it enables users to securely access their app data and settings across multiple devices. - Published: 2016-05-17 - Modified: 2024-09-04 - URL: https://petri.com/what-is-azure-active-directory-enterprise-state-roaming/ - Categories: Microsoft Azure - Tags: Azure, Azure Active Directory, Windows 10 - Article Type: How To Russell Smith walks us through Microsoft Azure's new Enterprise State Roaming (ESR) feature, which was made available as a preview in early February for customers with an Azure Active Directory Premium subscription. In today's Ask the Admin, I'll walk you through Microsoft's Azure Active Directory Enterprise State Roaming (ESR) feature, which is available for customers with an Azure Active Directory Premium subscription. If your organization uses Azure Active Directory (Azure AD), or Azure AD and Windows Server Active Directory, Enterprise State Roaming brings the ability to sync user settings and app data between devices, much like what is provided in Windows 10 by using a Microsoft Account and OneDrive. Sync your settings in the Windows 10 Settings app with Azure Active Directory Enterprise State Roaming (Image Credit: Russell Smith) Azure AD is the directory services cloud-based sibling of Windows Server Active Directory. It provides a subset of AD's features to customers in the cloud. ESR can be used in conjunction with Azure AD to provide the benefits of synchronized settings, as enjoyed by consumers using Microsoft Accounts, but with the extra security required by business. For more information, see Join Windows 10 to Azure Active Directory on the Petri IT Knowledgebase. Unlike consumer synchronization capabilities in Windows, Enterprise State Roaming gives organizations the control needed to make sure data stays safe, and that it is separated from consumer account data. ESR settings and app data are stored in an Azure region that's selected based on the country associated with the Azure Active Directory tenant, and ESR provides control and visibility over who is syncing what. ESR uses Azure Rights Management (Azure RMS) to ensure that data is encrypted... --- ### Microsoft and SAP Announce New Partnership, Bringing Two Giants Closer Together - Published: 2016-05-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-sap-announce-new-partnership-bringing-two-giants-closer-together/ - Categories: Microsoft Azure - Tags: Azure, News, SAP - Article Type: News Microsoft and SAP have announced a new partnership that will allow SAP ERP software to run on Azure and new Office 365 integration points in SAP applications. When it comes to Microsoft’s Azure service, the company is always looking for new ways of expanding the appeal of the platform; historically, Microsoft chose to fight competitors by developing or acquiring competing products. But, with its cloud platform and a new CEO, the company is looking to extend its productivity roots while opening up new channels of revenue by extending an olive branch to companies it traditionally would not have partnered with in the enterprise space. SAP and Microsoft have announced a new partnership that will result in SAP HANA coming to Azure, new connections between Microsoft Office 365 and cloud apps from SAP, and enhanced management and security for custom SAP Fiori applications. This partnership is significant for both companies as it allows Azure to be linked with SAP, which is one of the largest providers of ERP software, and for SAP, this means that they now have a new platform to pitch to the enterprise about how they can utilize SAP software.  In addition to running SAP on Azure, Office 365 will soon have new integration points with SAP applications including Concur, SAP Fieldglass, SAP SuccessFactors, and SAP Ariba. Microsoft and SAP are working together to certify Azure to be able to run SAP Hana for development, test and production workload; they are specifically targeting large customers and high-capacity workloads. The two companies stated that Coats, Rockwell Automation and Nortek are already using SAP on Azure. This move is beneficial to both companies and it’s a bit surprising it took this... --- ### Azure Backup Server System Requirements - Published: 2016-05-16 - Modified: 2024-09-04 - URL: https://petri.com/azure-backup-server-system-requirements/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup Server, Backup, Hyper-V, System Requierments, Windows Server 2012 R2 - Article Type: How To Microsoft's free Azure Backup Server (MABS) is a free on-premises backup server that will protect Microsoft workloads, such as Hyper-V, SQL Server, SharePoint, and more, by performing disk-to-disk-to-cloud backup. Microsoft's free Azure Backup Server (MABS) is a free on-premises backup server that will protect Microsoft workloads, such as Hyper-V, SQL Server, SharePoint, and more, by performing disk-to-disk-to-cloud backup. This article will explain the system requirements of Azure Backup Server. Azure Backup Server Requirements The key requirement for Azure Backup Server is that you have deployed a backup vault in Azure Recovery Services. You can set the vault can be locally-redundant storage (LRS - 3 synchronous copies in a single data center) or geo-redundant storage (GRS – LRS plus 3 asynchronous copies in the neighboring region), but you must configure the desired fault tolerance before installing Azure Backup Server. The second requirement will be possible after you have created and Azure backup vault; you will need the vault credentials. This file allows you to register your new Azure Backup Server with the backup vault. Download the Azure backup vault credentials (Image Credit: Aidan Finn) Once you have a backup vault and the associated backup credentials, you will have two of the requirements to install Azure Backup Server. Azure Backup Server System Requirements Microsoft lists the system requirements for Azure Backup Server on the download page. You can install Azure Backup Server on either a physical machine or a virtual machine that is running Windows Server. The supported versions of Windows Server are: Windows Server 2008 R2 SP1 Windows Server 2012 Windows Server 2012 R2 Note that Azure Backup Server allows you to configure bandwidth throttling... --- ### Microsoft Expands Windows Defender Advanced Threat Protection Preview - Published: 2016-05-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-windows-defender-advanced-threat-protection-preview/ - Categories: Windows 10 - Tags: News, Security, Windows 10 - Article Type: News Microsoft is expanding its newly announced Windows Defender Advanced Threat Protection preview program to include more companies, and you can sign up now to test it out. Back in March, Microsoft announced a new service called Windows Defender Advanced Threat Protection (ATP) as a new way to help protect your local network against intrusions. When the company announced the new service, it was in private preview, and today Microsoft is opening the door to new users who want to try out the service. The service, which helps customers detect, investigate, and respond to advanced and targeted attacks on their networks will be released later this year; Microsoft has not announced a general availability date. Additionally, they have not announced a price for the product, but we do know that it will be a subscription-based service. If you would like to try out the service, you do need to be accepted into the preview program. Registration is free, and you can sign up for the program through Microsoft's Windows Defender Advanced Threat Protection information page. Because the ATP service is built upon Windows 10, you need to be running the OS if you want to utilize the protection layer. Using a combination of cloud and local resources, ATP is able to identify threats that have been able to bypass other defenses and alert IT pros of the breach as well as providing possible solutions. With security breaches being reported frequently and the damage done by the exposure of sensitive data to a company’s reputation being significant, Microsoft is hoping that its new service will become as common-place as the network firewall. --- ### The Essential Ingredient to Managing Domain Consolidation Projects with a Remote Workforce - Published: 2016-05-16 - Modified: 2024-12-03 - URL: https://petri.com/essential-ingredient-managing-domain-consolidation-projects-remote-workforce/ - Categories: Active Directory (AD) - Tags: sponsored - Article Type: Opinion There has always been a challenge to effectively manage domain consolidation efforts within the enterprise. Throughout the years, the way that we could choose to tackle remote machines has evolved, but the net result is that remote machines still pose a unique challenge and threat for domain consolidation projects. Sponsored IT content provided by Binary Tree There has always been a challenge to effectively manage domain consolidation efforts within the enterprise. A large pain point that has persisted even down to this day is obtaining the ability to re-permission domain joined devices that are remote to the corporate network. Throughout the years, the way that we could choose to tackle remote machines has evolved -- mostly in a positive manner. The net result though is that remote machines still pose a unique challenge and threat for domain consolidation projects. What is the Actual Problem? How times change. Just 10-15 years ago, the thought of dealing with a large number of remote workstations that would exist solely outside the corporate network was not something most IT departments had to deal with. For those machines that would stray from the comforts of the corporate office, a secure VPN connection was provided. These VPN connections typically would integrate with the logon screen and allow the user to initiate a secure connection to the corporate office before fully logging into the machine as shown in Figure 1. Figure 1 The method to allow remote machines to access the corporate network through a thick VPN client worked quite well for a number of years. While the ability to configure the registry within modern operating systems still exists allowing for a connection to take place during the logon process -- another issue has been introduced. A paradigm shift occurred... --- ### For Microsoft, Its Achilles' Heel Is Excel - Published: 2016-05-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-achilles-heel-excel/ - Categories: Microsoft 365 - Tags: Excel, Office 365, Productivity - Article Type: Opinion Microsoft's productivity future is based heavily on the fact that corporations are addicted to Excel, and there is not a compelling alternative. Microsoft finds itself in an interesting world these days; a decade or two ago, nobody could touch them and their growth was unstoppable. From owning the browser market to killing off productivity-based competitors, the future was uncertain for any product that wasn't owned by Microsoft. Fast forward to 2016 and the once hallmark brand, while still a household name and will not be going away anytime soon, finds itself in a new arena. Windows, which was once a primary driver of revenue for Microsoft, was given away free to hundreds of millions of users with Windows 10, and the company’s web browser is no longer the most widely used product anymore. But none of that matters in the grand scheme of how Microsoft’s reinventing itself as a productivity-focused organization with apps, services, and even SharePoint on every platform.  What really matters to the company is its Office suite, more specifically Excel. Microsoft Office, while it is available for other platforms like OS X, is best used on Windows; the company also provides free mobile apps, and you can also use online versions of the applications, too. But, if all you need is a word processor, a slide deck tool or an email application, there are free alternatives from Google and many others that adequately fills the productivity void, allowing you to bypass paying for Office. What has yet to appear is a viable replacement to Excel. The spreadsheet application from Microsoft is the most widely used tool in finance and accounting; many small... --- ### A Quick Tip for Copying a Site in SharePoint Online > In this Ask the Admin, Russell Smith shows us how to copy an existing site in SharePoint Online. - Published: 2016-05-13 - Modified: 2024-09-04 - URL: https://petri.com/quick-tip-copying-site-sharepoint-online/ - Categories: SharePoint - Tags: Office, Office 365, SharePoint - Article Type: How To In this Ask the Admin, Russell Smith shows us how to copy an existing site in SharePoint Online. In today’s Ask the Admin, I’ll show you how to copy a SharePoint Online site. Configuring and customizing sites in SharePoint Online can be a time-consuming business, and when you need to create a new site, rather than starting from scratch, it might be easier to copy an existing one. While there is no ''copy' feature, it is possible to create templates based on existing sites to create a new site using a custom template. Sites in SharePoint Online (Image Credit: Russell Smith) Before we get started, it's important to understand the difference between sites and site collections. When you access the Sites app in Office 365, you are accessing a top-level site collection, which contains unique site columns, security groups, administration settings, site templates, and more. Office 365 supports multiple site collections in some Office 365 business plans. Each site collection contains one or more sites, sometimes referred to as subsites. But unless you have specific needs, most of the time you'll be creating new sites and not site collections. Understanding the difference between sites and site collections is important because it's not possible to create a template from a site collection. To copy a site collection, you need to perform a backup and restore operation. But sites are easy to copy using templates. At least it's easy to do once you learn how to do this, because the process isn't as intuitive as it should be. Create a custom template in SharePoint Let's... --- ### Publishing Azure RemoteApp Programs to Selected Users - Published: 2016-05-13 - Modified: 2024-11-19 - URL: https://petri.com/publishing-azure-remoteapp-programs-selected-users/ - Categories: Microsoft Azure - Tags: Applications, Azure, Azure RemoteApp, RDS, Remote Desktop Services, RemoteApp - Article Type: How To Learn how to use a heavily requested preview feature that will allow administrators to publish apps in an Azure RemoteApp collection to selected users. In this how-to article, I'll show you how to publish Azure RemoteApp programs to specific users, along with steps on filtering their view and access to software, reducing the number of required app collections, and limiting your licensing obligations. Note that at the time of writing this article, this is a preview feature that you will need to request access to before proceeding. Previous Microsoft RemoteApp Limitations When Microsoft launched RemoteApp into general availability, it was a basic service that lacked much of the features we take for granted with on-premises Remote Desktop Services or similar server-based computing solutions. But thanks to RemoteApp being a cloud service and Microsoft's sprint development practices, RemoteApp improves on a monthly basis, and customers are seeing rapid improvement in Azure's managed RDS farm service. There were a few limitations in RemoteApp that dogged some customers, such as re-introducing old problems that many had thought were gone with parachute pants into distant memory. The first of these issues was that when you create a RemoteApp collection, you had to grant a user all or nothing access to the applications within that collection. Let's say that I was installing Office 365 Pro Plus and Project in my collection. All of my users might have licensing for Office 365, but only a subset would be licensed for Project -- but in this case, I would have had to license the software to all those users that can access and use the software. Applications published in the... --- ### Paul Thurrott's Short Takes: May 13 - Published: 2016-05-13 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-13/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because the PC market is shrinking and I feel fine, this edition of Short Takes focuses on Google's fear of Microsoft smart phones, Windows 10 Mobile is always behind, Microsoft expanding its Ireland-based datacenters, Facebook is accused of liberal bias, and Apple has invested $1 billion in a Chinese Uber competitor. Because the PC market is shrinking and I feel fine, this edition of Short Takes focuses on Google's fear of Microsoft smart phones, Windows 10 Mobile is always behind, Microsoft expanding its Ireland-based datacenters, Facebook is accused of liberal bias, and Apple has invested $1 billion in a Chinese Uber competitor. Google was afraid that Microsoft would dominate the smart phone market A report in Quartz notes that Android co-founder Rich Miner, now a general partner at Google Ventures, wrote an internal email describing the need for an open-source mobile operating system in 2008. The reason? They had to stave off the Microsoft threat. Yes, really. "If an open platform is not introduced in the next few years then Microsoft will own the programmable handset platform," he wrote. "Palm is dying, RIM is a one-trick pony, and while Symbian is growing market share it’s becoming a Nokia only solution. " That sounds laughable given what's happened since. But this highlights the Google "running scared" mantra that keeps that firm moving quickly. And it's something that perhaps Microsoft could emulate. "It's time for Microsoft to close its fake Apple stores" Put another way, it's time for Apple to make its cold, clinical stores warmer and more inviting. You know, like Microsoft stores. Windows 10 Mobile will support fingerprint scanners this summer So that sounds positive, right? But this is the type of thing that actually highlights the problem with Windows phones: Apple and Android phones have had fingerprint scanners... --- ### New Features in Windows Server 2016 Technical Preview 5 - Published: 2016-05-12 - Modified: 2024-09-04 - URL: https://petri.com/new-features-windows-server-2016-technical-preview-5/ - Categories: Windows Server 2016 - Article Type: News Almost as if it didn't even happen, Windows Server 2016 Technical Preview 5 slipped out the door on April 27th. Russell Smith gives us an overview of what's new in this release. In today's Ask the Admin, I'll provide a quick rundown of the new and improved features in the latest preview of Windows Server. Almost as if it didn't happen, Microsoft quietly released Windows Server 2016 Technical Preview 5 on April 28th. Aidan Finn has already provided an overview of the many new features and improvements in Hyper-V, but if you want to know about the best of the rest, keep on reading. Containers It's hard not to have noticed the impact Docker has had over the past couple of years, so Windows and Hyper-V Containers, along with Docker support, are some of Windows Server 2016's most anticipated new features. This preview brings with it performance improvements, simplified network management, and support for Windows Containers on Windows 10. Nano Server Nano Server is now easier to deploy with an updated PowerShell module, and there's better separation between the host device and guest VM. The Recovery Console has also been updated, including the ability to repair Windows Remote Management (WinRM). Remote Desktop Services There's also good news for Remote Desktop Services, which now includes support for using an Azure SQL Database for RD Connection Brokers when high availability is required. Active Directory Certificate Services Key attestation allows users to cryptographically prove that the key in a certificate request to a certificate authority (CA) is protected by a Trusted Platform Module (TPM) that the CA trusts. Windows Server 2016 TP5 supports Smart Card Key Storage Provider (KSP) for key... --- ### Moving and Deleting Active Directory OUs with PowerShell > PowerShell expert Jeff Hicks wraps up his lesson on managing Active Directory OUs with PowerShell by showing you how to move and delete them. - Published: 2016-05-12 - Modified: 2024-09-04 - URL: https://petri.com/moving-and-deleting-active-directory-ous-with-powershell/ - Categories: Active Directory (AD) - Tags: Intermediate, PowerShell - Article Type: How To PowerShell expert Jeff Hicks wraps up his lesson on managing Active Directory OUs with PowerShell by showing you how to move and delete them. In the last few articles I've been showing you how to use the Active Directory PowerShell module to create and manage Active Directory organizational units. To wrap this up, let's look at moving and deleting OUs. Again, this isn't something that I think you necessarily need to automate because you probably don't do these tasks that often and Active Directory Users and Computers are fine for these tasks. But you may want a documentation trail or have other reasons for creating a script, so let's see what you need to do. Read: Creating Active Directory OUs with PowerShell Read: Managing Active Directory OUs with PowerShell Moving an OU To move an OU, I'm assuming that if you are using Group Policy, then you understand the implications in your domain. Moving an OU will naturally move everything within it, including other OUs. But let's assume you have analyzed the consequences and are ready to proceed. We'll use some of the OUs I created in earlier articles for the demonstration. If you recall, I created a number of OUs based on office location. During a recent reorganization, the Columbus branch office will now fall under the Chicago office. Currently, the Columbus organizational unit is a separate unit. Getting the Columbus OU (Image Credit: Jeff Hicks) I want to move this under ChicagoHQ. Getting the Chicago OU (Image Credit: Jeff Hicks) So I check the Active Directory module to see if there's a command I... --- ### Identify Malicious Phishing Attacks with Outlook Conditional Formatting - Published: 2016-05-11 - Modified: 2024-09-04 - URL: https://petri.com/identify-malicious-phishing-attacks-outlook-conditional-formatting/ - Categories: Security - Article Type: How To Learn this easy tip on how to help identify phishing attacks in your organization by implementing conditional formatting in Outlook. In recent years, more organizations and individuals are being constantly bombarded by attacks made by cyber-criminals that use social engineering techniques to convince the recipients to do something that will cause damage to the recipient. This can be in form of financial transactions either directly from the attacked person to the criminal, such as a money order or bank withdraw. One of the delivery methods used by the criminals is email, mostly because of the ease of use and availability to both the attacker and victims alike. Email is used to send legitimate-looking messages to non-suspecting recipients, which are designed to entice the user to open a file that contains a malware infection, click on a link that will drive the user to a website that's infected with malware, will ask the user to login using their credentials, or hand over your personal information under false pretenses. There are several different degrees of phishing, and while regular attacks are not overly sophisticated, there's a more advanced attack called spear phishing, in which the attacker uses cleverly crafted and targeted emails designed to trick the victim into performing an action, such as clicking on a link or opening a file. On top of that, there are also business email compromise (BEC) attacks, which are an even more focused type of attack, where the attacker performs extensive reconnaissance about personnel within an organization and personally targets specific individuals in the organization to provide accurate information in the email message, which increases the likelihood of the victim to bite the bait... . --- ### PowerShell Problem Solver: Active Directory Group Members > PowerShell Problem Solver Jeff Hicks demonstrates better techniques for get user account details from members of an Active Directory group. - Published: 2016-05-11 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-active-directory-group-members/ - Categories: PowerShell - Tags: Active Directory, Intermediate, PowerShell - Article Type: How To PowerShell Problem Solver Jeff Hicks demonstrates better techniques for get user account details from members of an Active Directory group. Today's PowerShell problem focuses on a very common IT task, which is grabbing members of an Active Directory group. Now, I'm already going to assume that you have the latest version of Remote Server Administration Tools (RSAT) installed and configured to use the Active Directory PowerShell module. Today's problem is one I came across recently, where the goal of the task was to list members of an Active Directory group and show a few select user properties. When you run Get-ADGroupMember, it looks like you get some user objects. Listing AD Group Members with PowerShell (Image Credit: Jeff HIcks) The original solution to get user details looks something like this: Get-ADGroupMember -Identity "Chicago IT" | Select samAccountName,Name, @{Name="DisplayName";Expression={(Get-ADUser $_. distinguishedName -Properties Displayname). Displayname}}, @{Name="Title";Expression={(Get-ADUser $_. distinguishedName -Properties Title). title}} On one hand I actually applaud this effort because it demonstrates using Select-Object to define properties from a completely separate source. And it works. A complicate Select-Object solution (Image Credit: Jeff HIcks) But it is probably not the best solution. Let's take a step back. The first thing I would do in this situation is to see what type of object is coming from the Get-ADGroupMember cmdlet by piping the command to Get-Member. Using Get-Member (Image Credit: Jeff Hicks) One thing I might look for would be a property or method that I could use to get the information I'm after. In this particular case the ADPrincipal class appears to be a subset of the user object... . --- ### Microsoft Enhances Azure SaaS Platform with SQL Elastic Pools and CDN Options - Published: 2016-05-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-enhances-azure-saas-platform-sql-elastic-pools-cdn-options/ - Categories: Microsoft Azure - Tags: Azure, News - Article Type: News Microsoft has announced the general availability of two new featurs for Azure: SQL database elastic pools and a partnership with Akamai for Azure CDN. Microsoft is investing heavily in its Azure service with the announcement yesterday of the availability of two new regions in Canada and one coming soon to Seoul, South Korea. Today, the company is announcing two services that are moving into general availability: SQL database elastic pools and a partnership with Akamai for Azure CDN. If you are using SQL databases with Azure, the general availability of elastic pools will make your life a lot easier. This feature allows developers to manage a few or up to thousands of databases as one data pool while maintaining data isolation. While this feature entered preview last year, the company now feels that it is ready for production environments, and it is already being used by several of its customers in live environments. Also being announced today is the general availability of Azure CDN from Akamai. This means that Azure CDN now offers multiple solutions (Akamai and Verizon) to customers and allows them to pick the best solution for delivering their content. Both of these services add additional value to Azure, which will help the company compete against the likes of Amazon and Google. With Google ramping up its service offering in the cloud space and Amazon frequently announcing new products for its AWS portfolio, every company involved in the cloud space is eagerly fighting for a larger slice of this growing billion-dollar industry segment. --- ### U.S Regulators are Looking at Mobile Device Security - Published: 2016-05-11 - Modified: 2024-09-04 - URL: https://petri.com/u-s-regulators-looking-mobile-device-security/ - Categories: Mobile - Tags: News - Article Type: News Regulators from the U.S. Federal Trade Commission (FTC) and Federal Communications Commission (FCC) are working jointly to discover more about how mobile device makers are patching security vulnerabilities. And they've reached out to device makers big and small to find out more. Regulators from the U. S. Federal Trade Commission (FTC) and Federal Communications Commission (FCC) are working jointly to discover more about how mobile device makers are patching security vulnerabilities. And they've reached out to device makers big and small to find out more. "As consumers and businesses turn to mobile broadband to conduct ever more of their daily activities, the safety of their communications and other personal information is directly related to the security of the devices they use," an FCC announcement notes. "There have recently been a growing number of vulnerabilities associated with mobile operating systems that threaten the security and integrity of a user’s device, including 'Stagefright' in the Android operating system, which may affect almost 1 billion Android devices globally. " The agencies have reached out to major players like Apple, Google, and Samsung as well as a host of other mobile device hardware makers such as Blackberry, HTC, LG Electronics. Microsoft, and Motorola Mobility. And they have asked for information about how the firms issue security updates to address vulnerabilities in smartphones, tablets, and other mobile devices. More specifically, the FCC and FTC have asked: The factors that hardware makers consider in deciding whether to patch a vulnerability on a particular mobile device Detailed data on the specific mobile devices they have offered for sale to consumers since August 2013 The vulnerabilities that have affected those devices Whether and when the company patched such vulnerabilities. Obviously, Android is the biggest issue here, as Apple... --- ### Designing a DMZ for Azure Virtual Machines > This article will show you three designs, each building on the other, for a demilitarized zone (DMZ) or perimeter network for Internet facing n-tier applications based on Azure virtual machines and networking. - Published: 2016-05-10 - Modified: 2024-09-04 - URL: https://petri.com/designing-a-dmz-for-azure-virtual-machines/ - Categories: Cloud Computing - Article Type: Overview This article will show you three designs, each building on the other, for a demilitarized zone (DMZ) or perimeter network for Internet facing n-tier applications based on Azure virtual machines and networking. This article will show you three designs, each building on the other, for a demilitarized zone (DMZ) or perimeter network for Internet facing n-tier applications based on Azure virtual machines and networking. The DMZ The concept of a DMZ or perimeter network is not new; it's a classic design that uses a layered network security approach to minimize the attack footprint of an application. In a simple design: Web servers are placed in one VLAN, with just TCP 80 and TCP 443 accessible from the Internet. Application servers are in another VLAN. Web servers can communicate with the application servers using just the application protocol. The Internet has no access to this VLAN. Database servers are in a third VLAN. Application servers can communicate with the database servers using only the database communications protocol. Web servers and the Internet have no access to this VLAN. You can modify this design in many ways, including: Adding additional application layer security. Including reverse proxies. Using logical implementations of multiple VLANs by using other methods of network isolation, such as network security groups (NSGs) in Azure. The concept of a DMZ with n-tier applications (Image Credit: Aidan Finn) So how do you recreate this concept in Azure for virtual machines? I'll present you with three designs from Microsoft, each of which builds on the concepts of the previous ones. Network Security Groups The first and simplest way to build a DMZ in Azure is to use network... --- ### Microsoft Opens Two Data Centers in Canada, Expanding Operations In Korea - Published: 2016-05-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-opens-two-data-centers-canada-expanding-operations-korea/ - Categories: Microsoft Azure - Article Type: News Microsoft has announced the availability of two new data center regions in Canada as well as a new region in South Korea will be coming online soon. Microsoft has announced today that two new data centers have been opened in Canada and that they will be expanding operations in Korea with a new region based in Seoul. Microsoft's expansion of its data center comes as Google is kicking into high gear with its expansion of regions for its cloud platform and as Amazon continues to build out its AWS service. The two new centers in Canada will offer data residency for Office 365 customers and allow for companies to keep all of their data, with backup-redundancy, inside of Canada. This means that any sensitive material can now be stored locally without a company or government client having to worry about its material being stored in a foreign country. With today's announcement, Microsoft has 24 regions around the globe available today and that number will grow to 32 once all of their planned regions come online. Microsoft is investing heavily in the cloud space as it works to position itself as a leader in the industry. Amazon and its AWS offering is currently the largest cloud provider, and Google is a distant third; there are countless others who are competing as well and a few who have already fallen, such as Helion. With cloud-based services growing quickly, this is an expanding avenue for revenue for Microsoft, Amazon and Google. With growth in this segment not expected to slow anytime soon, expect to see these three companies compete fiercely for new business. --- ### Open365 Beta: A New Productivity Tool > A new productivity competitor in the same market where Microsoft and Google are fighting for dominance. What is it, and is it ready for primetime? - Published: 2016-05-10 - Modified: 2024-09-04 - URL: https://petri.com/open365-beta-a-new-productivity-tool/ - Categories: Office - Tags: Google Docs, Open365 - Article Type: Overview A new productivity competitor in the same market where Microsoft and Google are fighting for dominance. What is it, and is it ready for primetime? Open365. Image Credit: eyeOS I recently came across a new player in the Office productivity arena. After some research, I found that this solution is the product of several collaborations. It mixes and matches several open source products into a single solution. While it is free of charge in its current beta form, it is not clear whether it will become a paid service. Regardless of pricing, it does offer several very interesting features not offered by its main competitors Office 365 and Google Docs. Please be aware that while Open365 is a working solution, it seems to be a very early beta version of the product. Its components seem to work, but there are some rough edges around the solution and would have to be completed before I can truly recommend anyone to use it. In this article, I will not get into much detail, but I will post a follow up after I use the product enough to form a detailed opinion, especially when comparing it to Office 365 and Google Docs. Who Makes Open365? While the website seems well presented, there seems to be only one mention of the copyright holder in the footer of the webpage. The copyright holder is eyeOS; a company originally from Spain, located in Barcelona and recently purchased by Telefonica, a telecommunications conglomerate also originally from Spain. EyeOS is a maker of several virtualization solutions for the education and business markets, including a desktop and application... --- ### Microsoft Is Adding New Features To UWP Apps - Published: 2016-05-10 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-adding-new-features-uwp-apps/ - Categories: Windows 10 - Tags: News, UWP, Windows 10 - Article Type: News Microsoft is adding new features to its UWP app platform that will provide better performance and higher framerates that the company hopes will entice more developers to build apps for its store. Microsoft has announced that they will be enabling new features for UWP apps through an update for Windows 10. The download, which will go live later today, will allow developers to build higher quality apps and use features built by AMD and NVIDIA to provide a smoother user experience. The update will remove the artificially limited frame rate for UWP apps and games and the company will also be enabling support for AMD’s Freesync and NVIDIA’s G-SYNC in Universal Windows Platform games and apps. This update, which the company has been promising for a couple of months, will be a large boost for visual-performance of apps and games that utilize the UWP framework from the Windows Store. Microsoft is putting a considerable amount of time and money behind its UWP platform as the company wants developers to use this new model for building applications for Windows. While UWP will allow you to sell apps through the Windows store and does provide a safer experience for the end-user, UWP framework is limited when compared to traditional Win32 apps. But, with each iterative update, Microsoft is making the UWP framework more appealing for developers and with today’s announcement, the restrictions UWP faced are becoming smaller. Even with today’s announcement, the company is still working to get more developers to ditch their Win32 apps in favor of UWP and while the effort is still underway and they have an uphill road ahead of them, they are making significant progress with this monumental task. You... --- ### Microsoft to Shut Down MSN China - Published: 2016-05-10 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-shut-msn-china/ - Categories: Cloud Computing - Tags: MSN, News - Article Type: News Microsoft announced today that it will shut down its MSN web portal in China, ceding the market to Baidu.com. Not coincidentally, Microsoft is partnering with Baidu on other initiatives, including Windows 10 and Microsoft Edge, in China. Image credit: Associated Press Microsoft announced today that it will shut down its MSN web portal in China, ceding the market to Baidu. com. Not coincidentally, Microsoft is partnering with Baidu on other initiatives, including Windows 10 and Microsoft Edge, in China. "Microsoft will be shutting down the MSN portal in China on June 7," a statement from the software giant notes. "Microsoft is deeply committed to China, offering a range of products including Windows 10, cloud services to customers, and hosting the largest research and development center outside of the U. S. " Microsoft opened MSN China as a joint venture with Shanghai Alliance Investment in 2005. At the time, it was seen as a way for the firm to get its fledgling Internet services---including various Windows Live services like Hotmail---into a quickly-growing economy. MSN China. MSN and other web portals have since fallen by the wayside in developed countries, but they remain popular in emerging and new economies like China. The last time I spoke with Microsoft about MSN---in late 2014, when the software giant was prepping a refresh of the web portal---I was told that the service still had 430 million active users, most of them outside of the United States. Since then, it's not clear how or if worldwide usage has changed. Regardless, China represents a unique problem for Microsoft. On the one hand, China has been the number one source of pirated versions of Windows and... --- ### What's New in Windows Server 2016 Technical Preview 5: Hyper-V Features - Published: 2016-05-09 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-windows-server-2016-technical-preview-5-hyper-features/ - Categories: Hyper-V - Tags: Hyper-V, Technical Preview, Technical Preview 5, TP5, Windows Server 2016, WS2016 - Article Type: News Learn all about the new improvements to Hyper-V in the Windows Server 2016 Technical Preview 5. This article will discuss new Hyper-V features and their impact in the Windows Server 2016 (WS2016) Technical Preview 5 (TP5), which is available to download now. Windows Server 2016 Technical Preview 5 New Features Microsoft recently released the latest public preview of Windows Server 2016 and Hyper-V Server 2016 (the free version). There are lots of new Hyper-V features to evaluate, learn, and use. If I had to give you a theme to this release, it would be cloud. Much of what is in the 2016 release is geared toward building private, hosted, or public cloud, with a lot of the management being offered either by Azure or Microsoft Azure Stack. When evaluating WS2016, you'll need to consider: Nano Server, with administration via Remote Server Management Tools Hyper-V Failover Clustering Storage Networking, particularly the Network Controller Microsoft Azure Stack Containers In this post, I'm going to focus on the improvements to Hyper-V. Connected Standby This is a feature for Windows 10 users and the few presenters that run Windows Server Hyper-V on their laptop or hybrid device. You might even say that this new feature was dedicated to Paul Thurrott when the feature was announced at TechEd Europe 2014, mainly because Paul was one of the more vocal sufferers of the lack of compatibility between Hyper-V and the heralded Windows 8/hardware feature. Hyper-V had issues with Connected Standby, and these issues have been solved in Windows 10 and Windows Server 2016. Discrete Device Assignment (DDA) Discrete Device Assignment is a relatively... --- ### Will Microsoft Really End the Windows 10 Upgrade Offer? - Published: 2016-05-09 - Modified: 2024-09-04 - URL: https://petri.com/will-microsoft-really-end-windows-10-upgrade-offer/ - Categories: Windows 10 - Tags: News - Article Type: Opinion The Windows 10 Upgrade Offer is hard to categorize in the scope of Microsoft disasters. But despite its very explicit stated intention to end the free Windows 10 upgrade this summer and the annoying upgrade advertisements along with it, I'm wondering whether Microsoft will really end the offer. The Windows 10 Upgrade Offer is hard to categorize in the scope of Microsoft disasters. But despite its very explicit stated intention to end the free Windows 10 upgrade this summer and the annoying upgrade advertisements along with it, I'm wondering whether Microsoft will really end the offer. When Microsoft announced that Windows 10 would be a free upgrade for users of Windows 7 and 8. 1 back in January 2015, the news was generally well received. But there were a few caveats that triggered a still-lingering belief that "free" wasn't really "free. " (This was always incorrect. ) First, Microsoft had begun talking up the notion of "Windows as a service," where the software giant pledged to "continue to keep up-to-date for the supported lifetime of the device, at no additional charge. " On that cold day in January, we believed that this condition would apply only to the free upgrades, but in fact all Windows 10 users (save those in controlled enterprise environments) are at Microsoft's whim when it comes to keeping the software updated. This is semi-controversial in its own right, of course, though I believe it to be the right approach overall. Second, the free upgrade offer was promotional and was set to last for one year only, during the first year of Windows 10’s life cycle. So when Windows 10 was launched on July 29, 2015, the clock was set, and the free upgrade is now set to expire this July 29. But the promotional nature... --- ### WHEA Errors on Hyper-V Hosts - Published: 2016-05-06 - Modified: 2024-09-04 - URL: https://petri.com/whea-errors-on-hyper-v-hosts/ - Categories: Hyper-V - Tags: Hardware, Hyper-V, WHEA, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: Overview Aidan Finn describes a common WHEA error that can be found in Hyper-V and provides a workaround. Hyper-V is a very resilient hypervisor, designed to protect your workloads from corruption. Corruption can come in many forms. Maybe Hyper-V pauses your virtual machines because a Cluster Shared Volume is full and it's protecting your business or customer from dynamic virtual hard disks trying to consume space that is no longer there. Or maybe your host has failing memory DIMMS and Hyper-V is aware of this and is ensuring that your virtual machines will not consume that RAM. The latter is where Hyper-V is using hardware error detection to protect you from your hardware. I recently encountered the latter in person, and here's what I found. What is WHEA? WHEA stands for Windows Hardware Error Architecture. MSDN describes WHEA as a mechanism where Windows and the firmware of the underlying hardware work together to detect hardware issues and deal with them. The architecture of WHEA (Image Credit: Microsoft) Since Windows Vista, Windows maintains a list of discoverable hardware error sources. For each source that is discovered on a physical machine, Windows maintains a low-level hardware error handler (LLHEH). When a hardware error is reported to Windows, the LLHEH is the first piece of code to run in response. Microsoft places each LLHEH in the appropriate part of the operating system to deal with the issues of the related error source. When an LLHEH runs, it will: Acknowledge the error Capture information related to the error Report the error condition to the operating system... --- ### Office 365: Adding Content Controls to Word Documents > Learn how to add fillable text boxes, drop-down menus and other form elements to Word 2016 documents. - Published: 2016-05-06 - Modified: 2024-09-04 - URL: https://petri.com/office-365-adding-content-controls-to-word-documents/ - Categories: Office - Tags: Office 365, Word - Article Type: How To Learn how to add fillable text boxes, drop-down menus and other form elements to Word 2016 documents. In today's Ask the Admin, I'll show you how to add content controls to your documents in Word 2016. Date Picker Content Control in Word 2016 (Image Credit: Russell Smith) Using a form in a Word document may seem like a feature that's only useful for creating questionnaires, but content controls such as text fields, checkboxes and drop-down menus can also be used in collaboration scenarios where you want to share a document but guide colleagues on where they should provide input. When used alongside the ability to restrict editing in a document, as I demonstrated a couple of weeks ago on Petri in An Office 365 Tip on Restricting Editing in Word 2016, content controls are especially useful in ensuring that only specific parts of a document can be modified. Before you can add content controls to a document, you need to enable the Developer tab in the ribbon. Open Word 2016. Switch to the File tab on the ribbon and click Options on the left. In the Options dialog box, click Customize Ribbon on the left. Make sure that Main Tabs is selected in the menu on the right below Customize the Ribbon. Check Developer in the last of tabs and then click OK. You should now see the Developer tab on the ribbon, and now you're ready to add form controls to Word documents. Content controls Unlike the old Active X controls used with VBA, content controls in newer versions of Word aren't... --- ### The Sams Report EP 38: Redstone 3 and 300 - Published: 2016-05-06 - Modified: 2024-09-24 - URL: https://petri.com/72688-2/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including a little bit about Redstone 3, 300 million Windows Installs, the end of the offer and so much more in the world of Microsoft. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including a little bit about Redstone 3, 300 million Windows Installs, the end of the offer and so much more in the world of Microsoft. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=7tSKnVTovKE RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: May 6 - Published: 2016-05-06 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-may-6/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because life is too short for crapware, this edition of Short Takes focuses on Microsoft's decision to end the free Windows 10 upgrade and kill the upgrade nagware, Microsoft won't fix Windows 7 bug, admins can no longer block Store on Windows 10 Pro, and much, much more. Petri off-site meeting. Brad is on the far right. Because life is too short for crapware, this edition of Short Takes focuses on Microsoft's decision to end the free Windows 10 upgrade and kill the upgrade nagware, Microsoft won't fix Windows 7 bug, admins can no longer block Store on Windows 10 Pro, and much, much more. Microsoft to end Windows 10 nagware after July 29 Our national nightmare is over. In a statement, Microsoft said this week that it would end the "Get Windows 10" advertising when the free Windows 10 upgrade offer ends July 29. "Details are still being finalized, but on July 29th the Get Windows 10 app that facilitates the easy upgrade to Windows 10 will be disabled and eventually removed from PCs worldwide," Microsoft says. "Just as it took time to ramp up and roll out the Get Windows 10 app, it will take time to ramp it down. " "Microsoft Facing “Potential EXTINCTION Moment” — Paul Thurrott" I just enjoy seeing my name in a headline. Plus, the added all-caps is funny and unnecessary. Microsoft won't fix Windows 7 bug, recommends Windows 10 upgrade Well, Microsoft giveth ... and Microsoft taketh. This one is a bit complex---the Inquirer has an overly satirical but accurate telling---but it goes something like this: Microsoft knows that a software patch it just changed from "optional" to "recommended" will cause certain ASUS PCs running Windows 7 to stop working, but it will not fix... --- ### Microsoft Now Allows Businesses To Buy (and Sell) Apps in Bulk - Published: 2016-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-now-allows-businesses-buy-sell-apps-bulk/ - Categories: Windows 10 - Tags: News, Windows 10, Windows Store - Article Type: News To make the app buying process easier, Microsoft has enabled the ability to bulk purchase apps through the Windows Store for Business. With the release of Windows 10, Microsoft built in several features targeted directly at its enterprise users. Under the umbrella of Windows Update for Business, this suite of services allows you to have greater control of your environment with granular features like the ability to designate when a specific machine will receive updates. To make the app buying process easier, Microsoft has enabled the ability to bulk purchase apps through the Windows Store for Business which will make it significantly easier to deploy store-based apps to your users. At this time, you can only use a credit card to buy the apps but Microsoft will be introducing additional payment methods in the near future. Apps acquired via the Windows Store for Business will show in your Dev Center reports as volume acquisitions by organizations. This update is one more way that Microsoft is trying to make its store a desirable place for developers to offer their applications. Because bulk purchasing is essential to enterprise style software, this feature will now let any type of developer easily sell, at volume, apps to corporate clients. This feature is now available and you can learn more here. --- ### Learning from Experience: Insights from the Front Lines of IT Transformation - Published: 2016-05-05 - Modified: 2024-11-19 - URL: https://petri.com/learning-experience-insights-front-lines-transformation/ - Categories: Cloud Computing - Tags: sponsored - Article Type: Opinion What can an established company do to compete with revolutionary companies, or to compete more effectively with existing, yet more agile, competitors? Jeff James gives his take in his latest article for Hewlett Packard Enterprise. Sponsored IT content provided by Hewlett Packard Enterprise Every few years, a new company enters an established market that not only succeeds, but redefines the rules of how that market operates. For example, Uber and Lyft have revolutionized the pay-for-use transportation industry by giving consumers more power and flexibility to book transportation, and have forced existing taxi and other transportation firms to adapt. Other disruptive newcomer examples include Tesla and electric cars, Airbnb in rental housing, and Slack for inter-office communication. So what can an established company do to compete with such revolutionary companies, or to compete more effectively with existing (yet more agile) competitors? While competing with the likes of Uber and Facebook on their own terms is daunting, there are thousands of companies that are competing to become faster, agile, and more competitive than their peers. One of the best ways for a company to become more competitive is to embrace disruptive change and move internal IT operations from a traditional, exclusively on premise model to a hybrid approach that simultaneously embraces existing IT investments while pursuing new developments in cloud, mobile, and DevOps that increase business agility and streamline operations. A number of challenges and obstacles can await a company trying to move to a more flexible hybrid IT infrastructure. Existing on premise resources can be old, antiquated, and brittle, and may require special approaches that keep the engine of the business running while the underlying infrastructure is modernized. While cloud resources can bring agility and... --- ### Microsoft Will End Free Upgrade Offer For Windows 10 In July - Published: 2016-05-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-end-free-upgrade-offer-windows-10-july/ - Categories: Windows 10 - Tags: News, Windows 10 - Article Type: News Microsoft has announced that the free upgrade Windows 10 offer will be discontinued later this year when the Anniversary update is released. When Microsoft announced Windows 10 last year, they made the OS a free to upgrade from Windows 7 or 8 but as we approach the first anniversary of its release, the free upgrade offer will be going away. This is an interesting move by Microsoft as they have been aggressively trying to upgrade as many users as possible so that they could meet their 1 billion device goal within three years after release. By removing the free upgrade options, the new price for the OS will be $119, which will create a large barrier for new users looking to move to the OS. As a result, this change should slow down the adoption rate of the platform. Windows 10 has been well received by the majority of its user-base and considering the company will soon start charging for the bits that you can now get for free today, it’s worth upgrading your machine to avoid this fee. Many assumed, myself included, that Microsoft would permanently keep the free upgrade offer for the OS and only charge OEMs and those who did not have a valid Windows 7 or 8 key. But, here we are, Microsoft is going to put up a paywall for the OS starting later this year, which means you need to move quickly if you want to take advantage of this offer. Now, this could be a clever tactic to get users to upgrade with the threat that the free option is going away, as Microsoft is saying after July 29th... --- ### Windows 10 Tip: Show or Hide the Recycle Bin - Published: 2016-05-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-show-hide-recycle-bin/ - Categories: Windows 10 - Tags: customize, Windows 10, Windows Server - Article Type: How To In this Ask the Admin, learn how to hide the Recycle Bin for users accessing Windows Server via Remote Desktop. In today's Ask the Admin, I'll show you a simple tweak that allows you to show or hide system icons on the desktop, including the Recycle Bin. Using the Control Panel Customizing your desktop, how it feels and looks, not only can help you to work more efficiently, but also provides a more personal experience. If you're a system administrator, the following tip can also be used to standardize a Windows 10 desktop image, or Windows Server RDS or VDI desktops. Log in to Windows 10. Right click the Start button and select Control Panel from the menu. In the Control Panel window, type desktop common into the search box in the top right corner. Show or hide system icons using the Control Panel (Image Credit: Russell Smith) Click Show or hide common icons on the desktop under Personalization. In the Desktop Icon Settings dialog, uncheck Recycle Bin and click OK. You should now see that the Recycle Bin has disappeared from the desktop. Naturally, you can choose to show or hide the Computer, Network and other system icons in the Desktop Icon Settings dialog. Using Group Policy If you'd like to configure which system icons are shown, not just for the logged in user but for all users, there are three settings in Group Policy that in turn allow you to show or hide the Computer, Network, and Recycle Bin icons. For more information on working with Group Policy, see How... --- ### SQL Server Management Studio 2016: Subtle Changes Yield Big Wins - Published: 2016-05-04 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-2016-subtle-changes-provide-big-wins/ - Categories: SQL Server Michel K. Campbell discusses how one of the big changes with SQL Server 2016 is bringing a slew of new benefits to end users. A significant change to SQL Server 2016 is that SQL Server Management Studio 2016 becomes a stand-alone solution that's available by means of a simple downloadable installer. Not only does this mean that end users will no longer need to hunt down installation media for the SQL Server engine to install management tools, but this change also heralds substantial, long-term benefits as it means that SSMS will be uncoupled from the underlying database engine. Ideally, we should see more regular releases of improvements, enhancements, and bug fixes than what would otherwise be the case should SSMS continue to be released roughly every two years along with each successive new version of SQL Server itself. New Benefits Coming to SQL Server Management Studio 2016 As an example of how big this change will be, consider that one of the biggest advances for SSMS 2016 is that it's now based on Visual Studio 2015, unlike SSMS 2012 and SSMS 2014 that were based on Visual Studio 2010. Out of the gate, this change alone provides the following benefits: Removed Dependency on . NET Framework 3. 5. It might not sound like much, but . NET Framework 3. 5 was released near the end of 2007, making it over eight years old today. Consequently, although it might sound snobby to wish that installing an eight year-old dependency could be avoided when installing SSMS 2014, the reality is that Microsoft still provides . NET Framework 3. 5 as a download for non-Server editions of Windows. By providing 3. 5, Microsoft... --- ### Next Windows 10 Update Will Bring the End of Recognizing SHA-1 As Secure - Published: 2016-05-04 - Modified: 2024-11-19 - URL: https://petri.com/next-windows-10-update-will-bring-end-recognizing-sha-1-secure/ - Categories: Windows 10 - Tags: Anniversary Update, News, Windows 10 - Article Type: News Microsoft has announced that with the Anniversary update with Windows 10, the company will no longer recognize that SHA-1 is secure in Edge and Internet Explorer. Microsoft has announced that with the Anniversary update with Windows 10, the company will no longer recognize that SHA-1 is secure in Edge and Internet Explorer. In February of 2017, the company will also block SHA-1 signed TLS certificates in an effort to protect end users from websites that appear to be secure but can be easily compromised. SHA stands for Secure Hash Algorithm, and the hash function is no longer secure and can be easily cracked. Because Edge and IE still show these sites as secure, it can provide a false sense of security when browsing web pages using this type of algorithm to secure data, as it can be compromised for as little as $2. 10. After the Anniversary update is released, if you navigate to a page using SHA-1, you will still be able to browse the site, but the URL bar will not show the lock icon indicating that it is not secure. In addition to Windows 10, for Internet Explorer 11 on Windows 7 and 8. 1, these browsers will show the website as insecure as well. It is worth noting, for those using Internet Explorer 11, this will only impact certificates that chain to a CA in the Microsoft Trusted Root Certificate program. If you are an admin and your website is currently using SHA-1, it is important that you update your security certificates as soon as possible to make sure that your site is protected, so that it will not throw an insecure flag after... --- ### Microsoft Details SharePoint and OneDrive Roadmap: Apps, Intranet, and Access - Published: 2016-05-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-sharepoint-onedrive-roadmap-apps-intranet-access/ - Categories: SharePoint 2016 - Tags: News, SharePoint 2016 - Article Type: News Microsoft has announced several features coming to SharePoint and OneDrive for Business during the remainder of the year. This week, Microsoft hosted its 'Future of SharePoint' event in San Francisco, where the company made several announcements, including the general availability of SharePoint 2016 and also shined a light onto the upcoming features for SharePoint and OneDrive for Business. Before the end of the quarter, Microsoft has committed to bringing several new features to its platform that they believe will bolster their vision for unified access and intelligent discovery of all of your Office 365 files. The enhancements that will arrive before the end of June include: Access to SharePoint Online document libraries from the OneDrive mobile app Intelligent discovery in OneDrive of documents from both OneDrive and SharePoint Copy from OneDrive to SharePoint OneDrive Universal Windows Platform (UWP) application Microsoft is extending their road map to the remainder of the year, and they are promising that the following features will be available by the end of December: Document analytics surfaced in OneDrive to provide insight into document usage, reach, and impact Synchronization of SharePoint Online document libraries with the new OneDrive sync client Synchronization of shared folders with the new OneDrive sync client Mobile access to SharePoint document libraries in on-premises farms One of the goals from the SharePoint team during the past year is to make your intranet more accessible when out of the office and also more intelligent based on your activities and interactions with other employees. To help users access their intranet while out of the office, Microsoft is announcing a SharePoint mobile app that's designed for... --- ### SharePoint 2016 Is Now Generally Available - Published: 2016-05-03 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-2016-now-generally-available/ - Categories: SharePoint 2016 - Tags: News, SharePoint 2016 - Article Type: News Microsoft has announced today that SharePoint 2016 has reached general availability and is ready for production environments. After many months of developing, testing and then releasing public betas, Microsoft has announced today that SharePoint 2016 has reached general availability. The updated platform includes new hybrid capabilities to enable on-premises customers the ability leverage Office 365 to create a more-cohesive sharing platform. SharePoint, which is now over a decade old, has become a central tool that many organizations have deployed to assist with team collaboration. The company touts that SharePoint’s penetration into the business market is extensive with 200,000 organizations using the tool reaching more than 190 million users. In addition, there are 1 million developers along with 50,000 partners who have created a $10 billion solutions ecosystem. With Microsoft signaling that SharePoint is 2016 is ready for production deployments, it means that administrators should feel confident that the product is ready for your environment. With that being said, the product should still be thoroughly tested in your own development labs before broad deployment to make sure that your specific environment doesn’t have any undocumented issues. Microsoft has been heavily pushing Office 365 and seeing as SharePoint has a large user base, this release will help bring these two flagship products closer together and give users of both platform more and flexibility for collaboration and sharing content. At the Future Of SharePoint event in San Francisco, where Microsoft made this announcement, they also detailed where the platform is headed too. You can check out the roadmap of features coming to SharePoint as well as OneDrive for Business, here.   --- ### SharePoint Extensibility is Growing Up with the SharePoint Framework - Published: 2016-05-03 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-extensibility-growing-sharepoint-framework/ - Categories: SharePoint 2016 - Tags: News, SharePoint 2016 - Article Type: News Microsoft has announced a new extensibility framework for SharePoint that will make it easier for its customers to build out applications using new tools. SharePoint has a large user ecosystem that is supported by 200,000 organizations and also more than 1 million developers. To help these groups get the most out of the platform, Microsoft has announced the SharePoint Framework. This framework is an evolutionary step for extensibility for SharePoint, and it brings new client-side rendering by leveraging open source JavaScript technologies; developers can use JavaScript and web templating frameworks across cloud and on-premises SharePoint.  Because the framework utilizes the tools and open source initiatives that developers rely on to build their applications, this naturally extends the scope of solutions that will be built for cloud and on-premises. The extensibility framework will be rolled-out in stages and will come to Office 365 customers in the First Release group starting this summer and will be made available to existing SharePoint sites at a later date. The following features will be coming this summer: The Files API on Microsoft Graph SharePoint Webhooks (preview) Client-side web parts for existing pages (preview) And later this year Microsoft will deliver: The Sites API on Microsoft Graph SharePoint Webhooks (GA) Custom sites on the SharePoint Framework The company hopes that by providing developers additional tools with the new framework that they can continue to extend the reach of SharePoint and further cement its role as the central hub of all collaboration inside of a company. When you pair this information to the road map that Microsoft released today as well, it's going to be a busy time for SharePoint teams. --- ### Microsoft EMS Components: Azure Rights Management > Keep your data private and secure with Microsoft's Azure Rights Management functionality, which is part of the Microsoft Enterprise Mobility Suite. - Published: 2016-05-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ems-components-azure-rights-management/ - Categories: Security - Tags: Azure Rights Management, Azure RMS, ems, Enterprise Mobility Suite, RMS - Article Type: Overview Keep your data private and secure with Microsoft's Azure Rights Management functionality, which is part of the Microsoft Enterprise Mobility Suite. Azure Rights Management. Image Credit: Microsoft This article is the fourth in the series on the Microsoft Enterprise Mobility Suite. While enterprises create valuable information for their customers or themselves out of their processes, data or the results of applying data to their processes, those components need to be protected. This process is called intellectual rights management. Azure Rights Management is Microsoft's service that facilitates the protection of information. This solution can be used in many different environments, where both data and intellectual property is key to the success of the organization. Related: What is Microsoft Enterprise Mobility Suite? Keeping Data Secure with Azure Rights Management In this challenging work environment where everyone can access, share, and publish information, it is key for organizations to be able to protect their intellectual property and data. This also applies to protect data legally required to be protected, such as personally identifiable information (PII), HIPAA (health-related protected information) or other information legally required to be secure. Users normally access corporate-owned information from their personal devices at work, on the road or from home. Sometimes, it even needs to be shared with partners to achieve a common goal. Transmission of files via email or file-sharing services work great within the enterprise, but when those services reach outside the enterprise, the old model of OS-level security or access lists is no longer effective. The challenge is how to keep the information that needs to float around safe from prying eyes... . --- ### To own productivity, Microsoft needs to build new tools > Modern productivity has moved beyond emailing Word documents to coworkers. To keep Office relevant Microsoft needs to update their project management tools. - Published: 2016-05-03 - Modified: 2024-09-04 - URL: https://petri.com/productivity-microsoft-needs-build-new-tools/ - Categories: Messaging - Article Type: Opinion Microsoft has been trying to own productivity in so many ways, but they can't ride the Office wave forever. Businesses of all sizes have been relying on Microsoft and their products to do business for years. Today Microsoft Office remains the standard for desktop publishing at a vast majority of businesses. Office has done a good job of modernizing and offering cross-platform apps to their customers, where excellent apps can be found on every major platform, keeping the competition at bay for the time being. The Next Generation of Productivity Users Business communication still largely depends on email, but Microsoft offers real-time communication tools like Skype for Business and enterprise social with Yammer alongside their Exchange email service. Even in the world of free communication tools, Microsoft has solid offerings with Outlook. com and Skype. Recently Microsoft has even done the engineering work to connect their business chat product, Skype for Business, with their consumer Skype, which has opened a new door for customer interactions. Microsoft's Office Offerings Today (Image Credit: Microsoft) Cloud storage has become a business and consumer requirement for any modern ecosystem. With OneDrive and OneDrive for Business, Microsoft has done a great job of connecting their Office programs with their cloud storage solutions. Now users can store and retrieve documents in the cloud within their Office program of choice. OneDrive for Business integrates nicely with SharePoint and Yammer, providing a natural way for businesses to begin doing more in the cloud and less on premises. Microsoft seems to be doing everything right when it comes to offering a product for every use case,... --- ### Why are there no compelling Windows 10 apps? - Published: 2016-05-02 - Modified: 2024-09-04 - URL: https://petri.com/no-compelling-windows-10-apps/ - Categories: Windows Client OS - Tags: Universal apps, Windows 10 - Article Type: Opinion Nine months after Windows 10 launched, even Microsoft doesn’t seem to be able to create a must-have Universal Windows Platform (UWP) app. But is it due to the platform’s lack of technical maturity or a problem with Microsoft and its partners? Nine months after Windows 10 launched, even Microsoft doesn't seem to be able to create a must-have Universal Windows Platform (UWP) app. But is it due to the platform's technical limitations, security restrictions imposed by the WinRT sandbox, or lack of desire on the part of developers? And does it even matter? Windows Store and Project Centennial Does anyone go looking for software in the Windows Store? Probably not. Hopefully Project Centennial will change that situation, with Microsoft expecting developers to port their win32 apps to the Store, which provides easy access to Windows 10 features, such as Live Tiles and Action Center notifications, and a mechanism for automatically distributing updates. While adding desktop programs to the Store in itself won't improve the quality of UWP apps, it will help to demonstrate that at least Windows Store isn't a long forgotten app graveyard. It needs to be a one-stop-shop for all software, be it a UWP app or otherwise. I'd also like to see the OS configured by default to only allow the installation of software from the Store, which would help to improve security, and the quantity and quality of available apps. Office Mobile apps It's not that there aren't any impressive UWP apps, take a look at Word and Excel Mobile for example, or even the new Instagram beta, which brings with it a photo editor that beats almost anything available separately. But there's no reason for most of us to use the Office Mobile apps... --- ### Skype for Business Online with Intune Now Includes Mobile Application Management > Microsoft has now added Skype for Business to their suite of apps available for mobile app management through Microsoft Intune. - Published: 2016-05-02 - Modified: 2024-09-04 - URL: https://petri.com/skype-for-business-online-with-intune-now-includes-mobile-application-management/ - Categories: Microsoft 365 - Tags: MAM, Microsoft Intunue, Office 365, Skype for Business - Article Type: News Microsoft has now added Skype for Business to their suite of apps available for mobile app management through Microsoft Intune. Bring your own device has become a pervasive IT paradigm lately. Although it's nice because it means that employees are shouldering the costs of up-to-date tools, it also means that there's a huge range of devices connecting to the IT infrastructure. For many companies and industries, there are very specific ways company data can be handled. To reconcile these two modern IT struggles, Microsoft has a product called Intune. Microsoft Intune has the ability to manage specific apps that company employees use to access their company data. Currently Intune can manage Office and storage apps, but now Skype for Business has been added to the pack.  This new inclusion for Skype for Business now adds confidence to the business chat tool. Now sensitive data and communications can occur on Skype for Business without worrying about who can access the data and what they can do with chats. With more business being done in chat applications, Microsoft has continued to differentiate themselves as the serious enterprise company. Companies who work with sensitive data need to know their communications are being protected. Email has been around for so long that there have been sufficient improvements concerning security and data protection. Now the same level of security and protection is coming to Skype for Business. How will this change for IT administrators? If your company currently uses mobile app management (MAM) through Intune, now you can also add specific policies to Skype for Business. Microsoft has several different settings and level of management that IT... --- ### SQL Server 2016 is Coming June 1, Here’s What’s in Each Edition - Published: 2016-05-02 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-2016-coming-june-1-heres-whats-edition/ - Categories: SQL Server - Tags: News, SQL Server 2016 - Article Type: News Microsoft has announced the availability of SQL Server 2016 and the features that will be in each edition of the platform. The wait is finally over: Microsoft has formally announced that SQL Server 2016 will reach general availability on June 1, 2016. With today's announcement, the company has also released a datasheet that shows what features will be included with each edition of the software. With SQL Server 2016, there will be four editions: Express, Standard, Enterprise, and a Developer edition.  The Developer edition is now a free version of the Enterprise edition of SQL Server 2016, but it cannot be used in production environments and is for development and testing only. The following image includes a full breakdown of the feature sets per edition. For those curious about the Linux version of the platform, which the company announced earlier this year, that product will not be ready until mid-2017. Microsoft is touting that this new version of SQL Server improves upon performance, security, BI, analytics and hybrid cloud support when compared to prior version. Microsoft hopes that all of the new features will be enough to entice current customers to upgrade their existing version of SQL Server. It will be interesting to watch the adoption curve of this platform as typically large clients will wait until the first few patches are released before implementing new software from Microsoft. But, seeing how the company has been publicly beta testing this platform for the past couple of months prior to launch, this may provide early adopters a bit more assurance that the platform is production ready from day 1. You can read more about... --- ### Investing in Your Data Center to Minimize Risk: Money Well Spent - Published: 2016-04-29 - Modified: 2024-09-04 - URL: https://petri.com/data-center-investments/ - Categories: Hardware - Tags: Data Center - Article Type: Overview When it comes to investing in your data center, while performance is still king, up-time is what keeps management off of your back. When your phone starts ringing at 3:00 A. M. , waking you up from a dream of living on a beach and driving a red sports car, it’s about time you start wondering how well your environment is protected and backed up. As your European counterparts start their day only to find out they can’t login to their mission-critical application, it becomes your problem to fix. Investing in your datacenter is a worthwhile use of time and money. Not only can you unlock new capabilities that are leaner, faster, and more reliable, but you can also reduce the downtime associated with on-premise deployments. With management continuing to focus on recovery time objectives (RTO), because time really is money when your environment is offline, investments in data center stability should not only include hardware replacements, but software redundancies as well. As Rick Vanover notes in the March edition of VeeamUp, “For technology leaders, the time between issues being identified and resolved is already creating tension. But when Availability is viewed as an extension of the service levels that are part of the normal state of the data center, the right investments can be made based on a complete, holistic view of all business requirements. ” Gartner believes that IT spending in the data center and for IT services will rise 2. 1% in 2016 compared to 2015, which means that even though it seems like every company is moving toward the cloud, the adoption rate is much slower than the headlines lead you... --- ### Recommendation: Asus SOHO Wi-Fi Router RT-AC66U - Published: 2016-04-29 - Modified: 2024-09-04 - URL: https://petri.com/recommendation-asus-soho-wi-fi-router-rt-ac66u/ - Categories: Networking - Tags: networking, WIFI - Article Type: Review Russell Smith has lost track of how many Wi-Fi routers that have been less than satisfactory. In this article, he shares his experiences with the Asus SOHO Wi-Fi Router RT-AC66U. I've lost count of the number of Wi-Fi routers I've been through over the last ten years, most ranging from just OK to the plain terrible. When I started experiencing problems with WI-FI connectivity a few months ago, I decided once again it was time to replace my router, and after lots of research, I picked the Asus RT-AC66U. Asus RT-AC66U Wi-Fi SoHo router (Image Credit: Asus) I'm not going to discuss this router's advanced features in depth because you can head over to the tech specs page on Asus's website. Instead, I'd like to concentrate on ease of use, reliability and critical SoHo features, because most important for me is reliability and consistent performance for basic Internet connectivity. The RT-AC66U is a dual band 5/2. 4GHz router but isn't Asus's latest model, and as an AC 1750 router, there are AC 1900 and AC 2400 models that theoretically provide faster cumulative speeds. But I believe the RT-AC66U offers the best value for money and will surpass performance expectations for all but the most demanding scenarios. SoHo features As a SoHo (Small Office/Home Office) device, the RT-AC66U has some features that are worth calling out. There's no built-in DSL modem, but it supports automatic and static IP, PPPoE (MPPE supported), PPTP, and L2TP ISP connections, including Dual WAN Links. If sharing a printer, mobile Internet, or disk drive is important, it's worth noting that the RT-AC66U has two USB ports, one USB 2. 0 and one USB 3. 0, although... --- ### The Sams Report EP 37: Small Pipes, Big Xbox - Published: 2016-04-29 - Modified: 2024-09-24 - URL: https://petri.com/72518-2/ - Categories: Podcast - Tags: News, Podcast, The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including a new build of Windows 10, Xbox hardware, Office pipes, security threats, apps and so much more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including  a new build of Windows 10, Xbox hardware, Office pipes, security threats, apps and so much more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=j9Tzo62onJI RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: April 29 - Published: 2016-04-29 - Modified: 2024-09-04 - URL: https://petri.com/google-copying-microsofts-mission-statement/ - Categories: Mobile - Tags: News - Article Type: Opinion Because Microsoft controls the weather now, this edition of Short Takes focuses on Microsoft's use of DNA for storage, Skype's one billion mobile downloads, Microsoft's Windows phone messaging, Google's pending EU sanctions, Google copies Microsoft's mission statement, Amazon's AWS surge, and much more. Funny. But sad. Because Microsoft controls the weather now, this edition of Short Takes focuses on Microsoft's use of DNA for storage, Skype's one billion mobile downloads, Microsoft's Windows phone messaging, Google's pending EU sanctions, Google copies Microsoft's mission statement, Amazon's AWS surge, and much more. Microsoft is testing synthentic DNA as data storage If this works, maybe they can bring back unlimited storage in OneDrive. Anyway, Microsoft has purchased ten million long oligonucleotides---in other words, DNA---from Twist Bioscience to encode digital data. "DNA is a promising storage media, as it has a known shelf life of several thousand years, offers a permanent storage format and can be read for continuously decreasing costs," Twist Bioscience's Emily M. Leproust said. "Our silicon-based DNA synthesis platform offers unmatched scale and product quality that vastly accelerates the ability to write DNA at a cost enabling data storage. " That's actually pretty amazing. "Microsoft is using synthetic DNA to store data" The margarine of DNA types. Skype hits 1 billion mobile downloads Microsoft announced this week that mobile app versions of Skype---on iOS, Android, and Windows phone---had hit one billion downloads, a pretty significant milestone. That said, there are only 340 million active Skype users, so many of those downloads are either never used, or are used by people already using Skype on PCs. Their next milestone should be making Skype actually work reliably. "Microsoft updates Groove for Windows 10 PC, phone and HoloLens on Windows Insider Fast ring"... --- ### Microsoft Flow: A Backend Internet Plumbing Service To Compete With IFTTT - Published: 2016-04-28 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-flow-backend-internet-plumbing-service-compete-ifttt/ - Categories: Microsoft 365 - Tags: News, Office 365 - Article Type: News Microsoft is working on a new service that will allow you to connect different platforms with templates to create unique actions. Microsoft is working on a new tool that will connect separate services to create unique actions. The tool, called Flow, was uncovered this evening and while it is in the preview state, we can see how it will operate and can make your life easier. The announcement post for the service, that you can view here, gives a general overview of what Flow is but the landing page is still being assembled as many of the links take you to a 404 page. Supporting more than 35 services (like Dropbox, Slack, Salesforce, Mail Chimp and of course the entire Office suite), Flow allows you to connect these services and create action-based triggers using templates. Using a template, you can create actions so that if your manager emails you, a notification can be posted in Slack or receive a text notification for the same email. Or you can do things like when a member is added to MailChimp, copy that user-name to a SharePoint list if approved by the user; there are thousands of action items you can create using the template tool. If this sounds familiar, that’s because IFTTT is a similar service but it’s always good to have competition and with Microsoft entering the market, it will give consumers (and businesses) a choice for which platform to use. While the company has not made any official announcement about support for the platform, I wouldn’t be surprised to see Microsoft make this enterprise-hardened which is something IFTTT may have trouble doing. It looks... --- ### Introducing Office 365 Planner - Published: 2016-04-28 - Modified: 2024-09-04 - URL: https://petri.com/introducing-office-365-planner/ - Categories: Office - Tags: Cloud, Office 365, Project - Article Type: Overview Russell Smith provides an overview of the Office 365 Planner apps, which helps teams create plans, share files, and much more. In today’s Ask the Admin, I’ll present an overview of Planner for Office 365.  Office 365 is a set of cloud-based collaboration tools for enabling team work, but while Microsoft has Project and Project Online, an application that’s part of the Office desktop suite, it requires some setting up and knowledge to use. Until now, Office 365 has lacked a lightweight project management solution, but Planner aims to put that right. Office 365 Planner (Image Credit: Microsoft) Planner integrates tightly with Office 365 Groups, and for each new plan created, a direct one-to-one relationship is formed with a new Group. For more information on Groups, see Microsoft Announces New Features for Office 365 Groups on the Petri IT Knowledgebase. Each task in a plan is represented by a Card, which can contain due dates, file attachments, categories and conversations. Cards are arranged on Boards that can be further divided into Buckets, and prioritized and tagged with colored labels. Document previews are shown on the cards to give users a quick idea of the content associated with each task. If you are familiar with Trello, the popular cloud-based project management solution, Buckets are similar to Trello lists. In fact, Planner looks like it will borrow a lot from Trello, which is based on the Kanban scheduling system developed by Toyota. Views allow users to get a quick overview of all the tasks assigned to them (My tasks) across all plans, and the Charts view provides interactive... --- ### Current Status Episode 39: Outlook Performance in VDI with Jarian Gibson - Published: 2016-04-28 - Modified: 2016-04-28 - URL: https://petri.com/current-status-episode-39-outlook-performance-vdi-jarian-gibson/ - Categories: Current Status - Article Type: Opinion During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Jarian Gibson (@jariangibson), Architect at Jarian Gibson Consulting and Citrix CTP. https://youtu. be/gkj9fC5Ne4s Join us Thursday, April 28, 2016 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Jarian Gibson (@jariangibson), Architect at Jarian Gibson Consulting and Citrix CTP. Are you implementing or have you implemented a desktop virtualization solution with Microsoft Outlook as one of your core user applications? Do your users have trouble with Outlook performance within virtualized desktops? Join us to learn more on how to overcome these challenges, and what you need to know to ensure that Outlook will perform well within your VDI solution. --- ### Office 365 Vulnerability Exposed Business Accounts, Fixed within Seven Hours - Published: 2016-04-28 - Modified: 2024-09-04 - URL: https://petri.com/office-365-vulnerability-exposed-business-accounts-fixed-within-seven-hours/ - Categories: Microsoft 365 - Tags: News, Office 365 - Article Type: News A serious exploit found within Office 365 allowed you to access nearly any business email account but the bug was patched within seven hours after being reported. Microsoft’s Office 365 service is a cloud-based platform that is designed to help businesses of all sizes use the productivity software as well as manage their users. In a new report hitting the web today, a serious vulnerability was discovered that impacted every account that used cross domain authentication, but thankfully the exploit has been patched. This vulnerability was jointly discovered by Klemen Bratec from Šola prihodnosti Maribor, and Ioannis Kakavas from Greek Research and Technology Network, and it was a flaw in the execution of SAML. The vulnerability allowed for cross-domain authentication bypass impacting all federated domains; an attacker, using this method, could gain unrestricted access to a victim's Office 365 account, including access to their email, files stored in OneDrive etc. If you are interested in how the vulnerability was discovered and how the flaw could be executed, I highly suggest you read the source here, as it has detailed documentation of the exploit. After the researchers detailed the issue to Microsoft, the vulnerability was closed within seven hours of receiving the report. Seeing as the proper channels were used to report the issue, Microsoft has acknowledged the researchers and their contributions to the service, here. Office 365 is a core pillar of Microsoft’s software and considering this vulnerability was likely rated as critical, it’s not a surprise to see it patched so quickly. The productivity platform is a core pillar of Microsoft’s revenue and the company will do everything it can to make sure that its security meets the standards that the enterprise... --- ### FTC Expands Antitrust Investigation of Google Android - Published: 2016-04-28 - Modified: 2024-09-04 - URL: https://petri.com/ftc-expands-antitrust-investigation-google-android/ - Categories: Mobile - Tags: Android, News - Article Type: Opinion Following in the footsteps of the Europe Commission, the U.S. Federal Trade Commission (FTC) is expanding its own investigation of Android to see whether Google is violating U.S. antitrust laws. But it's unlikely that this investigation will ever amount to actual charges. Following in the footsteps of the Europe Commission, the U. S. Federal Trade Commission (FTC) is expanding its own investigation of Android to see whether Google is violating U. S. antitrust laws. But it's unlikely that this investigation will ever amount to actual charges. The FTC's investigation of Android dates back about two years, though it was only made public in September 2015, when we found out that the agency had reached an agreement with the U. S. Department of Justice (DOJ) to take the lead role against Google. The charge is familiar: Google illegally prevents hardware makers from distributing devices that do not include a lengthy list of Google-made apps and services and configure them as the defaults. This act, called product bundling, is what got Microsoft into trouble with antitrust regulators in the U. S. , EU, and other locales over a decade ago. And Google's behavior very closely mimics what Microsoft did earlier. The expansion of the FTC investigation, as I understand it, hinges on the recent European case, where the European Commission has formally charged Google with violating antitrust laws by forcing its hardware maker and wireless carrier partners to bundle its own apps and services in Android. According to a report in the Wall Street Journal, the FTC is now seeking some of the evidence used in the EU case, and has fielded new complaints from app developers "and other tech firms. " This sounds straightforward enough. But the FTC faces many issues in the U. S. that will almost... --- ### Research Study Shows Positive Perceptions for the Software-Defined Data Center for Enterprises > A new study from HyTrust and Intel suggests that 2016 might be the year where a software-defined data center (SDDC) approach might become the norm for many enterprises. - Published: 2016-04-27 - Modified: 2024-09-04 - URL: https://petri.com/research-study-shows-positive-perceptions-software-defined-data-center-enterprises/ - Categories: Cloud Computing - Article Type: News A new study suggests that 2016 might be the year where a software-defined data center (SDDC) approach might become the norm for many enterprises. A new study suggests that 2016 might be the year where a software-defined data center (SDDC) approach might become the norm for many enterprises. The study is a new research initiative by the cloud security automation company, HyTrust, and is co-sponsored by Intel. The research spans over 500 senior business and tech executives across the US and UK belonging to large and medium-sized companies. While 60 percent of respondents are C-level executives, the remaining 40 percent include IT managers and system and network administrators. Topline Findings on SDDC Topline findings from this survey includes a positive outlook for SDDC, where 65 percent of respondents predicted faster deployment in 2016, while 62 percent anticipated increased adoption. Additionally, 51 percent of respondents said that they anticipated a quantifiable ROI, thanks to the increased efficiency, agility, and provisioning that SDDC strategies provide. Making Effective SDDC Strategies When it comes to effective SDDC strategies, 90 percent of respondents agreed that effective automation is critical for large-scale deployment of SDDC, and 94 percent of respondents also stated that consistent policies must be encored to ensure compliance, security, and business needs in hybrid cloud environments. Security Concerns Interestingly, the research suggests a positive outlook regarding security concerns and SDDC. Although 70 percent of respondents said that security would be less of an obstacle in the overall adoption of cloud and SDDC, 25 percent of respondents acknowledged that security would still be an issue. Notably, the biggest security gap identified within the study is that... --- ### Why I'm Happy to Beta Test Windows Mobile 10 - Published: 2016-04-27 - Modified: 2024-09-04 - URL: https://petri.com/im-happy-beta-test-windows-mobile-10/ - Categories: Mobile - Tags: Mobile, Windows 10 Mobile, Windows phone - Article Type: Opinion Russell Smith shares his thoughts on why he's excited to be a part of the Windows Mobile 10 journey even though it's facing some tough criticism from Windows Phone fans. I came across some headlines in the tech press over the weekend. Apparently, Mary Jo Foley has ditched her Lumia Icon because there was no upgrade path to the Lumia 950 on Verizon. No disrespect to Mary Jo and her reasoning is sound, but this is hardly news. A smartphone is a tool, not something you should worship, and if your current device doesn't suit your needs, then replace it with something that does. Windows 10 Mobile was quietly released when the Lumia 950, 950 XL and budget 550 launched at the tail end of 2015. To say that it wasn't ready is something of an understatement. And even as of March 17 of this year, when Windows 10 Mobile launched for older handsets, Microsoft is only providing the upgrade from Windows Phone 8. 1 on select models and only if you download a separate application to check your device's suitability. What that means is that many Lumia owners are simply unaware that Windows 10 Mobile exists, and that their devices can be upgraded. A stark contrast from the aggressive campaign that Microsoft is waging against Windows 7, where users are actively persuaded to make the switch. It might be that consumers will never be Microsoft's target audience for Windows 10 Mobile, where Apple and Google hold 98 percent of the market between them. But in some European markets, Windows Phone has a respectable slice of the pie, but clearly Microsoft isn't in a hurry to have those users... --- ### PowerShell Problem Solver: In Case it Matters > PowerShell professional Jeff Hicks dives into a tricky string replacement problem and demonstrates some advanced regular expression tricks. - Published: 2016-04-27 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-in-case-it-matters/ - Categories: PowerShell - Tags: Advanced - Article Type: How To PowerShell professional Jeff Hicks dives into a tricky string replacement problem and demonstrates some advanced regular expression tricks. Most of the time, Windows IT pros don't worry too much about case. For the most part, PowerShell doesn't care if something is upper case or lower case, and PowerShell commands are not case sensitive. Today, I want to tackle a problem where case does matter to you. For the my demonstration, I'm going to define a variable with a case-sensitive string. $var = "I am SOME type of STRING that needs TO BE REVISED: FOO_BAR/TEST" And I'll say that this string is representative of many strings that need to be processed. If you wanted to make the entire string lower case, that's a pretty simple to do $var. ToLower You can also make the string upper case: $var. ToUpper Case conversions (Image Credit: Jeff Hicks) But let's make this a bit more difficult. I'm going to say that I have the text FOO_BAR that needs to be converted to lower case, but the rest of the string should remain the same. One approach is to use the Replace method on the string object, which just happens to be case-sensitive. $var. Replace("FOO_BAR","foo_bar") You can also use the –Replace operator. $var -replace "FOO_BAR","foo_bar" Both methods will give you the same result. Replace options (Image Credit: Jeff Hicks) This is very easy assuming you know ahead of time what string you want to search for. You could even use variables: $text = "Foo_Bar" $var -replace $text. toUpper,$text. ToLower Replacing with variables (Image Credit: Jeff Hicks) ... --- ### Microsoft’s Newly Acquired Xamarin Expands Developer Tools With New Features - Published: 2016-04-27 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-newly-acquired-xamarin-expands-developer-tools-new-features/ - Categories: Visual Studio - Tags: News, Xamarin - Article Type: News Microsoft and Xamarin are hosting the Evolve 16 conferece in Orlando where the companies have announced several new development features and updates to existing tools. Earlier this year, Microsoft announced that they had acquired Xamarin, a tool that makes cross-platform development easier and today, the company is hosting Xamarin Evolve 2016 in Orlando, Florida. In addition to announcing that they have open sourced and contributed to the . NET Foundation the Xamarin SDK for Android, iOS and Mac under the same MIT license used for the Mono project, they are shining a light on several new features too. The updates announced today cover everything from Visual Studio, new updates for Xamarin Studio, to DevOps enhancements as well. All of the announcements are listed below, separated by category. Visual Studio Productivity Enhancements: Xamarin announced new ways to connect Visual Studio to a developer’s Mac to make it even easier for C# developers to create native iOS apps, and new ways to auto-generate mobile app test scripts in Visual Studio iOS Simulator Remoting: Simulate and interact with your iOS apps without leaving Visual Studio – even supporting multi-touch interactions on Windows machines with capable touchscreens. iOS USB Remoting: Deploy and debug apps from Visual Studio to an iPad or iPhone plugged into your Windows PC, eliminating the need to switch machines to test. Test Recorder Visual Studio Plugin: Auto-generate mobile app test scripts within Visual Studio. Simply interact with your app on device or in the simulator and Test Recorder automatically generates scripts that can be run on thousands of devices with  Xamarin Test Cloud’s automated app testing. Xamarin Studio 6 IDE (for Mac OS X): Updated look and... --- ### Microsoft and Xamarin Have Opened Sourced the SDK for iOS, Android and Mac - Published: 2016-04-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-xamarin-opened-sourced-sdk-ios-android-mac/ - Categories: Visual Studio - Tags: News, Xamarin - Article Type: News Microsoft and Xamarin have completed the open sourcing of the Xamarin SDK for Android, iOS and Mac. At Build this year, Microsoft announced that they, along with their newly acquired IP, Xamarin, would open source the Xamarin SDK and today at Evolve 16, the company has announced that they have completed this process. The Xamarin SDK for Android, iOS and Mac, under the same MIT license used for the Mono project, have all been open sourced which means any developer can now contribute to the project. This newly released source code includes native API bindings for iOS, Android and Mac, the command-line tools necessary to build for these platforms, and Xamarin. Forms, Xamarin’s cross-platform UI framework. In addition to the completion of open sourcing its SDK, Xamarin also announced several new development tools and features coming to its software that you can read about here. Microsoft has become a big proponent of open-sourcing technology with everything from parts of its browser to Xamarin now available to the open source community. While the company is not quite ready to go all-in with open sourcing Windows, the company is making strides in other departments like supporting SQL server on Linux. If you are interested in contributing to these projects, you can find them here. --- ### Apple Revenues, Device Sales Take a Tumble in Quarter - Published: 2016-04-27 - Modified: 2024-09-04 - URL: https://petri.com/apple-revenues-device-sales-take-tumble-quarter/ - Categories: Mobile - Tags: Apple - Article Type: News Apple recorded revenues of over $50 billion in the quarter ending March 31, but the firm sold fewer iPhones, iPads, and Macs than it did in the same period a year ago. It was the consumer electronic giant's first year-over-year revenue decline in 13 years. Apple recorded revenues of over $50 billion in the quarter ending March 31, but the firm sold fewer iPhones, iPads, and Macs than it did in the same period a year ago. It was the consumer electronic giant's first year-over-year revenue decline in 13 years. "Our team executed extremely well in the face of strong macroeconomic headwinds," Apple CEO Tim Cook said in a prepared statement. "We are very happy with the continued strong growth in revenue from services, thanks to the incredible strength of the Apple ecosystem and our growing base of over one billion active devices. " What really hurt Apple, however, was its stunning success in the year ago quarter, when the firm posted record revenues for a non-holiday quarter thanks to its switch to the bigger iPhone 6 and 6 Plus handsets. That heady quarter is "a tough bar to hurdle," as Mr. Cook correctly asserted. But he feels that "the future is very bright. " He's certainly correct, but after over a decade of beating expectations and inventing markets, Apple has finally run into that wall so many were anticipating: It has grown so large that it simply can't continue at the pace it previously established as the norm. Consider iPhone. Apple sold 51 million iPhones in the quarter, a 16 percent decline from the 61 million units it sold a year ago. But 51 million units is an astonishing figure given the market saturation and resulting slowdown in China, and the fact that its... --- ### A Simple Way to Clean Install Windows 10 > Learn how to perform a clean installation of Windows 10, while keeping the free upgrade benefit for Windows 7 and 8.1 users. - Published: 2016-04-26 - Modified: 2024-09-04 - URL: https://petri.com/simple-way-clean-install-windows-10/ - Categories: Windows 10 - Article Type: How To Learn how to perform a clean installation of Windows 10, while keeping the free upgrade benefit for Windows 7 and 8.1 users. All Window 7 or Windows 8. 1 users have the option to upgrade their computer to Windows 10 for free. Although the upgrade process is quite smooth, many users still have upgrade fear, remembering times when these upgrades were not as successful as the Windows 10 upgrade. In addition, quite a few users might find that while their computer hardware does meet the Windows 10 required specifications, they might not actually want to upgrade due to different reasons, such as having issues with their existing installation or having software that can't be removed. So here's the trick. To get the free Windows 10 offer, you normally need to upgrade to Windows 10 on your existing activated computer.  During the upgrade process, your computer automatically activates and registers itself on Microsoft's activation servers. However, as you will soon see, it's also possible and perfectly legal to install a totally clean version of Windows 10 on your computer and still have Windows 10 automatically activated. But, hold on! Why not just install Windows 10 on a fresh computer and enter the previous OS serial number? Well, that's not so easy. The free upgrade offer means that you do need to upgrade. But with that said, there's a workaround, and I'll show you how to do it. Note that all actions in this tutorial require you to be signed in as an administrator.  The first step in this process is to download the Windows 10 installation media file, which is an ISO file. Find the "Download tool now" button, and click it... . --- ### Getting the Most Out of Office 365: Outlook, Plus OneNote > Maximize your email workflow by adding OneNote. Save emails, reply to long emails without missing a single point. OneNote plus Outlook is the perfect pair. - Published: 2016-04-26 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-outlook-plus-onenote/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office, OneNote, Outlook - Article Type: Overview Maximize your email workflow by adding OneNote. Save emails, reply to long emails without missing a single point. OneNote plus Outlook is the perfect pair. Maximizing productivity is more than learning your tools and working efficiently. Cutting down on rework and non-value-add tasks like searching for emails or documents not only saves time, but also makes work less monotonous. Microsoft has built Office 365 to make organizing, understanding, sharing, and processing information easier and more natural with OneNote and Outlook used together. For those who are unfamiliar, OneNote is a notes family of apps and programs. OneNote accepts the entire range of digital inputs, including text, images, videos, audio, ink, and files. Being so robust makes OneNote an excellent solution for almost any type of information organization. Annotating screenshots, marking up text, organizing a table of data, taking meeting notes, and much more can all be done within a single application. While OneNote is powerful on its own, it really shines when used in conjunction with Outlook. These two programs used together can elevate email to a new level. The first step is getting emails from Outlook into OneNote, which can be done in a few ways. The simplest way is to click the OneNote button in Outlook, then pick where in OneNote you want the email sent. Another method is to perform a simple copy and paste from Outlook onto the desired OneNote page. The advantage of using the OneNote button is to gain additional information, such as who the email was sent to, who it was from, and what the subject was. Outlook Send to OneNote Once the email has... --- ### Adding Microsoft Cloud to a Small-to-Medium Business - Published: 2016-04-25 - Modified: 2024-11-19 - URL: https://petri.com/adding-microsoft-cloud-to-a-small-mid-business/ - Categories: Microsoft Azure - Tags: Azure, Azure AD, Azure AD Connect, Cloud, cloud computing, hybrid cloud, intune, Office 365, SMB, SME - Article Type: Overview There's lots of talk about cloud and what it can do for your business. But with so many offerings, even from one vendor such as Microsoft, it can be confusing to determine what's the best way forward. There's lots of talk about cloud and what it can do for your business. But with so many offerings, even from one vendor such as Microsoft, it can be confusing to determine what's the best way forward. I thought that with this post, I would talk about what I've done with my employer, a business with under 50 employees and a small Hyper-V cluster. A Small-to-Medium Enterprise The common definition of a small-to-medium enterprise (SME) or a small-to-medium business (SMB) is between five and 250 users. In terms of IT, that business might be server-less, which is increasingly common thanks to Software-as-a-Service, or it might have one server or virtualization host, or it might have a two to three small node virtualization clusters. My employer, a technology distributor or wholesaler, falls into the SME bracket. We have less than 50 employees, and we run a two-node Hyper-V cluster. In terms of server applications, we have many common requirements: Windows Active Directory File and print Customer relationship management (CRM) Accounting But we also have a few server applications that you won't find in many companies because of our automated integrations with some of our suppliers. But like most SMEs, these machines are critical to our business. As a Microsoft value-added distributor, we are in the position of leading the charge on Microsoft cloud computing in our market. We don't just sell the technology; we believe in it. And that's why we've been in the process of using the technology more... --- ### What's the Future of the IT Pro? - Published: 2016-04-25 - Modified: 2024-09-04 - URL: https://petri.com/whats-the-future-of-it-pro/ - Categories: Cloud Computing - Tags: Career, Cloud, cloud computing, IT pro - Article Type: Opinion What's in store for IT pros in the future? I've been a working IT pro since 1997, and in that time, I've seen lots of changes. A new era has recently started, and many of the clues suggest that I might not have a place to work for much longer. Could it really be true that IT pros have no future and are going the way of the dinosaurs? Are IT pros going to have a place to work in 10 years' time? The Cloud Era We IT pros have been in the business world in one form or another since the Lyons Electronic Office (LEO), where I broke onto the scene in 1951. We have been installing networks, deploying servers and PCs, and managing software in many shapes and forms since we rocked around the clock with Bill Haley & His Comets. But it seems now that everyone wants to say "See you later, alligator" to us. Are we really passé? That's what I want to discuss in this article, and I'd really like to hear your opinion on the matter before I book my place on a degree course in marketing! The Rise of Software-as-a-Service I work in the small-to-medium enterprise (SME) sector in Ireland, where those businesses vary wildly in size. The smaller ones might have had a single server, possibly running Small Business Server, some might have two machines, and perhaps others have had a single Hyper-V host or a small Hyper-V cluster. But times have changed. We have an incredibly successful market for Office 365, where... --- ### Microsoft and Google Drop Regulatory Complaints Against Each Other - Published: 2016-04-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-google-drop-regulatory-complaints/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft and Google jointly announced on Friday that the two firms would set aside their regulatory complaints against each other around the world. Now, the firms will only compete in the open market, they say. Image source: Google Microsoft and Google jointly announced on Friday that the two firms would set aside their regulatory complaints against each other around the world. Now, the firms will only compete in the open market, they say. "Microsoft has agreed to withdraw its regulatory complaints against Google, reflecting our changing legal priorities," a Microsoft spokesperson said. "We will continue to focus on competing vigorously for business and for customers. " "Our companies compete vigorously, but we want to do so on the merits of our products, not in legal proceedings," a Google spokesperson concurred. So what complaints are they referencing? In Europe, the United States, and elsewhere, Microsoft and Google have been escalating a Cold War of sorts in which the two firms have spent record sums on lobbying efforts to thwart the others' progress. Google has tripled its spending on lobbying in recent years, but it's still a small portion of what Microsoft spends. You can see the results for yourself. In the EU, in particular, Microsoft has an indirect hand in each of the looming antitrust battles that Google now faces. And it is using its own antitrust experience there, no doubt, to hit Google where it hurts. Google engages in similar efforts around the world, though its reach is somewhat limited by the fact that Microsoft is no longer the belligerent monopolist of years past. Its lobbying efforts, therefore, are more defensive in nature, with Google working to fend... --- ### Microsoft’s Preparing To Take On Amazon Glacial With Azure Cool Storage - Published: 2016-04-25 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-preparing-take-aws-glacial-storage-azure-cool-storage/ - Categories: Microsoft Azure - Tags: Azure, Cold storage, cool storage, News - Article Type: News Microsoft is working on a new Azure service that will compete with Amazon Glacier for long term data storage. When it comes to the cloud, there are two primary competitors, Amazon and Microsoft; Google is building out new data centers to bring its services up to parity with these two juggernauts as well. While Amazon has traditionally been ahead of Azure in terms of features, Microsoft is quickly catching up. Earlier this year, Microsoft pulled back the curtain on its AWS Lambda competitor known as Functions and now the company is set to take on Glacial storage with Azure Cool storage; Google also offers a competing product called Nearline. Cold storage is a service that allows for long-term data storage at lower prices than traditional cloud storage. The trade-off for the reduced pricing is that the data is less-available with Amazon saying it can take several hours to make your stored content ready for download. Microsoft hasn’t given any pricing information or detailed feature reports about how its cold storage service will work but they do say “customers will pay for GBs stored and data access. This is useful for users with data that isn’t regularly accessed, such as older data or backups. ” While cold storage is not a new product for the cloud marketplace, it’s one more item on Microsoft's checklist to make sure they offer everything that Amazon (and Google) currently provide to their clients. The goal of these long-term data storage services is to make it more cost effective to place your backups (and similar data) in the cloud than host it locally. Microsoft says that this feature... --- ### Create Custom MMC Consoles for Managing Windows Server - Published: 2016-04-22 - Modified: 2024-09-04 - URL: https://petri.com/create-custom-mmc-consoles-managing-windows-server/ - Categories: Windows Server - Article Type: How To Learn how to create complex management consoles for managing Windows Server. In today's Ask the Admin, I'll show you how to create a custom management console to get quick access to all the tools you use on a regular basis in one console. If you manage a large number of PCs or servers, you might want to consider creating your own custom Microsoft management console (MMC) so that you’ve got all the tools you need at your fingertips. The instructions below can be used in Windows 10 or Windows Server 2012 R2. In Windows Server 2012 R2, switch to the Start screen and type mmc. In Windows 10, type mmc in the search box on the taskbar. Select MMC in the search results pane. In the MMC window, press CTRL+M to add a snap-in to the console. In the Add or Remove Snap-ins dialog, click Advanced. In the Advanced dialog, check Allow changing the parent snap-in and then click OK. Add snap-ins to a management console (Image Credit: Russell Smith) In the Add or Remove Snap-ins dialog, scroll through the list of available snap-ins and double click Computer Management. In the Computer Management dialog, select Local computer under This snap-in will always manage, and then click Finish. In the right of Add or Remove Snap-ins, click the Parent snap-in dropdown menu and select Computer Management from the list. In the Add or Remove Snap-ins dialog, scroll through the list of available snap-ins and double click Device Manager. In the Device Manager dialog, select Local computer... --- ### Provision a domain using a Microsoft Azure Resource Manager template - Published: 2016-04-22 - Modified: 2024-11-19 - URL: https://petri.com/provision-dc-microsoft-azure-using-powershell/ - Categories: Cloud Computing - Tags: Active Directory, Azure, Cloud, PowerShell - Article Type: How To Learn to use the new PowerShell resource management cmdlets to provision a VM as a domain controller in Azure. In today's Ask the Admin, I'll show you how to provision a new Active Directory domain in Azure, and all the necessary resources, quickly and easily using an Azure Resource Manager (ARM) template. I've been investigating ways to provision an Active Directory domain in Azure and have come to the conclusion that the easiest and quickest way to achieve the goal is using an ARM template. You might remember a previous article on Petri, Automate Domain Controller Deployment in Microsoft Azure, where I described using PowerShell to deploy one or more DCs and a new domain using the classic deployment model and PowerShell Remoting. But with the shift to ARM comes new possibilities. While PowerShell Remoting is a useful management tool, it's not the ideal solution for automating OS configuration after initial VM deployment, if only because the PC from which the script is run must remain connected to the Internet while configuration is in progress. Azure quickstart ARM templates on GitHub (Image Credit: Russell Smith) The Azure Custom Script Extension (CSE) solves the problem mentioned above by downloading a PowerShell script to the VM from Azure Storage, and then runs the script locally on the VM. But when configuring a VM on a VNET that doesn't use Azure-managed DNS, the VM isn’t able to resolve the URI of the script located in Azure Storage so fails to run. While it would likely be possible to work around this issue, it's a messy solution... . --- ### Microsoft’s Updating UAC With Additional Authentication Options - Published: 2016-04-22 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-updating-uac-additional-authentication-options/ - Categories: Windows 10 - Tags: uac - Article Type: News Microsoft is updating the UAC dialog box in Windows 10 Anniversary Update to include additional authentication options. Later this year, Microsoft will be releasing a large update to Windows 10 that they are calling the Anniversary Update. While the company started talking about this update at Build last month, during the past few weeks, the company has been detailing all the new features that will be coming to the platform. One feature that will impact the IT Pro crowd is that the company is adding additional authentication mechanisms for UAC. In the Anniversary update, when you are prompted to enter your credentials or elevate a program, you will now be able to do so with Windows Hello, a Pin, certificate or a simple password. While this is a minor change, these additional options will make it easier to elevate the permissions and using Windows Hello in this instance is a natural expansion of the security layer. Microsoft has only allowed the authentication mechanism to log you into Windows up until now but with the Anniversary update, they are expanding the tools functionality with UAC and also integrating it into the Edge browser too. Microsoft is pushing heavily for Windows 10 to be adopted in the enterprise as well as small and medium sized businesses. The company is making the pitch that with improved corporate features, like Windows Update for Business, and additional security layers, like Windows Hello, that this OS is the best replacement for Windows 7. --- ### Microsoft Announces More Features Coming to Windows 10 with the Anniversary Update - Published: 2016-04-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-features-coming-windows-10-anniversary-update/ - Categories: Windows 10 - Tags: News, Windows 10 Anniversary Update - Article Type: News Microsoft has announced today a significant number of new features that are coming to Windows 10 with the Anniversary Update that will be released this summer. At Microsoft's Build conference last month, the company started to talk publicly about the new features coming to the Windows 10 Anniversary update that will arrive this summer. At the conference, the company outlined improved inking support, expanded Cortana features and more use-cases for biometric authentication. Since those features were announced, the company has also highlighted new educational enhancements coming to the platform, and now we are learning about more changes that include visual updates. Microsoft is releasing a new build of Windows 10 to Insiders in the Fast ring (14328), and this release contains a significant number of updates from the previous version. These features will eventually be included in the final release to the general public, but this version marks the first time we are seeing several of these new updates. Although it was announced last month, Microsoft is now shipping a build of Windows 10 that contains the new inking experience that includes the new Ink Workspace. The Start menu is being refined in this release as well. The company has combined the most frequently used apps list and the All apps list into a single layout and promoted it to the top level of the interface to reduce scrolling and clicking. Tablet mode is being updated with the company returning the full-screen All Apps list from Windows 8. It's also now easier to toggle between pinned tiles and the All Apps list as these items are docked in the left rail of the Start menu. Finally, in tablet... --- ### The Sams Report EP 36: New Redstone Features, Surface 4 and Year Of Linux - Published: 2016-04-22 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-36/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including lots of new features coming to Windows 10, Skype updates, Xbox One/360, traveling and so much more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including new features coming to Windows 10, Skype updates, Xbox One/360, traveling and so much more from the past two weeks. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=OFtyfkwgNY0& RSS | SoundCloud | YouTube | iTunes | Google Play --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (April 2016) - Published: 2016-04-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-3/ - Categories: Cloud Computing - Tags: News - Article Type: Overview Because this happens only four times a year, this edition of Short Takes focuses on Microsoft's quarterly earnings report: the big picture, plus closer looks at cloud, Windows, Surface, Phone, Xbox and Office. Halo statue at Microsoft's Millennium campus, 2005. This week, Microsoft killed the Xbox 360. Because this happens only four times a year, this edition of Short Takes focuses on Microsoft's quarterly earnings report: the big picture, plus closer looks at cloud, Windows, Surface, Phone, Xbox and Office. Note: This edition of Short Takes expands on Brad's original story about the Microsoft earnings, Microsoft Reports Strong Cloud Growth, Dismal Windows Phone Sales for Q3, and is interspersed with some of my Twitter commentary from yesterday. --Paul Microsoft earnings in a nutshell On Thursday, Microsoft announced that net income of $3. 8 billion on revenues of $20. 5 billion for the quarter ending March 31. These results came in under expectations, and while Microsoft blamed higher-than-exected taxes, that "catup-up adjustment" sounds like the kind of excuse a CFO would make. Speaking of which, “Our continued operational and financial discipline drove solid results this quarter,” Microsoft CFO Amy Hood said. “We remain focused on investing in our strategic priorities to drive long-term growth. " "Satya: 'Overall a solid quarter'. " But... Biggest news in the report: Cloud growth has slowed While there is plenty to digest in this report, the biggest news is clearly stated: Cloud, widely seen as the future of Microsoft, under-performed in the quarter, casting doubts on the success of Microsoft's ongoing transition. The software giant can point to lots of big and positive numbers---and I'll highlight those in a moment---but it boils down to this: Growth in... --- ### Microsoft Reports Strong Cloud Growth, Dismal Windows Phone Sales for Q3 - Published: 2016-04-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reports-strong-cloud-growth-dismal-windows-phone-sales/ - Categories: Main - Tags: Earning - Article Type: News Microsoft has released its Q1 earnings and there has been strong growth in its cloud services but Windows phone remains a weak spot but Surface performed well. Microsoft has released their earnings report for the first quarter of the calendar year, third quarter fiscal, with the company reporting $3. 8 billion in net income on $20. 5 billion in revenue. Both of these figures are lower than the same quarter from a year ago, but the company's cloud services continue to be a bright spot for the company. The one figure many Windows Phone users were waiting to see was how well or poorly the devices did this quarter, and the news is not good. Windows Phone revenue decreased $662 million or 47% because Microsoft sold only 2. 3 million Lumia phones, whereas they sold 8. 6 million units last year. But it’s not all bad for hardware at the company as Surface revenue was up to $1. 1 billion, a jump of 61% from the same time last year, which was pushed strongly by the release of the Surface Pro 4 and the Surface Book. On the PC side of things, OEM revenue was down 2 percent, and while a decline is never a good thing in this segment, it did outperform the PC market as a whole. Office continued to perform well with Office commercial products and cloud services revenue growing 7%, and Office 365 subscriptions for the consumer grew to 22. 2 million subscribers. Microsoft’s cloud services grew 3% with $. 1 billion in revenue with Azure revenue growing 120% and usage of Azure compute and Azure SQL database more than doubling year-over-year. As expected, the story continues to be that Windows revenue... --- ### 3 Ways to Disable a Network Connection in Windows 10 - Published: 2016-04-21 - Modified: 2024-09-04 - URL: https://petri.com/3-ways-disable-network-connection-windows-10/ - Categories: Windows 10 - Article Type: How To Learn three quick and easy ways to disable a network connection with the command line in Windows 10. When we use a computer over a Wi-Fi network, there are some cases in which we want to disable that connection. Usually, this can be done by going to the Network Connections applet in Control Panel, but since Microsoft made it a little more complicated to get to it, it might be easier to have a shortcut on your desktop that lets you do just that. For this purpose, I made a list of three easy methods of using the command prompt, which includes some  PowerShell commands that can help you do this with ease. Note that these commands should work on Windows 7, 8, and 8. 0, and you'll need to open the command prompt or PowerShell with administrative permissions to properly run these commands.   Method 1: Using WMIC To use the WMIC command in the command prompt, we need to identify the correct index number of the required network interface, which we'll then use to enable or disable the network. To get the network interface list and index number type: wmic nic get name, index Grabbing the index number of the network interface. (Image Credit: Daniel Petri) Type the following to disable the network interface with the required index number, which let's say is 4 for this example: wmic path win32_networkadapter where index=4 call disable Disabling the network interface. (Image Credit: Daniel Petri) Now in the control panel, you should see that the desired network connection is now disabled. Disabled wi-fi connection in... --- ### Getting the Most Out of Office 365: Office Online > Office 365 users may wonder about the online versions of the classic Office desktop programs. So how does Office Online measure up, and what is it good for? - Published: 2016-04-21 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-office-online/ - Categories: Microsoft 365, Office - Tags: Getting The Most Out Of Office 365, Office 365, Office Online - Article Type: Overview Office 365 users may wonder about the online versions of the classic Office desktop programs. So how does Office Online measure up, and what is it good for? Getting work done in the cloud is a very real situation for many people, but there are some concessions that need to be made before users can get their work done. Office Online is a free cloud hosted productivity suite built by Microsoft to mirror their core desktop programs. Currently there are online versions of Word, PowerPoint, Excel, and OneNote, which can be accessed via a web browser to view, edit, and create documents. As you may have guessed these web-based Office programs only offer a small fraction of the features and capabilities of the traditional Office programs. Although the web-based versions do lack some features, they are free and accessible from any internet connected computer. If you are an advanced Office user and create sophisticated documents, then there's a good chance you will find Office Online lacking. Missing Features Customization is largely absent from the Office Online suite, and any custom styles or layouts you have used will be missing from the Online Version. A quick comparison between the Insert tabs will show the features that appear in both tools. Although there's an obvious disparity between the Insert tabs, the Home tab on Word Online contains nearly all features of its full desktop cousin. Office Online versus Office 2016 PowerPoint Online has many similarities with Word Online in its feature set. The Home tab is fairly similar to the desktop version of PowerPoint, but all other tabs are greatly reduced in capabilities. Presenting from PowerPoint Online... --- ### PowerShell Problem Solver: What's Installed? > PowerShell expert Jeff Hicks shares his ideas on how to find out if a particular feature or application is running on a server. Is this a problem you have? - Published: 2016-04-20 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-whats-installed/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver - Article Type: How To PowerShell expert Jeff Hicks shares his ideas on how to find out if a particular feature or application is running on a server. Is this a problem you have? In this article, I'll show you how to identify services that have IIS installed. I'm using IIS for the sake of my demonstrations, but you could apply this article to any product or service. One of the first questions to ask is what is an authoritative indicator? There could be more than one, but once you know what to look for, then it's a simple matter of finding the corresponding PowerShell commands to retrieve that information. In the case of IIS, the first thing I would check is if the Web-Server feature is installed using Get-WindowsFeature. Get-WindowsFeature -Name Web* -ComputerName chi-web02 I picked a server that I already knew had this feature installed. Listing web features (Image Credit: Jeff Hicks) You can simplify this type of query by only getting features that are installed. Remember, this looks like fancy text, but there are objects backing it and one of the properties is Installed, which has a Boolean, or True/False value. Get-WindowsFeature -Name Web* -ComputerName chi-web02 | where installed Listing only installed web features (Image Credit: Jeff Hicks) So let's take this idea and scale it out to filter a text list of computers. The only computer names I want to see at the end are those that have the Web-Server feature installed. get-content c:workservers. txt | where { Get-WindowsFeature -Name Web-Server -ComputerName $_ | Where Installed} This gets a little tricky because I have a nested Where-Object statement. If the computer does not have... --- ### Azure Site Recovery Preview in Azure Portal - Published: 2016-04-20 - Modified: 2024-09-04 - URL: https://petri.com/azure-site-recovery-preview-azure-portal/ - Categories: Cloud Computing - Tags: ARM, Azure, Azure Portal, Azure Resource Manager, Azure V2, Disaster Recovery, DR, hybrid cloud - Article Type: Overview Microsoft has launched a public preview of Azure Site Recovery in the Azure Portal. Microsoft recently launched a public preview of Azure Site Recovery with support for the Azure Portal and Azure Resource Manager (ARM). Azure Site Recovery Overview Azure Site Recovery (ASR) is Microsoft's disaster recovery (DR) solution. It offers two kinds of solutions: Orchestration: ASR can manage replication and failover between two privately owned sites, supporting Hyper-V, Hyper-V and System Center Virtual Machine Manager (VMM), vSphere, and SAN. Secondary Site & Orchestration: ASR can supply customers with a DR site in the cloud, in addition to the previously described orchestration service, with support for Hyper-V, System Center, vSphere, and physical servers. Azure Site Recovery has only existed in the old Azure management portal and has only supported ARM deployments via PowerShell. This has caused some issues: Microsoft wants to shift users from the old management portal to the new Azure Portal. They are also keen for customers to adopt ARM instead of Service Management. A critical new distribution and reseller channel called Cloud Solution Provider (CSP) only supports ARM and does not provide support for Service Management. This means that ASR solutions sold via CSP must be deployed and managed by PowerShell only -- and that's an interesting challenge! Public Preview Microsoft recently launched a public preview of a new ASR administration experience. You can create a recovery services vault in the Azure Portal and use it to support Service Management or ARM deployments of ASR. The solution currently supports the following "from site to Azure" scenarios: Hyper-V Hyper-V and System Center VMM vCenter Physical... --- ### Microsoft Announces Free Cloud-Focused Career and Training Resources for IT Pros - Published: 2016-04-20 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-announces-free-cloud-focused-career-training-resources-pros/ - Categories: Cloud Computing - Article Type: News Microsoft announced two free online resources that are designed to help IT pros advance their careers in cloud technologies, such as Microsoft Azure. Today Microsoft announced two new programs that are designed to help IT pros get the most out of their transition into the cloud. The Microsoft IT Pro Cloud Essentials and Microsoft IT Pro Career Center are two free online resources that provides access to cloud services, training, certification and more. A common theme that you might have heard on the Petri IT Knowledgebase is that the cloud is here to stay. With the upcoming release of Windows Server 2016 and its heavy emphasis on containers, which are being described as the next generation of virtualization, it's clear that Microsoft is all-in with the cloud. Furthermore, Microsoft states that IT pros have a great opportunity by adopting cloud technology, where the IDC predicts that IT employment across the globe will grow at four percent every year from 2015 to 2020, where more than one in three IT positions will also be related to the cloud. Microsoft IT Pro Cloud Essentials is a free annual subscription that provides IT pros access to training, support and certification. This free resource includes free Azure credits to try out cloud scenarios, such ones for backup, disaster recovery, security, development and testing, as well as a free Pluralsight subscription for online training. In addition, IT pros all get free priority support in the TechNet forums, free phone support for Azure or on-prem products, and a free certification exam voucher. The free Microsoft IT Pro Career Center is another free resource from Microsoft that provides IT pros... --- ### The Year of Linux is Slowly Approaching with Flavors of Redmond > For fans of Linux who have been holding out that 'next year' will be the time Linux overtakes Windows, it may be closer than you think. - Published: 2016-04-20 - Modified: 2024-09-04 - URL: https://petri.com/year-linux-slowly-approaching-flavors-redmond/ - Categories: Windows 10 - Tags: linux, Windows - Article Type: Opinion For fans of Linux who have been holding out that 'next year' will be the time Linux overtakes Windows, it may be closer than you think. The joke, or possibly not a joke if you drink all the Kool-Aid in the Linux community, is that this year is finally the year that Linux will become popular for desktop users. Those who adore the free and open source desktop platform have been optimistic from one day that one of its many variants would rise above Windows and crush the Redmond-based software in favor of the free alternative. If you are able to separate the idea of what the 'year of Linux' actually is pushing versus only thinking of Linux as a codebase, then the idea that the 'year of the Linux desktop' is actually much closer than many might have thought. Linux fans generally like the operating system for a couple of reasons, it is free, open source, and the end user can change just about any aspect of the operating system if they have the know-how to dig in deep. But, if you look at what Microsoft has done in the past few quarters, then you might notice how the spirit of what Linux users truly want is starting to show up in Windows. Windows 10 is free for those who are upgrading from a modern version of Windows, and it will soon contain Bash (and does right now if you are running an Insider build), the Linux command line of choice, which can be tinkered to your heart's desire if you feel like diving in deep into the registry. Since the company has started shipping new builds of Windows... --- ### Intel to Lay off 12,000 Employees, Restructure for Future - Published: 2016-04-20 - Modified: 2024-09-04 - URL: https://petri.com/intel-lay-off-12000-employees-restructure-future/ - Categories: Hardware - Tags: Intel, News - Article Type: News Intel announced Tuesday that it will reduce its workforce by 11 percent by 12,000 employees. The goal, Intel says, is to reduce its reliance on a PC market that is imploding around it, while enacting long-term change to address the mobile inter-connected world. Intel announced Tuesday that it will reduce its workforce by 11 percent by 12,000 employees. The goal, Intel says, is to reduce its reliance on a PC market that is imploding around it, while enacting long-term change to address the mobile inter-connected world. "Today we are announcing a restructuring initiative that will allow Intel to intensify our investments in the products and technologies that fuel our growth, and drive more profitable mobile and PC businesses," Intel CEO Brian Krzanich wrote in a letter to employees. "We expect that this initiative will result in the reduction of up to 12,000 positions globally. This will be achieved by voluntary and involuntary departures, global site consolidation, and efficiency initiatives. The majority of these actions will be communicated over the next 60 days, with some spanning into 2017. " That Intel's restructuring comes amidst a years-long PC industry downturn is not coincidental: Intel still derives over half of its revenues from sales of chips for PCs. But lost in all the excitement over the job reductions is a strange fact: Intel's latest quarterly results, also announced Tuesday, better than expected. According to Intel, revenues in its first fiscal quarter increased year-over-year, with strong sales of data center and Internet of Things (IoT) chipsets offsetting the challenging PC market. The firm posted net income of $2 billion on revenues of $13. 8 billion in the quarter ending March 31. So what's the problem? Obviously, the PC industry---the future of the PC industry---weighs heavily... --- ### EU Formally Charges Google with Antitrust Violations - Published: 2016-04-20 - Modified: 2024-09-04 - URL: https://petri.com/eu-formally-charges-google-antitrust-violations/ - Categories: Mobile - Tags: Android, Google, News - Article Type: News As expected, the European Union's European Commission formally charged Google with violating antitrust laws by forcing its hardware maker and wireless carrier partners to bundle its own apps and services in the dominant Android mobile OS. Photo credit: Francois Lenoir. Reuters As expected, the European Union's European Commission formally charged Google with violating antitrust laws by forcing its hardware maker and wireless carrier partners to bundle its own apps and services in the dominant Android mobile OS. "Google pursued an overall strategy on mobile devices to protect and expand its dominance on Internet search," European Antitrust Commissioner Margrethe Vestager said in a news conference on Wednesday morning. "Google's behavior has harmed consumers by stifling competition and harming innovation in the wider Internet space. " Naturally, Google disagrees with that assessment and pledged to fight the charges. "Android has helped foster a remarkable and, importantly, sustainable, ecosystem, based on open-source software and open innovation," Google General Counsel Kent Walker said. " demonstrate that Android is good for competition and good for consumers. " The Google charges come a full year after Ms. Vestager revealed that the EC was investigating Android, and it is the second set of antitrust charges her agency has filed against the search giant. According to the charges, Google has violated EU antitrust laws by requiring handset makers to pre-load Google apps and services on their smart phones. For example, Google Chrome is configured as the default web browser---even if the handset maker installs other browsers---and Google Search is configured as the default search engine. This is illegal because Google Search is a monopoly in Europe, and Google is attempting to extend that monopoly artificially by ensuring that all... --- ### Microsoft EMS Components: Microsoft Intune > Learn how you can get a handle on mobile device management with this overview of Microsoft Enterprise Mobility Suite and Microsoft Intune. - Published: 2016-04-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ems-components-microsoft-intune/ - Categories: Mobile, System Center - Tags: Enterprise Mobility Suite, Microsoft EMS, Microsoft Intune, Windows Intune - Article Type: Overview Learn how you can get a handle on mobile device management with this overview of Microsoft Enterprise Mobility Suite and Microsoft Intune. Microsoft Intune (Image Credit: Microsoft) This article is the third in the series "What is Microsoft Mobility Suite? " All enterprises should take advantage of mobility. But what does this mean? How can a company take control of the myriad of devices that are available out there? Even if there were just a few company sanctioned devices and the company were to continually evaluate what the next device should be for deployment, there would always be an exception here and there. There will always be executives that want "their" device to be allowed and not necessarily the one that is company provided. So, what should you do? What is Mobility? Companies define mobility as a set of strategies and policies that define and govern the information in transit or rest but in devices controlled by the company itself. This is easier said than done when companies choose to allow most mobile devices and the workstations being used are in the form of laptops. So, when one talks about mobility, the ageing reference to a smartphone no longer applies. These days, mobility means all devices that can physically leave the premises and thus need to be secured, controlled and compliant. Microsoft Intune is one of Microsoft's cloud software as a service offering and provides a single application that includes a set of tools for device management, mobile application management and PC management. Microsoft Intune offers these capabilities without imposing requirements on the hardware and infrastructure side. In this day and age of... --- ### Resurrecting Windows Phone Mobile - Published: 2016-04-19 - Modified: 2024-09-04 - URL: https://petri.com/resurrecting-windows-phone-mobile/ - Categories: Windows 10 - Article Type: Opinion Aidan Finn outlines his thoughts on how Microsoft can turn its mobile story around. If you're following Microsoft news on Petri. com, Thurrott. com, or podcasts such as Windows Weekly, then you cannot help but feel that Windows Phone is treading on thin ice. In this article, I'll share my thoughts on how Windows 10 Mobile can be resurrected to a have a viable place in the market. Windows Phone's Declining Popularity The recent news about Windows 10 Mobile or Windows Phone is nothing but bad. The biggest advocate I know of Windows Phone is Paul Thurrott, and you know times are bad when he's talking about switching to Android to get the best Microsoft mobile experience. Paul recently wrote that Windows mobile operating systems now have a market share of 1. 1 percent. Even in European markets where Windows Phone has historically done well, even reaching an amazing 14. 5 percent in Italy at one point, the platform has slid in popularity. Terry Myerson, Microsoft's Executive Vice President of the Windows and Devices Group, was interviewed by Tom Warren of The Verge at the company's recent Build conference and dropped this bombshell: Windows 10 Mobile is not a focus for this year. What does that mean? Has Microsoft given up on building a mobile OS? Are they pausing development until the rumored Surface Phone is launched in 2017? It's said that Panos Panay, the hardware engineering lead at Microsoft, is not a fan of what Nokia did with the Lumia. Maybe Microsoft wants to reduce effort on the Lumia platform to make room for a new generation of phones? ... --- ### U.S. Supreme Court Refuses to Hear Google Book Scanning Case - Published: 2016-04-19 - Modified: 2024-09-04 - URL: https://petri.com/u-s-supreme-court-refuses-hear-google-book-scanning-case/ - Categories: Cloud Computing - Tags: Google, Google Search - Article Type: News The U.S. Supreme Court this week refused to hear a challenge to an important Google book scanning lawsuit, leaving an appeals court decision in place. It's just the latest in a long line of reminders of how hands-off the U.S. is with tech giants compared to the EU. The U. S. Supreme Court this week refused to hear a challenge to an important Google book scanning lawsuit, leaving an appeals court decision in place. It's just the latest in a long line of reminders of how hands-off the U. S. is with tech giants compared to the EU. As I noted yesterday in Google is Under Legal Fire on Multiple Fronts, the search giant faces a barrage of legal complaints in Europe, including some that will almost certainly result in formal antitrust charges. Here in the U. S. , however, Google has continuously escaped legal action, even when it was found to have repeatedly violated U. S. antitrust laws. Google's book scanning case isn't part of a conspiracy, and the U. S. government isn't working in lockstep to protect a home-grown monopolist. But it's troubling when a company with Google's market dominance can simply walk away from clearly illegal business practices, as in the above-cited case. Or escape a meaningful examination of a legal gray area, as in this case. As a quick reminder, Google started scanning books in 2004, and eventually scanned over 20 million volumes, providing search results directly from the scanned books. The Authors Guild and various authors sued Google in 2005, claiming that this scanning was illegal, since Google Search and Google Books were commercial ventures. Google argued, naturally, that the scanning constituted fair use. "Google Books gives readers a dramatically new way to find books of interest," a Google legal brief explains. "By formulating their own text... --- ### Microsoft's Azure Container Service Reaches General Availability - Published: 2016-04-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-azure-container-service-reaches-general-availability/ - Categories: Microsoft Azure - Tags: Azure, Azure Container Service, News - Article Type: News Microsoft has announced the general availability of the Azure Container Service that allows you to use open source software with their cloud platform. Microsoft is announcing today the general availability of the Azure Container Service that the company believes is the most open and flexible way to run your container applications. With today's announcement, the company believes that its container service is ready for production environments. As containers grow in popularity and more companies use them for running applications in the cloud, managing the workload complexity increases exponentially when trying to scale out a service. Because the traditional hands-on approach for this new type of environment is not as effective as traditional scaling, Microsoft built Azure Container Service. This new tool, the company says, addresses the scale and growth challenges presented by containers by providing simplified open source container orchestration technology that's optimized to run in Azure. The company believes that they have built the best way to get the benefits of running container applications using your choice of open source technology and software. While not every user of Azure may be adopting the Azure Container Service, this is an important release for the company as containers are quickly growing in popularity. By making sure that Azure is ready to accept containers from nearly any vendors and application, it positions the company's cloud platform for growth with this specific user-base. Seeing as Azure is the driving force behind Microsoft's growth and stock price, it will be important to pay close attention to the company's earnings release on Thursday to see how Azure has performed financially in the last quarter. You can read more about the new... --- ### Is it safe to store sensitive information in the cloud? > A look at some real and irrational fears connected to cloud adoption and security. - Published: 2016-04-18 - Modified: 2024-09-04 - URL: https://petri.com/is-it-safe-to-store-sensitive-information-in-the-cloud/ - Categories: Cloud Computing - Tags: Azure, Cloud, Security - Article Type: Opinion The seamlessly ending possibilities of cloud computing have changed the way we use the Internet. But with new possibilities come new problems, and security concerns have rightly been highlighted as a potential deal breaker when it comes to deploying cloud services. The seamlessly endless possibilities of cloud computing have changed the way we use the Internet. But with new possibilities come new problems, and security concerns have rightly been highlighted as a potential deal breaker when it comes to deploying cloud services. But just like virtual desktop infrastructure (VDI) before it, there's also -- as Gartner would put it -- mass media hype involved, not so much in the technology behind the cloud, but in the term itself from a marketing perspective. Azure Disk Encryption (Image Credit: Microsoft) Much of the backend technology we used, and still use, before the cloud revolution isn't that different from today's. And on that note, it's worth looking at an example of pre-cloud tech (email) and cloud storage -- think Dropbox and OneDrive. Let's take OneDrive as an example, the consumer cloud storage service built-in to Windows 10. I've noticed that some avoid using OneDrive to store personal documents, such as scanned copies of passports, bank statements and other official documents, and that's perfectly valid. But at the same time, those same people are happy to send their scanned passport via email. It appears that there's a fundamental misunderstanding of how email works if it's considered safer than cloud storage. Maybe emailed documents are magically beamed to the recipient without ever being stored on a server somewhere? Or a simple username and password can't be used to hack email? If you're happy to email a copy of your passport, then... --- ### Anatomy of a Microsoft Azure Virtual Machine > Understanding the basics of a Microsoft Azure virtual machine makes it easier to not only design and price virtual machines, but also lends itself to troubleshooting machines that go wrong. - Published: 2016-04-18 - Modified: 2024-09-04 - URL: https://petri.com/anatomy-of-an-azure-virtual-machine/ - Categories: Microsoft Azure - Tags: Azure, Azure Virtual Machine, virtual machine, Virtualization - Article Type: Overview Understanding the basics of a Microsoft Azure virtual machine makes it easier to not only design and price virtual machines, but also lends itself to troubleshooting machines that go wrong. I find it important to understand the basic makeup of an Azure virtual machine. Understanding the basics not only helps you understand how to design and price virtual machines, but the knowledge also lends itself to troubleshooting machines that go wrong. In this post, I'll explain at a high level how a virtual machine is made up in Azure. Understanding that Microsoft Azure is Hyper-V The first thing to understand is that Azure is based on Windows Server 2012 Hyper-V, and no, I did not say Windows Server 2012 R2. Virtual machines in Azure are essentially the same as the ones you get with Hyper-V and aren't that similar in concept as to what you get with vSphere. If you understand Hyper-V, then some concepts will be familiar. For example, it's required that any virtual machine running in Azure that will be a domain controller has a data disk to store the Active Directory database and SysVol; veteran Hyper-V administrators will be familiar with this advice from Microsoft. Virtual Disks If you've ever worked with a virtual machine with on-premises virtualization, then you will be familiar with the concept of virtual disks. An Azure virtual machine is made up of metadata and virtual hard disks (Image Credit: Aidan Finn) Instead of physical disks, which then make LUNs, a virtual machine uses virtual hard disks. In the world of Hyper-V, we have VHD and VHDX formats that  can be either fixed-size, dynamic, or differential. Azure supports only fixed-size VHD format... --- ### Intel’s New Low-Cost PC Platform Lays the Foundation for a Surface 4 - Published: 2016-04-18 - Modified: 2024-09-04 - URL: https://petri.com/intels-new-low-cost-pc-platform-lays-foundation-surface-4/ - Categories: Hardware - Tags: News, Surface 4 - Article Type: News Intel has announced a new low-cost PC platform which will likely power the Surface 4 but the chips will not be available until later this year. With the Surface 3 now over a year old, it's a natural thought to wonder when the company will replace the aging device. While it would be nice if the company could release hardware updates on a yearly basis, Microsoft, like other OEMs, is at the mercy of Intel and their release cadence. Seeing as it makes little sense to release a Surface 4 with the same chip powering the device as the last generation, Microsoft is likely waiting until the next Intel silicon to hit the market and now we have a better look what Intel has been working on. Intel has announced their now low-cost platform called Apollo Lake for the next generation of Atom-based notebooks (you can read about all the features of the new chips at AnandTech) that includes new x86 microarchitecture and updates to the graphics card that will boost performance. Seeing as this is from the same chipset family that the Surface 3 uses, we can assume that this would be the used chipset if Microsoft does release a Surface 4. Intel says, to no surprise, that these new chips are better in every aspect over the current Atom chips with what looks like large gains on the graphics side of the equation too. These new chips can support 4K video playback, DDR4, DDR3L and LPDDR3/4 memory (OEMs have options here to help keep cost down), and for storage SATA drives, PCIe x4 drives and eMMC 5. 0 option. Crucially, these new chips also support... --- ### Google is Under Legal Fire on Multiple Fronts - Published: 2016-04-18 - Modified: 2024-09-04 - URL: https://petri.com/google-legal-fire-multiple-fronts/ - Categories: Cloud Computing - Tags: Android, Google, Google Search, News - Article Type: News Like Microsoft before it, Google is discovering that domination has its downsides: The search giant is now under legal fire on multiple fronts, each of which could deal Google major setbacks. Like Microsoft before it, Google is discovering that domination has its downsides: The search giant is now under legal fire on multiple fronts, each of which could deal Google major setbacks. First up is a long-running patent infringement lawsuit over Google's use of Java in its dominant Android mobile OS. This case was adopted by Oracle when the database giant purchased Java owner Sun Microsystems in 2010, but if anything Oracle has only stepped up the pressure: It alleges that Google has copied key parts of Java and avoided paying licensing fees for the Java environment, which is core to Android and the apps which run on this system. The Oracle/Java case is stalled court, with a jury deadlocked over whether Google's use of Java APIs was Fair Use. With the case set for a retrial, senior executives from both firms met over this past weekend to see whether they could reach a settlement. They could not. "After an earlier run at settling this case failed, the court observed that some cases just need to be tried," U. S. Magistrate Judge Paul Grewal wrote in a filing describing the talks. "This case apparently needs to be tried twice. " The talks involved both Google CEO Sundar Pichai---who notably had led Google's Android business before assuming the CEO role---and Oracle CEO Safra Catz. Oracle seeks $8 billion in damages, but with Google signaling it is now moving Android off Java---it may even adopt Apple's open source Swift language now---a future victory could by... --- ### Paul Thurrott's Short Takes: April 15 - Published: 2016-04-15 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-15/ - Categories: Mobile - Tags: News - Article Type: Opinion Because I'm stuck in meetings and dying on the inside, this edition of Short Takes focuses on a new Microsoft bot, warnings about using QuickTime on Windows, HTC 10, the U.S. D.O.D. advises its employees to use Windows 10 at home too, Microsoft's Word Flow keyboard is coming to iPhone, and more. Because I'm stuck in meetings and dying on the inside, this edition of Short Takes focuses on a new Microsoft bot, warnings about using QuickTime on Windows, HTC 10, the U. S. D. O. D. advises its employees to use Windows 10 at home too, Microsoft's Word Flow keyboard is coming to iPhone, and more. Microsoft bot "still learning" And apparently what it's learning is not to be like Hitler. A few weeks after Microsoft's embarrassing Tay. ai chat bot defeat at the hands of racists and other haters on Twitter, Microsoft says that work improving the bot is ongoing. Part of that work involves a new bot called Captionbot that has a less lofty ambition: This one just analyzes an image and tells you what it sees. The joksters that they are, CNN Money pushed several images of Hitler at the bot, because, you know. It often came back with "I really can't describe the picture" and a confused emoji, CNN reported. Proving that, yes, Microsoft can learn. U. S. government warns Windows users to stop using QuickTime Which has been good advice since, well, forever. But with Apple this week refusing to fix a vulnerability in its QuickTime product---they just get security, folks---the U. S. government is recommending that Windows PC users uninstall the software. "Everyone should uninstall QuickTime for Windows as soon as possible," a Trend Micro security bulletin notes. "Apple will no longer be issuing security updates for the product on the Windows Platform and two new,... --- ### Accelerate Your IT Transformation with the Right Services Partner - Published: 2016-04-15 - Modified: 2024-11-19 - URL: https://petri.com/accelerate-transformation-journey-hewlett-packard-enterprise/ - Categories: Cloud Computing - Tags: sponsored - Article Type: Opinion Transforming an existing IT infrastructure into a more agile one that supports an increasingly digital business environment is no easy task. Learn several different tips on choosing a service partner that not only works for you, but can also tailor your infrastructure based on business needs. Sponsored IT content provided by Hewlett Packard Enterprise Over the last two decades, a number of technology trends have impacted the world of enterprise IT. To name a few: Cloud computing, the Bring Your Own Device (BYOD) phenomenon, the advent of DevOps and “infrastructure as code,” and server and application virtualization, which are now joined by containers. The time it takes to get an idea from conception to a shipping product or service and generating revenue is also now shorter than ever. IT departments have to help their companies adapt to these new competitive pressures by becoming faster, more agile, and becoming a driving force for change across the organization. Granted, startups and small companies sometimes have the luxury of creating an IT infrastructure from a clean slate using only the latest cloud and hybrid IT services and technologies -- think Office 365 and Skype for Business -- but the challenge for IT leaders at mid-to-large enterprises is that many still have to maintain legacy IT assets. This means employing an IT infrastructure transformation strategy that can simultaneously accommodate essential legacy apps and services to keep the business running, yet still embrace the flexibility of the cloud to deliver new services to the business. Legacy resources often have outdated technology requirements or brittle, inefficient dependencies -- such as outdated web browsers, legacy development platforms, or other out-of-date technologies -- that limit organizational choices and often leave users with inefficient, unproductive work experiences. Making the best IT infrastructure decisions... --- ### Microsoft Sues the U.S. Government Over Secrecy Orders - Published: 2016-04-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-sues-u-s-government-secrecy-orders/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft this week filed a federal lawsuit against the U.S. Department of Justice, alleging that the agency's growing use of secrecy orders violates its rights, and its customers' rights. Furthermore, Microsoft states that the legal statue that enables such secrecy orders is itself unconstitutional. Microsoft this week filed a federal lawsuit against the U. S. Department of Justice, alleging that the agency's growing use of secrecy orders violates its rights, and its customers' rights. Furthermore, Microsoft states that the legal statue that enables such secrecy orders is itself unconstitutional. "People should not lose their rights just because they are storing their information in the cloud," Microsoft president and chief legal offer Brad Smith told The New York Times. While Apple has belatedly but very visibly entered the fight against ever-increasing government intrusion into personal privacy, Microsoft has in fact been pushing back for years. But Microsoft has an advantage Apple lacks: Rather than tie its fight to a single court case in which it is clearly in the wrong, Microsoft is instead broadly challenging the legal process behind many, many cases. Microsoft says this is an issue of fundamental rights. "We believe that with rare exceptions consumers and businesses have a right to know when the government accesses their emails or records," Mr. Smith writes in a post to the Microsoft On The Issues blog. "Yet it’s becoming routine for the U. S. government to issue orders that require email providers to keep these types of legal demands secret. We believe that this goes too far and we are asking the courts to address the situation. " As described by Mr. Smith, the U. S. government has been increasingly relying on a gag order statute in the Electronic Communications Privacy Act of 1986 to secretly... --- ### Using Microsoft Azure Resource Explorer to Debug VM Deployment Errors - Published: 2016-04-14 - Modified: 2024-09-04 - URL: https://petri.com/using-microsoft-azure-resource-explorer-to-debug-vm-deployment-errors/ - Categories: Microsoft Azure - Article Type: How To Learn how to debug errors when deploying Azure VMs using PowerShell. In today's Ask the Admin, I'll show you how to use Azure's Resource Explorer to debug errors when deploying ARM-based virtual machines using PowerShell. One of the biggest frustrations of using PowerShell to deploy VMs in Azure is the lack of information in error messages. This is a frequent compliant of Unix administrators when they start dabbling in Windows -- not only are error messages somewhat cryptic, but often don't contain enough information to solve the problem. Error message from the Azure PowerShell module (Image Credit: Russell Smith) I've recently been updating my Azure PowerShell scripts to work with the new Resource Manager deployment model, and although there's a lot more flexibility when compared to classic mode deployment, the code needed to put all the necessary resources into place is more complicated than what was previously required. As part of the process, I've naturally had to debug some issues. Most of which were due to 'human error' in the script syntax that could be easily corrected. However, I did come across a problem deploying a new VM to a storage account that was already in use, receiving an error from the New-AzureRmVm cmdlet: Long running operating failed with status 'Failed. ' Not incredibly useful. Some more information was included however: ErrorCode: DiskPreperationError ErrorMessage: One or more errors occurred while preparing VM disks. See disk instance view for details. There are some key points to understand here. This error doesn't occur if the storage account is new... --- ### Visual Studio Code Arrives At 1.0 With 500,000 Monthly Active Users - Published: 2016-04-14 - Modified: 2024-09-04 - URL: https://petri.com/visual-studio-code-arrives-1-0-500000-monthly-active-users/ - Categories: Visual Studio - Tags: News, Visual Studio Code - Article Type: News Microsoft's Visual Studio Code platform has reached milestone 1.0 and it currently has 500,000 monthly active users and 1,000 extensions. Microsoft is announcing today that Visual Studio Code has reached version 1. 0 and that the product has been a huge success with developers. Since the tool was announced, more than 2 million developers have installed VS Code and more than 500,000 developers actively use the tool each month. Visual Studio Code started out as an experiment with Microsoft attempting to build a production quality editor using modern web technologies and the results speak for themselves. The product was initially built for developers creating web apps using JavaScript and TypeScript but in less than six months, more than 1000 extensions have been built for the tool. Now, Visual Studio Code provides support for nearly any language or runtime and is available in nine different languages and at the 1. 0 stage, comes with full keyboard navigation and screen reading and accessible navigation for visually impaired developers. One of the key benefits of this tool is that it is only 40MB which means it is easy to install and run in lightweight environments or low power environments. Visual Studio Code is in some ways, representative Microsoft as a company; the app runs on Linux, OS X, and Windows, is free and utilizes a modern environment. Much like the rest of the company's applications and services, Visual Studio Code works where you do which is symbolic of how Microsoft has transformed how it operates with apps on every platform, embracing open source, and offering up quite a bit of its software for free. If you haven’t... --- ### Blue Whale Web Acquires IT Unity and NC Communications, Joining Petri and Thurrott - Published: 2016-04-14 - Modified: 2024-09-04 - URL: https://petri.com/blue-whale-web-acquires-unity-nc-communications-joining-petri-thurrott/ - Categories: Main - Tags: Blue Whale Web - Article Type: News Blue Whale Web has acquired two companies that will be joining Petri and Thurrott; these two communities will help to provide additional content and educational resources to our readers. Today, I am excited to announce that Blue Whale Web is acquiring IT Unity and NC Communications; these two communities will be joining the Petri. com and Thurrott. com family and will help to provide additional content and educational resources to our readers. So who are these companies joining us? IT Unity provides technical articles, online conferences, news, and webinars that empower the community to maximize the value of SharePoint and Office 365. NC Communications produces Europe's premier SharePoint and Office 365 conference, Unity Connect, in collaboration with IT Unity. In 2016, IT Unity and NC Communications will be hosting several conferences that are worth checking out: Unity Connect Online: June 20-23 SEF Unity Connect, Stockholm, Sweden: 26-28 October Unity Connect, Haarlem, Netherlands: 16-18 November With the acquisition, the Blue Whale Web family is growing, and I'd like to welcome Megan Keller, Erik Ruthruff, Jacquelyn Baillie, Lyman Goodrich, Chris Moore, plus Irene and Nigel Clapham to the family. George Coll, CEO of Blue Whale Web, will lead the combined organization, and we would like to congratulate Dan Holme on his move to Microsoft. Prior to the acquisition and after successfully leading IT Unity from its inception two years ago, Dan Holme, co-founder and CEO of IT Unity, joined Microsoft as Director of Product Marketing for SharePoint on April 4, 2016. We wish him well and look forward to continuing to work with him as the IT Unity team pursues his vision. It's an exciting time at Blue Whale Web as we continue... --- ### Microsoft is Bringing New Educational Features to Windows 10 with Anniversary Update - Published: 2016-04-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bringing-new-educational-features-windows-10-anniversary-update/ - Categories: Windows 10 - Tags: education, News, Windows 10 - Article Type: News When Microsoft released the Anniversary update for Windows 10 this summer, they will be including several new features targeted at the education sector. This summer, Microsoft will be releasing a new update for Windows 10 called the Anniversary Update. While the company announced several features at its Build event and even more in the sessions after the keynote, the company is now talking about some of the updates for those in the education sector. To help tackle some of the big issues educators face, such as where it can take too long for students who share devices to get up and running with that day's lesson plan or the fact that 50 percent of teachers serve as their own tech support in the classroom, Microsoft is introducing new tools for educators. The Anniversary update simplifies the deployment process, which will allow teachers to set up devices in three steps with a new app called 'Set up School PCs' app. This app is designed for environments that have no dedicated IT support and will help teacher's setup a classroom PC very quickly. Microsoft is also going to release a 'Take a Test,' app which is a new secure way for administering tests and quizzes and can pair with the teacher's preferred assessment website, too. In the case for high-stake tests, the app can utilize a browser-based, locked-down environment for more secure, online assessments, for tests that shouldn't have copy/paste privileges, access to files, or other distractions. In short, Microsoft is making it easier for teachers to administer testing using a Windows PC with controls being built in to prevent cheating and outside distractions. If a... --- ### PowerShell Problem Solver: Finding Empty Organizational Units in Active Directory > PowerShell MVP Jeff Hicks demonstrates how to find and remove empty Active Directory organizational units with simple PowerShell scripts. - Published: 2016-04-13 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-finding-empty-organizational-units-active-directory/ - Categories: PowerShell - Tags: Advanced, Scripting PowerShell MVP Jeff Hicks demonstrates how to find and remove empty Active Directory organizational units with simple PowerShell scripts. You might have encountered the problem of finding all of the empty and unused organizational units (OUs) in your Active Directory domain. Depending on the size and complexity of your domain, this could be a thankless job. But let's see how PowerShell can help. If you missed them, you might take a few minutes to read the previous articles I wrote about managing OUs with PowerShell and the Active Directory module, as we will be using some of the same cmdlets and concepts. I suppose we might have a differing opinion about what constitutes an empty OU. At the very least, I would define an empty OU as one that doesn't contain any users, group, computers or other AD objects anywhere in the OU hierarchy. It's possible that a top-level OU is empty except for a child OU, which contains several user accounts. I wouldn't want to identify that top-level OU as empty, but I would want to catch another child OU that had nothing in it. I'm going to start with an OU that I know is completely empty. Get-ADOrganizationalUnit -filter "Name -like 'Empty*'" Unfortunately, there's no property that would help indicate if it contains any child objects. This means I'll have to manually search the OU for objects. I can use Get-ADObject and specify the OU as the SearchBase. $ou = Get-ADOrganizationalUnit -filter "Name -like 'Empty*'" Get-ADObject -filter * -SearchBase $ou Getting an OU (Image Credit: Jeff Hicks) I'm not sure that will completely help... --- ### Attack of the Chatbots - Published: 2016-04-13 - Modified: 2024-09-04 - URL: https://petri.com/attack-of-the-chatbots/ - Categories: Cloud Computing - Tags: Facebook - Article Type: News Hot on the heels of Microsoft's recent announcement about its Bot Framework, Facebook this week revealed that it too would pervasively expand into bots, in this case with its popular Messenger app. Hot on the heels of Microsoft's recent announcement about its Bot Framework, Facebook this week revealed that it too would pervasively expand into bots, in this case with its popular Messenger app. This isn't hot air: While the notion of "chatting" with an AI-based back-end---a "bot"---may seem odd to people of a certain age, it's a very natural form of communication for millennials and younger people. And it's also the beginning of a coming wave of natural interactions which of course includes voice-based conversations. Soon, if you can say it, or type it, you can get it done. You can see this change in a range of products, from the Alexa-based Amazon Echo to personal digital assistants like Cortana, Siri and Google Now. What they all have in common is this notion of natural language interactions, of having "conversations" with an AI intelligence in order to complete some task. These tasks can range from the basic---"Alexa, what's the weather? "---to more fully-formed and complex conversations. On the PC desktop, for example, you can set a reminder using Cortana for Windows 10 and Microsoft's digital personal assistant will prompt you to provide more detail or to ensure that she has correctly understood what you wanted. But these conversations will begin happening anywhere you'll already having conversations. And chat applications like Facebook Messenger---which is closing in on a user base of 1 billion strong---are emerging as the next battleground. Why? Because these apps are collectively the next major platform... . --- ### Microsoft Releases OneDrive For Business Update, New Features Coming Later This Year - Published: 2016-04-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-onedrive-business-updates-rolling-today/ - Categories: Microsoft 365 - Tags: News, OneDrive for Business - Article Type: News Microsoft has announced several new features for OneDrive for Business that are rolling out today as well as features coming later this year. In December 2015, Microsoft released the first iteration of their 'Next Generation Sync Client,' which the company now calls OneDrive sync client. This tool significantly improved the performance and reliability of syncing large quantities of content to the cloud storage service, and today the company announced several new features for the service. Starting today, the company is rolling out updates for the client that should address the most common feedback they received from those using the service. With this release, the following features and enhancements have been added: Windows 8. 1 support -- This completes our commitment around Windows OS support (7, 8, 8. 1 and 10). Office 2016 integration -- In conjunction with an Office 2016 update currently rolling out, key features such as real-time co-authoring, open documents from the Most Recent list and share documents from within the Office app will be available. Improved setup -- Now it's easy for anyone to get and install the new OneDrive sync client. No more registry keys needed on Windows or Terminal window on Mac! Seamless client migration -- If you are running the previous sync client (groove. exe), this update seamlessly transitions without requiring a resync. For full details go here. Pause sync -- A handy feature when you want to suspend syncing for a period of time, like when you are tethered to your phone or using Wi-Fi on an airplane. View files online -- You can now right click any document in Windows Explorer and select “view online” to navigate to the OneDrive... --- ### What's New in Remote Desktop in Windows Server 2016 > In today's Ask the Admin, I'll give you a quick rundown of the new Remote Desktop Services (RDS) features coming in Windows Server 2016. - Published: 2016-04-12 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-remote-desktop-in-windows-server-2016/ - Categories: Windows Server 2016 - Tags: Remote Desktop, Windows 10, Windows Server 2016 - Article Type: Overview In today's Ask the Admin, Russell Smith gives us a quick rundown of the new Remote Desktop Services (RDS) features coming in Windows Server 2016. In today's Ask the Admin, I'll give you a quick rundown of the new Remote Desktop Services (RDS) features coming in Windows Server 2016. Remote Desktop Services, sometimes referred to as terminal services, is a collection of role services in Windows Server that provides users access to remote desktops, apps, and integration with Hyper-V based virtual desktop infrastructures (VDI). Windows Server 2016 will bring some key changes to improve graphics performance and pen input options. Remote Desktop Protocol (RDP) 10 graphics improvements Terminal services has traditionally not been suitable for use with graphics-heaving applications, and as displays get larger with higher resolutions, the challenge of processing graphics data and transferring more information across the network becomes even greater. But changes in Windows 10 and Windows Server 2016 aim to improve support for high resolution displays and graphics-intensive applications. It’s worth noting that many of the new features require Windows 10 Enterprise on the remote client and Windows Server 2016 running on a device with a RemoteFX compatible GPU. OpenGL 4. 4 and OpenCL 1. 1 Graphics-intensive apps, such as Photoshop and Maya, require OpenGL 4. 4 and OpenCL 1. 1 API support. In Windows Server 2016, Hyper-V VMs running on a RemoteFX compatible GPU support these APIs. Previously, only OpenGL 1. 1 with CPU acceleration was supported. AVC/H. 264 AVC 444 mode Used by RemoteFX Media Streaming to remote video content from server to client, Windows Server 2016 extends existing support for AVC/H. 264 to include AVC 444 mode, which allows the use of 4:4:4... --- ### Microsoft EMS Components: Azure Active Directory > What is Azure Active Directory, and why is it convenient for the enterprise? In this post, we take a closer look at the feature. - Published: 2016-04-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ems-components-azure-active-directory/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Azure Active Directory, Enterprise Mobility Suite, SaaS, SSO - Article Type: Overview What is Azure Active Directory, and why is it convenient for the enterprise? In this post, we take a closer look at the feature. This article is the second in the series and follows "What is Microsoft Enterprise Mobility Suite. " In this article, I'll review Azure Active Directory and explain why it's convenient for the enterprise. Azure Active Directory (AAD) is the cloud implementation of Microsoft's widely adopted domain credentialing system included with Windows Server. In Microsoft Enterprise Mobility Suite, Azure Active Directory is the glue that helps all other components work together. Key Features of Azure Active Directory Throughout the years, identity management has become increasingly more complex. In an on premise implementation, all passwords can be easily controlled and made legally compliant. When everyone brings their own device and uses all sorts of services, keeping that control is a major challenge. Azure Active Directory can be integrated to the existing Active Directory used on premise and thus be extended to the thousands of SaaS available with SSO integration. As a result, users no longer need to keep credentials for the domain AND each of the individual SaaS they use. Central Management Just like its on premise counterpart; AAD allows for administration in a single environment. While the administrators may be as distributed as the enterprise needs them to be, the tool they use is cloud based and central to all admins. Azure Active Directory can be implemented as a standalone Active Directory solution that runs the credentialing for the enterprise, or as a hybrid implementation where it syncs up with the Windows Server Active Directory solution running on the enterprise's... --- ### Surface 3, A Year Later - Published: 2016-04-12 - Modified: 2024-09-04 - URL: https://petri.com/surface-3-year-later/ - Categories: Hardware - Tags: Surface 3 - Article Type: Review It was over a year ago that Microsoft released the Surface 3, and it is worth taking a second look at the entry-level device. It was over a year ago that Microsoft introduced the Surface 3, a lower-cost option to the Surface Pro 3. With a year now behind the device, it's time to take another look at smaller Surface tablet. The device was introduced after the Surface 2 RT and represented a new start at the lower-end of the Surface spectrum that was not running on an ARM based processor. Using the new, at that time, Intel Atom Cherry Trail chip, Microsoft looked to position the device as a lower-powered brother to the Pro 3 at a more palatable price of $499. Unlike the Surface Pro 4 and Surface Book, the release of the Surface 3 was not marred by any major chipset issues that impacted performance or sleep. But, the company has released several firmware updates that have improved stability and ironed out any issues that did arise during the first year of availability. If you do have one of these devices and haven't upgraded to Windows 10, it is highly recommended. The early, pre-release builds of Windows 10 were unstable on the device, but since the OS reached RTM last July, it has been mostly smooth sailing. Seeing as the chip is an Intel Atom, performance was never a strong point of the tablet, but it still performs adequately running Windows 10. The device was never targeted at power-users and for basic tasks, such as email, web browsing, and Office, the Surface 3 tackles these challenges without any issues. With that being... --- ### PC Sales Continue to Free Fall - Published: 2016-04-12 - Modified: 2024-11-19 - URL: https://petri.com/pcs-sales-continue-free-fall/ - Categories: Windows 10 - Tags: News - Article Type: News Despite constant assurances that the PC market will eventually right itself, PC makers sold far fewer PCs in the first quarter than they did a year ago. Researchers from both Gartner and IDC blamed a variety of factors for the ongoing collapse. Despite constant assurances that the PC market will eventually right itself, PC makers sold far fewer PCs in the first quarter than they did a year ago. Researchers from both Gartner and IDC blamed a variety of factors for the ongoing collapse. "PCs are not being adopted in new households as they were in the past, especially in emerging markets," Gartner noted. "In these markets, smartphones are the priority. " "In the short term, the PC market must still grapple with limited consumer interest and competition from other infrastructure upgrades in the commercial market," IDC research manager Jay Chou said. We've heard that one before. Like a procrastinating teenager, it seems that promises of a PC market revival are always being pushed ever further into the future. Using an average of Gartner and IDC estimates as always, we see that PC makers sold a bit under 63 million units in Q1 2016, well below the 70 million units sold in the same quarter in 2015. Worldwide, the mix of PC makers at the top hasn't changed much in the past year. Lenovo is still holding on to a small lead over number PC maker HP, with about 19. 5 percent market share compared to HP's 18. 4 percent. Dell remains in third, followed by ASUS and then Apple. But the biggest PC makers each experienced big unit sales drop-offs in the quarter. Lenovo's 12. 3 million units are down about 7 percent year-over-year, while HP, which sold 11. 5 million units,... --- ### Opinion: Are bots the new apps? - Published: 2016-04-11 - Modified: 2024-09-04 - URL: https://petri.com/opinion-bots-new-apps/ - Categories: Cloud Computing - Tags: bots, Cloud, Cortana - Article Type: Opinion Is there a bot for that? At Microsoft's Build conference in San Francisco, Microsoft CEO Satya Nadella took to the stage and announced that 'bots are the new apps.' Not to be confused with illegal botnets, which work collectively in distributed systems to recruit innocent Internet-connected devices, bots can also be put to good use to automate mundane tasks. One example is how Google uses bots to crawl the Internet to discover new and updated pages to add to its search index. And while chatbots are also not new, Microsoft revealed its plans to offer the conversation as a framework, allowing developers to build bots in any language that interact with people using natural language. Microsoft demonstrated a bot that lets you order pizza of any kind, and there are several preview bots available for Skype in selected regions that make it easy to tap into expertise, products and services as part of a chat. Facebook and Slack are also getting in on the game, with Facebook betting big that messaging will be the biggest trend in social networking, and is looking to integrate chatbots and other services into its Messenger app to provide a one-stop shop. Imagine a scenario where you ask Cortana or Facebook Messenger to arrange a trip. Using some default preferences and information you provide, travel and accommodation options could be booked, or a series of options presented. These friendly bots would operate more like personal agents that work on your behalf as opposed to bots favoring corporations looking to extract every cent. Today we rely on downloading apps for each service, and each task in a project is carried out separately without... --- ### Microsoft’s Updating The BSOD To Make It Slightly Less Painful - Published: 2016-04-11 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-testing-way-make-bsods-slightly-less-painful/ - Categories: Windows 10 - Tags: BSOD, Windows 10 - Article Type: News Microsoft is testing a way to improve the BSOD experience in Windows 10 to give the end user a few more clues about what caused the crash. We have all been there, you are working on something important and your machine displays the dreaded BSOD (or sometimes the Pink Screen Of Death in my case). While this scenario is never enjoyable, Microsoft is testing a way to make the experience slightly less painful. It looks like the company is going to start attaching QR codes to the blue screens of death, as you can see in the image below. The screen shot comes from a user on Reddit (Image credit goes to javelinnl), spotted by Neowin, and if you scan the code, it takes you to this page. At this time, that page is useless for anyone who has more than small amount of Windows troubleshooting knowledge, as it only offers basic tips about how to avoid these types of problems. But, if the company starts embedding QR codes that are linked to the specific problem (hardware, driver, ect. ), then this feature could be quite useful as you no longer need to write down the error code. I was able to force my Surface Pro 4 into a BSOD scenario with the latest Windows 10 Insider build (deleting processes from Task manager until it crashed), and while my machine did not show a QR code, it did show the URL that the code in the image above links to (another user is also reporting that they have QR codes in their BSODs). The company frequently A/B tests these types of features, so it is not a big surprise that it's not... --- ### How to Customize Routing in Microsoft Azure - Published: 2016-04-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-customize-routing-microsoft-azure/ - Categories: Microsoft Azure - Article Type: Overview If you deploy a network service in an Azure virtual machine, then the default virtual network routing will need to be modified. This post will explain why you will need to use User Defined Routing. In this article, I'll explain how you can customize network routing for Azure virtual machines on, from, and to a virtual network. How Routing Works by Default In a fairly normal deployment of virtual machines, Azure uses a number of system routes to direct network traffic between virtual machines, on-premises networks, and the Internet. The following situations are managed by these system routes: Traffic between VMs in the same subnet. Between VMs in different subnets in the same virtual network. Data flow from VMs to the Internet. Allowing virtual machines to communicate with each other via a Vnet-to-Vnet VPN. Enabling virtual machines to route to your on-premises network via a gateway (site-to-site VPN or ExpressRoute). Every subnet in a virtual network is associated with a rout table that enables the above flow of data. This table can be comprised of three system route rules: Local vNet Rule: Every subnet has this rule, which informs virtual machines that there is no hop (gateway) to machines in the same network. On-premises Rule: A gateway enables connectivity to other networks outside of a virtual network, such as other virtual networks or the on-premises network(s). Use of local networks defines what those networks are -- consider local networks are your method for defining this kind of rule. Internet Rule: All traffic that is destined for the Internet is managed by this rule by default. The Need to Customize Routing A lot of deployments will never require routing customization, but there are scenarios where... --- ### Microsoft Details How to Use Your Phone to Log into Windows 10 - Published: 2016-04-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-details-use-phone-log-into-windows-10-pc/ - Categories: Windows 10 - Tags: Authentication, Windows 10 - Article Type: News Microsoft has released documentation that dives deep into how the company plans to let you use your phone to authenticate to your PC. Over the weekend, Microsoft released a Windows 10 roadmap that highlights newly released features and a few that will be arriving in the near future. One such feature is the ability to unlock your PC with your phone, and the company has detailed how this process will work. On MSDN, Microsoft goes deep into detail about how the process will work, the framework that is being utilized, and the security measures that are in place to make sure the remote device is authenticated to the PC. The company also provides use cases, how to register and unregister a device, and nearly everything else you will need to know if you plan on implementing this functionality at your workplace. The communication and authentication between the devices uses the new credential provider in Windows 10; this service is responsible for launching the companion device background task via an activation flag. One of the unique things that can be done is that a device vendor or OEM can implement a web service to roam across all the users' Windows 10 devices; this means you don't have to register your phone with every PC and tablet that you own. If a web service is not provided, then the user will have to register their phone with each Windows 10 device they wish to use with this feature. Being able to use your phone to unlock your PC will give users yet another way to login to their computer, which should help keep your PC secure as you... --- ### Microsoft Comes Out in Support of the EU-U.S. Privacy Shield - Published: 2016-04-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-comes-support-eu-u-s-privacy-shield/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft this morning announced its support for the EU-U.S. Privacy Shield, which is designed to safeguard privacy as data is electronically transferred between the two jurisdictions. Put simply, the framework would require that these data protections will be identical to those within the EU. Microsoft this morning announced its support for the EU-U. S. Privacy Shield, which is designed to safeguard privacy as data is electronically transferred between the two jurisdictions. Put simply, the framework would require that these data protections will be identical to those within the EU. "At Microsoft we believe that privacy is a fundamental human right," Microsoft vice president of EU government affairs John Frank writes ina new post to the software giant's EU Policy Blog. "In a time when business and communications increasingly depend on the transmission of personal data across borders, no one should give up their privacy rights simply because their information is stored in electronic form or their technology service provider transfers it to another country ... we believe wholeheartedly that the Privacy Shield represents an effective framework and should be approved. " The European Commission and the United States agreed on the terms of the EU-U. S. Privacy Shield framework in February after two years of negotiations. It is designed to replace an earlier but vaguer agreement, called Safe Harbor, which the European Court of Justice ruled in October 2015 was no longer adequate to protect personal privacy in the post-Snowden world. But it will need to be accepted by various European governments and data protection authorities first. Under the terms of the agreement, U. S. -based tech firms like Microsoft and Google would need to adopt stricter personal privacy protections that are afforded to EU citizens. But it also allows U. S. law enforcement to access personal data... --- ### Microsoft Releases Windows 10 Roadmap Highlighting New and In Development Features - Published: 2016-04-09 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-releases-windows-10-roadmap-highlighting-new-development-features/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: News Microsoft has released a new road map website for Windows 10 that provides a look at new and in-development features coming to the OS. This past week, Microsoft released a new build of Windows 10 that included a significant number of updates such as a new theme, a way to delay Windows updates and a lot more. Keeping track of all of these changes can be challenging but thankfully, Microsoft has released a new Windows road map that should help you better understand the new features and what is coming down the pipe. The road map, which is primarily targeted at businesses, is accessible to anyone. The site lists newly released features, updates currently available to those using Insider builds and more importantly, features in development. The ‘In development’ aspect of the road map brings forward a couple of features that will likely make end users happy. For starters, the company is working on a way to make it so that you can unlock your Windows PC by using your phone. This is accomplished by using your Windows or Android phone as a remote credential store which can than be used to authenticate to your PC; Microsoft is also working on a way to use another PC to unlock your PC as well. Other features in development are PC to PC casting (share your screen to any other PC), enhancements to Microsoft Passport and a lot more. If you are interested in the Windows ecosystem, the page (which you can view here) is worth checking out. On the roadmap, Microsoft also has a spot for cancelled features. At this time, that category is empty. These types of pages are helpful for... --- ### Microsoft Promotes Windows 10 1511 to Current Branch for Business - Published: 2016-04-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-promotes-windows-10-1511-current-branch-business/ - Categories: Windows 10 - Tags: Current Branch For Bussiness, Windows 10 - Article Type: News Microsoft has announced that they are moving Windows 10 build 1511 to the Current Branch For Business, which will have some impact on users running 1507. Microsoft announced today that they are moving the November release of Windows 10 into the Current Branch for Business. Although businesses running Windows 10 1511 won't need to take any action immediately, it's important to understand the what this new designation means and how it will impact those running build 1507. What the company is announcing today is that Windows 10 build 1511 is ready for your organization to begin broadly deploying the release. To be promoted to the CBB ring, the company examined feedback from early adopters for stability, bugs and everything else that can impact your operation; this specific build also includes the March cumulative update (KB3140768), which has been injected into the installation image. If you already have machines running build 1511, then there's no action needed other than running the monthly update procedures. If you are still using machines with build 1507, listed below is the impact this declaration may have on your deployment: For devices being serviced using Windows Update for Business and configured to "Defer upgrades," Windows 10 1511 will begin to deploy as soon as the updated media has been published. Note that the deferral policies that specify an additional number of months to defer the feature update are not supported for devices running Windows 10 1507. For devices being serviced using Windows Server Updates Services, the updates to the existing Windows 10 1511 feature updates will need to be re-approved once the new updated media is received, unless you have an automatic update rule... --- ### Review: Microsoft Bluetooth Wedge Keyboard - Published: 2016-04-08 - Modified: 2024-09-04 - URL: https://petri.com/review-microsoft-bluetooth-wedge-keyboard/ - Categories: Hardware - Tags: Bluetooth, Keyboard - Article Type: Review Russell Smith shares his thoughts on the Microsoft Bluetooth Wedge Keyboard and how it might fit your needs.   Microsoft Bluetooth Wedge Keyboard The Office mobile apps, with OneDrive integration, make it more realistic than ever to get work done using a smartphone or tablet. But while you'd think a small screen might be the limiting factor in this equation, in my experience, it's always been the lack of physical keyboard that prevents me from wanting do anything more than a bit of light editing on a smartphone, despite the presence of the excellent Word Flow keyboard in Windows 10 Mobile. But portable keyboards can also be a hit and miss affair. The last wireless keyboard I bought, Microsoft’s All-in-One Media Keyboard, didn't last more than a few days before deciding it was highly unpleasant to use. So in trepidation, I decided to give Microsoft’s Bluetooth Wedge Keyboard (RRP $79. 95) a try, in favor of a similarly priced Logitech keyboard (K480), which I rejected because it's just plain ugly -- yes I can be vain too -- and due to size and weight issues sighted in user reviews online. Pairing the keyboard Once you've inserted the two AAA batteries into the housing on the rear underside, which also serves as a raiser to position the keyboard at a convenient angle for typing, press and hold the Bluetooth button on the right side of the battery enclosure to make the device discoverable. Locate the device in your device's Bluetooth settings and press Pair. You'll then be shown a code on the screen that... --- ### The Sams Report EP 35: Redstone Gets All The Things - Published: 2016-04-08 - Modified: 2024-09-04 - URL: https://petri.com/71913-2/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including the huge update to Windows 10, Outlook Premium, cloud security, Skype and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including the huge update to Windows 10, Outlook Premium, cloud security, Skype and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=o5CnnlhiACU RSS | SoundCloud | YouTube | iTunes --- ### Paul Thurrott's Short Takes: April 8 - Published: 2016-04-08 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-8/ - Categories: Mobile - Tags: News - Article Type: Opinion Because my son just turned 18 and where does the time go, this edition of Short Takes focuses on Microsoft's stock performance under Nadella, Microsoft's connected car strategy, Verizon may actually buy Yahoo, FBI hack only works on old iPhones, and Telsa Model 3 pre-orders hit 325,000 units. Because my son just turned 18 and where does the time go, this edition of Short Takes focuses on Microsoft's stock performance under Nadella, Microsoft's connected car strategy, Verizon may actually buy Yahoo, FBI hack only works on old iPhones, and Telsa Model 3 pre-orders hit 325,000 units. Microsoft stock has steadily risen during Nadella era As the Huffington Post just noticed, Microsoft's stock price is sitting at about its two-year high of $55, a nice bump from the $24 to $33 range the stock was stuck in during Steve Ballmer's tenure. But is Microsoft's stock jump really because of its current CEO, Satya Nadella, or are there other reasons? The Huffington Post notes that Nadella has "quietly transformed Microsoft into an innovative cloud-based company," though I'm not sure it's been all that quiet, and you'd think that the faltering fortunes of classic businesses like Windows, Office and Server would cause some investor jitters. So the question remains, though it's clear that Nadella has clearly gotten past some first-year jitters of his own. (Remember the awful "karma" slip? ) "Microsoft Edge will now automatically pause Flash ads" Could it do something more violent than that? Please? Microsoft stock has outperformed Apple stock under Nadella too And while we're on the topic of Microsoft's stock and Mr. Nadella, it's worth pointing out that the software giant's stock price has outperformed that of industry darling Apple over the past few years. The Motley Fool credits Microsoft's ability to exceed expectations over... --- ### Surface Hub, A Year Later - Published: 2016-04-08 - Modified: 2024-09-04 - URL: https://petri.com/surface-hub-year-later/ - Categories: Hardware - Tags: Surface Hub - Article Type: News A year ago, I first got a chance to check out the Surface Hub and nearly a year later, the device is now shipping after several delays. It was nearly a year ago that I first placed my hands on a Surface Hub and even though the company hit a few road bumps during the production phase, the device is now shipping to customers. The Hub you see above is a production device that was built in Oregon and is an 84in version of the product. The device, which initially went up for pre-orders last July, faced two delays and a price hike for both the 55in and 84in (now priced at $8,999 and $21,999, respectively) which means the cost of entry is not cheap. But, to put that in comparison, companies spend large sums of money modernizing their conference rooms where figures can easily run into the six figures for larger setups. Make no mistake, the devices are not cheap and you will not be outfitting one for your house but in the corporate world, these devices are priced in-line with expectations based on several conversations I have had with parties independent of Microsoft; one firm noted their conference room overhauls (for which they have three) were expected to cost $110-117,000 upon completion, each. Since looking at the devices last year, not too much has changed. Aside from being a completed product (you can see the entire spec list here), the intent of the Hub is to improve the productivity of meetings and reduce the tech burden that constantly interrupts the collaborative process. It’s clear that the software is still version 1. 0 and the company plans to add more features (none have... --- ### Microsoft's Project ‘Madeira’ Comes Into Focus - Published: 2016-04-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-opens-door-project-madeira-preview/ - Categories: Dynamics - Tags: project madeira - Article Type: News Microsoft has opened the door to try out Project Madeira, a new ERP-type solution for small and medium sized businesses. Microsoft is working on a new business management solution for small and medium sized operations that is designed to help you streamline your operation. The company is calling this new project ‘Madeira’ and they are now letting a select group of users try out the product. This tool is designed to provide an ERP-like solution for small operations that may not need, or want to pay out, for a high profile solution. Based on the documentation uncovered by Walking Cat, it looks like the service is built-around an add-in for Outlook. From the documentation, Microsoft states: Project “Madeira” introduces the ability to manage business interactions with your customers and vendors, directly in Microsoft Outlook. With the Project “Madeira” Outlook Add-in, you can see financial data related to customers and vendors, as well as create and send financial documents, such as quotes and invoices. In addition to the Outlook add-in, there will also be a stand-alone view (as you can see from the images above) that gives you a dashboard for your company's financial standing. When you sign up, the company has created a demonstration account where you can view sample data but you can create your own sales documents or set up a bank account. The idea here is to show the user how the product works to see if it is something that they would like to bring in their own data to begin using the new workflow solution; it is possible to import your data into this preview tool. The... --- ### The Costs of Running SQL Server on Linux > Michael K. Campbell shares his thoughts on Microsoft's decision to run SQL Server on Linux, along with associated costs that likely motivated the tech giant's decision. - Published: 2016-04-07 - Modified: 2024-09-04 - URL: https://petri.com/costs-running-sql-server-linux/ - Categories: SQL Server - Tags: linux - Article Type: Opinion Michael K. Campbell shares his thoughts on Microsoft's decision to run SQL Server on Linux, along with associated costs that likely motivated the tech giant's decision. If you've followed Scott Guthrie's career at Microsoft, you've seen him and his teammates facilitate an increasing degree of coziness between Redmond and Linux. First, when the Mono Project began porting ASP. NET to Apache, the ASP. NET team didn't respond with hostility, but instead, seemingly bent over backwards to open-source their code as a means of helping support this initiative. Later, as Guthrie was steering Microsoft's Azure cloud platform, he helped create yet another stir when Microsoft started unapologetically hosting Linux VMs and associated services along-side their own Windows-based services and solutions. As such, now that Guthrie is Vice President of the Cloud and Enterprise Group, it seems fitting that he was the one to announce the bombshell that Microsoft is actively working on a version of SQL Server that’ll run on Linux. As a SQL Server consultant, my thoughts about SQL Server running on Linux are mixed. On one hand, this bold and exciting move means that Microsoft isn't complacent about SQL Server's capabilities or market-share, which should hopefully bode well for me and my mortgage. That, and I'm curious to see what this will portend lower-end workloads running atop SQL Server Express. Ignoring for a second the horror of what may become a vast sea of WordPress databases running atop smaller Linux VMs outfitted with SQL Server Express Editions, the reality is that for many smaller database needs, Windows itself adds in enough bloat and overhead that the prospect of running SQL Server Express on smaller Linux... --- ### Deadly Linux Commands Little Cause For Concern With Bash On Windows - Published: 2016-04-07 - Modified: 2024-09-04 - URL: https://petri.com/deadly-linux-commands-little-cause-concern-bash-windows/ - Categories: Windows 10 - Tags: Bash, Windows 10 - Article Type: News Microsoft has released the first build of Windows 10 that includes Bash but if you were worried about rm -rf /, fret not. At Build last week, Microsoft made quite a bit of noise in the Linux community when it announced that Bash would be coming to Windows 10 this summer. Yesterday, the company released a new build to Windows Insiders that contains Bash which means for the first time, we can tinker with the new feature. Wanting to leave no stone unturned, especially when it comes to wrecking my own file structure, it was worth asking about the ‘deadly’ commands from Bash to see if they would do the same damage on Windows. Fortunately, because of the way that Microsoft implemented Bash on Windows, commands such as rm -rf /, will not destroy you machine. As Scott Hanselman notes on Twitter, root on Windows is not the same as root on Linux which means this recursive delete command will not harm your data integrity. But, that doesn’t mean commands cannot disrupt your machine, if you do run Bash as admin and then /Mnt/c, it is still possible to nuke your Windows install. In short, the default setup for Bash will not let these commands do harm but if you really want to destroy your Windows install from within Bash, it is possible. If you are curious what else is new in the build of Windows 10 that Microsoft released yesterday, you can check out our gallery here. --- ### Gartner Weighs In On Smart Phone Growth, PC, and Tablet Sales Expectations for 2016 - Published: 2016-04-07 - Modified: 2024-09-04 - URL: https://petri.com/gartner-weighs-smart-phone-growth-pc-tablet-sales-expectations-2016/ - Categories: Mobile - Tags: News - Article Type: News The market researchers at Gartner have consulted their crystal balls and have arrived at some predictions for digital device sales in 2016. Smart phone growth will slow to the single digits for the first time, the firm says, tablets continue to fall, and the PC market "bottoms out." The market researchers at Gartner have consulted their crystal balls and have arrived at some predictions for digital device sales in 2016. Smart phone growth will slow to the single digits for the first time, the firm says, tablets continue to fall, and the PC market "bottoms out" before returning to growth in 2017. Worldwide shipments for digital devices---which Gartner says consists of PCs, tablets, ultramobiles and mobile phones---will reach 2. 4 billion units in 2016, an increase of just 0. 6 percent increase over 2015. But the overall market is even softer than it appears, as customer spending in constant U. S. dollars will decline by 1. 6 percent year-over-year, Gartner says. (Note that "mobile phones" includes both smart phones and non-smart phones. ) There are a number of items of interest in the Gartner report, the first being that smart phone growth will slow to single digits for the first time ever. "The double-digit growth era for the global smart phone market has come to an end," Gartner research director Ranjit Atwal notes in the report. "Historically, worsening economic conditions had negligible impact on smart phone sales and spend, but this is no longer the case. China and North America smart phone sales are on pace to be flat in 2016, exhibiting a 0. 7 per cent and 0. 4 per cent growth respectively. " Smart phones sales have been aided over time by the introduction of new markets, most notably China in recent years. But with even the Chinese market for smart phones... --- ### What is Microsoft Enterprise Mobility Suite? > Learn what is Microsoft Enterprise Mobility Suite, along with an overview of the services and components that make up the suite. - Published: 2016-04-06 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-enterprise-mobility-suite/ - Categories: Mobile - Tags: ems, Enterprise Mobility Suite - Article Type: Overview Learn what is Microsoft Enterprise Mobility Suite, along with an overview of the services and components that make up the suite. Microsoft Enterprise Mobility Suite (EMS) is a set of tools that are deeply integrated to provide you with all you need to administer, provision and secure the devices that are used in your enterprise. With EMS, you can manage smartphones, tablets, and laptops in a single system where you can also manage user credentials, applications and security from a single place. In this series about Microsoft EMS, I will provide you with an overview of this suite. This first article in the series will give you a general overview of the services and components that make up the suite. In the next series of articles that follow, you will also be able to read about each of the components in more depth. EMS is a great tool for enterprises that want to keep better control of their assets and intellectual property (IP), while minimizing the impact of human resources needed. Enterprise Mobility Suite can easily manage more workstations, laptops, tablets, smartphones, and apps with less resources because of its deep integration. Because the tools are cloud-based, there's no need to worry about versioning, updating or upgrading the EMS platform, eliminating that cost from the equation. "One pane of glass to manage PCs and Mobile devices integrated across all the things that you are doing. " Brad Anderson, Corporate VP, Enterprise Client and Mobility Identity Through the use of Azure Active Directory, you can not only run a Windows domain for your local network, but also integrate thousands of apps into... --- ### Microsoft’s Cloud App Security Service Hits General Availability - Published: 2016-04-06 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-cloud-app-security-service-hits-general-availability/ - Categories: Microsoft Azure - Tags: Cloud App Security - Article Type: News Microsoft has announced that its Cloud App Security service is now generally available and ready for production environments. In September 2015, Microsoft acquired the cloud security firm Adallom, today the company is announcing how it will use this newly acquired IP. The acquisition is being used to boost Microsoft's capabilities in securing content that is stored in its cloud and provide greater assurance to its customers that their data is safe. Being called Microsoft Cloud App Security, the product is a cloud-based service designed for IT and security teams to gain greater control of their content that runs in the cloud.  The service, which is now generally available, is described by Microsoft as "a set of capabilities to help companies design and enforce a process for securing cloud usage; from discovery and investigation capabilities, to granular control and protection. " The service can monitor a wide variety of applications from vendors, such as Salesforce, Google, Dropbox and of course, Microsoft; the product now integrates with Office 365. Seeing how many organizations are moving to cloud-based services, this new security component offering from Microsoft will make sure that they have SaaS, PaaS, IaaS, and now security as a service all available for their customers. Seeing as this is a service, Microsoft will be charging $5 a month per user (retail pricing), and you can check out a list of all the supported apps, here. --- ### Daimler: Microsoft Considering a Stake in HERE Location Services - Published: 2016-04-06 - Modified: 2024-09-04 - URL: https://petri.com/daimler-microsoft-may-buy-stake-location-services/ - Categories: Mobile - Tags: News - Article Type: News Two years after it should have purchased the HERE mapping and location offerings from Nokia, Microsoft may finally find itself (ahem) back in the driver's seat: According to Daimler, the software giant is interested in a minority stake in HERE. Two years after it should have purchased the HERE mapping and location offerings from Nokia, Microsoft may finally find itself (ahem) back in the driver's seat: According to Daimler, the software giant is interested in a minority stake in HERE. "We are talking to Amazon, Microsoft and many auto makers," Daimler board member Thomas Weber told The Wall Street Journal this week. "We need a cloud provider to handle the huge amounts of data created by HERE and its users. We haven't taken any decisions yet. " Well then. Allow me to recommend Microsoft, which has both the scale needed by HERE and a strategic interest---dare I say "need"---for this technology. A quick recap. When Microsoft announced that it would purchase Nokia's devices and services businesses for $7. 4 billion in late 2013, HERE was not included in the sale. Instead, the firms agreed that Nokia would retain HERE and that Microsoft would become a strategic licensee of the HERE platform for four years. That licensing of HERE's mapping and location services and data was important---and still is---because Microsoft relies on HERE to power its own mapping, location, and navigation offers, on Windows 10 PCs and devices, and in the cloud with Bing. Opinions differ on why Microsoft didn't acquire HERE with the rest of Nokia's crown jewels, but I argued vehemently at the time that HERE was a key piece of that portfolio and was in fact more strategic to Microsoft's long-term strategy than Nokia's devices. (Which... --- ### SQL Server 2005 Support Is Ending Next Week - Published: 2016-04-06 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-2005-support-ending-next-week/ - Categories: SQL Server - Tags: SQL Server 2005 - Article Type: News If you are running SQL Server 2005, the software will no longer be supported after next week which will leave your data vulnerable. If this news is a surprise to you, then you need to kick things into high gear, as Microsoft is ending support for SQL Server 2005 on April 12, 2016. The platform has been supported for a decade and Microsoft will no longer be patching the software after this date. If you are looking to upgrade, Microsoft recommends that you move to SQL Server 2014 or Azure SQL database. The company will be releasing SQL Server 2016 this year but at this time (and it is also headed to Linux), it is not ready for general release and is still in the late-phase testing; you can try out that platform too but only 2014 is considered ‘production grade’. If after April 12 you are still running SQL Server 2005, the software will continue to function but if any new exploits are found in the software, they will not be patched. In short, by running Server 2005 after this date you are putting your data at risk and more importantly, this software will become a line item on a security audit. Microsoft has put together a page providing resources that will be of assistance if you are planning on upgrading from SQL Server 2005 to any other version; you can find that resource here. --- ### Create a VNet-to-VNet VPN using AzureRM PowerShell > Here's a simple way to create a VNet-to-VNet VPN using Microsoft AzureRM and PowerShell. - Published: 2016-04-05 - Modified: 2024-09-04 - URL: https://petri.com/create-a-vnet-to-vnet-vpn-using-azurerm-powershell/ - Categories: Microsoft Azure - Tags: Azure, Cloud, networking, VPN - Article Type: How To Here's a simple way to create a VNet-to-VNet VPN using Microsoft AzureRM and PowerShell. In a previous Ask the Admin, I showed you how to create two virtual networks and link them using a VPN by using the new Azure management portal that reached General Availability in December 2015. If you followed through those instructions, you were probably tired of clicking by the end. A much quicker way to achieve the same result is to use the Azure Resource Manager (AzureRM) modules for PowerShell. Before you can use the AzureRM modules, you'll need to install Microsoft Azure PowerShell using the Web Platform Installer. Once installed, open a PowerShell prompt, type Login-AzureRmAccount in the prompt window and press ENTER. When prompted, enter the Microsoft Account username and password associated with your Azure subscription. If you have more than one Azure subscription associated with your Microsoft account, you can use Get-AzureRmSubscription to list the subscription IDs associated with the login. If you want to change to a different subscription, use Select-AzureRmSubscription to change the active subscription ID, replacing ‘fd1e1468-31fd-4c0e-8c4f-6c07783e4920’ with your subscription ID. ​ ​ Import the AzureRM modules for use in the current PowerShell session by running Import-AzureRM Connect to Azure and create a new Resource Group (Image Credit: Russell Smith) Before continuing, we need to create a Resource Group (RG) in which to place the virtual networks and their associated resources. For simplicity, I'm going to create one RG for this demonstration: ​ ​ Create a virtual network Now let’s create some variables with information about our... --- ### AMD Launches New A-Series CPUs Earlier Than Expected - Published: 2016-04-05 - Modified: 2024-09-04 - URL: https://petri.com/amd-launches-new-series-cpus-earlier-expected/ - Categories: Mobile - Tags: News - Article Type: News AMD announced this morning that it is fast-tracking the move to next-generation microprocessors and will ship its first mobile-oriented 7th generation A-series CPUs in select HP notebook PCs. AMD will then round out the processor lineup, codenamed "Bristol Ridge," throughout 2016. AMD announced this morning that it is fast-tracking the move to next-generation microprocessors and will ship its first mobile-oriented 7th generation A-series CPUs in select HP notebook PCs. AMD will then round out the processor lineup, codenamed "Bristol Ridge," throughout 2016. "Consumers want more for their money than ever before: Sharper graphics, faster performance, and longer battery life," AMD senior vice president and general manager Jim Anderson said in a prepared statement. "We have focused on working with key partners to develop outstanding computing platforms that will fully take advantage of the powerful 7th Generation AMD APUs ... I’m very proud of the exceptional AMD engineering execution that enabled us to accelerate these exciting new products into the market for our customers and end users. " AMD's "Bristol Ridge" processor chipsets are an incremental upgrade to the current-generation "Carrizo" CPUs, a sort of "tock" in the development cycle. But because they are optimized for mobile devices, the first "Bristol Ridge" chips will deliver both better performance and battery life, and are thus ideally timed. A future generation of chips, codenamed "Zen," represents a major change, or "tick," and is due in 2017. HP's new Envy x360 is the first "Bristol Ridge"-based design: It features a 15. 6-inch Full HD (1920 x 1080) display, AMD FX, 8 GB of RAM, and a 1 TB HDD, and will retail for $680. (HP will sell Intel Core i5/i7 versions of the new Envy x360 as well. ) Other... --- ### Getting Operating System Information with PowerShell - Published: 2016-04-04 - Modified: 2024-09-04 - URL: https://petri.com/getting-operating-system-information-powershell/ - Categories: PowerShell - Article Type: How To Learn how to get operating system information with Windows PowerShell and the Get-CIMInstance cmdlet. In today's Ask the Admin, I'll show you how to get basic OS information using PowerShell. Whether you're an experienced script writer or dipping your toes into PowerShell for the first time, it’s often important to understand something about the version of the operating system that you are dealing with before running your code. The cmdlets that I’m going to show you in this article can be used standalone, i. e. so you don’t have to go searching in the UI for specific information, or as part of your scripts on which you can base logic. There are two PowerShell cmdlets for extracting OS information, Get-WMIObject and Get-CimInstance. WMI is Microsoft’s implementation of the Common Information Model (CIM), and while many administrators are more likely to be familiar with Windows Management Instrumentation (WMI) as a concept, I recommend using Get-CimInstance because there’s a wider variety of CIM cmdlets available that can provide more information and flexibility. Using PowerShell's Get-CimInstance Let’s start by running the Get-CimInstance and specifying the Win32_OperatingSystem class: Get-CimInstance -ClassName Win32_OperatingSystem To get the complete list of information available in the class, pipe the results to the Format-List cmdlet as shown below. Note that I’m able to leave out -ClassName and Win32_OperatingSystem becomes a positional parameter; though while not a best practice, this does reduce the amount of typing to be done. Get-CimInstance Win32_OperatingSystem | Format-List * If you do intend to use these cmdlets on a regular basis, they can be shortened further as... --- ### How Does Azure Backup via Disk Work? > Aidan Finn provides an overview of the process that Azure Backup currently uses to seed the first full backup using a secure couriered disk transfer. - Published: 2016-04-04 - Modified: 2024-11-19 - URL: https://petri.com/how-does-azure-backup-via-disk-work/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Backup, Cloud, Disk Transfer, hybrid cloud - Article Type: How To Aidan Finn provides an overview of the process that Azure Backup currently uses to seed the first full backup using a secure couriered disk transfer. In this post, I'll give you an overview of the process that Azure Backup currently uses to seed the first full backup using a secure couriered disk transfer process. The Backup Process Before we talk about out-of-band disk transfers, we need to understand how Azure Backup copies data to Azure. The following process is used to copy data to a backup vault in the cloud: A full backup copies everything to Azure, compress and encrypting the data before it leaves the customer site. Incremental backups run according to your schedule to send the changes, at a block level, since the last backup to the cloud. The blocks are encrypted and compressed before leaving the customer site. The result is what is commonly referred to as a synthetic full backup, although I'm sure that the Azure Backup team probably has a different name for their engine! The backup vault understands how to reassemble the blocks to recover files from any point in the retention policy. The Full Backup Challenge Typically, a full backup is very large, and incremental backups are a trickle feed of changes. A company might have enough bandwidth to deal with even an exceptionally large incremental backup. But a lot of companies will struggle with the first full backup, as they don't want that first job to take days or even weeks. Ideally, an online backup solution will have a means where: You can opt to do the first full backup online or via a disk... --- ### Microsoft’s Missed Opportunities with its Own Software in the Windows Store - Published: 2016-04-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-missed-opportunities-software-services-windows-store/ - Categories: Windows 10 - Tags: Windows Store - Article Type: Opinion Microsoft's Windows store is missing some of the company's own software and services, which could drive a lot more traffic to this digital marketplace. One of the goals Microsoft has with Windows 10 is to increase the traction inside the Windows Store. The company wants consumers and businesses to use the Windows Store to download apps, games and soon, extensions, but the company is missing basic opportunities to get more users into its store with its own software. At this time, you cannot buy or renew your Office 365 subscription, buy Skype credits, or purchase/renew Xbox Live subscriptions or redeem Xbox Live codes from within the store. All of these digital services require that you go to a different web page to buy the product, and it is a huge oversight by Microsoft to not include these features inside its desktop digital store. If you open the Windows store and search for Office 365, it will take you to Microsoft store website instead of allowing you to complete the purchase inside the app. If you search Xbox Live, no relevant results are returned and the same is for Skype credits. The company currently doesn't offer the ability to buy hardware goods inside of its store either, which makes some sense as the Windows store is targeted at digital goods, but the fact that you can't buy software subscriptions is a missed opportunity to drive more traffic to its store. To simplify its content offerings by putting all of its digital services into one storefront would improve discoverablity by consumers who are visiting the store at elevated frequency compared to Windows 8 and yet, the company has failed... --- ### How to Remotely Ping Microsoft Azure VMs - Published: 2016-04-01 - Modified: 2024-11-19 - URL: https://petri.com/how-to-remotely-ping-microsoft-azure-vms/ - Categories: Microsoft Azure - Article Type: How To Learn how to remotely test network connectivity to virtual machines in Microsoft Azure. In this post, I'll explain why you can't use Ping with Azure virtual machines via the Internet, and how you can use an alternative (PSPing) that is actually more useful. Pinging an Microsoft Azure VM Imagine that you're an IT pro that has just gotten your hands on Azure for the first time. I have a pretty good idea of what you’re going to try to do: Deploy a virtual machine in Azure. Probably run a broadband speed test from the Azure virtual machine for laughs and giggles. Try to ping the Azure virtual machine from a remote location. The first step should go pretty well, and the second step should make you wonder about how you can use all that bandwidth. And you'll be left scratching your head on step three because no matter what you do with Azure endpoints or NAT rules, you won't be able to ping that virtual machine over the Internet. There's a reason for this. The following diagram depicts this simple example. Someone has deployed an Azure virtual machine. The only possible connection to that virtual machine is via the Internet. Any traffic entering the virtual network must pass through a load balancer, and this balancer is filtering ICMP traffic. Note: Ping uses the ICMP protocol to measure the latency of the connection between a local machine and a remote machine. Any connections exceeding a default latency are deemed to be unavailable. So this means that we cannot use Ping to verify that the virtual machine is actually online... --- ### Paul Thurrott's Short Takes: April 1 - Published: 2016-04-01 - Modified: 2024-09-04 - URL: https://petri.com/l-thurrotts-short-takes-april-1/ - Categories: Mobile - Tags: News - Article Type: Opinion Because every day with me is April Fools, this edition of Short Takes focuses on a year off for Windows phone, Microsoft embraces Android and iOS during Build keynotes, Google' April Fool backfires, Tesla sells tons of non-existent cars, and Blackberry continues to slide. Look! It's a Microsoft bot! Because every day with me is April Fools, this edition of Short Takes focuses on a year off for Windows phone, Microsoft embraces Android and iOS during Build keynotes, Google' April Fool backfires, Tesla sells tons of non-existent cars, and Blackberry continues to slide. Note: Sorry is this Short Takes is a bit, um, shorter than usual. But it's been a crazy busy week at Build, and there's so much more to get to today. --Paul A poor choice of words sinks Windows phone even further During a whirlwind week at Build 2016 in San Francisco, Microsoft's Terry Myerson madea startling revelation to The Verge's Tom Warren. "We're fully committed to , there will be a time for it to be our focus, but right now it's part of the family but it's not the core of where I hope to generate developer interest over the next year," he's quoted as saying. "There's no lack of recognition to realize how important that form factor is, but for Microsoft with Windows and for our platform it's the wrong place for us to lead. " So here's the thing. Is Microsoft really going to take a year off from phone? Or is being committed to phone perhaps a better message for the faithful? I guess we'll find out when or if Surface phone happens later this year. "Coupons. com Is Making Savings Even Easier for Windows 10 Users" But Windows 10 is already... --- ### An Office 365 Tip on Restricting Editing in Word 2016 - Published: 2016-04-01 - Modified: 2024-09-04 - URL: https://petri.com/office-365-tip-restricting-editing-word-2016/ - Categories: Office - Tags: Office, Office 365, Word - Article Type: How To Make collaboration in Office 365 a little bit easier with this quick tip. In today's Ask the Admin, I'll show you how to apply editing restrictions to Word documents. Ensuring that complex documents that are shared among colleagues or partners remain accurate is important. In situations where documents need input to update important details, unwanted changes might be made that unnoticed or delay the final distribution of the document. Word 2016 Restrict Editing - Start protection (Image Credit: Russell Smith) The Restrict Editing feature in Word 2016 allows a document owner to not only determine which sections of a document others can edit, but it's also possible to enforce Tracked Changes so that if you want to open up a document for editing, you can easily see what's been changed. Start protection Restrict Editing locks an entire document but allows the owner to open sections for editing. So rather than selecting which sections you want to lock, you must select which areas you want to make available for editing. Open a document in Word 2016. Switch to the Review tab on the ribbon. Click Restrict Editing in the Protect section of the ribbon. In the Restrict Editing panel on the right, check Allow only this type of editing in the document under 2. Editing restrictions. No changes (Read only) is the default restriction type. If you’d like to set a different restriction level for the document, click the menu and select from Tracked changes, Comments, or Filling in forms. Now select the parts of the document you'd... --- ### The Sams Report EP 34: All Things Build, Redstone and the Anniversary Update - Published: 2016-04-01 - Modified: 2024-09-04 - URL: https://petri.com/sams-report-ep-34-things-build-redstone-anniversary-update/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week at its Build conference including new Redstone features, the Anniversary update, Azure functions and so much more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week at its Build conference including new Redstone features, the Anniversary update, Azure functions and so much more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://soundcloud. com/thesamsreport/he-sams-report-ep-34-all-things-build-redstone-and-the-anniversary-update RSS | SoundCloud | YouTube | iTunes --- ### Microsoft Announces Azure Functions, Service Fabric, and IoT Starter Kit - Published: 2016-03-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-azure-functions-service-fabric-and-iot-starter-kit/ - Categories: Microsoft Azure - Tags: Azure fabric, Azure Functions, Build 2016 - Article Type: News At Microsoft's Build conference, the company announced several new Azure features for microservies and IoT as well as on premises features too. Microsoft’s day two keynote for Build is all about the developer and its cloud based service, Azure. Announced today are several new services including Functions (which I uncovered previously), Service Fabric, and IoT Starter Kit. To assert Azure’s place in the cloud wars, Microsoft is doing every thing it can to give its platform a competitive advantage. This means that they are moving forward with the trends in the developer communities such as IoT and microservices as the technology developers, rather than waiting for it to fully mature. To capitalize on these fronts, the company announced the availability and previews of several new products. Service Fabric: This is  a microservices application platform developers can use to design apps and services that are available 24x7 at cloud scale with high availability and lifecycle management. Functions: This feature lets developers build server-less compute solutions for event-driven needs and the company will only charge for the time a function operates. Seeing as feature this uses an open source runtime, developers can host Function anywhere they want, on Azure or on local hardware. IoT Starter Kits: If you have Windows or Linx development experience, these new IoT starter kits allow you to quickly build prototypes that leverage the Azure IoT platform with prices ranging from $50-$160. Also, early adopters can use the Azure IoT Gateway SDK to enable legacy devices and sensors to connect to the Internet without having to replace existing infrastructure. DocumentDB: Support for MongoDB and MongoDB drivers as well as improved replication across Azure data centers. These... --- ### Microsoft Office by the Numbers > Microsoft has share new details about how many users are actively utilizing Office 365, including 4 trillion emails have been sent using the platform. - Published: 2016-03-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-office-numbers/ - Categories: Microsoft 365 - Tags: Build 2016 - Article Type: News Microsoft has share new details about how many users are actively utilizing Office 365, including 4 trillion emails have been sent using the platform. Microsoft's Office 365 platform has been a massive success for the company. They have managed to turn its Office product into a service, and they have millions of subscribers around the globe that are actively using the platform for productivity. At the company's Build conference in San Francisco, Microsoft pulled back the curtain and shared new statistics about how popular the service is with its users, much like they did with Azure. There are currently 1. 2 billion office users (this includes all Office users, not just Office 365), the company is signing up 50k new Office 365 small businesses per month, the mobile apps have been downloaded 340 million times, 4 trillion emails have been sent with Office 365, 1 billion meetings are created per month and 3 billion minutes of Skype calls are performed daily. The reason Microsoft was talking up these figures is to show developers that building applications that link into the Office 365 framework is a lucrative endeavor, as the platform is used at a massive scale on a daily basis. Of course, the reason Microsoft wants its Office platform to be integrated further into the productivity workflow is so that it becomes harder to transition away from the suite of tools. With that being said, it's closest competitor, Google Apps, still lags significantly behind Office in the enterprise, and while it is a threat, has yet to undermine Microsoft’s efforts in this space. --- ### Microsoft Azure by the Numbers - Published: 2016-03-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-numbers/ - Categories: Microsoft Azure - Tags: Azure, Build 2016 - Article Type: News At Microsoft's Build conference, the company revealed a few statistics about how large its operation is and other key figures. At the second day of Microsoft's Build conference, the company wasted no time in telling the world how large its cloud platform is and who is using the service. They touted that they have more data centers than Amazon Web Services (AWS) and Google's Cloud service combined and that 85 percent of Fortune 500 companies are currently using Azure to some capacity as well. Microsoft says that they are growing at a rate of 120k new customers per month, there are 1. 4 million SQL databases in Azure, 2 trillion messages per week processed by Azure IoT, 5 million organizations using Azure active directory, 4 million developers registered with Visual Studio Team services, and 40 percent of their revenue is from start-ups and ISVs. In showing how large the service is today, Guthrie also took a shot at Google by saying that Azure's enterprise customers were not an afterthought and have always been a priority. Google has recently announced that they will be expanding their cloud efforts and going after large enterprise clients to get them to use their service; the company is staffing up and building new data centers to support this new agenda. Microsoft's future growth and revenue is deeply tied to its Azure platform, so it's no surprise to see the company touting how well the platform is performing. With AWS and now Google putting up stiff competition to Azure, there are several quality providers to choose from when moving your data to the cloud which is also why we are seeing... --- ### Microsoft And Xamarin: Included With Visual Studio And Going Open Source - Published: 2016-03-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-xamarins-future-becomes-clear-free-enterprise-going-open-source/ - Categories: Visual Studio - Tags: Build 2016, Xamarin - Article Type: News Microsoft announced at Build that Xamarin will be free for Visual Studio Enterprise users and that they will be open-sourcing some of the technology. Earlier this year, Microsoft announced that they had acquired Xamarin and at Build 2016, the company has clarified how the product will fit into its portfolio of development applications. Announced by Microsoft’s Scott Guthrie, Xamarin will now be included in Visual Studio Community and Xamarin Studio for OS X for free and Visual Studio Enterprise subscribers will also get the enhanced features at no additional cost as well. If that wasn’t enough, the company is also stating that they will be opening sourcing the Xamarin SDK, including its runtime, libraries and command line tools, as part of the . NET Foundation in the near future. These announcements will likely make any Windows-based developer happy as it means that the tools they already use are gaining new functionality at no additional cost. And for Microsoft, thanks to its new IP, Windows is now fully capable of allowing developers to build native cross-platform mobile app experience for iOS, Android and Windows with minimal friction. The announcement made about Xamarin today should clear up all of the questions developers had about how the company planned to use this new IP. Seeing as Xamarin is being included in the primary Microsoft developer stack at no additional cost, they have dramatically expanded the appeal of using Windows to build apps (especially when you consider Bash is coming to Windows 10) for any modern platform. Simply put, Microsoft has positioned Windows to be the most developer friendly operating system with all the tools needed to build apps on any platform... . --- ### Microsoft’s Is Turning The Conversation Into A Platform - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-driving-force-turning-conversation-platform/ - Categories: Microsoft Azure - Tags: Build 2016, COnversation - Article Type: News One of Microsoft's new pillars for building tools and features revolves around turning the conversation into a platform. From bots, to Windows 10 features and Xbox games, Microsoft talked about a wide variety of topics at its Build conference this week. One topic that stood out is how Microsoft is approaching a new platform and it’s not one that based on a hardware spec or existing framework. Microsoft is moving towards making the conversation the new platform and this idea is the mindset that is driving how the company is building out new technology. The goal is to turn a conversation into a more powerful tool that is contextually rich while also driving forward productivity. The company is starting with the human language as the UI of the platform and it comes in many forms. Everything from spoken words to conversations in Skype or email is being included in how the company thinks about this development pillar and it’s the conversational framework that is helping to shape how the company builds out new features and services. The bot framework the company announced this week, as well as Cortana, are part of this new framework that the company believes will enable the conversation to become a more powerful tool. By weaving AI technology into the way we communicate, Microsoft's is hoping to be able to contextualize and enhance the conversation in a way that feels natural. Expect to see this theme drive how Microsoft builds new and develops existing features for Windows, Cortana, Office and all of its other core services.     --- ### Build 2016 is a Peek at the Future of Microsoft - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/build-2016-peek-future-microsoft/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion As tech enthusiasts, we often get bogged down in the details: A particular product release, a certain feature, the size of a smart phone screen. But at its Build 2016 opening keynote, Microsoft offered a broader vision for the future. Its future. And it's customers' futures. As tech enthusiasts, we often get bogged down in the details: A particular product release, a certain feature, the size of a smart phone screen. But at its Build 2016 opening keynote, Microsoft offered a broader vision for the future. Its future. And it's customers' futures. So, yes, there was a discussion about the next major update to Windows 10, called the Anniversary Update, and a peek at some of its new features. But the bulk of the two-hour-plus keynote was a whirlwind tour of cloud, bots, conversations, and personal digital assistants. And about how the power of these technologies is never tied to a single device. Instead, it is tied to the individual. For Microsoft watchers, this is of course the "mobility of experiences" that Satya Nadella has repeatedly discussed since he assumed his role as the software giant's CEO. But today's rolling list of announcements constitutes by far the biggest and most far-reaching of such initiatives. It is the mobility of experiences writ large. And it is exciting. And comprised of many parts, all of which point to that future of Microsoft I envisioned back in December, in Microsoft Owns Productivity And That Should Be Enough. In that editorial, I opined that Microsoft’s long-term future is basically Azure, and in providing services providing around and on top of Azure. And that by embracing this future, the firm could play to its long-time strengths at platform creation. To this end, Microsoft today announced additional features for its... --- ### Microsoft’s Bot Framework Offers A Peek At A Better Contextual Future > At Microsoft's Build 2016 conference, developers saw a glimpse of what Microsoft's new bot framework might offer in the future. - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bot-framework-offers-peek-better-contextual-future/ - Categories: Cloud Computing - Tags: bots, Build 2016 - Article Type: News At Microsoft's Build 2016 conference, developers saw a glimpse of what Microsoft's new bot framework might offer in the future. At Microsoft's Build conference in San Francisco, the company talked about the evolution of their platforms, which includes the company's latest efforts on building out bots. The company dedicated a significant amount of stage time to the feature, and it may be one of the most exciting products to be announced at the event. The bot framework, which I spotted last week, is a new platform that makes it easy to interact with a wide variety of applications using nearly any communication medium, including Skype, Office 365 and even third party apps like Slack. The bots can be built in any language and are designed to interact with people in personalized and intelligent ways. The bot operates using natural language, which makes interacting with the tool easy, but it's the potential for this framework that has me highly interested where Microsoft is headed. An easy comparison, while not a perfect one-to-one comparison, is that this framework is in a way, like IFTTT -- a way to pipe together different services that creates a unique scenario. For example, imagine you work at a large company and you need the location of an employee, you can setup a bot that when you ask it the location of an employee, it scans Active Directory and returns the location. This bot can be triggered by nearly any communication tool as well, such as SMS, Skype, integrated into Slack and the list goes on and on. But that's the most simplistic use case, Microsoft also showed... --- ### Windows 10 Anniversary Update Coming This Summer, New Features Announced - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-anniversary-update-coming-summer-devices-new-features-announced-embargo/ - Categories: Windows 10 - Tags: Build 2016, Windows 10 - Article Type: News Microsoft has announced the next major update to Windows 10, called the 'Anniversary Update', it will arrive this summer. At Build, Microsoft has announced the next major update to Windows 10 that will arrive this summer, aptly named the ‘Anniversary Update’. For those of you who have been following along closely with the development cycle of Windows 10, you will know this update by its codenamed as Redstone 1. Microsoft is not giving a date for when the update will be released but seeing as they are calling it the ‘Anniversary Update’, expect it to arrive near the end of July as that’s when the company released Windows 10. In this release, there are quite a few features that are coming, everything from biometric enouncements to improved pen support. Biometric: It will now be possible to use the biometric login systems, like Windows Hello, with Edge and supported Windows apps. Windows Ink: This new feature is a way to more broadly use the pen that ships with the Surface Book and Pro 4. Windows Ink is an all new feature enabling you to write on your device to make notes or use an app like a whiteboard. Currently, Ink is integrated into apps like Maps, Edge, Office and developers can add this feature to their app with only 2 lines of code. Cortana: The personal digital assistance that made its debut on the desktop with Windows 10 is getting a few improvements as well. Cortana will now be available directly from the lock screen and she has also learned how to proactively make suggestions for you through-out your day,... --- ### Microsoft’s Command Line Family Is Growing, Say Hello To Bash - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-command-line-family-growing-say-hello-bash/ - Categories: Windows 10 - Tags: Bash, Build 2016, linux - Article Type: News Microsoft is adding a new command-line tool to Windows 10 and it comes from the Linux world; Bash is headed to Windows. Several years ago, Windows and Linux were much like oil and water. The two competing products were rarely crossing paths and often seen as two completely different choices for desktop computing. Taking a look at how Microsoft is embracing open source software today, Linux and Microsoft are not so far apart and what the company announced at its Build conference is bringing the two platform a lot closer together. Microsoft is bringing Bash support to Windows in a new way that the company hopes will entice fans of these tools to consider using Windows. Microsoft says that they have improved several of their command line tools recently, including cmd and Powershell but they are ready to take things a step further. The company is adding a new tool, Bash and its Linux command line tools with native support, inside of Windows 10. To achieve this goal, the company says they have built a new infrastructure within Windows, which they call the Windows Subsystem for Linux, or WSL for short, which can run Ubuntu user-mode image; Microsoft worked with Ubuntu to make this a reality. This is a big step for Microsoft by embracing open-source tools such as Bash natively inside of Windows 10. This Unix-shell is widely used among developers and by bringing it to the Windows platform too, it makes it easier for nearly any developer to utilize Windows as their primary OS. This is the latest step by Microsoft to show support for the open-source community. By embracing Bash, along with... --- ### Microsoft Is Delivering New Tools To Make it Easier To Build And Port Apps to UWP - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delivering-tools-make-easier-build-port-apps-uwp/ - Categories: Windows 10 - Tags: Build 2016, UWP, Windows Store - Article Type: News Microsoft has announced new tools that will make it easier for developers to port or build apps for the UWP framework. Microsoft is doing everything it can to get developers to build UWP (Universal Windows Platform) apps and one initiative the company has been pushing is its porting tools that the company calls ‘bridges’. At its build conference today, they have announced more features and tools to entice developers to build UWP apps that should make the process to bring existing code into the UWP framework, even easier. Focusing on web, Win32 and . Net developers, the company is announcing new tools that will make building applications for this framework, even easier. Web developer: Bash support will be coming in the Windows 10 Anniversary Update. Win32 and . Net: A Centennial desktop app converter that will make it easier to extend and distribute these apps in the Windows store. . Net: Assistance with sharing share more of their code x-platform with the integration of Xamarin into Visual Studio. These additional tools, Microsoft hopes, will speed up the process at which developers bring their older applications into the modern UWP framework. While Microsoft has not stated a public goal for its store, like it has with 1 billion Windows 10 installs, the company is aggressively trying to grow the number of quality applications it offers. It is worth pointing out that the company uses the store as a revenue generator for Windows 10. If more developers are selling higher quality apps in the Windows store, Microsoft receives a cut of the revenue which can help back-fill the void left behind when they made Windows 10 upgrades free. --- ### Microsoft’s HoloLens Development Edition Is Shipping Today - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-hololens-shipping-today/ - Categories: Hardware - Tags: Build 2016, HoloLens - Article Type: News Microsoft announced a major milestone for its HoloLens today at Build, the device is now available and is shipping to early adopters. Microsoft announced a major milestone for its HoloLens today at Build, the device is now shipping to those who signed up for the development edition. The headset mixes holograms into our world, is a fully self-contained unit and with the hardware now headed to developers, we will start to see new scenarios for the device being explored. The HoloLens, unlike other devices like the Oculus Rift or HTC Vive, is an augmented reality device, instead of a virtual reality. The big difference here is that AR devices like the HoloLens place the objects into the real world around you whereas VR devices put a screen close to your face and make you feel like you are in a virtual environment. The company previously announced the specs of the device, which you can view here. The release of these devices to developers will finally let outsiders use the hardware without the constraints of a being in a Microsoft controlled environment. Up until now, the company would only show the devices under controlled circumstances but with developers getting their hands on the hardware, we will likely learn a lot more about the product's true capabilities very soon. If you are interested in purchasing a HoloLens dev kit, they cost $3000 and can buy them here. --- ### Microsoft Adds 70 Million Windows 10 Devices In Q1, Total Now Tops 270 Million - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-70-million-windows-10-devices-q1-total-now-tops-270-million/ - Categories: Windows 10 - Tags: Build 2016, Windows 10 - Article Type: News Microsoft has announced at its Build conference that Windows 10 has been installed on 270 million devices. It was only 8 months ago that Microsoft released Windows 10 and now the company is announcing that the install base for the OS has surpassed 270 million devices. Microsoft made this announcement today at their Build conference which is taking place in San Francisco. In comparison to Windows 7, for the same timeframe, Windows 10 is outpacing that OS by about 145% but it is important to point out that Windows 7 was a paid upgrade, whereas Windows 10 is a free upgrade for anyone running Windows 7 or 8. So, even though the OS is being adopted at a faster rate, this does not mean the company is making more revenue from the OS. The last milestone that Microsoft announced was back in January when the OS passed the 200 million device mark. Seeing as that announcement came in early January and we are now at the end of Q1, Microsoft has added 70 million new devices running the OS in this quarter. The strong growth behind the Windows 10 adoption has to be a comforting feeling for the software juggernaut who upset a large part of its customer base with the release of Windows 8. Seeing as both consumers and corporate clients are moving to the new OS at considerable scale, it shows that users are not giving up on Windows like many had predicted after the release of Windows 8. The fast adoption rate is being fueled by the free upgrade offer for Windows 7 and... --- ### Risking Your Brand with the Availability Gap - Published: 2016-03-30 - Modified: 2024-09-04 - URL: https://petri.com/risking-brand-availability-gap/ - Categories: Backup & Storage - Tags: Availability - Article Type: News Your brand is linked closely to the availability of your core applications, if downtime becomes the new normal, you are risking more than your financials. In the event that your application’s offline, end users will need to wait to access it until the problem is resolved. If this is a once-off situation, then this isn’t a big deal. If this scenario plays out two, three, or more times a month, then a much bigger problem is developing. Known as the availability gap, or the lack of having your platform available to your users 24x7x365, is an evergreen challenge facing IT departments. As our desire for connectivity continues to expand, demand for availability at every hour of the day is quickly becoming an important part of the IT scorecard. In a recent study by Veeam®  (1,140 respondents), 68 percent believed that their downtime resulted in a loss of customer confidence; 62 percent believed it damaged brand integrity; 51 percent believed it leads to a loss of employee confidence; and 26 percent believed it would result in legal action. While the short-term cash implications can be serious, the long-term threat of lost confidence is a significant road bump against gaining traction with your service. If internal employees cannot trust that the mission-critical platforms will be available when required, then they are less likely to develop new tools and services around these platforms, which means your capital investments are underutilized. Worse, if a customer can no longer depend on your platform being available, then it’s not only a loss of confidence from a paying user, but it also impacts their operations and will likely result in a decline... --- ### Using Sysprep in Windows 10 > Learn how to use sysprep in Windows 10 to automate the deployment of Windows operating systems. - Published: 2016-03-29 - Modified: 2024-09-04 - URL: https://petri.com/using-syspre-windows-10/ - Categories: Windows 10 - Article Type: How To Learn how to use sysprep in Windows 10 to automate the deployment of Windows operating systems. Microsoft-based operating systems have long used security identifiers (SIDs) that are uniquely generated and assigned to each computer as part of the initial setup of Windows. Each time you install Windows, a SID is given to that particular installation. If there's more than one computer with the same SID on the same network, then this could cause problems. To ease the deployment task of tens, hundreds, or thousands of workstations and servers, many IT administrators use cloning techniques to clone a sample operating system that's configured with the right applications, software, and configurations to distribute it to other computers as images. This is where the SID duplication issue becomes critical.  Cloning a computer that's either physical or virtual without regenerating the SID as part of the cloning process is not supported by Microsoft. If you're unsure whether you're using computers with duplicate SIDs, you can use the PsGetSid tool by Microsoft Sysinterals. To fix this issue, Microsoft created the System Preparation tool or "Sysprep. " This tool can be used to remove system-specific information from the OS so that it can be used for imaging to multiple devices. Although other tools exist that claim to do similar things, Sysprep is the only tool that's supported by Microsoft for this purpose. If you would like to use Sysprep in Windows 11, check out Using SYSPREP in Windows 11 on Petri. To run Sysprep in Windows 10, open Windows Explorer and navigate to C:WindowsSystem32sysprep. You can also just type "sysprep" in the Run command and click "Enter. "... --- ### DOJ Unlocks iPhone, Raising New Questions - Published: 2016-03-29 - Modified: 2024-09-04 - URL: https://petri.com/doj-unlocks-iphone-raising-new-questions/ - Categories: Mobile - Tags: News - Article Type: News The DOJ said that it had found a method of unlocking a terrorist's iPhone. The action resulted in a temporary reprieve for Apple, which had fought helping the government. But it raises new questions about Apple's security acumen. The U. S. Department of Justice on Monday evening said that it had found a method of unlocking a terrorist's iPhone without the help of Apple. The action resulted in a temporary reprieve for Apple, which had fought helping the government. But it raises new questions about Apple's security acumen. "The government has now successfully accessed the data stored on iPhone and therefore no longer requires the assistance from Apple," a DOJ court filing notes. "Accordingly, the government hereby requests that the Order compelling Apple to assist agents in search dated February 16, 2016 be vacated. " The method used by the DOJ is unclear, but sources say a third party assisted the agency in unlocking the iPhone. With the terrorist's iPhone unlocked, law enforcement officials can now scour it for information about the San Bernardino attacks. But aside from that small victory there are no real winners here. The U. S. government's stance against Apple remains unchanged: It still feels that Apple is legally obligated to help it search encrypted iPhones used in crimes. And though it was able to get into the iPhone at the heart of a terror case, and will probably be able to use the same technique on other phones, it will no doubt have to face off against Apple in court at some point. For Apple, there are concerns that a third party was able to bypass the security on an encrypted---and thus presumed impregnable---iPhone. This calls into question the security... --- ### Meet Brad and Paul at Build 2016! - Published: 2016-03-28 - Modified: 2024-11-19 - URL: https://petri.com/meet-brad-and-paul-at-build-2016/ - Categories: Main - Tags: Build 2016 - Article Type: News Microsoft's Build 2016 conference kicks off this week and both Paul and Brad will be there; here's a list of everything happening this week. Paul and I are heading to San Francisco tomorrow for Microsoft's Build 2016 conference and you can catch up on what will be discussed by checking out my preview post, here. Build keynotes: live stream + live tweets We'll be live-tweeting the Build 2016 keynotes on Wednesday and Thursday morning, and while you could simply follow us on Twitter, the easiest way to see the live video stream and both of our tweets is to tune in at our special Build 2016 hub. The Wednesday keynote is scheduled for 8:30 to 10:45 am PT (11:30 am to 1:45 pm ET). The Thursday keynote is scheduled for 9:00 to 11:00 am PT (12:00 to 2:00 pm ET). Windows Weekly LIVE Mary Jo Foley and Paul will be recording Windows Weekly live from the Moscone center at Build this year and they going to have a number of special guests, myself included. The day/time is different than usual, however: We're recording the show on Friday from 1:00 to 3:00 pm PT at the Channel 9 Hub in Moscone West, and you can get in to watch even if you're not signed-up for Build: Just email tickets@twit. tv for a downloadable ticket. (Build attendees do not need to do this. ) Get there early for a good seat, too: Doors open at 12:30. Windows Weekly meetup We're also hosting a Windows Weekly meet-up at the Red Dog Restaurant & Bar on Friday from 4:00 to 7:00 pm PT. Everyone is invited and there's no RSVP required. Here's the address: Red... --- ### Deploy VMs Using Azure Resource Manager and PowerShell > Learn how to deploy a VM in Azure using the new Resource Manager deployment model and PowerShell. - Published: 2016-03-28 - Modified: 2024-09-04 - URL: https://petri.com/deploy-vms-using-azure-resource-manager-and-powershell/ - Categories: Microsoft Azure - Tags: Azure, Cloud, PowerShell, Virtualization - Article Type: How To Learn how to deploy a virtual machine in Azure using the new Resource Manager deployment model and PowerShell. In today's Ask the Admin, I'll show you how to deploy a VM in Azure using the new Resource Manager deployment model and PowerShell. If you think back to my article Deploy VMs Using Azure Resource Manager on the Petri IT Knowledgebase, you'll recall that I showed you how to deploy a VM in Azure using the new management portal, which supports a deployment method called Resource Manager. While Azure Resource Manager (ARM) brings a new level of flexibility to Azure over the classic deployment method, if you followed through the instructions in the link above, you'll have realized that the process is more complex than before. In fact, ARM reminds me somewhat of deploying VMs in the Amazon cloud, which is more complicated than deploying Azure VMs in classic mode. To get a better understanding of Resource Manager and how it differs from the classic deployment method, see Aidan Finn's piece A Tale of Two Azures on Petri. Logging in and setting a subscription to use with Azure Resource Manager (ARM). (Image Credit: Russell Smith) So it should come as no surprise that deploying ARM-based VMs using PowerShell is also considerably more complicated than was previously the case. Each resource must be provisioned manually, unlike using the classic-mode cmdlets, where much of the heavy lifting was automated behind the scenes. The following script deploys a basic A0 VM in Azure using standard storage, a dynamic public IP address and friendly DNS name. A storage... --- ### Introducing Office 365 Connectors > Office 365 Connectors integrate all the tools you use every day for work into Office 365 Groups. - Published: 2016-03-28 - Modified: 2024-09-04 - URL: https://petri.com/introducing-office-365-connectors/ - Categories: Microsoft 365 - Tags: Office 365, Office 365 Connectors - Article Type: News Office 365 Connectors integrate all the tools you use every day for work into Office 365 Groups. Office 365 Connectors (Image Credit: Microsoft) Today, Microsoft's strategy tends to be partner over direct competition. This can be seen through their partnerships with Dropbox, Apple, Salesforce, and most recently with their Office 365 Connectors product. Instead of trying to develop their own project management tool or social network, Microsoft has chosen to integrate those services into Office 365.  This is great news for people who feel pulled into so many different directions to use the tools for work. Tools like Trello, Twitter, MailChimp, Asana and more are frequently used in parallel with Office 365, so Microsoft wants to encourage their shared customers to use Office 365 as their hub. Office 365 Connectors are all about keeping conversations in one place. Updates will come into the Office 365 Group from the connectors like a new message. From there the entire team can have a conversation about the update. For example, if you are working on a marketing team, you may follow a Twitter hashtag to stay on top of social media sentiment surrounding a product or event. Using Office 365 Connectors, you can have new tweets containing that hashtag captured in the Office 365 group. Then your team members can discuss a response or better understand their customers. Office 365 Connectors First Partners - Image via Microsoft Microsoft introduced Office 365 Connectors last November as a limited preview, but it's now rolling it out to their First Release Customers... . --- ### Microsoft’s Build Session List Goes Live, Teases Interactive Tiles And More - Published: 2016-03-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-build-session-list-goes-live-teases-interactive-notifications/ - Categories: Windows 10 - Tags: Live Tiles - Article Type: News The session list for Microsoft's upcoming Build conference has been announced and it includes a few teasers like interactive live tiles. Next week, Microsoft will be hosting its Build conference in San Francisco where the company will be talking about this year’s initiatives for most of its platforms. If you are headed out to the conference (both Paul and I will be there too), it is now possible to start planning your session road-map. Microsoft has released the list of courses that will be offered that you can view here. Everything from new features in Visual Studio to integrating Xbox Live into UWP apps will be discussed which means the keynote on Wednesday will be packed with new announcements. As with prior years, digging into the session list does provide a few hints about what features will be coming to new products, such as Windows 10 Redstone (codename), a release slated for June of this year.  One item that has already been uncovered is it looks like Microsoft is preparing to enable interactive notifications and possibly interactive Live tiles as well. From a session description, spotted by MSpoweruser, Microsoft will announce a new API that will allow for interactive notifications and what also infers as interactive tiles as well. The full description is below: "Notifications are an essential tool for engaging with your customers on Windows. We are building on the foundation of Action Center to give developers greatly increased flexibility in Adaptive Toasts. We will introduce a powerful API that enables a new class of apps to plug into the Notification pipeline and provide innovative experiences for users. Live Tiles... --- ### More Choices in PowerShell > Take your PowerShell scripts to the next level with custom menus and choice prompts. PowerShell MVP Jeff Hicks explains how. - Published: 2016-03-25 - Modified: 2024-09-04 - URL: https://petri.com/more-choices-powershell/ - Categories: PowerShell - Tags: Advanced, Scripting Take your PowerShell scripts to the next level with custom menus and choice prompts. PowerShell MVP Jeff Hicks explains how. A while back I wrote a few articles on creating a menu driven script in the PowerShell console. In those articles, I used Read-Host to prompt the user for a choice. Related: Building a PowerShell Console Menu Revisited, Part 1 Related: Building a PowerShell Console Menu Revisited, Part 2 If you don't mind digging into the . NET Framework, then that's not your only option. You have most likely encountered something like this in PowerShell: Typical PowerShell prompt for choice (Image Credit: Jeff Hicks) You enter one of the bracketed values and something happens. With a little scripting on your part, you can use this same concept in your scripts. The method is part of the builtin $host variable. The PromptForChoice method (Image Credit: Jeff Hicks) The PromptForChoice method has several variations. The parameters we'll use are essentially a caption, a message prompt, a collection of choices, and the default choice. Let's play. The most difficult part of the process is creating the collection of choices. This will be a collection of objects. First, I'll initialize an array. $coll = @ Next, I'll create one of these ChoiceDescription objects and save the result to a variable. $c = ::new("Choice &1") The text "Choice &1" will be displayed in the prompt. The & indicates what character to use for the choice. Whatever immediately follows will be used as you'll see. In this case, the number 1 will be the option. What does $c look... --- ### Microsoft’s Surface Hub Is Now Shipping To Customers - Published: 2016-03-25 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-surface-hub-now-shipping-customers/ - Categories: Hardware - Tags: Surface Hub - Article Type: News After two delays and a price change, Microsoft's Surface Hub is now shipping to customers. If you ordered a Microsoft Surface Hub, the company announced today that they have begun shipping the device to customers. This is a milestone the company has been pushing since last year, and today customers will begin getting notified about their devices. The path to shipping the product has been bumpy to say the least; initially opening up orders in July of last year, the device was delayed twice and the price was raised as well. With the logistical challenges behind them, the company is now opening up about who will be using the using the devices, like the Children's Hostpital of Philadelphia, and how they expect Hubs to change how we collaborate. The Surface Hub is a bold step from Microsoft to try and make conference rooms less mundane. Typically, a meeting is fraught with technology that comes up short, attendees forgetting documents or those who dial-in, being left out of the collaboration process; Microsoft's goal is to make meetings more productive with their new device. The company is not alone in this ambition either, Hewlett Packard Enterprise is also working to outfit conference rooms with easier to use and more functional technology. Microsoft believes that the Surface Hub will be a game-changer in the meeting space, citing that "in rooms and collaboration spaces with a Surface Hub installed experienced a 75% improvement in remote attendee setup and post-meeting productivity, saving about 15-20 minutes per hour-long meeting spent on setting up video or screen-sharing services and completing meeting notes. " If your company... --- ### Paul Thurrott's Short Takes: March 25 - Published: 2016-03-25 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-25/ - Categories: Mobile - Tags: News - Article Type: Overview Because yellow is the new purple, this edition of Short Takes focuses on Microsoft's interest in the Yahoo sale, How Tay.ai became a hate-spewing, racist nightmare, insider trader at Microsoft settles with SEC, Apple sells Office 365, hackers swarm to help government hack the iPhone, and Gamestop is over-ripe. Because yellow is the new purple, this edition of Short Takes focuses on Microsoft's interest in the Yahoo sale, How Tay. ai became a hate-spewing, racist nightmare, insider trader at Microsoft settles with SEC, Apple sells Office 365, hackers swarm to help government hack the iPhone, and Gamestop is over-ripe. Microsoft involved in Yahoo sale, but not in the way you might think No worries, folks. Microsoft isn't interested in buying Yahoo again. But it is available to provide "significant financing" to certain companies that may be interested in doing so. So why would Microsoft do such a thing? It's not altruistic. Instead, the software giant wants to ensure that its search agreement with Yahoo---which contributes significant numbers to Bing's usage figures---remains in place after the sale. Plus, let's face it: Whatever the deal is, it will cost Microsoft a lot less than the $48 billion it put on the table for Yahoo in 2008. God, think about what a waste that would have been. That joke of a company isn't worth $1 billion, let alone $48 billion. "Microsoft Graph: A way to build smarter, stickier apps" Ew, gross! Microsoft's Twitter AI bot gets dark, then goes dark Brad covered this yesterday, but I can't let this Friday pass without at least mentioning how terrible Twitter is. On the other hand, you kind of have to wonder how the geniuses behind Tay. ai couldn't have predicted that letting an AI chat bot "learn" its responses by interacting with real people... --- ### The Sams Report EP 33: A Few Redstones, Build Hype, Skypetastrophe - Published: 2016-03-25 - Modified: 2024-09-04 - URL: https://petri.com/the-sams-report-ep-33-a-few-redstones-build-hype-skypetastrophe/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including the a couple of new Redstone features, Tay expletives, Build hype and so much more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including the a couple of new Redstone features,Tay expletives, Build hype and so much more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://youtu. be/OSrF8Bg9G5g? t=485 RSS | SoundCloud | YouTube | iTunes --- ### Microsoft’s Testing New Survey Feature Called Office Forms > Microsoft is testing a new feature called Office Forms that makes it easy to administer surveys and quizzes. - Published: 2016-03-25 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-testing-new-survey-feature-called-office-forms/ - Categories: Microsoft 365 - Tags: Office Forms - Article Type: News Microsoft is testing a new feature called Office Forms that makes it easy to administer surveys and quizzes. Microsoft’s Office 365 platform is arguably one of the best business decisions the company has made in recent history. Moving its once expensive productivity suite to an annual subscription significantly lowers the barrier to entry for new users and also makes sure its users have the latest version of the application. The company is always looking for ways to increase the value proposition of the service and it looks like they are testing a new ‘Office Forms’ product. Currently in preview with Office 365 Education customers, it’s an easy way to assess student progress and get feedback with surveys, quizzes and more. As of right now, you need to have an Office 365 Education subscription to try it out, but if you don’t have an education subscription, you can look at the survey image below to get an idea how the inputs work; first uncovered by Walking Cat. Office Forms appears to operate like any other survey platform but it integrates into your Office 365 service which means it should be easy to distribute the content to your users in a secure manner. This feature, while not completely unique to Office, is one more tool that the company can use to entice schools to subscribe to Office 365 instead of Google Apps or other services. Seeing as feedback to teachers is hugely important to student development, if Microsoft can build out a system that reduces the burden to administer and collect quizzes and surveys, this could become a critical feature for teachers... . --- ### Microsoft Is Said To Be Interested In Contributing To A Bid For Yahoo! > Microsoft is said to be interested in contributing to a bid to buy Yahoo!'s assets but that they only want to be a minority owner. - Published: 2016-03-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-said-interested-contributing-bid-yahoo/ - Categories: Main - Tags: Microsoft, Yahoo - Article Type: News Microsoft is said to be interested in contributing to a bid to buy Yahoo!'s assets but that they only want to be a minority owner. Several years ago, Microsoft attempted to purchase Yahoo! with the deal failing to materialize. Given how Yahoo! has fallen significantly from its perch as once the top portal on the web for a wide variety of content including news, email and search, for Microsoft, it’s likely a good thing the acquisition came up short. Yahoo! , having tried to turn its business around with acquisitions like Tumblr and going mobile first, has failed to put the company back on to a path that will sustain its long term future. Because of this, the company has opened up the option to selling its core assets and if they can find a suitor; Microsoft is said to be interested in contributing to a bid, according to Re/Code. At this time, the discussions around supporting another bid for Yahoo! are still exploratory and Microsoft has not committed to backing a bid by any third-party. But, the company is interested in being part of any potential Yahoo! acquisition and they have good reason wanting to be a minority partner. Search. Microsoft is in a tough battle with Google and is doing nearly everything it can to gain search market share. If the company becomes a minority stakeholder in Yahoo! , they could easily tie-up a Bing partnership and claim stake to all of Yahoo! ’s queries generated by the millions of visitors that site attracts each month permanently. Yahoo! is said to want $10 billion for its assets and at this time, it is not known if any... --- ### Getting the Most Out of Office 365: Yammer Over Email, Part 2 > Email is over 40 years old, it is high time for a new, better, smarter communication tool, it is called Yammer. - Published: 2016-03-24 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-yammer-over-email-part-2/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office, Office 365, Yammer - Article Type: How To Still relying on email as your primary mode of communication? Find out how Office 365 and Yammer can increase your productivity. Email was invented in 1971 and much to the annoyance of people all over the world, it remains the dominant tool for business communication. Gmail made email cool again, but advertisers and reply-alls could not be stopped from ruining it right away. Because everyone has enough work, you don't need communication to be a chore too. If you're lucky, then your company has subscribed to Office 365 and included Yammer. If your IT department is anything like mine, then they set up your email on Outlook and made sure you had Excel working, then left you to figure out the rest on your own. So now you have a choice to make, keep using email like it is still the 70s or learn a new tool. But which tool should you learn? Easy, learn Yammer. Variety of Communication Email is so simple, it can be painful for the sender and the recipient(s). If you work in HR and need to make a company-wide announcement, then you run the risk of your important information getting lost in people’s inboxes. With Yammer, you can make a special type of post called an Announcement, which stands out from other posts. Similar to the Announcement post; a Praise is a special type of post which can be used to acknowledge employees for achievements. Yammer Praise Long email chains might be the worst possible tool to make group decisions. Being a modern platform, Yammer is built with polling in mind. Polls are... --- ### Current Status Episode 38: Storage Modernization with Leah Schoeb > Storage has evolved significantly over the years. During this episode, learn about how transformation in the data center is occurring as we speak through modernization of storage. - Published: 2016-03-24 - Modified: 2016-03-24 - URL: https://petri.com/current-status-episode-38-storage-modernization-leah-schoeb/ - Categories: Current Status - Article Type: Opinion Storage has evolved significantly over the years. During this episode, learn about how transformation in the data center is occurring as we speak through modernization of storage. Join us Thursday, March 24, 2016 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Leah Schoeb (@vleahschoeb). Storage has evolved significantly over the years. During this episode, learn about how transformation in the data center is occurring as we speak through modernization of storage. Join us to learn more! --- ### Microsoft’s Latest AI Experiment Heads Towards Ca’tay’strophe > Microsoft's new AI experiment, Tay.ai, has been pulled after responding to queries with racist and demeaning remarks. - Published: 2016-03-24 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-latest-ai-experiment-heads-towards-cataystrophe/ - Categories: Main - Tags: machine learning, Microsoft - Article Type: News Microsoft's new AI experiment, Tay.ai, has been pulled after responding to queries with racist and demeaning remarks. Microsoft loves to show off its machine learning capabilities, from identifying a breed of dog based on a picture to finding your celebrity match from a photo of you, these have all be quirky examples of how these tools can be used. But, not ever experiment goes well as the company launched Tay. ai yesterday, the chat bot quickly turned devious after a humorous start. Based off of a bot the company released in China, Tay. ai is an artificial chat bot that is designed to conduct research on conversational understanding. Unfortunately, after a humorous start, the bot quickly went south and started responding to queries with racist and demeaning remarks. Following remarks regarding presidential candidates, racial groups and similar demeaning remarks, Microsoft took the bot offline. The company has not said if or when the bot will return but if you ping the @tayandyou Twitter account, it responds by saying “I'm gonna be gone for a bit today. Gotta go visit the engineers for some updates”. The bot was designed to learn from its interactions which means the derogatory remarks are a result of the conversations it had corrupting the tool. It would appear that Microsoft built the tool to evolve as it conversed because Tay initially started out as a bot with the personality of someone in their young 20s but before being pulled, it was spewing out remarks of a bitter person that so no joy in the world. The Tay bot is an interesting look at how AI can... --- ### Windows 10 Tip: Metered Network Connections > A quick tip on how to manually designate a Wi-Fi network as a metered connection in Windows 10. - Published: 2016-03-23 - Modified: 2024-09-04 - URL: https://petri.com/qa-windows-10-tip-metered-network-connections/ - Categories: Windows 10 - Tags: networking, Windows 10 - Article Type: How To A quick tip on how to manually designate a Wi-Fi network as a metered connection in Windows 10. In today's Ask the Admin, I'll show you how to manually designate a Wi-Fi network as a metered connection. I recently found myself having to use a capped Internet connection while I was renting an apartment in Warsaw. Now while 25GB a week ought to be sufficient for the majority of people, because I work from home most of the time, it could be that I would quickly reach the limit and then be forced to work with a reduced download speed of 5MB/sec. To preserve as much data as I could, I decided to designate the Wi-Fi connection profile as metered, which prevents Windows from downloading updates from Microsoft and from performing other bandwidth-intensive operations. Metered Wi-Fi connections can also come in handy when you simply have an unreliable or slow connection, so you can prevent Windows from performing any bandwidth-hogging activities in the background. According to Microsoft's website, a metered connection may limit the amount of data that apps can download, and that you might notice the following changes in OS behavior: Windows Update will only download priority updates. Apps downloading from the Windows Store might be paused. Start screen tiles might stop updating. Offline files might not sync automatically. Under certain circumstances, Windows 10 is able to automatically determine whether a Wi-Fi network should be metered, such as when connecting to a mobile hotspot. Applications can also be made aware that the device is using a metered connection, although the only example I’ve seen of... --- ### Intel Says "Tick-Tock" Processor Development is Over - Published: 2016-03-23 - Modified: 2024-09-04 - URL: https://petri.com/intel-says-tick-tock-processor-development/ - Categories: Hardware - Tags: Intel, News - Article Type: News Stung by its failure to maintain long-held processor development techniques, Intel has declared that the era of "tick-tock" is over, to be replaced by a slower-moving methodology it calls "Process-Architecture-Optimization." Source: Jiahui Huang (Flickr) Stung by its failure to maintain long-held processor development techniques, Intel has declared that the era of "tick-tock" is over, to be replaced by a slower-moving methodology it calls "Process-Architecture-Optimization. " The change was officially communicated in an Intel 10-K filing with the U. S. Securities and Exchange Commission (SEC), and was first reported by The Motley Fool. For the uninitiated, Intel has been on its tick-tock processor development schedule for several years, with major releases---called "ticks"---interspersed with minor releases, called "tocks. " The schedule was similar to the one Microsoft used with Windows Server, where the minor releases were branded with the "R2" moniker. Intel's "tick-tock" schedule has been falling apart over the past few years, however, as the move to ever-smaller die sizes has proven more difficult and time-consuming that Intel had expected. For the most recent processor generation, called Skylake," Intel had originally expected to move forward to a new "tick" release, called "Cannonlake," that would usher in a new era of smaller 10nm manufacturing process. But it was forced to wedge in yet another "tock" release, called "Kaby Lake," instead. Kaby Lake, like Skylake, will use the existing 14nm process, and will arrive in late 2016. And Cannonlake has slipped to late 2017. But now, we know that the Skylake/Kaby Lake debacle is not be a one-off. And the "tick-tock" era is officially over. "We plan to introduce new architectures on a regular cadence," Intel explains... --- ### Microsoft’s Set To Take on AWS Lambda With Azure Functions > A new feature for Azure has been uncovered and it will likely be talked about next week at Microsoft's Build conference in San Francisco. - Published: 2016-03-23 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-set-take-aws-lambda-azure-functions/ - Categories: Microsoft Azure - Tags: Azure, Functions - Article Type: News A new feature for Azure has been uncovered and it will likely be talked about next week at Microsoft's Build conference in San Francisco. Next week, Microsoft heads to San Francisco to host its largest developer conference of the year, Build. At this event, the company will talk about everything from Windows 10 to its Universal Windows Platform and of course, Azure. A feature that has been available on AWS but not on Azure for some time is what Amazon calls AWS Lambda, or the ability to run code without provisioning or managing servers. Google also has an alpha version of this type of feature called Google Cloud Functions and now it looks like Microsoft is set to join the party. Uncovered by Walkingcat, Azure Functions appears to be in the early testing stage and may be announced next week. You can check out the landing page here, but there is not much to see yet, likely as the company is trying to keep the feature off the radar until it is ready to announce it. Microsoft describes functions as “containers where your functions get executed”. In the setup menu there are rudimentary controls that allows you to name the function and then select the region in which it will run. This feature will not be a revolutionary addition to Azure but one that will help it close the gap in features when compared to its competitors. Seeing as AWS and Google both have this feature released already, Microsoft is playing catch-up here but at least they are not ignoring a service that has been highly requested by developers. Expect to hear a lot more about what Microsoft... --- ### Working with PowerShell Variables > PowerShell teacher Jeff Hicks continues his look at working with variables including demonstrating how to create a read-only variable. - Published: 2016-03-22 - Modified: 2024-09-04 - URL: https://petri.com/working-with-powershell-variables/ - Categories: PowerShell - Tags: Beginner - Article Type: How To PowerShell teacher Jeff Hicks continues his look at working with variables including demonstrating how to create a read-only variable. In a previous article, I introduced you to PowerShell variables. With variables, you can easily define a variable to store a piece of information or to hold the contents of a command. This latter idea is very important. If you have a PowerShell expression that takes a bit of time to run, and you want to try different things with the results, you don't want to be re-running the command. Instead, define a variable. Related: Introduction to PowerShell Variables $Scripts = dir c:scripts*. ps1 –Recurse Now I can use the variable, Scripts, as much as I want without having to re-run the directory listing. Using a PowerShell variable (Image Credit: Jeff Hicks) As you can see, there's nothing magical about defining a variable. You can change the value simply by assigning a new value. $scripts = dir c:scripts -Recurse –file This is why I suggest using meaningful variable names instead of something like X or VAR. On a related note, you can also run into situations like this where you tell PowerShell to turn something into a specific type of object. Defining a variable type (Image Credit: Jeff Hicks) I've defined the variable foo to create a datetime object. Later on in the day, I might try to re-use that name like this and get an error: The problem with a typed variable (Image Credit: Jeff Hicks) What happened is that you told PowerShell that you... --- ### A Guide to Different Microsoft Azure Backup Options > Aidan Finn outlines the different ways businesses can use Microsoft Azure Backup. - Published: 2016-03-22 - Modified: 2024-09-04 - URL: https://petri.com/guide-different-microsoft-azure-backup-options/ - Categories: Microsoft Azure - Tags: Azure Backup, Data Protection Manager, Disk-Disk-Cloud Backup, DPM, hybrid cloud, MABS, MARS, Project Venus, System Center, System Center Data Protection Manager - Article Type: Overview Aidan Finn outlines the different ways businesses can use Microsoft Azure Backup. Azure is getting a lot of hype in the Microsoft world right now. For most companies, Microsoft Azure's hybrid cloud solutions are the easiest to adopt, thanks to the fact that these solutions supplement, rather than replace existing on-prem investments. One such feature is Azure Backup, which offers online backup. Online backup is nothing new; many have been customers or resellers of these solutions for over a decade. But Microsoft is still a relatively new player in this market, and most are unaware of what Azure Backup can offer. In this article, I'll explain three different ways you can use Azure Backup to protect your on-premises workloads. Three Different Ways to Use Azure Backup One thing that people find confusing is that there's different variations of Azure Backup. That can be confusing, so I like to identify the three hybrid offerings using the following names: MARS: The Microsoft Azure Recovery Services agent that is deployed onto a machine that you want to backup directly to Azure. DPM: Microsoft System Center Data Protection Manager is an on-premises backup server that will perform disk-to-disk-to-cloud backup. MABS: The Microsoft Azure Backup Server is also an on-premises backup server that you can get from Microsoft to perform disk-to-disk-to-cloud backup. The following table differentiates the three Azure Backup hybrid, online backup solutions. Differentiating the online backup solutions from Azure (Image Credit: Aidan Finn) Microsoft Azure Recovery Services (MARS) The Microsoft Azure Recovery Services agent can be downloaded and installed onto a Windows PC... --- ### Google’s Gearing Up To Fight Microsoft, Amazon In The Cloud > Google is spinning up its efforts in the cloud space and will be building out 12 new data centers in the next 18 months to take on Amazon and Microsoft. - Published: 2016-03-22 - Modified: 2024-09-04 - URL: https://petri.com/googles-gearing-fight-microsoft-amazon-cloud/ - Categories: Google Cloud Platform - Tags: Google Cloud Platform - Article Type: News Google is spinning up its efforts in the cloud space and will be building out 12 new data centers in the next 18 months to take on Amazon and Microsoft. The cloud, once thought of as a complimentary service to on premise deployments, is quickly becoming a primary solution for running mission-critical applications. At the present time, Amazon is currently the front-runner, Microsoft is close behind, and now Google is starting to get serious about its efforts in this space. While Google has been known in this space with its Cloud Platform, the company is about to kick things into high-gear with the development of 12 new data centers in the next 18 months, according to Bloomberg. Diane Green, Google's new cloud chief, is spinning up marketing efforts and encouraging sales teams to be hungrier and less complacent. With two data centers opening soon in Oregon and Japan, Google is trying to get back on the path to being a primary competitor in this space; the company is currently the third largest cloud vendor, both Amazon and Microsoft are ahead of the Mountain View based company as Google are still building out data centers to compete effectively. Google deepening its ambitions in this market is a win for the end user as we have seen Amazon and Microsoft slug it out for superiority in this space, prices have fallen and features have expanded at a rapid pace. With Google showing its intent to take a slice of the cloud pie, the pressure will only increase on pricing and in the long term, this makes moving to the cloud more cost effective. On premise hardware is hardly a thing of the past and companies will continue to... --- ### Apple Product Launch Overshadowed by Looming Legal Fight - Published: 2016-03-22 - Modified: 2024-09-04 - URL: https://petri.com/apple-product-launch-overshadowed-looming-legal-fight/ - Categories: Mobile - Tags: Apple, Apple Watch, iPad, iPhone, News - Article Type: Opinion On a day in which Apple padded its product lineup with new models, the consumer electronics giant received a legal reprieve: The DOJ delayed a scheduled San Bernardino terrorism hearing, stating that it may have found a way to unlock the iPhone at the center of the case. On a day in which Apple padded its ever-growing product lineup with new models to fill perceived gaps, the consumer electronics giant received a legal reprieve: The U. S. Department of Justice delayed a scheduled court date in the San Bernardino terrorism case, stating that it may have found a way to unlock the iPhone at the center of the case. The potentially blockbuster revelation that the government might have found a way to bypass the encryption on a terrorist's smart phone overshadowed the modest product upgrades Apple announced on Monday: A new small iPhone, a smaller iPad Pro, and some new smart watch strap designs. As you likely know, Apple is embroiled in a legal battle over a governmental request to unlock a smart phone that was used by a terrorist in a U. S. -based attack and was owned by a local government that has already given Apple permission to unlock the device. But Apple has fought back tenaciously, claiming that this case isn't about helping law enforcement learn more about the terrorist and his plans, and is really a broader argument that pits our rights to privacy over the our need for security. The case is so hotly contested that Apple CEO Tim Cook took valuable time away from peddling his company's expensive new products to promote the moral high ground on which he believes he and Apple stand . "We built the iPhone for you, our customers," Mr. Cook stated during Monday's press conference. "And we know... --- ### Small Business Tools: What I Use - Published: 2016-03-21 - Modified: 2024-09-04 - URL: https://petri.com/small-business-tools-use/ - Categories: Cloud Computing - Tags: business, Productivity, Software - Article Type: Opinion Russell Smith provides a rundown of the software he uses to manage his small business. I like to practice what I preach, so the technologies I write about and recommend are those that I use. Not that they're always the right fit for others, but at least by using them myself, I get a good idea of both their strengths and weaknesses. Much of what I've listed below isn't free, but in my opinion, all more than justify their cost. Windows 10 It might go without saying, but I have Windows 10 installed on the notebook that I use as a daily driver. I deploy and write about Microsoft technologies, so it makes sense for me to use Windows. And unlike if I opted to use a Mac, or one of the many Linux distros, I can run the most up-to-date and complete version of Office, and get built-in compatibility with Microsoft's cloud services, such as OneDrive. Office 365 The primary reason I use Office 365 is for hosted Exchange, which just works better than POP3/SMTP or IMAP. But Office 365 Business Premium also allows me to install Office 2016, and I get access to editing features in the corresponding mobile apps along with 1TB of cloud storage per user. I like that Word Mobile connects to OneDrive and offers a list of recently opened documents, even if those files were accessed using a different device. Office 365 (Image Credit: Russell Smith) I prefer Outlook 2016 over the web-based Mail app in Office 365, as it provides easier bulk... --- ### How and why I use the public cloud to get my work done > Learn how one IT pro uses the public cloud to be more productive in his day-to-day work. - Published: 2016-03-21 - Modified: 2024-09-04 - URL: https://petri.com/use-public-cloud-get-work-done/ - Categories: Cloud Computing - Tags: sponsored - Article Type: Opinion Learn how one IT pro uses the public cloud to be more productive in his day-to-day work. Sponsored IT content provided by Veeam Let's be honest: As an IT professional, I am not supposed to like the public cloud. Over the years, I have heard horror stories about the cloud taking over our work because everything can be done more quickly while being automated and more cost-effective. If IT professionals don’t watch out, our jobs will be lost and the accountant will take over provisioning resources for various business units with its credit card. As a technical evangelist, I have the privilege and advantage of speaking with enterprises of all sizes throughout the year. This is one of the discussions that come up often during architectural meetings. Either C-level management is present and tells us to use it because above mentioned advantages or the IT professionals tell me directly that they are getting pushed in that direction. However, reality proves time after time that on-premises infrastructure — whether or not you call it the private cloud is up to you — is still used the most for production environments. Slowly, we see the adoption of hybrid clouds as certain front-end workloads (as I like to call them) are considered to be moved to the public cloud (for the record, your local service provider is a public cloud also). Websites, worker roles and such are candidates, but the data mainly stays on premises for various reasons. One of the things I do like to do is discuss how I effectively use the public cloud to my... --- ### Microsoft’s Working on a New Bot Framework > Microsoft is working on a new bot framework and the first details of the new service have been uncovered. - Published: 2016-03-21 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-working-new-bot-framework/ - Categories: Main - Tags: Bot Framework - Article Type: News Microsoft is working on a new bot framework and the first details of the new service have been uncovered. It looks like Microsoft is working on a new bot framework, and the company might be gearing up to make a public announcement in the near future. It's not clear if Microsoft will talk about this service at Build next week, but thanks to a few leaked assets, we have a basic understanding of the service. WalkingCat uncovered a developer code of conduct for the new bot framework that urges transparency in its use, such as not using the framework to scrape sensitive data without consent. The bot framework is described as "a set of web-services that enable intelligent services and connections using conversation channels. " When the service does go live, it appears that it will reside at botframework. com, which currently points to a 404 page that's hosted on Azure. Once the site is live, based on the image above, the page will make it easy to manage, find and register your bot once it has been created. Once details started to show up about this service, Microsoft quickly pulled any remaining assets associated with the bot framework, which means we are left with more questions than answers. Seeing as the company is actively building out the website for it, hopefully we won't have to wait too much longer to learn more. --- ### What Is Microsoft Entra ID? (Azure AD) - A Comprehensive Guide > What is Microsoft Entra ID? In today's Ask the Admin, I'll explain what Microsoft Entra ID is and how it compares to Windows Server Active Directory, including the difference between cloud, synchronized, and federated identities. - Published: 2016-03-18 - Modified: 2024-09-04 - URL: https://petri.com/what-is-azure-active-directory/ - Categories: Identity Management, Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure, Cloud, Identity Management - Article Type: Overview Microsoft Entra ID - previously called Azure Active Directory (Azure AD) - is Microsoft’s cloud-based identity and access management (IAM) cloud service. Azure AD is generally seen as a move from on-premises IAM to the cloud. Learn more about Azure AD here. What is Microsoft Entra ID (Azure Active Directory)? Microsoft Entra ID (Azure AD, AAD) is a cloud IAM (Identity Access Management) service that allows administrators to manage end-user accounts, identities, and devices, among other entities. Several main services make up the core service - access management, directory, and access identity protection. Identity management in the cloud Microsoft Entra ID is generally described as 'Active Directory in the cloud'. Each company has its own tenant to administer users and resources. Resources and employees are automatically protected from outside attacks via default security settings. If this is your focus, I plan to write another article solely based on Microsoft Entra ID security. Watch for it. Microsoft Entra ID (Azure Active Directory) - Identity management in the cloud (Image Credit: Microsoft) Security has been one of the main focuses of Microsoft Entra ID over the past ten years or so. Microsoft announced and released several security measures including secure sign-in, and multifactor authentication (MFA) to protect your users. Who uses Microsoft Entra ID? Every customer of Microsoft 365 uses Entra ID inherently. It is the backbone of all identity and authentication services across the M365 stack of applications and services. One important aspect of Microsoft Entra ID is its 'Platform... --- ### Microsoft Is Building Another Bridge, Port Chrome Extensions To Edge > Microsoft is building out a new 'bridge' that will make it easy to port Chrome extensions to Edge. - Published: 2016-03-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-building-another-bridge-port-chrome-extensions-edge/ - Categories: Windows 10 - Tags: Bridge, Edge, Extension - Article Type: News Microsoft is building out a new 'bridge' that will make it easy to port Chrome extensions to Edge that will make sure its browser receives the same attention as Firefox and Chrome from third party devs. Last year at Build, Microsoft made a lot of noise about the 'bridges' it was building to make it easier to port applications to the Windows environment. While one bridge has fallen, the company is currently building another to make it easy to bring extensions to Edge. With the latest Windows 10 Insider release that shipped yesterday, Edge now supports extensions. While there are only three officially available from the company at this time, they are going to make it easy to port Chrome extensions to Edge. Jacob Rossi, an engineer working on Microsoft Edge, stated on Twitter, "we're working on a porting tool to run Chrome extensions in Edge. Not yet finished and not all APIs supported. " What this means is that for developers who have already built an extension for Chrome, they will be able to easily port it over to Edge. When the feature does launch to all Windows 10 users later this year, there should be a wide selection of extensions to install. As of today, only those participating in the Fast ring have access to extensions. The way Microsoft has implemented extensions makes a lot of sense; rather than trying to reinvent the feature, they are allowing developers to utilize their existing products to make it as easy as possible to bring them to Edge. Because of this, Microsoft should not have an issue with making sure its browser receives the same attention as Firefox and Chrome from third party devs. --- ### Create a VNet-to-VNet VPN in the Azure Management Portal > Learn how to create two virtual networks (VNets) and link them together using a Virtual Private Network (VPN) in the new Azure Management Portal. - Published: 2016-03-18 - Modified: 2024-09-04 - URL: https://petri.com/create-a-vnet-to-vnet-vpn-in-the-azure-management-portal/ - Categories: Microsoft Azure - Tags: Azure, networking, VPN - Article Type: How To Learn how to create two virtual networks (VNets) and link them together using a Virtual Private Network (VPN) in the new Azure Management Portal. In today's Ask the Admin, I'll show you how to create two virtual networks (VNets) and link them together using a Virtual Private Network (VPN) in the new Azure Management Portal. The new Azure management portal reached General Availability in December last year, and because it's based on Azure Resource Management (ARM) rather than the classic deployment methods supported by the original management GUI, almost all configuration tasks have changed. The process involves the following steps: Create a VNet Add a gateway subnet Assign a public IP address Add a virtual network gateway Repeat steps 1 – 4 to create a second VNet Create a connection object that connects the two virtual network gateways If you still prefer to use the old management console, take a look at Aidan Finn's article Deploying VNet-to-VNet VPNs in Azure on the Petri IT Knowledgebase. Create a new virtual network Start by creating a virtual network. For the purposes of this article, I'll create the first virtual network with an address space of 10. 8. 0. 0/16 and default subnet using the 10. 8. 0. 0/24 address range. The second subnet will have an address space of 192. 168. 0. 0/16 and default subnet with the address range 192. 168. 0. 0/24. Log in to the Azure management portal here. In the left pane of the portal window, click + New. In the New pane, click Networking. In the Networking pane, click Virtual network. In the Virtual network pane, make that Resource Manager is selected as the deployment model in the dropdown menu and... --- ### The Sams Report EP 32: HERE Are The Extensions, Redstone Visions - Published: 2016-03-18 - Modified: 2024-09-04 - URL: https://petri.com/71288-2/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including the brand new extensions for Edge, Windows 10 mobile finally released for (almost) everyone, Here goes there, and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including the brand new extensions for Edge, Windows 10 mobile finally released for (almost) everyone, Here goes there, and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://youtu. be/QqyOxrCklvM RSS | SoundCloud | YouTube | iTunes --- ### Paul Thurrott's Short Takes: March 18 - Published: 2016-03-18 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-march-18/ - Categories: Windows 10 - Tags: News - Article Type: Overview Because Spring is in the air but snow is in the forecast, this edition of Short Takes focuses on how Microsoft uses malware techniques with Windows 10 upgrade push, Azure isn't scalable enough for Apple, a big Lenovo reorg, Zuckerberg jogs in the China smog, and more. Because Spring is in the air but snow is in the forecast, this edition of Short Takes focuses on how Microsoft uses malware techniques with Windows 10 upgrade push, Azure isn't scalable enough for Apple, a big Lenovo reorg, Apple usage is falling, Zuckerberg jogs in the China smog, and more. Report: Microsoft is using malware techniques to distribute Windows 10 upgrade I've written many times about the slippery slope Microsoft is going down in jamming the Windows 10 upgrade down unsuspecting users' throats. Buta Register report suggests that this effort is even more sinister, and it accuses the software giant of using "malware techniques" to distribute the upgrade. " subverts a channel intended for one purpose (security hotfixes) for another (advertising); it changes its 'attack vectors', it 'conceals itself' kinda like a rootkit; it uses 'polymorphic' techniques; and it consistently overrides users' actions and permissions. " I usually find this kind of thing to be a bit hyperbolic. But in this case, the author is right, and what Microsoft is doing is clearly wrong. And he paraphrases my own argument when he concludes that this behavior is undercutting the trust that is required for Microsoft's cloud services future. "Microsoft still isn't giving up on putting Windows on phones" No, the market is doing that for Microsoft. Report: Microsoft Azure not scalable enough to keep up with Apple's growth So this is interesting, if true. In a story about an Apple project designed to decrease the consumer... --- ### Getting the Most Out of Office 365: Use Yammer Over Email, Part 1 > Email is out of date and if your company uses Office 365, then they might have Yammer, which is a far superior communication tool. - Published: 2016-03-17 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-use-yammer-over-email-part-1/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365, Yammer - Article Type: How To Email is out of date and if your company uses Office 365, then they might have Yammer, which is a far superior communication tool. Email is a terrible way to communicate. Emails are too simplistic and too uniform, which results in adding more to your daily workload. Luckily for people working today, there are better looks for communicating in a business. Some small businesses are flocking to tools like Slack or HipChat, but those are just glorified instant messaging clients. Any truly modern communication tool will provide more nuanced elements of correspondence that exist in the real world. Yammer is the modern communication tool that Microsoft has been pitching to their enterprise customers and has been including into their Office 365 plans. Yammer offers the full set of tools that people need to communicate, organize communication, and share information properly. If you are sick of email and are interested in trying a new more sophisticated tool, then give Yammer a try. The rest of this how-to will be an email-to-Yammer conversion cheat sheet. Private Communication Sending private messages is the essence of email, and there's a drop-in replacement in Yammer with the no-nonsense name of "Private Message. " These private messages can be sent to one or more recipients just like an email. While have the ability to send a private message is nice, it should be avoided as much as possible, because the point is to move toward a more advanced type of messaging. Yammer Inbox Resembles Email Inbox Team Messages Sending messages to your team could occur via a Private Message, but it should take place in the group timeline. First... --- ### Microsoft Has Released Windows 10 Mobile For Existing Devices > Microsoft has finally released Windows 10 Mobile for existing Lumia smartphones and you can download the update now. - Published: 2016-03-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-released-windows-10-mobile-existing-devices/ - Categories: Hardware - Tags: Windows 10 Mobile - Article Type: News Microsoft has finally released Windows 10 Mobile for existing Lumia smartphones and if your phone is part of the initial wave, you can download the update now. The wait is finally over, Microsoft pushed the big red button and has begun pushing out Windows 10 mobile for existing devices. If your device is set to receive the new OS, you can check for the update now by searching for the update in Windows update inside the Settings menu. This is a big update for anyone who is currently running Windows Phone 8 and brings the older devices new features like a refreshed Start screen, improved Cortana integration, updated Live tiles, improved app support, enhancements to Action Center and the list goes on and on. Most importantly, this update brings the Windows 10 core to your device which makes your phone run more efficiently, capable of receiving updates faster, and it should sync better with its desktop counterpart. To check if the upgrade is available for your phone, go to the Store, install the Upgrade Advisor app, run the app to see if the update is available, and then select Enable Windows 10 upgrade or see if your device is included in this list: Lumia 1520, 930, 640, 640XL, 730, 735, 830, 532, 535, 540, 635 1GB, 636 1GB, 638 1GB, 430, 435, BLU Win HD w510u, BLU Win HD LTE x150q, MCJ Madosma Q501.  The company says that not every exsiting Windows Phone 8 device will get the upgrade as "many older devices are not able to successfully upgrade without an impact on the customer experience". If you upgrade and do not like the OS or are getting poor performance, it is... --- ### For Microsoft, Aggressive Is The New Normal > Microsoft is returning to its roots when it comes to pushing new software and Windows 10 shows how it will proceed moving forward. - Published: 2016-03-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-aggressive-new-normal/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: Opinion Microsoft is returning to its roots when it comes to pushing new software and thanks to the threat of government intervention being behind it, they are free to pursue new opportunities. Many, many years ago, there was a time in Microsoft's history that being aggressive would land them in hot water. The story of the EU fining the company for bundling its browser and then forgetting to include a browser ballot screen are well documented and are a part of the reason why the company could not get away with harassing users to upgrade or offering tools to make it easy to switch platforms. In the past week, we have seen Microsoft directly go after Oracle, offer up a tool to make it easier to ditch Evernote and pit employees against admins when it comes to Windows 10. Reaching further back, we see the company placing Windows 10 upgrade advertisements in Windows 7 and 8 trying to get consumers to upgrade, attacking Apple’s MacBook with advertisements for its Surface, and the list goes on and on. One thing has become clear in the past 18 to 24 months: Microsoft is not sitting back and letting the market dictate when users should upgrade. The tech giant is now pushing their products without repercussion as the market is now allowing them do this. With Windows XP, companies only upgraded after the support for the operating system came to an end, and Microsoft is hellbent on making sure this same scenario does not play out again with Windows 7. A few years ago, if they would have offered up free licenses to Oracle users, tried to buy Accompli, or released a tool that made it... --- ### Introduction to PowerShell Variables > Veteran PowerShell trainer Jeff Hicks kicks off an exploration of defining and using variables in PowerShell, including some best practices. - Published: 2016-03-16 - Modified: 2024-09-04 - URL: https://petri.com/introduction-to-powershell-variables/ - Categories: PowerShell - Tags: Beginner - Article Type: How To Veteran PowerShell trainer Jeff Hicks kicks off an exploration of defining and using variables in PowerShell, including some best practices. When teaching PowerShell, there's always a bit of a chicken and the egg situation. I want to teach PowerShell concepts, but sometimes I need to use something I haven't had an opportunity to teach yet. One such item is the concept of variables in PowerShell. So let's spend a little time looking at this from a beginner's perspective so that you can move onto more interesting and useful PowerShell concepts. What is a Variable? At its simplest form, a variable is placeholder for something. That something could be a number or a string of text. It could be service object, or it could be bunch of service objects. The variable becomes a shortcut to this information. Typically, we create variables using the assignment operator, also known as the equal sign. $n = "jeff" The name of the variable can be as long or as short as you need it be. Technically you can use spaces, but I don't recommend it. Stick with alphanumeric characters, and if you really, really need it, use the underscore or dash characters. You also don't need to use prefixes like we did in the days of VBScript, often referred to as Hungarian Notation. There's no need to define a variable like this: $strComputername = "chi-core01" When I see a command like this in a script, I can tell that the scripture hasn't fully embraced the PowerShell paradigm. There's no reason for the 'str' prefix because I already know that "Computername" is going to be... --- ### PowerShell Problem Solver: More with Negatives > PowerShell expert Jeff Hicks returns with another solved problem this time identifying disk volumes not formatted as NTFS. - Published: 2016-03-16 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-more-with-negatives/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To PowerShell expert Jeff Hicks returns with another solved problem this time identifying disk volumes not formatted as NTFS. In a previous PowerShell Problem Solver, I tackled the problem of documenting something that isn't there, namely a specific service. The original online post I came across had a second problem that falls into the same category. Although it's probably true that all volumes on all servers are configured for NTFS, he had to prove it. I took this also as a challenge to identify volumes and servers that don't meet the criteria. As with all of these articles, pay more attention to techniques and ideas than necessarily to the final result. Read: PowerShell Problem Solver: Finding What's Not There As in my previous article, I have a variable with a list of server names that I know are running and that I can access. You would need to include error handling into your solution, but I don't want that to complicate the situation or distract you. I've also decided that I'm only interested in logical drives and not necessarily all volumes. This means I will use the Win32_Logicaldisk class with Get-CimInstance, but you could easily use Win32_Volume in its place. I'll start with a simple command like this: Get-CimInstance win32_logicaldisk -computer $servers | select Caption,FileSystem,Volumename,PSComputername Listing logical disks with WMI and PowerShell (Image Credit: Jeff Hicks) Although this isn't the final result, it helps me narrow down the problem. In this case, I want to only identify servers with NTFS, which should also mean I can revise my command to include a WMI filter. Get-CimInstance win32_logicaldisk -computer $servers -filter... --- ### The Expectations, Hopes, and Dreams for Microsoft’s Build 2016 Conference > Microsoft's Build 2016 conference is two weeks away and to help set the expectations for the event, Brad Sams outlines what might be discussed. - Published: 2016-03-16 - Modified: 2024-09-04 - URL: https://petri.com/expectations-hopes-dreams-microsofts-build-2016-conference/ - Categories: Main - Tags: Build 2016 - Article Type: News Microsoft's Build 2016 conference is two weeks away and to help set the expectations for the event, Brad Sams outlines what might be discussed. In two weeks, Microsoft will be hosting its largest development conference of the year in San Francisco where the company will be talking about a wide variety of topics, including Windows 10, Azure, SQL Server, SharePoint and the list goes on and on. During this event, the company typically sets the tone for the next year with its priorities and the direction they are taking their products. Last year at Build, the company announced 'bridges' for making it easier to port apps to the Windows ecosystem and while the success of those initiatives has been a bit mixed, (the Android bridge is dead) there have been bright spots too, the Islandwood bridge is still moving forward. But the past is behind us, and let's take a look at what the company is working on for this year. The Expectations: There are a few general areas that are easy to highlight that will be a major focus of the event; the company will talk about its next iteration of Windows 10, slated to arrive in the first half of the year that will bring with it new features to the operating system. With the new OS will come updates to its Universal Windows Platform (UWP) that will make them more flexible, give them new features while retaining the controlled environment and easy portability that separates them from traditional win32 apps. Expect to see demos of 'premier' applications that are using these new functionalities to help showcase what can be done with a store... --- ### Report: Apple to Improve iCloud Security in Wake of Encryption Debate - Published: 2016-03-16 - Modified: 2024-09-04 - URL: https://petri.com/report-apple-improve-icloud-security-wake-encryption-debate/ - Categories: Mobile - Tags: Apple, encryption, iPhone - Article Type: News Apple is still fighting a hotly-debated legal battle over law enforcement requests to bypass encryption on its iPhone handsets. But the consumer electronics giant is also reportedly working to strengthen the security of iCloud, which is currently the weak link in Apple's arsenal. Apple is still fighting a hotly-debated legal battle over law enforcement requests to bypass encryption on its iPhone handsets. But the consumer electronics giant is also reportedly working to strengthen the security of iCloud, which is currently the weak link in Apple's arsenal. This is important for two reasons. First, iCloud has already been hacked, sort of, via phishing attacks aimed at celebrities. And second, because Apple does hold the encryption keys for iCloud, it cannot refuse---and, to date, has not refused---law enforcement requests for data held there. That could be changing, according to a report in the Wall Street Journal. Apple's plan---only vaguely stated in the report---is to improve the security in iCloud so that not even Apple can access encrypted customer information stored in the service. But doing that comes with risks: If a user forgets their password and other security information, it's possible that they could lose a lifetime of photos or other important personal data. So the trick is an age-old one: Improve security while not harming users or making the system too complex to use. This is important because most iPhones are configured to automatically backup their data to Apple's iCloud service. And iCloud, to date, has been left wide open, with Apple proving to be much more forthcoming in providing iCloud-hosted data to law enforcement, in part because it really does have access to that information. More topically, Apple's iCloud also sits at the center of the San Bernardino terrorism case: The... --- ### Why Is Microsoft Releasing SQL Server on Linux? > Aidan Finn provides his take on why Microsoft's is releasing its SQL Server platform to the open source Linux platform. - Published: 2016-03-15 - Modified: 2024-09-04 - URL: https://petri.com/why-is-microsoft-releasing-sql-server-on-linux/ - Categories: SQL Server - Tags: Azure, Cloud, cloud computing, Containers, Docker, linux, SQL Server - Article Type: Opinion Aidan Finn provides his take on why Microsoft's is releasing its SQL Server platform to the open source Linux platform. In this post I'm going to look at some of the common reasoning behind Microsoft's recent announcement that SQL Server will be released on Linux, along with my thoughts on why I think Microsoft is releasing this $2 billion business on an open source operating system. Stealing Business from Oracle I have no doubt that Microsoft wants to take more business from Oracle. But a line I heard was that some enterprises are running Oracle on Linux, and Microsoft wants to have an alternative for those customers. The argument is that those customers cannot afford Windows Server. That's a bubble that begs to be burst. Any business that can afford paid-for software from Oracle is not short of cash. Switching from any version of Oracle database products to SQL Server will more than cover the cost of Windows Server and the requisite Client Access Licenses (CALs). But to be honest, there are very few organizations that will be able to afford Oracle software that do not already own Windows Server and Windows Server CAL licenses. Embracing the Competition Microsoft has made huge efforts to embrace the competition. Office runs on Android and iOS. Lots of apps appear on Android before they do on Windows. Microsoft's public cloud even features a virtual switch appliance that's based on a Microsoft Linux distro, and they plan to release that for Azure Stack customers. The world has flipped and rain falls up! So this must be why SQL Server is coming to Linux,... --- ### Microsoft’s Azure To Receive Crucial Government Certification > Microsoft's Azure cloud service is about to receive the highest level fedRAMP certification which will allow it to bid on high impact operations. - Published: 2016-03-15 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-azure-receive-crucial-government-certification/ - Categories: Microsoft Azure - Article Type: News Microsoft's Azure cloud service is about to receive the highest level fedRAMP certification, which will allow it to bid on high impact operations. There is no doubt about it, Microsoft is building out Azure to be the future of the company and to make sure they leave no stone unturned, the company is aggressively pursuing certifications for its cloud platform. From healthcare to now the US government, Azure is about to be awarded a critical certification to let it pursue more government contracts. Announced today, Microsoft expects its P-ATO (High Impact Provisional Authority to Operate) authorization to be signed by the end of the month, which means that they will be accredited for the highest level of FedRAMP applications. Until today, the company could only compete for contracts of applications that were low or medium impact operations, but with this new certification, they can now try to win the contracts for high impact projects. This is a big win for Microsoft as government contracts are among the most lucrative in the business in terms of revenue but also stability as well. Winning a high impact application contract can mean decades of significant revenue for the company and long-term stability for its cloud ventures. In the announcement, Microsoft notes that other companies have or will be awarded this same certification, too. While not specifically listed, it's likely safe to hedge that Amazon will be fighting for these same contacts as its platform is a significant competitor to Azure. Cloud computing, while once thought of as secondary option for deploying mission critical applications, is quickly becoming a primary option for companies around the globe. With... --- ### Planning for Windows Server 2016 > IT veteran Jeff Hicks shares his thoughts on getting the most from Windows Server 2016, what you might want to consider and the future of IT administration. - Published: 2016-03-15 - Modified: 2024-09-04 - URL: https://petri.com/planning-for-windows-server-2016/ - Categories: Windows Server 2016 - Article Type: Opinion IT veteran Jeff Hicks shares his thoughts on getting the most from Windows Server 2016, what you might want to consider and the future of IT administration. Recently I was involved in an email list discussion about Windows Server 2016 and the lack of graphical interface options. I know this is a topic I've covered before, but I hope you'll stay with me, as I think there's an new idea I haven't really considered before. In the past, IT pros could install a Windows server with options for a full graphical, desktop-like interface, a server core installation, or a middle ground called Minimal Server Interface. Although I've never installed anything with the Minimal Server Interface, you could easily add or remove the GUI after installation. In other words, you could do a full graphical installation, configure as necessary, and then remove the GUI bits. Or you could always add the GUI to a server core installation after the fact. But with Windows Server 2016, at least with Technology Preview 4 (TP4), these options are gone. And this is a good thing in my opinion. Microsoft, as they often do, rely on a great deal of market research and real-world analyses. How are companies deploying servers? Are they switching GUIs on and off? What's important to them? I can't speak for Microsoft, but I think they then balance this information with where they would like to go, as well as pesky requirements like security. With TP4, you now have to make a choice at installation. Do you need a full graphical environment or can you live with Server Core? There's no minimal UI, nor is there an... --- ### Why is Backup so Hard? > Aidan Finn gives his thoughts on why backup is so hard and difficult for IT professionals. - Published: 2016-03-14 - Modified: 2024-09-04 - URL: https://petri.com/why-is-backup-so-hard/ - Categories: Backup & Storage - Tags: Backup, Cloud, Virtualization - Article Type: Opinion Aidan Finn gives his thoughts on why backup is so hard and difficult for IT professionals. I've been thinking about a question for the past few months that I'm sure many of you have wondered about while sweating over the restore of a mailbox for a director or a lost line-of-business virtual machine. Why is backup and restore so difficult? Thinking Out Loud You might be able to guess from the nature of some of my recent posts that I've been doing a lot of work with Azure backup and disaster recovery solutions over the last 18 months. I've delivered a lot of presentations on the subjects to technical and sales staffs, and I've been challenging them to consider new ways to implement old requirements. Some see the need for change, others bring with them what I call "same old IT. " I've not put my thoughts into one place before, so I thought that I'd write what I've been thinking down for Petri and see what the readers think. In this article, I'm going to share my opinions on why I think that backup, which should be nothing more than just a glorified file copy, is overly complicated, unreliable, a business and job risk, and usually downright sucks. I'd love to hear what you think; so don't be shy -- please post what you think in the comments below. We Won’t Get Fooled Again I've encountered many kinds of IT staff since I started working in IT many moons ago. Some enjoyed a loud discussion, while others would hide when there was anything more vigorous... --- ### SharePoint 2016 Reaches RTM, Future of SharePoint Virtual Event Announced > Microsoft has announced today that SharePoint 2016 has reached RTM and it delivers many new capabilities. - Published: 2016-03-14 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-2016-reaches-rtm-future-sharepoint-virtual-event-announced/ - Categories: SharePoint, SharePoint 2016 - Tags: SharePoint 2016 - Article Type: News Microsoft has announced today that SharePoint 2016 has reached RTM, which brings with it many new features including the next generation of hybrid capabilities for the platform. Microsoft has announced today that SharePoint 2016 has reached RTM, which brings with it many new features, including the next generation of hybrid capabilities for the platform. In addition to reaching RTM, today marks the availability of cloud hybrid search for SharePoint Server 2013, too. If you are a volume licenses customer, Microsoft says that the new software will be available to those users starting in May. The new version of SharePoint increases the flexibility of deployment options by being able to choose from a traditional on-premises deployment, a hosted service with Microsoft Office 365 with SharePoint Online, deployment in Azure Infrastructure as a Service (IaaS), or a mix of these options with a hybrid approach. You can check out all of the new features in this release, here. If you are a SharePoint admin, Microsoft announced a new virtual event that's being held on May 4 to talk about the future of the platform. Not only will Microsoft share their vision for SharePoint via a detailed roadmap to help you prepare for upcoming features, the event will also feature deep-dive sessions for SharePoint 2016. SharePoint is a tool that helps boost collaboration internally, but also secures your data as well. With the latest release of the tool, Microsoft is building upon prior release of the platform, as well as Office 365 to deliver a product that they believe lowers the cost for deploying a scalable collaboration platform. You can learn more about this release, here. --- ### Microsoft Finds Another Use For Its $2.5 Billion Acquisition of Minecraft, AI Training > Microsoft is using its Minecraft acquisition to help advance artificial intelligence and will soon open source its research to help others in this field. - Published: 2016-03-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-finds-another-use-2-5-billion-acquisition-minecraft-ai-training/ - Categories: Main - Tags: Minecraft - Article Type: News Microsoft is using its Minecraft acquisition to help advance artificial intelligence and will soon open source its research to help others in this field. Back in 2014, Microsoft acquired Mojang, the creator of Minecraft. At the time of the purchase, it may have seemed like the company was purchasing the game to add next to its other properties like Halo but after owning the IP for about 18 months, the company is finding many new use-case scenarios for the technology. One of the unique aspects of Minecraft is that at its core, it is simple programming to build any of the advanced objects in the game. While this was one of the initial reasons Microsoft was attracted to the software (also that fact that it is wildly popular with a younger audience), the company has found another new way to use the game, improving artificial intelligence. Called project AIX, a Microsoft team out of the UK is using Minecraft to help teach its software how to learn how to climb a hill. While it would be easy to teach the AI (artificial intelligence) in Minecraft how to do one specific trait well, where AI has traditionally come up short is general intelligence. Building robots and bringing AI into the real world is an expensive process, but what the team hopes to do with AIX is experiment in the virtual world and seeing as Minecraft offers up complex and varying terrains, it's an ideal playground for experimenting with algorithms to help AI learn how to operate in the real-world. Even though the platform was purchased for its gaming functionality, it has quickly proven to have commercial... --- ### Microsoft's Year of Living Dangerously - Published: 2016-03-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-year-living-dangerously/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Three-quarters of the way through Windows 10's first year, Microsoft is in danger of subverting its reputation, as well as the reputation of its flagship PC product. Three-quarters of the way through Windows 10's first year, Microsoft is in danger of subverting its reputation, as well as the reputation of its flagship PC product. And the issue isn't the FUD (fear, uncertainty and doubt) around Windows 10's non-existent privacy issues. It's that Microsoft is too-aggressively pushing Windows 10 on upgraders. And in some cases is silently upgrading PCs to Windows 10 whether their users wanted that or not. I've asked senior Microsoft executives about this behavior several times since mid-2015. And they have universally defended the practice as necessary while maintaining that Microsoft has never purposefully upgraded a PC to Windows 10 against the wishes of its owner. "People prefer Windows 10, and it's safer and more secure," Microsoft executive vice president Terry Myerson told me back in October. "Our number one one support call is from customers wondering how they can upgrade to Windows 10. " At that time, Mr. Myerson told me that there was only one brief period where Windows 10 was inadvertently installed on PCs without user consent, but that had been a "bug," and one that was quickly fixed. Since October, however, we've seen numerous reports of Windows 10 being silently installed on users' computers. And while some of these incidents are no doubt user error, it's also fair to point out that installing Windows 10 using the "nagware" prompts that Microsoft puts all over Windows 7/8. x these days requires the user to explicitly OK at least two very obvious prompts... . --- ### Windows 10 Mobile: Printing > Here's a quick tutorial on how printing works in Windows 10 Mobile. - Published: 2016-03-11 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-mobile-printing/ - Categories: Windows 10 - Tags: Printing, Windows 10 Mobile - Article Type: How To Here's a quick tutorial on how printing works in Windows 10 Mobile.   In today's Ask the Admin, I'll explain how printing works in Windows 10 Mobile. Granted you don't often see people printing documents directly from their smartphones, even though this has been supported in iOS and Android for years. Possibly because there's a limited number of printers available with support for Apple's AirPrint, and Android doesn't have an integrated printing technology, but it is possible to print to any device using the Google Cloud Print web service -- but that requires some setting up. Printing in Windows 10 (Image Credit: Microsoft) The good news is that Windows 10 Mobile, much like iOS, has integrated support for printing. The critical things to understand here is that the device you want to print to must be on the same WiFi network, USB printing isn't supported, and the printer must support the WS-Print protocol and a standard page description language (PDL), such as PCLm, PWG Raster, Open XPS, and MS XPS. Microsoft claims that already 1900 printers are supported and that more will become available, but the Brother HL-L2340DW that I bought last summer isn't on the list. I should add that Brother does provide a Windows Phone app -- iPrint&Scan -- which supports printing to this model. Although the documents I printed from OneDrive were rendered quite poorly, so this isn't a replacement for true integrated printer support. Also there are some third-party apps in the Windows Store that support printing to Google Cloud Print from... --- ### Activating God Mode in Windows 10 > Learn how to activate God Mode in Windows 10 to make configuration easier across applications. - Published: 2016-03-11 - Modified: 2024-09-04 - URL: https://petri.com/activating-god-mode-windows-10/ - Categories: Windows 10 - Article Type: How To Learn how to activate God Mode in Windows 10 to make configuration easier across applications. Customizing Windows' appearance is a task we've been since the early days of Windows 95. Microsoft's customizing tools were traditionally located in the control panel, which made it a bit easier to find the application that was needed to perform a set of configurations. In addition, there was always the Windows Registry that allowed you to both automate and script most of the configuration tasks, as well as access hundreds of options that were not easily accessible. Manipulating the registry is something that may cause damage to the operating system and applications installed on it if it's not performed correctly. That's why most users prefer to stick to the GUI in Windows. In Windows 8 and 10, Microsoft made things more complicated by splitting the configuration tasks between traditional apps and modern apps, which were built with touch input in mind.  This caused many configuration settings to be split between a traditional and modern application. You had to make one change in one application, but not the other, which led to confusing users. For example, setting the screen resolution was done from a modern app, but setting the screen saver had to be done from a regular app, and these weren't easily located in the same place. Although Windows 10 tried to make configuration a bit easier, it did remove the original control panel from the Start menu UI. Instead, Windows 10 now includes a Settings interface, which is the control panel's modern reincarnation. Accessing settings in Windows 10. (Image Credit: Daniel... --- ### The Sams Report EP 31: Flighting Procedures, IE 11 Adverts, Windows 10 Aggressiveness - Published: 2016-03-11 - Modified: 2024-09-04 - URL: https://petri.com/sams-report-ep-31-flighting-procedures-ie-11-adverts-windows-10-aggressiveness/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including the Windows 10 aggressiveness, IE 11 adverts, contemplating new fighting procedures, and much, much more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including the Windows 10 aggressiveness, IE 11 adverts, contemplating new flighting procedures, and much, much more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=CRBvO08jWys&feature=youtu. be RSS | SoundCloud | YouTube | iTunes --- ### Paul Thurrott's Short Takes: March 11 - Published: 2016-03-11 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-march-10/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because Microsoft loves Linux and I feel weird, this edition of Short Takes focuses on some Microsoft/Linux musings, another PS 4 victory, Google's self-driving car attacks a bus, a government filing and Apple backlash in encryption case, and a new F.C.C. privacy rule proposal. Google's mobile strategy hits a bus. Literally. Because Microsoft loves Linux and I feel weird, this edition of Short Takes focuses on some Microsoft/Linux musings, another PS 4 victory, Google's self-driving car attacks a bus, a government filing and Apple backlash in encryption case, and a new F. C. C. privacy rule proposal. "Microsoft launches Debian Linux-based switch operating system" Just let the words "Microsoft Linux OS" run around in your brain for a few minutes. "Former Microsoft CEO Ballmer does about-face on Linux technology" So he thinks it's less a cancer and more ... what? Some comparatively lesser ailment? Diabetes? "Microsoft loves open source? Only when it's convenient" We need to stop judging Microsoft for stuff it did 20 years ago. This is like blaming the current German government for starting World War II. PlayStation 4 beats Xbox One again, in February The PlayStation 4 was the best-selling video game console yet again in February. But PS4 also notched another victory: More PS4 games were sold in February than games for any other platform. "We would like to thank our fans and partners for making PlayStation 4 the top-selling hardware platform and the software sales leader in February," a Sony statement notes. Sony, of course, has sold over 36 million PS4 consoles so far, compared to 18 to 24 million for the Xbox One. But the video game market, overall, is actually falling for some reason, and the $842. 5 million haul the entire industry generated... --- ### Microsoft’s Latest Windows 10 Upgrade Tactic Pits Employees Against Admins - Published: 2016-03-10 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-latest-windows-10-upgrade-tactic-puts-employees-admins-ie-11/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: News Microsoft's latest tactic to upgrade to Windows 10 is pushing advertisements to domain-joined machines that tells the employee that the admin is blocking updates. There is no question about it, Microsoft wants you to move to Windows 10 and they are taking the most aggressive steps in its history to get you to do so. Everything from giving away free upgrades to having the OS automatically download on to a user’s machine have all been used and now Microsoft next step went live this week. The company had previously announced that domain joined machines would soon see upgrade banners to Windows 10 if they were not managed by WSUS and after this month’s patches were released, network administrators are reporting that their users are now seeing an update prompt; some have reported seeing the messages even if they are using WSUS. The upgrade prompt pushed-out this month is not like the one that was released for consumers as Microsoft is taking the aggressive step to tell users that their admin is blocking updates. The image that you see to the right, courtesy of Infoworld, is from a domain-joined machine that clearly states that the IT administrator is blocking updates and that the user should ask their admin about upgrading to Windows 10. It’s clear why Microsoft is doing this as they want every corporation to upgrade but what makes this maneuver unsettling is that Microsoft is trying to bring the end-user into the conversation about upgrading a company’s infrastructure. While that may sound like a good idea to have more input about upgrading a corporate network, rarely is it as easy as simply installing an OS and the end-user... --- ### Microsoft’s Targeting Oracle Customers With ‘Free’ License Offer For SQL Server 2016 > Microsoft is targeting Oracle customers with a new offer for SQL Server 2016 as the company ramps up its marketing effort for the new platform. - Published: 2016-03-10 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-targeting-oracle-customers-free-license-offer-sql-2016/ - Categories: SQL Server - Tags: SQL Server 2016 - Article Type: News Microsoft is targeting Oracle customers with a new offer for SQL Server 2016 as the company ramps up its marketing effort for the new platform. It has been a big week since Microsoft announced that the company will be bringing the SQL Server platform to Linux, and today they are going after users of Oracle's database software. Announced at the company's virtual data driven event, the company is offering Oracle users free licenses to use SQL Server 2016, but there are a few caveats. First, you will need to be signed up for the company's Software Assurance program and Microsoft has not stated how many licenses you will receive. Logically, you would think it would be enough to completely replace your Oracle software, but if you are planning on taking the company up on this promotion, you will need to do your diligence to make sure you understand the offer correctly and how it impacts your organization. This move makes a lot of sense for Microsoft, and they have little to lose by hanging this carrot in front of Oracle based companies. Microsoft won't lose any money upfront with the software as they would have not sold it anyways to Oracle customers and seeing how hard it is to switch database platforms, once a customer makes the switch to SQL Server, there's little chance that they will migrate in the near future. This means that Microsoft stands a better chance having a new customer purchase additional products from them once they deploy SQL Server 2016 and add to the company's bottom line. In addition to the licenses, Microsoft will also be offering free training to help new customers migrate... --- ### What Should I Do In Azure First? - Published: 2016-03-10 - Modified: 2024-09-04 - URL: https://petri.com/what-should-i-do-in-azure-first/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Azure Site Recovery, hybrid cloud, IaaS, PaaS, virtual machines - Article Type: Overview As an IT pro facing the mammoth size and immense possibilities of Azure, trying to figure out what you should start doing in the cloud is… a challenge. As an IT pro facing the mammoth size and immense possibilities of Azure, trying to figure out what you should start doing in the cloud is... a challenge. In this article, I'm going to suggest some options for you to contemplate. Read: What is Microsoft Azure? Familiarize Yourself with the Possibilities If you're impatient, then you won't like my first suggestion. It's times like these that I think Sun Tzu's advice in The Art of War comes in handy: If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If you know neither the enemy nor yourself, you will succumb in every battle. What does this mean in an Azure context? Azure is huge, and there are lots of pieces that can either be used alone or mixed together to create many kinds of solutions. If you don't know what Microsoft’s cloud can offer, then you are off to a bad start. You should also know what your business needs and is willing to do. On one hand, you might find that some solutions in the cloud will create fear in the IT department. On the other hand, the business might have some pressing need that Azure might be able to do with: More flexibility Less expense Faster With greater results Hybrid Infrastructure Solutions I've been promoting Azure for two years with resellers in the... --- ### Microsoft’s Project Rigel Brings Surface Hub Capabilities To New Devices > Microsoft has announced project Rigel that will bring a Surface Hub-like Skype experience to any conference room. - Published: 2016-03-09 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-project-rigel-brings-surface-hub-capabilities-new-hardware/ - Categories: Hardware - Tags: skype, Surface Hub - Article Type: News Microsoft has announced project Rigel that will bring a Surface Hub-like Skype experience to any conference room. Microsoft's Surface Hub is a conference room AIO device that makes collaborating and extracting additional value from your meetings much easier. But, the price of entry is not cheap, especially if you need a large display as that price now tops $21,000. To help the 97 percent of meeting rooms that are equipped with traditional projectors and displays, Microsoft has announced project Rigel. This initiative brings a Surface Hub-like Skype experience to any conference room. Using a Windows 10 device for center-of-room touch control and Skype for Business, a conference room can quickly gain some of the capabilities Surface Hub offers for a fraction of the price. To help complete this experience, Microsoft is teaming up with several hardware partners, including Polycom and Logitech to create products that are certified with Rigel. The is new initiative will make it easier for screen sharing, whiteboarding, and of course, video conferencing features as well. Conference rooms are one of the primary areas for improvement among large companies, as we have Microsoft's Surface Hub moving into this space, and HPE is taking a stab at reinventing the meeting area as well. Considering that most people loathe going to meetings, if a company can find a way to make these sessions more productive, take less time and make employees enjoy them once again, it will be a home-run for all involved. You can read more about Rigel on Microsoft's official blog. --- ### PowerShell Problem Solver: Finding What’s Not There > Resident PowerShell expert Jeff Hicks tackles the tricky problem of documenting something that isn't there like service. - Published: 2016-03-09 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-finding-whats-not/ - Categories: PowerShell - Tags: Intermediate Resident PowerShell expert Jeff Hicks tackles the tricky problem of documenting something that isn't there like service. You might be familiar with the concept about trying to prove a negative, which is to say, it's very hard. For an IT pro, this might come up more often than you think. That's the question I found in an online PowerShell forum asked, "How can I show if something exists or not? " There were two scenarios that he was working with, so let's use them as learning opportunities. First, given a list of servers, he want to check for the existence of a service and indicate via a Boolean value if the service exists or not using PowerShell. For my demonstration, I'm going to use Get-CimInstance instead of Get-Service, because I'm trying to get in the habit of not using legacy protocols. I also have a variable that contains 11 server names that I know are running and that I can access. I'll forego error handling to keep this as simple as possible. So let's say I want to report on which servers have the Spooler service installed. It is simple enough to list those that do. get-ciminstance win32_service -filter "name = 'spooler'" -ComputerName $servers | Select Name,Status,PSComputername Listing servers with the spooler service (Image Credit: Jeff Hicks) I can't change the filter to 'spooler' because that will then give me every other service. One approach would be to break this down into several steps using ForEach-Object so I can process each computer separately. $servers | foreach { $obj = @{ Computername = $_. ToUpper... --- ### Microsoft updates its OneDrive for Business roadmap > Russell Smith outlines Microsoft's plans for its enterprise cloud storage service OneDrive for Business. - Published: 2016-03-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-its-onedrive-for-business-roadmap/ - Categories: Cloud Computing - Tags: Cloud, OneDrive, OneDrive for Business, storage - Article Type: News Russell Smith outlines Microsoft's plans for its enterprise cloud storage service OneDrive for Business. In today's Ask the Admin, I'll outline Microsoft's plans for its enterprise cloud storage service OneDrive for Business. Microsoft has two distinct versions of its OneDrive cloud storage service. OneDrive is what users get when they sign up for a Microsoft Account, and Windows 10 has a built-in synchronization client for consumer OneDrive. Whereas OneDrive for Business is based on a different technology, but provides additional features, such as auditing, reporting, granular access controls, standards compliance, directory sync and Office 365 Groups support. For more information on how the two products differ, see OneDrive versus OneDrive for Business on the Petri IT Knowledgebase. Microsoft OneDrive for Business roadmap (Image Credit: Aaron Rimmer) Work is currently being undertaken to unify the two solutions, specifically adding extra features to the OneDrive mobile apps for iOS, Android, and Windows Mobile, plus a new Next Generation Synchronization Client (NGSC) for Windows that will sync both consumer OneDrive and OneDrive for Business using a more reliable technology than the existing Groove client that Microsoft ships to its Office 365 customers. There's more information about the synchronization story in Alternatives to the OneDrive for Business Sync Client on Petri. As recently reported by Mary Jo Foley for ZDNet, Microsoft has updated its roadmap for OneDrive for Business. The Next Generation Sync Client is still in private beta, and while the ability to sync SharePoint document libraries is on the list of new features, no commitment has been made for a... --- ### Microsoft Drinks Its Own Kool-Aid, Completes Mission-Critical Cloud Service Suite > Microsoft has announced today that its Dynamics AX ERP product is available as a service in 137 markets and in 40 different languages. - Published: 2016-03-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-drinks-kool-aid-completes-mission-critical-cloud-service-suite/ - Categories: Microsoft Azure - Tags: Dynamics AX ERP - Article Type: News Microsoft has announced today that its Dynamics AX ERP product is available as a service in 137 markets and in 40 different languages. Microsoft has been preaching for years that Azure is the future of computing and that its platform is capable of delivering the up-time needed for mission critical applications. Today, the company is going all-in on its Azure platform as they are announcing its Dynamics AX ERP product is available as a service in 137 markets and in 40 different languages. Dynamics AX is an ERP solution that runs in Azure and when coupled with Office 365, Power BI, and Cortana Analytics, any company can now fully run their operations from the cloud. Because all these services are now web-based, they can be accessed from anywhere the employee is located, including smartphones. By moving the company’s ERP solution to the cloud, Microsoft is taking what was once a slow upgrade cycle between iterations to a more fluid process that should help its customers maintain their competitive edge with the ERP software. Of course, being all in the cloud, Dynamics AX uptime is at the mercy of Azure’s stability which has had its fair share of hiccups in the last few years. But, the same can be said for on-prem hardware too. If Microsoft can truly deliver on its promise with Dynamics AX to create an agile ERP system, it will be a big win not only for Microsoft but its customers. ERP solutions are typically thought of as a massive giant that is slow to move and even harder to upgrade. If Dynamics AX can break this mold and show that it can... --- ### Understanding the PowerShell Pipeline > To get the most out of PowerShell you need to understand the pipeline. PowerShell guru Jeff Hicks offers some beginner guidance. - Published: 2016-03-08 - Modified: 2024-09-04 - URL: https://petri.com/understanding-the-powershell-pipeline/ - Categories: PowerShell - Tags: Beginner - Article Type: How To To get the most out of PowerShell you need to understand the pipeline. PowerShell guru Jeff Hicks offers some beginner guidance. If you want to really understand PowerShell, then it's essential that you understand the PowerShell pipeline. It's critical to understand this key concept because everything you do in PowerShell takes place in the pipeline, and as such, you'll find different ways to take advantage of it. Related: Configuring the PowerShell Console Pipeline Fundamentals To begin, let's think of the pipeline as the length of a pipe. Commands go in one end, and objects come out the other. You can't always see what's happening inside the pipe, but you can provide some direction. In PowerShell, the vertical bar ( | ) is the pipe symbol. This tells PowerShell that you want to take the output of one command and pass it as the input (or pipe it) to the next command. This concept has been around a long time in console-based shells and is hardly new to PowerShell. But a major difference is that instead of piping or passing text between commands, you are passing complete objects. Let's look at an easy example. When you run Get-Service, the cmdlet creates the necessary objects to represent the services on your computer, and PowerShell displays the results. A simple PowerShell command (Image Credit: Jeff Hicks) But these are objects, complete with properties that describe them. PowerShell has a command called Sort-Object that will sort any type of object, typically on a given property. Sort-Object needs some type of object to sort. If you look closely at help, you'll see that the InputObject parameter... --- ### Microsoft Is Making Significant Changes To Its MVP Program - Published: 2016-03-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-making-significant-changes-mvp-program/ - Categories: Main - Tags: Microsoft MVP - Article Type: News Microsoft will be making significant changes to its MVP program in the next several months that will impact consumer product members. Microsoft's MVP program is a distinguished mark in the IT community, and the company is about to make some big changes to the program that will impact several of its members. Expected to be announced in the next few months, the program will refocus on only the developer and IT pro segments. The update requirements for being an MVP will focus squarely on those who are contributing to the IT pro and developer communities; those who are MVPs in consumer-facing segments will soon be moved to a new influencer program, according to Mary Jo Foley. Specifically, the Xbox, ID@Xbox, Bing Ads and the Windows and Devices, Windows Experience, Windows Phone, Consumer Security and Surface MVPs will be moved to the new program. Details about how the new program will operate have not been announced, but it is understood that each group in the social influencer program will be managed by the product team. Even though the MVP program started off as a consumer-facing operation, it has evolved into being known in the development and IT pro communities as a mark of excellence. Seeing as the consumer side of the MVP program is still important, Microsoft is going to make sure those individuals still receive the attention and information they need, but under a new program that separates itself from the MVP program. This change makes a bit of sense, the MVP designation has become too broad in what it represents, and by aligning its respected designation to the company's core mission,... --- ### With SQL Server Heading to Linux, What's Next? - Published: 2016-03-08 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-heading-linux-whats-next/ - Categories: Microsoft Azure, SQL Server - Tags: News - Article Type: Opinion While some are scrambling to explain why Microsoft's decision to port SQL Server to Linux makes sense, a more pressing question emerges: Which other Microsoft solutions can or should head to Linux in the future? Microsoft delivered some unexpected blockbuster news yesterday: It is developing a version of SQL Server for Linux, the rival server and cloud OS. And while some are scrambling to explain why this move makes sense, a more pressing question emerges: Which other Microsoft solutions can or should head to Linux in the future? As Brad Sams noted yesterday in Microsoft Is Bringing SQL Server To Linux, Microsoft's bold decision to port SQL Server, the software giant's enterprise-capable database solution, to Linux is the culmination of years of embracing a platform that ex-Microsoft CEO Steve Ballmer once described as a "cancer. " But nowhere in Microsoft's announcement is there a real explanation of why it is doing so. Or why it is now doing so. The best explanation I've seen so far comes from Microsoft Data Platform MVP Andrew Brust, who wrote in ZD that there are essentially two reasons why Microsoft would bring such a core server/cloud product to Linux: the cloud and relevance. (Microsoft's support of containers may also play a role as this technology is currently very much Linux-centric. ) "Microsoft is betting big on Azure, its cloud platform, and with that shift, an orthodox Windows-only approach no longer makes sense," he writes. "If Microsoft gets Azure revenue from a version of SQL Server that runs on Linux, then that's a win. " Brust notes that Microsoft has made similar if smaller moves into Linux in recent years, including a previous announcement to bring Hadoop to Linux via a... --- ### New Admin Center Begins Rolling Out For Office 365 > Microsoft's new Admin Center for Office 365 introduces a new dashboard and a refreshed U and begins rolling out today. - Published: 2016-03-07 - Modified: 2024-09-04 - URL: https://petri.com/new-admin-center-begins-rolling-office-365/ - Categories: Microsoft 365 - Tags: Admin Center, Office 365 - Article Type: News New Admin Center Dashboard - Courtesy of Microsoft Managing Office 365 for a business can be tedious but is mission critical. To help IT administrators do their job, Microsoft has the Office 365 Admin Center and is currently rolling out their latest and greatest version right now. The new Admin Center is not complete and in the blog post announcing the rollout Microsoft has acknowledged the features which are to be added soon. Starting with the new dashboard; IT admins can now do and see more without needing to click around. From a single customizable page, everything from billing, reports, messages, tutorials, service status, users, and more are shown at a glance: a search bar sits at the top of the dashboard which can be used to find groups or users. This search bar is one of the areas where Microsoft has highlighted there is more to come in the near future. Understanding how your company uses Office 365 will help every admin prioritize their to-do list. The new Admin Center can generate reports to show how and when users are taking advantage of the different aspects of Office 365. These reports are currently limited but will soon be able to display how users are accessing OneDrive, SharePoint, Yammer, Skype for Business, and more. With this data, IT staff can plan training sessions or make tweaks to their long term goals. New Admin Center Reports - courtesy of Microsoft Along the left side of... --- ### Microsoft Is Bringing SQL Server To Linux > Microsoft has announced today that they will be bringing SQL Server to the Linux platform in the middle of 2017 and a private preview is available today. - Published: 2016-03-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-bringing-sql-server-to-linux/ - Categories: SQL Server - Article Type: News Microsoft has announced today that they will be bringing SQL Server to the Linux platform in the middle of 2017 and a private preview is available today. For the past two years or so, Microsoft has, rather than pushing away, been pulling Linux closer to the chest with several announcements about how they are embracing the open source software, including delivering Red Hat to its Azure cloud service. Today, the company is taking the next big step in this initive by announcing that they are bringing SQL Server to the open source operating system. Announced today, Microsoft will extend SQL Server to the Linux platform; the company is releasing a private preview of the software with general availability coming in mid 2017. By bringing this capability to Linux, Microsoft is expanding the footprint of where its enterprise grade software can run. By embracing Linux to this depth, the company has shown that they are making sure their products operate wherever their customers need them, even if it is on another company's platform. SQL Server is used in every major enterprise around the globe, some of which operate data centers that run Linux, instead of Windows. With this new version of SQL, if a company was only running a Windows box for the sole purpose of using SQL Server, they will soon have an option of running that same software but on Linux. This is a bold move for Microsoft, but seeing how the company is embracing open source, this isn't surprising. The company had traditionally mandated that you run Windows to utilize the companies enterprise products, but with the announcement today, that requirement is no longer holding true. You... --- ### Microsoft Introduces AES-XTS to BitLocker in Windows 10 Version 1511 > Learn about new changes to BitLocker full disk encryption made in Windows 10 Version 1511. - Published: 2016-03-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-introduces-aes-xts-to-bitlocker-in-windows-10-version-1511/ - Categories: Windows 10 - Tags: bitlocker, encryption, Security, Windows 10 - Article Type: Overview Learn about new changes to BitLocker full disk encryption made in Windows 10 Version 1511. In today's Ask the Admin, I'll explain changes to BitLocker full disk encryption made in Windows 10 Version 1511. You're probably already familiar with Microsoft's full disk encryption technology, first built-in to Windows 7 and Windows Server 2008 R2. While BitLocker is a convenient way for consumers and organizations to manage full disk encryption in Windows, it hasn't been without its critics. Much hangs on whether you trust Microsoft, because BitLocker is not open source, so the source code can't be checked for backdoors. Enabling BitLocker encryption in Windows 10 Version 1511 (Image Credit: Russell Smith) In 2008, researchers discovered that BitLocker is vulnerable to 'cold boot attacks,' where the contents of pre-boot memory can be read from DRAM up to several minutes after a device has been powered off -- although Linux, OS X and other OS full disk encryption technologies are also susceptible to this form of attack. Physical access to a device is required to perform a cold boot attack, although the risks can be reduced by using a Trusted Platform Module (TPM) and PIN. On the plus side, Windows better protects the boot process than other OSes, preventing attackers from running modified boot code. No More Elephant AES in Cipher Block Chaining (CBC) mode was the algorithm of choice in Windows 7 and Vista, and Microsoft added a diffuser to provide 'some additional security properties that are desirable in the disk encryption setting but which are not provided by... --- ### Microsoft Integrates Skype Into Additional Services > Microsoft is bringing Skype to Office Online and OneDrive to make it easier to communicate while collaborating. - Published: 2016-03-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-integrates-skype-into-additional-services/ - Categories: Office - Tags: Office Online, skype - Article Type: News Microsoft is bringing Skype to Office Online and OneDrive to make it easier to communicate while collaborating. Skype, the communication service from Microsoft that's simultaneously loved and loathed as it makes it easy to communicate with anyone around the globe, but also has been plagued with bugs that result in features being broken or having multiple instances of the app ringing perpetually after answering a call. Despite these issues, the platform has persisted and is one of the most widely used communication tools on the planet, and today its footprint is expanding. Microsoft has announced that Office Online and OneDrive now have Skype integrated into those services, much like Outlook. com. Starting today, you can use the communication platform inside of Office Online and OneDrive, which makes collaborating on a document easier. Conveniently, the chat history stays connected to the document, so the next time you open the file, your chat history is preserved. This expansion of Skype is a natural evolution of the product that Microsoft is positioning as the best way to communicate with friends, family and co-workers. It was reported that the company has passed on the option to buy Slack, a startup that is quickly growing in the communication space that competes with Skype, and instead is opting to invest more into the services it already owns. This new integration is rolling out now, and if you don't see it on your account, it should be showing up soon; you can read the announcement post on Microsoft's official blog. --- ### Surface Book Five Months Later: Finally Recommend Without Caveat > It's hard to believe that it has been five months since Microsoft first announced the Surface Book and Surface Pro 4 in New York. - Published: 2016-03-07 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-five-months-later-finally-recommend-without-caveat/ - Categories: Hardware - Tags: Surface Book - Article Type: News After five months, the Surface Book is finally a machine that can be purchased without caveat thanks to the latest firmware release. It's hard to believe that it has been five months since Microsoft first announced the Surface Book and Surface Pro 4 in New York. Since then, the device has overcome a number of hardware and software issues and with the latest firmware update, the machine has finally found its groove and is a serious contender in the premium PC space. I have been using the Surface Book on a nearly daily basis since it first came out, and it wasn't until last week when I was in Redmond filming the closing remarks for day 2 of the TechNet virtual conference that it finally hit me that this machine is fixed. The sleep bug has been squashed, my issue with the keyboard frequently not responding to input and forcing me to reattach the display have been remedied, and Windows 10 has also received several stabilizing patches that make Windows 10 run much better. As with the initial review and my two month follow-up, the primary issue with the device was the fact that it could not sleep and would drain the battery when it was supposed to be turned off. It was because of this issue that it was hard to recommend the device without warning the consumer or business user what they were really buying into with the Book. Seeing as this major issue is fixed, the Surface Book is finally the premium PC Microsoft pitched back in October. If you are wondering why I didn’t write this post after... --- ### Microsoft Reportedly Walked Away from $8 Billion Slack Acquisition - Published: 2016-03-07 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-reportedly-walked-away-from-8-billion-slack-acquistion/ - Categories: Microsoft 365 - Tags: News - Article Type: News According to a report, Microsoft considered buying the Slack collaboration service for an incredible $8 billion. But pushback from Microsoft co-founder Bill Gates and CEO Satya Nadella apparently ended the talks. According to a report in TechCrunch, Microsoft considered buying the Slack collaboration service for an incredible $8 billion. But pushback from Microsoft co-founder Bill Gates and CEO Satya Nadella apparently ended the talks. Microsoft's decision to back away from this particular cliff is interesting, given its tortured history with big acquisitions. Yes, previous Microsoft CEO Steve Ballmer eventually wised up and walked away from a planned $45 billion purchase of Yahoo (which continues its downward spiral to this day). But he also pulled the trigger on aQuantive to the tune of $6. 3 billion in 2007, and Microsoft later had to write-off that entire amount. Ditto for the $8 billion write-down tied to the Nokia acquisition, for which Mr. Ballmer and Mr. Nadella both bear some blame. But $8 billion for ... Slack? To many, that would be a Yahoo-sized overpayment for a service that is perhaps a bit too similar to technologies Microsoft already owns, like Skype. But then again, we do have a parallel there as well: In 2012, Microsoft bought the Yammer social networking platform for $1. 2 billion, and has been integrating that technology into SharePoint---and expanding it throughout Office 365---ever since. The cost of acquisition difference between those two products most likely explains Microsoft's reticence with Slack. For $1. 2 billion, the software giant gained valuable technologies that it now power one of its revenue pillars. But Slack---especially at $8 billion---is simply too much overlap with Skype and Skype for Business. (It's worth remembering, too, that... --- ### What is Microsoft Azure? > In this introductory article, Aidan Finn explains what Microsoft Azure is and isn't, along with key features of the service. - Published: 2016-03-04 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-azure/ - Categories: Microsoft Azure - Tags: Azure, Cloud, hybrid cloud, IaaS, PaaS, Public Cloud, SaaS - Article Type: Overview In this introductory article, Aidan Finn explains what Microsoft Azure is and isn't, along with key features of the service. If you're a regular reader of blogs or regularly attend user group or conference events, you probably find that the cloud is a little bit confusing. Bear in mind that you are in the minority. And no, I don't mean to say that everyone else has the cloud figured out already! On the contrary, most people in our industry do not attend events, they don’t subscribe to blogs, they don't watch videos, and they don't follow information sources on social media. For these people, the cloud is a complete mystery. And this is why it makes sense to explain what Microsoft Azure is. What is a cloud? Every company in the online software service industry has their own definition of a cloud. Many of those vendors stick with industry-accepted norms. Some like to twist the terminology to serve their own marketing needs. And some misuse the terminology because of lack of knowledge -- for example, running vSphere or Hyper-V doesn't mean that you have a private cloud. The US National Institute of Standards and Technology (NIST) has published what many consider to the be the best definition of a cloud. There are five essential characteristics of a cloud, but the one that stands out for me is "on demand self-service"; this is where a consumer of the cloud can deploy what they need, when they need it, and without requiring human assistance from the service provider. NIST also describes service models: Software-as-a-Service (SaaS): A vendor offers a software services, such as... --- ### Paul Thurrott's Short Takes: March 4 - Published: 2016-03-04 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-4/ - Categories: Mobile - Tags: News - Article Type: Overview Because years of Call of Duty are finally paying off, this edition of Short Takes focuses on IDC's comeuppance on Windows phone, misunderstandings about Microsoft's Xbox strategy, HPE beats estimates, Oculus Rift CEO mocks high-end Macs, and more hand-wringing about the Apple iPhone case. Admit it. You miss Steve Ballmer too. https://www. thurrott. com/xbox/65025/thurrott-daily-march-1 Because years of Call of Duty are finally paying off, this edition of Short Takes focuses on IDC's comeuppance on Windows phone, misunderstandings about Microsoft's Xbox strategy, HPE beats estimates, Oculus Rift CEO mocks high-end Macs, and more hand-wringing about the Apple iPhone case. IDC finally gives up on Windows phone In a report about smart phone growth in 2016, IDC dropped some more bad news for Windows phone: Unit shipments were down 18 percent in 2015 to just 11. 1 million units, with about 95 percent of that volume coming from Microsoft/Nokia-branded phones. That's a bigger fall than expected, and IDC now expects Windows phone to account for 1. 6 percent of the overall smart phone market in 2016 and ... wait for it ... less than 1 percent by 2020. The good news? There is no good news. Despite some recent device announcements, most notably the HP Elite x3, "it remains unclear how serious the Windows Phone offerings will be from ," IDC noted. Please note that IDC once predicted that Windows phone would surpass iPhone by 2017. "Surface Book Review: 24 Hours With Microsoft's Ultimate Laptop" Plenty of time to formulate an accurate review. Lots of misunderstandings over Microsoft's Xbox strategy As part of an announcement about Microsoft "spring lineup" of games for both Xbox One and Windows 10 earlier this week, Phil Spencer kind-of-sort-of hinted that the firm was considering midstream... --- ### The Sams Report EP 30: HoloLens Everything, Windows Something, Redmond Executives - Published: 2016-03-04 - Modified: 2024-09-04 - URL: https://petri.com/sams-report-ep-30-hololens-everything-windows-something-redmond-executives/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including all the announcements around HoloLens, success in education and a trip to Redmond filled with video, executives and delicious beer. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including all the announcements around HoloLens, success in education and a trip to Redmond filled with video, executives and delicious beer. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=_n2Oi2v_MeM&feature=youtu. be RSS | SoundCloud | YouTube | iTunes --- ### Getting the Most Out of Office 365: Reducing the Email Burden > Use these tools to reduce the amount of "email work" you do every day. - Published: 2016-03-03 - Modified: 2024-09-04 - URL: https://petri.com/getting-office-365-reducing-email-burden/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office, Office 365, Outlook on the Web - Article Type: How To Use these tools to reduce the amount of "email work" you do every day. For many companies and individuals, email remains the primary method of communication. Connecting with coworkers, sending files, communicating with customers, suppliers, or anyone all occurs over email. While built as a messaging tool, email serves many different roles. Frequently email is used as an archive to store information for later retrieval. Also, it's fairly common for email to be used as a to-do list. One of the main problems with email remains how quickly it gets out of hand. Many people cannot go a day or two without having their inbox swamped with unread emails, most of which require no action at all or are not wanted. Outlook on the Web has some good tools for reducing the burden of email and making it easier to stay organized. There are built-in tools, as well as add-ins, which can take some of the pain out of email. The first problem to solve is dealing with unwanted emails. These emails come in a few different forms, newsletters, spam, and unnecessary inclusion. Newsletters you are receiving that you don't want any more can be unsubscribed from via a link in the email or the "Unsubscribe" add-in that's built by Microsoft. Searching your mailbox for the word "unsubscribe" should bring up all emails with the option to get removed from their mailing list. If you are receiving emails that are unsolicited or malicious in nature, you can flag them as "Junk. " These emails should no longer go into your inbox, and Microsoft should use your identification to... --- ### Microsoft’s HoloLens Documentation Gives New Details, No Black Holograms - Published: 2016-03-03 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-hololens-documentation-gives-new-details-no-black-holograms/ - Categories: Hardware - Tags: HoloLens - Article Type: News Documentation for Microsoft's HoloLens has been released and it offers up several new details about the device including working with the color black and peripheral support. Earlier this week, Microsoft released the specs of its HoloLens and the shipping dates for development kits. In addition to that information, the company has also posted documentation about how the device operates and what we can expect in real-world use. One of the more interesting items uncovered is that there will be no black holograms, any content area that is black will be transparent. This shouldn’t come as a big surprise as HoloLens adds light to your eyes to make the holograms come to life and seeing as black is an absence of light, you can't remove light from your eye. The HoloLens clicker is more than a simple, one function, input mechanism. The clicker supports scrolling and panning by tilting the device which means that there are accelerometers in the device. Battery life of this device is quite good, the company says it should last for two weeks on a full charge and takes 2-3 hours to fully recharge. Other Bluetooth devices are supported, like a keyboard and as long as a Bluetooth device supports HID or GATT profiles, it will be able to pair with the HoloLens. If you plan to use the Mixed Reality Capture, videos are limited to three minutes in length. Also, the render rate is locked to 30hz at 30FPS. For those hoping for higher refresh rates and more frames per second, remember, this is the first generation dev ket. Holograms have two basic modes, stationary or follow-along. Simply put, you can pin a... --- ### Microsoft’s Dynamics Spring Wave Coming In Q2 Puts Acquisitions To Use - Published: 2016-03-02 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-dynamics-spring-wave-coming-in-q2-puts-acquisitions-to-use/ - Categories: Dynamics - Tags: Dynamics - Article Type: News Microsoft is set to release its spring wave of updates for Dynamics which will included several new features from its recent acquisitions. Microsoft has announced that its spring wave of updates for Dynamics  online customers will be available in Q2 of the calendar year. The focus of this release is to integrate two of its recent acquisitions, FieldOne and Adxstudio. This new wave of updates introduces several features including the expansion of its service capabilities with the inclusion of project service. When coupled with field service, Dynamics is better positioned to support the growing fields of self, assisted and on-site service models. Also new in this release, Microsoft is introducing community engagement through portal solutions. This new feature will make it easier for organizations to connect with customers, employees and partners to streamline the communication between these groups. Considering that one of the primary drivers of lost productivity or missed opportunities is the breakdown on communication or lack or resource sharing, these new portals should help address this workplace barrier. To help users of the service make sure they are using the tools to their fullest capabilities, this release will bring with it new guided navigation capabilities that are personalized to each user. These guided tours are role based as well as contextual which makes on-boarding new users much easier. There’s a lot more in this release that you can read about in the blog post from Microsoft, here. --- ### Windows 10 RT Is Alive, Supported By Device Guard - Published: 2016-03-02 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-rt-is-alive-supported-by-device-guard/ - Categories: Windows 10 - Tags: Windows 10 RT - Article Type: News While showing off Device Guard during the Technet Virtual Conference, support for Windows 10 RT was spotted inside the feature. Several years ago, Microsoft released Windows RT, a version of its desktop operating system that would run on ARM based chips that offered up the classic Windows desktop but could only run applications from the Windows Store. The OS never caught on with consumers, primarily because of a lack of clear communication from Microsoft, and the company eventually stopped offering devices running the operating system. While many thought that the OS was dead and the company stopped developing it, that does not appear to be the case as Windows 10 RT was spotted as a supported OS inside of Device Guard. The image you see above is from the virtual TechNet conference today and you can see that under the supported operating systems, Windows 10 RT is listed. This OS should not be confused with proper Windows 10 that we see on Microsoft’s mobile devices as Windows 10 RT is a version of the OS that is designed for the desktop class PC and tablets. This is the second time we have seen this OS mentioned which indicates that the company is still building out the operating system. Even though they are not selling the platform at this time, the company clearly still believes that it has a future which is why we see it showing up from time to time. Only Microsoft knows the future of this product at this time but for fans of the idea that you could run a desktop PC with an ARM based chip, there... --- ### Microsoft Expands Availability of Windows Hello Enabled Type Cover - Published: 2016-03-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-availability-of-windows-hello-enabled-type-cover/ - Categories: Hardware - Tags: Type Cover - Article Type: News Microsoft has expanded the availability of the Type cover that has a finger printer reader that enables Windows Hello support on a Surface Pro 3. Back in October when the Surface Pro 4 was announced, the company unveiled a new Type cover that had a fingerprint reader. Microsoft is announcing today expanded availability of that product and are opening up pre-orders for 26 new markets. If your organization is currently using Surface Pro 3s and Windows 10, the new Type cover makes it possible to use Windows Hello login capabilities. While the Pro 4 is an upgrade over the Pro 3, the biggest changes, slightly larger screen and Windows Hello camera, are likely not enough to get those who invested in the Pro 3 to upgrade. This cover is a way to add new features to the Pro 3 for around 160. 00 USD (local pricing will vary) and in addition to the finger print reader, you also get an improved track pad and improved key mechanisms. The company announced that the new cover is now available in Austria, Australia, Belgium, China, Denmark, Finland, France, Germany, Hong Kong, Ireland, Italy, Korea, Japan, Luxembourg, Malaysia, Netherlands, New Zealand, Norway, Portugal, Singapore, Spain, Sweden, Switzerland, Taiwan, Thailand and the United Kingdom. It is worth pointing out that this cover will work with the Pro 4 if you do not want to use the Hello camera and prefer to use a fingerprint to login to Windows. --- ### Join Windows 10 to Azure Active Directory > Here's  quick tip on how to join Windows 10 to Azure Active Directory (AAD) and why you might want to do that. - Published: 2016-03-02 - Modified: 2024-09-04 - URL: https://petri.com/join-windows-10-to-azure-active-directory/ - Categories: Windows 10 - Tags: Azure Active Directory, Identity Management, MDM, Windows 10 - Article Type: How To Here's quick tip on how to join Windows 10 to Azure Active Directory (AAD) and why you might want to do that. In today’s Ask the Admin, I’ll show you how to join Windows 10 to Azure Active Directory (AAD) and why you might want to do that. Organizations that mainly use SaaS apps based in the cloud, such as Office 365, might consider allowing users to join devices to AAD -- the identity management service that powers Office 365 and other cloud-based platforms. The key advantage for users is that they get single sign-on access to Office 365 web apps and other programs that support the Web Account Manager, such as the built-in Mail app in Windows 10. Other scenarios where AAD domain join might come in handy is for temporary contractors who need access to cloud-based apps, or when permanent employees buy their own devices but would still like simplified access to corporate apps but without joining the device to an on premise Active Directory domain. Microsoft Intune and Mobile Device Management Organizations also benefit by being able to extend management capabilities to devices joined to Azure AD. Mobile Device Management (MDM) support is built-in to Windows 10, and while not as extensive as Active Directory Group Policy, MDM might provide enough control in many cases. Microsoft Intune is a separate subscription service that allows companies to manage Windows 10 devices in the cloud without needing an onsite AD infrastructure. Join Windows 10 to Azure AD As part of the out-of-box-experience (OOBE) setup procedure in Windows 10, users have the option to join the device to AAD. This... --- ### Microsoft’s Brad Smith: Encryption is Key, 'The path to hell starts at the backdoor' > In strong words, Microsoft's Brad Smith further backed Apple and his company's position at RSA's annual security conference. - Published: 2016-03-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brad-smith-encryption-is-key-the-path-to-hell-starts-at-the-backdoor/ - Categories: Security - Article Type: News In strong words, Microsoft's Brad Smith further backed Apple and his company's position at RSA's annual security conference. At RSA's annual security conference, Microsoft President and chief legal officer Brad Smith strongly advocated his company's position in defending Apple against its battle with the FBI in the pursuit to protect personal privacy. At the conference, Smith urged security professionals to continue innovating and working on encryption as a means to protect personal data. "We need to keep in mind that when it comes to security, there is no technology as important as encryption. And despite the best of intentions, one thing is clear – the path to hell starts at the backdoor," Smith said. As Paul Thurrott has covered extensively on the Petri IT Knowledgebase, Microsoft has offered its unconditional support for Apple in this prominent battle with the FBI. Smith's keynote also comes days after he testified to the U. S. government that legal conflicts are undermining tech gains. Recognizing that navigating personal privacy in the tech industry is complex and complicated, Smith stated that the technology giant is doing its role in aiding the government in criminal investigations. During the Paris terrorist attacks in 2015, Smith explained that Microsoft had received 14 lawful data requests for suspects and responded within 30 minutes on average. "We do play our role as an industry," Smith said, speaking to Microsoft's commitment to aid in criminal investigations where requests for data are lawful. Stay tuned for more updates on this debate from the Petri IT Knowledgebase. --- ### Free DevOps Tool for Calculating Development Waste > Improve your DevOps processes with this free tool from Sonatype for calculating developmental waste. - Published: 2016-03-01 - Modified: 2024-11-19 - URL: https://petri.com/free-devops-tool-for-calculating-development-waste/ - Categories: Security - Tags: DevOps, RSA, RSA 2016 - Article Type: Opinion Improve your DevOps processes with this free tool from Sonatype for calculating developmental waste. Some might hate me for saying it, but DevOps can sometimes be a bit of a politics game. When you're working deep in the trenches, it can be difficult to convince upper management on where you should be spending your time in terms of new functionality and never-ending bug fixes. Yesterday during a RSA 2016 session on rugged DevOps, I learned about a neat web utility from Joshua Corman (@joshcorman), CTO of Sonatype, a company that focuses on software supply chain management. He's also a great person to follow if you’re looking to learn more about DevOps and security best practices. This free online calculator helps calculate developmental waste in your projects. Corman described that today's software development is similar to a supply chain, where software is built with several different components. Sonatype states that the challenge is "knowing which components you are using, where they are used and which ones have security vulnerabilities, license or quality issues. " To better understand this, you can play around with the calculator to interpret how much technical debt you're racking up for these security vulnerabilities. It's common to hear management or clients that demand new functionality, while fixes are put on the backburner. But with this free tool, you at least have some numbers to put things into perspective and engage in a thoughtful discussion on what needs to change. I hope that this tool sparks some valuable discussion where quality, security, and agility can be improved for your products and services... . --- ### Results of Aggregating Azure Premium Disks > See how performance improves when you add additional data disks based on Premium Storage to an Azure virtual machine. - Published: 2016-03-01 - Modified: 2024-11-19 - URL: https://petri.com/results-of-aggregating-azure-premium-disks/ - Categories: Microsoft Azure - Tags: Azure, DskSpd, Microsoft Azure, performance, Premium Storage, SSD, virtual machines - Article Type: Overview See how performance improves when you add additional data disks based on Premium Storage to an Azure virtual machine. In this article, I'll show you the how performance improves when you add additional data disks based on Premium Storage to an Azure virtual machine. In a previous article, I shared the performance gains that I recorded while adding data disks based on Standard Storage. My tests supported Microsoft's claims that you can get linear growth by adding HDD-based data disks. My findings contradicted many blog posts out there, which claimed that Azure administrators got diminishing results by adding data disks. Satisfied that I squashed those claims with Standard Storage, I decided to repeat the tests using the trickier-to-test Premium Storage. Premium Storage Refresher Microsoft allows you to deploy OS and data disks onto shared SSD back-end storage using Azure Premium Storage. This provides virtual machines with two benefits: Lower latency Much higher IOPS There are three specs of disk that you can deploy in Premium Storage. Note that you are not restricted to these sizes; a deployed disk is rounded up to determine the performance and pricing of that disk. The specs and performance of Azure premium disks (Image Credit: Microsoft) You can choose to use Premium Storage disks with DS- and GS-Series virtual machines. There are two things to note about going up the Azure virtual machine specification ladder: The higher the spec; the more data disks that are supported. Depending on your data disk design; a virtual machine's assigned Premium Storage might exceed the performance potential (IOPS and throughput) of the virtual... --- ### What is Rugged DevOps? > Learn about rugged DevOps and how it can help increase security of your deployments. - Published: 2016-03-01 - Modified: 2024-09-04 - URL: https://petri.com/what-is-rugged-devops/ - Categories: DevOps, Security - Tags: DevOps, RSA 2016 - Article Type: Opinion What is rugged DevOps? DevOps on treads? Not so fast. Most readers should be familiar with what is a DevOps pipeline – the process that encourages teamwork and collaboration among development and operations teams for faster and better delivery of services. At RSA 2016, I had the chance to sit in on some thoughtful discussions on DevOps, where I came across an unfamiliar term – rugged DevOps. It was my first time hearing this term despite working in the technology industry, so I pinged three developer friends to see if they had heard of the term before. No, they hadn’t heard of rugged DevOps either. And that brings me to why I’m writing this article. So what’s rugged DevOps? Before you write it off as another marketing buzzword or try conceptualizing the term yourself as some image of lumberjacks hacking on keyboards, let me explain. A frequent argument that arises among IT and developers who are wary of DevOps is that it’s increasingly difficult to keep pace with security thanks to DevOps’ mantra of rapid iteration and deployments. Stated differently, if you’re putting all your eggs into a basket that focuses only on pushing new functionalities to production, then you run the risk of overlooking the stability and security of your software. In a sense, this mindset is understandable, and there’s no doubt that both dev and ops teams experience pressure to kick new functionality out the door. But that’s where rugged DevOps comes in. Think of it as the next maturation of DevOps, where rugged DevOps stems... --- ### Advanced Threat Protection Service for Businesses is Coming to Windows 10 - Published: 2016-03-01 - Modified: 2024-09-04 - URL: https://petri.com/advanced-threat-protection-service-for-businesses-is-coming-to-windows-10/ - Categories: Security, Windows 10 - Tags: News - Article Type: News Microsoft is a adding a Windows Defender Advanced Threat Protection service to Windows 10. Aimed at businesses with IT staff, this new service will expand the existing security controls in Windows 10 to address more advanced electronic attacks. Microsoft announced today that it is a developing a Windows Defender Advanced Threat Protection service that will be integrated into Windows 10. Aimed at businesses with IT staff, this new service will expand the existing security controls in Windows 10 to address more advanced electronic attacks. "We want to provide customers with the best possible security defenses in Windows 10," Microsoft corporate vice president Terry Myerson told me in an earlier briefing. "Today, it typically takes enterprises over 200 days to identify and react to electronic attacks. We'd like to make that as close as possible to immediate. " To that end, Microsoft is building a new service called Windows Defender Advanced Threat Protection into Windows 10. Working alongside other security controls in Windows 10, like Credential Guard, Device Guard, Windows Hello, and Enterprise Data Protection, this new service will help overcome attacks that utilize social engineering techniques and zero-day vulnerabilities to gain entry to corporate networks. "Windows Defender Advanced Threat Protection will help enterprises detect, investigate, and respond to advanced attacks on their networks," Myerson says, "providing a new post-breach layer of protection to the Windows 10 security stack. " The way Myerson described the service to me, Windows Defender Advanced Threat Protection will utilize an "intelligent security graph" in the cloud that uses machine learning to analyze anonymous information collected from over one billion Windows devices, 2. 5 trillion indexed URLs on the web, 600 million reputation look-ups online, and over one million suspicious files that are detonated by... --- ### Nano Web-Based GUI Management Tools Preview > Learn how to set up the web-based server management tools for Windows Server 2016. - Published: 2016-02-29 - Modified: 2024-12-03 - URL: https://petri.com/nano-web-based-gui-management-tools-preview/ - Categories: Windows Server 2016 - Tags: Azure, Management, Nano - Article Type: How To Learn how to set up the web-based server management tools for Windows Server 2016 TP4. In today's Ask the Admin, I'll show you how to set up the web-based server management tools for Windows Server 2016 TP4. As part of the buzz around Windows Server Nano at last year's Ignite conference, a set of web-based GUI management tools were also announced. While largely intended to make managing the headless Nano easier, the tools can also be used to manage Server Core. It's important to understand that while in preview, the tools cannot be installed locally but are accessed from the Azure management portal. Microsoft may make the tools available as part of Azure Stack at a later date. A server is required to act as a gateway to the devices you'd like to manage, so that might be a significant drawback. Don't forget that these tools are designed for convenience and largely for big DevOps environments that will be deploying Nano in the future. If that's not you, these tools might not be the right fit. Additionally, considering the tools are still in preview, setup involves jumping through enough hoops that unless you really need these tools right now, it might not be worth the effort. In this preview, the tools offer the following features: View and change system configuration View performance across various resources and manage processes and services Manage devices attached to the server View event logs View the list of installed roles and features Use a PowerShell console to manage and automate Before starting, you'll need a minimum of two... --- ### Microsoft Unveils HoloLens Specs, Battery Life And Dev Kit Ship Date > Microsoft has announced that they will begin shipping HoloLens dev kits next month and they are also finally revealing the specs of the device. - Published: 2016-02-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-hololens-specs-battery-life-dev-kit-ship-date/ - Categories: Hardware - Tags: HoloLens - Article Type: News Microsoft has announced that they will begin shipping HoloLens dev kits next month and they are also finally revealing the specs of the device. Ever since Microsoft announced Hololens, everyone has been wanting to know what the hardware was driving the experience. While a previous leak did unveil some basics about the device, Microsoft is finally ready to talk about the hardware in the headset as well as announcing new apps and when the device will ship to developers. Microsoft has announced today that they have begun sending out invitations to purchase a development kit to individuals whose applications were accepted to be part of the early development program. If you do plan on buying a kit, they will begin shipping on March 30 and will cost $3,000. In addition to unveiling the new hardware details, there are new apps that can be used with Hololens including Skype, HoloStudio, HoloTour and three games: Young Conker, RoboRaid and Fragments. The previously uncovered Actiongram is also one of the new apps that will be used to highlight the devices capabilities and to create original content. Below are the specs of the device: Optics ·        See-through holographic lenses (waveguides) ·        2 HD 16:9 light engines ·        Automatic pupillary distance calibration ·        Holographic Resolution: 2. 3M total light points ·        Holographic Density: >2. 5k radiants Sensors ·        1 IMU ·        4 environment understanding cameras ·        1 depth camera ·        1 2MP photo / HD video camera ·        Mixed reality capture (link to blog) ·        4 microphones ·        1 ambient light sensor Human Understanding ·        Spatial sound ·        Gaze tracking ·        Gesture input ·        Voice support Input / Output / Connectivity ·        Built-in speakers ·       ... --- ### PowerShell 5.0 is Back > An update on the state of PowerShell 5.0, why you might want to upgrade and a few things to watch out for. - Published: 2016-02-29 - Modified: 2024-09-04 - URL: https://petri.com/powershell-5-0-is-back/ - Categories: PowerShell - Tags: Beginner - Article Type: News An update on the state of PowerShell 5.0, why you might want to upgrade and a few things to watch out for. At long last, Microsoft has republished Windows Management Framework 5. 0, which for most of us means PowerShell 5. 0. The initial RTM bits were quickly pulled after a bug was discovered that caused problems with the %PSMODULEPATH% environmental variable. While that would seem like a simple fix, the publication process is apparently lengthy, but now the wait is over. So what does this mean to you? If you are running Windows 10 or testing out Windows Server 2016, you don't need to do anything. You already have PowerShell 5. 0. There is no need to install the RTM package, which I doubt you could anyway. Instead, these bits are intended for Windows 7 and Windows 8. 1 admin desktops, as there's no reason to worry about clients having PowerShell 5. 0, unless you have some process or tooling in place that requires PowerShell access for end-users or their computers. If you were waiting to install v5, but didn't get a chance, now's your chance. If you are running any previous versions of PowerShell 5. 0, you should remove them first. Go to Programs in the Control Panel and select Uninstall program. Next, click the link to "View Installed Updates. " Find your Windows Management Framework 5 updates and uninstall. This will most likely require a reboot. Next, install the new RTM package. If you installed the original RTM bits, and if you didn't run into problems, you have a choice. From what I have been told, the only change in the package was for the module... --- ### Office 365 Unlimited OneDrive Storage Ends On March 1 2017 > If you have a OneDrive account and you use the unlimited storage that you received by signing up for Office 365, your account will be reverted to 1TB. - Published: 2016-02-28 - Modified: 2024-09-04 - URL: https://petri.com/office-365-unlimited-onedrive-storage-ends-on-march-1-2017/ - Categories: Microsoft 365 - Tags: Office 365, OneDrive If you have a OneDrive account and you use the unlimited storage that you received by signing up for Office 365, your account will be reverted to 1TB in March of 2017. Late last year, Microsoft made big changes to its OneDrive offering for Office 365 users, the company announced that they would be ending the unlimited offering and reverting Office 365 users back to 1TB. They had to make this change as users were abusing the service and offering unlimited storage was not a sustainable business path for the company. When they announced that they would be reverting the unlimited option back to 1TB, the company said they would give users 12 months to lower their usage below the threshold. At the time, the company did not announce when this 12-month countdown would go being but now we know that it is March 1. Thanks to a tip from a user in Australia, he received the notification pop-up you see at the top of this post when logged in to manage the storage of his account. As you can see from the prompt, March 1, 2017 is when the unlimited storage will be reduced to 1TB. With the notification going live one day before March 1, it gives users 12 months and one day to prepare for their storage to be reduced and aligns to the announcement made previously by the company. When the unlimited storage offering was announced for Office 365 users, many thought would become the trend for cloud based storage services. But with Dropbox, Box, Google and all the others failing to follow Microsoft down this path, the offering no longer made financial sense. --- ### Managing Active Directory OUs with PowerShell > PowerShell MVP Jeff Hicks continues his discussion of using PowerShell to manage Active Directory organizational unit settings. - Published: 2016-02-26 - Modified: 2024-09-04 - URL: https://petri.com/managing-active-directory-ous-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, Intermediate - Article Type: How To PowerShell MVP Jeff Hicks continues his discussion of using PowerShell to manage Active Directory organizational unit settings. In a previous article, I demonstrated how to use the Active Directory PowerShell module to create new organizational units in Active Directory.  Even with careful planning, there might be a time when you need to modify an OU. As such, there might be situations where you want a scripted solution, so let's see what we can do. As before, we'll be using the Active Directory module in a domain with an account that has domain admin privileges. Setting OU Properties If you read the previous article, it probably isn't too difficult to figure out what cmdlet you can use to set OU properties. Set-ADOrganizationalUnit Help (Image Credit: Jeff Hicks) Sometimes, the trickiest part of this command is getting the OU that you want to modify. For example, in my domain I have an engineering OU, and I want to change the description. I might try this: Set-ADOrganizationalUnit Engineering -description "Engineering division user accounts" But this will fail. Set OU failure (Image Credit: Jeff Hicks) I need to provide a complete identity, which means I need to know the OU's distinguished name. Set-ADOrganizationalUnit "OU=Engineering,OU=Departments,OU=Employees,DC=Globomantics,DC=Local" -Description "Engineering division user accounts" This assumes that I know the full path, which I may not. Usually, I find it easier to use Get-ADOrganizationalUnit, which will let me find the OU on a partial name and pipe that to Set-ADOrganizationalUnit. Get-ADOrganizationalUnit -filter "Name -eq 'Engineering'" | Set-ADOrganizationalUnit -description "Engineering division user accounts" -PassThru –whatif I almost always... --- ### Microsoft's Wireless Display Adapter Is A Portable No Frills Media Streamer > Microsoft's new Wireless Display Adapter has been redesigned and is supposed to offer lower latency, but is it really worth $50? - Published: 2016-02-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-wireless-display-adapter-is-a-portable-no-frills-media-streamer/ - Categories: Hardware - Tags: Wireless Display Adapter - Article Type: News Microsoft's new Wireless Display Adapter has been redesigned and is supposed to offer lower latency, but is it really worth $50? Last week, Microsoft announced their next generation wireless adapter and for the past few days, I have been using it to stream content in my house. The device, which is a newer version an older Miracast streamer the company was selling, is marketed as having an updated design and lower latency. This type of product is perfect for when you are traveling and doing presentations as it plugs into any HDMI port and is powered by a USB port; that’s all you need to stream your content to a projector or large display. No longer do you have to worry about if there will be a VGA connector as this device uses Miracast to wirelessly communicate between your PC and the dongle. At $50, it’s not the cheapest dongle on the market and it goes on-sale March 1st but the question is, should you buy it? The adapter comes in a simple box and there really isn’t much too it. You plug it into an HDMI port on your display and connect it to your TVs (or projectors) USB slot for power and that’s it. You then pair it up with your PC using the 'Connect' option from the Action center and then you can begin streaming to the display. In use, the device worked as expected. Response times were quick but there is a small amount of input lag that is noticeable when scrolling; Microsoft recommends that you stay within twenty feet of the device, otherwise the quality begins... --- ### Paul Thurrott's Short Takes: February 26 - Published: 2016-02-26 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-26/ - Categories: Mobile - Tags: News - Article Type: Overview Because it's been that kind of week, this edition of Short Takes focuses on Microsoft supporting Apple in the phone case, Brad Smith's Carrot Top moment, why Microsoft bought Xamarin, how Skylake impacts Windows Embedded and Server, and I'm wondering when Xbox One will get Windows 10 apps. Microsoft supports Apple in iPhone controversy Microsoft cofounder Bill Gates may not agree, but his company has offered unconditional support for Apple in its battle to prevent the FBI from "decrypting" (not really) the iPhone so it can investigate a known terrorist. "We at Microsoft support Apple and will be filing an amicus brief to support Apple’s position in the court case next week," Microsoft President and Chief Legal Officer Brad Smith said during a Congressional hearing on Thursday. "Put simply, we do not believe that courts should seek to resolve issues of 21st-century technology with law that was written in the era of the adding machine. We need 21st-century laws that address 21st-century technology issues. And we need these laws to be written by Congress. " "Microsoft 'wholeheartedly' supports Apple in FBI encryption case" Because corporations aren't just people. They have hearts too. Brad Smith: Microsoft President and Chief Legal Officer ... and Prop Comic Mr. Smith didn't just reference "the era of the adding machine. " He made his point more explicitly by pulling out an early 1900's adding machine, which he said was representative of the personal technology of the day. Har, har, har. Get it? That may sound... --- ### The Sams Report EP 29: Build, Astoria And OneDrive Placeholders > On this episode, I cover the all the news that Microsoft announced this week including the end of Astoria, hints about Build, and a lot more. - Published: 2016-02-26 - Modified: 2024-09-04 - URL: https://petri.com/the-sams-report-ep-29-build-astoria-and-onedrive-placeholders/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including the end of Astoria, hints about Build, OneDrive placeholders and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including the end of Astoria, hints about Build, OneDrive placeholders and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find an audio replay, here. https://www. youtube. com/watch? v=HhLWki6S6LM RSS | SoundCloud | YouTube | iTunes --- ### Microsoft Cancels Astoria, Lays The Foundation For Build > Microsoft has announced that they are canceling their Android bridge, Astoria and also gave a few hints about what to expect at Build 2016. - Published: 2016-02-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cancels-astoria-lays-the-foundation-for-build/ - Categories: Visual Studio, Windows 10 Microsoft has announced that they are canceling their Android bridge, Astoria and also gave a few hints about what to expect at Build 2016. Last year at Build, Microsoft announced several ‘bridges’ or more commonly put, a set of tools to help port code from existing app stores and services to the Windows ecosystem. The company announced four bridges at the event; Web Bridge, Windows Bridge for IOS, Windows Bridge for Android and Project Centennial and today they are officially putting to rest the Android bridge, also known as project Astoria. The Android bridge was trialed and the company says that the other options, such as the IOS bridge, are better solutions for what the company is trying to achieve. Of course, developers who were using the Astoria bridge will not find this news comforting as they now have to abandon those projects. It has been known for several months that Microsoft had moved on from Astoria and put its focus on Island Wood ( the IOS bridge) and today’s announcement makes it official. Yesterday, the company announced that they had purchased Xamarin, one of the leading platforms for mobile app development that provides a robust platform to help developers build mobile apps using C# and deliver fully native mobile app experiences to all major devices, including iOS, Android, and Windows. This new software, along with the existing bridges, provides Microsoft a suite of tools to attract developers to its ecosystem for building apps on any platform. Tucked away at the bottom of the announcement of the company cancelling Astoria, Microsoft provides an outline of some of the topics we can expect at build... . --- ### Rediscover Music with Roon > Learn how you can rediscover your existing music with Roon, which promises to transform files and streams into a music collection that can be enjoyed from anywhere. - Published: 2016-02-25 - Modified: 2024-09-04 - URL: https://petri.com/rediscover-music-roon/ - Categories: Windows Client OS - Tags: music, Windows - Article Type: Review Learn how you can rediscover your existing music with Roon, which promises to transform files and streams into a music collection that can be enjoyed from anywhere. I was discussing David Bowie with a friend recently and mentioned a live recording that I'd listened to a lot, but realized I'd no idea where it had been recorded. It turned out, it had been recorded in my friend's home town of Dublin and that he'd been at the concert. Understanding something about the music we listen to can make for a more rewarding experience, but now that most of us have switched completely to digital downloads or assigned our CDs and vinyl to a dark place, we often lose the context brought by liner notes, lyrics, recording information and album art. How Roon works (Image Credit: RoonLabs) Once a collection is fully digitized, discovering music becomes harder. And most of today's popular media players, such as iTunes and JRiver’s Media Center, don't do a very good job of helping you enjoy what you already have. Surfable, searchable digital magazine about your music This is where Roon comes in. 'Roon transforms files and streams into a music collection that you can enjoy everywhere. ' At least that's the claim made by RoonLabs, a company than hasn't sprung out of nowhere, but from the core team that developed the much praised software for the Sooloos music server. Sooloos was sold to high-end audio manufacturer Meridian, which continued to develop the product, but now Roon offers what might be considered 'Sooloos for everyone,' decoupling the software from the high-end hardware. The Roon interface (Image... --- ### Microsoft Stands With Apple Against the FBI > Microsoft has stated that they support Apple in their fight against the FBI to keep data on an iPhone secure and not build a backdoor into the software. - Published: 2016-02-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-stands-with-apple-against-the-fbi/ - Categories: Windows Client OS - Tags: Apple, FBI, Microsoft - Article Type: News Microsoft has stated that they support Apple in their fight against the FBI to keep data on an iPhone secure and not build a backdoor into the software. During the past week, the headlines have been filled with the ongoing battle between Apple and the FBI about if Apple should include ways to crack the security measures in their phones when the government asks them to do so. The debate has sparked conversation from those who are in favor of Apple helping out the FBI to those who believe that Apple should not build a backdoor into their products. This week, Microsoft’s Chief Legal Officer Brad Smith announced that he will be filing an amicus brief to show their support for Apple. In short, this is Microsoft saying that they agree, building a backdoor into software products is not in the best interest of the company, consumer or industry. Below is the transcript of Smith's testimony: We at Microsoft support Apple and will be filing an amicus brief to support Apple's position in the court case next week.   And I believe that Apple is making an important point that, in fact, connects directly with the kinds of issues that are being considered by this hearing today.   In the Apple case, the Justice Department has asked a magistrate to apply language in the All Writs Act that was passed by Congress and written in 1911. The leading computing device of that era is right here in front of me.   It is an adding machine that went on sale in 1912.   Put simply, we do not believe that courts should seek to resolve issues of 21st-century technology with law that... --- ### Current Status Episode 37: Networking in the Future! with Tom Hollingsworth > Join us Thursday, February 25, 2016 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Tom Hollingsworth (@networkingnerd), aka Networking Nerd! - Published: 2016-02-25 - Modified: 2016-02-25 - URL: https://petri.com/current-status-networking-in-the-future-tom-hollingsworth/ - Categories: Current Status - Tags: Current Status - Article Type: Opinion Join us Thursday, February 25, 2016 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Tom Hollingsworth (@networkingnerd), aka Networking Nerd! Join us Thursday, February 25, 2016 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Tom Hollingsworth (@networkingnerd), aka Networking Nerd! The way we look at how to do organizational networking is evolving and changing.   We will discuss Software Defined Networking (SDN), and what it means to the way organizations will do networking in the future. Join us to find out more. --- ### Microsoft’s Outlook.com Premium Is Free With Office 365 > Microsoft is testing out a premium version of their Outlook.com email service and now we have a few more details about the features that are included. - Published: 2016-02-25 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-outlook-premium-is-free-with-office-365/ - Categories: Microsoft 365 - Tags: Outlook premium - Article Type: News Microsoft is testing out a premium version of their Outlook.com email service and now we have a few more details about the features that are included. Last week, it was revealed that Microsoft was trialing a premium version of Outlook. com, and now we have a few more details about the service. And while the premium name made many believe that this would be a paid product add-on for Outlook, it looks like it is bundled in with Office 365 as a free additional feature. Spotted by Walkingcat, the image you see above outlines the new service that the company is testing out. The premium features include five personalized email addresses, ad-free inbox, and improved sharing of calendars, contacts and documents. The good news is that because most users already have an Office 365 subscription, they will receive Outlook premium for free. As long as Microsoft doesn't charge more for the subscription to include Outlook Premium, which I can't see them doing as the benefits are not all that enticing, it's a nice bonus for the service you are already paying for. This program is currently in the pilot phase and Microsoft has not said if they will roll it out to everyone or how long it will be tested. It's also not clear what level of Office 365 subscription you will need to get the features. For those who were curious about the service, you can try logging in here to see if you are able to get into the pilot, but if you get bumped from the login screen, you end up on the page you see above that outlines the service. --- ### HP Partially Blames Free Windows 10 for PC Shortfall - Published: 2016-02-25 - Modified: 2024-09-04 - URL: https://petri.com/hp-partially-blames-free-windows-10-for-pc-shortfall/ - Categories: Windows 10 - Tags: News - Article Type: News HP Inc.---the part of the newly split firm that sells PCs, printers and other hardware devices--reported financial results for its first quarter. And while the company met expectations, its PC business delivered 13 percent fewer units than the year before, well below the industry average. HP Inc. ---the part of the newly split firm that sells PCs, printers and other hardware devices---reported financial results for its first quarter. And while the company met expectations, its PC business delivered 13 percent fewer units than the year before, well below the industry average. Worse, perhaps, HP doesn't see much improvement over the next few quarters. "We have a clear strategy that leverages our strengths, and we are focused on execution, taking cost out of the business and delivering innovations that will amaze our customers and partners," HP President and CEO Dion Weisler said in a prepared statement. "Although we have some tough quarters ahead, I am confident in the future. " Unit sales in HP's Personal Systems---e. g. the PC business---fell 13 percent year over year, with notebooks down 8 percent and desktops down 13 percent. Revenues were likewise down 13 percent year over year. The problem for HP isn't its hardware lineup. If anything, the company is firing on all cylinders, having now delivered on two full years of generally stunning hardware across all of its target markets. No, the problem, HP says, is ... Windows 10. we have not seen the anticipated Windows 10 stimulation of demand that we had hoped for, and we’re carefully monitoring any sort of price... --- ### The Enterprise Agenda: The Cost Of Doing Nothing Is Agility, Velocity, And Lost Functionality > In the world of IT, if you are not moving forward, you are falling behind and it can cost you more than money if you wait too long. - Published: 2016-02-24 - Modified: 2024-09-04 - URL: https://petri.com/the-enterprise-agenda-the-cost-of-doing-nothing-is-agility-velocity-and-lost-functionality/ - Categories: Backup & Storage - Tags: enterprise - Article Type: Opinion In the world of IT, if you are not moving forward, you are falling behind and it can cost you more than money if you wait too long. If you aren't moving forward at all times, you are moving backwards when it comes to a competitive advantage. No one recommends moving slowly, including Gartner, who notes that the exponential rate of technology change and advancements is shaking the foundation of the traditional IT model. Windows XP is one of the most glaring examples of this scenario as corporations around the globe become complacent with the operating system as it simply worked, so why move to Windows 7? The result of sitting idle with XP was that companies found themselves scrambling to move to Windows 7 at frantic pace as the OS reached end of life, which resulted in a sub-optimal upgrade experience or worse, being forced to pay Microsoft heavy fees for post life-cycle support. But, this radical change is also creating opportunity, which means that IT professionals need to embrace agility to set the pace for their organizations. The report, which you can read here (registration required) highlights that to create a foundation of success, "teams must improve software architecture, infrastructure and processes simultaneously to realize greater velocity and agility . "Specifically, they cite the following trends for 2016 that are imperative for organizations who want to be industry leaders rather than laggards: IT organizations will accelerate data center consolidation and modernization. IT technology silos will erode as integrated systems and cloud adoption accelerate. IT will rely more on software-defined approaches to improve IT agility and automation. IT service continuity initiatives will augment IT DR plans to help... --- ### Microsoft has acquired Xamarin > Microsoft has announced that they have acquired Xamarin, a development platform that works well for building mobile applications. - Published: 2016-02-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-acquired-xamarin/ - Categories: Visual Studio - Tags: Xamarin - Article Type: News Microsoft has announced that they have acquired Xamarain, a development platform that works well for building mobile applications. The rumors have been floating around for years that Microsoft was interested in purchasing Xamarin, and the deal is now official. The company announced earlier today that the acquisition has been completed for an undisclosed amount of money. The head of Microsoft's Cloud and Enterprise business, Scott Guthrie, made the announcement, which you can read here, where he says that the company will provide more information about how they will integrate the technology into their current products at the upcoming Build conference in San Francisco. Xamarin is one of the leading platforms for mobile app development and provides a robust platform that helps developers build mobile apps using C# and deliver fully native mobile app experiences to all major devices, including iOS, Android, and Windows. Seeing as Microsoft is a productivity focused company whose Visual Studio product is used by millions around the globe, this acquisition will fit nicely into their portfolio of products. With more than 15,000 customers in 120 countries, of which 100 are Fortune 500 firms, Xamarin has become a leader in this space. Companies like Alaska Airlines, Coca-Cola Bottling, Thermo Fisher, Honeywell and JetBlue all use the software to develop their apps. With this new development suite under their umbrella, Microsoft is solidifying their position that their software can be used to develop applications for all major desktop and mobile platforms. --- ### Office 365 Updates and Improvements: February 2016 Edition > Microsoft has released several updates for its Office 365 platform this month including improvements for SharePoint and OneDrive. - Published: 2016-02-24 - Modified: 2024-09-04 - URL: https://petri.com/office-365-updates-improvements-february-2016/ - Categories: Microsoft 365, SharePoint 2013, SharePoint 2016 - Tags: Office 365 - Article Type: News Microsoft has released several updates for its Office 365 platform this month including improvements for SharePoint and OneDrive. Keeping with Microsoft's sometimes good, sometimes bad, promise of constant improvements and upgrades to Office 365, last week the company announced their latest round of changes. These include highly useful, but boring sounding improvements to auditing, larger file uploads sizes, and more storage space in general. As an Office 365 user, I'm torn on the new upload size limit of 10 GB per file. On one hand, I'm an old school SharePoint guy, and I think of it as the place where Office documents go to be collaborated on, edited within an inch of their lives, approve, and then likely lost forever. I've never thought of SharePoint as a good place to store DVD ISOs (sorry, Linux ISOs) or gigantic CAD drawings that would take an hour to upload. On the other hand, I have absolutely tried to upload files to SharePoint that were too large and been frustrated that in the year 2016, cars can drive themselves, but somehow SharePoint can't find a way to store a 2. 1 GB file. Regardless of which of my dueling personalities is correct, you can now upload files as large as 10 GB now to SharePoint Online. This will definitely help SharePoint's reputation as a document collaboration platform. Now it can legitimately be used as a file sharing platform to share large files without having to save them to a file server somewhere. All of SharePoint Online gets to enjoy this new feature, be it a Team Site, OneDrive for Business, or the video portal... . --- ### Microsoft Exec Testifies That Legal Conflicts Are Undermining Tech Gains - Published: 2016-02-24 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-exec-testifies-that-legal-conflicts-are-undermining-tech-gains/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft President and Chief Legal Officer Brad Smith testified ahead of a U.S. Congressional hearing this week that conflicting and outdated international laws are hampering the tech industry's ability to protect personal privacy and keep the public safe. Credit: Associated Press Microsoft President and Chief Legal Officer Brad Smith testified ahead of a U. S. Congressional hearing this week that conflicting and outdated international laws are hampering the tech industry's ability to protect personal privacy and keep the public safe. "The current legal trends are clear," Mr. Smith testified. "Unless governments change course and adopt a new and more international approach, we risk confronting a conflict of law on steroids. This conflict should concern more than lawyers and people in the tech sector. " (I was apprised of this testimony by a post in Computerworld. ) The issue, Smith explains, is two-fold. First, the laws that govern technology are old and outdated, and even the primary U. S. laws that directly relate to technology---like the electronic privacy law---are over 30 years old. And second, the laws that Microsoft and other tech firms must adhere to vary from country to country, and are often contradictory. What's needed, Smith says, is consistent and updated international standards. "We need to establish a modernized approach that enables law enforcement to work with our allies to fight crime jointly by sharing evidence quickly and efficiently through clear rules," he says. "It also needs to protect people’s privacy in accordance with new principles that recognize the importance of a person’s nationality and their right to be protected by their own law. We need new solutions that are international in nature and reflect the way that current technology actually works ... new solutions... --- ### Windows 10 Tip: Change Network Profile > In today's Ask the Admin, I'll show you how to change the network profile for your Ethernet or Wi-Fi connection in Windows 10 from Public to Private. - Published: 2016-02-23 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-change-network-profile/ - Categories: Windows 10 - Tags: Network, Windows 10 - Article Type: How To In today's Ask the Admin, I'll show you how to change the network profile for your Ethernet or Wi-Fi connection in Windows 10 from Public to Private. In today's Ask the Admin, I'll show you how to change the network profile for your Ethernet or Wi-Fi connection in Windows 10 from Public to Private. The default network profile for all new networks in Windows 10 is Public if your device is not joined to a domain. Network profiles work in conjunction with Windows Firewall to determine which inbound and outbound firewall rules should be applied when connected to a given network. The Public profile provides the most protection and in general doesn't allow Windows 10 to receive unsolicited connections from remote devices. However, on a home or work network, you may want more flexibility by setting the network to use the Private profile. By default some Windows services, such as Wireless Display and Network Discovery, require that the network profile be set to Private. Change network profile In Windows 10, Microsoft has moved the network profile setting into the Settings app. What’s more, you’ll need to logged in as an administrator to see the necessary configuration in the Settings app. Unfortunately, unlike the carefully engineered UAC in Vista and Windows 7, Windows 10 contains GUI inconsistencies in what can be accessed as a standard user. In Windows 7, the control panel marked inaccessible settings with a UAC shield to indicate that you must elevate privileges to make changes but in Windows 10, unavailable settings are often hidden from standard users. Additionally, you can't use the Run as administrator option to launch the Settings app with... --- ### Bill Gates Raises Important Questions About Apple in iPhone Terrorism Case - Published: 2016-02-23 - Modified: 2024-09-04 - URL: https://petri.com/bill-gates-backs-the-fbi-in-iphone-terrorism-case/ - Categories: Mobile - Tags: News - Article Type: Opinion Despite a later and half-hearted expression of disappointment, Microsoft co-founder Bill Gates has indeed taken the side of the U.S. Federal Bureau of Investigations (FBI) in its standoff with Apple. Despite a later and half-hearted expression of disappointment, Microsoft co-founder Bill Gates has indeed taken the side of the U. S. Federal Bureau of Investigations (FBI) in its standoff with Apple. And he's right that Apple should be forced to cooperate with law enforcement in this particular terrorism investigation. Gates' words are overdue in what is already a highly-charged debate. Because as privacy advocates and much of the tech world publicly rallies around Apple, they're all missing out on one important point. In this case, Apple is wrong. "It's a simple question," Gates asserted in an interview with The Financial Times, cutting right to the heart of the matter. Which is this: The iPhone case isn't a matter of principle, as Apple asserts. It's not about privacy. And it's most certainly not about "back doors," a non-relevant technical term that privacy advocates and Apple itself have used to inflame onlookers who are worried about government spying: The government is not asking Apple to "decrypt" the iPhone, as so many critics assert. "Nobody is talking about a back door," Gates told The Financial Times. "That is not the right question . This is a specific case where the government is asking for access to information. They are not asking for some general thing, they are asking for a particular case" Will there be other specific cases? Sure. But that's what just cause, search warrants, and Constitutional notions of search and seizure are for. It's not up to Apple to... --- ### HoloLens Clicker Peripheral Will Make It Easier To Interact With Holograms > Microsoft's upcoming Hololens will support a Bluetooth clicker that will make interacting with Holograms easier. - Published: 2016-02-22 - Modified: 2024-09-04 - URL: https://petri.com/hololens-clicker-peripheral-will-make-it-easier-to-interact-with-holograms/ - Categories: Hardware - Tags: HoloLens - Article Type: News Microsoft's upcoming Hololens will support a Bluetooth clicker that will make interacting with Holograms easier and less strenuous. Starting early this year, Microsoft is going to be shipping out Hololens developer kits to independent teams to start building the first applications for the device. While the dev kits are not cheap, they will be the first of such devices to leave the Redmond campus to be used by third parties. I have used a Hololens a couple of times now and one pain point of the device has been ‘clicking’ with your finger. It requires a pronounced gestures and doing this once or twice is fine, but doing it a significant number of times can be strenuous. To erase this pain point, Microsoft will be releasing a Bluetooth clicker that will make interacting with content easier. You can see the device above and it has a micro USB port for charging, an elastic finger strap and dimple that is for your thumb to rest in. It’s unclear at this time if Microsoft plans to ship this peripheral with the Hololens or if they would sell them later. But, seeing as this device appears to be a low-cost item, I would think that it would come with the device to make the on-boarding experience as smooth as possible. This is the first peripheral we have seen from Microsoft for the Hololens but it will likely not be the last. The company is highly optimistic about the product and will make sure it is fully supported with apps, peripherals and everything else needed to guarantee it has a successful consumer... --- ### Microsoft Is Changing How App Reviews Are Managed And Displayed > Microsoft is making changes to how Windows store app reviews will be displayed and offers advice if your app is not found when searched. - Published: 2016-02-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-changing-how-app-reviews-are-managed-and-displayed/ - Categories: Windows 10 - Tags: apps, Windows Store - Article Type: News Microsoft is making changes to how Windows store app reviews will be displayed and offers advice if your app is not found when searched. With the release of Windows 10, Microsoft introduced an updated app store for the desktop. And earlier this year, the company made changes behind the scenes to improve the accuracy of rankings, search enhancements, and the support process. The company announced today further changes to the way they work with app store developers, specifically, changes to the app review management and display process. Starting in March, reviews created by customers who are running the Windows 10 preview builds in the Slow ring, will start showing up in the Dev Center and in the store. Reviews from users who are in the Fast ring will still continue to be hidden from public view. Microsoft says that, based on their data, reviews from Slow ring users are not statistically different than reviews from those running the public release builds. Therefore, by including these additional reviews, it gives users who are shopping for apps more data to help determine if they are going to purchase an app. If you are a developer and you are still having issues with finding your app in the store, Microsoft recommends you submit a support ticket with your app ID and a direct link to your app and the company will assist you with making your app more visible. Seeing as the company is offering this advice, even though they made enhancements to the search algorithms in the past few months, it seems like there are still lingering visibility issues. You can read the app review changes... --- ### Free Active Directory Tool for Preventing Insider Misuse > Learn about a free Active Directory tool to help prevent insider misuse and security breaches within your organization.  - Published: 2016-02-22 - Modified: 2024-12-03 - URL: https://petri.com/free-active-directory-tool-for-preventing-insider-misuse/ - Categories: Active Directory (AD) - Article Type: Opinion Learn about a free Active Directory tool to help prevent insider misuse and security breaches within your organization. Sponsored IT content provided by SolarWinds The 2015 Verizon Data Breach Investigations Report states that 20. 6 percent of data breaches are due to insider misuse incidents. Additionally, the report found that 55 percent of insider misuse is caused from abuse of privileges and permissions, which the report calls a 'defining characteristic of the internal actor breach. ' This trend is prominent across industries and the ‘internal actors’ who breach this code also come from various departments according to the report. Organizations are now realizing the need to safeguard confidential company data so that it does not fall into the wrong hands. Before you start thinking about applying the highest security measures in your organization, one of the easiest ways to prevent insider misuse is making sure appropriate user and group access rights are prescribed for a specific file folder or shared drive. Applying the proper user and group access rights is a critical step for preventing insider misuse because it enables IT pros and the organization to see who has access to different information. This approach also tells you why certain users have permissions to some folders or files, and really allows you to take a step back to re-assess and prevent insider threats. One of the ways you can easily do this is by automating it with a free tool, such as SolarWinds' Permissions Analyzer for Active Directory. This free tool gives you complete visibility into effective permissions and access rights. Not only are you taking a step in... --- ### Improvements to Azure AD Connect, Plus Reasons to Upgrade to Latest Version > Learn what's new in Azure AD Connect 1.1, plus reasons why you should upgrade to the latest version. - Published: 2016-02-22 - Modified: 2024-09-04 - URL: https://petri.com/improvements-azure-ad-connect-plus-reasons-upgrade-latest-version/ - Categories: Active Directory (AD) - Tags: Active Directory, Azure, Azure AD, Azure AD Connect, dirsync - Article Type: News Learn what's new in Azure AD Connect 1.1, plus reasons why you should upgrade to the latest version. Microsoft has released an update to Azure AD Connect, adding several features that have been popular demands from customers. In this article, I'll explain what's new in the Azure AD Connect 1. 1 release. What is Azure AD Connect? Azure AD Connect is a solution from Microsoft that lets you easily integrate legacy Active Directory with Microsoft's cloud services and over 2,500 other cloud services via Azure AD single sign-on. Integrate Active Directory with the cloud using Azure AD Connect (Image Credit: Microsoft) Azure AD Connect Benefits Azure AD Connect can be installed on a domain member server and synchronizes selected domains and OUs to your Azure AD subscription. The benefits are: Common username and password between on-premises services and Microsoft cloud services, such as CRM Online, Office 365, Azure, and EMS. The ability to integrate into third-party services, such as Google Apps, Sage, DropBox for Business, Salesforce, and another 2,500+ third-party cloud services, enabling users to use a single username and password for all services and giving business control over shadow IT. Many businesses will have deployed a predecessor to Azure AD Connect called DirSync. You can do an upgrade to Azure AD Sync to: Remain in support Get a more stable product Availability of new features, such as sync health checking (see Azure AD Premium) And more If you are already running a previous version of Azure AD Connect, then you can easily upgrade to version 1. 1. I did the upgrade for work... --- ### With Microsoft a No-Show at Mobile World Congress, Partners Step Up - Published: 2016-02-22 - Modified: 2024-09-04 - URL: https://petri.com/with-microsoft-a-no-show-at-mobile-world-congress-partners-step-up/ - Categories: Mobile - Tags: News, Windows 10 Mobile - Article Type: Overview has only a minimal presence at Mobile World Congress this week and will not make any formal announcements. Instead, it will let its Windows device partners do the talking this year. Microsoft announced a new smart phone, the Lumia 650, a week before Mobile World Congress, the annual mobile industry exhibition. Turns out that was a hint: The software giant has only a minimal presence at the show, and will not make any formal announcements. Instead, it will let its Windows device partners do the talking this year. That's a big change for a company that announced its latest smart phone platform, originally called Windows Phone 7 Series, at Mobile World Congress (MWC) in 2010. In the years since, Microsoft---and its key hardware partner and eventual acquisition Nokia---have used MWC as the launching point for major new software and hardware releases each year. But Windows phones have fallen on hard times, and now account for a minuscule 1. 1 percent of all smart phones sold worldwide. So Microsoft is scaling back on its previous plans and has stuck a fork in its first-party hardware ambitions. And a key part of this new strategy is to grow its partner base and keep its direct phone losses to a minimum. Two things are interesting about this shift. First, Microsoft has rolled its phone software development into that of Windows 10, creating a single platform that can work across a multitude of device types. So not just PCs and tablets, and phones, but also the Xbox One video game console, embedded and connected Internet of Things (IoT) devices, the Surface Hub office collaboration solution, and the HoloLens augmented reality headset. In this way,... --- ### HP’s New Windows Phone Is A Continuum Powerhouse, The Future Of The Mobile Office > HP has a new Windows phone but this device is designed for Continuum and has new peripherals that can make this phone, the only computing device your office needs. - Published: 2016-02-21 - Modified: 2024-09-04 - URL: https://petri.com/hps-new-windows-phone-is-a-continuum-powerhouse-the-future-of-the-mobile-office/ - Categories: Hardware - Tags: Elite x3 - Article Type: News HP has a new Windows phone but this device is designed for Continuum and has new peripherals that can make this phone, the only computing device your office needs. When Microsoft first showed off continuum, a feature that turns a phone into an experience that is similar to that of your desktop, it was only a matter of time before we saw someone take full advantage of this capability. At Mobile World Congress, HP is doing just that by announcing that Elite x3, a Windows 10 smartphone with big ambitions. Earlier this month we saw Microsoft announce the Lumia 650, which they said was a business device but when compared to the Elite x3, it's not in the same league. This device is truly a bold step for HP and Windows phone and it is aimed solely at the business market. The phone is a premium smartphone with top end specs including Snapdragon 820 processor, 4GB of RAM, 64GB of storage, 5. 96in display, at 2560x1140, 16MP rear camera, 8MP front facing, microSD, and USB type C. By all standards, the specs of this device are excellent. But what separates this phone, aside from the fact that it is the best high-end device we have ever seen running the OS in some time, are the peripherals that HP is releasing with the phone. The goal of this device is to be the only computer you need; available with the phone are a Mobile Extender and Desk Dock. The Mobile Extender is a laptop-like device with a 12. 5in display that gives you a full keyboard for using the device out of the office without the need to bring a full laptop... . --- ### What is Microsoft Project Centennial? - Published: 2016-02-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-project-centennial/ - Categories: Windows 10 - Tags: App-V, Project Centennial, Windows 10, Windows Store - Article Type: Overview In today's Ask the Admin, learn about Microsoft Project Centennial and how it will change the way .NET and win32 apps are delivered in Windows 10. In today's Ask the Admin, I'll explain what Microsoft Project Centennial is and how it will change the way . NET and win32 apps are delivered in Windows 10. I firmly believe the future to be in the Universal Windows Platform, not because it enables apps to run on all devices that support Windows 10 -- although that's a significant advantage -- but because UWP apps are more efficient and provide the level of security required as technology expands to every corner of our lives. And while Win32 apps are currently more capable, they're based on a legacy technology that can't meet the needs of modern computing. Universal Windows Platform (UWP) apps might be the future, but the present is very much about win32 and . NET apps. And on the basis that UWP could take years to become as capable, the lack of win32 apps in the Windows Store restricts its adoption. But if you remember back to Microsoft's 2015 Ignite conference, you might recall the promise that the Windows Store would become the delivery mechanism for all Windows programs, and not just UWP apps. Project Centennial is a bridge for Windows 10 that allows developers to convert classic Windows apps (CWA) to AppX packages, the distribution format used by the Windows Store. The converted apps will consist of two parts, borrowing a subset of technologies from Microsoft's application virtualization technology App-V: a UWP component and a CWA running outside of the trusted sandbox usually provided for Windows Store... --- ### Display Memory Usage with PowerShell > Learn how to display memory usage with PowerShell and divide the workload between data gathering and data formatting. - Published: 2016-02-19 - Modified: 2024-09-04 - URL: https://petri.com/display-memory-usage-powershell/ - Categories: PowerShell - Tags: Get-CIMInstance, Intermediate, Scripting - Article Type: How To Learn how to display memory usage with PowerShell and divide the workload between data gathering and data formatting. Like most of you, I probably push my daily driver desktop too much. Usually I can tell when I'm running out of resources, simply by diminished responsiveness. With that said, it helps to quantify the sluggish responsiveness to better understand our memory needs. Most of my constraints are memory related, so I threw together a quick tool to show me how much memory is being used and how close to the edge I might be. There are several ways to get memory information, but I decided to use WMI and the Get-CimInstance cmdlet. You can get basic memory statistics from the Win32_OperatingSystem class. $os = Get-Ciminstance Win32_OperatingSystem As you can see, there are several memory-related properties. Memory properties (Image Credit: Jeff Hicks) Those values are all in bytes. I can use these values to calculate a percentage of free memory. I focused on physical memory. $pctFree = ::Round(($os. FreePhysicalMemory/$os. TotalVisibleMemorySize)*100,2) I'm using the Round method from the . NET class to round the value to two decimal places. I can now display the relevant information using Select-Object and a few custom properties. $os | Select @{Name = "PctFree"; Expression = {$pctFree}}, @{Name = "FreeGB";Expression = {::Round($_. FreePhysicalMemory/1mb,2)}}, @{Name = "TotalGB";Expression = {($_. TotalVisibleMemorySize/1mb)}} Displaying memory values (Image Credit: Jeff Hicks) That's a good start. Once I got that working, I extended my basic concept and came up with this function. Function Test-MemoryUsage { Param $os = Get-Ciminstance Win32_OperatingSystem $pctFree = ::Round(($os. FreePhysicalMemory/$os. TotalVisibleMemorySize)*100,2) if ($pctFree -ge 45) {... --- ### The Sams Report EP 28: Sleeping Beauty Rests and MWC Hype - Published: 2016-02-19 - Modified: 2024-09-04 - URL: https://petri.com/the-sams-report-ep-28-sleeping-beauty-rests-and-mwc-hype/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including an the updates for the Surface line, getting hyped for MWC next week, Outlook gets a new theme and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including an the updates for the Surface line, getting hyped for MWC next week, Outlook gets a new theme and a lot more. If you have any questions, you can join the chat room or find me on Twitter @bdsams. An audio replay can be found here. https://www. youtube. com/watch? v=enQpoK6BPhg&edit=vd RSS | SoundCloud | YouTube | iTunes --- ### Paul Thurrott's Short Takes: iPhone Encryption Special Edition - Published: 2016-02-19 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-iphone-encryption-special-edition/ - Categories: Mobile - Tags: iPhone, News - Article Type: News Because I'm of an encrypted mind, this edition of Short Takes focuses on this week's big tech controversy: A US governmental demand that Apple decrypt a terrorist's iPhone. Because I'm of an encrypted mind, this edition of Short Takes focuses on this week's big tech controversy: A US governmental demand that Apple decrypt a terrorist's iPhone. Note: Because of the seriousness of this issue, I'm going to keep the frivolity to a minimum, and move the headline riffs to the end. --Paul Apple takes on the law ... and will mostly likely lose The US government has demanded that Apple decrypt an iPhone that was used by a terrorist in the San Bernardino shooting, and Apple has said it will not do so. "The government is asking Apple to hack our own users and undermine decades of security advancements that protect our customers from sophisticated hackers and cybercriminals,"an open letter from Tim Cook explains. Apple now has until February 26 to file a formal response. But ... . come on. No matter where you fall on the encryption backdoor debate, there is no way Apple wins this one: There are just too many scenarios where there is a legal justification for search and seizure of information. Law enforcement can search a home, a house, or a storage location. Why not an iPhone? Why not indeed? In that open letter, Mr. Cook says that the US decryption demand is "unprecedented" and has far-reaching implications. He also uses this event as an opportunity to promote Apple, which I think is a mistake. "Smartphones, led by iPhone, have become an essential part of our lives ... and at Apple we are... --- ### Current Status Episode 36: Exchange 2016, the Last Episode? with Gareth Gudger > Join us for another episode of Current Status, where co-hosts Theresa Miller and Phoummala Schmitt talk Exchange 2016 with Gareth Gudger. - Published: 2016-02-18 - Modified: 2016-02-18 - URL: https://petri.com/current-status-episode-36-exchange-2016-the-last-episode-with-gareth-gudger/ - Categories: Current Status - Tags: Current Status, Exchange 2016 - Article Type: Opinion Join us for another episode of Current Status, where co-hosts Theresa Miller and Phoummala Schmitt talk Exchange 2016 with Gareth Gudger. Join us Thursday, February 18, 2016 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Gareth Gudger (@supertekboy), aka Super Tek Boy! Exchange 2016 has been released and is rumored to be the last version of on-premises Exchange. We'll discuss whether or not we believe this is true, and we'll also cover anything and everything Exchange 2016. Join us as we unravel the mysteries of the latest version of Exchange. --- ### Custom Archiving in PowerShell 5.0 > Discover how to create a custom archive in PowerShell 5.0 that includes folders and files. - Published: 2016-02-18 - Modified: 2024-09-04 - URL: https://petri.com/custom-archiving-powershell-5-0/ - Categories: PowerShell - Tags: Expand-Archive, Intermediate - Article Type: How To Discover how to create a custom archive in PowerShell 5.0 that includes folders and files. In a previous article I demonstrated how to use the new Compress-Archive cmdlet in PowerShell 5. 0. In that article, I needed to create a zip file of selected files and retain the folder structure. In my original command I wanted to zip up XML files that reside in a number of subfolders under C:Work. How can I retain that information? I couldn't find a simple way by using the cmdlet's parameters or basic pipeline expressions. I have a solution, but it takes a little more effort. Because I know the only way to maintain the folder structure is to only specify a folder name if I copy the files to a new directory structure and zip that up, then I should end up with a structured archive. Here's how I accomplished this using the same XML files. First, I'm going to get all the files I want and group them by their directory name. I'm sorting the results on the directory name so that when I create the corresponding temp folders, parent folders will get created first, although in reality, PowerShell doesn't really care. $g = dir c:work*. xml -Recurse | Group Directory | Sort name The rest of the code looks like this: $g | foreach -begin { #define the name of the zip file $zip = "c:workxmldata. zip" #delete the zip file if an old copy exists if (Test-Path $zip) { Del $zip } #create a temp folder $zipTemp = Join-Path -path $env:temp -childpath $(::GetRandomFileName) write-host $zipTemp -ForegroundColor Yellow New-Item -Path... --- ### Getting The Most Out of Office 365: Working with Mobile Apps > How can you get the most out of Office 365 using mobile apps on iOS, Android, and Windows Mobile? - Published: 2016-02-18 - Modified: 2024-09-04 - URL: https://petri.com/getting-office-365-working-mobile-apps/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Mobile Apps, Office 365 - Article Type: How To How can you get the most out of Office 365 using mobile apps on iOS, Android, and Windows Mobile? One of the best things about working in the cloud is flexibility. For those who lack self-control, this means work invades your life all the time, but for people who have proper boundaries, then the cloud opens the door to the world. Armed only with a phone, you can review documents, respond to questions, and share files. Due to the cross-platform nature of their customers, Microsoft has been forced to develop apps for every major platform. So regardless of who makes the phone in your pocket, you can still gain access to your work messages and files. Windows 10 Mobile, iOS, and Android all connect to Office 365 through a variety of apps. Outlook on the Web operates like most email services today. You can access your work email via most email apps by connecting the Exchange service in the app. However, Microsoft does offer a mobile Outlook experience on all platforms. Outlook Mobile is a great email app and works well. The app does not yet support unique features of Outlook on the Web, such as ‘liking’ an email or inline mentioning. To access these features, you will need to use the web interface. There's an Office 365 Groups app on iOS and Android, which gives access to your group conversations and files. The shared calendar is not currently present through the Office 365 Groups app, but conversations can be ‘liked’ and in-line mentioning is supported. The conversations in the app feel more like a social media post than... --- ### Microsoft’s Azure Container Service Preview Now Available > Microsoft announced that its Azure Container Service preview is now available and lets IT pros deploy and manage containers with several open source tools. - Published: 2016-02-17 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-azure-container-service-preview-now-available/ - Categories: Microsoft Azure - Tags: Containers - Article Type: News Microsoft announced that its Azure Container Service preview is now available and lets IT pros deploy and manage containers with several open source tools. As you might have read in my latest post on the Petri IT Knowledgebase, container technology is steadily rising in popularity, where we can expect even more organizations to adopt container technology this year. And that might not be too surprising, considering that containers offer several different benefits, such as better scalability, security, and availability for applications. With Microsoft's partnership with Docker and Mesosphere, the company has showed a strong commitment to enabling IT pros to choose the best tool for the job by providing support for these open source technologies. Keeping to this commitment, Microsoft announced today that the Azure Container Service preview is now available for everyone. Building on the work done with Docker and Mesos, the service lets IT pros easily deploy and manage containers using desired tools. Here are some things that you can do with Azure Container Service: Create a container hosting solution that’s optimized for Azure Scale and orchestrate apps using Apache Mesos or Docker Swarm Use popular open source client-side tooling Migrate container workloads to and from Azure without the need for code changes Today’s announcement is Microsoft’s latest stride in making sure that IT pros have access to the tools that best fit the needs of their environment. You can learn more by visiting Microsoft's Azure Container Service web page. If you're looking for more information about how you can get started with containers, I recommend checking out the following articles: Deploy and Manage Windows Server Containers Using Docker Are... --- ### Microsoft's Next Gen Wireless Display Adapter Coming March 1st > Microsoft has announced its next generation wireless display adapter and it will be available starting in March. - Published: 2016-02-17 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-next-gen-wireless-display-adapter-coming-march-1st/ - Categories: Hardware - Tags: Wireless Display Adapter - Article Type: News Microsoft has announced its next generation wireless display adapter and it will be available starting in March. A few years ago, Microsoft released a wireless display adapter that made it easy to share your screen to an external display like a television mounted on a wall. Today, the company has announced an updated version of the product and it will be available March 1st. The Wireless Display Adapter, that's the official name, will cost $49. 95 with pre-orders opening today at the Microsoft Store, Best Buy and Amazon. The biggest differences with this release are that it has lower latency and the packaging makes it easier to transport. This type of product is perfect for when you are traveling and doing presentations as it plugs into any HDMI port and is powered by a USB port, and that's all you need to stream your content to a projector or large display. No longer do you have to worry about if there will be a VGA connector as this device uses Miracast to wirelessly communicate between your PC and the dongle. At $50, it's not the cheapest peripheral but for those who frequently give presentations or companies who want to make it easy to stream content to an external display in their conference rooms, this adapter should handle those tasks well. You can read the announcement post for the new dongle, here. --- ### Overcoming The Challenges Of Availability - Published: 2016-02-17 - Modified: 2024-12-03 - URL: https://petri.com/overcoming-the-challenges-of-availability/ - Categories: Backup & Storage - Tags: Availability - Article Type: Overview Making sure your data is available is not only critical to the operation of your business, but being able to recover quickly and gracefully is the difference between market leaders and those who are stuck using yesterday’s methodologies. If you haven’t encountered a situation where you need to pull data in a recovery scenario, you are in the minority. Networks go down, machines collapse, and disasters occur; it’s a simple facet of the world we live in. Making sure your data is available is not only critical to the operation of your business, but being able to recover gracefully is the difference between market leaders and those who are stuck using yesterday’s methodologies. This is a problem for every size company but more importantly, for small and medium sized operations where IT staff is a small operation and unexpected events create longer outages. Because of these challenges, you need solutions that deliver ease-of-use, represent a slam-dunk ROI and save you a ton of time. Join us on February 24th for a free session with experts from Petri and Veeam to learn about:. Availability challenges and solutions that SMBs face Effective design considerations for the SMB data center Practical tips for off-site, DR and quick recovery techniques By attending, you could win a Microsoft Surface Pro 4; one randomly-selected attendee will win a Microsoft Surface Pro 4 ($899 retail). You must be registered and present during Q&A segment for a chance to win. Register For Our Top 5 Backup and Availability challenges for SMB Webinar --- ### U.S. DOD to Migrate 4 Million Seats to Windows 10 Within One Year - Published: 2016-02-17 - Modified: 2024-11-19 - URL: https://petri.com/u-s-department-of-defense-to-migrate-4-million-seats-to-windows-10-within-one-year/ - Categories: Windows 10 - Tags: News - Article Type: News Windows 10 has received its most notable endorsement yet, with the U.S. Department of Defense committing to upgrade 4 million seats to Microsoft's latest OS. Even more impressive: the DOD will complete the migration with one year, an unprecedented speed for a government rollout. Windows 10 has received its most notable endorsement yet, with the U. S. Department of Defense committing to upgrade 4 million seats to Microsoft's latest OS. Even more impressive: the DOD will complete the migration with one year, an unprecedented speed for a government rollout. "With this move, which is the largest enterprise Windows 10 installation to date, the DoD is taking advantage of the productivity, security and continuous innovation Windows 10 delivers," a Microsoft representative told me. "Further demonstrating a strong vote of confidence for the platform, Windows 10 has been certified by the National Information Assurance Program as meeting specific government criteria and standards. " (The Surface family of products has likewise been certified through the Defense Information Systems Agency, Microsoft notes, and is now on the DoD's approved products list. ) According to Microsoft, DoD CIO Terry Halvorsen determined last year that his organization needed to step up security and standardize on a single more efficient and cost-effective platform. The DoD networks are "getting shot at" every day, Halvorsen said, and the agency's "pending need to survive" would require it to innovate. So in November 2015, Halvorsen issued an agency-wide memo announcing that it would migrate to Windows 10 starting in January 2016 and complete the process in just one year. "the DOD will direct Combatant Commands, Services, Agencies and Field Activities (CC/S/As) to rapidly deploy the Windows 10 operating system throughout their respective organizations," the memo explains. "The Department's objective is to complete the deployment by January... --- ### Configuring the PowerShell Console > PowerShell author Jeff Hicks explains how to make the most of your PowerShell console window including Windows 10. - Published: 2016-02-16 - Modified: 2024-09-04 - URL: https://petri.com/configuring-powershell-console/ - Categories: PowerShell - Tags: Beginner - Article Type: How To PowerShell author Jeff Hicks explains how to make the most of your PowerShell console window including Windows 10. If you are going to spend your days inside the PowerShell console, then you should make sure the console is configured to make life easier for you. Before we get started, let me make two distinctions. First, the PowerShell console should not be confused with the PowerShell ISE that has a completely different interface. Second, the PowerShell console is based on your operating system and not the version of PowerShell. Remember that PowerShell is an automation engine that has to be hosted in some application. For the traditional console, Microsoft used the command. exe application, which hasn't really changed since the days of Windows NT. This leads many people to lament the state of PowerShell when it first came out because they didn't understand the architecture. Related: Your First 30 Minutes in PowerShell The Legacy Console You can adjust your console by right-clicking the system menu in the upper left corner. Legacy window settings (Image Credit: Jeff Hicks) Select Properties. Legacy Options (Image Credit: Jeff HIcks) The Edit Options should be checked. This lets you select text in the window and copy it to the clipboard by pressing Enter. You can also paste text at the prompt by right-clicking. Buffer Size refers to the number of items in the command buffer, which you get by pressing the Up Arrow key or F7. This is a separate buffer from command history, which you can get with the Get-History cmdlet. If you never use the F7... --- ### Visual Studio 2015 Update 2 CTP and Team Foundation Server 2015 Update 2 RC 1 Now Available To Download > Microsoft has released a new preview version of Visual Studio 2015 and Team Foundation Server 2015 that are now available for testing. - Published: 2016-02-16 - Modified: 2024-09-04 - URL: https://petri.com/visual-studio-2015-update-2-ctp-and-team-foundation-server-2015-update-2-rc-1-now-available-to-download/ - Categories: Visual Studio - Tags: Team Foundation Server 2015, Visual Studio 2015 - Article Type: News Microsoft has released a new preview version of Visual Studio 2015 and Team Foundation Server 2015 that are now available for testing. Microsoft has released a new build of Visual Studio 2015, this time it is Update 2 CTP. In this release, the company focused on stability and performance improvements from feedback received after the initial release of Visual Studio. In this version, the company has also added a couple of new features for a variety of languages but two notable additions are posted below. Visual Studio is now compatible with Git repos configured to use Git LFS (Large File Storage). Learn more about Git LFS here: https://git-lfs. github. com/. Seeding the C# Interactive Window with a project context, and the addition of Send To Interactive commands. In addition to the new features, the company has patched quite a few bugs from the prior release that are listed below. Crashes when editing C# or Visual Basic files while editing Crashes when updating error list entries for C# and Visual Basic projects while editing Out of memory exceptions when C# and Visual Basic projects are kept open for long sessions Delays when opening C++ projects Over 300 C++ compiler bugs (some address code-generation issues and required breaking changes; see Breaking Changes in Visual C++ 2015 Update 2) Errors when creating document-level projects for Office 2016 with the Office Developer Tools Hangs when trying to access local help Setup fixes: Hangs in setup when using read-only or disconnected drives Failures with uninstallable packages and when selecting features The company also announced that Team Foundation Server 2015 Update 2 RC 1 is also available for... --- ### Enable Diagnostic Logging in Windows Server 2012 R2 Routing and Remote Access > Learn how to enable verbose logging in Windows Server 2012 R2 Routing and Remote Access (RRAS). - Published: 2016-02-16 - Modified: 2024-09-04 - URL: https://petri.com/enable-diagnostic-logging-in-windows-server-2012-r2-routing-and-remote-access/ - Categories: Windows Server 2012 - Tags: Routing and Remote Access, RRAS, VPN, Windows Server - Article Type: How To Learn how to enable verbose logging in Windows Server 2012 R2 Routing and Remote Access (RRAS). In today's Ask the Admin, I'll show you how to enable verbose logging in Windows Server 2012 R2 Routing and Remote Access (RRAS). I've recently been using Windows Server's Routing and Remote Access service to establish a VPN connection between an Azure virtual network and a physical site. And while the set up process is relatively easy, debugging can be a headache when things go wrong, as Windows isn't known for its useful log information. Detail log tracing can also be enabled for Azure VPN gateways. For details, see Troubleshooting Azure VPNs on the Petri IT Knowledgebase. The first step I needed to take was enable diagnostic logging in RRAS because the Event Log by default only contains a basic set of events that don’t shed much light when there are connection issues. Don't forget that once you've resolved your connection problems, you'll want to disable diagnostic logging due to the extra overhead it creates. Enable RRAS logging Log in to Windows Server 2012 R2 as an administrator and follow the instructions below. The Routing and Remote Access server role must already be installed. Open Server Manager using the tile on the Start screen. Click Tools in the top right corner of Server Manager, select Routing and Remote Access from the drop-down menu. The Routing and Remote Access MMC will connect to the RRAS service running on the local server. Right click the local RRAS server in the top left of the Routing and Remote Access MMC and... --- ### A Tip to Free Disk Space in Windows 10 > Learn how to use Microsoft's Disk Cleanup tool to free disk space in Windows 10. - Published: 2016-02-15 - Modified: 2024-09-04 - URL: https://petri.com/tip-free-disk-space-windows-10/ - Categories: Windows 10 - Article Type: How To Learn how to use Microsoft's Disk Cleanup tool to free disk space in Windows 10. Running out of disk space isn't a new problem to IT pros. Since the introduction of Windows XP, Microsoft's Disk Cleanup utility helps users free disk space that's eaten up by system settings, temporary files, and more. The tool can be used both manually or automated by using the command line and Windows Task Scheduler. Running Microsoft's Disk Cleanup Utility To manually run the Disk Cleanup utility, do one of the following: 1. Open Windows Explorer, right click on the C: drive, and select Properties. 2. In the Properties window, click "Disk Cleanup. " Selecting the Disk Cleanup utility. (Image Credit: Daniel Petri) Or: 1. Click on Start and type "disk" with no quotes. The first result should be "Disk Cleanup. " Click Enter. Running Disk Cleanup from the Start menu in Windows 10. (Image Credit: Daniel Petri) Or: 1. Open Command Prompt with administrative permissions. 2. Type the following line, and press Enter: Cleanmgr. exe Opening Disk Cleanup through the command prompt. (Image Credit: Daniel Petri) If your computer has more than one drive, then you will be prompted to select the drive to inspect. The System drive, typically C:, is the default. Once the tool starts, the first thing we see is the size calculation window, which might take a few seconds to complete. Disk Cleanup is calculating how much time it takes to run. (Image Credit: Daniel Petri) Disk Cleanup Options in Windows 10 Disk Cleanup... --- ### A Tale of Two Azures > Did you know that there are two versions of Azure? Aidan Finn explains the differences between the two. - Published: 2016-02-15 - Modified: 2024-09-04 - URL: https://petri.com/a-tale-of-two-azures/ - Categories: Microsoft Azure - Article Type: Overview Did you know that there are two versions of Azure? Yes, and there are also some situations and solutions that you now take for granted and will not be available to you. Did you know that there are two versions of Azure? Yes; and they are completely different. There are also some situations and solutions that you now take for granted and will not be available to you. In this article, I'll explain why Azure's left brain is not talking to its right brain. Microsoft Azure's Split Brain Microsoft Azure evolved into something new last year. You might not have known, but when you worked with resources in Azure, you were working with the Service Management model, also known as V1. If you worked with virtual machines in this classic deployment, then you created a virtual machine on a virtual network. A cloud service, with optional load balancing, provided a public IP address that you could implement NAT-style endpoints with. A classic Service Management virtual machine deployment (Image Credit: Microsoft) Every item in that deployment was created by hand, and scaled out deployments required lots of PowerShell. Microsoft introduced Azure Resource Manager (ARM), also known as V2, with the new Azure Portal to move to a template-based approach of deployment. This style can speed up deployment, scale it out more easily, and reduce human effort. A virtual machine deployment in ARM is very different to a Service Management one. The most noticeable differences are: The cloud service is no longer used. A load balancer must be constructed to create load balancing and NAT rules. A virtual machine deployment using Azure Resource Manager (Image Credit: Microsoft)... --- ### Microsoft's New Business Focused Lumia 650 Lacks Business Features > Microsoft has quietly announced the Lumia 650, a phone targeted at the business market that lacks key business features from higher-end devices. - Published: 2016-02-15 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-business-focused-lumia-650-lacks-business-features/ - Categories: Hardware - Tags: Lumia 650 - Article Type: News Microsoft has quietly announced the Lumia 650, a phone targeted at the business market that lacks key business features from higher-end devices. This morning, Microsoft has quietly announced a new Windows phone, the Lumia 650. The device, which the company says “fits perfectly into the enterprise” will be sold in select European markets starting on February 18th for under $199. The exterior of the device, which is considered an entry level phone, has an aluminum frame (oddly, the flagship Lumia 950 is all plastic) and has a 5in 720P AMOLED display, 1. 3 GHz SoC Snapdragon, 1GB of RAM, 16GB of internal storage, 8MP rear and 5MP front facing cameras and a 2000 mAh battery. The phone will also ship with the company’s new mobile OS, Windows 10 Mobile, the second entry level device to do so; the first being the Lumia 550. https://www. youtube. com/watch? v=15nAJorLmHY The company says that this phone is built for the business market which must solely be based on the price as the phone omits security related features like Windows Hello. Also, Phone Continuum is not supported either, which means two key business features are not included with this device. At less than $199 retail price for the phone, it’s clear that this device is going to be a value proposition in the business space. As to why it is only being offered in Europe (at this time), is likely because of higher penetration rate of the platform in those markets. In the US, Windows phones have not sold well and continue to be a weak spot in Microsoft’s mobile strategy. Read More: Lumia 650 Announcement --- ### Free Disk Space in Windows 10 by Automating Disk Cleanup > Learn how to free disk space in Windows 10 with this automated approach. - Published: 2016-02-12 - Modified: 2024-09-04 - URL: https://petri.com/free-disk-space-in-windows-10-automating-disk-cleanup/ - Categories: Windows 10 Learn how to free disk space in Windows 10 with this automated approach. In a previous article, I explained how to use the Disk Cleanup utility to clean up temporary files on your Windows 10 machine. If you're an administrator of a network that contains multiple computers, then running manual configuration tasks can be very time consuming. In this article, I'll show you how to automate this process for larger environments. Automating Disk Cleanup: One Approach If you want to pre-configure these options on a remote computer and offer the user the ability to execute a script that will clean their disk, then you can use the following instructions to create . BAT file, place it on the computer's desktop or anywhere you like, and execute it with elevated permissions: @ECHO OFF REM Enable components to cleanup REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesActive Setup Temp Folders" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesBranchCache" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesDownloaded Program Files" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesGameNewsFiles" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesGameStatisticsFiles" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesGameUpdateFiles" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesInternet Cache Files" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesMemory Dump Files" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesOffline Pages Files" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesOld ChkDsk Files" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesPrevious Installations" /v StateFlags0100 /d 2 /t REG_DWORD /f REG ADD "HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerVolumeCachesRecycle Bin" /v StateFlags0100... --- ### Paul Thurrott's Short Takes: February 12 - Published: 2016-02-12 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-12/ - Categories: Mobile - Tags: News - Article Type: Overview Because I'm tired of the FUD, this edition of Short Takes focuses on a coming firmware fix for Surface Book and Pro 4, Google finally respects someone's privacy, more Xbox lemonade, an Apple class-action lawsuit, and Pandora hears the music. Because I'm tired of the FUD, this edition of Short Takes focuses on a coming firmware fix for Surface Book and Pro 4, Google finally respects someone's privacy, more Xbox lemonade, an Apple class-action lawsuit, and Pandora hears the music. Surface Book/Pro 4 firmware fix due as soon as next week I've now heard from multiple sources that Microsoft will issue a major firmware fix for Surface Book and Surface Pro 4 next week, with a planned Tuesday drop. This is the fix you've been waiting for, and it should restore the devices' ability to sleep properly and prevent that horrible "hot bag" problem that so many have seen. Cross your fingers. "Even after tweaking your settings, Windows 10 is still a privacy nightmare" Nope. You are a lying liar who lies. Google Reportedly Ready to Bow to EU Privacy Objections A report by Reuters says that Google is ready to back down and accede to EU demands related to the "right to be forgotten" laws there. That is, when it agrees to scrub Google search results for individuals who feel their privacy rights have been violated, it will now do so across its domains (like Google. com) rather than just across EU-specific domains (like Google. fr or Google. co. uk). EU data protection authorities are reviewing the policy changes, but it does appear that Google will finally meet the needs of the law there. No rush, guys. "The best Windows 10 games to play today" This should be a short list. [ad... --- ### The Sams Report EP 27: iOS Only Apps, Sleepy Surface Wakes Up, And A Preview > On this episode, it's time to talk seriously about why Microsoft is only build iOS apps, new preview ring and a lot more. - Published: 2016-02-12 - Modified: 2024-09-04 - URL: https://petri.com/70297-2/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, it's time to talk seriously about why Microsoft is only build iOS apps, new preview ring and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including an iOS only app, machine learning trials, a new preview ring and a lot more in the world of Redmond. If you have any questions, you can join the chat room or find me on Twitter @bdsams. You can find the audio replay, here. https://www. youtube. com/watch? edit=vd&v=QsvQWlcSU-o RSS | SoundCloud | YouTube | iTunes --- ### Creating Colorful Emails with PowerShell > PowerShell expert Jeff Hicks revisits how to colorize PowerShell output and this times mails it in with HTML and XML. - Published: 2016-02-11 - Modified: 2024-09-04 - URL: https://petri.com/creating-colorful-emails-with-powershell/ - Categories: PowerShell - Tags: Advanced, Convertto-HTML, Scripting, Send-MailMessage - Article Type: How To Here's a tip on creating colorful emails with PowerShell. In the comments on a recent article about creating a color coded report of domain controller service statuses, there was a question in the comments about sending the same type of information, presumably colorized, in an email message. PowerShell makes it very easy to send email with the Send-MailMessage cmdlet. You can even send HTML messages, which is the key to answering this question. As in the previous articles, I need to get the service information from my domain controllers. Of course, this could be other data that you want to report. $dcs = "chi-dc01","chi-dc02","chi-dc04" $svcs = "adws","dns","kdc","netlogon" $data = Get-Service -name $svcs -ComputerName $dcs I'll also define a title for the report. $ReportTitle = "Domain Controller Services" Now for the first tricky part. When we create HTML documents in PowerShell, typically with ConvertTo-HTML, style is applied separately, usually through a CSS file. But you can also embed style information in the head of an HTML document. I'll create a here-string with an embedded style sheet. $head = @" $ReportTitle $ReportTitle "@ The relevant parts for dynamically colorizing our output is in lines 13 to 17. These settings will be used to... --- ### Getting the Most Out of Office 365: Which Tool is the Best for My Team? > Office 365 offers a few tools to improve working in a team. While Yammer Groups and Office 365 Groups are similar, they suit different types of teams. - Published: 2016-02-11 - Modified: 2024-09-04 - URL: https://petri.com/getting-office-365-tool-best-team/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365, Yammer - Article Type: How To Office 365 offers a few tools to improve working in a team. While Yammer Groups and Office 365 Groups are similar, they suit different types of teams. Working in a team effectively is a chore for many reasons. One reason why teamwork can be taxing is that there's a constant need to share information. Frequently we need to communicate with our team members, but we all know that communication can take on several different forms. Sometimes you might need a question answered ASAP, but other times you might just need to send information along as an FYI. And when a document needs to be authored by more than one person, then that's where things can get messy. Teamwork tools need to be more sophisticated than simple email. If you think you are only using email to communicate, then you are fooling yourself because that's nearly impossible. Frequently email is the only digital messaging tool used, but digital communication takes on many more forms these days. Office 365 Groups Shared Space -- On OneDrive for Business Attaching documents to emails for comment can become unwieldy fast, and emailing meeting notes in the form of a whiteboard photo is useless to most people. Microsoft has been giving teams the tools to communicate better for years, but recently they have wrapped all their tools up together in two core tools: Yammer and Office 365 Groups. Office 365 Groups represents all the traditional productivity tools tied together in a quick and easy package. It contains a shared OneDrive for Business space, OneNote notebook, shared calendar and inbox. Groups are created easily from Outlook on the Web and can be made public... --- ### Microsoft Creates Clever Advertisement For Its Machine Learning Capabilities, Dog Detection > Microsoft has created a unique service that shows off its machine learning capabilities by being able to identify a breed of dog. - Published: 2016-02-11 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-creates-clever-advertisement-for-its-machine-learning-capabilities-dog-detection/ - Categories: Microsoft Azure - Tags: machine learning - Article Type: News Microsoft has created a unique service that shows off its machine learning capabilities by being able to identify a breed of dog. For the past few years, Microsoft has been touting ‘machine learning’ as the next best thing since the capacitor. The technology, which utilizes large quantities of data to help identify, predict, or prevent future outcomes is starting to come to fruition and the Redmond based company has created another example of how this technology can be used. If you have ever looked at a dog and wondered what breed it is, Microsoft now has an app that can help you avoid awkwardly asking its owner that very same question. Called Fetch! , you take a photo of a dog and the app will tell you the breed. If you don’t have an iOS device, there is a web version of the tool that you can view here. I used the web version for the image at the top of the post and it did identify the breed correctly despite the fact that my dog is wearing a hot-dog costume. While this app does seem like a novelty and it won’t add to the bottom line, what it does show off is the power for Microsoft’s machine learning capabilities. The tool is quick and so far, mostly accurate, which highlights how fast the process has become at utilizing big data to identify objects. It’s quite easy to see how this technology can be applied elsewhere including searching for missing person with crowd-sourced photographs from a public event, or trying to identify a part from a machine that you need and... --- ### Microsoft's Android Assault Continues as Acer Signs On - Published: 2016-02-11 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-android-assault-continues-acer-signs/ - Categories: Mobile - Tags: Android, News - Article Type: News Microsoft signed a partnership with Acer that will see Office and other apps preinstalled on the device maker's phones and tablets. In doing so, Acer joins a lengthy and growing list of device makers that have aligned with Microsoft. Original image by Rob Bulmahn - https://www. flickr. com/photos/rbulmahn/6180104944 Microsoft's Plan B in mobile is quickly turning into Plan A. This week, the software giant signed a partnership with Acer that will see Microsoft Office and other apps preinstalled on the device maker's phones and tablets. In doing so, Acer joins a lengthy and growing list of device makers that have aligned with Microsoft. "We’re pleased that we have been able to enhance the already strong partnership that exists between Microsoft and Acer," Microsoft president Nick Psyhogeos says in a prepared statement. "Mutually beneficial and collaborative agreements such as this one promote innovation and lead to better products and experiences for consumers. " "We’re excited to partner with Microsoft to provide enhanced mobile productivity to our products," an equally exuberant Acer president ST Liew is quoted as saying. "By integrating the Microsoft software suite, Acer customers will enjoy productivity on-the-go along with the familiar computing experience on their smartphones and tablets. " That Microsoft software suite includes the Office mobile apps for Android---Word, Excel, PowerPoint, Outlook, and OneNote---as well as OneDrive and Skype. Under the terms of the agreement, Acer will begin installing this software on its Android-based smart phones and tablets starting in the second half of 2016. Microsoft points to the over 1200 intellectual property licensing agreements it has obtained over the past 12 years. But the more important number, I think, is 74: That is the number of Android device makers that have agree to... --- ### Deciphering Microsoft’s Branches, Rings, And All The Other Things > Branches, rings, and flights are all terms that Microsoft uses to describe processes for software graduation. - Published: 2016-02-10 - Modified: 2024-09-04 - URL: https://petri.com/deciphering-microsofts-branches-rings-and-all-the-other-things/ - Categories: Windows Client OS - Tags: Windows 10 - Article Type: News Branches, rings, and flights are all terms that Microsoft uses to describe processes for software graduation and in this post, we help to clear up the differences. If you hang around the Microsoft ecosystem long enough, then you'll hear the company talk about rings, branches, and a lot of other company specific vernacular that describes the processes they use to test software. This week, the company added a new ring to their testing process, which means now is a good time to dig deeper into what all this means. The company has four main branches of operation, and they are defined below by Microsoft. Each branch is targeted at a specific scenario from the consumer (CB) all the way up to the enterprise or manufacturing sector that needs long-term support with a priority on stability for each release (LTSB). For testing new software, specifically with Windows 10, the company developed a 'ring' system for allowing groups to test the new builds. At a high level, the builds are deployed internally, and if found acceptable, they are released to the Insider Fast ring and then eventually to the Slow ring. To graduate to each ring, stricter criteria is used so that, in theory, as more users get their hands on the build, it should be more stable. But, the software is still in the early phases of development, which means that it is possible for serious bugs to make it all the way to the Slow ring, as these builds are not official public releases. This week, the company announced a new provisioning ring for Windows Update. This new ring is for people who want to... --- ### PowerShell Problem Solver: Finding Duplicate Commands > PowerShell expert Jeff Hicks demonstrates how to find duplicate commands in PowerShell and how avoid problems. - Published: 2016-02-10 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-finding-duplicate-commands/ - Categories: PowerShell - Tags: Get-Command, Get-Process, Intermediate, PowerShell Problem Solver - Article Type: How To PowerShell expert Jeff Hicks demonstrates how to find duplicate commands in PowerShell and how to avoid problems. A little while back a discussion came up on Twitter about identifying commands with duplicate names. Part of the discussion related to the concept of command precedence. For example, there's a cmdlet called Get-Process. But what if you also have a function called Get-Process? Which command gets called? PowerShell has a process of command precedence, which you can read about in more detail in About_Command_Precedence. Here's the short version, assuming you aren't using a fully qualified path or file name. Alias Function Cmdlet Native windows commands In my Get-Process example, this means the function gets invoked first. Testing command precedence (Image Credit: Jeff Hicks) If I had an alias of Get-Process, then that would be invoked first. More command precedence testing (Image Credit: Jeff Hicks) But how can you identify potential conflicts? You can use Get-Command. Getting a command (Image Credit: Jeff Hicks) Interesting. That only showed the alias. You need to tell PowerShell to find all command types with a name of "Get-Process". Getting all versions of Get-Process (Image Credit: Jeff Hicks) Now I can see that there might a problem. If you want to be a bit more pro-active, you could manually search for potential naming conflicts. get-command -CommandType function,cmdlet,alias | Sort Name | Out-GridView Listing duplicate command names (Image Credit: Jeff Hicks) I've highlighted a potential issue. If I rely on PowerShell to autoload... --- ### Join Windows Server 2016 Nano to a Domain > Learn how to add Windows Server 2016 Technical Preview 4 Nano Server to an Active Directory domain using the Offline Domain Join (djoin) tool. - Published: 2016-02-10 - Modified: 2024-09-04 - URL: https://petri.com/join-windows-server-2016-nano-domain/ - Categories: Windows Server 2016 - Tags: Active Directory, Nano, Windows Server 2016 - Article Type: How To Learn how to add Windows Server 2016 Technical Preview 4 Nano Server to an Active Directory domain using the Offline Domain Join (djoin) tool. In this Ask the Admin, I'll show you how to add Windows Server 2016 Technical Preview 4 Nano Server to an Active Directory domain using the Offline Domain Join (djoin) tool. At the tail end of last year, I showed you how to deploy Nano Server TP4 to an Azure virtual machine in Install Nano Server in Microsoft Azure on the Petri IT Knowledgebase. Since then, Microsoft's new management portal for Azure, codenamed Ibiza, reached general availability; so I'll write all future articles relating to Azure using the new portal. For more information on installing VMs using the new portal, see Deploy VMs Using Azure Resource Manager on Petri. Before starting, it goes without saying that you'll need a domain controller that your Nano server can communicate with. I'm performing this demo in Microsoft Azure, but your DC could be running in the cloud or an external network connected to Azure using a VPN. Configure Nano DNS For the purposes of this article, I'm going to assume that your domain controller (DC) is also providing the domain with DNS services, and that the DC and DNS server share the same IP address. To join Nano to the domain, we need to configure DNS on the Nano server. If you are not running Nano in Azure, see Connect to Nano Server using PowerShell Remoting below and then run the following command in an interactive remote session to set the DNS server address in Nano manually. Replace Ethernet with the... --- ### Russia Dials Up the Crazy, Wants to "Ban" Windows - Published: 2016-02-10 - Modified: 2024-09-04 - URL: https://petri.com/russia-dials-crazy-wants-ban-windows/ - Categories: Cloud Computing, Mobile, Windows Client OS - Tags: News Following in the august footsteps of China, Russia is the latest totalitarian state that is publicly seeking to "ban" Microsoft Windows and replace it with less U.S.-centric technologies. Credit: CK Following in the august footsteps of China, Russia is the latest totalitarian state that is publicly seeking to "ban" Microsoft Windows and replace it with less U. S. -centric technologies. And Russia isn't just eyeing Microsoft. It will also try to more heavily tax Apple, Google, and other U. S-based tech giants. That's the word from Bloomberg, which this week reported on an 90-minute interview with Vladimir Putin’s new Internet czar, German Klimenko. According to the report, Klimenko has had it with American tech companies, despite the fact that he apparently checks his Gmail regularly on his MacBook. "We are breeding the cow and are milking it," Klimenko said this week. He wants Russia to raise taxes on the American tech companies so that home-grown alternatives Yandex and Mail. ru have a fighting chance. His complaints vary by company, apparently. His most dramatic proposal is to "ban Microsoft Windows from government computers. " Microsoft, like other U. S. tech firms, "reached the point of no return" when it complied with sanctions related to Russia's illegal annexation of Crimea. And in "halting all business with the peninsula," he said, it is now "inevitable" that Russia will switch from Windows "to an open-source system based on Linux, a move 22,000 municipal governments are prepared to make immediately. " "It's like a wife seeing her husband with another woman," Klimenko said. He can swear an oath afterward, but the trust is lost. " It's just like... --- ### Your First 30 Minutes in PowerShell > PowerShell expert trainer Jeff Hicks offers suggestions on how to spend your first 30 minutes with PowerShell. Don't grab a book, open the console. - Published: 2016-02-09 - Modified: 2024-09-04 - URL: https://petri.com/first-30-minutes-powershell/ - Categories: PowerShell - Tags: Beginner, Update-Help - Article Type: How To PowerShell expert trainer Jeff Hicks offers suggestions on how to spend your first 30 minutes with PowerShell. Don't grab a book, open the console. So you've finally gotten the memo and decided it was time to start learning PowerShell. Excellent. But before you go off searching YouTube for free training videos or simply start floundering around at a PowerShell prompt, which will frustrate you to no end, take a moment to lay out the groundwork. Related: Why Learn PowerShell? Although PowerShell isn't something that you can master in 24 hours, you can learn enough in a short period of time to accomplish some simple and basic tasks. This article is aimed at the absolute PowerShell beginner running at least PowerShell 3. 0 on a Windows 7 desktop. For beginners, the fundamentals of PowerShell don't change between versions 3, 4, or 5. Launching an Elevated Session To start, I recommend launching PowerShell in an elevated session. Even if your account has admin rights, some of the things you will need to do will require an elevated session. Find the PowerShell console icon on your Start Menu, right-click and choose the 'Run as Administrator' option. PowerShell should now open in the traditional blue screen. An elevated PowerShell session (Image Credit: Jeff Hicks) You might even see the window titled with Administrator. You can use the same commands you know from the legacy CMD. EXE window to navigate around. You can use commands like dir and cd. The output might look slightly different, but it should still recognizable. Using traditional commands in Windows PowerShell. (Image Credit: Jeff Hicks) Note: Be aware... --- ### Windows 10 Update Hub Makes It Easier To Find Release Notes > Microsoft has released a new website that makes it easier to find Windows 10 update notes. - Published: 2016-02-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-10-update-hub-makes-it-easier-to-track-patches/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: News Microsoft has released a new website that makes it easier to find the change logs for any patch that is released for Windows 10. One of the big complaints about the Windows Update process is that when the company releases a patch, it can be a bit cumbersome to figure out what was addressed and if there are any known issues. At one point, Microsoft said that they would not detail every release but today, the company is reversing course on that decision. Microsoft is launching a new site (link below) that will make it easier to find the patch notes for the OS; if this sounds familiar, there are similar pages for firmware updates for all of its hardware products. The company says they created this page because of the feedback received from users of the OS. Considering that the company is now pushing out updates more frequently than just Patch Tuesday, an easy-to-use central repository has long been needed. With Windows 10 installed on well over 200 million devices, it's imperative that the company make the OS easy to use, but also easy to manage. By understanding the updates and what impact they might have once installed, the repository will make it easier to troubleshoot new issues with the operating system. You can check out the update page, here. --- ### Windows 10 Tip: Disable Fast Startup - Published: 2016-02-09 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-disable-fast-startup/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: How To Learn about what fast startup is in Windows 10 and how to disable it. In today's Ask the Admin, I'll show explain what fast startup is in Windows 10 and how to disable it. Fast startup was introduced in Windows 8 and uses session 0 hibernation to save the kernel state to disk. Reading the kernel state from disk is 30 to 70 percent faster than a full system initialization on most systems. While fast startup should be beneficial in most cases, especially in combination with UEFI, it can also be problematic. For example, I've come across systems that refuse to connect to wireless networks without a cold boot, assumedly due to a problem with the reinitialized driver. But if an updated driver doesn't solve the problem, you might want to disable fast startup. It's worth noting that while fast startup is enabled by default in Windows 10, hibernation must also be turned on for the option to appear in the control panel. Secondly, fast startup doesn’t apply to system restarts. Disable fast startup in the control panel Perform the following steps to disable fast startup. Log in to Windows 10. Right click the Power icon in the system tray. Select Power Options from the menu. In the control panel window, click Choose what closing the lid does from the options on the left. Disable fast startup in Windows 10 (Image Credit: Russell Smith) If you're not logged in with the local administrator account, click Change settings that are currently unavailable, and enter an administrator username... --- ### Developer Ports iOS Game To Windows In 5 Minutes > A developer has shown how you can port a game from iOS to Windows in under five minutes using the Island Wood bridge. - Published: 2016-02-09 - Modified: 2024-09-04 - URL: https://petri.com/developer-ports-ios-game-to-windows-in-5-minutes/ - Categories: Windows 10 A developer has shown how you can port a game from iOS to Windows in under five minutes using the Island Wood bridge. Last year at Build, Microsoft announced a new tool that it hoped would entice developers of Android and iOS apps to bring their products to the Windows ecosystem. The company called these tools bridges and for iOS the bridge was named Island Wood and for Android it was called Astoria. Astoria has since been discontinued with Microsoft placing its bet that Island Wood is the better path to bring apps to Windows. And based on what David Burela has shown, it looks like Microsoft has made the process quite easy. In the video you see below, Burela is able to port an iOS game, Canabalt, to Windows 10 using the iOS bridge in about five minutes. https://www. youtube. com/watch? v=L7Y6YlWuHQ8 It is worth pointing out that this game is not the most complex type of iOS application, it does not utilize third-party connections and the APIs used in for this game are more limited than say a browser or email application. Still, the fact that a non-Windows based application can be ported to Windows in under five minutes does show how well the iOS bridge can function. Microsoft’s goal is to convince iOS developers to bring their apps to the Windows store and they built this bridge so that developers can leverage their existing code to make the processes a bit less cumbersome. Only time will if this path is good enough to entice developers to commit the time to making this bridge work but it’s fair to say that Microsoft... --- ### Performance Results of Aggregating Standard Azure Disks > Aidan Finn performs several different tests to determine performance of aggregating standard data disks in Microsoft Azure. - Published: 2016-02-08 - Modified: 2024-11-19 - URL: https://petri.com/performance-results-of-aggregating-standard-azure-disks/ - Categories: Microsoft Azure - Tags: Azure, performance, storage, virtual machines - Article Type: Overview Aidan Finn performs several different tests to determine performance of aggregating standard data disks in Microsoft Azure. In a previous post, I discussed why you might use more than one data disk to store data in Azure. This approach lets you exceed the limit of 1023 GB per volume, and it provides a multiplier effect for performance. A reader commented on one of my posts that the multiplier effect wasn't quite so clean as Microsoft might have us believe, and there are more than a few bloggers out there with the evidence to back up that statement. I decided that I needed to test this for myself, tuning the disks and Storage Spaces to match the stress test tool that I would be using. The Test Lab I deployed a DS2 virtual machine using Azure Resource Manager in North Europe. This machine runs on an Intel Xeon processor host with two virtual processors and 7 GB RAM, where about 1. 7 GB was used. I assigned several Standard Storage data disks with no caching to this machine to create four different tests: 1 data disk 2 data disks, aggregated using Storage Spaces and a single virtual disk/volume. 3 data disks, aggregated using Storage Spaces and a single virtual disk/volume. 4 data disks, aggregated using Storage Spaces and a single virtual disk/volume. Each data disk was deployed into a different Azure Storage account to ensure that no storage account could be a bottleneck on the scalability of performance. Storage Spaces was used to aggregate multiple data disks; a configuration of simple virtual disks with 64 KB interleaves was used. In all... --- ### Azure Portal Reaches General Availability > Russell Smith looks at how the new Azure portal changes the way apps are deployed in the cloud. - Published: 2016-02-08 - Modified: 2024-09-04 - URL: https://petri.com/azure-portal-reaches-general-availability/ - Categories: Microsoft Azure - Tags: ARM, Azure, Cloud - Article Type: Overview In today's Ask the Admin, Russell Smith looks at how the new Azure portal changes the way apps are deployed in the cloud. In today's Ask the Admin, I'll look at how the new Azure portal changes the way apps are deployed in the cloud. Almost with no fanfare at all, Microsoft announced general availability of its new -- or old, depending on how you look at it -- Azure management portal at the backend of last year, December 2nd, to be precise. Most IT sites passed over it because let's face it, it's not very interesting news. The new portal brings with it a fundamental shift in philosophy however, and I'm not referring to the cluttered pane-based GUI that impairs usability. The new portal is designed to facilitate Azure Resource Manager (ARM), where instead of deploying apps to cloud services -- or Service Management as it's known -- templates are used to deploy resources in a single operation. This approach is most evident in the ability to select from a gallery of templates that can be used to deploy cloud apps in one click, including all the necessary resources to make it tick, such as VMs, storage, network interfaces, and public IP address. Take a look at Deploy a SharePoint Farm in Microsoft Azure on Petri for a good example of this. Resource Groups At the heart of ARM are Resource Groups (RGs) that allow app assets, such as VMs and virtual networks (VNets), to be grouped together for easier management. The new portal also supports Role Based Access Control (RBAC) for ARM-based deployments, including a long list of built in roles... --- ### The Microsoft Mobile Strategy In The Face Of Reality > Microsoft has been forced to radically change its mobile strategy because it could not gain any sizable market share. - Published: 2016-02-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-mobile-strategy-in-face-of-reality/ - Categories: Windows 10 - Tags: Windows 10 Mobile - Article Type: News Microsoft has been forced to radically change its mobile strategy because it could not gain any sizable market share. Out with the old and in with the new, that's what Nadella has done as he has uprooted Microsoft's conventional ways of operating, and this is most apparent in the company's mobile strategy. With Windows Phone's shrinking market share, due to fewer phones being produced as the company was losing money on each device sold, the company has re-aligned how it will play in the mobile space. With the rise of Android and iOS, Microsoft completely missed the boat when it comes to being a serious player in this space. By moving slowly, reacting late and frankly, delivering an OS that didn't do enough to sway users from other platforms, it has found itself on the sidelines of the new generation of mobile phones. So what does the company do in this situation? They pivoted from being a hardware and software player to doing what they do best, owning the best suite of productivity applications across all of the major platforms. The company has already build out apps for its Office suite for iOS and Android and also brought its personal digital assistant, Cortana, to these competing platforms. Last year, the company bought arguably the best email mobile client from Accompli that they rebranded as Outlook, and last week they snatched up Swiftkey, a company that makes one of the best third-party keyboards for iOS and Android; Wunderlist, a task-list application, was recently acquired as well. The only app that's missing from the company's portfolio is a web... --- ### Formatting Messages in Slack > In today's Ask the Admin, Russell Smith shows us how to format messages in Slack to make channel feeds easier to read. - Published: 2016-02-05 - Modified: 2024-09-04 - URL: https://petri.com/formatting-messages-slack/ - Categories: Office - Tags: Messaging, Slack - Article Type: How To In today's Ask the Admin, Russell Smith shows us how to format messages in Slack to make channel feeds easier to read. In today's Ask the Admin, I'll show you how to format messages in Slack to make channel feeds easier to read. A few months back I wrote, "What is Slack and Is It Better Than Email? " for the Petri IT Knowledgebase, and since then I've replaced email with Slack for working on internal projects. The beauty of Slack is in its simplicity, but I began to notice that long channel feeds became difficult to read because of the lack of formatting being used by myself and team members, all of us being new to Slack. It hadn't actually occurred to me that it was possible to use formatting in Slack, as it lacks the traditional bold and italic buttons that you find in text editors, although there are some text hints in the bottom right of the window. But Slack being the geeky tool that it is, does indeed provide basic formatting controls, and like many of Slack's other features, are implemented using text-based commands. The formatting controls in Slack are very basic however, but I believe that's for the best as the HTML-style formatting options available for email often make following message threads harder to follow. Bold, italics, and strikethrough To format text in Slack, you need to use the following characters in a similar way that you might use opening and closing tags in a markup language. Don't let that scare you if you're not a programmer, there's nothing complicated involved: *bold* _italics_ ~strikethrough~ [caption ... --- ### Using The Biggest Virtual Machine in Microsoft Azure's Cloud > Aidan Finn plays with the biggest virtual machine in Microsoft Azure, the GS5, and explains the cost and performance implications for using it. - Published: 2016-02-05 - Modified: 2024-11-19 - URL: https://petri.com/using-the-biggest-virtual-machine-in-microsoft-azures-cloud/ - Categories: Microsoft Azure - Tags: Azure, Cloud, GS-Series, GS5, IaaS, Microsoft Azure, Premium Storage, Virtual Machiens - Article Type: How To Aidan Finn plays with the biggest virtual machine in Microsoft Azure, the GS5, and explains the cost and performance implications for using it. When you hear about some giant server with crazy memory or processors, or a SAN that supports immense amounts of flash storage, you'll most likely think to yourself, "I'll never see one of those, let alone have the chance to play with one. " The great thing about having access to a public cloud like Azure is that you have access to anything, and you only pay for it by the minute while you use it. That gives you a chance you play with the big stuff for a very short amount of time! I decided to deploy the largest possible virtual machine that you can in any of the "big three clouds" according to Microsoft, a GS5. I'll explain what I got from this machine, how it performed when stressed, and how much it cost me. The Microsoft Azure GS5 Virtual Machine At the moment, the GS5 is the premium virtual machine in Azure. The GS-Series is based on the G-Series machines, based on hosts with the 2. 0 GHz Intel Xeon E5-2698B v3 CPU. The G- and GS-Series virtual machines offer much more RAM per core than any of the other Azure virtual machine specifications. The GS1 starts with two cores and 28 GB RAM, which is much more than the DS2, which has two cores and 7 GB RAM. The workloads that you run in these machines are intended to be extremely memory intensive, possibly using RAM to cache data instead of disk. The GS-Series gives you the option to deploy... --- ### Paul Thurrott's Short Takes: February 5 - Published: 2016-02-05 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-february-5/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because it was Brad's fault, this edition of Short Takes focuses on John Roberts sells Microsoft short, gamers embrace Windows 10, even Blackberry doesn't want Windows phone, Apple loses a patent case, and Amazon to open retail book stores. Because it was Brad's fault, this edition of Short Takes focuses on John Roberts sells Microsoft short, gamers embrace Windows 10, even Blackberry doesn't want Windows phone, Apple loses a patent case, and Amazon to open retail book stores. Kind of a short one this week, sorry: I'm in New York with much of Blue Whale Web for some meetings, as we're kind of tight on time. --Paul Supreme Court judge forced to sell Microsoft stock According to a report in Associated Press, Supreme Court Chief Justice John Roberts has sold between $250,000 and $500,000 in Microsoft stock in the past year. The reason? The Supreme Court will soon take on a case involving Microsoft and its buggy Xbox 360 consoles, and Supreme Court justices are not allowed to own shares in companies for which they may issue a legal decision. This makes some sense. But not allowing these people to own shares in any corporation makes even more sense. As does term limits, while we're at it. "Apple now accepts damaged iPhones for trade-in" Sorry, are there other kinds of used iPhones? Gamers are embracing Windows 10 While Microsoft is correctly pointing to Windows 10's relative success compared to its predecessors, there is one thing that really does stand out. And it's not 200 million active devices. It's that gamers are clearly embracing Windows 10 in record numbers. Case in point: Windows 10 is now the second-most-frequently-used OS on the Steam gaming service, with 34 percent of... --- ### Getting The Most Out Of Office 365: The Easy First Steps > Learn some practical first tips for getting the most out of Office 365 for your organization. - Published: 2016-02-04 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-some-easy-first-steps/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365 - Article Type: How To Learn some practical first tips for getting the most out of Office 365 for your organization. Talk is cheap and discussing what Office 365 can do in abstract terms is nice, but what are some next actions? There are several practical first steps toward using Office 365 more fully and getting more out of the service. Some of the benefits can be achieved by yourself, but for the most part work requires other people. The more people you get working together on the same platform, the more value you will get from it. The first step toward getting the most out of Office 365 is getting yourself acclimated to cloud storage. Use the OneDrive for Business sync client to quickly and easily upload documents to your cloud account; storing documents on the cloud makes it easy to edit the same document with coworkers. Files in the cloud can also be threaded through Office365 Groups, Yammer, and Delve. If your company has rolled out Office 2016, then sharing could documents in Outlook 2016 is super easy. If you do not have Office 2016, sharing is easily done via the OneDrive for Business web interface, Yammer, Office 365 Groups, Delve, or Outlook on the Web. OneDrive for Business Share pane. (Image Credit: Microsoft) One instant benefit to storing your documents on OneDrive for Business is access. You can now access files from anywhere and email them to customers or colleagues. Also, your recent document list can now sync across devices if you have logged into Office using your work account on each device. While this... --- ### Building a PowerShell Console Menu Revisited, Part 2 > PowerShell scripter Jeff Hicks completes his exploration of building PowerShell menu oriented scripts by exporting and importing XML. - Published: 2016-02-04 - Modified: 2024-09-04 - URL: https://petri.com/building-powershell-console-menu-revisited-part-2/ - Categories: PowerShell - Tags: Intermediate, Scripting - Article Type: How To PowerShell scripter Jeff Hicks completes his exploration of building PowerShell menu oriented scripts by exporting and importing XML. In a previous article, I demonstrated how to create a text-based PowerShell menu. This is something you could wrap up in a script for a technician, end-user, or even yourself. But I wanted to do more, so let's see how to use PowerShell tools to build new tools. Related: Building a PowerShell Console Menu Revisited, Part 1 We'll start by initializing a counter variable. $i=0 In my sample menu from last time, all of my entries were numbered. I'm too lazy to count, so I'll let PowerShell do it. I'm also going to prompt for a menu title: $Title = Read-Host "Enter the title for your menu" Defining a menu title variable (Image Credit: Jeff Hicks) For the sake of my demonstration, simply assign a value to $Title. At this point, I'm going to create a custom object. You'll see why in a bit. $MyMenu = @{ Title = $Title Items = @ } Note that you can only use the type in PowerShell 3. 0 and later. Now that I have two items to the menu, I think the process is easier if you enter them in the order you want them presented. To accomplish this, I'm going to use a do loop to prompt for a menu description and a corresponding PowerShell expression. Each time through the loop, the counter is incremented by one, and I create a nested custom object with the counter number, the menu item or description, and the action. Do { #increment... --- ### Simplified Azure Site Recovery for VMware vSphere - Published: 2016-02-04 - Modified: 2024-09-04 - URL: https://petri.com/simplified-azure-site-recovery-vmware-vsphere/ - Categories: Microsoft Azure - Tags: ASR, Azure, Azure Site Recovery, Disaster Recovery, DR, DRaaS, vmware, vSphere - Article Type: News Aidan Finn explains how Microsoft is simplifying Azure Site Recovery for vSphere, which should make Microsoft's DR site in the cloud much more attractive. I was stunned when Microsoft announced that they would support using Azure as a cloud-based disaster recovery site for VMware vSphere. VMware has a large share of the on-premises virtualization market, and despite the growth and progress of Hyper-V, many customers are keeping that incumbent footprint. Rather than ignoring that lucrative market or causing customers with heterogeneous on-premises virtual installations to seek multiple vendors for disaster recovery as a service (DRaaS) solutions, Microsoft has given those customers a single cloud, Azure, to which they can replicate Hyper-V, vSphere, and physical machines to for disaster recovery. Unfortunately, Azure Site Recovery (ASR) required some in-Azure complexity, but Microsoft has announced the simplification of ASR for vSphere, and this should make Microsoft's DR site in the cloud much more attractive. Legacy Azure Site Recovery for vSphere The solution that Microsoft rolled out to support vSphere in 2015 was based on a product called Scout that was obtained by Microsoft through the acquisition of InMage. As has often been the way of the past, Microsoft has gone through a phased process of releasing and integrating this new product: Release the product as quickly as possible. Improve the product and make it more "Microsoft" over time. This has been the case with Scout, which provided Microsoft the means to replicate Windows and Linux machines to Azure. The architecture was quite complex when compared to ASR for Hyper-V. At least two Azure virtual machines were required to run in Azure, and another machine was... --- ### Microsoft Outlines Edge Development Objectives For 2016 > For 2016, Microsoft has released a road map outlining the development priorities for the browser for the upcoming calendar year. - Published: 2016-02-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-outlines-edge-development-objectives-for-2016/ - Categories: Windows 10 - Tags: Edge - Article Type: News For 2016, Microsoft has released a road map outlining the development priorities for the browser for the upcoming calendar year, including the arrival of extensions. Microsoft's Edge browser is new with Windows 10, and the company is outlining their development objectives for 2016. The new plans include improvements to accessibility, fundamentals, future of the web, and of course, the long awaited extensions, too. The company says that extensions will start showing up in Insider builds of Windows 10, but they held back from announcing an exact date for their arrival. The feature was initially slated to be released last year, but the company decided to delay it until early 2016. For accessibility, the company says their initial focus will be on the areas outlined below: Modernize our accessibility system to support HTML5 and CSS3 on Windows 10. Enable HTML and Core Accessibility API mappings. Provide Accessible Name and Description computation and API mappings. Add accessible HTML5 controls and new semantic elements. Improve high contrast support. Modernize caret browsing and new input modalities. Improve visual impairment readability, focus, and selection. Deliver developer tools for building and testing accessible sites. On the fundamentals of the browser, the company will continue to improve the security of code execution so that a website does not harm the user or breach their trust. The focus for 2016 includes the following: Lead the industry in JavaScript benchmark performance. Advance product security across multiple dimensions. Enhance keyboard scrolling performance and interactivity. Isolate Adobe Flash into a separate process and pause unnecessary content. Continue to push the GPU boundaries through native Windows graphics. Improve background tab suspension, timers, and processing. The... --- ### Creating Active Directory OUs with PowerShell > Learn how easy it is to create Active Directory Organizational Units with PowerShell and why you might want to use PowerShell. - Published: 2016-02-03 - Modified: 2024-09-04 - URL: https://petri.com/creating-active-directory-ous-powershell/ - Categories: Active Directory (AD), PowerShell - Tags: Active Directory, Intermediate, New-ADOrganizationalUnit - Article Type: How To Here's a quick tutorial for creating Active Directory organizational units with PowerShell. Normally, I think of using PowerShell for ongoing and repetitive tasks. Using PowerShell scripts and tools creates a more efficient work environment. For rare tasks that you only need to do once, it doesn't make sense to invest time in building a PowerShell-based solution, especially if doing the task manually isn't that complicated. In my mind, creating an Active Directory organizational unit (OU) falls into that category. It's rather trivial to open up Active Directory Users and Computers to create a new OU. So why use PowerShell? One scenario is to quickly build a test environment that includes an Active Directory domain. With a PowerShell script you can create hundreds of OUs in seconds. Another scenario is if you need a control mechanism. Instead of manually creating a new OU in the traditional manner, you can spend a little extra time creating a PowerShell script to do it. This script can be reviewed, tested, and include as much documentation as you need.   The script becomes a resource document that indicates what was done and why. It may only be a few lines of PowerShell commands, but it serves as a record. So how do we do this? First, you need the most current version of the Remote Server Administration Tools (RSAT) for your desktop. Everything I'm going to show you can and should be accomplished from your admin desktop. There's no need to log on to a server. When you configure RSAT, make sure you include the Active Directory PowerShell module. For now, I'm... --- ### Windows 10 Business Adoption Rate Nearly Doubles Windows 8, But Is That Any Good? > A new report out states that, based on their sample data, adoption rate of Windows 10 is nearly twice as fast as that of Windows 8. - Published: 2016-02-03 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-enterprise-adoption-rate-nearly-doubles-windows-8-but-is-that-any-good/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: News A new report out states that, based on their sample data, adoption rate of Windows 10 is nearly twice as fast as that of Windows 8. There are few who will argue anything to the contrary that Windows 8 was a disaster for Microsoft. The OS failed to gain traction with consumers and corporations, and the company quickly tried to distance itself from the operating system with Windows 10. A new report from Spiceworks dives deep into the adoption rate of the operating system and compares it to Windows 8. Looking at the adoption rate after six months, Windows 10, among companies surveyed, is seeing about 18 percent penetration compared to Windows 8's 9. 3 percent adoption rate for the same time period. While Windows 7 is the juggernaut today, remember that it was released when Windows XP was king and thus, had a much slower adoption rate until much later in its lifecycle. Average Windows OS penetration rates. (Image Credit: Spiceworks) Typically seeing that an OS is outperforming its predecessor during the same time period is a good thing and in this case, that certainly is true. But Windows 8 was not well received by many, so being twice as good as something that did poorly, doesn't always mean that Windows 10 is a huge success. Microsoft has touted that they have 200 million devices running the OS and Windows 10 reached this goal much faster than Windows 7 or 8. Then again, for the consumer, the OS is free, which means that if Windows 10 lagged behind with adoption, it would be a serious issue for the company. So,... --- ### Getting The Most Out Of Office 365: What Is Delve? > Joseph Finney provides an overview on Office 365's Delve, which helps organizations discover important documents for better collaboration and productivity. - Published: 2016-02-03 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-what-is-delve/ - Categories: Microsoft 365 - Tags: Delve, Getting The Most Out Of Office 365, Office 365 - Article Type: Overview Joseph Finney provides an overview on Office 365's Delve, which helps organizations discover important documents for better collaboration and productivity. Now that you are storing your documents in OneDrive for Business, sharing them on Yammer and Skype for Business, and working in Office 365 Groups, is there any magical bonus reward? Yes! That magical bonus reward is called Delve, which is a search, recommendation, and organizational tool. This means Delve is not where you will spend your time getting work done, but it is where you will start. Delve uses cards to represent different documents that are relevant to you. Cards can be added to boards to help organize your cloud-based documents. Near the bottom of each card are two icons that can be used to share a link to the file directly; the other is used to see who can view the file. At the top of each card is the last action taken on the file, for example, John Doe emailed four days ago, or Bob modified on July 4th, 2015. The Delve UI. (Image Credit: Microsoft) Not all cards are created equal in Delve because some documents are email attachments and some are files stored and shared in the cloud. Attachment cards have a lock symbol in the bottom left corner, and it will say, "Only people who've received this attachment can see this. " Attachments cannot be added to boards or easily reshared because they are not stored in OneDrive for Business. The email that holds the attachment can be accessed by clicking the blue text, which is the subject of the email containing the attached document... . --- ### Microsoft Acquires Software Keyboard Maker SwiftKey - Published: 2016-02-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquires-software-keyboard-maker-swiftkey/ - Categories: Mobile - Tags: News - Article Type: News Microsoft announced last night that it has acquired SwiftKey, makers of the most popular software keyboard for devices. The software giant will integrate SwiftKey's technologies with its own WordFlow efforts and presumably push the combination across all device types. In a bid to sew up its dominance of mobile productivity, Microsoft announced last night that it has acquired SwiftKey, makers of the most popular software keyboard for devices. The software giant will integrate SwiftKey's technologies with its own WordFlow efforts and presumably push the combination across all device types. "Microsoft has entered into a definitive agreement to acquire SwiftKey, whose highly rated, highly engaging software keyboard and SDK powers more than 300 million Android and iOS devices," Microsoft's Harry Shum explains. "In this cloud-first, mobile-first world, SwiftKey’s technology aligns with our vision for more personal computing experiences that anticipate our needs versus responding to our commands, and directly supports our ambition to reinvent productivity by leveraging the intelligent cloud. " Microsoft confirmed the SwiftKey purchase in a post to the Official Microsoft blog, but it declined to reveal how much it paid. According to a report in TechCrunch, Microsoft paid $250 million in cash and beat out a group of other interested buyers that include Apple. (And as I've noted in the past, Apple really needs this technology: It's iOS software keyboard is the worst of the mobile platforms by far, especially with auto-correct. ) As you may know, Microsoft's WordFlow keyboard for Windows phones is currently the best software-based keyboard on mobile devices. And the software giant has been adapting that keyboard for use on Android and iOS, and experimenting with a unique triangular one-handed mode. But SwiftKey is number one by usage, driven in no small part... --- ### Microsoft’s New Hololens Demo Provides A Realistic POV > Microsoft has teamed up with the NFL to show what the future of watching games could be like but they also provide a new realistic POV too. - Published: 2016-02-02 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-hololens-demo-provides-a-realistic-pov-experience/ - Categories: Hardware - Article Type: News Microsoft has teamed up with the NFL to show what the future of watching games could be like but they also provide a new realistic POV too. Microsoft and the NFL have teamed up to see what could be possible if you used a Hololens to watch NFL games. In the video that the company produced, they show how you can see the game from new vantage points, include addition data feeds into your screen and of course, view the game in places other than your TV. But the one thing that the video does show, is a realistic view of what using a Hololens is actually like. I have used the device twice and while the augmented reality headset does work well, Microsoft had previously been overselling it’s field of view capabilities. https://youtu. be/oKqzeoMCU0c? list=PLFPUGjQjckXHlGQ1Fbn4Y8DwBhcLjoPj6 From the images in this post, these are the most realistic demonstrations of what the user can expect to see while wearing the headset. If you are thinking that this field of view may be a bit small, a Microsoft technical evangelist previously said that it will be expanded with future iterations as it is simply a cost issue at this time. What Microsoft and the NFL have shown is a consumer scenario for how the device can be utilized. Hololens dev kits will start shipping to developers this quarter and this new video shows the types of experiences that can be built. Even though this demo is customized for the NFL, similar experiences could easily be built for any other athletic event. Microsoft has not announced a consumer version of the device and it may be a few more years... --- ### Feeling Pressure From Slack And Facebook, Yammer Now On By Default for Some Office 365 Users > Microsoft is getting more aggressive with Yammer and is turning it on for all Office 365 customers who meet the basic requirements. - Published: 2016-02-02 - Modified: 2024-09-04 - URL: https://petri.com/feeling-pressure-from-slack-and-facebook-yammer-now-on-by-default-for-some-office-365-users/ - Categories: Microsoft 365 - Tags: Office 365, Yammer - Article Type: News Microsoft is getting more aggressive with Yammer and is turning it on for all Office 365 customers who meet the basic requirements. A few years ago, Microsoft bought Yammer for $1. 2 billion, and while the company has integrated the product into its Office Suite, there's strong competition in this space. Namely, Slack has become popular with startups, and Facebook for Work is getting a lot of attention as well. Starting today, Microsoft will be turning on Yammer by default for all eligible Office 365 commercial customers. If you are not familiar with the social tool, it's designed to make it easier to collaborate internally with the flexible workspaces and integration into many different products. For those of you that use Office 365 Groups, Yammer will hook into that feature sometime during the first half of 2016. Once completed, you will be able to turn your Yammer conversation into a Skype call, schedule a meeting using Outlook calendar, access your files in OneDrive, create tasks in Planner and more, all from your Yammer group. Yammer will be rolled out in three waves in the following order: Wave 1 starts today and includes Office 365 customers with a business subscription who purchased fewer than 150 licenses that includes Yammer and who have zero or one custom domains for Yammer. Wave 2 starts on March 1, 2016 and includes Office 365 customers with a business subscription who purchased fewer than 5,000 licenses that includes Yammer. This does not include customers with an education subscription. Wave 3 starts on April 1, 2016 and includes all remaining customers with a business subscription and all customers... --- ### Add PowerShell to Windows Explorer Context Menu in Windows 10 > Here's a quick tutorial on how to add PowerShell to the Windows Explorer context menu in Windows 10. - Published: 2016-02-02 - Modified: 2024-09-04 - URL: https://petri.com/add-powershell-windows-explorer-context-menu-windows-10/ - Categories: Windows 10 - Article Type: How To Here's a quick tutorial on how to add PowerShell to the Windows Explorer context menu in Windows 10. Ever since the days of Windows Vista, it was possible to use Windows Explorer's context menu to quickly open a command prompt window to a specific location by holding the shift key and right-clicking a folder. The "Open Command Prompt Here" appeared, allowing you to open the command prompt in the folder of your choice. However, this option only worked for the command prompt, and as we all know, PowerShell is the preferred command-line application in Windows operating systems since the last seven or eight years. So why not add it to the Windows Explorer context menu as well? If you find that you frequently open a PowerShell window and change to a specific directory, you can add the "Open PowerShell Here" option to your Windows Explorer context menu. This option enables you to right click on a folder within Windows Explorer, and choose it, which opens a PowerShell window with that folder as your active directory. To add the "Open PowerShell Here" option to the default right click context menu in Windows Explorer, perform the following steps: Before proceeding, please read carefully: Warning: This document contains instructions for editing the registry. If you make any errors while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer... --- ### Google Financial Results Beat Estimates - Published: 2016-02-02 - Modified: 2024-09-04 - URL: https://petri.com/google-financial-results-beat-estimates/ - Categories: Cloud Computing - Tags: News - Article Type: News Google umbrella Alphabet announced its first-ever consolidated earnings report, with the firm beating expectations. But investors were perhaps most excited by a post-earnings stock price bump that propelled Alphabet ahead of Apple as the most successful company on earth On Monday, Google umbrella Alphabet announced its first-ever consolidated earnings report, with the firm beating expectations. But investors were perhaps most excited by a post-earnings stock price bump that propelled Alphabet ahead of Apple---for the time being, anyway---as the most successful company on earth. That latter accolade is based on the relative market capitalization of the two firms: With Apple's stock price getting hammered over the past several months in the wake of (relatively) disappointing iPhone, iPad, and Apple Watch launches, Alphabet has been able to leap ahead. As of last night, Alphabet's market cap was $565 billion, while Apple sat at $539 billion. Market cap is of course an ephemeral measurement that has as much to do with the black magic of the stock market as it does with real-world results. But Google's reality is looking strong as well: That part of Alphabet---Google is of course Alphabet's core business---posted $23. 45 billion in operating income on $74. 5 billion in revenues for fiscal (and calendar) 2015. For the fourth quarter of 2015, Google saw a 17 percent increase in ad revenues, to $19. 08 billion. Paid clicks were up 31 percent in the quarter overall, but up an even better 40 percent on Google’s own sites. Google also used its financial announcement to reveal that Gmail had surpassed 1 billion active users. It is the 6th Google business to surpass that mark, joining Google Search, Android, Chrome, YouTube, and Google Play. (It is also among the oldest of... --- ### Microsoft Opens Registration for Ignite > Microsoft has opened the doors for Ignite registration, a conference that will be taking place in Atlanta this fall. - Published: 2016-02-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-opens-registration-for-ignite/ - Categories: Windows Client OS - Tags: Ignite - Article Type: News Microsoft has opened the doors for Ignite registration, a conference that will be taking place in Atlanta this fall. Microsoft has officially opened the doors to register for Ignite, a conference designed to help businesses get the most out of new technologies and learn more about Microsoft's offerings, as well as providing deep technical training, too. The conference will be taking place from September 26 to 30 in Atlanta, Georgia. The event is primarily geared toward business users, unlike its Build conference in the spring, which is a developer-oriented event. This means that there are training sessions, interactive labs, one-on-one discussions, product road maps, and much more. The conference has several different pass options, starting at $300 and running all the way up to $2,220, depending on your needs. There are also education and student discounts available; bulk discounts are available as well. If you attended the event last year, there are two primary changes you should be aware of. The event is no longer being held in Chicago, as Atlanta is the new home. Also, the dates have changed, where the event is now being held in the fall. Last year, Ignite followed directly after Build, which made it hard to attend both events as the two conferences were only separated by a weekend. Although this event will likely fill up quickly, it will not sell out like Build did in one minute. If you are planning on attending, it's better to register sooner, rather than later, but this venue is much larger than the Moscone center in San Francisco where Build takes place. You can register for... --- ### Getting The Most Out Of Office 365: Getting A Handle On Skype for Business > Skype for Business is Microsoft's premier communication tool that can replace your PBX and messaging systems with one integrated tool. - Published: 2016-02-02 - Modified: 2024-09-04 - URL: https://petri.com/getting-office-365-getting-handle-skype-business/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365, Skype for Business - Article Type: Overview Skype for Business is Microsoft's premier communication tool that can replace your PBX and messaging systems with one integrated tool that is packed with features. For many people and many industries, communication boils down to real-time communication. Traditionally, this is a phone call or a face-to-face interaction. Today there are many different options for real-time communications between coworkers and clients. Although face-to-face meetings might be more effective, this form of communication isn't always an option. Frequently people work in different locations, making an in-person meeting impossible or too expensive. With Skype for Business, companies can gain some of the benefits of face-to-face interactions without any travel costs. Using video chat can alleviate the pain from audio-only conference calls, where emailing documents or photos can lead to a disjointed and complicated call. When most people think of video conferencing, they think of using webcams to see everyone. However, with Skype for Business, it usually makes more sense to share a video stream of your computer to show everyone on the call what you are talking about so you can collaborate on your work, rather than your face. Audio calls can also be done with Skype for Business. This enables coworkers to take and make calls from anywhere using their devices. No longer tethered to a desk phone, you can get work done from anywhere you have internet and never miss a beat. Audio calls can be converted into group calls and impromptu meetings can happen even when the entire team is not present. The advantage of using Skype for Business for audio calls would be the ability to upgrade an audio call to video call if needed. [caption ... --- ### Microsoft Flips the Switch, Windows 10 Is Now A ‘Recommended’ Update > Microsoft has flipped the switch and made Windows 10 a recommended update for Windows 7 and 8.1 users. - Published: 2016-02-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-flips-the-switch-windows-10-is-now-a-recommended-update/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: News Microsoft has flipped the switch and made Windows 10 a recommended update for Windows 7 and 8.1 users, this also impacts small business who have domain joined machines. Late last year, Microsoft announced that they would, in early 2016, set the Windows 10 update files to ‘recommended’ instead of optional which means that the bits for the install process will automatically be downloaded for most users. While the OS will still require a user to start the process, the files will be pre-loaded on to any machine to already running the OS. For corporate users, this likely should not be an issue as you can block the update using the various tools that Microsoft provides for managing your network, but for those small businesses who do not have these tools, they will need to pay close attention to the updates as the company will be pushing the files to machines that are domain joined but are still using Windows Update. But that’s not the worst of it, if you are a consumer on a metered connection using Windows 7 or 8. 1, there is no automated work-round for not getting the update. Microsoft says that you have the option of turning off automatic updates and then manually checking for patches but this process is cumbersome for the average user and requires them to keep checking for updates on a regimented basis if they want their machine fully protected. Mary Jo Foley, of ZDnet, was able to confirm with Microsoft that the switch to ‘recommended’ has officially gone live and Microsoft pitches this move as a way to make it easy to upgrade to the new OS. "As we... --- ### Microsoft Brings FastTrack Services To Small Businesses > Microsoft has announced that they will be expanding their Office 365 FastTrack program to small businesses with 50 seats or more. - Published: 2016-02-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-fasttrack-services-to-small-businesses/ - Categories: Microsoft 365 - Tags: Office 365 FastTrack - Article Type: News Microsoft has announced that they will be expanding their Office 365 FastTrack program to small businesses with 50 seats or more. If it were up to Microsoft, they would get all of their customers to subscribe to Office 365. The subscription service, passed the 20-million-mark last quarter, has been a huge success for the company in transitioning its clients away from a one-time payment model to annual fees. One program that Microsoft needs to make easier for customers to move to a subscription service is FastTrackOne. The benefit offers customized support, on-boarding assistance and more, and was previously only available to customers with 150 or more enterprise seats. Today, the company is reducing that figure to only 50 seats. If your small business is looking to deploy Office 365, and you need customized support with the rollout, Microsoft or an authorized partner can now assist you with this process via the FastTrack program. And the benefit is not a one-time use, as the additional support services can be used anytime during the lifecycle of your subscription. Microsoft notes that its partners report that companies who use Google Apps for productivity typically find the breaking point at about 50 users. After they reach this size, they need more robust centralized management capabilities and improved security, which is why Microsoft lowered the barrier to be eligible for the FastTrack program. To learn more about the improvements to the FastTrack program, you can check Microsoft's blog post that details the announcement. --- ### Why Learn PowerShell? > Have you been avoiding learning PowerShell? Author and expert Jeff Hicks shares his views on what you are missing and why you should learn PowerShell. - Published: 2016-02-01 - Modified: 2024-09-04 - URL: https://petri.com/why-learn-powershell/ - Categories: PowerShell - Tags: Beginner - Article Type: Opinion Have you been avoiding learning PowerShell? Author and expert Jeff Hicks shares his views on what you are missing and why you should learn PowerShell. According to the calendar, it's now 2016. For those of you who didn't know it, this is the 10th anniversary year for PowerShell. This time 10 years ago, I was working on one of the first books about PowerShell, learning and teaching myself along the way. We are now at version 5. 0 and so much has changed since those humble days of PowerShell 1. 0. But for many Windows-based IT pros, PowerShell continues to be either something they keep putting off or they don't feel the need to truly invest the time, energy, and resources. Those IT pros who neglect to develop their PowerShell skills will languish in the long run. I know that early on many people felt that PowerShell was simply going to be another management fad from Microsoft. It might fill a niche like managing Exchange, but in the long run, it wouldn't really matter. That's definitely not true. Microsoft has bet big time on PowerShell for a number of years and has made it very plain that if you intend to have a career managing Windows-based platforms and infrastructure you really need to know PowerShell. As one example, although there's no office Microsoft certification exam on PowerShell, a number of certification exams have PowerShell-related questions. The assumption from the certification people is that you will know how to use the relevant PowerShell commands to do your job. For me, the most compelling argument that Microsoft is fully behind PowerShell is to look at the career... --- ### Windows Phone: Wanted Dead or Alive - Published: 2016-02-01 - Modified: 2024-09-04 - URL: https://petri.com/windows-phone-wanted-dead-alive/ - Categories: Mobile - Tags: Windows 10, Windows 10 Mobile, Windows phone - Article Type: Opinion Following the release of Microsoft's Q2 2016 fiscal year earnings, Windows Phone has apparently been proclaimed dead… again. When Microsoft launched the Lumia 950, 950XL, and 550, the start of what many believe to be the last phones to carry the Lumia moniker, and despite the lukewarm reception to those devices, there still seemed to be some enthusiasm for the platform. But just a couple of months later, following the release of Microsoft's Q2 2016 fiscal year earnings, Windows Phone has apparently been proclaimed dead... again. The fate of Windows 10 Mobile is once more up for debate, and it might look like to the casual observer that Microsoft doesn't care much about the platform's destiny. But I firmly believe that Microsoft won't kill Windows 10 Mobile because it's too important to the overall Windows 10 strategy. Joe Belfiore leaves Microsoft If you recall back to Microsoft's Ignite conference in May 2015, Joe Belfiore was greeted with rapturous applause as he demonstrated Continuum using Windows 10 Mobile in his usual inimitable manner. To many, Joe Belfiore was the face of Windows Phone, and when his year-long sojourn from Microsoft was announced in October 2015, many predicted the death of Windows Mobile. Maybe Joe Belfiore's apparent 'temporary' departure was already an indicator that Windows Mobile was going to be put out to pasture, but that doesn't necessarily mean killed. The vision to enable Windows 10 Universal Apps (UWP) to work across devices of all types is important for making the Windows Store a success. But without Windows Mobile, where does this leave us? Sure there's still Xbox... --- ### IDC: Tablet Sales Fell 10 Percent in 2015 - Published: 2016-02-01 - Modified: 2024-11-19 - URL: https://petri.com/idc-tablet-sales-fell-10-percent-in-2015/ - Categories: Mobile - Tags: iPad Pro, Microsoft Surface, News, tablet - Article Type: News Sales of tablets fell 10 percent in 2015, and almost 15 percent in the fourth quarter,according to the market researchers at IDC. But sales of so-called "detachable tablets" hit a record high in the year, with Microsoft Surface falling behind Apple's iPad Pro. Sales of tablets fell 10 percent in 2015, and almost 15 percent in the fourth quarter,according to the market researchers at IDC. But sales of so-called "detachable tablets" hit a record high in the year, with Microsoft Surface falling behind Apple's iPad Pro. "This quarter was unique as we had new detachables in the market from all three of the major platform players," IDC senior research analyst Jitesh Ubrani said. "Despite lukewarm reviews, the iPad Pro was the clear winner this season as it was the top selling detachable, surpassing notable entries from Microsoft and other PC vendors. It's also important to note that the transition towards detachable tablets has presented positive opportunities for both Apple and Microsoft. " Overall, tablet sales hit 206. 8 million units in 2015, compared to 230 million units in 2014. Looking at just the fourth quarter, tablet sales came in at 66 million units, down from the 76. 4 million sold in the same quarter a year ago. On the "slate" tablet side of the equation---these are the "pure" tablet devices that can't or are not typically used with a keyboard---sales nosedived dramatically across the board. The only exception was Amazon's Kindle HD line of tablets, which saw a third place finish thanks to an incredibly inexpensive new lineup of devices in 2015. IDC notes that the only real successes seen in this part of the market are in low-cost devices now. But detachables---tablets that typically come with an integrated but detachable... --- ### Microsoft is Testing the Viability of Underwater Data Centers - Published: 2016-02-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-testing-the-viability-of-underwater-data-centers/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft is underwater. Literally. The software giant is testing a prototype data center that can operate hundreds of feet below the surface of the ocean, in a bid to eliminate air conditioning costs. Microsoft is underwater. Literally. The software giant is testing a prototype data center that can operate hundreds of feet below the surface of the ocean, in a bid to eliminate air conditioning costs. No, it's not April Fools. A recent report in The New York Times highlights Microsoft's innovative "Project Natick" for what I believe to be the first time. It's early yet, of course. Microsoft isn't sure about how the data centers---which are essentially containers that would need to sit in the sea somehow---will be positioned or linked: One possibility is that the could be suspended by giant steel tubes and linked by fiber optics. And then there's power: Microsoft is looking into both turbine and tidal energy systems. But regardless of the eventual outcome, it could be an incredibly good idea. As you know, the biggest single bill for any data center is the cooling. As the NYT explains to its less technical readers, heat is the enemy. And data centers generate a lot of heat. "When I first heard about this I thought, ‘Water ... electricity, why would you do that? ’" Microsoft designer Ben Cutler told the publication. "But as you think more about it, it actually makes a lot of sense. " It makes sense because the ocean is a natural coolant, especially at depth, and is naturally renewable. Yes, there are environmental concerns, given heightened awareness of man's accelerating impact on global warming. And of course it's not clear what impact these... --- ### Windows 10 Overtakes Windows XP In Market Share > Windows 10's marketshare continues to grow as the operating system is now installed on more devices than Windows XP.  - Published: 2016-02-01 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-overtakes-windows-xp-in-marketshare/ - Categories: Windows 10 - Article Type: News Windows 10's market share continues to grow as the operating system is now installed on more devices than Windows XP but Windows 7 is still the front-runner. Windows 10 is a little over six months old and the OS is being adopted quickly around the world. With over 200 million machines now running the OS, the platform is being well received by consumers and corporations. The OS also passed another milestone in the month of January, Windows 10 is now on more machines than Windows XP. Even though Windows XP is no longer supported by Microsoft and its market share is quickly shrinking, for many years, it was the most widely used operating system on the planet. For the month of January, according to Netmarketshare. com, Windows 10 was used on 11. 85% of machines while Windows XP was installed on 11. 42% but Windows 7 still remains the juggernaut at 52. 47%. Windows 8/8. 1 is still on 13. 08% of devices but expect Windows 10 to surpass that mark next month. With Windows 8 being shunned by consumers and corporations, Windows 7 is the long-term roadblock to preventing Windows 10 from becoming the most widely used version of Windows. For those that have remained on 7, they have typically done so as the platform is rock-solid and offers the basics needed for a modern machine. But, it does lack the Windows store, support for Hello and many other security features that have been developed with Windows 8 and 10. Windows 10 will turn one on July 29th, 2016 and it will be interesting to see if Microsoft can keep up its adoption momentum which would put the total install... --- ### Sleepless In Seattle: Surface Sleep Bug Remains Elusive > Microsoft's new Surface devices suffer from an annoying sleep issue that the company has yet to fix with no timeline for resolution announced either. - Published: 2016-02-01 - Modified: 2024-09-04 - URL: https://petri.com/sleepless-in-seattle-surface-sleep-bug-remains-elusive/ - Categories: Hardware - Tags: Surface - Article Type: News Microsoft's new Surface devices suffer from an annoying sleep issue that the company has yet to fix with no timeline for resolution announced either. Last week, Microsoft pushed out a firmware update to its new Surface devices, the Pro 4 and the Book. While the firmware update did bring some needed updates including making the keyboard base more reliable when attached to the display, the most annoying bug was not squashed. Both the Pro 4 and the Book suffer from a well-documented problem, they will not ‘sleep’. When you try to use feature of Windows with these devices, it will cause the battery to drain and they will get very warm when they should be in a low idle state. Microsoft acknowledged in their forums that this bug was not fixed in the latest firmware update and that they are still working on the issue but offered no timeline for a resolution. The statement came from a Microsoft employee who is on the Surface team, "We know some of you are still experiencing issues, including issues related to power management, and we are working to address those as quickly as possible. We’ll publish additional updates as soon as they are ready. " This issue, which as been on-going since the device was released, is giving the Book and Pro 4 a bad which otherwise are fantastic devices. But, when you cannot trust your device to be ready when you need it, this becomes a serious issue for Microsoft who boasts that they have the most productive PCs on the planet. It’s clear that Microsoft is getting a lot of flak for the issue but... --- ### First Public Preview of Microsoft Azure Stack > Microsoft has announced the first public preview of Microsoft Azure Stack. Learn about this new service and whether it's right for you. - Published: 2016-01-29 - Modified: 2024-09-04 - URL: https://petri.com/first-public-preview-of-microsoft-azure-stack/ - Categories: Microsoft Azure - Tags: ARM, Azure, Azure Resource Manager, cloud computing, Hyper-V, MAS, Microsoft Azure Stack, Private Cloud, Public Cloud, Virtualization - Article Type: News Microsoft has announced the first public preview of Microsoft Azure Stack. Learn about this new service and whether it's right for you. Today, Microsoft launched the first public preview of Microsoft Azure Stack. What is it, and is it relevant for you? Keep reading to learn all about Azure on your terms. What is Microsoft Azure Stack? Microsoft shared details of Microsoft Azure Stack (MAS) with the public for the first time at Microsoft Ignite 2015. What Microsoft showed us was stunning. Instead of mimicking Microsoft Azure with the Windows Azure Pack (WAPack) that's powered by a complex implementation of System Center, Microsoft decided to take code from Azure and implement the fabric components in Windows Server 2016, along with the management and interface to develop a new product called MAS. Note that MAS doesn't require System Center, but you still might use System Center to manage your infrastructure. For example, you might deploy System Center Operations Manager in conjunction with the Azure-based Operations Management Suite (OMS) to monitor your MAS-based private/partner cloud fabric and systems. The key to Azure and MAS is consistency. Microsoft has long preached that the cloud OS should be consistent, enabling customers and partners to use one platform on customer sites, in partner hosting facilities, or in Microsoft Azure. Microsoft believes that where you deploy a solution should not impact how you design or deploy it. The solution was to bring not something like Azure to customers and partners, but to bring Azure itself to them. Microsoft Azure Stack Benefits The benefits of Microsoft Azure Stack are simple enough to explain: A simplistic cloud: On one... --- ### The Sams Report EP 26: Phone Woes, Cloud Explosion > On this episode, I cover the all the news that Microsoft announced this week including their earnings for the company's second quarter and a lot more. - Published: 2016-01-29 - Modified: 2024-09-04 - URL: https://petri.com/the-sams-report-ep-26-phone-woes-cloud-explosion/ - Categories: Podcast - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including their earnings for the company's second quarter, Windows phone downward spiral, cloud growth going bananas and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including their earnings for the company's second quarter, Windows phone's downward spiral, cloud growth going bananas, Joe B getting a stupid amount of attention over nothing, and a lot more. An audio replay is available here. https://www. youtube. com/watch? v=b5CizD9A7Hc RSS | SoundCloud | YouTube | iTunes If you have any questions, you can ask in the chatroom during the livestream or after the show, you can find me at @bdsams on Twitter. --- ### Windows Phone's Downward Spiral Reaches The Bottom > Microsoft's Windows Phone platform is in serious trouble with sales slumping to a new low and the company openly supporting other platforms. - Published: 2016-01-29 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-windows-phone-becomes-a-third-class-citizen/ - Categories: Windows Client OS - Article Type: News Microsoft's Windows Phone platform is in serious trouble with sales slumping to a new low and the company openly supporting other platforms. When Microsoft announced Windows Phone 7, the company held a funeral for the iPhone on its campus, a bold statement but one that would foretell it’s own demise, rather than that of Apple’s. During the company’s second quarter, calendar year fourth quarter, phone revenue decreased $1. 2 billion as the company only sold 4. 5 million Lumias, a year ago for the same period, they sold 10. 5 million devices. For the past year or so, it has become clear that Microsoft has entered a phase where it will only do the bare minimum to keep its phone operating system alive and will not spend a dollar more than necessary. The sales figures for its Lumia smartphones tell the story of how the company is shifting its priorities (they have said they will be releasing fewer devices) and are now prioritizing other platforms like iOS and Android. The Lumia 950 was a high-end phone that was too little, too late. It was met with mediocre reviews because the operating system had not mastered today’s basic functionality requirements and stability remains a big problem. And, in the US, it was only offered on one carrier, AT&T, which severely restricted who could buy the phone. But the company distancing itself from Windows 10 Mobile is much more apparent than sales coming up short. Microsoft is now focusing on Android and iOS with the company regularly releasing apps for those platforms ahead of its own mobile operating system and they are also bringing the... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (January 2016) - Published: 2016-01-29 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition-2/ - Categories: Windows 10 - Tags: News - Article Type: News Because Microsoft just announced its quarterly earnings, this edition of (not so) Short Takes focuses on how well its various business segments are doing: Cloud, Windows 10, Surface, Phone, Xbox, Office 365 and Office, and more. Because Microsoft just announced its quarterly earnings, this edition of (not so) Short Takes focuses on how well its various business segments are doing: Cloud, Windows 10, Surface, Phone, Xbox, Office 365 and Office, and more. Note: This episode of Short Takes is devoted to Microsoft's quarterly earning results. You can get a great overview of the results in Brad's Microsoft’s Q2 Beats Estimate, $25. 7 Billion in Revenue. Here, I focus on color commentary that came out of the firm's 10Q filing and post-earnings conference call with analysts and press. Also, given the topic, I'm keeping the humor to some headline riffs for this go-round. --Paul Microsoft's quarter by the numbers For the quarter ending December 31---Microsoft's second fiscal quarter, and the fourth calendar quarter of 2015---Microsoft posted operating income of $6 billion (up 3 percent year over year) on revenues of $23. 8 billion (down 2 percent YOY). "We achieved strong results this quarter through targeted investments in innovation and consistent execution," Microsoft CFO Amy Hood said, in a curiously non-tech-related explanation for the results. "Microsoft's secret weapon for growth in the cloud: email" Probably more reliable than a V2 rocket. Feeling like Nostradamus today Predictions are not my strong point, so I feel pretty good about my December editorial, Microsoft Owns Productivity And That Should Be Enough, where I opined that the future of Microsoft was in productivity the cloud, and only in that one market. As it turns out, Microsoft CEO Satya Nadella agrees: " this quarter... --- ### Microsoft’s Surface Brand Is Once Again A Billion Dollar Operation > Microsoft's Surface line of hardware has once again become a billion dollar operation for the company with Q2 results besting that of last year. - Published: 2016-01-28 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-surface-brand-is-once-again-a-billion-dollar-operation/ - Categories: Hardware - Tags: Surface - Article Type: News Microsoft's Surface line of hardware has once again become a billion dollar operation for the company with Q2 results besting that of last year. Earlier today, Microsoft announced their earnings for the company’s second quarter (calendar year fourth quarter) and the Surface brand has once again become a billion-dollar operation with revenue of $1. 35. For the same quarter last year, the company recorded $1. 1b in revenue. It’s not a surprise the business org had strong sales for the quarter, in October the company began offering its new Surface Pro 4 along with a completely new product, the Surface Book. Couple these new devices with the holiday shopping season and anything other than besting the revenue of last year would have been a disappointment. What will be important to watch is how Surface revenue grows (or contracts) after this quarter. Even though they had strong sales, the company has only surpassed the billion mark in Q2 of any year which means true growth for the business unit will come if it can keep this momentum into Q1 (calendar year) and beyond. Getting to this point has not come without its issues. The company, with the original Surface, had to write-down $900 million in inventory and of course, the new devices have been plagued with sleep related issues that cause the battery to drain. For a company who was not traditionally been a hardware vendor, they have managed to do well in this sector for being a new player while facing off against company’s like Apple, Dell and HP. You can read more about Microsoft’s earnings this quarter, here. --- ### Microsoft's Q2 Beats Estimate, $25.7 Billion in Revenue > Microsoft has announced their second quarter earnings today (fourth quarter calendar year) and it was healthy period for the company. - Published: 2016-01-28 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-q2/ - Categories: Windows 10 - Tags: Microsoft - Article Type: News Microsoft has announced their second quarter earnings today (fourth quarter calendar year) and it was healthy period for the company. Microsoft released their second quarter (fourth quarter calendar year) earnings today and the company had revenue of $23. 8 billion GAAP, and $25. 7 billion non-GAAP. For the period, operating income was $6. 0 billion GAAP, and $7. 9 billion non-GAAP  with a Net income of $5. 0 billion GAAP, and $6. 3 billion non-GAAP. During the quarter, Office 365 growth was strong with the service recording 20. 6 million subscribers and Office commercial products and cloud services revenue growing 5% in constant currency driven by Office 365 revenue growth of nearly 70% in constant currency. Azure revenue grew 140% in constant currency with revenue from Azure premium services growing nearly 3x year-over-year with Server products and cloud services revenue growing 10% in constant currency. Revenue in More Personal Computing declined 5% (down 2% in constant currency) to $12. 7 billion, with Windows OEM revenue declining 5% in constant currency which the company notes did outperform the PC market but the drop was driven by higher consumer premium and mid-range device mix. Surface revenue increased 29% to $1. 35 billion but Phone revenue declined 49% mostly driven by a change in strategy by the company. The company is now selling a much smaller mix of devices and is not churning out new phone like Nokia was doing when they were running the operation. For the period, 4. 5 million Lumia phones were sold and 22. 5 million other phones in the second quarter of fiscal year 2016, compared with 10. 5 million and 39. 7 million sold, respectively, in the prior year. Xbox Live monthly... --- ### Colorful Information in PowerShell 5.0 > PowerShell MVP Jeff Hicks continues his exploration of the information stream in v5 and demonstrates how to use Write-Host as a wrapper. - Published: 2016-01-28 - Modified: 2024-09-04 - URL: https://petri.com/colorful-information-powershell-5-0/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks continues his exploration of the information stream in v5 and demonstrates how to use Write-Host as a wrapper. In a previous article I introduced you to the new information stream in PowerShell 5. 0. I think this is something that you can incorporate into your own scripts and functions. As I mentioned last time, one of the drawbacks to using PowerShell's Write-Information cmdlet is that if you want to see messages, then it's difficult to distinguish between output and messages. Fortunately, Microsoft's PowerShell team planned ahead and tweaked Write-Host in PowerShell 5. 0. Related: Getting Started with the PowerShell 5. 0 Information Stream In the past the PowerShell community has frowned upon the use of Write-Host, especially as the means to display results. But it has always been fine for informational messages, especially if you take advantage of the ForegroundColor or BackgroundColor parameters. If you take advantage of those parameters, then you can easily tell the difference between actual output and messages. In PowerShell 5. 0, Write-Host is a wrapper for Write-Information. This means you can use Write-Host and get all the benefits of the new information stream. To demonstrate, here's a variation on the test function that I used previously. Function Test-Me2 { Param Write-Verbose "InformationPreference = $InformationPreference" Write-Host "Starting $($MyInvocation. MyCommand) " -ForegroundColor Green Write-Host "PSVersion = $($PSVersionTable. PSVersion)" -ForegroundColor Green Write-Host "OS = $((Get-CimInstance Win32_operatingsystem). Caption)" -ForegroundColor Green Write-Verbose "Getting top 5 processes" Get-process | sort WS -Descending | select -first 5 -outvariable s Write-Host ($s | out-string) -ForegroundColor Green Write-Host "Ending $($MyInvocation. MyCommand) " -ForegroundColor Green } Let's run the test function. Using Write-Host as an... --- ### 50,000 IOPS with an Azure VM: Is It Possible? > Aidan Finn tests whether it's possible to achieve 50,000 IOPS with a Microsoft Azure VM. - Published: 2016-01-28 - Modified: 2024-11-19 - URL: https://petri.com/50000-iops-with-an-azure-vm/ - Categories: Microsoft Azure - Tags: DskSpd, performance, Premium Storage, storage - Article Type: Overview Aidan Finn tests whether it's possible to achieve 50,000 IOPS with a Microsoft Azure VM. I've written a lot lately about how Microsoft Azure offers Premium Storage for IaaS virtual machines and how data disks can be used to aggregate potential performance and storage capacity. I've also explained how the performance of HDD and SSD storage scales linearly when you add disks. When I think about Azure Premium Storage, I think about the demo that Mark Russinovich did at Microsoft Ignite 2015, where he showed a virtual machine with Premium Storage that hit over 64,000 IOPS reads/writes by using caching when stressed using IOMETER. Of course, you can expect that Azure's Chief Technical Officer (CTO) will have a fully functional and performing demo. Every lever and micro-setting would be configured to guarantee nothing but the best. With that said, what can some mere mortal accomplish? I wanted to find out if I could run a virtual machine with super-high IOPS just as easily. Mark Russinovich's demo that exceeds 62,000 IOPS (Image Credit: Microsoft) The Test Lab My solution is based on multiple Premium Storage data disks that are aggregated using Storage Spaces. I utilized the PowerShell that I previously shared to create a single data volume from 10 x 1023 GB P30 Premium Storage data disks: A single storage pool One virtual disk with 64 KB interleaves Formatted with a single NTFS volume (E:) with an allocation unit size of 64 KB I needed a virtual machine specification that would support the IOPS of 11 x P30 data disks (10 x 5,000 IOPS = 50,000... --- ### The Enterprise Agenda: New Opportunities, Advanced Threats > The enterprise has many challenges ahead for 2016 but with proper planning and training, downtime and security alerts should be kept to a manageable state. - Published: 2016-01-28 - Modified: 2024-11-19 - URL: https://petri.com/enterprise-heads-into-the-new-year-with-updated-risks-new-opportunities/ - Categories: Cloud Computing - Tags: enterprise - Article Type: News The enterprise has many challenges ahead for 2016, but with proper planning and training, downtime and security alerts should be kept to a manageable state. The start of a new year is typically a time of reflection of the prior year but also a period of looking forward to see how you can prepare for the challenges ahead while avoiding the mistakes of yesteryear. In the business sector, this can mean proper financial planning and forecasting, and for IT admins this means planning for software updates and deployments. For 2016, there will continue to be a wide range of pressures on IT administrators, ranging from hardware failures, software updates, and of course working with the ever-growing presence of the cloud integration into on-prem deployments. New Software From Microsoft This year will bring about many changes in the business market, thanks to Microsoft aggressively pushing forward with Windows 10, along with the impending release of Windows Server 2016. For these software packages to be deployed, a significant amount of legwork is required for testing application compatibility. Windows 10 has already been released by Microsoft, and the company is doing nearly everything it can to entice corporate customers to move to the OS as fast as possible. Everything from pushing the updates to domain-joined machines and limited support of Skylake and Windows 7, to showing the benefits of using the new OS to make IT admin's life easier with features like Windows Update for Business. A new version of Windows Server will be released this year with the company publicly testing a preview of the software, call named Windows Server 2016 Public Technical Preview 4 that you can download here. Although deploying... --- ### IDC: Device Makers Sold Record 1.4 Billion Smart Phones in 2015 - Published: 2016-01-28 - Modified: 2024-09-04 - URL: https://petri.com/idc-device-makers-sold-record-1-4-billion-smart-phones-in-2015/ - Categories: Mobile - Tags: News - Article Type: News The market researchers at IDC claim that device makers sold 1.4 billion smart phones in 2015, a record. And sales were stronger than expected in the final quarter of the year, with nearly 400 million units sold. Top 5 smart phone maker unit shipments 2011-2015. Source: IDC The market researchers at IDC claim that device makers sold 1. 4 billion smart phones in 2015, a record. And sales were stronger than expected in the final quarter of the year, with nearly 400 million units sold. For the first time, the big news in this market was China-based Huawei, which is the third-biggest smart phone maker, and not Samsung or Apple, which are respectively the world's two biggest makers of these devices. "Huawei's strong showing for both the quarter and the year speak to how much it has grown as an international brand," IDC senior research manager Melissa Chau says in a prepared statement. "While there is a lot of uncertainty around the economic slowdown in China, Huawei is one of the few brands from China that has successfully diversified worldwide, with almost half of its shipments going outside of China. Huawei is poised to be in a good position to hold onto a strong number 3 over the next year. " Little has changed at the top, however: Both Samsung and Apple retained their relative position, with Samsung posting big gains in the fourth quarter and Apple faring better over the course of 2015. By the end of 2015, Samsung had sold 325 million smart phones, good for 23 percent of the market, a gain of 2. 1 percent year over year. Apple sold 231. 5 million iPhones in 2015, and sits at... --- ### Microsoft Expands Co-Authoring Support For Office Online, New Features For Outlook.com > Microsoft has announced new co-authoring support for Office Online and is also expanding the services that can connect with Outlook.com - Published: 2016-01-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-co-authoring-support-for-office-online-new-features-for-outlook-com/ - Categories: Office - Tags: Office Online - Article Type: News Microsoft has announced new co-authoring support for Office Online and is also expanding the services that can connect with Outlook.com Last year, Microsoft announced its Cloud Storage Partner Program (CSPP) that made it easier for cloud storage providers to connect to Office Online and Office for iOS. Today, the company is expanding that program and is adding new features to Outlook. com. Co-Authoring support for Microsoft’s Office Online apps has been supported since 2013 but only if the files lived in OneDrive. Starting today, they are expanding the co-author support to any storage provider who is in the CSPP program; this list includes Box, Citrix ShareFile, Dropbox and Egnyte. For those of you who use Outlook. com and also Box or Dropbox, these services are now integrated into the web email service which means you can access your files on those platforms directly inside of Outlook. This feature has not yet rolled out but Microsoft says it will arrive in the ‘coming weeks’. Both of these new features will make it easier to use Microsoft’s Office and email service with third-party providers. While the company would love for you to use its OneDrive platform, it is not a primary driver of revenue for Microsoft. Knowing this, it makes sense that they want Office (a key product offering for the company) to be flexible enough to work with the storage service that best fits your need and tossing in support for Outlook. com makes its email service more attractive as well. You can learn more about the new features, here. --- ### PowerShell Problem Solver: Creating Permanent Credentials > Discover how easy it is to secure your daily PowerShell work with a persistent credential that you don't have to remember to use. - Published: 2016-01-27 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-creating-permanent-credentials/ - Categories: PowerShell - Tags: Get-Credential, Intermediate - Article Type: How To Discover how easy it is to secure your daily PowerShell work with a persistent credential that you don't have to remember to use. If you run your IT operations the smart and safe way, you use a normal user credential for most of the day. When you need to do something in PowerShell that requires administrator credentials, then you can often specify an alternate credential. get-wmiobject win32_service -filter "name = 'dns'" -computer chi-dc04 -Credential globomanticsadministrator I'm prompted for a password, and PowerShell uses the credential to connect, and I get a result. This gets tedious if I have to do that every time I want to use an alternate credential. One solution is to save the credential to a variable with Get-Credential. $da = Get-Credential globomanticsadministrator Now I can use that instead. get-wmiobject win32_service -filter "name = 'dns'" -computer chi-dc04 –Credential $da I can use this variable with any command that can use a PSCredential. Testing an alternate credential (Image Credit: Jeff Hicks) Although I'm logged on as Jeff when I connect to CHI-FP02, I'm using the alternate credential. The only situation I can think of where this won't work is when using Get-WMIObject and connecting to the localhost. WMI doesn't support alternate credentials for local queries. That's nice and all, but I still have to remember to use the credential. There's a better way. PowerShell 3. 0 introduced PSDefaultParameterValues. There's a help topic (about_Parameters_Default_Values) that you can take a look at for more details. But for now, I can tell PowerShell to use my credential variable forany cmdlet that has a credential parameter. $PSDefaultParameterValues. Add("*:Credential",$da) Now I don't have to think... --- ### Why IT Pros Should Be Using Azure Resource Groups > Have you ever used a resource group in Azure? If you have never consciously used a resource group, then it's time to start reconsidering.  - Published: 2016-01-27 - Modified: 2024-09-04 - URL: https://petri.com/why-it-pros-should-be-using-azure-resource-groups/ - Categories: Microsoft Azure - Tags: administration, Azure, Resource Groups, Security - Article Type: How To Have you ever used a resource group in Azure? If you have never consciously used a resource group, then it's time to start reconsidering. Have you ever used a resource group in Azure? If you have never consciously used a resource group, then it's time to start reconsidering. Resource groups have become an important way in which we logically group and manage elements of a service, such as storage accounts, virtual machines, and so on. In this article, I'll explain what resource groups are and why they are something you need to start using. New versus Old Resource groups were something I had never heard of when I started to learn Azure. I worked in the old Management Portal, deploying individual items such as storage accounts, virtual networks, and virtual machines with no consideration of how these items would be logically grouped by Azure. It was up to me to remember how a virtual machine was networked and where that virtual machine stored its virtual hard disks. And then along came the Azure Preview Portal, which is now known as the Azure Portal. We are expected to now do most of our GUI-based management in the Azure Portal. Not everything is moved across from the Management Portal, but what's left is scheduled to move in the not-so-distant future. The Azure Portal introduced us to resource groups. Everything that's deployed in Azure is a part of a resource group, no matter what management tool you use, and whether you explicitly create a resource group or not. That's why if you have just started using the Azure Portal after using the Management Portal for some time,... --- ### Veeam Availability Suite v9 Released > Veeam has released their updated availability suite, V9, that has 250 enhancements over the prior version of the software. - Published: 2016-01-27 - Modified: 2024-09-04 - URL: https://petri.com/veeam-availability-suite-v9-released/ - Categories: Backup & Storage - Tags: Veeam - Article Type: News Veeam has released their updated availability suite, V9, that has 250 enhancements over the prior version of the software. The modern data center is full of challenges, everything from proper network allocation, keeping temperatures cool and of course, making sure that all possible downtime is avoided. There are quite a few options for minimizing downtime including redundant off-site replication, on-site replication and Veeam's has their Availability Suite which reached version 9 this month. For those not familiar with Veeam, the company provides availability solutions for your data center and their latest release, V9, has 250 enhancements over the prior version. Some of these new features include, EMC VNX and VNXe hybrid storage array integration, additional primary storage integrations for HPE, NetApp and EMC/Veeam Explorer for Oracle. One of the many challenges facing IT admins is making sure that their backup solution matches the corporate requirements. With senior management critical of any downtime, an IT team is judged not by how quickly they can identify an outage but how fast they can return to an optimal state of operation. According to a Forrester/Disaster Recovery Journal survey of global disaster recovery, 35 percent of companies acknowledged that their backup solutions did not match the business expectations. With strong demand for increased availability and less downtime, companies who are unprepared for the inevitability of downtime are exposing their operations to unnecessary risk. You can learn more about Veeam’s v9 software here.   --- ### Apple's iPhone Sales Were Flat in Q4 2015 - Published: 2016-01-26 - Modified: 2024-09-04 - URL: https://petri.com/apples-iphone-sales-were-flat-in-q4-2015/ - Categories: Mobile - Tags: News - Article Type: News Apple delivered a knockout punch in its quarterly earnings as always, but warnings about slowing iPhone sales growth did not go far enough: The business was essentially flat when measured against the same quarter a year ago, the first time ever that iPhone sales haven't grown. Apple delivered a knockout punch in its quarterly earnings as always, but warnings about slowing iPhone sales growth did not go far enough: The business was essentially flat when measured against the same quarter a year ago, the first time ever that iPhone sales haven't grown. "Our team delivered Apple’s biggest quarter ever, thanks to the world’s most innovative products and all-time record sales of iPhone, Apple Watch and Apple TV," Apple CEO Tim Cook is credited with saying in a prepared statement. "The growth of our services business accelerated during the quarter to produce record results, and our installed base recently crossed a major milestone of one billion active devices. " And it was a record quarter for the consumer electronics giant: Apple posted a profit of $18. 4 billion on a record quarterly revenue of $75. 9 billion, both astonishing feats given what Apple CFO Luca Maestri called "a very difficult macroeconomic environment. " Still, the iPhone numbers in particular are disappointing. Apple sold 74. 78 million iPhones in the last calendar quarter of 2015, barely edging past the 74. 47 million units it sold in the same quarter one year ago. That's just . 4 percent growth, well sort of the 1 percent growth analysts were expecting. Put another way, Apple sold almost 75 million iPhones, yes, but sales grew by only 311,000 units. (In the year-ago quarter, unit sales jumped almost 50 percent. ) Other products fared even worse. Despite the high-profile launch of iPad Pro, iPad's losing streak continued,... --- ### Microsoft’s PowerBI App Now Available For Desktop And Tablets > Microsoft has released a new PowerBI app that lets users you to view your data in a touch-friendly environment on your PC. - Published: 2016-01-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-powerbi-apps-now-available-for-desktop-and-tablets/ - Categories: PowerBI - Tags: PowerBi - Article Type: News Microsoft has released a new PowerBI app that lets users you to view your data in a touch-friendly environment on your PC. Microsoft is bringing its PowerBI apps to the desktop with the release of a Windows 10 Universal app that is designed for a touch-optimized experience; the app can be download from the link at the bottom of this post. The PowerBI app was released a few weeks ago for Windows 10 Mobile, as ZDnet's Mary Jo Foley notes. The app also supports Continuum for phones, which means that if you have a Lumia 950 or any other phone that supports this feature, you connect it to a larger display, where you will be rewarded with the desktop view. The new app is designed to work with both mouse, keyboard, and touch input, which means that no matter your device, the PowerBI app should be all that you need to digest the data from your network. Because this is a true Universal Windows Platform app, it can run on anything that's powered by Windows 10, including the Xbox One. While the company has not officially announced support for the console, and they may not as the use case is not as strong as other form factors, it's still a possibility. Microsoft is pushing developers heavily toward creating Universal apps because they believe that by doing this, it will help to populate their mobile phone app store, which is lagging significantly behind other platforms. Expect the company to talk a lot more about how to build apps for its store, new framework, and features at its Build conference this spring. Read... --- ### Microsoft’s Hybrid Data Center Strategy Takes One Step Forward With Azure Stack TP1 > Microsoft's Azure Stack brings the power of Azure to your local data center and the company will be releasing a technical preview of the software on Friday. - Published: 2016-01-26 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-bringing-some-of-the-benefits-of-azure-to-on-prem-deployments/ - Categories: Microsoft Azure, Windows Server - Tags: Azure Stack - Article Type: News Microsoft's Azure Stack brings the power of Azure to your local data center and the company will be releasing a technical preview of the software on Friday. Microsoft and Amazon want you to move to the cloud and are slashing prices to make this option more affordable but what if you don't want to put your data on public infrastructure or simply can't because of privacy issues? Does this mean you will never get the benefit of the software that is used to power these massive data centers for your own deployments? Not anymore. Microsoft's Azure Stack is the answer to this question, and a technical preview will be released this week that brings features from Azure to on-prem deployments. This new product is the next phase of the company's hybrid cloud platform and brings the IaaS and higher-level PaaS services from Azure to your local hardware. The key benefits of using Azure Stack in your data center are outlined below: Application developers can maximize their productivity using a 'write once, deploy to Azure or Azure Stack' approach. Using APIs that are identical to Microsoft Azure, they can create applications based on open source or . NET technology that can easily run on-premises or in the public cloud. They can also leverage the rich Azure ecosystem to jumpstart their Azure Stack development efforts. IT professionals can transform on-premises datacenter resources into Azure IaaS/PaaS services, while maintaining oversight using the same management and automation tools that Microsoft uses to operate Azure. This approach to cloud enables IT professionals to have a valuable seat at the table -- they are empowered to deliver services to the business quickly,... --- ### Configure Operational Insights for Azure Virtual Machines > Learn how to quickly set up an OpInsights workspace in your Azure subscription, along with steps on how to deploy the OMS agent to virtual machines. - Published: 2016-01-26 - Modified: 2024-11-19 - URL: https://petri.com/configure-operational-insights-for-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure, Azure Operational Insights - Article Type: How To Learn how to quickly set up an OpInsights workspace in your Azure subscription, along with steps on how to deploy the OMS agent to virtual machines. In today's Ask the Admin, I'm going to show you how to quickly set up an OpInsights workspace in your Azure subscription, along with steps on how to deploy the OMS agent to virtual machines. Azure Operational Insights utilizes the cloud to store and index large amounts of data collected from on-premise and cloud servers, and provides a deep insight into operations, allowing you to find and fix issues quickly, predict needs for future growth, and better adhere to best practice knowledge collected by Microsoft. For more information on OpInsights, see What is Azure Operational Insights? on the Petri IT Knowledgebase. Configure an OpInsights workspace in Azure Before starting, you'll need to have an Azure subscription. If you're not already signed up, you can register for a free trial here. Sign in to the management portal. Scroll to the bottom of the portal window, and click NEW in the bottom left corner. Click APP SERVICES in the pop-up window. In the column to the right, click OPERATIONAL INSIGHTS. Click QUICK CREATE. Give the new workspace a name, choose a tier (free, standard, or premium) and location. The pricing tiers offer different daily limits on data collection in GBs and retention periods. For the latest information on pricing, see the Azure Operational Insights website. Click CREATE WORKSPACE. The portal will switch to the OpInsights pane, and the status of the workspace changed to Active when it's ready to use. It's worth noting that you can create one or more... --- ### More PowerShell Coloring Tips for Domain Controller Statuses > PowerShell MVP Jeff Hicks shows you how to build an advanced highlighting function that should work for any command. - Published: 2016-01-26 - Modified: 2024-09-04 - URL: https://petri.com/more-powershell-coloring-tips-domain-controller-statuses/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks shows you how to build an advanced highlighting function that should work for any command. I hope you've enjoyed our journey into displaying domain controller service statuses in a more colorful format. I hope you have been thinking about how you could extend the techniques I've shown you into more flexible and re-usable tools.  You will want to be caught up on the previous articles or some of what I'm about to show you might be confusing. Check Domain Controller Services with PowerShell Domain Controller Status Lights via PowerShell More PowerShell Coloring Tips for Domain Controller Statuses I'm sure you can think of a number of commands where you would like to highlight a particular value. In this article, I want to end up with a PowerShell function that will get the job done.  Once again, let's start with a set of domain controllers and services. $dcs = "chi-dc01","chi-dc02","chi-dc04" $svcs = "adws","dns","kdc","netlogon" Depending on the service status, I want to display it in a given console color based on a hashtable. $keycolor = @{ Stopped = "Red" Running = "Green" StartPending = "Magenta" ContinuePending = "Cyan" StopPending = "Magenta" PausePending = "Cyan" Paused = "Yellow" } I'm also going to need a regular expression pattern to match on the output. $r = $keycolor. keys -join "|" When building a tool, remember to break things down into discrete steps so that you can modularize. I'll save the data separately. $data = Get-Service -name $svcs -computername $dcs This makes it easier to revise my code that will handle the formatting, and I won't have to rerun the command... --- ### Microsoft Announces Earnings This Week, Here’s What To Look For > Microsoft will be announcing its earnings this week which will shine a light on how well it is doing with all eyes focused on its cloud growth. - Published: 2016-01-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-earnings-this-week-heres-what-to-look-for/ - Categories: Windows 10 - Tags: Microsoft - Article Type: News Microsoft will be announcing its earnings this week which will shine a light on how well it is doing with all eyes focused on its cloud growth. On Thursday of this week, Microsoft will be announcing its quarterly earnings report for Q2, the company operates on a June 30 year end. For this period last year, the company reported $26. 5 billion in revenue with a GAAP EPS of $0. 71. Seeing as the quarter includes the holiday shopping season, the company should see strong sales in its consumer channels but corporate channels are traditionally a little bit quieter during the holiday times as employees take leave and deploying new systems is performed when all hands are on deck. Knowing this, let’s take a closer look at expectations for the upcoming earnings release. Surface: In Q1 for Microsoft, Surface revenue came in at $672 million, down significantly from the prior year ($908 million) but with new devices (Surface Pro 4, Surface Book), there should be strong growth for this business unit. Last year, the company crossed the $1 billion dollar threshold for this quarter, so anything short of that would be disappointing for the organization. With that being said, it does appear that the devices are selling well, even though it’s quite apparent that there are issues with the Skylake processors being used in the devices. But with two brand new products out and a long period between updates for the Pro line, there was certainly pent-up demand for the devices which should mean healthy growth for the hardware division. Windows: Windows 10 has been doing well for the company, with their last milestone of 200 million... --- ### Building a PowerShell Console Menu Revisited, Part 1 > PowerShell MVP Jeff Hicks revisits a popular topic about creating PowerShell console based menus for your scripts. - Published: 2016-01-25 - Modified: 2024-09-04 - URL: https://petri.com/building-a-powershell-console-menu-revisited-part-1/ - Categories: PowerShell - Tags: Intermediate, Scripting - Article Type: How To PowerShell MVP Jeff Hicks revisits a popular topic about creating PowerShell console based menus for your scripts. Today, I want to revisit a topic that pops up frequently and that's building a menuing system in PowerShell. Typically the request is to create a script that presents a simple menu, and the operator merely selects an item from the list to execute. Going through this process might take a few articles so that I don’t overwhelm you, but let’s walk through this process. You can most likely stop anywhere along the way and build your own meaning tool, but if you stick with it, I might have something worth waiting for. And as always, hopefully you'll learn a little PowerShell along the way. Let’s begin. For my demonstration, I'm not focusing on the PowerShell commands to actually perform the menu items, but rather how to display and use the menu. To that end, I'm going to define a here-string, which will represent the menu. $menu=@" 1 Show info about a computer 2 Show info about a mailbox 3 Restart the print spooler Q Quit Select a task by number or Q to quit "@ A here-string is an easy way to create a multi-line string without having to resort to concatenation. Simply type the text you want, including tabs. The only thing to watch is that the closing characters ("@) can't have any whitespace before them. I typically make sure all of the text in a here-string is left justified. My menu variable looks like this: A sample PowerShell menu (Image Credit: Jeff... --- ### Troubleshooting Azure VPNs > Russell Smith shows you how to enable VPN gateway diagnostics and download the resulting logs from Azure storage. - Published: 2016-01-25 - Modified: 2024-09-04 - URL: https://petri.com/troubleshooting-azure-vpns/ - Categories: Microsoft Azure - Tags: Azure, Cloud, network troubleshooting, VPN - Article Type: How To Russell Smith shows you how to enable VPN gateway diagnostics and download the resulting logs from Azure storage. In today's Ask the Admin, I'll show you how to enable VPN gateway diagnostics and download the resulting logs from Azure storage. A site-to-site VPN enables you to securely connect your on-premise network to the Azure cloud, enabling users to seamlessly access Azure resources or extend existing systems into the cloud, or a VNET-to-VNET VPN connects two or more Azure virtual networks. For more information on configuring VNET-to-VNET VPNs, see Deploying VNet-to-VNet VPNs in Azure on the Petri IT Knowledgebase. In principle, VPNs are not difficult to configure in Azure but can be prone to errors, especially in the case of site-to-site VPNs, where you're connecting to a local VPN device. If you're thinking of utilizing this kind of VPN, I'd recommend purchasing an Azure support plan because you can only take debugging problems so far without full access to the VPN device on the Azure side. Nevertheless, logging can be enabled to help troubleshoot issues if you can't connect to an Azure VPN gateway. Don't forget that the logs on a local VPN device might also give some useful troubleshooting clues. Before getting started, you'll need to make sure you have the PowerShell module for Azure installed on your management PC, and a connection to your subscription configured. For details on how to set up PowerShell management, see Setup Windows Azure PowerShell Management on Petri. Enable VPN gateway diagnostics Start by opening a PowerShell prompt, and if you haven't already done so, use the Set-AzureSubscription... --- ### Microsoft Surface (Wrongly) Blamed for Failure During NFL Playoff Game - Published: 2016-01-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-surface-wrongly-blamed-for-failure-during-nfl-playoff-game/ - Categories: Mobile - Tags: Microsoft Surface - Article Type: News Microsoft's Surface tablet was repeatedly called out as the culprit of a technical glitch during the nationally-televised AFC championship football game yesterday. And while Surface was in fact not to blame, Microsoft will have a hard time living this one down. When Microsoft secured an expensive but lucrative deal with the National Football League (NFL) before the previous season, it was seen as a coup for the software giant. But as is often the case with such visible and high-profile deals, the downside can be devastating. And such was the case during a nationally-televised playoff game yesterday between the Denver Broncos and the New England Patriots. On paper, the Patriots were the losers in this game, dropping the AFC championship match 20-18 to the Broncos. But Microsoft was the real loser: Its Surface tablet was repeatedly called out as the culprit during a technical glitch during which the Patriots could not review plays and formations. The irony is hard to overlook. Over the past two seasons, numerous announcers across multiple networks have repeatedly referred to the on-field Surface tablets as iPads, giving free exposure to an already widely-promoted Apple device. This has been problematic because Microsoft spent hundreds of millions of dollars securing the deal with the NFL and in ongoing efforts related to the protection and upkeep of those devices, which are used on-field by the teams and by game announcers. But during Sunday's AFC championship, things changed. When the Patriots suddenly couldn't access game information on their tablets, the announcers repeatedly referred to the devices as "Microsoft Surface tablets. " Microsoft finally got the exposure it had wanted. Just not in the way it wanted. The real irony here, of course, is that there was nothing wrong with... --- ### Microsoft Releases List of Skylake Devices Supported On Windows 7 > Last week, Microsoft announced that they would be providing limited support for Windows 7 (and 8.1) machines that are using Skylake. Today, the company is m - Published: 2016-01-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-list-of-skylake-systems-supported-on-windows-7/ - Categories: Windows Client OS - Tags: Skylake - Article Type: News Microsoft has released a list of machines that use Intel's Skylake CPU that will be supported with Windows 7 and 8.1 for 18 months. Last week, Microsoft announced that they would be providing limited support for Windows 7 (and 8. 1) machines that are using Skylake and would release a list of supported machines this week. . Today, the company is making good on that promise and you can view the entire collection of machines that are supported, here. The list only has machines from Dell, HP, Lenovo and NEC which Microsoft says accounts for over 100 devices. For each of these devices, the company says that the OEM has committed to the additional testing needed to make sure these machines work with the older versions of Windows. Microsoft refers to these Skylake devices as transition devices, and there is limited support of this hardware that you should be aware of. The company will be delivering the driver and other files necessary to support these machines up to July 17, 2017. After this 18 month period, only the most critical Windows 7 and Windows 8. 1 security updates will be addressed for these configurations as long as they do not impact the reliability or compatibility of Windows 7 or 8. 1 on other devices. The company says that this list will be continuously updated on an as-needed basis but what you need to know is that if you are buying a new Skylake PC for your company, it needs to be on this list if you are running any OS other than Windows 10. --- ### Creating Azure VMs with Premium Storage > Aidan Finn walks us through on how to create an Azure virtual machine that uses Azure's Premium Storage.  - Published: 2016-01-22 - Modified: 2024-09-04 - URL: https://petri.com/creating-azure-vms-with-premium-storage/ - Categories: Microsoft Azure - Tags: Azure Premium Storage, DS-Series, GS-Series, SSD, storage, Storage Account, virtual machines - Article Type: How To Aidan Finn walks us through on how to create an Azure virtual machine that uses Azure's Premium Storage. In this post, I'll show you how to create an Azure virtual machine that uses Azure's Premium Storage. In previous posts, I provided an overview of shared-SSD storage, along with instructions on how to create a new premium storage account. Let’s put that knowledge to use to create virtual machines with really fast storage. What is Azure Premium Storage? Create an Azure Premium Storage Account Azure Virtual Machine Series Two of the Azure virtual machines series can take advantage of premium storage accounts at this time: DS-Series: The unique feature of the DS-Series, based on the D-Series, virtual machine is that it uses host-local SSD storage for the temporary (D:) drive. This fast drive is primarily used for paging, but it also offers a fast location for caching, such as a SQL Server tempdb database. GS-Series: The GS-Series, based on the G-Series, is similar to the DS-Series, but the unique feature is that these virtual machines offer unusually large amounts of memory, up to 448 GB RAM at this time. Note that Premium Storage, D-Series and G-Series virtual machines are not available in all regions. You will need availability of the virtual machine and Premium Storage to be able to deploy virtual machines with SSD-based storage. I used the East US2 region for the Premium Storage labs in this post in an Azure resource group called PetriEastUS2. Azure premium and standard storage accounts in East US 2 resource group (Image Credit: Aidan Finn) When... --- ### Paul Thurrott's Short Takes: January 22 - Published: 2016-01-22 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-january-22/ - Categories: Mobile - Tags: News - Article Type: Opinion This week's other news includes a key remaining question about Microsoft's new Windows support policy for new hardware, Google paid $1 billion to be iPhone search provider, Android revenues, the iPad Pro is not faster than a PC, and Yahoo continues to navel-gaze. Your basic "All Russinovich, all the time" geek library. Because I should be in Paris right now but I'm not, this week's other news includes a key remaining question about Microsoft's new Windows support policy for new hardware, Google paid $1 billion to be iPhone search provider, Android made $31 billion in revenues for Google, the iPad Pro is not faster than a PC, and Yahoo continues to navel-gaze. Questions remain about Microsoft's support for older Windows versions on new hardware platforms. Here's the big one In the wake of last week's blockbuster revelation that Microsoft will cut back on support for Windows 7 and 8. 1 on Intel "Skylake" generation PCs, question remain. And the key one, I think, is how or if Microsoft will let PC makers and enterprise customers continue to "downgrade" to previous Windows versions on new hardware going forward. Look, we sort of get what's happening with Skylake, regardless of whether we agree with the decision. But let's say it's 2017. And you, as an enterprise admin or IT pro, has just purchased 1,000 new PCs with Windows 10 Pro and Intel's coming-generation "Kaby Lake" chipset. And you want to downgrade to Windows 7, because that's what you use, and that's your right under the terms of Windows Pro licensing. Can you do so? This is not clear at all, even after a careful reading of the original Microsoft blog post. And they really need to come clean on this... . --- ### Understanding PowerShell Custom Properties with the Select-Object cmdlet > PowerShell MVP Jeff Hicks explains how to use hashtables to create new object properties with Select-Object and why you should. - Published: 2016-01-22 - Modified: 2024-09-04 - URL: https://petri.com/understanding-powershell-custom-properties-with-select-object-cmdlet/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To PowerShell MVP Jeff Hicks explains how to use hashtables to create new object properties with Select-Object and why you should. When I run a PowerShell training class, we naturally get around to talking about the Select-Object cmdlet. This is one of those all-purpose cmdlets that can be used in so many ways. Unfortunately, one of the ways often gives students more than a fair amount of trouble, so let's see if I can't demystify the process. Let's start with a basic PowerShell expression. Get-CimInstance win32_logicaldisk -filter "deviceID='c:'" Displaying disk usage (Image Credit: Jeff Hicks) This is a pretty common task, and the output is pretty straightforward. However, the PowerShell team decided what to display by default, which might not always meets your needs. This is where PowerShell's Select-Object comes in to play. With it, you can tell PowerShell to take an object and select something from it. In this case, we want PowerShell to only select certain properties, which it will then display. Get-CimInstance win32_logicaldisk -filter "deviceID='c:'" | Select -Property DeviceID,Size,Freespace Selecting key properties (Image Credit: Jeff Hicks) Now for the tricky part. In this scenario, although the output is useful, it could be better. For example, the size and freespace values are in bytes. I might like to see these values in GB or MB. I know how to convert a value to GB or MB. Using PowerShell to convert to GB (Image Credit: Jeff Hicks) That's pretty close, but I can go a step further and tell PowerShell to treat the value as an integer, which... --- ### The Sams Report EP 25: Skylake Meets Surface, Redstone And Xbox Scoops > On this episode, I cover the all the news that Microsoft announced this week including limited support Xbox news, a new build of Redstone, and a lot more. - Published: 2016-01-22 - Modified: 2024-09-04 - URL: https://petri.com/the-sams-report-ep-25-skylake-meets-surface-redstone-and-xbox-scoops-2/ - Categories: Podcast - Tags: Sams report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including limited support for Skylake CPUs, Xbox news, a new build of Redstone (insider info) and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including how the company announcing limited support for Skylake CPUs, a little insight into the upcoming Xbox event, a new build of Redstone (and insider info) and a lot more. If you have any questions, you can ask in the chatroom during the livestream or after the show, you can find me at @bdsams on Twitter. An audio replay is available here. https://www. youtube. com/watch? v=x9mJbw_H6DY   RSS | SoundCloud | YouTube | iTunes --- ### Dropbox Lands In The Windows Store > Last year, Microsoft announced a partnership with Dropbox that would make it easier for Office 365 users to access the storage service from within Office. A - Published: 2016-01-21 - Modified: 2024-09-04 - URL: https://petri.com/dropbox-lands-in-the-windows-store/ - Categories: Windows 10 - Tags: Dropbox - Article Type: News Dropbox has announced that its app is coming to the Windows store and will also be supported on Windows 10 Mobile as well. Last year, Microsoft announced a partnership with Dropbox that would make it easier for Office 365 users to access the storage service from within Office. And now Dropbox is reciprocating by releasing a new app for the Windows store that is a true Universal app. The app, which will be going live this week, is free, and makes it easy to access all of your content stored with the service. One of the benefits of using this app is that there is an extra layer of protection as the app integrates support for Windows Hello; Microsoft's biometric authentication layer. Dropbox is used by consumers and corporations around the globe, so this app is a big win for Microsoft as the service has proven to be popular with its users. With the partnership between Dropbox and Microsoft, more than 17 million people have been able to access their content on the go. While this is a desktop app, Dropbox will be coming to Windows 10 Mobile as well. This is a true Universal Windows Platform app which means, in theory, it could show up on the Xbox One as well, if Dropbox wants to go that route. Microsoft’s app store is heavily dependent on developers like Dropbox releasing apps to make sure that when a user searches for a big brand name, they find a first party app. The store, historically, has been filled with third-party knock-off apps but as Windows 10 continues to grow, more and more companies... --- ### Microsoft Places Windows App Hope On iOS Devs And Marketshare > Microsoft is pinning its hope to build out its app store on the success of Windows 10 and also Islandwood, a 'bridge' to porting over iOS apps to Windows. - Published: 2016-01-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-places-windows-app-hope-on-ios-devs-and-marketshare/ - Categories: Windows 10 - Tags: App Store, Islandwood, Windows - Article Type: News Microsoft is pinning its hope to build out its app store on the success of Windows 10 and also Islandwood, a 'bridge' to porting over iOS apps to Windows. Since the release of Windows 8, Microsoft has been trying to find ways to court developers to its platform. When the company initially released its app store for Windows, they boldly assumed developers would flock to their platform because of the Windows name. The problem was that Microsoft's assumption never materialized, which resulted on the fact that Windows 8 was a disaster for the company. The operating system was not adopted in broad scale by consumers or corporations, which left app developers with a small user base that resulted in many apps being abandoned. During this period of stagnant growth for the store, Microsoft tried nearly everything it could to attract big brands, including building their apps for them or offering up cash to to cover the cost of development in some cases. Since the release of Windows 10, the Windows store has shown new signs of life. With big name brands like the WSJ, Uber, and others building apps for the store, there's certainly a positive trend taking place, but it's hard to tell if this is simply a flash in the pan or a long-term upswing that's truly the start of the Windows store growing in popularity. Last year at its Build conference, the company announced two new ways to bring apps to the store, calling them "bridges," they dangled a carrot in front of iOS and Android developers saying they could now bring their apps to the store with minimal code change. The iOS project is called Islandwood,... --- ### Current Status Episode 35: Office 365 with J. Peter Bruzzese > co-hosts Theresa Miller and Phoummala Schmitt talk with guest J. Peter Bruzzese (@jpbruzzese), Office Servers and Services MVP. - Published: 2016-01-21 - Modified: 2024-11-19 - URL: https://petri.com/current-status-episode-35-office-365-j-peter-bruzzese/ - Categories: Current Status - Article Type: Opinion Co-hosts Theresa Miller and Phoummala Schmitt talk with guest J. Peter Bruzzese (@jpbruzzese), Office Servers and Services MVP. Join us Thursday, January 21, 2016 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest J. Peter Bruzzese (@jpbruzzese), Office Servers and Services MVP. Since its inception, Office 365 has constantly been evolving. For some organizations, it been a wild roller coaster ride, and for other organizations, it's been smooth sailing. Let's catch up on the current state of Office 365 and dive into uncovering the remaining gaps. We'll also plunge into the value of moving toward implementation. To view previous episodes of Current Status, visit us on the Petri IT Knowledgebase, Google+, and Twitter. --- ### SharePoint 2016 Release Candidate Now Available For Download > Yesterday, with little warning or fanfare, Microsoft announced the release of SharePoint Server 2016 Release Candidate (RC). - Published: 2016-01-21 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-2016-release-candidate-released/ - Categories: Microsoft 365, SharePoint - Tags: SharePoint 2016 - Article Type: News Yesterday, with little warning or fanfare, Microsoft announced the release of SharePoint Server 2016 Release Candidate (RC) which means its now time to start testing this version with your deployments. Yesterday, with little warning or fanfare, Microsoft announced the release of SharePoint Server 2016 Release Candidate (RC). This release puts us one milestone closer to the day all good administrators have been looking forward to, SharePoint Server 2016 RTM. Microsoft has been saying for a while that the release bits for the new platform would be in our hands the first half of 2016 and it looks like they’re well on their way to keeping that promise. Since Microsoft first started showing SharePoint 2016 publicly, they have talked about how the development cycles would be shorter, and the patching process would be smoother; the RC is our first good look at their handiwork. Unlike Betas or RCs of old, this RC is actually a patch to the SharePoint 2016 Beta 2 that was released in November. The download arrives as a svelte 375 MB ZIP file, accompanied by a 1 MB download for the prerequisite installer. In past versions of SharePoint, and most other Microsoft products, if you installed a beta version you had to reinstall each time a new version was released. This meant a large download and a complete reinstallation and configuration. Being able to upgrade the Beta 2 to the RC is an encouraging sign for how things will work with the released product. The RC promises to continue SharePoint 2016’s progress in many areas, mainly making it easier for your company to become happy Office 365 customers. It makes it easier to set up... --- ### Windows 10 Tip: Using the Lumia 950 with Windows Hello > Russell Smith shares a quick Windows 10 tip for using the Lumia 950 with Windows Hello for increased security. - Published: 2016-01-20 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-using-the-lumia-950-with-windows-hello/ - Categories: Windows 10 - Tags: Security, Windows 10, Windows 10 Mobile, Windows Hello - Article Type: Opinion Russell Smith shares a quick Windows 10 tip for using the Lumia 950 with Windows Hello for increased security. A lot has been said about Windows Hello in the last month with the release of Microsoft's Lumia 950 handset, the first device to include a built-in iris scanner for use with Windows Hello. With that said, much of what's been said is negative. And even though many reviewers have given the Lumia 950 a lukewarm welcome at best, I wanted to share my experience with Windows Hello on the 950, as it's one of the phone's distinguishing features. Nobody likes passwords and PIN codes, and there's nothing worse than having to unlock your handset every few minutes, especially when you're on the go. Windows Hello is a biometric authentication technology that's part of Microsoft's strategy to gradually phase out passwords. Windows Hello works in conjunction with Passport, which uses Identity Providers (IDPs) to authenticate users with a certificate or asymmetric public/private key pair that's generated as part of a two-factor authentication enrolment process. For more information on Passport, see Goodbye Passwords: Windows 10 Passport on the Petri IT Knowledgebase. Facial recognition versus iris scanning Let's be clear about how Windows Hello works on the Lumia 950. It doesn't use facial recognition, but instead relies on the front camera and a nearfield IR diode so that the camera can clearly see your iris. When you enable Windows Hello for the first time, your iris is scanned and a cryptographic hash is generated and stored securely on the phone. When you attempt to unlock the device using Windows Hello,... --- ### Microsoft to Donate $1 Billion in Cloud Capabilities for Non-Profit Organizations - Published: 2016-01-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-donate-1-billion-in-cloud-capabilities-to-expand-usage/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft announced this week that it will donate $1 billion in "cloud computing resources" over the next five years to nonprofits, faculty researchers, and communities that lack broadband Internet access. The goal is to help transform the cloud from a solution for the privileged into a resource that everyone can use. Microsoft announced this week that it will donate $1 billion in "cloud computing resources" over the next five years to nonprofits, faculty researchers, and communities that lack broadband Internet access. The goal is to help transform the cloud from a solution for the privileged into a resource that everyone can use. “Cloud computing is one of the most important transformations of our time," Microsoft CEO Satya Nadella said this week. "It converts guesswork and speculation into predictive and analytical power. If we do not put this technology power in the hands of mission-driven organizations, we risk making a disproportionate investment in solutions to 'first-world problems' at the expense of solutions focused on the greater public good. ” Microsoft's $1 billion donation is part of a broader effort, announced in December, to expand its corporate philanthropy globally, and to the people who really need it. At the time, the firm said that it would connect the benefits of technology to those who need it most and work harder to drive inclusive growth of the global economy. "We will strive to bridge gaps within and across communities through more widespread access to technology that enhances the productivity and quality of life for the people of those communities," Microsoft president Brad Smith wrote at the time. "The opportunity to do this is greater than ever with the power of cloud computing and the potential of data science. " Today, we learn some specifics of this broad agenda via another blog post by Mr. Smith... . --- ### Process Monitoring with PowerShell > PowerShell MVP Jeff Hicks shares his script for watching processes using a WMI event subscription using the CIM cmdlets. - Published: 2016-01-20 - Modified: 2024-09-04 - URL: https://petri.com/process-monitoring-powershell/ - Categories: PowerShell - Tags: Advanced, Get-EventSubscriber - Article Type: How To PowerShell MVP Jeff Hicks shares his script for watching processes using a WMI event subscription using the CIM cmdlets. If you're like me, you run a lot of applications on your desktop. If you're also like me, you let applications run for days at a time. There are consequences to letting applications run indefinitely, as some apps like to chip away at memory. Browsers are a perfect example of this, where I have to remind myself to restart my browser every few days because before I realize it, the application could be using almost a 1GB of memory. But this article isn't about picking the best browser, it's about how I decided to use PowerShell to keep track of applications using a lot of memory. To do this, I'm going to create a WMI subscriber using the CIM cmdlets. I used the same ideas to create my battery watcher tool. A WMI subscriber is a special type of query that's semi-persistent. You can configure the query to check for changes to the system every X number of seconds. This is referred to as the polling interval. In this example, I'm going to check my computer every two minutes. $Poll = 120 The query is a bit different than what you would normally see with WMI. $query = "Select * from CIM_InstModification within $Poll where TargetInstance ISA 'Win32_Process' AND TargetInstance. WorkingSetSize>=$(500MB)" Let's break it down. I want to select all properties from the WMI class called CIM_InstModification. This is a special system class that's triggered when an object is modified. I don't want to find every object, as it is... --- ### Color Coding with PowerShell > PowerShell MVP Jeff Hicks continues his quest to display service statuses in a colorful format. - Published: 2016-01-19 - Modified: 2024-09-04 - URL: https://petri.com/color-coding-with-powershell/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks continues his quest to display service statuses in a colorful format. Recently, I demonstrated how to bend the rules a bit in PowerShell to provide useful color coding for your PowerShell commands. Although I'd normally encourage you to think about objects in the pipeline, playing with text sometimes fits the bill and can even be a little fun. If you missed the previous articles, take a few minutes to get caught up. Check Domain Controller Services with PowerShell Domain Controller Status Lights via PowerShell I've been using PowerShell commands to check the status of critical services on my domain controllers. To further demonstrate what you can do, I'd like to be able to have services in statuses other than running or stopped. Since we're dealing with text, I can be creative. I saved the results of my PowerShell command to get services to a text file and manually changed some of the statuses. I'll bring that file into my PowerShell session. $split = get-content C:worktestservices. txt A text array of service data (Image Credit: Jeff Hicks) This looks like regular PowerShell output, but it's a collection of strings. I want to add a stop-light effect at the end of each line to indicate the service status. Here's my next solution: foreach ($line in $split) { #append some space after the line $params=@{Object=" "} Write-Host "$line " -NoNewline #look at the line and add a parameter based on the results #of a regular expression match switch -Regex ($line) { "Stopped" { $params. BackgroundColor = "Red" } "Running" { $params. BackgroundColor... --- ### Microsoft’s Build Conference Sells Out In One Minute > Microsoft opened the doors for its Build conference registration today and if you were planning on attending, the event is now sold-out. - Published: 2016-01-19 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-build-conference-sells-out-in/ - Categories: Windows 10 - Tags: Build 2016 - Article Type: News Microsoft opened the doors for its Build conference registration today and if you were planning on attending, the event is now sold-out but you can still join the wait list. Microsoft opened the doors for its Build conference registration today and if you were planning on attending, the event is now sold-out. Much like it has done in prior years, the conference hit peak capacity quickly with the event selling out after sixty-seconds. Of course, it wouldn't be a Microsoft event without a little bit of drama. The registration page immediately began showing that the event was already 'wait listing' those who were trying to register first which created confusion for those attempting to secure their tickets. After about forty-minutes of uncertainty from those who were first to sign-up, Microsoft began sending confirmations to those on the wait list that their registration was accepted. For those who are not able to attend in person, the company will be streaming parts of the show and Steve Guggenheimer notes that they are looking to expand capacity for the event next year. Also changing this year is the that Microsoft is not giving-away any hardware. In prior years, they have handed out Xbox Ones, HP Spectre x360s, phones and more. The company may still have something up its sleeve but clearly it's not a new machine for those who are able to attend. The agenda for the show will become more clear as we get closer to March 30 but expect HoloLens and Windows 10 to be a focus point. With the company pushing heavily upon Universal apps, a type of application that can run on any of the company’s devices... --- ### Windows 10 Mobile: 10 Days On the Road with the Lumia 950 > Russell Smith shares his thoughts on 10 days on the road with Windows 10 Mobile. - Published: 2016-01-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-mobile-10-days-road-lumia-950/ - Categories: Mobile - Tags: Windows 10, Windows 10 Mobile - Article Type: Overview Russell Smith shares his thoughts on 10 days on the road with Windows 10 Mobile. It’s been a couple of months since my last overview of Windows 10 Mobile, Windows Mobile 10: The Story So Far, and since then, three Windows 10 Mobile handsets have been released in the form of the Lumia 950, 950XL, and 550, and Windows 10 Mobile will soon start rolling out to some Windows Phone 8 handsets in selected regions. What follows are my observations after 10 days' holiday in Spain with the new handset. For reference, I'm running Windows 10 Mobile 10586. 29 with the recently released Lumia 950 firmware update. Wi-Fi connectivity Windows 10 was plagued with Wi-Fi and Bluetooth connectivity issues when it was first released, and it took a good few months to iron out those problems. Unfortunately, Windows 10 Mobile doesn't seem to be faring much better. While an Android device was able to connect to the hotel Wi-Fi, stream video, and browse the web without many issues, the 950 struggled to even load sites at times. It's true that the hotel Wi-Fi itself was prone to disconnects and slow, but not to the extent that it should have been unusable. The 950 frequently drops the connection on my home 5Ghz Wi-Fi network and requires a reboot before it displays the SSID again. And while the speed issues aren't so noticeable at home, a quick test using speedtest. net showed that the Lumia has much higher network latency and lower upload speeds than a Windows 10 Asus notebook connected to the same 2. 4Ghz network. Camera... --- ### Microsoft Trims Redstone Features To Focus On OneCore and Other Systems > Microsoft has made significant updates to their internal systems to make compiling new builds of Windows 10 faster. - Published: 2016-01-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-trims-redstone-features-to-focus-on-onecore-and-other-systems/ - Categories: Windows 10 - Tags: Redstone, Windows 10 - Article Type: News Microsoft has made significant updates to their internal systems to make compiling new builds of Windows 10 faster but this extra development time has come at the cost of building features for Redstone. Later this year, targeting in the first half of 2016, Microsoft will be releasing an update for Windows 10 under the codename of Redstone. The update, which will be larger than the one delivered in November of 2015 for Windows 10, has had some re-prioritization done recently that will impact features that were initially scoped. Last week, Gabe Aul noted that the company made significant changes to OneCore, the underlying structure to Windows 10 but there have also been significant updates to the way the company internally compiles builds as well, according to individuals who asked not to be named. These updates, which have been needed for years, will improve the rate at which the company can compile builds of Windows 10 and should make it easier for the team that builds the OS to test and troubleshoot bugs. Prior to the updates made to the company’s internal systems, if you were to submit code to the main branch at 10 A. M, you would not know if your feature/bug fix worked correctly until the next morning. Effectively, this made the employee less productive because of the downtime as the provisioning systems for compilation of builds was an outdated procedure desperately in need of updating. Yes, in the scenario above, you can test the feature inside your own Windows branch but that was not a guaranteed measure of success. The updated internal systems means the company can now deploy builds faster which will help with the future development of... --- ### Microsoft Buys Minecraft for Education > Microsoft announced this morning its acquisition of MinecraftEdu, a version of the blockbuster game Minecraft that is built for the classroom. - Published: 2016-01-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-buys-minecraft-for-education/ - Categories: Cloud Computing - Tags: Minecraft, News - Article Type: News Microsoft announced this morning its acquisition of MinecraftEdu, a version of the blockbuster game Minecraft that is built for the classroom, for an undisclosed sum Microsoft announced this morning its acquisition of MinecraftEdu, a version of the blockbuster game Minecraft that is built for the classroom, for an undisclosed sum. The plan is to deliver Minecraft: Education Edition this summer in partnership with educators. "The Minecraft: Education Edition experience is being shaped in the coming months by an advisory board of educators and a free trial will be available globally this summer, in time for the new school year," a Microsoft representative told me. "It will also be accompanied by a new community site, which will offer resources such as lesson plans and a new program called Minecraft Mentors that connects experienced Minecraft educators with those introducing the title to their classroom for the first time. " Microsoft of course purchased Minecraft creator Mojang for an astonishing $2. 5 billion in September 2014. But MinecraftEdu is a separate entity that was created by teachers for use in the classroom and was supported by Mojang (and, since, Microsoft). According to the MinecraftEdu web site, MinecraftEdu is built on the commercial edition of Minecraft, and "contains the same game play, items, and graphics. But MinecraftEdu also "includes additional features that optimize the experience for classroom use," including centralized control and moderation for teachers. "Over the past few years, educators around the world have been using Minecraft to explore subjects that might not spring to mind when you think of our block-based game," Mojang's Owen Hill writes in a post announcing Minecraft: Education Edition. "Since 2011,... --- ### Microsoft Azure Prices Coming Down in February > Microsoft made some positive headlines last week when they announced that some Azure prices would be coming down soon.  - Published: 2016-01-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-prices-coming-down-in-february/ - Categories: Microsoft Azure - Tags: AWS, Azure, Cloud, Microsoft Azure, Pricing - Article Type: News Microsoft made some positive headlines last week when they announced that some Azure prices would be coming down soon. Microsoft made some positive headlines last week when they announced that some Azure prices would be coming down soon. Price reductions are always good, and Microsoft also went on to discuss some of Azure's other value propositions. Microsoft's Plan for Competing with AWS Microsoft was quite clear that they are continuing their promise to be price-competitive with Amazon Web Services (AWS). The announcement only details changes to the latest version of the popular D-Series virtual machines; Microsoft also added Dv2-Series of virtual machines last year, a newer version of the D-Series virtual machines. The D-Series uses Intel Xeon E5-2660 2. 2 GHz CPUs, and the Dv2-Series is based on a custom chip, Intel Xeon E5-2673 v3 2. 4 GHz, that is allegedly 35 percent faster. Microsoft reduced the price of the D-Series virtual machines after the release of the Dv2-Series, and there have been times since then that I have recommended the D-Series over the A-Series: Price: The D-Series is now price competitive with the lower powered and AMD-based Standard A-Series. Performance: The D-Series is capable of running heavier workloads than an A-Series, and there are some workloads where Microsoft recommends the D- and DS-Series virtual machines, such as SQL Server. The Dv2-Series will be reduced in price this February. Microsoft shared some details of how prices would be reduced in the US East 2 region: February 2016 price reductions for the Azure Dv2-Series in US East 2 (Image Credit: Microsoft) Microsoft will detail the... --- ### Easier Deployment of Azure SQL VMs > Microsoft is making it much easier for you to deploy SQL Server inside of Azure VMs in the Azure Portal.  - Published: 2016-01-18 - Modified: 2024-09-04 - URL: https://petri.com/easier-deployment-of-azure-sql-vms/ - Categories: Microsoft Azure - Tags: ARM, Azure, Azure Resource Manager, deployment, Microsoft SQL Server, SQL Server, virtual machine - Article Type: How To Microsoft is making it much easier for you to deploy SQL Server inside of Azure VMs in the Azure Portal. It's not that hard to install SQL Server, but rarely does a SQL Server deployment consist purely of an installation. There are challenges, such as designing storage, deploying networking, and configuring backup. Have you ever been in the situation where a developer asks you to restore a database, and it's the first time that you've ever heard of that database, so there's no backup to restore? I sure have, and it's not fun! Microsoft is making it much easier for you to deploy SQL Server inside of Azure VMs in the Azure Portal. Read on to learn more. A New Experience When you choose to deploy a virtual machine with SQL Server 2014 and a Resource Manager deployment model, you'll see the new SQL Server deployment and configuration experience. A new child blade, SQL Server Settings, is added to the Create Virtual Machine Blade, which lets you easily pre-configure SQL Server before the virtual machine is even deployed. The goal here is to simplify common tasks and speed up the configuration. The result should be that non-DBAs, such as developers and IT pros, produce better installations of SQL Server. Improved experience of deploying SQL Server 2014 VMs using ARM (Image Credit: Microsoft) Clicking SQL Server Settings will open up a new blade with new options to customize the SQL Server installation: SQL networking SQL authentication Storage configurations Automated patching of Windows Server and SQL Server Automated backup of SQL Server Azure Key Vault integration... --- ### Microsoft Updates Team Foundation Server and VS Team Services Roadmap > Microsoft has updated their Team Foundation Server roadmap to highlight the features that will be coming in 2016. - Published: 2016-01-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-team-foundation-server-and-vs-team-services-roadmap-for-2016/ - Categories: Visual Studio - Tags: Team Foundation Server, Visual Studio Team Services - Article Type: News Microsoft has updated their Team Foundation Server and Visual Studio Team Services roadmap to highlight the features that will be coming in 2016. If your company is reliant on Team Foundation Server or Visual Studio Team Services, knowing what is coming down the pipe from the company is important to your operations. Fortunately, Microsoft has, in recent years, become more transparent about its development cycles and has now update its roadmap for both of these services for 2016. Coming in 2016, there will be GIT SSH support, enhancements to Java, dashboard widget extensbility but not everything that will be released this year is on the roadmap. The company does this because there are features that are on the fringe of being included or not fully defined and they also like to keep some items hidden to delight their users with new product announcements. The company is using the roadmap, which you can view here, to augment their UserVoice site. If you want a new feature added to the software, the company says that UserVoice is the best way to provide feedback about current and upcoming additions to Team Foundation Server and Visual Studio Team Services. As with all roadmaps, the timelines listed are a target and are not set in stone. Knowing this, don’t be surprised to see some dates updated as the year progresses to reflect the realities of the current development cycle. --- ### Microsoft Brings Windows 10 to Retailers - Published: 2016-01-17 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-brings-windows-10-to-retailers/ - Categories: Windows 10 - Tags: News - Article Type: News While most people associate Windows with personal computing devices such as PCs, tablets, and phones, Microsoft is of course bringing Windows 10 to a much broader array of device types. And this week, Microsoft added retailing to that list. While most people associate Windows with personal computing devices such as PCs, tablets, and phones, Microsoft is of course bringing Windows 10 to a much broader array of device types. Among the lesser-known are Windows 10-based solutions for banking, industrial manufacturing, financial services, and other markets. And this week, Microsoft added retailing to that list. As it is every year, Microsoft is in New York this week at the National Retail Federation’s annual "Big Show" convention and expo, showing off its latest offerings to retailers. "It’s clear from the shopping trends in recent years and the fierce competition retailers face, that they need to create differentiated and delightful digital experiences for customers to use when and wherever they choose: in-the-store, online and on-the-go," Windows Product Marketing lead Jeremy Korst explains. "Shopping experiences are increasingly more interactive, more personal and more multi-channel. " A year ago, Microsoft was talking up Windows 8. 1 at the Big Show, and emphasizing modern new Point Of Sale (POS) systems that could be used in restaurants, retail stores, and other operations, as well as back-end inventory and supply chain systems. This year, Microsoft is of course talking up Windows 10, but more generally the focus is on retail experiences. At the Big Show, Microsoft is showing off the following Windows 10-based partner solutions. Mondelēz Diji-touch machine. Powered by Windows 10, Kinect, and Azure IoT, this new vending machine from the company behind Oreo cookies, Ritz crackers, Trident gum, and other popular brands feature a 40-inch... --- ### Microsoft Shares New Details On HoloLens: Up to 5.5 Hour Battery Life, Device Link And More > New details about Microsoft's upcoming Hololens have been announced at an event in Tel Aviv that include battery life, connectivity and more. - Published: 2016-01-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-shares-new-details-on-hololens-up-to-5-5-hour-battery-life-device-link-and-more/ - Categories: Hardware - Tags: HoloLens - Article Type: News New details about Microsoft's upcoming Hololens have been announced at an event in Tel Aviv that include battery life, connectivity and more. At an event in Tel Aviv, Bruce Harris, a Microsoft Technical Evangelist, shared new details about the company’s upcoming Hololens. The highly anticipated device will start shipping to developers this quarter but the company has not announced yet when the device will generally available to consumer or enterprise clients. Bruce notes that any universal application that can currently run on Windows 10, will run natively, out of the box, on Hololens and the device is “totally wireless” and uses Wi-Fi and Bluetooth for communication. In fact, there will not be a wired option for this device. Battery life, while it depends on your usage, can run up to 5. 5 hours and under heavy load is closer to 2. 5 hours when pushing the device to its limits; anything can connect to the device, as long as it supports Wi-Fi or Bluetooth. https://www. youtube. com/watch? v=YgmvekSmhrM Field of view is similar to a 15in monitor about two feet away from your face and the reason for this size on the field of view is because of cost and battery-life. Harris notes that as manufacturing improves, the company intends to expand the field of view once it makes sense from a pricing perspective. Harris also says that they are manufacturing the device themselves but it is not being made in the US like the Surface Hub. One of the other unique experiences that you can do with a Hololens is to link devices together to share an experience; in this mode, two or more... --- ### Create an Azure Premium Storage Account > Aidan Finn shows us how to create an Azure Premium Storage Account, along with steps for deploying necessary storage for virtual machines. - Published: 2016-01-15 - Modified: 2024-09-04 - URL: https://petri.com/create-an-azure-premium-storage-account/ - Categories: Microsoft Azure - Tags: Azure, IaaS, Premium Storage, SSD, virtual machines - Article Type: How To Aidan Finn shows us how to create an Azure Premium Storage Account, along with steps for deploying necessary storage for virtual machines. I explained the role of shared-SSD Azure Premium Storage accounts in a previous post. In this post, I'll show you how you can deploy the necessary storage for DS-Series and GS-Series virtual machines. Pre-Flight Checklist Before you go anywhere, you need to check two things: Price: Can you afford and justify the cost of Premium Storage virtual hard disks? Availability: Is Premium Storage available in your region? More regions than not do have Premium Storage, but there are some gaps in coverage, such as India. You should also understand that Premium Storage is not able to offer geo-redundancy; you only get locally redundant storage (LRS), which keeps three synchronously replicated copies in a single facility. And at this time, Premium Storage is not supported by Azure Backup for IaaS VMs. You can vote for that feature here. Creating the Premium Storage Account Log into the Azure Preview Portal once you are ready. Next, click New > Data + Storage > Storage Account. If you are not using Azure Resource Manager, then stick with the Classic deployment model, and click Create. A new Storage Account blade will appear. Enter a unique name for the storage account. This name will be used as the root of a domain name. For example, if I create a storage account called petripremiumaf, then the domain name of the storage account will be petripremiumaf. core. windows. net. Click Pricing Tier. This is where we will specify that we want a premium storage account instead of a standard storage... --- ### Microsoft Announces Limited Support For Windows 7 With Skylake CPUs > Microsoft has announced that if you are planning to run Windows 7 on a Skylake CPU, there will be limited support for new machines. - Published: 2016-01-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-limited-support-for-windows-7-with-skylake-cpus/ - Categories: Windows 7 - Tags: Skylake, Windows 7 - Article Type: News Microsoft has announced that if you are planning to run Windows 7 on a Skylake CPU, there will be limited support for new machines that ends on July 17, 2017. Earlier this year, Intel released its next generation chips that are referred to as Skylake for the consumer and in the near future, a new wave of business machines using a business class version of these CPUs will be released. Generally new processors are a good thing, but if you are running Windows 7 or 8. 1, Skylake presents a few problems. Windows 7 was released in 2009 and while it is widely used by business customers today, using silicon that is designed for tomorrow's computing environment has presented a few problems with performance and stability. Specifically, Microsoft says that to make the older operating systems run on the newer chips, they need to emulate Windows 7's environment, which has a negative performance impact on WiFi, graphics, security, and more. To make sure that your machine works well with the older operating systems, Microsoft is going to be publishing a list of machines from large OEM vendors that will officially support the new chips. The reality of this means that if you are going to be buying a new machine with a Skylake processor, you need to make sure it is on the supported list that Microsoft will be posting next week, otherwise it will not receive the updates necessary for Windows 7 or 8. 1 as you would expect. Microsoft refers to these Skylake devices as transition devices, and there is limited support of this hardware that you should be aware of. The company will be delivering the driver... --- ### Paul Thurrott's Short Takes: January 15 - Published: 2016-01-15 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-15/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion This week: Microsoft's share of the enterprise cloud, the missing Windows 7 convenience rollup, Microsoft's iOS porting tools move forward, Intel meets expectations while Xiaomi does not, and Xbox One just can't catch a break. Snoop Dogg: Microsoft customer. Because it's the ides of January, this week's other news includes Microsoft's share of the enterprise cloud, the missing Windows 7 convenience rollup, Microsoft's iOS porting tools move forward, Intel meets expectations while Xiaomi does not, and Xbox One just can't catch a break. Report: Microsoft, Google are enterprise cloud leaders A new report from Gartner claims that Microsoft and Google are the current leaders in the enterprise cloud market. But this report highlights a more important bit, of data, I think: That the vast bulk of IT infrastructure in the enterprise is still tied up in on-premises servers, not the cloud. Gartner says that about 13 percent of enterprises use Microsoft (8. 5 percent) or Google (5. 5 percent) for cloud services, while the rest use purely on-premises or hybrid systems. Microsoft controls 80 percent of the firms with revenues above $10 billion, while it splits the rest 50/50 with Google. So two final thoughts here. Enterprise cloud growth is a hugeopportunity for Microsoft going forward. And Amazon. com is a third player we need to seriously consider in this market. "Snoop Dogg goes after Microsoft and Bill Gates online" Better than in person, obviously. Where's my Windows 7 convenience rollup? You may recall that Microsoft has abandoned its old service pack scheme, at least for Windows. But that leaves those on Windows 7 and Windows 8. x, in particular, in the lurch, since there are about 1107 updates to install when you... --- ### Windows 10 Tip: Use Cortana to Send Text Messages and Receive Missed Call Notifications > In today's Ask the Admin, Russell Smith shows us how to send text messages using Cortana in Windows 10. - Published: 2016-01-15 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-use-cortana-to-send-text-messages-and-receive-missed-call-notifications/ - Categories: Windows 10 - Tags: Cortana, Windows 10, Windows 10 Mobile - Article Type: How To In today's Ask the Admin, Russell Smith shows us how to send text messages using Cortana in Windows 10 and how to make sure missed call notifications are enabled. Back in June, I walked through some of Cortana's basic functionality in Windows 10 on Petri: How to Use Cortana in Windows 10. Since the official launch of Windows 10 in July, the OS has received numerous cumulative updates and a new build in the form of the November Update. Microsoft added deeper integration with Cortana on Windows 10 Mobile, which is available on the Lumia 950 and 950XL handsets and can be used on existing Lumia devices if you're a Windows Insider. In today's Ask the Admin, I'll show you how to send text messages using Cortana in Windows 10 and how to make sure missed call notifications are enabled. To follow these instructions, you will need Windows 10 November Update on your PC, but also build 10586 or later of Windows 10 Mobile running on your handset. Additionally, you must be signed in to Windows on both devices using your Microsoft account. Sending text messages While I mostly prefer to use WhatsApp or Facebook Messenger to communicate with friends and family, there are times when I still use text messages. For example, for those who don't use smartphones, or when I can't be sure if the recipient has Internet access, so an SMS is a more likely to be read if the message is urgent. To send an SMS from Windows 10, all you need to do is type a text command into the search box on the taskbar. For example: send text russell smith I'm... --- ### The Sams Report EP 24: Windows 10 Gets A New ARM, Windows 8 Says Goodbye > On this episode, I cover the all the news that Microsoft announced this week including how the company is working to speed up the adoption of Windows 10. - Published: 2016-01-15 - Modified: 2024-09-04 - URL: https://petri.com/the-sams-report-ep-24-windows-10-gets-a-new-arm-windows-8-says-goodbye/ - Categories: Podcast - Tags: Sams report - Article Type: News On this episode, I cover the all the news that Microsoft announced this week including how the company is working to speed up the adoption of Windows 10. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the all the news that Microsoft announced this week including how the company is working to speed up the adoption of Windows 10, saying goodbye to Windows 8 and the uncovering of a new branch of Windows 10 for ARM processors. If you have any questions, you can ask in the chatroom during the livestream or after the show, you can find me at @bdsams on Twitter. https://www. youtube. com/watch? v=0s6p6kz-2fo An audio replay is available here. RSS | SoundCloud | YouTube | iTunes --- ### Microsoft To Support ARM64 ‘Across All Device Categories’ With Redstone > Later this year, Microsoft will be releasing a new update for Windows 10 called Redstone and it is said to enable ARM64 support. - Published: 2016-01-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-support-arm64-across-all-device-categories-with-redstone/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: News Later this year, Microsoft will be releasing a new update for Windows 10 called Redstone and it is said to enable ARM64 support across all device categories support. Later this year, Microsoft will be releasing a new update for Windows 10 called Redstone. The update will come in two waves, one currently targeted for June and the other in the November timeframe and coming with this release will be support for ARM64, according to a new job posting. A job posted on the Microsoft Careers website states that the company's plans for running Windows on ARM (WOA) did not end when they stopped selling Windows RT based devices; Windows RT was the company’s first attempt at a widely-available desktop OS running on ARM processors. The job posting makes it clear about the company's intentions with ARM64: “Windows across all device categories is readying for the introduction of 64 bit computing with the ARM instruction set (ISA). ”. Further, the company says that the candidate who takes this position will be “Building the plan for ARM64 aligned with the Redstone wave” which means that ARM64 based Windows should be happening this year. Given that it is already mid-January, this likely means this project is already well underway at this time. Yesterday, it was uncovered that Microsoft is working on Windows 10 Desktop for ARM devices, thanks to a support page stating that they were doing so. It should be noted that Microsoft has now edited that page to remove the reference but the job posting linked to above does make it appear that Windows 10 Desktop on ARM64, to some capacity, is actively being developed inside the company. Microsoft says, in the job... --- ### Microsoft Continues To Chase Amazon In The Race To The Bottom Of The Cloud > Microsoft has announced a price reduction for some of its Azure services, which mirror a recent price drop by Amazon. - Published: 2016-01-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-continues-to-chase-amazon-in-race-to-the-bottom-of-the-cloud/ - Categories: Amazon Web Services, Cloud Computing, Microsoft Azure - Tags: Amazon, Azure, EC2, Microsoft - Article Type: News Microsoft has announced a price reduction for some of its Azure services which mirror a recent price drop by Amazon as both companies compete fiercely for new business. Microsoft and Amazon are the two cloud juggernauts fighting fiercely to win over corporate clients with their suite of services. Knowing that most customers are likely to become entrenched in a cloud's platform once they make the move to a service, both companies are doing nearly everything they can to entice potential customers to build applications on their platform. Earlier this year, Amazon announced a price reduction for its M4, C4 and R3 services that utilize Linux services, and now Microsoft is cutting prices as well. The company announced in a post today that they will be reducing prices up to 17 percent for the latest version of the popular Azure D-series virtual machines, Dv2 Virtual Machines. From a value perspective, Microsoft points out that its Dv2, unlike EC2, instances include load balancing and auto-scaling as well. The image on the right is from Microsoft's announcement post that you can view here, and shows the price reduction across each SKU. For both Amazon and Microsoft, cloud services represent a new opportunity in a marketplace that is expanding rapidly. With corporations traditionally spending millions a year on on-prem hardware, Amazon and Microsoft are working to show the value proposition of moving those dollars to the cloud. The cloud marketplace is primarily made up of Microsoft and Amazon with Google only recently starting to get serious about competing in this arena as well. Because it requires billions of dollars to build out data-centers around the world, the competitors in this... --- ### Getting the Most Out of Office 365: Working in OneDrive for Business > Learn how Office 365's OneDrive for Business can boost employee productivity with its collaboration tools for the cloud. - Published: 2016-01-14 - Modified: 2024-09-04 - URL: https://petri.com/getting-office-365-working-onedrive-business/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365, OneDrive for Business - Article Type: How To Learn how Office 365's OneDrive for Business can boost employee productivity with its collaboration tools for the cloud. Getting more done with the same amount of time and people is the goal of every business. While working in the cloud doesn't magically unlock employee productivity, it can help eliminate redundancies. Sending attachments may be reliable, but finding those files, making comments, and merging changes from several different editors is enough of an issue for many workers to make the cloud look enticing. The backbone of being productive in the cloud with Office 365 is OneDrive for Business. Microsoft needed to solve several logistics problems when creating OneDrive for Business. First, the new multi-device workflow of professionals makes accessing documents difficult. OneDrive for Business lets a document be created on a phone, edited on a laptop, and then finalized on a desktop. The best part about this new workflow is that the file explorer can be completely skipped. Now once a document has been created, it can be accessed via recent or pinned documents from the starting splash screen of the new Office apps, online, or desktop programs. This means if the document lives on the cloud, users get a similar experience because the 'recent' documents are built from local machine and cloud saved documents. In a traditional business setting, when employees want to work together with one file, they place it in a shared server directory and share a link to that location. This system works when every employee who needs access can access the file either by direct connection or VPN to the server. Anyone... --- ### What is GitHub? > Learn about the Git version control system (VCS) and the cloud GitHub service. - Published: 2016-01-14 - Modified: 2024-09-04 - URL: https://petri.com/what-is-github/ - Categories: Cloud Computing - Tags: Azure, Cloud, development, PowerShell - Article Type: Overview Learn about the Git version control system (VCS) and the cloud GitHub service. On the Petri IT Knowledgebase, I contributed a piece called What is JSON and How Is It Used? Following on from that in today's Ask the Admin, I'd like to talk about another developer tool that system administrators may already have encountered, because it's becoming more common for GitHub to be used for storing code and scripts associated with Microsoft products, such as Azure, Windows Server, and PowerShell. Git Let's start with Git, which is an open-source versioning system for code. While Git is technically a separate entity from the Hub, i. e. it can be used without the Hub, you can think of Git’s functionality a little like the versioning control for documents in SharePoint. Developers add fresh code to a project or download existing code from GitHub, make changes, and commit code to a local database maintained by Git. Snapshots make Git more efficient than other version control systems, and instead of making copies of files that haven't changed since the last commit operation, links are provided to unchanged files. Other advantages include built-in integrity checking so that file corruption never poses a problem and the ability to experiment freely with code because once committed, files are hard to lose or remove. Project files in Git can have one of three states: committed, modified, or staged. Committed files are written permanently to the local database, while modified files have changed but yet to be committed. Finally, staged files are unchanged but marked to be committed in the next... --- ### Windows 10 Desktop On ARM Discovered in Microsoft Documentation > Thanks to documentation spotted on Microsoft's website, it looks like the company has built a version of Windows 10 that runs on ARM chips. - Published: 2016-01-14 - Modified: 2024-11-19 - URL: https://petri.com/windows-10-desktop-for-arm-is-in-development/ - Categories: Windows 10 - Tags: Windows 10 ARM - Article Type: News Thanks to documentation spotted on Microsoft's website, it looks like the company has built a version of Windows 10 that runs on ARM chips and may even have a compiler for Win32 apps as well. Several years ago, Microsoft released Windows RT, a version of its desktop operating system that would run on ARM based chips that offered up the classic Windows desktop but could only run applications from the Windows Store. The OS never caught on with consumers, primarily because of a lack of clear communication from Microsoft, and the company eventually stopped offering devices running the operating system. But, it looks like Microsoft is not quite done supporting Windows on ARM chips. Thanks to documentation for Audio Engine Core Test found on Microsoft’s MSDN portal, the company clearly lists Windows 10 for desktop, ARM. Also notable is the support for Windows 10 Mobile ARM64 and Windows 10 Mobile x86, the latter could be used to create an Intel powered smartphone that runs the company’s mobile operating system. One of the primary problems with Windows RT was the lack of Win32 application support. WalkingCat, who found the initial documentation, also notes that a Microsoft employee has listed on his LinkedIn account that they helped prototype an x86 compatibility subsystem for Windows on ARM based on x86-to-ARM just-in-time (JIT) emulator. If Microsoft is seriously perusing this option, which it appears that they are to some degree, then they have the emulator needed to run Win32 apps on an ARM based machine but how well these apps would perform is a big unknown variable; it should be noted Alex worked on this emulator two years ago. Microsoft has been experimenting quite a bit with ARM,... --- ### Microsoft’s Next Aggressive Windows 10 Step Focuses on Domain Joined Machines > Microsoft's next step in getting users to upgrade to Windows 10 will focus on domain joined machines. - Published: 2016-01-13 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-next-aggressive-windows-10-step-focuses-on-domain-joined-machines/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: News Microsoft's next step in getting users to upgrade to Windows 10 will focus on domain joined machines with an updated app that will roll out later this month. There is no question about it, Microsoft wants your PC running Windows 10. The company has made the upgrade free for Windows 7 and 8. 1 users, released a ‘Get Windows 10’ app and will soon switch the ‘optional’ Windows Update files to ‘recommended’; but the fun doesn’t stop there. Microsoft announced today that the ‘Get Windows 10’ app that consumers have had on their machines to make it easier to upgrade to the new OS is coming to small business and other small organizations. The company says they have received requests from customers of these smaller organizations to be able to use “Get Windows 10” app on their machines but currently the app will not run on devices that are joined to an Active Directory domain. Microsoft makes it clear that for these new machines that will start seeing the “Get Windows 10” app later this month that they must be also receiving updates directly from the Windows Update service. The following criteria is being used to deliver the app: Running and licensed for Windows 7 Pro or Windows 8. 1 Pro Configured to receive updates directly from the Windows Update service (i. e. updates are not managed by WSUS or System Center Configuration Manager on those devices) Joined to an Active Directory domain If you work for an organization that wants to avoid this scenario, Microsoft has published the steps needed to block this process that you can view here. Microsoft’s is moving aggressively to get as many devices... --- ### More Answers to Your PowerShell Problems: Using and Extending Objects > PowerShell MVP Jeff Hicks continues his exploration of using and extending objects to solve a scripting challenge. - Published: 2016-01-13 - Modified: 2024-09-04 - URL: https://petri.com/answers-powershell-problems/ - Categories: PowerShell - Tags: Intermediate, Scripting - Article Type: How To PowerShell MVP Jeff Hicks continues his exploration of using and extending objects to solve a scripting challenge. In a previous article, we began exploring possible answers to a PowerShell question. If you missed that article, take a moment to get caught up, otherwise this article might be a bit confusing. Related: The Answer to Your PowerShell Question: Working with Objects The last option for the original problem that I want to explore is to use PowerShell's Add-Member cmdlet. This is similar to using Select-Object,  except it updates the original object. So let's start again with initial values. $amount = 123. 45 $interest = . 12 If you pipe $amount to Get-Member, you'll see that there are no properties. I'll add one for the value itself. $amount | Add-Member -MemberType ScriptProperty -Name Value -Value {$this} I need to use a ScriptProperty, because I must have PowerShell evaluate the object. In this context, this is reflected by $this, as opposed to $_. I can create a static note property for the rate. $amount | Add-Member -MemberType NoteProperty -Name Percent -Value ($interest *100) And finally scriptproperties to calculate new values: $amount | Add-Member -MemberType ScriptProperty -Name Increase -value {$this * ($this. Percent/100)} $amount | Add-Member -MemberType ScriptProperty -Name NewValue -value {$this + $this. Increase} These new properties are now reflected with Get-Member. Viewing new properties (Image Credit: Jeff Hicks) To view them, I need to specify them. $amount | select * Values from added properties (Image Credit: Jeff Hicks) As an added bonus, I can modify a property value and get updated results... . --- ### The Open Source Community Can Now Help Improve Microsoft Edge > Microsoft has posted its ChakraCore repository to GitHub which means that anyone in the open source community can contribute code to the engine. - Published: 2016-01-13 - Modified: 2024-09-04 - URL: https://petri.com/the-open-source-community-can-now-help-improve-microsoft-edge/ - Categories: Windows 10 - Tags: chakra, Edge - Article Type: News Microsoft has posted its ChakraCore repository to GitHub which means that anyone in the open source community can now submit code that could ship with the Edge browser. During 2015, Microsoft made significant strides to improving its relationship with the open source community. Everything from improved support of Linux operating systems on Azure to open-sourcing code for some of its key assets were all announced. In December, the company said that they would open-source key components of their Chakra JavaScript engine and today, they have made good on the promise. Under the MIT License, you can now view the ChakraCore repository on GitHub and going forward, the company will be developing the engine in the open. One of the primary benefits of moving to this model is that the open source community can now submit code that will be used in the shipping version of Microsoft Edge and the Universal Windows Platform. The company will review all of the code submission prior to integration into their own internal Charkra engine for Edge but for the first time, anyone can now help make Edge a better browser. The company is also releasing a roadmap for the new ChakraCore on GitHub as well. In addition to cross-platform support, some milestones on the roadmap include: Submitting a pull request to Node. js mainline to enable it to run with ChakraCore Continuing to make progress on JavaScript language innovation and standards Improving the diagnostics support With today’s release, you can use the new software on a PC that is running Windows 7 SP1 or above with Visual Studio 2013 or 2015 with C++ support installed. You can learn more about the... --- ### Microsoft’s Build 2016 Registration Opens January 19th > Microsoft has announced that registration for its Build 2016 conference will open up on January 19th at 9 AM and the event will likely sell out quickly. - Published: 2016-01-13 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-build-2016-registration-opens-january-19th/ - Categories: Windows 10 - Tags: Build 2016 - Article Type: News Microsoft has announced that registration for its Build 2016 conference will open up on January 19th at 9 AM and the event will likely sell out quickly. Microsoft has announced today that its annual Build conference registration will open on January 19th. The event will take place in San Francisco from March 30th to April 1st and it is the company’s premier developer conference that highlights the latest tools and technologies from the company. Last year, the event sold out within minutes, which means getting a ticket to the show is not something that you can sit around and think about. If you are planning to attend, it’s best to start buttering up management to get them to approve the expense long before the tickets go on-sale. The registration from will go live at 9:00 A. M PT / 12 PM ET at the Moscone Center, the same place the company has held the previous Build events. The agenda for the show will become more clear as we get closer to March 30 but expect HoloLens and Windows 10 to be a focus point. With the company pushing heavily upon Universal apps, a type of application that can run on any of the company’s devices including the Xbox One, expect to hear more about improved functionality of the development framework. Build is a big event for Microsoft, not only in terms of attendance, but it also sets the tone for the remainder of the year in terms of what the company will be working on internally. Those who are able to attend the technical sessions are also able to receive technical information about current products as... --- ### IDC: PC Sales Experienced Record Decline in 2015 As Expected - Published: 2016-01-13 - Modified: 2024-09-04 - URL: https://petri.com/idc-pc-sales-experienced-record-decline-in-2015-as-expected/ - Categories: Windows 10 - Tags: News - Article Type: News Despite a modest improvement in the fourth quarter, PC sales in 2015 met expectations and delivered the largest year-over-year decline in history, with PC makers selling fewer than 300 million units for the first time since 2008. PC makers compared: 2015 vs. 2015 (Data source: IDC) Despite a modest improvement in the fourth quarter, PC sales in 2015 met expectations and delivered the largest year-over-year decline in history, with PC makers selling fewer than 300 million units for the first time since 2008. These results are from the market researchers at IDC only. I'm still waiting on Gartner for a more complete view of the PC market, as IDC miscounts some PCs as different types of devices. But IDC's view is clear enough: 2015 was bad for the PC industry, but the firm expects some improvement, finally, in 2016. "The PC market remains competitive and the economic environment weakened further with the recent drop in the Chinese stock market," IDC vice president Loren Loverde said in a prepared statement. "However, PC replacements should pick up again in 2016, particularly later in the year. " PC makers sold 71. 9 million units worldwide in Q4 2015, IDC says, a year-over-year decline of 10. 6 percent. (IDC reported that 80. 4 million PCs were sold in Q4 2014. ) Those sales were in line with IDC's "already conservative expectations," the firm reported. For the year, PC makers sold 276 million units, compared to 308 million in 2014. Assessing blame for the PC industry's continued ills, IDC said that there were multiple factors at play. First and most obviously, PCs enjoy much longer life cycles in the past. This is in part due to higher quality, and in part... --- ### Microsoft Announces R Server And R Server Developer Edition > Microsoft has announced a new product for the company, Server R, which is a re-branding of  Revolution R Enterprise for Hadoop, Linux and Teradata. - Published: 2016-01-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-r-server-and-r-server-developer-edition/ - Categories: Microsoft Azure - Tags: Server R - Article Type: News Microsoft has announced a new product for the company, Server R, which is a re-branding of Revolution R Enterprise for Hadoop, Linux and Teradata. During the past year, Microsoft has made significant strides to improving its support for R across its products and by being a founding member of the R Project. The company also acquired Revolution Analytics that provides software and services for R, which is the most widely used statistical computing and predictive analytics language in the world. To help clean up its products and align its newly acquired software with its corporate branding, the company has announced R Server, which is the re-branding of Revolution R Enterprise for Hadoop, Linux, and Teradata. In addition to R server, the company has announced R Server Developer Edition, which has all the features of the commercial version, but as a free download. If you were using Revolution R Open, that product has been re-branded to Microsoft R open and is a free download. Also, If you use the Microsoft Data Science Virtual Machine, this will now come with a per-installed and per-configured version of Microsoft R Server Developer Edition. The company will also be bringing R Server to the Azure Marketplace in the near future, as well as integrating Revolution’s scalable R distribution into Azure HDInsight and Azure Machine Learning. Microsoft R Server is designed to be a platform for enterprise class analytics that is scalable and secure. Seeing as the company has been pushing the capabilities of its machine learning and scalability with Azure, Server R fits nicely into the company’s portfolio of enterprise grade applications. You can read more about R Server... --- ### Performance Improvements in Azure Backup > Azure Backup is finally starting to generate interest among SMEs, thanks to the slew of recent improvements that were driven by customer feedback. - Published: 2016-01-12 - Modified: 2024-09-04 - URL: https://petri.com/performance-improvements-in-azure-backup/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Backup, Cloud, hybrid cloud, IaaS, Microsoft Azure Backup Server - Article Type: Overview Azure Backup is finally starting to generate interest among SMEs, thanks to the slew of recent improvements that were driven by customer feedback. Azure Backup is finally starting to generate interest among small and medium enterprises (SMEs), which is mainly driven by the huge amount of improvement in the service that Microsoft Azure developers have been working on. In this article, I'll outline recent performance in Azure Backup, where some of these improvements have come with a recent update to the Azure Backup agent. Improvements in Microsoft Azure Backup Server This biggest improvement I've witnessed so far is the launch of the Microsoft Azure Backup Server (MABs) as a part of Project Venus. It amazes me how few people are aware that Microsoft is giving away an enterprise-class backup product for free to customers of Azure Backup. This disk-to-disk-to-cloud solution, installed on an on-premises machine, will protect the following: Files and folders Hyper-V Windows or Linux virtual machines SQL Server SharePoint Exchange Local cheap disk storage is used for short-term retention. Azure backup vaults are used for long term retention, and all data is compressed and encrypted before it's sent to Microsoft. You have two different options for a restore. First, you can restore from the local short term storage. The second method can be accomplished by reaching back in time and download from the Azure backup vault, which results in no outbound data transfer charges for Azure Backup. If you're in the market for a backup solution that will protect a Microsoft-centric workload that can do automated off-site storage using the cloud, then you really need to look at Microsoft Azure Backup... --- ### Microsoft Ends Support For Its Divisive OS, Windows 8 > WIndows 8 support is coming to an end which marks the closure of an era for an operating system that cost two executives their jobs. - Published: 2016-01-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ends-support-for-its-divisive-os-windows-8/ - Categories: Windows 8 - Tags: Windows 8 - Article Type: News Support for Windows 8 is coming to an end, which marks the closure of an era for an operating system that cost two executives their jobs and significantly hurt the company's mobile initiatives. Microsoft released Windows 8 in October 2012, and introduced a new way to think about the OS. It was also universally disliked by both consumers and the enterprise. Although the OS did away with the Start button and attempted to introduce a touch-friendly environment, it was a disjointed implementation that caused trouble for Microsoft right from the start. Now, Windows 8 support is coming to an end. After today, the company will cease developing patches for vanilla Windows 8, which means that your machine will become vulnerable to new exploits starting tomorrow. It's important to note that this is not the end of support for Windows 8. 1, a version of Windows 8 that returned the Start button (but not the menu) to the taskbar, as it will continue receive Mainstream Support until January 9, 2018, and Extended Support until January 10, 2023. If you are running Windows 8, then you need to move to 8. 1 immediately to make sure your machine remains secure. You can download Windows 8. 1 from Windows Update today. Along with the end of support for Windows 8, the company is sunsetting Internet Explorer 8, 9 and 10. Windows 8 was a disaster for Microsoft, as it did not entice users to upgrade from Windows 7 and eventually cost two executives their jobs, Steve Ballmer and Steven Sinofsky. Because the OS failed on the desktop, it also significantly hurt the company's mobile OS, Windows Phone 8, from being widely adopted, as developers saw little reason to... --- ### Getting Started with the PowerShell 5.0 Information Stream > Learn how to leverage the PowerShell 5.0 information stream, which lets serves as a logging mechanism for scripts and functions. - Published: 2016-01-12 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-powershell-5-0-information-stream/ - Categories: PowerShell - Tags: Intermediate, PowerShell 5.0, write-information - Article Type: How To Learn how to leverage the PowerShell 5.0 information stream, which lets serves as a logging mechanism for scripts and functions. One of the great additions to PowerShell 5. 0 is the new information stream. You can use this stream as a logging mechanism in your scripts and functions, which is something I want to demonstrate today. Related: Moving to PowerShell 5. 0 There are three elements that you'll need to understand to make this all work: a preference variable, a cmdlet, and an output variable. The new cmdlet is called Write-Information, which by itself doesn't appear to do anything. Write-Information (Image Credit: Jeff Hicks) That's because there's a new preference variable in PowerShell 5. 0, much like ErrorActionPreference and VerbosePreference, called InformationPreference. It uses the same values as the other preference variables. The default is SilentlyContinue. Default value for InformationPreference (Image Credit: Jeff Hicks) This means that the information stream is turned off. To turn it on, set the InformationPreference value to Continue. Testing the new InformationPreference value (Image Credit: Jeff Hicks) Now, that hardly looks exciting, and there's not much to do with it. That's because we need the third element, an output variable. PowerShell 5. 0 includes a new common parameter, like outputvariable and ErrorVariable, called InformationVariable. This parameter has an alias of iv. Let's repeat the process. Using the InformationVariable parameter (Image Credit: Jeff Hicks) This still doesn't look like much, but we'll get there. Before we get too far, there's another new parameter called InformationAction, which has an alias of infra. Like the common... --- ### Understand Your Microsoft Azure Spending > Learn how to better understand your Microsoft Azure spending with these quick tips from Aidan Finn. - Published: 2016-01-11 - Modified: 2024-09-04 - URL: https://petri.com/understand-your-microsoft-azure-spending/ - Categories: Microsoft Azure - Tags: Account, Azure - Article Type: How To Learn how to better understand your Microsoft Azure spending with these quick tips from Aidan Finn. Imagine that you've deployed something in Azure, expecting it to cost $200 per month, but instead find that your boss gets a bill for $1,000. That's when your boss will ask you to find out how the money disappeared. In this article, I'll help you understand how much you are really spending in Microsoft Azure. Step 1: Understand Azure Pricing If you want to know where you are spending in Azure, then you need to understand: What you have deployed How the elements that make up the solution are priced I have to be blunt here: it's quite a mammoth task to learn how Azure pricing works. Azure is a utility, so your services are measured and charge on a utilization basis. There is no "pricing for a VM in the cloud"; instead, the solution will be comprised of billable items that potentially include the following: Virtual machines Standard storage for virtual machine disks Premium storage for virtual machine disks Storage transactions Azure backup for virtual machines Standard storage for Azure backup VPN gateway for hybrid networking Outbound data transfers, or data that's leaving the Azure region To be honest, most of the costs are pretty predictable. If I deploy a D2 v2 virtual machine in East US 2, then I know that it will cost $0. 289 per hour, averaging around $215 per month. Storage for virtual machines is pretty predictable, too. I'm the one responsible for creating and sizing my data disks. Costs that are more difficult to estimate... --- ### Windows 10 Tip: Sharing in Windows Store Apps > Here's a quick tip for working in Windows 10: Learn how to easily share information in Windows Store apps. - Published: 2016-01-11 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-sharing-windows-store-apps/ - Categories: Windows 10 - Article Type: How To Here's a quick tip for working in Windows 10: Learn how to easily share information in Windows Store apps. In today's Ask the Admin, I'll show you how to share information between Windows Store apps in Windows 10. A key difference between Windows 7 and Microsoft's latest desktop OS, Windows 10, is the presence of Windows Store apps. First introduced in Windows 8 as a means of deploying secure, efficient, touch-friendly apps for small form factor devices, store apps have evolved to become more desktop friendly. But most importantly and in contrast to Windows 8, Windows 10 store apps run in desktop windows, blurring the line between traditional win32 programs and the new store apps. Even Microsoft's new default Edge browser is a Windows Store app. Less cutting and pasting, and more sharing The ability to share information between apps provides an elegant workflow that avoids the CTRL+C and CTRL+V cutting and pasting that we're all so familiar with. This functionality is necessary partly because traditional cut and paste operations are a little more cumbersome to perform on touch devices, but the new sharing method also comes in handy on PCs. For the purpose of this article, I'll show you how to share information from Edge, because that's the app that you're most likely to share from. But in principle, developers can enable sharing from any Windows Store app. Sharing in Microsoft Edge There are two options for sharing data in an app. The first is to share an entire page, and the second is to select an item to share. Most apps allow you to share... --- ### About 20% of Internet Explorer Users Will Be Using Unsupported Software Starting This Week > Microsoft is ending support for Internet Explorer 8, 9, and 10 which means that no additional security patches will be released. - Published: 2016-01-11 - Modified: 2024-09-04 - URL: https://petri.com/nearly-20-of-internet-explorer-users-will-be-using-unsupported-software-starting-this-week/ - Categories: Windows 7, Windows 8 - Tags: Internet Explorer - Article Type: News Microsoft will end support for Internet Explorer 8, 9, and 10 this week which means that if you are still using the browser, your PC will soon become vulnerable to external threats as no future security patches will be released. This week will mark the end of a dark time for Internet Explorer, as versions 8, 9, and 10 will no longer be supported after tomorrow. This means that if you are running the legacy browser, it is time to upgrade to make sure your machine is protected from external threats. For web developers, older versions of Internet Explorer, especially 8 and 9, have been a burden to support as they require unique attributes to make a page display correctly when compared to other browsers like Chrome, Firefox, or even Internet Explorer 10 and 11. If you are running Windows Vista, Internet Explorer 9 will still be supported, but it will not receive updates on any other version of Windows. With a patch that should be released tomorrow, Microsoft will deliver the final security updates to the browser and with about 20 percent of Internet Explorer users browsing with a soon-to-be unsupported version of the software, according to Net Applications, this becomes a large target for malicious groups. If you are using one of the impacted browsers, Microsoft recommends that you upgrade to IE 11; alternatively, you can download Chrome or Firefox. Internet Explorer usage. (Image Credit: Net Applications) Microsoft has faced stiff competition from Google and Mozilla with their browsers, Chrome and Firefox respectively, but for desktop users, Internet Explorer still owns about 48 percent of the market, according to Net Applications. Internet Explorer, as a brand, has a long and interesting history of... --- ### Satya Nadella to Attend U.S. State of the Union Address - Published: 2016-01-11 - Modified: 2024-09-04 - URL: https://petri.com/satya-nadella-to-attend-u-s-state-of-the-union-address/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft CEO Satya Nadella has been awarded a rare honor with an invitation to attend U.S. President Barack Obama's final State of the Union address tomorrow night, on Tuesday, January 12. Microsoft CEO Satya Nadella has been awarded a rare honor with an invitation to attend U. S. President Barack Obama's final State of the Union address tomorrow night, on Tuesday, January 12. “Satya is honored to attend the 2016 State of the Union and learn more about the president's vision for America's future," a Microsoft statement confirms. As you might imagine, Nadella's invitation, like the State of the Union itself, is a super-charged political statement. That is, he is being held up as an example of how immigration benefits the United States at a time when many in politics are seeking to curb immigration out of fears of terrorism. Mr. Nadella will join 22 other invitees in First Lady Michelle Obama's viewing box. In another political statement, a 24th seat will for the first time remain empty out of respect for "the victims of gun violence who no longer have a voice. " In explaining its choice of Mr. Nadella, The White House noted that the Hyderabad, India native has led efforts to bring technology to children and has improved Microsoft's paid leave benefits dramatically. "Satya Nadella is Chief Executive Officer of Microsoft, a position he’s held since February 2014 at the company he joined in 1992," the White House statement explains. "Microsoft has been a leader in expanding access to computer science in K-12 classrooms, and in Teach. org, a private public partnership to increase awareness of and support for the teaching profession. In September, the company announced... --- ### Windows 10 Tip: Working with RAW Image Files > Learn quick tips and tricks for working with RAW image files in Windows 10, along with a list of useful applications for opening and editing image files. - Published: 2016-01-08 - Modified: 2024-12-03 - URL: https://petri.com/windows-10-tip-working-raw-image-files/ - Categories: Windows 10 - Tags: Photography, RAW images, Windows 10 - Article Type: How To Learn quick tips and tricks for working with RAW image files in Windows 10, along with a list of useful applications for opening and editing image files. If Santa Claus brought you a new smartphone or professional camera for Christmas, or you're already lucky enough to own one, saving your holiday season memories as RAW images opens up a world of possibilities for making the best of your pictures. Using Lightroom to enhance a RAW image (Image Credit: Russell Smith) All digital cameras save images as JPEG files for convenience, but much of the original detail is lost because the camera processes photos to make them look better, and then compresses them to save space. RAW image files on the other hand contain all the unprocessed light data captured by your camera's sensor and are sometimes referred to as a digital negatives. Although JPEG files are convenient for most amateur happy snappers, there's a limit to what you can do with your photos after the event because much of the image data is no longer available. For example, the ability to bring out details in the shadows or sharpening the photo might be quite restricted after the camera has processed the image and stripped it of the original detail. Pocket cameras and low-end smartphones don't usually provide the option to save images in RAW format, but most professional digital SLRs and high-end smartphones, including Apple iPhone and Lumia 950, allow images to be saved in JPEG format, RAW, or both. One additional complication is that many camera manufacturers save RAW image data in propriety file formats, such as Canon (CRW, CR2),... --- ### What is Azure Premium Storage? > Learn all about Azure Premium Storage, along with how this shared-SSD flash storage behaves with IaaS virtual machines. - Published: 2016-01-08 - Modified: 2024-09-04 - URL: https://petri.com/azure-premium-storage/ - Categories: Microsoft Azure - Tags: Azure, Premium Storage, SSD, storage, virtual machines - Article Type: Overview Learn all about Azure Premium Storage, along with how this shared-SSD flash storage behaves with IaaS virtual machines. Azure makes it possible to store data on shared SSDs using the DS- and GS-Series virtual machines. This premium storage offers higher IOPS, lower latency, and better service performance for those services that truly require and are able to afford it. Azure Premium Storage is the kind of storage account that makes this possible. This post will explain what Azure Premium Storage can offer you. Understanding Premium Storage Normally in Azure, we deploy virtual machines on standard storage, which is based on traditional spinning disks (HDDs). Depending on the machine type, you might get up to 300 IOPS (Basic A-Series) or up to 500 IOPS (all other virtual machines on standard storage) per data disk. If you require more IOPS, you can deploy more data disks and aggregate them to sum up their potential storage. But if you need more IOPS, and you require lower latency, then you should consider deploying Premium Storage, which is based on SSDs. Once you have deployed a premium storage account, you can create DS- or GS-Series virtual machines that can use SSD data disks. Note that: Only these kinds of VMs can use Premium Storage data disks These virtual machines can also use standard series data disks -- not all of your storage might require fast performance. Normally when I talk about Premium Storage, I'm talking about data disks, but you can choose the DS-Series to deploy virtual machines with their OS disk on Premium Storage or Standard Storage. Sizes and Scalability There are two... --- ### The Sams Report EP 23: Lumia 650 Goodness, WIndows 10 Hoopla and CES > On this episode, I cover the the major new milestone that Windows 10 crossed, some insider info about the Lumia 650 and all of the new Windows devices. - Published: 2016-01-08 - Modified: 2024-09-04 - URL: https://petri.com/the-sams-report-lumia-650-goodness-windows-10-hoopla-and-ces/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the the major new milestone that Windows 10 crossed, some insider info about the Lumia 650 and all of the new Windows devices I played with at CES. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the the major new milestone that Windows 10 crossed, some insider info about the Lumia 650 and all of the new Windows devices I played with at CES. If you have any questions, you can ask in the chatroom druing the livestream or after the show, you can find me at @bdsams on Twitter. https://soundcloud. com/thesamsreport/the-sams-report-ep-23-windows-10-hits-200m-lumia-650-and-more RSS | SoundCloud | YouTube | iTunes --- ### Paul Thurrott's Short Takes: January 8 - Published: 2016-01-08 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-january-8/ - Categories: Mobile - Tags: News - Article Type: Opinion Because it's my New Years resolution, this week's other news includes tech empires striking back against terrorism, Microsoft's "renewed partnership" with Samsung, Lenovo killing Motorola brand, worries about UK governmental spying, and Samsung's fading fortunes. How dumb is CES? This Samsung smart fridge features a 21. 5-inch 1080p touch screen and an internal camera ... so you can see what food is available. Seriously. Because it's my New Years resolution, this week's other news includes tech empires striking back against terrorism, Microsoft's "renewed partnership" with Samsung, Lenovo killing Motorola brand, worries about UK governmental spying, and Samsung's fading fortunes. Satya Nadella, Tim Cook, and other tech CEOs summoned to White House for terrorism meeting The leaders of several tech heavyweights---including Apple, Facebook, Google, Microsoft, and Twitter---have been summoned like recalcitrant school children to a White House meeting about ISIL (Islamic State) terrorism. "The White House sees Silicon Valley as an integral part of fighting the propaganda from ISIL and other groups," a White House official said. "There needs to be a concerted effort to fight the ISIL propaganda. " Inviting these companies was a great idea, then. Because when it comes to propaganda, no one is better than Apple. Plus, I assume there will be a discussion about some sort of technological solution to terrorism too. You know, while they're there. "Microsoft is building its own SIM card for Windows" I'm sure the third version will actually connect to celullar networks. Microsoft mentions "renewed partnership" with Samsung So this could be interesting. In an otherwise boring and pointless blog post about a silly Surface knock-off made by Samsung---that company just can't stop copying other companies' designs, I guess---Microsoft EVP Terry Myerson... --- ### CES 2016: Dell Brings The Excellent XPS 13 To The Business World > Dell has announced that it is bringing a variant of its XPS 13 to the business world under the name of the Latitude 7370 and it will ship in March. - Published: 2016-01-08 - Modified: 2024-09-04 - URL: https://petri.com/ces-2016-dell-brings-its-excellent-xps-13-to-the-business-world/ - Categories: Hardware - Tags: Latitude 7370 - Article Type: News Dell has announced that it is bringing a variant of its XPS 13 to the business world under the name of the Latitude 7370 that includes the Infinity display and it will ship in March. Last year at CES, Dell announced its XPS 13 and it was quickly loved by all who managed to try it out. I used the XPS 13 for nearly a year and it really is one of the better mobile laptops on the market and now there is a version suited for business customers. Called the Latitude 7370, this is what business customers have been waiting for as it takes the consumer model, beefs it up to fit into the corporate world and it will be hitting store shelves in March. There are a couple noticeable differences with this model, primarily that the Intel Core m is the only option for the CPU. For the rest of the specs, you can equip it with up to 16GB of RAM and 512GB of M. 2 SSD storage and two Thunderbolt 3 USB C ports. The lack of a proper i series chip may disappoint a few but Dell is confident that this is the correct choice for the corporate sector. In addition to the spec changes, the trackpad has physical left and right mouse buttons, the exterior is covered in carbon fiber and the machine passes the MIL-SPEC 810 for durability. What this means is that this version of the laptop is more durable than the consumer version and can withstand the bumps and falls associated with being tossed around the office. On the security front, there are options for smart card reader, fingerprint sensor, and Intel TPM chips. The... --- ### Using PowerShell's Storage Cmdlets to Query the System Drive > Learn how to use the PowerShell storage cmdlets to discover information about system drives. - Published: 2016-01-07 - Modified: 2024-09-04 - URL: https://petri.com/using-powershells-storage-cmdlets-to-query-system-drive/ - Categories: PowerShell - Tags: CIM-WMI, Get-Partition, Get-Volume, Intermediate - Article Type: How To Learn how to use the PowerShell storage cmdlets to discover information about system drives. I'm back one more time to wrap up my article series on getting disk information for the system drive, even if you don't know what that drive letter will be on a remote computer. More specifically, I want to search a list of computers that have 5 GB or less of free space. In this series, I've been showing you how to use WMI as well as PowerShell remoting. If you have no idea what I'm talking about, take some time to get caught up on the previous articles. Those approaches work especially well if you have a number of legacy servers. In this article, I want to demonstrate how you can use the storage cmdlets to achieve the same results. Part 1: Checking System Drive Spaces with WMI and PowerShell Part 2: Getting System Drive Alternatives Part 3: Compound Filtering with WMI and PowerShell Part 4: Scaling WMI with PowerShell and Remoting Part 5: Using PowerShell's Storage Cmdlets to Query the System Drive On your client desktop, you can import the Storage module. Importing the Storage module (Image Credit: Jeff Hicks) This is what I have on Windows 8. 1 with PowerShell 4. 0. Of course, you can also run any command in the module, and PowerShell will automatically import the module. You can use Get-Command to view all of the available commands in the module. ​ Viewing Storage commands (Image Credit: Jeff Hicks) The target servers for these commands must be running Windows Server 2012 at... --- ### Deploy VMs Using Azure Resource Manager > Learn how to deploy cloud apps quickly across multiple regions using Azure Resource Manager. - Published: 2016-01-07 - Modified: 2024-09-04 - URL: https://petri.com/deploy-vms-using-azure-resource-manager/ - Categories: Microsoft Azure - Tags: Automation, Azure, Cloud, Virtualization - Article Type: How To Learn how to deploy cloud apps quickly across multiple regions using Azure Resource Manager. In today's Ask the Admin, I'll show you how to deploy a new Azure VM running Windows Server 2012 R2 using Resource Manager in the preview portal. If you have any experience deploying VMs in Microsoft Azure, you'll probably have come across the concept of cloud services and resource groups (RGs). Azure Service Manager uses cloud services as hosting containers, but Azure Resource Manager (ARM) uses RGs instead, which can span multiple Azure regions and contain related VMs, websites, IP addresses, databases, virtual network interfaces (NICs) etc. The key advantage of ARM over the classic Azure Service Manager model is that with a little help from JSON-based templates, see What is JSON and How Is It Used? on the Petri IT Knowledgebase for more information on JSON, applications can be deployed in the cloud in a single click across multiple regions. As you'll see in this demonstration, unlike the Azure Service Manager, in one operation ARM allows you to deploy a working cloud app along with all the necessary components, such as virtual networks, VMs, and public IP addresses. While the deployment in this article is relatively simple and doesn't require you to download or create an ARM template, we'll be looking at working with templates in more detail on Petri in the future, and the possibilities for automating the deployment of complex applications in the cloud are quite exciting. Create a Virtual Machine Using ARM Before you get started, you'll need an Azure subscription, and if you... --- ### The Answer to Your PowerShell Question: Working with Objects > PowerShell MVP Jeff Hicks teaches you how to use objects in the pipeline to solve a scripting challenge. - Published: 2016-01-06 - Modified: 2024-09-04 - URL: https://petri.com/answer-powershell-question-object/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks teaches you how to use objects in the pipeline to solve a scripting challenge. Today's article is yet another guide to get you thinking about working with objects in PowerShell. To illustrate, here's a question I came across in a PowerShell forum. How would I write a PowerShell script, which takes an amount, adds 15% for example, and displays the amount, the 15% addition, and the total? I really don't have any idea of the need for such a tool, but that's okay. Instead, let's use this as a learning opportunity. In reading this question, I get the sense the user is looking for ways to present text values. Back in the day we would have used a VBScript file like this: dim Amount,Interest,Increase,Total Amount = 100 Interest = 15 Increase = (Interest/100)*Amount Total = Amount+Increase wscript. echo "Amount = " & Amount wscript. echo "Interest = " & Interest wscript. echo "Increase = " & Increase wscript. echo "Total = " & Total Running this would give us a simple result: A VBScript solution (Image Credit: Jeff Hicks) Clearly that is not what we want in PowerShell, although it would be easy to powershell-ize the VBScript, which I've seen some people do. Let's start with an equivalent set of PowerShell variables. $amount = 100 $interest= . 15 Notice that in this example the variable interest is expressed as a decimal equivalent. I can use Select-Object with custom hashtables to write an object to the pipeline with all of the relevant information. $amount | select @{Name="Value";Expression={$_}}, @{Name="Interest";Expression={$interest*100}}, @{Name="Increase";Expression = {$_ * $interest}}, @{Name="Total";Expression={ $_... --- ### Getting the Most Out of Office 365: An Overview of Yammer > Here's a broad overview of how to get the most out of Office 365 and the Yammer enterprise social network for better productivity in the workplace. - Published: 2016-01-06 - Modified: 2024-09-04 - URL: https://petri.com/getting-office-365-overview-yammer/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365, Yammer - Article Type: How To Here's a broad overview of how to get the most out of Office 365 and the Yammer enterprise social network for better productivity in the workplace. Communicating in a business can be complicated. Messages need to be thorough, yet concise; fast, yet professional; including the right people, yet not too many people. Ultimately, communicating in a business comes down to one thing, and that's effectiveness. Are you communicating what you want with the right people in the right way? Currently the de facto standard for business communication is email, but for more and more people email is not capable enough to communicate effectively. In the vacuum left by email's stagnated evolution, several different products have cropped up. Chat heavy options like Hipchat and Slack have become very popular, then there are enterprise social networks, such as Yammer. Although chat can be effective for real-time conversations, Yammer offers a more complete communication package. So, we have established Yammer is an enterprise social network, but what does that mean? Enterprise social networks draw inspiration from consumer social networks like Facebook, MySpace, Google+, and Twitter. Yammer offers several different tools for people to communicate with colleagues, teams, management, or the entire company in a more natural way. Enterprise social networks enable employees to communicate directly, in groups, or to the entire company without sending a message directly to every person. Communication can now be more passive opening the door to new topics and potentially unlocking value between employees. Although email is confined to asynchronous text or simple HTML messages sent to each recipient, Yammer offers a range of different tools for asynchronous or real-time communication. If you are on Yammer and wish to... --- ### CES 2016: Hands On With HP's New Business Machine Lineup > HP has announced several new machines for its business class customers and Brad Sams has gotten his hands on the new devices. - Published: 2016-01-06 - Modified: 2024-09-04 - URL: https://petri.com/ces-2016-hands-on-with-hps-new-business-machine-lineup/ - Categories: Hardware - Tags: HP - Article Type: News HP has announced several new machines for its business class customers and Brad Sams has gotten his hands on the new devices. CES 2016 is here and every major OEM is in Las Vegas to show off their new machines for the upcoming year. HP has pulled back the covers on their new lineup, which includes everything from their thinnest business machine to a refresh of their tried and true models. The HP EliteBook Folio is the company's thinnest business-class notebook that is designed to pass MIL-STD tests and has undergone 120,000 hours of testing before it was announced. The 12. 5in laptop squeezes in a 4k display, at 352 PPI and weighs a mere 2. 2lbs; the machine is only . 49 inches tall when closed. The device has two USB-C ports along with Thunderbolt 3 that allows for faster charging. The basic idea here is that HP believes it built a no-compromise ultra-portable laptop for the business environment, but there is one short-coming. The device comes with a Core M chip, not the typical Core i5/7 series, which means it does have a bit less horsepower under the hood. The tradeoff for using that CPU is that the device will get longer battery life. In addition to the Folio, the company has announced several other devices, including the EliteBook 1040 series and the updated 800 series of business laptops. Both of these new series of machines offer Windows 10 Pro, 6th generation Intel Core vPro processors, PCIe Gen3 SSD, and DDR4 memory. All the devices come with Audio by Bang & Olufsen, HP Noise Reduction Software and HP Clear Sound Amp... --- ### China Still Has "Major Problems" with Microsoft in Antitrust Case - Published: 2016-01-06 - Modified: 2024-09-04 - URL: https://petri.com/china-still-has-major-problems-with-microsoft-in-antitrust-case/ - Categories: Windows 10 - Tags: News - Article Type: News China is not satisfied with Microsoft's response to its ongoing antitrust investigation. And it has requested that the software giant address the "major problems" it has with the data Microsoft used to explain itself. Microsoft co-founder Bill Gates meets China president Xi Jinping. Credit: The New York Times. China is not satisfied with Microsoft's response to its ongoing antitrust investigation. And it has requested that the software giant address the "major problems" it has with the data Microsoft used to explain itself. The basis of the complaint is unclear. A (badly) translated version of the China State Administration For Industry & Commerce (SAIC) statement reads as follows: "SAIC task force to Microsoft, Microsoft Greater China, the person responsible for the anti-monopoly investigation inquiry, asking them to Administration since Microsoft's alleged monopoly on the case to investigate major issues will be described in an electronic data acquisition and requested its investigation in a timely manner after asking a complete description of the material submitted. " Asked for clarification, the SAIC told The Wall Street Journal that it was asking Microsoft to "explain some major problems with the digital data. " So that doesn't really answer the question, of course. The "major problems" could concern the contents of the data, but they could also concern just the formatting of the data, which Microsoft provided to China digitally. China first revealed its antitrust probe of Microsoft in 2014, when it accused the firm of obstructing its investigation. As a result, SAIC investigators raided Microsoft's offices in China, looking for information about how the firm secured its software products. Underlying the Chinese actions against Microsoft is a growing xenophobia about outside technology... --- ### A Quick Guide to SQL Server 2005 End of Support > Aidan Finn shows us a quick guide to SQL Server 2005 end of support, complete with tips and considerations for mapping out a migration or upgrade. - Published: 2016-01-05 - Modified: 2024-11-19 - URL: https://petri.com/quick-guide-sql-server-2005-end-of-support/ - Categories: SQL Server - Tags: SQL 2005, SQL Server 2005, SQL Server 2005 end of support - Article Type: How To Aidan Finn shows us a quick guide to SQL Server 2005 end of support, complete with tips and considerations for mapping our a migration or upgrade. As Brad Sams reported back in October, Microsoft is terminating extended support for SQL Server 2005 on April 12th. This means that, unless you pay hundreds of thousands or millions of dollars for a custom support contract, Microsoft will terminate all support for SQL 2005. No more technical support, no more hotfixes, and no more security fixes. Microsoft's End of Support Help Page As Microsoft has done before for products, such as Windows XP, Microsoft has published a website specifically to deal with the challenges of upgrading or migrating customers from SQL Server 2005. On this site, you can learn why you need to upgrade from SQL Server 2005, tools that will help you upgrade or migrate, and several different guides to help you through the process.  There are also useful links to Microsoft services, videos, whitepapers, tools, and documentation, so this site should be your upgrade starting point. Microsoft's Free Tool for Finding SQL Server 2005 Installations The label "accidental DBA" was coined in response to the organic way that SQL Server pops up on servers. Many line-of-business (LOB) apps include some version of SQL, from the free Express Edition all the way up to the Enterprise Edition. These 'shadow databases' often go unnoticed for years and can be tricky to deal with when trying to find those hidden-away database servers to ensure that they don't become a security or technical support risk to the business. If you already have a software auditing service, such as System Center Configuration... --- ### CES 2016: Microsoft Partners on Smart Car Technologies - Published: 2016-01-05 - Modified: 2024-09-04 - URL: https://petri.com/ces-2016-microsoft-partners-on-smart-car-technologies/ - Categories: Microsoft Azure - Tags: News - Article Type: News Hoping to catch up to rivals such as Apple and Google, Microsoft today announced multiple partnerships with automotive companies aimed at enhancing the "connected car" experience. Hoping to catch up to rivals such as Apple and Google, Microsoft today announced multiple partnerships with automotive companies aimed at enhancing the "connected car" experience. "Along with Microsoft, automakers are bringing the latest technology to the car while making the safety of the driver, other commuters and pedestrians the ultimate priority," a Microsoft announcement notes. "Your car is quickly becoming your companion and assistant to your digital life. It’s connected to the Internet, other cars, your mobile phone and even your home computer. " Microsoft's new partners include Volvo Cars, Nissan, Harman and IAV Automotive engineering. They join previous partners such as Toyota, Ford, Qoros and Delphi, Microsoft notes, which makes for an impressive-looking list. But the software maker still has a long way to go before it can catch up to Apple's CarPlay and Google's (Toyota, Ford, Qoros and Delphi) efforts. And Microsoft's previous big partner-based auto initiative, Ford SYNC, fizzled so badly Ford dropped Microsoft for Blackberry QNX. So it is perhaps not surprising that Microsoft is playing to its strengths this time around. That is, rather than trying to outdo Apple or Google with in-car mobile-based systems, Microsoft has turned to the cloud. "Auto companies are using Microsoft's intelligent cloud, productivity tools, and personal computing to bring connected cars to life," the firm explains. "We are powering their connected cars with Microsoft Azure, Azure IoT for telematics and advanced analytics with Cortana Analytics. Longer term, connected cars will connect to roadside infrastructure... --- ### Moving to PowerShell 5.0 > PowerShell MVP Jeff Hicks makes the jump to PowerShell 5.0 and explains why you should too. - Published: 2016-01-05 - Modified: 2024-12-03 - URL: https://petri.com/moving-powershell-5-0/ - Categories: PowerShell - Tags: Install-Module, Intermediate, PowerShell 5.0 - Article Type: How To PowerShell MVP Jeff Hicks makes the jump to PowerShell 5.0 and explains why you should too. Because I do so much training and work in PowerShell 4. 0, primarily because I think many people are still running 4. 0, I'm always behind in upgrading to newer versions of PowerShell. With that said, I think I've finally reached a point where it makes sense to move to PowerShell 5. 0 on my daily system. In this article, I'll walk through some essential steps to take after moving to PowerShell 5. 0. My system is still running Windows 8. 1 Enterprise, and while I could have upgraded it to Windows 10 to get PowerShell 5. 0, I wasn't ready to make that change due to some potential application issues. I have another system running Windows 10, so I'm not totally out of step. Technically, PowerShell 5. 0 is part of the Windows Management Framework 5. 0. Note that the the Windows Management Framework 5. 0 RTM release was released on December 23, 2015, but the update was taken offline due to customer issues.  In the meantime, you can still download the production preview to get started. You will need to be running at least Windows 7 SP1 and the . NET Framework 4. 5. If you're installing on a server, be sure to read the install notes. To upgrade, close all PowerShell and PowerShell ISE windows. As with any major installation, make sure you have backups of critical files. The update shouldn't cause any problems, but better safe than sorry. Navigate to the downloaded files and double-click the MSU file for your operating system. Follow the simple instructions and reboot when... --- ### On Board Servers to Azure Operational Insights > Learn how to manually install the Operations Management Suite (OMS) agent on your servers and connect them to an OpInsights workspace. - Published: 2016-01-04 - Modified: 2024-11-19 - URL: https://petri.com/on-board-servers-to-azure-operational-insights/ - Categories: Microsoft Azure - Tags: Azure, Azure Operational - Article Type: How To Russell Smith shows us how to manually install the Operations Management Suite (OMS) agent on your servers and connect them to an OpInsights workspace. It's easy to add Azure virtual machines to an Operational Insights workspace, but on premise servers will require a little more work. In today's Ask the Admin, I'll show you how to manually install the Operations Management Suite (OMS) agent on your servers and connect them to an OpInsights workspace. Create an OpInsights Workspace Before you can on board servers to Azure OpInsights, you'll need to create a workspace. If you have an existing workspace, you can still follow the instructions below, but instead select one of your existing workspaces instead of clicking CREATE NEW WORKSPACE. Azure OpInsights is part of the Microsoft Operations Management Suite (OMS) family of products, so to get access, you need to log in using the following link: https://www. mms. microsoft. com/Account. If you don't already have a Microsoft account associated with Azure or OMS, you'll be guided through the sign up process as part of creating a new workspace. For more information on Azure OpInsights, see What is Azure Operational Insights? on the Petri IT Knowledgebase. Microsoft Operations Management Suite (Image Credit: Russell Smith) Once you've got access to the Microsoft Operations Management Suite web page, follow the instructions below: On the Microsoft Operations Management Suite Select Workspace page, click CREATE NEW WORKSPACE. On the Create New Workspace screen, give the new workspace a name, select an Azure region, and fill out the rest of the obligatory fields, such as name and email address. When you're done, accept the agreement at... --- ### Essential Learning for IT Pros in 2016 > Aidan Finn shares his thoughts on what he believes to be essential learning for IT pros in 2016 in the Microsoft ecosystem. - Published: 2016-01-04 - Modified: 2024-11-19 - URL: https://petri.com/essential-learning-for-it-pros-in-2016/ - Categories: Microsoft Azure - Tags: Azure AD, Azure Backup, Azure Resource Manager, Azure Site Recovery, Hyper-V - Article Type: Opinion Aidan Finn shares his thoughts on what he believes to be essential learning for IT pros in 2016 in the Microsoft ecosystem. My job runs in cycles, where there's busy periods that sandwich quieter times that allow me to reflect, plan, read, learn, and prepare for the next onslaught of meetings and events. December is a quiet period for me because my customers  are usually too busy with their customers now. This gave me time to consider what skills I need to develop in 2016. In this article, I'll describe what I think are essential IT pro skills to learn. Keep in mind that this list might not be the same for everyone because we've all chosen different career paths. I'd like to hear what you want to learn about in the new year, so post your thoughts in the comments section below. Azure Recovery Services There's a few bits of Azure that I think we should be working on. The first of these is the technologies that enable offsite storage of valuable data and services. Azure Backup is finally maturing into a service that is business-ready. What makes Azure Backup so appealing is the price; it's just so affordable compared to rivals and replicated backup storage. I've spent nearly 18 months talking about Azure Backup, and up until December, I had almost no interest. But lately, I've been inundated with questions and requests for spec and pricing support. I have found that conversations about Azure Backup are often brought to the next step: disaster recovery-as-a-service (DRaaS) in the form of Azure Site Recovery. I spent quite a bit of time working on replication for... --- ### Surface Book Headed To 10 New Markets, Pre-Orders Starting Tomorrow > Microsoft is about to expand the Surface Book availability to 10 new markets with pre-orders opening up tomorrow. - Published: 2016-01-04 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-headed-to-10-new-markets-pre-orders-starting-tomorrow/ - Categories: Hardware - Tags: Microsoft, Surface, Surface Book - Article Type: News Microsoft is about to expand the Surface Book availability to 10 new markets with pre-orders opening up tomorrow; retail availability depends on the market. Microsoft's Surface Book has been highly praised as being a fantastic Windows machine, you can check out my review here. Despite that fact that it still has one glaring issue, it can't be put to sleep, the laptop is still a quality device and one that is desired by many who live outside of North America. For those of you who live outside the US or Canada and have been wanting to order a Book, the company is expanding availability to 10 new markets with pre-orders going live starting tomorrow. The company recently opened pre-orders in Hong Kong and China and now they are adding in Austria, Australia, UK, France, Germany, Switzerland, and New Zealand. In the coming weeks, pre-orders will open for Japan and India as well. Below is the breakdown of when the devices will be available in each market: China and Hong Kong availability beginning January 15. Australia and New Zealand availability beginning January 28. Austria, France, Germany, Switzerland and United Kingdom availability beginning February 18. The Surface Book looks to be a device that can stand out in the crowded laptop space. Even though other vendors have built 2-1 devices, the Book is the first that has the right blend of high quality materials, a great trackpad and even though the price is a bit higher than most consumers traditionally spend for a Windows machine, it does appear to be selling well. Microsoft's Surface brand has grown in numerous ways since the first device... --- ### Windows Store Sees Strong Revenue Growth On The Back Of Windows 10 > Microsoft's Windows Store is seeing new signs of life with increased activity from developers and consumers are buying more apps too. - Published: 2016-01-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-store-sees-strong-revenue-growth-on-the-back-of-windows-10/ - Categories: Windows 10 - Tags: Developers, Windows 10, Windows Store - Article Type: News Microsoft's Windows Store is seeing new signs of life with increased activity from developers and consumers are buying more apps too. One of the primary goals that Windows 8 failed to accomplish was to create a viable app store for the Microsoft ecosystem. While there were a few large-name apps in the Windows Store for Windows 8, the vast majority of developers passed on the opportunity because Windows 8 was not a wide-scale success. Windows 10, however, is off to a much better start with over 200 million active devices running the OS. Knowing this, it shouldn't come as too much of a surprise that the Windows Store is doing much better after the release of the new operating system, which means more revenue for developers. As I noted previously, the Windows Store is showing new signs of life with several big name brands coming to the store, including the Wall Street Journal launching a new app, along with Uber and Netflix and now we have a bit more data to assert that the store is on the rebound. Microsoft notes that In December alone, 60 percent of paying customers were new to the store and that Windows 10 generated more than a 4. 5 x increase in revenue per device, as compared to Windows 8. The key metric that should make developers ears perk up is that there has be a 2x increase in the number of paid transactions from PC and tablet customers this holiday season. The growth of the Windows store is vital to Microsoft's long-term success. This feature of Windows 10 is a way for the... --- ### Windows 10 Passes 200 Million Monthly Active Devices > Windows 10 is now installed on more than 200 million devices with 22 million devices in the enterprise and education sector running the platform. - Published: 2016-01-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-passes-200-million-monthly-active-devices/ - Categories: Windows 10 - Tags: Microsoft, Windows 10 - Article Type: News Windows 10 is now installed on more than 200 million devices with 22 million devices in the enterprise and education sector running the platform; the OS is outpacing Windows 7 and Windows 8 install rate. Microsoft's Windows 10 operating system was released on July 29th and is on the fastest growth trajectory of any version of Windows. The company announced today that Windows 10 is installed on more than 200 million devices and that the adoption rate is outpacing Windows 7 by nearly 140 percent and Windows 8 by nearly 400 percent. The fast adoption rate is also picking up in the enterprise and education sector as well. The company says that there are more than 22 million devices running Windows 10 in the enterprise and education markets and that 76 percent of Microsoft's enterprise clients are in active testing phases for deploying the new OS. The adoption rate does not appear to be slowing down either, with more than 40 percent of new Windows 10 devices becoming active after Black Friday. Unfortunately, Microsoft does not say how many of the 200 million devices are new hardware versus upgrades, so we can't work backwards to see how many new Windows machines were purchased during the holiday season. What's interesting about this figure is that the company says 200 million active devices, meaning that figure is not purely the number of times the OS has been installed. To put it bluntly, 200 million devices running Windows 10 have been used in the last month. Further, in the month of December, customers used the OS for a combined 11 billion hours. During the same month, 44. 5 billion minutes were spent in Edge, 2. 5 billion questions asked... --- ### Getting the Most Out of Office 365: Using Office 365 Groups - Published: 2015-12-31 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-using-office365-groups/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365, Office 365 Groups - Article Type: How To Microsoft has been building enterprise email services for decades now and while the GUI around them has changed, the experience remains ultimately the same. Microsoft has been building enterprise email services for decades now and while the GUI around them has changed, the experience remains ultimately the same. Their product for classic email is Outlook on the Web, but more recently they have created email for groups called Office 365 Groups. This product is interesting for several reasons, and while at first glance it seems like boring email, it is much more. Outlook 365 Groups aims to make cloud-based teamwork hassle free and immediately intuitive. This is done by pooling the technologies, which already exist in Office 365. When a new group is created messaging is front and center. However, a directory for storing group files in the cloud is created on OneDrive for Business and all group members are given access. A group calendar is created; as well as a OneNote notebook for the group. The OneDrive for Business space is hosted on the companies SharePoint. The Notebook is also stored on the company side and not stored in the OneDrive of the founding member. Initially this product may seem very lack luster when compared to products like Yammer, however Office 365 has a trick up its sleeve, and you already know how to use it. The conversations view is simply a shared group inbox; you already know how to use the calendar webapp. Hosting the files works just like you would expect and there is even an automatically shared notebook for to-dos, project tracking, meeting notes, or lab reports, or... --- ### Microsoft to Warn Users of Governmental Hacks - Published: 2015-12-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-warn-users-of-governmental-hacks/ - Categories: Security - Tags: News, OneDrive, Outlook.com - Article Type: News Microsoft on Thursday announced that it will alert users of its consumer cloud services---Outlook.com, OneDrive and so on---when it suspects that governments are trying to hack into their accounts. Microsoft on Thursday announced that it will alert users of its consumer cloud services---Outlook. com, OneDrive and so on---when it suspects that governments are trying to hack into their accounts. Microsoft's policy change was first reported by Reuters, which had confronted the software giant about not telling users when governments hacked their accounts. But Microsoft says that neither it nor the U. S. government were able to determine who was behind the 2009 electronic attack noted below. "We're taking this additional step of specifically letting you know if we have evidence that the attacker may be 'state-sponsored' because it is likely that the attack could be more sophisticated or more sustained than attacks from cybercriminals and others," Microsoft corporate vice president for trustworthy computing Scott Charney explains. "The evidence we collect in any active investigation may be sensitive, so we do not plan on providing detailed or specific information about the attackers or their methods. But when the evidence reasonably suggests the attacker is 'state sponsored,' we will say so. " This is a bold new step, even for a company that has been pushing back against governmental intrusions every more publicly over the past year or more. And in taking this step, Microsoft has once again chosen its customers over what it sees as illegal behavior on the parts of the world's governments. A Reuters report claims that Microsoft had obtained evidence of a Chinese governmental hack into over one thousand Hotmail accounts, and decided not to tell the victims, most... --- ### DevOps Predictions for 2016 > Blair Kellerhals outlines Jumpcloud's Rajat Bhargava's DevOps predictions for 2016, which include a shift toward containers and much more. - Published: 2015-12-30 - Modified: 2024-09-04 - URL: https://petri.com/devops-predictions-for-2016/ - Categories: Cloud Computing - Tags: acquisitions, Containers, DevOps, predictions - Article Type: Interview Blair Kellerhals outlines Jumpcloud's Rajat Bhargava's DevOps predictions for 2016, which include a shift toward containers and much more. Over the last few years, we’ve seen an increasing need for DevOps within a multitude of industries. Even in my personal engagements with my developer and IT friends, it’s the norm to hear that they are working on projects that employ team sprints, agility, and continuous feedback as part of their everyday work. And as we’ve seen with Microsoft’s technologies and services, the company is pushing out updates and new functionalities on a faster cadence to further reflect this shift across the technology sector. With 2015 coming to a close, I want to spend some time on talking about the future for DevOps in 2016. Recently, I had the chance to speak with Rajat Bhargava, CEO and co-founder of Jumpcloud, which is a fully managed directory-as-a-service for on prem and cloud infrastructures. I first met Rajat a couple of years ago at a local DevOps event, where he's well-known for being an expert in the DevOps field within the community. Here’s what he said on what we can expect to see in 2016. A Shift Toward Containers Petri IT Knowledgebase contributing editor Aidan Finn has been covering containers heavily from the Microsoft front, so hopefully readers are familiar with this new technology. Rajat describes them as the “next generation of virtualization,” and predicts that more and more organizations will be using containers in 2016. Because containers serve as light-weight and single purpose virtual machines, teams are able to leverage them for greater scalability, security, and availability. Rajat attributes... --- ### Microsoft's 2016: More Hardware, Software and Cloud > It’s hard to believe that 2015 is now behind us, which means that with a new year, it's time to take a look at what Microsoft is planning for 2016.  - Published: 2015-12-30 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-2016-more-hardware-software-and-cloud/ - Categories: Windows 10 - Tags: Microsoft - Article Type: News It’s hard to believe that 2015 is now behind us, which means that with a new year, it's time to take a look at what Microsoft is planning for 2016. It’s hard to believe that 2015 is now behind us, which means that with a new year, it's time to take a look at what Microsoft is planning for 2016. Everything from updated hardware to Redstone are currently in development and based on the past two years, we can begin to understand how the company plans to lay out the upcoming months. Hardware Starting in January, the company will begin approving applications for HoloLens developer kits, which means we will start to learn a lot more about the devices capabilities and features. With the kits arriving in the first quarter of the year, the last few secrets about the device will be better understood and will help to paint the picture of its true capabilities. The non-pro Surface is quickly approaching its typical refresh window and should receive a modest update to keep its specs in-line with the competition. Don't expect too much here as the company will beef up the specs and deliver a better type cover for the smaller device, but they have a good formula for the device. It would make sense if the company would leave out the high-end features, like Windows Hello sensors, to keep the cost down and this would also make the separation of the pro and non-pro devices easier to distinguish. And then there are the phones, the company has a few low-end offerings on the agenda as well as the highly anticipated 'Surface' phone. Details about the mythical device... --- ### Paul Thurrott's Short Takes: December 30 2015 - Published: 2015-12-30 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-30/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because auld acquaintance should never be forgot, this (short) week's other news includes Microsoft encryption news from the past, Microsoft v. Corel, someone finally sues Apple over forced obsolescence, and Google is ripping the Java guts out of Android. Brad Sams heads to CES next week. Because auld acquaintance should never be forgot, this (short) week's other news includes Microsoft encryption news from the past, Microsoft v. Corel, someone finally sues Apple over forced obsolescence, and Google is ripping the Java guts out of Android. Note: It's another short week, but I'll be posting to Thurrott. comthroughout the holiday long weekend as needed. --Paul News from the past: Microsoft is storing encryption keys in the cloud Inexplicably making news this week is a report in The Intercept which dredges up years-old information about Microsoft storing encryption keys in the cloud and presents it as something new. "ONE OF THE EXCELLENT FEATURES of new Windows devices is that disk encryption is built-in and turned on by default, protecting your data in case your device is lost or stolen," Mr. Lee reports, incorrectly. (Disk encryption is not on by default, and is only available in Windows Pro or higher. ) "Less well-known is that, if you are like most users and login to Windows 10 using your Microsoft account, your computer automatically uploaded a copy of your recovery key--which can be used to unlock your encrypted disk--to Microsoft’s servers. " Frankly, I'm kind of embarrassed for this guy, so I'll just leave it at this: The very notion that a hacker would both break into your Microsoft account (potentially bypassing the two-factor authentication Microsoft offers) and gain physical access to your PC is about as ludicrous as anything... --- ### PowerShell 5.0 Tutorial: Working with Zip Files > PowerShell MVP Jeff Hicks takes a look at the new Compress-Archive cmdlet in PowerShell 5.0. - Published: 2015-12-29 - Modified: 2024-09-04 - URL: https://petri.com/powershell-5-0-tutorial-working-with-zip-files/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To PowerShell MVP Jeff Hicks takes a look at the new Compress-Archive cmdlet in PowerShell 5.0. In continuing my exploration of what's new in PowerShell 5. 0, I think you'll like the new cmdlets designed to work with ZIP files. PowerShell now includes a few basic cmdlets for creating and expanding archives. They probably aren't as full featured as other compression utilities like WinRAR, but they are easy to use. Let's take a look. The cmdlets are part of the Microsoft. PowerShell. Archive module. The new archive cmdlets (Image Credit: Jeff Hicks) The Compress-Archive cmdlet is pretty straightforward. Specify some files to be compressed and set a destination. dir c:work*. xml -Recurse | Compress-Archive -DestinationPath C:workXMLData. zip If the zip file already exists, then you will get an error. So if you want to create something totally new, you need to test for the archive first and delete it. Otherwise, you can use the Update parameter, which is self explanatory. dir c:work*. xml -Recurse | Compress-Archive -DestinationPath C:workXMLData. zip -update You'll end up with a zip file like this: The new zip file (Image Credit: Jeff Hicks) Notice that no directory information is stored. More on that in a moment. Compress-Archive includes a parameter to specify the compression level. The default is Optimal, which will take the most time, but create the smallest archive possible. You can also specify NoCompression, which simply stores the files or FastestUse. This is a speedy option with some degree of compression. To give you a comparison, the XML files I just zipped take up about 201 MB... --- ### Implementing Storage Spaces Inside Azure Virtual Machines > Aidan Finn shows us how to implement Storage Spaces inside a Windows Server 2012 R2 Azure virtual machine to aggregate the capacity and performance potential of multiple data disks. - Published: 2015-12-29 - Modified: 2024-09-04 - URL: https://petri.com/implementing-storage-spaces-inside-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure, IaaS, performance, SQL Server, storage, storage spaces, virtual machines, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Aidan Finn shows us how to implement Storage Spaces inside a Windows Server 2012 R2 Azure virtual machine to aggregate the capacity and performance potential of multiple data disks. In this article, I'll show you how to implement Storage Spaces inside a Windows Server 2012 R2 Azure virtual machine to aggregate the capacity and performance potential of multiple data disks. This article is a follow-up to "The Role of Azure Virtual Machine Data Disks, Plus Tips on Sizing Disks for Capacity," where I explained why you would aggregate disks together. Quick Reminder on Data Disks We should never store data in the C: or D: drive of an Azure virtual machine; all data should be stored in data disks. Every data disk has limited capacity of 1023 GB and performance potential, which is up to 500 IOPS for Standard Storage. We can overcome these limitations by deploying multiple data disks, the same way that we would have multiple physical disks in RAID, and using features of the guest OS to aggregate those disks so we can create a single spanned volume. In the case of Windows Server 2012 R2, we will use Storage Spaces to aggregate the disks. Remember that Storage Spaces is not the old Windows 2000 dynamic disks technology that most of us only ever used to prepare for exam questions. Storage Spaces is a low-level technology that is very similar to RAID, but is actually a modern form of software defined storage designed for scalability and performance. We can use the GUI tools to deploy Storage Spaces, but PowerShell offers more scalability and control over performance tuning. And don't forget there's the added bonus that PowerShell... --- ### Cisco To Audit Code In Wake Of Juniper Backdoor Announcement > Cisco has said that they will audit their own code to make sure that it is free of back-door holes that would weaken the effectiveness of their products. - Published: 2015-12-29 - Modified: 2024-09-04 - URL: https://petri.com/cisco-to-audit-code-in-wake-of-juniper-backdoor-announcement/ - Categories: Security - Tags: Cisco, encryption, juniper, nsa, VPN - Article Type: News Cisco has said that they will audit their own code to make sure that it is free of back-door holes that would weaken the effectiveness of their products following the Juniper discoveries. In the wake of an announcement by Juniper that after an internal code audit, they had uncovered two backdoors in the operating systems used in their NetScreen firewalls, Cisco has announced that they’re taking similar steps to perform an audit of their code. This step is a preventative measure for Cisco and is not in response to a known weakness. In a blog post by Anthony Grico, Senior Director of the Security and Trust Organization within Cisco, the company outlines that although their normal development practices should detect unauthorized code from sneaking into their products, no process can eliminate all risk. The company will be conducting penetration testing and code reviews. The company also says that there has been no indication that any code has been compromised, that the review was launched as a proactive effort in the wake of Juniper’s bulletin, and also not in response to any outside request. It’s generally acknowledged by security experts that due to the level of sophistication of such attacks against companies like Cisco and Juniper, it’s likely state agencies are responsible for the unauthorized code; the Chinese military, the US’s NSA or the UK’s GCHQ. The NSA had an operation exposed by Edward Snowden in which they intercepted Cisco products, mid-shipment, that were destined for other countries, to install backdoor code directly into those routers, firewalls, etc. However, it may be also be less sophisticated attackers (or governments) who are using existing backdoors. Matthew Green, a cryptographer and professor at Johns Hopkins University, has theorized that... --- ### Welcome To The New Petri > The Petri IT Knowledgebase has a brand new design with an optimized backend that makes the site faster to load and easier to navigate. - Published: 2015-12-28 - Modified: 2024-09-04 - URL: https://petri.com/welcome-to-the-new-petri/ - Categories: Main - Tags: Petri - Article Type: News The Petri IT Knowledgebase has a brand new design with an optimized back-end that makes the site faster to load and easier to navigate. It was nearly four months ago that I joined the Petri team to help drive the site and its mission forward with one of my primary goals being to launch an updated site design. As you can see from this post and more specifically the landing page, the front page has been refreshed with a modern design that is easier to navigate. For those of you who also read Thurrott. com, you will know that this design is nearly identical to the layout we launched on that site a few weeks back. What has changed with this release is that the promotional content block height, the images at the top of the blogroll, has been reduced by about 25 percent based on reader feedback; this change is also live on Thurrott. In addition to the new design, the backend supporting the new site is leaner, faster, and running on new metal as well. The new hardware was installed a few weeks ago, and with the new theme on the site, everything is running more efficiently, which means a faster page load time for you. Petri will continue to publish deep technical content every day that has made it a critical resource for IT pros around the globe, and we will also be introducing more topical news content too. This shift has already begun, but don't expect any radical changes to the topics covered, as this is simply more content that we know will help make you an authoritative voice in your... --- ### A Free Tool for Recovering Lost Product Keys for Windows 10, Windows Server 2012 R2 > Here's a free tool to help IT administrations recover the product key for Windows 10, Windows Server 2012 R2, Microsoft Office, Microsoft Exchange, and more. - Published: 2015-12-28 - Modified: 2024-09-04 - URL: https://petri.com/free-tool-recovering-lost-product-keys-windows-10-windows-server-2012-r2/ - Categories: Windows 10 - Article Type: How To Need to recover a product key quickly? Here's a free tool to help. Working with computers as an IT professional means that you sometimes need to deal with license issues. Undoubtedly, there will be times where you'll need to obtain the operating system product key. Without having this key handy, you won't be able to perform an installation or upgrade, and who can remember that key by heart? No human that I know. In this article, I'll walk you through on how to recover the product key in Windows 10 and Windows Server 2012 R2. If you're lucky, you might find the product key for the installed version of Windows as a sticker or on the installation media itself.  But obviously, there are times where the product key can't be located. So how do you obtain the needed product key? Here comes one of the most useful freeware tools to the rescue. It's called ProduKey, and it's written by Nir Sofer.  ProduKey is a small and fully portable utility, meaning it does not require any installation. Just download it to your desired location and execute it. Another cool thing about this tool is that you can obtain the required information not only for your current running operating system, but also for remote computers on your network by using command-line options. ProduKey doesn't requite any installation process or additional DLLs. To start using it, simply extract the files to any folder you like, and run the executable file. Once it runs, it will display all the product keys it can find on the computer. It can magically find the operating system key,... --- ### The Role of Azure Virtual Machine Data Disks, Plus Tips on Sizing Disks for Capacity > Aidan Finn provides an overview on the role of Azure virtual machine data disks, along with some helpful tips for sizing data disks for capacity. - Published: 2015-12-28 - Modified: 2024-09-04 - URL: https://petri.com/azure-virtual-machine-data-disks/ - Categories: Microsoft Azure - Tags: Azure, Disks, IaaS, storage, storage spaces, virtual machines - Article Type: Overview Aidan Finn provides an overview on the role of Azure virtual machine data disks, along with some helpful tips for sizing data disks for capacity. Few seem to consider the role of data disks with Azure virtual machines, and fewer ever consider maximum amounts, sizes, or performance limitations. In this article, I will explain the role of data disks and offer some advice on how to size disks for capacity and IOPS. The Role of Azure Virtual Machine Data Disks When you deploy a new Azure virtual machine from the Azure Marketplace, you get a machine that has two disks: OS disk: Windows machines get a 127 GB C: drive. Temporary disk: This is a variable size disk, illustrated rather confusingly as "disk size" on the pricing site, that is for non-persistent data. The drive is local on the Azure host and is not guaranteed to be there over time. On Windows machines, the paging file is on this D: drive and some DBAs might choose to store TempDB caching databases there (see D- and G-Series virtual machines). Where do you store data? The temporary disk is a total no-no. And you might look at the mostly unused 127 GB C: drive and think that looks like a good option, but let me cut you off right there; Never store data on the C: drive. Even the best practices for domain controllers on Azure insist that you do not store data on the C: drive. Any veteran Hyper-V administrator who knows their craft will tell you to deploy data disks -- it's not a big deal to do so, and it gives you a... --- ### Microsoft in 2015: Two Steps Forward, One Step Back - Published: 2015-12-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-in-2015-two-steps-forward-one-step-back/ - Categories: Windows 10 - Tags: News - Article Type: Opinion 2015 was a watershed year for Microsoft, with many notable product releases and updates. But Microsoft's 2015 was in turn both good and bad, a series of ups and downs. Worse, some of its biggest successes were tarnished by unnecessary setbacks. 2015 was a watershed year for Microsoft, with many notable product releases and updates. But Microsoft's 2015 was in turn both good and bad, a series of ups and downs. Worse, some of its biggest successes were tarnished by unnecessary setbacks. I already wrote a broad year-end wrap-up of sorts in Microsoft in 2015: The Good, the Meh, and the WTF. Here, I'd like to focus instead on two key Microsoft solutions that I think perfectly embody the software giant's year: Windows 10 and Surface Book. Windows 10 By all rights, Windows 10 is a euphoric success story, the software industry's version of "Star Wars: The Force Awakens," shattering sales records and---surprise! ---delighting most users as well. That's no small feat for an operating system that needs to work well across such a broad range of devices, including traditional non-touch PCs, touch- and transforming PCs (like 2-in-1s and convertible laptops), tablets, phones, and even new form factors like video game consoles (Xbox One), augmented reality headsets (HoloLens), the Surface Hub collaborative solution, and tiny, often headless Internet of Things devices. But here's another surprise: It does work well across all these devices. Windows 10's success is all the more impressive given the disaster that was Windows 8. And while the jury is still out on whether Microsoft will ever fully recover from that turd, Windows 10 has for the most part erased any lingering bad memories from its predecessor. Except for a few lingering issues, of course. The FUD... --- ### Getting The Most Out Of Office 365: What Can Do What? > Office 365 has a plethora of tools under the brand name and to help clear up what each product offers, I have created an easy to understand chart. - Published: 2015-12-23 - Modified: 2024-09-04 - URL: https://petri.com/68742-2/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office, Office 365 - Article Type: How To Office 365 has a plethora of tools under the brand name and to help clear up what each product offers, I have created an easy to understand chart. When a new product enters a market, the first question asked is usually, “what can this do that mine cannot? ” This question gets applied to almost every new thing and now I will apply it to Office 365. At most companies there is one employee who loves trying new things when everyone else is more concerned with getting their work done and not experimenting with new tools or technology. If you fall into the second category, rest easy, because I have done the experimenting for you and I have condensed the lessons learned into this easy to understand chart. Along the left hand column are the different tools included in Office 365, and across the top are the different capabilities of each product. If you are considering a new workflow or would like to leverage more of the cloud in your everyday work, then this chart should clear up the cloud of confusion that is all of the different products wrapped up in Office 365. Everyone has different needs and works in different ways, so different tools will be more useful to some people. The best thing to do is learn a little about each one, then pick a tool to master, and after a month or so see if you are more productive and more effective. Getting the most out of Office 365: What can do what chart To clear up some of the capabilities and ensure we’re on the same page, I’ll give my... --- ### Install Nano Server in Microsoft Azure > Russell Smith walks us through some quick steps on how to install Nano Server in Microsoft Azure with the Windows Server 2016 Technical Preview 4. - Published: 2015-12-23 - Modified: 2024-11-19 - URL: https://petri.com/install-nano-server-microsoft-azure/ - Categories: Windows Server 2016 - Tags: Azure, Nano, Windows Server 2016 - Article Type: How To Russell Smith walks us through some quick steps on how to install Nano Server in Microsoft Azure with the Windows Server 2016 Technical Preview 4. In today's Ask the Admin, I'll show you how to install Nano Server in Windows Server 2016 Technical Preview 4 in Microsoft Azure. I'll also walk you through on how to connect to the server using PowerShell Remoting from a local management PC. Microsoft released the latest preview of Windows Server 2016 at the beginning of November, and as part of that preview is the Nano install option, designed for running apps and micro services in the cloud. For more information on Nano, see Windows Nano Server on the Petri IT Knowledgebase. The easiest way to get up and running with Nano is to install it in an Azure virtual machine. To do that, you'll need to set up an Azure subscription. If you haven’t done so already, you can sign up for a free trial. Installing Nano Server in Azure Let's start by deploying Nano in a new Azure VM. Log in to the Azure management portal, and sign in with the Microsoft account associated with your Azure subscription. Click + NEW in the bottom left of the portal window. Make sure that COMPUTE is selected in the pop-up panel, and then click VIRTUAL MACHINE in the second column. Deploy Windows Server 2016 TP4 Nano in an Azure VM (Image Credit: Russell Smith) In the third column, click FROM GALLERY. In the CREATE A VIRTUAL MACHINE dialog, scroll down the list of featured VMs and select Windows Server Nano 2016 Tech Preview 4... --- ### Nutanix Files for Initial Public Offering > Nutanix announced on Wednesday that it intends to go public and raise $200 million to help it drive new sales and build out its products. - Published: 2015-12-23 - Modified: 2024-09-04 - URL: https://petri.com/nutanix-files-for-initial-public-offering/ - Categories: Backup & Storage - Tags: Editor's Pick, ipo, News, nutanix, storage - Article Type: News Nutanix announced on Wednesday that it intends to go public and raise $200 million to help it drive new sales and build out its products. In case you thought that there wouldn’t be any further changes in the enterprise storage industry before the start of 2016, Nutanix announced on Wednesday that it has filed a Form S-1 with the SEC for a proposed IPO. The number of shares being offered and the price of the offering have not yet been determined, although the company says it intends to raise a maximum of $200 million; Nutanix will be listed as “NTNX” on NASDAQ. Nutanix specializes in hyper-converged infrastructure that merges the traditional silos of the physical server, virtualization hypervisor and storage into one integrated solution. It competes in that space with companies like SimpliVity, EMC, and VMware’s VSAN. Their solution is comprised of two product families, Acropolis and Prism, and is delivered on commodity x86 servers; Acropolis is their in-house hypervisor software. That’s a unique selling point in this market, in which most hyper-converged providers normally resell VMware’s ESXi platform, or in the case of VMware VSAN, are delivered by VMware itself. Nutanix originally, and still, allows customers to utilize the VMware hypervisor if they choose, instead of Acropolis. Prism is their virtualization and infrastructure management platform. In addition to selling their own Nutanix branded systems (built by Super Micro), they also partner with Dell, who resells the Nutanix platform as their “XC-series” systems, built on Dell hardware. Dell recently announced its intention to acquire EMC, which may sour that partnership in the future. According to Nutanix, as of October 31, 2015, they have 2,100 end-customers... --- ### Paul Thurrott's Short Takes: December 23 2015 - Published: 2015-12-23 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-december-23/ - Categories: Mobile - Tags: News - Article Type: Opinion This (short) week's other news includes LG stealing the Surface ad, Google and Ford partnering on driverless cars, and Google's plans for chat apps and getting rid of passwords. Because it's the night before the night before Christmas, this (short) week's other news includes LG stealing the Surface ad, Google and Ford partnering on driverless cars, and Google's plans for chat apps and getting rid of passwords. Note: It's a short week, so this is a shorter than usual Short Takes, sorry. I'll be posting to Thurrott. com throughout the holiday long weekend, however. --Paul LG steals a Surface advertisement This one is ... weird. For some reason, LG is ripping off the original Surface ad from back in mid-2012. Its new ad for LG Signature---which appears to be a lineup of premium home appliances and entertainment products---is almost a scene-for-scene remake of that old Surface ad. Which as you may recall was made for the original, and failed, Surface RT and Surface Pro. Hey, I'm sure LG knows what it's doing. After all, they're killing it in consumer electronics. He says to crickets chirping. "Will 2016 Be Microsoft Corporation's Best Year Yet? " I suppose that is one of the options. Google and Ford to reportedly announce driverless car partnership at CES 2016 According to a number of reports, Google and Ford are set to announce a partnership to build and sell driverless cars. Such a partnership is obvious in retrospect, since each has a particular expertise the other lacks. For example, Ford knows how to build cars and Google knows how to make things that rely on people absolutely never paying attention. "Nicolas Cage returns... --- ### PowerShell Problem Solver: Process Performance Reporting > PowerShell MVP Jeff Hicks shows how to build a custom performance object and shares tips on measuring performance through reporting. - Published: 2015-12-23 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-process-performance-reporting/ - Categories: PowerShell - Tags: PowerShell Problem Solver - Article Type: How To PowerShell MVP Jeff Hicks shows how to build a custom performance object and shares tips on measuring performance through reporting. We're back once again with a problem scenario about getting average processor time, as well as the top five processes that consume the most CPU time. If this is your first time in this series, you'll definitely want to go back and review the earlier PowerShell Problem Solver articles. The original question I came across wanted to combine processor and process information into a single report, presumably for a group of remote computers. At least that's the approach I take: if I can do something for one server, I should be able to do it for 10, 100, or 1000 servers. PowerShell Processor Article Series:  PowerShell Problem Solver: Processor Loads PowerShell Problem Solver: More Processor Performance PowerShell Problem Solver: Process CPU Utilization PowerShell Problem Solver: Process Performance Counters PowerShell Problem Solver: Process Performance Reporting PowerShell Problem Solver: Process Performance For All After everything we looked at over the last several articles, it seems to me that the best way to get the most accurate information is with performance counters. The added benefit is that we can query multiple counters at the same time. Let's test with a single remote computer. ​ From the previous articles, I know we will need these counters. ​ At this point, I just need enough data to help me build the PowerShell commands. ​ Because I am collecting process data for all processes, this will include items like Idle, System and _Total that I don't want. So I'll filter those out with a regular... --- ### Microsoft Raises The Price Of The Surface Hub, Delays Release Date Again > Microsoft has raised the price of the Surface Hub and has announced yet another delay for existing preorders. - Published: 2015-12-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-raising-the-price-of-the-surface-hub/ - Categories: Hardware - Tags: Editor's Pick, News, Surface Hub - Article Type: News Microsoft has raised the price of the Surface Hub and has announced yet another delay for existing preorders. Earlier this year, Microsoft announced the availability of the Surface Hub and began taking pre-orders on July 1st with an expected ship date of September 1st. The company then announced a delay, where the device would not ship until January. Now Microsoft says not only will they raise the price of the device for all new orders, but also that the device will ship during Q1. When the Hub was announced, it was initially priced at $6,999 for the 55 inch and $19,999 for the 84-inch model, but now the company is going to increase the price of the device for all new orders. Starting today, if you order a 55-inch Hub, it will cost you $8,999. If you purchase the 84-inch version, the price will now be $21,999. For those who have already ordered the devices, the company will honor the initial price. The company says, in a statement sent to Petri, that they are still "on track to ship the first Surface Hub devices to customers early next year," but does not specifically state January 1st. The company notes that there was confusion that the month of January was the timeline, not specifically the 1st but still, they are now saying Q1. This further delay is likely frustrating to those who ordered the device back in July. While the company is confident about this new release date, a second delay could be putting corporate plans in jeopardy to deploy the new devices. Back at BUILD 2015 in the spring,... --- ### Getting the Most Out of Office 365: Outlook on the Web > Joe Finnely shares a few insights on collaborative features and functionality in Office 365's Outlook on the Web to make email more productive. - Published: 2015-12-22 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office-365-outlook-on-the-web/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office, Office 365, Outlook on the Web - Article Type: How To Joesph Finnely shares a few insights on collaborative features and functionality in Office 365's Outlook on the Web to make email tasks more productive. The first thing that's typically associated with Office 365 is Exchange and Outlook on the Web. Email is the ubiquitous and foundational method of communication for most businesses. The world may never move away from email because it does its job of sending a message so well. The world is changing and today email has become a non-value-added task for many. Email is an essential that one must do all day every day with no reprieve. While email has remained relatively unchanged, the way it gets used has been evolving. Today getting an email as a simple confirmation is common. Also, getting a long email addressed to dozens of people, where only one small part pertains to you happens all too often. So, clearly email needs to evolve while still retaining what makes it so necessary. Microsoft is aware of two things. The first is that email needs to change, and second, email needs to stay the same. Although it might seem like there's no viable solution to this problem, Microsoft has chosen to slowly and carefully walk the fine line between making subtle changes to Outlook on the Web while keeping the product largely unchanged. Email needs to evolve in a couple of different ways. Because email is the primary method of communication to external contacts, attachments have become a major pain point for most companies. Attachments represent a security risk, a storage problem, and a current information crisis. To fix this problem, Microsoft has casually brought cloud hosted attachments via OneDrive... --- ### Apple Comes Out Firing Against Encryption Backlash - Published: 2015-12-22 - Modified: 2024-09-04 - URL: https://petri.com/apple-comes-out-firing-against-encryption-backlash/ - Categories: Mobile - Tags: News - Article Type: News Under increasing political pressure because of its controversial policy of automatically encrypting new iPhones and other devices, Apple has gone on the offensive. But it may already be too late. Under increasing political pressure because of its controversial policy of automatically encrypting new iPhones and other devices, Apple has gone on the offensive. But it may already be too late. Law enforcement has been complaining about Apple's encryption policies since they were first announced in mid-2014. But in the wake of the recent terrorist attacks in Paris and San Bernardino, the issue has become politicized, with many calling out Apple for using technology that protects terrorists and other villains. The issue with encryption, of course, is that it's essentially perfect. And even Apple---in this case---doesn't have any way to bypass its own security controls and gain access to the contents of an encrypted smart phone. But Apple understandably refuses to build in a so-called backdoor for law enforcement because it would be quickly usurped by hackers and evil-doers. This is the central crux of the issue. Law enforcement, and now politicians and other policy makers, is arguing that always-on encryption will help terrorists and others hide communication and other information, thus enabling them to do harm to the innocent. Apple is in effect harming the security of the United States and elsewhere. Apple disagrees, has always disagreed. But in recent days, the company has forcefully gone public about its views. "I don’t believe that the trade-off here is privacy versus national security," Apple CEO Tim Cook told Charlie Rose on "60 Minutes" on Sunday night. “I think that’s an overly simplistic view. We're America. We should have both. "... --- ### Hyper-V Predictions for 2016 > Here we are, counting down the days and hours to 2016, and it is time for Aidan Finn to make some Hyper-V predictions for 2016. - Published: 2015-12-22 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-predictions-for-2016/ - Categories: Hyper-V - Tags: Azure, CPS, Editor's Pick, Hyper-V, Surface, Windows Server 2016 - Article Type: Opinion Here we are, counting down the days and hours to 2016, and it is time once again for Aidan Finn to break out the crystal ball and make some Hyper-V predictions for the New Year. Here we are, counting down the days and hours to 2016, and it is time, once again, to make a fool of myself and predict some things that will absolutely, definitely, bet-the-kid’s-college-fund happen in the Hyper-V world over the coming 12 months. It's time to break out the crystal ball... , but please do not make any bets on the following predictions! Reviewing My 2015 Predictions I made six predictions last year. Let's see how I did: Docker hype: I'm going to say that I got this right... sort of. The hype has actually been around containers. Talk of the last two technical previews of Windows Server 2016  has been dominated by Windows Server Containers and Hyper-V Containers. Windows Server licensing will switch to per-core: I nailed this one! It was inevitable, and thankfully, Microsoft messed the announcement up, and it's given me plenty of material to write. Windows Server vNext will be out in September 2015: Whoops! In my defense, Mary Jo Foley agreed that this was the original release date. Microsoft Azure momentum: We don't really know how much money Microsoft is making, but I'm giving myself a score here. I've never been so busy with Azure work as I am now, and the stats from Microsoft do show a steep rise in activity. You still won't be using PowerShell: From what I can see, PowerShell adoption is limited to those that attend user group events and technical conferences -- that is, the minority of IT pros that are... --- ### NetApp To Purchase Solid State Storage Start-Up SolidFire > NetApp, Inc. on Monday announced its intent to acquire the Boulder, Colorado based all-flash array (AFA) vendor SolidFire, for $870 million in cash. - Published: 2015-12-21 - Modified: 2024-09-04 - URL: https://petri.com/netapp-to-purchase-solid-state-storage-start-up-solidfire/ - Categories: Backup & Storage - Tags: afa, Editor's Pick, netapp, News, solid state, solidfire, storage - Article Type: News NetApp, Inc. on Monday announced its intent to acquire the Boulder, Colorado based all-flash array (AFA) vendor SolidFire, for $870 million in cash. NetApp, Inc. on Monday announced its intent to acquire the Boulder, Colorado based all-flash array (AFA) vendor SolidFire, for $870 million in cash. According the to announcement, NetApp intends to incorporate SolidFire’s products into NetApp’s existing product lines. Following the close of the transaction, SolidFire CEO, Dave Wright, will lead the SolidFire product line within NetApp. NetApp will continue to push their existing all-flash offerings to the three largest AFA market segments, with their existing lines targeting the enterprise, and SolidFire focused on next-generation cloud and “webscale” architectures. CRN had reported earlier in the day that an announcement was coming, and in their reporting said that Cisco and Samsung had also been interested in picking up SolidFire. SolidFire had raised around $180 million in funding since it was started in 2009 and launched its first product in late 2012. SolidFire competes in the AFA segment against other market leaders like EMC’s XtremeIO, Pure Storage and Tegile. The company’s main selling points are a robust storage quality of service (QoS) offering that allows service providers to carve up and guarantee a level of performance for customers, an application programming interface (API) that enables administrators to program against or script any functionality within the system, and a scale-out architecture that uses traditional iSCSI and Ethernet. NetApp expects the transaction to be completed during the fourth quarter of its fiscal year, 2016. --- ### Opinion: Kite-Flying is Tarnishing Microsoft's Reputation > Aidan Finn takes a look at how Microsoft is employing kite-flying marketing tactics and describes how it's backfiring for the technology giant. - Published: 2015-12-21 - Modified: 2024-09-04 - URL: https://petri.com/kite-flying-tarnishing-microsofts-reputation/ - Categories: Main - Tags: Editor's Pick, OneDrive, OneDrive for Business, Windows Server 2016, WS2016, Xbox, Xbox One - Article Type: Opinion Aidan Finn takes a look at how Microsoft is employing kite-flying marketing tactics and describes how it's backfiring for the technology giant. Tech reporters like Paul Thurrott and Mary Jo Foley joke that they would be put out of their jobs if Microsoft ever got good at communications; Microsoft is brutal at communicating anything, be it a vision, a product launch, licensing or technical documentation. But reductions in quality aren't just hitting product updates, they're also hitting communications. In the last couple of years Microsoft has started using a political tactic called "kite-flying," and it's hurting products and profits. What is Kite-Flying? Politicians use a technique called kite-flying to measure how much of a bad thing that they can get past the voting public. In other words, this is the concept of how much of an unpopular measure can be forced on the public without losing too many votes. For example, let's say that the government of the day wants to increase taxes, and the most they are thinking about is 10 percent. Will the public swallow that? The government might make a statement about things they are considering, or they might put out a leak via a trusted member of the media. The rest of the media and the public will react, and the government will observe. If there are just grumbles, then 10 percent it is. But if there is a strong reaction, maybe the increase will change to five percent, tricking many people into feeling relieved, but there's also a chance that people remember that 10 percent suggestion. Microsoft Kite-Flying Kite flying isn't a new tactic for politicians;... --- ### Microsoft Inks 20th Acquisition For the Year After Buying Talko > Microsoft has announced that it has acquired Talko, a mobile communication tool, and that it will be integrated into Skype. - Published: 2015-12-21 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-inks-20th-acquisition-for-the-year-after-buying-talko/ - Categories: Main - Tags: Acqusition, Editor's Pick, Microsoft, News, Talko - Article Type: News Microsoft has announced that it has acquired Talko, a mobile communication tool, and that it will be integrated into Skype. Despite the fact that the end of the year is upon us, Microsoft is not slowing down with its acquisitions. In the past week, the company has acquired Metanautix, a firm that helps organize large amounts of data and now they are snatching up Talko. Talko is a mobile messaging application that's founded by Ray Ozzie, who was previously the Chief Software Architect at Microsoft until 2010. With the new acquisition, Talko will be integrated into Skype. In addition, the team will be joining Microsoft, but Ozzie will not be heading back to his old turf. For those that use Talko, the company will be closing the service in the next several months, which means you should begin preparation to move away from the service. Earlier this morning, I noted that 2015 was a record year for Microsoft with 19 acquisitions. With Talko being announced today, the company has now purchased 20 companies and with nine days left in the year, seeing how the past week has been going, they may have more announcements. Skype is Microsoft's messaging platform that it acquired back in 2011 for $8. 5 billion. Since then, the company has rapidly expanded the communication platform to the mobile space and is continuing to invest in the service with today's announcement. --- ### Delegating Admin Rights in Microsoft Azure > Learn how to delegate admin rights in Azure with some helpful tips on how to implement role-based access control (RBAC). - Published: 2015-12-21 - Modified: 2024-11-19 - URL: https://petri.com/delegating-admin-rights-in-microsoft-azure/ - Categories: Microsoft Azure - Tags: Azure, Azure AD, Editor's Pick, RBAC, Resource Groups, Role-Based Access Control, Security - Article Type: How To Learn how to delegate admin rights in Azure with some helpful tips on how to implement role-based access control (RBAC). In this article, I'll explain how you can use the resource group functionality of Azure to implement role-based access control (RBAC) and limit administrative access and rights within an Azure subscription. Role-Based Access Control (RBAC) I've been puzzled by how rarely I am asked about implementing RBAC for additional administrators. I think this might be because most people are still in the early days of learning Azure and haven't thought about long-term ownership. Also, many large enterprise Azure customers are consuming Azure via direct billing; in other words, each developer or tester has their own account that they expense. And yes, I have witnessed this shadow IT approach. However, as knowledge expands, the adoption of Azure becomes more integrated, starting with Azure Active Directory (Azure AD or AAD). Security and compliance officers will start to pay attention to Azure, and people will want to learn how to implement RBAC. In other words, we can limit rights and privileges in Azure to: Just the required amount of rights And just to the required people Let me answer the question before you ask it: yes, we can implement delegated administration in Azure. Subscription Admins The Subscription Admins group is similar to Domain Admins or virtualization super users in an on-premises environment. The wrong approach to granting rights to Azure is to add people to this group. Let me repeat this more clearly: do not add people to Subscription Admins just to grant them quick access to your Azure subscription. Like all super user groups, we should... --- ### 2015 Was A Record Year For Microsoft Acquisitions > It was a record year for Microsoft acquisitions, the company bought 18 different business that include a new email app and big data management tools. - Published: 2015-12-21 - Modified: 2024-09-04 - URL: https://petri.com/for-2015-it-was-a-record-year-for-microsoft-acquisitions/ - Categories: Main - Tags: Acqusition, Editor's Pick, Microsoft, News - Article Type: News It was a record year for Microsoft acquisitions in 2015, the company bought 18 different business that include a new email app and big data management tools. During 2015, Microsoft went on a buying spree and snatched up companies from across the globe that include everything from an email application to big data analytics. The assets the company have acquired will go toward improving user experience, adding new features to existing products, securing the company's future and in the case of Accompli, making sure that the company has a viable email application on all mobile platforms. During the last calendar year, Microsoft acquired 20 different companies, as noted on Wikipedia, which makes this year have the highest volume of acquisitions since its inception. The next year that comes close to the rate of acquisitions to 2015 is a tie between 2007 and 2008, where the company bought 16 firms in each of those years. Just because the company bought up a large number of other businesses, doesn't mean that this year was the most expensive for them either. Microsoft does not publicly state how much it will pay for a business that it has acquired unless it has a material impact on its financial statements. Considering that Microsoft did not announce any figures for its acquisitions this year, we know that they have all been small sums compared to the company's overall operation. The only potentially known figure for an acquisition this year was Adallom, which Microsoft is said to have paid $320 million. In the year’s prior, the company has paid billions for assets, such as the mobile phone division of Nokia, Skype, and aQuantive, which... --- ### Toshiba to Lose $5.4 Billion in 2015, Shed 7,800 Jobs - Published: 2015-12-21 - Modified: 2024-11-19 - URL: https://petri.com/toshiba-to-lose-5-4-billion-in-2015-shed-7800-jobs/ - Categories: Hardware - Tags: News, PC, Toshiba - Article Type: News Toshiba announced this morning that it will likely post a record $5.4 billion loss for fiscal 2015 as an historically bad accounting scandal has exploded to encompass virtually all of the company. Credit: Bloomberg Toshiba announced this morning that it will likely post a record $5. 4 billion loss for fiscal 2015 as an historically bad accounting scandal has exploded to encompass virtually all of the company. Toshiba will cut 7,800 jobs as a result, and is seeking to exit several businesses, including nuclear power, health care, and PCs. While many---myself included---think of Toshiba primarily as a PC maker, it is in fact a multinational conglomerate of which PCs are only a part. The firm is also engaged in building products as diverse as air conditioners, health care, consumer electronics products, home appliances, lighting, medical equipment, and even nuclear power systems. (Toshiba's business diversity isn't unusual. Sony, well-known for its consumer electronics business, also sells insurance and financial services. ) "Toshiba will implement a series of management measures under a 'Toshiba Revitalization Action Plan'," the firm announced Monday. "Toshiba hopes to regain the trust of shareholders, investors, and all stakeholders, and to achieve a strong corporate constitution. " Toshiba became embroiled in an accounting scandal back in July when it was found that the firm had been "systemically" overstating profits since the 2008 global financial crisis. The misreporting was directly attributed to Toshiba's corporate culture, where superiors routinely demanded that subordinates meet unrealistic targets. Unable to do so, numbers were simply made up, and all across the company. The behavior persisted across the tenure of three separate CEOs. Ultimately, Toshiba was found to have overstated its profits from 2008... --- ### A Tip for Writing Better Scripts with PowerShell's Read-Host cmdlet > PowerShell MVP Jeff Hicks shares a new command that adds functionality to PowerShell's Read-Host cmdlet to help you make better scripts. - Published: 2015-12-18 - Modified: 2024-09-04 - URL: https://petri.com/tip-writing-better-script-powershell-read-host-cmdlet/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks shares a new command that adds functionality to PowerShell's Read-Host cmdlet to help you make better scripts. In a previous article I guided you through some variations on using Read-Host to prompt for user input. It's not too surprising that I couldn't leave the topic alone. I just had to keep working with it, and I came up with something else that I hope you'll fine equally helpful. I wanted to take Read-Host to the next level and create a tool that will let you write better scripts. Let's say you are using Read-Host in a script or function to prompt for additional information. You might start with something like this: $name = Read-Host "Enter a user name" You most likely need to validate it, perhaps to make sure something was entered. if ($name) { #code to continue #... } else { Write-Warning "You didn't enter a user name" } Another option is to use one of the parameter validation checks. They are really variable validation tests, and you can use them anywhere. $name = Read-Host "Enter a user name" Using a validation test (Image Credit: Jeff Hicks) I didn't use ValidateNotNullorEmpty because even if you press Enter, Read-Host writes a 0 length string to the pipeline, which technically passes the NotNullorEmpty test. So I wanted a Read-Host prompt that offered built-in validation. I also wanted to take some of the features of the $host. ui. Prompt method like a title. And finally, I liked the idea of adding color to the prompt to make it stand out. Here's my function, where I call Read-HostSpecial, as... --- ### Windows 10 Tip: Configure Windows Spotlight and the Sign-In Screen > Russell Smith shows how to set the Windows 10 lock screen to use Windows Spotlight, and disable the Windows Hero image on the sign-in screen. - Published: 2015-12-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-configure-windows-spotlight-and-the-sign-in-screen/ - Categories: Windows 10 - Tags: tips, Windows 10 - Article Type: How To Russell Smith shows how to set the Windows 10 lock screen to use Windows Spotlight, and disable the Windows Hero image on the sign-in screen. In today's Ask the Admin, I'll show you how to set the Windows 10 lock screen to use Windows Spotlight, and disable the Windows Hero image on the sign-in screen. In general, the visual design of Windows 10 is an improvement over Windows 8, and light years beyond Windows XP and 7. But I've never liked the sign-in screen's Hero image that Microsoft, until version 1511, forced on users. Now it's possible to at least disable it. Additionally, there are several options for choosing the image that appears on the lock screen, including a feature called Windows Spotlight, that updates the image daily from Bing while learning about the images you approve of through a 'like' button. Windows Spotlight Setting a custom desktop background has been a favorite customization option seemingly since the dawn of time, but I rarely see my desktop, and in Windows 10, I'm much more likely to see the lock screen. Set the lock screen in Windows 10 to use Spotlight (Image Credit: Russell Smith) To that end, Microsoft provides the option to set the lock screen to use a static background image, a slide show from the default Pictures folder, or any folder you choose, and the easiest solution of all, Windows Spotlight. My preference is for Windows Spotlight, as it provides elegant and inspiring images that make any device look beautiful. To access the lock screen settings in Windows 10, you'll need to open the Settings app. Click... --- ### Juniper Finds Backdoor Exposing Encrypted VPN Traffic > Juniper Network’s NetScreen firewalls contains an unauthorized backdoor allowing third parties to potentially monitor encrypted VPN traffic. - Published: 2015-12-18 - Modified: 2024-09-04 - URL: https://petri.com/juniper-finds-backdoor-exposing-encrypted-vpn-traffic/ - Categories: Security - Tags: juniper, nsa, Security, VPN - Article Type: News Juniper Network’s NetScreen firewalls contains an unauthorized backdoor allowing third parties to potentially monitor encrypted VPN traffic. In a security advisory posted late Thursday, Bob Worrall, Juniper Network’s Chief Information Officer, announced that the ScreenOS software used on the company’s NetScreen firewalls contains an unauthorized backdoor allowing third parties to potentially monitor encrypted VPN traffic. "During a recent internal code review, Juniper discovered unauthorized code in ScreenOS that could allow a knowledgeable attacker to gain administrative access to NetScreen devices and to decrypt VPN connections... .  At this time, we have not received any reports of these vulnerabilities being exploited," Worrall wrote. Juniper says that ScreenOS versions 6. 2. 0r15 through 6. 2. 0r18 and 6. 3. 0r12 through 6. 3. 0r20 are affected should be upgraded immediately to either 6. 2. 0r19 or 6. 3. 0r21, as there are no workarounds to disable access. Juniper also says they have no evidence that the their products running their Junos operating system are impacted by this breach. In another knowledgebase article, Juniper explains what type of logged event may appear on a compromised system, but warns that a skilled attacker would likely be able to clean his tracks and remove the events from the logs. While it's not clear who is responsible or how this backdoor was added to the code, many security experts point to a 2013 article published by Der Spiegel that said an NSA operation called FEEDTHROUGH worked specifically against Juniper firewalls and gave the agency persistent backdoor access. The NSA also had an operation exposed by Edward Snowden in which they intercepted Cisco products, mid-shipment, that were destined for other countries, to install backdoor code directly into those routers,... --- ### The Sams Report EP 22: A Taste Of Redstone, A Scoop for OneDrive > On this episode, I cover the new build of Redstone, a new cadence of the Insider builds and a scoop about a new feature coming to OneDrive. - Published: 2015-12-18 - Modified: 2024-09-04 - URL: https://petri.com/68671-2/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I cover the new build of Redstone, a new cadence of the Insider builds and a scoop about a new feature coming to OneDrive. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I cover the new build of Redstone, the new cadence of the Insider builds (a good theory on why they are now making this change), Windows phone updates and a scoop about a new feature coming to OneDrive. If you have any questions, you can ask in the Hangout or after the show, you can find us @bdsams and @thurrottfeed on Twitter. https://www. youtube. com/watch? v=FrW10K4qa3E Subscribe: RSS | SoundCloud | YouTube --- ### Paul Thurrott's Short Takes: December 18 - Published: 2015-12-18 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-18/ - Categories: Mobile - Tags: News - Article Type: Opinion Because I'm always jolly, this week's other news includes Microsoft's over-insistent efforts to get customers upgraded to Windows 10, a rumored HP Windows phone, Blackberry attacks Apple, the FCC investigates zero rating, and you're never going to believe how easy it is to hack Linux. What's old is new again? HP could be plotting a return to phones! Because I'm always jolly, this week's other news includes Microsoft's over-insistent efforts to get customers upgraded to Windows 10, a rumored HP Windows phone, Blackberry attacks Apple, the FCC investigates zero rating, and you're never going to believe how easy it is to hack Linux. Microsoft accused of "nagging" users into upgrading to Windows 10 I've been surprised by the all-out FUD attack on Windows 10 in some quarters, and have consistently railed against the false claims that this OS in any way is a privacy concern. But this complaint is valid: Microsoft is overly-aggressively pushing the free Windows 10 upgrade on Windows 7 and 8 users. And as the complaints have mounted, Microsoft has only gotten more aggressive. And it's going to get worse: Starting in January, Microsoft will redefine the Windows Update-based Windows 10 upgrade from "optional" to "recommended," meaning that millions of Windows 7/8 users will simply be upgraded automatically. This is unacceptable, and Microsoft needs to scale back its ambitions, which in this case are coming at the expense of the explicit desires of its customers. "Microsoft’s Rumored Surface Phones to Change the Fortune of Windows Phones" Right. I can see no reason why a name change won't be all it takes to completely turn things around. Is HP planning a return to phones ... to Windows phones? ? Since HP's aborted plan to go its own way... --- ### Domain Controller Status Lights via PowerShell > Sometimes you need to display PowerShell information in a more colorful format. Learn how to display domain controller service statuses that light up. - Published: 2015-12-17 - Modified: 2024-09-04 - URL: https://petri.com/domain-controller-status-lights-via-powershell/ - Categories: PowerShell - Tags: Active Directory, Advanced, PowerShell, Scripting - Article Type: How To Sometimes you need to display PowerShell information in a more colorful format. Learn how to display domain controller service statuses that light up. In an previous article, I showed you several different techniques for displaying critical service statuses from your domain controllers. Although you could easily apply the technique to any server or service, I prefer PowerShell commands and tools that work with objects in the pipeline. This is especially true if you think you might need to sort, filter, export, or convert the results. But there are probably just as many situations where all you want to do is read some information on the screen. PowerShell has some tricks up its sleeve that you can take advantage of to make this kind of reporting easy and meaningful. All I ask is that you realize that what I'm about to demonstrate should be considered the exception and not the rule. Let's use the same domain controllers and services that I used last time. $dcs = "chi-dc01","chi-dc02","chi-dc04" $svcs = "adws","dns","kdc","netlogon" Next, let's look at a typical command you might run. Get-Service -name $svcs -ComputerName $dcs | format-table @{Name="Computername";Expression={$_. Machinename. toUpper}},Name,Displayname,Status -AutoSize Checking domain controller services (Image Credit: Jeff Hicks) As you can see, I have some services that are stopped. I'd like those to stand out. This will require a little text manipulation. Format-Table writes formatting objects to the pipeline, but I like the result, so I'll re-run the command and turn it into strings using Out-String. $t = Get-Service -name $svcs -ComputerName $dcs | format-table @{Name="Computername";Expression={$_. Machinename. toUpper}},Name,Displayname,Status -AutoSize | out-string This looks the same. A text version... --- ### Using Office Mobile Apps With Continuum Will Require Office 365 Subscription > Microsoft's Office mobile apps will require an Office 365 subscription if you want to use them with Continuum on Windows 10 Mobile. - Published: 2015-12-17 - Modified: 2024-09-04 - URL: https://petri.com/using-office-mobile-apps-with-continuum-will-require-office-365-subscription/ - Categories: Microsoft 365 - Tags: Office 365 - Article Type: News Microsoft's Office mobile apps will require an Office 365 subscription if you want to use them with Continuum on Windows 10 Mobile starting next spring. One of the new features for Microsoft’s flagship phone, the Lumia 950, is Continuum. The feature, which you can learn more about here in a deep dive post, allows you to connect your phone to a larger screen and use it like a traditional PC. Microsoft offers its Office mobile apps for free on all major mobile platforms. Until now, users were able to use these apps on a larger display via Continuum without having to pay for Office 365. That's all changing, however, as the company announced in a blog post that you'll now need an Office 365 subscription to use those mobile apps with Continuum. Starting on March 31, 2016, you will need an Office subscription to use those apps on a larger screen. This shouldn't come as a big surprise, as the company requires any screen larger than 10 inches to have a subscription to run the apps because the primary focus here is free apps for mobile scenarios. Microsoft has been pushing Office 365 heavily since the product's inception as a cost-effective way to obtain productivity applications. The company prefers this model because it lowers the cost of entry for its software, but this method also stabilizes its cash flow because the software must be paid through a monthly or annual subscription. Until March 31, Office apps with Continuum will operate as if you have a subscription but after that date, they will no longer function in this mode without an Office 365 package tied to your Microsoft account. You can read... --- ### In Defense of the Server GUI > The role of the GUI in Windows Server has been under attack. Aidan Finn explains why he and customers do not accept the dogma. - Published: 2015-12-17 - Modified: 2015-12-17 - URL: https://petri.com/in-defense-server-gui/ - Categories: Windows Server - Tags: Editor's Pick, Nano Server, Server Core, Windows Server 2016, WS2016 - Article Type: Opinion The role of the GUI in Windows Server has been under attack. Aidan Finn explains why he and customers do not accept the dogma. The GUI is dead; long live the GUI! You might remember Microsoft Ignite, where presentation after presentation declared the death of the UI on Windows Server 2016. Nano Server was what everyone would be doing. No one would ever log into a server ever again, and we'd be shooting servers in the head every five minutes. So about that... , let's just say there's been a little bit of a step back to something closer to reality. In this post-PC era, where I need a PC to fix my iPad or iPhone, the post-UI era sees the return of the UI. The GUI is Dead Microsoft has been trying to kill the server UI since Windows Server 2008, when a big push was made with Windows Server 2008. Back then, I was going on the bleeding edge, by pushing out Hyper-V into production in a hosting company the day after it was released. I spent months working with the beta and release candidate, and I listened to all the best practices and advice. Part of that guidance from Microsoft was to deploy Server Core, a new stripped down installation of Windows Server that removed all the windows from Windows, leaving me with just a command prompt, PowerShell, and remote management. I'd been a remote management junky for as long as I could remember, and I was not afraid of scripting. At that point, I had written COBOL, Pascal, C, C++, Batch Scripting, Rexx, and VBS on VMS, various breeds... --- ### Surface Hub Gets A Few Unique Cortana Commands, User Guide Released > Starting next month, Microsoft will begin shipping its Surface Hub and to help you get started, a new user guide has been released. - Published: 2015-12-17 - Modified: 2024-09-04 - URL: https://petri.com/surface-hub-will-be-released-soon-company-posts-up-user-guide/ - Categories: Hardware - Tags: Surfac Hub - Article Type: News Starting next month, Microsoft will begin shipping its Surface Hub and to help you get started, a new user guide has been released. Starting on January 1st, Microsoft will begin shipping its massive new Surface, the Hub. The device, which is targeted at the enterprise markets, is a collaborative device that is expected to be used in conference rooms and open spaces to help make meetings more productive. The device, which comes in two sizes, 84in and 55in, was initially delayed from a fall release but is now ready for its big debut. To help you get started with the new device, the company has released a few documents such as the user guide, how to unpack the beast, mounting it on the wall and everything else you would ever need to know about the device. The Surface Hub will also have a few unique integration points with Cortana as well. If you say, “Hey Cortana, Start” this will begin the meeting and if you say end, instead of start, this will end the meeting. Additionally, you can say “Hey Cortana, what’s the next meeting” to see what the next event is for the Surface Hub. The Surface Hub also comes with a dedicated keyboard that features customized keys along the top row to make it easier to use the most common features of the device. The conference room is undergoing a dramatic overhaul at many companies around the world. Everything from adding new sensors to putting a Hub on the wall, the four grey walls and a table setup for a meeting room is quickly becoming a thing of the... --- ### Microsoft Partnership Will Bring Windows 10 to Governments in China - Published: 2015-12-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-partnership-will-bring-windows-10-to-governments-in-china/ - Categories: Windows 10 - Tags: News - Article Type: News Microsoft has announced a joint venture that will sell and service Windows 10 in China's governmental agencies and certain state owned enterprises. Microsoft has announced an expanded partnership with the China Electronics Technology Group (CETC) to create a joint venture that will sell and service Windows 10 in China's governmental agencies and certain state owned enterprises. The new joint venture is subject to regulatory approval in China, Microsoft notes. "This is the next step in the partnership with CETC that was announced in September," a Microsoft representative told me Wednesday. "We're creating a joint venture in China for the purpose of selling and supporting Windows 10 for government and state owned enterprise customers. This is a positive step toward securing eventual clearance for Windows 10 as an approved operating system for these government customers. " Provisionally called C&M Information Technologies, this new joint venture will be based in Beijing and will serve government agencies and state-owned enterprises in key infrastructure fields such as energy, telecommunications, and transportation, Microsoft says. To achieve regulatory approval, Microsoft will create a government-approved Windows 10 image that includes Chinese-specific features such as government-selected anti-virus software. C&M Information Technologies will be the exclusive licensor for this software, and it will provide product activation, patch management, deployment services and product support to these government customers. And going forward, C&M Information Technologies will collect feedback from its Chinese government customers so that they can tailor future Windows 10 image versions for their specific needs. "It’s common for governments to look to specialty technology partner organizations to deploy technology at scale," Microsof's Yusuf Mehdi says, "and this venture... --- ### Microsoft Brings Back Unlimited OneDrive Storage, Only For Some Business Accounts - Published: 2015-12-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-back-unlimited-onedrive-storage-only-for-some-business-accounts/ - Categories: Microsoft 365 - Tags: OneDrive, OneDrive for Business - Article Type: News Microsoft is updating its OneDrive storage options for its business customers that features unlimited capacity for each user who are select plans. Earlier this year, Microsoft announced that it was doing away with its offer of unlimited OneDrive storage for consumers, but now that feature is back, but only for large corporations. The company announced today new plans for OneDrive for Business, as well as a new sync client. Office 365 customers who are on the premium Enterprise, Government, and Education plans will receive OneDrive for Business with unlimited storage. Specifically, the unlimited storage is for individuals in an organization with more than five people subscribing to one of the following plans: Office 365 Enterprise E3, E4, and E5 Office 365 Government E3, E4, and E5 Office 365 Education OneDrive for Business Plan 2 and SharePoint Online Plan 2 The updated storage offering will roll out at the end of this month, and customers will see the 1TB option bumped to 5TB. If you need more than that, you will have to ping Microsoft support to increase the storage. The company expects this roll-out to be completed by March of 2016. All other customers who are on other plans will continue the receive 1TB of storage; the company notes that the majority of its users are currently well below the 1TB threshold. Knowing this, the unlimited storage option appears to be more marketing than functionality, as Microsoft states that most users will not need the feature. The company is also ready to release their new sync client that they say improves the performance as well as reliability. The tool will now... --- ### PowerShell Problem Solver: Process Performance Counters > Get processes using the most CPU with PowerShell and performance counters. - Published: 2015-12-16 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-process-performance-counters/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver - Article Type: How To Get processes using the most CPU with PowerShell and performance counters. Over the course of several articles, we've been exploring a variety of techniques and tools for getting processor and process utilization values. Last time we explored ways to find out home much of the CPU a process is consuming. I left off promising a discussion of relevant performance counters, and that's what we are going to cover today. We'll be using the Get-Counter cmdlet, so take a moment to read help and examples. PowerShell Processor Article Series:  PowerShell Problem Solver: Processor Loads PowerShell Problem Solver: More Processor Performance PowerShell Problem Solver: Process CPU Utilization PowerShell Problem Solver: Process Performance Counters PowerShell Problem Solver: Process Performance Reporting PowerShell Problem Solver: Process Performance For All The first step is to identify the available counters. ​ Available performance counters (Image Credit: Jeff Hicks) We can drill down to the Paths to see specific counters. ​ Available counters (Image Credit: Jeff Hicks) The asterisk (*) can be replaced with specific process names, which I can verify by looking at paths with instances. For the task at hand, I think the first counter in the list is what we want. Let's try it out locally. ​ Testing a performance counter (Image Credit: Jeff Hicks) Some system processes are protected so you may see an error. This counter gets all processes, but you can narrow it down to a specific instance. ​ Getting a specific process performance (Image... --- ### Microsoft Announces Expansion of Corporate Philanthropy - Published: 2015-12-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-expansion-corporate-philanthropy/ - Categories: Main - Tags: News - Article Type: News Microsoft this week announced plans to expand its corporate philanthropy globally, and to the people who really need it. It will create a new Microsoft Philanthropies organization to focus on these efforts. Microsoft this week announced plans to expand its corporate philanthropy globally, and to the people who really need it. It will create a new Microsoft Philanthropies organization to focus on these efforts. "Our CEO, Satya Nadella, has defined a clear mission for Microsoft: Empower every person and every organization on the planet to achieve more," Microsoft president Brad Smith explains. "In his letter to shareholders this year, he said, 'In the year ahead we will continue to ask ourselves what are the challenges mankind faces, how can technology help, and what is the contribution of Microsoft? '" As part of this effort, Microsoft has promoted Mary Snapp to head Microsoft Philanthropies, and Lori Forte Harnick will serve as the organization's COO. Snapp will report directly to Mr. Smith. Microsoft's holistic view of technology---and the benefits it can bring to mankind---is interesting. The firm collectively believes, Smith says, that delivering on its corporate mission only starts with great technology. "But great technology alone is not enough," he writes. "The benefits of technology are not yet reaching everyone in the world, despite global expansion, increased access, and democratization of technology. Too many of technology’s benefits have yet to reach people who need them. " To correct this issue, Microsoft will simply do more, Smith asserts. "Empowerment begins with inclusion, Smith continues. "Through Microsoft Philanthropies, we will contribute in new and more impactful ways to a societal ecosystem that connects the benefits of technology to those who need it most and work... --- ### Microsoft Delivers Yet Another Sour Windows 10 Update, This Time For Mobile > Microsoft has pulled another Windows 10 update because of issues impacting customers trying to install the files on their mobile devices. - Published: 2015-12-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delivers-yet-another-sour-windows-10-update-this-time-for-mobile/ - Categories: Windows 10 - Tags: update, Windows 10 Mobile - Article Type: News Microsoft has pulled another Windows 10 update because of issues impacting customers trying to install the files on their mobile devices. A few weeks back, I noted how Microsoft’s new modern development workflow is starting to show cracks and now we have yet another example of this process failing. This time, it's an update for the company's mobile platform, Windows 10 Mobile. Microsoft has said that they have pulled the latest update for Windows 10 Mobile, 10586. 29, after user complaints. There are multiple problems with this release that include the update not being offered, install process stuck at 0%, and low storage notifications. Because of these issues, the update has been pulled from the servers. The comment, which was posted in the company’s Answer forum, can be read below: We are aware of issues related to the recently published Windows 10 Mobile update, including: update not being offered, update appearing to get stuck at 0%, and pesky low storage notifications. The team is working on fixes and improvements to the upgrade experience in the short term and with future releases. In the meantime, we have unpublished the 10586. 29 update for Windows 10 Mobile from our public update servers while we work through these reports. The post goes on to say that if you are seeing the low storage alerts, you can ignore them as they are not accurate. Also, if you phone is stuck at 0%, plug it in and leave it alone and it should eventually install the update. In the event that you do have Windows Phones deployed on your network, you should be aware of these... --- ### Why Uber Isn’t the Savior of Microsoft’s Universal Windows App Platform > As a Windows Phone user, Russell Smith suffered the ultimate humiliation of being forced to ask a friend to register a bank card in Uber using Android.  - Published: 2015-12-15 - Modified: 2024-09-04 - URL: https://petri.com/uber-isnt-savior-microsofts-universal-windows-app-platform/ - Categories: Windows 10 - Tags: Editor's Pick, Universal apps, Windows 10, Windows Mobile - Article Type: Opinion As a Windows Phone user, Russell Smith suffered the ultimate humiliation of being forced to ask a friend to register a bank card in Uber using Android. As a Windows Phone user, yesterday I suffered the ultimate humiliation of being forced to ask a friend to register a bank card in Uber using Android. Here's how the story unfolded. Last week, Microsoft trumpeted the arrival of Uber on Windows 10 as a Universal Windows Platform (UWP) app. I've had the previous app installed on my handset since Uber started operating in my city more than a year ago, but always used a local taxi company in preference. But due to aggressive pricing and recommendations from friends, and to celebrate the arrival of one of the first UWP apps from a major player, I thought I'd install Uber on my notebook and order a taxi. I registered two cards in Uber when I originally signed up, so in theory it was ready to go. But before ordering, I checked the card details in the app's Payment menu to make sure they were still accurate, found my current location, searched for the destination, got a quote, and tried to order. Uber's new Universal Windows Platform (UWP) app running on Windows 10 (Image Credit: Russell Smith) Uber then politely informed me that it couldn't process the request, and that before ordering, I should scan my cards via the payment menu, or in case of any issues, contact support. No problem I thought, that is until I checked the payment options in the app only to find the scan option was missing, both in Windows... --- ### Getting The Most Out Of Office 365, Part 1: Who Can See What? > Learn how to get the most out of Office 365 by understanding who in the organization can see what. - Published: 2015-12-15 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-office365-part-1-who-can-see-what/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365 - Article Type: Overview Learn how to get the most out of Office 365 by understanding who in the organization can see what. Getting work done in a business setting today is a unique animal. There is a fine line between sharing too much and not enough. Most companies are not set up to share files in the cloud or to participate in enterprise social networks. IT staff today are stretched thin and rarely get time to experiment with new tools or develop training for the rest of the company. So before I get specific on different tools, let's look at all the Office 365 tools as a whole and see how their capabilities relate to each other. A major question looming in the back of everyone's mind when talking about the cloud is, "who can see what I am doing? " The chart below breaks down generally who can see what and what different tools are used for different settings. This chart is not perfect and may need some explanation. First, the private column does not mean confidential, because emails you send can be forwarded or shared. 'Private' includes communication that's initially visible to only the people you include. Getting the most out of Office 365 "Who Can See" Yammer is Microsoft's enterprise social network and stands as a good example of how new forms of communication are different from email. On Yammer, a status, poll, like, etc. , are generally visible to others in your company. This type of communication is passive and fulfills a different roll compared to email or chat. Ideally, people can remain up to... --- ### Comparing Azure Active Directory Editions > What is Azure Active Directory, and what are the features? Here's a feature comparison for the free, basic, and premium editions of Active Directory in the cloud. - Published: 2015-12-14 - Modified: 2024-12-03 - URL: https://petri.com/comparing-azure-active-directory-editions/ - Categories: Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure Active Directory, Azure AD, Azure AD Basic, Azure AD Free, Azure AD Premium, Editor's Pick, Single Sign-On, SSO - Article Type: Overview What is Azure Active Directory, and what are the features? Here's a feature comparison for the free, basic, and premium editions of Active Directory in the cloud. Any time that someone from Microsoft does a presentation on Windows Server or Azure, you'll see the same image over and again; there's a picture of a cloud that's divided into three components that symbolize what a customer can do on-premises, what a hosting partner can offer, and what Microsoft produces from public clouds such as Intune, Azure and Office 365. While the common denominator between the three parts of the Cloud OS is Hyper-V, the glue that holds the entire solution together is also the unique selling point that only Microsoft can offer, which is Active Directory. In this article, I'll explain the power of Azure Active Directory (Azure AD) and how it can extend your on-premises legacy Active Directory to change how your business handles identity. The Cloud OS (Image Credit: Microsoft) What is Azure Active Directory? When one first hears about Azure AD, one might think "Oh! Domain controllers in the cloud. " It's not that -- yet. Microsoft recently launched a preview of Azure AD Domain Services in North American and European regions. To put it simply, Azure AD is an identity store and performs the key feature of AD in the cloud. It allows people to authenticate and authorize against cloud services. The first of these cloud services that most businesses implement is Office 365. Even if you use one of the very simple Exchange Online plans, creating, synchronizing (using DirSync, or the replacement, Azure AD Sync), or federating (using... --- ### Samsung Appeals Apple Patent Loss to Supreme Court - Published: 2015-12-14 - Modified: 2024-09-04 - URL: https://petri.com/samsung-appeals-apple-patent-loss-to-supreme-court/ - Categories: Mobile - Article Type: News Samsung on Monday took the final legal step it can take before being forced to pay Apple almost $550 million in damages for patent infringement: It appealed the case to the U.S. Supreme Court. Samsung on Monday took the final legal step it can take before being forced to pay Apple almost $550 million in damages for patent infringement: It appealed the case to the U. S. Supreme Court. "Samsung is escalating this case because it believes that the way the laws were interpreted is not in line with modern times," a Samsung statement explains. In its filing, Samsung complains about the "unjustified windfalls"---e. g. damage payments---that Apple will receive for each infringement. The firm argues that at least $399 million of the $548 million it is expected to pay in damages is unfair, even if the Supreme Court believes that Samsung is guilty of copying Apple. Samsung also believes that juries should not award damages on certain functional design aspects of designs, such as the flat screens and rounded corners that dominated Apple's, and then Samsung's, designs. "A patented design might be the essential feature of a spoon or rug, Samsung told the Supreme Court. "But the same is not true of smartphones, which contain countless other features that give them remarkable functionality wholly unrelated to their design. " Obviously, this isn't really about the money: $548 million is a trifle compared to Samsung's annual profits and earnings. Samsung's arguments are designed to attract the attention of the Supreme Court, which could simply decide not to hear the case. Even Apple---the second most profitable company in the world---doesn't believe this and other patent-related cases are about money. What Apple is seeking is... --- ### Windows Store Begins To Show Signs Of New Life > Microsoft's Windows Store is starting to show signs of new life after the feature was largely ignored by big name developers with Windows 8. - Published: 2015-12-14 - Modified: 2024-09-04 - URL: https://petri.com/windows-store-begins-to-show-signs-of-new-life/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows Store - Article Type: News Microsoft's Windows Store is starting to show signs of new life after the feature was largely ignored by big name developers with Windows 8. When Windows 8 was released, Microsoft had big plans for its Windows Store. The company pushed the new feature as the premier place to find the best applications for Windows, but the OS failed to live up to its ambitions. With Windows 8 falling flat for the company and Windows 7 commanding the lion's share of the market for Windows users, the app store never obtained the traction the company hoped it would receive. But with the release of Windows 10 that took place more than three years after the initial unveiling of the app store, there appears to be new signs of life for the app marketplace. During the past few months, key social networking apps like Facebook and Twitter have been updated with new features and USA Today (WSJ released their updated app today too) released an application as well. In the past couple of weeks, Uber has released a desktop application along with popular travel site, TripAdvisor. Where the store has struggled in the past, especially on the mobile side, is the lack of big name developers adopting the platform. But, with the release of the Universal Windows Platform, project Island Wood (porting apps from iOS to the Windows Store) and project Westminster (bringing web apps to the store), it looks like Microsoft;s work to leverage existing code inside of its store is starting to pay off. Building out the Windows Store is critical to Microsoft's long-term success with Windows 10. The OS, which runs... --- ### Microsoft’s Changed Opinion on Hyper-Convergence > Read how Microsoft's view and recommendations on hyper-convergence have changed over the last year with the evolution of Storage Spaces Direct (S2D). - Published: 2015-12-14 - Modified: 2024-11-19 - URL: https://petri.com/microsofts-changed-opinion-hyper-convergence/ - Categories: Windows Server 2016 - Tags: Editor's Pick, Hyper-Convergence, Hyper-V, S2D, storage, storage spaces, Storage Spaces Direct, Virtualization, Windows Server 2016, WS2016 - Article Type: Overview Read how Microsoft's view and recommendations on hyper-convergence have changed over the last year with the evolution of Storage Spaces Direct (S2D). A year ago, I wrote about Microsoft's view on hyper-convergence, a virtualization architecture where storage and compute reside in the same tier. In this post, I'll update you on what Microsoft now thinks about hyper-convergence. A Long Time Ago In a conference far away, some of Microsoft's storage leads talked publicly about hyper-convergence. Microsoft was not a fan. They looked at the solution where you needed to deploy an integrated unit of compute and storage with every required expansion of compute or storage. Most organizations have two types of growth: Compute: The demand for more processors and memory is relatively small Storage: Almost every organization has a relatively larger demand for more storage capacity With hyper-convergence, it usually means that any organization that needs more storage must also add compute (processor, memory, and guest OS & management licenses), which would be quite wasteful. So Microsoft still recommended, as of a year ago, that customers stick with the converged or disaggregated models of: Compute with CPU and RAM running a hypervisor Connected by a network to storage controllers Connected by a network to disk trays containing disks The legacy model allows compute and storage to grow independently, and therefore the costs can be tightly controlled. A Dark Time for Legacy Storage Companies It's a dark time for legacy storage companies. These rigid giants of industry are stuck in their old ways of iSCSI, fiber channel, SAN controllers, licensing, and overpriced disks. Meanwhile agile customers are not only seeking out... --- ### Windows 10 Install Prompt On Windows 7/8 Is Unnecessary Nagware > The Windows 10 install prompt that is showing up for Windows 7 and 8 users is borderline malware. - Published: 2015-12-14 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-windows-10-install-prompt-on-windows-78-is-reminiscent-of-malware/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News The Windows 10 install prompt that is showing up for Windows 7 and 8 users is borderline malware and it is only going to get worse. It’s no secret that Microsoft is doing nearly everything it can to get users of Windows 7 and 8 to upgrade to Windows 10. With the company offering the OS for free, they hope to attract everyone who uses Windows to the new OS but if you don’t want the free upgrade, the prompts can feel like malware. If you are running Windows 7 or 8, there is a strong probability you have seen a pop-up on your machine trying to get you to download Windows 10. If you haven’t seen the pop-up because you are already running the OS or have managed to block the update that applies the nagware, take a look at the image at the top of this post. The key here is that there is no clear option to stop the download, other than the red x in the top right corner of the window. Typically, on a dialog box like this, you have an accept and cancel button. In this case, you have an install now and an install later option. Worse, there is not an option to hide or stop this pop-up from occurring on your desktop... it’s nagware that cannot easily be removed. And it’s only going to get worse. The company announced in October that early next year, they will make the Windows 10 download a recommended update, instead of optional, which means Windows Update will automatically download Windows 10 on to your machine. While it will not automatically install... --- ### Prompt Answers in PowerShell > PowerShell MVP Jeff Hicks explores a new way to prompt for input in your scripts and functions. - Published: 2015-12-11 - Modified: 2024-09-04 - URL: https://petri.com/prompt-answers-powershell/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Scripting - Article Type: How To PowerShell MVP Jeff Hicks explores a new way to prompt for input in your scripts and functions. When you are building a PowerShell script, there might be situations where you want to prompt for a piece of data. Some cmdlets like Get-Credential do that sort of task implicitly. You can also get prompting if you define a mandatory parameter in a function or script. Otherwise, we tend to rely on PowerShell's Read-Host cmdlet. With this cmdlet, you provide a prompt message and PowerShell writes the object back to the pipeline. $r = Read-Host "Enter computername" Using Read-Host (Image Credit: Jeff Hicks) The variable $r now contains whatever was entered at the prompt. By default, the cmdlet writes a string to the pipeline. Although I haven't seen the source code for Read-Host, it's most likely implementing the ReadLine method of the built-in $host. ui object. I can simulate the Read-Host cmdlet: Simulating Read-Host (Image Credit: Jeff Hicks) I show this to you to not only demonstrate how using a cmdlet is better than re-inventing the wheel, but I'm also showing this to you I found another method that doesn't appear to have any native cmdlet equivalent, and it's something you might find useful. The $host. ui object includes a method called Prompt. The method requires three parameters: a prompt title, the message to display, and a key name. The last piece may puzzle you. The Prompt method will create a Collections object, which is like a hashtable. The key name you specify will be used in the output. Here's a simple example. $r =... --- ### Deferring Upgrades in Windows 10 > Learn how to defer upgrades on your Windows 10 personal computer, or learn how to deploy deferred upgrades across your organization with Group Policy. - Published: 2015-12-11 - Modified: 2024-09-04 - URL: https://petri.com/deferring-upgrades-in-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick - Article Type: How To Learn how to defer upgrades on your Windows 10 personal computer, or learn how to deploy deferred upgrades across your organization with Group Policy. With Windows 10, Microsoft stated that it is the last true operating system for the technology giant. Stated differently, Microsoft is now focusing on enhancing the existing operating system by pushing out new updates via Windows Updates, compared to the traditional release to manufacturing (RTM) method of releasing the OS. With Microsoft's November update for Windows 10, the update is served up to users running Windows 10 in a mostly unpredictable manner. This means that you get no visual or textual warning that your computer is downloading the update. I'm running Windows 10 Pro on several computers, and my primary workstation decided that my lunch break is the perfect time to terminate everything I had running on my desktop. This includes documents, notepad files that were not saved, browser tabs, virtual machines -- everything! Coming back from lunch, I wanted to continue working on my open documents, but I had lost my work. I'm not the only person that experienced this sudden upgrade, many others reported having irrational upgrade times, sometime causing them to lose open work. More than that, some people reported that their computer seems to be stuck or frozen at the 100 percent status. It's important to remember that it's not just personal computer users that are being impacted. There's also a business perspective, where the impact can be bigger. Some businesses just don't want their computers to be automatically upgraded, adding new features to their PCs before they've been able to be fully tested. This... --- ### Paul Thurrott's Short Takes: December 11 - Published: 2015-12-11 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-11/ - Categories: Mobile - Tags: News - Article Type: Opinion Because it's beginning to look a lot like Christmas, this week's other news includes the source of Surface Book shortages, Microsoft's mistakes were made moment, Windows phone compete, Xbox One falls short, and Google shots for the moon. Because it's beginning to look a lot like Christmas, this week's other news includes the source of Surface Book shortages, Microsoft's mistakes were made moment, Windows phone compete, Xbox One falls short, and Google shots for the moon. Report: Surface Book, Surface Pro 4 shortage due to Intel processor availability The bad news: Poor supplies of Intel "Skylake" generation processors mean that Surface Book and Surface Pro 4 will be in short supply through early 2016. The good news: That means sales will be strong for longer than expected. The better news: That also means that Microsoft has time to fix the bugs---display, power management and more---that have been dogging early adopters. It's a Christmas miracle! "Yahoo CEO Marissa Mayer Gives Birth to Twins" And their names are Alibaba and Yahoo! :) Oh, you mean real twins. Microsoft warns of possible e-attacks after Xbox certificate leaks Microsoft warned this week that the private keys for an SSL/TLS digital certificate for xboxlive. com "were inadvertently disclosed," which is a nice bit of "mistakes were made" wordplay. So while Microsoft is not currently aware of attacks related to this issue, it says that "man-in-the-middle attacks are possible. " The solution? Microsoft has revoked the certificate trust and has already issued an automatic update for all supported and relevant Microsoft products. So you can stand down. "Apple pushes iPhone 6s pop-up ads to App Store users on older iPhones, angering users" Well, so much for the moral high ground. Which was... --- ### The Sams Report EP 21: Cortana Everywhere And All The Windows Updates > On this episode, I talk about the updates for Windows 10, a bit about Redstone, Cortana taking on Siri, and everything else in the world of Microsoft. - Published: 2015-12-11 - Modified: 2024-09-04 - URL: https://petri.com/the-sams-report-ep-21-cortana-everywhere-and-all-the-windows-updates/ - Categories: Podcast - Tags: The Sams Report - Article Type: News On this episode, I talk about the updates for Windows 10, a bit about Redstone, Cortana taking on Siri, and everything else in the world of Microsoft. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I talk about the updates for Windows 10 including a little bit about Redstone, Cortana taking on Siri, Action Center and all of the other news that went on this week in the world of Microsoft. If you have any questions, you can ask in the Hangout or after the show, you can find us @bdsams and @thurrottfeed on Twitter. https://www. youtube. com/watch? v=22oxXCq4ViU Subscribe: RSS | SoundCloud | YouTube --- ### Current Status Episode 34: Exchange Management Automation Station with Michel de Rooij - Published: 2015-12-10 - Modified: 2015-12-10 - URL: https://petri.com/current-status-episode-34-exchange-management-automation-station-with-michel-de-rooij/ - Categories: Current Status - Article Type: Opinion Join us Thursday, December 10, 2015 at 10:15 pm EDT for another episode of Current Status. Join us Thursday, December 10, 2015 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Michel de Rooij (@mderooij), Exchange MVP. Since the earlier days of Exchange Management Shell when it was code named Monad we have been using Powershell to automate Exchange. Learn the value of Exchange automation, and if there are any downsides to using this approach. Join us to learn more. --- ### Microsoft Announces New Features for Office 365 Groups > Microsoft announced several new features for Office 365 Groups, including  new dynamic membership and naming policies. - Published: 2015-12-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-new-features-office-365-groups/ - Categories: Microsoft 365 - Tags: Office 365 - Article Type: News Microsoft announced several new features for Office 365 groups, including new dynamic membership and naming policies. Microsoft has long held an important place in the collaboration space with its hugely successful SharePoint document management product, and Skype for chat, screen sharing and telephony. But other tools, such as Slack, threaten to displace email and chat for small dynamic teams, and encroach on some of SharePoint's document sharing capabilities. But Microsoft is expanding Office 365 Groups capabilities with eDiscovery tools, litigation hold, dynamic membership, and an Office 365 Groups API, all features that are likely to be attractive to large enterprises. I've written about Office 365 Groups on Petri a couple of times before, Create an Office 365 Group in Outlook. com and Microsoft Releases Outlook Groups App for Mobile, but if you're not already familiar with the concept, Office 365 Groups are either private or public workspaces that group users, shared conversations, a calendar, and files, much like a combination of email distribution lists and Exchange public folders, into a single identity that has access to multiple Office 365 applications. Microsoft Graph provides a unified access point to Office 365 services (Image Credit: Microsoft) eDiscovery tools The eDiscovery and litigation hold features of the Exchange Admin Center now work with Office 365 Group mailboxes, or against a group's files via the Office 365 Compliance Center. Improved auditing includes events for group creation, updates, and membership changes in the Azure Management Portal, with notifications for these events to be brought across to the Office 365 Compliance Center in the near... --- ### Exchange 2016: What’s New, and Is It Worth It? > Learn about new features in Exchange 2016, along with advice on whether you should migrate from Exchange 2013 and 2010.  - Published: 2015-12-10 - Modified: 2024-09-04 - URL: https://petri.com/exchange-2016-whats-new-and-is-it-worth-it/ - Categories: Exchange Server - Tags: Editor's Pick, Exchange 2016 - Article Type: Overview Exchange 013016 has been out now for awhile, following a two-month technical preview. As with every new product version, there’s always something shiny and new to discuss. The new features and all the greatness it can bring to your messaging environment will be discussed and analyzed like a Monday night football game. However, when you pull back the shades from all the spotlight, you’ll hear administrators asking the same question, “What’s better now and what can it really do it to improve my environment? ” For those running Exchange 2013, do not expect to be wowed. Don’t get me wrong, there are definitely improvements, but honestly Exchange 2016 is almost like a service pack. You get some new features with improvements to capabilities you already had, like increased Data Loss Prevention and improved searching. A simple upgrade path for those running multi-role servers, and you’re done! Now if you went with a multi-role approach, then you’ll find that your life is changed a little by the new architecture. With that said, the change isn’t too dramatic. Where’s the Wow in Exchange 2016? The biggest wow factor is for those upgrading from Exchange 2010. This is where all those new features that were advertised at Ignite 2015 in May makes an impact. Why, you ask? The difference between Exchange 2010 and Exchange 2016 is pretty huge. There has been significant changes starting from the architecture design down to the administration console, public folders management, and enhanced security. Simply put, it’s... --- ### Building A Better Conference Room > It has been a few decades since the conference room saw an overhaul but with new sensors, the worst part of your day is getting better. - Published: 2015-12-10 - Modified: 2024-09-04 - URL: https://petri.com/building-a-better-conference-room/ - Categories: Hardware - Tags: Conference Room, Editor's Pick, News - Article Type: News It has been a few decades since the conference saw an overhaul but with new sensors and backend technology, the worst part of your day is getting better. In 1975, the conference room experienced its first major change since likely the inception of the conference room, the dry erase marker was created. This marker, along with the whiteboard, has been a staple of every conference room around the globe but as the world becomes more connected, the conference room is quickly evolving. You may not think much about the conference room as it’s typically four walls, a few seats, a whiteboard and hours of agonizing debates. But quietly, the room that nearly every employee despises, is getting a makeover. Microsoft has been pushing its Surface Hub as a way to condense the technology in the room to help improve the collaboration process and startups like Robin Powered are making the booking of conference rooms much simpler. The growth in the IOT sector is opening up new possibilities and HPE’s Aruba division is playing in these waters as well. At its Discover event last week, the company built a conference room that moves past the whiteboard to challenge the traditional convention that meetings are a time-sink. Using a variety of beacons, Windows 10, and Citrix Octoblu, HPE built a conference room that transforms a passive meeting area into an active environment. With this technology, the room comes alive when you walk in with Cortana greeting you by your name and saying hello. From there, a Skype session was automatically setup based on a calendar entry and asks you to join a group call and by using... --- ### Microsoft Owns Productivity And That Should Be Enough - Published: 2015-12-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-owns-productivity-and-that-should-be-enough/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Microsoft is a company that "gets" productivity ... and not much else. And it should stop pretending, or even aspiring, to do anymore more than just dominating productivity. As I look back on 2015 in particular, but also on over 20 years of writing about Microsoft, one inescapable conclusion emerges: This is a company that gets productivity ... and not much else. And it should stop pretending, or even aspiring, to do anymore more than just dominating productivity. Put another way, there is no version of Microsoft's future in which any of its consumer-oriented entertainment experiences---Groove Music, Xbox, whatever---become a significant contributor to the company's bottom line or overall standing with customers. It's just never going to happen. But I do have a notion for where Microsoft is headed in the future, and that future is all about productivity. And while we all have our own opinions, biases, and preferences, even those of us who would like to see Microsoft take on companies like Apple directly have to admit that ship has sailed. Or has sunk. Of course, Microsoft's transition to a purely productivity-driven company has in fact already happened. The software giant effectively---and, I think, purposefully---hides the reality of this situation by its overly-simplified corporate structure, in which there are four main businesses only: Productivity and Business Processes, Intelligent Cloud, More Personal Computing, and Corporate and Other. But we can still glean some insights from these businesses. The first two of those businesses are clearly productivity-related, encompassing such products as Office, Azure, and Server. And together they account for over $21 billion of Microsoft's $25 billion in revenues in the most recent quarter. The... --- ### Office 365 Tip: Using Modern Email Attachments > Russell Smith shows us a quick Office 365 for using modern email attachments. - Published: 2015-12-09 - Modified: 2024-09-04 - URL: https://petri.com/office-365-tip-using-modern-email-attachments/ - Categories: Microsoft 365 - Tags: Cloud, Editor's Pick, Office 365, Outlook 2016 - Article Type: How To Russell Smith shows us a quick Office 365 for using modern email attachments. The relentless ping pong of email attachments backwards and forwards doesn't create much yin-yang in your organization, leading to confusion among users and multiple versions of documents in different locations. New tools, like Slack and SharePoint, clearly demonstrate how unsuitable email can be as a collaboration tool, but nevertheless email is often the quickest way to communicate with people outside of your organization. The good news is that Microsoft has combined the power of cloud storage and email to allow attachments to be sent as links that recipients can view or edit without attaching files to emails, all in a seamless process that users are already familiar with. Working with Modern Attachments If you use Microsoft Office on your device, you'll need to upgrade to Outlook 2016 to get modern attachments. The Outlook web interface also supports modern attachments, but unfortunately the Outlook Mail app for Windows 10 and Windows 10 Mobile isn't yet in on the game, although you can still attach files from OneDrive as old fashioned files. It’s also worth noting that recipients can view or edit modern attachments without signing in to Office 365, so you don't need to worry that you're adding an extra step before your files can be viewed. Outlook 2016 If you select a file from OneDrive in Outlook 2016, a modern attachment will be used as default. Open Outlook 2016. Create a New Email item from the Home tab on the Office ribbon. In the new email window, click... --- ### PowerShell Problem Solver: More Processor Performance > Learn how to use PowerShell to get processor utilization values with WMI and performance counters. - Published: 2015-12-09 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-processor-performance/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver - Article Type: How To Learn how to use PowerShell to get processor utilization values with WMI and performance counters. In a previous article, we began exploring techniques for gathering average processor load numbers. I demonstrated how to use WMI and PowerShell to query the Win32_Processor class. The scenario we are using is a real-world problem that someone posted in a PowerShell forum. Although you might not have this specific problem, I think you might learn a few things along the way. PowerShell Processor Article Series: PowerShell Problem Solver: Processor Loads PowerShell Problem Solver: More Processor Performance PowerShell Problem Solver: Process CPU Utilization PowerShell Problem Solver: Process Performance Counters PowerShell Problem Solver: Process Performance Reporting PowerShell Problem Solver: Process Performance For All WMI Performance Counters Performance counter data can be accessed through WMI. This type of data if presented in both raw and formatted forms. Personally, I prefer the latter. Let's find an appropriate class: ​ Listing performance formatted data classes (Image Credit: Jeff Hicks) I've highlighted the most likely class. I can query it like any other WMI class. ​ If you try that, then you'll get multiple instances for each processor core as well as a _Total instance.  You can simplify the output once you know what to look for: ​ Selecting key properties (Image Credit: Jeff Hicks) Because I am interested in an average across all cores, I can filter out the _Total instance and average the rest much as I did in the previous article. ​ Getting a performance average (Image Credit: Jeff Hicks) Now that... --- ### Microsoft Embraces Linux Foundation To Create New Certification > During 2015, Microsoft has made it clear that Linux is no longer the foe of yesterday and has created a new certification for running Linux on Azure. - Published: 2015-12-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-embraces-linux-foundation-to-create-new-certification/ - Categories: Microsoft Azure - Tags: Azure, Editor's Pick, linux, Microsoft - Article Type: News During 2015, Microsoft has made it clear that Linux is no longer the foe of yesterday and has created a new certification for running Linux on Azure During 2015, Microsoft made it clear that Linux is no longer the foe of yesterday. The company has embraced the open-sourced operating system and offers it to customers who use its Azure cloud services and today the company is taking its offering one step further. To help identify individuals who have an expertise with using Linux and Microsoft’s cloud platform, the company has worked with the Linux Foundation to create a new certification. Called the Microsoft Certified Solutions Associate (MCSA) Linux on Azure certification, the certificate will be issued by Microsoft starting today, December 9th, 2015. To be eligible to receive the cert, you must pass bot the Microsoft Exam 70-533 (Implementing Microsoft Azure Infrastructure Solutions) and the Linux Foundation Certified System Administrator (LFCS) exam. The creation of this certificate shows Microsoft’s serious commitment to the operating system on its cloud infrastructure. With all of the pieces now in place for individuals to become certified in Linux on Azure (LOA? ), it becomes a marketable skill and also a new avenue for Azure re-sellers to help differentiate their services by having certified technicians. You can learn more about this certification here. --- ### Yahoo to Spin Off its Core Business - Published: 2015-12-09 - Modified: 2024-11-19 - URL: https://petri.com/yahoo-to-spin-off-its-core-business/ - Categories: Cloud Computing - Tags: News, Yahoo - Article Type: News After a tumultuous year in which it planned to sell off its $31 billion Alibaba stake and reassert itself as an Internet media giant, Yahoo is reversing course. It will now spin off its core business and all of its other non-Alibaba assets instead. Credit: Julie Jacobson/Associated Press Well, it's official. After a tumultuous year in which it planned to sell off its $31 billion Alibaba stake and reassert itself as an Internet media giant, Yahoo is reversing course. It will now spin off its core business and all of its other non-Alibaba assets instead. Yahoo's new plans are unfolding after a series of emergency board of directors meetings throughout last week. These meetings were triggered by activist investors who argued that Yahoo would be better off keeping its $31 billion stake in Alibaba, a China-based e-commerce company, and selling off the rest of the company instead. Yahoo's board and senior leadership have resisted that strategy all year. But it's planned Alibaba sell-off was threatened by an IRS warning in September that it would not approve of Yahoo's tax-exempt plans for the sale. That means that Yahoo would have lost about $10 billion dollars on the sale. So Yahoo's board last week started the terrible process of looking at dismantling the company and keeping the Alibaba stake instead. "Yahoo's Board of Directors, after careful review and consideration of how to best drive long-term value for shareholders, has unanimously decided to suspend work on the pending plan, announced in January of 2015, to spin off the company's remaining holdings in Alibaba," a Yahoo press release explains. " Yahoo will now engage in what it calls "a reverse of the previously announced spin transaction. " That... --- ### Installing Remote Server Administration Tools on Windows 10 > Learn how to install Microsoft's Remote Server Administration Tools on Windows 10 for better server management and administration. - Published: 2015-12-08 - Modified: 2024-09-04 - URL: https://petri.com/installing-remote-server-administration-tools-windows-10/ - Categories: Windows 10 - Article Type: How To Learn how to install Microsoft's Remote Server Administration Tools on Windows 10 for better server management and administration. Microsoft Remote Server Administration Tools (RSAT) enables IT administrators to remotely manage roles and features in Windows Server 2012 and Windows Server 2012 R2 from a computer that's running Windows 10. If you're looking to download RSAT for previous versions of Windows, please see the following articles on the Petri IT Knowledgebase for your respective operating system: Windows Vista, Windows 7, Windows 8). At the time of writing this article, you can also use Remote Server Administration Tools for Windows 10 to remote manage of computers that are running the Server Core installation option or the Minimal Server Graphical Interface configuration of Windows Server 2016 Technical Preview. Remote Server Administration Tools for Windows 10 can only be installed on computers that are running the full release of Windows 10 Pro or Windows 10 Enterprise and cannot be installed on RT version. If you are already running older versions of Remote Server Administration Tools, then you must remove them first before installing this version. Visit the Microsoft Download Center to download the Remote Server Administration Tools for Windows 10. Once downloaded, double-click on "WindowsTH-KB2693643-x64. msu" to launch it. Note that the file name could change in the future, as newer versions of RSAT are released. You will be prompted to install. Click "Yes". The Windows Update Standalone Installer. (Image Credit: Daniel Petri) Click "Next" to start installing. Installing Microsoft Remote Server Administration Tools for Windows 10. (Image Credit: Daniel Petri) Installation will take a few... --- ### Microsoft Announces General Availability of System Center Configuration Manager > Microsoft has announced today the general availability of System Center Configuration Manager. - Published: 2015-12-08 - Modified: 2025-02-17 - URL: https://petri.com/microsoft-announces-general-availability-of-system-centerconfiguration-manager/ - Categories: System Center - Tags: Configuration Manager, Editor's Pick, News, System Center - Article Type: News Microsoft has announced the general availability of System Center Configuration Manager and you can download it now from MSDN and VLSC. Microsoft has announced today the general availability of System Center Configuration Manager. With this release, Microsoft has completed the transitions of turning ConfigMgr into a cloud-connected product which means the company can release updates at a faster pace than they have with prior versions of the software. What this new pace of delivery for updates means is that Microsoft has brought this tool up to the same standards as its other software packages in terms of being able to update in rapid-iterations rather than pushing down single large updates sporadically. With this release comes several significant new capabilities that are listed below. Deploy/upgrade/provision Windows 10: ConfigMgr supports a variety of fast, efficient ways to deploy or upgrade devices to Windows 10. Keep Windows 10 up-to-date: ConfigMgr enables IT to keep Windows 10 devices up-to-date with new configurable deployment rings and dashboard as well as support devices that are managed via Windows Update for Business. More frequent and easier to install updates: ConfigMgr is now designed to make it easier to update without going through complex individual upgrades. Manage Windows 10: ConfigMgr enables choice for managing Windows devices. Improved unified device management: ConfigMgr provides an improved unified device management platform for customers using System Center Configuration Manager integrated with Microsoft Intune to manage PCs, servers, and mobile devices. System CenterConfiguration Manager can be downloaded now from MSDN, VLSC and the Evaluation Center. If you want to learn more about this release, you can check out the company’s blog... --- ### Qualcomm Charged with Antitrust Violations in the EU - Published: 2015-12-08 - Modified: 2024-09-04 - URL: https://petri.com/qualcomm-charged-with-antitrust-violations-in-the-eu/ - Categories: Mobile - Tags: News - Article Type: News Antitrust regulators from the EU's European Commission (EC) have formally charged U.S.-based mobile chipset maker Qualcomm with two sets of antitrust charges. Antitrust regulators from the EU's European Commission (EC) have formally charged U. S. -based mobile chipset maker Qualcomm with two sets of antitrust charges. As you may recall, EC charges arrive in the form of Statements of Objections, which are preliminary conclusions based on previous investigations. Qualcomm has received two, dating from investigations that started in July 2015. And it is accused of illegally paying a major customer for exclusively using Qualcomm chipsets and selling chipsets below cost with the goal of forcing a competitor out of the market. More specifically, the EC alleges that Qualcomm has "paid significant amounts to a major smartphone and tablet manufacturer on condition that it exclusively use Qualcomm baseband chipsets in its smartphones and tablets. " This conduct has reduced the manufacturer's incentives to investigate rival chipsets, the EC says, and thus harms both competition and innovation The exclusivity clauses in the resulting contract are still in place, the EC says. The second charge relates to "predatory pricing" behavior that Qualcomm engaged in between 2009 and 2011. And in this case, the EC is naming names, with Qualcomm countering a then-growing threat from Icera---notably, an EU-based technology company---by selling chipsets below cost to undercut the rival. " prices did not cover Qualcomm's costs, with the aim of forcing Icera out of the market," the EC alleges. "Many consumers enjoy high-speed internet on smartphones and other devices, chipsets are key components that make this happen," EU Competition Commissioner Margrethe Vestager said in a prepared statement. "I am... --- ### What Do Unikernels Mean for Containers? > Russell Smith discusses Microsoft's Drawbridge research project and how it could change they way we virtualize applications in Windows Server - Published: 2015-12-08 - Modified: 2024-09-04 - URL: https://petri.com/what-do-unikernels-mean-for-containers/ - Categories: Virtualization - Tags: Azure, Containers, Editor's Pick, Virtualization, Windows Server - Article Type: Overview Russell Smith discusses Microsoft's Drawbridge research project and how it could change they way we virtualize applications in Windows Server. In today's Ask the Admin, I'm going to take a look at unikernels and how they could become the next big thing in virtualization. Cloud computing has changed the IT landscape forever, and the pace of change seems giddying at times. But while we may have only just got our heads around the idea of containers, for more information see What are Windows Server Containers? on the Petri IT Knowledgebase, behind the scenes Microsoft and others have been working on unikernels, which improve virtualization density and agility beyond what is possible today with containers. Containers use less resources than traditional VMs because they share the OS and its resources, and while there is some isolation, they don't constitute a security boundary. Additionally, and if you've already experimented with containers in Windows Server 2016 TP3, you'll know that they still consume a considerable amount of resources. Raise up the Drawbridge In contrast to containers, unikernels are images that contain an application and a library OS. To help understand what a unikernel is, it's worth taking a look at Microsoft’s Drawbridge, which consists of two components: a library OS running inside a container (picoprocess) with a minimal kernel API surface. The picoprocess is a small isolation container that communicates with the host OS via the Drawbridge ABI (application binary interface) and is implemented by the security monitor. Without going into lots of technical detail, picoprocesses reduce overhead associated with traditional hardware virtualization by surfacing threads, private virtual memory, and I/O... --- ### Windows 10 Tip: Manage Telemetry Settings - Published: 2015-12-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-manage-telemetry-settings/ - Categories: Windows 10 - Tags: Editor's Pick, Privacy, Security, Windows 10 - Article Type: How To Here's a quick tip on how to set the telemetry level in Windows 10 using Group Policy. Much has been said about Windows 10 privacy and the way that Cortana collects personal information. For the most part, this is the press disseminating unnecessary FUD to generate a headline, and you can safely upgrade to Windows 10 and keep the default settings. But to address some of the concerns, Microsoft has included new settings in the Windows 10 November Update to give organizations more granular control over telemetry, but it can't be disabled completely. In this Ask the Admin, I'll show you how to set the telemetry level in Windows 10 using Group Policy. What is telemetry? Windows collects information about the OS and apps, such as performance and crash information, and then sends it back to Microsoft in order to improve future OS builds. Without this information, Microsoft would rely on users providing crash reports manually, or use of special diagnostic tools to collect performance information on request, naturally not a practical option outside of specific support incidents. Managing telemetry settings Microsoft provides four ways to manage telemetry settings in Windows 10 build 10586 and later: Group Policy, registry setting, MDM or Windows provisioning. Telemetry settings are available in local or Group Policy, which is the way most organizations are likely to configure Windows devices. Alternatively, Mobile Device Management can be used with a compatible Policy Configuration Service Provider (CSP), or you can configure telemetry as you deploy the OS using standard Windows provisioning tools, such as Windows Imaging and Configuration Designer (ICD). [adkit zone="freestyle"... --- ### Getting The Most Out Of Office 365 At Work - Introduction > Microsoft's Office 365 suite is a powerful set of tools and its important that you get the most out of your organizations subscription. - Published: 2015-12-07 - Modified: 2024-09-04 - URL: https://petri.com/getting-office365-work-introduction/ - Categories: Microsoft 365 - Tags: Getting The Most Out Of Office 365, Office 365 - Article Type: How To Microsoft's Office 365 suite is a powerful set of tools and its important that you get the most out of your organizations subscription. Microsoft has been an enterprise technology company for most of their existence. One large portion of their enterprise business revolves around how communication occurs at a company. Traditionally this is done with email and Microsoft supported companies with their widely popular Exchange services to power email. However, today communication is a complicated topic for many working in the business world. Working with people inside your company at the same location is one thing but on the other side of the continuum is working with people using different tools located somewhere else and probably in a different time zone. So how does Microsoft believe they have solved this communication problem? With many different tools all wrapped up in Office 365. Tools like email, Yammer, OneDrive for Business, SharePoint, Office 365 Groups, Skype for Business and the host of complementary apps all play a different role in the aim of facilitating business communication. What are these different tools, why are there so many of them, and how can I get the most out of them? These are all good questions which I hope are answered in this series. Frequently large companies will pay for Office 365 functionality and never train their employees on how to use the tools or what new best practices have been developed. Hopefully with each post you’ll learn more and understand better the tools which can help you get more done while doing the same amount of work. Many of the Office 365 tools seem... --- ### Two Months With The Surface Book > I have been using Microsoft's new flagship device, the Surface Book, for two months and it's time to see if the device really is the 'ultimate laptop' - Published: 2015-12-07 - Modified: 2024-09-04 - URL: https://petri.com/two-months-with-the-surface-book/ - Categories: Hardware - Tags: Editor's Pick, Surface Book - Article Type: Review I have been using Microsoft's new flagship device, the Surface Book, for two months and it's time to see if the device really is the 'ultimate laptop' It has been two months since I first opened the box to one of Microsoft’s better kept secrets in recent memory, the Surface Book. The hybrid laptop/tablet is the company’s first attempt to make a device that can truly take on the MacBook Pro and other high-end laptops while pushing the price brackets of the Surface brand to new levels. During my time with the Surface Book, I have traveled quite a bit, around 10,000 miles, from London to Las Vegas and a quick stop in NYC; the Book has been the only device I have used while on the road. The laptop has held up well, one issue that I was concerned about showing up on the keyboard or the trackpad is the wearing of the keys. What I mean is that with my Dell XPS 13, you can see where my palms rested on the body of the laptop and the space bar/keys permanently showed the oil from my fingers no matter how hard I tried to clean them after significant use. Fortunately, the Surface Book still looks like new and while I can see some slight wear on the trackpad if I view the laptop at an obtuse angle, it has held up well. I have used the laptop far less in tablet mode than I initially expected, I’d estimate usage at about 95% in laptop configuration and about 5% with the screen detached. It’s not that the tablet experience is poor, it’s that I... --- ### Microsoft Is Open-Sourcing Part Of Its Edge Browser > Microsoft has announced today at JSConf in Florida that they will be open-sourcing key components of its Chakra JavaScript engine. - Published: 2015-12-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-open-sourcing-more-parts-of-its-browser-tech/ - Categories: Windows 10 - Tags: chakra, Edge, Editor's Pick, javascript, News, open-source - Article Type: News Microsoft has announced today at JSConf in Florida that they will be open-sourcing key components of its Chakra JavaScript engine under the ChakraOne name. Microsoft has announced today at JSConf in Florida that they will be open-sourcing key components of its Chakra JavaScript engine. The components, which are part of the technology stack behind the company’s Edge browser, will be released on GitHub starting next month under the ChakraCore name. The open-sourcing of this technology only stands to benefit Microsoft and there is minimal risk involved. By allowing outside groups to contribute to Chakra, this will help enhance the engine and the company hopes to expand its adoption across the web outside of its own products. Microsoft is putting a few big names behind the project by saying that AMD, Intel and NodeSource have expressed interest in contributing to the project. Chakra was created in 2008 from a clean slate and had the goal of providing high performance while also being able to adapt to emerging technologies without needing to dismantle the key components of the code. The ChakraCore, that the company is posting to Git Hub, is a self-contained JavaScript virtual machine that can be embedded in derivative products and power applications that need scriptability such as NoSQL databases, productivity software, and game engines. Further, the tech can be used to help extend the reach of JavaScript on the server with tools such as Node. js. Microsoft has been open-sourcing many of its core technology components during the past couple of years. While the company traditionally shied away from working with the broader developer community to build out its key technology... --- ### A Workaround for Using PowerShell's Get-Service with the ComputerName Parameter > Jeff Hicks shows us a way to use PowerShell's Get-Service cmdlet to work with the commonly used ComputerName property. - Published: 2015-12-04 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-get-service-cmdlet-with-the-computername-parameter/ - Categories: PowerShell - Tags: Editor's Pick, Get-Member, get-service, Intermediate - Article Type: How To Jeff Hicks shows us a way to use PowerShell's Get-Service cmdlet to work with the commonly used ComputerName property. Without a doubt, one of the features in PowerShell that makes it so compelling is the pipeline. You run a cmdlet or script, and PowerShell spits out objects that are formatted on the screen for your viewing pleasure. With that said, sometimes the output is less than friendly. One quirk that always frustrates me is the Get-Service command. The command will display service information for remote computers, but the associated property name is MachineName rather than the traditional Computername parameter. In this article, I'll show you a workaround for working with PowerShell's Get-Service cmdlet. Get-Service bits -computername chi-core01,chi-fp02,chi-hvr2,chi-dc04 | Select Status,Name,Machinename Displaying the MachineName property (Image Credit: Jeff Hicks) I suppose that's not completely unbearable, but I like using Computername, which is frequently used in PowerShell. This typically means resorting to a hashtable with Select-Object to rename the property. Get-Service bits -computername chi-core01,chi-fp02,chi-hvr2,chi-dc04 | Select Status,Name,@{Name="Computername";Expression={$_. Machinename}} Using Select-Object to rename a property (Image Credit: Jeff Hicks) That's a lot to remember to type, so why not have PowerShell do the work for me? PowerShell has always had an extensible type system. This means that you can extend what an object looks like. In earlier PowerShell versions, this mean relying on a complicated XML file. But now we can make changes practically on the fly. In this particular scenario, I want to create a property called Computername that will have the value from MachineName. In other words, I want to create an alias... --- ### Microsoft’s Build 2016 Conference Kicks Off On March 30 > Microsoft has announced today that it’s Build conference will be taking placing March 30th to April 1st 2016 and that it will be hosted in San Francisco.  - Published: 2015-12-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-build-conference-kicks-off-on-march-30/ - Categories: Windows Client OS - Tags: BUILD, Editor's Pick, Microsoft, News - Article Type: News Microsoft has announced today that it’s Build conference will be taking placing March 30th to April 1st 2016 and that it will be hosted in San Francisco. Microsoft has announced today that its Build conference will be taking placing March 30th to April 1st 2016. The event, which is being hosted in San Francisco, is the company’s premier developer conference and will focus around building out, deploying, and using Windows 10. Last year, the event sold out within minutes, which means getting a ticket to the show is not something that you can sit around and think about. If you are planning to attend, it’s best to start buttering up management to get them to approve the expense long before the tickets go on-sale. The company has not announced the pricing for the event but it typically costs a few thousand dollars. For those who have never attended, the company typically gives away hardware to those who make the journey to the event that helps justify the cost of the ticket. You can sign up for the event's mailing list, here. The agenda for the show will become more clear as we get closer to March 30 but expect HoloLens and Windows 10 to be the main focus. With the company pushing heavily upon Universal apps, those types of applications can run on any of the company’s devices including the Xbox One, expect to hear more about improved functionality from the Windows Store to the development framework. When Microsoft eventually provides more details, such as when tickets go on sale, we will keep you updated. --- ### Microsoft Announces Windows Server 2016 Licensing > Microsoft has announced details on Windows Server 2016 licensing, which includes a switch to a per-core licensing model. - Published: 2015-12-04 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-announces-ws2016-licensing/ - Categories: Windows Server 2016 - Tags: Editor's Pick, licensing, S2D, storage, Storage Replica, Storage Spaces Direct, Windows Server 2016, WS2016 - Article Type: News Microsoft has announced details on Windows Server 2016 licensing, which includes a switch to a per-core licensing model. Normally Microsoft announces the licensing of a new version of Windows Server a few weeks before release, but Microsoft announced details on how licensing works for Windows Server 2016. There are some big changes, it's going to be complicated, controversial, and give redlenty of ammunition for critics and competitors. Note: the licensing of Windows Server is the same no matter what hypervisor you choose to deploy; there is no such thing as "Hyper-V licensing. " The Announcement My first clue of a public release was when a feedback item that I had submitted to Windows Server User Voice was rejected. Microsoft had previously stated that some features, such as Storage Replica, would only be included in the Datacenter edition of Windows Server 2016. I felt that this was not a good plan, and I submitted feedback on the Windows Server User Voice site. And others agreed, as that feedback became the top voted item in the Storage section. Last night, I got the rejection, and I read. And I was stunned. The Changes There are three significant changes coming to the licensing of Windows Server. Some of this is good, some is downright confusing and difficult, and some is bad. Azure Hybrid Use Benefit Microsoft claims that they announced this change to Software Assurance in October 2015 on the Azure Blog -- I've been unable to find the article, but there is to be more information released at a later time. The concept is that a customer that purchased Software Assurance for... --- ### The Sams Report EP 20: The Bugs, The Updates And The Phone Real Talk > On this episode, I cover Windows 10's new development process, updates to the Surface Book and Pro 4, and being blunt about the state of Windows 10 Mobile. - Published: 2015-12-04 - Modified: 2024-09-24 - URL: https://petri.com/the-sams-report-ep-20-the-bugs-the-updates-and-the-phone-real-talk/ - Categories: Podcast - Tags: Editor's Pick, News, The Sams Report - Article Type: News On this episode, I talk about Windows 10's new development process, updates to the Surface Book and Pro 4, and being blunt about the current state of Windows 10 Mobile. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I talk about Windows 10's new development process, updates to the Surface Book and Pro 4, being blunt about the current state of Windows 10 Mobile and that Surface Phone rumor keeps popping up. If you have any questions, you can ask in the Hangout or after the show, you can find us @bdsams and @thurrottfeed on Twitter. https://www. youtube. com/watch? v=fzKbVD-CaeI Subscribe: RSS | SoundCloud | YouTube --- ### Paul Thurrott's Short Takes: December 4 2015 - Published: 2015-12-04 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-december-4/ - Categories: Windows Server 2016 - Tags: News - Article Type: Opinion Because every day without snow this winter is to be celebrated, this week's other news includes a major Windows Server 2016 licensing change, "record" Xbox One sales over Black Friday, Samsung will finally pay Apple its blood money, activist investors circle Yahoo like sharks, and appeals panel will rule on net neutrality. This is what Black Friday looked like before the Internet. Because every day without snow this winter is to be celebrated, this week's other news includes a major Windows Server 2016 licensing change, "record" Xbox One sales over Black Friday, Samsung will finally pay Apple its blood money, activist investors circle Yahoo like sharks, and appeals panel will rule on net neutrality. Windows Server 2016 to change to per-core licensing According to a new price sheet---which came to me via Directions on Microsoft'sWes Miller via Mary Jo Foley---Microsoft is changing Windows Server 2016 licensing from per-processor to per-core. The document suggests that the move is being made to simplify licensing, as Microsoft already licenses its public cloud services on a per-core basis. But don't worry about (too much of) a price-hike: According to the documents, and Mr. Miller, most customers won't see much impact. That said, those with fringe, high-end users taking advantage of "core-dense servers at the very top of the market" will likely see a cost increase. "License s for servers with 8 cores or less per proc will be same price as the 2012 R2 two-proc license price," the Microsoft documentation notes. Expect a public announcement about this new pricing structure in early 2016, with the final release of Windows Server 2016 in Q3 2016 (not coincidentally around the same time as the recently-rescheduled Ignite conference). "IDC Predicts Sluggish Windows Phone Sales Growth" Actually, 0. 1 percent growth over four years... --- ### Will IT Pros Adopt Infrastructure as Code? > The foundation of IT is shifting beneath our feet. How we deploy IT is changing to infrastructure-as-code. What do you think of it? - Published: 2015-12-03 - Modified: 2015-12-03 - URL: https://petri.com/will-it-pros-adopt-infrastructure-as-code/ - Categories: Windows Server 2016 - Tags: ARM, Azure Resource Manager, Editor's Pick, Infrastructure as Code, JSON, MAS, Microsoft Azure Stack, Windows Server 2016 - Article Type: Opinion Aidan Finn shares his opinion on what it means for IT pros to adopt an infrastructure as code approach. In the last year or so, the phrase "infrastructure as code" has started to creep across our industry. At this point, most IT admins probably have never heard of this term, so it might come as a surprise after they hear the term from a boss who has had a meeting with cloud sales reps or has read one of those dreaded airline magazines full of the latest IT crazes. Infrastructure as code is real; you can do it right now in the Microsoft world in Azure, and it will be coming on-premises in 2016. I'm still trying to figure out what infrastructure as code will mean to me and my customers, and it concerns me. And I am left wondering, will I roll out infrastructure using code, will my customers try it, and will you do it? Software-Defined Everything If you've completely ignored what the IT industry has been doing for the last five years, then you're completely unaware that "software-defined" is where the business is going. In Microsoft's world we have: Machines: Hyper-V has abstracted machines from hardware. Operating systems: In Windows Server 2016, we get abstraction from machines via operating system virtualization with Windows Server Containers (application isolation) and Hyper-V Containers (secure application isolation). Networking: Hyper-V Network Virtualization abstracts us from the physical network using NVGRE, and support is coming for VXLAN in the Windows Server 2016 Network Controller. Storage: Microsoft gave us Storage Spaces and Scale-Out File Server to change how physical storage was deployed in... --- ### Check Domain Controller Services with PowerShell > Learn how to use PowerShell to check the status of critical services on your domain controllers and how to manage at scale. - Published: 2015-12-03 - Modified: 2024-09-04 - URL: https://petri.com/check-domain-controller-services-powershell/ - Categories: PowerShell - Tags: Active Directory, CIM-WMI, Intermediate - Article Type: How To Learn how to check the status of critical services on your Active Directory domain controllers, along with tips for managing at scale with PowerShell. Regular readers of my articles know that I am a big proponent of managing at scale. Instead of taking the approach to execute tasks individually, management at scale means that we're looking for a way to execute multiple tasks with a single command. Fortunately, PowerShell makes this an easy proposition, once you get your head around the concept. In this article, I want to demonstrate this concept by checking the status of critical services on my domain controllers. This is a task that you most likely perform already. Instead of navigating through cumbersome GUI-based tools or remote desktop sessions, you can use PowerShell to easily manage the task at scale. Let's start with a variable of domain controller names. $dcs = "chi-dc01","chi-dc02","chi-dc04" I'm manually entering the names, but you could just as easily read in the contents of a text file, import a CSV, or even query Active Directory if you have the AD module installed. $dcs = (Get-ADDomain). ReplicaDirectoryServers Using PowerShell's Get-Service Cmdlet In my domain, all the domain controllers are also DNS servers. Because I plan on using Get-Service, and the cmdlet allows me to query for multiple services, I'll create a variable with the service names I want to check. $svcs = "adws","dns","kdc","netlogon" At this point, I can let PowerShell do its thing and look at all of these services on the collection of servers. Get-Service -name $svcs -ComputerName $dcs Getting status of multiple services from multiple computers (Image Credit: Jeff Hicks) Well it worked, but the output... --- ### Steve Ballmer Has Some Harsh Words for the New Microsoft - Published: 2015-12-03 - Modified: 2024-09-04 - URL: https://petri.com/steve-ballmer-has-some-harsh-words-for-the-new-microsoft/ - Categories: Cloud Computing - Tags: Steve Ballmer - Article Type: News Former Microsoft CEO Steve Ballmer was always plain-spoken and honest, and that apparently hasn't changed a bit since his departure from the company. This week, Microsoft's biggest shareholder offered his opinion of the firm. And Ballmer offered some overt criticisms that Microsoft should take very seriously. Former Microsoft CEO Steve Ballmer was always plain-spoken and honest, and that apparently hasn't changed a bit since his departure from the company. This week, Microsoft's biggest shareholder offered his opinion of the firm. And Ballmer offered some overt criticisms that Microsoft should take very seriously. Full disclosure: Ballmer's complaints echo complaints I've made about Microsoft during the Nadella era, so I'm perhaps not the most dispassionate observer here. As reported by Bloomberg's Dina Bass, who attended Microsoft's annual shareholder meeting Wednesday in Bellevue, Washington, Ballmer criticized Microsoft's new reporting structure, which lets it hide key growth metrics from shareholders, and its mobile strategy, which I think we can all agree is controversial at best. First, he said, Microsoft needs to report the actual revenues it is generating from its cloud and hardware businesses. Instead, Microsoft reports a nebulous metric know as "run rate," where you take a single quarter's revenues and extrapolate that out over a year. It is, in effect, not a metric at all. Or, as Ballmer put it, it's "bullshit. " " is sort of a key metric," he said, "If they talk about it as key to the company, they should report it ... They should report the revenue, not the run rate. " Further, Ballmer said he's been complaining about this misrepresentation of Microsoft's finances since he left the firm, and that after two years away from Microsoft, he can't make heads or tails of the actual revenues generated by... --- ### Scaling WMI with PowerShell and Remoting > Learn how to scale out WMI commands in PowerShell by using PowerShell remoting. - Published: 2015-12-02 - Modified: 2024-09-04 - URL: https://petri.com/scaling-wmi-powershell-remoting/ - Categories: PowerShell - Tags: Advanced, CIM-WMI, Scripting - Article Type: How To Learn how to scale out WMI commands in PowerShell by using PowerShell remoting. Welcome back to our article series on exploring how to use PowerShell and WMI to discover system drive information for servers in your enterprise. As usual with my articles, the end result is not necessarily as important as what you learn along the way. To that end, I want to continue our journey and explore some new territory. Part 1: Checking System Drive Spaces with WMI and PowerShell Part 2: Getting System Drive Alternatives Part 3: Compound Filtering with WMI and PowerShell Part 4: Scaling WMI with PowerShell and Remoting Part 5: Using PowerShell's Storage Cmdlets to Query the System Drive One of the potential drawbacks in my previous attempts was that I needed to run Get-WmiObject twice. When trying to query a lot of computers, Get-WmiObject has to process all of the computers sequentially. I can address both of these issues by using PowerShell remoting. The %systemdrive% variable can also be resolved through the ENV provider. You can easily reference it with $env:systemdrive. Using Invoke-Command, I can quickly determine the value even on remote computers. ​ Resolving %systemdrive% remotely (Image Credit: Jeff Hicks) This is very fast, and I can integrate this into Get-WmiObject, except I can invoke it remotely. ​ Getting system drive remotely (Image Credit: Jeff Hicks) The tricky part is to remember to wrap $env:systemdrive inside a subexpression. This command took about 614 milliseconds compared to this: ​ This took about a second and a half. This... --- ### Yahoo Board to Consider Dismantling Company - Published: 2015-12-02 - Modified: 2024-09-04 - URL: https://petri.com/yahoo-board-to-consider-dismantling-company/ - Categories: Cloud Computing - Tags: News - Article Type: News The Yahoo board of directors will meet this week to determine the fate of the flailing company. And one of the options on the table is for Yahoo to sell off its core assets---online services like Yahoo.com and Yahoo Mail---and effectively end the 20-year-run of the one-time Internet powerhouse. The Yahoo board of directors will meet this week to determine the fate of the flailing company. And one of the options on the table is for Yahoo to sell off its core assets---online services like Yahoo. com and Yahoo Mail---and effectively end the 20-year-run of the one-time Internet powerhouse. News of the meeting---and its stunning possible outcome---comes via several reports, including The Wall Street Journal, The New York Times, and Reuters, each of which credits its own sources. Regardless of the outcome, one thing is certain: The Yahoo board is no longer certain that Marissa Mayer can turn things around. The issue for Yahoo is simple. It had planned to sell off its stake in the China-based e-commerce giant Alibaba, but that holding is by far its biggest asset, with an estimated value of $30 billion. But Yahoo's market capitalization is just $31 billion. So when you factor in Yahoo's 35 percent stake in Yahoo Japan, which is now worth about $8. 5 billion, and about $5. 9 billion in cash assets, that means its core business is currently valued at less than zero. (An October 2015 Cantor Fitzgerald research report valued Yahoo's core business at $3. 9 billion, The Wall Street Journal says. ) Complicating matters, Yahoo had not expected to pay taxes on the approximately $23 billion in would have netted in selling off its Alibaba stake. But the Internal Revenue Service (IRS) in September warned the company that it would not approve such a transaction, and that Yahoo... --- ### Create a Containers VM Host with DHCP > Learn how to deploy Windows Server Containers with direct network connectivity and DHCP-assigned IP addresses. - Published: 2015-12-01 - Modified: 2024-11-19 - URL: https://petri.com/create-containers-vm-host-dhcp/ - Categories: Windows Server 2016 - Article Type: How To Learn how to deploy Windows Server Containers with direct network connectivity and DHCP-assigned IP addresses. There are several ways to deploy Windows Server Containers with Windows Server 2016 Technical Preview 3 (TPv3). You can enable the role on a physical server or use an existing virtual machine on any hypervisor that supports Windows Server 2016 TPv3 as a guest OS. In this post, I'm going to show you how to perform scripted deployment of a Hyper-V virtual machine that's running Windows Server Core and enable Windows Server Containers. You may want to read my article, Create a Containers VM Host with NAT, for a quick refresh.  This post will focus on enable containers that get direct network connectivity using IP addresses that are provided by DHCP. The Shelf Life of a Container When containers are connected to the network via a NAT-enabled virtual switch in the VM host, each container gets a private and non-routable IP address. NAT rules intercept traffic on a specific TCP port and forward it to a TCP port in the container, such as TCP 80. Although this allows huge numbers of containers per routable IP address or per container, it does potentially create a new layer of complexity. Some might decide that they prefer simplified networking, where they will want each container to get its own network address. Therefore, there's no need to implement NAT rules on the VM host after deploying a new container. Once you deploy a new container, that container is on the network. In this case, a traditional external virtual switch is deployed instead of a NAT virtual switch. Each new... --- ### What are Hyper-V Containers? > Learn and understand the reasoning behind Hyper-V Containers and how they work and differ from Windows Server Containers. - Published: 2015-12-01 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-containers/ - Categories: Windows Server 2016 - Tags: Containers, Docker, Editor's Pick, Hyper-V containers, Technical Preview 4, TP4, Virtualization, Windows Server 2016, Windows Server containers - Article Type: Overview Learn and understand the reasoning behind Hyper-V Containers and how they work and differ from Windows Server Containers. You've probably read about Windows Server Containers in the past and that concept sort of made sense to you, until you really started to wonder what the technical difference was between containers and machine virtualization (Hyper-V or vSphere). Things might be about to get really unclear now. Microsoft will be bringing a new kind of container to us with Windows Server 2016 (WS2016) called Hype-V Containers that crosses Hyper-V with containers. Is that a container in a virtual machine or the other way around? Thankfully, Mark Russinovich was featured recently in a Channel 9 video to explain what Windows Server Containers and Hyper-V Containers are. I’ll explain the difference in this article. User and Kernel Mode The key to understanding how containers work is rooted in day one of learning computer science. We have two layers of operation in an operating system. A computer's processor switches between these modes depending on the process that it is running. The first of these operational levels is kernel mode. This is where the core functions of an operating system reside. You'll also find features such as drivers here too. Kernel mode is the heart of the operating system, and therefore it is very sensitive and secure. An operating system restricts what can run in kernel mode because the virtual memory space is shared between all processes that execute here. User mode is where processes that we recognize from Task Manager run. Unlike in kernel mode, something crashing in user mode doesn't... --- ### Microsoft and Hewlett Packard Enterprise Expand Collaboration To The Cloud > HPE is hosting its Discover event this week in London where they announced a new hybrid cloud service with the help of Microsoft. - Published: 2015-12-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-and-hewlett-packard-enterprise-announce-the-first-hyper-converged-system/ - Categories: Cloud Computing - Tags: Editor's Pick, HPE, HPE Discover, Microsoft, News - Article Type: News HPE is hosting its Discover event this week in London where they announced a new hybrid cloud service with the help of Microsoft. HPE is hosting its Discover event this week in London and building on a previously announced relationship with Microsoft, they have announced a new hybrid cloud computing solution that uses Azure and HPE infrastructure/services. In addition, this extended partnership will make Azure the preferred public cloud for HPE customers, and HPE will become a preferred partner for providing infrastructure and services for Microsoft's hybrid cloud offerings. Microsoft and HPE say that their new solution is the first true hyper converged system with cloud capabilities, and it goes by the lovely name of HPE Hyper-Converged 250 for Microsoft Cloud Platform System Standard. The jointly engineered product uses HPE ProLiant servers and an Azure management portal that lets businesses decide when and where to deploy new systems. Further, with HPE OneView for Microsoft System Center, the customer has one integrated management experience across the entire system. This is a big win for Microsoft because this new arrangement means that HPE will enable Azure consumption and services on every new HPE server. As the industry begins to embrace the public cloud with more data and critical applications, HPE servers will be built to make use of this technology when customers are ready to explore the hybrid cloud. While this relationship seems more Microsoft slanted, that's not quite the case. With HPE building their servers to be hybrid-scenario ready, this means that its customers have more flexible options, which makes HPE's servers more attractive. Also, by working closely working with Microsoft, this... --- ### HPE Debuts Synergy, Its New Composable Hardware > At HPE's discover event in London the company has announced its new Synergy platform that is brand new hardware. - Published: 2015-12-01 - Modified: 2024-09-04 - URL: https://petri.com/hpe-debuts-synergy-its-new-composable-hardware/ - Categories: Hardware - Tags: Editor's Pick, HPE Discover, News, Synergy - Article Type: News At HPE's discover event in London the company has announced its new Synergy platform. The new hardware brings everything you need into one frame for both traditional and cloud applications. This week, HPE (Hewlett Packard Enterprise) is hosting its Discover Event in London where the company has announced its new Synergy platform. The product brings everything into one frame that the company says will help its customers reduce data center costs and make it faster to spin up new applications. Synergy brings compute, storage, and networking fabric into one chassis and is built on the company's Composable Infrastructure. HPE is calling this a new category of infrastructure and is targeting traditional and new IT environments. The hardware basics include a frame that is four frame units high and can be configured with various amount of compute or storage. The basic componets of the new product are comproised of Synergy managment, Synergy compute, Synergy storage and Synergy fabric. The company is positioning the new platform by saying that it is designed to run both traditional and cloud applications.   The goal is to target organizations who need a hybrid solution to run all of their applications inside of one frame. The backbone to drive both the cloud and traditional applications is the company’s architecture called Composable Infrastructure that utilizes three key design principals: fluid resource pools, software defined intelligence and a unified API. The entire package is managed by HPE OneView and as an extensible platform, Synergy is targeted for scalable hybrid cloud environments and traditional applications. Synergy is targeted for a Q2 2016 release and you can learn more about the new hardware, here. --- ### Windows 10 Tip: How to Disable Hibernation with SSD Disks > Learn how to disable hibernation in Windows 10 to save SSD disk life and space. - Published: 2015-11-30 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-how-to-disable-hibernation-ssd-disks/ - Categories: Windows 10 - Article Type: How To Learn how to disable hibernation in Windows 10 to save SSD disk life and space. In this article, I'll show you how to disable hibernation in Windows 10 to save SSD disk space. In Windows 10, the computer uses the hiberfil. sys file to store a copy of the system memory on the hard disk when the hibernation setting is activated. Once it does that, it powers down your computer.  When you turn on the power to the computer by pressing the power button or opening the lid, your apps, files and documents will open exactly as you left them. A Note on Hibernation versus Sleep Mode Unlike hibernation, sleep works in a different way. In sleep mode, the operating system reduces the power consumption of your computer by cutting power to hardware components, but maintains power to the computer’s memory.  Sleep mode is useful when you need to pause the computer for a short time. However, in a laptop computer, maintaining the power to the memory modules can drain a battery if the computer is not plugged in.  This means that while the laptop is in sleep mode, it will slowly drain the battery, if not connected to a power source. Compared to sleep, hibernation uses the least amount of power. On a laptop, hibernation may be much more useful when you know that you won't use your laptop for an extended period of time and that you won't have an opportunity to connect it to a power source in order to charge the battery during that time. Finding Disk Space Used by hiberfil. sys You can see how... --- ### Microsoft Extends Office 365 with PBX/PSTN Capabilities - Published: 2015-11-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-extends-office-365-with-pbxpstn-capabilities/ - Categories: Microsoft 365 - Tags: News - Article Type: News Microsoft on Monday announced a major update to the commercial versions of Office 365 that will enable Skype for Business to replace traditional business phone systems. Microsoft on Monday announced a major update to the commercial versions of Office 365 that will enable Skype for Business to replace traditional business phone systems. The firm calls this capability the first cloud business phone system with a dial tone. "Organizations can now replace their legacy meeting and phone systems with innovative services built on the familiar Skype for Business experience, all naturally integrated within Office 365—the world’s most-used collaboration and productivity platform," Microsoft corporate vice president Kirk Koenigsbauer wrote in a post to the Office blogs. To be clear, Microsoft previously offered some integration between its on-premises Skype Server (and, previously, Lync) and traditional phone systems. But this week's announcement encompasses a broader range of capabilities, and is certainly the most comprehensive cloud solution of its kind. According to Microsoft, Skype for Business---which is part of the commercial versions of Office 365---is being updated to support the following new features. PSTN Conferencing so you can dial in to a Skype for Business-based meeting from a traditional phone. (This is addition to the standard ability to join meetings from PCs or mobile devices using the Skype for Business client. ) Skype Meeting Broadcast for creating large virtual meetings with up to 10,000 meeting attendees. These attendees can join from almost any web browser or mobile device. Cloud PBX so that corporations can eliminate traditional PBX systems and continue their transition to the cloud. PSTN Calling allows Office 365 customers to separately subscribe to Microsoft-managed calling plans and phone... --- ### Microsoft Releases Azure PowerShell 1.0 - Published: 2015-11-30 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-releases-azure-powershell-1-0/ - Categories: Microsoft Azure - Tags: Azure, PowerShell - Article Type: News Russell Smith outlines what's new in the Azure PowerShell 1.0 release. While it might appear that the PowerShell module for Azure has only just RTM'd, that's not actually the case. With that said, version 1. 0 does represent a significant landmark in support for Azure's new resource deployment model. Azure Resource Manager (ARM), or Azure 2. 0 as some industry insiders have dubbed it, differs from the classic deployment model where Azure resources, such as virtual machines and websites, are placed into cloud services. The new model, where resource groups (RGs) are used instead of cloud services, allows all an app's components to be deployed and managed as a whole, providing a much easier way to get apps up and running in the cloud, and a better model for ongoing management and maintenance. Microsoft's Azure blog lists the changes in Azure PowerShell 1. 0 as follows: Support for Resource Manager in Azure Automation Separate Azure Service Management and Resource Manager functionality to provide clarity regarding features of Azure the cmdlets target Enforce semantic versioning and ensure cmdlets authored against a given major version of Azure PowerShell will not encounter breaking changes from updates to Azure PowerShell Availability of Azure PowerShell through WebPI and PowerShell Gallery to enable quicker delivery of new features and defect resolutions Improvements in the Azure PowerShell documentation and continued focus on documentation Certificate Authentication Support for Azure Resource Manager Virtual Machine disk encryption through Azure Key Vault Introduction of Azure Data Lake and Notification Hub cmdlets Improvements for Resource Manager, Web Apps and many other Azure services Installing Azure... --- ### How to Disable the Windows 10 Lock Screen - Published: 2015-11-25 - Modified: 2024-09-04 - URL: https://petri.com/disable-windows-10-lock-screen/ - Categories: Windows 10 - Article Type: How To Daniel Petri shows us how to make signing into Windows 10 a bit easier by disabling the lock screen. In Windows 10, you'll encounter the sign-in window if you've recently booted your computer or have been away from the machine for awhile.  For many, the Windows lock screen seems to be an unnecessary extra step that they need to do every time they boot or wake their computer. To unlock the computer, the user not only needs to enter his or her password or PIN, but they also need to dismiss the lock screen as well. In this article, I'll show you how to eliminate a step by disabling the lock screen to save you some more time. The Windows 10 lock screen. (Image Credit: Daniel Petri) As a reminder, here's the log on screen using a PIN: Log on screen with a PIN in Windows 10. (Image Credit: Daniel Petri) And here's the log on screen using a password: Log on screen in Windows 10 with a password. (Image Credit: Daniel Petri) Note: If you or an administrator has enabled the secure sign-in option for users, which requires them to hit the CTRL + ALT + DELETE keys on the keyboard before signing in, the lock screen cannot be disabled. The actual reason for having the Windows lock screen in the first place is to prevent devices that have touch screens from accidentally getting to the user credential login page, where any accidental touch on the screen may cause characters or numbers to be entered by mistake, where this by itself may lead to false... --- ### PowerShell Problem Solver: Process Performance For All > PowerShell MVP Jeff Hicks wraps up his series on performance counters by creating a custom report for multiple servers. The power is in the pipeline. - Published: 2015-11-25 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-process-performance/ - Categories: PowerShell - Tags: Advanced, Get-Counter, group-object, PowerShell Problem Solver, Scripting - Article Type: How To In the final article of this article series on process performance, Jeff Hicks shows us how we can manage performance at scale with PowerShell. We have covered a lot of ground in this series, but we'll wrap it up today. In the last PowerShell Problem Solver article, we looked at a variety of ways to get a single performance object for a single computer. The goal was to easily present the average processor time and the top five processes consuming the most processor time. As useful as the examples were in the last article, our jobs would be tedious if we had to manage one computer at a time. In this article, I want you think about management at scale with PowerShell. So let's take our baby steps with a single server and see what it takes to scale. PowerShell Problem Solver: Getting Process Details PowerShell Problem Solver: Processor Loads PowerShell Problem Solver: Process CPU Utilization PowerShell Problem Solver: Process Performance For All Collecting Data First, I'll define a variable for the computers I plan on querying. I'm manually defining a list but you can read in a text file, query Active Directory or import a CSV file. ​$computers = "chi-hvr2","chi-dc01","chi-dc02","chi-dc04","chi-core01","chi-web02","chi-sql01","chi-scom01" As before I'll be using Get-Counter. I want the same counters I used last time. ​$counters = "Process(*)% Processor Time","Processor(_Total)% Processor Time" For the sake of demonstration I'm going to collect 30 samples every 2 seconds, which means about one minute of sampling. Naturally you can decide how much sampling you need to get the values you want. ​$data = Get-Counter -Counter $counters -ComputerName $computers -MaxSamples 30 -SampleInterval 2 Once this is complete, I... --- ### Paul Thurrott's Short Takes: November 25 - Published: 2015-11-25 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-november-25/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because Thanksgiving, this short week's other news includes Microsoft's diversity problem, Android's future at Microsoft, where Android fragmentation hurts users, Amazon has been breached, and HP Inc.'s slow first (ever) quarter. Because Thanksgiving, this short week's other news includes Microsoft's diversity problem, Android's future at Microsoft, where Android fragmentation hurts users, Amazon has been breached, and HP Inc. 's slow first (ever) quarter. Short Takes on a Wednesday? ! Yep. It's Thanksgiving today and that means a short work week, at least here in the U. S. I'll be working through the holiday and weekend as usual over on Thurrott. com, of course. But if you're celebrating, Happy Thanksgiving! --Paul Microsoft became less diverse this year While tech in general and Microsoft in particular has never been known for its big contingent of women workers, 2015 has been a tougher year than usual: Microsoft says that women now make up less than 27 percent of its workforce, down from 29 percent a year earlier. But the cuts haven't come from product development, they've come from the restructuring (read: implosion) of its mobile phone business (formerly Nokia) and the closing of overseas factories. "We are not satisfied with where we are today regarding the percentage of women in our workforce," Microsoft general manager Gwen Houston says. "Our senior leaders continue to be deeply committed to doing everything possible to improve these numbers. " Change comes from the top, guys, and only three of the 12 members of its senior leadership team---25 percent---are women. That's less than the average percentage of women in its workforce overall. On a more positive note, only 6 of the remaining 9 leaders are middle-aged white guys. So diversity is... --- ### Pearson VUE's Credential Management System Has Been Compromised > Pearson VUE, who manages the certification programs for a large number of IT vendors  has announced that their credentials system has been hacked. - Published: 2015-11-25 - Modified: 2024-09-04 - URL: https://petri.com/pearson-vues-credential-management-system-has-been-compromised/ - Categories: Security - Tags: certification, Editor's Pick, hacked, News, pearson vue, Security - Article Type: News Pearson VUE, who manages the certification programs for a large number of IT vendors like Cisco and EMC, has announced that their credential system has been compromised. Pearson VUE, who manages the certification programs for a large number of IT vendors like Cisco and EMC, has announced that their credential system has been the successful target of an attack. The attackers were able to compromise and access information related to a subset of users. The company says that the hack is limited and does not impact the integrity of the testing system, K-12 assessment testing, or other systems. The company is still assessing the scope of the damage, but they do not believe that vital information such as Social Security or credit card payment information was compromised; Pearson VUE is working with law enforcement and forensic experts to assess the damage. While the investigation progresses, access to the credential system is offline. Various sources have reported that many of the credential management systems that Pearson VUE manages have been offline for the last few days, with the company finally making an announcement on Monday. In a blog post, Cisco (who uses the PCM platform to track members of the CCNA, CCNP and CCIE programs) explains they believe that the leakage is limited to the holders name, mailing address, email address and phone number. “While you may see reports of additional types of personal information being  potentially compromised on the PCM platform, we have been informed that this is  not the case with respect to the Cisco certification user profiles,” said Chris Jacobs, the director of Cisco’s certifications program. Testing for vendor programs, like Cisco, that are... --- ### Microsoft Pulled Windows 10 November Update Over Privacy Concern - Published: 2015-11-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-pulled-windows-10-november-update-over-privacy-concern/ - Categories: Windows 10 - Tags: Editor's Pick, News, November Update, Windows 10 - Article Type: News Earlier this week, Microsoft pulled its Windows 10 November update and now we know why, it was related to the security settings defined by the user. Earlier this week, Microsoft quietly pulled the November update for Windows 10, also known as Threshold Wave 2. This update, which brought several new features to the platform including new functionality for business customers but why the update was pulled was not known until now. The company has sent out a statement that says some customers, which they are saying is a small percentage, had some their settings reset to their default value after updating. Specifically, they related to the privacy settings which for some, is a big concern. Recently we learned of an issue that could have impacted an extremely small number of people who had already installed Windows 10 and applied the November update. Once these customers installed the November update, a few of their settings preferences may have inadvertently not been retained. For these customers, we will restore their settings over the coming days and we apologize for the inconvenience. We worked to resolve the issue as quickly as possible - it will not impact future installs of the November update, which is available today The company says that they will restore the settings to the impacted users over the coming days but they do not say how they plan to do this. Also, this issue will not impact any future updates to Windows 10, according to their statement, but this problem wasn't supposed to impact this update and it still managed to get through the quality control process. This issue, which highlights the point I wrote... --- ### Managing Windows Server Containers with PowerShell: Connecting to a Network > In this post, learn how to deploy a Windows Server Containers-based application and configure NAT networking and Windows Firewall rules. - Published: 2015-11-24 - Modified: 2024-11-19 - URL: https://petri.com/managing-windows-server-containers-with-powershell-connecting-to-network/ - Categories: Windows Server 2016 - Tags: Editor's Pick - Article Type: How To In this post, learn how to deploy a Windows Server Containers-based application and configure NAT networking and Windows Firewall rules. In this article series, I'm showing how you can manage Windows Server Containers on Windows Server 2016 (WS2016) Technical Preview 3 (TPv3) using PowerShell. I've already covered where the files are stored, what kinds of files are used, how to create and start a new container, the methods for interacting with a container, and how to create a new container image. In this post, we'll cover how you can deploy a new service on the network using containers. This post is part of a series: Part 1: Managing Windows Server Containers with PowerShell: Creating a New Container Part 2: Managing Windows Server Containers with PowerShell: Managing Containers Part 3: Managing Windows Server Containers with PowerShell: Connecting to a Network Deploying Containers from Custom Container Images Let's assume the following for this post: You have created a container image with nginx web server installed. You have a VM host with a NAT virtual switch. The goal is to deploy three identical containers on the VM host. In Part 2 of this series, we created a container image called DemoImage1. This container image is based on the WindowsServerCore container OS image. We can create a new container using DemoImage1, and the parentage of WindowsServerCore will automatically link this container OS image as a dependency: New-Container -ContainerImageName "DemoImage1" -Name "Web1" -SwitchName "Virtual Switch" This cmdlet will create a new container that is identical to the one that was used to create the container image. Creating lots of identical containers in... --- ### What is Azure AD Domain Services? > In this article, I explain what Azure AD Domain Services is and how you can use it to simplify deployment of applications and services in the cloud that normally rely on on-premises Active Directory (AD). - Published: 2015-11-24 - Modified: 2024-04-16 - URL: https://petri.com/what-is-azure-ad-domain-services/ - Categories: Identity Management, Microsoft Entra ID (Azure AD) - Tags: Active Directory, Azure, Azure AD Domain Services, Cloud, Microsoft Entra Domain Services - Article Type: Overview Learn about Azure AD Domain Services and how does it differs from Azure Active Directory. In this article, I explain what Azure AD Domain Services is and how you can use it to simplify deployment of applications and services in the cloud that normally rely on on-premises Active Directory (AD). Azure AD Domain Services is a cloud-based service provided by Microsoft that enables businesses to utilize Active Directory in Azure. You can use these domain services without needing to deploy, manage, or even patch domain controllers as Microsoft manages them in the cloud (Platform as a Service - PaaS). This allows your users to utilize SSO (Single Sign-On) to manage resources on-premises and in the cloud. What is Azure AD Domain Services (Azure AD DS)? The new name for Azure AD Domain Services is Microsoft Entra Domain Services. This is an interesting PaaS (Platform as a Service) offering from Microsoft. The service provides managed domain services you're used to if you're familiar with Windows Server Active Directory (AD). Things like domain join, LDAP access, Group Policy, and legacy Kerberos and NTLM authentication. One of the biggest benefits of this solution is the autonomy you have from needing to install, manage, configure, and maintain Active Directory domain controllers (DCs). Through your paid service, Microsoft handles that as part of the 'platform'. In a nutshell, you can think of this as 'Active Directory Domain Services in the cloud. ' But, there are key nuances and terms you'll need to be familiar with. Let's read on for more details. How does Azure AD Domain Services work? There is... --- ### As Microsoft Winds Down Support For IE10, IE11 Gets New Enterprise Features > Microsoft is ending support for all prior version of IE11 for Windows 7/8 but to help ease the transition, the company has announced new features. - Published: 2015-11-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-winds-support-ie10-ie11-gets-new-enterprise-features/ - Categories: Windows 7, Windows 8 - Tags: Editor's Pick, Internet Explorer 11, News - Article Type: News Microsoft is ending support for all prior version of IE11 for Windows 7/8 but to help ease the transition, the company has announced new features. On January 12, 2016, Microsoft will be ending support for all prior versions of Internet Explorer which means for those using Vista, only IE9 will be supported and for Windows 7 and 8, IE11. For companies who are still running older versions of Internet Explorer, Microsoft has announced a few new features for the its enterprise customers that they believe will help to make the transition a bit easier. Below are the new features that are now supported with IE11: Enterprise Mode supports IE5, IE7, IE8, IE9, IE10, and IE11 document modes, in addition to two higher-fidelity emulation modes, to work with a wide variety of legacy sites and web apps. Enterprise Site Discovery, off by default, can be configured to collect data such as the document mode and ActiveX controls used by specified sites. This is useful in assessing web app environments. HTTP Port numbers can now be specified, so that http://contoso. com:8080 and http://contoso. com:8090 can be placed in different document modes. Microsoft Edge and IE11 switching enables IT Pros to configure which web sites run best with which browser. For example, end users can surf the web using the more secure Microsoft Edge browser, then switch to Internet Explorer 11 automatically for sites that need backward compatibility. A simpler, scalable Enterprise Mode schema is now supported on Windows 10, and will be brought to Internet Explorer 11 for Windows 7 and Windows 8. 1 in 2016. This makes it even easier to manage complex web app portfolios... . --- ### Security Vulnerability on Dell PCs is Compared to Superfish > Dell says it inadvertently shipped new PCs with a potential security vulnerability. This lapse has drawn comparisons to Lenovo's Superfish fiasco. - Published: 2015-11-24 - Modified: 2024-09-04 - URL: https://petri.com/security-vulnerability-dell-pcs-compared-superfish/ - Categories: Security - Tags: News - Article Type: News Dell says it inadvertently shipped new PCs with a potential security vulnerability. This lapse has drawn comparisons to Lenovo's Superfish fiasco. Dell says it inadvertently shipped new PCs with a potential security vulnerability. This lapse has drawn comparisons to Lenovo's Superfish fiasco, but there's one major difference: Dell quickly acknowledged the problem and fixed it. "Today we became aware that a certificate (eDellRoot), installed by our Dell Foundation Services application on our PCs, unintentionally introduced a security vulnerability," Dell Chief Blogger Laura P. Thomas writes in a post to the firm's official corporate blog. "The certificate was implemented as part of a support tool and intended to make it faster and easier for our customers to service their system. Customer security and privacy is a top concern and priority for Dell; we deeply regret that this has happened and are taking steps to address it. " News of the Dell vulnerability originally came via personal blogs andReddit, but gained steam and attention when bigger blogs and professional news organizations picked up the story. From a technical standpoint, this problem is indeed very similar to Superfish: Software in the form of a self-signed trusted root certificate is installed by Dell, and it contains a security vulnerability. This vulnerability could be exploited by hackers to usurp HTTPS-encrypted web sites such as banks and services like Google that contain digital identities. So the potential loses are both financial and personal. And Dell, like Lenovo, felt that it was doing the right thing---in this case, trying to improve customer service---when it fact it was doing the wrong thing for... --- ### Windows 10 Update Pulled and Lumia 950 Receives a Lukewarm Welcome > A disappointing reception for Microsoft's new flagship Lumia handset and Windows 10 update woes. - Published: 2015-11-23 - Modified: 2015-11-23 - URL: https://petri.com/windows-10-update-pulled-lumia-950-receives-lukewarm-welcome/ - Categories: Mobile - Tags: Editor's Pick, Windows 10, Windows Mobile 10 - Article Type: Opinion A disappointing reception for Microsoft's new flagship Lumia handset and Windows 10 update woes. It's been a rocky week for Microsoft, with its new Lumia 950 flagship handset receiving a frosty reception, the November Update for Windows 10 being pulled, and a stable but still somewhat buggy 'RTM' release of Windows 10 Mobile for Insiders. Lumia 950 The Lumia 950 went on sale in the US at the end of last week and the reviews have started to trickle in, not least from Petri’s own Paul Thurrott and Brad Sams: Microsoft Lumia 950 First Impressions and Review: Microsoft’s Lumia 950, More Future Than Past. I've yet to lay my hands on a Lumia 950, but the reviews have revealed what I feared, that Windows Hello is more of a novelty differentiator that users will disable because it doesn't work reliably enough. It's worth remembering however that Windows Hello is still in beta on Windows 10 Mobile, so a future update could improve reliability and performance, although I doubt an iris scanner can ever be as convenient as a fingerprint reader. While I believe in Continuum, see Deep Dive: Microsoft’s Continuum For Windows 10 Mobile on Petri for the lowdown, this is the future and not something many people are likely to use on a regular basis until it can support more than one active app and portable displays become more widely available. And finally, the RTM build of Windows 10 Mobile (build 10586), while fluid and stable, leaves too many bugs for me to be convinced that I should run out and... --- ### Microsoft Releases Windows Server 2016 Technical Preview 4 > Russell Smith dives into the Windows 2016 Technical Preview 4 release. - Published: 2015-11-23 - Modified: 2015-11-23 - URL: https://petri.com/microsoft-releases-windows-server-2016-technical-preview-4/ - Categories: Windows Server 2016 - Tags: Windows Server 2016 - Article Type: News Russell Smith dives into the Windows 2016 Technical Preview 4 release. Windows Server 2016 Technical Preview 4 (TP4) quietly slipped out last week and introduces Hyper-V containers and improvements to Nano Server among other developments. With most of our attention focused on the November Update for Windows 10 and the release of what's likely to be the RTM build of Windows 10 Mobile, it would have been easy to miss the release of Windows Server 2016 TP4. In fact, the ISOs were available well before Microsoft revealed any details of what's new. According to Mike Neil, Microsoft's Corporate Vice President for Cloud and Enterprise, Windows Server 2016 TP4 includes the following developments: Application platform features, including new capabilities for Nano Server, Windows Server Containers updates and – new in this release – Hyper-V Containers, offer great opportunities for modern app development. Software-defined datacenter capabilities, across storage, networking, and compute, let you reduce cost and increase agility. New security features help address evolving threats and new threat vectors. Enhanced management capabilities, to give you advanced software-defined datacenter support and intuitive monitoring improvements. Containers Much of the interest in the forthcoming release of Windows Server is in containers, a technology that provides a way to virtualize server applications with much less overhead than a virtual machine. For more information on containers, see What are Windows Server Containers? on the Petri IT Knowledgebase. Hyper-V containers differ from Windows Server containers in that they offer greater isolation by providing a security boundary between containers and the host server, helping to solve a problem in... --- ### Microsoft's Modernized Development Workflow Begins To Show Cracks > Microsoft has moved to a modernized workflow for development but the faster release cadence is starting to show its weakness within Windows 10. - Published: 2015-11-23 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-modernized-development-workflow-begins-show-cracks/ - Categories: Windows 10 - Tags: development, Editor's Pick, News, Windows 10 - Article Type: Opinion Microsoft has moved to a modernized workflow for development but the faster release cadence is starting to show its weakness within Windows 10. When Satya Nadella took over the top position of the org chart at Microsoft, he made several key decisions that have helped shape the direction of the company. By moving the company to a ‘mobile first, cloud first' stance, layoffs of thousands across many different orgs, and consolidating business units, it's safe to say that this Microsoft is now fully his. One of the key decisions that Nadella made was to change how software was built inside the company. Prior to his implementation of a streamlined operation to help ship code faster, there as roughly a one-to-one relationship between developers and those who test the code for stability and bugs. After the layoffs, which gutted a significant portion of the employees who were in the testing group, management pushed down the idea that developers should be fully responsible for their own code. This, in itself, is not a crazy idea, but the transition to this methodology is starting to show its weakness in the products that Microsoft has been shipping since the release of Windows 10. For decades, Microsoft utilized its older workflow of including having an extra step to allow code to be fully tested, but this came at the expense of increased development time and longer cycles between shipping products. While the idea of holding developers responsible for their own code is not outlandish, the issue comes with how quickly the transition occurred. For employees who had been working at the company under Ballmer or... --- ### What's New in Windows Sever 2016 Technical Preview 4 > Learn about new features in the Windows Server 2016 Technical Preview 4 for Hyper-V and related roles and technologies. - Published: 2015-11-20 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-windows-server-2016-technical-preview-4/ - Categories: Hyper-V - Tags: Containers, Discrete Device Assignment, Hyper-V, Hyper-V containers, Nano Server, Storage Spaces Direct, Virtualization, Windows Server 2016, Windows Server Containters, WS2016 - Article Type: Overview Learn about new features in the Windows Server 2016 Technical Preview 4 for Hyper-V and related roles and technologies. Microsoft recently released the Windows Server 2016 Technical Preview 4 (TP4). This is the latest pre-release test version that Microsoft has delivered ahead of the 2016 release of the new server operating system. The download site for Windows Server 2016 Technical Preview 4 (Image credit: Microsoft) Microsoft Wants Feedback There are several new and enhanced features in Windows Server 2016. Sometimes the software company has a good understanding of how we will use features, and sometimes they really want us to share our plans with them. And they want us to test these new features. For example, Microsoft would love to hear feedback about containers and Hyper-V backup. If things need improvement, then Microsoft genuinely wants our feedback. I have seen Microsoft program managers reading the Windows Server User Voice feedback site and communicating with their colleagues about it. And there is no doubt in my mind that people that have submitted and voted for feedback have shaped Windows Server 2016 since Technical Preview 1. What's New in Virtualization with Technical Preview 4? Microsoft has shared a list of changes. It's probably not a complete and in-depth list of what's new in TP4, but it's a good spotlight on where your evaluations and testing should begin. Nano Server Until now, Nano Server only supported the roles of Hyper-V and Scale-Out File Server (SOFS). The new preview now adds support for DNS server and IIS. The following were also added: MPIO VMM SCOM DSC (Desire State Configuration) push mode... --- ### The Sams Report EP 19: Lumia 950, Windows Turns 30 And Windows Re-org > On this episode, I talk about Windows turning 30, there was a shakeup in the Windows org, the Lumia 950 is here and a lot more. - Published: 2015-11-20 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-19-lumia-950-windows-turns-30-windows-re-org/ - Categories: Podcast - Tags: Editor's Pick, News, The Sams Report - Article Type: News On this episode, I talk about Windows turning 30, there was a shakeup in the Windows org, the Lumia 950 is here and a lot more. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I talk about Windows turning 30, there was a shakeup in the Windows org, the Lumia 950 is here and a lot more about what happened in the world of Microsoft this week. If you have any questions, you can ask in the Hangout or after the show, you can find us @bdsams and @thurrottfeed on Twitter. Subscribe: RSS | SoundCloud | YouTube --- ### Deep Dive: Microsoft’s Continuum For Windows 10 Mobile > Microsoft's new mobile OS comes with a feature that allows you to turn it into a desktop-like PC and in this post, I take a closer look at the tool. - Published: 2015-11-20 - Modified: 2024-09-04 - URL: https://petri.com/deep-dive-microsofts-continuum-windows-10-mobile/ - Categories: Windows 10 - Tags: Editor's Pick, News, Phone Continuum - Article Type: News Microsoft's new mobile OS comes with a feature that allows you to turn it into a desktop-like PC and in this post, I take a closer look at the tool. Microsoft has released the Lumia 950, you can check out my review here, and one of the flagship features of this device is that it supports Phone Continuum. This feature allows you to connect your phone to a monitor and then use Universal apps on the larger screen much like you would on a traditional PC. I have been playing with the 950 for a few days and have been using Continuum extensively to see how the new Windows environment performs to get a better understanding of the strengths and weaknesses of the feature. For starters, you will need some type of hardware to connect the phone to a larger display. Continuum supports Miracast which is the easiest way to connect wirelessly or you can also use the Display Dock (this is how I am setup) that expands your phone to have three USB ports, HDMI and DisplayPort out. After connecting the first time, a video will play that goes over the high points of this feature, so make sure your phone volume is not on max, otherwise things get a bit loud. Once you are up and running, the phone turns into a trackpad that supports gestures (two fingers sliding up and down to scroll, tap for a right click). You also have the option to connect a mouse and keyboard to the phone to use in this mode and it is highly recommended as text input in this configuration is not ideal using the phone... . --- ### Review: Microsoft's Lumia 950, More Future Than Past > Microsoft's new Lumia 950 is now available and I take a closer look at the new phone to see if it truly is a flagship that can compete with the iPhone. - Published: 2015-11-20 - Modified: 2024-09-04 - URL: https://petri.com/review-microsofts-lumia-950-future-past/ - Categories: Hardware - Tags: Editor's Pick, Lumia 950, News - Article Type: Review Microsoft's new Lumia 950 is now available and I take a closer look at the new phone to see if it truly is a flagship that can compete with the iPhone. Microsoft has released its latest Windows phone in the Lumia family, the 950, and the company hopes that with a new OS along with several unique features, you'll be willing to give it a try. The device, which comes in two flavors, the 950 and 950 XL, is the new flagship for Windows 10 Mobile, which is also being released today. The 950 is the first flagship for the Lumia family to be released in several quarters and finally gives fans of the platform something to purchase. With a couple of unique differentiators like Windows Hello and Phone Continuum, Microsoft set out to create something that had a chance of standing out in a crowded market. Powering the device is a Qualcomm Snapdragon 808 processor combined with 3GB of RAM, 32GBs of storage that can be expanded up to 200GB with an SD card, a 20MP rear camera, a 5MP front facing shooter, and the display is a 5. 2in OLED QuadHD screen. For those who have wanted a removable battery, the 950 has a 3000 mAH juice pack that can be recharged to 50 percent in thirty minutes and by popping off the back cover, it can be swapped easily. But the best spec of all is that the phone uses USB type C for charging. For those not familiar, this is the new, reversible, USB connector that is a joy to use compared to the old connectors. The shell of the phone is made of the... --- ### Paul Thurrott's Short Takes: November 20 > This week's other news includes the 30th anniversary of Windows, Microsoft's cloud-only future, Google hires ex-VMware CEO for business cloud efforts, more. - Published: 2015-11-20 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-november-20/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion This week's other news includes the 30th anniversary of Windows, Microsoft's cloud-only future, Google hires ex-VMware CEO for business cloud efforts, more. 30 years ago today, Windows 1. 0 debuted. Because I'm five hours ahead and everyone talks funny, this week's other news includes the 30th anniversary of Windows, Microsoft's cloud-only future, Google hires ex-VMware CEO for business cloud efforts, Windows Server 2016 TP4, Intel sees growth, but not from PCs, and Yahoo should sell Yahoo, not Alibaba. Today is the 30th anniversary of Windows Microsoft shipped Windows 1. 0 on November 20, 1985, exciting literally no one. But a few versions and strategy shifts later---the firm was ready to can Windows and go all-out on OS/2---Windows was a hit, setting up Microsoft for a crazy two-decade period of dominance in the personal computing industry. That dominance has of course ebbed in recent years, but by bringing Windows technologies to workgroups, servers, and more recently to the cloud, Microsoft has of course set itself up for the future as well. Speaking of which... Cloud first, mobile first? How about cloud only? It's become increasingly obvious to me that Microsoft's long-term future is in the cloud, and more specifically in the business/enterprise cloud, and even more specifically with Microsoft Azure. In fact, walking through this scenario with folks at Stacked 2015 this week in Manchester, England, I basically talked myself into believing that Microsoft's client-side businesses will essentially fall off one-by-one over time until all that's left, essentially, is Azure. This isn't a horrible outcome, assuming you can give up your fixation on shiny consumer baubles, and I... --- ### Microsoft Shakes The Windows Org Tree One More Time > Microsoft has made a few organizational changes in the Windows Org by appointing a new CVP Windows Apps Studio and CVP Windows Shell Program Management. - Published: 2015-11-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-shakes-windows-org-tree-one-time/ - Categories: Main - Tags: Editor's Pick, Microsoft, News - Article Type: News Microsoft has made a few organizational changes in the Windows Org by appointing a new CVP Windows Apps Studio and CVP Windows Shell Program Management. Microsoft has made a few changes inside of its Windows org and has promoted Kudo Tsunoda to CVP Windows Apps Studio. Along with that promotion, Chuck Friedman has been named the CVP Windows Shell Program. The company is looking to make a large organization effort to push its Universal Windows Platform, according to my internal sources and these changes reflect this updated direction. Microsoft provided the following comment on the org changes: On the heels of the successful release of the November update for Windows 10 and the New Xbox One Experience, Microsoft added two new members to the Windows and Devices Group Leadership Team: Kudo Tsunoda as CVP Windows Apps Studio and Chuck Friedman as CVP Windows Shell Program Management. These changes will help Microsoft continue to deliver great experiences on Windows 10 and devices, including Xbox, Surface and HoloLens. During the past 18 months or so, Microsoft has made several significant organizational changes including layoffs, re-calibrating how it will report earnings, and re-configuring its device and services group to bring it under the Windows umbrella. It’s not quite clear how many new heads are now inside of the Windows org but the team has expanded with these new leaders in the group. For those curious about Joe Belfiore, his role remains vacated and he will return in 2016 to take back his position. Microsoft is not the lumbering giant of yesterday and under Nadella the company is continuously re-evaluating its structure and its products. By... --- ### Reclaiming Disk Space on Windows 10 by Removing Modern Applications > Learn how to reclaim disk space on your Windows 10 machine by removing unneeded modern applications. - Published: 2015-11-19 - Modified: 2024-09-04 - URL: https://petri.com/reclaiming-disk-space-on-windows-10-by-removing-modern-applications/ - Categories: Windows 10 - Article Type: How To Learn how to reclaim disk space on your Windows 10 machine by removing unneeded modern applications. I recently wrote about a tip for cleaning up of the space used by the Windows 10 upgrade program. Although this helps clear up space to some degree, a lot of disk space is still used by the operating system itself, and much of that space is taken by the built-in modern apps that are bundled with the operating system. Warning: The procedure outlined below will save you a few hundreds of megabytes on the system's disk. At the same time, it may cause your system to lack some of the built-in functionality. Please carefully test this procedure before applying it to a production machine. In addition, I cannot over stress this: Make sure you have a working backup of your system. Having said that, let's see what we can do to save you some disk space by removing the built-in modern apps from your system. First, let's see where the apps are installed. Most of them are located in a hidden folder called C:Program FilesWindowsApps. You can see the folder's content in the following picture. Note: If you want to view the contents of this folder yourself, you will need to take ownership of the folder. If you don't know how to do that, perhaps it's best you don't mess with your system. In addition, if that is the case, I urge you to consider the following steps and double-verify that you've got a working backup of your system. Removing the built-in modern apps will free up most of... --- ### Windows 10: Use a PIN Instead of a Password to Sign In > Learn why Microsoft considers PINs safer than passwords, and how to configure a PIN for your Windows 10 device. - Published: 2015-11-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-use-a-pin-instead-of-a-password-to-sign-in/ - Categories: Windows 10 - Tags: Editor's Pick, Security, Windows 10 - Article Type: How To Learn why Microsoft considers PINs safer than passwords, and how to configure a PIN for your Windows 10 device. The ability to sign in with a PIN is not new to Windows 10, but Microsoft is now encouraging users during OS installation to consider using a PIN instead of a password. This isn't the first time that I've written about passwords recently on the Petri IT Knowledgebase. In Goodbye Passwords: Windows 10 Passport, I outlined a new feature in Windows 10 that works with works with Identity Providers (IDPs), such as Azure Active Directory (AAD) and Windows Server Active Directory, to authenticate users with a certificate or asymmetric public/private key pair that's generated as part of a two-factor authentication enrollment process. Adding or changing a PIN in Windows 10 (Image Credit: Russell Smith) If you've installed Windows 10, as opposed to upgrading from Windows 7 or Windows 8. 1, you may have noticed that you're encouraged, after entering an email address and password to log with a Microsoft account, to set a PIN code to unlock the device. Microsoft even goes as far as to state that this is preferable to using your Microsoft account password. Are PIN codes safer than passwords? According to Microsoft, yes. The reasoning is that if someone discovers the PIN, by looking over your shoulder as you log in for example, they only get access to the device and not complete ownership of your Microsoft account. Once logged in, the imposter would need to know your existing Microsoft account password in order to change it and take ownership,... --- ### Microsoft and Hewlett Packard Enterprise Join Hands For New Partnership > Microsoft and Hewlett Packard Enterprise have announced a new partnership to help with Windows 10 deployments and application development. - Published: 2015-11-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hewlett-packard-enterprise-join-hands-new-partnership/ - Categories: Windows 10 - Tags: HPE, Microsoft - Article Type: News Microsoft and the newly formed Hewlett Packard Enterprise (HPE) have announced a partnership that will bring mutual benefit to both companies. The partnership opens the availability of the Cloud Productivity and Mobility Solution Offerings (CPM), which will create consulting services and business applications for Windows 10. With the CPM tool, HPE will now be offering tightly integrated software and solutions to help bring aging enterprise deployments up to modern standards on top of Microsoft’s product offerings. Specifically, HPE will now begin to offer consulting services for Windows 10 deployments, new cloud and mobility consulting services and industry specific vertical applications. The following breakdown of each service, as noted in the announcement post, are below: Consulting services for Windows 10. The HPE consulting service will accelerate clients’ business process transformations with digital process design, application development and prototyping. The consulting services will pair HPE’s services with Microsoft platforms including Enterprise Mobility Suite, Dynamics Customer Relationship Management (CRM), Office 365, Skype for Business and Windows 10 for the Enterprise. New cloud and mobility consulting services. Extending HPE’s existing advisory and delivery capabilities through the Windows 10 ecosystem, HPE will use the Microsoft cloud and mobility platform to help organizations share information faster, increase engagement and collaboration, and optimize work. Transforming to fully digital business processes helps reduce cost and improve customer service. Industry-specific vertical applications. HPE and Microsoft currently have joint healthcare, automotive and financial applications deployed in client organizations. This catalog of Windows 10-based enterprise applications and solutions... --- ### Microsoft Drops Version Numbers From Dynamics, Dynamics AX Coming in Q1 > Microsoft has announced a new name for its flagship Dynamics product and that the new ERP software will be released in Q1 of 2016. - Published: 2015-11-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-drops-version-numbers-dynamics-dynamics-ax-coming-q1/ - Categories: Dynamics - Tags: Dynamics, Editor's Pick, News - Article Type: News Microsoft has announced a new name for its flagship Dynamics product and that the new ERP software will be released in Q1 of 2016. Microsoft has announced today that its flagship ERP product, Dynamics AX, will reach general availability in the first quarter of 2016. For those who want to get an early look at the product, the company says that they will be opening up a public preview of the new tools in early December. Dynamics AX is the company’s flagship ERP solution that brings the power of the modern cloud to enterprise-class business applications. If you are curious about the new name, Microsoft said that they are dropping the prior naming scheme that typically included version numbers or a year in the branding. Instead, they are going with only AX as the service will now be updated regularly. In addition to the new name, the company is also going to update its subscription offering to make it easier for organizations to purchase the solution so that it scales with the client's company. At this time, the pricing has not been announced. One of the new features coming with this release is Dynamics Lifecycle Services which allows for off-the-shelf pre-built industry specific solutions from the Azure Marketplace; this new feature that allows for automated setup and deployment. As we quickly approach the release of the platform, expect to hear more from Microsoft about the included features along with deep feature focuses on what’s new and how to leverage the updates for your business. --- ### Windows 10 Tip: Configure Windows Update for Business using Group Policy > Learn how to defer upgrades and updates in Windows 10 Professional and Enterprise edition. - Published: 2015-11-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-configure-windows-update-for-business-using-group-policy/ - Categories: Windows 10 - Tags: Security, Windows 10, WSUS - Article Type: How To Learn how to defer upgrades and updates in Windows 10 Professional and Enterprise edition. In today's Ask the Admin, I'll show you how to configure Windows Update for Business in the Windows 10 November update (build 1511). Along with the visual and performance improvements in the Windows 10 November update are features designed to encourage businesses to adopt Microsoft's new operating system. While still a work in progress, as is the rest of Windows 10, Windows Update for Business is a set of options that give businesses more control over when updates are installed. Before the latest update, Windows 10 (build 10240) Professional and Enterprise edition owners could defer non-security updates for a few months using the Defer upgrades checkbox under Advanced options in the Windows Update section of the Settings app, or using Group Policy. Now a new Group Policy setting has been added to give businesses more flexibility. While none of this is much of problem for organizations that use System Center Configuration Manager (SCCM) or Windows Server Update Services (WSUS) for distributing updates, smaller businesses that connect directory to Microsoft's update servers need more control over updates. Update Terminology Windows Update for Business isn't a product, but set of controls built-in to Windows 10. Additionally, there are three branches to which devices can be subscribed: Current Branch (CB) Current Branch for Business (CBB) Long Term Servicing Branch If you don't make any changes to your Windows 10 device, you are by default subscribed to the Current Branch. If you check the Defer upgrades box in Windows Update settings,... --- ### Improving The User Provisioning Process > User provisioning is a tasks that many administrators detest but what if there was a better way? Petri and HelpSystem can help you improve this process. - Published: 2015-11-18 - Modified: 2024-12-03 - URL: https://petri.com/improving-user-provisioning-process/ - Categories: Administrative Tools and Scripts - Tags: Editor's Pick, Help Systems, webinar - Article Type: News User provisioning is a tasks that many administrators detest but what if there was a better way? Petri and HelpSystem can help you improve this process. Every time you bring on a new employee, you will know the pain of having to provision that user across several platforms which results in several hours of lost productivity. Then, once setup, the email backlog of making sure everyone is informed about this new user and their access cuts deeper into your day. But what if there was a better way? If you are looking to streamline your provisioning workflow, Petri and HelpSystems are hosting a webinar on December 9th that tackles this subject. In this webinar, you will learn: How to avoid the common pitfalls of user provisioning. How to optimize your user provisioning process. How to work with error and exception handling. How to automate common tasks and reduce number of emails sent. Besides picking up some awesome tips about how to makes user provision less painful, five randomly-selected attendees will win a $100 Amazon Gift card; you must be registered and present for a chance to win. To register for the webinar, you can sign-up here. --- ### PowerShell Problem Solver: Process CPU Utilization > Discover how to find how much processor time processes are consuming with PowerShell and WMI. - Published: 2015-11-18 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-process-cpu-utilization/ - Categories: PowerShell - Tags: Advanced, Get-Process, Scripting Discover how to find how much processor time processes are consuming with PowerShell and WMI. The last few PowerShell Problem Solver articles have involved getting processor load or utilization information with WMI and PowerShell. If you're just jumping in with us, you should get caught up because I am going to build on what's been outlined in previous articles in this series. The original question consisted of two different parts, where the first part was to get average processor load values. The second part looks to find the top five processes that are consuming the most processor time. Let's look at this task. Each method I'll demonstrate expresses processor time in a slightly different manner and they may not indicate which processes are consuming the most CPU time at the time you are querying. Processor Load Article Series:  PowerShell Problem Solver: Getting Process Details PowerShell Problem Solver: Processor Loads PowerShell Problem Solver: Process CPU Utilization PowerShell Problem Solver: Process Performance for All Using PowerShell's Get-Process Cmdlet The Get-Process cmdlet is easy enough to use and the results include a CPU property. You can use common cmdlets to sort and select the top five processes. ​ Getting top five processes by CPU locally (Image Credit: Jeff Hicks) I ran this command locally. The CPU property is actually a calculated property that PowerShell brings to the party. If you research the System. Diagnostics. Process class, you won't see CPU listed. The CPU property is defined as the TotalSeconds property of the TotalProcessTime property. Viewing the CPU definition (Image Credit:... --- ### Microsoft Is Making It Easier To Get Visual Studio > Microsoft is making it easier to buy Visual Studio with new subscription offerings that can be purchased in monthly or annual buckets. - Published: 2015-11-18 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-making-easier-get-visual-studio/ - Categories: Visual Studio - Tags: Editor's Pick, News, Visual Studio - Article Type: News Microsoft is making it easier to buy Visual Studio with new subscription offerings that can be purchased in monthly or annual buckets. Microsoft loves subscription services, everything from Office 365 to Xbox Live use the annual reoccurring billing model to allows its users to access the service or apps and today the company is adding another service to its portfolio, Visual Studio. The announcement came today at the company’s Connect; //2015 event in New York. The company is announcing Visual Studio Professional and Enterprise monthly and annual subscriptions in addition to its existing MSDN subscription lineup. The key to this model is that it works around the typical requirement of needing MSDN license to be able to access these tiers of the software. The goal, for Microsoft, is to make these tools more easily available to individuals and small business who many only need access to Visual Studio and do not want to pay for the full MSDN service. Pricing for Visual Studio Professional is $45/month (or $539/year) and the Enterprise edition will run $250/month (or $2,999/year). Annual plans include monthly Azure credits and access to dev/test software. In addition to the subscription announcement, the company is also opening up the Visual Studio Marketplace. The company previously had a Visual Studio Gallery for extensions and today they are expanding that service with the new marketplace. The company says that this will be the central place for developers to discover and install extensions for all versions of Visual Studio (Enterprise, Professional, and Community), for Visual Studio Team Services (formerly Visual Studio Online), and for Visual Studio Code. You can check... --- ### Microsoft Graph: A Unified Path To Access Data Across the Intelligent Cloud > The Microsoft Graph is a new way to access your organization's data across the intelligent cloud and it's entering General Availability today. - Published: 2015-11-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-graph-unified-path-access-data-across-intelligent-cloud/ - Categories: Microsoft 365, Microsoft Azure - Tags: Editor's Pick, Microsoft Graph, News - Article Type: News The Microsoft Graph is a new way to access your organization's data across the intelligent cloud and it's entering General Availability today. At Build 2015, Microsoft unveiled its Office 365 Unified API to help its users integrate Office data into their own apps. At Microsoft’s Connect; conference in New York, the company is taking the next step to expand this API and is also rebranding it as well. Microsoft Graph is the new name and the tool is entering General Availability (GA) which means that it is now ready for production environments. Microsoft Graph allows applications to access digital work and digital life data across the company’s intelligent cloud. What this means is that the Graph offers a unified API endpoint for accessing the capabilities of the company’s cloud, unified access to data living in the Microsoft cloud, and unified access to intelligence and insights coming from the cloud. The company is also releasing SDKs for developers to help them get started with the new features. Available today are SDKs for . Net, iOS and Android and in the near future other platforms like Node. js, Python, Java, Ruby, etc. The Microsoft Graph allows for secure access to an organization’s activities (documents, calendars, meetings) that can be used to surface internal corporate insights like who do your employees work closely with, what documents are important to each business unit and how much time are employees spending in meetings each week. A unique scenario about how a developer can take advantage of this new tool is that with the API, they can access any data stored inside of documents in OneDrive, including... --- ### Microsoft Announces New Approach to Security > Microsoft announced today that it is shifting its security focus to focus on what it calls the mobile first, cloud first world. Trustworthy Computing 2.0? - Published: 2015-11-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-new-approach-security/ - Categories: Security - Tags: News - Article Type: News Microsoft announced today that it is shifting its security focus to focus on what it calls the mobile first, cloud first world. Trustworthy Computing 2.0? Having famously halted development of its major products over a decade ago so it could usher in a new age of Trustworthy Computing, Microsoft this week said it was changing tactics again. And this time around, it's shifting its security focus to focus on what it calls the mobile first, cloud first world. "We don’t think of security as being a separate piece of technology,” Microsoft CEO Satya Nadella said during an appearance at the Microsoft Government Cloud Forum in Washington D. C. this morning. "It has to be core to the operational systems that you use, where your data resides, where your most critical applications usage is. " Noting that Microsoft already invests over $1 billion in security research and development each year, Nadella said that his firm was building a new Cyber Defense Operations Center, a state-of-the-art facility that will be manned by security experts "24 x 7" who are tasked with responding to security threats in real-time. Additionally, Microsoft is establishing an Enterprise Cybersecurity Group (ECG), which will work across Microsoft's product divisions to help the enterprise modernize and better protect their IT infrastructure. As you might imagine, Nadella also took some time to explain how Microsoft's latest products, like Windows 10, Office 365, Microsoft Azure, and Microsoft Enterprise Mobility Suite (EMS), work together to deliver a more secure computing environment. Windows 10, for example, provides biometric security access with its Windows Hello and Windows Passport technologies, plus Credential Guard for protection... --- ### A Workaround for Finding Missing Hyper-V Tools in Windows 10 > Daniel Petri shows us a workaround for finding missing Hyper-V tools in Windows 10. - Published: 2015-11-17 - Modified: 2024-12-03 - URL: https://petri.com/workaround-finding-missing-hyper-v-tools-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick - Article Type: How To Daniel Petri shows us a workaround for finding missing Hyper-V tools in Windows 10. In a previous post, I showed you how to install the Hyper-V role on your Windows 10 computer. I'd assume that after installing Hyper-V onto your computer, you will want to create, configure and run one or more virtual machines. To do that, you need to use the Hyper-V Management Console or the various PowerShell cmdlets that can be run from a PowerShell console. In this article, I'll outline some existing issues in Windows 10 that makes it difficult to track down these tools, along with a workaround on how to access these tools. Missing Hyper-V Tools in Windows 10 Because we clearly selected both management tools options during the Hyper-V role installation, we expect them to be there. Hyper-V options in Windows 10. (Image Credit: Daniel Petri) In this article, we'll choose the first option. Launching the Hyper-V Management Console, like any management tool, is easily done via the Start menu. Just type the word "hyper-v", and wait for the results to come up. Once they do, press Enter. Launching Hyper-V tools from the Windows 10 Start menu. (Image Credit: Daniel Petri) The tool isn't showing up. We'll try the second method, which is to use the Administrative Tools folder that is accessible through the Control Panel. In the Administrative Tools folder, look for the Hyper-V Management Console. You'll notice that it isn't here, either. Missing Hyper-V management tools in Windows 10. (Image Credit: Daniel Petri) If experience has taught us something, it's... --- ### Red Hat's Impact on Microsoft Azure: A Win for the Enterprise > Microsoft and Red Hat announced a partnership to bring Red Hat Enterprise Linux to Azure, .NET to RHEL, and improve mutual systems management. - Published: 2015-11-17 - Modified: 2024-09-04 - URL: https://petri.com/red-hat-impact-microsoft-azure-win-for-the-enterprise/ - Categories: Microsoft Azure - Tags: .NET, Azure, Cloud, Microsoft, Microsoft Azure, Red Hat, Red Hat Enterprise Linux, RHEL, scvmm, System Center Virtual Machine Manager - Article Type: Opinion Microsoft and Red Hat announced a partnership to bring Red Hat Enterprise Linux to Azure, .NET to RHEL, and improve mutual systems management. Scott Guthrie, Executive Vice President for Cloud and Enterprise Group at Microsoft, recently announced that Microsoft and Red Hat will partner to offer customers "more flexibility and choice. " In this opinion piece, I'll help shed some light on what this means for Azure. Microsoft Embracing Open Source through Azure Microsoft's renaming of Azure from "Windows Azure" to "Microsoft Azure" wasn’t just an excuse to change a logo and print some new business cards. It was a symbolic gesture to consumers of open source software that Azure was welcoming non-Windows users, too. Depending on which Microsoft presenter you listen to, somewhere between 20 and 40 percent of virtual machines running in Azure are installed with one of the Linux distributions. Supported Linux distributions include multiple versions of the following: Canonical Ubuntu CentOS CoreOS Oracle Linux SUSE Linux Enterpise Server (SLES) openSUSE Not only will you find Linux in Azure virtual machines, but there's lots of open source throughout Azure: Linux containers Docker Azure Containers Service will be based on Docker and Mesosphere Hadoop PHP and many non-Microsoft developer platforms WordPress MySQL (via a partnership) In fact, most of the contents in the Azure Marketplace are from non-Microsoft sources, with many of the appliances being Linux based. As we've seen with Office, Microsoft doesn't care what OS you're using, as the money of a penguin hugger is as good as the money of a Windows user. And let's get real here; the bigger the company, the more likely that... --- ### EMC Announces Data Lake 2.0 Strategy For Isilon > Splish, splash. EMC has announced their "Data Lake 2.0" strategy, and it's time to get your Isilon's enterprise bits to get all wet. - Published: 2015-11-17 - Modified: 2024-09-04 - URL: https://petri.com/emc-announces-data-lake-2-0-strategy-isilon/ - Categories: Backup & Storage, Cloud Computing, Virtualization, VMware - Tags: AWS, Azure File Storage, EMC, Isilon, News - Article Type: News Splish, splash. EMC has announced their "Data Lake 2.0" strategy, and it's time to get your Isilon's enterprise bits to get all wet. Splish, splash. EMC has announced their "Data Lake 2. 0" strategy, and it's time to get your Isilon's enterprise bits all wet. Data Lake 2. 0 is the next generation of the EMC Isilon portfolio. Isilon is EMC's scale-out network attached storage product. Traditionally, Isilon OneFS runs on physical nodes, with the cluster scaling from roughly 30 TB of raw capacity, all the way up to 50 PB. The nodes are all connected across a redundant, private, Infiniband network. But next year, EMC will offer two more ways to utilize Isilon. In addition to the traditional setup, EMC will offer "Cloud Pools" and "IsilonSD Edge" products. Software Defined The IsilonSD Edge product is the eqivilant of an Isilon virtual edition. Instead of running Isilon's OneFS operating system directly on EMC provided hardware, customers can utilize their own physical boxes, loaded up with disk, and run the Isilon software as multiple instances inside VMware ESXi. There are some restrictions though, chiefly, the ESXi host operating systems must meet strict specifications. EMC will leverage the hardware compatibility list used by VMware's VSAN product, to determine what will be a supported IsilonSD configuration. Each IsilonSD virtual node will have VMDK files running on the local storage of the ESXi hosts. Shared storage (even one provided by another EMC storage system like the VNX or VMAX) is not supported. Even though IsilonSD and VSAN will share the same HCL, it should be noted that IsilonSD does not leverage VSAN's technologies in any way. The VSAN team has done extensive... --- ### Managing Windows Server Containers with PowerShell: Managing Containers > Learn how to perform administration inside of a Windows Server container, along with steps on creating a new container image in the repository. - Published: 2015-11-16 - Modified: 2024-11-19 - URL: https://petri.com/managing-windows-server-containers-with-powershell-managing-containers/ - Categories: Windows Server 2016 - Tags: Container Image, Containers, Editor's Pick, Management, PowerShell, Technical Preview, Technical Preview 3, TPv3, Virtualization, Windows Server 2016, Windows Server containers, WS2016 - Article Type: How To Learn how to perform administration inside of a Windows Server container, along with steps on creating a new container image in the repository. In this article series, I'm showing you how to manage Windows Server Containers on Windows Server 2016 (WS2016) Technical Preview 3 (TPv3) using PowerShell. I've already covered where the files are stored, what kinds of files are used, and how to create and start a new container. In this post, we'll look at how we can manage a container, along with instructions on how to create a new container image. This post is part of a series: Part 1: Managing Windows Server Containers with PowerShell: Creating a New Container Part 2: Managing Windows Server Containers with PowerShell: Managing Containers Part 3: Deploying container-based services on the network Remote Administration What good is a container if you don't install something to run inside of it? Normally with a machine you would log into that machine. But there is no such thing as logging into a container because it's not a machine. But you can use PowerShell's remote capabilities to configure a container. If you want to have an interactive administration experience, then you can use Enter-PSSession to get a PowerShell session inside of a container. Enter-PSSession requires the unique ID of the container to create that session. That ID is easy to provide if you previously stored a pointer to the container using a variable (see $Container in Part 1). For example: Enter-PSSession -ContainerId $Container. ContainerID -RunAsAdministrator If you haven’t saved a pointer to the container, then you can run: Enter-PSSession -ContainerId (Get-Container Test1). ContainerID -RunAsAdministrator Entering a... --- ### Deploy and Manage Windows Server Containers using Docker > Russell Smith shows you how to quickly deploy Windows Server containers using Docker in the latest technical preview. - Published: 2015-11-16 - Modified: 2024-09-04 - URL: https://petri.com/deploy-manage-windows-server-containers-using-docker/ - Categories: Virtualization - Tags: Azure, Containers, Docker, Editor's Pick, Virtualization, Windows Server - Article Type: How To Russell Smith shows you how to quickly deploy Windows Server containers using Docker in the latest technical preview. In today's Ask the Admin, I'll show you how to quickly set up Windows Server 2016 Technical Preview 3 (TP3) in Azure and deploy containers using Docker. Unless you've been living under a rock for the past couple of years, it's likely you'll have heard of Docker and containers. Docker is a system for managing containers, a technology that's long been native to Linux and is now included in Windows Server 2016 TP3. Nonetheless, if you need a bit of refresher, see What is Docker? and Are Docker Containers Better than VMs? on the Petri IT Knowledgebase. As it stands in the current technical preview, Windows Server containers can be managed using PowerShell or Docker, but it's worth noting that containers created with Docker can't be managed using PowerShell, and vice versa. Just as in Linux, Windows Server containers can be managed natively, and for more information on that see Aidan Finn's series of articles Managing Windows Server Containers with PowerShell. For the purposes of this demo, we're going to use Windows Server 2016 TP3 in a virtual machine (VM) running in the Azure cloud because Microsoft has a preconfigured image where the Containers role and Docker agent are preinstalled with the necessary configuration steps already performed, meaning we can get down to the nitty gritty much quicker. If you want to set up your own containers host on a local server, instead of using the preconfigured Azure VM, you can download and run the following script... --- ### Microsoft Brings Windows 10 To Phones Starting November 20th > Microsoft will release a new Windows 10 Mobile device, called the Lumia 950, on AT&T on November 20th, which is the first phone to run the new OS. - Published: 2015-11-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-windows-10-phones-starting-november-20th/ - Categories: Windows 10 - Tags: Editor's Pick, Lumia 950, News - Article Type: News Microsoft will release a new Windows 10 Mobile device, called the Lumia 950, on AT&T on November 20th, which is the first phone to run the new OS. AT&T has announced today that the new Windows 10 Mobile flagship, the Lumia 950, will go on-sale, this Friday. If you are looking to buy the phone online, you will be able to order it starting on the 17th. This will be the first phone that Microsoft will be selling that uses its new mobile operating system, Windows 10. The OS, which is now out for the PC and the Xbox One, is the core of all of Microsoft’s products and with the first mobile phone being released with the OS, the company’s strategy of one OS for all devices is now complete. Seeing as the phone is a flagship and is running Windows 10 Mobile, it will have support for high-end features like Windows Hello (via Iris scanning) and Phone Continuum, the ability to dock the phone and use it with a monitor. Powering the device is a Qualcomm Snapdragon 808 processor combined with 3GB of RAM, 32GB5 of internal storage memory that can be expanded up to 200GB, a 20MP rear camera, a 5MP front facing shooter, and up front is a 5. 2in OLED QuadHD display. And for those who have wanted a removable battery, the 950 has a 3000 mAH juice pack that can be recharged to 50% in thirty minutes. Microsoft is hoping that this phone is attractive to the corporate segment as well as it features Windows 10 that comes with all the same provisioning options as the desktop OS. It also... --- ### How To Run Two 4k Monitors From Your Surface > Looking to run two 4k monitors from your Surface? Make sure to read this guide so you know what to expect and to save yourself some time. - Published: 2015-11-13 - Modified: 2024-09-04 - URL: https://petri.com/run-two-4k-monitors-surface/ - Categories: Hardware - Tags: Editor's Pick, News, Surface Dock - Article Type: How To Looking to run two 4k monitors from your Surface? Make sure to read this guide so you know what to expect and to save yourself some time. If you own a Surface Pro 4, there is a good chance you are looking at picking up the Surface dock. The device, which will set you back $199, is not cheap but it does expand the functionality of your Surface quite a bit. Earlier this week, I ordered two Dell 27in (P2715Q) 4k monitors to use with my  Surface Pro 4. The process to get them up and running was a serious pain in the butt which is why I am writing this piece to hopefully help save you a few hours of time when trying to setup your system. The Surface dock, which claims that it can support 2 4k displays is technically true, but it can only do so at 30hz. If you have never used a monitor at 30hz, it is an awful experience, everything feels sluggish and it’s about as annoying as watching a YouTube video where the audio is off by ½ a second. But, according to the documentation for the Surface line, you should be able to run two 4k displays at 60hz, which you can, but not through the dock. To run two monitors at 60hz with the dock, you must use one port on the Surface dock and the other DisplayPort on the Surface Pro 4. Any other arrangement will not work, it took me a few hours to figure this out as Windows doesn’t provide any helpful information and simply locks the displays to 30hz. My favorite... --- ### Microsoft Expands Insider Program To Include Office > Microsoft has expanded its insider program to now include Office which means you can try out new features before they are released. - Published: 2015-11-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-insider-program-include-office/ - Categories: Microsoft 365 - Tags: Editor's Pick, News, Office Insider - Article Type: News Microsoft has expanded its insider program to now include Office which means you can try out new features before they are released. Last year, Microsoft created a program for enthusiasts to help test out new builds of Windows 10. The program, called Windows Insider, has been a huge success for the company and at last report, had more than 7 million participants. Because of the success of the program, the company is expanding the offering to the Office platform. Announced today, Microsoft is opening up Office to those who want to try out new features that are coming down the pipe before they make it into the final product that ships out to all users. At this time, the program is only open to Office 365 Home, Personal and University subscribers. For Microsoft, by opening up these early builds to testers, they gain valuable telemetry about if features are stable and how they are being used. Those who opt into the program get to be on the bleeding edge of Office features and much like Windows 10, they get to help shape the features and the platform. Microsoft’s Office is the most widely used productivity suite on the planet and is a cornerstone piece of software for many organizations. While the company has found new competition from the likes of Google, Excel is such an integral part many operations that they find it nearly impossible to move away from the suite. Microsoft’s Office 365 offering has allowed companies to be more flexible with their deployment of these apps internally and while the subscription model is not ideal for everyone, it... --- ### Windows Mobile: Revisiting the Lumia 640 > Six months after its release, Russell Smith takes another look at the Lumia 640 and gives his verdict. - Published: 2015-11-13 - Modified: 2015-11-13 - URL: https://petri.com/windows-mobile-revisiting-lumia-640/ - Categories: Mobile - Tags: Editor's Pick, Lumia, Windows 10, Windows Mobile - Article Type: Review Six months after its release, Russell Smith takes another look at the Lumia 640 and gives his verdict. Back in March the Lumia 640 was released and it created a bit of a buzz in the Windows Phone user community because it represented the first value midrange phone released under the Microsoft brand since its acquisition of the Nokia devices business. I reviewed the 640 for Petri back in April, which you can read here, and I stick by what I wrote there. But with a new flagship from Microsoft on the horizon, and a new budget phone in the Lumia 550, it’s time to take another look at the Lumia 640. Microsoft released the Lumia 640 in March 2015 and it was meant to capture our imaginations as a budget-friendly midrange handset. While the 640 quickly gained a slice of the Windows Phone market pie, six months later it hasn't made any significant gains. And unlike in the US, it's not uncommon to see Windows Phone in the wild in Europe, but I've rarely come across another 640 owner. So has there been something holding the 640 back? The general uncertainty surrounding the future of Windows Phone, the wait for Windows 10 Mobile, and the promise of new flagships have all led the market to stagnate. But despite the current conditions, there are also some issues with the 640 that prevent me from giving it full marks. Lumia 520 versus 640 The easiest way for me to evaluate whether the 640 has been a success for me personally is to think back to the... --- ### The Sams Report EP 18: Windows 10's Second Push > On this episode, I talk about how Microsoft has executed its second major push of Windows 10, Surface Dock woes, and where is that Windows 10 Mobile Update. - Published: 2015-11-13 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-18-windows-10s-second-push/ - Categories: Podcast - Tags: Sams report - Article Type: Overview On this episode, I talk about how Microsoft has executed its second major push of Windows 10, Surface Dock woes, and where is that Windows 10 Mobile Update. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I talk about how Microsoft has executed its second major push of Windows 10, Surface Dock woes, and where is that Windows 10 Mobile Update. If you have any questions, you can ask in the Hangout or after the show, you can find us @bdsams and @thurrottfeed on Twitter. Subscribe: RSS | SoundCloud | YouTube --- ### Paul Thurrott's Short Takes: November 13 2015 > This week: Microsoft's new emotion-sensing platform, bad news for UK-based Surface Book fans, and Apple execs mock the products they copied, and much more. - Published: 2015-11-13 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-november-13/ - Categories: Mobile - Article Type: Opinion This week: Microsoft's new emotion-sensing platform, bad news for UK-based Surface Book fans, and Apple execs mock the products they copied, and much more.   Because there is no substitute, this week's other news includes Microsoft's new emotion-sensing platform, bad news for UK-based Surface Book fans, Apple executives mock the products they copied, and Google's self-driving car is pulled over ... for driving too slowly. New Microsoft platform can sense emotions Well, please point it at those people who got the Windows 10 upgrade without requesting it: I'm going to go out on a limb and say they're not very happy. Anyway, a Microsoft project called Oxford---which you may recall from the absolutely hilarious How Old Do I Look? , Twins or Not? and My Moustache web sites---has now issued a new time-waster: A web site that will examine a photo and determine how happy a person is. Dubbed "Emotion Recognition," this, um, tool, uses facial expressions to determine emotion. You can see an example at the top of this article. (And kudos to Microsoft for correctly sensing that I was happy, which I was, and not grimacing. ) "Surface Pro 4 and iPad Pro compete for enterprise attention" Do they? Really? Surface Book heading to the U. K. in Spring 2016 When Microsoft announced Surface Book last month, it only said that customers in the U. S. and Canada would get first shot, with the product heading to other markets in the near future. Well, it turns out that only the latter part of that description is correct: Surface Book isn't coming to the U. K. , for example, until "Spring 2016," so late March/early April at the earliest... . --- ### Rancher Labs Announces Support for Orchestrating Persistent Storage Services for Docker > Learn more about Rancher Labs and how they are bringing open source platforms to DevOps teams to help simplify the process for building a private container service. - Published: 2015-11-12 - Modified: 2024-11-19 - URL: https://petri.com/rancher-labs-announces-support-orchestrating-persistent-storage-services-docker/ - Categories: Cloud Computing - Tags: Editor's Pick - Article Type: How To Learn more about Rancher Labs and how they are bringing open source platforms to DevOps teams to help simplify the process for building a private container service. If you've been keeping up with us on the Petri IT Knowledgebase, then you might have realized that we've been heavily focused on bringing readers information about containers. Within the last year or two, Docker has seen tremendous traction in the enterprise space, where DevOps teams are hurriedly adopting this relatively new technology to help the development and deployment of their application services. This week I had the pleasure of speaking with Sheng Liang and Shannon Williams, co-founders of Rancher Labs. This tech startup based in Cuptertino, CA. , is focused on providing an open source platform for managing container software in production environments at scale. In discussing the organization's mission, Sheng Liang said that Williams and himself saw a transition, where application workloads are being moved from virtualization environments to container-based environments. As a result, containers provides organizations with the means to reexamine their infrastructure services layer to improve maintainability and extensibility in a cost-effective way. "With containers, everything is a lot more portable. The hybrid approach becomes the default as opposed to something you have to spend a lot of effort to make happen," Liang said. And at the core of its business operations, Liang said that Rancher Labs aims to create a consistent environment for applications to run, regardless of whether that’s on a public or private cloud. Building on these tenets, Rancher Labs announced that its flagship product for building a private container service, Rancher, now includes support for orchestrating Persistent Storage Services for... --- ### Current Status Episode 33: Transform Legacy Apps to Web Apps > Join Current Status co-hosts Theresa Miller and Phoummala Schmitt as they discuss how to transform legacy apps to web apps. - Published: 2015-11-12 - Modified: 2024-11-19 - URL: https://petri.com/current-status-episode-33-transform-legacy-apps-to-web-apps/ - Categories: Current Status - Article Type: Opinion Join Current Status co-hosts Theresa Miller and Phoummala Schmitt as they discuss how to transform legacy apps to web apps. Join us Thursday, November 12, 2015 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Gabe Knuth (@gabeknuth), Citrix CTP and blogger. For years, we've been trying to use Windows applications on mobile devices, but the experience has always been less than ideal. Citrix tried more than a few times to get it right, but their best effort still required you to have access to source code. Today App Refactoring products exist that can transform Windows apps into mobile apps on the fly, breathing new life into those legacy Windows apps. Join us to learn more.   --- ### Microsoft Delivers New Business Features To Windows 10 > Microsoft has released an update for Windows 10 that brings several features to the OS including the long awaited Windows Update for Business. - Published: 2015-11-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delivers-new-business-features-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick, Microsoft, News, Windows 10 - Article Type: News Microsoft has released an update for Windows 10 that brings several features to the OS including the long awaited Windows Update for Business. Microsoft has released the first major update to Windows 10 that brings many new features, stability improvements and it is rolling out now via Windows Update. This release, sometimes referred to as Threshold wave 2 or the fall update, is the company’s first major update to the platform that is not a patch or bug fix. In this release, Microsoft is turning on two features that they announced earlier this year that are targeted at the business market. Windows Update for Business is a tool that provides IT control over the deployment of updates within their organizations, while ensuring their devices are kept current and their security needs are met, at reduced overhead cost. Features include setting up device groups with staggered deployments and scaling deployments with network optimizations. Windows Store for Business gives IT admins a flexible way to obtain, deploy, manage and use apps for both public and private lines of business. Organizations can create their own private catalog, a store within the public Business Store, where they can define the list of the public and line-of-business apps available. In addition to these features, Microsoft is also releasing Mobile Device Management and Azure Active Directory Join. Mobile Device Management allows IT admins to use the power of Enterprise Mobility Management to manage the entire family of Windows devices, including PCs, tablets, phones, and IOT. Microsoft likes to point out that Windows 10 is the only platform that can manage BYOD scenarios from the device to the apps to... --- ### Windows 10 Surpasses 12 Million Enterprise Installs > Microsoft has announced that its new OS, Windows 10, has surpassed 12 million enterprise installs which signals solid growth in the corporate market. - Published: 2015-11-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-surpasses-12-million-enterprise-installs/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News Microsoft has announced that its new OS, Windows 10, has surpassed 12 million enterprise installs which signals solid growth in the corporate market. Microsoft has announced today that more than 12 million machines are running the enterprise version of Windows 10, a sizable jump over the previous release back in early October that put this figure at 8 million. Prior to that, in late August, the company announced that there were 1. 5 million machines running this SKU. The strong interest in Windows 10 has to be a relief for Microsoft as the previous generation OS, Windows 8, was largely avoided by corporations because of its steep learning curve after it launched without a Start menu. The early adoption figures for Windows 10 into the Enterprise show promise that Microsoft will not end up with Windows 7 becoming the next Windows XP where they were forced to extend the lifecycle of the OS after corporations struggled to upgrade their internal systems. Along with today’s announcement about the install rate, Microsoft has released the first large update to Windows 10, called the November update, that brings several new features for consumers and corporate users that you can read about here. While the 12 million figure is notable, the biggest question is how many corporations are going to move beyond exploring the OS to deploying it across their entire network. While that figure won’t truly be understood for several years, seeing as the install figures of the enterprise SKU is growing at a sizable rate, this should provide encouragement to Microsoft that Windows 10 will be the next OS adopted by its corporate users at scale. --- ### Microsoft’s First Major Update To Windows 10 Has Arrived > Microsoft has released the first major update to Windows 10 that brings with it several new features for both the consumer and the IT admin. - Published: 2015-11-12 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-first-major-update-windows-10-arrived/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News Microsoft has released the first major update to Windows 10 that brings with it several new features for both the consumer and the IT admin. Microsoft has released the first large update to Windows 10 that brings with it several new features and stability improvements. The update is available now via Windows Update but know that installing this release will take a bit of time, so be patient, and make sure to save all of your work before updating. The release, which is free for all Windows 10 users, brings enhancements to Cortana, Edge and also adds a bit of polish to the user interface. For those of you who have been participating in the Insiders program, this release is the culmination of all those updates packaged into one build for the general population. With this release, Cortana gains the functionality to understand handwritten notes and can keep track of your event and movie bookings along with the ability to call an Uber. The personal digital assistant is also now available in new regions that include Japan, Australia, and Canada and India (in English) with features and experiences customized for each market. Edge has been updated with performance and security improvements and new tab previews. Edge also gains the ability to sync your Favorites and Reading list items across devices and the Cortana integration can show you coupons on websites. Microsoft is also bringing Windows 10 to more devices too. Starting today, the company is pushing out Windows 10 to all Xbox One consoles and the company says select mobile phones will also be receiving the update soon. In addition, the company is... --- ### Google Updates Containers Technology for Better Performance in High-Scale Environments > Google made performance updates and improvements to its cloud-based container offerings for Docker, Google Container Engine and Google Container Registry. - Published: 2015-11-11 - Modified: 2015-11-11 - URL: https://petri.com/google-updates-containers-technology-better-performance-high-scale-environments/ - Categories: Google Cloud Platform - Tags: Editor's Pick - Article Type: News Google made performance updates and improvements to its cloud-based container offerings for Docker, Google Container Engine and Google Container Registry. Google recently announced improvements to its Google Container Engine and Google Container Registry, which is designed to help automate Docker containers to make development and deployment of applications easier. Container technology is quickly rising in popularity among DevOps teams thanks to the technology’s ability to make testing easier. If you’re unfamiliar with the technology, then you might want to take a look at what we have on Petri to get up to speed on the benefits that containers offer. Updates to the Google Container Engine includes performance improvements so teams can run the technology in high-scale environments. Additionally, a HTTP load balancer now enables routing traffic to different Kubernetes services based on HTTP traffic, and a re-architected networking system now allows native iptables and reduces latency by up to 80 percent. There’s also been several performance enhancements made to Google Container Registry, where the company states that the update now pulls images 40 percent faster based on internal performance testing. There’s now Docker Registry V2 API support that lets admins push and pull Docker images and have content addressable references. Advanced authentication in this update now makes it easier to use a continuous delivery system with Container Registry, and new TwistLock integration now provides rule violation detection and policy enforcement for your containers in the registry or at runtime. To learn more about these updates, see Google’s blog post detailing the news. What are you thoughts on container technology? Is this something that you’re using in your... --- ### Box Is Bullish On Windows 10, Brings Its Enterprise App To The Windows Store > Box has announced that its new app for the Windows Store is now available and that it will work on all of Microsoft's devices. - Published: 2015-11-11 - Modified: 2024-09-04 - URL: https://petri.com/box-bullish-windows-10-brings-enterprise-app-windows-store/ - Categories: Windows 10 - Tags: Box, Editor's Pick, News, Windows 10 - Article Type: News Box has announced that its new app for the Windows Store is now available and that it will work on all of Microsoft's devices. Enterprise storage company Box, who makes it easy to manage and share files across your business, is warming up to Windows 10 and Microsoft’s new strategy. The company, who announced today that they are releasing a new Universal app for Box, is optimistic about the opportunity that Windows 10 affords its business which is why they are moving aggressively into this space. Microsoft and Box, once considered fierce competitors, have become friends under Nadella’s leadership as Microsoft opened up its platform to allow its customers to natively access documents stored in Box from within Office and integration points in the company’s mobile apps as well. In return, Box is releasing an app for Microsoft’s app store which has been lacking in quality apps from big name vendors such as Box. In the announcement post from Box, Aaron Levie, the CEO of the company, stated that “Windows 10 represents a huge opportunity for Box to deliver a seamless content collaboration experience to our joint customers from their desktop or mobile device”. The corporate channel is one that Microsoft is trying heavily to penetrate with Windows 10. After most companies passed on Windows 8 and are still running Windows 7, the company hopes to lure them to the new OS so that they do not find themselves in the Windows XP predicament all over again. Typically, the enterprise market moves much slower than the consumer channel but more than 8 million machines are already running the enterprise SKU of Windows 10 which means that quite... --- ### Azure SQL Database Threat Detection Enters Public Preview > Microsoft's Azure's SQL Database Threat Detection feature is now in public preview and adds to the company's new suite of security related services. - Published: 2015-11-11 - Modified: 2024-09-04 - URL: https://petri.com/azure-sql-database-threat-detection-enters-public-preview/ - Categories: Microsoft Azure - Tags: Editor's Pick, Microsoft SQL, News - Article Type: News Microsoft's Azure's SQL Database Threat Detection feature is now in public preview and adds to the company's new suite of security related services. A few weeks back, Microsoft announced a slew of new features coming to Azure and one item, SQL Database Threat Detection, has entered public preview. The tool adds a new layer of security to a database by detecting irregular activities that can include threats like SQL injection attacks. The intent of this feature is to help Azure customers maintain greater control over their databases and be more aware of activities occurring with their content. In addition to monitoring for live threats, using the SQL database auditing tool, admins can explore threat vectors and gain a better understanding of how and where an attack occurred. Microsoft is promoting this new feature across four key principles: Simple configuration of SQL threat detection policy via Azure portal. Clear email alerts upon detection of suspicious databases queries indicating potential SQL injection events. Ability to explore the audit log around the time of the event using the Azure portal or pre-configured excel template. No need to modify database procedures or application code. This new feature is another piece in Microsoft’s toolkit to help make its platform more secure. This week, the company announced that they have entered into an agreement to acquire Secure Islands, a company that focuses on securing data no matter where it is stored including mobile devices like iOS and Android. The public cloud has many benefits to it for nearly any size corporation but one issue that will always be a stopping point, for some, is security. Microsoft is working to... --- ### Microsoft Announces Major Commercial Cloud Expansion in Germany > Microsoft CEO Satya Nadella arrived in Berlin on Wednesday and announced a significant expansion of the software giant's commercial cloud efforts in Germany - Published: 2015-11-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-major-commercial-cloud-expansion-germany/ - Categories: Cloud Computing - Tags: News Microsoft CEO Satya Nadella arrived in Berlin on Wednesday and announced a significant expansion of the software giant's commercial cloud efforts in Germany. Image courtesy of Microsoft Europe. Continuing his tour of Europe this week, Microsoft CEO Satya Nadella arrived in Berlin on Wednesday and announced a significant expansion of the software giant's commercial cloud efforts in Germany. “Microsoft’s mission is to empower every person and every individual on the planet to achieve more,” a prepared statement credited to Mr. Nadella notes. “Our new datacenter regions in Germany will not only spur local innovation and growth, but offer customers choice and trust in how their data is handled and where it is stored. " The news follows similar announcements Monday from London, where Nadella revealed that Microsoft will deliver multiple UK-based datacenters by the end of 2016. (He also revealed that datacenter facility expansions in Ireland and The Netherlands are now complete. ) In Germany, Microsoft will be the first "global, hyper-scale cloud provider" (Microsoft's description) to ensure that customer data access follows German law and is controlled by Data Trustee. To meet the needs of the unique regulatory requirements there, Microsoft will partner with Deutsche Telecom, which will act as that Data Trustee. As with Microsoft's U. K. -based datacenter expansion, the firm expects its commercial cloud expansion in Germany to become available to customers during the second half of 2016. "Microsoft will be the first public cloud company to provide cloud services from multiple datacenters in Germany, thereby providing customers with solutions for data replication, disaster recovery and business continuity, while still maintaining access to... --- ### Compound Filtering with WMI and PowerShell > Learn how to create a compound filtering query with WMI and PowerShell, and learn advantages of early and late filtering. - Published: 2015-11-10 - Modified: 2024-09-04 - URL: https://petri.com/compound-filtering-with-wmi-and-powershell/ - Categories: PowerShell - Tags: Advanced, CIM-WMI, Scripting - Article Type: How To Learn how to create a compound filtering query with WMI and PowerShell, and learn advantages of early and late filtering. During the course of the last few articles, we've been looking at how to use PowerShell and WMI to query disk information for the %SYSTEMDRIVE% even when you don't know what that value might be. In this article, I want to introduce a new requirement, which will offer the opportunity to explore some new concepts. If you are just joining us, take a few minutes to get caught up or you won't understand everything in this article. Part 1: Checking System Drive Spaces with WMI and PowerShell Part 2: Getting System Drive Alternatives Part 3: Compound Filtering with WMI and PowerShell Part 4: Scaling WMI with PowerShell and Remoting Part 5: Using PowerShell’s Storage Cmdlets to Query the System Drive When I left you, I had some PowerShell code to query a list of computers using Get-WMIObject. To improve performance, we did a quick ping test to only use WMI for computers that we verified online. For today's article, I have 11 computers in my list and some of them are unavailable. The new requirement is that need to know which servers have 5 GB or less of free space on the system drive. I don't need to see any other servers. If you are new to PowerShell, you might be inclined to modify the last code example and pipe results to Where-Object. ​ Filtering for freespace (Image Credit: Jeff Hicks) You can see that it works, and it took almost 20 seconds... --- ### Microsoft Announces Major Commerical Cloud Expansion in Europe > Satya Nadella announced a series of Microsoft Cloud expansions in Europe today. Key among them are "multiple" datacenters for just the U.K. - Published: 2015-11-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-major-commerical-cloud-expansion-europe/ - Categories: Cloud Computing - Tags: News - Article Type: News Satya Nadella announced a series of Microsoft Cloud expansions in Europe today. Key among them are "multiple" datacenters for just the U.K. Satya Nadella announced a series of Microsoft Cloud expansions in Europe today. Key among them are "multiple" datacenters for just the U. K. Additionally, Microsoft revealed that its recent data center facility expansions in Ireland and The Netherlands are now complete, providing "customers with more choice and increased opportunities to innovate more quickly, enabling growth for local economies. " "At Microsoft, our mission is to empower every person and organization on the planet to achieve more," said Mr. Nadella, Microsoft's CEO, during an appearance this week at the Future Decoded event in London. "By expanding our data center regions in the UK, Netherlands and Ireland we aim to give local businesses and organizations of all sizes the transformative technology they need to seize new global growth. " Microsoft's new U. K. -based data centers are expected to come online by late 2016, the firm says. They will provide commercial cloud services---e. g. Microsoft Azure and Office 365, including Azure ExpressRoute, with Microsoft Dynamics CRM Online "shortly thereafter"---to customers in the U. K. And they will provide the data residency required by governmental organizations, regulated industries and other businesses, Microsoft says. And the demand is there, with 84 percent of Microsoft's commercial customers in the U. K. already adopting the cloud, according to a Cloud Industry Forum survey. And Microsoft cites a number of U. K. -based businesses that have already adopted its cloud solutions, including Confused. com, Glasgow City Council, Marks & Spencer, Natural Resources Wales, Pizza Hut Restaurants and Virgin Atlantic. "The U. K... . --- ### Creating a Better PowerShell Module > PowerShell MVP Jeff Hicks revisits his Uptime module and enhances with new properties and parameters. - Published: 2015-11-09 - Modified: 2024-09-04 - URL: https://petri.com/creating-a-better-powershell-module/ - Categories: PowerShell - Tags: Advanced, Get-CIMInstance, Scripting - Article Type: How To PowerShell MVP Jeff Hicks revisits his Uptime module and enhances with new properties and parameters. Earlier this year we published a series of articles that went through the process of taking a simple command to a complete PowerShell tool wrapped up in a module. Recently I had a reason to revisit that module and ended up making a number of changes, many of which I consider improvements. I thought I would take a few minutes to explain the changes and why I made them. The primary function uses Get-CimInstance to retrieve information from WMI so that I can calculate a server's uptime. The original command only accepts a string for a computer name. However, Get-CimInstance can also accept a CIMSession. This is especially useful if the remote computer is still running PowerShell 2. 0 or if you need to setup sessions with alternate credentials. This was impossible in the original command. So I added a parameter for CIMSession. ​ Note that I didn't re-invent the wheel. I used the same parameter that Get-CimInstance uses. The CimSession parameter (Image Credit: Jeff Hicks) You'll also notice that each parameter in the new version of my function belongs to a parameter set. This is necessary because my command can connect using a computername or a CIMSession but not both. How does the command know which one to use? In my case, there are a few indicators. First, I defined default parameter set in the cmdletbinding tag. ​ If your function will be using parameter sets, you will need to do the same... . --- ### Managing Windows Server Containers with PowerShell: Creating a New Container > Learn how to manage and create Windows Server Containers using PowerShell, as well as explaining the file types and locations. - Published: 2015-11-09 - Modified: 2024-09-04 - URL: https://petri.com/managing-windows-server-containers-with-powershell-creating-new-container/ - Categories: Windows Server 2016 - Tags: Containers, PowerShell, Technical Preview, Technical Preview 3, Windows Server 2016, Windows Server containers, WS2016 - Article Type: How To Learn how to manage and create Windows Server Containers using PowerShell, as well as explaining the file types and locations. If you are going to work with Windows Server Containers at scale, then you will probably use a management solution, such as Docker and Mesosphere. However, Microsoft has provided us with a great set of PowerShell cmdlets to deploy and manage Windows Server Containers. In part one of this three-part series, we'll look at how we can use these cmdlets to manage and deploy Windows Server Containers in this article. This post is part of a series: Part 1: Container file locations and creating new containers Part 2: Administration of containers and creating a new container image (coming soon) Part 3: Deploying container-based services on the network (coming soon) A Note about File Locations There are several different file locations that you want to know about. In Technical Preview 3 (TPv3) of Windows Server 2016, the container image repository is kept on the C: drive of the VM host. In a future release, we should expect that a capability that lets us deploy a highly available centralized repository. You can find the local repository at C:ProgramDataMicrosoftWindowsHyper-VContainer Image Store. Any new container is created in C:ProgramDataMicrosoftWindowsHyper-VContainers. There you will find there files and one directory named after the GUID of the container. This is also where you will find new file types for Hyper-V: . VHDX: This is a virtual hard disk that contains the unique content of the container. . VMCX: The VMCX file is the configuration of the container. This is the new binary format file, offering better performance for large scale deployments... . --- ### The Sams Report EP 17: Inside The OneDrive Story And Redstone Delights > On this episode, I cover the inside story of the changes to OneDrive, a few minor features coming to Redstone and the TH2 release. - Published: 2015-11-09 - Modified: 2024-09-24 - URL: https://petri.com/sams-report-ep-17-inside-onedrive-story-redstone-delights/ - Categories: Podcast - Tags: Editor's Pick, Podcast On this episode, I cover the inside story of the changes to OneDrive, a few minor features coming to Redstone and the TH2 release. The Sams Report is a weekly podcast that dives deep into the world of Microsoft. With the company transforming the way it operates and Nadella putting his own touch on all aspects of the organization, the Sams Report breaks down the news and offers insight from insider sources. On this episode, I uncover the back story of why Microsoft made the changes to the OneDrive and also shine a light on a few minor changes that are coming with Windows Redstone next year along with all of the other announcements this week in the world of Microsoft. If you have any questions, you can ask in the comments or find me on Twitter at @bdsams. Subscribe: RSS | SoundCloud | YouTube --- ### Amazon and Google Reap Over Half of Every Dollar Spent Online > The Internet economy is now worth over $300 billion annually, and only two firms---Amazon.com and Google---control fully 57 percent of that. - Published: 2015-11-09 - Modified: 2024-09-04 - URL: https://petri.com/amazon-google-reap-half-every-dollar-spent-online/ - Categories: Cloud Computing - Tags: News - Article Type: News The Internet economy is now worth over $300 billion annually, and only two firms---Amazon.com and Google---control fully 57 percent of that. If you've ever wondered why Microsoft has endured tens of billions of dollars in losses related to its Bing search business, wonder no more. The Internet economy is now worth over $300 billion annually, and only two firms---Amazon. com and Google---control fully 57 percent of that. That's according to a USA Today analysis of the Internet Software and Services and Internet and Catalog Retail industries within the Russell 3000 index, at least. The periodical highlights that five companies---Amazon. com, Google, eBay, Facebook, and Liberty Interactive--control 70 percent of all online spending. But it's those top two companies that I think are the most interesting. With 33 percent of all online revenues, Amazon dominates online retail sales, courtesy of its web store. The firm only rarely turns a profit, however, with CEO Jeff Bezos claiming that it's more important for the firm to grow, and expand into other businesses, which it's done at a heady pace. Google's growth to 23. 7 percent of all online revenues has followed a similar trajectory to Amazon. But thanks to its monopoly and near-monopoly dominance in markets such as online search, online advertising, and mobile devices, Google has come under antitrust scrutiny around the world. It now has cases pending in the EU, the United States, Russia, and elsewhere. In Google's most prominent EU antitrust case, the search giant is accused of artificially doctoring its search results to favor its own shopping services over those of the competition. But Google has... --- ### Microsoft Has Acquired Secure Islands To Boost Its Security Credentials > Microsoft has announced that they will be acquiring Secure Islands, a provider of advanced information protection solutions to fold into its Azure product. - Published: 2015-11-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-acquired-secure-islands-boost-security-credentials/ - Categories: Microsoft Azure - Tags: Acqusition, Editor's Pick, Microsoft, News, Secure Islands - Article Type: News Microsoft has announced that they will be acquiring Secure Islands, a provider of advanced information protection solutions to fold into its Azure product. Microsoft has announced that they will be acquiring Secure Islands, a provider of advanced information protection solutions. This purchase will help the company’s customers further secure their data no matter where it is stored including mobile devices like iOS and Android. Secure Islands, which is based in Israel, has built technology that allows its users to protect nearly any type of file and will help expand Azure’s Azure Rights Management Service offering once the acquisition closes. Secure Islands has already established a name for itself in this space and has a few large clients using this technology including UBS, Vodafone and Credit Suisse. Because companies often find that they need to share critical information with close partners outside of their own networks, maintaining control over your data is becoming increasingly challenges. The technology that Microsoft is acquiring with Secure Islands helps mitigate theses risks and is why the Redmond based company is bringing this company into its portfolio. Microsoft has been on a buying spree of late, with the acquisition of ADXStudio earlier this year, along with several others as well; the company is likely using its elevated stock price as financial vehicle to leverage a significant portion of these acquisitions. Knowing this, don’t be too surprised to see the company to continue to snatch up other companies as it finds new ways to boost the appeal of its existing products. The terms of the deal were not announced. --- ### Intel Wireless Docking and WiGig > Learn about new wireless docking technology from Intel and WiGig. - Published: 2015-11-06 - Modified: 2024-11-19 - URL: https://petri.com/intel-wireless-docking-and-wigig/ - Categories: Mobile - Tags: Mobile, WiGig, Wireless Learn about new wireless docking technology from Intel and WiGig. While mobile devices have long outsold desktop PCs, for most of us, serious work still means a separate monitor, keyboard and mouse. But connecting and disconnecting a plethora of cables and dongles every time you move your notebook from A to B can be irritating, so Intel has been working on a solution that utilizes wireless gigabit (WiGig), which provides enough throughput to dock even full HD monitors. What is WiGig? Wireless gigabit (802. 11ad) supports speeds up to 7 GB/s and operates at 60GHz, compared to Intel Wireless Display (WiDi), which is limited to 600 MB/s. WiGig is designed to operate with low power and high speeds at very short distances, 10 meters maximum, so is ideally suited to connecting devices that require large amounts of bandwidth at short range. Because of its limited reach, in practice around 1. 2 meters, and inability to penetrate walls, WiGig isn’t going to replace your home WIFI network at the moment. Intel WiGig technology (Image Credit: Intel) Besides the fast speeds, WiGig also benefits from being able to cope with dense office environments, where the sheer quantity of wireless devices might impact performance, and has built-in video codecs. WiGig security uses existing standards based on IEEE802. 11 for encryption and authentication. Although not present in the current generation of devices, support for Intel Wireless Display and Rezence wireless power charging is planned for the future. WiGig wireless docks So what do you need for... --- ### Paul Thurrott's Short Takes: November 6 > This week's other news includes some user angst over OneDrive cuts, PC makers allegedly dissing Windows 10, Google wants to help design Android CPUs, more. - Published: 2015-11-06 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-november-6/ - Categories: Windows 10 - Article Type: Opinion This week's other news includes some user angst over OneDrive cuts, PC makers allegedly dissing Windows 10, Google wants to help design Android CPUs, more. I love the smell of TIE fighters in the morning. Because Call of Duty: Black Ops III arrived at midnight and I'm a bit, um, sick this morning, this week's other news includes some user angst over OneDrive cuts, PC makers allegedly dissing Windows 10, Google wants to help design Android CPUs, VR is everywhere, Blackberry goes Android, and Android is not safe. Customers demand their free OneDrive storage back To say that Microsoft badly bungled communicating why it needed to halt a plan to provide Office 365 (consumer) subscribers with unlimited OneDrive storage is, perhaps, the understatement of the year. But it doesn't really matter how well it was communicated: Many people were always going to be really upset with this decision. So the whining has begun. There are online petitions, complaints flooding the OneDrive blog, and UserVoice upvotes happening as well speak. I do expect some kind of common sense middle ground to happen. But let's be clear: They did they because they had to. Cloud storage is a sinkhole and it is not Microsoft's goal to be a commodity provider of something that people will never ever use but still needs to be redundantly backed up. It's just not in the cards, sorry. "Has Microsoft Corporation Repeated The Same Mistake With The New Lumia Series? " By not actually releasing them? Yes, possibly. PC makers are reportedly recommending that customers "avoid" Windows 10 Put another way, PC makers are not recommending... --- ### How to Turn Off Telemetry in Windows 7, 8 > Learn how to disable Microsoft's Diagnostics and Telemetry Service to stop data from being sent to Microsoft. - Published: 2015-11-06 - Modified: 2024-09-04 - URL: https://petri.com/turn-off-telemetry-windows-7-8-windows-10/ - Categories: Windows Client OS - Article Type: How To Learn how to disable Microsoft's Diagnostics and Telemetry Service to stop data from being sent to Microsoft. In April 2015, Microsoft released a non-security update for Windows 7 and 8. It added a new Windows service called the Diagnostics Tracking service, which changes the way in which the OS gathers, collects, and sends your diagnostics information from your computer to Microsoft's servers. In Microsoft's words: "The Diagnostic and Telemetry service collects diagnostics information about functional issues on Windows systems that participate in the Windows Customer Experience Improvement Program (CEIP). CEIP reports don't contain contact information, such as your name, address, or telephone number. " CEIP is a program that was initiated by Microsoft, designed to pull diagnostic information from users' PCs with the purpose of helping Microsoft understand what applications and parts of the OS that aren't working to aid Microsoft in designing improvements and fixes. Since then, two new updates upgraded this service, KB 3068708 and KB 3080149. The first update was presented as a critical one, where it was automatically installed by anyone using the default Windows Update settings.   On top of these updates, KB 3075249 changed the way in which the User Account Control (UAC) works, enabling it to collect more information from the elevated prompts presented to the user. All the listed updates make changes to the operating system that results in it transmitting data through hard-coded servers, vortex-win. data. microsoft. com and settings-win. data. microsoft. com. Although the title of this article focuses on desktop operating systems, these updates are also installed on Windows Server 2008/R2 and Windows Server 2012/R2. Also note that traffic to these servers is encrypted by SSL (HTTPS... --- ### Microsoft Has Released A Quantum Simulator > Microsoft is working towards quantum computing and to help others pursue this goal, they have released a quantum simulator on GitHub. - Published: 2015-11-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-released-quantum-simulator/ - Categories: Main - Tags: Editor's Pick, Microsoft, News - Article Type: News Microsoft is working towards quantum computing and to help others pursue this goal, they have released a quantum simulator on GitHub. The field of quantum computing is a heavily researched area of mathematics as the capabilities of unlocking the secrets of this world of physics offers up significant leap in terms of performance and capabilities. With millions of dollars being poured into this field from corporations hoping to get an early edge in the emerging market, new discovers are being announced on a semi-regular basis. Microsoft, to no surprise, is also working heavily in this field and after three years of work, a team inside the company’s research division has posted its quantum simulator to GitHub. The project, which the company calls the Language-Integrated Quantum Operations (LIQ? ? |⟩) simulator, can be viewed here, but make sure to read the licensing terms on this project as well as they appear to be a bit more restrictive than your typical project. The files that were released are designed to help explore the field of quantum computation and includes three simulators. A full state vector simulator that tracks the detailed evolution of the quantum state A stabilizer simulator based on CHP (Aaronson and Gottesman) A highly-optimized full state vector simulator for fermionic Hamiltonians While these files will not be used by the average user, it is neat to get a look inside Microsoft’s pursuit of quantum computing. The simulators are the culmination of many years of work at the company and for the team to post them publicly, shows that they want to contribute to the greater-good of the quantum research efforts going on around... --- ### Microsoft’s Preparing For Its Second Windows 10 Push > Microsoft is preparing for its second major push of Windows 10 as the company will be releasing the OS for its mobile phones as well as the Xbox One. - Published: 2015-11-05 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-preparing-second-windows-10-push/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News Microsoft is preparing for its second major push of Windows 10 as the company will be releasing the OS for its mobile phones as well as the Xbox One. Microsoft is gearing up to make its second big push of Windows 10 this year with the release of Threshold wave 2. What this means is that the company is going to be expanding where the OS is available while also delivering new features at the same time. Starting next week, the company will begin pushing Windows 10 to its Xbox One consoles, which they already announced, and they will also be pushing Threshold wave 2 to Windows 10 machines running the RTM release as well as gearing up to release the OS for mobile phones this month too. According to my inside sources, the company has signed off on Threshold Wave 2 and is now preparing to deliver that update to users; the update may arrive as early as next week. In this release, the company has improved memory management, updated the Skype experience, made some visual tweaks including new icons/colored title bars and several other minor enhancements. In addition to the desktop OS, Microsoft is finally ready to bring the OS to its mobile phones as well. Windows 10 Mobile will make its first debut with the company’s Lumia 950 series of phones and will be pushed to existing devices too. Timing for the release of the OS to current devices will vary based on manufacture and carrier as well as location but the company previously said it would start this deployment in December. The mobile version of Windows 10 is a significant update from Windows Phone 8 and... --- ### Tell Me More: Expanding Objects and Properties in PowerShell > PowerShell MVP and IT veteran Jeff Hicks discusses a common problem for beginners and explains how to expand objects and properties in PowerShell. - Published: 2015-11-05 - Modified: 2024-09-04 - URL: https://petri.com/expanding-objects-properties-powershell/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP and IT veteran Jeff Hicks discusses a common problem for beginners and explains how to expand objects and properties in PowerShell. One of the problems many PowerShell beginners have is getting their heads around the idea of objects in the pipeline. They see the output of a command and try to finagle something from the text they see on the screen. This becomes tricky with object properties that contain a nested object or a collection of objects. You might start with a command like this: ​$s = get-service bits You'll then look at $s. A service object with nested objects (Image Credit: Jeff Hicks) If you look at the RequiredService property, then you should notice that the value is wrapped in curly brackets. This lets you know that the value is a collection of objects. You might try to look at those properties. Selecting a property of nested objects (Image Credit: Jeff Hicks) You still have an object, but it has a single property, and the value is still a collection. If you want to get at those objects, your might think you need to use ForEach-Object. Attempting to expand nested objects (Image Credit: Jeff Hicks) That didn't work. However, this will: Using ForEach to expand nested objects (Image Credit: Jeff Hicks) Fortunately, all you need to do is tell PowerShell to expand that property. ​$s | select -expandproperty RequiredServices The easy way to expand a property (Image Credit: Jeff Hicks) The only caveat is that you can only expand a single... --- ### IBM Acquires Gravitant To Expand Hybrid Cloud Offering > IBM today announced that it has acquired Austin, Texas based Gravitant to expand it's hybrid cloud offering. - Published: 2015-11-05 - Modified: 2024-09-04 - URL: https://petri.com/ibm-acquires-gravitant-expand-hybrid-cloud-offering/ - Categories: Cloud Computing - Tags: Cloud, Gravitant, IBM, News - Article Type: News IBM today announced that it has acquired Austin, Texas based Gravitant to expand it's hybrid cloud offering. IBM announced that it has acquired Austin, Texas based Gravitant, a company that develops software to enable businesses to manage and purchase cloud services from multiple suppliers, and to create mixed environments of private and public clouds. Gravitant’s software, called cloudMatrix, allows users to quickly compare capabilities and pricing from multiple vendors, and then provision those services, through a single console. Gravitant competes with companies like RightScale and Enstratius. Like most incumbent technology vendors, IBM has been trying to boost its cloud services through several different acquisitions, where the company has purchased SoftLayer, Cloudant and Cleversafe in the last two years. It also purchased The Weather Company, last week for $2 billion. But the purchase of Gravitant drives home the point that the incumbent vendors still believe that a hybrid cloud approach is the right choice for most enterprise customers. "The reality of enterprise IT is that it is many clouds with many characteristics," said Martin Jetter, IBM's SVP of Global Technology Services. cloudMatrix can also be used by solution providers, and IBM plans to utilize the software in their own SaaS offerings. Gravitant was founded in 2004 as an IT consulting company, but pivoted in 2009 to become a product company. cloudMatrix was their first product, released in late 2011. Terms of the deal were not disclosed. --- ### Microsoft’s Putting Its Acquisitions To Use With Dynamics 2016 > With the release of Dynamics 2016 in December, Microsoft will be putting its acquisitions to work as the company integrates its acquired technology. - Published: 2015-11-05 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-putting-acquisitions-use-dynamics-2016/ - Categories: Dynamics - Tags: Editor's Pick, Microsoft Dynamics, News - Article Type: News With the release of Dynamics 2016 in December, Microsoft will be putting its acquisitions to work as the company integrates its acquired technology. In December of this year, Microsoft will be releasing Dynamics 2016 and with it will come several significant updates that will help organizations drive smarter decision making and also be more efficient with their objectives. Microsoft breaks down these improvements into three core areas, engagement center experiences, insights and information, and new ways to engage with the customer. Microsoft details each of these functional area improvements in a new blog post but what’s most interesting is what the company shared on a briefing call ahead of today’s announcement. During the past year, the company has acquired several companies and technologies that are being integrated into Dynamics 2016 which means we are starting to see the fruits of these purchases. The products and services that are being integrated into of Dynamics CRM are features from ADXStudio, which the company acquired earlier this year and will be part of this upcoming release, and Mojo Surveys, which they bought from Fusion Software and will be available in the spring. The Mojo Surveys software will help Dynamics customers gather actionable feedback in a timely manner and will help to improve the customer experience through the entire business process. The ADXStudio software will help to improve online engagement solutions and application lifecycle management with the new version of the Dynamics platform. Machine learning is a big part of this release as well and the company will be putting the power of Azure behind the algorithms to help Dynamics customers get the most out... --- ### Windows Store For Business Launch Is Coming Into View > Microsoft is gearing up to release it's next big feature for the corporate users, Windows Store for Business and a new site gives us new details. - Published: 2015-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-gearing-up-to-release-its-next-business-feature-windows-store-for-business/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows Store For Business - Article Type: News Microsoft is gearing up to release it's next big feature for the corporate users, Windows Store for Business and a new site gives us new details. Microsoft is gearing up to launch its next big feature for the enterprise, Windows Store for Business. The website that is promoting the feature, which you can view here, went live earlier today, and offers up some basic information about the service for Windows 10 users. The service, at its core, allows corporations to create a store and to easily manage the applications available to their users. There is fine grain control will let IT administrators limit applications to specific groups or have the ability to search the store as well. As of the time of this post, the webpage is still coming together as the links to learn more about the service lead to blank pages. Initially, the service will be available in the following countries: Australia, Belgium (Dutch, French), Brazil, Canada (English, French), Finland, France, Germany, India, Indonesia, Ireland, Italy, Japan, Mexico, Netherlands, Poland, Russia, Spain, Sweden, Switzerland (French, German), United Kingdom and United States. The feature, once it goes live, will let administers acquire licenses in bulk and also let them assign, reclaim and reassign the license as well. This will make managing applications on networks where users are running Windows 10 significantly easier and is one of the many carrots Microsoft is dangling for IT administrators to get them to upgrade to the new OS. Microsoft has not said officially said when the service will be available but it is supposed to be shipping with Threshold Wave 2, which may arrive as soon... --- ### PowerShell Problem Solver: Processor Loads > Learn the best way to get the average processor utilization for a remote server with some quick PowerShell help. - Published: 2015-11-04 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-processor-loads/ - Categories: PowerShell - Tags: Advanced, PowerShell Problem Solver, Scripting - Article Type: How To Learn the best way to get the average processor utilization for a remote server with some quick PowerShell help. Today's PowerShell Problem Solver comes from a post I read in a forum. The original question involved the best way to get the average processor utilization for a remote server, as well as the top five processes using the most CPU. There's a lot to work with here, and it might take more than one article, but let's break this down and use the scenario as a learning exercise. Along the way you might even end up with a useful PowerShell tool that you can use. PowerShell Problem Solver: Getting Process Details PowerShell Problem Solver: Processor Loads PowerShell Problem Solver: Process CPU Utilization PowerShell Problem Solver: Process Performance For All Using WMI The easiest way to get processor load information with WMI and the Win32_Processor class. ​ Getting processor information (Image Credit: Jeff Hicks) I'm using Get-WmiObject, but you could just as easily use Get-CimInstance. The WMI class has a property called LoadPercentage. According to the MSDN documentation for this class, this property is the "load capacity of each processor, averaged to the last second. Processor loading refers to the total computing burden for each processor at one time. " Because my computer only has one physical processo, there isn't an average. But you might have computers with multiple processors in which case you will get an WMI instance back for each one, each with its own LoadPercentage property. But no matter, we can easily calculate an average with Measure-Object. ​ [caption align="aligncenter"... --- ### Understanding IP Addressing in Microsoft Azure > Learn about the different kind of external and internal IP addresses available to Azure virtual machines. - Published: 2015-11-04 - Modified: 2024-09-04 - URL: https://petri.com/understanding-ip-addressing-microsoft-azure/ - Categories: Microsoft Azure - Tags: Azure, DHCP, IP addressing - Article Type: Overview Learn about the different kind of external and internal IP addresses available to Azure virtual machines. Confused by DIPs, VIPs and PIPs? In today's Ask the Admin, I'll give you a run down on the different kinds of IP addresses available in Microsoft Azure. There are three different kinds of IP address that can be assigned to virtual machines (VMs) in Microsoft Azure: Dynamic IP address (DIP) Virtual IP address (VIP) Instance-level public IP address (PIP) Internal IP addressing Dynamic IP addresses are the internal addresses assigned to VMs, and either come from a private pool assigned by Azure, or if you configure an Azure virtual network (VNET), you can define your own private IP addresses ranges and subnets. When a VM is provisioned for the first time, it is associated with a DIP, which stays with the VM until it is deleted or deallocated from the Azure fabric. While DIPs survive OS reboots and service healing migration events, if you want to stop a VM so you're not charged for Azure compute resources, it might be assigned a different DIP when re-provisioned. DIPs are assigned automatically by DHCP in order, so for example if you define a subnet 192. 168. 0. 0/24, the first available DIP to be assigned to a VM will be 192. 168. 0. 4, as the first three addresses are always reserved for system use. Assigning DIPs to virtual machines IP addresses in Azure are always assigned using DHCP, and setting static IP addresses in the network settings of a server's network interface card (NIC) isn't supported. Nevertheless, there are some applications, such as... --- ### VCDX Defense Process Drops Troubleshooting Questions > Those who are looking to obtain the highest VMware certification, look out, the company announced today that they’ve made an adjustment to the process. - Published: 2015-11-04 - Modified: 2024-09-04 - URL: https://petri.com/vcdx-defense-process-drops-troubleshooting-questions/ - Categories: Virtualization, VMware - Tags: News, VCDX, vmware - Article Type: News Those who are looking to obtain the highest certification level in VMware’s portfolio, watch out, the company announced in a blog post by Chris Colotti that they’ve made an adjustment to the process. Gone is the final part of the defense, where in the last 15 minutes candidates would be given hypothetical troubleshooting scenarios. Instead, the time has been assigned to the ad-hoc design session. Additionally, the VCDX-Cloud and VCDX-DT design scenario times have both been adjusted to to match VCDX-DCV and VCDX-NV timelines, for consistency in scheduling. Colotti, who is currently a Principal Architect and VCDX Evangelist at VMware, explained that these changes have long been in discussion with the VCDX Advisory Council members and with many of the current VCDX panelists. Previously candidates would defend one of their own designs that had been pre-submitted, vetted, and then invited to defend in front of a panel of veteran VCDX holders. Then the ad-hoc design session, followed by troubleshooting. This is after the candidate obtains multiple prior VMware certifications of VCP and VCAP/VCIX. The defense can only be done at pre-scheduled events such and usually involves a trip to Palo Alto, or another VMware corporate location. The process is somewhat unique in the industry. Reaction from current VCDX holders in the community has been mixed on social media, but trending mostly positive. https://twitter. com/TheJasonNash/status/661579975213101057 Last week VMware announced a new crop of VCDX holders, bringing the total up to 213. The next defense is November 9, for VCDX-NV candidates, and February 15, for VCDX-DCV. Applications... --- ### Microsoft Deepens Its Ties To Linux, Partners With Red Hat > Microsoft has announced a new partnership with Red Hat that will allow the Linux software to run natively on the company's cloud platform. - Published: 2015-11-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-deepens-ties-linux-partners-red-hat/ - Categories: Microsoft Azure - Tags: Azure, Editor's Pick, News, Red Hat - Article Type: News Microsoft has announced a new partnership with Red Hat that will allow the Linux software to run natively on the company's cloud platform. About a decade ago, if you would have said that Microsoft would become open-source friendly, you likely would have been met with laughter and many saying that the company would never do such a thing. But, with a change in leadership, Microsoft is building bridges to many different companies that it once considered a fierce competitor. To further expand the bridges the company has built, Microsoft has announced a new partnership with Red Hat, a leader in the Linux community, to expand the services available to Azure customers. Microsoft said, in its announcement post, that this partnership is about extending their commitment to “offer unmatched choice and flexibility in an enterprise-grade cloud experience across the hybrid cloud”. Today’s announcement means that Red Hat solutions will be available natively to Microsoft Azure customers including Red Hat Enterprise Linux applications and workloads. Also available are Red Hat Enterprise Linux and the JBoss middleware platform. The two companies will also be co-locating support personnel so that they can deliver a complete enterprise support experience for Red Hat offerings on Azure. The goal is to make it so that enterprises can move their production Red Hat operations to the public cloud with dedicated support from both Red Hat and Microsoft. This partnership is much more than skin deep as Microsoft also said that they are providing . NET technologies across Red Hat services including OpenShift and Red Hat Linux Enterprise. Also, there will be integration points between Red Hat CloudForms and Microsoft Azure... --- ### Hewlett Packard Enterprise Goes Public, Splitting HP In Two > On Monday, Hewlett Packard Enterprise Chief Executive Officer Meg Whitman, rang the opening bell at the NYSE to complete the separation of HP and HPE. - Published: 2015-11-03 - Modified: 2024-09-04 - URL: https://petri.com/hewlett-packard-enterprise-goes-public-splitting-hp-two/ - Categories: Main - Tags: Editor's Pick, HP Enterprise, News - Article Type: News On Monday, Hewlett Packard Enterprise Chief Executive Officer Meg Whitman, rang the opening bell at the NYSE to complete the separation of HP and HPE. On Monday, Hewlett Packard Enterprise (HPE) Chief Executive Officer Meg Whitman, as well as partners and customers, rang the opening bell at the New York Stock Exchange, and with it the long planned separation of the HP's consumer and enterprise businesses became official. Going forward, HPE will focus on infrastructure, servers, networking, services, software, and financial services. HPE projects annual revenue for the new company to be $53 billion; HP Inc will sell personal computers and printers, and be run by Dion Weisler. Wesiler was previously the Executive Vice President of Printing & Personal Systems under the combined company, and Whitman was CEO. Originally announced in October 2014, the split is expected to cost nearly 2 billion dollars. HP has also shed nearly 50,000 jobs through the process. Since Whitman took over as CEO in 2011, HP has cut nearly 85,000 jobs from its workforce. Since the announcement, HP stock lost nearly a third of its value, but on the first day of trading HP Inc (HPQ) jumped 13 percent, while HPE dropped 1. 6 percent. In an interview with Re/code, Whitman said HPE would have around $5. 5 billion in cash on hand, which she said is planned to use for strategic purchases and cited the recent $3 billion purchase of Aruba Networks as an example of the kind of acquisitions she wanted to make. --- ### Getting System Drive Alternatives > Compare different PowerShell techniques for getting system drive information using WMI. - Published: 2015-11-03 - Modified: 2024-09-04 - URL: https://petri.com/getting-system-drive-alternatives/ - Categories: PowerShell - Tags: CIM-WMI, Intermediate - Article Type: How To Compare different PowerShell techniques for getting system drive information using WMI. I recently demonstrated how to use Get-WMIObject in PowerShell to retrieve disk information for the system drive on remote computers, even if you don't know what the system drive is ahead of time. Today I want to continue that exploration and show you some alternatives by expanding on this scenario. I have a list of computer names stored in a variable. It doesn't matter how you populate the variable. My variable, $computers, contains computers that are running and a few that are offline or simply non-existant. Part 1: Checking System Drive Spaces with WMI and PowerShell Part 2: Getting System Drive Alternatives Part 3: Compound Filtering with WMI and PowerShell Part 4: Scaling WMI with PowerShell and Remoting Part 5: Using PowerShell's Storage Cmdlets to Query the System Drive   At the end of the previous article, I piped the list of computer names to the ForEach-Object cmdlet. That example took me about 9. 5 seconds to run, which includes the WMI timeouts and error handling. I used ForEach-Object so that I could pipe results to Sort-Object and Format-Table. However I could also use the ForEach enumerator. ​ However, you cannot pipe this command to anything if you try something like this it will fail: ​ In order to use the ForEach enumerator, which unfortunately has the same name as the alias for ForEach-Object, you have to save the results to a variable and then do something with it. ​ Or, you can be clever and wrap the ForEach statement in a... --- ### Windows Server 2016 Feature: ReFS Accelerated VHDX Operations > Windows Server 2016 improves the speed of VHD and VHDX operations. Aidan Finn show the results using basic 1 GbE iSCSI storage. - Published: 2015-11-03 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-feature-refs-accelerated-vhdx-operations/ - Categories: Hyper-V - Tags: Hyper-V, NTFS, ODX, ReFS, storage, vhd, VHDX, Virtual Hard Disks, Windows Server 2016 - Article Type: Overview Windows Server 2016 improves the speed of VHD and VHDX operations. Aidan Finn show the results using basic 1 GbE iSCSI storage. One of the more interesting features in Windows Server 2016 (WS2016) is Accelerated VHDX Operations, a feature that speeds up and reduces the impact of in-volume operations on VHDX and VHD files. This article will explain the benefits of this feature and show you how this feature will benefit you. The Problem I used to work in the hosting business, using Windows Server 2008 and Windows Server 2008 R2 Hyper-V to run customer virtual machines. Part of our service offering was that we offered great performance. If you're familiar with Hyper-V, then you know that we can use dynamic and fixed-sized virtual hard disks of either VHD or VHDX format. Dynamic disks: A disk that starts small and grows to your maximum defined size. This type is quick to deploy and consumes slightly more space than the amount of the data contained within. Performance usually degrades over time due to fragmentation. Fixed disks: A file the size of the disk's maximum size is created. The contents are zeroed out as the disk is created, causing the creation process to be quite slow unless enhanced by storage systems. This type offers the best performance. With every version of Hyper-V, Microsoft claims that dynamic disks can match the performance of fixed disks. And every time, some poor sucker falls for it and has to convert the database server's data disks from dynamic to fixed when storage latency is unacceptable after a short amount of time. This is why, despite... --- ### Microsoft Is Making Changes To Office 365, Removing Unlimited OneDrive Storage > Microsoft has announced that they are changing up their Office 365 plans and will be removing the unlimited storage option with OneDrive. - Published: 2015-11-03 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-makes-changes-to-office-365-removes-unlimited-onedrive-storage/ - Categories: Microsoft 365 - Tags: Editor's Pick, News, Office 365, OneDrive - Article Type: News Microsoft has announced that they are changing up their Office 365 plans and will be removing the unlimited storage option with OneDrive. Late last night, Microsoft announced that they would be changing up their offer for OneDrive for both Office 365 customers and free users. Prior to the announcement, if you subscribed to Office 365, you received unlimited OneDrive storage and free users received 15 GB of cloud space but that’s all going away. For Office Home, Personal, and University users, you will no longer be offered unlimited storage. Instead, those subscriptions will include 1 TB of OneDrive storage. The company is also doing away with the 100 GB and 200 GB plans and instead will be offering a 50 GB plan for $1. 99 a month. For users of the free service, the announcement is especially bad as your storage will be cut from 15 GB to 5GB, this is for new and current users. If you have any promotional storage that you received by turning on photo backup with iOS/Android, for example, that will not be going away. If you have gone over the 1TB storage limit, Microsoft is letting you keep the additional storage for 12 months while you figure out how to deal with this issue. After the 12 months, your content will go into read-only mode for 6 months but what happens after that time period is unknown. If you are a free user of OneDrive, you will have 90 days to make changes to your plan and after that time period, your content will become read-only for 9 months. After 1 year, your content... --- ### Microsoft Sets October 31st 2016 Deadline For New Windows 7 Machines > Microsoft has set a deadline for OEMs to sell Windows 7 machines which means if you are in the market for new hardware, you will want to act soon. - Published: 2015-11-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-sets-october-31st-2016-deadline-new-windows-7-machines/ - Categories: Windows 7 - Tags: Editor's Pick, News, Windows 7 - Article Type: News Microsoft has set a deadline for OEMs to sell Windows 7 machines which means if you are in the market for new hardware, you will want to act soon. If you are looking to buy a Windows 7 machine, you only have 364 days to do so as Microsoft has updated its lifecycle page for Windows 7 to close the chapter of this OS for OEMs on October 31st.   After this date, you may still be able to find machines but OEMs will not be able to license new devices which means only existing inventory will be sold. For corporations who are still using this OS, this date will be important if they are planning on rolling out new hardware but want to use the older OS. For consumers, this means that this holiday shopping season is likely the last time that they can buy a Windows 7 machine. In a bit of irony, Windows 8 will reach end of life for PC OEMs ahead of Windows 7; the last day that vendors can load the OS on to a machine is June 30th. Windows 10 is proving to be popular with consumers and the corporate markets. While Windows 8 did not sell well to either group, Windows 10 is quickly growing in market share and for most users, they will skip Windows 8 and jump straight to Windows 10. Microsoft is dangling a carrot for corporations, where it makes most of its Windows revenue, with features under the Windows Update for Business umbrella that they hope will entice corporations to upgrade. By offering greater control of the update process and patch deployment, Windows 10 should help... --- ### Auto-Triggering VPNs in Windows 10 > Learn how to configure apps to auto-trigger VPN connections in Windows 10. - Published: 2015-11-02 - Modified: 2024-09-04 - URL: https://petri.com/auto-triggering-vpns-windows-10/ - Categories: Windows 10 - Tags: Mobile, VPN, Windows 10 - Article Type: How To Learn how to configure apps to auto-trigger VPN connections in Windows 10. Dialing a VPN before remotely connecting to an intranet application is often a necessary evil and to that end, Microsoft has made it easier in Windows 8. 1 and later versions of the OS to get users working without having to remember to dial up before launching business apps. In today's Ask the Admin, I'll show you how to set up VPN auto-triggering in Windows 10. End users like applications to 'just work' and don't want to be bothered with having to remember to perform one or more steps before starting programs. While it's not that difficult to explain how to establish a VPN connection, users don't always remember what to do, especially if it's not something they need to do frequently, and moving from one OS to another, such as from Windows 7 to 10, requires some retraining because of changes to the GUI. Starting in Windows 8. 1, Microsoft added the ability to auto-trigger a VPN when a Windows Universal or desktop apps are launched. Not only that but it's also possible to have the VPN automatically disconnect after a given period of time once the application has been closed. Add an auto-trigger application to a VPN profile In this demo I'm going to use Windows 10, although the following procedure also works in Windows 8. 1, with a few minor differences in where GUI elements are located. For more detailed instructions on how to set up auto-triggering in Windows 8. 1, see Auto-Triggered VPN in Windows 8. 1: Overview... --- ### Create a Containers VM Host with NAT > This post will show you how to create a new Windows Server 2016 (WS2016) VM host for Windows Server Containers with NAT networking. - Published: 2015-11-02 - Modified: 2024-09-04 - URL: https://petri.com/create-containers-vm-host-nat/ - Categories: Windows Server 2016 - Tags: Containers, Docker, NAT, networking, Virtualization, Windows Server 2016, Windows Server containers, WS2016 - Article Type: How To Learn how to create a new Windows Server 2016 (WS2016) VM host for Windows Server Containers with NAT networking. There are several ways to deploy Windows Server Containers with Windows Server 2016 Technical Preview 3 (TPv3). You can enable the role on a physical server or use an existing virtual machine on any hypervisor that supports Windows Server 2016 TPv3 as a guest OS. In this post, I'm going to show you how to perform scripted deployment of a Hyper-V virtual machine that's running Windows Server Core. I'll also show you how to enable Windows Server Containers. Don't worry, the scripts have been provided by Microsoft. This post will focus on enabling containers that get connectivity via network address translation (NAT) in the VM host. Related: Windows Server Containers Networking The Hyper-V Host The first thing that you need is a Hyper-V host or cluster. Deploy Windows Server 2016 TPv3 onto the required hardware. Next, enable Hyper-V, provision some storage for virtual machines, and create a virtual switch that allows virtual machines to communicate on the network. Note that the setup has changed very little since Windows Server 2012 R2. Deploy a VM Host The solution that we are going to use is based on a set of scripts and images that Microsoft has shared. We will download a PowerShell script called New-ContainerHost. ps1. This script will: Download several gigabytes of files from Microsoft and expand them, if this has not already been done. One of these files is a VHD format. This is the VM host virtual machine template. The script creates a new Hyper-V virtual machine using differencing... --- ### Microsoft Brings Cloud Foundry Out Of Preview, Opens Access to Pivotal Cloud Foundry > Microsoft has announced that Cloud Foundry on Azure is now generally available to all users of Azure and there is new support for Pivotal Cloud Foundry too. - Published: 2015-11-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-cloud-foundry-preview-opens-access-pivotal-cloud-foundry/ - Categories: Microsoft Azure - Tags: Azure, Editor's Pick, News - Article Type: News Microsoft has announced that Cloud Foundry on Azure is now generally available to all users of Azure and there is new support for Pivotal Cloud Foundry too. Microsoft is pushing aggressively ahead with its Azure platform and considering that its strong growth last quarter is a primary driver of its stock price jump, this shouldn’t come as a surprise. Today, the company has announced that Cloud Foundry on Azure, following-up on the initial support announced for the service back in May, is now generally available to all users of Azure. For those not familiar with Cloud Foundry, the software makes it easier to build, test, deploy, and scale cloud applications for many different languages. With the announcement today, developers now have a consistent Cloud Foundry experience across Azure and a simplified provisioning workflow by leveraging Azure Resource Manager templates. Microsoft says that they merged the Azure Cloud Provider Interface (CPI) into upstream, the open source Cloud Foundry repository, which means that Cloud Foundry on Azure is powered by both the Azure team as well as the Cloud Foundry community. In short, this means that Microsoft is, and will continue to, contribute and collaborate with the open source community. In addition to the Cloud Foundry announcement, the company has also opened up Pivotal Cloud Foundry on Azure in a preview state. This set of tools unifies the software delivery process with an integrated application framework, platform runtime, and infrastructure automation for delivering software rapidly reliably at scale. Both of these initiatives will help to boost the appeal of Azure to developers as it shows Microsoft is committed to software that is not their own and that company... --- ### A Free Tool for Better Management of Cloud Data on Multiple Devices > Learn more about Lenovo ReachIt, which is a useful and free solution for managing cloud services on multiple devices. - Published: 2015-10-30 - Modified: 2024-11-19 - URL: https://petri.com/free-tool-better-management-cloud-data-multiple-devices/ - Categories: Cloud Computing - Tags: Editor's Pick, free tool, Lenovo Learn more about Lenovo ReachIt, which is a useful and free solution for managing cloud services on multiple devices. It is amazing how much cloud-based products have changed the way we work. If you're like me, then you probably have data in a variety of cloud services. Trying to keep track of everything, especially across multiple computers can be a difficult task. And what do you do if a file you want on one computer isn't available because you haven't added the necessary cloud service? Oh, and let's not forget that you might have Windows, Android, and iOS devices in the mix. One possible answer from Lenovo is a free tool called ReachIt. Disclaimer: Let me state up front that I am a part of Lenovo advocates group called Lenovo Insiders, but I am by no means a fanboy. I use Lenovo products but have not hesitated to publically call out shortcomings. This review will be no different. To begin I headed to the ReachIt website to download the program for Windows. There is a similar version for Android and a promise of a future iOS release. Installation isn't complicated, and there are practically no optional features to worry about. When finished, you will be presented with the app's splash screen. Reachit splash screen. (Image Credit: Jeff Hicks) To use the application, you will need to create a Lenovo ID. Creating a Lenovo ID. (Image Credit: Jeff Hicks) I really wish products like this would let us use existing accounts. Even connecting via Twitter or Facebook would be preferable to... --- ### Paul Thurrott's Short Takes: October 30 > This week's other news includes some new Windows 10 controversies, some Surface Book issues, an Android and Chrome OS merger, and more Xbox lemonade. - Published: 2015-10-30 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-30/ - Categories: Windows 10 - Tags: News - Article Type: Opinion This week's other news includes some new Windows 10 controversies, some Surface Book issues, an Android and Chrome OS merger, and more Xbox lemonade. Because I have trouble sleeping in Las Vegas, this week's other news includes some new Windows 10 controversies, some Surface Book issues, an Android and Chrome OS merger, legal ironies, and more Xbox lemonade. This week's Windows 10 controversy of the week Let's play a game. You're in charge of Microsoft. And you've been accused of silently downloading multiple gigabytes of Windows 10 installer files to customers' PCs, even though they have explicitly declined your overly-aggressive in-OS advertising. In some cases, you've even been accused of actually installing Windows 10 on PCs when the user has explicitly said no. What do you do next? Wrong. You begin the process of putting the Windows 10 upgrade into Windows Update, and then in early 2016 you make it a "recommended" update, ensuring that millions and millions of customers install the upgrade whether they want it or not. And that, folks, is why you don't run Microsoft. You just don't get it. "Microsoft to get pushy about upgrading to Windows 10" "Get"? This week's other Windows 10 controversy of the week Still feeling playful? Good. Here's another one. You haven't just downloaded all those gigabytes of Windows 10 installer data to users's PCs: In some cases, you've even done so on PCs with metered connections, meaning connections that are generally expensive, bandwidth-capped, and possibly cellular. The reason? Windows 7 doesn't have any notion of metered connections, so it just gleefully transmits whatever data needs to... --- ### What is JSON and How Is It Used? > Russell Smith explains how JSON differs from XML, and how it's used in Azure's management portal. - Published: 2015-10-30 - Modified: 2015-10-30 - URL: https://petri.com/what-is-json-and-how-is-it-used/ - Categories: Microsoft Azure - Tags: AJAX, Azure, Cloud, JSON - Article Type: How To Russell Smith explains how JSON differs from XML, and how it's used in Azure's management portal I'm not a developer, and I'm guessing if you're a regular Petri IT Knowledgebase reader, neither are you. But as a system administrator, you will probably have come across XML, or Extensible Markup Language, which is used for defining documents in such a way that mere mortals can also read and understand the format. And while sysadmins are more familiar with XML as a means of defining documents, it's also commonly used for defining data structures used by web services. JSON versus XML JSON stands for JavaScript Object Notation, and one of the primary reasons to use it over XML is that data can be loaded asynchronously more easily than using XML, so JSON is finding popularity in web services. JSON is more lightweight than XML because it mainly contains the data that needs to be transferred, rather than a lot of markup used to define the structure of the data. JSON is used to serialize data, or in other words convert the data into a format that can be stored. For example, it's possible to present JSON data as a JavaScript object, or simply serialize and deserialize the data. Additionally, JSON helps AJAX developers -- think JavaScript and XML -- overcome Same Origin Policy restrictions where code from one domain can't request data from another. For example, if you want to pull data from a third-party web service, JavaScript Object Notation with Padding (JSONP) can be used to retrieve the data that usually has a function... --- ### Validating Computer Lists with PowerShell > Follow these tips and tricks for validating your list of computer names for a better PowerShell experience. - Published: 2015-10-29 - Modified: 2024-09-04 - URL: https://petri.com/validating-computer-lists-with-powershell/ - Categories: PowerShell - Tags: Intermediate, Scripting - Article Type: How To Follow these tips and tricks for validating your list of computer names for a better PowerShell experience. Over the course of a few articles, I've been demonstrating a number of techniques and tools for creating lists of computer names. If you are just jumping in, then I hope you'll take a few minutes to get caught up, otherwise some of the material in this article might not make sense. Related: Create Better Lists with PowerShell Related: Building Effective Lists with Active Directory and DNS Once you've created your list of names, then you need to validate it. The assumption is that you want to run some PowerShell command against your list of remote computers, but there's no guarantee that every name in the list is valid or even running. It's quite easy to include error handling in a script with a try/catch statement, but let's see what we can do to validate the list before we even get to that step. I'm going to use an existing text file. ​ There are some potential issues, but using techniques I showed you previously, I can get a variable of computer names: ​ My clean list of computer names (Image Credit: Jeff Hicks) I want to use Get-Service to check the status of the Windows Update service. ​ Using the list (Image Credit: Jeff Hicks) In this particular example, PowerShell didn't complain about computers in the list that are offline or can't be resolved. But other commands might, and the command is also taking longer to run  after attempting to... --- ### Microsoft's About To Become More Aggressive With Windows 10 Upgrades > Microsoft has announced that, starting next year, they will begin pushing Windows 10 upgrades more aggressively through Windows Update. - Published: 2015-10-29 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-become-aggressive-windows-10-upgrades/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News Microsoft has announced that, starting next year, they will begin pushing Windows 10 upgrades more aggressively through Windows Update. Microsoft has been aggressively pushing Windows 10 to existing Windows users by offering them a free upgrade, an easy registration process and they even changed the out of box experience for Windows 8 to offer a free update to Windows 10. But, the company is about to take another big step in pushing the OS to existing users and it’s likely not going to make the folks who have held off up until now, very happy. Terry Myerson stated in a blog post, that you can read here, that they are going to move Windows 10 from an ‘optional’ update to a ‘recommended update’ through Windows Update which means that anyone who is set to automatically download recommended updates will receive the new bits. It’s important to note that you will still be prompted to start the install process but if you are short on space on your hard drive, you will want to be proactive to block this download. For corporate users, this likely should not be an issue as you can block the update using the various tools that Microsoft provides for managing your network, but for those small businesses who do not have these tools, they will need to pay close attention to when Microsoft makes the switch from ‘optional’ to ‘recommended’. But that’s not the worst of it, if you are a consumer on a metered connection using Windows 7 or 8. 1, there is no automated work-round for not getting the update. Microsoft says... --- ### How to Enable the Built-In Administrator Account in Windows 10 > Learn two different methods for enabling the built-in administrator account in Windows 10. - Published: 2015-10-29 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-built-in-administrator-account-windows-10/ - Categories: Windows 10 - Article Type: How To Learn two different methods for enabling the built-in administrator account in Windows 10. After completing the Windows 10 installation, you'll be asked to enter a username that will be used as the primary user account for this system. Building on the online, cloud-based momentum that started in Windows 8, Microsoft encourages Windows 10 users to log on to the system using a cloud-based Microsoft Online user account, which is typically one that uses the @outlook. com domain. This is true for home users and those not logging on with their organizational user account. Once that new user is created using the welcome wizard, he or she is automatically added to the local built-in Administrators group and has full administrative permissions on the local system. This same user can also be used for any local management task. Like in past versions of Windows, the original built-in administrator's account is disabled by default. Furthermore, this account is not associated with any password. However, there may be situations where one would like to use the built-in administrator account instead of the new user. Warning: Because the built-in administrator account does not have a password, enabling it without properly setting a password for the account will open a serious security flaw on your system! There are two methods of enabling the built-in administrator's account. 1.  Using the Local Users and Groups MMC Snap-in Follow these steps to enable the built-in administrator's account by using the Local Users and Groups snap-in: Open Local Users and Groups by typing lusrmgr. msc in the Start search box or in the Run command and pressing ENTER. Opening... --- ### Microsoft Band 2: Exercise And Productivity On Your Wrist > Microsoft has a brand new fitness and productivity wearable called the Band 2 but is it worth the steep entry price of $249? - Published: 2015-10-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-band-2-exercise-productivity-wrist/ - Categories: Hardware - Tags: Band 2, Editor's Pick, News, review - Article Type: Review Microsoft has a brand new fitness and productivity wearable called the Band 2 but is it worth the steep entry price of $249? It was during the World Series of 2014 with an awkward announcement that Microsoft introduced the world to the Band, a fitness device that was a little bit rough around the edges, but it did sell out quickly. The device was the company's take on building a fitness wearable, but it didn't stop there, Microsoft also included features like the ability to read your email, see SMS messages, interact with Cortana and more. In early October, the company announced the successor to follow up the Band, and it improves on nearly every aspect of the original device. Everything from ergonomics of the device to the display have been improved and a few more sensors have been packed into the device as well. The Band 2 is an all new device, the screen is rounded, the batteries have been moved to the bottom of the strap, stainless steel now makes up a significant portion of the top display area as well as the bottom clasp, a barometer is now included and overall, it's simply a better Band. In total there are eleven sensors in the small device that include heart rate monitor, accelerometer, gyrometer, GPS, light sensor, skin temperature monitor, UV sensor, capacitive and galvanic skin response sensor, a microphone and also a haptic vibration motor. In short, the band has just about any type of sensor you could dream of packed into a tiny package. The band portion of the device is made up of thermal plastic elastomer... --- ### SQL Server 2016 CTP 3.0 Is Coming This Week, Azure Data Lake Enters Public Preview > Microsoft is pushing forward with SQL Server and has announced that the CTP of Server 2016 3.0 will be arriving soon and it will bring new features. - Published: 2015-10-28 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-2016-ctp-3-0-coming-week-azure-data-lake-enters-public-preview/ - Categories: Exchange Server, Microsoft Azure - Tags: Editor's Pick, Exchange Server 2016, News - Article Type: News Microsoft is pushing forward with SQL Server and has announced that the CTP of Server 2016 3.0 will be arriving soon and it will bring new features. Microsoft is pushing forward with SQL Server and has announced that the CTP of Server 2016 3. 0 will be arriving soon and it will deliver new features. Also, a public preview of Azure Data Lake Store and Analytics Service is going live today. For SQL Server 2016, Microsoft is saying that CTP 3. 0, which is coming later this week, is the next major preview for the platform. Included in this release is Always Encrypted, based on technology from Microsoft Research, protects data at rest and in motion, SQL Server R Services, a new workload for fast predictive, in-database analytics, PolyBase – built into SQL Server to extract value from unstructured + structured data using T-SQL and finally there are improvements to both SQL Server Analysis Services and SQL Server Reporting Services. On the Data Lake side of the pond, Microsoft is making available a public preview of the Data Lake Store and Analytics service that brings all the capabilities required to make it easy for users to store data of any size, and do all types of processing and analytics across platforms and languages. Finally, Microsoft is entering into public preview with Azure SQL Database In-Memory OLTP and Operational Analytics that the company touts can increase transaction performance up to 30x. All of these updates to the company’s backend products help bolster Microsoft's cloud and on premise performance and security efforts. It’s important for Microsoft to keep up its rapid release cadence of new features as other companies... --- ### What is Azure Operational Insights? > Learn about Azure Operational Insights and how it differs from Microsoft Operations Manager. - Published: 2015-10-28 - Modified: 2024-11-19 - URL: https://petri.com/azure-operational-insights/ - Categories: Microsoft Azure - Tags: Azure, Cloud, Operations Management - Article Type: Overview Learn about Azure Operational Insights and how it differs from Microsoft Operations Manager. In this Ask the Admin, I'll run through the features of Azure Operational Insights (OpInsights) and how it compares to System Center Operations Manager (SCOM). Back in May 2015 at the Ignite conference in Chicago, Microsoft announced general availability of Azure Operational Insights, which it describes as 'an analysis service that enables IT administrators to gain deep insight across on-premises and cloud environments. ' And adding that 'it enables you to interact with real-time and historical machine data to rapidly develop custom insights, and provides Microsoft and community-developed patterns for analyzing data. ' Adding Solutions to an Azure Operational Insights workspace (Image Credit: Russell Smith) Azure Operational Insights is part of the Operations Management Suite of products, but isn't a replacement for Operations Manager. OpInsights utilizes the cloud to store and index large amounts of data collected either from your on-premise environment, the cloud, or mixture of both, and provides a service that most organizations would struggle to provision onsite due to the cost and complexity of dealing with such large amounts of data. But unlike SCOM, OpInsights isn't currently able to perform actions based on alerts, although a few Solutions require Operations Manager. Based on a fast and sophisticated search engine, OpInsights provides analytics for capacity planning, efficiency, SQL, Active Directory, backup, metadata about network traffic (wire data), potential configuration issues, security, change tracking, Azure site recovery, alert management, malware, updates and a growing number of other areas via Solutions, previously called Intelligence Packs... . --- ### PowerShell Problem Solver: Getting Process Details > Learn how to find hidden object properties in PowerShell and use them to get details about running processes on your servers. - Published: 2015-10-28 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-getting-process-details/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver - Article Type: How To Learn how to find hidden object properties in PowerShell and use them to get details about running processes on your servers. For today's PowerShell Problem Solver, we'll look at how to track process details that you don't see by default from PowerShell. Although you could use great graphical tools, such as procexp. exe from Sysinternals, I'm going to assume you want to use PowerShell because you can use it to manage at scale. We'll use the standard Get-Process cmdlet to start. I'm going to test my expressions locally first, which is always recommended. I can always re-rerun Get-Process and use the –Computername. PowerShell Problem Solver: Getting Process Details PowerShell Problem Solver: Processor Loads PowerShell Problem Solver: Process CPU Utilization PowerShell Problem Solver: Process Performance For All Running Get-Process (Image Credit: Jeff Hicks) If you are just getting started with PowerShell, it is very important for you to realize that what you see as the result is not necessarily all there is to the output. Remember, cmdlets write objects to the pipeline and PowerShell has default settings designed to simplify things for the IT pro. In this case, PowerShell has a default view for process objects. But there is more than meets the eye, not only in terms of properties, but also their names. Don't assume that the headings you see in a result are the actual property names. They may not be. The only way to know is to pipe something to Get-Member. ​ Getting member properties (Image Credit: Jeff Hicks) I am not interested in the process object's methods or events, so... --- ### Apple Crushes It Again, Thanks to China > Apple pulled off another financial miracle, posting a net profit of $11.1 billion on revenues of $51.5 billion for the quarter ending September 30. - Published: 2015-10-27 - Modified: 2024-09-04 - URL: https://petri.com/apple-crushes-thanks-china/ - Categories: Mobile - Tags: Apple, iPhone, News - Article Type: News Apple pulled off another financial miracle, posting a net profit of $11.1 billion on revenues of $51.5 billion for the quarter ending September 30. With sales in China nearly doubling year-over-year, Apple was able to pull off another financial miracle, posting a net profit of $11. 1 billion on revenues of $51. 5 billion for the quarter ending September 30. The quarter was record-breaking, and not just for Apple: No company has ever posted revenues that high in a single quarter. "Fiscal 2015 was Apple’s most successful year ever, with revenue growing 28 percent to nearly $234 billion," a statement credited to Apple CEO Tim Cook reads. "This continued success is the result of our commitment to making the best, most innovative products on earth, and it’s a testament to the tremendous execution by our teams. " As has been the case recently, the iPhone accounted for most of Apple's success, with iPhone sales in China surging 120 percent. The iPhone now accounts for fully 63 percent of all Apple revenues in the quarter. A year ago, it was 53 percent. The reason? The average selling price of an iPhone has grown by $67 in the past year to $670. On that note, Apple sold an incredible 48 million iPhones in the quarter, up from 39 million a year earlier. And its new iPhones, the 6S and 6S Plus, were only available for a few days in the quarter. As a result, Mr. Cook predicted that Apple would sell more iPhones in the current quarter than a did a year ago when it sold an all-time record 74. 5 million iPhones... . --- ### Checking System Drive Free Space with WMI and PowerShell > Use PowerShell and WMI to dynamically get disk information for the system drive even when you don't know what it is. - Published: 2015-10-27 - Modified: 2024-09-04 - URL: https://petri.com/checking-system-drive-free-space-with-wmi-and-powershell/ - Categories: PowerShell - Tags: CIM-WMI, Intermediate, Scripting - Article Type: How To Use PowerShell and WMI to dynamically get disk information for the system drive even when you don't know what it is. Today's article is another "ripped from the forums" inspired item. The question at hand is how to query the free space on the system drive for several remote computers. The system drive is normally C: as you can see with the %SystemDrive% environmental variable. But it doesn't have to be, and in the original problem that was exactly the situation. Some servers might be C: but others might be D: or even E:, I suppose. So what's the best way to use PowerShell to figure all of this out? Part 1: Checking System Drive Spaces with WMI and PowerShell Part 2: Getting System Drive Alternatives Part 3: Compound Filtering with WMI and PowerShell Part 4: Scaling WMI with PowerShell and Remoting Part 5: Coming soon First off, let's see what we need to get the free space information. We can use Get-Wmiobject and query the Win32_LogicalDisk class. We can also limit the query to the system drive. Since I already know in advance what that is I can run a command like this: ​ Getting disk information for the system drive (Image Credit: Jeff Hicks) Of course, we can control what information to get. ​ Selecting key properties (Image Credit: Jeff Hicks) The values are in bytes but they are easily converted using a custom hash table. ​ Formatted results (Image Credit: Jeff Hicks) I'm telling PowerShell to treat the size value as an integer and to round... --- ### Windows Mobile 10: The Story So Far > With just under two months till RTM, find out how Windows 10 Mobile is developing with Russell Smith's impressions of build 10572. - Published: 2015-10-27 - Modified: 2024-09-04 - URL: https://petri.com/windows-mobile-10-story-far/ - Categories: Mobile - Tags: Editor's Pick, Mobile, Windows 10 - Article Type: Opinion As Windows Mobile 10 rolls towards RTM, Russell Smith looks at one of the latest builds and gives his impressions. Following the release of build 10549 to Fast Ring Insiders, and since then the more recent 10572, I decided to take the plunge and install Windows Mobile 10 on my Lumia 640, with the aim of finding out how WM10 is shaping up and whether it's stable enough to use as a daily driver. But considering the frosty reception build 10549 received, I was expecting the worse. What follows isn't a hands-on review, but more an overview of the good, the bad, and the ugly. The Basics: Action Center, Notifications, Apps Menu and Lock Screen One of the most dramatic changes in Windows Mobile 10 is in the Action Center, which has been expanded to include four rows of icons with a Flashlight button -- so no need to download a standalone app -- and a Note button for quickly creating new notes in OneNote. Now only one click is required to connect the default VPN connection and disable WIFI. I can hear many of you cry that this isn't a big deal, but it was a usability annoyance that highlighted the immaturity of the OS. Action Center, Notifications and All Apps menu in Windows 10 Mobile (Image Credit: Russell Smith) Notifications can be dismissed individually or by app group, include previews, and notification banners are larger and more attractive than their Windows Phone 8. 1 counterparts. The All apps menu is transparent to match the Start screen, prettier -- as is most of the... --- ### Microsoft: System Center Will Be Updated Regularly Alongside Windows 10 > With Configuration Manager "vNext" expected by the end of the year, Microsoft has begun explaining how it has changed this product to accommodate Windows 10 - Published: 2015-10-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-system-center-will-updated-regularly-alongside-windows-10/ - Categories: System Center - Tags: News - Article Type: News With Configuration Manager "vNext" expected by the end of the year, Microsoft has begun explaining how it has changed this product to accommodate Windows 10. With System Center Configuration Manager "vNext" expected by the end of the year, Microsoft has begun explaining how it has changed this product, and the cloud-based Intune, to accommodate Windows 10, which is kept perpetually up-to-date. And as you might imagine, all of these solutions will be updated in tandem, while continuing to offer flexibility for those businesses that wish to move forward more slowly. "With Windows 10, we have dramatically rethought and re-architected the way you can manage Windows in the Enterprise," Microsoft corporate vice president Brad Anderson writes in a new post to the firm's In The Cloud blog. "The most significant change is the fact that we are now delivering Windows-as-a-Service (WaaS). A lot of IT leaders haven’t yet grasped just how significant of a change this is. " WaaS is of course Microsoft's name for the always up-to-date nature of Windows, and other products. That is, unlike with past releases, Microsoft will perpetually deliver updates to Windows 10, and it expects both consumers and businesses to install these updates on a timely schedule. For consumers, it's simple: Windows 10 just updates itself and there's no way to defer non-critical updates. But business represent a more complex problem. To accommodate the needs of businesses, Microsoft is essentially providing three Windows 10 upgrade paths, Current Branch, Current Branch for Business, and Long-Term Servicing Branch. They break down like so: Current Branch. This provides that WaaS experience, with updates delivered directly to end user machines on Microsoft's schedule. It is... --- ### Windows Server Containers Networking > Learn how Windows Server Containers will be connected to the network via a virtual switch, using NAT and DHCP. - Published: 2015-10-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-containers-networking/ - Categories: Windows Server 2016 - Tags: Containers, DHCP, Editor's Pick, NAT, networking, Technical Preview 3, Windows Server 2016, Windows Server containers, WS2016 - Article Type: Overview Understand how Windows Server Containers will be connected to the network via a virtual switch, using NAT and DHCP. In previous posts I explained what Windows Server containers offer, and how containers work in Windows Server 2016 Technical Preview 3 (TPv3). In this post, I'll explain how containers can be connected to the network. And let's face it, the born-in-the-cloud services that you will deploy via Windows Server Containers will be pretty useless if you cannot connect them to a network! A Learning Curve Imagine this that you're going to deploy application or operating system virtualization into a virtual machine. These containers are going to connect to a network, via a virtual machine's virtual NIC, through a host's virtual switch, and be connected to a VLAN via a physical top-of-rack switch. Now let me compete the picture by saying that there will be an additional virtual switch and virtual NIC inside of the virtual machine. Are you feeling confused yet? Don't worry, this stuff, like most of IT, sounds confusing at first but when you compartmentalize the components in how you visualize the solution, it's actually not that hard at all. Building up Basic Connectivity Let's build up the solution a bit at a time so you understand what is going on. Queue up Visio! We'll start with the networking of a Windows Server 2016 Hyper-V host. The diagram below shows a physical server with Hyper-V enabled. It also has a pair of physical NICs connected to a top-of-rack (TOR) switch. Windows Server 2016 Hyper-V gives us Switch-Enabled Teaming (SET); this integrates the functionality of NIC teaming into... --- ### Install Azure PowerShell 1.0 Preview > Learn how to install the new Azure PowerShell 1.0 Preview cmdlets and sign in to Azure Resource Manager. - Published: 2015-10-26 - Modified: 2024-12-03 - URL: https://petri.com/install-azure-powershell-1-0-preview/ - Categories: Microsoft Azure - Tags: Ask the Admin, Azure, Cloud, PowerShell - Article Type: How To Learn how to install the new Azure PowerShell 1.0 Preview cmdlets and sign in to Azure Resource Manager. Microsoft has released the Azure PowerShell 1. 0 Preview, which provides better support for Resource Manager, separates Service Management and Resource Manager cmdlets, and can be installed from the PowerShell Gallery amongst other improvements. In today's Ask the Admin, I'll show you how to install the new preview cmdlets in Windows 10, and how to sign in to Azure Resource Management from the PowerShell console. Before starting with Azure PowerShell 1. 0 Preview, you'll need to remove any existing version of Azure PowerShell on your system using the Control Panel. Remember that Azure PowerShell 1. 0 is in preview and not supported on production systems or for mission critical tasks, and can be uninstalled at any time so that you can revert to a supported version of the cmdlets. Install Azure PowerShell Preview Once you've removed any existing version of the cmdlets, follow the instructions below to install the preview: Log in to Windows 10. Search for PowerShell in the taskbar, right click Windows PowerShell in the search results and select Run as administrator from the menu. Enter credentials for an administrator account, or confirm elevation if prompted. Set the PowerShell script execution policy to Remote-Signed by running typing Set-ExecutionPolicy RemoteSigned and pressing ENTER in the PowerShell console window, and then click Yes to change the execution policy when prompted. Now Install Azure PowerShell 1. 0 Preview by running Install-Module AzureRM in the console window, and click Yes when prompted to install the module from the PowerShell gallery. You should note... --- ### EU Antitrust Chief Promises to Actively Pursue Google on Multiple Fronts > In a wide-ranging interview, European Union Competition Commissioner Margrethe Vestager pledged to pursue multiple antitrust investigations against Google. - Published: 2015-10-26 - Modified: 2024-09-04 - URL: https://petri.com/eu-antitrust-chief-promises-actively-pursue-google-multiple-fronts/ - Categories: Cloud Computing - Tags: Google, News - Article Type: News In a wide-ranging interview, European Union Competition Commissioner Margrethe Vestager pledged to pursue multiple antitrust investigations against Google. In a wide-ranging interview with The Wall Street Journal, European Union Competition Commissioner Margrethe Vestager pledged to actively pursue multiple antitrust investigations against Google and its parent company, Alphabet. Ms. Vestager's European Commission formally charged Google with antitrust abuses in April, noting that the company artificially doctors its search results to favor its own shopping services over those of niche or vertical market competitors. The firm also abused its unique insight into what people are searching for by quickly ramping up its own offerings to compete with EU-based services. While Google has publicly protested the search charges, citing the growing market and ready availability of other shopping services, it will need to settle this clear-cut case---and in doing so, make changes to its business practices. Otherwise it will face massive fines and compulsory changes over which it has no say. Worse, shopping services are only the tip of the iceberg for Google in the EU. "The Google case is about misuse of a dominant position, to promote yourself in a neighboring market not on your merits but because you can," she said. But "I do not think of it as one Google case but literally as different investigations and different cases. " "We eventually look at maps and travel and a number of other related services, because the complaints sort of tell the same story," Ms. Vestager told The Wall Street Journal. "People feel or experience that they are either being demoted, or... --- ### Surface Book: The Fastest Way To Recharge > There are two ways that you can charge the Surface Book if you have an extra charger that can dramatically reduce the time to add juice to your laptop. - Published: 2015-10-26 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-fastest-way-recharge/ - Categories: Hardware - Tags: Editor's Pick, News, Surface Book - Article Type: News There are two ways that you can charge the Surface Book if you have an extra charger that can dramatically reduce the time to add juice to your laptop. Microsoft’s brand new Surface Book is now shipping to customers and the laptop is being widely reviewed as one of the best Windows laptops, ever. You can check out my complete review here and for those of you who are getting this device, you should know that there are two ways to charge it. The battery life in the Surface Book is good, not the best, but it is above average and I have been easily getting 8 or more hours out of it before needing to find an outlet. But, the tablet portion, which contains 1/3 of the devices overall battery, comes in at much closer to 2 hours of use before the batteries are flat. If you find that you are using the tablet portion of the Surface Book frequently and only want to recharge those batteries, you can plug the charger into the bottom of the clipboard (this is what Microsoft calls the display). In most scenarios, you will likely be plugging the charger into the keyboard which will charge both sets of batteries but in the instance you simply need to add juice to the clipboard, the charger can plug directly into the center docking port of the clipboard. What makes this extra charging port unique is that if you are upgrading from a Surface Pro 3, you can use your old charger to add power to the base while using the Surface Book charger to add power to the keyboard to quickly... --- ### Tip for Opening Large Text Files in Windows > Daniel Petri shares a list of free tools to help open large files in Windows. - Published: 2015-10-23 - Modified: 2024-11-19 - URL: https://petri.com/tip-opening-large-files-windows/ - Categories: Windows Client OS - Article Type: How To Daniel Petri shares a list of free tools to help open large files in Windows. As system administrators, we commonly have to deal with log files. This also rings true for developers, DBAs, and standard support personnel, as well. Regardless of who performs the task, the task itself is identical: Pull a log file from a local or remote server, open it, find some specific text string, and try to troubleshoot the system, application or code. These files can be in many formats, sizes, and encoding types. Files may or may not contain the text in specific formats, such as CSV and LDF. Huge text files may also differ by the number of lines they contain and the reason for opening the files may also differ. Regardless of the difference in file formats, one thing is certain: In Windows, the built-in text editing application, Notepad, is incapable of opening such files. Trivia: Back in the days of Windows 3. 11, Notepad was capable of opening files less than than 45 KB. In Windows 95, this limitation was extended to 64 KB. Unfortunately, I could not find any new documentation for these limits. I tried looking for a current and update file size limit for Notepad under Windows 7, 8, or 10. I couldn't find a concrete answer on Microsoft's website or MSDN. So I did some testing, and what I found was that Notepad in Windows 8. 1 was able to open large files, up to 524,288 KB (0. 5 GB). Attempting to open such a large text file in Microsoft Notepad in Windows 8. 1 produces the... --- ### Surface Book: The Hinge > Microsoft's new Surface Book hinge is a unique feature of the laptop and Brad Sams takes a closer look at what makes this feature stand out. - Published: 2015-10-23 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-hinge/ - Categories: Hardware Microsoft's new Surface Book hinge is a unique feature of the laptop and Brad Sams takes a closer look at what makes this feature stand out. Microsoft’s new Surface Book is a high-end device that the company hopes will drive consumers to buy a premium Windows laptop. If you haven’t checked out my full review yet, make sure to do so here, and in this post, we take a closer look at the brand new hinge. The hinge is a dynamic fulcrum (DFH) design that, when closed, creates a small gap at the base of the display which gives the Surface Book a tear-drop design. At first, I was a bit concerned about the device collapsing under pressure but after putting a considerable amount of force on the hinge when closed, thse fears are put to rest. The hinge is made out of magnesium aluminum and stainless steel parts, there is no plastic in the external construction of it which adds to the premium feel of the device and also gives you more confidence that this part will not breakdown easily. One interesting thing about hinge is that when you remove the clipboard, this is what Microsoft calls the display, the hinge is locked into whatever position you removed the display. While not an issue the majority of the time, if you do remove the display at an odd angle, it can be a bit harder to get it reattach the display. Again, not a huge issue here but something to be aware of as once the display is moved, you can not adjust the hinge until the display is reattached. Attaching the display to the body is quite easy... --- ### Microsoft Azure Files Generally Available > Microsoft released Azure File Storage with SMB 2.1 and SMB 3.0 support. What is this service, what is it intended for, and what should it not be used for? - Published: 2015-10-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-files-generally-available/ - Categories: Microsoft Azure - Tags: Azure, Azure File Storage, Azure Files, Azure Shared Folder, Cloud, cloud computing, Editor's Pick, hybrid cloud, Storage Account - Article Type: News Microsoft released Azure File Storage with SMB 2.1 and SMB 3.0 support. What is this service and what is it intended for? Microsoft recently announced the general availability of Azure File Storage. In this post I’ll explain what this service is, what you'll use File Storage (also referred to as Azure Files) for, and what you should not use the service for. What is Azure File Storage? Azure File Storage is one of the four services that an Azure storage account can offer: Block blobs: File data, including Azure Backup. Table & queues: NoSQL storage for huge amounts of unstructured data. Page blobs and disks: Optimized for random read/writes, and how Azure virtual machine VHDs are stored. File storage: Persistent storage using a file share. Each of these services are delivered by a storage account. In the case of File Storage, you will: Create a storage account Use the storage account name and an access key to create a file share This file share uses the same SMB protocol that is used by Windows for file shares. Azure Files supports SMB 2. 1 for legacy applications and operating systems, and SMB 3. 0 for optimum performance for Windows 8 and Windows Server 2012 or later. Note that the preview of Azure Files did not offer SMB 3. 0 support. The components of Azure Files should be fairly familiar, even to those that are new to Azure: The components of Azure Storage (Image Credit: Microsoft) Storage Account: A storage account will host the Azure Files service. Share: You create a share, which is very similar in concept to a... --- ### Microsoft's Stock Pushed Into The Clouds By Strong Azure Growth > Microsoft's Azure platform saw strong growth during the most recent quarter which has pushed the company's stock to a new 52 week high. - Published: 2015-10-23 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-stock-pushed-clouds-strong-azure-growth/ - Categories: Microsoft Azure - Tags: Azure, Editor's Pick, News - Article Type: News Microsoft's Azure platform saw strong growth during the most recent quarter which has pushed the company's stock to a new 52 week high. Yesterday afternoon, Microsoft released their earnings for Q1 of 2016 and while there were a few low spots such as Windows Phone, analysts and investors were apparently quite pleased with the company’s growth in the cloud segment. Following the release of the company’s earnings, shares spiked up as high as 10%, which is a massive jump for the stock and has pushed it to a new 52 week high of 52. 80, the previous high was 50. 05. For the quarter, Microsoft reported that their Intelligent Cloud business unit grew 8% (up 14% in constant currency) to $5. 9 billion which is what most believe to be the cause of the dramatic climb in the price of the company’s stock. The reason for this is that many see Microsoft’s future as being one of three vendors in the cloud business (Amazon and Google being the other two) because of the massive capital required to enter this segment and with strong growth in this key market, investors likely feel more confident about the company’s future. During its earnings call, Microsoft said that the cloud is a Seattle race, meaning that Amazon and Microsoft are the only true competitors; clearly a bash against Google’s efforts to compete with the well established AWS and Azure platforms. As more companies and users offload their compute to the cloud, Microsoft, Amazon and Google will continue to slug it out with billion dollar investments to try and prove that they have the best platform. And because this is... --- ### Paul Thurrott's Short Takes: Microsoft Earnings Special Edition (October 2015) > Because Microsoft only releases its earnings four times a year, this week's other news focuses exclusively on those earnings, which beat expectations. - Published: 2015-10-23 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-microsoft-earnings-special-edition/ - Categories: Microsoft Azure, Mobile, Office, Windows 10, Windows Server - Tags: News - Article Type: Opinion Because Microsoft only releases its earnings four times a year, this week's other news focuses exclusively on those earnings, which beat expectations. Because Microsoft only releases its earnings four times a year, this week's other news focuses exclusively on those earnings: net income of $4. 6 billion on revenues of $20. 4 billion. Microsoft this week reported net income of $4. 6 billion on revenues of $20. 4 billion for the quarter ending September 30, 2015. Those figures represent a 2 percent gain for profits (good) but a 12 percent drop in revenues (bad). So many of the blurbs today will focus on these earnings so we can find out what really happened. Microsoft's quarter in a nutshell? I'm always interested by how news outlets, professional or otherwise, handle the tech stories in which I'm interested, in particular the headlines. For example, Nasdaq highlighted the positive in its coverage, with "Microsoft Profit Top Estimates," while The Verge tooka more negative bent: "Microsoft reports falling revenues, slowing Surface sales in latest quarter" Both headlines are factual enough, and it's not immediately clear which presents the better picture of the firm's quarter. But the "slowing Surface sales" part of the last headline is factual but pointless, since Microsoft's hardware release cycles mean that this quarter was a non-event for Surface whereas the same quarter a year ago benefited from a then-recent device launch. Point being, you can lie with facts too. Winner: WSJ. "Microsoft brings in $4. 6 billion in Net Income for Q1 2016: Be sure to read Brad's story about the Microsoft earnings on Thurrott. com. Microsoft earnings: the big picture Following last quarter's disastrous $2. 1... --- ### Current Status Episode 30: Enterprise-Level Storage in the Cloud with Laz Vekiarides > Join Current Status co-hosts Theresa Miller and Phoummala Schmitt, as they talk with Laz Vekiarides, co-founder at ClearSky Data. - Published: 2015-10-22 - Modified: 2015-10-22 - URL: https://petri.com/current-status-episode-30-enterprise-level-storage-cloud-laz-vekiarides/ - Categories: Current Status - Article Type: Opinion Join Current Status co-hosts Theresa Miller and Phoummala Schmitt, as they talk with Laz Vekiarides, co-founder at ClearSky Data. Join us Thursday, October 22, 2015 at 10:15 pm EDT for another episode of Current Status. During this episode of Current Status, co-hosts Theresa Miller and Phoummala Schmitt talk with guest Laz Vekiarides (@lazvek), co-founder and executive at ClearSky Data. The organizational race to the cloud is a slow and steady one. Can organizations really get enterprise-level storage in the cloud? Learn more about whether or not this reality or a virtual reality on this week’s Current Status. --- ### PowerShell How To: Building Effective Lists with Active Directory and DNS > Additional techniques and tips for building lists of computer names including querying Active Directory or DNS with PowerShell. - Published: 2015-10-22 - Modified: 2024-09-04 - URL: https://petri.com/powershell-how-to-building-effective-lists-with-active-directory-and-dns/ - Categories: PowerShell - Tags: Active Directory, Intermediate, Scripting - Article Type: How To Additional techniques and tips for building lists of computer names including querying Active Directory or DNS with PowerShell. In an earlier article I demonstrated some techniques for creating and using lists of computer names. I hope you found that article helpful. Today, I want to show you another way to handle property name problems, as well as other ways for building lists dynamically from Active Directory or DNS. Related: Create Better Lists with PowerShell Alternate Property Names In the last article I explained the importance of aligning the property name from any imported list, such as a CSV file, with the parameter name of cmdlets that you intend to use. For most cmdlets, this means ensuring that any object has a property name of Computername. But suppose you have a CSV file that uses something else? I have an alternate version of the CSV file I used last time that does just that. ​$computers = Import-CSV C:scriptscomputers-alternate. csv $computers Importing a list with an incompatible property name (Image Credit: Jeff Hicks) As you can see in the figure, my imported objects have a property of 'Server'. Let's say I didn't want to manually edit the CSV file first. How might I fix this so that the property is Computername? One way would be to use Select-Object and define a custom property. ​$computers | Select @{Name="Computername";Expression={$_. Server}} | Get-Service bits | Format-Table Machinename,Name,Status -AutoSize Using a custom property to rename (Image Credit: Jeff Hicks) The downside is that you need to use this technique every time you want to use the... --- ### How to Upgrade to Windows 10 Pro from Home Edition > Learn how to upgrade to Windows 10 Pro from the Windows 10 Home edition in this article by Daniel Petri. - Published: 2015-10-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-upgrade-to-windows-10-pro-from-home-edition/ - Categories: Windows 10 - Article Type: How To Learn how to upgrade to Windows 10 Pro from the Windows 10 Home edition in this article by Daniel Petri. As Windows 10 upgrades have reached the 100 million milestone worldwide, many Windows 7 or 8/8. 1 users may want to upgrade their free Windows 10 Home edition to Windows 10 Pro. The current edition of your existing Windows 7 or 8/8. 1 installation will determine what edition of Windows 10 you will be upgraded into.  The upgrade paths from various Windows 7 editions and Windows 8/8. 1 editions to Windows 10 is listed in the table below: Windows 10 upgrade paths. (Image Credit: Microsoft)   To perform the upgrade, you will need to know a few things. First, you need to be a local admin on the machine. That goes without saying, but you'd be amazed how many people neglect this small aspect. Second, you need a valid serial key for the Pro edition. If you don't have one already, you will need to purchase one for $99. 99. Third, you need some time. Not too much, about 5 to 10 minutes depending on the speed of your computer. Oh, and a reboot. Follow the steps outlined below to upgrade your Windows 10 Home edition to the Pro edition: 1. Check to see what version you're currently running. One way of doing this is by going to the System properties page that's accessible by right-clicking This PC and selecting Properties. Notice the current edition of Windows that's outlined in red in the image below. You can also note the Product ID at the bottom, which we'll see that it changed... --- ### Microsoft’s New Type Cover Takes A Step Forward > With the release of the Surface Pro 4, Microsoft has updated the Type cover; if you own a Surface Pro 3, you may want to look into buying this peripheral. - Published: 2015-10-22 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-new-type-cover-is-a-good-buy/ - Categories: Hardware - Tags: Editor's Pick, News, Type Cover - Article Type: Review With the release of the Surface Pro 4, Microsoft has updated the Type cover; if you own a Surface Pro 3, you may want to look into buying this peripheral. Lost in the announcement hype of the new Lumias, Surface Pro 4 and the Surface Book was the fact that Microsoft introduced a new Type cover. The keyboard, which pairs nicely with the Pro 4 and even the Pro 3, offers improved mechanics and a much larger trackpad. Considering that I have always felt that the keyboards were the weakest feature for the Surface lineup, mostly because they lacked the confidence of a traditional keyboard, any improvement to the covers is a welcomed addition. And with the new generation of keyboards, Microsoft has improved the Type cover to a level that is a worthy upgrade if you own any of the previous versions. With this version of the keyboard cover, Microsoft has spaced out the keys, refined the mechanics under the key, increased the size of the trackpad and most importantly, firmed up the cover so it bounces less when typing. The end result is a much improved typing experience that finally gives the Pro series tablet a keyboard that can be used everyday. The keys across the top row have been changed to match that of the Type cover of the Surface 3 which means print screen now has a keyboard shortcut. There is also a new function key on the bottom left side next to the Windows key and a context menu key on the bottom right. The question that will be asked frequently is if a Surface Pro 3 owner should upgrade to the... --- ### Sized Up: Surface Pro 4, Surface Book Clipboard, And The Pro 3 > Thinking about buying the Pro 4 or Surface Book but want a closer look at how the tablets size up? We have you covered with a gallery of the new devices. - Published: 2015-10-21 - Modified: 2024-09-04 - URL: https://petri.com/sized-surface-pro-4-surface-book-clipboard-pro-3/ - Categories: Hardware - Tags: Editor's Pick, News, Surface Book, Surface Pro 4 - Article Type: News Thinking about buying the Pro 4 or Surface Book but want a closer look at how the tablets size up? We have you covered with a gallery of the new devices. Microsoft’s two new premium devices are now out in the wild, or should I say, I can now talk about them and the fact is, they are both great machines. You should check out the review for the Surface Book here and the Pro 4 here, to learn more about those devices but for those of you who want size comparisons, here you go. The Pro 3 and Pro 4 are nearly the same size, the Pro 4 is slightly thinner at . 33 inches thin versus the Pro 3 at . 36 inches but the height and width are the same at 11. 50" x 7. 93”. The clipboard of the Surface Book, the portion that detaches from the base, is considerably larger than the Pro 3 and 4. The clipboard measures in at 8. 67 x 12. 30 x 0. 30in which means it is considerably taller and wider than the Pro tablets.   You can take a look at the pictures in this post to get a better idea of the size of these devices in comparison to each other. Surface Book | Surface Pro 3 I will say that you can definitely feel a difference in the thinness between Pro 4 and the clipboard which isn’t too surprising as the latter does not have USB port on it. And the clipboard also has fewer batteries, Microsoft says that for the Surface Book, 1/3 the battery is in the display, 2/3 is in the keyboard base which means considerably less tablet time with the Surface Book... --- ### Yahoo Begins Its Transition Away from Bing Search > Yahoo, bound by the terms of a multi-year search agreement with Microsoft, would like to run back to Google. This week, it took a big step in that direction - Published: 2015-10-21 - Modified: 2024-09-04 - URL: https://petri.com/yahoo-begins-transition-away-bing-search/ - Categories: Cloud Computing - Tags: Bing, Google Search - Article Type: News Yahoo, bound by the terms of a multi-year search agreement with Microsoft, would like to run back to Google. This week, it took a big step in that direction. It is perhaps the worst-kept secret in personal technology: Yahoo, long bound by the terms of a multi-year search agreement with Microsoft, would like to break ranks and run back to Google. This week, Yahoo took a major step towards that transition. Yahoo, you may recall, renegotiated the terms of its search partnership back in April, after months of high-level talks between the two firms's CEOs. At the time, it wasn't clear what had changed, with Microsoft and Yahoo only stating that they had "amended" their agreement to "improve the search experience, create value for advertisers and establish ongoing stability for partners. " A few weeks later, a regulatory filing revealed what had really happened: Yahoo was able to both insert language into the agreement that let either company terminate the search deal as soon as October 2015, a full five years earlier than before. By the way, it's October 2015. And Yahoo CEO Marissa Meyer, a former Google executive who is struggling to turn around the former Internet darling in any meaningful way, has been openly critical of the Microsoft deal since she joined Yahoo. She feels that the deal has financially underperformed financially for Yahoo and has limited the innovation Yahoo can add on top of search. If only there were some other option, some company that offered both better online advertising and better Internet search. "On October 19, 2015, Yahoo and Google entered into a Google Services Agreement," a new regulatory filing... --- ### Surface Dock: Microsoft Builds A Better Hub > Microsoft has released a refreshed Surface Dock that has a different design than the prior generation and it will reduce the footprint on your desk. - Published: 2015-10-21 - Modified: 2024-09-04 - URL: https://petri.com/surface-dock-microsoft-builds-better-hub/ - Categories: Hardware - Tags: Editor's Pick, News, Surface Dock - Article Type: Review Microsoft has released a refreshed Surface Dock that has a different design than the prior generation and it will reduce the footprint on your desk. With the Surface Pro 3, Microsoft released a dock for the device that was functional, but it was also rather large and took up quite a bit of desk space. Announced along side the Pro 4 and the Surface Book, Microsoft is releasing a new dock that abandons the previous design for a more compact setup that I have been using for about a week with my Pro 4. The biggest change to this dock is that it now acts more like a hub, meaning you plug in the connector to the charging port and it expands the functionality of your device significantly by adding 2 mini DisplayPorts, a gigabit Ethernet port, 4 3. 0 USB, 1 audio out, and of course it plugs into the wall so your Surface or Surface Book can charge while connected. There is also a lock location on the end of the dock so that you can secure it to a desk. The dock has a lot of heft to it, it feels excellent when you pick it up and is covered in a soft premium plastic material. On the bottom of the dock is a rubber pad that runs the entire length of the device. In practice, the dock works exactly as you would expect and for those who use their Surface to connect to other displays or peripherals, this dock is by far the best one to use. The brilliance of the device is how simple it is to use, one connector is... --- ### Review: Surface Book, Windows 10 Has A New Flagship > Microsoft's brand new Surface Book is here and I have been playing with the device for a couple weeks to let you know if it should be on your short list. - Published: 2015-10-21 - Modified: 2024-09-04 - URL: https://petri.com/review-surface-book-windows-10-has-a-new-flagship/ - Categories: Hardware - Tags: Editor's Pick, News, review, Surface Book - Article Type: Review Executive Editor Brad Sams shares his thoughts on Microsoft's brand new Surface Book. Read on to find out if it should be on your short list. On the flight back from the launch of the Surface Pro 3 last year, sitting in the cattle car section of the airplane, I began trying out the company's new, larger Surface on my lap, and while the experience was palatable, what I really wanted, like so many others, was a proper laptop. I wanted Microsoft to take a risk and go all in on its hardware bet and build something that was truly different, much like they did in the tablet space. In the fall of 2015, Microsoft announced its first laptop, the Surface Book, and I have been using this device for about two weeks. The Surface Book, which is technically a 2-1, is Panos Panay's vision of the 'ultimate laptop'. The company is using this phrase in their marketing material and everyone from the CEO down to the engineers who designed this piece of hardware truly believes that this laptop is what the market has been craving and is a machine that competes with the best of Apple's offerings. Defining what is the 'ultimate laptop' is a personal definition. For one user, it may mean editing video while sitting under a tree in a park, and for another, it may mean being able to use the device for 12 hours without needing to find an outlet. For me, the 'ultimate laptop' is one that doesn't cut corners and presents no barriers in my workflow; to truly be the ultimate laptop, it also has to live... --- ### Review: Surface Pro 4, An Evolutionary Update > Microsoft's next generation Surface is here and it packs a larger display, Intel's new Skylake chips, improved Type cover and a lot more. - Published: 2015-10-21 - Modified: 2024-09-04 - URL: https://petri.com/review-surface-pro-4-evolutionary-update/ - Categories: Hardware - Tags: News, review, Surface Pro 4 - Article Type: Review Microsoft's next generation Surface is here and packs a larger display, Intel's new Skylake chips, improved Type cover and a lot more. The Surface Pro 3 is arguably the first successful tablet in the Surface family. The device, with its larger display, improved typing experience and pen were a hit with consumers and corporations but after more than a year on the market, Microsoft has announced its successor. The Surface Pro 4, which Microsoft unveiled at its event in New York City earlier this month, is exactly what you would expect as a follow-up to the Surface Pro 3. It's certainly an evolutionary update, unlike the Surface Book, which is going more for the revolutionary introduction and includes a slightly larger display (12. 3inches) with a higher resolution ( 2736x1824), an updated pen and a refined Type cover. The Pro 4 improves upon the Pro 3 in nearly every way. The silicon under the glass has been updated and Microsoft is dropping the Intel Core i3 option and is instead starting with a fanless Core M chip, 4GB of RAM and 128 GB of storage for $899 and the options top out with an i7, 1TB of storage and 16GB of RAM for $2699. If you do opt for the high-end Surface, i7 model only, you will get Intel's Iris graphics chip as opposed to the Intel HD 520 graphics for the i5 and HD graphics 515 for the m3 version. When it comes to ports, it's really the same story, Microsoft neglected to include a USB type C port, which means that charging is still done via its proprietary connector,... --- ### Customizing the Windows 10 Start Menu > Learn how to customize the Windows 10 Start menu in this article by Daniel Petri. - Published: 2015-10-20 - Modified: 2024-09-04 - URL: https://petri.com/customizing-the-windows-10-start-menu/ - Categories: Windows 10 Learn how to customize the Windows 10 Start menu in this article by Daniel Petri. Thanks to users' complaints about the Start menu in Window 8, Microsoft reinvented the Start menu in Windows 10.  Although it's really not an exact clone of previous Windows versions Start menu, it's should seem familiar for most users. In this article, I'll provide tips on how to customize the Windows 10 Start menu. A Look at the Windows 10 Start Menu Windows 10 offers two methods for using the Start menu. The first is a new hybrid Start menu that offers some flexibility resembling what we've been used to in previous versions of Windows. This includes a modern interface, where you can rearrange applications, change the size of the apps tiles, and hide or uninstall the ones that you don't want. This Start menu can be resized by dragging its corners, and its color can be automatically changed to match the theme of your wallpaper. The second method for using the Start menu is an interface where the desktop is entirely hidden behind the page that opens when you click on the Start button. Like in Windows 8, you can move, resize, or uninstall applications. This type of Start page may make sense to some, especially for those using tablet computers and touch screens. The new Start menu in Windows 10 is made of several components. The Windows 10 Start menu. (Image Credit: Daniel Petri) Appearing on the lower-left area of the Start menu, you can find shutdown and settings options. Although many of these cannot be... --- ### Create Better Lists with PowerShell > PowerShell MVP Jeff Hicks explains how to effectively create and use lists of computernames in your daily work. - Published: 2015-10-20 - Modified: 2024-09-04 - URL: https://petri.com/create-better-lists-with-powershell/ - Categories: PowerShell - Tags: Intermediate, Scripting Learn how to effectively create and use lists of computernames in your daily work with PowerShell. If you are like the majority of PowerShell admins, you often use lists in your daily work. The typical use case is a list of computer names that you incorporate into some PowerShell command or script. Given that, I thought I would share some tips and techniques for creating lists and how to best utilize them in your work. The list, by the way, doesn't mean something stored in a text file. You can just as easily define a variable for a bunch of computer names. ​ But I'm going to assume you have more persistent needs. In fact, you might even have a computer list file like this. ​ A computer list with problems (Image Credit: Jeff Hicks) Hopefully your list isn't as badly formed, but I have a reason for that madness. But typically your list should be a column list, one name per line. What most admins will do is import the list into a variable. ​ In my example, this creates nine entries. Getting a count of computer names (Image Credit: Jeff Hicks) Clearly that is incorrect because I have blank lines. If I were to try and use this collection of names, I would get errors. Depending on how you built your file in the first place, you might have a blank line at the end, which is hard to detect in Notepad. The other issue might be extra leading and trailing spaces. [caption... --- ### Surface Book To Be Sold By Channel Partners, Surface Trade-In Program Announced > Microsoft has announced a new Surface trade in program for upgrading your business hardware and that the Surface Book will be sold by channel partners. - Published: 2015-10-20 - Modified: 2024-09-04 - URL: https://petri.com/surface-book-sold-channel-partners-surface-trade-program-announced/ - Categories: Hardware - Tags: Editor's Pick, News, Surface Book, Surface Pro 4 - Article Type: News Microsoft has announced a new Surface trade in program for upgrading your business hardware and that the Surface Book will be sold by channel partners. A few months back, Microsoft announced that they would be expanding the channels for which the Surface line of tablets could be sold and since that announcement in July, there are now more than 5,000 business resellers in 30 markets. This rapid growth in expansion has allowed the company to aggressively pursue the lucrative corporate segment and it looks like their efforts are paying off. The company said today that the adoption rate of the Surface Pro 4 into the corporate markets is outpacing that of the Surface Pro 3 (or any prior Surface). Considering that the Pro 4 is still only open for pre-orders, this likely means that corporations are ordering the devices in bulk, at least compared to the prior generation, with a future delivery date. The fact that corporations are jumping to the Pro 4 faster than the Pro 3 shouldn’t come as too much of a surprise as before the Pro 3 was introduced, the Pro 2 and original Pro did not fair so well in the market. What the Pro 3 did was establish Microsoft’s credibility for building a PC that consumers and corporations truly want which means when the Pro 4 was announced, companies already knew it was a good product and are willing to adopt it faster. To help the new companies that are adopting the Surface Pro, Microsoft is also introducing two new programs to the Surface Enterprise Initiative. These programs include a comprehensive warranty and service offering called Microsoft... --- ### Microsoft Expands Surface Commercial Availability and Support > Microsoft is now supporting commercial customers of all Surface devices with new availability and service and support options to help meet demand. - Published: 2015-10-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-expands-surface-commercial-availability-support/ - Categories: Mobile - Tags: Microsoft Surface, News - Article Type: News Microsoft is now supporting commercial customers of all Surface devices with new availability and service and support options to help meet demand. On the eve of the Surface Pro 4 and Surface Book launch, Microsoft has announced that Surface Pro 4 is already the the fastest Surface adopted in business ever. And it is supporting commercial customers of all Surface devices with new availability and service and support options to help meet the demand. At its Worldwide Partner Conference in July, Microsoft announced plans to expand Surface commercial availability via resellers from a few hundred authorized Surface distributors to a few thousand worldwide. But today, the firm said it had signed up nearly 5,000 resellers, dramatically exceeding its own goals. "This happened much more quickly than we'd expected," Cyril Belikoff, the Senior Director of Microsoft Surface, told me in a briefing late last week. "We now have nearly 5,000 resellers worldwide in over 30 markets. " Microsoft previously announced a Surface Enterprise Initiative that helps commercial customers purchase Surface devices and associated service, management and support packages all from the same partner. At the time, it said that Dell and HP would both be reselling Surface with their own enterprise support offerings. Today, Microsoft is revealing two new additions to the Surface Enterprise Initiative. First, beginning in early 2016, Microsoft will offer a new enterprise warranty and service called Microsoft Complete for Enterprise. This will provide a number of useful services: Warranty claim pooling.  Instead of being bound by two warranty claims per device, customers can pool warranty claims across all of the devices they purchased. So a customer with 100... --- ### Microsoft Board Shakeup Sees Two New Faces Nominated To Join The Team > Microsoft has announced today that it has nominated two new individuals to join its board of directors, Sandra Peterson and Padmasree Warrior. - Published: 2015-10-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-board-shakeup-sees-two-new-faces-nominated-join-team/ - Categories: Microsoft - Tags: Editor's Pick, Microsoft, News - Article Type: News Microsoft has announced today that it has nominated two new individuals to join its board of directors, Sandra Peterson and Padmasree Warrior. Microsoft has announced today that it has nominated two new individuals to join its board of directors, Sandra Peterson, group worldwide chairman, Johnson & Johnson, and member of the executive committee, and Padmasree Warrior, former chief strategy officer and chief technology officer at Cisco. In announcing that these two individuals have been nominated to join, the company has also said that Dr. Maria Klawe, president, Harvey Mudd College, has decided not to seek re-election following the end of her term after the shareholder meeting in December. Dr. Klawe served on the board of six years and noted that she was stepping down so that she can focus on the future of the Claremont University Consortium endowment. Both of the new candidates for the board, they have to be approved by the majority of the shareholders, have strong backgrounds in either technology or working with large organizations; you can read their full bios here. It is important for large organizations, such as Microsoft, to mix up the makeup of the board of directors from time to time to make sure that they have a wide range of individuals who are able to help shape the core of the company from a variety of viewpoints. By introducing new faces, it brings new ideas and fresh mindsets to the technology giant who has survived many different changes in the landscape of the technology sector. If these two individuals are elected, it will make Microsoft’s board consist of 11 individuals that includes... --- ### How Windows Server Containers Work > Learn how Windows Server Containers work by understanding how the repository and container images are used to quickly deploy services with identical configurations and reduced effort. - Published: 2015-10-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-containers-work/ - Categories: Windows Server 2016 - Tags: Containers, Technical Preview, Technical Preview 3, TPv3, Virtulization, Windows Server 2016, Windows Server containers, WS2016 - Article Type: Overview Learn how Windows Server Containers work by understanding how the repository and container images are used to quickly deploy services with identical configurations and reduced effort. In "What are Windows Server Containers? ," I discussed why many businesses will embrace Windows Server Containers with the release of Windows Server 2016. In this post, I will explain how Windows Server Containers work, as the feature is outlined in the Windows Server 2016 Technical Preview 3 (TPv3). Windows Server Container Goals The objective of Windows Server Containers is not to provide another way to deploy legacy applications. If you have traditional applications that have their own machine, local persistent storage, and is authenticated using Active Directory, then you should use machine virtualization technologies such as on-premises Hyper-V or vSphere, or public clouds, such as Azure or AWS. Containers give us the ability to deploy a service from a reusable template in seconds. No matter how many times you deploy from that template, you will get the same result. If you're working in software development or DevOps, then this should be music to your ears. Windows Server Containers Terminology There are a number of terms to understand with Windows Server Containers: Host: A host is machine that hosts containers. The machine can be physical or virtual. The virtual host is referred to as a VM host. Repository: This is a flat-file store of reusable images. In TPv3, the repository is kept on the host, but later releases might allow the repository to be a shared between hosts. Container OS Image: When you deploy a container based on Windows, then it will be based on an OS image of... --- ### Enable Nested Hyper-V Virtualization in Windows 10 Build 10565 > Learn how to enable Hyper-V nested virtualization in Windows 10 build 10565. - Published: 2015-10-19 - Modified: 2024-09-04 - URL: https://petri.com/enable-nested-hyper-v-virtualization-windows-10-build-10565/ - Categories: Windows 10 - Tags: Hyper-V, Virtualization, Windows 10 - Article Type: How To Learn how to enable Hyper-V nested virtualization in Windows 10 build 10565. Microsoft has quietly slipped nested virtualization into Windows 10 build 10565, or in other words, Microsoft has included the ability to run Hyper-V on a Hyper-V virtual machine (VM) guest. Related: Windows 10 Build 10565 Adds Nested Hyper-V Although this technology is primarily intended for enabling Hyper-V Containers in Windows Server 2016 because server and client operating systems share the same core code, this feature has cropped up in Windows 10 before making an official appearance in the Windows Server technical preview, which last saw a refresh in August. Exposing CPU virtual extensions (Image Credit: Microsoft) To make this technology work, Microsoft is virtualizing Intel VT-x and AMD-V hardware features that are normally hidden from the OS running in a guest VM. It should also be noted that only Intel VT-x based systems are supported in the current build. For more information on Windows Server Containers, see What are Windows Server Containers? on the Petri IT Knowledgebase. Known Issues In advance of the public preview of Hyper-V Containers on Windows Server 2016, this early glimpse of nested Hyper-V has a list of known issues and only supports Hyper-V on Hyper-V. Stated differently, no other hypervisor can be installed on a Hyper-V guest VM. Furthermore, only Windows 10 build 10565 or later versions are supported as guest and host operating systems for the time being. Dynamic memory must be disabled, and if networking is required, MAC spoofing must be enabled, which can be... --- ### Google Apps for Work Now Offered for Free During Transition > In a bid to steal more business users from Microsoft, Google this morning announced that it would wave the fees on its Google Apps for Work offerings. - Published: 2015-10-19 - Modified: 2024-11-19 - URL: https://petri.com/google-apps-work-now-offered-free-transition/ - Categories: Microsoft 365 - Tags: Google, Google Apps, Google Docs, News - Article Type: News In a bid to steal more business users from Microsoft, Google this morning announced that it would wave the fees on its Google Apps for Work offerings. In a bid to steal more business users from Microsoft, Google this morning announced that it would wave the fees on its Google Apps for Work online productivity offerings for businesses until their current enterprise agreement (EA) runs out. Google also claims that Google Apps for Work will be less expensive for many businesses than Office 365. "If you're worried about switching to Docs because you still have an enterprise agreement (EA) with another provider, we'll cover the fees of Google Apps until your contract runs out," Rich Rao, the head of sales for Google Apps for Work writes in a post to the Official Google for Work Blog. "We'll even chip in on some of the deployment costs and set you up for success with one of our Google for Work Partners. " Google Apps for Work comes in two basic plans: Google Apps, which costs $5 per user per month (or $50 per user per year), and Google Apps with unlimited storage, which costs $10 per month per user (or $120 per user per year). Each plan includes a business email address, video and voice calls through Google Hangouts, integrated online calendars, access to Google Docs (word processing), Google Sheets (spreadsheets) and Slides (presentations) on the web and mobile devices, project-based web sites (sort of a SharePoint alternative), security and admin controls and 24/7 email and phone support. Where the basic offering includes 30 GB of online storage per user, the unlimited storage option... --- ### Microsoft Brings Custom Visuals To Power BI Service and Desktop > Microsoft has announced that custom visuals for Power BI service and desktop is now available to everyone and that Power BI dev tools are entering preview. - Published: 2015-10-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-brings-custom-visuals-power-bi-service-desktop/ - Categories: Cloud Computing - Tags: Power BI - Article Type: News Microsoft has announced that custom visuals for Power BI service and desktop is now available to everyone and that Power BI dev tools are entering preview. Last month, Microsoft introduced a private preview of its Power BI developer tools that allowed a select group of devs to build their own custom visuals for the platform. Today, the company is taking the next step by making custom visuals available to everyone.  The company has announced that custom visuals for Power BI service and the desktop is now available to everyone using Power BI Service; desktop users will get this functionality next week. The new tools, along with the ability to easily use third-party visuals, led to the natural creation of the Power BI visuals gallery. As the name suggests, this is a gallery of new visuals that can easily be used with Power BI that are created by third-parties. Once a third-party visual has been used with the software, it operates like any other native Power BI feature, meaning you can filter them, cross highlight and control their formatting. The Power BI developers tools are also moving from ‘ private preview’ to 'public preview' which will also bringing a couple of new features. The most notable new feature is the capability to package visualizations into “. pbiviz” files that can be uploaded to the new gallery or incorporated directly into your reports. By opening up the custom visualizations path, Microsoft is instantly doubling the number of visuals available for all users. And this is only the beginning, seeing as the Power BI visuals gallery will only continue to grow, this will increase the options available to users and further increase the value proposition... --- ### Windows 10 Build 10565 Adds Nested Hyper-V > Microsoft introduced a preview of nested virtualization for Hyper-V with preview build 10565 of Windows 10, enabling Hyper-V VMs to host and run VMs. - Published: 2015-10-16 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-build-10565-adds-nested-hyper-v/ - Categories: Hyper-V - Tags: Hyper-V, Technical Preview, Virtualization, Windows 10, Windows Server 2016 - Article Type: How To I've heard a couple of feature requests for Hyper-V since I started working with Hyper-V back in 2008. Nested virtualization is one of those heavily requested features.  Microsoft repeatedly said that they would love to provide Hyper-V nested virtualization, but they didn't see the need for real world applications, outside of demos, testing, and training. As a result, we never got the feature. That was until Microsoft released the Windows 10 Build 10565, a preview of the November Threshold 2 release, to Windows Insiders. What is this feature, what does it mean to you, and how can you use it? I'll answer those questions in this post. Nested Virtualization I've talked about Hyper-V architecture on Petri. com before, and you should find my article useful in understanding Hyper-V nested virtualization. Let's start with how this nested virtualization has worked with Hyper-V before Build 10565. Hyper-V runs on the hardware of a physical host. A series of partitions run on the hypervisor. The parent partition runs the management operating system, which is the copy of Windows that you installed on the host to enable Hyper-V. A child partition is created for each guest or virtual machine, and you install a guest OS into that virtual machine. A requirement of Hyper-V is that the host's processor must have virtualization functionality enabled. The hypervisor takes ownership of these virtualization extensions and does not virtualize these extensions.  In other words, the guest has no visibility of the Intel VT-x or AMD-V features. Why... --- ### Paul Thurrott's Short Takes: October 16, 2015 > This week's other news includes a new marketing campaign for Windows 10, you're getting the Windows 10 upgrade whether you want it or not, and so much more. - Published: 2015-10-16 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-16-2015/ - Categories: Cloud Computing, Mobile, Windows 10 - Tags: News - Article Type: Opinion This week's other news includes a new marketing campaign for Windows 10, you're getting the Windows 10 upgrade whether you want it or not, and so much more. Because I've been to New York four times in the past month, this week's other news includes a new Microsoft/PC makers marketing campaign for Windows 10, you're getting the Windows 10 upgrade whether you want it or not, the real reason Microsoft moved Ignite from Chicago to Atlanta, Netflix called out for its baloney, and Microsoft pushes Mac users to switch. PC does whaat? ! ? Microsoft is teaming up with its PC maker partners for a change and cross-promoting Windows 10 and the new PC designs on which it runs. As part of this promotion, a new ad campaign called---yes, really---"PC Does What? "---will showcase HP, Dell, and Lenovo hardware, plus Intel's vaunted microprocessors, and try to convince the 500 million people or so still using old PCs to pull out their checkbooks and upgrade. I'm all for getting as many people as possible on Windows 10. Well, except for this next thing... . Microsoft admits that it is delivering Windows 10 upgrade to Windows 7/8 users who did not request it The good news? It's all just a big misunderstanding. I've received numerous emails from readers using Windows 7 or Windows 8. x who are suddenly presented with a non-refusable offer in Windows Update to upgrade to Windows 10 ... even though they never had agreed to such a thing. After hours of conspiracy theory silliness, however, Microsoft finally came clean. "As part of our effort to bring Windows 10 to existing genuine Windows 7 and Windows 8. 1 customers, the Windows... --- ### Microsoft Admits Windows 10 Was Accidently Downloaded On Some Computers > Microsoft has said that some users accidentally had Windows 10 download on to their machine but the OS was not installed as that requires user input. - Published: 2015-10-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-admits-windows-10-accidently-downloaded-computers/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News Microsoft has said that some users accidentally had Windows 10 download on to their machine but the OS was not installed as that requires user input. Microsoft has set an ambitious goal for Windows 10, one billion installs within three years and to help get users to adopt the OS, the company is offering free upgrades to most Windows users. Additionally, the OS is being delivered via Windows Update and is supposed to be an entirely opt-in process but the company has said that some users had the OS download even though they did not ask for the update. The free Windows 10 update is supposed to be an optional update for Windows 7 and 8 users but the update was being selected by default for download for some users resulting in the sizeable OS being downloaded. Microsoft issued the following statement to Ars Technica about the issue: "As part of our effort to bring Windows 10 to existing genuine Windows 7 and Windows 8. 1 customers, the Windows 10 upgrade may appear as an optional update in the Windows Update (WU) control panel. This is an intuitive and trusted place people go to find Recommended and Optional updates to Windows. In the recent Windows update, this option was checked as default; this was a mistake and we are removing the check. " Fortunately, even if these files were downloaded automatically, the installation process does require user input; Windows 10 was not being installed without user permission. Still, for those who have little disk space, the extra bits being downloaded can present an issue. The company says that the Windows 10 update being automatically checked for download... --- ### IT Career Advice: Don’t Be That Other IT Pro > IT veteran Jeff Hicks shares his thoughts on the nature of lazy IT pros, along with symptoms that are commonly associated with this group of people. - Published: 2015-10-15 - Modified: 2015-10-15 - URL: https://petri.com/it-career-advice-dont-be-that-other-it-pro/ - Categories: Windows Server - Tags: Career, Career Advice, Editor's Pick - Article Type: Opinion IT veteran Jeff Hicks shares his thoughts on the nature of lazy IT pros, along with symptoms that are commonly associated with this group of people. Over the last few months I've interacted with a number of IT pros between conferences, social media platforms, and online forums. Often the conversation starts with PowerShell or DevOps, which is always a good thing as far as I'm concerned. But then talk turns to "the other guy. " I'm a bit blunt and refer to them as lazy, and you might have encountered them as well. I do have to admit that I am a bit conflicted on the matter. On one hand, I want to help people learn new technologies like PowerShell to help them do their jobs and advance their careers. But at some point I feel these type of people aren't even trying. A Look at the IT Pro That Seeks Easy Answers These are the people who post a question in a forum like this: I am new to PowerShell but need a script to create 1000 new user accounts and setup a SharePoint home folder with restricted access. And that's it. To me, these are the most egregious examples of laziness. At worse, the poster is looking for a solution that someone has already created or seems to expect someone to write big parts of such a script. Now, I get that IT pros are often overworked, and it's easy to bring up Google and look for a solution to your problem. But all this proves is that you are good at using Google as part of your job. If I were an IT manager that... --- ### Microsoft Lumia 950: Dead on Arrival? > Russell Smith discusses why the Lumia 950 and 950 XL won't be money down the drain if you're in the market for a new Windows Mobile handset. - Published: 2015-10-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lumia-950-dead-arrival/ - Categories: Mobile - Tags: Windows 10, Windows Mobile - Article Type: Opinion Russell Smith discusses why the Lumia 950 and 950 XL won't be money down the drain if you're in the market for a new Windows Mobile handset. Before Microsoft's hardware event on October 6th in NYC, we were already pretty familiar with the specs and design of the new Lumia flagship phones, the 950 and 950 XL, which are due to be released this November. Many had already commented on the uninspiring visual design, but until you've seen the devices in person and held them in your hands, it might be a little early to be judging. Lumia 950. (Image Credit: Microsoft) A week has passed since the event and apart from some of the hands-on videos that appeared from journalists in attendance, much of the limelight was taken by the new Surface Book, which ought to make MacBook owners salivate. Although I might be in the market for a new notebook at some point in the next 18 months, considering the Surface tablet has never been on sale in my neck of the woods, I likely won't see the Surface Book on the shelves anytime soon. But the Lumia 950 and 950 XL will definitely be available to purchase and quite possibly before most of North America gets its hands on these devices, similar to the much praised mid=range handset, the Lumia 640, which was released in spring 2015. Lumia 640 versus 950 The dual-SIM 640 is my daily driver, and by and large, I'm happy with the device. However, there are a couple of reasons why I'd consider an upgrade on the release of the Lumia 950. The camera in the 640... --- ### Microsoft Moves Ignite 2016 from May to September, Takes The Show To Atlanta > Microsoft has announced that they will be moving their Ignite conference from Chicago to Atlanta and that it will be held in September. - Published: 2015-10-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-moves-ignite-2016-may-september-takes-show-atlanta/ - Categories: Main - Tags: Editor's Pick, Ignite, News - Article Type: News Microsoft has announced that they will be moving their Ignite conference from Chicago to Atlanta and that it will be held in September. Last year, Microsoft held its first annual Ignite conference in Chicago but that is a thing of the past as the company has announced today that Ignite will be moving to Atlanta and occurring in September. If you are planning to attend this event, you can pre-register now at the link at the bottom of this post. Microsoft did not explicitly say why the venue was moved but there were complaints last year about serious congestion issues in Chicago but a more plausible reason may be that the venue in Chicago could not accommodate the new dates that Microsoft has selected. Last year, Ignite followed directly after Build which made it strenuous for anyone who wanted to attend both events so the new late summer dates should make that crowd happy. In addition to Ignite, Microsoft also posted dates for its other large events with Convergence happening April 4-7th in New Orleans and WPC being held July 10-14 in Toronto. These types of events are critical for Microsoft as it is one of the few times during the year that they can reach out directly to their to customers of all scale. Even though Microsoft has teams catered to working with teams of all sizes, it’s nearly impossible for them to visit all of their small and medium sized customers which means these events offer a touch-point for communication. View: Ignite Landing Page --- ### Microsoft Adds To Azure’s Data Security Appeal, New Encryption Features Coming Soon > Microsoft has announced several new data security features for Azure's SQL services that include addition encryption scenarios and a lot more. - Published: 2015-10-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-adds-azures-data-security-appeal-new-encryption-features-coming-soon/ - Categories: Microsoft Azure - Tags: Azure, Editor's Pick, Microsoft SQL Server, News - Article Type: News The cloud, one of the modernizations of big data and the computing industry, has brought about a significant change in the way corporations conduct their business. By using these services, a company can lower its cost of doing business while increasing availability of their services by letting Microsoft, Amazon or Google host their tools and data. But, the question that is always part of the conversation when you let a third-party host your sensitive corporate data is security and Microsoft is taking additionally steps today to help make sure Azure is an industry leader in this field. To help corporations move to the cloud and feel more secure about this process, Microsoft is announcing new security feature availability for Azure SQL Database. Listed below are the new features that are coming soon in either public preview or in general availability: Always Encrypted will be in public preview by the end of the month.  Always Encrypted helps you protect sensitive data without having to relinquish the encryption keys to Azure SQL Database. Data remains encrypted at all times - in transit, in memory, in disk and even during querying processing. Transparent Data Encryption will be generally available by the end of the month.  Transparent Data Encryption helps you meet compliance requirements by encrypting your databases, associated backups, and transaction log files at rest without requiring changes to your applications. Azure SQL Database supports for Azure Active Directory (Azure AD) authentication in public preview now. Azure AD authentication provides an alternative to SQL... --- ### PowerShell Problem Solver: IP Resolution Tricks > Jeff Hicks provides tips and tricks for resolving computer names to IP addresses using Windows PowerShell. - Published: 2015-10-14 - Modified: 2024-12-03 - URL: https://petri.com/powershell-problem-solver-ip-resolution-tricks/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver - Article Type: How To Jeff Hicks provides tips and tricks for resolving computer names to IP addresses using Windows PowerShell. In today's PowerShell Problem Solver, we'll wrap up a series of articles that began with a simple request to update a CSV file of computer information with IP addresses. PowerShell Problem Solver Updating CSV Files PowerShell Problem Solver: Fun with CSV Imported Objects As I mentioned at the end of the last article, using Test-Connection to resolve a computer name to IP may not always be an option. So instead of asking the computer for its IP address, we'll ask DNS. I'm going to use the same CSV file of unrevised computer information. Our source of computers (Image Credit: Jeff Hicks) The goal is to get the missing IP addresses so that I can eventually export the data back to a CSV file. If you are running Windows 8. 1 or later, then you should have the DNSClient module. Within that module is a cmdlet called Resolve-DnsName, which is very easy to use. Using Resolve-DnsName (Image Credit: Jeff Hicks) I'm going to assume you will take a few minutes to read cmdlet help for Resolve-DnsName. I did, and I can use it to find the address for CHI-DC02. ​ Resolving a computer name (Image Credit: Jeff Hicks) I can update an individual entry like this: ​ Verifying the results (Image Credit: Jeff Hicks) I should point out that this command worked with a Netbios name because the computer was online. If I try... --- ### Support For SQL Server 2005 Ends In Less Than 6 Months > If you are running SQL Server 2005 you need to be aware that support for that platform is ending in less than six months. - Published: 2015-10-14 - Modified: 2024-09-04 - URL: https://petri.com/support-sql-server-2005-ends-less-6-months/ - Categories: SQL Server - Tags: Editor's Pick, Microsoft SQL Server, News - Article Type: News If you are running SQL Server 2005 you need to be aware that support for that platform is ending in less than six months. If you are running SQL Server 2005 you need to be aware that support for that platform is ending in less than six months. Specifically, on April 12th, 2016 extended support will come to an end which means no more support of any form. Because the software will no longer be patched, this opens a new attack vector for external threats. If you are currently running SQL Server 2005, you need to kick your migration to a newer version of the software, such as Server 2014, into high-gear to make sure you have fully migrated once April arrives. Considering that the software is over a decade old, Microsoft has supported the software for a reasonable length of time and moving to a modern version of SQL Server will net your deployment optimization and security enhancements. Microsoft says that when comparing SQL 2014 to 2005, the latter has been benchmarked to be up to 13x faster than its predecessor and there are up to 30x transactional performance gains In-memory across workloads. There are quite a few other reasons why migrating from 2005 to 2014 is beneficial for your operations that you can read about here but the most important one is product support. After April of next year, running SQL Server 2005 will not only expose your company to unnecessary security vulnerabilities, it will also show up as a line item on your next IT audit report as well. --- ### HP Teaming with 3M to Combat "Visual Hacking" > HP and 3M are teaming up to combat a form of digital theft that is so obvious in retrospect that I'm surprised no one has tackled this problem before in such an integrated fashion. - Published: 2015-10-14 - Modified: 2024-09-04 - URL: https://petri.com/hp-teaming-3m-combat-visual-hacking/ - Categories: Security - Tags: News - Article Type: News HP and 3M are teaming up to combat a form of digital theft that is so obvious in retrospect that I'm surprised no one has tackled this problem before in such an integrated fashion. For many years, Microsoft, its platform partners, and independent third parties have worked to secure PCs in every conceivable way. But HP and 3M are teaming up to combat a form of digital theft that is so obvious in retrospect that I'm surprised no one has tackled this problem before in such an integrated fashion. It's called "visual hacking," and if that term isn't familiar to you, you will at least understand what it means: the simple act of looking at someone else's PC, tablet, or phone screen and obtaining---inadvertently or otherwise---private corporate data. "With more and more PCs being used in public places, visual hacking---the act of collecting confidential information by looking at someone else's screen---is a paramount security risk in today's business environment," HP Commercial PC vice president and general manager Alex Cho said in a prepared statement. "We're working with 3M to deliver world-class solutions that not only protect the privacy of the individual user, but also provides security for valuable company assets. " Visual hacking is as old as the PC industry, of course, and companies like 3M have been selling protective covers that darken or blur the screen to prevent casual data theft for years. But with the rise of millennials in the workforce and the "bring your own device" (BYOD) movement, people are out in the world accessing private corporate data in increasing numbers. And for a generation of workers for whom work is not so much a... --- ### Windows 10: Disk Optimization > Learn a quick trick in disk optimization in Windows 10 with the redesigned Reset and Refresh features that are designed to reduce the OS footprint. - Published: 2015-10-13 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-disk-optimization/ - Categories: Windows 10 - Tags: Mobile, storage, Windows 10 - Article Type: Overview Learn a quick trick in disk optimization in Windows 10 with the redesigned Reset and Refresh features that are designed to reduce the OS footprint. As solid-state disks (SSDs) become more ubiquitous, the amount of available disk space is being squeezed ever tighter due to the high cost of SSDs compared to traditional mechanical drives. To help address this problem, Microsoft has redesigned the Reset and Refresh features in Windows 10 so that they no longer require dedicated recovery images, and system files are compressed if a number of conditions are met. Reducing the OS footprint in Windows 10 (Image Credit: Microsoft) Reset and Refresh without a Recovery Image Introduced in Windows 8, Reset enables you to wipe Windows and restore a device to factory defaults, while a Refresh reinstalls Windows but preserves your personal files, settings and Windows Store apps. When performing a Reset or Refresh in Windows 10, instead of using a recovery image that would otherwise consume 4GB of disk space, the operating system is reinstalled using files in the WinSxS folder, which is a component store that contains all the files required by the OS. Because components are updated in WinSxS when the OS is patched using Windows Update, a Reset or Refresh operation in Windows 10 restores the OS to a more or less fully-patched state; with the exception of updates made to components in the last 30 days, to avoid reintroducing any problems caused by recent changes to the OS. In Windows 10, the recimg command line tool has been deprecated, but in Windows 8 it's possible to additionally preserve desktop applications... --- ### VMworld 2015 Europe: Refresh to Cloud Management Platform to Accelerate DevOps Initiatives > At VMworld 2015 Europe, VMware announced changes to its cloud management platform to accelerate DevOps across public and private cloud environments. - Published: 2015-10-13 - Modified: 2024-11-19 - URL: https://petri.com/vmworld-2015-europe-refresh-cloud-management-platform-accelerate-devops/ - Categories: VMware - Tags: Editor's Pick, vmware - Article Type: News At VMworld 2015 Europe, VMware announced changes to its cloud management platform to accelerate DevOps across public and private cloud environments. At VMworld 2015 Europe, VMware announced a major refresh to its hybrid cloud management platform, which includes significant updates to VMware vRealize Automation and VMware vRealizes Business Standard solutions. VMware's Motto: Living in a World of Choice I had to chance to speak with VMware’s Sajai Krishnan, Vice President Product Marketing, Cloud Management Business Unit regarding the announcement. According to Krishnan, the update is a reflection of today's rapidly evolving technology landscape that requires organizations to adapt to remain competitive. In my meeting with VMware, the company acknowledges that organizations and their IT teams are challenged with the fact that they must be agile with respect to the delivery of apps and services, while also maintaining security standards. The company has addressed this need with its hybrid cloud model that provides automation, operation, and business solutions to organizations for quite some time. VMware's motto is that IT pros are living in a world of choice. Regardless of whether organizations are operating on private or public cloud solutions, VMware provides a variety of solutions for different infrastructure and business needs. If organizations want to go the public cloud route, then VMware provides support for big players, such as Microsoft Azure or Amazon Web Services, and the company has its own public cloud, vCloud Air, too. VMware Product Updates Today's announcement builds off that motto by providing a single integration solution that allows organizations to easily adopt a software-defined data center architecture. Notable improvements include:... --- ### PowerShell 5.0 Tutorial: Example-Driven Parsing using ConvertFrom-String > Russell Smith shows you how to easily parse complex text files using ConvertFrom-String in PowerShell 5.0. - Published: 2015-10-12 - Modified: 2024-09-04 - URL: https://petri.com/powershell-5-0-tutorial-example-driven-parsing-using-convertfrom-string/ - Categories: PowerShell - Tags: Editor's Pick, parsing, PowerShell - Article Type: How To Russell Smith shows you how to easily parse complex text files using ConvertFrom-String in PowerShell 5.0. Not to be confused with ConvertFrom-StringData, a cmdlet available in previous versions of PowerShell, ConvertFrom-String in PowerShell 5. 0 provides an easy way to parse complex text files using machine learning. The ability to parse complex text files is one of PowerShell's many strengths, but using the SubString method and regular expressions can involve writing a lot of code to get the desired results. PowerShell 5. 0's ConvertFrom-String cmdlet has two modes that can be used to parse text: Basic Delimited Parsing, and Auto-Generated Example-Driven Parsing. Delimited parsing uses a character, such as a space or semicolon, to determine where data stops and starts: Name,Email,Office Russell Smth,Russell. Smith@contoso. com,London David Jones,David. Jones@contoso. com,Manchester For more information on parsing strings using regular expressions, see PowerShell Problem Solver: PowerShell String Parsing with Regular Expressions on the Petri IT Knowledgebase. To learn how to use ConvertFrom-String Basic Delimited Parsing, take a look at Basic Delimited Parsing using ConvertFrom-String in PowerShell 5. 0. Auto-Generated Example-Driven Parsing makes it easy to parse more complex text files by supplying PowerShell with a template of how the data usually looks. For instance, the output of a ping command can be parsed by giving an example, in the form of a template, of how the output looks. From the template, PowerShell learns how to parse the ping command's output using FlashExtract, a machine learning tool developed by Microsoft Research, which is also used in Excel’s FlashFill and FlashConvert commands for automatically creating regular expression extraction tools from samples of highlighted data. Auto-Generated Example-Driven... --- ### Introducing Microsoft Azure Backup Server > Microsoft has started Project Venus by launching Microsoft Azure Backup Server, which offers more backup functionality and a local disk repository. - Published: 2015-10-12 - Modified: 2015-10-12 - URL: https://petri.com/introducing-microsoft-azure-backup-server/ - Categories: Microsoft Azure - Article Type: Overview Microsoft has started Project Venus by launching Microsoft Azure Backup Server, which offers more backup functionality and a local disk repository. Microsoft announced Project Venus at the Worldwide Partner Conference earlier this year. Venus is a plan to gradually improve Microsoft Azure Backup, a cloud backup service that's based on low-cost block blob storage. Microsoft recently released the first phase of Venus, the Microsoft Azure Backup Server (MABS), which will expand what Azure Backup can protect from your on-premises infrastructure and offer an on-premises local backup repository. I'll explain what this product is in this article. A Look at Azure Backup's History I like the potential of Azure Backup, but like Azure Site Recovery (ASR) when it was launched, Microsoft's cloud backup service wasn't suitable for the market that's most likely to use it -- the small-to-medium enterprise (SME). I was one of many that gave Microsoft feedback on these kinds of services, and I wanted an integrated solution that works best with my on-premises infrastructure and fits in with my plans for the cloud. Azure Site Recovery started to evolve late in 2014, and it's a superb solution both for SMEs and large enterprises, whether they have vSphere, Hyper-V, or physical machines running Windows or Linux. A similar change has started to happen to Azure Backup, too. What has been missing from Azure Backup up to now? Support for SME: The focus of Azure Backup hybrid backup services for on-premises solutions was on customers with System Center Data Protection Manager (DPM). Unfortunately, DPM is licensed via the System Center Server Management License (SML), which is unaffordable for SMEs, as... --- ### Dell's $67 Billion Acquisition of EMC to be Biggest Tech Deal Ever > PC giant Dell announced this morning that it would acquire storage giant EMC in a deal valued at $67 billion. EMC will merge with Dell, but VMware will not. - Published: 2015-10-12 - Modified: 2024-09-04 - URL: https://petri.com/dells-67-billion-acquisition-emc-biggest-tech-deal-ever/ - Categories: Virtualization, VMware - Tags: Dell, EMC, News, vmware - Article Type: News PC giant Dell announced this morning that it would acquire storage giant EMC in a deal valued at $67 billion. EMC will merge with Dell, but VMware will not. PC giant Dell announced this morning that it would acquire storage giant EMC in a deal valued at $67 billion. Under the terms of the deal, EMC would merge into and become part of Dell, which is privately owned. And VMware---of which EMC owns a controlling interest---will remain a separate, publicly-traded company. Dell will retain EMC's controlling interest in VMware. "The combination of Dell and EMC creates an enterprise solutions powerhouse bringing you industry-leading innovation across your entire technology environment," Dell founder and CEO Michael Dell writes in an open letter to customers. "Our new company will be incredibly well-positioned for growth in the most strategic areas of next generation IT including digital transformation, software-defined data center, converged infrastructure, cloud, mobile and security. We are extremely advantaged by having a foundation to build upon that features two of the world’s greatest technology franchises with leadership positions in servers, storage, virtualization and PCs. " Dell, once the worldwide leader in PC sales, has fallen to the number three position behind Lenovo and HP, and like other traditional PC companies has struggled as the industry shifted to more mobile devices like smart phones and tablets, and to online services instead of traditionally-packaged software. In early 2013, Mr. Dell announced plans to scale back and take Dell private again, triggering an attempt by activist investor Carl Icahn to wrestle control of Dell away from its founder. After that failed, Mr. Dell and investors from Silver Lake and elsewhere reached a $24. 4 billion... --- ### Financial Service Firms Warming Up To Windows 10, Bloomberg’s Terminal Now Compatible > The financial service sector is not typically one that uses the words of ‘fast adoption’ but Windows 10 is starting to show penetration into this market. - Published: 2015-10-12 - Modified: 2024-09-04 - URL: https://petri.com/financial-service-firms-warming-windows-10-bloombergs-terminal-now-compatible/ - Categories: Windows 10 - Tags: Financial Services, Windows 10 - Article Type: News The financial service sector is not typically one that involves the words of ‘fast adoption’ or ‘cutting edge’ but Windows 10 is starting to show penetration into this market. The financial service sector is not typically one that involves the words of ‘fast adoption’ or ‘cutting edge’. These services need to depend on rock solid solutions because not only is the bank’s money at risk, but so is its customers. So when you hear that financial firms are warming up to Windows 10, it’s not only a win for Microsoft but also for the financial service sector who has traditionally been known to lag behind on adopting new technology. At Sibos this week, a financial services event which is taking place in Singapore, it was noted that Bloomberg’s Professional Service, more widely known as ‘The Terminal’ is now compatible with Windows 10 desktops. This is a big win for Microsoft and Windows 10 as more than 325,000 customers in 174 countries use this tool to assist with trading in the various markets around the world. With the terminal now supporting Windows 10, it means that those customers, if they so choose, can move to Windows 10 and continue to use one of the most powerful trading platforms that is pivotal to many firms. In addition to Bloomberg, SunGard now has a series of Universal apps for its approximately 14,000 customers and Deniz Bank also announced a new initiative that works with Azure to support offsite locations with mission critical data. And then there is Bank of America, who has previously said that they plan to roll-out Windows 10 as quickly as possible. When you couple this type... --- ### Azure IaaS Announcements at AzureCon > Microsoft announced a number of improvements to Azure, including new services, price reductions, and virtual machines that affect IT pros. - Published: 2015-10-09 - Modified: 2024-09-04 - URL: https://petri.com/azure-iaas-announcements-azurecon/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Backup, Cloud, cloud computing, Containers, Docker, hybrid cloud, Security, virtual machines - Article Type: News Microsoft announced a number of improvements to Azure, including new services, price reductions, and virtual machines that affect IT pros. Anyone that follows Azure closely knows that changes happen in Microsoft's infrastructure-as-a-service (IaaS) and platform-as-a-service (PaaS) cloud on a weekly basis. Typically these improvements are given a soft announcement via a blog. But every few months, Microsoft has an opportunity, either at a large in-person event or an online event, to make a large set of significant announcements. Microsoft ran an online event called AzureCon at the end of September and used this as a venue to launch a number of new Azure services. I'll summarize the changes that are relevant to IT pros in this article. Microsoft Azure Momentum Azure continues to grow. Some of the huge numbers that Microsoft have announced include: There are 777 trillion storage transactions in Azure every day. Over 500 million user accounts are stored in Azure Active Directory Over 40% of revenue is created by ISVs and start-up businesses 1 million CPU cores were added to Azure in the last 45 days, which was stated at a Microsoft Ireland event on October 8 Azure Security Center This new service recognizes that those who are using the cloud know little about securing the cloud. The new Azure Security Center (ASC), which will be broadly available by the end of 2016, will provide a central console to manage the security of your deployment in Azure. You can do the usual things that you would expect in a security solution, such as policy deployment, detection, alerting and reporting, but ASC provides intelligence, too... . --- ### Dell Rumored to be In Merger Talks With EMC > Aidan Finn weighs whether Dell is nuts for considering an acquisition of EMC. Would Microsoft own a share of VMware? How can this work? - Published: 2015-10-09 - Modified: 2024-11-19 - URL: https://petri.com/dell-rumored-merger-talks-emc/ - Categories: Cloud Computing - Tags: Dell, Editor's Pick, EMC, Microsoft, vmware - Article Type: Opinion Aidan Finn weighs whether Dell is nuts for considering an acquisition of EMC. Would Microsoft own a share of VMware? How can this work? It's been a busy few days, so I decided to catch up with some laughs by reading Paul Thurrott’s Short Takes, and I was stunned to read: Dell in talks to acquire EMC What could this mean to IT pros? I've got some opinions on this, but keep in mind that I'm just another tax-paying Joe and not some venture fund genius. The Dell Privatization This just can't be possible. Wasn't Dell supposed to be in talks to buy Citrix? I even though that the Citrix story was laughable. It's only a short time since Dell was privatized by Michael Dell, a transaction that cost $24. 9 billion. By all reports, the privatization was a bloody affair, mainly thanks to competition from Carl Icahn. Let’s summarize it by saying that Dell and Icahn probably don't send each other birthday cards. Private equity firm, Silver Laker Partners, was a headline funder of this takeover, but Microsoft watchers noted that Microsoft provided $2 billion to the takeover group. A Look at Dell and Microsoft's Relationship Dell has always been an important partner to Microsoft. When Microsoft tried to compete against the Apple iPod, Dell was quick to build an MP3 player based on Microsoft's technology. Dell has been there with Windows devices and servers over the years. Most recently, Dell has partnered with Microsoft to supply SAS and JBOD hardware for Windows Server Storage Spaces, and they are one of the partners building hardware for Windows Server 2016 Storage Spaces Direct.  Also, the two... --- ### Paul Thurrott's Short Takes: October 9, 2015 > Because I'm so tired my eyes hurt, this week's other news includes a legal aid to Microsoft's email court case, PC sales hit another tough quarter, more. - Published: 2015-10-09 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-october-9-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion Because I'm so tired my eyes hurt, this week's other news includes a legal aid to Microsoft's email court case, PC sales hit another tough quarter, more. Image courtesy of Matthew Morandi ‏(https://twitter. com/Yoshi1up/status/625456301477212160/photo/1) Because I'm so tired my eyes hurt, this week's other news includes a potential legal aid to Microsoft's email court case, PC sales hit another tough quarter with even Mac sales slowing, others are finally waking up to Microsoft's HoloLens deceptions, Dell may buy EMC, Elon Musk takes on Apple car, and mobile search finally overtakes PC search. Microsoft cites recent ruling to bolster its email court case Microsoft has seized on a recent European Court ruling that the Safe Harbor agreement that governs personal data transfers between Europe and the U. S. is invalid, stating that it bolsters a related legal battle it's fighting here in the U. S. You may recall that the Department of Justice (DOJ) has tried to compel Microsoft to release personal data that is stored in an Ireland-based data center and that Microsoft has fought this request, noting that the DOJ has no jurisdiction over internationally-stored data. "This opinion could subject U. S. companies to charges of violating European law any time they transfer personal data to the U. S. , especially when U. S. law-enforcement agencies instigate the transfer," Microsoft counsel E. Joshua Rosenkranz wrote in a filing to the U. S. Court of Appeals for the Second Circuit, which is overseeing the email case. Interesting. "Could Rogue Software Engineers Be Behind VW Emissions Cheating? " Software doesn't hurt people. Software developers hurt people. PC sales fell over 9 percent in Q3 2015 Based on data... --- ### PowerShell 5.0 Just Enough Administration (JEA) Part 2: Creating Toolkits and Understanding Logs > Learn how to create your own JEA Toolkits (Endpoints), and monitor the logs for user activity. - Published: 2015-10-08 - Modified: 2024-11-19 - URL: https://petri.com/powershell-5-0-just-enough-administration-jea-part-2-creating-toolkits-and-understanding-logs/ - Categories: PowerShell - Article Type: How To Learn how to create your own JEA Toolkits (Endpoints), and monitor the logs for user activity. In the first part of this series, PowerShell 5. 0 Just Enough Administration (JEA) Part 1: Understanding JEA and Configuring the Demo Toolkit, I showed you how to install the xJEA PowerShell module, which includes the necessary Desired State Configuration (DSC) resource to configure JEA on one or more servers running the Windows Management Framework 5. 0 using the supplied setup script. In the second and final part of this series, we'll define our own JEA toolkits, and check the logs to get information on what commands were run, when, where and by which users, via the JEA activity log and the Windows Event Log. Define a JEA toolkit In the first part of this series, we created a JEA toolkit that enabled users who connected to run a limited set of commands to kill specific processes on the device, or restart services. Creating a list of cmdlets, parameters and functions that are available in the toolkit can be a little complicated, because it isn't necessarily obvious how to work with the DSC syntax. But help is at hand in the form of the JEA Toolkit Helper. Download and run the JEA Toolkit Helper To expedite the creation of a DSC script to create our own JEA toolkit, I recommend downloading the JEA Toolkit Helper, which is free from Microsoft's website. The toolkit helper comes in the form of a PowerShell script, which is supported by a GUI. Before running the script, if you are not logged in using... --- ### Memory Compression in Windows 10 Threshold 2 > Learn about upcoming changes to Memory Manager in Windows 10 Threshold 2, and how memory compression will be used to improve performance. - Published: 2015-10-08 - Modified: 2024-09-04 - URL: https://petri.com/memory-compression-in-windows-10-threshold-2/ - Categories: Windows 10 - Tags: Memory, performance, Windows 10 - Article Type: Overview Learn about upcoming changes to Memory Manager in Windows 10 Threshold 2, and how memory compression will be used to improve performance. In this Ask the Admin, I'll provide you with a quick rundown of the changes to memory management in Windows 10 Threshold 2, which is slated for release in November. Most technical users of Windows are familiar with the concept of the page file, which allows Windows to swap memory out to disk, so that under low memory conditions, pages can be purged from physical memory and loaded back into RAM from disk at a later time. While this prevents Windows from running out of memory, loading pages into RAM can cause disk thrashing, which in turn negatively impacts performance. In Windows 10 Threshold 2 or build 10525, Memory Manager compresses infrequently accessed pages, typically by 40 percent, while retaining them in a new compression store that's held in physical RAM. If Memory Manager dictates that pages do need to be swapped out to disk, they are already considerably smaller in size, reducing the amount of disk I/O required during read/write operations. Memory compression in Windows 10 Prior to build 10525, when Memory Manager decides that a page hasn't been used in a while, it gets written to the modified page list and is then written to disk before being moved to the standby page list. The standby list caches pages that can be taken and used by other apps, but if the original process needs the page back straightaway, it can be reclaimed quickly -- otherwise known as a soft fault. Hard faults occur when a page must... --- ### Microsoft: An Olive Branch And A Pistol > Microsoft's software and hardware strategy is evolving and with the new hardware being announced by the company, OEMs are being put on notice. - Published: 2015-10-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-an-olive-branch-and-a-pistol/ - Categories: Hardware - Tags: Editor's Pick, Hardware, News, Surface, Surface Book - Article Type: News Microsoft's software and hardware strategy is evolving and with the new hardware being announced by the company, OEMs are being put on notice. This week, Microsoft took to the stage in NYC where the company showed off their next generation hardware. Everything from a new 2-1 laptop style device to premium phones were shown off but what became clear, if you read between the lines, is how Microsoft's strategy has evolved under the Nadella administration. Earlier this year, we saw Nadella and other Microsoft figures make appearances on a variety of different stages including, Apple, VMware and Salesforce too. Prior to that we saw the company sign deals with companies like Dropbox and Box to make it easier for those users to work within Office and access their content. Microsoft likes to think of these new partnerships as "building bridges" but what we are now seeing is that in one hand the company is extending an olive branch to former competitors, in the other hand is a pistol to go to war with PC vendors. For several decades, the relationship between OEMs and Microsoft was quite simple, at least, on the surface. Vendors would build the hardware and Microsoft would build the software and the two would live comfortably in the marketplace as two forces that needed each other to succeed. But, like all things over time, the market changed and Microsoft found its vendors not keeping up with the likes of Apple or pushing new boundaries with new devices so the company made the decision to start building hardware, initially only a tablet (Surface RT). While the company's first few... --- ### Microsoft Announces Facebook, Instagram, Box, Twitter, and more Universal Apps for Windows 10 > Microsoft announces soon to be made available Windows 10 Universal Apps from Facebook, Instagram, Twitter, Netflix, and more. - Published: 2015-10-07 - Modified: 2015-10-07 - URL: https://petri.com/microsoft-announces-facebook-instagram-box-twitter-and-more-universal-apps-for-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick, Mobile, Universal apps, Windows 10, Windows Mobile - Article Type: News Microsoft announces soon to be made available Windows 10 Universal Apps from Facebook, Instagram, Twitter, Netflix, and more. It was only a couple of weeks ago that I opined on Petri about the lack of Windows 10 Universal Apps from the big players, and despite false rumours that Google were going to announce the availability of Universal Apps at Microsoft's Windows 10 hardware event yesterday in New York, Microsoft did say that Universal Apps for Facebook, Facebook Messenger, Instagram, Twitter, Netflix, Box, and more would soon be made available. Although Google didn't show up yesterday, we could still see Google Maps and other popular Google apps, such as YouTube, appear on Windows 10 in the future. There were also some other noticeable absences, such as Snapchat, even though an app for Windows Phone was promised some time ago, albeit with no ETA. But the announcement that Facebook will soon provide Universal Apps for Windows 10 is important, because the current Instagram client, which has never come out of beta, is woefully inadequate, and the Facebook newsfeed client was developed by Microsoft, and doesn’t have feature parity with its Android and iOS counterparts. Additionally, the Facebook newsfeed and Messenger are integrated in one app on the desktop, which is an oddity that needs to be amended. Apps are key to the future of Windows Mobile The lack of support from major players has been a particular problem for Microsoft's flagging mobile platform, as there are many third-party alternatives for Instagram, Twitter, and other services that lack official clients for Windows Phone. This... --- ### PowerShell Problem Solver: Fun with CSV Imported Objects > Use PowerShell to transform data from CSV files via objects in the pipeline. - Published: 2015-10-07 - Modified: 2024-12-03 - URL: https://petri.com/powershell-problem-solver-fun-csv-imported-objects/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, PowerShell Problem Solver, Scripting - Article Type: How To Use PowerShell to transform data from CSV files via objects in the pipeline. The last several PowerShell Problem Solver articles have sprung from a need to update a CSV file that contains computer information with IP addresses. I've been using this scenario to demonstrate a number of PowerShell commands like Import-CSV, Export-CSV and Test-Connection. Related: PowerShell Problem Solver: CSV Import Tricks and Tips Related: PowerShell Problem Solver Updating CSV Files In this article, we're going to pick up where we left off, and that includes exploring how to think about this process with objects instead of text in a file. As with many of my article series, take a few minutes to get caught up on the previous articles if you're just joining us. Today, I'm going to use a copy of my computers. csv file that has some IP information already entered, and I know the addresses are valid. ​ I'm going to import this CSV into my PowerShell session. ​ You should know by now that $computers is a collection of custom objects. Displaying an imported object (Image Credit: Jeff Hicks) Some of these objects will have an empty IPAddress property. As I showed last time, I can use a regular expression pattern to skip objects with an IP address and use Test-Connection to get the IP address for those that are lacking. ​ I inserted a Write-Host command because you wouldn't know what is happening, otherwise. Updating objects with an IP address (Image Credit: Jeff Hicks) Now look... --- ### Current Status Episode 29: Data Protection in the Cloud with Gina Minks > Current Status co-hosts talk about data protection in the cloud with Gina Minks of Spanning. - Published: 2015-10-06 - Modified: 2015-10-06 - URL: https://petri.com/current-status-episode-29-data-protection-in-the-cloud-gina-minks/ - Categories: Current Status - Article Type: Opinion Current Status co-hosts talk about data protection in the cloud with Gina Minks of Spanning. Join us this Thursday, October 8, 2015 at 10:15 pm EDT for another episode of Current Status. During this episode, Theresa Miller, Phoummala Schmitt and Melissa Palmer talk with guest Gina Minks (@gminks), with Spanning. As more and more organizations move to the cloud, we determine how corporate data in the cloud data retention aligns with our corporate policies. Thinking about moving to the cloud or are you already there? Cloud-shaped unicorns in the sky?   Real world considerations? Let's look more closely at why or why not Office 365 backup and recovery should be leveraged. --- ### Eight Million Business PCs Now Running Windows 10 > Microsoft announced at its event in NYC that Windows 10 is now running on 110 million PCs and of that base, 8 million are business machines. - Published: 2015-10-06 - Modified: 2024-09-04 - URL: https://petri.com/eight-million-business-pcs-now-running-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News Microsoft announced at its event in NYC that Windows 10 is now running on 110 million PCs and of that base, 8 million are business machines. Microsoft held its Windows 10 device event today in NYC and at the keynote, they announced 110 million installs of Windows 10 and of that figure, 8 million of them are in the enterprise. The strong interest in Windows 10 has to be a relief for Microsoft as the previous generation OS, Windows 8, was largely avoided by corporations because of its steep learning curve after it launched without a Start menu. The early adoption figures for Windows 10 into the Enterprise show promise that Microsoft will not end up with Windows 7 becoming the next Windows XP where they were forced to extend the lifecycle of the OS after corporations struggled to upgrade their internal systems. One financial institution, Bank of America, has already said that they intend to upgrade to Windows 10 as soon as possible, which is a big win for Microsoft on two fronts. First, Bank of America is a large organization and can be used as a case study to help other companies move to the new OS and second, banking institutions are generally the slowest to consider upgrading. Seeing that this bank has already announced its intentions to look at the new OS, this could be the first of a wave of companies who will go from considering Windows 10 to begin preparing to upgrade their machines. The last figure Microsoft announced for business machines running Windows 10 was 1. 5 million, so this new figure represents a sizable jump in corporate exploration... --- ### A Look at PowerShell 5.0 > Jeff Hicks takes a look at PowerShell 5.0 and how solutions in PowerShell 4.0 and 3.0 translates to the new version. - Published: 2015-10-06 - Modified: 2024-09-04 - URL: https://petri.com/fishing-powershell-5-0/ - Categories: PowerShell - Tags: Beginner - Article Type: How To Jeff Hicks takes a look at PowerShell 5.0 and how solutions in PowerShell 4.0 and 3.0 translates to the new version. In the last few articles, I shared with you some tools to help you find what you might need in PowerShell. While I wasn't explicit, everything I showed you was for PowerShell 4. 0, which would also apply to PowerShell 3. 0 as well. What about PowerShell 5. 0? With the launch of Windows 10, this also means the delivery of PowerShell 5. 0. Eventually PowerShell 5. 0 will be available for older systems where some of the techniques I've been demonstrating might still work. In other words, there might be operating system limitations and you'll simply need to try things out for yourself. Got it? For the sake of reference, this is the system that I'm using. Jeff Hick's Windows 10 build. (Image Credit: Jeff Hicks) The first major difference is that the CMD. EXE console has been overhauled, although the command buffer settings I mentioned are still present. Windows 10 Console properties. (Image Credit: Jeff Hicks) Unfortunately, the F7 technique does not work in PowerShell to access the command buffer. You can press F8 to insert commands at the prompt. Press Shift+F8 if you need to go backwards. But that's it. Interestingly, if you are in a CMD prompt, F7 works as expected. Using F7 in a CMD session. (Image Credit: Jeff Hicks) But for some reason when PowerShell is running it ignores the F7 key. The Show-Command cmdlet still works and even offers a few new parameters. The one I... --- ### Basic Delimited Parsing using ConvertFrom-String in PowerShell 5.0 > Learn how to easily parse delimited text files using ConvertFrom-String in PowerShell 5.0. - Published: 2015-10-06 - Modified: 2024-09-04 - URL: https://petri.com/basic-delimited-parsing-using-convertfrom-string-in-powershell-5-0/ - Categories: PowerShell - Tags: parsing, PowerShell - Article Type: How To Learn how to easily parse delimited text files using ConvertFrom-String in PowerShell 5.0. In today's Ask the Admin, I'll show you how to use the new ConvertFrom-String cmdlet in PowerShell 5. 0 to parse simple text files, turning unstructured strings into structured data. ConvertFrom-String provides an easy way to parse complex text files using machine learning, and while the ability to parse complex text files is one of PowerShell's many strengths, using the SubString method and regular expressions can involve writing a lot of code to get the desired results. Fortunately, PowerShell 5. 0's ConvertFrom-String cmdlet has two modes that can be used to make parsing text even simpler: Basic Delimited Parsing, and Auto-Generated Example-Driven Parsing. For more information on parsing with PowerShell, see PowerShell Problem Solver: PowerShell String Parsing with Regular Expressions. Basic parsing using ConvertFrom-String In this example, I’m going to show you how to parse the output of the arp command, which is used to display the ARP cache, and shows the MAC addresses, and their related IP addresses, of devices that have connected to local network interfaces (NICs). Log in to Windows 10 and open a PowerShell console. In the console window, type arp –a and press ENTER. The arp command in Windows (Image Credit: Russell Smith) In the command output, you’ll see a list of IP addresses, their related MAC addresses, and the physical address type, static or dynamic. Along with that, information about the network interface, and column headings is also given. Now let’s write that string data to a variable ($arp), so... --- ### Today is Microsoft's Last Stand in Mobile > I'm heading to New York City on Amtrak's Acela Express to attend the Microsoft Windows 10 Devices event, a watershed moment for the firm's mobile efforts. - Published: 2015-10-06 - Modified: 2024-11-19 - URL: https://petri.com/today-is-microsofts-last-stand-in-mobile/ - Categories: Windows 10 - Tags: News - Article Type: News I'm heading to New York City on Amtrak's Acela Express to attend the Microsoft Windows 10 Devices event, a watershed moment for the firm's mobile efforts. As I write this, I'm heading to New York City on Amtrak's Acela Express to attend the Microsoft Windows 10 Devices event. I do so with a sense of both excitement and dread because this event is a watershed moment for Microsoft and its mobile devices. There's no kind way to say it: If this generation of first-party devices doesn't succeed in the market, Microsoft's role in the industry will forever change. Granted, Microsoft's role has already changed. As Benedict Evans so ably pointed out on Twitter recently, Microsoft's relevance in the personal computing market---which commingles smart phones, tablets, and PCs of all kinds---has shrunk from nearly 100 percent in June 2007 to roughly 15 percent today. What happened in June 2007, you ask? Right. The first Apple iPhone was released. The iPhone was its own watershed moment, of course. And not just for Apple, but for the industry personal computing industry. What we've all collectively discovered is that many people---most people---can get real work done on highly mobile devices that are simpler than traditional PCs. And this, combined with the resulting shift from traditionally packaged software to online services and mobile apps, has resulted in Microsoft's slide over the past several years. "Relevance" is of course a squishy term. But I've been arguing for years that Microsoft's dominance of the PC industry hasn't transferred to any success at all in mobile computing devices, and that the result is inevitable: Windows will be the smallest of the three big personal... --- ### Windows 10 Enterprise Feature: Credential Guard > Russell Smith explains how Credential Guard in Windows 10 Enterprise can be used to protect domain user account passwords. - Published: 2015-10-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-enterprise-feature-credential-guard/ - Categories: Windows 10 - Tags: Credential Guard, Security, Windows 10 - Article Type: Overview Russell Smith explains how Credential Guard in Windows 10 Enterprise can be used to protect domain user account passwords. In this Ask the Admin, I'll explain how Credential Guard protects domain user account passwords in Windows 10 Enterprise edition. During the development of Windows 10, Microsoft touted several new security features that would make Windows 10 'the most secure version of Windows ever,' a phrase that gets rolled out every time a major new release of Windows is looming. Although Windows Hello has attracted a lot of media attention, some other features, such as Passport and Device Guard, are intended for corporate use and don't necessarily get the coverage they might otherwise deserve. Recently I was looking at the differences between Windows 10 Pro and Enterprise editions, and noticed a feature exclusive to Enterprise: Credential Guard. After scratching my head for a bit wondering what that could possibly be, it clicked that this is what Microsoft had referred to as Virtual Secure Mode (VSM) during the preview. I'd written briefly about VSM on Petri back in May, Windows 10 Security: Microsoft Passport and Virtual Secure Mode, but at that time details were scant. Now that Windows 10 has launched, what I'd originally assumed to be a feature in all SKUs, is limited for the time being to Enterprise edition. In this article, I'll dive a little further into the technical details of Credential Guard, and how it works to protect Active Directory domain credentials. Virtualization-assisted security in Windows 10 Windows 10 uses Isolated User Mode (IUM), which with the help of an Intel VT-x compatible CPU, Trusted Platform... --- ### What are Windows Server Containers? > Learn about Windows Server containers and how this virtualization technology will benefit your business. - Published: 2015-10-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-containers/ - Categories: Windows Server 2016 - Tags: Containers, Docker, Windows Server 2016, Windows Server containers, WS2016 - Article Type: Overview Learn about Windows Server containers and how this virtualization technology will benefit your business. You might be hiding under a rock over the last six to 12 months if you haven't heard of Windows Server 2016 containers. I'll explain what all this means and how containers may or may not affect how you deploy your applications. More Apps, Faster A lot of businesses, particularly in businesses that specialize in software development, are constantly looking for ways to deploy services more quickly. Machine virtualization certainly helps, but there's still a provisioning process. Although the public and private cloud has improved this, there's still a need to deploy machines, each with resource requirements and their own operating system (OS) that requires management. Machine virtualization is what most of us use for deployment, and it uses software to create a simulated machine. In this machine, there is a guest OS that provides a single user space to install and run services from. We use virtual machines from the service perspective, much like we used physical servers, where we install one service in each VM. Containers A concept called software containers appeared in the Linux world, headlined by an open source project called Docker that automates the provisioning of this mechanism. Containers are a form of application virtualization. Some readers will have heard of or used App-V, a way to virtualize desktop applications on Remote Desktop Services or PCs. Each app lives in a bubble that runs side by side with other virtualized and non-virtualized apps on the client device, sharing a single OS. Containers are a similar concept, but are designed... --- ### Paul Thurrott's Short Takes: October 2, 2015 > Because the altitude is getting to me, this week's other news includes Microsoft's new social networking features for email, and a whole lot more. - Published: 2015-10-02 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-october-2-2015/ - Categories: Office 2016 - Tags: News - Article Type: Opinion Because the altitude is getting to me, this week's other news includes Microsoft's new social networking features for email, and a whole lot more. Because the altitude is getting to me, this week's other news includes Microsoft's new social networking features for email, Microsoft offers ASUS a deal it can't refuse, Windows Update was not hacked, Microsoft wreaks havok on gaming, and Amazon screws all of us. Microsoft lets you "like" emails It has been interesting watching Microsoft integrate social networking experiences into its products, starting with SharePoint, continuing with the Yammer purchase, and then with solutions like Delve and Office Graph in Office 365. This week, Microsoft took the next logical step by adding the ability to "like" email messages (as with Facebook) and tag others with the "@" symbol (as with Twitter) in Office 365-based email. The features will be added over time, starting with Outlook on Web. But I have a hard time imagining that this functionality doesn't work its way across all Microsoft email solutions. Frankly, I'd rather have a "dislike" button. "AMD cuts workforce by 5 percent" I know, I had the same reaction. AMD is still a thing? Microsoft and ASUS, sitting in a tree... Microsoft has added another notch to its Android patent licensing belt, signing up ASUS to the long list of companies who want to avoid any ugly court battles. But ASUS is also joining a shorter list of companies---which now includes Samsung, Dell, and some others---that have also agreed to bundle Microsoft's Office mobile apps on their Android handsets and tablets. "This agreement delivers significant value for both companies," Microsoft's Nick... --- ### Practicing PowerShell with Veeam > PowerShell MVP and expert Jeff Hicks shares his experiences talking about PowerShell live with Veeam Software. - Published: 2015-10-02 - Modified: 2024-11-19 - URL: https://petri.com/practicing-powershell-with-veeam/ - Categories: PowerShell - Tags: Intermediate - Article Type: Overview PowerShell MVP and expert Jeff Hicks shares his experiences talking about PowerShell live with Veeam Software. Recently I spent a day in Atlanta in the studio with Veeam Software. If you aren't familiar with them, they are a very popular vendor of backup and recovery solutions, especially those centered on virtualization. But this article isn't necessarily about that. A few times a month Veeam presents a free, online and live streaming event called the Veeam Whiteboard. The guys invited me down to appear and talk about PowerShell. As you can see this looks like a pretty fantastic set. On the set of the Veeam Whiteboard (Image Credit: Veeam Software) When the show first started, it truly was a presenter or two talking and drawing on a real whiteboard. Needless to say things have grown a lot since then. My hosts, from left to right are Jason Leiva and Shawn Lieu. Off screen and running the show is Jose Mendoza. You can also follow the show's Twitter account, @VeeamLive. Jose and Shawn getting things ready (Image Credit: Jeff Hicks) I snapped a few pictures with my phone, so the picture quality may not be that great. The cool thing from my perspective is that even though it looks like a fantastic set, it is actually all done with green screen. Jason on the set (Image Credit: Jeff Hicks) It took a little bit of tweaking to get the digital set properly centered on three presenters. And did I... --- ### What is Slack and Is It Better Than Email? > Russell Smith explains how Slack works, and how it can improve productivity for small teams working on internal projects. - Published: 2015-10-02 - Modified: 2024-09-04 - URL: https://petri.com/what-is-slack-and-is-it-better-than-email/ - Categories: Messaging - Tags: Editor's Pick, email, Messaging, Slack - Article Type: Opinion Russell Smith explains how Slack works, and how it can improve productivity for small teams working on internal projects. Think Yahoo chatrooms, but with the power of Google search built-in, and what you end up with is Slack – a collaboration tool that has been growing in popularity in the enterprise, replacing email in some cases for managing internal projects. Be less busy is the slogan, and the aim of the tool is to simplify the way small teams collaborate, making it easier to follow and find conversations. Slack organizes conversations using channels, and unlike email, conversations are presented in threads much like those found in other instant messaging apps, such as WhatsApp and Facebook Messenger, and it seems most people prefer this way of displaying discussions, as opposed to the conversation view offered by some email clients. Slack versus email One of the reasons email has become less useful over the years is the sheer quantity of unsolicited mail we receive, making it harder to cut through the noise and focus on what’s relevant. While many email platforms and clients provide tools to help users manage this, Slack only allows invited team members to send messages to a channel. Private channels can also be created for more sensitive conversations, and there’s also the ability to send direct messages. The Slack Windows app (Image Credit: Russell Smith) You could argue that Slack channels are not that dissimilar to email folders, but folders require more effort to set up, and creating filters to automatically sort email is a hassle that requires some trial... --- ### Exchange Server 2016 Is Now Available To Download > Microsoft has announced today Exchange Server 2016 is now available for download and it comes with several new features for IT admins and users. - Published: 2015-10-01 - Modified: 2024-09-04 - URL: https://petri.com/exchange-server-2016-is-now-available-to-download/ - Categories: Exchange Server - Tags: Editor's Pick, Exchange Server 2016, News - Article Type: News Microsoft has announced today Exchange Server 2016 is now available for download and it comes with several new features for IT admins and users. Microsoft has announced today that Exchange Server 2016 is available for download. This new version brings several improvements over Exchange 2013 including data loss preventions (DLP) managed availability, automatic recovery from storage failures, and the web-based Exchange admin center. Microsoft says that they spent nearly three years iterating, polishing and refining Exchange Server and you can now get your hands on it. The notable part of today’s announcement is that this version was ‘forged in the cloud’, meaning that this software is what has been powering the millions of Office 365 mailboxes and it is now available for on premise deployments. Email is still a vital component for communication in the corporate world and even as Office 365 has shown tremendous growth for Microsoft, they know that many corporations like to maintain complete control of their email environments. For the users, there are several notable additions too, including: Simplified document sharing Updates to Outlook on the web which includes Sweep, Pin, Undo, inline reply and more An enhanced search function that delivers better results, faster An expanded Add-In model for Outlook desktop and Outlook on the web Faster and more scalable eDiscovery A simplified architecture that combines mailbox and client access server roles making it easier to plan and scale your on-premises and hybrid deployments If you want more information about what is new in this release, you can check out the announcement post here and in the future, Petri will have deep-dives into the prominent new additions. Download: Exchange... --- ### Softerra Adaxes Review: An Active Directory Management and Automation Solution > Jeff Hicks provides an in-depth review of Softerra Adaxes, an Active Directory management and automation solution. - Published: 2015-10-01 - Modified: 2024-09-04 - URL: https://petri.com/softerra-adaxes-review-active-directory-management-automation-solution/ - Categories: Active Directory (AD) - Article Type: Review Jeff Hicks provides an in-depth review of Softerra Adaxes, an Active Directory management and automation solution. I'm sure that for many of you Active Directory is a mainstay of your day. I know that from my PowerShell perspective, this is a very popular topic for automation. Clearly, IT pros want management tools. So today I want to take a look at a product called Adaxes from Softerra. Softerra has been in the AD business for a long time. Years ago, I used their free LDAP browser when Windows 2000 came out. In fact, that utility is still freely available today. But I'm going to assume you need a more full-featured solution for managing and automating Active Directory. I won't have time to cover every feature, but you can download it, and give it a test with a free 30 day trial. Installation You can install everything on a single server or take what I feel is a more traditional path. I installed the Adaxes Service and web components on a Windows Server 2012 R2 server. On a Windows 10 client, I installed the Service Administration Console and the PowerShell module. Everything installs from a single MSI. You select what you want to install. Selecting Installation Features (Image Credit: Jeff Hicks) Note that if you want the PowerShell module, you need to have the PowerShell 2. 0 engine installed. The service installation is pretty straightforward and probably like other client-server applications you've installed in the past. The installation requires . NET Framework 3. 5 SP 1. You may need to go into optional features... --- ### PowerShell 5.0 Just Enough Administration (JEA) Part 1: Understanding JEA and Configuring the Demo Toolkit > Learn how to easily configuring constrained PowerShell Remoting endpoints using the PowerShell Just Enough Administration Toolkit. - Published: 2015-10-01 - Modified: 2024-11-19 - URL: https://petri.com/powershell-5-0-just-enough-administration-jea-part-1-understanding-jea-and-configuring-the-demo-toolkit/ - Categories: PowerShell - Tags: Desired State Configuration, Editor's Pick, PowerShell, Security, Windows Server - Article Type: How To Learn how to easily configuring constrained PowerShell Remoting endpoints using the PowerShell Just Enough Administration Toolkit. The JEA Toolkit for PowerShell 5. 0 helps administrators deploy PowerShell Remoting endpoints so that IT staff can run defined sets of tools without needing to elevate to local administrator privileges. The ability to create constrained endpoints in PowerShell is not new, and you can find out more about the basics in PowerShell Remoting: How to Restrict User Commands on the Petri IT Knowledgebase. But providing a solution that can be used in practice is a bit more complicated and to that end, Microsoft released the Just Enough Administration toolkit for PowerShell 5. 0 last summer. PowerShell 5. 0 is still in preview, but it's already included in Windows 10 and can be downloaded for Windows Server as part of the Windows Management Framework 5. 0 preview. How does JEA for PowerShell 5. 0 work? JEA for PowerShell is provided as a Desired State Configuration (DSC) resource that can be used to configure devices with JEA endpoints (toolkits). Each endpoint is a toolkit of well-defined cmdlets, functions, and parameters that connecting users are able to run. For example, you might configure a toolkit for SQL Server administrators that provides access to PowerShell cmdlets and functions required for managing SQL Server, another for IIS administrators, and so on. When a SQL admin connects to a JEA endpoint using PowerShell, they are only able to run the commands defined in the toolset, and nothing more. Set up PowerShell JEA (Image Credit: Russell Smith) Users connect to JEA endpoints using their... --- ### Microsoft and Google Settle All Patent Lawsuits > Microsoft and Google have quietly settled all of the approximately 20 patent-related lawsuits against each other. Terms of the agreement were not disclosed. - Published: 2015-10-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-and-google-settle-all-patent-lawsuits/ - Categories: Mobile - Tags: Android, News, technology patents - Article Type: News Microsoft and Google have quietly settled all of the approximately 20 patent-related lawsuits against each other. Terms of the agreement were not disclosed. Microsoft and Google have quietly settled all of the approximately 20 patent-related lawsuits against each other. Terms of the agreement were not disclosed. "Microsoft and Google are pleased to announce an agreement on patent issues," a joint statement from the two companies explains. "As part of the agreement, the companies will dismiss all pending patent infringement litigation between them, including cases related to Motorola Mobility. Separately, Google and Microsoft have agreed to collaborate on certain patent matters and anticipate working together in other areas in the future to benefit our customers. " While Microsoft has long contended that Android---like the open source Linux OS on which it is based---violates many of its patents, it has generally stuck to attacking Google's hardware partners and not Google itself. As a result, Microsoft has dozens of patent licensing agreements with device makers, which ensure that their devices---which carry the infringing technologies to consumers---are legally exonerated. The lawsuits against Google actually arose out of this strategy: When Google purchased Motorola Mobility for its line of Android handsets in 2011, it inherited some patent lawsuits with Microsoft. Google shed Motorola Mobility in early 2014, taking a big loss. But it kept most of Motorola's patent portfolio and some key development staff. And the lawsuits remained in place. For its part, Motorola Mobility had claimed that Microsoft's Xbox video game consoles infringed on its video compression and Wi-Fi patents. This is the second time that Microsoft has settled with a... --- ### Current Status Episode 28: The CTO Perspective on Workspace with Ruben Spruijt, CTO Atlantis Computing > In this episode of Current Status, Phoummala, Theresa, and Melissa sit down with Ruben Spruijt, CTO Atlantis Computing, to discuss future trends in the IT workplace. - Published: 2015-09-30 - Modified: 2015-09-30 - URL: https://petri.com/current-status-episode-28-the-cto-perspective-on-workspace-with-ruben-spruijt-cto-atlantis-computing/ - Categories: Current Status - Article Type: Opinion In this episode of Current Status, Phoummala, Theresa, and Melissa sit down with Ruben Spruijt, CTO Atlantis Computing, to discuss future trends in the IT workplace. Join us this Thursday, October 1, 2015 at 10:15 pm EDT for another episode of Current Status. During this episode, Theresa Miller, Phoummala Schmitt and Melissa Palmer will talk with guest Ruben Spruijt (@rspruijt), CTO of Atlantis Computing and Citrix CTP.  The IT landscape is always evolving and changing. History has shown that the technology trends of the past are not the trends of the future. Let’s take a time travel trip and go "Back to the Future” to see a CTO's thoughts on the future of IT. What will be the Hoverboards and spaceships of the organizational workspace in 2020? Get all your questions answered by Ruben during this episode of Current Status. --- ### Testing Empty Folders with PowerShell > Learn how to clean up your folder structure on your PC with this quick PowerShell tutorial. - Published: 2015-09-30 - Modified: 2024-09-04 - URL: https://petri.com/testing-empty-folders-with-powershell/ - Categories: PowerShell - Tags: Intermediate, Scripting - Article Type: How To Learn how to clean up your folder structure on your PC with this quick PowerShell tutorial. I'm betting that every once in a while you need to clean up a folder structure, perhaps even your own, and you want to be able to trim away empty folders. Although PowerShell's Test-Path cmdlet can be used for testing if a folder exists, there isn't a command to tell you if a folder is empty or not. For our purposes, we'll assume that an empty folder is one with no subfolders or files. Testing if a folder is empty (Image Credit: Jeff Hicks) Normally, I prefer to use cmdlets where possible, even though I'm using the dir alias for Get-ChildItem. I could even use the –File or –Directory parameter if I needed a more refined test. But because PowerShell is built on the . NET Framework, there may be situations where using native commands might make more sense. One reason might be performance. Let's say I need to use the Count property to help determine if a folder is empty. Using Get-Childitem I can run a command like this: ​ This gives me a value of 2935 and using Measure-Command, I can tell it took 742 milliseconds. Measuring a folder count using Get-ChildItem (Image Credit: Jeff Hicks) But the folder object also has a number of . NET methods that I can invoke, such as GetFileSystemInfos. Measuring a folder count with GetFileSystemInfos method (Image Credit: Jeff Hicks) That was much, much faster. Cmdlets are nice and easy... --- ### Windows Server 2016 Feature: Switch Embedded Teaming > Windows Server 2016 will offer a new way to do converged networking called Switch Embedded Teaming that also allows SMB Direct (RDMA) to be converged. - Published: 2015-09-30 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2016-switch-embedded-teaming/ - Categories: Windows Server 2016 - Tags: Converged Networking, networking, RDMA, SET, SMB 3.0, SMB Direct, Switch Embedded Teaming, Technical Preview, Windows Server 2016, WS2016 - Article Type: Overview Windows Server 2016 will offer a new way to do converged networking called Switch Embedded Teaming that also allows SMB Direct (RDMA) to be converged. Switch Embedded Teaming (SET) is a new way of deploying converged networking in Windows Server 2016 (WS2016), making it easier to take advantage of fewer and bigger network connections in Hyper-V hosts. In this article, I'll explain what Switch Embedded Teaming (SET) is and discuss the advantages it has over legacy networking. I'll also explain what we're able to do with SET in Windows Server 2012 and Windows Server 2012 R2. A Reminder on Why We Use Converged Networking I've written quite a few articles on converged networking soon after I joined the ranks at the Petri IT Knowledgebase. I know that few people have used the features of Windows Server, because almost every time when I'm in the field, I encounter hosts with gaggles of 1 GbE NICs, and those who have 10 GbE NICs are often using costly blade chassis switching solutions that offer a hardware-based alternative. So here's a quick reminder on Microsoft's software-defined converged networking technologies that have been with us since Windows Server 2012. In the days of Windows Server 2008 and Windows Server 2008 R2 Hyper-V, we had large collections of 1 GbE networks, each made up of 1 or 2 teamed physical NICs. Each network was assigned an individual role, such as management, cluster communications, Live Migration, iSCSI, and so on. Such a design is depicted below. How Hyper-V networking was done before Windows Server 2012 (Image Credit: Aidan Finn) There are several different problems that are... --- ### PowerShell Problem Solver Updating CSV Files > In this PowerShell Problem Solver, Jeff Hicks continues his walkthrough on updating CSV files with PowerShell. - Published: 2015-09-30 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-updating-csv-files/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, PowerShell Problem Solver, Scripting - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks continues his walkthrough on updating CSV files with PowerShell. In "PowerShell Problem Solver: CSV Import Tricks and Tips," we started looking at the process of updating a CSV file with IP information. If you missed it, take a moment to get caught up, otherwise my examples might not make sense to you. While you may not have the specific business need regarding this scenario, you most likely work with CSV files to some degree, and I'm assuming want to learn a bit more about PowerShell. In this article, I'm going to take the IP information from Test-Connection and insert it back into the CSV file. I'm going to use the same CSV file as in the previous article. ​ First, let's make sure I get the output I expect using the original column headings. ​ Creating new output (Image Credit: Jeff Hicks) For the IP address, I'm using a custom hashtable to define a property called IPAddress. The value will be whatever is the result of the Expression scriptblock. That scriptblock runs Test-Connection using the current object's Computername parameter and sending a single ping. By wrapping that command in parentheses, I'm telling PowerShell to run that command first, which will result in an object. That object I already know from using Get-Member has an IPv4Address. You can put in as much code in the expression scriptblock as you need. You aren't required to use a one-line approach. This will give you the same result and might be easier to follow. ​ In... --- ### Apple’s Enterprise Business is $25 billion A Year > Apple’s CEO Tim Cook has shared that for Apple, the Enterprise is a $25 billion dollar a year business for the 12 months ending in June. - Published: 2015-09-29 - Modified: 2024-09-04 - URL: https://petri.com/apples-enterprise-business-is-25-billion-a-year/ - Categories: Current Status - Tags: Apple, Editor's Pick, News - Article Type: News Apple’s CEO Tim Cook has shared that for Apple, the Enterprise is a $25 billion dollar a year business for the 12 months ending in June. Traditionally, when it comes to the enterprise, Apple is an afterthought, or at least that’s how it was a decade ago. Today, Apple’s CEO Tim Cook shared on stage that for Apple, the Enterprise is a 25 billion dollar a year business for the 12 months ending in June. Cook said that the enterprise is “not a hobby” and that this is "a real business” and at $25 billion a year, it’s hard to argue with his statements. So where does the revenue come from? Cook did not share this information directly but it’s likely safe to assume that iPhones are a big part of this figure as the company sells millions of these device every quarter and while not as many iPads are sold, the company has been pushing them further into the enterprise. Apple’s products are generally adored by its users and the company likes to tout its high satisfaction rates among its customers. Knowing this, there is likely a strong push from employees in large corporations to switch to iOS from the likes of Blackberry or possibly Android because of the better user experience. Apple still makes the majority of its revenue each quarter from non-enterprise sales but at $25 billon, it’s clear that the company has penetrated the lucrative corporate markets with its products. --- ### A Quick PowerShell Tutorial: Adding a Hyper-V Custom View > Jeff Hicks shows us a quick PowerShell tutorial on adding a Hyper-V custom view. - Published: 2015-09-29 - Modified: 2024-09-04 - URL: https://petri.com/quick-powershell-tutorial-adding-hyper-v-custom-view/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Hyper-V, Scripting - Article Type: How To Jeff Hicks shows us a quick PowerShell tutorial on adding a Hyper-V custom view. Over the last few articles, I've been demonstrating how to extend the Hyper-V virtual machine object to add some testing and validation properties. Related: Testing Hyper-V Disk Health Related: Testing Hyper-V Disk Health with a Custom Property In the most recent article, I showed you how to use Update-TypeData. One thing you can do to make your life easier is to define a set of properties that you can reference via a single name. If you look at help for Update-TypeData, it seems an expression like this should work: ​ But with PowerShell 4. 0 version that I'm using, this fails. Error adding a property set (Image Credit: Jeff Hicks) I suspect this is a bug. If I create a proxy version of Update-TypeData, I can see what the cmdlet is doing. ​ I'm not sure why the validateSet test is missing PropertySet or even why it is needed since the MemberType parameter is already properly typed. But I can't change this, so I'll resort to using a ps1xml file. ​ I'm using this file assuming that I've already run the Update-TypeData commands to define the additional properties. Otherwise, I need to define them in the XML file as well. ​ Assuming everything has been defined, I can go ahead and add my ps1xml file to my session. ​ Now I have a new property. Viewing the new property set (Image Credit: Jeff Hicks) To use it all I have to do is... --- ### Microsoft Unleashes A U-SQL Submarine To Go Diving Through Your Data Lake > Microsoft has announced U-SQL, a language that makes processing big data easier and it's coming to its Azure platform. - Published: 2015-09-29 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-unlashes-a-u-sql-submarine-to-go-diving-through-your-data-lake/ - Categories: Microsoft Azure - Tags: Azure, Datalake, Editor's Pick, News - Article Type: News Microsoft has announced U-SQL, a language that makes processing big data easier and it's coming to its Azure platform. Microsoft is one of the key players in the cloud computing market who has the capability to work with data at significant scale and this week, the company announced U-SQL support, a language that makes processing big data easier. Earlier this year, Microsoft started pushing the idea of data lakes. These lakes are large repositories of data but if you are not using this information to its fullest capabilities, the lakes can turn into a swamp. The idea has a bit of merit as if you are not properly harnessing all the information in your databases through machine learning and proper filtering, then you are missing out on possible business opportunities and efficiencies. U-SQL is a language that unifies the benefits of SQL with the expressive capabilities of using your own code. Microsoft says that U-SQL’s scalable and distributed query capability allows it to efficiently analyze data stored in and across relational stores including Azure SQL Database. U-SQL is the latest feature Microsoft is introducing to help its users make sense of the terabytes and petabytes of information that is stored in databases. The company says their goal is to make Azure Data Lake the most productive environment for authoring, debugging and optimizing analytics at any scale and U-SQL is one more piece of the puzzle to achieve this goal. If you want to read more about why the company chose U-SQL and to see example code of the new feature, you can check out the announcement post, here. --- ### Microsoft Announces Changes to Financial Reporting Structure > Microsoft has announced changes to the way it will report its financial results, with the software giant trimming its top-level businesses down to three. - Published: 2015-09-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-changes-to-financial-reporting-structure/ - Categories: Cloud Computing, Main, Microsoft 365, Mobile, Office, Windows Client OS, Windows Server - Tags: News - Article Type: News Microsoft has announced changes to the way it will report its financial results, with the software giant trimming its top-level businesses down to three. Credit: https://www. flickr. com/photos/36182550@N08/3347465868 Microsoft this week announced changes to the way it will report its financial results going forward, with the software giant trimming its top-level businesses down to three. According to a statement, Microsoft is making this change to better reflect it's "strategy and ambitions to build best-in-class platforms and productivity services for a mobile-first, cloud-first world. " Microsoft will now report operating income and revenue for the following three businesses: Productivity and Business Processes. This operating segment includes Office and Office 365 for both commercial and consumer customers, as well as Dynamics and Dynamics CRM Online, Skype, and consumer services (Outlook. com, OneDrive, and so on). Intelligent Cloud. This segment includes public, private and hybrid cloud/server products and services such as Windows Server, SQL Server, System Center, Azure, Visual Studio, and Enterprise Services (including Premier Support Services and Microsoft Consulting Services). More Personal Computing. This segment includes Windows (volume licensing, OEM licensing, patent licensing); Surface, phone, PC accessories, and other devices; Xbox; MSN display advertising; and Bing search/search advertising. Previously, Microsoft reported financial results for five top-level businesses: Devices & Consumer Hardware, Devices & Consumer Licensing, Devices & Consumer Other, Commercial Licensing, and Commercial Other. But this system led to some strange splits: Operating income and revenues for products like Windows and Office, which bridge the consumer and commercial (Microsoft's term for "business") markets needed to be split up. Now they will no longer be split. The new system makes... --- ### Microsoft Pushes Back On Windows 10 Privacy Concerns > Ever since the launch of Windows 10, Microsoft has come under fire about the privacy implications of the OS and now the company is fighting back. - Published: 2015-09-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-clarifies-windows-10-and-its-privacy-implications/ - Categories: Windows 10 - Tags: Editor's Pick, Microsoft, News, Privacy, Windows 10 - Article Type: News Ever since the launch of Windows 10, Microsoft has come under fire about the privacy implications of the OS and now the company is fighting back. Ever since the launch of Windows 10, Microsoft has come under fire about the privacy implications of the OS. If you head to any forum and mention Windows 10, there will be critics who raise the concern that Microsoft is stealing your information and selling it to outside parties. The volume of this concern is loud enough that Microsoft has responded today with a blog post. The post says that Microsoft has two basic principles in mind when it comes to privacy: Windows 10 collects information so the product will work better for you and that you are in control with the ability to determine what information is collected. Further, that all information transmitted to its servers is encrypted and stored in a secure facility as well. Of they data they do collect, the company says it includes anonymous device ID, device type, and application crash data which Microsoft and its partners use to improve the user experience. Microsoft specifically says that they do not collect information such as content or files and they take proactive steps to avoid collecting information such as your name, email address or account ID. When it comes to personalization, the entire process is opt-in, including Cortana. At any time, you can change your personalization and privacy options in the settings menu of Windows 10. And as the company has stated before, Windows 10 nor any other Microsoft software scans the content of your email or other communications, or your files, in... --- ### Microsoft Has Acquired Adxstudio > Microsoft has announced that they have acquired Adxstudio, a provider of web portals, engagement solutions and application lifecycle management solutions. - Published: 2015-09-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-acquired-adxstudio/ - Categories: Main - Tags: acquisition, Editor's Pick, News - Article Type: News Microsoft has announced that they have acquired Adxstudio, a provider of web portals, engagement solutions and application lifecycle management solutions. Over the past few months, Microsoft has snatched up quite a few companies, everything from new tools for Office 365 to an email app from Acompli. And today, the company is announcing that they have acquired Adxstudio Inc. , a provider of web portals, online engagement solutions and application lifecycle management solutions for Microsoft Dynamics CRM. Adxstudio extends the functionality of Microsoft’s Dynamics CRM online with portals that are built natively on Dynamics. These tools allow customers to connect and extend their sales process to the web in a way that requires minimal effort from the Dynamics user which was one of the reasons Microsoft bought the company. What’s interesting about this acquisition is that Adxstudio has been working with Microsoft for many years and was often considered to be a close partner of the Redmond based company but why they decided to finally buy them now instead a few years ago, is not exactly known. Microsoft says, to no surprise, that the tools they acquired through this acquisition will be available to all Dynamics customers but they did not specify a date for availability As usual, the terms of the deal were not announced but if you want to read the announcement of the acquisition, you can do so here. --- ### Will The FTC Formally Charge Google with Antitrust Violations? > How can the U.S Federal Trade Commission even charge Google with violating antitrust laws when Android is in no way a monopoly in this country? - Published: 2015-09-28 - Modified: 2024-09-04 - URL: https://petri.com/will-the-ftc-formally-charge-google-with-antitrust-violations/ - Categories: Mobile - Tags: Android, Google, News - Article Type: Opinion How can the U.S Federal Trade Commission even charge Google with violating antitrust laws when Android is in no way a monopoly in this country? Some serious questions are emerging in the wake of reports that the U. S. Federal Trade Commission is investigating Google for antitrust violations related to its Android business. Key among them: How can the FTC even charge Google when Android is in no way a monopoly in this country? According to a Bloomberg report, the FTC is in the early stages of its investigation after having had reached an agreement of some sorts with the U. S. Department of Justice. As with a similar case brewing in the European Union, the charge comes from Google's competitors---of course---and is familiar: "Google gives priority to its own services on the Android platform," Bloomberg wrote, "while restricting others. " To which I must ask, so what? If Android were a monopoly, that kind of behavior---essentially the same type of product bundling shenanigans that got Microsoft into trouble here in the late 1990's---would in fact be illegal. And the FTC or other regulatory bodies would be correct to hold the firm accountable. The thing is, Android is not a monopoly, at least not in the United States. Worldwide, Android commands about 83 percent of the market for smart phones and over 70 percent of the market for tablets. But the U. S. is an anomaly, with Apple owning an outsized chunk of both markets here. For example, in the United States, Android only controls 52 percent of the smart phone market, while iPhone controls fully 44 percent, according to IDC. And the iPhone continues to... --- ### Microsoft Provides Guidance On Windows 10 Activation: Digital Entitlement vs Product Key > Microsoft has introduced a new way to activate Windows with Windows 10 called digital entitlement and now the company has posted new activation guidance. - Published: 2015-09-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-provides-guidance-on-windows-10-activation-digital-entitlement-vs-product-key/ - Categories: Windows 10 - Tags: Activation, Editor's Pick, News, Windows 10 - Article Type: News Microsoft has introduced a new way to activate Windows with Windows 10 called digital entitlement and now the company has posted new activation guidance. With Windows 10, Microsoft is introducing a new way to activate your copy of Windows 10 that they are calling digital entitlement. Because digital entitlement is new and moves away from the traditional product key activation process, the company has provided guidance on how and when each method is used. Posted below is the guidance that Microsoft has provided with Windows 10 that should cover nearly all of the scenarios you may see. How you got Windows 10 Activation method You upgraded to Windows 10 for free from an eligible device running a genuine copy of Windows 7 or Windows 8. 1. Digital entitlement You bought genuine Windows 10 from the Windows Store and successfully activated Windows 10. Digital entitlement You bought a Windows 10 Pro upgrade from the Windows Store and successfully activated Windows 10. Digital entitlement You’re a Windows Insider and upgraded to the newestWindows 10 Insider Preview build on an eligible device that was running an activated previous version of Windows andWindows 10 Preview. Digital entitlement You bought a copy of Windows 10 from an authorized retailer. Product key (On a label inside the box Windows 10 came in. ) You bought a digital copy of Windows 10 from an authorized retailer. Product key (In the confirmation email you received after buyingWindows 10 or in a digital locker accessible through the retailer’s website. ) You have a Volume Licensing agreement for Windows 10 or MSDN subscription. Product key (Available through the web portal for your program. ) You bought a new device running Windows 10. Product key (Pre–installed on your device, included with the device packaging, or included as a card or on the Certificate of Authenticity (COA) attached to the device. ) Microsoft says that a... --- ### Less Than Two Months After Release, Windows 10 Has Surpassed 100 Million Installs > Windows 10 was released by Microsoft on July 29th and sometime last week, the OS passed the 100 million install milestone, a major hurdle for the company. - Published: 2015-09-28 - Modified: 2024-09-04 - URL: https://petri.com/less-than-two-months-after-release-windows-10-has-surpassed-100-million-installs/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News Windows 10 was released by Microsoft on July 29th and sometime last week, the OS passed the 100 million install milestone, a major hurdle for the company. Windows 10 was released by Microsoft on July 29th and sometime last week, the OS passed the 100 million install milestone, according to my insider sources. The fast adoption of the OS is surely a win for Microsoft as it provides a substantial base to attract developers to build apps for its store. The rate of the adoption of the OS should continue to grow as well, with the company signing a deal with Baidu to help ship the OS in China and reports from industry analysts saying consumer interest in the OS is on the rise. One trend that will be interesting to watch is to see if consumers warm up to Cortana and then want that feature in other locations, such as on their phone or even their work PCs. The personal digital assistant, which ships with all desktop versions of the OS, is designed to help make you more productive by surfacing relevant information for you, such as traffic on your drive home from work or to remind you to pick up milk if you are heading by a grocery store. If consumers do adopt Cortana into their digital family, we will be curious to see if they put pressure on IT admins to bring that functionality to the office as well. Windows 10 will likely get a nice spike of interest as well in early October when Microsoft holds its press conference in New York where it is expected the Surface Pro 4... --- ### Consumer Interest In Windows 10 Is On The Rise > Consumer interest in Windows 10 is on the rise with OEMs reporting increased interest and sales of the new platform. - Published: 2015-09-26 - Modified: 2024-09-04 - URL: https://petri.com/consumer-interest-in-windows-10-is-on-the-rise/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 - Article Type: News Consumer interest in Windows 10 is on the rise with OEMs reporting increased interest and sales of the new platform. Microsoft’s new OS, Windows 10 was released to the world on July 29th and so far, the platform is appearing to be resonating well with consumers. Our last internal checks showed that over 81 million users had installed the OS (likely far higher now) and now a report from an industry analyst says that PC OEMs are seeing higher interest in the OS too. Generally speaking, you need to be careful when it comes to analyst’s notes as they can have a significant amount of ‘gut feeling’ to them but what makes this note different from Brendan Barnicle of Pacific Crest is that he surveyed PC manufactures to get their sentiment about the trends around Windows 10. A segment of his note is posted below (you can read more of it here, from StreetInsider): “Our most recent checks with 28 PC retailers in the United States found increased consumer inquiries for Windows 10. In our survey, 28. 6% of 28 retailer respondents indicated that Windows 10 inquiries were better than expected, up from 21. 2% of 33 respondents in our early September survey. However, only 17. 4% of 23 respondents indicated that Windows 10 was selling faster than expected, down from 22. 2% of the 27 respondents in early September” While the 28. 6% and 17. 4% figures might not seem impressive, these stats are for interest and sales (respectively) exceeding expectations, not meeting them, which means a sizeable number of OEMs are seeing increased sales with the new OS. Barnicle believes that Windows... --- ### Add User Alerts to SharePoint Online Document Libraries > Russell Smith shows you how to set up email notifications to alert users when the contents of document libraries have been changed. - Published: 2015-09-25 - Modified: 2024-09-04 - URL: https://petri.com/add-user-alerts-sharepoint-online-document-libraries/ - Categories: SharePoint - Tags: Office 365, SharePoint - Article Type: How To Russell Smith shows you how to set up email notifications to alert users when the contents of document libraries have been changed. In today's Ask the Admin, I'll show you how to set up email alerts to notify users when documents are added or modified in SharePoint Online document libraries. SharePoint Online can be purchased as part of Office 365 or as standalone product and is a popular document management solution for organizations of all sizes. By default, SharePoint Online doesn't alert users when changes are made to document libraries, but user alerts can be configured to send emails to registered users, which is useful for understanding when action needs to be taken, and without having to set up workflows, ping team members, or check back that a document library has been updated. But SharePoint is a complex beast, and it's not always obvious how to perform what ought to be relatively simple configuration steps. In this article, I'll show you how to set up alerts for your own and other user accounts, and how to modify alerts once they are in place. Creating user alerts If you need to create user alerts for users other than yourself, you'll need to be a site owner or have been assigned the Manage Alerts permission for the site or list. For the purposes of this article, I'll assume that you are a site owner creating alerts for yourself and other users. Log into SharePoint Online as a site owner, go to the site you want to modify, and follow the instructions below: In the menu on the left of the site... --- ### Will Windows 10 Help Decrease Amount of Pirated Software? > Russell Smith discusses the changes to the wording of Microsoft's Services Agreement and how Windows 10 might help decrease the amount of pirated software. - Published: 2015-09-25 - Modified: 2015-09-25 - URL: https://petri.com/will-windows-10-help-decrease-amount-pirated-software/ - Categories: Windows 10 - Tags: licensing, Privacy, Windows 10 - Article Type: Opinion Russell Smith discusses the changes to the wording of Microsoft's Services Agreement and how Windows 10 might help decrease the amount of pirated software. There's been a lot of chatter in the press over the past week regarding Microsoft's new operating system, Windows 10. Microsoft is accused of calling home even once users have disabled the built-in personal assistant Cortana and Windows Update Delivery Optimization (WUDO), a new feature in Windows 10 that uses a peer-to-peer network to download updates from other Windows 10 devices. WUDO has been criticized because it’s configured by default to distribute and receive updates to and from devices on the Internet, rather than just those on the local network, and therefore uses additional bandwidth. A Look at Microsoft's Services Agreement A few days ago I stumbled across another story, which has mutated slightly during its short lifetime, which highlights a change in Microsoft's terms and conditions, purportedly allowing Microsoft to disable counterfeit games and unauthorized hardware. The offending piece of text comes in an update to Microsoft's Services Agreement. Section 7b states: "We may automatically check your version of the software, which is necessary to provide the Services and download software updates or configuration changes, without charging you, to update, enhance and further develop the Services, including those that prevent you from accessing the Services, playing counterfeit games or using unauthorised hardware peripheral devices. " The agreement covers specific Microsoft services, which are listed at the bottom of the document, and these include Office 365 and Skype, both of which can be used on Windows 10. But despite that, Windows is now delivered as a service, Microsoft's services agreement... --- ### Paul Thurrott's Short Takes: September 25, 2015 > Because you need to leave this one to the professionals, this week's other news includes a potential US antitrust case against product bundling in Android. - Published: 2015-09-25 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-25-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion Because you need to leave this one to the professionals, this week's other news includes a potential US antitrust case against product bundling in Android. This video is worth watching: https://www. youtube. com/watch? v=_jTk3Fv9ido Because you need to leave this one to the professionals, this week's other news includes a potential U. S. antitrust case against product bundling in Google Android, the iPhone 6S is available for purchase, Blackberry admits it's making an Android phone, and a judge rules that smart phone passcodes are protected under the 5th amendment. "China's replacement for Windows is a Windows XP ripoff" That's weird. It's not like China has a history of stealing others' ideas. Finally, US has launched an Android antitrust investigation Perhaps inspired by their better-performing colleagues in the European Union, antitrust regulators in the U. S. Federal Trade Commission (FTC) are finally investigating Google Android. That's according to a report in Bloomberg, which says that it has reached an agreement with the U. S. Department of Justice (DOJ) to "spearhead" this investigation. The charge is the same that Google faces in the EU, of course: That Google illegally prevents hardware makers from distributing devices that do not include a lengthy list of Google-made apps and services and configure them to be the defaults. This act, called product bundling, got Microsoft into trouble with the DOJ about 15 years ago--and then later with multiple other antitrust agencies around the world, including the EU--and absolutely should apply to Android as well, given its dominant status. That said, the FTC has often fallen well short when it comes to investigating U. S. -based tech companies, and it completely dropped the ball with Google... --- ### Microsoft Has Released A New App To Make Scheduling A Meeting Less Awful > Microsoft has released an app that attempts to take the pain out of scheduling a meeting and is currently available for iOS users with Android coming soon. - Published: 2015-09-24 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-has-released-a-new-app-to-make-scheduling-a-meeting-less-awful/ - Categories: Office - Tags: Editor's Pick, Invite, News - Article Type: News Microsoft has released an app that attempts to take the pain out of scheduling a meeting and is currently available for iOS users with Android coming soon. Microsoft has released a new app from their Garage, an internal incubator of software, called Invite that is a standalone application available now for iOS with Android and Windows Phone coming soon. The app’s goal is to make the process of creating a meeting a bit less painful by allowing you to vote on when to hold the event. All you need to get started is an email address and then you can invite anyone to take a look at times you have suggested to meet and then they can vote on what works best for them. The neat thing about this app is that you can see what times work best for other participants so that your vote for a meeting hour is not blind. Once everyone has voted, the person who setup the meeting selects a time and the invite is sent out to everyone. While this may be an extra step in trying to schedule your next meeting, it will reduce the number of times a meeting gets rescheduled because one participant has a conflict. With Microsoft pushing Office 365 as its preferred productivity offering, it’s not a surprise that this app works quite well with email accounts from that service but it should also work with a basic email address like Outlook and Gmail. You can download the app here but it is only available in the US and Canada for now. --- ### Microsoft Releases Outlook Groups App for Mobile > Microsoft's Outlook Groups app for Android, Windows and iOS mobile devices gives users access to Office 365 Groups. - Published: 2015-09-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-releases-outlook-groups-app-for-mobile/ - Categories: Microsoft 365 - Tags: Mobile, Office 365, Outlook - Article Type: News Microsoft's Outlook Groups app for Android, Windows and iOS mobile devices gives users access to Office 365 Groups. Leading up to the launch of Microsoft Office 2016, Microsoft released an app for mobile devices called Outlook Groups, which despite the name exposes the functionality of Office 365 Groups. The app is currently available for Windows Phone 8. 1, Windows Mobile 10, and Android (worldwide except for China and France); and iOS (United States and Canada only). Office 365 Groups are something of a replacement for email distribution lists and Exchange public folders that allow users to share and view a history of email communications, but also documents and access to other collaboration features, essentially tying OneNote, SharePoint, Exchange and other Office 365 applications together. You can read more about creating Office 365 Groups in Create an Office 365 Group in Outlook. com on the Petri IT Knowledgebase. Outlook Groups also supports a chat view, which actually consists of threaded email conversations displayed in a Facebook-style message format. With this in mind, the app shouldn't be considered a Slack competitor, as chat is not its primary function. Without an Office 365 subscription, you won't be able to use Outlook Groups, further illustrating that this app isn't intended as a standalone collaboration solution, but as a means of accessing and organizing Office 365 resources. Using Outlook Groups Once the app is installed, all you need to do is provide your Office 365 email address and password, and the app is automatically populated with the groups that you're subscribed to, which you can see on the Groups tab. On the main screen,... --- ### U.S./China Cyber Security Agreement to Fall Short of Original Goals > U.S president Barack Obama will meet with Xi Jinping, the president of China, in Washington D.C. today. A possible cyber-security agreement is top-of-mind. - Published: 2015-09-24 - Modified: 2024-09-04 - URL: https://petri.com/u-s-china-cyber-security-agreement-to-fall-short-of-original-goals/ - Categories: Security - Tags: News - Article Type: News U.S president Barack Obama will meet with Xi Jinping, the president of China, in Washington D.C. today. A possible cyber-security agreement is top-of-mind. Photo credit: The Washington Post U. S president Barack Obama will meet with Xi Jinping, the President of the People's Republic of China, in Washington D. C. today. And while the two presidents have much to discuss, given growing tensions between their two countries, a potential cyber-security agreement is top-of-mind. According to various sources, the two had hoped to announce a dramatic if largely symbolic agreement on cyber-security, but those talks broke down ahead of Xi Jinping's trip. So it's more likely we'll see a more general agreement to cooperate moving forward. The need for a cyber-security accord is obvious, given the various probes and attacks that have become public over the past few years. Security experts believe that China has been secretly pinpointing weak points in the largely unprotected infrastructure of the United States. And it would take action to cripple this infrastructure in the event of a war or other military conflict. (In this case, infrastructure refers to the U. S. power grid, banking systems, cellular networks, hospitals, and so on. Select commercial facilities, such as stadiums, convention centers, and museums are also considered covered by this term because they serve the public, not the government. ) The original accord wouldn't have actually prevented such action, even on paper. As Admiral Michael Rogers, who heads up the U. S. Cyber Command said earlier this year, any US actions during wartime would "be in line with the broader set of norms that we've created over time. I don’t... --- ### Hyper-V Host Memory Utilization with PowerShell > Jeff Hicks provides some PowerShell tricks for determining your Hyper-V host memory utilization. - Published: 2015-09-24 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-host-memory-utilization-with-powershell/ - Categories: Hyper-V, PowerShell - Tags: Advanced, Editor's Pick, Hyper-V, Scripting - Article Type: How To Jeff Hicks provides some PowerShell tricks for determining your Hyper-V host memory utilization. Several weeks ago, I posted a PowerShell script on my blog that uses commands in the Hyper-V module to report on memory utilization per virtual machine. I rely heavily on virtualization to provide a complete domain environment since I work at home. At present, my workload is spread between laptop running 8GB of RAM and a Gigabyte Brix with 16GB of RAM. I'm in the process of planning for something new. But in the meantime, memory utilization, especially from the Hyper-V host perspective is important to me. So I thought I'd share with you some PowerShell-related suggestions that should give you a good idea of how much memory is being used and what virtual machine is using it. Related: Testing Hyper-V Disk Health I'm going to be querying my Hyper-V server from my desktop. ​ The first step I can take is to query WMI for the Win32_OperatingSystem. I'm using Get-CimInstance as I am trying to wean myself off of Get-WmiObject. ​ I've selected a few memory related properties. Memory properties from the Win32_OperatingSystem class (Image Credit: Jeff Hicks) The memory values are in KB. If I divide the number by 1KB that will give me the value in MB. If I divide by 1MB, I'll get the value in GB. Here's a more complete one-line command that also calculates utilization percentages. Get-CimInstance -ClassName Win32_OperatingSystem -ComputerName $computername | Select PSComputername, @{Name="OS";Expression = {$_. Caption}}, @{Name = "TotalMemoryGB";Expression={$_. totalVisibleMemorySize/1MB -as }}, @{Name = "FreeMemoryGB";Expression={::Round($_. FreePhysicalMemory/1MB,2)}}, @{Name = "PctMemoryFree";Expression =... --- ### Microsoft To Release A Custom Windows 10 Experience For Baidu Users In China > Microsoft has announced a new partnership with Baidu that will allow them to sell the OS in that country with a custom experience for local users. - Published: 2015-09-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-release-a-custom-windows-10-experience-for-baidu-users-in-china/ - Categories: Windows 10 - Tags: baidu, Editor's Pick, News, Windows 10 - Article Type: News Microsoft has announced a new partnership with Baidu that will allow them to sell the OS in that country with a custom experience for local users. This week, the Chinese president is visiting the United States and one stop on his tour is Microsoft’s campus in Redmond, Washington. To highlight this visit, Microsoft has announced three new partnerships with Chinese companies including Baidu. Microsoft is building a custom experience for Baidu users that will make it easier for these users (more than 600 million) to upgrade to Windows 10. The version of Windows 10 will provide a local browsing and search experience and Baidu. com will become the default homepage and search for the Edge browser. Baidu will be creating a new “Windows 10 Express” distribution channel that will allow its users to download an official build of the OS; the company will also build Universal Windows Applications for Search, Video, Cloud and Maps for Windows 10. It’s no secret that Microsoft’s Windows platform, specifically Windows XP, saw high levels of piracy in the country. By partnering with Baidu, Microsoft is looking to tap into the market where it has previously struggled to sell legitimate software by using a well known and trusted local brand. In addition to the agreement with Baidu, Microsoft also signed agreements with Unisplendour Corporation (UNIS) and 21Vianet to provide tailor-made hybrid cloud solutions and services to Chinese customers, especially state-owned enterprise customers. Also, Xiaomi, a leading smartphone company in China has said that it will adopt Windows Azure, operated by 21Vianet and based on Microsoft technology, to provide cloud services for Mi Cloud. In addition to these announcements, there... --- ### Microsoft to Combat Advanced Persistent Threats > Microsoft is developing a system called Project Sonar to counter advanced persistent threats (APTs). What are APTs and how will Sonar help? - Published: 2015-09-23 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-combat-advanced-persistent-threats/ - Categories: Security - Tags: Microsoft, Security - Article Type: News Microsoft is working on a new project, code-named "Sonar," to offer "malware detonation as a service," according to ZDNet's Mary Jo Foley. What could this mean? In this article, I will explain Advanced Persistent Threats (APTs) and how the security industry is adapting to deal with them. Traditional Malware Detection Way back when I was in college (when screens were mostly green), I was working in a team on a project and we shared code and documents using floppy disks. PCs were still expensive, so we relied on access to lab rooms filled with VAX/VMS terminals, Macs and PCs. I remember the shock when the PC freaked out about a disk that I was using -- apparently I'd picked up something called a virus, and this was bad. Malware detection, for the most part, has remained unchanged in decades. A programmer writes some code that does something malicious and sends it out to the world. Malware protection provides scanning services. Much like antibodies in our systems, detection only works with previously identified malware. If Symantec, McAfee, and all the others haven't seen some malware before, then they don't know how to identify and clean it up. Up until a few years ago, that wasn't a big deal; there were only so many new malware releases and variants per day and the security companies could release updates -- of course, someone had to be a victim first. But times have changed. A story on CNN reported back in May that there... --- ### PowerShell Problem Solver: CSV Import Tricks and Tips > Import CSV files into PowerShell with these handy tips and tricks from IT veteran and PowerShell MVP Jeff Hicks. - Published: 2015-09-23 - Modified: 2024-12-03 - URL: https://petri.com/powershell-problem-solver-csv-import-tricks-tips/ - Categories: PowerShell - Tags: Import-CSV, Intermediate, PowerShell Problem Solver, Scripting, Test-Connection - Article Type: How To Import CSV files into PowerShell with these handy tips and tricks from IT veteran and PowerShell MVP Jeff Hicks. During a recent foray into a PowerShell forum, I came across a post from a user wanting to update a CSV file of computers with their IP addresses. Management strategies aside, this seemed like a great opportunity to explore how you can use CSV files in PowerShell. So I thought I'd walk through the process of updating a CSV file with IP address information using a number of techniques. This article is a kind of two-fer in that we'll look at working with CSV files and resolving computer names to IP addresses. Related: Using PowerShell to Export CSV Files to XML: Part 1 To begin, I have a sample CSV file. ​ The great thing about PowerShell is that you can bring any CSV into PowerShell using Import-CSV. The cmdlet will take the column heading and use it as property names. Importing a CSV file into PowerShell (Image Credit: Jeff Hicks) I created my CSV file so that some of the headings match cmdlet parameters I might want to use. Let me explain. One technique I could use to get an IPAddress s with the Test-Connection cmdlet. Using PowerShell's Test-Connection cmdlet to see an IP address (Image Credit: Jeff Hicks) How does this relate to my CSV file? This is when you need to look at cmdlet help, specifically in this case at the Computername parameter. The Test-Connection Computername parameter (Image Credit: Jeff Hicks) [adkit zone="freestyle"... --- ### Microsoft appoints a new leader of Outlook to keep the client fresh > Microsoft’s email application, Outlook, is likely one of, if not the most used, email applications on the planet and the product is getting a new leader. - Published: 2015-09-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-appoints-a-new-leader-of-outlook-to-keep-the-client-fresh/ - Categories: Office 2016 - Tags: Editor's Pick, Microsoft Outlook, News - Article Type: News Microsoft’s email application, Outlook, is likely one of, if not the most used, email applications on the planet and the product is getting a new leader. Acompli’s founder, Javier Soltero, who joined Microsoft when his company’s email app was bought and then later rebranded to Outlook, is now leading the entire Outlook email organization; previously he was only the head of the mobile segment.   This is a big change for Outlook as it is allowing an outsider to run one of the most important applications the company makes. Office 2016, which started shipping yesterday, is a core driver of revenue for Microsoft and its email application is adored by millions of users. With a new leader who comes from outside the company but with a proven track-record in the email space, it will be interesting to see what features and products Soltero is able to introduce without alienating the install base. When Outlook was first launched, email was a primary tool for communication among consumers and corporations. Although, during the past few years, email, while still vitality important, is not always the preferred channel for communication with tools like Skype, Slack, Yammer and others taking away some of emails thunder. But, if there is someone who is able to help keep email, and more importantly for Microsoft, Outlook, at the heart of communication channel, Soltero is a good choice as his email app was loved by its users. The other consideration Microsoft has to keep in mind is that Soltero was brought into the organization through an acquisition of around $200 million, according to Re/Code, which means he is likely not working for the... --- ### Microsoft’s Skype Outage Blamed On Configuration Change > Earlier this week, Microsoft's Skype was knocked offline for several hours and the company is now coming forward about what caused the outage. - Published: 2015-09-23 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-skype-outage-blamed-on-configuration-change/ - Categories: Messaging - Tags: Editor's Pick, News, skype - Article Type: News Earlier this week, Microsoft's Skype was knocked offline for several hours and the company is now coming forward about what caused the outage Earlier this week, Microsoft's Skype service was knocked offline for several hours and the company is now coming forward about what caused the outage. The reason for the downtime, as Microsoft states, was because of a “larger-than-usual configuration change” that some version of Skype were unable to process correctly. Because some versions were incompatible with the change, it would disconnect the user from the service which then caused those apps to try and re-connect which created significantly more traffic than usual. This additional traffic load coupled with incompatible versions is what caused the platform to fail and brought the service down. Microsoft notes that Skype for Business was not impacted by this outage which isn’t a big surprise as that platform is still Lync with a new name. Microsoft has increased its transparency in recent years which is why they are explaining the outage of Skype even though it is a free to use program. For the past twenty-four hours, the service has been stable and it does appear that Skype is back to normal operation. Still, it does make you wonder how a large configuration change was found to be incompatible with any versions of the app as it makes it appear that there was not any testing done before implementation. Hopefully this significant outage will cause Microsoft to re-think its testing strategies before deploying an update to prevent downtime like this in the future. --- ### Microsoft, Google and Others Invest in CloudFlare > Microsoft, Google and others are the latest companies to invest in CloudFlare, a content delivery network that protects websites and improves reliability. - Published: 2015-09-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-google-and-others-invest-in-cloudflare/ - Categories: Cloud Computing - Tags: Cloudflare, Google, Microsoft - Article Type: News Microsoft, Google and others are the latest companies to invest in CloudFlare, a content delivery network that protects websites and improves reliability. It’s not often that you see Microsoft, Google, Qualcomm and even Baidu in the same headline but these companies all have at least one thing in common, CloudFlare. This morning, CloudFlare announced that they have raised $110 million in funding and the round was led by Fidelity. CloudFlare, for those who are not familiar with the company, is a content deliver network and distributed domain name service that sits between the visitor and the hosting provider; CloudFlare acts as a reverse proxy for websites. This service helps protect networks and improves performance/reliability for both websites and mobile applications. The reason Microsoft, Google and the others are interested in CloudFlare is the service has proven to provide webmasters with a value proposition that makes it hard to not use the tools (Petri users CloudFlare) and because of its growing presence, both Google and Microsoft want a piece of the action. Fortune notes that this investment is to help the company land new strategic partnerships and that the new funds will assist with further expanding its presence in China. With Google and Microsoft now investors in the company, it seems logical to conclude that CloudFlare will be broadening its presence deeper into the US Internet infrastructure as well. Both Microsoft and Google have a strong interest in the CDN market as both companies are responsible for a significant amount of the content that moves across the Internet backbone. Microsoft with its Azure data service and Google’s with its search and cloud products depend on... --- ### Building A Disaster Recovery Solution That Fits Your Budget > Disaster Recovery as a Service (DRaaS) is growing 50% year-over-year and on pace to become a $12 billion market by 2020. - Published: 2015-09-22 - Modified: 2024-09-04 - URL: https://petri.com/building-a-disaster-recovery-solution-that-fits-your-budget/ - Categories: Backup & Storage - Tags: webinar Disaster Recovery as a Service (DRaaS) is growing 50% year-over-year and on pace to become a $12 billion market by 2020. Businesses of all sizes are creating incredible amounts of irreplaceable data and depend on the availability of their systems to keep their business up and running. There are no exceptions. Perhaps, this is why Disaster Recovery as a Service (DRaaS) is growing 50% year-over-year and is on pace to become a $12 billion market by 2020. DRaaS is especially appealing to midsize organizations that lack the budgets and in-house expertise to maintain recovery operations on their own. Because you never know when a localized or regional disaster will occur, it’s imperative to be prepared at all times so that when a crisis does occur, you and your company are prepared. To help make sure you are familiar with DRaaS, it’s strengths and weaknesses as well as it’s cost, Petri and Infrascale have teamed up to host a webinar on this topic to keep you abreast of the current trends. The webinar is free (we are also giving away a Nest Learning Thermostat (2nd gen) or a $500 Amazon Gift Card for those who sign up and attend the event) and you can sign up below. Webinar: "Taking the 'Disaster' Out of 'Disaster Recovery' Date & Time: Sept. 30 | 1:00pm EDT Register to win: A $500 Amazon gift card or Nest Learning Thermostat (2nd gen) --- ### What Does Windows Server 2016 Mean for Small Businesses? > Russell Smith discusses why there's no immediate hurry for SMBs to upgrade to Windows Server 2016. - Published: 2015-09-22 - Modified: 2015-09-22 - URL: https://petri.com/what-does-windows-server-2016-mean-small-businesses/ - Categories: Windows Server 2016 - Tags: Cloud, SMB, Windows Server - Article Type: Opinion Russell Smith discusses why there's no immediate hurry for SMBs to upgrade to Windows Server 2016. There's lots of exciting new features in the current technical preview of Windows Server 2016, but if you have one or more on-premise Windows Server 2012 boxes, will Microsoft's new server OS be worth the upgrade? There's one thing that's clear in the forthcoming release of Windows Server, and to a lesser extent in Windows Server 2012 R2, which was released alongside Windows 8. 1 in October 2013, and that is most of the new functionality in these releases is aimed at large enterprises. In addition, functionality is also aimed at infrastructure services needed for running a private cloud or for enabling DevOps teams to work more efficiently. In my summary of new features, Microsoft Releases Windows Server 2016 Technical Preview 3 on the Petri IT Knowledgebase, I listed some of the new features, such as support for Docker and Windows Containers, improvements to Nano, Software-Defined Networking (SDN), and Virtual Network Appliances. And prior to the release of TP3, Windows Server 2016 already included improvements to Hyper-V, storage, and networking, such as Storage Spaces Direct and DNS Policies. But if your small or medium business is already running Windows Server 2012 R2, it's likely that there's not much to entice you into upgrading when Windows Server 2016 becomes available early next year. The exceptions to that rule may be if you require on-site storage or virtualization with failover capability, but that's beyond what most SMBs deploy on-site because of the specialist skills required to support the infrastructure. [adkit zone="freestyle"... --- ### Testing Hyper-V Disk Health with a Custom Property > Jeff Hicks takes his custom solution on testing Hyper-V disk health a step further by showing us steps to help automate the process with PowerShell. - Published: 2015-09-22 - Modified: 2024-12-03 - URL: https://petri.com/testing-hyper-v-disk-health-custom-property/ - Categories: Hyper-V, PowerShell - Tags: Advanced, Hyper-V, Scripting - Article Type: How To Jeff Hicks takes his custom solution on testing Hyper-V disk health a step further by showing us steps to help automate the process with PowerShell. In a previous article, I demonstrated how you could use PowerShell to test the health of a Hyper-V virtual machine's disk files. If you skipped that article, take a moment to read it, otherwise what I'm going to cover in this article might be confusing. The goal is to simplify typing or limit the amount of how much I have to type. I have a working script block that will give me a Boolean value on the existence of the VM's vhd and vhdx files. ​ This is essentially the same code that I used in my previous article. Although if you look closely, you'll see I am using $this instead of $_. That's because I intend to use this script block with Add-Member to create a custom property. Specifically, I am going to create a script property that will use the script block to grab the current value. In this situation, $this refers to the current object in the pipeline. ​ Testing VHD files with a custom property (Image Credit: Jeff Hicks) As an added benefit, the new property is now part of the virtual machine object. Verifying the new property (Image Credit: Jeff Hicks) Stated differently, I can use this property whenever I want, and I don't need to use Add-Member again. ​ Using the new property (Image Credit: Jeff Hicks) This property will persist for the length of my PowerShell... --- ### Microsoft’s Office 2016 is now available > Microsoft's latest productivity suite, Office 2016, is now available for purchase or download if you are an Office 365 subscriber. - Published: 2015-09-22 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-office-2016-now-available-to/ - Categories: Office 2016 - Tags: Editor's Pick, editors, Office 2016 - Article Type: News Microsoft's latest productivity suite, Office 2016, is now available for purchase or download if you are an Office 365 subscriber. Today is the day that you can get your hands on Office 2016. The productivity suite by Microsoft has become a key set of apps in the corporate world and dwarfs rivals like Apple’s iWork and Google’s apps when it comes to market share. Microsoft first announced Office 2016 back in March and the company has been collecting feedback since then to help improve the suite of applications. This has been a trend at Microsoft of late as they have been rapidly expanding their feedback channels, most notably the Windows Insider program, to let the community help define and shape its software. Office 2016 comes with several new features targeted at IT admins including support for Background Intelligent Transfer Service (BITS) to help control network traffic when deploying updates and new reports on Office activation and usage available in the Office 365 admin portal. In addition, there is new support for data loss prevention and strong security with multi-factor authentication. For those of you who are customers of the volume licensing program, you will gain access to Office 2016 starting on October 1st. These next generation of Office apps are as important to Microsoft as Windows 10. For the company, Office 2016 (via Office 365) will be the driver of revenue for the next few years in the productivity segment. While Google Apps may not be stealing much of their user base right now, if the company becomes complacent with their position, it becomes ripe for disruption... . --- ### Microsoft Announces Preview Import Service for SharePoint Online and OneDrive for Business > Migrate data to SharePoint Online and OneDrive for Business faster with the Office 365 Import Service. - Published: 2015-09-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-preview-import-service-for-sharepoint-online-and-onedrive-for-business/ - Categories: Microsoft 365 - Tags: Azure, migration, New-SPOMigrationPackage, Office 365, Set-SPOMigrationPackageAzureSource, SharePoint - Article Type: News Migrate data to SharePoint Online and OneDrive for Business faster with the Office 365 Import Service. If you have lots of data that you want to move to the cloud, a new migration feature in the Office 365 Import Service might be just for you. In addition to importing Outlook . pst files to Exchange Online, Microsoft recently announced the ability to upload data to SharePoint Online and OneDrive for Business. Utilizing Azure's Import/Export Service, the SharePoint Online Migration API can be used to efficiently transfer datasets to the cloud.  And for organizations with more than 10TB of data, there's also the option to send BitLocker-encrypted hard drives directly to Microsoft's datacenters. Microsoft claims that its new migration pipeline is significantly faster than older transfer methods, and it works by first staging the data in Azure before it gets processed and transferred to Office 365. Because data is first moved to Azure, you can choose the Azure region geographically located closest to you, which is especially useful if you have a slow data connection. Alternatively, you can also choose the region in which your Office 365 accounts are located. Azure storage accounts can be configured to be geographically or locally redundant (LRS), and this affects the speed in which data can be uploaded, with LRS accounts being faster. Other factors, such as international data transfers and link quality, may also have an impact on transfer speeds. The New-SPOMigrationPackage PowerShell cmdlet is used to create new migration packages based on the source files you provide it, and Set-SPOMigrationPackageAzureSource to upload the prepared packages to... --- ### Thoughts on System Center 2012 R2 Update Rollup 7 > Microsoft released Update Rollup 7 (UR7) for System Center 2012 R2 about 1 month ago. Read why it's probably safe to deploy this update now. - Published: 2015-09-21 - Modified: 2024-11-19 - URL: https://petri.com/system-center-2012-r2-update-rollup-7/ - Categories: System Center - Tags: Backup, Data Protection Manager, DPM, System Center, Windows Update - Article Type: News Microsoft released Update Rollup 7 (UR7) for System Center 2012 R2 about 1 month ago. Read why it's probably safe to deploy this update now. You're probably wondering why UR7 for System Center 2012 R2 is news now when it was released over a month ago on July 29th. If you're a long-time reader of mine, then you know that I don't trust Microsoft updates before they are one month old. The product that galvanized that opinion was System Center. System Center is Microsoft’s suite of private cloud and management tools (Image Credit: Microsoft) A History of Re-Releases Around every quarter, Microsoft releases a large collection of updates called an update rollup (UR) for the suite of System Center products. I have not done a thorough search, but I would be surprised if there has been a single UR release for System Center 2012 or System Center 2012 R2, where major issues were not introduced that required a re-release or hotfix by Microsoft and unwanted and otherwise unnecessary downtime and engineering for customers. I noted several weeks ago on my own site that UR7 was released for System Center 2012 R2, providing hotfix and feature updates for a number of products in the suite. I also recommended that administrators wait for a month before deploying the rollup; a history of problems converts a sense of adventure into one of caution. And sure enough, Microsoft had to re-release UR7 for System Center 2012 R2 Data Protection Manger (DPM) because, as Microsoft notes: After installing UR7, expired recovery points on the disk were not getting cleaned up, causing an increase... --- ### Skype Downtime Impacts Millions Around The Globe > Microsoft's communication tool, Skype, has been offline for several hours rendering the application useless; the company is currently working on a fix. - Published: 2015-09-21 - Modified: 2024-09-04 - URL: https://petri.com/skype-downtime-impacts-millions-around-the-globe/ - Categories: Current Status - Tags: News, skype - Article Type: News Microsoft's communication tool, Skype, has been offline for several hours rendering the application useless as users cannot chat, call, or communicate in anyway using the platform. For millions of users around the globe, when they woke up today they discovered that Skype was not operating as expected. In fact, the service is completely offline for many users and those who are able to sign in, find that none of their contacts are online which renders the service useless to anyone who relies on the platform for communicating. Microsoft is aware of the problem and is working on a fix but has offered no timeline for the service to return to normal. Skype is used by hundreds of millions of users around the world, so any outage impacts a large percentage of the company’s user base. While Skype has had its fair share of issues during the past few years, the service is generally reliable and rarely has been knocked offline. Today’s outage has been on-going for several hours and for those who depend on the service, like myself, it makes for a rough start to a Monday. When a service goes down like this, regardless of the vendor, it shows the delicate balance consumers and corporations makes when they depend on third-party systems for communication and productivity. With only Microsoft able to fix the issue, those who need the service are left in the dark as to what the issue is or when a possible fix will arrive. Microsoft is not alone in this issue, Skype competitors such as Slack have had their own share of outages and even Apple’s iMessage platform has faced downtime recently... . --- ### Volkswagen Used Software to Cheat on Emissions > VW admitted late last week that it used software to defeat U.S. emissions testing for years in order to promote its so-called "clean diesel" vehicles. - Published: 2015-09-21 - Modified: 2024-11-19 - URL: https://petri.com/volkswagen-used-software-to-cheat-on-emissions/ - Categories: Security - Tags: News - Article Type: News VW admitted late last week that it used software to defeat U.S. emissions testing for years in order to promote its so-called "clean diesel" vehicles. Volkswagen admitted late last week that it had defeated U. S. emissions testing in order to promote so-called "clean diesel" vehicles and surpass Toyota as the world's largest automaker. How did they do it? With software, of course. "The charges here are truly appalling," Clean Air Watch president Frank O'Donnell said. "Volkswagen knowingly installed software that produced much higher smog-forming emissions from diesel vehicles in the real world than in pre-sale tests. " VW was found to have installed a software-controllable device in its U. S. -based diesel-powered vehicles--Beetle, Golf, Jetta, and Passat, plus the Audi A3--sold between 2008 and 2015 that detects when they are being tested for emissions. During that time, the software throttles back the emissions output of the vehicles so that they pass the stringent U. S. requirements. But when the vehicles are used normally, they emit up to 40 times the legal emission amount, placing high levels of pollutants into the air. Volkswagen has sold almost 500,000 vehicles with this emissions-testing-defeating software, and has been ordered by the Environmental Protection Agency (EPA) to fix the cars at VW's expense. But this fix will be expensive, as it can't happen via a software change. Instead, VW have to make hardware changes to the affected vehicles, which will in turn impact their performance and fuel mileage. This will no doubt lead to a second round of expenses for the firm, when owners mount class action lawsuits against VW for ruining the trade-in and resale values of their cars. Aside from revealing... --- ### Paul Thurrott's Short Takes: September 18, 2015 > Because we remember that someone actually got a Zune tattoo, this week's other news includes another look at auto-downloading Windows 10 installs and more. - Published: 2015-09-18 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-18-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because we remember that someone actually got a Zune tattoo, this week's other news includes another look at auto-downloading Windows 10 installs and more. Photo courtesy of Gerardo Naranjo, @gernaranjo on Twitter Because we must remember that someone actually got a Zune tattoo, this week's other news includes another look at auto-downloading Windows 10 installs, where Windows 10 does bests, iOS 9 and ad-blocking, Carly Fiorina's HP legacy, and Microsoft's new foray into Linux distributions. "Upcoming Microsoft Store in New York City gets a new look ahead of opening" Now it looks exactly like an Apple Store instead of almost exactly. Have we talked about Microsoft auto-downloading Windows 10 to PCs that have not requested the upgrade? We have? Good. Let's talk about it again. Because it's been over a week since this behavior was first discovered, and it's still happening. And while I was quick to defend Microsoft against the made-up privacy baloney that dogged Windows 10 for the first several weeks of its public existence, this new behavior is in fact inexcusable. For the obvious reasons--no one wants 3+ GB of files downloaded to their PCs secretly--as well as the non-obvious: Windows 7, for example, has no notion of metered/non-metered connections, and some users could silently perform that download on a cellular connection and rack up huge fees. The best bit? Yep. If you delete the downloaded files, Windows Update will simply download them again. No joke: This needs to stop. "Surface Pro 4 Likely Confirmed To Launch On Oct. 6" So. Is it confirmed? Or is it just likely? It can't be both. Windows... --- ### Opinion: Word Mobile vs. Word 2013 > Learn about the differences between Word Mobile for Windows 10 and Word 2013. - Published: 2015-09-18 - Modified: 2024-09-04 - URL: https://petri.com/opinion-word-mobile-vs-word-2013/ - Categories: Mobile - Tags: Mobile, Office, Productivity, Word Mobile - Article Type: Overview Learn about the differences between Word Mobile for Windows 10 and Word 2013. In this article, I'll take a look at how Word Mobile for Windows 10 compares to Word 2013.  As the name suggests, Word Mobile and its counterpart apps -- OneNote, Excel and PowerPoint -- are intended for touch devices, but can also be used on traditional desktop PCs with a mouse. Devices smaller than 10. 1 inches support the app's full functionality for free, but larger display sizes require an Office 365 subscription to unlock editing features. The OneNote app is installed in Windows 10 out-of-the-box, but is limited to read-only mode without an Office 365 subscription. The Word Mobile interface on Windows 10 (Image Credit: Russell Smith) Word Mobile for Windows 10 It should come as no surprise that while Word Mobile is reasonably capable, it's no replacement for Word 2013. The GUI is a stripped down version of Word 2013, maintaining the recognizable ribbon interface, and those that are familiar with the desktop Office suite programs will have no problem navigating Word Mobile. One important limitation is that you can't edit multiple documents simultaneously, which isn't a constraint of Windows 10 universal apps, but Word Mobile itself. Naturally there are other advanced features that you won't find in Word Mobile, such as the mail merge, Smart Art, full support for references, such as table of contents; add-ins, document protection and inspection, etc. Working with documents Word Mobile is designed to be used with OneDrive, so if your Windows 10 login is associated with a Microsoft account,... --- ### Windows 10 Opinion: Vendors in No Hurry to Develop Universal Apps > Russell Smith explains why he thinks there's unlikely to be an explosion of Universal Apps for Windows 10 until Windows 7 loses significant market share. - Published: 2015-09-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-opinion-vendors-no-hurry-develop-universal-apps/ - Categories: Windows 10 - Tags: Mobile, Universal apps, Windows 10 - Article Type: Opinion Russell Smith explains why he thinks there's unlikely to be an explosion of Universal Apps for Windows 10 until Windows 7 loses significant market share. There's been a lot of expectation around Windows 10 concerning the availability and quality of touch-friendly Universal Apps, which run on any Windows 10 device. Many regard the future success or failure of the Universal App platform as a key indicator of whether Windows 10 Mobile, will survive long-term and whether Windows can gain traction as a tablet OS. Related: Build 2015: Success of Windows 10 Tied to New Universal App Platform Microsoft's Universal App platform, previously known as Metro and Modern UI apps, got off to a rocky start when Windows 8 failed to muster much enthusiasm from consumers and business users, largely due to the lack of Start menu and split personality that required PC users to run Universal Apps in isolation from the desktop. Windows 10 has been praised across the board for combining the best bits of Windows 7 and 8, providing users with a Start menu that also includes Live Tiles from the Windows 8 Start screen, and the ability to run Universal Apps in desktop windows, blurring the line between legacy desktop and Universal apps. You can read more about my impressions in the article, "Opinion Windows 10: Two Weeks Later. " But there's also been some unrest about the lack of new Universal Apps, and the poor quality of existing ones -- including the built-in Mail app in Windows 10 -- with many wondering why the launch of Windows 10 wasn't met with a significant increase in the quantity of apps being developed. Windows... --- ### Apple Wins Key Ruling in Patent Case Appeal Against Samsung > A United States federal appeals court ruled Thursday that Apple could prevent Samsung from shipping future devices that infringe on Apple's patents. - Published: 2015-09-17 - Modified: 2024-09-04 - URL: https://petri.com/apple-wins-key-ruling-in-patent-case-appeal-against-samsung/ - Categories: Mobile - Tags: News - Article Type: News A United States federal appeals court ruled Thursday that Apple could prevent Samsung from shipping future devices that infringe on Apple's patents. A federal appeals court ruled Thursday that Apple could prevent Samsung from shipping future devices that infringe on Apple's patents. The ruling applies to just three Apple-patented features, specifically: Slide-to-unlock, autocorrect and quicklinks. (Oddly, I thought that the slide-to-unlock patent was thrown out after a prior art challenge was upheld. ) These features were part of one of several Apple/Samsung legal battles where, in this case, Apple was award almost $120 million in damages in May 2014. At the time, the judge overseeing the trial ruled that the monetary damages award was enough of a punishment and that Samsung wouldn't need to remove those features from its infringing handsets. But Apple appealed, noting that the very point of patents is that patent holders be able to control the use of their inventions. Today, the U. S. Court of Appeals for the Federal Circuit in Washington agreed with Apple in a 2-to-1 decision. "The right to exclude competitors from using one's property rights is important," the ruling reads. "And the right to maintain exclusivity—a hallmark and crucial guarantee of patents rights deriving from the Constitution itself—is likewise important. " Several tech firms actually backed Samsung in this case, arguing that an Apple victory would let the firm "unfairly leverage its patent for competitive gain. " But the court disagreed, and rightfully so. "The public generally does not benefit when that competition comes at the expense of a patentee’s investment-backed property right," the ruling notes. "This is not a... --- ### Microsoft’s HoloLens Dev Kits Coming Next Year, First Target Is The Enterprise > Microsoft's CEO, Satya Nadella, said that the HoloLens dev kits will arrive next year and the first customers will be the enterprise. - Published: 2015-09-17 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-hololens-dev-kits-coming-next-year-first-target-is-the-enterprise/ - Categories: Windows 10 - Tags: HoloLens, Satya Nadella - Article Type: News Microsoft's CEO, Satya Nadella, said that the HoloLens dev kits will arrive next year and the first customers will be the enterprise. Microsoft’s CEO, Satya Nadella, took the stage at Dreamforce and when asked about HoloLens, he stated that development kits will start going out next year. He also reiterated that HoloLens is on a five-year path and that the enterprise will be the first target of the device. The reason behind targeting corporations firsts is that they have the capital and capacity to fully explore the capabilities of this type of computing device. Seeing as HoloLens first real-world use case is designed for 3D modeling and architectural planning, the corporate customer can benefit by using a HoloLens on day one. The fact that this device is on a five-year track to reach the consumer shows Microsoft’s commitment to the technology as they see it as the future of computing. It’s because of this vision that they are willing to invest for the long-term and are not pushing to release the product before the market is ready. Nadella focused on the fact that initially, these devices will excel at the single application use in the corporate environment. He stated that once you use it with Autodesk Maya, there is no going back if you are an industrial designer. Other areas that Microsoft is curious to see how HoloLens changes our current perception of computing and interaction is with customer service. Nadella believes that as more companies get their hands on the device, they will find unique ways to leverage the technology to help drive adoption of the platform. But, HoloLens for the... --- ### Tips and Tricks with PowerShell's Get-Member > PowerShell MVP Jeff Hicks shows us several tips and tricks with PowerShell's Get-Member cmdlet. - Published: 2015-09-17 - Modified: 2024-09-04 - URL: https://petri.com/tips-tricks-powershell-get-member/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate - Article Type: How To PowerShell MVP Jeff Hicks shows us several tips and tricks with PowerShell's Get-Member cmdlet. In "Working with PowerShell’s Get-Member cmdlet," I guided you through some additional ways to use the Get-Member cmdlet. Because this cmdlet can expose a lot of information about an object, you might need to fine-tune your expression so that you only see what you need. Although it may not be obvious to do, you can combine parameters to help you in this task. ​ Combining Get-Member parameters (Image Credit: Jeff Hicks) This limits the output to those properties that were added through PowerShell type extensions. You can also select a single member by name. ​ Selecting a single member (Image Credit: Jeff Hicks) Remember that Get-Member writes an object to the pipeline. Getting the members from Get-Member (Image Credit: Jeff Hicks) Because Get-Member writes an object to a pipeline, this makes it so that you can manipulate the output from Get-Member.  Let's say you want to group the results. ​ Grouping members by member type (Image Credit: Jeff Hicks) A better approach is to also use a hashtable. ​ Creating a hashtable of members (Image Credit: Jeff Hicks) Now, you can easily access each member type. Referencing individual member types (Image Credit: Jeff Hicks) Working with method members is especially interesting. Enumerating member methods (Image Credit: Jeff Hicks) Looking at this output, it might be handy... --- ### Azure AD Now Supports Facebook and Google Logins, Microsoft Accounts Coming Soon > Russell Smith explains how Microsoft's new Azure AD B2C service can help reduce identity management costs for businesses looking to engage with customers. - Published: 2015-09-17 - Modified: 2015-09-17 - URL: https://petri.com/azure-ad-now-supports-facebook-google-logins-microsoft-accounts-coming-soon/ - Categories: Microsoft Azure - Tags: Azure, Azure Active Directory, Identity Management, Security - Article Type: News Russell Smith explains how Microsoft's new Azure AD B2C service can help reduce identity management costs for businesses looking to engage with customers. Microsoft is putting identity management at the center of its security strategy, and as part of this ongoing program has announced the availability of the Azure AD B2C service, which will allow businesses to authenticate users via pre-existing Facebook and Google logins, and in the near future Microsoft accounts too. Azure AD B2C is an enterprise grade cloud service that supports authentication using popular consumer identity services, saving businesses the expense of separately creating and managing identities for customers that want to connect to its services. Azure AD B2C tenants Businesses can create one or more Azure AD (AAD) B2C tenants, which differ from standard AAD tenants in that users cannot see each other in the address book. Once created, applications can be registered in the tenant, social network providers added, and policies created to determine the various sign up, sign in and identity management processes. Applications can use OAuth 2. 0 or OpenID Connect to request user identity information, and Microsoft's servers handle passwords and run anomaly detection checks. When creating a sign-up policy, you can specify the attributes that should be populated, i. e. the information you want to collect from users, the identity providers permitted, which can include self-asserted email signup, and finally Application Claims are set in the policy to determine what attributes are sent to applications. Multi-factor authentication is optional, requiring users to verify a code sent to their mobiles. Finally, the end-user experience can be customized by specifying the HTML and CSS that... --- ### Cortana Analytics, Salesforce and Alpine Metrics walk into a dataset, generates better sales forecasts > Microsoft has announced that working with Salesforce and Alpine Metrics, they have created a new tool to help provide new insight into the sales workflow. - Published: 2015-09-16 - Modified: 2024-09-04 - URL: https://petri.com/cortana-analytics-salesforce-and-alpine-metrics-walk-into-a-dataset-generates-better-sales-forecasts/ - Categories: Cloud Computing - Tags: Cortana analytics, salesforce - Article Type: News Microsoft has announced that working with Salesforce and Alpine Metrics, they have created a new tool to help provide new insight into the sales workflow. Microsoft has been working to expand its relationship with key players in the technology sector like VMware and Apple; now Salesforce is jumping on the friendship bandwagon as Satya Nadella showcased how Cortana Analytics can improve sales data insight on stage at DreamForce. At the event, he showed how a partnership between Microsoft, Salesforce and Alpine Metrics was able to create a better way to manage the sales workflow. The new workflow uses Cortana Analytics prediction capabilities provides Salesforce customers with new forms of insight on the sales that are in their pipeline in the form of deep visualizations and verbal cues. When it comes to sales, without the use of machine learning, it’s typically up to the sales rep who is on the ground floor talking with his or her clients to determine if they are going to be able to close a sale. The solution shown today is to help take the emotional connection out of the equation and use the science behind the sales process to determine likelihood of closing the deal. In this new solution, Alpine Metrics is using Cortana Analytics to analyze more than 40 different factors that produces a balanced, accurate view of sales forecasts. The other benefit of being integrated with Cortana is the added support for natural language queries as well as being able to harness PowerBI too. Simply ask Cortana a query pertaining to the data and it can combine the relevant information from Salesforce to create visualizations based on... --- ### Microsoft Surface Turns a Corner > How did Microsoft turn the Surface business from a billion dollar loss into a multi-billion dollar business? - Published: 2015-09-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-surface-turns-corner/ - Categories: Windows Server - Tags: Microsoft, Surface, Surface Pro, Surface Pro 3 - Article Type: Opinion Aidan Finn shares his thoughts on how Microsoft turned its Surface business from a billion dollar lost into a multi-billion dollar business. I’ve always thought that Microsoft Surface was a beautifully designed and manufactured product, but I never believed that Microsoft knew how to make the business a success. Things have changed and suddenly everyone is very positive about the Surface -- HP and Dell want to sell it, and Apple wants to make one. What happened? I’ll explain what changed in this article. The future of the Surface Pro 3 was always in business, even if Microsoft tried to prevent that (Image Credit: Microsoft) Beating Trends The story of the Microsoft Surface truly is a tale of rags to riches. I remember watching the lines at TechEd North America 2013, where Microsoft was selling of Surface RT at a massive loss. I work in the channel, so I knew what was happening; Microsoft had too much stock and they had to virtually give it away. In July 2013, Microsoft announced that the Surface business was making a negative $900 million "inventory adjustment. " In other words, they had product that no one wanted, and Surface 2 was about to replace Surface RT. Windows RT, the OS that powered the consumer tablets, was eventually deprecated by Microsoft -- anyone who knew the history of Microsoft's ventures to non-x86/x64 processors guessed that this was inevitable. What was surprising was that Surface Pro was doing OK, not great, but OK. While Apple said that any tablet that required a stylus or a keyboard was doomed, Microsoft pitched the idea... --- ### Microsoft’s Upcoming Windows Phones Offer It The Best Chance To Crack The Corporate Nut > Microsoft will be releasing two new Windows phones next month and they will be the first devices that may crack the corporate nut. - Published: 2015-09-16 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-upcoming-windows-phones-offer-its-best-chance-to-crack-the-corporate-nut/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 Mobile - Article Type: News Microsoft will be releasing two new Windows phones next month and they will be the first devices that may crack the corporate nut. On October 6th, Microsoft will be announcing, at least, two new Lumias that will be the first devices that are running Windows 10 mobile that offer unique capabilities for administrators and advanced security layers that will help to protect mobile data once it leaves a corporate campus. The devices, codenamed Cityman and Talkman, likely to be known as the Lumia 950 and 950XL, have already had all of their specs leak and you can see what the devices will look like in the image above. The one feature to keep an eye on is the iris scanner, this new tool will bring Windows Hello support to these devices. In addition to the hardware being high end, it’s the software that will give Microsoft the best chance to finally crack into the corporate markets as there are unique features that can only be found on Windows devices. For starters, basic things like the Action center will sync between the phone and the desktop, so for users who have Windows 10 PCs, using a Windows 10 mobile device will give them productivity parity for their notifications; also all of the apps they could ever need from Microsoft are baked into the platform as well. One of the keys to getting new devices into any new sector is gaining support from IT administrators and seeing as Windows 10 mobile runs the same core as Windows 10 desktop, provisioning these devices will work similarly to how Windows 10 for the PCs is done... . --- ### How to Check Notebook Battery Health using POWERCFG > Use PowerCFG to determine the health of your notebook's battery - Published: 2015-09-16 - Modified: 2024-09-04 - URL: https://petri.com/check-notebook-battery-health-using-powercfg/ - Categories: Windows Client OS - Article Type: How To Use PowerCFG to determine the health of your notebook's battery in this Ask the Admin by Russell Smith. In this easy Ask the Admin, I'll show you how to determine the health of your notebook's battery using a built-in Windows command line tool. I loved my Asus UX32VD Ultrabook when I first purchased it two years ago, but it didn't take long to realize that build quality was poor. First to fail was the hybrid storage: an SSD cache soldered directly on to the motherboard. The USB ports randomly disconnect devices and don't respond well to even the slightest cable movement. And the SD card reader only detects cards that are held in forcibly by hand. If that wasn't enough, the battery soon started to charge to less than 100%, and in the last couple of months, the battery only reached 48% capacity, which would see me through around 20 minutes disconnected from the mains. But in the last two weeks, I haven't been able to power on the notebook unless connected to the charger, so that led me to investigate the problem in more detail. Specifically, I wanted to confirm that the problem lie with the battery, and not a firmware or other hardware issue. Using POWERCFG to determine battery health To run PowerCFG, you need to open a command prompt with administrator privileges: In Windows 8. 1, click Start, type cmd on the Start screen, right click Command Prompt in the search results, and select Run as administrator from the menu. Give consent or enter administrative credentials if prompted. In the command prompt window,... --- ### Here’s what happens if you add more than 500 items to the Start menu in Windows 10 > There is a bug in Windows 10 where if you add more than 500 items to the menu, it will crash, eat app icons and exhibit other odd behavior. - Published: 2015-09-15 - Modified: 2024-09-04 - URL: https://petri.com/heres-what-happens-if-you-add-more-than-500-items-to-the-start-menu-in-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick, News, Windows 10 There is a bug in Windows 10 where if you add more than 500 items to the menu, it will crash, eat app icons and exhibit other odd behavior. With Windows 10, there is an odd bug with the Start menu that if you add more than 512 items to it, the menu enters a twilight zone and either eats your apps (not permanently deleted but they not longer show up in the menu) or crashes constantly. In an effort to make sure you are aware of what happens if you cross the 512 boundary, I sacrificed a VM to the Windows gods to go down this path. To experience this bug, it doesn’t require a lot of skill or effort but know that it does screw up your start menu temporarily and you may not want to intentionally do this unless you like tinkering around with Windows. To exploit the bug, you will need 500 of any file type; I used pictures for this example. Then you will need to navigate to %appdata%MicrosoftWindowsStart Menu and create a folder of any name. Once created, copy the 500 files to the new folder that you created but paste the items in as a shortcut. After doing this, if you click on your Start menu, the results become inconsistent and vary greatly. I have experienced lag time of up to 15 seconds for the menu to open, clicking ‘all apps’ will occasionally crash the menu and like others, some apps simply go missing from the menu. Other times, the menu would not open at all and clicking the Start button several times resulted in nothing and required a restart to get it to open again... . --- ### A Better PowerShell Automation Philosophy > Jeff Hicks walks us through several different scenarios to help us understand how IT pros can continue to automate tasks with PowerShell. - Published: 2015-09-15 - Modified: 2024-12-03 - URL: https://petri.com/better-powershell-automation-philosophy/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, Scripting - Article Type: How To Jeff Hicks walks us through several different scenarios to help us understand how IT pros can continue to automate tasks with PowerShell. Today's article is a continuation of a thread that started out discussing the best approach for selecting data from PowerShell, to automating that process. I'm going to continue with the same scenario and code samples, so take a few minutes to peruse my previous posts if you're just digging in. A PowerShell Tip for Selecting Data Easily Doing More with PowerShell Objects As I mentioned last time, the script file I ended up with was basically a playback of PowerShell commands you typed in an interactive session. But there's much more to PowerShell automation than this example. I'd like to get you thinking about creating reusable tools as modules. These tools will be the building blocks that you can combine to meet what I'm sure are ever-changing needs. In much the same way that a cmdlet like Start-VM is a building block, you can create your own through PowerShell functions. Please keep in mind that this article is more conceptual in nature and not exactly a tutorial on how to write a function. The most important concept is that a PowerShell function only does one thing and if it sends objects to the pipeline, it only sends one type of object. You would not write a function that emitted service and process objects. In the original scenario, there were a few distinct actions with different types of results. So I would create separate tools. First, here is a function to simply getting running virtual machines that start with a... --- ### PowerShell Summit Europe 2015 is Now Underway > Jeff Hicks gives us an inside look at the PowerShell Summit Europe 2015 conference that is now underway. - Published: 2015-09-15 - Modified: 2024-11-19 - URL: https://petri.com/powershell-summit-europe-2015-now-underway/ - Categories: PowerShell - Tags: Advanced - Article Type: News Jeff Hicks gives us an inside look at the PowerShell Summit Europe 2015 conference that is now underway. As I write this, the PowerShell Summit Europe is well underway in Stockholm, Sweden. And from what I can tell, everyone's learning a lot and very happy to be here. For those of you who are not familiar with this event, this is a European version of the PowerShell Summit that's held annually in North America, where the 2015 edition was held this past spring in Charlotte, NC. Sessions are short, intense, and directed at IT pros looking to learn more about PowerShell and related technologies, like Desired State Configuration. This is also the conference that Microsoft has decided is the key place to interact and share their plans with members of the PowerShell community. There are always several presentations from members of the PowerShell team and its cousins. We typically also hear from newly minted Technical Fellow Jeffrey Snover about what Microsoft is working on and where they are heading. IT pros that are paying attention will recognize that if Mr. Snover is talking about a particular technology, then they had better start paying attention. This year is no different. Key Technologies Emerging from the Summit If I had to summarize Snover's take-away points, Azure automation, Nano Server, and Containers are the takeaways of this event. And fortunately, all of these critical technologies have PowerShell implications. You may think these things don't apply to you, and they might not today, but I expect that these technologies will become more relevant and critical in the next few years. The corollary to... --- ### Microsoft Promotes Brad Smith to Company President > Microsoft has announced that Brad Smith, its chief legal counsel since the antitrust days, has been promoted to president and chief legal officer. - Published: 2015-09-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-promotes-brad-smith-to-company-president/ - Categories: Security - Tags: Microsoft, News, Privacy - Article Type: News Late last week, Microsoft announced that Brad Smith, its chief legal counsel since the antitrust days, has been promoted to president and chief legal officer. This is notable for a few reasons, not the least of which is that Mr. Smith is the first Microsoft president since 2002. Brad Smith will report directly to Microsoft CEO Satya Nadella. His promotion does not impact the structure of the company's Senior Leadership Team (of which he was already part). And I don't believe he's taking on any new direct reports, though that isn't entirely clear. "Brad has long had a broad role at the company and now I'm asking him to lead more new initiatives," Mr. Nadella wrote in email to employees on Friday. "He also leads a team of business, legal, and corporate affairs professionals spanning 55 countries. These teams are responsible for the company’s legal work, its intellectual property portfolio, patent licensing business, and the company’s government affairs, public policy, corporate citizenship and social responsibility work. " Nadella also noted that Smith would be responsible for "privacy, security, accessibility, environmental sustainability and digital inclusion. " This makes sense, as Mr. Smith has been the voice of these initiatives for some time, and has authored virtually all of Microsoft's official statements about privacy and related matters, which routinely take a customer-focused stance. He's also a regular contributor to Microsoft's investor conference calls. Indeed, Brad Smith has been at Microsoft for 22 years. He started in 1993,... --- ### Testing Hyper-V Disk Health > Jeff Hicks shows us a solution to help test Hyper-V disk health by identifying critical virtual machines. - Published: 2015-09-14 - Modified: 2024-09-04 - URL: https://petri.com/testing-hyper-v-disk-health/ - Categories: Hyper-V - Tags: Advanced, Editor's Pick, Hyper-V, Scripting - Article Type: How To Jeff Hicks shows us a solution to help test Hyper-V disk health by identifying critical virtual machines. I use Hyper-V extensively to provide a domain environment that serves as my training and test playground. And because my environment has to be portable, I tend to run into more problems than hopefully you do. However, you might still benefit from experiences and maybe you will learn something about PowerShell along the way. If a virtual machine is already running, I'm not too concerned about it. Instead, I need a heads up on all my other virtual machines, especially if there is a problem that would keep them from starting. Using the Hyper-V module, grabbing all virtual machines is pretty easy. Getting virtual machine status (Image Credit: Jeff Hicks) As you can see, I have one virtual machine with a critical problem, which is because the virtual machine configuration file is missing or corrupt. The configuration file is an XML file named with the virtual machine's ID. I can confirm that the file is missing. ​ Listing configuration file locations (Image Credit: Jeff Hicks) That's a pretty easy thing to check and fix. What's a bit harder is verifying that the virtual disk files, which include vhd and vhdx files, are all in place. I can easily see what the files should be. Listing virtual machine disk files (Image Credit: Jeff Hicks) But unless the virtual machine is running without error, I really don't know. One thing I can do is test each path. ​ [caption... --- ### Russia Finds Google Guilty of Antitrust Violations > Russia's antitrust agency found Google guilty of violating the country's laws by requiring device makers to bundle its apps and services on Android devices. - Published: 2015-09-14 - Modified: 2024-09-04 - URL: https://petri.com/russia-finds-google-guilty-of-antitrust-violations/ - Categories: Mobile - Tags: Mobile, News - Article Type: News Russia's antitrust agency found Google guilty of violating the country's laws by requiring device makers to bundle its apps and services on Android devices. Image: Getty Images Russia's Federal Anti-Monopoly Service (FAS) has found Google guilty of violating the country's antitrust laws by requiring hardware makers to bundle Google apps and services on Android devices. The agency said it would announce remedial punishments for the violation within 10 days. Google is violating Section 1 of Article 10 of the Law on the Protection of Competition, the FAS says. "It’s a violation that Google required equipment makers to pre-install its services, including search, to get the Google Play application store on their devices," said Vladimir Kudryavtsev, who described as the head of the IT department for the Federal Anti-Monopoly Service. It's fair to say that Russia's antitrust probe of Google differs from similar investigations in the United States and the EU in several ways. The key one being that Russia is clearly acting in a protectionist manner: a Russian search company called Yandex complained about Google's business practices in February, just 8 months ago. Regulators in the US and EU would have barely had enough time to file paperwork in that short time frame, let alone issue a ruling. But the Yandex complaint is not uncommon. Google, it says, forces device makers to install Google's apps and services in Android and then make them the system defaults. It does not allow device makers who license the Google Play Store—Google's mobile app store for Android—to configure other apps or services as the defaults. This requirement,... --- ### Microsoft to unveil next generation hardware on October 6th > Microsoft has announced that they will be hosting an event on October 6th to announce their next generation of hardware that includes Surface and phones. - Published: 2015-09-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-unveil-next-generation-hardware-on-october-6th/ - Categories: Windows 10 - Tags: Editor's Pick, News, Surface Pro 4, Windows 10 - Article Type: News Microsoft has announced that they will be hosting an event on October 6th to release their next generation of hardware that will include Surface and phones as well. Microsoft has announced that they will be hosting an event on October 6th to announce their next generation of hardware that will include Surface and phones as well. These devices will be used as flagship products for the company and will also include enterprise friendly features. To date, Microsoft has not launched any of their own hardware to support its new OS, Windows 10. This all changes in October with the arrival of the next generation Surface and phones that will run Windows 10 mobile. For the Surface Pro 4, expect to see Intel’s Skylake processors under the hood but more importantly, Windows Hello capable sensors will be included as well. Windows Hello, for those not familiar, is a new biometric authentication feature that can use finger print scanners or Intel’s RealSense cameras to scan your face for verification. These new authentication mechanisms will be a selling point for the hardware even though they are not brand new to the market. But, with Windows 10, the tools work seamlessly with the OS to create stronger security scenarios. For companies looking to upgrade their hardware, Windows Hello will likely soon be considered an industry best practice. The new phones that are coming, codenamed Cityman and Talkman, will be flagship devices to highlight all the new features of Windows 10 mobile. These phones will pair well with Windows 10 desktop machines and will also feature robust mobile security with support for biometric login; a feature that has been lacking in the Windows... --- ### Microsoft re-signs agreement with NATO to share data to thwart cyber threats > Microsoft and NAT have signed an agreement to share data to help better protect countries in Europe; this is a renewal of a previous agreement. - Published: 2015-09-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-re-signs-agreement-with-nato-to-share-data-to-thwart-cyber-threats/ - Categories: Security - Tags: Editor's Pick, Microsoft, Security - Article Type: News Microsoft and NATO have signed an agreement to share data to help better protect countries in Europe; this is a renewal of a previous agreement. Microsoft works with governments and organizations around the world to help secure networks and protect data. For the last 12 years, Microsoft and NATO have been sharing data about vulnerabilities in various platforms so that governments can better protects their networks and today, Microsoft and NATO are announcing that they are renewing that agreement to help further protect European countries. This new agreement falls under Microsoft’s Government Security Program (GSP) that is part of the company’s Trustworthy Computing Group. The GSP allows national governments unique access to Microsoft’s products including the source code to verify that there are no backdoors into the operating system; countries in the GSP are also provided vulnerability and threat intelligence from Microsoft. This specific agreement is for Europe and is part of the European Commission’s Cybersecurity Strategy initiative for shoring up that continent’s resources for combating cybercrime. The agreement announced today makes it possible for NATO, the EU and Microsoft to work together to better understand the threats impacting their networks today and to help prepare for the attacks of tomorrow. During the last few weeks, concerns about privacy and Windows 10 has been raised about what Microsoft is able to see or is actively collecting, this announcement may poke those fires. But, this agreement is nothing new, Microsoft has been working with NATO for over a decade and already works closely with governments around the world to help bolster their security efforts; this agreement and all of the GSP agreements are not related to... --- ### Use Azure as Virtual DR Site for VMware and Physical Servers > Learn more about Microsoft Azure's in-the-cloud disaster recovery (DRaaS) solution for VMware virtual machines and physical servers. - Published: 2015-09-14 - Modified: 2024-09-04 - URL: https://petri.com/use-azure-virtual-dr-site-vmware-physical-servers/ - Categories: Microsoft Azure - Tags: Azure, Business Continuity, Disaster Recovery, DR, DRaaS, ESXi, Microsoft Azure, VMwre, vSphere - Article Type: News Learn more about Microsoft Azure's in-the-cloud disaster recovery (DRaaS) solution for VMware virtual machines and physical servers. After acquiring InMage Systems in July 2015, Microsoft quickly started merging the company's technologies into Microsoft's cloud solutions. InMage had created a solution that allows VMware virtual machines and physical servers to be migrated to the cloud. Although Microsoft already had a means to do this for virtual machine through Azure Site Recovery (ASR), this technology is restricted to Hyper-V virtual machines. And although Hyper-V might be growing, there's still a huge market of VMware customers, where Microsoft isn't about to turn down the opportunity to sell services to VMware's customers. But now Azure Site Recovery has embraced InMage technology, where you can now use Azure as a virtual disaster recovery site for Hyper-V virtual machines, VMware virtual machines, and physical servers. The architecture of replicating VMware VMs and physical servers to Azure (Image Credit: Microsoft) An Overview of the Solution The solution of replication Hyper-V virtual machines to Azure, without System Center, works something like this: You create an ASR vault A GRS storage account will store the replicated virtual hard disks A VNET will be used to connect failed over virtual machines A protection group is created to define a replication policy A provider is installed on hosts Virtual machines are associated with a protection group and they replicate at the host level using Hyper-V Replica A recovery plan is created to orchestrate failover In the event of a failover, the recovery plan is executed, and virtual machines are created and connected to the correct VNET... . --- ### Paul Thurrott's Short Takes: September 11, 2015 > Because a sentence that starts "you people" is never going to end well, this week's other news includes downloading Windows 10 whether you want it or not. - Published: 2015-09-11 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-september-11-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because a sentence that starts "you people" is never going to end well, this week's other news includes downloading Windows 10 whether you want it or not. Because a sentence that starts "you people" is never going to end well, this week's other news includes Microsoft auto-downloading Windows 10 whether you want it or not, a Microsoft Store opening, Windows phone's big success, US cyber-security issues, Xbox One loses again, the angst of iPhone upgraders, and T-Mobile's battle against data abusers. Yes, Microsoft is downloading Windows 10 to PCs that haven't chosen to accept the upgrade I've spent a lot of time (easily) recently debunking all of the supposed Windows 10 privacy violations. But this latest accusation against Microsoft is ... troubling. And real. Microsoft is downloading the 4-6 GB of files needed to upgrade to Windows 10 to PCs on which their users have not asked to upgrade. Why? Because everyone wants Windows 10, of course. Some people just don't realize it yet. "For individuals who have chosen to receive automatic updates through Windows Update, we help upgradable devices get ready for Windows 10 by downloading the files they'll need if they decide to upgrade," Microsoft told The Inquirer, confirming this incredible act. "When the upgrade is ready, the customer will be prompted to install Windows 10 on the device. " That is unacceptable, completely unacceptable. And no one "chooses" to receive automatic updates. They're coerced into doing so. By Microsoft. This needs to change. Now. "Microsoft thinks you'll love Windows 10 so much, it downloads it for you ... " Nicely done. Microsoft is hosting a contest ... for a store opening It's an... --- ### Azure Backup of IaaS VMs Generally Available > Microsoft has made Azure Backup for IaaS virtual machines generally available. Learn about the improvements made to this vital service with this release. - Published: 2015-09-11 - Modified: 2024-09-04 - URL: https://petri.com/azure-backup-iaas-vms-generally-available/ - Categories: Microsoft Azure - Tags: Azure Backup, Backup, Microsoft Azure, virtual machines - Article Type: News Microsoft has made Azure Backup for IaaS virtual machines generally available. Learn about the improvements made to this vital service with this release. Microsoft has announced the general availability of backup for Azure IaaS virtual machines. Microsoft has also improved the functionality and performance of the service as a part of this release. Azure Backup for Virtual Machines I wrote a post back in March after Microsoft launched the preview of backup for IaaS VMs. In that post, I explained how to configure backup of virtual machines using the service as it was during the preview -- the configuration hasn't changed much. One of my biggest concerns with deploying valuable business services in the cloud was that cloud services, such as Azure and AWS assumed that we were deploying stateless machines that we could afford to lose. I have worked in SME and enterprise environments, and I can't remember a single server that we could lose, where the business would have been OK about it. Microsoft adapted the Azure Backup service, which was originally designed for hybrid backup solutions to backup Azure virtual machines to a fault-tolerant Azure storage account called a backup vault. Microsoft launched a preview service earlier this year. Azure Backup can protect Azure virtual machines by backing them up to an Azure backup vault (Image Credit: Microsoft) I put the preview of Azure Backup for virtual machines into use with my Azure account, which I use to run my personal blog. A few months ago, I had a catastrophic failure, and I needed to restore a backup of my virtual machine -- it... --- ### Apple Lures the Enterprise with the iPad Pro, Uses Office as the Bait > Apple held its keynote this week where it announced a myriad of products and one such device, the iPad Pro, is targeted at productivity focused individuals. - Published: 2015-09-11 - Modified: 2024-11-19 - URL: https://petri.com/apples-targets-the-enterprise-with-ipad-pro-and-office/ - Categories: Office - Tags: Apple, Editor's Pick, iPad Pro, Office - Article Type: News Apple held its keynote this week where it announced a myriad of products and one such device, the iPad Pro, is targeted at productivity focused individuals. Kirk Koenigsbauer takes the stage at Apple's keynote Apple held its keynote this week where it announced a myriad of products and one such device, the iPad Pro, is targeted at productivity focused individuals. What was notable about the announcement of the device is that when the company showed it off, they had Microsoft on stage to highlight the capabilities of Office on the iPad Pro and not iWork. Apple has been trying for years to get its products entrenched deeper into the enterprise. While the iPhone has resonated well with consumers who use these phones as both personal and work devices, the iPad has not had as strong of adoption in the corporate world which is why Apple has teamed up with Cisco (and IBM) to help improve the experience. One sign that Apple has conceded that Microsoft Is winning the productivity game is that when it announced the iPad Pro, Microsoft was on-stage showing off its Office suite, not Apple showing off the capabilities of its iWork products. This shouldn’t come as too much of a surprise as companies around the world are using Office and Apple knows that if they want their hardware to be used, they need it to work well with the most widely used productivity suite on the planet. What’s unique about this is that based on the demonstration, Apple let Microsoft see its new hardware before it was announced to begin improving its apps for this size of a device which is... --- ### Disconnect a Microsoft Account from your Windows 8 Login > Learn how to disconnect a Microsoft account from a local Windows 8 account in this Ask the Admin by Russell Smith. - Published: 2015-09-11 - Modified: 2024-09-04 - URL: https://petri.com/disconnect-a-microsoft-account-from-your-windows-8-login/ - Categories: Windows 8 - Tags: Security, Windows 8 - Article Type: How To Learn how to disconnect a Microsoft account from a local Windows 8 account in this Ask the Admin by Russell Smith. In today's Ask the Admin, I'll show you how to disconnect a Microsoft account from a Windows 8 login. When setting up a user account in Windows 8 for the first time, Microsoft encourages you to provide details of a Microsoft account, such as those used to access Outlook. com, so that Windows can automatically log you in to Microsoft services and synchronize OneDrive files. Disconnect a Microsoft account using PC Settings in Windows 8 (Image Credit: Russell Smith) While this provides a convenient computing experience, not everybody wants this functionality, and at any time, you can disconnect a Microsoft account from your local Windows login using the PC Settings app in Windows 8. 1. Disconnect a Microsoft account Log into Windows 8 using the account you want to modify, and follow the instructions below: Press WIN+C to open the Charms Bar. On the Charms Bar, click Settings. On the Settings panel, click Change PC settings. In the PC Settings app, click Accounts in the left panel. Make sure that Your account is selected on the left. On the right of the app, click Disconnect under your Microsoft Account email address. On the Switch to a local account screen, type your current password, and click Next. Change to a local account in Windows 8 (Image Credit: Russell Smith) Enter information as prompted so that Windows can create a local account. A username will be suggested, which you... --- ### Apple Announces New iPhones, iPads and More > Apple on Wednesday announced a wide array of new products, including new iPhone 6S smart phones, a Surface-like iPad Pro, Apple TV, iOS, and more. - Published: 2015-09-10 - Modified: 2024-09-04 - URL: https://petri.com/apple-announces-new-iphones-ipads-and-more/ - Categories: Mobile - Tags: Apple, Apple Watch, iCloud, iOS, iPad, iPhone, News - Article Type: News Apple on Wednesday announced a wide array of new products, including new iPhone 6S smart phones, a Surface-like iPad Pro, Apple TV, iOS, and more. Apple on Wednesday announced a wide array of new products, including new iPhone 6S smart phones, a Surface-like iPad Pro, and the first major revision to Apple TV in several years. While everything Apple announced was widely anticipated and the event held few surprises, it was still notable for the sheer volume of product announcements. The most interesting, perhaps, is the iPhone 6S, which, as its name suggests, is an evolutionary update to last year's iPhone 6 models. This year, iPhone 6S and the phablet-class iPhone 6S Plus carry forward with the same form factor as before, but Apple has added a new rose gold color option and bolstered the devices's aluminum bodies and glass to be less bendy than before. But iPhone 6S does have at least one major update, a new pressure-sensing glass screen that supports new types of gestures. Dubbed 3D touch, this system essentially provides right-click-like support to the iPhone and the underlying iOS system, letting users "peek" into content and then press even more to "pop" in further and get more information. 3D touch is the same technology Apple previously marketed as Force Touch in the new (to 2015) MacBook and Apple Watch. The iPhone 6S also includes improved cameras, with the rear-mounted iSight camera jumping up to 12 megapixels (from 8) and adopting a Live Photos feature that looks surprisingly similar to the Living Images feature that's been part of Microsoft's Lumia Camera for the past few years. The iPhone 6S... --- ### Microsoft’s Introducing a New Way to Update Office, Current Branch for Business > To help corporate customers keep their machines updated but no overburden them with updates, the company has announced Current Branch for Business. - Published: 2015-09-10 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-introducing-a-new-way-to-update-office-called-current-branch-for-business/ - Categories: Office, Office 2016 - Tags: Editor's Pick, Office, Office 2016 To help corporate customers keep their machines updated but no overburden them with updates, the company has announced Current Branch for Business. Earlier today, Microsoft announced that Office 2016 will arrive on September 22nd and to help corporate customers keep their machines updated but not overburden them with updates, the company has announced Current Branch for Business. This new option for updating Office makes it easier for corporations to update their machines with only three updates being delivered per year. It’s important to know that if you do opt to use the three updates per year method for maintaining your installs, monthly security patches will still be available if a highly vulnerable exploit is discovered. If this model sounds familiar, this is a similar path to what Microsoft is doing for Windows 10 Enterprise customers to deliver consistent feature updates on a timed interval so IT admins don’t have to scrape each update clean of features to only deliver security patches. The first Current Branch for Business build is set to be released in February 2016, which the company says is essentially the same feature seat as the September 22nd release but with four additional months of security updates. The Current Branch for Business feature is only available to Office 365 ProPlus users and will be the default setting for ProPlus subscribers, those with Office 365 Home and Personal, you will be restricted to the monthly updates. Microsoft has provided detailed documentation about the new update process for Office that you can find here. --- ### Working with PowerShell's Get-Member cmdlet > Jeff Hicks shows us how to do more with PowerShell's Get-Member cmdlet. - Published: 2015-09-10 - Modified: 2024-09-04 - URL: https://petri.com/working-with-powershell-get-member-cmdlet/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To Jeff Hicks shows us how to do more with PowerShell's Get-Member cmdlet. One of the first cmdlets that you will learn when diving into PowerShell is the Get-Member cmdlet.  This is a very handy cmdlet because it helps you discover what you can do with different object types. All you have to do is pipe any command or object to Get-Member, and it will tell you everything that can be seen about the underlying object. Related: How to Learn PowerShell Using PowerShell's Get-Member cmdlet (Image Credit: Jeff Hicks) PowerShell's Get-Member cmdlet is one of those commands that you see demonstrated and you think that's all there is to it. With that sia,d there's more to this cmdlet than most people realize, so let's dig in. If you look at help for Get-Member, then you might be surprised that there are a few other parameters. Get-Member help (Image Credit: Jeff Hicks) This is why I always read help, even for commands you think you know. One way you can use Get-Member is to limit what you get back. Only interested in an object's properties? Then ask to see only properties. ​ Viewing service properties only (Image Credit: Jeff Hicks) There are several different member types that you can see. ​ A list of member types (Image Credit: Jeff Hicks) You can also display a comma-separated list. Getting multiple member types (Image Credit: Jeff Hicks) Without getting into . NET too deeply, you should understand that... --- ### Microsoft’s Office 2016 Will Arrive on September 22 > Microsoft has announced that on September 22, the company will begin rolling out Office 2016, the latest iteration of the company’s productivity suite. - Published: 2015-09-10 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-office-2016-will-arrive-on-september-22/ - Categories: Office, Office 2016 - Tags: Editor's Pick, Office, Office 2016 Microsoft has announced that on September 22, the company will begin rolling out Office 2016, the latest iteration of the company’s productivity suite. Microsoft has announced today that on September 22nd, the company will begin rolling out Office 2016, the latest iteration of the company’s productivity suite of applications. If you are part of the company’s volume licensing program, you will be able to download Office starting on October 1st. Microsoft first announced Office 2016 back in March and the company has been collecting feedback since then to help improve the suite of applications. This has been a trend at Microsoft of late as they have been rapidly expanding their feedback channels, most notably the Windows Insider program, to let the community help define and shape its software. Office 2016 comes with several new features targeted at IT admins including support for Background Intelligent Transfer Service (BITS) to help control network traffic when deploying updates and new reports on Office activation and usage available in the Office 365 admin portal. In addition, there is new support for data loss prevention and strong security with multi-factor authentication. If you are wanting to learn more about the new suite, in November, Microsoft will be kicking off a IT and developer focused event series called the Microsoft Cloud Roadshow. These events will provide free, two-day technical training in 12 cities around to world to help bring you up to speed on Office, Azure and Windows. If you want to learn more, you can check out the announcement post for Office 2016 here. --- ### Apple Joins Microsoft in Resisting Governmental Access to Customer Data > Later today, Apple will introduce new iPhones, iPads and other devices. But there are other things going on with Apple that are far more important. - Published: 2015-09-09 - Modified: 2024-09-04 - URL: https://petri.com/apple-joins-microsoft-in-resisting-governmental-access-to-customer-data/ - Categories: Mobile - Tags: iOS, iPhone, News - Article Type: News Later today, Apple will introduce new iPhones, iPads and other devices. But there are other things going on with Apple that are far more important. Later today, Apple will introduce new iPhones, iPads and other devices. But there are other things going on with Apple that are far more important to its long-term viability with customers: like Microsoft, Apple is stridently resisting giving governments and law enforcement access to customer data through its technology products and offerings. Today, Microsoft will begin the latest battle in a long-running legal skirmish involving the jurisdiction of search warrants related to email storage. Central to this case is Microsoft's belief that allowing US governmental and law enforcement access to customer data held overseas would undermine customer confidence in its offerings and harm its long-term viability. The details of Apple's battle are quite different from those of Microsoft's, but the central tenet is the same. Should it provide governments and law enforcement agencies with access to customer data, Apple would no longer be trusted. Here's what's happening. When Apple released the iPhone 6 generation of smart phones last fall, it concurrently shipped a new version of its iOS mobile system that provided "end-to-end" encryption capabilities, essentially ensuring that any data stored on, or transmitted through, the devices would be safe from prying eyes. The move was presented as customer-centric, since Apple's customer base has become increasingly aware of privacy issues in the wake of the Snowden revelations and other media reports. But it also sent a message to the U. S. government, in particular: Apple would protect its customer interests, even at the expense of law enforcement. At... --- ### Windows 10 Roadmap – Fall 2015 Edition - Published: 2015-09-09 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-roadmap-fall-2015-edition/ - Categories: Windows 10, Windows Client OS - Tags: Editor's Pick, roadmap, Windows, Windows 10 - Article Type: News With the release of Windows 10, Microsoft is moving to a new servicing model for the OS that includes constantly updating the platform as well as introducing new tools for the enterprise. To help keep you abreast of the roadmap ahead for the OS, using information from trusted insider sources at Microsoft, I have created a roadmap that will be updated each quarter with what is known about the future plans of the OS. Windows 10 Threshold Wave 2: This fall, currently slated for November, Microsoft will be releasing the first large update for Windows 10. Currently named Threshold wave 2, the update will bring with it a couple of new features as well as further refinement to the interface. We have already started to see some of these changes in the Insider builds that have been released, including colored title bars and new icons. In addition, extensions for Edge should arrive along with the updated Messaging application for the desktop too; the Enterprise SKU will get three new features. There will also be plenty of under-the-hood updates to improve the performance and stability of the platform. Windows in 2016: Microsoft is currently in the planning process for it’s next set of updates, currently under the codename of Redstone. The update, much like Threshold, will come in two waves during 2016, which appears to be the theme of how the company will deliver updates to the OS in the new Windows as a Service model. At this time,... --- ### Windows 10 Will Receive Three New Enterprise Features This Month > Microsoft has announced that Enterprise Data Protection, Microsoft Passport and Windows Store for Business will be arriving to Windows Insiders this month. - Published: 2015-09-08 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-insiders-will-get-three-new-enterprise-features-starting-this-month/ - Categories: Windows 10 - Tags: Windows 10, Windows 10 for Business - Article Type: News Microsoft has announced that Enterprise Data Protection, Microsoft Passport and Windows Store for Business will be arriving to Windows Insiders this month. Microsoft is building several new tools for the enterprise to help these organizations gain more control over their network and how updates are administered. The company has announced today that Enterprise Data Protection, Microsoft Passport and Windows Store for Business will be arriving to Windows Insiders later this month. Microsoft initially announced these features back at Build 2015 and many assumed that the tools would arrive with the OS when it was released on July 29th. The OS launched without the tools and now we know for certain that they will arrive before the end of the year. The company went as far to say that Windows Insiders will get the bits this year but we will be curious to see how they will be tested as most insiders are running Windows 10 Home or Pro, few are running Windows 10 Enterprise. The first new feature coming is EDP, or Enterprise Data Protection, that makes it possible to separate personal and corporate data from each other and allow companies to have greater control about where a user can copy and paste content. The second feature is Microsoft Passport that can work in conjunction with Windows Hello and this tool helps workers securely login to applications, websites and networks without the need for a password. And the third feature that will arrive is Windows Store for Business which provide corporate customers a unified Windows app store experience including a choice of Windows store apps alongside company-owned apps, and this will... --- ### Configure Share Permissions with WMI and PowerShell > Learn how to easily configure share permissions with WMI and PowerShell in this helpful tutorial by Jeff Hicks. - Published: 2015-09-08 - Modified: 2024-09-04 - URL: https://petri.com/configure-share-permissions-wmi-powershell/ - Categories: PowerShell, Windows Server - Tags: Advanced, CIM-WMI, Get-SMBShareAccess, get-wmiobject - Article Type: How To Learn how to easily configure share permissions with WMI and PowerShell in this helpful tutorial by Jeff Hicks. Sometimes in IT, the hardest part of a task is figuring out the right tool for the job. And even then, you may run into situations where you can't use your desired tool. Here's an example pulled from a recent PowerShell forum post.  In this article, we'll learn how to configure share permissions with WMI and PowerShell. The problem at hand is how to remove the everyone group from share permissions, presumably across multiple servers or desktops. Life would be certainly easier if the shares were created accordingly in the first place. With that said, circumstances change and the need to modify share permissions isn't that extraordinary. Fortunately, with PowerShell and the commands in the SMBShare module, this is very easy. I'll use a share on my Windows 8. 1 desktop running PowerShell 4. 0, but it's just as easy to use the cmdlets with remote computers. It's very easy to view permissions using Get-SMBShareAccess: Listing share permissions. (Image Credit: Jeff Hicks) And just as easy to modify them. Modifying share permissions (Image Credit: Jeff Hicks) Unfortunately, your servers or desktops need to be running a version of Windows and PowerShell that supports the CIM classes for this to work remotely. For older servers and desktops, this might be a large obstacle. In the case of the IT pro asking the original question, they wanted to try and accomplish this using WMI. Managing Windows permissions is without a doubt one of the most cumbersome and complex... --- ### Windows 10 has Surpassed 81 Million Installs > Microsoft previously that Windows 10 had surpassed 75 million installs and that number continues to grow and has surpassed 81 million installs. - Published: 2015-09-08 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-has-surpassed-81-million-installs/ - Categories: Windows 10 - Article Type: News Not long ago, Microsoft announced that Windows 10 had surpassed 75 million installs and that number continues to grow with my insider sources telling me that the OS is installed on more than 81 million machines. Windows 10 is crucial for Microsoft's future success in the enterprise and consumer markets. Seeing as Windows 8 was largely ignored by the enterprise and that the consumer did not warm up to the OS, if Windows 10 does not succeed, that means Windows 7 is the long term future for the company. But, with Windows 10 already taking 5% of the marketshare for desktop operating systems, the initial feedback suggests that the OS is off to a good start. And while the 81 million figure represents the total base, Microsoft has provided a small glimpse into the enterprise sector where they have stated that there are 1. 5 million installs of its Enterprise SKU. They also touted that the OS is actively being tested and considered for deployment in corporations around the world and they expect that number to grow quickly. One trend that will be interesting to watch is to see if consumers warm up to Cortana and then want that feature in other locations, such as on their phone or even their work PCs. The personal digital assistant is designed to help make you more productive by surfacing relevant information for you, such as traffic on your drive home from work or to remind you to pick up milk if you are heading by a grocery store... . --- ### Microsoft Email Case Heads to Federal Appeals Court This Week > This week Microsoft will face off against the DOJ in a closely-watched case that will help determine the scope of U.S. search warrants in the digital age. - Published: 2015-09-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-email-case-heads-to-federal-appeals-court-this-week/ - Categories: Cloud Computing - Tags: News - Article Type: News This week Microsoft will face off against the DOJ in a closely-watched case that will help determine the scope of U.S. search warrants in the digital age. On Wednesday, Microsoft will face off against the U. S. Justice Department in a federal appeals court in a closely-watched case that will help determine the scope of U. S. search warrants in the digital age. Microsoft is challenging a mid-2014 federal court ruling that determined that the software giant must adhere to a search warrant related to a narcotics investigation and turn over customer data. The rub? The customer in question doesn't live in the United States, and his data is stored in a Dublin, Ireland-based data center. Microsoft has been fighting this warrant since it was issued in December 2013, arguing that it is in fact illegal for it to comply, and that U. S. law enforcement agencies have no jurisdiction over internationally-held customer data. It is supported by virtually every major technology company in the United States, including competitors such as Apple and Google, and by privacy advocates, trade organizations, and even journalists, who argue that their electronically-stored documents are protected by the First Amendment to the Constitution. "Only Congress has the institutional competence and constitutional authority to balance law enforcement needs against our nation's sovereignty, the privacy of its citizens and the competitiveness of its industry," the software giant argued in a court filing. "We must grapple with the question whether, and when, law enforcement should be able to compel providers like Microsoft to help it seize customer emails stored in foreign countries. " The U. S. Department of Justice obviously feels differently, noting that Microsoft—a U. S. -based company... --- ### Microsoft ratchets up its cloud security credibility by acquiring Adallom > Microsoft has announced this morning that they have acquired Adallom, a cloud security firm that helps secure client data. - Published: 2015-09-08 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-ratchets-up-its-cloud-security-offerings-by-acquiring-adallom/ - Categories: Microsoft Azure, Security - Tags: Adallom, Azure, Microsoft - Article Type: News Microsoft has announced this morning that they have acquired Adallom, a cloud security firm that helps secure client data. Microsoft has announced this morning that they have acquired Adallom, a cloud security firm. The acquisition will boost Microsoft’s capabilities in securing content that is stored in its cloud and provide greater assurance to its customers that their data is safe. Adallom, founded in 2012, is a cloud access security broker that delivers visibility, governance and protection for cloud applications. The tools offered by the company are available as SaaS or for on-prem deployment with the goal of making it easy to secure your data. It’s simple to see why Microsoft would want to integrate these types of solutions into its portfolio of services as data security has been a hot topic lately with high profile data leaks like Ashley Madison making the rounds in the press. With this purchase, Microsoft is adding additional capabilities to its suite of security services to make sure that it’s clients are well protected. Microsoft has shown a serious commitment to its cloud offering from building out billion dollar data centers to increasing the performance of its offerings with new virtual machines. With today’s announcement, the company is adding another SaaS offering to its portfolio which is proving to be a favorite type of business because of the on-going revenue stream these types of services deliver. Microsoft has been on a buying spree of late, the company announced last week that it had purchased Volometrix, a company that specializes in organizational analytics. For both acquisitions, Microsoft did not... --- ### Microsoft heads back to court on September 9th > Microsoft will be facing off against the US Department of Justice to decide the fate of cloud computing in the 2nd Circuit Court of Appeals starting on September 9th. - Published: 2015-09-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-v-usa-september-9th/ - Categories: Main - Tags: Cloud, cloud computing, Legal, Microsoft - Article Type: Opinion September 9th is the day when Microsoft goes to the 2nd Circuit Court of Appeals to argue that non-Microsoft data residing in Microsoft datacenter in a non-US jurisdiction should not be subject to US warrants. Mark your calendars: September 9th could be the day that tech historians mention when they talk about the death of cloud computing. That’s because September 9th is when Microsoft goes to the2nd Circuit Court of Appeals to argue that non-Microsoft data residing in Microsoft datacenter in a non-US jurisdiction should not be subject to US warrants. Background The US Department of Justice (DOJ) served a warrant to Microsoft in December 2013 to seize the contents of a mailbox of a suspected drug trafficker. That’s not a big deal – I worked in the hosting business in Ireland and I saw the local police visit a few times. What made this case interesting was that the DOJ was seeking access to the contents of an Outlook mailbox that was stored in Microsoft’s facilities in Dublin, Ireland, well outside of the 50 states, and actually a completely different jurisdiction with different privacy and protection laws. Microsoft resisted and the case went to court. Microsoft lost, the case made headlines, Microsoft appealed, and lost, and on September 9th the case goes before the 2nd Circuit Court of Appeals. Microsoft will argue that: The contents of the mailbox are not their data The mailbox resides outside US jurisdiction To supply the mailbox content to the DOJ will break European and Irish laws The US DOJ will argue that: The contents of the mailbox is Microsoft’s data US law dictates that any data owned by any US corporation, anywhere in the world... --- ### Paul Thurrott's Short Takes: September 4, 2015 > Because Microsoft can't stop punching itself in the face, this week's other news includes Windows 10 milestones to look forward to, and a whole lot more. - Published: 2015-09-04 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-september-4-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because Microsoft can't stop punching itself in the face, this week's other news includes Windows 10 milestones to look forward to, and a whole lot more. This happened today. And I didn't write about it. For a reason. Because Microsoft can't stop punching itself in the face, this week's other news includes some Windows 10 milestones to look forward to, Windows phones usage in the United States, Google found to be stealing mapping data, a curious tech partnership with one obvious holdout, Google to finally fix Chrome's memory abuse problems, and e-book sales plummet in wake of price increases. Windows 10 usage surpasses that of Windows 8 and Vista combined Which is a nonsense statistic, by the way. But here's what we can look forward to: usage of Windows 10 surpassing that of the Mac (about 7 percent usage share) and then the combined Windows 8/8. 1 (14 percent). And from a raw numbers perspective, of course, the next big milestone is 100 million installs. Which, frankly, they may have already achieved. "Microsoft Just Copied One of Google's Most Exciting New Android Features" I assume this is about the (supposed) privacy-stealing stuff in Windows 10. Windows phones usage in the United States is mostly unchanged I know that fans of Windows phones are looking for some good news. This isn't it: Usage of Microsoft's smart phone platform has dropped just a tiny bit since a major drop in April, comScore reports, and now sits at 2. 9 percent. But the weirdest thing about the US smart phone market is how popular Apple is: here, the iPhone commands 43 percent of the... --- ### Fixing the Windows Server 2012 R2 Screen Lock Issue > Here's a tip on how to fix a screen lock issue in Windows Server 2012 R2 from Daniel Petri. - Published: 2015-09-04 - Modified: 2024-09-04 - URL: https://petri.com/fixing-windows-server-2012-r2-screen-lock-issue/ - Categories: Windows Server 2012 - Article Type: How To Here's a tip on how to fix a screen lock issue in Windows Server 2012 R2 from Daniel Petri. Working on Windows Server 2012 R2-based computers is a nice experience. The OS is far more stable than anything we've known so far -- it's fast, responsive, and if you can teach yourself to ignore the semi-Windows 8 interface, it also has a really good user experience. I've been building and maintaining hundreds of Windows Server 2012 R2 virtual machines in many customized labs that I use for training and testing purposes. Setting up the machines is much easier than any previous Microsoft operating system, and by using PowerShell to automate the deployment tasks, I can get them all up and running real quickly. But there's one small thing that I've been personally annoyed with. After logging onto the OS using either the built-in Administrator's account or any AD-based user account, I'll use the system and leave it idle for a few moments to walk away to do something on a different machine, where I'm found with the following message: Screen lockout message in Windows Server 2012 R2. (Image Credit: Daniel Petri) As you can see, I find that I'm locked out from the server. On previous operating systems, this timeout was changed by manipulating the screensaver options from Control Panel. However, if you look at the screensaver settings in Windows Server 2012 R2, then you won't see anything special. In fact, it seems that no screensaver is enabled in the first place: Screensaver settings. (Image Credit: Daniel Petri) So, how do you... --- ### Microsoft has acquired VoloMetrix, an organizational analytics tool > Microsoft has announced today that they have acquired VoloMetrix, a company that specializes in organizational analytics. - Published: 2015-09-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-acquired-volometrix-boosts-its-organizational-analytics-appeal/ - Categories: Microsoft 365 - Tags: acquisition, Editor's Pick, News, Office 365 - Article Type: News Microsoft has announced today that they have acquired VoloMetrix, a company that specializes in organizational analytics. Microsoft has announced today that they have acquired VoloMetrix, a company that specializes in organizational analytics. VoloMetrix was founded 4. 5 years ago with the goal to transform knowledge worker productivity through data, transparency and feedback loops. Seeing that Microsoft has transformed its agenda to be helping other companies maximize their productivity, this acquisition will fit nicely into their portfolio of offerings that increase internal awareness such as Delve. VololMetrix helps answer a lot of questions using internal resources such as how can I improve my emails to ensure my communications are impactful? Am I spending my time focused on my priorities? Do I have the right people and expertise in my network to accomplish my project? In short, VoloMetrix will bring new capabilities to Office 365 to make sure that the productivity suite offers new capabilities for corporations so that they can not only communicate, but do it more effectively as well. The company says that they plan to offer an early preview program from Delve Organizational Analytics within the next month, and general availability of the initial release of the integrated Office 365 service by the end of this calendar year. You can read more about the acquisition, here. --- ### Microsoft attracts an unlikely ally with Windows 10, VMware > VMware is going to bury the hatchet with Microsoft as the two companies, who were once fierce combatants, are now working together to promote Windows 10. - Published: 2015-09-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-finds-an-unlikely-ally-with-windows-10-vmware/ - Categories: VMware, Windows 10 - Article Type: News VMware is going to bury the hatchet with Microsoft as the two companies, who were once fierce combatants, are now working together to promote Windows 10. This week, VMware has announced a new project, called A2, that is going to bury the hatchet with Microsoft as the two companies, who were once fierce combatants, are now working together to help push Windows 10 into the enterprise. For the first time at VMworld, a Microsoft executive was on-stage at the event to help announce the new tool. Jim Alkove, corporate vice president of Windows Enterprise & Security, accompanied VMware's Sanjay Poonen on stage to announce A2 that will make it easier to manage applications with Windows 10 using VMware’s AirWatch enterprise mobile management (EMM) and VMware App Volumes application delivery technology. VMware believes that these solutions, that use a new mobile-centric approach with A2 to deliver and manage applications, will help expedite the adoption rate of Windows 10 in the enterprise. Since Satya Nadella has taken over the role of CEO at Microsoft, he has been working to repair relationships with other companies and platforms to such as Oracle and a plethora of open source software packages, to make sure that Microsoft technologies work with any software that you want to use. By doing so, he is turning the company into a pivot point for many organizations like Oracle and VMware, who can now depend on the company’s software and support for their services to help both entities grow together, rather than against each other. The benefit for Microsoft is obvious as they now have another partner who is going... --- ### Tips for Searching for PowerShell History > Jeff Hicks provides us with several different solutions for PowerShell history, which include tips for using the command buffer and the Get-History cmdlet. - Published: 2015-09-03 - Modified: 2024-09-04 - URL: https://petri.com/tips-searching-powershell-history/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To Jeff Hicks provides us with several different solutions for PowerShell history, which include tips for using the command buffer and the Get-History cmdlet. In "Fishing for PowerShell: Leveraging Get-Command and Show-Command," I offered some advice on a few PowerShell tools to help you find what you need. Naturally, PowerShell's help system should be number one on your list, and I'm going to assume you already know how to use it. In this article, I want to focus on some commands you might not be aware of. Let's look at command history. Using Command Buffer to Find Command History You can use the command buffer to grab a list of commands that you've previously used. This buffer only applies to the PowerShell console, not the ISE. You can access this buffer by pressing the F7 key. Displaying Command Buffer with F7. (Image Credit: Jeff Hicks) You can scroll to find a command that's been previously executed. If you hit Enter, PowerShell will run it. If you use the right arrow key, Windows will insert the command at the prompt where you can revise it if necessary. You can also type the first character of a command, and Windows will jump to the first previous command that starts with that character. If you know the item number, you can access it directly with F9. Selecting a specific command with F9. (Image Credit: Jeff Hicks) Pressing Enter will insert the command at the prompt. If you don't get any results or if you want to configure the settings, right-click on the system context menu and select Properties. [caption ... --- ### Microsoft cranks up the performance of its VMs, cuts prices too > Microsoft has announced a new type of VM, the GS series, that is the company's top end offering and is designed for the most intensive applications. - Published: 2015-09-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cranks-up-the-performance-of-its-vms-cuts-prices-too/ - Categories: Microsoft Azure - Tags: Azure, Editor's Pick, News, virtual machine - Article Type: News Microsoft has announced a new type of VM, the GS series, that is the company's top end offering and is designed for the most intensive applications. Microsoft has announced a couple of updates for its Azure platform that includes new virtual machines and that they are cutting the price on some of their offerings as well. The announcements impact both the top end offerings and the mid performance range VMs too. The company is introducing a new GS series of VMs that use the compute power of G-series (the company's top end) and are adding premium storage thus turning the G series into GS. These new VMs are designed for the most intensive computing applications and have a price to go with it; monthly costs will be over $7,000 according to the company's pricing sheet. The GS series of VMs will offer the highest publicly available disk throughput, by more than double, of any VM offered by the other hyperscale public cloud providers (Microsoft generally classifies this as Google and Amazon). The GS5 machines top out with 32 cores, 448 GB of RAM, 80,000 IOPS and 2,000 MB per second max disk bandwidth. While this type of VM may not be for most users, for those who have demanding applications, such as simulations, where there is a strong need for high bandwidth in the cloud, Microsoft is positioning the GS series as the premier solution for those needs. With the introduction of new high end VMs, the company is also cutting the cost of its D and DS series. Microsoft is dropping prices on instances of these virtual machines by as much as 27% with the price... --- ### Microsoft’s SQL Server 2016 CTP 2.3 now available to download > Microsoft has released SQL Sever 2016 CTP 2.3 (Community Technical Preview) is now available for download and it comes with several new features. - Published: 2015-09-02 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-sql-server-2016-community-technology-preview-2-3-now-available-to-download/ - Categories: SQL Server - Tags: Editor's Pick, editors, News - Article Type: News Microsoft has released SQL Sever 2016 CTP 2.3 (Community Technical Preview) is now available for download and it comes with several new features. Microsoft has announced today that SQL Server 2016 CTP 2. 3 (Community Technical Preview) is now available for download. While Microsoft does call this build a preview, they did say that they have already deployed the build into production in the SQL Azure database. The company says that this release is part of their new rapid preview model and that they made enhancements to several features which are listed below: Row Level Security support for in-memory OLTP tables A core engine scalability improvement, dynamically partitioning thread safe memory objects by NUMA or CPU, which enables higher scalability In-memory data warehouse (column tore) performance optimizations Many-to-many derived hierarchies in Master Data Services Several performance improvements to SQL Server Analysis Services, including DAX query performance Enhancements to Reporting Services, including an updated Report Builder with a modern theme and report rendering for modern browsers In addition, this release also has improvements to SQL Server Integration Service, Query Execution, and DBCC CHECKDB. SQL Server 2016 offers a rich set of improvements over prior versions including real-time operational analytics, improved visualizations on mobile devices, advanced analytics, and improved security technology. The preview is available now and you can download it from the link below. Download: SQL Server 2016 Community Technology Preview 2. 3 --- ### Intel Promises a PC Renaissance with Skylake Processors > Today, Microprocessor giant Intel trumpeted the arrival of its 6th-generation Core processor lineup, named Skylake, promising it would be a "turning point." - Published: 2015-09-02 - Modified: 2024-09-04 - URL: https://petri.com/intel-promises-a-pc-renaissance-with-skylake-processor/ - Categories: Windows 10 - Tags: Intel, News - Article Type: News Today, Microprocessor giant Intel trumpeted the arrival of its 6th-generation Core processor lineup, named Skylake, promising it would be a "turning point." Today, Microprocessor giant Intel trumpeted the arrival of its 6th-generation Core processor lineup, codenamed Skylake, and promised it would be a "turning point" in customers' relationship with PCs. Originally timed to coincide with the arrival of Windows 10—Microsoft artificially bumped up its OS delivery from October to July to meet the back-to-school market—Intel Skylake processors will soon be shipping in a diverse array of PCs, 2-in-1s, tablets, compute sticks, and other devices. "6th generation Intel Core processors deliver some of the most significant advancements in computing that we've ever seen," Intel senior vice president Kirk Skaugen said in a prepared statement. "New 6th generation Intel Core-based systems are more responsive than ever with enhanced performance, battery life and security. And they can enable amazing new PC experiences like logging into your computer with your face and having a personal assistant respond to your voice. The combination of processors, Windows 10 and beautiful new systems from PC manufacturers make this the best time ever to buy a new computer. " Intel and the PC industry are obviously hoping that last bit is true: as I reported last week, industry analysts now expect the PC market to continue shrinking through at least late 2016. And the release of Windows 10 is partly to blame, since Microsoft is giving away the OS to upgraders for free, dis-incenting many from buying a new PC. Intel says Skylake is part of the solution to that problem. (As, I'd... --- ### Microsoft is reducing its number of portals, merging Intune with Office 365 > Microsoft is reducing the number of portals it has by merging the Intune portal with Office 365, the Intune portal will shutdown later this month. - Published: 2015-09-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-is-reducing-its-number-of-portals-merging-intune-with-office-365/ - Categories: Microsoft 365 - Tags: Editor's Pick, News - Article Type: News Microsoft is reducing the number of portals it has by merging the Intune portal with Office 365, the Intune portal will shutdown later this month. For years, Microsoft’s customers have been asking the company to make it easier to manage its many subscriptions offered by the company and there is finally hope on the horizon. Microsoft has announced that they are merging the Microsoft Intune account portal with the Office 365 management portal. The Office 365 management portal now supports subscription and license assignment for Enterprise Mobility Suite as well as Intune. The company says that until late September, you are able to use the existing Intune portal but did not specify and exact date when the Intune portal would be shutdown. The following tasks can now be performed inside the Office 365 management portal: Subscription activation, modification, renewal, cancellation, and invoicing Domain setup and modification User and license management, and admin role configuration Direct partner functionality, including sending offers and delegation invitations Service health status Service request ticketing For the Enterprise Mobility Suite customers who use the Azure portal for licenses assignment and creation, there will be no changes to this functional area as the company says that both the Azure portal and Intune admin console are not being touched as part of this migration. Even though Microsoft is merging these two portals, Intune will not become part of the Office 365 suite of apps and services. The condensing of portals will be welcomed by those who manage these services as most companies who use Intune also subscribe to Office 365 as well. This update will make it... --- ### Windows Update for Business will arrive later this year > Microsoft announced Windows Update for Business but it has yet to be released, expect it to arrive later this year with Threshold wave 2. - Published: 2015-09-01 - Modified: 2024-09-04 - URL: https://petri.com/windows-update-for-business-will-arrive-later-this-year/ - Categories: Windows 10 - Tags: Editor's Pick - Article Type: News Microsoft announced Windows Update for Business but it has yet to be released, expect it to arrive later this year. At Build 2015, Microsoft announced a new feature for corporations to help control the update process with Windows 10. The feature, called Windows Update for Business, is a set of tools that allow administrators to delay updates and deploy patches on their own schedule to better optimize timing and delivery. The idea is quite simple but profound. By being able to target the deployment of new patches to groups of machines, you can avoid having the accountants' computers updating during month end or you could time a mission critical machine update during known downtime. The problem with Windows Update for Business is not what the feature offers, it's that Microsoft went silent after Build and provided little information about when the tools would arrive. Based on the initial announcement, it appeared like Windows 10 would ship with these tools but on July 29th, Windows 10 was released and Windows Update for Business was no where to be found. At an event held on Microsoft's campus last week, I was able to ask Jim Alkove, CVP Enterprise and Security about the status of this service. While Alkove was non-committal on a date, he did say that Windows Update for Business would arrive before the end of the year. When thinking about Microsoft's release plans for the remainder of 2015, this likely means that it will arrive with Threshold wave 2, which is expected to arrive around the month of October. During the same conversation, Microsoft acknowledged... --- ### Windows 10 Enterprise adoption rate is ‘unprecedented’ > Microsoft has said that the adoption rate of Windows 10 is unprecedented for only a month after launch and they are encouraged by early feedback. - Published: 2015-09-01 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-enterprise-adoption-rate-is-unprecedented/ - Categories: Windows 10 - Tags: Editor's Pick - Article Type: News Microsoft has said that the adoption rate of Windows 10 is unprecedented for only a month after launch and they are encouraged by early feedback. When it comes to the big corporate machine, it's not a huge surprise that the entity moves a bit slower than the consumer when it comes to adoption. After all, a botched upgrade can result in downtime that leads to lost productivity and a potential hit to the bottom line. For this reason alone, corporations are not one to be early adopters of new technology until they are proven to be secure, stable and reliable at scale. Microsoft has announced that there are 75 million machines running Windows 10 in less than a month after release and of those installs, 1. 5 million are running Windows 10 Enterprise, which is provided to Software Assurance customers. This figure comes from Jim Alkove, CVP Enterprise and Security who presented at an event on Microsoft's campus last week that showcased Microsoft's direction and capabilities for the enterprise. Further, Stella Chernyak, Senior Director of Product Marketing for Windows said that the 1. 5 million installs is "Unprecedented in this timeframe" and said that this shows that corporations are taking a serious look at the operating system for consideration to upgrade. The strong interest in Windows 10 has to be a relief for Microsoft as the previous generation OS, Windows 8, was largely avoided by corporations because of its steep learning curve after it launched without a Start menu. The early adoption figures for Windows 10 into the Enterprise show promise that Microsoft will not end up with Windows 7... --- ### Google Takes a Big Risk in Refuting EU Antitrust Claims in Europe > In rejecting the EC's antitrust claims, Google is risking a disaster that could cost billions in fines and require it to make major behavioral changes. - Published: 2015-09-01 - Modified: 2024-09-04 - URL: https://petri.com/google-takes-a-big-risk-in-refuting-eu-antitrust-claims-in-europe/ - Categories: Cloud Computing - Tags: News - Article Type: News In rejecting the EC's antitrust claims, Google is risking a disaster that could cost billions in fines and require it to make major behavioral changes. Late last week, Google finally issued its formal response to the European Commission's Statement of Objections in a long-running antitrust case regarding alleged abuses in its search engine. In rejecting the EC's claims outright and admitting to no wrongdoing, Google is risking a Microsoft-style disaster that could cost billions in fines and untold months or years of lost momentum. "We believe that Google increases choice for European consumers and offers valuable opportunities for businesses of all sizes," Google senior vice president and general counsel Kent Walker writes in post—titled Improving quality isn't anti-competitive—to the firm's Europe Blog. "We believe that the Statement of Objection's preliminary conclusions are wrong as a matter of fact, law, and economics. We look forward to discussing our response and supporting evidence with the Commission, in the interest of promoting user choice and open competition. " The EC has been investigating Google's alleged abuses in the Internet search market for several years, and while the previous regime attempted to settle with Google in terms that were favorable to the online giant, outrage from customers and lawmakers scuttled those plans, and the current EC competition commissioner, Margrethe Vestager, has proven to be a tougher protector of EU law than her predecessor. As I wrote previously, the EU’s case against Google is clear-cut: Google artificially doctors its search results to favor its own services over those of niche or vertical market competitors. And because it is the gateway to the Internet for most of the EU’s... --- ### Configure a Windows Remote Management HTTPS Listener > Russell Smith shows us how to easily configure a Windows Remote Management HTTPS listener in this Ask the Admin. - Published: 2015-09-01 - Modified: 2024-09-04 - URL: https://petri.com/configure-windows-remote-management-https-listener/ - Categories: Security - Tags: PowerShell, remote management, Security, WinRM - Article Type: How To Russell Smith shows us how to easily configure a Windows Remote Management HTTPS listener in this Ask the Admin. In today's Ask the Admin, I'll show you how to configure a Windows Remote Management (WinRM) HTTPS listener using a self-signed certificate. What is Windows Remote Management? Windows Remote Management (WinRM) is Microsoft's implementation of WS-Management, a SOAP-based protocol that can traverse firewalls and is used to manage infrastructure devices and operating systems from different vendors. WinRM is the protocol behind PowerShell Remoting, which allows cmdlets and scripts to securely run on remote devices, with the results being sent back to the originating PowerShell console. Windows Server is configured out-of-the-box with an HTTP WinRM listener. Before data is sent to a remote device, it is serialized and encrypted. Secure Sockets Layer (SSL) isn't required to ensure that data is encrypted across the wire. In an Active Directory environment, Kerberos provides assurance that the remote device is trusted. But in a workgroup, either you have to add remote devices to the TrustedHosts list or you should configure an HTTPS WinRM listener and install certificates to establish trust between the local and remote devices. Adding a remote device to the local TrustedHosts list is OK in a lab, but in a production environment, TrustedHosts doesn't provide a high level of assurance that remote devices can be trusted. The following instructions assume that PowerShell Remoting is enabled on the device where the HTTPS WinRM listener will be configured. If not, run the Enable-PSRemoting cmdlet in an elevated PowerShell console before continuing. PowerShell Remoting is enabled by default in Windows Server... --- ### Hello, World > Brad Sams is joining Petri as the Executive Editor where he will be helping to create content and drive strategy to grow Thurrott and Petri into household names. - Published: 2015-09-01 - Modified: 2024-11-19 - URL: https://petri.com/brad-sams-joins-petri/ - Categories: Main - Article Type: News Brad Sams is joining Petri as the Executive Editor where he will be helping to create content and drive strategy to grow Thurrott and Petri into household names. Hi, I’m Brad Sams and I will be your new host, or more specifically, the Executive Editor of Petri. com. If you have been around the Microsoft community for any length of time, you likely have read something I have published even if my name is not familiar. Up until today, I had been running Neowin. net, a Microsoft community I helped to grow into a formidable site that is consistently on the leading edge of Microsoft news, but now it's time for a new challenge. So what am I doing here? Frankly, It's Paul's fault. Paul Thurrott and I have been working closely together over the last couple of years helping to explain and explore the world of Microsoft and when Blue Whale Web asked if I would like to join the team and not only broaden my horizon, but also take up the challenge of driving strategy for their two properties, it was an offer I couldn't refuse. The Petri IT Knowledgebase and Thurrott. com have established themselves as credible and authoritative voices in the industry with Petri being known for its strong enterprise knowledgebase and Thurrott having decades of credibility to his name for years of insight and insider information. I will be writing for both sites as well; if you liked the scoops I brought to Neowin, you will now find them here and of course my podcast, The Redmond Report, will be coming too. So who am I for those of you who don’t know? I was born in Cincinnati, have... --- ### VMworld 2015: VMware Advances Into Hybrid Cloud and Containers > VMWare announced a number of steps towards realizing its software-defined data center vision, including big pushes into the hybrid cloud and containers. - Published: 2015-08-31 - Modified: 2024-09-04 - URL: https://petri.com/vmware-advances-into-hybrid-cloud-and-containers/ - Categories: VMware - Tags: hybrid cloud, News, Virtualization - Article Type: News VMWare announced a number of steps towards realizing its software-defined data center vision, including big pushes into the hybrid cloud and containers. At its annual VMworld conference today in San Francisco, VMware announced a number of steps towards realizing its software-defined data center vision, including big pushes into hybrid cloud computing and container technology. "The software-defined data center (SDDC) isn't just a VMware concept, it's an industry goal," VMWare CTO Chris Wolf explains. "Software-defined compute, networking, storage and security are core tenets of many public cloud architectures. The difference with VMware is that our SDDC components are multi-data center and multi-cloud by design, allowing the same programmatic API-driven software-defined infrastructure services to be available across multiple clouds, branch offices, and private data centers. : With that in mind, VMware this year is advancing the notion of its "One Cloud" philosophy, a rejoinder of sorts to Microsoft's "One Microsoft" and "One Windows" themes. As VMware COO Carl Eschenbach explained in Monday's keynote address, his firm intends to be the central point of deployment for enterprises, regardless of which cloud providers they choose. Naturally, the firm made a number of announcements today related to achieving its vision. First up is VMware EVO SDDC, which was originally called EVO: Rack when it was first announced at last year's VMworld. Now generally available, EVO SDDC is designed as a turnkey system for "rack-scale" SDDC, and provides software-defined compute, storage, networking security, and management capabilities. "EVO SDDC will allow you to quickly deploy infrastructure that can spin up virtualized stacks within minutes while freeing time for your teams to focus on driving innovation that differentiates... --- ### Hyper-V Dynamic Memory Versus Virtual NUMA > Aidan Finn describes how Dynamic Memory and guest-aware NUMA offer different benefits and are mutually exclusive. - Published: 2015-08-31 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-dynamic-memory-versus-virtual-numa/ - Categories: Hyper-V - Tags: Dynamic Memory, Hyper-V, NUMA - Article Type: Overview Aidan Finn describes how Dynamic Memory and guest-aware NUMA offer different benefits and are mutually exclusive. In previous posts, I have explained Dynamic Memory and Non-Uniform Memory Access (NUMA). Both are memory optimization features of Hyper-V that have different advantages. Most people are not fully aware of those positive effects, and they are probably not aware that both features are mutually exclusive. In this article, we'll do a quick refresh on the two features, and then explain why you would choose one over the other. Virtual NUMA Put very simply, Non-Uniform Memory Access (NUMA) is how hypervisors, operating systems, and some applications deal with the processor and memory design of a physical machine's motherboard. The typical machine that we see in virtualization has two processors (sockets with multiple cores) and a number of memory DIMMs. In this server, each processor has a direct bus connection to half of the memory, where a machine with four sockets will have access to less. This is known as a NUMA node. So there are two NUMA nodes in this machine with two processors, each node having half of the total cores and half of the DIMM slots on the motherboard. This is why OEMs advise you to balance the memory placement on the motherboard. An operating system or hypervisor that's installed on this physical server will do its best to schedule processes and assign memory within a NUMA node. Here's an example.  If Hyper-V is running a 2 vCPU virtual machine, the virtual processors will be loaded onto logical processors in a NUMA node, and Hyper-V will... --- ### Increase the Font Size in Windows 10 Universal Apps > In this quick tutorial, learn how to increase the font size in Windows 10 universal apps for better reading on small displays. - Published: 2015-08-28 - Modified: 2024-09-04 - URL: https://petri.com/increase-the-font-size-in-windows-10-universal-apps/ - Categories: Windows 10 - Tags: mobility, Windows 10 - Article Type: How To In this quick tutorial, learn how to increase the font size in Windows 10 universal apps for better reading on small displays. In this Ask the Admin, I'll show you how to increase the DPI setting in Windows 10 to make text bigger in Windows 10 apps. Related: Windows 10 Tip: Change the Default Search Engine in Edge At least part of my day is spent working on an Ultrabook with a 13. 3" display, and while the small screen isn't ideal, it's never presented any real problems reading text off the screen -- that is until Windows 10 came along. At some point during the development process, literally a few builds back, the text in most Windows 10 apps became so small as to be unreadable. Change DPI settings in Windows 10 (Image Credit: Russell Smith) I decided to increase the DPI setting for my notebook’s display, allowing me to keep the default 1920 x 1080 resolution, while increasing the text size in apps. Although this is an issue mainly in Windows 10 universal apps, increasing the DPI effects icons, desktop apps and generally decreases the space available on the desktop. But squinting to read leads to fatigue fast, so I’m happy to accept this compromise. Change the DPI setting in Windows 10 Each display can have its own DPI setting, so the compromises made for the built-in display don't need to be made when connecting an external display to your notebook. To change the DPI settings, follow the instructions below: Right click the desktop and select Display settings from the context menu... . --- ### Paul Thurrott's Short Takes: August 28, 2015 > Because I will turn this car around if I have to, this week's other news includes no Xbox Micro for you, Ubuntu really turns it up a notch, and more. - Published: 2015-08-28 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-28-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because I will turn this car around if I have to, this week's other news includes no Xbox Micro for you, Ubuntu really turns it up a notch, and more. Photo courtesy of B Rosen on Flickr - https://www. flickr. com/photos/rosengrant/3810077717 Because I will turn this car around if I have to, this week's other news includes no Xbox Micro for you, Ubuntu really turns it up a notch to battle Windows 10, Office 365 overtakes Google Apps, Google says "nyet" to EU antitrust regulators, Apple preps a new product announcement event, and Facebook logs an amazing milestone. Phil Spencer throws cold water on new Xbox One rumors While it is inevitable that Microsoft will eventually ship a smaller and less expensive (to make) version of the Xbox One, it's not happening this holiday season. Taking to Twitter, Microsoft Head of Xbox Phil Spencer this week said that rumors of an "Xbox Micro"—e. g. an Xbox One without an optical drive—were "not real. " I actually think such a device makes plenty of sense—and heck, I'd throw in the Kinect audio capabilities while we're at it. But I guess we'll need to wait until at least next year. "No, Microsoft is not spying on you with Windows 10" But I'm so interesting. Ubuntu maker says Windows 10 is the time to switch. To Linux Canonical—which makes the Ubuntu and related Linux distributions—has finally come up with a blog post explaining why users should consider using its open-source OS instead of Windows 10. And the best part is, even they don't seem to be sure. The headline of this post is presented as a question—Windows 10: is it... --- ### Create a Custom Tool to Find History with PowerShell > Jeff Hicks shows us how we can create a custom tool and leverage PowerShell's Get-History cmdlet for better efficiency and productivity. - Published: 2015-08-27 - Modified: 2024-09-04 - URL: https://petri.com/create-custom-tool-find-history-powershell/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Jeff Hicks shows us how we can create a custom tool and leverage PowerShell's Get-History cmdlet for better efficiency and productivity. Not too long ago we published an article and PowerShell function you could use to copy a PowerShell command. You could use this technique to quickly build your own tools based on existing commands. Let me give you another example that's a bit more detailed. First, there must be a need. For me, I want a quick way to get command history, but I want to limit my history to unique entries. Related: Making a PowerShell Command Your Own For example, here are the last 10 commands I have run using Get-History. Using the Get-History cmdlet in Windows PowerShell. (Image Credit: Jeff Hicks) In case you were wondering, the gmb command is an alias for one of my functions to display battery life. You'll see that I have some duplicate commands. I'd prefer to have a unique list, which I can do like this: ​ It works. Creating a unique list with PowerShell's Get-History cmdlet. (Image Credit: Jeff Hicks) But I don't want to have to always type all of this. I'm happy with Get-History. I just need to add some functionality to it. So I'll use my Copy-Command tool to create a new version of Get-History, where I'll call Get-MyHistory. If you are following along, run this in the PowerShell ISE. ​ Without making any changes, the Get-MyHistory function is identical to Get-History because at its core, all I am doing is passing parameters to the underlying command. ​... --- ### Facebook Offers M to Counter Siri, Cortana and Google Now > This week Facebook released a preview version of a personal digital called M. Can this Messenger-based solution compete with Siri, Cortana and Google Now? - Published: 2015-08-27 - Modified: 2024-09-04 - URL: https://petri.com/facebook-offers-m-to-counter-siri-cortana-and-google-now/ - Categories: Mobile - Tags: Facebook - Article Type: News This week Facebook released a preview version of a personal digital called M. Can this Messenger-based solution compete with Siri, Cortana and Google Now? Digital personal assistants like Siri, Cortana, and Google Now are all the rage these days, and while Facebook may not have a hardware platform of its own, it does have well over one billion active users to serve. So this week it has released a preview version of a personal digital called M that lives inside of the Facebook Messenger app. The big question you may be asking yourself is, why? Siri, Cortana, and Google Now are all attached to major mobile computing platforms—Apple's iOS, Microsoft's Windows, and Google's Android, respectively—which makes sense: these interfaces can be controlled by voice and act proactively on behalf of the user, so many see them as the future of mobile user experiences, something that can replace the tired icon hunt and peck that most people suffer through today. Why tie such a thing—limit such a thing—to Facebook Messenger? Facebook's announcement about M doesn't do much to justify the need. Instead, it simply explains the service and offers clues about how it is differentiated from other assistants. "M is a personal digital assistant inside of Messenger that completes tasks and finds information on your behalf," Facebook's David Marcus explains. "It's powered by artificial intelligence that's trained and supervised by people. Unlike other AI-based services in the market, M can actually complete tasks on your behalf. It can purchase items, get gifts delivered to your loved ones, book restaurants, travel arrangements, appointments and way more. " So two differentiators are mentioned there, if... --- ### PowerShell Profile Tricks for Better VMware Management > Maish Saidel-Keesing shows us a few PowerShell profile tricks that you can use for better and faster VMware management. - Published: 2015-08-26 - Modified: 2015-08-26 - URL: https://petri.com/powershell-profile-tricks-better-vmware-management/ - Categories: VMware - Article Type: How To Maish Saidel-Keesing shows us a few PowerShell profile tricks that you can use for better and faster VMware management. As an IT pro, we rely on scripts to manage our VMware environment, which helps us be more efficient throughout our work day.  In this article, I'd like to share some PowerShell profile tricks that are specific to VMware. These are tricks that I use on a daily basis, which I think you'll find helpful. If you're unfamiliar with the PowerShell profile, you can become familiar with profiles and their uses in the Petri IT Knowledgebase article, "Getting Started with PowerShell Profiles. " Using Transcripts in Your Windows PowerShell Profile You can do a number of things with the command-line interface (CLI), and you probably rely on it to rerun useful tasks and commands to retrieve specific information about virtual machine performance and more. Because you've likely spent a decent amount of time tinkering and delving into the specific details that you needed, you probably don't want to repeat the process all over again. To make life easier for us, we can use a transcript. Stop-Transcript | out-null Start-Transcript ("C:\Users\maishsk\Documents\scripts\log\" + (Get-Date -Format dd-MM-yyyy_HH-mm) + ". log") A transcript creates a record of all or part of a Windows PowerShell session and saves it in a text file. That means anything that you run or anything that you receive as output in the session will be recorded to a file. The above two lines do something very simple. If you already have a session running with a transcript, then it will stop running that transcript. The code also starts a new transcript and saves the file... --- ### PC Market Freefall Now Expected to Continue Through 2016, IDC Says > A sobering new report from the market researchers at IDC refutes any notion that the PC market will stabilize or even rebound this calendar year. - Published: 2015-08-26 - Modified: 2024-11-19 - URL: https://petri.com/pc-market-freefall-now-expected-to-continue-through-2016-idc-says/ - Categories: Windows 10 - Tags: News - Article Type: News A sobering new report from the market researchers at IDC refutes any notion that the PC market will stabilize or even rebound this calendar year.   A sobering new report from the market researchers at IDC refutes any notion that the PC market will stabilize or even rebound this calendar year. Instead, IDC now expects the PC market to contract even further than originally expected in 2015. In fact, IDC expects the PC market to shrink in 2016 too. "The latest forecast has growth declining through 2016, which will make five years of declining shipments," an IDC research note explains. "Growth should resume in 2017, led by the commercial market, while consumer volume continues a small decline through the end of the forecast in 2019. " IDC—which admittedly has changed its PC market forecast repeatedly in recent years—had originally expected for 2015 to be a transition year for the market, with PC makers preparing for a late-year surge in Windows 10 PCs. But with the market contracting faster in the first half of the year than expected, the firm has come around to the inevitable. Something is wrong. And that something isn't just impacting PCs. Growth in tablets has fallen too, and smart phone growth has slowed dramatically. IDC now reports that "the combined volume of PCs, tablets, and smartphones is expected to grow only in the single digits from 2015 through 2019 as saturation and 'good enough computing' sentiments spread. " For PCs, the first half of 2015 was apparently sunk by "a stubbornly large inventory of notebooks from prior quarters and severe constraints posed by the decline of major currencies relative to... --- ### Chromebooks Passes iPad, Gains on Windows in US Education Market > While Chromebooks haven't had much impact on the worldwide market for personal computing devices, Google's notebooks have seen some traction in education. - Published: 2015-08-25 - Modified: 2024-09-04 - URL: https://petri.com/chromebooks-passes-ipad-gains-on-windows-in-us-education-market/ - Categories: Mobile - Tags: Google Chromebook, News - Article Type: News While Chromebooks haven't had much impact on the worldwide market for personal computing devices, Google's notebooks have seen some traction in education. While Chromebooks haven't had much impact on the worldwide market for personal computing devices, there is one important market in which Google's entry-level notebooks have seen some traction: the cash-strapped United States education market. And according to a recent study, sales of Chromebooks have surged past those of iPads and are closing in on the Windows PC market leader. A recent IDC report claims that sales of Chromebooks to the US education market surpassed those of Apple's iPad—which has been struggling in general, with six straight quarters of falling sales worldwide—and is closing in sales of Windows PCs. This market is worth over $7 billion, IDC says, but it's importance far exceeds financial concerns as each platform maker is eager to gain exposure among children during their formative years. According to IDC, 13. 2 million personal computing devices were sold into the US-based education market last year. Of these, 4. 9 million, or 38 percent, were Windows-based PCs. But the big surprise in 2014 was the surge in Chromebook sales in education: Google's hardware partners sold 3. 9 million Chromebooks in education in 2014, a jump of 310 percent. Apple's iPad fell to third place in 2014, with sales falling from 2. 9 million units in 2013 to 2. 7 million units last year. And Apple's Mac computers brought up the rear, with 1. 1 million units sold. Apple's struggles in education aren't all that surprising given how expensive their products are. But thanks to its heady margins, Apple accounted for nearly half... --- ### Windows 10 Tip: Change the Default Search Engine in Edge > Learn how to change the default search engine in Windows 10 with this quick how-to article from Russell Smith. - Published: 2015-08-25 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-tip-change-default-search-engine-edge/ - Categories: Windows 10 - Tags: Edge, Windows 10 - Article Type: How To Learn how to change the default search engine in Windows 10 with this quick how-to article from Russell Smith. Microsoft's new Edge browser in Windows 10 is shaping up to be a significantly better performer than Internet Explorer, the much reviled browser that gave rise to Chrome and Firefox becoming to go-to options for many. In this Ask the Admin, I'll show you how to set Google as the default search engine in Windows 10, although you can choose any compatible alternative. Related: Living on the Edge: Microsoft’s New Browser for Windows 10 Change the default search engine in Microsoft Edge in Windows 10 (Image Credit: Russell Smith) One of my bugbears with Edge during the development phase -- or Spartan as it was until recently -- was the inability to change the default search engine from Microsoft Bing. But now that Windows 10 is now available, it's possible to modify the default search engine in Edge to one of your choosing, although your chosen search engine must support the OpenSearch standard. How to Set Default Search Engine in Windows 10's Edge Log in to Windows 10 and open Edge using the icon on the desktop taskbar, and follow the instructions: Type the address of your chosen search engine in the address bar at the top of the browser window, and press ENTER. In this case, I'm going to set Google. com as the default search engine. In the top right of the browser window, click the three dots next to the sharing icon, and select Settings from the menu. In... --- ### An Open Letter to Lenovo > IT veteran Jeff Hicks voices his concerns and suggestions to Lenovo regarding their public relations disasters like Superfish and the Lenovo Service Engine. - Published: 2015-08-25 - Modified: 2024-11-19 - URL: https://petri.com/open-letter-lenovo/ - Categories: Security - Article Type: Opinion IT veteran Jeff Hicks voices his concerns and suggestions to Lenovo regarding their public relations disasters like Superfish and the Lenovo Service Engine. DISCLAIMER: I belong to an advisory and social media group called Lenovo Insiders. The purpose of the group is to share our experiences with Lenovo products and help promote brand awareness. However, membership does not preclude me from speaking my mind and voicing my opinions, both positive and negative. All opinions in this article are mine and would be the same even if I wasn't a part of the Lenovo Insiders group. Lenovo Faces Diminished Credibility and Reputation This year has not been especially kind to Lenovo from a public relations perspective. I had hoped that after the SuperFish fiasco, Lenovo would have learned a valuable lesson. I tried to get Lenovo's attention with my article, "An IT Pro Perspective on Lenovo Superfish. " Recently Lenovo has come under fire for another feature that's centered on a BIOS feature called the Lenovo Service Engine. Once again, the perception of the end result, which is ultimately all that matters, is that Lenovo is at it again with more spyware, malware, and crapware. So, let me share my latest thoughts on all of this in the hopes that someone from Lenovo will at least take a few minutes to understand my position. To frame my comments, it is important that you understand my audience. The people I write for, create video training, present at conferences and interact with on a daily basis are IT professionals. These are the men and women who keep Windows networks, humming along. Very often these are the... --- ### Previews of SharePoint 2016 and Cloud Hybrid Search Are Now Available > Microsoft on Monday announced that SharePoint 2016 IT Preview is now available, as is a cloud hybrid search preview for SharePoint Server 2013 and 2016. - Published: 2015-08-24 - Modified: 2024-12-03 - URL: https://petri.com/previews-of-sharepoint-2016-and-cloud-hybrid-search-are-now-available/ - Categories: SharePoint - Tags: News - Article Type: News Microsoft on Monday announced that SharePoint 2016 IT Preview is now available, as is a cloud hybrid search preview for SharePoint Server 2013 and 2016. Following in the footsteps of major new preview releases of Windows Server 2016 and System Center 2016, Microsoft on Monday announced that SharePoint 2016 IT Preview is now available as well. Additionally, the software giant has delivered a related cloud hybrid search preview for SharePoint Server 2013 and 2016. "As we continue to develop SharePoint Server 2016, we’re paying close attention to trends in content management, team collaboration, user experiences across devices, and how the cloud can be blended into existing on-premises scenarios in new and compelling ways," Microsoft senior technical product manager Bill Baer writes in a post to the Office Blogs. "We’ve been working hard to get this out to you, and we know you’ve been waiting patiently since we announced that it was coming. " Well, I'm not sure about the patiently bit, but we've certainly been waiting: man expected Microsoft to deliver this SharePoint 2016 preview in time for the Ignite Conference in May. But it's here now, and appears to be a feature-packed release. According to Microsoft, SharePoint 2016 is the first release of this product to be developed with the same core platform used in SharePoint Online, so there are many technical and user experience similarities between the two. From a mile-high view, Microsoft says that SharePoint 2016 is "intuitive, yet familiar, with improved performance and scale with simplified management for IT professionals and an opportunity for developers to build for cloud or on-premises. " It's also very incomplete at this point: Baer... --- ### Why PowerShell's Desired State Configuration Should Matter to You > PowerShell MVP Jeff Hicks explains why PowerShell's Desired State Configuration (DSC) should matter to you as an IT professional and how it can help bolster your career. - Published: 2015-08-24 - Modified: 2015-08-24 - URL: https://petri.com/why-powershell-desired-state-configuration-should-matter/ - Categories: PowerShell - Tags: DSC, Intermediate - Article Type: Opinion PowerShell MVP Jeff Hicks explains why PowerShell's Desired State Configuration (DSC) should matter to you as an IT professional and how it can help bolster your career. Unless you have been locked away in the bowels of your data center, I'm going to assume that you have heard the term, Desired State Configuration, also often referred to as DSC. If you're thinking that DSC doesn't apply to you, it's time to think again. DSC was first introduced with PowerShell 4. 0 and with the impending arrival of PowerShell 5. 0, DSC is poised to really take off. Perhaps the most important thing you need to know about DSC is that it is not another type of PowerShell scripting. Why is Desired State Configuration Important? DSC is based on a number of industry standards aimed at simplifying server configuration. If you have heard of products like Chef and Puppet, DSC isn't that much different. The advantage for you is that you can use PowerShell to build, manage and deploy your configurations. The current mantra wants us to think configuration, not automation.  Here's what I'm talking about. For years, many IT pros have relied on a number of scripting tools, such as PowerShell, to automate the process of building, configuring, and deploying new servers. I've been at companies where that it is a distinct job position. And there's no doubt that some of you have become quite proficient at this process. However, the process is really a matter of you configuring the server and often this only requires a single step. With DSC, we take a page from Star Trek: The Next Generation. In our universe, each server has its... --- ### Paul Thurrott's Short Takes: August 21, 2015 > Because air travel makes me cranky, this week's other news includes a possible consolidated Microsoft hardware event in October, and much, much more. - Published: 2015-08-21 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-21-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion Because air travel makes me cranky, this week's other news includes a possible consolidated Microsoft hardware event in October, and much, much more. Because air travel makes me cranky, this week's other news includes the loss of a Microsoft handset studio in Finland, a possible consolidated Microsoft hardware event in October, Samsung smart phones losing ground to iPhone in Q2, China smart phone growth stalling, and HP set for an epic mitosis. "Microsoft files antitrust suit against InterDigital in patent feud" I do get a bit misty-eyed every time I see the words "Microsoft" and "antitrust" together in a headline. But this looks boring. Microsoft shuts down Finland-based handset development studio No surprise—or humor—here, but Microsoft has as expected shut down a handset product development studio in Salo, Finland, shedding some 2,300 jobs in the process. The cuts are part of the previously-announced plan to cut 7,800 jobs globally, most of them from Microsoft's under-performing phone unit. The good news? Two other Finnish facilities—in Espoo and Tampere—will remain open, at least for now. "Microsoft tells some Insiders to stop using Windows 10 preview. " It's not you. It's me. No, it is you. Microsoft may be plotting a major October hardware event While my own very highly-placed source told me recently that Microsoft would launch new Lumia flagships in New York City in September and then launch what I assume will be called Surface Pro 4 in October, a new rumors suggests the software giant may be rethinking things. A blog called WPDang claims that Microsoft will in fact launch the new Lumias, Surface Pro 4 and a new Microsoft Band—which... --- ### Microsoft Releases Windows Server 2016 Technical Preview 3 > Learn about the key new features in Windows Server 2016 Technical Preview 3, including Hyper-V containers, Nano Server, and more. - Published: 2015-08-21 - Modified: 2015-08-21 - URL: https://petri.com/microsoft-releases-windows-server-2016-technical-preview-3/ - Categories: Windows Server 2016 - Tags: Docker, Hyper-V, Nano Server, Windows Containers, Windows Server 2016 - Article Type: News Learn about the key new features in Windows Server 2016 Technical Preview 3, including Hyper-V containers, Nano Server, and more. Yesterday Microsoft released Windows Server 2016 Technical Preview 3, the first new version since the Ignite conference in spring. Probably the most interesting development is support for Docker, in the form of Windows Containers, but also on the table are updates to Nano Server and networking. Windows Containers Unless you've been living under a rock for the past couple of years, you will have heard of Docker, an open source system that lets developers package applications without having to configure the underlying OS, and allows apps to run on any Linux distribution. Docker utilizes technology native to Linux, and containers offer many of the advantages of virtual machines, but without the overhead of an operating system, considerably improving portability and the number of apps a physical server can host. Related: What is Docker? Containers are isolated spaces in which applications run, and as far as the app is concerned, it's running on a base install of the OS where no other applications are installed. While container technology has existed in Linux for years, it's only recent improvements to the kernel that have allowed containers to be utilized in a meaningful way, hence the appearance of Docker. Microsoft's recent partnership with Docker has resulted in the ability to run packaged apps on Windows Server in this latest technical preview, along with support for the Docker toolset, client, and API. TP3 provides a first look at Windows Containers, but it's important to note that Docker packages designed for Linux... --- ### Microsoft Ships Third Preview Version of Windows Server 2016 > Microsoft has shipped Windows Server 2016 Technical Preview 3, along with related releases of System Center 2016 TP3 and the RSAT Tools for Windows 10. - Published: 2015-08-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ships-third-preview-version-of-windows-server-2016/ - Categories: Windows Server 2016 - Tags: News - Article Type: News Microsoft has shipped Windows Server 2016 Technical Preview 3, along with related releases of System Center 2016 TP3 and the RSAT Tools for Windows 10. This week, Microsoft finally shipped the third technical preview version of Windows Server 2016, along with related releases of System Center 2016 and the Remote Server Administration Tools for Windows 10. The big news from this week's releases? This is the first peek we've gotten at the new container technology in Server 2016. "You can’t have a discussion on cloud computing lately without talking about containers," Microsoft Azure CTO Mark Russinovich wrote earlier this week. "We are excited to create a unified and open experience for developers and system administrators to deploy their containerized applications comprising both Windows Server and Linux. " In some ways, containers are just another type of virtualization, a way to compartmentalize computing resources so that they look and work like a dedicated server environment to running apps. As Russinovich explains, containers are thus essentially a type OS virtualization where each container in a system thinks it has the exclusive use of the OS and the hardware resources provided by the underlying system. Because containers don't each require their own OS instance, they are much smaller than standard virtual machines and start up more quickly. And because they've become standardized on Linux, Microsoft has worked to ensure that containers will work, and work consistently on its own platforms, including Windows Server 2016. To that end, Windows Server 2016 technical preview 3 is the first to include a preview of Microsoft's Windows Server Containers technologies. Now part of the Docker open source project, these containers... --- ### Extending Objects in Windows PowerShell, Part 4 > In his last article on extending objects in Windows PowerShell, Jeff Hicks shows us how to how to take learned concepts and use them at scale. - Published: 2015-08-20 - Modified: 2024-09-04 - URL: https://petri.com/extending-objects-in-windows-powershell-part-4/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To In his last article on extending objects in Windows PowerShell, Jeff Hicks shows us how to how to take learned concepts and use them at scale. Over the last several articles, I've demonstrated how to extend an object in PowerShell and why you might want to do so. In this article, I'll show you how to take these concepts and use them to manage servers from a PowerShell prompt. Extending Objects in PowerShell Article Series: Extending Objects in Windows PowerShell, Part 1 Extending Objects in Windows PowerShell, Part 2 Extending Objects in Windows PowerShell, Part 3 Extending Objects in Windows PowerShell, Part 4 One of the reasons I find this approach appealing is that it forces PowerShell users to start thinking about managing at scale. In the pre-PowerShell days, you probably managed one thing at a time. With PowerShell, I'm trying to get people to think about managing 10 or 100 things at a time. Don't be in the mindset of managing one server at a time when you can manage 2, 20, or 200. The premise for my management tool is to create an object for each server I want to manage. The object will have a few properties and methods for reporting and to at least serve as a proof of concept. The function I wrote is by no means complete. You could easily extend it to include additional properties and methods to meet your business needs. In some ways this is like a simpler, console-based version of System Center, except that you can completely customize it. Here's my New-ManagedComputer function. Function New-ManagedComputer { --- ### Fishing for PowerShell: Leveraging Get-Command and Show-Command > Learn how to find and do more with PowerShell with the help of Get-Command and Show-Command cmdlets. - Published: 2015-08-19 - Modified: 2024-09-04 - URL: https://petri.com/fishing-for-powershell-leveraging-get-command-show-command/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To Learn how to find and do more with PowerShell with the help of Get-Command and Show-Command cmdlets. During my recent summer vacation, I spent some time fishing with my son, who's an avid fisherman and takes it much more seriously than I do. As we meandered around the lake on the boat, I started thinking that fishing is as much hunting for the right spot or some clue as to where the fish might be. Granted, knowing where to look for these clues takes a lot of experience.  And because I'm never truly on vacation, I started thinking about how this might apply to someone learning PowerShell. If you want to know where the fish are, you need to know where to look. Fortunately, PowerShell has a few spots where you can find answers, and I'm happy to share them. PowerShell's Get-Command The first place you should stop is the Get-Command cmdlet. Not sure what command to run to get event logs? Take advantage of Get-Command and its support for wildcards. I'm not saying you will get what you need on the first attempt. You might try this: ​ If you try that, then you'll see a lot of results. Don't give up, let's try again. ​ Using PowerShell's Get-Command cmdlet. (Image Credit: Jeff Hicks) Your results might vary depending on what modules you have installed. You can also limit your search by getting commands by noun. Using nouns with Get-Command. (Image Credit: Jeff Hicks) You can also use wildcards to search for different nouns. Likewise, you can get commands... --- ### Microsoft Will Sell VAIO Computers in October > VAIO is returning to the US, with Microsoft selling high-end VAIO computers—formerly owned by Sony—through its online and retail stores starting in October. - Published: 2015-08-19 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-will-sell-vaio-computers-in-october/ - Categories: Windows 10 - Tags: News - Article Type: News VAIO is returning to the US, with Microsoft selling high-end VAIO computers—formerly owned by Sony—through its online and retail stores starting in October. Microsoft will begin selling VAIO computers—formerly owned by Sony—through its online and retail stores starting in October. And yes, that means what you think it does: VAIO will be providing the full Signature PC experience, with no crapware. Sony sold off its VAIO PC business in early 2014, citing "drastic changes in the global PC industry. " In doing so, it shed about 5000 employees and set out on a new strategy to focus on "post-PC" devices like phones, tablets and PlayStation 4. Sony has moved on, but then so has VAIO. The PC business was sold to a Japanese investment fund called Japan Industrial Partners and reborn as a standalone business that, at first, focused exclusively on Japan. A year later, a much smaller VAIO—with only 250 employees—has reestablished itself in its home market, so it is now coming back to the United States as well. There's not much to see on the firm's US web site yet, but the Japanese site has been up and running since July 2014. VAIO will begin selling its PCs in the United States in October through Microsoft's retail and online stores. Its strategy is to focus on high-end niche markets, not the mass market Sony sought. As such, it will continue selling small numbers of devices, but with a higher profit. Its first US-based entry, the Z Canvas, will retail for over $2000 and targets graphic designers, photographers, and other power users. If you're familiar with... --- ### Windows 10 Upgrade Phishing Emails > Daniel Petri shares examples of circulating phishing emails from unsolicited companies that prompt unsuspecting users to upgrade to Windows 10. - Published: 2015-08-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-upgrade-phishing-emails/ - Categories: Windows 10 - Article Type: How To Daniel Petri shares examples of circulating phishing emails from unsolicited companies that prompt unsuspecting users to upgrade to Windows 10. Since Microsoft began offering Windows 10 as a free upgrade for Windows 7, 8, and 8. 1 users, I've received emails from readers stating that they were receiving suspicious emails that instructed them to download a special tool to start the upgrade process. These are in fact phishing emails that are sent to unsuspecting computer owners, where they may trick victims into thinking that this is their notification from Microsoft to upgrade to Windows 10. Related: Windows 10 Upgrade Tip: Cleaning Up Temporary Files Windows 10 Phishing Examples Here's an example of one phishing email: Windows 10 phishing scam email. (Image Credit: Cisco) These phishing e-mails are basically attempts to get people to download and install harmful software to their computers. Once installed, these pieces of software encrypt the user's personal files, including documents, pictures, and more, to hold it ransom in hopes that the unsuspecting victim will pay money to regain access to their files. It's important to note that malicious software are smart enough to evade and bypass any locally installed anti-virus software. Assuming that the user is gullible enough to have clicked on the phishing email, then they will wreck havoc on their systems because they were in fact installed by the owner of the computer, which means that they were probably installed with administrator rights. If the user does not comply with the ransom in the given period of time, the software will then initiate a self-destructing operation that will prevent any future release of the blocked files... . --- ### Windows 10's Latest Unfounded Privacy Fear: Games > A report claims that Microsoft can "invade your Windows 10 computer in search of counterfeit software." Does Windows 10 have yet another privacy problem? - Published: 2015-08-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-10s-latest-unfounded-privacy-fear-games/ - Categories: Windows 10 - Tags: News - Article Type: News A report claims that Microsoft can "invade your Windows 10 computer in search of counterfeit software." Does Windows 10 have yet another privacy problem? Just when you thought the anti-Windows 10 FUD couldn't get any sillier, yet another attack has emerged: quoting a services agreement you must agree to in order to use certain Windows 10 apps, some are alleging that Microsoft will scan users' PCs and delete any pirated games they find. This is among the most unfounded of privacy-related claims that has arisen in the three weeks or so since Windows 10 first shipped. But it is also riding a wave of anti-Windows 10 paranoia that threatens to derail what has been a stellar start for the OS, with over 50 million users successfully installing the OS so far, according to StatCounter. (Disclosure: StatCounter measures usage, and I find its methodology to be less accurate than that of, say, NetMarketShare. But NetMarketShare has not yet provided updated Windows 10 usage numbers. ) So what's the story? A spurious report at a blog called Alphr claims that an updated version of the Microsoft Services Agreement allows the software giant to "disable your pirated games and illegal hardware" and "invade your Windows 10 computer in search of counterfeit software. " This report has been widely quoted as evidence in news reports in more respectable and professional news providers that Windows 10 has yet another privacy problem. It does not. First, the Microsoft Services Agreement doesn't even cover Windows 10, which has its own EULA, or end-user license agreement, Instead, the Microsoft Services Agreement covers various Microsoft consumer products, websites, and services, including Xbox... --- ### Windows 10 Upgrade Tip: Cleaning Up Temporary Files > Learn how to clean up your temporary files following a Windows 10 upgrade installation. - Published: 2015-08-17 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-upgrade-tip-clean-up-temporary-files/ - Categories: Windows 10 - Article Type: How To Learn how to clean up your temporary files following a Windows 10 upgrade installation. Windows 10 has been offered as a free upgrade for Windows 7, 8, and 8. 1 users by Microsoft since July 2015.  If you're upgrading to Windows 10, I'll explain why Windows 10 retains temporary files from your previous operating system, as well as outlining steps on how to clean up your temporary files to increase your storage space. Related: Windows 10: Beating the Upgrade Fear Note: To upgrade, users must be running Windows 7 Service Pack 1 or Windows 8 (Windows 8. 1 Update). If you do not meet these prerequisites, then you might be able to still be able to upgrade to Windows 10, but you'll need to download an ISO image from Microsoft. Owners of these operating systems should see a Windows icon in their taskbar next to the clock, notifying them that they can reserve a free upgrade to Windows 10. If they choose to do so, a 3 GB file will be downloaded and placed on the computer's local drive. Windows icon in the taskbar. (Image Credit: Microsoft) According to Microsoft, the free upgrade will be available until the end of July 2016, and users can cancel their reservations at at any time if they don't want to upgrade to Windows 10. The upgrade process itself is pretty painless, and it takes a couple of reboots to get things straight. We'll cover those in a separate article. Once the computer is upgraded and up and running, you'll find that much of the original disk space that was available... --- ### AT&T Was Reportedly a Long-Time Willing Partner of the NSA > Citing leaked Snowden documents, The New York Times and ProPublica reported this weekend that AT&T was a decade-long "willing partner" of the NSA. - Published: 2015-08-17 - Modified: 2024-09-04 - URL: https://petri.com/att-was-reportedly-a-long-time-willing-partner-of-the-nsa/ - Categories: Cloud Computing - Tags: News - Article Type: News Citing leaked Snowden documents, The New York Times and ProPublica reported this weekend that AT&T was a decade-long "willing partner" of the NSA. Citing leaked Snowden documents, The New York Times and ProPublica reported this weekend that AT&T was a decade-long "willing partner" of the National Security Agency (NSA), providing the agency with access to billions of email messages that flowed through its networks. While the NSA has also worked with other Internet providers, its relationship with AT&T was "unique" and "highly collaborative. " "This is a partnership, not a contractual relationship," a leaked NSA document notes, alerting agents to be polite when visiting AT&T facilities. Indeed, AT&T displayed an "extreme willingness to help" the NSA, the documents explain. And the NSA budget for the AT&T partnership was accordingly more than twice that of the next-largest carrier collaboration. AT&T is not named in the documents, as the NSA has long been concerned about identifying the public corporations that assist in its efforts. Instead, AT&T is referenced by a codename. As are other carriers that aided the NSA, including Verizon and MCI (which has since been absorbed by Verizon). The documents viewed by The New York Times and ProPublica describe a decade-long relationship, from 2003 to 2013. And while it's not clear whether the two entities have the same relationship today, they collaborated on a sweeping series of spying operations, which included: Fairview. A program started in 1985 in the wake of the government breakup of the Bell telephone monopoly (which resulted in the creation of AT&T), Fairview was about the collection of bulk phone, Internet and email data from citizens of... --- ### A Look at Microsoft's New Hybrid Cloud Features > Learn about Microsoft's recent enhancements made to on-premises and in-cloud monitoring, online backup, and backing up VMware virtual machines. - Published: 2015-08-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-new-hybrid-cloud-features/ - Categories: Microsoft Azure - Tags: Azure Backup, Backup, DPM, Microsoft Azure, MSOMS, OMS, Online Backup, Operations Management Suite, System Center Data Protection Manager - Article Type: Overview Learn about Microsoft's recent enhancements made to on-premises and in-cloud monitoring, online backup, and backing up VMware virtual machines. Within the last few months, Microsoft has released a number of new Azure features for extending or adding functionality to traditional on-premises IT. Microsoft sometimes refers to these kinds of features as "on-ramp" services, as they're the sort of cloud technologies that IT staff are less likely to fear. These services also provide staff with the ability to discover and dip their toes into the potential of the public cloud, where Microsoft hopes that they eventually embrace more cloud features. In my own experience, these are the kinds of elements of Azure that Microsoft's value added reseller partners are developing services around. So let's talk about these recent additions and how they relate to IT pros today. Operations Management Suite Add-On for System Center System Center is no stranger to extending its services using the cloud. System Center Advisor was an in-cloud monitoring solution that offered additional intelligence over in-cloud or on-premises servers and applications. Advisor could be used by itself or it could add additional data to System Center Operations Manager (SCOM). System Center Advisor gave way to Operational Insights, a preview Azure service, and Operational Insights is evolving into a component of Operational Management Suite (OMS), also known as Microsoft Operational Management Suites (MSOMS). OMS, announced at Microsoft Ignite, is a suite of additional management for on-premises physical or virtual machines or in-cloud machines. The OMS Add-On For System Center is a bundling of services, including: Operational Insights Azure Backup Azure Site Recovery Azure Automation You can continue... --- ### Paul Thurrott's Short Takes: August 15, 2015 > Because it's only 4 months until the new Star Wars movie, this week's other news includes the worst Windows infomercial ever, a Windows 10 update, and more. - Published: 2015-08-14 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-15-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because it's only 4 months until the new Star Wars movie, this week's other news includes the worst Windows infomercial ever, a Windows 10 update, and more. Because it's only four months until the new Star Wars movie, this week's other news includes the worst Windows infomercial ever made, the Windows 10 controversy of the week, Cyanogen's lame attack on Windows Mobile, Samsung's latest whatever who cares, Google gets more time to explain itself to Europe, and Facebook cancels an internship after intern points out serious privacy violations. I challenge anyone to actually watch this entire video Ice bucket challenge? Please. I challenge you to watch this: available on YouTube, HORRIBLE Windows 95 Commercial doesn't even begin to explain how horrible it really is. You will never unsee—or unhear—this. Beware. Windows 10 controversy of the week: Search still 'phones home' when you disable web search The tinfoil hat club is doing everything they can to discredit Windows 10. And with a spate of supposed privacy issues quickly proven to be completely innocuous—not to mention opt-in—this week we've moved into phase three of the Windows 10 FUD. According to a report in Ars Technica, if a user disables web search in Cortana, Windows 10 still pings Bing. com and requests a file that includes a random ID number that's tied to the PC. Dastardly, right? Nope. "As part of delivering Windows 10 as a service, updates may be delivered to provide ongoing new features to Bing search, such as new visual layouts, styles and search code," a Microsoft statement responding to the accusation explains. As for why PCs would be getting Bing-related updates when the user... --- ### Extending Objects in Windows PowerShell, Part 3 > Jeff Hicks shows us more on extending objects in Windows PowerShell, this time by teaching us how to create a custom server management framework. - Published: 2015-08-13 - Modified: 2024-09-04 - URL: https://petri.com/extending-objects-windows-powershell-part-3/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Jeff Hicks shows us more on extending objects in Windows PowerShell, this time by teaching us how to create a custom server management framework. In the last part of this series, I demonstrated how to extend results that you might get back from a cmdlet. As you hopefully know, you can create an object out of thin air in PowerShell by using the New-Object cmdlet. Extending Objects in PowerShell Article Series: Extending Objects in Windows PowerShell, Part 1 Extending Objects in Windows PowerShell, Part 2 Extending Objects in Windows PowerShell, Part 3 Extending Objects in Windows PowerShell, Part 4 Revisiting How to Make an Object in PowerShell To create an object in PowerShell, all you need to do is specify a hashtable of property values. ​$obj = New-Object psobject -Property @{ Name = $env:username Computer = $env:computername OS = (Get-CimInstance Win32_OperatingSystem). Caption PSVersion = $PSVersionTable. PSVersion } You can also use the type accelerator. ​$obj = @{ Name = $env:username Computer = $env:computername OS = (Get-CimInstance Win32_OperatingSystem). Caption PSVersion = $PSVersionTable. PSVersion } In either event, you get an object. Our new object in Windows PowerShell. (Image Credit: Jeff Hicks) This type of object can also be extended by using the same techniques I showed earlier. ​$obj | Add-Member -MemberType ScriptProperty -Name Uptime -value { (Get-Date) - (Get-CimInstance win32_operatingsystem). LastBootUpTime } $m1= {get-service | where {$_. status -eq "stopped"}} $m2= {Param($log="System") Get-Eventlog -logname $log -newest 10} $obj | Add-Member -MemberType ScriptMethod -Name GetRunning -Value $m1 $obj | Add-Member -MemberType ScriptMethod -Name GetLastLogs -Value $m2 I went ahead and added a script property and a few methods. Our new script properties... --- ### Lenovo Announces Restructuring, Job Cuts After Mobile Losses > Lenovo posted revenues of $10.7 billion for the quarter ending June 30. But it faces “significant declines” in PCs and tablets, and slow growth in phones. - Published: 2015-08-13 - Modified: 2024-09-04 - URL: https://petri.com/lenovo-announces-restructuring-job-cuts-after-mobile-losses/ - Categories: Mobile - Tags: News - Article Type: News Lenovo posted revenues of $10.7 billion for the quarter ending June 30. But it faces “significant declines” in PCs and tablets, and slow growth in phones. Lenovo, the world’s largest maker of PCs and fifth-largest smart phone handset maker, announced net income of $105 million on revenues of $10. 7 billion for the quarter ending June 30. But facing “significant declines” in both PCs and tablets, and slowing growth in handsets, the personal technology company announced a major restructuring that includes shedding about 5 percent of its total workforce. "Last quarter, we faced perhaps the toughest market environment in recent years, but we still achieved solid results,” Lenovo vice chairman and CEO Yuanqing Yang said in a prepared statement. “Our PC business remained number one for the 9th straight quarter. In the smartphone business, our strategic shift from China to the rest of world has paid off. And our combined enterprise business achieved operational for the third consecutive quarter. " What analysts are pointing to, however, is Lenovo's profits, which were down 51 percent, year-over-year, thanks to losses in its mobile unit. (By comparison, Lenovo's revenues were up 3 percent. ) And it's fair to say that despite the brave face, Lenovo's financial results announcement is full of warnings. As a result, the firm will undergo what it calls "broad, decisive actions" that it says will better align its businesses and significantly reduce costs, enabling Lenovo to achieve both sustainable growth and its long-term goals. In the quarter, Lenovo's PC business reached a record share of 20. 6 percent, it remained the number one PC maker, and—perhaps most incredibly—it gained share in every geography. Lenovo... --- ### Will the New Google Work with Microsoft? > With Google splintering itself into a new corporate structure and Sundar Pichai taking the reins at the new Google subsidiary, things are clearly changing. - Published: 2015-08-12 - Modified: 2024-09-04 - URL: https://petri.com/will-the-new-google-work-with-microsoft/ - Categories: Mobile - Tags: News - Article Type: Opinion With Google splintering itself into a new corporate structure and Sundar Pichai taking the reins at the new Google subsidiary, things are clearly changing. With Google splintering itself into a new corporate structure under the Umbrella brand and Sundar Pichai taking the reins at the new Google subsidiary, things are clearly changing. Hopefully one of the changes is a warming of relations with Microsoft, which supports Google’s platforms broadly. It’s time for Google to return the favor. Yesterday, Google announced that it would become a subsidiary of a new company, called Alphabet, which will also provide an umbrella for other, smaller companies that are unrelated to Google and often focused on long-term big bets. As part of this change, Google cofounders Larry Page and Sergey Brin will lead Alphabet, and former head of consumer products Sundar Pichai is taking over Google. That slightly smaller company—Google—will continue to focus on the core Google products like search, Gmail, Android, Chrome and so on. I’m curious what this change will mean to the relationship between Google and Microsoft, which is essentially non-existent today. Google has long relied on Windows because of its dominance of the PC market. And while the firm delivers most of its solution as web-based services that work in any PC web browser, it has also created small PC utilities for syncing content between the Google cloud and Microsoft’s operating systems and desktop applications, especially Office, and of course Chrome, which is a gateway to Google services. What Google has not done, however, is support Microsoft’s mobile efforts. It has created exactly one app for Windows 8, and it has completely... --- ### Opinion Windows 10: Two Weeks Later > In this article Petri Contributing Editor Russell Smith outlines why he believes Windows 10 isn’t ready for the mainstream just yet. - Published: 2015-08-12 - Modified: 2024-09-04 - URL: https://petri.com/opinion-windows-10-two-weeks-later/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: Opinion In this article, Petri Contributing Editor Russell Smith outlines why he believes Windows 10 isn’t ready for the mainstream just yet. Microsoft officially launched Windows 10 on July 29, and last week saw the release of Service Release 1 (SR1), and two cumulative packages, each containing all the updates released since build 10240 was released to Windows Insiders, plus previously unreleased fixes. But despite the welcome release of SR1, there are still issues with the OS that make it hard to recommend that the average user should upgrade. Upgrades and updates I can't report any upgrade issues with the devices I have tried so far, but that doesn't seem to be the case for everyone, with some reporting that despite passing the pre-requisite and readiness checks for Windows 10, upgrades sometimes fail and have to be rolled back. Another reported issue is that peripheral devices that were supposedly compatible with the new OS, don't work after the upgrade. Windows 10 build 10240 cumulative updates (Image Credit: Russell Smith) Some users have also been reporting problems installing SR1, which under certain circumstances leaves machines in a continuous reboot cycle as the update fails, but as there's no opt-out for Windows Update, the OS attempts to run the update again. A second cumulative update for Windows 10 came down the pipe, which could include a fix for this issue, but so far there's no mention of what issues it addresses. Edge and Universal apps Microsoft is marketing its Edge browser in Windows 10 as a major new feature, and you can see my review,... --- ### Azure Virtual Machines SLA: A Primer > Aidan Finn explains how you can deploy virtual machines to meet the system requirements for Microsoft's 99.95% SLA on Azure VMs. - Published: 2015-08-11 - Modified: 2024-09-04 - URL: https://petri.com/azure-virtual-machines-sla/ - Categories: Microsoft Azure - Tags: Azure, Failover Clustering, High Availability, Microsoft Azure, virtual machines - Article Type: Overview Aidan Finn explains how you can deploy virtual machines to meet the system requirements for Microsoft's 99.95% SLA on Azure VMs. A huge worry that people have with placing virtual machines in the cloud is that these machines suffer some form of outage and leave businesses in the lurch. We have a lot of control over uptime when we work on-premises, where we can deploy virtualization clusters to get highly available virtual machines, and we can deploy load balancing or failover clustering in conjunction with anti-affinity to achieve highly available services. We have no control over the infrastructure when we're working in the cloud, so we relying on the best efforts of the hosting company to keep our machines online. These best efforts are governed by a service level agreement (SLA). In this article, I'll cover what this SLA is for virtual machines that are running in Azure, and discuss what you need to do to meet the requirements to become eligible for this SLA. Fault Domains and Availability Sets Azure is made up of maintenance or fault domains. Each of these domains is made up of a group of hosts that are logically and physically grouped. This grouping can affect virtual machines on these hosts in a couple of ways: Outage: If there is a network access issue or a power supply issue, it's possible that the entire maintenance/fault domain is affected. However, the fault is usually contained within the boundary, unless it's a data center-wide, Azure region-wide, or Azure-global issue. Maintenance: Procedures within Azure dictate that updates or repairs are done on one maintenance/fault domain at... --- ### Google Announces Massive Corporation Restructuring > In its typically unconventional fashion, Google will become a subsidiary of a new company called Alphabet, which is an umbrella for other, smaller companies - Published: 2015-08-11 - Modified: 2024-09-04 - URL: https://petri.com/google-announces-massive-corporation-restructuring/ - Categories: Cloud Computing - Tags: Android, Chrome, Google, Google Search, News - Article Type: News In its typically unconventional fashion, Google will become a subsidiary of a new company called Alphabet, which is an umbrella for other, smaller companies It looks like Microsoft isn’t the only tech giant struggling to find its identity in this rapidly-evolving age: Google, barely a decade old as a publicly-traded company and still over-reliant on a single product for over 90 percent of its revenues, has commenced a massive corporate restructuring. In its typically unconventional fashion, Google will become a subsidiary of a new company, called Alphabet, which will also provide an umbrella for—yes—an alphabet-soup of other, smaller companies that are unrelated to Google and often focused on long-term big bets. “We’ve long believed that over time companies tend to get comfortable doing the same thing, just making incremental changes,” former Google CEO and current Alphabet CEO Larry Page wrote in an open letter explaining the changes. “But in the technology industry, where revolutionary ideas drive the next big growth areas, you need to be a bit uncomfortable to stay relevant. ” According to Mr. Page, Alphabet is “mostly a collection of companies,” the biggest of which is Google. His long-time business partner and Google cofounder Sergey Brin will be joining him at Alphabet, as president. And Sundar Pichai, who had rapidly moved up the ranks at Google—leading the teams for Chrome, Android, and then eventually all Google consumer products—will be become CEO of the new, slightly smaller Google. Some have incorrectly described this change as a way to “separate Google’s money-making businesses from Google’s money-losing businesses,” but that is completely inaccurate and misses the point. Google has one business, search, which... --- ### Windows 10: Beating the Upgrade Fear > Daniel Petri shares his experiences on upgrading his computers to Windows 10 and outlines several different reasons why you shouldn't fear the upgrade. - Published: 2015-08-10 - Modified: 2015-08-10 - URL: https://petri.com/windows-10-beating-upgrade-fear/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: Opinion Daniel Petri shares his experiences on upgrading his computers to Windows 10 and outlines several different reasons why you shouldn't fear the upgrade. With Windows 10, there are no more traditional operating systems in Microsoft's future, only upgrades and updates, where Microsoft has moved a step forward in the evolution of the personal computer operating system. Instead of big release to manufacturing (RTM) releases, Windows 10 will receive regular improvements and updates. By doing so, Microsoft has altered the way it writes, engineers, and delivers the Windows OS to customers, and the initial result is Windows 10. Microsoft's Traditional Upgrade Path: Troublesome for IT Pros Being IT professionals, most readers probably remember past Microsoft-based operating systems. Starting from the MS-DOS branch of operating systems or building on the Windows NT branch (32-bit, then 64-bit), Microsoft has always provided some sort of upgrade path. In some cases, you could simply insert the CD/DVD (or floppies, if you remember those) while using your existing OS, then either manually start the upgrade process or let the auto-run feature do it for you. In most cases, the upgrade program would do its magic, reboot several times, and then your computer would be running the new OS, hoping all your files, known wireless network connections, and all installed software to be working. In most cases. Well, that's not entirely true. To a less-experienced user, an upgrade seems like the best type of install. In theory, an OS upgrade can save you time because you can skip much of the setup work afterwards. However, in practice, upgrades can often cause problems. That is why, most IT professionals would rather not use the upgrade... --- ### A Nokia Mobile Comeback? Not So Fast > A Reuters report claims that Nokia, once the world’s largest maker of mobile phones, is plotting a mobile comeback. Sorry, Nokia fans, but that's laughable - Published: 2015-08-10 - Modified: 2024-09-04 - URL: https://petri.com/a-nokia-mobile-comeback-not-so-fast/ - Categories: Mobile - Tags: News - Article Type: Opinion A Reuters report claims that Nokia, once the world’s largest maker of mobile phones, is plotting a mobile comeback. Sorry, Nokia fans, but that's laughable. A Reuters report claims that Nokia, once the world’s largest maker of mobile phones, is “plotting a mobile comeback. ” And while it’s true that Nokia-branded phones will probably appear within a few years, “comeback” is more than a bit strong: all of Nokia’s mobile device and services assets were moved to Microsoft last year, and the company called Nokia today has absolutely zero skill, capacity, or need to ever make a difference in this market again. And it won’t. That said, anyone invested in mobile computing can’t help but feel their heart strings pull a little bit at the thought of a resurgent Nokia. Well, not “resurgent. ” But in the market. With new products. Still, it’s unclear why Nokia—which is now a networking infrastructure company—would even bother making mobile devices. But it is. An iPad tablet knockoff the company started selling in China in January, dubbed the N1—get it? —went nowhere fast. So obviously the firm felt the need to move into phones again too. Why not? A better question is, why? All Nokia has going for it in the mobile space at the moment is a heavily tarnished brand. Nokia once faced the iPhone boldly, saw no reason to change, and then promptly went down in flames, taking the company—and, as it turns out, the Finnish economy—with it. Not that Nokia was particularly lacking in prescience: all of Apple’s erstwhile and already-in-market competitors—RIM/Blackberry, Microsoft, and Motorola among them—didn’t see the iPhone bullet coming until it was far... --- ### Goodbye Passwords: Windows 10 Passport > Russell Smith provides an overview of the technology behind Windows 10 Passport, which is designed to put an end to passwords. - Published: 2015-08-07 - Modified: 2024-09-04 - URL: https://petri.com/goodbye-passwords-windows-10-passport/ - Categories: Security - Tags: Editor's Pick, Windows 10 - Article Type: Overview Russell Smith provides an overview of the technology behind Windows 10 Passport, which is designed to put an end to passwords. In this Ask the Admin, I'll take a look at Windows 10 Passport and how it works with Windows Hello to provide a secure, but convenient way to access Windows, third-party applications and services, without having to remember dozens of passwords. Microsoft claims that Windows 10 will eliminate the use of passwords, and there are several new components that will help users achieve a password-free life, in turn preventing phishing and brute-force attacks. Much of this depends on third-party support, for which there's little at the moment, beyond enterprise services that use Azure Active Directory (AAD). But it's still early days for Windows 10, and with the Fast ID Online (FIDO) alliance on board, that means non-Microsoft services can easily adopt Windows 10 Passport. How does Windows 10 Passport work? Instead of sharing a password with applications and services, Passport authenticates users with a certificate or asymmetric public/private key pair that’s generated as part of a two-factor authentication enrolment process. Passport works with Identity Providers (IDPs), such as Azure Active Directory (AAD), or Windows Server 2016 Active Directory, although enterprises wishing to use certificate-based Passport won’t need to upgrade Active Directory if there’s already a Public Key Infrastructure (PKI) in place. Create a work PIN. (Image Credit: Microsoft) The public key that's generated during sign-up is sent to the IDP, and associated with a user account. Private keys are unlocked using a gesture, which can be biometric authentication using... --- ### Paul Thurrott's Short Takes: August 7, 2015 > This week's other news includes the first release of Microsoft’s bridge between iOS and Windows 10, future Microsoft mobile possibilities, and much more. - Published: 2015-08-07 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-august-7-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion This week's other news includes the first release of Microsoft’s bridge between iOS and Windows 10, future Microsoft mobile possibilities, and much more. Because success is the nexus between luck and success (or, um, something), this week's other news includes the first release of Microsoft’s bridge between iOS and Windows 10, some thoughts about a future Microsoft mobile possibility, Google finally (if belatedly) copies Trustworthy Computing, Russia is trying to hack the US military, and Google would like to forget the right to be forgotten. Microsoft open sources iOS toolkit for Windows universal apps When you’re looking to help developers port their apps from one of the world’s most closed platforms (Apple iOS) to one of the world’s other most closed platforms (Windows), it’s only natural that you’d think “open source. ” OK, maybe not. But Microsoft’s previously announced “Project Islandwood” toolkit, which aims to help port iOS apps to Windows, has finally shipped in its first pre-release version. And Microsoft is indeed open sourcing it. Now called Windows Bridge for iOS, Project Islandwood will ship in final form later this year, with Microsoft improving the product “in the open” so that other developers can help improve it too. We’d love for the interested and curious to look at the bridge, and compare what we’re building with your app’s requirements,” Microsoft notes in a blog post. But seriously, please port your iOS apps to Windows. “Windows 10 surpasses Apple's OS X in Russian internet browsing stats” So we have the pirated software market sewn up. Success! An interesting bellwether for Microsoft’s mobile future A tiny Android handset maker few have ever... --- ### Episode 25 August 6th - 10:15pm EDT Guest: John Martin, Data Center Architect, DCEP, CDCEP, CDCDP, CDCMP, CDCA - Published: 2015-08-06 - Modified: 2015-08-06 - URL: https://petri.com/episode-25-john-martin/ - Categories: Current Status The modern data center. What does that mean in the era of the cloud? Do clouds hover over your servers and unicorns graze along the aisle of server racks? Is the role of the data center architect dead? Join us August 6th, 2015 when we are joined by Independence Blue Cross Data Center Architect John Martin to discuss what the modern data center means. We will hear about the challenges he has faced with managing a Enterprise Data center in the cloud era but also hear about the rewards. Yes, there are rewards... --- ### Windows 10 Privacy Concerns Are Overblown, But Perception Matters > While most of the complaints about Windows 10's privacy violations are bogus, growing concerns about these issues could cause lasting damage. - Published: 2015-08-06 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-privacy-concerns-are-overblown-but-perception-matters/ - Categories: Windows 10 - Tags: News - Article Type: Opinion While most of the complaints about Windows 10's privacy violations are bogus, growing concerns about these issues could cause lasting damage. With overwhelmingly positive reviews and tens of millions of successful upgrades in its first week, Windows 10 is off to a great start. But Microsoft has also been dealing with a number of complaints about the new system. And while most of these complaints are bogus, growing concerns about the apparent privacy violations in Windows 10 could cause lasting damage. Most of the complaints fall into two basic categories, those things that are in fact not new to Windows 10, and those things are really new but are being overblown by privacy fanatics. Regardless, these reports are tugging at our very human tendency to see conspiracy where there is none: Windows 10 is free for many, so Microsoft simply must be doing something underhanded as a result. After all, Microsoft would never really give away Windows 10 for free. Wake up, people. Let’s examine some of the more common complaints. Most settings in Windows—browser history, favorites, and passwords—are now automatically synchronized to Microsoft's servers. This isn’t new, as it debuted in Windows 8. It’s also not automatic: you need to sign-in with a Microsoft account for this to happen, and then choose Express Settings, bypassing options where you decide what syncs. And one of the key advantages of signing in with a Microsoft account is—wait for it—that most settings in Windows are now automatically synchronized between your PCs and devices. Cortana collects even more data for Microsoft, including a device's location, calendar data, app usage, emails, text... --- ### Extending Objects with PowerShell, Part 2 > Jeff Hicks continues his tutorial on extending objects with PowerShell by showing us how to create alias and utilize methods with objects. - Published: 2015-08-06 - Modified: 2024-12-03 - URL: https://petri.com/extending-objects-powershell-part-2/ - Categories: PowerShell - Tags: Advanced, Scripting, Test-Connection - Article Type: How To Jeff Hicks continues his tutorial on extending objects with PowerShell by showing us how to create alias and utilize methods with objects. Let's continue our exploration of expanding the objects we get from running a PowerShell cmdlet. In the previous article, I demonstrated how to use Add-Member to define a new property that's calculated every time you get it. In this article, we'll continue looking at how we can use objects with PowerShell, this time by learning how to create alias with objects, as well as utilizing methods with objects. Extending Objects in PowerShell Article Series: Extending Objects in Windows PowerShell, Part 1 Extending Objects in Windows PowerShell, Part 2 Extending Objects in Windows PowerShell, Part 3 Extending Objects in Windows PowerShell, Part 4 ​$dc1 = Get-CimInstance win32_operatingsystem -ComputerName chi-dc01 $dc1 | Add-Member -MemberType ScriptProperty -Name Uptime -Value {(Get-Date) - $this. lastbootuptime} You might also want to create alias property, which happens frequently in PowerShell. In the case of $DC1, it might be easier to use a property called OperatingSystem, which is much more meaningful than the original Caption property. ​$dc1 | Add-Member -MemberType AliasProperty -Name OperatingSystem -value Caption -force The OperatingSystem property in Windows PowerShell. (Image Credit: Jeff Hicks) For the value parameter, simply specify the name of the original property. The other type of custom property that you can define is referred to as a Noteproperty. This is a static value that's defined when you define the property. You can use a simple string: ​$dc1 | Add-Member -MemberType NoteProperty -Name Location -value "Chicago" You can also use the result of a PowerShell expression. ​$psversion =... --- ### With Windows 10 Rolling Out, Microsoft Looks Forward to Windows 10 Mobile > With Microsoft focused on a “mobile first, cloud first” future, the software giant needs Windows 10 to fly on non-PC devices too. So smart phones are next. - Published: 2015-08-05 - Modified: 2024-09-04 - URL: https://petri.com/with-windows-10-rolling-out-microsoft-looks-forward-to-windows-10-mobile/ - Categories: Mobile - Tags: News, Windows 10 Mobile - Article Type: Opinion With Microsoft focused on a “mobile first, cloud first” future, the software giant needs Windows 10 to fly on non-PC devices too. So smart phones are next. By all accounts, Windows 10 is off to a blockbuster start, with tens of millions of people successfully upgrading to the new system in its first week of availability, and many millions more still waiting for their reservation OK to come through. But with Microsoft focused on a “mobile first, cloud first” future, the software giant also needs Windows 10 to fly on non-PC devices too. And a key market the firm has yet to attract in meaningful numbers—smart phones—is up next. Since 2010, Microsoft has offered a system called Windows Phone to address this market. Originally designed, yes, as an iPhone killer, Windows Phone has been anything but, and has fallen to under 3 percent market share in the past year while Apple’s smart phone surges forward. With Windows 10, Microsoft is trying a different tactic. This time around, the Windows Phone brand is going away, and Windows phones, as they’re now called, will run Windows 10 Mobile, a specially tailored version of the software giant’s new OS. Windows 10 Mobile isn’t Windows 10 in name only, either: it supports the same universal apps that run on “big” Windows and other platforms, including HoloLens, Surface Hub and even Xbox One. And Microsoft is hoping that this technical and familial similarity will drive developers to do something they’ve been ignoring for years: tailor their apps to Windows phones. Of course, recent news of more layoffs and a $7. 6 billion write-down in its phone business and a subsequent... --- ### Nokia Sells HERE to German Auto Consortium > Nokia has agreed to sell its HERE digital mapping and location services business to a consortium of European automakers for about $3.8 billion. - Published: 2015-08-04 - Modified: 2024-09-04 - URL: https://petri.com/nokia-sells-here-to-german-auto-consortium/ - Categories: Cloud Computing - Tags: HERE, News, Nokia - Article Type: News Nokia has agreed to sell its HERE digital mapping and location services business to a consortium of European automakers for about $3.8 billion. After months of uncertainty, Nokia has agreed to sell its HERE digital mapping and location services business to a consortium of European automakers for about $3. 8 billion. The move follows the 2014 sale of Nokia’s devices and services business to Microsoft for $7. 6 billion, and cements Nokia’s position as a provider of networking infrastructure. "With this step we complete the latest stage of Nokia's transformation,” Nokia president and CEO Rajeev Suri said in a prepared statement. “We integrated the former Nokia Siemens Networks, divested our Devices & Services business, and have now reached agreement on a transaction for HERE that we believe is the best path forward for our shareholders, as well as the customers and employees of HERE. Going forward, we will focus on our planned combination with Alcatel-Lucent. Once that is complete, Nokia will be a renewed company, with a world-leading network technology and services business, as well as the licensing and innovation engine of Nokia Technologies. " When Microsoft first began exploring a purchase of Nokia’s devices and services business in 2013, then-CEO Steve Ballmer was very interested in acquiring HERE from Nokia as well. But various reports stated that the price was too high, so HERE wasn’t included in the eventual deal. Whatever the reason, Nokia finalized the sale of its devices and services business to Microsoft in mid-2014, sans HERE. Since then, of course, Microsoft has written off the entire amount of that purchase, plus a few billion dollars... --- ### User Account Control: Standard User versus Protected Administrator Accounts > Russell Smith explains some of the potential risks of using administrator accounts in Windows. - Published: 2015-08-04 - Modified: 2024-09-04 - URL: https://petri.com/user-account-control-standard-user-versus-protected-administrator-accounts/ - Categories: Security - Tags: Least Privilege, Security, User Account Control - Article Type: Opinion Russell Smith explains some of the potential risks of using administrator accounts in Windows. Introduced in Windows Vista, User Account Control (UAC) is an umbrella term for a collection of technologies -- including registry and file virtualization, integrity levels, and elevation prompts -- making it easier to use Windows with less privileges. In this article, I'll explain why using a standard user account is more secure than a UAC Protected Administrator. Protected Administrator (PA) accounts were designed with consumers in mind, allowing Windows to be used with standard user rights most of the time, but privileges can be elevated to full administrator rights without needing to know the credentials of a separate user account. UAC adds the required rights to the user's security token if the user approves the elevation request. Microsoft recommends the use of standard user accounts, and a password for an administrator account must be entered if elevated privileges are required. In Vista and later versions of Windows, standard user accounts can be used to perform Windows tasks, such as changing the time zone and adding devices with signed drivers, that were limited to members of the Power Users and Administrators group in Windows XP. This important change makes it more realistic for organizations to remove administrative privileges from users. UAC is not a security boundary Although UAC Protected Administrator accounts might seem like an acceptable compromise for organizations also, it's important to understand that UAC isn't a security boundary and was designed to balance security and usability, rather than create an impermeable security boundary. Furthermore in Windows 7... --- ### Deep Dive on Windows Server 2016 New Features: Nested Virtualization in Hyper-V > Learn about nested virtualization in Windows Server 2016 for Hyper-V, a new feature that lets a user create and share virtual machines. - Published: 2015-08-03 - Modified: 2015-08-03 - URL: https://petri.com/deep-dive-windows-server-2016-new-features-nested-virtualization-hyper-v/ - Categories: Windows Server 2016 - Tags: Editor's Pick - Article Type: Overview Learn about nested virtualization in Windows Server 2016 for Hyper-V, a new feature that lets a user create and share virtual machines. Have you seen the movie Inception? The movie is about dreams and how dream scientists can make their way into peoples' dreams to get things done. One of the key sequences in the film is the ability to enter the dream of the dream, as if one is asleep dreaming, and dreaming about one being asleep within the dream -- the characters then incepted themselves into that nested dream. Related: Deep Dive in Windows Server 2016 New Features: PowerShell Direct What is Nested Virtualization in Windows Server 2016? That sort of nested entity, a dream within a dream, is analogous to a new feature in Hyper-V in Windows Server 2016. It's called nested virtualization, and it involves installing the Hyper-V hypervisor role on a physical host, setting up guest virtual machines on that host, and then from within the guest virtual machine, deploying the Hyper-V role in the guest and then creating guest virtual machines on the guest of the host. Guest Prime might be a way to refer to these virtual machines. You could not do this in a functional way in Windows Server 2012 or Windows Server 2012 R2 alone. You could hack around it in a way that let you create virtual machines, so they would actually exist, but you could not switch them on and use them, which really limited the practical nature of this feature. You could, of course, install VMware and then use that as the hypervisor, and let your guests run... --- ### Microsoft Reportedly Invests in Uber > Microsoft has invested about $100 million in Uber as part of a round of financing that values the controversial taxi-replacement service at $51 billion. - Published: 2015-08-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reportedly-invests-in-uber/ - Categories: Cloud Computing - Tags: News, Uber - Article Type: News Microsoft has invested about $100 million in Uber as part of a round of financing that values the controversial taxi-replacement service at $51 billion. According to reports, Microsoft has invested about $100 million in Uber, the controversial taxi-replacement service. That investment values Uber at an incredible $51 billion, and was part of a $1 billion financing round that concluded Friday. While it’s clear why Uber would be seeking additional financing—the firm is expanding its operations worldwide while fending off various legal attacks—Microsoft’s involvement is less obvious. Microsoft has not yet commented on the investment. But when questioned about Microsoft’s involvement, Uber offered the following curt response. “We filed to authorize this new funding more than two months ago. The filing is available to the public. We aren’t commenting on additional speculation. ” A bit over a month ago, however, Microsoft announced that it was selling some of its Bing mapping technologies to Uber, and that about 100 employees would move to Uber as part of the deal. The scaling back was part of a broader strategy change to focus on core businesses, but was not as well-publicized as the epic failure of Windows Phone and Microsoft write-down of its Nokia hardware and services businesses purchase. But the basic message was the same: Microsoft is not getting out of this business, but it is scaling back its participation greatly. “Over the past year, we have taken many actions to focus the company’s efforts around our core business strategy,” a Microsoft spokesman said at the time. “We will no longer collect mapping imagery ourselves, and instead will continue to partner... --- ### Windows 10's Continuum Killed the Personal Computer > The dream is no longer a PC in every home. Aidan Finn believes that Windows 10 Continuum has the potential to kill off the PC as we know it. - Published: 2015-07-31 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-continuum-killed-personal-computer/ - Categories: Windows 10 - Tags: Continuum, Editor's Pick, Phone, Smartphone, Windows 10, Windows Mobile 10 - Article Type: Opinion The dream is no longer a PC in every home. Aidan Finn believes that Windows 10 Continuum has the potential to kill off the PC as we know it. Do you remember when Microsoft's mission statement was to put a PC in every home? How things have changed. Teens are walking around these days with smartphones that have more functionality and connectivity than your PC with a 28,800 modem could have ever achieved. And something new is coming. A shadow is forming over the future of the PC. Could Windows Mobile kill the PC? I wonder... The Dominance of the Smartphone Bill Gates never really achieved his dream of putting a PC into every home. He did pretty well in the developed world, but in other nations a more affordable device gained a monopoly position. People in developing nations couldn't afford a PC or a laptop; instead they went for a feature phone. I remember being in a European hotel, stuck for something in English to watch, and seeing a story on BBC World News about how people in Africa were using phones to access the Internet. I thought that the tiny screen must have ruined the experience. Then Apple, followed by Android, shook the world up and gave us smartphones where the primary function isn't to make phone calls, but to give us access to cloud services. Those early devices were flagship machines that only wealthier people could afford. But now you can get capable and unlocked smartphones for as little as $50 and these entry-level machines have flourished. At Microsoft’s Worldwide Partner Conference (WPC) 2014 keynote, Microsoft COO Kevin Turner announced that Microsoft held a... --- ### Paul Thurrott's Short Takes: July 31, 2015 - Published: 2015-07-31 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-31-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because Windows 10 is here and I feel fine, this week's other news includes Windows 10’s impressive day-one performance, the availability of Windows 10 Enterprise, Windows 10 FUD is laughably lame, getting it wrong—twice—about Microsoft’s Nokia purchase and its strategy for Windows and phones, Apple Watch is or isn’t a failure, Google loses to Microsoft in court, and Google says “non” to France. Windows 10 day one: over 14 million upgrades So just 1,486,000,000 to go! Microsoft announced on Thursday that it saw over 14 million people successfully upgrade to Windows 10 in its first 24 hours of availability, a pretty impressive figure given that the firm is phasing in the upgrades. “We still have many more upgrades to go before we catch up to each of you that reserved your upgrade,” Microsoft’s Yusuf Mehdi said. “Rest assured we are working 24×7 to continue the upgrade process and are prioritizing the quality of your upgrade experience over anything else. We are grateful for your excitement and enthusiasm and we appreciate your patience over the days and weeks ahead as we carefully roll out Windows 10 in phases to all of you that have reserved. ” Sounds like a great start. “Only in Seattle: Meet the guy with a custom-designed Windows 10 Seahawks jersey” Well, duh. No one else on earth cares about the Seahawks at all. Windows 10 Enterprise now available While most of the excitement around Windows 10 has focused on consumers for whatever reason, it is arguably business adoption... --- ### Microsoft Does Right by Internet and Its Customers by Phased Windows 10 Rollout > Alarmists were predicting an Internet meltdown on Wednesday, with Microsoft rolling out Windows 10 electronically to millions of customers in 190 countries. - Published: 2015-07-30 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-does-right-by-internet-and-its-customers-by-phased-windows-10-rollout/ - Categories: Windows 10 - Tags: News - Article Type: News Alarmists were predicting an Internet meltdown on Wednesday, with Microsoft rolling out Windows 10 electronically to millions of customers in 190 countries. Alarmists were predicting an Internet meltdown on Wednesday, with Microsoft rolling out Windows 10 electronically to millions of customers in 190 countries around the globe. But the software giant didn’t test the boundaries of Internet bandwidth or, as it turns out, customer patience by indiscriminately splashing its new software everywhere. Instead, a measured and phase rollout helped keep the stupidity to a minimum. Not that there wasn’t stupidity, mind you. In offering a free upgrade to Windows 10 for hundreds of millions of customers, Microsoft has opened itself up to an unprecedented barrage of support incidents and outright complaints from people when things go wrong. And they have gone wrong for many, as my Twitter stream alone demonstrates, though to be fair this is likely one of the more reliable and consistent upgrade waves in recent Windows history. It wasn’t always this way: with past Windows upgrades, Microsoft only supported individuals who purchased the software at retail, a group that represented a tiny percentage of all users. It also supported enterprise customers, of course, but those businesses have always paid heady sums for this support. But the majority of support incidents were routed through PC makers, because those companies were ultimately responsible for the software that was bundled on the PCs they sold to customers. With Windows 10, Microsoft is shouldering the support burden. The reasons for this are varied, but I believe it really boils down to the fact that a free Windows 10 upgrade will... --- ### Extending Objects in Windows PowerShell, Part 1 > PowerShell MVP Jeff Hicks shares beginning tips and tricks for getting started with extending objects in Windows PowerShell. - Published: 2015-07-30 - Modified: 2024-09-04 - URL: https://petri.com/extending-objects-windows-powershell-part-1/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks shares beginning tips and tricks for getting started with extending objects in Windows PowerShell. If you have followed my work for a while you know that I am constantly talking about objects in PowerShell. During my training classes, I stress the importance of thinking about objects in the pipeline. When I look at problems in forums, I look to see if the poster is thinking about objects or still working with text. Once I have the data I want to work with as a collection of objects, then there's practically no limit to what I can do with it. Extending Objects in PowerShell Article Series: Extending Objects in Windows PowerShell, Part 1 Extending Objects in Windows PowerShell, Part 2 Extending Objects in Windows PowerShell, Part 3 Extending Objects in Windows PowerShell, Part 4 With that in mind, probably one of the most compelling features in PowerShell is how easy it is to extend it. You're not limited to whatever a cmdlet writes to the pipeline. You can easily extend the objects to meet your business needs, perhaps in ways you have never even considered before. Here's what I am talking about. We can start with a simple command. ​$dc1 = Get-CimInstance win32_operatingsystem -ComputerName chi-dc01 The value of $dc1 is an object that contains WMI information from the win32_operatingsystem class. The $dc1 object in PowerShell. (Image Credit: Jeff Hicks) Remember that you can pipe to Select-Object to see all of the properties. ​$dc1 | select * Let's say you want to know how long the computer has been running... . --- ### Best Windows 10 Features for Better Productivity, Security > To commemorate the launch of Windows 10, we're providing our list of the best Windows 10 features for better productivity and security. - Published: 2015-07-29 - Modified: 2024-09-04 - URL: https://petri.com/best-windows-10-features-for-better-productivity-security/ - Categories: Windows 10, Windows Client OS - Tags: Continuum, Cortana, Device Guard, Editor's Pick, Microsoft Edge, Microsoft Passport, Windows 10 - Article Type: Opinion To commemorate the launch of Windows 10, Senior Editor Blair Kellerhals is providing her list of the best Windows 10 features for better productivity and security. Today Microsoft is rolling out Windows 10 as a free upgrade to Windows 7 and Windows 8. 1 users in 190 countries around the world. To celebrate the occasion, I'm highlighting what I believe to be some of the best Windows 10 features that truly make this operating system an impressive upgrade from Windows 8 in terms of productivity and security. Related: Microsoft Delivers Free Windows 10 Upgrade in 190 Countries A Modern Browsing Experience with Edge Internet Explorer has had a 20-year run since its introduction alongside Windows 95. With that said, Internet Explorer has suffered from market share loss throughout its lifetime, where browser usage decreased from 95 percent to 60 percent in recent years. Paul Thurrott has attributed the fall in usage to Microsoft's dedication to serving customers that routinely refuse to upgrade their infrastructure, along with the firm's decision to fall by the wayside on updates to Internet Explorer. You can read more about his take on the history of IE, "What Is Microsoft Really Doing with Internet Explorer? " These mistakes resulted in an outdated browser that couldn't effectively compete with Firefox, Chrome, and Safari, which were strong offerings that stayed up-to-date with web and mobile browsing standards. With Windows 10, Microsoft is attempting to change Internet Explorer's lackluster legacy with the introduction of Edge as the go-to modern web browser. Microsoft has worked hard to strip Edge of legacy features that are no longer supported by the firm, such as ActiveX and VBScript, which has resulted in... --- ### Living on the Edge: Microsoft’s New Browser for Windows 10 > Russell Smith looks at some of the changes Microsoft has made to its new Edge browser for Windows 10. - Published: 2015-07-29 - Modified: 2024-09-04 - URL: https://petri.com/living-edge-microsofts-new-browser-windows-10/ - Categories: Windows 10 - Tags: Microsoft Edge, Windows 10 - Article Type: Overview Russell Smith looks at some of the changes Microsoft has made to its new Edge browser for Windows 10. Internet Explorer has been losing market share for years, and while that might have seemed like an irreversible trend until recently, Microsoft's new Edge browser has a lot to offer, even if it isn't quite ready to be unleashed on the day of Windows 10's launch. Related: Microsoft Delivers Free Windows 10 Upgrade in 190 Countries From Internet Explorer to Microsoft Edge Microsoft's new Edge browser is a fork from the Trident engine used in Internet Explorer and has been stripped back to remove all the legacy features that Microsoft will no longer support, such as VBScript and ActiveX Controls, resulting in 220,000 fewer lines of code at the last count. Browsing the web in Microsoft Edge on Windows 10 (Image Credit: Russell Smith) Here's a full list of the features that have been removed from Edge: ActiveX Browser Help Objects Document modes Vector Markup Language VBScript attachEvent / removeEvent currentStyle Conditional Comments IE8 layout quirks DirectX Filters and Transitions Edge doesn't support plug-ins, although Adobe Flash player is integrated, and can be disabled in the Advanced settings. However, Microsoft is planning to add extensibility support by the end of 2015, and compatibility with Google Chrome extensions, opening a wide selection of additional capabilities from the get go. Browsing the web in Edge Edge allows you to set a homepage, which can be configured from the Settings menu, and opening a new tab presents a list of frequently visited sites for quick access. Optionally,... --- ### Microsoft Delivers Free Windows 10 Upgrade in 190 Countries > Well, today is the big day: Windows 10 is now available as a free upgrade to users of Windows 7 and Windows 8.1 in 190 countries around the world. - Published: 2015-07-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delivers-free-windows-10-upgrade-in-190-countries/ - Categories: Windows 10 - Tags: News - Article Type: News Well, today is the big day: Windows 10 is now available as a free upgrade to users of Windows 7 and Windows 8.1 in 190 countries around the world. Well, today is the big day: Windows 10 is now available as a free upgrade to users of Windows 7 and Windows 8. 1 in 190 countries around the world. “We are delighted to make Windows 10 available in 190 countries today,” Microsoft’s Terry Myerson announced. “The launch of Windows 10 is being celebrated around the world with global fan celebrations and a new yearlong initiative to celebrate people and organizations making a difference around the world. ” As I wrote in my definitive Windows 10 review, Windows 10 succeeds in what many assumed was impossible by bridging the worlds of Windows 7 and Windows 8, and providing a terrific upgrade to users of both systems. It provides a familiar but improved desktop environment alongside a new universal apps platform that brings together devices as diverse as phones, tablets, PCs, Xbox One, HoloLens, and Surface Hub. Windows 10 is also compatible with the hardware and software you’re already using, though as always the best experience is to be had with a new PC. Companies such as Dell, HP and Lenovo are already shipping out the first Windows 10 PC pre-orders to customers, and you will see new machines in stores starting today. In addition to the many advances in Windows 10 that are aimed at individuals—again, see my review for details—Microsoft is also pushing this release as the best version of Windows ever for businesses. “Ready for corporate deployments, Windows 10 will help your company... --- ### Budgeting Struggles with Cloud Computing > Learn about the challenges around planning IT budgets for cloud computing, and learn about recent price increases from Microsoft's Azure services. - Published: 2015-07-28 - Modified: 2024-11-19 - URL: https://petri.com/budgeting-struggles-cloud-computing/ - Categories: Cloud Computing - Tags: Azure, Cloud, cloud computing, Microsoft, Office 365 - Article Type: Opinion Cloud computing doesn't always mean cheap. Learn about the challenges around planning IT budgets for cloud computing in this informative post by Aidan Finn. One great benefit of cloud computing is that you switch from a big-bang capital expenditure to a drip-feed operational expenditure model. The move to the cloud is great for many businesses, and financial controllers relish the increased liquidity that's available for profit-making operations. Switching from traditionally-budgeted IT to cloud computing, however, leads to some challenges for these financial controllers, as pricing is not easy and the pay-for-what-you-use model of the cloud is subject to price fluctuations.  In this article, I'll discuss some of those concerns. Related: Microsoft Launches New Microsoft Azure VM Pricing Tool Thinking Like a CFO Wait! Don't run away! I know, we're not talking about scripts, advanced settings, or cool storage or networking features. This stuff is more important because you don't get to play with that stuff unless the chief financial officer (CFO) signs the checks. What's important to the CFO in the IT world? They want to know how much something will cost. With legacy software, that's relatively easy. Okay, it's not easy, but once you pay for something, you usually own it. For example, if you purchase five copies of Windows Server Datacenter Edition and 200 user CALs, then you own them. The CFO can take that cost, do some accounting magic, and depreciate those assets over X number of years, possibly even throwing in some tax voodoo. Now let's change that to a scenario where you're going to deploy those machines in a public cloud. If that public cloud is Azure, then you've got to... --- ### Newly Discovered Android Flaw Puts Almost One Billion at Risk > Android really is the new Windows: a newly-discovered set of security vulnerability in the mobile OS has placed almost one billion users at risk of attack. - Published: 2015-07-27 - Modified: 2024-09-04 - URL: https://petri.com/newly-discovered-android-flaw-puts-almost-one-billion-at-risk/ - Categories: Mobile - Tags: Android, News - Article Type: News Android really is the new Windows: a newly-discovered set of security vulnerability in the mobile OS has placed almost one billion users at risk of attack. Credit: Wall Street Journal If you were looking for any more proof that Android is the new Windows, look no further: A newly-discovered set of security vulnerability in the mobile OS has placed almost one billion users at risk. And all a hacker needs to do to compromise your handset is to send you a text message. The flaw was uncovered by security researchers at Zimperium. It is the biggest smartphone flaw ever discovered. "The leading smartphone operating system carries a scary code in its heart named Stagefright," the researchers explain. "We believe these to be the worst Android vulnerabilities discovered to date. These issues in Stagefright code critically expose 95 percent of Android devices, an estimated 950 million devices. " To compromise your Android handset, all a hacker needs is your cell phone number, Zimperium says. Then, they can send a specially-crafted media file via MMS text message that will remotely execute code and compromise the device. Worse still, you don't even need to view the media file: when the message is received, Android will display notifications that trigger the code. It's even possible that by the time you go to look at the message, the attack could have deleted the message. You may never even know what hit you. The reason this happens is that Android processes incoming media files in text messages before you even see them, for performance reasons. But this means that malicious code can... --- ### Thinking About the Next Surface Pro > Now that we're sure that Microsoft won't suddenly announce a new Surface Pro model in tandem with the release of Windows 10 this week, our eyes turn to the fall. - Published: 2015-07-27 - Modified: 2024-09-04 - URL: https://petri.com/thinking-about-the-next-surface-pro/ - Categories: Mobile - Tags: Microsoft Surface Pro, News, Surface - Article Type: Opinion Now that we're sure that Microsoft won't suddenly announce a new Surface Pro model in tandem with the release of Windows 10 this week, our eyes turn to the fall. Now that we're sure—OK, semi-sure—that Microsoft won't suddenly announce a new Surface Pro model in tandem with the release of Windows 10 this week, our eyes turn to the fall, when I expect to see Surface Pro 4 finally make an appearance. Surface Pro 3 was released over a year ago, in June 2014, so this product version has already experienced a much longer time in market than did its two predecessors, Surface Pro and Surface Pro 2, both of which lasted just 8 months before being released. But rumors about its own replacement, presumed to be called Surface Pro 4, have been around since at least October 2014, when Microsoft revealed its plan to ease business deployments by committing to accessory compatibility in future models. We understand that for businesses to invest in Surface Pro 3, they need clarity on our commitment to hardware and accessories over time, so they can responsibly manage their investment choices," Microsoft's Brian Hall wrote in a Surface Blog post last October. "Today's Surface Pro 3 Type Covers, 'infrastructure' accessories such as our power adapter, Ethernet adapter, and more, and the Surface Pro 3 Docking Station ... are designed with our product roadmap in mind and will be compatible with the next generation of the 'Pro' line of Surface. This commitment helps validate an investment in Surface Pro 3 and solidifies Microsoft’s overall commitment to the continued growth of the Surface brand. " The decision to make the Surface Pro 3 Docking... --- ### Deep Dive in Windows Server 2016 New Features: PowerShell Direct > Learn all about the new Windows Server 2016 feature, PowerShell Direct, which prevents IT admins from making simple configuration mistakes. - Published: 2015-07-27 - Modified: 2015-07-27 - URL: https://petri.com/deep-dive-windows-server-2016-new-features-powershell-direct/ - Categories: Windows Server 2016 - Tags: Windows Server 2016 - Article Type: Overview Jonathan Hassell gives us a look at the new Windows Server 2016 feature, PowerShell Direct, which prevents IT admins from making simple configuration mistakes. Have you ever tried to make a configuration change on a Friday afternoon, right before beer o'clock, and you couldn't get access to the machine you needed to change? This problem might be caused by out-of-date security settings, the a network change, or something else. All you need to do is execute a couple of lines of PowerShell, but this problem prevents you from making a simple configuration change. What is PowerShell Direct? PowerShell Direct promises to solve this problem for you as long as you're living on the latest releases. PowerShell Direct lets you breach the boundary between hypervisor host and guest virtual machine in a secure way to issue PowerShell cmdlets and run scripts easily. Currently, it's limited only to Windows 10 and Windows Server 2016 guest living on Windows 10 and Windows Server 2016 Hyper-V hosts; no currently-released operating systems support this feature, although it works in the technical previews for both future versions of the product. Also, Windows Nano Server hosts and virtual machines do not currently work with this either, although you can safely bet that that fact will change in the months to come. The best part of PowerShell Direct is that it just works, every time, without a bunch of faffing about to get security settings configured, holes poked in firewalls, and flaky remoting set up. From a host, you can open a PowerShell session directly on the guest with just a couple of cmdlets. First, run Get-VM to get a list of... --- ### Paul Thurrott's Short Takes: July 24, 2015 > Because Windows 10 is inevitable, this week's other news includes the pending Windows 10 launch, Google's latest attempt at violating your privacy, and more - Published: 2015-07-24 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-24-2015/ - Categories: Windows 10 - Article Type: Opinion Because Windows 10 is inevitable, this week's other news includes the pending Windows 10 launch, Google's latest attempt at violating your privacy, and more. Because Windows 10 is inevitable, this week's other news includes the pending Windows 10 launch, Google's latest attempt at violating your privacy, Amazon leapfrogs Wal-Mart, Apple Music doesn't scare Pandora, and Tesla releases the ultimate technology upgrade. Next week: Windows 10 launch Well, we're down to the wire. As I write this, there are only five days to go until the July 29 launch date for Windows 10, a milestone that's about as soft was the nonexistent RTM release for this OS since many people waiting on the upgrade won't even get it until days—maybe weeks—later. But Windows 10 is a big deal, and an overwhelmingly positive experience, especially when you compare it to Windows 8. So I'll be dedicating much of my time in the weeks ahead to this new OS version, including releasing my in-progress e-book, Windows 10 Field Guide. So stay tuned. Lots of stuff happening. Speaking of which: The promo graphic you see above is my contribution to a fun little Windows 10 wallpaper mashup meme thing that Microsoft announced. You can download the full-sized (2560 x 1600) version from my OneDrive account if you want to get into the spirit. "Why I'm Upgrading to Windows 10" Because you write for a tech blog? Google raises more privacy hackles with new Maps Timeline feature The problem with Google is that everything it does will be seen through the lens of its creepy, privacy-invading efforts of the past. So when the search and advertising... --- ### Why Does Hyper-V Have Network Issues with 1 GbE NICs? > A common cause of network-related crashes and performance issues on Hyper-V is VMQ. Find out why you should disable VMQ on all of your 1 GbE NICs. - Published: 2015-07-24 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-network-issues-1-gbe-nics/ - Categories: Hyper-V - Tags: drivers, Firmware, Hardwaer, Hyper-V, networking - Article Type: How To A common cause of network-related crashes and performance issues on Hyper-V is VMQ. Find out why you should disable VMQ on all of your 1 GbE NICs. Microsoft has urged OEMs not to enable VMQ on the standard 1 GbE NIC that's commonly found in Hype-V hosts. But despite this request and the fact that it adds nothing. VMQ is left enabled and causes performance and uptime issues. In this article, you'll learn why you should disable VMQ as a standard part of your deployment and configuration management. A Common Cause of Networking Issues On social media, in meetings, at community events, and even after speaking at Microsoft Ignite, I get asked a question that starts something like, "My Hyper-V hosts have a problem when ... ," and I interrupt them. I ask if they are using Emulex 10 Gbps converged NICs, which is  the sort you find in IBM, HP, and Hitachi blade servers, or 1 Gbps Ethernet NICs in their hosts. Emulex appears to have finally sorted out the awful handling of VMQ in their firmware and drivers, and OEMs eventually dribbled out the fixes. But most of the time, the answer is that they have 1 GbE networking from Broadcom or Intel. I usually know straight away what the fix is. I ask them if they have disabled VMQ on the physical NICs that are used for the virtual switch. "VM-what? " is sometimes the response, and other times the response is "I don't know. " If you're using 1 GbE NICs, then you probably shouldn't know or care about VMQ, because this hardware offload offers nothing to you. You're... --- ### Backup and Restore Users on a Remote SQL Database with T-SQL and PowerShell > Here's a quick tutorial from Michael Simmons on how to backup and restore users on a remote SQL database with the help of T-SQL and PowerShell. - Published: 2015-07-23 - Modified: 2024-09-04 - URL: https://petri.com/backup-restore-users-remote-sql-database-tsql-powershell/ - Categories: SQL Server - Article Type: How To I've added a lot of skills to my tech toolbox over the years, and I've found PowerShell to be the most useful addition. As my skills with PowerShell increased, I've looked to use it more. That's a great thing, because PowerShell is so prolific on Microsoft systems today, that in many instances it's become the primary way to perform administration. Using PowerShell or T-SQL? When I began to work with SQL Server, I went through a predictable pattern. First, I became familiar with SQL Server Management Studio. After learning how to perform basic operations, I looked to PowerShell to see what I could do more efficiently. PowerShell in SQL Server works a little differently than many other systems. This is mostly due to the already well-established language used to script SQL databases: Transact-SQL (T-SQL). So although PowerShell is great for automation and scripting, there's also a handoff between PowerShell and T-SQL for performing database-related tasks. Back up and restore user accounts on a database Backing up and restoring user accounts on a database is one of those useful tasks in which T-SQL and PowerShell can help. I’m going to share a couple of scripts that help automate the process of copying users from one database and putting them onto another. First, Backup-iLPDatabaseUsers evaluates the users of a database, saving them as a SQL creation script that can be used against any other database. The SQL script is then ready to be used to create the SQL logins, the database users, and... --- ### Apple Posts Blockbuster Earnings but Disappoints Investors > Apple posted a profit of $10.7 billion on revenues of $50 billion while selling an incredible 47.5 million iPhones and still manage to disappoint investors. - Published: 2015-07-22 - Modified: 2024-09-04 - URL: https://petri.com/apple-posts-blockbuster-earnings-but-disappoints-investors/ - Categories: Mobile - Tags: News - Article Type: News Apple posted a profit of $10.7 billion on revenues of $50 billion while selling an incredible 47.5 million iPhones, and still manage to disappoint investors. Pity poor Apple. The consumer electronics giant posted a net profit of $10. 7 billion on revenues of $50 billion while selling an incredible 47. 5 million iPhones in the quarter ending June 30, 2015. But the news sent Apple's shares tumbling as investors voiced their disappointment. Why? Call Apple a victim of its own success. Despite an amazing 33 percent improvement in revenues year over year, Analysts who had over-estimated iPhone sales of 50 million or more expressed shock at Apple's results. And sales of the Apple Watch—which the firm refused to divulge—were much lower than expectations, based on estimates. But Apple CEO Tim Cook, correctly, focused on the continued amazing success of iPhone, which now constitutes over 60 percent of the company's revenues. "We had an amazing quarter," Mr. Cook said in a prepared statement, "with iPhone revenue up 59 percent over last year, strong sales of Mac, all-time record revenue from services, driven by the App Store, and a great start for Apple Watch. We're looking forward to releasing iOS 9, OS X El Capitan and watchOS 2 to customers in the fall. " Broken down by its major product lines, Apple's quarter looked like so: iPhone. A blockbuster success thanks to iPhone 6 and iPhone 6 Plus. Apple sold 47. 5 million iPhones in the quarter, up 35 percent from the same quarter a year ago. iPad. An area of concern, Apple sold 10. 9 million iPads in the quarter, down 23 percent from the 13. 3 million units it sold a... --- ### Microsoft Delivers $2.1 Billion Operating Loss on Phone Write-Down > It was a solid quarter for Microsoft, with the firm posting $22.2 billion in revenues for the previous quarter. But 8 billion in write-downs don't help. - Published: 2015-07-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delivers-2-1-billion-operating-loss-on-phone-write-down/ - Categories: Mobile - Article Type: News It was a solid quarter for Microsoft, with the firm posting $22.2 billion in revenues for the previous quarter. But 8 billion in write-downs don't help. In many ways, it was a solid quarter for Microsoft, with the software giant posting revenues of $22. 2 billion for the quarter ending June 30. But with over $8 billion in write-downs and other charges related to its phone business, Microsoft posted an operating loss of $2. 1 billion. For the full fiscal year, which also ended June 30, Microsoft posted operating income of $18. 1 billion on revenues of $93. 5 billion. "Our approach to investing in areas where we have differentiation and opportunity is paying off with Surface, Xbox, Bing, Office 365, Azure and Dynamics CRM Online all growing by at least double-digits," Microsoft CEO Satya Nadella said in a prepared statement. "And the upcoming release of Windows 10 will create new opportunities for Microsoft and our ecosystem. ” “We finished the fiscal year with solid progress against our strategic priorities, through strong execution and financial discipline, which is reflected in our results for the quarter and the year," Microsoft CFO Amy Hood added. But here's the problem: Even without the phone losses, Microsoft still earned a smaller operating income and less revenues than it did in the same quarter a year ago. That's a troubling long-term trend for Microsoft and indicates it may have trouble overcoming ongoing slowing of its Windows business. A strong US dollar could have also played a role. But the drama with phone will of course be top of mind. And the losses there—a combined $8. 4 billion—are staggering. Microsoft spread this figure across a $7. 5 billion non-cash... --- ### Tech Giants Petition Court to Reconsider Damages Award in Apple v. Samsung > Dell, Google, and other Silicon Valley technology giants have petitioned the US Federal Court of Appeals to reconsider a damages ruling in Apple v. Samsung. - Published: 2015-07-21 - Modified: 2024-09-04 - URL: https://petri.com/tech-giants-petition-court-to-reconsider-damages-award-in-apple-v-samsung/ - Categories: Mobile - Tags: News - Article Type: News Dell, Google, and other Silicon Valley technology giants have petitioned the US Federal Court of Appeals to reconsider a damages ruling in Apple v. Samsung. Credit: Houang Stephane Dell, Facebook, Google, HP and other Silicon Valley technology giants have petitioned the US Federal Court of Appeals to reconsider a damages ruling in Apple v. Samsung. The concern is that it could set a precedent that stifles innovation in the technology sector. The "friend of the court" brief was first uncovered by the blog InsideSources. But you can read the actual document on Scribd. Essentially, the tech companies—Dell, eBay, Facebook, Google, Hewlett-Packard, Limelight Networks, Newegg, and SAS Institute—are siding with Samsung in that they feel that the court should reassess the damages award in a case where Samsung was found guilty of violating Apple patents in the design of its smart phones and tablets. " panel upheld a jury's award of the entirety of Samsung’s profits on smartphones that were found to have infringed three Apple design patents relating to a portion of the iPhone’s outer shell and one graphical-user-interface screen," the filing notes. "Although the design patents covered only minor features of those complex electronic devices, the panel rejected Samsung’s argument that damages must be limited to the profits made from those infringing features. " "If allowed to stand," the filing continues, "that decision will lead to absurd results and have a devastating impact on companies, including , who spend billions of dollars annually on research and development for complex technologies and their components. " The filing then goes on to... --- ### An Interview with Microsoft’s Ranga Rengarajan, Data Platform Services > Senior Editor Blair Greenwood interviews Microsoft's Ranga Rengarajan of Data Platform Services on SQL Server 2016 and the current state of big data in an IT pro world. - Published: 2015-07-21 - Modified: 2015-07-21 - URL: https://petri.com/interview-microsoft-ranga-rengarajan-data-platform-services/ - Categories: SQL Server - Article Type: Interview Senior Editor Blair Greenwood interviews Microsoft's Ranga Rengarajan of Data Platform Services on the current state of big data in an IT pro world. Within the IT space, there's a natural inclination to treat terms like "big data" and "data analytics" as buzzwords. Although these words might have been abused and beaten into our brains by various marketing teams, the reality is that the way in which businesses operate has changed thanks to the amount of data that’s available today. And it's important to note that not only is there a tremendous push from business leaders to leverage and derive meaningful information from data, but that pressure also trickles down to in-the-trenches IT pros and DBAs to collect, secure, and utilize that data. I recently had the chance to sit down and speak with Microsoft's Ranga Rengarajan who heads up the Data Platform division. In our conversation, Rengarajan discussed the current state of working in today's data environment, where he outlined the challenges that Microsoft faces to deliver a top-notch data solution that fits a wide variety of needs for a wide variety of users, along with his thoughts on Microsoft's plans for the future where data is concerned. Making Data Management Easier, Secure, and Fast for IT Pros and DBAs To kick off our conversation, Rengarajan discussed the different ways in which businesses have changed thanks to the mass availability of data. Describing a "world that’s drunk on data," Rengarajan noted that the everyday user is now plugged into multiple devices. This point was made clear when Ranga commented on my own three devices that sat in front of me during... --- ### Even with Updating Changes, Windows 10 Will Retain 10 Year Support Lifecycle > Yes, Windows 10 is doing many things differently, but it will stick the standard ten-year support life cycle, while requiring users to stay up-to-date. - Published: 2015-07-20 - Modified: 2024-09-04 - URL: https://petri.com/even-with-updating-changes-windows-10-will-retain-10-year-support-lifecycle/ - Categories: Windows 10 - Tags: News - Article Type: News Yes, Windows 10 is doing many things differently, but it will stick the standard ten-year support life cycle, while requiring users to stay up-to-date. With Windows 10, we're told, everything is different. The system will be continually updated via a new "rapid release" strategy, and consumers can upgrade to the new OS for free. But as much as things are changing, many aspects of Windows 10 are in fact identical to previous Windows versions. And among those is Windows 10's support lifecycle, which sticks to the same 10-year-plan that Microsoft has offered for years. Microsoft never announced the support lifecycle. Instead, it quietly updated its Windows lifecycle fact sheet late last week, adding Windows 10 to the list. And this, combined with the final EULA (end user license agreement) found in the RTM (release to manufacturing) version of Windows 10, paints a more complete picture of how Microsoft plans to support its customers with the new Windows. From a high level, everything you know is familiar: Windows 10 has a ten-year support lifecycle, with the first five years constituting mainstream support and the second five years comprised of extended support. So mainstream support for Windows 10 ends October 13, 2020, and extended support ends October 14, 2025. Those dates are just two years after the corresponding dates for Windows 8, incidentally. Windows 10 is unique in the list of supported Microsoft client OSes—this list also includes Windows Vista (currently in extended support), Windows 7 (also in extended), and Windows 8—in that it warrants a footnote of sorts, related to Microsoft's strategy of keeping this OS up-to-date going forward. "Updates are cumulative,... --- ### Microsoft's Project Venus: Extending Azure Backup Features > Aidan Finn gives us a look at Microsoft's new Project Venus, which is a multi-step project that will quickly add desired features to Azure Backup. - Published: 2015-07-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-project-venus-extending-azure-backup-features/ - Categories: Microsoft Azure - Tags: Azure, Azure Backup, Hyrbrid Cloud, Microsoft Azure, Online Backup, WPC 2015 - Article Type: News Aidan Finn gives us a look at Microsoft's new Project Venus, which is a multi-step project that will quickly add desired features to Azure Backup. Microsoft recently discussed how they were going to extend the functionality of Azure Backup at the Worldwide Partner Conference (WPC) in Orlando last week. I had a call with some people in Microsoft to discuss Project Venus, which is a multi-step project that will quickly add desired features to Azure Backup. Related: Use Microsoft Azure Backup with Recovery Services What is Azure Backup? Azure Backup is Microsoft's online backup solution that uses extremely affordable Block Blob storage as the backup target. I personally don't like the branding of Azure Backup, because I see it as three very different solutions that customers are constantly get confused about, often thanks to Microsoft announcements and marketing that gloss over significant differences between the offerings. Here's how I refer to the solutions: Azure Backup: This is a service where you download an agent called MARS onto each machine and configure a backup of files and folders only using a GUI on that machine. Data is encrypted, compressed, and sent straight to Azure on a full-then-incremental basis with up to 366 recovery points and up to 99 years of retention. Stated differently, this solution provides more than you'll ever need. DPM + Azure Backup: A customer has System Center licensing and deploys Data Protection Manager (DPM) to backup files and folders, Hyper-V, SQL Server, Exchange Server, and SharePoint to a local disk repository with a short retention period. A single Azure Backup agent is installed on the DPM server, which extends DPM's functionality, allowing the admin to select... --- ### Farewell and Thank You > Editorial Director Jeff James ends his tenure at The Petri IT Knowledgebase with some thoughts on what made the site such a pleasure to be a part of. - Published: 2015-07-17 - Modified: 2015-07-17 - URL: https://petri.com/farewell-and-thank-you/ - Categories: Windows Server - Tags: HP, HP Enterprise, Jeff James - Article Type: Opinion Editorial Director Jeff James ends his tenure at The Petri IT Knowledgebase with some thoughts on what made the site such a pleasure to be a part of. It's not often that a lowly editor like me gets the opportunity to work on a website like the Petri IT Knowledgebase, so when given the opportunity to work on such well-regarded website years ago, I jumped at the chance. So it's with a very mixed set of feelings that I'm announcing my resignation from Petri, as I’ll be joining Hewlett Packard Enterprise as a Content Marketing Strategy Manager in the HP Corporate Marketing Group, where I’ll focus on the HP Technology Services division. I've had the honor of working at the Petri IT Knowledgebase for a little over three years, and in that time I've worked with dozens of authors, talked to a plethora of vendors, and spent lots of time with some truly excellent colleagues and co-workers. One of my favorite parts of the job was getting the chance to meet, speak with, email, and interact with hundreds of Petri readers, whose insights, commentary, jokes, and feedback have proven to be invaluable. I'd like to thank all of you took the time out of your busy schedules to reach out to me over the years, and I've always enjoyed reading your emails, phone messages, Tweets, and Facebook messages. You've helped make me smarter and wiser about the world of IT -- and believe me, I could use the help -- and for that I'm grateful. I can't count the number of times I've been at an IT trade show or other industry event where I've introduced myself to someone in marketing or in a non-technical role, and... --- ### Paul Thurrott's Short Takes: July 17, 2015 > Because no PC should be left behind in the Windows 10 upgrade wave, this week's other news includes a new theory about when Surface Pro 4 might ship, more. - Published: 2015-07-17 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-july-17-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion Because no PC should be left behind in the Windows 10 upgrade wave, this week's other news includes a new theory about when Surface Pro 4 might ship, more. Because no PC should be left behind in the Windows 10 upgrade wave, this week's other news includes a new theory about when Surface Pro 4 might ship, Microsoft's surprise party with Maroon 5, Xbox makes more lemonade, Toshiba gets in trouble for financial shenanigans, and Google sells more ads. This week's theory about Surface Pro 4 All year long we've been treated to "here comes Surface Pro 4" rumors, but each month has come and gone without even a hint from Microsoft that they are even considering such a device. So with Microsoft now promising Windows 10-based Surface Pro 3s coming to market soon, all eyes are turning to the fall. And for the first time—given that I literally have no knowledge of Microsoft's plans—I think the rumor mongers might be on to something. This fall, of course, is when Intel's Skylake processors land, giving Microsoft a chance to actually get a new-gen processor in a Surface Pro model for the first time ever. Beyond that, I expect a Windows Hello-compatible camera, with most of the rest of the device being largely identical to Surface Pro 3. So there you go. Now I'm a rumor monger too. "Windows phone is dead" Put another way, Windows phone is not dead. Microsoft threw a surprise party this week and invited Maroon 5 Which I'll explain for all the people in the audience who aren't 17-year-old girls: Maroon 5 is a pop group led by singer Adam Levine, who... --- ### Working with the PowerShell ISE and Script Snippets > PowerShell MVP Jeff Hicks shows us how to work with the PowerShell and script snippets to save you from excessive typing. - Published: 2015-07-16 - Modified: 2024-09-04 - URL: https://petri.com/working-with-the-powershell-ise-and-script-snippets/ - Categories: PowerShell - Tags: Advanced, Get-ISESnippet, ISE, Scripting - Article Type: How To PowerShell MVP Jeff Hicks shows us how to work with the PowerShell and script snippets to save you from excessive typing. I don't like typing PowerShell scripts any more than the rest of you, so I rely extensively on snippets to save time. Microsoft includes a fair number of snippets out of the box, where you can easily access them in the PowerShell ISE by pressing Ctrl+J to display a popup list. Scroll to the one you want and press enter. In this article, I'll teach you how to see and use different snippets that you already have available in PowerShell. In the PowerShell ISE, you can use the PSISE object model to access the current PowerShell tab. Each tab can have its own set of snippets. Each PowerShell tab has its own snippets. (Image Credit: Jeff Hicks) You can type $psise. currentpowershelltab. snippets to see all of them. You'll see something like this for each snippet: Viewing snippet information in PowerShell. (Image Credit: Jeff Hicks) If you were curious about what you have available, then you can use a command like this to display relevant information. ​$psise. CurrentPowerShellTab. Snippets | Sort DisplayTitle | select DisplayTitle,Description | out-gridview -title "My Snippets" Viewing available snippets in GridView. (Image Credit: Jeff Hicks) Because I've already added my own snippets, my results will vary from yours. Although it's fun playing with the PSISE object model, there's also a cmdlet called Get-ISESnippet. Whereas the PSISE object retrieves snippet information by content, this cmdlet lists the snippet files in the default location. The... --- ### Despite PC Doldrums, Intel Beats Expectations > Intel announced earnings for the second quarter of 2015, posting net income of $2.7 billion on revenues of $13.2 billion, beating expectations. - Published: 2015-07-16 - Modified: 2024-09-04 - URL: https://petri.com/despite-pc-doldrums-intel-beats-expectations/ - Categories: Mobile - Tags: Hardware, Intel, News, PC, Processor - Article Type: News Intel announced earnings for the second quarter of 2015, posting net income of $2.7 billion on revenues of $13.2 billion, beating expectations. On Wednesday, Intel announced earnings for the second quarter of 2015, posting net income of $2. 7 billion on revenues of $13. 2 billion. Both figures beat analyst expectations, though both were slight drops from the same quarter a year ago. The reason? Stronger than expected data center, memory and Internet of Things (IoT) revenues helped offset ongoing issues with the PC market. Indeed, the PC market isn't doing well at all. As I noted in Friday's Short Takes, PC makers sold 67. 25 million PCs in the second quarter, a drop of over 10 percent when compared with the previous year. And analysts from IDC and Gartner—averaged—believe the PC market will contract 4 percent overall in 2015. That's a problem for Intel because PCs still represent over 50 percent of Intel's revenues. In the second quarter, revenues in the Client Computing Group hit $7. 5 billion, but that's down 14 percent year-over-year. And on its post-earnings announcement conference call, Intel admitted that PC sales in 2015 would be worse than previously expected. As a result, it has adjusted its revenue guidelines downward by about 1 percent. As previously reported, part of the short-term problem for Intel—as well as its PC maker partners—is that Microsoft is giving Windows 10 away for free to most consumers. So users with PCs that were made as long as 2009 can upgrade from Windows 7 or Windows 8 to Windows 10 for free, cutting into what would normally be a nice hardware upgrade cycle. As... --- ### Microsoft Issues Final Patch Tuesday Updates for Windows Server 2003 > It's the end of an era: On Tuesday, Microsoft issued its final set of Patch Tuesday security updates for Windows Server 2003. - Published: 2015-07-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-issues-final-patch-tuesday-updates-for-windows-server-2003/ - Categories: Windows Server 2003 - Tags: News - Article Type: News It's the end of an era: On Tuesday, Microsoft issued its final set of Patch Tuesday security updates for Windows Server 2003. It's the end of an era: On Tuesday, Microsoft issued its final set of Patch Tuesday security updates for Windows Server 2003. That is the same day, not coincidentally, that support for the aging server system expired. "Microsoft will no longer issue security updates for any version of Windows Server 2003," a statement on the software giant's web site reads. You can read all about the early days of Windows Server 2003 in Aiden Quinn's poignant Bye Windows Server 2003, In Remembrance. But the system was launched on April 24, 2003 and served faithfully and reliably for over 12 years, despite four major Windows Server releases in the interim and another major release expected in the next year. Indeed, Windows Server 2003 had the same sort of impact on the server space as Windows XP did on client. And there are still many legacy installs of the product, many tied to installs of older Exchange versions, out in the wild. While estimates vary, approximately 20 to 30 percent of on-prem Windows Server installs still utilize Windows Server 2003. That's too many, Microsoft says. And it wants to help customers move forward to something more modern. "If you are still running Windows Server 2003 in your datacenter, you need to take steps now to plan and execute a migration strategy to protect your infrastructure," the company notes. "By migrating to Windows Server 2012 R2, Microsoft Azure or Office 365, you can achieve concrete benefits,... --- ### Bye Windows Server 2003, In Remembrance > Aidan Finn looks back on his experience when he first deployed Windows Server 2003 and considers what might have happened in the future. - Published: 2015-07-15 - Modified: 2015-07-15 - URL: https://petri.com/bye-windows-server-2003-in-remembrance/ - Categories: Windows Server 2003 - Tags: End of Life, End of Support, EOL, Extended Support, W2003, W2003 R2, Windows Server 2003, Windows Server 2003 R2 - Article Type: Opinion Aidan Finn looks back on his experience when he first deployed Windows Server 2003 and considers what might have happened in the future. In case you were hiding under a rock, Microsoft recently terminated extended support for Windows Server 2003, Windows Server 2003 R2, and related version of Small Business Server (SBS) on July 14th. It's a pretty emotional time for me, and I wonder how I'll cope. Related: The Complete Guide to Windows Server 2003 End of Support Deep Impact My first really cool job was when I was signed up as the Microsoft Network Team Lead for an international financial company that was headquartered in Dublin, Ireland, in mid-2003. This company spinned off from an old German bank, where IT was based on Window NT 4. 0 Server and Workstation with Office 97. Cobwebs were everywhere in this IT infrastructure, and I was given the freedom to update the systems throughout the global operation. There were many who objected and clung onto their local primary domain controllers, but with a lot of tenacity and some phone-flinging, we went from evaluation to completed migration of a global company of desktops and servers in a six-month period. We did some very cool things. We used a single domain that featured centralized management and delegated administration. We also used Group Policy to pre-configure desktops for those used to NT 4. 0, lock down the experience for security, and even to distribute software before adopting SMS 2003. We used WSUS when most still hadn't heard of patching. And we even used Remote Installation Service (RIS) to deploy our Windows XP desktop image before there was WDS, MDT or SCCM OS... --- ### Enable Two-Factor Authentication with Microsoft Accounts and Outlook.com > Learn steps for enabling two-factor authentication for your Microsoft accounts for increased security and protection against leaks. - Published: 2015-07-14 - Modified: 2024-09-04 - URL: https://petri.com/enable-two-factor-authentication-with-microsoft-accounts-and-outlook-com/ - Categories: Security - Article Type: How To Learn steps for enabling two-factor authentication for your Microsoft accounts for increased security and protection against leaks. In the wake of all the email security breaches we've had over the last few years, it's time to enable two-factor authentication on any account that's important to you. Thanks to various leaks, many crackers have started relying on hacking email addresses in combination with passwords to gain access to user accounts. Luckily, Microsoft makes available two-factor authentication on all Microsoft accounts -- these are the accounts used to access Outlook. com, Skype, your Windows Phone services, and more. In this article, I'll take a look at how to enable two-factor authentication on your Microsoft account. What is two-factor authentication? Two-factor authentication involves two factors: The first is something you have and the second factor is something you know. To log into an account or service that has two-factor authentication enabled, you are generally prompted to enter your username and password, where the service then texts a one-time code to your mobile phone that you will enter in the next step of the login process. By enabling this protection, your account and password security are increased  because any nefarious characters would also need to have access to mobile device, which is generally something that's always in your possession. Enabling two-factor authentication on Microsoft accounts It is fairly easy to get set up. Sign in to your Microsoft account and click the Security & privacy link located at the top of the page. You'll be directed to the Security settings page, where you'll find a two-step authentication option below. Microsoft account security settings. (Image Credit: Blair Greenwood) Under... --- ### Report: Uber Backs Out of Talks to Acquire HERE from Nokia > Uber has reportedly backed out of talks to acquire Nokia's HERE mapping and location services. The reason? Nokia was asking for too much money. - Published: 2015-07-14 - Modified: 2024-09-04 - URL: https://petri.com/report-uber-backs-out-of-talks-to-acquire-here-from-nokia/ - Categories: Mobile - Tags: News - Article Type: News Uber has reportedly backed out of talks to acquire Nokia's HERE mapping and location services. The reason? Nokia was asking for too much money. A report in the New York Times claims that Uber has backed out of talks to acquire Nokia's HERE mapping and location services. The reason? Nokia was asking for too much money. Uber's exit from the running—the New York Times cites three people with knowledge of the talks—leaves a consortium of German automakers that includes Audi, BMW and Mercedes-Benz as the most probable purchaser. These companies rely heavily on HERE for in-car navigation systems and would understandably like to protect a key customer expectation in their expensive automobiles. As for Uber, its reluctance to meet Nokia's price may hint at why Microsoft didn't acquire HERE when it purchased Nokia's other products and services in a mammoth $7. 2 billion deal that has since proven to be quite damaging to the software giant. Uber had reportedly offered as much as $3 billion for HERE, but Nokia demurred, demanding at least $4 billion. When the Microsoft negotiations for Nokia were renewed in late 2013, most analysts assumed that HERE would be part of any acquisition of Nokia's mobile products and services. But the business unit was curiously absent from the announcement. Then-Microsoft CEO Steve Ballmer was reportedly fixated on acquiring HERE, but the more pressing matter of rescuing the firm's only important mobile partner took precedence. So Microsoft acquired all of the important parts of Nokia ... except for HERE. With the benefit of hindsight, one might make the argument today that HERE was in fact... --- ### WPC 2015: 5 Announcements IT Pros Should Care About > Aidan Finn lists five announcements emerging from Microsoft's 2015 Worldwide Partner Conference that IT pros should care about. - Published: 2015-07-13 - Modified: 2024-09-04 - URL: https://petri.com/wpc-2015-5-announcements-it-pros-should-care-about/ - Categories: Cloud Computing - Tags: Azure, licensing, Office 365, Project GigJam, Surface, Windows 10, WPC 2015 - Article Type: News Aidan Finn lists five announcements emerging from Microsoft's 2015 Worldwide Partner Conference that IT pros should care about. Most IT pros don't or shouldn’t care about the Microsoft Worldwide Partner Conference (WPC). But at WPC 2015 in Orlando, Microsoft just wrapped up a near four-hour keynote in which they alluded to several interesting pieces of news. Even if you don't care about WPC, I urge you to keep reading, because there's probably some items that do affect you. 1. Microsoft Surface gets Increased Distribution In my article on the Petri IT Knowledgebase, What Went Wrong At Microsoft: Surface and Marketing Mishaps, I discussed the insane ways in which Microsoft feeds Surface stock through the channel to business customers. Note: The channel is how businesses typically buy product. The manufacturer sells to a distributor, the distributor sells to a reseller, and the reseller sells to the business. This offers a breadth market reach for the manufacturer and a responsive local contact for the reseller. Microsoft finally got Surface right with the Surface Pro 3, at least in the minds of many business users that wanted a best-of-breed hybrid device that could be a laptop and a tablet. Initially, Microsoft limited distribution to a handful of tier 1 global companies and sold directly to large chains, such as Best Buy or PC World, which created a huge gap. The Surface Pro 3's natural market is in business. Businesses typically don't buy off of retail and most value-added resellers (VARs) have no relationship with the tier 1 distributors. I work for what one might call a local distributor. Don't get me wrong,... --- ### Microsoft to "Upgrade the World" Starting July 29 > Microsoft has announced its plans to "upgrade the world" to Windows 10 starting on July 29. The software giant will also host special events in 13 cities. - Published: 2015-07-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-upgrade-the-world-starting-july-29/ - Categories: Windows 10 - Tags: News, WPC 2015 - Article Type: News Microsoft has announced its plans to "upgrade the world" to Windows 10 starting on July 29. The software giant will also host special events in 13 cities. On the opening day of its partner conference, Microsoft announced its plans to "upgrade the world" to Windows 10 starting on July 29. And to celebrate the release of Windows 10 with its fans, the software giant will host special events in 13 cities around the world. "Windows 10 is the best Windows ever and was built to empower people to do great things," Microsoft's Yusuf Mehdi said in a prepared statement. "It has new innovations like Cortana, Microsoft Edge and the Xbox app. It’s fast, more secure and compatible. It’s familiar and easy to use.   It’s automatically up to date. And you can upgrade for free beginning on July 29. " Since announcing the July 29 launch for Windows 10, Microsoft has stepped back from its initial plans to open the floodgates to consumers who have already reserved their free upgrade from Windows 7 or Windows 8. 1. Instead, Microsoft will begin trickling out the upgrade on July 29 and will allow more and more people to do so over time. First up are the 5 million people who joined the Windows Insider program so they could beta test Windows 10 and provide feedback to Microsoft. But the software giant is still celebrating the July 29 launch date in a big way. Microsoft will host what it calls global fan celebrations at special events in 13 cities around the world, including Beijing, Berlin, Dubai, Johannesburg, London, Madrid, Nairobi, New Delhi, New York City, Sao Paolo, Singapore, Sydney, and... --- ### Every Business is a Tech Business: Cultivating Better Business Practices > Russell Smith discusses the value of adopting cloud solutions to improve productivity through collaboration in small businesses. - Published: 2015-07-10 - Modified: 2024-09-04 - URL: https://petri.com/every-business-is-a-technology-business-cultivating-better-business-practices/ - Categories: Cloud Computing - Tags: business, cloud computing, Editor's Pick, Office 365 - Article Type: Opinion, Overview Russell Smith discusses the value of adopting cloud solutions to improve productivity through collaboration in small businesses. Organizations of all shapes and sizes need to communicate and collaborate to succeed and grow, and this includes one-man bands, whether that be with colleagues, business partners, or potential customers. It might be surprising that many still resist technology adoption  beyond the means of email exchanges as the primary means of communication and creating Word and Excel documents. Often these are the ones who can't adapt to managing remote teams, and there are others who thrive on firefighting, suffer from hero syndrome, or who wouldn't want to be seen as having fewer emails to read or less to do, in case it diminishes their own inflated sense of self-importance. The suggestion of using mail merge to quickly create mailshots, cloud storage to share files, or using Twitter to create a brand presence, can lead to forlorn conversations where you might have more success trying to sell a manicure set to a pig farmer. Resistance is sometimes down to fear of the unknown -- despite that most of the technologies we're talking about involves a relatively small learning curve -- or a lack of awareness of how technology can solve common small business problems, freeing up time to do something more useful. During a recent conversation with an acquaintance -- who was dead set against paying the small monthly fee to set up his fledgling business with email, document storage, and all those other goodies that come with Office 365 -- I discovered that he instead prefers to email... --- ### Paul Thurrott's Short Takes: July 10, 2015 > This week's other news includes reasons for Windows Phone's failure, getting closer to the truth of HoloLens, the PC industry continues to tank, and more. - Published: 2015-07-10 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-july-7-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion This week's other news includes reasons for Windows Phone's failure, getting closer to the truth of HoloLens, the PC industry continues to tank, and more. Because Ireland finally has a great craft beer scene, this week's other news includes a search for answers for Windows Phone's failure, getting closer to the truth of HoloLens, the PC industry continues to tank ahead of Windows 10 launch, Apple expects record sales of next-gen iPhones, and Android sets a dubious record for downloads. Lots of finger-pointing in Windows Phone debacle In the wake of Microsoft's surrendering of the smart phone market this week, a lot of closet analysts have started pointing fingers at various people, parties, market conditions, and happenstances in order to assign blame. But don't bother, as no one thing led to Windows Phone's defeat. And just off the top of my head, I can come up with a bunch of reasons. The system was late to market. It initially ignored business users and went after the high-end consumer market Microsoft so desperately craved. There were no apps. There were no good apps. There were none of the apps people really wanted. No Google apps. Wireless carriers never pushed the product adequately. Wireless carriers never let Microsoft update the phones. Microsoft moved to slow. Microsoft went off in the wrong direction and then readjusted too late. Nokia was the wrong partner. Nokia was the best thing that ever happened to Windows Phone, but Microsoft mismanaged the relationship. There were too few hardware partners. And then there were too many, none of which sold a meaningful number of devices. There were too few low-end... --- ### Moving from CSV to XML Part 4 > In the final article in this series on converting CSV to XML with PowerShell, Jeff Hicks puts finishing touches on our custom tool. - Published: 2015-07-09 - Modified: 2024-09-04 - URL: https://petri.com/csv-xml-powershell-finishing-touches-custom-tool/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Over the last several articles I've been documenting my journey of transitioning from CSV files to XML. I encourage you to get caught up on past articles otherwise today's content won't make much sense. My ultimate goal from the beginning was to come up with a tool to convert or transform a CSV file into an XML file, complete with type information so that I can import the XML back into PowerShell as typed objects. Let's walk through the final steps. First, here's the CSV test file I've been working with. I think you can look at that and figure out what type is necessary for each property if I import the CSV file. In fact, I'm going to import it with the Import-MyCSV function I showed you earlier. ​ I will get prompted to provide a type for each property. But everything is typed. Now that I am satisfied with the data, I can convert it to an XML document. ​ And for the sake of my demonstration, I'll use another of the functions I showed in an earlier article to rename the Objects and Object nodes to something more meaningful. ​ Well, perhaps not meaningful but at least different. Once renamed I can save the XML document to disk. ​ If I want to complete the transformation I can re-import the XML using my Import-MyXML function. ​ Perfect. Of course, I don't' want to have to manually type the few steps to convert a CSV file to XML... --- ### Microsoft to Lay Off 7800 Employees, Take $7.6 Billion Write-Off on Nokia Purchase > Microsoft will write off $7.6 billion, take a restructuring charge related to the Nokia purchase, and lay off 7,800 employees, mostly in its phone business. - Published: 2015-07-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-lay-off-7800-employees-take-7-6-billion-write-off-on-nokia-purchase/ - Categories: Mobile - Tags: News, Windows phone - Article Type: News Microsoft will write off $7.6 billion, take a restructuring charge related to the Nokia purchase, and lay off 7,800 employees, mostly in its phone business. Microsoft's 2014 purchase of Nokia's hardware and software businesses is officially a disaster: the software giant will write off $7. 6 billion and assume a massive restructuring charge related to the Nokia purchase, and lay off 7,800 employees, mostly in its phone business. This week's bombshell was in many ways telegraphed. Analysts have known for months that Microsoft would be forced to write off the Nokia purchase, and the recent corporate restructuring saw the departure of phone head Stephen Elop, with that business being subsumed into Windows. But it was still a shock, with Microsoft effectively capitulating the smart phone market to Android and iPhone while pledging to keep making its own phone hardware regardless. And those 7,800 layoffs come in the wake of 12,500 Nokia-based layoffs last year. So almost 20,000 of the 25,000 people who came to Microsoft from Nokia have been laid off since the acquisition. "We are moving from a strategy to grow a standalone phone business to a strategy to grow and create a vibrant Windows ecosystem including our first-party device family," Microsoft CEO Satya Nadella wrote in an email message to employees. "In the near-term, we’ll run a more effective and focused phone portfolio while retaining capability for long-term reinvention in mobility. " Nadella says that Microsoft has "fundamentally restructured" its phone business in the wake of the $7. 6 billion write off and a restructuring charge of approximately $750 million to $850 million. The firm remains "committed" to making its own phone hardware,... --- ### Troubleshooting Upgrade Problems in Windows 10 Build 10159 > Russell Smith shows us a workaround for troubleshooting upgrade problems in the Windows 10 Build 10159. - Published: 2015-07-08 - Modified: 2024-09-04 - URL: https://petri.com/troubleshooting-upgrade-problems-in-windows-10-build-10159/ - Categories: Windows 10 - Tags: Windows 10, Windows Update - Article Type: How To Russell Smith shows us a workaround for troubleshooting upgrade problems in the Windows 10 Build 10159. Following several weeks of silence, Microsoft has released another build of Windows 10 just a day after unleashing build 10158. In this Ask the Admin, I'll walk you through solving some of the problems you might encounter when trying to upgrade from build 10158. Upgrading from Windows 10 build 10158 to 10159 isn't necessarily as straightforward as it has been with previous builds. Along with the removal of the Insider Hub from build 10158, my selection of fast ring updates got reset to the slow ring, causing Windows Update to fail to recognize the availability of build 10159. And then once that problem was fixed, the download got stuck at 0%. Microsoft account, Windows Insider, and administrative privileges In the past, I've needed to run the Settings app with administrator privileges before Windows Update would acknowledge the availability of a new build, but this time that didn't work. That's not to say that you don't need to run Settings logged in as an administrator, because you do. You also should be logged in with an account that's signed up to the Windows Insider program. Although I was previously able to log in as the local administrator on my PC and run Windows Update from the Settings app, that's no longer an option in build 10158, because the administrator account on my PC is a local account, not a Microsoft account. Upgrading to Windows 10 build 10159 (Image Credit: Russell Smith) Unfortunately, if you're logged in... --- ### CSV to XML with PowerShell: Writing Typed Objects to the Pipeline > In this article series on converting CSV to XML with PowerShell, Jeff Hicks shows us how to write typed objects to the pipeline. - Published: 2015-07-08 - Modified: 2024-09-04 - URL: https://petri.com/csv-xml-powershell-writing-typed-objects-pipeline/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To In this article series on converting CSV to XML with PowerShell, Jeff Hicks shows us how to write typed objects to the pipeline. Let's continue our journey of transforming CSV data into XML data. One of the primary reasons I'm undertaking this process is to maintain type information. With that in mind, let's take a moment to see what is involved in importing an XML file and writing typed objects to the pipeline. For example, we'll how to handle and treat a value like 345321 as an integer and not a string. I'm going to use one of the XML files I created earlier that looks like this: XML file. (Image Credit: Jeff Hicks) You'll notice that I've added type information into my XML file.  You can read in any XML file to PowerShell as an XML document. ​ You can also navigate the document like any other PowerShell object. Navigating the XML document with PowerShell. (Image Credit: Jeff Hicks) Using an XPath filter, it isn't too difficult to see the data. ​ Using an XPath filter for better data visibility. (Image Credit: Jeff Hicks) Technically, I'm getting a bit more than I really need but you get the idea. The data is waiting for you. But I would like to have this turned back into objects that I can use in PowerShell. Because my XML file was originally generated with the ConvertTo-XML cmdlet, it only has a few nodes. Other than the XML declaration, there is a top-level collection node that in turn has a collection of nodes. The ConvertTo-XML cmdlet defines these as... --- ### CSV to XML with PowerShell: Capture Type Information for Different Properties > In this article series on moving CSV to XML, Jeff Hicks shows us who to capture type information for different properties. - Published: 2015-07-07 - Modified: 2024-09-04 - URL: https://petri.com/csv-xml-powershell-capture-type-information-different-properties/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To In this article series on moving CSV to XML, Jeff Hicks shows us who to capture type information for different properties. In part one of this article series, we started the journey of transforming CSV files to XML with PowerShell. Let's start dipping our toes into the XML waters. One of the reasons I'm moving from CSV to XML is to capture type information for different properties. For demonstration purposes, I'm going to import a CSV file and type the incoming object properties using the functions I shared in my previous article. ​ Importing a CSV file with Windows PowerShell. (Image Credit: Jeff Hicks) The variable $data is now a collection of typed objects, imported from the CSV file. Variable data. (Image Credit: Jeff Hicks) To get this into an XML file that I can use outside of PowerShell, I initially thought I'd have to show you how to create an XML document from scratch. Instead, we can take advantage of a cmdlet called ConvertTo-XML. This cmdlet will create an XML document in memory. ​ Results after using the Convert-toXML cmdlet. (Image Credit: Jeff Hicks) To create the file, I need to invoke the Save method, and I recommend using a complete file name and path. ​ Here's a sample of the end result. Our resulting XML file. (Image Credit: Jeff Hicks) You'll notice that there is a type attribute for each property node. That will come in handy when we attempt to reimport this XML into PowerShell. You can also see... --- ### Alternatives to the OneDrive for Business Sync Client > Russell Smith looks at the many issues with Microsoft's OneDrive for Business sync client, and why third-party solutions don't step up to the challenge for resolving those issues. - Published: 2015-07-07 - Modified: 2015-07-07 - URL: https://petri.com/alternatives-onedrive-business-sync-client/ - Categories: Microsoft 365 - Tags: Cloud, file management, Office 365, OneDrive - Article Type: Opinion Russell Smith looks at the many issues with Microsoft's OneDrive for Business sync client, and why third-party solutions don't step up to the challenge for resolving those issues. In this article, you'll learn why you should avoid the OneDrive for Business sync client and look at some alternative synchronization solutions. Habits can be hard to break, but sometimes it's worth learning to do something differently if it makes life easier. That's certainly the case when it comes to cloud file storage, because there's nothing more inefficient than emailing files to colleagues or partners -- especially when that involves multiple edits by a team over a period of time. Microsoft has recently been evangelizing its 'one source of truth' paradigm, alongside Office 365 Groups, and the ability to send Modern Attachments directly from OneDrive for Business using Outlook 2016 Preview or the online version of Outlook. For more information on what's new with Office 365 Groups, see New Features in Office 365 Groups on the Petri IT Knowledgebase. One source of truth is based around the idea of using cloud storage for hosting master copies of your files and maintaining up-to-date versions in one place, even if other copies of the same files are edited offline or across different devices. This avoids the issue of multiple versions of files being distributed among team members by email or removable storage, where no one is quite sure which version is most current. OneDrive, OneDrive for Business, or Sites (SharePoint Online) In OneDrive versus OneDrive for Business on Petri, I ran through some fundamental differences between the two products, including the two separate sync clients. At this point it’' worth mentioning Office... --- ### How to Install the Insider Hub App in Windows 10 > Learn how to add the Insider Hub app back to Windows 10 in build 10158 and later. - Published: 2015-07-06 - Modified: 2024-09-04 - URL: https://petri.com/install-insider-hub-app-windows-10/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: How To Learn how to add the Insider Hub app back to Windows 10 in build 10158 and later. Windows 10 build 10158 removes the Insider Hub app by default, so if you're signed up to the Windows Insider Program and would still like to receive information and notifications about issues and new builds, you'll need to reinstall the app manually. What happened to the Insider Hub app? While the Insider Hub app is considered to be a Windows Store app, paradoxically you won't find it in the store. But that doesn't mean that you can't reinstall the app, it's just been classified as an optional Windows feature and can be reinstalled using the Settings app. Before you can add the Insider Hub back to Windows 10, you'll need to be logged in as an administrator. It's not possible to start the Settings app with elevated privileges from a standard user account, and while the app will offer to elevate privileges as necessary when changing settings, it reports an error and fails to complete the given task, a significant bug still present in Windows 10 build 10158. Install the Insider Hub in Windows 10 (Image Credit: Russell Smith) So if you're logged in with a standard user account, you'll either need to add the account to the Administrators group or sign in with an administrator account. For more information about adding a user account to the local Administrators group in Windows 10 and earlier versions of Windows, see Add a User to the Administrators Group on the Petri IT Knowledgebase. [adkit zone="freestyle"... --- ### How to Add a User to the Administrators Group > Russell Smith shows us how to add or remove a user account from the local Administrators group in Windows 7 and later operating systems. - Published: 2015-07-06 - Modified: 2024-09-04 - URL: https://petri.com/add-user-administrators-group/ - Categories: Windows Client OS - Tags: Security, Windows Client - Article Type: How To Russell Smith shows us how to add or remove a user account from the local Administrators group in Windows 7 and later operating systems. In today's easy Ask the Admin, I'll show you how to add or remove a user account from the local Administrators group in Windows 7 and later operating systems. Sometimes it's not enough to elevate privileges in Windows, and there's no option but to add an account to the local Administrators group. In this article, I'll show you how to use the Local Users and Groups MMC snap-in to modify group membership in Windows. Start a management console with administrator privileges The instructions below assume that you are currently logged in with a standard user account. If you're already logged in as an administrator, you can skip elevating privileges when starting the management console. Type mmc in the Cortana Ask me anything box by the Start menu, right click mmc in the search results, and select Run as administrator from the menu. Now enter the credentials for an administrator account in the UAC dialog. In Windows 7 Professional, Enterprise, and Ultimate, you can start a management console in the same way by typing mmc into the search box on the Start menu. In Windows 8, go to the Start screen, type mmc, and right click the entry in the results panel. Add the Local Users and Groups snap-in Now we need to add the Local Users and Groups snap-in to the console: In the MMC window, click CTRL+M. In the Add or Remove Snap-Ins window, double click Local Users and Computers under available snap-ins. In the Choose... --- ### Managing INI Files with PowerShell Part 2 > Jeff Hicks continues his tutorial of managing traditional INI files with PowerShell. - Published: 2015-07-02 - Modified: 2024-09-04 - URL: https://petri.com/managing-ini-files-powershell-part-2/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Jeff Hicks continues his tutorial of managing traditional INI files with PowerShell. In the previous article, Managing INI Files with PowerShell, I demonstrated how you might convert a legacy INI file into something more object-oriented for use in PowerShell. At the end of the article, I showed how you could persist the data to disk using Export-Clixml. The potential issue is that the resulting file can only be used within PowerShell. Here's what my exported sample. ini looks like. Our sample XML file. (Image Credit: Jeff Hicks) The node names are not very meaningful outside of a PowerShell context. I then thought, perhaps I could use the ConvertTo-XML cmdlet. But this fails with my custom object. An error with the Convertto-XML cmdlet. (Image Credit: Jeff Hicks) And further testing shows that the end result is no different. So if I want to take my INI object and export it to a traditional XML file, I will have to do it myself. Fortunately, it isn't that difficult in PowerShell. I'm going to create a tool, that will take an INI file and create a traditional XML file just like you would use Export-CSV. First, I'll need a path for the finished file. ​ As I did last time, I'll need the path to the ini file and strip away comments and blank lines. ​ Next, I'll create a new XML document. ​ From here I could simply begin adding nodes. But I want to create a more complete document, so I'm going to take... --- ### Parallel Processing in PowerShell: Active Directory Cmdlets Revisited > Jeff Hicks shows us additional tips and tricks for parallel processing in PowerShell with the Active Directory cmdlets. - Published: 2015-07-02 - Modified: 2024-09-04 - URL: https://petri.com/parallel-processing-in-powershell-active-directory-cmdlets/ - Categories: PowerShell - Tags: Active Directory, Advanced, Editor's Pick, Parallel Processing - Article Type: How To Jeff Hicks shows us additional tips and tricks for parallel processing in PowerShell with the Active Directory cmdlets. In my article, An Introduction to Parallel PowerShell Processing, we looked at different ways to work with PowerShell in parallel. Specifically, we looked at how to find objects with Active Directory cmdlets by searching multiple locations at the same time. Although I complain about the AD cmdlets, they do perform quite well. All that I really need is a version of Get-ADComputer that will automatically do that for me. It would also be useful to be able to specify a search path to exclude. Once again, my handy Copy-Command function comes to the rescue. In the ISE, I create a new version of the command. ​ The Get-MyADComputer function in the PowerShell ISE. (Image Credit: Jeff Hicks) The first thing is to modify the Searchbase parameter so that it can accept an array of strings. ​ In the Process scriptblock, I need to reflect that if multiple locations are specified that Get-ADComputer be run for each location. Because I am splatting PSBoundParameters to Get-ADComputer, I need to tweek the Searchbase parameter because even though my function can accept an array, the original command does not. ​ If I run the command without specifying a searchbase, then the command runs normally. ​ You'll notice that I'm saving results to a variable. This is so I can exclude based on a regular expression pattern. This requires a new parameter. ​ Even though I'm specifying a REGEX type, you can use a simple string. However, the searchbase and exclude... --- ### 4 Ways to Configure Azure VMs using PowerShell > Russell Smith presents four different ways to configure Azure VMs using PowerShell, including the Azure DSC extension and more. - Published: 2015-07-01 - Modified: 2015-07-01 - URL: https://petri.com/4-ways-to-configure-azure-vms-using-powershell/ - Categories: Microsoft Azure - Tags: Cloud, DSC, Editor's Pick - Article Type: Overview Russell Smith looks at different ways of using PowerShell to configure VMs running in Microsoft Azure. In today's Ask the Admin, I'm going to take another look at the sometimes perplexing world of Microsoft technologies, and specifically the different ways of automating virtual machine (VM) configuration using PowerShell. I'll outline four different configuration methods, all relying on the Microsoft Azure PowerShell cmdlets for the initial VM deployment, and then different ways of executing PowerShell code once the VM has been provisioned. Azure DSC Extension Desired State Configuration allows system administrators to manage server configuration via declarative files that determine which components should be installed and how they must be set up. Although the number of DSC resources available in Windows Server 2012 R2 are limited, more are available in the DSC Resource Kit, and you can write your own, too. For more information on PowerShell Desired State Configuration, see the first part of a seven-part series Deploying a Desired State Configuration Web Host Using PowerShell on the Petri IT Knowledgebase. Microsoft released a VM extension for PowerShell Desired State Configuration (DSC) last year and has been improving it since then. The Azure DSC Extension allows administrators to pass DSC configuration files to VMs during initial deployment, without the need to install a VM in the cloud running a DSC pull or push server. The extension also supports passing custom DSC resources to VMs as zip files, along with your configuration files. The Azure DSC Extension is a great idea in principle, but has several drawbacks. Like any other Azure extension, VMs must reboot at... --- ### Using PowerShell to Export CSV Files to XML: Part 1 > Jeff Hicks shows us a quick primer on using PowerShell to export CSV files to XML. - Published: 2015-07-01 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-to-export-csv-files-to-xml/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Jeff Hicks shows us a quick primer on using PowerShell to export CSV files to XML. Like many of you, I store a lot of information in CSV files. Although CSV files are easy to use, they are not without limitations. For example, it's impossible to capture any type of nested data with CSV files. The CSV format is essentially flat, which fails when you try to export or serialize something in PowerShell that has nested objects. When you import a CSV file, another limitation is that everything is treated as a string. With these two issues in mind, I'm going to start a project of building a PowerShell toolset to help move my CSV files to XML. Using PowerShell to Export CSV Files to XML, Part 1 CSV to XML with PowerShell: Capture Type Information for Different Properties Let's start with a simple CSV file. ​$path = "c:scriptsusers. csv" I love how easy it is to import a CSV file and turn each line into an object. Importing a CSV file with PowerShell. (Image Credit: Jeff Hicks) In this particular case, I can use this file to create new accounts in Active Directory. Everything's pretty simple, and I can easily export the data to XML using the Export-Clixml cmdlet. ​Import-CSV -Path $path | export-clixml D:tempusers. xml Although the resulting XML isn't very pretty, it is intended to be used within PowerShell. Our resulting XML to be used in PowerShell. (Image Credit: Jeff Hicks) import-clixml D:tempusers. xml | select -first 1 The result is the same. It might be hard to tell... --- ### Restrict Privileged Accounts with Authentication Silos in Windows Server 2012 R2 > Learn how to restrict the use of domain admin accounts using authentication policy and silos in Windows Server 2012 R2. - Published: 2015-06-30 - Modified: 2024-09-04 - URL: https://petri.com/restrict-privileged-accounts-with-authentication-silos-in-windows-server-2012-r2/ - Categories: Active Directory (AD) - Tags: Editor's Pick - Article Type: How To Learn how to restrict the use of domain admin accounts using authentication policy and silos in Windows Server 2012 R2. In the second part of this two-part series, I'm going to continue showing you how to restrict the use of domain administrator accounts using an authentication policy and silo in Windows Server 2012 R2. In the first article, we covered how to create an authentication policy in Windows Server 2012 R2.  Before continuing with the configuration, let's step back and look at the SDDL that was used in with the Set-ADAuthenticationPolicy cmdlet from Part 1. UserAllowedToAuthenticateFrom SDDL You probably noticed in the Set-ADAuthenticationPolicy cmdlet, an unintelligible Security Descriptor Definition Language (SDDL) string used to set the access control condition value for the -UserAllowedToAuthenticateFrom parameter. Initially, the only way to determine the SDDL is to configure the access control condition in the GUI using the Active Directory Administrative Center (ADAC), and then to use Get-ADAuthenticationPolicy to retrieve all the properties for the policy, which includes the SDDL, so that it can be used to automate configuration in the future. Set the authentication policy user access control conditions using the Active Directory Administrative Center (Image Credit: Russell Smith) To configure the SDDL for the access control condition in the GUI: On a domain controller or device with the Remote Server Administration Tools (RSAT) installed, open Server Manager using the blue icon on the desktop taskbar or from the Start screen. You will need to be logged in as a domain administrator. In Server Manager, select Active Directory Administrative Center from the Tools menu. In ADAC, click Authentication in the... --- ### What’s New in Outlook 2016 Preview > Russell Smith talks about some of his favorite features in Outlook 2016 Preview, including Clutter, Modern Attachment Handling, and more. - Published: 2015-06-29 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-outlook-2016-preview/ - Categories: Office - Tags: Microsoft Outlook 2016 - Article Type: Overview Russell Smith talks about some of his favorite features in Outlook 2016 Preview, including Clutter, Modern Attachment Handling, and more. I’ve never been a big fan of Outlook, the messaging application that office workers up and down the land are most likely familiar with. The past two major releases, in 2010 and 2013, added some welcome enhancements, however nothing revolutionary. But my initial experience with Outlook 2016 leads me to think that Outlook has finally come of age, and in this article, I’ll walk you through some of my favorite changes and new features. Outlook 2016 Preview (Image Credti: Russell Smith) A friend of mine recently gasped as I fired up Outlook 2013 to send an email from my notebook, exclaiming that nobody uses that anymore. Having already been quizzed as to why I use Internet Explorer, and now Project Spartan (Edge) in preference to Chrome, the Outlook revelation might have been too much for his health. For a long time, I used the Windows 8. 1 Mail app and briefly flirted with Outlook. com, but I always find myself coming back to the Outlook desktop app, because when it comes to managing messages in bulk, you just can't beat the desktop application. But having said that, Outlook 2013 is slow to start up, clunky, and most problematic of all, it has a cluttered user interface, which in the days of clean and beautiful mobile messaging apps, makes Outlook appear to be something from the dark ages. And the reason I'm choosing to write about Outlook, as opposed to Word or Excel, is because for... --- ### Managing INI Files with PowerShell > Jeff Hicks shows us how to manage traditional INI files in a more object-based approach with PowerShell. - Published: 2015-06-29 - Modified: 2024-09-04 - URL: https://petri.com/managing-ini-files-with-powershell/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Jeff Hicks shows us how to manage traditional INI files in a more object-based approach with PowerShell. Traditionally, INI files are used as configuration sources, where an INI file consists of one or more sections with key pair settings. Here's an example of an INI file: Action = Start Directory = c:work ID = 123ABC Name = foo. exe Version = 1. 0 Name = Jeff Company = Globomantics If your application uses an INI file, then there's not much you can do except let it do its thing. But let's say you have an INI file that you want to move to an object-based PowerShell world. In this article, I'll show you how to use an INI file in the world of objects, and I expect the process will serve more as a learning tool than a practical one. As I approached the problem, I thought about what I wanted the end result to look like. I knew I had to write an object to the pipeline. The key pair combinations already look like a hash table that can easily be turned into a custom object. ​ The section name, , is also a likely candidate for a property. Let's make this the property name, and the setting object the value. ​ Making the section name the property. (Image Credit: Jeff Hicks)This makes it easy to reference individual settings. Giving a property lets us easily reference individual settings. (Image Credit: Jeff Hicks)Now that I had manually drafted and tested commands to turn an INI section into an object, I... --- ### Paul Thurrott's Short Takes: June 26, 2015 > Because France, this week's other news includes a literally incredible prediction about Windows 10 adoption in business, HoloLens heads for space, and more. - Published: 2015-06-26 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-june-26-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because France, this week's other news includes a literally incredible prediction about Windows 10 adoption in business, HoloLens heads for space, and more. Because France, this week's other news includes a literally incredible prediction about Windows 10 adoption in business, an ex-Microsoft wonders about something that would have never happened anyway, HoloLens heads for space, the US fingers China in hack attacks, and celebrating France's unique reaction to technology. Note: On Monday evening, I'm heading to Ireland and will be away until the following Wednesday. I'll still post to Thurrott. com during this time, but more sporadically than usual. --Paul 40 percent of businesses will adopt Windows 10 in first year, survey claims Which is so hilarious I'm almost at a loss for words. According to a survey by SpiceWorks, over 40 percent of the businesses it surveyed say they plan to upgrade to Windows 10 within the first year of its launch, with another 33 percent coming on board in the following year. Now, you don't have to have spent too much time in IT to see the hilarity in these claims, but I'll just throw my decades of experience in the ring and suggest that businesses want to appear more forward-leaning than they really are, but that when it comes to actually performing these migrations, precious little happens in the first year or two. I would be surprised to see 40 percent of businesses migrate to Windows 10 during its entire supported lifecycle, to be frank, and that certainly won't happen while Windows 7 is still supported. Anyone care to wager real money on this one? "Rival robot cars... --- ### Using PowerShell in Parallel with the Active Directory Cmdlets > Jeff Hicks shows us how to use PowerShell in parallel with the Active Directory cmdlets. - Published: 2015-06-26 - Modified: 2024-09-04 - URL: https://petri.com/using-the-powershell-active-directory-cmdlets/ - Categories: PowerShell - Tags: Active Directory, Advanced - Article Type: How To Jeff Hicks shows us how to use PowerShell in parallel with the Active Directory cmdlets. Let's continue our exploration of parallel processing with PowerShell by taking a look at the Active Directory cmdlets. I came across the scenario in an online forum, so let's start with that and how it led to my experiments in parallelization. The question was about the best way to search for certain computers, but exclude a location. This seems like a reasonable use case. For my test, I have computers in a development organizational unit,f and I don't want them to show up in the results. You should also know that I am testing from a Windows 8. 1 desktop running PowerShell 4. 0. Because the distinguished name contains the OU, you might think that the following expression would work: ​ But I get no results. Not even an error message. When I run into a situation like this, I try to simplify and test each component. I already know that the first part of the filter that grabs computers where the name starts with CHI works. So I try a number of variations on the second part, even trying to match case. ​ No change, no results, and no errors. For whatever reason, this approach will not work. Next, I try to filter on the canonical name, e. g. GLOBOMANTICS. local/Development/CHI-HV02. ​ I like to test for positive results to make sure it works before testing with –Notlike. But this also fails. This means I don't think there is a way to do early filtering with Get-ADComputer for a location. Remember, I want to exclude an... --- ### Episode 24 - June 25th- 10:15pm EDT Guest: Rick Dehlinger - Published: 2015-06-25 - Modified: 2015-06-25 - URL: https://petri.com/episode-24-rick-dehlinger/ - Categories: Current Status Converged infrastructure, is this just a fad or it is a data center strategy that is here to stay. Join us to discuss virtualization storage options Citrix CTP Rick Dehlinger (@rickd4real). Learn the pros and cons of converged infrastructure to determine if this strategy is best for your organization. --- ### PowerShell Problem Solver: Active Directory Remote Desktop Settings > Jeff Hicks tackles a problem with Active Directory Remote Desktop settings, where you can readily see in the settings, but Get-ADUser doesn't retrieve them. - Published: 2015-06-25 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-active-directory-remote-desktop-settings/ - Categories: PowerShell - Tags: PowerShell Problem Solver - Article Type: How To Jeff Hicks tackles a problem with Active Directory Remote Desktop settings, where you can readily see in the settings, but Get-ADUser doesn't retrieve them. During my recent PowerShell workshop in Finland, an attendee asked about Active Directory cmdlets from Microsoft in regards to remote desktop user settings. Although you can readily see the settings in Active Directory Users and Computers, Get-ADUser doesn't retrieve them. I haven't worked with Remote Desktop Services in quite a while, but I told him I'd look into this long-standing problem. Let's look at the problem. In Active Directory Users and Computers, you might have a setting like this: Active Directory Users and Computers settings. (Image Credit: Jeff Hicks) I don't have a Remote Desktop server, so I'm just improvising values. You would think that when you run Get-ADUser, you would see these properties somewhere. ​Get-ADUser jdemo –properties * But you don't. However, if you happen to be using the ActiveRoles cmdlets from Dell (formerly part of Quest Software), then you can easily get these settings. Using the ActiveRoles cmdlets from Dell. (Image Credit: Jeff Hicks) What's going on here? After a bit of research, I discovered this is a long-standing issue that seems to originate with a design decision made by the Terminal Services team. Instead of populating the user account with appropriate properties, they elected to store the information in a blob that's part of the UserParameters property. The UserParameters property. (Image Credit: Jeff Hicks) That's unfortunate for us or at least those of us who don't want to have to write complicated code to... --- ### With Hardware in Freefall, Blackberry CEO Admits to Android Dreams > Blackberry CEO John Chen admitted this week that he is considering moving his firm's devices business to Android while charting a software-based future. - Published: 2015-06-25 - Modified: 2024-09-04 - URL: https://petri.com/with-hardware-in-freefall-blackberry-ceo-admits-to-android-dreams/ - Categories: Mobile - Tags: BlackBerry, News - Article Type: News Blackberry CEO John Chen admitted this week that he is considering moving his firm's devices business to Android while charting a software-based future. Blackberry CEO John Chen admitted this week that he is considering moving his firm's devices business to Android. But Blackberry may have more fundamental issues to surmount in the short term amid mounting losses. Mr. Chen's comments came during an interview with CBS News. Noting that Blackberry only sold fewer handsets than ever in the most recent quarter, the interviewer asked whether Chen would ever consider making a "pure Android phone. " (Blackberry currently offers some Android app compatibility in its latest phone designs. ) "We only build secure phones," he answered, "and Blackberry is the most secure phone. So if I could find a way to secure the Android phone, I will also build that. " That's an interesting admission. On the one hand, you might argue that the initial qualifier—if he could find a way to secure Android— rules out this possibility . But he very clearly states that the firm will build Android phones too. No Microsoft executive, for example, has ever admitted that they would build Android phones if they could just overcome some hurdle; instead they stick by Windows Phone. Of course, Chen is fashioning a future for Blackberry where handsets are no longer the primary focus. He'd like to see Blackberry turn into more of software and services company, one that yes, also sells some hardware. To reign in the costs on the hardware side of the business, Mr. Chen has now contracted with several outside device makers to build Blackberry's handsets. So while Blackberry... --- ### Microsoft Launches New Previews for Azure SQL Data Warehouse, SQL Server 2016 > Microsoft announced that a new limited public preview is now available for Azure SQL Data Warehouse, and the CTP 2.1 Preview is now available for SQL Server 2016. - Published: 2015-06-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-new-previews-azure-sql-data-warehouse-sql-server-2016/ - Categories: SQL Server - Article Type: News Microsoft announced a handful of announcements for its cloud data platform, which include Azure SQL Data Warehouse, SQL Server 2016, and Power BI. Microsoft served up a handful of updates for its cloud data platform offerings, where the technology giant provided announcements for Azure SQL Data Warehouse, SQL Server 2016, and Power BI. Azure SQL Data Warehouse in Limited Public Preview Microsoft first announced Azure SQL Data Warehouse at its Build developer conference this year, where the company described the new offering as a "enterprise-class elastic data warehouse-as a service. " You can read more about the initial announcement on the Petri IT Knowledgebase in my article, Build 2015: Microsoft Takes on Amazon with SQL Data Warehouse, Azure Data Lake. Azure SQL Data Warehouse might be best described as an cost effective and economical offering compared to existing competing services, where the new technology lets users manage the separation of compute and storage, thus enabling users to pay only for what's needed. Additionally, Azure SQL Data Warehouse lets users pause the database at will for better cost efficiency, where again the user only pays for commodity storage costs. Rather than restrict users to a sole physical or cloud scenario, Azure SQL Data Warehouse also caters to users by providing hybrid solutions so users aren't forced to choose between the two. Hybrid scenarios for Azure SQL Data Warehouse. (Image Credit: Microsoft) Microsoft is now announcing the availability of its Limited Public Preview for Azure SQL Data Warehouse, which users can sign up for on Microsoft's Azure SQL Data Warehouse informational page.   This preview is intended for data warehouses that range from five to 10 TBs, so that users can start testing and providing feedback on... --- ### Microsoft Launches New Microsoft Azure VM Pricing Tool > Learn about Microsoft's new tool for pricing Azure virtual machines and common issues that are associated with pricing VMs. - Published: 2015-06-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-new-azure-vm-pricing-tool/ - Categories: Microsoft Azure - Tags: Azure, Microsoft Azure, Pricing, virtual machines - Article Type: Review Learn about Microsoft's new tool for pricing Azure virtual machines and common issues that are associated with pricing VMs. The biggest challenge I see to Azure is pricing. Microsoft's customers and partners need to know how much something costs because budgets dictate the green light for IT proposals, and businesses don't have a great big bottomless IT budget that they can always dip into. Almost every day, one of my colleagues in the sales department will pass over a call to me, where a customer is asking how much a server costs in Azure. I slowly count to 10, and then explain that Azure is a technical sale. My colleague first needs to ask the customer some questions about what they have and want to do with Azure. Additionally, you first need to design a solution with specifications, and only then can you price how much a server costs in Azure. Microsoft didn't help themselves because the pricing pages on the Azure website are pretty atrocious, and there was lots of negative feedback. Last night, Microsoft emailed anyone who contributed to some of that official feedback, informing us that a new online pricing calculator for virtual machines was released in preview. The Issues with Microsoft Azure Pricing The issues with pricing are all information related. When people arrive at the Azure information pages, they are greeted with lots of pricing for individual components of Azure: Virtual machines.  There's a price per hour and monthly cost. The original page mentions a disk size, but it doesn't explain that this is the temporary D drive, and there's no mention of the 127 GB C:... --- ### Getting Started with PowerShell Profiles > Learn how to get started with PowerShell profiles with three great ways to make your administrative much more productive. - Published: 2015-06-24 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-powershell-profiles/ - Categories: PowerShell - Article Type: How To Michael Simmons shows us why PowerShell profiles are useful and provides three great examples of how to use them in your everyday work. This article is going to show you how easy it can be to create a PowerShell profile and start using it to make your administration go much more smoothly. What are PowerShell Profiles? Your PowerShell profile is not some mysterious collection of settings buried deep in the registry. You don't need any more skill or expertise to use your PowerShell profile than you need to use anything else in PowerShell. In simple terms, your PowerShell profile is your own personal script that runs each time you start PowerShell.  Your PowerShell profile also serves as a place for you to load consistent settings, drives, and custom commands. When you use PowerShell, there's a variable called $profile. It references a location on the hard drive that contains your profile.  Go ahead, and look at it. It's been sitting on your computer the entire time. The PowerShell profile variable. (Image Credit: Michael Simmons) There are two things worth pointing out here: PowerShell_ISE is in the filename. This is important because there are actually two profiles, one for the PowerShell console and one for PowerShell ISE. . PS1 file extension. This is important because you should recognize that the file extension represents a PowerShell script, and that's exacty what the profile is. Knowing that you've got a script that runs each time you start PowerShell, you may already be thinking "Actually, I could really use that to do x, or y, or x AND y! " If you're looking for some inspiration, read on as... --- ### Samsung Laptops Are Quietly Disabling Windows Update > A Samsung software utility is disabling Windows Update on the firm's PCs in order to ensure that only the correct drivers are installed. Hilarity ensues. - Published: 2015-06-24 - Modified: 2024-12-03 - URL: https://petri.com/samsung-laptops-are-quietly-disabling-windows-update/ - Categories: Windows Client OS - Tags: Laptop, News, PC - Article Type: News A Samsung software utility is disabling Windows Update on the firm's PCs in order to ensure that only the correct drivers are installed. Hilarity ensues. A Microsoft MVP has discovered that a Samsung software utility is quietly disabling Windows Update on the firm's PCs in order to ensure that only the correct drivers are installed. In disabling Windows Update, the Samsung software is of course behaving like malware. And the consequences of this change, which are made without the user's knowledge, could be dire. Patrick Barker discusses his discovery of this issue, and a rather tragic interaction with Samsung Support, on his blog. But the short version is that Samsung is faced with an issue that all PC makers face: it carefully curates the drivers that get applied to its PCs, only to have Windows Update overwrite them later with generic drivers that aren't always as ideal for its particular configurations. Other PC makers, like HP, have worked with Microsoft to ensure that only the correct drivers are delivered over Windows Update to their PCs, and I wrote about this partnership recently in The HP Spectre x360 is What Happens When a PC Maker Collaborates with Microsoft. Samsung, however, chose a very different route. Using the SW Update utility that Samsung provides on its PCs—all major PC makers provide a similar utility—Samsung has delivered a software package, imaginatively called Disable_Windowsupdate. exe, that—wait for it—disables Windows Update. That way, the only updates the system gets will come via SW Update. Samsung Support confirmed the behavior to Mr. Barker. "When you enable Windows updates, it will install the Default Drivers for all the hardware no laptop which may... --- ### US Navy Pays Millions for Extended Windows XP Support > The US Navy last year entered into a Microsoft Custom Support Agreement (MCSA) so it can continue using Windows XP past that OS's support expiration. - Published: 2015-06-23 - Modified: 2024-11-19 - URL: https://petri.com/us-navy-pays-millions-for-extended-windows-xp-support/ - Categories: Security - Tags: News, Windows XP - Article Type: News The US Navy last year entered into a Microsoft Custom Support Agreement (MCSA) so it can continue using Windows XP past that OS's support expiration. The US Navy last year entered into a Microsoft Custom Support Agreement (MCSA) so it can continue using Windows XP past that OS's support expiration. And the Navy is paying big bucks to stay this far behind: that MCSA set it back $9. 1 million for one year, and could cost up to $30 million before the OS migration is complete. News of the Navy's plans was first spotted by Ars Technica. "Windows XP has reached end of life and the vendor will no longer employ support system upgrades or mitigation of vulnerabilities," the Navy notes a 2014 internal memo. "To ensure end-to-end cyber security posture and enterprise configuration management, Navy will accelerate the process to eradicate the remaining WIN XP instances and support a migration effort to Microsoft's Windows 7. " The Navy contracted with Microsoft in April 2014, around the time of XP's support expiration, to extend support for approximately 100,000 workstations that still use Windows XP and Office 2003. The support contract also includes Exchange 2003, which the Navy notes has also "reached the end of maintenance period. " The Navy is also using Windows Server 2003, for which support expires on July 14, 2015, just a few weeks from now. The Navy has allegedly been working on migrating from these systems since 2013. And according to a September 2014 memo, the Navy's MCSA originally extended through April 2015, so it was supposed to be a one-year contract. But the Ars report suggests... --- ### Does Azure Backup Work? > Aidan Finn shares his experience on how he almost lost his production machine data and reviews whether Azure Backup for Virtual Machine works in the event of data loss. - Published: 2015-06-23 - Modified: 2024-09-04 - URL: https://petri.com/does-azure-backup-work/ - Categories: Microsoft Azure - Tags: Azure Backup, Backup, Editor's Pick, Restore, virtual machines - Article Type: Review Aidan Finn shares his experience on how he almost lost his production machine data and reviews whether Azure Backup for Virtual Machine works in the event of data loss. That's the question I asked myself earlier today when I was down to my very last option for saving my own web server. In this article, I'll tell you all about what went wrong with my Azure virtual machine and how Azure Backup for virtual machines saved my bacon. Related: Using Microsoft Azure Online Backup My Personal Website I've been running a blog since 2006. At first it was something that I used to generate attention for my new career as an IT contractor. Over time, the site evolved, and I've been stunned by how many people come to it every year to search for things on Windows, Hyper-V, and other subjects that I've littered the Internet with. My site has become an important notebook for me, but it's also a source of income with several advertisers gracing me with their business. That means that the website is mission critical, and I cannot afford to lose it. Backup, Backup, Backup There's a saying in IT: if you don't have three copies of your backup, then you don't have a backup. I've never trusted backup tools, and maybe that's because I've been forced with too many big-name, bad products over the years, and I've become quite wary. So when I migrated my WordPress website from a local hosting company to Microsoft Azure, I implemented the following: MySQL backup.  WordPress is powered by MySQL. Rather than use the limited free or pricey paid MySQL offerings from ClearDB, the people who power... --- ### An Introduction to Parallel PowerShell Processing > PowerShell MVP Jeff Hicks gives us an introduction to parallel PowerShell processing for better performance for tasks that scale. - Published: 2015-06-23 - Modified: 2024-09-04 - URL: https://petri.com/introduction-to-parallel-powershell-processing/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks gives us an introduction to parallel PowerShell processing for better performance for tasks that scale. Because we use PowerShell to manage things in the enterprise, we want to be as efficient as possible. Looking for ways to eke out more performance is important, especially as our tasks scale. What you do for 10 Active Directory user accounts, might be different for 10,000 accounts. And before I get too far into this, understand that accessing native . NET class methods and properties in PowerShell is usually faster than their cmdlet counterparts. If you want true performance, you could write your own C# application. If you have the skills to do either of these, you probably aren't reading this article. I also am of the opinion that if your task is so performance sensitive, PowerShell may not be the right tool for the job. There is always going to be a little overhead when using PowerShell cmdlets, but that's the trade-off we get for ease of use. My plan is to look at a variety of techniques for doing something in parallel. This article is an extension of PowerShell Management at Scale. For my scenario, I want to use some Active Directory cmdlets and search for items in parallel. I'm testing from a Windows 8. 1 domain member desktop. My test network is probably more resource constrained than yours so your results might vary. I want to use Get-ADUser to retrieve a list of user names. ​$names = 'jfrost','adeco','jeff','rgbiv','ashowers','mflowers' If you look at help for Get-ADUser, you'll see that the -identity parameter does not accept an... --- ### Making a PowerShell Command Your Own > PowerShell MVP Jeff Hicks shows us how we can create our own PowerShell command. - Published: 2015-06-22 - Modified: 2024-09-04 - URL: https://petri.com/making-powershell-command/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks shows us how we can create our own PowerShell command. After you have been using PowerShell for a while, you'll begin finding the need to create your own tools and commands. Often, your commands are centered on a PowerShell command that you want to adjust to meet your requirements. Perhaps you need to add a new parameter, modify an existing parameter, or take results from a command and combine them with something else. This can be a very tedious process if you attempt to build your own command from scratch. As you have probably surmised, I'm here to help. First, let's look at two approaches on how to create your own PowerShell command. Proxy Commands A proxy command is often used to customize the behavior of a given cmdlet, often by removing parameters. This is most often done in scenarios where you have created a delegated and restricted remote-endpoint, and you not only want to limit what commands can be run, but also what parameters can be used. Often the proxy command uses the same name as the original command and passes parameters to it. You can create a proxy function manually by first creating a CommandMetaData object. ​ This object is a snapshot of the command, its parameters, and settings. Creating a CommandMetaData object in Windows PowerShell (Image Credit: Jeff Hicks) This object has a method that will generate a proxy command. ​ The proxy code looks like this: ​ ] ${Name}, ] ${ComputerName}, ${DependentServices},... --- ### Enable Distributed BranchCache on a Microsoft Azure File Server > Aidan Finn shows us how to enable distributed BranchCache on a Microsoft Azure file server. - Published: 2015-06-22 - Modified: 2024-09-04 - URL: https://petri.com/enable-distributed-branchcache-on-a-microsoft-azure-file-server/ - Categories: Microsoft Azure - Tags: BranchCache, File Server, virtual machines - Article Type: How To Aidan Finn shows us how to enable distributed BranchCache on a Microsoft Azure file server. In a previous article, Improving Azure File Server Performance using BranchCache, I discussed how a company could use BranchCache to improve the performance of a remote file server, such as one that was migrated or deployed in Microsoft Azure. In this article, I will show you how to deploy a small-to-medium enterprise (SME) scenario where there are no on-premises servers and the on-premises client devices use BranchCache in a peer-to-peer Distribute Mode to optimize the use of file servers that are placed in a remote network, such as an Azure vNET access via VPN or ExpressRoute. System Requirements The server must be running Windows Server 2008 R2 or later. Note that there are further performance gains by using Windows Server 2012 or later. BranchCache can optimize services offered by a file server, IIS web services, and applications that share data using BITS, such as System Center Configuration Manager (SCCM). The client device must be running the Enterprise edition of Windows 7 or later. As with the server, there are further performance gains with Windows 8 or later. Although you can deploy non-domain member machines, the simplest and best-overall solution is to join the machines to a common domain and configure the client devices using Group Policy. The design in this scenario looks like the following: There are one or more domain controllers in an availability set. A file server is deployed as an Azure virtual machine. Client devices can access the Azure VNET using some kind of remote networking... --- ### EU Demands Sweeping Changes to Google Search > Regulators from the European Commission are requiring Google to make sweeping changes to its Search service due to ongoing violations of EU antitrust laws. - Published: 2015-06-22 - Modified: 2024-09-04 - URL: https://petri.com/eu-demands-sweeping-changes-to-google-search/ - Categories: Cloud Computing - Tags: Google, Google Search, News - Article Type: News Regulators from the European Commission are requiring Google to make sweeping changes to its Search service due to ongoing violations of EU antitrust laws. Margrethe Vestager Regulators from the European Commission are requiring Google to make sweeping changes to its Search service due to ongoing violations of EU antitrust laws. The Commission is also prepared to levy fines against Google that would be high enough to deter the search giant's illegal behavior going forward. Google was alerted to these demands in April, but the EC has still not publicly issued its full charge sheet, presumably because it is prepared to let Google settle the case by meeting its demands. But according to several reports, including one in The Wall Street Journal, the EU's demands go well beyond the abandoned settlement Google almost wrestled from the previous EC administration. Put simply, Google has been found to be violating EU antitrust laws by abusing its monopoly power in Internet search to hobble competitors and harm consumers, many of whom use Google as their gateway to the Internet. Google has over 90 percent usage share in most of the EU. " preliminary conclusion that Google's practice of positioning and displaying more favorably, in its general search result pages, its own comparison shopping service compared to competing comparison shipping services constitutes an abuse by Google in the relevant markets for general search services," a redacted version of the EU charge sheet notes. According to the charge sheet, Google has abused its market power in 12 European countries dating back to at least 2008. It does so by artificially manipulating search... --- ### New MDM Features in Microsoft's Enterprise Mobility Suite > Peter De Tender outlines new mobile device management (MDM) features that are coming to Microsoft's Enterprise Mobility Suite. - Published: 2015-06-19 - Modified: 2015-06-19 - URL: https://petri.com/new-mdm-features-microsoft-enterprise-mobility-suite/ - Categories: Mobile Peter De Tender outlines new mobile device management (MDM) features that are coming to Microsoft's Enterprise Mobility Suite. Mobile device management (MDM) has always been the key feature of Windows Intune, which is available as a stand-alone cloud solution or a hybrid in combination with SCCM 2012. This feature, however, was also extended to Microsoft's Enterprise Mobility Suite (EMS), bringing Azure Active Directory (AD) Premium and Azure Rights Management Services on board. Understanding Microsoft's Enterprise Mobility Suite Let's recap key features of each component before jumping into the latest announcements from Microsoft Ignite on EMS. Microsoft Intune.  Microsoft Intune provides key solutions for device and applications management. Microsoft Intune lets you manage Windows phones and tablets, iOS, and Android devices. In additional to mobile devices, it's important to note that you can also manage devices that run the full Windows 7 or 8 operating system.  Key features include inventory of installed hardware and software, deploying application packages, deploying software updates, and providing device and data security by using device and user policies. Azure AD Premium.  Azure AD is the identity and access management component in the Microsoft cloud. Most people know this out of the directory sync (DirSync) with Office 365, where your internal Active Directory domain user objects are synchronized to the cloud. Azure AD has also been extended with premium features, such as multi-factor authentication, security reports, access-control policies, and more. One of the most used features is Single Sign On (SSO) to more than 2,500 cloud applications, such as Dropbox for Business, Office 365, Twitter, Facebook, SalesForce, and more. Azure Rights Management Services (RMS).  By using Azure RMS, you can secure... --- ### Improving Microsoft Azure File Server Performance with BranchCache > Learn how you can improve file server performance in Azure without adding any additional hardware or virtual machines by using Windows BranchCache. - Published: 2015-06-19 - Modified: 2024-09-04 - URL: https://petri.com/improving-microsoft-azure-file-server-performance-with-branchcache/ - Categories: Microsoft Azure - Tags: Azure, BranchCache, Microsoft Azure, Windows Enterprise - Article Type: Overview Learn how you can improve file server performance in Azure without adding any additional hardware or virtual machines by using Windows BranchCache. The market that I work in is very cloud friendly; Irish value added resellers (VARs) operating in the small-to-medium enterprise (SME) market have made Ireland one of the most successful regions for Office 365, and it's no surprise that they and their customers are showing a huge interest in adopting Microsoft Azure. SMEs want rid of what's left of their servers, and oftentimes the remaining machine in the SME space is a file server. Options for Replacing a File Server with a Cloud Solution Can you replace a file server with a cloud option? Yes, you absolutely can, but it's a matter of asking yourself a couple of questions: Is the cloud the best route for you? What's the best option for a cloud solution? The first question is dictated by content in the file server. Several times, I've dealt with queries about engineers that use AutoCAD, which relies on huge files. Because of this, this scenario isn't a great option because storing these files in the cloud often requires expensive appliance solutions.  If you needs are appropriate for the cloud, then you have several different options to consider: Office 365, SharePoint, and OneDrive for Business.  I get consistent feedback that OneDrive for Business is too fragile. I like SharePoint as a means for sharing content, but it requires a lot of user education. ExpressRoute.  You can lift-and-shift a file server to Azure and use ExpressRoute to access the services. With a modern OS, there was quite a bit of re-engineering of SMB and TCP to optimize activities,... --- ### Paul Thurrott's Short Takes: June 19, 2015 > Because it's only 40 days until Microsoft launches Windows 10, this week's other news includes Dell pushing old PCs with a new OS, who won E3, and more. - Published: 2015-06-19 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-19-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because it's only 40 days until Microsoft launches Windows 10, this week's other news includes Dell pushing old PCs with a new OS, who won E3, and more. Because it's only 40 days until Microsoft launches Windows 10, this week's other news includes Dell pushing old PCs with a new OS, my thoughts about who won E3, HoloLens is going to suck and it's not clear why, Nokia is (yes, really) going to re-enter the smart phone market, and the FCC proves that the government can actually work sometimes. Dell first out of the gate with Windows 10 PC preorders Dell, which like HP used to be the world's biggest maker of PCs, has announced that customers interested in pre-ordering its first generation of new Windows 10-based PCs can now do so. Looking at what's available, all I see are fairly uninspiring previous-generation devices, which is sort of disappointing. Dell has some terrific looking new PCs in the pipeline, including a new XPS 15 I am very interested in, but I guess we'll need to wait until later in the year to get them with Windows 10. This will probably be pretty common with the big PC makers. After all, we're running out of time, July 29 is just weeks away, and Windows 10 isn't even ready yet. "Why Apple Should Kill Off the Mac" Put another way, please click on my clickbait headline. So who really won E3? Sony? Or Microsoft? It's time to tackle the truly weighty issue of our day, which is of course which console maker come out on top at E3? We know Nintendo's out of the running, their press... --- ### Create Azure Active Directory Users Using PowerShell > Learn how to create Azure Active Directory users using PowerShell in this how-to article by Aidan Finn. - Published: 2015-06-18 - Modified: 2024-11-19 - URL: https://petri.com/create-azure-active-directory-users-using-powershell/ - Categories: Microsoft Azure - Tags: Azure Active Directory, Editor's Pick, Scripting - Article Type: How To Aidan Finn shows you what you need to know about creating new user accounts in Azure Active Directory and how to give them administrator rights. Although you can use the Azure management portal to create users in Azure Active Directory (AAD), there are times when you just want to create a service account without having to log out and in as that new user to set a password. The good news is that PowerShell allows you to quickly do just that. The bad news is that there is a little bit of setup work required. Creating AD Users Using the GUI It’s pretty easy to create a new user in the management portal: browse into Active Directory, the directory of choice, Users, and then click Add User. That process is pretty simple if you’re setting up access rights to Azure for another user. But what if you want to create lots of users? Using the GUI will be slow. One of the downsides of using the GUI is that the user is created with a temporary password and the user must log in to set a new password. That’s a bit inconvenient if you just want to set up a service account. A new AAD user requires a logon to change their temporary password The answer to these concerns is ... you guessed it ... PowerShell. System Requirements There are a number of requirements that you must put in place in order to be able to create users in Azure Active Directory using PowerShell. Download and install the Microsoft Online Services Sign-In Assistant for IT... --- ### Episode 23 : 06/18/2015 10:15 EDT Guests: Chris Matthieu and Steve Greenberg - Published: 2015-06-18 - Modified: 2015-06-18 - URL: https://petri.com/episode-23-chris-matthieu-and-steve-greenberg/ - Categories: Current Status Unicorn sightings guaranteed during this episode!   Join us to discuss Internet of Things (IOT) with Octoblu co-founder Chris Mattheiu (@chrismatthieu) and Citrix CTP Steve Greenberg (@stevegreenberg).   Imagine where we could take business automation if we can control anything with an IP address through the Internet.   The sky is the limit with IOT Technologies.   Also, learn the benefits and risks that come with this type of new innovation.   --- ### FCC to Fine AT&T $100 Million for Throttling Unlimited Data Users > The Federal Communications Commission announced that it plans to fine A&T Mobile $100 million for misleading its customers on unlimited cellular data plans. - Published: 2015-06-18 - Modified: 2024-09-04 - URL: https://petri.com/fcc-to-fine-att-100-million-for-throttling-unlimited-data-users/ - Categories: Mobile - Tags: News - Article Type: News The Federal Communications Commission announced that it plans to fine A&T Mobile $100 million for misleading its customers on unlimited cellular data plans. Credit: USA Today The Federal Communications Commission announced this week that it plans to fine A&T Mobile $100 million for misleading its customers about supposedly unlimited cellular data plans. "Unlimited means unlimited," the commission says, noting that AT&T was instead silently throttling customers it felt had used too much data. "Consumers deserve to get what they pay for," FCC chairman Tom Wheeler says in a prepared statement. "Broadband providers must be upfront and transparent about the services they provide. The FCC will not stand idly by while consumers are deceived by misleading marketing materials and insufficient disclosure. " According to the FCC, AT&T Wireless began offering unlimited data plans to cellular customers in 2007 but has since discontinued the offering, while allowing existing customers to continue to renew the plans. In 2011, the carrier implemented what it calls a "maximum bit rate" policy that caps the maximum data speeds for unlimited customers after they have used a set amount of data within a billing cycle. "The capped speeds were much slower than the normal network speeds AT&T advertised and significantly impaired the ability of AT&T customers to access the Internet or use data applications for the remainder of the billing cycle," the FCC notes. This practice violates the 2010 Open Internet Transparency Rule because it falsely labels these plans as "unlimited" even though they do in fact impose limits and because AT&T fails to "sufficiently inform customers" of the bandwidth limits it imposes. The... --- ### Using Conditional Breakpoints in PowerShell Scripts > Understand how to use conditional breakpoints in PowerShell to test and debug different scripts and functions. - Published: 2015-06-18 - Modified: 2024-09-04 - URL: https://petri.com/conditional-breakpoints-in-powershell/ - Categories: PowerShell - Tags: Advanced, PowerShell Problem Solver, Scripting - Article Type: How To Understand how to use conditional breakpoints in PowerShell to test and debug different scripts and functions. At Microsoft Ignite I participated in a PowerShell Q&A session, where someone asked how to use conditional breakpoints in PowerShell for a script, so that processing would break only when a condition was met. Usually this sort of thing is done with a variable. For example: if $X is greater than 10, then break. At the time, I couldn't give him the exact steps, because I develop my scripts and tools in such a way that my debugging needs are minimal. But when I got a chance I cracked open PowerShell, so I could explain the process to all of you. You should know that you can work with breakpoints directly in the PowerShell console. You are not limited to the PowerShell ISE. A breakpoint is a user-defined trigger that pauses pipeline processing and drops you into a debug mode. The cmdlet you use to create this breakpoints is Set-PSBreakpoint. As you look at help, you will see there are a few ways to use this cmdlet. We're going to work with variables. The Set-PSBreakpoint cmdlet in Windows PowerShell. (Image Credit: Jeff Hicks) The variable parameter will be the name, without the $. The mode defaults to Write access. PowerShell will trigger the break just before the variable is updated. And finally the action parameter is a scriptblock of PowerShell commands that you want to run when the breakpoint is reached. This is where the conditional magic happens. To demonstrate, let's do a simple test in the... --- ### How to Create a Windows Server 2012 R2 Authentication Policy > Russell Smith shows us how to create a Windows Server 2012 R2 authentication policy to increase security and avoid misuse of your administrator accounts. - Published: 2015-06-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-windows-server-2012-r2-authentication-policy/ - Categories: Active Directory (AD) - Tags: Editor's Pick - Article Type: How To Learn how to create authentication policies and silos using PowerShell in Windows Server 2012 R2 The proliferation and misuse of domain administrator accounts is one of the biggest security risks posed to systems in Windows Active Directory (AD) domains. In this first part of a two-part series, I'll show you how to restrict use of domain admin accounts to domain controllers (DCs) in Windows Server 2012 R2 domains by enabling support for additional Kerberos features. I'll also show you how to create a new authentication policy and silo. Authentication Policies and Silos Authentication policies and silos are a new feature in Windows Server 2012 R2, and in conjunction with claims-based authentication, allows system administrators to restrict the use of domain user, computer, and service accounts in the domain. Accounts assigned domain administrator privileges should always be kept to an absolute minimum, and IT staff should never be assigned domain administrator privileges on a permanent basis. Applying additional controls to restrict where domain administrator accounts can be used, allows organizations to release the accounts when changes need to be applied to domain controllers, with the knowledge that they should be used according to best practice, and specifically preventing their use from devices that are likely to be compromised, such as end user workstations. Before applying any of the restrictive measures described in this article, you'll need to develop a strategy for providing IT staff access to servers, clients and AD without granting them permanent domain administrator privileges. Prerequisites Before you can configure authentication policies and silos in your domain, there are several requirements... --- ### RescueTime Review: Understand Time Spent for Better Productivity > Jeff Hicks provides us with a review of RescueTime, which tracks your time spent on different activities to better understand and improve your productivity. - Published: 2015-06-17 - Modified: 2024-09-04 - URL: https://petri.com/rescuetime-review/ - Categories: Windows Client OS - Tags: Product Review, RescueTime, review - Article Type: Review Jeff Hicks provides us with a review of RescueTime, which tracks your time spent on different activities to better understand and improve your productivity. If you are like me, you probably spend your days working on a number of different tasks. But how much of my day is spent doing things that I should be doing? It can be difficult to keep track, so I was intrigued when I heard about a program called RescueTime that promised to help me better understand where I am spending my day. You can install the application on your computer and mobile devices to monitor how you are spending time. The goal is to rescue time that is being wasted. So I hopped over to RescueTime's website, created an account, and downloaded their free RescueTime Lite. The program runs on any Windows client from XP on. You can also download clients for Linux, Mac OS X 10. 6 or later, and Android 2. 1 or later. There are also extensions for Chrome and Firefox. The RescueTime setup screen. (Image Credit: Jeff Hicks) The installation is pretty standard. The only thing you might need to decide is if you are installing for yourself or if you want the program to autostart. Selecting option to automatically start RescueTime after computer boot. (Image Credit: Jeff Hicks) Upon completion, you will need to enter your email address to activate. Entering email address to activate RescueTime. (Image Credit: Jeff Hicks) After RescueTime is activated, you can check settings. Settings are configured in your browser. You most likely will want to set the... --- ### Nadella Announces Yet Another Microsoft Shake-Up > This week, Microsoft CEO Satya Nadella cleaned house yet again, consolidating business units and jettisoning a number of high-profile executives. - Published: 2015-06-17 - Modified: 2024-09-04 - URL: https://petri.com/nadella-announces-yet-another-microsoft-shake-up/ - Categories: Windows 10 - Tags: News - Article Type: News This week, Microsoft CEO Satya Nadella cleaned house yet again, consolidating business units and jettisoning a number of high-profile executives. Microsoft CEO Satya Nadella has repeatedly delivered on the change he promised to bring to the software giant, and much of that change can be seen in the firm's ever-evolving senior leadership team. This week, Nadella cleaned house again, consolidating business units and jettisoning a number of high-profile executives. "To better align our capabilities and, ultimately, deliver better products and services our customers love at a more rapid pace, I have decided to organize our engineering effort into three groups that work together to deliver on our strategy and ambitions," Mr. Nadella wrote in an email message to employees that the firm has made public. "The changes take effect today. " Those three groups are the Windows and Devices Group (WDG), which combines previously-separate Windows OS and mobile device efforts; the Cloud and Enterprise (C+E) group, which combines on-prem and cloud-based enterprise efforts with Dynamics ERP and CRM; and the Applications and Services Group (ASG), which is focused on reinventing productivity and is picking up the firm's education efforts as well. In each case, businesses are being merged together under a single leader, meaning that some executives are leaving the company or being shifted under new leadership. WDG will be led by Terry Myerson, who has been overseeing Microsoft's Windows 10 efforts. But that means that Stephen Elop, who previous oversaw the now-defunct Microsoft Devices Group (MDG), is out. "Stephen and I have agreed that now is the right time for him to retire from Microsoft," Nadella explained. "I regret the... --- ### PowerShell Remoting Tip: Setting a Network Category to Private > Jeff Hicks teaches us a PowerShell remoting tip by showing us how to set a network category to private. - Published: 2015-06-16 - Modified: 2024-09-04 - URL: https://petri.com/powershell-remoting-tip-setting-a-network-category-to-private/ - Categories: PowerShell - Tags: Get-NetIPAddress, Intermediate - Article Type: How To Jeff Hicks teaches us a PowerShell remoting tip by showing us how to set a network category to private. PowerShell remoting is a great thing once you get it working. You get full access to the CIM cmdlets, you can establish in interactive SSH-like session with a remote server, or you can run a command on 1 or 100 servers. However, the remoting pieces such as the WinRM protocol may not work if Windows detects that you are on a public network. This was a problem in the PowerShell 2. 0 days, but now remoting is a bit more forgiving. That said, I still run into problems and you might as well. In my case, my primary computer belongs to a workgroup, yet all of the computers I want to connect to are in a domain. Authentication issues aside, when I am in my home office everything works because my computer recognizes my IP address and configures my network connection accordingly to a private network. This also affects firewall profiles. When I am traveling, however, I may pick up a different IP address and run into connection issues. I've also run into similar issues testing new computers in my network. Windows decides the computer is on a public network, so much of my remote access is restricted. So my solution is to run a PowerShell script that automatically sets the network category to private if a local IP address is detected. Let me walk you through the manual process. First I need to find my current IPv4 address. I am running Windows 8. 1. ​ [caption align="aligncenter"... --- ### Microsoft to Automatically Encrypt Bing Search Traffic > Microsoft announced this week that it will automatically encrypt all Bing search traffic by default starting "this summer." - Published: 2015-06-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-encrypt-bing-search-traffic/ - Categories: Security - Tags: Bing, News - Article Type: News Microsoft announced this week that it will automatically encrypt all Bing search traffic by default starting "this summer." Microsoft announced this week that it will encrypt all Bing search traffic by default starting "this summer. " Previously, the software giant allowed users to opt-in to this functionality manually, but with this shift, it will do so automatically for all users. "We're committed to helping users keep their data safe and secure," Bing senior product manager Duane Forrester writes in a post to the Bing Blogs. "Beginning this summer, we will begin the process of encrypting search traffic by default. " Forrester noes that the changes will impact marketers and webmasters for a variety of reasons, but says that providing a more secure search experience for users is more important. You can expect the following changes. First, traffic originating from Bing will increasingly come from the encrypted URL https://www. bing. com instead of http://www. bing. com. This will help prevent snooping—malicious or otherwise—and lock down users' search queries. Second, in order to protect user's privacy, marketers and webmasters will no longer be provided with the exact search string used. But Bing will continue to pass along a referrer string so that these entities will be able to identify when traffic comes from Bing. Third, Microsoft will provide "some limited query term data" that doesn't compromise user security. This includes a Search Query Terms Report that identifies which search queries triggered ads as well as associated performance metrics such as clicks, impressions and conversions; enhanced reporting of metrics such as bounce rates, duration per visit, pages per visit and... --- ### PowerShell Import-CSV Cmdlet: Parse a Comma-Delimited CSV Text File > Learn how to easily parse a comma-delimited CSV text file with the PowerShell Import-CSV cmdlet. - Published: 2015-06-16 - Modified: 2024-09-04 - URL: https://petri.com/powershell-import-csv-cmdlet-parse-comma-delimited-csv-text-file/ - Categories: PowerShell - Tags: Get-Content, Import-CSV, Scripting - Article Type: How To Learn how to easily parse a comma-delimited CSV text file with the PowerShell Import-CSV cmdlet. In this Ask the Admin, I'll show you how to go beyond what is capable with the get-content cmdlet and parse a comma-delimited text file. PowerShell has two cmdlets that read and parse text files that are commonly encountered by IT professionals, such as logs that need to be analyzed or files that are used as part of automated processes, such as spreadsheets with a list of computer names and IP addresses. PowerShell's get-content cmdlet can read and extract information from simple files where there is only one piece of information per line. For more on how to use get-content, see How to Copy Files to Multiple Computers by Reading Simple Text Input Using PowerShell on Petri. Comma-Delimited Text Files The following is an example of a typical comma-delimited text file (. csv) file. You'll notice at the top that there are headings for each column: Computername, IPaddress, Office, and Owner. The PowerShell import-csv cmdlet understands this default format and expects to see the column headers before parsing the main data. ​ Computername,IPaddress,Office,Owner computer1,192. 168. 0. 1,London,JoeSmith computer2,192. 168. 0. 2,London,BobJones computer3,192. 168. 0. 3,London,JohnSutton computer4,192. 168. 0. 4,London,DavidSouth computer5,192. 168. 0. 5,London,RussellSmith computer6,192. 168. 0. 6,London,RussellSmith Using PowerShell's import-csv cmdlet Import-csv can read the text file and display the data in the console as shown below. The file extension can be . csv or . txt. ​import-csv “c:tempcomputers. csv” Using Windows PowerShell import-csv to parse a comma-delimited text file (Image: Russell Smith) Just like other PowerShell cmdlets, you can filter and sort information. The following command shows all computers owned by Russell Smith. ​import-csv “c:tempcomputers. csv”| where-object {$_. owner... --- ### How to Learn PowerShell > Jeff Hicks serves us some practical advice and tips on how to learn PowerShell with ease. - Published: 2015-06-15 - Modified: 2024-11-19 - URL: https://petri.com/learn-powershell/ - Categories: PowerShell - Tags: Beginner, Get-Help, Get-Member, Get-Process, get-service - Article Type: How To Jeff Hicks serves us some practical advice and tips on how to learn PowerShell with ease. As I talk with people at conferences or interact with them online, there's a recurring theme that PowerShell is recognized as something to learn. With that said, many admit that they don't know how to learn PowerShell, where they are often overwhelmed by the large number of commands or feel it is too complicated. I can help with the first item and the rest are easier than you might think. If you don't know where to start, visit the Essentials PowerShell Resources page on my blog. But let's talk about how you can actually learn PowerShell. Understand the Principals of PowerShell PowerShell is easier to learn than I think most people realize. I feel many IT pros have a lot of preconceptions about PowerShell or think it is all about scripting, which they view as some form of arcane sorcery. It's not. PowerShell is a mechanism for working with the things you want to manage. Don't focus on how to manipulate the output. Imagine working with "things" as physical objects in a virtual space that we call the pipeline. The "things" are reflected by the verb-noun naming convention of PowerShell commands, such as file, service, eventlog, or SMBShare. Granted, some of the nouns can get complicated or include a prefix, like ADUser, but you still can understand it is a user object. PowerShell makes it easy to get these things and do something with them by passing these things from one command to another. You can think of it like a virtual assembly... --- ### BlackBerry's Rumored Android Pivot Might Really Be About Exiting the Hardware Business > Assessing Blackberry's rumored move to Android, it's obvious that in doing so, Blackberry is really signaling its intent to exit the hardware business. - Published: 2015-06-15 - Modified: 2024-09-04 - URL: https://petri.com/blackberrys-rumored-android-pivot-might-really-be-about-exiting-the-hardware-business/ - Categories: Mobile - Tags: BlackBerry, News - Article Type: Opinion Assessing Blackberry's rumored move to Android, it's obvious that in doing so, Blackberry is really signaling its intent to exit the hardware business. Assessing Blackberry's rumored move to Android, it's impossible to escape the obvious conclusion: in doing so, Blackberry is really signaling its intent to halt its money-losing device hardware business in order to focus on software and services. And there are some interesting parallels to be seen between this strategy and what Microsoft is doing. Microsoft, of course, isn't quite ready to abandon smart phone hardware. After all, it purchased Nokia's hardware and services businesses a bit over a year ago for a stunning $7. 2 billion. But like Blackberry, Microsoft has hitched its mobile fortunes to software and services, and for the most part, those offerings will be used more on platforms they don't own or control. That is, Microsoft would prefer for its mobile platforms to be successful, but it is ready in the event that it doesn't happen. Blackberry's apparent embrace of Android could accomplish the same. Like Microsoft, Blackberry tried starting over with a new mobile platform when its initial platform stumbled in the face of iPhone and then Android. In 2010, the firm purchased QNX, a widely-respected maker of a real-time OS for embedded and mobile devices. Its first QNX-based system appeared in the Blackberry PlayBook, a full-sized tablet that flopped. The firm then adapted the system, now called Blackberry 10, for phones, but the resulting handsets have also flopped, forcing Blackberry to issue a string of new handsets based on the older BlackBerry OS. Blackberry says it remains "committed" to Blackberry 10, but... --- ### More Complaining I’m Tired of Hearing: About PowerShell Remoting > Jeff Hicks shares his thoughts about complaints and excuses regarding PowerShell remoting. - Published: 2015-06-15 - Modified: 2015-06-15 - URL: https://petri.com/about-powershell-remoting/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, PowerShell Remoting, SSH - Article Type: Opinion In this opinion post, Jeff Hicks explains why no one should be complaining about the lack of SSH in Windows PowerShell. These days I'm beginning to feel like venerable curmudgeon Andy Rooney. Many of you probably have no idea who that is. Ask your parents. I guess I've been in IT long enough that I'm losing patience with a lot of what I consider nonsense, or to borrow a phrase from my pal Will Shakespeare, "much ado about nothing. " My cranky rant today is in some ways a continuation of a previous article I wrote about the benefits or necessity of managing servers with PowerShell instead of a full GUI. If you really want to get me started, then lament the fact that Windows 10 still doesn't have secure shell (SSH) or some variation on that theme. Barnacles. When I hear this, all I can think is that the person making the statement is either merely trying to be contrary or is already pre-disposed to be anti-Microsoft or anti-Windows, and they are simply looking for an excuse. True, Windows does not ship out of the box with SSH as most people would define the technology. But to borrow a phrase, "SSH! We don't need no stinking SSH," we don't need an SSH implementation because Microsoft ships PowerShell out of the box, and its remoting feature is the new SSH as far as I am concerned. What's so Special about SSH? At its core, SSH is a mechanism where you can establish a secure, interactive console session on a remote computer. That is exactly what PowerShell remoting is all... --- ### Sharing Files in the Cloud using Azure Files > Learn how to quickly create and connect to Azure Files SMB shares all in one place using PowerShell. - Published: 2015-06-12 - Modified: 2024-09-04 - URL: https://petri.com/sharing-files-in-the-cloud-using-azure-files/ - Categories: Microsoft Azure - Tags: Editor's Pick, File Server - Article Type: How To Learn how to quickly create and connect to Azure Files SMB shares all in one place using PowerShell. In this Ask the Admin, I'll show you how to work with Azure Files, a feature that's enabled for all new Azure storage accounts, so that you can easily share files between virtual machines (VMs), or between VMs in the cloud and local devices on your on premise network. This isn't the first time I've written about Azure Files on the Petri IT Knowledgebase, a service that's still in preview that unlike Azure blob storage, provides access to files using SMB file sharing. As I looked over the original article, Create and Configure a File Share using Azure Files, I was mulling over why I hadn't used Azure Files in the year since the article was published, and I came to the conclusion that although I could have frequently benefited from transferring files using SMB, Azure Files is not only too difficult to set up each time, but it's also too difficult to remember how to use it. And the key reason is the need to use more than one tool to create and connect to file shares, and a lack of visibility into existing shares, which can only be viewed using the new Azure management portal, which I avoid because to be quite frank, it sucks badly. Writing information about the file share to the PowerShell console (Image Credit: Russell Smith) When I say more than one tool is required, by that I mean in the original instructions I'd devised, it was necessary... --- ### Optimizing PowerShell Scheduled Jobs > PowerShell MVP Jeff Hicks teaches us tips and tricks for optimizing PowerShell Scheduled Jobs. - Published: 2015-06-12 - Modified: 2024-09-04 - URL: https://petri.com/optimizing-powershell-scheduled-jobs/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To Get more out of your PowerShell scheduled jobs with these helpful optimization tips. In the first part of this series I demonstrated how to create a simple PowerShell scheduled job, where you can take your existing PowerShell scripts and easily run them as scheduled tasks. Today, I want to give you a little more information on what's happening behind the scenes. Here are the scheduled jobs that I've set up. The get-scheduledjob cmdlet in Windows PowerShell. (Image Credit: Jeff Hicks) In my previous article, I set up the first job. Let's look at it from PowerShell's perspective in more detail. The scheduled job execution details in Windows PowerShell. (Image Credit: Jeff Hicks) I've highlighted the execution details. The scheduled task is launching PowerShell. exe and running a complicated command. You can see the same thing in the Task Scheduler. Task Scheduler. (Image Credit: Jeff Hicks) Here's how the magic happens. When you create a PowerShell scheduled job, it has to be persisted to disk so that the Task Scheduler knows what to execute. The files for each job are stored under $env:LocalAppDataMicrosoftWindowsPowerShellScheduledJobs. The file path for stored scheduled jobs. (Image Credit: Jeff Hicks) There is a directory for each scheduled job. Within each directory is an XML file with the job definition and the results. Within each directory for a scheduled job, there's an associated XML file. (Image Credit: Jeff Hicks) Don't bother trying to parse the XML file. You can... --- ### Paul Thurrott's Short Takes: June 12, 2015 > Because only Snoop Dog could put the Twizzle back in Twitter, this week's other news includes Microsoft abandoning a Nokia smart watch design and much more. - Published: 2015-06-12 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-12-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion Because only Snoop Dog could put the Twizzle back in Twitter, this week's other news includes Microsoft abandoning a Nokia smart watch design and much more. Photo by Juan Ocampo Because only Snoop Dog could put the Twizzle back in Twitter, this week's other news includes Microsoft abandoning a Nokia smart watch design, a Microsoft/Facebook alliance on virtual reality, Nokia Theater is renamed, Blackberry may be considering Android, Twitter's CEO steps down, Twitter kills the 140-character limit (sort of), and the French take the initiative for once. Microsoft killed a Nokia smart watch that looks surprisingly interesting Nokia was working on a smart watch project, codenamed "Moonraker," that Microsoft killed off when it purchased that firm's devices and services businesses. Why? Because it was already racing forward with its own Microsoft Band wearable and didn't want to confuse the market with two non-Windows wearables at a time when it was preaching the "One Windows" vision. You could have seen the watch designs on a Tumblr blog by an ex-Microsoftie, but shocker, it's been taken down. So here's a picture. And yes, I too am wondering why they didn't run with something like this: it's very clear that the live tiles we see in Windows Phone and Windows 8+ would make for excellent watch face-sized user experiences. And some of this looks a lot like the Band UI too. "My Impressions of Continuum for Windows 10 Phones" He says in a Rich Little voice. Microsoft teams with Facebook for VR push On Thursday, Facebook announced the shipping version of its Oculus Rift virtual reality headset, which will ship early next... --- ### Network Traffic Management Using DNS Policies in Windows Server 2016 > Learn how to implement network traffic management using DNS Policies in Windows Server 2016 Technical Preview 2. - Published: 2015-06-11 - Modified: 2024-09-04 - URL: https://petri.com/network-traffic-management-using-dns-policies-in-windows-server-2016/ - Categories: Windows Server 2016 - Tags: DNS, DNS Policies, Editor's Pick, Microsoft Ignite, Microsoft Ignite 2015 - Article Type: How To Learn how to implement network traffic management using DNS Policies in Windows Server 2016 Technical Preview 2. In today's Ask the Admin, I'll run over the new DNS Policies feature in the Windows Server 2016 Technical Preview that was released at Microsoft's Ignite 2015 conference in May. New in Windows Server 2016 Technical Preview 2, DNS Policies allow system administrators to create rules that determine how DNS servers respond to client queries based on several different factors, including the client's location, time of day, and transport protocol. This enables new traffic management scenarios, such as redirecting users to specific servers based on location, a new way to implement split-brain DNS, and blocking malicious domains or ensuring clients can only resolve specific names. DNS Client Subnets and Zone Scopes Before DNS Policies can be applied, it's necessary to define DNS client subnets and zone scopes. DNS client subnets define IPv4 or IPv6 address ranges from which DNS server queries might be received. Bear in mind that authoritative DNS servers usually receive queries not directly from clients, but from a DNS server hosted by the client’s Internet service provider (ISP). Nevertheless, ISP DNS servers are usually located geographically close to the clients they serve, so it's reasonable to expect that the IP address of the ISP's DNS server gives a fair approximation of the location of the client that originated the query. Zone scopes divide DNS zones so that tailored responses can be returned depending on criteria set in DNS policy. Each zone contains a different set of records so that depending on the DNS policy applied... --- ### Using the Microsoft Azure Storage Explorer Tools > Learn about different third-party tools and solutions for better use with your Microsoft Azure storage account. - Published: 2015-06-11 - Modified: 2024-09-04 - URL: https://petri.com/using-the-microsoft-azure-storage-explorer-tools/ - Categories: Microsoft Azure - Tags: Cloud, Editor's Pick, storage, virtual machines - Article Type: Overview Learn about different third-party tools and solutions for better use with your Microsoft Azure storage account. In a previous post focused on how to upload files to Microsoft Azure, I showed you how to use PowerShell to upload files to an Azure storage account. In this post, I'll show you different third-party tools that you can use for your storage account needs. Secure Remote Access with Azure Azure newbies might be concerned to know that Azure provides remote storage access. It's important to keep in mind that Microsoft has secured that access using industry standard protocols. On April 20, 2015, Microsoft discontinued support for remote storage access for SSL 3. 0, requiring you to use TLS 1. 0 or higher. You need the following to remotely access a storage account: The storage account name or URL An access key that's managed by Azure You can find these by browsing to the storage account's dashboard and clicking Manage Access Keys: Managing Azure storage account access keys (Image Credit: Aidan Finn) You normally will use the primary access key. If you need or want to change access keys, then instruct everyone to switch to the secondary access key. Wait until everyone has switched, and then change the primary access key. Instruct everyone to use the new primary access key, wait, and then you can change they secondary access key. Azure Storage Explorers I like PowerShell because it lets me automate tasks and reach parts of functionality that have not or cannot be surfaced using a GUI. But there are times when you just need a graphical view... --- ### Amazon, Apple Face New Antitrust Investigations > Success has its downsides: both Amazon.com and Apple are now facing antitrust inquiries related to their domination of digital content markets. - Published: 2015-06-11 - Modified: 2024-11-19 - URL: https://petri.com/amazon-apple-face-new-antitrust-investigations/ - Categories: Cloud Computing - Tags: Amazon, Apple, News - Article Type: News Success has its downsides: both Amazon.com and Apple are now facing antitrust inquiries related to their domination of digital content markets. Success has its downsides: both Amazon. com and Apple are now facing antitrust inquiries related to their domination of digital content markets. Amazon is facing a formal investigation into its e-book distribution agreements by EU antitrust regulators. And Apple has run afoul of two US states which believe the firm has bullied record labels into harming streaming music competitors. Both cases—and several related investigations to the business practices search giant Google—speak to the rapidly-shifting dynamic in personal computing, which has moved from desktop-bound PCs in the era in which Microsoft dominated to today's market, which is defined by ever-more-mobile devices and cloud services. But the language in both of these new cases will be familiar to anyone steeped in the lore of Microsoft's epic antitrust trials: both firms stand accused of abusing their market dominance. And in doing so, they harm competitors and consumers, yes, but also their own partners. This morning, the European Commission announced that it was formally investigating Amazon. com's business practices. "The Commission will investigate certain clauses included in Amazon's contracts with publishers," an official EC statement reads. "These clauses require publishers to inform Amazon about more favorable or alternative terms offered to Amazon’s competitors and/or offer Amazon similar terms and conditions than to its competitors, or through other means ensure that Amazon is offered terms at least as good as those for its competitors. " This is a classic antitrust complaint: Amazon, which dominates the market for e-books, could be artificially extending its dominance by... --- ### Easier Azure VM Deployment with the Custom Script Extension > Make Azure VM deployment easier with a scripted configuration option called the Custom Script extension in Azure. - Published: 2015-06-10 - Modified: 2024-09-04 - URL: https://petri.com/scripted-customization-azure-vm-deployment/ - Categories: Microsoft Azure - Tags: Scripting, virtual machines - Article Type: How To Aidan Finn shows us how to customize the deployment of virtual machines using the Azure Custom Script extension. Microsoft provides us with several different virtual machine templates that lets us quickly deploy virtual machines in Azure. However, it's rare that you need a standard virtual machine; maybe you need some roles or features added, install some software, or force some other kind of change. If you can script what you need, then the good news is that you can make it happen thanks to the Custom Script extension. An Overview of the Custom Script Extension One of the options when you deploy a new Azure virtual machine is to install extensions. One of these extensions is called the Custom Script extension. As Microsoft explains, this extension can load a script into a virtual machine and execute it for you using system privileges after the virtual machine has been deployed. This means that if you can script a change by using PowerShell, then you can automate that change automatically after the virtual machine has been deployed by using the Custom Script extension. Preparing Deployment The first step is to write a script that will make the required change. Author your script and save it somewhere safe. If this is a one-off script, then you can keep it on your PC. If you are going to reuse the script, then upload it to a storage account in Azure. In my example, I have uploaded a script to a container called scripts in a storage account named petridemo. Verifying that the file was uploaded to the Azure Storage Account (Image credit: Aidan Finn)... --- ### Wormhole Area Networking and Microsoft Azure > Aidan Finn describes how to move legacy services such as file servers and LOB apps with thick clients to Azure using a a new networking technology. - Published: 2015-06-10 - Modified: 2024-09-04 - URL: https://petri.com/wormhole-area-networking-and-microsoft-azure/ - Categories: Microsoft Azure - Tags: Editor's Pick, geek humor - Article Type: Opinion Aidan Finn describes how to move legacy services such as file servers and LOB apps with thick clients to Azure using a a new networking technology. I'm having lots of conversations with people about deploying services in Azure, normally running in virtual machines. Most of the time, people are thinking about moving legacy services, such as line-of-business (LOB) apps with thick clients or things like file servers into Azure. But these people usually forget something important: the laws of physics and their impact on user experience when accessing remote services. Latency, Not Bandwidth Almost everyone focuses on bandwidth when they talk about deploying services in Azure. Yes, bandwidth is very important, but few ever think about the impact of latency on the experience of using those services. Imagine this scenario: A company moves file services from their LAN to a virtual machine running in Azure. They have a nice 50 Mbps connection to Azure; that should work pretty well. However, users complain that accessing file shares is slow. The response: ADD MORE BANDWIDTH! The company has made it possible for more users to have the same rubbish experience. A file servers is a legacy application; it is very chatty and assumes that the client and server are connected by a low-latency network (a LAN). On a local area network (LAN), you have near zero latency -- PING normally measures it under one millisecond in a healthy network. That means that every request, response and acknowledgement travels between the client and server in under one millisecond. Even a small data transfer, such as browsing a shared folder in File Explorer is made up of lots of these... --- ### No Back Doors: Microsoft Opens Windows Source Code to EU Governments > Microsoft this past week opened a Transparency Center in Brussels and invited EU governments to analyze the source code to Windows and other products. - Published: 2015-06-10 - Modified: 2024-11-19 - URL: https://petri.com/no-back-doors-microsoft-opens-windows-source-code-to-eu-governments/ - Categories: Security - Tags: News - Article Type: News Microsoft this past week opened a Transparency Center in Brussels and invited EU governments to analyze the source code to Windows and other products. Responding to years-old complaints that its Windows operating systems may include secret "backdoors," Microsoft this past week opened a Transparency Center in Brussels and invited EU governments to analyze its source code. The aim is simple: Establish that such rumors are wrong and lets governments confirm the safety and security of Windows and other Microsoft products. "We hope that this facility will help us build trust in the online world," Microsoft vice president of security Matt Thomlinson says. "In addition to the opportunity to review source code at our Transparency Centers, the program allows participants to access important technical documentation about our products and services, as well as cybersecurity threat and vulnerability information. " The new center is already popular, with 42 law enforcement agencies from 23 countries participating in Microsoft's Government Security Program. And the EU Transparency Center is the second such Microsoft facility: the software giant opened its first Transparency Center in its home town of Redmond, Washington last year. And it plans future sites in South America and Asia too. But with increasing fear, uncertainty and doubt—FUD—being spread about software systems in the wake of the Edward Snowden revelations, attention has turned, as it does cyclically, to persistent rumors that Microsoft is secretly working with the US government to create backdoors in Windows and other systems so that they can aid in law enforcement requests, bypassing encryption and performing other dastardly deeds. The latest round of stupidity comes courtesy of an... --- ### How To Upload Files to Microsoft Azure > Learn quick and easy steps on how to upload files to Microsoft Azure. - Published: 2015-06-09 - Modified: 2024-09-04 - URL: https://petri.com/how-to-upload-files-to-microsoft-azure/ - Categories: Microsoft Azure - Tags: Azure Storage, Container, Files, Set-AzureStorageBlobContent, Storage Account - Article Type: How To Aidan Finn shows us some easy steps for uploading files to your Microsoft Azure storage account. In this post I will show you how to upload files to an Azure storage account. This can be useful if you want to perform an offline upload of virtual hard disks, tools, or scripts. Prepare the Storage Account A file must be uploaded into a container in a storage account. Containers are like folders; a logical mechanism for organizing files in Azure. In my example, I want to upload a PowerShell script to Azure, so I will create a container called scripts. You can do this in two ways, the GUI or PowerShell. In the management portal, browse into your storage account, click Containers, and click Add. Name the container, set the access level and close the wizard. Note that the name must be in lowercase. Create a new Azure storage account container (Image Credit: Aidan Finn) In case you are curious, the access option controls if and how the public can access the contents of your container: Control access to an Azure storage account container (Image Credit: Aidan Finn) Alternatively, you can create a new container using PowerShell. Note that before we go anywhere, we must set a default storage account for use with PowerShell. This is a little annoying; you cannot specify a storage account in each storage cmdlet. Instead you have to change the default storage account each time. The syntax for setting a default storage account is: Set-AzureSubscription –SubscrptionName --- ### Identifying Website Visitor IP Addresses Using PowerShell > Learn how to identify a website visitor's IP addresses with PowerShell. - Published: 2015-06-09 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver/ - Categories: PowerShell - Tags: Advanced, Get-MyWhoIs, Invoke-RestMethod, PowerShell Problem Solver, Scripting - Article Type: How To Learn how to identify a swath of website visitors' IP addresses with some help from PowerShell in this article by Jeff Hicks. Today's PowerShell Problem Solver focuses on a problem of my own. As you might imagine, running a blog is a time-consuming task, where I frequently run into performance or security problems that often leads me to downloading raw log files. Although processing this data can be tedious, PowerShell can help. One task I wanted is perform is to identify a website visitor's IP address with the information I've obtained from my raw log files. This can easily done with PowerShell by accessing WhoIs information, which I'll show you how to do in this article. Although there are several websites that provide IP address information, I wasn't about to manually copy and paste hundreds of IP addresses to get the information I needed. After a little research, I found a freely available web service that returns WhoIs information. These types of web services are intended for other websites and applications to consume, but you can just as easily use them in PowerShell. The arin. net website offers a number of free services. You have to take the time to read how to use them and figure out how to translate what you read into a PowerShell command. There's no magic conversion, but hopefully with experience and examples like what I have for you today, this will become easier. The service is exposed as a REST API. If you can find a service that uses the REST API, then you can use the Invoke-RestMethod cmdlet. That's what we're going to do here. The... --- ### Apple Aims Directly at Android with New Announcements > At its Worldwide Developer Conference on Monday, Apple announced a series of product updates and initiatives aimed at displacing the Android market leader. - Published: 2015-06-09 - Modified: 2024-09-04 - URL: https://petri.com/apple-aims-directly-at-android-with-new-announcements/ - Categories: Mobile - Tags: Apple, Apple Pay, Apple Watch, iOS, iPad, iPhone, Macintosh, News - Article Type: News At its Worldwide Developer Conference on Monday, Apple announced a series of product updates and initiatives aimed at displacing the Android market leader. Faced with sharply falling mobile device market share, Apple this week announced a series of product updates and new initiatives aimed at displacing the Android market leader. The announcements came during the firm's Worldwide Developer Conference (WWDC) keynote address on Monday, though the intended audience was really consumers considering a mobile platform shift. Declaring that WWDC was "the epicenter of change for the industry," Apple CEO Tim Cook then went on to skip over a segment of the keynote address that's never been skipped before: a summary of Apple's domination of the markets in which it competes. "Everything's going great," he said, to laughter, given the firm's heady revenues and margins. But the curious omission comes at time of some uncertainty despite the iPhone's incredible sales growth. The iPad, once seen as a key part of the company's growth and an industry "game changer," has in fact seen falling sales for six straight quarters. Apple Watch, while warmly received by the firm's biggest fans, is overly complex and expensive, and is now not seen as a major new business. And even the iPhone continues to lose market share, due to the diversity of the Android ecosystem and an expansion of low-cost devices. As a result, many of the WWDC keynote announcements were aimed at reversing these trends by adding Android-like features to iPhone and iPad, positing the iPad as a more suitable business tool, and making the Apple Watch more of a standalone device that doesn't rely... --- ### What is the Windows Server Network Controller? > Learn about Microsoft's new Windows Server Network Controller, which is a new cloud fabric management solution in Windows Server 2016. - Published: 2015-06-08 - Modified: 2024-09-04 - URL: https://petri.com/what-is-the-windows-server-network-controller/ - Categories: Windows Server 2016 - Tags: Hyper-V Network Virtualization, Network Controller, Network virtualization, networking, NVGRE, VXLAN, Windows Server Network Controller - Article Type: Overview Learn about Windows Server Network Controller, which is a new cloud fabric management solution in Windows Server 2016. Another day, another element of Microsoft Azure makes it way to Windows Server. The latest introduction into Windows Server 2016 is the Windows Server Network Controller, a feature of the next generation Microsoft cloud that will manage networks in a large Hyper-V deployment. What is Windows Server Network Controller? Network controller is a concept from the Azure fabric; it is a centrally located and programmable point of automation and orchestration for deploying, managing, configuring, and troubleshooting both the physical and virtual networks of a private r hosted cloud deployment. Managing physical and virtual networks with a network controller (Image Credit: Microsoft) Network Controller serves as a critical element of any cloud, so it's been designed to be scalable and fault tolerant. There are two APIs, referred to as Northbound and Southbound: Southbound API: This is used by Network Controller to communicate with network devices, services, and other elements of the cloud. Northbound API: This is the API that's used to manage the network via Network Controller. You can use PowerShell, REST API, or a management solution.  It appears that System Center 2016 Virtual Machine Manager (SCVMM 2016) and System Center 2016 Operations Manager (SCOM 2016) will be the graphical UI for Network Controller. What can be managed using Network Controller? You can manage the following pieces of physical and virtual networks in a cloud: Hyper-V virtual machine connections (the ports in a virtual switch) Virtual switches Physical network routers Firewall software VPN gateways, including RRAS Load balancers [adkit zone="freestyle"... --- ### Free Tools for Importing Email to Office 365 > Learn about free tools for importing email to Office 365, including tools for Exchange Online batch migrations and more. - Published: 2015-06-08 - Modified: 2024-09-04 - URL: https://petri.com/free-tools-for-importing-email-to-office-365/ - Categories: Microsoft 365 - Tags: CodeTwo, Editor's Pick, email migration, Exchange Online, Mimecast, Outlook 2013 - Article Type: Overview Russell Smith shows us several different free tools to make importing email to Office 365 easier. In this Ask the Admin, I'll look at the different options for importing organizational email into Office 365, including large user archives. There are several different options for migrating email to Office 365, including third-party solutions from the likes of CodeTwo and Mimecast, but in this article I want to outline the free tools available from Microsoft. Whether you have just a handful of mailboxes to migrate, or hundreds of users with terabytes of locally archived mail, there's a solution for you. Outlook. com Connected Accounts Both Office 365 and standard Microsoft accounts can be configured to use Connected Accounts via Outlook. com. This works using Post Office Protocol (POP), so the account you want to connect to Outlook. com must have POP enabled. To add a Connected Account, all you need to do is supply the email address and password for the account you want to connect.  Once a connection has been established, you'll see emails from the connected account appear in your Outlook. com inbox. Up to five Connected Accounts can be added. Outlook. com Connected Accounts (Image Credit: Russell Smith) To set up a new Connected Account, log in to Outlook. com using your Microsoft account or Office 365 user account, and follow the instructions below: In Outlook. com, click on the settings icon in the top-right corner and select Options from the menu. On the Mail options screen, click Connected accounts on the left under Mail > Accounts. On the Connect accounts screen, click the add icon. In... --- ### Is It OK for Microsoft to Push the Windows 10 Upgrade on Users? > In Microsoft's mad quest to push over a billion people to Windows 10 as quickly as possible, has the software giant gone too far? - Published: 2015-06-08 - Modified: 2024-09-04 - URL: https://petri.com/is-it-ok-for-microsoft-to-push-the-windows-10-upgrade-on-users/ - Categories: Windows 10 - Tags: News - Article Type: Opinion In Microsoft's mad quest to push over a billion people to Windows 10 as quickly as possible, has the software giant gone too far? Last week, Windows 7 and Windows 8. 1 users began noticing a little Windows flag icon in their system tray, advertising the coming free upgrade to Windows 10. But as many are noticing, this advertisement is unsolicited and cannot be rejected or even turned off unless you really know what you're doing. In Microsoft's mad quest to push over a billion people to Windows 10 as quickly as possible, has the software giant gone too far? The answer, clearly, is yes. And it doesn't have to be this way. A few months back, Microsoft began shipping a set of Windows Updates to Windows 7 and 8. 1 users that, at the time, had very vague descriptions. KB3035583, for example, "enables additional capabilities for Windows Update notifications in Windows 8. 1 and Windows 7 SP1. " And KB2976978 "ensures compatibility for customers who are seeking to install the latest Windows operating system. " A few things have happened since those updates were slipped into the Windows Update vortex. First, they've both been changed from "optional" updates to "important" updates, meaning that the vast majority of PCs out there will silently install them in the background without users' knowledge. And second, we now know more about these updates. KB3035583 is the update that triggers the "Get Windows 10" advertisement notification in the system tray. It exhorts you to "reserve" your copy of Windows 10 ahead of the July 29 launch date, but offers no way to tell Microsoft you don't want this upgrade offer,... --- ### Episode 22 - June 6th - 10:15 EDT Guest: Jeff Guillet – Microsoft Exchange MVP - Published: 2015-06-06 - Modified: 2015-06-06 - URL: https://petri.com/episode-22-jeff-guillet-microsoft-exchange-mvp/ - Categories: Current Status Hi Ho, Hi Ho, it’s to the cloud we go!   Join us to discuss Office 365 Identity Management with Microsoft Exchange MVP Jeff Guillet (@expta).   Learn why identity management is important to the user experience when the data they are accessing is no longer on premise. Also which features and tools can help get your started with your own Office 365 identity projects. --- ### How to Create and Validate a Microsoft Azure Active Directory Domain > Aidan Finn shows us how to create and validate a Microsoft Azure Active Directory Domain. - Published: 2015-06-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-and-validate-a-microsoft-azure-active-directory-domain/ - Categories: Microsoft Azure - Tags: Azure Active Directory, DNS, Domain, Editor's Pick - Article Type: How To Aidan Finn provides step-by-step instructions for adding a custom DNS domain to Azure Active Directory to match your on-premises domain name. I’m by no means an expert on Azure Active Directory (AAD), but I thought I would share the little I know because I am aware that confusion about AAD is causing issue with the deployment of other components of Azure IaaS. AAD was something that I ignored until recently, but more and more, AAD is becoming central to Microsoft’s hybrid cloud IaaS solutions: RemoteApp uses AAD for user authentication Possible single sign-on integration with other Microsoft cloud services such as Office 365 Windows 10 devices can register with AAD You can enable single-sign on with over 2700 third party cloud services, including Salesforce, Amazon, and Google! In this post, I’m going to show you how to set up the pre-requisite for linking AAD with your legacy on-premises Active Directory domain: creating and validating your domain in Azure. The Default Directory When you set up your Azure subscription, a default directory will be created. This is where your Azure subscription will create and use accounts by default. The default directory will pull its default domain name from your subscription. For example, if my subscription was “joeelway” then my default domain would be joeelway. onmicrosoft. com, and if I created a user called User1 then that user’s UPN (logon name) would be user1@joeelway. onmicrosoft. com. Let’s assume that I create an on-premises domain called joeelway. com.   There are two issues that could possibly arise: Confusion: User1 is used to signing in as user1@joeelway. com. They’d be confused if I told them that sometimes they would... --- ### Use PowerShell to Copy Files to Multiple Locations > Learn how to use PowerShell to copy files to multiple locations in this tutorial by Jeff Hicks. - Published: 2015-06-05 - Modified: 2015-06-05 - URL: https://petri.com/use-powershell-to-copy-files-to-multiple-locations/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Learn how to use PowerShell to copy files to multiple locations in this tutorial by Jeff Hicks. During the course of my work week, I often need to backup files. Most of the time, I need to copy files to another directory or location. On occasion, I find myself needing to copy the same files to multiple locations. Yes, I could wait for the first copy command to finish, hit the up arrow to get the last command, modify it, and copy again. This process seems like a lot of work, and I feel there has to be a more efficient way. As a result, I set out to see what I could do with PowerShell. I'm in PowerShell all the time so if I can get this to work, it will probably be faster than using the GUI. Plus, I may experience a scenario in the future where I need to do this without the GUI. For the sake of my demonstration, I'm going to define two different destinations. ​ $destA = "F:\BackupTest" $destB = \\jdh-nvnas\temp $destination = $destA,$destB One very easy approach is to simply pass the results of the first copy operation to another. ​ dir c:\work\*. txt | copy-item -Destination $destA -PassThru | copy -dest $destB -PassThru Copy-Item by default doesn't write anything to the pipeline unless you use –Passthru. In this one-line command, I am copying all the . txt files from C:\work to the first destination. As files are copied, they are copied again to the second destination. Technically the files in $destB are copies of the files in $destA. This sequential approach works... --- ### Paul Thurrott's Short Takes: June 5, 2015 > Because talk is cheap and actually solving problems takes skill, this week's other news includes a major Chinese government hack of US government workers. - Published: 2015-06-05 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-june-5-2015/ - Categories: Security - Tags: News - Article Type: Opinion Because talk is cheap and actually solving problems takes skill, this week's other news includes a major Chinese government hack of US government workers. Because talk is cheap and actually solving problems takes skill, this week's other news includes a major Chinese government hack of US government workers, Skype's new mission, Windows 8. x usages finally surpasses that of Windows XP, Google admits it has a problem, and most retailers are too cheap to adopt Apple Pay. Major hack of US governmental data tied to China US officials reported this week that hackers tied to the Chinese government have stolen the personal information of over 4 million US government employees in an electronic attack that could date back years. Potential victims—e. g. employees from nearly every federal government agency—are being urged to monitor their financial statements and get new credit reports, but it's unclear what the purpose of China's massive US government employment database is for. Or as China put it: "Jumping to conclusions and making hypothetical accusation is not responsible and counterproductive," a Chinese embassy spokesperson said. "Cyberattacks conducted across countries are hard to track, and therefore the source of attacks is difficult to identify. " Which is quite different from "we didn't do it," by the way. "Edward Snowden Hits Out at Russia's Privacy Laws" Careful. You're running out of places to hide. Skype finds a new purpose: spreading malware PhishMe researchers reported this week that Microsoft's Skype communications tool is being used to do more than let grandma chat with little Johnny remotely: apparently "nefarious users" are using the service to spread malware and other malicious applications. The good news? They're... --- ### Windows Phone Tip: Use the Keyboard Faster > Learn some useful shortcuts that can help you use the keyboard faster in Windows Phone 8.1 - Published: 2015-06-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-phone-tip-use-the-keyboard-faster/ - Categories: Mobile - Tags: Windows Mobile, Windows phone - Article Type: How To Learn some useful shortcuts that can help you use the keyboard faster in Windows Phone 8.1 The Windows Phone 8. 1 keyboard may have lost the honor of being the world's fastest, which is now apparently held by third-party Android app Flesky where a user was able to break the world record for typing a 126-letter sentence a quarter of a second faster than a previous record attempt using Windows Phone. With that said, there are some tricks that can help you type faster even if they won't help get you into the Guinness Book of World Records. Word Flow Introduced in Windows Phone 8, Word Flow predicts the next word in a sentence to save you from having to type it. From a review of 2. 5 billion English words, including slang and words from popular culture, and then whittled down to 600,000 words to save on storage space, Word Flow learns your writing style to improve word predictions. A custom dictionary allows you to add common words you use that are not included in the built-in dictionary.  Autocorrect also handles adding apostrophes, as well as capitalizing the first letter of sentences and proper nouns. Shape Writing New to Windows Phone 8. 1, Shape Writing allows you to move a finger around the keyboard, instead of pressing individual keys. Working in conjunction with Word Flow, Shape Writing can help you to type faster once you've gotten used to it. Child keys on the Windows Phone 8. 1 keyboard (Image Credit: Russell Smith) Double Space for a Period The period key... --- ### Microsoft Pledges Support for SSH > Microsoft this week pledged to bidirectionally support the Secure Shell (SSH) encrypted network protocol in the PowerShell scripting environment. - Published: 2015-06-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-pledges-support-for-ssh/ - Categories: PowerShell - Tags: News - Article Type: News Microsoft this week pledged to bidirectionally support the Secure Shell (SSH) encrypted network protocol in the PowerShell scripting environment. Microsoft this week pledged to close one of the remaining interoperability roadblocks between Windows and Linux by bidirectionally supporting the Secure Shell (SSH) encrypted network protocol. Support for SSH will come via the PowerShell scripting environment, though the delivery schedule isn't particularly clear. "I'm pleased to announce that the PowerShell team will support and contribute to the OpenSSH community," Microsoft PowerShell group software engineering manager Angel Calvo wrote in a post to the Windows PowerShell Blog. " very excited to work with the OpenSSH community to deliver the PowerShell and Windows SSH solution. " According to Calvo, SSH support has been a regular and popular request from users. It would enable administrators on Windows machines to securely connect to and manage remote Linux and Windows-based servers, of course. But it would also allow administrators on Linux machines to do the reverse: securely connect to and manage remote Windows-based servers. Calvo says that Microsoft first reviewed third party SSH implementations, but found them to be "limited," the software giant decided to develop its own implementation in-house. As noted in the quote above, Microsoft's SSH implementation will be made in concert with the OpenSSH community, which oversees what it calls an "industry proven solution. " The most intriguing part of the announcement is a not-so-subtle criticism of a previous Microsoft regime that shot down the team's two previous requests to adopt SSH. "This is the third time the PowerShell team has attempted to support SSH," Calvo explains. "The first attempts were during PowerShell v1... --- ### How to Use Cortana in Windows 10 > Russell Smith provides tips on how to use Cortana in Windows 10, including explanations for Notebook, reminders, and places features. - Published: 2015-06-04 - Modified: 2024-09-04 - URL: https://petri.com/use-cortana-windows-10/ - Categories: Windows 10 - Tags: Cortana, Editor's Pick - Article Type: How To Learn how to get started with Cortana, Microsoft's personal digital assistant that's built into Windows 10. With Windows 10, Microsoft introduced Cortana as its answer to Apple's Siri voice recognition software. The new technology breathed new life into Windows Phone and has been part of Windows Phone 8. 1 in beta form since spring 2014. In this article, I'll walk you through Cortana's features in the Windows 10 Technical Preview, which can be downloaded as part of the Windows Insiders program. Cortana in Windows 10 Technical Preview build 10122 (Image Credit: Russell Smith) Hey Cortana Cortana replaces the Search box that Windows 7 users see at the bottom of the Start menu. Not only that, but Cortana also sits to the right of the Windows button on the taskbar. Cortana functions much like search in Windows 7, where you can start applications or search for documents. One immediate difference is the presence of a microphone icon that activates voice recognition, which lets you ask Cortana questions or instruct her to perform actions, such as to open Microsoft Word. Voice recognition can be activated by saying Hey Cortana, but you'll need to explicitly enable this feature in settings. In the current build, I found that Hey Cortana stops responding after some time. In addition, Cortana has several irritating and unnecessary announcements, such as "Word is now opening. " A simple visual indicator that Cortana received and is carrying out the instruction would suffice. Settings To enable Hey Cortana, click the Cortana icon on the taskbar, then the Settings icon on the left, and... --- ### Getting Started with DISM PowerShell Cmdlets > Jeff Hicks shows us tips for getting started with DISM PowerShell cmdlets, which are useful for making changes to desktop settings and Windows images. - Published: 2015-06-03 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-dism-powershell-cmdlets/ - Categories: PowerShell - Tags: Advanced, DISM, Editor's Pick, Get-WindowsEdition, Scripting - Article Type: How To Jeff Hicks shows us tips for getting started with the DISM cmdlets in Windows PowerShell, along with steps for adjusting desktop settings with them. For a while now IT pros have used the DISM command to manage Windows images and installations, which isn't an especially difficult tool to use. Because it is a command line tool, everything it outputs is text, and this can make it tricky if you are trying to do anything with it. Fortunately, Windows 8 brought us a new module, conveniently called DISM. Let me introduce you to it and use some of the commands to adjust my desktop settings. DISM isn't required anymore because PowerShell automatically imports modules when you use one of its commands. But you probably don't know what those commands are called, so we'll go ahead and explicitly import the module. ​ import-module dism What can the module do for us? ​ get-command -Module DISM Looks like quite a lot. DISM PowerShell cmdlets. (Image Credit: Jeff Hicks) Perhaps we should organize the results into something easier to read. ​ get-command -Module DISM | sort Noun,Verb | format-table -GroupBy Noun DISM PowerShell cmdlets. (Image Credit: Jeff Hicks) All of these commands should have full help, which I'll leave to you to read. Don't forget you can also get online help as well. ​ help Get-WindowsEdition –online Let's try this one. ​ Get-windowsedition –online The get-windowsedition cmdlet. (Image Credit: Jeff Hicks) I don't have a need to change my current edition, so let's look at optional features. You can manually set them via the Control Panel under... --- ### Add or Remove Active Directory attributes from Read-Only Domain Controllers (RODCs) > Learn how to easily add or remove Active Directory attributes from read-only domain controllers (RODCs) in this tutorial by Russell Smith. - Published: 2015-06-03 - Modified: 2024-09-04 - URL: https://petri.com/modify-the-read-only-domain-controller-filtered-attribute-set-using-adsi-edit/ - Categories: Active Directory (AD) - Tags: Active Directory, Security, Windows Server - Article Type: How To Russell Smith shows us how to add or remove Active Directory attributes from read-only domain controllers (RODCs) in this edition of Ask the Admin. In this Ask the Admin, I'll show you how to add or remove Active Directory attributes from the read-only domain controllers (RODCs) filtered attribute set, to control whether sensitive data gets replicated to branch offices. Read-only domain controllers were introduced in Windows Server 2008 and were designed to improve security in locations where server hardware can't be physically secured, most commonly branch offices. While RODCs contain a copy of each domain partition, some Active Directory (AD) attributes are not replicated, so if an RODC is compromised, only a limited amount of data is exposed. Attributes marked RODC_FILTERED are part of what's known as the RODC filtered attribute set, or FAS, and are not replicated to RODCs. By default, the attributes included in FAS are: ms-PKI-DPAPIMasterKeys ms-PKI-AccountCredentials ms-PKI-RoamingTimeStamp ms-FVE-KeyPackage ms-FVE-RecoveryPassword ms-TPM-OwnerInformation While it's unlikely you'd want to remove any of these attributes from the RODC FAS, it might be useful to remove attributes that get added as part of extending the Active Directory schema. For example, in my recent article Secure Local Administrator Accounts with the Local Administrator Password Solution (LAPS) Tool on the Petri IT Knowledgebase, I showed you how to extend the AD schema to add two new attributes required by LAPS to store local administrator passwords (ms-MCS-AdmPwd) and expiry times (ms-MCS-AdmPwdExpirationTime) in Active Directory. The PowerShell cmdlet included with LAPS used to extend the schema adds the ms-MCS-AdmPwd attribute to the RODC FAS, so if you want IT staff to be able... --- ### Microsoft Keeps Up the Guessing Game with Windows 10 Barreling Towards Release > Windows 10 will arrive on July 29 whether it's ready or not, but Microsoft is failing in exactly the same way it always does: Communication. - Published: 2015-06-03 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-keeps-up-the-guessing-game-with-windows-10-barreling-towards-release/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Windows 10 will arrive on July 29 whether it's ready or not, but Microsoft is failing in exactly the same way it always does: Communication. With the days of "when it's ready" behind us—Windows 10 will arrive on July 29, 2015 whether it's ready or not—Microsoft is failing in exactly the same way it always does. This company needs to learn how to effectively communicate what it's doing. For once, I can claim to speak from a position of authority. I've been writing about Microsoft professionally for over 20 years, and I owe this career to Microsoft's inability to clearly communicate what it's doing. I'm often thanked by Microsoft's customers and, yes, employees for making sense of the communications sinkhole that is this company. But it doesn't have to be this way. Let's look at the most recent example of this unnecessarily lack of clarity. Windows 10 "will be available" on July 29, 2015, we're told. What does "available" mean? Electronically? Later in the post—much later—there is a single line that addresses these questions. "On July 29, you can get Windows 10 for PCs and tablets by taking advantage of the free upgrade offer, or on a new Windows 10 PC from your favorite retailer. " So no word on the retail version of the OS then. This notion of "available" raises a second question. In the past Microsoft used terms like RTM ("release to manufacturing") and GA ("general availability") because these terms meant something. Today, the software giant is spinning the notion that everything is new and different with Windows 10, so it doesn't need to worry about such things. There's no... --- ### PowerShell Problem Solver: Creating a Better EventLog View > Learn how to change the default display for PowerShell's Get-Eventlog cmdlet by formatting the output to a list. - Published: 2015-06-02 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-creating-better-eventlog-view/ - Categories: PowerShell - Tags: Advanced, format-list, get-eventlog, PowerShell Problem Solver, Scripting - Article Type: How To Learn how to change the default display for PowerShell's Get-Eventlog cmdlet by formatting the output to a list. If you have used the PowerShell Get-Eventlog cmdlet to display event logs, then you have probably been a little frustrated. You'll run a command like this: ​get-eventlog system -newest 10 -EntryType Error But the default display is hardly helpful. PowerShell's get-eventlog default display. (Image Credit: Jeff Hicks) You'll notice that the message property is truncated, and it's probably the thing you want to see most when using the get-eventlog cmdlet. You can get around this by specifically telling PowerShell to format the display as a list. Formatting the get-eventlog display as a list. (Image Credit: Jeff Hicks) Now you have to remember to always use format-list or come up with a custom command to display the properties the way you want. This is a case where PowerShell isn't making things easier for the IT pro. In fact, a suggestion was made to Microsoft about this very situation. The default display for Get-Eventlog should be a list and not a table. Fortunately, we don't have to wait for Microsoft to make that change. Most common object types, like what we get from Get-Eventlog, have defined views. That is, when you run Get-Eventlog, at the end of the pipeline PowerShell looks at the objects and then determines how to best display them. It accomplishes this by looking at a set of rules stored in . ps1xml files. PowerShell is flexible enough to allow you to rewrite those rules and that's what we are going... --- ### OneDrive versus OneDrive for Business > Understand the differences between OneDrive versus OneDrive for Business so that you can understand which solution is best for you. - Published: 2015-06-02 - Modified: 2024-09-04 - URL: https://petri.com/onedrive-versus-onedrive-business/ - Categories: Cloud Computing - Article Type: Overview Understand the differences between OneDrive and OneDrive for Business so that you can understand which solution is best for you. In the sometimes confusing world of Microsoft's online services, the consumer and business versions of OneDrive offer different features, use different sync software and apps, but can co-exist together. In this article, I'll explain the differences between the two products so that you can understand which solution is best for you. What is OneDrive? OneDrive and OneDrive for Business are Microsoft's online file storage and collaboration solutions. Both are designed for individual users, but have the ability to share files with others; and like competitors Dropbox and Google Drive, neither have the same level of group sharing and offline synchronization that's offered by traditional file servers. For example, it's important to note that OneDrive for Business users are assigned individual document libraries, and only the library owner can sync the contents for offline use. All other users access files using the web UI. Although at first glance it might seem that there's not much difference between OneDrive for Business and the consumer version of the same product, auditing, reporting, granular access controls, standards compliance and directory sync support will be important for some businesses. Additionally, Office 365 Groups -- which shouldn't be confused with OneDrive Groups axed in 2014 -- can only interact with files stored on OneDrive for Business. OneDrive versus OneDrive for Business (Image Credit: Microsoft) If you have an Office 365 subscription, or a standalone OneDrive for Business plan, using the consumer version of OneDrive will lock you out of these... --- ### Intel to Acquire Altera for $16.7 billion > Microprocessor giant Intel announced on Monday that it will acquire Altera, a maker of specialized integrated circuits, for $16.7 billion. - Published: 2015-06-02 - Modified: 2024-11-19 - URL: https://petri.com/intel-to-acquire-altera-for-16-7-billion/ - Categories: Cloud Computing - Tags: Intel, News, Processor - Article Type: News Microprocessor giant Intel announced on Monday that it will acquire Altera, a maker of specialized integrated circuits, for $16.7 billion. Microprocessor giant Intel announced on Monday that it will acquire Altera, a maker of specialized integrated circuits, for $16. 7 billion. The heady sum is indicative of Intel's need to bring Altera's technology in-house, so that it can more easily expand its datacenter and Internet of Things (IoT) offerings. But the deal also reflects Intel's inability to expand its lucrative domination of the desktop PC market into new markets. "Intel's growth strategy is to expand our core assets into profitable, complementary market segments," Intel CEO Brian Krzanich explained in a prepared statement. "With this acquisition, we will harness the power of Moore's Law to make the next generation of solutions not just better, but able to do more. Whether to enable new growth in the network, large cloud data centers or IoT segments, our customers expect better performance at lower costs. This is the promise of Moore’s Law and it's the innovation enabled by Intel and Altera joining forces. " The Altera deal is valued at about $16. 7 billion because Intel is offering $54 per share in cash, a premium of over 50 percent. The deal will be financed with cash Intel has on hand and some new debt. Intel expects to close the deal within 6-9 months and isn't expecting any regulatory hurdles. From a technical perspective, Altera makes a specialized integrated circuit called a field-programmable gate array (FPGA), which is interesting in that their operation can be modified after delivery to a customer installation, and they tend... --- ### 13 Things System Administrators Hate About IT Vendors > Petri IT Knowledgebase Editorial Director Jeff James supplies his list of top 13 things system administrators hate about IT vendors. - Published: 2015-06-01 - Modified: 2015-06-01 - URL: https://petri.com/13-things-system-administrators-hate-about-it-vendors/ - Categories: Windows Server - Tags: Editor's Pick, IT vendors, News - Article Type: Opinion Petri IT Knowledgebase Editorial Director Jeff James supplies his list of top 13 things system administrators hate about IT vendors. Working with IT vendors is a fact of life for every IT professional, ranging from hardware vendors like Dell, IBM, and Fujitsu, to software and cloud providers like Microsoft, Google, and more. They often provide invaluable products and services that make IT run more smoothly and effectively. That said, I've heard more than my fair share of horror stories about what some system administrators have gone through when working with vendors. These tales of woe range from poor service and lackluster support, to avoidance of responsibility ("It's a hardware problem! No, It's a software problem! "), to company failures that impact their customers, such as the well-documented demise of cloud storage vendor Nirvanix. Over the course of the last week or two I've heard from more than a dozen system administrators about what they hated about IT vendors, and the result is what you see here. Not all of the admins I spoke with were willing to go on the record, and in many cases I've changed names and/or vendor names to protect the innocent, but what emerged is a baker's dozen of the most egregious and frustrating things about vendors that drive IT administrators crazy. Feel free to add your own harrowing tales of IT vendor frustration in the comments section below this post. 1. Sales reps who don't know their own products A common refrain I heard from many admins was that vendor sales reps were often clueless about even the surface technical details of the products... --- ### A Summer Reading List for System Administrators > Jeff Hicks provides his summer reading list for system administrators, which includes resources on IPv6, Docker, and PowerShell. - Published: 2015-06-01 - Modified: 2024-12-03 - URL: https://petri.com/summer-reading-list-for-system-administrators/ - Categories: Windows Server - Article Type: Opinion Have some extra time to unwind? Take a look at Jeff Hick's summer reading list for system administrators, which includes resources to catch up on IPv6, Docker, and PowerShell technologies. Like many of you, I have a stack of beach reads now that summer is upon us. However, my version of a beach tends to be more like a cabin at the lake. If you're wondering how to spend some quality time, here's my recommended summer reading list, which are presented in no particular order. Practical IPv6 for Windows Administrators by Edward Horley I confess that I know very little about IPv6 other than the fact that addresses make my head hurt. I've also put off learning it since I don't think I need it in my little test environment, but that's probably wishful thinking on my part. I need to learn this, and you probably do, too. This book is written by one of the leading experts on the subject, where my copy is autographed, so there's really no excuse. Although you'll find several IPv6 titles by looking through Amazon, I like that this isn't a book full of theory and specifications. Instead, I like the practical and real-world approach that I've seen so far, which is what exactly Ed accomplishes in this book. Website: Practical IPv6 for Windows Administrators   Docker in Action by Jeff Nickoloff If you read my article about what skills Windows system administrators should be learning, then you'll recall I mentioned Docker. This book, which is still being written, is a good start. You can get access through the publisher's early access program and read the book as it's being written. I've done this with the first few... --- ### Windows 10 Release Will Hurt the PC Market This Year > Windows 10 will trigger a steeper reduction of PC sales this year because Microsoft is giving it away for free to existing customers. - Published: 2015-06-01 - Modified: 2024-11-19 - URL: https://petri.com/windows-10-release-will-hurt-the-pc-market-this-year/ - Categories: Windows 10 - Tags: News - Article Type: News Hailed by many as a savior for the PC industry, Windows 10 will actually trigger a steeper reduction of PC sales this year because Microsoft is giving it away for free to existing customers. Hailed by many as a savior for the PC industry, Windows 10 will actually trigger a steeper reduction of PC sales this year because Microsoft is giving it away for free to existing customers. That was always obvious. The bigger question is what impact Windows 10 will have in the long haul. Microsoft announced today that it will deliver Windows 10 to upgraders and via new PCs beginning July 29, 2015. For the first year, customers with Windows 7 or 8. 1 PCs can upgrade for free. Predictions of Windows 10's impact on PC sales in 2015 comes courtesy of IDC, but you don't need a crystal ball to know that giving away a software upgrade that normally costs $100 to $200 is going to trigger more than a few reassessments about the need to replace PCs. Of course, PC sales have been on a downward trend for four years, if you include this year. The sole exception was last year when PC sales flattened—i. e. didn't grow or fall—because of last-minute Windows XP PC replacements leading up to Microsoft's end of support. With that artificial bump over, IDC now expects PC sales to fall another 6. 2 percent this year, to 289 million units. The kicker, I guess, is that Windows 10 will make things worse than would normally be the case this year. "The consumer transition to Windows 10 should happen quickly, but the free upgrade reduces the need for a new PC," IDC notes. "Many consumers will... --- ### SharePoint Site Collection Ownership Issues: Assigning Permissions to a Web Application > Michael Simmons describes a common issue with SharePoint site collection ownership, where farm administrators are often listed as the site owners. - Published: 2015-05-29 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-site-collection-ownership-issues-assigning-permissions-to-a-web-application/ - Categories: SharePoint Often farm administrators are listed as SharePoint site collection owners in many new SharePoint implementations. Michael Simmons explains why this isn't the best idea to put into practice. SharePoint is one technology that has its fair share of configuration points, and a common point of confusion is around site collection ownership. In this article, I'm going to look at the role of the site collection owner and explain why it might not be the best practice to let farm administrators assert their authority over site collections. Should You List Farm Administrators as the Site Collection Owner? A common question is whether farm administrators should also be listed as site collection owners. You might see this type of set up in smaller environments or new SharePoint implementations where the SharePoint farm administrators are also responsible for creating site collections. During the creation of a site collection, SharePoint prompts us to create a primary and secondary owner of the new site collection. It makes sense that the person creating the site collection would want to maintain some degree of ownership and administrative access to the site collection. After all, this person typically needs to be able to answer questions about the site and features of SharePoint, so it seems a good place for them. Site Collection Ownership and SharePoint Farm Administration Differences Site collection owners actually possess a different set of roles and responsibilities than farm administrators. Traditionally, farm administrators are primarily responsible for the SharePoint features running the farm and the configuration of the web applications. To a certain extent, farm administrators are responsible for site collections, but their duties tend to only concern themselves with the initial setup and configuration of site collections. Once initial setup... --- ### Recent Enhancements to Azure Site Recovery > Aidan Finn lists the recent enhancements to Azure Site Recovery, which includes a new preview for VMware virtual machines and physical servers. - Published: 2015-05-29 - Modified: 2024-09-04 - URL: https://petri.com/recent-enhancements-to-azure-site-recovery/ - Categories: Microsoft Azure - Tags: ASR, Azure Site Recovery, Disaster Recovery, DR, Editor's Pick, storage - Article Type: News Read about some of the recent improvements to Azure Site Recovery (ASR), Microsoft's DR-as-a-Service cloud solution. The pace of improvements to Microsoft's disaster recovery (DR) in the cloud solution has been staggering.  Many Microsoft partners and customers see Azure Site Recovery (ASR) as a valuable business solution that finally solves old issues at an affordable cost and does so in a non-threatening way by supplementing existing skills and investments in IT. Related: Getting the Most Out of Azure Site Recovery ASR is also a nice introduction to Azure IaaS, allowing new tenants to explore Microsoft's cloud and find new ways to enhance service delivery. The ASR group has been busy and a number of interesting changes has been launched or put into preview in recent weeks. Failback to Different Hosts and Sites Until recently, you could only failback virtual machines from Azure to their original hosts and clusters. This could be spun a certain way, such as, "hey, you're gonna love Azure so much that you'll never want to leave. " The reality is that a lot of companies will leave once their insurance companies finally pay out, where they will want to return workloads to a new premium site. Until recently, that was impossible. With a change made in April, ASR allows you to failback your virtual machines to a new location if the original primary site was lost in the disaster. This means that you can limit the role of Azure to that of the emergency secondary site and opt to use it as your permanent residence. But you know, Azure is pretty cool, and you might want to stay... --- ### Paul Thurrott's Short Takes: May 29, 2015 > Because I feel like it and I’m tired of explaining myself, this week's other news includes a July confirmation for Windows 10, and much, much more. - Published: 2015-05-29 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-may-29-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because I feel like it and I’m tired of explaining myself, this week's other news includes a July confirmation for Windows 10, and much, much more. Because I feel like it and I’m tired of explaining myself, this week's other news includes a July confirmation for Windows 10, your most important Windows 10 question answered, PC sales will continue falling in 2015 ... because of Windows 10, tablet sales will also fall in 2015, smart phone sales will slow in 2015, how to crash an iPhone with a text message, and Google’s plan to finally make money directly from Search. Yes, Windows 10 really is expected in July A variety of sources I trust have all confirmed that Microsoft is still planning to finalize the initial release of Windows 10 in mid-July. This release, which is still called RTM—“release to manufacturing”—for largely historical reasons, is of course not the end of the story for Windows 10, which will be updated in the weeks, months and years after this milestone. And of course, this RTM date is only for the PC/tablet versions of Windows 10: versions for Windows phones, Xbox One, Internet of Things embedded devices, and whatever else—HoloLens, Surface Hub for example—will trail well into the end of 2015. Hang onto your butts, folks. Windows 10 may not be ready based on my own experience. But it’s coming. “Google's Ingenious Plan to Make Apps Obsolete” I hope it’s called “live tiles. ” Your most important Windows 10 question, finally answered I don’t think I should be labeled as ignorant or American-centric if I point out that Japanese culture can be ... a little odd... . --- ### Episode 21 - May 28th- 10:15pm EDT Guest : Leon Adato, Head Geek at SolarWinds - Published: 2015-05-28 - Modified: 2015-05-28 - URL: https://petri.com/episode-21-leon-adato-head-geek-at-solarwinds/ - Categories: Current Status Servers go down. Systems crash. Lights go out in the datacenter. As a sysadmin, being informed of these outages are key to keeping the datacenter up and running. Join us as we discuss alert and monitoring without all the white noise with Leon Adato @leonadato, Head Geek at SolarWinds. You can be alerted all you want, but what you do with the alerts is important, right? --- ### What is Microsoft Azure Stack? > Aidan Finn explains how Microsoft is bringing Azure to your data center on your terms using Azure Stack. - Published: 2015-05-28 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-azure-stack/ - Categories: Hyper-V - Tags: Azure Stack, Editor's Pick - Article Type: Overview Aidan Finn explains how Microsoft is bringing Azure to your data center on your terms using Azure Stack. One of Microsoft's best kept secrets that was announced at Microsoft Ignite 2015 was Microsoft Azure Stack. In this article, I'll explain what we know about this cloud solution for Hyper-V. I met with members of the Azure Stack product team at Ignite with some detailed questions, and I received some unusual responses. To be clear, it wasn't that the team was trying to be uncooperative. Microsoft decided to start talking about Azure Stack very early in its product lifecycle, but there were some things that they couldn't talk about, as not everything is set in stone for Azure Stack's development. I did find that this team was interested in feedback -- this is the new Microsoft and user feedback counts! What Azure Stack Isn't My friend, Damian Flynn, wrote a series of articles on the Petri IT Knowledgebase about Windows Azure Pack (WAPack). There you will discover that Microsoft's private Azure wasn't anything remotely like Azure. Sure, the UI might share some code with the Azure Management portal and look very similar, but you'll find a layer of REST APIs in front of System Center if you peel back the veneer. Comparing Azure to Windows Azure Pack (Image Credit: Microsoft) What We Know About Azure Stack Azure Stack is not WAPack 2. 0. WAPack was an add-on to System Center. Azure Stack is a whole new design that is reusing code from the Azure Preview Portal, making it visually identical to the Azure administration experience. The most interesting aspect of Azure... --- ### Microsoft Azure IaaS Announcements at Build and Ignite 2015 > Aidan Finn provides a summary of Microsoft Azure IaaS announcements at Build and Ignite 2015. - Published: 2015-05-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-iaas-announcements-at-build-and-ignite-2015/ - Categories: Microsoft Azure - Tags: Azure, Cloud, Cloud App Discovery, DNS, ExpressRoute, hybrid cloud, networking, Office365, storage, virtual machines - Article Type: News Aidan Finn provides a summary of Microsoft Azure IaaS announcements at Build and Ignite 2015. It's been a busy time for Microsoft Azure lately, where the confluence of Build 2015 and Ignite 2015 saw numerous announcements for Microsoft's public and hybrid cloud, many of which I will cover here. Premium Storage General Availability A new shared storage system that's used by DS-Series virtual machines became available. Shared SSD storage allows higher throughput and lower latency for huge-scale and time-sensitive applications. A DS-Series virtual machine using shared SSD storage for data disks (Image Credit: Microsoft) Azure Files Technical Support Any customer with a technical support contract for Azure can troubleshoot issues with this SMB 2. 01 storage system for sharing application configurations and files. Azure Import/Export for Japan & Australia Japan and Australian regions now have the ability to perform out-of-band bulk import or export jobs for data in and out of Azure. Azure ExpressRoute for Office 365 Microsoft is working with three partners -- AT&T, British Telecom, and Equinix -- to make it possible for customers to connect to Office 365 using the Azure WAN connectivity solution, ExpressRoute. Microsoft hopes to bring this to market in Q3 2015. Azure DNS Preview Microsoft will be offering public DNS services to Azure customers. This will provide customers with Microsoft's global DNS service, providing greater performance and rapid replication that only a cloud-scale service can offer. Note that Azure DNS is managed via your Azure subscription and responds using AnyCast. Azure ExpressRoute Premium Add-On Package A new package is available now that allows customers to have more... --- ### Microsoft Says It Would Obey Encryption Laws > With important countries like the USA and UK debating whether to require tech firms to enable encryption back doors, Microsoft has finally spoken up. - Published: 2015-05-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-says-it-would-obey-encryption-laws/ - Categories: Security - Tags: News - Article Type: News With important countries like the USA and UK debating whether to require tech firms to enable encryption back doors, Microsoft has finally spoken up. With important countries like the United States and the United Kingdom debating whether to require technology firms to enable backdoors for their encrypted products, Microsoft has finally spoken up. Yes, the firm is against such requirements, and it recently pressured US president Barack Obama to ignore calls for such legislation. But it would also respect the laws of the countries in which it does business. Well, some of the countries. To be fair, Microsoft also has an increasingly proud history of taking a stand against business requirements that it finds odious or, worse, possibly illegal. It is for example currently fighting a federal court demand that it turn over information about a customer that is stored in a datacenter in Ireland. The viability of encryption falls into the same gray area. Most would agree that encryption improves security and is a key component in getting customers to trust their personal data on mobile devices. But with governments around the world starting to rail against unbreakable encryption on devices that can and will be used by criminals, the tech industry is barreling towards a major impasse that pits the needs to law enforcement against the privacy needs of individuals. Last week, Microsoft was one of over 140 signatories in a letter to president Obama calling on him to reject proposals that would require US companies to offer encryption back doors in mobile devices and software. "Introducing intentional vulnerabilities into secure products for the government’s use will make those... --- ### SQL Server 2016 Community Technology Preview (CTP2) Now Available for Download > The SQL Server 2016 Community Technology Preview (CTP2) is now available to download and provides a first look into Always Encrypted and Stretch Database capabilities. - Published: 2015-05-27 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-2016-community-technology-preview-ctp2-now-available-download/ - Categories: SQL Server - Tags: Microsoft Ignite, Microsoft Ignite 2015, SQL Server 2016 - Article Type: News The SQL Server 2016 Community Technology Preview (CTP2) is now available to download and provides a first look into Always Encrypted and Stretch Database capabilities. Following the announcement of SQL Server 2016 at Microsoft Ignite, the SQL Server 2016 Community Technology Preview (CTP2) is now available today to give users their first glimpse into the next version of SQL Server. Continuing on what SQL Server 2014 achieves for on-premises and cloud databases, SQL Server 2016 similarly works to provide greater performance and data insights for mission-critical applications. SQL Server 2016 includes new Always Encrypted and Stretch Database capabilities, which will be discussed in detail below. Additionally, Microsoft is bringing several different benefits to on-prem and cloud customers alike, where the company is bringing row-level security and Dynamic Data Masking to Microsoft Azure SQL Database, as well as providing hyper-scale capabilities to on-prem offerings. "This means all our customers benefit from our investments and learnings in Azure," said T. K. Ranga Rengarajan, Corporate Vice President of the Data Platform division at Microsoft, in a recent post featured on the SQL Server blogs. Key Innovations in SQL Server 2016. (Image Credit: Microsoft) Top Features in the SQL Server 2016 CTP2 In the SQL Server 2016 CTP2, you'll be able to delve into the following features: Always Encrypted. SQL Server 2016's new Always Encrypted capability protects data at rest and in motion, which enables users to perform operations on encrypted data. What's great about this feature is that the encryption key lives in the application in the customer's environment, making it possible for the encryption and decryption of... --- ### PowerShell Problem Solver: Make it Pretty > Learn how to easily change the PowerShell console font and background colors. - Published: 2015-05-27 - Modified: 2024-09-04 - URL: https://petri.com/change-powershell-console-font-and-background-colors/ - Categories: PowerShell - Tags: Beginner, Editor's Pick, PowerShell Problem Solver - Article Type: How To During Microsoft Ignite, I took part in a community panel discussion on PowerShell. Well, not so much a discussion as questions and answers. One of the questions, which I get from time to time, concerned how to change the color of error messages in the PowerShell console. It is actually quite easy, and once you know the "trick", it opens up a lot of possibilities. Before I get into it, understand that everything I am going to demonstrate is for the PowerShell console, not the PowerShell ISE. While some things might work in the ISE, it has its own settings for customizing the appearance. Perhaps I'll cover that in another article. In the console, this is the normal situation. So instead of red text on a black background, you want something else. The settings are found in $host. privatedata. The color settings are the same you would use with Write-Host. You can use the . NET framework to enumerate these values if you don't remember them all. To change, all you need to do is assign a new value: ​  Perhaps this is more appealing. This change only lasts for the duration of your PowerShell session so if you don't like it, you'll get the defaults the next time you start PowerShell. But if it is something you want to keep, put the commands in your PowerShell profile script. If you want to change other color schemes for the Verbose or Warning streams, feel free to experiment. By the way, if you... --- ### A New Strategy for Windows Phone Emerges as Cortana Heads to Android and iOS > Cortana on Android and iOS was inevitable, and predictable. But it also makes obvious Microsoft's real strategy for Windows Phone going forward. - Published: 2015-05-27 - Modified: 2024-09-04 - URL: https://petri.com/a-new-strategy-for-windows-phone-emerges-as-cortana-heads-to-android-and-ios/ - Categories: Mobile - Tags: Android, iOS, News, Windows phone - Article Type: Opinion This week, Microsoft announced that it will port its Cortana digital personal assistant—a key part of Windows Phone and the forthcoming Windows 10—to Android and iOS. The news set off shock waves in Microsoft's enthusiast communities, particularly that for the beleaguered Windows Phone platform. But this news was inevitable, and entirely consistent with CEO Satya Nadella's strategy. And it makes obvious Microsoft's real strategy for Windows Phone going forward. I wrote about Microsoft's Cortana announcement yesterday in Windows 10 to Embrace Rival Phone Platforms. Long story short, Microsoft is creating a Cortana app for both Android and iOS, though it is being positioned as a "companion to Cortana on your Windows 10 PC," rather than a standalone solution. Part of that is simply political—Microsoft is trying to make this release part of the benefit of adopting Windows 10 on your PCs—and part of it is practical: as an app, Cortana for Android and iOS can't provide the same deep integration that Microsoft achieves in Windows. "The Cortana app can do most of the things Cortana does on your PC or on a Windows phone," Microsoft's Joe Belfiore explained. "Because it's 'just an app' there will be certain things that Cortana does on Windows phones that won't work on Android devices or iPhones. Some features require access to the system that aren't currently possible with iOS or Android, so things like toggling settings or opening apps won't initially be available in the Cortana companions... --- ### Creating Repeating PowerShell Scheduled Jobs > PowerShell MVP Jeffery Hicks shows us how to create PowerShell Scheduled Jobs to repeat itself for a specified amount of time. - Published: 2015-05-26 - Modified: 2024-09-04 - URL: https://petri.com/creating-repeating-powershell-scheduled-jobs/ - Categories: PowerShell - Tags: Get-ScheduledTask, Intermediate, New-JobTrigger - Article Type: How To Learn how to create PowerShell Scheduled Jobs to repeat itself for a specified amount of time in this quick tutorial by Jeff Hicks. In an earlier article, I demonstrated how to use PowerShell's Scheduled Jobs feature. Although I find that this a very useful tool, it is not perfect. One limitation is that you cannot setup a scheduled job to repeat itself. By that, I mean that you can't schedule something to run once a week starting at 10:00 AM, where you want the job to repeat every 15 minutes for an hour. If you look at help for New-JobTrigger, you'll see that you can use repetition. New-JobTrigger information in Windows PowerShell. (Image Credit: Jeff Hicks) Unfortunately, this only works if you are creating a one-time job. You can create a daily or weekly job to repeat in the Task Scheduler, so why can't you use PowerShell? Here's one way that might work. If you look at a job trigger object, you'll see properties for repetition settings. Repetition settings for New-JobTrigger in Windows PowerShell. (Image Credit: Jeff Hicks) You might even think you can set these properties and create a new job. https://petri. com/creating-repeating-powershell-scheduled-jobs$trigger. RepetitionDuration = (new-timespan -minutes 10 ) $trigger. RepetitionInterval = (new-timespan -Minutes 1) Register-Scheduledjob -Name 'Weekly Rep Test A' -MaxResultCount 4 -ScriptBlock $a -Trigger $trigger Sadly, when you look at the job in Task Scheduler, the repetition settings are not configured. Repetition settings in Task Scheduler. (Image Credit: Jeff Hicks) I was hoping that PowerShell would simply apply the trigger object, but that doesn't seem to be the case. The only... --- ### Hyper-V's Biggest Weakness > In this opinion post, Aidan Finn discusses what how he believes that the management component is Hyper-V's biggest weakness for Microsoft. - Published: 2015-05-26 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-biggest-weakness/ - Categories: Hyper-V - Tags: Editor's Pick, Failover Cluster Manager, hyper-v manager, scvmm, System Center Virtual Machine Manager - Article Type: Opinion Aidan Finn explains what he believes to be Hyper-V's biggest weakness for Microsoft and provides a strategy to improve the service for IT pros. I was one of the first administrators to put Hyper-V into production, using the Windows Server 2008 version to power a startup hosting company just hours after it was released. I have been one the biggest advocates of Microsoft's hypervisor from its introduction, where I have stood in front of uninterested and aggressive audiences to evangelize Hyper-V. I was even told once that a team of VMware employees allegedly formed a team to attack me via social media. I have provided feedback to the Hyper-V product group over the years, happily seeing some of my contributions turn into something real. Since those early rough days, it's been a pleasure to see Hyper-V build on its reliability and performance and evolve into a cloud-scale virtualization platform that's fit for everyone from the largest cloud hosters and enterprises all the way to small business. Related: What's New in Windows Server 2016 Hyper-V And this is why I need to talk about the elephant in the Microsoft datacenter. Hyper-V management has some real problems, as has been discussed by The Register recently, and has led to some strong feedback on Microsoft's User Voice site for Windows Server. Some who are familiar with me might have expected a strong response from me on The Register's article, but I actually agreed with the writer's sentiments. Some might call me a Microsoft fanboy, but they would be wrong. I criticize Microsoft as much as I praise them, where there are some people at Microsoft who... --- ### 20 Years Later: The Internet Tidal Wave - Published: 2015-05-26 - Modified: 2024-09-04 - URL: https://petri.com/20-years-later-the-internet-tidal-wave/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion "A new competitor 'born' on the Internet is Netscape," Microsoft CEO Bill Gates awkwardly wrote in his Internet Tidal wave memo to employees on May 26, 1995. The memo went on to rally the troops, as Microsoft defeated Netscape, embraced and extended Internet technologies, and dominated the market for web browsers. And yet today, 20 years later, Microsoft faces an almost identical threat. And this time, it's losing. And that is what makes this anniversary of "The Internet Tidal Wave" so bittersweet. It was in many ways Microsoft's finest hour, the last time that the software giant would so quickly and aggressively take on new threats and emerge victorious. But it was also the beginning of the end, with Microsoft hobbled by a subsequent decade of antitrust battles, giving rise to competitors such as Google and Apple, threats that Microsoft has, so far, been unable to overcome. To be fair, Netscape was an easier target than is Google or Apple. It was a tiny company, a startup, and it faced a software behemoth that could—and did—leverage its dominant Windows OS to obtain what many believe to be an unfair advantage. Microsoft didn't just give away Internet Explorer—Netscape's browser was originally "free but not free"—it also bundled it with Windows, which was the way virtually everyone on earth accessed the Internet. What many forget, of course, is that Microsoft also raced to give Internet Explorer a technological lead over Netscape Navigator. Product bundling has a dark side, but... --- ### PowerShell Problem Solver: Finding Orphan Aliases > In this PowerShell Problem Solver, Jeff Hicks shows us steps to create alias, along with steps for finding orphan aliases. - Published: 2015-05-22 - Modified: 2024-09-04 - URL: https://petri.com/finding-orphan-aliases/ - Categories: PowerShell - Tags: get-alias, Intermediate, PowerShell Problem Solver - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks shows us steps to create alias, along with steps for finding orphan aliases. Efficiency is paramount when working with the PowerShell console to get work done. Because there's a lot of typing involved when working with PowerShell, there's several features that intend to limit typing, such as tab completion for command and parameter names. Another ease-of-use feature is the PowerShell alias. Instead of typing Get-WmiObject, you can type a shortcut, gwmi. There's nothing wrong with that. When it comes time to writing a script, however, the best practice is to use full cmdlet and parameter names. Another use of aliases is as transition-aids, which is demonstrated by using dir instead of having to use Get-ChildItem. PowerShell automatically defines many aliases whenever you start a new session. You can also create your own aliases. You might do this for your own functions or even command-line tools. In my PowerShell profile, I have a command like this: pre >​Set-alias –name np –value notepad. exe At any time, I can type np and Notepad will launch. My PowerShell profile has grown over the years, and it has been moved around as I have changed computers. Recently I realized I had some aliases that were pointing to items that no longer existed. It doesn't really matter if you have orphaned aliases, but I like things neat, so I decided that I needed a tool to test if an alias was still valid. I can use the Get-Alias cmdlet to get details. Using get-alias to get details in Windows PowerShell. (Image Credit: Jeff Hicks) As I expected... --- ### SAPIEN Technologies PowerShell Help Writer 2015 Review > Jeff Hicks provides an in-depth look into SAPIEN Technologies PowerShell Help Writer 2015, which helps IT professionals write better PowerShell documentation. - Published: 2015-05-22 - Modified: 2024-09-04 - URL: https://petri.com/sapien-powershell-help-writer-review/ - Categories: PowerShell - Tags: Editor's Pick, Product Review, review, Sapien PowerShell Help Writer - Article Type: Review Jeff Hicks provides a look into SAPIEN Technologies' PowerShell Help Writer 2015, which helps IT pros write better PowerShell documentation. When you create PowerShell tools, good help documentation should be an important part of your development process. PowerShell's help system does a good job at looking at your command and providing basic help. You can and should provide more information about what your tool does and how to use it. To create PowerShell help in a function typically means using comment-based help. This is generally pretty easy to do in the ISE because you can create your own snippets or simply copy, paste, and edit. The downside is that if you need to update the help, then you also need to update the script. If you are using digital signatures that means you have to re-sign the script. Another potential downside is that if you need to localize help for a different language, it is much more complicated using comment-based help. The alternative is to use Microsoft's XML help format. Trust me when I say that creating an XML help file from scratch is an awful experience. That's because the format isn't simple XML, it is a specialized format called MAML. If you can get through it, then the benefit is that help documentation is in a separate file, which makes it easier to update and localize. To help you meet these goals, SAPIEN Technologies released a new product called PowerShell Help Writer. You can download a 45-day evaluation copy from their online store. I'm going to give you a taste of what to expect based on v1. 0. 9. SAPIEN... --- ### Paul Thurrott's Short Takes: May 22, 2015 > Because I will turn around and go back home if you two don't shut up, this week's other news includes Intel's CEO throwing cold water on Windows 10. - Published: 2015-05-22 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-may-22-2015/ - Categories: Windows Client OS - Tags: News - Article Type: Opinion Because I will turn around and go back home if you two don't shut up, this week's other news includes Intel's CEO throwing cold water on Windows 10, a potential Microsoft purchase of Blackberry, a Windows 3. 0 anniversary, Microsoft's big milestone in Ireland, that coy Nokia CEO and his plans for HERE, and HP's plans to make an eagle through mitosis. Or something. Intel CEO says Windows 10 will not trigger PC market rebound And before anyone gets their panties in a bunch, I just want to point out that this is obviously correct. That is, if Windows 10 is truly successful, it will at best stabilize the PC market somewhere south of 300 million units per year. And that is as good as it's going to get. But let's see what Intel CEO Brian Krzanich has to say about this. "We are going through another transition, Windows 10 upgrades," he said during Intel's annual shareholders meeting. "We're seeing some quarter-to-quarter pushing, but we continue to take a view of our long-term forecast the PC market should be flat to slightly down mid single-digit over the long-term. " Ah, so he said exactly what I said. This is the new normal folks. And it's a big improvement from the steady—and often big—declines of the Windows 8 era. "Windows 10 beta on Xbox One coming 'post-summer'" Duh and/or hello. Is Microsoft considering a purchase of Blackberry? Microsoft, you've already spent $7. 2 billion on one failing smart phone... --- ### Chromebook Continues to be a Tiny Slice of the PC Market > The market researchers at Gartner say that sales of Chromebooks--laptops running Google’s Chrome OS instead of Windows--will jump 27 percent in 2015. - Published: 2015-05-21 - Modified: 2024-09-04 - URL: https://petri.com/chromebook-continues-to-be-a-tiny-slice-of-the-pc-market/ - Categories: Mobile - Tags: Google Chromebook - Article Type: News The market researchers at Gartner say that sales of Chromebooks--laptops running Google’s Chrome OS instead of Windows--will jump 27 percent in 2015, mostly thanks to the education market. The market researchers at Gartner say that sales of Chromebooks--laptops running Google’s Chrome OS instead of Windows--will jump 27 percent in 2015, mostly thanks to the education market. But worldwide sales of these devices will still be a tiny percentage of overall PC sales, and penetration in businesses remains low despite Google’s efforts with these customers. “Since the first model launched in mid-2011, Google's Chromebook has seen success mainly in the education segment across all regions," Gartner principal analyst Isabelle Durand noted in a recently published report. "In 2014, the education sector purchased 72 percent of Chromebooks in EMEA, 69 percent in Asia/Pacific, and 60 percent in the US. ” Overall, however, I’m struck by the low penetration of Chromebook. In all of 2014, hardware makers sold just 5. 7 million Chromebooks, but that’s only 1. 8 percent of the 312. 2 million PCs that hardware makers sold worldwide that year. By comparison, Apple sold 19. 6 million Macs in calendar year 2014. That’s over three times the volume of Chromebook, despite their much more expensive pricing. (Macs represented about 6. 2 percent of all PCs sold in 2014. ) For 2015, Gartner expects a healthy 27 bump in Chromebook sales to 7. 3 million units. But assuming overall PC sales of 300 million this year, that’s still only 2. 4 percent of all PCs. Looking at the numbers, one other point stand out. The vast majority of Chromebooks sales in 2015, almost 83 percent, will be to customers in North America... . --- ### Understanding Dual-SIM Operations in Windows Phone 8.1 > Learn about understanding dual-SIM Operations in Windows Phone 8.1 in this post by Russell Smith. - Published: 2015-05-21 - Modified: 2024-09-04 - URL: https://petri.com/understanding-dual-sim-operations-in-windows-phone-8-1/ - Categories: Mobile - Tags: Lumia 640, Mobile, Nokia, Windows phone - Article Type: Overview Russell Smith shows us how to configure call forwarding in Windows Phone 8.1 to circumvent the limitations of dual standby SIM handsets. In this Ask the Admin, I'll explain how dual-SIM functionality works in Microsoft's new Lumia 640 handset and how to configure the Smart Dual SIM feature using Network+. Smartphones equipped with slots for a second SIM card are becoming more common in Europe and developing countries. There a couple of different ways that dual-SIM slots can be implemented and support must also be baked into the phone's operating system. If you read Microsoft Lumia 640 Review on the Petri IT Knowledgebase, then you'll know that I recently bought a Lumia 640, and now that I'm on the road again, I've added a second SIM card. But I was intrigued to find out a little more about how the technology works. Dual Active or Dual Standby? My first concern was whether adding a second SIM would considerably impact battery life, so I needed to find out more about dual active and dual standby configurations. The Lumia 640 has a single radio, making it a dual standby SIM handset, meaning that when you receive a call on one network, a caller dialling the number of the other SIM will get a busy signal. As you've probably already guessed, dual active configurations have two radios and are able to receive calls on both SIMs simultaneously. If you're speaking to somebody using the first SIM, then a caller will still be able to reach you during that conversation, giving you the option to take the call. Dual active configurations are more expensive to... --- ### Creating PowerShell Scheduled Jobs With The New-JobTrigger Cmdlet > PowerShell MVP Jeffery Hicks shows us steps for creating PowerShell Scheduled Jobs with the New-JobTrigger cmdlet. - Published: 2015-05-21 - Modified: 2024-09-04 - URL: https://petri.com/creating-powershell-scheduled-jobs-with-the-new-jobtrigger-cmdlet/ - Categories: PowerShell - Tags: Editor's Pick, Get-ScheduledJob, Intermediate, New-JobTrigger, New-ScheduledJobOption, Register-ScheduledJob - Article Type: How To The New-JobTrigger cmdlet in Windows PowerShell is a great way to set up scheduled jobs for better automation of daily tasks. PowerShell scheduled jobs is a feature that I don't think gets as much attention as it should. Although this feature has a few quirks, I think it improves productivity for a wide-majority of IT professionals. Because you've presumably invested time and resources in learning PowerShell, and perhaps you've started building useful library of tools, why not automate their execution? As an example, you may have a daily task that runs each morning to check servers for errors in the system event log. If you were smart, you learned PowerShell and wrote a script to do the work. But why should you have to manually run the script every morning when you could set it to run as a scheduled task? That's where PowerShell scheduled jobs come into play. PowerShell Scheduled Job Benefits and Uses A PowerShell scheduled job combines the benefits of using PowerShell with the ease of the task scheduler. If you're running Windows 8 or later, don't confuse the scheduled job cmdlets with the scheduled task cmdlets. They are completely separate and the latter requires Windows 8 or later. PowerShell scheduled jobs only requires PowerShell 3. 0, so if you're still on Windows 7, then you're good to go. Let me show you how this all works. Creating a PowerShell Scheduled Job Although it's possible to write a single PowerShell expression to set up a scheduled job, I'm going to break it down into steps. We first need a trigger. When do you want the job to execute? A benefit of a PowerShell scheduled job is that PowerShell does not... --- ### 4 Must-Learn Skills for Windows System Administrators > Jeff provides his must-learn skills for Windows System Administrators for a successful career, which include PowerShell and Microsoft Azure. - Published: 2015-05-20 - Modified: 2024-11-19 - URL: https://petri.com/4-must-learn-skills-for-windows-system-administrators/ - Categories: Windows Server - Tags: Career Advice, Containers, Desired State Configuration, Docker, DSC, Editor's Pick, Skills - Article Type: Opinion Jeff provides his must-learn skills for Windows System Administrators for a successful career, which include PowerShell and Microsoft Azure. During the recent PowerShell Summit in Charlotte, NC, I was part of a panel discussion on the future of the IT pro. The job and its duties that you have now will most likely change in the next few years. So unless you plan on retiring in the next few years, then there are some things you need to do if you plan on having a long and rewarding career as an IT professional. Let me also stress that I'm talking about your career, as the job you have today is not your career. If you limit yourself to only doing what you need to meet your current job, then your career will advance at a snail's pace. Although you probably feel secure, there's no guarantee that your job will be there tomorrow. You could be out of job by no fault but your own. If you haven't taken steps to actively manage your career, then how long do you think it will take to find the next job that's really something you want? I tell you all of this not to frighten you but arouse your passion. If you aren't passionate about IT and advancing your career, then you might as well move on now, and I hear Chipotle is expanding in the US. All kidding aside, this means you might have to invest some time and money. If you wait for your job or employer, then you've waited too long and you're falling behind your peers. You have... --- ### Understanding Azure Availability Sets > Find out about the differences between Azure Availability Sets and Affinity Groups, and when you should use which. - Published: 2015-05-20 - Modified: 2024-09-04 - URL: https://petri.com/understanding-azure-availability-sets/ - Categories: Microsoft Azure - Tags: Availability Sets, Editor's Pick, High Availability - Article Type: How To Find out about the differences between Azure Availability Sets and Affinity Groups, and when you should use which. In a previous Ask the Admin, Automate Domain Member Server Deployment in Microsoft Azure, I updated my PowerShell script for deploying domain controllers in Azure VMs by joining the new VM to an Affinity Group, something that's beneficial for performance and also helps to keep costs to a minimum. For more information on storage performance and Affinity Groups, see Optimizing Azure Storage for Windows Server Virtual Machines on the Petri IT Knowledgebase. Today I'm going to explain when you should use Availability Sets and how they differ from Affinity Groups. While Affinity Groups are designed to group resources together in a datacenter, Availability Sets do kind of the opposite, making sure that VMs are not grouped in the same fault or update domain. Just to add to the confusion, Affinity Groups and Availability Sets are not mutually exclusive, as they can be used together or separately. But if you want to benefit from the 99. 95% Service Level Agreement (SLA) offered by Azure, then you will need to use Availability Sets in your deployments. Azure Fault and Update Domains Microsoft periodically updates the underlying Azure fabric that's used to host VMs to patch security vulnerabilities and improve reliability and performance. These updates, which Microsoft refers to as planned maintenance events, are often performed without any impact to guest VMs. Sometimes, however, guest VMs must be rebooted to complete an update. To reduce the impact on guest VMs, the Azure fabric is divided into Update Domains to ensure that not all guest... --- ### Leak Highlights Microsoft's Quiet Transition from the Old to the New > A recent leak of an email solution called Flow reinforces an emerging view of Microsoft as being on the cusp of a new era of productivity. - Published: 2015-05-20 - Modified: 2024-09-04 - URL: https://petri.com/leak-highlights-microsofts-quiet-transition-from-the-old-to-the-new/ - Categories: Mobile - Tags: Microsoft Office, News - Article Type: Opinion A recent leak reinforces an emerging view of Microsoft as being on the cusp of a new era of productivity. That is, while Microsoft is working to move its most successful traditional software products to popular mobile platforms and to the cloud, it is also working behind the scenes to effectively undercut those offerings with entirely new productivity solutions that address new scenarios and have no direct link to its past. This transition from traditional software products to what Microsoft calls the "mobile first, cloud first" era is a delicate balancing act. The software giant must continue reassuring its customers of a path forward while convincing shareholders and potential new customers that it is not wedded to the past. And today, Microsoft is known mostly for the past: Windows, which defined the personal computing industry for over 25 years, and Office, the entrenched productivity suite that in more recent years became the company's single biggest business. But both are being assaulted by mobile devices and cloud services, rival platforms that aren't beholden to the past or increasingly outdated ways of doing things. Microsoft has credibly and publicly responded by making its software—especially Office and its other productivity offerings—available on popular mobile platforms. As of today, you can get high-quality Office apps on iPhone, iPad, Android handsets and tablets, the Mac, and on the web, in addition to the expected entries on Windows and Windows Phone. And for individuals, these offerings are completely free. On the surface, these... --- ### Troubleshooting Microsoft Azure Automation Runbooks > Learn tips for troubleshooting Microsoft Azure Automation Runbooks by learning how to access job history and more. - Published: 2015-05-19 - Modified: 2024-11-19 - URL: https://petri.com/troubleshooting-microsoft-azure-automation-runbooks/ - Categories: Microsoft Azure - Tags: Automation, Editor's Pick, Runbooks, Set-MsolUser - Article Type: How To Learn how to access Azure Automation job history to troubleshoot problems with runbooks. In this Ask the Admin, I'll walk you through how I solved a problem that was preventing an Azure Automation runbook from starting. Azure Automation allows tasks to be scheduled directly in the cloud, using the same runbook-based automation infrastructure as System Center 2012 R2 Orchestrator and Windows Azure Pack. For more information on Azure Automation, see How to Use Microsoft Azure Automation on the Petri IT Knowledgebase. Recently I'd been taking a look at the costs of running a test lab in Azure and noticed that some virtual machines were left running for several days. I usually remember to manually shut down VMs once I'm finished with them, but there are occasions when I forget. But I felt safe in the knowledge that an automation runbook that I'd set up last year would automatically shut down any VMs still running at the end of the day. However it became clear that either the runbook wasn't executing or starting, but also then failing to shut down the VMs. Job Summary and History A job summary and history is generated each time a runbook is launched and can be accessed using the Azure management portal. Log in to the Azure management portal using a tenant administrator account. In the management portal window, scroll down the blue panel on the left and click AUTOMATION. On the automation screen on the right, click the automation account that hosts the runbook. On the automation account screen, switch to the RUNBOOKS tab... . --- ### New Features in Office 365 Groups > Discover some of the exciting new features in Office 365 Groups, including real-time collaboration and improvements to threaded conversations and calendars. - Published: 2015-05-19 - Modified: 2024-09-04 - URL: https://petri.com/new-features-office-365-groups/ - Categories: Microsoft 365 - Tags: Microsoft Ignite 2015 - Article Type: Overview Russell Smith walks us through some news and exciting features in Office 365 Groups, which provides teams with more collaboration enhancements. In this Ask the Admin, I'll run through the new Office 365 Groups capabilities announced at the recent Microsoft Ignite conference in Chicago. Groups were introduced to Office 365 in September 2014, and I talked about how to create a Group in Create an Office 365 Group in Outlook. com on the Petri IT Knowledgebase. While the capabilities may seem nothing out of the ordinary, Microsoft has been busy working on new Groups features that are integrated into Outlook 2016 Preview and Office 365 Online, and I want to outline some of the improvements that have already been rolled out and that are coming later in the year. The Rise of Dynamic Teams Groups are designed to help ad-hoc and dynamic teams collaborate better and replace some existing technologies, such as Exchange Public Folders and Yammer Groups, to create a unified means for organizing project information. Groups are objects stored in Azure Active Directory (AAD) and can be used across the current suite of applications, with more to be added in the near future. Office 365 Groups (Image Credit: Microsoft) The current implementation is still a work in progress, but some of the key benefits of Groups include a single definition across the entire Office 365 suite, they are public by default, information can be shared with non-members, users can provision Groups without involving IT with simple management, plus there's a context and history, allowing new members to quickly get up to speed without... --- ### Tech Firms Urge Obama to Reject Encryption Back Doors > Leading tech firms, civil society organizations and security policy experts are calling on US president Barack Obama to reject anti-encryption proposals. - Published: 2015-05-19 - Modified: 2024-09-04 - URL: https://petri.com/tech-firms-urge-obama-to-reject-encryption-back-doors/ - Categories: Security - Tags: News - Article Type: News Leading tech firms, civil society organizations and security policy experts are calling on US president Barack Obama to reject encryption back door proposals. Apple, Google, Microsoft and other leading tech firms have joined a consortium of civil society organizations and security and policy experts in calling on US president Barack Obama to reject proposals to require US companies to offer encryption back doors in mobile devices and software. Such a move, the group says, would be insecure and wrong-headed, and lead to abuse, despite the obvious advantage for law enforcement. "Introducing intentional vulnerabilities into secure products for the government's use will make those products less secure against other attackers," a letter to president Obama reads. "We urge you to reject any proposal that U. S. companies deliberately weaken the security of their products. We request that the White House instead focus on developing policies that will promote rather than undermine the wide adoption of strong encryption technology. Such policies will in turn help to promote and protect cybersecurity, economic growth, and human rights, both here and abroad. " As the letter notes, various statements by administration officials have suggested that Obama should require American companies to not use encrypted products that don't have a governmental back door, while others have even called on Congress to ban such products in the US. "I don't want a back door," said US Navy admiral Michael Rogers, who serves as the Commander of the US Cyber Command, Director of the National Security Agency, and Chief of the Central Security Service. "I want a front door. And I want the front door to have multiple locks. Big... --- ### How Many CSVs Should a Scale-Out File Server Have? > Aidan Finn discusses a common question around how many CSVs should a Scale-Out File Server have. - Published: 2015-05-18 - Modified: 2024-09-04 - URL: https://petri.com/how-many-csvs-should-a-scale-out-file-server-have/ - Categories: Windows Server 2012 - Tags: Failover Clustering, SMB 3.0, SMB Multichannel, SOFS, storage spaces - Article Type: How To Aidan Finn explains how many cluster shared volumes (CSVs) you should have in a Windows Server 2012 R2 Scale-Out File Server. I'm often asked the same question about how many virtual disks or cluster shared volumes my shared-JBOD Scale-Out File Server (SOFS) should have. I'll answer this question in detail and provide a technical explanation for the logic in this post. Note that the scenario that I am discussing uses Windows Server 2012 R2 and a shared JBOD SOFS design with Storage Spaces. Related: What is Microsoft's Storage Spaces? How Hyper-V Hosts Connect to a Scale-Out File Server First, we need to understand how a Hyper-V host connects to the CSVs of a SOFS cluster via SMB 3. 0. Let's start with a simple SOFS design that has two nodes, one JBOD, and one mirrored virtual disk configured as a CSV. The CSV is owned by one of the SOFS nodes, which is represented by SOFS Node 1 in the image below. Any writes to the mirrored virtual disk are done by this owner node. If the other node, SOFS Node 2, needs to perform IOs with this CSV, then they must be proxied by the other node via redirected IO across the SOFS cluster's networks. A correctly configured SOFS cluster will be set up as follows: DNS servers will be entered in the IPv4 configuration of the storage NICs Client and cluster communications will be enabled on the cluster networks that use the storage NICs These two configurations cause the SOFS to register a record in DNS for its management  of the IP address and the addresses of the storage networks. In this... --- ### What You Need to Know About Windows Server 2016 Containers > Aidan Finn summarizes what he learned at Ignite 2015 about new Windows Server Containers that are coming to Windows Server 2016. - Published: 2015-05-18 - Modified: 2024-09-04 - URL: https://petri.com/what-you-need-to-know-about-windows-server-2016-containers/ - Categories: Windows Server 2016 - Tags: Containers, deployment, Docker, Editor's Pick, Microsoft Ignite 2015 - Article Type: Overview Learn about what's new about Windows Server containers, which are coming soon to Windows Server 2016. Microsoft recently announced their intention to add support for the deployment of server applications via containers in Windows Server 2016. In my previous post, I discussed what a container was at a very conceptual level, but if you're like me, then you were left scratching your head about this technology. Microsoft's Taylor Brown (Hyper-V team) and Arno Mihm (Operating Systems group) took the stage at Microsoft Ignite to explain what we will get in Windows Server 2016. Related: Microsoft Announces Hyper-V Containers The Reason for Containers Let's talk about the past so we can understand the future. Physical servers: We typically install one application on a single operating system that runs on one server. This is the slowest way to deploy applications. Virtualization: We deploy many virtual machines on one physical host. There is one guest OS in each virtual machine, and we normally install one service in each virtual machine. These virtual machines are pretty quick to deploy, but they still require OS deployment steps that take some time. Server App-V: Odds are that you have only heard of this Microsoft technology if you deployed Service Templates using System Center Virtual Machine Manager (SCVMM). Applications are deployed using a bubble. This simplifies the deployment a little more, but there's still one application per guest OS in a virtual machine, and Server App-V does not provide any additional application isolation. If you work in a DevOps environment or if you have colleagues that are intensive test-dev types, then all of these scenarios... --- ### Security Expert Claims He Hacked Airplanes While in Flight - Published: 2015-05-18 - Modified: 2024-11-19 - URL: https://petri.com/security-expert-claims-he-hacked-airplanes-while-in-flight/ - Categories: Security - Tags: News - Article Type: News A controversial security expert who was removed from a United Airlines flight in April now claims that he had previously taken control of an airplane while in flight. But these claims are being challenged by other researchers, as are his methods, which seem to be aimed more at self-promotion than public safety. Chris Roberts, a security researcher at One World Labs, first told the Federal Bureau of Investigation (FBI) in February that he hacked the in-flight entertainment system on an airplane while in flight and was able to command the plane to climb and briefly change course. But when he started tweeting about his activities in April, he was finally detained. A related search warrant application that details his interactions with the FBI was recently made available publicly. "He stated that he thereby caused one of the airplane engines to climb resulting in a lateral or sideways movement of the plane during one of these flights," the search warrant application explains. "He also stated that he ... used ... software to monitor traffic from the cockpit system ... after comprising/exploiting or 'hacking' the airplane's networks. " Roberts told the FBI that he had hacked into the in-flight entertainment systems on Boeing 737 and 757 and Airbus A-320 aircraft "15 to 20 times. " His alleged motivation was to highlight the security issues in these systems "because he would like the vulnerabilities fixed. " But when nothing was done to address his complaints, Roberts started tweeting (posting to Twitter) that he... --- ### Test Active Directory User Accounts with PowerShell > PowerShell MVP Jeffery Hicks shows us how to test Active Directory user accounts with PowerShell. - Published: 2015-05-15 - Modified: 2024-09-04 - URL: https://petri.com/test-active-directory-user-accounts-with-powershell/ - Categories: PowerShell - Tags: Active Directory, Advanced, Editor's Pick, Get-ADUser, Scripting - Article Type: How To PowerShell MVP Jeffery Hicks shows us how to test Active Directory user accounts with a custom function in PowerShell. It is probably no surprise that Active Directory is something that IT pros love to automate with PowerShell. Certainly, creating 100 new user accounts from a CSV file with PowerShell is pretty simple. Part of that process may be testing for an existing user account, which I'll show you how to do in this article. The easy approach is to run Get-ADUser and if there is an error because the user isn't found, it is okay to proceed. ​Try { $user = Get-ADUser fbar -ErrorAction Stop $True } catch { $False } Another test you might want to run is to test a specific property. You might want to know whether or not it's defined, or perhaps you need to test if it is a certain value. It isn't too difficult to get the user account and property. ​$user = get-aduser jfrost -Properties department if ($user. department) { $True } else { $False } Given these needs, I decided to write a Test-ADUser function, which I am happy to share with you. #requires -version 4. 0 #requires -module ActiveDirectory Function Test-ADUser { --- ### How to Install the full UI on Windows Server 2016 > Learn how to install the full UI on Windows Server 2016, which is not the default option during installation. - Published: 2015-05-15 - Modified: 2024-11-19 - URL: https://petri.com/install-the-full-ui-on-windows-server-2016/ - Categories: Windows Server 2016 - Tags: Microsoft Ignite 2015, TP2, TPv2, User Interface, Windows Server Technical Preview - Article Type: How To Aidan Finn shows us how to install the full user interface on Windows Server 2016, which is not the default option during installation. If you should install the Windows Server 2016 Technical Preview 2 (TPv2), then you're in for a big surprise. For every server that's installed with TPv2, there's no full UI. Welcome to Jeffery Snover's (@jsnover), Lead Architect for the Windows Server Division at Microsoft, vision for Windows Server. No GUI by Default When you install recent versions of Windows Server, you have a choice of installation type: Full user interface: the Windows UI that you have known all your career Server Core: The stripped back to CMD and PowerShell UI that Microsoft wants us to use Microsoft has evangelized use of Server Core since the launch of Windows Server 2008. Many of us tried it, found it unmanageable, and reverted back to a full installation. It wasn't that we hated remote administration or automation, the presence of a UI on the server has absolutely nothing to do with that. The issue was that it is impossible to troubleshoot a server, as was clearly demonstrated at Microsoft Ignite during one of Snover's Nano Server presentations when a new server failed to join a cluster. Related: Microsoft Announces Nano Server The message of "treat your servers like cattle, not like pets" line falls flat when you don't run a massive organization made up of born-in-the-cloud applications. When you live in a world with dodgy applications, screaming bosses, and bad drivers and firmware being approved in the Windows Server HCL, then rescuing servers becomes important. Our servers are not pets for most us,... --- ### Paul Thurrott's Short Takes: May 15, 2015 > Because I said so, that's why, this week's other news includes Microsoft's complex new servicing plan for the many Windows 10 product editions. - Published: 2015-05-15 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-may-15-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because I said so, that's why, this week's other news includes Microsoft's complex new servicing plan for the many Windows 10 product editions, a rare win for Xbox One, Microsoft bricks leakers' consoles, Azure comes out ahead of AWS and Google in new report, and Supreme Court may soon rule on Android's illegal market gains. "Windows Phone models no longer attractive in Vietnam" So it looks like Vietnam will be Windows Phone's Vietnam. Understanding Microsoft's servicing plans for Windows 10 is going to require an advanced degree In Microsoft Announces the Windows 10 Product Editions, I described Microsoft's insane plan to increase the number of product editions, or SKUs, that it will offer for Windows 10. But that is just the tip of the complexity: In Piecing together the Windows as a Service puzzle for Windows 10, my Windows Weekly co-host Mary Jo Foley further explains which servicing options each SKU will get. And if your day has gotten off to a bad start already, you'll need to sit down—and potentially ingest coffee and/or some aspirin—before trying to get through this one. You see, these different SKUs aren't all straight supersets of each other. So while Windows 10 Education appears to be an education-oriented version of Windows 10 Enterprise, it in fact receives the same level of servicing as does Windows 10 Pro—a choice between immediate updates via Windows Update ("current branch") or "Current Branch for Business," which lets the organization defer some updates. And that's just... --- ### Windows 10 Continuum: Could Your Next Phone Also Be Your Next PC? > Russell Smith explains how Windows 10 Continuum might change the landscape of personal computing for end users. - Published: 2015-05-14 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-continuum-could-your-next-phone-also-be-your-next-pc/ - Categories: Mobile - Tags: Microsoft Ignite, Microsoft Ignite 2015, News - Article Type: Opinion Russell Smith explains how Windows 10 Continuum might change the landscape of personal computing for end users. One of the biggest cheers at last week's Microsoft Ignite 2015 conference in Chicago was reserved for Joe Belfiore's demo of Windows 10 Mobile Continuum, a feature that takes advantage of Windows Universal Apps to provide a seamless user experience when switching between different displays. Belfiore demonstrated how the Microsoft Office Word app, running on Windows 10 Mobile, scaled when the device was connected to a large screen, providing the same experience as on a PC; along with keyboard and mouse, which adapt from touch mode to work like you'd expect a PC mouse and keyboard to behave. With many already relying on smartphones as their primary computing device, and tablet sales in decline, when your notebook is due for replacement you might not be looking for an Ultrabook convertible, but instead a new phone with Continuum support. And there's little reason to doubt that today's mobile devices can provide an adequate experience for everyday computing tasks. Snapdragon's 400 1. 2GHz quad-core processor, which powers Microsoft’s Lumia 640 and a host of other portable devices, is already considered old technology, but provides a smooth experience and is capable of multitasking, or at least the illusion of multitasking that's presented by the operating system. Windows Mobile 10 Start menu on a large screen (Image Credit: Microsoft) Windows Phone 8. 1 running on the Snapdragon 400 doesn't break out into a sweat streaming music to a Bluetooth speaker, maintaining an IPsec VPN, while running other apps as... --- ### Windows as a Service Requires More Trust Than Microsoft May Deserve > Microsoft has pushed the notion of Windows as a Service. But this name has nothing to do with subscription services. Instead, it's all about trust. - Published: 2015-05-14 - Modified: 2024-11-19 - URL: https://petri.com/windows-as-a-service-requires-more-trust-than-microsoft-may-deserve/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Microsoft has pushed the notion of Windows as a Service. But this name has nothing to do with subscription services. Instead, it's all about trust. Over the course of two recent trade shows—Build 2015, a developer-oriented show that was held in San Francisco, and Ignite 2015, its new IT-focused event, held in Chicago—Microsoft has pushed the notion of Windows as a Service. But this name has nothing to do with subscription services. Instead, it's about getting as many customers as possible up to date with bug fixes, security patches, and new features. It's a laudable goal. The question is whether Microsoft has earned the trust it needs for individuals, businesses, and other organizations to put the fate of their personal computing devices in its hands. Today, as you know, Microsoft typically ships security and other updates on the second Tuesday of every month, an event known as Patch Tuesday. It will also ship updates "out of band"—which is to say, not on Patch Tuesday—as needed. For example, Microsoft will occasionally address a Zero Day security threat when the fix is completed, rather than waiting for the next Patch Tuesday. But increasingly, the software giant is updating its products at what we might call "Internet speed," a term that I think has a lot more meaning today in this era of pervasive connectivity than it did when it was coined 20 years ago in the age of Netscape and the dial-up Internet. This is the model followed by pure cloud players like Google. But Microsoft has also employed this update model for its own cloud services. The trick for Microsoft, of course, is... --- ### Understanding Federated Resources, Forward Syncing, and Loose Coupling in Office 365 > Russell Smith helps us understand how Federated Resources, Forward Syncing, and Loose Coupling in Office 365 work to manage user and group identities. - Published: 2015-05-14 - Modified: 2024-09-04 - URL: https://petri.com/understanding-federated-resources-forward-syncing-loose-coupling-office-365/ - Categories: Microsoft 365, Office - Tags: federated resources, Microsoft Ignite, Microsoft Ignite 2015 - Article Type: Overview Learn about how Office 365 manages user and group identities under the hood using Azure Active Directory. Buried among one of the sessions on Office 365 Groups at last week's Microsoft Ignite conference in Chicago, I came across some interesting architectural information about how Office 365 manages identity data between its different services. In this Ask the Admin, I'm going to share the basic concepts of how Office 365 group and user objects are managed under the hood, which can be useful to know when troubleshooting or administering Office 365. Azure Active Directory Azure Active Directory (AAD) is the identity management nucleus of Office 365. Regardless of the identity model that you decide to use with Office 365, i. e. cloud, synchronized, or federated identity, AAD always maintains a single source of truth for group and user identities in the cloud. What may not be immediately obvious is that Office 365 services, such as Exchange and SharePoint, are able to function independently, relying on groups and notifications to make them intelligently aware of each other. This lack of dependencies between services has been baked into the design of Office 365 from the get go, to ensure maximum flexibility. Federated Resources In practice, this requires that Exchange and SharePoint maintain their own private AD instances, containing replica objects from AAD. This may seem counterintuitive at first, but it's important to understand that these additional AD databases can never be updated directly by users or tenant administrators. No matter from which part of the Office 365 management interface a new user or group is created, that information... --- ### PowerShell Problem Solver: Where is that IP? > In this PowerShell Problem Solver, Jeff Hicks shows us how to easily find the geographic location of an IP address with the New-WebServiceProxy cmdlet. - Published: 2015-05-13 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-ip/ - Categories: PowerShell - Tags: Advanced, Get-Member, Invoke-RestMethod, IPv4, IPv6, New-WebServiceProxy, PowerShell Problem Solver, Scripting - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks shows us how to easily find the geographic location of an IP address. In a previous PowerShell Problem Solver article, I used PowerShell to convert a ctime value to a proper datetime format. I had a list of IP addresses as part of the same troubleshooting process, and this is something you also might come across in a log file. I wanted to be figure out where the IP address was coming from. For example, I might have an IPv4 address like this: ​ What is the IP address' country of origin? Fortunately, I knew of a website that provides that information. Although I initially accessed this from the website, I wanted to access this information from PowerShell. To simplify this process, PowerShell 3. 0 introduced a new cmdlet called New-WebServiceProxy. You can use the cmdlet to create a special type of object that acts as a proxy to the web service. You don't have to figure out any arcane syntax to use the web service. Everything is exposed as an object that's complete with method members. Let me show you. First, I need to create the proxy object. ​ Most of the time the proxy properties don't really matter. Proxy properties in Windows PowerShell. (Image Credit: Jeff Hicks) What's really interesting is what I can do with the proxy object. Pipe the object to Get-Member and discover its methods. Piping our proxy object to Get-Member in Windows PowerShell. (Image Credit: Jeff Hicks) You might also need to read any documentation from the associated site about these... --- ### What is Microsoft's Storage Spaces Direct? > Learn about this new Windows Server 2016 feature, Storage Spaces Direct (S2D), that was explained at Microsoft Ignite 2015. - Published: 2015-05-13 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-storage-spaces-direct/ - Categories: Windows Server, Windows Server 2016 - Tags: Converged, Failover Clustering, Hyper-Converged, Hyper-Convergence, Microsoft Ignite 2015, Private Cloud, RDMA, S2D, SMB 3.0, SMB Direct, storage spaces, Storage Spaces Direct - Article Type: Overview Aidan Finn provides us a detailed look into Microsoft's latest feature in Windows Server 2016, Storage Spaces Direct (S2D). Microsoft started discussing a new feature of Windows Server 2016 called Storage Spaces Direct at Microsoft Ignite 2015. I'll explain this new technology in detail, along steps on how you will be able to use it when Windows Server 2016 is released. Windows Server 2012 R2 Scale-Out File Server Windows Server 2012 and Windows Server 2012 R2 introduced us to an improved new form of Software-Defined Storage from Microsoft called a Scale-Out File Server (SOFS). Typically used with Hyper-V, the SOFS is a tier of storage, separated from the compute tier (Hyper-V). SOFS is typically made up of: A set of clustered file servers that make up a transparent failover file server cluster. The compute tier connects to the SOFS using SMB 3. 0 networking. The virtual machine files are stored in files shares that are stored in physical disks in the SOFS. One or more JBODs that each SOFS cluster node is connected to using SAS cables. Storage Spaces is used to aggregate the SAS disks of the JBODs. Virtual disks are created from the aggregated disks, providing resiliency against disk or enclosure failure, as well as enabling SSD/HDD tiered storage and performance enhancing write-back caching. A shared JBOD Scale-Out File Server (Image Credit: Microsoft) When implemented correctly, a SOFS is a fantastic way to deploy small and affordable clustered storage, and it's also a great way to deploy huge amounts of Hyper-V storage for public or private cloud installations. Some experiences, however, were not so good: Some... --- ### Facebook Starts Publishing Sponsored News Articles > Facebook has begun testing publishing news articles directly into the Facebook news feed, starting with iPhone. The goal? To monetize mobile. - Published: 2015-05-13 - Modified: 2024-09-04 - URL: https://petri.com/facebook-starts-publishing-sponsored-news-articles/ - Categories: Mobile - Tags: Facebook, iPhone - Article Type: News Facebook has begun testing publishing news articles directly into the Facebook news feed, starting with iPhone. The goal? To monetize mobile. If you are already incensed by the ever-more-prominent ads or the constant promotion of "top stories" over "most recent" in Facebook, their next move could prove even less popular: today, the social networking giant has begun testing publishing news articles directly into the Facebook news feed, starting with iPhone. The goal? To figure out a way to monetize mobile. Of course, Facebook isn't marketing it as such. Instead, it is pushing this new feature, called Instant Articles, as a win for users. "Fundamentally, this is a tool that enables publishers to provide a better experience for their readers on Facebook," Facebook chief product officer Chris Cox says in a canned quote. "Instant Articles lets them deliver fast, interactive articles while maintaining control of their content and business models. " Put another way, Facebook users are going to have to get used to even more content that pays the bills rather than provides them with updates from their friends and family. And because Facebook's astonishing audience of over 1 billion users is increasingly accessing the service via smart phones, these mobile devices will be the next battlefront. Google and other ad sellers have struggled for years to create mobile ads that make sense: on a PC there is more onscreen real estate for ads, and those searches tend to be more general, which helps the ads be more generally useful. But mobile has unique challenges. Users tend to need something very specific when they are out and about with... --- ### Microsoft Ignite 2015 Conference Recap > Editorial Director Jeff James put together his Microsoft Ignite 2015 conference recap by talking to IT pros, vendors, authors, and other show attendees. - Published: 2015-05-12 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-ignite-2015-conference-recap/ - Categories: Windows Server, Windows Server 2016 - Tags: Editor's Pick, Microsoft Ignite, Microsoft Ignite 2015, Microsoft Ignite 2016, News - Article Type: Opinion Want to know what Microsoft Ignite 2015 was like, but couldn't make the trip? Editorial Director Jeff James has you covered with his Microsoft Ignite 2015 event wrap-up. I’ve returned from my trip to Microsoft Ignite 2015, and — like the rest of the 23,000+ people that attended the event — it’s taken me a while to put the show in perspective. While I’d consider the event a success for Microsoft, it’s clear that Ignite has lots of room for improvement when it returns to Chicago in 2016. So if you weren’t able to attend Microsoft Ignite 2015 in person, hopefully my recap will give you a sense of what you missed. If you did manage to make your way to Ignite this year, I’d love to hear your thoughts as well, so please add a comment at the end of this blog post. Microsoft News from Ignite I’ve been attending Microsoft TechEd for years, and I can honestly say that the Microsoft Ignite keynote had more news, new products, and new services announced than any of them. There was a lot of news for Microsoft to work through in the Monday morning keynote, which ran close to a whopping 3 hours. Microsoft Office General Manager Julia White discussing Office Delve at Microsoft Ignite 2015. (Photo: Microsoft) While the keynote was jam-packed with information, two of the keynote highlights — mainly Office 365 General Manager Julia White’s (@julwhite) Office Delve and Skype for Business broadcasting demo, and Microsoft Corporate Vice President Brad Anderson’s (@InTheCloudMSFT) portion focused on Windows Server 2016, Microsoft Azure Stack, and Microsoft Advanced Threat Analytics (ATA) — would have benefitted from... --- ### PowerShell Management at Scale > Need to automate large, complex IT management tasks? PowerShell management at scale could be just what you're looking for. - Published: 2015-05-12 - Modified: 2015-05-12 - URL: https://petri.com/powershell-management-scale/ - Categories: PowerShell - Tags: Editor's Pick, get-eventlog, Intermediate, start-job - Article Type: How To Petri IT Knowledgebase Contributing Editor Jeff Hicks demonstrates how to use PowerShell management at scale to get large, complicated tasks accomplished. Another question I heard at Microsoft Ignite 2015 and one that I come across frequently is about the best way to handle large-scale tasks. In other words, what is the most efficient way to handle a large task that might take a very long time to complete. My answer will sound like your Mom, "It depends. " Almost always the question is about how to create a multi-threaded solution to a PowerShell problem. There's no right way to accomplish this goal. Although I am going to demonstrate a variety of techniques, much will depend on your task, how you phrase it, and your PowerShell skill level. To demonstrate, I have a typical IT pro task. Let's grab all of the errors from the system event log from a number of computers in the domain. The first inclination is to simply use Get-Eventlog. ​$computers = "chi-dc01","chi-dc02","chi-dc04","chi-hvr2","chi-core01","chi-web02" $data = Get-Eventlog -LogName System -EntryType Error -ComputerName $computers Assuming all of the computers are online, this will work. In my domain, $data contains over 12,000 entries and took about eight minutes to complete. If I have other work to do, then perhaps eight minutes isn't that big a deal. Don't forget you could also use Start-Job to kick this off in the background and collect the results later. But let's say you want the data now. What are your options? The first step is to identify the potential bottleneck. What part of the PowerShell expression is most likely responsible in determining how long the command will... --- ### Verizon to Acquire AOL for $4.4 Billion > Verizon announced this morning that it would acquire Internet pioneer AOL for $50 per share in a deal valued at about $4.4 billion. - Published: 2015-05-12 - Modified: 2024-09-04 - URL: https://petri.com/verizon-to-acquire-aol-for-4-4-billion/ - Categories: Cloud Computing - Article Type: News Verizon announced this morning that it would acquire Internet pioneer AOL for $50 per share in a deal valued at about $4. 4 billion. Verizon says that the acquisition will further its aim of marrying ad-supported digital content to its network delivery systems. "Verizon's vision is to provide customers with a premium digital experience based on a global multiscreen network platform," Verizon chairman and CEO Lowell McAdam said in a prepared statement. "This acquisition supports our strategy to provide a cross-screen connection for consumers, creators and advertisers to deliver that premium customer experience. " While there will be a lot of talk about synergy and integration—shades of the failed AOL-Time Warner merger from 15 years ago—this deal is in fact fairly straightforward. AOL, which had previously pioneered Internet and online access as Q-Link and America Online in decades past, has evolved into a company that sells ads against online content such as its own branded web sites and video. And Verizon, seen as just a "dumb pipe," wants a piece of the business it is delivering for others. The Verizon press release announcing the deal highlights some of AOL's key content assets—The Huffington Post, TechCrunch, Engadget, MAKERS and AOL. com among them—but this deal is really about the advertising dollars. AOL has "a scaled, mobile-first platform offering directly targeted at what eMarketer estimates is a nearly $600 billion global advertising industry," Verizon notes. "At Verizon, we've been strategically investing in emerging technology, including Verizon Digital Media... --- ### What’s New in Windows Server 2016 Hyper-V > Aidan Finn gives up a recap of what’s new in Windows Server 2016 Hyper-V following Microsoft's Ignite 2015 conference in Chicago. - Published: 2015-05-11 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-windows-server-2016-hyper-v/ - Categories: Hyper-V - Tags: Failover Clustering, Microsoft Ignite, Microsoft Ignite 2015, shielded virtual machines - Article Type: Overview Aidan Finn outlines the new features of Windows Server 2016 Hyper-V that were announced at Microsoft Ignite 2015. Following TechEd Europe 2015, I posted an article that listed new features of the next version of Hyper-V in Windows Server 2016. Recently, I also reported that Microsoft would be providing a new headless installation of Windows Server 2016, called Nano Server, which would be optimized for cloud infrastructure and born-in-the-cloud applications. Microsoft also recently announced that Windows Server 2016 would have support for containers, including support from Hyper-V for a more secure deployment model. The announcements continued at Ignite 2015, as Microsoft released more information on what new Hyper-V features are included in the Technical Preview 2 release of Windows Server 2016. Shielded Virtual Machines A big hindrance to adoption of cloud services is trust. This can also be an issue for enterprise deployments, where some organizations may not trust the fabric administrators, where they choose to deploy physical servers instead. Windows Server 2016 provides a new feature where virtual machines are shielded: Virtual hard disk encryption via a virtual TPM chip in the virtual machine and BitLocker enabled in the guest OS Encrypted in-flight virtual machines (Live Migration) Preventing access to memory or code of the virtual machine, at rest or running This feature is available in two modes, with a service called the Host Guardian Service (HGS) running in a dedicated AD forest managing virtual machine security: Admin-trusted attestation: This is the easiest model to deploy. Hosts are placed into a group and the HGS is configured to only allow virtual machines on members of this group. Hardware-trusted attestation:... --- ### Building a PowerShell Ping Sweep Tool: Adding a Port Check > Continuing his article series on building a PowerShell ping sweep tool, PowerShell MVP Jeff Hicks shows us how to add a port check to our existing tool. - Published: 2015-05-11 - Modified: 2024-09-04 - URL: https://petri.com/building-a-powershell-ping-sweep-tool-adding-a-port-check/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, ping command, PowerShell Ping Sweep Tool, Scripting - Article Type: How To In this final installment in this article series on building a PowerShell ping sweep tool, Jeff Hicks shows us how to easily add a port check to our existing tool. Over the last few articles on the Petri IT Knowledgebase, I've been walking you through the process of creating a PowerShell-based tool that you could use to ping a range of subnet addresses. I hope you've been following along and if not, then take a few minutes to get caught up. Hopefully you'll notice I've followed an iterative process, where I started with a basic command and slowly added pieces onto the tool. If I had tried to write everything all at once and then test, then it's more than likely that something would not work, and it might take longer to figure out why. Today, I want to add the final piece to the tool, where we'll add a port check to our existing tool. PowerShell Ping Sweep Tool Article Series Building a Ping Sweep Tool with PowerShell PowerShell Ping Sweep Tool: Adding Parameter Validation Adding Trace Information to a PowerShell Ping Tool Identifying a Computer Name with a PowerShell Ping Sweep Tool Building a PowerShell Ping Sweep Tool: Adding a Port Check Philosophically, PowerShell tools, that is scripts and functions, should be designed to do one thing and write a single object type to the pipeline. One of the features I want to add is a quick port check. On one hand, this seems like it should be a completely separate tool. But I'm going to limit my port scan to a single user-defined port. My assumption is that you might want to use the... --- ### China Smartphone Market Contracts > The market researchers at IDC say the China smart phone market contracted in the first quarter, the first time it has done so in six years. - Published: 2015-05-11 - Modified: 2024-09-04 - URL: https://petri.com/china-smart-phone-market-contracts/ - Categories: Mobile - Tags: Mobile - Article Type: News The market researchers at IDC say the China smart phone market contracted in the first quarter, the first time it has done so in six years. Though China is the world’s largest market for smart phones, this doesn’t necessarily suggest that a worldwide slowdown in smart phone sales is imminent, as emerging markets should pick up the slack. “Smartphones are becoming increasingly saturated in China,” an IDC statement notes. “China is oftentimes thought of as an emerging market but the reality is that the vast majority of phones sold in China today are smartphones, similar to other mature markets like the US, UK, Australia, and Japan. Just like these markets, convincing existing users as well as feature phone users to upgrade to new smartphones will now be the key to further growth in the China market. ” According to IDC, smart phone sales slowed 4 percent year-over-year—which is the only meaningful way to measure sales, or 8 percent quarter-over-quarter. Overall, hardware makers sold 98. 8 million smart phones in China in the quarter. China overtook the United States to become the world’s largest market for smart phones. Since then, handset makers have tried to satisfy the sometimes unique needs of this market, while China-based concerns like Xiaomi and Huawei have come out of nowhere to challenge Samsung and Apple on the global stage. Apple became the biggest seller of smart phones in China in the first quarter, IDC says, surpassing Xiaomi, which has modeled itself... --- ### What was Microsoft Ignite 2015 Really About? > What was Microsoft Ignite 2015 really about? Jeff Hicks does some keyword analysis on the Ignite session catalog and comes up with some interesting data. - Published: 2015-05-08 - Modified: 2024-09-04 - URL: https://petri.com/what-was-microsoft-ignite-2015-really-about/ - Categories: Windows Server 2016 - Tags: Microsoft Ignite, Microsoft Ignite 2015 - Article Type: Opinion Petri IT Knowledgebase Contributing Editor Jeff Hicks does some keyword analysis on the Ignite session catalog and comes up with some interesting data. I've just returned from the new TechEd, also known as Microsoft Ignite, which was held in Chicago, IL. Much has already been written, tweeted or blogged about the deficiencies about catering and transportation, so I'll skip the obvious. And you'll find plenty of other commentary and reporting about Ignite here on Petri. Personally, after having presented at and attending a number of TechEd events over the years, I was curious about a few things. How did Ignite work as a combined conference? The first item is how the conference would feel as one mega-event. Attempting to cram several important events into one was going to have consequences, such as attendance. The difference between 16,000 and 23,000 people doesn't seem that large at first but boy is it ever as is evidenced by the food quality and venue location. Although I felt the venue was wide enough, it was really tight when there were traffic bottlenecks. The conference was held on multiple floors in multiple buildings, and I've heard from more than one attendee that remarked on either missing or skipping sessions simply because they couldn't make the trek in a timely manner. Logistics aside, which can always be improved, let's talk content. Related: Microsoft Ignite 2015 Conference Recap Session content at Microsoft Ignite Given the event's scope and conference consolidation, there was a lot that needed to be covered. Sadly, from a number of people I spoke with, to comments on Twitter, much of the content felt lightweight or... --- ### Windows 10 Security: Microsoft Passport and Virtual Secure Mode > Learn about Microsoft Passport and Virtual Secure Mode in this Windows 10 security overview by Russell Smith. - Published: 2015-05-08 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-security-microsoft-passport-and-virtual-secure-mode/ - Categories: Security - Tags: #MSIgnite, Microsoft Ignite, Microsoft Ignite 2015, Microsoft Passport - Article Type: Overview Russell Smith discusses how two-factor authentication will be made easier with Microsoft Passport in Windows 10. In this Ask the Admin, I’ll explain how Microsoft Passport will implement key-based authentication to make two-factor authentication easy without a Public Key Infrastructure (PKI), and where Virtual Secure Mode (VSM) fits in to protect against common attacks. Previously dubbed Next Generation User Credentials, Microsoft Passport will debut in Windows 10, and in conjunction with a new security feature called Virtual Secure Mode, which protects credentials from Pass-the-Hash (PtH) attacks - a technique used by hackers to move laterally across networks by means of stolen credentials - aims to replace passwords by making two-factor authentication simpler to deploy. Multifactor Authentication Most of us are familiar with the concept of authenticating to a system using a combination of what we know and what we have, usually in the form of a smartcard, and PIN or password. But traditionally smartcards have been the preserve of large corporates, not least because of the extra hardware required, but also the need to maintain a PKI, which can be complex to say the least. Microsoft Passport in Windows 10 (Image Credit: Microsoft) Microsoft Passport Microsoft Passport differs from currently available forms of two-factor authentication by utilizing a unique asymmetrical key pair that Windows 10 can generate itself, and store securely with the help of a hardware Trusted Platform Module (TPM). While there will be the option to use keys generated by a PKI, Passport’s key-based authentication option will significantly lower the barrier to adoption, and could prove to... --- ### Paul Thurrott's Short Takes: May 8, 2015 > Because Microsoft just held Build 2015 and Ignite 2015 back to back and I'm still not done traveling, here's this week's other news. - Published: 2015-05-07 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-may-8-2015/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Because Microsoft just held Build 2015 and Ignite 2015 back to back and I'm still not done traveling, this week's other news includes conflicting rumors about Microsoft’s interest in buying Salesforce, how Windows as a service will impact Patch Tuesday, the higher cost of Office 365, Uber bids for Nokia’s HERE business, NSA data collection is illegal, and Nvidia stung by falling PC sales. Microsoft to buy Salesforce? You bet! A Bloomberg report suggested this week that Microsoft was considering a purchase of Salesforce, triggering a temporary spike in the stock price of the latter company. Salesforce is the biggest player in the CRM (customer relationship manager) market and is valued at almost $50 billion. But here’s why Microsoft would be interested in this company: it’s software is 100-percent cloud-based, making it one of the most successful cloud services in the world. Plus, you know, the whole disruption thing. “Microsoft Is Said to Evaluate Possible Bid for Salesforce” You gotta love a headline with two qualifiers in it. Way to take a stand. Microsoft to buy Salesforce? Absolutely not! Meanwhile, Reuters is exclusively reporting that not only is Microsoft not buying Salesforce, but they have never seriously considered such a thing since the price was always too high. Oracle CEO Bill McDermott also said he had “zero interest" in Salesforce, but at least Oracle is finally admitting the cloud is a thing now. “We have never bought something that was impaired and in decline,” he said. Which... --- ### Microsoft Makes the Case for Windows 10 in the Enterprise > Did the software giant make a compelling case for businesses to upgrade to Windows 10 from Windows 7 at Ignite 2015? - Published: 2015-05-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-makes-the-case-for-windows-10-in-the-enterprise/ - Categories: Windows 10 - Tags: Microsoft Ignite, Microsoft Ignite 2015, News - Article Type: News At its Ignite 2015 conference this week in Chicago, much of the talk centered on Azure and Office 365, coming on-premises server products, device management, and even cross-platform compatibility. But I was most interested in how Microsoft would present Windows 10 on the eve of its initial release. Did the software giant make a compelling case for businesses to upgrade from Windows 7? This is an important question because Microsoft is eager to ensure that Windows 7, already halfway through its support lifecycle, is not the next Windows XP, with multiple support extensions to an aging, ever-less-secure base. And of course Windows 8 was roundly rejected by virtually all of its customers, which helped to cement the notion that businesses' slow upgrade schedules are, perhaps, the right way to do things. Microsoft, of course, has selfish reasons for wanting its customer base to upgrade to Windows 10 en masse. But that position is also defensible when you consider the benefits of moving everyone—consumers, businesses, whatever—to a new system in which important security upgrades are seamlessly slipped onto PCs and devices on an ongoing basis, helping to ensure that customers are always protected. And while consumers will probably want to receive functional updates quickly, businesses can of course opt out of this plan and ship such updates much more slowly. Given this, I was a surprised by Microsoft's Windows 10 sales presentation at Ignite. Yes, the company gave lip service to Windows 7 upgraders being confronted by a... --- ### Microsoft Ignite 2016 Dates and Location Announced > Microsoft Ignite 2016 Dates and Location Announced - Published: 2015-05-07 - Modified: 2015-05-07 - URL: https://petri.com/microsoft-ignite-2016-dates-and-location-announced/ - Categories: Windows Server 2016 - Tags: Microsoft Ignite, Microsoft Ignite 2015, Microsoft Ignite 2016 - Article Type: News Microsoft has announced the date and location for Microsoft Ignite 2016, and it looks like it will be coming back to Chicago. We're four days into Microsoft Ignite 2015, and Microsoft has announced -- via the official Microsoft Ignite 2015 Twitter account (@MS_Ignite) -- that Microsoft Ignite 2016 will be held in Chicago next year on May 9-13, 2016.     Save the Date for #MSIgnite 2016! Subscribe to learn more: http://t. co/DmvB9befjh pic. twitter. com/g0lgZUmxLP — Microsoft Ignite (@MS_Ignite) May 7, 2015 The actual conference facility to be used for Microsoft Ignite 2016 wasn't announced, but given the size and scope of this year's event -- which combined several once disparate Microsoft tech conferences under the Microsoft Ignite banner -- it's reasonable to assume that the conference will once again be at McCormick Place, which just happens to be the largest convention center in North America. Microsoft Ignite 2015: Mixed Feelings Microsoft faced the challenge of combining many conferences into one, and several conferences had well-established, vibrant communities -- the Microsoft Management Summit (MMS) and the Microsoft Exchange Conference (MEC), to name two -- that had already been wary about the merging of their favorite conferences into a single larger one. The Petri IT Knowledgebase editorial team solicited feedback from attendees, vendors, and fellow journalists at the Ignite conference. I'll post a bit more of that in my Microsoft Ignite wrap-up article in a few days, but the overall consensus seemed mildly positive, yet with a clear distinction between the quality and quantity of the content offered at Ignite (which was generally very positive) and the actual management and execution of the event itself (namely shuttles, food, etc. ) where feedback was decidedly... --- ### How to Install Windows Server 2016 Nano in a VM > Learn how to install Windows Server 2016 Nano in a VM in this how-to article by Russell Smith. - Published: 2015-05-06 - Modified: 2024-11-19 - URL: https://petri.com/how-to-install-windows-server-2016-nano-in-a-vm/ - Categories: Windows Server 2016 - Tags: Editor's Pick, Microsoft Ignite, Microsoft Ignite 2015, Nano Server - Article Type: How To Russell Smith shows us how to Install Windows Server 2016 Nano in a VM in this brief how-to article. Microsoft announced the availability of Windows Server 2016 Technical Preview 2 at Ignite on Monday, and in this Ask the Admin, I’ll show you how to install Nano, the refactored minimal install option for Windows Server designed for cloud apps and micro services. There’s been a long wait since Microsoft released the first technical preview of Windows Server 2016 in October last year, but since then rumours about a new minimal install option called Nano were confirmed, and there’s been much talk about Windows and Hyper-V containers, which will appear in the next technical preview to be released later this year. You can read Thoughts on Windows Nano Server on the Petri IT Knowledgebase to get more information on Nano. But in the meantime, Windows Server Nano is part of TP2, although not available for install using the traditional GUI setup tools, so you’ll need to get your hands dirty with PowerShell and WIM files. Before we get started, make sure you have downloaded the Windows Server 2016 Technical Preview 2, available free from Microsoft here. To complete the instructions below, you’ll also need to download the Convert-WindowsImage. ps1 script from the TechNet gallery here. Additionally, you’ll need to run the Add-WindowsPackage PowerShell cmdlet on Windows 10 Technical Preview 2, or on a Windows 8 device with the Windows 10 Assessment and Deployment Kit (Windows ADK) Preview installed, because upgraded Deployment Image Servicing and Management (DISM) support is required. Create a Nano VHD File Once you’ve downloaded the... --- ### Microsoft Ignite 2015 Keynote Highlights for IT Pros > Aidan Finn serves up his opinion on Microsoft Ignite 2015 keynote highlights for IT professionals in this recap article. - Published: 2015-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-ignite-2015-keynote-highlights-for-it-pros/ - Categories: Windows Server, Windows Server 2016 - Tags: Microsoft Ignite, Microsoft Ignite 2015 - Article Type: News Aidan Finn reports on how Microsoft is trying to rebuild their relationship with IT pros, starting with the keynote at Microsoft Ignite 2015. Satya Nadella took the stage on May 4th to launch the inaugural Microsoft Ignite conference in Chicago with his keynote speech. This was a presentation that was aimed directly at IT pros, something that Microsoft has failed to do very well in recent years. In this post I will note what I thought was important from his presentation. Microsoft Ignite: Themes Microsoft subtitled Ignite as “Spark the Future”. That message was initiated with rapper, Common, walking to the stage through the crowd, and talking about how a person can create inspiring change. Clearly, Microsoft wants us IT pros to be that spark of change. But how? Nadella laid out his 3 interlocking ambitions: The era of more personal computing: In Microsoft’s opinion, the thing that is important is not the mobility of the device, but the mobility of the user experience. Users want to work on one device, and be able to continue that work on another. Technologies that we manage, such as Active Directory and OneDrive for Business, are the enablers of this experience in the business. Reinventing the process of how we work: Windows 10 is designed for the way we work today. Mobility and cross-device type availability (Universal Apps) enable user mobility, and with these technologies we have enablers for changing how we work together. For the first time, the installed version of Office (2016) will support cooperative editing of documents. Technologies such as Skype for Business will offer new ways to collaborate and... --- ### Microsoft to Appeal Skype Ruling in the EU > The General Court of the European Union ruled Tuesday that Microsoft cannot register trademarks for the Skype name and logo. - Published: 2015-05-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-appeal-skype-ruling-in-the-eu/ - Categories: Cloud Computing - Tags: News, skype, Skype for Business - Article Type: News The General Court of the European Union ruled Tuesday that Microsoft cannot register trademarks for the Skype name and logo. The reason? The name is too similar to that of British broadcast giant Sky, and its distinctive logo is too general. Yep, it’s déjà vu all over again. This is the second time Microsoft has run afoul of Sky for using the letters “s”, “k” and “y” in a product name. In 2013, it lost a British case in which Sky accused Microsoft of infringing on its trademarks with SkyDrive. Microsoft later rebranded SkyDrive as OneDrive, but that product didn’t have the user base or consumer cachet of Skype. So the stakes are much higher this time. "Conceptually, the figurative element conveys no concept, except perhaps that of a cloud,” this week’s court ruling notes of the Skype logo. " would further increase the likelihood of the element 'Sky' being recognized within the word element 'Skype', for clouds are to be found 'in the sky' and thus may readily be associated with the word 'sky'. " Skype's distinctive cloud logo is apparently too general. Yes, it really says that. Apparently, Sky, the company, owns the term sky, and anything related to the actual sky. Such is the state of EU anti-American technology sector protectionism. Skype had been fighting this battle for years before Microsoft purchased the company for $8. 5 billion in 2011, and Sky first complained about Skype’s trademark application... --- ### Episode 20 - May 5th – 10:15pm EDT – Guests: Dane Young and Carl Webster - Published: 2015-05-05 - Modified: 2015-05-05 - URL: https://petri.com/episode-20-dane-young-and-carl-webster/ - Categories: Current Status It’s Citrix Synergy Week! Join us to discuss what Citrix CTP’s Dane Young (@youngtech), Carl Webster (@carlwebster), and Theresa Miller are most excited about in the spaces of virtualization and enterprise mobility.   Covering the conference highlights from the keynote to the exhibit hall, join us to find out what we really think. --- ### How to Install and Configure Microsoft LAPS > Russell Smith tells us how to secure local administrator accounts with the Local Administrator Password Solution (LAPS) Tool. - Published: 2015-05-05 - Modified: 2024-09-04 - URL: https://petri.com/secure-local-administrator-accounts-with-the-local-administrator-password-solution-laps-tool/ - Categories: Active Directory (AD), Security - Tags: Active Directory, Editor's Pick, LAPS Tool, Microsoft LAPS, Security - Article Type: How To Configure Microsoft's new Local Administrator Password Solution (LAPS) tool to protected local administrator accounts. Microsoft’s Local Administrator Password Solution (LAPS) tool was released May 1st 2015, and it consists of a Group Policy client-side extension (CSE) that enables organizations to manage local administrator account passwords on domain servers and workstations by automating regular password changes and storing them in Active Directory. In this article, I’ll explain why you should use Microsoft LAPS, how it works, and show you how to set it up. The problem with local administrator accounts It’s not uncommon for local administrator accounts to be configured with the same password across all devices in corporate environments, leading to the possibility that if an attacker were to discover the password, every device could be compromised. Some organizations manage this risk by manually renaming the built-in administrator account, setting a random password, and recording that information in a spreadsheet. But that doesn’t address the issue of changing the passwords periodically. Others go a step further, and disable the built-in administrator, creating a new administrative account on each device. While there are third-party solutions that can help mitigate the threats posed by unmanaged local administrator accounts, the Microsoft LAPS tool, which can be downloaded free here, presents a solution that randomizes passwords every 30 days, or a period of your choice, and stores them securely in Active Directory for each computer account. Download and install Microsoft LAPS Follow the instructions below to install LAPS on a management computer. Log on to the computer as a local administrator. In this lab, I have one... --- ### Microsoft Continues Cloud Push, Announces Windows Server 2016, SQL Server 2016, and Windows Update for Business > Windows Server 2016, SQL Server 2016, and Windows Update for Business - Published: 2015-05-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-continues-cloud-push-announces-windows-server-2016-sql-server-2016-and-windows-update-for-business/ - Categories: Windows Server, Windows Server 2016 - Tags: Microsoft Ignite, Microsoft Ignite 2015, News - Article Type: News Microsoft CEO Satya Nadella kicked off the first-ever Microsoft Ignite conference by saying that Microsoft has transformed itself to fulfill its "cloud-first, mobile-first" mission. In front of a packed hall of Microsoft Ignite attendees, Microsoft CEO Satya Nadella kicked off the event keynote by saying that Microsoft was continuing to transform its business to embrace a mobile-first, cloud-first strategy, and announced a number of updated products and services that support that vision. Microsoft CEO Satya Nadella kicked off the first-ever Microsoft Ignite conference by saying that Microsoft has transformed itself to fulfill its "mobile-first, cloud-first" mission. (Photo: Jeff James) Note: We'll be covering Microsoft Ignite throughout the week in more detail, so please bookmark our Microsoft Ignite 2015 resource page for Ignite news and updates throughout the week. Windows Update for Business One of the most noteworthy announcements was that Microsoft was changing the way that it handles Windows 10 software updates for businesses. Microsoft's Terry Myerson explained than the current Windows update process isn't ideal, and said that Microsoft wanted to provide more flexibility for Windows 10, which led to the unveiling of Windows Update for Business.  Myerson said that Windows Update for Business would provide a host of new capabilities including a new "distribution rings" concept, integration with existing tools, the ability to specific maintenance windows, and peer-to-peer delivery. Windows Server 2016 Other big news today revolved around the formal unveiling of Windows Server 2016, which had been tentatively (and unofficially) referred to as Windows Server vNext. In addition to the official branding, the big news here was that an updated technical preview of Windows Server 2016 was now available, which you is available for download now. Related:... --- ### Microsoft launches Office 2016 Preview > Microsoft launched the Office 2016 preview at Microsoft Ignite, where the company introduced new security, management, and deployment features for IT pros. - Published: 2015-05-04 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-launches-office-2016-preview/ - Categories: Office - Tags: Microsoft Ignite 2015, Office 2016 - Article Type: News The Office 2016 preview is now available in preparation for general availability in fall 2015 and includes a slew of new capabilities for better IT management. During Microsoft's first-ever Ignite conference, the company announced that the Office 2016 Preview is now available in preparation for general availability in fall 2015. Related: What I Expect from Ignite Bringing a Modern Workplace to Office Users A leading message that emerged from today's keynote is how Microsoft is working to reinvent the way in which people and organizations work today. Speaking about the grand transformations that are taking place with new technologies and how organizations operate, Microsoft introduced several new capabilities that enable Office users to be more successful. Here's a rundown of what's new in the Office 2016 Preview: Co-authoring comes to Windows desktop applications. Although co-authoring has been available for Office Online apps, Microsoft is bringing this capability to desktop applications, starting with Word 2016.   New Tell Me search tool. A new Tell Me search tool learns how you work in an application to help you be more productive. The tool works with Word, PowerPoint, and Excel, and works by serving up commands by simply typing what you want to do. Clutter. Clutter is a new smart tool that uses machine learning to analyze a user’s email patterns to de-clutter his or her inbox. Petri IT Knowledgebase contributing author Theresa Miller has written about Clutter and provides steps on how to bypass Clutter filters, configure retention policies, and personalize system notifications. The Office 2016 Preview. (Image Credit: Microsoft) New Security, Management, and Deployment Capabilities for IT Pros... --- ### What I Expect from Ignite 2015 > With barely a moment to reflect on last week's Build 2015 conference in San Francisco, Microsoft in Chicago this week for its Ignite conference. - Published: 2015-05-04 - Modified: 2024-09-04 - URL: https://petri.com/what-i-expect-from-ignite-2015/ - Categories: Cloud Computing - Tags: Lumia, Microsoft Ignite, Microsoft Ignite 2015, Microsoft Surface, News, Office 365, System Center, Windows 10, Windows Server vNext - Article Type: Opinion With barely a moment to pause and reflect on last week's epic Build 2015 conference in San Francisco, Microsoft has set up shop in Chicago this week for its inaugural Ignite conference, which replaces TechEd. With barely a moment to pause and reflect on last week's epic Build 2015 conference in San Francisco, Microsoft has set up shop in Chicago this week for its inaugural Ignite conference, which replaces TechEd. In many ways, Ignite is an even bigger deal than Build, given its focus on Microsoft's core customer base, so the stakes are likewise higher. Here's what I hope and expect to see at the show. Windows 10 for businesses. Last week, Microsoft spelled out its epic vision for universal apps, showing how desktop developers, web developers, Android developers and even iOS developers can leverage their code bases on the new Windows 10 platform. But this week is all about businesses, and we should get a feature-complete look at Windows 10's business and management functionality plus a sales job on "Windows as a service. " Will enterprise customers accept this? Windows Server vNext. Microsoft took a mulligan after announcing Windows Server "vNext" last October alongside Windows 10. But this is the time: I expect a ton of Windows Server content at Ignite, and a full telling of the software giant's plans for this release and how it will coexist with cloud-based solutions like Azure. System Center vNext. My sources tell me that the next System Center isn't as far along as Windows Server and given how these two product lines are suddenly intertwined—they are being co-developed by the same team—it's possible this explains the combined delay. Here, too, I expect a full telling... --- ### Don't like PowerShell? Get Over It And Get On With It > Petri Contributing Editor Jeff Hicks asks: "Don't like PowerShell? Get Over It and Get On with It." - Published: 2015-05-01 - Modified: 2015-05-01 - URL: https://petri.com/dont-like-powershell-get-over-it-and-get-on-with-it/ - Categories: PowerShell - Tags: Beginner, Editor's Pick - Article Type: Opinion PowerShell MVP Jeff Hicks explains why IT professionals who don't like PowerShell need to get with the program, or consider another line of work. Over the last few weeks I’ve been in a number of conversations with IT professionals from conferences such as the PowerShell Summit, to engaging in lively reader debates, like what you see in the comments section of my Petri colleague Russell Smith's post that asks whether we need GUI management tools in Windows Server. These discussions have been illuminating, so let me cut right to the chase: PowerShell is something you need to learn and requiring a GUI to manage servers is an obsolete concept. If you are on the opposite side of this all I can say is get over it and move on. Because if you don’t you will find yourself in a dead-end job, assuming you still even have one. Don't like PowerShell? May Want to Update Your Resume PowerShell has been out for almost 10 years. Sure, the first few versions didn’t have everything you might need but we are on the verge of version 5. 0. There is no reason you should not be learning and using PowerShell. And if you say this is because your company doesn’t use it, that’s irrelevant. But that is a topic for a separate article. That said, you have to learn the PowerShell paradigm and not just a few commands. It has been my experience that most people who dislike, or even hate (really? ) PowerShell are because they are trying to force PowerShell to be something it is not. Or they bring a set of pre-conceptions, often misconceptions, and... --- ### Paul Thurrott's Short Takes: May 1, 2015 > Because Build 2015 just happened and I'm still on East Coast time, this week's other news includes Windows as a service and more. - Published: 2015-05-01 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-may-1-2015/ - Categories: Windows 10 - Article Type: Opinion Because Build 2015 just happened and I'm still on East Coast time, this week's other news includes Windows as a service, Microsoft's next billion-dollar business, Microsoft and N-Trig, HoloLens has an Achilles Heel, Apple Watch hates tattoos. Windows as a service? When I spoke with Microsoft's Terry Myerson before the Build keynote, I saw the phrase "Windows as a service" on his slide deck, but didn't think to ask what it meant. This phrase was likewise uttered quickly by Microsoft CEO Satya Nadella during the actual keynote, but not explained. So ... what is WAAS? ? It turns out, it's the future of Windows. Mr. Nadella told financial analysts later in the day that Microsoft is moving Windows from a product with "revenue per license" to one that is "revenue per device," and that instead of versions, the firm would simply keep Windows users up to date going forward. I'm glad to hear that subscriptions have nothing to do with this scheme, as many had surmised Microsoft would offer a "Windows 365"-type service to both consumers and businesses. This makes much more sense. "Aero Glass looks to make its return in Windows 10" Nope. Microsoft's new cloud service: the guess-your-age game This one is fun. During the Build 2015 day one keynote this week, Microsoft showed off a new web service called How Old Do I Look that scans a photo of you and then shows you how old it thinks you are. I'm not clear on the... --- ### Using OffCAT to Solve Problems with Microsoft Office > Learn about the troubleshooting capabilities of Microsoft's free Office Configuration Analyzer Tool (OffCAT). - Published: 2015-05-01 - Modified: 2024-11-19 - URL: https://petri.com/using-offcat-to-solve-problems-with-microsoft-office/ - Categories: Microsoft 365, Office - Tags: Editor's Pick, OffCAT - Article Type: How To Learn about the troubleshooting capabilities of Microsoft's free Office Configuration Analyzer Tool (OffCAT). In today's Ask the Admin, I'll show you how to troubleshoot Microsoft Office using the new release of the Office Configuration Analyzer Tool. The Microsoft Office suite of applications is the nucleus around which the lives of information workers rotates, and while performance and reliability in Office 2013 are good, the software is complex, which can sometimes lead to inevitable slowdowns or operational issues caused by configuration problems. The Office Configuration Analyzer Tool (OffCAT) is a free download from Microsoft that was developed by the Office support team to detect common configuration anomalies that are known to cause problems for customers. The tool can be used to scan one or more Office applications, and reports can be stored, filtered and saved for import into the tool running on another device. OffCAT can detect if your Office installation is up-to-date, provide links to commonly read support articles, update itself, and has advanced tools for troubleshooting issues with Outlook, and calendar appointments and events. There's also a command-line version of the tool for system administrators. Using the Office Configuration Analyzer Tool Once OffCAT is downloaded and installed, which can be done without users needing administrator permissions, right click the OffCAT icon in the system tray, and select Open OffCAT to launch the tool. After a quick check for updates, the New Scan screen allows you to select the Office programs to be scanned. OffCAT supports Office 2007, 2010 and 2013, both local and Click-To-Run installations... . --- ### 5 Things That Would Improve Microsoft Azure > Aidan Finn discusses 5 things that would improve Microsoft Azure, including making enhancements to strategy, management, and pricing. - Published: 2015-04-30 - Modified: 2024-11-19 - URL: https://petri.com/5-things-that-would-improve-microsoft-azure/ - Categories: Microsoft Azure - Tags: licensing - Article Type: Opinion Aidan Finn discusses his top five most wanted improvements to Microsoft Azure, which include changes to strategy, management, and pricing. I have been using and selling the infrastructure-as-a-service (IaaS) pieces of Azure for over a year now, and I've good a pretty good grip of what Microsoft's public cloud can and cannot do, what it is good at and what it is not, and where it needs some improvement. In this article, I'll share my opinion on what I think Microsoft needs to do to make Azure a better IaaS solution. My Experience with Azure I was like many IT pros before January 2014, where I deliberately chose to ignore Azure. When Azure first launched, I actually saw it as a threat. That's because I worked for a couple of local hosting companies, and there was no way that we could sell infrastructure at a price or scale that could compete with Azure. It also didn’t help my cause that Azure seemed to be adding functionality on a monthly basis. My role is to learn new Microsoft infrastructure technologies and evangelize them to Microsoft partners who implement those products in small-to-medium businesses. I have to be able to understand the technology and sell it to a business customer, find the hook for sales people (Hint: it's always profit), and be able to teach the techies. It's a challenging but rewarding role, especially when you hear that someone you've helped is deploying the tech for customers. One year ago, things changed. Azure became part of my job. I found out that Microsoft was going to release Azure under open licensing, so... --- ### Build 2015: Success of Windows 10 Tied to New Universal App Platform > While Microsoft should have little problem meeting its goal of 1 billion Windows 10 devices, the success of the underlying platform is less sure. - Published: 2015-04-30 - Modified: 2024-09-04 - URL: https://petri.com/build-2015-success-of-windows-10-tied-to-new-universal-app-platform/ - Categories: Windows 10 - Tags: Build 2015, News - Article Type: Opinion Wednesday's Build 2015 keynote address was well-received by the developers here in San Francisco, and should rightly be seen as a triumph for Microsoft, which has stumbled a bit with this audience in recent years. But the issues Microsoft faces are vast. And while the software giant should have little problem meeting its goal of 1 billion Windows 10 devices, the success of the underlying platform is less sure. Related: Build 2015: Microsoft Bridges the Windows 10 Gap for Developers Related: Build 2015: Microsoft Takes on Amazon with SQL Data Warehouse, Azure Data Lake That platform is officially called the Universal Windows Platform. And while Microsoft is now promoting it as the backbone of its "One Microsoft" mantra, it's really just "v10 of the modern platform that started with Windows Phone in 2010 and in Windows 8 in 2012," as Microsoft's David Treadwell said this morning. The inference was that developers who have invested in these platforms will be able to move forward somewhat seamlessly to Windows 10 development. But this isn't necessarily a huge win for everyone. For starters, many developers have simply opted out of this modern platform, in the same way that many users have ignored Windows Phone and Windows 8. And even those who have dutifully moved forward with Microsoft's developer platforms over the years—from . NET to Silverlight to Windows Forms to Metro to Modern/Windows Store to Windows Universal Platform and everything in-between—will tell you there's been a lot of churn, a lot of uncertainty,... --- ### Disable Remote Desktop Network Level Authentication using PowerShell > Follow these easy steps to disable Remote Desktop Network Level Authentication using PowerShell. - Published: 2015-04-30 - Modified: 2024-09-04 - URL: https://petri.com/disable-remote-desktop-network-level-authentication-using-powershell/ - Categories: Windows Server - Tags: Editor's Pick, Network Authentication - Article Type: How To Learn how to programmatically disable Remote Desktop Network Level Authentication (NLA) using PowerShell In today's Ask the Admin, I'll show you how to disable Remote Desktop Network Level Authentication with the help of Windows Management Instrumentation (WMI) and PowerShell. Network Level Authentication (NLA) was introduced to improve security in Remote Desktop Protocol (RDP) 6. 0 by requiring that users be authenticated to the host server before an RDP session is created, helping to reduce the risk of denial-of-service attacks. Initially NLA was only available for Windows Vista and Windows Server 2008, but later client support for Windows XP SP3 was added. Although NLA is a welcome security enhancement that helps to make Remote Desktop safer, you might want to disable it in a dev environment for a couple of reasons: It's not possible to log in to a domain member server using Remote Desktop unless a domain controller (DC) is available for authentication. Domain controllers must be booted before member servers are started, otherwise Remote Desktop access to member servers might be denied. In production, the issues I've listed above should never be a reason to disable NLA. But in a dev environment, especially one where VMs are shut down regularly to reduce costs, it can be handy to disable NLA so that you don't have to worry about the order in which VMs are booted, and work with member servers without necessarily needing to boot a DC. Remember that disabling NLA is not best practice, so you should always evaluate the risk in your own environment. Disable Network Level Authentication It's... --- ### Build 2015: Microsoft Takes on Amazon with SQL Data Warehouse, Azure Data Lake > At the Build 2015 developer conference in San Francisco, Microsoft announced Azure SQL Data Warehouse and Azure Data Lake as competitive storage offerings. - Published: 2015-04-29 - Modified: 2024-09-04 - URL: https://petri.com/build-2015-microsoft-takes-on-amazon-with-sql-data-warehouse-azure-data-lake/ - Categories: SQL Server - Tags: Build 2015, development, Editor's Pick - Article Type: News Microsoft made several database-related announced that directly challenge its cloud competitor Amazon and its Redshift offering. During today's keynote at Microsoft’s Build developer conference in San Francisco, the company made several different database announcements that are meaningful for not only providing companies with a variety of storage needs for a variety of situations, but also helping us understand how Microsoft plans to face its competitors in the cloud space. Related: Build 2015: Microsoft Bridges the Windows 10 Gap for Developers Azure SQL Data Warehouse Executive Vice President of Microsoft, Scott Guthrie, provided developers with their first look into its Azure SQL Data Warehouse offering, which will go into public preview in July. The Azure SQL Data Warehouse is designed as an enterprise solution that lets developers decouple compute and storage individually. SQL Data Warehouse also lets developers pause and resume compute as needed. Both of these key features of Azure SQL Data Warehouse is a win-win for consumers and will likely serve as a more cost-effective billing solution. Developers can scale what they need individually compared to Amazon's Redshift solution. Redshift currently takes a different approach where scaling changes must be made in lockstep, in addition to a 24-hour billing cycle that doesn't provide the flexibility to pause or resume computes. Scott Guthrie also made comparisons to how Azure SQL Data Warehouse stacks up against Redshift, which you can see below in the following image: Azure SQL Data Warehouse and Amazon Web Services' Redshift comparison. (Image Credit: Microsoft) Azure Data Lake Microsoft also announced Azure Data... --- ### Build 2015: Microsoft Bridges the Windows 10 Gap for Developers - Published: 2015-04-29 - Modified: 2024-09-04 - URL: https://petri.com/build-2015-microsoft-bridges-the-windows-10-gap-for-developers/ - Categories: Windows 10 - Tags: Build 2015, development, News - Article Type: News With a bridge-building theme as a backdrop, Microsoft on Wednesday announced a series of changes that fundamentally alter the relationship developers have with Windows 10. Now, Microsoft is embracing web and legacy desktop applications, and it will let developer easily port Android and iOS apps to Windows 10 too. Related: Build 2015: Microsoft Takes on Amazon with SQL Data Warehouse, Azure Data Lake Related: Build 2015: Success of Windows 10 Tied to New Universal App Platform Folks, this is not your father's Microsoft. "Today we shared our bold goal –to see Windows 10 on one billion devices within two to three years of Windows 10’s availability – the first platform version, in any ecosystem, to be available on one billion devices," Microsoft executive vice president Terry Myerson wrote in a post describing the Build announcements. "We will accomplish this by delivering Windows 10 with a free upgrade offer, making it easy for customers and businesses to upgrade quickly, and with great new devices. " Here are the key bridge-building announcements Microsoft made for Windows developers on Wednesday. For Windows developers. Microsoft will enable developers to adapt existing Windows desktop applications (Win32, . NET, Windows Forms and so on) and distribute them in the same Windows Store that currently offers only Modern/Metro and universal apps. These desktop applications will need to be modified slightly to use an application virtualization technology that will sandbox them in order to offer some of the benefits of Windows Store apps. For iOS developers. Via "Project Islandwood,"... --- ### PowerShell Problem Solver: Converting Universal Time using PowerShell > Learn simple steps for converting Universal Time using PowerShell in this article by PowerShell MVP Jeff Hicks. - Published: 2015-04-29 - Modified: 2024-09-04 - URL: https://petri.com/converting-universal-time-using-powershell/ - Categories: PowerShell - Tags: ctime, Intermediate, PowerShell Problem Solver, Scripting - Article Type: How To In this PowerShell Problem Solver article, Jeff Hicks analyzes a recent problem he experienced on his personal blog, and shows us his resolution with some simple Universal Time conversations with PowerShell. Usually when I write these articles, it is in response to a problem or question I've encountered. But this week, I'm the one that needs some help. Recently my personal blog was experiencing some access problems. During the course of investigation, I came across some log information that included a date time value, but the value looked like 1426582884. 043993. Fortunately, the related column heading was called ctime. A little more digging showed that this value is related to Universal Coordinated Time (UTC). The ctime value the number of seconds that have passed since the epoch. You can think of the epoch as the big bang of computing, except that we know the date is January 1, 1970. In the Unix world, time is often calculated from this starting point. In my case, my blog was running on a Linux-based host, which is why the log information used this value. I needed a way to convert 1426582884. 043993 into a meaningful date time value. You might run into this issue if you need to process some log files. Fortunately, this wasn't too difficult to resolve. I knew I could create a datetime object for the epoch. ​$epoch = "1/1/1970" This object has a method called AddSeconds, so all I needed to do was specify my ctime value as a parameter. ​$epoch. AddSeconds(1426582884. 043993) Using the AddSeconds method in Windows PowerShell. (Image Credit: Jeff Hicks) More than likely this value is GMT or UTC, and since I'm not in that time... --- ### Set Up a Virtual Private Network in Windows Phone 8.1 > Learn how to easily set up a virtual private network in Windows Phone 8.1 in this article by Russell Smith. - Published: 2015-04-28 - Modified: 2024-09-04 - URL: https://petri.com/set-up-a-virtual-private-network-in-windows-phone-8-1/ - Categories: Mobile - Tags: Mobile, Security, VPN, Windows phone - Article Type: How To Setting up a virtual private network in Windows Phone 8.1 is simple with these helpful tips from Russell Smith. In this easy Ask the Admin, I'll show you how to set up a L2TP with IPsec Virtual Private Network connection in Windows Phone. Virtual Private Networks (VPNs) were once the preserve of corporate networks, but they've become increasingly popular amongst consumers. Businesses use VPNs to provide employees with secure remote access to servers, and consumers for a variety of different reasons. Accessing geo-blocked content is one the most common uses. When you connect a device to a remote server using a VPN, it's assigned an IP address from a pool of available addresses in the region where the remote server is located, essentially making it look like a device in Germany for example is physically located in the US. Before using a VPN to access geo-blocked content, remember that it may land you in trouble if it’s against the terms and conditions of the content provider, or if it's illegal to circumvent measures used to restrict access to content in the jurisdiction where the content provider is located. A IPsec VPN connected in Windows Phone 8. 1 Update 2 (Image Credit: Russell Smith) Security is another primary use for VPNs. Imagine a situation where you're connected to public WIFI, and you are concerned about browsing the Internet or using a service that has encryption. VPNs encrypt traffic between your device and the remote VPN server, providing protection on the local network that you're connected to. VPN in Windows Phone VPN support in Windows Phone... --- ### Avoid Running Out of Azure Open Credits > Learn how to avoid a Microsoft Azure shutdown with Aidan Finn's tips for avoiding running out of Azure open credit, along with steps to get back up and running. - Published: 2015-04-28 - Modified: 2024-09-04 - URL: https://petri.com/avoid-running-azure-open-credit/ - Categories: Microsoft Azure - Tags: Azure, licensing, Microsoft Azure - Article Type: How To Learn what happens during a Microsoft Azure shutdown, how to recover, and avoid running out of Azure open credit in the future. I’m a big proponent of using open licensing for acquiring Azure services in the small-to-medium enterprise (SME) market, as it allows affordable entry to the huge capacity and high-end services of Azure with the control that direct billing does not offer. Under open licensing, you pre-purchase $100 chunks of credit (one or more at a time), and each thing you do in Azure consumes that credit. If you manage things correctly, then you don't run out of credit. If you run out of credit, then everything shuts down. Here's what you can do to get back going again if you run into the second scenario. What Happens in an Azure Shutdown I've presented at countless Azure sales events and I always get asked what happens if a customer runs out of credit in Azure. It's simple: Everything stops working, you are emailed, and everything is kept intact, so you can restart Azure again after a credit top up. An Azure shutdown due to expired credit. (Image Credit: Aidan Finn) There are some who think that they deserve a free ride on Microsoft's dime when they refuse to pay their bills, which is idiotic and unprofessional, in my opinion. Does your pre-pay mobile phone allow you talk, text and surf when you run out of credit? Anyone who lets credit run out has missed the opportunity to avoid the issue. The Azure account portal offers you the ability to configure alerts based on the monetary amount... --- ### What I Expect from Build 2015 > Here are some questions I hope to have answered at Build 2015, along with some announcements I'd really like to see. - Published: 2015-04-27 - Modified: 2024-09-04 - URL: https://petri.com/what-i-expect-from-build-2015/ - Categories: Windows 10 - Tags: development, News, Office 365, Windows Server - Article Type: Opinion I'm flying to San Francisco on Tuesday to attend Build 2015, Microsoft's developer conference. Here are some questions I hope to have answered at the show, along with some announcements I'd really like to see. Let's jump right in. Windows 10. The list of questions I have about Windows 10 is so vast it would fill an entire article. But here are the basics. What's the schedule, broken out by target platforms? What's the plan to keep Windows 10 updated regularly going forward? When will developers be able to target Xbox One with apps and games? And what does the developer story really look like? Is this a dying platform or a real opportunity in this mobile world? Desktop apps. With Windows 10, Microsoft is re-embracing the desktop. Are we going to finally get desktop apps in the Windows Store, perhaps with the same stringent quality testing required of Modern/universal apps? This needs to happen. Cross-platform. The universal app platform is interesting ... if you are a developer who wishes to target just Microsoft's platforms for some reason. But given the open and extensible nature of Android, I'm curious to see whether universal apps will one day run on Google's mobile platform too. As for iOS ... I'm not sure how that would work. Android and iOS. This is subtly different than cross-platform as there's a real concern that developers will follow the user base to non-Microsoft mobile platforms and never look back. Given this, how does... --- ### Apple Posts Yet Another Blockbuster Quarter > Apple reported a net profit of $13.6 billion on revenues of 58 billion in the quarter ending March 31, thanks to continued strong sales of iPhone 6. - Published: 2015-04-27 - Modified: 2024-09-04 - URL: https://petri.com/apple-posts-yet-another-blockbuster-quarter/ - Categories: Mobile - Tags: Apple, iPad, iPhone, Macintosh, News - Article Type: News Apple reported a net profit of $13. 6 billion on revenues of 58 billion in the quarter ending March 31, thanks to continued strong sales of iPhone 6 and strong growth in China, the world's largest market. By all accounts, it was another blockbuster quarter for the consumer electronics company. "We are thrilled by the continued strength of iPhone, Mac and the App Store, which drove our best March quarter results ever," Apple CEO Tim Cook said in a prepared statement. "We're seeing a higher rate of people switching to iPhone than we've experienced in previous cycles, and we're off to an exciting start to the June quarter with the launch of Apple Watch. " It's unlikely that Apple Watch will make much a dent in Apple's earnings, given the slow ramp-up. But it won't matter: much of the rest of Apple's businesses is firing on all cylinders. As with the past several quarters, iPhone was the standout star, and the smart phone lineup now accounts for almost 70 percent of Apple's revenues. Apple sold 61. 2 million iPhones in the quarter, beating expectations, an improvement of 40 percent over the same quarter a year ago, when the firm sold 43. 8 million units. It's hard to overstate how successful iPhone 6 has been for Apple. Mr. Cook said that fully 20 percent of the iPhone user base has upgraded to iPhone 6, an unprecedented upgrade cycle for the company. He also noted that instances of Android... --- ### Automate Domain Member Server Deployment in Microsoft Azure > Learn about improvements to a PowerShell script to automate domain member server deployment in Microsoft Azure. - Published: 2015-04-27 - Modified: 2024-09-04 - URL: https://petri.com/automate-domain-member-server-deployment-microsoft-azure/ - Categories: Microsoft Azure - Tags: Domain, Member Server - Article Type: How To Russell Smith walks us through improvements to a PowerShell script to automate domain member server deployment in Microsoft Azure. In a previous Ask the Admin, I outlined some improvements to my PowerShell script to Automate Domain Controller Deployment in Microsoft Azure on the Petri IT Knowledgebase. But today, it's time to turn to member servers, and I'll walk you through the improvements made since the original article, Using PowerShell to Provision Member Servers in Microsoft Azure, was published. Many of the improvements I made to the domain controller (DC) script have been rolled forward into the member server script where it makes sense. For example implementing the Get-AzureWinRMUri cmdlet to determine the Windows Remote Management (WinRM) port, using the user certificate store instead of the local computer store to install the certificate for PowerShell Remoting, and disconnecting from the remote PowerShell session at the end of the script. Currently the member server script doesn't have code to specify a Server Core installation and downgrade the size of the VM because it's not a requirement in my dev environment. Deploy a domain member server in Azure using PowerShell (Image Credit: Russell Smith) Persistent IP Address The original script didn't configure the VM with a persistent internal IP address, and it's certainly not an absolute requirement. But remember that while it's possible to configure VMs with a persistent IP address, it's not the same as a DHCP reservation. As such, there are some instances where IP addressing can be problematic if all servers are not configured with a persistent IP address, so the code I... --- ### What IT Pros Can Expect at Microsoft Ignite > Aidan Finn discusses what IT pros can expect at Microsoft Ignite for Microsoft Windows 10, Microsoft Azure, and Windows Server vNext technologies. - Published: 2015-04-27 - Modified: 2024-11-19 - URL: https://petri.com/pros-can-expect-microsoft-ignite/ - Categories: Windows Server, Windows Server 2016 - Tags: Microsoft Ignite, Microsoft Ignite 2015, Windows Server 2016 - Article Type: Opinion Aidan Finn gives us his perspective of what he thinks IT pros can expect to see at the first Microsoft Ignite conference. We're just a few days away from the inaugural Microsoft Ignite conference, starting in Chicago on May 4th. It's a time of great change in Microsoft, and it looks like Ignite will start some of those fires. Here's what I think IT pros should expect at Ignite. Wow! The Crowds! I've been to TechEd North America and TechEd Europe, but nether comes close to the size of Ignite. It is expected that there will be around 20,000 delegates at the conference. Hotel rooms are few and far between in Chicago during that week, and what few rooms are free are going for several thousand dollars. A conference of this size can only be held in a few cities in the United States. My best guess is that TechEd North America 2014 was half the size of what Ignite will be. Those attending a Microsoft conference for the first time can feel lost in the crowds. And getting into rooms can be an issue. too, as I've heard can be a problem at Microsoft's Worldwide Partner Conference (WPC). My tip is that if there's a session you really want to see, then get in the room early. The Keynote The keynote is where Microsoft typically lays out their grand plan for the coming years, and over the past two years, there's been lots of Office 365 and Azure mentions in those keynotes. 2015 to 2016 is a critical year for Microsoft, as Azure adoption rates must be increased, Office 365... --- ### Nokia Denies Return to Handset Market > In the wake of a recent rumor, Nokia has gone on record: it is not reentering the handset market. - Published: 2015-04-27 - Modified: 2024-09-04 - URL: https://petri.com/nokia-denies-return-to-handset-market/ - Categories: Mobile - Article Type: News Since selling its devices and services business to Microsoft a year ago this week, Nokia has struggled to define how its remaining businesses—telecommunications infrastructure, online mapping and location services, and IP licensing—form a cohesive whole. But many assumed that Nokia would reenter the handset market when its non-compete agreement with Microsoft runs out, and this past week those rumors came to a head, though Nokia now denies them. Citing anonymous sources, Recode reported that Nokia would return to the phone market in 2016; the firm is currently prevented from doing so through December 2015. The products would be designed inside Nokia Technologies, the part of Nokia responsible for its IP licensing, and, more recently, an Android-based tablet, the Nokia N1, which is only sold in China. As part of the deal selling its devices and services businesses to Microsoft, Nokia can't make handsets, but it wasn't prevented from making tablets, so the N1 might be seen as a marketing test of sorts. The N1 of course sparked the first rumors that Nokia would reenter the handset market. And those rumors gathered steam when Nokia Technology's Sebastian Nystrom said at the time that "it would be crazy not to look at that opportunity," when asked about phones. "Of course we will look at it. " In the wake of the Recode report, however, Nokia has gone on record: it is not reentering the handset market. "Nokia notes recent news reports claiming the company communicated an... --- ### The Complete Guide to Windows Server 2003 End of Support > Learn how to plan a migration from Windows Server 2003 to Windows Server 2012 R2 from start to finish in this comprehensive guide that includes advice on migration and hardware requirements, security changes, and more. - Published: 2015-04-24 - Modified: 2024-11-19 - URL: https://petri.com/complete-guide-windows-server-2003-end-of-support/ - Categories: Windows Server, Windows Server 2003 - Tags: Editor's Pick, Windows Server 2003 End of Support - Article Type: How To This comprehensive guide to Windows Server 2003 end of support contains all you need to know to begin planning your migration to Windows Server 2012 R2. After more than 11 years in production, Windows Server 2003 is nearing its last gasp. On July 14th, 2015, extended support for this workhorse will expire. The argument that a legacy app running on a Windows Server 2003 server  "just works" because it's paid for is no longer valid. It's not that the app and OS have changed -- it's due to the fact that the world has moved far, far past them, especially in the criminal world. After July 14th, there'll be no more patches and no more support. No support from Microsoft also means that the application will also fail most regulatory requirements. Related: 5 Reasons Why You Should Upgrade to Windows Server 2012 R2 Looking at the positive side of this situation, getting rid of your remaining Windows Server 2003 systems also provides you with the opportunity to give a portion of your compute environment a big step forward. By migrating to the latest Microsoft OS -- Windows Server 2012 R2 -- you'll have enabled a lot of new capabilities that were unheard of when Windows Server 2003 was released. There's the latest version of Hyper-V, Storage Spaces, SMB 3. 0...  it's a long list. It really is time to move on. Phase I: Identify Windows Server 2003 Workloads Before you can work on migrating your workloads off Windows Server 2003, you need to take inventory of those workloads by finding them. If you have a large number of Windows Server 2003 systems or a large server... --- ### Shopping for Credentials with Cmdkey.exe > Learn how to leverage cmdkey.exe, a command-line tool that makes it simple to shop for the credentials you need. - Published: 2015-04-24 - Modified: 2024-09-04 - URL: https://petri.com/shopping-for-credentials-with-cmdkey-exe/ - Categories: Windows Server - Tags: cmdkey.exe, credentials - Article Type: How To Learn how to leverage cmdkey.exe, a command-line tool that makes it simple to shop for the credentials you need. A lot of my work is done from a standalone computer, in other words one that doesn't belong to a domain. But, I often need to access things in my test lab domain. If it is PowerShell related, I can often get by using a –Credential parameter if the cmdlet I want to use happens to support it. In other situations, applying alternate credentials can be tedious. But there is a useful command-line tool that makes it easy to shop for the credentials you need. I'm pretty sure there is a graphical alternative, but the command line is so much faster. The utility in question is called cmdkey. exe. You can even run it in PowerShell. Because this is a command-line tool, you'll need to learn its syntax. ​Cmdkey /? Syntax information for cmdkey. exe. (Image Credit: Jeff Hicks) Let me show you how you might use it in a domain environment. I'm sure you are familiar with the concept of Least Privileged Use, which should apply to domain administrators as well. The account you logon on with and run your daily work under should be a non-privileged account. It should be like any other user account. You should then have a separate domain admin account that can be connected with you. Personally, I don't think anyone should use the administrator account. Even with logging it is next to impossible to know who used it. Was it John or Jane? Or... --- ### Paul Thurrott's Short Takes: April 24, 2015 > Because you just can't make this stuff up, this week's other news includes Microsoft's quarterly earnings report, Office successes on Android/iOS and more. - Published: 2015-04-24 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-april-24-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion Because you just can't make this stuff up, this week's other news includes Microsoft's quarterly earnings report, Office successes on Android and iOS, Microsoft ignores HERE sale, Google's ad sales, Apple's Watch goes on sale, a volcano erupts, Amazon keeps losing money but is killing it in the cloud, and an unflattering Apple logo is found on Google Maps. Microsoft beats expectations in most recent quarter Be sure to check out my separate report, Microsoft Earnings: Revenues Up as Windows Continues to Decline, for a peek at Microsoft's most recent quarterly earnings. Microsoft Office apps hit 100 million downloads on Android and iOS During its post-earnings conference call last night, Microsoft CEO Satya Nadella revealed that its Microsoft Office apps (Word, Excel and PowerPoint) for Android and iOS have now been downloaded over 100 million times. That's up 20 million downloads since January, so it seems that they're seeing high single digit millions of downloads per month across the platforms fairly consistently. With over 12 million customers now paying for consumer versions of Office and an unknown number of commercial versions, it's unclear what the ratio is of paid to unpaid Office app users. But it's fair to say that moving Office to Android and iOS was a smart move. "How to take a screenshot on Windows 8" The burning issue of our day. Thanks for tackling the difficult topics. Microsoft apparently is not among the suitors for Nokia HERE As you may know, Nokia is actively... --- ### What is Windows 10 Device Guard? > What is Windows 10 Device Guard? Contributing Editor Russell Smith gives us the low-down on one of the latest Windows 10 security features. - Published: 2015-04-23 - Modified: 2015-04-23 - URL: https://petri.com/what-is-windows-10-device-guard/ - Categories: Security - Tags: #RSAC, applocker, bitlocker, Device Guard, RSA Conference 2015 - Article Type: Overview Curious about what the newly-named Windows 10 Device Guard is all about? Russell explains how Windows 10 Device Guard differs from AppLocker. In this Ask the Admin, I’ll explain the idea behind Windows 10 Device Guard, and how it differs from existing application control features built-in to Windows. Editor's Note: Microsoft released more details about Windows 10 Device Guard at the RSA Conference 2015. Microsoft's Chris Hallum wrote on the official "Windows for your Business" blog that: "... gives organizations the ability to lock down devices in a way that provides advanced malware protection against new and unknown malware variants as well as Advanced Persistent Threats (APT’s). It provides better security against malware and zero days for Windows 10 by blocking anything other than trusted apps—which are apps that are signed by specific software vendors, the Windows Store, or even your own organization. You’re in control of what sources Device Guard considers trustworthy and it comes with tools that can make it easy to sign Universal or even Win32 apps that may not have been originally signed by the software vendor. " You could be forgiven for thinking that Windows hardly needs another application control feature. Software Restriction Policies (SRP) and AppLocker in Enterprise versions of Vista and later OSes, allow organizations to control which Windows Store, Win32 apps, scripts and other types of executable can be launched, all through central policies stored in Active Directory. So a new application control feature in Windows 10 might come as a surprise. Related: RSA Conference 2014 - Microsoft Touts Windows 8 Hardware Security Options (w/Chris Hallum interview) Device Guard isn’t just a more... --- ### Microsoft Earnings: Revenues Up as Windows Continues to Decline > Microsoft on Thursday announced the financial results for its fiscal 2015 third quarter, which ended March 31. - Published: 2015-04-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-earnings-revenues-up-as-windows-continues-to-decline/ - Categories: Windows Client OS - Tags: News - Article Type: News Microsoft on Thursday announced the financial results for its fiscal 2015 third quarter, which ended March 31. The software giant posted an operating profit of $6. 6 billion on revenues of $21. 7 billion, though the results were negatively impacted by the strong US dollar and ongoing fees related to its acquisition of Nokia's devices and services businesses. "Customers continue to choose Microsoft to transform their business and as a result we saw incredible growth across our cloud services this quarter," Microsoft CEO Satya Nadella said in a prepared statement. "Next week at Build we're excited to share more about how we're empowering every individual and organization on the planet to achieve more with the next generation of our platforms. " Naturally, all eyes were on Windows, and Microsoft's one-time strongest business continued to struggle. Consumer sales of Windows licenses were down double digits—19 percent for Pro licenses and 22 percent for non-Pro licenses—while business volume licensing revenue declined 2 percent. Microsoft noted that "the business PC market declined" in the quarter. Microsoft's devices experienced mixed results. The company sold 8. 6 million Lumia handsets in the quarter—up 18 percent—and 24. 7 million non-Lumia phones, down year over year as the market for less capable phones continues to decline as expected. Surface revenues were $713 million, up 44 percent, thanks to strong sales of Surface Pro 3. But Xbox platform revenue was down 24 percent, with "lower console units" and lower prices per console. Office fared better, with... --- ### PowerShell Summit North America 2015 Wrap Up > PowerShell MVP Jeff Hicks gives us a wrap up of the what happened at the PowerShell Summit North America 2015, along with tips for growing an IT pro's skill set and career. - Published: 2015-04-23 - Modified: 2024-09-04 - URL: https://petri.com/powershell-summit-north-america-2015-wrap/ - Categories: PowerShell - Tags: Advanced - Article Type: Overview The PowerShell Summit is coming to a close, and Jeff Hicks provides some insight into where PowerShell is headed and how it affects the IT pro's career in the future. The 2015 edition of the PowerShell Summit for North America wrapped up today in Charlotte, NC. As expected, there was plenty of additional content around Desired State Configuration (DSC). PowerShell MVPs Jason Helmick and Dave Wyatt presented a session on DSC Best Practices and previewed some new features from the upcoming release of the latest PowerShell v5 preview. But don't think that the PowerShell Summit is all about DSC. Many of today's sessions focused on using PowerShell on a daily basis or to solve other problems. Jim Christopher presented a session on hacking PowerShell, where he shared a number of ways that he is taking advantage of PowerShell in his day job. The room was quite crowded and eager to see what else Jim had up his sleeve. Jim Christopher "hacking" PowerShell at the PowerShell Summit in North America. (Image Credit: Jeff Hicks) PowerShell MVP and author Richard Siddaway presented a session on using PowerShell to manage a heterogeneous environment. As part of Microsoft's move to embrace open standards, you can now use PowerShell to manage non-Windows platforms, such as Linux servers or network switches. The magic happens courtesy of Open Management Infrastructure (OMI) standards, which is an open source implementation of the same WMI and CIM technologies that we use in PowerShell and Windows. The days of homogenous environments is gone. IT pros will be managing all sorts of devices and platforms that may or may not be running Windows. PowerShell and open standards... --- ### Episode 19- April 23rd -10:15pm EDT Guest: Janene Ellefson @jamminjanene - Published: 2015-04-23 - Modified: 2015-04-23 - URL: https://petri.com/episode-19-april-23rd-1015pm-edt-guest-janene-ellefson-jamminjanene/ - Categories: Current Status “I feel the need, the need for speed. ” That’s what Tom Cruise first said and now almost everyone is saying it. We want things faster! With the ever increasing need for speed and faster performance, enterprise and consumers alike are turning to Solid State Drives (SSD). Will SSD save us from latency pains? Do you still need a wingman? Is it affordable? Join us as we discuss SSD usage with Janene Ellefson (@jamminjanene), Enterprise SSD Product Marketing Manager of Micron, to see if SSDs is our Top Gun. --- ### Microsoft Lumia 640 Review > Russell Smith provides a Microsoft Lumia 640 review and analyzes whether the device will be able to boost Windows Phone sales in 2015. - Published: 2015-04-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-lumia-640-review/ - Categories: Mobile - Tags: Lumia, Mobile, Windows 10 Mobile, windows phone 8.1 - Article Type: Review Will Microsoft's Lumia 640 be able to boost Windows Phone sales in 2015? There's been a lot of interest in Microsoft's two new mid-range phones, the Lumia 640 and Lumia 640 XL. This interest is partly due to the lack of a new flagship model that won't appear until Windows 10 Mobile has RTM'd, along with the sweet spot that these devices appear to hit, with some suggesting that they could significantly boost Windows Phone sales in 2015 if they prove to be as popular as expected. Lumia 640 DS, LTE and XL In this review, I'm going to describe my initial impressions of the Lumia 640 DS (Dual SIM), which I purchased in preference to the LTE and XL models. The patchy 4G coverage in my area and acceptable 3G performance even when tethered to my notebook, led me to think that I can live without LTE, and the larger XL model was crossed off my list because I'm not ready for a phablet just yet. Lumia 640 First Impressions The Lumia 640's 1280 x 720 5-inch IPS LED display comes with ClearBlack and Gorilla Glass 3, making it beautiful to look at, even in strong sunlight. It's worth noting that the XL model has a 5. 7-inch screen but the same resolution as its smaller sibling. Despite its size, the 640 is light, and the rounded edges and slight bevel on the back make it comfortable to hold. Windows Phone Glance is supported, a feature that shows the time and configurable notifications on the screen whenever the phone is locked, and... --- ### Google Launches Fi, a Low-Cost Cell Phone Service > Google on Wednesday announced Project Fi, a new low-cost cell phone service that it is launching in the United States. - Published: 2015-04-23 - Modified: 2024-11-19 - URL: https://petri.com/google-launches-fi-a-low-cost-cell-phone-service/ - Categories: Mobile - Tags: Google, News - Article Type: News Google on Wednesday announced Project Fi, a new low-cost cell phone service that it is launching in the United States. Fi will ride on the backs of Sprint and T-Mobile and will seamlessly switch to Wi-Fi when available, even for phone calls and text messages. But as you may expect, it comes with some serious limitations, especially in these early days. "As mobile devices continually improve how you connect to people and information, it's important that wireless connectivity and communication keep pace and be fast everywhere, easy to use, and accessible to everyone," Google vice president Communications Products Nick Fox writes in a blog post announcing the new service. "Project Fi explore this opportunity by introducing new ideas through a fast and easy wireless experience. Project Fi enables us to work in close partnership with leading carriers, hardware makers, and all of you to push the boundaries of what's possible. " That Project Fi basically competes with the wireless carrier networks on which it runs—with Fi, Google has become a mobile virtual network operator, or MVNO—is not discussed. But it's pretty clear both Sprint and T-Mobile aren't super-interested in Google stealing their customers away. That won't happen anytime soon. For now, Fi is an invite-only program—you can sign up now for Project Fi's Early Access Program and await your invitation—in keeping with Google's always quirky ways. And it only works with a single smart phone handset, Google's Nexus 6 phablet, which Google says is the first smartphone... --- ### Infographic: US Data Breaches in 2014 > Aidan Finn takes a look at an infographic provided by 27001 Academy and takes a look at US data breaches in 2014. - Published: 2015-04-22 - Modified: 2024-09-04 - URL: https://petri.com/infographic-us-data-breaches-in-2014/ - Categories: Security - Tags: #RSAC, Hacking, RSA Conference 2015 - Article Type: News Take a look at an infographic from 27001 Academy that details security breaches at organizations in the United States. Throughout 2014, news of electronic data theft was rarely out of the mainstream headlines in the United States. Target, Home Depot, Kmart, Sony, and and more made headlines. The nature of attacks and attackers has changed. Gone, mostly, are the days of some teenager stretching their hacker wings from their parent's basement, and now we're in the days of well-funded professional thieves, government-sponsored espionage, and hacktivism. A group called 27001 Academy posted an infographic not long ago that summarizes the nature and quantity of data breaches in the United States throughout last year. The United States is a small percentage of the world's population, but we can probably use the presented statistics as a sample for what happened in the rest of the world. 2014 Data Breaches in the United States Infographic – created by 27001Academy Year on Year Growth 2014 was a good year for digital thieves. According to 27001 Academy, there was a 27. 5% increase in data breaches in the United States, up from 616 incidents to 783. We cannot expect these figures to start a permanent slide for quite some time. There is just too much potential profit to be made by criminal organizations, and sadly in my opinion, some organizations are criminally negligent with updating and protecting their systems and applications. On a positive note, the number of reported data breaches was down by 7. 1% from 91,982,172 breached data records to 85,611,528. I don't think we can jump for joy with this news. Control was lost... --- ### 2015 CSA Summit Highlights Cloud Security Threats > The 2015 Cloud Security Alliance Summit focused on providing information to IT managers on how they can best handle their cloud security risks. - Published: 2015-04-22 - Modified: 2024-09-04 - URL: https://petri.com/2015-csa-summit-highlights-cloud-security-threats/ - Categories: Security - Tags: #RSAC, RSA Conference 2015 - Article Type: News This year's Cloud Security Alliance (CSA) Summit focused on highlighting the latest cloud security threats and how IT security professionals can mitigate them. One of the highlights of every RSA Conference is the Cloud Security Alliance (CSA) Summit, which is traditionally held on Monday morning of the RSA Conference. This year's summit was well-attended, with IT security professionals packing the hall to hear from a variety of cloud security experts. There were several presentations throughout the morning, but two in particular stood out for me: A panel on the top security challenges facing enterprises who adopt the cloud, and another panel that provided feedback on cloud security from a number of the largest cloud service providers, including Amazon, Google, and Microsoft. The "Top 5 Security Challenges Facing the Cloud Adopting Enterprise" panel at the CSA Summit 2015. (Photo: Jeff James) Security challenges for companies that adopt the cloud In a wide-ranging discussion about the top security challenges facing businesses who adopt the cloud, six security experts highlighted five cloud security challenges that all IT professionals should be mindful of, namely: Data Security Navigating Global Trust Issues Shadow IT Advanced Attacks & Cyber Conflicts Provider Visibility & Translating Enterprise Requirements into the Cloud When it comes to overall data security, John DiMaria of the British Standards Institution suggested that security admins needed to focus on an overall approach to security rather than on traditional perimeter defense. " you can be too reliant on technology... and what I'd call an 'eggshell' protection model: The exterior is hard, but the internal is very soft," DiMaria said. "There's a fundamental difference between IT security and information security. "... --- ### PowerShell Summit North America Day 2 Wrap Up > PowerShell MVP Jeff Hicks gives us a look at day 2 at the PowerShell Summit North America conference. - Published: 2015-04-22 - Modified: 2024-11-19 - URL: https://petri.com/powershell-summit-day-2-wrap/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, PowerShell Summit PowerShell MVP Jeff Hicks gives us a look at day 2 at the PowerShell Summit North America conference. Day 2 of the PowerShell Summit kicked off where it left off yesterday. Lots of content around Desired State Configuration (DSC) and the latest features in Windows Management Framework 5. Chef evangelist Steven Murawski demonstrated how you can integrate Chef with DSC. Hemant Mahawar, a Senior Program Manager at Microsoft revealed the magic behind DSC, explaining how all of the elements work together. A lot of the content today centered on the improvements and changes to PowerShell 5. 0, as well as Windows 10. I did a joint session with Lee Holmes, a Principal Software Engineer at Microsoft, on the new transcript and deep logging options. Transcripts will now run in the PowerShell ISE and other hosts and you can enable system wide transcription. Administrators have the capability to log script block activity as well as encrypting event logs. There is a lot happening in this space that I think will give many IT pros pause as they try to figure out what it all means to their organizations and how they will take advantage of it. We will try to help here at Petri. Related: PowerShell Summit North America 2015 is Under Way Even though attendees love this conference for access to the latest and greatest information, the PowerShell Summit also provides guidance on how to use PowerShell today for daily tasks. Ed Wilson, the Microsoft Scripting Guy, presented a session on normalizing PowerShell data. Very often we get data from a variety of sources such as CSV... --- ### Twitter #Finally Cracks Down on Abuse > After taking a series of minor steps that failed to stop certain types of abuse on its platform, Twitter has finally started to crack down. - Published: 2015-04-22 - Modified: 2024-09-04 - URL: https://petri.com/twitter-finally-cracks-down-on-abuse/ - Categories: Cloud Computing - Tags: News, Twitter - Article Type: News After taking a series of minor steps that failed to stop certain types of abuse on its platform, Twitter has finally started to crack down. In doing so, the service is walking a fine line between stopping abuse and silencing speech. And it's unclear yet what impact these changes will have on the service, let alone its growth and profitability. "We believe that users must feel safe on Twitter in order to fully express themselves," Twitter director of product management Shreyas Doshi explains in a blog post. "We need to ensure that voices are not silenced because people are afraid to speak up. " Doshi's post is a follow-up of sorts to a Washington Post op-ed piece written by Twitter general counsel Vijaya Gadde that explained the issues while declaring "it is not our role to be any sort of arbiter of global speech. " "Twitter is composed of the expressions of hundreds of millions of people from all walks of life and from around the planet," Gadde explained. "At times, that expression is uplifting, inspirational, thought-provoking and, indeed, world-changing. At other times, it can be confounding, frustrating, provocative and even profoundly offensive to a great many of our users. All of this is a reflection of the diversity of people and opinions around the world. " To help protect its users while retain their ability to speak freely, Twitter has enacted two policy changes. Its violent threats policy has been updated to include non-specific threats... --- ### Microsoft Bolsters Office 365 Security with Lockbox, New Encryption Features > Microsoft Bolsters Office 365 Security with Lockbox, New Encryption Features - Published: 2015-04-21 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-bolsters-office-365-security-with-lockbox-new-encryption-features/ - Categories: Microsoft 365, Office - Tags: #RSAC, RSA Conference 2015 - Article Type: News With the RSA Conference 2015 as a backdrop, Microsoft has announced some new security improvements and features for Office 365. Using the RSA Conference in San Francisco this morning as a backdrop, Microsoft announced several new security improvements to Office 365. More specifically, Microsoft unveiled details of a new Office 365 "customer lockbox," new security and compliance log APIs for developers, and additional options for encrypting Office 365 email. Office 365 Customer Lockbox Once of those aforementioned new features is the Office 365 "Customer Lockbox", a new feature that, according to a post on the Office blog by Vijay Kumar, senior product marketing manager, and Raji Dani, principal program manager for the Office 365 Security team, "... gives customers explicit control in the very rare instances when a Microsoft engineer may need access to customer content to resolve a customer issue. " Not to be confused with Apple board member (and former Vice President) Al Gore's infamous lockbox -- as lampooned by Saturday Night Live -- the new Office 365 Customer Lockbox is designed to minimize the level of interaction that Microsoft employees have with customer data. According to Kumar and Dani, the service is designed to rely on automation and abstraction to improve security of customer content. "Nearly all service operations performed by Microsoft are fully automated and the human involvement is highly controlled and abstracted away from customer content. As a result, only in rare cases—such as when troubleshooting a customer issue with mailbox or document contents—does a Microsoft engineer have any reason to access customer content in Office 365. " Office 365 Encryption Options Another... --- ### Book Review: Digital Wars by Charles Arthur > In this book review on Digital Wars by Charles Arthur, Aidan Finn gives his thoughts on how Microsoft, Google, and Apple have fared through their innovations throughout the years. - Published: 2015-04-21 - Modified: 2024-09-04 - URL: https://petri.com/book-review-digital-wars-charles-arthur/ - Categories: Security - Tags: Apple, Book, Google, Microsoft - Article Type: Review Aidan Finn reviews a book that takes a historical look at the rise of Apple and Google to rise from the shadows of Microsoft's then monopoly. Between my day job, my writing for the Petri IT Knowledgebase, and attempting to have a personal life, I rarely get time to read outside of a vacation. However, I recently started attending and presenting at a roadshow for my employer around the island of Ireland, where this series events is punctuated by mindless driving on boring motorways that needed to be filled by entertainment. I was switched on to Audible, Amazon's audio book company, a couple of years ago when they sponsored the Windows Weekly podcast, which is hosted by Paul Thurrott and Mary-Jo Foley. I've used these long commutes as an opportunity to listen to books. I purchased a new book, Digital Wars: Apple, Google, Microsoft and the Battle for the Internet by Charles Arthur last week, and I've listened to just over half of it over a few days of travelling. About Audible I used to read a lot but a full life means that when I hit the sack, I’m usually snoring within minutes. There's little time to read outside of those occasions when I can sit by a pool on vacation, or I'm sitting in doing some remote photography waiting for some wildlife to do what it does. I commute to work and from time to time, I'm sent on the road for a few weeks to meet as many customers as possible to evangelize about things like Microsoft Azure or the end of life of Windows Server 2003/R2 as I am on this current roadshow. On... --- ### PowerShell Summit North America 2015 Is Under Way > The PowerShell Summit North America 2015 is under way, and PowerShell MVP Jeff Hicks describes his experience, along with announcements made by Microsoft at the event. - Published: 2015-04-21 - Modified: 2024-11-19 - URL: https://petri.com/powershell-summit-north-america-2015/ - Categories: PowerShell - Tags: Advanced - Article Type: Opinion The PowerShell Summit North America 2015 is under way, and Jeff Hicks gives us a rundown of the announcements made by Microsoft at the event. (Image Credit: Will Anderson on behalf of PowerShell. org) Yesterday morning Don Jones, PowerShell MVP and President of PowerShell. org welcomed about 140 IT pros and developers to the 5th annual PowerShell Summit. The first two events were labeled as PowerShell Deep Dives, but the concept is the same. The event is three days of hard-core and intense coverage on a variety of PowerShell content. According to PowerShell. org, a community run organization that operates the PowerShell Summit, this is not your typical conference. There's no expo hall, no marketing fluff, just intense 400-level sessions aimed at educating attendees on how to get the most out of PowerShell. These sessions are led by PowerShell MVPs, leaders in the PowerShell community and members of the Microsoft PowerShell team. In the spirit of disclosure, I am presenting two sessions during the conference. The session content is hard-core but not necessarily threatening. To paraphrase something an attendee tweeted today, "You come into the conference thinking you know a lot then you realize you're just a cave man and you have so much further to evolve. " The great thing about the conference is that everyone wants everyone else to evolve. PowerShell MVP Don Jones speaking to attendees at the PowerShell Summit North America 2015. (Image Credit: Will Anderson on behalf of PowerShell. org) The conference is intentionally small in scale with an emphasis on speaker interaction as well as other attendees. There is a very open and sharing spirit at this... --- ### Yahoo Can Terminate Microsoft Search Deal This Year, Filing Reveals > According to a filing, both Yahoo and Microsoft can terminate their recently renegotiated search deal as soon as October, five years earlier than before. - Published: 2015-04-21 - Modified: 2024-09-04 - URL: https://petri.com/yahoo-can-terminate-microsoft-search-deal-this-year-filing-reveals/ - Categories: Cloud Computing - Tags: Bing, News, Yahoo - Article Type: News Credit: Techcrunch   Yahoo's Marissa Mayer may have driven a tougher bargain with Microsoft than originally expected: According to a recently revealed regulatory filing, both Yahoo and Microsoft can now terminate their recently renegotiated search deal as soon as October 2015, a full five years earlier than before. This is a fairly stunning achievement for Mayer, who has been openly critical of the Microsoft deal and has worked to end it or at least minimize its impact on Yahoo's business since she became CEO in 2012. And while Microsoft can of course terminate the deal too, it would never do so. Only Yahoo—or Mayer, more specifically—would pull the trigger on such a change, which could be catastrophic to Microsoft's Bing search services. Indeed, that Microsoft CEO Satya Nadella would even agree to such a clause shows how much the software giant is willing to do to keep Yahoo's search volume inside the Bing fold. Yahoo is still key to Bing's ongoing success. The trouble is, this deal is going to end badly. In some ways, that's not all that surprising. The deal is steeped in some bad blood between the companies, and dates back to Microsoft's abortive attempt to buy Yahoo—in a rather acrimonious transaction valued at over $44 billion—back in 2008. At the time, then-Microsoft CEO Steve Ballmer was worried that Google would establish a monopoly in consumer-based cloud services, and he figured that merging Microsoft's and Yahoo's often-overlapping assets would be... --- ### Identifying a Computer Name with a Ping Sweep Tool with PowerShell > Learn how to identify a computer name with a custom ping sweep tool created in Windows PowerShell. - Published: 2015-04-20 - Modified: 2024-09-04 - URL: https://petri.com/building-ping-sweep-tool-powershell-part-4/ - Categories: PowerShell - Tags: Advanced, PowerShell Ping Sweep Tool, Scripting - Article Type: How To Learn how to identify a computer name with a custom ping sweep tool created in Windows PowerShell. I hope you've been following along in this series as we build a PowerShell tool to ping a range of IP addresses in a given subnet. In the last article, we left with a pretty decent tool that displayed the IP address for computers that responded. Although that may be all you need, lets try to get a more rich result since PowerShell is already writing an object to the pipeline.  It would probably be helpful to see the computer name. PowerShell Ping Sweep Tool Article Series Building a Ping Sweep Tool with PowerShell PowerShell Ping Sweep Tool: Adding Parameter Validation Adding Trace Information to a PowerShell Ping Tool Identifying a Computer Name with a PowerShell Ping Sweep Tool Building a PowerShell Ping Sweep Tool: Adding a Port Check If you are running Windows 8 or later, you can easily use the Resolve-DnsName cmdlet with an IP address. ​ Using PowerShell's Resolve-DnsName cmdlet. (Image Credit: Jeff Hicks) Excellent. I can see that the NameHost property is what I want. Although I'm not a big fan of using raw . NET when there is a perfectly good cmdlet to use, this can serve as an alternative method: ​ Using . NET to grab the host name in Windows PowerShell. (Image Credit: Jeff Hicks) This approach provides us with a different property name but gives us the same result. It would be nice to be able to write an object to the pipeline with the IP address... --- ### How to Query the Windows Search Index using SQL and PowerShell > Learn how to query the Windows Search index using SQL and PowerShell, along with simple steps on generating reports with PowerShell. - Published: 2015-04-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-query-the-windows-search-index-using-sql-and-powershell/ - Categories: Windows Server - Tags: document management, Editor's Pick, file management, Get-ChildItem, Windows Search - Article Type: How To Russell Smith walks us through on how to search the file system in PowerShell and provides steps on how to query the Windows Search index using SQL. In this article we'll discuss how to query the Windows Search index using SQL, and I'll also provide steps on how to generate reports using Windows PowerShell. In a previous article, Manage Documents with Windows Explorer using File Properties and Tags on the Petri IT Knowledgebase, I walked readers through a simple system I'd devised for tracking the status of Word documents in File Explorer by tagging files, adding information to file properties, and searching using Windows Search Advanced Query Syntax (AQS). The aim was to track documents created within a specific calendar period, based on simple complete or not complete criteria, to make planning my schedule easier. I also wanted to see which documents were left unfinished. The goals were achieved using technologies built-in to Windows 8, namely File Explorer and Windows Search Advanced Query Syntax, and the extended file properties that Microsoft Word brings to . docx files. In this article, I want to look at how to achieve those same goals programmatically with PowerShell. Don't forget that if you want to use Windows Search on Windows Server, it is not installed by default. Using PowerShell to Query the File System In the original article, I queried Windows Search using its Advanced Query Syntax to find files by date created, a file system property inherent to Windows, and secondly by the value of content status, a property for Microsoft Word documents. PowerShell's Get-ChildItem Cmdlet PowerShell supports querying the file system directly, so you can search file system... --- ### Cloud Moves Slow Progress of Microsoft's On-Prem Servers > Microsoft's move to the cloud has seriously hindered its ability or desire to ship on-premises server products. And it's only going to get worse over time. - Published: 2015-04-19 - Modified: 2024-09-04 - URL: https://petri.com/cloud-moves-slow-progress-of-microsofts-on-prem-servers/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Last year's TechEd was the last for the long-running conference, but the most notable thing about it was the utter lack of on-premises announcements. But on the eve of TechEd's successor, Ignite—which gets underway in two weeks in Chicago—it's clear that TechEd 2014 wasn't an exception. Microsoft's move to the cloud has seriously hindered its ability or desire to ship on-premises server products. And it's only going to get worse over time. Indeed, Microsoft ushered in 2015 by revealing that it would delay the release of its next, Windows 10-based Windows Server version into 2016. The product was originally going to ship alongside Windows 10 in late summer 2015—"better together" being the one-time strategy—and Microsoft never explained the reasons for the delay. But as I noted at the time, with more and more customers moving new infrastructure to the cloud, the need for another on-premises server is much less pressing than it was just a few years ago. Windows Server vNext, as we now call this product, will be a big deal whenever it appears. And it's being developed alongside a new System Center release that will play an important role in Microsoft's hybrid deployment strategy, where enterprises can mix and match between on-premises and cloud-based infrastructure. The software giant is pushing an identical strategy in office productivity, and not coincidentally it announces regular updates to the cloud-based Office 365 offerings, but has moved much more slowly to provide similar functional updates to the corresponding on-prem office... --- ### RSA Conference 2015 Survival Guide > Check out our RSA Conference 2015 Survival Guide for hints, tips, and tricks on getting the most out of this popular IT security conference. - Published: 2015-04-17 - Modified: 2024-12-03 - URL: https://petri.com/rsa-conference-2015-survival-guide/ - Categories: Security - Tags: #RSAC, RSA Conference 2015 - Article Type: Overview Heading to the RSA Security Conference? Check out our conference guide for all the latest tips, tricks, and advice for getting the most out of the event. The next RSA security conference starts just a few days from now, and a veritable flood of security professionals, journalists, analysts, IT administrators, and security vendors are making their way to the Moscone Center in San Francisco for a full week of security sessions, keynotes, parties, and networking with peers. I've been a regular attendee at the RSA Conference, and this will be my seventh trip. (If you're interested in popping open an RSAC time capsule to see how the conference has changed over the years, feel free to dust the cobwebs off my coverage of the 2008, 2009, 2011, 2012, 2013, and 2014 RSA conferences. ) An RSA Conference Survival Guide As is the case with many tech conferences, there are often too many sessions to see, too many vendors to hear pitches from, too many friends and colleagues to catch up with, and too many parties and receptions to attend. That's why I've always liked to sketch out a conference strategy beforehand, so I can prioritize my time for the things that matter most, and to minimize effort on things that don't.  I put together RSA survival guides for both 2014 and 2013, so I thought it would be useful to work on an updated one for this year. Heading to RSA Conference 2015? Get the most out of your trip with some of our time-saving conference tips and tricks. (Image: RSA Conference) As always, I'd also love to hear your tips and tricks for getting the most out of RSA, so please... --- ### PowerShell Problem Solver: Use PowerShell to Find Local Groups and Members > PowerShell MVP Jeff Hicks shows us an another way to use PowerShell to find local groups and members. - Published: 2015-04-17 - Modified: 2024-09-04 - URL: https://petri.com/use-powershell-to-find-local-groups-and-members/ - Categories: PowerShell - Tags: Advanced, CIM-WMI, Get-CIMInstance, get-wmiobject, PowerShell Problem Solver, Scripting - Article Type: How To Identifying members of local groups is an ongoing task for IT pros. In this PowerShell Problem Solver, Jeff Hicks shows us a new way to find local groups and members with PowerShell. Identifying members of local groups is an ongoing task for IT pros. Although I've written about local groups before on the Petri IT Knowledgebase, another discussion thread came up, so I thought I'd revisit this topic again as I think it makes for a good learning opportunity. PowerShell Problem Solver: Find Local User Accounts Using PowerShell PowerShell Problem Solver: Get Local Active Directory Group Members with PowerShell The goal is to have PowerShell write something to the pipeline that indicates the computer name, the name of a local group, and its members. There is a possibility that the output might be directed to a CSV file, so keep that in mind. I'm going to test with the local computer. Eventually we will be able to scale out, although even that part of the task has some options. An easy way to list local groups is with WMI. You can use either Get-WMIObject or Get-CimInstance. ​ Using get-wmiobject in Windows PowerShell. (Image Credit: Jeff Hicks)   The code in the forum was then turning around and using a ForEach loop to get each group using ADSI. ​ You can then use some arcane COM code to extract the member names. ​ You could use those values in your output. We'll come back to the ADSI code. My first thought was to simply use WMI for everything. Each Win32_Group object has a collection of associated classes, including Win32_UserAccount, which would reflect the users... . --- ### Paul Thurrott's Short Takes: April 17, 2015 > Because Windows XP will never really go away, this week's other news includes an EU "I told you so" to the US DOJ and FTC and so much more. - Published: 2015-04-17 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-april-17-2015/ - Categories: Windows XP - Tags: News - Article Type: Opinion Because Windows XP will never really go away, this week's other news includes an EU "I told you so" to the US DOJ and FTC, Google's Chrome support extension for Windows XP, a major delay for SharePoint 2016, the Apple Watch launch that wasn't, Google adds handwriting support to Android, Nokia buys rival and sets up HERE sale, and, yes, the PS4 beat Xbox One yet again last month. Europe takes its case against Google to US regulators European Union competition commissioner Margrethe Vestager—aka my new personal hero—explained this week why the European Commission could accuse Google of antitrust abuses where the US has failed to do so. Curiously, the answer wasn't "we're not as incompetent. " Instead, she cited Google's higher market share in Europe, which is over 90 percent and makes the firm's search business a monopoly. Google has "good products," she said, but the company also "abuses this very strong and dominant position. " Interestingly, Vestager is visiting the US this week and will meet with the Justice Department and Federal Trade Commission. Hopefully, she will inspire them to do the right thing as well. "AMD CEO is hopeful that Windows 10 will fire up the PC market in 2015" AMD? What's an AMD? Google extends Windows XP support in Chrome through the end of 2015 Microsoft may have signed Windows XP's death warrant in April 2014 when it stopped supporting the aging and insecure OS. But here we are, fully a year later, and Windows... --- ### How to Force an Azure VM Shutdown > Learn how to force an Azure VM shutdown in this how-to article by Contributing Editor Russell Smith. - Published: 2015-04-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-force-an-azure-vm-shutdown/ - Categories: Microsoft Azure - Tags: Get-AzureSubscription, Stop-AzureVM - Article Type: How To Have a non-responsive VM locked solid in Microsoft Azure? Russell Smith shows you how to leverage PowerShell to unstuck a stuck VM in this helpful tutorial. In this easy Ask the Admin, I'll show you how to force an Azure virtual machine to shut down. Azure VMs are generally reliable, but there can be occasions when they get stuck during the start process and cannot be further controlled using the web-based management portal. In this article, I’ll show you how to use PowerShell to resolve this problem so that you can have another, hopefully successful attempt, at starting your virtual machine. A Common Reason to Force an Azure VM to Shut Down There are different reasons why you might want to force an Azure VM to shut down, but one of the most common is if a VM hangs when starting. Before you run the commands below, you will need to have Microsoft Azure PowerShell installed on your management PC, and make a secure connection to your Azure subscription. For more information on managing Azure using PowerShell, see Setup Windows Azure PowerShell Management on the Petri IT Knowledgebase. Once you've got Microsoft Azure PowerShell installed, and a publish settings file downloaded and imported for your Azure subscription, open a PowerShell prompt and select the Azure subscription that you want to use in the current session: ​Select-AzureSubscription –SubscriptionName Pay-As-You-Go If you're not sure what Azure subscriptions have been installed on the local management PC, run the command below and look for the SubscriptionName field in the results: Get-AzureSubscription You can confirm the subscription set in the current PowerShell session using Get-AzureSubscription: ​Get-AzureSubscription –Current [adkit zone="freestyle"... --- ### Episode 18 - April 16th - 10:15pm EDT Guest: Jared Shockley @jshoq - Published: 2015-04-16 - Modified: 2015-04-16 - URL: https://petri.com/episode-18-jared-shockley-jshoq/ - Categories: Current Status We all love it. We all hate it. SharePoint. Is it just a glorified file server with sidebars and images? Or have we not really seen the full potential of this powerful collaboration tool? We dive head first into the world of SharePoint with our guest Jared Shockley (@jshoq), Microsoft Service Engineer for SharePoint, to find the hidden gems that SharePoint may have for us. Tune in to see if SharePoint breeds unicorns for use in Office 365. --- ### Will Windows 10 Mobile be Ready to Launch with Windows 10? > Will Windows 10 Mobile be ready to launch with Windows 10? Russell Smith explains why it is critical that Microsoft should launch both for the sake of the company's One Microsoft mantra. - Published: 2015-04-16 - Modified: 2015-04-16 - URL: https://petri.com/will-windows-10-mobile-be-ready-to-launch-with-windows-10/ - Categories: Windows 10 - Tags: Windows 10 Mobile - Article Type: Opinion Russell Smith explains why Windows 10 Mobile must be developed in lockstep with Windows 10 for meaningful beta testing. There's been some doubt expressed in the IT community recently about whether Microsoft will be able to deliver Windows 10 in time for a summer release, but of more concern is whether Windows 10 Mobile will be completed at the same time and to a satisfactory standard. Windows 8. 1 was released to manufacturing (RTM) in September 2013, but Windows Phone 8. 1 didn't appear until seven months later in spring 2014. Since the release of Windows Phone 8. 1, I've found it to be an ideal companion to Windows 8. 1, and in reflection, the months of delay between the OS launches left an unfortunate gap in the Windows ecosystem. There was a good technical reason for this delay, namely a set of new APIs to allow Windows Phone 8. 1 to run Universal apps, which share up to ninety percent of their code with Windows Store apps. The Windows 10 Technical Preview was launched in October 2014 and has proven good enough for many to install it on their primary devices, but I've chosen not go down that route for the moment; partly due to having been caught out in the past with the Windows 8 Release Candidate, which had some annoying bugs that were difficult to live with, some applications which don't yet work properly in Windows 10, but more importantly due to my reliance on the Windows 8. 1 and Windows Phone 8. 1 partnership, and the natural extension Phone provides to Windows 8. 1. The Windows 10 Mobile... --- ### Microsoft and Yahoo Renew Search Partnership > Microsoft has closed an important deal with Yahoo, which will continue using Bing technologies in its own search experience. - Published: 2015-04-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-and-yahoo-renew-search-partnership/ - Categories: Cloud Computing - Tags: Bing, News, Yahoo - Article Type: News Marissa Mayer (Reuters) Microsoft has closed an important deal with Yahoo, which will continue using Bing technologies in its own search experience. The only question what concessions Microsoft made to keep the partnership alive, as Yahoo was known to have been unhappy with search revenues and was actively seeking to change the deal or engage with a new partner. "Over the past few months, Satya and I have worked closely together to establish a revised search agreement that allows us to enhance our user experience and innovate more in our search business," Yahoo CEO Marissa Mayer said in a prepared statement. "This renewed agreement opens up significant opportunities in our partnership that I’m very excited to explore. " According to the announcement, Microsoft and Yahoo say they have "amended" their search partnership to "improve the search experience, create value for advertisers and establish ongoing stability for partners. " This wording only hints at Yahoo's growing dissatisfaction with the Microsoft search partnership over the years. Ms. Mayer has been vocally critical of the deal in the past, and she actually tried to stop Yahoo from adopting Microsoft's search technology in mobile products in 2013. But a court ruled that the search partnership precluded Yahoo from not using Microsoft search technology. Mayer, of course, inherited the Microsoft search alliance when she joined Yahoo in 2012. The ten-year deal was struck by former Microsoft CEO Steve Ballmer and former Yahoo CEO Carol Bartz in 2009, and allowed for... --- ### Major New Deals Make it Clear that Android is Microsoft's Plan B in Mobile > Microsoft is involved in deals to ensure that its apps and services are bundled on Samsung and other Android devices, plus a new deal with Cyanogen. - Published: 2015-04-16 - Modified: 2024-09-04 - URL: https://petri.com/major-new-deals-make-it-clear-that-android-is-microsofts-plan-b-in-mobile/ - Categories: Mobile - Tags: Android, Cyanogen, News - Article Type: News Seeing defeat in mobile, Microsoft has orchestrated a series of deals to ensure that its apps and services are bundled on Samsung and other Android devices. But recent news that AT&T and Verizon Wireless would not permit this bundling has been somewhat tempered by a major new bundling deal with Cyanogen, which creates an open version of Android. Folks, it's official. Android is Microsoft's Plan B in mobile. Oddly enough, the story begins with a legal battle. Like most Android device makers, Samsung agreed to license Microsoft's mobile industry patents related to Android, rather than fight the software giant in court. But as it rose to become the world's biggest maker of smart phones, Samsung's royalty payments to Microsoft became onerous to the firm, surpassing $1 billion in 2013. So it simply stopped paying. Microsoft sued, Samsung counter-sued, and the two companies entered in to what appeared to be the start of a very long legal battle. But in February 2015, Microsoft and Samsung suddenly settled, though the terms of that agreement have never been made public. A month later at Mobile World Congress, Samsung announced its Galaxy S6 and S6 Edge flagship handsets. And among the many improvements on the devices, Samsung revealed that they would come bundled with Microsoft's OneDrive, OneNote and Skype apps, and with 100 GB of additional OneDrive cloud storage for two years. The deals was seen as a major win for Microsoft. But the software giant's usual nemeses—AT&T and Verizon—have stepped... --- ### PowerShell Problem Solver: Create Numbered Output Lists with PowerShell > Learn how to create numbered output lists with PowerShell in this article by PowerShell MVP Jeff Hicks. - Published: 2015-04-15 - Modified: 2024-09-04 - URL: https://petri.com/create-numbered-output-lists-with-powershell/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver - Article Type: How To Learn how to create numbered output lists with PowerShell in this article by PowerShell MVP Jeff Hicks. I came across an interesting question the other day in a PowerShell forum. The poster wanted to include numbers for each line of output, which might look like this: 1. Stopped AdobeFlashPlaye... Adobe Flash Player Update Service 2. Stopped AeLookupSvc Application Experience 3. Stopped ALG Application Layer Gateway Service I wasn't sure at first why you would want to do this, as this feels like text parsing and not taking advantage of PowerShell's object nature. But I started playing along. Here's one approach. ​get-service | foreach -Begin {$i=0} -Process { $i++ "{0:D2}. {1} " -f $i,$_. Name,$_. Status } Which gives you this: A numbered output list created with Windows PowerShell. (Image Credit: Jeff Hicks) That's not bad I suppose if all you want to do is look at the list or save it to a text file because all you have is text. Although, you could use it to build an interactive console menu. get-service | where {$_. status -eq 'running'} | foreach -Begin {$i=0} -Process { $i++ "{0}. {1}" -f $i,$_. Name } -outvariable menu $r = Read-Host "Select a service to restart by number" Write-Host "Restarting $($menu)" -ForegroundColor Green Restart-Service $menu. Split -PassThru -force I'm saving the results to $menu, so that I can access them later in the example. An interactive console in Windows PowerShell. (Image Credit: Jeff Hicks) That's sorta cool. But because this is PowerShell, we should simply add a property. ​$global:i=0 get-service | Select @{Name="Item#";Expression={$global:i++;$global:i}},Name,Displayname,Status I am referencing the... --- ### Applying Security Policies with the Windows Server Security Configuration Wizard > Learn how to apply security policies with the Windows Server Security Configuration Wizard in this article by Russell Smith. - Published: 2015-04-15 - Modified: 2024-09-04 - URL: https://petri.com/applying-security-policies-with-the-windows-server-security-configuration-wizard/ - Categories: Security - Tags: Authentication, Security Configuration Wizard, windows firewall - Article Type: Overview Learn how to apply and rollback security policies for Windows Server using the Security Configuration Wizard. In the first article in this two-part series, I discussed evaluating whether it's necessary for security configuration settings to be changed from the defaults in Windows Server, and how to use the Security Configuration Wizard (SCW) to create and save a specially tailored security policy. In this final part, I'll show you how to apply and roll back the policy we created in part one using the GUI, along with instructions on how to convert a SCW policy into a Group Policy Object using the command line version of the tool. Apply a Previously Created Security Policy Once you've determined that a security policy works for a server or group of servers, then you can use the Security Configuration Wizard to apply the policy. Start the wizard from Server Manager. Click Next on the welcome screen. On the Configuration Action screen, select Apply an existing security policy. Click Browse to select the security policy file (. xml) that you want to apply. By default, policies are stored in c:windowssecuritymsscwpolicies. Click Next once you've chosen a file. Apply an existing policy using the Security Configuration Wizard (Image Credit: Russell Smith) Now select the server you want to apply the policy to. You can either type the name in the Server box, or click Browse to select the server from Active Directory. Don't forget you need local administrator permissions on the destination server. Click Next to apply the policy on the Apply Security Policy screen. The policy should apply... --- ### EU Formally Charges Google with Antitrust Violations, Will Investigate Android Too > The European Union formally accused Google of violating antitrust laws by abusing its dominance in Internet search to harm competitors and consumers. - Published: 2015-04-15 - Modified: 2024-09-04 - URL: https://petri.com/eu-formally-charges-google-with-antitrust-violations-will-investigate-android-too/ - Categories: Cloud Computing - Tags: Android, Google, News, Search - Article Type: News European Commission president Jean-Claude Juncker and competition commissioner Margrethe Vestager.   European Union competition commissioner Margrethe Vestager on Wednesday formally accused Google of violating antitrust laws by abusing its dominance in Internet search to harm competitors and consumers. Additionally, Ms. Vestager said that her European Commission was investigating whether Google forces phone makers to favor its own services on the Android mobile OS. Google controls 90 percent of the Internet search market in the EU. "The European Commission has sent a Statement of Objections to Google alleging the company has abused its dominant market position for general search services in the European Economic Area (EEA) by systematically favoring its own comparison shopping product in its search results," an EC statement explains. "The Commission has also formally opened a separate antitrust investigation into Google's conduct as regards the mobile operating system Android. " In the EU, a Statement of Objections is a formal charge for a crime. So Google now has 10 weeks to respond to the EU, and it may seek to settle the case. As you may recall, Google had reached a weak preliminary settlement with Ms. Vestager's predecessor, Joaquin Almunia. But that deal was scuttled after numerous EU politicians and Google competitors complained that the search giant had gotten off too easy. So if Google would still like to settle this case, it will have to agree to far more severe behavioral changes than before. At stake are potential fines of $6. 35... --- ### Google Bolsters Cloud Networking Services > Google announced a host of new updates to a variety of Google Cloud Networking services, including new load balancing access points, new Carrier Interconnect partners, and more. - Published: 2015-04-14 - Modified: 2024-09-04 - URL: https://petri.com/google-bolsters-cloud-networking-services/ - Categories: Google Cloud Platform - Tags: Editor's Pick, Google Cloud DNS, Google Compute Engine, VPN - Article Type: News Google is firing the latest salvo in the form of a host of new updates to a variety of Google Cloud Networking services. The ongoing game of one-upmanship between Amazon, Microsoft, and Google over public cloud services continues unabated, with Google firing the latest salvo in the form of a host of new updates to a variety of Google Cloud Networking services. New Google Load Balancing Access Points Chief among the improvements is Google's expanded load balancing offerings, which gains a dozen additional access points across the globe, namely in Chicago, Dallas, Lisbon, London, Los Angeles, Madrid, Miami, Munich, Paris, San Francisco, Seattle, and Stockholm. That bolsters Google's points of presence footprint to 30 countries and more than 70 discrete access points. Related: Can Google Cloud Platform win the Cloud battle against AWS and Azure? Latency -- the time it takes information to travel from one location to another across the internet -- can sap performance for cloud services, so Google's larger number of access points should mean shorter distances for data it travel for many customers. Google Cloud Networking Product Management Lead Morgan Dollard elaborated on the new points of presence in a post on the Google Cloud Platform blog. "Today’s connected user is accustomed to fast and responsive application services, be they web services accessed from a browser or apps on a mobile device," wrote Dollard. "... with the expansion of Google’s load balancing solution to 12 additional locations, your workloads running on Google Cloud Platform are closer in proximity to your users who are making service requests from all over the globe. " A trio of... --- ### The Curse of Zune: Is Microsoft too Focused on the US Market? > Aidan Finn dives into Microsoft's strategy with the United States market. Aidan argues that Microsoft may be hurting itself by neglecting the international markets. - Published: 2015-04-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-curse-zune/ - Categories: Windows Client OS - Tags: Bing, Cortana, Editor's Pick, Microsoft, Windows phone - Article Type: Opinion Aidan Finn discusses how Microsoft is limiting their potential market by arbitrarily restricting features or limiting services to one or a few countries. Rather than being the title of some exciting Steven Spielberg movie, The Curse of Zune is an affliction that Microsoft has voluntarily placed upon itself for many years, depriving customers of services and features, and crippling their profitability. The History of Microsoft's Relationship with Non-US Customers Do you remember Zune? Yes, it was more than just a joke in an episode of Two And A Half Men. The iPod killer that few bought was an interesting gadget, not that I have ever actually seen one in person. Time after time at local events in Ireland, Microsoft reps would rave about this device and how amazing it was.  The first time I heard about it I thought, "That sounds great! " And then I tried to browse the Microsoft Zune site and discovered that anyone who lives outside the US who tried to access the page was redirected and told that this page was only available to residents of the USA, a country which has only 4. 45% of the world's population. Stupid things like this have continued over the years. Before Windows Phone 8. 1, most Windows Phone features only worked in about seven countries. For example, I couldn't browse podcasts in the store. The reason that Microsoft gave? Licensing. I found it strange that Apple and Google have no such issue providing links to RSS feeds. I also found it rather odd that a paid-for app in the store that allowed non-USA residents to browse and subscribe to podcast feeds was allegedly written by employees of the Windows... --- ### Microsoft Rehires Kurt DelBene as Strategy Chief > Kurt DelBene will return to Microsoft after two years serving the US Secretary of Health and Human Services and overseeing Healthcare.gov. - Published: 2015-04-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-rehires-kurt-delbene-as-strategy-chief/ - Categories: Cloud Computing - Tags: News - Article Type: News After a decade of steady exoduses by top Microsoft executives, a few are starting to return home: following in the footsteps of Stephen Elop, Kurt DelBene has returned to the software giant after two years serving the US Secretary of Health and Human Services and overseeing Healthcare. gov, the Obamacare web portal. DelBene has been named executive vice president of Corporate Strategy and Planning, is joining Microsoft's Senior Leadership Team, and will report directly to CEO Satya Nadella. "Kurt brings extensive background in business strategy, engineering and customer solutions, as well as a proven track record of delivering strong results in complex environments," Mr. Nadella said in a prepared statement announcing DelBene's return. "His experience at Microsoft, recent work on healthcare. gov, and work with startups here in Seattle give him a unique perspective for this new role. " "I'm excited to rejoin Microsoft," DelBene said. "My time in Washington and in working with startups has brought a fresh appreciation for the challenges our industry faces, and the ways Microsoft has the talent and ambition to tackle these challenges in creative ways. " According to Microsoft, DelBene will join Nadella's Senior Leadership Team—now with 16 members—and will "lead both cross-engineering and cross-business strategy and execution initiatives with an emphasis on opportunities that span product and engineering boundaries. " He will focus on identifying future investments and opportunities; working with other senior executives to ensure end-to-end execution; and assisting the CEO in communicating, executing and sustaining strategic initiatives, Microsoft... --- ### Building a PowerShell Ping Sweep Tool with Parameter Validation > Learn how to build a PowerShell ping sweep tool with parameter validation in this tutorial by PowerShell MVP Jeff Hicks. - Published: 2015-04-13 - Modified: 2024-09-04 - URL: https://petri.com/building-a-powershell-ping-sweep-tool-with-parameter-validation/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Get-NetIPAddress, NETCPIP, ping command, PowerShell Ping Sweep Tool, Scripting - Article Type: How To Jeff Hicks continues his article series on building a ping sweep tool with PowerShell. In this article, he shows us how to easily add parameter validation to our tool. In the last article in our series on using PowerShell to create ping sweep tools, we had created a basic function to ping a range of IP addresses. Since we are taking the time to write a function, we should make it as robust and complete as possible. One thing we can do is add some parameter validation. These are tests to ensure that a parameter value meets some criteria. I find it better to throw an error at the beginning before getting half-way through the script and bombing out because a parameter value was wrong. PowerShell Ping Sweep Tool Article Series Building a Ping Sweep Tool with PowerShell PowerShell Ping Sweep Tool: Adding Parameter Validation Adding Trace Information to a PowerShell Ping Tool Identifying a Computer Name with a PowerShell Ping Sweep Tool Building a PowerShell Ping Sweep Tool: Adding a Port Check Let's look at the first parameter for the IP subnet. When I work on something, I try to think about the person who will use it, even if it is myself. Does it make sense to simply type a parameter value or should I require the parameter name? In this case, it seems to me that an expectation would be to type Test-Subnet X, where X is the subnet address. Any other parameter values can require the name, such as Start and End. In the current version, I have hard-coded my subnet. But if you run the command, then you'll need to change that. I could... --- ### Create Custom Security Policies with the Windows Server Security Configuration Wizard > Learn how to create custom security policies with the Windows Server Security Configuration Wizard. - Published: 2015-04-13 - Modified: 2024-09-04 - URL: https://petri.com/create-custom-security-policies-with-the-windows-server-security-configuration-wizard/ - Categories: Security - Tags: Authentication, Security Configuration Wizard, windows firewall - Article Type: Overview Russell Smith shows us how to easily create custom security policies for Windows Server using the Security Configuration Wizard to suit your organization's business needs. The Security Configuration Wizard (SCW) first appeared in Windows Server 2003 Service Pack 1 and helps organizations reduce the attack surface on production servers. Much has changed since Microsoft first launched the Security Configuration Wizard. Back in the days of Windows 2000 and Windows XP, Windows wasn't considered secure out-of-the-box. Today, except in highly sensitive deployments, Windows client and server are pretty secure from the get go. Only ill-advised reconfigurations, such as disabling User Account Control (UAC), make the OS less secure than it could be. Introducing Microsoft's Security Configuration Wizard Despite the vastly improved security of Windows Server since SCW was first included in the OS, it can still be used to improve security and ensure that servers are configured using an identical security policy. SCW isn't the only free tool from Microsoft that can help organizations achieve this, but SCW is best suited to small and medium sized organizations with limited IT support to hand. A Word of Warning Although I'll remind you from time to time as part of the instructions included in this article, modifying security settings from the defaults risks creating application compatibility or network connection problems. In the worst case scenario, you could lose access to a remote server, which would be especially catastrophic if it is located in a remote datacenter with no Integrated Lights Out facility. Therefore, any security policies created using SCW should be thoroughly tested in a pre-production environment, and when you get around to applying policies on... --- ### Will Microsoft Finally Buy HERE Maps from Nokia? > Nokia is considering shedding its HERE mapping and location business unit. And Microsoft is on a short list of companies that could purchase HERE. - Published: 2015-04-13 - Modified: 2024-09-04 - URL: https://petri.com/will-microsoft-finally-buy-here-maps-from-nokia/ - Categories: Mobile - Tags: Bing, HERE, News, Nokia This past week, a Bloomberg report claimed that Nokia is considering shedding its HERE mapping and location business unit. Microsoft is on a short list of companies that could purchase HERE. Since this technology is so strategic, it should do so. As you may recall, Microsoft purchased Nokia's devices and services businesses for about $7. 2 billion in 2014, after announcing the deal the previous fall. Widely rumored before the announcement, many assumed that the software giant would acquire Nokia's HERE mapping business as well. But that didn't happen, allegedly because Nokia was asking too much. So Nokia kept HERE and Microsoft entered into a four year licensing deal for the technologies instead. But today, about a year after Microsoft's acquisition of the heart of Nokia was consummated, much has changed. Microsoft quickly laid off about half of the 25,000 employees that joined its ranks from Nokia in 2014, and shuttered manufacturing and R&D facilities around the world. But with handset sales dropping, the impact of the Nokia purchase has been largely negative on Microsoft's bottom line. And some question whether the Windows Phone business can even survive in a smart phone market dominated by Android and, to a lesser extent, iPhone. Nokia's technological impact to Microsoft is less clear. The firm's employees brought mobile and design expertise to the company, and of course senior executive Stephen Elop—who was previously Nokia's CEO—has returned to Microsoft as well. Elop oversees Microsoft's hardware businesses, which include Surface, Xbox and hardware peripherals in... --- ### PowerShell Problem Solver: Find Local User Accounts Using PowerShell > Learn how to easily find local user accounts using PowerShell with this step-by-step tutorial by Jeff Hicks. - Published: 2015-04-10 - Modified: 2024-09-04 - URL: https://petri.com/find-local-user-accounts-using-powershell/ - Categories: PowerShell - Tags: CIM-WMI, Get-CIMInstance, get-wmiobject, Intermediate, PowerShell Problem Solver - Article Type: How To Learn how to easily find local user accounts using PowerShell with this step-by-step tutorial by Jeff Hicks. I got a good question from a Petri reader on Twitter not long ago. I was asked about finding local user accounts on a list of servers. Seems like a reasonable task and something that PowerShell can handle quite nicely. If you merely want to enumerate local user accounts, WMI is a great place to start. We can use the Win32_UserAccount class. Related: Managing Local Active Directory Groups You can use with Get-WMIObject or Get-CIMInstance. Using the latter is preferred these days as it uses the PowerShell remoting ports and is much more firewall friendly. With either cmdlet it is also very easy to list users from multiple computers. When developing a PowerShell expression using WMI, I like to test locally first if at all possible. This ensures my syntax is correct. ​get-ciminstance win32_useraccount Use the Get-CIMInstance cmdlet in Windows PowerShell. (Image Credit: Jeff Hicks) That seemed pretty easy. My computer does not belong to a domain so the Domain property reflects the computername. As with most things in PowerShell, there is more here than meets the eye. I could re-run this command and pipe to Select-Object *, or I can use Get-CIMClass to discover the properties. ​get-cimclass win32_useraccount | select -expand cimclassproperties | Select Name,CimType Obtaining properties in Windows PowerShell. (Image Credit: Jeff Hicks)   Once you know the properties, it is simple enough to include them. ​get-ciminstance win32_useraccount | Select Name,Description,Status,Disabled,AccountType | sort Status | format-table -groupby Status... --- ### Installing Microsoft Anti-Malware in Azure VMs > Learn all about installing Microsoft Anti-Malware in Azure VMs in this how-to article by Aidan Finn. - Published: 2015-04-10 - Modified: 2024-11-19 - URL: https://petri.com/installing-microsoft-anti-malware-azure-vms/ - Categories: Security - Tags: Anti-Malware, Antivirus, SCEP, System Center Endpoint Protection - Article Type: How To Aidan Finn shows you how to deploy Microsoft Anti-Malware to Azure virtual machines at scale with scanning exceptions and schedules using PowerShell. Microsoft made antivirus software generally available to Azure virtual machines last year, including Microsoft Anti-Malware (free -- but remember that scanning causes storage transactions that are not free) and third-party paid-for solutions. I briefly discussed how one could deploy anti-malware via the Ibiza preview portal in that post. While that deployment solution is great for small or one-off deployments, it will not scale. In this post, I'll show you how you can use PowerShell to deploy Microsoft Anti-Malware to your Azure virtual machines. Microsoft Anti-Malware Scan Types When you add the Microsoft Anti-Malware extension, you are prompted to configure the scan settings. This includes: Scan exceptions: Most server applications have some files, folders or processes that must not be scanned by antivirus. Microsoft has a large collection of such scan exceptions. Real-time scanning: Do you want real-time protection? This offers the best protection, but for any admin where IPS is critical, real-time scanning can be a bad thing. Schedule scan: You can perform a quick or full scan on a regular basis on the day and time of your choosing. The UI for installing and configuring these settings is pretty simple. The one odd bit is the scan time is based on the minute of the day. For example: 120 is 2 AM 180 is 3 AM Configuring the scan settings of Azure Microsoft Anti-Malware (Image Credit: Aidan Finn) While the UI is simple to use, it does not scale well. What if you have 10,... --- ### Paul Thurrott's Short Takes: April 10, 2015 > Because your Apple Watch isn't arriving until June anyway, this week's other news includes Microsoft's mobile payments mulligan and a whole lot more. - Published: 2015-04-10 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-april-10-2015/ - Categories: Windows Client OS - Tags: News - Article Type: News Because your Apple Watch isn't arriving until June anyway, this week's other news includes Microsoft's mobile payments mulligan, the secret plan to advertise Windows 10 to Windows 7/8. 1 users, PC sales fell again in the first quarter, Apple Watch debuts, the EU is serious about Google, and Lynda. com gets a big payday. Microsoft to try, try, try again with mobile payments When Microsoft released NFC-based wireless payments in Windows Phone 8 two years ago, it was a superset of what Apple and Google offered at the time. There's just one problem: no one noticed because Microsoft wireless carrier partners (read: frenemies) refused to support it. Today, however, we have Apple Pay, or what one might glibly describe as "what Microsoft tried to do two years ago. " So it's back to the drawing board, and Microsoft is now working on a new scheme for wireless payments. Or what Apple fans will clueless call "copying Apple Pay. " I'll take it: I just want to pay for things with my phone. And it's not an iPhone. "The one thing Microsoft's Project Spartan browser needs to succeed" If it only needs one thing, Microsoft is doing something right. Microsoft is force-feeding Windows 10 updates onto Windows 7 and 8. 1 PCs I'm curious if anyone will be outraged by this: Microsoft has delivered a recommended Windows Update (KB3035583) to Windows 7 and 8. 1 PCs that will enable notifications about the availability of Windows 10 when it becomes available later this year. What's... --- ### Microsoft's Nano Server is All About the Cloud > With the coming generation of Nano Server capabilities in Windows Server vNext, the differences between it and Azure are about to blur even further. - Published: 2015-04-09 - Modified: 2015-04-09 - URL: https://petri.com/microsofts-nano-server-is-all-about-the-cloud/ - Categories: Windows Server 2016 - Tags: News - Article Type: News Microsoft currently offers both on-premises Windows Server versions and Azure in the cloud. But with the coming generation of Nano Server capabilities in Windows Server vNext, the differences between these product lines are about to blur even further. You can learn more about Nano Server in Aidan Finn's article, Microsoft Announces Nano Server. And be sure to check out Russell Smith's take on how Nano Server will impact DevOps-style workflow in Thoughts on Windows Nano Server. Here, I'd like to expand a bit on what this all means strategically to Microsoft and its customers. Before getting to that, we need to understand a few terms, in particular Nano Server and container. Nano Server is a new minimal footprint installation of Windows Server, coming in the next release, which is highly optimized for the cloud, and ideal for containers. A containers is a way to isolate applications independently of both location—some mix of cloud and on-premises infrastructure, perhaps—and even operating environment (Windows and Linux, for example). Microsoft announced last fall that it was supporting Docker containers in the next Windows Server and that they would run on-premises datacenters, hosted datacenters, or any public cloud provider, including of course Azure. And this week, Microsoft also announced that it is "leveraging and extending" Docker containers with something called Hyper-V container, a new container deployment option with enhanced isolation based on Hyper-V virtualization technologies. If you're familiar with Windows Server, you know that Microsoft has evolved this product line from a... --- ### Microsoft Announces Hyper-V Containers > Microsoft announces new Hyper-V containers for better application virtualization in the next version of Windows Server, referred to as Windows Server vNext. - Published: 2015-04-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-hyper-v-containers/ - Categories: Windows Server 2016 - Tags: Application Virtualization, Docker - Article Type: News Microsoft announces new Hyper-V containers for better application virtualization in the next version of Windows Server, referred to as Windows Server vNext. Microsoft General Manager for Windows Server, Mike Neil, recently announced that Microsoft will be adding Windows Server containers and Hyper-V containers for application virtualization in the next version of Windows Server, informally referred to as Windows Server vNext. Related: Microsoft Announces Nano Server Docker and Windows Containers Traditionally applications are installed directly onto an operating system, be it on a physical machine or in the guest OS of a virtual machine. This 1:1 relationship has led to stability, but it causes some other issues, including: Virtual machine and licensing sprawl Increased maintenance More stuff can break Slower deployment It is that latter point that has caught Microsoft’s attention; they wish IT to be able to operate “at the speed of business”. Deploying a machine, even a virtual one, is slow: A machine must be created The virtual hard disk(s) must be copied to the storage A guest OS must be specialized Additional configurations and management systems must be installed Microsoft formed an alliance with Docker last year to bring application containers to the Microsoft stack. Docker is a leading player in the open source market of application containerization. The concept of containers changes how applications are deployed on servers. Instead of there being one OS for every app install, containers allow applications to run in a semi-isolated manner on a shared operating system. You can deploy physical machines or virtual machines as container hosts; obviously the virtual option offers more elasticity. The benefit is that... --- ### Episode 17 - April 9th - 10:15pm EDT Guest: Pat Richard @patrichard, MVP - Published: 2015-04-09 - Modified: 2015-04-09 - URL: https://petri.com/episode-17pat-richard-patrichard-mvp/ - Categories: Current Status Skype for Business? What is this product that Microsoft has just launched? Lync has been rapidly gaining market share on the Unified Communications space, so why launch Skype for Business, you ask? What will happen to Lync? Join us as we chat with Pat Richard (@patrichard), Microsoft MVP, about Skype for Business and what it means for your business. --- ### Thoughts on Windows Nano Server > Russell Smith provides his thoughts on Windows Nano Server, which is Microsoft's newly-announced server option planned for Windows Server vNext. - Published: 2015-04-09 - Modified: 2015-04-09 - URL: https://petri.com/thoughts-on-windows-nano-server/ - Categories: Windows Server 2016 - Tags: DevOps, Docker - Article Type: Opinion Microsoft has officially unveiled Windows Nano Server, but what does the news mean for system administrators? Russell Smith provides his thoughts in his latest commentary. Following last month's leak, yesterday Microsoft officially announced Nano Server, a new server option planned for Windows Server vNext that will install a deeply refactored headless version of Windows Server designed to support container-based cloud applications and micro services. For more information on the announcement and the Nano Server basics, take a look at Aidan Finn's article Microsoft Announces Nano Server on the Petri IT Knowledgebase. Related: Leaked Slides Reveal Windows Server vNext Nano Server Role Many organizations are adopting DevOps, where system operations and development are tightly integrated into a workflow known as continuous deployment. This allows businesses to be more competitive by utilizing agile technologies, think container-based cloud apps and Docker, so they can stay ahead of the game and be the first to offer new products and features, while at the same time maximizing investment in the cloud by increasing app density and improving security. Don't Blink, Otherwise You’ll Miss It DevOps environments tend to utilize NIX-based OSes because of their modular design, low footprint and support for Docker. Windows wasn't designed as a modular OS, but Microsoft has been working hard to change that. First in Server Core, and now Nano; a completely Window-less version of Windows Server that requires remote installation, with the help of the Windows Preinstallation Environment (WinPE) on bare-metal hardware, and management using PowerShell and WMI, or newly designed web-based administration tools. To give you an idea of how quickly Nano can be installed and booted to a working state, it... --- ### Microsoft Announces Nano Server > Microsoft announces Nano Server, a server OS optimized for cloud infrastructure and born-in-the-cloud applications. - Published: 2015-04-08 - Modified: 2015-04-08 - URL: https://petri.com/microsoft-announces-nano-server/ - Categories: Windows Server 2016 - Tags: Containers, Docker, Nano Server, Server Core - Article Type: News Microsoft announces Nano Server, a server OS optimized for cloud infrastructure and born-in-the-cloud applications. Last month, Editorial Director Jeff James here at the Petri IT Knowledgebase reported on some leaked slides from Microsoft that mentioned a version of Windows Server called Nano Server. Today, Microsoft made it official by announcing Nano Server. What is Nano Server? According to Microsoft, Nano server is described as a "deeply refactored version of Windows Server with a small footprint" that is designed for "the cloud and a DevOps workflow. " What does all that mean? Nano Server is a headless installation of the next version of Windows Server, which is unofficially been referred to as Windows Server vNext. This means that, like Server Core, there is no UI. It's Windows without the windows. Unlike Server Core, there is no command prompt, no PowerShell window, and there isn't even a logon prompt, local or via Remote Desktop. This is a server operating system that you are not meant to log into! You will not be using Nano Server for traditional workloads. Instead, Nano Server is a piece of infrastructure that enables services. There are two core scenarios for Nano Server: Cloud infrastructure: Services such as Hyper-V, including Hyper-V cluster, and Scale-Out File Servers (SOFSs) can be deployed on Nano Server. Born-in-the-cloud applications: Applications that are running in Containers (also announced today), virtual machines, or on many development platforms that do not require a UI on the server to manage them. The concept of Nano Server is that you deploy what you need, something that Windows Server commentators have... --- ### PowerShell Problem Solver: Create a Grouped HTML Report with PowerShell > In this PowerShell Problem Solver article, learn how to create a grouped HTML report with PowerShell. - Published: 2015-04-08 - Modified: 2024-09-04 - URL: https://petri.com/create-a-grouped-html-report-with-powershell/ - Categories: PowerShell - Tags: Advanced, Convertto-HTML, Editor's Pick, format-table, group-object, PowerShell Problem Solver, Scripting - Article Type: How To In this PowerShell Problem Solver article, learn how to create a grouped HTML report with PowerShell. I always talk about "objects in the pipeline" when writing or training about PowerShell. We shouldn't be thinking about trying to parse text or even be too concerned about individual items. Most of the time we can simply let the PowerShell pipeline do all of the work for us. With that said, you can take control, too. One such situation might be when you want to look at the results of PowerShell expression, where it would help to see results grouped together. Taking this scenario a step further, you may want to create an HTML report using grouped output. If you look at help for Convertto-HTML, you won't see a –Group parameter or anything that looks like it will help. As I'll show you, it isn't too difficult to achieve. First, let's look at creating a nice formatted group report in the console. We'll begin with some data. ​ The variable $data should contain all the files in my Scripts folder. Let's say I want to create a formatted report that shows files grouped by directory. ​ With the Format-Table cmdlet, you can specify a property name to group by. I recommend you sort on that same property first as I've done. This isn't too difficult because PowerShell has built-in instructions that tell it how to format a table of file objects. What I want next is to duplicate this in an HTML file. To accomplish this, I'll need an intermediate step to group the data accordingly. ​ Technically, I... --- ### Google Faces Yet Another Complaint: Deceiving Children > Google can't seem to catch a break these days: now the search giant is being accused again of deceptive business practices. Its target is children. - Published: 2015-04-08 - Modified: 2024-09-04 - URL: https://petri.com/google-faces-yet-another-complaint-deceiving-children/ - Categories: Cloud Computing - Tags: Google, News, Youtube - Article Type: News Google can't seem to catch a break these days: the Internet search giant faces several antitrust investigations in Europe, and recent revelations that the US Federal Trade Commission should have pursued an antitrust case against the firm in this country have only damaged the reputations of both entities. But now Google is being accused, again, of deceptive business practices. And this time its target is children. A coalition of child advocacy and consumer groups has asked the Federal Trade Commission to investigate Google for the "unfair and deceptive" YouTube Kids app, which they say is nothing more than a vehicle for the sort of ads that were outlawed on television over 30 years ago. The coalition includes the Center for Digital Democracy, the Campaign for a Commercial-Free Childhood, American Academy of Child and Adolescent Psychiatry, Center for Science in the Public Interest, Children Now, Consumer Federation of America, Consumer Watchdog, Consumers Union, Corporate Accountability International, and Public Citizen. "It's just one, long, uninterrupted ad," says Democratic Media's Jeff Chester. "It turns back the clock 30 years in terms of the role that advertising plays in kids programming. " "YouTube Kids takes unfair advantage of the trusting nature and lack of experience of children," said the Institute for Public Representation at Georgetown Law's Angela Campbell. Ms. Campbell advised the coalition to pursue legal action against Google. YouTube Kids is a mobile app for Android and iOS that purports to offer a family-friendly frontend to the often randy online video service... . --- ### Windows Server vNext Technical Preview Due in May > Microsoft plans to deliver a new Windows Server vNext Technical Preview build next month. - Published: 2015-04-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-vnext-technical-preview-due-in-may/ - Categories: Windows Server 2016 - Tags: News - Article Type: News When Microsoft announced the Windows 10 Technical Preview last October, it was accompanied by the first-ever Windows Server vNext Technical Preview release as well. Since then, however, development of these systems has diverged, and Microsoft hasn't ever delivered another Server Technical Preview release. But that's finally going to change: a new Server Technical Preview build is expected next month. Microsoft has vacillated between concurrent releases of Windows on the client and server over the years. But the need to ship these products concurrently has certainly gone down—if not disappeared altogether—in this new "mobile first, cloud first" world. So while the decision to decouple Windows 10 and Windows Server vNext may be disconcerting from a nostalgia perspective, the truth is that few businesses are racing to deploy both products side-by-side anyway. After the initial Windows 10 and Windows Server vNext technical preview releases last October, the Windows client team pushed forward with new builds—shipping even a version for phones back in February—while the Server team was largely silent, promising only to deliver a second milestone build sometime in 2015. But with that first Server vNext build expiring on April 15, 2015, some customers were getting antsy for an update. This past week, Microsoft said that it would provide an update that would let testers continue using the Server Technical Preview past the April 15 expiration. More important, perhaps, it also set a timeline for the next release. "The next preview released in... --- ### Troubleshooting Microsoft Azure VM Remote Desktop Connections > Here's a helpful troubleshooting technique for repairing Remote Desktop connection settings for Azure VMs running Windows Server. - Published: 2015-04-07 - Modified: 2024-11-19 - URL: https://petri.com/troubleshooting-microsoft-azure-vm-remote-desktop-connections/ - Categories: Microsoft Azure - Tags: Remote Connectivity, Remote Desktop - Article Type: How To Learn how to use the VM Agent to repair Remote Desktop connection settings in an Azure VM running Windows Server In this Ask the Admin, I'll show you how to reestablish a connection to an Azure VM where the Remote Desktop settings have accidentally been changed or disabled. Out-of-band management on Azure VMs running in the public cloud can be a little harder compared to VMs hosted by on-premise Hyper-V servers because there's no direct access to the VMbus. But the VM guest agent can be a life saver in situations where VMs stop responding, can no longer be connected to using Remote Desktop, or where you need to perform some other management operation to restore service. The VM Agent installs a set of extensions that you can interface with from the command-line and in out-of-band management situations, including VMAccessAgent for resetting passwords and Remote Desktop configuration, and IaaSDiagnostics, which enables and configures Azure Diagnostics. Fix Remote Desktop using an SDP package To demonstrate how these extensions can be used in practice, I'll attempt to regain access to an Azure VM where Remote Desktop has been inadvertently disabled. The easiest way to do this is generate a Support Diagnostics Platform (SDP) package, which you can either distribute or use yourself for troubleshooting the problem. Create a Support Diagnostics Platform package on Microsoft's website (Image Credit: Russell Smith) First let's generate an SDP package using Microsoft's Support Diagnostics website. You'll need to be logged in as a local administrator to Windows 8 or Windows Server 2012 or later to run the package, and the... --- ### Optimizing Azure Storage for Windows Server Virtual Machines > Learn all about optimizing Azure Storage for Windows Server virtual machines in this how-to article by Contributing Editor Russell Smith. - Published: 2015-04-07 - Modified: 2024-09-04 - URL: https://petri.com/optimizing-azure-storage-windows-server-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure Storage, Editor's Pick - Article Type: How To Learn how to configure Azure Storage and Storage Spaces in Windows Server 2012 R2 to optimize disk IOPS. Data disks attached to Microsoft Azure Virtual Machines (VMs) are limited to 300 or 500 Input/Output Operations Per Second (IOPS) depending on the size of the VM, with the exception of D-series VMs, which are deployed on solid-state drives. If you want to the improve an application's performance, Microsoft recommends attaching the maximum number of data disks allowed for the VM size and creating a simple striped volume using Windows Server Storage Spaces to increase throughput. In this article, I'll show you how to configure Azure Storage and Storage Spaces in Windows Server 2012 R2 to optimize disk IOPS. I'll start by provisioning a VM that uses aggregated compute and storage resources, create and attach new disks to the VM, and finally configure Storage Spaces in Windows Server. Create a New Storage Account and Affinity Group When provisioning a new VM, Azure automatically creates a storage account in the same location as the VM if one doesn't already exist. Otherwise, the VM's disks are created in an existing storage account. As each storage account has a 20,000 IOPS limit, Microsoft recommends a maximum of 40 Standard Tier VM disks per storage account, or 66 Basic Tier VM disks. Microsoft also advises that for ease of administration and high I/O applications, each VM's disks should be created in a separate account, of which there is a limit of 100 per subscription. Before provisioning a new VM, you might want to consider creating a dedicated storage account, and that's what... --- ### Manage Documents with Windows Explorer using Tags and File Properties > Learn how to manage documents with Windows Explorer using tags and file properties in this tutorial by Russell Smith. - Published: 2015-04-06 - Modified: 2024-09-04 - URL: https://petri.com/manage-documents-with-windows-explorer-using-tags-and-file-properties/ - Categories: Windows Client OS - Tags: document management, File Explorer, file management, Search, Windows Explorer - Article Type: How To Learn how to perform simple document management functions using tags, file properties, and search in Windows Explorer. Learn how to track the status of documents in Explorer by tagging files, adding information to file properties, and searching using Advanced Query Syntax. Document management systems have become ubiquitous in the enterprise, helping individual users and teams collaborate, organize, and manage document libraries. But if you're using OneDrive with a Microsoft account or storing documents on a file server or local disk, then Workflows and the ability to check documents in and out, along with other advanced Office 365 and SharePoint features, aren't available. I recently decided to organize my work life a little better and started investigating how I could track documents created within a specific calendar period. For example, you can use a simple this month parameter that's based on simple complete or not complete criteria, because it's useful information to have when planning a schedule. I also wanted to be able to see documents that are left unfinished. The documents are stored on the free version of OneDrive, and while I do have an Office 365 business subscription, I only use it for Exchange, because I don't need the more advanced document management features in SharePoint. Tags and file properties Microsoft introduced a details pane in Windows Vista at the bottom of the folder view in Windows Explorer. When a file is selected, the pane exposes common file properties and the ability to add tags to documents. If you use Facebook or Windows Live Essentials Photo Gallery, then you'll probably be familiar with the concept of... --- ### Introducing the 2nd Annual Petri.com / Thurrott.com Happy Hour at Microsoft Ignite > Register today to attend the Petri happy hour at Microsoft Ignite. Meet Petri authors Daniel Petri, Paul Thurrott, Phoummala Schmitt, and more! - Published: 2015-04-06 - Modified: 2024-12-03 - URL: https://petri.com/petri-happy-hour-at-microsoft-ignite/ - Categories: Windows Server - Tags: #MSIgnite, Blue Whale Web, Microsoft Ignite, Microsoft Ignite 2015 - Article Type: News Looking to meet Daniel Petri, Paul Thurrott, Aidan Finn, Phoummala Schmitt, and more Petri IT Knowledgebase authors in person? Attend the 2nd Annual Petri.com / Thurrott.com Happy Hour at Microsoft Ignite! Planning to attend Microsoft Ignite in Chicago this year? The Petri IT Knowledgebase editorial team will be there as well, and we're also planning something special for readers who can make it to Chicago for the first-ever Microsoft Ignite conference: Our 2nd Annual Petri. com / Thurrott. com Happy Hour, sponsored by Tintri and Veeam Software. Don't Miss: Microsoft Ignite 2015 Conference Recap Eagle-eyed readers with good memories will recall that we held our first Petri author meet and greet at Microsoft TechEd 2014 last year. We were pleasantly surprised by how many readers took the time out of their busy TechEd schedules to meet us and chat with our authors, so that encouraged us to plan an even bigger event at Microsoft Ignite this year. You can also check out photos from last year's event in our TechEd 2014 Facebook photo album on the official Petri Facebook page. From the Petri Author Meet and Greet at TechEd 2014: (L to R) Petri Publisher/Owner George Coll, Contributing Editor Phoummala Schmitt, Contributor J. Peter Bruzzese, and site founder Daniel Petri. (Photo: Jeff James) We also added Paul Thurrott's new Thurrott. com site to the Blue Whale Web family, so Paul will be there as well. We're also hoping that Petri site sounder Daniel Petri will make it this year, and you'll likely have the chance to meet some members of the Current Status team -- possibly Phoummala Schmitt and Theresa Miller -- as well. If you've ever wanted to ask Paul Thurrott about... --- ### Microsoft at 40 > This past weekend, Microsoft moved into middle age, having reached the ripe old age of 40. Let's look back. - Published: 2015-04-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-at-40/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion This past weekend, Microsoft moved into middle age, having reached the ripe old age of 40. Let's look back. This past weekend, Microsoft moved into middle age, having reached the ripe old age of 40. Given the sweeping industry changes that have upended Microsoft's position atop the personal computing market, there's some cause for concern. But I'm not in the camp that believes that Microsoft's best days are behind it. Indeed, looked at in the context of Microsoft's full history, what's happening now is simply a repeat of previous events. In a letter to employees Microsoft co-founder Bill Gates—who essentially left the company but then returned last year as a part-time advisor to CEO Satya Nadella—explained why he was more focused on the future than the past. "We have accomplished a lot together during our first 40 years and empowered countless businesses and people to realize their full potential," he wrote. "But what matters most now is what we do next. " The future has yet to be written. But the past has been well-documented, including the more recent 20 years of Microsoft's history, during which I played an active role in observing and writing about the company professionally. Here are some interesting facts and trivia about the company I've retained. Some of these are not well known. Founding. Microsoft was founded on April 4, 1975 by Gates and Paul Allen, and had a single purpose: Create and sell a BASIC interpreter for the Altair 8800, which many consider the first personal computer. Microsoft later adapted BASIC for many personal computing systems. Paul... --- ### Paul Thurrott's Short Takes: April 3, 2015 > Because "Linux user" is perhaps the ultimate personal technology oxymoron, here is this week's other news - Published: 2015-04-03 - Modified: 2024-09-04 - URL: https://petri.com/short-takes-62005/ - Categories: Windows Client OS - Tags: News - Article Type: Opinion Because "Linux user" is perhaps the ultimate personal technology oxymoron, this week's other news includes the scary possibility of Microsoft open-sourcing Linux, the continued success of Windows XP one year after its death, the EU's problem with US technology giants, the reality of Android malware, and a missed opportunity for Microsoft goes to Sony. Microsoft admits an open source Windows is "possible" If you weren't already burned by "mobile first, cloud first," well, this should singe some feathers. In an interview with Wired, Microsoft technical fellow Mark Russinovich said that given "the new Microsoft," an open source version of Windows is—wait for it—"definitely possible. " OK. Breathe with me people. You OK? Just touch your toes there. OK. As it turns out, this isn't going to happen anytime soon if it even happens at all, thanks in part to the ancient and complex system Microsoft uses to actually build Windows. (It "takes rocket scientists and three months to set up," Russinovich says in what I assume is a slight exaggeration to make the point. ) But ... Windows is so yesterday, Wired explains, and "the future, even for Microsoft, lies in selling other stuff, including cloud computing services such Microsoft Azure and all sorts of other apps and services that run atop the world’s operating systems. " I don't really think that open sourcing Windows would solve a real world problem for Microsoft, unless things get so bad that updating and maintaining Windows becomes more of a burden than a... --- ### Idera PowerShell Plus Review: A Free PowerShell Management Tool > In this PowerShell Plus review by Jeff Hicks, you'll learn the pros and cons of this free IT pro and automation tool. - Published: 2015-04-03 - Modified: 2024-09-04 - URL: https://petri.com/powershell-plus-review/ - Categories: PowerShell - Tags: Idera, PowerShell, PowerShell Plus, Product Review, review - Article Type: Review Jeff Hicks takes a dive into Idera's PowerShell Plus free tool offering and explains its pros and cons. If you've been using PowerShell for a while, then you are certainly familiar with the PowerShell console and the PowerShell ISE. These are the most common applications that host the PowerShell engine. They are easy to use and just about everywhere you need them. The PowerShell ISE is an optional feature on Windows Server platforms. However, because PowerShell can be hosted by an application, there are other possibilities. You could even write your own hosting application given sufficient . NET skills. If you're like me, then that's way too much work. Instead, you might look at third-party offerings such, as PowerShell Plus from Idera. This tool was originally a paid commercial offering, but Idera started offering it for free a couple of years ago. The product requires at least PowerShell 3. 0, which should also means that you have . NET Framework 4. 0 or later. You will need to register on the site to download. There are x86 and x64 versions. You should end up with a zip file. I extracted the x64 setup file and launched it on my Windows 8. 1 box. Installation is pretty typical. I didn't feel the need to change any of the defaults and the entire process took less than a minute. The product is title PowerShellPlus Professional Edition. PowerShell Plus by Idera Review. (Image Credit: Idera) If you press and hold the shift key, then you'll have a dialog box of options. PowerShell Plus Manage Startup... --- ### How to Access Desired State Configuration MOF Metadata > Learn how to access Desired State Configuration MOF Metadata with the help of PowerShell. - Published: 2015-04-02 - Modified: 2024-09-04 - URL: https://petri.com/how-to-access-desired-state-configuration-mof-metadata/ - Categories: PowerShell - Tags: Advanced, Desired State Configuration, DSC, select-object - Article Type: How To Jeff Hicks shows us a new way to access Desired State Configuration MOF metadata with some PowerShell. I've been doing quite a bit with PowerShell and Desired State Configuration (DSC) over the last few months, and I expect that many of you have been as well. As you've probably realized, there are still many areas where DSC could use a little help. For now, many of these gaps are being filled by the PowerShell community. One of the gaps that I think needs to be filled in is managing MOF files via their metadata. When you use the PowerShell cmdlets to create a DSC configuration, you'll end up with an industry standard MOF. Something that might look like this; /* @TargetNode='CHI-CORE01' @GeneratedBy=Jeff @GenerationDate=01/21/2015 11:35:58 @GenerationHost=WIN81-ENT-01 */ instance of MSFT_RoleResource as $MSFT_RoleResource1ref { ResourceID = "Telnet-Client"; IncludeAllSubFeature = True; Ensure = "Present"; SourceInfo = "C:\Scripts\DemoConfigData. ps1::8::3::WindowsFeature"; Name = "Telnet-Client"; ModuleName = "PSDesiredStateConfiguration"; ModuleVersion = "1. 0"; }; instance of MSFT_RoleResource as $MSFT_RoleResource2ref { ResourceID = "Windows-Server-Backup"; IncludeAllSubFeature = True; Ensure = "Present"; SourceInfo = "C:\Scripts\DemoConfigData. ps1::8::3::WindowsFeature"; Name = "Windows-Server-Backup"; ModuleName = "PSDesiredStateConfiguration"; ModuleVersion = "1. 0"; }; instance of MSFT_ServiceResource as $MSFT_ServiceResource1ref { ResourceID = "bits"; State = "Running"; SourceInfo = "C:\Scripts\DemoConfigData. ps1::18::3::Service"; Name = "bits"; StartupType = "Automatic"; ModuleName = "PSDesiredStateConfiguration"; ModuleVersion = "1. 0"; }; instance of MSFT_ServiceResource as $MSFT_ServiceResource2ref { ResourceID = "remoteregistry"; State = "Running"; SourceInfo = "C:\Scripts\DemoConfigData. ps1::18::3::Service"; Name = "remoteregistry"; StartupType = "Automatic"; ModuleName = "PSDesiredStateConfiguration"; ModuleVersion = "1. 0"; }; instance of MSFT_ServiceResource as $MSFT_ServiceResource3ref { ResourceID = "wuauserv"; State = "Running"; SourceInfo = "C:\Scripts\DemoConfigData. ps1::18::3::Service"; Name = "wuauserv"; StartupType = "Automatic"; ModuleName = "PSDesiredStateConfiguration"; ModuleVersion =... --- ### Do We Still Need GUI Management Tools in Windows Server? > Russell Smith debates whether we still need GUI management tools in Windows Server, thanks to Microsoft's increasing focus on developing PowerShell. - Published: 2015-04-02 - Modified: 2024-09-04 - URL: https://petri.com/gui-management-tools-in-windows-server/ - Categories: Windows Server 2016 - Tags: Editor's Pick, Nano Server - Article Type: Opinion Are the GUI management tools still relevant for Windows Server? Russell Smith explains how we're moving away from the traditional GUI in lieu of PowerShell. It’s no secret that I’m a fan of PowerShell, and almost everything I do in Windows Server and Microsoft Azure involves using the command line. There are a couple of key reasons for the shift away from the GUI: namely the increasing frequency in which PowerShell is required to utilize certain features, especially in Azure; and the need to redeploy environments quickly at a later date, something made a necessity by the nature of cloud computing, without manually clicking through endless wizards. Another advantage that shouldn't be overlooked is that using PowerShell to configure Windows Server helps to develop a better understanding of the technology.  For example, it's easier to comprehend what you're doing and why. Server Manager provides a handy visual overview of an environment in Windows Server 2012 R2 (Image Credit: Russell Smith) A Headless Future Microsoft is pushing PowerShell as the must-have configuration tool for Windows, but its minimal Server Core option for Windows Server, despite being the default installation type in Windows Server 2012 R2, hasn't quite caught on. Notably even the Windows Server images in Azure play it safe and use the full GUI. If you take the plunge and use Server Core to reduce overhead and the attack surface, there are some tools that you'll miss out-of-the-box if you don't have the Remote Server Administration Tools (RSAT) configured on a management PC, particularly Server Manager and Event Viewer. To learn more about RSAT, see Remote Server Administration Tools (RSAT) for... --- ### EU Reportedly Preparing to Finalize Google Antitrust Case > After investigating Google's search business for five years the EU is reportedly ready to charge Google with sweeping antitrust violations. - Published: 2015-04-02 - Modified: 2015-04-02 - URL: https://petri.com/eu-reportedly-preparing-to-finalize-google-antitrust-case/ - Categories: Cloud Computing - Tags: Google, News - Article Type: News It looks like Europe is ready to take the gloves off: after investigating Google's search business for five years and almost letting the technology giant off with a slap on the wrist, the EU is reportedly ready to charge Google with sweeping antitrust violations. And in preparation of this momentous event, the European Commission has reportedly asked the many companies who have complained about Google's predatory behavior to make their complaints public. News of the sudden movement against Google comes from two separate and reputable news sources, the Wall Street Journal and the New York Times, each of which cites anonymous sources close to the case. Here's what's happening. At the urging of a growing collection of competitors, the European Commission began investigating Google's search business about five years ago. The original charge? That Google illegally abused its monopoly power in the Internet search market to keep customers from finding up-and-coming and vertical market search competitors such as Expedia and TripAdvisor. It did so by artificially promoting Google services over these competitors—while claiming that its search service was completely algorithm-driven—and by artificially demoting these competitors in search results. While this is only one of several antitrust cases that Google potentially faces in Europe, it's also the most serious, and EU regulators and politicians have repeatedly clashed over the outcome. And the search case has grown to include other charges related to Google's search business too. The previous EC regime led by Joaquín Almunia... --- ### PowerShell Problem Solver: Use PowerShell to Test if Windows Services are Running > PowerShell MVP Jeff Hicks shows us how to use PowerShell to test if Windows services are running automatically. - Published: 2015-04-01 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-test-service/ - Categories: PowerShell - Tags: CIM-WMI, Get-CIMInstance, get-service, Intermediate, PowerShell Problem Solver, Scripting, Start-Service - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks shows us how to test whether Windows services are running with some PowerShell. Most of the time with my PowerShell Problem Solver articles I am addressing a problem I've come across in forums or through social media channels. But today's problem is one of my own. I usually keep my computer running for days at a time, but I decided to reboot to start the day fresh. I then tried to run a WMI query using Get-CimInstance but got an error that the computer couldn't be contacted. After scratching my head for a moment, I decided to check the WinRM service. The CIM cmdlets use the WSMan protocol to query WMI, which means that PowerShell remoting must be enabled. Once enabled, the assumption is that the WinRM service is running. Although the WinRM service is configured to start automatically, it turns out that my service was not. Starting the service with Start-Service solved the problem, but I thought this is a potentially larger issue: how can I determine services that should be running that are not? If you are new to PowerShell, you might think to first use Get-Service. You might even be smart and display all the properties. ​ When we use Get-Service, you can see that there's a problem, which you can see in the following screenshot. Using the Get-Service cmdlet in Windows PowerShell. (Image Credit: Jeff Hicks) More accurately, there;s something that you don't see in the screenshot. There's nothing that indicates the service's start mode, e. g. automatic, manual or disabled. The first lesson for... --- ### Microsoft Brings MDM Capabilities to Office 365 > Microsoft announced this week that all Office 365 commercial customers are now getting access to basic mobile device management (MDM) functionality. - Published: 2015-04-01 - Modified: 2015-04-01 - URL: https://petri.com/microsoft-brings-mdm-capabilities-to-office-365/ - Categories: Microsoft 365 - Tags: MDM, Mobile Device Management, News - Article Type: News Microsoft announced this week that all Office 365 commercial customers are now getting access to basic mobile device management (MDM) functionality without having to pay for separate services like Intune, which is a core component of Microsoft's Enterprise Mobility Suite. The functionality is free, but it can also be integrated with existing Intune and Azure Active Directory infrastructures. "Today, we are pleased to offer the general availability of MDM capabilities for Office 365," Office 365 technical product manager Shobhit Sahay announced. "With MDM for Office 365, you can manage access to Office 365 data across a diverse range of phones and tablets, including iOS, Android and Windows Phone devices. And what makes today’s news even better: the built-in MDM features are included at no additional cost in all Office 365 commercial plans, including Business, Enterprise, EDU and Government plans. " According to Microsoft, this functionality provides three key benefits: Conditional access. Admins can require a user's mobile device to meet the requirements of security policies before they are allowed to access Office 365-hosted data—like OneDrive for Business documents or email—on that device. Because these policies are applied at the user level, they are consistently required on whatever device the user tries to use. (You can also apply policy to user groups, of course. ) Device management. This is the interface for configuring the policies you will require on enrolled devices: password requirements, device-level PIN lock, and so on. Built-in compliance reporting will keep admins up... --- ### Connecting Multiple Networks in Microsoft Azure > Aidan Finn shows us steps for connecting multiple networks in Microsoft Azure, along with explanations for different scenarios in which you may need to do this. - Published: 2015-04-01 - Modified: 2024-09-04 - URL: https://petri.com/connecting-multiple-networks-in-microsoft-azure/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Learn when to spot different scenarios where you need to connect multiple networks in Microsoft Azure, along with step-by-step instructions on how to do this. In a previous article, I explained how to create a 1:1 connection between two Azure virtual networks (VNETs) using VNET-to-VNET VPN. In this article, I will show you how to connect multiple networks together in Microsoft Azure. When Should I Connect Multiple Azure Networks? There are many situations where you might need to connect more than two VNETs together using VPN connections. Some of these might include: A disaster recovery scenario with on-permises network for Active Directory replication, an Azure VNET for failing over machines using Azure Site Recovery (ASR), and another VNET for RemoteApp. Achieving geo-distribution or fault tolerance for a service by placing it in more than two regions, as shown in the following diagram. A design for connecting multiple Azure virtual networks (Image Credit: Aidan Finn) Prerequisites There are a number of prerequisites for connecting more than two networks in Azure: IP Addressing Each network, on-premises or an Azure VNET, must have a unique network address in your finished solution. For example, you cannot connect an on-premises network with an address of 10. 0. 0. 0/8 to an Azure VNET with the same address. Plan your addressing for site expansion. In the previous example, an Azure VNET with a network address of 10. 2. 0. 0/16 might be used to connect to an on-premises network of 10. 1. 0. 0/16. Dynamic Routing Gateway Azure VNETs support static routing and dynamic routing gateways, where each network must be deployed with a dynamic routing gateway if more than two networks will be connected. Make sure that... --- ### Using Startup Scripts to Manage Local Active Directory Groups > Learn how to use startup scripts to manage local Active Directory groups in this step-by-step tutorial by Daniel Petri. - Published: 2015-03-31 - Modified: 2024-09-04 - URL: https://petri.com/using-startup-scripts-to-manage-local-active-directory-groups/ - Categories: Active Directory (AD) - Tags: Editor's Pick, managing local groups - Article Type: How To Learn how to use startup scripts to manage local Active Directory groups in this step-by-step tutorial by Daniel Petri. Following the first three installments of our article series on managing local Active Directory group, we'll end the series with this fourth and final post by focusing on how you can use startup scripts to manage membership of local groups. Managing Local Active Directory Groups Article Series Part 1: Manage Local Active Directory Groups using Group Policy Restricted Groups Part 2: Using "This group is a member of" controls to manage local AD groups Part 3: Manage Local Active Directory Groups using Group Policy Preferences Part 4: Using Startup Scripts to Manage local Active Directory groups You can write these scripts as command-shell batch scripts ending with the . bat or . cmd extension, or as scripts that use the Windows Script Host (WSH) written in a scripting language, such as VBScript. In this article, we'll use an example found on the Petri forums that's written by one of our moderators, Rems. When there is need to add a particular user to the local administrators group on a client computer, one can use a combination of the computer name found in the computer object in Active Directory, plus the ManagedBy attribute of the computer object, which should be manually changed to match the user account that currently uses that computer. This sample computer startup script determines the distinguished name of the client and uses it to bind to the computer object in AD. It then reads the ManagedBy attribute of the computer object and adds the user to the local administrators group. In addition, the previously... --- ### Monitoring Windows Event Logs for Security Breaches > Russell Smith provides tips and tricks for monitoring Windows Event Logs for security breaches. - Published: 2015-03-31 - Modified: 2015-03-31 - URL: https://petri.com/monitoring-windows-event-logs-for-security-breaches/ - Categories: Security - Tags: Editor's Pick, Event Logs - Article Type: How To Discover the most important events to monitor in the Windows Event logs that might indicate a security breach. The Windows event logs hold a minefield of information, and in the last couple of Ask the Admin articles on the Petri IT Knowledgebase, How to Create Custom Views in Windows Server 2012 R2 Event Viewer and Query XML Event Log Data Using XPath in Windows Server 2012 R2, I demonstrated how to create custom views in Event Viewer to filter out unwanted noise. Why You Should Monitor Windows Event Logs for Security Breaches The ability to create custom views is only useful if you know what events might indicate an attempt to compromise your systems or an unsanctioned configuration change. In this Ask the Admin, I’ll outline some of the most important events that might indicate a security breach. Change Control and Privilege Management Before data in the event logs can become truly useful, it's essential to exercise some governance over your server estate and establish who is allowed to change what, where, and when through tested business processes. When change control is implemented alongside privilege management, not only can you be more confident in maintaining stable and reliable systems, but it will be easier to identify malicious activity in the event logs. The information in this article assumes that auditing has been configured according to Microsoft's recommended settings in the Window Server 2012 R2 baseline security templates that are part of Security Compliance Manager (SCM). For more information on SCM, see Using the Microsoft Security Compliance Manager Tool on the Petri IT Knowledgebase... . --- ### Microsoft Expands Surface Lineup with New Surface 3 > Microsoft announces Surface 3, a cost-reduced version of Surface Pro 3 that eschews the compatibility and performance issues of previous RT-based Surfaces. - Published: 2015-03-31 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-expands-surface-lineup-with-new-surface-3/ - Categories: Mobile - Tags: Microsoft Surface, News, Surface 3, Surface Pro 3 - Article Type: News Microsoft today announced Surface 3, a cost-reduced version of Surface Pro 3 that eschews the compatibility and performance issues of previous Windows RT-based Surface tablets. Based on the brand-spanking-new Intel "Cherry Trail" platform, Surface 3 is, in Microsoft's words, "a full Windows and Office machine" that can fulfill the needs of individuals and businesses alike. Surface 3 starts at $499, though that price doesn't include a very-necessary Type Cover, nor a Surface Pen, which works as it does on Surface Pro 3. You could spend up to $699 on a version with more RAM, storage and LTE capabilities, as well, and that gets you into Surface Pro 3 pricing territory: A base Surface Pro 3 starts at $799 (again, sans Type Cover, though Surface Pro 3 does come with Surface Pen). To arrive at this lower price, Microsoft had to cut corners in some ways, while retaining the general build quality of the higher priced Surface Pro 3. So Surface 3 is clad in the same durable magnesium, and it shares the same general port layout and capabilities. But there are of course differences. New Surface 3 (left) and Surface Pro 3 (right) I have a full rundown of the Surface 3 specs in Here Comes Surface 3, but the most important differences between this new device and Surface Pro 3 include: Processor. Surface 3 is the first device to ship with Intel's new Atom x7 ("Cherry Trail") processor, which Microsoft says is... --- ### How to Query an Excel Workbook as a Database with PowerShell > Learn how to query an Excel Workbook as a database with Windows PowerShell. - Published: 2015-03-30 - Modified: 2024-09-04 - URL: https://petri.com/query-an-excel-workbook-as-a-database-with-powershell/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Excel - Article Type: How To Jeff Hicks shows us how to easily query Excel workbooks as a database with some help from PowerShell. I suppose I will simply have to accept the fact that IT pros want to store data in Excel workbooks and then access that data from PowerShell. Personally, I think this results in making their lives very difficult, as data can easily be stored in a CSV file. Importing a CSV file into PowerShell is trivial task, where you have the entire arsenal of PowerShell commands to use on that data. The typical alternative is to use the Excel COM object and programmatically walk through the spreadsheet. This is very tedious and isn't I would wish on a PowerShell beginner. So, along the lines of "if you can't beat 'em, join 'em" I have another alternative. If the data you need from an Excel workbook is laid out in a worksheet, then you might be able to query the Excel file as if it were a database. This article will show you how. First, I have a sample spreadsheet. ​$path = "c:scriptsmydata. xlsx" A sample Microsoft Excel spreadsheet. (Image Credit: Jeff Hicks) Although you don't need to name the worksheet, mine is labeled "mydata". My data also has column headings, which isn't a requirement, but I expect this is the norm, so that's what I'll demonstrate. There are no built-in cmdlets for accessing this as a database, but you should be able to take the commands I'm going to show you and create your own tools and functions. By the way, my file was created in Excel... --- ### What is Chef? > A useful IT management tool called Chef is getting noticed by IT pros (and CIOs) alike. So what is Chef? Michael Simmons takes a look and gives us his take. - Published: 2015-03-30 - Modified: 2015-03-30 - URL: https://petri.com/what-is-chef/ - Categories: Windows Server - Tags: Chef, DevOps, Editor's Pick - Article Type: Overview The powerful Chef automation tool is becoming one of the more popular IT automation and management offerings. Michael Simmons takes a look and explains what all the fuss is about. The blending of development and IT operations into a culture of shared goals and objectives -- commonly referred to as DevOps -- is a pipe dream for some and a nightmare for others.  Where your organization falls in this cultural landscape may vary considerably from what others are doing. Some resist change in themselves as much as they complain about the other side: Developers blast the systems team for slowness of the deployment process and the operations team complains about developers rushing to add features while compromising security and quality control. Entering into this fray in an attempt to help alleviate the chaos, Chef is an open-source automation tool -- available in cloud-hosted and on-premises varieties -- that helps turn IT configuration and infrastructure management into code. Embedded below is a quick Chef overview that will help get you up to speed on what Chef does. Introducing Chef Chef is essentially an automation tool. It uses the core components of a workstation and a server to create and run sets of instructions, called recipes and cookbooks, on target nodes.  A recipe is a single file that contains one or more resources, and the instructions for that resource. A resource can be practically anything: A Windows service, a file, and even a PowerShell script. The instructions available for any particular resource are dependent on the resource type. For instance, when working with a service you can stop the service, or set it to have a startup mode of "disabled". When working... --- ### Microsoft's Productivity Buying Spree Continues with LiveLoop > Over the past several months, Microsoft has been gobbling up businesses that make productivity apps and services. And it looks like it just LiveLoop too. - Published: 2015-03-30 - Modified: 2015-03-30 - URL: https://petri.com/microsofts-productivity-buying-spree-continues-with-liveloop/ - Categories: Office - Tags: News - Article Type: News Microsoft has pinned its hopes for the future on cross-platform office productivity solutions. And while the software giant has made tremendous progress getting new and existing productivity apps on popular mobile platforms, it's not stopping there. Over the past several months, Microsoft has been busy gobbling up related businesses that make productivity apps and services. And it looks like it just bought another one, LiveLoop. Microsoft is most famous these days for its "mobile first, cloud first" mantra. But underlying this confusing message is a more important differentiator for the software giant, a more concise way of explaining how the company excels and, indeed, why it exists at all: to make its customers' lives more fulfilling by making them more productive. And don't limit this term to spreadsheets and word processing documents. This isn't productivity with a small 'p', it's productivity writ large. "We don't think of productivity as some narrow thing you do at work," Microsoft CEO Satya Nadella said in late 2014. "We think of productivity as the core driver of the use of technology to create fulfillment in individual lives and drive economic gain for organizations and entire economies. We want to empower people and organizations to get things done and make things happen. That is the essence of Microsoft. " So, yes, productivity can mean traditional productivity, using time-worn and proven applications like those in Microsoft Word. It can mean scheduling, and meetings, and phone calls. And you can look at the changes coming... --- ### Lansweeper 5.2 Review: An Asset Management and Network Inventory Tool for IT Pros > In this Lansweeper 5.2 review, Jeff Hicks shows us the benefits of using the asset management and network inventory tool for your SQL Server, VMware, and Active Directory environments. - Published: 2015-03-27 - Modified: 2024-09-04 - URL: https://petri.com/lansweeper-5-2-review/ - Categories: Networking - Tags: Editor's Pick, Lansweeper, review - Article Type: Review In this Lansweeper 5.2 review, Jeff Hicks shows us the benefits of using the asset management and network inventory tool for your SQL Server, VMware, and Active Directory environments. If you've been an IT pro for awhile, then it may be easy to think that everybody knows what you do. Of course, that isn't even remotely true. There's always a new group of IT pros joining the ranks and even those of us who have been around for a while often need a gentle reminder that there might be a better way to do something. The other day I saw message on Google Plus that made reference to Lansweeper. Talk about a blast from the past: I used Lansweeper back in the NT4 and Windows 2000 days. I thought it was pretty slick then, so I thought I'd see what the product is like today. We last reviewed Lansweeper here on the Petri IT Knowledgebase way back in 2009 -- which is like a century in Internet years -- so I thought it was time to take an updated look at this tool. Lansweeper is an asset management and network inventory tool, just to name it's two most well-known features. One of its advantages is that you don't have to install any agents or software on devices or servers. Much of the work is done by querying Windows Management Instrumentation (WMI). It is true you can get a lot of the same information on your own with tools like PowerShell. But Lansweeper wraps everything up in an easy to use package and presents the results in an easy to read graphical interface. The product is licensed by volume per company... --- ### Backing Up Microsoft Azure Virtual Machines > Need help backing up Azure virtual machines? Aidan Finn walks us through the process of how to use Azure Backup to protect Microsoft Azure IaaS VMs. - Published: 2015-03-27 - Modified: 2024-11-19 - URL: https://petri.com/backing-up-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Azure Backup, Backup, Editor's Pick, IaaS - Article Type: How To Petri Contributing Editor Aidan Finn walks us through how to use Azure Backup to protect Microsoft Azure IaaS virtual machines. This post will discuss new functionality in Microsoft Azure that allows you to backup running Azure virtual machines. I will also show you how to protect virtual machines with this new feature. Until recently, there has not been a way to backup running Azure virtual machines, other than installing a backup agent into the guest OS. That was not an optimal way of doing things. For example, if you were to do this with System Center 2012 R2 Data Protection Manager: You would need one Datacenter SML license for every eight protected virtual machines, making it an expensive backup solution. You could only backup from within the guest OS, which on the positive side makes backup jobs granular. On the negative side, this increases the complexity of backup and restore. It was astonishing that the Azure cloud could not provide a per-virtual machine storage level backup system for running virtual machines as you have been able to deploy with vSphere and Hyper-V for many years. How could Azure be the future of IaaS? Microsoft officials might quote the 'treat your servers like cattle' line, but in reality, both large and small business have many services that run on one or a few machines, and losing one is catastrophic. Azure needs a way to restore valuable machines from a backup. Announcing Backup of Azure IaaS Virtual Machines Microsoft announced that Azure Backup will now support backing up running Azure virtual machines. Windows virtual machines will have application level consistency,... --- ### Paul Thurrott's Short Takes: March 27, 2015 > Because the wheels on the bus go 'round and 'round, here is this week's other news. - Published: 2015-03-27 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrotts-short-takes-march-27-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion Because the wheels on the bus go 'round and 'round, this week's other news includes a new Microsoft paid leave program for contract employees, Microsoft is still looking at running Android apps on Windows Phone, fake Apple Store employees, overpaid tech industry leaders, more Secure Boot non-concerns for Linux users, and the return of Blackberry (sort of). "Amazon Fires 1st Shot in Storage Price War" Which is a fascinating assessment given that Microsoft fired the first shot with unlimited OneDrive storage for Office 365 customers. Last year. Microsoft institutes a sick leave program for contract workers For decades Microsoft defined what it meant to be a software company, and it lead the world in terms of market penetration and brand awareness. Today, the software giant is leading the world—or at least the United States, which is the only advanced economy in the world that does not require paid sick leave--in a different way. (And thank goodness it's not as lame as Sony's or Google's insurance businesses. ) It is requiring paid leave—including vacation time—for its contract workers. As it turns out, Microsoft, like the US military, isn't big enough to do the job on its own, so it has hired thousands of contractors on top of its 130,000 full-time employees. These contractors—like those paid by the military—don't technically work for Microsoft, so their benefits are determined by their actual employers. But now, if you want to do business with Microsoft, you must provide contract employees with 15 paid... --- ### How to Create a Hybrid RemoteApp Collection > In his two-page tutorial, Contributing Editor Aidan Finn shows us how to create a Hybrid RemoteApp collection. - Published: 2015-03-26 - Modified: 2024-11-19 - URL: https://petri.com/how-to-create-a-hybrid-remoteapp-collection/ - Categories: Microsoft Azure - Tags: Azure RemoteApp, Editor's Pick, Hybrid App Collection, RDS, Remote Desktop Services, VPN - Article Type: How To This article is a step-by-step guide on how to build a hybrid app collection in Azure RemoteApp that integrates with your existing Active Directory infrastructure. In this article I am going to show you step-by-step instructions on how to build a hybrid app collection in Azure RemoteApp. Quick Reminder of Hybrid App Collections The benefit of a hybrid app collection is that it allows you to enable users to log into Azure-based and Azure-managed RDS session hosts, while still using company owned servers and services. The below illustration depicts such a scenario: A domain controller provides either single sign-on (ADFS) or shared sign-on (DirSync or AD Connect) integration with Azure AD (AAD). The Azure directory is used by RemoteApp to authenticate user login requests. A custom template is created and loaded into Azure Remote App. A hybrid app collection is created with the ability to join the resulting session hosts to the customer's Active Directory (not AAD, but the actual domain). The session host virtual machines run on a dedicated VNET, which has a VPN connection to the customer network. This means that the RemoteApp-managed machines are members of the domain and are subject to Group Policy, which can access customer services. Users sign into RemoteApp to use the published applications. The users can use the published client applications to access services on the customer's servers via traditional AD authentication and the VPN connection. A hybrid Azure RemoteApp app collection (Image Credit: Aidan Finn) The ability to integrate a hybrid app collection so deeply with an Active Directory and with customer services is what makes this solution so interesting to me... . --- ### Manage Local Active Directory Groups using Group Policy Preferences > Learn how to manage local Active Directory groups using Group Policy Preferences, which lets you create, delete, update, and rename local groups. - Published: 2015-03-26 - Modified: 2024-11-19 - URL: https://petri.com/manage-local-active-directory-groups-using-group-policy-preferences/ - Categories: Active Directory (AD) - Tags: Editor's Pick, gpo, group policy, managing local groups - Article Type: How To Daniel Petri shows us how to manage local Active Directory groups with Group Policy Preferences, which lets us create, delete, update, and rename local groups. Following the first two entries in my managing Active Directory Local Groups article series, we're ready for our next installment. In this article, I'll talk about another feature of Group Policy called "Local Users and Groups" that is part of the relatively new section of GPO called Group Policy Preferences (GPP).  Local group GPP settings allows you to centrally create, delete, and rename local groups. You can also use these settings items to change local group memberships. Managing Local Active Directory Groups Article Series Part 1: Manage Local Active Directory Groups using Group Policy Restricted Groups Part 2: Using “This group is a member of” controls to manage local AD groups Part 3: Manage Local Active Directory Groups using Group Policy Preferences Part 4: Using Startup Scripts to Manage Local Active Directory Groups The nice thing about this feature in comparison to the old Restricted Groups feature in GPO is that it lets you add users and groups as members, while ensuring the current group membership is not modified. In turn, this gives you higher flexibility in group membership management. Although this feature is relatively new, it wasn't included in the original release of Group Policy as part of Windows Server 2000, but was later added in Windows Vista and was back ported to Windows XP after installing a special client-side add-on (Download Group Policy Preference Client Side Extensions for Windows XP). However, starting from Windows Vista and Windows Server 2008 R2, it just works out of the box. Using "Local Users and Groups" in... --- ### Google Faces Renewed EU Scrutiny in Wake of FTC Leak > EU lawmakers who previous scuttled a Google antitrust settlement are now taking a harder stance against the search giant in the wake of leaked FTC documents - Published: 2015-03-26 - Modified: 2024-09-04 - URL: https://petri.com/google-faces-renewed-eu-scrutiny-in-wake-of-ftc-leak/ - Categories: Cloud Computing - Tags: Google, News - Article Type: News "Place du Luxembourg 889 Wide" by JLogan - Own work. Licensed under CC BY 3. 0 via Wikimedia Commons European lawmakers who previous scuttled an EU settlement with Google are now taking an even more hardline stance against the search giant in the wake of leaked documents showing that the company should have faced antitrust charges in the United States. Meanwhile, the FTC and Google are both scrambling to undo the damage caused by these leaked revelations. "This new evidence is crucial and could not come at better time," Ramon Tremosa i Balcells said in a statement. The Spanish lawmaker had previously signed a European Parliament resolution calling on the breakup of Google for its antitrust violations. One of several EU investigations of Google is examining almost exactly the same behavioral issues that the FTC failed to prosecute. The damaging FTC leak showed that federal regulators in the United States had a strong antitrust case against Google but declined to press charges, mysteriously agreeing instead to ineffectual and voluntary business behavioral changes. A very similar EU investigation into Google's search business uncovered the same anti-competitive and anti-consumer business practices as did the FTC. And the European Commission, then run by Joaquín Almunia, also originally attempted to push through a weak settlement that would have caused just minor changes in Google's behavior. Outraged by this passiveness, EU lawmakers demanded that Almunia and the EC do more to protect consumers in Europe... . --- ### Configure Event Log Forwarding in Windows Server 2012 R2 > Follow these step-by-step instructions on how to configure event log forwarding in Windows Server 2012 R2. - Published: 2015-03-25 - Modified: 2024-09-04 - URL: https://petri.com/configure-event-log-forwarding-windows-server-2012-r2/ - Categories: Windows Server, Windows Server 2012 - Tags: Add-ADGroupMember, Editor's Pick - Article Type: How To Russell Smith shares simple steps for configuring event log forwarding in Windows Server 2012 R2. Event Log forwarding was introduced in Windows Server 2008, allowing system administrators to centralize server and client event logs, making it easier to monitor events without having to connect to individual servers. Forwarding uses the DMTF WS-Eventing standard, which is part of the open Web Services-Management (WS-Man) protocol built in to Windows Server as part of the Windows Management Framework (WMF). In this article, I’ll show you how to set up Event Log forwarding in Windows Server 2012 R2, configuring a source server, and another that acts as a collector. Windows Server 2008 and Vista or later can be configured as event collectors, while Windows Server 2003 Service Pack 1 and Windows XP Service Pack 2 or later are supported sources. There's no need to install a collection agent, as Event Log forwarding uses technologies built into Windows Server. One collector can forward to another and process many events per second, making forwarding very scalable. HTTPS is also supported for secure messaging. How Does Event Log Forwarding Work? One or more devices can be set up as Event Log collectors. On these devices, you configure subscriptions that pull the desired logs from any number of source computers. No special configuration is required on the source computers, other than that Windows Remote Management (WinRM) should be enabled, the WinRM Windows Firewall exceptions be enabled, and the collector's computer account must have read permission on the logs you want to subscribe to. There are variations on this standard configuration,... --- ### Is Android Microsoft's Plan B for Mobile? > Microsoft will try to make Windows 10 a success in mobile. But if that doesn't work, what is Microsoft's Plan B for mobile? - Published: 2015-03-25 - Modified: 2015-03-25 - URL: https://petri.com/is-android-microsofts-plan-b-for-mobile/ - Categories: Mobile - Tags: Android, News, Windows 10 - Article Type: Opinion With Windows falling behind Android and iOS in mobile, Microsoft has found itself in the awkward position of supporting these rival platform with mobile apps and services. Sure, it will do what it can to make Windows 10 a success in mobile. But if that doesn't work—if Windows simply retains a dominant position with PCs only—what is Microsoft's Plan B for mobile? It could very well be Android. Microsoft has been pushing its "mobile first, cloud first" agenda since Satya Nadella became CEO in early 2014, and the firm has been steadily releasing and improving its mobile app lineup on not just Android, but on Apple's iOS (iPhone, iPad) and Amazon's Fire OS as well. Each platform brings with it some challenges, not the least of which is that the companies that control those platforms are all competitors with a vested interest in keeping Microsoft down. But of the three, only Android holds out any hope of a Microsoft resurgence in mobile. Here's why: where Apple and Amazon both control their own platforms by being the sole device provider for those systems, Android—like Windows—is licensed to a broad range of device makers, each of which can customize the system in order to differentiate from their competitors. And Microsoft has interesting relationships with many of those devices makers. You may recall that most Android device makers are also cross-licensing Microsoft's mobile patent portfolio. That's because the software giant has threatened to sue any Android device makers who don't... --- ### PowerShell Problem Solver: PowerShell String Parsing with Named Captures and REGEX > PowerShell MVP Jeff Hicks shows us how to achieve PowerShell string parsing with named captures and REGEX. - Published: 2015-03-25 - Modified: 2024-09-04 - URL: https://petri.com/powershell-string-parsing-with-named-captures-and-regex/ - Categories: PowerShell - Tags: Advanced, named captures, PowerShell Problem Solver, REGEX, Scripting - Article Type: How To PowerShell MVP Jeff Hicks shows us how to achieve PowerShell string parsing with named captures and REGEX. Over the course of the last few PoweShell Problem Solver articles, I've been instructing you on the fine art of string surgery. That is, extracting bits of information from text using both substrings and regular expressions. I have one more advanced technique I want to demonstrate. As before, I am working with this string sample: ​ My intention is to extract the parts of my name from the string. As I mentioned in a previous article, I've modified the last name to make it more challenging. I want to extract my first and last name and initial and have them easily accessible. I could go through the effort of breaking the string apart using techniques from my previous articles. Instead, I want to use a regular expression feature called named captures . With a named capture you can assign a name to a matching pattern. In PowerShell, you can easily reference this named capture and use it like a variable. As with all regular expressions, you have to know the structure of your data, and it must be consistent. To use named captures, you might want to use a REGEX object. Here's what my pattern looks like: ​ Although it isn't required, I have gone through and described the entire string. Let me break it down for you. First, I'm matching on the literal string "Mailbox" followed by a colon. Because the ':' character is a special character for regular expressions, I am escaping it so PowerShell treats it as a... --- ### Creating a Function to Test and Compare PowerShell Commands > PowerShell MVP Jeff Hicks walks us through the process of creating a function to test and compare PowerShell commands and their efficiency. - Published: 2015-03-24 - Modified: 2024-09-04 - URL: https://petri.com/creating-a-function-to-test-and-compare-powershell-commands/ - Categories: PowerShell - Tags: Advanced, Measure-Command, Scripting - Article Type: How To PowerShell MVP Jeff Hicks walks us through the process of creating a function to test and compare PowerShell commands and their efficiency. As you work with PowerShell, and especially when you begin developing scripts, you'll realize there may be several ways to achieve the same result. How do you decide which is the better option? My first criteria is that the best choice best takes advantage of the PowerShell paradigm. For example, you might have started with code like this, which is modeled after the way we would have used VBScript. ​ Ostensibly it works. The results of our computer's properties. (Image Credit: Jeff Hicks)   But this isn't really good PowerShell. This a better approach to writing our PowerShell. ​ Our formatted result for our modified PowerShell code. (Image Credit: Jeff Hicks)   The result is even formatted nicely. This is the first test. Unfortunately there really isn't a quantitative way to determine that the latter approach is better. This comes from experience. So let's assume that as you are working you have two equally valid and good PowerShell solutions to a task. Which is better? For me, the next test is legibility. That is, how easy is it to understand and follow what is happening in your code? Which makes more sense to you? Which is easier for someone else to understand? Again, this is a subjective measure. The final standard, at least for me, is performance. Normally I don't worry too much if one approach is a few milliseconds faster than another. Usually you can get a sense simply... --- ### Query XML Event Log Data Using XPath in Windows Server 2012 R2 > Russell Smith demonstrates how to create more complex filters to make your custom views even more valuable by querying event log data using Path in Windows Server 2012 R2. - Published: 2015-03-24 - Modified: 2024-09-04 - URL: https://petri.com/query-xml-event-log-data-using-xpath-in-windows-server-2012-r2/ - Categories: Windows Server, Windows Server 2012 - Tags: Event Viewer, XPath - Article Type: How To Learn how to query XML Event Log data using XPath to make your custom views even more valuable. In a previous Ask the Admin, Creating Custom Views in Windows Server 2012 R2 Event Viewer on the Petri IT Knowledgebase, I showed you how to make Event Viewer a more useful tool by creating custom views. Today I'm going to demonstrate how to create more complex filters to make your custom views even more valuable. Filtering the Event Logs The core System, Application, and Security event logs contain lots of information that needs to be filtered before it becomes beneficial. In order to do that effectively, it's also necessary to have some understanding of the data that events contain. For instance, we know the Event ID 4624 indicates that an account was successfully logged on, but this information only becomes really useful if we can identify particular types of logon that should be raised as suspicious. Let's consider an example where we want to raise all Remote Desktop logons as suspect. Event ID 4624 also contains data that shows the Logon Type, and when this value is 10 it indicates a logon using Remote Desktop. But when looking at the Security log in Event Viewer, it's impossible to separate Remote Desktop logons from any other kind of logon without opening each event and looking for the logon type in the event data. Similarly when creating a custom view in Event Viewer using the Filter tab, there's no means of viewing only logon events of a certain logon type. To do that, we need to enter an... --- ### Microsoft Has One Brand to Rule Them All > Microsoft has a final brand card to play that matters more than Windows, Office and Server combined. What is this incredible brand, you ask? - Published: 2015-03-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-has-one-brand-to-rule-them-all/ - Categories: Cloud Computing - Tags: Microsoft, News - Article Type: Opinion In navigating the tricky waters of the post-PC world, Microsoft is trying to make up ever-dwindling revenues from traditional businesses like Windows, Office and Server with new subscription services and mobile offerings. But it's become increasingly clear that in doing so, Microsoft may also need to leave those brands behind. Which is fine, since Microsoft has a final brand card to play that matters more than Windows, Office and Server combined. What is this incredible brand, you ask? It's the Microsoft brand, of course. During a recent appearance at Convergence 2014, Microsoft Chief Marketing Officer Chris Capossela tackled the problems facing the software giant head-on. I wrote about part of his keynote in Microsoft’s New Strategy for Office: Freemium. But here I'd like to examine something that is perhaps even more explosive: Microsoft is willing to drop the very core of what defined the company over the past few decades. And in doing so, it may emerge with the only brand that really matters. This is a contentious, hot-button topic right now because some of Microsoft's biggest proponents have grown leery of its ongoing efforts to support competing platforms like Android and iOS (iPhone, iPad) over Windows. Indeed, since Satya Nadella took over as CEO a bit over a year ago, Microsoft has delivered far more—and far more compelling—mobile apps on the competition than it has on its own Windows-based platforms. Why would one even continue using Windows or Windows Phone when Microsoft's productivity offers are so... --- ### Audit Internet Explorer Usage with the Enterprise Site Discovery Toolkit > Learn how to audit Internet Explorer usage with the Enterprise Site Discovery Toolkit in Russell Smith's latest article. - Published: 2015-03-23 - Modified: 2024-09-04 - URL: https://petri.com/audit-internet-explorer-usage-with-the-enterprise-site-discovery-toolkit/ - Categories: Windows Client OS - Tags: Editor's Pick, get-wmiobject, Internet Explorer, select-object, sort-object - Article Type: How To Learn how to gather Internet Explorer usage telemetry with the Enterprise Site Discovery Toolkit. In this Ask the Admin, I'll explain how you can determine what sites users are visiting using Enterprise Site Discovery in Internet Explorer. Enterprise Site Discovery was first released in late 2014 and supported only IE11, but was updated in the March 2015 to support Internet Explorer 8, 9, and 10. With Microsoft keen for enterprises to move away from the Windows XP, which is no longer supported, and upgrade to the latest version of Internet Explorer for better compliance with web standards and improved security, Enterprise Site Discovery is designed to make it easier for organizations to gather information about the sites users visit and data on how IE renders pages so that potential compatibility problems can be weeded out before upgrading to a newer version of Windows or IE. In conjunction with IE Enterprise Mode, which you can read about on the Petri IT Knowledgebase here: How to Enable Internet Explorer 11 Enterprise Mode and How to Configure Internet Explorer 11 Enterprise Mode Logging, Enterprise Site Discovery helps organizations understand which apps are being used so that they can be prioritized for testing, how in-house apps are rendered by IE's different document modes, and the ActiveX Controls used so that an upgrade project to a newer version of Windows can be planned to avoid any nasty surprises. Data that can be collected using the Enterprise Site Discovery Toolkit (Image Credit: Microsoft) Enable Enterprise Site Discovery First you’ll need to download the... --- ### What’s New in Microsoft EMET 5.2 > Learn about the new slew of security features in Microsoft's Enhanced Mitigation Experience Toolkit (EMET) 5.2. - Published: 2015-03-23 - Modified: 2024-12-03 - URL: https://petri.com/whats-new-in-emet-5-2/ - Categories: Security - Tags: EMET, Internet Explorer - Article Type: Overview Learn about the new features in Microsoft's Enhanced Mitigation Experience Toolkit, which now includes support for Modern IE and Enhanced Protected Mode. In this Ask the Admin, I'll run through the new features in Microsoft's free Enhanced Mitigation Experience Toolkit (EMET). Last week Microsoft released an update to its Enhanced Mitigation Experience Toolkit, a tool used by organizations to provide additional protection to critical line-of-business apps against zero-day attacks. In the latest update to the toolkit, which can be downloaded here, Microsoft has added support for a new feature in Visual Studio 2015 that allows developers to strengthen binaries against hackers exploiting indirect-calls by calling invalid targets, a mitigation against recently observed so-called VBScript God Mode attacks, and finally support for Modern IE in Windows 8. 1 and desktop IE with Enhanced Mode enabled. Control Flow Guard Microsoft has recompiled EMET using Visual Studio 2015's Control Flow Guard technology, which is supported in Windows 8. 1 Update 3 and Windows 10. While EMET is unable to add the protection Control Flow Guard provides to your business app binaries, EMET itself is protected by the technology, making it harder to circumvent the protections it provides. Microsoft recommends that you recompile your business apps using Visual Studio 2015 using Control Flow Guard. Microsoft EMET 5. 2 (Image Credit: Russell Smith) By adding extra data to an app's binaries at compile time, containing information about any location in memory that an indirect-call might reach in the case of a buffer overflow attack, i. e. when an attacker purposefully tries to break out of an area reserved to hold input by supplying more... --- ### Why Didn't the FTC Charge Google with Antitrust Violations? > An inadvertently leaked memo reveals that the FTC determined that Google had violated US antitrust laws and harmed both competitors and consumers alike. - Published: 2015-03-23 - Modified: 2024-09-04 - URL: https://petri.com/why-didnt-the-ftc-charge-google-with-antitrust-violations/ - Categories: Cloud Computing - Tags: News, Search - Article Type: News An inadvertently leaked memo reveals that the Federal Trade Commission determined that Google had violated US antitrust laws in abusing its monopoly search power to harm both competitors and consumers alike. But the FTC never revealed these findings and the search giant was allowed to continue its abusive behavior after voluntarily agreeing to make inconsequential changes to how it did business. Google's anti-competitive business practices illegally "helped it to maintain, preserve and enhance its monopoly position in the markets for search and search advertising," the report notes. That behavior "will have lasting negative effects on consumer welfare. " Why didn't the FTC charge Google with antitrust violations? At the time its investigation of Google ended in early 2013, the FTC wasn't inclined to pursue a lengthy and expensive legal case against Google, as the US Department of Justice had with Microsoft over a decade earlier. That case—which the FTC had also declined to pursue after a close vote—dragged on for several years and hamstrung an otherwise dominant Microsoft enough to allow the rise of both (irony alert) Google and Apple. Google's voluntary changes—which I described at the time as less than a slap on the wrist—provided "more relief for American consumers faster than any other option," according to then-FTC chairman Jon Leibowitz. And Google of course claims that "the ways people access information online have only increased since the investigation closed two years ago, giving consumers more choice than ever before. " But the explosive internal FTC report—which inadvertently... --- ### How to Uninstall Windows PowerShell > Tim Warner provides helpful instructions on how to uninstall Windows PowerShell. - Published: 2015-03-20 - Modified: 2024-11-19 - URL: https://petri.com/how-to-uninstall-windows-powershell/ - Categories: PowerShell - Tags: Editor's Pick - Article Type: How To Tim Warner provides helpful instructions on how to uninstall Windows PowerShell. Hey, everyone! I captured your attention with that article title, didn't I? If you're the Windows geek I am, you probably thought, "Hey--I thought that Windows PowerShell was a core part of the operating system and can't be removed. Besides, why would I WANT to remove PowerShell? " Both are reasonable points. Before we get into the details, let me cut to the chase and give you my understanding of how PowerShell removal works: PowerShell v2 is our baseline PowerShell version and cannot be uninstalled without damaging the integrity of Windows. We can add or remove PowerShell v2 support from Windows 8. 1 and Windows Server 2012 R2. We can downgrade a manually upgraded PowerShell version by removing the corresponding Windows Management Framework (WMF) package. As we both know, Windows XP is a a dead operating system. Therefore, I'll just say for trivia and historical purposes that you can in fact completely remove Windows PowerShell v1 from XP. Supposedly you could remove Windows PowerShell v2 from Windows Server 2008 RTM by going through Server Manager. However, there's no Windows PowerShell runtime entry in the Add Features Wizard in Windows Server 2008 R2, as shown in Figure 1. Figure 1: We can load or unload the ISE, but we can't remove Windows PowerShell v2 from Windows Server 2008 R2. (Image: Tim Warner) I checked in Windows 7 SP1 and verified that we can't uninstall Windows PowerShell v2 from the Windows Features dialog box in Control Panel. If ever... --- ### Create an Azure RemoteApp Template from an Azure VM > Learn how to create an Azure RemoteApp Template from an Azure virtual machine. - Published: 2015-03-20 - Modified: 2024-11-19 - URL: https://petri.com/create-an-azure-remoteapp-template-from-an-azure-vm/ - Categories: Microsoft Azure - Tags: Azure RemoteApp, Remote Desktop Services - Article Type: How To This post shows you how to create an Azure RemoteApp custom template using an Azure virtual machine. In this post I will show you how to create an Azure RemoteApp custom template using a virtual machine in the Azure cloud. Creating a RemoteApp template on-premises and in Azure In a previous article, I described how to create a custom template using an on-premises Hyper-V virtual machine. That method is pretty slow: You need to create a virtual machine Configure and patch the guest OS Install apps and patch them and the guest OS Sysprep the virtual machine Upload the generalized VHD over limited bandwidth This is a time consuming and slow method, plus it's filled with many opportunities to get something wrong, such as accidentally deploying a Generation 2 virtual machine, which cannot be used at this point. Instead, with this method, you use a virtual machine template in Azure that's almost ready for RemoteApp. And best of all, the upload is actually an in-Azure data transfer that takes minutes instead of hours. Note: I was working on a method that involved some complicated PowerShell cmdlets to transfer the generalized VHD from a storage blob to RemoteApp. Then I found a new post by Microsoft's Pierre Roman that offered an alternative way to do the VHD transfer that does not use PowerShell. The guide was missing the final step, which I figured out and shared with Pierre. So thanks to the folks at the Canadian IT Pro Connection website for their help! Deploy Session Host from Azure Gallery With this approach, you are going to build the template machine in Azure. Log... --- ### Paul Thurrott's Short Takes: March 20, 2015 > Because you know to call the A-Team and not the B-Team, this week's other news includes a shocking revelation that the FTC found Google antitrust violations - Published: 2015-03-20 - Modified: 2015-03-20 - URL: https://petri.com/paul-thurrotts-short-takes-march-20-2015/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because you know to call the A-Team and not the B-Team, this week's other news includes a shocking revelation that the FTC found sweeping Google antitrust violations and did nothing about them, Microsoft's open sourcing of the MSBuild engine, an HTC upheaval, China's latest "Baghdad Bob" moment, and no web browsers are safe. Shocker: FTC found Google antitrust violations, swept them under the rug When the FTC investigated Google for antitrust violations three years ago, I called on the federal agency to sue the search giant into submission. But instead, the FTC agreed to let Google voluntarily change a few business practices, changes that did absolutely nothing to stop its anti-competitive and anti-consumer ways. And this week, thanks to inadvertently leaked documents, we know that the FTC has failed us badly. "Google's conduct has resulted—and will result—in real harm to consumers and to innovation in the online search and advertising markets," the FTC had found internally in 2012, even though it then declined to pursue the case. Indeed, the FTC discovered that—contrary to Google's assertions—that the search giant routinely manually massaged its search results to harm competition and promote its own services instead. And its own internal documentation pegged its US usage share as over 80 percent during a time in which the public figures were about 65 percent. That is, Google was—still is—a monopoly. So maybe something good will come out of this. That is, maybe it's time for the US Department of Justice to step... --- ### PowerShell Problem Solver: PowerShell String Parsing with Regular Expressions > Learn all about PowerShell string parsing with regular expressions in this handy how-to article by Jeff Hicks. - Published: 2015-03-19 - Modified: 2024-12-03 - URL: https://petri.com/powershell-string-parsing-with-regular-expressions/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, PowerShell Problem Solver, Scripting - Article Type: How To PowerShell MVP Jeff Hicks walks us through string parsing with regular expressions in this second installment in his article series about parsing text strings with PowerShell. In a recent article called, PowerShell Problem Solver: PowerShell String Parsing with Substrings, I showed you some ways to parse strings with PowerShell. For many PowerShell beginners, splitting strings works just fine. Eventually you'll realize that you want more control, and this is where regular expressions come into play. I am not going to try and teach your regular expressions from scratch. There is an entire chapter in the second edition of PowerShell in Depth that covers regular expressions in PowerShell. You should also take a few minutes to look at the help topic about regular expressions. A regular expression is a way of using a pattern to describe some piece of data. Granted, coming up with the pattern can be time consuming. Let's see if our string challenge can help shed some light on the subject. If you recall, I am starting with a string, presumably from a log. ​$s = "Mailbox:9WJKDFH-FS349-1DSDS-OIFODJFDO-7F21-FC1BF02EFE26 (O'Hicks, Jeffery(X. ))" The goal is to extract O'Hicks, Jeffery(X. ) from the string. I've intentionally modified my name to throw in a different character because you might face something similar. The examples I am going to show you should also work for simpler strings as well. If you know for a fact what your data will look like, you might even be able to get by with simpler patterns. But enough chat. The simple way to even test if there is a matching pattern is with the –Match operator. ​$s -match "S+,sS+" The stuff to the left of the –match operator... --- ### Episode 16 March 19th, 10:15pm EDT – Guest Lauren Malhoit - Published: 2015-03-19 - Modified: 2015-03-19 - URL: https://petri.com/episode-16-guest-lauren-malhoit/ - Categories: Current Status We’ve all heard of SDN (Software Defined Networking) but have you heard of Cisco ACI? What is this ACI we are hearing about from Cisco and how does it relate to SDN? is it powered by unicorns? Join us as we discover the details of ACI with @malhoit.   --- ### How to Create Custom Views in Windows Server 2012 R2 Event Viewer > Learn how to create Custom Views in Windows Server 2012 R2 Event Viewer for better security monitoring of your environment. - Published: 2015-03-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-custom-views-in-windows-server-2012-r2-event-viewer/ - Categories: Windows Server 2012 - Tags: Editor's Pick, Event Viewer - Article Type: How To Russell Smith shows us how to make Event Viewer in Windows Server a more useful tool by creating custom views. In this Ask the Admin, I'll show you how to use filters to create custom views in Windows Server Event Viewer. Monitoring the Event Log in Windows Server is an essential task for detecting malicious activity or unwanted changes to your systems that often gets ignored. Since improvements were made to Windows Eventing in Windows Server 2008, and specifically the addition of custom views in the Event Viewer management console, this often laborious chore has become easier. Create a Custom View for User Account Management Events The Event Logs contain lots of useful information, but there are certain events that you should isolate as they can indicate potential security breaches. In this way, the information provided in the logs becomes more useful without the additional noise. That's not to say that auditing of other events should necessarily be suppressed, but some information is more likely to flag a problem. Let's start by creating a custom view that shows us all User Account Management events from the local Security log. Log in to the server as an administrator or user that has permission to read the event logs, and follow the instructions below: Define a filter for a custom view in Event Viewer (Image Credit: Russell Smith) Open Event Viewer from the Tools menu in Server Manager. In the Event Viewer window, expand Custom Views in the top left. Right click Custom Views, and select Create Custom View... from the menu. In the Create... --- ### What Is Microsoft Really Doing with Internet Explorer? > With Windows 10, Microsoft is pushing a new web browser—currently codenamed Project Spartan—over its legacy Internet Explorer. - Published: 2015-03-19 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-really-doing-with-internet-explorer/ - Categories: Windows 10 - Tags: Internet Explorer, News, Project Spartan - Article Type: Opinion With Windows 10, Microsoft is pushing a new web browser—currently codenamed Project Spartan—over its legacy Internet Explorer. But it's not clear what the real strategy is here, since a new web browser that runs only on Windows is fundamentally just as constrained as the browser it seeks to replace. Microsoft first launched Internet Explorer 20 years ago alongside Windows 95, and quickly integrated it so deeply into the operating system that the firm ran afoul of antitrust regulators in the United State, Europe and elsewhere. At the time, it wasn't clear whether the bigger issue was Microsoft's anticompetitive behavior or the technical mistake of integrating unproven code into so important a product. With the passage of time, however, what we can see of Internet Explorer is classic Microsoft: An almost maniacal devotion to backwards compatibility and to serving the needs of business customers that routinely refuse to upgrade their infrastructures, and a steep falloff in IE development once the browser successfully dominated its market. And it is these two mistakes that have truly doomed Microsoft's browser efforts. Ignoring Internet Explorer for so many years gave rise to Firefox, Chrome, and Safari, and on the PC, IE's once impenetrable usage share has fallen from 95 percent or to about 60 percent in recent years. But the PC is the least of Microsoft's problems: today, most people browse the web on mobile devices—using Chrome or Safari—and in this much bigger market, IE commands less than 5 percent of usage,... --- ### How to Create an Azure RemoteApp Template > Aidan Finn shows us how to create an Azure RemoteApp template, which allows you to upload your own set of applications to be presented to your users. - Published: 2015-03-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-an-azure-remoteapp-template/ - Categories: Microsoft Azure - Tags: Azure RemoteApp, Editor's Pick, RDS, Remote Desktop Services - Article Type: How To Learn how to create custom Azure RemoteApp templates, which lets you present your own set of applications to users. Microsoft's RDS-in-the-cloud service, Azure RemoteApp, allows you to upload your own set of applications to be presented to your users. This is accomplished using a custom template. I will explain what an Azure RemoteApp custom template is and how to create one in this article. Adding Custom Applications Some of the lighter articles on RemoteApp only discuss the possibility of running Office 365 Pro Plus as a published application in Azure. In reality, you can run any application in Azure as long as: It runs on Windows Server 2012 R2 (WS2012 R2). It is compatible with Remote Desktop Services (RDS). There are no hardware dependencies. Licensing doesn't get in the way – every vendor is different, so check this out before proceeding. We can upload these applications as a part of a custom template; this a virtual hard disk containing a generalized copy of a WS2012 R2 RDS session host with your custom applications. Azure provides a script and command to upload this VHD file to Azure. You then create a RemoteApp app collection in Azure specifying that your new custom template should be used. RemoteApp will create virtual session hosts, managed by Azure, for your users to log into. Any user that is assigned to the app collection will be able to access any application that is in the VHD and that you choose to publish in the app collection. Furthermore, if you choose to create a hybrid collection, the resulting session host virtual machines will... --- ### Lync Steps Aside for Skype for Business > Microsoft announces the schedule for launching Skype for Business and how it will keep the products and services up to date going forward. - Published: 2015-03-18 - Modified: 2015-03-18 - URL: https://petri.com/lync-steps-aside-for-skype-for-business/ - Categories: Microsoft 365 - Tags: Lync, News, Skype for Business - Article Type: News Last November, Microsoft revealed that it would be rebranding the next generation of its Lync products and services to Skype for Business in order to align it with its popular consumer-oriented messaging solution. That change starts this week with the launch of a Skype for Business client preview, and it will continue in April and beyond as Microsoft releases and then continues to update the other pieces of the Skype for Business stack as well. "This is an important moment," Giovanni Mezgec, the general manager for the Skype for Business team told me during a recent briefing. "We've been working on getting to this new platform, and it's finally happening. But there's more to do, and we will make Skype for Business even more a central part of the Microsoft vision. " Combining the best of Skype with the best of Lync obviously makes sense conceptually, and Microsoft is quick to point out the benefits of using the "familiar" Skype UIs on its business products. But the synergy goes deeper than surface-level changes, with the ability to communicate between the services and products. And there is a big Skype audience out there. Microsoft says it now sees 50 billion minutes of Skype traffic every month—which it says is one third of the world's long distance traffic—and over 50 percent that is over video. On the business side, over 100 million people use Lync to communicate, and the product has a 79 percent penetration with U. S. enterprises. [adkit zone="freestyle"... --- ### Getting the Most Out of Azure Site Recovery > Aidan Finn provides tips and tricks for getting the most out of Azure Site recovery. - Published: 2015-03-17 - Modified: 2024-09-04 - URL: https://petri.com/getting-the-most-out-of-azure-site-recovery/ - Categories: Microsoft Azure - Tags: Azure Site Recovery, Disaster Recovery, DNS, DR, Editor's Pick, hybrid cloud - Article Type: How To Aidan Finn provides tips based on his lessons learned from deploying Azure Site Recovery with a customer recently. I have recently been working on a proof of concept for small-to-medium enterprises (SMEs) on Microsoft's DR-in the cloud service, Azure Site Recovery I thought I would share some of my learnings in this article, and I would like to thank the ASR team at Microsoft for the help they have provided me with over the past few weeks. How long will it take to replicate? Most SMEs operate in a bandwidth-challenged world. ASR uses Hyper-V Replica, which was originally designed to deal with bandwidth challenges. The fact is that you still need bandwidth to upload the GBs of virtual hard disks of your virtual machines to Azure. My lab at work is on an isolated network with 256 Kbps of upload speed on an ADSL connection -- I can hear some of you saying, "How stone-aged! " It takes over three days to finish the initial replication of a plain Windows Server 2012 R2 virtual machine to Azure on that bandwidth. I had access to 50 Mpbs upload speeds this week and a similar machine was completed in two and a half to three hours. It could have been quicker except I enabled bandwidth throttling. Bandwidth Throttling You can limit the bandwidth that's used by ASR on a per-host basis. This is done in the Azure Online Backup tool, which is also installed when you install the ASR provider. Log into your host and launch Microsoft Azure Backup. Click Change Properties in the Actions pane when the console opens and then browse to... --- ### Declutter Your Inbox with Office 365 Clutter Enhancements > Take advantage of new Office 365 Clutter enhancements, which lets administrators bypass Clutter filters, configure retention policies, and personalize system notifications. - Published: 2015-03-17 - Modified: 2024-09-04 - URL: https://petri.com/declutter-your-inbox-with-office-365-clutter-enhancements/ - Categories: Microsoft 365, Office - Tags: Clutter, Editor's Pick, Exchange Management Shell - Article Type: How To Theresa Miller walks us through new Office 365 Clutter enhancements, which lets administrators bypass Clutter filters, configure retention policies, and personalize system notifications. Last fall Microsoft released a new tool called Clutter to help Office 365 users automatically organize the email in their inboxes. This tool is currently only available to Office 365 customers and can't be found in any Exchange on-premises versions. Clutter learns your email patterns over time and moves your low-priority messages to a folder named Clutter. The expectation is that these messages are the ones that you most likely would not have done anything with, so Clutter declutters your inbox moving them out of sight and out of mind. Recent Clutter Improvements It's been a few months since the original release, and Microsoft is now offering some enhancements to Clutter. The Office 365 team announced in early March that there are now three new Clutter-related features that Office 365 email customers can start utilizing. They include the ability to bypass Clutter filters, configure retention policies and personalize system notifications. Let's dive in to each of these new features and learn how to configure and take advantage of them. Transport Rule to Bypass Clutter Filters As previously stated, Clutter has the intelligence to study your email behaviors to better learn how email should be managed. In some cases, we're learning that there are times where we may want Clutter to ignore certain message types. Once configured, Clutter can ignore a specific message that will remain in the user's inbox. This is useful for important messages that your team must see and you wouldn't want it accidentally reorganized by Clutter. In this example, we'll talk about setting up Clutter bypass for... --- ### Nintendo Belatedly Embraces Mobile > A growing failure in the market for video game consoles it once dominated, Nintendo will finally turn its attention to mobile devices. - Published: 2015-03-17 - Modified: 2024-09-04 - URL: https://petri.com/nintendo-belatedly-embraces-mobile/ - Categories: Mobile - Tags: News - Article Type: News A growing failure in the market for video game consoles it once dominated, Nintendo will finally turn its attention to mobile devices. The video game firm announced Tuesday morning that it is partnering with Tokyo-based DeNA to jointly develop games for smart phones and other devices. "Both companies will develop and operate new game apps based on Nintendo's IP, including its iconic game characters, for smart devices," a DeNA press release explains. "The alliance is intended to complement Nintendo's dedicated video game systems business and extend Nintendo's reach into the vast market of smart device users worldwide. " (DeNA is pronounced like DNA. ) Analysts and game players alike have been calling on Nintendo to port its popular video game series—like "Mario" and "Zelda"—to mobile devices for years, but the company has always demurred, stating that it prefers to control the entire ecosystem for its titles. But recent developments have triggered a change in plans. Nintendo's most recent home console, the Wii U, has barely made a ripple in the current generation of consoles, with just 9 million units sold since November 2012. And not coincidentally, Nintendo's revenues have plummeted over this time, with the company issuing regular earnings warnings and not expecting to return to what it calls "Nintendo-like profits" until 2017. This week's announcement provided a few details about Nintendo's plans. First, when Nintendo refers to "smart devices," it apparently means smart phones, tablets and PCs. But it's unclear which platforms it will support. Presumably, Nintendo intends... --- ### How to Query the DSC Compliance Server > Learn how to query the Desired State Configuration (DSC) compliance server in this article by PowerShell MVP expert Jeff Hicks. - Published: 2015-03-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-query-the-dsc-compliance-server/ - Categories: PowerShell - Tags: Advanced, Desired State Configuration, DSC, Editor's Pick, get-dscnodestatus, Scripting - Article Type: How To Jeff Hicks shows us how to query the DSC compliance server with PowerShell 4.0 in this quick tutorial. If you've been paying attention to PowerShell, then you've probably picked up on the fact the Desired State Configuration (DSC) is the next big thing. Microsoft is devoting a lot of resources to DSC and you've most likely seen a lot of discussion about it in the PowerShell community. I'm going to assume you at least have a passing understanding of the technology, because I want to talk about a feature that I think will be important to you but one that you probably don't know much about. Related: Using Community Desired State Configuration Resources When you set up an HTTP pull server, you can also configure a compliance server. This is a web service designed to capture node information. When a server pulls a configuration, information should be captured by the compliance server. The theory is that you can later query the server to discover servers that are not in compliance with their desired configuration. This is especially important if you aren't using an ApplyAndAutoCorrect setting. While this is an important feature, there is not a lot of official documentation on it, and I suspect it is still being finalized. What I am going to show you is something I've worked on using PowerShell 4. 0. Since PowerShell 5. 0 is still in preview and possibly changing with each release, I wanted to stick with what you could use in production today. That said, there may be changes with PowerShell 5. 0 officially ships. For now, let's take a look at... --- ### Creating a Recovery Plan for Hyper-V VM failover to Microsoft Azure > Learn the steps for creating a recovery plan for Hyper-V VM failover to Microsoft Azure in this latest post by Aidan Finn. - Published: 2015-03-16 - Modified: 2024-09-04 - URL: https://petri.com/creating-a-recovery-plan-for-hyper-v-vm-failover-to-microsoft-azure/ - Categories: Microsoft Azure - Tags: Azure Site Recovery, Disaster Recovery, DR, Orchestration, Recovery Plan - Article Type: How To This article explains how you can create a Recovery Plan (RP) for managing and orchestrating the failover of Hyper-V virtual machines to Microsoft Azure. Part of the attractiveness of Microsoft Azure Site Recovery (ASR) is the ability to orchestrate failover of virtual machines. Microsoft calls this orchestration "one-click failover. " In this article, I will explain how you can create a Recovery Plan (RP) for managing the failover of Hyper-V virtual machines to Microsoft Azure. What are Recovery Plans? A recovery plan (RP) is a set of ordered steps that allows you to conduct a failover in a prescribed fashion. Virtual machine startup can be ordered, thus modelling application dependencies (database first, then application, then web interface), and to conduct other operations that are either scripted or completed manually. An RP can orchestrate the failover of up to 50 virtual machines. When you failover to Azure, the virtual machines will be a part of a single cloud service. You can have up to 20 cloud services in a subscription, so you can failover up to 20 RPs, assuming that the subscription doesn't have any other deployed cloud services. The original intention of an RP was to orchestrate the failover of an n-tier application. If you have three n-tier applications (each up to 50 virtual machines), then you have three RPs, one for each application. If you operate in an SME environment, however, you might have just a single RP for all virtual machines. Keep in mind that if you do this then all of the virtual machines will share a single public IP address (the cloud service) after a failover, so you will... --- ### Microsoft Pushes Forward with Business Offerings at Convergence > Microsoft announced a variety of business software and service offerings during a Monday morning keynote at the Convergence 2015 conference in Atlanta, Georgia. - Published: 2015-03-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-pushes-forward-with-business-offerings-at-convergence/ - Categories: Office - Tags: News - Article Type: News Microsoft announced a variety of business software and service offerings during a Monday morning keynote at the Convergence 2015 conference in Atlanta, Georgia. Pledging to transform business by putting data to work, Microsoft CEO Satya Nadella hailed the software giant's efforts as a "culture of empowerment. " "Businesses are hungry to seize new opportunities using technologies like machine learning and predictive analytics," Mr. Nadella said. "Only when businesses create a culture that empowers everyone to have access to data and insight that drive action will they be positioned to truly transform. " Among the offerings announced during Convergence are: Office 2016 IT Pro and Developer Preview. The first-ever public preview of the next Office suite for Windows follows a similar pre-release look at Office 2016 for Mac and provides a wide range of improvements across the many end-user applications. Outlook picks up multi-factor authentication support and various performance and reliability updates, for example, and the suite now supports a more colorful display mode that provides a visual style similar to that of the mobile app versions of Office. You can visit the Office 2016 Preview program on the Microsoft Connect site. Skype for Business Technical Preview. The next version of Lync has been rebranded to Skype for Business and it's now available in Technical Preview form if you want an early peek. (Presumably, this will be built into the final version of Office 2016 as well. ) The Skype for Business Technical Preview provides a "familiar Skype experience," as Microsoft describes it, but... --- ### Episode 15: March 12, 2015 10:15pm EDT Guest: Mike Nelson - Published: 2015-03-15 - Modified: 2015-03-15 - URL: https://petri.com/episode-15-mike-nelson/ - Categories: Current Status Join us as we speak VDI with Citrix CTP and vExpert Mike Nelson (@nelmedia).   In this episode we will discuss Citrix XenDesktop as a virtualization platform.   If you haven’t considered VDI, learn what this technology can do for your organization and what you should be thinking about.   Learn what customers feel about Citrix as a VDI solution.   We will discuss both the advantages and disadvantages, plus touch on the secrets to ensuring VDI success. --- ### Adding Trace Information to a PowerShell Ping Tool > PowerShell MVP Jeff Hicks shows us how to add trace information to a PowerShell ping tool in his latest article. - Published: 2015-03-13 - Modified: 2024-09-04 - URL: https://petri.com/adding-trace-information-to-a-powershell-ping-tool/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, ping command, PowerShell Ping Sweep Tool, Scripting, Write-Host - Article Type: How To Jeff Hicks shows us how to add trace information to a PowerShell ping tool in his latest article. In a previous article, I started us down a path of discovery and exploration. We have a task to create a ping sweep tool in PowerShell. My hope is that along the way you will learn a few new things. As I said last time, the journey is its own reward. If you missed the previous article, take a moment to get caught up. When we left off, we had a rudimentary PowerShell script that would ping a range of IP addresses. PowerShell Ping Sweep Tool Article Series Building a Ping Sweep Tool with PowerShell PowerShell Ping Sweep Tool: Adding Parameter Validation Adding Trace Information to a PowerShell Ping Tool Identifying a Computer Name with a PowerShell Ping Sweep Tool Building a PowerShell Ping Sweep Tool: Adding a Port Check ​ Eventually, we will want the user to be able to specify the variable values as parameters, so let's look at these next. Although I have defined a subnet variable, I'm really not using it in the working code, where the $subnet variable is a placeholder for me. I could ask the user to enter a value like 172. 16. 30 and change the working code to this: ​ I think that's a bit awkward. Creating the IP address is okay, but asking the user for a network value of 172. 16. 30 is a bit odd, as we would normally consider it to be 172. 16. 30. 0. Let's assume that is the type of value we expect. This is a good practice by... --- ### Paul Thurrott's Short Takes: March 13, 2015 > Because sometimes it's better to be right than to be loved, this week's other news includes a reported Microsoft plan to bring Cortana to Android and iOS. - Published: 2015-03-13 - Modified: 2015-03-13 - URL: https://petri.com/paul-thurrotts-short-takes-march-13-2015/ - Categories: Cloud Computing - Tags: News - Article Type: Opinion Because sometimes it's better to be right than to be loved, this week's other news includes a reported Microsoft plan to bring Cortana to (gasp! ) Android and iOS, an MSN move into the Windows group, Xbox One still doesn't beat PS4 despite record sales, IDC cuts PC sales forecast for 2015, how that change will impact Microsoft, and the FCC issues its rule-less Net Neutrality rules. Report: Microsoft is porting Cortana to Android and iOS Because there is no technology that can be exclusive to the software giant's own platforms, Microsoft is porting its Cortana personal digital assistant past Windows Phone and Windows 10 and to Android and iOS, according to a report in Reuters. And those rival platforms aren't just getting plain Jane Cortana, they're getting a new version infused with "Einstein" technology that "can read and understand email," thanks to some home-spun Microsoft Research work. It's unclear why anyone using Android or iOS would ever use a standalone Cortana app when their devices already have built-in voice-based digital assistances—Siri on iOS and whatever the frick Google calls it this week—but maybe being better will actually make a difference. "Microsoft co-founder plans to live-stream tour of sunken Japanese battleship" As I would call it, "pulling a Geraldo Rivera. " Microsoft shakeup sees MSN move into Windows According to a report in Geekwire, Microsoft is moving its MSN group into the Windows division, which probably seems to make some sense until you understand what's really happening. The MSN... --- ### Configure Distributed File System Replication in Windows Server 2012 R2 > Learn how to configure distributed file system replication in Windows Server 2012 R2 in this step-by-step tutorial. - Published: 2015-03-13 - Modified: 2024-09-04 - URL: https://petri.com/configure-distributed-file-system-replication-in-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: DFS, Editor's Pick, File and Print Services - Article Type: How To Russell Smith shows us how to configure distributed file system replication in Windows Server 2012 R2 in this step-by-step tutorial. In this Ask the Admin, I'll show you how to replicate folders between two servers using Distributed File System Replication (DFSR). Install DFS Replication Before DFS replication can be configured, the DFS replication service needs to be installed on participating file servers. In my lab, contososrv1 already exists, and I want to replicate two shared folders (accounts and production) to contososrv2. Log in to contososrv2 with a domain administrator account, open a PowerShell prompt and run the command below to install DFSR on both servers using the Install-WindowsFeature cmdlet: ​ Remember that the DFS replication and namespace features are mutually exclusive, and while contososrv1 is a namespace server in my lab, contososrv2 doesn't necessarily need to be a namespace server to host DFS folder targets, shared folders or take part in replication. In a real-world environment, contososrv2 might well be configured as a namespace server for redundancy. For more information on DFS namespaces, see Create a Distributed File System Namespace in Windows Server 2012 R2 on the Petri IT Knowledgebase. The accounts and production folders I want to replicate from contososrv1 need to be created on contososrv2, so let's do that using the mkdir cmdlet: ​ Add Folder Targets to a DFS Namespace If you don’t have a DFS namespace configured or don't want to add the folders we created above as folder targets to a namespace, you can skip this section. It's not required for replication to work. On contososrv2, let's share the accounts and production... --- ### Enable Notifications to Open Firewall Ports in Windows Server 2012 R2 > Learn how to easily enable notifications to open firewall ports in Windows Server 2012 R2 in this step-by-step tutorial. - Published: 2015-03-12 - Modified: 2024-09-04 - URL: https://petri.com/enable-notifications-to-open-firewall-ports-in-windows-server-2012-r2/ - Categories: Security - Tags: Editor's Pick, firewall - Article Type: How To Russell Smith shows us a simple way to enable notifications to open firewall ports in Windows Server 2012 R2 in this step-by-step tutorial. In this Ask the Admin, I'll show you how to quickly create Windows Firewall rules when network traffic is blocked. Windows Firewall is an endpoint protection technology that by default blocks most inbound traffic to Windows, preventing malicious processes from probing the system to find an easy way in. It's critical that Windows Firewall should remain enabled, but it can be tempting to disable it for troubleshooting purposes. While it may seem reasonable to temporarily turn off Windows Firewall, this often leads to a permanent need to work with the firewall disabled, sometimes because we simply forget to re-enable it or that it was never determined which ports needed to be opened for a particular service or application to work. And in most cases, it/s not necessary to turn off Windows Firewall to determine if an issue is indeed being caused by blocked network traffic. Enable Windows Firewall Notifications in Windows Server Unlike client versions of Windows, firewall notifications aren't enabled in Windows Server by default. If you encounter an issue where you suspect that Windows Firewall is blocking network traffic, I recommend that you enable notifications rather than turning off the firewall. Not only is this a safer option than disabling the firewall, but Windows will offer to automatically create a rule to allow the blocked traffic through the firewall. Enable Windows Firewall notifications (Image Credit: Russell Smith) To check the Windows Firewall configuration in Windows Server 2012 R2, log in as a... --- ### Microsoft's Rivals Push Forward with USB-C > Apple and Google launched expensive, high-end PCs built around the new USB-C standard, which delivers power, data and display over a single connector. - Published: 2015-03-12 - Modified: 2015-03-12 - URL: https://petri.com/microsofts-rivals-push-forward-with-usb-c/ - Categories: Mobile - Tags: News - Article Type: News It's been an interesting week, with both Apple and Google launching expensive, high-end PCs built around the new USB Type C (USB-C) standard, which delivers power, data and display over a single connector. The only question now is how long it will take Microsoft and the Windows PC ecosystem to jump on the bandwagon. On Monday, Apple announced the new MacBook, a two-pound ultraportable laptop with a radically simple design that eschews the normal array of ports—power, full-sized USB, HDMI-out/miniDisplayPort out, and so on—for a single USB-C port that can do all of that, albeit it not at once unless you buy an expensive dongle. While the cynical have described the new MacBook—which starts at a lofty $1299—as the world's most expensive netbook, Apple's ever-eager fans will no doubt buy it in droves. On Wednesday, Google announced its new Pixel, a $1000-$1300 Chromebook that serves more as an aspirational device than answers any real market needs. The second-gen Pixel backs mainstream Intel Core i5 and i7 processors—no one seems sure why—and gets much better battery life. But like the MacBook, the Pixel packs USB-C. But here, Google one-upped Apple by putting two USB-C ports on the new Pixel, with one port on either side of the device. And the firm wisely included two full-sized USB 3 ports since, you know, everyone on earth has peripherals that work with that standard. (Oh, Apple. ) It also features an SD card slot. Same reason. So what's the big deal with... --- ### PowerShell Problem Solver: Use PowerShell to Find Non-System Service Accounts > Microsoft PowerShell MVP Jeff Hicks shows us how to use PowerShell to find non-system service accounts. - Published: 2015-03-12 - Modified: 2024-09-04 - URL: https://petri.com/use-powershell-to-find-non-system-service-accounts/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, PowerShell Problem Solver, Scripting - Article Type: How To Learn how to use PowerShell to find non-system service accounts in this primer by Petri Contributing Editor Jeff Hicks. A common task for many IT Pros is to keep tabs on service accounts. That is the say, the account that a service runs under. For the majority of services, this account is determined automatically and is something like LocalSystem or LocalService. But sometimes there is a need to run a service under a local user account or even a domain account. It is important to know where those accounts are being used so you can coordinate password changes. Of course, you don't want to have to navigate the Services management console to find these accounts. PowerShell can make this a pretty easy task. If you are new to PowerShell you might first think to use the Get-Service cmdlet. Sadly, this cmdlet doesn't expose the service account information. As you can see there are no properties to indicate the service account. Fortunately, this information is found using WMI. Let's get the same service and look at all of the properties to discover the correct property name. ​get-wmiobject win32_service -filter "Name = 'mssqlserver'" | select * I've highlighted the relevant property name. Now that I know the property name I can filter and work with it. For example, you may want to know what service accounts are in use on a given computer. ​Get-CimInstance win32_service | Group StartName I switched to the Get-CimInstance cmdlet to query the same WMI information. And even though my examples are searching locally, it is just easy to search one or more remote... --- ### Create a Distributed File System Namespace in Windows Server 2012 R2 > Learn how to create a Distributed File System Namespace in Windows Server 2012 R2 in this tutorial by Russell Smith. - Published: 2015-03-11 - Modified: 2024-09-04 - URL: https://petri.com/create-a-distributed-file-system-namespace-in-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: DFS, Editor's Pick, File Server - Article Type: How To Learn how to create a Distributed File System Namespace in Windows Server 2012 R2 in this tutorial by Russell Smith. In this Ask the Admin, I'm going to demystify the process of setting up a Distributed File System (DFS) namespace in Windows Server 2012 R2. DFS namespaces provide users with a logical way to access files without needing to know their physical location. Sitting in front of your physical file servers, a DFS namespace is a hierarchy of UNC paths that don't reference the actual file servers, but transparently redirect users to the nearest copy of the data via NTFS shares. DFS can also help to mitigate some of the issues commonly associated with migrating or consolidating existing file servers, such as maintaining UNC paths during migration projects. When used with DFS replication, IT can provide users access to local copies of their data in different geographical locations without needing to pull data across expensive wide-area networks. DFS replication is an optional feature, and in this article I want to concentrate only on the namespace aspect of the equation. Distributed File System Concepts and Terminology A DFS namespace can be created even if you only have one file server, and the file server itself can act as a namespace server, i. e. the server where DFS will be installed and the namespace configured. The folders that contain the data to be accessed are known as folder targets, and even when they are located on the namespace server, they must be shared because DFS doesn't differentiate between folder targets located on the namespace server or remote file servers. When... --- ### Back Up and Restore Group Policy Objects Using PowerShell > Learn how to back up and restore Group Policy Objects using PowerShell. - Published: 2015-03-11 - Modified: 2024-09-04 - URL: https://petri.com/back-up-restore-group-policy-objects-using-powershell/ - Categories: Active Directory (AD) - Tags: Backup-GPO, gpo, group policy - Article Type: How To Russell Smith shows us how to easily back up and restore Group Policy Objects with the help of PowerShell. The Group Policy Management Console (GPMC) allows administrators to back up Group Policy Objects (GPOs) independently of full domain controller backups, which can be useful in situations where one or more GPOs need to be restored or in test environments where changes need to be rolled back on a regular basis. In this Ask the Admin, I'll show you how to automate GPO back up using PowerShell, along with instructions on how to perform restores from the command line. Using the Backup-GPO PowerShell cmdlet The Backup-GPO PowerShell cmdlet doesn't capture all Group Policy data; only GPO settings, delegation, and information about security filtering. That means that you can't use Backup-GPO on its own to restore a fully working Group Policy configuration, because WMI filters, scope-of-management (SOM) information, and other details, such as whether GPO links are enabled, inheritance blocked etc. , are not included in the backup data. Related: Backing up Group Policy Objects in Windows Server 2008 Admittedly that sounds bad, but the built-in backup feature in GPMC doesn't do any more, so you won’t be any worse off using PowerShell. It's possible to make up for the shortcomings of GPMC backup and the Backup-GPO cmdlet using PowerShell, but those are extra topics that I'll cover in future Ask the Admin articles. Using Backup-GPO to back up all Group Policy Objects in a domain (Image Credit: Russell Smith) Back Up All Group Policy Objects (GPOs) Let's start by backing up... --- ### Don't FREAK Out: Microsoft Patches Publicized Flaws > As part of its normal monthly Patch Tuesday, Microsoft this week patched the widely publicized FREAK flaw in all supported Windows versions. - Published: 2015-03-11 - Modified: 2015-03-11 - URL: https://petri.com/dont-freak-out-microsoft-patches-publicized-flaws/ - Categories: Security - Tags: News - Article Type: News As part of its normal monthly Patch Tuesday, Microsoft this week patched the widely publicized FREAK flaw in all supported Windows versions. Overall, the software giant issued 14 separate security bulletins—all but two of which are for Windows—and fixed over 40 vulnerabilities. When the FREAK—for "Factoring Attack on RSA-EXPORT Keys"—vulnerability was first disclosed a few weeks back, Windows was thought to be immune. But Microsoft quickly revealed that the flaw was indeed present in Windows and pledged to fix it by the next Patch Tuesday. It has now done so. "This security update resolves a vulnerability in Microsoft Windows that facilitates exploitation of the publicly disclosed FREAK technique, an industry-wide issue that is not specific to Windows operating systems," Microsoft's security bulletin notes. "This vulnerability could allow a man-in-the-middle (MiTM) attacker to force the key length of an RSA key to be downgraded to EXPORT-grade length in a TLS connection. Any Windows system that uses Schannel to connect to a remote TLS server by using an insecure cipher suite is affected. " To be clear, that's every supported Windows version: Windows Vista, 7, 8, RT, 8. 1 and RT 8. 1, and Windows Server 2003, 2008, 2008 R2, 2012 and 2012 R2, all product editions. The other high profile flaw that Microsoft fixed this week is a holdover from the 2010 Stuxnet worm. Apparently, Microsoft's original patch didn't fully patch the flaw, which was somewhat unique in this modern era in that it allows hackers to... --- ### Using "This group is a member of" controls to manage local AD groups > In the second part of this article series, Daniel Petri shows us how to use "This group is a member of" control to manage local Active Directory groups. - Published: 2015-03-10 - Modified: 2024-09-04 - URL: https://petri.com/using-this-group-is-a-member-of-controls-to-manage-local-ad-groups/ - Categories: Active Directory (AD) - Tags: gpo, group policy, managing local groups - Article Type: How To Daniel Petri shows us an alternative method for managing local Active Directory groups, this time with the help of the "This group is a member of" Group Policy control. If you recall from the first installment in my managing Active Directory Local Group article series, using the first setting ("Members of this group") option in GPO's Restricted Groups settings controls the membership of a specified group. Although it's very useful in setting the exact members of any given group, this means that whatever members are configured in that group, this is exactly what you will see when you look at the group's members. This type of strict control may not be always useful, because you must always explicitly specify group members. Managing Local Active Directory Groups Article Series Part 1: Manage Local Active Directory Groups using Group Policy Restricted Groups Part 2: Using “This group is a member of” controls to manage local AD groups Part 3: Manage Local Active Directory Groups using Group Policy Preferences Part 4: Using Startup Scripts to Manage Local Active Directory Groups About "This group is a member of" Group Policy controls The second setting option called "This group is a member of" controls which groups the specified group will become a member of, and it allows more flexibility because of the way it works. With this option, you can control which other groups the specified group will be added to. Note: When you use this method, you must adhere to the known group nesting rules. Important: Because this option adds only groups to other groups, you cannot use it to add individual users to groups. If you want to add one user to one or more groups, then you need... --- ### Automate Domain Controller Deployment in Microsoft Azure > Russell Smith revisits his script that lets us automate domain controller deployment in Microsoft Azure. - Published: 2015-03-10 - Modified: 2024-09-04 - URL: https://petri.com/automate-domain-controller-deployment-in-microsoft-azure/ - Categories: Active Directory (AD) - Tags: Domain Controller, Editor's Pick - Article Type: How To Russell Smith walks us through improvements to his script used for automating domain controller deployment in Microsoft Azure. Back in summer 2014, I walked you through writing a PowerShell script to deploy domain controllers in Microsoft Azure. In today's Ask the Admin, I want to revisit the script to address issues including: Problems connecting to the virtual machine (VM) using PowerShell Remoting due to differences in the name of the WinRM endpoint across Azure regions Removing the need to run the script with local administrator privileges Adding the ability to specify a Server Core installation and downgrade the size of the VM accordingly Replacing hardcoded values with defined variables Improving script readability with better formatting About the Script Although this version of the script is significantly improved over the original, it's still a work in progress, and there is undoubtedly room for further optimization. Please take a look at Provision Domain Controllers in Azure using PowerShell on the Petri IT Knowledgebase to get an understanding of how the script works and the prerequisites. Automating DC deployment in Azure using PowerShell (Image Credit: Russell Smith) The script uses PowerShell Remoting to connect to the Azure VM so that it can install the Active Directory Domain Services (AD DS) bits, initialize and format the NTDS volume, promote the server to a domain controller, and remove GUI features if a Server Core installation is specified. The ultimate goal of this script is to replace PowerShell Remoting with Desired State Configuration (DSC), because DSC doesn't require a connection to be maintained with the remote VM during configuration... . --- ### Microsoft Sues Kyocera for Patent Infringement > Microsoft is suing Kyocera, a Japanese consumer electronics maker whose Android products it says are infringing on seven Microsoft patents - Published: 2015-03-10 - Modified: 2015-03-10 - URL: https://petri.com/microsoft-sues-kyocera-for-patent-infringement/ - Categories: Mobile - Tags: News - Article Type: News Microsoft is suing Kyocera, a Japanese consumer electronics maker whose Android products it says are infringing on seven Microsoft patents. Kyocera is one of only a handful of Android device makers to refuse to license Microsoft's relevant patents, following firms such as Motorola and Barnes & Noble, the latter of which eventually settled. "Among infringing products are cellular telephones, including but not limited to, Kyocera's Duraforce, Hydro, and Brigadier lines of cellular telephones," one count of the lawsuit filing notes, with similar language used to describe the other six alleged infringements. "Defendants' infringement has caused and is continuing to cause damage and irreparable injury to , and will continue to suffer such injury unless and until infringement is enjoined by this Court. " The software giant is asking a federal judge to halt the sale of infringing Kyocera devices in the United States. "We respect Kyocera but we believe they need to license the patented technology they are using," Microsoft general counsel David Howard said. "We're hopeful this case will be resolved amicably. " Trying to decipher the infringing patents from the lawsuit filing will make for some tough reading. One is related to "atomic operations on data structures," for example, while another concerns the equally nebulous "dynamically variable idle time thread scheduling. " The most interesting—i. e. understandable—patent, perhaps, relates to a "method and apparatus for using multiple sensors in a device with a display," which appears to be related to refreshing the device... --- ### 5 Reasons Why I Like Microsoft Azure RemoteApp > Aidan Finn dishes out five reasons why he likes Microsoft Azure RemoteApp thanks to its ease of use, robust client support, and more. - Published: 2015-03-09 - Modified: 2024-09-04 - URL: https://petri.com/5-reasons-why-i-like-microsoft-azure-remoteapp/ - Categories: Microsoft Azure - Tags: Azure RemoteApp, RDS, Remote Desktop Services - Article Type: Overview Aidan Finn dishes out five reasons why he's smitten with Microsoft Azure RemoteApp. In June 2014, Petri IT Knowledgebase Contributing Author Simon Bisson wrote an article about Microsoft Azure RemoteApp. His article was pretty complete, but times have changed and so has RemoteApp since it became generally available. In fact, RemoteApp is very different, and it's become one of the more interesting features in Microsoft Azure. In this article, I'll give five reasons why I'm smitten with Microsoft's Remote Desktop Services (RDS) in the cloud solution. 1. Remote Desktop-as-a-Service (DaaS) The concept of RDS is not new. Most medium-to-large companies have some form of server-based computing (SBC) solution, such as RDS (or based on it. Instead of deploying software onto each and every widely-distributed client device, RDS lets us distribute or locate software in a centralized fashion. Publishing applications to users in a RemoteApp collection. (Image Credit: Aidan Finn) 2. Streamlined software distribution Imagine a company that has 200 computers. How will the IT guy install Office, a PDF reader, and line-of-business client apps on those machines? Is that person going to wander from machine to machine installing software from a shared folder? Hopefully not! They might use some sort of software distribution system, such as System Center Configuration Manager (SCCM), that returns the investment by being able to deploy and maintain software on those 200 computers with a zero-touch approach. Times have changed and those devices have changed, too. And these devices are simply not PCs anymore, as there could be devices with different form factors running Windows, iOS, and Android. SCCM is great... --- ### Create ZIP archives with PowerShell and the Shell.Application COM object > PowerShell MVP Jeff Hicks shows us how to create ZIP archives with PowerShell and the Shell.Application COM object. - Published: 2015-03-09 - Modified: 2024-09-04 - URL: https://petri.com/create-zip-archives-with-powershell-and-the-shell-application-com-object/ - Categories: PowerShell - Tags: Advanced, Desired State Configuration, DSC, Scripting, Shell.Application, Zip - Article Type: How To Jeff Hicks shows us an alternative way to create ZIP archives with PowerShell that doesn't rely on using .NET compression classes. If you search the web, then you'll find no shortage of PowerShell scripts for creating ZIP archives. Most of these solutions use the . NET compression classes, where some scripts simply call command-line versions of third-party archiving commands like WinRar, 7Zip, or even the venerable WinZip. That's great if it works for you. However, all of these should be unnecessary by the time PowerShell 5. 0 rolls around, but we'll need to roll out our own zip tools for now. This is especially true when you're working with Desired State Configuration (DSC) and a pull server. If you want to deploy custom resources to managed nodes, then the resources need to be zipped up and copied to the pull server. Although there's a checksum step that needs to be performed, but that's not what I'll cover in this article today. There are reports that zip files created with the . NET compression classes don't work properly in a pull server situation. The suggestion is to use Windows Explorer to create the zip file. Alternatively, you can use the Shell. Application COM object, which I'll show you how to use in this article. Here's the function. #requires -version 3. 0 Function New-ZipArchive { --- ### Google+ is Dead, Long Live Google+ > Google quietly revealed last week that its unpopular Google+ social networking service is going to be split into multiple separate services. - Published: 2015-03-09 - Modified: 2015-03-09 - URL: https://petri.com/google-is-dead-long-live-google/ - Categories: Cloud Computing - Tags: Google, SharePoint - Article Type: News Google quietly revealed last week that its unpopular Google+ social networking service is going to be split into multiple separate services, including Google Streams, Google Photos and Google Hangouts. The move follows a difficult few years for Google+, which was once seen as a connective layer across many of Google's services for individuals. "The rumors are true," longtime Google vice president Bradley Horowitz announced in a blog post that never mentions the term Google+. "I'm excited to be running Google's Photos and Streams products!   It's important to me that these changes are properly understood to be positive improvements to both our products and how they reach users. " Horowitz is replacing David Bresbis, who oversaw Google+ for just 11 months, following Google+ founder (and former Microsoftie) Vic Gundotra, who left Google last April. The change had been rumored for months, and Google senior vice president of products Sundar Pichai essentially admitted that Google+ might be split into separate services in a recent interview with Forbes. "Increasingly you'll see us focus on communications, photos and the Google+ stream as three important areas, rather than being thought of as one area," he told Forbes. "Google+ has always meant two things for us. There's the stream in the product that you see ... a common identity across our products. The second part was in many ways even more important than the first part. That part has worked really well for us. " Parallel to that statement is... --- ### How Microsoft might escape the Windows Phone "App Trap" > Could the new approach to .NET, dubbed .NET Native compilation, point the way toward how Microsoft might escape the Windows Phone app trap? - Published: 2015-03-06 - Modified: 2024-11-19 - URL: https://petri.com/how-microsoft-might-escape-the-windows-phone-app-trap/ - Categories: Mobile - Tags: .NET, .NET Native Companion, Android, Apple, Editor's Pick, Google, iOS - Article Type: Opinion Could the new approach to .NET, dubbed .NET Native compilation, point the way toward how Microsoft might escape the Windows Phone app trap? Microsoft's Windows Phone operating system is a platform beset on all sides. Though the OS grew slightly in terms of units sold in 2014 to 34. 9 million, that's dwarfed by the 192. 7 million units sold by Apple or the whopping 802. 2 million Android phones shipped. Microsoft lost market share because the size of the market grew so fast, a growth mostly absorbed by Android. Even Apple lost market share, slipping a third of a percentage point in spite of the untapped demand for larger form factor iPhones sated by the release of the iPhone 6. A mobile market dominated by Android and iOS With 80 percent of the market in 2014 going to Android, how on Earth is there room for a third ecosystem when even the second ecosystem loses ground in spite of a new version that generated record sales? Market recognition is certainly an issue. Although most technology readers have heard of Microsoft’s efforts, we are, in a word, "weird. " Lack of recognition is mostly linked to a dearth of apps for the platform. Companies make mobile apps and advertise their presence through icons indicating availability in the Apple App Store or GooglePlay. Users rarely see icons for the Windows Phone version (because they don't exist), and thus, familiarity diminishes. What's worse is that the network effects of dominant mobile platforms make the development road to market share growth that much steeper. I'm involved in a lot of mobile development these days, and it's rare to find helper... --- ### Paul Thurrott's Short Takes: March 6, 2015 > This week's other news includes a super FREAKy revelation that Windows is also vulnerable to a decades-old encryption hack. - Published: 2015-03-06 - Modified: 2015-03-06 - URL: https://petri.com/paul-thurrotts-short-takes-march-6-2015/ - Categories: Security - Tags: News - Article Type: Opinion Because Van Halen with Gary Cherone was most certainly NOT Van Halen, this week's other news includes a super FREAKy revelation that Windows is also vulnerable to a decades-old encryption hack, news that's not from Barcelona, Microsoft is looking to buy a social media news reader, Hillary Clinton was an email admin, and thieves are taking advantage of—but not actually hacking—Apple Pay. Oops! Windows vulnerable to FREAK as well If you've spent the past few days chortling because your mortal enemies in the Mac, iOS and Android folds are vulnerable to the FREAK encryption flaw, I've got bad news: yes, Windows is vulnerable too. "Our investigation has verified that the vulnerability could allow an attacker to force the downgrading of the cipher suites used in an SSL/TLS connection on a Windows client system," a Microsoft advisory somberly notes. "The vulnerability facilitates exploitation of the publicly disclosed FREAK technique, which is an industrywide issue that is not specific to Windows operating systems. " The good news? This will be fixed by the next Patch Tuesday. "Self-Driving Cars Could Drive Up Internet Revenue, Study Says" One is left only to ponder yet another place for Google advertising. Microsoft will reportedly buy a social networks news reader Which, yes, sounds like a mashup of actual tech terms. But according to a report in Techcrunch, Microsoft is set to purchase a firm called Prismatic for $30 million. Prismatic makes an app called—wait for it—Prismatic that recommends news articles to its users based... --- ### Top SQL Server Experts to Follow on Twitter > Follow this list of top SQL Server experts on Twitter for helpful advice and tips from the best in the industry. - Published: 2015-03-05 - Modified: 2024-11-19 - URL: https://petri.com/top-sql-server-experts-to-follow-on-twitter/ - Categories: SQL Server - Tags: expert, SQL Server - Article Type: Overview Blair Greenwood shares her list of top SQL Server experts on Twitter to follow on Twitter to make your SQL Server learning experience easier. Regardless of whether you're an IT pro or software developer, there's no reason why you shouldn't have some degree of SQL Server knowledge under your belt.  As an IT professional, possessing SQL Server knowledge is useful for understanding security-based architecture, and it also helps familiarize you with how those databases are being used.  As a developer, an understanding of SQL Server will help you write better structured and more efficient code for interacting with databases. Related: Beginning SQL Server Database Administration: Key Concepts One of our own Petri IT Knowledgebase contributors, Michael Simmons, recently wrote about his experience delving into SQL Server from an IT pro perspective, which outlines why we should be eager to learn a new skill set.  As Michael mentioned in his article, it's helpful to be connected to a variety of experts and resources for easier learning. As a result, I've gone and compiled a list of top SQL Server experts, which I hope you'll find helpful in learning the platform. Please be mindful that this is not a comprehensive list, as there are many well-known professionals who are making an impact within the SQL Server community.  If you have a go-to expert that's on the top on your list and has made a beneficial impact to your SQL Server learning experience, please let us know in the article comments below. The Official Microsoft SQL Server Twitter Account (@SQLServer) The official Microsoft account for SQL Server is a go-to resource for those looking for up-to-date announcements about new features and improvements directly from the SQL Server team. Allen White (@UpSearchSQL) Allen White is a SQL Server MVP with over 20 years of experience working with relational database systems. White is currently a Practice Leader at UpSearch, which provides... --- ### Manage Local Active Directory Groups using Group Policy Restricted Groups > Learn how to manage local Active Directory groups using Group Policy Restricted Groups in this step-by-step walkthrough by Daniel Petri. - Published: 2015-03-05 - Modified: 2025-01-08 - URL: https://petri.com/manage-local-active-directory-groups-using-group-policy-restricted-groups/ - Categories: Active Directory (AD) - Tags: Editor's Pick, gpo, group policy, managing local groups - Article Type: How To Daniel Petri walks us through the steps on managing local Active Groups with the help of Group Policy Restricted Groups. The task of being an IT or system manager in a medium or large organization usually means that you may need to manage hundreds, thousands or even tens of thousands of client computers, and hundreds or thousands of servers. Some management tasks on many of these computers are related to the need to control local group members on those workstations and servers, which in such numbers, means an almost impossible task if you have to do it manually. Managing Local Active Directory Groups Article Series Part 1: Manage Local Active Directory Groups using Group Policy Restricted Groups Part 2: Using “This group is a member of” controls to manage local AD groups Part 3: Manage Local Active Directory Groups using Group Policy Preferences Part 4: Using Startup Scripts to Manage Local Active Directory Groups Why bother with local groups when you already have Active Directory (AD) to manage the authentication and authorization of users in your organization? Although AD centralizes the management of user and computer identities and allows central management, you still need to use local groups to grant permissions and rights to these identities. For example, you many need to add a specific user account to the Local Administrator group of every computer on the network for the purpose of remote management or the use of specific applications. Another example may be when some cheeky user that has local admin rights on a workstation decides to remove the Domain Admins group from the local Administrators group on their computer, which obviously makes your management task much harder... . --- ### Episode 14: March 5, 2015 10:15pm EDT @ExchangeGoddess Birthday Extravaganza! - Published: 2015-03-05 - Modified: 2015-03-05 - URL: https://petri.com/episode-14-exchangegoddess-birthday-extravaganza/ - Categories: Current Status An all-star lineup! Smartphones, tablets, hololens, fitbit... what’s up with all this technology? ! Are we in tech overload? With all these advances in tech, let’s stroll down memory lane and look at how has technology has shaped our lives. What couldn’t you live without that you didn’t have growing up? We’ll be joined by an all-star line-up of guests that include @gminks, @Josh_Atwell, and a surprise guest! --- ### How to Rename a Windows Device > Learn how to rename a Windows device, such as servers and PCs, by using the GUI or Windows PowerShell. - Published: 2015-03-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-rename-a-windows-device/ - Categories: Windows Server - Tags: Editor's Pick, Windows Device - Article Type: How To Russell Smith shows us two different approaches to renaming Windows devices. In this easy Ask the Admin, I'll show how to rename Windows servers and PCs. Renaming a PC using the GUI is essentially the same across all versions of Windows, with the exception that getting to the System Properties dialog varies a little depending on the version of Windows that you're running. And as with most administrative procedures, there's more than one way to skin a cat. Related: How to rename and hide Windows services You need to log in to Windows with local administrator privileges to perform the operations described below, or elevate a command prompt. Additionally, the instructions in this article don't apply to domain controllers. For more information on renaming domain controllers, see Rename Windows Server 2008 Domain Controllers on the Petri IT Knowledgebase. Using the GUI The quickest way to rename Windows Server 2012 R2 is to use Server Manager. If Server Manager didn't launch automatically when you logged in, you can run it from the Start screen or desktop taskbar. Rename a computer using Server Manager (Image Credit: Russell Smith) In Server Manager, click Local Server in the panel on the left. Under Properties on the right of Server Manager, click the blue link to the right of Computer name. In the System Properties dialog, make sure you're on the Computer Name tab, and click Change. In the Computer Name/Domain Changes dialog, enter a new name for the computer in the Computer name box, and then click OK. Click More... ... --- ### Considering Microsoft's Mobile Message for 2015 > With MWC coming to a close, we now have a clearer picture of how Microsoft will deliver the mobile half of its "mobile first, cloud first" strategy in 2015. - Published: 2015-03-05 - Modified: 2015-03-05 - URL: https://petri.com/considering-microsofts-mobile-message-for-2015/ - Categories: Mobile - Tags: News - Article Type: News With Mobile World Congress coming to a close in Barcelona, we now have a clearer picture of how Microsoft intends to deliver the mobile half of its "mobile first, cloud first" strategy in 2015. And while many had hoped for a more swaggering vision, the firm's commitment to high-volume, low-margin hardware while delivering its most important productivity offerings across rival platforms is a solid if uninspiring tactic. A little over a year ago, Microsoft CEO Satya Nadella made his first major public appearance, introducing Office for iPad to a somewhat stunned customer base. That event in many ways set the stage for the rest of 2014 and neatly defined his first year leading the software giant: no longer pushing Windows at the expense of its other product lines, Microsoft was free to deliver a stunning range of mobile apps on Android and iOS. And on the hardware side, Microsoft pushed forward in areas where Windows was then weakest: high-end PC hardware with Surface Pro 3 and low-end phones with Lumia. There were no Surface announcements at MWC, but perhaps we can forgive Microsoft for stretching out one of its few hardware success stories a while longer. As its newest billion-dollar business, Surface saw its best-ever sales in 2014 thanks to the Surface Pro 3, a design that has resonated with businesses and individuals alike. And while many are looking ahead to a presumed Surface Pro 4—and perhaps a Core M-powered non-Pro Surface of some kind—I could imagine... --- ### Migrate Windows Server 2003 File Servers using Windows Server Migration Tools > Learn how to migrate Windows Server 2003 file servers using Windows Server migration tools in this tutorial by Russell Smith. - Published: 2015-03-04 - Modified: 2024-11-19 - URL: https://petri.com/migrate-windows-server-2003-file-servers-using-windows-server-migration-tools/ - Categories: Windows Server 2003 - Tags: Editor's Pick, File and Print Services, Windows Server 2003 End of Support - Article Type: How To Russell Smith shows us how to migrate Windows Server 2003 file servers using Windows Server migration tools. In this Ask the Admin, I'll show you how to migrate a Windows Server 2003 file server using migration tools in Windows Server 2012 R2. The File Server Migration Toolkit was superseded in Windows Server 2012 by the Windows Server Migration Tools, so if you're planning to migrate Windows Server 2003 file servers to Windows Server 2012 or later, all the tools you need are built into the target server. Related: Windows Server 2003 End of Support Resources The Windows Server Migration Tools can be used to migrate small datasets, up to 100 GB in size. If you need to migrate larger amounts of data, Microsoft recommends using the built-in version of the Robocopy command-line tool. The migration tool uses HTTPS to securely transfer files between servers, so isn't necessarily suitable for very large datasets. This article is primarily intended for those migrating from Windows Server 2003, but the source file server can be running Windows Server 2003 Service Pack 2, or any version through to Windows Server 2012. Prepare the Target and Source File Servers Before you can start a migration, you'll need to install the Windows Server Migration Tools on the target server (contososrv3). In Windows Server 2012 R2, log in as a local administrator, open a PowerShell prompt, and run the command below to install the tools: ​ Once the migration tools are installed, you'll need to create a migration package that can be deployed and registered on the source Windows Server 2003 server... --- ### PowerShell Problem Solver: Identify Folders with Blocked Inheritance Using PowerShell > PowerShell MVP Jeff Hicks shows us how to identify folders with blocked inheritance using PowerShell, along with tips for using the Set-Inheritance cmdlet. - Published: 2015-03-04 - Modified: 2024-09-04 - URL: https://petri.com/identify-folders-with-blocked-inheritance-using-powershell/ - Categories: PowerShell - Tags: ACL, Advanced, Editor's Pick, Get-ACL, PowerShell Problem Solver, Scripting, set-inheritance - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks shows us how to leverage PowerShell to identify, enable, and reset folders with blocked inheritance. I'll be the first to admit that working with file and folder permissions makes my head hurt. It's one of the most complicated tasks in Windows that IT pros frequently want to automate. A common task is to identify folders that have been configured to block inheritance. Using inheritance generally makes like easier when it comes to NTFS permissions. A folder that's blocking inheritance is often the exception to the rule and an indication that someone has done something they probably shouldn't have. Although there are scenarios when you may be expecting blocked inheritance, any folder that's not configured is the exception. This is most often the case with user home folders. I'll demonstrate how to identify these folders using PowerShell. Using PowerShell ACL cmdlets I have some local test folders that I'll use for my demonstration. It is very important that you test everything in this article in a non-production environment, especially if you're going to change folder permissions. The PowerShell ACL cmdlets can be a little tricky to use. Although I'm running commands locally, you should be able to take the same techniques and commands and wrap them in Invoke-Command so that you can execute them in a PowerShell remoting session. I wouldn't recommend trying to get or set the ACL of \file02c$sharedfoo over the wire because there's no reason to pass that type of SMB traffic. Instead use remoting so that everthing is secure and goes over a single port. It should also go without saying, but... --- ### FREAK Flaw Leaves Web Sites and Mobile Devices Exposed > Many web sites and mobile devices are at risk of electronic attack thanks to a newly discovered security vulnerability that dates back to the 1990s. - Published: 2015-03-04 - Modified: 2015-03-04 - URL: https://petri.com/freak-flaw-leaves-web-sites-and-mobile-devices-exposed/ - Categories: Security - Tags: News - Article Type: News Many web sites and mobile devices are at risk of electronic attack thanks to a newly discovered security vulnerability that dates back to the 1990s. Dubbed FREAK, this vulnerability was inadvertently caused by the lifting of strong encryption requirements for products exported from the United States over two decades ago. FREAK—for "Factoring Attack on RSA-EXPORT Keys"—was discovered by cryptographers at INRIA (the French Institute for Research in Computer Science and Automation), Microsoft Research and IMDEA (Spain). It is a set of vulnerabilities in OpenSSL on the web, and on Android and on Apple systems including iOS, which allow man in the middle attacks similar to those made possible by the Superfish malware that Lenovo was distributing on its PCs. Ironically, this vulnerability is present in many US government sites. Basically, hackers can downgrade secure encrypted connections to "export-grade" (512 bit) encryption—itself dating back to the 1980s—which is fairly easy to exploit with a brute force attack. The cryptographers were able to crack this weak encryption in just over seven hours using a block of Amazon-hosted virtual machines at a cost of about $100. And this all works because of bugs in modern OpenSSL clients that cause them to accept vulnerable export-grade encryption keys. Curiously, these bugs are tied to US government policy from the early 1990s: at the time, the United States had strict rules regarding the distribution of encryption products outside the country, and it required companies doing so to deliberately weaken the strength of those... --- ### Using PowerShell and WMI to Find Folders by File Type > Learn how to use PowerShell and WMI to find file folders by type in this article by PowerShell MVP Jeff Hicks. - Published: 2015-03-03 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-and-wmi-to-find-folders-by-file-type/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Get-CIMInstance, GetRelated, Scripting, Windows Management Instrumentation, WMI - Article Type: How To Learn how to use PowerShell and WMI to find file folders by type in this article by PowerShell MVP Jeff Hicks. We recently published an article about how to use PowerShell to find folders that contain a certain file type, such as the MP3 file format. I showed you how to search the file system using the DIR command. Although this command works fine when run locally, it might not perform very well if you want to search an entire drive. If you want to search remote computers, then querying the file system and even using PowerShell remoting with Invoke-Command is less than optimal. If you are targeting a specific root folder, it might not be that bad, but using Get-ChildItem (DIR) doesn't scale very well, in my opinion. As an alternative, you can use Windows Management Instrumentation (WMI). It turns out that WMI can search for files just as easily by querying instances of the CIM_Datafile class. From experience, I know that you should use the most targeted filter you can. This means you need to know property names. ​get-cimclass cim_datafile | Select -ExpandProperty CIMClassProperties | Select Name,CimType | out-gridview The out-gridview for get-cimclass. (Image Credit: Jeff Hicks) Here is an actual instance. Status : OK Name : c:workabdemo. mp3 Caption : c:workabdemo. mp3 Description : c:workabdemo. mp3 InstallDate : 1/15/2015 8:47:16 AM AccessMask : 18809343 Archive : True Compressed : False CompressionMethod : CreationClassName : CIM_LogicalFile CreationDate : 1/15/2015 8:47:16 AM CSCreationClassName : Win32_ComputerSystem CSName : WIN81-ENT-01 Drive : c: EightDotThreeFileName : c:workabdemo. mp3 Encrypted : False EncryptionMethod : Extension : mp3 FileName : demo FileSize : 18 FileType : MP3 Format... --- ### Replicating Hyper-V Virtual Machines to Microsoft Azure > Aidan Finn shows us the process of replicating Hyper-V virtual machines to Microsoft Azure. - Published: 2015-03-03 - Modified: 2024-11-19 - URL: https://petri.com/replicating-hyper-v-virtual-machines-to-microsoft-azure/ - Categories: Microsoft Azure - Tags: ASR, Azure, Azure Site Recovery, Disaster Recovery, DR, HVR, Hyper-V, Hyper-V Replica, virtual machines - Article Type: How To Aidan Finn provides step-by-step instructions for replicating Hyper-V virtual machines to Microsoft Azure. In my previous article about enabling Microsoft Azure Site Recovery (ASR), I showed you how to configure Azure and Hyper-V hosts and clusters to enable replication of running virtual machines to the cloud using ASR services. In this post, I'll show you the step-by-step process of replicating virtual machines to Azure, including additional configuration steps that you should perform. Azure Site Recovery So Far... If you've kept along with my previous article, then you should have already performed the following: Created a virtual network and storage account Created an ASR vault Created a Hyper-V site Downloaded and installed the ASR provider on every Hyper-V host or node in a Hyper-V cluster Associated the host(s) with your ASR vault and Hyper-V site in Azure Created a protection group that associated the Hyper-V site, and therefore the host(s), with a replication policy, and an Azure storage account The next step is to start replicating your on-premises Hyper-V virtual machines into Azure. Configure Virtual Machine Replication Unlike with pure Hyper-V Replica, you will not be enabling virtual machine replication from the source host. Instead, you'll log into the Azure management portal and navigate to Recovery Services, where you'll enter your ASR vault and protection group. You'll see an option to Add Virtual Machines, where clicking this option opens the Enable Virtual Machine Protection dialog. Select one virtual machine and select the operating system type, where the latter obviously affects your billing when the virtual machine is powered up. You should also select the virtual hard disk that contains... --- ### Google Announces Plans for Hybrid Wireless Service > Google plans to enter the US wireless market with a hybrid "Wi-Fi first" service that will seamlessly bridge Wi-Fi and cellular data connections. - Published: 2015-03-03 - Modified: 2015-03-03 - URL: https://petri.com/google-announces-plans-for-hybrid-wireless-service/ - Categories: Mobile - Tags: News - Article Type: News Google plans to enter the US wireless market with a hybrid "Wi-Fi first" service that will seamlessly bridge Wi-Fi and cellular data connections, and provide voice, text and data capabilities across both. As with the firm's fiber optic efforts, this "experiment" will start at a small scale and not immediately threaten the four big wireless carriers, Google says. "I think we're at the stage where we need to think of hardware, software, and connectivity together," Google senior vice president Sundar Pichai said this week during an appearance at Mobile World Congress. "We want to break down the barriers on how connectivity works. " Pichai didn't offer many details about the planned network, which had been rumored for months, noting that Google would reveal more "the coming months. " The firm's developer conference, Google I/O, happens in May and is the most likely venue for this information. Sensitive to the concerns of the major wireless carriers, he said that Google would like to see AT&T, T-Mobile, Sprint and Verizon Wireless adopt whatever hybrid networking functionality they create so that customers everywhere can benefit. "Our goal here is to drive a set of innovations which we think the system should adopt," he added. And while Pichai didn't say so, it's likely that Google will lease capacity from at least two of the big carriers. Indeed, Google has reportedly signed deals with Sprint and T-Mobile. There's a precedent for this coming hybrid network, too: Google launched an effort it also labeled "an... --- ### Leaked Slides Reveal Windows Server vNext Nano Server Role > Leaked slides reveal Windows Server vNext Nano Server Role, and Jeff James does some digging on what other information is revealed. - Published: 2015-03-02 - Modified: 2015-03-02 - URL: https://petri.com/leaked-slides-reveal-windows-server-vnext-nano-server-role/ - Categories: Windows Server 2016 - Tags: Editor's Pick, Host Guardian, Nano Server, News - Article Type: News Some Microsoft PowerPoint slides leaked over the weekend reveal a new "Nano Server" role in Windows Server vNext. Editorial Director Jeff James gives us his take on the news. While much of the news coming from Microsoft in recent months has been focused on Windows 10 and exciting new technologies like Microsoft HoloLens, some news about the next release of Windows Server -- tentatively, unofficially, and likely temporarily dubbed Windows Server vNext -- has started to leak into the wild, namely a set of PowerPoint slides and an early build of Windows Server vNext, which were posted online by WZor at WZor. Net. True to form, Mary Jo Foley at ZDNet has written up an excellent analysis and summary of the news, including some additional information on a new Windows Server vNext protected VM role called 'Host Guardian. ' Nano Server: The Future of Windows Server? The leaked slides bear a Microsoft logo and the name of Program Manager Refaat Issa (@refaat_issa), and begins with the phrase, "Nano Server: The Future of Windows Server Starts Now. " The slides reveal several new details about the next release of Windows Server, as well as a new Server role that Microsoft is calling "Nano Server. " I'll highlight the biggest news from the slides. Nano Server -- Windows Server Takes a Bigger Step into the Cloud? The highlight of the leaked deck is undoubtedly the reveal of "Nano Server", a new server role that is intended to be even more streamlined and efficient than traditional Server Core. The slides refer to Nano Server as a "new headless deployment option for Windows Server" that follows in the footsteps of Server Core by installing a minimal amount of services... --- ### Testing URIs and URLs with PowerShell > Learn all about testing URIs and URLs with PowerShell in this how-to article by PowerShell MVP Jeff Hicks. - Published: 2015-03-02 - Modified: 2024-09-04 - URL: https://petri.com/testing-uris-urls-powershell/ - Categories: PowerShell - Tags: Advanced, Invoke-WebRequest, Scripting, Uniform Resource Identifier, URI, URL - Article Type: How To Learn how to test URIs and URLs with PowerShell in this how-to article by Windows PowerShell Microsoft MVP Jeff Hicks. Recently I posted some revisions to the tools I use to create a troubleshooting toolkit. My preferred methodology is to maintain download information in a CSV file. Related: Build a Troubleshooting Toolkit using PowerShell My CSV file looks like this: ​product,uri HouseCallx64,http://go. trendmicro. com/housecall8/HousecallLauncher64. exe HouseCallx32,http://go. trendmicro. com/housecall8/HousecallLauncher. exe "RootKit Buster x32",http://files. trendmicro. com/products/rootkitbuster/RootkitBusterV5. 0-1180. exe "Rootkit Buster x64",http://files. trendmicro. com/products/rootkitbuster/RootkitBusterV5. 0-1180x64. exe RUBotted,http://files. trendmicro. com/products/rubotted/RUBottedSetup. exe Naturally new versions of my selected tools will become available over time, which usually means that the older links will no longer work. In some cases, vendors are smart enough to use one link and simply change what the link points to. But sadly not everyone does that, so I need some way to test if the Uniform Resource Identifier (URI) is still valid. I don't want to try and download the file. I simply want to test. It turns out we can still use Invoke-WebRequest. The trick is to specify a different method other than the default GET. There is an HTTP method called HEAD, which will answer a web request with basically all of the information except the actual body. The HEAD method is designed for exactly what I need to do. ​invoke-webrequest http://go. trendmicro. com/housecall8/HousecallLauncher64. exe -DisableKeepAlive -UseBasicParsing -Method head Using the Invoke-WebRequest cmdlet in PowerShell to test the Uniform Resource Identifier (URI). (Image Credit: Jeff Hicks) The response is very quick because it is not trying to download the body, i. e. file. All I get back are the headers that contain the relevant information I need. I can retrieve details from either the RawContent or... --- ### With No Flagship Phones Until Windows 10, Microsoft Again Hits at the Middle of the Market > While others attacked this week's MWC with exciting new flagship designs, Microsoft took a different tack. - Published: 2015-03-02 - Modified: 2015-03-02 - URL: https://petri.com/with-no-flagships-until-windows-10-microsoft-again-hits-at-the-middle-of-the-market/ - Categories: Mobile - Tags: News, Universal apps, Windows 10, Windows phone - Article Type: Opinion While electronics giants like Samsung and HTC attacked this week's Mobile World Congress with exciting new flagship designs that push at the boundaries of what's possible with a modern smart phone, Microsoft took a different tack. The firm announced two more mid-market smart phones and has reaffirmed that we won't see another Lumia flagship until Windows 10 ships. This could be a problem. There is precious little evidence that Microsoft's mobile strategy of the past year—push volume by removing the cost of Windows Phone licenses to device maker partners and spanning the market with an ever-growing family of low-end and midmarket handsets—has helped the platform. Yes, Microsoft sold more Lumias in the fourth quarter of 2014 than it (or Nokia) ever had before, but only by a sliver. And Windows Phone sales overall were up just a tiny percent in 2014 at 34. 9 million units, compared to 33. 5 million units the previous year. Worse, Windows Phone market share actually fell in 2014, from 4. 2 percent in 2013 to just 2. 7 percent. So much for volume over quality. And this comes with Windows Phone's biggest fans wringing their hands for months over the absence of a true Lumia flagship. Indeed, the last Lumia flagship—the Lumia 930—was announced on April 2, 2014, exactly 11 months ago. And if Microsoft stays true to its schedule, we won't see another Lumia flagship until well after a year when that device first shipped to customers. A year in the mobile industry is... --- ### What Would Steve Jobs Have Done With Microsoft? > In this opinion post, Aidan Finn wonders what would Steve Jobs have done with Microsoft. - Published: 2015-03-02 - Modified: 2024-09-04 - URL: https://petri.com/what-would-steve-jobs-have-done-with-microsoft/ - Categories: Windows 10 - Tags: Apple, Satya Nadella, Steve Jobs - Article Type: Opinion In this opinion post, Petri Contributing Editor Aidan Finn wonders what Steve Jobs would have done with Microsoft. I have recently been reading about the rise of Apple and Google against the once-dominant Microsoft. The story began with the return of Steve Jobs to Apple, at a time when Apple was losing market share and was running out of cash. Jobs made a lot of changes, including changing the DNA of the corporation that he co-founded, setting it on a path to eventually become the giant that Apple is today. As a purely theoretical exercise, I’ve begun to wonder what Steve Jobs would have done if he had taken over Microsoft instead of Satya Nadella. Usability is Key In 2005, Apple was starting to rule the music world with iPod (Apple rarely calls it “the iPod”, giving the device some personality) and iTunes. Steve Jobs was presenting another highly choreographed event, showing off the latest Apple innovations and partnerships. Apple was working with Motorola; Jobs picked up a Motorola phone to demonstrate some music playing. Then he was “interrupted” by a phone call. The music stopped, the phone rang and Jobs ended the call, expecting the music to start playing again. It didn’t (see the 19 minute mark in the video). Jobs was embarrassed; He believed that a phone that played music should work perfectly. The user experience shouldn’t be dodgy and he didn’t like being associated with it. And so was born the iPhone (actually, the project started in 2004), which has gone on to earn Apple billions of profit every quarter and driven the... --- ### Configure Single Sign-On to Enterprise Apps using Azure Active Directory > Learn how to configure single sign-on (SSO) to enterprise apps using Azure Active Directory in this step-by-step article by Russell Smith. - Published: 2015-02-27 - Modified: 2024-11-19 - URL: https://petri.com/configure-single-sign-on-to-enterprise-apps-using-azure-active-directory/ - Categories: Microsoft Azure - Article Type: How To Want to setup single sign-on (SSO) for enterprise apps using Azure Active Directory? Russell Smith walks us through the process in this helpful tutorial. In today's Ask the Admin, I'll show you how to set up single sign-on access for your Azure Active Directory users to apps such as Facebook and LinkedIn. Azure Active Directory (AAD) can be used to provide employees with single sign-on authentication for corporate accounts in applications like Salesforce and Facebook, and apps developed in-house. Microsoft calls this feature password-based single sign-on for shared accounts, and it supports apps that have HTML log in pages. It works by logging in authenticated AAD users to designated apps by securely passing credentials stored in AAD to the app, meaning users only need remember their AAD password. The principal advantage of using password-based single sign-on is that passwords for corporate accounts don't have to be changed when employees leave your company, forcing remaining users to memorize a new password. Furthermore, security is improved by guarding the corporate account credentials from employees, and AAD multifactor authentication can provide additional protection for systems that might not otherwise support this additional protection. Configure Single Sign-On To complete the instructions in this article, you'll need to have an Active Directory instance configured in Azure, and at least one account in a supported gallery app, such as Facebook, Twitter, or LinkedIn. Log in to the Azure Management Portal and follow the instructions below: Choose an app from the gallery (Image Credit: Russell Smith) In the blue panel on the left of the management portal, scroll down and... --- ### Paul Thurrott's Short Takes: February 27, 2015 > Because you accept no substitutes, this week's other news includes Microsoft at Mobile World Congress next week and so much more. - Published: 2015-02-27 - Modified: 2024-11-19 - URL: https://petri.com/paul-thurrotts-short-takes-february-27-2015/ - Categories: Mobile - Tags: News - Article Type: Opinion Because you accept no substitutes, this week's other news includes Microsoft at Mobile World Congress next week, Microsoft finally decides to replace IE with something that works, the salacious tale of a Microsoft employee's expense account, why on earth is the PlayStation 4 so popular, and Apple is about to invent the Surface, er, iPad Pro. Microsoft at Mobile World Congress Next week, Mobile World Congress gets underway in Barcelona, giving tech journalists and bloggers an expensive excuse to travel to one of the world's most beautiful cities, eat Jamón Iberico and drink Sangria and pretend that the mobile gadgets they're ogling (and the expenses their accruing) matter in the slightest. For me, Mobile World Congress is all about what Microsoft is going to announce, and given the slow flushing sound I hear around Windows Phone, I'm particularly interested in—and worried about—what they'll announce on that topic. Rumor has it that the software giant will launch up to 5 new Lumia smart phones next week, and though my sources tell me none will be true flagships, some of them are at least coming to the United States (including a mid-level phablet that will likely be called Lumia 1330). I'll be covering Microsoft's MWC announcements on Thurrott. com as they happen next week, but if you're a night owl, you can watch its MWC press conference live at 2 am ET on Monday, March 2. "Microsoft employee donation campaign hits another record" And here I've been claiming that Microsoft... --- ### 3 Ways to Connect to the Office 365 Reporting Service from Excel > Russell Smith shows three different ways to connect to the Office 365 Reporting Service from Excel. - Published: 2015-02-26 - Modified: 2024-09-04 - URL: https://petri.com/3-ways-to-connect-to-the-office-365-reporting-service-from-excel/ - Categories: Microsoft 365 - Tags: Excel, Management, Office 365, Reporting - Article Type: How To Russell Smith serves us three helpful ways to connect to the Office 365 Reporting Service from Excel for easier report viewing. In Generate Office 365 Reports using PowerShell on the Petri IT Knowledgebase, I gave you a quick overview of the reporting capabilities in the Office 365 web portal, along with steps on how to run the same pre-defined reports using Windows PowerShell. In today's Ask the Admin, I'll show you one more option for viewing Office 365 reports using Microsoft Excel, which is a good alternative for organizations that don't want to write PowerShell code, but need to have a solution that's a little more flexible than what's available in the portal. Using the Office 365 Reporting Service There are three ways to tap into the Office 365 reporting service: using the Office 365 portal, Windows PowerShell or another language, and Microsoft Excel. Keep in mind that each method has its own shortcomings. An Office 365 report as a PivotTable in Excel (Image Credit: Russell Smith) Office 365 Portal Using the pre-defined reports in the web portal is the quickest and easiest way to get started with Office 365 reporting, but there are some significant limitations: Not all available information can be returned in the report results. Some pre-defined reports are only available using PowerShell. You can't save the results. There are only two options for viewing reports: either as a graph or table. Windows PowerShell The most flexible way to generate reports is using PowerShell, and it can be used to create custom reports by connecting to the Office 365 reporting service, allowing administrators to... --- ### Top Features Windows 10 Needs to Have > What improvements can Microsoft make to Windows 10 on the PC and smaller form factors? Here are some features Windows 10 needs to have. - Published: 2015-02-26 - Modified: 2015-02-26 - URL: https://petri.com/top-features-windows-10-needs-to-have/ - Categories: Windows 10 - Tags: Internet Explorer, Windows phone - Article Type: Opinion What improvements can Microsoft still make to Windows 10? Russell Smith shares his wish list for essential features that need to be included in Windows 10. We already have a good idea of what the Windows 10 final release might look like, but there are still a number of features that are yet to be added to the technical preview and others that are in early development. Windows 10 for phone is also quite rough at this stage. So that leaves room to maneuver, and I'd like to outline some of my personal hopes for Windows 10 from a user's point of view in this article. Password-Free Log On Using a Smartphone I spend a lot of time everyday entering my password, as I lock Windows when leaving my desk. Fifty percent of the time I type my password incorrectly, or find the language not set to English, or caps lock is on. And that's not to mention the other passwords needed to log in to various systems and websites during the day. Related: Installing the Windows 10 Technical Preview As I wrote back in November in Could Windows 10 and Windows Server vNext End the Reliance on Passwords? , Microsoft plans to put an end to passwords by supporting the FIDO 2. 0 standard, which will allow users to log in using something they have, such as their smartphone and biometric authentication in the form of a fingerprint or facial recognition. This differs from most two-factor authentication systems that rely on something you have and something you know, i. e. a password or PIN. While it remains to be seen exactly how this new authentication system... --- ### Lenovo Web Site Hacked as Retribution for Superfish Scandal > The web site for the world's biggest PC maker was taken offline by a malicious hacker group as retribution for the bundling of the Superfish malware on its PCs. - Published: 2015-02-26 - Modified: 2015-02-26 - URL: https://petri.com/lenovo-web-site-hacked-as-retribution-for-superfish-scandal/ - Categories: Security - Tags: News - Article Type: News The embarrassment isn't over for Lenovo: the web site for the world's biggest PC maker was taken offline by a malicious hacker group as retribution for the bundling of the Superfish malware on its PCs. The site was down for much of Wednesday but appears to be operational again as of this writing. "We regret any inconvenience that our users may have if they are not able to access parts of our site at this time," a Lenovo statement reads. "We are actively reviewing our network security and will take appropriate steps to bolster our site and to protect the integrity of our users' information. " Lenovo's site was taken down by Lizard Squad, the hacker group that most infamously took down Microsoft's Xbox Live and Sony's PlayStation Network over the 2014 holidays. Last week, the group attacked the official web site for the country of Vietnam as well. During this week's attack, Lenovo's web site displayed a photo slideshow while playing the Disney song "Breaking Free. " If you clicked on an image, you were taken to Lizard Squad's page on Twitter. And the source code for the compromised home page cryptically declared, "The new and improved rebranded Lenovo website featuring Ryan King and Rory Andrew Godfrey. " Those two individuals have been identified as possible members of the secretive group. Lizard Squad didn't offer much in the way of Twitter-based commentary for this attack, which is a little unusual. "So we've done Google, Vietnam... --- ### Change and Delete Office 365 User Accounts with PowerShell > Learn how to delete Office 365 users, change user properties, and restore users from the recycle bin using Windows PowerShell. - Published: 2015-02-25 - Modified: 2024-12-03 - URL: https://petri.com/change-and-delete-office-365-user-accounts-with-powershell/ - Categories: Microsoft 365 - Tags: Azure Active Directory, Editor's Pick, Set-MsolUserPassword, Set-MsolUserPrincipalName, UserPrincipalName - Article Type: How To Russell Smith shows us how to delete Office 365 users and change account properties with Windows PowerShell. In this Ask the Admin, I'll show you how to delete Office 365 users, change user properties, and restore users from the recycle bin using Windows PowerShell. Today I'm going to continue where we left off in Create, List, and Assign Licenses to Office 365 Users with Windows PowerShell on the Petri IT Knowledgebase, with some more basic operations for managing Office 365 user accounts. As always with PowerShell, before you can use it to manage Office 365, you'll need to prepare your management PC if you haven't already done so. Make sure that Microsoft Online Service Sign-in Assistant for IT Professionals RTW and either Azure Active Directory Module for Windows PowerShell (32-bit version) or Azure Active Directory Module for Windows PowerShell (64-bit version) are installed on your management PC. For more detailed information on setting up PowerShell to manage Office 365, see How to Install the Windows PowerShell Cmdlets for Windows Azure AD and Office 365 on the Petri IT Knowledgebase. Set or Change Password and UserPrincipalName There are two specific cmdlets for setting user passwords and the UserPrincipalName parameter: Set-MsolUserPassword and Set-MsolUserPrincipalName respectively. Additionally, Set-MsolUserLicense should be used to change users' licenses and is covered in my previous article. First, make sure you are connected to your Office 365 subscription by running the cmdlet below in a PowerShell window, and entering your tenant account credentials when prompted: ​ To set a randomly generated password for an existing user account, type the cmdlet that follows and press ENTER,... --- ### Enabling Hyper-V to Azure DR Replication > This post provides step-by-step instructions for enabling Hyper-V to Azure DR replication by configuring a Hyper-V host or cluster to replicate to ASR. - Published: 2015-02-25 - Modified: 2024-11-19 - URL: https://petri.com/enabling-hyper-v-azure-dr-replication/ - Categories: Microsoft Azure - Tags: ASR, Azure, Azure Site Recovery, Disaster Recovery, DR, HVR, Hyper-V, Hyper-V Replica, Hyper-V Server 2012 R2, replication, Windows Server 2012 R2, WS2012 R2 - Article Type: How To Aidan Finn walks us through enabling Hyper-V to Azure DR replication by configuring a Hyper-V host or cluster to replicate to ASR. In this article, I'll show you step-by-step instructions for enabling Azure Site Recovery (ASR) replication of Hyper-V virtual machines to Azure so you can have DR-as-a-Service (DRaaS) or a disaster recovery (DR) site in the cloud. Azure Site Recovery Pre-Requisites Before proceeding, check the Azure Site Recovery prerequisites that include the following: Planning: Determine which services will have a DR presence in Azure and which of those will be replicated using ASR. Administrative rights: Install an agent on each Hyper-V host, where you've enabled local administrative rights on the management OS of each host. GRS storage account: Deploy a geo-redundant storage account in the Azure region that you are using as your DR site in the cloud. Virtual network: Create a virtual network that will be used to network your virtual machines during a real failover. You might need to create a gateway if some services require site-to-site private networking via VPN or ExpressRoute. It's also a good idea to create a private virtual network that's used to connect virtual machines during a test failover in an isolated sandbox. See my article on Microsoft Azure Disaster Recovery Replication Methods for more on this topic. Site Recovery Vault The first item to create in Azure is a Site Recovery Vault. In the old Azure management portal, click New > Data Services > Recovery Services > Site Recovery Vault, enter the name of the vault and select the region of your choice. Creating a Site Recovery Vault in Azure. (Image Credit:... --- ### PowerShell Problem Solver: How to Pull Data from Log Files using PowerShell > Learn how to pull data from log files using PowerShell and the Get-Content and Import-CSV cmdlets. - Published: 2015-02-25 - Modified: 2024-09-04 - URL: https://petri.com/how-to-pull-data-from-log-files-using-powershell/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Get-Content, Import-CSV, PowerShell Problem Solver, Scripting - Article Type: How To Microsoft PowerShell MVP Jeff Hicks shows us how to pull data from log files using PowerShell and the Get-Content and Import-CSV cmdlets. In the world of Windows, a great deal of information is stored away in log files, which can easily be used with PowerShell. If the log files are structured or predictable, it doesn't take much to create a PowerShell tool for extracting useful information. Many times you can get what you need with a simple one-line command. If this is a process that's worth repeating or something you have to entrust to someone else, then you'll want create a re-usable tool. In this article, I'll show you how to easily pull data from log files using PowerShell, with some additional help from the Get-Content and Import-CSV cmdlets. Before we even begin, please allow me to stress that even though we will be extracting data from text files, don't think in terms of textual output. Always be thinking about objects in the pipeline. If you're thinking in this way, then it's much easier to get any specific text values that you need. Let's use the Windows Update log as an example, since it is something everyone should have. First, what does the data look like? get-content C:windowsWindowsUpdate. log -TotalCount 5 Using the get-content cmdlet in Windows PowerShell to get a glance of the data. (Image Credit: Jeff Hicks)   I grabbed the first few lines of the file. Although there is no header, the file appears to have some structure in what is a probably a tab delimited format. Clearly there are some date and time values, as well as message strings... . --- ### SIM Card Maker Acknowledges NSA, GCHQ Intrusion > Gemalto this week admitted that it had indeed been hacked. But the world's biggest maker of SIM cards says its encryption keys were never stolen. - Published: 2015-02-25 - Modified: 2015-02-25 - URL: https://petri.com/sim-card-maker-acknowledges-nsa-gchq-intrusion/ - Categories: Security - Tags: News - Article Type: News Gemalto this week admitted that it had indeed been hacked. But the world's biggest maker of SIM cards says its encryption keys were never stolen or compromised. Responding to a Snowden leak claiming that the US National Security Agency (NSA) and UK Government Communications Headquarters (GHCQ) had infiltrated its systems, Gemalto this week admitted that it had indeed been hacked. But the world's biggest maker of SIM cards says its encryption keys were never stolen or compromised. Last week, former NSA contractor Edward Snowden leaked news of the hack, stating that the NSA and GHCQ in 2010 had gained access to the "core mobile networks" at Gemalto and had gained access to the encryption keys the company uses in the SIM cards it manufacturers. Those encryption keys could allow a hacker to gain access to any voice or data communications performed on the phones and other digital device that employ Gemalto's SIM cards. If true, this could be the biggest known privacy violation in history. Gemalto makes over 2 billion SIM cards a year and sells them to over 450 mobile carriers around the world, including in China, the United States and Western Europe. After pledging to fully investigate the incident, Gemalto this week confirmed at least part of the leak. "The operation very probably happened," Gemalto CEO Olivier Piou said Tuesday. "It's difficult to prove our conclusions legally, so we're not going to take legal action. We are concerned that they could be involved in such indiscriminate operations against private companies with no grounds for suspicion. " Gemalto says it found evidence of a series of sophisticated attacks against it... --- ### Beginning SQL Server Database Administration: Key Concepts > Learn key concepts and tips for beginning SQL Server database administration, including an overview on SQL Server Management Studio. - Published: 2015-02-24 - Modified: 2024-11-19 - URL: https://petri.com/beginning-sql-server-database-administration-key-concepts/ - Categories: SQL Server - Tags: Editor's Pick, SQL Server Management Studio - Article Type: Overview Michael Simmons continues his SQL Server journey by reviewing key terms and concepts, along with a primer on SQL Server Management Studio. After inheriting an existing SQL Server infrastructure, I've been working on improving my knowledge of database administration and Microsoft SQL Server.  This is all being chronicled on the Petri IT Knowledgebase, beginning with Getting Started with Microsoft SQL Server, and I'll continue in this article by covering my initial experiences through the study of the fundamentals of SQL Server. This article provides a summary of introductory training and initial work with databases, tables, queries and SQL Server Management Studio. The Petri IT Knowledgebase - Getting Started with Microsoft SQL Server Article Series Part 1: Getting Started with Microsoft SQL Server Part 2: Beginning SQL Server Administration: Key Concepts Part 3: Coming Soon! Database Types Databases are primarily one of three different types: flat-file databases, hierarchical databases and relational databases. Flat-file databases have a simplistic, two-dimensional design. Excel spreadsheets and comma-separated value files are examples of flat-file databases. Hierarchical databases have a parent-child relationship built into its structure. An example of a hierarchical database is a file and folder structure on a hard drive.  Relational databases are what we now think of when we say database. It's like taking several of those flat-file databases ('tables' in this context) and linking them together through references that they both share in common. Microsoft SQL Server is relational database software, so let's explore some relational database concepts. Relational Database Concepts A relational database includes one or more tables, which are similar to the flat-file databases. Each table is made up of one or more domains, which are columns that describe the data being recorded. Each entry in... --- ### Microsoft Azure Disaster Recovery Replication Methods > This article discusses how to choose the best Microsoft Azure disaster recovery replication methods. - Published: 2015-02-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-disaster-recovery-replication-methods/ - Categories: Microsoft Azure - Tags: ASR, Azure Site Recovery, Disaster Recovery, DR, HVR, Hyper-V Replica, replication - Article Type: How To Aidan Finn discusses how to choose the best Microsoft Azure disaster recovery replication methods for your work environment. With Microsoft making Microsoft Azure Site Recovery (ASR), also known as DR-as-a-Service or DR-in-the-cloud, a viable option for small-medium enterprises (SMEs) and branch offices as well as the large data center, we now have to start asking questions such as “what is the best way to replicate my machines and services to Azure? ”. This article will ask this question and offer some answers. Reality: There are multiple Azure DR replication solutions It would be nice to say “just sit back and let ASR take care of everything” but the cold hard reality of IT is that every application or service has different requirements support restrictions. There’s a very good chance that a small business might be able to replicate all of their Hyper-V virtual machines to Azure using ASR, but in reality, medium-to-large and complex organizations will require 2 or more replication methodologies. You might view this as a complexity – but I like to see it as offering more interesting design possibilities. Microsoft Azure Site Recovery Replication If you are replicating Hyper-V virtual machines to Azure then the replication method being used is Hyper-V Replica (HVR). Hyper-V Replica is a built-in storage agnostic method of asynchronously replicating individual virtual machines, with an SSL option. Whew! That’s a lot of stuff in one sentence but it packs a lot of information into one small package. HVR, and therefore ASR, does not care what your on-premises storage system is; it can be internal disk, DAS, SAN, SMB 3. 0 or Storage Spaces... . --- ### Google Makes Carrier Deals to Compete with Apple Pay > Several months after Apple jumpstarted the market for mobile payments, Google has finally responded. - Published: 2015-02-24 - Modified: 2015-02-24 - URL: https://petri.com/google-makes-carrier-deals-to-compete-with-apple-pay/ - Categories: Mobile - Tags: Apple Pay, Google, mobile payments, News - Article Type: News Several months after Apple jumpstarted the market for mobile payments, Google has finally responded. The Android maker has established partnerships with the three biggest wireless carriers in the United States that will see its Google Wallet technology enhanced and bundled with all Android devices they sell. Google actually launched Wallet and mobile "tap and pay" capabilities in the United States back in 2011, but it lacked support from wireless carriers and is only preinstalled on a small number of devices. But with Apple entering the market in late 2014 with its popular Apple Pay service on new iPhones, mobile payments have exploded. So it makes sense that the world's biggest smart phone platform—Android—would soon become a bigger player. Tap and pay requires very specific technology—NFC, or Near Field Communications, which is the wireless bit, plus a Secure Element in the phone's firmware or SIM card—but the big stumbling block for Google had been the wireless carriers, which mostly refused to sell phones with tap and pay functionality or simply disabled the technology so it wouldn't work. Why? They were pushing their own mobile payments technologies and didn't want Google to push it aside from business conducted on their networks and phones. But thanks in part to the success of Apple Pay and wireless carrier fears of a monoculture, that standoff is ending. Under the terms of the deal, Google's Wallet app, including the tap and pay functionality, will be pre-installed on all Android... --- ### Microsoft Azure Site Recovery Hyper-V Requirements > Learn about Microsoft Azure Site Recovery Hyper-V Requirements for hosts and VMs for disaster recovery replication to Azure using Azure Site Recovery. - Published: 2015-02-23 - Modified: 2015-02-23 - URL: https://petri.com/microsoft-azure-site-recovery-hyper-v-requirements/ - Categories: Hyper-V - Tags: ASR, Azure, Azure Site Recovery, Disaster Recovery, DR, HVR, Hyper-V, Hyper-V Replica, Microsoft Azure - Article Type: How To Aidan Finn explains what Microsoft Azure Site Recovery Hyper-V Requirements are for DR replication to Azure using Azure Site Recovery (ASR). Back in December, Microsoft changed Azure Site Recovery (ASR) so that it no longer required System Center to be installed on-premises. This change meant that small-to-medium enterprises (SMEs) could now afford to use Azure as a virtual disaster recovery (DR) site in the cloud. I have always thought that the SME would embrace this feature of Azure more than large enterprises, and I was delighted to see Microsoft make the change. Now, it's time for me to start writing about using Azure Site Recovery services. In this post, I will talk about the requirements of on-premises Hyper-V host and virtual machine when you want to replicate to Azure. Hyper-V Host Requirements The requirements of the host are pretty simple; the host must be running Windows Server 2012 R2 Hyper-V or the free Hyper-V Server 2012 R2. Those of you that are running down-level versions of Hyper-V are seeing once again that keeping your hypervisor up-to-date offers business benefits that cannot be ignored. Azure Site Recovery uses Hyper-V Replica (HVR) to replicate the virtual machines to the cloud. Those of you that are familiar with HVR know that the SSL option for secured replication across the Internet uses x. 509 certificates. You do not need to worry about creating a PKI or self-signing certificates. The provider that you will install on each Hyper-V host (requiring local administrator rights) will create and import a certificate for each of your hosts, authenticating it against the site recovery vault that is used... --- ### Storage Spaces Performance Tuning > Aidan Finn shares some tips on how to perform advanced performance tuning for Storage Spaces that's used for storing Hyper-V virtual machines. - Published: 2015-02-23 - Modified: 2024-11-19 - URL: https://petri.com/storage-spaces-performance-tuning/ - Categories: Windows Server 2012 - Tags: Hyper-V, MPIO, NTFS, performance tuning, storage spaces - Article Type: How To Increase your Storage Spaces performance with these helpful tips and best practices from Aidan Finn. I've written a number of articles during my time at the Petri IT Knowledgebase on Storage Spaces, but I have not talked about some of the advanced settings that have a direct impact on the performance of storage for Hyper-V virtual machines. In this article, I'll share some tips on how to tweak Storage Spaces to get the best performance you can for storing your Hyper-V virtual machines. The Curse of the Default Windows Server is a general server product that can do lots of specific tasks. As a result of this, Microsoft has to configure default settings that they perceive are best for most, but not all, scenarios. Many consultants and administrators make the mistake of using the GUI's wizards and clicking Next, Next, Next until they have what they think is a finished solution. What they are doing is accepting the default under-the-covers values, and this affects performance. But those folks who've dug a little deeper and take time to ask questions about default settings have found that there are some changes that should be made. Multi path IO (MPIO) Policy If you are using a Cluster-in-a-Box (CiB) or a just-a-bunch-of-disks (JBOD) tray for Storage Spaces, then you have a SAS connection between your server and your disks. Multipath IO (MPIO) is used to unify and provide failover if you have multiple connections to the storage system. What you might not know is that Windows Server's implementation of MPIO has a number of policies that... --- ### Superfish Drama Winds Down, But the Damage is Done > Last week was a moment of reckoning for the world's biggest PC maker as Lenovo was thrust awkwardly into the spotlight for preinstalling malware on its PCs. - Published: 2015-02-23 - Modified: 2024-11-19 - URL: https://petri.com/superfish-drama-winds-down-but-the-damage-is-done/ - Categories: Security - Tags: adware, Lenovo, News, Superfish - Article Type: News Last week was a moment of reckoning for the world's biggest PC maker as Lenovo was thrust awkwardly into the spotlight for preinstalling malware on its consumer PCs. Lenovo belatedly did the right thing, but not before it tried to defend the indefensible and argue that the Superfish malware it was bundling on PCs was somehow aimed at helping its customers. What stands out most about the Superfish drama isn't so much the technology—no customers were actually hacked, despite all the excitement—but rather Lenovo's ham-handed response. "Superfish was previously included on some consumer notebook products shipped between September 2014 and February 2015 to assist customers with discovering products similar to what they are viewing," a Lenovo statement notes. "However, user feedback was not positive, and we responded quickly and decisively. " Actually, Lenovo did not act quickly or decisively. The firm had been fielding complaints about Superfish since September 2014, and only responded when the malware bundling was reported in mainstream news outlets more recently thanks to a blog post by security researcher Marc Rogers. And its responses were like the seven stages of grief played out in real time, with Lenovo in turn denying that anything was wrong, insisting that it had added this code to PCs to benefit consumers, blaming the makers of the software, asking for Superfish to be modified to be less exploitive, and then finally agreeing to remove Superfish from existing PCs and never install it again on new PCs. "Superfish has completely... --- ### Microsoft Bolsters Azure with Machine Learning, Data Services, and Cloud Analytics Updates > Microsoft has announced that it is bolstering Microsoft Azure with machine learning and improved cloud analytics capabilities. - Published: 2015-02-23 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-bolsters-azure-with-machine-learning-data-services-and-cloud-analytics-updates/ - Categories: Microsoft Azure - Tags: Azure HD Insight, machine learning, Microsoft, News - Article Type: News Microsoft has Big Data on its mind these days, announcing that it is bolstering Microsoft Azure with machine learning and improved cloud analytics capabilities. Microsoft is continuing to add new features and functionality to their Microsoft Azure cloud service, and announced earlier this week that Azure was being updated with enhanced machine learning, data services, and cloud analytics features. Microsoft seems to be making a concerted effort to make Big Data services available to a wider group of users, and the bulk of these enhancements seem to be aimed at making that vision a reality. Azure Machine Learning Arguably the biggest news was the general availability of Azure Machine Learning, a new managed cloud service that  provides advanced data analytics capabilities. Every modern business and organization generates terabytes of data from sales figures, emails, data points, and hundreds of other sources. Azure Machine Learning is designed to help analytics professionals more effectively tap into all that data. In a joint blog post announcing the availability of Azure Machine Learning, Microsoft's Joseph Sirosh (corporate vice president, Machine Learning) and T. K. “Ranga” Rengarajan (corporate vice president, Data Platform) underscored Microsoft's objectives for Azure Machine Learning and stressed that the company hopes the new service will help businesses more effectively utilize the ever-increasing amount of business information. "It is a first-of-its-kind, managed cloud service for advanced analytics that makes it dramatically simpler for businesses to predict future trends with data," Rengarajan and Sirosh write. "... developers and data scientists can build and deploy apps to improve customer experiences, predict and prevent system failures, enhance operational efficiencies, uncover new technical insights, or a universe of other benefits. " Sirosh is... --- ### Paul Thurrott's Short Takes: February 20, 2015 > Poorly imitated but never duplicated, this week's other news includes Lenovo's about-face on Superfish, an NSA and GCHQ hack of SIM cards, and more. - Published: 2015-02-20 - Modified: 2015-02-20 - URL: https://petri.com/paul-thurrotts-short-takes-february-20-2015/ - Categories: Security - Tags: News - Article Type: Opinion Poorly imitated but never duplicated, this week's other news includes Lenovo's about-face on Superfish, an NSA and GCHQ hack of SIM cards, AT&T jump the shark moment, a confirmation that, yes, North Korea did hack Sony, Microsoft reneges on promise of Finland data center, and Microsoft partners with Mozilla on web games. "Microsoft Has Suddenly Gotten Serious With Mobile" Actually, that happened over a year ago. Please wake up. Lenovo wakes up, disables Superfish adware You may recall this week's news about Lenovo bundling malware on its consumer PCs. Well, you won't be surprised to discover that the world's biggest PC company has quickly seen the light and has now stopped bundling this software—called Superfish—on new PCs. And it is actively working to disable Superfish on the estimated 100+ million PCs out there that are already infected. Lenovo continues to insist, however, that Superfish isn't dangerous. "We have thoroughly investigated this technology and do not find any evidence to substantiate security concerns," a Lenovo statement reads. "But user feedback was not positive" so it is halting its use of Superfish. I find this stance to be dangerous, frankly: Superfish is in fact known to be malicious and could lead to what one security researcher calls "realtime arbitrary eavesdropping. " Whatever. Let's just celebrate the fact that Lenovo did wake up. And that it never ruined its ThinkPad laptops with this crap. "Google Launching YouTube for Kids" Once again, Google steals a play from the drug-dealer's handbook: Get 'em... --- ### How to Find and Remove Lenovo Superfish Adware > Learn how to find and remove Lenovo Superfish in this step-by-step tutorial by Jeff James. - Published: 2015-02-20 - Modified: 2024-11-19 - URL: https://petri.com/how-to-find-and-remove-lenovo-superfish/ - Categories: Security - Tags: Editor's Pick, News, Superfish - Article Type: How To Jeff James explains the who, what, why, and how of Lenovo Superfish adware, including how to detect and remove the software from your Lenovo PC. Earlier this week, various news outlets reported that some Lenovo laptops had been shipped with factory-installed adware -- called Superfish -- that was surreptiously inserting custom, third-party advertisements into Google search results by those users. Our own Paul Thurrott reported that Lenovo claimed that Superfish was simply a "visual search enhancement," but security experts debunked Lenovo's claim by explaining that Superfish does far worse that simply inject advertising into search results. Superfish and the Man in the Middle Security expert Marc Rogers (@marcwrogers) -- a Principal Security Researcher at CloudFlare -- wrote a blog post detailing what Superfish does, and mentioned that Superfish also compromises all SSL connections on the impacted PC. In essence, Superfish uses a "man in the middle" approach, where Superfish is able to monitor and alter data going to and from websites without the knowledge of either the user using the system or the sites being visited. What is Lenovo Superfish? Technically referred to as Superfish - Powered by Visual Search is adware that is developed by Superfish, a tech company with offices in Israel and Palo Alto, CA. In essence, Superfish allows Lenovo to insert their own custom advertising whenever a user of that PC does a Google search or visits other websites, which generates additional ad revenue for Lenovo. What has Lenovo said about SuperFish? According to a recent public statement by Lenovo, the company said that they "... thought the product would enhance the shopping experience, as intended by Superfish. It did not meet our expectations or those of our... --- ### An IT Pro Perspective on Lenovo Superfish > In an IT pro perspective on Lenovo Superfish, Microsoft MVP Jeff Hicks explains what we can all learn from the Superfish fiasco. - Published: 2015-02-19 - Modified: 2024-09-04 - URL: https://petri.com/it-pro-perspective-on-lenovo-superfish-adware/ - Categories: Security - Tags: Superfish - Article Type: Opinion Crapware and bloatware has been making PC user experiences horrible for decades. Jeff Hicks explains why the Superfish fiasco carries some lessons for PC makers and IT pros as well. By now I'm sure you've heard about the fiasco and PR nightmare for Lenovo surrounding Superfish adware and potential security vulnerabilities. If you missed it, take a look at Paul Thurrott's Superfish report on the issue. I share most of his opinions and even though I am a big Lenovo fan, this is a huge disappointment. You would have thought that after the disaster surrounding the Sony rootkit, that vendors would be smarter. But that's an entirely different conversation. Instead, I wanted to focus on a few take-aways from the Lenovo failure, but from an IT Pro perspective. I've been an IT Pro for just about 25 years and a computer consumer for almost as long so I'd like to think I have some credibility but everything that follows is simply my opinion so you can take it or leave it. Crapware, Bloatware, and the Rise of Superfish We'll probably never know all the details about the internal business decisions that let to Superfish. Lenovo CTO Peter Hortensius has gone on record as saying that they probably didn't go far enough with their due diligence. This brings me to the first and perhaps most important take-away. It is my understanding that profit margins on hardware, especially consumer-oriented commodity devices, is slim and that OEMs naturally need to consider all options to maximize value and return to shareholders. I have no doubt that this is why so many new laptops, tablets and computers ship with so-called bloatware... . --- ### Azure Site Recovery Now Supports SAN-to-SAN Replication > Azure Site Recovery will now support the orchestration of site-to-site storage area network (SAN) replication for customers with Hyper-V and System Center. - Published: 2015-02-19 - Modified: 2024-09-04 - URL: https://petri.com/azure-site-recovery-now-supports-san-to-san-replication/ - Categories: Microsoft Azure - Tags: ASR, Azure Site Recovery, Disaster Recovery, DR, News, replication, SAN, storage - Article Type: News Microsoft has announced that Azure Site Recovery will now support the orchestration of site-to-site storage area network (SAN) replication for customers with Hyper-V and System Center. Microsoft just announced that Azure Site Recovery will now support the orchestration of site-to-site storage area network (SAN) replication for customers with Hyper-V and System Center. In this article, I'll explain what that will mean for Azure Site Recovery customers. You can orchestrate synchronous SAN-SAN replication between two sites using Azure. (Image Credit: Microsoft) Background on Azure Site Recovery When it was first launched, Azure Site Recovery (ASR) was a service for orchestrating replication of individual virtual machines between two sites that were running Hyper-V and managed by System Center Virtual Machine Manager (SCVMM). The service has grown since to include: Orchestration of replication between two vSphere sites Replication and orchestration from a site with Hyper-V and System Center to Azure Using Azure as an orchestrated DR site in the cloud for sites that have Windows Server 2012 R2 Hyper-V or Hyper-V Server 2012 R2 Hyper-V replication was based on Hyper-V Replica (HVR), which provides per-virtual machine asynchronous replication. While this provides a free replication method that is storage agnostic, it is not perfect for all customers; some want synchronous replication for zero data loss (recovery point objective or RPO) and consistent failover of multi-tier applications. This is something that has only been possible with SAN-to-SAN replication or specialized software-based storage solutions. Azure Site Recovery and SAN Replication Microsoft launched a preview of ASR SAN replication back at TechEd Europe 2014 in October 2014 and the new service was made generally available on February... --- ### Episode 13: February 19, 2015 10:15pm EDT Guest: Michael Van Horenbeek - Published: 2015-02-19 - Modified: 2015-02-19 - URL: https://petri.com/episode-13-michael-van-horenbeek/ - Categories: Current Status Most organizations these days are taking a close look at cloud-based Email what it means to their business.   Our guest Michael VanHorenbeeck; Exchange MVP and Microsoft Certified Master, is also known as VanHybrid.   His expertise with Exchange deployments that are partially on-premises and partially in the cloud have earned him this great nickname.   We will discuss what this type of deployment looks like, and both the advantages/disadvantages that come with a hybrid email deployment.   He can be found on Twitter at (@mvanhorenbeeck) or his website is http://www. vanhybrid. com --- ### Lenovo Accused of Installing Adware on New PCs > Lenovo, the world's biggest maker of PCs, has been installing adware on its PCs in order to deliver custom ads. Lenovo says the software is not malicious. - Published: 2015-02-19 - Modified: 2015-02-19 - URL: https://petri.com/lenovo-accused-installing-adware-new-pcs/ - Categories: Security - Tags: News, Superfish - Article Type: News Lenovo, the world's biggest maker of PCs, has been installing adware on its PCs in order to deliver custom ads. Lenovo says the software is not malicious, but the software could easily be used to spy on users and hack PCs. So the PC maker has stopped shipping it on new PCs and has asked its maker to update it to address any issues. Here's what's happening. Lenovo has been installing software called Superfish—made by a company of the same name—on the PCs it sells to consumers (but not businesses). The customer can actually opt out of Superfish during the initial PC set up, though of course many do not. According to Lenovo, Superfish is a "visual search" enhancement, but what it really does is inject third-party advertisements into Google search results and other web sites. Related: How to Find and Remove Lenovo Superfish Adware And it does so even over the encrypted connections that Google uses. This means that Superfish acts like malware—is in fact malware—and uses a so-called man-in-the-middle attack by providing a self-signed security certificate to fool remote web sites into decrypting their data. In other words, this software could easily be used to snoop on the users who buy Lenovo PCs. And the fear is that this is already happening. Lenovo says it is doing nothing of the kind and that Superfish is used only for customized advertising. In other words, the company is claiming that Superfish is simply... --- ### Microsoft Azure Site Recovery Bandwidth Requirements > This post will show you how to estimate your bandwidth requirements for replicating Hyper-V virtual machines to Azure. - Published: 2015-02-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-site-recovery-bandwidth-requirements/ - Categories: Microsoft Azure - Tags: Azure Site Recovery, Disaster Recovery, DR, Editor's Pick, replication - Article Type: How To Aidan Finn provides some tips for estimating your bandwidth requirements for replicating Hyper-V virtual machines to Azure. Anytime I do a presentation on Azure Site Recovery or Azure Online Backup I am always asked the same question: "How much bandwidth is required for replication? " The answer is always the same, "My crystal ball is broken. " I have no idea how much bandwidth is required for any customer. There is no easy answer for small businesses, medium-sized businesses, or large enterprises. Every company is different; some generate lots of new data every day and some create very little. So if you are looking at Azure Site Recovery or any other disaster recovery replication solution, then you're going to have to do some work to calculate your bandwidth requirements. Monitoring replication of a Hyper-V virtual machine to Azure. (Image Credit: Aidan Finn) Asynchronous Replication Benefit: Latency isn't an Issue A benefit of asynchronous replication is that distance, or latency, is not an issue. Azure Site Recovery for Hyper-V is based on Hyper-V Replica (HVR). A VM will write data to an on-premises virtual hard disk. That modification is logged and sent to Azure based on your preconfigured protection group replication interval. This means that you can replicate over very long distances, which is something that synchronous replication cannot do, as latency degrades production service performance when using synchronous replication to the point of breaking systems due to timeouts. Dedicated Link Any disaster recovery (DR) expert that I've listened to has always recommended using dedicated links for DR replication. That certainly makes sense for traditional private... --- ### President Obama Calls for Cybersecurity Information Sharing > President Obama this past week signed an executive order calling on the private sector and government to formally share cybersecurity threat information. - Published: 2015-02-18 - Modified: 2015-02-18 - URL: https://petri.com/president-obama-calls-cybersecurity-information-sharing/ - Categories: Security - Tags: News - Article Type: News President Obama this past week signed an executive order calling on the private sector and government to formally share cybersecurity threat information. Noting that frictionless information sharing was key to this effort, president Obama said that US companies and the government should work hand-in-hand to help thwart cyber-attacks. "Government cannot do this alone," the president said at an appearance at a recent Cybersecurity Summit in Palo Alto, California, where he signed the order. "The fact is that the private sector can't do this alone either. It's government that often has the latest information on these new threats. " At the summit, President Obama also met with CEOs and other top executives from tech companies such as Apple and Intel, and other firms such as AIG, Bank of America, Kaiser Permanente, Pacific Gas & Electric, QVC, US Bank and Walgreens. Microsoft was curiously omitted from the list of companies attending, though the software giant separately said that Scott Charney, Microsoft's corporate vice president of Trustworthy Computing, represented the firm at the event. (The CEOs of Facebook, Google and Yahoo were all invited to the summit, but like Microsoft they sent their top security officials instead. ) Obama's order is in many ways a formalization and expansion of a previous Cyber Threat Alliance in which security solutions providers like Fortinet, Symantec and others have agreed to share information about security threats. But the order expands this sharing throughout the private sector to involve banks, retailers, and other companies. And it course... --- ### How to Create a PowerShell Module > PowerShell MVP Jeff Hicks shows us how to easily create a PowerShell module in this step-by-step article. - Published: 2015-02-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-a-powershell-module/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Jeff Hicks wraps up his system uptime clock article series by showing you how to create a a PowerShell module. In the last part of this series I demonstrated how to add custom formatting to your PowerShell scripts and functions. This requires an additional format. ps1xml file, which you have to add to your PowerShell session using Update-FormatData. The challenge is that when you share your script with someone, you need to include the ps1xml file and make sure that it gets loaded. Instead of doing this manually, it makes more sense to package everything as a PowerShell module. A module is a collection of one or more PowerShell files with at least one file with a psm1 file extension. More on that in a moment. PowerShell looks for modules in directories that are part of the %PSModulePath% environmental variable. The two primary locations are under %UserProfile%DocumentsWindowsPowerShellModules and C:WindowsSystem32WindowsPowerShellv1. 0Modules. The folder under your user profile does not exist by default, and you may have to create it. If you look at %PSModulePath%, you may also see other locations depending on other installed products. You can also modify the path yourself. Starting with PowerShell 3. 0, you can run any command from a module without having to first import it. PowerShell will search the module directories. If your module is in another directory, you will have to manually import it by first specifying the path. Import-module d:stuffdevmytest I'm going to take what I had from my last article and create a module. First I need to create the necessary folder. mkdir $env:userprofiledocumentsWindowsPowerShellModulesMyUptime One very important note: the name of the... --- ### Azure Online Backup February 2015 Improvements > Microsoft added complex retention policies, more retention, and out-of-band support for the first backup to their improvements to Azure Online Backup. - Published: 2015-02-17 - Modified: 2024-09-04 - URL: https://petri.com/azure-online-backup-february-2015-improvements/ - Categories: Microsoft Azure - Tags: News - Article Type: News Microsoft has made new improvements to Azure Online Backup, which includes complex retention policies and more retention to its service. I like Microsoft's Azure Online Backup. I used to host and sell online backup solutions, and the biggest factor in selling those services was the price per GB per month. That's where Azure Online Backup excels because the price is excellent for the native service, and it's better again if you use the raw storage with a supporting third-party backup solution. But Azure Online Backup is playing catchup. It is light on features and product support. However, Microsoft is listening and changes are being made. The Importance of Microsoft Azure Feedback The "new Microsoft" takes feedback very seriously. Microsoft measures and acts on feedback, where they deem appropriate. Thanks to Azure being a cloud and new development practices, change can happen in Azure very quickly. This makes Microsoft's public cloud very customer friendly. But what is the right way to give that feedback? Honestly, the wrong way is to corner a Microsoft employee from a local subsidiary. Your comments probably won't get to the right people. You need that feedback to be visible by the decision makers and to be measured -- how otherwise will those decision makers know if your scenario is important enough to move up the stack rank of requests? Microsoft makes it easy. Open your favorite search engine, and search for "Azure X feedback" where X is a feature name. For example, there is the Azure general feedback site, and forums for virtual machines, and backup. There you can search and vote for existing... --- ### Report Uncovers Decades-Long US Hacking Effort > Security researchers at Kaspersky Lab in Russia report that they have discovered how American intelligence agencies have subverted computer systems. - Published: 2015-02-17 - Modified: 2015-02-17 - URL: https://petri.com/report-uncovers-decades-long-us-hacking-effort/ - Categories: Security - Tags: News - Article Type: News Security researchers at Kaspersky Lab in Russia report that they have discovered how American intelligence agencies have subverted computer hardware, software and networks in an effort to spy on other countries. The surveillance and sabotage technologies have been discovered in systems in China, Iran, Pakistan, Russia, and elsewhere. Kaspersky has a policy of not naming countries it believes are behind hacking attacks. But it says that unnamed intelligence agencies—clearly the National Security Agency (NSA) and the United States Cyber Command—from an unnamed country—the United States—have figured out how to hack virtually anything—computers, hard drives, software and networks—in ways that have thus far eluded detection and then cannot be removed. And they've been doing so for decades, at least as far back as 2001. This hacking "surpasses anything known in terms of complexity and sophistication of techniques, and that has been active for almost two decades," the firm claimed. And Kaspersky has been able to identify key similarities from famous electronic attacks such as 2010's Stuxnet—a successful effort to set back Iran's nuclear program—with other attacks, some older and some more recent. Kaspersky specifically called out one example of the hacking: it found very similar malware in the controller code for hard drives manufactured by Micron, Samsung, Seagate and Western Digital. This malware can survive even the drive makers' own recovery tools, and of course can survive OS reinstalls should an antimalware solution flag suspicious behavior. The hard drive makers say they are unaware of this activity and... --- ### Microsoft First Cloud Provider to Adopt Cloud Privacy Standard > Microsoft's Brad Smith announced that Microsoft is the first cloud provider to adopt the ISO/IEC 27018 cloud privacy standard. - Published: 2015-02-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-first-cloud-provider-to-adopt-isoiec-27018-cloud-privacy-standard/ - Categories: Microsoft Azure - Tags: News, Privacy - Article Type: News Microsoft's Brad Smith announced this morning that Microsoft is the first cloud provider to adopt the ISO/IEC 27018 cloud privacy standard. Microsoft's General Counsel and Executive Vice President of Legal and Corporate Affairs, Brad Smith, took to the Internet today to announce that Microsoft is the first of the big cloud service providers to adopt the first international standard for cloud privacy. In a time when there are many questions about storing data in the cloud, attacks on public services, and privacy against government snooping, Microsoft has been on the front line fighting for their customers' rights. Microsoft isn't doing this out of the goodness of their hearts; the future of Microsoft is cloud services, from your grandmother using Outlook. com all the way to enterprise usage of Azure. When there are threats to cloud computing, there are threats to the economic viability of Microsoft. Microsoft's General Counsel and Executive Vice President of Legal and Corporate Affairs, Brad Smith (Image Credit: Microsoft) The ISO/IEC 27018 cloud privacy standard is described on www. iso27001security​. com as a standard that: "... provides guidance aimed at ensuring that cloud service providers (such as Amazon and Google) offer suitable information security controls to protect the privacy of their customers’ clients by securing PII (Personally Identifiable Information) entrusted to them. " In other words, any hosting company that complies with ISO/IEC 27018 will be implementing processes, policies, and restrictions to security the privacy of their customers. Microsoft says that this means: User's control of data: Microsoft will not be able to do anything with data that you haven’t previously agreed to. Now you just... --- ### A PowerShell Script to Find System Uptime: Formatting Results > Learn how to write a PowerShell script to find system uptime, along with tips for formatting your results. - Published: 2015-02-16 - Modified: 2024-09-04 - URL: https://petri.com/powershell-script-find-system-uptime-formatting-results/ - Categories: PowerShell - Tags: Advanced, Scripting, service level agreements, SLA, System Uptime - Article Type: How To Jeff Hicks continues his PowerShell journey by looking at a script that finds system time and provides tips for formatting results. I think we're almost finished with our PowerShell scripting journey. We started with a one-line PowerShell command and we ended up with an advanced PowerShell function to check system uptime that's complete with help and examples. If you're joining us at the end of the journey, then take a few minutes to retrace our steps. All set? This looks like a nice place to end our journey. The original command included a formatting cmdlet to properly display the uptime information. As I noted, you should not include formatting in your scripts and functions, as this limits you. Instead, your command should write objects to the pipeline and  then use the format cmdlets if you need anything formatted. This is the default output: The default output without any formatting. (Image Credit: Jeff Hicks)   It works, but it would probably be nice to have this formatted as a table. Using the format-table cmdlet to format our results into a nice table in PowerShell. (Image Credit: Jeff Hicks)   This is much better. But I don't want to have to always remember to pipe to Format-Table or have  to explain this process to anyone running my command. Instead, I want to have the display always formatted as a table, unless I specify otherwise. Here's how we can achieve this goal. PowerShell has an extensible type system, which means that you can customize the design of different object types and how they are formatted. I'm going to show you how to... --- ### US Senate Offers Bill That Could Aid Microsoft in Overseas Warrant Case > Microsoft has come out in support of a US bill that would limit the extraterritorial reach of search warrants. - Published: 2015-02-16 - Modified: 2024-11-19 - URL: https://petri.com/us-senate-offers-bill-aid-microsoft-overseas-warrant-case/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft has come out in support of a US bill that would limit the extraterritorial reach of search warrants, an issue at the center of an ongoing legal battle with the US Department of Justice. In that case, the DOJ is seeking to force Microsoft to hand over personal email data for a non-US citizen that is stored in a non-US data center. Microsoft has refused, noting that the United States must respect the sovereignty of other countries. "The bipartisan introduction of the Law Enforcement Access to Data Stored Abroad (LEADS) Act of 2015 is an important step to reform our outdated privacy laws," Microsoft general counsel and executive vice president Brad Smith writes in the Microsoft on the Issues blog. "We commend the sponsors–Senators Hatch, Coons and Heller–for introducing this critical legislation in the United States Senate. " The LEADS Act would "safeguard data stored abroad from improper government access" and is considered a more modern update to the Electronic Privacy Act (ECPA) of 30 years ago. As with the ECPA, LEADS aims to balance the legitimate needs of law enforcement with personal privacy, but updated for the modern age and explicitly addressing issues of national sovereignty. (Congress intended for ECPA to apply only domestically. ) "It has been well established that courts in the United States lack the power to issue warrants authorizing extraterritorial searches and seizures, and neither ECPA nor subsequent amendments extended the warrant power of courts in the United States beyond the territorial reach... --- ### Reset an Azure Active Directory User Password and Set to Never Expire > Russell Smith shows us how to reset an Azure Active Directory user password and set to never expire in this how-to article. - Published: 2015-02-13 - Modified: 2024-12-03 - URL: https://petri.com/reset-azure-active-directory-user-password-set-never-expire/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Resetting Azure Active Directory password is simple with a little help from PowerShell in this quick, how-to article by Russell Smith. In this easy Ask the Admin, I'll show you how to reset passwords for Azure Active Directory (AAD) user accounts and set passwords to never expire. I recently discovered that a task I'd set up using Azure Automation was failing to run, which was something of an expensive mistake on my part, as lab VMs I thought were being shutdown automatically at the end of the day, but had been left running. I only discovered the issue on receiving my monthly billing statement from Microsoft, and naturally as the VMs in the subscription are not mission critical, there's no monitoring in place that would have alerted me. For more information on setting up automation, see How to Use Microsoft Azure Automation on the Petri IT Knowledgebase, which includes information about how to create a runbook to shutdown VMs. On further investigation in the task's log, I saw that the automation engine wasn't able to authenticate using the AAD account that I'd specified via the credential asset because the password had expired. The Azure management portal doesn't allow you to reset AAD user passwords or set the password never expires flag, although if your AAD is associated with an Office 365 subscription, it is possible to perform these tasks using the Office 365 admin portal. Another way around this is to log in to the management portal itself using the account, and you’ll be prompted to change the user's password. But the easiest way to solve this problem... --- ### Building a Ping Sweep Tool with PowerShell > In part one of this article, PowerShell MVP Jeff Hicks shows us how we can build a PowerShell tool to ping a range of IP addresses. - Published: 2015-02-13 - Modified: 2024-09-04 - URL: https://petri.com/building-ping-sweep-tool-powershell/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, PowerShell Ping Sweep Tool, Scripting - Article Type: How To In this article, Jeff Hicks shows us how we can create a PowerShell tool that can ping a range of IP addresses. I think one of the best ways to learn PowerShell is by using it. I've often found the best way to use it is to find a project to work on. With that in mind, I'm going to start us on a little PowerShell project. Although the end result will most likely be useful, the journey is more important than the destination. I'm hoping that as you read the articles in this short series, you'll learn new PowerShell commands, techniques and concepts. Honestly, I'm not sure where we'll end up. I know where I want to start and what I want to show you, but I expect that over the course of working on this project, I'll come up with another idea or concept to add on. This is the way I work: start with a core concept and get it working, then slowly add additional features. Even if I know in advance everything that I want to include, I rarely create a tool with everything from the very beginning. The more complex the project, then the more likely the need to debug and troubleshoot. I find it easier to take an iterative approach getting each step to work before adding the next. But enough philosophy, let's get scripting. PowerShell Ping Sweep Tool Article Series Building a Ping Sweep Tool with PowerShell PowerShell Ping Sweep Tool: Adding Parameter Validation Adding Trace Information to a PowerShell Ping Tool Identifying a Computer Name with a PowerShell Ping Sweep Tool Building... --- ### Paul Thurrott's Short Takes: February 13, 2015 > In this week's other news, Microsoft can't stop punching itself in the face. - Published: 2015-02-13 - Modified: 2015-02-13 - URL: https://petri.com/short-takes-february-13-2015/ - Categories: Cloud Computing - Tags: geek humor, humor - Article Type: Opinion In this week's other news, Microsoft can't stop punching itself in the face. Short Takes; Often imitated, never duplicated. In this week's other news, Microsoft can't stop punching itself in the face, Microsoft's next billion-dollar business, Microsoft will buy its way to mobile productivity supremacy, Microsoft gets Scroogled again, Xbox One breaks record by never beating the PS4, Xbox One loses an exclusive, and Xiaomi is (sort of) coming to the US. Microsoft can't stop punching itself in the face One thing Microsoft just can't ever seem to get right is the communication thing. Case in point: The dwindling and increasingly nervous Windows Phone fan base has been waiting since last month's media event to get their hands on Windows 10 Technical Preview 2 for Phones, so they can see the future of their favorite platforms. And yet Microsoft, despite being besieged by questions around the timing of this release, opted not to communicate the fact that WTP2 for Phones would not, in fact, run on any mid- or high-end phones at all (e. g. the phones that these fans actually own). Instead, they simply announced the release in a flurry of excitement that was quickly dashed by the dawning realization of these fans that, nope, that release you've been waiting for will not in fact work on your phones. This is no way to treat anyone, let alone your biggest fans, Microsoft. And that should have been patently obvious weeks ago, when you should have told them about the limited list of phones you'd be supporting for this release. That's just plain dumb. But don't take... --- ### Getting Started with Microsoft SQL Server > Here are five simple steps to help you with getting started with Microsoft SQL Server as an IT administrator. - Published: 2015-02-12 - Modified: 2024-11-19 - URL: https://petri.com/getting-started-with-sql-server/ - Categories: SQL Server - Tags: Editor's Pick, Microsoft SQL Server - Article Type: How To Michael Simmons serves up five simple steps for getting started with SQL Server as an IT administrator in his new article series. I’m not alone with my most recent predicament. Through inheritance or bad luck, I'm an IT administrator that has found myself with new duties that involve providing some level of administration for Microsoft SQL Server. That makes me the SQL guy responsible for the SQL servers and the databases, although I'm not formally trained as a DBA. The Petri IT Knowledgebase - Getting Started with Microsoft SQL Server Article Series Part 1: Getting Started with Microsoft SQL Server Part 2: Beginning SQL Server Administration: Key Concepts Microsoft SQL Server for the IT Administrator I do have had some experience with SQL Server, mostly from working with SharePoint. But installing an application that creates databases is a far cry from designing databases, writing complex SQL joins, and architecting the SQL Server infrastructure.  Telling my bosses the truth wouldn't do me any good. They wouldn't hear it. I could try to tell them that SQL Server is too complex to just add to my duties, that I already have too much to do. Alright, so complaining won't get me anywhere. I've realized that my only choice is to accept my fate. I will become a DBA or at least learn enough to be able to effectively execute my job.  If I'm going to increase my skills with SQL Server, I might as well document my adventures and bring you all along with me, so I'll be starting an article series here on the Petri IT Knowledgebase that will provide information for non-DBA IT staff who need to... --- ### Episode 12: February 12, 2015 10:15 pm EDT Guest: Steve Kenniston - Published: 2015-02-12 - Modified: 2015-02-12 - URL: https://petri.com/episode-12-steve-kenniston/ - Categories: Current Status In this era, most of us have managed to make multiple copies of our business critical data, but how do we best use them?   How do we adjust our methods for the massive data growth we have all been experiencing?   Do you really need 50 copies of those cat pictures? Steve Kenniston (@skenniston), VP Technology Evangelism at Catalogic Software joins us to talk about data management of the future, and how this is key to future data center flexibility. --- ### Find Disabled, Inactive Active Directory Users Accounts with PowerShell Revisited > PowerShell MVP Jeff Hicks serves up an alternate method for finding disabled and inactive Active Directory users accounts with PowerShell. - Published: 2015-02-12 - Modified: 2024-09-04 - URL: https://petri.com/find-disabled-and-inactive-active-directory-users-accounts-with-powershell-revisited/ - Categories: Active Directory (AD) - Tags: Active Directory, Intermediate - Article Type: How To As an alternative to his first article, Jeff Hicks shows how you can whip up a PowerShell script to find disabled and inactive Active Directory user accounts with PowerShell. In an earlier article, I discussed how to use the Microsoft Active Directory module to discover disabled, expired and inactive user accounts. This requires a newer domain controller and a client with RSAT installed. But perhaps some of you can't meet those requirements, or you need to develop a PowerShell solution that doesn't require RSAT. There is another way to find disabled, expired, and inactive accounts, but it takes a bit more PowerShell scripting on your part. If you're up to it, let's dig in. There is an entire library of . NET classes that are specifically made for working with Active Directory. You don't need to be concerned about what version of Windows or Active Directory is running on your domain controllers when you're working with these classes. As long as you can connect to the domain controllers over the traditional LDAP port of 389, I don't think you will have any problems. We will be using an instance of System. DirectoryServices. DirectorySearcher for the task at hand. The solution that is demonstrated in this article works best if you're running your PowerShell session with credentials that can search Active Directory. First, I will create an instance of this object. $search = New-Object System. DirectoryServices. DirectorySearcher This is now just another PowerShell object. Creating an instance of a PowerShell object. (Image Credit: Jeff Hicks) By default, the searcher will search your entire domain. Searching the domain with Windows PowerShell. (Image Credit: Jeff Hicks) For my... --- ### Microsoft Purchases Sunrise, Will Reportedly Buy N-Trig as Well > Microsoft on Wednesday confirmed reports that it would purchase calendar maker Sunrise. And it will reportedly buy Surface Pro 3 pen maker N-Trig too. - Published: 2015-02-12 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-purchases-sunrise-will-reportedly-buy-n-trig-well/ - Categories: Microsoft 365 - Tags: News - Article Type: News Microsoft on Wednesday confirmed reports that it would purchase online calendar maker Sunrise. And in a separate development, Microsoft will reportedly buy Surface Pro 3 pen maker N-Trig too. Microsoft on Wednesday confirmed reports that it would purchase online calendar maker Sunrise, though the software giant was oddly vague about its plans for the company. And in a separate development, Microsoft will reportedly buy Surface Pro 3 Pen maker N-Trig as well. Rumors of Microsoft's purchase of Sunrise surfaced a week ago when Techcrunch reported that the deal would be worth at least $100 million. On Wednesday, Microsoft confirmed the deal, but didn't corroborate its value, nor specify exactly how it would integrate Sunrise's "innovative calendar app for mobile devices" into its product portfolio. This contrasts sharply with its December 2014 purchase of Accompli, where Microsoft made that firm's mobile app its new version of Outlook for mobile devices. A brief, video-based Q & A with the former CEOs of both Sunrise and Accompli sheds some light on Microsoft's plans, however. Since we know that the former Accompli team is now tasked with moving mobile app and web versions of Outlook forward on multiple platforms, the appearance of these two men together suggests, logically enough, that the Sunrise team will be integrated in Microsoft's new Outlook team. This makes sense: As a maker of calendar apps for mobile and the web, Sunrise should be part of Outlook, not something separate. And while Microsoft doesn't explicitly explain how Sunrise's products will be added to, or integrated with, its current lineup of mobile and web apps, the text accompanying the video explains that it will move more slowly... --- ### What are Microsoft Azure Resource Groups? > Learn about the Azure Resource Manager and how Microsoft Azure resource groups can be used to manage your Azure assets. - Published: 2015-02-11 - Modified: 2024-11-19 - URL: https://petri.com/what-are-microsoft-azure-resource-groups/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: Overview Russell Smith walks us through the Microsoft Azure Resource Manager and explains how Azure resource groups can be used to manage your Azure assets. In this Ask the Admin, I'll introduce you to Microsoft Azure resource groups, and how you can put them to good use. Since the introduction of the Azure preview portal in 2014, resource groups are automatically created for virtual machines, databases, and other assets, no matter how they are added to the cloud fabric. Resource groups provide a way to monitor, control access, provision and manage billing for collections of assets that are required to run an application, or used by a client or company department. Azure Resource Manager (ARM) is the technology that works behind the scenes so that you can administer assets using these logical containers. Resource groups can only be managed using the preview portal or PowerShell, and as you might expect, there are no plans to add support to the old management portal. If you haven't yet discovered the preview portal, click the user icon in the far top-right corner of the old portal, and select Switch to new portal from the menu. You can log in directly to the new portal. Resource Groups in the Preview Portal Let's have a look at viewing and managing resource groups in the preview portal: Click BROWSE in the column on the left. In the Browse panel, click Resource groups under Filter by. Access resource groups in the Azure preview portal (Image Credit: Russell Smith) In the list of resource groups, assuming you have some applicable assets in your Azure subscription, you... --- ### PowerShell Problem Solver: Get Local Active Directory Group Members with PowerShell > PowerShell MVP Jeff Hicks shows us how to get local Active Directory group members with Windows PowerShell. - Published: 2015-02-11 - Modified: 2024-09-04 - URL: https://petri.com/get-local-active-directory-group-members-with-powershell/ - Categories: PowerShell - Tags: Active Directory, Editor's Pick, Intermediate, PowerShell Problem Solver - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks shows off several techniques for grabbing Active Directory group members with PowerShell. In some recent articles we have looked at retrieving members of an Active Directory group with PowerShell, with an eye toward exporting to a CSV file. Of course, our servers and desktops also have groups, and it might be useful to know what users and groups are in those local groups. The local administrator's group comes immediately to mind, but you can query any local group using the techniques I'm going to show you. I'm going to assume that you are running in a domain environment with credentials that have administrator rights on any servers you plan to query. Most of what I am going to show you doesn't support alternate credentials. Although, you can probably take many of my examples, wrap them in a file or script block, and execute with Invoke-Command where you can specify an alternate credential as last resort. I am going to run all of my commands from a Windows 8. 1 desktop running PowerShell under a domain administrator credential. I am going to get the members of the Administrators group on CHI-Core01. Administrators Properties in Windows 8. 1. (Image Credit: Jeff Hicks)   As you can see the group has a mix of local and domain users and groups. I'll define some variables to use with my examples. ​$group = "Administrators" $computername ="chi-core01" If you were developing a script or function, these could become parameters eventually. Using ADSI The first option takes us back to the days of VBScript and ADSI... . --- ### February's Patch Tuesday is All About IE > Microsoft released a sweeping set of 56 security fixes described across nine bulletins as part of its regularly scheduled "Patch Tuesday" updates yesterday. - Published: 2015-02-11 - Modified: 2015-02-11 - URL: https://petri.com/februarys-patch-tuesday-ie/ - Categories: Security - Tags: News - Article Type: News Microsoft released a sweeping set of 56 security fixes described across nine bulletins as part of its regularly scheduled "Patch Tuesday" updates yesterday. But fully 41 of those fixes are for Internet Explorer. Microsoft released a sweeping set of 56 security fixes described across nine bulletins as part of its regularly scheduled "Patch Tuesday" updates yesterday. But fully 41 of those fixes are all contained in a single bulletin for all supported versions of Internet Explorer. And some of these fixes apply to IE 6, which shipped with Windows Server 2003 twelve years ago. (Internet Explorer 6 had previously shipped with Windows XP in 2001, of course, but since Windows XP is no longer supported, that OS did not receive these updates. ) "This security update resolves one publicly disclosed and forty privately reported vulnerabilities in Internet Explorer," the Security Update for Internet Explorer (3034682) bulletin notes. "The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights. " That "publicly disclosed" bit is a jab at Google, which revealed the noted IE flaw—and a few others—in January despite Microsoft's pleas to give it more time to fix the problem. But these flaws impact all supported versions of IE, dating back to IE 6 on Windows Server 2003, but also IE 7, 8, 9, 10 and 11. The other critical bulletin from the February set of updates is MS15-010,... --- ### Use PowerShell's Get-Content cmdlet to Copy Files to Multiple Computers > Use PowerShell's Get-Content cmdlet to copy files to multiple computers. - Published: 2015-02-10 - Modified: 2024-09-04 - URL: https://petri.com/copy-files-to-multiple-computers-by-reading-simple-text-input-using-powershell/ - Categories: PowerShell - Tags: Copy-Item, Editor's Pick, Get-Content - Article Type: How To Russell Smith shares how you can use PowerShell's get-content cmdlet to copy files to multiple computers in this how-to article. Automating monotonous tasks using PowerShell can save Windows Server administrators time. In this Ask the Admin, I'll show you how to extract data stored in text files so that you can solve more complex problems using scripts. If you have ever tried to parse text files using VBScript, the scripting language most commonly used with Windows Scripting Host (WSH) prior to the release of PowerShell, you will know that it is not always as straightforward as it could be. But PowerShell's get-content cmdlet makes life much easier and there's no reason why you can't quickly and efficiently add code to your PowerShell scripts to extract the information needed. While get-content can't parse comma-delimited files, I'll describe how to use import-csv to simply perform that task in a future post. Copy files to multiple computers In my previous Ask the Admin, Copy, Move and Rename Files Using Windows PowerShell, I showed you how to perform basic file management operations using PowerShell. In this article, I'm going to use the copy-item cmdlet to copy a file to multiple computers listed in a . txt file. The text file contains a list of computer names as follows, one on each line. The file is named computers. txt: ​computer1 computer2 computer3 Now let's start with the PowerShell script. At the top of the script we'll define some variables for the path to the text file containing the computer names, i. e. computers. txt; the path of the file to be copied ($sourcefile), and the last... --- ### Troubleshooting Hyper-V Networking > Learn several different tips to help you with troubleshooting Hyper-V networking issues in Windows Server Hyper-V and Windows Client Hyper-V. - Published: 2015-02-10 - Modified: 2024-09-04 - URL: https://petri.com/troubleshooting-hyper-v-networking/ - Categories: Hyper-V - Tags: network troubleshooting, troubleshooting - Article Type: How To Aidan Finn serves up a number of tips to help you with troubleshooting Hyper-V networking issues in Windows Server Hyper-V and Windows client Hyper-V. The most common problem I hear of in the Hyper-V world is related to networking. Complaints such as "my virtual machine is losing network connectivity" or "my host crashes when I do X on the network. " In this post, I'm going to list a number of fixes that will help. Use Logo Tested Adapters If your NIC is not on the hardware compatibility list for your Hyper-V version, such as Windows 8. 1 or Windows Server 2012 R2, then none of my fixes will help. You took a risk because you went and used a NIC that Microsoft hasn't tested, so now you are paying for it. Firmware and Drivers The number one fix for all problems is one that should not occur. The first thing I do when building a new physical server, such as a Hyper-V host, is run the manufacturer's update tool. This will download and install the latest firmware and drivers for that server. But if you wander on the TechNet forums, then you'll find there's only a few that seem to do this essential step. I don't care how new the server is. I don't care if you believe that the server is up to date. And I don't care if you think that Dell, HP, or anyone else should have or might have updated the server before it shipped. They didn't. Go to the support page for your host model, download the updating tool, and install all of the latest drivers and firmware. A word of warning: do... --- ### Microsoft and Samsung Settle Contract Dispute > Microsoft and Samsung have quietly settled a major contract dispute that threatened Samsung's use of the Android mobile OS on its smart phones and tablets. - Published: 2015-02-10 - Modified: 2015-02-10 - URL: https://petri.com/microsoft-samsung-settle-contract-dispute/ - Categories: Mobile - Tags: Microsoft, News, Samsung - Article Type: News Microsoft and Samsung have quietly settled a major contract dispute that threatened Samsung's use of the Android mobile OS on its smart phones and tablets. The bad news: Absolutely no details about this agreement have been made public. It doesn't get any terser than this statement: "Microsoft and Samsung have agreed on settlement terms that address both companies' concerns regarding the terms of the contracts. " Samsung, as you may know, had been making regularly patent license royalty payments to Microsoft that are based on the sales of its Android devices. Android infringes on numerous Microsoft patents and so the firm was able to convince most Android device makers to pay royalties rather than face off in court. But as Samsung became the world's biggest maker of smart phones, its royalty payments grew bigger and bigger. And by 2013, Samsung's royalty payments alone had become a billion dollar annual business for Microsoft. These ballooning payments were the real cause for Samsung's sudden change of heart, Microsoft has said. But Samsung provided other reasons. Samsung didn't stop making royalty payments until Microsoft announced it would purchase Nokia's devices and services businesses, in a deal that was consummated in mid-2014. It argued at the time that it no longer needed to pay because Microsoft's Lumia line "competes directly" with Samsung's smart phones. As such, it could no longer share certain sensitive information with Microsoft as it had been doing as partners because doing so would, in... --- ### A Useful PowerShell Script to Document Your Active Directory Environment > Use this free, powerful PowerShell script to make documenting your Active Directory environment easier. - Published: 2015-02-09 - Modified: 2015-02-09 - URL: https://petri.com/useful-powershell-script-document-active-directory-environment/ - Categories: PowerShell - Tags: Editor's Pick, Krzysztof Pytko - Article Type: How To Daniel Petri shows us how this free and helpful PowerShell script can reduce the time needed to document your Active Directory environment. As you probably know by now, documenting your Active Directory environment is a crucial aspect of keeping your AD in good health. It's also important in preparing for disaster recovery scenarios. Although some tools exist that can help you with some tedious aspects of documentation, most tools still leave much to be desired. Many AD settings, configurations and options are not easily viewed from the graphical user interface, where many require extra digging in the layers of menus and commands. There's also several configurations that you might not be aware of and are only known to you once something bad happens and you are forced to hire an AD expert that will try to dig out the remains for you. Using PowerShell to Document your Active Directory Forest Other settings and configurations can be seen from the GUI, but are not easy to document. Considering that the AD environment is one that changes, you're left with the task of keeping it up to date every few months. Here's where PowerShell and its AD cmdlets come to the rescue. PowerShellp helps reduce the time required to obtain information about Active Directory forest and domain(s) configurations. Because most Active Directory environments has at least one Windows Server 2008 R2 or higher domain controller that's running Active Directory Web Services, you can utilize PowerShell 2. 0 to get most required information. Krzysztof Pytko's ADReport PowerShell Script In my quest to create a presentation for a Microsoft event that I was invited to speak at, I came across this nifty PowerShell script written... --- ### Enable Tracking Protection in Internet Explorer to Improve Privacy and Speed > Learn how do not request and tracking protection in Internet Explorer can improve your privacy and speed up web browsing. - Published: 2015-02-09 - Modified: 2024-09-04 - URL: https://petri.com/enable-tracking-protection-in-internet-explorer-to-improve-privacy-and-speed/ - Categories: Security - Tags: Internet Explorer - Article Type: How To Russell Smith shows us how to enable Tracking Protection in Internet Explorer to improve privacy and speed up your web browsing. Have you ever wondered why it is that when you go looking for a product on the Internet, related adverts appear on other sites you visit? In this Ask the Admin, I’ll show you how to enable tracking protection in Internet Explorer, and download a tracking protection list to block advertisers that don’t respect your privacy. While IE has never supported plug-ins, the tracking protection feature works like an ad blocker. Tracking protection lists (TPLs) are provided mainly by third-parties, and contain the URLs of advertisers that are known to abuse users’ privacy. Add a tracking protection list in Internet Explorer (Image Credit: Russell Smith) A side benefit of turning on tracking protection is an improvement in the time it takes to load some pages. Take for example the BBC’s website. When in the UK, the site loads quickly. But when you don’t have a UK IP address, you’re served a different page that’s supported by advertising, and it takes much longer to load. With tracking protection enabled, and three TPLs added, the BBC’s homepage loads much faster. When I have a non-UK IP address, the TPLs block 46 services, in contrast to only one with a UK IP address, which goes a long way to explain the difference in page loading times. Speed improvements can generally be seen across sites I visit every day, and it’s particularly noticeable on WIFI. Do Not Track Requests versus Tracking Protection Internet... --- ### Use PowerShell to Find Folders with Specific File Types > Learn how to use PowerShell to find folders with specific file types in this how-to article by PowerShell MVP Jeff Hicks. - Published: 2015-02-09 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-to-find-folders-with-specific-file-types/ - Categories: PowerShell - Tags: Get-ACL, Get-Member, Intermediate, select-object - Article Type: How To Jeff Hicks shows us how to easily find folders with specific file types with PowerShell. In a recent article I showed you how to identify empty folders with PowerShell and delete them. On a related note I saw a post on Twitter with a Reddit question about getting a list of folder names that contain a certain file type. Interesting. Say I have a folder structure and I want to show the folder names if the folder contains say an MP3 file. Let's do this thing with PowerShell. First, I'll define a variable for the file type. ​ It isn't too difficult to get a list of all matching files by using the DIR alias for Get-ChildItem. ​ I selected a few properties so you could see that I have files and their parent directory. List of files and their parent directory. (Image Credit: Jeff Hicks)   Notice that the Demo3 folder has multiple files. We'll want to be able to handle that eventually. For now, it seems all I need is the Directory property. ​ Selecting a directory. (Image Credit: Jeff Hicks)   To filter out the duplicates, I can use the –Unique parameter with Select-Object. ​ Filtering out duplicates with the -Unique parameter and Select-Object. (Image Credit: Jeff Hicks)   I can even sort the results if I wish. ​ Sorting results. (Image Credit: Jeff Hicks)   Remember, the result of my PowerShell expression is an object. I am actually getting five objects with... --- ### FCC Chairman Comes Out Hitting for Net Neutrality > The FCC took the bold step of revealing that it intends to invoke its legal authority to regulate broadband Internet service as a public utility. - Published: 2015-02-09 - Modified: 2015-02-09 - URL: https://petri.com/fcc-chairman-comes-hitting-net-neutrality/ - Categories: Mobile - Tags: News - Article Type: News FCC Chairman Tom Wheeler this past week took the bold step of revealing that his agency intends to invoke its legal authority to regulate broadband Internet service as a public utility. This move was immediately cheered by Net Neutrality backers, but it has also raised the hackles of Internet service providers like Verizon, which successfully challenged a previous FCC Net Neutrality bid. This time, however, Wheeler has come up with a winning strategy. And his fellow FCC commissioners will no doubt approve of the plan when they meet later this month. "Using the FCC's Title II authority, I am submitting to my colleagues the strongest open Internet protections ever proposed by the FCC," Mr. Wheeler wrote in a Wired editorial. "These enforceable, bright-line rules will ban paid prioritization, and the blocking and throttling of lawful content and services. I propose to fully apply—for the first time ever—those bright-line rules to mobile broadband. " The Net Neutrality debate is simply stated, but it's drawn some emotional responses on both sides of the fence. Proponents of Net Neutrality argue that Internet service providers should be required by law to treat all data on the Internet equally, and not be able to lower speeds for those who can't pay higher prices. Opponents, which of course include Internet service providers, would like to establish business relationships with content providers so they can earn extra revenues by assuring certain levels of service via so-called "fast lanes. " And today, carriers such as Verizon have... --- ### Migrate Active Directory from Windows Server 2003 to 2012 R2: Migrate DHCP, Remove Server 2003, and Raise Functional Levels > Learn how to install and migrate DHCP settings, demote a Windows Server 2003 domain controller and raise domain and forest functional levels - Published: 2015-02-06 - Modified: 2024-11-19 - URL: https://petri.com/windows-server-2003-dhcp-migration-2012/ - Categories: Windows Server 2003 - Tags: DHCP, End of Support, Windows Server 2003 End of Support - Article Type: How To Russell Smith teaches us how to install and migrate DHCP settings, as well as steps for demoting a Windows Server 2003 domain controller, and raising domain and forest functional levels. In the second part of this series, I showed you how to configure Windows Server 2012 R2 as a domain controller (DC) in an existing Windows Server 2003 domain, set up DNS on the new DC, and transfer the Flexible Single Master Operation (FSMO) AD roles from Windows Server 2003 to the new DC. In this third and final article, I'll show you how to set up DHCP in Windows Server 2012 R2 and migrate the DHCP server settings from Windows Server 2003, remove the Windows Server 2003 DC from the domain, and then raise the domain and forest functional levels to Windows Server 2012 R2. Migrating Active Directory from Windows Server 2003 to Server 2012 R2 Article Series Part 1: Prepare Windows Server and Active Directory Part 2: Install AD and Transfer FSMO Roles Part 3: Migrate DHCP, Remove Windows Server 2003, and Raise Functional Levels Migrate DHCP Moving DHCP to the new DC isn't quite as straightforward as DNS, because DHCP isn't tightly integrated with AD. While it's possible to set up a secondary DHCP server, the best strategy is to use the Windows Server Migration Tools to migrate the old settings across to a new DHCP server running on Windows Server 2012 R2. Before you can use the migration tools on Windows Server 2003, you'll need to install the . NET Framework 3. 5, and then the Windows Management Framework Core 2. 0, which includes PowerShell 2. 0. Note that the source and destination DHCP servers must have the same number of... --- ### Microsoft Intune to Get Monthly Updates Going Forward > Microsoft also announced that it would now rapidly add new capabilities to the Inune cloud PC and device management services "at cloud speed." - Published: 2015-02-06 - Modified: 2015-02-06 - URL: https://petri.com/microsoft-intune-get-monthly-updates-going-forward/ - Categories: Mobile - Tags: intune, News, SCCM - Article Type: News As part of an announcement about the February 2014 updates to Intune, Microsoft also announced that it would now rapidly add new capabilities to the cloud PC and device management services "at cloud speed. " More specifically, Intune will now receive new features every month going forward. Not that February's update isn't big news in and of itself. With this update, Intune can now manage Microsoft's Office mobile apps for Android devices and OneNote app on iPhone and iPad. This means that Intune can now manage not just mobile devices, but also the key productivity apps that run on top of those devices. "Intune, part of the Enterprise Mobility Suite, is the only solution that manages Office mobile apps," a Microsoft representative told me. "This is a key as Office continues to be a gold standard for productivity. " I spoke to Microsoft corporate vice president Brad Anderson about this differentiation back in September. He told me at the time that the market for traditional mobile device management, or MDM, had turned into something of a commodity. And that businesses were looking for a more extensive set of enterprise mobility management capabilities. Enterprise Mobility Suite (EMS) is Microsoft's attempt to address that need. It includes Intune, of course, which provides that traditional MDM functionality plus, increasingly, application management, and also Azure Active Directory Premium (AADP) and Microsoft Azure Rights Management (ARM). AADP provides the identity management piece while ARM is about document and file management, including self-provisioning and self-management... --- ### Paul Thurrott's Short Takes: February 6, 2015 > In this week's other news, Satya Nadella celebrates year one as Microsoft CEO but I raise questions, Radio Shack bites the dust, and Obama's iPhone preview. - Published: 2015-02-06 - Modified: 2024-09-04 - URL: https://petri.com/short-takes-february-6-2015/ - Categories: Cloud Computing - Tags: Short Takes - Article Type: Opinion In this week's other news, Satya Nadella celebrates year one as Microsoft CEO but I raise questions, Radio Shack bites the dust, and Obama's iPhone preview. In this week's other news, Satya Nadella celebrates his first year as Microsoft CEO while I raise questions, Obama got an iPhone preview for the 2007 launch, Google vs. "right to be forgotten," Twitter sort of grows, and the sad decline and fall of a 1970's personal electronics super store. RIP, Radio Shack Satya Nadella celebrates his first year as Microsoft CEO Judging from the accolades I see around the web, Satya Nadella's first year as Microsoft CEO has been a rousing success, though the depth and quality of reporting varies wildly. The Wall Street Journal notes that Nadella "has charmed Silicon Valley through energetic personal diplomacy," while the special snowflakes over at Business Insider actually reported on how much sleep Mr. Nadella gets each night. (Shocking reveal: He gets the recommended 8 hours. ) But it's not until we get to ABC News that the unintended criticisms begin. Of the four items they list as Nadella achievements, three of them—Windows 10, Project Spartan and HoloLens—aren't even available yet and the fourth, "Microsoft for all devices," is the most controversial move Microsoft has ever made. If I were being honest, I'd point out some troubling areas I see. Nadella's endless talking and lecturing about nothing specific at all, and of course his air ball on the question of women asking for raises. His historically huge pay package. Likewise, I've heard from more than one Microsoftie that a year of continuous layoffs at the firm... --- ### Migrate Active Directory from Windows Server 2003 to 2012 R2: Install AD and Transfer FSMO Roles > Learn how to migrate from Windows Server 2003 to 2012 R2, which includes steps for installing Active Directory and transferring FSMO roles. - Published: 2015-02-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2003-to-2012-r2-install-ad-and-transfer-fsmo-roles/ - Categories: Windows Server 2003 - Tags: Active Directory, migration, Windows Server, Windows Server 2003 - Article Type: How To In this series on migrating from Windows Server 2003 to 2012 R2, learn how to easily install Active Directory, as well as steps for transferring FSMO Roles. In the first part of this three part series, I showed you how to prepare a Windows Server 2003 domain controller (DC) and domain so that a Windows Server 2012 R2 DC could be added. In this second article, we'll install Active Directory Domain Services on Windows Server 2012 R2, configure it as a DC in the domain, set it to use its own DNS server for name resolution, and finally transfer the five Flexible Single Master Operation (FSMO) AD roles to the new DC. Migrating Active Directory from Windows Server 2003 to Server 2012 R2 Article Series Part 1: Prepare Windows Server and Active Directory Part 2: Install AD and Transfer FSMO Roles Part 3: Migrate DHCP, Remove Windows Server 2003, and Raise Functional Levels Installing Active Directory in Windows Server 2012 R2 Now that the Windows Server 2003 domain is prepared to accept a Windows Server 2012 R2 DC, we can install Active Directory (AD) on a new server. If you're wondering whether you need to run adprep. exe in the existing domain, starting in Windows Server 2012, adprep /forestprep and adprep /domainprep are run automatically as part of the AD Domain Services (AD DS) installation process. For more information on installing Windows Server 2012 R2, see How to Install Windows Server 2012 R2 on the Petri IT Knowledgebase. Don't forget that you should assign the server a static IP address, and make sure that DNS resolution is working. Stated differently, be able to ping the fully-qualified domain name (FQDN)... --- ### Episode 11: February 5, 2015 10:15 EDT Guest: Eric Wright - Published: 2015-02-05 - Modified: 2015-02-05 - URL: https://petri.com/episode-11-eric-wright/ - Categories: Current Status While everyone is familiar with Juno, the failed Eastern blizzard of 2015, it is only us in the IT community who found the name of the storm hilarious, since Juno is the name of the latest OpenStack release.   Eric Wright (@DiscoPosse), Technology Evangelist and Principal Solutions Engineer at VMturbo, and speaker from the last two OpenStack summits, joins us to talk about what exactly this OpenStack thing is. --- ### Why is Windows Server vNext Delayed Until 2016? > Wondering why is Windows Server vNext delayed until 2016? Russell Smith has some ideas, including the addition of Docker support. - Published: 2015-02-05 - Modified: 2024-09-04 - URL: https://petri.com/why-is-windows-server-vnext-delayed-until-2016/ - Categories: Windows Server 2016 - Tags: Editor's Pick - Article Type: Opinion Windows Server vNext is delayed until 2016, and Russell Smith thinks that Docker support could be the reason why the product release date was bumped. Microsoft announced in a blog post last week, Windows Server and System Center roadmap update, that the updated versions of Windows Server and System Center will now ship in 2016, with the exception of System Center Configuration Manager (SCCM), which is expected to RTM at the same time as Windows 10, to support deployment of the new client OS. Editor's Note: The phrases 'Windows Server 10' and 'Windows Server vNext' have been used interchangeably as the unofficial names for the next release of Windows Server. To standardize until a final official product name is announced by Microsoft, we'll default to using Windows Server vNext. In What about Windows Server 10? on the Petri IT Knowledgebase, I anticipated that after Microsoft's Windows 10 media event on January 21st, which focused exclusively on Windows 10, Surface Hub, and HoloLens, Windows Server vNext and Windows 10 might not be released simultaneously, considering that Server didn't even get a mention in passing. But for those of us that are familiar with the 'better together' slogan, which has historically been used to market Windows Server and the accompanying client OS version, it may come as a surprise that Microsoft has decided to delay the next server version of Windows. Related: New Features in Windows Server vNext October 2014 saw the release of the Windows Server Technical Preview, which included a limited set of new features, including Storage Replica and new Hyper-V features, all welcome but not revolutionary. Missing in action from this early preview was the Docker... --- ### Microsoft Will Reportedly Purchase Online Calendar Maker for $100+ Million > Microsoft will reportedly spend over $100+ million to purchase online calendar maker Sunrise. - Published: 2015-02-05 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-will-reportedly-purchase-online-calendar-maker-100-million/ - Categories: Cloud Computing - Tags: News - Article Type: News According to a report in TechCrunch, Microsoft's manic bid to dominate mobile productivity continued this week with an as-yet-unannounced $100+ million purchase of online calendar maker Sunrise. The Sunrise calendar is notable for a number of reasons, including its pervasive support for third-party data sources. And this purchase complements an earlier $200 million purchase of Accompli, which Microsoft is using as the basis for its Outlook mobile clients going forward. "At Sunrise, we're working every day to build a better calendar," a Sunrise team blog post from about six months ago notes, providing a nice summary of the company's goals. "And we believe a better calendar emerges when it's designed as a platform. Millions of people are using calendars every day, and each of us have a life that's unique. We need a calendar that’s personalized for everyone. Apps are the best way to get there. " Microsoft has declined to comment on this story, which suggests that TechCrunch is onto something. The firm similarly refused to comment on a similar story about its Accompli purchase in late November 2014, and that purchase was announced just days later. As far as the details, there isn't much to say: TechCrunch's sources say that Microsoft paid "at least" $100 million for Sunrise, which was founded in 2012. Which leads us nicely to the rationale behind this purchase, which is clear enough: Microsoft spent much of 2014 racing forward with its "mobile first, cloud first" strategy, which involved rapidly releasing numerous... --- ### Migrate Active Directory from Windows Server 2003 to 2012 R2: Preparing Windows Server and Active Directory > Learn how to migrate Active Directory from Windows Server 2003 to 2012 R2, including DNS and DHCP, to the latest version of Windows Server. - Published: 2015-02-04 - Modified: 2024-11-19 - URL: https://petri.com/migrate-active-directory-windows-server-2003-2012-r2-preparing-windows-server-active-directory/ - Categories: Windows Server 2003 - Tags: End of Support, Windows Server 2003 End of Support - Article Type: How To Russell Smith shows us how to migrate Active Directory domain controllers running Windows Server 2003, including DNS and DHCP, to Windows Server 2012 R2. Support for Windows Server 2003 ends in July 2015, so if you haven't already started planning to migrate to Windows Server 2012 R2, now is the time. In this new article series, I'll walk you through making the change to a Windows Server 2012 R2 domain, including handling DHCP and DNS, starting with updating Windows Server 2003, and preparing the domain so that a Windows Server 2012 R2 domain controller (DC) can be added. Migrating Active Directory from Windows Server 2003 to Server 2012 R2 Article Series Part 1: Preparing Windows Server and Active Directory Part 2: Install AD and Transfer FSMO Roles Part 3: Migrate DHCP, Remove Windows Server 2003, and Raise Functional Levels Before planning how to retire Windows Server 2003, I recommend reading Migrating From Windows Server 2003: Getting Started on the Petri IT Knowledgebase. This article includes important information on the technical issues and upgrade paths available and a section dedicated to the migration options for domain controllers. Once you've formulated the best way to replace Windows Server 2003 domain controllers in your environment, you should adapt the instructions below and test them in a pre-production lab. Upgrade to a Windows Server 2012 R2 Domain For the purposes of this article, my environment consists of a single Windows Server 2003 domain (ad. contoso. com), with one DC (dc1) running Active Directory integrated DNS and DHCP. This is a typical scenario for small businesses that can't afford the luxury of two physical servers or virtualization. I'm going to add a Windows Server... --- ### Using PowerShell to Find Disabled or Inactive User Accounts in Active Directory > Learn how to use PowerShell to find disabled or inactive user accounts in Active Directory in this helpful article by PowerShell MVP Jeff Hicks. - Published: 2015-02-04 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-to-find-disabled-or-inactive-user-accounts-in-active-directory/ - Categories: Active Directory (AD) - Tags: Active Directory, Get-ADUser, Intermediate, PowerShell Problem Solver, Search-ADAccount - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks shows us a way to find disabled or inactive user accounts in Active Directory with the help of the Search-ADAccount cmdlet. One of the most common applications of PowerShell is with Active Directory, which makes a lot of sense. Active Directory is a huge source of information and naturally IT pros want an easy way to get that information. Perhaps you need to do something with the information or maybe you simply need a report so that someone else can make decisions. Using PowerShell to query Active Directory is not that difficult, especially if you have cmdlets at your disposal. A typical Active Directory task that can be easily automated with PowerShell is to identify disabled or inactive user accounts, which I'll show you how to do in this PowerShell Problem Solver article. The easiest solution is the Active Directory PowerShell module from Microsoft. This module requires at least one domain controller running Windows Server 2008 R2 or later that's running Active Directory Web Services. On the client side you need PowerShell 3 or later and the Active Directory tools that are part of the Remote Server Administration Toolkit (RSAT) download. Get the latest version for your operating system. I am running PowerShell 4. 0 on a Windows 8. 1 desktop with RSAT installed. You can verify the module like this: ​get-module ActiveDirectory -list If you don't see it, open Control Panel –Programs and select "Turn Windows Features on and off. " Scroll down to Remote Server Administration Tools, and make sure you've checked the box for the module. Turning on the Active Directory Module for Windows... --- ### Millions of Android Devices Infected by Malicious Apps > Google has pulled three adware-distributing apps from its Play Store, but only after several millions devices were infected with the malicious software. - Published: 2015-02-04 - Modified: 2024-09-04 - URL: https://petri.com/millions-android-devices-infected-malicious-apps/ - Categories: Security - Tags: Android, News - Article Type: News Google has pulled three adware-distributing apps from its Play Store, but only after several millions devices were infected with the malicious software. Lest there be any doubt that Android is the new Windows, Google has just pulled three adware-distributing apps from its Play Store, but only after several millions devices were infected. The search giant finally removed the apps after security firm Avast alerted it to the dangers, but there is evidence that Google knew about the suspicious apps for weeks. In a somewhat self-serving post in which it also promotes its Android security app, Avast explains how one of the three apps functioned. "It seems to be a completely normal and well working gaming app," Avast's Filip Chytry writes. "This impression remains until you reboot your device and wait for a couple of days ... Each time you unlock your device an ad is presented to you, warning you about a problem, e. g. that your device is infected, out of date or full of porn ... You are then asked to take action. However, if you approve you get re-directed to harmful threats on fake pages, like dubious app stores and apps that attempt to send premium SMS behind your back or to apps that simply collect too much of your data for comfort while offering you no additional value. " It's a classic adware scheme in other words, one that relies almost solely on social engineering. But in a case like this, it falls on Google, as the arbiter of the platform's app store, to ensure that the apps it approves meet criteria for reliability, usability and, yes,... --- ### Migrating from Windows Server 2003: Getting Started > Learn about the options for migrating from Windows Server 2003 to Windows Server 2012 R2 in this how-to article by Russell Smith. - Published: 2015-02-03 - Modified: 2024-11-19 - URL: https://petri.com/migrating-from-windows-server-2003/ - Categories: Windows Server 2003 - Tags: Editor's Pick, End of Support - Article Type: Opinion Learn how to prepare for a migration from Windows Server 2003 to Windows Server 2012 R2 in this new article series from Russell Smith. Extended support for Windows Server 2003 ends July 14, 2015, so if you haven't already started thinking about retiring Microsoft's aging server OS, now is the time to start planning. The good news is that in the age of virtualization and the cloud, the migration options are more than ever before. In the past it might have been necessary to buy new hardware for every server upgrade, but it could be the case that you already have the capacity to replace existing servers running on legacy hardware with virtual machines, either in a public or private cloud, or on a virtual host you have on premise. Windows Server 2003 Migration: Understand Your Environment Before embarking on a migration project, it's a good idea to understand your existing environment as intimately as possible to help plan thoroughly and ensure a smooth migration. A great place to start is Microsoft's Assessment and Planning Toolkit (MAP). For more information on using MAP to assess your server environment, see Using the Microsoft Assessment and Planning (MAP) Toolkit for Server and Private Cloud Migration on the Petri IT Knowledgebase. Microsoft’s Windows Server 2003 Migration Planning Assistant website (Image Credit: Russell Smith) In-Place Upgrades Not Supported It's easy to know where to start planning because in-place upgrades are not an option. Windows Server 2012 R2 doesn't support in-place upgrades from Windows Server 2003, only servers running 64-bit editions of Windows Server 2008 or later can be upgraded in-place. For more... --- ### Microsoft Azure SQL Database Now Includes New Security, Automation Features > Microsoft has updated Azure SQL Database to include new security and automation features to make the cloud computing service more attractive and productive for users. - Published: 2015-02-03 - Modified: 2015-02-03 - URL: https://petri.com/microsoft-azure-sql-database-new-security-automation-features/ - Categories: SQL Server - Tags: Editor's Pick, News - Article Type: News Azure SQL Database now includes a slew of new security and automation improvements to help make your time spent with the service more productive. Keeping in line with Microsoft's initiatives to move more IT and database professionals to its cloud services, the company announced updates to Azure SQL Database that will enable users to work more efficiently to increase productivity through automation, as well as providing new security features that should put users' minds more at ease. New Azure SQL Database Security Features A chief concern for any IT or database professional regarding cloud services is the security of data, as well as implementing processes that meet corporate and industry compliance policies. Microsoft is continually working to alleviate those concerns by introducing a heap of new security features in the latest version of Azure SQL Database, which includes Row-Level Security, Dynamic Data Masking, and Transparent Data Encryption.  The following describes each new security feature: Row-Level Security: This new security feature lets administrators have fine-tuned control over users' access to data by row. Dynamic Data Masking: This feature works to help limit data exposure in a database by "returning masked data to non-privileged users who run queries over designated database fields," such as credit card numbers. Transparent Data Encryption: This new feature will be available for SQL Database V12 databases for encryption at rest. You can get started with these new security features, which are now available in public preview across Basic, Standard, and Premium service tiers. New Automation Features Enable Better Setup and Backup for SQL Server in Azure VMs Microsoft has also made notable automation enhancements that will undoubtedly help administrators make better use of their time. Although... --- ### Microsoft Outlines Its Plan to Evolve SharePoint for the Cloud First, Mobile First Era > Microsoft this week began addressing how and when it will update SharePoint for the cloud first, mobile first era. - Published: 2015-02-03 - Modified: 2015-02-03 - URL: https://petri.com/microsoft-outlines-plan-evolve-sharepoint-cloud-first-mobile-first-era/ - Categories: SharePoint - Tags: News - Article Type: News While "mobile first, cloud first" has caused some confusion and even fear with fans and users of Microsoft's client systems, the impact of this strategy on the firm's on-premises servers is no less dramatic. With worries about the future mounting, Microsoft this week finally began addressing how and when it will update its servers for this new age. And SharePoint is the latest product to get the full disclosure treatment. Late last week, Microsoft admitted that it had decoupled development of Windows Server vNext from Windows 10, and would delay the release of the server product into some time in 2016. The software giant didn't explicitly explain its reasoning behind the delay, but there are a number of theories tied to the support expiration of Windows Server 2003, the generally slow pace of server OS adoption, and a new acceptance of workload migration to the cloud. SharePoint, of course, is a different animal. Originally developed as an in-house team content collaboration solution, SharePoint has evolved over the years with new experiences—portals, search, business intelligence (BI) and enterprise content management (ECM)—management capabilities, and extensibility. And of course it's moved from the data center to the cloud as SharePoint Online, a component of Office 365 for businesses. Today, Microsoft focuses its development efforts on the cloud first, so while it will continue to offer on-premises versions of SharePoint, those versions may trail the cloud. And they will not necessarily offer the same range of functionality, a gap that I... --- ### Getting Hyper-V Integration Components via Windows Update > Aidan Finn explains how Microsoft is moving to using Windows Updates to upgrade Hyper-V Integration Components on Hyper-V. - Published: 2015-02-02 - Modified: 2024-09-04 - URL: https://petri.com/upgrade-hyper-v-integration-components-via-windows-update/ - Categories: Hyper-V - Tags: Editor's Pick - Article Type: News Upgrading Hyper-V Integration Components has traditionally been a very tedious process, but Microsoft is changing that with the next version of Windows Server. In the next version of Hyper-V, Microsoft will be changing how we deploy new versions of integration components to virtual machines that are running a Windows guest operating system (OS). I will discuss this new process and what it means for Hyper-V administrators in this post. How we currently get Hyper-V Integration Components The process of getting and updating integration components depends on if you are running Windows or Linux as the guest OS of the virtual machine. With Linux, it's pretty simple. Depending on your distribution and version, you will either get the Linux Integration Services (LIS, what the integration components are called for Linux guest OSs) built into the original installation, or you will download them from Microsoft. If the LIS came with the operating system, then the only way to update the LIS is to upgrade the guest OS. In the world of Windows, the Hyper-V integration components have come pre-installed in the OS since Windows 7 and Windows Server 2008 R2. Those integration components need to be updated. When a host is updated, a new copy of the integration components is installed in the form of VMGUEST. ISO in C:WindowsSystem32 on the management OS. This ISO is used to deploy the integration components -- a process that is necessary to fix bugs and add support for new features that the host can offer. And that's where the trouble begins. Installing the updated integration components has been a manual process. You can... --- ### Grouping PowerShell Objects with Group-Object > Learn all about grouping PowerShell objects with Group-Object in this detailed how-to by PowerShell MVP Jeff Hicks. - Published: 2015-02-02 - Modified: 2024-09-04 - URL: https://petri.com/grouping-powershell-objects-with-group-object/ - Categories: PowerShell - Tags: Beginner, foreach-object, get-eventlog, group-object - Article Type: How To Learn how to group PowerShell objects using the Group-Object cmdlet in this how-to by Contributing Editor Jeff Hicks. When working with results from a PowerShell expression, you may find it helpful to group objects by a common property. There are a few ways you can group objects depending on what you want to accomplish. Sometimes you need to work with each set of like objects, and sometimes you want to simply view the results. Let me share a few PowerShell examples and techniques to help you get the most out of group PowerShell results. The most important thing to know about grouping is that you are working with objects and the grouping is almost always based on some common property. Thus, there is an assumption that you are grouping like objects. Sure, you could group different types of objects, but this is going to be an awkward process. The grouping property technically doesn't have to have a value. You can use any property that you see with Get-Member.  As I'll demonstrate, you can even group on a dynamic or custom property of your own design. The cmdlet we'll start with is Group-Object. Using PowerShell's Group-Object Cmdlet Let's start with an example of something that everyone can run, and something you might even find practical. All event log entries have a source property. How did I know? I asked PowerShell. ​get-eventlog system -newest 1 | select * Obtaining the source property with the get-eventlog cmdlet in PowerShell. (Image Credit: Jeff Hicks) Once I know the property name, I can group as many objects as I... --- ### Android and iOS Leave Little Room for Windows in the Smart Phone Market > Android and iOS continued to dominate the global smart phone market in 2014, with Windows Phone stuck in third place. But there are big questions for 2015. - Published: 2015-02-02 - Modified: 2024-09-04 - URL: https://petri.com/android-ios-leave-little-room-windows-smart-phone-market/ - Categories: Mobile - Tags: Android, iPhone, News, Windows phone - Article Type: News It will come as no surprise that Android and iOS continued to dominate the global smart phone market in 2014, with Windows Phone stuck in a very distant third place. But there are big questions for 2015. Can Apple's fourth quarter gains turn into something non-temporary and reverse the firm's historic market share slide downward? And will Windows Phone—or Windows 10—ever succeed in this market? To frame these questions, consider the two major trends that defined the smart phone market in 2014: More than one billion Android smart phones were sold. For the first time ever, device makers sold over one billion smart phones running Google's Android OS. Strategy Analytics estimates that 1. 04 billion smart phones sold in 2014—about 81 percent of the market—were Android devices. Apple broke records in Q4 2014. Apple sold an astonishing 74. 5 million iPhones in the fourth quarter of 2014, a record. That equates to just 19. 6 percent of the 380. 1 million smart phones that were sold in the quarter, of course, but it's a big jump from the 51 million units—and 17. 6 percent of the market—that Apple commanded in the same quarter a year earlier. Using Strategy Analytics' data, The Wall Street Journal constructed the following chart which is illustrative of how things are changing in this market. Here we see the world's biggest maker of smart phones, Samsung, being challenged by the iPhone. What you can see clearly in this chart is the seasonable and temporary... --- ### Microsoft Outlines OneDrive for Business Data at Rest Encryption, OneDrive Support Coming Soon > Microsoft has provided some additional detail about OneDrive for Business data at rest encryption, and normal OneDrive will be getting the feature soon. - Published: 2015-01-30 - Modified: 2024-09-04 - URL: https://petri.com/onedrive-for-business-data-at-rest-encryption/ - Categories: Security - Tags: News, OneDrive, OneDrive for Business - Article Type: News Microsoft has provided some additional detail about OneDrive for Business data at rest encryption, and Microsoft says normal OneDrive users should be getting the same level of security soon. Microsoft lifted the curtain a bit today on how Microsoft OneDrive for Business and SharePoint Online handle data encryption. A post by ’SharePoint Team’ on the official Microsoft Office blog detailed how OneDrive for Business data is encrypted at rest and in flight. ‘... when your data is in transit, it is encrypted as data moves between you and the datacenter and between the server and the datacenter, which uses 2048 bit keys. However, the encryption technology applies not only when the data is moving between servers or datacenters, but also when the data is at rest. ” Microsoft OneDrive for Business offers data encryption for data at rest and data in flight. Regular OneDrive users will have to wait for data at rest support at some point in the future. (Image: Dreamstime) OneDrive for Business Disk Encryption and File Encryption The Microsoft post revealed that BitLocker is used for data security at the disk level, but at the file layer each file is given a key that is Federal Information Processing Standard (FIPS) 140-2 compliant and uses 256-bit keys via the Advanced Encryption Standard (AES-256). Microsoft has produced a video that goes into additional detail about what security methods it uses for data-at-rest for SharePoint Online and OneDrive for Business, and I’ve embedded that video below. What about data encryption for OneDrive? One thing that isn’t immediately clear when reading through the aforementioned blog post is whether those encryption features are included with the standard... --- ### Microsoft Delays Windows Server vNext to 2016 > Originally expected to ship alongside Windows 10 later in 2015, the next major Windows Server version has now been delayed by Microsoft until 2016. - Published: 2015-01-30 - Modified: 2015-01-30 - URL: https://petri.com/microsoft-delays-windows-server-vnext-2016/ - Categories: Windows Server 2016 - Tags: News - Article Type: News Originally expected to ship alongside Windows 10 later in 2015, the next major Windows Server version has now been delayed by Microsoft until 2016. Originally expected to ship alongside Windows 10 later in 2015, the next major Windows Server version has now been delayed by Microsoft until 2016. The software giant doesn't provide a reason for the delay, but with more and more customers moving new infrastructure to the cloud, the need for another on-premises server is much less pressing than it was just a few years ago. "As we continue to advance the development of Windows Server and System Center, we plan to release further previews through the remainder of 2015, with the final release in 2016," a new posted credit to the Enterprise Cloud Team explains in Microsoft's Server & Cloud Blog. "Our next preview is planned for the spring of 2015. " Microsoft delivered the first and only preview release of Windows Server vNext simultaneously with the Windows 10 Technical Preview in October 2014. But while Windows 10 has since received several pre-release updates, including a major new Windows 10 Technical Preview 2 drop just last week, some were beginning to wonder what was going on with Windows Server vNext. One theory is that Microsoft doesn't want to confuse the messaging around the expiration of support for Windows Server 2003, which is set for July 14, 2015. Most businesses that are still using this ancient Windows Server version are in the midst of migrating to newer versions—ideally Windows Server 2012 R2. And it's possible that some might decide to hold out for Windows Server vNext if it was set... --- ### Microsoft Will Offer Businesses a Mixed Servicing Approach with Windows 10 > Microsoft recently revealed its "Windows as a service" concept as part of its announcement about free upgrades to Windows 10. - Published: 2015-01-30 - Modified: 2015-01-30 - URL: https://petri.com/microsoft-will-offer-businesses-mixed-servicing-approach-windows-10/ - Categories: Windows 10 - Tags: News - Article Type: News At the Windows 10 media event earlier this month in Redmond, Microsoft revealed its "Windows as a service" concept as part of the announcement about free upgrades to Windows 10. But what about businesses? When Microsoft revealed that it would effectively treat Windows 10 as a service and keep it updated regularly for consumers going forward, some warning bells went off at enterprises and other businesses. How would Microsoft support Windows 10 servicing in corporate environments? Today, the software giant clarified its plans. At the Windows 10 media event earlier this month in Redmond, Microsoft revealed its "Windows as a service" concept as part of the announcement about free upgrades to Windows 10 from Windows 7, 8 and Windows Phone 8. 1. "With Windows 10, we think of Windows as a service," Microsoft's Terry Myerson said during the event. "Windows one of the largest Internet services on the planet. And just like other Internet services, the question 'what version are you running? ' will cease to make sense. " There is a big benefit here for developers, of course, and for end users. But what about the enterprise? Here, Myerson offered a fairly short answer. "We will continue to support how Windows works today, with long-term branches and long term support," Myerson continued. "However, the best practice for most enterprises ... will be to directly connect devices to Windows Update, so those devices receive the best security, the best productivity functionality over time, as soon as are available. " So there are really just two things going on there. First, Microsoft said it would continue supporting the current servicing schemes with which businesses are familiar. And second, it would like businesses to... --- ### Copy, Move and Rename Files Using Windows PowerShell > Learn how to copy, move and rename files using Windows PowerShell in this how-to article by Russell Smith. - Published: 2015-01-30 - Modified: 2024-09-04 - URL: https://petri.com/copy-move-rename-files-using-windows-powershell/ - Categories: PowerShell - Tags: Copy-Item, Editor's Pick, Get-ChildItem, Move-Item, remove-item - Article Type: How To Russell Smith shows us how to use Windows PowerShell to perform basic file management operations in Windows Server and Windows 8. In this easy Ask the Admin, I'll show you how to perform basic file management operations using PowerShell in Windows Server and Windows 8. Robocopy is still the tool I would recommend for performing bulk file management operations, but PowerShell also includes basic file management support. In this article, I'll show you how to copy, move, delete and rename files using PowerShell. Copying files using PowerShell Start by opening Windows PowerShell in Windows 8. 1. All the commands in this article are run in the context of the logged-in user. Press the WINDOWS key to switch to the Start screen. Type powershell and make sure that Windows PowerShell is selected in the search results on the left of the Start screen. Press ENTER to start Windows PowerShell. In the PowerShell window, type the command below and press ENTER. After the –path parameter, type the path of the file on your local PC that you want to copy, and after the –destination parameter, type the path of the destination folder. In the example below, I'm moving a file called LicensedUsers. csv from the working directory to my desktop. ​copy-item -path . LicensedUsers. csv -destination c:usersrusselldesktop An error message will appear in the PowerShell window if the command doesn't complete successfully. Using the copy-item cmdlet, you can also copy and rename a file at the same time by simply renaming the file in the path specified after the –destination parameter as shown here: ​copy-item -path . LicensedUsers. csv -destination c:usersrusselldesktopLicensedUsers2. csv You can copy the entire contents... --- ### Google Reports Growth, But Earnings Fall Short > Google this week reported net income of $4.76 billion on revenues of $18.10 billion for the 4th quarter of 2014. But the results fell short of expectations. - Published: 2015-01-30 - Modified: 2024-09-04 - URL: https://petri.com/google-reports-growth-earnings-fall-short/ - Categories: Cloud Computing - Tags: News - Article Type: News Google this week reported net income of $4.76 billion on revenues of $18.10 billion for the 4th quarter of 2014. But the results fell short of expectations. Citing a variety of issues that hampered growth, Google this week posted its earnings report for the final quarter of calendar year 2014. The search giant reported net income of $4. 76 billion on revenues of $18. 10 billion for the quarter, both of which were improvements over the same quarter a year earlier. But the results came in under expectations. The highlights: Ad revenue. Approximately 95 percent of Google's revenues come from advertising, and that business is still growing—it grew 14 percent in the quarter, year over year—but more slowly than before because of an ongoing shift to mobile, where advertising is much trickier. Google provided the following chart showing growth in "paid clicks" over the past two years. (Long story short: Paid clicks are trending down on Google web sites but up on third-party sites. ) Revenue from "other" businesses. Google's "other" businesses--the Play content store, Google Apps, enterprise cloud, and so on--actually grew faster by 20 percent than the rest of the company, albeit it at a much slower rate than the past three quarters, which all saw 50 percent growth. These businesses together contributed $1. 9 billion in revenues in the quarter. By comparison, Apple's "services" businesses--iTunes Store, App Store, Apple Pay, and other services--contributed almost $5 billion in revenues in the same quarter. Impact from a strong US dollar. Google CFO Patrick Pichette said that "a strong US dollar" erased $468 million in revenues in the quarter and hit the Google Play Store particularly... --- ### Episode 10: January 29, 2015 Guest: Paul Cunningham - Published: 2015-01-29 - Modified: 2015-01-29 - URL: https://petri.com/episode-10-paul-cunningham/ - Categories: Current Status Joining us from the future, Exchange Server Pro, Exchange MVP Paul Cunningham (@exchservpro) will join us from Australia to discuss everything we wanted to know about Exchange High Availability.   What do businesses do to ensure their email is available 24×7?   Business Continuity, HA and how DAG’s can help ensure Exchange is available even during the worst disaster.   Will we finally see a kangaroo on our show?   Tune in to find out.   www. exchangeserverpro. com   --- ### Samsung Stumbles Badly as Apple Soars > While Apple set records for iPhone sales, profits and revenues in Q4 2014, Samsung's smart phone business stumbled badly. Again. - Published: 2015-01-29 - Modified: 2024-09-04 - URL: https://petri.com/samsung-stumbles-badly-apple-soars/ - Categories: Mobile - Tags: News - Article Type: News While Apple set records for iPhone sales, profits and revenues in Q4 2014, Samsung's smart phone business stumbled badly. Again. 2014 was not a good year for the world's largest smart phone maker, with Samsung seeing increased competition from numerous Chinese rivals at the low-end of the market and from Apple at the high-end. But the fall of the mighty only got worse in the fourth quarter of 2014: while Apple set records for iPhone sales, profits and revenues, Samsung stumbled badly. Samsung today announced that it earned a net profit of $4. 8 billion on revenues of $48 billion in the fourth quarter of 2014. Those numbers are nothing to sneeze at, but both are down from the same quarter a year ago, and Samsung's revenues for the entire calendar year 2014 are down from the previous year as well. Samsung's business extends far beyond smart phones, of course. But where the firm's Mobile business once contributed 70 percent of Samsung's operating profit, that number fell to 58 percent by the end of 2014. Samsung isn't making as much selling smart phones as it once did, and its Mobile business is no longer its most profitable. As problematic, Samsung in 2014 watched its once-commanding lead in the smart phone market get whittled away. The firm has responded to this suddenly intense competition by promising to cut back on the number of phone models it produces and to use higher-grade materials and better designs in its more expensive devices. "Competitive products will be introduced to drive smart phone sales, while efficiency will be enhanced... --- ### VMware Tops $6 Billion in Revenue in 2014, Inks Cloud Deal with Google > While Microsoft and Apple recently revealed impressive financial results, VMware tops $6 Billion in Revenue in 2014. - Published: 2015-01-29 - Modified: 2024-12-03 - URL: https://petri.com/vmware-tops-6-billion-in-revenue-in-2014-inks-cloud-deal-with-google/ - Categories: VMware - Tags: Editor's Pick, News, Pat Gelsinger - Article Type: News Microsoft and Apple may have garnered the lion's share of corporate earnings headlines, but VMware delivered some impressive results of its own. It was a big week for corporate quarterly earnings reports, with Microsoft delivering a robust quarter and Apple shattering the record books with an $18 Billion net profit in the same timeframe. A bit lost in the pile of news stories about Microsoft turning the corner with Satya Nadella at the helm -- and Apple swimming in a massive $179 billion cash hoard that would make Scrooge McDuck proud and Smaug green with envy -- VMware revealed its Q4 results as well. Despite increasing competition from Microsoft against its core virtualization business, VMware delivered some impressive numbers for the quarter ending December 31, 2014. Overall revenue for 2014 was $6. 04 Billion, while net income was $326 million for Q4. That also translated into a record $1. 70 billion in revenue for the same period, which shows that VMware is still finding success at meeting the virtualization needs of mid- to large enterprises. VMware CEO Pat Gelsinger introducing the EVO product family at VMworld 2014. (Photo: Jeff James/ VMworld Live Stream) In a prepared statement announcing the news, VMware CEO Pat Gelsinger suggested that VMware's best days were yet to come. "Customers continue to partner with VMware because we offer a new model for IT designed to rapidly and automatically deliver any app, anywhere, without sacrificing the need for security, availability and compliance," Gelsinger said. "In 2014, we surpassed the 6 billion dollar revenue mark for the first time, and in 2015 we're looking forward to providing our customers with extraordinary value... --- ### Using the Azure Virtual Machine Optimization Assessment Tool > Run the Azure Virtual Machine Optimization Assessment Tool to get best practice advice about running Active Directory, SQL and SharePoint in the cloud. - Published: 2015-01-29 - Modified: 2024-09-04 - URL: https://petri.com/using-the-azure-virtual-machine-optimization-assessment-tool/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Russell Smith shows us how to use the Microsoft Azure Virtual Machine Optimization Assessment Tool to get advice about running Active Directory, SQL and SharePoint in the cloud. In this Ask the Admin, I'll show you how to get advice on tuning and securing Active Directory, SQL, or SharePoint running on Azure virtual machines. Managing your own infrastructure in the cloud presents challenges that not all system administrators are ready to face. But last year, Microsoft released an optimization tool that provides advice on how to back up, secure, and optimize performance for servers running in the cloud. While such tools cannot replace experienced consultants, the Virtual Machine Optimization Assessment Tool gives a surprisingly in-depth assessment of how to configure systems to avoid common issues and should give cloud newcomers a sense of assurance that they're following best practices. Generating a report for Active Directory, SQL or SharePoint in the Azure Virtual Machine Optimization Assessment Tool. (Image Credit: Russell Smith) The Assessment The report generated by the tool contains useful advice on how to secure and protect Active Directory, SQL or SharePoint. The recommendations are based on real-world experience gained by Microsoft engineers when dealing with customer issues, and the report is divided into six key focus areas: Security and compliance Availability and business continuity Performance and scalability Upgrade, migration and deployment Operations and monitoring Change and configuration management Install the Virtual Machine Optimization Assessment Tool In this article, I’m going to focus on using the optimization tool to get advice on Active Directory. Note that when using the tool to collect and analyze information about Active Directory, it needs to... --- ### Scheduling Azure VM Startup and Shutdown using Azure Automation > Learn about scheduling Azure VM startup and shutdown using Azure Automation to help you save money on your Microsoft Azure bill. - Published: 2015-01-28 - Modified: 2024-11-19 - URL: https://petri.com/azure-vm-startup-and-shutdown-using-azure-automation/ - Categories: Microsoft Azure - Tags: Azure Automation, Editor's Pick - Article Type: How To Aidan Finn serves up a detailed how-to article on scheduling Azure VM startup and shutdown using Azure Automation to save you even more money. One of the techniques I talked about in Saving Money with Microsoft Azure Virtual Machines was to schedule the startup and shutdown of virtual machines. In this article, I will show you how to accomplish this using a very powerful PowerShell feature called Azure Automation. The Scenario As I've said in my previous article, many businesses operate during a set number of hours. For example, a company might be open between 8 am and 6 pm. That's 10 hours of the entire day that virtual machines are required. If we allow for an hour before and after the day, then we only need virtual machines 12 hours per day, or 50 percent of the time. The pricing of Azure virtual machines is based on how many hours they are running for. Yes, there are also egress data and storage costs, but the virtual machine cost is normally the largest component. If a virtual machine is required for just 50 percent of the day, then why are we running it or, more importantly, paying for it 100 percent of the time? We can use Azure Automation to cleanly shutdown virtual machines that aren't required after the end of the day, and then start them up before employees start the day. In this post, I will show you how to implement basic solutions. Some previous posts by my colleagues at Petri. com go into more detail. The scripts that I will use in my runbooks are basic -- everyone's requirements... --- ### Amazon Unveils WorkMail, Takes Aim at Exchange, Gmail > Amazon unveils WorkMail and wades into the enterprise messaging market, putting it in direct competition with Microsoft Exchange and Google Gmail. - Published: 2015-01-28 - Modified: 2024-11-19 - URL: https://petri.com/amazon-unveils-workmail-takes-aim-exchange-gmail/ - Categories: Amazon Web Services - Tags: Amazon WorkMail, News - Article Type: News Amazon just decided to wage war for the enterprise messaging market by announcing Amazon WorkMail, a new cloud-based mail service that will compete with Microsoft Exchange Online and Google Gmail. Update: January 28, 2015 – 5:15 PM MT – Added additional information from an official Amazon news release and other Amazon messaging that was issued after publication of our original story. Some big (and somewhat surprising) news today from Amazon: According to articles by Shira Ovide at the Wall Street Journal and Ben Kepes at Forbes, the Amazon Web Services division is wading into the enterprise email market with Amazon WorkMail, a new cloud-based email service that looks to wage war for corporate email marketshare with the likes of Microsoft Exchange, Exchange Online/Office 365, and Google's Gmail. In a post on the Amazon Web Services blog, AWS Chief Evangelist Jeff Barr stressed that Amazon WorkMail was designed to work with existing desktop and mobile clients, and that it would work with mobile clients via Microsoft's Exchange ActiveSync protocol. Perhaps of particular interest for mid- to large enterprises is WorkMail's support for a variety of directory services. "If your organization already has a directory of its own, WorkMail can make use of it via the recently introduced AWS Directory Service," Barr wrote. "If not, WorkMail will use Directory Service to create a directory for you as part of the setup process. " Simplicity and Security Ovide reports that Amazon is stressing "simplicity of use and security" as the key selling points for WorkMail, and that the service will optionally allow IT administrators to use Microsoft Outlook as a front-end for the email service, an approach that Google supports as well with Gmail. Kepes writes that WorkMail will also provide such enterprise communication... --- ### PowerShell Problem Solver: Importing CSV Files Revisited > Learn more about importing a CSV file in PowerShell, including use of the Import-CSV and Get-Content cmdlets for file importing. - Published: 2015-01-28 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-importing-csv-files-revisited/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver, Scripting - Article Type: How To Jeff Hicks revisits a previous article on importing a CSV file in PowerShell and offers some additional improvements, including use of the Import-CSV and Get-Content cmdlets. In my previous article, I guided you through the potential pitfalls of importing a CSV file in PowerShell. If everything in your CSV file can be treated as a string, then you shouldn't have any issues. But it's more than likely that you will have some properties that need to be treated as integers or dates. As promised, there's another technique, albeit a little advanced. This is a great technique for when you're inserting the same type of CSV file repeatedly. Let's go back to my testdata. csv file. "Date","Name","Service","Key","Size","Test" "11/18/2014 6:45:30 AM","Data_1","ALG","","25","false" "11/18/2014 2:17:30 AM","Data_2","AppIDSvc","2","-30","false" "11/17/2014 11:57:30 PM","Data_3","Appinfo","3","42","true" "11/17/2014 11:21:30 AM","Data_4","AppMgmt","4","-7","true" "11/17/2014 11:33:30 AM","Data_5","aspnet_state","","28","true" "11/16/2014 8:51:30 AM","Data_6","AudioEndpointBuilder","6","35","false" "11/16/2014 6:00:30 PM","Data_7","AudioSrv","7","12","false" "11/16/2014 3:41:30 AM","Data_8","AxInstSV","8","","true" "11/16/2014 11:39:30 AM","Data_9","BDESVC","9","32","true" "11/16/2014 11:03:30 PM","Data_10","BFE","10","15","false" "11/18/2014 4:03:30 AM","Data_11","BITS","11","28","true" "11/15/2014 7:57:30 AM","Data_12","Browser","12","31","true" "11/14/2014 12:23:30 PM","Data_13","bthserv","13","16","true" "11/17/2014 10:49:30 PM","Data_14","CertPropSvc","14","-39","false" "11/14/2014 5:33:30 AM","Data_15","cfWiMAXService","15","20","true" "11/13/2014 12:13:30 AM","Data_16","clr_optimization_v2. 0. 50727_32","16","42","true" "11/15/2014 10:54:30 PM","Data_17","clr_optimization_v2. 0. 50727_64","17","28","true" "11/16/2014 11:57:30 PM","Data_18","clr_optimization_v4. 0. 30319_32","18","-45","true" "11/14/2014 2:38:30 AM","Data_19","clr_optimization_v4. 0. 30319_64","19","24","true" "11/11/2014 11:13:30 AM","Data_20","cmdAgent","20","44","true" "11/16/2014 1:33:30 AM","Data_21","COMSysApp","21","24","true" "11/17/2014 8:37:30 AM","Data_22","ConfigFree Gadget Service","22","41","true" "11/11/2014 6:28:30 PM","Data_23","ConfigFree Service","23","33","true" "11/13/2014 4:45:30 PM","Data_24","CryptSvc","24","47","true" "11/9/2014 6:28:30 PM","Data_25","CscService","25","26","true" Let's say I get a new version of this file daily and want to do something with it in PowerShell. Reverting back to Import-CSV, I can see that everything is a string. ​$data = import-csv C:scriptstestdata. csv Using Import-CSV in Windows PowerShell. (Image Credit: Jeff Hicks)   But I need the properties to be treated like this: Date Key Name Service Size Test What I need to do is to create a custom... --- ### Apple Sold 74.5 Million iPhones in Q4 2014 > Well, it's official: Apple is now the iPhone company. The Cupertino consumer electronics giant sold an astonishing 74.5 million iPhones in Q4 2014. - Published: 2015-01-27 - Modified: 2015-01-27 - URL: https://petri.com/apple-sells-74-5-million-iphones-q4-2014/ - Categories: Mobile - Tags: Apple, iPhone, News - Article Type: News Well, it's official: Apple is now the iPhone company. The Cupertino consumer electronics giant sold an astonishing 74. 5 million iPhones in the final quarter of 2014, up from 51 million in the same quarter a year ago. But aside from that astonishing rate of growth—all the more impressive given the maturity of the product line—fully two-thirds of Apple's revenues now come from iPhone alone. "We'd like to thank our customers for an incredible quarter, which saw demand for Apple products soar to an all-time high," Apple CEO Tim Cook said in a prepared statement. "Our revenue grew 30 percent over last year to $74. 6 billion, and the execution by our teams to achieve these results was simply phenomenal. " The one misstep for Apple was iPad: Yes, the firm sold 21 million iPads in Q4, but that was down from 26 million units in the same quarter a year ago, and revenues from iPad fell from $11. 5 billion to $8. 9 billion. Apple sold fewer iPads in 2014 than it did in 2013, and it sold fewer iPads in each of the previous three quarters than it did a year ago. Mr. Cook said that the refresh cycle for iPad was "longer" than that for iPhone, but that it was still a "strong business" for Apple. Aside from iPad, Apple's quarter was indeed magical. "This volume is hard to comprehend," Mr. Cook said about iPhone sales in a post-earnings conference call. Apple sold 34,000 iPhones... --- ### Microsoft Updates Power BI, Launches Free Version, Teases Power BI Pro > Microsoft updates Power BI in an attempt to make business intelligence more approachable and to make it easier for companies to "adopt a data culture." - Published: 2015-01-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-power-bi-launches-free-version-teases-ower-bi-pro/ - Categories: Cloud Computing - Tags: News, Power BI, Power BI Pro - Article Type: News In an effort to make Business Intelligence more approachable, Microsoft announced that it plans to update its Power BI service and roll out a new Power BI Pro version. When it comes to industry buzzwords, several phrases have entered the collective consciousness of IT administrators over the years: Virtualization. BYOD. Cloud Computing. Big Data. Business Intelligence. In nearly all cases, these phrases evolve from an early period that is characterized by lots of marketing sizzle but a woefully inadequate amount of technical and operational steak. All of the technologies I described above have gone through similar transitions, and Business Intelligence seems to have finally grown into something that has some meat on its bones. Nothing demonstrates that progression more than Microsoft's news this morning about its Power BI Business Intelligence service, which included a revamped Power BI offering that will be available as a free trial when it launches later this year. In addition, Microsoft announced PowerBI Pro, an enterprise-friendly version of Power BI that will boast more data capacity, Active Directory integration, and other features required by businesses and lather enterprises. The new Power BI will support data collection from a variety of sources, including Excel workbooks, SQL Server, GitHub, Marketo, Microsoft Dynamics CRM, and other sources. (Image Credit: Jeff James) In a Microsoft blog post announcing today's news, Microsoft's James Philips, General Manager for Data Experiences, stressed Microsoft's attempts to bring Business Intelligence to a wider audience of users. "Today is an incredibly exciting day as we unveil the new Power BI – a service we believe will fundamentally transform the 'business of business intelligence,'" Philips writes. "Power BI can help every company adopt... --- ### Choosing Between Azure VM Series > This article is a guide for choosing between Choosing Between Azure VM Series, including A- (Basic and Standard), D-, DS-, and D-series virtual machines. - Published: 2015-01-27 - Modified: 2024-09-04 - URL: https://petri.com/choosing-azure-vm-series/ - Categories: Microsoft Azure - Tags: Editor's Pick, Microsoft - Article Type: How To Need help in choosing between Azure VM series? Aidan Finn gives us a run-down of the different VM sizes and how to choose between them. There was a time when it was easy to pick a kind of Azure virtual machine; you could have an A-series VM of this spec, or an A-Series VM of another spec. Over time, Microsoft has released new kinds of virtual machines. We have seen the A-series grow, and then we got D-series and G-series virtual machines. All offer something different and it can be confusing for Azure novices to figure out which one is right for their current deployment. I will look at each series of virtual machine in this article, and this should help you determine when each is appropriate for your employer or customers. Please note that Microsoft is constantly changing Azure and that this article could be made out of date within hours of being published. The Azure pricing guide for virtual machines is the best place to start looking for information. You can get more in-depth information on MSDN. I have not included pricing because that is time, region and currency dependent. An Overview There are currently four series of virtual machine that you can deploy: A-series: The “normal” virtual machine D-Series: For those seeking faster caching DS-series: Able to use SSD storage for the OS and data G-series: The “Godzilla” virtual machine with large allocations of RAM Note that the A series does have a pair of specifications that are referred to as “network optimized”. When you deploy an Azure virtual machine, all resources are assigned to the virtual machine. Hyper-V... --- ### How to Copy Files between Hyper-V Host and Guests with PowerShell > Jeff Hicks shows us how to use PowerShell to easily copy files between the Hyper-V host and guest virtual machines. - Published: 2015-01-26 - Modified: 2024-09-04 - URL: https://petri.com/copy-files-hyper-v-host-guest/ - Categories: Hyper-V - Tags: Advanced, Editor's Pick, Hyper-V, Scripting - Article Type: How To Jeff Hicks shares a tip for using PowerShell to easily copy files between the Hyper-V host and guest virtual machines. Copying files to Hyper-V virtual machines wouldn't seem like a big deal. In most situations, the virtual machine is no different than a physical machine on your network. You could copy files to a virtual machine using traditional methods like you would any other machine, but sometimes that isn't possible. Fortunately, there is an alternative. If you are running the latest version of Hyper-V on either Windows Server 2012 R2 or Windows 8. 1, which implies that you're running PowerShell 4. 0, then you have access to a new cmdlet in the Hyper-V module called Copy-VMFile. I'm going to demonstrate how to use this cmdlet, but be sure to take time to read the help. ​help Copy-VMFile -ShowWindow Copy-VMFile help in Windows PowerShell. (Image Credit: Jeff Hicks)   I'm first going to demonstrate from my Windows 8. 1 client that's running Hyper-V. The Guest Services feature of VM Integration Services must be enabled on any guest virtual machines in order to use this cmdlet. Here's how you can verify if that feature is enabled: ​Get-VMIntegrationService -name Guest* -VMName chi-dc01,chi-dc02,win10preview Verifying that the Guest Services feature is enabled in Windows PowerShell. (Image Credit: Jeff Hicks)   The service on CHI-DC01 is all set. It is enabled on CHI-DC02, but notice that the status indicates no contact. That particular virtual machine needs to be updated so that I can install the latest VM Integration Services. Until I get a connection for Guest Services, I won't... --- ### Microsoft Delivers Another Blockbuster Quarter > Microsoft on Monday announced operating income of $7.8 billion on revenues of $26.5 billion for the quarter ended December 31, 2014. - Published: 2015-01-26 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-delivers-another-blockbuster-quarter/ - Categories: Windows Client OS - Tags: Editor's Pick, News - Article Type: News Microsoft on Monday announced another blockbuster quarter, with operating income of $7.8 billion on revenues of $26.5 billion for the quarter ended December 31, 2014. Microsoft on Monday announced net income of $5. 86 billion on revenues of $26. 5 billion for the quarter ended December 31, 2014. These results include $243 million of integration and restructuring expenses, Microsoft said, but were higher than analyst expectations regardless. "Microsoft is continuing to transform, executing against our strategic priorities and extending our cloud leadership," Microsoft CEO Satya Nadella said in a prepared statement. "We are taking bold steps forward across our business, and specifically with Windows 10, to deliver new experiences, new categories, and new opportunities to our customers. " Key to this quarter was improved sales of both Windows licenses to PC makers and Xbox consoles. But both products were also impacted by price cuts, driving down revenues: Windows is now made available to PC makers for free or much less expensively than before, pushing revenues down 13 percent year-over-year. And while Xbox console sales were up in the holiday quarter—Microsoft declined to separate sales of the newer Xbox One from those of the Xbox 360—revenues in that business were down 20 percent. The entry level price of Xbox One was $350 in the quarter compared to $500 one year ago. Microsoft announced operating income of $7. 8 billion on revenues of $26. 5 billion for the quarter ended December 31, 2014. (Image: Dreamstime) Windows sales were also impacted by the expiration of Windows XP. A year ago, businesses upgraded PCs at a stronger rate than usual because Windows XP was being retired in... --- ### Create an Office 365 Group in Outlook.com > Learn how to create an Office 365 group in Outlook.com. - Published: 2015-01-26 - Modified: 2024-09-04 - URL: https://petri.com/create-an-office-365-group-in-outlook-com/ - Categories: Microsoft 365 - Tags: Outlook - Article Type: How To In this easy how-to article, Russell Smith shows us how to create an Office 365 group in Outlook.com. Microsoft recently introduced a new Groups feature to Office 365, improving on email distribution lists and Exchange public folders by allowing users to share and view a history of email communications, but also documents and access to other collaboration features. You can think of Office 365 groups as private or public workspaces, grouping users, shared conversations, a calendar, and files. Office 365 groups are available in the E1–E4 Enterprise, A2–A4 Academic, and G1–G4 Government plans, Business Essentials, Business Premium, and Office 365 Kiosk plans. In this Ask the Admin, I'll show you from a user's perspective how to create and navigate groups in Outlook. com. Office 365 groups in Outlook. com. (Image Credit: Russell Smith) Creating an Office 365 Group in Outlook. com To create a new Office 365 group, log in to Outlook. com with a standard user account and follow the instructions below: In the left pane of Outlook. com, scroll down to Groups. Click + to the right of Groups. In the Create a group dialog, give the group a name and add a description, if required. A group ID will automatically be generated when you enter a name for the group. You can edit the group ID by clicking the edit icon to the right of the Group ID box. Configure the privacy settings for the group by selecting Public or Private from the drop-down menu under Privacy. In this example, I'm going to select Private. If you'd like group... --- ### What is Microsoft Really Doing with Windows 10? > Paul Thurrott asks what Windows 10 will really do to right the Microsoft ship and ensure that this year's launch is nothing like the Windows 8 debacle. - Published: 2015-01-26 - Modified: 2015-01-26 - URL: https://petri.com/microsoft-really-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick, News - Article Type: Opinion Microsoft received a lot positive press for its Windows 10 event last week, but maybe it's time for someone to ask the hard questions. While Microsoft is still basking in the glow of the nearly-universal positive reception to last week's Windows 10 event, much of the focus so far has been on improvements for traditional PC users and, of course, starry-eyed reports about HoloLens, a product so forward-leaning that it can make us temporarily forget that the software giant is still losing big in the areas covered by its "mobile first, cloud first" mantra. So what will Windows 10 do to right the Microsoft ship and ensure that this year's launch is nothing like the Windows 8 debacle? To understand what Microsoft is doing, I think it makes sense to parse the words of Microsoft CEO Satya Nadella, who capped last week's Windows 10 event by aping my plea that the company adopt a "mobile first, cloud first, Windows best" strategy. And in doing so, he finally spoke the words so many in the Windows ecosystem wanted to hear: yes, Microsoft is pushing a cross-platform approach. But contrary to the events of last year--when the firm seemed to focus almost exclusively on Android and iOS in the mobile space--it will also work to ensure that those who stick with Windows will get the best experience. This declaration was part of what Mr. Nadella said were three touchstones to Microsoft's strategy for Windows 10: Windows as a service, Windows and mobility, and Windows and cross-platform. So let's look at each of these in turn. Windows as a service Mr. Nadella referred to... --- ### Paul Thurrott's Short Takes: January 23, 2015 > In this first installment of Paul Thurrott's Short Takes: A quick thanks, Surface 2 finally sells out, and putting Windows 8 and Surface RT/2 in perspective. - Published: 2015-01-23 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrott-short-takes-january-23-2015/ - Categories: Windows 10 - Tags: Short Takes - Article Type: Opinion In this week's other news, a quick thanks, Surface 2 finally sells out, putting Windows 8 and Surface RT/2 in perspective, Build 2015 sells out in 15 minutes, and the Apple Watch will run out of juice before you leave for work in the morning. In this week's other news, a quick thanks, Surface 2 finally sells out, putting Windows 8 and Surface RT/2 in perspective, Build 2015 sells out in 45 minutes, and the Apple Watch will run out of juice before you leave for work in the morning. A Quick Thanks It's been a whirlwind week, and I'm not just talking about Microsoft's little Windows 10 event on Wednesday. Last Saturday, we launched thurrott. com, and I've been blown away by the support both from readers and from my new coworkers and friends at Blue Whale Web and the Petri IT Knowledgebase. This was a big decision for me, but I clearly made the right choice. And as exciting as Windows 10 is, the site launch was clearly the biggest news of the week... at least for me. Thanks everyone. –Paul "HoloLens: Microsoft Finally Does Something Interesting" Irony alert: This was published in "The New Yorker. " "And as exciting as Windows 10 is, the site launch (of Thurrott. com) was clearly the biggest news of the week ... at least for me. " Surface 2, um, "sells out" Just a day after Microsoft ham-handedly revealed that it would not provide Windows 10 to its Windows RT-based Surface tablets, the current-generation version, Surface 2, suddenly disappeared from Microsoft's online store. Well, the product can still be seen in the store, but all three models—32 GB, 64 GB, and 64 GB with LTE—are listed as "out of stock. " Since it's inconceivable there... --- ### Has Microsoft Changed their Image? > Aidan Finn analyzes the recent Windows 10 event and how Microsoft has managed to change their image with a slew of announcements. - Published: 2015-01-23 - Modified: 2024-09-04 - URL: https://petri.com/has-microsoft-changed-their-perception/ - Categories: Windows 10 - Tags: Microsoft HoloLens, News, Xbox, Xbox One - Article Type: Opinion The recent Windows 10 media event has tech enthusiasts excited about Microsoft. Is this the event that will change the perception of Microsoft going forward? Aidan Finn gives his take. Like many of you, I was struggling to find a functional live feed for this week's Windows 10 media event. Half-way through the event, I thought that Microsoft really should have used Azure's auto-scaling feature for streaming these events. I also thought that Microsoft has done nothing other than confirm what we already knew. But 48 hours later when I am writing this article, I am convinced that Microsoft has positively excited the tech enthusiast market to a level that they haven't reached in quite some time. The Perception Challenge You don’t have to be a market analysis genius to figure out that Microsoft Windows has fallen to an all-time low. Most people do not use Windows for personal use. Look at what your family, friends, workmates, and fellow commuters are using. How many are reading or playing on an iPad? How many are talking on an iPhone or Android Phone? How many Windows tablets or phones do you see? There's not too many of those Windows devices out there. Satya Nadella has confirmed that Windows has a paltry 14% market share across all devices. Windows has been relegated to the position of work machine in the mindset of most people. Gone are the halcyon days when the release of Windows 95 generated headlines and a buzz around the world, only to be replaced by news articles if there's a peep about Apple and a possibility that the company might release a new phone in a different color. And yes, even those horrendous... --- ### What about Windows Server 10? > Microsoft revealed lots of updated information on Windows 10 yesterday, but what about Windows Server 10? Russell Smith gives us his take. - Published: 2015-01-22 - Modified: 2024-11-19 - URL: https://petri.com/what-about-windows-server-10/ - Categories: Windows Server 2016 - Tags: News - Article Type: Opinion Microsoft had a lot to say about Windows 10 yesterday, but what about Windows Server 10, also known as Windows Server vNext? Russell Smith gives us an update on the state of the next Windows Server release. If you watched yesterday's Windows 10 media event online, you could be forgiven for thinking that Microsoft isn't developing a new version of Windows Server alongside Windows 10. But back in October 2014, Microsoft did release Windows Server Technical Preview -- also referred to by some as 'Windows Server vNext' -- although unlike the Windows 10 Technical Preview, it hasn't received regular updates since that time. Related: Microsoft Provides a Much More Complete Look at Windows 10 Surface Hub and HoloLens took up much of the allotted one and a half hours of yesterday's event, in addition to Joe Belfiore and others racing through new Windows 10 features, many of which will be available in next week's updated technical preview. Because of this, there evidently wasn't time to trumpet Windows Server. It's fair to expect that Microsoft will deemphasize the importance of Windows Server as a standalone product going forward. It's been clear since the release of Windows Server 2012, that much of the improved functionality is not to help you do more with less on premise, but to enable Azure. That's evidenced in the focus on networking, storage, and improvements to Hyper-V. As the primary building block for Microsoft's public, private and hybrid cloud solutions, Windows Server will take a backseat as Microsoft tries to sell Office 365 and its Azure cloud platform. Along with Windows Azure Pack for private or hybrid cloud deployments, Azure as a cloud OS is strategically more important than Windows Server as a technical enabler... . --- ### Episode 9: January 22, 2015 Guest: Rick Vanover - Published: 2015-01-22 - Modified: 2015-01-22 - URL: https://petri.com/episode-9-rick-vanover/ - Categories: Current Status Whether you have been in IT for 2 months or 20 years it is likely you have seen something that makes you go hmmm. During this episode Rick Vanover (vExpert, MCITP and VCP) will join us from VMUG in Toronto to share IT horror stories and some of the stupid things us IT admins do. The most important part, we have learned a thing or two along the way from these blunders. Follow him on Twitter @rickvanover. --- ### Microsoft Provides a Much More Complete Look at Windows 10 > Microsoft provided a complete look at Windows 10 at a media event held at their headquarters in Redmond yesterday. Paul Thurrott gives us the highlights. - Published: 2015-01-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-provides-much-complete-look-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick, News - Article Type: News Microsoft gives us a more complete look at Windows 10 at a press event held on the Microsoft campus. Paul Thurrott summarizes the highlights. As expected, Microsoft provided a lot more information about Windows 10 at a media event on Wednesday and promised to ship many of the new features to testers within the week. But the software giant also had a few surprises up its sleeve, including giant new Surface Hub conferencing systems and an innovative augmented reality headset called HoloLens. Microsoft is promising to ship many of the new Windows 10 features to testers within the week following Wednesday's media event in Redmond. (Image Credit: Microsoft) "Windows 10 is the first step to an era of more personal computing," Windows lead Terry Myerson said today. "We are moving Windows from its heritage of enabling a single device–the PC–to a world that is more mobile, natural and grounded in trust. " Myerson and his coworkers then stepped through a two-and-a-half hour presentation that piled up the news in such rapid succession that it was almost hard to keep up. But here are the highlights. Windows 10 will be a free upgrade for consumers for a limited time. In a bid to get as many users on the latest Windows version as quickly as possible, Microsoft will make Windows 10 available for free to users of Windows 7 with Service Pack 1, Windows 8. 1, and Windows Phone 8. 1. This offer will be available for the first year of Windows 10's life cycle. Windows 10 will also be a free update for Xbox One. Windows 10 is being positioned... --- ### Generate Office 365 Reports using PowerShell > Learn how to generate Office 365 Reports using PowerShell in this step-by-step tutorial by Russell Smith. - Published: 2015-01-22 - Modified: 2024-12-03 - URL: https://petri.com/generate-office-365-reports-using-powershell/ - Categories: Microsoft 365 - Article Type: How To Russell Smith shows us how to generate reports in Office 365 using PowerShell in this step-by-step tutorial. In this Ask the Admin, I’ll show you two reporting options for Office 365, including how to use Windows PowerShell to generate reports. Office 365 and its component applications, such as SharePoint and Exchange, contain reporting capabilities that can be accessed from the Office 365 web portal or using Windows PowerShell. Reporting is only available in the new Business or Enterprise family of subscription plans. If you have a Home plan, or one of the business plans that were replaced in October 2014, you may need to switch plans to get access to reporting features. Reports in the Office 365 Web Portal Let's start by looking at what's available in the web portal. Log in to the Office 365 portal and follow the instructions below: Reports in the Office 365 admin portal. (Image Credit: Russell Smith) Log in to the Office 365 portal with an administrator account. In the blue panel on the left side of the portal, expand REPORTS. Click Overview under REPORTS to see a list of most of the available reports. For usage reports, you'll need to click on Usage under REPORTS on the left. Click one of the displayed report options to run it. For example, Active and inactive mailboxes under mail. The report will displayed on a new page in the browser window. You can change the view from the default graph by clicking View table in the top right corner. To go back to the list of... --- ### PowerShell Problem Solver: Enumerating Members of Large Active Directory Groups > Jeff Hicks shows us how to go about enumerating members of large Active Directory groups using PowerShell. - Published: 2015-01-21 - Modified: 2024-09-04 - URL: https://petri.com/enumerating-members-of-large-active-directory-groups/ - Categories: Active Directory (AD) - Tags: Active Directory, Intermediate, PowerShell Problem Solver - Article Type: How To Jeff Hicks shows us how to use PowerShell to enumerate members of very large Active Directory groups. In a recent PowerShell Problem Solver article I demonstrated how you can use PowerShell to enumerate members of an Active Directory group. I believe that for most of you the code samples in that article will suffice. But as I pointed out at the end of the article, there is a potential issue with very large groups. A large group will be anything with more than 5000 members. It is still possible to enumerate these groups, but it will take a few extra steps. We will still be using the Active Directory cmdlets, but we will need to process the group members individually, especially if you want to recurse through any nested groups. I'm going to demonstrate with a group called Test Group 1 that I know has more than 5000 members, including a few nested groups. ​Get-adgroup 'Test Group 1' –properties Member | select –expandproperty Member | measure-object Enumerating members of large Active Directory groups in Windows PowerShell. (Image Credits: Jeff Hicks) The problem is that I can't use Get-ADGroupmember. Error with the Get-ADGroupmember cmdlet in Windows PowerShell. (Image Credit: Jeff Hicks) So I'll have to take matters into my own hands with a recursive function. Function Get-MyLargeGroup { Param( $Name) Begin { Write-Verbose "Starting $($MyInvocation. MyCommand)" } #begin Process { Write-Verbose "Retrieving members from $Name" $mygroup = Get-ADGroup -Identity $Name -Properties Members foreach ($member in $mygroup. members) { $object = $member | Get-ADObject -Properties samaccountname if... --- ### Microsoft: Windows 10 will be Free Upgrade for Windows 7 and Windows 8 Users > Microsoft announced today that Windows 10 will be a free upgrade for Windows 7 and Windows 8 users. - Published: 2015-01-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-windows-10-will-free-upgrade-windows-7-windows-8-users/ - Categories: Windows 10 - Tags: News - Article Type: News At a Microsoft media event held at Redmond this morning, Microsoft announced that Windows 10 would be be a free upgrade for any users running Windows 7 or Windows 8 for a full year after the launch of Windows 10. At a Microsoft media event held at Microsoft HQ in Redmond, WA this morning, Microsoft Executive Vice president Terry Myerson announced that Windows 10 would be be a free upgrade for any users running Windows 7 or Windows 8 for a full year after the launch of Windows 10. This move has been rumored for several months, but Myerson's confirmation means that Microsoft is keen to distance itself from the embarrassing debacle that Windows 8 turned out to be, and to also shore up the Windows client installed base in the face of threats from mobile devices and competing platforms from Google and Apple. Microsoft: "We think of Windows as a Service" In a post on the official Windows blog, Myerson elaborated on Microsoft's thought-process behind the free upgrade.  "This is more than a one-time upgrade: once a Windows device is upgraded to Windows 10, we will continue to keep it current for the supported lifetime of the device -- at no additional charge. With Windows 10, the experience will evolve and get even better over time. We'll deliver new features when they're ready, not waiting for the next major release. We think of Windows as a Service -- in fact, one could reasonably think of Windows in the next couple of years as one of the largest Internet services on the planet. " Microsoft's Terry Myerson discusses the free upgrade policy for Windows 10 at a media event on the Microsoft Redmond, WA campus on January 21st, 2015. (Image: Jeff... --- ### Enabling Auto-Scaling for Azure VMs > This article shows you how to implement virtual machine auto-scaling in Azure to optimize your use of Azure credit and minimize spending. - Published: 2015-01-20 - Modified: 2024-09-04 - URL: https://petri.com/enabling-auto-scaling-azure-vms/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Enabling Auto-Scaling for Azure VMs In Saving Money with Microsoft Azure Virtual Machines, I discussed how an Azure customer could save money by being carefully planning their design and deployment of virtual machines. In this article, I'll explain how you can implement one of those methods using scaling for Azure IaaS, in particular, with Azure virtual machines. Azure Virtual Machine Cost-Benefit Analysis Imagine that you are asked to deploy a service in Azure that's going to have high peak demands. The old-school method of deploying this service would be to deploy two or three virtual machines that each have a large number of processors and a large amount of RAM.  Let's figure out the cost of such an example. We need an infrastructure that can provide at least 16 cores and 112 GB RAM to meet the peak user demands. We'll allow for fault tolerance because we're careful, so we will need to allow for one machine being offline (planned or offline), but it still needs to be able to provide the required resources. The Azure Standard A7 has 8 cores and 56 GB RAM. Two of those machines offers enough resources for peak demand, and a third offers fault tolerance. Each A7 costs $1,108. 80 in the US East region in a 30-day month, so three of these machines will cost $3,326. 40 per month. Remember that's $3,326. 40 per month to provide resources for peak demand. How often does a business need to meet those demands? Aren't there natural quiet periods during the working day, not to mention after-business hours and the weekend? ... --- ### My PowerShell Troubleshooting Toolkit Expanded > PowerShell Troubleshooting Toolkit Expanded: Jeff Hicks provides even more information about how IT admins can build upon his popular PowerShell toolkit. - Published: 2015-01-20 - Modified: 2024-09-04 - URL: https://petri.com/powershell-troubleshooting-toolkit-expanded/ - Categories: PowerShell - Tags: Intermediate, Scripting - Article Type: How To Jeff Hicks returns to his PowerShell troubleshooting toolkit in this insightful how-to article. Update: January 28, 2015 – 11:00 AM MT – It has come to our attention that the original CSV file in this article unintentionally contained a malware payload. If you have already downloaded the original CSV file, you should delete it immediately. We have replaced the original CSV file with a new CSV file that is safe to download. As a gentle reminder, please test and scan downloads in a non-production environment before using. Sincerely, the Petri IT Knowledgebase editorial staff. Original post below. A few months ago I posted a few articles on how to use PowerShell to build a troubleshooting toolkit. If you're like me, then you're often called upon to troubleshoot a computer problem. The call may come as part of your official job, or you may enjoy the privilege of being the resident expert for your family or neighborhood, which is certainly true in my case. Since writing this article series, I've revised my PowerShell tools, so let's take a look. Related: Build a Troubleshooting Toolkit Using PowerShell  Originally, I showed you a few different ways to build a toolkit. I'm not going to rehash that in this article. Personally, I think it is better to separate the download tool from the list of files. Stated differently, it's much smarter to maintain the list of tools separately, rather than hard coding the list of tools. I use a CSV file for this, and this is the most current version of the CSV file that I use. You should save... --- ### All Eyes on Redmond with Windows 10 on the Horizon > Paul Thurrott discusses the significance of this week's Windows 10 event and why he thinks this new OS version from Microsoft will be its best yet. - Published: 2015-01-20 - Modified: 2015-01-20 - URL: https://petri.com/redmond-windows-10-horizon/ - Categories: Windows 10 - Tags: News - Article Type: Opinion Learn why you should tune into this week's Windows 10 event, along with Paul Thurrott's thoughts on why he thinks the new OS from Microsoft will be its best yet. On Wednesday, Microsoft will host the media for a day-long drill-down of the eagerly-awaited Windows 10 at its Redmond, Washington campus. While this isn't our first look at the new OS, it will by far be the most detailed, and the company will for the first time explain how this system will work on smartphones, tablets and other devices, in addition to PCs. And if you were burned by the lackluster Windows 8, you might want to stay tuned to this event. And stay tuned you can: I'll be live-tweeting from the event via my Twitter feed, and Microsoft will live-stream the group briefing portion of the event starting at 9 am PT/12 pm ET. You can find out more about this event from my post Watch the Windows 10 Consumer Event Live Online. In the unlikely event that you don't understand the significance of Windows 10, I think I can explain it pretty easily: Windows releases have become somewhat like "Star Trek" movies where every other one is well-received, but the others are garbage. And we're coming off what is clearly the worst release ever. Let's review. After years of delays, Microsoft finally shipped Windows Vista to stunned customers in late 2006, but then followed it up with the acclaimed Windows 7 release in 2009, fixing bugs and performance issues, and cleaning up the user experience. But the 2012 Windows 8 release was Microsoft's biggest clunker of all, a nearly universally-disdained melding of mobile and desktop... --- ### It's Official: Samsung Will Not Acquire Blackberry > Samsung denied reports that it would purchase Blackberry and says that it will instead seek to expand an existing partnership with the struggling firm. - Published: 2015-01-19 - Modified: 2024-09-04 - URL: https://petri.com/samsung-will-not-acquire-blackberry/ - Categories: Mobile - Tags: BlackBerry, MDM, News, Samsung - Article Type: News Samsung denied reports that it would purchase Blackberry and says that it will instead seek to expand an existing partnership with the struggling smartphone maker. A week ago, a news report indicating that Samsung would purchase struggling smartphone maker Blackberry for $7. 5 billion sent stock in the latter company surging by 30 percent. But it's not true, Samsung co-CEO J. K. Shin now says. Instead, Samsung intends to expand its existing partnership with Blackberry. "We want to work with BlackBerry and develop this partnership, not acquire the company," Mr. Shin told the Wall Street Journal. A Samsung/Blackberry tie-up was expected to bolster Samsung against increasingly powerful competitors via Blackberry's $1. 43 billion patent portfolio and enterprise products and services. But Shin contends that Samsung has already seen great success with the enterprise thanks to its Knox security technology, which Google has integrated into the latest version of Android, version 5. 0. The Samsung Knox mobile security platform was integrated into the latest version of Google Android. (Image: Samsung) "We are satisfied with the progress of Knox, including the quality of security and protection that it enables, and remain committed to Knox over the long term," Shin told the Wall Street Journal. Knox is designed to sandbox business apps and data against electronic snooping. But as that semi-defensive quote implies, this technology hasn't helped Samsung obtain any major enterprise contracts so far. And compared to Blackberry's strong relationship with businesses, governments, and other security-conscious entities, Knox remains more theory than successful business. Even the Android integration is essentially a Samsung contribution, and not a revenue-generating partnership. As for... --- ### Create and Manage Azure Active Directory Administrative Units > Learn how to create and manage Microsoft Azure Active Directory Administrative Units, which can be used to limit the scope of administrative roles. - Published: 2015-01-19 - Modified: 2024-11-19 - URL: https://petri.com/create-manage-azure-active-directory-administrative-units/ - Categories: Microsoft Azure - Tags: Azure Active Directory - Article Type: How To Azure Active Directory Administrative Units are a great way to limit the scope of administrative roles. Learn how to create and manage them in this how-to article by Russell Smith. Administrative Units (AUs) are logical entities that allow Azure Active Directory (AAD) tenant administrators to limit the scope of AAD administrative roles, such as User Account Administrator. Still in public preview at the time of this writing and only available as part of an AAD Premium subscription, the ability to limit the scope of administrative roles gives tenant administrators greater flexibility when assigning permissions. In this article, I'll walk you through upgrading to an Azure AD Premium trial and show you how to create and manage Administrative Units with PowerShell so that you can limit the scope of administrative roles to specific AUs. Upgrading to AAD Premium You'll need to upgrade to AAD Premium before it's possible to use Administrative Units. If you don't already have a premium subscription, you can upgrade to a trial by following the instructions below. Open the Azure management portal and sign in: In the blue panel on the left, scroll down and click ACTIVE DIRECTORY. On the right of the portal, click the AD that you want to upgrade. In the GET STARTED section, click Try it now under Get Azure AD Premium. You'll be redirected to the Licenses tab. Click TRY AZURE ACTIVE DIRECTORY PREMIUM NOW. In the Activate Azure AD Premium trial dialog, click OK to confirm that you want to enable the 90-day trial. You might need to wait a few minutes while the trial is set up. Upgrading to Azure Active Directory Premium... . --- ### British Man Arrested in Connection with Xbox Live, PSN Attacks > Paul Thurrott discusses the arrest of a British man in connection with of the Christmas Day 2014 DDoS attacks on Xbox Live and PlayStation Network. - Published: 2015-01-19 - Modified: 2015-01-19 - URL: https://petri.com/british-man-arrested-connection-xbox-live-psn-attacks/ - Categories: Security - Tags: Lizard Squad, News, Xbox, Xbox One - Article Type: News In his first news post for the Petri IT Knowledgebase, Paul Thurrott discusses the arrest of a British man in connection with of the Christmas Day 2014 DDoS attacks on Xbox Live and PlayStation Network. Editor's Note: This is the first news story to be published on Petri. com by Paul Thurrott, who recently joined the Petri IT Knowledgebase editorial team as News Director and launched his new tech news site at Thurrott. com. Please join us in welcoming Paul to the Petri team. - Jeff James, Editorial Director  - - - A UK man was arrested on Friday in connection with of the Christmas Day 2014 distributed denial-of-service (DDoS) attacks on Microsoft's Xbox Live and Sony's PlayStation Network. The arrest was the result of a joint investigation between the Federal Bureau of Investigation (FBI) and three UK-based cyber-crime units. "This investigation is a good example of joint law enforcement cooperation in relation to a type of criminality that is not restricted by any geographical boundaries," said Craig Jones, the head of the UK-based Cyber Crime Unit of the South East Regional Organized Crime Unit (SEROCU). "We are still at the early stages of the investigation and there is still much work to be done. We will continue to work closely with the FBI to identify those to who commit offences and hold them to account. " The 18-year-old man was arrested in Southport, near Liverpool in Northwest England. He is accused of "unauthorized access to computer material, unauthorized access with intent to commit further offences and threats to kill" related to the Xbox Live and PSN denial-of-service attacks, and of an offense called "swatting. " Swatting, a SEROCU statement notes, is "a term used to describe criminal activity by... --- ### Paul Thurrott Joins the Petri IT Knowledgebase, Launches Thurrott.com > SuperSite for Windows founder Paul Thurrott has joined the Petri IT Knowledgebase and partnered with Petri publisher Blue Whale Web to launch Thurrott.com. - Published: 2015-01-16 - Modified: 2024-09-04 - URL: https://petri.com/paul-thurrott-joins-petri-knowledgebase-launches-thurrott-com/ - Categories: Windows Server - Tags: Editor's Pick, News - Article Type: News We're happy to announce that SuperSite for Windows founder Paul Thurrott has joined the Petri IT Knowledgebase in addition to launching an all-new tech site at Thurrott.com. More than 17 years ago, Paul Thurrott launched the SuperSite for Windows, an independent tech news site that eventually became one of the leading destinations on the internet for information and news about Microsoft, Windows, and lots of other IT and tech topics. I'd wager that most Petri readers have read Paul's work before, and I'm happy to announce that Paul has joined the Petri IT Knowledgebase editorial team, in addition to partnering with Petri publisher Blue Whale Web to launch an all-new tech news site at www. Thurrott. com. From WinInfo Daily Update to the SS Sashimi I first met Paul when I joined Windows IT Pro magazine as a senior editor in the spring of 2007. One of the first tasks of any new editor at Windows IT Pro in those days was to edit Paul's WinInfo Daily Update email newsletter, so I quickly became familiar with Paul's writing style, an approach that seamlessly blended information and opinion into addictively readable content. Related: Paul Thurrott's Welcome to Thurrott. com I moved on to other roles and responsibilities during my time at Windows IT Pro, spent some time at Microsoft TechNet Magazine, and then eventually ended up here at the Petri IT Knowledgebase. I continued to run into Paul over the years, and it was always clear that Paul was -- and remains -- one of the leading voices covering the tech industry, especially when it comes to Microsoft. The ubiquitous Paul Thurrott coffee cup, now bearing the logo from his all-new site at Thurrott. com, launched in... --- ### Use PowerShell to Create and Assign Licenses to Office 365 Users > Russell Smith shows us how to use PowerShell to create and assign licenses to Office 365 users. - Published: 2015-01-16 - Modified: 2024-12-03 - URL: https://petri.com/use-powershell-create-assign-licenses-office-365-users/ - Categories: Microsoft 365 - Tags: Azure Active Directory - Article Type: How To Russell Smith walks us through how to use PowerShell to create and assign licenses to Office 365 users in this helpful tutorial. In this easy Ask the Admin, I’ll show you how to list, create, and assign licenses to your Office 365 users with Windows PowerShell. Before you can use PowerShell to manage Office 365 users, you'll need to make sure that Microsoft Online Service Sign-in Assistant for IT Professionals RTW, and either Azure Active Directory Module for Windows PowerShell (32-bit version) or Azure Active Directory Module for Windows PowerShell (64-bit version) are installed on your management PC. For more detailed information on setting up PowerShell to manage Office 365, see How to Install the Windows PowerShell Cmdlets for Windows Azure AD and Office 365 on the Petri IT Knowledgebase. Once you've gone through all the stops listed above, we're ready to get started. I'll step you through the process, starting with connecting to Office 365. 1. Connect to Office 365 Once your management PC is configured, open a PowerShell prompt by switching to the Start menu, type powershell and then click Windows PowerShell in the search results. In the PowerShell window, run the following command and press ENTER: ​ In the pop-up window, enter your Office 365 tenant credentials, and click OK. This will authorize you to access and administer your Office 365 subscription. 2. List Users To get a list of all your Office 365 user accounts, use the get-msoluser cmdlet. Running the cmdlet without any parameters will return a list of all the users in your Office 365 subscription. Keep in mind that there's a limit of 500 results unless you... --- ### How to Prevent Forwarding or Replying to all Recipients in Outlook > Daniel Petri shows how the NoReplyAll add-in can help prevent forwarding or replying to all recipients in Outlook for your email items. - Published: 2015-01-16 - Modified: 2024-12-03 - URL: https://petri.com/prevent-forwarding-replying-recipients-outlook/ - Categories: Office - Tags: Editor's Pick - Article Type: How To Here's a helpful tip for when you want to restrict replying or forwarding to all recipients for your email items in Microsoft Outlook. A developer at Microsoft Research named Gavin Smyth in Cambridge, UK, has created a neat, but little-known Outlook add-in utility called NoReplyAll that prevents people from replying to all the recipients of a message or forwarding it. The add-in uses a facility built into Outlook and Exchange that's more lightweight than Information Rights Management (IRM) and doesn't require any type of back-end configuration from the IT department. Using the NoReplyAll Add-In After installation, it adds a few buttons to the Outlook ribbon that allows a user to control the recipient's ability to reply to all recipients in your email message, forward it, and so on. The add-in also includes a check for common email errors, such as omitting attachments or subject lines. Note: Although this feature is handy for people working mostly with email that is internal to the same organization, it does not work for external recipients that are using other email clients. In addition, the recipient may enable or change these settings if they want to, even without the permission of the sender. This means that this type of mechanism is very weak and only partially useful and shouldn't be used if there is true need to restrict distribution of email messages (for legal reasons, for example). If you want a mechanism for protecting your emails in a much more secure and robust manner, then use the IRM facilities that Exchange Server offers. As stated above, IRM is a much more robust technology that is integrated with Exchange Server 2010/2013 and Active Directory... . --- ### A Cipher Best Practice: Configure IIS for SSL/TLS Protocol > Here's an easy solution for configuring protocol orders and ciphers, which eliminates the need for a tedious and manual implementation. - Published: 2015-01-15 - Modified: 2024-11-19 - URL: https://petri.com/cipher-best-practice-configure-iis-ssl-tls-protocol/ - Categories: Security - Article Type: How To Daniel Petri shares a tool that makes it easy to configure protocol orders and ciphers without the need for manual and tedious work. Microsoft released a patch on November 11 to address a vulnerability in SChannel that could allow remote code execution. This patch included four new cipher suites for Windows Server versions 2003 through 2012 R2. Previously only Windows Server 2012 R2 had these cipher suites. On November 16, Microsoft updated the advisory stating that they found an issue with the new cipher suites they introduced. On November 18, Microsoft updated MS14-066 to remove the cipher suites from the default cipher suite list for Windows 2008 R2 and Windows 2012. Windows 2012 R2 does not get the update. Microsoft has explained how to do this manually. The full list of cipher suites that are supported  is also outlined by Microsoft. In addition, you can also follow these steps to manually enable these changes.   If you want to get the full list, read on. If not, skip to the next section. The best practices cipher suite order: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P521 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P521 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P521 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P384 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P521 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P384 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P256 TLS_RSA_WITH_AES_256_GCM_SHA384 TLS_RSA_WITH_AES_128_GCM_SHA256 TLS_RSA_WITH_AES_256_CBC_SHA256 TLS_RSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_128_CBC_SHA256 TLS_RSA_WITH_AES_128_CBC_SHA TLS_RSA_WITH_3DES_EDE_CBC_SHA The default cipher suite order: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P521 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P521 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P521 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P384 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P521 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P384 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P256 TLS_RSA_WITH_AES_256_GCM_SHA384* TLS_RSA_WITH_AES_128_GCM_SHA256* TLS_RSA_WITH_AES_256_CBC_SHA256 TLS_RSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_128_CBC_SHA256 TLS_RSA_WITH_AES_128_CBC_SHA TLS_RSA_WITH_3DES_EDE_CBC_SHA TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384_P521 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384_P384 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P521 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P384 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384_P521 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384_P384 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P521 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P384 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P256 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P521 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P384 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P256 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P521 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P384 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 TLS_DHE_DSS_WITH_AES_256_CBC_SHA TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 TLS_DHE_DSS_WITH_AES_128_CBC_SHA TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA TLS_RSA_WITH_RC4_128_SHA Note: Windows Server 2003 doesn't support the reordering of SSL cipher suites offered by IIS. However, you can still disable weak protocols and ciphers. Also, Windows Server 2003... --- ### Episode 8: January 15, 2015 Guest: Stefanie Holland - Published: 2015-01-15 - Modified: 2024-11-19 - URL: https://petri.com/episode-8-stefanie-holland/ - Categories: Current Status Security breaches, cloud privacy and data loss have been a hot topic of concern for many business in 2014 for not only IT departments but also the legal departments of these businesses. How is the business impacted and what legal concerns do they need to be aware of? Join us as we chat with our special guestStefanie Holland, who is an Assistant General Counsel of Harsco Corporation, to discuss the risk and legal concerns in regards to the enterprise data. * *Please Note: This guest for this episode is NOT providing legal advice and anyone with legal questions should contact an attorney. --- ### Saving Money with Microsoft Azure Virtual Machines > Learn several different methods for saving money with Azure, where Aidan Finn provides tips on reducing the cost of running VMs and staying within budget. - Published: 2015-01-15 - Modified: 2024-09-04 - URL: https://petri.com/saving-money-azure-virtual-machines/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: Overview Land your next job promotion by following this helpful advice from Aidan Finn for reducing the cost of virtual machines running in Azure. In this article I will look at some methods you can employ to save money when you deploy virtual machines into Microsoft Azure. The Cloud is Cheaper One goal that an IT director is tasked with when moving to the cloud is to save money. Quite honestly, you can't do a simple calculation to determine how much money you will save when moving a server or virtual machine to Azure. This is also true if you're looking at AWS or Google for that matter. When you run the numbers, the cost of an Azure virtual machine over 12 months is more expensive than an equivalent physical server, with the cost of that server being spread over three years. But there are a few things to consider about the real cost of that equivalent server: Windows licensing: Have you included the cost of Windows Server licensing?  Remember that the Azure virtual machine comes with a per-processor license, so you don't need any device or user CALs to access it. That's pretty important for anyone switching from a down-level operating system, such as Windows Server 2003, to a more up-to-date OS running in Azure. Power: You don't have to pay for the electrical costs of running anything in Azure. That's a relief because electricity is a significant cost to the business, and computer rooms draw a lot of that power, both to power the servers, network, and storage, and to cool the computer room. Facilities: You will need a lot less floor space... --- ### Open a Command Prompt in Full Screen in Windows 10 > Learn how to easily open a command prompt in a full screen window in Windows 10. - Published: 2015-01-14 - Modified: 2024-09-04 - URL: https://petri.com/open-command-prompt-full-screen-windows-10/ - Categories: Windows 10 - Article Type: How To Daniel Petri shares a quick tip on how to easily open a command prompt in a full-size window in Windows 10. In previous versions of Microsoft Windows, you could open the command prompt in a full screen, which allowed some old DOS applications to function this way. For example, Windows XP had an option in the command prompt properties that allowed you to run it in a full screen. Note: This article was written during the Windows 10 Technical Preview build phase. The Windows XP 'Command Prompt' Properties window. (Image: Daniel Petri) However, in Windows Vista -- was there such an operating system? I cannot remember :-) -- you could no longer enter full screen in command prompt. This was due to the fact that display device drivers stopped the support for running all DOS video modes, which is why we had to settle with a resizable window. In Windows 8, if you look at the command prompt properties, you can clearly see that the option to run it in full screen is no longer present. The Windows 8 Command Prompt Properties window. (Image: Daniel Petri) With Windows 10 now, Microsoft has brought the ability to open the command prompt in a full screen. How to Open a Command Prompt in Full Screen in Windows 10 To use the command prompt in full screen in Windows 10, do the following: 1. Open a new command prompt window by launching the appropriate shortcut from the Start menu or page. You can also type "cmd" and press Enter into the Start menu search box. Your command prompt should launch as usual in a... --- ### The Perils of Working from Home > If you are thinking about working from home, here are a few points that you should consider before you make the move permanent. - Published: 2015-01-14 - Modified: 2024-09-04 - URL: https://petri.com/perils-of-working-from-home/ - Categories: Mobile - Article Type: Opinion Russell Smith shares some practical advice if you're considering to work from home before you decide to make the move permanent. I’m a true believer in allowing people to work in whatever way is most effective for them. But working from home isn't always as idyllic as it might first appear. Here are just a few factors that you should consider before leaving the office behind for good. Do you have room for a home office? Do you have a space in your home that's suitable for use as a workplace? You will need a desk and a good ergonomic chair. Uniform lighting and access to natural daylight are important if you plan to work at home for long periods, as is a good monitor that can be adjusted to the right height and angle. You will probably need air conditioning during the summer months. A reliable Internet connection is a must, but you will also need access to IT resources that we take for granted in the office, such as printers, scanners, and access to storage. Working at home can increase worker productivity, but there are other factors to consider. Like screaming babies, for one. (Source: Dreamstime) Over the last few years, my cat has eaten several notebooks and cell phone charger cables, and one of those difficult-to-find USB cables for attaching external hard drives, so make sure that your home office is cat, dog, and child proof. Are you self-disciplined about getting things done? You don't have the boss breathing down your neck, walking past your desk every five minutes to check that... --- ### PowerShell Problem Solver: Delete Empty Folders with PowerShell > Learn how to delete empty folders with PowerShell by using the GetFiles() method. - Published: 2015-01-14 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-delete-empty-folders/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver, Scripting - Article Type: How To Jeff Hicks shows us how to easily delete empty folders with PowerShell in this step-by-step tutorial. Managing files and folders is a never ending task, where I frequently see a common question on how to delete empty folders. Actually deleting a folder is very easy in PowerShell. The real question is how do I identify empty folders? Let's take a look. First, we'll assume you are searching for folders from a given root. ​$root = "C:Work" Beginning with PowerShell 3. 0, you can easily filter files or folders. This will get all of the root or top-level folders. ​dir $root -Directory Grabbing a list of top-level file folder. (Image Credit: Jeff Hicks)   Or I can get all directories. ​dir $root –Directory –recurse | Select Fullname Filtering for all directories in Windows PowerShell. (Image Credit: Jeff Hicks)   Now that I know the directories, all I need to do is find directories that contain files. I am going to assume that if a folder contains an empty subfolder, then both can be deleted. The easy way to identify if a folder contains a file is to list files. A folder object has a GetFiles method. If the method returns any files, I can interpret that as True. ​dir $root -Directory -recurse | where { $_. GetFiles} | Select Fullname Thus, these folders are not empty. Testing if folders contain an item with GetFiles in Windows PowerShell. (Image Credit: Jeff Hicks)   To turn this around all I need to do is use the –Not operator. ​dir $root -Directory... --- ### A Great Free Tool for Finding Disabled and Inactive Active Directory User Accounts > Use this free tool from Quest Software, now part of Dell, to find disabled and inactive Active Directory user accounts with PowerShell. - Published: 2015-01-13 - Modified: 2024-11-19 - URL: https://petri.com/go-quest-find-disabled-inactive-active-directory-user-accounts/ - Categories: Active Directory (AD) - Tags: Quest Software - Article Type: How To Quest Software, now a part of Dell, has provided free cmdlets for Windows PowerShell that helps you find disabled and inactive Active Directory users accounts. I've written several different articles demonstrating a variety of techniques for discovering disabled and inactive Active Directory user accounts with PowerShell. But for the sake of thoroughness, there is one final option. Although the Microsoft Active Directory cmdlets are easy to acquire and use, they do require a more updated infrastructure. Unfortunately, not everyone has access to the latest and greatest tools. If you are running an older version of PowerShell or have older domain controllers, and you don't want to have to struggle with scripting . NET classes, then you have another option. Quest Software, now part of Dell, has long offered their set of Active Directory PowerShell cmdlets for free. These cmdlets are designed to support their commercial product, ActiveRoles Server, but can be used even if you are not running that product. The most current version of the PowerShell cmdlets is only available to licensed users of that product. But, you can download the previous version for free, and it should handle most of your needs. Visit Dell's website to get a copy of the download, and click on the link to download the freeware version of the ActiveRoles Management Shell. ActiveRoles Management Shell download link on Dell. (Image Credit: Dell) You will need to have a Dell account to download the file. The most current version I could find was 1. 60. Download either the 32 or 64 bit version. Extract the files and run the setup on your client.  If necessary, reboot. Open a... --- ### Using the PowerShell Send-MailMessage cmdlet > Learn how to effectively use the Windows PowerShell Send-MailMessage cmdlet to easily send messages directly from PowerShell. - Published: 2015-01-13 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-send-mailmessage-cmdlet/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To Learn different ways in which you can email messages directly from PowerShell with the Send-MailMessage cmdlet in this how-to article. A very handy PowerShell cmdlet that I don't think enough IT pros take advantage of is Send-MailMessage. This is an easy-to-use cmdlet that allows you to send email messages directly from PowerShell. It doesn't require any arcane . NET programming, as it's a simple cmdlet with simple parameters. I'm going to trust you will take some time to read through full help and examples. I'm going to demonstrate a few different ways to use the cmdlet and point out some potential gotchas. The first potential gotcha is running the PowerShell 2. 0 version of the cmdlet. This version lacks a few parameters that you may need to take advantage of. The most important is the port parameter. To send a mail message, you will need to identify your mail server. Traditional SMTP servers run over port 25, but today with the prevalent use of services such as Gmail, it is most likely some other port. I will also point out that you should expect some trial and error in getting mail messaging to work with PowerShell. One problem I've encountered in the past when using an internal mail server like Exchange is that sometimes the mail server doesn't like what it interprets as anonymous relays, i. e. spam. You may need to provide credentials. Fortunately, that is easily handled with the –Credential parameter. You can enter credentials like you would for cmdlets like Get-WmiObject. However, this could pose a problem if you are trying to use Send-MailMessage in an unattended setting where there is... --- ### Google Launches Cloud Trace to Troubleshoot Cloud App Perfomance Issues > Google launches Google Cloud Trace in beta form to help cloud application developers optimize their apps. - Published: 2015-01-12 - Modified: 2024-12-03 - URL: https://petri.com/google-cloud-trace-beta-troubleshoot-perfomance-issues/ - Categories: Google Cloud Platform - Tags: News - Article Type: News Google launches the Google Cloud Trace to help developers make their cloud apps faster and more efficient. Jeff James explains why this new tool should mean good things for IT pros using cloud services. Last week Google announced the availability of Google Cloud Trace, a new performance diagnostics tool that will help Google Cloud Platform developers find and resolve performance issues of their applications using that cloud service. Google is currently fighting for the hearts and minds of cloud developers who may also be considering rival cloud services like Microsoft Azure or Amazon Web Services, so Google hope that the arrival of Google Cloud Trace will give developers yet another reason to choose their platform for cloud app development. What is Google Cloud Trace? Google announced Cloud Trace at their Google I/O conference in 2014, and the current beta release is accessible from the Monitoring / Traces menu in the Google Developer's Console. According to Google Cloud Platform product manager Pratul Dublish, Google Trace requires "very little overhead" and will start collecting data on traced applications so developers can more readily spot performance issues. Pratul writes that developers using Cloud Trace "... can diagnose performance issues in your production application by quickly finding the traces for slow requests and viewing a detailed report of where time is spent in your application while processing these requests. Its trace analysis feature allows you to see the latency distribution for your application, and find the painfully slow requests that may be affecting only a small number of your users. You can also use the trace analysis feature to check if the performance of a new release is better than the previous release. " Developers can use... --- ### Hashing it Out in PowerShell: Using Get-FileHash > Learn how to use the PowerShell cmdlet Get-FileHash to obtain the hash value for a file. - Published: 2015-01-12 - Modified: 2024-09-04 - URL: https://petri.com/hashing-powershell-using-get-filehash/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, Scripting - Article Type: How To Jeff Hicks shows us how to use the Get-FileHash PowerShell cmdlet to easily obtain the hash value for a given file. PowerShell 4. 0 introduced a new cmdlet, Get-FileHash, primarily for use with Desired State Configuration (DSC). In a pull server configuration, you need to provide file hashes so that servers can recognize changes. That is the primary purpose of a file hash as far as I am concerned is for file integrity. Windows supports several different hashing algorithms, which you should not confuse with encryption. All a hashing algorithm does is calculate a hash value, also usually referred to as a checksum. If the file changes in any way, even with the addition or removal of a single character, then the next time the hash is calculated it will be different. The hash can't tell you what changed, only that the current version of the file is different than the original based on the hash. Let's look at some ways of using file hashes in PowerShell, outside of DSC. To create a hash, all you need is a file. ​get-filehash C:workx. zip Creating a hash with Windows PowerShell. (Image Credit: Jeff Hicks)  The default hashing algorithm in SHA256, but you can use any of these: SHA1 SHA256 SHA384 SHA512 MACTripleDES MD5 RIPEMD160 I'm not going to explain each algorithm, as I don't think it really matters. All we are doing is calculating a file hash, and as long as you use the same algorithm to compare two files I don't think it makes a difference. For the most part all of these perform reasonably well, especially on... --- ### Microsoft Updates Azure with Key Vault, Docker Images, and Ginormous VM Sizes > Microsoft Updates Azure with a host of new features and improvements, including Azure Key Vault, Docker Images, and G-series virtual machines. - Published: 2015-01-09 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-key-vault-docker-images-ginormous-vms/ - Categories: Microsoft Azure - Tags: Editor's Pick, News - Article Type: News Microsoft Azure has been updated with a trio of new features, including Azure Key Vault, new Docker support, and super-sized G-series virtual machines. One of the key features of cloud-based services like Microsoft Azure is that they tend to get updated often. Rather than shipping updates as named and numbered versions -- we'll never see a "Microsoft Azure 2015" update, for example -- updates tend to come at a much faster cadence, with clusters of new features released when ready for public consumption. Microsoft has been especially busy updating Microsoft Azure over the last year, and just announced a trio of new improvements to the Azure service, including the availability of Azure Key Vault for enhanced security, and Docker images in the Microsoft Azure Marketplace. As we've covered previously here on Petri, Microsoft's G-series Azure VM (G for ginormous? I'd like to think so) are the latest -- and largest -- VMs currently offered for Azure.  I'll dive into all of these improvements in a bit more detail below. Azure Key Vault Security in the cloud is always a sensitive subject for system administrators (and CEOs) alike, so Microsoft -- and other cloud providers -- have been keen to burnish their security credentials. Microsoft took another step towards making Azure a bit more secure by unveiling the Azure Key Vault, which provides some new service functionality that allows security-minded IT staff to better keep important data in the cloud, partly by supporting encryption and granting the ability to sign certificates in the cloud. Microsoft's Corey Sanders -- the director of program management for Azure -- explained how the key vault works in a post... --- ### Should You Use RDP Restricted Admin Mode? > Understand the potential risks of using Restricted Admin Mode for remote desktop connections. - Published: 2015-01-08 - Modified: 2024-09-04 - URL: https://petri.com/should-i-use-rdp-restricted-admin-mode/ - Categories: Security - Tags: Management, RDP, Remote Desktop, Security, Windows 8.1, Windows Server, Windows Server 2012 R2 - Article Type: How To When should you use Restricted Admin Mode for remote desktop connections? Russell Smith outlines limitations and advantages to using this mode in your environment. In October 2013, I wrote about How to Connect to a Windows 8. 1 or Server 2012 R2 Remote Desktop Using Restricted Admin Mode on the Petri IT Knowledgebase. Since then, Microsoft has disabled Restricted Admin Mode out-of-the-box after third-party security researchers raised concerns. In this Ask the Admin, I'll provide you with an update on the situation. Restricted Admin Mode was designed to help protect administrator accounts by ensuring that reusable credentials are not stored in memory on remote devices that could potentially be compromised. This includes scenarios when IT help desk staff use administrator credentials for remote PC support or when domain admin accounts are used to connect remotely to member servers. Restricted Admin Mode for Remote Desktop Connection is now disabled by default. (Image Credit: Russell Smith) Remote Desktop Protocol Logon Process When connecting to a remote device using the Remote Desktop Protocol (RDP), the user authenticates to the local RDP service using the Remote Interactive Logon Process. In this context, interactive means that the user physically enters their username and password. The RDP service then performs a network logon to the remote device to make sure the user is allowed access, but doesn't require any further input because the Kerberos TGS ticket or NTLM hash that was created during the initial logon can be used for authentication. Once authenticated by the RDP service on the target device, the user's credentials are sent over a secure channel to the remote device, and... --- ### Episode 7: January 8, 2015 Guest: Rawlinson Rivera - Published: 2015-01-08 - Modified: 2015-01-08 - URL: https://petri.com/episode-7-rawlinson-rivera/ - Categories: Current Status Virtualization has become a part of our everyday IT lives, with almost everything being virtualized. Rawlinson (@punchingclouds) will join us to discuss the latest on storage virtualization, VVols from VMware.  What is this new storage virtualization technology and why is the V capitalized?  #GrabLifeByTheVVOLs --- ### Will there ever be a PowerShell certification? > Learn why Microsoft won't be offering a PowerShell certification anytime soon, but that shouldn't be a deterrent for learning the technology for your career. - Published: 2015-01-08 - Modified: 2024-11-19 - URL: https://petri.com/powershell-certification-exams/ - Categories: PowerShell - Tags: Beginner - Article Type: Opinion Jeff Hicks explains why Microsoft won't offer a PowerShell certification anytime soon. But that shouldn't be a deterrent for learning PowerShell for advancement in your career. I am frequently asked or come across the question about PowerShell exams and certifications. Typically an IT pro has been learning PowerShell and wants to know if there is a Microsoft exam or certification that will validate their knowledge. I have no secret insights or access to Microsoft exams and certifications, but I can still confidently state, that there will never be a dedicated PowerShell exam or certification from Microsoft. If you stop and think about this for a moment, it makes sense. Why we'll never see PowerShell certifications There is no dedicated exam or certification for a technology like TCP-IP. But, that is a core operating system technology that you must understand to pass some Microsoft exams, which ultimately lead to certification. In many ways, PowerShell is no different. There is PowerShell content in Microsoft exams, but it is in relationship to the underlying exam topic. If you are taking a Microsoft exam on Microsoft Exchange, then you will most likely encounter a few PowerShell related questions. Instead of answering questions on Format-Table, you'll need to know how to use Get-Mailbox. The bottom line is that you will be tested on your knowledge of PowerShell as it relates to a specific task product. Will we ever see certifications for Windows PowerShell? Jeff Hicks doesn't think so. (Image: Dreamstime) I would venture that the more fluent you are with PowerShell in general, the easier it is to learn product specific aspects, such as... --- ### Windows Phone 8.1 Long Term Review > In his Windows Phone 8.1 long term review, Russell Smith looks at some of the core functionality and discusses issues he encountered with offline use. - Published: 2015-01-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-phone-8-1-long-term-review/ - Categories: Mobile - Tags: Cortana, Editor's Pick, windows phone 8.1 - Article Type: Review Russell Smith takes a look at the core functionality of Windows Phone 8.1 and discusses some issues he encountered with offline use in his long term review of Microsoft's smartphone OS. Not too long ago, I wrote about my experience with Windows Phone 8. 1.  I looked at the Modern UI Start screen, navigation, Windows Mail, Calendar, and the HERE Maps app. To finish up, I’m going to continue looking at some of the core functionality of Windows Phone 8. 1 and discuss some issues I encountered with offline use. Offline use isn’t Windows Phone 8. 1’s Forte When preparing for a long trip, there’s plenty of information that you need to make sure will be available at the touch of a button before setting off. After all, Internet access isn’t always pervasive, or cheap, especially in view of the astronomical roaming charges in Europe. One of the first things that struck me about Windows Phone 8. 1 is that there is no offline reading capability. Yes you read that correctly. And to make matters worse, Microsoft’s Reading List app, which was released in spring this year, also turns into a useless brick once you’re offline. Windows Phone 8. 1 Reading List app doesn't support offline reading (Image: Russell Smith) Considering that Windows Phone has a larger slice of the market in Europe than in the US, and that you don’t need to travel far to find yourself on roaming, it would seem inexcusable that there is no offline reading built-in to either IE or Reading List. And in my time with Windows Phone, I’ve found no satisfactory third-party solution that fills this need. It’s an awkward workaround, but you can... --- ### PowerShell Problem Solver: Exporting Active Directory Groups to CSV > Learn how to easily export Active Directory Groups to a CSV file in Windows PowerShell with the help of the Get-ADGroupMember cmdlet. - Published: 2015-01-07 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-exporting-active-directory-groups-csv/ - Categories: PowerShell - Tags: Active Directory, Editor's Pick, Intermediate, PowerShell Problem Solver, Scripting - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks shows us how to export Active Directory groups to a CSV file in Windows PowerShell. Today's PowerShell Problem Solver involves two common themes I see frequently: Active Directory groups and CSV files. The usual business need is to export members of a group to a CSV file so it can be opened in Microsoft Excel. Another need is to provide group membership information to a third party that doesn't have the ability to query a group directly. Related: Create New Active Directory Users with Excel and PowerShell As I will show you, using PowerShell it is not that difficult to solve this problem, although what I am going to show you will require the Microsoft Active Directory cmdlets on your desktop and at least one domain controller running the Active Directory web service. I'll be using a Windows 8. 1 desktop that has Remote Server Administration Tools (RSAT) installed and the Active Directory management tools enabled. First, you may need to get a list of available groups in your domain. ​get-adgroup -filter * | sort name | select Name I've sorted on the Name property and selected it. Grabbing list of avaialble groups in domain by sorting on the name property in Windows PowerShell. (Image Credit: Jeff Hicks)   Once you know the exact group name, you can use the Get-ADGroupMember cmdlet to retrieve the members. ​Get-adgroupmember "Chicago IT" Nothing here is case-sensitive. Using the Get-ADGroupMember cmdlet in Windows PowerShell to retrieve members. (Image Credit: Jeff Hicks)   You end up with a brief object for each member... . --- ### Storing Documents in the Cloud: OneDrive, SharePoint, or Email? > Learn the most effective scenarios for storing your documents in the cloud, with technologies such as One Drive and SharePoint. - Published: 2015-01-07 - Modified: 2024-09-04 - URL: https://petri.com/store-documents-ond/ - Categories: Microsoft 365 - Tags: Editor's Pick - Article Type: Opinion Where should you save your file in the cloud? J. Peter Bruzzese offers advice to make the decision between saving it via OneDrive and SharePoint much easier depending on your needs. I know I’m not the only one confused about where to store documents these days. When I go to store a Word 2013 document, I'm offered multiple OneDrive accounts and have to work through excessive navigation to save it to my desktop for easy access. I've started to give up the fight and just save everything to OneDrive, especially since OneDrive for Business now offers unlimited storage space. That's why I paid attention when I saw an Office post that asked the question, should I save my documents to OneDrive for Business or a team site?  This also had me thinking, what about email? Imagine this scenario: Alice has a lot of documents that she works on throughout the week. Some she works on by herself, some she shares, and others she works on with other people. What is the best way for her to store her documents? Should she email herself important documents and include others when she needs to share them? With a plethora of cloud-based storage options available, what method should you chose for storing documents? J. Peter Bruzzese breaks it down for us. What about using cloud storage, such as OneDrive? When is SharePoint Online appropriate?  Working with Office 365 you will find that you have a lot of new tools to use, but just as important as knowing how to use these tools is knowing when to use them. Microsoft's Advice on the Document Storage Conundrum Based on advice from the folks at... --- ### Configuring Network Security Groups in Microsoft Azure > Learn how to secure subnets in a virtual network using Network Security Groups in Microsoft Azure. - Published: 2015-01-06 - Modified: 2024-09-04 - URL: https://petri.com/configuring-network-security-groups-in-microsoft-azure/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Easily secure subnets in a virtual network with the help of Network Security Groups in Microsoft Azure. In this Ask the Admin, I'll show you how to secure Microsoft Azure virtual networks using Network Security Groups. You might already be familiar with another type of network security in Azure that's used to control access to individual virtual machines (VMs) from the public Internet. By default Azure VMs receive two endpoints when they are provisioned to allow RDP access and PowerShell remoting. Introduced in autumn 2014, Azure Network Security Groups (NSGs) are high-level objects in your Azure subscription that are created in an Azure region. They differ from endpoint-based ACLs in that they can be applied to more than one VM by associating them with VMs or subnets. They can also survive the lifecycle of VMs and are typically used to fence off Azure subnets from one another without needing to specify endpoint-based network ACLs for each VM in the subnet. For example, you might want to create a DMZ, and then restrict network traffic that flows between additional subnets: one designated for application servers, and the other for database servers. NSGs control all inbound and outbound access to and from associated VMs, but not from the public Internet. Network Security Group Prerequisites There are a couple of prerequisites that you'll need to consider in advance of deploying NSGs. Before a NSG can be associated with a VM, all endpoint-based network ACLs must be removed. NSGs override endpoint-based network ACLs, so they don't need to be explicitly removed if you plan to associate a NSG... --- ### PowerShell Command History and Buffers > Jeff Hicks shows us shows us how to easily bring up your past PowerShell command history for future use. - Published: 2015-01-06 - Modified: 2024-09-04 - URL: https://petri.com/powershell-command-history-buffers/ - Categories: PowerShell - Tags: Beginner - Article Type: How To Downsize on the amount of typing required for PowerShell commands by relying on past history to speed things up. When I teach PowerShell, there is always a little misunderstanding about where PowerShell stores its command history. It can get confusing because it looks like the same information is in different places, but the truth is a bit more complicated. This is especially true when you switch back and forth between the console and the PowerShell ISE. PowerShell stores its command history for a given PowerShell session in memory. You can access this command history with the Get-History cmdlet, which has an alias of 'h'. The number of commands stored is based on a built-in variable, MaximumHistoryCount, which I believe now has a default value of 4096. The MaximumHistoryCount variable in Windows PowerShell. (Image Credit: Jeff Hicks)   As you run commands, they are added to the history. When I get to command 4095, the oldest command will be overwritten. If you would like a different value, simply assign a value to $MaximumHistoryCount in your PowerShell profile script. It shouldn't matter what PowerShell host you use, but there should be command history.  This potentially gets confusing with the PowerShell console host. This host sits atop the very old CMD. EXE command-line shell. This shell also has a command buffer, which you can access via the F7 key. Note that this only works in the PowerShell console. The PowrShell ISE doesn't know anything about CMD. EXE, and thus there is no F7 functionality. Back in my console, I press F7 and get this popup... . --- ### Raise Active Directory Domain and Forest Functional Levels using PowerShell > Learn how to raise Active Directory domain and forest functional levels using PowerShell in this how-to article by Russell Smith. - Published: 2015-01-05 - Modified: 2024-09-04 - URL: https://petri.com/raise-active-directory-domain-and-forest-functional-levels-using-powershell/ - Categories: Active Directory (AD) - Tags: Editor's Pick - Article Type: How To Russell Smith shares easy steps for raising Active Directory domain and forest functional levels with Windows PowerShell. Updated: Jan 16th, 2015 - 8:10am MT - Fixed typo in Set-ADForestMode section. In this easy Ask the Admin, I'll show you how to determine and change the domain and forest functional levels in Active Directory (AD). The domain and forest functional levels indicate that all domain controllers (DCs) are running a specific version of Windows Server, and that domain or forest-wide features only supported in that version of Windows Server can be enabled in the domain(s) and/or forest. Before raising the functional level of a domain, all DCs in the domain must be running the same version of Windows Server. For instance, before changing the domain functional level to Windows Server 2012 R2, all DCs in the domain must be running Windows Server 2012 R2. When configuring a new AD domain, it's always best to set the domain functional level to the highest possible level if you're not planning to join any DCs running legacy versions of Windows Server. Determine the Domain and Forest Functional Levels The easiest way to find the functional level of a domain is using Windows PowerShell. You can run the following commands from a domain controller or any domain-joined PC with the PowerShell module for Active Directory installed. ​ Determine the domain and forest functional level in Active Directory (Image Credit: Russell Smith) Piping the results of Get-ADDomain to select is not compulsory, but reduces down the amount of information returned. When no parameters are specified for the... --- ### Revisiting the PowerShell Uptime Clock > Jeff Hicks revisits the PowerShell Uptime Clock and provides tips for adding finishing touches to the Get-MyUptime cmdlet in his latest article. - Published: 2015-01-05 - Modified: 2024-09-04 - URL: https://petri.com/revisiting-powershell-uptime-clock/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, Scripting - Article Type: How To Jeff Hicks revisits the Get-MyUptime Windows PowerShell cmdlet and adds some finishing touches to his script. We have been on a journey of PowerShell exploration. Over the last few articles, we've gone from a few lines of PowerShell code that you could type at the prompt to a reusable PowerShell function. Be sure to get caught up if you are joining us partway through the journey. Remember the end result isn't as important as what you learn along the way. The last version I showed of the Get-MyUptime command is pretty complete, but there are a few more final touches that we can apply. Let me show you the next version and then I'll explain. ​ get-myuptime chi-dc01 Computername : CHI-DC01 LastRebootTime : 11/15/2014 12:02:22 AM Days : 23 Hours : 17 Minutes : 23 Seconds : 14 Default output for a single computer. . Example PS C:> get-myuptime chi-dc01,chi-fp02 | format-table Computername LastRebootTime Days Hours Minutes Seconds ------------ -------------- ---- ----- ------- ------- CHI-DC01 11/15/2014 12:02:22 AM 23 17 23 44 CHI-FP02 12/1/2014 8:40:08 AM 7 8 45 58 Formatted results for multiple computers. You can also pipe computer names into... --- ### Use Microsoft Azure Backup with Recovery Services > Learn how to install, configure, and use Microsoft Azure Backup with Recovery Services on Windows 8.1, Windows 8, and Windows 7 client devices. - Published: 2015-01-05 - Modified: 2024-09-04 - URL: https://petri.com/backing-up-pcs-to-microsoft-azure/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Aidan Finn teaches us how to use Microsoft Azure Backup with Recovery Services to backup and restore your files on Windows 8.1, Windows 8, and Windows 7 client devices. In a recent article I reviewed the ability to backup Windows client devices to Microsoft Azure using Online Backup. In this post, I will show you how to implement backup using Recovery Services. Microsoft Online Backup Supported Scenarios Microsoft's online backup solution supports three versions of the client operating system: Windows 8. 1 Windows 8 Windows 7 Any computer that you wish to protect must have . NET Framework 4. 5 and PowerShell installed, and you must use version 2. 0. 8694. 0 or later of the protection agent. You cannot protect the system state of a computer with this tool. You may only backup and restore files and folders on client devices. Microsoft Azure Backup Vault Azure Online Backup sends backup data directly to Azure where the data is stored in a backup vault. The vault is pretty simple to create. Before you do that you must decide if: You will have one backup vault per protected machine: An Azure subscription supports up to 25 vaults. You will have multiple protected machines per backup vault: A vault can contain backup data for up to 50 machines. Log into the Azure management portal, navigate to Recovery Services, click New > Data Services > Recovery Services > Backup Vault > Quick Create. Enter a unique name for the new backup vault and select the Azure region where you want the data to be stored. It will take Azure a couple of minutes to provision the new vault. Creating an Azure... --- ### Microsoft Azure versus Amazon EC2 Cloud Security Comparison > Russell Smith writes about Microsoft Azure versus Amazon EC2 cloud security. Which cloud provider has the better security options? - Published: 2015-01-02 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-versus-amazon-ec2-cloud-security-comparison/ - Categories: Cloud Computing - Tags: Editor's Pick - Article Type: Opinion Russell Smith compares Microsoft Azure to Amazon EC2 in the realm of cloud security. Which cloud provider has the better security options? Read on for Russell's take. As more of the services we rely on depend on cloud infrastructure, and the sophistication and frequency of malicious attacks increases, security is a primary concern for organizations looking to move applications and data off premises. Microsoft Azure is a relative newcomer to the marketplace, but has expanded its services fast to compare favorably with its nearest rivals. But can Azure provide the same level of security as industry mainstay Amazon EC2? In this article, I’ll try to answer that question by comparing Azure and Amazon in four key security areas: Antivirus, security configurations, identity management, and machine learning. 1. Antivirus Microsoft Azure VMs can be provisioned with Microsoft’s free Antimalware agent, providing real-time protection and on-demand scheduled scans, and it’s supported on Windows Server 2008 R2 and later operating systems. Based on the same technology that powers Windows Defender, Microsoft Forefront Endpoint Protection, and Windows Intune, malware events can be collected free of charge via Azure Diagnostics. Microsoft Antimalware writes events to the Windows Server Event Log, including information such as engine updates and health state. This information can then be transferred to an Azure storage account, and once it’s there sent to HDInsight or log management system of your choice. Microsoft has also partnered with Trend Micro and Symantec to provide trials of their AV products, with agents that can be provisioned automatically in VMs, but need to be converted to the full product going forwards. Nevertheless, these third-party options are useful for those who... --- ### Solving Group Policy Problems with the Group Policy Results Wizard > Learn how to use the Group Policy Results Wizard in the Group Policy Management Console. - Published: 2014-12-31 - Modified: 2024-09-04 - URL: https://petri.com/solving-group-policy-problems-with-the-group-policy-results-wizard/ - Categories: Active Directory (AD) - Tags: Editor's Pick, group policy - Article Type: How To Russell Smith shows us how to determine which Group Policy settings are actually being applied to devices using the Group Policy Results Wizard. Sometimes referred to as Resultant Set of Policy (RSoP), in this Ask the Admin, I’ll show you how to determine which Group Policy settings are actually being applied to devices using the Group Policy Results Wizard. Group Policy Results is a feature of the Group Policy Management Console (GPMC), and allows administrators to scan the local or remote machines, and users to determine which Group Policy objects (GPOs) and settings are being applied. This differs from Group Policy Modelling, which shows the result of applying a set of GPOs without making any changes to users or machines. The Group Policy Results Wizard helps system administrators figure out what settings are really being applied to devices, which can be a difficult task when you consider that multiple GPOs might be linked at different levels of the AD hierarchy, then add different processing options and enforcement settings, along with WMI filters, and it may not be immediately clear what settings are being applied. Group Policy Management Console The Group Policy Management Console is installed by default on all Active Directory domain controllers (DCs). Alternatively, GPMC is installed as part of the Remote Server Administration Tools (RSAT) for Windows Server 2012 R2, which are supported on client and server versions of Windows. For details on RSAT, see Remote Server Administration Tools (RSAT) for Windows 8: Download and Install on the Petri IT Knowledgebase. Setting Up Your Environment for RSoP Before analyzing remote devices, you’ll need to make sure that the... --- ### Creating Advanced Functions in PowerShell > Learn all about creating advanced functions in PowerShell via this tutorial by Jeff Hicks. - Published: 2014-12-30 - Modified: 2024-09-04 - URL: https://petri.com/creating-advance-functions-powershell/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Scripting - Article Type: How To Microsoft PowerShell MVP Jeff Hicks gives us the low-down on creating advanced functions in PowerShell in this detailed tutorial. In a previous article, we started looking at the process of moving from a few lines of PowerShell commands to a re-usable PowerShell function. If you missed that article, take a few minutes to get caught up. The last version of the Get-MyUptime function should serve as a model for the minimum level of scripting complexity. It works, writes objects to the pipeline and is re-usable. Once you understand how all of the pieces work, you'll eventually realize what you need to take it to the next level. Creating an Advanced PowerShell Function If you've been using PowerShell for a while you'll realize there are some limitations. There's no error handling. What if the user of my PowerShell function tries to get uptime for a server that isn't online or that they don't have permission to access? What if you want to pipe in a list of computer names say from a text file? What if I need to troubleshoot or debug the function? These are some of the issues that can be addressed by creating what we refer to as an advanced PowerShell function. Here's my version. Function Get-MyUptime { Param( ]$Computername = $env:Computername ) Begin { Write-Verbose -Message "Starting $($MyInvocation. Mycommand)" } #begin Process { Foreach ($computer in $computername) { Write-Verbose "Getting uptime from $($computer. toupper)" Try { $Reboot = Get-CimInstance Win32_OperatingSystem -ComputerName $computer -ErrorAction Stop | Select-Object CSName,LastBootUpTime } Catch { Write-Error $_ } if ($Reboot) { Write-Verbose "Calculating timespan from $($reboot. LastBootUpTime)" #create... --- ### Create a PowerShell Function to Display System Uptime > Learn how to create a PowerShell function to display system uptime in this how-to article by Jeff Hicks. - Published: 2014-12-30 - Modified: 2024-11-19 - URL: https://petri.com/powershell-function-to-display-system-uptime/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, Scripting - Article Type: How To Need to keep track of system uptime for SLA purposes? Jeff Hicks walks us through creating an uptime clock using PowerShell in this helpful how-to. Recently I saw a post on Twitter about a PowerShell script to display system uptime. Since I'm always curious to see how people are using PowerShell I followed the link the script, which was posted on the TechNet Script Gallery site. As expected the author used Windows Management Instrumentation (WMI) to query the Win32_OperatingSystem class. This class includes a property that indicates when the computer last booted. If you use Get-CIMInstance, this value is automatically formatted into as a datetime value. I appreciated that he used a Timespan object to display the uptime. But I did have one comment about his code, and something that I see quite often. His original code may be updated by the time you read this. By the way, the author was very receptive to my suggestions and open to me about using his code as a learning device, as he is still learning PowerShell. Even if you don't have a need for the end result, the process I want to explore from command to tool should be very useful. To begin, here's the original code. ​$Reboot = Get-CimInstance Win32_OperatingSystem -ComputerName chi-dc04 | Select-Object CSName,LastBootUpTime $date = Get-Date New-TimeSpan -Start $Reboot. LastBootUpTime -End $Date | Select-Object @{Label = "System Name"; Expression = {$Reboot. CSName}}, @{Label = "Last Reboot Time"; Expression = {$Reboot. LastBootUpTime}},Days,Hours,Minutes,Seconds | Format-Table -AutoSize Creating a PowerShell Function The one major drawback to this example is that it includes formatting via the Format-Table cmdlet. This code can be turned into a useful tool,... --- ### Creating DSC Resource Snippets for the PowerShell ISE > Learn all about creating DSC resource snippets for the PowerShell ISE in this how-to article by Jeff Hicks. - Published: 2014-12-29 - Modified: 2024-09-04 - URL: https://petri.com/creating-dsc-resource-snippets-powershell-ise/ - Categories: PowerShell - Tags: Advanced, DSC, Editor's Pick, ISE, PowerShell ISE - Article Type: How To Jeff Hicks gives us a primer on creating DSC resource snippets for the PowerShell ISE in this step-by-step tutorial article. Without a doubt creating configurations for Desired State Configuration (DSC) in PowerShell 4. 0 is one of the hottest topics in the PowerShell world these days. But as is often the case with new technologies, discovering what to use can be a challenge. Fortunately for PowerShell and DSC this does not have to be difficult task. Using the Get-DSCResource cmdlet In a DSC configuration you need to define resources for the managed nodes. You can use the Get-DSCResource cmdlet to discover resources installed locally. Even though you will be creating configurations for servers, you will most likely be using the PowerShell ISE on a Windows 8. 1client. Given that you will most likely have the same DSC resource modules installed locally. One of the reasons for this is so that you can discover the resource syntax. The Get-DSCResource cmdlet can either display information about a resource or provide its syntax. Let's say you are creating a configuration that will use the xSMBShare resource. You can see the syntax like this: ​Get-DscResource xsmbshare -Syntax You can then copy and paste this into the ISE. Or copy it directly to the clipboard. ​Get-DscResource xsmbshare –Syntax | clip Another option is to use a function in the ISE to get the syntax and paste it into the current document. ​Function Insert-DSCSyntax { Param($Name) Try { $syntax = Get-DscResource -Name $Name -Syntax #insert into current document at current location $psise. CurrentFile. Editor. InsertText($syntax) } Catch { throw } } Run the function specifying a resource name... --- ### The Top 7 Microsoft News Stories of 2014 > Aidan Finn reviews the biggest headlines in the world of Microsoft this year, and puts together a summary of the Microsoft news stories of 2014. - Published: 2014-12-29 - Modified: 2024-11-19 - URL: https://petri.com/top-7-microsoft-news-2014/ - Categories: Windows Server - Tags: Editor's Pick, News - Article Type: News Aidan Finn takes a look back at the biggest headlines in the world of Microsoft this year, and puts together a summary of what he considers to be the top Microsoft news stories of 2014. It has been an exciting year for Microsoft watchers in 2014. Here’s a quick review of some of the things that caught my eye in the last 12 months. 1. Satya Nadella Succeeds Steve Ballmer as CEO I was on vacation in Florida with some friends when one of them, a Microsoft employee, let out a wild shout of joy. On February 4th, Microsoft announced that Satya Nadella was selected as the newest CEO of Microsoft: With a perspective based on more than two decades at Microsoft as someone who pushed to make dynamic changes happen, both in the company’s products and its culture, Satya Nadella says he is both “honored and humbled” to succeed Bill Gates and Steve Ballmer as the third CEO of Microsoft. – Source: Microsoft The reign of Steve Ballmer never satisfied the stock markets, no matter how much profit Microsoft earned each quarter. He brought Microsoft back from the brink of a forced split by the US Department of Justice, and he navigated the rocky seas of the European Commission, rescuing Microsoft from the repercussions of Bill Gates’ alleged monopolistic misadventures. But no matter what Ballmer did, he could not move the Microsoft under his decade as CEO ... until the moment he announced his retirement. Microsoft stock over the past 2 years Investors suddenly felt optimistic. Gone was “cloud first” and antagonism to all things non-Microsoft under Ballmer and in came Satya Nadella with “mobile... --- ### 3 Windows Technologies that Improved our Productivity in 2014 > Russell Smith shares the top three Windows technologies that improved our productivity in 2014. - Published: 2014-12-26 - Modified: 2024-09-04 - URL: https://petri.com/3-windows-technologies-that-improved-productivity-2014/ - Categories: Windows Server - Article Type: Opinion Russell Smith gives his take on the top three Windows technologies that improved his digital life in 2014. It’s been a big year for cloud computing and Windows Phone, plus lots of excitement surrounding the Windows 10 Technical Preview. But as 2014 comes to an end, I’d like to share the top three technologies that helped me work better this year. 1. Windows PowerShell I’ve always been enthusiastic about automation and scripting, but PowerShell – a shell and scripting language that brings Windows up to par with Unix-based OSes - provides a means to administer and automate the OS that makes previous Windows command-line tools and VBScript look like a bad joke. But it was Microsoft Azure that really pushed me to embrace PowerShell unreservedly, and more specifically Azure’s clunky and inconvenient web-based management portal, which is enough to drive a person crazy should they need to use it often. Windows PowerShell is unarguably one of the most powerful Windows technologies of 2014. (Image: Microsoft) PowerShell unleashes the potential of Azure, providing administrators with zero-touch service deployment, and automation of tedious administration tasks. While there is a learning curve involved, the rewards are great and change the value proposition of the cloud. Furthermore, once you’ve mastered the ability to manage your cloud infrastructure, you can use PowerShell to configure Windows Server and Azure’s SaaS offerings. Check out our PowerShell tutorials, aimed at beginners and advanced users, on the Petri IT Knowledgebase for lots of tutorials. 2. Twitter + Tweetium Until this year, I didn’t really get what all the fuss was... --- ### Deploying a Microsoft Azure Storage Account > Aidan Finn shows us how to deploy a storage account in Microsoft Azure, in preparation for storing new or uploaded virtual machines. - Published: 2014-12-24 - Modified: 2024-11-19 - URL: https://petri.com/deploying-microsoft-azure-storage-account/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Learn how to easily deploy a Microsoft Azure Storage Account in preparation for storing new or uploaded virtual machines. In this post I will show you how to deploy a storage account in Microsoft Azure in preparation for storing new or uploaded virtual machines. Considerations Before Creating Your Storage Account Before creating your storage account, you need to make some decisions: Where do you want to place the storage account? What Azure region will you use? This should be the same region that the virtual machines will run in. What level of redundancy do you want? This will determine how many copies of your storage account there will be. Also consider what kind of fault tolerance you will have. You're probably going to be using LRS or GRS storage. What will you name the storage account? This will determine the name of the storage account. I am going to create an LRS storage account in South Central US called demopetri. Creating the Microsoft Azure Storage Account There are a few ways you can create a new storage account in Azure: PowerShell: Hardcore admins who perform this operation a lot or want predictable results will use New-AzureStorageAccount. Old Management Portal: You can log into the old management portal and create a new storage account quickly. However, this is the old portal. Preview Project Ibiza Portal: Microsoft is focusing their UI development on Project Ibiza. It's an incomplete product at this point, but it's where new features turn up. This is the portal I will use. Sign into the portal and click New > Everything > Storage,... --- ### Choosing Microsoft Azure Storage for IaaS > This post will describe the possible options for choosing and deploying storage in Microsoft Azure, with a focus on virtual machines and IaaS. - Published: 2014-12-23 - Modified: 2024-09-04 - URL: https://petri.com/choosing-microsoft-azure-storage-for-iaas/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Microsoft MVP Aidan Finn walks us through some possible options for choosing and deploying storage in Microsoft Azure, with a focus on virtual machines and IaaS. Storage is the foundation of many Microsoft Azure services; you can use it to store performance information, gather website logs, store virtual machines and much more. Storage has never been simple and that’s how an Azure novice might feel when you check out their deployment options. I will explain those options in this article so you will know what you need to price when deploying storage in Azure for infrastructure-as-a-service (IaaS). Microsoft Azure Storage Accounts Azure storage is actually much simpler than on-premises storage, and that simplicity is what causes a lot of the confusion for IT pros. When you deploy storage on-premises you: Choose a storage system Provision a LUN of a specific size with required fault tolerance Create and format a volume, usually filling the LUN Mount that volume, either as a mount point or as a driver letter You’ll use that mount point or driver letter to store shared folders, place website files, or locate virtual machine files. We worth with something called a storage account in Azure. This is a much simpler device that is stored in Azure’s cloud-scale software-defined storage. The process is: Decide on a unique name, that is used to create a unique URL for the storage account Create the storage account in a region of choice, with fault tolerance of choice You then use the storage account based on the name or URL for the other Azure services that you deploy. Note that I didn’t mention drive letters or... --- ### Boolean Values in PowerShell > Learn about using Boolean values in Windows PowerShell, including tips for working with Not, NotContains, NotIn, NotLike, and NotMatch logic operators. - Published: 2014-12-23 - Modified: 2024-09-04 - URL: https://petri.com/using-boolean-values-in-powershell/ - Categories: PowerShell - Tags: Beginner - Article Type: How To Jeff Hicks provides tips and examples for working with Boolean values in Windows PowerShell. In PowerShell scripts, we often use logic to take some action based on the idea that something is true. But there may be situations where you need to handle the inverse. That is, situations where you need to know when something does not meet some criteria. While I personally find it easier to write and debug PowerShell that takes a more positive approach, it is important to understand negation. I thought I would spend a little time going through some of the more 'negative' aspects of PowerShell. Keep in mind that my recommended best practice when it comes to PowerShell scripting is that your code should flow freely, and simple is always better. There is almost always at least two ways to write any PowerShell command. You need to find the way that first solves your need and then is the most elegant. Let's start with some basics. PowerShell Boolean Basics When it comes to deciding if something 'is' or 'isn't' in PowerShell, we are talking about Boolean values that are represented as $True or $False. Boolean values in Windows PowerShell. (Image Credit: Jeff Hicks) One thing I want to point out is that often $True and $False can be implicit. By that I mean, if something exists it can be said to have a value of $True. I realize there are some developers who might take exception to my interpretation. But I am not developing an application in Visual Studio. I am... --- ### About Hyper-V Virtual Processor Limitations > Aidan Finn clears up a few myths about Microsoft guidance on Hyper-V virtual processor limitations and talks about vCPU maximums in Hyper-V. - Published: 2014-12-23 - Modified: 2024-09-04 - URL: https://petri.com/about-hyper-v-virtual-processor-limitations/ - Categories: Hyper-V - Article Type: Overview Aidan Finn clears up common myths on Microsoft guidance on Hyper-V virtual processor limitations in his latest article. I was reviewing older posts on the Petri IT Knowledgebase when I noticed an article called Virtual Processor Limitations in Hyper-V. It occurred to me that I should write an updated post that covers a few related topics. In this article, I will clear up a few myths about Microsoft guidance and talk about support virtual processor maximums in Hyper-V. Virtual Processors versus Logical Processors Consider a physical computer for a moment. This machine has one or more CPUs or sockets. Each CPU has a number of cores. Most Intel desktop or server processors feature something called hyper threading. This is a design that improves parallelization, enabling a single core to process two threads of execution at once. This isn't truly a doubling of processing horsepower, but it does improve capacity when using modern software on a modern processor. In virtualization, it is important to understand how many logical processors a host has. If you have an AMD 8-core CPU, then that CPU has 8 logical processors (LPs). If you have an Intel 8-core CPU, then it will have 8 LPs if hyper threading is disabled and 16 LPs is hyper threading is disabled. Each virtual machine you create also has one or more single-core virtual processors. Each virtual processor executes on a host's LPs. What does this mean? If a host has 16 LPs, then the most number of virtual processors (vCPUs) that can be executing on the host hardware at once is 16. I've tried to use precise... --- ### How to Use Starter Group Policy Objects in Windows Server > Learn how to create, load, and save starter Group Policy Objects in Windows Server Active Directory. - Published: 2014-12-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-starter-group-policy-objects-in-windows-server/ - Categories: Active Directory (AD) - Tags: group policy - Article Type: How To Russell Smith shows us how to create, load and save starter Group Policy Objects (GPOs) in Active Directory. In this Ask the Admin, I'll show you how to work with starter Group Policy Objects (GPOs) to expedite the creation of GPOs in your domain. Starter GPOs were introduced in Windows Server 2008 to help administrators quickly create new Group Policy Objects. Functioning like a template, starter GPOs can only be used to configure settings held under Administrative Templates. The Software Settings and Windows Settings categories are excluded because they contain references to users, groups, computers, and UNC paths. Create a New Starter GPO The Group Policy Management Console (GPMC) is installed on domain controllers or as part of the Remote Server Administration Tools (RSAT) on member servers or client devices. For more information on installing RSAT, see Remote Server Administration T9ools (RSAT) for Windows 8: Download and Install on the Petri IT Knowledgebase. Log on to a Windows Server 2012 R2 domain controller (DC) using a domain administrator account or a device where RSAT is installed. Switch to the Start screen, type group policy management and select Group Policy Management from the search results. If you need to start GPMC with alternate user credentials, make sure Group Policy Management is selected in the search results, press CTRL+SHIFT+ENTER and then enter a username and password. In the left pane of GPMC, expand your AD forest, Domains, and then the domain in which you want to create the new starter GPO if there's more than one domain. Click Starter GPOs under your domain. In this domain I... --- ### Formatted Grouping in PowerShell > Learn different methods for handling grouped output with PowerShell, which includes Format-List and Format-Table cmdlet solutions. - Published: 2014-12-22 - Modified: 2024-09-04 - URL: https://petri.com/formatted-grouping-powershell/ - Categories: PowerShell - Tags: Intermediate, Scripting - Article Type: How To Jeff Hicks shows us three different solutions for formatting grouped output in PowerShell, including tips for working with Format-List and Format-Table cmdlets. In a previous article I guided you through using Group-Object to slice and dice data gathered from PowerShell. You can easily export or convert that output like you would any other PowerShell data. You can either process the grouped information as it is or process each group of related items. The choice is yours. But I thought I'd lend a hand and show you a few ways to take advantage of your grouped output in terms of reporting. I'll start with HTML. Using HTML with PowerShell Reporting Normally when you convert something to HTML, you get a table view of the PowerShell objects. But when working with grouped data, I'm betting you want to break each group down. For example, I'm going to get the 100 most recent entries in my System eventlog and group them on the Source property. ​$logs = Get-Eventlog System -Newest 100 | Group -property Source | Sort Count -Descending I want to create an HTML report with a table for each group. I can accomplish this with a series of HTML fragments. I'll initialize an array that will hold them all. ​$fragments = @ Next, I can process each item in $logs. ​foreach ($item in $logs) { $fragments+="$($item. Name) - $($item. count)" $fragments+= $item. Group | Select TimeGenerated,EntryType,Message | ConvertTo-Html -Fragment } I added a heading for each group that includes the name and the total number of entries for each. You can use as much HTML as you want. Then I am getting each... --- ### Microsoft Makes Azure Disaster Recovery For SMEs and Branch Offices > Microsoft has made Azure Site Recovery, or DR-in-the-cloud, more affordable for small-to-medium enterprises (SMEs) and branch offices. - Published: 2014-12-22 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-makes-azure-disaster-recovery-smes-branch-offices/ - Categories: Microsoft Azure - Tags: Azure Site Recovery, Editor's Pick, Hyper-V Replica, News - Article Type: News Microsoft's Azure Site Recovery is now more affordable to small-to-medium enterprises and branch offices. Microsoft recently modified their DR-in-the-cloud service, Azure Site Recovery, last week to accommodate small-to-medium enterprise businesses and branch offices that run Hyper-V without System Center Virtual Machine Manager. As of December 11, you can now replicate Hyper-V virtual machines, with or without System Center Management into Azure and use Microsoft's disaster recovery site as a low-operational cost, no capital investment, disaster recovery site. The Need for Disaster Recovery Sites Every disaster in the news reminds us that we need to deploy a disaster recovery site and prepare a business continuity plan. Microsoft gave us built-in virtual machine replication in Windows Server 2012 (WS2012) Hyper-V in the form of Hyper-V Replica (HVR). Microsoft designed HVR to provide us with: Asynchronous replication that suits latent Internet connections Accommodation for those inevitable link failures A security model for multi-tenant replication across the Internet In particular, Microsoft designed HVR for small-to-medium enterprises (SMEs) with the ability to scale up. It was great that Microsoft gave SMEs a replication tool for free, but the problem for most organizations of this size is that they don't have a place to replicate to. Azure Site Recovery (ASR) Microsoft launched ASR in January of this year to very little applause. At the time, the product offered orchestration of replication and failover between a customer's own Hyper-V hosts in their own primary and secondary sites. Later in the year, Microsoft expanded ASR to include the ability to use Azure as the disaster recovery site, which sounded great... . --- ### Use Get-CIMInstance to Create a PowerShell File Extension Report > Jeff Hicks teaches us how to use the Get-CIMInstance cmdlet in Windows PowerShell to create a file extension report. - Published: 2014-12-19 - Modified: 2024-09-04 - URL: https://petri.com/use-get-ciminstance-to-create-powershell-file-extension-report/ - Categories: PowerShell - Tags: CIM-WMI, Intermediate, Scripting - Article Type: How To Jeff Hicks shows us how to use the Get-CIMInstance to easily create a file extension report with Windows PowerShell. I love seeing what other people are doing with PowerShell. That is why I keep an eye on the #PowerShell hashtag on Twitter. I always find something interesting and useful. Often, I even learn something new. Usually when I find something new and intriguing, I decide to see what I can do with it. I am always interested to see how I can take an example and expand it. Not too long ago I came across a blog post via Twitter that used Get-CIMInstance to retrieve a list of fixed hard drives and then create a file extension report for all files on that drive. I thought it was nicely done and a clever way to combine different commands. It inspired me to see how far I could take these techniques. Using the Get-CimInstance Cmdlet Using Get-CimInstance is the modern way of accessing Windows Management Instrumentation (WMI) information. This is especially true because it is easy to query remote computers. One drawback to the original code was that it used Get-ChildItem to enumerate all files on the specified drive. That works fine locally but not remotely. You could wrap the entire command in scriptblock and run it remotely with Invoke-Command. But I thought since we're using WMI already, why not use WMI to query for all the files? We can accomplish this using the CIM_Datafile class. Here is a sample that finds all files on my E: drive grouped by the Extension property. ​Get-CimInstance -classname CIM_Datafile -filter "drive='E:'" -outvariable... --- ### 5 Hyper-V Skills You Need To Learn for 2015 > Aidan Finn recommends five Hyper-V skills you need to learn for 2015, including learning PowerShell and embracing Microsoft Azure. - Published: 2014-12-19 - Modified: 2024-09-04 - URL: https://petri.com/5-hyper-v-skills-need-learn-2015/ - Categories: Hyper-V - Tags: Editor's Pick - Article Type: Opinion Not sure which IT skills to devote your time and effort towards learning next year? Aidan Finn suggest five Hyper-V skills you should learn for 2015. In this article I am going to look at the skills that I think IT pros should be looking at developing to make more use of Hyper-V in the coming year. I'll kick things off by pointing out that deploying Hyper-V takes a different set of skills than deploying VMware vSphere. Related: 6 Hyper-V Predictions for 2015 1. Hyper-V Deployment I do not argue that Hyper-V still has a smaller total market share than vSphere. But we have evidence from IDC that Hyper-V continues to grow while vSphere is shrinking. And outside of the USA, at least here in Europe, Hyper-V has a much larger presence than in the USA, possibly because we Europeans were slower to adopt virtualization. It’s for this reason that IT pros should start to learn how to deploy Hyper-V... correctly. Related: 5 Reasons to Choose Hyper-V over VMware I work for a distributor, so I am normally one-step removed from working on customer sites; I sell to the resellers, I teach the resellers, and from time-to-time, I help the resellers or my local Microsoft office out when there is an issue with a project. When I am called into a Hyper-V project it is more often than not because a VMware consulting company has been trying to deploy Hyper-V with a design that they would normally use for vSphere. My Hyper-V MVP colleagues from around Europe have a plethora of stories of when they've been called to undo the damage done in Hyper-V deployments by vSphere... --- ### 6 Hyper-V Predictions for 2015 > Microsoft MVP Aidan Finn gives us his predictions for what we can expect in the world of Microsoft virtualization in 2015. - Published: 2014-12-19 - Modified: 2024-09-04 - URL: https://petri.com/6-hyper-v-predictions-for-2015/ - Categories: Hyper-V - Tags: Docker, Editor's Pick, Hyper-Convergence - Article Type: Opinion Microsoft MVP Aidan Finn gives us his opinion on what developments we can expect to see in the world of Hyper-V in 2015. It’s time once again for every tech author to make dauntless divinations about what will happen in the IT industry in the following year. Hopefully I will take delivery of my robot chauffeur and moon buggy soon, but in the meantime much like like I did last year, I’ll make some predictions about what I think will happen in the world of Microsoft virtualization in 2015. I sure hope I do better this time around than I did for 2014! 1. Docker Hype We’re going to be hearing a lot about a technology called Docker. This snowball started to roll in recent months when Microsoft announced Azure support for Docker via a partnership with the company. Docker can work in Azure right now through a command-line interface (CLI) that was launched for Windows clients, and we know that Docker is coming to Windows Server in the future. Related: IBM and Docker Partnerships Support Microsoft's Cloud Vision Docker is more so an addition to Azure or Hyper-V, rather than being viewed as a distinct competitor. In machine virtualization we have isolation between machines, with each machine having its own operating system. This security boundary contains an OS, libraries, and typically one application. Containerization is done on a per application deployment basis. A Docker engine runs on a single operating system. Containers for different applications are deployed on shared libraries that are hosted by this shared operating system. The Docker engine could be installed on a physical server, or it could be run in the... --- ### Using ClipBook Viewer on Windows 8 > Learn how to run the classic Windows XP ClipBook Viewer application in Windows 8 in this how-to article by Daniel Petri. - Published: 2014-12-18 - Modified: 2024-09-04 - URL: https://petri.com/using-clipbook-viewer-windows-8/ - Categories: Windows 8 - Tags: ClipBook Viewer - Article Type: How To The "clipboard" where the Windows operating system stores the pieces of text, graphical images or other information that has been cut or copied, as a temporary buffer until you paste somewhere else or reboot the computer, then all the information in the buffer is cleared. While the clipboard can contain more than one piece of copied information, Microsoft has not added functionality to in throughout the evolution of modern Windows operating systems. The major drawback of the built-in clipboard is that there’s only one slot for the copied data. As soon as you copy a different piece of information the original data is entirely overwritten. About ClipBook Viewer Up to Windows XP Microsoft used a tool called "ClipBook Viewer" which was included in the System32 folder of the Windows installation folder. The ClipBook Viewer is a small utility that shows you the current content of the Clipboard. Using ClipBook Viewer you can cut or copy information from another program and store it in a page that you can name, save, use again, and share with others. The clipboard can store text in different formats, such as the Text character set (used by most Windows-based programs), the OEM Text format (used by MS-DOS-based programs), and the Unicode character set (a superset of all of the major scripts used in the world). The View menu gives you the ability to see your data in various formats. You can also save the contents of the clipboard to an individual Clipboard file instead of a ClipBook... --- ### Using Microsoft Azure Online Backup > Aidan Finn provides an overview of using Microsoft Azure online backup for Windows client devices. - Published: 2014-12-18 - Modified: 2024-11-19 - URL: https://petri.com/using-microsoft-azure-online-backup/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: Overview Aidan Finn provides an overview of Microsoft Azure online backup, and gives his take on whether the new online backup service is ready for primetime. Microsoft announced, via a support article and then via an official post, that Microsoft Azure Online Backup will now support backing up folders and files from 64-bit editions of Windows 8. 1, Windows 8, and Windows 7. In this article I will review Azure Online Backup for Windows client devices. Online Backup Scenarios Most companies have a rule that no data should be stored on laptops or PCs. I agree with that kind of policy, but in reality, there are exceptions. Many mobile or home workers rarely get to store/sync their documents on a protected store. In my own case, I use OneDrive to store everything that I write. I’d hate it if I accidentally lost a file ... which did happen recently when I accidentally deleted a 2 hour long PowerPoint presentation that took me days to prepare. I had no backup and all I could rescue was a PDF export that I had emailed to someone. OneDrive has no protection. I have a PC at home that is supposed to backup my files to a USB drive but that fails way too often, and it’s pretty useless to me if I need to retrieve a file from archive while I’m on the road. And that’s why online backup is required. Microsoft’s announcement was timed nicely; I was considering configuring an online backup on my synchronized OneDrive folders. Now I can configure online backup from my Windows 8. 1 PC to my existing Azure subscription – I have tested this... --- ### Adding a ToolTip using SAPIEN PowerShell Studio > Learn how to easily add a ToolTip to your WinForms-based script with the help of SAPIEN PowerShell Studio. - Published: 2014-12-17 - Modified: 2024-09-04 - URL: https://petri.com/adding-tooltip-powershell-studio-project/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Adding a ToolTip to a custom script can be a manual and tedious process. SAPIEN PowerShell Studio provides an easier way to automate that process. In a previous article, I demonstrated how to add pop-up help for a WinForm-based PowerShell script using the ToolTip control. Because creating a WinForm script manually can be a tedious process, many IT pros find it useful to use a commercial product, such as PowerShell Studio from SAPIEN. You can download a free evaluation copy from SAPIEN. com. Let's say that I have an existing project and want to add some ToolTip help. I want to use the same technique from my previous article, so check that out first before continuing. I have my project open in PowerShell Studio. Find the ToolTip item in the control Toolbox. Finding ToolTip item in SAPIEN PowerShell Studio. (Image Credit: Jeff Hicks) Drag and drop the control anywhere onto the form. It isn't a visible part of the form, but it's there behind the scenes. Dropping the ToolTip control onto the form in SAPIEN PowerShell Studio. (Image Credit: Jeff Hicks) Next, I'll select the Script tab and paste the outline of my ShowHelp command. ​$ShowHelp = { #display popup help #each value is the name of a control on the form. Switch ($this. name) { "text1" { $tip = "help text here. " } } $tooltip1. SetToolTip($this, $tip) } #end ShowHelp My template assumes you are using a ToolTip control called $ToolTip1. It shouldn't really matter where you insert the command. Eventually I will copy and paste the switch statement for every control that I define. Inserting... --- ### PowerShell Problem Solver: Importing CSV Files into PowerShell > Jeff Hicks shows us how to import CSV files into PowerShell in this helpful tutorial article. - Published: 2014-12-17 - Modified: 2024-09-04 - URL: https://petri.com/importing-csv-files-into-powershell/ - Categories: PowerShell - Tags: Intermediate, PowerShell Problem Solver, Scripting - Article Type: How To Learn all about importing CSV files into PowerShell with this how-to article by PowerShell MVP Jeff Hicks. I see a lot of posts, questions and scripts that involve importing a CSV file into PowerShell. On one hand, working with a CSV file couldn't be easier. On the other hand, PowerShell will happily turn any imported CSV file into a collection of objects, where working with those objects can be a little confusing if you don't completely understand the process. I think part of the problem PowerShell beginners face is that they are still thinking about text, especially when importing a CSV file. Let me show you what I'm talking about. Here's a sample CSV file that includes test data I want to use in PowerShell. "Date","Name","Service","Key","Size","Test" "11/18/2014 6:45:30 AM","Data_1","ALG","","25","false" "11/18/2014 2:17:30 AM","Data_2","AppIDSvc","2","-30","false" "11/17/2014 11:57:30 PM","Data_3","Appinfo","3","42","true" "11/17/2014 11:21:30 AM","Data_4","AppMgmt","4","-7","true" "11/17/2014 11:33:30 AM","Data_5","aspnet_state","","28","true" "11/16/2014 8:51:30 AM","Data_6","AudioEndpointBuilder","6","35","false" "11/16/2014 6:00:30 PM","Data_7","AudioSrv","7","12","false" "11/16/2014 3:41:30 AM","Data_8","AxInstSV","8","","true" "11/16/2014 11:39:30 AM","Data_9","BDESVC","9","32","true" "11/16/2014 11:03:30 PM","Data_10","BFE","10","15","false" "11/18/2014 4:03:30 AM","Data_11","BITS","11","28","true" "11/15/2014 7:57:30 AM","Data_12","Browser","12","31","true" "11/14/2014 12:23:30 PM","Data_13","bthserv","13","16","true" "11/17/2014 10:49:30 PM","Data_14","CertPropSvc","14","-39","false" "11/14/2014 5:33:30 AM","Data_15","cfWiMAXService","15","20","true" "11/13/2014 12:13:30 AM","Data_16","clr_optimization_v2. 0. 50727_32","16","42","true" "11/15/2014 10:54:30 PM","Data_17","clr_optimization_v2. 0. 50727_64","17","28","true" "11/16/2014 11:57:30 PM","Data_18","clr_optimization_v4. 0. 30319_32","18","-45","true" "11/14/2014 2:38:30 AM","Data_19","clr_optimization_v4. 0. 30319_64","19","24","true" "11/11/2014 11:13:30 AM","Data_20","cmdAgent","20","44","true" "11/16/2014 1:33:30 AM","Data_21","COMSysApp","21","24","true" "11/17/2014 8:37:30 AM","Data_22","ConfigFree Gadget Service","22","41","true" "11/11/2014 6:28:30 PM","Data_23","ConfigFree Service","23","33","true" "11/13/2014 4:45:30 PM","Data_24","CryptSvc","24","47","true" "11/9/2014 6:28:30 PM","Data_25","CscService","25","26","true" I'll import once and save the results to a variable so I don't have to keep re-importing the data. ​$data = import-csv c:scriptstestdata. csv As you can see, each value in the CSV header became a property name. Each value in the CSV header becomes a property name. (Image Credit: Jeff Hicks) I recommend you make sure the... --- ### A Handy, Free Tool for Easy USB Disk Ejection > Daniel Petri shares a helpful and free tool to easily eject a USB disk to avoid compromising your data. - Published: 2014-12-16 - Modified: 2024-09-04 - URL: https://petri.com/handy-tool-easy-usb-disk-ejection/ - Categories: Windows Client OS - Tags: Editor's Pick - Article Type: How To Daniel Petri shares a handy tool to help you safely eject your USB disk drives. When using a portable USB disk drive, you probably know that you always need to use the "Safely Remove Hardware" tray icon before unplugging it from the computer. Not only is this true for portable USB disks, but it is also true for other types of mass storage devices, such as portable MP3 players, cameras, and so on. Although Windows tries to protect that data on the portable disk, if you unplug the USB device while data is being written to it, then this can result in data corruption. Safely Ejecting a USB Device in Windows To safely eject the device, left-click or right-click the "Safely remove hardware and eject media" tray icon, and click to select the relevant portable USB disk you want to eject. In previous versions of Windows, there was a difference between regular left-click and right-click, but you don't need to do that anymore in Windows 7 or 8. Selecting a USB disk to eject. (Image Credit: Daniel Petri) If you prefer to use Windows Explorer to eject the device, right-click it and select "Eject. " Ejecting a USB disk drive in Windows Explorer. (Image Credit: Daniel Petri) Windows will tell you when it's safe to remove the device, eliminating any changes of data corruption. The Safe To Remove Hardware dialog in Windows. (Image Credit: Daniel Petri) Sometimes a USB disk may still be required by a program that's running, where Windows places a lock... --- ### Add Pop-Up Tips for PowerShell WinForms Script > Learn how to create pop-up help tips for your custom, graphical PowerShell WinForms Script. - Published: 2014-12-16 - Modified: 2024-09-04 - URL: https://petri.com/add-popup-tips-powershell-winforms-script/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Jeff Hicks shows us how to add pop-up tips to your custom PowerShell WinForms script. IT pros who have taken the leap and dived head-long into PowerShell will eventually find themselves creating graphical PowerShell scripts and tools. This often means using Windows Forms, which is also known as WinForms. You can create some very complicated graphical tools and often IT pros do just that, where these tools are delegated for administration. I would expect the form interface to be intuitive most of the time, but perhaps you might want to add a little interactive help. You can use the ToolTip control to accomplish this. Using a WinForms-Based PowerShell Script Here's a simple WinForms-based PowerShell script: #demo-winform. ps1 ::loadwithpartialname("System. Windows. Forms") # create form 1 $form1 = New-Object system. Windows. Forms. Form $form1. text = "Computer Name" $form1. height = 250 #120 $form1. width = 250 $form1. formborderstyle = 3 # create OK and cancel scriptblocks $oksb = { $form1. dialogresult = 1 $form1. hide } $cancelsb = { $form1. dialogresult = 2 $form1. hide } # create OK button $okbutton1 = New-Object system. Windows. Forms. Button $okbutton1. text = "OK" $okbutton1. height=25 $okbutton1. width=75 $okbutton1. top= 121 #51 $okbutton1. left=105 #147 $okbutton1. add_click($oksb) $form1. controls. add($okbutton1) # create Cancel button $cancelbutton1 = New-Object system. Windows. Forms. Button $cancelbutton1. text = "Cancel" $cancelbutton1. height=25 $cancelbutton1. width=75 $cancelbutton1. top= 121 #51 $cancelbutton1. left= 15 #66 $cancelbutton1. add_click($cancelsb) $form1. controls. add($cancelbutton1) # create label $label1 = New-Object system. Windows. Forms. Label $label1. text = "Enter computer name:" $label1. left=12 $label1. top=9 $label1. width=205 $label1. height=13 $form1. controls. add($label1) # create text box $text1 = New-Object system. Windows. Forms. TextBox #create a default value $text1. Text=$env:computername $text1. left=15 $text1. top=25 $text1. height=20 $text1. width=205 $form1. controls. add($text1) #create some check boxes $check1=New-Object system. Windows. Forms. CheckBox $check1. width=150 $check1. Text= "OperatingSystem" $check1. Top=50 $check1. Left=15 $check1. Checked=$True $form1. Controls. add($check1) #create some check boxes $check2=New-Object system. Windows. Forms. CheckBox $check2. width=150 $check2. Text= "ComputerSystem" $check2. Top=70 $check2. Left=15 $check2. Checked=$False... --- ### How to Open the Windows 8 Command Prompt in any Folder > Learn how to open the command prompt in Windows 8, along with tips on how to easily launch the command prompt in any directory. - Published: 2014-12-15 - Modified: 2024-09-04 - URL: https://petri.com/how-to-open-command-prompt-in-any-folder-in-windows-8/ - Categories: Windows 8 - Article Type: How To Daniel Petri shares a tip for launching the command prompt in Windows 8 in any file directory, without the help of the change directory command. Since the introduction of the Graphical User Interface (GUI) in Windows, many users and administrators used the GUI instead of the good old command prompt.  Although most management tasks can be performed through the GUI, many important tasks and operations still require using a command prompt window. In addition, performing actions from the command prompt window can ease the burden of running repetitive or complex commands that take the output of one command and send it to a different one. In this article, I'll show you an easy way to open a command prompt in Windows 8, along with a method to open a command prompt without using the change directory command. Editor's Note: Microsoft recognizes that many system administrators still actively use the command prompt, so Windows 10 will gain additional features and functionality that will help make the command prompt even more useful. Opening the Windows 8 Command Prompt Opening the command prompt in Windows 8 is esentially identical to the way you used to open it in previous operating systems. You can do so either from a shortcut on the Start page, by running CMD. exe from the run or search commands, or by clicking the Winlogo + X keys and selecting the appropriate action. However, sometimes you find that you need to change your path on the default CMD window to a different location on your computer or even in network shares.  Although this can be easily done using the change directory (cd) command, it still takes tome clicks and time. So why not do it faster? [adkit... --- ### Easily Edit the Hosts File in Windows 10 > Learn how to edit the hosts file in Windows 10 with this step-by-step tutorial by Daniel Petri. - Published: 2014-12-15 - Modified: 2024-09-04 - URL: https://petri.com/easily-edit-hosts-file-windows-10/ - Categories: Windows 10 - Tags: Editor's Pick, hosts file - Article Type: How To Need to edit the Windows 10 hosts file? Learn how in this step-by-step tutorial by Petri site founder Daniel Petri. Most operating systems, including Microsoft Windows versions, use the hosts file to translate computer names.  Also known as "host names" to numerical IP addresses, the hosts file is similar to using a phone book to find the matching phone number of a specific person's name. Note: This article was written at the time when Windows 10 was at Technical Preview build phase. While Domain Name System - or DNS - is mostly used for this function (being a centralized and half-automatically managed name resolution system), the HOSTS file can be used as a local name resolution mechanism, and when used in conjunction with other name resolution mechanisms such as DNS, the HOSTS file takes precedence over them. This is why many users still edit the HOSTS file and add names and IP addresses of servers, websites and other computers they frequently access to it. Location of the Hosts File In Microsoft operating systems, the HOSTS file is located in the following location: C:WindowsSystem32Driversetc Note: We also have tutorial articles on how to edit a hosts file in Windows 8, edit a hosts file in Windows 7 and on a mobile device running Windows RT. How the Hosts File Works The HOSTS file is a text file, one that does not have a file extension. It contains lines of text that are made of IP addresses followed by one or more host names or fully qualified domain names (FQDNs). Each field is separated by white space (blanks or tabulation characters). For example, if you... --- ### Extending Battery Monitoring with WMI Events in PowerShell > Jeff Hicks shows us how to create a script that does battery monitoring with WMI events in PowerShell. - Published: 2014-12-12 - Modified: 2024-09-04 - URL: https://petri.com/extending-battery-monitoring-wmi-events-powershell/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Returning to his series on using PowerShell for monitoring battery life, Jeff Hicks shows us how to extend battery monitoring using WMI Events in PowerShell. Over the course of several articles I've been exploring different ways to take advantage of a PowerShell tool I built to report on remaining battery life. In a previous article, I showed you a simple script that used the Wscript. Shell COM object to display a pop-up message if the remaining battery life was at or below a given threshold. It works just fine except I still have to manually invoke the script. Obviously I don't want to have to do any more work than I have to, probably like many of you, so I need a way to have my script run "auto-magically. " As it turns out, since I am using a WMI class, there is another option available to me, and that is a WMI event subscription. Using a WMI Event Subscription Using WMI, you can create a special relationship called an event subscription. As I will show you, creating this in PowerShell is very easy. The primary piece is referred to as the event consumer. This will be PowerShell command that responds to a special type of filter or query. Most event monitoring will use what is referred to as a temporary event consumer. When the process that created the event consumer ends, so does the subscription. The net effect is that when I close my PowerShell session my monitoring also ends. There are ways to create permanent event subscriptions but they are a bit more complicated and more than what I need for my requirements... . --- ### Assigning Elastic IP Addresses to Amazon EC2 Instances > Learn how to assign elastic IP (EIP) addresses to Amazon EC2 VPC instances. - Published: 2014-12-12 - Modified: 2024-09-04 - URL: https://petri.com/assigning-elastic-ip-addresses-to-amazon-ec2-instances/ - Categories: Amazon Web Services - Tags: Editor's Pick - Article Type: How To Russell Smiths shares simple steps for assigning elastic IP addresses to Amazon EC2 instances. In this easy Ask the Admin, I'll show you how to assign a static public facing IP address to your Amazon EC2 instances (VMs). In Manage IP Addressing with Virtual Private Clouds in Amazon Web Services on the Petri IT Knowledgebase, I showed you how to launch a new nondefault-VPC instance using PowerShell. A Virtual Private Cloud (VPC) is the equivalent of a Microsoft Azure virtual network (VNET). I used a nondefault-VPC to create my own private subnet and address range, which can't be changed in the default VPC provided by Amazon. Additionally, when provisioning the instance using the New-EC2Instance PowerShell cmdlet, I set the –AssociatePublicIp to $true, because nondefault-VPC instances are not assigned public IP addresses. Public IP Addresses and DNS Name Resolution The resulting instance is assigned a different public IP address every time it's started, and while this isn't a problem in itself in the majority of use cases, the instance's external DNS name is made up in part by the assigned public IP address. So if you need to connect to the instance from the public Internet, then you're going to have a lot of fun because its DNS name isn't static. Elastic IP Addresses (EIPs) To solve this problem, you need to provision and associate an Elastic IP address (EIP) with the instance. When an Elastic IP address is associated with an instance, any existing public IP address is returned to the EC2-VPC public IP address pool. Should an EIP be disassociated from... --- ### How to Create and Link a Group Policy Object in Active Directory > Learn how to create and link a Group Policy Object in Active Directory in this step-by-step tutorial by Russell Smith. - Published: 2014-12-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-and-link-a-group-policy-object-in-active-directory/ - Categories: Active Directory (AD) - Tags: Editor's Pick, group policy - Article Type: How To Russell Smith shows us how to create and link a Group Policy Object in Active Directory in this step-by-step how-to article. In this Ask the Admin, I’ll show you how to create a Group Policy Object (GPO) in Active Directory, and link it to a site, domain or Organizational Unit (OU). Group Policy was introduced in Windows 2000 as part of Active Directory, replacing Windows NT System Policies. Group Policy is a powerful tool that can reduce total cost of ownership by helping IT to maintain standard configuration settings on servers and clients. Although PowerShell Desired State Configuration (DSC) may usurp Group Policy at some point in the future as the configuration tool of choice, for the time being Group Policy is a key tool for maintaining any AD domain. Creating a New Group Policy Object The Group Policy Management Console (GPMC) is present by default on domain controllers, or can be installed as part of the Remote Server Administration Tools (RSAT) on member servers or client devices. For more information on installing RSAT, see Remote Server Administration Tools (RSAT) for Windows 8: Download and Install on the Petri IT Knowledgebase. Link a Group Policy Object manager in GPMC (Image Credit: Russell Smith) Once you’ve established from which device you’re going to run GPMC, you’ll need to start GPMC, or log on with a user account that has permission to create new Group Policy Objects (GPOs). While it’s not a best practice, for the purposes of this article, I’ll log on to a Windows Server 2012 R2 domain controller (DC) using a domain administrator... --- ### How to Copy Files with PowerShell Remoting > Learn an easy method on how to copy files with PowerShell remoting functionality. - Published: 2014-12-11 - Modified: 2024-09-04 - URL: https://petri.com/copy-files-powershell-remoting/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Jeff Hicks shares tips for copying files between computers with PowerShell remoting, as an alternative to the common system administrator task. Copying files between computers has long been a common system administration task. In the Windows world this has usually been a no-brainer. The underlying protocols are mature and simply work. And while SMB 3. 0 is a valuable improvement, I thought it might be interesting to copy files through a PowerShell remoting session. With PowerShell remoting you have a secure, encrypted connection between two computers. It can be further protected by using SSL. Personally, I find the big benefit is that communication is done through a single port, which makes the entire process very firewall friendly. So why not use this single port connection to copy files? Copying files between computers is a very common task for system administrators, but PowerShell can help make that job much easier. (Image Credit: Jeff Hicks) Using PowerShell Remoting to Copy Files Let's walk through the process, and maybe you'll learn a new thing or two about PowerShell along the way. First, let's consider a simple text file. $file = "C:workComputerData. xml" $content = Get-Content -Path $file The $content variable holds the content of Computerdata. xml. We can use this variable with Invoke-Command and pass it to a remote computer. Invoke-command -scriptblock { Param($Content,$Path) $content | out-file -FilePath $path -Encoding ascii } -ArgumentList @($content,"c:filesComputerdata. xml") -ComputerName jh-win81-ent I have parameterized the scriptblock to accept values for file content and a file name. Values are passed with the –ArgumentList parameter. This takes the value of $content and sends it to the remote... --- ### Updating the Windows 10 Technical Preview to the Latest Build > Learn how to update the Windows 10 Technical Preview to the new build, and about the different update tracks available after the update. - Published: 2014-12-10 - Modified: 2024-09-04 - URL: https://petri.com/updating-windows-10-technical-preview-latest-build/ - Categories: Windows 10 - Tags: Editor's Pick, Windows Update - Article Type: How To Russell Smith walks us through how to update the Windows 10 Technical Preview to the latest build from Microsoft. In this article, I'll teach you how to upgrade to the latest Windows 10 Technical Preview build and learn about the two update tracks Microsoft is offering within Windows Insider program. Related: How to Install the Windows 10 Technical Preview Yesterday Microsoft released Windows 10 Technical Preview build 9860, and in this Ask the Admin I'll show you how to perform an upgrade. Before starting, be aware that there is no . iso for this build. I suspect that Microsoft might not release another . iso for Windows 10 until the consumer preview arrives in early 2015. Assuming that it will be possible to upgrade to the latest builds without applying every preceding update, the lack of . iso shouldn't be much of a problem. Slow and fast track updates After the upgrade to build 9860, there is the option in PC Settings to choose between two different update tracks. Internally, Microsoft has three tracks: Canary for daily builds, Operating System Group (OSG) once approved by the Canary track, and then Microsoft as a whole once the build has been approved by OSG. Once a new build has been validated by Microsoft employees, it's released to the Windows Insiders 'fast track' first, and at a later stage to the Windows Insiders 'slow track. ' Users running the Windows 10 Technical Preview will be able to choose between slow and fast tracks in build 9860 and later. Although regular updates might be interesting to investigate for IT professionals, it will be more important to see how Microsoft decides... --- ### PowerShell Problem Solver: Finding Installed Software Using CIM Cmdlets > Learn how to use CIM cmdlets in Windows PowerShell to find installed software and applications on your computer. - Published: 2014-12-10 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-finding-installed-software-part-4/ - Categories: PowerShell - Tags: CIM-WMI, Intermediate, PowerShell Problem Solver - Article Type: How To Jeff Hicks shows us another trick for finding installed applications with PowerShell, this time by leveraging CIM cmdlets. Over the last several articles I've been guiding you on how to discover what applications might be installed. In the previous article in this series I demonstrated how to use WMI to query the registry on remote computers, where I specifically showed you how to use StdRegProv. One of the drawbacks is that this uses legacy technology and requires DCOM, which means it is not very firewall friendly. Related: PowerShell Problem Solver: Find Installed Software Using PowerShell Related: PowerShell Problem Solver: Searching the Registry to Find Installed Software There is also no provision for alternate credentials like there is with the Get-WMIObject cmdlet. Although you can get around that using PowerShell remoting and Invoke-Command, then you might as well use the CIM cmdlets. With CIM, we get an easy way to provide alternate credentials and also eliminate DCOM and RPC from the picture. The first step is to create a CIM session to the remote computer. If you need to use alternate credentials, this is where you would do so. ​$cred = Get-Credential globomanticsadministrator $cs = New-CimSession -ComputerName chi-win81 -Credential $cred Even though we will be using CIM, we are still accessing the same StdRegProv provider, so we still need to provide the appropriate hive values and paths. ​$HKLM=2147483650 $rpath = "SOFTWAREMicrosoftWindowsCurrentVersionUninstall" For now I'm going to search the Uninstall key under HKLM. Next we'll create an object for StdRedProv using Get-CimClass. Remember, StdRegProv is not something with instances. We will be using the class's methods directly. ​$regcim = Get-CimClass -Namespace rootdefault -class... --- ### Using Internet Explorer 11 Edge Mode in Windows 10 Technical Preview > Learn how to use Internet Explorer 11 Edge Mode in Windows 10 Technical Preview and how to enable it. - Published: 2014-12-09 - Modified: 2024-11-19 - URL: https://petri.com/using-internet-explorer-11-edge-mode/ - Categories: Windows 10 - Tags: Editor's Pick, Internet Explorer - Article Type: Overview Russell Smith shows us how to use Internet Explorer 11 Edge Mode in Windows 10 Technical Preview in this short tutorial. In this Ask the Admin, I’ll explain how document modes are changing in Internet Explorer, starting in Windows 10 Technical Preview. If you read How to Enable Internet Explorer 11 Enterprise Mode on the Petri IT Knowledgebase last month and experimented with configuring Enterprise Mode, then you may have noticed a new document mode in the Enterprise Mode Site List Manager when creating a site list. Along with the expected document mode types, such as IE8 and IE9, there's also a new mode called Edge. In August 2013, Microsoft announced that document modes would be deprecated starting with Internet Explorer 11. IE in the Windows 10 Technical Preview is the only version that currently includes Edge Mode, and any sites that need one of the deprecated document modes to render correctly will have to be recoded to adhere to web standards going forward. Enabling Edge mode on the new Experimental Features dashboard in Internet Explorer 11 on the Windows 10 Technical Preview. (Image Credit: Russell Smith) At the time of writing, Edge Mode is only enabled by default for a small percentage of Windows Insider users who have downloaded the Windows 10 Technical Preview. But Edge Mode can also be enabled and disabled manually. What is Edge Mode? The concept for Edge Mode comes from the interoperability strategy deployed in Mobile IE in Windows Phone 8. 1 Update, where prior to the update it was found that either mobile versions of... --- ### Reviewing My Hyper-V Predictions For 2014 > Aidan Finn reviews and grades his Hyper-V predictions for 2014 based on what actually transpired this year. - Published: 2014-12-09 - Modified: 2024-09-04 - URL: https://petri.com/reviewing-hyper-v-predictions-2014/ - Categories: Hyper-V - Tags: Editor's Pick - Article Type: Opinion In this retrospective, Aidan Finn reviews and grades his Hyper-V predictions for 2014. Find out which predictions turned out to be true this year. We're winding down 2014, and it's been a crazy year in the world of Microsoft virtualization. As I was last year, I'm still waiting for my workplace PC to be replaced by a VDI virtual machine, and I'm pretty sure that a jetpack and flying car won't be delivered in what remains of 2014. In this article, I will review my predictions for this year. Reviewing My 2014 Predictions I am a fan of the National Football League, the professional American Football league that dominates the sports world in the USA. Every spring, college players are selected by the professional teams in a process called the draft, and experts immediately weigh in to grade each team's selections. This grading process is pretty stupid, because no one really knows how these players will work out, and it can take one to three years to really assign a grade. And by then, none of these experts really wants to go back and review their work. Stupid as these predictions may be -- they still make for great water cooler conversations. So I thought to myself: why don't I go back and review my predictions for 2014 and subject myself to some self-grading? Windows Azure Pack (WAP) Windows Azure Pack (WAP) is the front-end of the private and public cloud offering in the cloud OS, comprised of Windows Server, Hyper-V, and System Center. You'll also find WAP in Microsoft's Cloud Platform System (CPS). I believed that it was time for infrastructure consultants and... --- ### 2014 Holiday Gift Guide for System Administrators > In our 2014 Holiday Gift Guide for System Administrators, Petri IT Knowledgebase staffers brings you top gifts for the holidays, including picks from Logitech, iRobot, Microsoft and more. - Published: 2014-12-08 - Modified: 2024-11-19 - URL: https://petri.com/2014-holiday-gift-guide-system-administrators/ - Categories: Windows Server - Tags: Editor's Pick, Holiday Gift Guide - Article Type: Opinion Having trouble coming up with a thoughtful gift for your system administrator? The Petri IT Knowledgebase staff has you covered with their top picks for this year's holiday gift guide! It's that time if year again, when the airwaves are stuffed with Christmas songs and stressed-out throngs of holiday shoppers risk life, limb, and sanity to get that perfect gift for that special someone. System administrators are no different, and would undoubtedly enjoy giving and receiving some thoughtful holiday gifts. While a lot of other holiday gift guides get published this time of year, we wanted to write one specifically aimed at system administrators, just like we did for 2012 and 2013. So what follows is a holiday gift guide put together by some of the editors, writers, staff, and contributors at the Petri IT Knowledgebase. Regardless if you're celebrating Hanukkah, Christmas, Kwanzaa, Festivus, or want to simply give someone a gift this time of year,  we hope you enjoy the list.  Have some holiday favorite gifts of your own that didn't make the cut? Add comment or two to this blog post and tell us what we missed. 1. What If? Serious Scientific Answers to Absurd Hypothetical Questions Price: $15. 00, by Randall Munroe  Gift suggestion written by: Blair Greenwood (@blair_greenwood), Senior Editor Are you a fan of the web comic xkcd? If so, then you may want to pick up the creator’s book, What If? , which was recently released this fall. The author of xkcd, Randall Munroe, has been known to answer wildly outrageous questions that most people wouldn’t normally think to ask. Even better, Munroe answers these questions with stick-figure illustrations and backs his answers with science by running... --- ### Enable IP between VPC Instances in Amazon Web Services > Learn how to configure security groups in Amazon Web Services so EC2 Virtual private Cloud (VPC) instances can communicate with each other. - Published: 2014-12-08 - Modified: 2024-09-04 - URL: https://petri.com/enable-ip-vpc-instances-amazon-web-services/ - Categories: Amazon Web Services - Tags: Active Directory, Amazon Web Services, Cloud, network management, PowerShell, Virtualization, Windows Server - Article Type: How To Russell Smith shows us an easy way to configure Amazon Web Services security groups so that EC2 VPC instances can communicate with each other. In this easy Ask the Admin, I'll show you how to configure security groups in Amazon Web Services (AWS) so that EC2 Virtual Private Cloud (VPC) instances can communicate with each other. In Manage IP Addressing with Virtual Private Clouds in Amazon Web Services on the Petri IT Knowledgebase, I provisioned virtual machines (Elastic Compute instances) in a VPC, so that the VMs would be assigned to the same internal private IP address each time they are started. This is especially important for servers that require a static IP address, such as Active Directory domain controllers. In that article, I created an Internet gateway for the VPC and set up a new security group that would allow traffic from the Internet to reach instances on TCP port 3389 for Remote Desktop access. Security groups are locked down by default. Because security group configuration is applied to each instance, communication between instances in the same VPC is prevented. In AWS, network ACLs control the traffic allowed to reach VPC subnets, and security groups are used to protect instances. Add Rules to a Security Group For the purposes of this article, I'm going to assume that you already have a security group in your VPC, as described in the article mentioned above. If not, create a new group that allows RDP access to your instances. Don't forget that you can have more than one security group, and instances connected to a VPC can be associated with different security groups... . --- ### More Battery Reporting Fun with PowerShell > Learn how to create a PowerShell battery report tool in this how-to by Jeff Hicks. - Published: 2014-12-05 - Modified: 2024-09-04 - URL: https://petri.com/battery-management-fun-powershell/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To PowerShell MVP Jeff Hicks shows us how to create a PowerShell battery reporting tool in this step-by-step tutorial. In an earlier article I guided you through the process of creating a PowerShell based tool to keep track of battery power. Even if you didn't need the end result, the process I followed and techniques can be helpful in your own projects. In this article I want to continue exploring what I can do with my previous work. I'm always looking to see how far I can push my PowerShell projects. Sometimes PowerShell, or Windows, pushes back but even that can be educational. With my battery check tool, one limiting factor is that I have to remember to periodically run the function in my PowerShell session. But then there's that whole typing-thing. Oh, the agony. To alleviate my pain and suffering, I first need something that will give me a more visual clue about battery life. Creating a PowerShell Battery Report Popup Dialog I decided I wanted an old-fashioned popup box. Being an old-school VBScript guy I always liked the Popup method from the Wscript. Shell object. This is even easier to use in PowerShell. ​$shell = new-object -ComObject wscript. shell $shell. Popup("Hey! What are you looking at? ") Using wscript. shell to create a popup dialog. (Image: Jeff Hicks) The Popup method has additional parameters to control the title, the button selection and icons. What I especially like about this method is that unlike the VBScript MessageBox, I can set a timeout value so that if I don't click on a button, the popup will still... --- ### How to Restore Default Windows Notepad Settings > How to Restore Default Windows Notepad Settings in Windows 7, Windows 8, and Windows Server 2012 - Published: 2014-12-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-restore-default-windows-notepad-settings/ - Categories: Windows Client OS - Tags: Editor's Pick, Notepad Notepad is one of the most commonly used built-in tools that comes with the Microsoft Windows operating system. What makes Notepad so useful, besides the fact that it has been around for so many years, is that when you save files in Notepad, the resulting text files have no format tags or styles, which makes it very suitable for editing system files. In addition, another useful feature of Notepad is that it does not place a lock on the text of log file it opens. This means that it can open files that are already opened by other processes, users or computers. Why Use Windows Notepad? While other, more advanced text editors do exist -- such as the excellent Notepad++ (http://www. notepad-plus-plus. org, and others) -- because of these features and mostly because of the fact that it’s simple to use and available in the core operating system without the need to install any additional software, Notepad is usually the tool you go to when you need to perform a simple text file creation or edit. Notepad is used to create and edit not just text files, but also several other file format types such as batch files, registry files and scripts. Notepad was changed very slightly in the past years, since the days of Windows 95 (it’s been around since even before that, but let’s talk about GUI-based OSs for now). Originally, in Windows 95, “Fixedsys” was the only available display font for Notepad. In Windows 2000, the default font was... --- ### How to Install the Windows 10 Technical Preview > Learn how to install the Windows 10 Technical Preview in this step-by-step tutorial by Daniel Petri. - Published: 2014-12-04 - Modified: 2024-09-04 - URL: https://petri.com/install-windows-10-technical-preview/ - Categories: Windows 10 - Article Type: How To Haven't tried Windows 10 yet? Daniel Petri shows us how to install the Windows 10 Technical Preview in this step-by-step tutorial and deep-dive into the Windows 10 install process. So you came here because you want to learn how to install Windows 10. We've already posted articles on how to run the Windows 10 Technical Preview in a VMware Workstation virtual machine, as well as in a Hyper-V virtual machine. But we haven't posted a detailed how-to on the installation itself, so enter this how-to guide. Note: This article was written in November 2014. At this point, Windows 10 is in pre-beta technical preview format, meaning that it is just a conceptual demo of how some of the new OS features and interface will look like. It likely will change between what it is now and what the released to manufacturing (RTM) version will look, feel, and how it will work. Therefore, whatever we write in this article may likely be void once we approach the official Windows 10 OS release date sometime in mid-2015. Windows 10 Technical Preview: Install at your own risk It is also important to note that at this point of writing, the Windows 10 technical preview is not for everyone. Although everyone may join, download, and install it, you must know your way around a PC, know how the OS works, know what to expect and how to troubleshoot issues if they don’t work as expected to really benefit from the technical preview. Microsoft clearly states that this is a buggy version, and you need to be prepared in case something stops working. You should not install this version on production computers or on computers... --- ### Anti-Malware Solutions for Microsoft Azure Virtual Machines > Learn about different anti-malware solutions, including options from Microsoft, McAfee, Symantec, and Trend Micro for Azure virtual machines. - Published: 2014-12-03 - Modified: 2024-11-19 - URL: https://petri.com/anti-malware-solutions-microsoft-azure-virtual-machines/ - Categories: Security - Tags: Anti-Malware, Editor's Pick - Article Type: Overview Learn about different anti-malware solutions for your Microsoft Azure virtual machines. Just about every company has a security policy that contains a statement that goes like this, "Every computer running Windows must have anti-virus installed. " We IT pros take that for granted. What about your virtual machines running a Windows guest OS in Azure? Don't they need the same, if not more, security? In this article, I will discuss your options for deploying anti-malware in Azure virtual machines. The Need for Anti-Malware Nimda, Code Red, STUXNET, MS Blaster, Conficker... all send shivers up the spines of IT pros. There's two things we consider to be good practice with Windows computers, be they servers or client devices, virtual or physical: Deploy Windows Updates: The primary means to prevent malware infections Install anti-malware: A real-time scheduled scanner with clean up functionality Malware is a real threat, even in the 'secure' isolation of the computer room or data center. The old joke about making a computer secure is true: you need to dig a two meter deep hole, unplug the computer, throw it in the hole, fill it with rebar concrete, and post a guard with seismic sensors. And then you have a secure, but useless computer. A usable service is at risk, and therefore we have to take protective measures. I worked in the hosting business, and once in a while, a customer would end up with an infected website (not updating WordPress, maybe) or an infected server (not applying their updates). Since then, a whole new market for malware has evolved... . --- ### PowerShell Problem Solver: Find Installed Software using WMI and StdRegProv > Learn how to find installed software using WMI and StdRegProv in this latest PowerShell Problem Solver from Jeff Hicks. - Published: 2014-12-03 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-find-installed-software-powershell-part-3/ - Categories: PowerShell - Tags: CIM-WMI, Editor's Pick, Intermediate, PowerShell Problem Solver - Article Type: How To Learn how to find installed software using WMI and StdRegProv in this latest PowerShell Problem Solver from Jeff Hicks. In the first few articles of this series, I guided you through several different techniques for identifying installed applications. Remember, I'm only talking about applications that have been installed via an installation package. Stand alone or portable applications are much more difficult to identify. In the previous article, I demonstrated how to query the registry. I ended by showing you how to query a registry path under HKEY_CURRENT_USER. The challenge is that when you search that registry hive, you are doing it for your current credentials. So if you try the following command, then the search will be for whatever credentials you connect with. This is probably not what you really want to accomplish. ​Invoke-Command -scriptblock { dir HKCU:SoftwareMicrosoftWindowsCurrentVersionUninstall -pv p | get-ItemProperty |Select @{Name="Path";Expression={$p. name}},Displayname,DisplayVersion, Publisher,InstallDate,InstallLocation,Comments,UninstallString } -ComputerName DESK01 Today I have a few options using WMI. As a benefit, you can easily query remote computers, although you will need to make sure the RemoteRegistry service is running. Allow me to introduce you to something called StdRegProv. This is WMI provider that coordinates access to the registry. It is a bit cumbersome and very much a developer-oriented topic, but we can still use it. First, I'm going to create a variable to represent the HKEY_USERS hive. ​$HKEY_USERS=2147483651 Each registry hive is a separate numeric value, but let's stick to this for now. Next is a variable for the computer to be queried. ​$computername = $env:computername I'm going to test with the local host. The tricky... --- ### Configure DHCP and DNS in an AWS Virtual Private Cloud > Learn how to configure DHCP and DNS in an AWS Virtual Private Cloud. - Published: 2014-12-02 - Modified: 2024-09-04 - URL: https://petri.com/configure-dhcp-dns-amazon-web-services-virtual-private-cloud/ - Categories: Amazon Web Services - Tags: Editor's Pick - Article Type: How To Russell Smith shows us how to get DNS resolution working for Active Directory by creating a new DHCP options set in Amazon Web Services. In this Ask the Admin, I’ll show you how to get internal DNS resolution working in an Amazon Web Services Virtual Private Cloud (VPC). In Manage IP Addressing with Virtual Private Clouds in Amazon Web Services on the Petri IT Knowledgebase, I demonstrated how to provision virtual machines (Elastic Compute instances) in a VPC, which is the equivalent of a virtual network in Microsoft Azure. In contrast to classic EC2 instances, VMs associated with a VPC are assigned an internal private IP address that remains with them throughout their entire lifecycle, which is important for some server workloads. Obtaining a static IP address is a good start, but you’ll also need to consider how to get DNS name resolution working so that you can locate not only resources on the Internet, but also other VMs in your VPC. If you decide to use the internal DNS names automatically assigned to each instance, internal name resolution works out-of-the-box. If you want to set up Active Directory in your VMs, you’ll likely want to use a Windows DNS server, installed on a domain controller or dedicated VM. In this case, the DHCP settings for the VPC need to be modified. DHCP Option Sets VPCs are assigned a DHCP options set that’s configured to provide name resolution for Internet connectivity, and the internal DNS names automatically assigned to each instance. Otherwise known as Amazon Provided DNS, this server occupies the second IP address of your VPC’s assigned address block. For... --- ### Manage IP Addressing with Virtual Private Clouds in Amazon Web Services > Manage IP addressing with Virtual Private Clouds in Amazon Web Services by provisioning a Windows Server 2012 R2 virtual machine with the help of Windows PowerShell. - Published: 2014-12-02 - Modified: 2024-09-04 - URL: https://petri.com/manage-ip-addressing-virtual-private-clouds-amazon-web-services/ - Categories: Amazon Web Services - Tags: Amazon, Editor's Pick - Article Type: How To Learn how to provision a Windows Server 2012 R2 VM with a static private IP address in a Virtual Private Cloud (VPC), with the help of Windows PowerShell. In this article, I'll show you how to provision a Windows Server 2012 R2 virtual machine (EC2 instance) with a static private IP address in a Virtual Private Cloud (VPC), all with the help of Windows PowerShell. In a previous article, Provision Windows Server in Amazon Web Services using PowerShell, I walked through provisioning Windows Server EC2-Classic instances in Amazon Web Services (AWS), but there are two major limitations to this approach. The first is that when stopped, classic instances lose their private internal IP address, meaning that they can't be used for workloads, such as Active Directory domain controllers. Secondly, classic instances always use shared resources and can't be configured on single-tenant hardware. Manage IP Addressing with Virtual Private Clouds in AWS The other type of instance is Virtual Private Cloud (VPC). An AWS VPC is the equivalent of an Azure virtual network (VNET), and any instances provisioned in VPCs automatically acquire static internal IP addresses. The only real difference between provisioning EC2-Classic and VPC instances is that for the latter, you must specify a subnet associated with a VPC, otherwise the provisioning process is identical. Prerequisites Before continuing, you'll need to be familiar with the process of provisioning an EC2-Classic instance as described in Provision Windows Server in Amazon Web Services using PowerShell on the Petri IT Knowledgebase. The article includes information about setting up and configuring the AWS Tools for Windows PowerShell on your PC, how to get an image name for the –ImageId... --- ### Using Microsoft Azure Forced Tunneling > Learn how to use Azure Forced Tunneling to route Azure virtual networks and machines via your on-premises network. - Published: 2014-12-01 - Modified: 2024-09-04 - URL: https://petri.com/azure-forced-tunneling/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Aidan Finn teaches us about forced tunneling, a new Azure feature that lets you control the flow of traffic from your Azure virtual networks. Microsoft announced a number of new features in Azure infrastructure-as-a-service (IaaS) networking during TechEd Europe 2014. One of these was forced tunneling, a new feature that allows you to control the flow of traffic from your Azure virtual networks (VNets). In this post, I will explain the role of force tunneling and show you how to implement it. What is Microsoft Azure Forced Tunneling? Imagine you have a scenario where you have deployed a site-to-site VPN connection to an Azure VNet. In this VNet you have multiple virtual subnets, each with a different role. One subnet might contain publicly visible web servers. A second might contain mid-tier application servers, and a third might contain database servers. Your organization might dictate that all private servers must never route to the Internet without passing through policy enforcement services that run on-premises. If this is the case, then you have an issue because any virtual machine in the Azure VNet has a route to the Internet via Azure's fabric without passing through your on-premises network(s). The solution is to implement forced tunneling. This allows you to sensibly enforce routing via your on-premises network: The front-end subnet (web servers) will route directly to the Internet. It makes no sense for them to bypass the cloud-scale bandwidth and optimization services of Azure. The mid-tier (application server) and back-end (database servers) subnets will route via the VNet's VPN gateway to a selected Local Network (your on-premises network - configured in Azure). Selectively... --- ### How to Configure Windows Server as an iSCSI Target and Storage Server > Learn how to use iSCSI to configure Windows Server 2012 R2 as a storage server. - Published: 2014-12-01 - Modified: 2024-09-04 - URL: https://petri.com/setup-windows-server-2012-r2-iscsi-storage-server/ - Categories: Windows Server 2012 - Tags: Editor's Pick - Article Type: How To Russell Smith teaches us how to use iSCSI to configure Windows Server 2012 R2 as a storage server. In this Ask the Admin, I'll show you how to configure Windows Server 2012 R2 as an iSCSI storage server array, and how to connect to it from another server. What is iSCSI? iSCSI has been around for a long time, and while it might sound like a technology that's only available in enterprise-grade hardware, it's bee n supported in Windows since Vista. It is also supported by many Network Attached Storage (NAS) solutions and works over standard Ethernet. But what is iSCSI? SCSI interfaces have long been used to connect peripherals, mainly hard drives, to servers. SCSI is favored in server hardware due to the performance benefits it provides over SATA interfaces found in most consumer PCs. iSCSI allows remote devices to be connected across Ethernet networks, but appear as if they are attached locally. Performance is often better than mapping a drive, and iSCSI provides better compatibility with applications that don't support mapped network drives. It's also a great solution for extending storage on devices such as notebooks where there is limited expansion capability. In this demonstration, I'm going to set up Windows Server 2012 R2 with two locally attached disks in a mirrored pair, and then configure the iSCSI Target Server role to make the storage accessible from another server. You can adapt the instructions for your home or office lab, or use Azure, remembering that while you will be able to get this working in the cloud, it's not a supported scenario for production systems. In my... --- ### Provision a Windows Server Storage Spaces Mirrored Volume with PowerShell > Learn how to configure a Windows Server Storage Spaces Mirrored Volume with PowerShell. - Published: 2014-11-30 - Modified: 2024-11-19 - URL: https://petri.com/provision-storage-spaces-mirrored-volume-in-windows-server-using-powershell/ - Categories: Windows Server 2012 - Tags: Editor's Pick, storage spaces - Article Type: How To Russell Smith shows us how to configure a Windows Server 2012 R2 Storage Spaces Mirrored Volume using PowerShell. In this easy Ask the Admin, I’ll show you how to quickly set up a Storage Spaces mirrored volume on Windows Server 2012 R2 with the help of PowerShell. Storage Spaces debuted in Windows Server 2012, and provides storage virtualization capabilities offering flexibility, durability, and scalability once only available in expensive hardware-based storage solutions. While previous versions of Windows Server included software RAID, it was considered inferior to enterprise-grade hardware alternatives. In contrast, Storage Spaces utilizes advances in Windows Server to provide software RAID that can in many configurations match the performance of hardware RAID, assuming the disks and connecting interfaces are up to the job. If performance isn’t a key consideration, Just a Bunch of Disks (JBOD) can be used to provide fault-tolerant storage. Storage Spaces doesn’t just do resiliency, but also tiered storage and continuous availability among other things. But in this article, we’ll look at how to mirror a pair of locally attached disks, and create a volume accessible to Windows. For more information on Storage Spaces, see Windows Server 2012: Is Storage Spaces the Killer Feature? and New Features in Windows Server 2012 R2 Storage Spaces on the Petri IT Knowledgebase. Prepare the Disks I’m going to use an Azure virtual machine for this demonstration. You can easily perform the following instructions on a server in your home or office lab. Start by attaching two disks to your server. To attach a disk in Azure: Log in to the Azure... --- ### PowerShell Problem Solver: Searching the Registry to Find Installed Software > Jeff Hicks shows us an easy way to search your computer's registry to find installed software with PowerShell. - Published: 2014-11-26 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-find-installed-software-part-2/ - Categories: PowerShell - Tags: PowerShell Problem Solver - Article Type: How To Jeff Hicks continues his discussion on how to find installed software on your computer. In this article, he provides an easier and faster method of searching the registry with PowerShell. In the first part of this series we looked at using WMI to identify installed applications. While I believe that is an effective method, it can be painfully slow. Fortunately, there is another path to explore and that is by searching the registry. Most applications that are installed via an installation package will record uninstalled information in the registry. There's no guarantee of knowing if something you find in the registry is in fact still installed, and of course, not every installed application will record itself. But let's look at how you could query this information because I'm sure more than a few of you will find it useful. Related: PowerShell Problem Solver: Find Installed Software using WMI and StdRegProv It is not too difficult to query the registry with PowerShell. However, you can only query using the Registry PSDrive on the local computer. To query remote computers, simply wrap the commands I'll be showing you in a script block and use the Invoke-Command. In fact, let's jump right to it, and here's a one-line command to list names of applications that can be uninstalled. ​dir HKLM:SOFTWAREMicrosoftWindowsCurrentVersionUninstall | Get-Itemproperty -Name Displayname | Select Displayname To run on a remote computer, use something like this: ​Invoke-Command –scriptblock {dir HKLM:SOFTWAREMicrosoftWindowsCurrentVersionUninstall | Get-Itemproperty -Name Displayname | Select Displayname } –computername Desk01 There is a potential problem here in that some registry entries might not have a Displayname property, which will result in an error. If you are merely looking for a... --- ### Reduce VDI costs by Enabling Data Deduplication on Windows Server 2012 R2 > Learn how to reduce on your VDI deployment costs by enabling data deduplication on Windows Server 2012 R2. - Published: 2014-11-25 - Modified: 2024-09-04 - URL: https://petri.com/reduce-vdi-costs-enable-windows-server-2012-r2-data-deduplication/ - Categories: Windows Server 2012 - Tags: Editor's Pick - Article Type: How To Aidan Finn shows us how enabling data deduplication on Windows Server 2012 R2 storage can save on your VDI deployment costs. Virtual desktop infrastructure (VDI) might not be the panacea that Gartner, Forrester and their ilk preached it to be five years ago, but VDI still has a valuable role to play. Unfortunately, VDI is very expensive, and that cost increases when we need to deploy personal (non-pooled) virtual machines. In this article, I will show you how you can reduce that cost by enabling deduplication on Windows Server 2012 R2 storage to reduce the cost of providing fast storage for this kind of VDI virtual machine. Related: Virtual Desktop Infrastructure (VDI) and Automated Storage Tiering VDI Virtual Machine Options: Shared and Dedicated There are two kinds of virtual machines in a VDI. The most economical kind is a pooled (or shared) virtual machine. In the Microsoft world, this solution is based on a template VHDX file with virtual machines being created using differential disks that use the template as a parent. We can improve the performance of this solution by pinning the template VHDX on an SSD tier of storage. And considering that each differential disk is going to be small, we might even be able to stretch the budget a little to store them on tiered storage or on an SSD-only volume, too. The second kind of VDI virtual machine is a personal or dedicated virtual machine. Every time a user is provided with one of these, a whole new fixed or dynamic VHDX file is created from a template. This gives the user their own, long-lasting... --- ### Building a Battery Manager with PowerShell > Learn how to build a battery manager with PowerShell in this tutorial by Jeff Hicks. - Published: 2014-11-24 - Modified: 2024-09-04 - URL: https://petri.com/building-battery-manager-powershell/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Scripting - Article Type: How To Jeff Hicks shows us how to build a battery manager with PowerShell in this handy step-by-step tutorial article. Windows Management Instrumentation (WMI) never ceases to surprise me. I always find something new that I can manage via WMI and PowerShell. One particular piece of information that I personally needed focuses on the Win32_Battery class. Because my primary computers are laptops, it is important to know what is happening with battery life. Yes, there is an icon in the system tray, but I have to grab the mouse and hover on it to get more detailed information. And more often than not, I'm so focused on the task at hand that I totally ignore the system tray. So allow me to walk you through my process for creating a battery management tool with WMI and PowerShell. You may not need to use my code samples, but they might prove useful as a model for your own scripting efforts. Because I am going to run this locally, I'm going to stick with Get-WMIObject. Although I could use Get-CimInstance, there's not much benefit that I can see since the local machine's connection is made via DCOM. First, how did I know what class to use? I asked PowerShell. Using Get-WMIObject in Windows PowerShell. (Image Credit: Jeff Hicks) Generally, for anything in the RootCimv2 namespace I will use a Win32 class, which leaves me with two options. If you refer to official MSDN documentation for the Win32_Batter class and Win32_PortableBattery class, you'll notice that the classes look very similar. It also would seem that the Win32_PortableBattery would be a better choice. But then... --- ### Provision Windows Server in Amazon Web Services using PowerShell > Learn how to automate the provisioning of Windows Server in Amazon Web Services using PowerShell. - Published: 2014-11-24 - Modified: 2024-09-04 - URL: https://petri.com/provision-windows-server-amazon-web-services-using-powershell/ - Categories: Amazon Web Services - Tags: AWS, Editor's Pick - Article Type: How To Russell Smith shows us how to provision a Windows Server instance in Amazon Web Services using PowerShell in this handy how-to article. In light of the recent Microsoft Azure outage, you might be considering taking a look at other cloud service providers to use for backup or disaster recovery. In this how-to article, I'll show you how to provision Windows Server 2012 R2 using PowerShell on Amazon's Elastic Compute (EC) platform so that you can quickly create test or production environments. For information on provisioning VMs using the EC2 management console and how to sign up for AWS, see Provisioning Windows Server 2012 on Amazon Web Services (AWS) on the Petri IT Knowledgebase. Install AWS Tools for Windows PowerShell I'm going to configure AWS Tools for Windows PowerShell on Windows 8. 1. If you are using an earlier version of Windows, additional steps may be required. AWS Tools for Windows PowerShell requires Windows PowerShell 2. 0 or later and Windows XP or later. The instructions also assume that you already have an AWS account. Download the AWS Tools for Windows. Click through the installer and on the Custom Setup screen deselect all the components apart from SDK for . NET 4. 5, SDK for . NET 3. 5 and AWS Tools for Windows PowerShell, and then click Next. Click Install to complete the procedure. If you haven't done it already, start the PowerShell console as an administrator and set the script execution policy to RemoteSigned by typing Set-ExecutionPolicy RemoteSigned and pressing ENTER. TIP: To start the PowerShell console as an administrator in Windows 8. 1, switch to the Start screen, type powershell, make sure that Windows PowerShell is... --- ### Microsoft’s View on Hyper-Convergence > Petri IT Knowledgebase Contributing Editor Aidan Finn gives us his opinion of Microsoft’s view on hyper-convergence. - Published: 2014-11-21 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-view-hyper-convergence/ - Categories: Hyper-V - Tags: Editor's Pick - Article Type: Opinion Aidan Finn gives us his opinion of Microsoft’s approach to hyper-convergence, as was shared at Microsoft TechEd Europe 2014 in October. Back in September I wrote an article called “What is Hyper-Convergence? ” In that article, I explained what this concept was and I shared my thoughts on the positives and negatives of this kind of deployment of Hyper-V, vSphere, or other virtualization/cloud platforms. In this article, I will explain what I believe to be Microsoft’s viewpoint on hyper-convergence. What is Hyper-Convergence? The traditional deployment of a vSphere or Hyper-V farm has several tiers connected by fabrics. The below diagram shows a more traditional deployment using a storage area network (SAN). In this architecture you have: Storage trays Switches (iSCSI or fiber channel) Storage controllers Virtualization hosts (application servers) A traditional deployment of virtualization. (Source: Aidan Finn) In the Hyper-V world, we are able to do a software-defined alternative to a SAN called a Scale-Out File Server (SOFS), where: RAID is replaced by Storage Spaces Storage controllers are replaced by a Windows Server transparent failover cluster iSCSI and fiber channel are replaced by SMB 3. 0 But for the most part, the high-level architecture doesn’t really change: A Hyper-V farm with a SOFS. (Source: Aidan Finn) In the world of hyper-convergence, we simplify the entire architecture to a single tier of servers/appliances that run: Virtualization Storage/cluster network Storage I say “simplify” but under the covers, each server will be running like a hamster on a wheel ... on an illicit hyper-stimulant. What Microsoft Says About Hyper-Convergence Hyper-convergence is a topic... --- ### Configure Multiple NICs in an Azure Virtual Machine > Learn how to provision a Microsoft Azure virtual machine with two or more network interface cards in this how-to article by Russell Smith. - Published: 2014-11-20 - Modified: 2024-09-04 - URL: https://petri.com/configure-multiple-nics-in-an-azure-virtual-machine/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Need to provision a Microsoft Azure virtual machine with two or more network interface cards? Russell Smith shows us how to do exactly that in this handy how-to article. In this Ask the Admin, I’ll show you how to provision an Azure VM with multiple network interface cards (NICs), and explain some of the current limitations of the feature. The ability to add multiple NICs to VMs has only recently been added to Azure, and allows more flexibility in managing network traffic. For example, you might want to isolate data from management traffic, or utilize a virtual network appliance that requires two or more NICs. Multiple NICs in Azure VMs There are currently a few restrictions on the use of multiple NICs. The first is that you cannot add NICs once a VM has been provisioned, the VM must be connected to an Azure virtual network (vnet), and VMs with multiple NICs cannot forward packets not destined for or originating from one of the IP addresses assigned to the VM. Multiple NICs on a VM can be connected to the same subnet, but can’t be managed by Azure network security groups (NSGs) and Forced Tunneling can’t be applied, except on the default NIC. Two NICs in an Azure virtual machine (Image Credit: Russell Smith) Small and medium sized VMs don’t support multiple NICs, so you’ll need to provision a VM with 4 cores (Large) to get 2 NICs, or 8 cores (Extra large) to get 4 NICs. Extra NICs can only be added using PowerShell, so you’ll need to set up the latest Microsoft Azure PowerShell tools on your management PC and... --- ### The Microsoft Azure Outage: Why It Happened > Microsoft Azure suffered a widespread outage on November 18th/19th. This article looks at the cause, and asks what Microsoft could have done differently. - Published: 2014-11-20 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-outage/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: Opinion Microsoft Azure recently suffered a widespread outage, which impacted many users across the globe. Aidan Finn takes a look at the cause, and asks what Microsoft could have done differently. I woke up yesterday morning (Wednesday, November 19th) to find my Twitter feed filled with angry tweets about Azure issues. Customers at work were suffering outages. Something had gone wrong in Microsoft Azure and it was taking some time to resolve. What Happened? At around 00:52 UTC (19:52 PST or 01:52 CET) a number of services started to suffer performance issues and outages, including: Storage Virtual machines Visual Studio Online Websites Search And much more The issue appeared to affect all regions, if not most, with the issues being slightly different in each region – Kurt Mackie of Redmond Magazine has more details. This was a widespread failure in Azure that affected customers for several hours. Over 24 hours later (when I wrote this post), some customers in the West Europe (Amsterdam) region are still having issues with virtual machines. The Cause Microsoft explained the cause of the issues in a post on the Azure blog, authored by Jason Zander, Corporate Vice President of Microsoft Azure. A performance update was deployed to Azure Storage. This update had been previously tested in “a subset of our customer-facing storage service for Azure Tables”, according to Zander.  This “flight” in Azure Tables proved that the update improved performance. Unfortunately for customers of Microsoft Azure, the testing practices of Microsoft that continue to hurt on-premises Server products, finally caught up with Microsoft’s public cloud. An issue that went undetected in the Azure Tables flight arose on Tuesday night/Wednesday morning after the update was... --- ### An Overview of the Microsoft Cloud Platform System > Aidan Finn gives an overview of Microsoft's Cloud Platform System, which is the company's cloud-in-a-rack solution built on Dell hardware. - Published: 2014-11-19 - Modified: 2024-09-04 - URL: https://petri.com/overview-of-microsoft-cloud-platform-system/ - Categories: Hyper-V - Tags: Cloud Platform System, CPS, Dell, Editor's Pick - Article Type: Opinion Aidan Finn gives an overview of Microsoft's Cloud Platform System, which is the company's cloud-in-a-rack solution built on Dell hardware. Microsoft recently announced a new Microsoft-sold cloud-in-a-rack solution called Cloud Platform System (CPS) based on Dell hardware. Jonathan Hassell wrote an article for the Petri IT Knowledgebase in October that gave us a first look at CPS. In this article, I am going to review CPS – I saw 'review' because I, like the vast majority of Microsoft customers and partners, will never even get my hands on a CPS deployment. But as you will find out soon, neither will many CPS customers! So everything I write in this article is based on materials presented at TechEd Europe in November 2014, namely: Architectural Deep Dive into the Microsoft Cloud Platform System Using Tiered Storage Spaces for Greater Performance and Lower Costs What is Microsoft's Cloud Platform System? Let's get this out of the way first: CPS is not, as many in the media have dubbed it, Azure-in-a-box. That's because you will find the real Azure in Microsoft's data centers and possibly the two partner-operated regions that are in China. CPS actually takes components that you can purchase for yourself and bundles them up into a package that is sold directly by Microsoft. Those components are: Dell hardware: Storage, switches and servers Chelsio NICs: For iWARP, 10 GbE Remote Direct Memory Access (RDMA) enabling SMB Direct storage networking Mellanox NICs: Adding more 10 GbE with NVGRE offload for optimized virtual networking F5 load balancers: Two VIPRION 2100 modules are included in each rack Windows Server 2012 R2: Providing Hyper-V... --- ### PowerShell Problem Solver: Find Installed Software Using PowerShell > Jeff Hicks shows us an easy method for finding installed software on your computer with Windows PowerShell. - Published: 2014-11-19 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-find-installed-software-part-1/ - Categories: PowerShell - Tags: Editor's Pick, PowerShell Problem Solver - Article Type: How To In this PowerShell Problem Solver, Jeff Hicks shows us a way to easily find installed software on your computer with PowerShell. aOne question that I see often in PowerShell forums is how to find out what applications are installed on a given computer. Naturally the solution should be done with PowerShell. This is a great choice because as you will see, identifying installed applications is pretty easy and once you have the information you can do much with it from exporting to a CSV file to creating an HTML report. Related: PowerShell Problem Solver: Searching the Registry to Find Installed Software Related: PowerShell Problem Solver: Find Installed Software using WMI and StdRegProv One thing I wouldn't do though is to rely on scripting techniques, PowerShell or otherwise to service as a license management mechanism. If you have that type of business requirement then you should be investing in a license management product. My other caveat is that you can really only find applications that were installed via an MSI package. It is very hard to find any stand-alone executables unless you know what you are looking for. But let's see what we can figure out. The primary tool will be WMI, and specifically the Win32_Product class. You can query this class with Get-WMIObject. But if you are running PowerShell 3. 0 or later, I recommend you use Get-CimInstance. You will be querying the same WMI class, but Get-WMIObject relies on RPC and DCOM connections whereas Get-CimInstance uses the WSMan protocol, which makes it much more firewall friendly. Although there may be situations where you want to take advantage of both. For... --- ### Chris Bradshaw Announced as Winner of Petri IT Hero Contest > System Administrator Chris Bradshaw has been selected as the winner of the first-ever Petri IT Hero contest. Congratulations Chris! - Published: 2014-11-18 - Modified: 2024-09-04 - URL: https://petri.com/chris-bradshaw-announced-winner-petri-hero-contest/ - Categories: Windows Server - Tags: Editor's Pick, Petri IT Hero - Article Type: News System Administrator and Petri IT Knowledgebase reader Chris Bradshaw has been selected as the winner of the Petri IT Hero contest. Congratulations Chris! After weeks of nominating and voting, our Petri IT Hero contest has come to an end. We'd like to thank all of our readers who took the time to nominate someone who inspired them or mentored them in their IT careers. We know that having an IT expert to go to for advice -- whether for help with thorny IT issues or as a sounding board for career advice -- can be invaluable. So we thank you for helping us recognize the people that keep the wheels on the global IT train rolling 365 days a year, 24 hours a day. The Winner: Chris Bradshaw The Petri IT Hero contest was divided into two phases: A nomination phase, where readers could nominate their IT heroes by writing a short essay; and a voting phase, where Petri readers were asked to vote on the top 10 finalists, as selected by the Petri IT Knowledgebase Editorial team. Chris Bradshaw (L) and Alex Pinner (R) holding the Xbox One game consoles they won in the Petri IT Hero contest. (Image: Chris Bradshaw) Now that the voting has ended, we're happy to announce that Chris Bradshaw (@aldershotchris), a Systems Administrator at the University of Surrey, in Guildford, UK, has been selected as our winner. Congratulations, Chris! The Winning Essay Chris was nominated by Alex Pinner, and I've reprinted Alex's essay nominating Chris in its entirety below. Nominee: Chris Bradshaw Nominated by: Alex Pinner Essay: Chris is a Systems Administrator working for a... --- ### Failover Clustering in Windows Server Technical Preview > Aidan Finn discusses the new features of Failover Clustering in Windows Server Technical Preview. - Published: 2014-11-18 - Modified: 2024-11-19 - URL: https://petri.com/failover-clustering-windows-server-technical-preview/ - Categories: Windows Server 2016 - Article Type: Opinion Aidan Finn delves into what's new with failover clustering in the Windows Server Technical Preview. Microsoft announced a few features with the launch of the Technical Preview of the next release of Windows Server, due for general availability release in the second half of 2015. More information was released at TechEd Europe 2014 in early November. Failover Clustering is continuing to improve software-defined compute (AKA virtualization or Hyper-V) and software-defined storage solutions. This article will discuss the known new features in Windows Server Technical Preview. Related: Install Windows Server Technical Preview in Microsoft Azure Cluster Operating System Rolling Upgrade This feature, commonly known as Rolling Upgrade, is the answer to the prayers of every Windows Server cluster administrator, engineer, and consultant since the days of codename Wolfpack, where Windows NT Server 4. 0, Enterprise Edition was the first edition of Windows Server to include Microsoft Clustering Services. Hyper-V administrators, specifically those who realise that they can use the free edition or who purchase Software Assurance that includes upgrade rights benefit, love when new versions of Hyper-V are released because they are filled with loads of new feature goodness. What they have never liked is that they cannot upgrade any Hyper-V clusters that they have deployed. There was no choice but to perform some kind of swing migration from an old cluster to a new cluster. That pain was reduced when migrating from Windows Server 2012 (WS2012) Hyper-V to Windows Server 2012 R2 (WS2012 R2) Hyper-V with Cross-Version Live Migration, which allowed virtual machines to move from a WS2012 host or cluster to a WS2012 R2 host or cluster... . --- ### Could Windows 10 and Windows Server vNext End the Reliance on Passwords? > Learn about new generation credentials and remote smartcards in Windows 10 and Windows Server vNext. - Published: 2014-11-17 - Modified: 2014-11-17 - URL: https://petri.com/could-windows-10-and-server-vnext-end-reliance-on-passwords/ - Categories: Windows Server 2016 - Tags: Authentication, Biometric security, Identity Management, Security, two factor authentication, Windows 10 - Article Type: Opinion Could Windows 10 and Windows Server vNext's new next generation credentials capability help end our reliance on passwords? Russell Smith shares his thoughts in his latest article. Passwords have long been a security headache for both consumers and enterprises. On one hand, passwords are simple to use and convenient. On the other hand, they are also easily compromised using a variety of methods, including no or weak encryption, keyloggers, Post-it notes stuck to monitors, phishing and other social engineering techniques. But Windows 10 and Windows Server vNext might be able to change all that. Related: New Features in Windows Server vNext Microsoft is planning to integrate what it calls next generation credentials in the forthcoming server and client releases of Windows. Combined with other security improvements, next generation credentials will make compromising passwords and security tokens much harder than it is today. About Microsoft's next generation credentials Based on existing technology that's already part of Windows, next generation credentials promises to make two-factor authentication more accessible to consumers and small businesses. Enterprises often deploy two-factor authentication using smart cards, where users have to enter a password or PIN, along with their smart card that stores a certificate issued by the enterprise using a Public Key Infrastructure (PKI) and Active Directory. Smart cards work well in the enterprise, but can be costly to deploy and maintain, and it's never been a realistic option for consumers. The Microsoft Authenticator and Google Authenticator apps, for Windows Phone and Android respectively, go some way to solve this problem, by generating codes allowing users to enable two-factor authentication for popular online services, but this still requires a degree of understanding and effort to... --- ### How to Build Azure-Like Virtual Machines on Hyper-V > This article shows you how to create virtual machines on Hyper-V that are similar to those you can run in Microsoft Azure. - Published: 2014-11-17 - Modified: 2024-09-04 - URL: https://petri.com/build-azure-like-vms-hyper-v/ - Categories: Hyper-V - Tags: Editor's Pick - Article Type: How To Aidan Finn serves us a method for creating virtual machines on Hyper-V that are similar to those that you can run in Microsoft Azure. Microsoft Azure gives us to ability to deploy virtual machines of different types and specifications, depending on your services' needs. Some of these virtual machines are configured in a way to provide scalability and performance. As Microsoft has publicly stated, Azure is based on the core of Hyper-V. That means that you can deploy virtual machines with similar configurations as on Azure. In this article, I will show you how you can emulate some of the virtual machine designs from Azure in your private or hosted Hyper-V environments. Azure Virtual Machines There are several different choices to make when you are deploying a virtual machine configuration in Azure. You can choose between: Standard and Basic: Basic virtual machines are, well, basic. I think of them as classic standalone virtual machines that won't support features such as load balancing and scale-out. This decision point is irrelevant to the rest of this article. Series: This is where the fun begins. There are A-, D-, and G- series virtual machines in Azure. We'll talk more about this in a moment. Specification: You can choose low spec virtual machines 1 core with 0. 75 GB RAM, or you can deploy something with much more capacity. Typically with cloud computing, we scale-out smaller workloads. This approach allows us to run smaller systems during quiet periods. It also allows us to efficiently grow capacity and costs to match demand and profits. But there are times when you need to deploy more specialized workloads that scale-up instead... --- ### How to Configure Internet Explorer 11 Enterprise Mode Logging > Learn how to enable Internet Explorer Enterprise Mode logging using IIS, and allow users to toggle Enterprise Mode on and off from the Tools menu. - Published: 2014-11-14 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-internet-explorer-11-enterprise-mode-logging/ - Categories: Windows Client OS - Tags: Active Server Pages, Application Compatibility, Enterprise Mode, IIS, Internet Explorer, Windows 7, Windows 8 - Article Type: How To In this Ask the Admin, Russell Smith shows us how to enable Internet Explorer Enterprise Mode logging by using Internet Information Services (IIS). In a previous Ask the Admin, I showed you how to configure Enterprise Mode for Internet Explorer 11 on Windows 7 SP1 and Windows 8. 1 Update. Today, I'm going to show you how configure a web server to capture Enterprise Mode logs. Related: Configure Internet Explorer Proxy Settings in Windows 8 Install Internet Information Services (IIS) Internet Explorer (IE) Enterprise Mode doesn't use the Windows Event Log, but instead sends messages to an Active Server Pages (ASP) web page, which can be read in the web server's log files. The quickest way to set up IIS on Windows Server 2012 R2 is to run the following PowerShell command as a local administrator: The cmdlet installs IIS 8. 5 on Windows Server 2012 R2 with all the default features, management tools, and ASP components. Configure Internet Information Services Once the installation has completed, follow the instructions below to set up an ASP page that will listen for messages from your IE Enterprise Mode clients. In the example below, we'll configure the website to use a non-standard port to make it easier to separate Enterprise Mode log traffic. Configure IIS for Internet Explorer Enterprise Mode logging (Image Credit: Russell Smith) Open Server Manager from the Start screen or icon on the desktop taskbar. In Server Manager, open Internet Information Services (IIS) Manager from the Tools menu. In the left pane of IIS Manager, expand the local server, Sites and click Default Web Site. On the right in... --- ### How to Enable Internet Explorer 11 Enterprise Mode > Learn the difference between Internet Explorer Compatibility View and Enterprise Mode, and how to set up Enterprise Mode using Group Policy. - Published: 2014-11-13 - Modified: 2024-11-19 - URL: https://petri.com/how-to-enable-internet-explorer-11-enterprise-mode/ - Categories: Windows Client OS - Tags: Editor's Pick, Internet Explorer 11 - Article Type: How To Russell Smith explains the difference between Internet Explorer Compatibility View and Enterprise Mode, and provides steps on setting up Enterprise Mode using Group Policy. In this Ask the Admin, I'll explain how Internet Explorer 11's Enterprise Mode can be used to fix compatibility issues with legacy web apps, along with how to configure it using Group Policy. One of the primary reasons cited for not moving away from older versions of Windows is compatibility issues with in-house applications built around older versions of Internet Explorer. Compatibility View first appeared in Internet Explorer 8, and it aimed to fix rendering problems with pages that didn't display correctly in the new browser. IE determines automatically if Compatibility View needs to be enabled for a page to be displayed correctly, or users can manually add websites to be displayed using Compatibility View to a list. By default, all Intranet sites are displayed in Compatibility View, as are public webpages on Microsoft's own list. Enterprise Mode In Internet Explorer 11, Enterprise Mode provides high-fidelity emulation of Internet Explorer 8 and later versions, going beyond what is possible with Compatibility View alone. Some of the features of Enterprise Mode include: Replicating the IE8 (and later) user agent string. Although not a best practice, some legacy web applications fail if they can't recognize the browser. ActiveX controls and other plugins that usually fail in IE11 will work in Enterprise Mode because it emulates the responses expected from earlier versions of IE. The inclusion of deprecated features no longer found in IE11, but included in earlier versions, such as CSS Expressions. Turns off pre-caching and pre-rendering, as many... --- ### Export Hyper-V Configuration Using PowerShell > This helpful PowerShell function lets you export or backup the configuration for select virtual machines on your Hyper-V server. - Published: 2014-11-13 - Modified: 2024-09-04 - URL: https://petri.com/export-hyper-v-configuration-powershell/ - Categories: Hyper-V - Tags: Editor's Pick, Hyper-V, Intermediate, Scripting - Article Type: How To Jeff Hicks provides a helpful PowerShell function that lets you export or backup the configuration for select virtual machines on your Hyper-V server. When Windows 8 and Windows Server 2012 were released, we also received a new PowerShell module. Within this module are many cmdlets that are designed to make it easy to manage Hyper-V hosts and virtual machines directly from PowerShell. Many of these cmdlets and command line versions of functionality that exists within the graphical Hyper-V manager. But sometimes, even these cmdlets may not meet your needs. As a case in point, consider the Export-VM cmdlet. This cmdlet will export a virtual machine to disk including its disk files and snapshots. In other words, a backup. Using PowerShell to Export a Hyper-V Configuration I'm assuming that if you are running Hyper-V in a production environment, then you probably have invested in a backup solution. What I want to demonstrate in this article isn't intended to replace those products, but rather supplement them. If you run a smaller shop, a lab environment, or client Hyper-V on a Windows 8 or later desktop, then this article may be especially handy. The problem is that when you use the Export-VM cmdlet, you get everything and given the size of the virtual machine hard drives and snapshots, this process may take some time to complete. But perhaps you only want to export the configuration itself? I was working on this problem when I came across someone with this exact issue. He wanted to export the virtual machine configuration so that he could import it later. The configuration that you see when you run... --- ### Protect Privileged Credentials in Windows Server 2012 R2 using the Protected Users Group > Learn tips for protecting privileged credentials in Windows Server 2012 R2 with the use of a protected users group. - Published: 2014-11-12 - Modified: 2024-09-04 - URL: https://petri.com/protect-privileged-credentials-windows-server-2012-r2-using-protected-users-group/ - Categories: Windows Server - Tags: Active Directory, Authentication, kerberos, Security, Windows Server - Article Type: How To Leverage a protected users group in Windows Server 2012 R2 to protect privileged credentials in this how-to article. Many organizations have a proliferation of users holding domain admin credentials or other levels of privileges that go beyond the recommend standard user privileges. While I would always recommend that domain admin accounts should be kept to a minimum and never used for day-to-day computing, support or administrative tasks, it's also wise to take extra steps to protect privileged accounts when they are released for use.  In this Ask the Admin, I'll describe how to add additional protection to privileged admin accounts in Windows Server 2012 R2. Related: Windows Server vNext Privileged Access Management Windows Server 2012 R2 introduced several new technologies designed to help protect privileged credentials, which includes the Active Directory Protected Users group. New or existing users can be added to this global security group and prevents Windows 8. 1 and Windows Server 2012 R2 devices from caching users' credentials, providing additional protection against password theft. Users logged in to devices that support Protected Users are prevented from using: Cached credentials. For example, users cannot log in offline when there is no access to a domain controller. The Kerberos ticket-granting ticket (TGT) must be received when users log in and cannot be reissued automatically, preventing the use of long term keys. Default credential delegation (CredSSP), which stops credentials from being cached in plain text even if the Allow delegating default credentials policy is set. Windows Digest authentication. NT LanManager (NTLM) NTOWF, which is a function for generating keys based on user passwords. Furthermore, if the domain... --- ### PowerShell Problem Solver: Find Script Commands > Easily find cmdlets and modules that are required to run your script with Windows PowerShell. - Published: 2014-11-12 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-find-script-commands/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, PowerShell Problem Solver, Scripting - Article Type: How To Determine what cmdlets or modules are needed to run a script with this helpful Windows PowerShell tip. Recently I was involved in an exchange on Twitter. The discussion originally was about find a way to identify what cmdlets are available for a given version of PowerShell or operating system. But after a little back and forth, I discovered the real issue: how to identify what cmdlets or modules that are necessary to run a script. The issue for my tweet-pal centered on Desired State Configuration (DSC). He was having issues using some DSC resources and it was most likely due to missing cmdlets on the target node. A DSC resource is packaged as a module, which means it should be possible to look through the psm1 file and identify what cmdlets and modules it requires. Here are a few ways to approach this problem, and by approach I mean letting PowerShell do the work for us. Related: PowerShell Problem Sovler: Finding Long Names Method 1: Using regular expressions The first approach is a simple brute-force technique using regular expressions. Most DSC resources will be getting or setting something. Assuming the module author is using full cmdlet names, I can define a regular expression pattern to search for text that looks like a cmdlet name. ​$rx="b(Get|New|Set|Add|Remove|Test)-w+b" The pattern looks for a word that starts with Get, New or any of the rest, followed by a dash and then any other word. To search, we need to identify the path to the DSC module file. ​$dsc = Get-DscResource -Name xIPAddress The path property will be to the module file. I'll... --- ### Vote for the Winner of the Petri IT Hero Contest! > Petri IT Knowledgebase readers can now vote for the winner in the final phase of the Petri IT Hero contest. - Published: 2014-11-12 - Modified: 2024-09-04 - URL: https://petri.com/vote-winner-petri-it-hero-contest/ - Categories: Windows Server - Tags: Editor's Pick, Petri IT Hero - Article Type: News It's time to pick a winner! Petri readers can now vote for the winner in the final phase of the Petri IT Hero contest. Our Petri IT Hero contest has now moved into the final phase: Voting for the ultimate winner of the contest, who will go home with a shiny new Xbox One video game console just in time for the holidays. And here’s the best part: The winner and the person that nominated them will both be awarded an Xbox One video game console ($400 value), while the 9 other finalists (and the people that nominated them) will also get a $50 Amazon gift card. The Petri IT Hero Contest: A Global Effort We were delighted to see Petri readers from all over the globe nominating their IT heroes: After the nomination period closed, we ended up with nominations from readers in the United States and Canada, but we also saw entries from Ireland, Nigeria, England, India, Holland, Nepal, and Israel.  The Petri IT Knowledgebase editorial team would like to thank all of you for taking the time out of your busy schedules to nominate someone for the contest, and we appreciate your efforts. So this is how it works: Listed below are the 10 finalists for the Petri IT Hero contest, as selected by the Petri IT Knowledgebase editorial team. Follow the link below the names -- or click on the giant voting box image -- to visit the voting page, where you can read the essays written to nominate each Petri IT Hero. Please read each essay carefully, then pick ONE finalist using the multiple choice selector at the bottom of the form on the voting... --- ### Building a PowerShell Troubleshooting Toolkit Revisited > PowerShell workflows make the task downloading your customized PowerShell troubleshooting toolkit much easier. - Published: 2014-11-11 - Modified: 2014-11-11 - URL: https://petri.com/building-powershell-troubleshooting-toolkit-revisited/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, Scripting - Article Type: How To Cut down on the time needed to download your customized PowerShell troubleshooting toolkit with the help of a workflow. Recently we posted an article about a PowerShell script you could use to build a USB key that contains free troubleshooting and diagnostic utilities. Those scripts relied on a list of links that were processed sequentially by the Invoke-Webrequest cmdlet. The potential downside is that it might take a bit of time to completely download everything. Wouldn't it be much nicer if we you could download files, let's say in batches of five? Unfortunately, there are no cmdlets or parameters that you can use to throttle a set of commands. You could try to create some sort of throttling mechanism with PowerShell's job infrastructure. If you are proficient with . NET, then you could try your hand at runspaces and runspace pools. Frankly, those make my head hurt, and I don't expect IT pros to have to be . NET developers to use PowerShell. Fortunately, there is an alternative that I think is a good compromise between usability and systems programming: workflow. PowerShell 3. 0 brought us the ability to create workflows in PowerShell script. The premise of a workflow is that you can orchestrate a series of activities that can run unattended on 10, 100, or 1,000 remote computers. I don't have space here to fully explain workflows. There is a chapter on workflow in the PowerShell in Depth book from Manning. But one of the great features in my opinion is the ability to execute multiple commands simultaneously. In a workflow, you can use a ForEach construct with the –Parallel... --- ### How to Price Microsoft Azure on Open Licensing > Learn how to price a solution in Azure using open licensing with the Microsoft Azure Open Calculator. - Published: 2014-11-11 - Modified: 2024-11-19 - URL: https://petri.com/price-microsoft-azure-open-licensing/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: Overview The Microsoft Azure Open Calculator is a powerful tool for pricing your Azure solution on open licensing. In my work, evangelizing about reselling Microsoft Azure through open licensing, I have encountered numerous questions that I am frequently asked. The most difficult questions start with "How much... ? " In this post, I will try to answer the most important question of all that customers, re-sellers, and techies need to answer: How much will something cost in Azure? The Microsoft Azure Pricelist Microsoft Azure, like the other big public clouds, is based on a pay-as-you-go model. You consume resources and services, and each of those has a granular usage cost. I compare Azure to a mobile/cell phone service. The telecoms company lists their pricing. An example of this would be text messaging: Sending a text to the same network costs A Sending a text to a different network costs B Sending a text while roaming costs C Sending a multimedia message costs D There is a micro-cost to consume one instance of each service, but you are usually going to consume lots of instances. The benefit of this model is that you define your own pricing plan: There is a low cost of entry to a service You spend as much as you need or as little as you want You are not locked into any commitment These benefits are magnified with a pre-paid or burner mobile phone plan... and this is the analogy that I use to explain Azure on open licensing. The pricing bible for Azure can be found in the Azure portal. For example,... --- ### Windows Server vNext Privileged Access Management > Learn about Microsoft's new Just-In-Time Privileged Access Management model in Windows Server vNext to better manage your Active Directory user accounts. - Published: 2014-11-10 - Modified: 2014-11-10 - URL: https://petri.com/windows-server-vnext-privileged-access-management/ - Categories: Windows Server 2016 - Tags: Editor's Pick, TEE14 - Article Type: Overview Russell Smith gives us the low-down on Microsoft's 'Just-In-Time' Privileged Access Management model, a feature which will be updated in Windows Server vNext. In this article, I'll describe how Microsoft's new Just-In-Time Administration feature works in Windows Server vNext. Related: New Features in Windows Server vNext Managing privileged access in Active Directory (AD) has always been somewhat of a dilemma for IT. Although AD has granular access controls, many server administration tasks still require users to hold domain admin rights or local administrator rights. In small IT shops, it's not unusual to find IT staff that are permanently assigned domain admin privileges, significantly increasing the risk that an organization's systems can be compromised. This is frequently seen as the accounts get used for everyday Internet browsing and non-IT related tasks, or for administering end users' PCs, which are more susceptible to malware than servers or management workstations. Adhering to best practices helps minimize the risks, such as never using domain administrator accounts to join user workstations to the domain, to manage PCs, and using AD Protected Groups, which include authentication policies and policy silos to restrict how privileged credentials can be used. But these best practices don't address the needs of users who manage domain controllers, or require privileged credentials to manage other servers on a regular basis. Just-In-Time Administration Many third-party privilege management solutions issue passwords to generic administrative accounts, after approval is received according to a pre-defined workflow. As a result, there's a record of who was using an account, at what time, and for what reason. But Microsoft has designed its new Just-In-Time (JIT) Privileged Access Management (PAM) solution to... --- ### How to scan QR codes in Windows Phone 8.1 > Learn how to scan QR codes in Windows Phone 8.1 using Bing Vision. - Published: 2014-11-10 - Modified: 2024-09-04 - URL: https://petri.com/how-to-scan-qr-codes-in-windows-phone-8-1/ - Categories: Mobile - Tags: Windows phone, windows phone 8.1 - Article Type: How To Using a Windows Phone? Russell Smith shows us how to scan QR codes in Windows Phone 8.1 using Bing Vision in this quick how-to article. In this easy Ask the Admin, I'll show you how to scan QR codes using Bing Vision in Windows Phone 8. 1. Are QR codes effective? There's lots of debate in the marketing industry about how useful QR codes are. Unlike other methods of getting potential customers to interact with you, such as SMS codes, email and Facebook, QR codes are a one-way transaction that don't allow the collection of contact information for re-marketing purposes. Some even say that say QR codes are dead. Nevertheless, when I was on vacation in Greece earlier this year, I've seen them dotted around in various places, and although I've not been especially tempted to scan them, I realized that I had no idea if it was possible to scan a QR code in Windows Phone 8. 1 without downloading a third-party app. The Microsoft Authenticator app has built-in capability to scan QR codes, which I know because I've used it on the phone before, but I didn't know how to scan a code independently. Using Bing Vision to scan QR codes One of the barriers cited for the lack of uptake of QR codes is the need for smartphone users to download an app that's capable of scanning them.  Back in 2011, Microsoft introduced Bing Vision in Windows Phone 7. 5, which not only scanned QR codes, but also barcodes, books, CDs, DVDs and now phased-out MS Tags. Windows Phone 8. 1 makes it easy to scan QR codes with... --- ### Build a Troubleshooting Toolkit using PowerShell > Save time by building a custom troubleshooting toolkit with Windows PowerShell in Jeff Hick's latest article. - Published: 2014-11-07 - Modified: 2014-11-07 - URL: https://petri.com/build-a-troubleshooting-toolkit-using-powershell/ - Categories: PowerShell - Tags: Advanced, Scripting - Article Type: How To Are you constantly being the IT pro for friends and family? Save time by building a custom troubleshooting toolkit with PowerShell that you can use over and over. If you are an IT pro, then you are most likely the IT pro that's on call for your family, friends and neighbors. You get a call that a neighbor's computer is running slow or experiencing odd behavior. Virus? Malware? Rootkit? Application issues? If you are also like me, then you tend to rely on a collection of free and incredibly useful tools like Trend Micro's HouseCall, Hijack This or CCleaner. Perhaps you might even need a copy of the latest tools from the Sysinternals site. In the past I've grabbed a spare USB key, plugged it in and started downloading files. But this is a time consuming and boring process, which makes it a prime candidate for automation. And in my case that means PowerShell. Using Invoke-WebRequest PowerShell 3. 0 brought us a new command, Invoke-WebRequest. This cmdlet eliminated the need to use the . NET Framework in scripts. We no longer needed to figure out how to use the Webclient class. Cmdlets are almost always easier to use. If you look at the help for Invoke-WebRequest, then you'll see how easy it is. All you really need to specify is the URI to the web resource. So for my task all I need is a direct download link to the tool I want to grab. Invoke-webrequest –uri http://go. trendmicro. com/housecall8/HousecallLauncher64. exe However, in this situation, I don't want to write the result to the PowerShell pipeline, I want to save it to a file. Invoke-Webrequest has a parameter for that. Invoke-webrequest –uri http://go. trendmicro. com/housecall8/HousecallLauncher64. exe... --- ### Are Docker Containers Better than VMs? > Are Docker Containers Better than VMs? Learn about how Docker works and the differences between Linux containers and hypervisors. - Published: 2014-11-07 - Modified: 2024-09-04 - URL: https://petri.com/are-docker-containers-better-than-vms/ - Categories: Virtualization - Tags: TEE14 - Article Type: Opinion Russell Smith shows us how Docker works, explains the differences between Linux containers and hypervisors, and discusses whether Docker containers are better than VMs. Docker is an open-source technology that packages and distributes apps to run in isolated containers on Linux. Much like Solaris Zones and BSD Jails, processes running in Linux containers share the kernel and other key operating system (OS) components. In addition, these processes are portable and isolated from each other and environmental changes. For a high-level overview of Docker, see our What is Docker?  article here on the Petri IT Knowledgebase. Microsoft already supports Docker in VMs running Linux on Azure, but recently announced Docker-compatible containerization for Windows Server vNext, which will allow applications to be shared, installed and moved to any other compatible server. Docker has already proved so popular, that when it came out of beta earlier this year, some major financial institutions started using it in their production systems. Docker support in Windows Server vNext (Image Credit: Microsoft) How Does Docker Work? Using a client-server architecture, the Docker client talks to a daemon (service). The client and daemon can run on the same or different systems, and it’s the daemon that executes, builds and distributes app images. Docker Images At TechEd Europe 2014, Microsoft Azure CTO Mark Russinovich described Docker images as ‘layers. ' To create images, Docker uses a union file system, which allows several file systems to be mounted simultaneously but to appear as one. An app is installed or updated on top of a base OS image, and Docker creates a snapshot using Another Union File System (AuFS), documenting change branches that... --- ### An Interview with Microsoft Azure CTO Mark Russinovich > The Petri IT Knowledgebase recently conducted an interview with Microsoft Azure CTO Mark Russinovich. Read on for more details! - Published: 2014-11-06 - Modified: 2024-09-04 - URL: https://petri.com/interview-microsoft-azure-cto-mark-russinovich/ - Categories: Microsoft Azure - Tags: Mark Russinovich - Article Type: Interview We sat down with Microsoft Azure CTO Mark Russinovich for a wide-ranging interview that touches on Microsoft Azure, the history of IT, and his latest cybersecurity thriller novel, 'Rogue Code.' Microsoft is at a crossroads these days. Impressive products like Windows Phone, the Xbox One, and even the newly-released Windows 10 Technical Preview are tangible proof that Microsoft is making better products and services than ever before. Yet the pace of innovation and the level of competition facing Microsoft is intense. Windows Phone devices may be the technical equal of smartphones running iOS and Android, but Windows Phone lags far behind both in market share. The Xbox One suffered from a launch campaign that could serve as a textbook example of how not to launch a consumer technology product, and has been outsold by Sony’s PlayStation 4 game console since launch. Windows 10 looks promising as a very public apology for Microsoft’s “New Coke” moment, as Windows 8 was widely reviled by businesses and consumers alike. The two years Microsoft spent trying to convince people to buy Windows 8 was lost time, and even helped Apple and the oft-maligned Google Chromebooks realize retail market share gains against Windows PCs. A Success Story: Microsoft Azure Another competitive market segment is cloud computing, an area where Microsoft is mainly locked in a three-way battle for dominance with Amazon Web Services (AWS) and Google Cloud Platform. AWS is the clear market leader, Google was uncharacteristically late to the market and is therefore battling for third place with the likes of IBM Softlayer and others, but Microsoft Azure is steadily making gains. Microsoft CEO Satya Nadella deserves credit for helping build Azure into what... --- ### Choosing a Microsoft Certification: Exchange, Lync, and SharePoint? Or Office 365? > Learn tips for choosing a Microsoft certification that's either based in Exchange, Lync and SharePoint, or alternatively, Office 365. - Published: 2014-11-05 - Modified: 2024-09-04 - URL: https://petri.com/choosing-microsoft-certification-exchange-2013-lync-2013-sharepoint-2013-office-365/ - Categories: Microsoft 365 - Tags: TEE14 - Article Type: Opinion Not sure where you should focus your training efforts? Peter DeTender provides tips for choosing a Microsoft Certified Solutions Expert or Microsoft Certified Solutions Associate certification. At TechEd Europe 2014 I had the pleasure of helping Microsoft Learning with staffing needs as a MCT Ambassador. Out of this role, you help attendees by answering questions on Microsoft certification, certification tracks, and where to find exam information. I was additionally asked to present a 'Chalk and Talk' session to explain the difference between taking Office 365 exams or taking Exchange, SharePoint and Lync exams separately. Although this session was originally planned to take 30 minutes, we ended up in having a very good and interactive discussion that lasted 90 minutes. I though this was a good topic to address on the Petri IT Knowledgebase, as this question is actually pretty popular. Peter DeTender presented a session on certification exams at TechEd Europe 2014. (Image Credit: Peter DeTender) Exchange, Lync and SharePoint 2013 Certifications Explained Let me start by providing you with an overview of the traditional, existing exams with a bit more details about each.  Exchange, Lync and SharePoint 2013 are classified as Microsoft Certified Solutions Expert (MCSE), which require you to have the Windows Server 2012 MCSA certification as prerequisite. This puts these certifications on the same level as the MCSE Desktop Infrastructure, Server Infrastructure or Private Cloud certifications, which are commonly referred to as an advanced certification. Each technology track is also comprised of two different exams, which includes a Core Solutions and an Advanced Solutions component. You need to pass both to receive the MCSE credential. Office 365 Certifications Explained Office 365 on leans towards the Microsoft Certified Solutions Associate (MCSA) credential,... --- ### PowerShell Problem Solver: Finding Long File Names > Learn how to find long file names in Windows PowerShell in this how-to article by Microsoft MVP, Jeffery Hicks. - Published: 2014-11-05 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-finding-long-file-names/ - Categories: PowerShell - Tags: Advanced, PowerShell Problem Solver, Scripting - Article Type: How To Learn an easy method for finding file name length with Windows PowerShell in Jeff Hicks' latest PowerShell Problem Solver article. Here's another problem that recently came across my desk. The need was to identify files with long names. Even if you don't have this need, these problem solving articles will hopefully demonstrate PowerShell techniques and concepts that you can use in other projects or tasks. With that in mind, let's walk through the process. You can follow along typing commands in either the console or the PowerShell ISE. Related: PowerShell Problem Solver: Find IP Address Using PowerShell An Easy Way to Obtain the File Length in PowerShell To make our PowerShell code re-usable, let's define a variable for a folder we want to check. $path = "c:work" You can verify by getting all files within that path. dir $path -file -Recurse We're going to look at all files, but you could just as easily limit your search to files of a specific type or name. When approaching a PowerShell problem, it is helpful to look at a single, representative object to discover what you can use. I'm going to look at a single file. PS C:> get-item C:workComputerData. xml | Select Name Name ---- ComputerData. xml The name property is a string object that has a single property of length. PS C:> $file = get-item C:workComputerData. xml PS C:> $file. name ComputerData. xml PS C:> $file. name. length 16 In PowerShell you can keep expanding properties like I've done here. But don't confuse this property with the length property of the file itself, which is the file size. We can take the next step and... --- ### Setting Up a Site Mailbox in SharePoint Online > Learn how to set up a site mailbox in SharePoint Online for added collaboration between outside members of your organization, - Published: 2014-11-04 - Modified: 2024-09-04 - URL: https://petri.com/setting-site-mailbox-sharepoint-online/ - Categories: Microsoft 365 - Tags: Editor's Pick - Article Type: How To J. Peter Bruzzese shows us how to create a site mailbox with SharePoint Online for better collaboration with outside members of an organization. When working with Microsoft Exchange you have a variety of different collaboration mailbox options to consider. You can create a mailbox and share it with others so that you can collaborate through the mailbox with those who have delegated permissions. Public folders, an Exchange staple for as long as I can remember, are still used for collaboration. However, by adding SharePoint into the mix, we now have the ability to create a new collaboration mailbox called a site mailbox. Site mailboxes are designed for sharing among team members.  However, members from outside of your organization will not be able to make use of a site mailbox, although anyone will be able to email the address associated with it.  Persons within the default owner's group or default member's group for the site (folks with Contribute permission) can use the site mailbox so you want to keep that in mind when using one. Also, the site mailbox will take its name from the team site that it is a part of, so make sure you have this set up just the way you want it before moving forward. This is especially important since you cannot change the email address for a site mailbox after it has been created. Now we are ready to get started with creating a site mailbox: First, log in to your Office 365 account and go to the site you would like to create a mailbox for. Now we will need to add the Site Mailbox... --- ### Microsoft Showcases Azure Active Directory Sync Services and Windows 10 MDM Features > Learn about new management features in Windows 10, including Mobile Device Management (MDM), Azure Active Directory support and new Windows Store features. - Published: 2014-11-03 - Modified: 2024-11-19 - URL: https://petri.com/teched-europe-azure-active-directory-windows-10-mdm/ - Categories: Active Directory (AD) - Tags: Editor's Pick, TEE14 - Article Type: News Russell Smith gives us a run-down of updates to Microsoft Azure Active Directory, the Windows Store, and new mobile device management features that will be baked into Windows 10. Editor's Note: In addition to all of the other news coming out of Microsoft TechEd Europe 2014 (TEE14) -- including news about Windows 10 Enterprise, Windows Server vNext, and Windows Server vNext Hyper-V -- Contributing Editor Russell Smith gives us a quick run-down of changes and updates to Microsoft Azure Active Directory, the Windows Store, and new mobile device management (MDM) features that will be baked into Windows 10. Azure Active Directory Sync Services Quietly slipping out the door mid-September, Azure Active Directory Sync Services (AAD Sync) replaces DirSync, which many organizations use to synchronize on premise AD with Office 365. The new tool aims to make the synchronization process easier to set up and manage, and supports both Azure Active Directory (AAD) and Office 365. Though Microsoft has its Forefront Identity Manager 2010 R2 product for complex environments, AAD Sync has advanced provisioning, filtering and mapping rules for AD objects and attributes. Organizations can control which object attributes are synced to the cloud, and choose between synchronizing password hashes to AAD, and setting up Active Directory Federation Services (ADFS) so that users are always authenticated locally. AAD and on-premise AD can be combined to work together, or organizations can choose to use one or the other technology exclusively. Windows 10 devices can be joined directly to AAD, so there's no dependency on local AD and domain controllers, essentially providing businesses with a manageable version of how consumers use Microsoft accounts (MSAs) to log in to Windows 8... --- ### What's New in Windows Server vNext Hyper-V > This post summarizes what's new in Windows Server vNext Hyper-V, including features that were announced at TechEd Europe 2014. - Published: 2014-11-03 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-windows-server-vnext-hyper-v/ - Categories: Windows Server 2016 - Tags: Editor's Pick, TEE14, Windows Server vNext - Article Type: News Want to learn about what's new in Windows Server vNext Hyper-V? Aidan Finn returns from TechEd Europe 2014 with some early info to share. Hyper-V is my bread and butter, so it's with great excitement that I can finally start to talk about new features that are included in the Technical Preview of the "Next Release of Windows Server," coming to us in Q2 of 2015. The Technical Preview is by no means a finished product. The product has bugs, features that are incomplete, and there are probably more features to be added in later releases in this version of Hyper-V. Related: What's New in Windows Server vNext Hyper-V This post was based on notes taken from the TechEd Europe 2014 session, Sneak Peek into the Next Release of Windows Server Hyper-V, by Ben Amstrong, Principal Program Manager on the Hyper-V team at Microsoft. New Virtual Machine Upgrade Process Strictly speaking, once you migrate a virtual machine from an older version of Hyper-V to a newer version, there is no going back. There is a change in Windows Server vNext thanks to a new upgrade process; Hyper-V will not automatically upgrade virtual machines to a new version. It will be a manual operation that has nothing to do with the host. This allows virtual machines to live migrate to older hosts, a necessary requirement to enable rolling upgrades of clusters of Hyper-V hosts. Delivery of Integration Components Just about every Hyper-V administrator has disliked the process of upgrading integration components. You must do this upgrade in each guest OS to get the latest features made available by the host. There are many ways to do... --- ### New Features in Windows Server vNext > Aidan Finn gives us a look at new features in Windows Server vNext, the successor to Windows Server 2012 R2. - Published: 2014-11-03 - Modified: 2024-09-04 - URL: https://petri.com/new-features-windows-server-vnext/ - Categories: Windows Server 2016 - Tags: Editor's Pick, TEE14 - Article Type: Overview While Microsoft has remained relatively tight-lipped about the new features in Windows Server vNext, Aidan Finn gives us an early look. Microsoft recently released the Technical Preview of Windows Server vNext, known formally as "the Next Release of Windows Server. " There was little fanfare about this release, just a few blog posts and some summary TechNet articles. Even at the recent "future of the cloud" event in San Francisco, hosted by Satya Nadella and Scott Guthrie, and the TechEd Europe 2014 keynote, very little was mentioned of the next release of the cash cow enterprise stalwart. Only those who watched sessions that focused on Windows Server vNext have heard snippets of information about what Microsoft is working on. If I could summarize it in one phrase, then it would be "software-defined everything. " Windows Server vNext The current release of Windows Server is Windows Server 2012 R2, and it will remain that way until at least the summer of 2015. Microsoft has performed a complete 180-degree turn on the company's past attitude toward customer feedback. In the past few versions, there was no process or publicly displayed desire on Microsoft's part to accept customer feedback on the preview releases. One might be correct in asserting that Windows 8 has humbled Microsoft, and in September, Microsoft launched a huge customer feedback program, not just for Windows 10, but also for Windows Server and System Center vNext. We expect there will be another significant milestone release in early 2015 and that the release to manufacturing will be in Q2 of 2015. Software-Defined Everything The term "software-defined" is closely related to the evolving scalability, flexibility, and... --- ### TechEd Europe 2014: Windows 10 Enterprise Data Protection > Learn about some of the new security features in Microsoft's latest client OS, including Windows 10 Enterprise Data Protection. - Published: 2014-10-31 - Modified: 2024-09-04 - URL: https://petri.com/teched-europe-2014-windows-10-enterprise-data-protection/ - Categories: Windows 10 - Tags: Editor's Pick, Microsoft TechEd, TEE14 - Article Type: News Russell Smith walks us through different security features that are available in Windows 10 Enterprise Data Protection. More details of data loss prevention (DLP) features in Windows 10 were revealed recently at TechEd Europe 2014 in Barcelona. In contrast to third-party systems, such as Samsung Knox for mobile and desktop solutions for Windows, DLP will be deeply integrated into Windows 10 to contain data at the file-system level so that the technology works transparently to users. Related: TechEd Europe 2014: Office 365 gets new mobile device management and DLP features Windows 10 Security: Cross-platform sharing In Microsoft's new client DLP solution, Windows acts as an access control broker to data that's secured at the file-system level, unlike other products that are built on top of the OS. Not only will it work on Windows, but APIs will allow iOS and Android to access data protected by Windows 10 DLP to provide a similar experience as possible, despite the lack of deep integration that's possible in Windows. While programs will need to be updated to work with Windows 10 DLP, reader and viewer apps will be made available so users can access content when there are no available updates. Protection everywhere Windows 10 DLP protects data in transit and at rest, which includes removable devices, such as USB sticks. Administrators will be able to remotely wipe devices and control which apps can access corporate data. This idea has also been extended to virtual private networks (VPN), and organizations will be able to define which apps are allowed to work over VPN. Third-parties will also be able to integrate with Windows... --- ### Will Microsoft TechEd 2015 live on outside the US and Europe? > Will Microsoft TechEd 2015 live on outside of the United States and Europe? - Published: 2014-10-31 - Modified: 2024-11-19 - URL: https://petri.com/will-microsoft-teched-2015-live-outside-us-europe/ - Categories: Windows Server - Tags: Microsoft Ignite, Microsoft TechEd, Microsoft TechEd 2014, Microsoft TechEd 2015, News, TEE14 - Article Type: News The Microsoft TechEd conference has been replaced by Microsoft Ignite in the United States, but could Microsoft TechEd 2015 live on in Australia and New Zealand? There's been a lot of discussion about the fate of Microsoft TechEd -- arguably Microsoft's premier technical conference for IT professionals -- and it's successor, the Microsoft Ignite conference. Conventional wisdom was that Microsoft TechEd Europe 2014 would be the last event to bear the Microsoft TechEd name, but the Microsoft TechEd New Zealand 2014 website has a notification page stating that "TechEd 2015 dates will be announced soon. " (A big thank you to Microsoft MVP Orin Thomas for the head's up on the website. ) I've inserted a screen grab of the Microsoft TechEd New Zealand 2015 countdown page below. According to a source also based in Australia, there will be multiple TechEd events in Australia for 2015 as well. "As far as anyone down here seems to know, it's definitely TechEd NZ 2015 and there will be several TechEd Australia 2015 as well. " Will the Microsoft TechEd brand continue to exist outside the United States? (Image: Microsoft) We've been reporting on Microsoft TechEd 2014 for most of this week, and Microsoft has been pretty clear in all of their communication to date that -- at least in North America -- the new Microsoft Ignite Conference will serve as the successor to TechEd and many of Microsoft's other IT-focused conferences, namely the now-defunct Microsoft Exchange Conference, Microsoft SharePoint Conference, and others. I've reached out to Microsoft for additional comment/clarification on the fate of the Microsoft TechEd conference brand outside of the US, and I'll... --- ### How to Use Microsoft Azure Automation > Learn how to use Microsoft Azure Automation to schedule Azure runbooks to batch regular administrative tasks in the cloud. - Published: 2014-10-30 - Modified: 2024-11-19 - URL: https://petri.com/how-to-use-microsoft-azure-automation/ - Categories: Microsoft Azure - Tags: TEE14 - Article Type: How To Russell Smith shares tips for using Microsoft Azure Automation to schedule Azure runbooks to batch regular administrative tasks in the cloud. The Microsoft Azure Automation service has just hit general availability and allows administrators to automate tasks using runbooks. Based on PowerShell Workflows, runbooks differ from standard scripts in that they're for automation of repeatable and frequently run tasks that are executed in parallel across multiple machines. Runbooks can be stopped, restarted, and even survive server reboots. Don't worry if you don’t have any PowerShell experience. There are plenty of sample runbooks in the Azure management portal to get you started. Related: TechEd Europe 2014: Microsoft Updates Microsoft Azure, shows Windows 10 and Office 365 Improvements The Azure public cloud uses the same automation infrastructure as System Center 2012 R2 Orchestrator and Windows Azure Pack, allowing the creation, monitoring and provisioning of resources. There are two pricing tiers: free and standard. Find out more information on pricing on the Azure website. About Azure global assets and high availability The two key differentiating factors between using Azure Automation and the PowerShell module for Azure from an on premise workstation to automate tasks in the cloud are high availability and global assets. The Service Management Automation (SMA) engine is always available and is subject to a service level agreement. Global assets are variables defined in Azure Automation that can be shared amongst all your runbooks. For example, instead of defining variables in individual runbooks, you refer to global assets, which can be modified centrally if something changes in your Azure environment. Let's get started with using Microsoft Azure Automation by diving into the steps... --- ### An IT Pro's Perspective on the TechEd Europe 2014 Keynote > Contributing Editor Aidan Finn gives us his summary of the TechEd Europe 2014 keynote from the perspective of a veteran IT professional. - Published: 2014-10-30 - Modified: 2024-09-04 - URL: https://petri.com/teched-europe-2014-keynote-pro-view/ - Categories: Windows Server - Tags: TechEd Europe 2014, TEE14 - Article Type: Opinion Contributing Editor Aidan Finn gives us his opinion of the TechEd Europe 2014 keynote from the perspective of an experienced IT professional. TechEd Europe 2014 (TEE14) started on Tuesday, October 28th, in sunny Barcelona, Spain. Thousands of enterprise IT pros and developers congregated to hear how to best us Microsoft’s business products, and learn about new and upcoming technologies. The tone of the conference is set by the keynote, and that started bright and early on the first morning. TEE14: The Atmosphere TechEd Europe is a noticeable smaller and less dressed-up event than TechEd North America. The venue is huge, and the entrance that most use has little to no signage to indicate that Microsoft is in town. Over on the other side of the huge venue, where most of the session rooms and the registration desk are, there are a couple of Microsoft and sponsor signs and a big welcome graphic that adorns the main entrance. Welcome to TechEd Europe 2014 There is some other economizing as well: Breakfasts are served in the hotels instead of the meal hall at the venue, as a part of the hotel room charges. And there are no shuttle busses between the hotels and the distant conference centre; delegates must either use public transport or take a taxi (thankfully, very affordable). At TechEd North America in May, there was a hostile reaction to the cloud centric keynote that focused on Office 365 and Azure. I feared for the worst when the Wi-Fi (predictably) in the keynote hall was not functioning - I searched for a working network and... --- ### TechEd Europe 2014: New APIs and SDKs for Office 365 app development > At TechEd Europe 2014, Microsoft has released new Office 365 APIs, along with new iOS and Android SDKs for development with Office 365 services. - Published: 2014-10-29 - Modified: 2024-11-19 - URL: https://petri.com/teched-europe-2014-new-apis-sdks-office-365-app-development/ - Categories: Microsoft 365 - Tags: TEE14 - Article Type: News Microsoft is making it easier for developers to work with Office 365 with the release of new APIs, along with new SDKs for iOS and Android. At this year's TechEd Europe conference that's currently taking place in Barcelona, Microsoft is focusing its effort and energy toward making sure that IT professionals and developers have the tools they need to be highly productive in the company's ambitious drive toward a "cloud-first, mobile-first" world. Related: What Windows 10 Means for Developers: Write Once, Deploy Anywhere Office 365 growth statistics Microsoft provided some interesting statistics that showed off the success of Office 365 thus far. One of them is that there is an existing network of over 3. 4 million developers that are extending Office and SharePoint, where over 1,200 apps are available in the Office store. The company also noted that over 70 percent of the Fortune 500 companies are leveraging Office 365, which undoubtedly makes the platform lucrative for reaching users in new and engaging ways. With that said, Microsoft is delivering new ways in which developers can continue to stay engaged with the Office 365 platform. First, Microsoft is providing new tools for Office 365 and Visual Studio, which include new Office 365 APIs and software development kits (SDKs) for iOS and Android operating systems. Office 365 APIs for mail, files, and more Microsoft is now providing developers with new, REST-based APIs for mail, files, calendar, and contacts. "From a travel reservation app that connects to Office 365 calendars and contacts, to a sale automation app that fully integrates with Office 365 mail and files--the possibilities with Office 365 are endless," a recent blog post by... --- ### Choosing a Microsoft Azure Website Hosting Plan > Learn some tips about choosing a Microsoft Azure website hosting plan in this helpful overview by Microsoft MVP Aidan Finn. - Published: 2014-10-29 - Modified: 2024-09-04 - URL: https://petri.com/choosing-a-microsoft-azure-website-hosting-plan/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: Overview Aidan Finn walks us through choosing a Microsoft Azure website hosting plan, which can range from scalable solutions for everyone from the hobbyist up to large enterprises. You can get website hosting from a wide variety of hosting companies for just a few bucks per month. You’ve probably never considered using Microsoft Azure to host your website(s). If not, I think I can tell you about some features of Azure that might convince you to include Microsoft’s solution in your decision making process. What is a Website Hosting Plan? Microsoft does not simply give you website hosting; instead, you deploy a website hosting plan. This is actually a Windows Server virtual machine that is running IIS. This virtual machine is capable of hosting a number of websites, depending on the tier that you choose for the deployment. You do not get access to the guest OS of the virtual machine; just like with traditional website hosting, you will use the portal, FTP, and content distribution tools to manage the website(s) that, along with PowerShell of course! If you have played with websites in the old Azure management portal then you might not have been aware that you were working with website hosting plans that could host multiple websites; it really isn’t that obvious. But the new preview portal does make this value very clear. I chose to use that word, value, to emphasize the differentiator for Azure website hosting plans. You might get a website for $5/month with some hosting company. Azure gives you a plan that can host 10 websites for free! And when you move up the feature/price ladder, you could get a... --- ### PowerShell Problem Solver: Find IP Address Using PowerShell > Learn how to find your computer's IP or MAC address with Windows PowerShell. - Published: 2014-10-29 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-find-ip-address-using-powershell/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, PowerShell Problem Solver - Article Type: How To It's a new PowerShell Problem Solver! Learn how to find an IP address using PowerShell in this handy how-to by Jeff Hicks. Here's another problem to solve with PowerShell: Find the IP address of a remote computer. Sounds simple enough. However, as with many tasks in the world of PowerShell, there are several ways to get the job done. I hope that even if you don't need to solve this task that you'll take a few minutes to read the article because you might learn a new technique or cmdlet that you could use elsewhere. Some of the techniques will require that you have administrator privileges on the remote computer. Some will be firewall friendly and some not. You can decide which approach works for you. We'll begin by defining a variable for computername so that we can use it in all of the techniques. Another advantage is that it makes it easier to turn your test code into a PowerShell function. ​$computername = "chi-core01" Let's begin. Test-Connection The first technique is to use the Test-Connection cmdlet. This is a PowerShell version of ping. Using the Test-Connection cmdlet in PowerShell. (Image Credit: Jeff Hicks) By default, the cmdlet pings four times, and you can see there is an IPv4 address. To simplify, I will select only the information I care about and limit test to a single ping. ​Test-Connection $computername -count 1 | select Address,Ipv4Address Using the Test-Connection cmdlet in PowerShell to limit to a single ping. (Image Credit: Jeff Hicks) You may be wondering why I used Address and not... --- ### TechEd Europe 2014: Office 365 gets new mobile device management and DLP features > At TechEd Europe 2014, Microsoft announced improvements to mobile device management and DLP features for Office 365. - Published: 2014-10-28 - Modified: 2024-09-04 - URL: https://petri.com/teched-europe-2014-office-365-new-mdm-dlp-features/ - Categories: Microsoft 365 - Tags: Editor's Pick, TechEd Europe 2014, TEE14 - Article Type: News At TechEd Europe 2014, Microsoft Office General Manager Julia White announced new mobile device management and DLP features for Office 365. TechEd Europe 2014 kicked off this morning in Barcelona, and Microsoft announced a slew of Office 365 announcements that improve upon security, privacy, and compliance capabilities, along with significant enhancements made to mobile device management. You can also read up on highlights from this morning's news in Contributing Editor Russell Smith's article, "TechEd Europe 2014: Microsoft Previews Windows 10 Enterprise Features. " Additionally, Petri IT Knowledgebase Editorial Director Jeff James covers Microsoft's latest updates to Microsoft Azure in his post. Microsoft announces mobile device management and DLP improvements to Office 365. (Image Credit: Microsoft) Mobile Device Management for Office 365 Microsoft introduced new mobile device management (MDM) capabilities that are built into Office 365 to help address the challenge that IT professionals commonly face when it comes to securing corporate data. This new range of functionality will begin to roll out in the first quarter of 2015, where IT pros will be able to effectively manage Office 365 across a variety of smartphones and tablets, including iOS, Android, and Windows Phone devices. New capabilities include the ability to secure and manage corporate resources through security policies on devices that connect to Office 365.  IT professionals can apply several different mobile device settings, such as setting a pin lock and jailbreak detection to prevent unauthorized users from accessing corporate data.  Alternatively, there's a new feature that lets IT admins perform a selective wipe to remove corporate data while leaving personal data untouched. These new MDM capabilities are built into Office 365 and are powered by Microsoft Intune. Additionally, these... --- ### TechEd Europe 2014: Microsoft Updates Microsoft Azure, shows Windows 10 and Office 365 Improvements > Find out the latest Microsoft TechEd Europe 2014 News in this news round-up by the Petri IT Knowledgebase. - Published: 2014-10-28 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-teched-europe-2014-news/ - Categories: Microsoft Azure - Tags: Editor's Pick, News, TechEd Europe 2014, TEE14 - Article Type: News There's lots of Microsoft TechEd Europe 2014 news to discuss this morning, so Jeff James kicks things off by giving us his take on the conference keynote. Microsoft made a host of enterprise-focused announcements at TechEd Europe this morning, using sunny Barcelona as a backdrop for the last Microsoft TechEd we'll ever see. Jason Zander, Microsoft's corporate vice president for Microsoft Azure, continued on the "mobile-first, cloud-first" theme for Microsoft in the enterprise, opening the show keynote that led to announcements of new updates to Microsoft Azure, enterprise-friendly features in Windows 10, and outlined other forthcoming improvements to the Enterprise Mobility Suite (EMS), Office 365, and more. Note: If you missed the keynote, you can watch a full recording of it on the Microsoft website at your leisure here: TechEd 2014 keynote video My Petri IT Knowledgebase colleagues Aidan Finn, Russell Smith, and Peter De Tender are on-site at TechEd Europe and will be writing more in-depth coverage of all of the breaking news out of TEE14. I'll touch on the highlights here, then link off to more detailed coverage by Aidan, Russell, and Peter throughout the week. Microsoft's "mobile-first, cloud-first" push was alive and well at TechEd Europe 2014. (Image: Microsoft) Microsoft Azure Improvements Zander and Microsoft Azure CTO Mark Russinovich announced and demonstrated a number of new Microsoft Azure features and enhancements during the TEE14 keynote, including: Azure Automation - Now generally available, Azure Automation is designed to alleviate some of the time-consuming manual bottlenecks that can suck up time (and patience) when dealing with Azure and non-Microsoft cloud environments. Azure Batch - Available in preview form, Azure Batch is focused on scale: If you... --- ### TechEd Europe 2014: Microsoft Previews Windows 10 Enterprise Features > Microsoft Previews Windows 10 Enterprise Features at TechEd Europe this morning, and Contributing Editor Russell Smith walks us through what's new. - Published: 2014-10-28 - Modified: 2024-09-04 - URL: https://petri.com/teched-europe-14-microsoft-previews-windows-10-enterprise-features/ - Categories: Windows 10 - Tags: Editor's Pick, TEE14 - Article Type: News Microsoft Previews Windows 10 Enterprise Features at TechEd Europe 2014, and Contributing Editor Russell Smith walks us through the highlights. TechEd Europe 2014 launched this morning in Barcelona with a keynote delivered by Jason Zander, Corporate Vice President for Microsoft Azure, and Joe Belfiore, Corporate Vice President of the PC, Tablet and Phone, Operating Systems Group. Belfiore talked again about features already demoed at the launch of the Windows 10 Technical Preview on September 30th, including Snap, Snap Assist, Continuum, and virtual desktops, but also showed delegates Snap working on setups with multiple monitors, new touchpad gestures for managing desktop windows, dynamic provisioning using Azure AD and new generation credentials using virtual smart cards. Microsoft corporate vice president for PC, tablet, and phone Joe Belfiore discusses Windows 10 at TechEd Europe 2014. (Image Credit: Microsoft) During the speech, four key principles were outlined on which Windows 10 is being developed: A single, converged platform An OS that people will love Protection against modern threats Management for all device form-factors Windows everywhere The Windows core, which includes the kernel, file system and network stack that already runs across multiple platforms, as seen in Windows 8. 1 and Windows Phone 8. 1. That concept is being extended so Windows can run on a wider range of devices as possible, including wearables, Xbox One, and any form-factor with a supported processor architecture. This will allow ISVs to invest in creating applications that target the largest number of devices, with the Windows and app experience following users around, no matter what device they are working with. While this isn't anything we didn't... --- ### Microsoft takes aim at Dropbox and Google with unlimited OneDrive storage > Microsoft is heating up the cloud storage wars with Dropbox and Google by rolling out unlimited OneDrive storage for all Office 365 users. - Published: 2014-10-27 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-takes-aim-at-dropbox-and-google-unlimited-onedrive-storage/ - Categories: Microsoft 365 - Article Type: News Microsoft is gifting unlimited OneDrive storage for all Office 365 users. How will competitors like Dropbox and Google respond? Microsoft unveiled its plans to provide all Office 365 users with unlimited OneDrive storage at no additional cost.  Microsoft is rolling out this change today starting with Office 365 Home, Personal, and University subscribers. Related: Using the Microsoft OneDrive for Business Library Office 365 Business customers will also receive unlimited storage in the coming days, where the task has been placed on the Office 365 roadmap.  Furthermore, Office 365 users who are looking to get access to unlimited storage can put themselves on a wait list to be one of the first to get unlimited storage. Microsoft is rolling out unlimited OneDrive storage for its Office 365 subscribers. (Image Credit: Microsoft) With this move, Microsoft is taking on its competitors to provide users with the best available cloud service by providing them with the collaborative tools that users need both in personal and professional environments.  The following is an excerpt from a OneDrive blog post that made the announcement: While unlimited storage is another important milestone for OneDrive we believe the true value of cloud storage is only realized when it is tightly integrated with the tools people use to communicate, create, and collaborate, both personally and professionally. That is why unlimited storage is just one small part of our broader promise to deliver a single experience across work and life that helps people store, sync, share, and collaborate on all the files that are important to them, all while meeting the security and compliance needs of even the most stringent organizations. Dropbox... --- ### 3 Ways to Create New Active Directory Users > Learn how to create new Active Directory users with three different administration tools - Published: 2014-10-27 - Modified: 2024-09-04 - URL: https://petri.com/3-ways-to-create-new-active-directory-users/ - Categories: Active Directory (AD) - Tags: Active Directory, Identity Management, Management, Windows Server, Windows Server 2012 R2 - Article Type: How To Russell Smith shows how to create new Active Directory users with three different administrative tools. So you've installed Windows Server, the Directory Service (AD DS) bits, and promoted the server to a domain controller (DC), but now what? The first step is to create some Active Directory (AD) user accounts. In this Ask the Admin, I'm going to show you how to create new Active Directory users with three different tools: Active Directory Administrative Center (ADAC), Active Directory Users and Computer (ADUC), and a command-line tool called dsadd. For more information on creating AD users with PowerShell, see Create New Active Directory Users with Excel and PowerShell on the Petri IT Knowledgebase. If you haven't already installed Windows Server and the AD Directory Service server role, make sure you check out How to Install Windows Server 2012 R2 and Install Active Directory on Windows Server 2012 with Server Manager. Option #1: Creating new users with Active Directory Administrative Center If you've never used Windows Server or Active Directory before, then the Active Directory Administrative Center is the easiest management tool to get to grips with. You'll need to log in to Windows Server 2012 R2 with a domain administrator account, or a domain-connected PC where the Remote Server Administration Tools (RSAT) are installed. For more information on RSAT, see Remote Server Administration Tools (RSAT) for Windows 8: Download and Install. To run ADAC, start Server Manager by clicking the blue icon next to the Start button on the desktop taskbar, or the Server Manager tile on the Start screen. In Server Manager, select... --- ### Using the AddOnsMenu property in the PowerShell ISE > Learn how to add custom menu items with the AddOnsMenu property in the PowerShell ISE. - Published: 2014-10-27 - Modified: 2024-09-04 - URL: https://petri.com/using-addonsmenu-property-powershell-ise-object-model/ - Categories: PowerShell - Tags: Advanced, ISE - Article Type: How To Jeff Hicks shows you how to customize the PowerShell ISE menu using the AddsOnsMenu property. Perhaps the greatest feature of the PowerShell ISE is that it is extensible. In my last few articles on the PowerShell ISE I've been introducing you to the PSISE object model. The next step is to integrate some of these commands and functions directly into the ISE. We can do this by adding commands directly to the ISE menu. Adding a Menu Item to the PowerShell ISE The PowerShell ISE has an Add-Ons menu, which I've highlighted in the figure below. The PowerShell ISE Adds On menu. (Image Credit: Jeff Hicks) Microsoft, members of the PowerShell community and you, can add items to this menu using the PSISE object model. Each PowerShell tab has an AddOnsMenu property. The PowerShell AddOnsMenu property. (Image Credit: Jeff Hicks) This gets a little tricky because you don't add an item here, but rather to the Submenus property using the Add method. The syntax looks like this: $psise. CurrentPowerShellTab. AddOnsMenu. Submenus. Add(,{ },) You have to specify something for all three values, although you really only need the first two. If you don't want to include a keyboard shortcut, such as Ctrl+Alt+7, you can use $Null. In way of demonstration, I'll add a link to Notepad with a keyboard shortcut. $psise. CurrentPowerShellTab. AddOnsMenu. Submenus. Add("Open _Notepad",{Notepad. exe},"Ctrl+Alt+N") In the ISE, I can use the menu or the keyboard shortcut to launch Notepad. Remember that your command must be a script block, so don't forget the {}. The Open Notepad option has now been added... --- ### Completely Remove a Hyper-V Virtual Machine with PowerShell > Learn how to completely remove a Hyper-V virtual machine with PowerShell with scripting tips from Jeffery Hicks. - Published: 2014-10-24 - Modified: 2024-09-04 - URL: https://petri.com/completely-remove-hyper-v-virtual-machine-powershell/ - Categories: PowerShell - Tags: Editor's Pick, Hyper-V, Intermediate, Scripting - Article Type: How To Jeff Hicks shows you how to remove a Hyper-V virtual machine in its entirety with Windows PowerShell. In the PowerShell Hyper-V module there is a cmdlet called Remove-VM that does pretty much what the name says. You give it the name of a virtual machine (VM) on a Hyper-V server and PowerShell will gladly remove it. You can remove 1, 10, or 100 VMs with the same, simple one-line command: Remove-VM MyVM –computername HV01. The cmdlet will also delete the VM from the Hyper-V host just as if you had used the graphical Hyper-V Manager to delete it. Note that the VM must not be running. However, not everything is completely removed. When you delete a VM, the only thing that is truly deleted is the configuation file and its registration with the Hyper-V host. Any VHD or VHDX files remain, untouched. I suppose the thinking is that you might want to re-use the virtual disk file with another VM. A VM is an easy thing to create, but a virtual disk is a bit more valuable. Still, what if you truly want to remove a VM including disk files? Here's one way I have come up with using PowerShell and it can all be accomplished from your desktop, assuming you have the Hyper-V module available on your desktop. Let's walk through the process. First, we need a VM. ​$vmname = "test1" $Computername = "chi-hvr2" $vm = Get-VM -Name $VMName -ComputerName $Computername Using PowerShell, we can see the path for the VM's hard drive. Getting the path to the virtual machine's hard drive with... --- ### IBM and Docker Partnerships Support Microsoft's Cloud Vision > Learn how Microsoft's partnership with Docker and IBM works to support Satya Nadella's cloud vision. - Published: 2014-10-24 - Modified: 2024-11-19 - URL: https://petri.com/ibm-docker-partnerships-microsoft-cloud/ - Categories: Microsoft Azure - Tags: Editor's Pick, News - Article Type: News Petri IT Knowledgebase Editorial Director Jeff James dives into an analysis of how Microsoft's partnership with Docker and IBM supports Microsoft's overall cloud vision. In recent weeks, Microsoft has entered into partnerships with both IBM and Docker in moves that strengthen Microsoft's enterprise cloud vision. The IBM deal will see support for IBM software added to Microsoft Azure, namely IBM DB2, WebSphere Liberty, MQ, and the IBM Pure Application Service. On the IBM side, SQL Server and Windows Server will be offered on IBM cloud services, and IBM will bolster support for its software when running in Hyper-V virtual machines. Related: What is Docker? Microsoft's partnership with Docker will result in the next version of Windows Server having support for Docker containers. Microsoft had recently announced that Microsoft Azure would support Docker running in Linux VMs, but this latest announcement broadens and deepens the engagement between the two companies. An Evolving Mindset at Microsoft Both the IBM and the Docker partnerships -- along with other recent improvements to Microsoft Azure -- underscore that  Satya Nadella's Microsoft is a more accessible and collaborative company, particularly with how it has been much more open about working with other technology firms. Salesforce Founder and CEO Marc Benioff has been effusive in his praise of Nadella, with Business Insider reporting that Benioff had said, "When I look at John, when I look at Satya, when I look at you, I say, 'Wow, we have three dramatically different leaders than what has been there for decades. ' To me that's the No. 1 indication that there is a new Microsoft because the people are new at the top. " Microsoft has also... --- ### How to Use Snap and Snap Assist in Windows 10 Technical Preview > Learn how to use Snap and Snap Assist features in Windows 10 for added productivity. - Published: 2014-10-23 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-snap-and-snap-assist-in-windows-10-technical-preview/ - Categories: Windows 10 - Tags: Windows 10 - Article Type: How To Russell Smith shares his tips on using the improved Snap and Snap Assist features in Windows 10. Windows 10 virtual desktops are maybe getting the lion's share of media attention, but Snap and the new Snap Assist feature are potentially more useful. While I'm probably in a minority of people that find Windows Store apps useful on a Windows 8 notebook, lining them up side-by-side is much easier than trying to do the equivalent with Snap and desktop apps in Windows 8, mainly because it fails to do anything more than snap windows left or right, filling half the screen. Related: How to Use Virtual Desktops in Windows 10 Technical Preview That's better than nothing, but in real-world use, you're more likely to arrange apps side-by-side, with one of them occupying more than its fair share of the screen real estate. As you continue working, you might decide that one app needs to be wider than the other, and so on. Although Windows 8's Modern UI deals with this admirably, desktop Snap leaves users to fiddle around with the mouse to achieve the same results. Using Snap in Windows 10 The easiest way to snap windows on the Windows 10 desktop is to use the keyboard shortcuts. Like in Windows 8, WIN + LEFT and WIN + RIGHT arrow key combos snap windows left and right, respectively. Snap windows left and right in Windows 10 Technical Preview (Image Credit: Russell Smith) Windows 10 adds two new keyboard shortcuts to Snap, WIN + DOWN and WIN + UP arrows, allowing windows to be... --- ### What to Expect at Microsoft TechEd Europe 2014 > Learn what to expect at Microsoft TechEd Europe 2014, including Microsoft's emphasis for this years conference on Microsoft Azure and Office 365. - Published: 2014-10-22 - Modified: 2024-11-19 - URL: https://petri.com/what-to-expect-at-teched-europe-2014/ - Categories: Windows Server - Tags: Editor's Pick, TEE14 - Article Type: News Aidan Finn outlines what to expect at Microsoft TechEd Europe 2014, including what to bring and how to schedule your time at the event. On October 28th, we'll see the beginning of the end of a Microsoft legacy: TechEd Europe 2014 (TEE14) running in Barcelona, Spain, is the very last TechEd event before it is replaced by Microsoft Ignite, which takes place May 4-8 in Chicago, USA. Will anything interesting happen in Barcelona? I think so, as you'll read here. Related: Microsoft Tech Conferences Relaunch Under Microsoft Ignite Banner TechEd Europe 2014 Overview TechEd Europe is being hosted in the Fira Barcelona conference center in Catalonia in north east Spain, famous for the architecture of Gaudi and Camp Nou, the massive stadium and home of FC Barcelona, a huge football (soccer for American readers) team. The pre-conference sessions are running on Monday 27th, and a keynote kicks off four days of breakout sessions, instructor-led labs, hands-on labs, and exhibitions. What do you get at TechEd? It's a huge breadth of materials that give you an opportunity to learn about Microsoft enterprise solutions from experts, be they community members or leaders from the Microsoft product groups. You can learn a lot in a short amount of time, try the products out, find third-party solutions that enhance Microsoft's systems, and network with your peers. If you feel like it, you can even sit some certifications at a 50 percent discount. And there might even be a chance of a party or two breaking out! That keynote will be on 8:30 AM local time (that's 7:30 UTC, which is normally five hours ahead of EST). There are... --- ### PowerShell Problem Solver: Copy Files with Credentials Revisited > Learn how to copy files with credentials in Windows PowerShell, along with troubleshooting tips when using PSDrive to copy files. - Published: 2014-10-22 - Modified: 2014-10-22 - URL: https://petri.com/powershell-problem-solver-copy-files-credentials-revisited/ - Categories: PowerShell - Tags: Advanced, PowerShell Problem Solver, Scripting - Article Type: How To In his latest PowerShell Problem Solver, Jeff Hicks revisits his discussion about copying files with credentials using PowerShell. In the last PowerShell Problem Solver, I shared a proxy function to copy files to a network share using alternate credentials. You might want to take a moment to look at that article before continuing. As I stated at the end of the article, most of the time using the temporary PSDrive works just fine. Troubleshooting the use of PSDrive to copy files In my testing, I eventually ran into an error "Multiple connections to a server or shared resource by the same user, using more than one user name, are not allowed. Disconnect all previous connections to the server or shared resource and try again. " What makes this difficult to troubleshoot is that it isn't always apparent where this connection is defined. I used WMI to query for network connections. get-wmiobject win32_networkconnection I even checked using the legacy NET USE command to see if there were any lingering connections. Sometimes you can be left with a mapped connection to the IPC$ share. If that happens, then you can easily delete it. net use \chi-fp02ipc$ /delete Rebooting didn't always resolve this issue. So I decided to take a different approach in my Copy-Item proxy function. Sometimes the old school ways are the best ways. I still wanted a mapped drive using alternate credentials so why not use NET USE? The syntax for mapping a drive with credentials is: NET USE /user: To use this in PowerShell requires a little work. First, the NET... --- ### How to Use Virtual Desktops in Windows 10 Technical Preview > Learn how to use Virtual Desktops in Windows 10 Technical Preview. - Published: 2014-10-21 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-virtual-desktops-in-windows-10-technical-preview/ - Categories: Windows 10 - Tags: Management, Virtual Desktops, Windows 10 - Article Type: How To Russell Smith shares his tips for using virtual desktops in the Windows 10 Technical Preview. In this Ask the Admin, I’ll show you how to work with virtual desktops in Windows 10 Technical Preview. In Windows 10 Technical Preview: Using Snap, Task View, and Virtual Desktops on the Petri IT Knowledgebase, I wrote about Windows 10's new desktop features and how implementation would be especially critical to the success of virtual desktops. While virtual desktops still need some refinement, if you want to experiment or have jumped in at the deep end and installed Windows 10 on your PC (not recommended), read on to see how virtual desktops work. Create and switch between virtual desktops Let's start by creating a new virtual desktop. Log in to Windows 10 and follow the instructions below. The Task view icon in Windows 10 (Image Credit: Russell Smith) Open Notepad on the current desktop. If Notepad isn't listed on the Start menu, type Notepad into the Search box at the bottom of the Start menu and press ENTER. Now click the Task view icon in the bottom left of the desktop taskbar, next to the Start button and Search icons. If you hover over the icon with the mouse pointer, Task view will appear above it to help you identify the different taskbar icons. Click Add a desktop in the bar that appears at the bottom of the screen. Add a virtual desktop in Windows 10 (Image Credit: Russell Smith) You'll see three large preview thumbnails in the... --- ### 5 Ways to Move Virtual Machines into Microsoft Azure > Learn five different ways to move virtual machines into Microsoft Azure. - Published: 2014-10-21 - Modified: 2024-09-04 - URL: https://petri.com/move-virtual-machines-into-microsoft-azure/ - Categories: Microsoft Azure - Tags: Amazon Web Services, AWS, Azure, Azure Site Recovery MVMC 3.0, Cloud, cloud computing, conversion, Hyper-V, Microsoft Azure, Microsoft Virtual Machine Converter, migration, Migration Accelerator, virtual machines, vSphere - Article Type: How To Aidan Finn discusses five different ways to move virtual machines into Microsoft Azure. In the first installment of this article series, I explained the pressure and challenges that exist when moving virtual machines (VMs) to a cloud, such as Microsoft Azure. In the final part of this article series, I will discuss a number methods you can consider for migrating your virtual machines into Microsoft Azure. 1. Manual Upload of VHDs Microsoft Azure was originally designed for developers by developers. Those Microsoft developers had a view of the world where everyone was using Software-as-a-Service (SaaS), where Infrastructure-as-a-Service (IaaS) was no longer needed. Years of disappointing sales proved Microsoft wrong, and IaaS was added to Azure, which has helped it mature at an incredible pace. But a lot of the concepts are still developer focused. One of these features is the ability to upload a virtual hard disk (Azure only supports Hyper-V Generation 1 virtual machines with VHD format disks) with a generalized operating system (Sysprep for Windows). You can then create an image that appears in the gallery for your deployments. The idea here is that you're creating an application server and you need tens, hundreds, or even thousands of instances of this VM that you can rapidly provision and scale-out services with. This is one of those things that a cloud, such as Azure, does really well. You can do something similar with an existing one-off VM, but it requires quite a bit of work. You won't want to generalize this VM and this is what introduces the work; you will need to prepare the... --- ### A First Look at the Microsoft Cloud Platform System > The Microsoft Cloud Platform System is an appliance that combines hardware, storage, and networking provided by Dell, running Microsoft's Windows Server and System Center software. - Published: 2014-10-20 - Modified: 2024-09-04 - URL: https://petri.com/first-look-microsoft-cloud-platform-system-powered-dell/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: News Jonathan Hassell gives us a first look at the preconfigured Microsoft Cloud Platform System, which combines hardware, storage and networking provided by Dell and a software stack provided by Microsoft. You might be familiar with the recent trend in converged infrastructure, where software and hardware are teamed up in a custom, generally available bundle. Oracle is famous for its Exadata kit which combines a rack of compute hardware and networking with a specially tuned release of its database software and sells it for hundreds of thousands of dollars. Microsoft is jumping into this game with the Microsoft Cloud Platform System Powered by Dell. It is a preconfigured appliance that combines engineered hardware, storage, and networking provided by and engineered by Dell, with Windows Server and other software from Microsoft and others, in a defined configuration that is backed up by a high level of support with a single point of contact. The Microsoft Cloud Platform System runs on Windows Server, System Center, and Windows Azure Pack on top of Dell hardware. (Image: Microsoft) According to Microsoft, the idea behind the Cloud Platform System (CPS) is to have a common experience among multiple clouds, whether it is up in Microsoft Azure, a service provider cloud, or an on premises private cloud. By purchasing this CPS solution, you receive an Azure-consistent cloud in a box, using the same software that Microsoft runs its public cloud service with. As far as support goes, Microsoft can provide very prescriptive guidance about deploying typical workloads like Exchange, SQL Server, System Center, SharePoint, and even Linux on this hardware because it knows exactly what components are in play and... --- ### Can I Quote You on That? Quoting and Variable Expansion in PowerShell > Microsoft PowerShell MVP Jeff Hicks explains quoting and variable expansion in PowerShell. - Published: 2014-10-17 - Modified: 2014-10-17 - URL: https://petri.com/can-quote-quoting-variable-expansion-powershell/ - Categories: PowerShell - Tags: Beginner, Editor's Pick - Article Type: How To Learn the difference between using single and double quotes with variables in Windows PowerShell. Recently on Twitter there was a brief flurry of tweets regarding best practices when it came to using quotes in PowerShell. That is to say, whether it is better of use single or double quotes. I had my opinion, which surprisingly was at odds with most people so I thought I would revisit the topic. Especially because using quotes throws many beginning PowerShell users. Quoting and Variable Expansion in PowerShell First, PowerShell is pretty smart at determining what is a string or text. If you look at cmdlet help, most parameters accept values that will be treated as strings. This means you can run any one of these commands and they will all work. get-eventlog -LogName system -newest 5 -ComputerName chi-dc04 get-eventlog -LogName "system" -newest 5 -ComputerName "chi-dc04" get-eventlog -LogName 'system' -newest 5 -ComputerName 'chi-dc04' For any string that doesn't contain a space, if PowerShell knows how to treat it as a string, I don't think you need to include any quotes. But when there are spaces, this is where it gets interesting. Again, if you have simple text, PowerShell doesn't really care if you use '' or "". Both of these commands will give you the same result. get-service -DisplayName "Windows Update" get-service -DisplayName 'Windows Update' Now, what happens when you throw a simple variable in the mix. PS C:> $n = "Jeff" PS C:> "The current user is $n" The current user is Jeff PS C:> 'The current user is $n' The current user is $n... --- ### How to Customize the Windows 10 Start Menu with Group Policy > Learn how to use and customize the Windows 10 Start menu using group policy and configure the default live tiles layout for your users. - Published: 2014-10-17 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-and-customize-the-windows-10-start-menu/ - Categories: Windows 10 - Tags: Editor's Pick - Article Type: How To Russell Smith shows you how to use and customize the Windows 10 Start menu using group policy, along with steps to configure the default live tiles layout for your users. In this Ask the Admin, I'll show you how to manually customize the Windows 10 Technical Preview Start menu and how to configure the layout using Group Policy. Related: Hands-On with the Windows 10 Technical Preview The Start menu in Windows 10 is a combination of the Windows 7 Start menu and the tiled Start screen in Windows 8. The left side of the menu is divided into several sections not dissimilar from Windows 7, but different nevertheless, and the right is exclusively for Windows 8-style live tiles. The Windows 10 Start menu. (Image Credit: Russell Smith) Tip: To completely remove the live tiles section of the Start menu, unpin all the tiles. To reinstate the area, right click a Windows Store app in the MRU list or under All Apps, and select Pin to Start from the menu. The classic Start menu Starting from the top left, there are buttons to sign out, shutdown, and restart the device. The menu for the currently logged-in user allows them to change their account picture, lock the device, and sign out. Under those options, any other local user accounts on the PC are shown so that you can switch users. User options on the Windows 10 Start menu (Image Credit: Russell Smith) Further down, quick links provide a fast way for users to get to their Documents and Pictures folders, PC settings and File Explorer. The links can be customized by right-clicking... --- ### Fix for VMware Workstation "Not enough physical memory is available" Error > Learn how to fix "Not enough physical memory is available" errors in VMware Workstation. - Published: 2014-10-17 - Modified: 2024-09-04 - URL: https://petri.com/fixing-enough-physical-memory-available-errors-vmware-workstation/ - Categories: VMware - Article Type: How To Daniel Petri shares four different methods for fixing "not enough physical memory is available" errors in VMware Workstation. VMware Workstation is, in my eyes, the best personal virtualization product around. Although other products exist, such as the free client Hyper-V on Windows 8/8. 1 and Oracle Virtual Box, VMware Workstation has so many features that makes it much more usable compared to other offerings. I've used it for many years, and now VMware Workstation is on version 10. On my laptop I have several virtual machines (VMs) that I constantly use for various purposes, mostly running Windows Server 2012 R2 and Windows 7/8. 1, but I also have some CentOS and RedHat VMs. A couple of days ago I rebooted my laptop due to a Microsoft Windows Update, and when it started I launched VMware Workstation. I powered on one of my VMs, as I usually do. But this time I was presented with the following error: Not enough physical memory is available to power on this virtual machine with its configured settings. To fix this problem, power off other virtual machines, decrease the memory size of this virtual machine to 220 MB, increase the amount of physical memory for all virtual machines to 2256 MB, or adjust the additional memory settings to allow more virtual machine memory to be swapped. It is possible that native applications and/or services have locked down memory which could be preventing the virtual machine from launching. Shutting down unnecessary applications or services may free enough memory to launch this virtual machine. If you were able to power on this virtual machine on this host computer... --- ### Microsoft Tech Conferences Relaunch Under Microsoft Ignite Banner > Microsoft announced today that Microsoft tech conferences will relaunch under the Microsoft Ignite conference banner in 2015. - Published: 2014-10-16 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-tech-conferences-relaunch-under-microsoft-ignite-banner/ - Categories: Windows Server - Tags: Editor's Pick, Microsoft Ignite, News - Article Type: News The mystery is over: Microsoft TechEd (and many other Microsoft tech conferences) will be merged into the new Microsoft Ignite tech conference, which will be held in May 2015. After several months of what could be best described as head-scratching confusion over the fate of the Microsoft TechEd conference -- and some outreach to former TechEd attendees for crowd-sourced branding input on the new conference -- Microsoft has finally announced that Microsoft TechEd and a host of related conferences (such as the Microsoft Exchange Conference, the SharePoint Conference, etc. ) will be merged into a single technology conference under the Microsoft Ignite brand name. The first Microsoft Ignite conference will be held May 4-8, 2015 at McCormick Place in Chicago, IL. As I mentioned previously, it will replace six formerly separate Microsoft technology conferences: Microsoft TechEd, Microsoft Management Summit, Exchange Conference, SharePoint Conference, Lync Conference, and the Project Conference. Microsoft Corporate Vice President for Communications Frank X. Shaw posted about the new event on the official Microsoft blog, saying that the new conference would cover "... cloud infrastructure and management, big data and analytics, productivity, unified communications, operating systems, mobile devices and more. " The Microsoft Ignite Conference website (and conference registration) is now also live, and it reveals that Microsoft has an impressive line-up of speakers for the first Ignite Conference, including CEO Satya Nadella, CVP Brad Anderson, Joe Belfiore, Dave Campbell, Peggy Johnson, Julie Larson Green, and other senior Microsoft execs. To help promote the launch of the new conference, Microsoft Office general manager Julia White is joining Chicago Mayor Rahm Emanuel in a press event (catch the livestream here) scheduled for today at 12:30pm MT. Shaw also mentioned dates and times for... --- ### What You Need to Know Before Migrating VMs to Microsoft Azure > In this first of a two-part series, Aidan Finn discusses the challenges of migrating VMs to Microsoft Azure. - Published: 2014-10-16 - Modified: 2024-09-04 - URL: https://petri.com/need-to-know-migrate-vms-to-microsoft-azure/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: Opinion In this first of a two-part series, Aidan Finn discusses the challenges of migrating VMs to Microsoft Azure. The momentum for deploying services in Microsoft Azure is starting to build. Many of the scenarios involve moving existing virtual machines (VMs) into Azure. To executives and salespeople, that's a trivial matter for the IT folks to take care of. But for those IT folks, it is a challenge that must overcome the opposing forces of bandwidth limitations, acceptable downtime, and migration project deadlines. In this first article in a two-part series on migrating VMs to Microsoft Azure, I'll expand on the challenges that you face when deciding to move your VMs to Azure. In part two, I will discuss different methods you can consider for migrating your VMs into Azure. The Microsoft Azure portal. (Image Credit: Microsoft) The Challenges of Migrating Virtual Machines to Microsoft Azure Imagine this scenario: It's the start of a new work week and you walk into the office, preparing yourself for the usual onslaught of password resets, PC boot failures, and general annoyances that distract you from doing the more interesting engineering or project work. As you walk to your desk, your manager calls you into their office to inform you that the CIO has just committed the company to using Microsoft Azure, and you need to move lots of virtual machines off of your on-premises environment and up into Azure by some impossible date. Does that sound implausible? I don't think it is because, in my experience, most executives and sales people just do not understand that you... --- ### Microsoft Releases Virtual Machine Converter 3.0 > Microsoft added the ability to do physical-to-virtual (P2V) conversions from vSphere to Hyper-V with Microsoft Virtual Machine Converter (MVMC) 3.0. - Published: 2014-10-15 - Modified: 2024-12-03 - URL: https://petri.com/new-tool-p2v-microsoft/ - Categories: Hyper-V - Tags: Azure, Hyper-V, Microsoft Azure, Microsoft Virtual Machine Converter 3.0, MVMC 3.0, p2v, v2v, vmware, vSphere - Article Type: News The new release of the Microsoft Virtual Machine Converter (MVMC) 3.0 now includes the ability to perform physical-to-virtual (P2V) conversions from vSphere to Hyper-V. Microsoft has released Microsoft Virtual Machine Converter (MVMC) 3. 0. This third version of this Microsoft virtualization converter tool fills a gap that has existed in Microsoft's cloud and virtualization portfolio since the release of the 2012 R2 generation of Windows Server and System Center; Microsoft now has a tool for performing physical-to-virtual (P2V) conversions. What is the Microsoft Virtual Machine Converter (MVMC)? Microsoft released the second version of their free conversion tool, MVMC 2. 0, in April of this year. At the time, I posted that this tool was supplanting System Center Virtual Machine Manager (SCVMM) as the conversion tool of choice. SCVMM had previously been the chosen method for converting physical and VMware machines into Hyper-V computers, but it was quite fiddly, and it didn’t deal with the complexity of replacing the VMware tools with the Hyper-V integration components. It's also Microsoft-centric, as SCVMM didn't convert Linux guest OS virtual machines. When SCVMM 2012 R2 was released, many were shocked to find that the P2V functionality, as flaky as it was, was removed. That left people seeking third-party alternatives or temporarily installing the previous release of SCVMM (SCVMM 2012 SP1) to convert any remaining physical machines into Hyper-V virtual machines. In April, Microsoft announced their intentions with the release of MVMC 2. 0. This free tool offered virtual-to-virtual (V2V) conversions from vSphere that handled the VMware tools and support was added for migrating Linux guest OSs and for migrating virtual machines to Azure. Microsoft also announced that they were planning... --- ### PowerShell Problem Solver: Copy Files with Alternate Credentials > Learn how to copy files with alternate credentials in Windows PowerShell. - Published: 2014-10-15 - Modified: 2024-09-04 - URL: https://petri.com/powershell-copy-files-alternate-credentials/ - Categories: PowerShell - Tags: Advanced, Editor's Pick, PowerShell Problem Solver, Scripting - Article Type: How To In this week's PowerShell Problem Solver, Jeff Hicks provides a PowerShell solution for copying files with alternate credentials. Not too long ago, I chimed in on a PowerShell problem about copying files on some social media platform. An IT pro was facing a challenge using PowerShell to get his job done and wasn't sure what to do. The task at hand was to copy files to a network location using alternate credentials. Naturally, he wanted this accomplished using PowerShell. At first glance, you might think this should be pretty easy. If you look at help for Copy-Item, you will see a credential parameter. However, if you look at help for this parameter, then you will come across a rather stunning pronouncement. Related: PowerShell Problem Solver: Let's Figure it Out The credential parameter is not supported in Windows PowerShell. (Image Credit: Jeffery Hicks) Yes. This parameter is not used out-of-the-box. This is why it is important that you be in the habit of reading full help in PowerShell. More than likely this parameter exists for future providers or future versions of existing providers that will support it. But for right now in PowerShell 4. 0, this is not an option. So if we can't use an alternate credential, how can we copy files? My solution is to leverage the New-PSDrive cmdlet. This cmdlet has a credential parameter that will work. I should be able to create a new drive to a network share using an alternate credential. new-psdrive -Name IT -PSProvider FileSystem -Root chi-fp02IT -Credential globomanticsadministrator Now I can copy files to this... --- ### Use PowerShell to Remotely Manage Exchange 2010 from a Windows 8 PC > Learn how to use PowerShell to remotely manage Exchange 2010 from a Windows 8 PC with these helpful tips. - Published: 2014-10-14 - Modified: 2024-09-04 - URL: https://petri.com/use-powershell-remotely-manage-exchange-2010-windows-8-pc/ - Categories: Exchange Server - Tags: Editor's Pick - Article Type: How To Learn how to use PowerShell to remotely manage Exchange 2010 from a Windows 8 PC with these helpful tips. Logging onto a server remotely, simply to complete an administrative task is unnecessary, inefficient, and pardon the cliché, so passé. By leveraging PowerShell, virtually any task can be completed right from an administrator's workstation running Windows 7 or 8. Throw a VPN or DirectAccess connection into the mix and these tasks can be completed from virtually anywhere. Keep in mind, remoting isn't limited to just Windows Server tasks either. In fact, to prove my point, I'm going to explain exactly how to use a Windows 8. 1 PC to manage Exchange Server 2010 remotely. Before I go any further, let me set the stage. There won't be any downloads, third-party tools, or caveats thrown around today. This article will focus on taking a standard Windows 8. 1 Professional laptop and using its built-in PowerShell Host to perform a few common Exchange Server 2010 management tasks. Using PowerShell to Remotely Manage Exchange Most Exchange administrators have become comfortable using the Exchange Management Shell to complete their day-to-day tasks. In fact, I would say many prefer the speed and efficiency of the Exchange Management Shell over the slow, but intuitive GUI Exchange Management Console. This is one of the beautiful aspects of using PowerShell to remotely manage Exchange. Unfortunately, many admins are still either using Remote Desktop to log on directly to their Exchange servers or using only workstations where the Exchange Management Tools have been installed. Admittedly, having the Management Tools installed locally does provide a number of advantages for an Exchange... --- ### Windows 10 Technical Preview: Using Snap, Task View, and Virtual Desktops > Dive into the Windows 10 Technical Preview with a look at Windows 10 Snap, Task View, and Virtual Desktop features. - Published: 2014-10-14 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-snap-task-view-virtual-desktops/ - Categories: Windows 10 - Tags: Metro, Modern UI, Snap, Snap Assist, Task View, Windows 10, Windows 8, Windows Store - Article Type: Opinion Russell Smiths shows us what's new in the Windows 10 Technical Preview with Snap, Task View, and Virtual Desktop features. Back in the summer, I wrote Why You Should Embrace Windows 8 Apps, where I vented my frustration at the lack of innovation on the desktop and stated my preference for the simpler Modern UI in Windows 8. Because it's not realistic to completely abandon the desktop, largely due to the lack of WinRT Office suite apps, the result of embracing Windows 8 apps is a jarring mix of two environments. We also need to consider the mess that results from application switching in Windows 8. Pressing the ALT+TAB keys cycles through all open apps, but only includes WinRT apps that haven't been suspended.  So, if your apps are taking a nap, then you'll need to go looking for them in the panel that appears when the pointer is moved to the left of the screen. And assuming you don't count the desktop as an app, the WIN+TAB key combination only cycles through WinRT applications, leaving Windows 8 with something of an app platform disjoint. Windows 10 Snap, Task View, and Virtual Desktops But the merger of Modern UI and desktop came one step closer on September 30th, when Microsoft revealed the Windows 10 Technical Preview. So can Microsoft's new client OS provide a better desktop experience for novice and advanced users, and successfully integrate WinRT apps with the desktop? In this article I'll take a closer look at the Windows 10 Snap, Task View, and Virtual Desktops features. Positioning windows using Snap Desktop apps in Windows 8 can be snapped left... --- ### Is Office 365 Really Suited for Small Business? > Is Office 365 really suited for small business? Microsoft MVP J. Peter Bruzzese gives his take on what benefits Office 365 provides. - Published: 2014-10-14 - Modified: 2024-09-04 - URL: https://petri.com/office-365-really-suited-small-business/ - Categories: Microsoft 365 - Tags: Editor's Pick - Article Type: Opinion Is Office 365 really suited for small business? Microsoft MVP J. Peter Bruzzese gives his take on what benefits Office 365 provides. In conversations with business owners and others responsible for managing IT within their organizations, I have found that while many medium or enterprise environments are keen to explore Microsoft's Office 365 offerings, many small business owners quickly dismiss this as something too expensive or too complicated for a business of their size. In my experience they could not be more mistaken. Office 365 offers enormous benefits at a possibly significant cost-savings to small businesses. I recently wrote an article letting Petri IT Knowledgebase readers know about three new Office 365 plans specifically designed for small businesses. In that announcement we spoke about the plans, but not the true value and benefits. As such, I think it would be worthwhile to see just where small businesses could benefit by moving to Office 365. Is Office 365 the Right Choice for Small Businesses? When I say that Office 365 is a solution worth considering for small businesses, just how small do I mean? In terms of users Office 365 can be helpful in businesses with as few as one or two users. Office 365 works just as well if you are employee number one in a small startup you are running out of your garage, or if you anticipate that you'll be rapidly expanding and your number of employees will be growing. In the later case, you should know that the new Office 365 plans for small businesses allow up to 300 users. Is Office 365 a good first for every small... --- ### Exchange 2010 Cross-Forest Migration: Using ADMT and the Password Export Server > Learn how to perform a Exchange 2010 cross-forest migration using the Active Directory Migration Tool (ADMT) and the Password Express Server. - Published: 2014-10-13 - Modified: 2024-12-03 - URL: https://petri.com/exchange-2010-cross-forest-migration/ - Categories: Exchange 2010 - Article Type: How To Learn how to perform a Exchange 2010 cross-forest migration using the Active Directory Migration Tool (ADMT) and the Password Export Server. In the first two installments of this article series on Microsoft Exchange 2010 cross forest migration, we prepared both Exchange installations to work in co-exisitance mode.  In this article, we'll continue using our migration by using the Active Directory Migration Tool (ADMT) and the Password Export Server (PES) setup, and now we'll prepare the configuration to perform the cross forest migration of users. Part One: Microsoft Exchange 2010 Cross-Forest Migration Part Two: Exchange 2010 Cross-Forest Migration: GAL Sync and Enabling MRS Proxy Here's a quick preview of the steps we'll complete in this installment, which I'll go into much greater detail as we progress through the operation: ADMT Admin Service account creation and configuration Install and configure ADMT tool Install and configure Password Export Server (PES) on source forest DC greendc. green. com Configure registry to allow password export on source server Greendc Disabling SID filtering on the target domain blue. com Copying Certificate from the blue. com CAS servers to green. com CAS servers and vice versa 1. ADMT Admin Service account creation and configuration The ADMT service account plays a major role during the migration. It needs permission on both the source and target forest. It helps to migrate the users, groups, and computers to migrate from source to target. Create a service account 'ADMTAdmin' in the domain blue. com and provide 'Domain Admin' permission at blue. com forest. Add 'blueADMTAdmin' into the built-in Administrator's group for the source forest, green. com. 2. Installing and configuring the ADMT tool SQL Server is a pre-requisite for an ADMT tool, and it needs to be... --- ### Create New Active Directory Users with Excel and PowerShell > Russell Smith shows you how to create new Active Directory users with Excel and PowerShell. - Published: 2014-10-13 - Modified: 2024-09-04 - URL: https://petri.com/create-new-active-directory-users-excel-powershell/ - Categories: Active Directory (AD) - Article Type: How To Learn how to create new Active Directory users in bulk with Excel and PowerShell in Russell Smith's latest article. Need to manage Active Directory (AD) users in bulk or integrate user management with a business process? Look no further than PowerShell's new-aduser cmdlet. The ability to create and manage AD user accounts from the command line has existed in Windows Server long before the appearance of PowerShell. Maybe you remember the dsadd, dsmod, and dsquery commands, which can still be found in Windows Server 2012 R2 today if the AD Directory Services (AD DS) server role is installed. But the DS commands exist in isolation, unlike new-aduser, which can leverage PowerShell's advanced object-orientated scripting capabilities, making it easier to automate common administrative tasks. That said, new-aduser doesn't lend itself to creating AD users on an ad-hoc basis. This is partly because like any command-line tool, there's a syntax to memorize.  Secondly, it doesn't allow passwords for new user accounts to be typed in plaintext, complicating the command since passwords must be encrypted as secure strings. Nevertheless, if you regularly create more than one AD user at a time, don't disregard new-aduser. In this article, I'll walk you through the basics of creating new users with PowerShell and show you how to use Excel and a simple script to streamline the process. Creating new AD users from the command line To run the command line examples in this article, you'll need to open a PowerShell prompt with an account that has permission to create new user accounts in AD, and the Active Directory module for Windows PowerShell needs to... --- ### Hands-On with Windows Phone 8.1: Navigation, Mail, Calendar, and Maps > Russell Smith gets hands-on with Windows Phone 8.1 by looking at navigation, mail, calendar, and maps apps. - Published: 2014-10-13 - Modified: 2024-09-04 - URL: https://petri.com/windows-phone-8-1-navigation-windows-mail-calendar-maps/ - Categories: Mobile - Tags: Cortana, Windows 10, windows phone 8.1 - Article Type: Overview Russell Smith takes a look at Windows Phone 8.1 by looking at the real-world use for navigation, mail, maps, and calendar apps. A recent vacation gave me the perfect excuse to put Windows Phone 8. 1 through its paces, and in this first article of a two-part series, I look at the built-in Windows Mail and Calendar apps, HERE Maps, Cortana, working offline, and security. On my last vacation in February, my sole technological companion was a budget Android tablet. It met most of my needs, only falling short on a couple of interoperability issues with my camera and a NTFS-formatted USB drive, both issues that I'd anticipated. But after having been hesitant for many years following a bad experience with what was Windows Mobile, in spring I bought a Lumia 520, as I was keen to check out Windows Phone 8. 1. Since that day, the Lumia has been such a joy to use that not only has the Android tablet been gathering dust in a cupboard, but I'm gradually becoming more attached to the smartphone as I discover how it can help in everyday life. Related: Top Windows Phone 8. 1Features for Businesses As a reward for good behavior, I treated the Lumia to a vacation in Greece and left the tablet at home. I also packed my notebook as I wanted to write this article and a couple of other pieces -- tasks that would require a more capable device. What follows are my impressions of Windows Phone 8. 1 in real-world use, including the built-in apps and those bundled exclusively for Lumia. My thoughts on the third-party app problem... --- ### Satya Nadella's Remarks on Women and Raises is an Important Reminder for all Women in Tech > Petri IT Knowledgebase Senior Editor Blair Greenwood gives her perspective of Microsoft CEO Satya Nadella's remarks on women in tech industries and pay raises. - Published: 2014-10-10 - Modified: 2024-11-19 - URL: https://petri.com/satya-nadellas-remarks-women-raises-lesson-women-tech/ - Categories: Windows Server - Article Type: Opinion Blair Greenwood gives her perspective as a woman in tech about Microsoft CEO Satya Nadella's remarks on women asking for a pay raise in tech industries. Microsoft CEO Satya Nadella is currently facing criticism after his appearance at the Grace Hopper Celebration of Women in Computing conference, where he offered his thoughts on how women might go about asking their employers for a raise. “It’s not really about asking for the raise, but knowing and having faith that the system will actually give you the right raises as you go along,” Nadella responded to computer scientist, Maria Klawe, who asked Nadella for advice on the subject. “That’s good karma. It will come back. That’s the kind of person that I want to trust, that I want to give more responsibility to,” Nadella continued. Microsoft CEO Satya Nadella. (Image Credit: Microsoft) Following his appearance, Nadella retracked his statement and issued an apology through Twitter: Was inarticulate re how women should ask for raise. Our industry must close gender pay gap so a raise is not needed because of a bias #GHC14 — Satya Nadella (@satyanadella) October 9, 2014 In addition, Nadella followed up by sending an internal memo to Microsoft employees. The following is an excerpt of Nadella’s internal memo: “I answered that question completely wrong. Without a doubt I wholeheartedly support programs at Microsoft and in the industry that bring more women into technology and close the pay gap. I believe men and women should get equal pay for equal work. And when it comes to career advice on getting a raise when you think it’s deserved... . If you think you... --- ### Nominate your System Administrator Hero in the Petri IT Hero Contest > Nominate your IT hero in the Petri IT Hero contest for a chance to win Amazon gift cards and even an Xbox One game console. - Published: 2014-10-10 - Modified: 2024-09-04 - URL: https://petri.com/nominate-system-administrator-hero-petri-hero-contest/ - Categories: Windows Server - Tags: Editor's Pick, Petri IT Hero - Article Type: Opinion Know an IT professional that is worthy of recognition? Nominate them in our Petri IT Hero contest, and you both could win an Xbox One video game console! We've all come across people in our lives that make a profound impact on us, both on a personal and professional basis.  Some people excel as mentors and coaches, others are remarkable for their genius, while still others are legendary for their ability to persevere in the face of seemingly insurmountable odds. That's absolutely the case with system administrators. I'm sure many of you reading this have had an IT mentor that has helped you with your career, wisely guided you towards learning the most valuable platforms and technologies, and given you advice when you needed it most. Then there are the brilliant ones, technical geniuses who seem to know the answer to every IT problem -- or at least will point you in the right direction to solve it -- and have earned reputations as go-to individuals if you need to know something, or want something done the right way. Nominate your IT hero in the Petri IT Hero Contest and you both could win an Xbox One! Finally, there are co-workers and peers who are remarkable for they tenacity and refusal to give up on a tech problem until they have the solution. They may not have the most experience, they may not have an encyclopedic knowledge of IT tools and technology, and their resources might be limited, but their persistence and refusal to give up makes them legendary. The Petri IT Hero Contest: How to Enter These are just three categories of inspiring IT professionals we've come across, and I'm sure there are many... --- ### Tips for Choosing a Microsoft Azure Region > Aidan Finn provides several tips to consider when choosing a Microsoft Azure region to host services in. - Published: 2014-10-10 - Modified: 2024-11-19 - URL: https://petri.com/tips-choosing-microsoft-azure-region/ - Categories: Microsoft Azure - Article Type: How To Aidan Finn discusses several different factors to considering when choosing a Microsoft Azure region to host services in. When it comes to deploying a service in Microsoft Azure, we don't talk much about which region to use. What is a region? Where are they? What are the technical and legal aspects of deploying services in one region instead of another? I'll try to answer these questions in this article. Microsoft Azure Regions Microsoft Azure is a huge network of data centers that are located around the world. The global presence of these data centers provides Microsoft customers the ability to deploy a service anywhere in the world. Maybe a business wants to deploy a website to reach customers in southwest USA or maybe an online media organization needs to distribute content to consumers everywhere with excellent performance. No matter whether you're working for a small company or a gigantic corporation, you can tap into these services with a low cost of entry and without substantial capital expenditure that makes such projects impossible for those with smaller budgets. Microsoft Azure Regions (Image Credit: Microsoft Azure Preview Portal) The data centers are grouped into what Microsoft refers to as regions. There are several different regions around the world, which include the following (Source: Microsoft): Central US: Iowa East US: Virginia East US 2: Virginia US Gov Iowa: Iowa US Gov Virginia: Virginia North Central US: Illinois South Central US: Texas West US: California North Europe: Ireland West Europe: Netherlands East Asia: Hong Kong Southeast Asia: Singapore Japan East: Saitama Prefecture Japan West: Osaka Prefecture... --- ### With PowerShell, Sometimes Old is New Again > Learn about how far PowerShell has come in this retrospective by PowerShell MVP Jeff Hicks. - Published: 2014-10-09 - Modified: 2024-09-04 - URL: https://petri.com/old-powershell-scripts/ - Categories: PowerShell - Tags: Editor's Pick, Intermediate, Scripting - Article Type: Opinion Have some old PowerShell scripts hiding in dusty folders? Jeff Hicks explains how everything old -- at least with PowerShell -- is sometimes new again. Not too long ago on Twitter someone lamented the fact that he came across an older PowerShell script and was amazed at much his skills had improved. The script, while perhaps an embarrassing example of PowerShell, demonstrated how much he had learned. Back to the Future: PowerShell v1 and Monad I have experienced the exact same set of emotions. I've been writing PowerShell scripts since the beta days of Monad. When I look at some of those older scripts, I cringe. But instead of deleting the script so that it never again sees the light of day, perhaps we should embrace these old friends. Yes, they are probably poor examples of PowerShell, but that is what makes them valuable. I'm sure many of the mistakes I made in my early scripts are the same types of mistakes PowerShell beginners are still making today. I went through my Scripts folder and found one of the oldest PowerShell scripts I still have. Created February 2, 2006, this was even before PowerShell v1 was released. The script is called Showprocesses. ps1. This is the code as it exists in the file. $strComputer = ". " $colItems = get-wmiobject -class "Win32_Process" -namespace "rootCIMV2" ` -computername $strComputer foreach ($objItem in $colItems) { if ($objItem. WorkingSetSize -gt 3000000) { write-host $objItem. Name, $objItem. WorkingSetSize -foregroundcolor "magenta" } else {write-host $objItem. Name, $objItem. WorkingSetSize} } You have to realize that 2006 I was still very heavily into VBScript and was just starting to get my head around this new-fangled PowerShell-thing. Probably... --- ### New Office 365 SMB Plans Finally Announced > Microsoft has announced new Office 365 SMB plans, which include Office 365 Business Essentials, Office 365 Business, and Office 365 Business Premium. - Published: 2014-10-09 - Modified: 2024-09-04 - URL: https://petri.com/new-smb-office-365-plans-finally-announced/ - Categories: Microsoft 365 - Article Type: News Microsoft has announced new Office 365 SMB plans, which include Office 365 Business Essentials, Office 365 Business, and Office 365 Business Premium. Earlier this year at the Microsoft Worldwide Partner Conference, we were told there would be new Office 365 plans that would offer greater flexibility and value to SMBs. Although I believe the existing lineup of choices are pretty solid, there were customers that just didn't fit the options offered and they either had to lose features to remain in budget or go over budget for features they may not have needed. The new plans are not in tandem with the old but rather a replacement for the small to midsize plans that Microsoft previously offered. These had number of user limitations, for example Office 365 Small Business did not include Office applications and was only good for up to 25 users. Office 365 Small Business Premium did include Office applications and was only good for up to 25 users. Office 365 Midsize Business did include Office applications and was good for up to 300 users. Related: Choosing an Office 365 Subscription Plan With the new plans we see a new breakdown of three different parts. Those that don't need the Office applications but do need online servers for email, collaboration and social networking. Those that do need the Office applications but do not need the online servers for email, collaboration and social networking. And those that need both. As for a user limit for these three plans, they are all up to 300 users. I think that is what is brilliant and spot on. The... --- ### PowerShell Problem Solver: Let’s Figure it Out > Have a Windows PowerShell problem you need help with? Jeff Hicks and his new PowerShell Problem Solver column should have the info you need. - Published: 2014-10-08 - Modified: 2024-09-04 - URL: https://petri.com/powershell-problem-solver-lets-figure/ - Categories: PowerShell - Tags: Beginner, Editor's Pick, PowerShell Problem Solver - Article Type: Opinion Jeff Hicks kicks off his new PowerShell Problem Solver column today. Need help with Windows PowerShell? This new weekly article series is dedicated to helping IT pros learn PowerShell. As you might already know, I spend a lot of time involved in the PowerShell community. I keep tabs on a number of PowerShell-related forums. I speak with people when presenting at conferences, hear from people on Twitter and I receive email from time to time from IT pros looking for a little help. As you may have heard I am going to be devoting quite a bit of time and energy to expanding the PowerShell content and community here at Petri, so part of my master plan is to start a weekly series called the PowerShell Problem Solver, which will be posted every Wednesday morning on Petri. com Introducing the PowerShell Problem Solver The goal of this column is to take a question, topic or problem that I've come across and present a PowerShell solution to the problem. The problem might be a question I saw in an online forum, something that came to me via email, or even a problem that I faced personally. The solution may be a complete PowerShell script or advanced function. Or it may be an annotated example that explains a troublesome concept. I'm assuming that if one person has a question someone else is thinking about the same problem. I want this series to be meaningful to the work you are doing in PowerShell today. One way you can participate, as well as get some help on your PowerShell questions is to use the PowerShell forum on Petri. com. I encourage you to... --- ### Can Google Cloud Platform Win the Cloud Battle Against AWS and Azure? > Learn about Google's cloud efforts in this Google Cloud Platform overview, which includes an interview with Google Cloud Platform marketing chief Brian Goldfarb. - Published: 2014-10-07 - Modified: 2024-12-03 - URL: https://petri.com/google-cloud-platform-overview/ - Categories: Google Cloud Platform - Tags: Editor's Pick - Article Type: Interview Will Google Cloud Platform have what it takes to defeat Amazon Web Services and Microsoft Azure for the hearts and wallets of IT managers? We interview Google executive Brian Goldfarb to find out what Google thinks of the ongoing IaaS and PaaS battle. Remember when the phrase "cloud computing" was dismissed as an ephemeral buzzword by everyone from system administrators to CIOs? Those days are long gone, and the cloud has emerged as a vital part of the IT strategy for many organizations. Granted, the cloud isn't a panacea, or a silver bullet to solve every IT problem. It still has some legitimate drawbacks, and excessive cloud usage may rightly not be an option for many enterprises. All that said, the cloud is here to stay, and IT professionals that ignore that reality may be putting their careers -- and the competitive ability of the organizations they work for -- at risk. One of the mostly hotly contested cloud computing segments is for Infrastructure as a Service (IaaS) offerings. IaaS essentially allows customers to have core IT resources -- like compute and storage -- delivered as services over the Internet or via a dedicated virtual private network (VPN). These resources are housed in massive data centers, run on virtual machines, and can easily be scaled up (and down) based on a customer's IT resource needs. The War over IaaS: Amazon, Google, and Microsoft Three major players currently dominate the cloud IaaS market: Amazon Web Services (AWS), which is considered the market leader, followed by Microsoft Azure and the Google Cloud Platform. (As a quick aside, VMware vCloud Air is largely considered to be an also-ran in a very distant fourth place. ) It's a competitive situation that has lead to an ongoing war... --- ### Welcome to the New Petri.com > Welcome to the new Petri.com! Learn about all the new features, improvements, and enhancements that have been made to the Petri IT Knowledgebase website. - Published: 2014-10-06 - Modified: 2024-12-03 - URL: https://petri.com/welcome-new-petri-com/ - Categories: Windows Server - Tags: Editor's Pick - Article Type: Opinion The new Petri.com website features a host of new features and improvements, new content coverage areas, and lots of other enhancements. Best of all? Read on to find out how we're thanking Petri readers for their support. It’s been a big week for all of us at the Petri IT Knowledgebase (and Petri’s parent company, Blue Whale Web) as we launch an all-new site design with a host of new features and functionality. A small team of editors, designers, programmers, and server experts have been toiling over our new site design for the past several months, and we’re happy to show you the results of our collective efforts. In addition to all of the technical improvements to the site itself, we’re making improvements in other areas as well. We’re bolstering our coverage of several key topics, including Windows 10, PowerShell, Office 365, IT security, Microsoft Azure, Amazon Web Services, and Google Cloud Platform. I’m also happy to formally announce that IT experts (and Microsoft MVPs) Jeff Hicks and J. Peter Bruzzese have joined us as Contributing Editors, while Blair Greenwood joins us as Senior Editor. I’ll dive into all of these changes in more detail below, but let’s start with the improvements to the site itself. What's New with the Petri IT Knowledgebase While our new site launch is the most visible example of our most recent efforts, we've been working hard on a number of other fronts. Here's a quick recap of what the Petri IT knowledgebase team has been up to over the last few months: April 2014 - Petri / Blue Whale Web Inc. (parent company) acquired by George Coll and Blue Whale Web LLC May 2014 - Petri forums split into stand-alone domain (forums. petri. com) July 2014 - Main... --- ### Using the PowerShell ISE Editor Object > Directly modify scripts by using the PowerShell ISE Editor Object, where you can insert text, send output to a tab, and more. - Published: 2014-10-06 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-ise-editor-object/ - Categories: PowerShell - Tags: Intermediate, ISE - Article Type: How To Jeffery Hicks shows you some tips for directly modifying scripts from PowerShell in his latest how-to article. In my last article, I introduced you to the PowerShell ISE object model. In the Windows PowerShell ISE, you can view this built-in object by using the following command: PS C:> $psise Where this really gets fun is with the editor. With the editor, you can modify script contents directly from PowerShell. You’ll see why this is useful. The PowerShell ISE Editor Object Each ISE file object has an editor property, which is in itself an object. The PowerShell ISE Editor Object. (Image Credit: Jeffery Hicks) The editor object wouldn’t be much use if you couldn’t do things with it. Pipe the object to Get-Member to discover what it can do. Using Get-Member with the PowerShell ISE Object Editor. (Image Credit: Jeffery Hicks) Inserting Text Adding text to a file is pretty easy. The following command will insert the comment in the current file at the current cursor location: PS C:Scripts> $psise. CurrentFile. Editor. InsertText("#do something interesting here") You can also move the cursor around. To make things easier, let's save the editor object to a variable. PS C:Scripts> $ed = $PSIse. CurrentFile. Editor Next, I'm going to move to the last line of the script. PS C:Scripts> $ed. SetCaretPosition($ed. LineCount,1) The SetCaretPosition method requires parameter values for the line and column numbers, starting at 1. Now I can insert more text. PS C:Scripts> $psise. CurrentFile. Editor. InsertText('$Now = Get-Date') Notice I'm using single quotes for the value. This is so the $Now is not treated as a variable but... --- ### Hands-on with the Windows 10 Technical Preview > J. Peter Bruzzese gets hands-on with the Windows 10 Technical Preview, showing off features, such as the new Start menu, the Snap Assist feature and more. - Published: 2014-10-03 - Modified: 2024-09-04 - URL: https://petri.com/hands-windows-10-technical-preview/ - Categories: Windows 10 - Article Type: Overview J. Peter Bruzzese gets hands-on with the Windows 10 Technical Preview by showing off the new Start menu, the Snap Assist feature, and more. You've undoubtedly heard all the Windows 10 jokes by now. Why are they calling it Windows 10? Because 7 8 9! (Get it? Because 7 ate 9). Another good one: Windows 10 is really Windows 2, because the numbers 1 and 0 in binary code equals 2. Related: An IT Pro's Perspective on Windows 10 Jokes aside, what was announced this week in the Windows 10 reveal wasn't a major revision to the underlying OS itself, or even a monumental upgrade on the visual side. Instead, it was a big, loud statement from Microsoft to their customers that says "WE HEARD YOU! " To which most customers responded: "It's about time! " Microsoft didn't tweak the user interface in Windows 10 radically, which would have caused folks to render judgment yet again on their design choices. Instead, Microsoft opted for a blend of the old and the new, with a slick feature called 'continuum' that allows Windows 10 to more transparently switch between desktop and tablet mode, which is ideal for convertibles and those 2-in-1 systems. Microsoft seems bent on providing 'one OS to rule them' all across touch and keyboard and mouse devices. Even though Windows 8 didn't cut it, Windows 9... sorry, I mean Windows 10 -- may just hit the mark. A First Look at the Windows 10 Technical Preview Based on the install of the Technical Preview, which looked exactly like a Windows 8 install, the desktop version restores the Start menu when you click the Start button. But if you look at the new approach you get your... --- ### Install the Windows 10 Technical Preview in VMware Workstation 10 > Learn how to install the Windows 10 Technical Preview in a VMware Workstation 10 virtual machine - Published: 2014-10-02 - Modified: 2024-11-19 - URL: https://petri.com/install-windows-10-technical-preview-vmware-workstation-10/ - Categories: Windows 10 - Tags: Editor's Pick, Virtualization, vmware, Windows 10 - Article Type: How To Russell Smith walks readers through how to install the Windows 10 Technical Preview in a VMware Workstation 10 virtual machine. Learn how to install the Windows 10 Technical Preview in a VMware Workstation virtual machine. Related: An IT Pro's Perspective on Windows 10 If you have the option of installing the new Windows 10 Technical Preview in a Hyper-V virtual machine (VM) or on a VMware Workstation, then I'd suggest that the better option is Hyper-V for now. Although I was able to install the VMware tools for Windows 8 on the technical preview, VMware Workstation 10 doesn't officially support Windows 10. Because of this, you might run into some problems with this unsupported scenario. VMware is set to release Workstation 11 in December, where it will officially support the Windows 10 Technical Preview. In the meantime, you can find an evaluation version of VMware Workstation 10 or take a look at Aidan Finn's article, "Testing the Windows 10 Technical Preview in a Hyper-V VM" on the Petri IT Knowledgebase. Windows 10 Technical Preview System Requirements Download the technical preview by joining the Windows Insider Program. I recommend downloading the 64-bit ISO unless you have a specific reason to test the 32-bit version. The system requirements are essentially the same as it is for Windows 8.  I managed to get away with installing the 64-bit version of the technical preview in just 1GB of RAM because of the limited resources on my notebook, but if you can find 2GB to play with then the performance will be better. Processor: 1 gigahertz (GHz) or faster RAM: 1 gigabyte (GB) (32-bit) or 2 GB... --- ### Install Windows Server Technical Preview in Microsoft Azure > Learn how to install Windows Server Technical Preview in Microsoft Azure in this step-by-step tutorial by Russell Smith. - Published: 2014-10-02 - Modified: 2024-11-19 - URL: https://petri.com/install-windows-server-technical-preview-microsoft-azure/ - Categories: Windows Server 2016 - Tags: Azure, Cloud, Editor's Pick, Virtualization, Windows Server - Article Type: How To Eager to try the new Windows Server Technical Preview, but don't have a spare server? Russell Smith shows us how to Install Windows Server Technical Preview in Microsoft Azure. In this easy Ask the Admin, I'll show you how to get the new technical preview of Windows Server up and running in the cloud. Unless you've been living under a rock for the last few days, you will have no doubt heard that Microsoft released Windows 10 Technical Preview on Tuesday, and the Windows Server Technical Preview also slipped out the door more or less simultaneously, albeit with much less fanfare. If you're interested in downloading the bits to install it in your own lab, you can download the bits on TechNet. Related: Microsoft Announces Windows 10, Hopes We Forget Windows 8 If you don't have the resources or time to install the technical preview, a quick and easy way to experiment with the new product is to fire up an Azure virtual machine and install the server technical preview, which is now available in the image gallery. If you don't already have a subscription, you can sign up with your Windows Live ID for a free one month trial on the Azure website. Additionally, if you'd like to get a better taste of the Windows 10 Technical Preview, then you can install the Windows Server Technical Preview on Azure and add the Desktop Experience feature to get the client features, which are supported in Windows Server. For more information on installing the Desktop Experience feature in Windows Server, see "Installing the Desktop Experience on Windows Server 2012" on the Petri IT Knowledgebase. The rest of this... --- ### Testing the Windows 10 Technical Preview in a Hyper-V VM > Learn how to test the Windows 10 Technical Preview in a Hyper-V VM in this step-by-step tutorial by Microsoft MVP Aidan Finn. - Published: 2014-10-01 - Modified: 2024-09-04 - URL: https://petri.com/testing-the-windows-10-preview-in-hyper-v/ - Categories: Windows 10 - Tags: deployment, Editor's Pick, Hyper-V, installation, virtual machine, Windows 10 - Article Type: How To Want to try out the Windows 10 Technical Preview but don't have a spare physical machine? Aidan Finn shows you how to install and run Windows 10 in a Hyper-V VM in this handy tutorial. So you’ve joined the Windows Insiders program, downloaded the Windows 10 Technical Preview, and are ready to get installing and testing, but you’ve realized you don’t have a spare physical machine available to install Windows 10 on. No worries: This is where you can use Hyper-V to give yourself a bigger virtual lab. How to Get Hyper-V There are a number of ways to acquire Hyper-V: Windows Server Hyper-V: If you have a test lab that is based on Windows Server Hyper-V then you can create one or more virtual machines and start testing using virtual machines on that infrastructure. Hyper-V Server: If you have one or more physical machines you can download the free Hyper-V Server 2012 R2, and manage it using the Remote Server Administration Toolkit for Windows 8. 1. This will allow you to create lots of Windows 10 virtual machines. Client Hyper-V: You can enable client Hyper-V on your Windows 8. 1 (for best results) Pro or Enterprise PC or laptop and use your machine’s resources to create a few Windows 10 virtual machines. Create the Virtual Machine 1. The first step is to use Hyper-V Manager (HVM) to create a new virtual machine; you can launch HVM from the Administrative Tools or find it in the Start Screen. Click New > Virtual Machine in the Actions pane to start the New Virtual Machine wizard. Name the virtual machine and choose a storage location, ideally not on the C: drive. Create a new virtual machine... --- ### Microsoft Announces Windows Server and System Center Plans > Microsoft released information on the next versions of Windows Server and System Center, and details on Windows 10 management using SCCM and Intune. - Published: 2014-10-01 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-announces-windows-server-system-center-plans/ - Categories: Windows Server - Tags: intune, SCCM, System Center, System Center Configuration Manager, Windows 10, Windows Intune, Windows Server - Article Type: News Although the news earlier this week might have been dominated by Windows 10, Microsoft has also started releasing information on the next versions of Windows Server and System Center, as well as details on how Windows 10 can be managed using System Center Configuration Manager and Windows Intune. Windows Server and System Center A post appeared on Microsoft's Server & Cloud blog to confirm that "Threshold" versions of Windows Server and System Center were on their way, keeping the Microsoft Cloud OS in lockstep with Windows 10. A few teasers were dropped, some of which had me giddy like a child getting a big present! Editor's Note: You can see the full list of features that we'll likely see in the "Threshold" editions of Windows Server and System Center in that aforementioned blog post, but the highlights include live upgrades for Hyper-V clusters to the next Windows Server version, new networking components and a network controller role for Microsoft's software-defined networking stack, improved remote desktop with better OpenCL and OpenGL support, new synchronous storage replication, and new identity and access management scenarios. Up to now, upgrading a Hyper-V cluster has either required downtime, reduced high availability, or new infrastructure. With “Threshold”, we will be able to perform a rolling upgrade of a Hyper-V cluster with zero downtime. This is of huge importance in an era when service providers (internal or external) are expected to upgrade clusters more frequently. Cross Version Live Migration. (Image: Microsoft. com) The... --- ### What Windows 10 Means for Developers: Write Once, Deploy Anywhere > Microsoft unveiled Windows 10 today -- learn what this news means for developers who are creating apps for PCs, Windows Phone, Microsoft Surface, and Xbox. - Published: 2014-09-30 - Modified: 2024-09-04 - URL: https://petri.com/windows-10-means-developers-write-deploy-anywhere/ - Categories: Windows 10 - Tags: Editor's Pick - Article Type: News Microsoft unveiled Windows 10 today -- learn what this news means for developers who are creating apps for PCs, Windows Phone, Microsoft Surface, and Xbox. Microsoft held an intimate press event in San Francisco today, where the company unveiled the next version of its operating system, which is officially named Windows 10. The biggest piece of news emerging from this announcement is that the new OS improves upon Windows 8, bringing consistency across an array of Windows devices. Note: We're covering the Windows 10 announcement from several different perspectives on the Petri IT Knowledgebase today. You can read more about today's coverage from Jeff James in "Microsoft Announces Windows 10, Hopes We Forget Windows 8. " Additionally, Aidan Finn is also providing his own professional commentary in his post that provides "An IT Pro's Perspective on Windows 10. " Microsoft announces Windows 10. (Image: Microsoft) Windows 10 and Universal Windows Apps It's important to note that Windows 10 adapts to a variety of Windows devices, ranging from the Xbox to PCs. Microsoft has stated that the reason for this is to provide greater productivity to consumers so that they have consistent and familiar experiences. “Windows 10 will run across the broadest range of devices ever from the Internet of Things to enterprise datacenters worldwide,” Microsoft said in a press statement. So, what does Windows 10 mean if you’re a developer? If you’ve been keeping up with Microsoft news, then the announcement may come to no surprise to some. At Microsoft’s Build 2014 conference that was held in last April, the company announced that it is making cross-platform development across Windows devices easier with the Universal... --- ### An IT Pro's Perspective on Windows 10 > Aidan Finn serves up an IT Pro's perspective on Windows 10, which was formally announced at a press event in San Francisco earlier today. - Published: 2014-09-30 - Modified: 2024-11-19 - URL: https://petri.com/windows-10-it-pro-perspective/ - Categories: Windows 10 - Tags: Editor's Pick - Article Type: Opinion Wondering what the Windows 10 announcements today mean for IT professionals? Aidan Finn gives us his take on the news and what it all means for system administrators. Today Microsoft held a private invitation-only event for members of the media to see Windows codename “Threshold” for the first time. In this article I will look at Microsoft’s announcements, observed second hand via live blogs and tweets, from an IT pro’s perspective. Editor's Note: We're covering the Windows 10 announcement today from a number of angles, including a Windows 10 overview by Jeff James, and an article on Windows 10 DevOps and development-related topics by Blair Greenwood. The new Windows 10 logo was unveiled at a press event in San Francisco this morning. (Image: Microsoft) The Enterprise Market It’s been a few years since Apple mistakenly said that we are in a post-PC era. Much has been proclaimed about the death of the PC. Yes, sales dipped, but things changed in the last year. Tablet sales aren’t climbing like they once were, thanks to several factors including market saturation and the “netbook effect” of ultra-low-cost devices that offer an inferior experience. In contradiction to this, PC sales in the enterprise have experienced climb in the last year. According to Microsoft, “... in the first half of this year, shipments of enterprise PCs grew 14%. In that same time period, shipments of Windows enterprise tablets grew 33%”. Obviously the end of life for the support of Windows XP has had an impact, but the increased shipment of enterprise tablets makes me think that enterprises are starting to embrace a new way to do productivity computing, in... --- ### Microsoft Announces Windows 10, Hopes We Forget Windows 8 > Microsoft announces Windows 10 at a small media event in San Francisco this morning. Read on to find out what's new in the latest Microsoft client OS. - Published: 2014-09-30 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-announces-windows-10-hopes-we-forget-windows-8/ - Categories: Windows 10 - Tags: Editor's Pick, News - Article Type: News Microsoft has announced that the next version of Windows -- informally referred to as Windows 9 up to now -- is now officially named Windows 10. At a Microsoft Windows press event in San Francisco this morning, Microsoft Windows executive vice president of the operating system group Terry Myerson took to the stage to tell journalists in attendance that the next version of Microsoft Windows -- which has up until now been informally referred to as Windows 9 -- would be officially named Windows 10 when it launches in the spring of 2015. In a statement announcing the unveiling of Windows 10, Myerson put the focus on Windows 10 as a solution for business customers, a nod to the distaste many IT managers had for Windows 8. "This will be our most comprehensive operating system and the best release Microsoft has ever done for our business customers," Myerson said. "... and we look forward to working together with our broader Windows community to bring Windows 10 to life in the months ahead. " We're covering the Windows 10 announcement today from a number of different angles. In addition to this post, my colleague Blair Greenwood will be covering all the Windows 10 development and DevOps-related news that Microsoft touched on today. Petri IT Knowledgebase Contributing Editor Aidan Finn provides a veteran IT professional's take on Windows 10 as well. Microsoft Dumps Windows 9 Moniker, Opts for Windows 10 So other than the curious decision to skip Windows 9 and name the latest Windows client OS Windows 10, what were some of the highlights of the Microsoft announcement?  Let's get some of the basic details out of the way first. In a press event in... --- ### Search Active Directory for Accounts with Passwords Set to Never Expire > Learn how to audit Active Directory for accounts that have passwords set to never expire in this tutorial by Russell Simmons. - Published: 2014-09-29 - Modified: 2024-09-04 - URL: https://petri.com/search-active-directory-for-accounts-with-passwords-set-to-never-expire/ - Categories: Active Directory (AD) - Tags: Active Directory, Automation, Identity Management, Management, PowerShell, Scripting, Windows Server - Article Type: How To Learn how to audit Active Directory for accounts that have passwords set to never expire in this step-by-step tutorial by Russell Smith. In this Ask the Admin, I’ll show you how to audit Active Directory for accounts that have passwords set to never expire. Although it’s possible to configure policy in Active Directory (AD) to require a minimum password length, complexity, and to set how often passwords should be changed, AD should also be regularly audited for accounts that have passwords set to never expire, especially if they have administrative privileges to the domain or workstations. Searching for accounts with passwords set to never expire The easiest way to audit Active Directory is to use PowerShell’s search-adaccount cmdlet. It’s only supported on Windows Server 2012 and Windows 8 (or later), so you should perform the instructions below on a Windows 8. 1 management workstation with the Remote Server Administration Tools (RSAT) installed, or on a Windows Server 2012 R2 domain controller (DC). Log in with an account that has read permission to Active Directory. Press the Windows key to switch to the Start screen. Type powershell and make sure that Windows PowerShell is selected in the search results on the right. Press ENTER to start PowerShell. In the PowerShell console, type the command shown below and press ENTER. ​search-adaccount –passwordneverexpires The built-in guest account in Active Directory is disabled by default and has its account password set to never expire, so you are likely to see guest listed in the results. We can pipe the results of search-adaccount to the where-object cmdlet to show only accounts that are currently enabled. ​search-adaccount... --- ### What to Expect from the Windows 9 Event on Sep. 30th > Learn what to expect from the Windows 9 event on September 30th, as well as the latest on Windows TH, free Windows 9 upgrades, and more. - Published: 2014-09-29 - Modified: 2024-09-24 - URL: https://petri.com/expect-windows-9-event-sep-30th/ - Categories: Windows 10 - Tags: News - Article Type: News We take a look at what we can expect from the Windows 9 event on September 30th and cover the latest rumors, from Windows TH to free Windows 9 upgrades. Microsoft's Windows 9 media event slated for Sep. 30th is less than 24 hours away, and there's been a number of new rumors and potential news leaks about what we all may see tomorrow. I've gathered up some of the latest rumors and leaks and listed them here in Q & A fashion, along with a summary of more definite Windows 9 news toward the bottom of this post. The Latest Windows 9 Rumors The following collection of news bits and rumors have largely hit the web over the last few weeks, so I've summarized some of the more interesting ones here. Will Windows 9 technically be called Windows 9? Or will Microsoft even rebrand Windows? We'll find out on Sep. 30th. (Image: Microsoft China) Q. Will the next version of Windows be called Windows 9? Will Windows still be called Windows? A story by Bill Rigby at Reuters quotes several industry analysts who suggest that Microsoft may rebrand Microsoft Windows to "... an entirely new brand... " or simply call the latest OS "Windows. " Given the black eye Microsoft has received over Windows 8 perception and adoption, it's not too much of a leap to see Microsoft consider tinkering with the Windows brand name. Microsoft Windows was a powerful brand with positive connotations a decade ago, but after the advent of the iPhone, the iPad, and flood of Android devices of all shapes and sizes, Microsoft -- according to Microsoft COO Kevin Turner -- now only holds 15% of... --- ### Windows Server 2012 R2 Security Overview > Improve Windows Server 2012 R2 security by learning about available features, plus free tool recommendations to minimize security threats. - Published: 2014-09-26 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-r2-security-overview/ - Categories: Windows Server 2012 - Tags: Editor's Pick - Article Type: Overview Kunal Mehta provides a Windows Server 2012 R2 security overview and shares his recommendations for free tools to minimize security threats. A few months ago I wrote an article for the Petri IT Knowledgebase on how to configure AppLocker for application lockdown in Windows Server 2012 R2. This article focused on how to restrict application execution based on certain set of rules. While writing the post, it struck me that AppLocker is just one of the whole plethora of security features available in Windows Server. There's a lot more to security than just that. So I figured limiting myself to one post covering a single feature wouldn't do justice to the other equally good or even better features that we may have overlooked. There is a very popular saying that goes like this: "You're only as strong as your weakest link. " This axiom fits perfectly when we talk about security. It doesn't matter how secure your overall infrastructure is, but if there's even one part that is not at par with the security standards, then chances are that it will be exploited. So having a holistic picture of all security features is extremely important to connect all the dots together and design such a secure environment, which has a lesser risk of penetration. Because, we all know that no system can be 100% secure, but we can only strive to make it as secure as possible. Windows Server 2012 R2 is arguably the most secure Windows Server OS ever released. (Image: Dreamstime) A renowned method in the IT industry for planning a strategic approach towards security is through the... --- ### An Overview of the PowerShell ISE Object Model > PowerShell expert Jeffery Hicks provides an overview of the PowerShell ISE Object Model, which can be used to create your own keyboard shortcuts. - Published: 2014-09-26 - Modified: 2024-09-04 - URL: https://petri.com/overview-powershell-ise-object-model/ - Categories: PowerShell - Tags: Intermediate, ISE - Article Type: Overview The PowerShell ISE Object Model is a very powerful tool that enables users to create their own shortcuts to increase efficiency. Over the last several articles I've demonstrated a number of techniques for working efficiently in the PowerShell ISE. In addition to the built-in shortcuts I've shared with you, there is also an option to create your own shortcuts. The PowerShell ISE has its own object model. While it isn't that complicated it will take a few articles to fully explain everything I want to share with you, so let's get started. The PSISE object Open the ISE, and at the prompt look at $psise, which is a built-in object. Using the $psise command in the Windows PowerShell ISE. (Image: Jeff Hicks) As with any new object in PowerShell, you should pipe it to Get-Member. Using $psise | get-member in the Windows PowerShell ISE. (Image: Jeff Hicks) The properties themselves are nested objects. For example, the CurrentPowerShellTab property is an ISE Tab object. Using $psise. CurrentPowerShellTab in the Windows PowerShell ISE. (Image: Jeff Hicks) Some of these properties you can set. The PowerShellTabs property is a collection of these types of objects. I'll show you how to take advantage of this property in a future article. Accessing the current file What you will find especially useful is that you can access information about the current file. Using $psise. CurrentFile in the Windows PowerShell ISE. (Image: Jeff Hicks) The file object has two methods you can use, Save and SaveAs. This means... --- ### 4 Easy Ways to Take Windows 8 Screen Captures > Learn four easy ways to take screen captures in Windows 8, including methods with the Windows Snipping Tool and Microsoft OneNote. - Published: 2014-09-25 - Modified: 2024-09-04 - URL: https://petri.com/easy-ways-take-windows-8-screen-captures/ - Categories: Windows 8 - Tags: Editor's Pick - Article Type: How To Daniel Petri shares four easy and efficient methods for taking screen captures in Windows 8, including options with the Windows Snipping Tool and Microsoft OneNote. When you're working on your Windows 8 computer and see something on the screen that you want to share with others or use a part of the screen as an image that you can paste into documents, emails and other apps, then you would most likely want to take a screen capture. Although this has always been possible to take screen captures using the "Print Screen" keyboard key, which is sometimes  labeled as "PrtScr" or "PrtSc," there are several different screen capturing methods that are more flexible and can save you more time. Of course, there are many third-party tools -- some free, some not free -- that do just that and even allow you to edit the images and share them in even better ways. In this article, I will only focus on the methods that are built into the Windows 8/8. 1 operating system, plus an additional method that you get once you use Microsoft OneNote. 1. Regular Print Key  Pressing the keyboard's Print Key button will take a screenshot of your entire active screen, including everything you see on it. The picture of the screen is copied and you can paste it wherever you like. As most of you know, you can also take a screenshot of only one window. To do so, click the window you want to capture, then press the Alt+Print button. A screenshot of the selected window is copied and you can paste it wherever you want. 2. The Windows 8 automatic screen capture key combo Press the Windows logo key + Print Key... --- ### Differences Between Windows 8.1 Pro and Enterprise Editions > Learn differences between Windows 8.1 Pro and Enterprise Editions to make your upgrade decisions easier. - Published: 2014-09-25 - Modified: 2014-09-25 - URL: https://petri.com/differences-between-windows-8-1-pro-and-enterprise-editions/ - Categories: Windows 8 - Tags: Software Assurance, Volume Licensing Agreement, Windows 8, Windows 8 Enterprise edition - Article Type: Overview Can't decide between Windows 8.1 Pro or Enterprise Editions? Russell Smith provides breaks down differences in each edition to make your decision easier. In this Ask the Admin, I’ll explain the differences between Windows 8. 1 Pro and Enterprise Editions. When Windows 8 was released in 2012, Microsoft reduced the number of available editions for its client OS to just three. One of the many criticisms of Vista and Windows 7 was the confusing array of SKUs. The Pro and Enterprise editions of Windows 8 are for business use, but sometimes the Pro edition is also supplied on consumer devices. Related: Top Windows 8 Enterprise Features Windows 8 Pro Windows 8 Pro can be bought off-the-shelf or supplied pre-installed on devices by OEMs. The primary difference between the standard edition of Windows 8 and Pro is the ability to join Active Directory (AD) domain and the services associated with it, such as Group Policy and full-drive encryption using BitLocker. The full list of features included in Windows 8 Pro not found in the standard edition are: Client Hyper-V Encrypting File System (EFS) Remote Desktop (host) Boot from VHD Active Directory domain join Group Policy BitLocker and BitLocker To Go Windows 8 Enterprise In addition to Active Directory and BitLocker features in the Windows 8 Pro, the Enterprise version brings technologies designed to simplify management and provide easier access to corporate resources for end users. Note that Windows Media Center is not available in Windows 8 Enterprise edition. You can download a free evaluation of Windows 8 Enterprise from Microsoft. Enterprise edition can be licensed as part of a Volume Licensing Agreement with Software... --- ### Office 365 Legal Hold Bug Fix Now Available, Exchange Fix Coming Soon > J. Peter Bruzzese gives us an update on Microsoft's progress for the Office 365 Legal Hold bug fix. - Published: 2014-09-24 - Modified: 2024-09-24 - URL: https://petri.com/office-365-legal-hold-bug-fix-now-available/ - Categories: Exchange Server - Article Type: News J. Peter Bruzzese gives us an update on Microsoft's progress for the Office 365 Legal Hold bug fix. In a recent article, we reported on a problem that occurs due to an Outlook Web App bug that makes Legal Hold  -- which is also know as litigation hold or in-place hold, depending on your version of Microsoft Exchange -- breakable, albeit with unique circumstances and some effort. The latest on the Office 365 and the Exchange Legal Hold bug As I mentioned in my previous article, this issue affects both Office 365 users and Exchange 2013 users of the Outlook Web App. In spite of the bug, Microsoft chose to release its latest cumulative update for Exchange on-premise (CU6) rather than holding up the release to fix the bug first. The Office 365 Legal Hold Bug Fix Now Available. (Image: Dreamstime) Well-known Microsoft Exchange MVP Tony Redmond says he heard about the bug and reproduced it on his own first and then notified the Exchange product group on August 22, which is four days before CU6 was released. However, Microsoft moved forward with the CU6 release. There are reasonable explanations for and against such a move, but I think most would agree that it's better to hold off on releasing a new version of a solution if there are potential bugs still lurking within. Perhaps, just perhaps, the hold up of CU6 for this one bug would have allowed testing to find some of the other bugs discovered post-CU6 release. In an email sent to members of the Microsoft Exchange MVP community, Microsoft indicated... --- ### Search XML files with PowerShell using Select-XML > Learn how to search XML files with Windows PowerShell using the Select-XML cmdlet and XPath statements. - Published: 2014-09-24 - Modified: 2024-09-04 - URL: https://petri.com/search-xml-files-powershell-using-select-xml/ - Categories: PowerShell - Article Type: How To Michael Simmons demonstrates how to easily search XML files using PowerShell and the helpful Select-XML cmdlet. Now that you've familiarized yourself with the terms you'll need to work with XML files using PowerShell, you'll want to start looking at XML files and getting information out of those files. This is done with the Select-XML cmdlet and XPath statements. About XPath statements XPath statements can be rather intimidating, so instead of giving you information overload, I'm going to show you just enough to get the information out of the files and get you on your way. Let's start with an XML file, such as the applicationhost. config file. Enter this command into an elevated, administrative PowerShell session. ​$AppConfig = Get-Content –Path “C:WindowsSystem32inetsrvconfigApplicationHost. config” We're now ready to explore the web server configuration with Select-Xml and Xpath. XPath statement basics XPath can feel a little like speaking a foreign language, and if you've used regular expressions before, then you may be reminded of regex when looking at Xpath. These statements are used as a filter in the Select-XML cmdlet. Starting an XPath statement Begin your XPath statement with either a "/" or an "//".  Use the single slash for an absolute path or the double-slash for a relative path. For instance, if your XML starts with: Use a single slash for an absolute path or a double-slash for a relative path in XML code. (Image: Michael Simmons) You could reference webserver with a relative path (//webserver) or an absolute path (/configuration/system/webserver). If you don't know exactly where in the XML hierarchy your node is, then the... --- ### Using PowerShell with XML > Learn all about using PowerShell with XML in this introductory article by Michael Simmons. - Published: 2014-09-23 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-xml/ - Categories: PowerShell - Article Type: How To Have a need to use PowerShell with XML files? Learn all about using Windows PowerShell with XML in this introductory article by Michael Simmons. XML (Extensible Markup Language) can be found everywhere, from system configuration files to websites. XML files are very logical in the way that they associate items into groups and properties into items. However, it's not always easy to work with the data that is held inside an XML file. In this series of articles, I’m going to show you how to use PowerShell to work with XML files. But before we can dig into the nuts and bolts of searching and updating XML with PowerShell, you might benefit from learning the terms and some basics about working with XML files. PowerShell and XML can work exceedingly well together. (Image: Dreamstime) Basics of XML To get you up to speed with what XML is all about, I'll explain some key XML concepts that you'll need to understand before we continue. More specifically, I'll cover the importance of nodes, attributes, comments, and namespaces. XML nodes are the nested hierarchy of properties and data inside an XML code fragment. (Image: Michael Simmons) Nodes Nodes are the basic building blocks of data in XML, and you'll be working with nodes most of the time. So what are nodes? XML nodes are the nested hierarchy of properties and data inside the XML code itself, as shown in the image above. Attributes Attributes are properties for an individual node. The node will identify all of the data about the object, but the node itself can have attributes,... --- ### Add Email Disclaimers in Office 365 and Exchange 2013 Using Transport Rules > Learn how to add email disclaimers in Office 365 and Exchange 2013 using transport rules in this how-to article by J.Peter Bruzzese. - Published: 2014-09-23 - Modified: 2024-09-04 - URL: https://petri.com/add-email-disclaimers-office-365-exchange-2013/ - Categories: Microsoft 365 - Article Type: How To Learn how to add email disclaimers in Office 365 and Exchange 2013 using transport rules with this helpful how-to article by J. Peter Bruzzese. Many organizations are legally required or simply choose to have their users add disclaimers to the end of every email they send. There are various ways of making sure these disclaimers appear in messages from adding them to email signatures to having users paste them in at their own discretion. If you need a more robust, organization-wide solution, then you might consider using transport rules to add these disclaimers. Using the Exchange Admin Center to Create Email Disclaimers We're going to walk through the steps of doing this through Office 365, but the same procedure can be performed with an on-premise Exchange 2013 server as well. 1. Sign-in to your Office 365 portal and select Admin (top-right corner), then Exchange. 2. Now select mail flow and then rules.  Note: Rules is the first tab and should be selected by default. 3. Select the little downward triangle next to the plus sign and in the drop down choose Apply disclaimers, as shown below. Using the Exchange Admin Center to Create Email Disclaimers. (Image: J. Peter Bruzzese) 4. Now enter a name for the rule. For this example we will call the rule, "Legal Disclaimer". 5. In the drop-down below "Apply this rule if... " we have a few options that allow us to narrow down which emails need the disclaimer appended at the end. Let's limit the disclaimer to emails sent outside the organization. 6. In the drop-down menu choose, "The recipient is located... ", select "Outside the organization", and select... --- ### JumpCloud Touts Directory-as-a-Service (DaaS) Alternative to Active Directory > JumpCloud DaaS promises to provide a cloud-based alternative to on-premise directory services like Active Directory. - Published: 2014-09-22 - Modified: 2024-11-19 - URL: https://petri.com/jumpcloud-daas-active-directory-replacement/ - Categories: Cloud Computing - Tags: News - Article Type: News JumpCloud Directory-as-a-Service (DaaS) promises to provide a cloud-based alternative to on-premise directory services like Active Directory and LDAP. Boulder, CO-based JumpCloud has announced JumpCloud Directory as a Service (DaaS), a new offering that the company touts as an alternative to existing on-premise directory services like the Lightweight Directory Access Protocol (LDAP) and Microsoft Active Directory (AD). Conventional IT wisdom in the Windows Server world has held that once an organization reached a certain size, it needs a directory solution — like AD — that can be used to authenticate and authorize users and devices, and to also help medium to large enterprises more easily contend with the forest (pun partially not intended) of employment, HR, and compliance guidelines that they need to follow. From keeping shipping clerks from viewing salary records on the HR network folder to making sure that access to network and computer resources are revoked when employees leave an organization, AD serves a vital role in the on-premise IT departments of medium to large organizations. JumpCloud's Directory as a Service (DaaS) offering brings user directory management to the cloud. (Image: JumpCloud) Is the Future of Directory Services in the Cloud? Over the last decade or so, the cloud — and services like Google Apps, DropBox, SalesForce, BaseCamp, and others — have allowed startups and small businesses to get work done without building out a costly on-premise IT infrastructure, which has historically been based on the Windows Server stack. It’s no secret that a lot of startups and small businesses don’t have any Microsoft-branded infrastructure at all, other than Windows running on desktop machines,... --- ### What is Windows Server ODX? > Learn how Offloaded Data Transfer (ODX) enhances storage transfers in Windows Server and Hyper-V, and how to disable ODX if you have problems with your SAN. - Published: 2014-09-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-odx/ - Categories: Windows Server 2012 - Tags: Hyper-V, SAN, storage, Storage Area Network, Virtualization, Windows Server, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To Aidan Finn serves up tips for working with Offloaded Data Transfer (ODX) to enhance storage transfers in Windows Server and Hyper-V. Offloaded Data Transfer (ODX) is a feature that was added to Windows Server 2012 and later versions to enhance the performance of compatible storage area networks (SANs). Similar to vStorage APIs for Array Integration (VAAI) in VMware, ODX speeds up the movement and creation of blocks and files, which makes it a great feature to have in a virtualized environment. In this article, I will explain ODX, the system requirements, and an unfortunate issue that many SAN customers have experienced. What is Offloaded Data Transfer (ODX)? Imagine you have two servers that are connected to the same SAN, where both servers are using it for file storage. You want to move or copy a file from Server1 to Server2. At a high level, this is what happens: Server1 reads the file from the SAN a bit at a time Server1 sends the file, a bit at a time, to Server2 over the LAN Server2 sends the bits of the file back to the SAN to be stored It seems like a waste to send a file over the relatively latent LAN to transfer it from one LUN to another LUN on the same SAN. What if we could cut out the middleman? That's what ODX does! Server1 coordinates with the SAN and Server2 via a token handover. The SAN takes up the load and performs a file copy without sending the file over the LAN. This greatly speeds up data movement between servers on the same SAN... . --- ### Importing, Exporting, and Cloning VMware vApps > Learn how to import, export, and clone VMware vApps easily in this step-by-step tutorial by Petri IT Knowledgebase author and VMware expert, Melissa Palmer. - Published: 2014-09-19 - Modified: 2024-09-04 - URL: https://petri.com/importing-exporting-cloning-vmware-vapps/ - Categories: VMware - Tags: Editor's Pick - Article Type: How To Learn about importing, exporting, and cloning VMware vApps in this step-by-step tutorial by Petri Contributor (and VMware vExpert) Melissa Palmer. In a previous article we introduced you to the concept of VMware vApp. Using our sample vApp, we created an environment with two servers, a web server and a database server. By using the vSphere wizard, after right clicking on a host and selecting New vApp, creating our vApp was simple. We were able to add machines by simply dragging them into the vApp using the vSphere Web Client. Using VMware vApps Now, let's take a look at some additional things we can do now that we have a vApp. We are going to take a look at exporting and importing a vApp, as well as cloning a vApp. These features allow us to provide an easily deployable, consistent environment. Exporting and importing a vApp is different than using traditional virtual machine templates because it uses the Open Virtualization Format (OVF) rather than a VM template file. VMware provides many of its products, such as the vCenter Server Appliance, the vCenter Orchestrator Appliance, the vSphere Management Assistant, and vCloud Automation Center to name a few. Providing an OVF template is a simple way to provide software. The OVF standard was developed by the DMTF (Distributed Management Task Force) as a standard for packaging and distributing virtual machines. This generic standard is supported on multiple hypervisors and has been embraced by VMware for use in standard vSphere and vCloud deployments. By exporting the vApp to OVF, you have created a portable version of the application that can be moved between vSphere... --- ### PowerShell ISE Keyboard Shortcuts > Be a more effective IT system administrator with these PowerShell ISE keyboard shortcuts. - Published: 2014-09-19 - Modified: 2024-09-04 - URL: https://petri.com/powershell-ise-keyboard-shortcuts/ - Categories: PowerShell - Tags: Beginner, ISE - Article Type: How To One of the best ways to be more efficient is to keep both hands on the keyboard. Jeffery Hicks shows you how with these handy PowerShell ISE keyboard shortcuts. In a previous article I provided an introduction to the PowerShell ISE, which is most likely your initial choice for a PowerShell scripting tool. PowerShell is all about efficiency, and I want to extend that to writing scripts in the ISE. One of the best ways to be efficient is to keep your hands on the keyboard. It may not seem like much, but every little bit of time you save by not having to grab the mouse and finding something to click, adds up. Windows PowerShell ISE Keyboard Commands In this post, we'll dive a bit deeper into how you can execute key features with PowerShell ISE keyboard shortcuts that are available.  You'll also learn additional ways you can customize the PowerShell ISE to meet your own preference and working style. Use the PowerShell ISE even more effectively with the help of some handy keyboard shortcuts. (Image: Microsoft) Creating New Files and Tabs When you open the PowerShell ISE, you automatically get a new, untitled script pane. If you want to start a new script file, then use Ctrl+N. Remember, if prefer your script and console panes full size, then use Ctrl+R to toggle between the two. While working on your script, don’t forget to save your work. Yes, the PowerShell ISE will save work in the background in the event the ISE suddenly ends. But I like to make sure my work is saved with the Ctrl+S keyboard shortcut. If the script has never been saved, then you'll get a... --- ### How to Forget or Delete a Windows 8.1 Wi-Fi Network Profile > Need to delete a Windows 8.1 Wi-Fi network profile? This tutorial article shows you how to do that using both the Windows GUI and the command line. - Published: 2014-09-18 - Modified: 2024-09-24 - URL: https://petri.com/delete-a-windows-8-1-wi-fi-network-profile/ - Categories: Windows 8 - Tags: Editor's Pick - Article Type: How To How many steps does it take to forget or delete a Wi-Fi network profile in Windows 8.1? This short tutorial article by Daniel Petri reveals the answer. This is another one of those annoyances that just gets you angry at the lack of thought of the people at Microsoft that were in charge of this feature.  What could have been done in 3 clicks of a mouse and a few seconds in Windows 8, now takes double that amount of clicks and triple the amount of time in Windows 8. 1. Let me explain. In Windows 8, when you wanted to delete or forget a wireless access point profile, you could simply click on the network icon in the tray area, scroll till you got to the desired network, and either hold (if you're using touch screen) or right-click on it and select "Forget" from the context menu. Forgetting a Wi-Fi network in Windows 8. (Image: Daniel Petri) However, someone in the Windows product group at Microsoft thought that in Windows 8. 1 this functionality must change. You can no longer do that in Windows 8. 1, unless the computer is actually connected to that Wi-Fi access point. For example, if I stayed in a hotel in a city to which I will probably never return, and if I wanted to clean up the list of my remembered access points, I cannot use the same method to forget it. In Windows 8. 1, the only way to forget a wireless profile from the network connections menu is if you are connected to it at the moment. There is, however, another way, which of course is only more... --- ### Clustered Hyper-V Virtual Machine Prioritization > Use the Windows Server Failover Clustering prioritization feature to manipulate and order the failover of highly available Hyper-V virtual machines. - Published: 2014-09-18 - Modified: 2024-09-04 - URL: https://petri.com/clustered-hyper-v-virtual-machine-prioritization-2/ - Categories: Hyper-V - Tags: failover, Failover Clustering, Hyper-V, Priority, virtual machine - Article Type: Overview Aidan Finn shows how to leverage Windows Server Failover Clustering priority to manipulate and order failover of highly available Hyper-V virtual machines. Windows Server 2012 (WS2012) gave us a new feature in Failover Clustering that allows us to prioritize our highly available (HA) virtual machines. When you first read of this feature, many articles often imply that it is used just to order the failover of virtual machines. However, clustered virtual machine prioritization allows us to control how the cluster will behave in several different scenarios. In this article, I will explain how you can configure priorities for HA virtual machines and discuss the implications of and use cases for this feature. Configuring Highly Available Virtual Machine Priority Virtual machine priority is a feature that is only available to HA virtual machines, and those are virtual machines that are running on a Hyper-V cluster, based on WS2012 Hyper-V or later. There are four possible priorities that you can assign to a virtual machine: High (3000) Medium (2000): The default setting Low (1000) No Auto Start (0) As you might guess, high priority virtual machines are more important than medium and low priority virtual machines. The No Auto Start value is used typically for non-production virtual machines; these are machines that you do not want to start up after a cluster failover occurs so that you can prevent these virtual machines from consuming resources. Setting a value for a virtual machine is pretty easy in Failover Cluster Manager. By default, every virtual machine is given a medium priority. You can select one or more virtual machines, right-click, click Change Startup Priority, and then select... --- ### Display Last Logged On Information for Windows 8.1 > Learn how to display last logged on information for Windows 8 and Windows 8.1 in this quick how-to article by Daniel Petri. - Published: 2014-09-17 - Modified: 2024-09-04 - URL: https://petri.com/display-last-logged-on-information-for-windows-8/ - Categories: Windows 8 - Tags: Editor's Pick - Article Type: How To Learn how to display last logged on information for Windows 8 and 8.1 in this quick how-to article by Petri IT Knowledgebase founder Daniel Petri. Think about this scenario for a moment: Imagine that your network security has been compromised, and you have a good reason to believe that someone obtained your logon credentials.  Or maybe they're trying to logon with your user account by guessing your password. Such activity is not something you want to go unnoticed, and you would probably want to be informed about it as soon as possible. In a previous article I showed you how to display the last interactive logon information in Windows Server 2008 and Windows Server 2012. In this article, I'll show you how to get the same type of information on your personal computer, one that is not joined to any Active Directory domain.  This feature actually works since the days of Windows Vista and Windows 7, and the same feature continues to work with Windows 8 and 8. 1. Displaying last logged information can help improve IT security or help recover from a breach. (Image: Dreamstime) Note: This tip is intended to be used in a Active Directory domain environment. It will not work for stand-alone workstations that you typically use at home. Two Ways to Display Last Logged Information on Windows 8/8. 1 There are two different ways to display last logged on information for Windows 8 and 8. 1, which include using local group policy and editing the local Windows registry. Method 1: Using Local Group Policy 1. Log in to the computer using administrative credentials. 2. Press Win+R keys on your keyboard and type... --- ### Resource Metering in Hyper-V > Learn how to measure usage of host resources by virtual machines by using a feature called resource metering in Hyper-V. - Published: 2014-09-17 - Modified: 2024-09-04 - URL: https://petri.com/resource-metering-hyper-v-2/ - Categories: Hyper-V - Tags: Cloud, cloud computing, Hyper-V, PowerShell, Reporting, Resource Metering, Scripting - Article Type: Overview Aidan Finn shows us how to measure the usage of host resources by virtual machines by using resource metering in Hyper-V. In this blog post I will show you how you can measure the usage of host resources by Hyper-V virtual machines. This is yet another feature that was introduced in Windows Server 2012 Hyper-V that isn't immediately obvious and is driven by using Windows PowerShell. So why should you use resource metering in Hyper-V? Read on to see why this feature is so important. Why is Hyper-V Resource Metering Important? The American National Institute of Standards and Technology gives us one of the best definitions of a cloud in their Special Publication 800-145, entitled "The NIST Definition of Cloud Computing. " In this document they describe a cloud as having five essential characteristics. One of the traits that they describe as being necessary to have a cloud is a measured service: Cloud systems automatically control and optimize resource use by leveraging a metering capability at some level of abstraction appropriate to the type of service (e. g. , storage, processing, bandwidth, and active user accounts). Resource usage can be monitored, controlled, and reported, providing transparency for both the provider and consumer of the utilized service. What does this mean? A cloud enables a tenant to consume just what they need and pay for what they use. The cloud must be able to measure that usage. Using this information, a cloud vendor can charge the tenant for their resource usage. Resource metering is an important part of any Hyper-V deployment. (Image: Dreamstime) That's fine for a hosting company... . --- ### Quickly Edit Environment Variables in Windows 8 > Learn how to easily edit environment variables in Windows 8 with this step-by-step tutorial by Daniel Petri. - Published: 2014-09-16 - Modified: 2024-09-04 - URL: https://petri.com/quickly-edit-environment-variables-windows-8-2/ - Categories: Windows 8 - Article Type: How To Need to quickly edit environment variables in Windows 8? Learn three ways to do exactly that in this step-by-step tutorial article by Daniel Petri. Environment variables in an operating system are a set of dynamic named values that can affect the way running processes will behave on a computer. They include information about the system environment and the currently logged in user. Note: Environment variables are not limited to Windows operating systems, but for the purpose of this article I will relate to the ones found in the Windows OS. About Environment Variables Environment variables are sometimes used by applications, system services, or other processes to determine various configuration settings about the way the OS is configured, where files are stored in the user's profile, how many CPU and what CPU architecture the system has, and much, much more. In the Windows OS there are several types of environment variables. The most widely-known ones are user variables and system variables. However, it may be useful to know that beyond these two there are also process variables and volatile variables. The way these variables are used is related to their type. For example, user environment variables are accessible to all apps which run in the context of the logged on user, while system environment variables apply to all the users and all the processes that log on and run on that computer. Process variables are used specifically only by specific processes. For example: Software that sets it's own variables, such as the installation directory, the place where the data is stored, and so on. Volatile variables are variables that only exist and are only true for the current... --- ### An Introduction to Exchange Online Protection (EOP) > Learn about Exchange Online Protection, Microsoft's latest solution for protecting your Microsoft Exchange server from malware and spam. - Published: 2014-09-16 - Modified: 2024-09-24 - URL: https://petri.com/introduction-to-exchange-online-protection-eop/ - Categories: Exchange Server - Article Type: Overview J. Peter Bruzzese provides an introduction to Exchange Online Protection, Microsoft's latest solution for protecting your Exchange server from malware and spam. In a previous post we compared Exchange Online Protection (EOP) and Forefront Online Protection for Exchange (FOPE), its predecessor. That discussion helped explain how EOP has grown and is growing from lame to fame as new features are added and it becomes more enterprise-grade. There is still quite a bit of room to grow, and there are plenty of items on the roadmap to be developed in the year ahead, but it's getting a solid amount of attention from Microsoft development and that warrants a nod. In this article, however, we thought we would take a step back and go to the heart of what EOP is and how it works with follow-up articles on how to use it more fully through your Office 365 dashboard experience. Exchange Online Protection 101 One important component of any email solution is how it protects your users from unwanted and malicious email content. Whether it's a virus, spam, script, or some other form of malware you will want to be sure that your users are as protected as possible. You may also want to keep better track of the mail flowing in and out of your organization so that you can better monitor problems as they happen and respond to them as needed. To that end, Microsoft offers Exchange Online Protection, a cloud-based service that helps protect your organization from malware and spam. EOP Filtering Types EOP consists of four types of filtering: connection, anti-malware, transport rules and policy filtering, and content filtering... . --- ### Leaked Windows 9 Videos Show New Start Menu, Virtual Desktops, Live Tiles, and More > German IT site WinFuture has posted some leaked Windows 9 videos that show the Windows 9 Technical Preview build in action. - Published: 2014-09-15 - Modified: 2024-09-04 - URL: https://petri.com/leaked-windows-9-videos-show-start-menu-virtual-desktops/ - Categories: Windows 10 - Tags: Editor's Pick, News - Article Type: News Hot on the heels of new Windows 9 screenshots, German IT site WinFuture has posted some videos that show the Windows 9 Technical Preview build in action. It's been a busy week or two for Windows 9 news. Last week we caught our first glimpse of the Windows 9 Technical Preview thanks to some leaked early Windows 9 build screenshots, and Microsoft has officially sent out press event invites for a September 30th Windows 9 preview event. Now even more details about Windows 9 have hit the web: German IT website WinFuture was one of the first sites on the web to post those aforementioned screenshots, and they've followed that up by releasing four videos that show the leaked build in action. One of the most eagerly-awaited new features in Windows 9 is virtual desktops, depicted in this screen grab from a video posted by German IT website WinFuture. (Image: WinFuture) The four videos show the new Windows 9 Start menu, the new virtual desktop feature, tweaked Windows live tiles, and the new Windows 9 notification feature.  I've embedded all four of those videos below, and I've added a few sentences to each describing what we're seeing in additional detail. I'd also encourage you to bookmark and check out the WinFuture YouTube channel, which is where all of these videos were uploaded to. Windows 9 Video: Start Menu Arguably the most anticipated new feature in Windows 9 is the revamped Start menu, which merges the traditional functionality of the venerable Start menu -- as it behaves in Windows 7, Windows Vista, and Windows XP, and earlier versions of Windows -- with the live tiles and modern apps introduced in Windows 8... . --- ### Microsoft Buys Minecraft Maker for $2.5 Billion > Microsoft buys Minecraft maker Mojang for a whopping $2.5 billion. Will this mean Windows Phone users will finally get Minecraft? - Published: 2014-09-15 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-buys-minecraft-maker-2-5-billion/ - Categories: Windows 8 - Tags: News - Article Type: News Microsoft announced that it is buying Minecraft maker Mojang for $2.5 billion. Does this mean that Windows Phone users will finally get Minecraft for their favorite smartphone? In the largest acquisition yet of CEO Satya Nadella's tenure, Microsoft has ponied up a whopping $2. 5 Billion for Mojang, the developer and publisher of the ubiquitous and phenomenally popular Minecraft computer and video game franchise. The acquisition should be good news for Windows Phone users. The acquisition is also one of the largest software-related transactions by Microsoft in recent memory and adds yet another company with Scandinavian roots to the Microsoft stable, a purchase that was preceded by the $7. 2 billion deal for Finland-based Nokia in 2013/early 2014, and the $8. 5 billion offering for Skype in 2012, which began life as a small development firm by a Dane and a Swede in 2003. Will Microsoft's acquisition of Mojang and the Minecraft franchise mean that Windows Phone users will finally get their own version of Minecraft? (Image: Microsoft) According to a Microsoft news release, Mojang will be rolled into Microsoft's internal game development group (Microsoft Studios), which also includes 343 Industries (caretaker of the Halo franchise after Bungie bolted Microsoft), Turn 10 Studios (Forza), and Lionhead Studios (Fable). Related: Create a Minecraft Server Using Microsoft Azure One potential concern for the vibrant and opinionated Minecraft community is the departure of Minecraft lead developer and founder Markus "Notch" Persson (@notch), who announced in a post on his personal blog that he was leaving Microsoft and Mojang after the deal was finalized. "As soon as this deal is finalized, I will leave Mojang and go back to doing Ludum Dares and small web experiments," Persson writes... . --- ### How to Enable Two Factor Authentication for Google Apps and Gmail > Learn how to enable two-factor authentication for Google Apps and Gmail with this step-by-step tutorial from the Petri IT Knowledgebase. - Published: 2014-09-12 - Modified: 2024-11-19 - URL: https://petri.com/how-to-enable-two-factor-authentication-for-google-apps/ - Categories: Google Cloud Platform - Tags: Editor's Pick - Article Type: How To Learn how to enable two-factor authentication for Google Apps and Gmail with this step-by-step tutorial by Jonathan Hassell. In the wake of approximately five million Gmail account passwords and email addresses being leaked by Russian ne'er-do-wells, it is time to enable two factor authentication on any account that is important to you. (While Google does not seem to have been at fault for this leak, many users use the same password in multiple places, and coupled with the address leak, crackers have started trying each address in combination with some passwords to attempt to gain access. ) Since a vast swath of the Internet public uses Gmail, Google has seen fit to enable two factor authentication for their online properties. In this article, I will show you how to set up the protection and use it. A quick refresher on exactly what two factor authentication is—it involves something you have (the first factor) and something you know (the second factor). To log into an account or a service for which you have enabled two factor authentication, you are generally prompted to enter your username and password, after which the service or account texts you or otherwise sends to a phone you enroll a one-time code that you will enter in the next step of the login process. By enabling this protection, the leaking of your password or some other compromise of its integrity does not threaten your account, because any nefarious characters would also need to have access to your enrolled phone, which is generally something that is always in your possession. Something you have and something... --- ### Using VMware vApp > Learn more about using VMware vApp, including common use cases and how to create your first VMware vApp group. - Published: 2014-09-12 - Modified: 2024-09-04 - URL: https://petri.com/using-vmware-vapp/ - Categories: VMware - Tags: Editor's Pick - Article Type: How To In her first post for the Petri IT Knowledgebase, VMware vExpert Melissa Palmer explains what VMware vApp is, how useful a vApp can be, and how to create one. VMware has enabled workload virtualization and virtual machine hosting on their VMware vSphere hypervisor platform. Traditionally, VMware vSphere is managed by the VMware vCenter environment to provide added functionality such as High Availability (HA), Distributed Resource Scheduler (DRS), vSphere host based clusters and much more.  One often overlooked feature of VMware vSphere is vApp. A vApp is a grouping of virtual machines and is managed very similarly as a virtual machine. It can contain resource pools and can be powered on, off, and cloned. In this first article in a two-part series, I'll provide an introduction to VMware vApp, describe some use cases, and help you create your first vApps. In the second part of this article series, I'll focus on vApp management, including exporting and importing of vApps into your VMware environment. Requirements for using VMware vApps In this post I'm going to walk you through how to create a vApp in VMware ESXi. In order to use vApps in this scenario, there are a some requirements. You'll need: VMware vCenter DRS enabled Typically, it's recommended to have a VMware vCenter environment to fully leverage all of the management, availability, and performance features that come with the full platform. In this article, we will be using a simple VMware vCenter implementation. vApps can be deployed on ESXi in VMware vCenter or deployed other VMware platforms, such as VMware Workstation and VMware Fusion. vApps are delivered as a single file in the Open Virtualization Format (OVF). Use Cases for vApps There are many different use... --- ### The Microsoft Azure Sales Strategy for Small and Medium Enterprises > Aidan Finn explains the Microsoft Azure sales strategy for small and medium enterprises, and outlines three core IT scenarios for cloud adoption. - Published: 2014-09-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-sales-strategy-for-small-and-medium-enterprises/ - Categories: Microsoft Azure - Tags: Azure, Backup, Cloud, cloud computing, hybrid cloud, Public Cloud, virtual machines, Websites - Article Type: Opinion Aidan Finn explains how Microsoft is positioning Azure towards small and medium enterprises as a supplement to on-premise IT resources. As of August 1st 2014, Microsoft added a fourth way that businesses could purchase Azure, in addition to the two credit card systems with a lack of control and enterprise agreements aimed at large enterprises; small-medium enterprises (SMEs), government and educational organizations can purchase Azure through Open, Open Value (OV) and Open Value Subscription (OVS) volume licensing programs. SMEs, the core market for open licensing, can pre-purchase credit in units of $100 from one unit to an unlimited number and have 12 months to use that credit using the various services of Microsoft Azure. Azure is a huge product, so how is Microsoft distilling the message to avoid feature shock? In this article, I will discuss the three core scenarios that Microsoft is talking about in the SME market. The Azure Sales Strategy for Small and Medium Enterprises When you attend an event such as TechEd, there is a very clear message from Microsoft. Unlike some of their cloud competitors, Microsoft is selling one solution that enables customers to deploy data and services in any location: On-premises: Using Windows Server, Hyper-V, and System Center A Cloud operated by a Microsoft hosting partner: Using Windows Server, Hyper-V, and System Center In Microsoft Azure: Based on Hyper-V The unique selling point that Microsoft has is that they can provide once consistent platform that customers can use to run their business. If you want to remain on-premises, then you can. If you want to outsource in some measure with a local hosting partner, then you... --- ### Windows 9 Technical Preview Screenshots Leaked > Leaked Windows 9 Technical Preview screenshots reveal features that Windows users have been clamoring for since Windows 8 was released. - Published: 2014-09-11 - Modified: 2024-09-04 - URL: https://petri.com/windows-9-technical-preview-screenshots-leaked/ - Categories: Windows 10 - Tags: Editor's Pick, News - Article Type: News More details about Windows 9 leaked on to the web today in the form of Windows 9 technical preview screenshots, posted by two German technology websites. A screenshot showing the new Start menu in the Windows 9 technical preview. (Image: ComputerBase. de) A few weeks ago I blogged about how Microsoft was rumored to be planning a Windows 9-themed event around September 30th to take the wraps off the Windows 9 Technical Preview. Now we're getting an even closer look at what this next version of Windows might contain, thanks to some screenshots that leaked of the Windows 9 technical preview (Build 9834) that were promptly posted by two German computer blogs: ComputerBase and WinFuture. According to the post at WinFuture, a batch of 20 images -- created on September 8th -- were released to Microsoft partners, and eventually found their way into the hands of various German IT tech publications. I've posted some of the images here that outline some of the most eagerly-awaited features in Windows 9, but I'd encourage you to check out both ComputerBase and WinFuture (links above) to see all the images that were leaked. I'll highlight what I think are the biggest new features revealed in this batch of screenshots below. Windows 9: Start Menu The revamped Windows Start menu -- which we was originally thought would be delivered in an update to Windows 8. 1 -- now seems to have found a home in the Windows 9 technical preview. As shown in the screenshot above, the new start menu incorporates traditional start menu elements as well as the "live tiles" from Windows 8. This addition of a proper Start menu to Windows 9 will undoubtedly make millions of end-users and... --- ### Microsoft Unveils Office Delve for Office 365 > Microsoft has announced Office Delve for Office 365, a new cloud-based feature that will let admins discover Office 365 data relationships more easily. - Published: 2014-09-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-office-delve-for-office-365/ - Categories: Microsoft 365 - Tags: Editor's Pick - Article Type: How To Microsoft will let admins delve deeper into their Office 365 data with the newly-released Office Delve. Peter Duggan and J. Peter Bruzzese give us the details. Microsoft recently announced the availability of Office Delve, a social information-discovery product that promises to deliver relevant information based on how you work and who you work with.  Previously known as Project Oslo and previewed in March at the SharePoint 2014 conference, Delve integrates with Office 365, so whether you regularly work with Word documents stored in OneDrive, share presentations with colleagues through a SharePoint site, or have conversations in Yammer, it will proactively find what you need. One very different aspect of Delve is that rather than showing you a long list of text results -- the dreaded ten blue links -- Delve gives you a more visually interesting and engaging presentation of what it finds for you via a card-based user-interface design. Delve is powered by Office Graph, a cloud-based platform that Microsoft says uses "... sophisticated machine-learning techniques to map the relationships between people, content, and activity. " I've embedded a video about Office Graph a bit farther down in this article if you want more information. Formerly known by the codename 'Project Oslo', Delve is an information discovery service for Office 365. (Image: Microsoft) Julia White, general manager of Office 365 Technical Product Management, said in an Office blog post, "Delve displays information that is most relevant for each person based on the work they are doing and the being whom they are engaging.  With Delve, information finds you versus you having to find information. " Based on Microsoft's machine-learning powered Office Graph, Delve is part of Microsoft's initiative to design tools that are socially aware and deliver personalized insights that allow you to focus on your important goals while proactive search and discovery... --- ### Enabling SQL Server Traffic Encryption > Learn how to enable SSL traffic encryption in Microsoft SQL Server in this how-to article by Daniel Petri. - Published: 2014-09-10 - Modified: 2024-09-04 - URL: https://petri.com/enabling-sql-server-traffic-encryption/ - Categories: SQL Server - Article Type: How To Looking to make your data more secure? Daniel Petri shows us how to enable SSL traffic encryption in Microsoft SQL Server in this step-by-step tutorial. To enhance database communication security, all connections to a SQL Server database may be encrypted by using industry standard SSL encryption. The following steps are required to secure communication to and from SQL Server: Obtaining a digital certificate Configure the database server to work with the certificate Configure the client-side software to use SSL when communicating with SQL Server Note: Because there are a lot of applications and services that use SQL, this article will not discuss the client-side configuration steps. Instead, you will need to read the software vendor's documentation to learn how to do that. I will only describe the steps needed to be taken on the SQL Server-side. Enabling SQL Server traffic encryption can help enhance overall data security. (Image: Dreamstime) Obtaining a Digital Certificate To enable SSL encryption, you need to obtain a valid digital certificate. Digital certificates can be obtained from three different sources: From a commercial trusted root certificate authority (CA), such as GoDaddy, Verisign, Thawte, Rapidssl and others From an internal trusted certificate authority By using a self-signed certificate Although all three options are valid, it may be easier to use a self-signed digital certificate for this purpose. Instructions refer to using a self-signed digital certificate. This is mostly true because unlike websites that use SSL, which may have many different client connections to them, in most cases, SQL Servers only communicate with a selected few client machines, which in turn may be servers or desktop computers. The fact that we only need to... --- ### Boot a Hyper-V Virtual Machine Using PXE > Learn how to boot a Hyper-V Virtual Machine Using PXE off of a network in this step-by-step tutorial. - Published: 2014-09-09 - Modified: 2024-09-04 - URL: https://petri.com/boot-hyper-v-virtual-machine-using-pxe/ - Categories: Hyper-V - Tags: Client Hyper-V, Configuration Manager, Hyper-V, MDT, Network Boot, Operating System Deployment, OSD, PXE, SCCM, virtual machine, WDS, Windows 8, Windows 8.1, Windows Server, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To Aidan Finn shows us how to boot a Hyper-V virtual machine off of a network by using the preboot execution environment (PXE). In a previous post I showed you how you can deploy a Hyper-V virtual machine manually, and then create an image using Sysprep that you can deploy. In a medium to large network, we will normally use System Center Virtual Machine Manager (SCVMM) to do that work for us, and add a few extra bells and whistles to the deployment and automation processes. But there are some scenarios where we will want to boot virtual machines off of a network using the preboot execution environment (PXE) to start a boot image and do some work. We will look at how you can use PXE to boot Hyper-V virtual machines off of the network in this post. Why Boot Virtual Machines From The Network? As I said in the introduction, in a medium to large environment we will normally use SCVMM to deploy virtual machines; not only will SCVMM deploy the virtual machine, but it will configure the guest OS (including the post-Syprep specialization), name the computer, join a workgroup/domain, and possibly even do other work for us if we configure it. But there are situations were using PXE can be useful, including: First virtual machine: While you can deploy your very first virtual machine by hand or even using a VHD/VHDX image in SCVMM, you might already have a system such as System Center Configuration Manager (SCCM), Microsoft Deployment Toolkit (MDT), Windows Deployment Services (WDS), or another PXE capable deployment system that has the ability to deploy a... --- ### How to Set Location-Based Reminders in Windows Phone 8.1 > Learn how to set location-based reminders in Windows Phone 8.1 with this step-by-tutorial from the Petri IT Knowledgebase. - Published: 2014-09-09 - Modified: 2024-09-04 - URL: https://petri.com/set-location-based-reminders-windows-phone-8-1/ - Categories: Mobile - Tags: Cortana, Windows phone - Article Type: How To Always forgetting to bring home the milk? Learn how to set location-based reminders in Windows Phone 8.1 using the Cortana personal voice assistant. In this Ask the Admin, I'll show you how to set up location-based reminders in Windows Phone 8. 1 using Cortana. Getting things done and organizing tasks is one of the toughest challenges in modern life, especially with so many distractions providing the perfect excuse to procrastinate for as long as possible. The problem with to-do-list apps and reminders is that they are time based. 'Remind me to buy dog food at 10am on Monday' is only useful if you happen to be at the store at 10am on Monday morning and not sitting in front of a screen in the office. As a result, time-based reminders get dismissed until they become annoying enough to be ignored entirely. Something much more useful would be: 'Remind me to buy dog food when I’m next at the store. ' The Cortana voice assistant found in Windows Phone 8. 1 can help you keep tabs on your location-based events. (Image: Microsoft) Cortana to the rescue The Cortana personal assistant app in Windows Phone 8. 1 enables location-based reminders. At the time of writing, Cortana is only available in the US, but is expected to roll out to other major markets by the end of 2014. Geo-fencing and Maps Cortana uses two technologies to enable location-based reminders. The first is places using the built-in Maps application. I would recommend that you mark as your home, work and any other places where you get things done on a regular basis as favorites, such as the local mall... --- ### A Handy IT Help Desk Configuration Script > Learn how to use this handy IT help desk configuration script to automate tedious help desk tasks. - Published: 2014-09-08 - Modified: 2024-11-19 - URL: https://petri.com/handy-it-help-desk-configuration-script/ - Categories: Windows Server - Article Type: How To Frustrated by tedious IT help desk tasks? Daniel Petri and Haim Cohen provide some relief with a configuration script that automates repetitive help desk tasks. Many times technical IT people are faced with a lot of daily and routine tasks that require us to repeat specific commands or perform various actions that just repeat themselves over and over again. The list of potential repeating tasks is never ending, and can contain stuff such as checking connectivity to a machine, resolving a host name, running a task on a remote machine, killing a process on a remote machine, resetting a user's password in AD, renaming a user's computer, checking a machine's IP configuration and much much more. Lately I came across a nice script written by my friend Haim Cohen. It's a nice, easy to understand, and very easy-to-modify script that's written in plain, good old command prompt style. It contains around 20 or so of those frequently used tasks that many IT and help desk professionals may need to use, and I thought I'd share it with you. Frustrated by tedious help desk tasks?  Try this handy automation script. (Image: Dreamstime) The list is fully customizable and is far from complete. So if you want to add your own commands to it, feel free to do so. If you've got a moment, please send me your feedback, add a comment to this blog post, and email me your own examples. Note: To get all the functionality of the script as presented here, you'll need to obtain several additional executables and scripts, and place them in a folder of your choice. I've listed download links to those resources... --- ### Using Hyper-V Enhanced Session Mode > Learn how to use Windows Server 2012 R2 Hyper-V Enhanced Session Mode to get device redirection and improved performance for virtual machine connections. - Published: 2014-09-08 - Modified: 2024-09-04 - URL: https://petri.com/using-hyper-v-enhanced-session-mode/ - Categories: Hyper-V - Tags: Enhanced Session Mode, Hyper-V, virtual machine, Windows 8.1, Windows Server 2012 R2, WS2012 R2 - Article Type: How To Aidan Finn shows how to use the Windows Server 2012 R2 Hyper-V Enhanced Session mode to get increased performance for virtual machine connections. Microsoft has continually added headline features to Hyper-V with each release. But since Windows Server 2012 (WS2012), Microsoft has also been "rounding the corners"; that is, they've been making the experience of day-to-day operations easier by fixing some of the niggling annoyances. Related: How Do I Manage Hyper-V? One of those annoyances in releases prior to Windows Server 2012 R2 (WS2012 R2) was the limited way we could interact with a virtual machine's guest OS when using the Connect window for a KVM-style session. In this post, I will explain how Microsoft fixed those complaints in WS2012 R2 with a feature called Enhanced Session Mode. Connecting to Hyper-V VMs Prior to WS2012 R2 There are two ways that we normally log into a virtual machine. If the virtual machine is new and doesn't have a network/remote access configuration, or if the virtual machine is deliberately isolated from the network, then we can use the Connect window in Hyper-V Manager or Failover Cluster Manager (right-click the virtual machine and select Connect) to start a console that gives us keyboard and mouse access to the virtual machine. Previous to WS2012 R2, the Connect tool was very crude; there was no redirected audio, no redirected USB, the performance was not great, and you could not copy and paste between the window and your PC (there is a PC-to-Virtual Machine method for auto-typing text from the copy buffer of your PC). We used the Connect tool as a way to get going. Once... --- ### 13 Beers for IT Professionals and System Administrators > The Petri IT Knowledgebase's list of beers for IT professionals, including Microsoft Active Directory, Windows Server, and Exchange admins. - Published: 2014-09-05 - Modified: 2024-11-19 - URL: https://petri.com/13-beers-professionals-system-administrators/ - Categories: Windows Server - Article Type: Opinion Are you a lover of craft beer? If so, then we think you might enjoy this carefully crafted (pun intended) list of beers for system administrators. One of the things I've noticed about the community of IT professionals that I've met is that many -- if not most -- also seem to have a genuine appreciation for good beer. Specifically craft beers, as opposed to the mass-produced, not-much-thicker-than-water offerings from most of the largest brewing super-conglomerates. I'm based in Northern Colorado, which USA Today has called the "Napa Valley of Beer. " Colorado is also home to the annual Great American Beer Festival (GABF), but I'm sure readers from Oregon, Washington, Ireland, and other brewery-heavy states and countries might disagree, so please do so in the comments. The Venn diagram overlap between IT professionals and craft beer I've just described inspired me to gather up a collection of beers, ales, and other craft beer staples that might be more appropriate than others for busy IT professionals. I've listed a Baker's Dozen assortment of beers below, and indicated what types of IT professionals may appreciate that particular beer the most. I'd also love to hear your own suggestions and recommendations for beers that should be included on the next revision of this list, so add your picks in the comments section of this article. 1. Dead Guy Ale  Always chasing down phantom users and finding out who has access to what? This brew is for you.  (Image: Rogue Ales / PlayerArena. net) Beer is best for: Active Directory Administrators Brewed by: Rogue Ales - Newport, OR Removing network and file access for users who have left an organization can sometimes be a challenge for even the most efficient IT... --- ### OWA bug allows bypass of Microsoft Exchange Legal Hold feature > A newly-discovered bug in OWA allows bypass of Microsoft Exchange Legal Hold. - Published: 2014-09-04 - Modified: 2024-11-19 - URL: https://petri.com/owa-bug-microsoft-exhange-legal-hold-bypass/ - Categories: Exchange Server - Article Type: How To, News A new bug in OWA allows bypass of Microsoft Exchange legal hold. J. Peter Bruzzese explains what legal hold is and what the glitch means for Exchange admins. Last week, my fellow Microsoft MVPs Tony Redmond and Paul Cunningham -- and others in the Microsoft Exchange community -- wrote about an interesting little bug in Outlook Web App (OWA) that allows a bypass of legal hold on an individual's mailbox in a delegated scenario. What is Microsoft Exchange Litigation Hold and In-Place Hold? Before I explain the bug, let me explain legal hold real briefly so you understand how serious this is. In a world where regulatory compliance is essential for most organizations, the key term for email administrators is "discovery. " Email data must be discoverable. How you accomplish that may vary but an archive solution with enterprise grade discovery tools is an admin's friend when litigation comes up against your company due to a sexual harassment suit, or accusations of financial data or healthcare data and so forth being shared inappropriately. However, built right into Exchange, is a feature called "Legal Hold," aka litigation hold or in-place hold depending on the version of Exchange. What this does is put an immediate block on a mailbox to ensure the user cannot permanently delete an email message once a lawsuit has arisen. A recently-discovered bug in OWA allows a user to bypass Microsoft Exchange Legal Hold. (Image: Dreamstime) As a scenario, Mr. Smutty is sending inappropriate emails to a co-worker using his work email. She obtains a lawyer who notifies HR that there is litigation against the company and their employee, Mr. Smutty. The HR person, after mumbling under her... --- ### 5 Reasons Why You Should Upgrade To Windows Server 2012 R2 > Aidan Finn serves up five reasons why you should upgrade to Windows Server 2012 R2. - Published: 2014-09-04 - Modified: 2024-11-19 - URL: https://petri.com/5-reasons-why-upgrade-to-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: Cloud, deployment, hybrid cloud, Hyper-V, networking, storage, W2003, Window Server 2003 R2, Windows Server 2003, Windows Server 2012 R2, WS2012 R2 - Article Type: How To, Opinion Still can't decide if you should upgrade to Windows Server 2012 R2? Aidan Finn serves up five reasons why you should upgrade to Microsoft's latest server OS. It is the age-old question in the IT world: "why should I upgrade to Y when X works perfectly well? " In this article I will give you my top five reasons why I think you should upgrade to Windows Server 2012 R2 (WS2012 R2). By the way, I am limiting myself to five reasons; if you buy me beer, I could probably talk your ear off on this topic! 1.  End of Support for Windows Server 2003/R2 Microsoft CEO Satya Nadella said at the 2014 Worldwide Partner Conference that there are approximately 22 million installations of Windows Server 2003 and Windows Server 2003 R2 running in the wild. In some markets, up to 50% of servers are still running this 11-year-old server operating system. The support from Microsoft for Windows Server 2003 and R2 is ending on July 14, 2015. That's just 10 months from now. You have that short of a period to plan, evaluate and migrate your applications and data off of the legacy server OS before Microsoft stops its support. That means no more security fixes on Patch Tuesday, leaving you vulnerable and probably facing compliance issues regarding regulations, such as Payment Card Industry Data Security Standard (PCI DSS) for credit card payment handling. Support for Windows Server 2003 and R2 ends in July 2015. (Image: Microsoft) I want to be very clear about this next statement, so it is getting its own paragraph: Microsoft will not be extending the deadline to upgrade Windows Server 2003... --- ### How to Downsize to an ‘Extra Small’ Server Core Azure VM > Learn how to remove the GUI and administration tools in Windows Server 2012 R2 and downsize to 'extra small' server core Azure vm. - Published: 2014-09-03 - Modified: 2024-09-04 - URL: https://petri.com/downsize-extra-small-server-core-azure-vm/ - Categories: Cloud Computing - Tags: Azure, Cloud, cloud computing, Virtualization, Windows Server 2012 - Article Type: How To Learn how to downsize to an 'extra small' server core Microsoft Azure VM in this how-to by Russell Smith. In this easy Ask the Admin, I’ll show you how to quickly downsize a Microsoft Azure virtual machine (VM) to run Windows Server Core with minimum resources. Azure’s gallery images provide a quick way to get VMs up and running without having to customize and upload operating system images to the cloud. But if you’ve ever provisioned an Azure VM, you will have noticed the Windows Server images boot with the full GUI and administration tools, and that there are no images pre-configured to boot to Server Core, despite being the default option when installing Windows Server directly from media. Downsizing to an 'extra small' server core virtual machine can save system resources. (Image: Dreamstime) From a user perspective, this provides a familiar experience for those who are not familiar with the command line. But the disadvantage is that the GUI, and all the associated tools, require more resources than Server Core, and historically forty five percent more patches. Therefore it makes sense if possible to deploy Server Core, to simplify the monthly patching process and reduce memory and CPU overheads, in turn lowering costs. About Microsoft Azure extra small VMs Small and medium are the smallest sizes that you should pick when initially deploying Windows Server 2012 R2 in Azure, if only to make sure you have a responsive experience when performing initial configuration tasks with the GUI. But Azure provides extra small VMs with 1GHz CPU and 768MB RAM, and can cost less the $9 a month to... --- ### What is Hyper-Convergence? > This post outlines what hyper-convergence is and asks an important question: is hyper-convergence the right way to go? - Published: 2014-09-03 - Modified: 2024-09-04 - URL: https://petri.com/what-is-hyper-convergence/ - Categories: Hyper-V - Tags: Cloud, Compute, Hyper-V, HyperConvergence, networking, storage, Virtualization, vmware - Article Type: How To In this post Aidan Finn explains what hyper-convergence is and asks the question: Is hyper-convergence the right way to go? A new term has become commonplace in the discussions of cloud and virtualization computing. In this post, I will explain what hyper-convergence is and ask an important question: is hyper-convergence the right way to go? Related: Top 7 Takeaways from VMworld 2014 What is Hyper-Convergence? Aidan Finn provides an overview. (Image: Dreamstime. ) Hyper-convergence explained Convergence is a trend that has occurred in dense server deployments in recent years, particularly with virtualization and cloud deployments. Although convergence is occasionally hardware-based, convergence increasingly leverages software, where this technique tries to compress different layers of hardware into a smaller and more flexible design. Makers of blade servers have been converging networks, such as Fiber Channel over Ethernet (FCoE) and general networking into fewer, but larger capacity NICs thanks to expensive physical switches. Hyper-V engineers have been able to do the same using software mechanisms that are built into Windows Server 2012 and later. In recent times, the term 'hyper-convergence' has started to become mainstream, spreading out from the VMware ecosystem and spreading to other brands of virtualization and cloud. So what is hyper-convergence? Normally when we deploy virtualization, we have a two tiers in the data center: Compute: This is where virtual machines execute, and they are often mobile (vMotion or Live Migration) across individual nodes. Storage: This is where the virtual machines and their data are stored. The two tiers are connected together by one or more networks. We can use convergence to reduce the costs of those networks, software-define their creation, and make them more flexible... . --- ### Top 6 Takeaways from VMworld 2014 > Read on to find out what some of the key takeaways from VMworld 2014 were in this event recap by Jeff James. - Published: 2014-09-02 - Modified: 2024-11-19 - URL: https://petri.com/top-6-takeaways-vmworld-2014/ - Categories: VMware - Article Type: News, Opinion Couldn't make it to VMworld this year? Our VMworld 2014 recap serves up some of the key takeaways from the event, from buzzwords to hot products. The virtualized curtains have closed on another VMworld, and many attendees, vendors, and VMware employees are making their way home. While I wasn't able to attend the show this year personally, I followed news from the show closely, watched the keynote live streams, and heard from a few Petri readers about what they thought about the show. I've always liked writing show recaps for readers, and VMworld 2014 is no exception. So in the interest of sharing some thoughts about what the key news and trends were from VMworld this year, I've assembled a collection of what I think are key takeaways from the show. 1. It goes to 11: Hyper-convergence is here Arguably the biggest news from VMworld was the launch of EVO: RAIL, a new "hyper-converged" infrastructure appliance (HCIA) that VMware will be selling with some key hardware partners. Building on the converged infrastructure trend that revolves around selling integrated solutions that pool computer, networking, and storage into one box — think VCE VBlock and Cisco USC -- EVO: RAIL is indented to essentially be a software-defined data center (SDDC) in a box, allowing IT managers to quickly expand datacenter resources while simultaneously improving efficiency. VMware CEO Pat Gelsinger introducing the EVO product family at VMworld 2014. (Image: VMware) Many mid- to large enterprises love the converged infrastructure approach, and VMware seems to be hearing them loud and clear. If you liked the idea of converged infrastructure, you're going to love hyper-converged infrastructure. You might... --- ### Installing a guest OS from a Windows ISO image > Aidan Finn walks us through installing a guest OS from a Windows ISO image in this handy how-to article. - Published: 2014-09-02 - Modified: 2024-11-19 - URL: https://petri.com/installing-guest-os-from-windows-iso-image/ - Categories: Hyper-V - Tags: guest operating systems, Hyper-V, Operating System Deployment, OSD, PowerShell, virtual machine, Windows Server - Article Type: How To Aidan Finn walks us through the installation of a guest OS from a Windows ISO image in this handy how-to article. There are times when you need to quickly create a virtual hard disk, either VHD or VHDX, from a Windows ISO file that you have downloaded from Microsoft. Maybe you want to rapidly deploy a boot-from-VHD installation of the latest preview of Windows so you can safely dual boot your PC. Related: Manually Install a Guest OS in a Hyper-V Virtual Machine You might want to create a virtual hard disk that can be used by System Center Virtual Machine Manager (SCVMM) bare-metal provisioning of new Hyper-V hosts. Or maybe you want to find the quickest way to deploy your first Windows guest OS in a Hyper-V virtual machine. In this post, I will show you how to use a PowerShell tool called Convert-WindowsImage. ps1 to create a VHD with a working Windows 7 or Server 2008 R2 and later installation from an image that is stored in a Windows ISO file. What Does Convert-WindowsImage. ps1 Do? Microsoft changed how they package Windows with the release of Longhorn, which was Windows Vista and Windows Server 2008. The old days of compressed files and cab files being thrown onto a CD were over. Instead, Microsoft decided that they would have two supported file-based container types for the IT pro: Virtual hard disk: The VHD and VHDX formats provide a mountable file-based image for virtualization. A bootable operating system and data can be stored on a file system that is contained within a virtual hard disk. This is the type of container that... --- ### Windows PowerShell ISE Fundamentals > Learn the the basics of using the Windows PowerShell ISE in this how-to article by PowerShell expert Jeff Hicks. - Published: 2014-08-29 - Modified: 2024-11-19 - URL: https://petri.com/windows-powershell-ise-fundamentals/ - Categories: PowerShell - Tags: Beginner, ISE - Article Type: How To Get a primer on how to use the Windows PowerShell ISE in this how-to article by PowerShell expert Jeff Hicks. One of the primary reasons we have the Windows PowerShell Integrated Scripting Environment (ISE) is so that you have something other than Notepad for creating PowerShell scripts. On client operating systems, the PowerShell ISE should be installed by default. On servers it is an optional feature. Related: 5 Tips for the PowerShell 3. 0 ISE Launching the PowerShell ISE from the command prompt Because you are probably not developing scripts on your servers, you should be able to live without it. On the client desktop, you should be able to find a shortcut to the Windows PowerShell ISE. However, if you already have the PowerShell console open, then you can launch the ISE directly at the prompt: PS C:> ise If you are running your console elevated, then the ISE will also run in an elevated session. When I need the ISE, I never bother looking for the shortcut because I simply can start it from PowerShell. It's even better that you can open files in the ISE directly from PowerShell. PS C:> ise C:scriptsGet-HyperVEvents. ps1 Next, if you later run the following ISE command, then the file will be opened in a new tab in the currently-open ISE. PS C:> ise C:scriptsSet-ComputerConfiguration. ps1 Note that this trick only works for a single PowerShell console. If you open a new PowerShell console and run an ISE command, then you will get a second instance of the ISE. Opening multiple files in the ISE isn't as intuitive. PS C:> ise "C:scriptsSet-ComputerConfiguration. ps1,C:scriptsGet-HyperVEvents. ps1" Pay close attention to this... --- ### What is Docker? > One of the hottest products in IT these days is Docker. So what is Docker? Our overview should help you understand what the buzz is all about. - Published: 2014-08-28 - Modified: 2024-09-04 - URL: https://petri.com/what-is-docker/ - Categories: Virtualization - Article Type: News One of the most discussed products at VMworld was Docker. So what is Docker? Jeff James gives us an overview. VMworld 2014 had more than enough new products, services, and buzzwords to go around. While it was undeniable that some noteworthy products were announced -- namely VMware EVO:RAIL and a host of other new VMware offerings -- the halls of the Moscone Center were also filled with cringe-worthy buzzwords like 'hybridity. ' Another word that was spoken with increasing regularity at the show was 'Docker,' and there are good reasons why. So what exactly is Docker? Docker: It's all about containers The word 'Docker' actually refers to two things. One usage is the name of a red hot start-up company -- less than 2 years old -- that is currently taking the world of enterprise IT by storm. The other usage is the name of the platform that the aforementioned company produces. The latter is the more interesting of the two to developers and IT administrators, and I'll explain why. At its core, Docker is a platform that allows software developers and IT professionals to develop, transport, and execute applications. "Docker is a platform for distributed apps that was launched 18 months ago," says Scott Johnston, the SVP of Products for Docker that I spoke with a few days before VMworld. "Docker uses containers... . technology originally developed in the early 1980s. Docker made  much easier to use and made it interoperable. " Johnston went on to explain that Docker provides an abstraction between the application layer and the infrastructure layer. Developers can create applications in Docker containers, and more easily copy... --- ### Adjusting Exchange Online Deleted Item Retention > Learn how to adjust Exchange Online deleted item retention limits in this how-to article by J. Peter Bruzzese. - Published: 2014-08-28 - Modified: 2024-12-03 - URL: https://petri.com/adjusting-exchange-online-deleted-item-retention/ - Categories: Exchange Server - Article Type: How To Learn how to adjust deleted item retention limits for Microsoft Exchange Online in this how-to article by J. Peter Bruzzese. Have you been getting frantic calls and emails from your Exchange Online users who are trying to get an email that they accidentally deleted a few weeks ago, but they can't find it anywhere? They're probably running up against the default limit that Exchange Online uses for deleted item recovery. Related: Manage Remote PowerShell Access to Exchange Online By default, items that have been deleted in Exchange Online are available to be recovered for a period of 14 days. If you have users looking to recover items that have been deleted more than two weeks ago, then you'll need to adjust some deleted item retention settings. Need to extend the period that users can recover emails that have been deleted in Exchange Online? J. Peter Bruzzese shows you how. (Image: Dreamstime) How to adjust Exchange Online deleted item retention rules If your users need more time to recover those deleted emails, then you can increase this period up to a maximum of 30 days in just a few simple steps using Windows PowerShell. Here are the steps below: Connect to Exchange Online using PowerShell. If you need to review how to do this, check out my article that walks you through how to connect to Exchange Online using PowerShell. Enter and run this PowerShell command: ​ Get-Mailbox | Set-Mailbox -SingleItemRecoveryEnabled $True -RetainDeletedItemsFor 30 Note: you can adjust this command to be directed at specific mailboxes or you can keep it open for all mailboxes. As always, make sure to disconnect your session when you are done using one of... --- ### What's New in VMware vSphere 6.0 > We take a look at what's new in VMware vSphere 6.0 by cobbling together an early look at what features the updated release might contain. - Published: 2014-08-27 - Modified: 2024-11-19 - URL: https://petri.com/whats-new-in-vmware-vsphere-6-0/ - Categories: VMware - Tags: Editor's Pick, VMworld 2014 - Article Type: News VMware vSphere 6.0 wasn't formally announced at VMworld this week, but several new features were. Jeff James gathers up the details and provides an overview. Updated Dec. 12th, 2014 - 12:57pm MT - Added new information about VMware vSphere 6 web client. Once the curtains fell on VMworld 2014, VMware administrators began to sort through all of the news, new products, and other information that came out of the event. I've already written a bit about EVO: RAIL, the vRealize Suite, and vCloud Air, but there was a lot of other information released that deserves a deeper dive. One product that was mentioned often by VMware executives was the upcoming VMware vSphere 6. 0 release, which VMware CEO Pat Gelsinger said was now available in public beta form. Yet while many VMware execs mentioned individual features of vSphere 6. 0 in piece-meal fashion, there wasn't an umbrella announcement for vSphere 6. 0, which means that we're likely to get more official news in the weeks in months to come. That said, there was enough information release during VMworld for us to start assembling a picture of what vSphere 6. 0 will have to offer feature-wise, so I've cobbled together some of the available information below. VMware CEO Pat Gelsinger mentioned during his VMworld 2014 keynote that VMware vSphere 6 was in beta, and that Virtual Volumes (VVols) would be one of the new features in vSphere 6. (Image: VMware) Note: Given that VMware vSphere 6. 0 is still in beta form, I'd expect the following list of features to be tweaked and revised as the product gets closer to final release. I'll continue to update this post as new information becomes available, so please bookmark... --- ### Why the Cloud Is the Key to IT Competitiveness > The cloud computing competitive advantage means that companies that fail to embrace it could fall behind. - Published: 2014-08-27 - Modified: 2024-09-04 - URL: https://petri.com/cloud-computing-competitive-advantage/ - Categories: Google Cloud Platform - Tags: Editor's Pick - Article Type: Opinion Russell Smith offers up his argument for why the cloud computing competitive advantage means that companies that fail to embrace it could fall behind. Not too many years ago, it would have been considered a luxury if a business could afford to deploy the latest technologies in a timely manner. At best, SMEs that traditionally had money spend on IT, such as legal practices and financial consultants, might upgrade servers and PCs once every few years; while large companies would be weighed down with monolithic IT infrastructures that were expensive and complex to upgrade. Related: Security and Trust in Cloud Computing While penny pinching IT departments eked the last breath of life out of every server, PC and other infrastructure components, companies with a more balanced approach would spend to save, giving them a happier workforce and a competitive advantage because of their ability to innovate faster. Cloud computing adoption can make IT more agile and efficient, which can lead to a competitive advantage for many organizations. (Image: Dreamstime) It's easy to dismiss cloud computing as another marketing bandwagon, usurping virtualization as the previous favorite, but what will be the fate of companies and IT professionals that fail to embrace it? The Cloud Computing Competitive Advantage Gone are the days where equipment needs to be procured for production servers, and budgets negotiated for research and development. Environments can be provisioned in minutes, with unlimited access to storage, memory and processing power with no upfront costs. But the best part is that resources that were once only available to large enterprises, are now accessible to even the smallest enterprises. The cloud enables organizations of... --- ### Exchange 2010 Cross-Forest Migration: GAL Sync and Enabling MRS Proxy > In this second part of our article series on Exchange 2010 cross-forest migration learn how to perform a GAL Sync and Enable MRS Proxy. - Published: 2014-08-26 - Modified: 2024-09-04 - URL: https://petri.com/exchange-2010-cross-forest-migration-galsync/ - Categories: Exchange 2010 - Tags: Editor's Pick - Article Type: How To In this second installment of our article series on Exchange 2010 cross-forest migration we perform a GAL Sync and Enable MRS Proxy. This is the second installment in our article series on how to perform a Microsoft Exchange 2010 cross-forest migration, using a lab environment to migrate users from one domain to another. In the previous post, we configured DNS forwarding and the two-way trust relationship. In this article, we'll perform the following five steps: Global address list (GAL) sync between blue. com and green. com Create and configure the send connector between blue. com and green. com Create and configure the availability service between blue. com and green. com Configure green. com as an accepted domain in blue. com Enable MRS Proxy on the source forest green. com CAS servers Microsoft Exchange cross-forest migration is often used when one company acquires (or is merged) with another, and there's a need to consolidate email services. (Image: Dreamstime) Step 1: Global Address List (GAL) Sync Between Domains A Microsoft Exchange cross-forest migration doesn't happen overnight, and we might need to have the environment in co-existence mode for a long time. We need to create and configure GAL sync between the blue. com and green. com domains so that users can find the contact of other forest in their local GAL. The followings steps prepare and configure GAL sync between two forests using the free GAL sync script by Carol Wapshere, a Microsoft Forefront Identity Manager (FIM) MVP. Create Organization Unit (OU) in the blue. com and green. com forest Create new OU in both the forests to create GAL sync contacts for cross-forest users. Create the new OU GAL sync under the root domain blue. com, and then create GreenContacts OU... --- ### Using the Microsoft OneDrive for Business Library > Learn how to use Microsoft OneDrive for Business library functionality in this overview by Theresa Miller. - Published: 2014-08-26 - Modified: 2024-09-04 - URL: https://petri.com/using-microsoft-onedrive-for-business-library/ - Categories: Microsoft 365 - Article Type: How To Theresa Miller presents a primer on using the Microsoft OneDrive for Business library functionality. As you begin working with Office 365, it quickly becomes evident that Microsoft OneDrive works extremely well for document sharing. On that point, I've written another article for Petri that will get you up to speed on how to upload and share documents using Microsoft OneDrive for Business.  The more I've used OneDrive, the more I've also realized that there's more to document libraries and document sharing than meets the eye, so I've decided to share some tips and tricks on how to get the most out of the Library functionality in OneDrive. In this article, I'll walk you through the Library functionality in Microsoft OneDrive, and how you can use some of the more advanced options to enhance your OneDrive experience.  Microsoft OneDrive for Business is a perfect platform for sharing files across multiple devices. (Image: Microsoft) This document assumes you have already signed into your Office 365 business account and that you've  already clicked on OneDrive at the top of your screen. Once you're logged in to OneDrive, the Library tab can be accessed in the upper left-hand side of the screen. Also, we not be coving the power user and administrator options on the tool bar, as these are the Customize Library and Settings Options on the right sight of the Library ribbon bar. Accessing the Microsoft OneDrive library from Office 365.  (Image: Theresa Miller) If your organization has any past or present experience with SharePoint 2010 or SharePoint 2013, then the Library bar within OneDrive will look very familiar. Once in the library there are... --- ### VMworld 2014: VMware unveils EVO:RAIL, vCloud Air, and vRealize Suite > VMware unveils EVO:RAIL, vCloud Air, vRealize Suite, and a plethora of other new and updated products and services at VMworld 2014. - Published: 2014-08-26 - Modified: 2024-12-03 - URL: https://petri.com/vmworld-2014-vmware-unveils-evo-rail-vcloud-air-vrealize-suite/ - Categories: VMware - Tags: News, VMworld 2014 - Article Type: News VMware unveils EVO:RAIL, vCloud Air, vRealize Suite, and a host of other cloud and virtualization products and services at VMworld 2014 this week. VMware CEO Pat Gelsinger kicked off the VMworld 2014 conference in San Francisco on Monday by stating that the IT world needs to be "fluid, instant, and support choice," and then proceeded to unveil a barrage of new virtualization, hybrid cloud, and converged IT products and services. In addition to new offerings like VMware EVO:RAIL and VMware vRealize Air Automation, existing services and products like VMware vCloud Hybrid Service (vCHS) and vCloud Automation Center have been renamed and/or rebranded. There was a lot of information to digest, so I’ll get to sorting all of that out shortly. VMware CMO Robin Matlock actually opened the event before Gelsinger took the stage, and touted some robust VMworld 2014 attendance figures, with Matlock stating than more than 22,000 attendees from 85 countries were present at the show.  VMware CEO Pat Gelsinger takes the stage at the VMworld 2014 keynote. (Image: EMC) The VMworld opening keynote was roughly 90 minutes long, and you can watch it in its entirety if you’re so inclined. We’ll be covering all of the products and services announced at VMworld in more detail in the coming weeks and months here on the Petri IT Knowledgebase, but for now I’ll touch on the biggest new products, upgrades, and branding changes, starting with the new VMware EVO: RAIL and EVO: RACK hyper-converged infrastructure appliance (HCIA) products. VMware EVO:RAIL and EVO:RACK One of the hottest trends in IT these days is the concept of “converged infrastructure. ” In essence, converged infrastructure describes integrated IT... --- ### How to restart Windows Explorer shell in Windows 7/8 > Learn how to restart Windows Explorer shell in both Windows 7 and Windows 8 in this handy how-to article by Daniel Petri. - Published: 2014-08-25 - Modified: 2024-09-04 - URL: https://petri.com/how-to-restart-windows-explorer-shell-windows-7-8/ - Categories: Windows 8 - Article Type: How To Need to manually restart Windows Explorer shell in both Windows 7 and Windows 8? Daniel Petri shows us how in this handy how-to article. In virtually all Microsoft operating systems, Windows Explorer is the shell in which the graphical user session operates and is responsible for bringing you the desktop, which includes the icons, shortcuts, the explorer interface and all the relevant GUI-based things that you need to use in Windows. Having said that, there may be times when you want to restart Windows Explorer. This might be because it may get locked up or maybe you made a registry change that requires a restart. The same goes for developers that write extensions to Explorer who want to be able to test them. 3 Ways to Restart the Windows Explorer Shell Although logging off will usually do the trick, sometimes you have too many open windows, tabs, apps or whatever, and logging off only makes things more complicated. So let's just kill Explorer and restart it. There are several documented ways to exit the Explorer shell. Note: No matter what method you choose -- except for the third option -- you will need to restart Explorer after closing it. See the bottom of article on how to do this. All these tricks also work for Windows Server 2008 and Windows Server 2012. Method 1: Use the hidden Exit Explorer option 1. On Windows 8, press and hold both CTRL and SHIFT keys on the keyboard. Now right-click on an empty area of the Taskbar. This brings out a hidden context menu item called "Exit Explorer. " Bringing up the hidden 'Exit Explorer' option in Windows 8. (Image: Daniel Petri) 2. In Windows 7, press and hold both CTRL... --- ### Microsoft turns to IT community to help name TechEd successor > Microsoft turns to the IT community for help with naming the successor to Microsoft TechEd. - Published: 2014-08-22 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-turns-to-it-community-teched-name-help/ - Categories: Windows Server - Tags: Microsoft Ignite, News - Article Type: News Microsoft has turned to the IT community for help with naming the successor to the Microsoft TechEd conference. What names would you suggest for Microsoft's latest tech conference? Update: Microsoft has combined most of their tech conferences under the Microsoft Ignite banner, with the first conference slated for May 4-8, 2015 in Chicago, IL, USA. See this updated Microsoft Ignite post for details. A few weeks ago, Microsoft announced that it was shuttering a number of Microsoft-branded technology events -- namely Microsoft TechEd, Microsoft Exchange Conference, Microsoft SharePoint Conference, and a few others -- to make way for a new technology event scheduled to take place May 4-8, 2015 in Chicago, IL. At the time, Microsoft was criticized in some quarters for the supposed tentative name of the conference -- the Microsoft Unified Technology Event for Enterprises, or MUTEE -- but Microsoft indicated that the name wasn't final. Earlier this week I received an email from Microsoft asking me to "... participate in this short research survey to help Microsoft name a new technology event for enterprises. " I've cut and pasted the relevant bits out of the email in this post as a screen grab, below. Microsoft recently sent out an email urging attendees of previous Microsoft technology events to take an online survey to help them name a new technology event. (Image: Microsoft)  I was curious about why Microsoft was sending the email and wanted more details on who it was sending the email to, so I reached out to Microsoft for additional information, and received the following reply from a Microsoft spokesperson: "We polled several thousand past attendees of TechEd, SharePoint Conference, Exchange Conference and other Microsoft events. This... --- ### Windows 9 Preview Slated for September 30th > The Windows 9 preview may be available as soon as September 30th. Read on for more details on Microsoft's latest client OS. - Published: 2014-08-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-9-preview-slated-september-30th/ - Categories: Windows 8 - Tags: News - Article Type: News Windows 9 won't officially be released until mid-2015, but a Windows 9 preview event might be slated for September 30th. Read on to find out more! The rumor mill has been working overtime with regards to the what, how, why, and when of Microsoft's upcoming Windows 9 client OS, which has also been given the Microsoft codename of 'Threshold. ' Thanks to some solid reporting by Tom Warren over at The Verge (and some of his sources), we now know that Microsoft is planning a press event in late September to release some additional details about Windows 9. So what exactly will Microsoft be discussing at the Windows 9 preview event? Warren suggests in his post that it isn't likely that the final name from the product will be announced then, but that Microsoft may release an early technology preview that will give "... developers a first look at the new mini Start Menu in Windows 9, alongside the removal of the Charms bar feature and several UI changes. " Initially shown at this year's BUILD conference, a revised Windows Start menu (shown above in BUILD form) will be one of the key new features in Windows 9. (Image: Microsoft) There are some other features that have been rumored for Microsoft's next update to the Windows client, including a version of the Windows Phone 'Cortana' voice assistant technology. Warren mentions that Microsoft may release an early technology preview version of Windows 9, primarily for developers, soon after the September 30th press event.  Warren's information aligns well with an earlier report by Mary Jo Foley that indicated that a tech preview of Windows 9 would be available in late September and that the... --- ### Connect to Windows 8 Remotely Using PowerShell > Learn how to connect to Windows 8 remotely using PowerShell in this how-to guide by Russell Smith. - Published: 2014-08-21 - Modified: 2024-09-04 - URL: https://petri.com/connect-to-windows-8-remotely-using-powershell/ - Categories: Windows 8 - Tags: Editor's Pick, PowerShell, PowerShell Remoting, remote management, Windows 8, WinRM - Article Type: How To Need to connect to a Windows 8 client remotely? Russell Smith shows us how to use PowerShell to do exactly that in this handy how-to article. In this Ask the Admin, I’ll show you how to connect to Windows 8 remotely using PowerShell Remoting. In my previous Ask the Admin post, I showed you how to configure PowerShell Remoting in Windows 8 using the command line, or Group Policy for PCs joined to an Active Directory (AD) domain. If you missed it, see How to Enable PowerShell Remoting in Windows 8. The steps in this article can also be used to remote to Windows Server 2012. This article discusses the use of PowerShell Remoting without any special configuration. I. e. there are no constrained endpoints, or use of WinRM over HTTPS. As such, you should remember that the default WinRM configuration is intended for use on secure private networks. PowerShell Remoting using WinRM over HTTPS is more complicated to set up as it requires the use of certificates. Establishing trust with the WinRM client Before you can connect to a remote computer using PowerShell Remoting, that computer must be trusted by the WinRM client, i. e. the computer from which you are making the remote connection. In an Active Directory domain, or when PowerShell Remoting is configured to use HTTPS, Kerberos authentication and certificates respectively provide a means to determine if the remote computer is trusted, as long as the remote computer is specified by name and not IP address. If both the remote computer and WinRM client are not members of the same domain, or not members of a trusted domain, then you will need... --- ### How to Enable PowerShell Remoting in Windows 8 > Learn how to enable PowerShell Remoting in Windows 8 using the command line or Group Policy. - Published: 2014-08-21 - Modified: 2024-09-04 - URL: https://petri.com/enable-powershell-remoting-in-windows-8/ - Categories: Windows 8 - Article Type: How To Russell Smith shows an easy way to enable PowerShell Remoting in Windows 8 with the command line or Group Policy. In this Ask the Admin, I'll show you how to enable PowerShell Remoting in Windows 8. PowerShell Remoting is not enabled by default in Windows 8, but can be easily configured from the command line or by using Group Policy. Windows Remote Management (WinRM) is the technology behind PowerShell Remoting.  When enabled, the WS-Management service is set to start automatically, an HTTP listener is configured, the default WinRM Windows Firewall rules are turned on, and permissions are set to allow local administrators to establish remote connections. Related: PowerShell Remoting: How to Restrict User Commands Enable PowerShell Remoting from the Command Line If you want enable PowerShell Remoting on PCs that are not joined to a domain, or just on a handful of devices, then use the command line as shown below. Log in to Windows 8. Switch to the Start menu by pressing the WINDOWS key. On the Start screen, type powershell. Make sure that Windows PowerShell is selected in the search results and press CTRL+SHIFT+ENTER. Give consent or enter administrative credentials if prompted. In the PowerShell prompt, type enable-psremoting and press ENTER. You will then be prompted to confirm if you want to continue with the configuration. You can either confirm each step individually by typing , or collectively by typing and pressing ENTER. Enable PowerShell Remoting from the command line (Image: Russell Smith) Alternatively, you can add the –force parameter to avoid having to confirm the configuration. ​ enable-psremoting –force Once the command has completed, the WinRM listener will... --- ### Using the Microsoft Security Compliance Manager Tool > Learn about using the Microsoft Security Compliance Manager tool to manage and create your own security templates. - Published: 2014-08-20 - Modified: 2024-09-04 - URL: https://petri.com/using-the-microsoft-security-compliance-manager-tool/ - Categories: Security - Tags: group policy, Security, Windows Server 2012 - Article Type: How To Learn how to get started with Microsoft’s free Security Compliance Manager (SCM) tool and how it can be used to manage security and Group Policy settings. In part one of this three-part series, I showed you how to import security . inf files to a database.  I also showed you how to configure and analyze security on a local server using secedit and the Security Configuration and Analysis tool. However, these tools are designed to be used with a local server, which means limited management capabilities. In part two, I'll show you how to get started with Microsoft's free Security Compliance Manager (SCM) tool.  We'll also learn how it can be used to manage security and Group Policy settings, along with tracking changes to baseline security templates. Download and Install Security Compliance Manager You can download the latest version of the Security Compliance Manager from Microsoft. It's best to install SCM on a management workstation, although it is possible to install it directly on Windows Server 2012. SCM requires the . NET Framework, and SQL Express Server 2008 and Microsoft Visual C++ are installed as part of the package. The following outlines steps for installing SCM: Log on to the device where you want to install SCM. Download SCM using the link listed above. Run the downloaded . exe file. In the setup dialog box, accept the license agreement for Microsoft Visual C++ and click Install. Click Finish on the Installation is Complete screen. On the Welcome to the Microsoft Security Compliance Manager Setup Wizard screen, make sure that Always check for SCM and baseline updates is checked, and click Next. Check I accept the terms of the license agreement, and click Next. On the... --- ### Manually Install a Guest OS in a Hyper-V Virtual Machine > Learn how to easily install a guest OS in Microsoft Hyper-V virtual machine. - Published: 2014-08-20 - Modified: 2024-09-04 - URL: https://petri.com/install-a-guest-os-in-hyper-v/ - Categories: Hyper-V - Tags: Deployment OS Deployment, Guest OS, Hyper-V, OSD, virtual machine, Virtualization, Windows, Windows Server, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To Aidan Finn shows us how to manually install a guest operating system (OS) in a Hyper-V virtual machine (VM). Creating and running a virtual machine is one of the first things that you will want to do after deploying Hyper-V. In this article, I will show you a basic way to manually install a guest OS in Hyper-V virtual machine (VM). How to Install a Guest OS in Hyper-V Virtual Machines One of the most common ways to get your first guest operating system is to mount an ISO file and install the operating system by hand, just as you would with a physical server using a DVD. The first step is to obtain your media. If you purchased an OEM license, then create an ISO file using a third-party tool using the original Microsoft media. If you bought a volume license, then download the ISO file for your version of Windows Server from the Microsoft Volume Licensing Service Center (VLSC). If you are using MSDN media, then download the ISO from there. Now save the ISO file where the virtual machine can mount it. The quick and easy location is on the host. The more complicated solution that's better in the long term is to store the ISO in a library, where a file share will require you to implement SMB constrained delegation. Next, edit the properties of the VM. The ISO file will be mounted by a virtual DVD drive. Generation 1 VMs have a virtual DVD drive on IDE controller 1. In the case of a generation 2 VMs, you will need to add a virtual... --- ### Manage Servers using Server Manager in Windows 8.1 > Learn how to manage servers using Server Manager in Windows 8.1 when the servers or management PC are members of a workgroup or different AD forest. - Published: 2014-08-19 - Modified: 2024-11-19 - URL: https://petri.com/manage-servers-using-server-manager-in-windows-8-1/ - Categories: Windows Server 2012 - Tags: Azure, Editor's Pick, PowerShell, remote administration, Windows Server 2012, WinRM - Article Type: How To Learn how to manage servers using Server Manager in Windows 8.1 in this how-to article by Petri IT Knowledgebase Contributing Editor Russell Smith. I'm a strong advocate of using PowerShell Remoting instead of RDP or Remote Server Administration Tools (RSAT) wherever possible for server administration, but there's no doubt that GUI management tools still have their place. The first thing you’ll miss if you go the PowerShell route is Server Manager, in particular its dashboard, which gives a graphical overview of servers so you can quickly establish if there are any problems that need attention. In this article, I'll show you how to manage servers using Server Manager in Windows 8. 1. Server Manager is easy to set up if you have an on premise Active Directory (AD) domain, but if you want to manage standalone servers, servers in the cloud, or run Server Manager on a workgroup PC, then you'll need to take some extra configuration steps.  The Server Manager Dashboard (Image: Russell Smith) In this article, I'm going to show you how to configure a Windows Server 2012 R2 Azure virtual machine (VM) so it can be managed using Server Manager from an on-premises PC running Windows 8. 1. In this example, there is no VPN in place between the on-premises site and the Azure virtual network. Although this is not a recommended configuration, it might be useful for lab environments or scenarios where security isn't critical. Related: PowerShell Remoting: How to Restrict User Commands The instructions in this article can be adapted to suit any cloud or on-premises server management scenario by removing any steps specific to Azure. If you have a... --- ### What is Microsoft StorSimple? > Ever asked the question "What is Microsoft StorSimple?" Aidan Finn provides a thorough answer to that question in this overview post. - Published: 2014-08-19 - Modified: 2024-09-04 - URL: https://petri.com/what-is-microsoft-storsimple/ - Categories: Microsoft Azure - Tags: Azure, Backup, cloud computing, Disaster Recovery, DR, hybrid cloud, Microsoft Azure, SAN, storage, StorSimple, Tiered Storage - Article Type: Overview Curious about what Microsoft StorSimple is? Aidan Finn provides a thorough overview of Microsoft's promising hybrid storage solution in this informative post. It’s hard to attend a Microsoft event on hybrid cloud computing and not hear a little about StorSimple. You might have some basic questions like "What is Microsoft StorSimple? " Maybe those questions were answered. And hopefully, you weren’t given some incorrect information! This article will explain what StorSimple is and how you might use it to solve your storage capacity issues. What Does StorSimple Do? StorSimple is a tiered storage solution. This is not your traditional tiered storage solution like you get with a SAN or with Windows Server 2012 R2 (WS2012 R2) Storage Spaces. StorSimple provides you with hybrid cloud tiered storage. The StorSimple 8000 series appliances. (Image: Aidan Finn) When data is written to the appliance, it is initially store in the first tier called SSD Linear. Here raw data is stored in the fastest of the 4 tiers. When the tier is 80% full, the oldest blocks are moved down to SSD Dedupe. This is a capacity optimized SSD tier. Once this tier is 80% full, the oldest data is pushed down to the SAS tier. And when the SAS HDD tier is 80% full, data is pushed to blob storage in Microsoft Azure. And yes, the data is encrypted using AES-256 while at rest in Azure. The process is actually more complicated than what I’ve described to offer performance and metadata availability, but you should get the idea. Note that when data is read from any tier, it is moved back to the top level... --- ### Using Office 365 Data Loss Prevention (DLP) > Learn tips for Office 365 data loss prevention with tools provided by Microsoft in Exchange 2013 and Exchange Online. - Published: 2014-08-18 - Modified: 2024-09-04 - URL: https://petri.com/office-365-data-loss-prevention-dlp/ - Categories: Microsoft 365 - Tags: Editor's Pick - Article Type: How To J. Peter Bruzzese shares tips on how to protect your organization's sensitive Office 365 data with tools provided in Exchange 2013 and Exchange Online. Nearly every day we hear news of disastrous leaks of sensitive data that ranges anywhere from customer credit cards to social security numbers. Often these breaches aren't the result of sneaky attackers subverting security measures, but from simple oversights by well-meaning employees. Even if accidental loss of important data in your organization wouldn't make the news, you'll still want to take a look at some of the Data Loss Prevention (DLP) tools provided by Microsoft in Exchange 2013 and Exchange Online. Related: Manage Remote PowerShell Access to Exchange Online Note: Keep in mind that as a premium feature, DLP will require an Exchange Online Plan 2 subscription with Office 365 or an Exchange Enterprise Client Access License (CAL) for on-premise Exchange. See our article on choosing an Office 365 subscription plan for more information. Using DLP with Office 365 Exchange Online Data Loss Prevention (DLP) is a policy management system that helps you identify sensitive data leakage within outgoing email. The system also intervenes to prevent accidental data loss. Based on the existing and well-proven transport rule feature, each policy consists of conditions, actions, and possible exceptions that determine how emails containing sensitive data are handled. In this way, they are similar to setting up Transport Rules or Inbox rules. Data loss prevention settings in the Office 365 Exchange admin center. (Image: J. Peter Bruzzese) Microsoft provides several template DLP policies that will help you identify data that's subject to known laws, such as HIPPA. You can also create your own custom policies... --- ### Microsoft Pulls Faulty Windows Patches > Microsoft pulls faulty Windows patches after users reported problems, including 'blue screen of death' (BSOD) errors. - Published: 2014-08-18 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-pulls-faulty-windows-patches/ - Categories: Windows Client OS - Article Type: News Microsoft has announced that it is pulling faulty Windows patches after users reported problems, including 'blue screen of death' (BSOD) errors. Just a few days after the release of the August "Patch Tuesday" patches via Windows Update, Microsoft has withdrawn several of the updates that caused 0x5 stop errors (aka "blue screen of death"), affecting every version of Windows since Vista. A "Blue Screen of Death" on Windows 8 or Windows Server 2012. (Image: Aidan Finn) The Problem: "Blue Screen of Death" After Patch Tuesday Microsoft reports the problem in the Known Issues section of the update description in KB2982791 (aka MS14-045). Known Issue 3 is: "Microsoft is investigating behavior in which systems may crash with a 0x50 Stop error message (bugcheck) after any of the following updates are installed. " The affected updates and operating systems are: 2982791: MS14-045 - Description of the security update for kernel-mode drivers: August 12, 2014. This affects every version of Windows for PCs, RT, and Server since Windows Vista. 2970228: Update to support the new currency symbol for the Russian ruble in Windows. Every version of Windows for PCs, RT, and Server are affected since Windows 7. 2975719: August 2014 update rollup for Windows RT 8. 1, Windows 8. 1, and Windows Server 2012 R2 2975331: August 2014 update rollup for Windows RT, Windows 8, and Windows Server 2012 Microsoft goes on to say that: "This condition may be persistent and may prevent the system from starting correctly. " Microsoft has disabled downloads of these updates until the issue is resolved. In the meantime, if you have installed these updates and are experiencing the issue, I’m... --- ### Managing Exchange Online Mailbox Size Limits with PowerShell > Learn about managing Exchange Online mailbox size limits with PowerShell in this short how-to article. - Published: 2014-08-15 - Modified: 2024-12-03 - URL: https://petri.com/managing-exchange-online-mailbox-size-limits/ - Categories: Exchange Server - Article Type: How To Learn how to manage Exchange Online mailbox size limits using Windows PowerShell in this short how-to article by J. Peter Bruzzese. An important part of managing any Microsoft Exchange deployment, whether on-premises or online, is the appropriate allocation of storage space. An important task related to that is monitoring and limiting the size of user mailboxes. Thankfully, you'll find that these tasks in Exchange Online are easily done with a just few simple PowerShell commands.  In this article I'll walk you through managing Exchange Online mailbox size limits with a handful of useful Windows PowerShell cmdlets.   PowerShell can be a useful tool to help you manage Exchange Online Mailbox Size Limits. (Image: Jeff James) Setting Mailbox Size Limits for a Single User 1. Let's start with setting limits. We can do this for one user at a time or groups of users. First the command for changing the size limit for a single user using the following PowerShell command: ​ Set-Mailbox -ProhibitSendQuota -ProhibitSendReceiveQuota -IssueWarningQuota 2. Here is the command we would use if we wanted to limit Robert Williams' mailbox to a size of 24 GB with a warning at 20 GB and a limit on sending messages at 22 GB: ​ Set-Mailbox rwilliams@example. com -ProhibitSendQuota 22GB -ProhibitSendReceiveQuota 24GB -IssueWarningQuota 20GB Setting Mailbox Size Limits for Multiple Users 1. To make the same change for multiple users we will add the Get-User cmdlet along with a filter. If we wanted to set a specific quota for the Customer Service department we might use a command like this: ​ Get-User | where {$_. Department -eq "Customer Service"} | Get-Mailbox | Set-Mailbox -ProhibitSendQuota 18... --- ### Manage Remote PowerShell Access to Exchange Online > Peter J. Bruzzese shows how to effectively manage remote PowerShell access to Exchange Online. - Published: 2014-08-14 - Modified: 2024-12-03 - URL: https://petri.com/managing-remote-powershell-access-exchange-online/ - Categories: PowerShell - Article Type: How To Did you know that all accounts created in Exchange Online have remote PowerShell access by default? Learn tips and tricks from J. Peter Bruzzese for managing remote access in your organization. I've discussed in a previous article what a useful tool Windows PowerShell can be for managing your Exchange Online infrastructure. Although using PowerShell can make administering Exchange a lot easier, it is also something you probably don't want all of your users having access to. Did you know that -- by default -- all of the accounts created in Exchange Online have PowerShell access?  So how can you manage access to remote PowerShell in your organization? Determine a User's PowerShell Access to Exchange Online 1. Let's start by seeing which users have remote PowerShell access. If we want to see the status for our entire organization we can use a command with this syntax: ​ Get-User -ResultSize Unlimited | Format-Table Name,DisplayName,RemotePowerShellEnabled In the image below, you can see that every user is Remote PowerShell enabled. Yikes! ! ! Note that the image is blurred to protect the privacy of the innocent here.  Default Exchange Online accounts have PowerShell access enabled. (Image: J. Peter Bruzzese) 2. If you want to see all users who have access either enabled or disabled, then the command looks a little different: ​ Get-User -ResultSize unlimited -Filter {RemotePowerShellEnabled -eq } 3. Note: You have to choose one or the other so if you want it to be true, then you would write the command: ​ Get-User –ResultSize Unlimited –Filter {RemotePowerShellEnabled –eq $true} 4. To check the status of a single user, where the response returns true or false, the command looks like this: ​ Get-User | Format-List RemotePowerShellEnabled Please note that User Identity... --- ### Configure Internet Explorer Proxy Settings in Windows 8 > Learn how to configure Internet Explorer proxy settings in Windows 8, using both the Windows 8 Modern UI and the desktop Control Panel. - Published: 2014-08-13 - Modified: 2024-09-04 - URL: https://petri.com/internet-explorer-proxy-settings-windows-8/ - Categories: Windows 8 - Tags: Internet Explorer, Network, Windows 8 - Article Type: How To Russell Smith shows us how to configure Internet Explorer proxy settings in Windows 8, using both the Windows 8 Modern UI and desktop Control Panel. In this Ask the Admin, I’ll show you how to configure proxy settings in the desktop and Modern UI versions of Internet Explorer (IE). A proxy server can be used to point a web browser to the address of a server that resides between the browser and the Internet. (Sometimes the proxy server is called an intermediary server. ) Most browsers handle proxy server settings automatically, but editing proxy server settings is something that system administrators may be required to do in order to point user web access to a proxy server.  Sometimes you need to manually set proxy settings so that you can connect to the Internet. In Windows 8, there are two ways to achieve this. In this article, I’ll show you how to achieve this using the Windows 8 Modern UI, and then via the traditional way that relies on use of the desktop Control Panel, and. Set Windows 8 Proxy Settings using the Modern UI To set proxy settings using the Modern UI, follow the instructions below. The proxy settings configured here will affect both Modern and desktop IE. Log in to Windows 8 and press WINDOWS + C to open the Charms Bar. On the Charms Bar, click Settings. At the bottom of the Settings panel, click Change PC settings. In the PC Settings app, click Network on the left. Now click Proxy. In the Manual proxy setup section, change Use a proxy server to ON using the slider. In the Address and Port boxes, add the... --- ### 5 Features Windows 9 Needs to Have > What Windows 9 features would make you upgrade? Russell Smith serves up his wish-list of features he'd like to see in the next Microsoft client OS. - Published: 2014-08-13 - Modified: 2024-09-04 - URL: https://petri.com/5-features-windows-9-needs/ - Categories: Windows 8 - Tags: upgrade, Windows 7, Windows 8, Windows XP - Article Type: Opinion So what Windows 9 features would make you upgrade? Russell Smith provides a wish-list of features he'd like to see in the next version of Microsoft's client OS. There have been some recent rumors that indicate Microsoft is planning to offer Windows 7, Vista and XP users a free upgrade to Windows 9. That may be wishful thinking, but moving everyone away from legacy platforms makes sense. Cost isn't necessarily the primary consideration for users that have clung onto XP for dear life, but it brings to the equation an additional carrot and stick. The inconvenience of upgrading and the lack of any clear benefits are more likely principal concerns. Must-Have Windows 9 Features So what new features should Windows 9 offer that previous versions of the Windows client OS lacked? Beyond the return of the venerable Windows Start menu, read on to find out what new features I think Windows 9 should have. 1. A Simplified Upgrade Process I recently purchased an SSD for my Ultrabook and was dreading the thought of having to reinstall Windows and my desktop applications. However' Samsung's Magician software made the process of imaging the factory-fitted 5400rpm hard drive to the SSD a quick, one-step process. And with the promise of a lightning fast experience post upgrade, I didn't need to spend much time considering if it was worth it. Related: Upgrade to Windows 8. 1 without the Windows Store Windows XP users need to be provided with an easier way to migrate to Windows 9. If you have upgraded Windows Phone 8 to 8. 1, then you will have seen how the OS is reinstalled and the apps and data migrated. Until everyone... --- ### Microsoft pushes Bing, Skype and Office 365 in the classroom > Microsoft has a number of programs available for schools, including Bing in the Classroom, Skype in the Classroom, and Office 365 for Education. - Published: 2014-08-13 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-pushes-bing-in-the-classroom/ - Categories: Microsoft 365 - Tags: Editor's Pick - Article Type: Opinion Microsoft has made a big push recently towards getting Bing, Skype, and Office 365 in schools. J. Peter Bruzzese walks through what these programs offer. Although my primary focus as a journalist and technical consultant revolves around the enterprise IT space, sometimes my work brings me into the realm of IT in education as well.  I'm a huge proponent for working with schools and helping our young people learn more about technology. This week I'll be speaking about the switch from on-premise infrastructure to the cloud at the Media & Technology Vendor Showcase for Hillsborough County School Systems (@HillsboroughFL) in Tampa, Florida, which is the seventh largest school system in the nation. It got me thinking: "What, besides student discounts, is Microsoft doing to assist young people with technology and online safety? " Bing in the Classroom A quick search returned information on program called Bing in the Classroom. Search engine wars aside, what I liked about this endeavor is that it provides an ad-free, private search options for all K-12 public and private schools in the US. I think that's brilliant.  Bing in the Classroom offers an ad-free search options for schools. (Image: Microsoft) It's a free service, where you simply register and your school network will be ad-free. In addition to ad filtering, Bing in the Classroom features automatic SafeSearch with strict filtering to assist with filtering out adult content (although I think a secondary method like OpenDNS or perhaps a web filter appliance, like iBoss, is essential as well). Enhanced privacy settings are also enforced so that students can search privately without that search data being used for ad profiling. Beyond the ad-free browsing, Microsoft puts a great... --- ### The Best Hyper-V Training Resources > If you're looking to learn more about Hyper-V, this article provides a list of some of the best Hyper-V training resources. - Published: 2014-08-12 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-training-resources/ - Categories: Hyper-V - Tags: Blogs, Forums, Hyper-V, Learning, Sites, training, Windows Server - Article Type: How To, Overview Looking to brush up on your Hyper-V skills? Aidan Finn serves up a comprehensive listing of some of the best online and offline Hyper-V learning resources. There are few of us who have worked with Hyper-V for more than a few years. Every month, more consultants and administrators are opening up a search engine and typing in something like "Hyper-V training," "Hyper-V resource," or "Hyper-V learning," and getting mixed results at best. And even us veterans need to go searching for something from time to time. In this article, I will list some of the best Hyper-V training resources I know of. Hyper-V Training Resources: Microsoft MOC, Technet, and Books Let's review the old media options before moving forward to the sources that are probably best. Microsoft Official Curriculum (MOC) Hyper-V Training I have worked on the inside of this process in the past, and I've attended training courses over the years. I am happy to say, in my personal opinion, that any money or time spent on a Microsoft classroom-based training course is wasted. Two years ago I would have told you that I didn't think that the typical classroom computer infrastructure was appropriate for Hyper-V training, as it lacked suitable shared storage and quantity of machines with sufficient networking. In addition, I found the material to be watered down and short on detail. There are some solid Hyper-V learning and training resources available, if you know where to look. (Image: Dreamstime) It can take Microsoft some time to generate a new training course; it takes time to design (possibly with marketing having too much of a say in the process), write, tech review, edit, test, publish, and distribute... . --- ### Search using file size filters in Windows 8 File Explorer > Learn how to search using file size filters in Windows 8 File Explorer in this how-to article by Daniel Petri. - Published: 2014-08-12 - Modified: 2024-09-04 - URL: https://petri.com/search-using-file-size-filters-in-windows-8-file-explorer/ - Categories: Windows 8 - Article Type: How To Learn how to search using file size filters in Windows 8 by using some little-known File Explorer options in this how-to article by Daniel Petri. Windows 8 has a built-in search mechanism that indexes parts of data on your hard drives depending on its type, location and use. This allows users to perform fast searches for stuff they need on their computer, such as documents, pictures, music files, and so on. Windows selects the folders that are indexed automatically, based on the location of your user profile and other configurations. You can configure what folders you want to include in the search index and the location of that index by using the "Indexing Options" applet in the Control Panel. In most cases, these searches are simple and include information such as file names, file types, or included text in files. However, it may also be useful to know that you can perform a more advanced search using file size filters in windows 8. There are many other  advanced search filters you can use, and we will discuss several in detail below. Search using file size filters in Windows 8 Sometimes you may need to run a search for large files in a disk partition or folder. This may be useful when trying to find where your disk space has gone. Although there are some third-party tools that let you do that, it's sometimes easier to just run a search using built-in capabilities instead of installing additional software just for that purpose. To help you do that, I've listed some cool search filters that are available in File Explorer. Finding Large Files using Windows Explorer 1. Open Windows Explorer. Although there... --- ### Manage Flexible Single Master Operation (FSMO) Roles Using PowerShell > Learn how to manage FSMO Roles Using PowerShell in Windows Server Active Directory. - Published: 2014-08-11 - Modified: 2024-09-04 - URL: https://petri.com/manage-fsmo-roles-using-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, Domain Controller, Forest, PowerShell, Seize FSMO role, Transfer FSMO role, Windows Server - Article Type: How To In this how-to article, Russell Smith shows us how to use PowerShell to view, transfer and seize Active Directory FSMO roles. In this easy Ask the Admin, I'll show you how to use PowerShell to view, transfer and seize Active Directory FSMO roles. Active Directory administration using the provided management tools from Microsoft has always been a little messy. However, the Active Directory Administrative Center (ADAC) that's included in newer versions of Windows Server helps rectify that situation. With that said, there are some tasks, such as managing FSMO roles, that are not possible to do in ADAC. Rather than navigate the legacy management consoles to manage FSMO roles, I recommend having a look at a few simple PowerShell cmdlets that can help you achieve your goals. The cmdlets in this article are supported on Windows Server 2008 R2 and later. Windows PowerShell can be incredibly useful when administrating Group Policy and Active Directory, so I'll show you how to manage FSMO roles with PowerShell. If you need a primer on Active Directory Flexible Single Master Operation roles, see Daniel Petri's article "Understanding FSMO Roles in Active Directory. " To understand the difference between transferring and seizing FSMO roles using NTDSUTIL, click the following links for more information "Seizing FSMO Roles" and "Transferring FSMO Roles. " Determine FSMO Role Locations with PowerShell 1. The first thing you probably would like to do is establish which domain controllers (DCs) hold the FSMO roles in your forest. Although it's quite likely all five roles will be installed on the first domain controller in the forest, that might not necessarily be the case. 2. Log in to Windows Server 2012 R2 and open a... --- ### How to rename and hide Windows services > At times you might need to rename and hide Windows services. This short how-to by Daniel Petri shows you how to perform both tasks. - Published: 2014-08-11 - Modified: 2024-09-04 - URL: https://petri.com/rename-and-hide-windows-services/ - Categories: Windows Server - Article Type: How To You might need to rename and hide Windows services for security reasons. This short how-to article by Daniel Petri shows you how to perform both tasks. In some scenarios administrators may want to rename and hide Windows services to prevent local administrators from knowing that a specific product that's installed on a specific computer. This may be true, for example, when using security products that are designed to follow the actions of end users.  When those end users are also local administrators, then they have the required privileges needed to view running services and can even disable them from running next time the computer boots. Sometimes you might need to keep certain Windows services hidden for security reasons. (Image: Dreamstime) Such services may be related to antivirus programs, anti malware programs, tools designed to prevent USB and external storage device usage, software that records the actions of users, keyloggers that are installed on specific high-security workstations and others. The procedure of making users into local administrators used to be well-known back in the time of Windows XP. Unless the users were also made local admins, then they had many issues when attempting to perform various system configurations. This problem was solved in Windows 7 and Windows 8 by using the User Account Control (UAC) feature, which basically lets users run in the context of a low-privileged user account by elevating permissions to administrative level only when needed. Related: How to Disable User Account Control (UAC) in Windows 8 Going back to the concept of this article, let's assume that the security manager of a company is attempting to meet a new regulatory compliance and has decided to install a security product on all the computers... --- ### Add a Network Printer to Windows 8 with PowerShell > Learn how to add a network printer to Windows 8 using the Add Device Wizard and PowerShell. - Published: 2014-08-08 - Modified: 2024-09-04 - URL: https://petri.com/add-a-network-printer-to-windows-8-with-powersh/ - Categories: Windows 8 - Tags: File and Print Services, networking printers, PowerShell, Windows 8 - Article Type: How To Russell Smith shows us three different ways to add a network printer to Windows 8, including one that relies on Windows PowerShell. In this easy Ask the Admin, I'll show you three ways to add a network printer to Windows 8: Using the add device wizard, using the modern UI, and using PowerShell. Before we get into those specific steps, I'd like to give you some background on how Windows 8 works with networked and shared printers. Using Windows 8 with Network Printers Network printers are not shared using a PC or Windows Server, but are directly connected to the network, usually via Ethernet or WiFi, and manage print jobs themselves without the need for a separate server. There are several different pros and cons to using network printers.  In my experience, it's always easier to manage printers in an enterprise environment when they are shared using Windows Server. But it's quite common to find printers directly attached to the network, so in this article I'll show you how to add them to your Windows 8 device. Related: Manage Scheduled Tasks in Windows 8 and Windows Server 2012 with PowerShell: Part 1 In most cases, there is no need to differentiate between shared and network printers, both are available on the network as shared resources and you can print to them, and the Add Device wizard is able to detect both network and shared printers. Nevertheless, if the Add Device wizard is unable to detect your device automatically, it is handy to understand the manual process for adding network printers, as it is a little more complicated than adding shared printers. Now that we've covered... --- ### Exchange Online Protection vs. Forefront Online Protection for Exchange > J. Peter Bruzzese give us his take on the current state of the Exchange Online Protection vs Forefront Online Protection for Exchange debate. - Published: 2014-08-07 - Modified: 2024-09-04 - URL: https://petri.com/exchange-online-protection-vs-forefront-online-protection-for-exchange/ - Categories: Exchange Server - Tags: Editor's Pick - Article Type: Overview Has Exchange Online Protection (EOP) finally surpassed Forefront Online Protection for Exchange (FOPE)? J. Peter Bruzzese gives us his take on EOP v. FOPE. There is no doubt that Exchange Online Protection (EOP) has appeared different, even lacking, when compared to its predecessor Forefront Online Protection for Exchange (FOPE).   But Microsoft is closing that gap fast, even going beyond features we had in FOPE.   It’s just a matter of keeping pace with development to see what’s new and improved (or in some cases, what’s returned to EOP from FOPE). Exchange Online Protection vs. Forefront Online Protection for Exchange Microsoft provides a nice FOPE vs. EOP feature comparison chart that initially showed how big of a gap there was between the two, but with each iteration of the chart we see improvement and they are quick to point out where EOP has surpassed its predecessor.   For example, with anti-phishing protection FOPE had 30,000 domains of known spammers in the block lists, while EOP blocks 750,000 domains of known spammers. Microsoft has also put together a FOPE to EOP transition guide that provides some additional information as well. New Features in Exchange Online Protection Some of the new features included in EOP -- features that FOPE doesn't offer -- are useful ones, and I've listed some of the most noteworthy ones below. International spam filtering:  You can configure EOP to block messages in up to 86 different languages and up to 250 different regions. Blocked sender management in Outlook Ability to search the quarantine Ability to customize content filter policies per user, group or domain Ability to view spam-quarantined message headers from the Exchange Admin Center Ability to... --- ### Disable Windows Server 2012 R2 Automatic Maintenance Using PSEXEC > Learn how to disable Windows Server 2012 Automatic Maintenance with PSEXEC. - Published: 2014-08-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-disable-automatic-maintenance-using-psexec/ - Categories: Windows Server 2012 - Tags: Editor's Pick - Article Type: How To Having performance issues? You may be impacted by the Windows Server 2012 Automatic Maintenance functionality. Learn how to troubleshoot in Daniel Petri's latest article. This is one of those articles that I wrote out of frustration: This time the cause of my frustration is the automatic maintenance feature in Windows Server 2012 R2. I've been on a training tour in Australia for the last two weeks, visiting various customers and delivering customized training for them. During all of my sessions, I used several virtual machines running Windows Server 2012 R2 that I used for demonstration purposes. These VMs were booted from a pre-configured snapshot state. I would then use them for a couple of days, and when done I would restore them to the snapshot state. During my presentations and demos I discovered that sometimes my VMs would exhibit a nasty performance lag: Nothing worked, CPU usage was as high as 100 percent without me doing anything, and apps and tools that I needed -- even simple ones such as Notepad -- would take forever to start. One of my VMs ran SQL Server, two others were domain controllers, and nothing seemed to work. After some investigation I found that it wasn't my laptop, which is a powerful Lenovo T430S with 16GB or RAM and two fast SSD disks and an Intel i7 CPU.  It also wasn't my hypervisor software, and it wasn't the food I ate for lunch that day. It was something else that is nasty and evil: Automatic Maintenance. Windows Server 2012 R2 Automatic Maintenance The only hint, besides the spiking CPU and awful performance, is the tray icon seen here: The Windows Server 2012 R2 automatic maintenance... --- ### Why You Need to Learn PowerShell > Learn PowerShell to reduce the time it takes to deploy entire Windows Server environments, on site or in the cloud, from hours to mere minutes. - Published: 2014-08-07 - Modified: 2024-09-04 - URL: https://petri.com/why-you-need-to-learn-powershell/ - Categories: PowerShell - Tags: Azure, Management, PowerShell, Scripting, Windows Server 2012 - Article Type: Opinion Learn PowerShell to reduce the time it takes to deploy entire Windows Server environments, on site or in the cloud, from hours to mere minutes. The command line scares Windows administrators, and that's no surprise considering that Windows was created as the antithesis to Unix, and other CLI operating systems deemed unusable by mere mortals. But the only way to truly harness the power of Windows Server and Microsoft Azure is to embrace Windows PowerShell. What is PowerShell? PowerShell is a task-based command-line shell and object-orientated scripting language based on the . NET Framework. As such, PowerShell provides the ability to automate complex system administration tasks, albeit at the expense of a mild learning curve. Cmdlets provide access to the operating system and applications for performing configuration and management tasks, and an extensible interface allows third-parties to build their own PowerShell modules.  Windows PowerShell cmdlets like Get-Content can simplify many IT configuration and management tasks. (Image: Jeff Hicks) PowerShell can be compared to Python, which is the most common scripting language for Unix-based OSes. The capacity to perform advanced object manipulation and pipe the results to other cmdlets or applications, allows IT to automate tasks more easily than was possible with VBScript. The PowerShell Learning Curve I once considered myself a VBScript and Windows Script Host (WSH) guru and took pride in being able to automate complex tasks. I haven't written a VBScript for years and adopted PowerShell more slowly than I should have, but it was clear from the beginning that PowerShell is superior to simple DOS commands or VBScript. Many of the failings of VBScript, such as the inability to detect that a... --- ### Microsoft Exchange 2010 Cross-Forest Migration > Learn how to configure a test lab for a Microsoft Exchange 2010 cross-forest migration in this four-part article series by Exchange expert Krishna Kumar. - Published: 2014-08-06 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-exchange-2010-cross-forest-migration/ - Categories: Exchange 2010 - Tags: Editor's Pick - Article Type: How To Configure a test lab for a Microsoft Exchange 2010 cross forest migration in this four-part article series by Exchange expert Krishna Kumar. Microsoft Exchange to Microsoft Exchange cross-forest migration is a process of migrating Exchange user mailboxes from one Active Directory (AD) forest to another. In this four-part article series, I'll walk through how to perform a Microsoft Exchange 2010 cross-forest migration between two Exchange 2010 installations. Why do I need a Microsoft Exchange cross-forest migration? A Microsoft Exchange cross-forest migration typically happens for several different reasons, including: Company mergers and acquisitions Company consolidation IT environment segmentation for security reasons Fresh Microsoft Exchange deployments that leave legacy systems behind Corporate name change Needed isolation of messaging environment A  cross-forest migration is a very tedious and complex task. People often get confused and tend to miss out on a few processes during a cross-forest migration, which can lead to additional work and potentially harm your environment. Many companies uses third-party tools to migrate users in a large scale environment, which comes with a huge price tag. Microsoft provides some free tools like the Active Directory Migration Tool (ADMT) and scripts to perform a cross-forest migration. Although these free tools help administrators migrate users from one forest to other, it is a complex process. Not only does the administrator have to perform multiple, complex, and manual tasks, but it's extremely time consuming to migrate users from one forest to another. A manual implementation almost always lead to errors, and it can have a major impact on production users after migration. In this first part of the article series, we'll migrate mailboxes and... --- ### How to Create a Windows 8 USB Recovery Disk > Learn how to create a Windows 8 USB recovery disk and learn about other available recovery options. - Published: 2014-08-06 - Modified: 2024-09-04 - URL: https://petri.com/create-windows-8-usb-recovery-disk/ - Categories: Windows 8 - Tags: Backup, Diaster Recovery, Windows 8 - Article Type: How To Russell Smith shows how easy it is to create a USB recovery disk for your Windows 8 system. In this easy Ask the Admin, I'll show you how to create a Windows 8 USB recovery disk so that you can boot your PC if it won't start normally. Related: 3 Ways to Start Windows 8 in Safe Mode If you find yourself unable to boot into Windows, a USB recovery disk can help you start Safe Mode to access repair utilities to get Windows working again. Windows 8 Recovery Options A recovery drive gives you access to a pre-installation environment, where you can boot into Safe Mode, reset or refresh your PC, or use advanced recovery tools. PC Reset or Refresh? There is a distinct difference between resetting and refreshing Windows 8, and it's important to understand the difference before attempting either operation. A reset allows you to start from scratch, and it's useful if you want to clear all applications, settings, and files from a PC. A refresh preserves personal files, configuration settings and modern UI apps. For more information on refreshing Windows 8 and creating a custom image, see "How to Perform a PC Refresh in Windows 8 and Create a Custom Refresh Image" on the Petri IT Knowledgebase. Related: Restore Windows 7 from a backup image System Restore and System Image Backup Additionally, you can use System Restore to roll back to a previously-known state. However, note that programs, modern UI apps, and drivers may not be preserved. Also, the System Image Backup tool from Windows 7 is still available in Windows 8. 1 and... --- ### Using the Windows Server 2012 Security Configuration and Analysis Tool > Learn how to use the built-in Windows Server 2012 Security Configuration and Analysis Snap-In to manage Windows server security. - Published: 2014-08-05 - Modified: 2024-09-04 - URL: https://petri.com/using-windows-server-2012-security-configuration-and-analysis-tool/ - Categories: Security - Tags: Security, Windows Server - Article Type: How To In the first of a three-part series, Russell Smith explains how to use the Windows Server Security Configuration and Analysis Snap-In and the SecEdit command line tool. Windows Server 2012 is quite secure out-of-the-box, balancing usability and compatibility against security. For organizations that need to implement tight security or comply with strict regulatory codes, security needs to be managed beyond the default settings. In this first part of a three-part series, I'll explain how to work with security baseline templates using the built-in Windows Server 2012 Security Configuration and Analysis snap-in and its command-line equivalent, SecEdit. What is a Security Baseline Template? Microsoft provides security templates for Windows Server and client operating systems, containing security configuration designed for different scenarios and server roles. There are some security templates that are part of the operating system and get applied during different operations, such as when promoting a server to a domain controller. Default Security Templates In Windows Server 2003, the default security templates are located in %systemroot%securitytemplates, and include templates such as Setup Security. inf and Compatws. inf. Setup Security. inf is created when the operating system is installed and differs from device to device, depending on whether there was a clean installation or upgrade of Windows. The Compatws. inf template changes access control lists, including the Users group entry on files and registry keys, to relax security so programs that don't adhere to the recommendations in the Windows Logo Program for Software will run without administrative privileges. Other templates included out-of-the-box are: DC security. inf (for domain controllers) Securedc. inf Securews. inf Hisecdc. inf Hisecws. inf Rootsec. inf (applies default permissions for the root of the system drive) Notssid. inf (removes Terminal Server security identifiers... --- ### 3 Ways to Start Windows 8 in Safe Mode > Learn several different ways to start Windows 8 in safe mode, including using the system recovery tool and a boot disk. - Published: 2014-08-05 - Modified: 2024-09-04 - URL: https://petri.com/3-ways-to-start-windows-8-in-safe-mode/ - Categories: Windows 8 - Tags: troubleshooting, Windows 8 - Article Type: How To Russell Smith shows us three different ways to start windows 8 in safe mode, including using the system recovery tool, a boot disk, and keyboard commands. In this Ask the Admin, I'll show you three different ways to start Windows 8 in Safe Mode.  Windows 8 is the most reliable version of Microsoft's client OS to date, but there can still be occasions when a catastrophic failure or hardware issue causes Windows to fail. Sometimes bad device drivers can also create problems, and the only way to remove them might be using Safe Mode. There are several different ways to get into Safe Mode, and the method you choose depends on whether you can boot to a working OS. How to Start Windows 8 in Safe Mode If you are able to boot into Windows normally, then the first two methods I'm going to show you here are the easiest way to boot to Safe Mode. 1. RESTART + SHIFT By far the easiest way to get to Safe Mode from a working OS is to switch to the Start screen by pressing the WINDOWS key and following these instructions: Select Restart from the Power menu on the Start screen and simultaneously press SHIFT. Although it appears as if Windows is shutting down normally, you will be presented with additional options in a few moments. In the Choose an option dialog, select Troubleshoot. On the Troubleshoot screen, click Advanced options. On the Advanced options screen, click Startup settings. On the Startup settings screen, click Restart. Your PC will now restart. During the boot process, you will be given the option to boot to Safe Mode... --- ### How Do I Manage Hyper-V? > Aidan Finn shows us how to manage Hyper-V for small-to-medium deployments, and walks us through using PowerShell for deploying Hyper-V at scale. - Published: 2014-08-05 - Modified: 2024-09-04 - URL: https://petri.com/manage-hyper-v/ - Categories: Hyper-V - Tags: administration, Automation, Cloud, cloud computing, Editor's Pick, Failover Cluster Manager, Failover Clustering, HA Virtual Machines, High Availability, Hyper-V, hyper-v manager, ISE, PowerShell, Scripting, scvmm, System Center, System Center Virtual Machine Manager, Virtualization, WAP, Windows Azure Pack, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: How To Need to learn the basics of managing Hyper-V? Aidan Finn gives us the run-down on the most important Hyper-V management tasks. Just like with other virtualization and cloud platforms, there are many ways to manage Hyper-V. The choices depend on how big your installation is, what licensing you have purchased, how much automation you want to use, and if you have leveraged self-service. I will explain different administration options that are available from Microsoft in this article. Please note that other companies such as 5nine and Veeam also offer administration tools for Hyper-V. Related: What are Hyper-V Protected Networks? Hyper-V Management Basics for Small to Medium Deployment Hyper-V Manager is the basic administration tool that is included in Windows Server and Windows 8/8. 1 Pro/Enterprise. We normally use Hyper-V Manager for the following scenarios: Managing a small number of hosts Configuring host settings Creating and managing virtual machines on non-clustered hosts Troubleshooting a host It's typically bad practice to regularly log into hosts to manage them. You should enable Hyper-V Manager on your PC to manage your hosts. Not only is this a better practice, but it also makes administration quicker and easier. If you're working in a business that's using old technologies, such as Windows 7, then you can deploy a Windows Server 2012 RDS server, install Hyper-V Manager on it, and publish the application to Hyper-V administrators. This makes deploying Windows 8. 1 for IT seem much easier and more economical. Using Hyper-V Manager to control host settings. (Image: Aidan Finn) Note: You must use a version of Hyper-V Manager that is compatible with the hypervisor version. For example,... --- ### 9 Essential IT Job Skills for 2015 > What IT job skills will be in demand for 2015 and beyond? The Petri IT Knowledgebase takes a look at what's on the horizon. - Published: 2014-08-04 - Modified: 2024-11-19 - URL: https://petri.com/9-essential-it-job-skills-for-2015/ - Categories: Windows Server - Article Type: Opinion Looking to enhance your IT job skills? Jeff James take a look at where the hot IT jobs might be for 2015 and beyond. The IT industry is in a time of transition these days, with cloud computing, the bring your own device (BYOD) phenomenon, and a host of other factors putting pressure on IT professionals on every rung of the corporate ladder. While industry turmoil creates stress for a lot of system administrators on the career front, that disruption also creates opportunities for those that want to invest time and effort to learn in-demand IT skills. Top IT Job Skills for 2015 Over the last few months I’ve spoken with HR consultants, hiring experts, and IT experts across the career spectrum to try and spot what the in-demand skills are for IT professionals these days. What follows is a list of nine of the hottest IT skills, especially for Windows Server-focused system administrators. What IT skills will be in demand in 2015? Let's take a look. (Image: Dreamstime) 1. Windows PowerShell The word “PowerShell” has been used so frequently at recent Microsoft conferences and events that you could be forgiven for shouting “drink! ” every time that word is mentioned. In case you've been living behind a server rack for the last few years, you'll know that Windows PowerShell is a command-line-based task automation framework that can -- using just a few lines of code and a handful of PowerShell cmdlets -- make tedious IT tasks more manageable. Microsoft is pushing PowerShell knowledge as a vital IT skill, with Microsoft’s Jeffrey Snover telling me in an interview at TechEd 2013 that... --- ### 3 Ways to Shut Down Windows 8 > Learn how to shut down Windows 8 three different ways, including using a VBS script and a Start Screen shortcut. - Published: 2014-08-04 - Modified: 2024-09-04 - URL: https://petri.com/3-ways-to-shut-down-windows-8/ - Categories: Windows 8 - Article Type: How To Daniel Petri shows us how to shut down Windows 8 three different ways, including using a VBS script and a Start Screen shortcut. Shutting down, restarting Windows, and even signing out—All of these are tasks that users need to perform almost every day. Although previous versions of Windows included a Shut Down option that was easily available through the Start menu, Microsoft's Windows 8 has done a wonderful job of making the seemingly simple task to shut down Windows 8 much more complicated. In this article, I'll show you how to easily shut down Windows 8. How to Shut Down Windows 8 In the Release to Manufacturing (RTM) version of Windows 8, you had to get to the Charms bar by dragging from right to left from the edge of the screen on your touch device. Alternatively, you needed to use a key combination WinLogo key + I, then select "Power", and then choose the required action. Windows 8 RTM Shut Down option. (Image: Daniel Petri) In Windows 8. 1, Microsoft brought back the Start button. Although the power options were more available by clicking on the power icon on the top-right corner next to the user name, this doesn't include all options. Instead, you need to move your mouse all over the screen just to get to it. Windows 8. 1 shut down menu. (Image: Daniel Petri) Silly. There is another option in Windows 8. 1. Right-click the Start button and select "Shut down or sign out" from the context menu. You can also get there by clicking the WinLogo + X key combination. Windows 8. 1 context-sensitive shut down menu. (Image: Daniel... --- ### What are Hyper-V Protected Networks? > What are Hyper-V Protected Networks? Aidan Finn answers that question and presents some scenarios when you should use them. - Published: 2014-08-04 - Modified: 2024-09-04 - URL: https://petri.com/what-are-hyper-v-protected-networks/ - Categories: Hyper-V - Tags: Failover Clustering, High Availability, Hyper-V, networking, NIC Teaming, virtual machine, Windows Server 2012 R2, WS2012 R2 - Article Type: Overview Learn when you may want to use the Hyper-V protected network feature to protect virtual machines connected to your physical network when there's an unexpected network outage. In the latest of my series of articles on lesser known Hyper-V features, I'm going to teach you about the Hyper-V protected networks feature. To be honest, I had completely overlooked this feature myself, even though I look for things like this when Microsoft releases a new version of Hyper-V. This new feature keeps virtual machines connected to your physical network when there is an unexpected network outage. Traditional Network Protection When we decide that a virtual machine must have fault tolerant networking, we normally choose to deploy a network configuration as depicted below. Two or more NICs are connected to different top-of-rack (TOR) access switches. Those NICs are teamed to give load balancing and failover (LBFO). A virtual switch is connected to that NIC team and then virtual machines connect to that virtual switch. The end result is that virtual machines have a fault tolerant network connection, where the virtual machines stay online if a single TOR switch or a single NIC fails. Using a host NIC team to protect virtual machine network connectivity. (Image: Aidan Finn) Although this design has been around for years and is considered good practice, times are changing. There are some data centers where this design might not be considered suitable, or it might not offer the right kind of fault tolerance. The following two examples are scenarios where this design wouldn't be suitable: Fault domain: In this scenario, a data center is concerned that all of the TOR switching in... --- ### US Judge rules against Microsoft in email privacy case > In the Microsoft email privacy case, NY district judge Loretta Preska has ruled against Redmond. Aidan Finn gives us his take on the news. - Published: 2014-08-01 - Modified: 2024-09-04 - URL: https://petri.com/us-judge-rules-against-microsoft-email-privacy-case/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: News In the Microsoft email privacy case, NY district judge Loretta Preska has ruled against Redmond. Aidan Finn gives us an Irish IT perspective on the news. In a long running and public battle, a ruling from US district judge Loretta Preska has potentially driven a stake through the heart of American-owned cloud computing when she ruled that Microsoft must turn over emails stored in an Irish data center to the US Federal Bureau of Investigation (FBI). This is more than just a Microsoft email privacy case; this was a test case that will determine what will happen to the US cloud industry and cloud computing as a whole. The Microsoft Email Privacy Case: Fears about Cloud Computing There has been much debate about privacy versus cloud computing since this deployment model first started to make waves in 2007. Most people in the USA probably never heard anything about it; that’s because the rest of the world was concerned about aggressive US government agencies that have been known to abuse laws to advance their goals (institutional or personal), and perhaps abuse their legislative powers to commit corporate sabotage or spying. The revelations of Edward Snowden did not help. Has the Loretta Preska decision in the Microsoft email privacy case threatened future cloud growth? (Image: Dreamstime) The primary fear was that US government agencies would use laws to force US-owned hosting companies to turn over personal or private information. This is where I’ve witnessed an Amazon evangelist claim that their solution was to place data centers around the world. US laws do not care about international boundaries; if Amazon, Google, Microsoft, or Honest Boston Bob’s... --- ### Share Office 365 Documents with OneDrive for Business > Learn how to share Office 365 documents using Microsoft OneDrive for Business, including sharing with the iPhone and Android apps in this handy how-to guide. - Published: 2014-07-31 - Modified: 2024-11-19 - URL: https://petri.com/share-office-365-documents-onedrive-business/ - Categories: Microsoft 365 - Article Type: How To Theresa Miller shows us how to share Office 365 documents using Microsoft OneDrive for Business and configure the OneDrive and OWA mobile apps. So you've signed into your new Office 365 business account, and you notice that there's an option on the screen for OneDrive. Formerly known as Microsoft Skydrive, Microsoft OneDrive can be very useful as a cloud-based document sharing solution for Office 365 users. This article will give you a step-by-step tutorial on how to use OneDrive for Business to upload and share Office 365 documents, and we'll also walk you through how to access that document using an iOS device. Related: Sync Office 365 to OneDrive for Business This document assumes you are using IOS; however, please note that even if you have an Android device the process will be conceptually similar. Uploading Documents from your PC to Microsoft OneDrive 1. Sign in to Office 365, and you'll notice several options at the top of the screen. To start exploring document sharing via Office 365, you will need to click on OneDrive.  Once you're logged in to OneDrive, the following screen options will appear. Note: When browsing you may notice there is a similar look and feel to SharePoint 2013. This is because OneDrive was developed on cloud-based SharePoint technologies. 2. Double-click on the "Shared with Everyone" folder in the middle of the screen. 3.  Click Upload in the middle of the screen to beginning uploading documents in One Drive. 4. Click the Browse button to find the file you wish to upload. 5. Choose the document you want to upload and then choose open. 6. Fill in the Version... --- ### Deploy a SharePoint Farm in Microsoft Azure > Learn how to quickly deploy a SharePoint farm in Microsoft Azure using this handy Ask an Admin tutorial by Russell Smith. - Published: 2014-07-31 - Modified: 2024-09-04 - URL: https://petri.com/deploy-a-sharepoint-farm-in-microsoft-azure/ - Categories: SharePoint 2013 - Tags: Azure, cloud computing, SharePoint, Windows Server - Article Type: How To Need to get a SharePoint farm into the cloud? Learn how to quickly deploy SharePoint in Microsoft Azure using this handy tutorial by Russell Smith. In this Ask the Admin, I'll show you how to deploy a SharePoint farm in Microsoft Azure, including all the necessary servers and components, in just a few clicks! Microsoft Azure Resource Groups allow vendors and organizations to collect resources used to provision line-of-business applications and easily manage the entire lifecycle of the group. While I'm not going to cover Azure Resource Group functionality in detail in this article, I want to show you how this is used in the new management portal that lets users provision an off-the-shelf SharePoint farm in a few easy steps. Provision a SharePoint Farm in Microsoft Azure If you are not familiar with the new management portal, which is currently in preview, you can access it either by signing on directly using your Azure subscription. You can also access the new portal from the menu in the top-right corner of the old management portal by clicking Switch to new portal. Once the new portal has opened, click + NEW in the bottom left. In the NEW panel that slides in from the left, scroll down the list of available items and select SharePoint Server Farm. In the Create a SharePoint Farm panel, enter a name for the new resource group in the RESOURCE GROUP field. Continue by adding an administrator username and password in the appropriate fields. If you want to configure a highly available farm, consisting of two domain controllers, three SQL Servers and four SharePoint servers, check Enable high... --- ### What is Windows Server 2012 R2 Dynamic Quorum? > Learn about Windows Server 2012 R2 Dynamic Quorum in this introduction by Microsoft MVP Aidan Finn. - Published: 2014-07-30 - Modified: 2024-09-04 - URL: https://petri.com/what-is-windows-server-2012-r2-dynamic-quorum/ - Categories: Windows Server 2012 - Tags: Failover Clustering, Hyper-V, Windows Server 2012 R2, WS2012 R2 - Article Type: Overview Windows Server 2012 R2 introduced a lot of new storage features, and Microsoft MVP Aidan Finn introduces us to Dynamic Quorum in this helpful introductory article. In "Windows Server Failover Clustering: Why Cluster Quorum Matters," I explained how a Windows Server Failover Cluster uses quorum to decide if or how the cluster should remain operational if it is partitioned by a network problem. The mechanism that was most commonly used to provide quorum was rather rigid and required a lot of care in a rapidly growing environment. In this article, I'll describe what Windows Server 2012 R2 dynamic quorum is and give you my thoughts on the best way to approach it. Microsoft has placed a lot of focus on such clouds in Windows 2012 R2 and System Center, and it should be no surprise that one of the new features in Windows Server 2012 R2 (WS2012) Failover Clustering is designed to simplify quorum management. What is Quorum? A cluster is made up of several different nodes. In the case of Hyper-V, each node is a Hyper-V host, each using common storage to share virtual machine files, and each connected by networks. A NetFT driver uses these networks to enable a heartbeat signal to be transmitted between the nodes. If the cluster becomes partitioned -- in other words, if there is a network failure that divides the cluster into isolated non-communicating islands -- then the cluster needs a way to decide which partition should remain active and host services, and which partitions should temporarily drop out of cluster services until the problem is resolved. Related: What's New in Windows Server 2012 R2 If we had an... --- ### Test Labs in Microsoft Azure - Six Disadvantages > Learn about some of the disadvantages of running your Windows Server test labs in Microsoft Azure. - Published: 2014-07-30 - Modified: 2024-09-04 - URL: https://petri.com/test-labs-in-microsoft-azure-six-disadvantages/ - Categories: Cloud Computing - Tags: Microsoft Azure, Virtualization, Windows Server - Article Type: How To Considering moving your Windows Server test labs to Microsoft Azure? Russell Smith outlines some drawbacks to putting your test environment in the cloud. Although we're all being encouraged to utilize the cloud for the most flexible and cost-effective means of deploying production servers, there are some important disadvantages when it comes to running test environments in the cloud. In this article I'll take a look at six disadvantages of running test labs in Microsoft Azure. About a year ago, I almost completely abandoned my office test servers in favor of the cloud. I'd always found that maintaining on-site physical servers for testing purposes is a time-consuming activity. Not only does the hardware need to be replaced every few years to stay relevant, but test labs have expanding storage needs and should be updated on a regular basis and often need reconfiguring for specific projects. First I switched to CloudShare, which is geared towards developers, but I found server performance a major weakness. So then I decided to try Microsoft Azure, which provides a more flexible system, even if it's intended for production systems. Disadvantages of Microsoft Azure Cloud Test Labs Despite all the benefits of running a test lab on Azure, there are some Hyper-V features that are not supported on Azure, along with disadvantages that are associated with running test labs in a remote datacenter. 1. Lack of Hyper-V Snapshot Support For those that have used Hyper-V, VMware or similar virtualization solutions, it's likely that you're used to taking snapshots of VMs and having the ability to roll back to a previous state. Despite being based on Windows Server and Hyper-V... --- ### Using the PowerShell get-history Cmdlet > Learn how to use the PowerShell get-history cmdlet to make a transcript of a PowerShell session in this Petri IT Knowledgebase Ask an Admin article. - Published: 2014-07-30 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-get-history-cmdlet/ - Categories: PowerShell - Tags: PowerShell, Scripting, Windows Server 2012 - Article Type: How To Russell Smith shows us how to use the PowerShell get-history cmdlet to make a transcript of a PowerShell session. Sometimes it's useful to have a record of the cmdlets that's been run in a PowerShell session, either for your own reference or if required by a third party. In this Ask the Admin, I'll show you how to use the PowerShell get-history cmdlet to get a quick rundown of your command history and how to record a session to a text file. What is the Get-History PowerShell Cmdlet? The easiest way to get a list of the commands run in a PowerShell session is to use the get-history cmdlet. Just type get-history in the PowerShell console window and press ENTER. By default, PowerShell retains the last 64 commands run in a session, but will only display the last 32 when using get-history. If you run more than 32 commands in a session, you can ask get-history to display the first block of 32 commands by specifying that it should start at command 32 and count backwards to the first command executed, using the –count parameter: ​ get-history 32 –count 32 If you'd like PowerShell to record more than 64 cmdlets in any given session, all you need to do is modify the value of the $MaximumHistoryCount variable. For example, at the command line type $MaximumHistoryCount = 500 and press ENTER to increase the count to five hundred. The PowerShell get-history cmdlet in action. (Image: Russell Smith) How to Create a PowerShell Transcript File Although the get-history cmdlet is useful, it only displays the cmdlets run and any... --- ### How to Setup a Microsoft Azure Virtual Network > Learn how to setup a Microsoft Azure Virtual Network in this short step-by-step tutorial. - Published: 2014-07-29 - Modified: 2024-09-04 - URL: https://petri.com/setup-a-microsoft-azure-virtual-network/ - Categories: Microsoft Azure - Tags: Editor's Pick - Article Type: How To Curious about virtual networking in Microsoft Azure? Learn how to setup an Azure virtual network in this short step-by-step tutorial by Jon Hassell. Alongside its platform and infrastructure as a service offerings (IaaS), Microsoft Azure comes replete with custom networking tools that make it simple to set up a virtual network and cross-boundary connections between the Microsoft datacenter and you. In this article, I'll show you how to setup a Microsoft Azure virtual network and talk about the new Azure point-to-site and site-to-site VPN. Microsoft Azure Virtual Networks Virtual networks are just that—a virtual, logical path that you can configure within your Microsoft Azure account that runs on top of the physical network in Microsoft's data centers. Virtual networks run IP only. IP address assignment is handled by DHCP, where static IPs are not supported. You would want to create an Azure virtual network for three main reasons: Customizing the IP numbering scheme used instead of accepting the default IP numbering from Microsoft, which is useful if you have an overall address corpus and want to use IP address management tools. Segregating services among virtual machines that run different tiers of a service, such as web and middle tiers. Enable virtual private networks between either a single computer on your own network or your entire on-premises network, and the Microsoft Azure data center network. Setup a Microsoft Azure Virtual Network Creating virtual networks is pretty simple: 1. Open the Azure management portal. 2. From the New menu, under Network Services, choose Virtual Network. 3. Click Custom Create (see below). Creating a new virtual network in Microsoft Azure. (Image: Jonathan Hassell)  4... . --- ### Microsoft Azure Growing Faster than Amazon, IBM, and Google in Cloud Services > Microsoft Azure is quickly catching up to Amazon Web Services according to Synergy Research Group. On August 1 it launches in Open Licensing. - Published: 2014-07-29 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-azure-growth-amazon-ibm-google-cloud-services/ - Categories: Google Cloud Platform - Tags: AWS, Azure, Cloud, cloud computing, IaaS, IBM, licensing, Microsoft Azure - Article Type: News A new report reveals that Microsoft Azure growth is helping Microsoft's cloud infrastructure as a service offering gain ground against AWS in the cloud services battle. Amazon Web Services (AWS) might still be the leader when it comes to cloud services, but a new report by the Synergy Research Group suggests that this lead might not last for long. Microsoft Azure is growing fast, and Microsoft will likely see more Microsoft Azure growth when Microsoft Azure in Open Licensing launches on August 1st, 2014. Synergy Research Group Report Points to Microsoft Azure Growth New data for quarter 2 of 2014 that is presented by the Synergy Research Group shows that AWS is still the largest single IaaS public cloud on the market right now. However, Amazon's old claim that they are bigger than the four largest competitors combined no longer holds true. This is because Microsoft Azure is now the fastest growing cloud infrastructure services offering. The diagram below compares the growth of IaaS clouds owned by Amazon, Salesforce, Microsoft, IBM, and Google in quarter 2 of 2013 and quarter 2 of 2014 (what Microsoft would call quarter 4 of 2014 in their July-June financial year). AWS performed well, growing by 49%. I'm sure that executives were standing in circles patting each other on the back. But I think folks in Redmond might have broken out in a happy dance when they saw that Azure grew by a staggering 164% -- at least until the news of 18,000 Microsoft layoffs was announced. IaaS cloud growth in Q2 2013 and Q2 2014. (Image: Synergy Research Group) Even IBM's cloud services outgrew AWS by 86%... . --- ### Using PowerShell to Provision Member Servers in Microsoft Azure > Learn how to provision member servers in Microsoft Azure using Windows PowerShell. - Published: 2014-07-29 - Modified: 2024-09-04 - URL: https://petri.com/using-powershell-provision-member-servers-microsoft-azure/ - Categories: Microsoft Azure - Tags: Active Directory, Azure, cloud computing, PowerShell, Windows Server 2012 R2 - Article Type: How To Russell Smith shares a Windows PowerShell script that provisions member servers in Microsoft Azure. In this Ask the Admin, I'll show you how to provision member servers to an existing domain in Microsoft Azure using PowerShell. In my Petri IT Knowledgebase article, "Provisioning of Domain Controllers in Azure using PowerShell," I showed you how to use PowerShell to provision domain controllers in Azure with a single click. Now that you can quickly create a new Active Directory domain in Azure, I'll show you how to provision a new member server using a couple of simple commands. Windows PowerShell Script Pre-Requisites Before you can use the code included in this article, you will need to have an Azure subscription, install the PowerShell tools for Azure and set up a secure connection to your subscription as described in "Setup Windows Azure PowerShell Management. " Before diving in, there are several other considerations: The script assumes that you will deploy each new VM to a unique cloud service. The script has been tested on Windows 8. 1 Update 1, so it may not work with earlier versions of PowerShell. The script should be run as a local administrator. Running the script in Windows PowerShell ISE. (Image: Russell Smith) Running the PowerShell Script In this script we are going to provision a new VM that will be a member server of the ad. contoso. com domain, which is already running in Azure. I have a virtual network (Contoso) and subnet (Subnet-1) pre-configured. Domain controllers (DCs) already set up must be running in Azure. Setting up variables After specifying... --- ### Improvements I Want to See in the Next Version of Hyper-V > Aidan Finn outlines the top features and improvements he'd like to see in the next version of Hyper-V. - Published: 2014-07-28 - Modified: 2024-09-04 - URL: https://petri.com/improvements-i-want-to-see-in-next-version-of-hyper-v/ - Categories: Hyper-V - Tags: administration, DR, HVR, Hyper-V, Hyper-V Replica, networking, scvmm, Shared VHDX, storage, System Center, System Center Virtual Machine Manager, VHDX, vRSS - Article Type: Opinion Aidan Finn serves up a wish list of the top features and improvements he'd like to see in the next version of Hyper-V. I have been working with the current release of Hyper-V since the first preview for Windows Server 2012 R2 was released. My job is unusual because I don't work with production systems very often. Instead, I spend most of my time diving deep into technology features, experimenting, learning, and then evangelizing or teaching possible solutions to Microsoft partners.   In my line of work, I inevitably come across Hyper-V features and functionality that I would like to see improved (or added) to the next version of Hyper-V.  I also get feedback from customers who are at the coalface every day.  As a result, I've built up a list of things that I would like to see in the next version of Hyper-V. Some of these are Hyper-V features, some are Windows features that affect Hyper-V, and others are bolt-on solutions. Related: Live Exporting Windows Server 2012 R2 Hyper-V VMs Is there anything not on this list that you'd like to see added or changed? If so, why don't you post below? Although it's too late to affect the vNext release of Windows Server, we might be able to impact the next release. A New Hyper-V Management Console We have been using two MMC utilities to manage Hyper-V since the release of Windows Server 2008. The Hyper-V Manager is used to directly manage host configurations, and it is also used to manage virtual machines on non-clustered hosts. The Failover Cluster Manager is used to manage virtual machines on clustered hosts and, it's... --- ### 10 Essential VMware Management Tools > A collection of 10 useful VMware management tools to help IT professionals administer VMware infrastructure more effectively. - Published: 2014-07-28 - Modified: 2024-12-03 - URL: https://petri.com/10-essential-vmware-management-tools/ - Categories: VMware - Tags: Editor's Pick - Article Type: Overview Stuart Burns presents 10 useful VMware management tools to help manage and monitor your VMware infrastructure more effectively. Any VMware administrator worth his or her salt has a grab bag of useful tools and scripts to make administration easier, so much so that this list of tools usually follows them between jobs. Below is a list of what I'd consider to be 10 essential VMware management tools I personally use on a day-to-day basis as a VMware administrator. 1. RVTools RVTools is a tiny free tool that allows an administrator to easily interrogate and report on a VMware infrastructure. It will collect just about all the information you require, displaying it in a series of useful tabs. What is exceptionally useful is that RVTools allows the export of the data in both CSV and Excel formats for manipulation of data if needed. It is an ideal way to get a list of virtual machines in a cluster or vCenter in one easy step. It lets someone do exactly the same with hosts and pretty much every reportable item you could possibly need. It gives loads of information, perhaps too much, about a host, cluster or VM in an easily exportable list. One really useful function is that RVTools has a special tab for problem machines that will show any machines that don't meet VMware best practice or have serious issues, such as inconsistent machine names, large snapshots, zombie virtual machines and many other potential issues. RVTools is free tool that is used to interrogate and report on a VMware Infrastructure. (Image: Stuart Burns)... --- ### 4 Useful Features of Windows 8 File Explorer > Learn about four great features found in the new ribbon UI in Windows 8 File Explorer. - Published: 2014-07-25 - Modified: 2024-09-04 - URL: https://petri.com/4-useful-features-windows-8-file-explorer/ - Categories: Windows 8 - Tags: file management, Windows 8, Windows Server 2012 - Article Type: How To Russell Smith tells us about four great features found in the new ribbon UI in Windows 8 File Explorer. In this Ask the Admin, I'll show you some of the most useful features in Windows 8 File Explorer, which is the updated version of Windows Explorer in Windows 8.  The ribbon UI has been a part of Microsoft's Office suite for some years now, and after some initial resistance, it now seems to have won favor with most users. Windows 7 introduced the Office style ribbon to the Wordpad and Paint applications, but stopped short of adding it to Windows Explorer. Unless you've been living under a rock for the past seven years, you have probably used the ribbon UI that was introduced as part of Office 2007. The ribbon has since crept into parts of Windows 7 and is now featured in the Windows 8 File Explorer. The Windows 8 File Explorer Ribbon UI With traditional menus that are seen in most Windows applications before 2007, many features are hidden out of view most of the time. The ribbon UI aims to put that right and exposes useful functionality. 1. Windows 8 Home Tab Open File Explorer in Windows 8, either by pressing WINDOWS+E or using the folder icon on the desktop taskbar, and you'll see the default Home tab in the ribbon. Most of the buttons on the Home tab are unavailable until you select a file or folder in the main File Explorer window. Once a file is selected, you'll see many functions that were previously only accessible either via keyboard shortcuts or by... --- ### How to Reserve Public Virtual IP Addresses in Microsoft Azure > Learn how to create a reserved Public Virtual IP address (VIP) in Microsoft Azure with this helpful how-to article by Russell Smith. - Published: 2014-07-24 - Modified: 2024-09-04 - URL: https://petri.com/how-to-reserve-public-virtual-ip-addresses-in-microsoft-azure/ - Categories: Microsoft Azure - Tags: Azure, cloud computing, Editor's Pick, Security, Windows Server 2012 - Article Type: How To Russell Smith shows us how to create a reserved Public Virtual IP address (VIP) in Microsoft Azure with his latest Ask an Admin post. Not to be confused with the internal static IP addresses that can be assigned to Azure virtual machines, in this Ask the Admin I'll show you how to reserve public virtual IP addresses in Microsoft Azure. Microsoft Azure IP Addressing Before we look at how to reserve virtual IP addresses (VIPs) in Azure, let's quickly recap Azure IP addressing. For more information on how to specify a static internal IP address as part of a VM's configuration, see the Petri IT Knowledgebase article, "How to Easily Assign a Static IP Address in Microsoft Azure. " External Public IP Addresses The public virtual IP address (or VIP) of the cloud service hosting a VM is the IP address used to connect to the VM from the Internet. If all the VMs in a cloud service are shut down and deallocated from the Azure fabric, then the VIP assigned to the cloud service is released. At the time of writing, Azure doesn't support reserving VIPs for Affinity Group based Virtual Networks, or VMs or cloud services that already exist; although Microsoft does plan to add this functionality in the near future. Reserving Public IP Addresses Microsoft recommends that instead of reserving VIPs, you should use a DNS CNAME record to point to the DNS name of the cloud service, such as myservicename. cloudapp. net, as opposed to creating a record with the cloud service's VIP. But is some cases it's necessary to refer to a cloud service by its VIP, such as when... --- ### Test Connectivity to an Active Directory Domain Controller from a PC > Tools and techniques that can be used to test connectivity to an Active Directory domain controller from a PC. - Published: 2014-07-24 - Modified: 2024-12-03 - URL: https://petri.com/test-connectivity-to-an-active-directory-domain-controller-from-pc/ - Categories: Active Directory (AD) - Article Type: How To Daniel Petri provides some tools and techniques to test connectivity from a Windows PC to an Active Directory Domain Controller. To test connectivity to an Active Directory domain controller (DC) from a Windows PC you can use several methods, which this article will outline. Related: Provision Domain Controllers in Azure using PowerShell In most cases, domain-joined computers have established connections to at least one Active Directory DC, and if there are no errors in that computer's event log, then you may safely assume that AD connectivity functions correctly. However, in some cases, the testing computers are not members of the tested Active Directory domain, as they are either part of a stand-alone network or are located in some DMZ that prohibits connectivity to the DCs. In other scenarios, the testing computers may already be members of one AD domain, but the test has to be done to another different AD domain, just for testing purposes. Note: The purpose of this article is not to provide troubleshooting steps to AD-related issues, nor to AD-joined computers that fail to contact their DCs or lost the secure channel with their DCs. The purpose of this article is to give you tips on how to verify that you can successfully connect to a DC from a specific computer, even if it is not domain joined. Tools to Test Connectivity from a Windows PC to a DC There are several tools and methods you can use to test connectivity to an Active Directory DC. Here a few tools you should consider using: Active Directory (AD) Explorer This is a tool created by Sysinternals, which... --- ### Enable Telnet Client in Windows 8 and Server 2012 > Learn how to enable the Telnet client for Windows Server 2012 and Windows 8 through the GUI, command line, or PowerShell. - Published: 2014-07-23 - Modified: 2024-09-04 - URL: https://petri.com/enable-telnet-client-windows-server-2012-windows-8/ - Categories: Windows Server 2012 - Article Type: How To Daniel Petri shares three different ways to enable the helpful Telnet client for Windows Server 2012 and Windows 8 to meet your IT needs. The Telnet client is one of the most basic connectivity and management tools that any IT professional needs, and this article will show you how to enable Telnet client in Windows Server 2012 and Windows 8.  The Telnet client not only lets you connect to a remote Telnet server and run applications on that server, but is also useful for testing connections to remote servers, such as ones running web services, SMTP services and others. Using the Telnet client is simple enough and the use of Telnet clients has been covered in several different articles on the Petri IT Knowledgebase. The idea is that once the user has logged on, they can use a command prompt interface that can be used as if it had been opened locally on the Telnet server's console, and any command the user types is sent to the Telnet Server and executed there. The output from that command is sent back to the Telnet client. Telnet Client Options Note: There are many Telnet client tools, where many of them are freely available on the Internet. There are even smartphone and tablet versions that you can download from Google Play or the Apple Store, depending on the OS version on your mobile device. For example, PuTTY is one of the most used apps, as it can perform many types of remote connections, including to Telnet servers. How to install the Telnet Client for Windows 8 and Server 2012 The Telnet client is a feature that has... --- ### Proximal Data AutoCache Review > The Petri IT Knowledgebase review of Proximal Data AutoCache, a product that boosts read performance of virtualization storage for Hyper-V and vSphere. - Published: 2014-07-23 - Modified: 2024-11-19 - URL: https://petri.com/proximal-data-autocache-review/ - Categories: Hyper-V - Tags: Hyper-V, performance, SAN, scvmm, SOFS, SQL Server, SQLIO, storage, System Center, System Center Virtual Machine Manager, virtual machine, vmm, Windows Server 2012 R2, WS2012 R2 - Article Type: Review Aidan Finn takes a look at Proximal Data AutoCache, a product that boosts read performance of virtualization storage for Hyper-V and vSphere. The Proximal Data AutoCache is a product designed to boost read performance of virtualization storage for Hyper-V and vSphere. I first found out about this product at the Petri IT Knowledgebase author meet and greet with readers at TechEd North America 2014. While there, I met some folks from Proximal Data.  They described AutoCache, and I was intrigued. I was offered a trial of the software, so I decided to play with it a bit. What follows is my review of the product. What Does the Proximal Data AutoCache Offer? Normally your hypervisor (vSphere or Hyper-V) will read virtual machine files directly from your storage. There might be some form of caching in your storage path, which might be offered by your storage controller that is relatively small and offers minimal benefits for read performance. Or maybe you implemented tiered storage. This requires lots of SSD capacity in your storage, and it is at the far end of a network connection. Proximal Data AutoCache offers something different. You place some form of high-speed storage, such as an SSD, into your host servers. This storage will be a local read cache. A small AutoCache driver is installed into your hosts, and it splits the I/O for your virtual machines. Writes go directly to your storage as usual. However, reads can be dealt with in a few ways, including: Used to populate the read cache Read from the read cache instead of the remote storage A visualization of what AutoCache does. (Image: Proximal Data)... --- ### Provision Domain Controllers in Azure using PowerShell > Learn how to remotely provision domain controllers in Azure using PowerShell using a helpful PowerShell Remoting script. - Published: 2014-07-23 - Modified: 2024-11-19 - URL: https://petri.com/provision-domain-controllers-in-azure-using-powershell/ - Categories: Cloud Computing - Tags: Active Directory, Automation, Azure, cloud computing, domain controllers, PowerShell, Remoting, virtual machines, Virtualization, Windows Server 2012 R2 - Article Type: How To Russell Smith shares a helpful PowerShell script to provision domain controllers in Microsoft Azure. In this Ask an Admin post, we'll learn how to provision domain controllers in Microsoft Azure using PowerShell with a single click of the mouse. The cloud is supposed to make provisioning new services easier by providing organizations an 'elastic' infrastructure on which IT services can be deployed, managed and extended as needs change. But even simple tasks in Microsoft Azure, such as deploying a domain controller (DC), can be time consuming if undertaken manually with the web management portal and using Remote Desktop to complete the process. Manually provisioning a new DC usually takes about thirty minutes. This is because the Azure management console is slow and badly designed, static IP addresses must be set separately using PowerShell, and Server Manager on the new DC responds relatively slowly over a remote connection. Add to that the need to check back every few minutes to see if it's possible to proceed with the next step of the procedure, and you can see that it's not as straight forward compared to a physical on-premise server. Although there are some recipes on the web for deploying DCs in Azure using PowerShell or with Desired Configuration Management (DCM), they are often complex and not easy to adapt. I wanted to create a script that was simple and could be used as a means to learn PowerShell, so I set about creating my own solution in which I'm presenting in this article. Provisioning Domain Controllers in Azure: What the PowerShell Script... --- ### How to Change the Windows 8.1 Lock Screen > Learn how to to change the Windows 8.1 lock screen in this step-by-step tutorial by the Petri IT Knowledgebase. - Published: 2014-07-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-change-windows-8-1-lock-screen/ - Categories: Windows 8 - Article Type: How To Tire of the default Windows 8.1 lock screen image? This tutorial shows you how to change the lock screen image and enable image slideshows. Regardless of how much you use your Windows 8. 1 computing device -- whether it's a tablet, laptop, or desktop -- you'll likely see a lot of the Windows 8. 1 lock screen. It's there when you log in, and it's likely there when you're waking the device up from sleep mode. Since we see the lock screen often, why not swap out the default lock screen image and put something a bit more personalized there? So let's get started: Follow the steps below to change the Windows 8. 1 lock screen image. Note: The instructions listed here should be applicable to all versions of Windows 8. 1, including the original Windows 8. 1 and the more current Windows 8. 1 Update. Changing the Windows 8. 1 Lock Screen 1. Login to Windows 8. 1 and navigate to the Start screen. 2. The following outlines three quick ways to find your Windows 8. 1 lock screen settings: If you're using touch hardware, swipe to the left from the right side of the screen, select search, and search for "lock screen. " If you're using a keyboard and mouse on non-touch hardware, go to the Windows 8 start screen and type "lock screen. " You can also click on the search icon in the upper right corner of the screen and type in "lock screen" there as well. Finding the Windows 8. 1 lock screen settings. (Image: Jeff James) 3. In the list of search results that appear on the right side of the screen, select on Lock screen settings... . --- ### Self-Replicating DNS Forwarders Problems in Windows Server 2008/2012 > Learn how to troubleshoot self-replicating DNS forwarders problems in Windows Server 2008 and Windows Server 2012. - Published: 2014-07-22 - Modified: 2024-09-04 - URL: https://petri.com/self-replicating-dns-forwarders-problem-windows-server-2008-2012/ - Categories: DNS - Article Type: How To, Overview Need help with DNS forwarding? Daniel Petri points out some issues with how DNS forwarding is handled in Windows Server 2008/2012 that you should be aware of. In two of my previous articles this month I wrote about "Best Practices for DNS Forwarding" and "Configure DNS forwarders in Windows Server 2012 R2. " If you followed my advice and configured your DNS servers the proper way, then you may also want to read this article that deals with self-replicating DNS forwarders problems in Windows Server 2008 and Windows Server 2012. Self-Replicating Problems with DNS Forwarders When you configure DNS forwarders, the changes you made are written in the computer's local registry. Unlike the case of conditional forwarders, the forwarders' settings are not replicated between DNS servers. What you configure on one DNS server stays there. For example, you can have a physical site with two DNS servers, where one is configured as a forwarder. Then, in another physical site you can have a couple of additional DNS servers,where one of which is a forwarder. As I found out, however, there is a strange behavior that might happen when you try using multiple DNS servers, and this is something that unless you know what is causing it, may cause quite a few problems. When you are using more than one DNS server in an Active Directory-based network, it's mostly likely that your DNS server are running on the same machines as your Domain Controllers (DCs). Why? Well for one, it makes the life of an IT guy more simple. A second reason is that when you configure a DNS server on a DC, replicating the DNS... --- ### Why Blade Servers are the Wrong Choice > Aidan Finn argues that blade servers are the wrong choice for your data center, written from the perspective of a Hyper-V engineer. - Published: 2014-07-21 - Modified: 2024-11-19 - URL: https://petri.com/blade-servers-are-the-wrong-choice/ - Categories: Hyper-V - Tags: Blade, Blade Server, Cloud, Host, Hyper-V, Rack, Rack Server, Server, Virtualization - Article Type: Opinion Considering the purchase of blade servers for your IT department? Aidan Finn argues that blade servers are the wrong choice for today's data center. When you're starting a new deployment of physical servers, probably with the intention of using them as virtualization hosts, you are going to have a basic choice: do you go with blade servers or rack servers? This issue is nearly as divisive as putting pineapple on a pizza. Blade server fans will argue that blades are the only choice. Hardware resellers see large deals. And then there are those of us who have used blades in the past and understand the -- how do I say this politely? -- the challenges.  In this opinion post, I will explain to you why I think blade servers are the wrong choice for your data center. This post is written from the perspective of a Hyper-V engineer, but I think those working with other technologies may find that my reasoning spans hypervisors and operating systems. What is a Blade Server? Blade servers were an invention from a time when virtualization was still in its infancy. Deploying physical servers, with one operating system per physical machine, was the norm. As we now know, those machines were underutilized and consumed lots of space. Hardware manufacturers came up with a new solution. A chassis provides a collection of shared resources including cooling, power, networking and storage connectivity. This chassis is populated with a number of blade servers. The total number of servers contained within the chassis varies depending on the height of the blade or the manufacturer of the solution. For example, a HP... --- ### Stop Microsoft Azure Virtual Machines in Parallel using PowerShell > Learn how to stop Microsoft Azure virtual machines in parallel using PowerShell background Jobs. - Published: 2014-07-21 - Modified: 2024-09-04 - URL: https://petri.com/stop-microsoft-azure-virtual-machines-in-parallel-with-powershell/ - Categories: PowerShell - Tags: Azure, cloud computing, PowerShell, Scripting, Virtualization - Article Type: How To Russell Smith shows how to whip up code logic to stop Azure virtual machines in parallel with PowerShell. Managing virtual machines (VMs) in Microsoft Azure can be a frustrating experience using the web-based management portal. In my article "Stop or Start VMs in a Microsoft Azure Subscription Using PowerShell Loop" on the Petri IT Knowledgebase, I showed you how to stop all VMs in a given subscription using a simple loop. That method runs the Stop-AzureVM command in series against all VMs in a subscription, no matter whether they have started or not. Although the Stop-AzureVM command serves a purpose, it's kind of dumb and slow. In this Ask the Admin, I'll show you how to stop running Microsoft Azure virtual machines in parallel using PowerShell. PowerShell vs. VBScript Code Execution If you are used to automating admin tasks using VBScript, then you probably know that when a script runs, the parser doesn't wait for each command to complete before moving to the next line of code. Although this can be handy in some situations, it's hard to determine the status of a task once it's been launched. PowerShell solves this problem by moving to the next line of code only when the previous command has returned a result. That's why in a simple Foreach-Object loop as shown below, we need to wait for each Stop-AzureVM command to return a successful result, meaning until the status of the VM changes to Stopped (Deallocated), before the next VM can be stopped. As you can imagine, if you have a lot of VMs in your subscription, it can... --- ### Microsoft Replaces TechEd with Unified Technology Event for Enterprises > Microsoft Replaces TechEd with Unified Technology Event for Enterprises - Published: 2014-07-21 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-replaces-teched-with-unified-technology-event-for-enterprises/ - Categories: Windows Server - Tags: Microsoft Ignite, News - Article Type: News Long live TechEd! Microsoft has just announced that it is replacing the TechED conference with a new "Microsoft unified technology event for enterprises." Update 2: Oct 16, 2014 - 1:00pm MT - Microsoft has combined most of their tech conferences under the Microsoft Ignite banner, with the first conference slated for May 4-8, 2015 in Chicago, IL, USA. See this updated Microsoft Ignite post for details. Update 1: July 21, 2014 - 5:10 PM MT - A Microsoft spokesperson provided the following when asked for clarification of ambiguous and conflicting statements about the new conference made my various Microsoft employees: "Microsoft is bringing its events together to better serve its communities and optimize for greater audience relevance and impact. This change only affects events scheduled in calendar year 2015. This year, TechEd Europe in Barcelona 28-31 October, will proceed as planned.  You can find all relevant information in Takeshi Numoto’s blog post. We’ll share additional details, including the official event name, in the coming months. " The spokesperson also said she "... can’t confirm specifics on whether the event in May 2015 will be called 'TechEd' but I’ll have more to share on the naming in the coming months. " Original post below. After several months of silence on the status of  Microsoft TechEd 2015, a post by Microsoft events Technical Evangelist Denise Begley on Microsoft's Channel 9 confirmed that Microsoft TechEd will be replaced by Microsoft’s Unified Technology Event for Enterprises, a new Microsoft technology conferenced which has become informally referred to as MUTEE since the announcement. Microsoft Replaces TechEd with Unified Technology Event for Enterprises The news was also confirmed by an official post on the Microsoft Office blog by... --- ### Controlling SMB Multichannel in Windows Server 2012 R2 > Learn about controlling SMB Multichannel and SMB 3.0 through the use of smart design, SMB Multichanel constraints, and SMB bandwidth limits. - Published: 2014-07-18 - Modified: 2024-11-19 - URL: https://petri.com/controlling-smb-multichannel/ - Categories: Hyper-V - Tags: Hyper-V, networking, RDMA, Scale-Out File Server, SMB, SMB 3.0, SMB Direct, SMB Multichannel, SOFS, storage, Windows Server 2012 R2, WS2012 R2 - Article Type: How To Our two-part series on SMB 3.0 and SMB Multichannel concludes with a discussion of smart SMB design, SMB Multichannel constraints, and SMB bandwidth limits. In "Managing SMB Multichannel in SMB 3. 0," I discussed managing SMB Multichannel and explained how SMB chose NICs for data transfer if there was more than one option between the SMB client and the SMB server. Sometimes SMB 3. 0 might choose NICs that you didn’t want it to use or it might use too many NICs. In this article, I'll explain how to control SMB multichannel and avoid those potential issues throughout design. I'll also show you how to limit the bandwidth that SMB 3. 0 can use when NICs are shared. Controlling SMB Multichannel through Smart Design In the first article of this series, I showed a problematic example design. You can review this example design in the image below. The design was deployed by System Center Virtual Machine Manager (SCVMM) administrators that thought they needed a physical management NIC. When the hosts were tested, the administrators found that all SMB 3. 0 storage traffic went through the management NIC, instead of the intended, management OS virtual NICs. Note: Refer to the first article in this series to learn how SMB 3. 0 chooses available paths from the SMB client and the SMB server, along with learning detailed information on NIC ordering. Incorrectly designed SMB Multichannel storage. (Image: Aidan Finn) The best way to prevent SMB 3. 0 from using the physical management NIC is to design the host correctly. When designing the logical switch, you can actually designate a virtual NIC as the management NIC. It's a bit tricky... --- ### Configure DNS forwarders in Windows Server 2012 R2 > Learn how to configure DNS forwarders in Windows Server 2012 R2 using the Windows GUI and the command prompt. - Published: 2014-07-17 - Modified: 2024-09-04 - URL: https://petri.com/configure-dns-forwarders-windows-server-2012-r2/ - Categories: DNS - Article Type: How To In part two of our series on DNS forwarding, learn how to configure DNS forwarders in Windows Server 2012 R2 using the Windows GUI and the command prompt. In the first article in our series on DNS forwarders, we looked at some best practices for DNS forwarding. In this second article I'll show you how to configure a DNS server with forwarders in Windows Server 2012 R2. As always with Windows, you can change, add, and remove forwarders by using either the Windows GUI or the command prompt. I've listed steps on how to configure a DNS server to use forwarders using both the Windows GUI and the command prompt below. Configure a DNS server to use forwarders using the Windows GUI 1. Click Start, point to Administrative Tools, and then click DNS. Note: You can also type "DNS" without the quotes in the Start page, and it will find it for you. 2. Open DNS Manager. Note: To use DNS Manager (and other administrative tools) on a server that does not have the DNS role installed on it, you must install the Remote Server Administration Tools (RSAT) suitable for your OS (the equivalent of adminpak. msi in Windows Server 2003/XP). See our articles on how to install RSAT for Windows 7 and Windows 8 for more information on how to download, install, and configure the RSAT tools on those clients. 3. In the console tree, click on the applicable DNS server, usually it's the same as the server you're logged on to. 4. Right-click and select "Properties". Note: You may also double-click on the "Forwarders" item in the right pane. 5. On the Forwarders tab click "Edit". Note: If... --- ### Best Practices for DNS Forwarding > Daniel Petri explains DNS forwarding best practices contrasting DNS forwarder to root hints, offering advice on how to use DNS Forwarding effectively. - Published: 2014-07-17 - Modified: 2024-09-04 - URL: https://petri.com/best-practices-for-dns-forwarding/ - Categories: DNS - Article Type: How To, Overview Need to know what a DNS forwarder is? Daniel Petri compares it to root hints, and then offers some best practices on how to use DNS forwarders effectively. Q: What is a DNS Forwarder? In Domain Name System (DNS) terms, a DNS forwarder is a DNS server that is used to forward DNS queries for external DNS names to DNS servers outside that network. It does it to DNS queries that it cannot resolve locally, meaning DNS queries that it has no personal knowledge of. By using DNS forwarders you can improve the efficiency of name resolution for the computers in your network that query for DNS names outside your network (such as names on the Internet). Windows-based DNS servers come pre-installed with an automatic method of querying Internet names using a method called "DNS Root Hints. " Once you install the DNS role on a Windows-based server the Root Hints will be automatically added, and practically speaking, will allow you to resolve any Internet name as long as you have Internet connectivity for that server and there is no firewall rule that blocks it from querying those servers. You do not have to perform any additional configuration. You can find an updated list of root hints at ftp://ftp. rs. internic. net/domain/db. cache. A sample listing of root hints from ftp://ftp. rs. internic. net/domain/db. cache. (Image: Jeff James) When forwarders are configured on a DNS server, when it receives a DNS query for a name for which it is not authoritative, meaning a query outside the scope of its control, one it has no knowledge of, the server will forward the request to whatever forwarder(s) were configured on it, instead of using root hints. Forwarders will always take... --- ### Microsoft to Cut 18,000 Jobs in Largest Layoff Ever > Newly-announced Microsoft job cuts will impact up to 18,000 Microsoft employees within the next year. - Published: 2014-07-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-job-cuts-18000-largest-reduction-corporate-history/ - Categories: Windows Server - Tags: Microsoft, News - Article Type: News Microsoft CEO Satya Nadella announced this morning than the company would layoff up to 18,000 employees within the next year. Update: July 17, 2014 (8:22am MT) - Added details from and link to Stephen Elop's email to Nokia employees. As my colleague Blair Greenwood mentioned in her post yesterday about imminent Microsoft job cuts, Microsoft CEO Satya Nadella has now officially confirmed -- via an email to Microsoft employees this morning that was also posted publicly in the Microsoft News Center -- that the company would "... begin to reduce the size of our overall workforce by up to 18,000 jobs in the next year. " Microsoft Job Cuts in Perspective So how does this latest round of Microsoft job cuts compare to previous layoffs at the company? The 18,000 figure makes this the single biggest layoff in Microsoft corporate history, and eclipses the previous record of 5,000 - 6,000 employees that were laid off in 2009. Nadella indicates in his memo that 12,500 of the layoffs are a result of the Nokia acquisition, specifically the integration of the Nokia Devices and Services group into the company. Nadella said that the first 13,000 employees of the 18,000 total layoffs would be notified within the next 6 months. Microsoft CEO Satya Nadella said that the layoffs were driven by two themes: Nokia Devices and Services group integration and work simplification across the larger Microsoft organization. (Image: Microsoft) While the sheer number of impacted employees -- 18,000, or roughly 13-14% of the company -- will likely garner the most headlines and attention form the mainstream media, Nadella's memo mentioned two important points that may... --- ### Managing SMB Multichannel in SMB 3.0 > Learn how to design and manage SMB Multichannel in SMB 3.0, a data protocol available in Windows Server 2012 R2. - Published: 2014-07-16 - Modified: 2024-09-04 - URL: https://petri.com/managing-smb-multichannel/ - Categories: Hyper-V - Tags: Hyper-V, networking, SMB 3.0, storage, Virtualization, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: Overview In part one of this article series, Aidan Finn shows how to design and manage SMB Multichannel in SMB 3.0, which is a data protocol that is available in Windows Server 2012 R2. SMB 3. 0 is Microsoft's data protocol that was introduced in Windows Server 2012 (WS2012). This data protocol evolved to SMB 3. 02 in Windows Server 2012 R2 (WS2012 R2). One of the features of SMB 3. 0 is SMB Multichannel, which can cause unexpected issues if left unmanaged. In this series, I will explain why you need to manage SMB Multichannel, and how you can place constraints on the feature to control different NICs it uses. In this post, I'll start by looking at how SMB selects a NIC to use. What is SMB Multichannel? SMB Multichannel is one of the features that was added in SMB 3. 0 that makes this old protocol ready for enterprise-scale and cloud-scale data flow. The role of SMB Multichannel is to allow Windows Server (and Windows client, too) to make the most of whatever network connections are available to push data as quickly as possible from a client to a server. SMB Multichannel works in two ways: Multiple streams over a NIC: SMB Multichannel is capable of sending many simultaneous streams of data across a network connection. The benefit is that SMB can fill a network, which is a good thing when you need data to go from A to B as quickly as possible. This capability overcomes limitations that are seen in previous versions of Windows when faced with large bandwidth connections. Multiple NICs: During the initial connection, the SMB client and server perform a mutual discovery of capabilities and connections. If... --- ### 9 Essential Tools for Linux Administration > Our top 9 list of tools for Linux administration, including Wget, SED, TCPdump, Nagios, SCP, Webmin, and more. - Published: 2014-07-16 - Modified: 2024-09-04 - URL: https://petri.com/9-essential-tools-for-linux-administration/ - Categories: Windows Server - Article Type: Overview Need to manage a Linux server? Stuart Burns has a list of essential Linux administration tools that will make your admin tasks a bit easier. In our ongoing Linux for Windows Server Administrators article series we've touched on Linux services and run levels, as well as Linux file system rights. Now that you know the basics, I've compiled a list of essential Linux administration tools that I use on a daily basis, as well as a few useful solutions that deserve a bit more exposure to a wider audience. Linux administration is often described as a tool building environment where the Linux administrator crafts solutions using the built-in array of tools. Most of the tools an administrator uses on a day-to-day basis are already cooked into the operating system. Linux administration by its very nature is command-line orientated. 1. Wget Wget is one of those commands that is so useful, that even Windows administrators keep ports of it available for Windows machines. Wget is invaluable when you want to download a file, especially on remote systems that don't have browsers. Grabbing a file on a system you have a secure terminal on is easy enough. Downloading is as simple as using the command "wget http://www. mywebsite. com/install. iso. " What's even better is that it supports the resume function, so any broken download connection can be recovered. 2. SED Linux as a tool building environment is very true when applied to sed. Sed is short for "stream editor. " Its simplicity belies the awesome power of sed. It can be used for a very simple find and replace on a single file using sed -e s/one/two myfile. txt that will do... --- ### Microsoft Job Cuts Announcement Imminent > Microsoft is expected to make an announcement about impending job cuts, which span the Nokia division. - Published: 2014-07-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-job-cuts-announcement-imminent/ - Categories: Windows Server - Article Type: News Microsoft is preparing to announcement job cuts that could be the largest in the firm's history. Reports suggest that an announcement could be made as soon as this week. Bloomberg recently reported that Microsoft could be announcing massive layoffs as soon as this week. The job cuts are expected to be the largest in Microsoft history, where the firm last announced 5,800 job cuts in 2009. Microsoft CEO Satya Nadella recently sent a detailed email to Microsoft employees that outlined the strategic direction for Microsoft, along with implications that big changes lies ahead. "Organizations will change. Mergers and acquisitions will occur. Job responsibilities will evolve. New partnerships will be formed. Tired traditions will be questioned. Our priorities will be adjusted... ," reads an excerpt from Nadella's email to Microsoft employees. You can learn more about Satya's email in the Petri IT Knowledgebase article, "Microsoft's Satya Nadella on Productivity Solutions Strategy. " Microsoft is preparing to announce job cuts as soon as this week. There are several different reasons why Microsoft's announcement is expected. With Microsoft's recent acquisition of Nokia in late April 2014, the company added 30,000 employees to the business, bringing the total employee head count to 127,104. As the Bloomberg report states, Microsoft is carefully analyzing the overall business to eliminate overlap between the two businesses, where the firm will likely be making cuts in engineering and marketing departments. An additional explanation for Microsoft's impending job cuts announcement is the stipulation between Microsoft and Nokia. When closing the deal, Microsoft promised that it would save $600 million annually within 18 months following the deal, which likely requires job cuts to achieve that goal. Microsoft's trading price is... --- ### Deploying VNet-to-VNet VPNs in Azure > Learn how to create a virtual network to virtual network (VNet-to-VNet) VPN to connect two virtual networks in the same or different Microsoft Azure regions or subscriptions. - Published: 2014-07-15 - Modified: 2024-09-04 - URL: https://petri.com/deploying-vnet-to-vnet-vpns-in-azure/ - Categories: Cloud Computing - Tags: Azure, Microsoft Azure, networking, virtual machine, Virtual Network, VNet-to-VNet VPN, VPN - Article Type: How To Aidan Finn shows a step-by-step process for creating a VNet-to-VNet VPN to connect two virtual networks in the same or different Microsoft Azure regions or subscriptions. In a recent Petri IT Knowledgebase article, I explained what a VNet-to-VNet Virtual Private Network (VPN) connection was and why you might deploy one in Microsoft Azure. In this step-by-step guide, I'll show you how to deploy a VNet-to-VNet VPN connection using two VNets in two different regions. My Microsoft Azure Environment First I will explain my environment, and then I'll show you how to create the VNet-to-VNet VPN connection. I have deployed two VNets in my Microsoft Azure subscription: VNet Name Region IP Address NorthEurope1 North Europe (Dublin, Ireland) 10. 2. 0. 0/16 WestEurope1 West Europe (Amsterdam, Netherlands) 10. 3. 0. 0/16 Each virtual network has one or more virtual subnets with the /24 subnet mask. I need to make sure that my VNets do not have overlapping IP addresses to allow routing, as a VPN connection will fail if they do overlap. I can also create site-to-site VPN connections from my on-premises network(s) to my connected VNets. I also need to avoid overlapping address ranges between the "sites" in this scenario. I am going to connect the two VNets, which are in two different regions, together using a VNet-to-VNet VPN to enable routing between the two otherwise isolated virtual networks. Create a Temporary Local Network A local network defines a remote network that a VNet will accept VPN connections from. We'll be creating a local network for each VNet to enable connectivity to the other VNet. Part of the description of a local network is the publicly visible virtual IP address... --- ### 5 Essential Windows Store Apps for IT Administrators > Top Windows 8 and Windows Phone 8 for IT system administrators include My Azure Dashboard, Remote Desktop, Reading List, OneNote, and LastPass. - Published: 2014-07-15 - Modified: 2024-12-03 - URL: https://petri.com/5-essential-windows-store-apps-for-it-administrators/ - Categories: Windows 8 - Tags: Azure, cloud computing, Remote Desktop, Virtualization, Windows 8, windows phone 8 - Article Type: Overview Russell Smith shares his top essential Windows 8 applications for IT systems administrators. Windows Store (Modern UI) apps have improved in both quality and quantity since Windows 8 was launched in October 2012, even if there's still room for improvement. Here are some of my top app choices for Windows system administrators. 1. My Microsoft Azure Dashboard Anyone who has used the Azure management portal to start or stop virtual machines will know how slow and painful an experience it can be. Although Microsoft is working on a new portal that's currently in preview, it doesn't yet support VM management. My Azure Dashboard, a free app for Windows 8 and Windows Phone 8 from Infinite Square, provides a simple dashboard with tiles representing VMs. You can select a tile to start or stop VMs, and pin tiles to the Start screen for quick access. The app does exactly what is says on the tin, nothing more, and although it's useful for simple start and stop operations and getting an overview, it would be nice to have the option to control multiple VMs simultaneously, and to disable the warning message that appears before each operation. 2. Remote Desktop App It's probably no coincidence that most of the best apps for Windows 8 come from Microsoft, and Remote Desktop is no exception. Although there have been apps in the past for managing Remote Desktop connections, I've never found any of them indispensable. Remote Desktop automatically remembers devices that you've recently connected to, and they're listed on the main screen as large tiles... --- ### Sync Office 365 to OneDrive for Business > J. Peter Bruzzese shows how easy it is to sync Office 365 to OneDrive for Business. - Published: 2014-07-14 - Modified: 2024-09-04 - URL: https://petri.com/sync-office-365-to-onedrive-for-business/ - Categories: Microsoft 365 - Article Type: How To J. Peter Bruzzese explains how to easily sync your Office 365 account to OneDrive for Business. Keeping track of all the different file sharing solutions you may be working with can be a pain. Whether you use DropBox, Box, or OneDrive, it can be a lot to worry about. If you have multiple devices to work with and each one runs a unique operating system, it can be a bit more confusing. If you're running Windows 8 with a Microsoft account, as opposed to a local account, you get OneDrive synced automatically to your Microsoft account, even though you may have a completely separate account for your Office 365 connection to your OneDrive for Business. We can fix that by learning how to sync Office 365 to OneDrive for Business. It may sound extreme, but this was the very scenario I faced recently. B & C Kitchens is a small business with a focus on cabinetry and custom kitchens that prides itself on being cutting-edge technologically. They found that their existing infrastructure is so diverse that the technology was working against them. When they heard that OneDrive for Business was going to offer 1 TB of storage space, they wanted in on that. The question was how to get it all set up. Elements of this integration are relatively simple: For example, if you have an Office 365 account and want to get your iPhone or iPad to work with it, then you can just download the Microsoft OneDrive for Business app, put in your user account and password, and you connect. (See... --- ### Create and Configure a File Share using Azure Files > Learn how to easily create an SMB file share in Microsoft Azure without provisioning a virtual machine with the new Azure Files feature. - Published: 2014-07-14 - Modified: 2024-09-04 - URL: https://petri.com/configure-a-file-share-using-azure-files/ - Categories: Cloud Computing - Tags: Azure, cloud computing, File and Print Services, Windows Server - Article Type: How To Learn how to easily create an SMB file share with the new Azure Files feature without provisioning a virtual machine. Transferring files between virtual machines in Azure, or between an on premise server and a virtual machine (VM) in the cloud, has been a bit of a hassle up until now. But that's all about to end with Azure Files, a new service from Microsoft that's now in preview. In this article, I'll show you how to create and connect to a file share in the cloud with Azure Files. What is Azure Files? Azure Files lets administrators create standard Server Message Block (SMB) file shares, which is the type of file shares that would be created if you set up a shared folder on Windows Server in the cloud without provisioning a file server running in a virtual machine. This allows organizations to port applications that rely on connecting to an SMB file share more easily to the cloud, and transfer files between VMs or on-site devices. Azure Files currently works on SMB 2. 1, but there are plans to upgrade it to SMB 3. 0 in the future. The Azure Files feature is billed according to file sizes, as opposed to bytes written in the case of Azure Blobs. How to Create a File Share Because Azure Files is currently in preview, you'll need to sign up and activate Azure Files to access this feature. You can add the feature to a current Azure subscription. Once the feature has been activated, you will receive a confirmation email from Microsoft. This could take a few days as the... --- ### VNet-to-VNet VPNs in Microsoft Azure > Learn why you would need to use a VNet-to-VNet VPN in Microsoft Azure, along with considerations for using one to connect virtual networks in the same or different regions. - Published: 2014-07-14 - Modified: 2024-09-04 - URL: https://petri.com/vnet-to-vnet-vpns-in-microsoft-azure/ - Categories: Cloud Computing - Tags: Azure, Microsoft Azure, networking, virtual machine, Virtual Network, VNet-to-VNet VPN, VPN - Article Type: Overview Learn the basics of Microsoft Azure's VNet-to-VNet Virtual Private Network (VPN) functionality in this handy primer by Aidan Finn. When you deploy virtual machines in Microsoft Azure, you connect them to each other and to external sources, such as the Internet, using Virtual Networks (VNet). Architects have sought ways to connect virtual machines in different vNets to enable applications to span data centers in different regions. Microsoft announced at TechEd North America that this functionality was added in Microsoft Azure. In this article, I will explain what a VNet-to-VNet Virtual Private Network (VPN) is, why you'd consider using one, and what you should consider before you start designing one. What is a Virtual Network? A VNet is the mechanism that is used by Microsoft Azure to network virtual machines. Instead of opening a helpdesk ticket to get Microsoft network engineers to create VLANs for you, Microsoft Azure uses software-defined networking (SDN) that lets you create your own networks that are made up of multiple subnets. These subnets are automatically routed to each other using the first IP address in their range. And by default, virtual networks are isolated. A VNet and subnets in Microsoft Azure (Image: Aidan Finn) How does this isolation work? Let's learn with an example. A virtual network called VNet1 is created. It has 3 subnets: 10. 0. 1. 0/24, 10. 0. 2. 0/24, and 10. 0. 3. 0/24. A virtual machine called VNet1VM01 is deployed in the first subnet with an IP address of 10. 0. 1. 1. A second virtual machine called VNet1VM02 is created in the second subnet with an IP address of 10. 0. 2. 1. Both virtual machines are able to communicate with... --- ### Why the Microsoft Upgrade Treadmill is Broken > The advent of the cloud and mobile devices have disrupted how IT departments upgrade their products. So what does that mean for Microsoft? Jeff gives his take. - Published: 2014-07-11 - Modified: 2024-09-04 - URL: https://petri.com/why-the-microsoft-upgrade-treadmill-is-broken/ - Categories: Windows Server - Article Type: Opinion Is the practice of upgrading to the latest Microsoft product upon release gone for good? Jeff argues that the traditional upgrade treadmill might be gone for good. If you've been a Windows Server administrator for a while, you've likely have gone through your share of server and client OS upgrades. Windows Server 2003 to Server 2008, and possibly even to Windows Server 2012. On the desktop side, you've likely helped more than a few users efficiently migrate from Windows XP to Windows 7 or Windows 8. The same approach applies on the server-side application realm, with Microsoft encouraging IT departments to dutifully upgrade to the latest and greatest versions of Exchange, SharePoint, and SQL Server. It's a smart business strategy for Microsoft to keep revenue from those new product updates flowing in like clockwork, and -- theoretically, at least -- it helps keep IT departments and the organizations they work for on the leading edge of IT innovation.  In essence, Microsoft hoped that organizations would keep running on a never-ended treadmill of software upgrades, locked into what has become the IT equivalent of keeping up with the joneses. Has the advent of cloud-based IT resources and the proliferation of mobile devices broken the traditional Microsoft upgrade treadmill?   I penned an article for Windows IT Pro magazine way back in 2009 in which I asked if the Microsoft upgrade treadmill was broken. My argument then was that Windows Vista was the first big stumble in the historical chain of upgrades from one OS to another, and that it "... didn't offer a compelling value proposition, so many IT pros sat on their wallets and stuck with Windows XP. "... --- ### Microsoft's Satya Nadella on Productivity Solutions Strategy > Microsoft CEO Satya Nadella details a long-term strategy on its cloud OS, hardware, and devices and services for today's mobile-first, cloud-first world. - Published: 2014-07-11 - Modified: 2024-09-04 - URL: https://petri.com/microsofts-satya-nadella-productivity-solutions-strategy/ - Categories: Cloud Computing - Article Type: Opinion Blair Greenwood covers highlights from Microsoft CEO Satya Nadella's open letter to employees, detailing the company's long-term strategy. Microsoft CEO Satya Nadella recently sent an email to all employees detailing the company’s strategy to kick off the new fiscal year. In this letter, which you can read in its entirety on the Microsoft website, Nadella elaborated on the firm's ambitions toward ubiquitous computing, where it hopes to become a leader productivity solutions in a mobile-first, cloud-first world. Nadella's email sets the stage for future discussions on Microsoft's long-term direction, as the firm is holding its Worldwide Partner Conference (WPC) 2014 conference next week in Washington, D. C. The WPC conference has traditionally been known as a place where Microsoft can easily share its goals and vision with its partners and constituents. Microsoft CEO Satya Nadella (Image: Microsoft) Nadella also made it clear that the company's "devices and services" mantra, which had previously been put in motion by former Microsoft CEO Steve Ballmer, is something that Microsoft will no longer be using. Although this change might seem alarming, Nadella reassured that Microsoft is still committed to its devices, services, and hardware, which include the Surface Pro 3, Xbox One, and Office 365. Nadella's letter also provided details on the following: Microsoft's core. Nadella succinctly stated that Microsoft's economic growth will be primarily driven by 'dual users,' or those who rely on technology for both their work and personal lives. Additionally, Microsoft is striving to serve as the number one productivity platform, where all of its services and devices are seamlessly connected. Microsoft's core mission in a mobile-first, cloud-first... --- ### Pause and Drain Actions on Windows Server 2012 R2 Clusters > Learn how to pause and drain a host of virtual machines, also learn how Windows Server 2012 R2 can move virtual machines before shutting down a clustered Hyper-V host. - Published: 2014-07-10 - Modified: 2024-09-04 - URL: https://petri.com/pause-and-drain-actions-on-windows-server-2012-r2-clusters/ - Categories: Hyper-V - Tags: Failover Clustering, virtual machine, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: Overview Make your IT administration easier with Microsoft's Windows Server 2012's ability to pause and drain clusters. A lot of time has passed since Microsoft's Wolfpack technology, the very crude failover clustering that was introduced in Windows NT Server 4. 0, Enterprise Edition in 1997. These days, we primarily use Windows Server Failover Clustering to create Hyper-V clusters to host highly available virtual machines instead of services. That means we have many more highly available roles running on much bigger clusters, and we needed to change how to work with the nodes in a cluster. Up until Windows Server 2008, clustering was a rough and specialized field.  Since then the corners have been rounded, administration has become easier, and Failover Clustering is a necessary skill for anyone working with Microsoft virtualization. Related: Live Exporting Windows Server 2012 R2 Hyper-V VMs Part of that improvement from Microsoft was the addition of pause and drain functionality in Windows Server 2012 (WS2012) that was improved and built upon in Windows Server 2012 R2 (WS2012 R2). Draining a Host of Hyper-V Virtual Machines One of the major features of WS2012 Hyper-V was the ability to perform concurrent live migrations. In combination with this new feature, Failover Clustering added the ability to queue up live migrations. For example, imagine that a host has 100 virtual machines running on it. Your hosts allow up to five simultaneous live migrations. You can select all of the virtual machines at once in Failover Cluster Manager, right-click, and select Move > Live Migration > Best Possible Node and then the magic happens: Five virtual machines will start... --- ### Share Network Resources Using Windows 7 HomeGroup > Learn how to easily share files and printers using Windows 7 HomeGroup in the latest Ask the Admin at the Petri IT Knowledgebase. - Published: 2014-07-09 - Modified: 2024-09-04 - URL: https://petri.com/share-network-resources-using-windows-7-homegroup/ - Categories: Windows 7 - Tags: Editor's Pick, networking, Printing, Windows 7 - Article Type: How To Russell Smith shares his tips for sharing files and printers with Windows 7 HomeGroup. In this Ask the Admin, I’ll show you how to share network resources using Windows 7 HomeGroup. If you've recently migrated from Windows XP to Windows 7, or are still in the process, you'll be glad to hear that it's much easier in Windows 7 and later operating systems to share and locate resources on your local network. If you've ever tried to set up a local network and share printers or files in a workgroup, i. e. with no domain controller or Active Directory, then you'll know that in Windows XP and other legacy Windows operating systems, this seemingly simple task could prove to be something of a headache. Related: Windows XP End of Support Guide Improvements in Windows 7 allow administrators and home users to share resources easily using a feature called HomeGroups. If a network is detected during setup and Home is selected as the network type, Windows 7 automatically creates a HomeGroup if one isn't detected on the local network. How Do Windows HomeGroups Work? HomeGroups use the Peer Network Resolution Protocol (PNRP), which is based on IPv6, to determine the names and IP addresses of computers on the local network. Computers can then publish resources and make them available to other devices. When a corporate user takes their domain-joined Windows 7 notebook home, if they select Home as the network type when connecting to a home network, the notebook can access printers and files shared by the HomeGroup. The domain-joined notebook is not able to share... --- ### Live Exporting Windows Server 2012 R2 Hyper-V VMs > Learn how to export a Windows Server 2012 R2 Hyper-V virtual machine, including how to live export a running virtual machine or a checkpoint of a virtual machine. - Published: 2014-07-09 - Modified: 2024-09-04 - URL: https://petri.com/live-exporting-windows-server-2012-r2-hyper-v-vms/ - Categories: Hyper-V - Tags: Hyper-V, storage, virtual machine, Windows Server 2012 R2, WS2012 R2 - Article Type: Overview Aidan Finn explains how Windows Server 2012 R2 makes it easier to export virtual machines with the 'live exporting' functionality. An export operation packages up a copy of a virtual machine so you can transport it to another Hyper-V host or cluster member and import the virtual machine. Performing that task in Windows Server 2012 R2 (WS2012 R2) is commonly referred to as "live exporting" of virtual machines. In this article, I will explain how WS2012 R2 improved how you can export virtual machines. Exporting VMs Before Windows Server 2012 R2 Before WS2012 R2 was released, you always had to shut down or power down a virtual machine to do an export of a virtual machine. This isn't great in a DevOps world, as it would be great to have actual copies of production systems that you can test without bringing down those production systems in the first place. That would be kind of ironic because the idea of getting a copy of the virtual machine is to test manipulative operations and rollback actions to ensure that production systems are not damaged. Hyper-V Virtual Machine Live Exporting WS2012 R2 brought some new functionality that the community calls a live export. This package of features enables us to do two things: Export a running virtual machine: With this feature, a Hyper-V administrator can export a running virtual machine. This is an incredibly useful feature, as you can grab a copy of a production virtual machine, make a copy of the virtual machine, import it to a host, and perform tests on the virtual machine in an isolate test network. I... --- ### Pinning a File in Tiered Microsoft Storage Spaces > Learn why and how to pin a file to a HDD or SSD tier in Windows Server 2012 R2 (WS2012 R2) Storage Spaces. - Published: 2014-07-09 - Modified: 2024-09-04 - URL: https://petri.com/pinning-a-file-in-tiered-microsoft-storage-spaces/ - Categories: Backup & Storage - Tags: HDD, PowerShell, Scripting, SSD, storage, storage spaces, Windows Server 2012 R2, WS2012 R2 - Article Type: How To, Overview Aidan Finn explains several different reasons for why you might want to pin a file in Microsoft's Storage Spaces. Microsoft Storage Spaces in Windows 8 and Windows Server 2012 R2 allows you to have two tiers of storage. Storage Spaces automatically manages the placement of blocks across storage tiers, but sometimes you will want to override the behavior and pin a file to one tier in Storage Spaces. I will show you how to do this operation in this blog post. Tiered Storage Spaces Benefits Microsoft added tiered storage to Storage Spaces in Windows Server 2012 R2. The concept is that you can merge low cost but large capacity hard disk drives (HDDs) with expensive high speed solid state drives (SSDs), giving you the best of both worlds. For example, you might place 12 x 200 GB 65,000 IOPs SSDs and 48 x 6 TB 7200 RPM HDDs into a JBOD, pool the disks and create a number of 8 column virtual disks. Each virtual disk can be tiered, consuming space from both the SSD and the HDD tiers. You get huge capacity from the 6 TB drives, but they are slow. There are two benefits that adding the SSDs will offer: Overall speed: Storage Spaces will track block usage (1 MB) of your files using a heat map. Hot blocks will be moved to the SSD tier. Cold blocks will be moved to the HDD tier. A file might reside on both tiers. The movement of blocks happens transparently beneath the file system so you won't notice anything, hopefully other than an increase in performance... . --- ### Disable Outlook Auto-Mapping for Users with Full Access Permissions > Learn how to boost Microsoft Exchange performance by disabling Outlook auto-mapping for users with full access mailbox permissions. - Published: 2014-07-08 - Modified: 2024-09-04 - URL: https://petri.com/disable-outlook-auto-mapping-for-users-with-full-access-permissions/ - Categories: Exchange Server - Tags: Exchange 2010, Microsoft Exchange, PowerShell - Article Type: How To Phoummala Schmitt shows you how to easily disable Outlook auto-mapping for users with full access permissions. Outlook Auto-Mapping was added as a feature when Microsoft Exchange Server 2010 SP1 was released. It allows Outlook 2007 SP2 and later to automatically map any mailbox where a user has Full Access permission. What this meant for users was if they had been given Full Access permissions to another mailbox, Outlook would load that mailbox automatically along with the user's own mailbox in their Outlook profile. If a user had Full Access permission to seven different mailboxes, this meant a total of eight mailboxes would be opened and accessible in Outlook. At first glance this seemed like a great idea, but as more of my users starting experiencing auto-mapping I soon found it was becoming a nightmare.   However, the release of SP2 for Exchange 2010 brought relief and allowed administrators to disable Outlook auto-mapping for users with full access permissions. How Outlook Auto-Mapping Works  The Outlook auto-mapping was quite convenient because there was no need to visit each user and modify the mailbox setup properties in their Outlook profile to add those additional mailboxes manually. All the work can be done through either the Exchange Management Console or Exchange Management Shell. Outlook Auto-Mapping works by populating the msExchDelegateListLink attribute in Active Directory with the Distinguished Name (DN) value of the user that that has been given full access. Then the Autodiscover Service takes this information and populates the AlternateMailbox attribute, which Outlook uses to open other mailboxes. However, in situations where a user had full mailbox... --- ### Using the Microsoft Azure IaaS Cost Estimator Tool > Learn about the Microsoft Azure pricing tool that provides estimates on what it costs to move physical computers or virtual machines to Microsoft Azure. - Published: 2014-07-08 - Modified: 2024-09-04 - URL: https://petri.com/using-microsoft-azure-iaas-cost-estimator-tool/ - Categories: Microsoft Azure - Tags: Azure, Cloud, Cloud Calculator, ESXi, Hyper-V, IaaS, linux, Microsoft, Microsoft Azure, Microsoft Azure IaaS Cost Estimator Tool, scvmm, Virtualization, vmware, vSphere, Windows - Article Type: Overview The Microsoft Azure cost estimator tool can help you determine what resources to move to the cloud, but Aidan Finn points out some glitches that need fixing. Update: July 22nd, 2014 - 2:47 PM - Microsoft has updated the Azure cost-estimating tool with a new version that fixes the errors that Aidan points out in this post. According to a comment by Soumit Banerjee from Microsoft, "The errors mentioned are primarily due to localization issues, given the v1. 0 of the application intended for use in the US only. However, we have since fixed the localization issues, and are eager to hear about your observations from testing the tool. "  "How much will it cost to run my virtual machines in Azure? ” I have heard that question so many times and I’ve always had to respond with "I have no idea. " That was the truth, as modern public clouds have a utility-based billing system that makes smartphone plans look simple. Have a look at the Microsoft Azure pricing calculator and you’ll end up needing a bandage to cover the damage you’ve done to your head from scratching. To help simplify things, Microsoft has released a new tool called the Microsoft Azure (IaaS) Cost Estimator Tool. This should be a great tool. I’ll walk you through using this tool in this article and then have a look at a problem I noticed. What Does the Microsoft Azure Cost Estimator Tool Do? The Microsoft Azure (IaaS) Cost Estimator Tool is installed on a machine that will be left running for an extended period, such as a dedicated virtual machine, a PC exempt from... --- ### Using Libraries in Windows 7 > Learn how to manage the default libraries and create your own in Windows 7. - Published: 2014-07-07 - Modified: 2024-09-04 - URL: https://petri.com/using-libraries-in-windows-7/ - Categories: Windows 7 - Tags: Editor's Pick, file management, Windows 7 - Article Type: How To, Overview Russell Smith provides helpful tips on how to add or remove library locations in Windows 7. In Windows 7, libraries are collections of folders that replace My Documents and other default folders that are familiar to Windows XP users.  In this Ask the Admin, I'll explain how libraries work in Windows 7 and show you how they can be managed using Group Policy. If you have recently migrated to Windows 7, you should note that while the My Documents folder still exists in user profiles, documents are accessed from Windows Explorer or the Start menu via the Documents library. The same is true for the music, pictures and videos folders. If you open the Documents library in Windows 7, notice that not only does it include the user's My Documents folder, but also the Public Documents folder. In fact, you can add any local or network folder to a library. Add or Remove Library Locations in Windows 7 Let's have a look at how to manually add or remove folders from a library. Log in to Windows 7. Open Windows Explorer by pressing the WINDOWS key and E simultaneously. In the left pane of Windows Explorer, expand Libraries by clicking the small + icon to the left. Under the Libraries node, right click Documents and select Properties from the menu. To add a folder to the Documents library, click Include a folder in the Documents Properties window. Select the folder you want to add to the Library and click Include folder. The folder will now appear under Library locations in the Documents Properties dialog. To remove... --- ### Create a NIC Team Inside of a Hyper-V Virtual Machine > Learn how to create a NIC team inside of a Hyper-V virtual machine and when it is necessary to do so. Also learn necessary configurations for creating a NIC team. - Published: 2014-07-07 - Modified: 2024-11-19 - URL: https://petri.com/create-a-nic-team-inside-of-a-hyper-v-virtual-machine/ - Categories: Hyper-V - Tags: Hyper-V, networking, NIC Teaming, Virtualization, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: How To Aidan Finn explains when you might need to create a NIC team inside of a virtual machine. You might wonder why you might want to do it, but it is possible to create a NIC team inside of a virtual machine. In this blog post, I will explain several different reasons to create a NIC team, along with necessary configurations. Why a Guest OS NIC Team Might Be Required Normally you will never create NIC teams inside of virtual machines. A best practice is to implement what is illustrated in the figure below. A pair of physical NICs in the host are designated for virtual networking use. These two NICs are ideally plugged into different top-of-rack switches and are teamed in the management OS of the Hyper-V host. Related: Creating a NIC Team and Virtual Switch for Converged Networks The default team interface is used to connect a virtual switch. Virtual machines are connected to this virtual switch. With this design, your virtual machines get network path redundancy, where you have more than one of each physical device (NIC and top-of-rack switch) to connect the virtual machines to the network core. We don't need multiple vNICs in the virtual machines or virtual switches in the hosts because these are virtual devices that do not suffer hardware failures. A typical host NIC team for virtual machines. (Image: Aidan Finn) Reasons to Create a NIC Team Inside of a Guest OS VM What are legitimate reasons to create a NIC team inside of the guest OS of a virtual machine? There are two that I can think... --- ### Grouping and Filtering Files in Windows 7 Explorer > Learn how to use new features in Windows Explorer to better organize files and folders with grouping and filtering in Windows 7. - Published: 2014-07-07 - Modified: 2024-09-04 - URL: https://petri.com/grouping-and-filtering-files-in-windows-7-explorer/ - Categories: Windows 7 - Tags: file management, Windows, Windows 7 - Article Type: How To Learn how to efficiently organize, group and filter files using Windows 7 in this quick tutorial by Russell Smith. First introduced in Windows Vista, the ability to group and filter files in Windows Explorer allows users to organize files and folders more effectively. In this Ask the Admin, I’ll show you how to use these two Explorer features in Windows 7. In Windows XP users can sort files and folders by name, or by metadata such as the Date Modified timestamp, among many possible options. In Windows 7, users still have this option for organizing files, including the ability to add columns that aren’t displayed by default. Grouping Files in Windows 7 Windows 7 provides a couple of additional options for organizing files. Grouping allows users to segregate files by category and then optionally filter them for easier viewing. You could for instance group files by type, and then sort by size. To better understand how this works, follow these simple instructions. You will need to have some documents of different file types in your Documents library. Log in to Windows 7. Open Windows Explorer by pressing the WINDOWS key and E simultaneously. In the left pane of Windows Explorer, click the Documents library. Right click a section of empty space in Windows Explorer’s right pane and select Group by > Type from the menu. Now you’ll see the documents grouped by file type. You can use the arrows at the top left of each group to expand and collapse groups individually. At this point, we have a feature that’s not so... --- ### 3 Microsoft Exchange Administration Tasks to Perform with Windows PowerShell > Make Microsoft Exchange administration easier with Windows PowerShell. Learn how to create test data, reports, and delete email from Exchange mailboxes. - Published: 2014-07-03 - Modified: 2024-09-04 - URL: https://petri.com/perform-microsoft-exchange-administration-tasks-with-windows-powershell/ - Categories: Exchange 2013 - Tags: Editor's Pick - Article Type: How To Make your Exchange administration tasks much easier with the help of these Windows PowerShell solutions. Many small-to-medium businesses (SMBs) and enterprises rely on Microsoft Exchange for their organizational communications system. As an Exchange administrator, there are a lot of things you can do with Windows PowerShell to make Exchange management easier. We’ve compiled this helpful list of Petri IT Knowledgebase articles from our community-vetted experts that include Jeffery Hicks and Phoummala Schmitt on task-based solutions that can be used within your Exchange environment. Generating Test Data for Exchange 2010 with PowerShell Most IT admins would agree that maintaining a test environment is an essential task. A bigger challenge is making sure that your test environment simulates the production environment as much as possible.  This challenge is much more achievable with Jeffery Hick’s solutions for simulating user logons with PowerShell. He’s also provided some great tips on how to create test data to send mail messages with PowerShell, along with advice for scaling and testing those workloads. Creating Exchange 2010 Reports with PowerShell You can simplify your Exchange reporting with PowerShell in several different ways. There's quick and easy solutions for grabbing mailbox size reports for one or multiple mailboxes, or writing some PowerShell that meets your needs. You can also dive into a single mailbox to grab meaningful statistics with PowerShell. You can also apply many of the techniques you'd use for individual mailbox statistics on a larger scale for multiple mailboxes as well. And if you're feeling ambitious, you can grab information for Exchange Server reports, too. Deleting... --- ### How to Virtualize a Microsoft Exchange Server > Steps to virtualize and deploy a Microsoft Exchange Server, along with resources for converting Exchange CAS/Hub server or existing Exchange Server Mailbox Server. - Published: 2014-07-03 - Modified: 2024-11-19 - URL: https://petri.com/how-to-virtualize-microsoft-exchange-server/ - Categories: Exchange Server - Tags: Editor's Pick, Exchange Server, Virtualization - Article Type: How To Learn how to virtualize and deploy a Microsoft Exchange Server with these easy-to-follow steps. Just about any application can be virtualized today, and we all know you can virtualize Microsoft Exchange servers. In fact, given the right deployment with proper sizing and enough disks, a virtualized Exchange environment can run great. Related: Manually Seed an Exchange 2010 DAG Database Ideally these deployments consist of new virtual machines (VMs) with a fresh install of Exchange Server followed by some sort of data migration to the new server. If you have an existing physical Exchange environment that you’re looking to virtualize, this is where things get a little grey. A physical to virtual (P2V) conversion -- the process of converting a physical to virtual machine -- is typically what is used to virtualize existing servers, but this should be treated with caution when dealing with Exchange. Virtualizing a Microsoft Exchange Server? Use a fresh VM In an ideal world, I would not recommend doing a P2V conversion on an Exchange mailbox server but instead deploy a new VM and reinstall Exchange on that VM, which gives you a clean build to work with. I have seen issues where the P2V conversion fails, is extremely slow, or corrupts the Exchange database. That is why I always advise caution when P2V is being considered. Sometimes circumstances arise, however, such as failing hardware, and you may be forced to do something quickly to keep your server running. In that situation, a P2V conversion may be your only option. Microsoft Guidance on Virtualizing Exchange Microsoft does support virtualizing... --- ### Deploying a Non-Clustered Hyper-V Host for Production Workloads > Learn how to deploy a non-clustered Hyper-V host for production environments. - Published: 2014-07-03 - Modified: 2024-09-04 - URL: https://petri.com/deploying-non-clustered-hyper-v-host-production-workloads/ - Categories: Hyper-V - Tags: deployment, Hyper-V, install, Local storage, networking, storage, Virtualization, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To In part three of this article series on building a non-clustered Hyper-V host, Aidan Finn provides tips for deploying the host for production environments. In part 1 in this article series, I discussed plans on how to build a production-ready standalone Windows Server 2012 R2 Hyper-V host. In that article, we learned how to install the management OS, update drivers and firmware, and create a NIC team. In part 2, I showed you how to enable Hyper-V and configure the host networking. In this final article for this series, I'll show you how to finalize the host and prepare it for production workloads. Updating the Hyper-V Host Did you remember to download and install the latest drivers and firmware for your physical computer from the manufacturer's website? If you are refusing to do this step, then do your client a favor by stepping away from the computer, opening a job hunting site, and begin searching for new job opportunities. If you forgot to do this update, then do it now before proceeding! Run Windows Update and reboot until there are no remaining updates to install. You'll need to configure the following: Computer Name: Edit the system settings to give the management OS a computer name. This is your host's identity on the network. Domain: Join the management OS to a domain to make management much easier. Remote administration: Enable Remote Desktop access so you can log into the management host from your PC. And then I do what most fail to do by installing the recommended updates for Hyper-V. These updates are not included in Windows Update but they do fix bugs... --- ### How to Enable Office 365 Multi-Factor Authentication > Learn how to enable multi-factor authentication in Office 365 for enhanced security in this step-by-step tutorial by J. Peter Bruzzese. - Published: 2014-07-02 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-office-365-multi-factor-authentication/ - Categories: Microsoft 365 - Article Type: How To Learn how to enable multi-factor authentication for Office 365 in this how-to article (with accompanying video) by J. Peter Bruzzese. I can't tell you how often I receive an email from someone I haven’t talked to in forever thinking “Hey, they thought of me! ” only to find out they had their Yahoo or Gmail account hacked and they want to tell me about it. Their email to me says something like “You’ve got to see this! ” with some bogus link. And no matter how often you tell folks to come up with stronger passwords they still use the same old passwords that are easily guessed by the bad guys.  A partial answer to that problem is to use multi-factor authentication, and Office 365 have been recently updated to enable that functionality. Most banks offer multi-factor authentication -- which requires a password as the first factor of authentication, and then a phone call, text message, or other contact method to confirm your identity, hence the "multi-factor" description -- and now most email providers do as well, including Office 365 (as of February 2014). Office 365 Multi-Factor Authentication Setting up multi-factor authentication in Office 365 is relatively easy, so I've outlined the steps below, followed by a short video embedded farther down in this post that visually demonstrates the same procedure. From the perspective of an Office 365 administrator, it really comes down to enabling/disabling the feature. Once end-users are enabled they are prompted to choose their multi-factor method of choice (a phone call, a text message, an app notification). Multi-factor authentication for Microsoft cloud-based services. (Image: Microsoft) The value here... --- ### Deploying a Non-Clustered Hyper-V Host: Enabling the Hyper-V role > Part two of a multi-part series on deploying a non-clustered Hyper-V host. This installment focuses on enabling the hyper-V role. - Published: 2014-07-02 - Modified: 2024-09-04 - URL: https://petri.com/deploying-non-clustered-hyper-v-host-enabling-hyper-v-role/ - Categories: Hyper-V - Tags: deployment, Hyper-V, install, Local storage, networking, storage, Virtualization, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To In part two of our series on deploying a non-clustered Hyper-V host, Aidan shows us how to enable the Hyper-V role. In part 1 of our article series on how to deploy a non-clustered Hyper-V host, I discussed how to install the management operating system (OS), update drivers and firmware, and create a NIC team. In this article, I'll show you how to enable the Hyper-V role, where you'll also learn how to build a production-ready standalone Windows Server 2012 R2 Hyper-V host. Enabling the Hyper-V Role You're probably thinking "Finally! He's going to do the bit I want to see! " This step is quite unexciting and to be honest, I'll configure very little in the wizard that Server Manager offers. Most guides will configure those settings. The wizard gives you a very basic configuration. Because I like to configure the little details that make a big difference with my explicit control, I usually skip most of the screens in the wizard. The first way to enable Hyper-V is to run the following PowerShell cmdlet, where the server is rebooted automatically: ​ Install-WindowsFeature Hyper-V –Restart Alternatively, you can use Server Manager to enable Hyper-V using the wizard with the following steps: Click Manage > Add Roles And Features to open the Add Roles And Features Wizard. Skip through the wizard screens, ensuring that your server is selected. Check the box to select Hyper-V in the Select server roles screen. A popup will appear asking you to confirm that it is OK to install the Hyper-V Remote Server Administration Tools. Click Add Features to confirm that this is OK. You will... --- ### Is the Modern UI in Windows 8.1 and Windows Server 2012 R2 ready for the enterprise? > Russell Smith explains why the new Modern UI introduced in Windows 8 and Windows Server 2012 R2 isn't quite ready for the enterprise. - Published: 2014-07-01 - Modified: 2024-09-04 - URL: https://petri.com/modern-ui-windows-8-1-windows-server-2012-r2-ready-for-enterprise/ - Categories: Windows 8 - Tags: Mobile App, Windows 8, Windows Server 2012 - Article Type: Opinion Is the new UI introduced in Windows 8 and Windows Server 2012 R2 ready for the enterprise? Russell gives us his take and offers suggestions for improvement. In my article Why You Should Embrace Windows 8 Apps, I set out the case for adopting Modern UI apps in Windows 8. While I'm a fan of the Windows 8 UI, there are some shortcomings that could block corporate adoption. April's update to Windows 8. 1 and Windows Server 2012 R2 saw some changes to the Modern UI that improved the experience for mouse users and brought limited desktop integration. This was enough to persuade me that I could finally use Windows Store apps as part of my daily routine. Prior to April's update the disconnect between desktop and Modern UI simply didn't suit the way I work. Shortcomings in the Windows 8 / Windows Server 2012 R2 Modern UI Now that much of what I need to do can be achieved in the Modern UI, I'd like to share my thoughts on various shortcomings that could result in a failure to achieve user acceptance in the enterprise. Modern UI File Selector The Modern UI has no equivalent of File Explorer (previously Windows Explorer) and the file selector that's part of the Windows shell, although third-party apps can be downloaded to fill this gap. When you choose to browse for a file the file selector that's offered is frustrating to use as navigation is limited to moving through the file hierarchy systematically, i. e. go forward/go up. The Modern UI file selector in Windows 8. 1 Update 1. (Source: Russell Smith) There is also no search integration, and sorting... --- ### Best Free Battery Management Apps for iPhone > Extend your iPhone's battery life with these top, free battery management apps available in the App Store. - Published: 2014-07-01 - Modified: 2024-11-19 - URL: https://petri.com/best-free-battery-management-apps-for-iphone/ - Categories: Mobile - Article Type: Overview Having problems with a depleted smartphone battery? See our top picks for battery management applications for your iPhone smartphone. In today’s networked environments, many consumers invest heavily in their preferred smartphone. We rely on smartphone applications to be more productive throughout our work and personal lives. Related: Is Apple Envy Derailing Microsoft's Smartphone Efforts? After owning several different smartphones throughout the years, I’ve found that my battery life tends to dwindle after one to two years of ownership, even for a quality smartphone. Although I’m not too surprised by the decreased battery life thanks to the wear and tear that I constantly put my phone through, it’s easy to get frustrated about the longevity of my battery life. Battery Management Solutions for iPhone With that said, there’s several different solutions to help manage our smartphone’s battery life more efficiently. In this article, we’ll take a look at free battery saving apps that you can find in the Apple App Store. Battery Doctor for iPhone This free app for iPhone provides you with a status update of your phone’s battery life. When installed on my own iPhone, the app was able to clean 14 MBs of data for better performance. The app also provides tips for potential settings that can be modified to enhance your phone’s battery life. As a plus, the apple includes an optimization task, where it can significantly reduce your memory usage, saving precious battery life. In my case, Battery Doctor narrowed my memory usage down from over 90 percent to 34 percent. Download Battery Doctor for iPhone. Battery Doctor app for iPhone. (Source: Blair... --- ### Delete email from Microsoft Exchange user mailboxes using PowerShell > How to use PowerShell to delete email from Microsoft Exchange user mailboxes quickly and safely. - Published: 2014-07-01 - Modified: 2024-11-19 - URL: https://petri.com/delete-email-from-microsoft-exchange-user-mailboxes-using-powershell/ - Categories: PowerShell - Tags: Exchange Server, Exchange Tips, PowerShell - Article Type: How To Need to easily delete email from a user inbox? Phoummala Schmitt explains how to use PowerShell to delete email from Microsoft Exchange mailboxes. How many times have you sent the wrong email to the wrong person(s) and wished that the Outlook Recall function actually worked? What about the person that does a Reply All to the "All Users" Distribution group? Every Microsoft Exchange administrator knows these things happen with startling frequency and is probably chuckling at the idea Outlook Recall is reliable. As Exchange administrators we are sometimes tasked with performing ninja operations such as a behind-the-scenes cleanup in user mailboxes, often without them knowing it ever happened. In Exchange 2010/2013, you can remove email from users' mailboxes discretely, allowing all of us Exchange administrators to be that ninja only without the black pajamas or the blood, sweat, and tears. Using PowerShell you can delete specific emails from user email inboxes in Microsoft Exchange. In the good old days of Exchange 2003/2000/5. 5, there were MFCMAPI and MDBVU32. exe, MAPI tools that can be used on an Exchange Server to aid in troubleshooting Information store issues. You could also use them to locate and delete raw objects directly from the store. Searching and deleting with this method was not an easy task and could take hours to complete depending on how many mailboxes and messages you were trying to delete. Fast forward to Exchange 2010/2013. Deleting emails is now down to a few PowerShell cmdlets, letting you finish your ninja work in a matter of minutes. The ability to perform mailbox searches can still be done through the Exchange Control Panel ( 2010) or the Exchange... --- ### Choosing an Office 365 Subscription Plan > Learn about all the available Office 365 subscription plans for consumers, businesses, and enterprises. - Published: 2014-06-30 - Modified: 2024-09-04 - URL: https://petri.com/choosing-an-office-365-subscription-plan/ - Categories: Microsoft 365 - Tags: Editor's Pick - Article Type: How To Looking to make the move to Office 365? Learn about all the available Office 365 subscription plans and what they have to offer. Update: (July 9, 2014) - Added new info about Office 365 SMB pricing plan changes to Business section from Microsoft Worldwide Partner Conference 2014. Office 365 has quickly become a big business for Microsoft, with Microsoft Corporate Vice President Brad Anderson recently stating that "Office 365 is the fastest-growing business in Microsoft history. " That's a bold claim to make, but it's clear that Office 365 is having a big impact on the consumer and business ends of the market. Office 365 Subscription Plan Options As quickly as Office 365 is being adopted, one of the most common complaints I've heard from readers about Office 365 is that the sheer number of subscription plans and options can be overwhelming. Microsoft has streamlined and improved their messaging and marketing on this point, and the current Office 365 subscription landscape is much easier to understand than it was 3 years ago when Office 365 first launched. Microsoft breaks Office 365 subscription plans into five main categories: Consumer, Business, Enterprise, Education, and Government. I've included details of the consumer, business, and enterprise Office 365 subscription plans in this post, and we'll be adding details of the Education and Government Office 365 subscription plan offerings to this article in the near future. We'll also keep updating this page as Microsoft's Office 365 subscription plans grow and evolve, so be sure to bookmark this page for future reference. Consumer Microsoft has a number of variants of Office 365 available for home and personal use. Although... --- ### How to Deploy a Non-Clustered Hyper-V Host > How to deploy a non-clustered Hyper-V host running Windows Server 2012 R2 as the management OS. Part 1 of a series on preparing a production ready standalone Hyper-V host. - Published: 2014-06-30 - Modified: 2024-11-19 - URL: https://petri.com/deploying-a-non-clustered-hyper-v-host/ - Categories: Hyper-V - Tags: deployment, Hyper-V, install, Local storage, networking, storage, Virtualization, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To Learn how to deploy a non-clustered Hyper-V host running Windows Server 2012 R2 as the management OS. In a previous article, Designing a Non-Clustered Hyper-V Host, I discussed how to design a simple, non-clustered Hyper-V host. This article is a step-by-step outline of how to install that host, running Windows Server 2012 R2 as the management operating system (OS). Too many posts on the Internet just through a click-click-click experience in a wizard that usually results in a host I would never use in production. Instead, I have written a series of posts at the Petri IT Knowledgebase that walk through preparing a production-ready standalone Hyper-V host. This post shows you how to deploy a non-clustered Hyper-V host, while the next post in this series will show you how to enable Hyper-V and get that new non-clustered host ready for production. The Objective: Install a Non-Clustered Hyper-V Host The host in this example is of a very simple design. As in my previous post there will be two drives. The management OS will be installed on the C: drive. This is the operating system that will get the host up and running, and will be used to manage the host once the type 1 hypervisor is enabled and slips itself directly onto the hardware, beneath the OS. The D: drive is where the virtual machine files are stored. A simple storage design for non-clustered hosts (Source: Aidan Finn) This host has 32 GB RAM. If I allow 1-3 GB for the management OS, I will have at least 29 GB of RAM that I can... --- ### How Can I Block the Use of Passwords in Group Policy Preferences? > Learn how to block and remove passwords from Group Policy Preferences in Windows Server. - Published: 2014-06-30 - Modified: 2024-09-04 - URL: https://petri.com/block-the-use-of-passwords-in-group-policy-preferences/ - Categories: Active Directory (AD) - Tags: Active Directory, group policy, Group Policy Preferences, Security, Windows Server - Article Type: How To Learn how to update the Group Policy Management Console (GPMC) to prevent IT administrators from setting passwords in this new Ask an Admin post. How Can I Block the Use of Passwords in Group Policy Preferences? Microsoft tries to dissuade IT administrators from setting and storing passwords in Group Policy Preferences due to security concerns. While useful for mapping network drives and creating local user accounts, those passwords could create a security hole for hackers to drive through. This Ask the Admin column outlines how to update the Group Policy Management Console (GPMC) to prevent IT administrators from setting passwords in Group Policy Preferences. Security through Obscurity CPassword is the mechanism used to store passwords in Group Policy Preferences. It was inherited by Microsoft as part of  its purchase of PolicyMaker in 2008. PolicyMaker stored passwords along with the related Group Policy Object (GPO) files in SYSVOL which by design can be viewed by domain users. Its AES 32-byte encryption is quite weak and the encryption key is published by Microsoft in its API documentation, as required by law. Related: What new in Group Policy for Windows 8. 1 Many organizations use Group Policy Preferences to set passwords for local administrator accounts. This has led to the development and deployment of exploit tools with the ability to detect and decrypt passwords set using CPassword thus making the setting and storage of passwords in Group Policy Preferences a known risk. Which Group Policy Preferences Are Affected? All Group Policy Preferences that allow you to set or store passwords are affected. The list of items is as follows: Local user and group Mapped drives... --- ### Microsoft Reveals Office 365 Roadmap > Microsoft released an online roadmap for Office 365 giving a clear view of features launched, in roll-out, in development, cancelled, and previous releases. - Published: 2014-06-27 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-reveals-office-365-roadmap/ - Categories: Microsoft 365 - Tags: Editor's Pick - Article Type: Opinion Curious what new features are coming to Office 365? Microsoft's recently-released Office 365 Roadmap tells you what to look forward to. Microsoft has released an online roadmap for Office 365 which gives a clear view of Office 365's development. The document shows all the features launched, being rolled out (but not yet available for all), in development, cancelled (features no longer in the queue or delayed indefinitely), and previous releases. Microsoft Office 365 for Business Roadmap The Office 365 online roadmap makes it simple to see at-a-glance features so you can easily keep up to date with Microsoft's cloud-based collaborative environment solutions for your enterprise. Microsoft's Office 365 roadmap should help you keep up to date on what new Office 365 features are being deployed or in the development phase. (Source: Microsoft) I looked through the list of features that are rolling out or in development. Here is a list of my favorites. Office 365 Features Rolling Out MAPI over HTTP for Outlook 2013 and Exchange Online This feature has already been released to Exchange 2013 on-premise users with the release of SP1.   It's a new transport option for connecting Outlook with Exchange, or Exchange Online through Office 365, designed to provide more robust connectivity.  It's meant as a replacement for RPC over HTTP connectivity (aka Outlook Anywhere) which is long overdue for a replacement. RPC is, at this point, ancient. Office 365 Features In Development Clutter for Outlook Web App This is feature will help distinguish between lower and higher priority email. It's different from a junk mail filter but rather looks at your... --- ### Protecting Yourself from an Exchange Online Outage > J. Peter Bruzzese suggests some third-party tools that could have helped keep emails flowing after the Exchange Online outage this week. - Published: 2014-06-26 - Modified: 2024-11-19 - URL: https://petri.com/protect-yourself-exchange-online-outage/ - Categories: Cloud Computing - Article Type: How To Hear about the Microsoft Exchange Online outage this week? J. Peter Bruzzese shows us how third-party tools can help keep the email flowing. Earlier this week, Microsoft Exchange Online was down for part of the day in an unplanned outage. Exchange Online was down for 9 hours! My response? It happens.  Sure, I expect the typical comments from readers claiming I’m secretly paid under the table by Redmond for a comment like that. I’ve been called a shill more times than I can count in this business. But let’s look at this from a fair and honest perspective. First off, all cloud services fail from time to time. It happens. To Amazon. To Google. And to Microsoft. My own personal company, ClipTraining, after years of solid uptime, had an outage last month for part of the day. So it would be somewhat hypocritical of me to slam the hammer on Microsoft for an outage. Microsoft Exchange Online was down for part of the day on Tuesday, June 24th, 2014, and was restored to full functionality roughly 9 hours after the outage began. (Photo: Jeff James) Second, as a Microsoft Exchange MVP I’ve seen my share of on-premise Microsoft Exchange outages as well. Granted, at least in those cases you don’t have to just sit back and fold your hands, you can jump in and fix the situation. That’s just a personality issue though when you think about it. Whether you’re down for 9 hours in the cloud with no control -- or down for 9 hours on the ground with control -- it’s the same 9 hours for end-users either way... . --- ### Getting Started with Microsoft Azure Automation > Learn how to get started with the Microsoft Azure Automation management platform along with tips for creating, deploying, and maintaining cloud resources. - Published: 2014-06-26 - Modified: 2024-11-19 - URL: https://petri.com/getting-started-with-microsoft-azure-automation/ - Categories: Microsoft Azure - Article Type: How To Learn about the Microsoft Azure Automation cloud management platform and how it can help you create, deploy, and manage your cloud resources. Microsoft Azure Automation is a new management platform that lets users automate and maintain their cloud resources through its PowerShell-based workflow engine. The platform is currently in preview, where you can dive in to try the new service for free. Related: TechEd 2014 Interview: Mark Russinovich on Microsoft Azure Most IT professionals are familiar with the wonders of Windows PowerShell. It's an effortless process to perform essential IT management tasks with PowerShell across several different Microsoft platforms. Similarly, Azure Automation is an extension of the PowerShell mantra, an environment where users can easily create, deploy, monitor, and maintain cloud resources. Users can now automate common and repetitive management tasks to save time and resources. Azure Automation helps to increase the reliability of cloud services through automation as users no longer need to perform several tasks manually. The idea is that users will gain more time to dedicate to tasks that add value to the business rather than spending precious time focusing on redundant and tedious tasks. Azure Automation Integration The platform can easily be integrated into several different Microsoft services including; Web Sites, Cloud Services, Virtual Machines, Storage, and SQL Server. Azure Automation can also extend into third-party solutions where you can import an existing PowerShell module or create a module in C# based on your needs. Resources for Getting Started with Azure Automation If you're ready to get started with Azure Automation you'll need to make sure that you have an active... --- ### How to Create an Office 365 Mailbox and Connect it to Microsoft Outlook > Learn how to create a mailbox in Office 365 and link it to Microsoft Outlook 2007/2010/2013. - Published: 2014-06-26 - Modified: 2024-11-19 - URL: https://petri.com/how-to-create-an-office-365-mailbox-and-connect-it-to-microsoft-outlook/ - Categories: Office - Article Type: How To Learn how to create an Office 365 mailbox and link it to Microsoft Outlook in this helpful tutorial by Theresa Miller. As Microsoft advances with Office 365 many organizations are moving their email to the cloud. This suddenly places setup and configuration at the top of the task list so that users can get at their new cloud-based email. Administrators may need to create Office 365 mailboxes and connect them to Outlook. This article provides step-by-step instruction on how to properly do this. Before getting started it is important to note that the Office 365 program does have options allowing your organization to download the full client through Office 365. Review the Office 365 program options before proceeding if your system doesn't have Outlook installed. Related: Microsoft's Julia White on Office 365 and Satya Nadella's Microsoft Here is a link to the Office 365 subscription options that can tell you if the full Office client is part of the Office 365 package purchased by your organization. Create an Office 365 Mailbox Creating a mailbox in Office 365 involves signing into your Office 365 account. The following steps assume your organization has already signed up for Office 365 through the Microsoft Office 365 Fast Track enrollment website. 1) Sign in to your Office 365 portal at http://portal. microsoftonline. com. Office 365 log in 2) Click Go to Users and Groups. Office 365 - Users and Groups 3) Click the + sign to add a new user. Add New Users 4) Fill in the appropriate details for the user being added. See the following example then click on Additional Details. Adding details for... --- ### Will the Office 365 Trust Center Allay Cloud Security Concerns? > Microsoft recently launched the Office 365 Trust Center, an online resource that provides information on Office 365 cloud security and privacy efforts. - Published: 2014-06-25 - Modified: 2024-09-04 - URL: https://petri.com/will-the-office-365-trust-center-allay-cloud-security-concerns/ - Categories: Microsoft 365 - Article Type: Overview Microsoft's Office 365 Trust Center is a new online resource that provides information on Office 365 cloud security and privacy efforts. One of the big concerns many organizations and IT professionals have about moving to the cloud, especially for business critical workloads like e-mail and calendaring, is that you have to trust someone else with your data. You have to have faith in your provider that they will maintain their systems properly, assure uptime, not let anyone access or remove your data without your explicit consent, and generally keep your data safe and secure. Various cloud providers have different levels of commitment to security and also different levels of transparency when it comes to sharing with customers what those providers are doing to fulfill those commitments. At TechEd 2014, Microsoft’s Julia White, a general manager in the Office 365 division, announced the Office 365 Trust Center, a single place where the company reveals its efforts to keep individual organizations’ tenant data secure from both Internet based threats and also from governmental agencies and third parties that attempt to force Microsoft to turn over your data from a compliance perspective. Microsoft Office 365 Division General Manager Julia White discussing security and privacy concerns in a video clip from the Office 365 Trust Center. (Source: Microsoft) The Four Pillars of Office 365 Trust The Office 365 Trust Center stakes the service’s reputation on four pillars: Office 365 Security Microsoft considers Office 365 security in four different ways: The security of the physical datacenters where the servers are housed; logical security, for restricting administrator rights and maintenance processes as well as... --- ### Why You Should Embrace Windows 8 Apps > Learn about the changes to Windows Store apps and the desktop integration introduced in Windows 8.1 Update. - Published: 2014-06-25 - Modified: 2024-09-04 - URL: https://petri.com/why-you-should-embrace-windows-8-apps/ - Categories: Windows 8 - Tags: Memory, Remote Desktop Services, Virtualization, Windows 8, Windows Server, Windows Store - Article Type: Opinion Windows store apps tend to be more resource-efficient than their traditional counterparts, and Russell Smith serves up even more reasons why you should embrace modern apps. Desktop integration features and improvements for mouse users provided by the Windows 8. 1 April update make Windows Store apps attractive to desktop users for the first time. The Windows 8 Start screen and apps have been controversial leaving many desktop users wondering why they would use apps optimized for touch or ever need to see the new Start screen. Popular apps available on other platforms, such as Facebook and Instagram, were missing in action for a long time. Even the built-in Microsoft apps weren't always what they could have been when Windows 8 first launched in October 2012. Two major updates later (Windows 8. 1, and the aptly named Windows 8. 1 Update) there are new and improved apps in the store and Windows 8 is starting to look how it should have at its initial release. In this article, I'll walk you through my transition to using Windows 8 apps and explain some of the technical reasons why you might want to adopt them. Resource Efficient, Responsive, and Secure Windows Store apps use less memory than their desktop counterparts because they can be suspended automatically after a few minutes if put into the background. This is useful when a lot of apps are open but not necessarily being used. Resume times are fast and, according to Microsoft's guidelines, apps should take users back to the position where they left off thus providing a very responsive start while other parts of the app are reloaded. Modern apps from the... --- ### Protect Windows Server Using the Security Configuration Wizard Part 2: Applying and Rolling Back Policies and Advanced Features > How to apply and roll back security policies for Windows Server using the Security Configuration Wizard. - Published: 2014-06-25 - Modified: 2024-09-04 - URL: https://petri.com/protect-windows-server-using-the-security-configuration-wizard-part-2-applying-and-rolling-back-policies-and-advanced-features/ - Categories: Security - Tags: Active Directory, Authentication, Domain, Management, Network, Security, services, windows firewall, Windows Server - Article Type: How To Our two-part series on the Windows Server Security Configuration Wizard concludes with a look at how to apply and roll back security policies. Applying and Rolling Back Policies and Advanced Features The first article in this two-part series, "Using the Windows Server Security Configuration Wizard Part 1: Evaluating Risk and Creating a New Security Policy", discussed evaluating whether it's necessary for security configuration settings to be changed from the defaults in Windows Server and how to use the Security Configuration Wizard (SCW) to create and save a specially tailored security policy. This second part outlines how to apply and roll back the policy created in part one using the GUI and how to convert a SCW policy into a Group Policy Object using the command line version of the tool. Applying a previously created security policy Once you've determined that a security policy works for a server, or group of servers, you can use the Security Configuration Wizard to apply the policy. Start the wizard from Server Manager. Click Next on the welcome screen. On the Configuration Action screen, select Apply an existing security policy. Click Browse to select the security policy file (. xml) that you want to apply. By default, policies are stored in c:windowssecuritymsscwpolicies. Click Next once you've chosen a file. Apply an existing policy using the Security Configuration Wizard Select the server you want to apply the policy to. You can either type the name in the Server box or click Browse to select the server from Active Directory. Local administrator access permissions are needed on the destination server. You need local administrator permissions on the destination... --- ### Perform 7 Essential IT Management Tasks with PowerShell > A list of helpful Windows PowerShell task-based commands for IT professionals including tasks for managing users, password recovery options, and more. - Published: 2014-06-24 - Modified: 2024-12-03 - URL: https://petri.com/essential-windows-powershell-commands-for-it-professionals/ - Categories: PowerShell - Article Type: How To Use these handy Windows PowerShell commands to help you accomplish a variety of tasks to make your workday more efficient. Windows PowerShell is an impressive scripting language which easily lends itself to writing single commands that can accomplish various tasks efficiently. Although PowerShell can be used across several different Microsoft platforms, you don't need to feel overwhelmed by the abundance of choices that are available within the scripting language. With this in mind, this comprehensive list of task-oriented commands from Petri IT Knowledgebase experts including; Jeffery Hicks, Flash Denning, John O'Neill Sr. , and Pat Richard will make your IT work easier. 1. Getting Mailbox Sizes in PowerShell With the Get-MailboxStatistics cmdlet, you can easily see information about your mailbox account's display name, item count, and total item size. You can also configure the command to retrieve your mailbox size along with information about all users hosted in Exchange. Alternately, you can also determine an Office 365 mailbox size with PowerShell. 2. Changing a User Password with PowerShell It is easy to reset user passwords using PowerShell. In Flash Denning's article on password management, you'll learn how to reset all local user accounts to one designated password. 3. Generating a Microsoft Word Document with PowerShell Who knew that you could use PowerShell to create and format Microsoft Word documents? Text can easily be inserted into the document with the TypeText and TypeParagraph methods. On a similar tangent, you can also create custom reports in Excel with PowerShell. 4. Creating and Managing Local Accounts with PowerShell With PowerShell, it's simple to create and setup local... --- ### How To Fix Windows Update When it Breaks > Security and Windows updates go hand in hand. How do you stay secure when Windows Update won't work? You fix it! This article will show you how to do that. - Published: 2014-06-24 - Modified: 2024-12-03 - URL: https://petri.com/how-to-fix-windows-update-when-it-breaks/ - Categories: PowerShell - Tags: Deployment Image Servicing and Management, DISM, SFC, System File Checker, Windows Update - Article Type: How To How do you keep your IT environment secure when Windows Update won't work? You fix it! John O'Neill Sr. shows you how in this handy how-to article. Windows updates are a monthly fact of life for IT Pros. A properly updated system offers the best protection possible from malware. Updated systems often offer better performance than other PCs running outdated drivers or software. The Windows Update technology built into the Windows OS is a key component to keeping systems patched. When Windows Update breaks, the updating process tends to as well. I recently faced this challenge. The problem started while trying to update my office PC. My daily work PC runs Windows 8. 1 Pro with the Windows 8. 1 Update applied. The Windows 8. 1 Update is required in order to apply future Windows patches and updates. Related: Failing KB2919355 Update for Windows 8. 1 For consumers, the deadline to install the update is June 10th, 2014. Enterprises have a bit longer with an August 12th, 2014 deadline. In an almost laughable twist of irony it was the Windows 8. 1 Update that broke the Windows Update process on my computer. This doesn't happen on the majority of PCs but that fact offered me little consolation. Here are the steps I followed to fix Windows Update: 1. Begin the repair process by opening an elevated Command or PowerShell prompt. I recommend PowerShell. In Windows 8. 1 there are a number of ways to run PowerShell. One method is to simultaneously press the Windows key + Q on the keyboard to open the Search Charm. Type PowerShell, right click Windows PowerShell in the results list, and then click Run as administrator. Running... --- ### Enabling Hyper-V DHCP Guard and Router Guard > How to enable Hyper-V DHCP Guard and Router Guard in existing VMs and by default using System Center Virtual Machine Manager. - Published: 2014-06-24 - Modified: 2024-09-04 - URL: https://petri.com/enabling-hyper-v-dhcp-guard-and-router-guard-2/ - Categories: Hyper-V - Tags: DHCP, Hyper-V, networking, Router, scvmm, System Center, System Center Virtual Machine Manager, virtual machine, Virtualization, VM, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To Our series on Hyper-V DHCP Guard and Router Guard concludes with how to enable those features in existing VMs and with System Center Virtual Machine Manager. This is the second of a two-part article explaining two security features in Windows Server 2012 (WS2012 and later) Hyper-V networking, DHCP Guard and Router Guard. The previous article, Hyper-V Router Guard and DHCP Guard Explained, introduces and outlines these two security features. Hyper-V administrators can use these features to prevent guest OS administrators from using their virtual machines as rogue routers or DHCP servers on the network. This article covers how to properly enable these services. Network Security is Not a Default Setting One might think that a feature that prevents rouge network services should be on by default. As an admin, I know that I would prefer one that was. However, DHCP Guard and Router Guard are not enabled by default. There are three possible reasons for this that I can think of: Performance: Performance: According to Ben Armstrong of Microsoft, "Router guard does have a relatively minimal impact on performance". He says the same of DHCP Guard. The Requirement: Regarding DHCP Guard being off by default, Ben says that "Given that most virtual machines are not running DHCP servers, it is not enabled by default as it is not needed". He repeats that message for Router Guard. Self-Service Networks: Microsoft engineers products with cloud deployments as their intended solution. In a true cloud, a tenant provisions their own network. Those networks are isolated and are under the control of the tenant. Maybe the tenant wants to enable DHCP or router services, and doesn't want to... --- ### How to Set the Date and Time in Windows Server Core 2012 R2 > How to use the command line in Windows Server Core 2012 R2 to set the time and date. Another Ask an Admin column from the Petri IT Knowledgebase. - Published: 2014-06-23 - Modified: 2024-09-04 - URL: https://petri.com/how-to-set-the-date-and-time-in-windows-server-core-2012-r2/ - Categories: Windows Server 2012 - Tags: Management, PowerShell, Server Core, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To In this new Ask an Admin post, learn how to use the command line in Windows Server Core 2012 R2 to set the time and date. It is easy to set the time and date in Windows Server Core 2012 R2, despite the lack of a graphical user interface. In this Ask the Admin, we'll cover two different methods to set date and time. Maintaining the correct time and date on a server can be critical for certain operations such as Kerberos authentication in Active Directory (AD) domains. On domain member servers  (with either the full GUI or Server Core) the time is automatically synchronized with the domain. Assuming the primary time server in your domain is set correctly, all domain members should maintain the correct time and date. Time is synchronized in an Active Directory forest in a top-down hierarchical manner, starting with the domain controller that holds the Primary Domain Controller (PDC) role in the forest root domain. This domain controller is often set to synchronize with an external Internet-based time server. If the PDC in the forest root domain goes offline or malfunctions, time synchronization issues in your AD forest could result in log-on failures. Related: Switching Between the GUI and Server Core in Windows Server 2012 On a standalone server you might need to set the date and time manually. While no configuration is necessary for automatic time synchronization in a domain, it is possible to maintain the default time synchronization settings using Group Policy. What follows are directions for setting the date and time in Windows Server Core 2012 R2, but we also have separate instructions for setting... --- ### Microsoft Unveils Interflow Security Information Exchange Platform > Microsoft Interflow aims to help bolster IT security. Interflow is a new security and threat information exchange platform running on Microsoft Azure. - Published: 2014-06-23 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-unveils-interflow-security-information-exchange-platform/ - Categories: Security - Tags: News - Article Type: News Microsoft has taken the wraps off Interflow, a new security and threat information exchange platform that runs on Microsoft Azure. As recent headlines attest, security is a hot topic on the minds of many IT managers these days. The Target security breach in December 2013 contributed to the ouster of Target CEO Gregg Steinhafel, while the most recent security breach at P. F. Chang’s has led the restaurant chain to temporarily revert to using manual credit card imprint machines. With this charged IT security climate as a backdrop, Microsoft announced this morning it had launched a private preview of Microsoft Interflow, a new security and threat information exchange platform aimed at IT security professionals. The announcement was made at at the Forum of Incident Response and Security Teams (FIRST) conference in Boston. Introducing Microsoft Interflow Effective and timely information-sharing about security threats is essential to combating them. That’s the impetus behind Interflow, a new service by Microsoft that provides a feed of security threats and other information which is intended to be shared in real-time with security professionals. Microsoft also claims that Interflow will help automate time-consuming security processing that is performed manually, therefore helping IT security professionals respond more quickly to threats. Microsoft Interflow is a new security information exchange platform that will help security professionals share information and automate time-consuming security processing. (Source: Microsoft) Microsoft Interflow and the Automation of Information Security In a post on the Microsoft Security and Response Center (MSRC) blog, Jerry Bryant, lead senior security strategist at the MSRC, explains in more detail how Microsoft Interflow is intended to help IT security... --- ### Hyper-V Router Guard and DHCP Guard Explained > How Router Guard and DHCP Guard can be used by Hyper-V administrators to prevent guest OS administrators from enabling unwanted network services. - Published: 2014-06-23 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-router-guard-and-dhcp-guard-explained/ - Categories: Hyper-V - Tags: DHCP, DHCP Guard, Hyper-V, networking, Security, Virtualization, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To Aidan Finn explains how Hyper-V Router Guard and DHCP Guard can be used to prevent guest OS administrators from enabling unwanted network services. This two-part article explains two security features in Windows Server 2012 (WS2012 - and later) Hyper-V networking, DHCP Guard and Router Guard. These features allow Hyper-V admins to prevent virtual machine admins from enabling unwanted network services within the guest operating system. The second part of this article will outline how to deploy these two security features. The Need for Network Security Services My first job as a solo contractor was as an administrator in a security software research and development company. One morning a number of developers complained that they could not access the servers. I stayed calm and began performing the usual command line diagnostics on one of their PCs. That's when I noticed that they had a DHCP-assigned IP address that was not valid on the company network. It wasn't an address from our DHCP server however. Someone had set up a rogue DHCP server. With the help of a network administrator, we eventually tracked down the floor port that the rogue DHCP server was plugged into. A researcher had fired up a DHCP server on one of their lab machines on the company network. DHCP clients are pretty dumb. They broadcast, receive, and IP from the first respondent. The researcher incorrectly assumed that his lab DHCP server couldn't operate on the network because it offered IP addresses for a different subnet. He made an honest and uninformed mistake. Unfortunately, everyone in his VLAN, he should not have run lab machines on an office... --- ### Top Windows PowerShell Experts and Resources on Twitter > A list of the top Windows PowerShell resources and experts on Twitter from the Petri IT Knowledgebase. - Published: 2014-06-19 - Modified: 2024-11-19 - URL: https://petri.com/top-windows-powershell-experts-resources-on-twitter/ - Categories: PowerShell - Article Type: Overview Need help with PowerShell? Here's a list of some of the most influential PowerShell experts on Twitter. You've probably heard system administrators talk about the importance of PowerShell. Petri IT Knowledgebase readers should already be familiar from dozens of articles covering uses and aspects of PowerShell. If you're just getting started with PowerShell you might want to check out the Petri IT Knowledgebase article, "Top 3 Reasons for Learning PowerShell. " Microsoft's command-line scripting language has garnered attention from IT professionals due to its ability to quickly and efficiently automate tasks that traditionally could only be achieved through the graphical user interface (GUI). It's no secret that Microsoft is heavily invested in PowerShell. The company recently released the Windows Management Framework public preview which gave Microsoft users a glimpse into the next version of PowerShell. It's clear that PowerShell is not going away. PowerShell experience is a desirable skill-set on any professional IT resume. You'll also come away with a deeper understanding of the Windows ecosystem by immersing yourself in this powerful scripting language. There are thousands of PowerShell resources on the Internet but you shouldn't have to sift through them all. You can turn to Twitter for advice, answers, and interesting conversations. We have compiled a list of PowerShell experts active on Twitter who regularly share their tips and tricks with the IT community. A quick way to dive into the PowerShell discussion on Twitter is to follow the #PowerShell hashtag. Please note: this list is by no means exhaustive. If you have a go-to expert you think we should follow, please let us know... --- ### Killing A Frozen Windows Server 2012 Hyper-V Virtual Machine > How to get the GUID of a Hyper-V virtual machine on WS2012 or WS2012 R2 Hyper-V, and use that information to kill a hung virtual machine. - Published: 2014-06-19 - Modified: 2024-09-04 - URL: https://petri.com/kill-a-frozen-windows-server-2012-hyper-v-virtual-machine-2/ - Categories: Hyper-V - Tags: Hyper-V, PowerShell, Process, virtual machine, Virtualization, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To Dealing with frozen virtual machines in Hyper-V? Learn how to get the GUID of a VM running on WS2012/WS2012 R2 Hyper-V in order to kill it. Virtual machines sometimes hang. Admins have the tools to kill hung machines but it is a delicate and potentially dangerous operation. In October 2011, the Petri IT Knowledgebase published two posts covering how to retrieve a virtual machine’s GUID and how to use that information to kill a hung virtual machine. Those articles covered pre-Windows Server 2012 versions of Hyper-V. Rather than browsing around Windows Explorer and Task Manager hoping you don’t kill a healthy production virtual machine by mistake, it is safer and easier to learn how to kill the right virtual machine using a few short lines of PowerShell. Getting a Virtual Machine’s GUID The GUID of a virtual machine is the globally unique identifier for that virtual machine. While it is possible for virtual machines to have the same name, in theory no two Hyper-V virtual machines should have the same GUID. Knowing this GUID can be especially useful. One of those occasions is when a virtual machine hangs and you are unable to turn it off using normal means such as Hyper-V Manager, Failover Cluster Manager, System Center, or PowerShell’s Stop-VM. There are a number of ways to retrieve the GUID of a virtual machine. You can open up Explorer, browse to the virtual machine’s storage location, and get the name of the virtual machine XML file. That file is named after the GUID of the virtual machine. The quickest way to retrieve a virtual machine’s GUID is to run a PowerShell query... . --- ### Using the Windows Server Security Configuration Wizard Part 1: Evaluating Risk and Creating a New Security Policy > How to create custom security policies for Windows Server using the Security Configuration Wizard and how to evaluate risks associated with new policies. - Published: 2014-06-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-security-configuration-wizard-evaluate-risk-and-create-security-policy/ - Categories: Security - Tags: Active Directory, Authentication, Domain, Management, Network, Security, services, windows firewall, Windows Server - Article Type: How To Learn how to create custom security policies for Windows Server using the Security Configuration Wizard and how to evaluate risks associated with new policies. The Security Configuration Wizard (SCW) first appeared in Windows Server 2003 Service Pack 1. It helps organizations reduce the attack surface on production servers. Much has changed since Microsoft first launched the Security Configuration Wizard. Back in the days of Windows 2000 and Windows XP, Windows wasn't considered secure out-of-the-box. Today, with the exception of highly sensitive deployments, Windows client and server are pretty secure from the get go. Only ill-advised reconfigurations, such as disabling User Account Control (UAC), make the OS less secure than it could be. Introducing the Security Configuration Wizard Despite the vastly improved security of Windows Server since SCW was first included in the OS, it can still be used to improve security and ensure that servers are configured using an identical security policy. SCW isn't the only free tool from Microsoft that can help organizations achieve this but SCW is best suited to small and medium sized organizations with limited IT support on hand. A Word of Warning Modifying security settings from the default settings presents risks of creating application compatibility or network connection problems. In the worst case scenario, you could lose access to a remote server. This would be especially catastrophic if it is located in a remote datacenter with no Integrated Lights Out facility. Any security policies created using SCW should be thoroughly tested in a pre-production environment. When you begin to apply security policies on production servers, there should be a back out plan that doesn't rely on... --- ### What are Hyper-V Extended Port ACLs? > How to implement network security and stateful firewall rules within the Hyper-V virtual switch by applying Extended Port ACLs. - Published: 2014-06-18 - Modified: 2024-09-04 - URL: https://petri.com/what-are-hyper-v-extended-port-acls-2/ - Categories: Hyper-V - Tags: Cloud, cloud computing, firewall, Hyper-V, networking, Security, Virtualization, Windows Server 2012 R2, WS2012R2 - Article Type: How To Learn all about how Windows Server 2012 R2 Hyper-V introduced improved network security with Extended Port Access Control Lists (ACLs). There is a common misconception that Hyper-V does not offer any level of network security. The best solution would be to use a Hyper-V virtual switch extension however the virtual switch already has built-in basic firewalling functionality. This was introduced in Windows Server 2012 (WS2012) Hyper-V with Port ACLs and improved in Windows Server 2012 R2 (WS2012 R2) Hyper-V with Extended Port ACLs. What Are Extended Port ACLs? Before Windows Server 2012 Hyper-V, any virtual machine could talk to any other virtual machine if they were about to route to each other. Perhaps they were on the same private virtual network (switch), on the same VLAN, or on VLANs that were not isolated. There was nothing in Hyper-V to prevent those virtual machines from communicating across all network protocols. Before we had network virtualization this meant we had to create VLANs and configure firewall rules in the physical network core. That could get very messy and time consuming requiring interaction with the network admins thus adding bureaucracy. Alternatively, we could configure the Windows Firewall however that could  subject us to being interfered with by the guest OS admins. These guests are often developers or testers. They simply cannot be trusted by the fabric/virtualization administrators to consistently put the company’s best interests ahead of their own. Things changed in WS2012 when Hyper-V Network Virtualization (HNV) was added and later improved on in WS2012 R2. If we need even greater granularity we can use a partner solution in the... --- ### Performing Out-Of-Band File Copies to Hyper-V Virtual Machines > How to perform an out-of-band file copy to a virtual machine on running Windows Server 2012 R2 Hyper-V. - Published: 2014-06-17 - Modified: 2024-09-04 - URL: https://petri.com/performing-out-of-band-file-copies-to-hyper-v-virtual-machines/ - Categories: Hyper-V - Tags: Hyper-V, Integration Services, PowerShell, Scripting, Windows Server 2012 R2, WS2012R2 - Article Type: How To Need to copy a file to an out-of-band Windows Server 2012 R2 Hyper-V virtual machine? This handy how-to article by Aidan Finn shows you how. There are a number of features in Hyper-V that are not immediately obvious because they are not visible in the GUI. One of these features is the Guest Services integration service. When this feature is enabled you can perform non-network, out-of-band file copies via the Hyper-V VMBus into a running virtual machine. A lot of Hyper-V administrators will be happy as it makes several operational tasks a lot easier. Here is an outline of how you can use Copy-VMFile to do this kind of file copy. The Need for Out-of-Band File Copies Multi-tenancy, the need to run lots of isolated networks on an infrastructure, is no longer something restricted to the hosting business. That's where I first worked in a multi-tenant environment. Using vSphere, and then Hyper-V, I managed farms where many customers used virtual machines that resided on firewall isolated VLANs. Every now and then we had to do maintenance work. Sometimes this was proactive maintenance and sometimes a customer asked us to help out with something. The latter usually required more effort. If a customer wanted to install a service pack on SQL Server then I had two choices in older versions of Hyper-V. Those two options would be: First, I could log into that virtual machine, open the browser, and download the service pack. This is where security-focused engineers go crazy. No one should ever browse the Internet from a production virtual machine. Alternatively I could download the zip file from Microsoft to a... --- ### Microsoft's Julia White on Office 365, Satya Nadella, and One Microsoft > Part 2 of our interview with Microsoft's Julia White covering new CEO Satya Nadella, Office 365, and One Microsoft. - Published: 2014-06-17 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-julia-white-satya-nadella-office-365/ - Categories: Microsoft 365 - Article Type: How To Our interview with Microsoft's Julia White concludes with a discussion of Office for the Mac and how Microsoft CEO Satya Nadella is changing the company. This is the second part of our two-part interview with Microsoft Office Division General Manager Julia White. In this interview -- edited for space -- we chat with Julia about the origins of Office 365, Office for the Mac, Microsoft's 'One Microsoft' internal reorganization, and the changes that new Microsoft CEO Satya Nadella has brought to the company. If you'd like to catch up on what we discussed in the first portion of this two-part interview, just follow this link for Julia's thoughts on the launch of Office 365, its growth and rate of adoption. Microsoft Office Division General Manager Julia White discussing Yammer integration with Office 365 during the Microsoft TechEd 2014 keynote. (Source: Microsoft) BPOS and the Origins of Office 365 Jeff James: Have you been surprised how successful Office 365 has been since it was released? It seems like it may have exceeded some expectations. Maybe you could put that in context? Julia White: It has and it hasn't. We've been at this for a long time, and we had our predecessor to Office 365, called the... Jeff: ... BPOS (Business Productivity Online Suite)? Julia: I've been doing this for a long time. I've been at the company for 13 years. I've been in Office for six‑and‑a‑half. I was there for the very beginning when we launched Exchange Online for the very first time, so I've seen it from the very beginning. You've got to learn what you're doing; being great at running services, knowing what it means in... --- ### Self-Service Password Resets for OWA users in Microsoft Exchange 2013 > How to enable self-service password resets for OWA users in MS Exchange 2013 by Peter De Tender, (part 2/2). - Published: 2014-06-16 - Modified: 2024-09-04 - URL: https://petri.com/self-service-password-resets-for-owa-users-in-microsoft-exchange-2013/ - Categories: Exchange 2013 - Tags: Editor's Pick - Article Type: How To, Overview Learn how to enable Self-Service Password Resets for OWA users in Microsoft Exchange 2013 in our latest article on OWA password change management. This is the second of a two part series on the password change feature in Exchange 2013 Outlook Web App (OWA). The first part of the series, Controlling the Change Password Feature in Exchange 2013 Outlook Web App (OWA), can be found here. The first article outlined how to use the change password feature and how to control access to this feature from within your OWA environment. The first article was written with the assumption that a mailbox user who successfully logged into their OWA environment wanted to change their password from within that session. This second article outlines what needs to be configured server-side on Exchange 2013 to allow mailbox users to reset their own expired passwords. The configuration to allow users to change their expired passwords involves: Setting the appropriate registry key on your Exchange 2013 CAS Servers Configuring settings within IIS on your Exchange 2013 CAS Servers Configuring correct password policy on AD domain level The following example moves through these three steps in more detail. Imagine a default non-admin mailbox user whose password setting has been configured to "Change password at next logon". This is the default setting for newly-created users in most organizations. The setting is also valid when a user's password has expired. 1. Set appropriate registry key on the Exchange 2013 CAS Servers This registry key is not terribly different from Exchange 2010. 1)     Open your Registry Editor (regedit. exe) 2)     Browse to the following key: HKey_Local_MachineSystemCurrentControlSetServicesMS Exchange OWA 3)     There... --- ### How to Open or Close Windows Firewall Ports to Apps on Windows 8.1 > How to allow access to a program or application through Windows Firewall in Windows 8.1. - Published: 2014-06-16 - Modified: 2024-09-04 - URL: https://petri.com/how-to-open-or-close-windows-firewall-ports-to-apps-on-windows-8-1/ - Categories: Security - Tags: Management, Security, Windows 8, windows firewall - Article Type: How To Need to Open or Close Windows Firewall Ports to Apps on Windows 8.1? Learn how to open and close Windows Firewall access to applications manually. Enabled by default, Windows Firewall blocks unsolicited incoming sessions. In this Ask the Admin, we examine how to open inbound ports to specified apps or features in Windows 8. 1. Under normal circumstances, it’s unlikely you would need to open Windows Firewall access to applications manually. If a program needs access through Windows Firewall, a request to perform the necessary configuration is usually part of the application’s installer. If that request is not made during installation, Windows monitors the system and will notify you if a program requests permission for inbound access. This doesn’t always work out. There may be some situations in which it’s necessary to open access manually. There are several ways to achieve this. The easiest way uses the Graphic User Interface (GUI). Open Inbound Ports to a Program or App The easiest and safest way to open a port in Windows Firewall is to only allow inbound traffic to a specific program or app. For more control over specifying ports, protocols, and the source and destination IP addresses, use the command line or the Windows Firewall with Advanced Security management console. Use the Windows Firewall Control Panel applet to open access to an app or program. To start the applet: Press the WINDOWS key to switch to the Start screen. On the Start screen, type firewall. In the Search results panel on the right, click Allow an app through Windows Firewall. The Windows Firewall Control Panel applet will open on... --- ### Interview with Microsoft's Julia White: Office 365 Growth and Adoption > First of a two part interview with Microsoft Office Division General Manager Julia White. We discuss growth and adoption, features and applications of Office 365. - Published: 2014-06-13 - Modified: 2024-09-04 - URL: https://petri.com/interview-microsoft-julia-white-office-365-adoption/ - Categories: Microsoft 365 - Article Type: Interview We chat with Microsoft's Julia White about Office 365 growth and adoption, deployment tips, and upcoming features like Office Graph and the Codename Oslo app. We recently had the opportunity to sit down with Julia White, the General Manager for the Office division at Microsoft. We asked her about the growth and adoption of Office 365, the new Office 365 iPad app, and about upcoming Office 365 features like Office Graph, Power BI, and the Codename Oslo application. Microsoft officials have recently stated that Office 365 is the fastest growing Microsoft business ever. Since Microsoft hasn't provided exact sales figures or subscriber data, this claim is difficult to independently verify. That said; there is a fair amount of evidence that Office 365 is gaining traction. Feedback from the Petri IT Knowledgebase author pool, increased interest in Office 365 based on our reader surveys, and reports from corporate customers and Microsoft partners that Office 365 is being adopted rapidly indicate a growing acceptance of Microsoft's cloud based productivity suite. Julia White demonstrating Office for the iPad during the Microsoft TechEd 2014 keynote. (Source: Microsoft) I sat down with Julia at Microsoft TechEd 2014 for a 1 on 1 interview. I asked her about those sales figures and sought insights on some other products in the Microsoft portfolio associated with Office 365. What follows is an edited transcript of that interview. We've broken it into two parts due to its length. Jeff James: My first question is about Office 365 growth and adoption. Based on what we've heard from Petri readers, authors, and other people in the industry, it looks like Office 365 is... --- ### How to Get the Serial Number of a Remote Computer Using PowerShell > Learn how to retrieve the serial number from a local or remote computer using PowerShell and Windows Management Instrumentation (WMI). - Published: 2014-06-12 - Modified: 2024-09-04 - URL: https://petri.com/how-to-get-the-serial-number-of-a-remote-computer-using-powershell/ - Categories: PowerShell - Tags: BIOS, PowerShell, remote management, Windows Management Instrumentation, Windows Server, WMI - Article Type: How To Retrieve the serial number from a local or remote computer using PowerShell and Windows Management Instrumentation (WMI). Sometimes it can be useful to identify computer hardware for inventory purposes using its serial number, which is often written on a small sticker affixed to the underside of the device. The serial number is also found in the BIOS, and can be retrieved using Windows Management Instrumentation (WMI). In this edition of Ask the Admin, I’ll show you how to use PowerShell to get the serial number of a local or remote computer from the computer BIOS. Retrieving the Serial Number from a Local Computer The get-ciminstance PowerShell command was introduced in PowerShell 3. 0. It allows administrators to run WMI queries on local or remote computers. To retrieve the BIOS serial number of the local computer, we need to access the Win32_BIOS WMI class. Log on to Windows Server 2012 R2, click the PowerShell icon on the desktop taskbar. In the prompt window, run the following command: ​ get-ciminstance win32_bios To display only the serial number, type: ​ get-ciminstance win32_bios | format-list serialnumber Using PowerShell and WMI to get the serial number of a computer. (Source: Russell Smith) Retrieving the Serial Number from a Remote Computer The get-ciminstance cmdlet creates a temporary session to remote computers using the WSMAN protocol over HTTP. Windows Remote Management (WINRM) is enabled by default in Windows Server 2012 R2. If it is not enabled on the remote computer you want to query, or the default WINRM listener has been deleted, run winrm qc at an elevated command prompt on the remote device to add the default... --- ### What are Hyper-V Virtual Machine Integration Services? > Hyper-V Integration Services provide a way for management tools and admins to interact with an otherwise isolated guest OS running inside a virtual machine. - Published: 2014-06-12 - Modified: 2024-09-04 - URL: https://petri.com/what-are-hyper-v-virtual-machine-integration-services/ - Categories: Hyper-V - Tags: Hyper-V, Integration Components, Integration Services, virtual machine, Virtualization, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Learn how you to use Hyper-V Integration Services to help management tools interact with otherwise isolated guest OSes running inside virtual machines. In this post I describe the functions of the Hyper-V Integration Services, most of which are enabled by default. These default enable settings might be helpful or they might create challenges, depending on the role of a virtual machine’s guest operating system (OS) and services. To make this determination, you need to understand the roles of the integration services. What Are Hyper-V Integration Services? You can find the Hyper-V Integration Services in the settings of a virtual machine. The integration services provide a way for the management tools and administrators to interact with an otherwise isolated guest OS running inside a virtual machine. You can see how the integration services function by referring to the article, Understanding the Architecture of the Hyper-V Hypervisor. Integration is enabled within a virtual machine by the integration components. Remember to always keep them up to date in Windows guests. Administrators and the management OS can interact with the guest OS by accessing Virtualization Service Providers (VSPs) that work with related Virtualization Service Clients (CSVs) via the secure VMBus. A number of integration services are enabled by default as illustrated in the diagram below. You can view and customize these settings in Hyper-V Manager by editing the properties of a virtual machine and browsing to Integration Services. The integration services of a Hyper-V Virtual Machine (Source: Aidan Finn) The Hyper-V Integration Services The following integration services are available to allow integrated management of virtual machines by administrators and the Hyper-V management OS... . --- ### Interview with Amazon’s Jeff Barr: WorkSpaces and CloudFormation > An interview with Amazon Web Services Chief Evangelist Jeff Barr in which we cover AWS tips, Amazon WorkSpaces, and Amazon CloudFront. - Published: 2014-06-11 - Modified: 2024-11-19 - URL: https://petri.com/interview-amazon-jeff-barr-workspaces-cloudformation/ - Categories: Amazon Web Services - Tags: Editor's Pick - Article Type: Interview Our interview with Amazon Web Services Chief Evangelist Jeff Barr concludes with a discussion of Amazon WorkSpaces and CloudFormation. Editor's Note: What follows is the second part of our interview with Amazon Web Services (AWS) Chief Evangelist Jeff Barr. In this interview, we discuss some additional AWS tips for Windows Server administrators, talk about the new Amazon WorkSpaces service, and briefly mention the Amazon CloudFormation offering. Check out the first part of our interview for an introduction to AWS aimed at Windows Server administrators. James: What specific advice – maybe in the form of 2 or 3 top bits of advice -- would you give someone who is a Windows system administrator and may be approaching the cloud from a Windows-centric view of the world? Coming from the Windows Server stack, what is the best way to take advantage of AWS? Barr: I always tell people to just go to the AWS website and sign up for the free usage and launch a server. Then see the difference. Time yourself and see how long it takes to launch a server in the cloud. Compare that to how long it's going to take you to rack and stack and get something running. Look at the flexibility. Look at the diversity.  All of these barriers we talked about lead people to think of servers as a very static resource. Usually you allocate it, you set it up, and it's now yours for a long time to come. Related: Provision Windows Server 2012 in Amazon Web Services Another conceptual leap people make is from seeing servers as... --- ### How to Keep Windows 8.1 Secure Using Action Center > Learn how to use and access Action Center in Windows 8 to solve problems with Windows Firewall and Windows Defender. - Published: 2014-06-11 - Modified: 2024-09-04 - URL: https://petri.com/action-center-windows-8-security/ - Categories: Windows 8 - Tags: Action Center, Management, Security, Windows 8, Windows Defender - Article Type: How To Security issues? Learn how to access and use Windows Action Center in this quick Ask an Admin. Action Center in Windows 8 replaces Windows 7’s Security Center to aggregate not only warnings on security issues, but also the status of maintenance tasks. In this Ask the Admin, I’ll show you how to access and use Action Center in Windows 8. 1. Opening Action Center Action Center quietly monitors for problems that could affect the smooth running and security of your PC. Most of the time you won’t see Action Center or need to access it, but if a problem is detected, a small flag icon will appear in the taskbar next to the clock. If you hover over the icon with the mouse you’ll be shown an overview of the issues detected, and you can click on it to go to Action Center. There are a couple of other ways you can get to Action Center using the Control Panel and Windows Search. Open Action Center using the Control Panel: Launch the Control Panel by right clicking on the Start button and then select Control Panel from the menu. In the Control Panel window, make sure that View by is set to Category and click System and Security. At the top of the Control Panel click Action Center. Open Action Center using Windows Search: Press the Windows key to switch to the Start screen. Type action and the Search panel will appear on the right. Select Action Center from the results. Solving Problems in Action Center Now you’ve opened Action Center, any critical issues will... --- ### What Is Microsoft Azure RemoteApp? > Considering trying Microsoft Azure RemoteApp? Check out our overview and decide whether to give Azure RemoteApp a try. - Published: 2014-06-10 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-azure-remoteapp-overview/ - Categories: Microsoft Azure - Tags: Azure RemoteApp - Article Type: Overview Considering trying Microsoft Azure RemoteApp? Let our overview help you with your decision! The Microsoft Azure RemoteApp service that was announced at Microsoft TechEd 2014 and that is currently in preview is a new way of solving a familiar problem: How to use desktop software without a desktop in front of you. RemoteApp is app streaming as a service – not a remote desktop or VDI approach – and Microsoft plans to add new options and features quickly. Because this is a new way of thinking about remote access, I’m looking first at the problems Azure RemoteApp solves. When the first of the new features are available in the Azure RemoteApp preview, a future article on the Petri IT Knowledgebase by Mary Branscombe will show you how to use the service. For now, however, I'll give you an overview of Azure RemoteApp and tell you whether I think it's worth a shot. Remote Desktop Access Remote desktop access is nothing new, but increasingly users don’t actually want to access their whole desktop remotely; they want the files they use there (hence the continuing growth in cloud sync services) and they want to be able to run their desktop applications without having to have a PC in front of them. If they’re using a desktop application like Excel, PowerPoint or Photoshop, it’s the software they want access to. When they’re doing that on a tablet, the Windows desktop itself is more hindrance than help. Microsoft RemoteApp Preview technical specifications (Source: Microsoft) The reason users... --- ### Enabling HTTPS on Windows Server 2008/2012 Certificate Authority for Web Enrollment > Learn to enable HTTPS on Certificate Authority for Web Enrollment on Windows Server 2008/2012, how to create the certificate template, and more! - Published: 2014-06-10 - Modified: 2024-12-03 - URL: https://petri.com/enable-https-certificate-authority-web-enrollment-windows-server-2008-2012/ - Categories: Windows Server 2008 - Article Type: How To In this post, find out how to enable HTTPS on Certificate Authority for Web Enrollment on Windows Server 2008/2012, how to create a digital certificate template, and more! When you install a Certificate Authority (or CA) on a Windows Server 2008/R2/2012, it is usually for the purpose of issuing digital certificates. These are then used by users, computers, devices, and so on to authenticate themselves, to prove their authenticity, and for other types of communication that requires Public Key Infrastructure (PKI) encryption. In today's article I'll walk you through how to enable HTTPS on Certificate Authority for Web Enrollment, how to create the certificate template, and more. Issuing Digital Certificates with Certificate Authority Web Enrollment I will not go into more detail as to why and how you want to install this CA just now (although that's something that I will probably cover in a later article). However, assuming you know a bit about Windows-based CAs, there are basically four common methods of issuing these certificates: Auto-enrollment, in which many types of certificates can be distributed without the client even being aware that enrollment is taking place. These can include most types of certificates issued to computers and services, as well as many certificates issued to users. Another method is enrollment through the Automatically Enroll and Retrieve Certificates from the certmgr. msc console. CNG Application Programming Interface (API) in Windows Server 2008/R2/2012, and CryptoAPI in previous versions of Windows Server. Then there's Web Enrollment (the default URL is http://CA-Name/certsrv), which I'll specifically talk about in this post. This is where CA-Name is the name of the issuing Certificate Authority.  The Certification Authority (CA) Web Enrollment role service... --- ### How Can I Delete a File or Folder from the Command Line Using Windows PowerShell? > Learn how to delete files and folders using PowerShell in this Ask an Admin. Find out how to remove all MP3 files, filter, remove .txt files and more. - Published: 2014-06-09 - Modified: 2024-09-04 - URL: https://petri.com/delete-folder-file-from-command-line-powershell/ - Categories: PowerShell - Tags: disk management, Management, PowerShell, Scripting, Windows 10, Windows 11, Windows Server - Article Type: How To Discover how to use PowerShell to delete files and folders in this Ask an Admin. Find out how to remove all MP3 files, filter, take out .txt files and more. In this Ask the Admin, I’ll show you how to use Windows PowerShell to delete one or multiple folders from the command line. If you would like to move files using PowerShell instead, check out How Can I Move a File or Folder from the Command Line Using Windows PowerShell? on Petri. The information in this article applies to Windows PowerShell, and PowerShell 7 and later versions on Windows 7, Windows 8. 1, Windows 10, Windows 11, and all supported versions of Windows Server. Use PowerShell Remove-Item to delete a single file or folder Let’s start by using the Remote-Item command to delete a single file or folder. Here is the syntax for Remove-Item: Remove-Item                     >]       >]                                          >]        Here is a brief description of what each of the parameters does: Parameter Description -Confirm Prompts you to confirm the operation before running the command. -Exclude Used to exclude a string array, item, or items from the operation. -Filter Remove files and folders that match the specified filter. It works with wildcards and regular expressions. -Force Include this parameter if you want to remove items like hidden or read-only files. -Include Use to include a string array, items, or item that should be affected by the operation. -LiteralPath Specify a path to one or multiple locations without interpreting characters as wildcards. -Path Specify the location for items to be removed. -Recurse Enumerate all child items in the specified... --- ### Interview with Amazon’s Jeff Barr: AWS for Windows Server Admins > Unfamiliar with Amazon Web Services (AWS)? This first part of our two-part interview with Amazon's Jeff Barr will get you up to speed. - Published: 2014-06-09 - Modified: 2024-09-04 - URL: https://petri.com/interview-amazon-jeff-barr-aws-windows-server-administrators/ - Categories: Amazon Web Services - Article Type: Interview Unfamiliar with AWS but looking to embrace the cloud? Our two-part interview with Amazon's Jeff Barr begins with an AWS cloud primer for Windows Server admins. Whether you’ve embraced the cloud computing model or still have reservations, you have to admit that one of the companies driving innovation in IT these days is Amazon, which pioneered the public cloud Infrastructure as a Service (IaaS) model. Amazon Web Services (AWS) is actually a brand name that encompasses several other specific services, including Elastic Compute Cloud (EC2), the Simple Storage Service (S3), and the Amazon Relational Database Service (RDS). Amazon first launched AWS in 2006, and early adopters included developers drawn to the ability to test and launch apps quickly in the cloud, or startups that wanted to leverage Amazon’s massive server infrastructure to host their services, such as Netflix and Pinterest. Over the years AWS has also been used to host more traditional IT workloads in the cloud, and that trend will likely continue. Related: Provisioning Windows Server 2012 on Amazon Web Services (AWS) Fight for the Cloud: Amazon, Google, Microsoft, and VMware Amazon isn’t alone on the cloud IaaS market, and companies like Google, Microsoft, and VMware are doing their best to compete with the market leader.  Google has taken the wraps off the Google Cloud Platform, Microsoft Azure is hitting some impressive growth numbers,  and VMware’s vCloud Hybrid Service (vCHS) has the benefit of leveraging VMware’s entrenched position as the leading virtualization provider for the majority of mid to large enterprises. Yet despite recent efforts by VMware and Microsoft, Amazon’s lead in the IaaS market is a massive one. A recent Gartner report puts Amazon... --- ### Solving the "This Web Browser Does Not Support the Generation of Certificate Requests" Error > Find out how to solve the "This Web Browser Does Not Support the Generation of Certificate Requests" error in this quick tutorial. - Published: 2014-06-09 - Modified: 2024-09-04 - URL: https://petri.com/this-web-browser-does-not-support-the-generation-of-certificate-requests-error/ - Categories: Windows Server - Article Type: How To Irritated by error messages? Find out how to solve the pesky "This Web Browser Does Not Support the Generation of Certificate Requests" error in this quick tutorial. This is one of those little nagging things that bugs me mind all the time. Who at Microsoft was responsible for not doing their job correctly? Of course, there are probably a billion and one excuses, but the following fact is simple: When you use Microsoft Windows 8 or Windows Server 2012 (or you're using Windows 7/Windows Server 2008 R2 with Internet Explorer 10) and you try to install a certificate from Microsoft Active Directory Certificate Services (AD-CS) using the Web Enrollment website, you will see the error message: "This Web browser does not support the generation of certificate requests. " How to Fix the "This Web Browser Does Not Support the Generation of Certificate Requests" Error Now I'm not talking about some esoteric and isolated scenario, I am talking about using Microsoft's latest (at this time) and (probably) best web browser attempting to access a feature that is not old, outdated, or installed on some archaic operating system. This is a daily setup, and it's failing. Why? I looked around, and behold: It seems to be related with how Windows 8's IE 10 works with the Microsoft AD-CS Web Enrollment website, even if it is installed on Windows Server 2008 R2. In order to display the certificate website, we must switch browser modes. Internet Explorer 10 provides the following browser modes: Internet Explorer 10 Internet Explorer 10 Compatibility View Internet Explorer 9 Internet Explorer 8 Internet Explorer 7 The Internet Explorer 10 Compatibility View will allow the certificate Web... --- ### How to Find Out Which Users Are Logged on Windows Server > Learn how to find out which users are logged in to your servers using psloggedon and net session. Read on for more! - Published: 2014-06-05 - Modified: 2024-09-04 - URL: https://petri.com/view-logged-on-users-windows-server/ - Categories: Windows Server - Tags: Management, network management, PowerShell, Sysinternals, Windows Server - Article Type: How To In this Ask an Admin, discover which users are logged in locally and access resources on your servers. Download psloggedon and get started! Apart from trailing through the event logs, Windows Server doesn’t include any easy, built-in way to find out which users are logged in locally to a server. It’s often useful for system administrators to know which users are logged in locally to a server or just remotely accessing resources, whether for troubleshooting purposes, reporting or some other kind of investigation. In this Ask the Admin, I’ll show you how to find out which users are accessing remote resources and which are logged in locally. Enumerate Users Remotely Accessing Server Resources Fortunately it’s easy to get a list of remote users accessing server resources. Start by opening a command prompt with local administrator permissions. These instructions will work on all currently supported versions of Windows Server. Right-click the PowerShell icon on the desktop taskbar and select Run as Administrator. Enter administrator credentials if prompted. In the PowerShell prompt, type net session and press Enter. A list of users, and the IP addresses from which they are accessing resources on the server, will be displayed. Running net session in Windows Server 2012 R2. List Users Logged in Locally to a Remote Server To get a list of users logged in locally to a server, we’ll need to use psloggedon, a tool that can be downloaded free from Microsoft’s website. Once the PS tools are downloaded, extract the zip folder and copy psloggedon. exe to the directory where you want to run the... --- ### Using SharePoint 2013 Managed Navigation to Link to a Search Results Page > Learn to use managed navigation to link to a search results page in SharePoint 2013. Display information, keep URLs tidy, and more! - Published: 2014-06-05 - Modified: 2024-09-04 - URL: https://petri.com/managed-navigation-sharepoint-2013-search-results-page/ - Categories: SharePoint 2013 - Tags: Editor's Pick - Article Type: How To, Overview In this helpful post, find out how to use managed navigation to link to a search results page in SharePoint. Display information, tidy up your URLs, and more! In a previous article, I described how useful it can be to use a result source for search to help users find relevant information. The specific use case was to have a page that shows all of the SharePoint 2013 project sites that a user has access to. In today's article, I'll take the next step and show you how to attach this page to your navigation menu with SharePoint 2013 managed navigation. By using search results pages and managed navigation, you can create some no-code solutions that display lots of information, make the information easy to find, and keeps your URLs looking tidy and straight-forward. Managed Navigation Requirements Getting the managed navigation going will require a little bit of setup. You’ll be relying on some site collection features and some service applications, plus you’ll need a page to link up. And you’ll need to have all of the necessary permissions to perform these actions. I’ll go into each of these in a little more detail below. Managed metadata service You’ll need a managed metadata service running in your farm. There are good chances that this is already running in your farm if you’re already exploring working with your sites. However, if it’s not then one can be created in Central Administration in the Manage Service Applications section. Site collection and permissions The navigation that we’ll be configuring will be done at the root of a site collection and will be inherited through other sites in the... --- ### 5 Reasons to Choose VMware vSphere 5.5 over Windows Server 2012 R2 Hyper-V > Can't decide between VMware vSphere 5.5 and Windows Server 2012 R2 Hyper-V? VMware vExpert David Davis offers up five reasons why VMware is the better option. - Published: 2014-06-04 - Modified: 2024-11-19 - URL: https://petri.com/choose-vmware-vsphere-over-windows-server-2012-r2-hyper-v/ - Categories: VMware - Tags: Editor's Pick - Article Type: Opinion Trying to choose between VMware vSphere 5.5 and Windows Server 2012 R2 Hyper-V? David Davis serves up five reasons why he thinks VMware is the better option. Editor's Note: Petri IT Knowledgebase contributor David Davis makes the case for VMware vSphere 5. 5 over Windows Server 2012 R2 Hyper-V in this opinion post. In the interest of fairness, we also published an additional contrasting viewpoint by Aidan Finn on why you should choose Windows Server 2012 R2 Hyper-V over VMware vSphere 5. 5. Not long ago, Microsoft MVP Aidan Finn wrote an article here called "5 Reasons To Choose Windows Server 2012 R2 Hyper-V over VMware vSphere 5. 5. " While I have great respect for Aidan's Hyper-V expertise and passion, I must respectfully disagree with his choice for the best hypervisor for the enterprise available today. Instead of trying to make this a point-by-point comparison, I’m going to express my personal five reasons on why you should choose vSphere over Hyper-V. My History with VMware In order to be clearly transparent on my background and perspective, I'd like to share a bit of my personal history. I managed a datacenter where we consolidated our physical servers using VMware ESX Server during the 2007-2008 timeframe, ending up with about 60+ VMs running across a small cluster. We even virtualized a number of tier 1 applications such as an Exchange 2007 Server and domain controllers supporting approximately 2,000 users. VMware’s solution allowed our small, underfunded team to be more efficient, allowing us to do things that we never dreamed possible, like moving a running virtual machine from one host to another in order to perform host maintenance or upgrades. VMware’s virtualization... --- ### Missing Windows Key + X Shortcut in Windows 8.1 > Missing the Windows Key (Winkey) + X shortcut context menu? Discover how to reinstall it on your computer in this easy instructional article. - Published: 2014-06-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-8-1-find-winkey-x-shortcut-menu/ - Categories: Windows 8 - Article Type: Overview Missing the Windows Key + X shortcut context menu in Win 8.1? Discover how to find it on in this easy instructional article. Since the release of Windows 8, many of the regular shortcuts were replaced by other, much more complex shortcuts or methods of doing things. Why Microsoft chose to hide some of the easy-to-use options in Windows (shutting down or rebooting is just one of them) is beyond human comprehension. (Perhaps the person that was responsible for the Windows 8 shift to the "Metro" style, Steven Sinofsky, could have given a reason, but unfortunately he either left the company – or was fired – and has since then remained quiet. ) Thankfully, some of these missing, awkward, or hard-to-find "shortcuts" were fixed with the advent of Windows 8. 1. In today's article, I'll show you how to get the Windows Key +X shortcut menu. Windows Key (WinKey) + X Shortcut: Case of the Missing Menu However, one of the nice additions to the Windows 8 interface is the Winkey+X shortcut, or the Start button > right-click shortcut (same thing). In Windows 8. 1 this shortcut was made better by the addition of the power options, which pops out a context menu that provides quick access to lots of useful Windows utilities and features such as Task Manager, Power Options, Run, Command Prompt, and Control Panel. The problem this article tries to solve is what to do when the Winkey+X key combination and the Start button > right-click context menu does not appear in the first place. The reason for not having the Winkey+X context menu is a mysterious one. For me, the... --- ### How to Enable Windows Firewall in Windows 8.1 > Check the status of / enable Windows Firewall in Windows 8 using the GUI and PowerShell. - Published: 2014-06-04 - Modified: 2024-09-04 - URL: https://petri.com/enable-windows-8-1-firewall/ - Categories: Windows 8 - Tags: Management, PowerShell, Security, Windows 8, windows firewall - Article Type: How To Is your firewall enabled? Discover how to check on the status of your Windows Firewall and enable it in this Ask an Admin. Windows Firewall is enabled by default in all versions of Windows, but sometimes it gets manually disabled by an administrative user, or maybe disabled surreptitiously by malware without your knowledge. In this Ask the Admin, I’ll show you how to check that Windows Firewall is enabled and working effectively using the GUI and PowerShell. The Windows Firewall blocks all unsolicited incoming connections and some outbound connections. Even if you are on a private network, or connected to the Internet behind a Network Address Translation (NAT) router, the firewall still plays an important role in making sure that your PC isn’t exposed to other devices that might appear on your local network. Check Windows Firewall Status The easiest way to check the status of Windows Firewall is to open the Action Center and make sure there are no related warnings. The Action Center continuously monitors the firewall to check that it is enabled. To open the Action Center: Open the Action Center using Windows Search: Press the WINDOWS key to switch to the Start screen. Type action and the Search panel will appear on the right. Select Action Center from the results. Once the Action Center has opened, check there are no red alerts pertaining to Windows Firewall. Open the Windows Firewall settings in the Control Panel to check your protection status: Press the WINDOWS key to switch to the Start screen. Type firewall and the Search panel will appear on the right. Select Check firewall status from the results... . --- ### We're Hiring! Looking for Security, Office 365, and SharePoint Writers > The Petri IT Knowledgebase is hiring! We're looking for contract writers to cover IT security, Office 365 and SharePoint. Apply within! - Published: 2014-06-03 - Modified: 2014-06-03 - URL: https://petri.com/hiring-security-office-365-sharepoint-writers/ - Categories: Security - Article Type: News The Petri IT Knowledgebase is hiring! We're looking for contract writers to cover IT security, Office 365 and SharePoint. Apply within! The Petri IT Knowledgebase is hiring! We're looking to add two more contract writers to our content team: One focused on IT security, and another focused on Office 365 and SharePoint. Both openings are contract freelance positions and are designed to accommodate someone who works as an IT professional or consultant in those topic areas, but has free time available to write about their respective areas of expertise.  Compensation will vary depending upon experience and expertise. Both positions are remote, so applicants can work from home. Both openings require a certain number of posts on a weekly and monthly basis, and the content we're looking for consists primarily of how-to and opinion articles. Here are some additional details of the responsibilities of both openings, followed by more specific information on each position. Responsibilities Write two how-to and opinion blog posts per week and two long-form how-to technical articles per month Post content directly into a WordPress-based web content management system (CMS) Promote content and engage with readers using popular social media platforms. Submission Process Applicants should follow the links below for more information on each specific position, and should send in the following materials when applying: Cover Letter Resume Two writing samples (or links to them) Links to previously published work, blogs, and social media handles (LinkedIn, Facebook, and Twitter) IT Security Writer Are you an IT security professional who has extensive, hands-on experience with implementing an IT security strategy for a medium to... --- ### Failing KB2919355 Update for Windows 8.1 > Find out how to manually install the Windows 8.1Update (KB2919355) with this helpful post. - Published: 2014-06-03 - Modified: 2024-11-19 - URL: https://petri.com/windows-8-1-kb2919355-installation-update/ - Categories: Windows 8 - Article Type: Overview Frustrated by installation failures? In this helpful post, find out how to manually install the Windows 8.1Update (KB2919355). This is one of those nasty issues that you can spend whole days trying to figure out and practically give up to the point of almost reinstalling the operating system, when you finally stumble on what seems a totally unexpected solution that has nothing to do with the problem, or with the error you've been getting. I recently faced this problem when I could not install the latest update 1 (KB2919355) for a whole bunch of computers running Windows 8. 1 Professional. All of these computers were installed from a vanilla ISO image, and were not cloned, yet they all faced the same problem. In this article, I'll show you how to solve this dilemma and manually install the KB2919355 update for Windows 8. 1. Windows 8. 1 KB2919355 Update: Features and Failures The latest update for Windows 8. 1 is not only just about security updates, it also has some additional functionality such as the ability to minimize and close "Modern Apps" (apps that run in the non-desktop mode of Windows 8, what used to be called "Metro"), to see modern app icons in the taskbar, and also to be able to perform power down and sleep/hibernate actions in a quicker manner from the Start page. Before: After: Having "Modern" apps in the taskbar: Trying to install KB2919355 using Windows Update: After what seemed like a successful installation, I rebooted the computers. But each time I tried, it failed each time with the following error.   Looking at the Event Viewer... --- ### How to Configure Result Source for Search in SharePoint 2013 > Learn to use Result Source for Search in SharePoint 2013 to enable users to see their project sites. Easy-to-follow instructions and more! - Published: 2014-06-03 - Modified: 2024-09-04 - URL: https://petri.com/configure-result-source-for-search-sharepoint-2013/ - Categories: SharePoint 2013 - Tags: Editor's Pick - Article Type: How To Still searching? Learn to create a simple place where users can see their project sites in SharePoint 2013 with the help of this detailed how-to article. This article is going to demonstrate create a no-code solution to a simple problem in SharePoint 2013, which is how to display limited information to a user based on their permissions. More specifically, this solution will be a web page that shows a user a directory of all of the project sites within SharePoint that the user has permissions to view. Result Source for Search in SharePoint 2013 Like any good solution, we are going to need a problem! It only makes for a good use of your valuable time and effort to begin with trying to solve a problem with your solutions. The business need we’re trying to solve with this solution is this: We need a place for people to find all of the project sites that they have access to. It needs to automatically update – that is, new sites need to be added to the list without somebody going into the list and updating manually. Using the SharePoint Search Service At the heart of this approach is the SharePoint search service. We’ll be making some calls to the search service to get the list of sites. This takes care of one of our business needs – avoiding manual updates. This search will be performed through a web part. However, instead of prompting the user to enter in search terms, we’re going to configure a web part to return a specific search query. The specific search query we’re going to run will be created... --- ### How to Share Files from Microsoft OneDrive Using Short URLs > Learn about OneDrive and how to share files and folders using short URLs with the help of this short how-to post. - Published: 2014-06-02 - Modified: 2024-11-19 - URL: https://petri.com/share-files-microsoft-onedrive-short-urls/ - Categories: Cloud Computing - Tags: OneDrive - Article Type: How To In this how-to post, learn about one of OneDrive's awesome features: sharing files and folders using short URLs. I love Microsoft OneDrive (previously known as SkyDrive), and I use it regularly to upload pictures from my Windows and Android phones, to share files with my colleagues and friends, and just to have a safe place to keep the stuff that I need on a regular basis. While there are other online (or cloud) -based storage services out there such as DropBox, Copy, Sugar Sync, and Google Drive, one of the unique OneDrive features I like is the ability to share files and folders using short URLs instead of a lengthy random URL. This can be useful in many situations and especially when sharing stuff via Twitter. It's worth mentioning that I got this tip from Ciprian Rusen. He is a blogger at 7 Tutorials and coauthored a book called Windows 8. 1 Step by Step. Note: This tip works for both Windows 8/8. 1 and Windows 7. Sharing an Item from OneDrive with a Short URL: Prerequisites The first thing we need in order to share anything via OneDrive is to have a Microsoft account (previously known as a "Live ID"). If you are using a local account on your Windows 8 or 8. 1 PC, you can’t share anything via OneDrive. If you don't have one, create it now. How to Start the OneDrive Sharing Wizard First, open File Explorer (in Windows 8 or 8. 1) or Windows Explorer (in Windows 7) and go to the OneDrive folder. Identify the file or folder you want shared and select... --- ### Automatic Start and Stop Actions for Hyper-V Virtual Machines > Hyper-V Automatic Start and Stop | Learn to control if/how Hyper-V VMs will automatically stop or start before and after a host shutdown or startup. - Published: 2014-06-02 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-automatic-start-and-stop/ - Categories: Hyper-V - Tags: Hyper-V, virtual machine, Virtualization, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: Overview In this overview, find out how to control if/how Hyper-V VMs will automatically stop or start before and after a host shutdown or startup. Hyper-V allows you to control the automatic start and stop behavior of virtual machines. This means that you can decide how a virtual machine will react before a host gracefully shuts down or after it boots up. Hyper-V treats virtual machines that are running on non-clustered hosts differently to those that are running on Hyper-V clusters (highly available virtual machines). I will discuss how virtual machines that are running on a non-clustered host will behave in this post. The behavior of highly virtual machines will be dealt with in a following post. Hyper-V Automatic Start Action If you edit the settings of a virtual machine, browse to Automatic Start Action. This allows you to configure what a virtual machine will do when its host starts up. There are three options: Nothing: The virtual machine will remain offline after the host boots up. Automatically Start If It Was Running When The Service Stopped: This option is useful in a test lab. You might have a mixture of virtual machines that are either running or stopped when the host shuts down. Hyper-V will automatically start up this virtual machine if this option is selected and the virtual machine was running when the host was shutdown. Always Start This Virtual Machine Automatically: This is the option you are likely to use for production virtual machines. You want to minimize downtime so the virtual machine will be started up when Hyper-V starts. Note that there is a sub-option to delay this... --- ### Recreate a Virtual Machine in Microsoft Azure > Learn how to recreate a virtual machine in Microsoft Azure without backing up or reinstalling the operating system. - Published: 2014-05-29 - Modified: 2024-09-04 - URL: https://petri.com/recreate-virtual-machine-in-microsoft-azure/ - Categories: Cloud Computing - Tags: Azure, virtual machine, Virtualization, Windows Server 2012 - Article Type: How To Wondering how to recreate a VM in Azure without losing your OS? Learn to recreate a VM in Azure in this Ask an Admin! In this easy Ask the Admin, I’ll show you how to quickly recreate a virtual machine configuration in Microsoft Azure without having to reinstall or back up the virtual hard disk. On rare occasions it might be necessary to recreate a virtual machine configuration in Azure. This can be easily achieved using the management portal and doesn’t involve having to restore your image from a backup or reinstall the operating system. Delete the Existing Virtual Machine Log on to the Azure Management Portal. In the left pane, click the Virtual Machines icon. In the right pane, click the name of the VM you want to recreate. Click Delete in the grey bar at the bottom of the portal and select Keep the attached disks from the menu. Confirm the action by clicking OK and wait for the operation to complete. In the left pane, click Cloud Services. In the right pane, click the cloud service for the VM you just deleted and switch to the dashboard tab. The name of the cloud service and VM are usually the same. Click Delete in the grey bar at the bottom of the portal window. Confirm that you want to delete the cloud service by clicking Yes. Note that if you delete a cloud service, there is no guarantee that you will be able to use the same external DNS name again. Additionally, external IP addresses are generated automatically when a cloud service is created, so if you rely on an... --- ### Show Hidden Files and Folders in Windows 7 > This handy how-to article will show you how to reveal hidden files and folders on a PC running Windows 7. - Published: 2014-05-29 - Modified: 2024-09-04 - URL: https://petri.com/show-hidden-files-folders-windows-7/ - Categories: Windows 7 - Tags: Editor's Pick - Article Type: How To Need to show hidden files and folders in Windows 7? This handy step-by-step tutorial will show you how. By default, Windows 7 -- and nearly every other Windows operating system -- hides a fair number of important files and folders from view. This is primarily done to prevent inexperienced and novice computer users from deleting important system files accidentally. Yet there are cases when you need to show hidden system files and folders, especially when you're editing system configuration files, or performing other system maintenance that requires you to view those items. In this short tutorial I'll show you how to show hidden files and folders on a PC running any edition of the Windows 7 operating system. Show Hidden Files and Folders in Windows 7 To begin with, make sure you're on the Windows 7 desktop. 1. Click on the Start button, select Control Panel, click on Appearance and Personalization, and then click on Folder Options, which I've highlighted with a red outline in the following screenshot. 2. Click on the View tab in the Folder Options window that appears (see below). 3. In the Advanced Settings section in the center of the Folder Options window look for the Show hidden files, folders, and drives radio button -- found under the Hidden Files and Folders divider -- and select it as shown in the example below. You may need to use the vertical slider on the right side of the window to scroll down to see the options listed, depending on your current screen resolution settings. 4. I'd also suggest that you deselect... --- ### Easily Edit the Hosts File in Windows 7 > Edit the hosts File in Windows 7 by using Notepad with these easy step-by-step instructions. - Published: 2014-05-28 - Modified: 2024-09-04 - URL: https://petri.com/edit-hosts-file-windows-7/ - Categories: Windows 7 - Tags: Editor's Pick, hosts file - Article Type: How To Learn how to edit the hosts file in Windows 7 to block specific websites and redirect users to different URLs in this handy how-to guide. The hosts file is a small text file that is used by the TCP/IP stack of a computer operating system (OS) to configure how that OS resolves hostnames -- like petri. com -- to an underlying IP address (184. 72. 55. 242). So what can you accomplish by editing a hosts file? If you work in web development, proper editing of a hosts file allows you to redirect someone to a different URL. This might be useful is you have a website under development that exists at domain name that has the same name as an existing website. Some simple editing of the hosts file on a target computer will send the user of that PC to the correct website. I'll show you the steps needed to accomplish this a bit later in this article. You can also edit the hosts file to block users from visiting certain websites. Manually editing hosts files for hundreds (if not thousands) of machines isn't an ideal solution, as there are more effective third-party tools available that can do that more easily. It's a good skill to learn how to do manually, however, so I'll show you how to do that as well. What is in the hosts file? A hosts file contains text information that maps IP addresses to desired host names. Regardless of whether the hosts file exists on a Windows, Linux, or Macintosh machine, the contents will be the same: IP addresses are listed on the left, followed by the host name... --- ### How to Easily Assign a Static IP Address in Microsoft Azure > Learn how to use PowerShell to quickly assign a static IP address in Microsoft Azure using this quick 'n easy Ask an Admin post. - Published: 2014-05-28 - Modified: 2024-09-04 - URL: https://petri.com/assign-static-ip-address-microsoft-azure/ - Categories: Cloud Computing - Tags: DHCP, Microsoft Azure, PowerShell, Windows Server 2012 - Article Type: How To In this quick 'n easy Ask an Admin post, find out how to use PowerShell cmdlets to quickly assign a static IP address in Azure. Microsoft is constantly improving its Azure cloud computing platform, and in spring this year a series of updates to Microsoft Azure PowerShell cmdlets made it much easier to assign VMs with a static IP address. Prior to the spring round of updates to the Azure platform, the only way to assign a static IP address to a VM was to create the VM entirely using PowerShell. Now it’s possible to create a VM in the management portal and then configure a static IP address using PowerShell. In today's Ask an Admin, I'll show you an easy way to assign a static IP address in Microsoft Azure. Assigning a Static IP Address: Preparation Start by creating a new VM using the Azure management portal. For more details on how to complete this task, see "Deploy Windows Server 2012 in an Azure Virtual Machine" on Petri IT Knowledgebase. You will also need to install the latest Windows Azure PowerShell cmdlets on your management workstation. The easiest way to do this is to download and install the Web Platform Installer. To set up a secure connection to your Azure subscription, see "Setup Windows Azure PowerShell Management. " You will also need to have a virtual network already created in order to assign an IP address from its DHCP pool. For more information, see "Setup a Virtual Network in Windows Azure. " In this article, I created a couple of subnets specifically for servers that needed static IP addresses in a lab environment... . --- ### TechEd 2014 Interview: Microsoft General Manager Mike Shutz Discusses Azure, Hybrid Cloud > Meet Mike Shutz (General Manager, Product Marketing, Server and Tools Division) as we discuss hybrid cloud, Microsoft Azure, the future of the IT pro, and more. - Published: 2014-05-28 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-general-manager-mike-shutz-interview-azure/ - Categories: Cloud Computing - Tags: Azure, Azure Site Recovery, DR, ExpressRoute, Hyper-V, Hyper-V Replica, IaaS, Microsoft, PaaS, SaaS, StorSimple, TechEd, virtual machine - Article Type: Interview Find out what Microsoft GM Mike Shutz thinks about hybrid cloud, Azure, the future of the IT pro, and more in this interview. I recently sat down with Mike Shutz -- Microsoft's general manager for product marketing for the Cloud and Enterprise Division -- at TechEd North America 2014. Schutz and I previously met and talked at a TechNet launch event for Windows Server and System Center 2012 R2 in Germany. This history paved the way for our most recent meeting, which wasn’t the typical media Q & A session. Instead, this was a full conversation, in which we covered topics such as the hybrid cloud, Microsoft Azure, the future of the IT pro, and end-user computing. Due to its length, this article is part one of a two-part interview. Interview with Microsoft General Manager Mike Shutz Mike Shutz: Since , as you’ve probably seen, we’ve focused a lot on hybrid cloud services that would light up both on-premises capabilities with Windows Azure and vice versa. One of the things we’ve seen is that customers’ on-premises infrastructures are not going away any time soon. We think there’s great scenarios for you to make use of the public cloud. How do we bridge that gap? Back in the fall we talked a lot about Window Server 2012 R2, System Center 2012 R2, and the Windows Azure Pack to build consistent clouds on-premises or with service providers. And since then things like Azure Backup, Hyper-V Recovery Manager, and now Azure Site Recovery, allow us to use Azure as that failover location, and StorSimple provides really... --- ### Trust Still the Main Hurdle for Cloud Computing > Will international companies trust cloud platforms powered by U.S. companies? Learn more in this opinion post. - Published: 2014-05-27 - Modified: 2024-09-04 - URL: https://petri.com/cloud-computing-international-companies/ - Categories: Google Cloud Platform - Tags: Editor's Pick, Microsoft Azure, Windows - Article Type: Overview Trust remains an issue in cloud computing. Will international companies trust cloud platforms powered by U.S. companies? Learn more in this opinion post. As Microsoft focused on its Azure cloud computing platform at this year’s TechEd North America conference, assurances that it will fight all requests by federal agencies to access data held on servers located outside the United States may not be enough to persuade international customers that their data is in safe hands. If the disclosures by Edward Snowden served only to confirm what had long been suspected – that the United States and British governments colluded to collect private information without our knowledge – then a recent decision by the U. S. Supreme Court to force Microsoft to comply with a search warrant for data held on a server in Dublin is merely going to muddy the already unclear waters. Businesses in European countries closely aligned to the United States may not be too concerned about the Supreme Court’s latest ruling, which Microsoft intends to appeal, but others already harbor a level of distrust that is enough to impact decisions about moving data to cloud services provided by American companies. Up in the Cloud with Microsoft Azure (Image via blogs. msdn. com) Sanctions have prompted Russia to start the development of its own national payment system to reduce reliance on Visa and MasterCard, and the country has begun to demand companies wishing to store personal information online must locate the data inside the Russian Federation. After all, why should the United States be able to snoop freely on foreign citizens while shutting... --- ### Create PowerShell Scripts Faster with the Script Browser and Analyzer > Learn about Microsoft's new plugin for PowerShell ISE that adds a script browser and script analyzer in this quick Ask an Admin. - Published: 2014-05-27 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-script-browser-script-analyzer-for-powershell/ - Categories: PowerShell - Tags: Ask an Admin, command line, Management, PowerShell, PowerShell ISE 3.0, Windows Server - Article Type: How To Want to browse the TechNet script gallery inside the PowerShell ISE? Discover the new plugin for PowerShell ISE that adds a script browser and analyzer. The Windows PowerShell Integrated Scripting Environment (ISE) is a useful tool for writing and testing scripts, and Microsoft has recently released a new ISE plugin that can help you develop PowerShell scripts. In today's Ask an Admin, I'll show you how to use the Microsoft Script Browser and Script Analyzer to create those PowerShell scripts even faster. Microsoft TechNet contains an extensive gallery of more than 9,000 PowerShell scripts that administrators can use as a starting point for developing their own PowerShell solutions. Microsoft’s Script Browser allows administrators to search the gallery directly in the PowerShell ISE, download scripts, and access them offline. Additionally, Script Analyzer checks your scripts against seven best practices. You can download version 1. 2 of the plugin for free, and it can be installed on Windows 7 and Windows Server 2008 R2 (or later). Browsing TechNet in PowerShell ISE Once you have downloaded and installed the tool, start PowerShell ISE as an administrator. The following instructions are for Windows 8. 1. Switch to the Start screen, type powershell ise and make sure it is selected in the search results. Once selected, press CTRL+SHIFT+ENTER to start PowerShell ISE as an administrator. Give consent or provide credentials if prompted. After a few seconds, the PowerShell ISE window will open. On the right of the ISE window, you should see three tabs: Script Browser, Script Analyzer, and Commands. Switch to the Script Browser tab. The Microsoft Script Browser and Script Analyzer for PowerShell... --- ### Controlling the Change Password Feature in Exchange 2013 Outlook Web Access (OWA) > Learn how to control the Change Password feature in Outlook Web Access (OWA) for Exchange 2013. - Published: 2014-05-26 - Modified: 2024-11-19 - URL: https://petri.com/change-password-outlook-web-access-exchange-2013/ - Categories: Exchange 2013 - Tags: Editor's Pick - Article Type: How To In this detailed walkthrough, learn to take control of the Change Password feature in Outlook Web Access (OWA) for Exchange 2013. One of the features a lot of companies loved about Microsoft’s Internet Security and Acceleration Server (ISA Server) 2006 and the Forefront Threat Management Gateway (TMG) 2010 forms-based authentication was the built-in functionality to allow for password resets before a user logs on. This scenario was very useful if users forgot their password or if the user/domain password policy forced users to change passwords on a regular basis. While the password reset feature is well documented for Exchange 2010, I haven’t found any description on how to make this work for Exchange 2013. After investigating a bit, I think I have found an acceptable solution, which – of course – results in another how-to article for Petri IT Knowledgebase! This is a two-part series. In this first article, I’ll focus on the change password feature Outlook Web Access for Exchange 2013: how it works and how Exchange administrators can take control of this feature, allowing or disallowing it for all or certain mailbox users within the company. In part two I’ll explain how to configure your Exchange Servers to allow mailbox users to reset their expired passwords from within the Forms Based Authentication page. OWA Password Resets I see two possible scenarios in which password resets could be helpful: While user is logged on in OWA When a user’s password has expired A third scenario is a situation in which an end user mistypes his or her password too many times resulting in an account lock-out, but I... --- ### Monitoring PCoIP Session Statistics in VMware Horizon View Desktops > Learn how to easily monitor performance session statistics in VMware Horizon View in this quick walkthrough. - Published: 2014-05-26 - Modified: 2024-09-04 - URL: https://petri.com/monitor-pcoip-session-statistics-vmware-horizon-view/ - Categories: VMware - Tags: EUC, PCoIP, Perfmon, VDI, VMware Horizon View - Article Type: How To Looking for a way to easily monitor session statistics in VMware Horizon View desktops? Read our performance monitoring walkthrough. Network traffic in virtual desktops (VDI) is often given little thought or forgotten altogether. There are many reasons why you would want to monitor network traffic. Some common reasons are for troubleshooting an existing environment or for planning a new one. In this post I will walkthrough some basic methods for monitoring PCoIP traffic in a VMware Horizon View (formerly VMware View) desktop. VMware Horizon View and Perfmon Since the release of VMware View 5, VMware has included additional WMI counters that get installed when the View agent is loaded in your desktop images. These counters are used for monitoring PCoIP session statistics. The easiest way to monitor these is to run Perfmon in a desktop. This works great and it's free, so if you do not have a tool that can monitor WMI counters remotely this will get the job done.   Monitor VMware Horizon View Network Statistics Open Perfmon in a VMware Horizon View desktop session in which you want to monitor the network stats. Once in Perfmon, choose the add counters option and scroll down and look for the PCoIP counters. You can see from the image below that there are a number of counters with several ones within each item. PCoIP counters in Perfmon.   Once you have located all the counters, expand each topic to find the counters that you want to select. For this post I will be using the PCoIP session network statistics items. Once expanded,... --- ### TechEd 2014: What's New for IT Pros > Discover what's new in Microsoft products in our recap of the announcements at TechEd North America 2014. - Published: 2014-05-22 - Modified: 2024-11-19 - URL: https://petri.com/teched-2014-news/ - Categories: Cloud Computing - Tags: Azure, Azure Files, Azure Site Recovery, Cloud, Cloud App Discovery, Cloud OS, ExpressRoute, hybrid cloud, Internal Load Balancing, Microsoft, networking, RemoteApp, Virtual Network - Article Type: News Discover what's in store for Microsoft products, straight from TechEd North America 2014! On the first day of TechEd North America 2014, Microsoft Corporate Vice President Brad Anderson announced new products for IT pros. In this article I will discuss the announcements that most IT pros will want to know about. Related: TechEd 2014: Microsoft details "cloud-first, mobile-first" strategy What's New for IT Pros Azure Site Recovery Preview One of the most popular features of Hyper-V since the release of Windows Server 2012 has been Hyper-V Replica, a built-in asynchronous method of replicating running virtual machines to a secondary or disaster recovery (DR) site. There are certain questions I always expected when I talked about Hyper-V Replica, including, “Can I replicate my virtual machines to Azure? " The answer has always been a firm “No. " But that will change when Azure Site Recovery (ASR) goes into preview in June 2014. ASR is built on Hyper-V Recovery Manager (HRM) the Azure-based orchestration tool that manages replication and failover of VMM-managed virtual machines. Using Azure Site Recovery as a secondary site for Hyper-V Replica and Hyper-V Recovery Manager. ASR will be very interesting to small/medium enterprises (SMEs), enabling these companies to invest in business continuity with little to no capital expenditure. The costs of ASR will be minimal operational expenses. This makes ASR one of the “on ramps” that Anderson talked about: a cloud technology that will encourage companies to look more at what hybrid cloud can offer. But there is a catch. As you can see in the above... --- ### Windows Phone 8.1 First Impressions > See how Windows Phone 8.1 stacks up against the competition in terms of navigation, functuality, social network integration, apps, and more. - Published: 2014-05-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-phone-8-1-first-impressions/ - Categories: Mobile - Tags: mobility, Windows, windows phone 8 - Article Type: How To, Review Considering the new Windows Phone 8.1? Find out how it stacks up against the competition for navigation, functuality, price, apps, and more. Windows Phone 8. 1 is powerful and capable, but also simple and elegant. The only serious drawbacks are the limited app support and lack of market inertia. In this post, I'll review some of my first impressions of the new Windows Phone 8. 1. I’m not a very phone-orientated person, as I spend most of the day sitting in front of a notebook, so when I’m with friends I prefer not to log in to Twitter and Facebook. But having recently added an Android tablet to my lineup of portable devices, I decided that it was time for a phone upgrade. The last Windows-based smartphone I owned (if one could call it that) was an HTC Windows Mobile 6. 5 device, and it was an unmitigated disaster. The only useful apps were Abbyy Lingvo, my offline translator of choice; Skype; and Internet Explorer. But worst of all, it let me down by refusing to automatically connect to a mobile operator when I was abroad. On the realization that manual network selection was only possible with the help of a third-party registry editor, I decided to end my relationship with Windows Mobile forthwith. Despite the bad memories of Windows Mobile, the announcement that Windows Phone 8. 1 had RTM’d prompted me to take a serious look again at Microsoft’s mobile offering. I’m quite familiar with Android, and can find my way around iOS, so it would certainly be interesting to see how Windows Phone compared. Considering how much I’ve enjoyed working with... --- ### Using the Cisco AnyConnect Secure Mobility Client > Learn more about the Cisco AnyConnect Secure Mobility Client, including licensing and migration recommendations. - Published: 2014-05-21 - Modified: 2024-09-04 - URL: https://petri.com/cisco-anyconnect-secure-mobility-client-overview/ - Categories: Cisco - Tags: Cisco AnyConnect Secure Mobility Client, Cisco VPN Client - Article Type: How To, Overview In this overview, learn about the Cisco AnyConnect Secure Mobility Client, including migration and licensing differences from Cisco VPN Client. With the introduction of the Cisco AnyConnect Secure Mobility Client in the last few years and the slow depreciation of their VPN client, many companies are in a situation of trying to decide when to make the move from the older client to the newer one. This article will provide a quick review of the differences between the older and the newer client along with some information about the licensing differences between the two and recommendations on when to make the switch. Cisco AnyConnect vs Cisco VPN Client To start off, you may want to check out a previous article in which I discuss the differences between the Cisco VPN Client vs Cisco AnyConnect Client. At a high level, there are two major differences between the two clients: First, the AnyConnect client supports both SSL and IPsec VPN options (including support for IKE 2. 0 and NSA Suite B IPsec), while the VPN client only supports IPsec. Second, the AnyConnect client has been developed as a solution that reaches outside the simple VPN client through the use of modules. Cisco AnyConnect Module Options The Cisco AnyConnect Secure Mobility Client is not limited to its support as a VPN client – it also has a number of other options that can be integrated as modules, including the following. AnyConnect VPN – This is the most obvious module, providing the ability to use the client as a VPN endpoint. AnyConnect VPN Start Before Login – This... --- ### 3 Tips for Working with the Active Directory Administrative Center (ADAC) > Check out our 3 tips to help you work faster with the Active Directory Administrative Center (ADAC). - Published: 2014-05-21 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-administrative-center-adac-tips/ - Categories: Active Directory (AD) - Tags: Active Directory Administrative Center, Management, Windows Server 2012 - Article Type: How To In this Ask an Admin, learn a few tricks to work faster with the Active Directory Administrative Center (ADAC). The Active Directory Administrative Center is more than just a hand-holding tool for newcomers learning Active Directory. As I outlined in another Petri post, "Why Learn the Active Directory Administrative Center," managing large distributed forests can be difficult using the management consoles provided by Microsoft, so a new tool was required that could be used by beginners and seasoned professionals alike. In this easy Ask the Admin, I’ll show you three ways to more efficiently work with the Active Directory Administrative Center (ADAC) in Window Server 2012. ADAC: Pin OUs and Containers in the Navigation Pane The Active Directory Users and Computers (ADUC) management console shows AD only in a hierarchical view, and is fine if you don’t have deeply nested OUs and just one domain. As AD grows, having to dig down each time you need to find an object can become tiresome. ADAC automatically pins recently accessed Organizational Units (OUs) and containers to the navigation pane, enabling administrators to quickly start working where they left off. To manually pin an OU or container to ADAC’s navigation pane, log on to a Windows Server 2012 domain controller (DC) as a domain administrator or user that has read access to Active Directory. Open Server Manager using the icon on the desktop taskbar. In Server Manager, select Active Directory Administrative Center in the Tools menu. In the Active Directory Administrative Center, select Add Navigation Nodes from the Manage menu in the top-right corner. In the Add Navigation Nodes... --- ### TechEd 2014 Interview: Mark Russinovich on Microsoft Azure > Read our interview with Microsoft Technical Fellow Mark Russinovich to get the latest on Microsoft Azure and what new CEO Satya Nadella brings to the company. - Published: 2014-05-20 - Modified: 2024-11-19 - URL: https://petri.com/teched-2014-interview-mark-russinovich-on-microsoft-azure/ - Categories: Microsoft Azure - Article Type: Interview Read our interview with Microsoft Technical Fellow Mark Russinovich to get the latest on Microsoft Azure and what new CEO Satya Nadella brings to the company. If you attended Microsoft TechEd North America 2014 this year, you more than likely know who Mark Russinovich is. In addition to being a Technical Fellow working with the development team on Microsoft Azure, Russinovich is a well-known IT conference speaker. He's so well-known that his sessions at TechEd were routinely filled to capacity, prompting some conference attendees to take to Twitter to express their opinion on the need for larger conference rooms for Russinovich sessions. In addition to his work on Azure, Russinovich has a long history in the IT industry. His Winternals software company (with co-founder Bryce Cogswell) was launched in 1996, which produced the now-ubiquitous (and still updated) Windows Sysinternals suite of software utilities. He also uncovered the infamous Sony DRM rootkit in 2005, and he’s also written three fiction novels focused on IT security: Zero Day, Trojan Horse, and the just-released Rogue Code. Microsoft Technical Fellow Mark Russinovich (Source: Mark Russinovich) I had the opportunity to sit down with Mark for a 30-minute interview at Microsoft TechEd 2014, where we discussed the Microsoft Azure announcements from the show, what the growth of the cloud means for IT professionals, and provided some tips and advice for system administrators looking to beef up their cloud skills. Editor’s Note: This interview has been edited for space and clarity. Jeff James: Let’s start with a discussion about the keynote. The keynote had a ton of Azure news: There's all sorts of updates to Azure,... --- ### Remove Stale Computer Accounts from Active Directory Using PowerShell > Search for and remove inactive users and computer accounts and query Active Directory – all by using PowerShell. Find out how in this Ask an Admin. - Published: 2014-05-20 - Modified: 2024-09-04 - URL: https://petri.com/find-remove-inactive-accounts-from-active-directory-powershell/ - Categories: Active Directory (AD) - Tags: Active Directory, command line, Management, PowerShell - Article Type: How To Search for and remove inactive users and computer accounts and query Active Directory – all by using PowerShell. Find out how in this handy post! Keeping Active Directory (AD) tidy can help reduce replication bandwidth if you have domain controllers in different sites, and make troubleshooting and management easier. In this Ask the Admin, I’ll show you how to easily remove a computer account from AD, and how to query the directory for accounts that haven’t been used in a long time. Remove Computer Accounts Using PowerShell To remove one or more computer accounts using PowerShell, log on to Windows Server 2012 R2, or a Windows 8 management workstation that’s a member of your Active Directory domain, using an account that has permission to delete AD objects. If you decide to run the commands on a machine that isn’t a domain controller, the AD module for PowerShell must be installed. Open a PowerShell prompt, using either the icon on the desktop taskbar (Windows Server), or by switching to the Start screen, typing powershell and selecting Windows PowerShell from the search results (Windows 8). In the PowerShell prompt, type remove-adcomputer -identity workstation01 and press ENTER, replacing workstation01 with the name of the computer account you want to remove. Search AD for Inactive Computer Accounts Now that we know how to remove computer accounts using the command line, let’s query AD for computer accounts that haven’t been used for a long time. Computer account passwords are automatically reset by AD every 30 days, so you can determine yourself what length of time you should let pass before deleting the accounts from AD. A year or more would... --- ### Find Out How Many Computers Are Running Windows XP > Learn how to use PowerShell to query Active Directory for computers running Windows XP in this quick Ask an Admin post. - Published: 2014-05-19 - Modified: 2024-09-04 - URL: https://petri.com/use-powershell-to-find-windows-xp/ - Categories: Windows XP - Tags: Active Directory, command line, Management, migration, PowerShell - Article Type: How To How many PCs do you have running Windows XP? Find out how to easily get that info using PowerShell in this Ask an Admin. In this easy Ask the Admin, I’ll show you how to quickly see how many computers you have in your environment still running Windows XP by using PowerShell to query Active Directory for that information. Despite Microsoft support for Windows XP ending in April 2014, there are still many organizations running Windows XP. There are many reasons why some organizations are sticking with Windows XP, including limited IT budgets and legacy application compatibility needs with Windows XP and earlier versions of Internet Explorer. We've posted some advice on how to get the most out of Windows XP after support ends, but any system administrator would be well advised to keep tabs on exactly how many Windows XP clients are still in operation when the decision is made to finally take the plunge and migrate to Windows 7 or Windows 8. So you can get a handle on the number of computers you still have running the legacy operating system, I’ll show you how to use PowerShell to query Active Directory (AD) for computer accounts associated with computers running Windows XP. Query Active Directory using PowerShell Log on to Windows Server 2012 (or another computer with the PowerShell cmdlets for Active Directory installed) using an account that has read access to Active Directory. If you're a PowerShell novice and need some additional information to help you get up to speed, check out our PowerShell resource page. Open a PowerShell prompt, using either the icon... --- ### Why You Should Use Cisco AnyConnect Instead of the Cisco VPN Client > Discover the differences between Cisco AnyConnect VPN Client and Cisco VPN Client, and whether you should switch over to AnyConnect. - Published: 2014-05-19 - Modified: 2024-09-04 - URL: https://petri.com/cisco-anyconnect-vpn-client-differences/ - Categories: Cisco - Tags: Cisco AnyConnect Secure Mobility Client, Cisco AnyConnect VPN Client, Cisco VPN Client - Article Type: How To, Opinion Should you change to the latest Cisco VPN client? Discover the differences between Cisco AnyConnect vs. the old Cisco VPN Client in this overview. There seems to be some confusion about the differences between the Cisco VPN Client and the Cisco AnyConnect Secure Mobility Client (or sometimes referenced as Cisco AnyConnect VPN Client). The former is the oldest of two, and Cisco plans to end support for the Cisco VPN Client on July 29, 2014.  This article gives a quick overview of the differences between the Cisco AnyConnect VPN Client and the Cisco VPN Client, and in what situations each of them should be used. Cisco VPN Client The Cisco VPN Client has been around for some time and has been used in a large number of enterprises over its life. At this point, Cisco considers this product as End-of-Life (EoL), but that does not mean that several organizations don’t still use it. The change between clients, especially when it affects large numbers of clients, can be a large painful experience, which is why many organizations still use this client. The major limitation of the Cisco VPN Client is that it is limited to being a simple client (it doesn’t have all the bells and whistles that the AnyConnect client supports), and that it is restricted in its support of VPN type. While the new AnyConnect Secure Mobility Client supports both SSL and IPsec VPN tunnel options, the older Cisco VPN client only supports IPsec. So for organizations that are happy using IPsec (keeping in mind that more secure versions of IPsec will not be included in this client) and don’t have... --- ### An IT Pro's Perspective of TechEd 2014 > TechEd 2014 was filled with Microsoft Azure cloud news, but what does all that mean for the IT pro? Aidan Finn gives us his take. - Published: 2014-05-18 - Modified: 2024-11-19 - URL: https://petri.com/it-pro-perspective-of-teched-2014/ - Categories: Cloud Computing - Tags: Azure, Cloud, cloud computing, Microsoft, Microsoft TechEd 2014, TechEd - Article Type: Opinion TechEd 2014 was filled with Microsoft Azure cloud news, but what does all that mean for the IT pro? Aidan Finn gives us his take. I'm writing this post on the way home from an interesting TechEd North America 2014 conference. Prior to the conference, I was wondering what the talking points of TechEd would be. Microsoft corporate vice president for the Cloud and Enterprise Division, Brad Anderson, took the stage in Houston on the morning of Monday, May 12th, and laid out Microsoft’s vision of the future. In this opinion post, I'll analyze the keynote in this post and ask the question that might be on the mind of some IT professionals: Is Microsoft trying to kill off the IT pro by forcing businesses into the cloud?   Editor's Note: We've also summarized some of the key product and services announcements in our TechEd 2014 keynote recap. Microsoft Corporate Vice President Brad Anderson takes the stage at TechEd North America 2014 (Photo: Jeff James) The Mood Before TechEd 2014 IT pros around the world feel like they're under attack. Amazon, Google, Rackspace, Gartner, IDC, Forrester Research, some in the media, and many more keep telling CIOs that (public) cloud is the only right option for IT services. Those of us who worked through the outsourcing craze remember how IT shops were lifted and shifted to far-flung places around the world. They remember losing our jobs through no fault of their own. Someone looked at a balance sheet, underestimated the value of IT as a business enabler, and saved a few bucks (in the short term) by contracting out IT to a service... --- ### Petri Contributing Editor Aidan Finn Wins TechEd 2014 Speaker Idol > After the votes were tallied, Petri Contributing Editor Aidan Finn emerged as the winner of the TechEd 2014 Speaker Idol competition. - Published: 2014-05-16 - Modified: 2024-09-04 - URL: https://petri.com/petri-contributing-editor-aidan-finn-wins-teched-2014-speaker-idol/ - Categories: Windows Server 2012 - Tags: Microsoft TechEd 2014, News, Speaker Idol - Article Type: News After the votes were tallied, Petri Contributing Editor Aidan Finn emerged as the winner of the TechEd 2014 Speaker Idol competition. One of the more entertaining aspects of Microsoft TechEd in recent years has been the Speaker Idol competition. In essence, this program allows aspiring Microsoft TechEd speakers the chance to compete against a few of their peers -- in a contest structured in a fashion not unlike American Idol or The Voice -- for a speaking slot at the following year's Microsoft TechEd  conference.  It's a great program, as it simultaneously entertains attendees and helps groom the next generation of Microsoft TechEd speakers. According to a post by Microsoft's Denise Begley on the Channel 9 website, Speaker Idol contestants are "...  invited from those who have never spoken at TechEd before and they submitted breakout session proposals to TechEd North America 2014 but were declined. " This year, Petri IT Knowledgebase Contributing Editor Aidan Finn decided to throw his hat into the Speaker Idol ring and joined a handful of other contestants as they worked through several days worth of qualifying events -- hosted by Richard Campbell from the . NET Rocks Internet audio talk show -- where a panel of judges evaluated each contestant and decided who would advance to the next round. This year's panel of judges included Jessica Devita (last year's Speaker Idol winner),  IT author and speaker Mark Minasi, Microsoft Regional Director and developer John Papa, security expert Paula Januszkiewicz from CQURE, and Scott Hanselman, a principal program manager lead in Microsoft's Developer Division. Aidan Finn giving his presentation during the final round of Microsoft TechEd 2014 Speaker Idol. Aidan's... --- ### How to Add Computers to a Domain Using PowerShell > Learn how to join computers to an Active Directory domain using PowerShell in this easy Ask an Admin post. - Published: 2014-05-15 - Modified: 2024-09-04 - URL: https://petri.com/add-computer-to-domain-powershell/ - Categories: PowerShell - Tags: Active Directory, Ask an Admin, command line, Management, Windows Server - Article Type: How To In this quick Ask an Admin, learn to use PowerShell to join one or more computers to an Active Directory domain. Sometimes it can useful to add a computer to a domain using the command line, such as when no GUI is available (as is the case with Server Core), or just to expedite the process when configuring multiple computers. In this easy Ask the Admin, I’ll show you how to add one or more Windows 8. 1 and Windows Server 2012 R2 PCs to a domain using PowerShell. The instructions in this article assume that DNS resolution is working correctly, i. e. you can resolve the domain name of the Active Directory domain you want to join, and that you have connectivity to a domain controller (DC). Performing a Domain Join Using PowerShell Once you’ve established correct DNS resolution for the domain name, start a PowerShell prompt with local administrative privileges. Press the Windows key to switch to the Start menu, type PowerShell and press CTRL+SHIFT+ENTER. If prompted, enter a local administrator username and password, or give consent to run PowerShell. In the PowerShell prompt, type add-computer –domainname ad. contoso. com -Credential ADadminuser -restart –force and press Enter. Enter a password for the domain administrator account when prompted. The PC should now restart and be joined to the domain once it has restarted. Add a computer to a domain using PowerShell. Join Multiple PCs to a Domain You can add more than one computer to the domain, either by using names from a text file or listing them in the command line as a comma-delimited list. You can use... --- ### New Features in PowerShell v5 Preview > Check out the PowerShell v5 preview and its new features, including OneGet and new cmdlets, and whether you should upgrade. - Published: 2014-05-14 - Modified: 2024-09-04 - URL: https://petri.com/powershell-v5-preview-new-features/ - Categories: PowerShell - Tags: Intermediate - Article Type: Overview Are you ready for PowerShell v5? Check out our look at the PowerShell v5 preview and its new features and when you should make the upgrade. Microsoft recently released a preview version of PowerShell 5. 0. While no official release date has been mentioned, I’m betting it will be later this year. More on what that means a bit later, but for now let's take a look at the new features in the PowerShell v5 preview. PowerShell v5: OneGet and New Cmdlets The two most compelling features in the release is OneGet, which is a package manager much like Chocolatey, and a set of cmdlets for managing network switches. Of the two, OneGet is drawing the most attention now. If you’ve used Chocolately, you will immediate understand OneGet.   I expect there will be some changes to OneGet when v5 finally ships, so I’ll hold off on any detailed review or analysis for now. Other than that, there are only three new cmdlets: Get-StreamHash Debug-Job Get-ItemPropertyValue And of these, the only one that I think you will find of immediate value is Get-ItemPropertyValue, which has an alias of gpv. In previous versions if you wanted to get just the value of say a registry key or file item you had to resort to expanding a property or a pipeline shortcut. The old way of getting property values in PowerShell The new v5 cmdlet simplifies the process. Using the new Get-ItemPropertyValue cmdlet. Oh, and you can expect the usual amount of bug fixes in the v5 preview, although I have yet to see a definitive list. [adkit zone="freestyle"... --- ### Creating Service Manager Portal Offerings > Find out how to create custom Service Manager portal offerings and scope these to specific user groups in this helpful post. - Published: 2014-05-13 - Modified: 2024-09-04 - URL: https://petri.com/create-service-manager-portal-offering/ - Categories: System Center - Tags: Category, Portal, Request Offering, SCSM, Service Manager, templates - Article Type: How To Need some help with service delivery? Learn how to create custom Service Manager portal offerings and scope these to specific user groups in this post. One of the primary reasons for implementing Service Manager in an organization is to establish a management platform for successful of ITIL services to our respective users. Out-of-the-box Service Manager exposes itself to our users through a self-service portal hosted on SharePoint, leveraging Silverlight-based technologies. The default experience is very basic, offering an essentially blank canvas with a button to open a "generic request. " In this post, we will take a look at the steps necessary to create custom Service Manager portal offerings and scope these to specific user groups. This will enable us to deliver our services to the correct users, ensuring a personalized experience based on the role in the business. The high-level steps are as follows: Incident or Service Template Request Offering Service Offering Category Service Offering Catalog Group User Role In this post, we will core the initial steps to create the offering ready for the users. In the follow-up post we will scope the offering to the appropriate users. Create an Incident Template We will begin the journey by creating a template for the Incident class on which we will ask the user to provide more details. The template simply customizes the files in the form with some preselected answers, which will help get these incidents classified correctly, placed in the associated support tier, and set the urgency of this type of issue. From the Service Manager Console, select the Library view, and from the Library navigation tree, select the... --- ### TechEd 2014: Microsoft details cloud-first, mobile-first strategy > Microsoft released more details of their cloud-first, mobile-first strategy at TechEd 2014 today, including new features for Microsoft Azure. - Published: 2014-05-12 - Modified: 2024-09-04 - URL: https://petri.com/teched-2014-microsoft-cloud-first-mobile-first-strategy/ - Categories: Cloud Computing - Tags: Azure Recovery Service, Microsoft Azure, TechEd 2014, Windows Intune, Windows RemoteApp - Article Type: News Microsoft released more details of their cloud-first, mobile-first strategy at TechEd 2014 today, including a host of new features for Microsoft Azure. Microsoft Corporate Vice President Brad Anderson outlined Microsoft’s latest efforts on their “mobile first, cloud first” vision for IT services during his conference keynote at TechEd 2014 in Houston, TX, this morning. The new Microsoft mobile and cloud push was articulated by new Microsoft CEO Satya Nadella when he assumed the helm of the software giant earlier this year, saying then that "Microsoft is focused on that magical intersection where mobile and the cloud come together. ” While it’s true that Microsoft has been working in the cloud and mobile spaces for years, Nadella has sought to sharpen Microsoft’s corporate focus on embracing those twin (and complimentary) technologies. Anderson’s keynote -- which was a considerably more understated affair than his Aston Martin-fueled address at TechEd 2013 -- underscored that new cloud and mobile push, with dozens of new features, tools, and services that help IT professionals more readily embrace the cloud and the bring your own device (BYOD) trend. Most of today’s announcements dealt with improvements to Microsoft Azure and Microsoft’s hybrid cloud efforts, enhanced cloud and data security, and a greater push towards empowering IT to more effectively provision, manage, and secure mobile devices. I’ll touch on the announcements briefly below, but look for more detailed articles on the Petri IT Knowledgebase covering all these topics in the days and weeks to come. Microsoft Corporate Vice President Brad Anderson promoted Microsoft's cloud-first, mobile-first strategy during his keynote address at TechEd 2014 (Photo: Jeff James) Microsoft Azure and... --- ### Configuring AppLocker in Windows Server 2012 R2 > AppLocker in Windows Server 2012 | Learn to create and enforce rules for Applocker in Windows Server 2012 with the help of this post. - Published: 2014-05-12 - Modified: 2024-09-04 - URL: https://petri.com/configure-enforce-applocker-windows-server-2012-r2/ - Categories: Security - Tags: applocker, Windows Server 2012 R2 - Article Type: How To Maintain that fine balance between accessibility and security! In this post, learn to create and enforce rules for Applocker in Windows Server 2012 R2. Security has always been an overwhelming field for IT administrators. It’s something that can never really be defined in terms of percentage. When was the last time you heard an administrator say he or she is 100 percent secured? I’m guessing never. There’s always a burden of securing the network, securing the servers, installing important security patches across all machines, and cluelessly hoping one does not become a victim of a zero-day exploit. Sometimes it’s inevitable, and bad things do happen. But what bothers me is when things go wrong because of the silliest of mistakes ending up in big blunders. As a precaution, I personally avoid installing third-party software unless and until it’s either from a reputed publisher or absolutely necessary. On the other hand, there are users who randomly run any executable they find lying around and bring in all sorts of infected flash drives they used at a cybercafé to send pictures of their new pet to all the family members. Dealing with browser toolbars, icon docks, and similar crapware like that is a nightmare for administrators like me with partial OCD. How do we deal with this? Of course we can disable access to removable devices altogether from group policy and prevent users from installing any software. But doing that has an adverse effect on employee productivity, like users who may want to install genuine software for legitimate reasons. This is where AppLocker comes to the rescue. It allows you to maintain a... --- ### TechED 2014 Survival Guide > Attending Microsoft TechEd 2014 this year? Check out our conference survival guide for the latest tips on how to get the most out of the show. - Published: 2014-05-08 - Modified: 2024-11-19 - URL: https://petri.com/teched-2014-survival-guide/ - Categories: Windows Server - Tags: Microsoft TechEd 2014, TechEd, TheKrewe - Article Type: News Attending Microsoft TechEd in Houston this year? Check out our conference survival guide for the latest tips on how to get the most out of the show. Microsoft TechEd 2014 is just days away, and thousands of IT professionals will be descending upon Houston between May 12-15 this year to hear about all the latest and greatest news and new products from Microsoft. TechEd can be a week-long feat of endurance for conference veterans, and it can also be downright bewildering for the uninitiated. Microsoft TechEd 2014 is being held in Houston, TX, from May 12-15 (Source: Microsoft) So in the interest of helping both TechEd newbies and battle-scared veterans — as well as those who can’t physically attend the show this year — we’ve put together a survival guide that will help you get the most out of the conference. If you have any TechEd tips and tricks of your own to share, please add a comment to this blog post. You can step into the way back machine and visit our TechEd 2013 Survival Guide to see how things were done a meager 12 months ago. Contributing Editor Aidan Finn also has some tips on preparing for TechEd and introduces the aptly-named TechEd Hyper-V Amigo selfie game. TechEd Mobile Apps One of the best ways to stay connected and up-to-date on what’s happening at TechEd is to download the Microsoft Channel 9 TechEd Events app. This handy piece of mobile software will allow you to plan which sessions you’d like to attend, as well as view more information on speakers, event maps, and other useful info. Microsoft has also finally developed a more evolved... --- ### What I Want to See in the Surface Mini > What will the new Microsoft Surface Mini be like? Check out Aidan Finn's report on what the Surface Mini may (and may not) feature. - Published: 2014-05-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-surface-mini-features-news-rumors/ - Categories: Mobile - Tags: "Surface Mini", "Windows Tablet", Device, Microsoft, Mobile, Surface, Windows 8.1 - Article Type: Opinion Are you eagerly anticipating the new Microsoft Surface Mini? Check out Aidan Finn's report on what the Surface Mini may (and may not) feature. Microsoft watchers were recently launched into a frenzy when a cover/case for a “Surface Mini” tablet was launched on Amazon. Rumors have circulated for some time that Microsoft was working on an 8-inch version of the Surface tablet. Was this advert the real thing? Was it a scam? And if the Surface Mini is real, will it come with the features that I want? The alleged Surface Mini from the advert. Surface Mini Features: Rumors and Wish Lists The advert on VSTO told us nothing more than a Surface Mini was allegedly coming out. The name “Mini” obviously lead us to believe it was a smaller companion device. As we can see in the screenshot, VSTO was also alleging that the device was a portrait-mode machine, meaning that it was likely an 8-inch tablet like the Toshiba Encore or Dell Venue 8 Pro. On May 5, 2014, Microsoft newshounds confirmed that invitations had been sent out by Microsoft for a media event in New York on May 20. Blogger Mary Jo Foley described it as a “Surface event. " Processor Nothing is really known about a Surface Mini. There are rumors that it is powered by a Qualcomm ARM processor, meaning that the tablet will run the Windows RT 8. 1 operating system. At first, this sounds like a horrible mistake by Microsoft. All of the other 8-inch tablets have Intel Atom processors that run the “real” 32-bit x86 Windows... --- ### Managing Windows Updates with PowerShell > Learn more about the free PSWindowsUpdate PowerShell module to help install and manage your Windows updates. - Published: 2014-05-08 - Modified: 2024-11-19 - URL: https://petri.com/manage-windows-updates-with-powershell-module/ - Categories: PowerShell - Tags: Deployment Images, Patch Management, PSWindowsUpdate, Windows Update - Article Type: How To Updates are a necessity when it comes to managing Windows. Overcome updating challenges and learn about the free PSWindowsUpdate module in this post. Recently, I ran into a challenge while creating a Windows 8. 1 deployment image. I create my images just like many other IT pros do using Microsoft’s Sysprep utility. A good deployment image is current with all critical Windows Updates applied. In many cases, there are also a number of recommended and optional updates that I want incorporated into an image. Unfortunately, while creating an image using Sysprep’s Audit Mode in Windows 8. 1, the standard Windows Update GUI isn’t an option. While in Audit Mode, Windows believes the Setup Out-of-Box Experience (OOBE) is running. By design, Windows Update will not run during the OOBE phase. This is primarily to prevent an unexpected reboot during the setup process. Leveraging the power of PowerShell and the ingenuity of fellow Microsoft MVP Michal Gajda, an elegant and easy solution is available. Today I'll show you how to manage Windows updates using the PowerShell PSWindowsUpdate module. Before I go further, let me mention that options do exist for applying updates to Windows deployment images after the fact. Primary among these is the Deployment Image Servicing and Management tool (DISM), which is great, but in some instances using this tool is an extra complexity IT pros just don’t need. These are the cases where being able to find and apply Windows Updates from within Sysprep’s Audit Mode is a major boon. Using PowerShell to Manage Windows Updates:  PSWindowsUpdate The secret to deploying Windows Updates from within Audit Mode is... --- ### Review: Fiio X3 Digital Audio Player > Read our review of the Fiio X3 Digital Audio Player, one of the best sound DAPs on the market today. - Published: 2014-05-08 - Modified: 2024-09-04 - URL: https://petri.com/fiio-x3-digital-audio-player-review/ - Categories: Mobile - Tags: audio, digital, Fiio X3, music, portable, Windows 8 - Article Type: Review Can Fiio’s X3 DAP make music-on-the-go an enjoyable experience? Read our review to find out! Over the years I’ve owned various portable devices, starting with a Walkman and then a MiniDisc, before moving to a MP3 player in 2005 – all purchased in the hope of trying to recreate a little of that magic produced by my home system. The MP3 player was convenient, and I invested in better earbud headphones in the hope I’d get a more pleasant sound, but I didn’t. Then came a Sansa Clip on the back of good reviews. Even with a pair of Sennheiser CX300 II in-ear headphones, which improved the listening experience beyond recognition, the highs were still piercing and the ability to recreate complex jazz rhythms almost nonexistent. That led me on a search for a more sophisticated device, with the understanding that I’d need to pay considerably more than the $70 I'd shelled out for the Sansa Clip. But when you start looking at real audiophile players (items such as the Astell&Kern AK120 cost approaching $1,500), it starts to look a little pricey for a device that’s going to get limited use. Introducing the Fiio X3 A bit more research led me to the Fiio X3, which was getting rave reviews, some even claiming that it sounded not far off the Astell&Kern. At $200 and with few alternatives at this price level, I decided to give it a go. The Fiio X3 (image source: Amazon. com) Technical Specifications In addition to MP3, AAC, and OGG, the X3 plays five lossless... --- ### Top 5 Free Tools for Hyper-V > Check out our favorite free Hyper-V tools, including ones for Hyper-V backup, physical to virtual (P2V) tools, Hyper-V virtual switch management, and more! - Published: 2014-05-07 - Modified: 2024-11-19 - URL: https://petri.com/top-hyper-v-free-tools/ - Categories: Hyper-V - Tags: Backup, free tools, Microsoft Assessment and Planning Toolkit, p2v - Article Type: Overview You like free, right? Check out our favorite free Hyper-V tools, including Hyper-V backup, P2V tools, Hyper-V virtual switch management, and more! Everyone loves a free lunch, so I thought I’d write a post to let you know about some free tools and add-ons for Hyper-V that you can download and use right now. And the best part about all of these utilities? Like I said, they're all free, so you can download and install without getting the accounting department involved. 1. Hyper-V Backup I have two options in this space for you. Altaro is a small European company that has been making friends in the Hyper-V community. I’ve been dealing with them for several years, and some of my customers have bought their commercial product. Quite honestly, I and others have found them to be a great bunch of people to work with. Altaro has a free version of their Hyper-V Backup tool. This tool will provide backup to disk for small businesses or limited labs, supporting up to two virtual machines. If you’ve worked in virtualization and still have never heard of Veeam, then you must have hidden under a rock. Their backup and replication products are widely liked in the VMware and Hyper-V worlds alike. Veeam also has a free Hyper-V backup solution that you can download and use. Veeam Backup Free has a subset of features of the paid-for Enterprise Plus version, but it will protect an unlimited number of virtual machines and will give you a chance to test out what this product can do before paying for it. I have a great deal... --- ### What Are Virtual Machine Manager Service Templates? > Check out this quick introduction to Virtual Machine Manager service templates, which allow you to model business services for the cloud. - Published: 2014-05-07 - Modified: 2014-05-07 - URL: https://petri.com/virtual-machine-manager-service-template-overview/ - Categories: System Center - Tags: Cloud, Profiles, service template, services, SQL Server, Virtual Machine Manager - Article Type: How To, Overview Want to understand how a cloud can help scale applications at will? Check out this intro to learn how Virtual Machine Manager service templates for more! In today's post, I'll give you an overview of how System Center Virtual Machine Manager (VMM) service templates work, including an introduction to Service Template Designer and how to use service templates in VMM. Introduction to Service Templates in Virtual Machine Manager (VMM) In Microsoft System Center Virtual Machine Manager, a service refers to a collection of virtual machines that are deployed together as a single entity and includes applications to be provisioned in the private cloud.  A virtual machine, for example, can use a guest operating system profile that defines the operating system configuration and a hardware profile that determines the amount of memory and other virtual hardware resources that should be allocated to it. A service template is a predefined set of information that lets you create VMM services quickly. The virtual machine can also use an application profile that defines the configuration of a line-of-business (LOB) application that is to run on the virtual machine. Finally, a SQL Server profile can be part of a virtual machine that defines the configuration of the SQL Server for the virtual machine. By using machine profiles, you can create service templates that can be reused, which greatly reduces your effort in deploying services. This also ensures that the correct configuration for a virtual machine has been applied when the service is deployed to the cloud. Using the Service Template Designer The Service Template Designer helps you create service templates to bring together the various applications, the... --- ### Avoiding Disk Performance Issues in Storage Spaces > Learn to optimize the disk performance in Storage Spaces to reduce the possibilities of performance issues caused by hardware, drivers, or firmware. - Published: 2014-05-07 - Modified: 2024-11-19 - URL: https://petri.com/disk-performance-issues-in-storage-spaces/ - Categories: Backup & Storage - Tags: disk, Disk Maintenance, drivers, Editor's Pick, Firmware, Hardware, JBOD, storage, storage spaces, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: How To In this post, discover a preparation process for your hardware to reduce the possibilities of Storage Spaces performance issues caused by hardware, drivers, or firmware. The big benefit of Storage Spaces -- Microsoft's new storage-pooling technology that was introduced in Windows 8 and Windows Server 2012 -- is that you get better value from disks obtained from potentially any source. There is a potential risk to this benefit. When you pay for a disk from a traditional SAN vendor, that disk has been heavily tested. You can face performance issues if you just unpack the disks, shove them into your JBOD, and deploy Storage Spaces without a little bit of work. In this article, I will suggest a process for you to follow to ensure that you get the best possible result and avoid disk performance problems in Storage Spaces. Some will read this list and think “wow, there’s too much work to get Storage Spaces working. " To be quite frank, there is a bit of work involved to get a good storage solution. But I’ve seen good SAN engineers install SANs, and they’ll do most, if not all, of the following steps. Storage Spaces Hardware Compatibility List This first suggestion should be pretty obvious; make sure that your JBOD of choice is listed in the Windows Server Catalog for your version of Windows Server (such as Windows Server 2012 R2). But that is not enough; you also need to ensure that the JBOD is supported by Storage Spaces for your version of Windows Server. Don’t assume that it is – if the JBOD is not in that rather exclusive list, then Microsoft does... --- ### Provisioning Windows Server 2012 on Amazon Web Services (AWS) > Windows Server 2012 on Amazon Web Services (AWS) | Learn the basics of configuring VMs on Amazon's cloud platform, including how to get WS2012 running in a VM. - Published: 2014-05-06 - Modified: 2024-09-04 - URL: https://petri.com/configure-windows-server-2012-in-amazon-web-services-aws/ - Categories: Amazon Web Services - Tags: cloud computing, Management, Virtualization, Windows Server - Article Type: How To Learn the basics of configuring VMs on Amazon's cloud platform, including how to get WS2012 running in a VM and more. It might seem natural for Microsoft system administrators to turn to Microsoft’s own Azure cloud platform when looking to provision server instances in the cloud, but Amazon’s cloud platform is a mature product with some compelling features. In this how-to article, I’ll look at some of the basic concepts you need to understand in Amazon Web Services (AWS), how to get Windows Server 2012 up and running in a VM, and how to attach an additional disk. Sign Up for Amazon Web Services (AWS) Amazon offers a one-year free trial that allows you to provision Windows Server micro-instances with up to 750 hours of compute time per month (but with limited storage and network I/O). During the sign-up process, you will need to provide a contact phone number, which Amazon will use to contact you to confirm your identity using an automated system. You’ll also need to provide credit card details to cover any additional fees should you exceed any of the free-tier limits during the first year of your subscription. As most of us already have an account for use on Amazon. com, the sign-up process is simple using your existing email address and password. You’ll just be required to confirm a security code using your phone’s dial pad. It’s possible to enable multi-factor authentication during the sign-up procedure, but for simplicity’s sake, you might want to wait until you are more familiar with AWS before switching on additional security for your account. AWS Management Console Login... --- ### Default Hyper-V Storage Paths Explained > Discover where Hyper-V stores virtual machine files by default, and how you can manipulate those settings to get a better configuration. - Published: 2014-05-06 - Modified: 2024-09-04 - URL: https://petri.com/default-hyper-v-storage-paths/ - Categories: Hyper-V - Tags: storage paths - Article Type: Overview Stymied by storage paths? In this article, discover where Hyper-V stores VM files by default, and how to manipulate those settings. In my travels, I have noticed that the default storage paths used by Hyper-V can cause some confusion. To be honest, I don’t like how Hyper-V stores virtual machines by default; System Center Virtual Machine Manager (SCVMM) handles the folder structure in a much more attractive fashion. In this post, I will explain where Hyper-V stores virtual machine files by default, and how you can manipulate those settings to get a better configuration. Hyper-V Storage Path Settings There are two default storage paths defined in each host’s Hyper-V settings. You can find and edit these paths by opening Hyper-V Manager, connecting to and selecting your host, and choosing Hyper-V Settings from Actions. Here you will find two settings. Virtual Hard Disks is the default storage location for any new virtual hard disk that you create. The default location is C:UsersPublicDocumentsHyper-VVirtual Hard Disks. Checkpoints (AVHD or AVHDX files) will also be stored in this location. Virtual Machines is where the XML file (named after the GUID of the virtual machine) for a virtual machine configuration will be stored. The default location for those XML files is C:ProgramDataMicrosoftWindowsHyper-V. BIN files (to reserve space for virtual machines that will enter a saved state when a host shuts down) and VSV files (a saved state) are stored in a subfolder that is named after the GUID of the virtual machine. When you think about it, both of those locations are pretty dumb. On a nonclustered host, you should never store virtual... --- ### Is CloudShare or Microsoft Azure Better for Building Lab Environments in the Cloud? > Learn which cloud platform is better for sysadmins to create test labs in this op-ed post comparing Microsoft Azure and CloudShare. - Published: 2014-05-06 - Modified: 2024-09-24 - URL: https://petri.com/build-test-lab-in-cloud-azure-cloudshare/ - Categories: Microsoft Azure - Tags: CloudShare, Labs, Windows Azure, Windows Server - Article Type: Opinion In this op-ed post comparing Microsoft Azure and CloudShare, find out which cloud platform is better for sysadmins to create test labs. In my October 2013 article "Moving Testing to the Cloud: A Look at Windows Azure and CloudShare," I wrote about the need to move lab environments to the cloud due to the withdrawal of Microsoft TechNet subscriber downloads, a service that, for a reasonable annual fee, IT administrators could use most Microsoft server and client products on on-premise servers for testing purposes. Since summer 2013, I’ve been using both CloudShare and Microsoft Azure (formerly Windows Azure) to build test labs in the cloud, and thought I’d share my final conclusions with you. Introducing Microsoft Azure and CloudShare If you are new to the concept of cloud computing, it might be worth briefly explaining exactly what Microsoft Azure and CloudShare are, and their intended uses. Microsoft Azure is Microsoft’s cloud computing platform, a rival to Amazon’s EC2 cloud solution, providing organizations cloud access to servers running Windows or Linux, storage, Active Directory, and many other features that allow services to be created and scaled on demand. Azure is for production systems and isn’t geared specifically towards creating lab environments (although there is no reason why you can’t use it for that purpose). CloudShare differs fundamentally from Azure in that it is for creating lab environments and sharing them amongst developers for testing purposes. It’s designed to be very easy to use and has a simpler pricing structure than Microsoft Azure. CloudShare isn’t for running production servers. Speed and Flexibility In my article, "Moving Testing... --- ### Linux for Windows Server Administrators: Services and Runlevels > Find out more in our series on running Linux for Windows Server administrators! In part 2, we discuss Linux services, commands, and runlevels. - Published: 2014-05-05 - Modified: 2024-09-04 - URL: https://petri.com/linux-services-runlevel-windows-server-administrator/ - Categories: Windows Server - Tags: linux, Linux Services - Article Type: Overview We're back with our new series on running Linux for Windows Server administrators! In part 2, learn about Linux services, commands, and runlevels. Editor’s Note: In part one of our article series on Linux for Windows Server administrators we covered the basics of Linux server administration, including using PuTTY, secure shell, and adding and managing Linux users. In this second article Stuart covers the use of two other important Linux server management concepts: Linux services and runlevels. Introducing Linux Services Dealing with Linux services is easy enough. Rather than using task manager and services,msc to configure the hosts services, CentOS uses the command chkconfig to manage the services. (There are other ways to do it, but this is the official RedHat way. ) Listing all the services in CentOS can be done by using the chkconfig command with no switches. This will list all the services that are currently manageable by chkconfig and their current status. To give you an easy breakdown of what is covered, lets look at the output column by column. The first column is easy enough to understand and shows the names of the services. Notice the tabular columns of :on or :off. Notice how there are five groups of these, which correspond to what are known in the Linux world as runlevels. About Linux Runlevels A "runlevel" is basically a way of saying “The computer is at a known level of configuration. " As the machine boots, it will run from level 0 to 6. Runlevel 6 is reboot and runlevel 0 is power(ed) off. The runlevels from 1 to 5 are where... --- ### Hyper-V Virtual Machine Virtual Network Adapters Explained > Virtual Machine Virtual Network Adapters | Learn all about the types of virtual NICs (vNICs) that can be used in Hyper-V virtual machines. - Published: 2014-05-05 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-virtual-machine-virtual-network-adapters-overview/ - Categories: Hyper-V - Tags: Hyper-V, networking, virtual machine, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: Overview Learn all about the role and types of virtual network adapters that can be used in Hyper-V virtual machines in this introductory post. In Hyper-V, a virtual machine has one or more virtual network adapters, sometimes also called virtual NICs or vNICs. A vNIC connects to a host’s virtual switch. This allows the virtual machine to potentially talk to other virtual machines on the same virtual switch. An external virtual switch has a port that connects to a physical NIC on host. And this allows virtual machines that are connected to an external virtual switch to talk on the LAN, and potentially on the Internet. Note that this all assumes that machines are on the same VLAN, are routed, don’t have firewalls blocking communications, and that other virtual technologies such as Hyper-V Network virtualization or Port ACLs aren’t in the way. In this post I will discuss the types of NICs available and how to add them to a virtual machine. Types of Virtual NICs Hyper-V offers two kinds of virtual NICs that can be used in virtual machines – one for the past and one for now. Synthetic Network Adapter The first kind is simply known as a “network adapter,” but you can think of it as the synthetic network adapter. The synthetic network adapter requires that the guest OS is Hyper-V-aware; in other words, the child partition is enlightened or it is running either the integration components for Windows or the Linux Integration Services. Hyper-V will add a single synthetic vNIC into a virtual machine’s specification by default. You can add up to eight synthetic vNICs into a... --- ### What Is System Center Advisor? > Check out this introduction to Microsoft System Center Advisor, including how it works, its architecture, and integration with Operations Manager. - Published: 2014-05-05 - Modified: 2024-11-19 - URL: https://petri.com/system-center-advisor-overview/ - Categories: System Center - Tags: Management Pack, Operations Manager, System Center Advisor - Article Type: Overview Check out Microsoft's free online service System Center Advisor. Get to know how it works and about its architecture and integration with Operations Manager. System Center Advisor is a free online service that you can use to analyze the configuration of Microsoft server software. You can use System Center Advisor to help you assess the server configuration. Additionally, you have access to information and best practices that has been collected from the knowledge of the Microsoft Consulting and Support teams, gained through years of experience. In today's post, I'll give you a brief overview of Microsoft System Center Advisor, including how it works and its architecture. An Intro to System Center Advisor System Center Advisor helps prevent downtime by giving you access to Microsoft’s considerable customer support experience, which is made available through the Windows Azure cloud-based service. This service applies the following common questions from the Microsoft customer support checklist to all servers that Advisor monitors. Are servers missing critical hotfixes or service packs? Are there any device driver problems; for example, problems that are known to cause storage issues on a SQL server? Are the in-use versions of the operating system or the software too old? For example, although there are some obvious issues such as SQL Server 2000 being no longer supported, even newer products such as SQL Server 2012 require certain software update levels to be in a supportable state. Are there any configuration settings within the operating system or software that customers commonly have problems with? Because Advisor is a cloud-based service, Microsoft constantly updates the knowledge that is provided to the service. Microsoft product support... --- ### How to Add UPN Suffixes in Active Directory > Learn to add additional User Principal Name (UPN) suffixes to Active Directory in this helpful Ask an Admin article. - Published: 2014-05-01 - Modified: 2024-09-17 - URL: https://petri.com/add-upn-suffixes-in-active-directory/ - Categories: Active Directory (AD) - Tags: Ask an Admin, UPN, UPN suffix, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Learn all about User Principal Name (UPN) suffixes and how to add additional UPN suffixes to Active Directory in this helpful Ask an Admin article. In this Ask an Admin, I’ll explain what User Principal Name (UPN) suffixes are and how to add them to your Active Directory infrastructure.  UPN suffixes form part of Active Directory (AD) logon names. For example, if your logon name is administrator@ad. contoso. com, the part of the name to the right of the ampersand is known as the UPN suffix (so, in this case ad. contoso. com). Editor's Note: If you need a quick primer on what UPN is from a Microsoft perspective, an article about UPN on the Windows Developer Network elaborates: "This attribute contains the UPN that is an Internet-style login name for a user based on the Internet standard RFC 822. The UPN is shorter than the distinguished name and easier to remember. By convention, this should map to the user email name. The value set for this attribute is equal to the length of the user's ID and the domain name. " When you configure a new user account in AD, you are given the option to select a UPN suffix, which by default will be the DNS name for your AD domain. There are situations where it can be useful to have a selection of UPN suffixes available. If your AD domain name is ad. contoso. com, it might be more convenient to assign users a UPN suffix of contoso. com. To make additional UPN suffixes available, you need to add them to AD. Adding a UPN Suffix to Active Directory The following instructions apply to Windows Server 2012 and later... --- ### 5 Reasons To Choose Windows Server 2012 R2 Hyper-V over VMware vSphere 5.5 > Learn why you should opt for Windows Server 2012 R2 Hyper-V over VMware vSphere 5.5 from the Hyper-V perspective, spanning technology and business reasons. - Published: 2014-05-01 - Modified: 2024-11-19 - URL: https://petri.com/choose-windows-server-2012-r2-hyper-v-over-vmware-vsphere/ - Categories: Hyper-V - Tags: Azure, Cloud, Cloud OS, Editor's Pick, Hyper-V Server, Hyper-V Server 2012 R2, Opinion, System Center, vmware, vOperations Management Suite, vSphere, vSphere 5.5, Windows Server 2012 R2, WS2012 R2 - Article Type: Opinion Waffling over virtualization options? Check out this op-ed comparison between WS2012 R2 Hyper-V and VMware vSphere 5.5 from the Hyper-V perspective. Updated: May 1, 2014 - 9:00am MT - Corrected information about ESXi RAM limitations and VSAN release status. Editor's Note: Petri IT Knowledgebase Contributing Editor Aidan Finn makes the case for Windows Server 2012 R2 Hyper-V over VMware vSphere 5. 5 in this opinion post. In the interest of presenting an additional contrasting viewpoint, we also have an opinion article by David Davis that provides 5 reasons why you should chose VMware over Hyper-V.   The world of virtualization has been divided in two when it comes to picking a virtualization platform (come on, who cares about Xen, KVM, or other similar also-rans? ). Do you go with the legacy incumbent, ESXi/vSphere, or do you go with the designed for modern computing, Hyper-V/System Center? In case you haven’t noticed, yes, I am biased towards the Microsoft stack. I am a Microsoft Most Valuable Professional with the Hyper-V expertise. I promote and sell Microsoft licensing. I write about Microsoft products. But (and it’s a big but) I started off happily working with the VMware stack (Workstation and ESX/vCenter), and I’ve angered more than a few Microsoft "blue badges," aka full-time employees, with my criticisms in the past (for an example, see my post "What Went Wrong At Microsoft"). Back in 2008 I started a project and I had my choice of virtualization stacks to build a business on. I evaluated the two big contenders, being quite critical of Hyper-V during the beta period, but eventually I reasoned that Microsoft had the... --- ### How Can I Copy Files and Preserve Date Timestamps? > Learn to copy files and preserve timestamps using Robocopy to make sure file timestamps are maintained during a copy or move operation. - Published: 2014-05-01 - Modified: 2024-09-04 - URL: https://petri.com/copy-files-preserve-timestamp/ - Categories: Windows Server - Tags: Ask an Admin, command line, file management, Windows 8 - Article Type: How To Make searching a snap! In this Ask an Admin, learn to use Robocopy to make sure file timestamps are maintained during a copy or move operation. The date modified and date created timestamps are commonly used to sort files and folders in File Explorer. Sometimes it’s much easier to find a file because we know we were working on it yesterday, rather than having to scroll down a list and find it by name. This method of organizing files is all very well and good until a file or folder is moved or copied to a new drive. If this is done using File Explorer, timestamps on folders will be updated to the time of the copy or move operation, rendering it more difficult to track files by their last modified date. In this Ask the Admin, I’ll show you how to copy or move files and folders while preserving their timestamps. Using Robocopy to Copy or Move Files Robocopy is the Swiss Army knife of file copy tools. It’s built into Windows 8. 1 and Server 2012 R2 and provides a robust way to manage, back up, and copy files. Advanced features include the ability to log operations, restart failed copies, and improve performance using multiple threads. Log on to Windows 8. 1 or Server 2012 R2 with an account that has full access to both the source and destination paths for the copy operation. Open a command prompt by switching to the Start screen, type cmd and press Enter. In the command prompt window, type robocopy /? and press Enter. You’ll see there are many parameters that can be specified to provide for... --- ### What Are Service Manager Configuration Items? > Check out this quick overview to configuration items in Service Manager and learn how to create configuration items. - Published: 2014-04-30 - Modified: 2024-09-04 - URL: https://petri.com/configuration-items-service-manager/ - Categories: System Center - Tags: Configuration Database, Configuration Items, Service Manager - Article Type: Overview In this quick overview learn what configuration items can do for you, as well as how to create a configuration item in Service Manager. Configuration items in Service Manager refer to data that is stored in the database regarding items such as users, computers, services, virtual machines, templates, and so on. These items can then be used when submitting forms, such as those created as part of a private cloud infrastructure fulfillment request or as part of an incident, problem, or change request form. In today's post, I'll present a quick introduction to configuration items in Service Manager and show you how to create configuration items. Configuration Item Types: Services Another type of configuration item is a service, which differs slightly from a standard item in that it contains technical and business related data. A service is typically used to assess the business impact of an incident or to analyze what effect a change can have across shared infrastructure. A service can also hold key information about service owners, customers, and users. Services are often used to help you manage a work item. Configuration items are often populated automatically by one of the Service Manager’s connectors – for example, key information about private cloud services and templates that you have deployed or have created are imported through the Operations Manager and Virtual Machine Manager connectors. Creating Configuration Items While our introduction to configuration items (CIs) thus far has been from the perspective of automated creation of these items, this is really to support scale and convenience. If you choose not to leverage the connector framework to establish the configuration items, that is... --- ### Hyper-V Virtual Machine Storage Controllers Explained > Learn about the role and types of storage controllers included in generations 1 and 2 Hyper-V virtual machines in this introduction. - Published: 2014-04-30 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-virtual-machine-storage-controllers-overview/ - Categories: Hyper-V - Tags: Controllers, IDE, SCSI, storage, virtual machine, Virtualization, VM, Windows Server 2012, Windows Server 2012 R2 - Article Type: Overview In this overview, discover the roles and types of storage controllers included in generations 1 and 2 Hyper-V VMs, and best practices to help get started. In this post I will explain the role and types of storage controllers that are included in generations 1 and 2 Hyper-V virtual machines. Windows Server 2008 R2 Hyper-V was not considered for this article. What Does a Virtual Storage Controller Do? Every virtual machine has at least one storage controller. The role of the storage controller is to connect the virtual machine to some kind of disk. This disk could be a passthrough disk or a VHD/VHDX virtual hard disk. Since Windows Server 2012, a generation 1 virtual machine has had two IDE controllers and one SCSI controller. To be clear, the storage controllers of a virtual machine have absolutely nothing to do with the storage controllers of the host. The IDE or SCSI controllers in the specification of a virtual machine have no dependency or interaction with the storage controllers of your hardware. The controllers are logical connections between the running state of the virtual machine and the virtual hard disk or LUN that contains an operating system and/or data. And no, you are not storing Hyper-V files/data on actual IDE controllers. Types of Controllers Like IDE in a classic PC, each IDE controller has two available channels, known as locations in Hyper-V. You can think of these locations as targets. If you check the BIOS settings of a generation 1 virtual machine, you will see the CD is first and IDE is second. That IDE entry refers to location 0... --- ### New Features in Microsoft Exchange 2013 SP1 > Check out these new features in Microsoft Exchange 2013 SP1, including Windows Server 2012 R2 Support, Show Command Logging, Edge Transport Role Update & more. - Published: 2014-04-29 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-exchange-2013-sp1-new-features/ - Categories: Exchange 2013 - Tags: Exchange 2013 SP1 - Article Type: Overview Microsoft Exchange 2013 SP1 is a solid update. Check out its new features, including Windows Server 2012 R2 Support, Show Command Logging, and more! Before jumping right into all the new features in Microsoft Exchange 2013 SP1, I’d like to point out that the Microsoft service packs of today are different from service packs from the days of old. The reason for this is the new cumulative update (CU) approach that Microsoft is using with solutions like Exchange to enable faster and more consistent updates than previous product releases. While it’s impossible to keep up with cloud-based fixes (these go live at will and take affect globally), the idea is that on-premise Exchange doesn’t have to wait for annual updates but can receive them faster (quarterly) with CUs. That being said, Service Pack 1 for Exchange 2013 is actually CU 4 (at the same time! ). Three previous CUs have been released to provide fixes and tweaks. What makes SP1 so unique in the line-up (and distinct from the previous CUs or upcoming CU5) is that it contains some solid features that indicate a bit of a step up for Exchange 2013 that warrants the SP distinction. Now that you grasp the new method to Microsoft’s madness with CU updates, let’s dive into the key features we see with Exchange 2013 SP1. Microsoft Exchange 2013 SP1: New Features and Improvements Windows Server 2012 R2 Support There is often a disconnect between the latest flavor of Exchange and the very next flavor of Windows Server. It happen and can be confusing for the IT admin doing the install, but Exchange 2013 RTM didn’t... --- ### 3 Tips for Solving Wireless Connectivity Problems > Learn to set wireless router passwords and use netsh to enable or disable network adapters with these three simple tips. - Published: 2014-04-29 - Modified: 2024-09-04 - URL: https://petri.com/wireless-connect-troubleshooting-tips/ - Categories: Mobile - Tags: Ask an Admin, networking, Remote Access, WIFI, Windows 8, Wireless - Article Type: How To Trouble with connections? Find out how to set wireless router passwords and use netsh to enable or disable network adapters in this quick Ask an Admin. In this Ask the Admin, I’ll show you a few of tips that might help when you are experiencing problems connecting a device to a Wi-Fi hotspot. You should also always make sure that the device you're using has been updated and patched with the latest OS and firmware updates for your wireless hardware. 1. Wi-Fi and Password Complexity Routers using the WPA2 standard and AES encryption will accept complex passwords with special characters, such as “! @*& etc. , as part of their configuration settings, but there are many client devices that will refuse to connect all the time the password contains special characters. Related: 10 Tips to Make a Secure Password If you are configuring a Wi-Fi router, take my advice: By all means use a long password, but make sure that it only contains letters (upper and lowercase) and numbers, and no special characters. If you include special characters in an attempt to improve security, you’ll likely lock out some devices. 2. Update the Wireless Adapter Driver After upgrading a notebook to Windows 8. 1, the updated Wi-Fi drivers supplied by Intel worked abysmally. While I was able to connect to my home office Wi-Fi network without any issues, connecting to public Wi-Fi hotspots was a hit-or-miss affair. Fortunately a month after the initial release of Windows 8. 1, Intel released another driver update, and I was able to connect to hotspots more reliably. 3. Reset the Wireless Adapter in Windows There are occasions when even from a cold boot Wi-Fi adapters... --- ### How to Create a Linked Clone Pool in VMware Horizon View > Find out how to create VMware Horizon View desktop pools with linked clones in our detailed walkthrough. - Published: 2014-04-29 - Modified: 2024-09-04 - URL: https://petri.com/vmware-horizon-view-create-linked-clone-pool/ - Categories: VMware - Tags: Desktop Pool, EUC, Horizon View, Linked Clone, VDI, VMware Horizon View - Article Type: How To A desktop pool in Horizon View is a group of desktops created from a common image or template. In this post, learn to create linked clone pools in View. Horizon View is the virtual desktop solution from VMware. Groups of desktops or use cases can be served up from pools in View. A desktop pool in Horizon View is a group of desktops created from a common image or template. These can then be assigned to users or groups of users for access. There several ways to create desktop pools; today we'll walk you through the steps of creating a commonly used type, the linked clone pool. Creating Linked Clone Pools in Horizon View Log into the Horizon View admin page, then expand the Inventory option on the left and click on Pools. Click on the Add button to start the wizard to create a new desktop pool. In the pool creation wizard you will be prompted to select the type of pool you want to create. The following are options: Automated pool – View and vCenter will automatically create new desktops when the pool rules and policies require it. Manual pool – This is just what it implies: You will need to manually create desktops or do via some other method and add them to the pool. Terminal service pool – This is used to broker TS sessions.   The next step is to choose how users will be assigned to their desktops. There are two options: dedicated and floating. Dedicated means that a user is assigned a desktop, and they are the only user who will get access to it. The floating option means that a... --- ### How to Enable Shadow Copy on a Shared Folder in Windows Server 2012 R2 > Find out how to enable shadow copies in Windows Server 2012 so that users can restore files using the Previous Versions tab. - Published: 2014-04-28 - Modified: 2024-09-04 - URL: https://petri.com/enable-shadow-copy-on-shared-folder-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: Ask an Admin, File and Print Services, file management, File Server, previous versions, shadow copies, Windows Server 2012 R2 - Article Type: How To In this easy Ask an Admin, check out how to enable shadow copies in Windows Server 2012 to enable users to restore files using the Previous Versions tab. In this Ask an Admin post, I’ll show you how to enable shadow copies for a shared folder on a Windows Server 2012 R2 file server. What Is a Shadow Copy? A shadow copy of a disk volume or shared folder is a snapshot of changes made to files at a given point in time. Snapshots are taken at set intervals, allowing users to restore to a previous version of a file without having to ask IT to restore the file from a backup. Configure Shadow Copies for a File Share in Windows Server 2012 R2 To configure shadow copies in Windows Server 2012 R2, log on to your file server with a local administrator account and follow the instructions: Switch to the server desktop and open File Explorer by using the icon on the desktop taskbar or by pressing WINDOWS + E. In File Explorer, right-click the volume where the share is located and select Properties from the menu. In the Properties dialog, switch to the Shadow Copies tab. Under Select a volume:, select the volume where you want to turn on shadow copies from the list, and then click Enable. In the Enable Shadow Copies dialog, click Yes to complete the procedure, noting the warning about file servers with high I/O loads. In the Properties dialog, you will see that shadow copies are now enabled for the volume, and when the next snapshot is scheduled to be taken. Optionally, you can click Create Now to... --- ### Getting the most out of Hyper-V Dynamic Memory > Discover why you should (or shouldn't) use Hyper-V Dynamic Memory in Windows Server 2008 R2 SP1 to change how memory is assigned to VMs. - Published: 2014-04-28 - Modified: 2024-12-03 - URL: https://petri.com/hyper-v-dynamic-memory-strategies/ - Categories: Hyper-V - Tags: Dynamic Memory, exchange, SQL Server, SQL Server, virtual machine, W2008R2, Windows Server 2008 R2, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: How To, Overview Dynamic Memory is not one-size-fits-all! Discover the many ways to use (or not use) Hyper-V Dynamic Memory in Windows Server 2008 R2 SP1. Microsoft introduced Dynamic Memory in Windows Server 2008 R2 (W2008 R2) Service Pack 1 (SP1) to change how memory is assigned to virtual machines. Instead of assigning all of a virtual machine’s potential RAM to the virtual machine, you could opt to assign only slightly more than is required by the VM’s workload (pressure) to perform its tasks. Additional memory could be transparently added and taken away as pressure rose and subsided. This could increase the density of virtual machines you placed on your hosts (reducing CAPEX and OPEX for your hosts), but there are some important questions: Should you enable Dynamic Memory for all virtual machines? How should you configure Dynamic Memory? Should it be one-size-fits-all or should some workloads have a specific configuration? Should You Enable Dynamic Memory for all Virtual Machines? The answer to this one is quick: No, you should not enable Dynamic Memory for all virtual machines. Look back at how Dynamic Memory works. The guest OS of the virtual machine only ever sees the high point of RAM since it last booted up. So if a VM boots up with minimum RAM of 512 MB, it might raise to 768 MB. Now if you try to install something like SQL Server, the installer will block the installation because it cannot see more than 1 GB of RAM. In this example, not enough RAM was previously assigned to install SQL Server Some products explicitly do not support Dynamic... --- ### Linux for Windows Server Admins > Are you a Windows Server admin who needs to learn Linux? In part 1 of this series, learn how to handle logins, drives, and users. - Published: 2014-04-24 - Modified: 2024-11-19 - URL: https://petri.com/linux-for-windows-server-administrator/ - Categories: Windows Server - Tags: CentOS 6, linux, puTTY - Article Type: Overview In part 1 of a new series, learn the basics behind Linux, including logging in, mounted media, and managing users. Sometimes, even a Windows admin has to get their hands dirty and touch a Linux server of some sort. The day will arrive when the Linux guy is off and something needs fixing! In this series of articles I hope to cover the basics of Linux administration. In today's post, I'll start off with the basics of Linux and logging in and exploring mounted media, and how to change between users and manage users. In these tutorials I am using CentOS 6, a RedHat clone that is almost identical to RedHat, minus the trademarks. You can download and use CentOS 6 for free. CentOS is but one of several distributions (also known as “distros”). I chose it for no other reason than personal preference, and that it is also one of the most popular distributions used and backed by a very large vendor. Other popular Linux distributions are SuSE, Debian, and the ever popular Ubuntu. Most of the commands and theory we'll go into in this series work well on all mainstream Linux distributions. You should be able to easily download the distro that takes your fancy. These distros usually come as a bootable ISO installer. The one area that does vary is software installation. Although Linux does have an optional GUI, very few Linux servers use it. Therefore this tutorial will concentrate on using the CLI to manage the machine. Important point: Please be aware that all Linux commands are lower-case (the switches may not be... --- ### Migrate or Restore a Windows Server 2012 R2 Certification Authority to a New Server > Discover how to back up and restore a Windows Server 2012 R2 Active Directory Certification Authority to a new server in this detailed how-to post. - Published: 2014-04-24 - Modified: 2024-09-04 - URL: https://petri.com/migrate-restore-windows-server-2012-r2-certification-authority-to-new-server/ - Categories: Windows Server 2012 - Tags: Active Directory Certificate Authority, Certificates, certification authority, migration, Security - Article Type: How To Migrating to a new version of Windows Server or different hardware? Learn to backup CA components so they can be restored to the same or a different server. A full system state backup of Windows Server includes a Certification Authority (CA) database and a private key, if the Active Directory Certificate Services role is installed. At least, that’s the theory – so make sure you always test backups thoroughly. See Microsoft's post "System state backup does not include CA private keys in Windows Server 2008 or in Windows Server 2008 R2" for more information on potential problems. Sometimes it can be useful to back up and restore the CA components separately, for instance when you want to migrate to a new version of Windows Server, or just a different piece of hardware. In this article, I’ll show you how to backup the Certification Authority components so that they can be restored to the same or a different server. This article assumes that you are restoring an Enterprise Root CA on Windows Server 2012 R2 to a server with the same computer name and hard drive structure. Backup a Windows Server Certification Authority As the title of this article suggests, there are three main components that you will need to back up if you want to migrate or restore a CA. The CA’s database Private key CA Registry settings Certification Authority (CA) Database, Log, and Private Key To back up the CA database and private key, log on to Windows Server 2012 R2 with a domain administrator account, or other user that has CA administrator and local admin permissions. Open Server Manager using the icon on... --- ### How to Set Up a VMware View Event Log Database > Check out these steps to create and setup a VMware View event log database to capture events and errors within View. - Published: 2014-04-24 - Modified: 2024-09-04 - URL: https://petri.com/setup-vmware-view-event-log-database/ - Categories: VMware - Tags: EUD, Events, Logs, VDI, View, vSphere - Article Type: How To In this tutorial, learn to create and setup a VMware View event log database to capture events and errors within View. A necessary part of any good application, service, or hardware is the ability to record and view log information. Why is this important? Log information can help admins in the pursuit of troubleshooting issues or in tracking down who accessed a system during a given period. In VMware View it will be likely that these types of details will also be very important to customers. Event information is not stored by default, and an event log database must be set up for View to record these events. Today I will walk you through the process of setting up the VMware View events database feature. Create a VMware View Events Database To accomplish this task we do indeed need a database for View to record its events into. The two options are a Microsoft SQL or Oracle database. The only other real requirement here is the it must use SQL server authentication and not Windows authentication. I won't step you through database creation since it is very well documented elsewhere, such as on the VMware support site.   Creating the Database Login This part can be a bit fuzzy for server admins who do not regularly work with databases. With our database already created we need to create a local SQL account to use for accessing the database. In this example I'm using MS SQL 2008, and it should be very similar in other versions also. You can find more SQL help on the Petri SQL Server resource page... . --- ### Install PowerShell Web Access in Windows Server 2012 > Learn how to make remote administration easy by installing PowerShell Remote Access Gateway in Windows Server 2012. Read on for more! - Published: 2014-04-23 - Modified: 2024-09-04 - URL: https://petri.com/install-powershell-web-access-windows-server-2012/ - Categories: PowerShell - Tags: PowerShell Web Access Gateway, Remote Access, Windows Server 2012 R2 - Article Type: How To Make remote administration easy with a PowerShell Remote Access Gateway in Windows Server 2012. Learn how in this handy how-to article! Windows PowerShell Web Access allows users to access PowerShell on a remote server via a web browser, without any prerequisite requirements on the client device, apart from a supported web browser. In this Ask the Admin, I’ll show you how to quickly install and configure this feature in Windows Server 2012. For more detailed configuration options on how to install PowerShell Web Access, see the four-part series PowerShell Web Access by Jeff Hicks. Install a Windows PowerShell Web Access Gateway A Windows PowerShell Web Access Gateway allows users to remotely access servers on a remote network using PowerShell commands executed from a web browser. To install the gateway, log in to Windows Server 2012 R2 as an administrator: Open a PowerShell console with administrative privileges. Switch to the Start menu, type powershell and press CTRL+SHIFT+ENTER. In the PowerShell console, type Install-WindowsFeature –Name WindowsPowerShellWebAccess -IncludeManagementTools –Restart and press Enter. Configure the Web Access Gateway Application Once operation has completed, we can use PowerShell to configure the web application in IIS. The resulting URL for the web access console will be https:///pswa, where is the DNS name of the server where you are installing the Web Access Gateway. Switch to the Start menu, type powershell and press CTRL+SHIFT+ENTER. In the PowerShell console, type Install-PswaWebApplication –UseTestCertificate and press Enter. The –UseTestCertificate parameter should only be used when creating a Web Access Gateway in a test lab. In a production environment, you can use the same command, but you should... --- ### How to Fix Skype Not Displaying Full Screen During Screen Share > Can't get Skype to share screens properly? Check out this quick post on for how to solve a common Skype problem. - Published: 2014-04-23 - Modified: 2024-11-19 - URL: https://petri.com/display-skype-screen-share/ - Categories: Messaging - Tags: screen sharing, skype - Article Type: How To Have trouble getting Skype to share screens properly? Check out this quick how-to on how to solve a common Skype problem. Skype has quickly become one of the most widely-used communication tools on the globe. The Skype software — initially developed by Janus Friis and Niklas Zennstrom and released in late 2003 — has helped connect millions (if not billions) of people with their colleagues, friends, and family. One of the most useful features of Skype is the ability to share your computer screen with other people on your call, which can make remote teams of workers even more productive. That’s great if Skype works without any issues, but there are cases where Skype runs into some display problems. Here at the Petri IT Knowledgebase we use Skype often for our own business meetings, and we encountered a problem that had several us scratching our collective heads while we looked for a solution. So today let's take a look at how to get Skype to share full screens properly. Related: How to Download and Save Skype Video Messages The Problem: Skype Only Shares a Portion of the Screen Screen sharing worked as normal and displayed normally on the display of the person sharing the screen, but on remote PCs connected to the conversation, only the upper-left corner of the shared screen was visible. While that’s fine if you only intend to share the upper-left corner of your screen, it defeats the utility of the screen-sharing function. Screen-sharing isn't very useful if you can only see just a portion of the screen being shared. (Source:... --- ### Smart Paging in Hyper-V Dynamic Memory > Discover more about Smart Paging, a new feature to Hyper-V’s Dynamic Memory in Windows Server 2012, including what it is and how it operates. - Published: 2014-04-23 - Modified: 2024-09-04 - URL: https://petri.com/smart-paging-hyper-v-dynamic-memory/ - Categories: Hyper-V - Tags: Dynamic Memory, performance, Smart Paging, storage, virtual machine, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: Overview Meet Smart Paging, a new feature to Hyper-V’s Dynamic Memory in WS2012. In this post, learn what Smart Paging is and how it operates. A new feature was added to Hyper-V’s Dynamic Memory in Windows Server 2012 (WS2012) called Smart Paging. This new feature is something that you should very rarely see in the real world but is one that you should know about and understand. In this post I will explain what Smart Paging is and how it operates in Hyper-V Dynamic Memory. What Is Smart Paging? The Smart Paging feature of Hyper-V is used in a very rare scenario when you need to restart one or more virtual machines on a memory starved host. The need for Smart Paging was introduced in WS2012 when the Minimum RAM setting was added. With Minimum RAM enabled, a virtual machine will boot up to its startup RAM (enough to boot the OS and get services running) and, if idle, it can balloon down to a lower amount of RAM as specified by Minimum RAM. Let’s make this real with an example. Imagine a hosting customer in a cloud deploys a small specification virtual machine. This machine has the following settings: Startup RAM = 512 MB Maximum RAM = 2048 MB Minimum RAM = 32 MB Buffer = 20 percent The virtual machine starts up and immediately consumes 512 MB plus an additional 20 percent of memory. Approximately 615 MB is consumed by the virtual machine from the host. No additional software is running, and like many hosting customers, the machine is left idle. Dynamic Memory will seek to optimize the memory allocation... . --- ### Documenting System Center 2012 – Orchestrator Workflows > Download the free Orchestrator Visio and Word Generator tool and learn to document your System Center 2012 - Orchestrator flows in this post. - Published: 2014-04-22 - Modified: 2024-11-19 - URL: https://petri.com/system-center-2012-orchestrator-workflow-documentation/ - Categories: System Center - Tags: Document, Microsoft System Center 2012, Orchestrator, SQL Server, Visio, Word - Article Type: How To, Overview Learn to document your System Center 2012 - Orchestrator flows using the free Orchestrator Visio and Word Generator tool. Find out how in this post! As you leverage your investment in System Center 2012 - Orchestrator, you will quickly appreciate that there are two steps you will want to consider as you work on each project. Those are, of course, documentation and backup (and version control). Unfortunately, the product does not offer activities to assist in either of these steps, and while taking an export of your runbooks as we covered in the "System Center 2012 SP1 - Orchestrator: Exporting and Importing Runbooks" post is a good policy, the likelihood that you'll think about this after you have made a mistake is just too high. There are easier ways to make this happen, so we'll loop back on this topic in a later post. In this post, we will address System Center 2012 - Orchestrator and documentation. Assisting with this process we will leverage the community with a free utility called Orchestrator Visio and Word Generator. Related: System Center 2012 - Orchestrator Documentation Preparation As with all third-party utilities we have used with System Center, the first process we will need to complete is to prepare our environment to use these time-saving utilities. The utility we are going to leverage today is pain free in this respect, and it does not even require to be installed. Instead, we just need a workstation that has Visio 2013 and Word 2013 32-bit installed (the 2010 versions also work, but steer clear of the 64-bit variants for a pain-free existence). Simply surf over to... --- ### Run a Script or Batch File with Administrative Privileges as Windows Starts > Learn to configure a Group Policy Object (GPO) to run a startup script with administrative privileges in this quick how-to. - Published: 2014-04-22 - Modified: 2024-09-04 - URL: https://petri.com/run-startup-script-batch-file-with-administrative-privileges/ - Categories: Active Directory (AD) - Tags: Active Directory, group policy, Management, Scripting, Windows Server - Article Type: How To In this quick how-to, find out how to configure a Group Policy Object to run a startup script with admin privileges. Logon scripts have long been used to configure users’ desktop environments, adding network drive mappings and desktop shortcuts etc. But there are some tasks that require administrative privileges and can’t be executed as part of a logon script if users don’t have administrative access to their PCs. In this Ask the Admin, I’ll show you how to configure a Group Policy Object (GPO) to run a startup script with administrative privileges. Computer Startup Scripts vs. Logon Scripts Startup scripts run just before the boot process gets to the logon screen, and in the context of the local computer account, which has local administrative privileges. Startup scripts can be stored in the GPO itself, removing the need to configure a network share. Configure a Computer Startup Script Log on to a Windows Server 2012 R2 domain controller (DC) with a domain administrator account and follow the instructions below. Create a new Group Policy Object in Active Directory: Open Server Manager using the icon on the desktop taskbar or from the Start screen. In the Tools menu, select Group Policy Management. In the Group Policy Management Console (GPMC), expand your Active Directory (AD) forest, domain and click the Group Policy Objects container. Right-click the Group Policy Objects container and select New from the menu. In the New GPO dialog box, give the new Group Policy Object (GPO) a name and press OK. Now right-click the new GPO in the right pane and select Edit from the menu. [adkit zone="freestyle"... --- ### Configure VMware View Persona Management > Learn how to configure View Persona Management for VDI users in this walkthrough – especially helpful for service VDI users who need to manage user profiles. - Published: 2014-04-22 - Modified: 2024-09-04 - URL: https://petri.com/configure-vmware-view-persona-management/ - Categories: VMware - Tags: EUC, User Profile, VDI, View Persona Management, VMware View - Article Type: How To Managing user profiles is an important function in virtual End User Computing deployment. Learn to setup VMware View Persona Management in this walkthrough! The management of user profiles is an important function in any virtual End User Computing (EUC) deployment. Without managing and capturing user profiles, the user's experience cannot be persisted across different services or upon recovering from a disaster. Today I'll give a walkthrough of the basic setup of the VMware View persona management feature. VMware View Persona Management: Group Policy To get things started, you will need to log onto a computer or server on which you can edit Group Policy for the domain that you will be managing. For my example, I am using one of the AD servers. Use the Group Policy Management application as shown below.   If you do not already have a GPO to modify, you will need to create a new one. You may also need to create a new OU for the virtual desktops to exist within to manage the GPOs for them. For the sake of this walkthrough, I used an existing folder and right-clicked Create a GPO.   Configure VMware View Persona Management After the test policy was created, I can now begin configuring View persona management. I have chosen to edit the policy that was created in the previous step. Expand the computer polices you can locate the folder for Persona Management, as shown below. Look through the items in the right window and find the Manage user persona selection and edit it.   When editing the policy, Enable the feature. The only other value... --- ### How to Connect Service Manager 2012 to Operations Manager 2012 > Learn to establish the configuration item synchronization between Operations Manager and Service Manager to extend the Configuration Management Database (CMDB). - Published: 2014-04-21 - Modified: 2024-09-04 - URL: https://petri.com/connect-service-manager-2012-to-operations-manager-2012/ - Categories: System Center - Tags: CMDB, Configuration Items, Connectors, Operations Manager, Service Manager - Article Type: How To In this post, discover the steps to establish the configuration item synchronization between Operations Manager and Service Manager to extend the CMDB. In an related post, we covered the procedure of creating a connector to Configuration Manager 2012. As we continue to enable our Configuration Management Database (CMDB), we will add the steps to establish the connection from Service Manager 2012 with Operations Manager 2012 (RTM, SP1 and R2). Unlike the previous connectors, Service Manager now contains less than two different connectors for Operations Manager: configuration items and alerts. Create an Operations Manager Configuration Items Connector The configuration items (CIs) connector for Operations Manager enables the importing of information including baseboard management, websites, SQL databases, and of more interest initially, Distributed Application information as CIs in Service Manager CMDB. The only step we need to take is to create a new Operations Manager Configuration Items Connector, which will also require us to create a new Run As profile for use by the connector. The account that we define in the profile will need to be a member of the Operations Manager Administrators role. Working from the Administration view, expand and select the Connectors branch to be presented with any currently registered connectors in the environment. From the Actions pane, select Create connector. Select Operations Manager CI Connector.  This will launch the connector wizard. On the General page, provide a Name for the connector (for example, SCOM CI Connector), along with a description for this connector. Also ensure the Enabled option is checked. On the Server Details page, in the Server Name field, enter the name of your Operations Manager Management Server. In the Credentials area, click New... to launch... --- ### Understanding the Architecture of the Hyper-V Hypervisor > Learn about the architecture of Hyper-V’s type 1 hypervisor, including drivers, VMWP, VMMS, WMI, virtual switches, Virtualization Service Providers, and more. - Published: 2014-04-21 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-hypervisor-architecture/ - Categories: Hyper-V - Tags: Architecture, virtual machine, Windows Server - Article Type: Overview Join us as we deconstruct the architecture of Hyper-V’s type 1 hypervisor, including drivers, VMWP, WMI, virtual switches, and more. Understanding the architecture of Hyper-V’s type 1 hypervisor will help you when you are trying to understand the benefits of features such as Single-Root IO Virtualization (SR-IOV), figure out why you need updated integration components for Dynamic Memory, see the reason for Linux Integration Services to exist, and to decipher the cryptic error messages in Hyper-V Manager or in the Windows event logs. I will discuss the architecture of Hyper-V in this post. How Hyper-V Works Below is a high-level depiction of the architecture of Hyper-V. We can get very deep in the weeds when looking at this architecture. This would be beneficial to those who are developing for Hyper-V, but we’ll stick to the components that are relevant to IT pros. The architecture of Hyper-V (Source: MSDN)   Where Hyper-V runs is something that those who are new to Microsoft’s enterprise virtualization may find confusing, or it can be stated incorrectly. Hyper-V does not run on Windows. True, you do install Windows first and then enable Hyper-V afterwards. However, Hyper-V is slipped beneath Windows. The Windows install, now known as the management OS, runs in the root partition on top of Hyper-V. Virtual machines (guests) run in child partitions, also on top of Hyper-V. Drivers Only the management OS has direct connectivity with the hardware on the host. That means the drivers for the host’s hardware are installed only in the management OS, where they run in kernel mode. Note that SR-IOV... --- ### Using Microsoft Azure: Virtual Machines and RDP > lLarn more about Microsoft Azure's possibilities with virtual machines and Remote Desktop Protocol in part 1 of a new series. - Published: 2014-04-21 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-azure-virtual-machines-rdp/ - Categories: Cloud Computing - Tags: Microsoft Azure, RDP, Remote Desktop Protocol, virtual machines - Article Type: How To Microsoft Azure's come a long way. In part 1 of a new series, learn more about Azure's possibilities with virtual machines and Remote Desktop Protocol. You may have heard a lot about Microsoft Azure, which was (until recently) formally known as Windows Azure. But you might not know exactly how the Azure service can fit into your plans. Microsoft Azure has come a long way from its initial introduction in the fall of 2008 and really has something for most businesses and organizations. Microsoft Azure can effectively function as: A complete datacenter for microbusinesses and small business A disaster recovery solution for organizations of all sizes A scalable way to host web sites outside of your existing infrastructure A way to run lab and test scenarios using virtual machines nearly identical to the ones you can create in your office If you’re new to Azure, it can be difficult to know where to begin. The idea behind this new series of articles is to take you, as someone brand new to Microsoft Azure, through the options and show you exactly how you can get set up and running, and how you can enable some of the cooler scenarios that Azure makes possible. What Can You Set Up in Microsoft Azure? Once you have established your Microsoft Azure account you can set up the following: Websites, which are basically managed Internet Information Services (IIS) accounts that run specific web applications in either free mode, which operates at no cost to you but has significant limitations on capacity, or paid mode, which assigns specific resources at a cost. Virtual machines, which we’ll talk about... --- ### Check Certificate Authority Health in Windows Server 2012 R2 Using PKIVIEW > Learn how to check the status of your enterprise certification authorities using the Enterprise PKI (PKIVIEW) tool. - Published: 2014-04-17 - Modified: 2024-09-04 - URL: https://petri.com/certificate-authority-health-windows-server-2012-r2-pkiview/ - Categories: Windows Server - Tags: Active Directory, Authentication, Certificate Authority, Certificates, PKI, Security - Article Type: How To In this easy Ask an Admin, find out how to check the status of your enterprise certification authorities using the Enterprise PKI (PKIVIEW) tool. As data and IT services become more distributed, whether it be accessing data from a mobile device or data in the cloud, securing access to IT resources becomes increasingly complex. Public Key Infrastructures (PKI) are increasingly required to enable new features in Windows Server, so in this Ask the Admin, I’ll show you how to use the PKIVIEW tool to check certification authority health. Enterprise PKI The Enterprise PKI tool, sometimes referred to simply as PKIVIEW, is invaluable for checking the status of your organization’s certification authorities (CA). It was first released as part of the Windows Server 2003 Resource Kit, but starting with Windows Server 2008 it is installed by default when you add the Active Directory Certificate Services (AD CS) role. If you want to use PKIVIEW from a management workstation or server where AD CS is not installed, Active Directory Certificate Services Tools can be added as part of the Remote Server Administration Tools (RSAT). See "Remote Server Administration Tools (RSAT) for Windows 8: Download and Install" for more information about using RSAT with Windows 8. Running PKIVIEW PKIVIEW is not listed on the Tools menu in Server Manager. To run the tool, log on to your Windows Server 2012 R2 device where the certification authority is installed, switch to the Start screen, type pkiview. msc and press Enter. In the left pane, the root and subordinate CAs registered with Active Directory are available to select. In my domain, I only... --- ### Installing VMware View Group Policy ADM templates > Learn how to install GPO files for controlling VMware View policies in this quick walkthrough. - Published: 2014-04-17 - Modified: 2024-09-04 - URL: https://petri.com/install-vmware-view-group-policy-adm-templates/ - Categories: VMware - Tags: Active Directory, AD, ADM, gpo, OU, View - Article Type: How To Find out how to load the VMware View administrative template (ADM) files into AD in this walkthrough. The tuning of VMware View and many policy settings can be accomplished via Active Directory group policy. These settings are not in Active Directory by default and must be loaded. In today's post, I will walk through the steps to load the VMware View administrative template (ADM) files into AD. Locate the View ADM Files To get the process started, find the ADM templates on one of the View connection servers already installed. The files are stored in the following folder location: c:install directoryVMwareVmware ViewServerextrasGroupPolicyFiles Once you have located the files, copy them to a server that you will use for editing Group Policy. For the purpose of this walkthrough, I have copied to one of my lab domain controllers.   Install View ADM Templates After you've logged into the server that will be used to edit the Group Policy and install the ADM templates, click on the Start button. Select the Administrative Tools menu and click on Group Policy Management. This will open the management plugin for group policy. Select and right-click on the Organizational Unit (OU) in which my View desktops will be located. From the context menu, select Create a GPO as shown below. You will now be prompted to name the new GPO that you are creating. Enter the name and click OK, since we are creating something new there will not be a source GPO from which to start. The newly created GPO will now show in the window... --- ### How to Create a New Workflow with Visio and SharePoint Designer > Discover how to use Microsoft Visio Pro 2013 or SharePoint Designer 2013 to create a new workflow using this helpful guide. - Published: 2014-04-17 - Modified: 2024-09-04 - URL: https://petri.com/create-new-workflow-with-visio-sharepoint-designer/ - Categories: SharePoint - Tags: Visio, Visio Pro 2013, Workflow - Article Type: How To Discover what's needed to create a workflow using SharePoint Designer 2013 and Visio Pro 2013 that can be used on a content type or a list. I’ve been so impressed with Workflows in SharePoint 2013. It is one of the features that can make a dramatically positive impression on the project stakeholders and can enable you to improve the business processes that people will come to rely upon. The Workflow 4. 5 language is something that can be approached using Visual Studio – and from a purely developer perspective, you don’t ever have to open Visual Studio to put together a great workflow. This article is going to show you the steps required to create a workflow using SharePoint Designer 2013 and Visio Pro 2013 that can be used on a content type or a list. Workflow Creation in Visio Pro 2013 To begin your workflow in Visio, open Visio, choose Create a New Diagram, and then choose SharePoint 2013 Workflow as the diagram type. Note the search installed templates field, which helps make it easy to find. Visio has two options: SharePoint 2010 template and SharePoint 2013 template. As long as you’ve got your Workflow Farm in place, you’ll never need to go with the 2010 version. Select the 2013 version to start building your workflow. Now you have your workflow, and you’ll notice a few things about it. First, it looks like a drawing, not like a bunch of code. Second, you’ll notice that you have one big box called a stage, and what looks like a play button and a stop button to indicate the beginning and the end of the... --- ### Microsoft Azure: Virtual Machines, Virtual Networking, and RDS > Find out whether Microsoft Azure can help you in your work and whether it'll take away - or help - your job in part 2 of a two-part series. - Published: 2014-04-16 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-azure-virtual-machines-networking-rds/ - Categories: Networking - Tags: Editor's Pick, Microsoft Azure, RDS, virtual networking - Article Type: How To, Overview Still leery of Microsoft Azure? In part 2 of this series, find out whether Azure can help you in your work and whether it'll take away - or help - your job. In part one of this series I talked about what Microsoft Azure (formerly known as Windows Azure) offers to IT pros, and how you can consume the service, including trials and production usage. In this second part I am going to discuss my early experiences with Microsoft Azure, talk about what I like, what I think needs to improve, and how I think Azure will impact your employment status. First Experiences with Virtual Machines The early adopters of IaaS were deploying virtual machines that were known as virtual private servers (VPS) before the term "cloud" was a twinkle in the eye of some evil marketing genius. They deployed web servers and fired up a single service or lots of resold websites. This is a pretty simple deployment, so that’s what I replicated during my initial deployment using my MSDN benefit. The wizard for deploying any of the services within Microsoft Azure is, for the most part (not always), pretty natural to use. The terminology for virtual machines is not that different to what we’re used to on-premise. Within 20 minutes I had a working IIS server handling a sample website securely behind a firewall in Microsoft Azure. You can do a “quick create,” but I strongly recommend that you use the wizard to customize your virtual machine to suit your needs. The first screen offers you a gallery with different virtual machine templates that you can use for your new virtual machine. This is being regularly updated;... --- ### Going to TechEd 2014? Meet your favorite Petri Authors in Person! > Heading to Microsoft TechEd 2014 this year? Register for our author meet and greet to meet your favorite Petri authors at the conference! - Published: 2014-04-16 - Modified: 2024-12-03 - URL: https://petri.com/going-to-teched-2014-meet-your-favorite-petri-authors-in-person/ - Categories: Windows Server - Tags: Author Meet and Greet, Microsoft TechEd 2014, Veeam Software - Article Type: News Going to Microsoft TechEd 2014 in Houston this year? Register for our author meet and greet at the conference to meet your favorite Petri authors! Are you headed to Microsoft TechEd 2014 in Houston, TX this year? Several authors and contributors for the Petri IT Knowledgebase will be there as well, and we'd love to get the chance to meet some of our readers in person in an informal setting. That's why we're planning the first-ever Petri IT Knowledgebase Author Meet and Greet (sponsored by Veeam Software and Proximal Data) at TechEd this year: If you're attending the show, you'll get the chance to meet Petri contributors like Daniel Petri, Aidan Finn, Phoummala Schmitt, J. Peter Bruzesse, and more. Author Meet and Greet Event Details We're holding the event on Tuesday, May 13th, from 5:00 to 7:00pm local time (CDT) at the following location: Andalucia Restaurant 1204 Caroline St #161 Houston, TX 77002 web: http://andaluciatapas. com The Petri IT Knowledgebase Author Meet and Greet will be held at Andalucia in Houston, TX. (Source: Andalucia/Google Maps) If you've ever wanted to ask Daniel Petri about thorny Active Directory problems, quiz Aidan Finn about the optimal Hyper-V configuration, or get Phoummala Schmitt's advice on thorny Microsoft Exchange issues -- in person -- this is your chance. The following Petri authors, contributors, and editors should be in attendance: Simon Bisson (author bio) Mary Branscombe (author bio) J. Peter Bruzzese (author bio) Peter De Tender (author bio) Aidan Finn (author bio) Damian Flynn (author bio) Jonathan Hasselll (author bio) Jeffery Hicks (author bio) Daniel Petri (author bio) Jeff James (author bio) Phoummala Schmitt (author bio) Space will be limited, so we'd ask that everyone... --- ### Top Windows Phone 8.1 Features For Businesses > Find out about our favorite Windows Phone 8.1 update, including security and management features, and improvements for user productivity. - Published: 2014-04-16 - Modified: 2024-09-04 - URL: https://petri.com/top-windows-phone-8-1-features-for-businesses/ - Categories: Mobile - Article Type: Overview These are a few of our favorite things... about the new Windows Phone 8.1 update, including improvements to security and management, and more! With BitLocker encryption and signed email, built-in VPN, and strong management options in the upcoming Windows Phone 8. 1 release, Windows Phone is becoming a business-friendly mobile phone OS. But the new release is also crammed with features that will make users like it too, including the new Start screen option for putting an image across all your tiles, the Cortana personal voice assistant for searching and getting reminders, being able to move content between internal memory and an SD card, having photos automatically arranged in albums, and the new Word Flow keyboard, which lets you type one-handed by swiping your fingers over the keys to draw the word you want. The official release is this summer, but you might see devices with the developer preview showing up sooner than that. Top Windows 8. 1 Features Easier to Manage VPN, IPsec, SSL, and S/MIME Windows Phone 8. 1 includes some badly needed improvements originally planned for the Enterprise Feature Pack, in particular VPN support, for IPsec and SSL – and as with Windows 8. 1, you can create custom apps for your business that automatically launch the VPN and connect to it or set the VPN to connect automatically if users visit an internal web site. Email on the phone now supports S/MIME for encrypted email, which lets users read signed email and sign messages they write on the phone (but they don’t have to sign everything, so they can still mail friends and family from their phone). You can push... --- ### Get Reviewer Details from System Center Service Manager > Learn how to get reviewer details from Service Manager and leverage PowerShell to create an activity which will enhance the inbox offerings. - Published: 2014-04-16 - Modified: 2024-09-04 - URL: https://petri.com/reviewer-details-service-manager/ - Categories: System Center - Tags: Activities, Automation, Orchestrator, PowerShell, Service Manager, SMLets - Article Type: How To The inbox Service Manager activities in Orchestrator are limited. Learn to leverage PowerShell to create an activity that will enhance your inbox offerings. Recently I worked on a project that had a requirement to determine who reviews a review action flow in Service Manager, and then communicate where those reviewers were in terms of action approval. In essence, we needed to know who could review the actions and what their status was in making those actions. A simple task, and one I assumed which would only take a few minutes to accomplish in System Center 2012 - Orchestrator. Man was I ever wrong! Why? Well, for reasons best answered by the gremlins, under no scenario was I able to get a set of activities to link up and return the Active Directory details of my reviewers. Instead, the best I could accomplish was an alien reviewer number, which was totally useless as I had no way of reverse engineering this with the activities offered. Getting the status of the review actions for these "numbers" was easy, but half a story is worth nothing. Today I'll show you how to use PowerShell to get reviewer details from Service Manager. SMLets Powershell Without overthinking my issue, I stopped and considered that at some point I will move over to the Service Management Automation platform anyway, which is pure PowerShell. With this in mind, I crafted a function that leveraged the SMLets module from codeplex so that I can pass in the ID of the Review Activity, which I need to get the data on. Cobbling my first version of a function, I... --- ### How to Run PowerShell Scripts with Administrative Privileges > Learn two ways to launch PowerShell scripts with administrative rights when you are logged in using a standard user account. - Published: 2014-04-15 - Modified: 2024-09-04 - URL: https://petri.com/run-powershell-scripts-with-administrative-privileges/ - Categories: PowerShell - Tags: PowerShell, remote management, Scripting, Windows Server 2012 - Article Type: How To Here are two ways to launch PowerShell scripts with administrative rights when you are logged in using a standard user account. Sooner or later, as you begin to hone your PowerShell skills, you’ll start writing scripts to automate repetitive tasks. If you run your workstation with standard user privileges, you’ll soon discover that it’s not possible to launch PowerShell scripts with administrative privileges by right-clicking the script and selecting Run as administrator from the context menu (which is available for most over types of executable). Today I’ll show you two ways that you can launch PowerShell scripts with admin privileges. Modify a Script to Force Elevation Add this snippet of code to the beginning of your PowerShell script, and a UAC prompt will appear, asking for administrative credentials or consent before any subsequent code is executed. ​ param($Elevated) function Check-Admin { $currentUser = New-Object Security. Principal. WindowsPrincipal $(::GetCurrent) $currentUser. IsInRole(::Administrator) } if ((Check-Admin) -eq $false)  { if ($elevated) { # could not elevate, quit } else { Start-Process powershell. exe -Verb RunAs -ArgumentList ('-noprofile -noexit -file "{0}" -elevated' -f ($myinvocation. MyCommand. Definition)) } exit } Running a PowerShell script with administrative privileges. Run a Code from an Elevated Instance of the Windows PowerShell Integrated Scripting Environment (ISE) Alternatively, you can run scripts directly from inside the Windows PowerShell ISE. To start the ISE with administrative privileges: Switch to the Start menu in Windows 8, type powershell ise, and make sure that PowerShell ISE is selected in the search results. Press CTRL+SHIFT+ENTER to start the ISE with elevated privileges and enter administrative credentials or give sent if... --- ### Microsoft Adds BT and Verizon As Azure ExpressRoute Partners > Microsoft recently announced partnerships with BT and Verizon. Learn more about plans to introduce a new WAN solution to connect on-premise clouds. - Published: 2014-04-15 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-bt-verizon-windows-azure-expressroute-partners/ - Categories: Cloud Computing - Tags: Azure, Cloud, cloud computing, hybrid cloud, Microsoft Azure, networking, VPN, WAN - Article Type: News Learn more about Microsoft's plans to introduce a new WAN solution to connect on-premise clouds, as well as the company's new partnerships with BT and Verizon. Microsoft recently announced partnerships with AT&T, Level 3 and Equinix to introduce a new WAN solution to connect on-premise clouds with Microsoft Azure via Multiprotocol Label Switching (MPLS) networks. It appeared that the rest of the world would enviously watch on as Microsoft focused (once again) on the home market in the USA. Last night, Microsoft announced new partnerships with BT and Verizon. Connectivity to Microsoft Azure There are three ways that you can connect to services in Azure: public connection, site-to-site VPN, and Azure ExpressRoute. Public connection You can create endpoints in your cloud service(s), which is like punching holes through the Azure firewall into your virtual network(s). This is a publicly accessible connection that you optionally secure. This option should normally only be used for services that you want to make available to the public. Typical examples would be HTTP or HTTPS services, or maybe RemoteFX (Remote Desktop) for desktop-as-a-service (DaaS). You would not use endpoints for internal or secure communications. Site-to-Site VPN This is a private and encrypted channel across the public Internet. This option allows you to extend your networking into the virtual network(s) that you deploy within Azure. You can route quite happily between your Azure virtual network(s) and your private on-premise networks without opening up any holes in security boundaries and all data will be secured by the VPN tunnel. There are some downsides to the site-to-site VPN option. The VPN tunnel traverses the public Internet. That means the stability and... --- ### How to Use Server Manager in Microsoft Azure to Manage Servers > Learn how to use Server Manager in Microsoft Azure and configure an HTTP winrm listener in a Microsoft Azure VM with the help of this Ask an Admin post. - Published: 2014-04-15 - Modified: 2024-09-04 - URL: https://petri.com/using-windows-azure-server-manager/ - Categories: Windows Server 2012 - Tags: Active Directory, remote administration, Windows Azure, Windows Server 2012 - Article Type: How To In this Ask an Admin, learn to use Server Manager in Microsoft Azure and quickly return the default winrm configuration. The default Windows Remote Management (winrm) settings in Microsoft Azure VMs, i. e. those provisioned using templates from the gallery, prevent Server Manager from connecting to other servers on your Azure virtual network. In this Ask the Admin, I’ll show you how to use Server Manager in Windows Azure and how to quickly return the default winrm configuration. Configure Windows Remote Management Listener on HTTP By default, Windows Remote Management (winrm) is enabled out-of-the-box in Windows Server 2012 R2 with an HTTP listener. However, if you open a command prompt on an Azure VM and run winrm enumerate winrm/config/listener, you’ll see that it’s configured to listen on HTTPS. To manage a remote server using Server Manager, we need to configure an HTTP winrm listener on each remote server, which can be achieved by running winrm qc from an elevated command prompt. You’ll be prompted to confirm that you want to create a new listener, as shown in the figure below. Configure Windows Remote Management Add Remote Servers to Server Manager Once winrm is configured to support Server Manager on each remote server, on your management server, you can add the remote server(s) to Server Manager. Start Server Manager from the Start screen or taskbar icon. Select Add Servers from the Manage menu. In the Add Servers dialog, click Find Now on the Active Directory tab. Select the server(s) you want to add to Server Manager and click the arrow in the... --- ### End of Support for Windows Server 2003 > The end of life for Windows Server 2003 (W2003) and Windows Server 2003 R2 (W2003 R2) is July 14, 2015. Learn about your options and start planning now! - Published: 2014-04-14 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2003-end-of-support/ - Categories: Windows Server 2003 - Tags: Editor's Pick, End of Support, W2003, Windows Server 2003 - Article Type: News Are you ready for Windows Server 2003 (W2003) and Windows Server 2003 R2 (W2003 R2) end of life? Learn about your options and start planning now! At this point you are obviously finished replacing Windows XP (as XP end of support passed on April 8, 2014) with Windows 7 or Windows 8. 1. Wait – you’re not even started? Oh... well, you're in for a fun year ahead. That’s because you’ll soon understand why you shouldn’t let work pile up. You probably have a project ahead of you that will make the XP replacement seem like it was easy. On July 14, 2015, Microsoft will end support for Windows Server 2003 (W2003) and Windows Server 2003 R2 (W2003 R2).   The end of life statement for Windows Server 2003/R2 (Source: Microsoft) Windows 2003 End of Support: What Does It Mean? No, W2003 and W2003 R2 won’t suddenly stop working in July 2015. Planes will not fall out of the sky. NASA won’t be launching rockets to resettle humans on far away planets. Extended support ended in 2010. That’s when Microsoft stopped developing new stuff specifically for W2003 and W2003 R2. All support ends next year for those legacy server OSes. This means you get no more security updates. Tools such as System Center will no longer be supported for managing those old OSs. In other words, running W2003 or W2003 R2 will become a business risk. Gaining Perspective Are you thinking “Why is Microsoft doing this to me? ” Well, step back for a moment. Microsoft released W2003 12 years ago on April 24, 2003. W2003 R2... --- ### Using the Microsoft Assessment and Planning (MAP) Toolkit for Server and Private Cloud Migration > Microsoft Assessment and Planning Toolkit (MAP) | In part 2, learn to use the free MAP tool to prepare for server and cloud platform migration. - Published: 2014-04-14 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-assessment-and-planning-map-toolkit-server-private-cloud-migration/ - Categories: Windows Server 2012 - Article Type: Overview We're back with more MAP! In part 2 of this series, learn to use MAP to prepare for server and cloud platform migration. In the first part of our two-article series on the Microsoft Assessment and Planning (MAP) toolkit we discussed installation, configuration, and using the tool to help you migrate machines to Windows 7 and Windows 8. 1. In this second article, we’ll explore how you can use MAP to prepare for server and cloud platform migration. For purposes of this article, we’ll assume that your inventory already contains server-related data. If not, you might have to update your inventory settings, which is also explained in the first article in this series. Using MAP for Server Assessment Server inventory features within the MAP Toolkit is actually almost similar to the client inventory features that I described in part one. By selecting the Server section on the left, you are presented a graphical overview of your current platform: which servers are ready to run Windows Server 2012 or 2008 R2, what web server instances and web applications are you running, and how does your legacy server platform (Windows 2003 and 2000) look like. Select one of the scenarios, you are transferred to a more detailed view, as well as having the options available to generate Windows Server Report & Proposal and/or Customize Assessment Properties. Again, if this all looks too complicated, have a look at part one, which talks about the mentioned topics and options in detail. Using MP for Cloud Assessment When selecting the cloud assessment section, we are presented with the following scenarios: Azure VM... --- ### System Center Service Manager PowerShell Module and SMLets Module > Learn more about System Center Service Manager's two modules, which module you should use, and whether you can even use both. - Published: 2014-04-14 - Modified: 2024-11-19 - URL: https://petri.com/system-center-service-manager-powershell-module-and-smlets-module/ - Categories: System Center - Tags: Automation, PowerShell, SCSM, Service Manager 2012, SMLets - Article Type: Overview Did you know System Center Service Manager had two PowerShell modules? Learn more about the differences between the modules and what they can do for you! As you begin to interact with System Center Service Manager, you will without any doubt find yourself scratching your head trying to figure out why on earth there is not one, but two PowerShell modules available for this component. System Center Service Manager: Why Two PowerShell Modules? Could it be that the tool is so complex that we needed to add yet more commands to simplify our life? Is it possibly the case that one of the modules is no longer really relevant and we can just focus on one of these? Is it okay to install both on the same server? Why would I ever need both? A little history is a good start to understand the present, and in the case of Service Manager and PowerShell, history is very important. At the time of the 2012 RTM release Service Manager was the ugly duckling in the System Center family as it did not have its own in box PowerShell module. However all was not lost, as shortly after the public launch of Service Manager 2010, Patrik Sundqvist (GridPro) along with Travis Wright, the then-Microsoft project manager with responsibility for Service Manager, launched an open source module on Codeplex. com called SCSM PowerShell Cmdlets (or SMLets for short) to fill the gap. The module is still maintained, but not as actively, and it works extremely well with all the releases of Service Manager, to the current (as of time of writing) 2012 R2 release. This module is by designation... --- ### Who's on First? About That Windows 8.1 Update > Confused by the name of the Windows 8.1 Update, aka Windows 8.1 Update 1 and Windows 8.1 Spring Update? Check out our funny send-up! - Published: 2014-04-11 - Modified: 2024-09-04 - URL: https://petri.com/windows-8-1-update-whos-on-first/ - Categories: Windows 8 - Tags: Windows 8.1, Windows 8.1 Spring Update, Windows 8.1 Update, Windows 8.1 Update 1 - Article Type: News Confused by the name of the recent Windows 8.1 Update, which is also known as Windows 8.1 Update 1 and the Windows 8.1 Spring Update? Join the club. One of the more entertaining things about covering the IT industry over the last decade has been watching Microsoft’s marketing efforts for their many and varied products. There have been some laudable successes: The Windows 95 launch had an inspired (and epic) "Start Me Up" ad campaign featuring The Rolling Stones that introduced us all to the ubiquitous (and now soon-to-return) Windows start button and menu. Or the launch of the original Xbox at CES in 2001, which featured Dwayne Johnson (aka The Rock) giving Bill Gates keynote presentation tips. Or how about the seamlessly efficient roll-out of Windows 7, which helped Microsoft recover from the Vista debacle that inspired Apple's infamous (and devastatingly effective, despite not always being factual) Mac vs PC ads? Microsoft's Marketing Mix-Ups Then there were the marketing and messaging fumbles worthy of a corporate face palm, which Microsoft has never had a shortage of. Anyone remember the Internet Explorer ad with a projectile vomiting spouse? Or the inscrutable “Now you see me, now you don’t” feature-removal bingo game also known as the Xbox One launch campaign?  Or unfortunate product naming gaffes like Microsoft Equipt and the entire Windows Live product family? Or Live services family? Or whatever it was? Now Microsoft is entering new territory with the second update to Windows 8, which has been officially christened the “Windows 8. 1 Update” after being referred to in the press (and informally by Microsoft) as either "Windows 8. 1 Update 1" or "Windows 8. 1 Spring... --- ### Microsoft Releases Virtual Machine Converter 2.0 > Check out and download Microsoft Virtual Machine Converter 2.0, a free tool that converts VMware virtual disks and machines to Hyper-V equivalents. - Published: 2014-04-10 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-virtual-machine-converter-2-0-released-download/ - Categories: Hyper-V - Tags: conversion, Convert, ESXi, Hyper-V, Microsoft, p2v, System Center, v2v, virtual machine, VM, vmware, vSphere - Article Type: News Download the free Microsoft Virtual Machine Converter 2.0, and learn what it can do for you and your business! Microsoft announced the release of the second version of their VMware-to-Microsoft virtualization conversion tool, the Microsoft Virtual Machine Converter (MVMC) 2. 0 (download at the link). The announcement was on the Server and Cloud blog, so a little bit of marketing was thrown into the mix. Microsoft wants you to know that small, medium, and large enterprises are making the jump from vSphere (and management stack) to Hyper-V (and System Center). Conversions Are Happening In the blog post, Microsoft noted that “Hyper-V has had four times the growth of VMware's ESX over the past three years. " Not all customers are performing a clean migration; some are deciding to run vSphere and Hyper-V, and maybe even XenServer and/or KVM. Sometimes you choose the right platform for the workload in question. And sometimes you say, “We’ve invested X thousand dollars in vSphere. Let’s leave that running where it is, and start using Hyper-V for new workloads. " Granted, I do enjoy rattling the cages and getting heat from VMware fans, but I want to focus more on the “how” rather than the “why” in this article. How We Converted in the Past System Center Virtual Machine Manager (SCVMM) was the conversion tool of choice in the past when moving virtual machines from vSphere to Hyper-V. It offered two methods: Drop the virtual machine files into the SCVMM library and convert them into a Hyper-V virtual machine. Manage a vSphere (not ESXi directly) farm and convert virtual machines. The process required quite... --- ### Using the Microsoft Assessment and Planning Toolkit (MAP) for Windows 7/8.1 Migration > Microsoft Assessment and Planning Toolkit (MAP) | Install MAP toolkit and determine Windows 7 or 8.1 readiness in part 1 of a 2-part series. - Published: 2014-04-10 - Modified: 2024-12-03 - URL: https://petri.com/install-microsoft-assessment-planning-toolkit-map-windows-7-8-1-migration/ - Categories: Windows Server 2012 - Tags: MAP toolkit, Microsoft Assessment and Planning Toolkit - Article Type: Overview We're moving on to the MAP toolkit! In part 1 of a 2-part series, learn to install MAP toolkit and determine Windows 7 or 8.1 readiness. A few years ago, Microsoft released an interesting (and useful) tool for IT professionals called the Microsoft Assessment and Planning Toolkit (MAPT). This tool helps organizations to prepare for migrations from existing servers and clients’ infrastructure to new versions. This tool helps you in making a preparation assessment, answering questions such as the following. Is my server hardware capable of hosting a virtualization platform? Which of my client devices need to be upgraded with more RAM and CPU power in order to run Windows 7 or 8. 1? What PCs should be replaced? What server loads can be migrated to a virtualized platform? What software am I running on my clients, and will it work with Windows 7 or 8. 1?   After all these years, I’m still somewhat surprised by the fact it is a rather unknown tool, but I'm also happy to see how interesting the results are for my customers. And above all, it is totally free (which shouldn’t be the main reason for using this tool of course, but still a nice to have). Related: Planning a Windows Server 2012 Migration with MAP 8. 0 Install the Microsoft Assessment and Planning (MAP) Toolkit It all starts with downloading the installation bits from the Microsoft website. As of this writing, the latest release is version 9. 0, which is dated February 10, 2014. You can download Microsoft Assessment and Planning (MAP) Toolkit. While I don’t expect any difficulties in the installation itself, here are some guidelines and prerequisites that can... --- ### How to Configure DNS on a Domain Controller with Two IP Addresses > Learn how to configure DNS on a Windows Server 2012 domain controller with two IPv4 addresses in this quick Ask an Admin post. - Published: 2014-04-10 - Modified: 2024-09-04 - URL: https://petri.com/configure-dns-on-domain-controller-two-ip-addresses/ - Categories: Active Directory (AD) - Tags: Active Directory, DNS, IP address, networking, Windows Server 2012 - Article Type: How To In this Ask an Admin, find out how to configure DNS on a Windows Server 2012 DC using two IPv4 addresses. How can I configure DNS on a DC with two IP addresses? Sometimes it’s unavoidable to run an Active Directory domain controller (DC) on hardware that is configured with two network cards (NICS). While not a recommended configuration, it is possible to run a domain controller with two IP addresses. In this Ask an Admin, I’ll show you how to configure the NICs and DNS so that AD runs smoothly. This lab assumes you have one DC in your AD domain running DNS, configured with two NICs, each with one IPv4 address. Decide on One IP Address to Use with Active Directory Even if you have two NICS, and two IP addresses on your DC, only one of those IP addresses should be registered in DNS. In this example, my DC is assigned 192. 168. 0. 117/24 on the first network adapter, and the second 172. 16. 0. 6/24. I want AD to use 172. 16. 0. 6/24 on the second adapter, so the first task is to stop the other address being automatically registered in DNS. One option is to leave the DNS server properties for the adapter empty. Alternatively, if that’s not an option, following these instructions. Log on to your Windows Server 2012 DC as a domain administrator. Right-click the network icon in the bottom right of the taskbar and select Open Network and Sharing Center from the menu. In the left of the Network and Sharing Center, click Change adapter settings. In the Network Connections window, right-click the adapter you want to... --- ### Microsoft Azure: First Impressions > Check out this Microsoft Azure overview in part 1 of a 2-part series, as we look at Microsoft Azure's pricing, services, and access. - Published: 2014-04-09 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-azure-overview/ - Categories: Cloud Computing - Article Type: Opinion Considering hopping on the Microsoft Azure train? Check out this Azure overview in part 1 of a 2-part series, as we look at Azure's pricing, services, and access. Microsoft Azure -- formerly known as Windows Azure -- is Microsoft’s public cloud service that has been around in one form or another for several years at this point. To be honest, I viewed Azure as something for the developers and I ignored it. And to add to the honesty, I viewed Microsoft Azure with some acrimony because I, an IT pro, saw it as a threat to my career. I had to face that fear head on when I was given the mission at work to, first, learn Microsoft Azure, and second, be in a position to evangelize and consult on the service. In this two-part series, I will tell you about my early experiences with Microsoft Azure. I'll discuss the things I like about it, the weaknesses that I see, and I'll address the dreaded question: Will Microsoft Azure steal our jobs? What Is Microsoft Azure? You’ve probably read about Microsoft opening up super-modern data centers around the world. Those facilities, run by an organization called Global Foundation Services, host Microsoft’s public cloud services, such as Office 365 and Microsoft Azure. A public cloud is a shared infrastructure that is run by a hosting company (in this case, Microsoft). Services, often labelled with the marketing term “-as-a-Service” or –aaS, from that infrastructure are sold to customers or tenants. The infrastructure is shared and it isolates each tenant (customer) from every other tenant. A trait of a cloud is self service: A tenant can sign up and... --- ### MEC 2014: Microsoft Introduces Office 365 Fast Track Deployment Guide > Check out Microsoft's new Fast Track deployment resources website for the info you need for a successful roll-out of Office 365. - Published: 2014-04-09 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-office-365-fast-track-deployment-guide/ - Categories: Office - Tags: Microsoft Exchange Conference, Office 365, Office 365 Fast Track - Article Type: News Looking to deploy Office 365? Check out Microsoft's new 'Fast Track' deployment resources website for info you need for a successful roll-out. The Microsoft Exchange Conference (MEC) 2014 in Austin, Texas, from March 31 – April 2, was the event to attend if you’re an Exchange administrator looking for the latest information about anything and everything related to Microsoft’s popular email server platform. However, if you missed MEC and are interested in learning more about some of the buzz around Office 365, this article will provide you with some highlights. You should also check out what my fellow Petri IT Knowledgebase contributor J. Peter Bruzzese has to say about the conference in his post about MEC 2014 highlights. Evolution of Exchange Administration Throughout MEC, Microsoft put some effort towards debunking the notion that moving to Office 365 would put Exchange administrators out of a job. The trend that companies are seeing is that this is not true. If you step back and look at the history of IT, it is an ever-evolving industry of change. For example, when IT first started, every server in the datacenter was physical, but today many servers are virtual. While the hardware in our data centers might be fewer in number and running more virtual workloads, smart and talented IT professionals are spreading their wings and learning the new technologies that revolve around virtualization. The same is to be expected of those Exchange administrators whose organizations move away from on-premise Exchange to off-premise Office 365. With Office 365 you will still have a job and have similar work to perform. For example, for Office 365... --- ### Configuring Microsoft Azure Online Backup > Need a quick backup solution? Learn to configure Microsoft Azure Online Backup in four easy steps and protect yourself against data loss. - Published: 2014-04-09 - Modified: 2024-09-24 - URL: https://petri.com/configure-windows-azure-online-backup/ - Categories: Backup & Storage - Tags: Editor's Pick, Windows Azure - Article Type: How To Data protection is an all-time priority for IT admins. Learn to configure Microsoft Azure Online Backup for an quick backup solution! Data protection is an all-time priority for IT administrators. It doesn’t really matter if the server catches fire or the hard disk roasts, as long as the data is safe. Even the slightest hint of data loss can send even the most experienced administrators into a tizzy. That’s a reason why there are dozens of backup solutions available in the market designed to protect objects, applications, servers and even complete sites. A lot of meticulous planning is needed when it comes to designing a backup strategy: deciding between the types of storage to be used, the frequency of backup, and deploying complex products that often have a learning curve. Another important aspect of choosing a reliable backup solution is ensuring that it protects the data against site-wide failure in case of a catastrophe. Microsoft Azure Online Backup -- former known as Windows Azure online backup -- offers a very quick and easy-to-configure entry-level backup solution for Windows Server. Once set up, it backs up your mission critical data at regular intervals to the cloud. It uses the familiar Windows Server Backup-type interface for ease of use. This is a cost-effective solution that is especially helpful in cases in which you want to quickly set up a data protection mechanism without having to bear the pain of procuring storage or setting up an offsite at a distant location to protect against a site-wide failure. This functionality of Microsoft Azure IaaS leverages Microsoft Azure blob storage to store the backups... . --- ### 6 Microsoft Surface Pro 2 Tips > Discover what makes the new Surface Pro 2 a worthy successor to the original, and learn how to get the most out of your Surface Pro 2! - Published: 2014-04-08 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-surface-pro-2-tips/ - Categories: Mobile - Tags: Surface Pro 2, tips - Article Type: How To The new Surface Pro 2 is a worthy successor to the original. Take a look at our tips to get even more out of your Surface Pro 2! The second generation of Microsoft’s Surface tablet has been around a few months, with the Surface Pro 2 as the new flagship. From the outside it looks just like the original Surface Pro: a 10. 1-inch HD touch and pen screen with a kickstand and a removable keyboard. Under the hood it’s a completely different beast, with a redesigned, lower power motherboard, and Intel’s latest Haswell series Core processors. Faster, and with much improved battery life, the new Surface Pro 2 is a worthy successor to the original, and when combined with Windows 8. 1’s user interface improvements, it’s an ideal machine for an IT pro on the go, with fast wireless (and with an adapter, wired) network, plenty of memory, and enough SSD to handle most needs. Today I'll show you some tips on how to get the most from your Surface Pro 2. 6 Surface Pro 2 Tips 1. Buy a Power Cover Microsoft’s recently launched Power Cover will significantly increase the battery life of your Surface Pro. It’s a hefty beast, and does add a lot of weight to your tablet, but thanks to the extra battery life you get, it is weight you don’t begrudge. Even an original Surface Pro will get a new lease of life with this extra slab of power. The Power Cover’s battery also means that it’s more rigid than the Type or Touch covers, making it better suited to typing when using the Surface Pro as a laptop. It may... --- ### Microsoft Exchange Conference (MEC) 2014 Highlights > Check out the highlights from Microsoft Exchange Conference (MEC) 2014, from Office 365 to OWA for Android. - Published: 2014-04-08 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-exchange-conference-mec-2014-highlights/ - Categories: Exchange Server - Tags: Exchange 2013, MEC 2014, Microsoft Exchange Conference, Office 365 - Article Type: News Couldn't make it to the recent Microsoft Exchange Conference (MEC) 2014 in Austin, TX? Here are some highlights, from Office 365 updates to OWA for Android. I’d say “MEC is back! ” but that was the theme for MEC 2012, which saw the return of the much loved Microsoft Exchange Conference after a 10-year hiatus when it was merged with Microsoft TechEd. The theme for MEC 2014 might be more like "not cloud-only, but cloud-first. " That was the resonating theme for the development of new features to the Microsoft Exchange platform. Development of new features are being tested out in the Office 365 environment first, perfected, and then will/may (hopefully) be brought down to on-premise flavors. Austin and the Microsoft Exchange Conference 2014 It was my first time to Austin, Texas, and it’s obvious they take things seriously there, including their food and their music. Plenty of locations downtown near the conference center specialized in one or both. For a smaller venue like MEC, I’d say this was the perfect location. The conference center is surrounded by good hotels and walking distance to lots of great after-conference venues. Did you attend the Microsoft Exchange 2014 Conference this year? If so, add a comment to this post and tell us what you thought of the event. (Source: Microsoft) MEC 2014 started off with the keynote address and Julia White, general manager of Microsoft Office, was the master of ceremonies. As usual, she did a fantastic job interviewing top engineers and product managers from the product team such as Jeff Teper, Kristian Andaker, Steven Chew, and the ever popular Perry Clarke. Interspersed... --- ### Using Storage Reports in the VMware vSphere Web Client > Discover more about vSphere web client's new storage reporting feature in this quick overview. - Published: 2014-04-08 - Modified: 2024-09-04 - URL: https://petri.com/storage-reports-in-vmware-vsphere-web-client/ - Categories: VMware - Tags: Reports, storage, vmware, vSphere, Web Client - Article Type: Overview In this quick overview, get up to speed on the new feature in VMware vSphere web client: storage reporting. In recent posts I've covered the vCenter server appliance and the vSphere Web Client. These products are the future of vSphere management and the sooner people get up to speed, the better. In this post I will cover the new storage reporting options in vSphere web client. Storage Reports in vSphere Web Client First off: How do you find these new storage reports? Open the vSphere web client and click on the Storage icon as shown in Step 1 in the image below. Then click on the data center or a datastore per Step 2. Select the Monitor tab and then the Storage Reports button. This initial report is focused on Host related data. The type of report can be selected from the Report On drop-down list. The host report gives a good bit of data that shows the following details. Host list – In this example, this shows all hosts in the data center that I selected. Space used – How much space are the VMs consuming on a per host view. Snapshot Space – If VMs have snapshots, and how much space does that consume on a per-host view. How many datastores are connected to each host. These are some helpful stats that could be useful in many different reporting or troubleshooting scenarios. Web client storage reports   In this next example I have switched my report from a host-based view to a datastore-based view. This allows me to look at... --- ### Migrating from Windows XP to Windows 8.1: Enterprise Computing > Find out how to migrate from Windows XP to Windows 8 with help from these free tools provided by Microsoft. - Published: 2014-04-07 - Modified: 2024-12-03 - URL: https://petri.com/migrating-from-windows-xp-to-windows-8-1-enterprise/ - Categories: Windows 8 - Tags: Client Hyper-V, MDT, Support, upgrade, Windows XP, Windows XP end of support - Article Type: Overview Use free tools from Microsoft to migrate from Windows XP to Windows 8.1. Check out this post for more info! Microsoft will stop supporting Windows XP on April 8 -- see our Windows XP End of Support Guide for more details -- so now is the time to upgrade to Windows 8. In this article, I’ll look at Microsoft’s free enterprise tools for migrating multiple PCs to Windows 8, and point you to useful resources for starting your migration project. Assessing Hardware for Windows 8 Readiness with the Microsoft Assessment and Planning (MAP) Toolkit The Microsoft Assessment and Planning (MAP) Toolkit 9. 0, which can be downloaded from Microsoft, collects information about processor architecture, RAM, and free disk space from Windows XP Professional PCs. MAP’s agentless architecture gathers data using Windows Management Instrumentation (WMI) and stores it in a SQL database, allowing administrators to generate reports to provide an overview of which PCs are Windows 8 ready. Windows 8 requires 1GB of RAM (or 2GB for the 64-bit version), a minimum of 20GB free disk space and a DirectX 9 compatible graphics card with WDDM driver. Additionally, CPUs must support the following features: Physical Address Extension (PAE) NX processor bit (NX) Streaming SIMD Extensions 2 (SSE2) Fix Legacy Applications using the Application Compatibility Toolkit (ACT) One of the primary showstoppers that has caused organizations to stay with XP is legacy applications that are not compatible with Windows 8 or Internet Explorer 11. Many of these applications cannot be updated because the developers either no longer support the application, went out of business, or if... --- ### Is Poor Product Distribution Hurting Microsoft? > Is Microsoft sabotaging itself with poor distribution? Discover more about distribution, marketing, sales, and the Microsoft Surface. - Published: 2014-04-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-product-distribution/ - Categories: Windows Server - Tags: Microsoft, Microsoft Surface, Opinion, Surface, Windows Azure, Windows Intune - Article Type: Opinion Is Microsoft sabotaging itself with poor distribution? Discover more about distribution, marketing, sales, and the Microsoft Surface in this opinion post. As a person that works in the distribution business, I was amazed when I saw Microsoft’s strategy for selling products such as Windows Azure or Surface. Microsoft is effectively trying to sell product directly to customers, something that they have only ever had a tiny sliver of experience at doing. That became very clear when every channel that carried Surface 2 ran out of stock in the lead up to the 2013 Christmas holidays. If your product is selling, then how can you not carry enough produce to continue momentum? It happened again when Microsoft ran out of Surface Power Cover stock. In this article I will introduce you to the world of distribution, explain how one of Microsoft’s competitors gets it right, and then talk about what Microsoft does or doesn’t do in product distribution. What Is Distribution? Most consumers of product are completely unaware of the role of distribution in the channel. The role of a distributor is to: Purchase stock from numerous distributors: Sell stock to resellers (who we call customers) at a tiny margin. These can be retail chains, single shops, consulting companies, and so on. The reseller adds a margin to the stock and sells it to the final consumer (who we call end customers). This can be your grandmother buying a tablet or a mid-size business buying Office 365 on a Microsoft Open licensing agreement. From manufacturer to breadth market: the role of distribution. Why wouldn’t the manufacturer bypass the channel and... --- ### 9 Essential Microsoft Surface 2 Tips > Considering a Surface 2? Check out these top Microsoft Surface 2 performance tips, including OneDrive usage and more. - Published: 2014-04-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-surface-2-tips/ - Categories: Mobile - Tags: Surface 2 - Article Type: How To Considering a Surface 2? Check out these top Microsoft Surface 2 performance tips from an IT pro, the start screen, OneDrive usage, and more. The Microsoft Surface 2 is faster and more flexible than Microsoft's original Surface tablet. The full-size USB 3 port and 1080p screen resolution of the Surface 2 make it more of a workhorse, as does the much faster NVIDIA Tegra 4 1. 7 GHz CPU. Even the Wi-Fi is faster; it's still 802. 11n, but connected to a faster bus which improves throughput. The battery life is a definite improvement for me: I can get a full working day with Wi-Fi on; or I can leave the cover closed for a couple of days without plugging the Surface 2 in and it's still ready to use when I pick it up again. But the change that might make the most difference is the Surface 2 kickstand. It now opens to two positions, meaning you can avoid glare and you have a better chance of it perching stably on your lap rather than tipping over. Microsoft Surface 2 Tips and Improvements Put it all together and the Surface 2 is a tablet you can use for real work. Although I have a Surface Pro, the Surface 2 has been my main computing device (in and out of the office) since it was released. Here are a few tips that I've picked up while using the Surface 2 over the last few months. Many of them also apply to the original Surface RT with the Windows 8. 1 upgrade, but the extra oomph of Surface 2 matters in some cases. Editor’s Note:... --- ### Microsoft to Bring Back Start Menu in Future Windows 8.1 Update > Microsoft announced at the Build 2014 developer conference that the Windows Start Menu would soon be returning to Windows 8.1. - Published: 2014-04-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-to-bring-back-start-menu-in-future-windows-8-1-update/ - Categories: Windows 8 - Tags: News, Start Menu, Start screen, Updates, Windows 8.1, Windows 8.1 Spring Update, Windows 8.1 Update 1 - Article Type: News Microsoft announced at Build 2014 that the Windows Start Menu would soon be returning for Windows 8.1 users. Microsoft has made a lot of announcements at their Build Developer Conference this week, including the official unveiling of  Windows 8. 1 Update, Windows Phone 8. 1, and a number of development-related updates, including open-sourcing their 'Roslyn' compiler and introducing universal Windows apps. Keith Ward over at Visual Studio Magazine has a nice developer-focused recap of the big developer announcements at Build, and he argues that 2014 could be a watershed year for Microsoft developers. Yet arguably one of the biggest bits of news to come out of Build 2014 was a brief mention (and demo) during the Day 1 keynote that went off like a bombshell: Terry Myerson, executive video president of Microsoft's Operating Systems Group, said that Microsoft was finally bringing back the start menu functionality that desktop users have been clamoring for. You can catch Myerson's comments about the new start menu beginning at the 2:08:55 mark in the recorded video of the Day 1 Build keynote on Microsoft's Channel 9. Yes, that's correct: That would be just past the two hour mark, as Microsoft clearly had a lot it wanted to share with Windows developers. The start menu returns: Microsoft says that a new start menu will soon be available to Windows 8. 1 users. (Source: Microsoft) "There are more than 1. 5 billion PC users, and hundreds of millions of PCs sold every year, and the primary experience for many users is the keyboard and mouse," Myers said. "We're going all-in with this desktop experience... for starters, we are... --- ### How to Upgrade from Windows XP to Windows 8.1 > Learn how to upgrade from Windows XP to Windows 8 or Windows 8.1 in this step-by-step tutorial. - Published: 2014-04-03 - Modified: 2024-09-04 - URL: https://petri.com/upgrade-from-windows-xp-to-windows-8-1/ - Categories: Windows XP - Tags: Support, upgrade, upgrade assistant, Windows 8, Windows XP, Windows XP end of support - Article Type: How To It's time to make a move! Learn how to upgrade from Windows XP to Windows 8 or Windows 8.1 in this handy tutorial. With the Windows XP end of support deadline of April 8th, 2014 looming on the horizon, now is the time to think about upgrading to a newer operating system like Windows 7 or Windows 8. 1. Before you embark on the process of upgrading your PC to Windows 8, however, there are some technical requirements that you should take into account. If your PC is of a certain vintage, it may not be capable of running Microsoft’s latest and greatest. Additionally, there is no direct upgrade path from XP to Windows 8. 1. You will need to upgrade to Windows 8 first and then install Windows 8. 1 via the Windows Store. Today I'll go over how to upgrade your PC from Windows XP to Windows 8. 1. Upgrading to Windows 8. 1: Hardware Requirements The most common stumbling block for installing Windows 8 on old hardware is the requirement for a CPU that supports the following. Physical Address Extension (PAE) NX processor bit (NX) Streaming SIMD Extensions 2 (SSE2) If your PC doesn’t meet these processor requirements, you won’t be able to install Windows 8. The Windows 8 Upgrade Assistant, which you can download for free from Microsoft’s website, will scan your PC for Windows 8 readiness and alert you if your PC doesn’t support PAE or SSE2. You’ll also receive a warning if NX can’t be detected, but it may be that you just need to enable it in the BIOS.  Other requirements include 1GB of RAM (or 2GB for 64-bit Windows),... --- ### Microsoft Announces Windows 8.1 Update > Microsoft announced the Windows 8.1 update at the Build conference this week. Find out whether it will have what it takes to convince Windows 8 skeptics. - Published: 2014-04-03 - Modified: 2024-09-04 - URL: https://petri.com/windows-8-1-update-announced/ - Categories: Windows 8 - Tags: Windows 8.1, Windows 8.1 Spring Update, Windows 8.1 Update 1 - Article Type: News Microsoft took the wraps off Windows 8.1 Update at the Build conference this week. Does this upgrade have what it takes to convince Windows 8 skeptics? At the Build Conference 2014 in San Francisco this week Microsoft formally announced Windows Phone 8. 1 and Windows 8. 1 Update. We’ll have a separate post up soon discussing the new IT-friendly features that Windows Phone 8. 1 brings to the table for system administrators, but in this article I’ll focus on what Microsoft calls the Windows 8. 1 Update, which has been informally referred to as either "Windows 8. 1 Update 1" or the "Windows 8. 1 Spring Update" in the weeks leading up to the Build developer conference. From Windows 8 to Windows 8. 1 Update I’ve written a separate article that dives a bit deeper into the new features in Windows 8. 1 Update, but I’ll touch on the highlights here. Let’s begin with a bit of history: As Petri IT Knowledgebase readers know, Microsoft has struggled to boost Windows 8 adoption number to Windows 7 levels, with a significant chunk of the blame being laid at the feet of the controversial Windows 8 ‘Metro’ touch-based interface. Rather than make one Windows OS optimized for mouse and keyboard users and another Windows OS designed for smartphones and tablets — like Apple has successfully done with OS X and iOS — Microsoft, under the direction of former Windows chief Steven Sinofsky, radically revamped the Windows UI and wholly embraced touch-enabled computing. That approach resulted in the first release of Windows 8, which worked great on touch-enabled tablets, but left many traditional Windows mouse-and-desktop users frustrated by the Dr. Jekyll and Mr. Hyde... --- ### Adjust VMware High Availability Slot Size in the VMware vSphere Web Client > Find out more about high availability (HA) slot size in vSphere Web Client, including how to adjust the HA slot size. - Published: 2014-04-03 - Modified: 2024-09-04 - URL: https://petri.com/adjust-high-availability-slot-size-web-client/ - Categories: VMware - Tags: failover, HA, High Availability, vCenter, vSphere, Web Client - Article Type: How To The vSphere Web Client brings with it many new features, including the ability to adjust the HA slot size. Learn more in this post! I've been using the VMware vSphere web client since it was released, and I've found that it offers plenty of features that are useful for VMware admins. One hidden gem in the vSphere Web Client is the feature that allows you to adjust the High Availability (HA) slot size. This was not something possible in the fat client versions and was automatically done by vCenter based on VM size. In this post I will explain how to adjust the HA slot size setting in the vSphere web client. What Is High Availability (HA) Slot Size? The definition of a slot is the logical representation of CPU and memory resources required to satisfy the requirements of all powered-on virtual machines in a cluster. This is basically the worst case CPU and memory scenario for any given VM in the selected cluster. The defined slot is used when Admission Control is configured for the cluster and “Host Failures Tolerates” has been configured as the admission control policy. To figure out the number of VMs that can be powered on without exceeding resources, the cluster divides the available resources by the slot size. This provides the number of VMs that could be powered on. How to Adjust HA Slot Size When turning on vSphere HA and configuring Admission Control in the vSphere web client you will notice a new option for changing the Slot size policy. This was not possible in earlier version of vSphere. In the... --- ### Using NTBACKUP to Back Up Windows XP > Learn how to use NTBACKUP to create a full system backup in Windows XP in this quick 'n easy Ask an Admin. - Published: 2014-04-03 - Modified: 2024-09-04 - URL: https://petri.com/back-up-windows-xp-ntbackup/ - Categories: Windows XP - Tags: Backup, Backup and Restore, NTBACKUP, Windows XP - Article Type: Overview In this quick Ask an Admin, discover how to use backup in Windows XP to create a full backup of your PC. In this Ask the Admin, I’ll show you how to back up all data on your Windows XP PC, including the operating system. You should note that you can only use the backup created in this article to restore Windows XP if you have the original Windows installation media. Create a Backup of Windows XP The backup program in Windows XP can be found on the Start menu under All Programs, Accessories, and System Tools. Let’s use the wizard to create a full backup of Windows XP. You should be logged on as a local administrator to complete this task. In the Backup or Restore Wizard, click Next to begin on the welcome screen. On the Backup or Restore screen, check Back up files and settings, and click Next. On the What to Back Up screen, check All information on this computer and click Next. On the Backup Type, Destination, and Name screen, click Browse and select a location for the backup and click Save. This should preferably not be on the same physical drive that you are backing up – for instance, a removable USB disk would be a good option.   Select a destination for your backup.   Click Next to finalize the settings. Click Finish to start the backup. The Backup Progress window will show you the status of the backup operation, how many files are estimated to be backed up, and how long the job... --- ### How to Get User and Computer Objects Information with the Active Directory Administrative Center > Active Directory Administrative Center (ADAC) | Learn where to find useful information about user and computer objects in the ADAC. - Published: 2014-04-02 - Modified: 2024-09-04 - URL: https://petri.com/get-user-computer-objects-info-with-active-directory-administrative-center-adac/ - Categories: Active Directory (AD) - Tags: Active Directory, Editor's Pick, remote management, Remote Server Administration Tools, Windows Server 2012 - Article Type: How To Discover where to find useful user and computer objects information in the ADAC. Sometimes there are things sitting right under your nose that go unnoticed, due to not clicking in the right place at the right time. I’ve been on a mission to use the Active Directory Administrative Center (ADAC) more, instead of the traditional management consoles, such as Active Directory Users and Computers (ADUC). In this Ask the Admin, I want to show you how to get useful AD object information in ADAC. Accessing Useful Object Information in ADUC I should say that it is possible to view the information about user and computer objects displayed in ADAC, but using ADUC. You need to do the following to get information about when an object was created, modified and Update Sequence Numbers (USNs), etc. as follows: Log in to Windows Server 2012 R2 domain controller (DC) with a domain administrator account. Open Server Manager from the Start screen, or icon on the desktop taskbar. In Server Manager, select Active Directory Users and Computers from the Tools menu. In the ADUC console, check Advanced Features on the View menu. Expand your AD domain in the left pane of ADUC, and click the Users container. Double-click a user object in the right pane. In the properties dialog, switch to the Object tab. Here you’ll see information such as when the object was created or last modified. If you switch to the Attributes Editor tab, some additional information might be available, like the bad password count (badPwdCount). Click OK when you have finished... --- ### How to Use the Azure BGInfo Extension on a Windows Server 2012 Virtual Machine > Learn how to install and enable the BGInfo extension for Azure virtual machines to display useful management information on Windows Server 2012 desktops. - Published: 2014-04-02 - Modified: 2024-09-04 - URL: https://petri.com/azure-bginfo-extension-on-windows-server-2012-virtual-machine/ - Categories: Cloud Computing - Tags: remote management, Sysinternals, Windows Azure, Windows Server 2012 - Article Type: How To In this handy Ask an Admin, find out how to use the BGInfo extension for Azure virtual machines to display useful management information on Windows Server 2012 desktops. Microsoft has recently updated Windows Azure to include a new feature, the VM agent, which allows Microsoft and third parties to provide extensions that enhance the functionality of VMs. So far there is only one extension provided by Microsoft, BGInfo from the SysInternals toolkit, which displays useful information about the VM on the desktop. In this Ask the Admin, I’ll show you how to make sure the VM agent gets installed and how to enable the BGInfo extension. Install the VM Agent in an Azure Virtual Machine The VM agent must be installed when a VM is created. Microsoft plans to release an installer for the agent at a later date, so that it can be added to existing VMs. When using the Quick Create option in the Azure management portal to create a new VM, the VM agent is installed by default. If you choose to install a VM from the gallery, you have the option to omit the VM agent. For more information on how to deploy Windows Server 2012 on Azure, see "Deploy Windows Server 2012 in an Azure Virtual Machine" on Petri IT Knowledgebase. Enable the BGInfo Extension Once you have a server running in Azure with the VM agent installed, you need to enable any extensions that you want to add to the VM using PowerShell. For more information on how to use PowerShell to manage your Windows Azure subscription, see "How to Setup Windows Azure PowerShell Management. "... --- ### Stop or Start VMs in an Windows Azure Subscription Using PowerShell Loop > Learn to use wildcards and Foreach-Object loops in PowerShell to power on or shut down Windows Azure VMs. - Published: 2014-04-01 - Modified: 2024-09-24 - URL: https://petri.com/stop-start-vm-windows-azure-subscription-with-powershell-loop/ - Categories: Cloud Computing - Tags: Cloud, PowerShell, Windows Azure, Windows Server 2012 - Article Type: How To Show that Azure who's boss! Learn to wield wildcards and loops in PowerShell to power on or shut down Windows Azure VMs. To absolute beginners, PowerShell can look complex. And it is a more powerful tool than VBScript or other command line programs traditionally native to Windows. In this Ask the Admin, I’ll show you how to create a simple loop function to automatically run a series of commands to start or stop VMs running in Windows Azure. How to Start/Stop All VMs in an Azure Subscription with PowerShell The Windows Azure web-based management portal is a useful tool for beginners, but when cloud environments grow, trying to manage virtual machines using the management portal can be a pain. I wanted a quick way to make sure that all VMs in an Azure subscription were stopped and deallocated from the Azure fabric. It turns out that it is quite easy if all VMs are running in the same cloud service, but if they're not, you need to create a simple PowerShell loop. Using a Wildcard to Stop or Start Multiple VMs If all the VMs you want to start or stop are running in the same cloud service, you can use a wildcard to issue a command to all the VMs. For more information on using PowerShell to manage Windows Azure, see "Setup Windows Azure PowerShell Management" on Petri. (Related: . ) Switch to the Start screen in Windows 8, type powershell, and making sure that Windows PowerShell is selected in the search results, and press CTRL+SHIFT+ENTER to start the console with administrative privileges. Enter credentials... --- ### Understanding Latency Sensitivity in VMware vSphere 5.5 > Discover more about latency sensitivity settings in VMware vSphere 5.5, which decrease the latency to a virtual machine. - Published: 2014-04-01 - Modified: 2024-09-04 - URL: https://petri.com/latency-sensitivity-vmware-vsphere-5-5-overview/ - Categories: VMware - Tags: Applications, Latency, vCenter, vmware, vSphere - Article Type: Overview With vSphere 5.5 VMware introduced a feature to decrease the latency to a virtual machine. Learn more about its settings in this overview! With the release of VMware vSphere 5. 5 in late 2013, VMware introduced a new feature called "latency sensitivity. " This feature allows for a reduction in the latency of a given VM. In this post I'll explain a bit more about what latency sensitivity is and how to configure it for the best results. What Is Latency Sensitivity? In an effort to improve performance by reducing latency to a virtual machine, VMware has included latency sensitivity functionality in vSphere 5. 5. This will improve the performance of latency sensitive applications and aid in the continued push to virtualize Tier 1 applications. With virtualization the majority of virtual machines do not have direct access to the physical resources. Resources such as CPU, memory, network, and storage are abstracted via a virtualization layer. This allows for the sharing of these resources and a foundational benefit of virtualization; however, in some circumstances an application may require additional performance. By adjusting this value the VM can achieve lower latency by receiving preferential access to resources and by bypassing virtualization layers to eliminate layers and any extra processing. Another method that may assist in lowering latency is using a pass-through method to allow the VM direct control over a physical resource via Direct path or R-IOV. There are currently four levels or settings available for Latency Sensitivity in vSphere 5. 5. They are explained below. Normal – This is the default setting. When used it's business as usual for vSphere. High – Use this setting... --- ### Microsoft Drops Azure Pricing and Adds New Options > Keeping pace with recent cloud price reductions by Google and Amazon, Microsoft slashes Microsoft Azure pricing. - Published: 2014-04-01 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-drops-azure-pricing-adds-new-options/ - Categories: Cloud Computing - Tags: Amazon, AWS, Cloud, cloud computing, Google, hybrid cloud, Microsoft Azure, Windows Azure - Article Type: News Keeping pace with recent cloud price reductions by Google and Amazon, Microsoft drops Microsoft Azure pricing and adds new service options. Steven Martin, General Manager of Microsoft Azure, announced in a blog post yesterday that Microsoft is lowering the pricing of Azure services to customers. This is following a promise to price-match with Amazon, who earlier reduced their prices to compete with Google’s new reduced infrastructure-as-a-services (IaaS) costs. Martin says that Microsoft is "... cutting prices on compute by up to 35% and storage by up to 65%. " These are huge decreases and this is great news for current or prospective public or hybrid cloud customers. Some new virtual machine and blob storage options were also announced. Cloud Competition Martin is quick to remind people that Microsoft doesn’t rely on pricing to compete, writing that "... there are three key factors at play in cloud computing: innovation, price, and quality. Innovation and quality will prove far more important than commoditization of compute and storage. Vendors will ultimately extol their track records for building and running services far more than their prices and SLAs. " Related: What is Microsoft Azure IaaS? Microsoft is in a unique position when it comes to the big 3 public cloud service providers (also Google and Amazon); Microsoft is the only one of these public cloud service providers to also offer on-premise private cloud solutions (Windows Server Hyper-V and System Center) and partner hosted public clouds (Windows Server Hyper-V, System Center and Windows Azure Pack). This is why you will hear a different story from Microsoft; Microsoft does not say that you must move your entire compute... --- ### How to Manage a Windows Server 2008 DC Using the Active Directory Administrative Center (ADAC) > Active Directory Administrative Center (ADAC) | Discover how to manage Windows Server 2008 and 2003 using ADAC and Windows PowerShell Module for AD. - Published: 2014-04-01 - Modified: 2024-12-03 - URL: https://petri.com/active-directory-administrative-center-adac-manage-windows-server-2008-dc/ - Categories: Active Directory (AD) - Tags: RSAT, Windows Server 2003, Windows Server 2008, Windows Server 2012 - Article Type: How To Install the Active Directory Management Gateway on Windows Server 2008 and 2003 and learn to manage them using ADAC and Windows PowerShell Module for AD! The Active Directory Administrative Center (ADAC) was introduced in Windows Server 2008 R2, and has been improved in subsequent releases. In this Ask the Admin, I’ll show you how to use ADAC to remotely manage earlier versions of Windows Server. Active Directory Web Service Windows Server 2008 R2 included for the first time the Active Directory Web Service, which allows PowerShell to interact with Active Directory (AD), also enabling the Active Directory Administrative Center because it uses PowerShell behind the scenes. To manage DCs (both writeable and read-only) that run earlier versions of Windows Server using the AD PowerShell module or ADAC, you need to install the Active Directory Management Gateway Service. The gateway allows management of full Active Directory Domain Services (AD DS), Active Directory Lightweight Directory Services (AD LDS), and Active Directory Application Mode (ADAM) on DCs running Windows Server 2003 SP2 or later.   Install Active Directory Management Gateway Service on Windows Server 2008 SP2 Download the Active Directory Management Gateway Service from Microsoft. You will need to choose the correct package for your server. In this example, I’m running Windows Server 2008 SP2 64bit edition, so I will download Windows6. 0-KB968934-x64. msu. If you are installing the gateway service on Windows Server 2003 or Server 2003 R2, download Windows5. 2-KB968934-x64. exe or Windows5. 2-KB968934-x86. exe, as appropriate to the architecture of your server’s processor. Before proceeding, make sure that the . NET Framework 3. 5 SP1 (or later) is installed. Additional hotfixes may be required for Windows Server 2003, so see... --- ### How Does Hyper-V Dynamic Memory Work? > Discover how Dynamic Memory works to help you better configure your virtual machines to make the best use of your host's memory. Read on for more! - Published: 2014-04-01 - Modified: 2024-09-04 - URL: https://petri.com/how-does-hyper-v-dynamic-memory-work/ - Categories: Hyper-V - Tags: Dynamic Memory, Memory, virtual machine, Windows Server 2008 R2 W2008 R2, Windows Server 2012, Windows Server 2012 R2, WS2012 - Article Type: Overview We've already told you about Dynamic Memory – now learn how it works so that you can configure your VMs to make the best use of your host's memory. In a previous post I introduced Dynamic Memory, a Hyper-V memory assignment optimization feature. Today I will explain how Dynamic Memory works. Armed with this understanding, you will be able to better configure your virtual machines to make the best use of your host's memory. Dynamic Memory and Startup RAM If you have configured a virtual machine with Dynamic Memory, then the virtual machine will boot up with just the configured amount of startup RAM. Initially the guest OS will not be able to see anything more than that amount of RAM. For example, say you want a virtual machine to boot up with 768 MB RAM. That virtual machine will boot up, and if it is idle, the guest OS will think there is just 768 MB RAM. You can log into the guest OS, run Performance Monitor and open Task Manager and see just 768 MB RAM. This is a situation where you should add a question/answer to the FAQ of any support portal of a true cloud that features self service. Any tenant who is “paying for 8 GB RAM” will be upset to see just 768 MB and is likely to open an angry helpdesk ticket (or is that one of those “helldesk” tickets? ). There is another consideration: Just about any server software you want to install will check whether you have enough RAM present before allowing the setup wizard to continue. SQL Server is a perfect example, because it is a prerequisite... --- ### What Is Hyper-V Dynamic Memory? > Discover more about Hyper-V Dynamic Memory, a feature in Windows Server 2008 R2 SP1. Increase the VM to host ratio and more! - Published: 2014-03-31 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-dynamic-memory-overview/ - Categories: Hyper-V - Tags: Dynamic Memory, Hyper-V, Memory, virtual machine, Virtualization, W2008 R2, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: Overview Check out Hyper-V Dynamic Memory, a cool feature in Windows Server 2008 R2 SP1. Learn to increase the VM to host ratio and more in this overview! Windows Server 2008 R2 (W2008 R2) SP1 introduced a feature to Hyper-V called Dynamic Memory. With this feature enabled a virtual machine optimize how is consumes memory from a host. With Dynamic Memory enabled you can increase the virtual machine to host ratio and reduce your overall cost of host acquisition and ownership. Hyper-V Without Dynamic Memory If you deploy Hyper-V virtual machines without Dynamic Memory enabled, each virtual machine will attempt to boot up and consume 100 percent of its configured RAM from the host. So, a virtual machine configured with 16 GB of RAM will consume all of that 16 GB, even it will average at 4 GB and only reach 16 GB at peak periods. Ninety percent of the time, 12 GB RAM will be wasted and unavailable to other virtual machines. That was the way Hyper-V was before SP1 was released for W2008 R2 and Dynamic Memory was added to Hyper-V. After that we could configure a number of settings on a per virtual machine basis, assuming that both the guest OS and the services running in that virtual machine would support it. Before Windows Server 2012 R2 (WS2012 R2) Linux did not have support for Dynamic Memory (check this post on "Linux Virtual Machines on Hyper-V" for distribution, edition, and architecture specifics). The mailbox role of Microsoft Exchange does not support Dynamic Memory, and pre-2012 versions of SQL Server below the Enterprise edition cannot make use of it either. [adkit zone="freestyle" limit="1"... --- ### How to Configure SharePoint 2013 ULS Logging Levels > Get to know Universal Logging System (ULS) logs in SharePoint 2013 in this overview, including configuration and more. - Published: 2014-03-31 - Modified: 2024-09-04 - URL: https://petri.com/how-to-configure-sharepoint-2013-uls-logging-levels/ - Categories: SharePoint - Tags: logging, ULS, Universal Logging System - Article Type: How To Did you know SharePoint provides fine-grained logging capabilities? Get to know Universal Logging System (ULS) logs in SharePoint 2013 in this overview. Troubleshooting SharePoint 2013 can be frustrating and tedious, but one of the really great things that SharePoint does is provide fine-grained logging capabilities. SharePoint logs a lot of what happens in the Windows event logs. But in addition to the Windows Event Logs, SharePoint has its own logs that it uses for reporting: the Unified Logging System logs (ULS). Today I'll introduce you to ULS logs in SharePoint 2013, and I'll show you how to configure them. Universal Logging System (ULS) Logs in SharePoint 2013: Overview ULS logs are there to capture events from a wide variety of sources. These log files exist on every server in the SharePoint farm and write events constantly as they happen in your SharePoint environment. Where are the ULS logs stored? The ULS logfiles are stored in the “SharePoint 15 hive. ” This location is set during the installation of SharePoint. By default, the location is: C:Program FilesCommon FilesMicrosoft SharedWeb Server Extensions15Logs What kind of data is captured in the ULS logs? The ULS Log files capture only the events that happen on that server. So you won’t find events from the search service being reported on a SharePoint server that isn’t part of your search topology. However, there are a lot of different sources of events that you’ll see on each of your servers. Events about service applications, web applications, and errors across all components and features of SharePoint. How are the Universal Logging System Logs related... --- ### Microsoft Announces the Enterprise Mobility Suite > Microsoft unveiled the Enterprise Mobility Suite this week, a bundle that includes Azure AD Premium, Azure Rights Management, and Windows Intune. - Published: 2014-03-28 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-announces-enterprise-mobility-suite/ - Categories: Cloud Computing - Tags: Active Directory, Application, Azure, Cloud, cloud computing, ems, Enterprise Mobility Suite, Microsoft Azure, Mobile Device Management, Rights Management Service, Security, Windows Intune - Article Type: News Microsoft announced the Enterprise Mobility Suite this week, a bundle that includes Azure AD Premium, Azure Rights Management, and Windows Intune. At a press event in San Francisco earlier this week, Microsoft CEO Satya Nadella announced the new Enterprise Mobility Suite (EMS) for large enteprises that are struggling with identity, device, and application management for mobile devices. A series of blog posts followed on official Microsoft blogs, including the Server & Cloud blog, Windows Server & System Center blog, the Active Directory blog, and the In The Cloud blog normally used by Brad Anderson, Microsoft's corporate vice president, Windows Server and System Center. Microsoft also launched a new Enterprise Mobility Suite web page to support the new product. There are several elements to the EMS, bringing together individual solutions into a single licensing bundle that will be available for large enterprises to purchase through enterprise agreements from May 1st. Some of the elements are available now (with upgrades in the future) and others will be made available in April. Let's cover each of the items in EMS, starting with Azure Active Directory Premium. The contents of the Enterprise Mobility Suite (Source: Microsoft) Azure Active Directory (AD) Premium Azure AD Premium is a new service in Microsoft Azure (note the recent renaming from Windows Azure) that is focusing on empowering end users to do more for themselves under the control of IT. This is a concept called user-centric computing, something that Microsoft has been marketing since the release of System Center 2012. Azure AD is a directory service that is used to store and manage identity for software-as-a-service (SaaS) applications. It is not a cloud-based AD... --- ### Microsoft Launches Office for iPad > As expected, Microsoft CEO Satya Nadella announced the availability of Microsoft Office for the iPad at a press event in San Francisco this morning. - Published: 2014-03-27 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-launches-office-ipad/ - Categories: Mobile - Tags: Apple, Editor's Pick, iPad, Satya Nadella - Article Type: News As expected, Microsoft CEO Satya Nadella announced the availability of Microsoft Office for the iPad at a press event in San Francisco this morning. Microsoft CEO Satya Nadella announced the launch of Microsoft Office for iPad at a press event in San Francisco this morning. This was the first major announcement in the “software, software, software” era since Nadella was named CEO of Microsoft, and plays to Microsoft’s traditional strength: software. Microsoft needs to deal with mobile devices in a variety of form factors that are available now and will be released in the years to come.  Ubiquitous computing with ambient intelligence is one of the goals of Microsoft. "Everything that we do is going to be digitized," Nadella said. Therefore it makes sense for Microsoft  to make their core productivity software available to customers on all kinds of devices and operating systems, letting them access and use cloud-based services like Office 365. In a blog post, Nadella said "I don’t think of the cloud and mobile as two things. They are two facets of one thing. The cloud was created to enable mobility. And mobile devices are really uninteresting without the cloud. ” Satya Nadella launches Office for iPad in San Francisco (Source: Microsoft) Starting today you can download Word, Excel, and PowerPoint for iPad from the Apple App Store. You can view documents and do presentations with these free products. With an Office 365 subscription, you can also add the ability to create new documents and edit existing ones on your iPad. That Office 365 subscription entitles you to install Office on up to 5 PCs/Macs and also up to 5 tablets. Formatting... --- ### How to Block Specific File Types in Windows Server 2012? > Learn how to block certain file types using the File Server Resource Manager (FSRM) in Windows Server 2012. - Published: 2014-03-27 - Modified: 2024-09-04 - URL: https://petri.com/block-specific-file-types-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Ask an Admin, File Server, File Server Resource Manager, Windows Server 2012 - Article Type: How To In this Ask an Admin, Learn about file screening and how to block certain file types using the File Server Resource Manager (FSRM) in Windows Server 2012. Ever had a user upload music files or executables to your file servers? Not only can this be a security risk, but it also eats away at expensive storage space. In this Ask an Admin, I’ll show you how to use the File Server Resource Manager (FSRM) to block unwanted file types. What Is File Screening? The File Server Resource Manager first appeared in Windows Server 2008. It included the ability for administrators to define which file types users can save to file servers. Administrators can block defined file types from an entire volume, or to specified folders. Install File Server Resource Manager (FSRM) Before you can enable file screening on your file server, you will need to make sure the File Server Resource Manager is installed. The quickest way to install FSRM in Windows Server 2012 is to open a PowerShell console on the server with local administrative privileges and run the following command: Add-WindowsFeature –Name FS-Resource-Manager –IncludeManagementTools Configure File Screening Log on to your server as a local administrator. After FSRM is installed, you can open it from the Tools menu in Server Manager. In the left pane of FSRM, expand File Screening Management and click the File Groups node. In the central pane, you’ll see conveniently grouped file types so that you can create rules without individually specifying file extensions. Now click File Screen Templates in the left pane. Here you can see some predefined rules that you can apply... --- ### Windows XP End of Support Guide > Microsoft's end of support for Windows XP is April 8, 2014. Are you ready? Read on for tips to help you survive the transition. - Published: 2014-03-27 - Modified: 2024-11-19 - URL: https://petri.com/windows-xp-end-of-support-guide/ - Categories: Windows XP - Tags: Windows XP end of life, Windows XP end of support - Article Type: Overview Microsoft support for Windows XP ends on April 8th, 2014. Are you ready to see this OS ride into the sunset? Read our guide for some tips on the transition. The April 8, 2014 end of support deadline for Windows XP is rapidly approaching. As I’m writing this, Net Market Share is reporting that in February 2014, Windows XP still had a sizable 29. 53 percent share of the overall desktop PC market. While most everyone reading this would agree that Windows XP is long overdue for replacement, the reasons why some IT departments aren’t upgrading to Windows XP are many and varied. Windows XP was officially released on October 25, 2001. That makes Windows XP more than 12 years old, and Microsoft is keen to get customers — both business users and consumers — off Windows XP and migrated on to newer OSes – so much so that it's currently offering a $100 rebate to consumers who have Windows XP and purchase a new PC running Windows 8. 1 from a Microsoft retail or online store. Microsoft has also launched a website for the computing masses that tells them whether they're running Windows XP called AmIRunningXP. com. The fact that Microsoft even needs a website designed to tell users what OS the PC they're sitting in front of is running underscores the immense marketing and communication challenges Microsoft has to surmount in order to get consumers migrated off of Windows XP. In order to provide some additional information on the topic I’ve decided to put together a guide that serves as a resource for the Windows XP end of support deadline, and what it means for Petri IT Knowledgebase... --- ### How to Upgrade vCenter Server Appliance (vCSA) > Discover how to upgrade your vCenter Server Appliance (vCSA) to the latest major-release version in this helpful tutorial. - Published: 2014-03-27 - Modified: 2024-09-04 - URL: https://petri.com/upgrade-vcenter-server-appliance-vcsa/ - Categories: VMware - Tags: upgrade, vCenter Server, VCSA, vmware, vSphere - Article Type: How To You know that a vCenter appliance update is different than an upgrade, right? Learn to upgrade vCSA in this tutorial! So you've been running the vCenter Server Appliance (vCSA) for a while and the latest version just came out. You're going to need to know how to upgrade the existing install. In this post I'll walk through the process of doing a major-release upgrade for a vCSA deployment. Preparing to Upgrade vCSA There's a little bit of prep work you'll have to do before you can begin the upgrade process. Download the version of vCSA that you will be upgrading to. I'm using vCenter 5. 5. Deploy the new vCSA version that was downloaded. Give a new temporary IP address for the new vCSA. It will use the existing IP after the upgrade. Take backups of current vCSA appliance and your database. Upgrading the vCenter Server Appliance To start the upgrade process, log into the management web page for each virtual appliance. You can reach by using a similar link as the samples shown below. vCSA existing – https://ip-address-of-old-vCSA:5480 New vCSA – https://ip-address-of-new-vCSA:5480 Once logged into the new vCSA you will be prompted to accept the EULA. Just check the box (as shown below) and click Next to move on. Next, choose whether you will be deploying a new vCSA or upgrading a previous version. For this post we are going to be doing the upgrade. Click Upgrade from Previous Version, then click Next to move on.   Up next is the exchanging of keys between the new and old virtual appliances. Copy... --- ### Forget Amazon Workspaces – Build a DaaS in Microsoft Azure (or any Other Cloud) > Amazon has just announced their new Workspaces Desktop as a Service (DaaS) offering. So is this new service worth a look? - Published: 2014-03-26 - Modified: 2024-09-04 - URL: https://petri.com/amazon-workspaces-build-daas-azure-cloud/ - Categories: Microsoft Azure - Tags: Windows Azure - Article Type: Overview Amazon has just announced their new Workspaces Desktop as a Service (DaaS) offering. So is this new service worth a look? Amazon just announced the availability of a new service offering called Amazon Workspaces.  At first glance this service looks like virtual desktop infrastructure (VDI) in the cloud, a so-called desktop-as-a-service (DaaS) offering a Windows 7 “experience” in the cloud. But as anyone familiar with remote desktop services licensing will know, this would be an illegal business; there is no Virtual Desktop Access (VDA - the license required for VDI) licensing through Services Provider License Agreement (SPLA – the licensing required when operating in a hosted infrastructure). What has Amazon done? And can you do it for yourself? How Amazon Built Workspaces The Amazon Workspaces solution offers you the “experience” of Windows 7. Note my very careful wording: I know that some AWS evangelists are incorrectly stating that you will get Windows 7 in Workspaces. As I’ve already stated, this would be illegal and Microsoft would very rapidly put an end to it. Amazon has not built a hosted VDI solution based on Windows 7. Instead, they have built a Remote Desktop Services farm based on Windows Server 2008 R2. Then they enabled the desktop experience of Windows Server to soften the edges and give the user the impression of running in Windows 7. Related: Install the desktop experience for Windows Server 2012 One might question the sanity of building something on a 3-version old version of RDS; the performance cannot come anywhere close to what you can get from Windows Server 2012 R2 (WS2012 R2). Maybe Amazon want to... --- ### Using the SharePoint 2013 Developer Dashboard > Discover more about SharePoint developer dashboard in this overview, including its uses and how to enable (and disable) this feature. - Published: 2014-03-26 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-2013-developer-dashboard-introduction/ - Categories: SharePoint - Tags: developer dashboard, Editor's Pick, ULS, Unified Logging Service - Article Type: How To, Overview Don't be bogged down by log files! Discover more about SharePoint developer dashboard, including how to enable (and disable) this handy feature. Troubleshooting SharePoint 2013 problems can be a complex issue, with SharePoint logging taking place in both the Windows Event Logs and the SharePoint Unified Logging Service (ULS) log files. To make it more complicated, there are a lot of options for customizing the ULS logs, so you may not yet even have the items that you’re looking for being saved in the trace logs. Thankfully, there are a lot of options to view the ULS logs. You can use the ULSViewer utility, the Usage and Health Monitoring service database, and in some cases you can even turn on the developer dashboard to enable the viewing of ULS logs that are related to your current web requests in real time as they happen. Today I'll introduce you to the SharePoint 2013 developer dashboard and how to enable (or disable) it in your SharePoint farms. What Is the SharePoint Developer Dashboard? It helps you troubleshoot errors in your environment by displaying all of the information about your current SharePoint web requests. It includes the web addresses of the SharePoint sites you’re visiting, the results of those web requests, and even the ULS logging entries created that are related to your activities. In terms of the ULS log entries, you’ll get to quickly view all ULS entries that are related to your current web requests, regardless of what server those entries actually live on. Since ULS logs are kept on each server in your farm, but each server keeps only... --- ### How to Connect Service Manager 2012 to Configuration Manager 2012 > Learn to establish a connection between Configuration Manager 2012 and Service Manager, which can import data from both Configuration Manager 2007 and 2012. - Published: 2014-03-26 - Modified: 2024-09-04 - URL: https://petri.com/connect-service-manager-2012-to-configuration-manager-2012/ - Categories: System Center - Tags: Configuration Item, Configuration Manager, Connector, Service Manager, syncronization - Article Type: How To Service Manager has the ability to import data from both Configuration Manager 2007 and 2012. Learn to establish this connection in this easy how-to! As you may remember, we covered the procedure of creating a connector to Configuration Manager 2007 in an earlier post by Peter De Tender. Today we will update the instructions as we look to establish the connection from Service Manager 2012 with Configuration Manager 2012 (RTM, SP1 and R2). Create a Configuration Manager Connector The only step we need to take is to create a new Configuration Manager Connector, which will also require us to create a new Run As profile for use by the connector. Working from the Administration view, we will expand and select the Connectors tree branch, to be presented with any currently registered connectors in the environment. From the Actions pane, we can then select the option Create connector and select System Center Configuration Manager.  This will launch the connector wizard. On the General page, provide a Name for the connector (for example SCCM Connector), along with a description for this connector. On the Management Pack page, make sure that the System Center Configuration Manager 2012 Connector Configuration pack is selected from the drop-down.   Make sure that the System Center Configuration Manager 2012 Connector Configuration pack is selected. On the Database page, we will need to provide the following: – The Database Server Name, which should be the fully qualified name of the SQL instance that hosts the primary (or central, if deployed) database. Note: If you have multiple independent SCCM installations that need to be synchronized into SCSM, then you will need to establish a connector... --- ### How to Enable Hyper-V Virtual Machine Processor Compatibility Mode > Learn to enable processor compatibility mode in Hyper-V to allow a VM to move between different generations of the same processor family. - Published: 2014-03-26 - Modified: 2024-09-04 - URL: https://petri.com/enable-hyper-v-virtual-machine-processor-compatibility-mode/ - Categories: Hyper-V - Tags: Cloud, Hyper-V, live migration, Processor, virtual machine, Virtualization, W2008 R2, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: How To Doing some live migration? Learn to enable processor compatibility mode in Hyper-V to allow a VM to move between different gens of the same processor family. Windows Server 2008 R2 (W2008 R2) introduced live migration to Hyper-V. Live migration allows running virtual machines to move from one host to another with no perceivable downtime. There are some boundaries that are enforced by hardware on this type of virtual machine movement. In this article, I will show you how to enable processor compatibility mode in Hyper-V to allow a virtual machine to move between different generations of the same processor family. How Processors Restrict Virtual Machine Movement A hypervisor will reveal the capabilities of the physical processor to a virtual machine when that virtual machine boots up. The virtual machine will then use those features to run services. Over the years, AMD and Intel have added features, especially for virtualization, that enhance the performance and security of those virtual machines. Obviously neither Intel nor AMD can back-port their hardware enhancements to already deployed processors, so there is a potential issue. Let’s get something clear first: You cannot live migrate or restore saved virtual machines across different families of processor. This means, for example, that you cannot do the following: live migrate from a host with Intel processor to a host with AMD processors restore a virtual machine on an Intel host from a saved state created on a host with an AMD processor The reason is quite simple: The processors are in different families and have completely different instructions and features. There is no way around this. So the advice is simple: Go all-Intel... --- ### Configuring vCenter Server Appliance (vCSA) with Sysprep Files > Find out how to upload and configure sysprep files, as part of our series getting to know the VMware vCenter Server Appliance (vCSA). - Published: 2014-03-25 - Modified: 2024-11-19 - URL: https://petri.com/sysprep-files-configure-vcenter-server-appliance-vcsa/ - Categories: VMware - Tags: Provision, sysprep, vCenter, VCSA - Article Type: How To Discover how to upload and configure sysprep files, as part of our series on setting up VMware vCenter Server Appliance (vCSA). In my efforts to continue to try and increase awareness of the VMware vCenter Server Appliance (vCSA), I wanted to write about another part of the setup process. There are still a few steps before you are fully production ready even after you deploy the vCSA and are managing your hosts. One of the steps is to upload the Microsoft sysprep files for OS customization. When deploying a virtual machine from template you will need sysprep files for the older operating systems. The sysprep process allows for the guest OS to be customized to your specification. This will allow for the newly deployed VM to receive a unique name and a new GUID. Versions That Need Sysprep The good news is that most of the modern versions of Windows no longer need sysprep files. This function has been incorporated into the operating system for the last couple of versions of Windows by Microsoft. The follow lists show which versions do and don't need sysprep files to be uploaded. DO need Sysprep files: Windows Server 2000 Windows Server 2003 Windows Server 2003R2 Windows XP DO NOT need Sysprep files: Windows Vista Windows Server 2008 Windows Server 2008R2 Windows 7 Windows 8 Windows Server 2012 Windows Server 2012R2 How to Upload Sysprep Files Once you have deployed the vCenter Server Appliance you can log into the management console. Go to the following link to reach the appliance management page (https://ip-of-your-vCSA:5480). In case you have not... --- ### Why Learn the Active Directory Administrative Center? > Learn why the Active Directory Administrative Center is superior to the old Microsoft Management Console in this op-ed. - Published: 2014-03-25 - Modified: 2024-09-04 - URL: https://petri.com/why-learn-active-directory-administrative-center/ - Categories: Active Directory (AD) - Tags: Dynamic Access Control, Editor's Pick, Management, Security, Windows Server 2012 - Article Type: Overview Are you still using the old Microsoft Management Console? Get on board and find out why the Active Directory Administrative Center is superior in this op-ed! For most seasoned professionals, the Active Directory Users and Computers (ADUC) tool is the go-to console for basic AD management, and to a lesser extent, the AD Sites and Services, and Domains and Trusts consoles. But since Windows Server 2008 R2, the Active Directory Administrative Center (ADAC) has provided an alternative that often gets overlooked. Microsoft Management Console Vs.  Active Directory Administrative Center It’s true that in a simple AD environment, in which you have one forest, one domain, and a limited number of objects, ADUC can sometimes prove to be the most convenient tool for basic user management tasks, if only out of familiarity. But once environments start to be more complex, ADUC is far from the ideal tool. ADUC’s GUI doesn’t lend itself to the inclusion of advanced features, hence the complete redesign for the Administrative Center, where new features such as PowerShell History Viewer can be more easily incorporated. Global Search ADAC offers better management of objects across multiple domains in a forest, including the ability to perform global searches – and not only against the restricted set of attributes held by Global Catalog servers. Complex searches can be constructed using the GUI or with LDAP if maximum flexibility is required. For more information on Global Search, see the post "How to Use Global Search in the Active Directory Administrative Center" on the Petri IT Knowledgebase. Dynamic Access Control, Recycle Bin, and Fine-Grained Password Policies Windows Server 2012 introduced Dynamic Access... --- ### Deploying a Windows Server 2012 R2 Certificate Authority > Learn to deploy a Windows Server 2012 R2 CA in this post, including installing Active Directory Certificate Authority and more. - Published: 2014-03-25 - Modified: 2024-09-04 - URL: https://petri.com/deploy-windows-server-2012-r2-certificate-authority/ - Categories: Windows Server 2012 - Tags: Active Directory Certificate Authority, Certificate Authority - Article Type: How To Services and device connections inside and outside of your network rely on certificate services. Are you ready? Learn to deploy a Certificate Authority in this post! As more services and device connections inside and outside of your network rely on certificate services, I thought it was a good idea to write an article about how to deploy such a Windows 2012 R2 Certificate Authority (CA). Popular features that require a certificate include secure HTTPS connections to your web applications, device authentication for both domain and non-domain joined clients, Server 2012 R2 Work Folders, DirectAccess, and more. Before I dive into the technical aspects of certificates, CA, and the various types of certificates, let me give you a high-level comparison between using an internal vs. public Certificate Authority. Internal CA External CA Easy to manage No control of Certificate Authority itself, you can only “buy” SSL certificates Can be configured as Active Directory integrated No administration overhead No cost per certificate SSL certificates can become expensive, depending on types and functionalities Auto-enrollment feature makes configuration of clients/devices easier Not advised for configuring internal devices authentication Not really useful for internet-facing applications, as not trusted by external parties Trusted by most browsers Often more complex to install/configure than just buying a public SSL certificate Less flexible on SSL certificate properties   Install Active Directory Certificate Authority From the Windows Server 2012 R2 Server Manager, click Add Roles and Features. Select Active Directory Certificate Services. Click the Add Features in the popup window to allow installation of the Certification Authority Management Tools Select the options you want to install. I recommend the... --- ### Use System Center 2012 - Orchestrator to Update Service Manager Action Logs > Learn to update the action log of an incident in Service Manager using System Center 2012 - Orchestrator with help of this tutorial. - Published: 2014-03-24 - Modified: 2024-09-04 - URL: https://petri.com/update-action-log-system-center-orchestrator/ - Categories: System Center - Tags: Action Log, Incidents, Orchestrator, Service Manager - Article Type: How To Learn how to update the action log of an incident in Service Manager using System Center 2012 Orchestrator in this handy how-to article. One of the real beauties of System Center is the sheer flexibility you are offered when working with each of the independent components. For example, in a recent deployment of Service Manager, I chose not to leverage the Exchange Connector component or any of the internal mail-sending workflows hosted in Service Manager. Instead, I chose to leverage System Center 2012 - Orchestrator to do all the heavy work. I focused on addressing some of the business requirements for my new solution; one of these simple requirements was to ensure that at all times I keep the action log updated as I automated any activities associated with the incident. I figured that this was going to be trivial (as I had already read a number of posts related to this task and even had some luck in my test environment), but my experience with the proof of concept turned out to be a bit of a headache. Prepare to Update the Action Log Feeling confident, I set about bringing this requirement to life by creating a new runbook in Orchestrator, which would accept in the ID of the incident that I wished to update. The runbook would then simply look up the Service Manager environment to locate my incident. Once I have the incident located, all that I need to do is create a new unique GUID for the entry I am going to append to the action log of the Incident. Then, using the Create Related Object activity in... --- ### Troubleshooting Wireless Networks in Windows 8.1 > Learn to troubleshoot wireless issues in Windows 8 using the NETSH command to help simplify wireless in Windows 8 for the user and the admin. - Published: 2014-03-24 - Modified: 2024-09-04 - URL: https://petri.com/troubleshoot-wireless-networks-in-windows-8-1/ - Categories: Windows 8 - Tags: netsh, Windows 8.1, Wireless - Article Type: Overview Windows 8 simplifies wireless for the user, but what about for the admin? Learn to troubleshoot wireless issues in Windows 8 using the NETSH command. Windows 8 and 8. 1 simplify the whole process of connecting to wireless networks. Tap the wireless icon in the Taskbar and out pops the Network Charm displaying a list of wireless networks in range. Tap the one you want, enter the password, and BOOM, you’re done. It doesn’t get much easier, but simplicity always comes with a cost. In this case, the “cost” is that some functions, such as managing wireless profiles, have actually become harder in these latest desktop Windows versions. In today's post, I'll show you how to troubleshoot and fix wireless issues in Windows 8 with the NETSH command. Wireless Profiles in Windows 8 Many might ask “what’s the big deal? ” In most cases they’d be correct – there’s often no need to manage wireless profiles manually. For IT pros though, we live outside of the “most” and “often” categories. Our bread and butter is dealing with the abnormal situations, instances in which working with wireless profiles stored on a PC is just a part of troubleshooting. More often than not, my first step in troubleshooting a misbehaving wireless connection on a PC is to remove the wireless profile and recreate it. This is an easy point-and-click affair in Windows 7, but how is the same thing done from within Windows 8 versions? The good news is it’s still an easy process. The bad news (at least if you’re a GUI aficionado) is that it’s no longer a GUI-driven process. That’s right: removing a... --- ### Using Hyper-V Virtual Machine Processor Resource Control > Find out why and how you can use the virtual processor resource control settings to configure Hyper-V virtual machine reservations, limits, and weights. - Published: 2014-03-24 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-virtual-machine-processor-resource-control-overview/ - Categories: Hyper-V - Tags: assigning virtual processors, Hyper-V, vCPU, virtual machines, Virtual Processor, Virtualization, Windows Server, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2 - Article Type: Overview In this post, learn to use the virtual processor resource control settings to configure Hyper-V virtual machine reservations, limits, and weights. In this post I will show you why and how you can use the virtual processor resource control settings to configure Hyper-V virtual machine reservations, limits, and weights. How a Virtual Machine Uses Host Logical Processors A logical processor (LP) is a thread of execution on a host. Let’s look at three example hosts. Host Name Physical Processors Hyper-threading Enabled? Logical Processors Host1 Dual Intel 4-core (8 cores) No 8 Host2 Dual Intel 8-core (16 cores) Yes 32 Host3 Dual AMD 12-core (24 cores) N/A 24   Host1 has eight cores with Hyper-threading disabled. There are eight threads of execution or LPs on that host. Host2 has 16 cores; each core has two threads thanks to Hyper-threading, so there are a total of 32 LPs on that host. Host3 has AMD processors (Hyper-threading is an Intel CPU function) with a total of 24 cores; without Hyper-threading there are 24 LPs on this host. Note: Hyper-threading does not double the power of a processor. It allows more multitasking and can add a small percentage to a host’s capacity with recent processors. Only on older processors does enabling Hyper-threading have a negative impact on performance for Hyper-V. When a virtual machine runs on a host, it is sharing the resources of that host, including the processor capacity. A virtual machines virtual CPUs (vCPUs) do not permanently sit on the LPs that run them. Just like with applications on your PC, each virtual machine gets a slice of time... --- ### RSA Conference 2014: 8 Top Computer Security Trends > Read our summary of the latest in cyber security trends to get the info you need to protect your IT environment. - Published: 2014-03-20 - Modified: 2024-11-19 - URL: https://petri.com/rsa-conference-2014-8-top-computer-security-trends/ - Categories: Security - Tags: #RSAC, Editor's Pick, News, RSA Conference, RSA Conference 2014 - Article Type: News Couldn't make it to RSA Conference 2014? Read our summary of the latest IT security trends to make sure you're armed with the latest information. I’ve always liked to write a summary of what I thought the big takeaways were from every RSA Conference, partly as a way to collect my own thoughts, but primarily to give readers who couldn’t attend the conference a way to distill some of wisdom from the collective brain-trust of thousands of smart security professionals at the conference. I did the same last year in an article about the top security trends from RSA Conference 2013, and it’s always interesting to see what has changed over the last 12 months. So what were the hottest topics on the lips of IT security professionals at RSA Conference 2014? Read on for my take on what we should all be paying more attention to. 1. Snowden, the NSA, RSA Security, and TrustyCON The biggest topic that everyone was talking about at RSA was the allegation — made by Reuters journalist Joseph Menn in December 2013 — that RSA Security had worked out a deal with the U. S. National Security Agency (NSA) to continue producing products based on their BSafe product, which the Reuters story claims used a flawed (and NSA-supplied) encryption algorithm. The news led to several security experts boycotting RSA, while others started up a rival security conference dubbed TrustyCon. RSA Security Chairman Art Ciovello partially addressed the issue in his RSA Conference keynote, where he admitted that RSA worked with the NSA, but denied they had done anything wrong, telling attendees that ". . has RSA done work with... --- ### Auto-Triggered VPN in Windows 8.1: Overview > Learn all about automatically triggered VPNs in Windows 8.1, including how to setup and removal. - Published: 2014-03-20 - Modified: 2024-09-04 - URL: https://petri.com/auto-triggered-vpn-windows-8-1-overview/ - Categories: Windows 8 - Tags: auto-triggered vpn, VPN - Article Type: Overview Save yourself some time! Learn all about automatically triggered VPNs in Windows 8.1, including how to setup and removal, in this post. We all know what a virtual private (VPN) network connection is and why we use it, right? But aren’t we tired of the number of steps we have to go through each time we want to establish a VPN connection to a corporate back-end? Or are you tired of the number of help desk calls you get from traveling users, calling you because “the file server is down,” or “my application isn’t responding,” or “the intranet. company. local” website is not resolving? And the usual answer? “I’m sorry Mr. Helpdesk, you’re right! I forgot to start up my VPN connection. Now it’s all working again. ” If the above scenarios sound familiar, you’ll be thrilled to learn about auto-triggered VPN in Windows 8. 1. As the name suggests, it’s a VPN connection that can be triggered automatically. It can be configured to auto-connect when starting a certain application (for instance, Remote Desktop or your accounting application) that can be both Store Apps and traditional Windows applications. They can also connect to a specific DNS-zone (eg. Intranet. company. local), which is actually pretty cool. Setting Up Auto-Triggered VPN The only thing you need to know to make this magic work is some Powershell knowledge. The main cmdlets are: Add-VPNConnectionTriggerApplication – when using it in combination with a specific application. The full cmdlet should look like this: Add-VpnConnectionTriggerDnsConfiguration –DnsSuffix >] –PassThru Add-VPNConnectionTriggerDNSConfiguration – when using it in combination with a specific DNS Zone. The full cmdlet should look like this: Set-VpnConnectionTriggerDnsConfiguration... --- ### Configuring Hyper-V Virtual Machine NUMA Topology > Learn to customize the virtual non-uniform memory access (NUMA) configuration of a virtual machine in this helpful how-to. - Published: 2014-03-20 - Modified: 2024-09-04 - URL: https://petri.com/customize-non-uniform-memory-access-numa-configuration-of-vm/ - Categories: Hyper-V - Tags: Non-Uniform Memory Access, NUMA - Article Type: How To Find out the whys and hows behind customizing the virtual non-uniform memory access (NUMA) configuration of a VM in this handy how-to. In this post I will show you how you can customize the virtual non-uniform memory access (NUMA) configuration of a virtual machine. You will rarely ever have to look at these advanced settings outside of an exam scenario. But there is a scenario in which you would tune these settings to optimize the performance of a virtual machine. Why Customize Virtual NUMA? In a previous article, "What Is Non-Uniform Memory Access (NUMA)? " I introduced NUMA and showed how Hyper-V works with it. If your virtual machine does not use Dynamic Memory, then Hyper-V will reveal the physical NUMA architecture of the host that the virtual machine is occupying. This allows the guest OS (Windows or Linux) and NUMA-aware services (such as SQL Server) to optimize the assignment of virtual RAM with the processes running on the virtual processors (vCPUs). For example, imagine you have a host with four 8-core processors without hyperthreading. That host would probably have a total of 32 logical processors (LPs), allowing you to run some pretty big virtual machines on Windows Server 2012 (or later) Hyper-V. The host probably has four NUMA nodes with eight cores each, one for each processor, and the RAM would be split up evenly between host nodes if you followed the server manufacturer’s best practices. Now imagine that you create a virtual machine with 16 vCPUs and statically assign it half of the host’s memory. The virtual machine will be informed, when it starts... --- ### Configuring Work Folders in Windows Server 2012 R2 > Learn to install and configure Work Folders, a new feature of Windows Server 2012 R2, including installation and prerequisites. - Published: 2014-03-19 - Modified: 2024-11-19 - URL: https://petri.com/configure-work-folders-windows-server-2012-r2/ - Categories: Windows Server 2012 - Article Type: How To Work Folders is a new feature of Windows Server 2012 R2. Learn to install and configure Work Folders in this how-to! Work Folders is a new feature of Windows Server 2012 R2 that allows users to have access to individual corporate data folders, no matter where the users are and from what device they are connecting. At present, only Windows 8. 1 is supported, but iOS and Android clients are reportedly in the making. This functionality may sound a bit familiar to cloud-based file-sharing solutions like Microsoft OneDrive, DropBox, and Google Drive. The Work Folders option tends to give administrators a bit more control over what data is accessible, and they can have improved control over user connections enforcing device connection policies. Work Folders: Prerequisites In order to install Work Folders, you need the following configured (as a minimum): Windows Server 2012 R2 Standard or Enterprise Windows 8. 1 (Any versions) or Windows 8. 1 RT For external and production solutions, you also need the following: Public CA issued SSL certificate (internally generated SSL cert will do for domain-joined clients or in demo scenarios) Automatic server discovery DNS settings Reverse Proxy (preferred, but not required) Installing Work Folders Server Role No matter if the Work Folders will be used only internally or both internally and externally, the first step is installing the Work Folders Server Role. From the Server Manager, choose Add Roles and Features. From the Select Server Roles, go to File and Storage Services / File and iSCSI Services, then select Work Folders. A pop-up will inform you about the additional IIS Hostable Web Core... --- ### Enabling System Center Service Manager for Asset Management > Learn to extend Service Manager 2012! Add IT Asset Management (ITAM) functionality to your Service Manager 2012 R2 ITIL system. - Published: 2014-03-19 - Modified: 2024-09-04 - URL: https://petri.com/enable-system-center-service-manager-it-asset-management/ - Categories: System Center - Tags: Cireson, IT Asset Management, ITAM, Management Pack, Purchase Order, Service Manager - Article Type: How To Add IT Asset Management (ITAM) functionality to your Service Manager 2012 R2 ITIL system Microsoft Service Manager offers rich support for many of the key scenarios in your Information Technology Infrastructure Library (ITIL), but missing from this list is IT Asset Management (ITAM). In this post I will introduce one of the best value methods to add this important role to your ITIL solution by leveraging the cost-effective Asset Management extensions from Cireson. There are two primary reasons I have chosen to use this solution. The solution is licensed as a single application cost, with no relationship to the number of assets that might be managed, regardless of your organization's size. The team is led by the the ex-Microsoft program manager who managed the Service Manager product from its inception through to the 2012 release, and is supported by a number of Microsoft MVPs focused on Service Manager. Getting the Management Pack Start by visiting Cireson and requesting a download of their Asset Management Application and a free evaluation license key. The application will be delivered in a simple ZIP file, which we can then copy to our Service Manager server and unpack for installation.   Installation From the Service Manager Console, we will set focus to the Administration view. Select the Management Packs branch on the tree. From the Action pane, we will then select Import, which will launch the Select Management Pack to Import browser dialog. Navigate to the folder where we unpacked the Management Pack, and select the pack titled CiresonAssetManagement. mpb. Click Open. In the Import Management Pack wizard, we can now... --- ### What Is Non-Uniform Memory Access (NUMA)? > Discover how Hyper-V interoperates with the Non-Uniform Memory Access (NUMA) architectures of host computers in this helpful introduction. - Published: 2014-03-19 - Modified: 2024-09-04 - URL: https://petri.com/non-uniform-memory-access-overview/ - Categories: Windows Server - Tags: Dynamic Memory, Hardware, Hyper-V, Memory, Non-Uniform Memory Access, NUMA, RAM, virtual machine, W2008 R2, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: Overview Know about NUMA? Discover how Hyper-V interoperates with the Non-Uniform Memory Access (NUMA) architectures of host computers in this helpful intro. In this article I will provide a brief introduction to non-uniform memory access (NUMA), and I'll explain how Hyper-V interoperates with the NUMA architectures of host computers. Non-Uniform Memory Access (NUMA): Overview Non-uniform memory access is a physical architecture on the motherboard of a multiprocessor computer. The architecture lays out how processors or cores are connected directly and indirectly to blocks of memory in the machine. Software such as Windows Server or Hyper-V must deal with this physical construction to offer the best possible performance for their services. The below diagram illustrates a physical computer with two NUMA nodes. The cores and memory of the computer are split between these NUMA nodes. The cores (0-3) in Node 0 have direct access to half of the memory. The cores (4-7) in Node 1 have direct access to the other half of the memory. Note that the cores of each node have indirect access to the RAM in the other node. An illustration of NUMA. If any process running on the cores of node 0 requests memory, a NUMA-aware operating system (such as Windows Server or Linux) or application (such as SQL Server) will do its best to assign RAM from the same node. This is because direct access to RAM offers the best performance. For example, let’s say the above machine is running Hyper-V and a virtual machine is running on the logical processors (LP) in node 0. If that virtual machine requests RAM,... --- ### SQL Server 2014 Released to Manufacturing > Microsoft SQL Server 2014 has been released to manufacturing, and customers can download the new version on April 1st. - Published: 2014-03-18 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-2014-released-to-manufacturing-ga-slated-for-april-1/ - Categories: SQL Server - Article Type: News Microsoft SQL Server 2014 has been released to manufacturing, and customers can download the new version on April 1st. Microsoft announced early this morning that SQL Server 2014 has been released to manufacturing (RTM), and that general availability (GA) for the product — including in the form of a Windows Azure virtual machine image — will be on April 1st. That’s not a typo: Microsoft has had several product releases and/or important software milestones land on April Fool’s day in the past without issue, so the company isn’t phased by the association. You can find more details on what this new version brings to the table in my newly-updated post about what’s new in SQL Server 2014, but here’s a top-level overview of what SQL Server 2014 brings to the table, as well as some news from Microsoft execs about how SQL Server is gaining some ground in the enterprise database market against Oracle and IBM. SQL Server Everywhere: On-Premise, Hybrid, and Public Clouds Microsoft has invested a lot of time and effort in taking advantage of cloud services with this latest release of SQL Server, and intends to give database and system administrators the tools they need to map their own needs with the appropriate database solution. This could include backing up important SQL data to an Azure cloud on a regular basis, or putting tier 2 or tier 3 applications into Azure SQL virtual machines. “We’re the only database vendor that offers customers all three deployment options,” said Microsoft’s Tracy Daugherty, the principal group program manager lead for the SQL Server team. “Whether their needs... --- ### On the Road: Two Weeks Without Windows > Check out what our writer learned as he used an entry-level Android tablet to replace a Windows 8 notebook for two weeks. - Published: 2014-03-18 - Modified: 2024-09-04 - URL: https://petri.com/using-android-over-windows/ - Categories: Mobile - Tags: Android, mobility, Windows 8 - Article Type: Opinion Our writer takes a two-week odyssey using an entry-level Android tablet to replace a Windows 8 notebook – find out what he learns along the way! I recently went on holiday with only a basic cell phone and an entry-level Android tablet, in the knowledge that I was unlikely to do any serious work during that time. In this op-ed, I’ll describe my experiences of life without Windows. Android First-Timer First up, such is my dedication to Microsoft, that I have to admit I’ve never used an Android device before (cue readers' shocked gasp), potentially making my time without Windows more challenging. I found Android very convenient for basic content consumption tasks, and setting up email using the built-in application was easy. There was a bit of a learning curve for some tasks, such as how to add and remove icons to the home screen, but it’s all pretty straightforward stuff that was resolved with a quick Google search. Beyond Basic Content Consumption Comparing information in different apps is something I found myself doing quite often, and in Android that means using the built-in app switcher to flip between windows. After a couple of times, the advantage of managing several Windows Store apps side-by-side in Windows 8 becomes apparent, allowing users to easily compare information and get more serious work done. Another stumbling block was the inability to connect a portable USB disk, because of the lack of native NTFS support. While many memory cards and USB drives are formatted using the more widely supported FAT32 file system, I prefer to use NTFS due to its greater robustness and reliability. [adkit zone="freestyle" limit="1"... --- ### How to Create VMware vSAN Storage Policies > Learn to create a storage policy in this handy post, enabling you to gain control of the behavior of your virtual SAN (vSAN) storage. - Published: 2014-03-18 - Modified: 2024-09-04 - URL: https://petri.com/create-vsan-storage-policy/ - Categories: VMware - Tags: Cluster, storage, vCenter, vmware, VSAN, vSphere - Article Type: How To If you want to control the behavior of VSAN storage, you're going to need storage policies. Learn to create a storage policy in this handy post! In order to control the behavior of VMware virtual SAN (vSAN) storage, we need to use storage policies. These profiles allow admins to create rules that utilize capabilities advertised by the storage. These rules allow for control over performance or protection levels of a virtual machine on a vSAN datastore. This post will walk through the short process of enabling and creating a new storage profile. Enabling VM Storage Policies To get started I've logged into the vSphere web client and located the icon for VM Storage Policies. Click on the icon, make sure the service is enabled, and then we can start to configure. The first step is to enable storage policies on our vSAN cluster. Click the highlighted button as shown in the image below.   This will open a window that will tell us the current VM storage policy status. If its anything other than enabled we will need to enable. To do this click on the cluster that we want to turn on and click the Enable button.   Creating a Storage Policy We are now ready to create our first storage policy. We are back at the previous screen and click the icon show to create the policy.   We can now walk through the wizard. First, enter a name for the policy and write a description. The description will help others understand how the policy should be used. We are now ready to create the rule set. The... --- ### SharePoint Planning: Understanding SQL Disaster Recovery Options > Find out your options for disaster recovery for your SQL servers, including storage redundancy, in this helpful post. - Published: 2014-03-17 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-planning-understanding-sql-disaster-recovery-options/ - Categories: SharePoint - Tags: Disaster Recovery, SQL Server - Article Type: How To, Overview Are you prepared? Discover what your options are for disaster recovery for your SQL servers in this post. A SharePoint implementation can be a huge endeavor, and many SharePoint projects are doomed to failure despite the best intentions of an organization due to a lack of planning. It really will help your project to take some time up front and plan out your environment. I recently wrote about how to incorporate some SQL high availability into your SharePoint planning. And while high availability is great, it doesn’t give you a free pass to skip the planning phase for what happens in case of a disaster. This article will help you to understand some of your options to consider for disaster recovery for your SQL servers. Understanding these methods will give you some of the information you’ll need to be prepared in case you need to recover your data. Disaster Recovery and Storage Redundancy: Too Much of a Good Thing? Storage redundancy is the first and best defense against data failure. Good storage redundancy can keep you running by adding some resiliency and high availability to your infrastructure. It can also really help in disaster recovery situations. You’ll definitely want to take opportunities to improve your availability by using database mirroring when you can, but you should also be looking at options like RAID 10 on your Storage Area Network. You’ll also need to keep a backup of your databases. Of course, you’ll want to balance the amount of database backup copies that you keep. Tailor your approach to suit the needs of your data and... --- ### Configuring Cluster Shared Volumes (CSV) Cache > Learn to enable Cluster Shared Volumes (CSV) Cache to improve the read performance of CSV in Windows Server 2012 (WS2012) and Windows Server 2012 R2. - Published: 2014-03-17 - Modified: 2024-09-04 - URL: https://petri.com/enable-cluster-shared-volumes-csv-cache/ - Categories: Windows Server 2012 - Tags: cluster shared volume, csv, Failover Clustering, Hyper-V, storage, Virtualisation, Windows Server 2012 R2 - Article Type: How To Use just a little bit o' RAM or a lot! Learn to enable Cluster Shared Volumes (CSV) Cache to improve the read performance of CSV in WS2012! In this post I will show you how enable Cluster Shared Volumes (CSV) Cache to improve the read performance of CSV in Windows Server 2012 (WS2012) and Windows Server 2012 R2 (WS2012 R2) by using just a little bit (or a lot if you want) of RAM from your server. What Is Cluster Shared Volumes (CSV) Cache? Primarily intended for Hyper-V, CSV Cache, sometimes referred to as CSV Block Cache, allows you to assign some of a memory of your server as a write-through cache to improve the read performance (read-only unbuffered I/O to be specific) of virtual machines’ virtual hard disks. That means that the server’s will cache virtual hard disk reads in RAM and hit that RAM instead of accessing the more latent disks on which the CSV is stored. There are two designs on which CSV Cache is useful: Hyper-V Hosts: Your hosts are directly connected to storage, such as a SAN (not SMB 3. 0), and use CSVs to store virtual machines. In this case, you enable CSV Cache on the clustered Hyper-V hosts. Scale-Out File Server (SOFS): You are using a Scale-Out File Server (SOFS), which uses CSV to have active-active disk for transparent failover and continuous SMB 3. 0 service availability. In this situation, you enable CSV Cache on the nodes in the SOFS cluster, and not on the Hyper-V hosts. Note: A SOFS that uses tiered Storage Spaces will not use CSV Cache. CSV Cache is best used in read-intensive scenarios. Examples... --- ### Using Orchestrator Health Checker to Troubleshoot Runbooks > Learn how to determine if your System Center - Orchestrator runbooks are out of control and creating orphans with the help of Orchestrator Health Checker! - Published: 2014-03-17 - Modified: 2024-09-04 - URL: https://petri.com/use-orchestrator-health-checker-troubleshoot-runbooks/ - Categories: System Center - Tags: Orchestrator Health Checker, Runbooks, System Center 2012 SP1 – Orchestrator - Article Type: Overview Are your System Center - Orchestrator runbooks out of control? Find out more about how Orchestrator Health Checker can help! Picture this: It's Monday morning, and lurking deep in your inbox is an e-mail suggesting that you have a meltdown happening in the heart of one of your business services. You immediately recognize this as one of those e-mails that has the potential to destroy the rest of your day. We all know these e-mails far too well, and today I have the pleasure of getting one of these great eggs to crack again. Troubleshooting: Deadlock Issue My issue begins with a nice image illustrating a deadlock issue with Microsoft Forefront Identity Manager, which in practice should not be occurring, as the agents should never run concurrently. A quick glimpse and I recall that these agents are all Orchestrated through the magic of my FIM Integration pack and the runbooks, which were painstakingly configured to run the agents in sequence, to ensure this issue would not occur. Deadlock occurring due to multiple agents concurrently executing.   So what is happening? A quick connection to my Microsoft System Center 2012 - Orchestrator server, and as I navigate to the main runbook that orchestrates this flow, and I can instantly see that I do have a problem. Multiple instances of the main runbook executing concurrently.   In production, I expect that there should be only ever one instance of this runbook executing, and by design this runbook will loop forever. However, what appears to be happening is that each time the... --- ### RSA Conference 2014: 10 Security Companies to Watch > What are some of the most promising companies in the IT security space? Read our RSA Conference 2014 round-up to find out. - Published: 2014-03-14 - Modified: 2024-11-19 - URL: https://petri.com/rsa-2014-10-security-companies-to-watch/ - Categories: Security - Tags: #RSAC, infosec, News, RSA Conference 2014 - Article Type: Opinion What are some of the most promising companies in the IT security space? Read our RSA Conference 2014 round-up to find out. I’ve been attending the RSA security conference for years, and I always look forward to meeting security vendors — large, small, and all sizes in-between — to learn about their new (and updated) security products and services. Last year I wrote up a list of what I thought were some of the best security vendors to watch from RSA Conference 2013, and I’ve decided to do the same this year. What follows is a list of 10 security vendors that I think are worth watching in the coming year. In my opinion, all of them have something unique to offer, are approaching an existing security problem in a new way, or have decided to take a direction that doesn't follow the rest of the vendor herd when it comes to the latest buzzwords or hype cycle. I met with most of these vendors during (or after) RSA, but I also solicited feedback from other journalists, show attendees, and security analysts for their feedback as well. 1. Barracuda Networks While a vocal number of IT vendors are loudly proclaiming the benefits of cloud services and pushing IT professionals to adopt them, the approach taken by Barracuda Networks should be music to the ears of any IT department not so eager to throw their infrastructure into the hands of an offsite datacenter. Barracuda isn’t against the cloud, but they’re convinced that their customers — who are primarily small- to medium-sized businesses (SMBs) — want options, ranging from on-premise hardware to... --- ### How to Setup and Configure VMware vSAN storage > Virtual SAN (vSAN) storage | Discover how to setup VMware vSAN and find out how local server storage can host VMs. - Published: 2014-03-13 - Modified: 2024-09-04 - URL: https://petri.com/setup-configure-vmware-virtual-san-vsan-storage/ - Categories: VMware - Tags: Cluster, Server, vCenter, vmware, VSAN, vSphere - Article Type: How To Discover how to setup VMware vSAN, the latest tech in storage and virtualization, and find out how local server storage can host VMs. The hottest thing being talked about in VMware circles these days is VMware virtual SAN, or vSAN. This is the converged storage solution that uses local disks in servers to create a shared storage layer across your hosts. In this post I will walk you through the process of creating a vSAN cluster or enabling on an existing vSphere cluster. Virtual SAN (vSAN) Requirements There are a few minimum requirements that need to be met before configuring a vSAN cluster. The following details must be taken into consideration, while the ones in bold are a firm requirement. Each host must have one SSD and one spinning disk to create a vSAN cluster. A minimum of three hosts must meet the above disk requirements to create a cluster. A disk controller that is on vSAN compatibility list, to be officially supported. But this can be built with nearly any controller. 1/10GbE network connections. While dedicated 1GbE connections in smaller clusters should work, VMware is recommending at minimum shared 10GbE connections. vSphere 5. 5 and vCenter 5. 5 Install and Configure vSAN Whether you are creating a new cluster or going to enable vSAN on an existing cluster you will need to look at the cluster settings. The example below shows a field that was not there in previous versions of vSphere. You simply need to check the box to Turn on Virtual SAN. The other choice is what method you want for adding disks to the vSAN storage. Do you want... --- ### How to Configure Fine-Grained Password Policy in Windows Server 2012 with PowerShell > Find out how to create fine-grained password policies using PowerShell in Windows Server 2012 R2 in this Ask an Admin post. - Published: 2014-03-13 - Modified: 2024-09-04 - URL: https://petri.com/fine-grained-password-policy-in-windows-server-2012-powershell/ - Categories: Windows Server 2012 - Tags: Active Directory, Active Directory Administrative Center, ADAC, password, Security - Article Type: How To In this easy Ask an Admin, learn to create fine-grained password policies using PowerShell in Windows Server 2012. How can I create a fine-grained password policy in Windows Server 2012 with PowerShell? Fine-grained password policy was introduced in Windows Server 2008 to overcome restrictions that had previously existed, where it was possible to set only one password policy for an entire domain. Fine-grained password policies allow sysadmins to apply different password policies to groups of users in an Active Directory domain. Make sure that your domain is set at the Windows Server 2008 domain functional level or higher. For more information, see "Raising Windows Server 2008 Active Directory Domain and Forest Functional Levels" on the Petri IT Knowledgebase. Configuring Fine-grained Password Policies Using PowerShell If you would prefer to use the GUI for configuring fine-grained password policy, see my previous post on "How to Configure Fine-Grained Password Policy in Windows Server 2012 using ADAC. " If you want to continue reading, don’t worry, setting fine-grained password policy using PowerShell is quite easy. Log in to a Windows Server 2012 domain controller as a domain administrator. Open a PowerShell console using the icon on the desktop taskbar or from the Start screen. In the PowerShell console, type New-ADFineGrainedPasswordPolicy and press Enter. At the Name: prompt, type a name for the new policy and press Enter. At the Precedence: prompt, type a precedence index number and press Enter. Policies with lower precedence index numbers take priority over those with higher numbers. Using this method, the new policy will be configured with all the default values for a new... --- ### Upgrading Configuration Manager 2012 SP1 to R2 > Discover the steps to updating to Configuration Manager 2012 R2 from Configuration Manager 2012 SP1 in part two of this helpful series. - Published: 2014-03-12 - Modified: 2024-11-19 - URL: https://petri.com/upgrading-configuration-manager-2012-sp1-to-r2/ - Categories: System Center - Tags: Configuration Manager, SCCM, upgrade - Article Type: Overview In part 2 of this series, find out how to perform an update to Configuration Manager 2012 R2 from Configuration Manager 2012 SP1. In the previous post, we covered the steps necessary as we prepared Configuration Manager 2012 SP1 for upgrade to Configuration Manager 2012 R2. In this post we will continue this work, and focus on the actual update, and remind ourselves of some of the points we may encounter in our production upgrade. System Center 2012 R2 Configuration Manager (SCCM 2012 R2): Setup The upgrade does not really care about the roll-up or patch level of the SP1 environment you are upgrading from, so there is no need to deploy any missing roll-ups prior to the upgrade. Installation From the SCCM 2012 R2 installation media, we simply need to launch on our primary server the installation wizard, and select the option to Install SCCM. After a few moments, the main setup wizard will be presented and should have automatically selected the option to Upgrade this Configuration Manager Site.   After passing the initial pages of the wizard, agreeing to licences, downloading components, and so on, you will finally reach the Prerequisite Check page, which will validate that everything is correctly in place for the upgrade to proceed. This check will take a little time to complete, as it will connect to every server in your environment that hosts an SCCM role.   Assuming that your WAN is fully operational and the environment is healthy, we can finally proceed with the upgrade, by clicking on Begin Install. Now, you can go for a dozen or so... --- ### SPC14: Microsoft Touts Hybrid Clouds and the Social Enterprise > Karen Forster continues her coverage of SPC14, including the latest on hybrid clouds, the new Office Graph, and the codename Oslo app. - Published: 2014-03-12 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-hybrid-clouds-social-enterprise/ - Categories: SharePoint - Tags: Office Graph, Oslo, SharePoint Conference 2014, SPC14 - Article Type: News Join us for the latest SharePoint Conference 2014 news, including updated info about hybrid clouds, the new Office Graph, and the codename Oslo app. Two key trends kept popping up at the recent Microsoft SharePoint Conference 2014 (SPC 2014). First, the hybrid cloud, consisting of a mixture of Office 365 (O365) plus on-premises SharePoint solutions; and second, the beginnings of some innovative and practical uses for enterprise social technologies. These may have been the two largest trends I've noticed at the show, but they weren't the only ones. (See my previous SPC post about Microsoft's new approach towards multiple platforms and their efforts to recruit SharePoint developers. ) Yet as I spoke with Microsoft and many of the 200 or so exhibitors at SPC, just about everyone had something to say about the hybrid cloud and the social enterprise.   Hybrid Cloud: Office 365 and SharePoint On-Premises On the SPC expo floor the emphasis on hybrid cloud was noticeable. Julie Auletta, a director at Bamboo Solutions, noted, “At the last SharePoint show, all the talk was Office 365 and the cloud. This year, I get the sense that Microsoft is . The keynote talked a lot about hybrid solutions, and Jared made a point that a lot of feedback from the last show requested sessions other than O365. ” This year, both Microsoft and its partners recognized that hybrid cloud solutions will be the business reality for several years. Every exhibitor I talked with was at least testing the waters with Office 365 solutions, but they also acknowledged that many customers are still looking for... --- ### Unified Threat Management and the WatchGuard XTM Firewall > Check out our review of the WatchGuard XTM series, which can provide security and connect devices securely to on-premise and (hybrid) cloud services. - Published: 2014-03-12 - Modified: 2024-11-19 - URL: https://petri.com/unified-threat-management-watchguard-xtm-firewall/ - Categories: Security - Tags: Antivirus, firewall, networking, spam, URL Filtering, UTM, VPN, WatchGuard, WatchGuard XTM, Wireless - Article Type: Overview Looking into unified threat management? Check our review of WatchGuard XTM, which provides security and connects on-premise and (hybrid) cloud services. Names like "Cisco" and "Checkpoint" dominate edge network security in large enterprises and clouds. Dell SonicWALL has become a dominant player in unified threat management (UTM) in the small/medium enterprise. I recently started working with the XTM appliances by WatchGuard.  I knew of other names such as SonicWALL and Fortinet, but I knew nothing of this American company until last year.  In this article I will share what I have learned so far about this edge security device that fits perfectly into the branch office and small/medium enterprise scenarios. What Is Unified Threat Management? Once upon a time, network security was all about putting a simple device on the edge network to filter unwanted incoming traffic. Threats evolved and services were created. Malware started to spread via broadcasts on the Internet, drive-by, and waterhole attacks. Companies need to control access to Internet content, secure company intellectual property, and protect customer personal data. Internet threat management needs to do more: Firewall: A hardware or software appliance provided network filtering on the Internet connection to keep the bad stuff out and the good stuff in. Application control: Restrict unwanted applications to selected users or time windows. For example, you might limit access to streaming media to lunch breaks and the hour after the workday ends. URL filtering: One of the most popular features in Internet security is the ability to restrict access to undesirable web content, such as pornography, gambling, or even any nonwork-related materials. Anti-spam: If you are one of the businesses... --- ### What Roles Do Storage Profiles Play in VMware Virtual SAN Storage? > VMware Virtual SAN (vSAN) | As storage becomes more defined and controlled by software, how will processes adapt? Learn more in this overview. - Published: 2014-03-11 - Modified: 2024-11-19 - URL: https://petri.com/vmware-virtual-san-vsan-storage-profiles/ - Categories: VMware - Tags: SAN, SDS, Software, vCenter, vSphere - Article Type: Overview As storage becomes more defined and controlled by software, how will processes adapt? Learn more in this post! VMware Virtual SAN (vSAN) will soon be released to the world, and companies will be exploring how they might be able to use this type of technology. As storage becomes more defined and controlled by software, how will processes adapt? When admins look to implement VMware vSAN they will need to understand storage profiles, a little-used feature that has existed since vSphere 5. 0 was first released. In my travels with customers I have not seen many environments using storage profiles. VM storage profiles allows for the capabilities of the underlying storage to be presented to administrators for easier assignment to virtual machines. Why Use Storage Profiles with vSAN? Within clusters that are using vSAN for storage the use of storage profiles will play an important role. To properly control the performance or protection of individual virtual machines a storage profile will need to be assigned. An example would be a number of virtual desktops that are using vSAN for storage. These desktops might be using the default vSAN values. While a database server running on a vSAN datastore might require additional performance, so a storage profile might be assigned that stripes the data across additional disks. Assigning vSANs This might be one of the more important questions. If a single vSAN datastore has multiple storage profiles configured for it, how will they be assigned to virtual machines? The following are a few options that are possible for applying storage profiles to VMs. Select when an admin creates the... --- ### Understanding and Managing the WSS_Logging Database in SharePoint 2013 > Learn to understand and manage the WSS_Logging database in SharePoint 2013 with the help of this post! - Published: 2014-03-11 - Modified: 2024-09-04 - URL: https://petri.com/manage-wss_logging-database-sharepoint-2013/ - Categories: SharePoint - Tags: PowerShell, wss_logging database - Article Type: How To, Overview Managing SharePoint? Dive deeper into understanding the WSS_Logging database in SharePoint 2013 with the help of this post. If you’ve been managing SharePoint for a while, you’ve undoubtedly come across the WSS_Logging database, one of the system databases used by SharePoint 2013 to keep track of the logs that are generated from across a SharePoint farm. It’s also part of the SharePoint Usage and Health Monitoring service, holding information from all servers in the farm to help with reporting on the overall health of the farm. If you’re receiving notices about “critical errors in your farm” when you log into Central Administration, you’re reaping the benefits of that WSS_Logging database. Why Bother with Log Files on the Hard Drive? Just because there is a database doesn’t mean that it is best to have all of the SharePoint servers constantly writing data into the database. Even in a small farm, the log files can stay very active with hundreds of events being written to the logs in just a few minutes. To keep the database from being in constant use, the SharePoint servers keep their own log files on them and a timer job is used to ship the log files into the database. WSS_Logging Database: Space Issues Because all of the logs from all of the servers in your farm end up being brought into the WSS_Logging database, it can quickly balloon in size. It isn’t unheard of for a WSS_Logging database to be one of the largest consumers of hard drive space on your SQL Server. If you’re WSS_Logging database is growing too big,... --- ### How to Perform a PC Refresh in Windows 8 and Create a Custom Refresh Image > Learn to create a custom refresh image in Windows 8 so that you can perform a PC refresh while preserving installed desktop applications. - Published: 2014-03-11 - Modified: 2024-09-04 - URL: https://petri.com/perform-windows-8-refresh-create-custom-image/ - Categories: Windows 8 - Tags: backup and recovery, Diaster Recovery, Windows 8, Windows 8.1 - Article Type: How To Need to perform a refresh while preserving installed desktop apps? Learn to create a custom refresh image in Windows 8 in this Ask an Admin. Backup and recovery options have changed in Windows 8. PC reset is useful if you want to start from scratch or pass your PC on to someone else to use, while making sure that all your apps and personal data are erased. Performing a reset returns the PC to the factory settings that were configured when you first received it. A PC refresh is slightly different in that it reinstalls Windows while maintaining all your personal files, configuration settings, and Metro apps. This is useful for troubleshooting. However, it is possible to create a custom refresh image that will also preserve desktop applications. If you want to capture everything and create a complete system image, that option is still available in Windows 8 in File History under System Image Backup. In this Ask the Admin, I’ll show you how to create a custom refresh image so that desktop applications will also be restored. Create a Custom Refresh Image If you want to preserve your desktop applications, you will need to create a custom refresh image before performing a PC refresh. You should do this after you have installed Windows 8 and set up all your desktop applications. Anytime you add or reconfigure an existing application, you will need to create a new image. To create a custom refresh image, open a command prompt with administrative privileges: Switch to the Start menu, type cmd and press CTRL+SHIFT+ENTER to launch a command prompt with admin rights. Give consent or... --- ### Preparing to Upgrade to Configuration Manager 2012 R2 > Discover how to prepare your production implementation of an upgrade to Configuration Manager 2012 R2. - Published: 2014-03-10 - Modified: 2024-09-04 - URL: https://petri.com/upgrade-to-configuration-manager-2012-r2/ - Categories: System Center - Tags: Configuration Manager, Configuration Manager 2012 R2, SCCM - Article Type: How To Discover how to prepare your production implementation of an upgrade to Configuration Manager 2012 R2. In an earlier post from November 2013, I covered the procedures and sequence to apply Cumulative Updates for System Center Configuration Manager 2012 SP1. Since that post, Microsoft has released the System Center 2012 R2 and some hot fixes to address issues that have appeared since the public release of this awesome new version. Although there are many different posts on this topic and some good guidance from Microsoft, in this post I am going to walk through the procedures and some of the issues I faced as I proceeded to update one of my production environments. Upgrading to Configuration Manager 2012 R2: Environment Overview As a recap: The environment that I am updating is not overly complex, but it should be representative to a vast majority of SCCM 2012 deployments. Hopefully this will answer some of your unasked questions along the way. A sample production environment architecture layout. My primary server is configured to leverage SQL replication to keep each of the management servers in sync, while also using a distribution point in each of the geographical locations of the enterprise to facilitate applications and operating systems deployment. SQL Replicas Before we can being the exercise of deploying the new version of Configuration Manager, we must first change back our configuration for all of our management servers, so to ensure they are all leveraging the central primary servers SQL as tier database respectively. For comfort, I generally connect directly... --- ### How Would Microsoft Design a Scale-Out File Server: Disks, Networking, and More > Designing a Scale-Out File Server (SOFS) | In part 2 of this series, find out how disks, networks, servers, and Storage Bricks play a part in designing a SOFS. - Published: 2014-03-10 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-scale-out-file-server-sofs-storage-spaces/ - Categories: Networking - Tags: Cloud, Clustering, Editor's Pick, Failover Clustering, Hyper-V, networking, Scale-Out File Server, SMB 3.0, storage, Virtualization, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: How To, Overview Discover how disks, networks, servers, and Storage Bricks play a part in designing a SOFS in part 2 of this series. In part one of this series, I discussed how Microsoft (or you) could use SANs or Storage Spaces with JBODs to implement a Scale-Out File Server (SOFS). In this second part, I will look at disks, networking, servers, and the concept of Storage Bricks in the decision making process of designing a SOFS. Scale-Out File Servers and Disks When Storage Spaces was released with Windows Server 2012, all I ever heard from people I briefed was “Does it support tiered storage? ” It didn’t then, but Windows Server 2012 R2 does now. The SSDs are not the kind you put in a PC or laptop, not even the “enterprise” kind. A SOFS requires dual-channel SAS disks, and the kind of SSDs that support those don’t cost hundreds of dollars – they cost thousands of dollars, just like the ones in a SAN do. In the small/medium enterprise space, I don’t expect to see many tiered Storage Spaces implementations. Instead, I expect to see lots of two-way mirroring with 10K or 15K HDD traditional spinning disks. Companies of this size rarely need the peak performance offered by SSDs. Where tiered storage really can be of benefit is when you need lots of capacity. Consider this: You can put in 200 x 1 TB 10K drives at a medium price, or you can put in 50 x 4 TB 7. 2K drives. Those 50 slower drives will be a lot cheaper to purchase and power. What if... --- ### VMware announces Horizon DaaS for vCloud Hybrid Service > VMware has officially announced that the VMware Horizon Desktop as a Service is now available on their vCloud Hybrid service. - Published: 2014-03-10 - Modified: 2024-11-19 - URL: https://petri.com/vmware-announces-horizon-daas-on-vchs/ - Categories: VMware - Tags: Cloud, DaaS, Desktop as a Service, hybrid cloud, vCHS, VDI, vmware - Article Type: News VMware shakes up the DaaS market by announcing that VMware Horizon Desktop as a Service is now available on the vCloud Hybrid service. VMware has just announced the availability of Horizon Desktop as a Service (DaaS) on their vCloud Hybrid Service (vCHS), which is a lot to fit into one sentence. What all this means is that VMware is now offering the Desktone DaaS user experience which has been updated with more VMware View features on their vCHS public cloud offering. (Editor's Note: See related story about VMware working with Google to bring Horizon DaaS to Chromebooks. ) This will allow customers to purchase desktops and pay for them on a monthly basis. This does not mean that VMware will be offering single desktops to users that want to swipe a credit card and get a desktop in the cloud. This offering is focused on enterprise customers looking to commit to a minimum of 50 desktops and increment from there. The following table represents the configuration of the standard DaaS desktop. This looks to be a very common Windows 7 configuration that will work for the majority of VDI users. VMware Horizon DaaS pricing (Source: VMware) Customers will have the choice of three different Windows operating systems for desktops (64 bit versions of Windows XP, 7, and 8), with Windows 7 being the likely choice for most customers. Providing Windows 7 desktops in DaaS at this price is going to put VMware in an attractive spot, since other providers usually charge this rate for a desktop using a server OS, due to licensing restrictions. It's all about the... --- ### What's New in Windows 8.1 Update > Microsoft's Windows 8.1 Update release is just around the corner. Check out what this new update brings to the table. - Published: 2014-03-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-8-1-update-1-news/ - Categories: Windows 8 - Tags: Windows 8.1 Update 1 - Article Type: Overview Microsoft's Windows 8.1 Update release is just around the corner. So will this new update have what it takes to increase Windows 8 adoption? Microsoft's latest update to Windows 8. 1 -- which has now been officially christened Windows 8. 1 Update -- continues Microsoft's efforts to file off the rough edges of the initial Windows 8 release. Although Microsoft won't describe it as such, Windows 8. 1 Update can be viewed as yet another step backwards from the touch-optimized initial Windows 8 release and a step towards satisfying the needs of mouse and keyboard users. To that end, the bulk of the improvements in this update -- which is slated to be officially released this Spring, despite some recent early leaks on the web -- center largely around improving the desktop experience for users without touch hardware who rely mostly on mice and keyboards to get their work done. Will Windows 8. 1 Update 1 have what it takes to mollify Windows 8 critics? (Image: Microsoft) Windows 8. 1 Update: Improvements and Changes Let's take a look at a few of the major changes and improvements in this update, most of which were mentioned by Microsoft's Joe Belfiore in a post on the Windows Phone blog during last week's Mobile World Congress in Barcelona. Given that some of this information is preliminary and from multiple sources, please check back regularly as I update the article with newer and potentially more accurate information. Boot to Desktop by Default: Windows 8. 1 introduced the ability to enable booting to desktop as an option, but Tom Warren at The Verge is reporting that the latest build "... only boots to the desktop... --- ### How to Configure Fine-Grained Password Policy in Windows Server 2012 Using ADAC > Learn how to create fine-grained password policies using the Active Directory Administrative Center (ADAC) in Windows Server 2012. - Published: 2014-03-06 - Modified: 2024-09-04 - URL: https://petri.com/configure-fine-grained-password-policy-in-windows-server-2012-adac/ - Categories: Windows Server 2012 - Tags: Active Directory, Active Directory Administrative Center, ADAC, password, Security - Article Type: How To In this easy Ask an Admin, learn to create fine-grained password policies using the Active Directory Administrative Center (ADAC) in Windows Server 2012. What is fine-grained password policy? And how can I configure fine-grained password policy with the Active Directory Administrative Center (ADAC)? Fine-grained password policy was introduced in Windows Server 2008 to overcome the limitation of only one Active Directory password policy for a domain. Fine-grained password policies do exactly what they say on the tin, allowing system administrators to apply different password policies to groups of users in an Active Directory domain. Configuring Fine-Grained Password Policy with the ADAC Prior to Windows Server 2012, it was only possible to configure fine-grained password policies from the command line. Fortunately, a graphical user interface for fine-grained password policy is included in Windows Server 2012’s Active Directory Administrative Center (ADAC). Before you can use fine-grained password policy, make sure that your domain is set at the Windows Server 2008 domain functional level or higher. For more information on setting domain and forest functional levels, see "Raising Windows Server 2008 Active Directory Domain and Forest Functional Levels" on the Petri IT Knowledgebase. Login to a Windows Server 2012 domain controller as a domain administrator. If it’s not already open, start Server Manager using the icon on the desktop taskbar or from the Start screen. In Server Manager, select Active Directory Administrative Center from the Tools menu. In the left pane of ADAC, click ad (local). In the central pane, double-click the System container. Now right-click Password Settings Container and select New > Password Settings from the menu. Enter a name for the... --- ### Using the VMware vSphere Mobile Watchlist App > Check out the vSphere Watchlist mobile app, which helps manage vSphere environments. Read our walkthrough to see if this app is right for you! - Published: 2014-03-06 - Modified: 2024-11-19 - URL: https://petri.com/vmware-vsphere-mobile-watchlist-app-overview/ - Categories: VMware - Tags: Android, Apple, iOS, Mobile App, vCenter, vmware, vSphere - Article Type: Overview Need help wrangling vSphere environments? Check out our walkthrough of the vSphere Watchlist mobile app! It's been quiet on the mobile application front for VMware for more than a year, so much so that I was beginning to think they had given up. My opinion changed when a little VMware surprise called the vSphere Mobile Watchlist recently appeared in the Google Play and Apple app stores. This new mobile application allows you to connect remotely to VMware vCenter servers and manage virtual machines. It also allows you to lookup VM configuration details and perform other basic functions. Editor's Note: According to a blog post by VMware a "... VMware vSphere installation (5. 0 and above) is required to use VMware vSphere Mobile Watchlist... " and using the application may also require secure access (possibly via VPN) to your IT environment. vSphere Mobile Watchlist: What Can It Do? The image below shows a watchlist I created for one of the vCenters in my lab. The list is a group of VMs that I selected. You can create a number of different watchlists that can include all or just selected VMs. You can use a list to easily check on virtual machines.  Some examples for separate lists might be on a per-application basis or a per-cluster list. The options are wide open here, and you will be able to create them for your own management needs.   The next two images show that you can find out more details such as networking, operating system, and host location, by drilling down into a specific VM. This can be done... --- ### Take the Petri IT Knowledgebase 2014 Reader Survey for Chance to Win $100 Gift Card > Have an opinion about the types of content we publish on the Petri IT Knowledgebase? Take our reader survey and get a chance to win one of five $100 gift cards! - Published: 2014-03-05 - Modified: 2024-12-03 - URL: https://petri.com/take-the-petri-it-knowledgebase-2014-reader-survey/ - Categories: Windows Server - Tags: Reader Feedback, Reader Survey - Article Type: News Have an opinion about the types of content we publish on the Petri IT Knowledgebase? Take our reader survey and get a chance to win one of five $100 gift cards! One of the most rewarding things of my job is getting the opportunity to talk to the hundreds (if not thousands) of system administrators and IT professionals  I've been fortunate enough to meet at trade shows, tech conferences, and at local in-person events over the years. I've also enjoyed interacting with many more Petri IT Knowledgebase readers online, whether via email or by way of Twitter, Facebook, or Google+. While I genuinely enjoy those interactions on a personal level, on a professional level I've always believed that the most important responsibility of the editors of any publication is to be advocates for readers and get to know at a very direct level what their concerns and interests are. We're inundated with PR pitches and marketing requests from vendors on a daily basis, but we always try to make sure that reader concerns and feedback rise to the top of our collective email inboxes. So that's why we're kicking off our second annual Petri IT Knowledgebase reader survey in an effort to get feedback from readers about the content we publish. Enter Now: Take the Petri IT Knowledgebase 2014 Reader Survey  We value the reader feedback we receive, and it helps us make informed decisions about the topics we cover, the authors we hire, and the content we publish. For example: Based partly on results from our 2013 reader survey, we hired technical experts and doubled-down on our coverage of Hyper-V (Aidan Finn), System Center (Damian Flynn), VMware (Brian Suhr), and Windows... --- ### SPC14: Microsoft Courts SharePoint Developers, Promotes Interoperability > Learn about Microsoft's surprising moves towards openness and interoperability, as reported by Karen Forster from the Microsoft SharePoint Conference 2014. - Published: 2014-03-05 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-courts-sharepoint-developers-promotes-interoperability/ - Categories: SharePoint - Tags: Arpan Shah, Office 365, SharePoint Conference 2014, SPC14 - Article Type: News Learn about Microsoft's surprising moves towards openness and interoperability, as reported by Karen Forster from the Microsoft SharePoint Conference 2014. Editor's Note: This is the first post on the Petri IT Knowledgebase from Karen Forster, former executive director for Editorial and Strategy at Windows IT Pro who most recently was a director of Technical Communications at Microsoft in the Cloud and Enterprise business group. Karen is onsite at Microsoft's SharePoint Conference 2014 in Las Vegas this week, and we'll be bringing readers her posts direct from SPC14. "Openness" and "Microsoft" are becoming increasingly easy to say in the same sentence. That ordinary conjunction of those two words was underscored at the Microsoft SharePoint Conference 2014 this week. Microsoft announced new APIs and Visual Studio tools, new ways to make vast numbers of users aware of (and able to download) your apps, and new ways for developers to build apps that you can integrate across the whole Office 365 (O365) product family (Office, Exchange, SharePoint, Yammer, and Lync). You can learn more details from all of these announcements by reading a post by Arpan Shah, Microsoft's senior director of Office 365 technical product management, over at the Office 365 Team blog. All About Openness But what struck me when I recently spoke with Arpan Shah was his focus on community (which used to be regarded as a puzzling and foreign word when I worked at Microsoft in the early 2000s) and openness. As Shah said, “I come back to the notion of community and Office 365. There’s a lot of potential to power great apps. The goal is... --- ### How Would Microsoft Design a Scale-Out File Server? > Ever wonder how Microsoft would design a SOFS for storage over SMB 3.0 networking with transparent failover? Find out more in part 1 of this series. - Published: 2014-03-05 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-scale-out-file-server-sofs/ - Categories: Windows Server 2012 - Tags: Cloud, cloud computing, Clustering, Failover Clustering, Hyper-V, JBOD, networking, Scale-Out File Server, storage, storage spaces, Virtualization - Article Type: Overview WWMSD? Ever wonder how Microsoft would design a SOFS for storage over SMB 3.0 networking with transparent failover? Find out more in part 1 of this series. Other than a bunch of blog posts scattered around the Internet, there is no one official document from Microsoft on how to design a Scale-Out File Server (SOFS) that provides scalable and continuously available storage over SMB 3. 0 networking with transparent failover. In part one of this series, I will look at various pieces of information and summarize what I think Microsoft would suggest. Watch out for part two in the coming weeks. There’s More to SOFS Than Storage Spaces Consider what a SOFS actually is. The architecture combines several Windows components together to provide a new way to present shared storage to servers, such as those running Hyper-V virtualization: Cluster shared storage: A common misconception is that you must use Storage Spaces on one more JBOD trays. This is the most affordable storage for a new installation, but as Microsoft says, the cheapest storage you can get is the storage you already own. Any form of shared storage that is supported by Windows Server failover clustering may be used in a SOFS. This includes PCI RAID and SANs that use SAS, fiber channel, fiber channel over Ethernet (FCoE), and iSCSI networking. Clustered file servers: At least two – and up to eight (the support limit for SOFS) – servers are directly connected to the shared storage. These servers run Windows failover clustering and virtualize the storage using Storage Spaces. SMB 3. 0 Networking: The clustered file servers share the physical storage using shared folders via the SMB... --- ### System Center 2012 Configuration Manager Deployment Architectures > Check out the five System Center 2012 Configuration Manager (SCMM) common server templates that emerge in this informative overview. - Published: 2014-03-05 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-configuration-manager-server-template/ - Categories: System Center - Tags: Architecture, Distribution Points, Primary Server, SCCM, SQL Server, System Center 2012 Configuration Manager - Article Type: Overview Can you name the five System Center 2012 Configuration Manager (SCMM) server templates? Check out this informative overview! System Center 2012 Configuration Manager (SCCM) is an amazing product, but attempting to approach it as a whole can be overwhelming.  A better approach is to look at elements of SCCM individually, so in this post I'm going to share the architecture templates that I typically end up deploying in most of the small and medium businesses I’ve worked with. These have scaled from simple single-office deployments to the typical geographically dispersed organization using simple Internet-based VPN connections as the WAN fabric. One point of note: In all of these environments I haven't needed to consider deploying a Central Administration Server (CAS), as not one of these organizations come close to that magical number of 100,000 systems, which thankfully make things a lot simpler. 5 Main Server Templates While each and every environment is different, and there are specific considerations that must be accounted for, ranging from political to physical (the templates continue to emerge in each case). Of course, there are occasions when specific roles might be split and deployed to dedicated servers (for example the web catalog), but these decisions will always be environment specific. There are five main server templates that emerge. Let's take a closer look at each of these. 1. Primary Site Server At the very heart of the SCCM deployment, the primary site server will be configured with a locally installed copy of SQL Server using dedicated disks for the SQL installation, and additional disks for SCCM to host its packages. Generally, this... --- ### SharePoint Planning: Understanding SQL Server High Availability Options > Learn about three SQL Server high availability solutions: SQL database mirroring, SQL server clustering, and SQL Server AlwaysOn in this helpful post. - Published: 2014-03-04 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-high-availability-options-sharepoint/ - Categories: SQL Server - Tags: Editor's Pick - Article Type: How To, Overview Need to recover a SQL Server? Learn how to wield these helpful SQL Server solutions: SQL database mirroring, SQL server clustering, and SQL Server AlwaysOn. SharePoint can be complicated all in itself. But in many ways, SharePoint is just a web front end for your SQL servers. Without SQL Server, there is no SharePoint. Because SQL Server is so critical to the success of SharePoint, it can be very important to plan out your options for SQL Server before you even begin installation of SharePoint on your application servers. This article will show you your high availability options in SQL Server. Using these solutions can help your SharePoint infrastructure to quickly recover from, and in some cases completely withstand the loss of, one of your databases or SQL Servers. SQL Server High Availability Solutions The three options that we have for high availability with SQL Server are SQL database mirroring, SQL server clustering, and SQL Server AlwaysOn. Both mirroring and clustering are available on SQL Server 2008, but SQL Server AlwaysOn is a new feature of SQL Server 2012. 1. SQL Database Mirroring SQL database mirroring is one of the simplest forms of high availability. It is very easy to understand: Simply keep an extra copy of your database on a separate server and continuously copy over from one to the other. DB mirroring duplicates the DBs from a primary instance to a secondary. While you have two copies of the databases in a mirror, you won’t be making data writes into both copies of the database. While changes to the database are kept in sync between the mirrors, one server will... --- ### Using Shared VHDX to Create a Guest Cluster in Windows Server 2012 R2 > Learn how to use a shared VHDX to create a guest cluster on WS2012 R2 Hyper-V hosts. - Published: 2014-03-04 - Modified: 2024-09-04 - URL: https://petri.com/use-shared-vhdx-create-guest-cluster-windows-server-2012-r2/ - Categories: Hyper-V - Tags: Failover Clustering, Hyper-V, Virtualization, Windows Server 2012 - Article Type: Overview Learn how to use a shared VHDX to create a guest cluster on WS2012 R2 Hyper-V hosts. In this post we will show you how to create a guest cluster on Windows Server 2012 (WS2012) R2 Hyper-V hosts using shared VHDX. Using Shared VHDX: Prerequisites There are some prerequisites for using shared VHDX. The VHDX file(s) that will be shared must be placed on either an SMB 3. 0 share or a Cluster Shared Volume (CSV). The WS2012 R2 hosts that will run the virtual machines (that are using the Shared VHDX files) must be clustered. Shared VHDX on shared storage. The clustered hosts that are running the virtual machines do not need to be in the same host cluster. That means a guest cluster can span multiple host clusters. A CSV cannot span clusters; therefore in this particular cross-host-cluster scenario, you must use SMB 3. 0 shares to store the shared VHDX file(s). You will need at least two shared VHDX files: A 1 GB VHDX file to use as the quorum or witness disk One or more data VHDX files to store the clustered data Network the Virtual Machines There are many ways to network the virtual machines using the concepts of converged networks. But to keep it simple, we will do the following. Assume that the hosts’ virtual switch is connected to a NIC team Create two virtual NICs in each VM that will be clustered. The first will be for management and client access, and the second will be used for cluster communications. Install the guest OSes of the virtual machines,... --- ### How to Use Global Search in the Active Directory Administrative Center > Learn about using the Global Search feature in the ADAC. Discover how to search all objects and attributes across multiple domains in a forest using ADAC. - Published: 2014-03-04 - Modified: 2024-09-04 - URL: https://petri.com/use-global-search-in-active-directory-administrative-center-adac/ - Categories: Active Directory (AD) - Tags: Active Directory Administrative Center, ADAC, Ask an Admin, global search, Windows Server, Windows Server 2012 - Article Type: How To In this Ask an Admin, discover how to search all objects and attributes across multiple domains in a forest using ADAC. In this Ask an Admin, I’ll show you how to use the Global Search feature, which was introduced in Windows Server 2008 R2, to search for Active Directory objects across all domains in a forest. What Is Global Search? Global Search is a feature of the Active Directory Administrative Center (ADAC) in Windows Server 2012 R2 that allows administrators to perform searches across all domains in a forest – and against domain controllers – rather than being restricted to the index of a global catalog (GC) server that don’t contain all object attributes. Complex search criteria can be used, and if required, that criteria can be converted to Lightweight Directory Access Protocol (LDAP) queries for use in other applications. Create a Query Using Global Search Log on to Windows Server 2012 R2 domain controller as a domain administrator and follow the instructions below. If it’s not already open, launch Server Manager using the icon on the desktop taskbar, or from the Start screen. In Server Manager, select Active Directory Administrative Center from the Tools menu. In the bottom left pane of ADAC, click Global Search. Click the arrow to the left of Scope: (ad) local in the main window. Here you’ll see a list of domains in your forest that you can include in the search. There’s also the option to include a global catalog in the search. To perform a simple a search, type a search term in the Search box and press ENTER. You’ll see... --- ### RSAC 2014: Interview with Barracuda Networks CEO William "BJ" Jenkins > We sit down with the CEO of Barracuda Networks to talk about their recent IPO, the cloud, and the latest security trends. - Published: 2014-03-03 - Modified: 2024-09-04 - URL: https://petri.com/rsac-2014-interview-with-barracuda-networks-ceo-william-bj-jenkins/ - Categories: Security - Tags: RSA Conference 2014 - Article Type: Interview We sit down with Barracuda Networks CEO William "BJ" Jenkins to discuss their recent IPO, cloud computing, and the latest trends in IT security. At the recent RSA Conference 2014 in San Francisco I had the opportunity for an in-person interview with Barracuda Networks CEO William "BJ" Jenkins. Barracuda (NYSE: CUDA) has been busy over the last year or two: Jenkins arrived as CEO in November 2012, and Barracuda went public in November 2013, raising more than $75 million with their successful IPO. In an industry often dominated by security giants like RSA Security, Symantec, McAfee, IBM, Microsoft, and other tech titans, Barracuda Networks has carved out a profitable niche for itself as a security solutions provider primarily focused on customers in the small and medium business (SMB) segment. While other industry analysts and cloud providers are pushing IT departments to embrace the cloud, Barracuda Networks prides itself on offering a menu of security solutions aimed at customer needs that include both on-premise and off-premise solutions. At RSA Conference 2014 last week I was able to schedule about 20 minutes to chat with Jenkins in a small meeting room just outside the conference press area. What follows is a lightly edited (for space and clarity) transcript of our discussion, based off a digital recording of the interview. Jeff James: You joined Barracuda Networks last year, correct? BJ Jenkins: Yeah, November of 2012, so it's been 16 months, I guess... yeah, 16 months. Before that I was at EMC for almost 15 years. Jeff: Did you ever imagine that Barracuda Networks would reach the IPO stage? Perhaps that's more of a question for... --- ### Top 10 IT Trends – from the Microsoft Perspective > Find out how Microsoft is prepared for the next 5 years of change, according to the top IT trends as posted by Gartner, Inc. - Published: 2014-03-03 - Modified: 2024-09-04 - URL: https://petri.com/it-trends-from-microsoft-perspective/ - Categories: Windows Server - Tags: cloud computing, hybrid cloud, Hyper-V, Office 365, System Center, Windows Azure - Article Type: Overview Get out your crystal ball and find out how Microsoft is preparing for the next 5 years of change in the IT world. I recently read a Redmond Magazine article in which writer Kurt Mackie discussed the top trends for IT professionals to pay attention to over the next five years, as presented by Gartner Inc. 's David J. Cappuccio. I am not one to drink the Gartner Kool-Aid, but this is an interesting list, and there is a lot of content that is relevant to the IT pro that is working in a Microsoft-based infrastructure. So here, I present my thoughts on Gartner's list of the top 10 IT trends, as given from the Microsoft POV. 1. Software-Defined Networking (SDNs) Anything that is hardware-defined is inflexible. As anyone who has worked in the hosting business will tell you, flexibility is your friend, and cloud computing yearns for the ability to have agile computing. Traditional networking lacks in numerous ways. Self-Service: A true cloud allows customers, or tenants, to provision their own resources without interacting with the IT staff of the service provider. These resources could be websites, databases, or virtual machines. What if a customer requires the ability to stretch their network into the shared public cloud? This hybrid solution requires that the customer be able to provision their own networks too. Flexibility: Moving services from one network footprint to another is disruptive due to the need to change IP addresses. It’s also very difficult to implement overlapping networks; doing so requires something like Network Address Translation (NAT) that will limit/complicate communications. Scalability: The limit of 4,096 VLANs per network is... --- ### Using ULS Viewer to Monitor and Filter SharePoint 2013 Logs > Check out what ULSViewer, a free Microsoft utility can do to for your SharePoint logs, and learn some configuration tips. - Published: 2014-03-03 - Modified: 2024-11-19 - URL: https://petri.com/ulsviewer-sharepoint-2013-logs/ - Categories: SharePoint 2013 - Tags: Editor's Pick, trace logs, ULSViewer - Article Type: How To, Overview Just what is this ULS Viewer, anyway, and what can it do for your SharePoint logs? Find out more about this free Microsoft utility! If you’re trying to troubleshoot an error in your SharePoint 2013 environment and you’ve been struggling to find the error in the logs, you’re going to love this free utility from Microsoft that lets you quickly and easily monitor your SharePoint 2013 trace logs. Today I'll introduce you to ULS Viewer, I'll show you how to download it, and I'll share some configuration tips. What Is ULS Viewer? ULS Viewer is a free utility created by Microsoft that runs on your SharePoint server and connects to the log files that are created by SharePoint 2013. It actually works on previous versions of SharePoint just as well as it does on 2013. You can download and run ULS Viewer on the SharePoint server, or it can run on your workstation and connect to the SharePoint logs from across the network. When run on a SharePoint server, ULS Viewer can automatically connect to the SharePoint logs on the local server. If you run it from your workstation, it takes just a couple of extra steps to connect from across the network. You can also connect to more than one server to get a look at the bigger picture. All in all, ULSViewer is a great utility for any SharePoint administrator. The only catch is that the software is offered with no support. If it doesn’t work for you for some reason, Microsoft isn’t going to put in effort to resolve your issues with it. That said, it works for... --- ### Optimize Windows 8 for Audio: Configure Windows 8 and Setup JRIVER Media Center > Learn how to get the best out of Windows 8 and JRIVER Media Center for audio playback in part two of this short series. - Published: 2014-02-27 - Modified: 2024-09-04 - URL: https://petri.com/optimize-windows-8-audio-setup-jriver-media-center/ - Categories: Windows 8 - Tags: audio, DAC, digital, Windows 8, Windows 8.1 - Article Type: Overview Get ready to turn it up! In part 2 of this series, find out how to get the best out of Windows 8 and JRIVER Media Center for audio playback. In the first part of this series, "Understanding Digital Audio," I introduced you to some computer-based digital audio concepts, and to the idea that sound quality can be severely impacted by jitter, vibration, RFI and EMI. In the second part of this series, I’ll show you how to configure a new install of Windows 8. 1 to ensure that sound quality isn’t significantly degraded by unwanted disk and CPU activity, and how to setup and configure JRIVER Media Center for optimal playback. This is not an exhaustive guide of tweaks and configuration settings – there’s certainly much more you could potentially achieve – but this post will provide you with a solid grounding on which to experiment further. Most of the information in this article also applies to Windows 7 and is relevant for those who want to build a PC dedicated to music playback. Install Windows 8. 1 It’s best to start with a completely fresh install of Windows, and during the setup process, create a new local user that isn’t associated with a Microsoft account. Install any drivers required for your hardware and chipset. When you log on for the first time, run Windows Update from the control panel and make sure that all the latest patches get installed, as we’ll need to disable Windows Update later. Configure Windows 8 for Audio Let’s start by performing some basic tweaks to minimize CPU activity and disk I/O. Remove Live Tiles from the Start Screen... --- ### How to Upgrade ESXi with VMware Update Manager (VUM) > Learn how to to upgrade ESXI with VMware Update Manager (VUM) with the help of this detailed walkthrough. - Published: 2014-02-26 - Modified: 2024-09-04 - URL: https://petri.com/upgrade-esxi-vmware-update-manager-vum/ - Categories: VMware - Tags: ESXi, Update Manager, upgrade, vmware, vSphere, VUM - Article Type: How To Is it time to upgrade to the next version of vSphere? Check out our detailed guide on using VUM to upgrade VMware hosts. Are you a bit behind in your vSphere upgrades or just excited to check out the latest version? No need to to worry! I'm going to walk you through the process of upgrading a vSphere host with VMware Update Manager (VUM). After this you will be ready to preform upgrades on your own. To preform these activities you will need to already have VUM installed and connected to your vCenter server. You will also want to download the . iso file for the vSphere version to which you are upgrading. Once both of those steps are completed you are ready to proceed. Upgrade ESXI with VUM: Upload Package and Create Baseline To get things going, log into the vSphere client (this is the classic fat client from VMware). At some points in this process a few of the steps can be accomplished using the new vSphere web client and I will show those. But VUM is still dependent on the fat client so some of the steps must be done there. Once in the client locate the VUM icon shown below and click. Now that the Update Manager interface is shown in the vSphere client, we need to upload the ESXi image that we will be using for the upgrades. Earlier I downloaded the image from VMware. com and copied it to the local drive of the computer that I'm using for this post. To upload the image, first click on the ESXi Images tab and then choose Import... --- ### Optimize Windows 8 for Audio: Understanding Digital Audio > Learn how to combine Windows 8 and digital audio to make a sweet hi-fi system. In part 1 of 2, discover the concepts of computer-based digital audio. - Published: 2014-02-26 - Modified: 2024-12-03 - URL: https://petri.com/optimize-windows-8-digital-audio/ - Categories: Windows 8 - Tags: audio, DAC, digital, transport - Article Type: Overview Listen up, audiophiles! Learn how to combine Windows 8 and digital audio to create a sweet sound system. Hearing is believing, and with a little bit of tweaking and a decent external sound card (DAC), Windows 8 can be turned into a great-sounding digital transport. In this two-part series, we'll take a closer look at how to optimize Windows 8 for audio. Disclaimer: The information provided in this series of articles is based on my own personal experience and preference for good sound. I have not conducted any scientific tests to prove any of the claims made, and prefer to use my own hearing and enjoyment of the music as evidence. Adventures in Digital Audio My adventures in computer-based digital audio began a few years ago when I finally decided it was time to invest in a real hi-fi system, something that had been missing from my life for the best part of a decade. But with the changes in technology since the last time I purchased hi-fi kit, it seemed that using a computer instead of a CD player as the center piece of my system would be a good idea. I was quite naïve about digital audio when I started this journey. It’s digital, right? Perfect sound. Just 1s and 0s, so all that’s required is a digital-to-analogue converter (DAC) – a sound card to the rest of us – and any playback software will suffice; the only factors determining the resulting sound being the bitrate of the originating file and the quality of the DAC. Elton John listens... --- ### The Rise of Satya Nadella to CEO of Microsoft > Meet Satya Nadella, Microsoft's new CEO, and learn about what led to ex-CEO Steve Ballmer's stepping down in the company. - Published: 2014-02-26 - Modified: 2024-09-04 - URL: https://petri.com/satya-nadella-new-microsoft-ceo/ - Categories: Windows Server - Tags: Microsoft, Opinion, Satya Nadella, Steve Ballmer - Article Type: Overview Meet Satya Nadella, Microsoft's new CEO! In this op-ed, learn about Nadella's strengths and what led to ex-CEO Steve Ballmer's stepping down. White smoke came billowing out of a chimney in Microsoft’s headquarters in Redmond recently. After months of speculation, rumors, alleged leaks, and interviews, Microsoft had finally selected a new chief executive officer (CEO) to replace the outgoing CEO Steve Ballmer, who announced his intended “retirement” on August 23, 2013. His replacement: Satya Nadella. Who is this man and what will he do for Microsoft? Is he the right person for the job? In this opinion post, I’ll talk a little about Nadella, and I’ll share what I think the future may (or may not) hold for Microsoft, the shareholders, and customers of this important corporation. Bye-Bye Ballmer In January 2000, Ballmer was named as the second CEO in Microsoft’s history. Ballmer replaced the original CEO, Bill Gates, who intended to spend most of his time running the Bill and Melinda Gates Foundation. Note that Gates did stay on as Chairman of the Board of directors at Microsoft, and while he was not an out-front leader, he probably still had a strong position alongside Ballmer, his college friend, on what was considered a very weak board. Ballmer took over as CEO during a very difficult time in Microsoft’s history. The US government was threatening to split up the company. The European Union (EU) was investigating. Bill Gates might be made fun of in the media as a nerd, but as IBM, Netscape, Novell, RealPlayer, and other companies have found out, he is an aggressive competitor – so much... --- ### RSA 2014: Microsoft Releases EMET 5.0 Technical Preview > Microsoft has taken the wraps off their new EMET 5.0 Technical Preview, which serves up some noteworthy new security capabilities. - Published: 2014-02-25 - Modified: 2024-11-19 - URL: https://petri.com/rsa-2014-microsoft-releases-emet-5-0-technical-preview/ - Categories: Security - Tags: #RSAC, EMET, infosec, News, RSA Conference 2014 - Article Type: News Microsoft has taken the wraps off their new EMET 5.0 Technical Preview, which serves up some noteworthy new security capabilities. Microsoft used the annual security extravaganza known as the RSA Conference to take the wraps off a technical preview of the latest version of their Enhanced Mitigation Experience Toolkit (EMET). We've written a bit about EMET already here at the Petri IT Knowledgebase, so you can also check out Russell Smith's post about securing legacy applications on Windows Server 2012 R2 and Windows 8. 1 using EMET 4. 1 for some real-world applications of the current version (4. 1) of the EMET tool. All About EMET If you don’t know EMET from Emmet — the star of The LEGO Movie — here’s a quick refresher. EMET is a free software tool that system administrators (and security professionals) can use to help provide additional protection for the software in your IT environment. Microsoft Security Program Manager Gerardo Di Giacomo described EMET in more detail in a blog post on Technet: " helps prevent memory corruption vulnerabilities in software from being successfully exploited for code execution. It does so by opting in software to the latest security mitigation techniques. The result is that a wide variety of software is made significantly more resistant to exploitation – even against zero day vulnerabilities and vulnerabilities for which an update is not available or has not yet been applied. ” Giacomo also explains in his post that EMET works with all modern Windows OSes, including Windows XP, Windows Vista, Windows 7, and Windows 8. EMET also can be used with existing tools that admins use to... --- ### How to Upgrade VMware vCenter 5.1 to 5.5 > Learn how to upgrade from VMware vCenter 5.1 to vSphere 5.5 in our easy-to-follow walkthrough of the process. - Published: 2014-02-25 - Modified: 2024-09-04 - URL: https://petri.com/upgrade-vmware-vcenter-5-5/ - Categories: VMware - Tags: ESXi, upgrade, vCenter, vmware, vSphere - Article Type: How To Time for an upgrade? Learn how to perform an upgrade to vSphere 5.5 in our easy-to-follow walkthrough. It's been several months now since VMware vSphere 5. 5 was released to the public. The product has had some time on the market, and I'm now seeing more and more people upgrading from earlier versions of vSphere to it. For the sake of this walkthrough, I'm already running vSphere 5. 1 so I have single sign on (SSO) and the web client already installed. This post will walk you through the steps to make your upgrade to vCenter 5. 5 a success. For this example I have all of the following components installed on a single Windows server. This is referred to as a simple install and is the recommend method unless you have additional requirements for higher availability. Single Sign On (SSO) vSphere Web Client vCenter Inventory Service vCenter Server Preparing to Upgrade to vCenter 5. 5 Before starting on the upgrade journey a few things should be done first to ensure a successful upgrade or recovery should something go wrong. Ensure you have backups of all databases affected in this upgrade. Confirm successful backups of the Windows server that you are using. If using a VM for vCenter server, snapshot it. Read VMware upgrade guides Single Sign-On (SSO) Upgrade To get things rolling I have mounted the vCenter 5. 5 ISO and started the installer app. The following image shows the welcome screen for the vCenter install. As mentioned earlier, we are going to choose the Simple Install, which will install the components listed on the... --- ### Export Office 365 Users to a CSV File > Learn to export licensed Office 365 users to a comma delimited file (CSV) using PowerShell in this quick Ask an Admin article. - Published: 2014-02-25 - Modified: 2024-09-04 - URL: https://petri.com/export-office-365-users-to-csv-file/ - Categories: Cloud Computing - Tags: Management, Office 365, PowerShell - Article Type: How To In this quick 'n easy Ask an Admin, learn to export licensed Office 365 users to a CSV using PowerShell! Organizations with large Office 365 deployments may need to export user information to a comma delimited file (CSV), which can then be used as the basis for creating reports. In this Ask the Admin, I’ll show you how to connect to Office 365 and export user information using PowerShell. Setup PowerShell Management for Office 365 Before you can run PowerShell commands to manage or export information from Office 365, you need to make sure that you have the PowerShell cmdlets for Windows Azure Active Directory installed locally, along with the latest version of the Microsoft Online Services Sign-In Assistant. For more information on installing these components, see "How to Install the Windows PowerShell Cmdlets for Windows Azure AD and Office 365" on Petri IT Knowledgebase. Export Office 365 User Information First you need to authorize to Office 365 using an administrator account. Log in to Windows 8 and switch to the Start screen. Type powershell, make sure that Windows Azure Active Directory module for PowerShell is selected in the search results and press CTRL+SHIFT+ENTER to launch the console with administrative privileges. Give consent or enter administrative privileges if prompted. In the PowerShell console, type connect-msolservice and press Enter. In the pop-up Enter Credentials dialog, enter your Office 365 administrative username and password, and click OK. Now that we are successfully authorized to Office 365, we can run the following command to get a list of licensed users: Get-MsolUser | Where-Object { $_. isLicensed -eq... --- ### Preparing for the MCSE SharePoint 2013 Core Solutions 70-331 Exam > Taking the 70-331 MCSE SharePoint 2013 Core Solutions exam? Check out this post for tips to prepare for the 70-331 exam. - Published: 2014-02-24 - Modified: 2024-11-19 - URL: https://petri.com/exam-prep-70-331-mcse-sharepoint-2013-core-solutions/ - Categories: SharePoint - Tags: exam prep, MCSE - Article Type: Overview Taking the 70-331 MCSE SharePoint 2013 Core Solutions exam? Check out this post for tips to prepare for the 70-331 exam. Are you considering delving deeper into SharePoint 2013? Or are you recently finding yourself at the start of a SharePoint project that you don’t know much about? At Petri IT Knowledgebase, we’ve written a lot about SharePoint 2013. We have articles on everything from farm configuration to working with content types to help you learn the basics. But if you’re looking to do more, and understand more about how SharePoint works, you might want to consider studying for (and taking) the MCSE exams in SharePoint 2013. Like many of the current MCSE certifications, the MCSE: SharePoint certification includes three tests on the current Windows Server platform. In addition to your three server exams, you’ll need to take two SharePoint-specific exams: Core Solutions in SharePoint 2013 (70-331) and Advanced Solutions in SharePoint 2013 (70-332). This article gives you a roundup of training and other things you can use to help you study for and achieve the SharePoint 2013 Core Solutions (70-331) exam. Books for the Core Solutions in SharePoint (70-331) Exam I recommend that you use at least two different books to help you study for the 70-331. First, you should get a book that covers the course material and the exam outline, such as the Exam Reference from Microsoft Press. Second, you’re going to need a good reference for general administration of SharePoint 2013. Whether you prefer digital or printed books doesn’t matter. There are some great books for the SharePoint 2013 exams available in both Kindle... --- ### Creating a Windows Server 2012 R2 Cluster Shared Volume > Find out what a Cluster Shared Volume (CSV) is and how to create one in this thorough introduction. - Published: 2014-02-24 - Modified: 2024-12-03 - URL: https://petri.com/create-windows-server-2012-r2-cluster-shared-volume/ - Categories: Windows Server 2012 - Tags: cluster shared volume, Clustering, csv, Failover Clustering, Hyper-V, Scale-Out File Server, SOFS, storage, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: How To Are you down with CSV? Find out more about Cluster Shared Volume (CSV) and learn to create one in this introduction. In this article I will show you how to create a Cluster Shared Volume (CSV), the cluster active/active file system that is at the heart of Hyper-V clusters with shared block storage and the Scale-Out File Server (SOFS) architectures. Windows Server Cluster Shared Volume (CSV): Introduction Cluster Shared Volume was introduced in Windows Server 2008 R2 (W2008 R2). Before W2008 R2 Hyper-V we pretty much had to deploy one LUN on a SAN for each virtual machine. (It wasn’t a Windows requirement, but it was good practice). As you could imagine, this made self-service an impossibility, and it made SAN administration a nightmare. Careful naming was required, and I would sweat bullets when it came to decommissioning virtual machines and LUNs, hoping that I wasn’t about to accidentally delete a customer’s virtual machine that was placed on the wrong volume. CSV was added to failover clustering in W2008 R2 to provide a file system that could be shared and active across each node in the cluster. This means that you can store lots of virtual machines one a few easily managed volumes (try to have one per cluster node) and run those virtual machines across any or all of the cluster nodes. The W2008 R2 version of CSV was restricted to being used just for storing Hyper-V virtual machines. Windows Server 2012 (WS2012) expanded this to include the SOFS, and Microsoft continues to evaluate other scenarios where CSV can be of use. The high... --- ### The Best T-Shirts at RSA Conference 2014 > Attending RSA in San Francisco this week? We've created a gallery of the best free vendor T-shirts to help you get the most from your expo booth crawl. - Published: 2014-02-23 - Modified: 2024-09-04 - URL: https://petri.com/the-best-t-shirts-at-rsa-conference-2014/ - Categories: Security - Tags: RSA Conference 2014 - Article Type: Opinion Attending RSA in San Francisco this week? We've created a gallery of the best free vendor T-shirts to help you get the most from your expo booth crawl. Update: Voting is now live, so please scroll to the bottom of this post to cast your vote for the best vendor T-shirt design of RSA Conference 2014. One of the time-honored traditions of every trade show is scoping out the conference expo hall for the inevitable freebies that vendors provide in an attempt to entice show attendees to hear a sales pitch about their wares. The RSA conference is no exception to this rule, and I'm guessing that close to 100% of the vendors in the RSA expo hall will be giving out something of value. One of the most popular staples of every tech trade show is the ubiquitous free T-shirt supplied by vendors, always adorned with a vendor logo and sometimes with an attempt at humor and/or distinction. Many are forgettable, some are noteworthy, and only a few feature something so clever as to enter the vendor freebie T-shirt hall of fame. On the noteworthy T-shirt humor front, I have to tip my hat to a former employer of mine -- Windows IT Pro -- for having boxer shorts emblazoned with the phrase "100% uptime" that they gave out at an IT trade show many years ago. So in the interest of giving you a one-stop location to peruse all of the best T-shirts from #RSAC, I've started this directory of some of the more noteworthy T-shirts being given out by vendors at RSA Conference 2014, listed in alphabetical order by vendor name. This... --- ### RSA Conference 2014 Survival Guide > Attending RSA Conference 2014 in San Francisco this year? Check out our handy survival guide to get the most out of this annual IT security event. - Published: 2014-02-21 - Modified: 2024-12-03 - URL: https://petri.com/rsa-conference-2014-survival-guide/ - Categories: Security - Tags: #RSAC, B-Sides, RSA Conference, RSA Conference 2014, TrustyCon - Article Type: Overview Attending RSA Conference 2014 in San Francisco this year? Check out our handy survival guide to get the most out of this annual IT security event. We're just days away from the start of the RSA Conference, and thousands of security experts, analysts, journalists, and IT staff are en route to the Moscone Center in San Francisco as I'm typing this. Despite some ongoing controversies surrounding the show -- including RSA getting hacked themselves in 2011, and the ongoing (and more recent) debate over RSA's alleged deal with the NSA - the RSA conference remains one of the leading gatherings for IT security professionals and the vendors that want to market to them. I've attended a few RSA conferences over the years -- refer to my RSA coverage from 2008, 2009, 2011, 2012, and 2013 -- and I've always found it helpful to gather up some useful bits of information in the form of an RSA conference survival guide before I head off to the show. I put together an RSA 2013 survival guide last year, so I've decided to post an updated one this year. I'd also like to hear about some of your own RSA tips and tricks, so feel free to drop me an email or add a comment to this blog post with your suggestions. I'll be posting updates from the RSA conference show floor throughout the week, so be sure to follow the Petri IT Knowledgebase Twitter account, my own Twitter feed, and our Facebook page for all the latest on the security developments from the show. RSA Conference Social Media Guide One of the best ways to keep tabs... --- ### How to Install the Windows PowerShell Cmdlets for Windows Azure AD and Office 365 > Learn to install the Windows Azure Active Directory PowerShell cmdlets so that you can manage Office 365 from the command line. - Published: 2014-02-20 - Modified: 2024-12-03 - URL: https://petri.com/connect-office-365-using-powershell/ - Categories: Cloud Computing - Tags: Active Directory, AD, Management, Office 365, PowerShell - Article Type: How To In this handy Ask an Admin, find out how to install the Windows Azure Active Directory PowerShell cmdlets so you can manage Office 365 from the command line. How can I install the Windows Azure Active Directory cmdlets for PowerShell? For those who need to manage large Office 365 or Windows Azure AD deployments, the Azure and Office 365 management portals don’t offer enough flexibility to manage user accounts in bulk or provide automation capabilities. PowerShell can help administrators overcome these limitations. In this Ask the Admin, I’ll show you how to install the Windows Azure AD cmdlets for PowerShell, which can also be used to manage Office 365. Install Microsoft Online Services Sign-in Assistant The PowerShell cmdlets require that the Microsoft Online Services Sign-in assistant be installed on the same management machine, and be at least version 7. 250. 4551. 0 or greater. The current Release to Web (RTW) version of the sign-in assistant is 7. 250. 4303. 0, so you will need to install Microsoft Online Services Sign-In Assistant for IT Professionals BETA, which contains version 7. 250. 4551. 0, before you will be able to authorize to Office 365 using PowerShell. If you are using a 64-bit version of Windows, download the 64-bit msi. Install Windows Azure Active Directory Module for Windows PowerShell Now download the 32-bit or 64-bit version of the Windows Azure Active Directory Module for Windows PowerShell, as appropriate for you management device. Once downloaded, run the AdministrationConfig-EN msi file. Click Next in the installer dialog. Check I accept the terms in the License Terms and click Next. Click Next on the Install Location screen. Click Install to start the process. Give consent or... --- ### VMware Outlines Horizon DaaS Plans > Horizon DaaS | Check out VMware's plans for Horizon DaaS, and what new features have already been added. - Published: 2014-02-20 - Modified: 2014-02-20 - URL: https://petri.com/vmware-horizon-daas-features/ - Categories: VMware - Tags: DaaS, Desktone, EUC, Horizon, View - Article Type: News What do you know about DaaS? Check out VMware's plans for Horizon DaaS, and what new features have already been added. VMware Partner Exchange (PEX) 2014 just wrapped up, and some news out of the conference concerned Desktone, a Desktop as a Service (DaaS) offering that VMware purchased last fall. VMware recently announced that the product has been renamed as Horizon DaaS, and VMware is starting to talk about their plans for the new service. VMware also used PEX 2014 to announce that they were joining forces with Google to bring Horizon DaaS to Google Chromebooks. VMware Horizon DaaS: New Features Other than renaming the platform, VMware has also been working on adding a few new features to the Horizon DaaS product. Today the product can offer the same user experience as VMware View, which needed the View infrastructure below the DaaS product. This means that end users will be able to use the View clients and get the same user experience. It also means that it's not necessary for admins to manage both the DaaS platform and the VMware View install. This will reduce the complexity in the architectures that service providers will need to build to provide this type of DaaS offering. The newly updated Horizon DaaS offers the following benefits. Multi-Tenancy Full VDI Desktops (Windows 7, 8, XP or Linux) RDS Shared sessions desktops Windows Server desktops 2008R2 Applications services via Remote App In this initial phase VMware seems focused on enabling DaaS service provider partners in creating and developing their offerings. Back at VMworld, VMware mentioned that in the future you would likely see... --- ### Deploy a Windows 8.1 Image Onto a Surface Pro: Create Offline USB Media Within MDT 2013 > Create the offline USB media from within MDT 2013 and install a Windows 8.1 image with offline USB device media in part 2 of a series. - Published: 2014-02-19 - Modified: 2024-09-04 - URL: https://petri.com/install-windows-8-1-surface-pro-create-usb-mdt/ - Categories: Windows 8 - Tags: MDT, Microsoft Deployment Toolkit, USB - Article Type: How To In part 2 of our series, learn to create the offline USB media from within MDT 2013 and install a Windows 8.1 image with offline USB device media. In the first part of this article series, I explained what it takes to install Microsoft Deployment Toolkit (MDT) 2013, create a deployment share, and configure the deployment steps for Windows 8. 1. In this second article I’ll focus on how to create the offline USB media from within MDT, and provide some details on which USB device to use for different deployment scenarios. Required Tools On top of the components from part one of the article, you need a USB device (preferably a stick, although a USB disk might also do the trick). Now this is rather important to decide what deployment approach you will use, as that will define what USB stick you can or cannot use. If you want to deploy a fresh Windows 8. 1 from the ISO image, and maybe extend your deployment task sequence to install a series of applications once the OS is installed, any FAT32-formatted USB drive with 8gb or more will do. As the default install. wim file is below 4Gb in size, it can be saved on a FAT32 partition. If, however, you are first creating your Windows 8. 1 reference machine, taking a sysprepped image from this machine, you will not be able to use a typical USB drive, as that one is limited to files of 4Gb max in size (a custom fresh Windows 8. 1 including Office 2013 and latest Windows updates results in an image file of 6,4Gb). In that case, you need to create a multiple-partition USB... --- ### Windows Server Failover Clustering: Why Cluster Quorum Matters > Discover the function of quorums in Window Server Failover Clustering in this helpful post. - Published: 2014-02-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-failover-clustering-cluster-quorum/ - Categories: Windows Server 2012 - Tags: Clustering, Failover Cluster, Quorum, Window Server, Windows Server 2008 R2, Winndows Server 2012 R2, WS2012, WS2012R2 W2008R2 - Article Type: Overview Got a handle on cluster quorums? Find out about the function of quorums in Window Server Failover Clustering in this helpful post. There are many people, some new to clustering and many who have used the feature for years, who don’t understand the purpose of quorum in Windows clustering. The common misconception is that quorum is used to help failover happen. That’s close but not correct. Quorum exists to help a cluster understand how it should remain functioning when the heartbeats between nodes fail, probably because of a networking issue. In this article I'll explain the function of cluster quorum in Window Server failover clustering. Function of Quorum Let’s go back to basics. Every node sends a unicast heartbeat to every other node in the cluster. This heartbeat is checking for cluster node responsiveness. If a node fails to respond then it is considered offline. If a network fails, then this can cause a false-positive. That’s why we recommend having a minimum of two cluster networks. A clustering virtual adapter called NetFT automatically teams those networks transparently (you really have to go looking for it to know that it’s there) and provides the heartbeat with network path fault tolerance. But what happens if both those links go offline? Explaining Quorum with Examples The definition of “quorum” according to Oxford Dictionaries is “the minimum number of members of an assembly or society that must be present at any of its meetings to make the proceedings of that meeting valid. " Keep that in mind as we look at some cluster quorum examples. In my first example, we... --- ### Where Do I Add the Code for My Desired State Configuration (DSC) Module? > Desired State Configuration (DSC) | In part 9 of our series, discover where to add code to bring a DSC module to life. - Published: 2014-02-19 - Modified: 2014-02-19 - URL: https://petri.com/desired-state-configuration-dsc-module-add-code/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, GIT, ODATA, PowerShell, Web Server - Article Type: How To, Overview In part 9 of our series, discover where to add code to the template we've created to bring the DSC module to life! Welcome back to our in-depth series on Desired State Configuration (DSC)! In the previous post we created the templates using the free module from Microsoft called xDSCResourceDesigner for our new hotfix resource. Now we will take the template that was generated and add some sample code to bring the module to life. Editor's note: Need to catch up? Check out our previous articles in this series: Deploying a Desired State Configuration Web Host Using Powershell Deploying a Desired State Configuration Web Host Using DSC Desired State Configuration Host Deployment: Local Configuration Manager Desired State Configuration and Local Configuration Manager What Can I Configure Using Desired State Configuration? How Do I Create a Desired State Configuration? How to Publish a Desired State Configuration Using Community Desired State Configuration Resources How to Participate in the Desired State Configuration (DSC) Community Creating a DSC Resource Developing the DSC Module Code Now we can navigate to the new module files we just created and take a closer look at the file Hotfix. psm1, which is the heart of the template we just created. Inside this file, we will see that the wizard has created three primary functions that we now need to extend with the actual working logic of our module. Get-TargetResource Set-TargetResource Test-TargetResource Over the next few sections, we will proceed to define the code that is appropriate for each of these functions. As the focus of the post is to walk through the procedures of creating a DSC resource, leveraging... --- ### Microsoft, Don’t Abandon the Desktop! > There is still room for improvement and innovation on the Windows desktop. Learn why our writer thinks Microsoft shouldn't abandon desktop users just yet. - Published: 2014-02-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-dont-abandon-desktop/ - Categories: Windows 8 - Tags: desktop, Opinion, Windows 8.1 - Article Type: Opinion Learn why our writer thinks Microsoft shouldn't abandon desktop users just yet, and possible fixes that would make Windows even better. Windows 8 has seen Microsoft shift emphasis to Windows Store apps and a more touch-centric approach that has left desktop users cold. While there are some improvements to the Windows 8 desktop, such as the new File Explorer and enhancements to copy and move operations, it’s not enough to make Windows 8 a compelling choice for businesses or home users. Desktop Frustrations In the soon-to-be released Update 1, Windows 8. 1 will better integrate Windows Store apps with the desktop, a welcome change that will hopefully improve the adoption of Windows Store apps among desktop and notebook users. Despite this, most of us still spend the majority, if not all of our time, working with traditional desktop apps. And as one of those people, I still find some window management capabilities on the desktop lacking. Keep a Window on Top Imagine the situation: You have lots of open windows and you want to drag an attachment from Outlook, which is maximized to full screen, to File Explorer. You open the location in File Explorer, go back to Outlook to drag the file across, but File Explorer has disappeared. Windows doesn’t allow files to be dropped on the File Explorer icon on the taskbar, so you have to hover over the icon until File Explorer comes back into focus, and then drop the file. Not easy! There are several free third-party utilities that add a hotkey combination that can be used to keep a window... --- ### How to Deploy a Custom Windows 8.1 Image Onto a Surface Pro Via USB Media > Learn how to install a Windows 8.1 image by using offline USB device media (part of Microsoft Deployment Toolkit 2013) in part 1 of a two-part series. - Published: 2014-02-18 - Modified: 2024-12-03 - URL: https://petri.com/install-windows-8-1-image-surface-pro-usb/ - Categories: Windows 8 - Tags: Microsoft Surface Pro, USB, Windows 8.1 - Article Type: How To In part 1 of a new series, find out how to install a Windows 8.1 image by using offline USB device media – part of Microsoft Deployment Toolkit 2013 (MDT 2013). With the launch of Windows 8 in fall 2012, I wrote a series of articles around Windows 8 deployment using MDT 2012. This article has been listed as one of my top articles for a few months now, so I’m assuming Petri IT Knowledgebase readers are interested in more content on the topic. So my next batch of articles focuses on how you can deploy Windows 8. 1 onto the Surface Pro using the Microsoft Deployment Toolkit (MDT) 2013. This first article will focus on getting started, while the second part of this series will continue with the deployment by covering the specifics on how to deploy the Windows 8. 1 image by using offline USB device media, which is a built-in (but rather unknown) feature of MDT since version 2010. (Editor’s note: While this article talks about installing the Windows 8. 1 image on a Surface Pro, the described approach will also work for any other device you have on which you want to install your custom Windows 8. 1 image using offline USB media. ) Why Update Windows 8. 1 Using USB Device Media? While most organizations are using Windows Deployment Services (WDS), Microsoft Deployment Toolkit (MDT), System Center Configuration Manager (SCCM), or even non-Microsoft deployment tools, most of them are relying on a PXE boot from the network. While this approach works fine for a Surface Pro device as well, it requires you to buy a specific Surface USB-based network controller. Although it's not extremely expensive,... --- ### Presenting a Session at a VMware Users Group (VMUG) Meeting > If you have attended a VMware Users Group (VMUG) meeting in the past, then you know its value. Find out how to present at a VMUG session in this post! - Published: 2014-02-18 - Modified: 2024-09-04 - URL: https://petri.com/vmware-users-group-vmug-present-session/ - Categories: VMware - Tags: VMUG, VMware Users Group - Article Type: News Ever wanted to present at a VMware Users Group (VMUG) session? Check out this post, in which we discuss how and what to present at a session. Have you ever attended a VMware Users Group (VMUG) meeting? If so then you already understand the value and why they are pretty great. This are events, typically put on by VMware customers, are focused on people using its technology. The best VMUGs are not a two-hour sales pitch. But what could you be doing to make them even better? VMUG Sessions: What Can You Present? You do not have to be implementing the world's largest cloud or the most complicated VDI environment to present a session at a VMUG. The fact is most customers want to hear about projects that they are doing or considering – the items that everyone is working on. The value comes in others learning what you did or what you learned in the process. This helps people think differently about projects and learn about other options. Think of it as a VMware version of "paying it forward. " By sharing, you are helping others and they will be open to sharing with others in the future. By keeping this process going you are likely to benefit from a fellow VMUG presentation at a future meeting. This might be something like how we virtualize our SQL environment and you happen to be starting a project to test host SQL on VMware at your office. Speaking at VMUG. Will Others Think It's Interesting? YES, the answer is a loud yes! Sure, there are a few vendors... --- ### How Do I Create My Own Desired State Configuration (DSC) Resource? > Desired State Configuration (DSC) | In part 8 of our series, learn to take DSC a step further and create your own Desired State Configuration resource. - Published: 2014-02-17 - Modified: 2024-11-19 - URL: https://petri.com/create-desired-state-configuration-dsc-resource/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, GIT, ODATA, PowerShell, Web Server - Article Type: How To Want to give making your own DSC resource a whirl? Check out part 8 of our super-series on Desired State Configuration! After working with Desired State Configuration (DSC) for a little time, you may get to the point where you consider the steps required to create your very own DSC resource. And given that you have already benefited from the community, you may want to share your work as a small thank you? And you never know, someone might actually find some tweaks that would add just a little extra to your efforts, helping you to learn new tricks and meeting new personalities. Editor's note: Need to catch up? Check out our previous articles in this series: Deploying a Desired State Configuration Web Host Using Powershell Deploying a Desired State Configuration Web Host Using DSC Desired State Configuration Host Deployment: Local Configuration Manager Desired State Configuration and Local Configuration Manager What Can I Configure Using Desired State Configuration? How Do I Create a Desired State Configuration? How to Publish a Desired State Configuration Using Community Desired State Configuration Resources How to Participate in the Desired State Configuration (DSC) Community Why Create a Desired State Configuration Resource? In this post I am going to cover a scenario that I recently had. As I rebuilt my lab, I started to go through a few "what ifs. " What if I could possibly leverage DSC to get all these ever-so-important hotfixs for Hyper-V and clustering (that for some reason never appear in Windows Update) automatically and consistently applied on my hosts? After a quick look around the web, it did not take... --- ### Windows Server 2012 Scheduled Cluster Tasks > Learn about scheduled cluster tasks in Windows Server 2012 and how to implement them in this helpful how-to article. - Published: 2014-02-17 - Modified: 2024-11-19 - URL: https://petri.com/windows-server-2012-scheduled-cluster-tasks/ - Categories: Windows Server 2012 - Tags: Clustering, Failover Clustering, scheduled tasks, Windows Server 2012 R2, WS2012, WS2012R2 - Article Type: Overview Want to schedule against the cluster, instead of a per-server job? Learn about scheduled cluster tasks in WS2012 and how to implement them. A little-known feature of Windows failover clustering is the ability to schedule tasks against the cluster, instead of the normally per-server job. In this post I will explain scheduled cluster tasks and show you how to implement them. Why Do We Need Scheduled Cluster Tasks? Normally we run a scheduled task on a single machine. However, clusters are a little different. A cluster is a pool of computer resources that one or more highly available (HA) resources (file shares, SQL databases, virtual machines, and so on) will run on. The resources are mobile; a SQL database might be failed over on rare occasions or a virtual machine might live migrate on a regular basis. We might need a task to run on one or all of the cluster nodes. Maybe we don’t care which node. Maybe we need the task to follow a HA resource around the cluster. Or maybe we need the task to be run simultaneously on every node. And that’s why Microsoft added clustered tasks in Window Server 2012 (WS2012). Types of Clustered Task There are three kinds of clustered task: Any Node: One scheduled task is created in the cluster, and it runs on one node in the cluster. This might be useful if you have a query type of task or an operation that is run cluster-wide from a single point. Resource-specific: One instance of the scheduled task is created and bound to a HA cluster resource. The... --- ### Configuring SSL on SharePoint Sites > Discover how to configure SSL on your SharePoint sites, including importing a certificate into SharePoint Webserver, configuring IIS bindings, and more! - Published: 2014-02-17 - Modified: 2024-09-04 - URL: https://petri.com/configure-ssl-sharepoint-sites/ - Categories: SharePoint - Tags: Editor's Pick, IIS, SSL - Article Type: How To Configuring SSL on your SharePoint sites is a snap with our tutorial! Import a certificate into SharePoint Webserver, configure IIS bindings, and more! With the advent of SharePoint 2013 some new best practices on how to deploy SharePoint sites are being released. The new best practice is to deploy web applications with secure sockets layer (SSL). More importantly, if you plan on using SharePoint apps or any Exchange site mailbox features, you must have SSL enabled on all your sites. In this article I’ll show you how to configure SSL on your SharePoint sites. Obtain a Certificate Before you begin configuring IIS and SharePoint, you’ll first need to obtain a certificate (if you already don’t have one). To obtain a certificate you will need to generate a certificate-signing request (CSR) from the webserver, which you then supply to your SSL vendor of choice. Alternately, you can create a self-generated certificate. If your server is going to be public facing, I would recommend obtaining a commercial certificate that is widely trusted rather than a domain-issued certificate. Once a certificate is obtained, it will need to be imported into the webserver for use by the SharePoint sites. If you have an existing certificate that is used for other servers, such as a wildcard certificate, that certificate can be exported into a . pfx file and imported to the SharePoint webserver. I prefer to use wildcard certificates mainly because it’s one certificate that I need to manage and renew rather than having several specific SSL certificate files. For this article I am using an existing wildcard certificate that was exported from IIS on a... --- ### Why Tighter Integration Between Windows Store Apps and the Desktop Is Important > Windows Store apps and desktop integration will be important if the notebook and desktop user base is to adopt them. Check out this op-ed on the topic! - Published: 2014-02-13 - Modified: 2024-09-04 - URL: https://petri.com/windows-8-1-store-apps-desktop-integration/ - Categories: Windows 8 - Tags: apps, Metro, Opinion, Windows 8, Windows 8.1, Windows Store - Article Type: Opinion Windows Store apps and desktop integration need to happen if the notebook and desktop user base is to adopt them. Find out more in this op-ed post. One of the biggest frustrations with Windows 8, and its successor Windows 8. 1, is the jarring disconnect between Windows Store apps and the desktop. Not surprisingly, Microsoft has placed an emphasis on Windows Store apps in Windows 8 by making them the default association for many common file types. Meaning, for example, that if users open a jpg or mp3 file, they will automatically be taken to the associated built-in Windows Store app – Photos and Music respectively. I have nothing against the new apps, and in some cases they are attractive alternatives to the desktop apps they replace. But along with many others, I find it a nuisance that Windows Store apps run in an environment that has limited interoperability with the desktop, which is where I still spend all of my time. Application Switching While there are some improvements in Windows 8. 1 in terms of how Windows Store apps can be viewed alongside other apps or the desktop, it’s still clumsy compared to window management on the desktop. But most importantly, if there is an open Windows Store app, I’d like to be able to see that app along with other running programs on the desktop taskbar, so that I know that it’s there (and that I don’t need to go looking for it somewhere else, which is currently the case). There is the option to press ALT+TAB, and select or scroll through all running programs, including Windows Store apps. But for whatever reason, this... --- ### Best Free VMware Resources > Check out our list of some great free VMware resources for VMware, including videos, Hands-on Labs, tools, and more! - Published: 2014-02-13 - Modified: 2014-02-13 - URL: https://petri.com/best-free-vmware-resources/ - Categories: VMware - Tags: HOL, Lab, Learning, vmware, VMworld, vSphere - Article Type: Overview Need to add to your VMware toolbox? Check out our list of some great free VMware resources for VMware, including videos, Hands-on Labs, tools, and more! Attention all VMware admins: There are a bunch of great free VMware resources for you! Are you using what vendors and the community are providing? Most of these types of free resources are aimed at educating you or making your daily support duties easier. For this post, I have put together a short list of ones that I like and think are helpful to others. Top Free VMware Resources VMworld Videos Not everyone has the opportunity to attend VMworld each year. In the past you were on the outside if you could not attend – you missed out on all the great sessions, and the only other option was to pony up $600 to get the rights to watch the recorded sessions. For many, this is a lot of money simply to watch videos. The good news is that in 2012 – and even more in 2013 – VMware is offering many of these sessions for free to the public. They are being posted to the VMworld Youtube Channel. These videos are usually the most popular sessions, which should make them of interest to most VMware users. I think that admins can learn a lot from the VMworld sessions and also stay current on what new features and products are being offered from VMware. This valuable knowledge that you can use to help yourself and your company. VMware Hands-on Labs (HOL) Like the VMworld sessions, if you cannot attend the conferences, you missed... --- ### Windows Server 2012 R2 Hyper-V Automatic Virtual Machine Activation > Automatic Virtual Machine Activation | Learn to use Automatic Virtual Machine Activation (AVMA) to auto-activate the guest OS installations of Hyper-V VMs. - Published: 2014-02-12 - Modified: 2024-09-04 - URL: https://petri.com/automatic-virtual-machine-activation-avma-windows-server-2012-r2-hyper-v/ - Categories: Windows Server 2012 - Tags: Activation, Automatic Virtual Machine Activation, AVMA, Cloud, Hyper-V, KMS, licensing, networking, virtual machine - Article Type: Overview Check out this post and learn to use Automatic Virtual Machine Activation (AVMA) to auto-activate the guest OS installations of Hyper-V VMs! Today I will discuss how you can use a new feature in Windows Server 2012 R2 Hyper-V called Automatic Virtual Machine Activation (AVMA) to automatically activate the guest OS installations of Hyper-V virtual machines. Why Automatic Virtual Machine Activation Is Required Imagine a Hyper-V installation that is large or complex. There might be many isolated networks. Those networks could be isolated using either VLANs or Hyper-V Network Virtualization (HNV). There might be many Active Directory forests that have no external trusts. These are very real designs that must be implemented by large enterprises and hosting companies that are building multi-tenant clouds. Anyone who has legally deployed Windows (hopefully that is all of you) since the days of Windows XP has had to activate their product key. There are three ways to do an activation: Online: Your machine connects directly to a Microsoft service on the Internet and activates. This is okay for a few installations, but it's not scalable. Offline: If your activation fails or the machine is offline then you can call the Microsoft clearing house to perform the activation over the phone. This method is intended for rare occasions. I hope this isn’t what you plan for a network with dozens, hundreds, or even thousands of virtual machines. Key Management Service: A Key Management Service (KMS) installed, activated using a special KMS key, and advertised on the network. New machines are directed to the KMS instead of the Microsoft online service to activate. This is more... --- ### VMware and Google Join Forces to Bring Windows Apps to Chromebooks > Google and VMware join forces to bring VMware Horizon DaaS to Google Chromebooks. Will this partnership have what it takes to make inroads against Microsoft? - Published: 2014-02-12 - Modified: 2024-09-04 - URL: https://petri.com/vmware-and-google-join-forces-to-bring-windows-apps-to-chromebooks/ - Categories: Google Cloud Platform - Tags: Editor's Pick, Google Chromebook, News, VMware Horizon, VMware Horizon DaaS - Article Type: News Google and VMware join forces to bring VMware Horizon DaaS to Google Chromebooks. Will this partnership have what it takes to make inroads against Microsoft? Google released their first Chromebook laptop several years ago, and initial sales (and adoption) were modest. Designed to run Google's Chrome OS software and revolving around web-enabled access to Google's rich universe of online SaaS applications like Google Apps, the Chromebook was initially dismissed by many, but Google has steadily continued to pour resources into their Chromebook efforts. Google has continued to refine their Chromebook vision over the last few years, ranging from introducing newer and more capable Chromebooks from Acer, HP, and Toshiba, to using Chromebooks as part of their educational initiatives. Now Google has taken one of their boldest steps yet at challenging Microsoft's client OS dominance in the enterprise by announcing an agreement with VMware to bring the VMware Horizon Desktop as a Service (DaaS) product to Google Chromebooks. VMware Horizon DaaS leverages technology from Desktone, which VMware acquired in October 2013.   The new HP Chromebook 14, one of the newest laptops running Chrome OS. Photo: HP According to a VMware statement announcing the news, VMware Horizon DaaS will allow Chromebook users to ". . access their Windows applications, data and desktops using VMware's Blast HTML5 technology from a Web-based application catalog on their Chromebook... " accessible via a Remote Desktop Services (RDS) or Virtual Desktop Infrastructure (VDI) connection. The timing of this Google and VMware partnership news is interesting, given that it's clearly aimed at getting cost-conscious IT departments still using ancient, underpowered PC hardware running Windows XP to embrace Chromebooks and VMware Horizon... --- ### How to Participate in the Desired State Configuration (DSC) Community > Desired State Configuration (DSC) | Learn to use GitHub, PowerShell, and the DSC community libraries to your advantage. Part 7 of a series. - Published: 2014-02-12 - Modified: 2024-09-04 - URL: https://petri.com/desired-state-configuration-dsc-github/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, ODATA, PowerShell, Web Server - Article Type: How To In part 7 of this multi-part series, learn to use GitHub, PowerShell, and the DSC community libraries to your advantage! As you begin to leverage Desired State Configuration (DSC) in evaluations, lab, or production, you will ultimately need to consume and create your own DSC resources. Leveraging and supporting the community is a really great place to learn what you can do and share your own work with others who may help you develop these resources even further. As IT pros, we sometimes need to take on a tiny persona of a developer as we create scripts to automate our day-to-day jobs. In this post I will walk you through the procedure of working with these repositories, enabling you to version control your work, and even have it pulled back into the main community library. Editor's note: Need to catch up? Check out our previous articles in this series: Deploying a Desired State Configuration Web Host Using Powershell Deploying a Desired State Configuration Web Host Using DSC Desired State Configuration Host Deployment: Local Configuration Manager Desired State Configuration and Local Configuration Manager What Can I Configure Using Desired State Configuration? How Do I Create a Desired State Configuration? How to Publish a Desired State Configuration Using Community Desired State Configuration Resources DSC and GitHub We are going to start off with a quick introduction to GitHub, with which we will connect and access the PowerShell. org repository of DSC resources. These resources are maintained and updated quite regularly. Browsing this repository, you will see that a number of interesting DSC resources are already available... --- ### Connect to Windows Azure Resources Using a VPN: Install Client and Root Certificates, Configure VPN > Windows Azure Point-to-Site and VPN pt 2| Create a self-signed client certificate, install the root/client certificates, and configure the VPN connection. - Published: 2014-02-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-azure-vpn-client-root-certificate/ - Categories: Cloud Computing - Tags: point-to-site, Virtual Private Network, Windows Azure, Windows Server 2012 - Article Type: How To In part 2, learn to create a self-signed client certificate, install the root/client certificates, and configure the VPN connection to Windows Azure. In part one of this two-part series, I showed you how to set up a point-to-site VPN in Windows Azure and create a self-signed root certificate to upload to Azure. A point-to-site VPN connection can be useful for connecting directly to Azure server resources from remote devices or in situations where a site-to-site IPsec VPN is not available, or isn't possible to set up because the technical requirements cannot be met. In part two, I’ll show you how to create a self-signed client certificate, how to install the root and client certificates, and finally, how to configure and test the VPN connection from your on-premise or remote client to Windows Azure. Windows Azure VPN: Create a Client Self-Signed Certificate Now we need to create a certificate for the VPN client machine. You should create a unique client certificate for each device that will connect to the Azure virtual network. The following makecert command should be run on the same machine where the root certificate was created. Open a command prompt in the directory where you want to save the client certificate. makecert. exe should be located in the same directory. To open a command prompt, right-click the directory folder while holding Shift, and select Open command window here from the menu. Type makecert. exe -n "CN=WINDC1Azure" -pe -sky exchange -m 96 -ss My -in "CONTOSO2" -is my -a sha1 and press Enter. In this example, I’m creating a client certificate for use from a DC called WINDC1Azure. You can... --- ### Using Office 365 ProPlus with the Office Deployment Tool > Learn to download the Office 365 Pro Plus install files and create a package file that you can reuse in App-V (Microsoft Application Virtualization). - Published: 2014-02-11 - Modified: 2024-09-04 - URL: https://petri.com/using-office-365-proplus-with-office-deployment-tool/ - Categories: Cloud Computing - Tags: Office 365 Pro Plus, Office Deployment Tool - Article Type: Overview In part 2 of this series, download the Office 365 Pro Plus install files and create a package file that you can reuse in Microsoft App-V! In the first part of this two-part article series on Office 365 Pro Plus, I started by explaining what Office 365 ProPlus is, followed by a quick walkthrough of the Click-To-Run installation approach. While the super-easy click-to-run install is very useful for home offices or SMB-segment customers, it is not the most advised deployment approach for larger organizations. Another concern companies of such size have is control. The IT department wants to define who should get the Office 365 Pro Plus components installed and who not.  That’s where the integration between the Office 365 Pro Plus cloud-based installation and your existing deployment solution can come together. Today I'll discuss how to use Office 365 ProPlus with the Office Deployment Tool. Office 365 ProPlus and the Office Deployment Tool The magic tool behind this integration is the Office Deployment Tool. It’s actually a small exe-file, that allows you to do the following: Download the Office 365 Pro Plus install files from the Microsoft cloud. Deploy, uninstall and update by using command-line script (*). Create a package file that you can reuse in App-V (Microsoft Application Virtualization engine). (*) the command-line based install allows you to integrate with about any existing corporate deployment tool you might already have: Active Directory Group Policy software application deployment Integrate as task sequence in MDT 2012/2013 (Microsoft Deployment Toolkit) Create an application package you can publish from SCCM 2012 / 2012 R2 Create an installation command-line sequence in ANY OTHER tool you are using... . --- ### 4 Things Every VMware Admin Should Know How to Do > Check out our list of four important things that every VMware admin should know how to perform, including ESXTOP and more! - Published: 2014-02-11 - Modified: 2024-09-04 - URL: https://petri.com/what-vmware-admin-should-know/ - Categories: VMware - Tags: ESXi, ESXTOP, troubleshooting, vCenter - Article Type: How To Do you know EXSTOP? You should! Check out our list of four important things that every VMware admin should know how to perform! Over the years I've come across a few things I think every VMware admin should know how to do. These are tasks that are important to know when building VMware environments or troubleshooting issues. It is sometimes surprising to see the number of admins that are lacking in some of these skills. 4 Things Every VMware Admin Should Know 1. ESXTOP This is a somewhat hidden gem to many VMware admins, especially those that come from a Windows server background. ESXTOP is a performance statistics reporting tool much like the top version included with Linux-based distributions. The VMware version is focused on presenting a ton of virtualization-specific details. The statistics are primarily focused on details around virtual machines, disks, datastores, network, CPU, and memory, which are all important resources and items with any VMware environment. Should you be experiencing a performance issue or just want to check up on things, I think that firing up ESXTOP should be one of the first things you do. The image below shows the simple manner in which stats are provided for you. Once you understand the data that is being presented, you can use this powerful tool to find issues in a short amount of time. VMware ESXTOP 2. vCenter Alarms This is another topic that seems pretty easy and I would assume that most VMware admins know about it. Within vCenter there are many alarms that can be set to alert... --- ### Create a File Share in Windows Server 2012 R2 Using Server Manager > Learn how to use Server Manager in Windows Server 2012 R2 to set up a new file share with the help of this awesome Ask an Admin article! - Published: 2014-02-11 - Modified: 2024-09-04 - URL: https://petri.com/create-file-share-windows-server-2012-r2-with-server-manager/ - Categories: Windows Server 2012 - Tags: Ask an Admin, File and Print Services, file management, File Server, file share, Windows Server 2012 R2 - Article Type: How To Learn how to use Server Manager in Windows Server 2012 R2 to set up a new file share with the help of this awesome Ask an Admin article! Server Manager in Windows Server 2012 and R2 provides an easy way for administrators to create file shares. In this Ask an Admin, I’ll show you how to create new file shares using Server Manager and configure advanced options. Create a File Share Using Server Manager For the purposes of this article, I’m using Windows Server 2012 R2 with the File Server and File Server Resource Manager (FSRM) sub-roles installed on my server. This gives me access to some of the advanced configuration options when creating a new file share. Log on to Windows Server with a local administrator account: Open Server Manager using the icon on the desktop taskbar, or from the Start screen. In the left pane of Server Manager, click File and Storage Services. In the column to the right, click Shares. To the right of Shares in the main window, click the Tasks menu and New Share. In the New Share Wizard, select the SMB Share – Advanced profile and click Next. On the Select the server and path for this share screen, make sure that Select by volume is selected under Share location, and then chose the volume where you want to create the new share. Now click Next. Create a new file share using Server Manager. On the Specify share name screen, type a name for the new share in the Share name box and click Next. The local and remote paths will... --- ### Windows Server Failover Cluster Validation > Validate a new or modified Windows Server Failover Cluster configuration and find out what makes a supported cluster. - Published: 2014-02-10 - Modified: 2024-11-19 - URL: https://petri.com/validate-windows-server-failover-cluster/ - Categories: Windows Server 2012 - Tags: Clustering, Failover Clustering, WS2012, WS2012 R2 - Article Type: Overview Need to validate a Windows Server failover cluster? Find out what makes a supported cluster and learn to validate a Windows Server cluster configuration. In this article I will discuss what makes a supported cluster, and how you can validate a new or modified Windows Server Failover Cluster configuration. The Importance of Cluster Validations The purpose of a failover cluster is to provide high availability (HA). A mission critical service running on a cluster assumes that the cluster is stable. A Hyper-V cluster must be rock solid because there is more than just one service running on that cluster – there are lots of services running across the collective of HA virtual machines. Those who remember the days of Window Server clustering prior to Windows Server 2008 (W2008) will know that acquiring a cluster was an expensive ordeal. You could not just go out and purchase any old server and storage. Microsoft only supported failover clustering on validated and certified bundles. On the plus side, this meant that every aspect of the hardware was tested by the manufacturer and Microsoft. On the downside, these kits were more expensive than the sum of their parts. This all changed with the release of Windows Server 2008. Now it is up to the architect and implementer of the failover cluster to ensure that the configuration can be supported by Microsoft. Windows Server Cluster Support Requirements Now when you deploy a Windows Server failover cluster there are two requirements to receive support from Microsoft. The first is that all of the hardware must have passed certification tests from Microsoft and be... --- ### Using the PowerShell CIM Explorer > CIM Explorer | Download, install, and learn how to use the PowerShell CIM Explorer in this helpful article. - Published: 2014-02-10 - Modified: 2024-11-19 - URL: https://petri.com/using-the-powershell-cim-explorer/ - Categories: PowerShell - Tags: CIM Explorer, CIM-WMI, Intermediate - Article Type: Overview Download, install, and learn how to use the free PowerShell CIM Explorer add-on with the help of this handy post. One of the major changes when PowerShell 3. 0 was released was the introduction of the CIM cmdlets. Instead of querying WMI using RPC and DCOM, which is not very firewall-friendly, we can query the same information using the WSMAN protocol. This means we only have to work about a single port. The cmdlets are just as easy to use as their WMI counterparts, even if the output looks a bit different. The challenge with WMI, and the fact that we’re using CIM doesn’t change much, is discovery. What are the namespaces, classes, and properties? In the past you could get your hands on any number of WMI explorers, but those rely on the same RPC/DCOM nightmare we’re trying to move away from. Fortunately, Microsoft has released a free CIM Explorer add-on to the PowerShell ISE. CIM Explorer Setup Download the CIM Explorer add-on and be sure to read the install notes. You will need Windows Management Framework 3 or higher, i. e. PowerShell v3, and the PowerShell ISE. That shouldn’t be too difficult on a client. Of course, any remote computer you want to query needs to have PowerShell remoting enabled, but you probably have that anyway. Download the zip file, extract the MSI file, and launch it. Follow the steps in the wizard. If the PowerShell ISE is open during the install, you will need to close and re-open it. One thing that I’m not too keen on is that the setup will... --- ### Using Community Desired State Configuration Resources > Desired State Configuration (DSC) | Learn to use community-shared DSC resource providers in part six of this multi-part series. - Published: 2014-02-10 - Modified: 2024-09-04 - URL: https://petri.com/using-community-desired-state-configuration-resources-dsc/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, GIT, ODATA, PowerShell, Web Server - Article Type: Overview Learn to use community-shared Desired State Configuration (DSC) resource providers in part six of this series. What we can accomplish with the provided resources for our Desired State Configuration is quite impressive, but when we start to consider some of the more complex settings we would like to start managing while leveraging this fantastic tool, we have really two options open to us: Roll our own resource provider Leverage some community-shared resource providers Editor's note: Need to catch up? Check out our previous articles in this series: Deploying a Desired State Configuration Web Host Using Powershell Deploying a Desired State Configuration Web Host Using DSC Desired State Configuration Host Deployment: Local Configuration Manager Desired State Configuration and Local Configuration Manager What Can I Configure Using Desired State Configuration? How Do I Create a Desired State Configuration? How to Publish a Desired State Configuration Community Resources There are already a number of new resources available for us to add to our configuration shared by the community, a number of which can be located on the PowerShell. org GITHUB account. Some of the current resources include: GlobalAssemblyCache CertificateStore FirewallRule NetworkAdapter Pagefile PowerPlan SetExecutionPolicy HostFile How Do We Use Community DSC Resources? Of course the community offerings are fantastic, but how do we use these resources in our configurations? The first step, of course, is to download them to your workstation (I will cover the correct way to do this using GIT in a following post, but for now just grab the precreated ZIP file, unblock it, and extract its content to your... --- ### Configure Windows Azure to Accept Point-to-Site VPN Connections > Discover how to connect to Windows Azure using a point-to-site SSTP virtual private network (VPN) in part 1 of a new series. - Published: 2014-02-06 - Modified: 2024-09-04 - URL: https://petri.com/configure-windows-azure-point-to-site-vpn-connections/ - Categories: Cloud Computing - Tags: cloud computing, Virtual Private Network, Windows Azure, Windows Server 2012 - Article Type: How To In part 1 of a new series, find out how to configure Windows Azure to accept point-to-site VPN connections from WS2012. Microsoft introduced point-to-site VPN connections to Windows Azure in 2013, and they are currently available as a preview feature, allowing customers to connect individual on premise servers, or remote devices, to Azure via an SSTP VPN. In the first of this two-part series, I’ll show you how to configure Azure to accept a point-to-site VPN connection from Windows Server 2012 and other supported remote devices, so that you can access Azure resources. What Is the Difference Between Site-to-Site and Point-to-Site VPNs in Windows Azure? The key advantage of point-to-site VPNs is that Secure Socket Tunneling Protocol (SSTP) is used, so NAT firewalls can be traversed and a dedicated public-facing IPv4 address isn’t required. Site-to-site VPNs offer higher bandwidth connections to Azure, offer more flexibility, and use IPsec; so require a network edge router with a spare public-facing IPv4 address. Site-to-site VPNs to Azure are always-on and don’t require any configuration of individual on premise clients or servers. They also allow bidirectional communication, so a server running on Azure can initiate a connection to a server running on an on-premise network. Configure a Point-to-Site VPN in Windows Azure Let’s start by configuring VPN support in the Azure management portal. Login to the Azure management portal. In the blue panel on the left, click Networks. Now click +NEW in the grey bar at the bottom of the portal and click Custom Create in the pop-up dialog. In the Create a Virtual Network dialog, give the... --- ### Options for Protecting VMware vCenter Server > VMware vCenter Server | Learn about how to increase the uptime in vCenter Server, an important part in highly available (HA) environments, - Published: 2014-02-06 - Modified: 2014-02-06 - URL: https://petri.com/vmware-vcenter-server-increased-high-availability/ - Categories: VMware - Tags: HA, High Availability, vCenter, vmware - Article Type: Overview In this post, learn why VMware vCenter Server is a necessary part in a vSphere environment and ways you can make it highly available. The VMware vCenter Server is an important function in a vSphere environment, and it needs to be highly available. Without vCenter, you will be challenged on managing your environment and some features will not be available. In today's article, I will discuss some of the options for increasing the availability of your vCenter Server. Why VMware vCenter Server Is Necessary vCenter Server has always been important, but the management features become even more vital as customers move past server virtualization. The vCenter can become a single point of failure if not designed to meet requirements when implementing additional management layers that rely on vCenter, such as vCloud Suite or Horizon Suite. In these cases, if the vCenter Server was unavailable many operations would not be work, such as the following. Horizon Suite – If vCenter was unavailable, the system would be unable to provision any new desktops. Sure, you might not be creating any new desktops during this outage, but if you are using linked clones that are destroyed on logout, this would be a huge issue. vCloud Suite – You would have different services affected depending on whether you are still using vCloud Director or are using vCAC. The cloud layer would be unable to provision any new VMs, and this would be out of your control because the idea of self-service means that you are not notified when someone needs a new VM. Other tasks such as console access or ability to edit VM settings... --- ### Disable Windows Store App Updates in Windows 8.1 > Discover how to disable automatic updates for Windows Store apps in Windows 8.1 using the GUI or Group Policy. - Published: 2014-02-06 - Modified: 2024-09-04 - URL: https://petri.com/disable-windows-store-app-updates-windows-8-1/ - Categories: Windows 8 - Tags: Windows Store, Windows Update - Article Type: How To Make those automatic updates less... well, auto. Learn to disable automatic updates for Windows Store apps in Windows 8.1 using the GUI or Group Policy. How do I disable Windows Store app updates? By default Windows 8. 1 automatically downloads and installs updates for Windows Store (Modern UI) apps without any notification. This behavior can be changed, and in this Ask the Admin I’ll show you how to do this using the GUI and using Group Policy. In most situations, automatic updating Modern UI apps can only be a good thing. But there might be some situations where you want to temporarily or permanently disable automatic updates. Disable Automatic Updates Using the GUI To disable automatic updates for Modern UI apps using the GUI, login to Windows as a local administrator. Switch to the Start menu and click the green Store icon. Once the Windows Store has opened, move the mouse to the right of the display until the Charms Bar appears. On the Charms Bar, click Settings. Under Settings, click App updates. On the App updates screen, change Automatically update my apps to No. Click the arrow in the top left to go back to the Windows Store. Disable automatic updates for Windows Store apps in Windows 8. 1. Disable Automatic Updates Using Local Computer Policy To disable automatic Modern UI app updates in Windows 8. 1, you can enable the Turn off Automatic Download and install of updates setting in Group Policy. To access local computer policy, you need to be using Windows 8 Professional or Enterprise editions. Switch to the Start screen, type mmc... --- ### How to Deploy Office 365 ProPlus > Office 365 ProPlus | In this helpful post, discover what Office 365 ProPlus is and how you can integrate it in your enterprise environment. - Published: 2014-02-05 - Modified: 2024-09-04 - URL: https://petri.com/deploy-office-365-proplus/ - Categories: Cloud Computing - Tags: Office 365 Pro Plus - Article Type: How To Are you caught up on Office 365 ProPlus? Find out what is (and what it isn’t), and how you can deploy it in your enterprise environment! With many companies migrating to Microsoft’s Office 365 nowadays, mostly already knowing it is the cloud version of Exchange Server 2013, SharePoint Server 2013, and Lync Server 2013, I often get questions about Office 365 ProPlus and how it relates to other Microsoft server and online products. So I thought I would dedicate an article to it, explaining what Office 365 ProPlus is (and what it isn’t), and how you can integrate/deploy it in your enterprise environment. What Is Office 365 Pro Plus? I’ll try to give you my personal impression on what Office 365 Pro Plus is, based on feedback I've received from customers or while presenting on this topic at conferences. Office 365 ProPlus is not: a new name for the Office 365-hosted platform a new name for Office Web Apps a new version of Office 2013 Office 365 ProPlus is/has: similar to the Office 2013 suite, but slightly different a cloud-based offering of the standard Office 2013 desktop applications (i. e. , Word, Excel, Powerpoint, Outlook, OneNote, Publisher, Access, Lync) all or nothing (you can’t just opt in for only Word or Excel, for example) features subscription-based licensing as part of other Office 365 plans So basically I could explain Office 365 ProPlus as "identical to the typical Office 2013 desktop applications suite you already know, but offered through an Office 365 subscription. " Benefits of Office 365 Pro Plus So, now you know what Office 365 Pro Plus is – and you've... --- ### How to Publish a Desired State Configuration > Desired State Configuration (DSC) | In part 5 of our series, learn to take a .MOF file and publish it to the pull server. - Published: 2014-02-05 - Modified: 2024-09-04 - URL: https://petri.com/publish-desired-state-configuration/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, ODATA, PowerShell, Web Server - Article Type: How To We're back with our series on Desired State Configuration (DSC)! In part 5, learn to take a .MOF file and publish it to the pull server. The work is almost done! Our configuration has been generated using a simple hash table, offering a really easy and flexible method to build up customized configurations without the hassle of many different configurations to be maintained. After all, that would almost defeat the objective, as we would surely end up with having to manage these to be consistent! Editor's note: Need to catch up? Check out our previous articles in this series: Deploying a Desired State Configuration Web Host Using Powershell Deploying a Desired State Configuration Web Host Using DSC Desired State Configuration Host Deployment: Local Configuration Manager Desired State Configuration and Local Configuration Manager What Can I Configure Using Desired State Configuration? How Do I Create a Desired State Configuration? After we generated our configurations, we were provided with a . MOF file for each server in the table. Our final task is to take this file and publish it to our pull server, so that the nodes can pick up the instructions held in the file and get on with the work of implementing our configurations. Publishing the . MOF File You might be forgiven to think all that you need to do is simply copy over the new . MOF files to the pull servers distribution folder, but that really is only part of the story. First, the correct location to drop the . MOF files will depend on how you configured your pull server (but if you followed my posts, then this will be C:Program FilesWindowsPowerShellDscServiceConfiguration)... . --- ### Naming Standards in a Window Server Cluster - Published: 2014-02-05 - Modified: 2024-09-04 - URL: https://petri.com/window-server-failover-cluster-naming-conventions/ - Categories: Hyper-V - Tags: Clustering, Failover Clustering, High Availability, networking, storage, Windows Server, WS2012, WS2012 R2 - Article Type: Overview What's in a name? Learn to standardize the naming of Windows failover cluster components in this helpful how-to article. Windows failover cluster is made up of lots of pieces. Figuring out this architecture or troubleshooting a cluster can be very difficult without some good nomenclature. In this article I will share what I do to standardize the naming of those Windows cluster components. Why Have Naming Standards? Think of all that makes a cluster: LUNS on SAN or SMB 3. 0 shares Volumes in Disk Manager Disks in Failover Cluster Manager Cluster Shared Volume (CSV) mount points NICs in a host or server Networks in Failover Cluster Manager There are a lot of pieces making up the high availability architecture. Once it’s built, you often never look at those pieces for a long time... at least not until something goes wrong. Imagine a build where: a LUN is created in SAN called something random that LUN is mounted in the hosts and formatted as New Volume 1 the disk is attached to the cluster and called Available Disk 1 you convert the disk into a CSV and it is left with a default (useless) name Now imagine that there are 12 such LUNs in a 6-node Hyper-V cluster, and they’ve all got random names. Consider how complex this could be to understand if no naming standards were applied! Or imagine that you’ve gotten alert that something has happened to a year old cluster and you need to start figuring out what’s what. Maybe you’re a consultant or a new-hire visiting a cluster for... --- ### How Do I Create a Desired State Configuration? > Desired State Configuration (DSC) | In part four of our series, learn to combine provided resources to define a Desired State Configuration. - Published: 2014-02-04 - Modified: 2024-09-04 - URL: https://petri.com/create-desired-state-configuration/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, ODATA, PowerShell, Web Server - Article Type: How To We're back with more DSC! In part four, learn to combine provided resources to define a Desired State Configuration. Over the last number of posts, we have taken a look at all the key concepts which we combine to implement our Desired State Configuration (DSC). We began with two different methods of implementing a pull server to host our DSC configurations: using a simple PowerShell Script and with a new Resource Provider for DSC published by Microsoft to implement the pull Server. With our server online, we then changed the focus over to our nodes, where we reviewed the procedures needed to create the configurations necessary to set our nodes as pull clients to the server. We also spent a little time to consider what we may need to do, if the node had a requirement to be placed into “Maintenance Mode. " But all of this work is of no value if we do not understand what we can actually manage as part of a Desired Configuration, therefore we reviewed all the “Resource Providers” that Microsoft included in the solution, ready for us to consume. Now we need to take this next step and combine these resources to define our Desired Configuration. We also need to publish this to the pull server, so that our configured nodes can retrieve their respective configurations and apply as defined in the configuration. Sample Configuration Building from our initial configuration sample, we can now start to consider how to leverage PowerShell to assist in creating a more dynamic DSC configuration for our servers. Previously we illustrated... --- ### Sysprep Windows Server 2012 Faster with /mode:vm Switch > Use the new /mode:vm switch in sysprep to image Windows Server 2012 faster in a virtual environment. Learn how in this Ask an Admin article! - Published: 2014-02-04 - Modified: 2024-09-04 - URL: https://petri.com/sysprep-windows-server-2012-modevm-switch/ - Categories: Windows Server 2012 - Tags: Hyper-V, imaging, Management, sysprep, virtual machine, Virtualization, Windows 8 - Article Type: Overview In today's Ask an Admin, learn how to wield the /mode:vm switch in sysprep to image Windows Server 2012 faster in a virtual environment. How can I use sysprep to quickly create images of Windows Server 2012 for virtual machines? Windows Server 2012’s System Preparation Tool (sysprep. exe) contains a new switch that allows system administrators to generalize the OS (remove any installation specific configuration) faster than previous versions of the tool that were designed for use on physical hardware. In this Ask the Admin, I’ll explain the new functionality and how to use it. The sysprep tool is used to remove system-specific information from the OS so that it can be used for imaging to multiple devices. For instance, you might install Windows Server, make some specific customizations, and prepare the OS so that it can be distributed to different hardware, without having to make the customizations individually on each server. What’s New in Sysprep for Windows Server 2012? The new VM-mode method for generalizing a Windows 8 or Server 2012 installation only works from inside a virtual machine. Once sysprep has completed the generalization and shutdown the VM, you can copy the VM’s . vhd file and attach it to a new VM in any system that uses the same hypervisor technology. For example, if you create the VM image in Hyper-V and then use sysprep to generalize Windows, the . vhd file should only be attached to VMs running on Hyper-V with the same hardware profile as the original VM. The same applies to . vhd images generalized on VMware and any other hypervisor. Finally, the /mode:vm switch can only be used... --- ### Thoughts on the VMware Purchase of Airwatch > VMware has purchased Airwatch, a mobile device management company. Learn how this might improve or affect VMware's strategy. - Published: 2014-02-04 - Modified: 2014-02-04 - URL: https://petri.com/vmware-airwatch-purchase/ - Categories: VMware - Tags: EUC, MAM, MDM, Mobile, VDI, vmware - Article Type: Opinion VMware recently purchased mobile device management company Airwatch. Check out our writer's thoughts on how this acquisition may affect VMware's strategy. The week of January 20, 2014, brought some welcome news for those that care about End User Computing (EUC) and VMware. News broke early in the morning that VMware had reached an agreement to purchase Airwatch for $1. 54 billion. But what would all this mean for VMware and the EUC marketplace? And just who is this Airwatch anyway? Airwatch: One to Watch To make it simple, Airwatch is a software company that helped enterprises manage their mobile devices and data. With over 10,000 customers and a mature product offering they are a leader in the mobile space. The Airwatch offering is much more than just managing mobile devices and apps. The current product can also manage laptops and mobile data, and they offer self-service ability. This type of a product feature set should keep VMware busy for some time working on integrating the features. This looks like a great move at this point on VMware's side, as they have acquired a lot of talent and product features to help them level the field with Citrix. How Will VMware Use Airwatch? The real work starts now for VMware. They will have to figure out how they can utilize the parts that they purchased in the Airwatch acquisition. The product was full of great features and will certainly help VMware in strengthening its Horizon Suite position. In the short term, they can continue to sell Airwatch as the current standalone product to customers that are... --- ### Microsoft Names Satya Nadella as new CEO > Microsoft has named Satya Nadella as the new CEO. Will Nadella have what it takes to bring the software giant success? - Published: 2014-02-04 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-names-satya-nadella-as-new-ceo/ - Categories: Windows Server - Tags: Biull Gates, Microsoft, News, Satya Nadella, Steve Ballmer - Article Type: News Microsoft has named Satya Nadella as the new CEO. Will Nadella have what it takes to bring the software giant success? Updated - Feb 4, 2014 : Embedded a video interview with Nadella (conducted by a Microsoft employee) at the end of the post. Earlier this morning Microsoft announced that current Cloud and Enterprise Vice President Satya Nadella has been named as the new CEO (and board member) of the company. Nadella replaces Steve Ballmer as Microsoft's chief executive, and ends the lengthy search for a CEO that began more than 5 months ago. Nadella becomes only the third Microsoft CEO -- after Bill Gates and Steve Ballmer -- since Microsoft was founded in 1975. In a press statement announcing the news, former Microsoft co-founder and CEO Bill Gates stressed Nadella's credentials and expertise. "During this time of transformation, there is no better person to lead Microsoft than Satya Nadella," Gates said. "Satya is a proven leader with hard-core engineering skills, business vision and the ability to bring people together. His vision for how technology will be used and experienced around the world is exactly what Microsoft needs as the company enters its next chapter of expanded product innovation and growth. " Speaking of Bill Gates, Microsoft also announced in the same release that Gates "... will assume a new role on the Board as Founder and Technology Advisor, and will devote more time to the company, supporting Nadella in shaping technology and product direction. " That move should pacify critics that have argued that Microsoft needs more of a technical visionary like Gates to guide the company, rather than... --- ### What Can I Configure Using Desired State Configuration? > Desired State Configuration | In part 3 of our series, learn what you can configure with DSC, resource providers, and how to combine the resources. - Published: 2014-02-03 - Modified: 2014-02-03 - URL: https://petri.com/desired-state-configuration-resource-provider/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, ODATA, PowerShell, Web Server - Article Type: Overview It's time we introduced you to some resource providers! Learn what you can configure with DSC and resource providers in part 3 of our series. As we continue to investigate Desired State Configuration, you may be wondering what you can do with DSC.  In short, quite a lot. But the true potential lies in the ability to extend the reach of the tool. Today I'll go over what you can configure with Desired State Configuration, the resources offered, and we'll combine these to create a configuration which we can then apply to our nodes to put them in a desired state. Editor's note: Need to catch up? Check out our previous articles in this series: Deploying a Desired State Configuration Web Host Using Powershell Deploying a Desired State Configuration Web Host Using DSC Desired State Configuration Host Deployment: Local Configuration Manager Desired State Configuration and Local Configuration Manager Desired State Configuration and Resource Providers With the initial release of DSC, Microsoft have included in the package a number of Resource Providers, which define some of the settings which can be managed by the system. Each Resource Provider has a specific purpose, with 12 of these available to be used in our configurations. One of these, the Script provider, allows us to extend the reach of our configuration even further through some simple PowerShell commands: Resource Name Description Log Resource to enable easy posting of messages to Logs Environment Manage environmental variables on the system Registry Manipulate the local registry settings of the node File Manipulates files and directories Archive Unpacks an archive file (. zip) to a specified location. Package Install and Manage packages,... --- ### Secure Legacy Applications on Windows Server 2012 R2 and Windows 8.1 with EMET 4.1 > Learn about EMET 4.1 and how it can be used to secure legacy applications running on Windows Server 2012 R2 or Windows 8.1. - Published: 2014-02-03 - Modified: 2024-11-19 - URL: https://petri.com/emet-4-1-legacy-applications-windows-8-1-server-2012-r2/ - Categories: Windows Server 2012 - Tags: Antivirus, Ask an Adm, DEP, EMET, Malware, Security, Windows 8, Windows 8.1, Windows Server 2012 R2 - Article Type: How To It's time to update those legacy apps! Learn about EMET 4.1 and how it can be used to secure legacy applications running on WS2012 R2 and Windows 8.1. If you are still running legacy applications that haven’t been or can’t be updated to support Data Execution Prevention (DEP), the Enhanced Mitigation Experience Toolkit (EMET) can be used to force those apps to be run with DEP protection and a series of other exploit mitigations. In today's Ask an Admin, I'll go over how to use EMET 4. 1 to secure legacy applications in Windows 8. 1 and WS 2012 R2. EMET 4. 1 Released EMET 4. 0 was released in June 2013, having received a major makeover, including the ability to detect attacks that use suspect SSL certificates (configurable certificate pinning), and an audit mode so that mitigations could be tested before being deployed in production. Adding compatibility for Windows 8. 1 and Windows Server 2012 R2, EMET 4. 1 has improved Group Policy configuration, support for shared remote desktops environments, and several other improvements. DEP, ASLR, and Other Advanced Exploit Mitigations One of the most important features of EMET is the ability to force legacy applications to use DEP, Address Space Layout Randomization (ASLR), and other mitigation techniques, even if they don’t have compatibility flags. If you use EMET to force a legacy application to be protected by any of the mitigations on offer, you must test the app thoroughly before deploying the new configuration in a production environment. For a full list and explanation of the mitigations on offer, and their compatibility with different versions of Windows, refer to the EMET user guide. Download and... --- ### Top Performance Tuning Tips for Windows Server 2012 R2 Hyper-V > Kick your Windows Server 2012 R2 Hyper-V performance up a notch. Check out these helpful tips to improve the performance of Windows Server 2012 R2 Hyper-V. - Published: 2014-02-03 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-r2-hyper-v-performance-tips/ - Categories: Hyper-V - Tags: Hyper-V, performance, Tuning, Virtualization, Windows Server 2012, WS202 - Article Type: Overview Kick your Windows Server 2012 R2 Hyper-V performance up a notch! Check out our top tips to fine-tune the performance of your Windows Server 2012 R2 Hyper-V. Microsoft has published their Performance And Tuning Guide For Windows Server 2012 R2 on TechNet. This guide includes information for different workloads and roles, including Hyper-V. In this article, I will summarize and discuss some of the included suggestions on enhancing performance in Windows Server 2012 R2 Hyper-V, as well as add a few of my own. Windows Server 2012 R2 Hyper-V Performance Tips Host Management OS The host management OS should be the management OS and nothing but the management OS of that host. It should not be a domain controller, it should not be a file server, it should not be a database server... you get the idea. If you need additional services to run on a physical server, then install them into virtual machines that will run on the host. You can install management features such as monitoring agents, virtualization management, job management, backup agents, and so on, as long as those agents will not be heavy consumers of processor, storage IO, or memory. Limit who can log into a host. Local administrator rights on virtualization hosts (any vendor) should be limited to a subset of the IT department, just as the domain admin right it. If you need to grant rights then use System Center Virtual Machine Manager and delegate the subset of rights that are required to an Active Directory group that contains the selected people. You should also try to avoid logging directly into a host. Use... --- ### Microsoft Updates Windows Intune, Reveals Mobile Management Roadmap > Microsoft has announced updates to Windows Intune that will bring a host of new cloud-based MDM features to the service. - Published: 2014-01-30 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-updates-windows-intune-unveils-cloud-based-mobile-management-roadmap/ - Categories: Cloud Computing - Tags: JumpCloud, News, Windows Intune - Article Type: News Using Windows Intune? Microsoft has announced a series of updates that will bring a host of new cloud-based MDM features to the service. Microsoft announced some upcoming updates to their Windows Intune cloud-based IT management service yesterday, and also revealed a bit more about what they’ve got in the works for their evolving mobile device management strategy. “What we’ve seen is that companies have continued to embrace the consumerization of IT and the bring your own (BYO) trend,” said Andrew Conway, Microsoft’s Senior Director of Product Marketing for Windows Server & Management. “IT is no longer saying no to BYO requests, they’re seeing that trend continue, and they’re looking for vendors to help them solve challenges and develop a comprehensive strategy. ” image: Microsoft Windows Intune Updates Detailed Conway added that Microsoft views mobile device management (MDM) within the larger context of other IT trends, such as the increasing adoption of cloud services among IT departments.  So as part of their ongoing IT management strategy, Microsoft is rolling out some updates to Windows Intune which are slated to go live the week of Feb 3rd, 2014. These near-term updates include: New remote lock functionality that lets admins lock-down employee tablets, phones, and other mobile devices that are lost, stolen, or otherwise MIA. An email profile configuration feature that lets admins easily create a default emil configuration for newly enrolled devices, and to also remove the profile and emails associated with that profile from wiped devices. Enhanced support for some of the new enterprise-friendly feature in Apple’s iOS 7, namely managed open in and disabling the TouchID fingerprint scanner on the iPhone 5S... . --- ### How to Add Disk Performance Counters to Windows Server 2012 R2 > Enable disk performance counters in Windows Server 2012 R2 Task Manager using this quick how-to! - Published: 2014-01-30 - Modified: 2024-09-04 - URL: https://petri.com/add-disk-performance-counters-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: disk, disk management, Disk performance counters, troubleshooting, Windows Server 2012 R2 - Article Type: How To In this Ask an Admin, learn to get back those disk performance counters in Windows Server 2012 R2 Task Manager. In Windows Server 2012 R2, if you switch to the Performance tab in Task Manager, disk performance counters are no longer displayed by default. In this Ask the Admin, I’ll show you how to add the disk performance counters back to Task Manager. Enabling Disk Performance Counters Disk performance counters were removed from Task Manager’s Performance tab in Windows Server 2012 R2 because of the performance impact when scanning disks for performance data. If you look through the menus in Task Manager you won’t find anyway to enable disk performance counters. If you want to restore the ability to see disk performance on the Performance tab, as is default for Windows Server 2012, you can run the following command in an elevated command prompt. Make sure that Task Manager is closed on the server. Switch to the Start screen by pressing the Windows key. Type cmd and wait for it to appear in the search results on the right. With Command Prompt selected in the search results, press CTRL+SHIFT+ENTER to start a command prompt with elevated privileges. Give your consent, or enter administrative privileges, if prompted by User Account Control (UAC). In the new command prompt window on the desktop, type diskperf –y and press Enter. Now open Task Manager by right-clicking on the desktop Task Bar, and select Task Manager from the menu. Disk performance counters in Windows Server 2012 R2 You will now be able to see... --- ### Does the Hypervisor Still Matter? > Do you care which hypervisor you use? Find out more about where our writer thinks the future of the hypervisor is going in this op-ed. - Published: 2014-01-30 - Modified: 2024-09-04 - URL: https://petri.com/does-the-hypervisor-still-matter/ - Categories: VMware - Tags: Hyper-V, hypervisor, KVM, vSphere - Article Type: Opinion What's the future hold for the hypervisor? Read this op-ed to learn more about where our writer thinks the future of the hypervisor is heading. Recently there has been a lot of talk about whether the hypervisor means anything to companies anymore. With the polar vortex blasting its icy air through Chicago, I figured I'd spend some of this enforced-indoor time to ponder on what I'm seeing in the enterprise space. Whose Hypervisor Do You Have? Do people still care which vendor's product they are running for their virtual infrastructure? I'm going to go with yes. Sure, there may come a day in the next few years that it will not matter to a larger portion of the install base. From what I can currently see, the large majority of enterprise customers still rely on VMware as their primary hypervisor. This means that when it comes to running their tier 1 applications and the majority of other applications, VMware is the choice. There is talk about Hyper-V being good enough now, but I see very little action in this space. There are a few smaller shops here and there that have switched or are testing Hyper-V, but that was usually because they think that Hyper-V was cheaper because they did not have to cut a PO for the purchase. Management is not looking at the entire view of what it means to switch, and the difference is in managing and supporting such a change. The Hypervisor: Time's Running Out I think in a few more years the hypervisor will be much less of a concern to more customers... . --- ### How Do I Install Unsigned Device Drivers in Windows 8 64-bit Edition? > Learn the tricks to installing an unsigned driver in Windows 8 64-bit edition or Windows Server 2012 in this Ask an Admin. - Published: 2014-01-29 - Modified: 2024-09-24 - URL: https://petri.com/install-unsigned-device-drivers-windows-8-64-bit-edition/ - Categories: Windows 8 - Tags: Device drivers, drivers, Security, Windows Server 2012 - Article Type: How To In this quick Ask an Admin, discover what you need to install an unsigned driver in Windows 8 64-bit edition or Windows Server 2012. In this Ask the Admin, I’ll show you how to install unsigned 64-bit drivers in Windows 8. The same information applies to Windows Server 2012. While most device drivers come either built into Windows or are supplied by a third-party vendor's signed package, there are some occasions in which you might come across an unsigned driver. These may include when a driver is being developed in-house or if the vendor doesn’t have the resources to sign the driver. In Windows 7 64-bit edition, the driver-signing policy displays a warning to say that a driver is unsigned, but you are given the option to go ahead and install it regardless. In Windows 8 64-bit edition, unsigned drivers are blocked completely. Install an Unsigned Device Drivers in Windows 8 64-bit Edition Naturally, there is a way around this, if only for the purposes of testing. The easiest way I have found to disable this policy is to issue the following commands from an elevated command prompt and then reboot the machine. Log on to Windows 8 and follow the instructions. If you are on the desktop, switch to the Start screen (press the Windows key), type cmd and press CTRL+SHIFT+ENTER. In the UAC consent dialog, enter administrator credentials or give your consent to continue as required. In the command prompt, type bcdedit -set loadoptions DISABLE_INTEGRITY_CHECKS and press Enter. Now type bcdedit -set TESTSIGNING ON and press Enter. Reboot the machine Once the machine has rebooted, you... --- ### Antivirus on a Hyper-V Host: Do You Need It? > Is installing anti-virus on your Hyper-V hosts necessary? Learn more, including how to configure antivirus scanning exceptions. - Published: 2014-01-29 - Modified: 2024-09-24 - URL: https://petri.com/antivirus-on-hyper-v-host-configuration/ - Categories: Hyper-V - Tags: Antivirus, Hyper-V, Security, Virtualization, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2 - Article Type: Opinion Is installing antivirus on your Hyper-V hosts necessary? Answer: That depends. Learn more, including how to configure antivirus scanning exceptions. You have just deployed Hyper-V and the (in)security officer has decided that the standard edict of “all files and processes must be scanned because Windows is insecure” must be applied. Here’s my advice: Get that in writing. No, better: Get that written in their own blood, with your boss, your boss’s boss, and the (in)security officer’s boss as witnesses. Why? You’re going to have nothing but trouble, and you might even appear to lose some of your VMs after your next patch deployment cycle. In this post, I will discuss the need for antivirus on the Management OS of a Hyper-V host, and how you should configure it. Configuring Antivirus on Hyper-V If you apply that (in)security officer’s misguided and ill-informed (I’m struggling to be polite) instructions, then you are sure to experience one of the following errors when your hosts reboot: The requested operation cannot be performed on a file with a user-mapped section open. (0x800704C8) VMName’ Microsoft Synthetic Ethernet Port (Instance ID{7E0DA81A-A7B4-4DFD-869F-37002C36D816}): Failed to Power On with Error 'The specified network resource or device is no longer available. ' (0x80070037). The I/O operation has been aborted because of either a thread exit or an application request. (0x800703E3) Your VM will fail to start, and it might even disappear from Hyper-V Manager and every other Hyper-V management tool. The files are still there; but uncontrolled antivirus has caused problems. We kid, we kid. Kinda. Sometimes.   Hyper-V, like most server products from Microsoft,... --- ### Updating the vCenter Server Appliance (vCSA) > Deploying the vCenter Server Appliance? Learn to keep vCSA updated with vCenter patches in this easy-to-follow how-to post. - Published: 2014-01-28 - Modified: 2024-11-19 - URL: https://petri.com/updating-vcenter-server-appliance-vcsa/ - Categories: VMware - Tags: vCenter, VCSA, virtual appliance, vSphere - Article Type: Overview Thinking about deploying the vCSA? Find out how easy it is to keep updated with vCenter patches in this handy how-to post. The vCenter Server Appliance (vCSA) from VMware is easy to deploy, but how easy is it to keep up to date with patches? I was wondering this myself a while back and sought out to test the waters. In this walkthrough I will take you through the process of updating the vCSA to the latest build. How to Update the vCSA The first step in this process will be to log into the appliance management web console. This is not the vSphere web client, but the backend to manage the virtual appliance itself. Once in the console, navigate to the Update tab and click the Check Updates button.   It should only take a short time to do the look-up to verify if there are any updates available. In my example, I am running v5. 5. 0a, and v5. 5. 0b is available.   Click Install Updates on the right, and the upgrade will start. You will see a confirmation like the one shown below. In the process that I'm using the appliance will grab the update package directly from VMware via an available Internet connection. As the update progresses along you can verify that its still working by looking at the Status screen (shown below). It does not give you a progress report.   The status will show confirmation that the update is complete. You are now ready to reboot the vCSA and finish the update progress. Once the appliance has rebooted and is back online, I... --- ### How to Use Group Managed Service Accounts in Windows Server 2012 > Learn to use Group Managed Service Accounts (gMSA) to improve security in Windows Server 2012 (and later) in this quick Ask an Admin. - Published: 2014-01-28 - Modified: 2024-09-24 - URL: https://petri.com/group-managed-service-accounts-gmsa-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Active Directory, Ask an Admin, Group Managed Service Accounts, Security, services, Windows Server 2012 R2 - Article Type: How To In today's Ask an Admin, find out how to use helpful Group Managed Service Accounts (gMSA) to improve security in Windows Server 2012 (and later). Building on functionality provided by Managed Service Accounts (MSA) in Windows Server 2008 R2, Group Managed Service Accounts (gMSA) can be used across multiple servers. In this Ask an Admin, I’ll show you how to use gMSAs. Using Group Managed Service Accounts (gMSA) in Windows Server 2012 Windows Server 2008 R2 MSAs are domain accounts intended for use when configuring Windows services, and unlike standard user accounts, they provide automatic password management and simplified SPN management. MSAs are better suited to Windows services than standard user accounts because the automatic password refresh reduces the risk associated with manually changing service account passwords and reduces administrative overhead. MSAs can only be associated with one server, and they can’t be used by IIS application pools or Microsoft SQL Server. Windows Server 2012 introduces gMSAs, which add support for use across multiple devices, the above mentioned applications, scheduled tasks, and clustered or load-balanced services. They are created using PowerShell but can be viewed in the Active Directory Administrative Center. By default, gMSAs have domain user privileges. An administrator with access to a server on which a gMSA is installed could use the account for purposes other than was was originally intended, so make sure you follow security best practices and implement the principal of least privilege. Setup a Group Managed Service Account Group Managed Service accounts can only be used on servers running Windows Server 2012 (or later), and there must be at least one Windows Server 2012 (or later)... --- ### Review: MakerBot Digitizer Desktop 3D Scanner > Check out our review of MakerBot Digitizer Desktop 3D Scanner, which turns a 3D object into a computer file. - Published: 2014-01-27 - Modified: 2024-11-19 - URL: https://petri.com/makerbot-digitizer-3d-scanner-review/ - Categories: Windows 8 - Tags: 3D Printing, 3D Scanning, MakerBot - Article Type: Review The MakerBot Digitizer extends the 3D printing into new and exciting realms. Read on for our review of this cool new product. The MakerBot Digitizer is perhaps one of the most exciting pieces of tech I’ve seen in a while. The Digitizer is the reverse of a 3D printer. Instead of turning a computer file into a 3D object, the digitizer turns a 3D object into a computer file. Think of the possibilities! Lose one of the mounting brackets to a network switch? No biggie! Scan the remaining bracket with the Digitizer, print the scan to a 3D printer, and you’re back in business. Work for an organization or school that creates products by hand, such as small sculptures or wooden trinkets? Digitize these precious items and be able to recreate them later. Of course, potential is one thing while real results are another. It’s time to put the MakerBot Digitizer through its paces and see how it performs. MakerBot Digitizer: Hardware The MakerBot Digitizer has a pretty cool design. It’s basically a turntable with an arm overhead that holds two lasers at opposing angles and a camera in the center. The turntable slowly rotates the object to be scanned while one of the lasers projects a beam onto it. The camera, with a red filter in place, records the profile of the laser where it is hitting the object. After one 360-degree rotation the whole process is completed again with the other laser. Once the second rotation is complete, the data is merged into a complete scan and a 3D model is built within the MakerWare for Digitizer... --- ### Review: DataON Storage DNS-1640 JBOD for Storage Spaces > Check out our review of DataON Storage DNS-1640 JBOD, used for clustered Storage Spaces in Windows Server 2012 (WS2012) and Windows Server 2012 R2 (WS2012 R2). - Published: 2014-01-27 - Modified: 2024-11-19 - URL: https://petri.com/dataon-storage-dns-1640-jbod-review/ - Categories: Backup & Storage - Tags: DataOn, Failover Clustering, Hyper-V, JBOD, storage spaces, Virtualization, Windows Server, Windows Server 2012, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: Review Check out our review of DataON Storage DNS-1640 JBOD, used for clustered Storage Spaces in Windows Server 2012 (WS2012) and Windows Server 2012 R2 (WS2012 R2). I have discussed Windows Server Storage Spaces in a number of previous articles here on the Petri IT Knowledgebase. A requirement of Storage Spaces is that you have a supported “just a bunch of disks” (JBOD) tray. You won’t find very many manufacturers in the Storage Spaces category on the Windows Server Catalog, and you might not even recognize most of the names there. One of those manufacturers is DataON Storage, one of the original makers of supported JBOD devices and a supplier of JBOD trays to Microsoft. I’ve been lucky enough to have had their 24-disk tray in my demo lab since last summer, and I’ve recently deployed one as a part of a 2 node Hyper-V cluster at work. In this article I will review the DataOn DNS-1640 JBOD tray for use with Windows Server Storage Spaces. Reminder: Storage Spaces Microsoft added Storage Spaces in Windows Server 2012 (WS2012) and matured the feature in Windows Server 2012 R2 (WS2012 R2). The purpose of Storage Spaces is to provide a new software alternative to hardware RAID. Please note that Storage Spaces is not the Windows RAID of the past. Windows RAID sucked. Storage Spaces is designed to be familiar to SAN administrators but overcome some of the limitations of RAID. Using a collection of dumb disks, as you would get in a JBOD, you can aggregate those disks into a Storage Pool. LUNs, known as Storage Spaces or Virtual Disks (depending on who you talk to... --- ### Desired State Configuration and Local Configuration Manager > Local Configuration Manager (LCM) |In part 2 of this series on Desired State Configuration, read on for a closer look at Local Configuration Manager. - Published: 2014-01-27 - Modified: 2024-12-03 - URL: https://petri.com/desired-state-configuration-local-configuration-manager/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, ODATA, PowerShell, Web Server - Article Type: Overview Want to know more about Local Configuration Manager? Check out part 2 of this series for more about configuring LCM. In our previous post we covered the procedure of defining the settings we wish to use for configuring the Local Configuration Manager and leveraging the Set-DSCLocalConfigurationManager commandlet. (Editor's note: Need to catch up? Check out our previous articles on Deploying a Desired State Configuration Web Host Using Powershell and Deploying a Desired State Configuration Web Host Using DSC. ) DSC and Local Configuration Manager In order to check if the new configuration was successfully deployed to the nodes, we can connect to the node and then leverage the command Get-DscLocalConfigurationManager, which will return its current configuring details. However, as we are working in PowerShell there is always going to be a simpler way to do this. The second server that we configured was called PDC-SC-VMM01, so using a remote connection to the server we can also get our requested information back, as in the following example: ​ $session = New-CimSession -ComputerName PDC-SC-VMM01 Get-DscLocalConfigurationManager -CimSession $session AllowModuleOverwrite           : True CertificateID                  : ConfigurationID                : ba59fd02-04e2-4452-a817-b8e750b4efb8 ConfigurationMode              : ApplyAndAutoCorrect ConfigurationModeFrequencyMins : 45 Credential                     : DownloadManagerCustomData      : {MSFT_KeyValuePair (key = "ServerUrl"), MSFT_KeyValuePair (key = "AllowUnsecureConnection")} DownloadManagerName            : WebDownloadManager RebootNodeIfNeeded             : True RefreshFrequencyMins           : 15 RefreshMode                    : Pull PSComputerName                 : PDC-SC-VMM01 Local Configuration Manager: What's Under the Hood? When our local configuration is set to run in pull mode, the delivered meta. mof file instructs the CIM to configure the computer's task scheduler to automate the Local Configuration Manager. Essentially this might be considered as a script, which is defined... --- ### Azure, Xbox, and Surface power Microsoft's Q2 2014 financials > Microsoft reported an impressive $24.52 billion in revenue for fiscal Q2 2014, driven by sales growth for the Surface, Xbox, and Microsoft business units. - Published: 2014-01-24 - Modified: 2024-09-04 - URL: https://petri.com/azure-xbox-surface-microsofts-q2-2014-financial-results/ - Categories: Cloud Computing - Tags: News - Article Type: News Microsoft defied skeptics again, reporting an impressive $24.52 billion in revenue for fiscal Q2 2014, driven partly by growth in Xbox, Surface, and Azure. Microsoft released their Q2 2014 financial results yesterday, and the software giant continues to defy those who claim that the doom of Microsoft is just one quarter away. Revenue for the quarter which ended on Dec 31, 2013 was $24. 52 billion, while the beleaguered Surface tablet, the new Xbox One console, and Microsoft's business units and cloud services helped deliver the impressive results. Surface Redux Microsoft has had some well-publicized difficulties selling Surface tablets, but revenue of the oft-maligned competitor to Apple's popular iPad generated double the $400 million figure Microsoft reported in the first quarter of fiscal 2014, up to an impressive $893 million in Q2 2014. While the Surface may have struggled over the last year as a whole, I use my Surface Pro on a daily basis, and I know several readers and colleagues who sing the praises of the Windows RT-powered Surface. While not proof that the Surface is a market success, it does prove that Microsoft's tablet is climbing out of the gigantic $900 million hole it dug for itself last year. Microsoft's new Xbox One video game console was also a big contributor to Microsoft's revenue for the quarter, with Microsoft claiming they've moved a total of 3. 9 million Xbox One units for the quarter. The Xbox One may be trailing the Sony PlayStation 4 in the global race of the latest console generation, but the Xbox One is nevertheless off to an impressive start. SQL Server,... --- ### Lenovo to Purchase IBM's x86 Server Business for $2.3 Billion > Lenovo snatched up IBM's desktop and laptop units years ago, and has returned for more in the form of Big Blue's x86 server business. - Published: 2014-01-23 - Modified: 2024-11-19 - URL: https://petri.com/lenovo-to-purchase-ibms-x86-server-business-for-2-3-billion/ - Categories: Windows Server - Tags: IBM, Lenovo, x86 - Article Type: News Lenovo gobbled up IBM's desktop and laptop business units years ago, and now returns for seconds in the form of Big Blue's x86 server business. Lenovo announced earlier today that it was planning to buy IBM's x86 server business for $2. 3 billion, a move that gives Lenovo a larger footprint in the enterprise space and unites IBM's former laptop, desktop, and x86 server business units under one roof. According to a statement by Lenovo, the deal includes BladeCenter and Flex System blade servers and switches, as well as IBM's System x, NeXtScale, and iDataPlex servers, along with all the related software, maintenance, and customer support functions of the IBM business units that supported those products. While IBM's x86 business has been sold, it will still manufacture and sell some server hardware, primarily higher-end (and higher-margin) Power Systems, Power-based Flex servers, and System z mainframes. The IBM System x3850 X6, one of the x86 server models included in the Lenovo acquisition (photo: IBM) Lenovo CEO and chairman Yang Yuanqing said in a statement that he was confident that Lenovo could "... grow this business successfully for the long-term, just as we have done with our worldwide PC business. " For IBM, the x86 server business unit sale to Lenovo will help them accelerate their strategy of focusing on their business priorities, namely "... cognitive computing, Big Data and cloud,” according to Steve Mills, the Senior Vice President and Group Executive for IBM Software and Systems. The acquisition still has to be approved by federal regulators, but based on the ease at which Lenovo was able to purchase IBM's desktop and laptop businesses, approval is expected... . --- ### Workers Are Happier Being Mobile and Working Remotely > Learn about the benefits to remote working, and look at Microsoft's integrated solution, spanning on-premise, and public cloud for telecommuting. - Published: 2014-01-23 - Modified: 2024-09-04 - URL: https://petri.com/remote-working-telecommute-employee-productivity/ - Categories: Mobile - Tags: Active Directory, Cloud, Direct Access, Editor's Pick, Remote Desktop Services, Remote Worker, telecommuting, VPN, Windows Azure, Windows Server, Windows Server 2012 - Article Type: Opinion Wish you could telecommute? Discover the benefits to remote working, and look at Microsoft's integrated solution, spanning on-premise, and public cloud. In this article I’m going to look at the results of a survey by GFI on remote worker habits and offer my own opinion on the findings on telecommuting. I’ll also discuss some of the technologies by Microsoft that offer solutions that enable businesses to offer a better or more suitable working environment for their employees. Why I Work Remotely This morning I spent 80 minutes driving to work, thanks to some rubberneckers who caused a 15 KM tailback, gawking at a car on the hard shoulder that was going to be towed. I could do that journey in 25 minutes on a Saturday or Sunday morning, and in around 35 minutes when the schools are closed in the summer. On a Friday evening I’ll spend at least 90 minutes on the drive home because morons on the motorway step on the brakes at the last second to change lanes for their exit and cause a 20-mile traffic jam. The office that I work in is open plan. Three-quarters of our staff are telesales, working on the phone. I sit beside our accounts team who have a radio. Some members of our staff are cold bodied and want the heat shoved right up to the max. I feel like I want to go to sleep for half the day and can’t concentrate. In fact, recently I’ve had to work in a meeting room or simply stay at home to get anything done. Is it any wonder that... --- ### How to Close an App in Windows 8 and Win 8.1 > Need help closing apps in Windows 8 or 8.1? Here's a quick primer that presents multiple ways to close a Win 8 app. - Published: 2014-01-23 - Modified: 2024-09-04 - URL: https://petri.com/close-app-in-windows-8-1/ - Categories: Windows 8 - Article Type: How To Navigating the Modern UI interface in Windows 8/8.1 can be a head-scratcher for even the most savvy user. Read our primer on how to close a Win 8 app. If you've made the switch to Windows 8, you probably experienced a bit of a learning curve as you learned to navigate through the touch-optimized, "formerly known as Metro but now known informally as Modern UI" interface. While the revamped Windows 8 Modern UI may be ideally suited for tablets, legacy Windows users accustomed to using the keyboard and mouse may find themselves a bit bewildered by the changes. We've already covered the changes in how you can shut down a Windows 8 PC when needed, but this time we'll take a look at how you can close an app in Windows 8 and 8. 1. A Note about the Desktop vs. Modern UI  The bulk of this article deals with how to close apps running on the Modern UI side of Windows 8/8. 1. If you're running an app on the desktop side of Windows 8, all the normal Windows app-closing conventions still apply: You left-click on the 'X' in the upper- right corner of program windows to close them, and you can use "File | Close" and Alt + F4 to close most traditional desktop apps. Or you can use CTRL + ALT + DELETE, access Task Manager, and shut them down that way. If you're running a Modern UI app downloaded from the Windows Store, Windows 8/8. 1 keeps those apps running on standby when you close them. We'll discuss how to both remove apps from view and permanently close them. Close a Windows 8 App: Swipe Down... --- ### What Is the Future of the Enterprise PC? > Is the era of the PC was coming to an end? What's next for the enterprise PC? Learn more in this op-ed on Microsoft's next steps. - Published: 2014-01-22 - Modified: 2024-12-03 - URL: https://petri.com/future-of-enterprise-pc/ - Categories: Windows 8 - Tags: op-ed - Article Type: Opinion For years we’ve heard that the era of the PC was coming to an end. What's next for the enterprise PC? Learn more in this op-ed! For years we’ve been promised that the era of the PC was coming to an end. If we take Apple’s marketing and their media fanboys seriously, we’re allegedly in a post-PC era. While I might disagree with that statement (so much of iDevice management requires a PC or a Mac), I will agree that we are in yet another period of change. The question is: What will be the result of this change? In this opinion article, I want to take a look at what is happening, and maybe even have a look at what’s coming (and already arrived) for the enterprise PC. And maybe you can use some of the contained information to give you some context when the expected “2014 will be the year of the consumerization of IT” predictions start being posted by the various outlets at the end of December. Some Background If you look at the PCs since the birth of the PC, you’ll see that there hasn’t been all that much change. Hardware capabilities and shape changed, but little else. Where we did see change was in the operating system. DOS and OS/2 were replaced by Windows. Windows consolidated into Dave Culter’s NT family tree with Windows XP. Computing became easier for your grandmother and the enterprise. XP became Vista (and maybe this is where the problems started), Vista became the superb Windows 7, and then we got Windows 8 and 8. 1. (Image via Old Computers) Windows changed how the home... --- ### Desired State Configuration Host Deployment: Local Configuration Manager > Desired State Configuration (DSC) |In this new series on deploying a DSC web host, we take a look at Local Configuration Manager (LCM) & configuration ID. - Published: 2014-01-22 - Modified: 2024-12-03 - URL: https://petri.com/post-deployment-desired-state-configuration-dsc/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, ODATA, PowerShell, Web Server - Article Type: Overview In this new series, we take a look at Local Configuration Manager (LCM) and configuration ID. Now that you have your DSC web host deployed, the next point is to figure out how we are going to actually use this new web service. In this post we will take a look at a new service that has been delivered with Windows Management Framework 4. 0 / PowerShell 4. 0 known as the Local Configuration Manager (LCM). It is the responsibility of this service to determine what actions should be taken based on the configuration request it receives. If you do not have these already deployed, then please take a few moments to refer to my earlier posts to assist in getting the service online. Deploying a Desired State Configuration Web Host Using Powershell Deploying a Desired State Configuration Web Host Using DSC DSC and Local Configuration Manager (LCM) As we described our DSC web hosts, we used the term "pull" servers to indicate that these services would be utilized by clients to pull their configuration locally from the service. The pulling action is the responsibility of the Local Configuration Manager on each machine; its default configuration is actually in push mode, which indicates that it will do nothing until a configuration is dropped in its lap. To configure the Local Configuration Manager we create a special PowerShell DSC configuration, quite similar to the approached used as we deployed a DSC web host using DSC. The main difference this time, however, is that the configuration is targeted specifically as the LocalConfigurationManager. Using the following example, we can... --- ### Review: iPodCast App for Windows Phone > Check out our review of iPodCast, a podcast subscription management and playback app for Windows Phone. - Published: 2014-01-22 - Modified: 2024-11-19 - URL: https://petri.com/ipodcast-app-windows-phone-review/ - Categories: Mobile - Tags: App, iPodCast, News, Podcast, Windows phone - Article Type: Review Keep your podcasts updated and organized! Check out our review of iPodCast, a podcast subscription management and playback app. One of the blockers for my using Windows Phone as my personal smartphone of choice was the lack of a usable podcast solution. In this post I will review a podcast app for Windows Phone called iPodCast that I have been using nearly every day for the last two months. Podcast App History I am a strong believer that IT pros should not rely on training courses to keep their skills and industry knowledge up to date. There is a responsibility for every worker to maintain their tools. For the IT pro, the main tool is knowledge. IT magazines and tech books have come and gone; the rate of change in our industry has killed off static media. Now the best tools available to us are found online, including forums and blogs. But with so many sources, we need services such as RSS. I have a substantial set of RSS subscriptions that I check daily, but I, like many workers, spend two hours per day commuting to and from work. I have grown bored with the doom and gloom of talk radio and the shiny-happy teeny boppers of music radio. I can’t read while driving but I do listen to podcasts, some of which are sports related and others which keep me updated on the world of tech. A year ago I was using an iPhone 4 and its built-in podcast app to download, manage, and listen to various subscriptions. I had configured playlists that automatically categorized... --- ### Attaching a Content Type to a List or Library in SharePoint 2013 > Learn to enable a list or library to use content types in SharePoint 2013, and how to attach those content types in part three of this series. - Published: 2014-01-21 - Modified: 2024-09-04 - URL: https://petri.com/attach-content-type-to-sharepoint-2013-list-library/ - Categories: SharePoint - Tags: content type - Article Type: How To Content types, we ain't done with you yet! In part 3 of this series, learn to enable a list or library to use content types in SharePoint 2013. If you’ve been following along in our recent articles about content types, you know what content types are, and how to create a content type in SharePoint 2013. But that’s only one part of content types. Now that you’ve got one created, you need to configure your lists and libraries to use those content types. In this article I will show you how to enable a list or library to use content types in SharePoint 2013, and I'll also show you how to assign a specific content type to be used. Enable a List or Library to use Content Types in SharePoint 2013 By default, a list or library created in SharePoint 2013 will have some content types that it already is configured to use. A task list expects task items, a contact list expects contact items, and a document library contains generic documents. If you want to customize what content types the list or library can use, you’ll need to make those changes at the list/library settings level. You’ll need to edit permissions at a minimum on the list or library to manage it. By default all lists and libraries inherit permissions from the site that they are part of. So you’ll either need edit permissions on the site, or you’ll need to have the list/library stop inheriting permissions and be assigned permissions on the list/library List/Library Settings Browse to the list or library that you’re wanting to use the content type on, then select the... --- ### Configure Workplace Join: Enable Device Registration and Enroll for Workplace Join > Learn to enable device registration in ADFS and set up Workplace Join in Windows Server 2012 R2 in part two of this series. - Published: 2014-01-21 - Modified: 2024-12-03 - URL: https://petri.com/configure-workplace-join-enable-device-registration/ - Categories: Windows Server 2012 - Tags: Active Directory Federation Services, ADFS, BYOD, Windows 8.1, Windows Server 2012 R2, Workplace Join - Article Type: How To In part two of this series, find out how to enable device registration in ADFS and set up Workplace Join in WS 2012 R2. In the first part of this two-part series, I showed you how to set up Windows Server 2012 R2 Active Directory Federation Services (AD FS) for the purposes of enabling Workplace Join for Windows 8. x clients and supported clients. In this article we’ll enable device registration for Workplace Join in Windows Server 2012 R2, and prepare a client to sign up for Workplace Join. The lab requires two servers: one Active Directory domain controller (DC) and an AD FS server. They must be running Windows Server 2012 R2. Additionally, you’ll need a device running Windows 8. x that is not joined to the AD domain. Enable Device Registration in Active Directory To enable Workplace Join, we need to enable device registration in Active Directory using PowerShell. Log on to your AD FS server with a domain administrator account. Open a PowerShell console using the icon on the desktop taskbar or from the Start screen. Type initialize-addeviceregistration -serviceaccountname "adfsgmsa$"in the PowerShell console, replacing ad with the NETBIOS name of your AD domain, and press Enter. When prompted for confirmation, type y and press Enter. PowerShell should report that the operation completed successfully. Now type enable-adfsdeviceregistration and press Enter. After a few seconds, you should see a report saying that the operation completed successfully. Open Server Manager using the icon on the desktop taskbar, or from the Start screen. In Server Manager, click AD FS Management on the Tools menu. In the AD FS console, click Edit Global Primary Authentication... --- ### Using the CloudPhysics Cloud Calculator to Estimate Hosting Costs > CloudPhysics cloud calculators | Got a bunch of VMs running in your data center? Find out what it might cost to run them in the public cloud in this overview. - Published: 2014-01-21 - Modified: 2024-11-19 - URL: https://petri.com/cloud-cloudphysics-calculator/ - Categories: VMware - Tags: AWS, Cloud Calculator, VCD, vCHS, vCloud, vmware, vSphere - Article Type: Overview Want to know what it might cost to run your VMs in the public cloud? Learn more about cloud calculators in this post! Are you considering a move to the cloud? One of the best ways to estimate the cost of migrating workloads to the cloud is by using a cloud computing cost calculator that can help you get a feel for what those expected migrations can cost you. In this article I'll take a look at the CloudPhysics cost calculator and how you can use it to estimate your cloud hosting costs with VMware vCHS and Amazon AWS. About the CloudPhysics Calculator I've been a big fan of the CloudPhysics cost calculator offering since they announced at VMworld 2012. I think of them as big data for the VMware admins. Their product is a SaaS-based reporting tool that continues to grow. One of the more recent features that they have added was the ability to estimate cloud hosting costs. Their product works by having customers deploy a virtual appliance into their VMware environment. This appliance is then linked to your CloudPhysics account and the data is synced to their servers. Once they have this data there are a number of reports and KB lookups that can be done. The new cloud calculator card offerings allow you to estimate the cost of all your VMs being reported on or just a portion of them. This is a simple way to get an idea of what it might cost to host your workloads in one of these cloud offerings. CloudPhysics: vCHS Cloud Calculator The first calculator that I... --- ### Windows Server 2012 or WS2012 R2 Hyper-V Cluster Requirements > Learn about the requirements needed to build a Windows Server 2012 or WS2012 R2 Hyper-V cluster, including host servers, shared storage, and more. - Published: 2014-01-20 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-r2-hyper-v-cluster-requirements/ - Categories: Windows Server 2012 - Tags: Clustering, Failover Clustering, High Availability, Hyper-V, Virtualization, Windows Server, Windows Server 2012 R2, WS2012, WS2012 R2 - Article Type: Overview Building a Windows Server 2012 Hyper-V cluster? Not so fast, friend. Learn about what you need to build that cluster in this article. If you've been following along, you may recall a previous article in which I explained the role that Windows Server failover clusters play in making Hyper-V hosts highly available. In today's article, I will explain what the requirements are for building a Windows Server 2012 /R2 Hyper-V cluster. Build a Windows Server 2012 / R2 Hyper-V Cluster: Requirements Host Servers You will require two or more servers to function as Hyper-V hosts. Actually, that’s not strictly true. You can build a new cluster with just one server (node). That allows you to build a cluster when you are temporarily short on hardware, albeit without actually having virtual machine high availability (HA) until you add a second host. Ideally you will use identical servers when you build the cluster. This will simplify support of the servers, of Windows Server, and of your storage solution (more on that later). However, from the Microsoft perspective, the servers need only be fairly similar. The processors must be either all-Intel or all-AMD to allow live migration. Hyper-V does allow you to have mixed generations (functionality) of processor from the same manufacturer, but to enable live migration you must disable advanced processor features in the virtual processor settings of each virtual machine. My advice: Keep it simple. Keep the hosts identical and get the newest processor that you can afford. Doing that will probably mean that the processor will still be available after a year when you need to add... --- ### How to Create a New Content Type in SharePoint 2013 > Discover how to create SharePoint 2013 content types, and learn about content type columns, parents, and more! - Published: 2014-01-20 - Modified: 2024-11-19 - URL: https://petri.com/create-new-content-type-sharepoint-2013/ - Categories: SharePoint - Tags: content type - Article Type: How To We're back with more about custom content types! Learn to create SharePoint 2013 content types, and learn about content type columns, parents, and more. Enterprise Content Management (ECM) is one of the main use cases for SharePoint 2013, and an important part of running a successful ECM platform is creating and managing content types. Content types not only describe the data that is being used, but they also give the ability to create workflows and information policies to those content types. If you’ve been learning about content types in SharePoint 2013, and you’re ready to begin building one, then you’ve come to the right place! In this article, I’m going to show you how to create a custom content type in SharePoint 2013 and add a site column to the content type. Planning Content Type in SharePoint 2013 What you want your content type to do, and how you want to use it will guide you in the creation of your content type. Keep in mind that no content type is an island – every content type is placed in a hierarchy and inherits properties and columns from its parent type. Content Type Parent For the purpose of this article on creating a SharePoint 2013 content type, I will use an Office Supply Request content type. But even with a simple content type like this, I could easily choose several different methods to approach this problem. I could create a content type that is a document, like a Word or Excel file. I could create a form to be filled in with InfoPath. I also have the option of making the... --- ### Deploying a Desired State Configuration Web Host Using DSC > Learn to deploy a Desired State Configuration web host using DSC in this tutorial. - Published: 2014-01-20 - Modified: 2024-11-19 - URL: https://petri.com/deploy-desired-state-configuration-web-host-with-dsc/ - Categories: System Center - Tags: Configuration, Desired State Configuration, DNS, DSC, ODATA, PowerShell, Web Server - Article Type: How To Find out how to use DSC to deploy a Desired State Configuration web host. Just follow along with our handy tutorial! In a previous post related to deploying a web pull DSC host ("Deploying a Desired State Configuration Web Host Using PowerShell"), I presented a script which would put all the components into place in a manual fashion to get a new DSC pull server online and working. However, this script approach – while useful in illustrating the components required to get the service functional – does not play into the whole concept of configuration using desired state services.  In this post, we will try again, but we will leverage some new modules that Microsoft's DSC team has created for us. More accurately referred to as providers to actually commission a DSC pull server, using DSC. To get started, we will need to download the latest version of the package from the Microsoft TechNet Gallery to our designated server, and as with all Internet downloads, unblock the file and extract its content. Desired State Configuration: Install the Module (Provider) Our first task will be to place the module in the correct location on our server. Launch your PowerShell console, and navigate to the folder you just extracted. For example: DownloadsxPSDesiredStateConfiguration_1. 0 ​ cd $env:UserProfileDownloadsxPSDesiredStateConfiguration_1. 0 copy . xPSDesiredStateConfiguration_1. 0 $env:ProgramFilesWindowsPowerShellModules –Recurse –Force With our new module (provider) now located in its new home, we can proceed to establish our new service. Create a Configuration for our DSC Pull Server In the the following snip-it, we define a DSC Configuration which is to be applied to the current server (localhost),... --- ### Microsoft extends anti-malware protection for Windows XP > Microsoft's aging Windows XP should get the boot, but is extended anti-malware protection support sending the wrong message to users? - Published: 2014-01-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-extends-anti-malware-protection-for-windows-xp/ - Categories: Security - Tags: News - Article Type: News Microsoft extends anti-malware protection for Windows XP. So what does this mean for the April 8th, 2014 deadline for Windows XP support? The looming April 8th, 2014 end of support deadline for Windows XP is now less than four months away. While an increasing number of IT shops are starting to ditch XP in favor of Windows 7 and Windows 8 -- well, let's be honest, mostly Windows 7 -- adoption is still lagging before the end of support deadline, and there will be literally tens of millions of PCs (particularly in China) that will still be running Windows XP after the deadline passes. It's not for lack of trying, as Microsoft has been using liberal applications of both the carrot and the stick for years to encourage Windows XP users to migrate to a more modern OS. Way back in November 2011 -- which was the 10 year anniversary of the launch of Windows XP -- Microsoft was trying to get users off of that decade-old OS by simultaneously praising XP's tenth birthday while simultaneously kicking it to the curb, telling users how much it really sucks, how they should totally move to something better, and essentially tried to perform the functional equivalent of tossing the still alive and kicking XP onto a funeral pyre. Fast forward to October 2013, and one Microsoft staffer decided to ditch the XP accolades entirely and compare Windows XP to Freddy Krueger, Jason Vorhees, and Leatherface from the Texas Chainsaw Massacre by stating that "sticking with XP is scarier than Halloween. " Yet despite all the dire warnings and pronouncements about how only... --- ### How to Backup and Restore the VMware vCenter Server Appliance Database (VCSA) > Learn how to backup and restore VCSA - vCenter Server Appliance - and discover more about using the vCenter server appliance in this helpful post! - Published: 2014-01-16 - Modified: 2024-09-04 - URL: https://petri.com/backup-restore-vcsa-vcenter-server-appliance-database/ - Categories: VMware - Tags: Backup, Database, vCenter, VCSA, virtual appliance - Article Type: How To Interested in using the vCenter server appliance? Learn how to backup and restore the internal database. The VMware vCenter Server Appliance (VCSA) is the wave of the future, right? Well, that depends on who you talk to. By now you have probably noticed that VMware has been releasing many of their products and tools as virtual appliances. This seems to mean that they may eventually phase out the Windows-based vCenter install. Either way, the VCSA now can support 100 hosts and 3,000 virtual machines, which means that it would be able to support the vast majority of VMware installs. But to be able to roll out the VCSA in your datacenter you will need to work out a plan for backing up the data. The appliance does not have a built-in backup utility yet. You could use any VMware-based backup tool to backup the appliance as a whole, but that might not be a supported method and you could possibly run into database issues. So for an added level of protection, you will want to take database backups. In this article I will walk you through the steps to take a manual backup of the internal VCSA database. If you connect the VCSA to an external Oracle database, then you would not need this process. The internal database is a Postgres database and as of vSphere 5. 5, it must still be backed up via these commands. To accomplish this project you will need the following items. These will be needed for remotely connecting into the appliance and copying files. SSH Client - I... --- ### Understanding Content Types in SharePoint 2013 > Discover all about SharePoint 2013 content types, including the difference in content types, their uses, and more! - Published: 2014-01-16 - Modified: 2014-01-16 - URL: https://petri.com/content-types-sharepoint-2013-overview/ - Categories: SharePoint - Tags: content type, Editor's Pick - Article Type: Overview Keep your New Years' resolution to stay organized. Learn about SharePoint 2013 content types, including the difference in content types, and more! Administering a SharePoint farm is about a lot more than just keeping the servers running and applying patches. Once the farm is operational, there is still a lot of work to do organizing and working with the data. One item that will often come up is the concept of Sharepoint content types. This article describes what content types are and why you’ll want to use them. What Is a Content Type, Anyway? Content types can have one of those frustratingly simple definitions: Well, it’s a type of content. But don’t worry. I’ll blast right through that. This article is also content, so maybe in our organization an "article" is a content type. Another example of a content type could be a product review, a giveaway, or a simple image. The difference between those content type examples may seem abstract, because if you just had one type of content, say an article, you could use it for any of those other uses. So what makes a content type unique? It’s about how you organize your content. Maybe around the house you have different content: a shopping list, a warranty card for your new kitchen gadget, and a child’s report card. It’s pretty easy to think of those three items as being different. They serve different functions. They are about different topics. They give different information. Ah-ha! Now we’re getting somewhere. Differences in Content Types A shopping list contains one or more items, and each... --- ### How to Install the Active Directory PowerShell Module on a Member Server > Learn how to install the Active Directory PowerShell module on a domain member server using Server Manager and using PowerShell in this Ask an Admin. - Published: 2014-01-16 - Modified: 2024-09-24 - URL: https://petri.com/install-active-directory-powershell-module-member-server/ - Categories: Active Directory (AD) - Tags: Ask an Admin, Editor's Pick, PowerShell, remote administration, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To In this Ask an Admin, learn two ways to install the Active Directory PowerShell module on a member server. How do I go about installing the Active Directory module for PowerShell on a member server? There are occasions where it might be necessary to run PowerShell Active Directory (AD) cmdlets on a server that is not a domain controller. In general, the AD cmdlets get installed on domain controllers so they are always available, but they are not installed by default on member servers. In this Ask the Admin, I’ll show you two ways to get the PowerShell AD module installed on a Windows Server 2012 (or later) member server. Install the Active Directory PowerShell Module using Server Manager Log on to your member server with a local or domain administrator account: Open Server Manager using the icon on the desktop taskbar, or from the Start screen. In the top right of Server Manager, click Manage and then select Add Roles and Features from the menu. In the Add Roles and Features Wizard, click Server Selection in the left pane, and then Features. In the Features box, expand Remote Server Administration Tools, Role Administration, AD DS and AD LDS Tools, check Active Directory module for Windows PowerShell and click Next. On the Confirmation screen, click Install. Close the wizard once installation is complete. Install the Active Directory PowerShell Module Using PowerShell If you want a quicker way to get the AD PowerShell module installed on your server, you can use PowerShell. Log on to your member server with a local or domain... --- ### Set Up Active Directory Federation Services - A Practical Example for Workplace Join > Learn how to set up Active Directory Federation Services (AD FS) for the purposes of allowing devices to use Workplace Join. - Published: 2014-01-15 - Modified: 2024-10-15 - URL: https://petri.com/set-up-active-directory-federation-services/ - Categories: Active Directory (AD) - Tags: Active Directory Federation Services, ADFS, BYOD, featured-top-right, Workplace Join - Article Type: How To In part one of this new series on Active Directory Federation Services (AD FS), learn to set up Workplace Join in Windows Server 2012 R2. In this article, I’m going to show you how to set up Windows Server Active Directory Federation Services (AD FS) for the purposes of allowing devices to use Workplace Join. We’ll prepare a Windows client for Workplace Join and register the device with our Active Directory (AD) domain. This article applies to Windows Server 2016, 2019, and 2022. To set up the lab, you’ll need two servers: one Active Directory domain controller (DC) and an Active Directory Federation Services server. Both must be running Windows Server 2016 or later. Additionally, you’ll need a device running Windows 10 or later that is not joined to the AD domain. What is Workplace Join? Workplace Join allows users with their own devices (Bring Your Own Device) to access workplace resources without being directly joined to an Active Directory domain. Active Directory Workplace Join originally used AD FS. Microsoft no longer recommends this configuration and suggests Microsoft Entra Device Registration is used instead. This article describes the original method using AD FS. Install Active Directory Certificate Services using Server Manager In this example, I’m going to set up a certification authority (CA) on my domain controller. Log on to the DC with domain administrator permissions. If you would prefer to complete the following steps using PowerShell, skip to the separate instructions below. Open Server Manager from the icon on the desktop taskbar or from the Start screen. In Server Manager, click Manage and select Add Roles and Features from the menu. In the... --- ### Deploying a Desired State Configuration Web Host Using PowerShell > Desired State Configuration Web Host | Learn to use a PowerShell script to deploy a Desired State Configuration (DSC) web host in this helpful guide. - Published: 2014-01-15 - Modified: 2024-09-04 - URL: https://petri.com/deploy-desired-state-configuration-web-host-powershell/ - Categories: PowerShell - Tags: Configuration, Desired State Configuration, DNS, DSC, ODATA, PowerShell, Web Server - Article Type: How To Take PowerShell to the next level! In this post, learn to use a script to deploy a Desired State Configuration (DSC) web host. One of the coolest features introduced in Windows Server 2012 R2 is packaged as part of the Windows Management Framework and PowerShell 4. 0, a feature which is commonly referred to as Desired State Configuration (DSC). This feature takes all the benefits of using PowerShell to the next level, and finally enables us to manage our Windows hosts just like their Linux counterparts with configuration-based management. The approach is extremely flexible and unleashes an awesome amount of power to keep our servers standardized. Best of all, the feature has been backported to earlier versions of Windows, which implies that we can influence the old and the new! In this post, I am going to share a script which permits us to take a Windows 2012 R2 server and configure it so that it is ready to deliver our configurations to our clients through HTTP. This configuration is better know as a DSC web-based pull server. Web-Based Configuration Server To successfully complete the configuration you will need to use an Administrative PowerShell session, and also modify the host header (Section 3), to match the name of the website from which you wish to publish the service (in my example this is PSDSCPullServer. diginerve. net). Additionally, for the host header to function, we need to add this name to our DNS service as a A record or CNAME, resolving to the IP of the chosen server. ​ # Begin by enabling the DSC Service Add-WindowsFeature DSC-Service # Section 2... --- ### Useful Tools for Hyper-V Administrators > Check out these two useful, free tools for Hyper-V admins: Convert-WindowsImage and Disk2vhd. - Published: 2014-01-15 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-tools-for-admins/ - Categories: Hyper-V - Article Type: Overview You like free, right? Check out these two useful (and free) tools for Hyper-V admins: Convert-WindowsImage and Disk2vhd. Microsoft recently updated two tools that are useful for IT pros who are deploying Hyper-V: Convert-WindowsImage and Disk2vhd. These updates include support for Windows Server 2012 R2 and Windows 8. 1. Tools for Hyper-V Admins Convert-WindowsImage 6. 3 The Convert-WindowsImage. PS1 script is a free download from the TechNet Script Center gallery. Convert-WindowsImage has been around since the preview releases of Windows 8 and Windows Server 2012, replacing WIM2VHD. You can use this tool to create a virtual hard disk (VHD or VHDX formats) for a virtual machine from the installation media (ISO file) of Windows. For example, say you have downloaded Windows Server 2012 R2 and you’d like to quickly deploy a generalized (Sysprep) virtual machine as quickly as possible. Fire up Convert-WindowsImage, create a new VHDX, and attach it to a virtual machine. Boot up the virtual machine, answer the mini-setup wizard questions, and you have your WS2012 machine up and running. Convert-WindowsImage is easy to use. You can run the tool completely from the PowerShell prompt (enable the execution of scripts first with either Set-ExecutionPolicy or Active Directory Group Policy); all the instructions can be found on the download page. That option might be useful for regular VM builds from the original Microsoft media (should be rare for most of us because we should use VM templates). Alternatively you can run the tool with the –ShowUI flag to open up a graphical interface and supply all the information there. This approach is much... --- ### Is Modern PC Hardware Less Reliable Now Than Ever? > Reliability is more important in devices where there are no user-serviceable parts. Check out this op-ed on PC hardware, the Asus Ultrabook, and reliability. - Published: 2014-01-14 - Modified: 2024-09-04 - URL: https://petri.com/pc-hardware-asus-ultrabook-unreliable/ - Categories: Windows Server - Tags: iSSD, linux, tablet, Ultrabook, Windows - Article Type: Opinion Read on to find out what lessons our writer had to learn when his new Asus UX32VD Ultrabook bit the dust. While I enjoy the light and convenient form factor of Ultrabooks, I miss my old clunky notebook that I could pull to pieces, repair and mod to my heart’s content. This year hasn’t been a good one for electric devices in my household. A kettle and coffee machine bit the dust, literally a few days apart from one another. Add to that a hi-fi stereo amplifier – yes I’m old-fashioned and don’t believe in listening to music through multimedia computer speakers – and the latest casualty: a brand-new Asus UX32VD Ultrabook. The Deaths of My Devices The kitchen appliances were a few years old, and because I work from home a lot, they had been used more than your average kettle. My NAD amplifier was barely two years old, and while it was at the budget end of the range, I would have expected it to last a good five years. But the most disappointing failure of the year must go to my Asus Ultrabook. After three months' use, it began hanging at power on, before finally booting to Windows after 10 minutes, and crashing when resuming from sleep. Vaya con Dios, devices. (Image via Digital Trends) Startup Headaches After doing some research, I discovered that a common problem with the Asus is a failing or dead iSSD (internal SSD) cache. Because the main storage is a mechanical hard drive, an iSSD is included to qualify the device as an Ultrabook. I confirmed my suspicions by using... --- ### Windows 8.1 and the MakerBot Replicator 2 Desktop 3D Printer > MakerBot Replicator 2 3D Desktop Printer makes 3D printing easy and fun. Check out our overview of MakerBot Replicator 2 3D printer and the 3D Builder app! - Published: 2014-01-14 - Modified: 2024-09-04 - URL: https://petri.com/makerbot-replicator-2-desktop-3d-printer-overview/ - Categories: Windows 8 - Tags: 3D Builder, 3D Printing, MakerBot, Replicator 2, Windows 8.1 - Article Type: Overview Check it out as we unbox the MakerBot Replicator 2 Desktop 3D printer and use it with Windows 8.1 and the free 3D Builder app! One of my favorite new features of Windows 8. 1 is its built-in 3D printer support. Combined with Microsoft's free 3D Builder app, users can now explore the world of 3D printing quickly and easily. Practically every PC user now has the ability to produce widgets, trinkets, and whatnots right at their desk. Always the pragmatist, I’ve obtained a new MakerBot Replicator 2 3D Desktop Printer and am hooking up to my Windows 8. 1 Pro PC just to verify that everything goes as easily as the marketing folks at Microsoft make it sound. Preparing the MakerBot Replicator 2 3D Desktop Printer The first step is to unbox and prepare the MakerBot Replicator 2. There’s a number of advantages to this particular 3D printer. It’s well constructed, uses relatively inexpensive PLA filament, comes with preloaded 3D print objects on an SD card, and has excellent support from the factory and its great user community. Plus it’s one of the 3D printers Windows 8. 1 supports out of the box. MakerBot has gone to great lengths to make setting up the Replicator 2 easy and fast. Unbox the printer, remove some shipping stabilizers, connect a few parts, and the printer is ready to power up. The Replicator 2’s LCD panel runs a startup script that guides the user through leveling the build platform, loading the PLA filament, and producing a 3D printed test object from the included SD card. In less than 20 minutes, the printer is ready to run. Another... --- ### How to Install vCHS Plugin for vSphere Web Client > vCHS Plugin for vSphere web client | Learn more about vCHS plugin for the vSphere web client, including installation and its uses. - Published: 2014-01-14 - Modified: 2024-09-04 - URL: https://petri.com/vchs-plugin-vsphere-web-client-installation/ - Categories: VMware - Tags: Cloud, vCenter, vCHS Plugin, vCloud, vSphere, Web Client - Article Type: How To Ever wanted to match up VMware's newer products? Check it out as we do just that as we install the vCHS plugin for vSphere web client. The web client for vSphere is the wave of the future. But it's still relatively new to many admins, and its adoption by vendors is slow. Most vendors have not updated their plug-ins to work with the web client yet. So recently VMware released a new plug-in that allows for some of the resources from vCloud Hybrid Service (vCHS) to be controlled from the web client. In today's post, I'll show you how to install vCHS plugin for vSphere web client, and talk about some of its uses. Installing vCHS Plugin for vSphere Web Client The vCHS plug-in is available now from VMware. Once downloaded you will need to install on the server that is hosting your web client install. After the install, when you log into the web client you will notice a new icon or application in your dashboard. The image below shows what the plug-in icon looks like. Once you click on the icon you are presented with a screen like the one below. From this screen there are a few different details presented to you. We can see which vCHS login ID the plug-in is linked to. This also shows the number of cloud instances or virtual data center within vCHS the account is connected to.   From the Cloud Instance selection we can now view the virtual data centers that we have in our vCHS account. The display is showing us the names, regions, and amount of resources that... --- ### Powershell Deployment Toolkit: Introducing Variables.XML > PowerShell Deployment Toolkit (PDT) | Learn to edit the Variables.XML file to quickly deploy our environments in System Center 2012 SP1/R2. - Published: 2014-01-13 - Modified: 2024-09-04 - URL: https://petri.com/powershell-deployment-toolkit-variables-xml/ - Categories: System Center - Tags: Automation, PDT, PowerShell, Powershell Deployment Toolkit, Scripting - Article Type: Overview We're back with more PDT! In part two of this series, edit the variables.XML file to deploy our environments in System Center 2012 SP1/R2. Following our previous post on how to use PowerShell Deployment Toolkit to deploy System Center, your PDT share is now in place and we can begin to leverage this great tool to help is quickly deploy our environments by simply editing the variables. XML file. PowerShell Deployment Toolkit and Variables. XML As we introduced in the previous post, this file is responsible to instructing the PDT system about the tasks we would like to have executed for us, which will include both the ability of deploying the necessary VMs for the environment, along with the actually installation of the components. The format of the variables. XML file is quite easy to navigate. It is dissected into five primary sections. Installer Components Roles SQL VMs This simple configuration approach is one of the key befits of using the PDT system. In normal use, you may create a number of different variables. XML files, each potentially describing different environments, or you may create different combinations of resources to be deployed in a specific environment, enabling fast deployments for specific validation scenarios. As the XML file is easily edited, you are quite likely to create an initial file to use as a starting template, and create a copy for each scenario you will deploy. Installer To help us understand this structure a little better, we will define a variables. XML that will deploy a single VM along with both a SQL 2012 instance and a copy SCVMM 2012 R2. We will... --- ### How to Perform a Nonauthoritative Restore of Active Directory > A nonauthoritative restore of Active Directory (AD) is the default restore mode for Windows Backup and most third-party backup utilities. - Published: 2014-01-13 - Modified: 2024-10-10 - URL: https://petri.com/nonauthoritative-restore-active-directory/ - Categories: Active Directory (AD), Identity Management - Tags: Ask an Admin, Backup, Backup and Restore, Disaster Recovery, featured-top-right, Restore - Article Type: How To In this quick Ask an Admin, check out how to restore Active Directory using Windows Server Backup. A nonauthoritative restore of Active Directory (AD) is the default restore mode for Windows Backup and most third-party backup utilities. This article applies to Windows Server 2016, Windows Server 2019, and Windows Server 2022 When might a nonauthoritative AD restore be performed? It is commonly used in cases where there has been a hardware or software failure on the server, or where Active Directory must be restored and then updated by authoritative versions of the AD database running on other domain controllers (DCs) in the forest. Any needed updates to AD on the restored DC are automatically replicated once the restore operation has completed. Perform a nonauthoritative restore Log in to the DC that you want to restore with a domain administrator account: Open a command prompt using the blue PowerShell icon on the desktop taskbar, or from the Start screen. In the PowerShell console window, type bcdedit /set safeboot dsrepair and press Enter. bcdedit /set safeboot dsrepair Reboot the server and it will start in Directory Services Restore Mode (DSRM). You can do this quickly from the command prompt by typing shutdown -t 0 –r and pressing Enter. shutdown -t 0 –r Wait a few minutes for the DC to reboot. You can log on locally or remotely, but remember that you will need to supply the DSRM password you set when promoting the server to a DC. The username for DSRM is administrator. If the server is booted in safe mode, 'safe mode' will be displayed on... --- ### The Purpose of a Hyper-V Failover Cluster > Hyper-V failover cluster |Discover what a failover cluster is and what role this Windows Server feature plays in enabling high availability in Hyper-V. - Published: 2014-01-13 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-failover-cluster/ - Categories: Hyper-V - Tags: Failover Cluster, HA, Hyper-V, live migration, virtual machine, Windows Server - Article Type: Overview Failing at failover clustering? Discover what a failover cluster is and what role it plays in enabling high availability in Hyper-V. With a lot of admins evaluating Hyper-V or encountering failover clustering for the first time, there appears to be a lot of confusion of what this Windows Server feature is used to accomplish. In this article I will explain what failover clustering is, and what role this Windows Server feature plays in enabling high availability (HA) in Hyper-V deployments. Failover Clustering and High Availability (HA) The purpose of failover clustering is to provide high availability (HA), which gives a server infrastructure the ability to automatically respond to machine failures. For example, say you have a virtual machine running on Host1. Host1 is just one of a number of nodes (members) of a failover cluster. It has a sudden and catastrophic failure, leading it to stop operating. Every second, each host in the cluster sends a test to every other node to ensure that they are still operational. A failure to respond to a sequence of tests indicates a node/host failure. The other nodes will detect that Host1 has failed within a few seconds because Host1 will not respond to a series of these heartbeat tests. No manual intervention is required. The cluster will automatically failover (move and start) the resources that were on Host1. For example, the virtual machine that was running on Host1 might be relocated to Host3 and started up. Host1 fails, the heartbeats time out, and a VM is failed over to Host3. Failover clustering provides Hyper-V virtual machines with... --- ### The Week in IT: Target Ups Hack Numbers, Microsoft MIA at CES? > IT news: Check out Target's IT new security woes, Microsoft's presence (or lack thereof) at CES, and the controversy over RSA's relationship with the NSA. - Published: 2014-01-10 - Modified: 2024-11-19 - URL: https://petri.com/it-news-target-ups-hack-numbers-microsoft-mia-at-ces/ - Categories: Security - Tags: News, The Week in IT - Article Type: News Check out the latest on Target's IT security woes, Microsoft's presence (or lack thereof) at CES, and the controversy over RSA's relationship with the NSA. So what were the big news stories in IT this week? Target's admission that their data breach was much bigger than previously announced was arguably the biggest news, but the ongoing speaker revolt at the upcoming RSA Conference and Microsoft's meager presence at CES are generating headlines as well. Let's start with a look at the Target news, in which we learn that even a bad IT security story can always get worse. photo: Target Brands, Inc. Target Ups Hacked Customer Estimate I mentioned the Target hacking breach in a previous installment of our Week in IT email newsletter, but the story continues to get worse. Now Target is claiming that an internal investigation of their own has "... determined that the stolen information includes names, mailing addresses, phone numbers or email addresses for up to 70 million individuals. " (Emphasis mine. ) If corporate IT staffers at other companies aren't taking IT security seriously, do you think they will now? RSA Speaker Revolt Continues Not long ago, a bombshell Reuters story by Joseph Menn alleged that the U. S. National Security Agency (NSA) had worked out a secret deal with security company RSA that would effectively allow the NSA back-door access to corporations and individuals using RSA security products and services. RSA issued a denial that some say didn't go far enough, so as a result a number of RSA conference speakers have announced that they're boycotting the upcoming RSA Security conference, which takes place February 24-28 at the Moscone Center... --- ### VMware vCenter Operation Manager for Horizon View: Walkthrough > vCenter Operation Manager for Horizon View |Got some virtual desktops to manage? Read our introduction to vCOPs for View to find out what it can do for you! - Published: 2014-01-09 - Modified: 2024-09-04 - URL: https://petri.com/vmware-vcenter-operation-manager-horizon-view-walkthrough/ - Categories: VMware - Tags: Manage, vCOps, VDI, vmware, VMware View, vSphere - Article Type: Overview Need to wrangle some virtual desktops? Read our vCOPs for View walkthrough to find out how it can help you! I've often said that it's pretty easy to manage a small VDI environment, but things change when you start scaling above a few hundred desktops. The amount of work and complexity of the environment changes, you are now dealing with a complex infrastructure stack to supply resources to the desktops. Above the hardware, you now have a large number of user sessions to support. To help with the task of managing this type of environment, admins need some type of tool set. Currently the choices to manage VDI environments is pretty limited. If you are a VMware Horizon View customer, the leading tool choice would be VMware vCenter Operations Manager (vCOPs) for Horizon View. I have put together a detailed walkthrough on what you can expect to get out of the tool in this post. (Note: The screen shots are big pictures that I had to shrink down, but I wanted to illustrate all the data points that you are able to see. You can see the full size image by clicking on each image. ) VMware vCenter Operations Manager for Horizon View Dashboard Upon logging into vCOPs for Horizon View you will be greeted with the dashboard. From here you can get a high-level view of how your environment is performing. There are sections that show you the following data. Horizon View alerts – Error alerts for different parts of the environment Infrastructure workload – Get visibility on how hosts and other parts are performing Horizon View... --- ### Setup a Virtual Network in Windows Azure > Create a virtual network in Windows Azure to set up a lab environment for Active Directory. Check out this easy-to-follow guide! - Published: 2014-01-09 - Modified: 2024-09-24 - URL: https://petri.com/setup-virtual-network-windows-azure/ - Categories: Cloud Computing - Tags: Active Directory, Ask an Admin, Domain Controller, static ip address, Windows Azure, Windows Server 2012 - Article Type: How To You got lab needs, we got a solution. In this Ask an Admin, create a virtual network in Windows Azure to set up a lab environment for Active Directory. How do I set up a virtual network in Windows Azure that doesn't use computer resources when idle? To be fair, Windows Azure isn’t designed to be used by IT professionals for the purposes of setting up lab environments, but there are advantages to using Azure over other cloud services designed specifically for the purposes of creating test environments. In this Ask the Admin, I’ll show you how to set up a virtual network in Windows Azure so that VMs receive the same IP address every time they are started after deallocation. No Support for Static IP Addresses The biggest immediate drawback with Azure is that there is no support for static IP addresses. That is, setting a static IP address in the network configuration on Windows Server is not supported, and DHCP must be used for IPv4 address configuration. This is a problem for Active Directory domain controllers, which must be configured with the same IP address every time they are started. To resolve this issue, Azure introduces the concept of persistent IP addresses, in which VMs are guaranteed to receive the same IP address each time they start, provided that the VM is stopped and not shut down (deallocated). While in a production environment this minor restriction is not likely to be a problem, for IT professionals wishing to set up a lab environment, VMs that are allocated fabric resources generate compute costs. Virtual Network for a Lab Environment In the... --- ### How to Setup Lync Federation > Learn to setup Lync Federation, a handy tool for keeping up external communications with businesses and colleagues. - Published: 2014-01-09 - Modified: 2024-09-04 - URL: https://petri.com/setup-lync-federation/ - Categories: Exchange Server - Article Type: How To Lync is a great tool for internal communications, but have you tried it for external communications? Find out how to deploy Lync Federation in this post! How often have you sent an email to a business partner that ended up being a 25-email conversation thread... which at some point started discussing what you’re going to do over the weekend? If you have Microsoft Lync deployed and that partner had Lync, you can setup a Lync federation partnership and eliminate those long email conversation threads by simply having an IM session with your coworker. Not only have you become more productive by saving time from writing that email about your plans, but you might also keep your Exchange admin happy as well. After all, email is not a chat session. Types of Lync Federation Using Lync is a great tool to communicate internally, but it can also be used to communicate with your external partners or businesses just as easy using Lync Federation. This article will discuss what you need to do to get federated with an external Lync deployment. Lync Federation with another external Lync deployment, typically a business partner/customer, allows the users of the federated partnership to access IM and Presence (person to person only), and it creates federated contacts within the Lync client. Perhaps you want to limit the federation to only a subset of users. This can be accomplished via Lync External Access Polices assigned by users. There are several types of Lync Federation: Discovered Partner Domain, Allowed Partner Domain, Allowed Partner Server, and Hosting Provider and Public IM. Discovered Partner Domain (Open Enhanced Federation) The... --- ### Restoring a File or Folder in Windows Server 2012 R2 > Learn how to use Windows Server Backup in WS2012 R2 to restore a file or folder in this easy Ask an Admin article! - Published: 2014-01-08 - Modified: 2024-09-24 - URL: https://petri.com/recover-file-or-folder-windows-server-backup/ - Categories: Windows Server 2012 - Tags: Backup, Disaster Recovery, Recovery, Windows Server 2012 R2, Windows Server Backup - Article Type: How To In this easy-peasy Ask an Admin, find out how to use Windows Server Backup in WS2012 R2 to restore a file or folder. Help! How can I recover a file in Windows Server 2012 R2? I recently wrote an Ask the Admin article on how to run a backup job using Windows Server Backup. While the article refers to backing up a domain controller, the same instructions can be used to back up a file server. Before you try to restore a file or folder, don’t forget that if you need to restore an application, such as Active Directory or Exchange, special instructions apply in most scenarios and you should follow the advice given by Microsoft, or other vendors in the case of a third-party application. Restore a File or Folder Using Windows Server Backup The instructions below assume that you already have Windows Server Backup installed on the server, as it will have been used to create the backup. Log on as a local administrator or other user that has permission to restore files. Open Server Manager from the desktop taskbar or Start screen, and select Windows Server Backup from the Tools menu. In the wbadmin console, click Local Backup in the left pane. In the right pane of the console, click Recover under Actions. In the Recovery Wizard, I’m going to select This server under Where is the backup stored that you want to use for the recovery? , because the backup is located on a disk attached to the server. If your backup is located on remote drive, you will need to perform an additional step and provide the... --- ### Choosing Between VLANs or Hyper-V Network Virtualization > Discover the pros and cons of using Hyper-V Network Virtualization (aka Windows Network Virtualization) or VLANs in Hyper-V virtualization or clouds. - Published: 2014-01-08 - Modified: 2024-09-04 - URL: https://petri.com/use-vlans-or-hyper-v-network-virtualization-hnv/ - Categories: Hyper-V - Tags: Hyper-V, networking, Virtualization, VLAN, Windows Server, Windows Server 2012, Windows Server 2012 R2 - Article Type: Overview HNV or VLAN? In this post, discover the pros and cons of using Hyper-V Network Virtualization or VLANs in Hyper-V virtualization or clouds. In this Petri IT Knowledgebase post I want to give you the information so you can decide if you should use Virtual Local Area Networks (VLANs) or Hyper-V Network Virtualization (HNV) as the means for isolating networks in your Hyper-V deployments. What Are VLANs? VLANs were created to allow a layer-2 network to be broken up into multiple broadcast domains. The primary reason for doing this was to control broadcast traffic. A single large flat network was once a very noisy place, with a broadcast packet being sent by clients to locate services. This is mostly a thing of the past in Windows networks, thanks to DNS being an essential components of Active Directory and Internet communications. There were other benefits to VLANs. The first of which was that creating VLANs allowed network administrators to break up a single physical LAN into multiple subnets. This meant that a single LAN could support multiple subnets, and therefore handle more IP addresses with a shared network core. A secondary benefit of creating subnets using VLANs was that you could use router or firewall rules to isolate those networks. However, VLANs were never meant to be used or to scale out in the way that we have used them. A network can support up to 4096 VLANs. That number might sound large, but they disappear quickly once you start to deploy them. Just ask a network administrator in a hosting company where each tenant requires at least one (maybe many)... --- ### Deploying System Center Using the PowerShell Deployment Toolkit > Learn how to use PowerShell Deployment Toolkit (PDT), a mandatory utility for anyone who needs to get an environment installed for System Center 2012 SP1/R2. - Published: 2014-01-08 - Modified: 2024-11-19 - URL: https://petri.com/use-powershell-deployment-toolkit-deploy-system-center/ - Categories: System Center - Tags: Automation, PDT, PowerShell, Scripting - Article Type: How To Need an environment installed for System Center 2012 SP1/R2? Check out the power in the PowerShell Deployment Toolkit in part one of a new series. What's in a name? With the name "PowerShell Deployment Toolkit," (PDT) one would be forgiven for assuming that this utility is some silly script created to assist those of us who are still living with some aging versions of Windows Client OS in our environment and and who need to get PowerShell deployed to these nodes. PowerShell Deployment Toolkit (PDT) and System Center 2012 SP1/R2 Don't get the wrong impression. The PowerShell Deployment Toolkit is a work of art and a mandatory utility for anyone who has the slightest requirement for getting an environment installed for System Center 2012 SP1 or R2. Locked behind this unassuming name is a super powerful set of three PowerShell scripts and two XML files that will forever change how you will prepare your lab, proof of concept – or, for the very accomplished – potentially your production installations. At the time of this writing, PDT is floating at version 2. 5. 2708 and fully supports the deployment of both System Center 2012 SP1 and R2. It also will cater for building out an Active Directory Domain if you prefer to lab your installations – and of course you will require a SQL Server, which the toolkit is more than willing to also accommodate for you. Getting the Bits The first step in getting going with PDT is to take a quick trip to the Technet Gallery, where you will find the latest and greatest versions of the PowerShell Deployment... --- ### Getting to Know the New vSphere Web Client > vSphere Web Client | Check out our helpful walkthrough on VMware vSphere Web Client and how it compares to the classic vSphere client. - Published: 2014-01-07 - Modified: 2024-09-04 - URL: https://petri.com/vmware-vsphere-web-client-introduction/ - Categories: VMware - Tags: vCenter, vSphere, Web Client - Article Type: Overview Hey, stop dragging your heels and check out our helpful intro to the new VMWare vSphere Web Client already! With 2014 fresh on the calendar, you may look back and wonder if VMware vSphere 5. 5 will be the last version of the classic thick vSphere client – for some time now, VMware has been warning us that the vSphere Web Client is the future and the old thick client will be retired in some upcoming version. We still have both versions in the current vSphere 5. 5 version and must use them both. Since only new features are released in the web client, but a few old features like SRM or VUM require the thick client, we cannot sent it out to the pasture just yet. So if you have been avoiding the web client to this point, I have put together a nice introduction to vSphere Web Client to get you moving. Introduction to vSphere Web Client Upon visiting the link to the vSphere Web Client you are prompted with the common VMware login splash screen shown below. They are using this look in nearly all their products currently. Hey, this sort of looks familiar, right? The initial look of the vSphere Web Client is not that far off from the classic client. You are presented with all the major icons and applications that you can access from the vCenter. This is pretty straightforward, so I won't bore you on the specifics. But I did want to point out the top the two icons that I have highlighted in the image below. These will get you back... --- ### Best Free Image and Video Editing Software for System Administrators > Looking for free or open-source utilities to manage images and play video? Read on to discover some of the best free and open-source image and video utilities. - Published: 2014-01-07 - Modified: 2024-09-04 - URL: https://petri.com/best-free-image-video-editing-software-sysadmins/ - Categories: Windows Server - Tags: Artweaver, Greenshot, Irfanview, Paint.NET, VLC Media Player, XnView - Article Type: Opinion Want a free or open-source utility to manage images and play video? Check out our list of awesome image and video utilities! Capturing, editing, saving, distributing, and displaying image and video files can be an onerous task for many system administrators. Have you ever been asked to resize hundreds of photos by the marketing department, or called into help the CEO play video files on his new Windows 8 laptop? Thankfully, there are a number of high-quality free and/or open-source image and video utilities that can make those tasks easier. So in the interest of spreading the wealth of knowledge to as many people as possible, we've put together this handy guide of the best image and video editing utilities currently available. Some of these entries were submitted and/or suggested by Petri IT Knowledgebase readers as part of our free tools for system administrators directory. This listing is absolutely a work in progress, so please add a comment or drop us a note if you don't see your favorite utilities on this list. And just to be clear, not all of these tools are free for commercial use, so please check the license agreement and make sure your planned use case is covered. Artweaver (Boris Eyrich Software) The gold standard of image and photo editing software is unarguably Adobe Photoshop, but the prohibitive cost of that product means that many IT shops do without. An excellent freeware alternative that delivers most of the most important features of Photoshop in a user-friendly, inexpensive package, Artweaver has a few fans among Petri IT Knowledgebase readers. IT Manager Bill Schieche uses Artweaver Free... --- ### Windows XP: It's Time to Say Goodbye > Windows XP ends its user support in April 2014. Learn why you should migrate from Windows XP to Windows 7 for a more secure computing experience. - Published: 2014-01-07 - Modified: 2024-09-24 - URL: https://petri.com/end-of-windows-xp/ - Categories: Windows XP - Tags: Data Execution Prevention, migration, Secure Boot, Support, UEFI, Windows 7, Windows 8, Windows Server 2012 R2, Windows XP Mode - Article Type: Opinion Windows XP ends its user support in April 2014. Don't be left in the dust! Learn why you should migrate from Windows XP to Windows 7 right now. Extended support for Windows XP SP3 ends in April 2014, after which time only expensive custom support will be available to those companies that can afford the premium. Today I'll bid Windows XP adieu, and discuss why it's important you migrate to Windows 7 or Windows 8. Windows XP Ain't Cutting It According to Microsoft’s Security Intelligent Report v15, which collects real-world data from the first half of 2013, Windows XP is six times more likely to be infected with malware than Windows 8. That’s not surprising, as the security built in to Windows XP was designed in a time where the threat landscape looked completely different. Despite efforts to improve security in Windows XP SP2, those defenses are still not sufficient to protect against today’s sophisticated attacks. Migrating from Windows XP to Windows 7 (or Windows 8) Many companies have already bitten the bullet and completed a migration to Windows 7, or are in the process of moving to Windows 7 (or Windows 8). Migrating away from XP can be further complicated when old hardware doesn’t support the 64-bit architecture, the preferred platform for modern versions of Windows. Although if you are unable to refresh the hardware, after April 2014 migrating to a 32-bit edition of Windows would still be preferable to continuing with Windows XP. If application compatibility is what's keeping you from moving away from Windows 7, consider a virtualization solution such as Windows XP Mode for Windows 7, which will allow you to... --- ### Back Up a Windows Server 2012 R2 Domain Controller > Learn how to back up a Windows Server 2012 R2 domain controller and install Windows Backup components in this new Ask an Admin. - Published: 2014-01-06 - Modified: 2024-09-24 - URL: https://petri.com/backup-a-windows-server-2012-r2-domain-controller/ - Categories: Windows Server 2012 - Tags: Backup, Disaster Recovery, Windows Backup, Windows Server 2012 R2 - Article Type: How To In this Ask an Admin, find out how to use Windows Backup to back up a Windows Server 2012 R2 DC. How can I back up a Windows Server 2012 R2 domain controller? In this Ask the Admin, I’ll walk you through the simple procedure of backing up a Windows Server 2012 R2 domain controller using Windows Backup. Third-party backup solutions are ubiquitous in the enterprise, but Windows Server 2012 R2’s built-in backup program might suffice in some situations. Windows Backup no longer supports backup to tape, so you’ll need a disk available that doesn’t host the operating system files or the Active Directory NTDS database and log files. Install Windows Backup Components Log on to the domain controller (DC) with a domain admin account and open a PowerShell prompt using the blue icon on the desktop taskbar or from the Start screen. In the PowerShell console, type add-windowsfeature windows-server-backup and press Enter. Open Server Manager from the desktop taskbar (or from the Start screen if it’s not already open) and select Windows Server Backup from the Tools menu. In the wbadmin console, click Local Backup in the left pane. Now select Backup Once under Actions in the far right pane. You can also choose to perform the same task but create a regular backup by defining a schedule. In the Backup Once Wizard, select Different Options and click Next. On the Select Backup Configuration screen, select Full server (recommended) and click Next. On the Specify Destination Type screen, select Local drives and click Next. On the Select Backup Destination screen, select your dedicated backup volume in the... --- ### Configuring VM VLAN Isolation in Hyper-V > Learn to isolate virtual machines using VLANs in Hyper-V, including network configuration and VM configuration. - Published: 2014-01-06 - Modified: 2024-09-04 - URL: https://petri.com/configure-vm-vlan-isolation-hyper-v/ - Categories: Hyper-V - Tags: networking, virtual machine, Virtualization, VLAN, Windows Server - Article Type: How To Don't overthink it! In this post, learn to isolate virtual machines using VLANs in Hyper-V, including network and VM configuration. Those who are new to Hyper-V overthink the architecture required to deploy VMs that are isolated using VLANs. The configuration is actually quite simple, so in today's post I'll show you how to implement VLANs with Hyper-V. The Hard Part: Network Configuration The difficult part of deploying VLAN-isolated Hyper-V virtual machines is done by the network administrator. While I say “difficult," the amount of work required is less than what would be needed to do isolate individual physical servers instead of virtual machines. Each required VLAN is created and configured by the network administrator. IP ranges are assigned, and routing/firewall rules are configured. The network administrator will ask which physical switch ports will be used by the new VLAN. Instead of assigning dedicated ports as you would with a physical server, you will ask the network administrator to trunk one or more (if you are using NIC teaming for the virtual switch) ports for the Hyper-V host in question. Tip: Make sure that you understand where your virtual machines might live migrate to. You need to ensure that each possible host has an identical physical switch port configuration. If a VM on Host1 can live migrate to Host2, Host3 and all the way to Host64 then the network administrator needs to configure the trunk ports for each host. This might sound like a lot, but with scripting this is simple and is many times more attractive than static VLAN assignment that might be done by the network... --- ### Windows Azure Pack (WAP) Framework Components > Learn more about Windows Azure Pack (WAP) and the five primary APIs that make up the WAP framework! Also learn about portals, providers, and firewalls. - Published: 2014-01-06 - Modified: 2024-11-19 - URL: https://petri.com/windows-azure-pack-wap-framework-components/ - Categories: System Center - Tags: cloud computing, scvmm, Service Provider Framework, SPF, WAP, Windows Azure Pack - Article Type: Overview Now that you've had your intro to WAP, learn more about the five primary APIs that make up its framework! In our previous post on Windows Azure Pack (WAP) Framework we spent some time presenting the role in which the Windows Azure Pack plays in System Center 2012 R2 as we begin to start truly delivering solutions as services to our customers. In this post we will take a much closer look at the core components that form the framework of the Windows Azure Pack, and attempt to demystify and explain the seven-server requirement needed to host the framework. Windows Azure Pack Framework Components The framework is comprised of a number APIs, which are all delivered through the Web Platform Installer. In total there are five primary APIs used in the core of the framework. Tenant API Tenant Public API Tenant Authentication API Admin API Admin Authentication API The configuration details for all of the APIs is stored in a MS SQL server set of databases. This is accomplished by using an additional site, which is automatically installed as a dependency when the platform installer is used to deploy one or more roles to a server. The configuration site is hosted by default on port 30100 of each server to which a component is deployed. Launch the configuration site; the wizard will ask for the details to access to configuration database, and it will then automatically bind the installed components to the installation. For every additional server you add, simply repeating this procedure will bind the hosted components into the framework. An immediate benefit of this flexibility is... --- ### What Is on Your VMware Learning List in 2014? > Check out our VMware and virtualization to-do list for 2014, and tell us what you're planning on learning this year! - Published: 2014-01-02 - Modified: 2024-09-24 - URL: https://petri.com/vmware-learning-list-2014/ - Categories: VMware - Tags: Automation, Cloud, Java, Orchestration, vmware - Article Type: Opinion Every IT pro should have a to-do list of things he or she wants to learn. Check out what's on our writer's VMware learning list for 2014! As the year comes to a close, I often like to work on my to-do list for the upcoming year. My list will contain a long list of things that I want to learn, work with, or do. Today I'll share some of what's on my list – particularly what I think will be of interest to others in the virtualization world. Some of these items are a must, while others are things that I want to learn and will try and find the time for them. Usually time is my biggest obstacle (as I'm sure it is for others), but by setting some goals, I hope to complete them. 1. Learn Basic Coding Skills Second things... first? In order to accomplish the second item on my list (automation and orchestration), first I should learn some basic programing fundamentals. I'm not looking to learn how to write an entire application, nor am I planning on writing the next highly addictive mobile game. What I do need to be able to do is understand how variables, classes, and other such items are used. This will help me write my own scripts and be better prepared to learn some of the automation tools. I have not yet decided which language I will pick – perhaps Java or something C based. I will do some research and talk with others to see which might be the best fit for my goals. 2. Learn More About Automation... --- ### Setup Windows Azure PowerShell Management > Learn to setup Windows Azure PowerShell cmdlets to manage Azure remotely from the command line in this quick 'n' easy Ask an Admin. - Published: 2014-01-02 - Modified: 2024-09-24 - URL: https://petri.com/windows-azure-powershell-management-setup/ - Categories: Cloud Computing - Tags: PowerShell, remote management, Windows Azure - Article Type: How To In this Ask an Admin, find out how to install Windows Azure PowerShell cmdlets to manage Azure remotely from the command line. How do I set up Windows Azure PowerShell management? If you need to manage servers in Windows Azure, the web management portal provides most of the functionality you will need, but it will probably soon become clear that it would be convenient to automate certain operations. In this Ask the Admin, I’ll show you how to set up PowerShell management from your local computer to your Azure account. Download PowerShell Cmdlets for Windows Azure Before you can begin using PowerShell to manage Windows Azure, you’ll need to install the Azure management cmdlets on your local machine. The cmdlets can be downloaded for free. Scroll down to the bottom of the web page and you’ll see a link to the latest Windows Azure PowerShell installer. Run the downloaded installer on your local computer. You’ll need to supply administrative credentials if you are not already logged in with an administrator account. After a few seconds, the Web Platform Installer will start. Click Install to start the process. In the new pop-up window under Prerequisites, click Direct Download Link to the right of Windows Azure PowerShell. The link will then open in a web browser, where you can save the Azure PowerShell installer separately to avoid installing all of the tools that are part of Web Platform Installer. While you can choose to install only the Azure PowerShell cmdlets directly using the Web Platform Installer, several other components deemed dependent will also be installed. They shouldn’t be needed if you... --- ### How to Export or Backup a VMware vSphere Distributed Switch (vDS) Configuration > VMware vSphere Distributed Switch (vDS) | Learn how to backup the configuration of distributed switches with vSphere and the web client. - Published: 2013-12-31 - Modified: 2024-09-24 - URL: https://petri.com/vmware-vsphere-distributed-switch-vds-configuration-export-backup/ - Categories: Backup & Storage - Tags: Distributed Switch, Editor's Pick, vCenter, VDS, vmware, vSphere - Article Type: How To Learn how to backup the configuration of distributed switches with vSphere and the web client in this helpful how-to guide! The VMware vSphere Distributed Switch (vDS) has long been one of my favorite features. vDS won me over in the beginning with its advanced features and simplified management features. VMware has continued to add features to the vDS, making it a leading contender in the virtual switch space. In the past, one of the features that was missing was the ability to backup and restore the configuration of the vSphere Distributed Switch by admins. The release of vSphere 5. 1 in 2012 brought the vSphere web client and the ability to export the vDS configuration. I will say the web client is still trying to make friends with most admins, but the vDS export function has won many over. This now allows for the vDS config to be exported for backups and easy recovery. Another possible option would be to use the exported configuration to rapidly build other vDS switches that you want to be configured in the same way. vSphere Distributed Switch (vDS) Export To get the process started we must log into the vSphere web client. This is one of the new features and cannot be performed from the classic thick vSphere client. Once logged in, proceed to the network view within vCenter and expand the tree on the left and look for the vDS that you want to backup. The image below shows that I have selected the switched named "vDS. "Right-click the name, and you'll see the options shown in the image below. From the list, proceed to the All vCenter Actions... --- ### Setup a Windows Server 2012 R2 Domain Controller in Windows Azure: Provision a VM with a Persistent IP Address, Install AD DS > Install a WS2012 DC in a Windows Azure VM. Learn to provision a VM in Azure with a persistent IP address, & configure AD DS, & promote a server to a DC. - Published: 2013-12-31 - Modified: 2024-09-24 - URL: https://petri.com/build-windows-server-2012-r2-domain-controller-windows-azure-provision-a-vm-with-a-persistent-ip-address-and-install-ad-ds/ - Categories: Windows Server 2012 - Tags: Active Directory, Domain Controller, Virtualization, Windows Azure, Windows Server 2012 R2 - Article Type: How To In part 2 of this series, learn to provision a VM in Windows Azure with a persistent IP address, configure AD DS, and promote a server to a DC. In the second part of this series on how to install a domain controller in a Windows Azure virtual machine (VM), I’ll show you how to provision a VM with a persistent IP address and how to correctly install the AD DS role and promote the server to a domain controller. If you need to catch up, check out part one, in which we took a look at how IP addressing works in Windows Azure and how to create a virtual network for your domain computers. Configure New VM Using PowerShell At the time of writing this article, the only way to ensure that a VM receives a persistent IP address every time it is started from a virtual network is to create the VM using PowerShell. Before you can use PowerShell to remotely manage Windows Azure, you will need to set up remote management on a computer on your local network. For more details on how to set up remote management, see my Ask the Admin article here. Let’s start by setting the current Azure subscription in PowerShell. Open a PowerShell prompt with elevated privileges: In the PowerShell console, type Get-AzureSubscription, and make a note of the SubscriptionName in the output. In my case, Pay-As-You-Go. Type Get-AzureStorageAccount, and make a note of Label in the output. My storage account is labelled portalvhdsxgwgzn2ml54p5. Now set the Azure subscription in PowerShell as follows using the SubscriptionName and Label parameters from the commands above: Set-AzureSubscription “Pay-As-You-Go” -CurrentStorageAccount portalvhdsxgwgzn2ml54p5 Get... --- ### Top 10 Petri IT Knowledgebase Articles of 2013 > With 2014 just around the corner, we take a look at back at our ten most popular articles published in 2013. - Published: 2013-12-31 - Modified: 2013-12-31 - URL: https://petri.com/top-10-petri-it-knowledgebase-articles-2013/ - Categories: Windows Server - Tags: Best articles of 2013, Top 10 - Article Type: Overview Now that we're on the verge of a brand new year, we take a look at back at our ten most popular articles published in 2013. Happy New Year! Now that another year is drawing to a close, we all can look back and reminisce on what has transpired over the last 12 months. 2013 has been a big year for tech news, and a similarly big year for informational and how-to articles about IT technology. Helping IT professionals more effectively do their jobs has always been at the heart of what we do at the Petri IT Knowledgebase, and this year was no different. So in the interest of highlighting our most popular articles published in 2013, I'd like to present the following list. This compilation is based primarily on web traffic, so we consider your votes -- via page views and other web traffic data -- as the deciding factor in what made the cut. You can also take a look at the most popular Windows Server articles of 2012 if you're feeling nostalgic. 10. Disabling User Account Control (UAC) in Windows 8 (Jeff James) One of the most annoying (and useful) features of Windows Vista was the introduction of User Account Control (UAC), a program feature that enhanced Windows security by prompting users to allow certain actions to happen. This helped minimize the impact of malware, but also drove users (and IT staff) crazy with incessant and eventually annoying error messages, as famously lampooned in this Mac vs PC TV spot. Microsoft has made vast changes to UAC in Windows 7 and Windows 8, but there are still reasons to turn UAC off... . --- ### Alternatives to Microsoft Forefront Unified Access Gateway - Published: 2013-12-30 - Modified: 2013-12-30 - URL: https://petri.com/microsoft-forefront-unified-access-gateway-alternatives/ - Categories: Security - Tags: Forefront Unified Access Gateway, UAG - Article Type: Overview We bid adios to Microsoft Forefront UAG. Need to find a replacement? Check out our four alternative solutions! The Internet was hardly stunned by Microsoft’s announcement on December 17, 2013, that it was killing off one of the last remnants of its Forefront product line: Forefront Unified Access Gateway (UAG). UAG’s sister product, Forefront Threat Management Gateway (or as many know it, ISA Server), was already put out to pasture in 2012, but the silence around the future roadmap for UAG made many uneasy, particularly as UAG used a base install of Threat Management Gateway to secure itself. Forefront Unified Access Gateway (UAG): What Happened? In a way, UAG was always a time-bound product. It came to Microsoft as the result of the acquisition of Whale Communications in 2006, serving a purpose that was appropriate at the time: to provide fat clients access to internal services from remote locations. Throughout, Microsoft had been billing UAG as a great product to use as a reverse proxy, publishing internal services out to beyond the edge of the network in a secure, inspected way. With a huge service pack after its release, UAG also served to provide a much-needed shortcut in the Windows Server 2008 R2 era to get the DirectAccess remote access and management solution working without tying yourself in knots. For those companies not interested in deploying DirectAccess, it also made a capable SSL VPN solution for secure work on the go. Nowadays, however, people need more than fat client solutions. Tablets are everywhere. Devices are personally owned. And most organizations are interested in exposing and... --- ### Review: Lenovo ThinkPad S1 Yoga > Check out the Lenovo ThinkPad S1 Yoga in this review, Lenovo's version of their critically acclaimed Yoga Ultrabook. - Published: 2013-12-30 - Modified: 2024-09-04 - URL: https://petri.com/lenovo-thinkpad-s1-yoga-review/ - Categories: Windows 8 - Tags: Hardware, Laptop, Lenovo, Windows, Windows 8.1, Yoga - Article Type: Review Is the ThinkPad S1 Yoga, Lenovo's version of their critically acclaimed Yoga Ultrabook, worth a look? Check out our review for more! In this article I will review the new ThinkPad S1 Yoga, the business version of Lenovo's critically acclaimed Yoga Ultrabook. This is the first Lenovo that I've used in several years, and frankly, the last experience was pretty dreadful. Will things have changed? Ultrabook or a Hybrid? When you are considering the Lenovo ThinkPad S1 Yoga then you have to understand what this machine is. Is it a hybrid machine that spans the laptop and tablet worlds? Is it a tablet? Or is it an ultrabook laptop? The Yoga has a nice trick up its sleeve. Imagine taking your laptop out of your bag and opening it. Keep pushing the screen back and eventually it stops at around 150 degrees (almost flat). The Yoga keeps going thanks to a double-jointed hinge that connects the touch screen to the base. This gives you: Laptop mode: The normal usage scenario where you use the mouse/keyboard and occasionally touch the screen. Stand mode: The screen is pushed beyond the norm. The keyboard sinks into the base into a locked position and is placed facing down onto a desk or your lap. You interact with the touch screen. Tent mode: This one is useful on a plane. Say you're crammed into a plane and have very little space to move, but you still want to watch a movie. Simply push back the screen and place the Yoga standing on its edges with the screen facing you and the keyboard facing away from... --- ### The Best Windows 8.1 Business Ultrabooks > Check out some of the top Windows 8.1 ultrabooks for businesses! We look at some of the premium Windows 8.1 ultrabooks and break down their pros and cons. - Published: 2013-12-26 - Modified: 2024-09-04 - URL: https://petri.com/best-windows-8-1-business-ultrabooks/ - Categories: Windows 8 - Article Type: Opinion Are ultrabooks the next big thing for businesses? We look at some of the top Windows 8.1 ultrabooks and break down their pros and cons. While ultrabooks are a niche form factor in PC sales (the traditional laptop still rules), they are the headline-stealers, and they are the machine that the director or sales person will be interested in purchasing. In this article, I will discuss what I consider to be important features in an ultrabook, look at some of the premium Windows 8. 1 devices for business customers on the market, and break down their pros and cons. What Is an Ultrabook? Intel designed the ultrabook specification to provide a sub-notebook that is based on the Wintel architecture, and is similar to the Macbook Air. Ultrabooks are intended to be premium, thin and light laptops, aimed at consumers who want high-quality machines, and mobile workers who require convenience (no searching for power, easy to store while travelling, and so on). The specification has evolved since it was first released in 2011, pushing manufacturers to improve customer experience, but broadly speaking it states that a machine is an ultrabook if it meets the following requirements. Low power processor: A lower power variant of the Core I processor is used. Size: The machine is thin.   The current spec (codename “Shark Bay," June 2013) allows 13. 3-inch laptops to be a maximum of 20 mm thick and 14-inch laptops to be up to 23 mm thick. Battery life: Should last nine hours (minimum) sitting idle and six hours when playing back HD video. Resume time: Mobile workers expect to be able to take their laptop out... --- ### Setup a Windows Server 2012 R2 Domain Controller in Windows Azure: IP Addressing and Creating a Virtual Network > Install a Windows Server 2012 domain controller in a Windows Azure virtual machine. Learn to about IP addressing and create virtual networks in part 1. - Published: 2013-12-26 - Modified: 2024-09-24 - URL: https://petri.com/build-windows-server-2012-r2-domain-controller-windows-azure-ip-address-virtual-network/ - Categories: Cloud Computing - Tags: Active Directory, Domain Controller, Virtualization, Windows Azure, Windows Server 2012 R2 - Article Type: How To Learn to about IP addressing and create virtual networks in part one of this new series on installing a Windows Server 2012 R2 DC in Windows Azure. While it’s easy to get a virtual machine (VM) up and running on Windows Azure, you need to take some extra steps before configuring a VM if it’s going to host an Active Directory domain controller or any application that requires a static IP address. In the first of a two-part series on how to install a domain controller in a Windows Azure virtual machine, I’ll look at how IP addressing works in Windows Azure and how to create a virtual network for your domain computers. In part two, I'll show you how to provision a VM with a persistent IP address and how to correctly install the AD DS role and promote the server to a domain controller IP Address Assignment in Windows Azure When you configure a new VM in Windows Azure, it receives an IP address automatically and keeps it until the end of the current session, i. e. until the VM is shutdown, restarted or deallocated. Configuring a network adapter with a static IP address is not supported in Azure VMs, but it is possible to ensure that a VM receives the same IP address every time it is started. Server applications, such as Active Directory domain controllers (DCs), rely on having a static IP address, so the default method for assigning IP addresses in Azure is a problem if you want to install Active Directory in a VM. The solution to the problem is to create a virtual network in Azure and provision... --- ### Getting to Know VMware Hands-on Labs (HOL) Online > VMware Hands-on Labs (HOL) Online | You can now explore the amazing products from VMware with an online lab! Learn more about HOL in this overview. - Published: 2013-12-24 - Modified: 2024-09-24 - URL: https://petri.com/vmware-hands-on-labs-hol-online-introduction/ - Categories: VMware - Tags: HOL, Horizon Suite, Labs, Mirage, vCenter. vCloud, View, vmware, vSphere - Article Type: Overview You can now explore the amazing products from VMware with an online lab – without having to go to VMworld! Learn more about HOL in this helpful overview. I'm a big fan of vendor-supplied hands-on labs. They're a great way to learn about new products or increase your skills with something with which you have limited experience. Usually I have to try to get experience at work, and if that was not possible I would need to setup a home lab and seek the solution there. Sometimes these options could be challenging due to limited trial periods or no trial being offered. So when VMware announced that they would be offering the same labs they have at the VMworld events to everyone for free on the Internet, IT folks got pretty excited. The labs at VMworld are a big deal – the lines can be long and they run extended hours just to service all of the people. These labs provide admins with a method to get their hands on products that were likely just announced at the conference. With VMware Hands-on Labs online (HOL), VMware is now offering you the freedom to take these labs online outside of the conference. This allows people who are not able to attend VMworld the ability to have the same personal experience with products. In this post, I will walk you through the VMware Hands-on Labs online dashboard and some of the main parts of the lab interface. VMware Hands-on Labs Dashboard Go to the Hands-on Labs dashboard online and you will see a dashboard like the one shown below. From here you can enroll and take labs. There... --- ### Is the Pro Edition of Windows 8 Sufficient for Your Small Business? > Learn about the differences between the Windows 8 Pro and Enterprise editions, and whether Windows 8 Pro is sufficient for your small business. - Published: 2013-12-24 - Modified: 2024-09-24 - URL: https://petri.com/windows-8-pro-sufficient-small-business/ - Categories: Windows 8 - Tags: Opinion, Windows 8 Enterprise edition, Windows 8 Pro - Article Type: Overview Does your SME need a push? Learn about the differences between Windows 8 Pro and Enterprise, including deploying in-house modern UI apps and more. Windows 7 Ultimate edition contained all the features from every SKU of the OS, including the Enterprise edition. But there is no Windows 8 Ultimate, and some features, such as BranchCache and AppLocker, are only available if you obtain the Windows 8 Enterprise edition via a Windows Intune or Software Assurance (SA) subscription. Windows 8 Pro vs. Enterprise Windows 8 Pro contains all the features that Microsoft deems critical for standard business operations, like the ability to join an Active Directory domain, BitLocker, and Group Policy, but there are five features that are only found in the Enterprise edition of Windows 8: Windows-To-Go DirectAccess BranchCache AppLocker Virtual Desktop Access (VDA) licensing rights While these features might be useful in certain scenarios (with the exception of Windows-To-Go and VDA access rights), they are not mandatory for providing end-user functionality. Windows-To-Go can be beneficial for BYOD, but it’s unlikely that many small businesses have the hardware or technical resources to take advantage of it. Much the same can be said for VDA licensing rights, as SMEs rarely have the resources to invest in a Virtual Desktop Infrastructure (VDI).   DirectAccess requires some infrastructure investment, such as Windows Server 2008 (or later), and good technical skills to configure and troubleshoot, and as such may be out-of-reach for many small companies. Finally, AppLocker isn’t the most flexible whitelisting solution, and it requires a helpdesk to be on hand and the right skills to support desktops secured with... --- ### Netwrix Auditor 5.0 Review > Find out how Netwrix Auditor 5.0 stacks up as an auditing solution in this review. Also learn how to create a new managed object in Netwrix Auditor! - Published: 2013-12-23 - Modified: 2024-09-24 - URL: https://petri.com/netwrix-auditor-5-review/ - Categories: Windows Server - Tags: Active Directory, Auditing, Change Tracking, Event Auditing, exchange, SAN, Security, Virtualization - Article Type: Review Find out how Netwrix Auditor 5.0 stacks up as an auditing solution in this review. Also learn how to create a new managed object in Netwrix Auditor! In an economic climate where IT budgets are down, but demands are up, the subject of auditing is a tricky one. Virtually all IT pros realize that auditing the components of the IT infrastructure is a critical task. The dilemma is how to find the time and resources to conduct an effective audit. Enter the latest version of Netwrix Corp. ’s flagship product: Netwrix Auditor 5. 0. According to their website, Netwrix Auditor 5. 0 was released earlier this year with the claim of “delivering the most complete offering with the broadest coverage of audited systems and applications available. ” If the product lives up to this claim and is straightforward to use, it will go a long way toward helping overworked IT admins pull off comprehensive audits in their organizations. There’s only one way to know for sure and that’s to put the product through its paces! Over the past few weeks I did just that, and now I'm going to share the results with my fellow Petri IT Knowledgebase readers. Netwrix Auditor 5. 0 Walkthrough I could tell you all the possible things Netwrix Auditor 5. 0 can report on, but suffice it to say it would probably take less time to list the seemingly few items it cannot audit. Whether it be VMWare infrastructure, EMC SANs, Active Directory, or just basic Windows Events, Netwrix Auditor 5. 0 does a great job giving IT pros detailed introspection into their IT environments. Installation is easy and straightforward. A choice can be made to... --- ### Performing a Hyper-V Replica Test Failover > Learn to use test failover in Hyper-V Replica to evaluate the infrastructural elements of implementing a business continuity plan (BCP) in this handy guide! - Published: 2013-12-23 - Modified: 2024-09-04 - URL: https://petri.com/perform-hyper-v-replica-test-failover/ - Categories: Hyper-V - Tags: Disaster Recovery, DR, Hyper-V, Hyper-V Replica, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To It's time to test your disaster recovery business continuity plan! Learn about test failovers and how to implement test failover in Hyper-V Replica. In this post I will explain how you can use the test failover functionality of Hyper-V Replica to evaluate the infrastructural elements of implementing a business continuity plan (BCP). What Is a Test Failover? Just like a backup, your disaster recovery (DR) business continuity plan needs to be tested. And just as with a test backup, you need to be able to test the technology elements, namely starting up the replica virtual machines and therefore their services, without any impact on running production systems and the operations of the business. Hyper-V Replica has a built-in feature called a test failover that allows you to start up linked clones of your offline replica virtual machines on a selected virtual network (probably isolated) without impacting your production systems. These test virtual machines can be created very quickly, started up, used, and destroyed, making the technical elements of your BCP test very easy. There also is a nice unintended scenario with test failovers: You can use this feature to not only test your BCP, but also to bring online a copy of production systems for testing and diagnostics. Maybe engineers need to test OS or service upgrades and document upgrade/rollback plans? Maybe service administrators or operators need to diagnose performance or health issues? A test failover allows you to bring online a clone of production systems for a realistic and isolated test lab. How a Test Failover Works There are two elements to the test failover... . --- ### Backing Up Microsoft Lync Server 2013 > Backing up your Lync Server 2013 should be a given. Learn to backup your Lync Server, monitor databases, and more in this helpful guide. - Published: 2013-12-19 - Modified: 2024-09-04 - URL: https://petri.com/backup-microsoft-lync-server/ - Categories: Exchange Server - Tags: Lync, Lync 2013 - Article Type: How To We don't have to tell you how important it is to perform backups, right? Learn to backup your Lync Server and more in this helpful guide. The key to protecting your Lync environment from any sort of failure is to ensure that you are backing up the Lync Server properly. The backup process for Microsoft Lync Server 2010 (and 2013) is much simpler than earlier versions of Lync Server. All the settings and configuration you need to backup Lync are now contained in the Central Management store. This is a different than previous versions where you had configuration data not only in Active Directory but also on each Lync server, which made things complex if you had a large pool of servers. To successfully backup Lync it is important to understand which files should be backed up. This article will review the key components that should be backed up and provide the steps for a backup so you can successfully restore your Lync servers. Backing Up Lync Server: Key Components In the event of a failure of Lync Servers, the following are important critical items that should be backed up to successfully restore your Lync environment. Topology configuration information (CS Configuration) – This contains your Lync Server topology, policies, and configuration settings, which is stored in the Central Management store database Location Information service data (CsLisConfiguration) – This is your Enterprise Voice Enhanced 9-1-1 (E9-1-1) configuration information, which is also stored in the Central Management store database. User data – This is on every back-end database of a Front End pool as well as on every Standard Edition server. Response Group setup/information – If you... --- ### My 2014 VMware Wish List > What's on your VMware wish list? Check out what our writer wishes VMware would do in 2014. - Published: 2013-12-19 - Modified: 2024-09-24 - URL: https://petri.com/2014-vmware-wish-list/ - Categories: VMware - Tags: Virtualization, vmware, vSphere - Article Type: Opinion Mobile management? Application presentation? Find out what our writer will be asking Santa for from his VMware wish list! Its the end of the year and 2014 is rapidly approaching. As a child, around this time of year I was focused on dreaming up a list that had some cool new toy that I wished my parents would get me for Christmas. While I have long since grown up and can just purchase this new toy myself, I've switched to dreaming about things that I wish VMware would do or offer. In this light, I have put together my VMware wish list. File Sync and Share This is a service that almost every business user is using personally and asking for something similar for their work needs: a Dropbox-like service to store and share files. VMware released Horizon Workspace earlier this year, but it has done nothing to update it since. There's a rumor that an update might be coming soon, but it's unknown what features it may have. In this space I'm not sure if VMware can add features fast enough, and there are dozens of other options for customers to choose from. There are on-premise and cloud-hosted options, and Citrix has the clear lead over VMware in this space with that purchase of Sharefile. Unless VMware can pull out a miracle in the next six months, they should probably get out the checkbook and buy someone in this space and integrate it with Workspace instead. I recently had a briefing on the new business service from Dropbox and it's exactly what VMware should be... --- ### Installing the Remote Desktop Services role in Windows Server 2012 > Use the new Remote Desktop Services installation type in Windows Server 2012. Learn how in this easy Ask an Admin post! - Published: 2013-12-19 - Modified: 2024-09-24 - URL: https://petri.com/install-remote-desktop-services-role-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Ask an Admin, RDS, Remote Desktop, Windows Server 2012 - Article Type: How To Find out how easy it is to install the new Remote Desktop Services in WS2012 in this Ask an Admin post! How do I install the Remote Desktop Services role in Windows Server 2012? Windows Server 2012 includes a new management service that replaces the four consoles that were used to manage RDS in Windows Server 2008 R2. To access the Remote Desktop Management Server (RDMS), you should use the new Remote Desktop Services installation process. If you use the standard add server role or feature methods, the RDMS service won’t get installed on the Connection Broker. So, now let's go ahead and take a look at how to install the Remote Desktop Services (RDS) role on Windows Server 2012 Server. Install Remote Desktop Services in WS2012 The following instructions can be performed using Server Manager on a server that will have the RDS role added, or using Server Manager from a remote server. Whichever method you choose, you will need to use an account that has local administrative permissions on the server to which the RDS role will be added. Open Server Manager from the desktop Task Bar or Start screen. In the left pane of Server Manager, select All Servers or a server group. Click Next on the Before you begin screen in the Add Roles and Features Wizard. On the Select installation type screen, select Remote Desktop Services installation and click Next. On the Select deployment type screen, select Quick Start and click Next to install RDS on one server. Select Session-based desktop deployment on the Select deployment scenario screen and... --- ### System Center Virtual Machine Manager 2012 R2: Cloud Delegations, VMs, and Templates > System Center Virtual Machine Manager 2012 R2 | In part 4 of this series, learn to delegate clouds to tenants, export cloud quota details, and more! - Published: 2013-12-18 - Modified: 2024-12-03 - URL: https://petri.com/system-center-virtual-machine-manager-2012-r2-scvmm-cloud-delegation-vms-templates/ - Categories: System Center - Tags: Cloud, migration, scvmm, System Center, upgrade - Article Type: Overview Learn to delegate clouds to tenants, export cloud quota details, and more in part 4 of this series on SCVMM 2012 R2. The light at the end of the tunnel is now getting very bright. Our tenants are registered and the clouds have formed nicely, in this final post in our multi-part series on the migration efforts to get us to System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2), we will delegate our new clouds to the tenants. Once the clouds have been shared we will re-establish the quota on these, then finally we need we will assign all the VMs back to their respective clouds and tenants. Wrapping up, we will then address the VM templates, migrating these to the target environment (which in reality was a lot more difficult than I had initially expected), and finally delegating permissions to the templates enabling our tenants to once more deploy infrastructure, hosted on our fresh new SCVMM 2012 R2 environment. (Editor's note: Need to catch up? In part one, we upgraded to System Center Virtual Machine Manager 2012 R2. In part two, I provided an overview of migrating to SCVMM. In part three, we looked at how to migrate the hosts and library. ) Delegate Clouds to Tenants In an earlier step we exported a list of user roles from the source environment, we will leverage this export to get the clouds which are delegated to each tenant, as that information was contained in the export. Target Import On the target, the following script will reference the earlier generated UserRoles. csv file, and then loop trough adding all the clouds which... --- ### Hyper-V Predictions for 2014 > Check out out predictions for Hyper-V in 2014, including Hyper-V Network Virtualization, Windows Azure Pack, RDMA networking, and more! - Published: 2013-12-18 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-predictions-for-2014/ - Categories: Hyper-V - Tags: Windows Azure Pack - Article Type: Opinion Cloud-schmoud. Discover what to expect from Hyper-V in 2014, including Hyper-V Network Virtualization, Windows Azure Pack, and more! We are coming to the end of another calendar year and it’s time for those high-in-comedic-content prediction posts from industry analysts to make an appearance. I am still waiting for my PC to be replaced by a VDI VM, but it appears as if that annual prediction is as worthless as the promise that I’d be commuting to work using a jetpack by now. I expect we’ll be swamped in “2014 will be the year of the cloud” prognostications in the coming weeks, so I thought I would focus on what we can expect to be the talking points for what to expect in Hyper-V in the coming 12 months. Windows Azure Pack The Windows Azure Pack (WAP) is the front end of Microsoft’s framework for creating a true cloud with self service. This product is based on the portal you use to deploy services on Azure, Microsoft’s public cloud. As such, the first version (known as codename “Katal”) was intended for service providers (hosting companies). The second version of WAP is intended for organizations that are service-centric; in other words, WAP for Windows Server 2012 R2 is designed for organizations that want to deploy either public, private or hybrid (integrating public and private) clouds. Medium-to-large enterprises and hosting companies have expressed quite a bit on interest in WAP over the past year. I personally believe that larger hosting companies are already invested in open-source alternatives, but the evolution of Hyper-V’s capabilities and the promise of a... --- ### Use Managed Metadata Keywords to Improve Tagging of SharePoint Content > Learn to configure the managed metadata service application in SharePoint 2013 and create enterprise keyword term sets with this helpful guide. - Published: 2013-12-18 - Modified: 2024-09-04 - URL: https://petri.com/managed-metadata-keyword-sharepoint-content/ - Categories: SharePoint - Tags: managed metadata - Article Type: How To Keywords are your friend. Learn to use the managed metadata service app in SharePoint 2013 and create enterprise keyword term sets while you're at it. Setting up your users to have a great SharePoint experience can be a rewarding endeavor, especially when you’re applying technology to help users find information quickly and efficiently. Whether it’s thorough search or refining list and library items by filtering on metadata, the faster users are able to find the data that’s in SharePoint, the better their overall experience is going to be. In this article I’m going to show you how to configure the managed metadata service application in SharePoint 2013 so that your users can define an ad-hoc taxonomy of tags for the data that they use by creating an “enterprise keyword” term set.   This user-created “folksonomy," as opposed to the more strictly adhered-to official “organizational taxonomy," is a fast and easy way to get your users helping to shape their environment. It can also help to identify some terms that may have been missed when the taxonomy was created. Keywords and Managed Metadata A keyword is usually thought of as a tag, or sometimes just generalized into thinking “oh, keywords are metadata. " Both ideas are true, but both only tell a piece of the picture. In SharePoint 2013, managed metadata uses collections of terms into “term sets," and those term sets are collected together into groups. Term sets are collections of terms that are used by a region, a division, a product line, or a subset of users. The terms sets then behave like site columns, but they can be used across multiple site... --- ### Use PowerShell to Create a New Virtual Machine in Windows Azure Running Server 2012 R2 > Learn to create a VM in Windows Azure running Server 2012 R2 using the PowerShell New-AzureQuickVM command. - Published: 2013-12-17 - Modified: 2024-12-03 - URL: https://petri.com/create-virtual-machine-in-windows-azure-powershell/ - Categories: Cloud Computing - Tags: Ask an Admin, PowerShell, remote management, Virtualization, Windows Azure, Windows Server 2012 R2 - Article Type: How To Learn how to wield the PowerShell New-AzureQuickVM command.to create a virtual machine in Windows Azure running WS2012 R2. In this Ask the Admin, I’ll show you how to connect to your Azure subscription using PowerShell and create a new virtual machine (VM) using the New-AzureQuickVM command. Before you can use PowerShell to remotely manage Windows Azure, you will need to set up remote PowerShell management for Windows Azure. Let’s start by setting the Azure subscription in PowerShell. Open a PowerShell prompt with elevated privileges: In the PowerShell console, type Get-AzureSubscription, and make a note of the SubscriptionName in the output. In my case, Pay-As-You-Go. Type Get-AzureStorageAccount, and make a note of Label in the output. My storage account is labelled portalvhdsxgwgzn2ml54p5. Now set the Azure subscription in PowerShell as follows using the SubscriptionName and Label parameters from the commands above: Set-AzureSubscription “Pay-As-You-Go” -CurrentStorageAccount portalvhdsxgwgzn2ml54p5 Now that the subscription is set, chose an image from the gallery to use as the basis for the new VM. Type Get-AzureVMImage to get a list of the available images. I’m going to use the latest image of Windows Server 2012 R2 for my VM, and the Image name is a699494373c04fc0bc8f2bb1389d6106__Windows-Server-2012-R2-201311. 01-en. us-127GB. vhd Finally, create the VM. Run the command shown below, replacing the –AdminUsername and –Password parameters with any username and password that you choose. The –ServiceName and –Name parameters can be the same. Each VM should run in its own cloud service, unless you plan to load balance one or more VMs. You might need to experiment with the –ServiceName parameter to successfully create a new... --- ### Perform a Hyper-V Replica Initial Copy Via a Restore > Learn how to perform the Hyper-V Replica initial copy by restoring virtual machines from backup in the secondary site. Check out this guide for more info! - Published: 2013-12-17 - Modified: 2024-12-03 - URL: https://petri.com/perform-hyper-v-replica-initial-copy-using-restore/ - Categories: Hyper-V - Tags: Backup, Disaster Recovery, DR, Hyper-V Replica, Restore, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To In this guide, learn to perform the Hyper-V Replica initial copy by restoring VMs from backup in the secondary site. An important step in implementing Hyper-V Replica is performing the initial copy. In this post, I will talk about how to perform the Hyper-V Replica initial copy by restoring virtual machines from backup in the secondary site. (There's actually three ways to do perform an initial copy. In these previous posts, I showed you how to perform the Hyper-V Replica initial copy using external media or removable storage and how to perform a Hyper-V Replica initial copy over the network. ) Initial Copy Using a Restore: How It Works One of the options for performing a Hyper-V Replica initial copy is to restore the virtual machines from backup in the secondary site. The hard bit of this operation is getting the backup content to the secondary site in the first place. It is typically considered good practice for a company to store copies of their backups in an offsite location. Some will choose to store their backup tapes in a safe location at the secondary or disaster recovery site. Others might have a backup solution, such as System Center Data Protection Manager (DPM), which is able to automatically replicate disk-to-disk backup content from the primary site to the secondary site. Replicating backup to the secondary site. Hyper-V administrators can use this backup data to seed the replication process. When you want to replicate a virtual machine using Hyper-V Replica, you restore that exact virtual machine from backup to the replica host in the secondary site, and then walk... --- ### VMware in 2013: The Year in Review > In 2013, VMware offered exciting new products, updates, and other features. Check out this list of the VMware features that have our writer paying attention. - Published: 2013-12-17 - Modified: 2024-09-24 - URL: https://petri.com/vmware-2013-year-in-review/ - Categories: VMware - Tags: vSphere - Article Type: Overview VMware in 2013 meant exciting new products, updates, and other features. Check out our list of the VMware features that we're grateful for this season! With the end of 2013 drawing to a close, I was thinking about all of the things that took place this year. There were new products released, version upgrades, and acquisitions, and thought it would be good to write a year-end wrap-up. The following items are just some of the VMware's features to be thankful for or to be excited about. VMware Features to be Thankful For VMware SSO version 2: With the release of vSphere 5. 5, VMware fixed the Single Sign-On (SSO) function that caused many admins loss of sleep in vSphere 5. 1. Since this was not an optional feature,those that upgraded quickly to 5. 1 learned that SSO was not something that should be taken lightly. Well, the update that 5. 5 brings has tamed this beast and it now has a simplified install and design layout. This calms nerves and allows for upgrades to proceed for those that had been avoiding 5. 1. VMware View GPU support: This year View 5. 3 was released, and it now supports the ability to virtualize or pass thru GPUs. This is not typically a huge use case for VDI users, but it does further expand the roles that can now be serviced by VMware View. This also leveled the feature parity with Citrix XenDesktop, which has had this ability for some time now. Storage is hot right now: This is a bit more of a general statement. What I wanted to make a point of is that there were a bunch... --- ### How to Create a New Server Group in Server Manager on Windows Server 2012 > Learn how to group servers together in Server Manager for easier management in Windows Server 2012 using this easy Ask an Admin tutorial. - Published: 2013-12-16 - Modified: 2024-09-24 - URL: https://petri.com/create-new-server-group-in-server-manager-ws2012/ - Categories: Windows Server 2012 - Tags: Management, Server Manager, Windows Server 2012 - Article Type: How To In this easy Ask an Admin, discover how to group servers in Server Manager for easier management in WS2012. How do I create a new server group in Server Manager on Windows Server 2012? Server Manager is a great tool for performing tasks across multiple servers in your environment. By default, there is an All Servers group, but you can create your own groups and add servers manually to make management tasks easier. For example, you might want to create a group of servers that run a line-of-business application so that management tasks can be initiated simultaneously. Servers can be a member of more than one group. Log on to Windows Server 2012 as a domain administrator and open Server Manager from the icon on the desktop Task Bar or from the Start screen. Click Manage in the top-right of Server Manager and select Create Server Group from the menu. In the Create Server Group window, give the new group a name in the Server group name box. On the Server Pool tab, select one or more of the available servers, and then click the arrow in the center of the window to add the servers to the Selected box on the right. Alternatively, you can search Active Directory, search by IP address or DNS name on the DNS tab, or load servers from a file on the Import tab. Once the Selected box is populated with the servers you want added to this group, click OK. The new group will now appear in the left pane of Server Manager. If you... --- ### System Center Virtual Machine Manager 2012: Configuring Storage > System Center Virtual Machine Manager 2012 R2 (SCVMM) | Learn to manage storage spaces and offer SMB3 shares for our hosts in part 4 of this series. - Published: 2013-12-16 - Modified: 2024-09-04 - URL: https://petri.com/system-center-virtual-machine-manager-2012-scvmm-configure-storage/ - Categories: System Center - Tags: Scale-Out File Server, SCVMM 2012 R2, SOFS, System Center Virtual Machine Manager 2012 R2 - Article Type: Overview In part 4 of this series on SCVMM 2012 R2 and SoFS, find out how to manage storage spaces and offer SMB3 shares for our hosts. We're back with our multi-part series on System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2) and Scale-Out File Server (SoFS). In part one, we built a virtual SoFS lab, and in part two we configured the fabric. Last time, in part three, we created a clustered file server. Moving on, in this post we will leverage some of the additional features added in SCVMM 2012 R2 to manage storage spaces and offer SMB3 shares for our hosts. So, rev up the VMM console, and let's get started! SCVMM 2012 and Storage Pools Find your way back to the Fabric view in VMM, and navigate back down to the Storage node of the tree. Click on the Storage > Providers node. In the Providers pane, locate your new managed server, eg PDC-FS-SMB01. Right-click on the server, and from the context menu select Rescan. VMM will now rescan the file server and should detect all the storage that is attached, ready for us to move on with the actual configuration. Create a Pool Now, back in the console we will create a storage pool for the Windows Storage Space environment enabled using our shared disk on the scale-out file server. Navigate to the Storage File Servers node. Right-click on the server, and from the context menu select Manage Pools. In the Manage Pools dialog, we will proceed to create the Storage Pools PDC-FS-SMB01. Click New... to present The New Storage Pool dialog. In the Name field, provide a... --- ### Nokia Lumia 1020 Windows Phone Review > Is the Nokia Lumia 1020 worth your time? Check out our review of the Nokia Lumia 1020 camera smartphone, running Windows Phone 8. - Published: 2013-12-16 - Modified: 2024-09-24 - URL: https://petri.com/nokia-lumia-1020-windows-phone-review/ - Categories: Mobile - Tags: 1020, Camera, Lumia, Nokia, Nokia Lumia 1020, Windows phone, windows phone 8, WP8 - Article Type: Review Is the Nokia Lumia 1020 – or Windows Phone – worth your time? Check out our review of the Nokia Lumia 1020 camera smartphone! Although I purchased the excellent HTC One (running Android) in the summer, I purchased the Nokia Lumia 1020 on a recent trip to the USA and I have been using it as my primary phone since. I’ve openly criticized Windows Phone after trying to adopt it in the past – will my experience change? Will I like the camera that is disguised as a phone? Read on to find out. What Possessed Me To Buy Another Phone? I love the HTC One. When I bought it, I thought it was the best phone on the market. I liked the Android experience. In fact, I liked the phone so much that I even recommended it to friends. So why did I buy a Lumia 1020? I wanted to get a compact camera, something that would be useful for those memory snaps and wouldn’t require my usual heavy DSLR kit. This presented another question: Do I want to carry a compact camera and a smartphone? The promise of the Nokia Lumia 1020 is that you only need one device – it’s a compact camera that is also a Windows Phone 8 smartphone. Note the Nokia Lumia 1020's camera bulge on the back. Windows Phone 8 Setup Setting up Windows Phone 8 is easy, especially if you are using Office 365 like I do. My contacts were synchronized, my calendar was configured, and my mail downloaded without any issues. Using a cloud service such as Office 365 makes switching to... --- ### Are Rackmount Servers Winning Back Enterprise Customers? > Learn about the power of rackmount servers and the tech solutions that can take advantage of the flexibility of these rack servers. - Published: 2013-12-12 - Modified: 2013-12-12 - URL: https://petri.com/are-rackmount-servers-winning-back-enterprise-customers/ - Categories: VMware - Tags: GPU, SAN, Server, vSphere - Article Type: Opinion Don't call it a comeback! Discover the power of rackmount servers and how you can take advantage of their flexibility. Since the early days of blade server architectures, the larger IT customers have adopted this higher density or converged approach for their compute resources. This caused the rackmount server to be delegated to specialty-use cases and smaller customers. Given many of the new solutions and products being released by vendors in 2013, I think the rackmount server is primed for a comeback. There are bound to still be many customers that are using rackmount servers today for many reasons, I'm going to focus this post towards customers that are currently using blades. Hopefully this discussion with open up some good discussions on how a rackmount platform may offer more flexibility in certain scenarios over a blade server architecture. This will be the inverse of the how blades might simplify a design that has been occurring over the last decade. To get things started, I will discuss some of the more interesting solutions that might sway a design towards a rack server model over blades. This should help paint the picture of how the two platforms would contrast. Rackmount Servers and Heavy Graphic Workloads Within this use case the requirement would be to offer upgraded graphics capabilities to applications or users. Since the typical server is equipped with a very basic video adapter, this limits the use cases to server workloads or basic knowledge worker-type workloads. In the past, one of the common methods was to equip a rack server or to purchase a... --- ### Sharing Service Applications Between SharePoint 2013 Farms > Learn to share service applications across SharePoint 2013 farms using PowerShell. Publish service applications from the production farm and more! - Published: 2013-12-12 - Modified: 2024-09-04 - URL: https://petri.com/share-service-applications-acrosssharepoint-2013-farms/ - Categories: SharePoint - Tags: Editor's Pick, PowerShell, service application, SharePoint 2013 - Article Type: How To Learn to share service applications across SharePoint 2013 farms in this tutorial! All it takes is a little PowerShell action. Check it out! If you have multiple SharePoint 2013 farms, you should be considering publishing some of your SharePoint service applications from one farm and then subscribe to them from another farm. In this article I’m going to show you how to share service applications across SharePoint 2013 farms – and I’ll show you how to do it with PowerShell so that you can take care of multiple service applications in just a few lines of code! Sharing your service applications is an ideal use in the case of a development or test farm, in which you'd like your user profile service application to be consistent between the two farms or the terms stored in the managed metadata service application to be shared by all of the farms. This first part of doing this is exchanging the certificates between the two farms and creating all of the trusts. If you need more information on that, I just happen to have an article describing the steps required to create your SharePoint 2013 farm trusts. I’m going to refer to the production farm as being the farm that is running the service applications, and the test farm as being the farm that will subscribe to those services running in production. Publish Service Applications with PowerShell Since our farms now trust each other and the production farm has been configured to accept user sessions (the tokens) from the test farm, we are all clear to publish the services. Note:... --- ### Do You Need Antivirus on Your Servers? > Consider putting antivirus on servers to help prevent or limit the damage caused by virus outbreaks on your network. Learn more in this post! - Published: 2013-12-12 - Modified: 2024-09-24 - URL: https://petri.com/are-antivirus-on-yservers-necessary/ - Categories: Security - Tags: Antivirus, Hyper-V, Virtualization, Windows Server - Article Type: Opinion Learn more about putting antivirus on servers – which just might help prevent or limit the damage caused by virus outbreaks on your network. Servers that are not used interactively are at less risk of being infected with malware, but that doesn’t mean that they should be left unprotected. While servers are less likely to be infected with malware than end user systems, the ability to detect malicious files on File and Print Servers, or infected attachments on Exchange Servers, can limit the damage or even stop an outbreak before a malicious file reaches users’ PCs. Most malware requires some kind of interaction for a successful attack, often relying on social engineering to trick users into taking actions that could infect their PC. But depending on the vulnerability being exploited, servers can also become infected without any human interaction, so it’s worth making sure that servers are also protected by AV. Performance and Operational Issues Antivirus is sometimes left off servers because of performance issues caused by real-time scanning, or the risk that AV software may quarantine files critical for line-of-business operations. To improve performance, servers should have sufficient memory so that they are able to serve commonly used files from memory, rather than having access hard disks. AV disk scans can be scheduled out-of-hours to make sure there is no impact on performance. OS and application updates can be complicated by the presence of antivirus. Anybody who has worked in desktop support will likely be familiar with antivirus occasionally blocking genuine application or system files after an update, or preventing an upgrade from installing. As with any server application, changes... --- ### Creating Polls in Microsoft Lync > Conducting polls in Microsoft Lync has never been easier! Learn to create and edit a poll, as well as share and save the results, in this handy tutorial. - Published: 2013-12-11 - Modified: 2024-09-04 - URL: https://petri.com/how-to-conduct-polls-microsoft-lync/ - Categories: Exchange Server - Tags: Lync, poll - Article Type: How To Need to quickly poll your meeting attendees? Discover how to create, edit, and share a poll in Microsoft Lync with this handy tutorial. If you’re using Microsoft Lync for meetings, did you know you can quickly poll your attendees to gather information? Polling using Lync can be a great way to quickly gather real-time statistics from your attendees. This post will show you how easy it is to conduct polls in Lync and quickly find out what your attendees are thinking. Working with Lync Polls Lync polls are fairly simple concept, you can have one question with seven different choices for answers and you can have multiple polls in a meeting. A limitation is that only one poll can be visible at a time on the stage. Polls can only be created and managed by the presenter of the meeting. Lync polls can be immediately displayed for attendees if nothing else is shared. When there is other sharing sessions within the meeting, you have the option to end the current sharing session or you can save your poll for the end of the session. How to Create a Poll in Lync As the presenter of the Lync meeting, select the Share drop-down menu and click on New Poll. Fill in the following: Type a name for your poll. Enter your question that want to poll attendees. Choose up to seven different answers. When finished click OK. When you are finished with your poll, click the Stop Voting button (shown below by the red arrow) and "Poll is Closed" will appear. Show or Hide a Poll As... --- ### The Hyper-V Virtual Switch: An Overview - Published: 2013-12-11 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-virtual-switch-overview/ - Categories: Hyper-V - Tags: networking, virtual machine, Virtual NIC, virtual switch, Virtualization, Windows Server, Windows Server 2012, Windows Server 2012 R2 - Article Type: Overview Learn what role the Hyper-V virtual switch plays in networking virtual machines in this helpful introduction! In this post I will give you an introduction to Hyper-V virtual switch, including the basics behind it, the three types of virtual switch, System Center Virtual Machine Manager (SCVMM) logical switch. I'll also discuss what role Hyper-V virtual switches play in networking your virtual machines. Hyper-V Virtual Switch Basics Consider how you network a physical server: The server has one (or more) NIC. That NIC is connected to a switch port. The switch port is an attribute of a physical switch. That access switch is connected to the rest of the physical network. A Hyper-V virtual switch is not that different to an access switch: A virtual machine has one (or more) virtual NIC. That virtual NIC is connected to a virtual switch port. The virtual switch port is (and here is where it is different) an attribute of the virtual NIC (more on this later). The virtual switch is connected to a physical NIC or NIC team in the host. The host’s NIC or NIC team is connected to the rest of the physical network. The virtual switch connects virtual machines to the rest of the physical network. Let’s get back to the switch port being an attribute of the virtual NIC. When we do network configurations on a physical switch, such VLAN tagging, we implement those configurations on a switch port. The same happens (under the covers) with a Hyper-V switch port. A physical server rarely moves, but when it... --- ### System Center Virtual Machine Manager 2012: Creating a Clustered File Server > System Center Virtual Machine Manager 2012 R2 (SCVMM) | Learn to create a clustered file server and validate the deployment in part 3 of this series. - Published: 2013-12-11 - Modified: 2024-09-04 - URL: https://petri.com/system-center-virtual-machine-manager-scvmm-2012-create-clustered-file-server/ - Categories: System Center - Tags: Scale-Out File Server, SCVMM 2012 R2, SOFS, System Center Virtual Machine Manager 2012 R2 - Article Type: Overview Discover how to create a clustered file server and validate the deployment in part 3 of this series on SCVMM 2012 R2 and SoFS. Happily, we can now relax in the knowledge that we have all the foundation work completed to permit us to finally start exercising the portions of System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2) that are associated with storage management. It might feel like we needed to do a lot to get here, but if you consider that we first spent our time creating virtual machines and utilizing a neat trick to enable our VM host to serve up shared VHDs so that our lab would serve as a good learning ground, it's really less effort than if we did have physical nodes, and an associated storage solution to cable and configure. Our second focus was firmly on enabling some very basic VMM mandatory network configurations. Assuming your VMM lab has been used to deploy some virtual machines, all this effort should have being previously completed. Which leads us to the real work of SCVMM 2012, and utilizing the brand new feature in R2: deploying a file server. So, lets get started. (Editor's note: Need to catch up? Check out part one of our series on System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2) and Scale-Out File Server (SoFS), in which we built a virtual SoFS lab, and part two, in which we configured the fabric. ) Creating the File Server Remaining in the Fabric View of SCVMM, we will now change our Navigation tree focus from Networks to Servers. Select... --- ### Can You Rely on Microsoft Security Essentials to Protect Your Computer? > Microsoft Security Essentials isn't as comprehensive as some paid products. Take a look at whether it's worth switching to a paid security solution. - Published: 2013-12-10 - Modified: 2024-09-24 - URL: https://petri.com/does-microsoft-security-essentials-work/ - Categories: Security - Tags: Antivirus, Application Whitelisting, IDS, Least Privilege, Microsoft Security Essentials, spam, Windows Defender - Article Type: Opinion Microsoft's free Security Essentials product isn't as comprehensive as paid products. Find out whether it's worth switching to a paid security solution! Microsoft recently announced that its free Security Essentials product and Windows Defender provides only a baseline for the AV industry but not the comprehensive protection of paid AV solutions. Microsoft Security Essentials: Nothing Has Changed While Microsoft’s announcement caused a ripple of dissatisfaction among customers who assumed that their product was on a par with security suites offered by ISVs, such as Kaspersky and McAfee, Security Essentials has been languishing in the lower ranks of independent AV test results for the last couple of years. Essentials and Defender receive definition updates, usually no more than once a day, compared to the many daily updates that come with the more established products. This has always been the case, and indicates that you are going to be left without the best possible protection for much of the day. Microsoft AV protects against the most serious and prevalent threats, while paid solutions are updated more quickly to protect users against emerging threats, can additionally block spam email, have more sophisticated firewalls, and often include an Intrusion Detection System (IDS). As such, Security Essentials has never been able to provide the same protection of a full AV suite. Do I Need More Comprehensive Protection? That depends, but in the majority of cases it is a good idea. Running a modern edition of Windows on new hardware can go a long way to reduce the likelihood of infection, along with making sure that the operating system and third-party... --- ### Holiday Gifts for the Microsoft Exchange Administrator > Check out our great gift ideas for the Microsoft Exchange admin on your list. - Published: 2013-12-10 - Modified: 2024-11-19 - URL: https://petri.com/holiday-gifts-for-microsoft-exchange-administrator/ - Categories: Exchange Server - Article Type: Overview Need a gift for the Microsoft Exchange admin on your list? Check out our great gift ideas, including training, techie toys, and more! The tree is up, cookies are in the oven, and stockings are hung. It’s that time of year again, folks – the holiday season! Whether you celebrate Christmas, Kwanzaa, Hanukkah, or even Festivus, we’ve got holiday cheer for all. Have you made your list and checked it twice but still don’t know what holiday gifts to get an Exchange administrator? Holiday gift shopping can be a challenge for some, let alone trying to find something for your friendly Exchange admin. (I’ve been told we can be difficult to shop for, so that does not help the cause. ) Have no worries, as I have some items you can add to the list. Now, I can’t promise that you won’t be standing in line for some of these items, but I can say that at least they're sure to put a smile on your Exchange admin's face. Holiday Gift Ideas for the Microsoft Exchange Admin Online Exchange training: The gift of online training for an Exchange admin is something that will last throughout his or her career. Sign up for a free trial offer or you can purchase monthly and yearly rates. Try Pluralsight and CBT Nugget. Tablet: Need I say more? Whether it’s an iPad Air or Surface Pro 2, any Exchange admin would love to have one these under the tree. Smartphone: This is a no-brainer. We all love shiny new gadgets and Exchange admins are no different. Part of our job is making sure users can receive... --- ### How Tech Is Revolutionizing Direct-Attached Storage (DAS) > Looking for DAS options? With more workloads being virtualized, teams are looking for faster, cost-effective ways to meet demands. Learn more in this guide! - Published: 2013-12-10 - Modified: 2024-11-19 - URL: https://petri.com/direct-attached-storage-das-overview-options/ - Categories: VMware - Tags: Cache, DAS, Flash, SAN, storage, vmware - Article Type: Opinion With more workloads being virtualized, teams are looking for faster, cost-effective ways to meet demands. Learn more about direct-attached storage (DAS) options. In 2013, the VMware space has seen a lot of innovation as customers continue to virtualize more and more of their data center workloads. The goal for many is to virtualize as much as possible and look to do it in a more economical way. These two goals are driving innovation from VMware and their partners. They are looking for news to provide performance, cost savings or both in effort to allow customers to continue down this path. One of the ideas in this discussion is finding new ways to utilize direct-attached storage (DAS). What Is Direct-Attached Storage (DAS)? The directed-attached storage market has been around since the beginning of servers. The first place that storage was available was within the computer itself. In today's market DAS can be either storage that is directly inside of the server in the form of a drive that is in a bay of the server or on a PCI card inside the server. The other DAS option would be storage that is located in a separate enclosure that is directly connected to the server via a SAS or SCSI connection. Both of these methods have allowed for the local storage capacity to be greatly increased. The modern servers today have many models that can offer upwards of 20 local drive bays. These servers allow for a large amount of capacity to located within the server. But depending on the types of storage purchased you may still be limited on the... --- ### Configure a Trust Relationship Between Two SharePoint 2013 Farms > Learn to create a trust relationship between SharePoint 2013 farms in this tutorial! Also learn to setup SharePoint servers for remote PowerShell connections. - Published: 2013-12-09 - Modified: 2024-09-04 - URL: https://petri.com/configure-trust-relationship-between-sharepoint-2013-farms/ - Categories: SharePoint - Tags: PowerShell - Article Type: How To Trust is important in a relationship between SharePoint 2013 farms. Learn how to create a trust relationship in this tutorial! If you have the resources available, it is a great idea to have multiple SharePoint environments. Using one environment for your production web applications, and having a different farm for your test and development web applications can really help to keep the work items that are being developed in the test farm from messing up what is already working in the prod farm. But just because you have two separate farms doesn’t mean that you have to do everything twice. You can take advantage of publishing service applications from one farm and subscribing to them in another farm. By doing this, you can have only one instance of search, or only one instance of a user profile service, and both farms can use them. However, before you can publish any service applications and get them presented in a different farm, there are some prerequisites that have to be done. This article shows you how to create trusts between two SharePoint 2013 farms so that the publishing and subscribing to service applications is possible. Why Create Trusts Between SharePoint Farms? When you’ve got multiple farms, it can be tempting to just take the fast route and create a User Profile Service for each farm. The problem is that when your users are using a site in the test farm, they will have a completely separate user profile. The sites they’ve followed won’t be in their “Sites," and their files won’t be in the “SkyDrive Pro” section of their... --- ### System Center Virtual Machine Manager SoFS: Configuring the Fabric > System Center Virtual Machine Manager 2012 R2 (SCVMM) | Learn more about VMM and configuring fabric in a Scale-Out File Server (SoFS) lab in part 2. - Published: 2013-12-09 - Modified: 2024-09-04 - URL: https://petri.com/system-center-virtual-machine-manager-scvmm-2012-configure-fabric/ - Categories: System Center - Tags: Scale-Out File Server, SCVMM 2012 R2, SOFS, System Center Virtual Machine Manager 2012 R2 - Article Type: Overview In part two of our series on SCVMM 2012 R2, learn more about VMM and configuring fabric in a Scale-Out File Server (SoFS) lab. We're back with our new series on System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2) and Scale-Out File Server (SoFS). In part one, we built a virtual SoFS lab. Now that our new SoFS and Storage Spaces lab VMs are ready to establish their new role, we will move our focus over to SCVMM 2012 R2 and use these nodes in conjunction with Virtual Machine Manager (VMM), as we take the opportunity to exercise some of its great new fabric features. We have essentially two main objectives now to accomplish Deploy a SoFS using Virtual Machine Manager From a Storage Space, carve out an SMB3 share for hosting our VMs For all of the steps we are going to follow, assume that you will be authenticated to VMM as an administrator or as a user with delegated permissions to manage the fabric. There are a few prerequisites we need to establish in VMM prior to using the wizard to enable our SoFS, so lets get started. Prepare to Enable Scale-Out File Server (SoFS) Working from the Fabric view in VMM all of our initial work will be on the Network scope of the navigation tree. The following procedures need only be completed. If you do not have a pre-created logical network and IP pool for the network to which you will be deploying your SoFS (generally this will be in the form of either a management or storage network, either of which may already be in... --- ### Perform a Hyper-V Replica Initial Copy Using External Media > Find out how to perform the initial copy of a Hyper-V Replica with external media and removable storage, including enabling Bitlocker to Go. - Published: 2013-12-09 - Modified: 2024-12-03 - URL: https://petri.com/perform-hyper-v-replica-initial-copy-using-external-media/ - Categories: Hyper-V - Tags: Disaster Recovery, DR, Hyper-V Replica, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To In this article, find out how to perform the initial copy of a Hyper-V Replica with external media, including its pros and cons. An important step in implementing Hyper-V Replica is performing the initial copy. There are three ways to do this. In this post, I will talk about how to perform the Hyper-V Replica initial copy using external media or removable storage. (In a previous post, I showed you how to perform the Hyper-V Replica initial copy over the network. ) Initial Copy Using External Media: How It Works With this approach, you will use removable storage to physical transport the files of your Hyper-V Replica-protected virtual machines from the primary site to the secondary site. This is done once, just for the initial copy. The files are imported on the host/cluster in the secondary site. Hyper-V Replica will fix up any differences between the production and replica virtual machines since the export was done, and then replication will automatically begin. Pros and Cons There is one significant benefit to performing the initial copy using removable storage. You do not need endless amounts of bandwidth to get terabytes (or even petabytes) of virtual machine files from the production site to the secondary site. This means that even a smaller company or a branch office can perform that initial copy without the Internet or WAN connection delaying replication for weeks or even months. There are three things to consider when thinking about using removable storage to perform your Hyper-V Replica initial copy: Manual effort: Someone has to perform an export of the virtual machines (part of the wizard), transport the removable... --- ### Holiday Gift Ideas for IT Professionals > Read on for gift suggestions for the sysadmin on your holiday shopping list this year! - Published: 2013-12-06 - Modified: 2024-11-19 - URL: https://petri.com/holiday-gift-ideas-for-it-professionals/ - Categories: Windows Server - Tags: gift guide, holiday - Article Type: Overview Can't decide what presents to get the sysadmin on your holiday shopping list this year? Read on for our best holiday gift suggestions. Another holiday season is approaching fast, and many IT professionals are thinking of gift ideas for friends and co-workers in the industry, or perhaps some gifts for loved ones. I put together a holiday gift guide for IT professionals last year, but in the communal spirit of the season, this year I decided to open up the process and invited some of our authors to suggest gift ideas of their own. So whether you’re celebrating Hanukkah (belatedly), Kwanzaa, Christmas, or even Festivus, this guide should help you get the tech-centered portion of your holiday gift shopping sorted. Note: We’ll be adding to this article over time as more of our authors contribute gift ideas, so bookmark this page and check back for updates. And don’t forget to check out our system administrator’s version of the “12 Days of Christmas. ” Neo-Flex LCD Monitor Stand (Ergotron, $50)   A little too large to fit into a stocking, but nevertheless available for a reasonable $50, the Ergotron Neo-Flex LCD monitor stand is something that no geek should be without. Most monitors come with a small removable base that is too low to raise the top of the screen to eye level, which is where it should be to avoid eyestrain and for you to maintain correct posture. Don’t underestimate the importance of this, as sitting in front of a screen for long periods, if not set up properly, can lead to headaches, backache and more serious health problems. The Neo-Flex... --- ### How to Enable SSH Warnings on ESXi Hosts > Need to enable SSH on your ESXi hosts? Check out this walkthrough on how to disable the annoying warning message. - Published: 2013-12-05 - Modified: 2024-09-24 - URL: https://petri.com/enable-ssh-warning-on-esxi-hosts/ - Categories: VMware - Tags: ESXi, SSH, vSphere - Article Type: How To Different IT shops have different needs, and perhaps you need to enable SSH on your ESXi hosts. Learn to disable the annoying warning message in this easy walkthrough. The IT world varies greatly between different IT shops because of individual requirements. Because of this some people need to do things that others may not need to. This led me to the idea of today's post: how to enable SSH on ESXi hosts and get rid of the annoying warning message. In most environments – and ones that are security constrained – it would not be acceptable to permanently enable SSH on your vSphere hosts. This would be considered too risky and it opens up an attack point. But for many shops, especially small shops, they are not as concerned and would rather have the ease-of-access factor. How to Enable SSH To start off, let's review one of the ways to enable SSH on a vSphere host. I will show you the common method using the vSphere client. The first step is to select the host on which you want to enable SSH. Then click on the configuration tab and select the Properties option. This will allow the services options to be modified.   Once we are looking at the Services Properties, the first thing to do is locate the SSH line item and select it. We can than edit the options for the service as shown below. There are several options here, but if the goal is to turn on the service and have it available at all times then we want to configure it to start and stop with the host... --- ### How to Shadow a Remote Desktop session in Windows Server 2012 R2 > Remote Desktop shadowing makes a reappearance in Windows Server 2012 R2. Learn how to shadow RDS in WS2012 R2 in this Ask an Admin! - Published: 2013-12-05 - Modified: 2024-09-24 - URL: https://petri.com/shadow-remote-desktop-session-in-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: Remote Desktop Services, shadowing - Article Type: How To Remote Desktop shadowing is back in Windows Server 2012 R2! Learn how to shadow RDS in WS2012 R2 in this easy Ask an Admin! How can I use shadowing during a Remote Desktop session in WS2012 R2? Windows Server 2012 R2 reinstates Remote Desktop shadowing so that administrators can view a user’s session when they are connected to a Remote Desktop. Due to some changes in how Remote Desktop worked in Windows Server 2012, shadowing was removed from the feature stack. By popular demand, shadowing is back in Windows Server 2012 R2 and can be found in Server Manager. Only administrators can shadow Remote Desktop sessions, and the Remote Desktop Session Host must be part of an Active Directory domain. RDS Shadowing in Windows Server 2012 R2 You can shadow a Remote Desktop session either by specifying the /shadow switch from the mstsc command like, or from Server Manager. Open Server Manager in Windows Server 2012 R2 from the Start screen, or by clicking the icon on the desktop Taskbar. Click the Remote Desktop Services and then Collections in the left pane of Server Manager. Under Connections in the bottom right of Server Manager, right-click the connection that you want to shadow and select Shadow from the menu. In the Shadow dialog box you can choose to connect with View or Control permission and decide whether the user needs to give their consent. Alternatively, you can use the following command line to shadow a session: mstsc. exe /shadow:sessionID /control /noConsentPrompt The /control and /noConsentPrompt switches are optional and correspond to the settings available in the Shadow GUI dialog seen in Server Manager... . --- ### Creating VMware Snapshots with PowerCLI > Learn to create, automate, and manage multiple snapshots with a single PowerCLI command! It's all in this helpful tutorial. - Published: 2013-12-05 - Modified: 2024-09-04 - URL: https://petri.com/use-powercli-create-snapshot/ - Categories: VMware - Tags: Intermediate, PowerCLI, Snapshot - Article Type: How To Learn to create, automate, and manage snapshots with PowerCLI! Find out more in this helpful tutorial. Without a doubt, one the best reasons to virtualize is the ability to easily roll back to a previous configuration. This is done with the use of snapshots, and VMware is no different. Even better, you can manage the entire process from PowerShell with the PowerCLI cmdlets. (Editor's note: Need to catch up? We have loads of PowerCLI articles, including "Getting Started with vSphere PowerCLI," " Managing VMware Tools with PowerCLI," and "Modifying a VM with PowerCLI. " Using the command line means that you can automate snapshots or manage multiple snapshots with a single command. Perhaps you like to take a daily snapshot of all your running virtual machines as an extra safety precaution. Or maybe you plan on installing a service pack on a number of virtual machines and want an easy roll-back option should problems arise. Today I'll walk you through using PowerCLI cmdlets to create and manage snapshots. Creating a Snapshot To create a snapshot, the virtual machine can be on or off. The snapshot will be created using that state. This might be important because if you roll back a running virtual machine to a snapshot where the virtual machine was stopped, the virtual machine will be stopped. You will use the New-Snapshot cmdlet. When you create the snapshot you will need to give it a name. Optionally, you can also provide a description. If the virtual machine is running, you can also elect to save the memory state as well with the... --- ### Perform a Hyper-V Replica Initial Copy Via the Network > Learn about performing the initial copy of a Hyper-V Replica-protected VM over the network, and the benefits and potential issues of this method. - Published: 2013-12-04 - Modified: 2024-09-04 - URL: https://petri.com/perform-hyper-v-replica-initial-copy-over-network/ - Categories: Hyper-V - Tags: Disaster Recovery, DR, Hyper-V Replica, Virtualization, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Implementing Hyper-V Replica? Learn to perform the initial copy of a Hyper-V Replica over the network in the first of series of how-to posts. An important step in implementing Hyper-V Replica is performing the initial copy. There are three ways to do this, and I'll go over each one in this new series of posts. In this post, I will talk about how to perform the Hyper-V Replica initial copy over the network. Initial Copy Over the Network: How It Works With this approach, the files of the virtual machine are copied from the primary host/cluster to the secondary host/cluster. By default, this is done immediately after you complete the configuration. You might want to delay that copy, and Hyper-V Replica gives you that option. You can delay the initial copy until a specific date and time, maybe the end of the work week at 18:00. Once started, the initial copy will run until it completes. Pros and Cons The benefits of performing a network copy are: Simplicity: You simply fire and forget. This approach is very administrator friendly – unless you are the network administrator! More on that later. Self-service: Because there is no manual effort required, the network copy is suitable for a cloud where the tenant can choose to perform a copy. This is the sort of solution you are looking at if you implement the Azure-hosted Hyper-V Recovery Manager to one VMM-managed cloud to another VMM-managed cloud. There are some downsides to an initial copy being done over the network. Actually, it is one big drawback: This approach requires lots of bandwidth. If you are operating in... --- ### System Center Virtual Machine Manager SoFS: Building a Virtual SoFS Lab > System Center Virtual Machine Manager 2012 R2 (SCVMM) | Learn to build a virtual Scale-Out File Server (SoFS) lab in part one of a new series. - Published: 2013-12-04 - Modified: 2024-09-04 - URL: https://petri.com/system-center-virtual-machine-manager-scvmm-build-virtual-sofs-lab/ - Categories: System Center - Tags: Scale-Out File Server, scvmm, SOFS, System Center Virtual Machine Manager - Article Type: Overview Discover how to build a virtual Scale-Out File Server (SoFS) lab in part one of a new series on System Center Virtual Machine Manager 2012 R2. For a recent “Tech. Days On-line UK” presentation I wanted to take the opportunity to illustrate how you can use your home lab to excise all the cool stuff that was packed into the latest version of System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2) for storage management. I had a number of options to choose from, but as this was a Microsoft event, I chose to demonstrate the new Scale-Out File Server (SoFS), and Storage Spaces functionality, including the option of having the VMM create the SoFS for us. (If you need a refresher on Scale-Out File Servers and Storage Spaces, refer to some of the great posts from Aidan Finn on Petri IT Knowledgebase. ) Using a home lab to learn new technologies has many advantages, but unfortunately there is almost always one big blocker, which of course is the severe limit of available resources. I have therefore chosen to execute the complete lab on a single Hyper-V host, for both our VMM installation and our two-node SoFS and the supporting Storage Space using a set of shared VHDXs. It is also worth mentioning, that currently many of the Enterprise Storage vendors are now making available virtual appliances, permitting us to use these in our labs to simulate the enterprise class hardware we might have deployed in our datacenters, so we can safely learn how these technologies integrate without the normal associated risks. SCVMM and Scale-Out File Servers (SoFS) The latest incarnation of SCVMM has continued... --- ### Challenges Facing the Next Generation of IT Pros > Looking for young IT pros? You're not alone. Find out the reasons for the lack of new IT pros in the field, and why training still matters. - Published: 2013-12-04 - Modified: 2024-09-04 - URL: https://petri.com/it-pros-need-training/ - Categories: Cloud Computing - Tags: op-ed, Opinion - Article Type: Opinion Good employees don’t appear overnight – they take time and training. Check out what challenges new IT pros face in this op-ed. Our industry, that being providing the IT infrastructures to enable business services and processes, is in a state of flux. Business leaders have been enchanted by the promise of cloud computing. It seems that traditional on-promise software vendors are also trying to push that agenda to achieve customer lock-in and guaranteed recurring income. That makes our careers as IT pros look pretty shaky, right? Maybe, maybe not. If you look around, just how many young IT pros do you see around you? A few things have made me wonder if there will be a next generation of IT pros. Where Did All the IT Pros Go? I started to notice an absence of moderately experienced IT pros when I was interviewing candidates just after the recent economic downturn started. At a time when there were few job opportunities, there were fewer acceptable candidates. In the last few weeks, some of my customers have contacted me to seek help looking for junior Windows engineers and mid-level System Center consultants. Both of those companies had exhausted all of the usual recruiting channels and this had resulted in nothing. And recently I heard a piece on the radio where various head hunters, employers, and industry associations were crying out for applicants. I joined this industry in the mid-1990s when our business was booming and things were different. Things have changed; I think a few things have contributed to the shortage of skilled IT pro candidates. Secondary Education Isn’t Keeping Up... --- ### VMware Event Logs and PowerCLI > Discover how to retrieve event log information from your VMware servers using PowerCLI. - Published: 2013-12-03 - Modified: 2024-09-04 - URL: https://petri.com/vmware-event-logs-powercli/ - Categories: VMware - Tags: Intermediate, PowerCLI - Article Type: Overview Discover how to retrieve event log information from your VMware servers using the all-powerful PowerCLI, including parsing log files and more! If you are responsible for VMware servers, one of your management tasks should probably be to keep an eye for problems in the event log. In the Windows world we have a few PowerShell cmdlets at our disposal for remote event log management. Obviously those won’t work for a VMware ESXi server. What we do have though, is PowerCLI, which we’ve been covering lately on the site. Let me show you how to retrieve event log information from your VMware servers. Getting Event Log Types The first thing you need to do is identify the type of event log. I already have PowerCLI loaded and am connected to my default ESXi server. Using Get-LogType will display the available logs. ​ PS C:> get-logtype Key                  Summary ---                  ------- hostd                Server log in 'plain' format vmkernel             Server log in 'plain' format vpxa                 vCenter agent log in 'plain' format The logs are in plain text as you can see in the summary, which is good because as I’ll demonstrate in bit you might have to stretch your string parsing skills. From this list you need to make note of the Key. You will need this to get the actual entries for the corresponding log. Getting Event Log Entries with PowerCLI PowerCLI has a Get-Log cmdlet to do the heavy lifting of retrieving the contents of the event log. At a minimum all you need to do is specify the log key, which you get with Get-LogType... . --- ### The Importance of a Home Lab to the IT Professional > Why have a home lab for your IT work? Discover whether you should be maintaining a home computer lab to keep your tech skills sharp. - Published: 2013-12-03 - Modified: 2024-11-19 - URL: https://petri.com/home-lab-it-professional/ - Categories: VMware - Article Type: Opinion As an IT pro, you can't afford to stop learning. Find out why you should maintain a home lab for your IT skills! If you're reading this post, chances are you're an IT professional, and that means that you are under constant pressure to stay relevant in the IT industry. But what does that really mean? It means that if you are not learning you are likely losing. Find out why I think that maintaining a home lab is a necessary expense for the IT pro. What Is a Home Lab? This is something that seems pretty straightforward, but I figured it was a good place to start. In my opinion, a home lab is anything that allows you to practice the things that you want to learn, whether it be a single PC running VMware workstation or another virtualization tool that allows you to run multiple VMs. The other option is a single server or multiple servers for running VMs. The size of a home lab is much like a real project: What are your requirements and how much of a budget do you have? Are you looking to do some basic things, or are you trying to recreate complex solutions that require the resources and networking of multiple servers? The costs of labs can run from nothing to thousands of dollars if you can make the investment. Okay, your home computer lab doesn't have to look quite like this. (Image via Culture24) Perks and Uses of a Home IT Lab How you use your home lab is entirely up to you, but there are no limits to the... --- ### How to Quickly Configure a Kiosk PC Using Windows 8.1 Assigned Access > Learn to use Assigned Access to to create a kiosk PC in Windows 8.1 with this helpful Ask an Admin article! - Published: 2013-12-03 - Modified: 2024-09-24 - URL: https://petri.com/configure-kiosk-pc-with-windows-8-1-assigned-access/ - Categories: Windows 8 - Tags: Assigned Access, Kiosk mode, Security, Windows 8.1 - Article Type: How To Discover more about kiosk mode and how to use Assigned Access to create a kiosk PC in Windows 8.1 in this helpful article! What is kiosk mode? And how can I configure a kiosk PC with Assigned Access in Windows 8. 1? Windows 8. 1 contains a new feature called Assigned Access, which is designed to allow administrators to quickly create an account that has access to only one Modern UI app. In this Ask the Admin, I’ll show you how to enable a local account for Assigned Access. What Is Kiosk Mode and Assigned Access? A kiosk PC is used when you want to give access to only a limited range of applications, or usually just one application, without exposing users to all the complexities and features of the Windows operating system. This is especially important for preventing malicious users from changing the configuration of the kiosk PC and to prevent it from easily becoming infected with malware. Assigned Access in Windows 8. 1 makes it easy to configure a local account so that a PC can be set up with access to only one Modern UI app. When logged on with an account configured for Assigned Access, users will only be able to access the assigned Modern UI app, and cannot launch File Explorer, the control panel, the desktop, or Task Manager. Assigned Access: Account Setup Before you start, you’ll need to have a local account on the PC ready for Assigned Access. It should be a standard user account, i. e. not a member of the local Administrators group, and you need to log on to the... --- ### System Center Virtual Machine Manager 2012 R2: Migrating Tenants and Clouds > System Center Virtual Machine Manager 2012 R2 | Discover how to migrate tenants and clouds in part four of this multi-part series on SCVMM 2012 R2. - Published: 2013-12-02 - Modified: 2024-12-03 - URL: https://petri.com/system-center-virtual-machine-manager-scvmm-2012-r2-migrate-tenants-clouds/ - Categories: System Center - Tags: Cloud, scvmm - Article Type: Overview We've got more migration tips! Discover how to migrate tenants and clouds in part 4 of this series on SCVMM 2012 R2. We're back with our series on System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2)! In part one, I discussed upgrading to System Center Virtual Machine Manager 2012 R2. In part two, I gave an overview to migrating to SCVMM, and in part three, we went over migrating the hosts and library. With all the resources for our new fabric now in place, its time to recreate all the meta-data which defines our environment. We will address SCVMM 2012 R2 and migrating tenants (roles), clouds, virtual machines, and library assets, along with all their respective associations. Unlike the steps we have completed to date, we had the ability to primarily use loops to define the environment. However, now we will need to depend exclusively on the data that we'll export from the original. We will now refer to as the source VMM environment as the foundation for our new environment, which we will reference as the target VMM environment. Delegated Administrators The first of the entities that I will create in my environment is actually quite simple. I only have a single delegated administrator, which is offered management of all my libraries and the hosts in the “Operations” group. To implement this, I use the following PowerShell ​ $UserRole = New-SCUserRole -Name "! Lab Administrators" -UserRoleProfile "DelegatedAdmin" -Description "Lab Management Team" $scopeToAdd = @ $scopeToAdd += Get-SCVMHostGroup -Name "Operations" $scopeToAdd += Get-SCLibraryServer –ComputerName PDC-FS-SMB01 $scopeToAdd += Get-SCLibraryServer -ComputerName PDC-SC-VMM02 $scopeToAdd += Get-SCRunAsAccount -Name "SCVMM Agent Management" Set-SCUserRole... --- ### Designing a Hyper-V Virtual Machine > Learn about designing and configuring a virtual machine on Hyper-V to run an operating system or service, including concepts and specifications. - Published: 2013-12-02 - Modified: 2024-09-04 - URL: https://petri.com/configure-hyper-v-virtual-machine/ - Categories: Windows Server 2012 - Tags: Cloud, Hyper-V, virtual machine, Virtualization, VM, Windows Server, Windows Server 2012 R2 - Article Type: How To Considering a Hyper-V VM? Learn more about configuring a virtual machine on Hyper-V to run an operating system or service. When you specify a physical server, you typically figure out the requirements of the operating system and application; determine support and performance requirements; and configure the required storage, memory, processors, networking, and so on. This doesn’t really change with Hyper-V, or any virtualization platform for that matter. In this post I will discuss some of the things you should consider when configuring a virtual machine to run on Hyper-V. Support for Virtualization Will your desired guest operating system and software (a) run in a Hyper-V virtual machine and (b) support Hyper-V or virtualization? You cannot just assume that your software and OS will work and be supported. Microsoft has listed the supported guest operating systems on TechNet. Note that several Linux distributions are listed at this time (this list continues to grow). CentOS Red Hat Enterprise Linux SUSE Linux Enterprise Server Open SUSE Ubuntu Oracle Linux (thanks to a unique Oracle/Microsoft partnership) “Supported” and “works” have very different meanings for Microsoft. Supported: The above Linux distributions have support. This means Microsoft has the ability to engineer solutions to resolve any issue you might have. Works: Lots of x86 or x64 operating systems work on Hyper-V. Any Linux with a modern kernel will even have the Hyper-V drivers built-in. However, Microsoft will not provide technical support for these unsupported guest OSs. You next need to check the support statement for the software that you want to run. This is information you need to get from the software vendor... . --- ### Enable RemoteApp Capability in Windows XP SP3 > Learn to enable the RemoteApp capability in Windows XP SP3 and replicate a Windows XP Mode feature using Windows 8 client Hyper-V. - Published: 2013-12-02 - Modified: 2024-11-19 - URL: https://petri.com/enable-remoteapp-windows-xp-sp3/ - Categories: Windows XP - Tags: Ask an Admin, Client Hyper-V, Windows 8, Windows XP Mode - Article Type: How To Replicating Windows XP Mode functionality much? Learn to enable RemoteApp in Windows XP SP3 in this article! How can I enable RemoteApp in Windows XP SP3? The ability to enable RemoteApp in Windows XP allows administrators to replicate Windows XP Mode functionality in Windows 8 using the Hyper-V client. While it has always been possible to connect to XP remotely using the built-in Remote Desktop feature, Microsoft released an update for the OS that enables RemoteApp functionality, which is usually only found in server editions of Windows. RemoteApp allows users to make a connection to an app running on a remote machine in a window that shows only the required app, such as Internet Explorer, rather than the entire remote desktop. RemoteApp was introduced to XP as part of Windows XP Mode for Windows 7, to allow better integration with the host desktop and legacy apps running in an XP virtual machine (VM). Install the RemoteApp Update for Windows XP SP3 First, download the optional KB961742 update from Microsoft. Once the update is installed, reboot Windows XP. Before continuing with the instructions below, don’t forget to make sure that Remote Desktop is enabled in Windows XP’s System Properties dialog, and that you have given users permission to connect. Modify the Registry Now that XP has rebooted, log on as a local administrator to modify the registry using Regedit. Press the Windows key and R simultaneously to bring up the Run dialog box. Type regedit in the Run box and press ENTER. In Regedit, navigate to HKLMSOFTWAREMicrosoftWindows NTCurrentVersionTerminal ServerTsAppAllowList in the left pane. In the... --- ### System Center Virtual Machine Manager 2012 R2: Migrating Hosts and Libraries > Discover how to migrate hosts and libraries in System Center Virtual Machine Manager 2012 R2 in part three of this multi-part series on SCVMM 2012 R2. - Published: 2013-11-27 - Modified: 2013-11-27 - URL: https://petri.com/system-center-virtual-machine-manager-2012-r2-scvmm-migrate-host-library/ - Categories: System Center - Tags: Cloud, migration, scvmm, System Center, upgrade - Article Type: Overview In part three of this multi-part series on SCVMM 2012 R2, discover how to migrate hosts and libraries in System Center Virtual Machine Manager 2012 R2. Welcome to this series on System Center Virtual Machine Manager 2012 R2! In part one, I discussed upgrading to System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2). In part two, I provided an overview of migrating to SCVMM. Now that you have an overview of the process of migrating our SCVMM environment to 2012 R2, let's take a deeper dive into the steps we'll be taking to migrate the hosts and library. In this post we will focus on both the Hyper-V hosts and the logical networks we will be hosting, in addition to the addition of our library servers.  What I will not be covering here is the procedure to create a logical switch, as depending on your environment you might for some obscure reason wish to use the old virtual switch format. The samples I will present are based on the assumption that you are migrating from a virtual switch, leaving you the option to start initial with a virtual switch and upgrade to a logical switch when suitable. Keep in mind that as we cover each step, we are moving steps away from a quick rollback option. However, assuming you keep note of where you are, reversing these changes (should that be necessary) should be a quite similar exercise. System Center Virtual Machine Manager 2012 R2: Host Groups We can now change to the Fabric view in VMM, as next we will create a host group for the Hyper-V hosts that will be used... --- ### Modifying a VM with PowerCLI > Using PowerCLI to modify a virtual machine is a snap! Learn more about managing a VMware infrastructure in this helpful how-to guide. - Published: 2013-11-27 - Modified: 2024-09-04 - URL: https://petri.com/use-powercli-modify-virtual-machine/ - Categories: VMware - Tags: Intermediate, PowerCLI, virtual machine - Article Type: How To If you're managing a VMware infrastructure, then PowerCLI should be part of your toolkit. Learn to use PowerCLI to modify a VM in this how-to! If you are responsible for managing a VMware infrastructure then PowerShell and PowerCLI should be a part of your toolkit. I’ve written a number of articles on getting started with PowerCLI which I’m going to assume you’ve already read (if not, see the links in the next paragraph). In this article I want to demonstrate how to use PowerCLI to modify an existing virtual machine. I’m going to assume you have already loaded the snapin and connected to your VMware server, so let's begin! (Need to catch up? Check out the rest of this series! In part one: downloading and installing VMware vSphere PowerCLI, In part two: setting up and configuring PowerCLI. Part three: use PowerCLI to start and shutdown VMs. In part four: PowerCLI and PSDrives, and in part five: created a new VM. Finally, in part six: use PowerCLI to manage your ISO files. ) Retrieving the Virtual Machine The cmdlet we’ll be using is Set-VM. I think you’ll find it easiest to use a Get-VM expression to retrieve the virtual machine or machines and then modify them. First, make sure you can get the virtual machine you want. ​ PS C:> get-vm "globomantics web" Name                 PowerState Num CPUs MemoryGB ----                 ---------- -------- -------- Globomantics Web     PoweredOff 1        2. 000 Let’s modify this. Modifying Memory After some testing I’ve realized that this web server needs more memory assigned. Using Set-VM, it is very easy to make this change. ​ PS C:> get-vm "globomantics... --- ### Redirected I/O in Windows Server 2012/R2 Cluster Shared Volumes > Learn how redirected I/O has changed in Windows Server 2012 (WS2012) and Windows Server 2012 R2 (WS2012 R2), and how to control which networks it uses. - Published: 2013-11-27 - Modified: 2024-11-19 - URL: https://petri.com/redirected-io-windows-server-2012r2-cluster-shared-volumes/ - Categories: Windows Server 2012 - Tags: Cluster, cluster shared volume, Clustering, csv, Failover Clustering, Hyper-V, networking, SMB, storage, Virtualization, Windows Server 2008 R2, Windows Server 2012 R2 - Article Type: Overview In this article, learn how redirected I/O has changed in Windows Server 2012/R2, and how you can control what networks it is used on. Simiply mention "redirected I/O" if you want to make a Windows Server 2008 R2 (W2008 R2) Hyper-V administrator shiver in dread. A necessary feature in W2008 R2, redirected I/O was used during backups operations of Cluster Shared Volumes (CSV) and had all sorts of nasty effects in more complex environments. Windows Server 2012 (WS2012) introduced CSV 2. 0 and dispensed with the need for redirected I/O during backup. In this article, I will explain how redirected I/O has changed and how you can control which networks it is used on. What Is Redirected I/O? Windows has a “shared nothing” approach to volumes. Any one volume can be owned by just a single machine. This could be a problem when trying to create a cluster file system. CSV was introduced in W2008 R2 to allow the nodes in a Hyper-V cluster share a volume and simply storage design. Shared nothing still applied – one node in the cluster is the owner or Cluster Shared Volumes coordinator of that volume. This is a fault-tolerant role that is managed for you by the cluster. Normally each node in a cluster has direct I/O to a CSV (delegated by the owner) on the SAN. But there are scenarios in which the traditional shared nothing approach must be restored. This causes something known as redirected I/O to occur. Each node must continue to use the storage (virtual machines must continue to operate) but the I/O must be controlled by the CSV’s owner. To make this possible,... --- ### How to Install Windows Server 2012 R2 > Learn how to install Windows Server 2012 R2 in this short 'n easy Ask an Admin article. - Published: 2013-11-26 - Modified: 2024-09-24 - URL: https://petri.com/install-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: Windows Server 2012 R2 - Article Type: How To With every version of Windows, installing the OS gets easier and faster. Learn how to install Windows Server 2012 R2 in this easy Ask an Admin article! How do I install Windows Server 2012 R2? In this Ask the Admin, I’ll walk you through the process of installing Windows Server 2012 R2. The good news is that with every version of Windows, installing the OS becomes easier and faster, and Windows Server 2012 R2 is no exception. Before you start, you’ll either need the Windows Server 2012 R2 DVD media from Microsoft, or create your own bootable DVD or USB drive. Go ahead and download the Windows Server 2012 R2 evaluation ISO. You can use Windows 8 to burn the ISO image to DVD, or download the Windows 7 USB/DVD Download tool to create a bootable USB drive from the ISO file. Once you have your media prepared, insert the disk or USB drive into the server and make sure that either the BIOS is configured to boot from DVD or USB drive, or that you know how to interrupt the boot process to force the server to boot from the DVD or USB drive. Once booted from the media, you should see Windows loading the necessary setup files. In the Windows Setup dialog, set the language, time and currency format, and keyboard layout, and then press Next. On the next screen, click Install now. On the Select the operating system you want to install screen, select the edition of Windows Server 2012 R2 that you want to install and click Next. You can choose to install with or without a GUI, and between... --- ### Managing Service Instances on SharePoint 2013 > Learn about service instances in SharePoint 2013 in this overview, including how to turn them on and off through Central Administration and PowerShell. - Published: 2013-11-26 - Modified: 2024-09-04 - URL: https://petri.com/manage-service-instances-sharepoint-2013/ - Categories: SharePoint - Tags: Editor's Pick, service instance - Article Type: How To In this overview, learn about service instances in SharePoint 2013, including how to manage them through Central Administration and PowerShell. So you’re ready to take the plunge and go multi-server in your SharePoint farm. Congratulations! There are still some configuration steps and some decisions to make on your new server.   You’ve got to add the server to the farm, and there might be (depending on if your new server will be a front end server) some configuration to make on the network load balancer or proxy server. This article is going to help demystify service instances in SharePoint 2013, teach you what they are, why they’re important, and how to turn them on and off through both Central Administration and PowerShell. Whoa! That’s a lot for one article, but I promise to take it easy on you. What Is a Service Instance? Service instances are the connections between a SharePoint server IIS web site and the windows service. If the service instance isn’t running, the service on the server is not running. Even if you have created a service application, you may not have a running service instance, and just because you have a running service instance doesn’t mean you have a service application. Service Applications and Service Application Endpoints Vs. Service Instances The reason you can have a service instance running but not a service application is simple: It’s designed that way. The reason it’s designed that way makes some good sense. The service applications that you’ll run with SharePoint 2013 are modular. You can have one search service application, or you can have ten search... --- ### How to Estimate VMware vSphere Replication Traffic > Learn how to estimate and plan for vSphere Replication traffic, including using the vSphere Replication Capacity Planning Appliance fling. - Published: 2013-11-26 - Modified: 2024-11-19 - URL: https://petri.com/estimate-vsphere-replication-traffic/ - Categories: VMware - Tags: Disaster Recovery, DR, replication, vmware, vSphere - Article Type: How To In this guide, learn to plan for vSphere Replication traffic, including how to use the vSphere Replication Capacity Planning Appliance fling. Since its initial announcement, vSphere Replication has been an item of interest with customers. The idea of being able to replicate on a per-VM basis to your disaster recovery site. This flexibility is very appealing to VMware customers. The replication feature was very basic at in its initial release and just received a few new features in the latest vSphere 5. 5 release. But one of the most common questions I still get is how do I know how much data I need to copy? Today I'll talk you through how to anticipate and estimate vSphere Replication traffic. Estimating vSphere Replication Traffic This is something that has been lacking since the initial release and still is. Officially VMware does not have a feature for this and I'm not sure when they will. So this leaves admins looking for ways that they can try and come up with this data. The real question is two parts: First, how much data is there, and how long will it take to copy the VM the first time. The second part is trying to figure out the rate of change, how much data that is, and what the network traffic might be. Without any native tools for this, users are left looking for creative methods. One of the possible solutions is to try and gather this data from manual discovery and from your backup tool. It is easy to find out the size of the VM. This will apply for the initial... --- ### Managing VMware with CIM and PowerShell > Learn how to manage your VMware servers using CIM and PowerShell in this tutorial! Connect using the WSMan protocol and more. - Published: 2013-11-25 - Modified: 2024-09-04 - URL: https://petri.com/manage-vmware-cim-powershell/ - Categories: VMware - Tags: CIM-WMI, Intermediate - Article Type: How To It's time you got to know CIM. Learn how to manage your VMware using CIM and PowerShell in this tutorial! In PowerShell 3. 0, Microsoft introduced the Common Information Model (CIM) cmdlets as a way of working with WMI information. The advantage was that instead of connecting to WMI over RPC and DCOM, which is not very firewall-friendly, we can connect using the WSMan protocol, delivered by the WinRM service which uses only a couple ports. Here’s the best part and why you should be learning to how to use the CIM cmdlets: You can connect to any device or server that supports WSMan and CIM. This includes a VMware ESXi server. Manage VMware with CIM: Connect to WSMan What I’m going to demonstrate does not use any of the PowerCLI cmdlets. Instead, you can use existing CIM cmdlets in PowerShell 3. 0. I will warn you up front that getting WMI information from a VMware server is not easy or obvious. Depending on your server and network configuration, your experience might be quite different and could entail a bit of research and a lot of trial and error. To begin, I’m going to create a CIM session object to my ESXi server. Because my server does not use Active Directory for authentication, nor is it configured with an appropriate certificate, I’ll need to set some options for my CIM session. ​ PS C:> $CIMOpt = New-CimSessionOption -SkipCACheck -SkipCNCheck -SkipRevocationCheck -Encoding Utf8 –UseSsl If you can’t establish a CIM session outright, you might need to experiment with different options. Although I suspect at a minimum you will need to... --- ### Upgrading to System Center Virtual Machine Manager 2012 R2 > Getting ready to upgrade to System Center Virtual Machine Manager 2012 R2? Learn about the challenges and solutions you may find in upgrading to SCVMM. - Published: 2013-11-25 - Modified: 2024-09-04 - URL: https://petri.com/upgrade-to-system-center-virtual-machine-manager-scvmm-2012-r2/ - Categories: System Center - Tags: Private Cloud, scvmm, SQL Server, System Center Virtual Machine Manager 2012 R2 - Article Type: Overview Facing an upgrade? Learn about the challenges and solutions you may find in upgrading to SCVMM 2012 R2 in this handy guide. As you begin to prepare for your migration to System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2), one of the best nuggets of advice I can offer is to perform your dry run from end to end. Even if you are a seasoned VMM administrator, there are so many tiny dependences that you need to be aware of, especially if you have chosen to jump from 2012 RTM to the latest R2 Release. VMM 2012 RTM can not be directly upgraded to VMM 2012 R2 – you must first upgrade to VMM 2012 SP1. VMM 2012 RTM can be deployed to Windows 2008. However, VMM 2012 SP1 and later require Windows 2012. Windows 2012 hosts require VMM 2012 SP1. Windows 2012 R2 hosts require VMM 2012 R2. AppController versions should generally match the VMM version, or you should expect some problems. Run Pilot Upgrades Although the upgrade process might initially read as trivial, it is imperative that you should run at least one pilot upgrade of the environment prior to going forward with the real thing. However if this pilot is to be of any value you must take into account the versions of your SCVMM hosts and libraries, including both the OS and application levels. Ensure you match these source versions for your upgrade pilot, otherwise your pilot will have questionable value when you approach the real migration. In addition, one of the most important elements to keep in your pilot will be the... --- ### Options for Upgrading Standalone Hosts to Windows Server 2012 R2 Hyper-V > Learn how to upgrade a non-clustered or standalone Hyper-V host to Windows Server 2012 R2 or WS2012 R2 Hyper-V with this easy overview. - Published: 2013-11-25 - Modified: 2024-09-04 - URL: https://petri.com/upgrading-standalone-hosts-to-windows-server-2012-r2-hyper-v/ - Categories: Hyper-V - Tags: deployment, Hyper-V, migration, upgrade, Virtualization, Windows Server 2012 R2 - Article Type: Overview Discover your upgrade options and installation process for a non-clustered or standalone Hyper-V host to Windows Server 2012 R2 or WS2012 R2 Hyper-V. Many organizations, from small businesses to massive hosting companies, prefer to deploy non-clustered Hyper-V hosts because of the overall host capacity-to-VM ratio (no need for failover capacity). A new version of Hyper-V is here, so how will these organizations upgrade their standalone Hyper-V hosts to Windows Server 2012 R2 Hyper-V? Windows Server 2012 R2 Hyper-V: Upgrade Options There are two options for upgrading non-clustered or standalone Hyper-V hosts to Windows Server 2012 (WS2012) R2 Hyper-V. There are two general approaches that can be used: In-place upgrade Install a new management OS Note: We are discussing only non-clustered Hyper-V hosts in this article. There will be another article on dealing with Hyper-V clusters because the supported options are very different. No matter which process you use there are a few things to check before you start an upgrade. Hardware support: Ensure that your server/storage/networking manufacturers support WS2012 R2. Firmware: Upgrade the firmware for all devices in the server to ensure smooth and trouble-free performance during and after the upgrade. Error checking: Check the Windows and hardware logs to look for faults that could cause issues. You don’t want to blame WS2012 R2 for issues that might be related to hardware issues. Check your backups: You want a rollback plan in case things go wrong! In-Place Upgrades to Windows Server 2012 R2 You won’t find this in black and white, but Microsoft hates in-place upgrades. This is because any problems you had in the older... --- ### Successful PlayStation 4 and Xbox One Launches Marred by Glitches > PlayStation 4 and Xbox One have some glitches – but will that impact sales? Discover what problems gamers have uncovered in these hot new consoles. - Published: 2013-11-22 - Modified: 2024-11-19 - URL: https://petri.com/playstation-4-xbox-one-launch-glitches/ - Categories: Cloud Computing - Tags: Gaming, News, PlayStation 4, Xbox One - Article Type: News New PlayStation 4 and Xbox One owners are encountering some irksome glitches with their new consoles, ranging from bricked devices to defective CD drives. Proving once again that just about any brand-new technology product will have first-release problems to work through, launches of both the PlayStation 4 (which was released November 15) and the Xbox One (which is available today) have had to contend with some minor technical glitches and gremlins. PS4 and the Blinky Blue Light of Death Sony recently announced that their new PlayStation 4 console sold more than 1 million units in the first 24 hours after launch in Canada and the United States. While it appears that the vast majority of new PS4 owners have been using their consoles without any issues, a small number of users have reported that their new PS4 consoles have refused to start, displaying what some have referred to as a "blinking blue light of death," with an obvious nod to the infamous "red ring of death" (RROD) debacle that plagued the Xbox 360 launch, cost Microsoft a whopping $1 billion to fix, and inspired a hilarious parody video (embedded below) that was based on the legendary Johnny Cash song "Ring of Fire. " Sony does have a PS4 customer support page that provides assistance to customers that are experiencing the problem, and a Sony representative recently told Bloomberg news that "We also understand that some units were reportedly damaged during shipping. " Sony asserts that only a very small number of PS4 owners have been impacted by the issue, which would seem to indicate that Sony doesn't have a RROD-size problem on its... --- ### How to Check for Missing Updates in Windows Server 2012 R2 and Windows 8.1 > Learn to use Microsoft Baseline Security Analyzer 2.3 (MBSA) to scan Windows Server 2012 R2 and Windows 8.1 PCs for missing security updates in this article! - Published: 2013-11-22 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-baseline-security-analyzer-missing-updates-windows-server-2012-r2/ - Categories: Security - Tags: MBSA, Microsoft Baseline Security Analyzer, Windows 8.1, Windows Server 2012 R2 - Article Type: How To Missing some security updates? Discover how to use Microsoft Baseline Security Analyzer 2.3 to scan Windows Server 2012 R2 and Windows 8.1 for updates! How can I find missing updates in Windows Server 2012 R2 and Windows 8. 1? Microsoft has updated the Baseline Security Analyzer (MBSA) to version 2. 3, allowing IT administrators to scan networks for missing patches on Windows Server 2012 R2 and Windows 8. 1. While you can check for missing security updates on individual servers and PCs using Windows Update, the Microsoft Baseline Security Analyzer allows IT administrators to scan PCs and servers on a network for missing security updates, and vulnerabilities that might leave Windows exposed. Downloading and Installing Microsoft Baseline Security Analyzer 2. 3 (MBSA 2. 3) You can download Microsoft Baseline Security Analyzer 2. 3 for free. The latest version adds support for Windows Server 2012 R2 and Windows 8. 1, but drops support for Windows 2000. I recommend installing MBSA on a Windows 8 management PC, not on a server. Follow through the simple install procedure and then double-click the Microsoft Baseline Security Analyzer shortcut on the desktop. Scanning Single Devices Let’s start by scanning the computer on which MBSA is installed. Under Tasks on the left of the main MBSA window, click Scan a computer. On the Which computer do you want to scan? screen, the Computer name field should show the name of the current computer. Alternatively, you can chose another device or enter an IP address. In this example, I’m going to leave the current computer selected. Leave all the default checks selected, and click Start Scan in the bottom right corner. You may have noticed... --- ### LSA Protected Mode Troubleshooting Tips for Windows Server 2012 R2 and Windows 8.1 > LSA Protected Mode | Learn to enable auditing for drivers or plug-ins that fail to load when LSA protected mode is on in Windows Server 2012 R2 or Windows 8.1. - Published: 2013-11-21 - Modified: 2024-09-24 - URL: https://petri.com/lsa-protected-mode-troubleshooting-tips-server-2012-r2-windows-8-1/ - Categories: Security - Tags: Ask an Admin, LSA, Pass the Hash, Windows 8.1, Windows Server 2012 R2 - Article Type: Overview Got LSA problems? Learn to enable auditing for drivers or plug-ins that fail to load when LSA protected mode is on in Windows Server 2012 R2 or Windows 8.1. I need help with LSA protected mode. How do I enable auditing and do other troubleshooting? In my previous Ask an Admin post, I described the new LSA protected mode in Windows Server 2012 R2 and Windows 8. 1, how it works, and how to enable the setting. LSA protected mode is not turned on out-of-the-box, except in Windows 8. 1 RT where it cannot be disabled because it may cause compatibility issues with some third-party applications, such as smart card drivers or self-service password reset applications. In this article, I’ll describe how to enable auditing so you can identify drivers or plug-ins that fail to load in LSA protected mode. LSA Protected Mode Requirements There are a couple of requirements that LSA drivers and plug-ins must comply with to work with protected mode: The driver or plug-in must be digitally signed by Microsoft through the WHQL program. All drivers and plug-ins must be developed according to Microsoft Security Development Lifecycle (SDL) best practices. Turn On Auditing for LSA Plug-ins and Drivers That Fail to Load In the example, we’ll configure LSA auditing on computers in your domain. You don’t need to enable LSA protected mode itself; if an LSA driver or plug-in doesn’t meet the necessary requirements for protected mode, an event will be logged but the driver or plug-in will not be blocked from loading. Log on to a Windows Server 2012 R2 domain controller with an account that has permission to create and link Group Policy... --- ### Server-Side Caching: Virtualization's Hot New Technology > Server-side caching | Find out how this hot new technology segment in virtualization might be able to help your storage and performance issues. - Published: 2013-11-21 - Modified: 2024-11-19 - URL: https://petri.com/server-side-virtualization-new-technology/ - Categories: VMware - Tags: Caching, Virtualization, vmware - Article Type: Overview One of the hottest new technologies in the pursuit of better performance is server-side caching. Learn more about it in this overview! As data centers continue to virtualize more of their workloads, the reality is there are only a few use cases today that are not virtualized on a regular basis. This means that the dependance on shared storage is also increasing. The fact that the majority of performance issues in virtualized environments are storage related is cause for admins and architects to continue their search for improving performance. One of the hottest new technologies in this pursuit of better performance is server-side caching. Server-Side Caching Overview Server-side caching is a method of using a local caching point to accelerated reads, writes, or both. The local caching points are most commonly local flash storage in the server, but they could also be using local server memory. Typically the goal is to cache the commonly used data in this layer so that when it's accessed again it can be read locally without the need to go all the way back to shared storage. This typically lowers the latency and increases the IOPs. Over the past 12 to 18 months this market has seen a lot of companies announce and release products. I'm going to cover some of the ones that I have personally used or spoken with. This list is sure to not cover every option available today, but will hit on the leading ones for the VMware space. PernixData – The FVP product offers a local cache that utilizes dedicated local flash storage in your VMware hosts. This flash... --- ### Cisco USB Console Connection Setup > Install and setup the Cisco USB console driver on your PC to configure or troubleshoot your Cisco devices. Learn how in this helpful article! - Published: 2013-11-21 - Modified: 2024-12-03 - URL: https://petri.com/cisco-usb-console-connection-setup/ - Categories: Cisco - Tags: Cisco, console, networking, USB Driver - Article Type: How To Cisco devices often require console connections to configure or troubleshoot. Install the Cisco USB console driver on your PC to be ready for action! Most laptops and tablets haven’t come with old-school DB9 serial ports for years. For those of us supporting Cisco network infrastructure this meant using a clunky USB to serial adapter on our PC so we could connect to the console port on our Cisco gear. Cisco finally got with the program and began releasing new equipment with a USB console port to go along with the older RJ45 one. All that’s needed now for connection to the console is a USB A to Mini-B cable and the Cisco USB Console Windows Driver. If you don’t have the latter, don’t worry! I’m going to show you how to download, setup, and test the driver on a Windows 8. 1-based PC right now! Download and install a Cisco USB console connection To begin setting up a Cisco USB console in Windows, login using a Cisco. com account. If you don’t already have an account, click 'Create a new account' button and walk through the sign-up process. Since I already have an account, I’ll go ahead and log on by entering my user name and password and then clicking the Log in button. There are about a dozen different routes to get to the download page for the USB Console Driver. Cisco has one of the most in-depth websites I’ve ever come across. It’s also one of the most frustrating at times. I’m all about easy, so just browse to their Cisco USB Console software download site and you can grab it from there... . --- ### Managing VMware Tools with PowerCLI > Learn to manage VMware tools using PowerCLI to easily update all your client tools at once. Read on for more! - Published: 2013-11-20 - Modified: 2024-09-04 - URL: https://petri.com/manage-vmware-tools-powercli/ - Categories: VMware - Tags: Intermediate, PowerCLI, VMware tools - Article Type: How To Update all your client tools by using PowerCLI to manage your VMware tools. Read on for more! All virtualization platforms have some type of client package of tools that is used for communications between the virtual machine and the hypervisor or otherwise managing the virtual machine guest. Often if the version of client tools is behind what the server is expecting, you lose some ability to manage the virtual machine guest. VMware is no different. However, with PowerShell and the PowerCLI snapin, it is pretty easy to update all of your clients to the most recent version of client tools. Today I'll show you how to manage VMware tools using PowerCLI – specifically, updating and installing the tools. Finding the Current Version The version information is part of the virtual machine object, but it is a little tricky to get to. Let me walk you through it. First, we’ll look at a single virtual machine. ​ PS C:> $vm = get-vm MyCompanyDC The virtual machine has a property called ExtensionData. This object is a complex object which contains another object as a property called Guest. Using Select-Object with the ExpandProperty parameter, we can view the current tools status. ​ PS C:> $vm | select -expandproperty ExtensionData | select -expandproperty guest As you can see in Figure 1, tools are outdated on this virtual machine. Here’s a shortcut way to get the same information. ​ PS C:> $vm. ExtensionData. Guest | Select Hostname,Tools* HostName            : MYCOMPANY-DC01. MYCOMPANY. LOCAL ToolsStatus         : toolsOld ToolsVersionStatus  : guestToolsNeedUpgrade ToolsVersionStatus2 : guestToolsSupportedOld ToolsRunningStatus  : guestToolsRunning But this only works for... --- ### Migrating to System Center Virtual Machine Manager 2012 R2 > System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 r2) | Discover the steps in migrating to SCVMM 2012 r2 in this detailed walkthrough. - Published: 2013-11-20 - Modified: 2013-11-20 - URL: https://petri.com/migrate-to-system-center-virtual-machine-manager-scvmm-2012-r2/ - Categories: System Center - Tags: Cloud, Migrations, scvmm, System Center Virtual Machine Manager 2012 R2 - Article Type: Overview Migrating to SCVMM 2012 r2? Take this detailed walkthrough with you! Read on to learn about disabling network labeling and more. You might be forgiven in asking why I'm posting a migration guide for System Center Virtual Machine Manager 2012 R2 (SCVMM 2012 R2), when only a few days ago I posted some pointers related to upgrading to SCVMM 2012 R2. The short answer is: different horses for different courses. Also, recently I had the opportunity to execute a migration to a clean environment with the ability to selectively choose what resources and meta-data to move forward. This approach, although quite laborous, is my preferred approach when comes to working with SCVMM – mainly due to the number of preproduction early builds I often have to deploy. Migrating to SCVMM 2012 R2 In this guide I will cover the key entities which are necessary to be recreated in the new environment, so as to deliver a new clean cloud fabric. The scope of my project will be based almost entirely using PowerShell, as the option of clicking and typing through this process is a non-starter. All the concepts I will cover are based on the current commands offered from SCVMM 2012 SP1 and R2 PowerShell module. Like all good jobs, it pays to have a plan of action. There are a lot of critical steps and the order of execution is somewhat defined based on interdependencies, therefore my list of tasks will be broken down as follows: We Create our "Run As" Accounts Create Host Groups Prepare Hyper-V Hosts by cleaning up agents Add Hyper-V Hosts to the... --- ### Introducing Hyper-V Server 2012 R2 > Hyper-V Server 2012 R2 | Learn more about the latest version of Hyper-V Server and what it can do for you! Includes licensing and download links. - Published: 2013-11-20 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-server-2012-r2-introduction/ - Categories: Hyper-V - Tags: Cloud, Hyper-V Server, Hyper-V Server 2012 R2 - Article Type: Overview Learn more about Hyper-V Server 2012 R2 and what it can do for you in this overview! Includes licensing, GUI, cost effectiveness, and download links. In this article, I will give a brief overview of Hyper-V Server 2012 R2 and why you would consider using this free version of the Hyper-V virtualization platform. What Is Hyper-V Server 2012 R2? Hyper-V Server is the free version of Hyper-V that anyone can download and use for enterprise-class virtualization. For every version of Hyper-V on Windows Server, there has been an equal version of Hyper-V Server. In the case of Windows Server 2012 R2 (WS2012 R2), there is a matching release of Hyper-V Server 2012 R2. Hyper-V Server 2012 R2, as usual, has all the same features and scalability of the Datacenter edition of Windows Server Hyper-V, but with three exceptions: Licensing: There are no free virtualization rights as you get with the Standard or Datacenter editions of Windows Server. This is a free product so you shouldn’t expect everything for nothing! Automatic Virtual Machine Activation: The Datacenter edition of Windows Server is the one that is most likely used in multi-tenant clouds. Therefore, this is the only edition that includes the new AVMA feature to automatically activate Windows guest operating systems that are running on an activated host. The GUI: Hyper-V Server has only a Core installation option. This is not a big concern; all administration is done either via a simple wizard, command/PowerShell prompt, or remotely using the Remote Server Administration Toolkit for Windows 8. 1 or System Center. Other than that, you get all the Hyper-V and Failover Clustering features that are essential... --- ### Enabling Secure Boot in Windows 8 and Windows Server 2012 > Learn how to confirm that Secure Boot is enabled on a Windows 8 or Windows Server 2012 computer with UEFI – all in this quick Ask an Admin article! - Published: 2013-11-19 - Modified: 2024-09-24 - URL: https://petri.com/enable-secure-boot-windows-8-server-2012/ - Categories: Security - Tags: ELAM, Secure Boot, UEFI, Windows 8, Windows Server 2012 - Article Type: How To In this Ask an Admin, quickly confirm that Secure Boot is enabled on a Windows 8 or Windows Server 2012 computer with UEFI. I need to enable Secure Boot in Windows 8 and Windows Server 2012! Help! Now that most new PC hardware is shipping with Unified Extensible Firmware Interface (UEFI) instead of the more familiar BIOS, you can take advantage of Secure Boot support in Windows, which is part of the UEFI framework. While UEFI is standard for most new hardware, Secure Boot isn’t always enabled by default. Protection Against Root Kits When Secure Boot is enabled on a PC, code loaded during the boot sequence, such as the Windows Boot Manager and NT kernel, is checked against signatures in the firmware to ensure that it hasn’t been replaced or modified. This is especially important considering that anti-malware software doesn’t run until later in the boot process, so there needs to be another security mechanism in place to protect against root kits that modify code that loads before Windows starts. Early Launch Antimalware (ELAM) then defends Windows by starting malware protection before any third-party drivers are initialized. System Requirements UEFI Specifications Version 2. 3. 1, Errata C or higher is required on UEFI Class 2 and Class 3 hardware. If Secure Boot is supported on your hardware, there will be an option to enable and disable it in the PC’s start-up options. To access these options, it’s usually necessary to hold down F2 or F12 as the computer boots before Windows starts. How to Confirm That You Have UEFI Not all computers have UEFI. To determine whether... --- ### Virtual Desktop Infrastructure (VDI) and Automated Storage Tiering > Virtual Desktop Infrastructure (VDI) | There's many storage options available for virtualization. Discover what to consider when storage shopping! - Published: 2013-11-19 - Modified: 2013-11-19 - URL: https://petri.com/virtual-desktop-infrastructure-vdi-storage-guide/ - Categories: VMware - Tags: desktop, EUC, Flash, storage, VDI, vmware - Article Type: Overview Discover what to consider when storage shopping for virtual desktops! Learn more Virtual Desktop Infrastructure and more in this guide. Over the past couple of years vendors and customers have both figured out that storage for Virtual Desktop Infrastructure (VDI) is a different beast. Hopefully gone are the days where designs call to co-mingle VDI with your other storage needs, unless you are just providing a small amount of desktops. There are a lot of storage options available today and many are specifically marketed to the VDI market. In this article, I'd like to share my thoughts and real world experiences regarding virtual desktop infrastructure, storage types, and performance methods. My discussion will be generic on purpose. I don't intend to sway anyone's decision for or against any particular storage vendor. My aim is to educate people on what they should be considering when purchasing or evaluating storage for virtual desktops. Planning Virtual Desktop Infrastructure: Storage Types Classic enterprise storage: These are the big iron types or large enterprise storage arrays that are typically a general purpose type of storage. They might be able to serve up multiple storage protocols such as fiber channel, iSCSI, NFS, and CIFS. They typically would combine group disks into raid groups, and more recently pool disks into similar types and create tiers of disks. Hybrid storage: This type of storage was introduced within the past couple of years. It offers a mix of flash storage (SSD) and slower SATA disks. But these typically do it in a more modern way than the enterprise arrays are able to do. Flash storage: An... --- ### Customizing the Start Screen in Windows 8 and Windows Server 2012 > Learn to customize Start screen layout in Windows 8 and Windows Server 2012 using PowerShell. It's all in this quick 'n easy Ask an Admin! - Published: 2013-11-19 - Modified: 2024-09-24 - URL: https://petri.com/customize-start-screen-windows-8-and-server-2012/ - Categories: Windows 8 - Tags: customize, PowerShell, Start screen, Windows 8, Windows Server 2012 - Article Type: How To In this quick 'n easy Ask an Admin, find out how to customize Start screen layout in Windows 8 and Windows Server 2012 using PowerShell. How can I customize the Start screen in Windows 8 and Windows Server 2012? Microsoft introduced a means to enforce Start screen layout using Group Policy in the Enterprise and RT editions of Windows 8. 1, but it’s likely that most organizations will want an easy way to provide a default Start screen for users that they can then customize. PowerShell provides two cmdlets that can be used to capture a customized Start screen and then import the configuration to the default user profile, which is used as the basis for creating profiles as new users log on to a device for the first time. Exporting the Start Screen Layout Begin by deploying a machine that has all the apps installed that you want to pin to the Start screen. Customize the Start screen and pin applications as required. Once the Start screen has been customized manually on a reference machine, open an elevated PowerShell window. Type powershell on the Start screen and select the app in the search results. To launch the console elevated, press CTRL+SHIFT+ENTER. In the PowerShell console, run the following command: export-startlayout -as bin -path c: customstartscreenlayout. bin –verbose   Import a Customized Layout Now that we have a Start screen customization file, you can use the following import command to customize the default user profile, either on a live machine from an elevated PowerShell console, or as part of a script to build a new machine, or a System Center... --- ### Fixing Microsoft: Missteps and Solutions > We know Microsoft's mistakes, but what are some solutions? Check out part 3 in this op-ed series, in which we propose ways Microsoft can get back on track. - Published: 2013-11-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-fix-microsoft/ - Categories: Windows Server - Tags: Opinion - Article Type: Opinion Microsoft has messed up. Check out part 3 in this op-ed series, in which we propose ways Microsoft can get back on track. We're back with my op-ed series on how and when things went wrong for Microsoft. In part one, I discussed the mistakes made with Windows 8, Windows Phone, and tablet devices. In part two, I talked about the Surface and Microsoft's marketing fumbles. But enough complaining. In this final part, I look on the bright side and suggest changes that Microsoft could make to bring them back to a competitive position. Microsoft's Mistakes: It’s Not All Doom and Gloom The shareholders who have revolted against Steve Ballmer and the Microsoft board have focused on Microsoft’s failings with the consumer. In the business space, Microsoft is making so much cash that buying a nearly bust Nokia is like one of us trying to decide if we’ll get something nice to nibble on when we fill up the car. There are over a dozen businesses within Microsoft that are making over $1 billion per year. Office 365 is doing huge business, even taking sales away from Exchange in the enterprise. Server and Tools (including Azure, Windows Server and System Center) is doing huge business. The cash is rolling in and it’s not hard to understand why some are saying that Microsoft should dump devices and consumer operations to become more like IBM. Microsoft might claim to be a devices and services company, but software is where they actually make their money. There are some dark clouds on this otherwise sunny horizon. Microsoft is close to alienating those enterprise customers... . --- ### ESX the PowerShell Way with Get-ESXCli > Learn to use Get-ESXCli to pull information about your VMware environment in this introductory guide. - Published: 2013-11-18 - Modified: 2024-09-04 - URL: https://petri.com/esx-powershell-get-esxcli/ - Categories: VMware - Tags: Get-ESXCli, Intermediate, PowerCLI - Article Type: Overview Want ESX to pull information about your VMware environment? Get-ESXCli! Learn how in this PowerShell guide. PowerShell is a terrific command line management tool. Of course, it can only peer into Windows-based systems, and naturally this doesn’t apply to a VMware server. However, PowerCLI offers a cmdlet that will bridge the gap between PowerShell and the VMware operating system. If you need to really get down deep into your VMware servers, Get-ESXCli is a tool that should fit the bill. In this article, we'll take a closer look at what Get-ESXCli can do, and some of the variables you can use with it to really examine the nitty-gritty detail of what is going on in your VMware environment. Before we get started, make sure that you have PowerCLI loaded and you're connected to an ESXi server. (Check out my series on PowerCLI, if you don't already have it. ) Get-ESXCli The magic command is Get-ESXCli. To use, save the output to a variable. ​ PS C:> $esx = get-esxcli What we end up with is like a proxy object to the ESX command line interface on the server. The object has a number of properties. ​ PS C:> $esx ================================ EsxCli: esx. jdhitsolutions. local Elements: --------- esxcli fcoe hardware iscsi network sched software storage system vm These properties will include nested objects and methods that you can use to extract information from the server. For example, Figure 1 shows hardware elements. You can navigate using an object. property notation. ​ PS C:> $esx. hardware. cpu ================== EsxCliElement: cpu Elements: --------- cpuid global Methods: -------- Cpu list... --- ### How to Use VMware Unity Touch on iPad > VMware Unity Touch was created to better the user experience on tablets for VMware View. Check out this brief walkthrough on how to use Unity Touch! - Published: 2013-11-14 - Modified: 2024-09-24 - URL: https://petri.com/how-to-use-vmware-unity-touch-ipad/ - Categories: VMware - Tags: EUC, iPad, Mobile, tablet, VDI, View, vmware - Article Type: How To Want a better virtual desktop experience on your mobile device? Check out this brief walkthrough on how to use VMware Unity Touch. In efforts to continue to improve the experience of the Windows desktop experience on mobile touch devices, VMware has created Unity Touch, a feature that installs in the virtual desktop image and enables advanced features when being accessed from a supported mobile device. The idea is to make the experience easier and better for end users. Today I'll do a little walkthrough on how to use VMware Unity Touch on an iPad. Using the Unity Touch on an iPad In the first image shown below, Unity Touch is lurking quietly in the background. I've highlighted the two ways to access it with arrows. The first is the round circle in the middle of the screen and the second is the tab on the left that can be swiped to open up the menu.   Below you can see the exposed left side menu, which shows your favorite apps and documents. It also is an easier way to access the Windows Start menu and My Documents folder. You can choose to select some favorite applications and documents to be listed for faster access. For this walkthrough, I thought we would add in a couple of favorite applications. I've highlighted the Manage button to get us started. Now we are presented with all of the applications installed in our View desktop. They are listed in the menu, and for any that we want to add to our favorites, all we have to do is tap... --- ### Why You Should Join the VMware User Group (VMUG) > VMUG meetings are a way for VMware customers, vendors, and employees to connect and troubleshoot. Find out more about VMUG in this article. - Published: 2013-11-14 - Modified: 2024-09-24 - URL: https://petri.com/vmware-user-group-vmug-introduction/ - Categories: VMware - Tags: VMUG, VMware User Group - Article Type: Opinion VMUG meetings are a great way for VMware customers, vendors, and employees to network and resolve issues. Learn more about VMUG meetings in this article! The VMware User Group (or VMUG) is a community-driven and -run program. The VMUG organization is run by community members, and it is split into local chapters organized by country or major city. Each local chapter has a leadership team that sets the agenda and helps drive attendance to their meetings. So what does this mean for the customers that attend these various VMUG meetings? VMUG's Value for Customers Out of all the involved parties, I think the customer stands to benefit the most from the VMUG community. Sure, they can talk with VMware and vendor employees, but they also get to meet fellow customers – and what is better than talking with others about what they are facing today? You can speak with others in your field about certain technologies they might be implementing or how they architected their storage for a cloud project. You might even get some tips on how to figure out how to work with the network team better. The point is, you're going to meet others that are facing the same goals, challenges, and issues that you are. Below are a few examples on the value to VMware users. I was recently speaking with a user who was asking for feedback on why certain design choices were made. He was trying to educate himself on why others might have made the choices they did. This was a great request, and it is something that I will try to fit into our... --- ### Configure Advanced Security Scenarios in Windows Server 2012 > Learn more about advanced security scenarios in Windows Server 2012, and how permissions configuration has been simplified for advanced security scenarios. - Published: 2013-11-14 - Modified: 2024-09-24 - URL: https://petri.com/advanced-security-scenario-windows-server-2012/ - Categories: Security - Tags: File Server, NTFS, permissions, Security, Windows Server 2012 - Article Type: How To In this Ask an Admin, learn more about advanced security scenarios in Windows Server 2012, and including configuration! What is an advanced security scenario in Windows Server 2012? Windows Server 2012 introduces several improvements to the Advanced Security settings dialog when configuring NTFS access controls and auditing. In this Ask the Admin, I’ll look at how permissions configuration has been simplified for advanced security scenarios. An example of an advanced security scenario is preventing users from accidentally deleting, moving, or renaming entire file structures. Administrators often configure NTFS permissions so that users can create, delete, and rename files, but not delete folders. While this doesn’t provide fool-proof protection, it does give a certain degree of damage limitation when simple finger trouble is the source of the problem. Configure an Advanced Security Scenario in Windows Server 2012 Let’s configure the permissions set on a folder in Windows Server 2012, to see how the process is easier than in previous versions of Windows Server. Log on to a file server that’s joined to a domain with an account that has local administrator privileges. On the desktop, press the Windows key + E to open File Explorer. In File Explorer, right-click the folder you want to modify and select Properties from the menu. In the Properties dialog, switch to the Security tab. Click Advanced in the security tab. In the Advanced Security Settings dialog, click Disable inheritance. In the Block Inheritance dialog, click Convert inherited permissions into explicit permissions on this object. In this example, I’m going to grant specific permissions for the Domain Users group. Before doing... --- ### What Went Wrong At Microsoft: Surface and Marketing Mishaps > Discover how Microsoft messed up its marketing in part two of this op-ed series, including the Surface, Metro, and Xbox One. - Published: 2013-11-13 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-mistakes-surface-marketing/ - Categories: Windows Server - Tags: Microsoft, Opinion - Article Type: Opinion Surface, Xbox One, and Metro – oh my! Discover how Microsoft messed up its marketing in part two of this op-ed series. Over the last few years, Microsoft has dropped the ball on many opportunities. In this series of posts, I'll take a closer look at what went wrong with Microsoft in recent years, which lead to the end of CEO Steve Ballmer’s career at Microsoft. In part one, I discussed the mistakes made with Windows 8, Windows Phone, and tablet devices. Today I'll go over the Surface and Microsoft's marketing fumbles. Finally, in part three, I'll suggest some possible fixes. Microsoft Surface: A Slippery Slope The world was stunned when Microsoft wrote down the value of Surface stock by $900 million in the summer of 2013. We knew Surface wasn’t selling well, but we didn’t realize that (a) it was this bad and (b) that Microsoft was holding onto that much stock. I guess the clues were there: you could pick up a Surface RT at TechEd North America and Europe for less than the price of a decent electronic picture frame, recalling the days when HP cancelled their doomed webOS TouchPad. The Surface was announced in Los Angeles in 2012 to much fanfare. In their constant effort to mimic Apple over recent years, Microsoft finally got exactly what it dreamed of: The media worldwide was talking about Surface. Even so, there was little to no information about availability of Surface. Those of us on the inside knew what was happening: It was “The Curse of Zune” all over again. Distribution of Surface was initially limited to the... --- ### Configuring Basic DNS Records in Windows Server 2008 R2 and 2012 > Learn to configure DNS records in Windows Server 2008 R2 and Windows Server 2012 and about basic DNS record types, all in this tutorial! - Published: 2013-11-13 - Modified: 2024-09-04 - URL: https://petri.com/configure-basic-dns-records-windows-server-2008-r2-and-2012/ - Categories: DNS - Tags: DNS, DNS record, Editor's Pick, Windows Server 2008 R2 - Article Type: How To In the fourth and final part of our series, learn to configure DNS records in Windows Server 2008 R2 and Windows Server 2012 in this tutorial! Once a Windows DNS server is up and has been configured with a forward and reverse lookup zone it is ready to be configured with DNS records. This article will start with a brief overview of the primary types of DNS records and will then walk through the configuration of basic DNS record types in Windows Server 2008 r2 and Windows Server 2012.   (Need to catch up? Besure to check out our other articles in this series: "Installing the DNS Server Role on Windows Server 2008 R2," "Installing the DNS Server Role on Windows Server 2012," and "Configuring Forward and Reverse Lookup Zones in Windows Server 2008 R2 and 2012. ") Basic DNS Record Types There are a few different types of records that are primarily used for most of the devices on the Internet and inside company intranets. The following is a list of these primary record types: Address (A) record – This type of record is used to translate a domain name to a specific IPv4 address. Address (AAAA) record – This type of record is used to translate a domain name to a specific IPv6 address. Canonical name (CNAME) record – This type of record is used to specify a secondary name (commonly referred to as alias) for an existing A or AAAA record. Mail Exchange (MX) record  – This type of record is used to direct the mail communications for specific domains on the Internet. The record includes a priority and mail exchange... --- ### How to Install Windows 8.1 RTM Using a Windows 8 Product Key > Install or upgrade to Windows 8.1 with a Windows 8 product key in this article. Disable the initial product key check in the Windows 8.1 RTM installer! - Published: 2013-11-12 - Modified: 2024-09-24 - URL: https://petri.com/install-windows-8-1-rtm-using-windows-8-product-key/ - Categories: Windows 8 - Tags: Windows 8, Windows 8.1 - Article Type: How To Installing Windows 8.1? Whether it's an upgrade or a fresh copy, learn to install Windows 8.1 RTM with a Windows product key in this Ask an Admin article. How do I install Windows 8. 1 RTM with a Windows 8 product key? Despite the fact that Windows 8. 1 is a free upgrade from Windows 8, Microsoft is making it difficult for users who purchased Windows 8 to upgrade to Windows 8. 1 without using the Windows Store. The installer on the Windows 8. 1 RTM ISO blocks Windows 8 product keys by default. In this Ask the Admin, I’ll show you how to install a fresh copy or upgrade to Windows 8. 1 RTM using a Windows 8 product key. You’ll need a copy of the Windows 8. 1 ISO file, so see my previous Ask the Admin on how to download the Windows 8. 1 RTM bits. Before installing or upgrading Windows, we’ll need to add a file to the ISO image to force the installer to skip the initial product key check. A valid Windows 8 product key is still required later in the process. Create a Bootable USB Drive The easiest way to add a file to the ISO is to create a bootable USB drive using the Windows 7 USB/DVD download tool, which can be downloaded here free from Microsoft’s website, from the Windows 8. 1 RTM ISO file. Install the tool and then double-click the Windows 7 USB DVD download icon on the desktop. You may be prompted for administrative credentials if you are logged in as a standard user. On the Choose ISO file screen, click Browse, select your saved Windows 8. 1 RTM ISO file in... --- ### How to Setup and Configure Visio Graphics Service in SharePoint 2013 > Visio Graphics Service | Discover how to setup and configure Visio Graphics Service in this guide, including creating a new application pool and more! - Published: 2013-11-12 - Modified: 2024-09-04 - URL: https://petri.com/setup-configure-visio-graphics-service-sharepoint-2013/ - Categories: SharePoint - Article Type: How To Learn to setup and configure Visio Graphics Service, including creating a new application pool and managed account, and more! It is possible to work with Visio drawings directly from SharePoint 2013. It takes a little bit of configuration and setup, but if you follow these instructions you should have no problems getting your users the ability to easily view and even edit Visio Graphics Service documents in SharePoint 2013. Making your Visio users happy takes a little bit of configuration and a little bit of training for the end users. Visio Graphic Service in SharePoint 2013: Create a New Application Pool and Managed Account You might find it useful to create a new application pool to run Visio. If you’d rather use an existing application pool, you can skip this section. Create a new Active Directory user. This user (I call mine "SPVisio") needs only Domain Users permissions. Add the new user (in my case, SPVisio) to the SharePoint 2013 Managed Service Accounts list. $VisioAcct = New-SPManagedAccount –Credential (Get-Credential) When prompted, provide the account username and password Add permissions for the Visio account to each web application that will use Visio Graphics service. Get-SPWebApplication | Foreach-Object { $_. GrantProcess*********TOUSER($VisioAcct. Username) $_. Update } Create an application pool for the Visio Graphics Service Application. $AppPoolName = “Visio Service Application Pool” New-SPApplicationPool –Name $AppPoolName –Credential $VisioAcct Create an Entry for the Visio Service to Make Secure Data Calls This part is optional, but if you’re going to have Visio make connections into SQL or another data source, then now is the time to go ahead and create the... --- ### Dynamic Access Control: Cross-Forest Access Control > Dynamic Access Control (DAC) | Learn how to configure cross-forest DAC and create claim transformation policies in Windows Server 2012 in pt 4 of our series. - Published: 2013-11-12 - Modified: 2024-12-03 - URL: https://petri.com/dynamic-access-control-dac-cross-forest-access-control/ - Categories: Windows Server 2012 - Tags: claims, DAC, Dynamic Access Control, Forest, Security, Windows Server 2012, Windows Server 2012 R2 - Article Type: Overview In part 4 of our series, find out how to configure cross-forest DAC and use PowerShell to create claim transformation policies in Windows Server 2012. In the fourth and final part of this series on Dynamic Access Control (DAC), I’ll introduce you to claim transformation policies that are used to traverse claims across trusted forest boundaries. (Need to catch up? In part one, get an introduction to Dynamic Access Control (DAC) in Windows Server 2012, and in part two, learn to enable Kerberos support for claims and how to define claim types and resource properties. In part three, discover how to configure central access rules and policies and how to apply a central access policy to a folder. ) Cross-Forest Claims-Based Authorization There are three requirements that need to be in place before claims-based authorization can be used cross forest. For simplicity in this article, I’ll refer to two forests as Forest A and Forest B. The requirements are as follows: A trust must be established between Forest A and Forest B. The root domain in both forests must be set to the Windows Server 2012 domain functional level. Claim transformation policies must be created in both forests. If a user in Forest A wants to access a resource in Forest B, a claim transformation policy must be created in both forests to process the request. Whereas in intra-forest requests to access data, all claim information is shared for the same forest, that isn’t necessarily the case when a request is sent to a trusted forest. For a claim to be accepted in a trusted forest, it needs to have a recognized name,... --- ### Distributing Cumulative Update 3 for System Center Configuration Manager (SCCM) 2012 SP1 > Learn to distribute and deploy Cumulative Update 3 for System Center Configuration Manager (SCCM) 2012 SP1 in this handy guide. - Published: 2013-11-11 - Modified: 2024-09-04 - URL: https://petri.com/distribute-cumulative-update-3-system-center-configuration-manager-sccm-2012-sp1/ - Categories: System Center - Tags: SCCM, Updates - Article Type: How To In this guide, learn the steps to distribute Cumulative Update 3 for SCCM 2012 SP1 to servers, clients, and deployed consoles. In the last post, we addressed the concerns surrounding the deployment of Cumulative Updates in SCCM 2012. We also demystified some of the concerns related to how we should approach what might be a considerably-sized environment to make our first experiences of executing this procedure less daunting.  As we wrapped up the post, I outlined the basic steps to deploy the unpackaged updates to the four different targets, but I cut short of walking you through the procedure. Feeling guilty, in this post I will cover the simple steps needed to create the collections and distribute the Cumulative Updates for System Center Configuration Manager (SCCM) 2012 SP1 to these servers, clients, and deployed consoles. SCCM Servers I am going to begin by first targeting the update for our SCCM Servers. This will include any server which has any of the SCCM roles installed, including the primary server, management points, distribution points, reporting, PXE, and so on. The collection we create will then be used to deploy the package that the Update Wizard created for us specifically for updating our servers. Some deployments I have seen do not have the SCCM agent deployed to servers with these roles. You will need to fix that and deploy the client if you are going to expect SCCM to actually be able to deploy the update! SCCM Server Collection In the Assets and Compliance view, select a suitable folder in the Device Collections. From the ribbon, click Create Device Collection. After a few... --- ### Managing SharePoint 2013 with PowerShell: Working with Alternate Access Mappings > Learn to manage Alternate Access Mappings in SharePoint 2013 using PowerShell to create, modify, and remove AAM with the help of this guide. - Published: 2013-11-11 - Modified: 2024-09-04 - URL: https://petri.com/manage-alternate-access-mapping-in-sharepoint-2013-powershell/ - Categories: SharePoint 2013 - Tags: AAM, Alternate Access Mapping, Editor's Pick, PowerShell - Article Type: How To Discover how to manage Alternate Access Mappings (AAM) in SharePoint 2013 using PowerShell cmdlets to create, modify, and remove AAM. SharePoint provides a lot of options for handling your ability to present your SharePoint resources to your users.   Making connections from the internal network or from across the Internet, you can make fine-tuned adjustments to the way that people can connect to your SharePoint sites. These fine-tuned adjustments that allow people to connect to your sites in multiple ways are made available through Alternate Access Mappings (AAM). This article shows you how to manage Alternate Access Mappings in SharePoint 2013 using PowerShell. (Editor's note: Be sure to check out our previous articles, "Managing SharePoint 2013 with PowerShell: Creating a Search Application" and "Managing SharePoint 2013 with PowerShell: Working with Timer Jobs. ") Alternate Access Mappings (AAM): Introduction Each web application in SharePoint can be presented with up to five public URLs. For instance, you might have allowed both “intranet. local” and “portal. fakedomain. com” to make connections to your SharePoint 2013 portal. The public URLs are URLs that SharePoint displays through links. Each of the public URLs must be assigned one of the five available zones. You have to have a public URL assigned to the zone titled “Default” but the others are just friendly labels that can be used in whatever fashion it makes sense to you and your organization. The other zones are “Internet,” “Intranet,” “Extranet,” and “Custom. ” Tip: You can remember public URLs as the addresses that are displayed by SharePoint to the users. Each public URL has at least one internal URL that corresponds to it. The... --- ### What Went Wrong At Microsoft > Did Microsoft's recent fumblings contribute to CEO Steve Ballmer's upcoming departure? Learn how Microsoft dropped the ball in pt. 1 of a 3-part op-ed series. - Published: 2013-11-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-mistakes-windows-8-phone/ - Categories: Windows Server - Tags: op-ed, Steve Ballmer, Windows 8, Windows phone - Article Type: Opinion Microsoft CEO Steve Ballmer is stepping down – are the company's fumblings to blame? Learn how Microsoft dropped the ball in this new 3-part op-ed series. It was announced on August 23, 2013, that Steve Ballmer was stepping down at some point in the following year as CEO of Microsoft. A committee was formed to search for and interview candidates to replace Steve Ballmer. The revolting shareholders finally got their way: Ballmer is leaving. Over the last few years, Microsoft has fumbled many opportunities that may have contributed to the atmosphere that led to Steve Ballmer's upcoming departure. So let's take a look at what went wrong: This post will be the first in a three-part series in which I look at what went wrong with Microsoft over the last few years and suggest some possible fixes.  Let's start by looking at how Microsoft dropped the ball with Windows 8, Windows Phone, and tablet devices. Windows 8 What happened with Windows 8 from that announcement onwards made the problems with Windows Vista look amusing. Under the reign of Steven Sinofsky, Julie Larson-Green, and Tami Reller, the Windows client group stopped listening. This was the same sin that was blamed for the mess that was Windows Vista. The world screamed at Microsoft after the release of the Windows 8 Developer Preview. Comments on Microsoft blogs, on third-party blogs, and forums, as well as from the media, all said Microsoft had gone too far with the touch-first UI. Business wasn’t ready for this – they couldn’t replace every monitor, and the training and support costs of a split UI would be horrendous. Technically, Windows 8 felt incomplete, not having... --- ### Best Free Disk Management Software for System Administrators > Need a good free or open source disk management utility? Check out our list of the most popular ones as part of our ongoing free tools directory. - Published: 2013-11-07 - Modified: 2024-09-04 - URL: https://petri.com/best-free-disk-management-software/ - Categories: Backup & Storage - Tags: EaseUS, free software, Paragon Software, Scanner, Steffen Gerlach - Article Type: Opinion Looking for a good free or open source disk management utility? Check out these popular ones as part of our free tools directory. One of the most common IT tasks for system administrators and PC power users is disk management. This includes tasks like partitioning disks and drives, generating reports of drive usage, and generally getting a handle on your disks and drives. There are several commercial products that can help with disk management duties, but we've gathered a few of the more popular open source and freeware disk management utilities here as part of our free tools for system administrators directory. You should consider this list a work in progress, so feel free to suggest some of your own favorite disk management utilities by adding a comment to this post. One final note: Some of these free utilities are only free for personal and/or non-commercial use, and others offer commercial versions that offer more features and functionality, albeit for a price. So, your mileage may vary. 1. EaseUS Partition Master Free (EaseUS) Primarily designed for home users, EaseUS Partition Master Free is the free edition of a commercial product by EaseUS. It’s easy to install and use, and it helps you get a handle on the most common disk management tasks, including tackling low disk space issues; creating, resizing, merging and deleting disk partitions; and providing reports and generating some limited analysis of all the above. It also works with everything from Windows XP to Windows 8, supports removable storage devices, RAIDs, GPT disks, and even allows you to create, format, delete and recover Linux disk partitions as well. [Download EaseUS... --- ### Dynamic Access Control: Configure and Deploy Central Access Policy, Configure File Server > Dynamic Access Control (DAC) | Configure and deploy Central Access Policy rules, policies. Learn to configure a Windows Server 2012 files server to use DAC. - Published: 2013-11-07 - Modified: 2024-09-24 - URL: https://petri.com/dynamic-access-control-dac-configure-deploy-central-access-policy/ - Categories: Windows Server 2012 - Tags: Central Access Policy, DAC, Dynamic Access Control, File Server, Security - Article Type: Overview In pt. 3 of our series, learn to configure and deploy Central Access Policy rules and policies, and how to configure a WS2012 files server to use DAC. Welcome back to our series on Dynamic Access Control (DAC)! In part one I gave you an introduction to Dynamic Access Control (DAC) in Windows Server 2012, and in part two, I looked at how to enable Kerberos support for claims and how to define claim types and resource properties. Now, in part three of this series, I'll describe how to configure central access rules and policies, how to distribute them using Group Policy, and how to apply a central access policy to a folder. DAC: Configure a Central Access Rule Central access rules determine the conditions that should be met before access is given to a resource. We’ll take the claims and resource properties that we defined in part two of this series and require that a user’s Department and Country claims match the file Department and Country resource properties. Log on to your Windows Server 2012 domain controller as a domain administrator. Open Server Manager from the desktop Taskbar or from the Start screen. Select Active Directory Administrative Center (ADAC) from the Tools menu in Server Manager. In the left pane of ADAC, click Dynamic Access Control. In the central pane, click Central Access Rules. In the Tasks pane on the far right of ADAC, click New > Central Access Rule. In the Create Central Access Rule window, type Dept_country_match in the Name box. In the first part of this rule, we’ll set a condition that the Country and Department resource properties must exist on... --- ### Configuring Forward and Reverse Lookup Zones in Windows Server 2008 R2 and 2012 > Learn to create forward and reverse lookup zones in Windows Server 2008 R2 and WS2012 with the help of this detailed walkthrough. - Published: 2013-11-07 - Modified: 2024-09-04 - URL: https://petri.com/configure-forward-reverse-lookup-zones-in-windows-server-2008-r2-2012/ - Categories: Networking - Tags: DNS, forward lookup zone, reverse lookup zone, Windows Server 2008 R2, Windows Server 2012 - Article Type: How To You installed your Windows DNS server – now what? Learn to create forward and reverse lookup zones with the help of this walkthrough. When initially installing and configuring Windows DNS server, one of the first tasks to perform is the creation of forward lookup zones (and possibly reverse lookup zones). In plain speak, this is when the domains that will be served by this DNS server will be configured. For the purposes of providing the reader enough knowledge to get this task completed, this article takes a walkthrough approach. A DNS server has been installed but not yet configured at the beginning of this article and we'll create the forward and reverse lookup zones using the built-in wizard. Keep in mind that this can be done without using the wizard without much trouble, but for the purposes of keeping the lesson simple the wizard options will suffice. DNS Lookup Zone Configuration The configuration of the lookup zones is not all that confusing, and when using the wizards available it becomes even easier. As shown in Figure 1, the DNS server role has been installed on the server and is shown in the left pane. For those looking to perform this configuration on Windows Server 2008 R2, access to the DNS Manager can be achieved either through Server Manager or Administrative Tools.   Once DNS is selected from the left pane, a list of known DNS servers will be displayed. Right-click on the target server and select DNS Manager.   At this point the DNS Manager window will open (which looks similar in Windows Server 2008 R2); this is shown below... --- ### Applying Cumulative Updates for System Center Configuration Manager 2012 SP1 > Discover how to apply Cumulative Update 3 for System Center Configuration Manager (SCCM) 2012 SP1, including deployment points and clients. - Published: 2013-11-06 - Modified: 2024-09-24 - URL: https://petri.com/cumulative-update-3-system-center-configuration-manager-sccm-2012-sp1/ - Categories: System Center - Tags: SCCM, Updates - Article Type: How To Learn all about applying Cumulative Update 3 for System Center Configuration Manager 2012 SP1 in this quick SCCM article. With the introduction of System Center 2012, Microsoft has adopted a quarterly based approach to releasing updates for the complete suite of components. Normally these are all released on the same day, which the most recently published (at the time of writing) is Cumulative Update 3 for System Center Configuration Manager (SCCM) 2012 SP1. The process of deploying these update packs has remained unchanged with each update, making the procedure quite comfortable after the first update cycle you complete. (This would also suggest that the content of this post should remain relevant for any earlier updates, and quite likely for any upcoming updates for the 2012 SP1 product stream. ) If you are relative new to System Center Configuration Manager, and this is indeed your first time facing the update cycle, your initial reaction could easily be forgiven for assuming this to be a complicated process, as the documents available from Microsoft do little to help you get a warm confident feeling. My objective here is to give you back the confidence. Cumulative Update 3: Preparation This goes without saying, whether you are having some confidence issues, or you are a tried-and-true expert: Stop now and make a backup of your site database. Assuming you are following a best practice, this is already happening nighty via a SCCM task that you enabled. If so brilliant! Now go check that backup is actually working. You can check the SCCM log on the primary server (smsbkup. log) and see entries that... --- ### Managing SharePoint 2013 with PowerShell: Working with Timer Jobs > Discover how to manage a SharePoint 2013 timer job using PowerShell to view, modify, and run timer jobs. It's all in this easy-to-follow guide! - Published: 2013-11-06 - Modified: 2013-11-06 - URL: https://petri.com/manage-timer-jobs-sharepoint-2013-with-powershell/ - Categories: SharePoint - Tags: GUID, PowerShell, timer jobs - Article Type: How To Discover how to view, modify, and run timer jobs in SharePoint 2013 using PowerShell cmdlets in this helpful guide! Timer jobs are automated tasks working behind the scenes of your SharePoint farm. They fill many different roles, from performing health analysis to synchronizing workflow items.   The timer service is constantly working to keep things in sync and humming along smoothly. Like most things in SharePoint 2013, timer jobs can be looked at and administered through Central Administration but to really control of them requires PowerShell. This article shows you how to view, modify, and run timer jobs in SharePoint 2013 using PowerShell. (Editor's note: Be sure to check out our previous article, "Managing SharePoint 2013 with PowerShell: Creating a Search Application. ") To work with PowerShell for your SharePoint farm, you’ll need to remote to your SharePoint 2013 server and start a PowerShell session.   Once started, you can load the SharePoint Administration module. Add-PSSnapin Microsoft. SharePoint. PowerShell The rest of the commands in this article rely on this module. View SharePoint 2013 Timer Jobs with PowerShell You can get a window into the Timer Jobs: what timer jobs are there, what schedule they run on, and even the status of them at their last runtime using Get-SPTimerJob. However, it can be a little like trying to drink from a firehose. A default SharePoint 2013 installation has about 200 timer jobs running. Thankfully, we can use several methods for trimming the results. Filter Timer Jobs by Name, GUID, or Instance Object Using the –Identity parameter allows you to specify a timer job by name or GUID. Behind the scenes, this... --- ### Use Cross-Version Live Migration to Upgrade to Windows Server 2012 R2 Hyper-V > Learn to use cross-version live migration to upgrade to Windows Server 2012 R2 Hyper-V with the help of this guide. - Published: 2013-11-06 - Modified: 2024-09-04 - URL: https://petri.com/cross-version-live-migration-upgrade-windows-server-2012-r2-hyper-v/ - Categories: Hyper-V - Tags: Failover Cluster, Failover Clustering, Hyper-V, install, upgrade, Virtualization, Windows Server, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To How are you going to upgrade to the newest version of Hyper-V? Learn why you should use cross-version live migration to upgrade to WS2012 R2 Hyper-V. Now that you can purchase Windows Server 2012 R2 (WS2012 R2), it's time to consider how you will upgrade to the newest version of Hyper-V. In this article I will discuss a new strategy for upgrading from WS2012 Hyper-V to WS2012 R2 Hyper-V using a new feature called cross-version live migration. Cross-Version Live Migration FAQs With cross-version live migration you can perform a one-way (no return trips) live migration of virtual machines from WS2012 Hyper-V to WS2012 R2 Hyper-V. The frequently asked questions about cross-version live migration are: Can I live migrate from older versions such as Windows Server 2008 R2 Hyper-V to a newer version? No – cross-version live migration works only from WS2012 Hyper-V to WS2012 R2 Hyper-V. Can I move virtual machines back from WS2012 R2 Hyper-V to WS2012 Hyper-V? No – see above answer. It’s the same answer every time! Cross-Version Live Migration Options There are two ways to use cross-version live migration, each of which leverages a features of live migration from WS2012 Hyper-V. 1. SMB Live Migration You can store virtual machines on WS2012 (or later) file servers, including the scalable and continuously available Scale-Out File Server. Changing the possible owners of a virtual machine is basic Windows administration: Grant a new host/cluster permission to the share and folder. Move the virtual machine from the old host/cluster using cross-version live migration. Remove the old host/cluster from the permissions of the share and folder. Cross-version live migration with SMB 3. 0 storage. [adkit zone="freestyle" limit="1"... --- ### Installing the DNS Server Role on Windows Server 2012 > Discover how to install the DNS server role in Windows Server 2012 (Standard Edition) in this easy-to-follow tutorial. - Published: 2013-11-05 - Modified: 2024-09-04 - URL: https://petri.com/install-dns-server-role-on-windows-server-2012/ - Categories: Windows Server 2012 - Tags: DNS, Domain Name System - Article Type: How To The DNS protocol has long been the foundation of a useable network experience. Install the DNS server role in Windows Server 2012 with this guide! The Domain Name System (DNS) protocol has long been the foundation of a useable network (and Internet) experience. With the introduction of Microsoft’s Active Directory (AD) the use of DNS became even more important. This article take a look at how to install the DNS Server role in Windows Server 2012 Standard edition. (Editor's note: Got R2? No problem! Take a look at our previous article, "Installing the DNS Server Role on Windows Server 2008 R2. " How to Install the DNS Server Role in Windows Server 2012 Like with Window Server 2008 R2, the installation of a DNS server of Window Server 2012 involves the addition of the DNS Server role. There are two different main ways to start the Add Roles wizard. The first is shown below in Figure 1; it utilizes the Quick Start menu from the Dashboard.   The other option is available under the specific server being managed; in this case, select the Local Server option shown in the left pane.   The selection of the Local Server will bring up a properties window as shown below. Scroll down in this window until the Roles and Features box is shown. Click on Tasks then click Add Roles and Features to begin server role installation. Regardless of which path is taken, the window shown below will be the result. Skim through the text shown and select Next.   The next window will ask for the installation type; in this case... --- ### How to Create a Fenced vApp in vCloud Director > Learn to create a fenced vApp in vCloud Director to deploy multiple copies of any application for testing or training. Take a look at our handy guide! - Published: 2013-11-05 - Modified: 2024-09-24 - URL: https://petri.com/create-fenced-vapp-vcloud-director/ - Categories: VMware - Tags: VCD, vCloud Director - Article Type: How To Need to deploy multiple copies of any application for testing or training? Read on to learn to create a fenced vApp in vCloud Director! One of the cooler things that you can do with vCloud Director from VMware is create a fenced vApp. This allows someone to deploy a vApp with the exact same configuration multiple times with the VMs containing the same MAC addresses and IP addresses and not cause any conflicts. This is especially helpful in many application-related functions such as training, development, and QA. vCloud Director and Creating a Fenced vApp In a previous blog post "How to Create a Multi VM vApp," I explained how to build the vApp that we will be fencing. This will serve as our foundation. The vApp contains a pair of VMs with static IP addresses. Now, I've browsed to the vApp list and selected the one created I created earlier. As you can see in the image below, the vApp contains two VMs, and I've highlighted the IP addresses. We will then click on the networking tab of the VM.   In the image below you can see the options available when looking at the networking tab of our vApp. We want to allow this VM to be fenced, so I have checked the box for Fence vApp. This allows us to choose whether we want to use both NAT and Firewall for this fenced vApp. It's important to also check the box for retain IP address, because we want it to keep the values already configured. After we have configured the vApp for fencing we can... --- ### Dynamic Access Control: Kerberos, Claim Types, and Resource Properties > Dynamic Access Control (DAC) | Learn to enable claims support for DAC in Windows Server 2012 and create claim types and resource properties. Pt 2 of a series. - Published: 2013-11-05 - Modified: 2024-09-24 - URL: https://petri.com/dynamic-access-control-dac-kerberos-claim-types-resource-properties/ - Categories: Windows Server 2012 - Tags: Compliance, Dynamic Access Control, File Classification Infrastructure, Security, Windows Server 2012 - Article Type: Overview In part 2 of this series, learn to enable claims support for Dynamic Access Control (DAC) and how to create claim types and resource properties. In the first part of this series on Dynamic Access Control (DAC) in Windows Server 2012, I explained why DAC is a much-needed enhancement to the existing ACL model of controlling access to file server resources. I also discussed some of the terminology and components that you will need to understand before configuring DAC. Moving on, today in part two I'll go over DAC and how to configure Kerberos, define claim types, and define properties in the resource Active Directory Administrative Center (ADAC). DAC: Enable Kerberos Support for Claims Before using DAC in your environment you need to enable Kerberos armoring, sometimes referred to as Flexible Authentication Secure Tunneling (FAST), and compound authentication on domain controllers and clients. There are two settings that need to be enabled: claims support for the Active Directory (AD) Key Distribution Center (KDC), and claims support for Kerberos clients. The easiest way to do this is by applying the necessary configuration settings using Group Policy. Open the Group Policy Management Console (GPMC) on Windows 8 or Server 2012 using a domain account that has permission to create new Group Policy Objects (GPOs): In the left pane of GPMC, expand your AD forest and domain. Right-click the Group Policy Objects folder and select New from the menu. In the New GPO dialog, name the GPO Kerberos DAC settings and click OK. Click the Group Policy Objects folder in the left pane. Right-click the new GPO in the right pane of GPMC and select... --- ### Designing a Non-Clustered Hyper-V Host > Discover what it takes to design a standalone Hyper-V host (AKA non-clustered host) in this article, including disk and RAM requirements. - Published: 2013-11-04 - Modified: 2024-09-04 - URL: https://petri.com/design-standalone-hyper-v-host/ - Categories: Hyper-V - Tags: non-clustered host, standalone host, Virtualization - Article Type: How To New to Hyper-V? Discover the basics behind designing a standalone Hyper-V host, including disk and RAM requirements. I’m going to bring things back a bit to discuss a topic that many, including myself, take for granted. I tend to forget that not everyone has been working with Hyper-V since 2008, and I’m initially surprised when someone asks me how to design a standalone Hyper-V host. Questions such as “How much disk do I need? ” and “How much RAM do I need? ” quickly indicate that not only are these people new to Hyper-V, but they’re new to virtualization. So let’s get back to basics and discuss how to design a standalone Hyper-V host (AKA non-clustered host). (Editor's note: Be sure to check out these related articles as well: Basic Hyper-V Replica Configuration Between Non-Clustered Hosts and Preparing Host Clusters For Hyper-V Replica ) Standalone Hyper-V Host: How Much Disk Do You Need? We can divide resources such as RAM and storage into two groups: The needs of the host for the management OS (what is incorrectly referred to as the "host OS") that runs in the parent partition. The requirements for the virtual machines. The Management OS The management OS needs as much disk as you see fit for a basic installation of Windows Server 2012 (WS2012) or Windows Server 2012 R2 (WS2012 R2). Bear in mind that a Server Core (without the GUI) installation or a Hyper-V Server installation will consume slightly less disk space. (On a tangent: I’ll care about the couple of GBs saved by a Server Core installation on the host... --- ### Best Free Automation Software for System Administrators > Take a look at this list of free automation tools to help automate mundane IT tasks! - Published: 2013-11-04 - Modified: 2024-11-19 - URL: https://petri.com/free-automation-software-system-administrators/ - Categories: Windows Server - Tags: Automation, free, macro, open-source - Article Type: Opinion Need help automating mundane IT tasks, but don't have the budget for commercial software? Take a look at this list of free automation tools! There are hundreds of routine, mundane tasks that IT professionals often perform that should ideally be automated, potentially freeing up their over-scheduled calendars to work on things that really deserve their attention. That's why we've included a list of a few of the most popular free and/or open-source automation tools on this page as part of our larger free tools for system administrators directory. It's important to note before we get to our list that we're making a distinction between "scripting" and "automation. " That's why you won't see PowerShell listed here, as we've decided to place it in our directory of free scripting tools. Yes, PowerShell is a fantastic tool for automation, but not all automation tools are command-line based, and we felt that PowerShell was a better fit for the scripting category. Now that some classification housekeeping has been dispensed with, let's get to our list of free and open-source automation software. If you don't see one of your favorite automation utilities listed here, please add a comment at the end of this post and we'll consider adding it to the article. AutoHotkey (Chris Mallet)  One of the most useful utilities I've come across is AutoHotkey, an open-source utility for Microsoft Windows that lets you create mouse and keyboard macros manually, or by using a macro recording function. For example, you could use AutoHotkey to create the abbreviation 'SCVMM' that would produce the words 'System Center Virtual Machine Manager' every time you type the abbreviation, whether... --- ### Windows Azure Pack Framework Explained > Windows Azure Pack (WAP) Framework | Learn more about WAP framework, including its components and extensions, in part three of a series. - Published: 2013-11-04 - Modified: 2024-09-04 - URL: https://petri.com/window-azure-pack-framework-introduction/ - Categories: System Center - Tags: cloud computing, scvmm, Service Provider Framework, SPF, WAP, Windows Azure Pack - Article Type: Overview Hop on the WAP bus! Learn more about Windows Azure Pack framework, including its components and extensions, in part three of a series. With the launch of System Center 2012 R2, the System Center suite has evolved yet again.  In my first post, I began with a look at an overview of System Center, as we investigated the different components that have come and gone over the years. Adopted into this suite as part of the R2 wave we introduced the Windows Azure Pack (WAP), which I described in my second post. Today I'll go over the Windows Azure Pack (WAP) framework. WAP Framework: Introduction On its initial public reveal this component was not officially part of the suite and was offered primarily for use by hosters. After a lot of persistence – mostly attributed to the horrible track experience of its predecessor components, which included Dynamic Datacenter Toolkit for Hosters, SCVMM 2008 Portal, SCVMM Self-Service Portal 2. 0 (SSP), and the System Center 2012 SP1 Cloud Services Process Pack. This "pack" is truly a framework build to mirror the same technology framework that is currently implemented on the Microsoft Azure platform exposed as the Self Service Experience. There is one key different in this framework in that the new pack has added an additional portal and supporting APIs, which are used to offer an administrative experience for working with the portal. Both the User and Administrative portals and the APIs are fully documented, customizable, and extensible. Microsoft are already offering an SDK that contains a number of samples to get us started with the emblements.   We... --- ### Best Free Tools for System Administrators > Looking for a good free utility to help with an irksome IT task? Check out our ever-growing directory of free tools and services for IT professionals. - Published: 2013-11-01 - Modified: 2024-12-03 - URL: https://petri.com/best-free-tools-for-system-administrators/ - Categories: Windows Server - Tags: backup tool, deployment tools, file management, free, open-source - Article Type: Opinion Looking for a good free utility to help with an irksome IT task? Check out our ever-growing directory of free tools and services for IT professionals. Not long ago I asked subscribers of the Petri IT Knowledgebase 'Week in IT' email newsletter to send me suggestions as to what their favorite free and open-source tools and utilities for Windows system administrators were. I received dozens of emails mentioning more than 100 separate tools, utilities, and services, so many thanks to everyone who sent emails my way. I received enough emails that I thought it would be good to go beyond just posting a single article on free tools and utilities, but to create a series of articles that highlight the best free offerings in multiple categories. That's why I've decided to post this article first, which you can consider a hub page to all of the different free and open-source tools, utilities, and services that make the jobs of IT professionals that much easier. We'll be adding more categories and write-ups over time, so please bookmark this page and return periodically to see all the new content we've added. I've always believed that the collective wisdom of thousands of IT professionals trumps the advice of a single IT expert, as everyone faces slightly different challenges and obstacles that require unique solutions. Thanks again to all of the faithful Petri readers who reached out to me via email, and I'd like to dedicate this series of articles to all of you for your support. Directory of Free Tools, Utilities, and Services for System Administrators Please note: Entries without a hyperlink will be added... --- ### Enable BitLocker on a System Drive Without TPM in Windows 8 and Server 2012 > Discover how to enable BitLocker without TPM to change local policy so that BitLocker can be used on a system volume in Windows 8 and Server 2012. - Published: 2013-11-01 - Modified: 2024-09-24 - URL: https://petri.com/enable-bitlockerwithout-tpm-windows-8-and-windows-server-2012/ - Categories: Security - Tags: bitlocker, TPM, Windows 8, Windows Server 2012 - Article Type: How To In this Ask an Admin, discover how to enable BitLocker on a system drive to change local policy in Windows 8 and Server 2012. How do I enable BitLocker without a TPM chip in Windows 8? Many consumer notebooks come without Trusted Platform Modules (TPM), which BitLocker uses to store encryption keys so that users can boot into Windows from an encrypted system volume without entering a password or needing to have an additional device, such as USB key, that holds the volume’s encryption key. In this article, I’ll show you how to modify local policy to allow users to encrypt the system volume when there is no TPM. The Difference Between System Volumes and Data Volumes If you’ve ever tried to encrypt a data volume in Windows 8 or Windows Server 2012, you’ll know there isn’t any special hardware requirement. You can configure the drive to be unlocked using a password or USB key. If you decide to encrypt the system volume with no TPM, you’ll receive an error stating that you need to enable the feature in policy. This is to stop users from accidentally locking themselves out of the system completely, and to make sure users understand that without a TPM, BitLocker on the system volume adds some inconvenience to the boot process. Enabling Additional Authentication at Startup Before we can encrypt the system volume, we need to enable the additional authentication startup policy in Windows. Press the Windows key and type mmc on the Start screen. You should see MMC appear (Microsoft Management Console) in the search results to the left. Press CTRL+SHIFT+ENTER... --- ### Installing the DNS Server Role on Windows Server 2008 R2 > Installing the DNS server role in Windows Server 2008 R2 is an even better idea now with Active Directory. Learn how in part 1 of a new series! - Published: 2013-10-31 - Modified: 2024-09-04 - URL: https://petri.com/install-dns-server-role-windows-server-2008-r2/ - Categories: Windows Server 2008 - Tags: DNS, Domain Name System, Editor's Pick - Article Type: How To With the introduction of Active Directory, the use of DNS is even more important. Install the DNS server role in Windows Server 2008 R2 in part 1. For a long time the Domain Name System (DNS) protocol has been the foundation of a useable network (and Internet) experience. With the introduction of Microsoft’s Active Directory (AD), the use of DNS became even more important. This article is the first part in a multi-part look at DNS. Today I'll walk you through how to install the DNS server role in Windows Server 2008 R2. DNS Server Role Installation Depending on the way that a server is set up, the initial step of installing the DNS Server role can begin from one of two main places: within the Initial Configuration Tasks wizard (run by default on all new installations) or from Server Manager. In figure 1, you can see the location within the Initial Configuration Tasks wizard from which the installation would begin.   Conversely, this image shows the location within Server Manager from which to begin the installation.   Select the Add Roles button and the Add Roles Wizard will be launched, as seen in Figure 3. From this window select Next to get to the next window. The next window allows the user to select the roles that are to be installed. Select the DNS Server role, then select Next.   The next window (as shown below) will provide some introductory DNS information, such as how it is used and how it integrates into AD if that is the intention of the engineer. Select Next to continue to the next... --- ### Dynamic Access Control: Introduction to the Technology and Components > Discover how Dynamic Access Control (DAC) can improve compliance and file server security management in Windows Server 2012 – pt. 1 of a new series! - Published: 2013-10-31 - Modified: 2024-11-19 - URL: https://petri.com/dynamic-access-control-dac-introduction/ - Categories: Windows Server 2012 - Tags: Compliance, Dynamic Access Control, File Classification Infrastructure, Windows Server 2012 - Article Type: Overview Got questions about Dynamic Access Control? Check out this introduction, in which we go over terminology and basic properties. Dynamic Access Control (DAC) is a new capability in Windows Server 2012 that is the result of various infrastructure improvements, which allow claims-based authorization to file server resources. Dynamic Access Control (DAC): What and Why While not intended to completely replace Access Control Lists (ACLs), anyone who’s managed file servers in a large environment will know how controlling access to files can quickly become a challenge. Setting NTFS permissions on files and folders and managing Active Directory (AD) groups and membership doesn’t scale well for file server management. Dynamic Access Control adds authorization capabilities to the File Classification Infrastructure (FCI), which was first introduced in Windows Server 2008 R2. It, along with other developments in Active Directory and security management in Windows Server 2012, provides administrators with an centralized mechanism to automatically classify files and authorize users based on claims made by a trusted source. Compliance and Security Challenges If the contents of a file changes – for instance, the addition of classified information or if users move from one department to another – access to resources can automatically be reevaluated without an administrator manually changing ACLs, AD group membership, or the classification of files. This automation greatly reduces the administrative effort required to secure important data. FCI can also be used to perform file management tasks according to how files are classified, such as moving expired data to an alternate location. DAC access policies are centrally managed, and they don’t require administrators to secure each object... --- ### How to Create a Multi VM vApp in vCloud Director > Discover how to make a multi VM vApp in vCloud Director with the help of this handy how-to guide! - Published: 2013-10-31 - Modified: 2024-09-24 - URL: https://petri.com/make-multi-vm-vapp-vcloud-director/ - Categories: VMware - Tags: Cloud, vAPP, vCloud Director, vmware - Article Type: How To Need more than one VM vApp? Discover how to make a multi VM vApp in vCloud Director with the help of this handy how-to guide! I was talking to some users recently and was having a discussion about how to create a vApp in vCloud Director. I thought to myself that creating a VM will by default create a vApp. But in most peoples minds a vApp translates to a multi-VM vApp. I have prepared this walk through from the side that a user can also use to create this kind of vApp. Making a vCloud Multi VM vApp To begin with, I have entered my vCloud organization and selected vApps from the tree on the left. To start the vApp creation, simply click on the green plus as shown in the image below. Now on to the process of creating the initial VM. As shown in step 2, we are prompted to select a VM template from the catalog that we have access to for our Organization. For this walkthrough I will pick a Windows Server 2008R2 template from the catalog. We are now prompted to enter a name for our vApp. I have called it "Petri Test" for this article. There is also a description field that we can use to enter details that will help myself or others easily understand what this vApp is used for. Time to provide details about the VM that will be created as part of our vApp. In this step we are entering the name of the VM within vCloud. We also can choose the storage profile that will decide... --- ### Enable LSA Protection in Windows Server 2012 R2 and Windows 8.1 > Learn how to enable LSA protection and protect against Pass the Hash attacks in Windows Server 2012 R2 and Windows 8.1. - Published: 2013-10-30 - Modified: 2024-09-24 - URL: https://petri.com/enable-lsa-protection-windows-8-1-server-2012-r2/ - Categories: Security - Tags: Hardening, LSA, Pass the Hash, PtH, Windows 8.1, Windows Server 2012 R2 - Article Type: How To Are you safe from Pass the Hash attacks? Typically lsass.exe is disabled by default – discover how to enable it in this Ask an Admin! How do I enable LSA protection in Windows Server 2012 R2 and Windows 8. 1? Windows Server 2012 R2 and Windows 8. 1 include updates to the Local Security Authority (LSA), which is responsible for processing local and remote user logins, to help mitigate Pass the Hash (PtH) attacks, in which hackers attempt to capture user password hashes from memory to log in without knowing plaintext passwords. In Windows 8. 1 and Server 2012 R2, lsass. exe can be made a protected process, and hashes are no longer stored in memory to make it much harder for hackers to compromise user credentials. With the exception of Windows 8. 1 RT, this new functionality is disabled by default and must be enabled in the registry or using Group Policy. Lsass. exe does not run as a protected process out-of-the-box, because it might cause compatibility problems with some applications, so you must test thoroughly before enabling LSA protection. LSA Protection and Secure Boot If computers in your organizations have Secure Boot enabled, i. e. they are running Windows 8. 1 or Server 2012 R2 with Secure Boot enabled in the UEFI firmware, you should be aware that when the registry key for LSA protection is set, either using a registry editing tool or Group Policy, the LSA protection setting is also stored in the UEFI firmware and cannot later be modified in Windows. At the time of writing this article, there is no tool to modify this setting in the UEFI firmware, so once set in Windows,... --- ### Enabling Hyper-V Extended Replication > Extended Replication | Learn how to enable Hyper-V Replica Extended Replication, a new feature in Windows Server 2012 R2 (WS2012 R2). - Published: 2013-10-30 - Modified: 2024-09-04 - URL: https://petri.com/enabl-hyper-v-extended-replication/ - Categories: Hyper-V - Tags: Cloud, Disaster Recovery, DR, Hyper-V Replica, Virtualization, Windows Server 2012 R2 - Article Type: How To Learn how to enable Hyper-V Replica Extended Replication, a new feature in Windows Server 2012 R2 (WS2012 R2). It's as easy as A-B-C (replication)! When demonstrating Windows Server 2012 (WS2012) Hyper-V Replica (HVR), one of questions I was asked most often was “can I replicate the virtual machines to a third site? ” In the case of WS2012 Hyper-V, the answer was no – you can only do A-B replication from Site A to Site B. However, Windows Server 2012 R2 (WS2012 R2) gives us a new feature called Hyper-V Replica Extended Replication, which I will explain in this post. What Is Extended Replication? In WS2012 you can replicate a running VM from Site A to Site B, otherwise known as A-B replication. There is no option to replicate the VM to a Site C. This limited replication patterns, as you can see in the following examples: From one side of a campus to another but not to an off-site location. From one side of a campus to a remote DR site but not making use of a facility on the other side of the campus. From the campus to a company-owned DR site but not being able to make use of a third public cloud DR site. WS2012 R2 Hyper-V brings extended replication. This allows us to do A-B-C replication. This should be read as A-to-B replication followed by B-to-C replication. What does this mean you can do? You can replicate VMs from a host/cluster in Site A to Site B. You can then replicate those same replica VMs on a host/cluster in Site B to another host/cluster in Site C... . --- ### Remote Network Access: Enabling Network Access Protection > Remote Network Access | In part 6 of our series, learn how to reconfigure the NPS policies for our SSTP connections, and enable them to require NAP details. - Published: 2013-10-30 - Modified: 2024-09-04 - URL: https://petri.com/remote-network-access-enabling-network-access-protection/ - Categories: Networking - Tags: Certificate Authority, HRA, NAP, NPS, SSL VPN, SSTP, System Center, VPN - Article Type: How To Find out how to reconfigure the NPS policies for our SSTP connections and enable them to require NAP details in pt. 6 of our series. As we progress to the end of our configuration for enabling our clients to participate in a health validation process, we will now reconfigure the NPS policies we originally established for our SSTP connections, and enable them to require NAP details. In addition, we will add additional policies to address scenarios where the clients are unable to participate in the NAP process, or fail their checks. Then we will move to the clients, and using a GPO configure the OS to enable the Network Access Protection (NAP) service, and define which HRA the clients will be communicating with. Need to catch up? Check out our first article in the series, in which we introduced the objectives and architecture of Remote Network Access. In part two, we began the process of installing and configuring the SSTP servers to support and implement our client's VPN Connection. In part three, we guide you through the steps to manually configure an SSTP client, and in part four, we showed you how to create new health certificates and delegate the NPS Server Permission. Last time, in part five, we dealt with Remote Network Access and health validation and we installed Health Registration Authority (HRA). Network Policy Server (NPS): Configure Connection Request Policies Once we start this process we are essentially breaking the SSTP implementation as I have chosen to edit the existing polices and add additional. You may, of course, decide to add these polices as new entries and therefore continue to... --- ### 5 Top iOS Note-Taking Apps for System Administrators > What iOS note-taking apps do we recommend for sysadmins? Read our list of the top 5 apps to find out! - Published: 2013-10-29 - Modified: 2024-11-19 - URL: https://petri.com/best-ios-note-taking-apps-for-sysadmins/ - Categories: Mobile - Tags: apps, iOS - Article Type: Overview We compiled a list of our favorite iOS note-taking apps do we recommend for sysadmins. Did your fave make the grade? Find out more in this article! With currently over 900,000 apps in the iTunes store, an abundance exist for system administrators and IT professionals. Whatever your mobile needs, as the saying goes, “there’s an app for that. ” And while many tools residing in your app arsenal are designed to address more system-specific needs (remote administration, server monitoring, net statistics, and security), you’ll find plenty of reasons to keep a solid note-taking app close by for myriad tasks, from jotting down ideas to corralling troubleshooting tips and keeping oft-used data such as network passwords and logins at the ready. Here are five of the best alternatives to keep you functioning at peak performance personally and professionally. 1. Evernote (Free) An overview of iOS note-taking apps would be incomplete without Evernote. Among the most mature and versatile in its class, Evernote syncs with the widest selection of devices, including iPhone, iPad, Android, Windows Phone, Blackberry, Windows, and Mac. In fact, it’s hard to beat for its exceptional support and abundance of built-in features, including a browser extension that allows you to save any online content—text, links, and images—into your Evernote account with one click. Moreover, the app features a gamut of add-ons like Penultimate, an easy-to-use handwriting app for the iPad, and vJournal, which turns Evernote into a simple one-note-per-day diary. Unlike some competitors, Evernote (even the iPhone iteration) is quite feature complete. It’s also among the most attractive and functional note-taking apps, especially given the latest update for iOS 7. Offering numerous improvements, it... --- ### Easily Change Windows 8.1 Edition Without Reinstalling > Change Windows versions without a reinstall! Just grab your product key, Windows Anytime Upgrade, and go. Learn more in this guide! - Published: 2013-10-29 - Modified: 2024-09-04 - URL: https://petri.com/change-windows-8-1-edition-without-reinstalling/ - Categories: Windows 8 - Article Type: How To Switching Windows versions without a reinstall is a snap. Learn more in this easy-to-follow guide! Like previous Microsoft Windows versions, Windows 8. 1 has several editions: Windows 8. 1 RT (form ARM-based devices), Windows 8. 1 (called just "8. 1"), Windows 8. 1 Pro, and Windows 8. 1 Enterprise. Each edition of Windows has several enhancements when compared to a lower-costing edition, and while the entire list of enhancements is beyond the scope of this article, you can read the following link to get some more information on the topic, "Compare Windows 8. 1 Editions. " Change Windows Versions Without a Reinstall When I asked one of our IT people at my current workplace to order a new computer for me and make sure it has Windows 8. 1 on it, I did not think I had to specify what exact edition of Windows 8. 1 I wanted. However, as it turned out, when I got the computer and I attempted to add it to the corporate network Active Directory domain, I couldn't. The option simply was not there. At first I couldn't think of a reason why this would happen, but I am not used to working with lower-end editions of Windows, and simply forgot that Windows 8. 1 (not Pro) did not have the option to join to a domain. The problem is that by the time I found out that what I got was not the Pro edition, I've already installed Office and various other line of business applications, and I was kind of pissed off by the thought that I had to reinstall Windows just to get to the... --- ### Disabling Access to Removable Storage in Windows 7, Windows Server 2008 R2, and Later > Learn how to block all access to removable storage, such as USB drives, in Windows 7 and Windows Server 2008 R2 (or later), to help reduce security risks. - Published: 2013-10-29 - Modified: 2024-09-24 - URL: https://petri.com/disable-access-to-removable-storage-in-windows/ - Categories: Backup & Storage - Tags: Ask an Admin, Removable Storage, Security, USB, Windows 7, Windows 8, Windows Server 2008 R2, Windows Server 2012 - Article Type: How To USB sticks can lead to security risks. Learn how to apply a policy to quickly block all removable storage in this Ask an Admin. How can I disable access to removable storage in Windows 7 and later? Starting in Windows 7 and Server 2008 R2, Microsoft added some additional controls to make it easier to block access to removable storage, including USB sticks and DVD ROM drives. In this article, I’ll show you how to apply a policy to quickly block all removable storage. Convenience Vs. Security Removable media, especially in the form of USB sticks, is especially useful for quickly transferring files from one device to another when there is no network available. As with many convenient technologies, the ease of use can often be outweighed by the security risks. USB sticks are a common source of malware, making it possible for users to remove large amounts of data from corporate systems very quickly. Blocking removable storage can also be useful on servers that are not physically secured, as is often the case in small branch offices. Office Politics Before implementing a policy to block removable storage, you should assess whether there is a current legitimate use for removable storage on your network. Plan to make some exceptions to any blanket rules if required. Users will often work with USB sticks in preference to more official mechanisms such as file servers or email because of restrictions in file sizes, quotas, security permissions or a slow network. If you suspect that USB sticks are being used as a workaround because of a perceived or real inconvenience, you should consider rectifying that... --- ### Configure the Default Location of a User Profile in Windows 8.1 > Learn to configure the default location of a user profile in Windows 8.1 (and other versions of Windows) in this helpful guide. - Published: 2013-10-28 - Modified: 2024-09-04 - URL: https://petri.com/configure-default-location-of-user-profile-windows-8-1/ - Categories: Windows 8 - Article Type: How To Discover what it takes to configure a user profile default location within Windows 8.1 (and other versions of Windows) in this guide. In many laptops that are sold these days, the C: drive is located on a relatively small SSD disk. Many of these laptops come with another internal regular HDD, which is usually much larger than the SSD but is relatively slower in performance. Because the built-in SSD is smaller in capacity than a regular HDD, you may want to only use it for the operating system installation, and move large files and space consuming folders to a different partition, for example D:, which is located on a regular HDD. Today I'll show you how to configure a user profile default location within Windows 8. 1. The C:Users Folder One of the folders that consumes a lot of disk space on a regular laptop or workstation is the C:Users folder, which contains the user profiles of all the users that logged on and used that computer. Originally the C:Users folder contained several folders such as the Default and Public folders, which usually do not take much space on a brand new computer. However, any new user that's created and logs on to the computer will have his or her profile folder also located under C:Users, and that's where the majority of the space will be used, because users tend to accumulate a lot of data in folders such as pictures, music (try connecting your iPhone/iPod/iPad to the computer and sync it, and you'll see what I mean) and others, not to mention the folders that house the Outlook cached... --- ### Remote Network Access: Health Validation > Remote Network Access | In pt. 5 of our series, install and configure Health Registration Authority (HRA) and configure health policies. - Published: 2013-10-28 - Modified: 2013-10-28 - URL: https://petri.com/remote-network-access-health-validation/ - Categories: Networking - Tags: Certificate Authority, Editor's Pick, HRA, NAP, NPS, SSL VPN, SSTP, System Center, VPN - Article Type: How To, Overview In pt 5 of our series, install and configure Health Registration Authority (HRA), work with Network Access Protection (NAP) and configure health policies. Welcome back to our series on Remote Network Access! Now on to part five, dealing with Remote Network Access and health validation. The Health Registration Authority (HRA) is the service which will communicate directly with the Issuing Certificate Authority to request on the behalf of the NPS Server and Client, our health certificates. Need to catch up? Check out our first article in the series, in which we introduced the objectives and architecture of Remote Network Access. In part two, we began the process of installing and configuring the SSTP servers to support and implement our client's VPN Connection. In part three, we guide you through the steps to manually configure an SSTP client, and in part four, we showed you how to create new health certificates and delegate the NPS Server Permission. Installing Health Registration Authority (HRA) In my environment, I have chosen to add the Health Registration Authority role to my existing NPS server, using the Server Manager wizard for Add Roles and Features. During the installation on the Certification Authority page, you can select your Issuing CA, or choose to wait until the role is installed and configure the server to use at that point. I am going to select one of my CAs for now, so I can validate that the process is working correctly and add the others later. On the Choose Authentication Requirements for the Health Registration Authority page, I am going to keep the default option of Yes, require requestors to... --- ### Preparing Host Clusters For Hyper-V Replica > Hyper-V Replica | Learn how to add and configure Hyper-V Replica Broker to prepare host clusters for Hyper-V in this tutorial. - Published: 2013-10-28 - Modified: 2024-09-04 - URL: https://petri.com/use-hyper-v-replica-broker-prepare-host-clusters/ - Categories: Hyper-V - Tags: DR, Failover Clustering, Hyper-V Replica, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Prep those clusters for Hyper-V Replica by enabling a role known as Hyper-V Replica Broker. Learn how in this guide! We previously looked at how to configure Hyper-V Replica on non-clustered hosts. You can configure replication between non-clustered hosts and host clusters (in either direction), and between two different host clusters. The process of configuring VM replication does not change. However, you must prepare the clusters for Hyper-V Replica by enabling and configuring a role in the failover cluster known as the Hyper-V Replica Broker. Hyper-V Replica Broker: Introduction With non-clustered hosts we did the following: Enabled an inbound replication policy in the Hyper-V Settings of the secondary site host using the primary site host computer name as the authorized source. Configured per-VM replication on the primary site host, using the secondary site host computer name as the destination. Imagine that you wanted to replicate VMs from one 8-node cluster to another 8-node cluster, or maybe we could push Windows Server to the extreme and replicate from a 64-node cluster to another 64-node cluster. Do you really want to configure all those hosts, one at a time, and configure 1-1 replication between nodes, thus preventing the mobility that is inherent within a failover cluster? Failover clustering gives us a role called the Hyper-V Replica Broker. The role of the broker is: Primary Site Identification: The entire primary site cluster will be identified for Hyper-V Replica purposes using the computer name of the broker. This simplifies policy creation in the secondary site; you authorize the broker instead of each cluster node. Secondary Site Administration:... --- ### Managing SharePoint 2013 with PowerShell: Creating the Search Application > Discover how to create a SharePoint 2013 search service application and create a search topology in this easy-to-follow tutorial. - Published: 2013-10-24 - Modified: 2024-09-04 - URL: https://petri.com/create-sharepoint-2013-search-application-with-powershell/ - Categories: SharePoint - Article Type: How To Discover how you can use PowerShell to create a SharePoint 2013 search service application and create a search topology in this tutorial. Like many things in SharePoint 2013, to do things right you really need to use PowerShell to do it. Managing your search infrastructure can all be done with PowerShell, and some parts of it has to be done in PowerShell. In this article, I’m going to show you how to create the SharePoint 2013 search service application and create a search topology using PowerShell. So log onto the machine that is going to host your search service application and we’ll get started! Getting Ready To begin, create some variables for easy reference. ​ $SearchServer = $Env:Computername $DatabaseName = “SP2013_Search” $SearchServiceName = “Search Service Application” Next, you’ll want to decide whether you’re going to have your search service application use an existing application pool or a new one. ​ $ApplicationPoolName = “SharePoint Services App Pool” If you wish to create a new application pool, use the New-SPServiceApplicationPool cmdlet to create the new app pool and assign it a user to run as. I’m going to go with my previously existing application pool. ​ $ServiceAppPool = Get-SPServiceApplicationPool | Where-Object {$_. Name –eq $ApplicationPoolName } In the end, you should have a service applications pool stored in your variable in which you’ll want to run the search service application. Now you’re ready to start the search server instance on the server. Even though you haven’t created a search service application yet, we’ll need to prepare the server to run it. There are already some services on each server in your farm... --- ### PowerShell Remoting: How to Restrict User Commands > Learn how to restrict the commands that users can run over a remote PowerShell session in this Ask an Admin article. - Published: 2013-10-24 - Modified: 2024-12-03 - URL: https://petri.com/powershell-remoting-restricting-user-commands/ - Categories: PowerShell - Tags: Active Directory, Ask an Admin, PowerShell 3.0, Security, Windows Server 2012 - Article Type: Overview In this Ask an Admin article, find out how to restrict an endpoint by limiting the commands users can run over a remote PowerShell session. How can I restrict the commands users can run when using PowerShell Remoting? In my previous article, "How to Lock Down a Remote PowerShell with a Constrained Endpoint? ," I described how you can create a new remote PowerShell endpoint that doesn’t require users to have local administrator rights on the remote machine, therefore limiting the actions that can be performed over the remote session to what is allowed by the permissions assigned to the user connecting to the endpoint. Many administrators see remote PowerShell as a security risk, but it’s not necessary for users to have local administrator permissions on the target device. In this article, I want to show you how to restrict an endpoint even further by limiting the commands that users can run when connecting to a remote device using PowerShell. To achieve this, you need a script that configures the session each time a user connects. While this sounds like it might be complicated, PowerShell 3. 0 makes it easy to create the script through a handy cmdlet. Create a Session Configuration File In this example, I’m going to limit the session to the PowerShell Active Directory module and go even further by allowing users to run only the Get-ADUser and Unlock-ADAccount cmdlets. The following cmdlet will create a session configuration file (helpdesk. pssc), that I can use when registering a new endpoint. Log on to the server where you want to configure the PowerShell remote endpoint. Right-click the blue PowerShell icon on the desktop... --- ### Moving Testing to the Cloud: A Look at Windows Azure and CloudShare > Create test labs in the cloud! Learn about some of the advantages of moving your testing to the cloud with services like Windows Azure and CloudShare. - Published: 2013-10-23 - Modified: 2024-09-24 - URL: https://petri.com/move-testing-to-cloud-windows-azure-cloudshare/ - Categories: Cloud Computing - Tags: Cloud, cloud computing, testing, Virtualization - Article Type: Overview Should you move your test labs to the cloud? Take a look at the pros and cons of services like Windows Azure and CloudShare. With the announcement earlier this year that Microsoft would kill off TechNet subscriptions forthwith, giving existing subscribers a limited timeframe in which to continue downloading software, many IT professionals have had to look at alternative solutions when creating onsite test labs. Microsoft has promised to expand the download options for free evaluation versions of its products, and it still provides access to software for testing purposes through more expensive MSDN subscriptions and TechNet Labs. But with an MSDN subscription out of reach for many, and a time limit imposed on free evaluation downloads, the change in policy has led me to think about moving testing into the cloud. Cloud vs. Onsite Test Labs The biggest challenge for small companies that need to set up and maintain test environments is that funds are usually restricted. As such, there is limited processing power, disk capacity, and speed, making the task of creating and maintaining labs a time-consuming chore. Onsite labs can require a surprising amount of administration to keep them up and running in a way that makes them useful. Unless you set up your own OS deployment server and maintain gold images with the latest patches, constant updating, and reprovisioning of VMs can impact IT’s ability to deliver and innovate. Moving my test environments to the cloud has brought several important advantages, including: Connect remotely anytime without keeping servers powered up 24/7 in my office. Provision new servers quickly from regularly updated images with the latest OS patches... . --- ### 3 Types of Failover in Hyper-V Replica > Learn about the three types of failover in Hyper-V Replica, including when to use them, in this Ask an Admin. - Published: 2013-10-23 - Modified: 2024-09-04 - URL: https://petri.com/types-of-failover-hyper-v-replica/ - Categories: Hyper-V - Tags: Ask an Admin, failover, Hyper-V Replica - Article Type: Overview Hyper-V Replica allows businesses to continue operations after disasters occur. Learn about the 3 types of failover in HVR, including when to use them. What Are the Types Of Failover Operations in Hyper-V Replica? Hyper-V Replica is designed to allow businesses to continue operations after disasters occur, and more impressively, move services to the disaster recovery (DR) site before a forecasted event happens. No business continuity plan (BCP) is considered reliable unless it is tested. Hyper-V Replica provides the ability to test the IT side of the BCP by performing a test failover to the secondary (or DR) site without affecting services that are provided in the primary (or production) site. Today I will explain the three types of failover in Hyper-V Replica and when to use them. 1. Planned Failover Certain disasters are predicted. Sometimes the weather forecast gives us a few hours notice, and sometimes we even get a week to prepare. Hurricane Sandy formed in the western Caribbean Sea on October 22, and didn’t reach the southeastern United States until October 25. The governors of North Carolina and Virginia declared a state of emergency on October 26. Other states in the northeast quickly followed as they realized this storm was going to be bad. This is exactly the sort of situation in which you implement a Hyper-V Replica planned failover – when you know a disaster is coming and you want to avoid extended disruption to services, or worse, you want to avoid your business being terminated. Once a decision to evacuate is made, you initiate the below process, and within minutes you can get out of harms... --- ### Remote Network Access: Health Certificates > Remote Network Access | In pt. 4 of our series, learn to create and publish health certificate templates, work with Network Policy Server (NPS), and more! - Published: 2013-10-23 - Modified: 2013-10-23 - URL: https://petri.com/remote-network-access-health-certificates/ - Categories: Networking - Tags: Certificate Authority, HRA, NAP, NPS, SSL VPN, SSTP, VPN - Article Type: Overview In pt 4 of our series on Remote Network Access, discover how to create and publish health certificate templates and work with Network Policy Server (NPS) servers. We're back with our series on Remote Network Access! Now, assuming that your basic SSTP RRAS Service is now online and working, we can extend the functionality of the service, by enabling the Network Access Protection (NAP) functionality. Network access protection depends on a special certificate to be issued from your internal certificate authority (CA) to indicate to the Network Policy Server (NPS) system that the workstation is healthy and trustworthy. Unsurprisingly, this certificate is called a "health certificate," which is issued by the CA upon the request of the Health Registration Authority. This service works in conjunction with the NPS server; clients have these certificates issued when appropriate to signal the state on the Network Access protection. I am using a central private CA for issuing my certificates, but I do need to enable the CA to issue new health certificates. Create Health Certificate Templates First thing first! We need to prepare a certificate, which will be issued from our Enterprise CA infrastructure to our clients for their statement of health. We will also be restricting this template so that a computer cannot manually enroll this certificate, essentially allowing a computer to "lie" about its true health. We will begin by connecting to our Enterprise Root CA or a Sub-Ordinate Enterprise CA and opening the Certificate Templates console, by running certtmpl. msc. Once the certificate templates console appears, in the details pane, right-click Workstation Authentication and then click Duplicate Template. In the Properties... --- ### Microsoft Stumbles with Windows 8.1, Internet Explorer 11 Updates > Glitches abound in Microsoft's Windows 8.1 and Internet Explorer 11 updates. Learn of the teething troubles users might experience when upgrading. - Published: 2013-10-22 - Modified: 2024-09-24 - URL: https://petri.com/windows-8-1-update-internet-explorer-11-frustration/ - Categories: Windows 8 - Tags: Enhanced Protected Mode, Internet Explorer 11, upgrade, Windows 8, Windows 8.1, Windows Store - Article Type: Opinion Updating to Windows 8.1 or Internet Explorer 11? Hold the phone. Learn of the troubles users might experience when upgrading. So much for the almost three-month hiatus between Windows 8. 1 release to manufacturing (RTM) and general availability (GA) that was supposed to give manufacturers and partners time to update drivers and applications so that the upgrade would prove glitch-free for users. Not only have there been widespread reports this week that some tablet users are experiencing problems booting after upgrading to Windows RT 8. 1, but it also seems I’m not the only person to be having difficulties with Internet Explorer 11 (IE11). Google recently corrected an issue that led to a formatting problem when returning results from its search engine. Meanwhile, I’m still unable to view videos on YouTube correctly. All other video services seem to display without any problems. Adobe isn’t much better. Internet Explorer and Acrobat Reader integration needs to be updated to work with IE11’s new Enhanced Protected Mode. Currently there is no update available for Acrobat Reader, and opening a PDF in IE11 produces a security warning that you are about to exit Enhanced Protected Mode, which will be confusing for many. Surely that wouldn’t have been too difficult to fix in time? Windows 8. 1, Internet Explorer 11: Microsoft Dropped the Ball Harder to swallow, is that Outlook Web Access (Exchange 2007, 2010 and 2013) doesn’t load in Internet Explorer 11. Microsoft has issued an advisory workaround for the issue. So not only has Microsoft dropped the ball with its own products – does it not dog feed Exchange and Windows 8. 1 internally? ... --- ### Use Hyper-V Replica Over HTTPS/SSL: Configuring Certificates > Hyper-V Replica | Learn about Hyper-V Replica certificate requirements, how to choose a certificate, and how to enable per-VM replication in this guide. - Published: 2013-10-22 - Modified: 2024-09-04 - URL: https://petri.com/use-hyper-v-replica-over-https-ssl-configure-certificates/ - Categories: Hyper-V - Tags: Certificates, Cloud, DR, HTTPS, Hyper-V Replica, replication, SSL, Virtualization - Article Type: How To Conquer untrusted forests and networks! Learn about Hyper-V Replica certificate requirements, how to enable per-VM replication, and more in this guide. The simplest way to configure Hyper-V Replica (HVR) authentication and transport is to use HTTP. HTTP uses Active Directory Kerberos authentication and replication over TCP port 80. However, this is only useful in a demo or between trusted domains on a secure network. What if you want to replicate between untrusted forests (customer-to-service provider) or over an untrusted network? You'll need to venture into the murky world of x. 509 certificates and configure Hyper-V Replica to authenticate using SSL and replicate over HTTPS. Today I'll walk you through the Hyper-V Replica certificate requirements, how to choose a certificate, and how to enable per-VM replication. Hyper-V Replica Certificate Requirements If you want to use HTTPS authentication and replication, then you will need to create certificates for the hosts/clusters in both the primary and secondary sites.   The certificate must be configured for server authentication and client authentication. The certificate must also be issued to the FQDN of the host or HVR Broker, and it must include the exportable private keys for traffic decryption. Note that the computer template included in Active Directory Certificate Services can be copied and used for this purpose. You will need to configure the template to grant administrators rights to enroll the certificate type and to permit the encryption keys to be exported (a requirement of the HVR certificate). The required Enhanced Key Usage of the certificate. If you are creating a certificate for a non-clustered host, then make sure the certificate... --- ### How to Upgrade to Windows 8.1 Without Using the Windows Store > Upgrade to Windows 8.1 | Skip the Windows Store! Learn how to download the Windows 8.1 RTM bits with a Windows 8 product key in this easy how-to article. - Published: 2013-10-22 - Modified: 2024-09-24 - URL: https://petri.com/upgrade-to-windows-8-1-without-windows-store/ - Categories: Windows 8 - Tags: Windows 8.1, Windows Store - Article Type: How To Skip the Windows Store and discover how to download the Windows 8.1 RTM bits in this easy how-to article. If you’ve been updating your Windows 8 devices this week to Windows 8. 1, you may have noticed that using the Windows Store is Microsoft’s preferred method. But as I’ve discovered, the Windows Store doesn’t provide a reliable experience, and can be frustrating if you need to upgrade multiple devices. In this Ask the Admin, I’ll show you how to download the Windows 8. 1 ISO with a Windows 8 product key so that you can bypass the Windows Store. Get the Windows 8. 1 ISO Follow the instructions below carefully to download the Windows 8. 1 RTM ISO with a Windows 8 product key. Log on to Windows 8 or Windows 8. 1 preview with a local administrator account. Open the following link on the computer you want to upgrade: Upgrade Windows only with a product key. Microsoft will allow you to download the 32-bit version if you click the link from an OS running 32-bit Windows, and similarly the 64-bit ISO if the OS is 64-bit Windows. Scroll down the web page to the section When you’re ready, tap or click Install Windows 8. 1 or Install Windows 8. Click Install Windows 8. Even though we want the bits for Windows 8. 1, we need to start setup for Windows 8 first to provide a valid product key. Click Run at the bottom of Internet Explorer. In the setup dialog, enter your Windows 8 product key. Follow the wizard through the next step until Windows 8 starts downloading... . --- ### Repair Disk Errors in Windows 8 and Windows Server 2012 > Fix disk errors in Windows 8 | Got corrupted disks? Learn to force a spotfix offline repair using chkdsk in Windows Server 2012 and Windows 8. - Published: 2013-10-21 - Modified: 2024-09-24 - URL: https://petri.com/fix-disk-errors-windows-8-and-windows-server-2012/ - Categories: Windows 8 - Tags: Ask an Admin, CHKDSK, corruption, errors, File Server, file system, NTFS, spot verifier, Windows Server 2012 - Article Type: How To Corrupted files a problem? Learn to force a spotfix offline repair using chkdsk in Windows Server 2012 and Windows 8 in this Ask an Admin. Help! How do I fix disk errors in Windows 8 and Windows Server 2012? A new NTFS health model in Windows 8 and Windows Server 2012 monitors drives for corruption, repairs many issues while volumes remain online, and offers fast offline repairs with spotfix. Online Self-Healing and Verification In the majority of cases, NTFS is able to self heal when a corrupt file is detected, while keeping the volume online. The number of issues that can be fixed online has increased in Windows 8 and Server 2012 and is further improved in Windows 8. 1 and Server 2012 R2. Windows 8 and Server 2012 introduce a new capability that allows the file system to verify whether an issue is caused by a transient memory error or whether there is genuine file corruption on the disk. When the file system driver detects corruption, it verifies whether the corruption is genuine using the new Spot Verifier service. If the errors are verified to be genuine, an online scan of the volume catalogs the issues so that they can be fixed at a later point without scanning the entire volume offline. In Windows 8, chkdsk scans are automatically scheduled to be performed during a maintenance window, i. e. when there is low CPU and disk activity. When an offline chkdsk repair is required, users will be notified via the Action Center. In Windows Server 2012, administrators can choose to schedule scans at an appropriate time. Perform an Offline... --- ### How to Expand WSUS Updates: Approving Updates > Expand WSUS Updates | In part 3 of our series on getting more from your WSUS updates, learn how to approve and validate updates. - Published: 2013-10-21 - Modified: 2024-11-19 - URL: https://petri.com/expand-wsus-updates-approve-updates/ - Categories: System Center - Tags: SCCM, SCUP, WSUS - Article Type: How To Learn how to approve and validate updates in the third and final part of our series on expanding WSUS updates. We're back with our series on how to utilize Windows Server Update Services (WSUS) for deploying updates beyond what Microsoft offers. In this last part in the series, we are going to investigate the WSUS size of the environment to get the updates approved and targeted as a platform for deploying the SCCM client. If you need to catch up: In part one, I introduced Windows Server Update Services and showed you how to prepare the code signing certificate. In part two, I discussed how to have clients trust updates that are not explicitly published by Microsoft, and I introduced System Center Update Publisher (SCUP). Expanding Windows Server Update Services (WSUS) As you might expect the next obvious step in our quest maybe to launch the WSUS console, and search for your new update. Unfortunately, I am sorry to burst your bubble: It is not going to be there. This is actually quite troubling at first, as you start to doubt the success of the publishing activities that we completed in the last post. Before you begin to scream and pull your hair out, you don't really believe that I would guide you down this path, just to leave you stranded and abandoned, do you? Of course not, and neither has the community. Sure, Microsoft would rather that you use System Center Configuration Manager (SCCM) for your update deployment, and with great reason, but all good things take planning and foundations need to be created. Luckily, some... --- ### What’s New for Group Policy in Windows 8.1 > Group Policy in Windows 8.1 | Learn about the interesting Group Policy changes that come with the release of Windows 8.1 and Server 2012 R2. - Published: 2013-10-21 - Modified: 2024-09-04 - URL: https://petri.com/group-policy-in-windows-8-1-new-features/ - Categories: Active Directory (AD) - Article Type: News Learn about the new Group Policy changes that come with the release of Windows 8.1 and Server 2012 R2, including Group Policy caching and more! I have to admit. It’s hard, as a ten-year Group Policy MVP, to write “what’s new” articles around GP these days. The hard truth is that Microsoft has underinvested in this technology for years. That said, with the release of Windows 8. 1 (and Server 2012-R2) there are a few interesting Group Policy changes in Windows 8. 1 that are worth mentioning. Some of these changes are very much under the covers, but could have a big impact on how you use GP. SO, without further ado, let’s get into them. Group Policy Changes in Windows 8. 1 1. Group Policy Caching The first “under-the-covers” feature I’ll talk about is the introduction of a Group Policy caching feature. In the past, policies were never really cached. Specifically, if a Domain Controller (DC) is available, Group Policy is read from the closest DC and processed (i. e. applied to the system). Those policy settings were not cached and available for processing when the DC was not available (e. g. the client is off the network). That behavior hasn’t changed in Windows 8. 1. The Group Policy caching feature that’s been introduced is primarily meant to address a particular performance issue. Namely, caching will kick in when a “synchronous” foreground policy processing cycle is detected. A synchronous foreground processing cycle is one in which at computer boot, the logon screen isn’t presented until all computer GP processing has finished, and at user logon, the user’s desktop isn’t presented until all user GP processing has finished... . --- ### 5 Reasons Why VMware Is Here to Stay > VMware has proven itself a worthy adversary in the virtualization game. Find out whether we think VMware will hold its own vs. Microsoft and others. - Published: 2013-10-18 - Modified: 2024-11-19 - URL: https://petri.com/five-reasons-why-vmware-is-here-to-stay/ - Categories: VMware - Article Type: Opinion Are Microsoft's recent leaps in Hyper-V technology putting VMware's days as a virtualization giant in jeopardy? Discover why we think VMware's here to stay. The steady drumbeat of not-so positive news about VMware has been trickling out all year. First there was a Gartner report earlier this year that revealed Microsoft's impressive Hyper-V technology was gaining ground against VMware. Then there were several stories in the mainstream business press that cast doubt on VMware's ability to compete in the cloud with the likes of Amazon Web Services and Windows Azure. On the cloud front, Microsoft Cloud and Enterprise Vice President Satya Nadella makes a compelling argument when he says that only Microsoft's "three cloud" strategy -- tying together on-premise IT resources, hosted cloud providers, and public clouds such as Windows Azure -- can provide the full three-course meal that IT managers need to fully embrace the cloud. While it's true that VMware is losing market share to Microsoft, it's an inevitability when you have a new competitor entering a market long dominated by a single provider. And while Microsoft and Amazon may have more experience in managing public clouds, VMware is unarguably still the market leader when it comes to virtualization, which is the foundation upon which all private, hosted, and cloud services are built. So while VMware has more competition and is under more market pressures than it has been at any other time in its short corporate history, here are a few reasons why I think VMware won't be going anywhere anytime soon. 1. VMware in defilade In the realm of military tactics, a unit that is fighting from... --- ### VMworld 2013 Europe: VMware Updates Horizon Suite, Acquires Desktone > Check out the latest news from VMworld 2013, including VMware Horizon View Updates, Desktone acquisition, and more! - Published: 2013-10-18 - Modified: 2013-10-18 - URL: https://petri.com/vmworld-2013-europe-vmware-updates-horizon-suite/ - Categories: VMware - Tags: EUC, Horizon Mirage, Horizon Suite, Horizon View, Horizon Workspace, VDI, vmware - Article Type: News Discover what went on at VMworld Europe 2013, including updates to the VMware ThinApp, VMware Horizon View, and more. VMworld 2013 Europe was in Barcelona this year, and VMware had a host of updates and announcements to make at the show. I've had high hopes about what might be announced around VMware Horizon Suite this week, and I've written about VMware's Horizon efforts previously in my post asking if VMware Horizon Workspace was maturing fast enough. So let's cover some of what VMware announced this week. VMware Updates and Announcements Horizon View 5. 3 The brand new version of VMware Horizon View was just announced and is offering some nice improvements. VMware is working on improving user experience and offering features to allow customers to overcome roadblocks and accommodate new use cases. Here are some of the new features in Horizon View 5. 3: Virtual Dedicated Graphics Acceleration (vDGA): This is now fully supported in View 5. 3. vDGA allows administrators to dedicate a single discrete GPU to a virtual desktop. This will allow View users to perform high-end workstation graphics functions that have required physical PCs in the past. Windows 8. 1 Support: View 5. 3 now supports both Windows 8 and 8. 1. Note that Windows 8. 1 does not yet support View local mode and Persona Management. HTML5 Blast improvements: With View 5. 3, VMware has also improved their Blast technology used for displaying a View desktop in an HTML5 web browser. The new version of Blast now supports sound, copy/past clipboard, and has improved graphics performance. This is good, but I still only see the use of Blast for those rare... --- ### VMware Storage Integration Explained > Discover what types of storage integrations are available with VMware, including vSphere API for Array Integration (VAAI), and more! - Published: 2013-10-17 - Modified: 2024-11-19 - URL: https://petri.com/vmware-storage-integration-types/ - Categories: VMware - Tags: API, storage, VAAI, VASA, vCenter, vSphere - Article Type: Overview Plenty of vendors say their product features storage integration with VMware. Discover what your storage integration options are in this article. As an architect, I talk to many vendors and customers, and often the conversation is about what makes one storage vendor better than another for VMware. I'm not going to focus on performance and array types of features, but what I do want to cover is the integration points that storage vendors can offer between their products and VMware. When it comes to VMware storage integrations, it comes down to two questions. First, can the storage device do what others can– and if so, then what are the table stakes? Second, what integrations can a vendor offer that's unique to that vendor? And to qualify as a VMware integration point, I think it must be something that improves intelligence, manageability, performance, or automation. VMware Storage Integration Points vSphere API for Array Integration (VAAI): VAAI has been around for a few years now. Simply put, for a short list of function, vSphere is able to let the storage array execute the activity and them report back. This is essentially moving the burden from the vSphere host to the storage for these functions. This can increase speed and performance and also reduce provisioning times. There are two sets of VAAI primitives available, one for block storage and another for NFS storage. For a deeper look into VAAI function read the VMware VAAI whitepaper. For me, this is table stakes for storage vendors to be considered competitive. In today's marketplace, if you cannot offer VAAI support you will be pretty... --- ### Using the Resilient File System (ReFS) in Windows Server 2012 > ReFS in Windows Server 2012 | Check out our pros and cons of Resilient File System (ReFS), Microsoft's new file system, before deployment in production. - Published: 2013-10-17 - Modified: 2024-09-24 - URL: https://petri.com/resilient-file-system-refs-windows-server-2012-overview/ - Categories: Windows Server 2012 - Tags: ReFS, Resilient File System, storage - Article Type: Overview Is Resilient File System (ReFS) in Windows Server 2012 ready for production? Check out our list of pros and cons of using ReFS in this Ask an Admin. Should I use the Resilient File System (ReFS) in Windows Server 2012? Microsoft introduced the first significant change to the file system in many years in Windows Server 2012. Resilient File System (ReFS) is built atop NTFS and improves upon the reliability and feature set already found in earlier versions of Windows Server. In its current incarnation, ReFS is limited to some specific uses. You should weigh up the pros and cons of the new file system before proceeding to format new volumes. What Are the Main Benefits of ReFS? Although NTFS is a reliable and mature file system, it can still be prone to file corruption and volume failure. ReFS is better at protecting data in the event of a power outage, can use checksums to verify the integrity of file data and metadata, and has better support for large volumes as corrupted files can be scrubbed or salvaged without taking disks offline. My favorite feature is support for long file names – up to 32,768 characters. For more information on these features, check out another Petri article, "4 Reasons ReFS (Resilient File System) is Better Than NTFS. " Backwards compatibility was an important part of the development of ReFS, and while support for some NTFS features has been dropped, ReFS supports the most important NTFS functionality used today, including: BitLocker encryption Access-control lists (ACLs) USN journal Change notifications Symbolic links Junction points Mount points Reparse points Volume snapshots File IDs Oplocks As... --- ### Clean Up Disk Space After Upgrading to Windows 8.1 > Recover disk space after a Windows upgrade! Learn how to delete the windows.old folder and remove previous installations in this handy tutorial. - Published: 2013-10-17 - Modified: 2024-11-19 - URL: https://petri.com/free-up-disk-space-after-windows-upgrade/ - Categories: Windows 8 - Tags: storage - Article Type: How To Discover how to reclaim precious disk space by deleting the windows.old folder and removing previous installations in this handy tutorial. Let's assume you've got a computer running Windows 7 or 8, and that computer has one internal hard disk that is partitioned into one or more partitions. Let's say that after using that computer for a while that hard disk partition gets filled up with your personal stuff, whatever that may be. If you look at your personal user profile, you will see that it takes that much disk space, which leaves you with that much free space on those partitions. Free Up Disk Space After Windows Upgrade Later, you decide to upgrade to Windows 8. 1. Yes, right now we're dealing with Windows 8. 1, but this was also true for previous versions of Windows, and it may also be true for future versions (although we don't have control over that, do we? ). So you upgrade your computer, and after that process is over you take a look at the amount of free space you've got on your computer's C: drive and you are startled to find that the amount of free space was reduced drastically. The reason for this is that the Windows upgrade setup process automatically stores a lot of your previous Windows install information in a special folder for the purpose of being able to recover this information later. But while that is a good thing for the end user, the setup program does not tell the user that so much disk space is now been taken from the C: drive. Note: Once you perform an upgrade... --- ### How to Expand WSUS Updates: System Center Update Publisher (SCUP) > Expand WSUS Updates | Learn how to install, configure, and publish updates for System Center Updates Publisher (SCUP) in part 2 of this series. - Published: 2013-10-16 - Modified: 2024-11-19 - URL: https://petri.com/expand-wsus-updates-system-center-updates-publisher-scup/ - Categories: System Center - Tags: SCCM, SCUP, System Center Updates Publisher, WSUS - Article Type: How To We're back with our series on WSUS updates! In pt. 2, learn to install, configure, and publish updates for System Center Updates Publisher (SCUP). In our first post in this new series on how to expand WSUS updates, I introduced Windows Server Update Services and showed you how to prepare the code signing certificate. In this post I will cover the main steps of having our clients trust updates that are not published explicitly by Microsoft, and I'll introduce the tool which will make this possible: System Center Update Publisher (SCUP). Expand WSUS Updates: Client Trusts We will begin with the client systems to which we wish to deploy our updates. These systems will possibly be comprised of both client and server operating systems, and organized into different organization units in your Active Directory. Assuming you have a working WSUS environment, you also likely have one or more Group Policies configuring your clients on where and how to query and deploy their respective updates. We will need to extend these policies, or generate a new policy scoped to the clients to whom you wish to deploy your custom update. The following is a guideline for the settings you will be configuring in these or other suitable alternative policies in your environment Launch the Group Policy Management Console and select an existing suitable policy, or create a new scope policy in which we will complete the following steps. In the GPO Editor, navigate to the following branch of the tree: Computer Configuration > Policies > Windows Settings > Security Settings > Public Key Policies > Trusted Publishers. Right-click and from the context... --- ### Understanding Hyper-V Replica > Meet Hyper-V Replica, Microsoft’s disaster recovery solution for their virtualization platform. Learn more in this overview! - Published: 2013-10-16 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-replica-overview/ - Categories: Hyper-V - Tags: Hyper-V Replica - Article Type: Overview Read our overview of Hyper-V Replica, including requirements, security, restore points, and more! In my previous article, "Understanding Disaster Recovery," I talked about the concepts of disaster recovery (DR) and business continuity planning (BCP). In this article I will move from concepts to actual software features by explaining Microsoft’s disaster recovery (DR) solution for their virtualization platform, Hyper-V Replica (HVR).   It’s probably fair to say that Microsoft underestimated just how popular this free DR solution would be. They knew small-to-medium enterprises (SMEs) would be interested, but the attention that HVR received from larger enterprises was a pleasant surprise. In this article, I will give an overview of Hyper-V Replica and how it works. I'll also post some how-to KB articles at the end. Hyper-V Replica Overview HVR is a feature that is built into Hyper-V and does not require any additional licensing. The feature was first introduced in Windows Server 2012 (WS2012) and was enhanced in Windows Server 2012 R2 (WS2012 R2). HVR takes advantage of the fact that the easiest way to replicate complex applications to a DR site is to abstract them as virtual machines, and to replicate the virtual machines, which are just a few files. And this follows Microsoft’s drive to get people to virtualize more of their systems (see the enhanced scalability of Hyper-V in WS2012 and WS2012 R2). Simple Bandwidth Requirements Microsoft’s initial ambition with HVR was to create a DR solution for SMEs. They decided to use asynchronous replication with HVR because those SMEs usually face challenges with WAN and Internet connectivity. Synchronous... --- ### Improving Virtual CPU Performance > Increase CPU performance in VMware | Experiencing poor vCPU performance due to over committing resources? Read on to learn about managing VMware CPU resources. - Published: 2013-10-16 - Modified: 2024-09-24 - URL: https://petri.com/improve-cpu-performance-vmware-virtual-machine/ - Categories: VMware - Tags: CPU, vCenter, vCPU, vSphere - Article Type: Overview Crushed under poor CPU performance choices in your VMware virtual machines? Read on to learn about managing VMware CPU resources. This discussion goes back to the early days of virtualization and how resources are assigned. Before, people wanted to assign virtual hardware the same way they did physical hardware, which leads to inefficient use of resources. This has become less of an issue in today's virtual data centers, but there are still some ratios that people need to be aware of. I am going to cover some of the important things to consider around the assignment and oversubscription of CPUs and help you increase the CPU performance in your VMware environment. Improving CPU Performance in Virtual Machines: It's All About CPUs As a VMware admin you will need to learn about your application environment and servers when virtualizing them. This means that if they are moving from physical to virtual you should monitor their resource usage before moving to virtual. This can be done with OS level tools or there are a number of third-party tools available to help with this. The main theme here is to accurately identify what the application's needs will be so that you can assign an appropriate amount of resources to the virtual server. Sometimes you will be working with app owners who are bringing in a new application, and some of these vendors request some pretty large virtual resources. This may be a result of them still thinking in terms of physical servers. You will need to negotiate to a sizing level that both parties are comfortable with. In short, it's... --- ### How to Host Multiple SSL Sites on a Server with One IP Address and Port > Discover how to host multiple SSL websites on IIS8 when there is only a single IP address and port. It's all in this easy Ask an Admin article. - Published: 2013-10-15 - Modified: 2024-09-24 - URL: https://petri.com/host-multiple-ssl-sites-with-one-ip-address-port/ - Categories: Security - Tags: IIS8, Server Name Indication, SSL, Windows Server 2012 - Article Type: How To SSL sites fighting over one IP address? In this Ask an Admin, learn to host multiple SSL websites on IIS8 when there is only a single IP address and port. How can I host multiple SSL sites on a server with only one IP address and one port? Windows Server 2012 Internet Information Services 8 (IIS) includes support for the Server Name Indication (SNI) extension. To establish a secure channel with a webserver, clients request certificates from the server so that data can be encrypted. When multiple website domains are present on a virtual host server with a single IP address and port, the server doesn’t know which certificate to send to the client because HTTP headers are not available during the SSL handshake. Only the IP address and port can be established from the TCP header. SNI solves this problem by adding server information to the Client Hello message. Web Browser Support Browsers need to support the SNI extension to successfully connect to a server that requires it. Internet Explorer 7 (and later) support SNI, but it is worth noting that it’s not supported in any version of IE running on Windows XP (or earlier). Windows Phone 7 (and later) supports SNI, as does Safari 2. 1 (or later) on MAC OS X 10. 5. 6 or Windows Vista (and later). Enable SNI on an IIS Website IIS 8 on Windows Server 2012 has SNI support enabled out-of-the-box. You need to specify on individual SSL site bindings if they will require Server Name Indication, also known as Hostname:Port binding. Additionally, you must specify a host name so that client requests can be matched to websites on the server. If... --- ### How to Integrate Microsoft Lync 2010 with BlackBerry Enterprise Server (BES) > Integrate the Microsoft Lync 2010 IM feature with BlackBerry Enterprise Server (BES) with the help of this handy tutorial. - Published: 2013-10-15 - Modified: 2024-11-19 - URL: https://petri.com/integrate-lync-2010-blackberry-exchange-server-bes/ - Categories: Exchange Server - Tags: BES, BlackBerry, Lync 2010 - Article Type: How To Discover how to integrate the Lync IM feature with your BES server to allow users to IM sessions while they are on the go. Learn more in this guidel! Do you have Lync 2010 and BES servers running in your enterprise? Did you know there is a Lync app for BlackBerry devices? Integrating Lync Instant Messaging (IM) with your BES server will give your users the ability to have Lync IM sessions while they are on the go. Overview of the BES Collaboration Service The Lync IM integration with BES is provided by the installation of the BlackBerry Collaboration Service. This service can be installed on your existing BES server or on a separate server that is dedicated to just the BlackBerry Collaboration Service. Using a dedicated server for the BlackBerry Collaboration Service will maximize your available TCP connections, allowing the service to respond to any increase of requests. The service works by creating an encrypted connection between your Lync server and the Lync app on your BlackBerry device. When IM sessions are started, the device sends the encrypted message to the BlackBerry Collaboration Service using Port 8181, after validation with the Lync server and AD, the service sends the message to the Lync server. For environments with both BES 10. 1 and BES 5, unfortunately you will need to install 2 different versions of BlackBerry Collaboration Service due to limited support on the new version.  BlackBerry Collaboration Service 10. 1 is only supported for devices running OS 10 or higher, so for devices that are older you will need the BlackBerry Collaboration Server 5. 0. 4 version. The following features are available on BlackBerry devices when integrated with Lync: Initiate and manage IM sessions on their BlackBerry devices... --- ### How to Expand WSUS Updates: Code Signing Certificate > Expand WSUS Updates | In part 1 of this new series on Windows Server Update Services (WSUS), learn to prepare the code signing certificate. - Published: 2013-10-14 - Modified: 2024-11-19 - URL: https://petri.com/how-to-expand-wsus-updates-code-signing-certificate/ - Categories: System Center - Tags: SCUP, WSUS - Article Type: How To Learn to install SCUP and prepare the code signing certificate in part 1 of this new series on Windows Server Update Services (WSUS). There are many different methods of deploying software updates and tools, but over the last few days I have found a scenario which has called for a little creative thinking as I have a special requirement to ensure that most (not all) of my domain joined machines are automatically deployed with the SCCM client. For various reasons I have chosen to address the solution for this scenario through the use of Windows Server Update Services (WSUS). This is the first in a series of posts on WSUS updates. In today's post we'll prepare the code signing certificate. The process I will cover today is good for about any update you wish to deploy, but this particular article is focused on using a WSUS server only. I'm aware that SCCM has some far better functions and features for deploying updates, which are built upon the foundation of WSUS – I will come back to in a later series of posts, but for now, we will implement the solution with Core Services only. System Center Update Publisher (SCUP) Begin by downloading and installing the current release of the System Center Update Publisher application (at the time of writing this is still System Center Update Publisher 2011) to your management station. The package itself is only 5Mb in size, and the installation wizard only asks a single question (where should it place the installed files). Launch the update publisher, and you will be quickly presented with its console. The purpose... --- ### Understanding Disaster Recovery > Disaster Recovery (DR) Planning | Are you prepared? Find out why you should be ready for an IT disaster at all times, and the differences between backup and DR. - Published: 2013-10-14 - Modified: 2024-09-04 - URL: https://petri.com/disaster-recovery-planning-overview/ - Categories: Backup & Storage - Tags: Disaster Recovery - Article Type: Overview Are you prepared for an IT disaster? In this overview, learn more about disaster recovery (DR) and why you should get on the ball. This article will introduce you to the concepts of disaster recovery (DR) solution. Once seen as something that only was done by Fortune 500 enterprises, DR has been democratized by virtualization and third-party software vendors. Furthermore, Microsoft offered an amazing solution in the form of Hyper-V Replica, making DR replication possible for small businesses, solving problems for large enterprises, and introducing a new business opportunity for service providers. But you’ll need to learn to walk before you run. You’ll need to understand what DR is and to understand the concepts and terminology before you start learning about one of the most popular features in Hyper-V. Read on for an overview of disaster recovery and what it means for you and your business. The Need for Disaster Recovery Disasters happen more than one might think. Some like Hurricanes Sandy or Katrina make headlines and the chaos that they create is obvious and widely felt. Tornadoes or floods might destroy part of a small town with barely a mention in the news, but the damage caused to personal lives and businesses is no less real and devastating. Life does not stop with a disaster. Shareholders, employees, customers, partners, and the community will depend on those businesses once the initial effects are dealt with. A few enterprises, such as stock markets, will need to have zero downtime. Some businesses can survive a few minutes of an outage. And most can survive a few hours or even a few days. But... --- ### How to Save Your Skype Video Messages > Save Skype video messages with the the help of this tutorial! We'll show you how to keep your important video messages received over Skype. - Published: 2013-10-11 - Modified: 2024-09-04 - URL: https://petri.com/save-skype-video-messages/ - Categories: Messaging - Tags: skype - Article Type: How To Online doesn't necessarily mean "forever." Learn how to keep your important video messages received over Skype. Last month I was abroad, doing some consulting for various customers. During that time, my two lovely daughters used Skype to communicate with me while I was on the road, and since I could not always pick up the phone to answer them and because of the time difference, they ended up leaving many video messages for me. I enjoyed getting those messages very much, and I liked to replay them over and over in my spare time. But then I thought: "What if I need to format this computer in the future? What will happen to those priceless video messages? " Keep Your Own Copies It turns out that these video messages are (theoretically) stored on Skype's servers for an indefinite period of time. ("Forever" comes to an end very often sooner than you may realize. I remember many "free for life" services I once used – which aren't free anymore. ) We, as end-users of a service that is currently free, have no control over Skype's (actually Microsoft's) storage policy. What works today may be broken tomorrow, what is free today may cost money tomorrow, and what seems like a lifetime endless storage space may be gone without a trace in an eye blink. What if these messages will be deleted sometime in the future? Related: How to fix Skype screen sharing problems So how do you actually download those priceless video messages? The logic behind downloading these important videos is that you take control and responsibility... --- ### Interview: Microsoft's Elden Christensen Discusses Windows Server 2012 R2 Storage Features > Curious about Windows Server 2012 R2 storage features? Read our interview with Microsoft Principal Program Manager Elden Christensen about storage and more. - Published: 2013-10-10 - Modified: 2024-09-04 - URL: https://petri.com/elden-christensen-windows-server-2012-r2-storage-features-interview/ - Categories: Backup & Storage - Article Type: Interview Read our interview with Microsoft Principal Program Manager Elden Christensen about new and improved Windows Server 2012 R2 storage features. We’ve written a fair amount about what’s new in Windows Server 2012 R2, but we’ve only scratched the surface of what this significant update contains. One of the biggest areas of improvement is in storage, with the R2 release offering up dozens of new and improved features. To get some additional insight into what Windows Server 2012 R2 offers in the storage feature department, I sat down with Microsoft Principal Program Manager Elden Christensen at TechEd 2013 this year. Jeff James: There were a lot of storage announcements coming out of TechEd this year. Maybe you could give me a really broad, top-level overview of all the big storage changes that are coming in Windows Server 2012 R2? Elden Christiansen: Can I take a step back and give you an overview first? Just to give you the context. I think the big thing is that we're defining what software-defined storage is, and what our vision is on where we're going with software-defined storage.  We talk to a lot of hosters , and hosters are really budget conscious. They're trying to pinch every penny and trying to get all the value they can out of their infrastructure. They have a very different mentality than we see with enterprise customers; they're much more budget conscious. With Windows Server 2012 R2 we really shifted our focus to specific scenarios around the private cloud, hosted cloud, and cloud service providers. With that context in mind we thought about storage... . --- ### How to Connect to a Windows 8.1 or Server 2012 R2 Remote Desktop Using Restricted Admin Mode > Learn to use Restricted Admin mode to connect a remote desktop in Windows 8.1 and Server 2012 R2. Improve security with this helpful guide. - Published: 2013-10-10 - Modified: 2024-09-24 - URL: https://petri.com/use-restricted-admin-mode-to-connect-windows-8-1-server-2012-r2-remote-desktop/ - Categories: Security - Tags: Remote Desktop, Restricted Admin mode, Windows 8.1, Windows Server 2012 R2 - Article Type: How To Improve security when connecting to remote desktops by using Restricted Admin mode! Check out this handy Ask an Admin article. I'd like to use Restricted Admin mode to connect to a Windows 8. 1 Remote Desktop. How can I do that? Windows 8. 1 and Windows Server 2012 R2 contain a series of enhancements that are designed to protect Windows against pass-the-hash (PtH) attacks. Password hashes are stored on disk and memory, and if compromised, they can be used by hackers to gain access to systems without a user’s plaintext password. A new feature that helps prevent this kind of attack in Windows 8. 1 and Server 2012 R2 is the option to connect to Remote Desktops without sending credentials across the network. As such, credentials are never present on the remote box, which in turn reduces the risk of credential compromise if the remote machine is infected with malware designed. Usage scenarios An example of when Remote Desktop Restricted Admin mode might come in handy is when connecting from a trusted management PC to a remote device that doesn’t have the same level of trust, and is more likely to be infected with a virus. In this case, the helper’s credentials are less likely to be compromised when connecting to the remote machine because they are never sent or stored on the remote device. Does that mean I don’t need to worry about using privileged credentials for everyday support work? Despite the welcome PtH mitigations in Windows 8. 1 and Remote Desktop Restricted Admin mode, it is still best practice not to use privileged credentials, such... --- ### VMware VCAP-DTD Exam: What to Expect > VCAP-DTD Exam | Taking VMware's VCAP-DTD? Learn what to expect when taking the exam in this helpful article. - Published: 2013-10-10 - Modified: 2013-10-10 - URL: https://petri.com/vmware-vcap-dtd-exam-tips/ - Categories: VMware - Tags: certification, Horizon, VCAP, View, vmware, vSphere - Article Type: Overview Gotta get through the VCAP-DTD? Learn from our writer's experience! Check out these helpful hints for taking the exam. It's been a couple of weeks now since I sat and passed the VMware VCAP-DTD exam. This is one of VMware VCAP or VMware Certified Advanced Professional exams. The DTD exam is specifically about desktop design, which on a product list would correlate to VMware View and vSphere. The exam is for architects and engineers that have been working with VMware's EUC products for more than two years. VCAP-DTD Exam: Just the Facts The exam is comprised of 115 questions and you are given 195 minutes to complete the exam. If English is not your native language you will be given an extra 30 minutes. The scoring range is from 100 to 500 points and to pass you must score at least 300 points. There are three distinct types of questions on this type of VCAP exam: Multiple choice questions – You will be presented with a scenario or question and you will be asked to pick a single correct answer or select three items from a longer list. These questions are much longer and more in-depth than what you would find on the VCP-type exam. Drag-and-drop questions – These are usually scenario-based types of questions. For example, you might be asked how you would perform some task. You would then be given a number of steps that you may or may not need to use them all to accomplish the task. You then need to drag them to the column on the right and place in... --- ### Hyper-V Hardware Offloads for Networking > Windows Server and Hyper-V include support for hardware offloads to improve networking performance. Learn more about hardware offloading in this guide. - Published: 2013-10-09 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-hardware-offloads-networking/ - Categories: Hyper-V - Article Type: Overview Want improved networking performance? Check out this article about hardware offloads in Hyper-V and Windows Server. Windows Server and Hyper-V include support for a number of hardware offloads to improve the performance of networking. These offloads reduce the resource consumption of a server, host, or even a virtual machine, and they make it possible for these computers to scale up their workloads. In this article I will introduce the significant hardware offloads and explain what they offer. You can then use this information to steer your host or server designs. The Role of a Hardware Offload Windows Server and Hyper-V can function without networking hardware offloads. However, you get to a point where as you scale up your workloads, the requirements of growing services place an increased demand on the hardware. This can reduce performance and even scalability. For example, you might wish to use very dense Hyper-V hosts because your cost-of-ownership calculations determine that this is the best way forward. This means that there will be a huge flow of networking traffic into the host in question. Without assistance, a significant percentage of the host’s resources will be consumed by that networking traffic, thus reducing the virtual machine density that is possible on the host. The normal flow of traffic through a Type 1 hypervisor such as Hyper-V or vSphere introduces a tiny amount of latency. You might have services that require network latency, lower than what an unassisted hypervisor can offer. Once again, without an offload, you might have no choice but to deploy these services on expensive, inflexible, difficult-to-manage, and non-cloud... --- ### Remote Network Access: Configuring an SSTP Client > Remote Network Access | In part 3 of our series on Remote Network Access, learn to learn to manually configure an SSTP client and configure the VPN profile. - Published: 2013-10-09 - Modified: 2013-10-09 - URL: https://petri.com/remote-network-access-configure-sstp-client/ - Categories: Networking - Tags: Certificate Authority, HRA, NAP, NPS, SSL VPN, SSTP, System Center, VPN - Article Type: How To Done with Remote Network Access? Not remotely! In part 3 of our series, learn to manually configure an SSTP client. If you are following the miniseries so far, you are now in a position get your clients connecting to the new SSTP Server. One of the main limitations of Group Policy is its inability to distribute VPN configurations to clients, but with the launch of System Center 2012 R2 Configuration Manager, this shortfall has finally been addressed. In this post, I will guide you through the steps to manually configure an SSTP client. You can, of course, modify these steps for your specific purposes, but the basic concepts will not deviate too much. Need to catch up? Check out our first article in the series, in which we introduced the objectives and architecture of Remote Network Access. In part two, we began the process of installing and configuring the SSTP servers to support and implement our client's VPN Connection. Remote Network Access: Configure the VPN Profile Only Windows 7 and newer clients support tunnels in SSTP. You will need to repeat the steps on each client computer that will be connecting to the SSTP server Begin by opening the Network and Sharing Center. Select the option Set Up a new Connection or Network, and the wizard will appear. On the Choose a connection option page, select Connect to a Workplace and click Next. On the Connect to a Workplace page, select No, Create a new connection, and click Next. On the How do you connect? page, select Use my Internet Connection (VPN). On the Type the Internet... --- ### How to Configure VMware Storage I/O Control (SIOC) > vSphere Storage I/O Control (SIOC) | Have you setup VMware SIOC yet? Read this post to find out how SIOC can solve common storage problems. - Published: 2013-10-08 - Modified: 2024-09-24 - URL: https://petri.com/configure-vmware-vsphere-storage-io-control-sioc/ - Categories: VMware - Tags: SIOC, Storage I/O Control, vCenter, vSphere - Article Type: How To Hold the phone. Have you set up VMware vSphere Storage I/O Control (SIOC) yet? Read on to learn how SIOC can resolve common storage problems. In this post I wanted to talk about one of the under-utilized cool features available in vSphere: Storage I/O Control (SIOC) and there are just not enough customers looking at this or using it right now. Read on to find out if SIOC could help you in your environment. What Is vSphere Storage I/O Control (SIOC)? Storage I/O Control is a method that VMware can manage and prioritize I/O for virtual machines. These VMs are typically contained within a vSphere cluster and use a shared datastore. It performs this function by using similar conecpts of shares and limits that you would be familiar with from CPU and memory that has been around in vSphere for years. VMware can then dynamically allocate I/O across the nodes in a vSphere cluster. You will need to own the Enterprise Plus licensing level to take advantage of SIOC. How to Configure SIOC The process of turning on SIOC is super simple, but if you start to adjust the settings from their defaults you will want to spend ample time looking into the effects. To get the process started, I navigated to the Datastore view within the vSphere Client. Then I selected the datastore that I want to enable for SIOC. The example image below shows that I have highlighted that SIOC is currently disabled. To enable I will choose to edit the properties of the datastore. When looking at the properties for my datastore, the choices are... --- ### Use Active Directory Administrative Center to Create PowerShell Commands in Windows Server 2012 > Active Directory Administrative Center (ADAC) | Create PowerShell commands with the history viewer in ADAC in Windows Server 2012. Learn how in this article! - Published: 2013-10-08 - Modified: 2024-09-24 - URL: https://petri.com/use-active-directory-administrative-center-create-powershell-commands/ - Categories: Active Directory (AD) - Tags: Editor's Pick, PowerShell, Windows Server 2012 - Article Type: How To Still haven't tried PowerShell? In this Ask an Admin, check out the PowerShell History Viewer in Active Directory Administrative Center. How can I use Active Directory Administrative Center (ADAC) in Windows Server 2012 to create PowerShell commands? The PowerShell History Viewer is a new feature in the Windows Server 2012 Active Directory Administrative Center (ADAC). If you have never had a reason to use ADAC before because other AD management tools get the job done, this feature alone makes it worth taking a look. Many system administrators still haven’t taken their first steps in learning PowerShell, Microsoft’s command-line management system for Windows. Windows administrators tend to be less well versed in command-line management than their UNIX counterparts, as the GUI is often easier to use for one-off tasks – and, let's face it, command line management hasn’t always been Microsoft’s strong point. That all changed a few years ago with the introduction of PowerShell, a completely new command-line management system for managing every aspect of Windows configuration and third-party applications. PowerShell is much more sophisticated than previous command line tools on Windows, and as such it comes with a steep learning curve. To help system administrators overcome some of the initial hurdles with PowerShell and encourage its use, Microsoft included the PowerShell History Viewer in ADAC. Much like Exchange 2013, ADAC is a GUI tool that runs PowerShell commands in the background to perform the actual tasks, so everything you do with ADAC already has an associated PowerShell command, which can now been seen with the help of the History Viewer. Using the... --- ### Microsoft Touts Fall Enterprise Push, Unveils Remote Desktop Apps for iOS and Android > Discover what Microsoft's Satya Nadella has to say about cloud strategy, the fall enterprise application push, and new remote desktop apps for iOS and Android. - Published: 2013-10-07 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-launches-remote-desktop-ios-android-apps/ - Categories: Windows Server 2012 - Tags: Microsoft, Satya Nadella, Windows Azure, Yammer - Article Type: News Microsoft's Satya Nadella discusses their cloud strategy, the fall enterprise application push, and the new remote desktop apps for iOS and Android. At a press event at the relatively new corporate offices of Yammer in San Francisco earlier today, Microsoft Cloud and Enterprise Vice President Satya Nadella discussed Microsoft's renewed commitment to the enterprise IT market, including new Microsoft remote desktop apps for iOS and Android devices, and new certifications for Azure on the government computing front. Nadella also used the event to highlight Microsoft's updated enterprise software and services portfolio, including the upcoming releases (on October 18th, 2013) of Windows Server 2012 R2, Microsoft System Center 2012 R2, the latest release of Windows Intune, as well as Visual Studio 2013 and . NET 4. 5. 1. Interoperability and Microsoft's New Remote Desktop Apps In a wide-ranging Q&A session, Nadella stated that Microsoft had been awarded a Provisional Authorities to Operate (P-ATO) designation from the Federal Risk and Authorization Management Program (FedRAMP) Joint Authorization Board (JAB). This alphabet soup of acronyms translates into Microsoft being able to sell Windows Azure to U. S. government customers -- when they're not sitting on their hands waiting for our government shutdown to end, of course -- who historically have not been able to adopt public cloud services due to the lack of said designation. Microsoft Cloud and Enterprise Vice President Satya Nadella (R) fields questions from journalists at the Yammer corporate offices in San Francisco, CA, on October 7th, 2013. (Photo: Jeff James) Nadella also mentioned that Microsoft had "grown up in the last ten years" when it came to interoperability with other OSes and platforms,... --- ### Remote Network Access: Deploying an SSTP Server > Remote Network Access | In part 2 of our series, learn to install and configure SSTP servers to support and implement clients' VPN connections. - Published: 2013-10-07 - Modified: 2013-10-07 - URL: https://petri.com/remote-network-access-deploy-sstp-server/ - Categories: Networking - Tags: Certificate Authority, HRA, NAP, NPS, Remote Access, SSL VPN, SSTP, System Center, VPN - Article Type: How To In pt. 2 of our series on Remote Network Access, try these steps to install and configure SSTP servers to support and implement clients' VPN connections. In the previous post, we introduced the objectives and architecture of Remote Network Access. Assuming you have prepared your servers, we can get directly into the fun stuff and begin the process of installing and configuring the SSTP servers to support and implement our client's VPN Connection. Also be sure to read the third installment of this series, "Remote Network Access: Configuring an SSTP Client. " Remote Network Access: How to Deploying SSTP Servers In this post, our objective is to deploy and configure the services necessary to support SSTP for use with our Windows 7 and newer client computers. As part of this deployment, we will integrate the SSTP server with Remote Authentication Dial-In User Service (RADIUS) server, so that we can assign some access and accounting control for the users whom will ultimately connect via this service. Once all the server work is complete, we will proceed to configure the client and verify that the configuration works as planned. NPS: Add the Routing and Remote Access Server As a Client Prior to beginning any configuration on our Routing and Remote Access Server (RRAS), on the server that we have chosen to use as our Network Policy Server (NPS/RADIUS), we will first create an entry for the RRAS server, to enable it as a client on our RADIUS/NPS server. If you do not already have a NPS server deployed, you can use the Windows Server Manager to deploy this role. No special choices are required to install... --- ### Basic Hyper-V Replica Configuration Between Non-Clustered Hosts > Hyper-V Replica | Copy a VM using Hyper-V Replica with Windows Server 2012 or WS2012 R2 (includes Hyper-V Server). - Published: 2013-10-07 - Modified: 2024-09-04 - URL: https://petri.com/basic-hyper-v-replica-configuration-between-non-clustered-hosts/ - Categories: Hyper-V - Tags: Business Continuity, Diaster Recovery, DR, Hyper-V Replica, Virtualization, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To In this guide, find out how to copy a VM using Hyper-V Replica with WS2012 or WS2012 R2 (includes Hyper-V Server). In this post I will quickly demonstrate how to replicate a virtual machine using Hyper-V Replica using Windows Server 2012 (WS2012) or Windows Server 2012 R2 (WS2012 R2). Note that this includes Hyper-V Server. I will return to the topic of Hyper-V Replica in future articles to dive deeper into some of the options. In this example we will replicate a virtual machine from one non-clustered host to another. We will choose to do the initial copy over the network, and we will use HTTP (Kerberos) authentication. This is the typical configuration you will use in a test or demo lab. Hyper-V Replica: Enable Inbound Replication Hyper-V Replica cannot work unless you enable inbound replication on your host or cluster in the secondary site. There you can enable inbound replication from all hosts/clusters that can authentication (not recommended) or you can create a specific policy for each primary site host or cluster (recommended). In this example are working with non-clustered hosts, so you will open up the Hyper-V Settings of your secondary site host in Hyper-V Manager. Browse to Replication Configuration and configure: Enable This Computer As a Replica Server: Checking this box will enable inbound replication Authentication and Ports: Choose the authentication protocol. HTTP is Kerberos authentication where the primary and secondary hosts are in the same forest or trusting domains. HTTPS (SSL) is for non-trusting networks and requires SSL certificates to be deployed to both the source and destination hosts. Authentication and Storage: The basic... --- ### Getting Started with PowerCLI: Managing ISO Files > VMware vSphere PowerCLI | Manage ISO files with PowerShell! Learn to copy and mount ISO files in part 6 of this multi-part series. - Published: 2013-10-07 - Modified: 2024-09-04 - URL: https://petri.com/vsphere-powercli-manage-iso-files/ - Categories: VMware - Tags: Intermediate, ISO files, PowerCLI - Article Type: How To We're all about vSphere PowerCLI. In pt. 6 of our series, learn to manage (copy and mount) ISO files. We're back with our multi-series look at PowerShell and vSphere PowerCLI. If you missed the previous articles, take a few minutes to get caught up before proceeding: In part one, we took a look at downloading and installing PowerCLI. In part two, we went through the steps of setting up and configuring PowerCLI. And in part three, I showed you how to use PowerCLI to start and shutdown VMs. In part four, we went over PowerCLI and PSDrives, and in part five, we created a new VM. Today I'll go through to steps to manage your ISO files. The New VM As before, I’ve already loaded the snapin and connected to my ESX server. In the last article you might recall I created a new virtual machine: ​ PS C:> get-vm petri-2 Name                 PowerState Num CPUs MemoryGB ----                 ---------- -------- -------- Petri-2              PoweredOff 2        4. 000 My intention is for it to run Windows Server 2008 R2. When I created the virtual machine I specified a guest operating system identifier. As you can see in Figure 1, there is a wealth of information available from PowerCLI, but sometimes it requires a little digging. What I need to do next is load the installation media into the virtual machine CD drive so that I can install the operating system. PowerCLI: Copy an ISO The first step is to get the ISO file of installation media on to the VMware server. Fortunately this is quite easy... --- ### Overlooked Features in Window Server 2008 R2 > Discover what Windows Server 2008 R2 features are often forgotten – and why they deserve a second look. - Published: 2013-10-04 - Modified: 2024-09-04 - URL: https://petri.com/window-server-2008-r2-overlooked-features/ - Categories: Windows Server 2008 - Tags: Editor's Pick - Article Type: Opinion Direct Access? BranchCache-whatsis? Discover what oft-forgotten Windows Server 2008 R2 features we think deserve another chance. I am as guilty as anyone when it comes to getting caught up with the latest, greatest version of Windows Server. I always advocate Software Assurance for Windows Server and its Client Access Licenses (CALs), especially when deploying (any) virtualization. But sometimes in this features race, we forget that not every business is in a position to maintain Software Assurance on server licenses or CALs. In my travels, I’m often surprised by how many administrators know so little of what is already available to them in their existing software acquisitions. In this article I’m going to talk about what I think are these oft-overlooked features in Windows Server 2008 R2 (W2008 R2). Windows Server 2008 R2: Forgotten Features Virtualization This is where some readers will sigh while thinking “Here goes Aidan again on his Hyper-V trip”! I promise to keep this brief. I think at this time, most sane engineers and architects agree that the primary methods for deploying servers should be via virtualization or cloud. So this is why I’m jumping straight into this topic. W2008 R2 came with the second release of Hyper-V. This version added live migration within Hyper-V clusters and Microsoft’s cluster file system, Cluster Shared Volume (CSV). With Service Pack 1 (SP1), W2008 R2 added RemoteFX for virtualizing graphics cards in Remote Desktop Services scenarios. And more importantly, Dynamic Memory was introduced to improve the assignment of memory to virtual machines based on the guest operating systems’ pressure to allocate RAM. With SP1,... --- ### Getting Started with PowerCLI: Creating a Virtual Machine > VMware vSphere PowerCLI | Learn how best to create a new virtual machine from the command line in part 5 of this multi-part series! - Published: 2013-10-03 - Modified: 2024-11-19 - URL: https://petri.com/vsphere-powercli-create-virtual-machine/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To In part 5 of our series on vSphere PowerCLI, learn how to create a shiny new virtual machine from the command line. At this point in learning how to leverage PowerShell and PowerCLI to manage your VMware Infrastructure, let’s turn our attention to PowerCLI and creating a new virtual machine from the command line. If you missed any of the previous articles in this series, I recommend you get caught up first. In part one, we took a look at downloading and installing PowerCLI. In part two, we went through the steps of setting up and configuring PowerCLI. And in part three, I showed you how to use PowerCLI to start and shutdown VMs. In part four, we went over PowerCLI and PSDrives. Next, in part six I'll show you how to use PowerCLI to manage your ISO files. ) Creating a New Virtual Machine I’ve already loaded the PowerCLI snapin and connected to my VMware host server. Not surprisingly, the cmdlet we will use is called New-VM. Even more amazingly is that it requires hardly any effort to use! ​ PS C:> new-vm cmdlet New-VM at command pipeline position 1 Supply values for the following parameters: Name: I didn’t bother to specify any parameters. All the cmdlet required is the name of the new virtual machine so it prompted me. I entered Petri-1 and hit Enter. That’s it. ​ PS C:> get-vm petri-1 Name                 PowerState Num CPUs MemoryGB ----                 ---------- -------- -------- Petri-1              PoweredOff 1        0. 250 Of course, there is more to the new VM than what you see here. ​ PS C:> get-vm petri-1 | select * Figure... --- ### Using Windows 8.1 with the Microsoft Upgrade Assistant > Upgrade to Windows 8.1 using Microsoft Upgrade Assitant! It's easy with the help of this step-by-step tutorial. - Published: 2013-10-03 - Modified: 2024-09-04 - URL: https://petri.com/using-windows-8-1-with-upgrade-assistant/ - Categories: Windows 8 - Tags: upgrade assistant, Windows 8.1 - Article Type: Overview Ready to jump to Windows 8.1? Read this tutorial to learn how to use Upgrade Assistant to get Windows 8.1. The Upgrade Assistant is not just a reporting tool, but also a gateway into the various purchasing options for Windows 8. 1. As of this moment, you must run the Upgrade Assistant tool in order to purchase Windows 8. 1 or Windows 8. 1 Pro online, however you can also run it without purchasing, and generate a compatibility report with which to analyze your applications and computer settings and their ability to work properly in Windows 8. 1. Today I'll show you how to upgrade to Windows 8. 1 with Upgrade Assistant. Note: Any PC that successfully runs Windows 7 will also run Windows 8. 1. How to Upgrade to Windows 8. 1 Using Upgrade Assistant To start, first you need to download the Upgrade Assistant tool. Click Get Started. Or you can download it directly. After downloading the Upgrade Assistant (approx. 5. 5 MB), run it from the download folder. You may be prompted to run the tool with elevated permissions. Click Yes to proceed. There is not much you can do at this moment. After a couple of moments of waiting, the process begins without being prompted to do anything. The Upgrade Assistant scans your computer's hardware drivers, applications and connected devices, and checks to see if they'll work with Windows 8. 1. It also checks your computer's hardware to see if it meets the Windows 8. 1 minimum system requirements: 1 GHz processor or faster with support for PAE, NX, and SSE2 2 GB RAM / 20 GB available drive space... --- ### Using DHCP Policy-Based Assignment in Windows Server 2012 > DHCP Policy-Based Assignment (PBA) | Configure DHCP policy and learn to assign specific IP addresses from a range of options to groups of devices in WS2012. - Published: 2013-10-03 - Modified: 2024-09-24 - URL: https://petri.com/dhcp-policy-based-assignment-windows-server-2012/ - Categories: Windows Server 2012 - Tags: DHCP, DHCP Policy-based assignment, Network, PBA, Windows Server 2012 - Article Type: Overview Use DHCP policy-based assignment in Windows Server 2012 to simplify network management. The Dynamic Host Control Protocol (DHCP) service in Windows Server 2012 has been updated to provide not only failover capability to another server and PowerShell commands, but it also gives the ability to provide devices on the network with an IP address according to different criteria set in DHCP policy. Today I'll discuss the ins and outs of DHCP Policy-Based Assignment (PBA) and how to configure a DHCP policy in Windows Server 2012. Policy-Based Assignment allows administrators to assign devices with IP addresses from a specific range, which can be useful if you need to group devices together. For example, you might assign all iPhones an address from a specific range. PBA also allows administrators to set standard or vendor specific DHCP options based on the same criteria. Before PBA, you could create individual address reservations in DHCP to group devices by IP address, but this could be a time consuming task on large networks. Alternatively, Virtual Local Area Networks (VLANs) or Access Control Lists (ACLs) on switches could be used, but PBA provides administrators with a much simpler way to group devices. Why Group Devices by IP Address? Long gone are the days where corporate networks consisted largely of desktop PCs and other static devices. With the proliferation of different IP-enabled devices, such as mobile phones and notebooks, it can be useful to assign devices that are always connected to the LAN with an IP address that has a longer lease time... --- ### Remote Network Access: Objectives and Architecture > Remote Network Access | Discover what architecture/servers are used in pt. 1 of this new miniseries on deploying a Remote Network Access solution. - Published: 2013-10-02 - Modified: 2024-09-04 - URL: https://petri.com/remote-network-access-objectives/ - Categories: Networking - Tags: Certificate Authority, HRA, NAP, NPS, SSL VPN, SSTP, System Center, VPN - Article Type: Overview In part 1 of a series on deploying Remote Network Access, we take a closer look at the architecture/servers to be used. In the this mini-series, I am going to diverge from my usual System Center-only focus to take a fresh look at deploying a Microsoft Remote Network Access solution. First, we'll get you online and working using SSTP, and then extend this base implementation with Network Access protection before finally coming back a little later and elevating these SSTP servers to Direct Access. Don't miss the other two parts of this series! Part two: Remote Network Access: Deploying an SSTP Server Part three: Remote Network Access: Configuring an SSTP Client Why Remote Network Access? So why I am doing this? As we build out solutions for System Center, we need a foundation from which to work, and within the latest versions of Configuration Manager we have the ability to integrate with the Windows Network Access Protection and manage our off-site computers with a dial out approach over Direct Access. Also, in the new R2 releases we can integrate both our Certificate Servers (Certificate Authority – CAs) and we finally have the ability to distribute VPN Profiles to our end users. Therefore, I am considering this miniseries as a foundation for illustrating these features and abilities in later posts. I am building this solution out using the recently published RTM builds of Windows Server 2012 R2, but almost everything I will cover in this series will work from 2008 R2, with some minor adjustments and wizard changes. Architecture The environment which we will use for... --- ### Is Microsoft Releasing New Versions of Software Too Quickly? > Microsoft Rapid Release Cadence | Is Microsoft releasing new versions of their software too quickly? Check out what our writer has to say about it! - Published: 2013-10-02 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-rapid-release/ - Categories: Windows Server - Tags: Microsoft, Opinion, Windows Server 2012 R2 - Article Type: Opinion Is Microsoft's rapid release cadence for new versions of their software too much too soon? Check out what our writer has to say about it! It is only one year since Windows 8 and Windows Server 2012 were made generally available (GA), and even less than that since the significantly updated System Center 2012 SP1 was released to the public.   Customers are still running older versions or are coming to grips with the features of the new versions. Now those same customers are faced with another wave of releases, this time with Windows 8. 1, Windows Server, and System Center 2012 R2. This is all part of Microsoft’s new “cadence," in which the company will release software more frequently. But one has to ask: Is it too frequent? Microsoft's Release Schedule: The Past Once a small and agile speed boat that could accelerate into new maneuvers, Microsoft quickly grew into a behemoth oil tanker that required reorganizations and time to change direction. One can see this in how products were released: Windows NT 4. 0: August 1996 Windows 2000: February 2000 (3. 5 year gap) Windows XP: October 2001 Windows Vista: January 2007 (5. 5 year gap) With the release of Vista, Microsoft made a promise that releases would be on a more predictable schedule. We would get one major release, followed not too long after by a minor (R2-style) release: Windows 7 (minor following Vista): October 2009 (2. 5 years after Windows Vista) Windows 8 (major): October 2012 (3 years after Windows 7 Typically consumers use whatever version of Windows that comes pre-installed on their PCs; only hard-core enthusiasts buy online or off-the-shelf Windows upgrades. And... --- ### Why RTM Is No Longer a Green Light to Install Windows > Windows 8.1 RTM | Learn why we think it's best to wait for Windows 8.1 RTC before upgrading your Windows 8 and Server 2012 systems. - Published: 2013-10-01 - Modified: 2024-09-24 - URL: https://petri.com/windows-8-1-rtm-not-worth-it/ - Categories: Windows 8 - Tags: RTM, upgrade, Windows 8, Windows 8.1, Windows Server 2012, Windows Server 2012 R2 - Article Type: Opinion Red light for RTM? Learn why we think it's best to wait for Windows 8.1 RTC before upgrading your systems. As Microsoft moves to a rapid release schedule for its client and server operating systems, don’t hurry to be first out of the gate when Microsoft releases the RTM bits. RTM or RTC? The release to manufacturing (RTM) milestone has traditionally been when Microsoft officially deems a new product or OS to be ready for consumption and officially supported, giving organizations the green light to deploy Windows in production environments, or enthusiasts their first opportunity to install the final build. When Windows 8. 1 and Windows 2012 Server 2012 R2 RTM was announced in August 2013, the bits were only made available to manufacturers, enabling them to prepare new devices in time for the holiday season. TechNet and MSDN subscribers would not get access until October 18, leaving developers and system administrators waiting along with everyone else another couple of months for the release to customers (RTC) milestone. Change of Heart This decision created something of a furor in the IT community, and on September 9, Microsoft backtracked and made the RTM bits available to TechNet and MSDN subscribers. This was an important move, as developers in particular need to have access to the new OS in advance of customers, to ensure that applications can be updated to support new features and that existing compatibility is maintained. Ecosystem Catch-up So why wait two months before officially releasing Windows 8. 1 to the general public? At the time of writing this article and just a month... --- ### Not All of vCenter Operations Manager Is Created Equal > vCenter Operations Manager (vCOPS) | Read why we think this powerful tool could still use some improvement. - Published: 2013-10-01 - Modified: 2024-11-19 - URL: https://petri.com/vcenter-operations-manager-vcop-pros-cons/ - Categories: VMware - Tags: vCenter, vCOps, vmware - Article Type: Opinion VMware vCOps is a very powerful tool, but there is room for improvement. Read on to find out what we like and don't like about vCOPS! For past couple of years VMware has been yelling from the rooftops about how great vCenter Operations Manager (vCOPS) is. I do have to admit that I've seen many happy customers and vCOPS has to be one of the better-selling VMware products behind vSphere. But as vCOPs grows into a more robust product there are some parts that are a bit of a letdown. I'll cover the main features in vCOPs and break down where I think the product excels and disappoints. vCenter Operations has grown from the original management product into a suite of products that deals with reporting and compliance. I will be focusing on the manager product that is the most popular and the most implemented product in the suite. What Is vCOPs? The vCenter Operations Manger product is a that offers detailed insight into the performance, health, and capacity of your infrastructure. What it does well: The performance reporting and visuals is the bread and butter of the vCOPs manager product. It does performance really well and is very visually appealing. It's also pretty simple to work with and the learning curve for getting started is pretty low. What it could do better: The capacity planning a waste finding functions within vCOPs are important features. While I think most customers purchase for the performance and health features, they do look forward to what the product might offer them in the way of capacity planning and management. The bad news is that pretty much... --- ### Microsoft's Jeffrey Snover Discusses Windows Server 2012 R2, Microsoft's Cloud Strategy, PowerShell > Uncover what Microsoft's Jeffery Snover has to say about WS2012 R2, PowerShell, and Microsoft's '3 cloud' strategy in this wide-ranging interview. - Published: 2013-10-01 - Modified: 2024-09-24 - URL: https://petri.com/jeffrey-snover-windows-server-2012-r2-microsoft-cloud/ - Categories: Windows Server 2012 - Tags: cloud computing, Windows Server 2012 R2 - Article Type: Interview Uncover what Microsoft's Jeffery Snover has to say about WS2012 R2, PowerShell, and Microsoft's '3 cloud' strategy in this wide-ranging interview. At TechEd 2013 earlier this year, Petri IT Knowledgebase contributor Aidan Finn and I had the opportunity to sit down for an interview with Microsoft’s Jeffrey Snover, a Distinguished Engineer and the Lead Architect for the Windows Server Division. Microsoft had just announced Windows Server 2012 R2 and System Center 2012 R2 at TechEd, and most of what we covered in our discussion dealt with the new features in these updated products, where the IT industry was heading, and the growing importance of PowerShell. (Be sure to check out our What’s New in Windows Server 2012 R2 and Windows Server 2012 Hyper-V R2 for more info on these updates. ) Jeff James:  To get this started, could you give us an overview of the announcements made today and Microsoft's vision for the future of the IT industry, and where Microsoft would like IT pros to focus their attention? Jeffrey Snover:  Sure. The things we announced today were, first Windows Server 2012 R2, System Center 2012 R2, and then the I'm sure we have some other ones, but those are the ones that I focused in on. These technologies allow us to have an integrated platform that then can be deployed in these three clouds. The three clouds, the whole notion of it is that the different clouds have different attributes. A customer running a private cloud has infinite control. He can decide what hardware he wants to run it on, he can design the... --- ### System Center 2012 SP1 - Orchestrator: Disk Maintenance and Runbooks > System Center 2012 SP1 - Orchestrator | Learn to use Orchestrator's disk maintenance capabilities with runbooks and PowerShell in part 2 of this handy series! - Published: 2013-09-30 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-disk-maintenance-runbooks/ - Categories: System Center - Tags: Automation, Disk Maintenance, Orchestrator, PowerShell - Article Type: Overview Admit it: Nobody likes maintenance. In pt. 2 of this series, discover how Orchestrator's disk maintenance works with runbooks and PowerShell. Welcome back, in this post we will continue where we left off on our last post on System Center 2012 Sp1 - Orchestrator and disk maintenance, completing our remaining runbooks and adding in some PowerShell to assist in the process. With the Archive runbook already created, in this second post, we will guide our way through the remaining three runbooks needed to complete the project. System Center 2012 SP1 - Orchestrator: Purge Files Runbook The second runbook I create will be called 2. 3 Purge Files. This runbook will accept the details of the purge job, including the source and age of the files for purging. On the canvas I will place and hook up the following: Add an Initialize Data activity to accept in the parameters for the job. Next, I use a Run . NET Script activity to do the actual archival, which I rename to Purge Files. And finally I will add two Return Data activities, first for a successful execution, which I rename to Success. Second, for a failed execution that I also rename, this time to Failure. Starting with the Initialize Data Activity I configure the following properties: Details page (Add three parameters as follows) Name: SourcePath, Type: String Name: SourceMask, Type: String Name: Age, Type: Integer Next, on my Purge Files activity I define the following setting: Details page Language Type: Powershell Script: $groomingFolder = {SourcePath from “Initialize Data”}{SourceMask from “Initialize Data”} $groomingAge = {Age from “Initialize Data”} function... --- ### Upgrading to Windows 8.1 from Windows 8 > Want Windows 8.1? Discover how to upgrade to Windows 8.1 from Windows 8 using this easy step-by-step tutorial. - Published: 2013-09-30 - Modified: 2024-09-04 - URL: https://petri.com/upgrade-to-windows-8-1/ - Categories: Windows 8 - Article Type: Overview Want Windows 8.1? Check out our step-by-step walkthrough, showing you how to upgrade Windows 8.1 from Win8. This article is a complete walkthrough on the steps taken when upgrading a Windows 8. 1 installation from Windows 8. First, we start with a sample demo machine I created for this demonstration. It runs Windows 8 Enterprise edition and it was fully updated prior to the upgrade process. Laptop notice: If you're using a laptop, I would strongly suggest that you plug it to a power adapter before you start the upgrade process. New Features in Windows 8. 1 The list of new and upgraded features in Windows 8. 1 is beyond the scope of this article. See the following Technet article for a complete list: Windows 8. 1 - What's New, IT Pro Features, Devices, UI. Reverting to Previous Versions of Windows Note that once you perform the upgrade, you will not be able to uninstall or revert back to your previous version of Windows. You will need to re-install your computer with the previous OS from a recovery disk or from the original media provided by the manufacturer. How to Upgrade to Windows 8. 1 To get started you need to place the Windows 8. 1 media in the DVD drive. If it is an ISO file, mount it and then wait a couple of seconds for autorun to start on its own (or you could start it yourself). The Install Windows dialog box will appear as shown below.   Next, you will be prompted to perform a Windows Update. Next, you will need to enter... --- ### Configuring Cluster-Aware Updating in Windows Server 2012 > Cluster-Aware Updating | Learn to configure Cluster-Aware Updating (CAU) in Windows Server 2012 in this how-to article, including prerequisites and pre-staging! - Published: 2013-09-30 - Modified: 2024-09-04 - URL: https://petri.com/configure-cluster-aware-updating-windows-server-2012/ - Categories: Windows Server 2012 - Tags: CAU, Cluster-Aware Updating, Failover Clustering, Hyper-V, Virtualization - Article Type: How To Learn to configure the automated Cluster-Aware Updating (CAU) in Windows Server 2012 in this handy how-to article. Windows Server 2012 (WS2012) introduced Cluster-Aware Updating (CAU) to allow each member of a cluster be paused, drained of highly available (HA) roles, patched, and rebooted in an orchestrated manner. Without CAU, you will probably be patching your clusters manually (which rarely happens), and in the case of Hyper-V clusters, CAU will leverage Live Migration to ensure that services have zero downtime. We will be implementing a number of steps: Prerequisites: Getting the environment and servers ready Prestaging a computer account: This will be for a HA role that is used by the cluster to orchestrate the CAU patching process. Configuring CAU Testing and monitoring CAU patching CAU Prerequisites There are a number of prerequisites for installing and maintaining CAU on your clusters. Each cluster node should be configured with: Enabled WMI: This is the default on WS2012. You can run Set-WSManQuickConfig to enable WMI if it is disabled. Enable Windows PowerShell 3. 0 and Windows Powershell remoting: This is also the default on WS2012. PowerShell is a Server Manager role, and you can use Enable-PSRemoting to enable remoting. . Net 4. 5: This is also installed by default (Server Manager) on WS2012. Remote Shutdown firewall rule: You must enable the Remote Shutdown inbound rule in Windows Firewall. The PowerShell option is Set-NetFirewallRule -Group "@firewallapi. dll,-36751" -Profile Domain -Enabled true. You will need a location for your nodes from which to download the updates. Unfortunately System Center Configuration Manager does not support CAU yet. The recommended managed solution will be to... --- ### Three Mistakes that are Hurting Microsoft's Mobile Efforts > Microsoft has released details of the new Surface 2 and Surface Pro 2 tablets. Will these new devices offer enough to reverse Microsoft's mobile fortunes? - Published: 2013-09-27 - Modified: 2024-11-19 - URL: https://petri.com/three-mistakes-that-are-hurting-microsofts-mobile-efforts/ - Categories: Mobile - Tags: Editor's Pick, Microsoft Surface, Microsoft Surface Pro, Microsoft Surface RT, Surface 2, Surface 2 Pro - Article Type: Opinion Microsoft has released details of the new Surface 2 and Surface Pro 2 tablets. Will these new devices offer enough to reverse Microsoft's mobile fortunes? Microsoft took the wraps off the new Surface 2 and Surface Pro 2 tablets this week, and the company undoubtedly hopes that both products will fare better than their predecessors. Both products feature enhanced processors, improved battery life, and other noteworthy improvements. Yet as I looked through details of the announcements, I couldn't help but think that Microsoft is continuing to make the same mistakes that contributed to the massive $900 million write-down debacle of the original Surface RT. I also think that Microsoft's problems in the tablet and mobile space can't be solved simply by releasing new devices with faster processors; Microsoft had made significant mistakes with its mobile product strategy that may take years to untangle. I'm saying this as an owner and avid user of both a first-generation Surface Pro and Windows 8. I use the Surface Pro on a daily basis for work and for personal use, and think the device has merit. Microsoft tooks the wraps off the new Surface 2 and Surface Pro 2 at a press event in New York City earlier this week. (Photo: Microsoft) The Surface Pro aside, Microsoft has made a series of questionable product development and marketing decisions over the last few years that have left Microsoft's tablet strategy -- and client OS efforts -- in disarray. Here are three of what I think are the biggest mistakes that could take Microsoft years to overcome. Mistake #1: Forcing a touch-based OS on mouse and keyboard users The... --- ### Getting Started with vSphere PowerCLI: PSDrives > VMware vSphere PowerCLI | Learn how best to use PSDrives in vSphere PowerCLI in part 4 of this multi-part series! - Published: 2013-09-27 - Modified: 2024-09-04 - URL: https://petri.com/vsphere-powercli-psdrives/ - Categories: VMware - Tags: cmdlets, Intermediate, PowerCLI, PSDrives - Article Type: Overview More PowerCLI! In part 4 of this multi-part series, find out how to use PSDrives in vSphere PowerCLI We're back with our multi-part series on VMware's vSphere PowerCLI, a free snapin you can use to manage your VMware infrastructure. Today we'll go over PowerCLI and PSDrives. But if you need to back up: In part one, we took a look at downloading and installing PowerCLI. In part two, we went through the steps of setting up and configuring PowerCLI. Later, in part five I'll create a new VM. And finally, in part six I show you how to use PowerCLI to manage your ISO files. ) The PSDrives that you get with PowerCLI are perhaps the most compelling feature. You can use the same file system commands to manage and manipulate the files related to your VMware infrastructure. I hope you are beginning to see, if you haven’t already, that PowerShell is becoming the only management tool you need to learn. Installing PowerCLI: Providers When you install PowerCLI, one of the new goodies you get is a provider. Actually, you get two providers. ​ PS C:> get-psprovider vim* Name                 Capabilities              Drives ----                 ------------              ------ VimDatastore         ShouldProcess             {vmstores, vmstore} VimInventory         Filter                    {vis, vi} These providers are what make all of the PowerCLI magic possible. You can read more about the VimDatastore provider. ​ PS C:> help vimdatastore Sadly, there is no corresponding help topic on the VimInventory provider. Nevertheless, what this means for you is that you can navigate your VMware infrastructure as if it were a file system. vSphere PowerCLI PSDrives When... --- ### Top 5 Features of VMware vSphere 5.5 > Check out our top 5 features in vSphere 5.5, including VMware SSO updates, VM latency sensitivity, and expanded vGPU support. - Published: 2013-09-26 - Modified: 2013-09-26 - URL: https://petri.com/vmware-vsphere-5-5-top-features/ - Categories: VMware - Tags: vCenter, vSphere 5.5 - Article Type: Overview VMware's vSphere 5.5 finally dropped! Check it out as we discuss our top 5 features in vSphere 5.5, including VMware SSO updates and expanded vGPU support. The release of VMware's vSphere 5. 5 is finally here! With that in mind, I put together a list of the five top vSphere 5. 5 features that I'm most looking forward to. 5 Great vSphere 5. 5 Features 1. VMware SSO updates – Lets just say that Single Sign On (SSO) was a big of a challenge in vSphere 5. 1. This caused some customers a few sleepless nights and scared others off from upgrading to 5. 1. Well the good news is VMware has rearchitected SSO in vSphere 5. 5 and it does not suck anymore. Check out this other post I wrote on SSO in vSphere 5. 5. 2. Support for 62TB VMDK – This feature is not required by a majority of VMware customers, but those who need it have been asking loudly for it for a while now. The good news is that you will not be able to create a 62TB VMDK now. So no more need to look at an RDM, create extents at the OS level for multiple smaller disks, or consider using in guest iSCSI. Those were some of the leading options in past for use cases that required these large disks. 3. VM latency sensitivity – Much like the large disks, many customers won't make use of the new low latency features right away. But as more of the remaining difficult-to-virtualize applications continue to fall and be run on VMware, this feature is sure to help. You will now have... --- ### Making a Windows Server 2012 Domain Controller a Global Catalog Server > Learn to promote a Windows Server 2012 domain controller as a global catalog server using Active Directory Site and Services in this Ask an Admin article! - Published: 2013-09-26 - Modified: 2024-09-24 - URL: https://petri.com/make-windows-server-2012-domain-controller-a-global-catalog/ - Categories: Active Directory (AD) - Tags: Ask an Admin, Windows Server 2012, WS2012 - Article Type: How To In this Ask an Admin, find out how to make a Windows Server 2012 DC as a global catalog server using Active Directory. So, how do I make a WS2012 domain controller into a global catalog server? A global catalog server (GC) contains information about objects from all domains in an Active Directory forest. When you promote Windows Server 2012 to be a domain controller (DC), the option to make the new DC a global catalog server is selected by default. If you choose not to do this at the time of promoting the server to a DC, you can make the DC a global catalog server at a later stage. Single-Domain Forest In an Active Directory forest where there is only one domain, every DC can be a global catalog server without affecting performance. GCs are used when a client requests information about AD objects in different domains to avoid directing the queries to DCs in different domains until the right domain is located. While DCs in a single-domain forest contain information about all AD objects, GC searches occur on a different port to standard AD queries, so you should configure every DC to be a global catalog server for load-balancing. If you make use of Universal Groups in AD, a global catalog is required for domain logons. Multiple-Domain Forests In general, you should consider having at least one global catalog server per AD site; but this will depend on whether clients and applications in a site need to look up information from different domains. If no GC is available, AD operations could be significantly slower if search queries... --- ### Using System Center 2012 SP1 Orchestrator for Log and Disk Maintenance > System Center 2012 SP1 - Orchestrator | Learn more about Orchestrator's disk maintenance capabilities, including making a storage maintenance plan. - Published: 2013-09-25 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-disk-maintenance/ - Categories: System Center - Tags: Automation, disk management, Orchestrator, PowerShell - Article Type: Overview System Center 2012 SP1 - Orchestrator can be the IT assistant you never had. Learn about Orchestrator's disk maintenance capabilities and how to use it! Now that you've started to understand System Center 2012 SP1 - Orchestrator and its power, in this post I'm going discuss Orchestrator's disk maintenance, and I'll demonstrate why Orchestrator is like the IT assistant you never had. One of the jobs which drives me nuts is the maintenance of logs and data on my hosts. Take Exchange for example: This software in my production environment is more than happy to generate over 1. 2Gb a day of logs per server just for users connecting over HTTPS. As you can appreciate, it doesn't take too many days to start starving the server for storage, and deleting these logs isn't an option, so they must be archived. Once a week this process is executed manually by myself or a member of my team. As these are live systems, we need to keep an eye on the servers while the 10Gb on average logs are archived away – which is like watching paint dry. Due to the size of this solution, I am going to break the post into two parts, so let's get this going. System Center 2012 SP1 - Orchestrator and Disk Maintenance With my trusted friend Orchestrator, I have taken the opportunity to delegate this task to its ever-capable hands. To save time, Orchestrator is willing to help by running this process for me on a nightly basis, reducing the impact even further. In addition, the list of servers that require maintenance never appears... --- ### Sample Converged Network Designs for Hyper-V Hosts > Converged Network Designs for Hyper-V Hosts | Check out these scenarios that will help you design converged network implementations in Hyper-V hosts. - Published: 2013-09-25 - Modified: 2024-09-04 - URL: https://petri.com/converged-network-designs-hyper-v-hosts-example/ - Categories: Hyper-V - Tags: networking, Virtualization, Windows Server 2012, Windows Server 2012 R2 - Article Type: Overview Learn by example as we show you scenarios that will help you design converged network implementations in Hyper-V hosts. Over the past few weeks, I've discussed converged networks and I've shown you how to design a converged network. In this article I will set out some scenarios that will lead you to the design of some alternative converged network implementations in Hyper-V hosts. Converged Network Designs: Non-Clustered Host With SMB 3. 0 Storage In this example, a hosting company is deploying a new public cloud based on Windows Server 2012 (WS2012) with an eye on eventually upgrading to Windows Server 2012 R2 (WS2012 R2). The following table translates customer requirements into design features. Requirement Design Scale-Out File Server storage Two networks will be required because it's a requirement for SMB Multichannel to use two NICs on a cluster node. SMB Direct RDMA-capable NICs (rNICs) are required for the storage networks. Rapid mobility Live migration must happen quickly. The hosts will be densely populated so VMs must drain quickly during maintenance. Merge the live migration network with the storage network to avail of 10 Gbps NICs. Tenant isolation The tenants of this public cloud will be physically isolated. This means that infrastructure networks cannot be converged with the VM network. Maximized convergence The management, cluster, and backup networks can be converged with live migration and storage. Densely populated hosts This is a good indication that dVMQ should be used on the VM network. RSS/dVMQ RSS will be used to maximize the effectiveness of SMB Multichannel on each storage network. This is incompatible with dVMQ which will be used... --- ### Getting Started with PowerCLI: Start and Shutdown Virtual Machines > VMware vSphere PowerCLI | Learn to start and shutdown virtual machines with vSphere PowerCLI in part 3 of this multi-part series! - Published: 2013-09-24 - Modified: 2024-09-04 - URL: https://petri.com/vsphere-powercli-start-shutdown-vm/ - Categories: VMware - Tags: Intermediate - Article Type: How To In part 3 of this series, find out how to start and shutdown VMs using vSphere PowerCLI, the handy free PowerShell snapin. Over the last few articles I’ve been introducing VMware's vSphere PowerCLI. This is a PowerShell snapin that you can use to manage your VMware infrastructure. If you’ve missed the earlier articles you might want to quickly get caught up: In part one, we took a look at downloading and installing PowerCLI. In part two, we went through the steps of setting up and configuring PowerCLI. Next time, in part four I'll go over PowerCLI and PSDrives, and in part five I created a new VM. Finally, in part six learn to use PowerCLI to manage your ISO files. Previously I connected to my VMware server. ​ PS C:> add-pssnapin vmware. vimautomation. core PS C:> connect-viserver esx. jdhitsolutions. local Now I want to work with the virtual machines. Today I'll show you how to retrieve virtual machines and how to start and shutdown VMs. vSphere PowerCLI: Get Virtual Machines The command to retrieve the virtual machines is pretty straightforward. ​ PS C:> Get-VM Name                 PowerState Num CPUs MemoryGB ----                 ---------- -------- -------- Globomantics HyperV  PoweredOff 1        4. 000 ResearchDC           PoweredOff 2        2. 000 Globomantics Mail    PoweredOff 2        3. 000 Globomantics Web     PoweredOff 1        2. 000 Win7                 PoweredOff 1        0. 500 MyCompany XP         PoweredOff 1        0. 375 Globomantics DB      PoweredOff 2        1. 500 R2 Server Core       PoweredOff 1        1. 000 Win7 Baseline        PoweredOff 1        0. 500 MyCompanyDC          PoweredOff 2        0. 820 One thing to be aware of is that the Hyper-V PowerShell module also has a Get-VM cmdlet. But I don’t worry about a name collision because I run PowerCLI in a PowerShell... --- ### Is VMware Horizon Workspace Maturing Fast Enough? > Learn why our writer thinks VMware needs to push Horizon Workspace even harder to make their updates worthwhile. - Published: 2013-09-24 - Modified: 2024-11-19 - URL: https://petri.com/vmware-horizon-workspace-slow-progression/ - Categories: VMware - Tags: Horizon Workspace - Article Type: Opinion The VMware Horizon Workspace 1.5 upgrade just ain't cutting it, according to our writer. Find out why VMware needs to push Horizon harder in this op-ed. We are nearly a month post-VMworld 2013 now and I'm still a bit shocked by the lack of End User Computing (EUC) news announced. Even though VMware has talked about how committed they are to the EUC space, there has been only a single update since they released VMware Horizon Suite back in March. (Editor's note: Learn more about the changes to Horizon Suite's licensing in "VMware Horizon Suite Licensing Explained. ") VMware Horizon Workspace: Not Enough Progress In the weeks leading up to VMworld they released Horizon Workspace 1. 5. This dot release did not add much functionality, but what it did add was the initial release of their mobile device management solution. But it only included support for Android, and the Apple IOS support that was due was held back. VMware is now re-architecting to support the updated features built into the newly released IOS7. The mobile management solution is disappointing so far because of the following reasons: Limited number of supported devices and cellular carriers are slow to adopt. Does not seem to support Android-based tablets yet, only Android phones. The overall features included are low, which is to be expected in a version 1 release. But with other competitors much further down the road with fully baked solutions, this leaves VMware stalled at the starting line. (Image via VMware. ) I'm not sure when the next version of Horizon Workspace will be released, but VMware needs to make a big leap in... --- ### Restrict Access to the Windows Store in Windows 8 and Server 2012 > Learn how to restrict user access to the Windows Store in Windows 8 and Windows Server 2012 using Group Policy. Just follows these easy steps! - Published: 2013-09-24 - Modified: 2024-09-24 - URL: https://petri.com/manage-access-windows-store-in-windows-8-server-2012/ - Categories: Windows Server 2012 - Tags: Ask an Admin, group policy, Windows 8, Windows Store - Article Type: How To Prevent your users and client computers from accessing Windows Store! Learn how using these easy steps in this Ask an Admin. How can I manage user access to the Windows Store? Users who want to purchase or download an app from the Windows Store must use a Microsoft account, i. e. an account that is linked to a Microsoft identity, such as username@hotmail. com. By default, if a domain user tries to download or purchase an app, they are able to link a Microsoft account to their domain logon. Fortunately, if your organization decides that you want to prevent users from downloading apps from the Windows Store, there is a Group Policy setting that allows you to disable it across all PCs in the domain. By default, Group Policy settings for the Windows Store don’t appear if you create a policy from Windows Server 2012. The best way to create the policy is using the Remote Server Administration Tools (RSAT) from a Windows 8 machine that is joined to your domain, or to install the Desktop Experience components on Windows Server 2012, although this is not recommended unless you actually have some use for desktop features on your server. Disable the Windows Store To switch off the Windows Store, open the Group Policy Management Console (GPMC) on Windows 8 (with RSAT installed), using a domain account that has permission to create new Group Policy Objects (GPOs). In the left pane of GPMC, expand your AD forest and domain. Right-click the Group Policy Objects folder and select New from the menu. In the New GPO dialog, name the GPO Disable Windows... --- ### Managing IIS with PowerShell: Creating New Sites > Enabling IIS Remote Management with PowerShell | In part 2 of our series, learn to manage IIS remotely using PowerShell, and speed up IIS site creation. - Published: 2013-09-23 - Modified: 2024-09-04 - URL: https://petri.com/enable-iis-remote-management-powershell-create-new-sites/ - Categories: PowerShell - Tags: app pool, IIS, remote management - Article Type: How To We're back with our look at remotely managing IIS using PowerShell! In part 2, learn to create new IIS websites. We're back with our look at enabling IIS remote management using PowerShell! Previously in part one I showed you how to create an application pool. Today I'll show you how you can speed up the site creation on IIS by using PowerShell to create a website and configure the bindings. By the end, you should be ready to either create a script to create your website or just create the website interactively through PowerShell. Managing IIS with PowerShell: Create a Website When I create a website, I have found that there are a lot of steps that I have to repeat for each site. I’ve already shown you how to create an application pool running as an active directory account, and now that the application pool is created, I will create a website that runs in the application pool. I also need to create a folder for the website files and I’ll assign file permissions to the user account that runs the application pool. I usually have a site that runs behind a proxy server or load balancer, so I have found that having the site be bound to a secondary hostname that is not routed through the proxy server is great for troubleshooting any issues with the routing rules. So here are the list of items to configure: Find the application pool identity Create a folder for the website Assign read permissions for the app pool ID to the site folder Create the website in IIS... --- ### How to Design Converged Networks > Discover how to design converged networks in WS2012 and WS2012 R2! Learn what's necessary in physical storage and bandwidth, and how to start drawing designs. - Published: 2013-09-23 - Modified: 2024-09-04 - URL: https://petri.com/design-converged-networks/ - Categories: Hyper-V - Tags: Hyper-V, networking, storage, Virtualisation, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Find out how to design converged networks, including considering physical storage, bandwidth, hardware, and more! Over the past few weeks I have documented the various elements used to make up converged networks in Windows Server 2012 (WS2012) and Windows Server 2012 R2 (WS2012 R2). In this article I plan to give you some guidance on designing converged networks: That is, how to design your servers and hosts to use this networking concept, how you can make use of larger bandwidth networking at a lower cost, and how to make more flexible and easy to configure deployments. There is no single correct design, as the level of correctness is relative to your requirements. However, there are incorrect designs in which certain features will not work, and there are some that are incompatible with others. Designing Converged Networks: The Process You must do some homework before you can design converged networks. There are a number of questions that you should ask yourself when designing converged networks. What Will Be My Physical Storage? In Hyper-V or Windows Server, you have a number of options for physical storage. The following storage connection protocols are not candidates for convergence because they are not TCP/IP based: Direct Attached Storage Fiber Channel (FC) SAS Fiber Channel over Ethernet (FCoE) is sometimes used in blade servers to converge fiber channel storage connectivity with network connections. However, this is done using expensive hardware and Windows Server cannot replicate this. If you plan to use iSCSI or SMB 3. 0 as a storage connection protocol then you can converge these networks with the... --- ### System Center 2012 SP1 - Orchestrator: Sample Runbook Restrictions > System Center 2012 SP1 - Orchestrator | Learn to create sample runbook restrictions that restrict users' access to services in part 3 of this series. - Published: 2013-09-23 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-sample-runbook-restriction/ - Categories: System Center - Tags: Active Directory, Automation, EUPSCO, Orchestrator, Runbooks, Security - Article Type: Overview In part 3 of System Center 2012 - Orchestrator sample series, discover how to create sample runbook restrictions that restrict users' access to services. The final step in our three-part sample series illustrating the flexibility of combining the modules and components of System Center 2012 SP1 -Orchestrator with the free portal from ITQ – the EUPSCO (End User Portal for System Center Orchestrator) – we are going to address the added step that we should execute to restrict access to our services to only the group of people with whom the offering is relevant. (Editor's note: In case you need to catch up, the other two articles in this sample series are: System Center 2012 SP1 – Orchestrator: Sample Runbook Creation and System Center 2012 SP1 – Orchestrator: Sample Runbook Publishing. ) System Center 2012 SP1 - Orchestrator and Restricting the Service To implement the restrictions, we are going to use a regular security group from Active Directory. AD Group In my sample environment I have created a group called "! HR Team" and added the user which we created while validating the scenario in our last post as a member of this group. EUPSCO Next, open your browser and log into the EUPSCO portal, with administrative credentials Click on the menu item Services to be presented with the list of services you have defined. From this list, select the service you wish to restrict, for example "Add New Employee. " The page will update listing the five configuration categories available for the service. Click on the Category Security. In the Search field, enter the string you plan to match (for example, ! HR). The page will... --- ### Getting Started with PowerCLI: Setup and Configuration > VMware vSphere PowerCLI | Learn to setup and configure vSphere PowerCLI, VMware's PowerShell management solution, in part 2 of this series! - Published: 2013-09-20 - Modified: 2024-09-04 - URL: https://petri.com/vsphere-powercli-setup-configuration/ - Categories: VMware - Tags: Intermediate - Article Type: How To In part 2 of this series, learn to setup and configure vSphere PowerCLI, VMware's free PowerShell snapin. In part one of this multi-part series, we took a look at downloading and installing VMware vSphere PowerCLI, the free PowerShell snapin for managing your VMware infrastructure. Now we need to do something with it. Today I'll go through the steps of setting up and configuring PowerCLI. (Need to catch up? Check out the rest of this series! In part three: use PowerCLI to start and shutdown VMs. In part four: PowerCLI and PSDrives, and in part five: created a new VM. Finally, in part six: use PowerCLI to manage your ISO files. ) Add Snapin to PowerShell Before we can do anything we need to add the snapin to our PowerShell session. PS C:> add-pssnapin vmware. vimautomation. core If you are ever in doubt about what version you are running, the snapin has a handy command. PS C:> get-powercliversion PowerCLI Version ---------------- VMware vSphere PowerCLI 5. 1 Release 2 build 1012425 --------------- Snapin Versions --------------- VMWare AutoDeploy PowerCLI Component 5. 1 build 768137 VMWare ImageBuilder PowerCLI Component 5. 1 build 768137 VMware License PowerCLI Component 5. 1 build 669840 VMware VDS PowerCLI Component 5. 1 build 1012428 VMware vSphere PowerCLI Component 5. 1 build 1012428 Now we are ready to manage our environment, but first we need to connect to a server. PowerCLI: Connect to Server The cmdlet we need is called Connect-VIServer. Take some time to look at full help and examples. The PowerCLI cmdlets also support online help so you can run a command like this: PS C:> help... --- ### VMworld 2013: 7 Virtualization Vendors to Watch > Check out 7 of the hottest vendors and products at VMworld 2013. We walked the show floor and polled VMware experts to highlight the best ones. - Published: 2013-09-20 - Modified: 2024-11-19 - URL: https://petri.com/vmworld-2013-virtualization-vendors-to-watch/ - Categories: VMware - Tags: VMWorld 2013 - Article Type: News What were some of the hottest companies and products at VMworld 2013? Check out our list as we polled VMware experts to highlight the ones to watch. One of my favorite things to do at any tech trade show is to discover new companies and new products that bring innovation and new ideas into the market. VMworld 2013 was no different, and the expo hall was packed with vendors both large and small. Based on my own vendor briefings, some discussions with VMworld attendees, and input from Petri IT Knowledgebase friends and contributors like David Davis, Brian Suhr, and Scott Lowe, I'd like to highlight seven vendors in the VMware partner ecosystem that are creating some impactful new products and services. This is by no means an exhaustive list, but rather a highlight of some VMware partners and some of their noteworthy products, listed in alphabetical order by vendor name. 7 Virtualization Vendors to Watch 1. Barracuda Networks: Copy There are several cloud-based storage services for consumers and businesses alike, ranging from the ubiquitous DropBox to Microsoft's SkyDrive and Google Drive. . Barracuda Networks has entered the fray with Copy, their own storage service that aims to make a play for enterprise users looking for more security and manageability than DropBox can provide. According to Guy Suter, Barracuda's GM of their storage business, Copy was updated just before VMworld with a host of new business-friendly features, like improved controls over shared data, enhanced security, and better insight into employee Copy accounts. The first 15GB of storage is free, and you can find out more at Copy. com. 2. Eaton: Intelligent Power Manager We all know that virtualization... --- ### Administering IIS with PowerShell: Creating an Application Pool > Learn how to enable IIS remote management using PowerShell! In part 1 of a new series, discover how to create application pools. - Published: 2013-09-19 - Modified: 2024-09-04 - URL: https://petri.com/enable-iis-remote-management-powershell-create-application-pool/ - Categories: PowerShell - Tags: IIS - Article Type: How To Remotely manage IIS with the magic of PowerShell! In part 1 of a 2-part series, learn to create an app pool. This article shows you how to use PowerShell to manage IIS (that is, Microsoft’s Internet Information Server) on a remote system. The power and flexibility that PowerShell offers us as administrators can really improve our overall service to our customers, allowing us to do more in less time and with fewer mistakes. I’m going to show you how to create three application pools, each with the same configuration and each running under a different application service account from active directory. The overall process for doing this is as follows. I'll further describe each step below. Open PowerShell and load the WebAdministration module. Create a hashtable for holding our data – the application pool names, the username and the password. Create the Application Pools. Set the Application Pool user identity. 1. Enable IIS Remote Management: Getting PowerShell Ready Start an elevated PowerShell session If you run as a standard user and you want to run PowerShell as your administrator account, start the shell as your admin account, then start the elevated process from inside PowerShell. ​                   Start-Process PowerShell. exe –Verb Runas The new shell will start in an elevated session. Import the WebAdministration module We’ll be using a special PowerShell drive only available when the webadministration module is available. You only need to add the module to your PowerShell session, and the IIS: drive will be made available. ​ Import-Module WebAdministration Now that the WebAdministration module is loaded, you’ll find all of the application pools for the IIS... --- ### Getting Effective Audit Policy Settings in Windows Server 2012 - Published: 2013-09-19 - Modified: 2024-09-24 - URL: https://petri.com/get-effective-audit-policy-settings-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Advanced Audit Configuration Policy, Auditing - Article Type: How To In this Ask an Admin, discover how to use auditpol to get effective audit policy settings in Windows Server 2012! How can I get the effective audit policy settings in Windows Server 2012? Newer versions of Windows Server have two different places in policy where auditing can be configured. The basic audit configuration settings that most system administrators will be familiar with are located in Local and Group Policy in the following location: Computer ConfigurationPoliciesSecurity SettingsLocal PoliciesAudit Policies. New advanced auditing capabilities, introduced in Windows Vista and Server 2008, provide a granular subset of the basic audit settings and can only be configured using the auditpol. exe command-line tool. Microsoft added policy settings in Windows 7 and Server 2008 R2 that allowed administrators to use Local and Group Policy to configure advanced auditing. The new settings are located at Computer ConfigurationPoliciesSecurity SettingsAdvanced Audit Policy ConfigurationAudit Policies. Determine Effective Auditing Policy If you have auditing configured in Local and Group Policy, but are not sure which settings are effective on your machines, you can run auditpol to determine the exact configuration. Don’t rely on Group Policy reporting to give you a clear picture of the actual settings. Only auditpol can read the HKEY_LMSecurityPolicyPolAdtEv registry key that determines the effective audit settings. auditpol. exe /get /category:* Disable Advanced Auditing It’s possible to configure both basic and advanced audit configuration at the same time, but if advanced audit policy is configured, it will always override basic auditing. If you want to change this behavior, you can set Audit: Force audit policy subcategory settings (Windows Vista or later) to... --- ### How to Install and Run VisualEsxtop Fling from VMware Labs > VMware VisualEsxtop Fling | Learn about about one of the latest tools to come out of the VMware labs: VisualEsxTop, a handy troubleshooting tool. - Published: 2013-09-19 - Modified: 2024-09-24 - URL: https://petri.com/install-run-vmware-visualesxtop-fling/ - Categories: VMware - Tags: Fling, VMware Fling, VMware Labs - Article Type: How To Find out about VisualEsxtop, one of the latest tools to come out of the VMware labs! Learn to install and run VisualEsxtop in this guide. If you have been a VMware admin for any period of time you have probably heard about esxtop, or maybe you have had really good luck and never needed it. Either way, I'll go ahead and explain what esxtop is. But my real focus today is learning how to use the VisualEsxtop Fling from VMware labs, including how to install and run VisualEsxtop. This new tool brings a GUI to the popular command line tool. What Is Esxtop? To make this as simple and clear as possible, esxtop is a command line-based tool from VMware. It is a very important tool for troubleshooting and gathering information about your environment. I've quoted a more detailed description below from the VMware site: "Esxtop allows monitoring and collection of data for all system resources: CPU, memory, disk and network. When used interactively, this data can be viewed on different types of screens; one each for CPU statistics, memory statistics, network statistics and disk adapter statistics. In addition to the disk adapter statistics in earlier versions, starting with ESX3. 5, disk statistics at the device and VM level are also available. In the batch mode, data can be redirected to a file for offline uses. " What Is VisualEsxtop? VisualEsxtop is a... --- ### Mount a VHD or ISO File in Windows Server 2012 and Windows 8 > Discover how to mount an ISO or Virtual Hard Disk in Windows 8 and Windows Server 2012 in this easy Ask an Admin article! - Published: 2013-09-18 - Modified: 2024-09-24 - URL: https://petri.com/mount-vhd-iso-file-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Ask an Admin, file management, Windows 8, Windows Server 2012 - Article Type: How To Learn to mount .iso and VHD files in Windows Server 2012 and Windows 8 without burning the image to disk in this Ask an Admin! It's easy! How do I mount an . iso file or VHD in Windows 8 or Windows Server 2012? Windows 8 and Server 2012 are the first versions of Windows where it’s possible to natively mount an . iso file, i. e. without needing to download any third-partysoftware. ISO files are used to distribute images that can be burned to removable media. It’s common for IT pros to download these files from sites like Microsoft TechNet when they need to install Windows Server or other products. While the ISO format is a very convenient way to package downloads if you want to burn a DVD, most of the time we want the ability just to open the contents of the ISO file as if it were inserted as removable media in the physical CD-ROM drive. Now it’s possible to mount . iso files in Windows 8 and Server 2012 without burning the image to disk. Mount an ISO file in Windows 8 or Server 2012 (or later) Mounting an ISO file is easy. It works the same way as most third-party utilities that are designed for earlier versions of Windows. Once you’ve downloaded your ISO file, all you need to do is right-click the file and select Mount ISO from the menu. Once the ISO is mounted, you’ll be able to access it from File Explorer (previously Windows Explorer) as if it were a physical disk inserted into the CD ROM drive. To unmount the ISO file, right-click the DVD (or CD) drive... --- ### System Center 2012 SP1 - Orchestrator: Sample Runbook Publishing > System Center 2012 SP1 - Orchestrator | In this tutorial, learn about sample runbook publishing so that it can be used by HR and take advantage of automation. - Published: 2013-09-18 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-sample-runbook-publishing/ - Categories: System Center - Tags: Automation, EUPSCO, Orchestrator, Runbooks - Article Type: Overview In this Orchestrator tutorial, learn about sample runbook publishing, which can take advantage of automation and free IT up from HR activities. In the last post ("System Center 2012 SP1 – Orchestrator: Sample Runbook Creation"), we completed the first step in implementing a sample solution by designing and testing a simple runbook to create a user account and automatically adding this account to a group in AD for us. Today we will address the second part of the objective, in System Center 2012 SP1 - Orchestrator, which is to publish the runbook so that it is available to be used by our HR team, thus eliminating the requirement for IT to be involved in the setup of new accounts, and taking advantage of automation. System Center 2012 SP1 - Orchestrator and Connecting to EUPSCO As we do not yet have a System Center Service Manager deployment in place, we will utilize the free End User Portal for System Center Orchestrator (EUPSCO), which we previously covered ("System Center 2012 SP1 – Orchestrator: EUPSCO Installation"). So, get EUPSCO installed and let's get started. (The download link can be found in the EUPSCO link above. ) Launch your browser and connect to your EUPSCO site as an Administrator. From the Menu options presented on the left of the page, select the option Services. On the Services page, click on New to have the page update with new fields. Starting in the Service Details section, we can provide some descriptive information for our new service offering. In the Name field, type a suitable name, for example, "Add new Employee. " In the Description field, again... --- ### Single Sign-On (SSO) Improvements in vSphere 5.5 > vSphere 5.5 and Single Sign-On Improvements | In this article, check out VMware's big improvements in SSO and the updated vSphere 5.5. - Published: 2013-09-17 - Modified: 2024-09-24 - URL: https://petri.com/vsphere-5-5-single-sign-on-sso-improvements/ - Categories: VMware - Tags: SSO, vmware, vSphere - Article Type: Overview Whether you fought with the original SSO or just avoided it, VMware has made big improvements. Check out vSphere 5.5 and SSO changes in this post! One of the biggest improvements in the recently announced vSphere 5. 5 is the updates to Single Sign-On (SSO). This new version of SSO makes me extremely happy and I think it will have the same affect for the customers I work with. The initial SSO attempt in vSphere 5. 1 was... well, lets just say it could have been better. Today I'll cover the changes to this SSO update and why it makes for a better product. vSphere 5. 5, SSO, and Improved Architecture Multi-master – No more working with a primary and secondary architecture with strict database rules. The new SSO product uses a multi-master model for the SSO servers. Built in replication – Replication is now built in and happens automatically between SSO servers within the same domain. Site awareness – There is now the ability within an SSO domain to define sites. Sites would typically be physical data center locations. This makes the architecture a little easier to understand and design for. Adios, SSO Database The big news here is that there is no SSO database any more. This change allows for the improved architecture covered earlier. While the database was not impossible, it did give many admins a rash while trying to setup the first couple of attempts. SSO Installation Updates With the updated version of SSO there is now just a single deployment method. This simplifies things a great deal. The previous version confused many people about when should they use simple,... --- ### How to Lock Down a Remote PowerShell with a Constrained Endpoint > Learn how to configure constrained endpoints in PowerShell 3.0 so that standard users can connect remotely to servers. - Published: 2013-09-17 - Modified: 2024-09-24 - URL: https://petri.com/configure-constrained-endpoints-remote-powershell-access/ - Categories: PowerShell - Tags: Ask an Admin, constrained endpoints, PowerShell 3.0, Windows Server 2012 - Article Type: How To In this Ask an Admin, learn to use constrained endpoints to allow users to connect remotely using PowerShell without granting administrative privileges. How can I use constrained endpoints to lock down remote PowerShell access? When considering whether to allow PowerShell to run on servers, security has been a concern for some system administrators. Despite its powerful and wide-reaching feature set, PowerShell was designed with security in mind from the bottom up, and it is the most secure means of managing Windows Server. In this article, I’m going to show you how to configure a constrained endpoint on Windows Server 2012 to make sure users can only perform a limited set of tasks when connecting to PowerShell remotely. PowerShell remoting is enabled in Windows Server 2012 out-of-the-box, and by default only users with local administrator privileges can connect to the default endpoint. An endpoint is a set of configuration parameters that determine what permissions and features are available to users connecting to PowerShell across the network. Luckily, it’s possible to create your own custom endpoints. For instance, you might like to create an endpoint that allows helpdesk users to connect remotely to a server without local administrator permissions, and to restrict users to performing a limited set of tasks. Create a New Endpoint Login to your server with an account that has local administrator permissions and follow the instructions: Right-click the blue PowerShell icon on the desktop taskbar and select Run as Administrator from the menu. In the PowerShell console, type Get-PSSessionConfiguration and press Enter. This will show you all the existing endpoints on the server. You’ll see the microsoft. powershell... --- ### Creating Converged Networks Using Virtual NICs > Learn to create a converged network with a virtual NIC in the management OS of a Hyper-V host in this quick 'n easy guide! - Published: 2013-09-17 - Modified: 2024-09-04 - URL: https://petri.com/create-converged-network-virtual-nic/ - Categories: Hyper-V - Tags: networking, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Learn to use a previously created QoS-enabled virtual switch to implement converged networks using virtual NICs in this quick guide. In this article we will discuss how you can use a previously created QoS-enabled virtual switch to implement converged networks using virtual NICs in the management OS of a Hyper-V host. Creating Converged Networks: Prerequisites You must have the following requirements in place to make a converged network with a virtual NIC. Windows Server 2012 (WS2012) or Windows Server 2012 R2 (WS2012 R2) Hyper-V deployed on the host. A virtual switch with MinimumBandwidthMode enabled. See our previous post, "Creating a NIC Team and Virtual Switch for Converged Networks," to learn how to configure the virtual switch. Choosing a QoS Mode You have two options for how you implement QoS minimum bandwidth rules: Weight: Each virtual NIC (actually a virtual switch port that moves with the virtual machine) is assigned a share of the available bandwidth. This option is flexible and preferred. Absolute: Each virtual NIC is assigned a specific amount of bandwidth, specified in bits per second. This is the least preferred and least flexible option. Creating and Configuring Management OS Virtual NICs Say you want to create a converged network design such as that shown in the below example: A clustered Hyper-V host with converged networking using virtual NICs. This host uses four management OS virtual NICs for the four required host networks: Management Cluster communications Live Migration (and the 2nd private cluster network) Backup You can create a management OS virtual NIC using PowerShell. The following example will create a virtual... --- ### Maximize Hyper-V Live Migration with 10GbE Network Bandwidth > Learn to maximize a 10GbE network bandwidth to make the most of your Hyper-V Live Migration - Published: 2013-09-16 - Modified: 2024-09-04 - URL: https://petri.com/maximize-hyper-v-live-migration-with-10gbe-network-bandwidth/ - Categories: Hyper-V - Tags: Hyper-V, networking, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2 - Article Type: Overview Learn how to make the most of 10GbE or faster networking to make that Hyper-V live migration quicker in this handy article. Larger virtual machines (up to 1 TB RAM in WS2012 Hyper-V) and denser hosts (up to 4 TB RAM) means that there can be a lot of memory for live migration to copy and synchronize in order to move virtual machines around with unperceivable service downtime. Today I'll show you how to make the most of Hyper-V live migration using 10GbE networking in this article to maximize the 10GbE or faster network bandwidth to make that migration quicker. When 1 Gbps Networking Isn't Fast Enough The live migration of virtual machines copies and then synchronizes the RAM of VMs from one host to another. Imagine that you are running a data center with hosts and virtual machines that have huge amounts of RAM. Load balancing virtual machines, performing preventative maintenance (such as Cluster Aware Updating), or trying to drain a host for unplanned maintenance could take an eternity if you’re trying to move hundreds of gigabytes or even terabytes of RAM around on 1 Gbps networking. This was why it was recommended to look at embracing 10 GbE or faster networking, at least for the live migration network in a Hyper-V cluster. Sadly, even with all the possible tuning, Windows Server 2008 R2 could not get much more than 70% utilization of this bandwidth, and there wasn’t a good way to use this expensive NIC and switch port for more than just live migration. Windows Server 2012 (WS2012) and later make adopting 10 GbE or faster networking... --- ### System Center 2012 SP1 - Orchestrator: Sample Runbook Creation > System Center 2012 SP1 - Orchestrator | Create a sample runbook, a new user account, and add it into a specific group with the help of this tutorial. - Published: 2013-09-16 - Modified: 2024-11-19 - URL: https://petri.com/system-center-2012-sp1-orchestrator-sample-runbook-creation/ - Categories: System Center - Tags: Active Directory, Automation, Integration Packs, Orchestrator, System Center - Article Type: Overview We continue our in-depth look at System Center 2012 SP1 - Orchestrator! Create a sample runbook and a new user account, with the help of this guide. Over the last number of posts we have achieved a lot with System Center 2012 SP1 - Orchestrator and EUPSCO, so congratulations for following along! In this post we're going to demonstrate how this all ties together by creating a simple runbook with which we'll create a new user account -- and add that account into a specific group -- to demonstrate the simplicity of the runbook creation procedure. The next objective is to offer this runbook to the HR team, providing them with the ability to create accounts. Of course we could have just provided access to the Active Directory Administrative Center to achieve the same objective, but with Orchestrator we can easily extend the logic of the runbook to create home folders, enable Lync, Mailboxes, and so on – a procedure we would never consider passing outside our control. In our next post we will utilize the End User Portal for this interaction to implement this second objective. System Center 2012 SP1 - Orchestrator: Creating the Runbook Let's begin in the Runbook Designer to make our "Create Account" runbook. In the Runbook Designer expand the Connections tree, and right-click on the Runbooks node. In the context menu select the option New, then select Folder. In the Connections tree, replace the New Folder place holder with a suitable name for your project, e. g. "1. Create User Account. " Next, select our new folder and right-click to select New... Runbook to create the canvas for our runbook. The... --- ### Getting Started with vSphere PowerCLI > Learn to download and install vSphere PowerCLI, VMware's PowerShell indispensible management solution, in part 1 of this multi-part series! - Published: 2013-09-16 - Modified: 2024-11-19 - URL: https://petri.com/vmware-vsphere-powercli-getting-started/ - Categories: VMware - Tags: Intermediate, PowerCLI, vSphere - Article Type: Overview vSphere PowerCLI, VMware's PowerShell management tool is indispensible. Find out get started with PowerCLI in part 1 of this multi-part series! If your daily job involves work with VMware infrastructure and you are still stuck in the GUI, then you are really missing out. For several years now, VMware has offered a PowerShell management solution that for many VMware professionals has proved indispensable. Over the next few articles I'm going to introduce you to the world of VMware vSphere PowerCLI and demonstrate how easy it is to manage your VMware environment. I’m going to keep it pretty simple, but as you gain experience and familiarity you’ll quickly realize how easy it is to scale. (Need to catch up? Check out the rest of this series! In part two: setting up and configuring PowerCLI. Part three: use PowerCLI to start and shutdown VMs. In part four: PowerCLI and PSDrives, and in part five: created a new VM. Finally, in part six: use PowerCLI to manage your ISO files. ) Downloading and Installing PowerCLI Yes, PowerCLI is PowerShell based,which primarily means typing at a console prompt. But I think you’ll find that even if you have very little PowerShell experience, you can get a lot accomplished with very little typing. Of course, the more PowerShell experience you have, the more you can accomplish. The first thing you need to do is download the latest version of vSphere PowerCLI. Even though the product has the vSphere moniker, you can use it even if you have a single ESXi server. In fact, that is all I will be demonstrating with. So download and... --- ### Is Apple Envy Derailing Microsoft's Smartphone Efforts? > Is Microsoft suffering from Apple envy? Discover why Microsoft needs to relax and focus on selling the strengths of the genuinely capable Windows Phone. - Published: 2013-09-13 - Modified: 2024-09-04 - URL: https://petri.com/apple-microsoft-smartphone/ - Categories: Mobile - Tags: iPhone, iPhone 5C, iPhone 5S, Nokia Lumia 1020 - Article Type: Opinion Microsoft seems to have Apple on the brain. Find out why Microsoft needs to relax the Apple envy and focus on selling the strengths of the Windows Phone. Update: Friday, 9/13/13, 2:07pm MT - Updated to reflect Microsoft blocking access to the Windows Phone videos on YouTube mentioned in this post. When it comes to smartphone platform options, it's becoming increasingly clear that the vast bulk of the market is being divvied up between devices powered by Google's Android and Apple's iOS, with a recent Gartner report putting those OSes at 79% and 14% market share, respectively, for a combined 93% market share based on worldwide smartphone sales to end users in Q2 2013. Microsoft, BlackBerry, Bada, and others are left to fight over the scraps. Admittedly, Microsoft's Windows Phone platform has matured into a powerful, robust environment that can finally be considered at approximate technological parity with the best Android and Apple smartphones. It's a solid platform, and Apple and Android fans would be well advised to give  Microsoft's phone platform another look. Microsoft is gaining ground with Windows Phone, and recently it displaced BlackBerry in smartphone shipments as the number-three smartphone provider. Despite Microsoft's recent gains, some sizable obstacles to wider adoption remain, ranging from a still limited selection of native Windows phone apps, heavy reliance on a single hardware partner (Nokia, whose smartphone business is now owned by Microsoft), and lack of compelling "killer apps" to drive phone adoption. Smartphone market share based on unit sales in Q2 2013 (Source: Gartner) Yet rather than focus their marketing efforts on unseating the struggling BlackBerry from the enterprise, or pointing... --- ### Photography Tips for the IT Pro > Discover what photography tips and photo software recommendations will appeal to photography buffs AND IT pros. - Published: 2013-09-13 - Modified: 2024-09-04 - URL: https://petri.com/photography-tips-software/ - Categories: Hyper-V - Article Type: Overview Think photography buffs and IT pros have nothing in common? Think again! Discover what photo tips and software recommendations will appeal to both camps. You’re probably thinking “I thought this was the Petri IT Knowledgebase? ” As it happens, photography is a common hobby for IT pros.   You’ll find people like Mark Minasi (famous speaker, author, teacher, consultant and journalist), Nathan Winters (Microsoft technical sales, and speaker/author), and myself enjoy photography for the same reason we like IT: There’s a technical challenge in understanding the equipment, getting the most out of it, and pushing ourselves to excel... and we can mix in some IT skills to make the process smoother. In this article I will give you some photography tips, discuss the equipment, and talk how I use photo software and computers to process, store, and backup my images. There should be something here for the family snapper, the prospective photographer, or simply the person who wants to ensure that their family pictures are safe. Photography Vs. "Taking Pictures" There is a distinct difference between a person who takes pictures and a person who is into photography. A person who takes pictures wants to capture moments of their life, be they the first steps of a loved child, sights on a vacation, friends enjoying a night out, a memorable concert, or a “selfie. " The process is usually very simple: point and shoot. Photography is a pursuit of excellence. For some it’s about achieving technical perfection. For others it’s about creating art. For the best, it’s a bit of both. But one thing is clear: Photographers do not just "point and shoot. " They... --- ### System Center 2012 SP1 - Orchestrator: EUPSCO Installation > Discover how to install System Center 2012 SP1 - Orchestrator: EUPSCO with the help of this step-by-step tutorial, including prerequisites and service accounts. - Published: 2013-09-12 - Modified: 2024-11-19 - URL: https://petri.com/system-center-2012-sp1-orchestrator-eupsco-installation/ - Categories: System Center - Tags: Automation, EUPSCO, Orchestrator, Portal - Article Type: Overview Now that you know about System Center 2012 SP1 - Orchestrator: EUPSCO, discover how to install it with the help of this step-by-step tutorial. In a previous post I gave an overview of EUPSCO, short for End User Portal for System Center Orchestrator, a free web application that helps publish and launch runbooks. So without further ado, let's get our hands dirty and deploy this amazing free tool! Today I'll be talking about System Center 2012 SP1 - Orchestrator and installing EUPSCO. EUPSCO Prerequisites and Beginning Installation Prior to actually installing the application, we have some of the regular prerequisites work to complete. This is extremely important for this specific utility, as there is essentially no installer and we have to do all the work manually. But fear not, it's all pretty simple. For the purpose of demonstration, I am going to use a new server to host the application and leverage our existing SQL database server, which is already being utilized by our Orchestrator installation. You are welcome to choose a different SQL server, instance, or even deploy a dedicated install. To begin the installation, start with a standard installation of Windows Server 2012 and add to it the features for . NET 4. 5 Framework, which this application is written to use, and IIS for hosting the application. To keep this simple, the following PowerShell commands will deploy these requirements: ​ Import-Module ServerManager Add-WindowsFeature Web-Default-Doc, Web-Dir-Browsing, Web-Http-Errors, Web-Static-Content, Web-Http-Redirect, Web-Http-Logging, Web-Stat-Compression, Web-Dyn-Compression, Web-Basic-Auth, Web-Digest-Auth, Web-Windows-Auth, Web-Net-Ext45, Web-ASP-Net45, Web-ISAPI-Ext, Web-ISAPI-Filter, Web-Mgmt-Console Service Account As the application is delivered as a web app, we require an account that the... --- ### Updating Windows Management Framework (WMF) on Windows Server 2008/R2 > Learn how to update and install Windows Management Framework (WMF) to version 3.0 in Windows Server 2008 and R2. - Published: 2013-09-12 - Modified: 2024-11-19 - URL: https://petri.com/update-wmf-windows-management-framework-on-windows-server-2008-r2/ - Categories: Windows Server 2008 - Tags: Editor's Pick, PowerShell 3.0, Windows Management Framework 3.0, Windows Management Instrumentation, WMI - Article Type: Overview In this Ask an Admin, find out how to install Windows Management Framework 3.0 (WMF) in Windows Server 2008 and R2. How can I update the WMF on Windows Server 2008 or R2? The Windows Management Framework (WMF) is an important component of modern releases of Windows Server and contains features such as PowerShell, Windows Management Infrastructure (WMI), Windows Remote Management (WinRM), Management OData IIS Extension, and Server Manager CIM Provider. The primary reason for installing the new framework on Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 is so that those servers can be managed using Server Manager in Windows Server 2012, or in the version that comes with the Remote Server Administration Tools (RSAT) for Windows 8. WMF 3. 0 updates the Windows Management Infrastructure (WMI), which is useful for obtaining information and notifications about server configuration, and PowerShell to version 3. 0, which contains many enhancements that can help you reduce the costs of server management. At the time of writing this article, the Windows Management Framework is at version 3. 0. A preview of WMF 4. 0 is also available, but it shouldn’t be used on production servers. You can expect WMF 4. 0 to be finalized by the end of 2013. WMF 3. 0 Compatibility Despite that WMF 3. 0 has long been released for Windows Server 2008 R2 SP1 and Windows Server 2008 SP2, there’s still a list of applications with which WMF 3. 0 is not compatible: System Center 2012 Configuration Manager System Center Virtual Machine Manager Exchange Server 2007 Exchange Server 2010 SharePoint 2010 Small Business Server 2008 Small Business Server 2011... --- ### What Are VMware Cloud Credits? > Learn about the recently announced VMware Cloud Credits program in this article, including how it works and the benefits of using Cloud Credits. - Published: 2013-09-12 - Modified: 2024-09-24 - URL: https://petri.com/vmware-cloud-credits-overview/ - Categories: VMware - Tags: Cloud Credits, vCloud - Article Type: Overview Curious about VMware Cloud Credits? Find out more about this new program, including how it works and its benefits. This week the VMware Cloud Credits program was quietly released, allowing customers to purchase credits to be redeemed for cloud services. These VMware Cloud Credits can be purchased from your VMware Solution Provider Partner. I will dig into how Cloud Credits work and some of the value the program brings. How Do VMware Cloud Credits Work? The recommended method is to work with your VMware partner to calculate the amount of Cloud Credits you will need for your requirements. Cloud Credits can be purchased in one of two ways: as part of an Enterprise License Agreement (ELA) or as a separate product. Once you have purchased Cloud Credits, they can then be used to fund any users identified through your account in the My VMware portal. The next step would be to select an approved vCloud Service Provider. Then sign up and you will be ready to consume services. You can then redeem the cloud credits towards vCloud services. Benefits of Cloud Credits Budget Flexibility – You are able to purchase and manage public or hybrid cloud services in one transaction. You are able to take advantage of budgeting windows to secure cloud services and then consume the credits when business needs arise. Ease of Use – You are able to manage and redeem your Cloud Credits through My VMware a central portal. This will save time from approving individual cloud services requests. Cost visibility and control – By using the management portal companies... --- ### Is 'Touch ID' the Killer Feature of the iPhone 5S? > Check out the new upcoming iPhone 5S and its Touch ID fingerprint scanning feature, speedy 64-bit CPU, an improved camera, and iOS 7. - Published: 2013-09-11 - Modified: 2024-09-04 - URL: https://petri.com/touch-id-iphone-5s/ - Categories: Mobile - Tags: Apple, biometric, iPhone, iPhone 5S, Touch ID - Article Type: Opinion The new iPhone 5S includes 64-bit CPU, an improved camera, and iOS 7. Learn more about the possible breakout feature: Touch ID fingerprint scanning. Apple unveiled the iPhone 5C and iPhone 5S at a press event at their corporate campus in Cupertino, California, earlier this week, and both phones provide a noticeable number of improvements over the existing iPhone 5. The iPhone 5C is aimed at the midrange of the smartphone market, comes enclosed in a seamless (and colorful) polycarbonate case, and starts at $99 -- with a two-year service contract -- for the 8GB model. The more significant of the two phones is the iPhone 5S, which boasts a 64-bit A7 processor; an M7 "motion processor" that combines the functions of the accelerometer, compass, and pyrometer into one unit; and an improved camera with two LED flashes and other improvements. iPhone 5S: Touch ID Biometrics While tech bloggers and commenters can argue endlessly about how significant (or insignificant) these new iPhones are, there is one new feature of the iPhone 5S that just may end up being the most important of all, and that could signal a move towards enhanced security for all mobile devices: the 'Touch ID' biometric fingerprint scanner, which is integrated into the iPhone 5S home button. The new iPhone 5S features a biometric fingerprint scanner, located in the circular home button at the base of the phone. (Source: Apple) Granted, fingerprint scanners have been available for years, and many Petri IT Knowledgebase readers may be using laptops with integrated fingerprint sensor hardware to view this article. That said, fingerprint readers have yet to make a huge... --- ### Implement and Enforce QoS with Data Center Bridging Hardware (DCB) > Learn to implement QoS enforced with Data Center Bridging (DCB) hardware in this step-by-step tutorial. - Published: 2013-09-11 - Modified: 2024-11-19 - URL: https://petri.com/implement-enforce-qos-data-center-bridging-hardware-dcb/ - Categories: Windows Server 2012 - Tags: Hyper-V, networking, Virtualization - Article Type: Overview Discover what Data Center Bridging (DCB) can do to help you implement Quality of Service (Qos) rules. In this post we will show you how to implement and enforce Quality of Service (QoS) bandwidth management rules that are enforced by Data Center Bridging (DCB) -capable hardware. What Is DCB QoS? QoS rules that are managed by DCB can be used when you are deal with networking that is not passing through a Hyper-V virtual switch in the configured operating system. This form of bandwidth management is enforced by DCB capable hardware; your source/destination NICs and the intermediate switches must support DCB. The benefits of DCB are: Offloaded bandwidth management: The physical processor is not used to enforce QoS so performance is better than possible with enforcement by the OS Packet Scheduler. Support for Remote Direct Memory Access (RDMA): DCB works at the hardware layer so it can enforce QoS on invisible protocols such as RDMA. This means you can reliably converge SMB Direct traffic with other protocols. You can use DCB to provide QoS for non-virtual switch traffic in: Physical NICs in a Hyper-V host that are used only for host networking Physical servers that have nothing to do with Hyper-V Example of QoS Enforced by DCB In this design we will be converging several networks on WS2012, as shown below. Backup: A backup product that uses TCP 10000 to communicate with agents on the host is being used. SMB 3. 0: SMB 3. 0 will be used as the storage protocol to store virtual machines on a Scale-Out File Server (SOFS)... . --- ### System Center 2012 SP1 - Orchestrator: What Is EUPSCO? > Learn more about EUPSCO, or End User Portal for System Center 2012 SP1 - Orchestrator, a free application that helps publish and launch runbooks. - Published: 2013-09-11 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-eupsco-overview/ - Categories: System Center - Tags: Automation, EUPSCO, Orchestrator - Article Type: Overview EUPSCO is a free web application that helps publish and launch runbooks. Learn more in this awesome article! In a previous post, we discovered an ability to leverage System Center 2012 SP1 - Orchestrator to automate runbooks using very simple PowerShell commands, which can easily be called by any process. Although extremely useful, this does not address all the scenarios we need to cover when manually triggering runbooks. There will arise the occasion or requirement for other users to actually trigger a flow, or potentially provide some details to a flow before it is actually triggered. A Solution Called EUPSCO Microsoft have already considered this scenario, with a special integration called a "connector" added into System Center Service Manager 2012. These connectors permit service 0fferings to be published for our end users, which can be validated and approved using Service Manager's internal logic system before finally triggering our Orchestrator Runbook, passing any data collected and validated from the users as they submitted their respective service requests. This functionality again leverages the web service through the connector. However, if you do not have a Service Manager environment already deployed, you are going to face fun times getting to learn this expansive product. Now, don't fear this, as I will cover this product and process in future posts, but in the meantime, I have a perfect interim solution for you: a little something called End User Portal for System Center Orchestrator (EUPSCO). What Does EUPSCO Do? EUPSCO is a free application created by a team of engineers based in the Netherlands. It was... --- ### Windows Server 2008 R2 / 2012 Hyper-V Best Practices: Resources > Windows Server 2008 R2 / 2012 Hyper-V best practices | Check out these helpful best practices articles written by Microsoft PFE Roger Osborne. - Published: 2013-09-10 - Modified: 2013-09-10 - URL: https://petri.com/windows-server-2008-r2-2012-hyper-v-best-practices/ - Categories: Hyper-V - Article Type: Overview Microsoft Premium Field Engineer (PFE) Roger Osborne has written some best practice articles on using Hyper-V in Windows Server 2008/2012. Take a look! Microsoft Hyper-V technology allows consolidation of workloads that are currently spread across multiple underutilized servers onto a smaller number of servers. This capability provides a way to reduce costs through lower hardware, energy, and management overhead while creating a more dynamic IT infrastructure. In this article, I've provided a couple of links to really helpful articles on Windows Server 2008 R2 / 2012 Hyper-V best practices. As more and more customers switch to Windows Server-based virtualization using Hyper-V, more IT professionals find themselves having to leave their VMware environments and learn how to deploy Hyper-V. While it is relatively simple to manage by using management tools and an administrative environment that is familiar to Windows administrators, there are still many challenges when we approach the task of designing such a deployment. Windows Server 2008 R2 / 2012 Hyper-V Best Practices: Further Reading From one standalone server running several VMs on its locally attached disks, to a large failover cluster deployment with CSV disks, replication, high-availability, quick and live migration and more – designing a robust Hyper-V deployment requires a lot of knowledge. My good friend Microsoft PFE Roger Osborne has published these awesome articles on the PFE Platforms blog, and because it's so well written and comprehensive, I thought I would share it with you. As a consultant that often has to deal with Hyper-V deployments I find this article a great tool to use not only when reviewing an existing Hyper-V implementation, but one that can be easily... --- ### All About VMware Certifications > Take a look at the different VMware certifications that are available, and learn what our writer thinks about the value of each one. - Published: 2013-09-10 - Modified: 2024-09-24 - URL: https://petri.com/vmware-certifications-overview/ - Categories: VMware - Tags: certifications, VCA, VCDX, VCP - Article Type: Overview Curious about the assortment of available VMware certifications? Take a closer look at the different kinds and see how valuable they are. The number of VMware certifications being released and updated has both increased in width and depth. This means that VMware has not only added new levels to existing certification paths, but they've also released new paths for their more recent product offerings. I'll break down the different levels of VMware certifications and give my thoughts on how they apply and their value. Currently VMware is offering certifications in the following paths that closely align with their major product offerings: Cloud - Certifications that include the vCloud Suite of products. Data Center Virtualization - Traditional vSphere- and vCenter-focused certifications. End User Computing - VMware is working on bring in all Horizon Suite products; currently heavily focused on VMware View. Network Virtualization - This is brand new and will most likely focus heavily on VMware NSX product. Cloud Application Platform - Application-focused path based on the spring product offerings. Basic info about these paths and the available certifications available within each can be found on the VMware Education site. VMware Certification Levels VMware Certified Associate (VCA) "A candidate for the VCA certification is familiar with VMware products and technologies and the business needs that can be met by those technologies. The candidate may be in any number of job roles that interact with VMware Data Center Virtualization technologies. " – from the VCAD510 VMware Certified Associate - Data Center Virtualization exam. My take on the VCA is that it was offered in the past and was... --- ### Use Group Policy to Stop Users from Linking Microsoft Accounts to Local or Domain Logins in Windows 8 > Learn how to use Group Policy to disable the ability to link domain and local computer accounts to Microsoft Accounts in Windows 8 using this easy guide. - Published: 2013-09-10 - Modified: 2024-09-24 - URL: https://petri.com/use-group-policy-to-stop-linking-microsoft-accounts-to-local-domain-logins/ - Categories: Security - Tags: Ask an Admin, Windows 8, Windows Server 2012 - Article Type: How To In this Ask an Admin, learn how to use Group Policy to disable your users' ability to link domain and local computer accounts to Microsoft Accounts. So, how can I use Group Policy to prevent users from linking their Microsoft accounts to local or domain logins? Microsoft added new capabilities to Windows 8 that allow users to synchronize configuration and application settings between computers, so that when they log on to a different device, their settings follow them. In order to enable this new feature, users must associate their local computer or domain account with a Microsoft online identity, such as a Windows Live Mail account. While this kind of synchronization may be useful for consumers, it could introduce risks for organizations, potentially allowing users to sync settings and app data between corporate-owned or -managed PCs to personal devices, which could lead to data leakage or a security breach. An account linked to a Microsoft identity is also required to download and purchase apps from the Windows Store, although it is possible to disable access to the store independently from restricting the ability to link domain accounts to Microsoft identities. Disable Microsoft Accounts To disable the ability to link domain and local computer accounts to Microsoft Accounts, open the Group Policy Management Console (GPMC) on Windows 8 or Server 2012 using a domain account that has permission to create new Group Policy Objects (GPOs). In the left pane of GPMC, expand your AD forest and domain. Right-click the Group Policy Objects folder and select New from the menu. In the New GPO dialog, name the GPO Restrict MS Account Linking and click OK... . --- ### System Center 2012 SP1 - Orchestrator: Automate Runbooks with PowerShell > System Center 2012 SP1 - Orchestrator | Find out what PowerShell cmdlet will automatically start your runbooks in this helpful article. - Published: 2013-09-09 - Modified: 2013-09-09 - URL: https://petri.com/system-center-2012-sp1-orchestrator-automate-runbooks/ - Categories: System Center - Tags: Automation, Orchestrator, PowerShell - Article Type: Overview Backup that runbook with PowerShell! Learn what cmdlet will automatically start your runbooks in System Center 2012 SP1 - Orchestrator in this article. In our tour of System Center 2012 SP1 - Orchestrator we have introduced the primary Runbook Designer activity types, those being actions or monitors. As we continue to embrace the functions offered by Orchestrator, the time will come when we will desire even more options. This is specifically the point when the Orchestrator Web Service finally comes into play, acting as the gateway to true extensibility. System Center 2012 SP1 - Orchestrator: Scenarios If you have not yet found yourself wondering if a certain runbook could be automatically started as soon as other jobs are completed, then you have not yet fully embraced the potential of this wonderful utility. Consider this example: You run a daily backup process after which you execute a few checks so that you have confidence the backup worked successfully. Now, consider the possibility of running these checks and balances as a runbook in System Center 2012 SP1 - Orchestrator. In Orchestrator, you can check WMI, Event Logs, Run Database queries, and more – great, right? But there's a problem: How do I tell Orchestrator to run this check for me automatically? The obvious option might be to set a scheduled time for the runbook to execute, but what would happen if the backup paused due to a tape change? Now the runbook may start too early and fail the checks. You could use a Monitor activity for the backup software, if we had one, but perhaps you don't. Hmmm, this might be... --- ### New Security Features in Windows 8.1 > Discover what's new in Windows 8.1 security, including Multifactor Authentication, biometrics, certificate handling, and more! - Published: 2013-09-09 - Modified: 2024-09-04 - URL: https://petri.com/new-windows-8-1-security-features/ - Categories: Security - Tags: Windows 8.1 - Article Type: Overview With the upcoming release of Windows 8.1, Microsoft has added security features that you'll love. Find out more in this overview. With the end of support for Windows XP fast approaching (April 14, 2014), it’s time to consider migrating to a modern desktop operating system like Windows 8. As I outlined in my previous post here on the Petri IT Knowledgebase, there are some compelling security reasons to move away from Windows XP. When support ends for Windows XP, Microsoft will no longer produce security updates for XP. However, there will continue to be vulnerabilities, meaning that Windows XP systems still in use after the support deadline passes are likely to have perpetual zero-day vulnerabilities. I also describe some of the new security features in Windows 8. With the forthcoming release of Windows 8. 1, Microsoft has added additional security features that will be of great benefit to consumers and enterprises alike. Today I'll go over some of the important new security features in Windows 8. 1. With Windows 8, Microsoft invested heavily in making the operating system resistant to malware. In Windows 8. 1, they have placed a heavy emphasis on modern access control and have focused on things like strong identification and authentication, platform trustworthiness, and consumer device management, just to name a few. Windows 8. 1 Security Features Biometrics Strong authentication is essential for the security of any system, and to that end Microsoft is determined to provide a first-class biometrics experience in Windows 8. 1, including a biometric sign-in option for all Windows experiences, including initial logon, remote access, and all remaining authentication prompts. Microsoft has also enabled a... --- ### Deploying QoS Packet Scheduler in Windows Server 2012 > Discover how to deploy QoS Packet Scheduler in Windows Server 2012 to help manage your bandwidth! Includes handy PowerShell cmdlets to get the job done. - Published: 2013-09-09 - Modified: 2024-11-19 - URL: https://petri.com/deploy-qos-packet-scheduler/ - Categories: Windows Server 2012 - Tags: Hyper-V, networking - Article Type: How To Who doesn't like bandwidth management? Read on to find out how to implement Quality of Service (QoS) Packet Scheduler in WS2012, including handy PowerShell cmdlets. In this post we will show you how to deploy bandwidth management via Quality of Service (QoS) Packet Scheduler in Windows Server 2012 (WS2012). This type of QoS can be used when converging the networks of a Hyper-V host’s management OS or a non-Hyper-V WS2012 or later operating system. What Is QoS Packet Scheduler? This method of QoS can be used when you are deal with networking that is not passing through a Hyper-V virtual switch in the configured operating system. This means that you can use this type of bandwidth management to guarantee minimum levels of bandwidth for protocols (not NICs) in: Physical NICs in a Hyper-V host that are used only for host networking Physical servers that have nothing to do with Hyper-V Within the guest OS of virtual machines As noted, this form of QoS works by assigning a weight or absolute bits per second rate to a protocol, such as live migration or cluster communications. This ensures that the protocol in question will get a minimum level of bandwidth on a contended NIC. The protocol can burst beyond that guarantee when there is both demand and idle capacity. QoS rules that are enforced by the Packet Scheduler have two traits that you should be aware of: This form of bandwidth management is implemented by the processor and will have scalability limitations in truly huge workloads The QoS Packet Scheduler cannot enforce QoS on traffic that it cannot see such... --- ### How to Create Active Directory Sites in Windows Server > Find out how to create Active Directory sites and subnets in Windows Server in this easy Ask an Admin article. - Published: 2013-09-06 - Modified: 2024-09-24 - URL: https://petri.com/create-active-directory-sites-windows-server/ - Categories: Active Directory (AD) - Tags: Ask an Admin, Editor's Pick, Network, replication, Windows Server - Article Type: How To Learn more about creating Active Directory sites and subnets in Windows Server in this step-by-step Ask an Admin article. How can I create an Active Directory site in Windows Server? Active Directory gives system administrators the option to define sites, consisting of one or more subnets. While it may not be necessary to define sites in all AD deployments, they can come in useful if you have geographically dispersed offices that are separated by slow wide area network (WAN) links. If you have plenty of bandwidth linking offices, so that Active Directory can replicate in a timely fashion, it may not be necessary to create AD sites. The design of an AD site topology depends on many factors, including network link speed, the number of objects in each domain, and the amount of non-AD traffic flowing over your WAN links. This article is not intended to be a best-practices document, and you should refer to Microsoft TechNet for more information on AD design. Why Create AD Sites? If you have slow network links between offices and need to control AD replication, sites can provide a way to improve reliability. Client PCs will also be able to find a domain controller that is physically close to them for logon. And other applications that rely on AD, such as Exchange Server, can use site topology information to locate services that are close by. Create a site in Active Directory Log in to Windows Server 2012 with a domain administrator account from the forest root domain, or as an Enterprise Administrator. Rename the default first site There’s always one... --- ### System Center 2012 SP1 - Orchestrator: Exporting and Importing Runbooks > System Center 2012 SP1 - Orchestrator | Learn to import and export runbooks in this easy step-by-step tutorial! - Published: 2013-09-05 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-export-import-runbook/ - Categories: System Center - Tags: Automation, Export, Import, Integration Packs, Orchestrator, Runbooks - Article Type: Overview You better test that environment! Learn to easily import and export runbooks for System Center 2012 SP1 - Orchestrator in this tutorial. With your System Center 2012 SP1 - Orchestrator environment deployed and in a tip-top healthy state, as you work on creating your runbooks, one of the best practices you should have implemented is to segregate your development, staging, and production Orchestrator installations into at least two different environments. To that end, today I'll show you how to import and export runbooks for System Center 2012 SP1 - Orchestrator. The concept is quite easy to implement, but it does introduce a few new questions that you will need to consider as you start to manage your new environments. The key challenge here is going to be around the actual process of taking the work you have developed in your development environment, and moving this to staging/QA, before finally migrating the runbooks to your live production environment. You may think you have to redraw your runbooks in each environment, but perhaps as you recall when you work on runbooks, you do not actually create a file as such, but instead you commit the runbooks directly to the database. Runbook Designer: Import and Export In the Runbook Designer, under the Actions menu you will find two extremely useful options listed: Import and Export. With these options you can quickly transfer the runbooks that you crafted in your development environment and move them to your staging environment. Exporting Runbooks To demonstrate this, expand the runbook tree to and then select a runbook folder that contains your solution (this should contain one or... --- ### Configure Global Object Access Auditing in Windows Server > Global Object Access Auditing | Learn how to configure Global Object Access Auditing in Windows Server 2012 with optional expression-based conditions. - Published: 2013-09-05 - Modified: 2024-09-24 - URL: https://petri.com/configure-global-object-access-auditing-windows-server/ - Categories: Windows Server - Tags: Auditing, Expression-based Auditing, Global Object Access, Global Object Access Auditing - Article Type: How To Keeping tabs on file and registry access in Windows Server has never been easier! Learn to configure Global Object Access Auditing in this how-to guide. Keeping tabs on file and registry access in Windows Server has never been easier. Auditing file access events in Windows Server isn’t a subject that’s likely to set you alight with excitement, especially as traditionally it has been something of a pain to configure. But in recent versions of Windows Server, the job has got easier. And that’s important, because in today’s world of regulatory compliance and the need to understand exactly what’s going on in our environments, we need to make sure audit logs are capturing the right data. Today I'll go over how to configure Global Object Access Auditing in Windows Server. Auditing File Access Before the introduction of Global Object Access Auditing in Windows 7 and Windows Server 2008 R2, in order to audit access to a file you would need to set auditing configuration on files and folders using System Access Control Lists (SACLs) in the file system. SACLs are accessed by right-clicking a file or folder in Windows, selecting Properties from the menu and then switching to the Security tab. Auditing configuration can be changed by clicking Advanced in the Properties dialog and then switching to the Auditing tab in the Advanced Security Settings dialog. As most administrators are aware, managing permissions on servers containing tens of thousands of files using Access Control Lists (ACLs) can become somewhat unwieldy, and configuring auditing this way is no less of a problem. In order that audit events appear in the Event Log, you also... --- ### Creating Custom Reports for Configuration Manager (SCCM) > Create customized reports using Configuration Manager (SCCM) – it's a snap when you use this easy step-by-step guide. - Published: 2013-09-04 - Modified: 2024-09-04 - URL: https://petri.com/creating-custom-reports-configuration-manager-sccm/ - Categories: System Center - Tags: Configuration Manager, Dashboard, Report Builder, SCCM - Article Type: How To Creating reports isn't as hard as you think. Learn how to create customized reports using Configuration Manager in this tutorial. After you have completed your deployment of System Center Configuration Manager (SCCM), one of the simplest features to enable is that of the reporting server. In the latest versions of Configuration Manager 2012, this feature not only offers over 450 pre-created reports, but (far more importantly) it also provides a platform for creating your own custom reports – a feature that is overlooked in fear of the complexity that might be involved. In this post, we will run through a quick demo of just how easy this really is to get working on your very own reports. Create Custom Reports with SCCM: SQL Report Builder There are many different methods of creating reports, including the more sophisticated tools that Jennifer McCown introduced in her Introduction to SQL Reporting Services. However, for the sake and beauty of simplicity, I will introduce the SQL Report Builder, quickly show you how to install this tool, and more importantly point it to your Configuration Manager Reporting Server. Start, by downloading the SQL 2012 report builder from the Microsoft download site. Launch the downloaded file to begin the installation wizard for Report Builder 3. 0 (current at time of writing). The installation wizard will then present its Welcome screen. Just click Next to proceed. Review and agree to the license. Click Next to move on. There is only the one feature to be installed, which is of course the Report Builder. Simply click Next again. Now, on the Default Target Server you are... --- ### Configuring Quality of Service (QoS) Rules in Windows Server 2012 > Quality of Service (Qos) rules | Apply Quality of Service (Qos) rules in Windows Server 2012 with the help of this guide, including OS Packet Scheduler & more! - Published: 2013-09-04 - Modified: 2024-09-04 - URL: https://petri.com/configure-qos-quality-of-service-rules-windows-server-2012/ - Categories: Windows Server 2012 - Tags: QoS, Quality of Service - Article Type: How To Learn to apply and configure Quality of Service (Qos) rules in Windows Server 2012 in this guide, including bandwidth info, OS Packet Scheduler and more! Windows Server 2012 (WS2012) introduced enhanced Quality of Service (QoS) to allow us to guarantee a minimum level of service for network protocols (physical or virtual machines) or virtual NICs (virtual machine or management OS). There are several ways to implement QoS, and it is important that you choose the right one for the host or server design that you are using. What Is Quality of Service (QoS)? Quality of Service allows an administrator to control bandwidth guarantees or to set limits so that multiple services can share a single network connection. This gives us the ability to reliably create converged network designs where multiple networks are running on a single NIC or NIC team. For example, a clustered Hyper-V host requires management, live migration, cluster communications, and backup networks. These can all be connected to the same virtual switch as the virtual machines that are running on the host, and the virtual switch can be connected to a pair of high bandwidth NICs. There are two kinds of QoS rules: Minimum bandwidth: A service is guaranteed a minimum amount of bandwidth if it needs it. Unused bandwidth is available to other services that need to burst beyond their minimum guarantee. This offers great flexibility and it is the recommended option from Microsoft. Maximum bandwidth: This option limits the bandwidth that can be used by a service. It is inflexible and it is recommended that it is used only when you really need to cap utilization, such... --- ### How to Plan a VMware VCDX Mock Defense Panel > Preparing for a VMware VCDX defense is a huge task. Take on the challenge with these tips on how you can organize VCDX practice panels and study sessions. - Published: 2013-09-03 - Modified: 2024-09-24 - URL: https://petri.com/how-to-plan-vmware-vcdx-mock-defense-panel/ - Categories: VMware - Tags: certification, VCDX, vmware - Article Type: How To Working toward VMware VCDX certification? Check out these helpful tips on preparing for a VCDX mock defense panel. I have been working towards achieving the VMware VCDX certification for that last 18 months or so. The VCDX program is a Design Expert level certification from VMware (read more about the specifics of the VMware Certified Design Expert 5 - Data Center Virtualization (VCDX5-DCV) program). As part of the preparation you may be invited to defend your design as a part of a VCDX mock defense panel. This is a private session that you use to prepare for the real panel in front of VMware employees. Having gone through a couple of these myself and helping a couple of co-workers I have learned a few things, so today I'll discuss about some of the details and strategy that has gone into preparing a VCDX a mock defense panel. VCDX Mock Defense Panel: Choosing a Location When setting up a mock panel there are really two options for how you can host one of these sessions. The most common is an in-person meeting with others. The second option would be something virtual or a phone call. I will break down my thoughts on each of these options. In-person panels: To accomplish an in-person mock defense you simply need to get the people in the same room with you right? Sure, but there is a bit more to it than that. You will want to make sure the room has some basic items available: a whiteboard or at least a large pad that you can draw on, and a projector... --- ### Installing a Free TFTP Server for Cisco Device Management > Manage Cisco Devices with TFTP | Upgrading the firmware on most Cisco equipment requires a TFTP server. Download and install a free TFTP server in this article! - Published: 2013-09-03 - Modified: 2024-09-24 - URL: https://petri.com/manage-cisco-devices-with-tftp/ - Categories: Cisco - Tags: networking, TFTP - Article Type: How To Upgrading firmware on most Cisco equipment requires a TFTP server. Lucky you – download and install a free TFTP server in this article! I’ve been working with Cisco networking gear for years now and one thing I’ve learned is that to be successful you need to have the right tools, for the right job, at the right point. Case in point is a TFTP server. Many IT pros, particularly those just cutting their teeth working with Cisco equipment, don’t have a clue what TFTP is or why they need it. That is of course until they need it. Then it’s a mad dash to learn, setup, and use a TFTP server on their PC. I can’t bear the thought, so in this article I’ll walk you step-by-step through downloading, installing, and using a TFTP server for Cisco device management. Download and Install the TFTP Server Before we get going let me provide the back story. The Trivial File Transfer Protocol (TFTP), not to be confused with the more popular File Transfer Protocol, was developed in the 1970s for computers that did not have enough memory or disk space to provide full FTP support. Today the most popular uses for TFTP servers are to upgrade network device firmware and backup their configurations. Although they are different protocols, TFTP works much like FTP. Software on the client and server make a direct connection between them using UDP and then commence to transport the desired data. While there are many freely available TFTP servers available on the internet, my personal favorite is the free Solarwinds TFTP Server. As you know, I’m a big... --- ### Should I Choose Server Core When Installing Windows Server? > Discover why you should install Windows Server Core instead of the full GUI version of Windows Server in this helpful article. - Published: 2013-09-03 - Modified: 2024-09-24 - URL: https://petri.com/using-server-core-when-installing-windows-server/ - Categories: Windows Server 2012 - Tags: Security, Server Core, Windows Server - Article Type: Overview Server Core is the default choice in Windows Server 2012 for a reason. Learn more about using Server Core when installing Windows Server! Starting in Windows Server 2012, Server Core is the default install option. As it makes initial configuration easier, it’s tempting to opt for the full GUI install of Windows Server instead of Server Core, but Server Core is the default choice for a reason. Among the benefits, Server Core has a smaller footprint, a reduced attack surface, and it lowers the frequency with which reboots are needed after applying Windows updates. Today I'll go into the reasons why you should stick to the default Server Core install option in Windows Server 2012. Server Core Compatibility Microsoft announced compatibility for more applications in Windows Server Core 2012. Nevertheless, there will still be applications that cannot run on Server Core. While some Microsoft server-based applications such as SQL Server 2012 are now compatible with Server Core, you should check the requirements for any applications that you plan to install on Server Core. Exchange 2013 and SharePoint Server 2013 are not compatible with Windows Server Core 2012. Server Core Is More Secure The work undertaken by Microsoft in the development of MinWin and Windows 8 allowed for the first time componentization of the operating system, untangling complex dependencies which had previously necessitated installing the entire code base, even if only a subset of the OSes features were being used. The ability to separate components and load them as required lead to Windows Server Core: a bare minimum install of the server OS managed from the command line. One benefit of... --- ### 6 Things I learned at VMworld 2013 > As VMworld 2013 draws to a close, Jeff serves up his thoughts on VMware NSX, the VMware Virtual SAN, and the Hyper-V custard truck in this show recap. - Published: 2013-08-30 - Modified: 2024-09-04 - URL: https://petri.com/6-things-i-learned-at-vmworld-2013/ - Categories: VMware - Tags: VMworld, VMWorld 2013 - Article Type: News As VMworld 2013 draws to a close, Jeff serves up his thoughts on VMware NSX, the VMware Virtual SAN, and the Hyper-V custard truck in this show recap. Another VMworld has drawn to a close, and nearly 23,000 attendees are currently on their way home after more than a week in San Francisco learning about the latest and greatest news and product announcements from VMware. Petri IT Knowledgebase author Brian Suhr has already written about VMware unveiling vSphere 5. 5 and vCloud Suite 5. 5, and has also posted his thoughts about the changes and additions to VMware's certification program. Rather than duplicate Brian's work, I'll focus on a recap of what was revealed at the show -- especially VMware's new VMware NSX and VMware Virtual SAN efforts -- and also discuss a few other things that were on the minds of VMware attendees. 1. VMware NSX and VMware Virtual SAN: Networking and storage take the lead VMware announced some significant updates to their various product families, headlined by the impending releases of VMware vCloud 5. 5 and VMware vSphere 5. 5. Yet the biggest news was undoubtedly the unveiling of VMware NSX and VMware Virtual SAN, which extend VMware's software-defined data center (SDDC) strategy to the networking and storage realms, respectively. "If it wasn't obvious before, we’re definitely entering the era of software definition," IT consultant Scott Lowe told me. "I believe that 'software defined' actually began with the initial release of ESX way back in the early 2000’s. If you think about it, a virtual machine is really just a 'software defined server' that works by harnessing the underlying hardware. VSAN and others provide software defined storage and,... --- ### How to Build a Windows Server 2012 R2 Hyper-V Test Lab > Learn to build a test lab for Windows Server r2 Hyper-V to be used at home or at work. Read this in-depth guide for storage options, networking, and more! - Published: 2013-08-30 - Modified: 2024-09-04 - URL: https://petri.com/build-windows-server-2012-r2-hyper-v-test-lab/ - Categories: Hyper-V - Tags: Editor's Pick, Labs, Windows Server 2012 R2 - Article Type: How To Need to build a lab from home or work? Learn what you need to build a Windows Server r2 Hyper-V lab with this in-depth guide. As someone whose job it is to learn, teach, and evangelize about Windows Server and Hyper-V, the lab is a critical tool to me. With this in mind, today I’m going to discuss what to consider and talk in detail about building Windows Server 2012 R2 Hyper-V test lab environments and what I've learned from them. Windows Server 2012 R2 Hyper-V Lab Options There is quite a bit to learn about Windows Server 2012 R2 (WS2012 R2) Hyper-V, especially if you have not yet used Windows Server 2012 (WS2012) Hyper-V, which was a huge release. Many of the important changes are related to networking and storage, and this means you need hardware that is capable of supporting these features. Storage Options Let’s start with the most economic storage option: iSCSI. This storage is probably the most commonly encountered storage connectivity solutions in the market. That typically requires an expensive hardware SAN, but there are other options. While the hardware solution might support attractive features such as Offloaded Data Transfer (ODX) and TRIM, and it may give you the option to play with a hardware Volume Shadow Copy Service (VSS) provider for (Cluster Shared Volume) CSV backup, acquiring a hardware SAN just for a lab will be a challenge unless you work for a hardware reseller that needs a realistic demo lab. No, we mean a different kind of testing lab. Some businesses have chosen to deploy software-based third-party iSCSI SAN products that convert a server (possibly running... --- ### Lync 2010 Integration with Outlook Web App 2010 (OWA 2010) > Integrate Lync 2010 using Outlook Web Access 2010 (OWA 2010), to provide users with the ability to have Lync IM sessions and more. Learn how in this guide! - Published: 2013-08-29 - Modified: 2024-12-03 - URL: https://petri.com/lync-2010-integration-with-owa-2010-outlook-web-app/ - Categories: Exchange Server - Tags: IM, instant messaging, Lync 2010, OWA 2010 - Article Type: Overview It's all about communication, folks. Learn how to integrate Lync 2010 with OWA 2010 to allow users to have Lync IM sessions and more! Email and instant messaging (IM) are both forms of communication that are frequently used in businesses around the world. As workers are becoming more mobile, IT departments are challenged with providing more ways for the mobile workforce to communicate. Now you can integrate Lync 2010 with Exchange 2010 using Outlook Web Access 2010 (OWA 2010), providing users with the ability to see each other’s presence and have Lync IM sessions. This added feature can be a real benefit to the mobile workforce as they can start Lync IM sessions with any device that has a supported browser for OWA 2010 and Internet connection. Lync 2010 with OWA 2010: Features The Lync integration with OWA 2010 provides some basic Lync functions and does have limitations on what capabilities are available to use while logged into OWA 2010. Browsers that only support OWA Light version will not have the Lync features available. So for those thinking they can use this to Lync chat on their iPhones – sorry, it won't work, but there is a Lync iOS app that provides the same capabilities. The following features are available using Lync 2010 though OWA 2010: Sign in/out of Lync through OWA 2010 Presence – the users presence is displayed for all Lync users to see Contacts – Users Lync contact list is available,  contacts can removed or added through the integrated OWA 2010 Instant Messaging – Users can have IM sessions with other Lync users without the need to install... --- ### VMworld 2013: Introduction to the VMware Horizon View Configuration Tool (vCT) > Use VMware Horizon View Configuration Tool (vCT) to deploy a Horizon View environment in an automated fashion. Find out more in this overview from VMworld 2013. - Published: 2013-08-29 - Modified: 2024-09-24 - URL: https://petri.com/vmware-horizon-view-configuration-tool-vct/ - Categories: VMware - Tags: VMware Horizon View - Article Type: News Like automation? Find out what the new VMware Horizon View Configuration Tool (vCT) can do for you in this overview straight from VMworld 2013. Not that VMware Horizon View was an incredibly hard product to use anyway, but the advent of VMware Horizon View Configuration Tool (vCT) was announced at VMworld 2013 anyway. The vCT is designed to deploy a Horizon View environment rapidly. I will cover what the vCT can do and where you should (or should not) use it. Why Use the Horizon View Configuration Tool? As of this writing, the vCT is designed to help with deploying Proof of Concept (POC) or test environments in an automated fashion. The tool will handle the base configuration and building of the major parts. The vCT is available as a virtual appliance from VMware that you can deploy in your datacenter. A vCT appliance includes all the pieces to set up Horizon View, all that you need to provide is the following. Windows Server 2008R2 ISO At least one ESXi host Licences A few values that you will provide to questions asked The appliance will then automatically deploy a Horizon View environment for you. There is a vCT web GUI that will step you through required questions to answer so it can customize your install.   vCT and Deploying Components The vCT deploys the following components: Virtual machine with Active Directory Domain Controller configured (or you may integrate with the existing DC in your environment) Virtual machine with Horizon View installed Virtual machine with Horizon View Composer installed vCenter Server Appliance virtual machine deployed and configured For Windows-based... --- ### Why You Need to Upgrade from Windows XP (and Windows Server 2003) > Windows XP and Windows Server 2003 will soon be out of support and face ‘zero-day’ vulnerability. Find out why and when you should upgrade in this article. - Published: 2013-08-29 - Modified: 2024-09-24 - URL: https://petri.com/upgrading-from-windows-xp-server-2003/ - Categories: Windows Server - Tags: Windows Server 2003, Windows XP - Article Type: Opinion Get on the ball! Find out why it's time to upgrade from Windows XP and Server 2003 and read about Microsoft's OS infection rates. Support for Windows XP ends in April 2014, with Windows Server 2003 following in July 2015. But what does this mean for users and organizations still running these products? Microsoft recently warned that Windows XP users face ‘zero-day’ vulnerability forever on their PCs, as once the company stops releasing security updates, the defenses built-in to the aging OS won’t be enough to fend off today’s sophisticated attacks. Windows' OS Infection Rate What struck me was not this piece of unsurprising information, but the results of Microsoft’s Security Intelligence Report 14  from the fourth quarter of 2012, which uses data gathered directly from the install base of each OS. As you can see in the figure below, while it’s no surprise that Windows XP is considerably more prone to infection than later versions of Windows, it’s twice more likely to be infected than Windows Vista. The data in the report is normalized, so a sample of one thousand computers was analyzed for each operating system version. Windows 8 has a particularly low infection rate, but that could be due to the fact the OS had only just been released at the time the report was published, when attacks that specifically target the improved defenses of the OS were few. Additionally, it’s worth remembering that Windows 8 is the first version of Windows to include signature-based malware protection out of the box. With the imminent release of Windows 8. 1, we may see those figures improve further as Windows Defender... --- ### What’s New in Windows Server 2012 R2 Hyper-V Live Migration > Windows Server 2012 R2 Hyper-V Live Migration | Discover what's new in Server 2012 Hyper-V live migration, including awesome performance options and more! - Published: 2013-08-28 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-r2-hyper-v-live-migration-news/ - Categories: Hyper-V - Tags: live migration - Article Type: Overview Check out what's new in Server 2012 Hyper-V live migration, including queuing, SMB 3.0 live migration, better performance options, and more! Today I'm going to follow up my overview of Windows Server 2012 (WS2012) Hyper-V Live Migration with a look at the new features and improvements of Live Migration in Windows Server 2012 (WS2012 R2) Hyper-V and Hyper-V Server 2012 R2. Windows Server 2012 Live Migration Improvements Live migration moves virtual machines from one location to another with no perceivable downtime to service delivery. It was first present in Hyper-V in Windows Server 2008 R2; there it could move the memory and process of a virtual machine from one host to another within the same Hyper-V cluster. The virtual machines' storage did not move, instead, it stayed static on the shared cluster storage. Recently Windows Server 2012 added signification improvements to Live Migration, including the following. Simultaneous live migration: More than one virtual machine could be moved at a time. Queuing: Clusters can queue migrations if more virtual machines need to move than Live Migration slots are available. Storage live migration: Any or all of the storage of a virtual machine can be moved from one storage location to another, such as from DAS to SAN to SMB 3. 0 storage. Clusters are not required: Failover clustering is not a requirement for WS2012 Hyper-V live migration.   You can perform live migration between any two WS2012 or Hyper-V Server 2012 hosts, clustered or not, as long as they share a common live migration network. Just make sure that your virtual machines will remain connected to a virtual switch with the same name... --- ### Monitoring System Center 2012 - Orchestrator with Orchestrator Health Checker > Orchestrator Health Checker | Discover how to install, configure, and monitor Microsoft System Center 2012 - Orchestrator using the Orchestrator Health Checker. - Published: 2013-08-28 - Modified: 2024-11-19 - URL: https://petri.com/monitor-system-center-2012-orchestrator-health-checker/ - Categories: System Center - Tags: Automation, Orchestrator - Article Type: How To Install and configure Orchestrator Health Checker, and see what this free utility can do for System Center 2012 - Orchestrator! The more tasks you automate, the more important System Center 2012 - Orchestrator will become in your environment; over time you will depend on Orchestrator as if it were the assistant you never had. As with any assistant you are going to want to know that everything is working properly, so that you can relax in the knowledge that your automations are going to continue running just as you have designed. Install and Configure Orchestrator Health Checker How do you check the health of your System Center 2012 - Orchestrator? With the Orchestrator Health Checker, of course! This free community-developed utility has been carefully created by Vauhn Nerdahl and his team. Updated regularly and available for download directly off CodePlex. com, this utility will guarantee that you can sleep well as Orchestrator deals with your automated tasks. Once you have downloaded the Health Checker, the very first task you will need to complete is a simple configuration to let the utility know where exactly your Orchestrator components are located. This is accomplished by editing the file Orchestrator Health Checker. exe. config. Within the file you will see three settings which are all prefixed with the name MyEnvironment. As this utility will support multiple Orchestrator Environments, you can customise the prefix with your own environment names, for example, Production, Stating etc. Each of these settings have a value attribute also, which contains the actual setting you need to change to match your environment(s). Health Check Time After... --- ### VMware Brings Back VCA Certifications > VMware Certified Associate (VCA) | Just getting started with VMware? Learn about several new associate level certifications just announced at VMworld 2013. - Published: 2013-08-28 - Modified: 2024-09-24 - URL: https://petri.com/vmware-certified-associate-vca-returns/ - Categories: VMware - Tags: VCA, VMware Certified Associate - Article Type: News Are you certified? Discover what new VMware Certified Associate (VCA) certifications are available as we report from VMworld 2013. The VMware Certified Professional (VCP) certification has long been the entry point into showing your VMware skills. But the VCP-level certification requires that you take an authorized VMware course. These courses can run several thousand dollars, which in some ways helps keep the paper VCPs out, but the cost can prevent some good people from getting certified. A few years ago VMware briefly tested out the VCA or Associate-level certification with the View desktop track. The VCA-DT certification did not hang around long and no new certifications have been offered recently. That all changed at the start of VMworld 2013. I'm happy to bring you details on the new selection of VMware Certified Associate (VCA) certifications.   VCA Data Center Virtualization This VCA certification is based on the vSphere product. While the VCA certification does not require a class, it is also not a requirement for any other higher-level certifications. This is good news for those that don't want to waste their time taking additional tests. "A candidate for the VCA certification is familiar with VMware products and technologies and the business needs that can be met by those technologies. The candidate may be in any number of job roles that interact with VMware Data Center Virtualization technologies. The successful candidate will most likely have worked with VMware vSphere and should be knowledgeable of other VMware solutions where vSphere serves as a foundation, and should have related additional industry-recognized general IT certifications or the equivalent experience (typically 1-2 years). " – from the VCAD510 VMware... --- ### Solving the Mystery of the Self-Waking Laptop > Have a laptop that wakes up by itself? Solve the mystery of the automatically waking laptop with these troubleshooting hints from a real-life scenario. - Published: 2013-08-27 - Modified: 2024-11-19 - URL: https://petri.com/laptop-wakes-up-by-itself/ - Categories: Windows Client OS - Tags: Windows 7 - Article Type: How To Solve the mystery of the automatically waking laptop with these troubleshooting hints taken from a real-life scenario. The story is one that bugged me for quite a long time, through not one but three different models of laptops from Lenovo. First there was my previous work's Lenovo T510, then a new T420S, and finally a Lenovo T430S. The first laptop was running Windows 7. The second and third were running Windows 8. My problems began when I started carrying these laptops to work everyday in my backpack. I used to configure them to sleep when pressing the right combination of keys (usually FN + F4), or when closing the lids. The laptop would take a few seconds to do whatever it had to do in order to prepare for sleep mode, then the screen would shut down and the "moon" LED icon would turn on (or flash, depending on the laptop's model), and I would put it into my backpack. So far so good. But every once in a while I would get to work, to a customer, or back home, and I would see that all this time the laptop was in fact turned on. Obviously this is not just a wasted battery issue but an actual security hazard: the laptop heating up in the enclosed confinements of my backpack, all vents working at full speed and not being able to get enough fresh air to cool it down. When I got the laptop out of the backpack it would be so hot, too hot to touch, and I can only imagine that... --- ### Enable Advanced Auditing in Windows Server > Advanced Audit Configuration Policy | Learn about the new auditing capabilities in Windows Server and how to enable them in this quick 'n easy Ask an Admin. - Published: 2013-08-27 - Modified: 2024-09-24 - URL: https://petri.com/enable-advanced-audit-policy-configuration-windows-server/ - Categories: Windows Server - Tags: Advanced Audit Configuration Policy, Auditing, Windows Server - Article Type: How To In this quick Ask an Admin, learn to easily enable and configure Advanced Audit Policy Configuration in Windows Server. How do I enable Advanced Audit Policy Configuration in Windows Server? With the ever-increasing need to meet industry or governmental compliance mandates, the ability to properly audit and report on what is happening in our environments is crucial. In Windows Vista, Microsoft divided the original nine auditing categories into subcategories and added some new events that weren’t previously possible to audit, such as the ability to track access to remote storage devices, which increased the total number of events that can be audited to 53. Starting in Windows Server 2008 R2 and Windows 7, Advanced Audit Policy Configuration in Group Policy allows administrators to configure the new granular audit settings without the need to use auditpol. exe at the command line. Advanced auditing allows for more granular audit configuration, so that only events you are interested in capturing are written to the Event Log. The new settings can be found in Group Policy under Computer ConfigurationPoliciesSecurity SettingsAdvanced Audit Policy Configuration, and the original audit settings can be found here: Security SettingsLocal PoliciesAudit Policy. You’ll see that in the basic audit settings, it’s possible to switch account logon auditing on or off, but in the new advanced configuration there are four different account logon events that can be audited: Audit Credential Validation Audit Kerberos Authentication Service Audit Kerberos Service Ticket Operations Audit Other Account Logon Events Enabling Advanced Audit Policy Configuration Basic and advanced audit policy configurations should not be mixed. As such, it’s best practice to enable Audit: Force... --- ### VMworld 2013: VMware Announces vSphere 5.5 and vCloud Suite 5.5 > In the VMworld 2013 keynote, VMware CEO Pat Gelsinger touts IT as a service (ITaaS) and unveils VMware vSphere 5.5 and VMware vCloud Suite 5.5. - Published: 2013-08-26 - Modified: 2024-09-24 - URL: https://petri.com/vmworld-2013-vmware-announces-vsphere5-5-vcloudsuite5-5/ - Categories: VMware - Tags: NSX, SDCC, vCloud, vmware, VMworld, vSphere - Article Type: News In the VMworld 2013 keynote, VMware CEO Pat Gelsinger touts IT as a service (ITaaS) and unveils VMware vSphere 5.5 and VMware vCloud Suite 5.5 VMworld 2013 in San Francisco got rolling with the Day 1 keynote from VMware CEO Pat Gelsinger. This keynote usually kicks things off and lets the world know what VMware is announcing. These announcements are usually a new version of one or several of their flagship products. I have broken down all the important parts from the keynote for everyone to easily consume. Some of the biggest highlights of the keynote were VMware's continuing push into IT as a service (ITaaS), and the official unveilings of vSphere 5. 5 and the vCloud Suite 5. 5. I'll talk about all of those things in a bit more detail and present some supporting images grabbed from a recent VMware press pre-briefing. It's no surprise that VMware continues to talk about cloud computing and ITaaS, as both are considered key components in their marketing strategy and product offerings. Pat talked about the phases that companies go through on their virtualization journey, a journey that is broken down into three main phases, as illustrated below. The main point of the visual here is to illustrate that as companies move through these phases the number of VMs per admin that are being managed continues to grow. Gelsinger was painting the picture that the more VMware's products develop and the more IT  automation enters the scene, the more productive each VMware administrator can become. The next slide was used by Pat to explain how applications have evolved over the past couple of decades. Starting off with... --- ### Creating a NIC Team and Virtual Switch for Converged Networks > Converged Networks and NIC Teams | Learn to create a converged network for Hyper-V using a Windows Server 2012 NIC team and connect to a virtual switch. - Published: 2013-08-26 - Modified: 2024-09-04 - URL: https://petri.com/create-nic-team-virtual-switch-for-converged-networks/ - Categories: Networking - Tags: Hyper-V, networking, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Learn the best practices behind creating a converged network using a Windows Server 2012 NIC team – and then connect to a virtual switch. A common solution for creating a converged network for Hyper-V is to aggregate links using a Windows Server 2012 (WS2012) or Windows Server 2012 R2 (WS2012 R2) NIC team, such as in the below diagram. We will look at how you can do this in Windows Server and then connect a virtual switch that is ready for Quality of Service (QoS) to guarantee minimum levels of service to the various networks of a Hyper-V cluster. What Is an NIC Team? A NIC team gives us load balancing and failover (LBFO) through link aggregation: Load Balancing: Traffic is balanced across each of the physical NICs that make up the team (team members) in the NIC team. The method of balancing depends on the version of Windows Server and whether the NIC team is being used for dense virtualization or not. Failover: The team members of a NIC team are fault tolerant. If a team member fails or loses connectivity then the traffic of that team member will be switched automatically to the other team member(s). Converging networks through a NIC Team and Virtual Switch. NIC teams have two types of setting. The first is the teaming mode: Switch Independent: The NIC team is configured independently of the top-of-rack (TOR) switches. It allows you to use a single (physical or stack) or multiple independent TOR switches. Static Teaming (switch dependent): With this inflexible design, each switch port connected to a team member must be configured for that team member... . --- ### System Center 2012 SP1 - Orchestrator: Integration Pack > System Center 2012 SP1 - Orchestrator | Learn more about Microsoft's Orchestrator as we install Integration Pack. Follow this multi-part series! - Published: 2013-08-26 - Modified: 2024-11-19 - URL: https://petri.com/system-center-2012-sp1-orchestrator-integration-pack/ - Categories: System Center - Tags: Automation, installing, Integration Packs, Orchestrator - Article Type: Overview Learn to locate activities and install Integration Pack in part six of our System Center 2012 - Orchestrator series. Continuing our series on System Center 2012 SP1 - Orchestrator! If you have being following the previous posts in this series: An overview of what is System Center 2012 - Orchestrator Understand the server components in Orchestrator Know the tools used to manage and maintain our Orchestrator environment Installing System Center 2012 SP1 - Orchestrator We completed the installation of our Orchestrator Server, along with the Web Services and Web Console, in addition to the all-important Runbook Designer. System Center 2012 SP1 - Orchestrator: Getting Acquainted I am sure you have taken the opportunity to get acquainted with these new tools, connecting to your Runbook servers, and maybe even attempted to create your first Runbook. As you being to find your way around the designer, which we will cover in greater detail in another post, you will no doubt have located the "Activities" panel docked to the right of the window. Here you will find a vast collection of different activities available to drop on your design canvas, ready for building your runbooks. However, as you spend some time studying the available options, you might be disappointed to find that an activity for a specific technology or action you expected to see is not present. In this post I will show you how to locate activities and install the System Center 2012 SP1 - Orchestrator Integration Pack. Locating Activities The first thing we are going to learn is that these activities are delivered in bundles that are... --- ### Administering SharePoint 2013 with PowerShell: Site Collections > Learn how administering SharePoint 2013 with PowerShell can be used to help you manage your site collections. Check out this how-to article for more! - Published: 2013-08-26 - Modified: 2024-12-03 - URL: https://petri.com/administer-sharepoint-2013-powershell-site-collections/ - Categories: SharePoint - Tags: cmdlets, Editor's Pick, PowerShell, site collection - Article Type: How To Cmdlets ahoy! In this how-to article, learn how administering SharePoint 2013 using PowerShell can help manage your site collections. The sites and site collections of your intranet, extranet, and publishing portals make up the foundational structure for your users. A SharePoint farm can grow quickly once the site collections are turned over to their owners. If you’re a sysadmin who wants to better understand how administering SharePoint 2013 with PowerShell can be used to help you manage your site collections (called "Sites" within the management shell), this article is going to help you get it all figured out. Working with SharePoint 2013 Site Collections (SPSite) Using PowerShell Most of the site collection administration is done with the SPSite cmdlets. Here are the basics of working with site collections in SharePoint 2013 through PowerShell. Creating a New Site Collection with PowerShell Use the New-SPSite cmdlet to create a site collection. Though there are several parameters for customizing just what you want, the only required information is the address of the site collection and who owns it. Use the –URL and –OwnerAlias parameters to create a site collection at any managed path. ​ New-SPSite –Url “http://intranet. sharepoint. local/dept/hrweb” –OwnerAlias “domainJaneHRMangerDoe” Creating a Host Header Site Collection with PowerShell If you’re creating a host header site collection, SharePoint won’t be able to identify the web application and managed path based on your URL, so use the –HostHeaderWebApplication parameter to tell SharePoint what web application the site collection is to be a part of. ​ New-SPSite –Url “http://hrweb. sharepoint. local” –OwnerAlias “DomainJaneHRManagerDoe” –HostHeaderWebApplication “http://intranet. sharepoint. local” Finding a Site Collection Use Get-SPSite... --- ### IT Volunteering Resources > Are you an IT pro looking to volunteer your time and expertise? Looking for someone with IT skills to donate? Find out more about the world of IT volunteerism. - Published: 2013-08-23 - Modified: 2024-12-03 - URL: https://petri.com/it-volunteering-resources/ - Categories: Windows Server - Tags: volunteering - Article Type: Overview Are you an IT pro looking to volunteer your time and expertise? Looking for someone with IT skills to donate? Find out more about the world of IT volunteerism. By almost any measure, the last several years have been difficult ones for many people, thanks in part to the sluggish global economy and painfully high unemployment numbers. While there are signs that the global economy is on the rebound, the simple truth is that many people, businesses, and organizations are still struggling. That's why I decided to write this article. The market for skilled IT professionals seems to be a healthy one -- with a number of exceptions, obviously -- so how can IT professionals spread the wealth by helping those out that are less fortunate than they are? I personally know many needy people and non-profit organizations that could desperately use some IT help, so being able to connect skilled IT professionals willing to donate their time and skills to those in need seems like a logical next step. The Need for IT Volunteers I asked Petri readers (and some folks on Twitter) to let me know what they thought of volunteering and IT, and I received many emails and Tweets in response. Several emails I received stressed the need for IT volunteers, and described just how important they are to the daily operation of many organizations. https://twitter. com/jeffjames3/status/347789124654223360 "I am a former Flotilla Commander and I had a volunteer... who spent many hours of her spare time building our Flotilla web site," wrote David S. Penney. "The U. S. Coast Guard (USCG) sends these volunteers to a Coast Guard C-School at... --- ### How to Boot Directly to the Desktop in Windows 8.1 and Server 2012 R2 > Learn how to bypass the Start screen and boot directly to the desktop in Windows 8.1 or Windows Server 2012 R2 with the help of this handy Ask an Admin. - Published: 2013-08-23 - Modified: 2024-09-24 - URL: https://petri.com/bypass-start-screen-windows-8-1-server-2012-r2/ - Categories: Windows Server 2012 - Tags: Ask an Admin, Metro, Modern UI, Start screen, Windows 8.1, Windows Server 2012 R2 - Article Type: How To Boot directly to the desktop and skip that Start screen nonsense! Learn how to do just that in Windows 8.1 and Server 2012 R2 in this easy Ask an Admin. How can I boot directly to the desktop in Windows 8. 1 and Windows Server 2012 R2? The Modern UI interface (previously Metro) in Windows 8 and the new Start screen have been quite controversial, and the inclusion of the same interface in Windows Server 2012 comes as no surprise, because Windows client and server releases share the same code base. While it could be argued that the Modern UI in Windows Server should be an optional add-on as part of the Desktop Experience set of components, for whatever reason, the Modern UI and its Start screen are present by default whenever the GUI is enabled on Windows Server. Whenever possible, you should install Windows Server in the default Server Core mode, as it has a reduced attack surface and smaller footprint than the full GUI version. However, there are some applications that require the full GUI. In Windows 8. 1 and Server 2012 R2, Microsoft is giving users the option to jump straight to the desktop like this: Log on to Windows and go to the desktop. Right click on the Taskbar at the bottom of the screen and select Properties from the menu. In the Taskbar and Navigation properties dialog, switch to the Navigation tab. Go to the Start screen section, check Go to the desktop instead of Start when I sign in and click OK. The next time the user logs on, they will boot directly to the desktop instead of the Start screen. [adkit zone="freestyle"... --- ### Using VMware Thinapp to Setup Native Browser Redirect > Learn to use VMware ThinApp to setup native browser redirect, including how to register and test ThinApp, in this walkthrough article. - Published: 2013-08-22 - Modified: 2024-12-03 - URL: https://petri.com/using-vmware-thinapp-setup-native-browser-redirect/ - Categories: VMware - Tags: ThinApp - Article Type: Overview Do you have an application dependent on a specific browser? Discover how to use ThinApp to setup native browser redirect in this article! Have you ever had a requirement or application dependency in which you needed to use a browser different than the default one in your desktop builds? The requirement might be for a newer or older browser but either way it presents you with a challenge on how to handle. In this post I will show you how to package a browser with VMware ThinApp and redirect a specified URL to the browser package. VMware Thinapp and Browser Redirect: Example Problem The customer has an application that requires a browser other than the currently installed version in their desktop builds. At this time the customer is not able to update the natively installed browser version in their builds due to other dependencies. This will require us to package a version of Firefox with ThinApp and ensure that when they try to reach the specified URL they are redirected to the ThinApp browser package that we have prepared. ThinApp Application Capture Fair warning, I am not going to be doing a thorough walkthrough of the ThinApp capture process. That is something for another post. Instead, for this example I will be touching on some of the main points in the process and focus on our problem statement. To capture Firefox into a ThinApp package I have prepared a base Windows 7 virtual machine. The VM was updated with all the latest Microsoft packages (this was probably the most time-consuming part). I then installed the ThinApp capture application and downloaded... --- ### What Is the New VMware vCloud Hybrid Service (vCHS)? > What is VMware vCloud Hybrid Service (vCHS)? Discover more about vCloud Hybrid Service and what makes it unique in this walkthrough. - Published: 2013-08-22 - Modified: 2024-09-04 - URL: https://petri.com/vmware-vcloud-hybrid-service-vchs-overview/ - Categories: VMware - Article Type: Overview Discover the ins and outs of vCloud Hybrid Service and its unique features - including VMware's install base and ecosystem - all in this breezy walkthrough. Lately VMware's touting the all-new VMware vCloud Hybrid Service (vCHS). This offering is a whole new product line for VMware meant to compete with the likes of Google Compute Engine, Amazon EC2, Microsoft Windows Azure public cloud offerings, and (to some degree) VMware's own vCloud service providers. However, with other existing (and well known) public infrastructure clouds available, why should we care about another public cloud offering now from VMware? Let's find out what makes vCHS unique and how it can help you. Introducing VMware vCloud Hybrid Service (vCHS) VMware's hybrid cloud is an "infrastructure as a service", or IaaS, public cloud. That means that you can run your virtual machines (or physical servers converted into virtual machine) in their cloud for a fee. Like all IaaS services, the benefit is that you don't have to purchase, manage, and maintain your own physical servers in your own datacenter. Additionally, IaaS offers scalability such that adding additional computing capacity can be done in a few clicks of your mouse (as compared to the time that it would take for you to price out, get approved, order, install, and configure a new physical server in your own datacenter). Not only can you scale up, but you can also scale down; either way, you only pay for what you use. That scalability, elasticity, and pay-as-you-go pricing is found in just about all IaaS clouds.   And while we're at it, don't pronounce vCHS "vCHEESE. " VMware reps kindly ask that we... --- ### Will New Features in Windows Server 2012 R2 Increase BYOD Adoption in the Workplace? > Learn about BYOD in Windows Server 2012 R2, including Work Folders, Workplace Join, and Web Application Proxy. Will these be enough to increase BYOD adoption? - Published: 2013-08-22 - Modified: 2024-09-24 - URL: https://petri.com/byod-features-in-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: BYOD, Web Application Proxy, Windows Server 2012 R2, Work Folders, Workplace Join - Article Type: Opinion Are the new features in Windows Server 2012 R2 and Win8 features enough change to increase BYOD in the workplace? Find out in this article! According to research by Gartner, 38 percent of companies will require employees to supply their own device by 2016, with this figure jumping to 50 percent by the following year. IT professionals have been slow to embrace Bring Your Own Device (BYOD), citing security concerns among the primary reasons to stick with a company-owned model, where devices can be easily managed. Microsoft is embracing Bring Your Own Device (BYOD) with a series of new features in Windows Server 2012 R2 and Windows 8. 1, aimed at helping organizations better manage access to corporate data and resources from personally owned devices. BYOD Features in Windows Server 2012 R2 New features in Windows Server 2012 R2 include Work Folders, Web Application Proxy, Workplace Join. Work Folders is a new file synchronization service that encrypts files, in transit and on disk, across users’ devices. Work Folders can be wiped when a device unenrolled from management. The Web Application Proxy allows users to access Work Folders and other published web services, both on the corporate intranet and public Internet. Workplace Join is like a standard domain join operation but without management features, such as Group Policy. It allows users to access corporate data and provides single sign-on (SSO) capabilities. Device Enrollment signs up a device for management via System Center Configuration Manager (SCCM) or Windows Intune. Device enrollment and Workplace Join can be used separately or together. BYOD Trending While BYOD is clearly a popular trend, Microsoft has... --- ### System Center 2012 SP1 – Orchestrator: Runbook Designer > System Center 2012 SP1 - Orchestrator | Dive deeper into Microsoft's Orchestrator as we look closer at Runbook Designer and its capabilities. Multi-part series! - Published: 2013-08-21 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-runbook-designer/ - Categories: System Center - Tags: Automation, Microsoft System Center 2012, Orchestrator, runbook designer, Runbooks, System Center 2012 SP1 – Orchestrator - Article Type: Overview Learn more about a handy tool called Runbook Designer in part five of our System Center 2012 - Orchestrator series. Continuing our series on Orchestrator, if you have being following the previous posts in this series you should now be ready to get acquainted to the Runbook Designer. As a reminder these are the topics we have covered to date: An overview of what is System Center 2012 - Orchestrator Understand the server components in Orchestrator Know the tools used to manage and maintain our Orchestrator environment Installing System Center 2012 SP1 - Orchestrator Let's get comfortable as we introduce Orchestrator's Runbook Designer, because this is the single tool in which we are going to spend the majority of our time as we design and debug our runbooks. Runbook Designer: Overview Orchestrator's primary beauty lies within the Runbook Designer, a GUI-based tool that will instantly look and feel rather familiar to anyone who has ever used Visio, or most graphic design packages for that matter. Creating your runbooks is accomplished by simply drawing your task sequence on the design canvas, dragging predefined actions (called "activites") from the Activities pane, and dropping them on the design canvas. You then "wire" up your activities through the use of links, enabling you to define the flow of your runbook. In the above screen capture of Runbook Designer, we can clearly see and easily identify the main areas of the interface as follows Left Pane Connection to the Orchestrator Environment, and a tree structure for managing and organizing our runbooks. Access permissions can be assigned on a folder or runbook level... --- ### Disable the Integrity Bit of VHDs Copied to an ReFS Volume Using PowerShell > Learn how to use PowerShell to disable the integrity bit of virtual hard disks copied to ReFS in this step-by-step guide. - Published: 2013-08-21 - Modified: 2024-09-04 - URL: https://petri.com/disable-integrity-bit-of-virtual-hard-disks-refs-volume/ - Categories: Hyper-V - Tags: Hyper-V, PowerShell, Scripting, storage, Virtualisation, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Use PowerShell cmdlets to get your VM with copied virtual hard disks up and running on a ReFS volume! Learn how in this guide. Resilient File System (ReFS) is the new file system that was introduced in Windows Server 2012 (WS2012). It offers the promise of a CHKDSK-free life. ReFS accomplishes this and prevents bit rot using built-in mechanisms, with the idea that time-consuming offline maintenance should become a thing of the past.   WS2012 Cluster Shared Volumes (CSVs) do not support ReFS; therefore the new files system was of no use to highly available Hyper-V hosts or Scale-Out File Server (SOFS) SMB 3. 0 storage. That changes in Windows Server 2012 R2 (WS2012 R2); CSV does support ReFS, and therefore you can use the new file system in Hyper-V clusters’ CSVs and SOFS clusters. Today I'm going to cover how to disable the integrity bit of virtual hard disks copied to an ReFS volume using PowerShell cmdlets. How to Disable the Integrity Bit of a Virtual Hard Disk There is a requirement when you use ReFS volumes to store Hyper-V virtual machines. The integrity bit of the virtual hard disks (VHD or VHDX) that are stored in the ReFS volume(s) must be turned off.   You will get the following error in Hyper-V Manager if you try to turn on a virtual machine that has virtual hard disks with this integrity bit turned on: The solution is to disable the integrity bit of each virtual hard disk. This is a good news and a bad news story. The good news: Virtual hard disks (either VHD or VHDX) that are newly created on a... --- ### Synching Office 365 with Active Directory: Using Directory Synchronization > Office 365 Directory Synchronization | Learn to install and configure the Directory Synchronization tool for account and password sync in part 2 of this series. - Published: 2013-08-21 - Modified: 2024-09-24 - URL: https://petri.com/sync-office-365-ad-install-directory-synchronization/ - Categories: Active Directory (AD) - Tags: Active Directory, Microsoft Directory Synchronization Tool, Office 365 - Article Type: How To Learn to install and configure the Directory Synchronization tool for account and password sync in part 2 of our series on synching Office 365 with AD! In the first part of this series on setting up AD directory synchronization with Office 365, I looked at some of the concepts involved and basic preparation of your onsite AD. In this article, I’ll describe how to activate synchronization for your Office 365 subscription, and how to install and configure the onsite Directory Synchronization tool. Activating AD Synchronization in Office 365 Before activating Active Directory synchronization, Microsoft recommends that you add your own custom domain to Office 365 to provide users with a better experience. Chances are that if you are using Office 365 for email or SharePoint, you will already be using your own domain name. If that is not the case,  it’s recommended (though not a requirement) to add a custom domain name to Office 365 before activating AD synchronization. Before you install your Directory Synchronization server, you should activate AD synchronization in Office 365 in the administration center: Login to the Office 365 Admin Center with an administrative account. Click users and groups in the list on the left. Click Set up to the left of Active Directory synchronization on the active users tab. Click Activate under Activate Active Directory synchronization. Click Activate again in the pop-up dialog to confirm the action. You’ll see a message appear at the top of the window confirming activation and a note explaining that it could take up to 24 hours before the activation process is complete. Finally, click download below Install and configure the Directory Sync... --- ### Find AD Replication Errors Quickly with Active Directory Replication Status Tool > Learn to use the Active Directory Replication Status tool (ADREPLSTATUS) from Microsoft to quickly find and troubleshoot Active Directory replication errors. - Published: 2013-08-20 - Modified: 2024-12-03 - URL: https://petri.com/troubleshooting-active-directory-replication-status-tool/ - Categories: Active Directory (AD) - Tags: Active Directory Replication Status tool, AD, ADREPLSTATUS, Ask an Admin, replication, Windows Server - Article Type: How To In this Ask an Admin, find out how to quickly find AD replication errors with the Active Directory Replication Status Tool. How can I find Active Directory replication errors with the new AD Replication Status Tool? When you have more than one domain controller (DC), healthy Active Directory replication is critical in ensuring that users can log on and access domain resources. Today I’ll show you how to quickly find problems with AD replication using the Active Directory Replication Status Tool (ADREPLSTATUS) from Microsoft. Download and Install ADREPLSTATUS You can download the Active Directory Replication Status Tool (version 1. 1), which supports monitoring domain controllers running Windows Server 2003 or later. The tool can be installed on Windows Server 2003 (or later), or Windows XP (or later). The machine on which you install the tool must also have both the . NET Framework 4 and 3. 5. 1 components, and be a member of your Active Directory domain. Once the prerequisites are in place, extract the contents of the downloaded ZIP file and run setup to install the tool. Find Replication Errors with ADREPLSTATUS While the Active Directory Replication Status Tool doesn’t offer the same level of functionality as REPADMIN, such as the ability to start replication or change replication settings, it’s a great tool for quickly gathering information visually and finding replication errors. Launch the Active Directory Replication Status tool from the desktop shortcut or double-click repl. exe in C:Program Files (x86)Microsoft Active Directory Replication Status Tool. On the Configuration/Scope Settings tab, change the scope to collect data for your entire forest or just one domain. Forest is... --- ### Will Corporations Rush to Adopt vCloud Hybrid Service? > vCloud Hybrid Service (vCHS) | Will corporations go for the new VMware vCHS hybrid cloud offering? Read our breakdown of how vCHS compares to others. - Published: 2013-08-20 - Modified: 2024-09-24 - URL: https://petri.com/will-corporations-adopt-vmware-vcloud-hybrid-service-vchs/ - Categories: VMware - Article Type: Opinion Is VMware preaching to the choir? Read on for more about vCloud Hybrid Service (vCHS) and whether it'll attract corporate customers. With the upcoming official release of VMware's vCloud Hybrid Service (vCHS), I hear a lot of talk amongst customers, partners and other community members about whether the service will be appealing or not. I personally think that it will make sense for current VMware customers that need a service like this. The fact that vCHS will be the path of least resistance won't hurt the cause either. This post is written with the slant that the consumers considering these options are already a VMware vSphere customers. I don't think that vCHS is going to cause a bunch of current Amazon customers to leave their offerings. That is, unless those customers were trying to utilize Amazon to provide similar capabilities that they have in their data center, when vCHS might be able to fulfill the requirements better. vCloud Hybrid Service Customers: Feeling Warm 'n' Fuzzy Lets face it, if customers are already using VMware products in their data centers, then they will have an increased level of comfort when considering vCHS for a public cloud option. Their familiarity into how the products work and existing skills will help with understanding the operational model, not to mention it will help the suits sleep a little better at night. I've built a short list of items that make vCHS attractive to existing VMware customers. Built on same VMware technology corporations are running in their own data centers. High Availability is built into the vCHS offering just like customers are using... --- ### What Is Consistent Device Naming? > What is Consistent Device Naming (CDN)? Discover how this feature helps automate the deployment and configuration of the Microsoft private cloud. - Published: 2013-08-19 - Modified: 2024-09-04 - URL: https://petri.com/consistent-device-naming-overview/ - Categories: Windows Server - Article Type: Overview Choose consistency over chaos! In this overview, discover how Consistent Device Naming helps automate the deployment/configuration of the MS private cloud. Today I'll provide an overview of Consistent Device Naming (CDN) and explain why it is a valuable feature in automating the deployment and configuration of the Microsoft private cloud. Consistent Device Naming: Before Every Windows administrator has cursed Microsoft whenever they’ve had to figure out the networking behind Local Area Connection, Local Area Connection 1, Local Area Connection 2, and so on (or Ethernet 1, etc on Windows Server 2012). Without CDN there is absolutely no correlation between the name of the network interface in Windows and the device name on the pack of the server. That wasn’t such a big deal when we dealt with traditional physical servers with just a single NIC or a NIC team; after all, we didn’t care what the NICs were called because they were on the same VLAN and had the same role. Things changed when we started working with Hyper-V. Hosts with iSCSI storage could have 6, 10, or even a dozen 1 GbE NICs called Local Area Connection . What should have been a simple operation to connect the server to the network changed: Option 1: With the assistance of a colleague that was pulled away from another important task, the operator or administrator pulled/inserted cables one at a time so that they could identify them on the server and rename the randomly numbered Local Area Connections. Option 2: The operator or administrator got some exercise by running to the back of the rack to pull/insert... --- ### Synching Office 365 with Active Directory: Prepare for Directory Synchronization > Office 365 Directory Synchronization | Learn about the Directory Synchronization tool for Office 365 and Active Directory in part 1 of a new 2-part series. - Published: 2013-08-19 - Modified: 2024-11-19 - URL: https://petri.com/sync-office-365-active-prepare-directory-synchronization/ - Categories: Active Directory (AD) - Tags: Directory Synchronization tool, dirsync, Office 365 - Article Type: How To The updated Directory Synchronization tool is pretty handy. Learn more about how to sync Office 365 and AD in part 1 of this series. The cloud has brought about many changes in the way we use IT systems, breaking down barriers between corporate networks and the Internet, but bringing with it the expectation of access to services and data anytime, anyplace. The updated Directory Synchronization tool allows organizations to connect Office 365 to Active Directory without having to manage separate identities in the cloud or implement Active Directory Federation Services (ADFS). In this first in a series of articles, I’m going to look at how to duplicate local AD accounts and passwords in the cloud to provide users with easier access to Office 365. You will learn about the requirements for installing Directory Synchronization on an onsite server and how password synchronization differs from using Active Directory Federation Services. If you have Windows Server Essentials 2012, you can connect to Office 365 using a simplified procedure and without installing the Directory Sync (dirsync) tool manually. Functionality may differ from what is described using the Directory Synchronization tool in this article. If you want to set up Active Directory Federation Services, for federated identities and single sign-on capabilities with Office 365, see the Active Directory Integration with Office 365 series of articles by John O’Neill Sr. The New Directory Synchronization Tool Microsoft released an update to the Directory Synchronization tool on June 4, 2013, adding the capability to synchronize passwords from a local Active Directory (AD) to Windows Azure AD. The new functionality has been dubbed "same sign-on. " Previously the tool only synchronized... --- ### System Center 2012 SP1 - Orchestrator: Tools > System Center 2012 SP1 - Orchestrator | In this post, discover more about Microsoft's Orchestrator's tools, including deployment manager and runbook designer. - Published: 2013-08-19 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-tools/ - Categories: System Center - Tags: Integration Packs, Microsoft System Center 2012, Orchestrator - Article Type: Overview We're back with our look at System Center 2012 - Orchestrator. Learn more about Orchestrator's tools in this quick overview. We're back with our look at System Center 2012 SP1 - Orchestrator. In my previous post, we looked at Microsoft Orchestrator's components, and I introduced the different server components used to build out the service fabric. In this post we will focus on System Center 2012 SP1 - Orchestrator tools. Orchestrator Tools There are two tools provided with the Orchestrator product to manage and operate the environment: deployment manager and runbook designer. Both of these tools require that the Orchestrator management server is online and functional before they will connect, and the users must be a member of the relevant security groups with permissions to use the service. These tools connect to the management server and to the data store, so it is important that you allow traffic to pass across your firewall to these services if you have decided to deploy the tools remotely. Deployment Manager This environment management tool is used for three main tasks which enable a streamlined and maintainable control pane for managing Single Server Orchestrator environment to global distributed highly scaled implementations. The primary tasks addressed through the tool are: Deploying additional runbook servers to the environment Registering new integration packs with the management server Deploying the registered integration packs to both runbook servers and the Runbook Designers Runbook Designer Used to create, edit, manage, and maintain runbooks within the environment, the Runbook Designer presents a folder-based hierarchy to store and organize runbooks, as well as delegate access control... --- ### 7 Reasons Office 365 Will Succeed > Think Office 365 will last? Check out the 7 reasons why we think Microsoft's updated cloud-based office productivity suite is here to stay. - Published: 2013-08-16 - Modified: 2024-11-19 - URL: https://petri.com/reasons-office-365-will-succeed/ - Categories: Cloud Computing - Tags: Microsoft Office, Office 365, Office on Demand - Article Type: Opinion Still on the fence about Office 365? Read our top reasons why we think Microsoft's updated cloud-based office productivity suite is here to stay. Office 365 has been on the market now for more than two years, and Microsoft has been steadily improving their "software plus services" productivity suite since it was launched. Microsoft is also locked in a heated battle with Google over the market for cloud-based office suites, with the two tech titans swapping competing customer deployment stories like battleships exchanging fusillades: Microsoft scored the State of New York and Aston Martin as Office 365 customers, while Google has signed up the State of Colorado and Genentech. While it's unclear who is currently winning the battle, it is clear that Microsoft has gone from an also-ran to a competive player in cloud-based productivity suites very quickly. It's taken two years worth of updates and improvements to reach this point, but Microsoft shows now signs of slowing down their feverish pace of Office 365 updates, which you can track in the official Office 365 tech blog. 7 Reasons Office 365 Will Succeed So why has Office 365 gained so much ground in less than 24 months? Here are some reasons why I think Office 365 will continue to grow into a significant business for Microsoft and continue the fight with Google over the hearts (and wallets) of IT administrators. 1. Flexible Licensing Options While there are technically two primary variants of Office 365 -- the Home and Business Editions -- Microsoft does offer a plethora of other options for business owners. The Office 365 Home edition can be used on... --- ### Display Last Interactive Logon Information in Windows Server 2008/2012 > Learn to use last interactive logon information in Windows Server 2008/2012 to track attempts of unsuccessful logons in this handy how-to guide. - Published: 2013-08-16 - Modified: 2024-09-04 - URL: https://petri.com/last-interactive-logon-information-windows-server-2008-2012/ - Categories: Windows Server - Article Type: How To Need to know if someone's trying to sneak onto your system? Discover how to use last interactive logon information in Windows Server 2008/2012 to track those attempts. Imagine that your network security was compromised and you have a good reason to believe that someone attacked and compromised your domain environment. Or maybe you need to track the number of unsuccessful logon attempts to the domain. Or perhaps the security officer at your organization as asked you for a report. In this article I will show you how to display the last interactive logon information in Windows Server 2008 and Windows Server 2012. Activate Last Interactive Logon One of the great features that Windows Server 2008/R2/2012 has to offer is the last interactive logon information. In order to activate last interactive logon, the functional level of the domain must be set at minimum to Windows Server 2008. I will perform these steps and take screenshots on a Windows Server 2008 R2 machine, but it all works the same on Windows Server 2012. When last interactive logon is activated for the Active Directory domain, the following AD attributes of the user's object store the relevant information. These attributes are already a part of the AD schema and do not require any modification to AD. msDS-FailedInteractiveLogonCount – The number of failed logon attempts since the last interactive logon setting was enabled msDS-FailedInteractiveLogonCountAtLastSuccessfulLogon – The total number of failed interactive logons until the last successful logon msDS-LastFailedInteractiveLogonTime – The time when the last failed logon attempt occurred msDS-LastSuccessfulInteractiveLogonTime – The time of the last successful logon attempt to a workstation So how do we enable... --- ### Enable Disk Quotas in Windows Server 2012 > Learn to create and enable disk quotas in Windows Server 2012 in order to help manage disk space on file servers in this easy Ask an Admin article. - Published: 2013-08-15 - Modified: 2024-09-24 - URL: https://petri.com/enable-disk-quotas-in-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Disk Quotas, File and Print Services, Windows Server 2012 - Article Type: How To Managing disk space on file servers can be a challenge. Learn to create disk quotas in Windows Server 2012 in this Ask an Admin. How can I create and enable disk quotas in Server 2012? Managing disk space on file servers can be a challenge, especially as users like to hoard information and use network shares to store non work-related files. To ensure that you can keep file servers running smoothly and provide enough space for business-critical operations, it’s wise to look at imposing limits on users’ home shares. In this article, I’ll walk you through how to enable disk quotas on Windows Server 2012. Install FSRM The file and print services server role is installed by default in Windows Server 2012, but if you want to enable disk quotas, you’ll need access to the File Server Resource Manager tool (FSRM), which isn’t installed as standard. If you haven’t already done so, install FSRM: Log in to Windows Server 2012 as a local administrator. Right click the PowerShell icon on the desktop Taskbar and select Run as Administrator from the menu. In the PowerShell window, type add-windowsfeature –name fs-resource-manager –includemanagementtools and press ENTER. Create a quota To add a quota to a folder, you can specify the folder path and choose from a list of pre-defined quota templates: Open Server Manager using the icon on the desktop Taskbar or from the Start screen. Select File Server Resource Manager from the Tools menu in Server Manager. In the left pane of File Server Resource Manager, expand Quota Management and click Quotas. In the Actions menu on the far... --- ### Using the My VMware Mobile App > The My VMware mobile app helps keep tabs of your product entitlements and license keys. Find out what else it can do for you in our product overview! - Published: 2013-08-15 - Modified: 2024-11-19 - URL: https://petri.com/my-vmware-mobile-app-overview/ - Categories: VMware - Tags: vmware - Article Type: Overview What can My VMware do for you? Join us as we walk through the My VMware mobile app, which helps track license keys, support requests, and more. If you work with VMware products as a customer or partner then you are probably familiar with My VMware. The My VMware portal is the location on VMware's website that keeps track of your product entitlements, license keys, and support requests. This gives you access to your purchases in one location. Today I will be covering a walkthrough of the My VMware mobile app. Where to Get the My VMware App You can download the mobile application from the Apple app store or Google play store. The mobile app is free of charge and works on both phones and tablets. There is no difference in functionality between phones or tablets. For IOS devices: download My VMWare from the iTunes App Store. For Android devices: download My VMWare from the Google Store. Viewing Your My VMWare Profile Upon opening the application, and after authenticating, you will be presented with your profile. The image below shows the information from your profile. In my case (shown below), I have my account and I'm also linked to another account, so both show up. My VMware Menu Tap the blue square that looks like a list in the upper left corner to open the menu. The image below shows the available menu options that you can choose. I'll walk through most of these and explain them in a minute. My VMware License Keys I selected one of my accounts and chose to show the license keys. The image below... --- ### Easily Find Local Admins on Your Network > Learn how to find local admins on a workstation in this incredibly easy how-to article. - Published: 2013-08-14 - Modified: 2024-09-04 - URL: https://petri.com/find-local-admin-on-network/ - Categories: Windows Server - Tags: local admin - Article Type: How To Need to rein in your admins? Learn how to search for local admins on a network in this easy how-to article. In this article I want to share a super easy method of finding local administrators on a workstation, and all workstations that have local admins on them. Recently I needed to find admins on my network, and I think this solution is a very neat, simple and useful method that doesn't require too much coding. Finding Local Admins Why is this important? We find ourselves increasingly granting users the privilege of being local administrators on their computer. Even though it is not a wise thing to do, sometimes it's the easiest solution for users who can't perform some actions on their computers because they do not have local admin rights. There have been several incidents where I had to fix damage that users caused to computers due to their local admins rights. For example: They deleted registry keys, deleted system files, edited the HOSTS file in a wrong way, installed add-ons and all sorts of nasty toolbars and crapware, added other users as local administrators, etc. Because of this, I decided to collect that information and centralize a list of who is a local administrator on which computer in my domain. We are going now to create a script, which after it runs, will create several textual output files. Creating a Shared Folder Both the script and the output files have to be accessible to all the workstation in the domain that we want to scan, so as a preparation you have to... --- ### System Center 2012 SP1 - Orchestrator: Server Components > System Center 2012 SP1 - Orchestrator | Learn about Microsoft's Orchestrator server components, including data store, runbook server, and more. - Published: 2013-08-14 - Modified: 2024-09-04 - URL: https://petri.com/system-center-2012-sp1-orchestrator-server-components/ - Categories: System Center - Tags: Architecture, Microsoft System Center 2012, Orchestrator - Article Type: Overview Give runbook a run for its money! Take a closer look at System Center 2012 SP1 - Orchestrator's server components in this post. In the first post of our series we began with a holistic overview of System Center 2012 - Orchestrator. Now as we being in our journey exploring the flexibility and fluidity of this System Center product, we will first take a closer look at the Orchestrator server components which when combined enable this technology. Although extremely powerful as a solution, the architecture is amazingly simple with just five services or server components, of which only three are mandatory. (Be sure to also check out my previous article on installing System Center 2012 SP1 - Orchestrator. ) System Center 2012 - Orchestrator Services Our initial focus will be on the server side services, which together form the fabric of the service. We will identify the role of the service along with its criticality within a deployment, while we also consider the steps that we may need to take to implement a highly available installation. Data Store At the heart of the Orchestrator solution, the data store hosts both system configuration details, along with systems status information and logs, but most importantly it includes all of the runbooks and respective settings for the contained activities and links. As you can appreciate, the data store is a mandatory component in an Orchestrator environment. Utilizing Microsoft SQL Server, Orchestrator stores all of its configuration and operational data in a centralized database, to which all other components will connect. For production-ready implementations, a highly available deployments of Orchestrator is easily achievable through the... --- ### Introducing Converged Networks > What are converged networks? Discover how converged networks (aka converged fabrics) are an economical, easy to deploy, and flexible option in this overview. - Published: 2013-08-14 - Modified: 2024-09-04 - URL: https://petri.com/converged-networks-overview/ - Categories: Hyper-V - Tags: Hyper-V, networking, Windows Server 2012, Windows Sever 2012 R2 - Article Type: Overview In this overview, learn how converged networks are an economical, easy to deploy, and flexible option – and what features make converged networks possible. In this post we are going to discuss the concept of converged networks in Windows Server 2012 and Windows Server 2012 R2, which can be particularly useful for Hyper-V deployments. We'll also look into these converged networks introduce simpler, more economic and flexible network deployments. What Are Converged Networks? In a previous article, I discussed Hyper-V host networking requirements. Usually in Windows Server 2008 (W2008) or Windows Server 2008 R2 (W2008 R2), each network required a NIC or a NIC team. That increased costs, complexity, and was a cabling nightmare. The networks of a W2008 R2 clustered Hyper-V host with iSCSI storage. Customers may have come up with alternative ways to deploy these networks using hardware solutions. Using these tools you could take 2 * 10 GbE connections to the server and divide them up into 1 GbE connections. While this reduces the amount of cabling and complexity, it still presents a problem. Expensive: Some blade solutions require special switches that are incredibly expensive. Inflexible: You don’t have much option in how the bandwidth is divided up or used based on demand. Windows Server 2012 introduced the ability to converge these many networks or fabrics (a cloud term) that are required by a server, such as Hyper-V, into fewer, higher-capacity networks and to divide up that bandwidth to serve the needs of the network requirements of that server. For example, the previously illustrated example could be deployed as follows: A WS2012 Hyper-V host with... --- ### What Are Flings from VMware Labs? (And Why Should You Care?) > VMware flings | VMware released some cool small lab projects in the way of free tools called "flings." Read about the best VMware flings and how to get them. - Published: 2013-08-13 - Modified: 2024-09-24 - URL: https://petri.com/what-are-vmware-flings/ - Categories: VMware - Tags: Labs, vmware - Article Type: Overview Have a thing for VMware Labs' flings? Discover more about these free tools, including some of the best flings available! What are flings from VMware Labs? Like most large enterprises, VMware has a many very smart people working in their development teams. Often these teams directly  drive innovation or they take feedback from customers and the community on needed features. It can often take a long time for desired features to be released in the final product delivery, so in the meantime, many of these developers and engineers have pet projects that are released as "flings" from VMware Labs. Let's take a closer look at what VMware flings are and why you should care. VMware flings: free apps and tools The VMware Labs team has been releasing flings for a while now, and in the last year the number and rate of flings being released has increased. A fling is an application or tool built by a VMware engineer that is generally focused on adding functionality to a product or simplifying the administration of a VMware product. On the VMware Labs blog, a fling is described as such: Our engineers work on tons of pet projects in their spare time, and are always looking to get feedback on their projects (or “flings”). Why flings? A fling is a short-term thing, not a serious relationship but a fun one. Likewise, the tools that are offered here are intended to be played with and explored. None of them are guaranteed to become part of any future product offering and there is no support for them. They are, however, totally free... --- ### Enabling Secure LDAP on Windows Server 2008/2012 Domain Controllers: Configuration > Learn to enable and configure secure LDAP (LDAPS) communications between client/server applications on Windows Server 2008/2012 DCs in part 2 of this series. - Published: 2013-08-13 - Modified: 2024-12-03 - URL: https://petri.com/enable-secure-ldap-windows-server-2008-2012-dc-configuration/ - Categories: Security - Tags: Active Directory, domain controllers, LDAP, LDAPS - Article Type: How To We're back with our two-part series on enabling secure LDAP on Windows Server 2008/2012 DCs! In part 2, we cover LDAPS configuration. Welcome back to our two-part series on how to enable secure LDAP (LDAPS) communications between client/server applications on Windows Server 2008/2012 domain controllers. In part one, I went over what you should know about LDAPS, your options, and prerequisites. After we understood the concepts of why, where and when we should be looking to use LDAPS, let's move on to the actual configuration. Enabling Secure LDAP: Configuring LDAPS 1. Create the right certificate template to issue First, we need to make sure that your CA is allowed to issue the correct types of certificates. Remember, these must contain the Server Authentication OID 1. 3. 6. 1. 5. 5. 7. 3. 1. I've described the steps you need to take in order to create such a template in my Creating a Digital Certificate Template for the purpose of Server Authentication in Windows Server 2008/R2/2012 article. 2. Request a certificate for server authentication To request a certificate from your LDAPS server, do the following on each DC that requires LDAPS connections: In Start, type MMC, and then press Enter. If User Account Control prompts it, go ahead and ensure it displays the action you want. After that, select Yes. In the MMC console that opens, click File and then click Add/Remove Snap-in. Under Available Snap-ins, in Add or Remove Snap-ins, go ahead and select Certificates, and then click Add. In the Certificates snap-in, select Computer account and then click Next. Note: If you plan to have more than one digital certificate for that DC, and if you are using... --- ### Import IP Address with IP Address Management (IPAM) into Windows Server 2012 > Import with IPAM in Windows Server 2012 | Learn to use IP address management (IPAM) to import IP addresses in Server 2012 with the help of this easy guide. - Published: 2013-08-13 - Modified: 2024-09-24 - URL: https://petri.com/import-ip-address-with-ipam-windows-server-2012/ - Categories: Networking - Tags: IP Address Management, IPAM - Article Type: How To Why add manually when you can do a bulk import? Learn to import IP addresses with IPAM into Windows Server 2012 in this Ask an Admin. How do I import IP addresses using IPAM into Windows Server 2012? The IP Address Management (IPAM) client in Server Manager allows you to manually add and edit IP addresses, but if you have been recording IP address utilization in a spreadsheet, you will probably want to try and import that data into IPAM. In this article, I’ll show you how to format IP address information in a file correctly to import bulk IP addresses into Windows Server 2012 using IPAM. Format the Import File IPAM is poorly documented in my opinion, making a useful feature harder to use and understand than it should be. Importing data into IPAM is very simple once you know how. Let’s start by looking at what information about IP addresses we can actually import. To do this, log on to your IPAM server and open Server Manager: Click IPAM in far left pane of Server Manager. In the IPAM client, select IP Address Blocks under IP ADDRESS SPACE, and make sure that Current view is set to IP Addresses in the drop-down menu. If you look along the top the window, you will see the IP address fields listed along the top, such as IP Address and IP Address State. You can add or remove fields by right-clicking on one of the existing fields. If you want to import IP Address and Assignment Type information, you need to add these fields to the first line of your import file, without spaces,... --- ### System Center 2012 SP1 - Orchestrator: Installation > Need to install Microsoft System Center 2012 SP1 - Orchestrator? Learn how with part 1 of a 2-part guide, including an introduction to Runbook Designer! - Published: 2013-08-12 - Modified: 2024-12-03 - URL: https://petri.com/system-center-2012-sp1-orchestrator-installation/ - Categories: System Center - Tags: Automation, installing, Opalis, Orchestrator, Runbook - Article Type: Overview Installing System Center 2012 SP1 - Orchestrator isn't as hard as you think. Learn how in part 1 of our 2-part installation guide. If you have being following the previous posts in this series, you will now have An overview of what is System Center 2012 - Orchestrator. An understanding of the components that combined build up the Orchestrator Server. In this post we will show you how to install System Center 2012 SP1 - Orchestrator (SCO) in just a few easy steps. Before you can proceed with the installation, you will need at least one physical or virtual system ready to which to install Orchestrator. I will walk you through installing your first server. If you choose to deploy additional servers the process will be almost identical, but I will narrate each step of the wizard, so you are aware of the pages you need to pay closer attention to on subsequent servers. If you'd like to understand more about the product before installation, please refer to my What Is Microsoft System Center? article for more information. Great! Assuming you have your homework completed, let get started. How to Install System Center 2012 SP1 - Orchestrator The installation experience begins by launching the SetupOrchestrator. exe utility from the installation media. You may have this media in the form of a physical DVD, or downloaded from one of Microsoft's server's and extracted to a folder or share ready for installation. After a few moments, the launcher will present you with a splash screen, and we are ready to being. Click the Install link, after which you will be presented with the... --- ### Import and Export Lists of Servers with Windows Server 2012 Server Manager > Learn how to import/export server lists using Windows Server 2012 Server Manager in order to save time and share those lists between more than one sysadmin. - Published: 2013-08-12 - Modified: 2024-09-04 - URL: https://petri.com/import-export-managed-server-lists-with-server-manager/ - Categories: Windows Server 2012 - Tags: RSAT, Server Manager - Article Type: How To Too many cooks in the kitchen? Learn to import/export server lists using Windows Server 2012 Server Manager to share a server list between many sysadmins. As I mentioned in one of my previous posts, Server Manager in Windows 8 and Windows Server 2012 is a useful tool that allows you to manage remote servers from one focus point, usually a management workstation. That's fine if you only use one management workstation. However, if there is more than one system administrator sharing the same tasks, and if they all need to manage the same set of remote servers, there must be an easy method of sharing this servers' list between them, right? Well, there is. In today's article, I'm going to show you how to import and export lists of managed servers in Windows Server 2012 Server Manager. Exporting Server Manager Settings Instead of manually configuring each management workstation with the same set of possibly tens or hundreds of servers, you can export Server Manager's settings away from one machine and use them on other computers. How is this accomplished? Well, Server Manager configuration information is stored in the ServerList. xml and user. config files found here: %appdata%MicrosoftWindowsServerManagerServerList. xml %appdata%LocalMicrosoft_CorporationServerManager. exe_StrongName_GUID6. 2. 0. 0user. config The settings that are stored in those files can be used on other computers that are running the same Server Manager version (meaning - Windows Server 2012 > Windows 8, and Windows Server 2008 R2 > Windows 7). Note: You cannot use this trick to manage Windows Server 2008/R2 or 2012 servers that that are using the Server Core installation option. You should also make sure that Remote Server Administration Tools (RSAT)... --- ### Understanding Hyper-V Host Networking Requirements > Basic Hyper-V host networking goes beyond numbers of NICs. Discover what Hyper-V networking requirements and designs are needed in this in-depth guide. - Published: 2013-08-12 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-host-networking-requirements/ - Categories: Hyper-V - Tags: networking, NIC, standalone host - Article Type: Overview We move beyond NICs in today's tutorial. Go deep as we discuss basic Hyper-V host networking requirements and designs. In this article we will explain the basic Hyper-V host networking requirements. This isn’t necessarily a post on “How many NICs do I need in a Hyper-V host? ". Instead, this article will discuss what communications are performed by Hyper-V and identifying the need for isolating those protocols or functions to have a stable cloud. Understanding these needs is a critical step in designing Hyper-V hosts, particularly those that will take advantage of new features in Windows Server 2012 (WS2012) or Windows Server 2012 R2 (WS2012R2). Basic Hyper-V Host Network Requirements and Designs Network design for Hyper-V hosts was much simpler before the release of WS2012 because we did not have many options. The decision making process simply came down to: Will my hosts be clustered? Will I use NIC teaming? Do I need a dedicated backup network? Is the storage connected by iSCSI? If I am using WS2012, do I want a Live Migration network on non-clustered hosts? In essence, there were two designs with minor variations depending on the answers to those questions. Those two designs are standalone (or non-clustered) hosts or clustered hosts. Requirements of a Standalone Host In this simple design there must be two networks: Management: This network is use to remotely manage Management OS (sometimes referred to as the host OS) of the host. Remote desktop, monitoring, backup, and Hyper-V management traffic all pass through this network by default. Virtual Machine: A virtual switch (referred to as a... --- ### Will Surface Setbacks Derail Microsoft's Tablet Ambitions? > Microsoft Surface Setbacks | Microsoft's tablet efforts have suffered setbacks. Find out why we think that Microsoft may rebound with the Surface – or may not. - Published: 2013-08-09 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-surface-setbacks/ - Categories: Windows 8 - Tags: Asus, Google Android, iPad, Microsoft Surface Pro, Microsoft Surface RT - Article Type: Opinion Microsoft's tablet efforts - and its profits - have suffered. Learn whether we think Microsoft may or may not rebound from this Surface-induced scenario. Microsoft's Surface tablet setbacks have been well-publicized, from a $900 million write-off on unsold Surface RT tablets, lukewarm to  negative reviews of the tablets from the tech media, and a scarcity of essential and well-known apps in the Windows 8 app store. It's true that Microsoft has committed the tech company equivalent of an own goal, which has led to lots of collective finger-pointing and snickering by the legions of Apple and Google faithful. So do all of these self-inflicted wounds mean the end of Microsoft's tablet ambitions? 5 Reasons Why the Microsoft Surface Has Struggled While things do look gloomy for Microsoft's tablet efforts at the moment, I do believe that Microsoft will pick up the pieces and eventually reach some level of success in the tablet market, especially in the enterprise. That said, any ambitions Microsoft had of dominating the tablet market like it historically has with the desktop PC market should be buried now, however, as the era of Microsoft being able to gloat about a 90% market share in computing devices is long gone: We're now living in a multipolar world of Apple iOS, Google Android, and Windows 8 tablets, and will be for years to come. So how did Microsoft fumble the Surface launch so badly? Let's review. 1. Competition with Hardware Partners Microsoft partners often have a love-hate relationship with Microsoft, with many profiting from working in concert with the software giant, while others can see their markets evaporate when Microsoft decides... --- ### Disabling Adobe Reader XI Updates Using Group Policy > Block and disable Adobe Reader XI updates from being installed by end users with Group Policy. Learn how in this easy-to-follow tutorial! - Published: 2013-08-09 - Modified: 2024-09-04 - URL: https://petri.com/disable-adobe-reader-xi-updates-group-policy/ - Categories: Windows Server - Article Type: How To Got control issues? In this tutorial, learn to disable Adobe Reader XI updates using the ever-handy Group Policy. Many system administrators have encountered this at least once in our lifetime, or should I say at least once a week: We constantly find ourselves trying to control our network and environment, protecting it from malware, constantly keeping it up to date, and in many cases also protecting it from users that can be blamed for our hair loss among many other things. One of these struggles is to keep our software, operating systems, and hardware up to date with the latest patches, fixes, or service packs. However, because many of these updates were known at one time or another during IT history to cause serious issues with whatever they were supposed to fix, we as responsible IT pros usually want to test these updates before applying them blindly on our productions systems. What makes out life more complex is the fact that for some software, such as the ones from Adobe, updates can be done by our end users. You know what this can lead to, right? We need to control these updates and prevent regular users from updating their workstations. When we'll be done with our testing, we'll let those updates flow in, or perhaps we never will, it all depends on what we see fit at that time. In this article, I'll walk you through the steps to disable Adobe Reader XI updates with Group Policy. How to Disable Adobe Reader XI Updates So how do we block Adobe updates... --- ### What Is Microsoft System Center 2012 - Orchestrator? > What is Microsoft System Center 2012 - Orchestrator, and what can it do for IT pros? Discover what this helpful automation tool can do in this introduction. - Published: 2013-08-08 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-system-center-2012-orchestrator-overview/ - Categories: System Center - Tags: Automation, Orchestrator - Article Type: Overview What is Microsoft System Center 2012 - Orchestrator? Get the low-down on this handy automation tool. If the thought of automating your most common mundane tasks so that you'll never need to repeat them again sparks excitement and anticipation, then the new System Center 2012 - Orchestrator component should make you very happy. Historically, the most common method of creating this automation was by crafting a script, which could lead to anxiety and frustration for many IT pros, who often believe that coding is a job left to developers. In this article, I'll provide an overview of Microsoft's System Center 2012 - Orchestrator and how this automation tool can work for you. Shrinking IT budgets and resources translates into an even greater need for scripting and automation, so much so that IT pros who enjoy scripting and are adept at automating IT tasks move on in their careers as they can achieve more with less. Introducing System Center 2012 - Orchestrator Microsoft has been acutely aware of the challenge facing IT departments with shrinking budgets and human resources. Through the acquisition of a company and product called Opalis in 2009, Microsoft set out change the behavior of IT pros by providing a tool -- somewhat similar to Visio in appearance and usage --that could enable the creation of complex IT automation by essentially drawing the process on a design canvas! Using Opalis, system administrators could potentially  replace all those lines of PowerShell code with a visual IT automation tool. Opalis was quickly integrated into System Center and renamed "Orchestrator. " Through the use of a simple drag-and-drop... --- ### Enabling Secure LDAP on Windows Server 2008/2012 Domain Controllers > Learn how to enable secure LDAP (LDAPS) communications between client/server applications on Windows Server 2008/2012 DCs in part 1 of a 2-part series. - Published: 2013-08-08 - Modified: 2024-09-04 - URL: https://petri.com/enable-secure-ldap-windows-server-2008-2012-dc/ - Categories: Security - Tags: Domain Controller, LDAP, LDAPS, SSL, TSL - Article Type: How To Remember, by default LDAP communications aren't secure. Learn to enable secure LDAP on Windows Server 2008/2012 DCs in part one of a two-part series. This is the first in a two-article series on how to enable secure LDAP (Lightweight Directory Access Protocol) communications between client and server applications on Windows Server 2008 and 2012 domain controllers. First, we need to remember that by default, regular LDAP communications between server and client applications are not protected with encryption. Without encryption, it would be possible for an attacker to use networking monitoring or packet sniffing tools to capture packets and examine the data being transmitted between the servers and the LDAP client.  In an LDAP bind, the password and username information is passed over the connection in unencrypted packets. Obviously the big concern here is that this could lead to administrative credentials could be stolen. This first article will go over how to enable secure LDAP on Windows Server 2008 and 2012 domain controllers, specifically your options and the prerequisites needed. Enabling LDAP on Windows-Based Domain Controllers One of the questions I've been asked on various forums is how to enable LDAP over Secure Sockets Layer (SSL) / Transport Layer Security (TLS) (aka LDAPS) on Windows-based Domain Controllers (DCs).  I will use this opportunity to describe exactly how. LDAPS Fundamentals This first thing you must understand is that LDAPS is primarily used for non-Microsoft clients. LDAPS is best used to protect credentials during a simple LDAP bind. This is when a user name and password could be exposed. There is no real need or use for LDAPS in any other scenario, but using non-Microsoft clients, and some... --- ### Configuring Windows Server Core 2012 > Learn to configure Windows Server Core 2012 quickly and easily in this Ask an Admin, including steps to join the server to a domain. - Published: 2013-08-08 - Modified: 2024-09-24 - URL: https://petri.com/configure-windows-server-core-2012/ - Categories: Windows Server 2012 - Tags: Server Core - Article Type: How To Want to get Server Core up and running quickly? Discover how to set basic configuration parameters in Windows Server Core 2012. How can I configure Server Core 2012? Server Core is the default installation option in Windows Server 2012, but many will choose the full GUI because it’s easier to configure and manage. In this article, I’ll show you how to set basic configuration parameters in Server Core so that you can get it up and running quickly, and take advantage of the small footprint and reduced attack surface. Rename Server Core Once Server Core has installed, log on with the local administrator account and run the following command in the console: sconfig The first task is to give the server a useful name. You can see in the figure above that a name has been automatically generated, but it doesn’t have any meaning on my network or help me to identify the server. To change the server’s name, do the following. Type 2 in the Server Configuration console window and press Enter.   Now type a new name for the server and press Enter again. Click OK in the dialog to restart the server. Network settings Assign the server a static IP address. Open the Server Configuration console again by typing sconfig. Choose Network Settings (8) and press Enter.   You’ll see a list of network adapters and corresponding index numbers. Choose the network adapter that you want to configure by typing its index number and pressing Enter. Usually the index number is 12, but this can vary. Choose Set Network Adapter Address (1). To change from automatic DHCP configuration to a... --- ### Windows XP Security Considerations > Windows XP security | Microsoft's discontinuing their Windows XP support in 2014. Learn what what you can do about Windows XP security concerns in this post. - Published: 2013-08-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-xp-security-considerations/ - Categories: Security - Tags: Windows XP - Article Type: Overview Windows XP lack of security got you down? Learn more about the future of Windows XP, advances in Win8 security, and what you can do about it. Windows XP was first released in late 2001, and it has since become one of the most successful and widely deployed Microsoft desktop operating systems. With good reason, in fact. Windows XP was the first consumer desktop operating system that leveraged the Windows NT kernel. Windows XP introduced features such as the side-by-side assembly that permitted the installation of globally shared code libraries, effectively eliminating the “DLL hell” that plagued earlier versions of Windows. Related: Windows XP End of Support Guide All of this resulted in an operating system that was much more stable, reliable, and efficient than previous Windows desktop operating systems. But often good things don't last, and this operating system is no exception. Due to issues with Windows XP security and Microsoft's upcoming discontinuation of support, it would be in your best interest to migrate to Windows 8. Windows XP Security: All Good Things Must Come to an End No question that Windows XP has had a good run, but sadly, all good things must come to an end. Although Windows XP as a consumer desktop operating system still works well today, there are many important factors that should compel you to migrate to one of the newer releases of Windows. Chief among those are Windows XP security concerns. Development on Windows XP began in the previous century, and in the years since its initial release, the world of computing in general (and the threat landscape specifically) has changed dramatically. Windows XP was certainly more secure than... --- ### How to Store Hyper-V Virtual Machines on SMB 3.0 Storage > Learn how storing Hyper-V virtual machines on SMB 3.0 will help lower storage costs and make your job a little easier in this tutorial. - Published: 2013-08-07 - Modified: 2024-09-04 - URL: https://petri.com/store-hyper-v-virtual-machine-smb-3-storage/ - Categories: Hyper-V - Tags: Hyper-V Server 2012, Hyper-V Server 2012 R2, SMB 3.0, storage, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Storing VMs on SMB file shares can help lower storage costs. Find out how to use Hyper-V virtual machines on SMB 3.0 storage in handy walk-through. In this article we will show you how to use and store Hyper-V virtual machines on SMB 3. 0 storage. People expect this process to be extremely complex, but it’s not. If you can create a shared folder and set the permissions on the share and folder, then you already know how to use SMB 3. 0 shares for Hyper-V. Hyper-V Virtual Machines on SMB 3. 0: Configure Default Storage Locations Hyper-V has a default location for storing the files of new virtual machines and another default location for new virtual hard disks: Virtual hard disks: C:UsersPublicDocumentsHyper-VVirtual Hard Disks Virtual machines: C:ProgramDataMicrosoftWindowsHyper-V These are pretty dumb locations to use no matter what kind of storage you use. We would recommend that you always change both of these locations to the following. D:Virtual Machines or similar: If you are using direct attached storage (DAS) to store virtual machines C:ClusterStorageVolume1 or similar: In the situation where you are creating a Hyper-V cluster with a traditional SAN and Cluster Shared Volumes (CSVs) \FileServerShareName or similar: When you want to use SMB 3. 0 storage whether the hosts will be clustered or not Below you can see that the UNC path to a file share on a Scale-Out File Server (SOFS) was used to define both default locations in the Hyper-V Settings of a host in Hyper-V Manager. This means that any process of creating a new virtual hard disk or virtual machine in Hyper-V will use this file share. You... --- ### How to Use VMware Horizon Data Service on an iPad > Curious about Horizon Data? Check out our in-depth walk-through to learn how to use and configure VMware Horizon Data on an iPad. - Published: 2013-08-06 - Modified: 2024-09-24 - URL: https://petri.com/use-horizon-data-on-ipad/ - Categories: Mobile - Tags: iPad, VMware Horizon - Article Type: How To VMware's Horizon Data service can help you store and sync files across multiple devices. Curious? Read to learn learn how to use Horizon Data on an iPad. With the release of the Horizon Suite for End User Computing (EUC) earlier this year, the Horizon Data service was included. This allows users to store and sync files across multiple devices while the files are stored within their corporate datacenter. This type of service is nothing new, people have been using services like Dropbox and Box. net for years. Within this post you will get a detailed walk-through of the Horizon Data experience. Using Horizon Data on an iPad Horizon Data does not offer a separate mobile application, so the data function is rolled into the larger Horizon Workspace mobile app. This allows for users to access Horizon Workspace, Horizon View, and the data service.   Once you launch the application you will see the folders and files that you have located in the data service. Horizon Data works much like a basic version of Dropbox. A folder is created when you install the client on your computer, and any files and folders that you place in the Horizon folder will be synched unless they are forbidden by a policy. The image below shows a list of the files that are located in my data share. If I tap on one it would open up to be viewed. But first, go to My Files. I want to showcase the Edit button highlighted by the red arrow in the top-right corner.   Click that Edit button; you will be allowed to select one of... --- ### Administering SharePoint 2013 with PowerShell: Managing Content Databases > Administer SharePoint 2013 with PowerShell and learn to manage content databases in this helpful how-to article. Includes content database removal and more. - Published: 2013-08-06 - Modified: 2024-09-04 - URL: https://petri.com/administer-sharepoint-2013-powershell-manage-content-databases/ - Categories: SharePoint - Tags: content database, PowerShell - Article Type: How To Do you know how to manage content databases? Learn to administer SharePoint 2013 with PowerShell and manage content databases in this thorough walk-through. Content databases contain all of the user data for one or more site collections. A site collection, which is a logical container for one or more sites, can only store its content in one content database, but a single content database can hold multiple site collections inside it. Similarly, content databases can belong only to one web application, but one web application can contain multiple content databases. Simple, right? Because content databases are so important to SharePoint, you should really be comfortable working with and administering them. This article is going to show you how to use PowerShell to adminster SharePoint 2013; specifically, how to administer and manage content databases. Administering SharePoint 2013 Using PowerShell: Prerequisites You need farm administrator access to a SharePoint 2013 farm to complete the exercises in this article. Open a remote desktop session to one of your SharePoint servers in your farm. Open PowerShell or the SharePoint Management Shell. If you use PowerShell ISE or if you do not have the SharePoint commands available in the shell you’re using, load the SharePoint commands with this PowerShell command: Add-PSSnapin Microsoft. SharePoint. PowerShell Find the SharePoint 2013 Content Databases with PowerShell When working with your content databases, you’ll use the Get-SPContentDatabase cmdlet to find and list them. This command will be the foundation of working with your content databases, so let’s get familiar with it. List all content databases in SharePoint 2013 with PowerShell Use the Get-SPContentDatabase with no parameters to get the list of all... --- ### Configure a DNS Server Address for a Network Adapter in Windows Server > Learn how to configure DNS addresses for a network adapter in Windows Server 2012 before promoting to a DC in this quick Ask an Admin article. - Published: 2013-08-06 - Modified: 2024-09-24 - URL: https://petri.com/configuring-dns-server-addresses-for-network-adapter/ - Categories: DNS - Tags: Editor's Pick, TCP/IP - Article Type: How To DNS plays a vital role in a healthy AD environment. Learn to configure DNS settings for a network adapter in Windows Server 2012 in this quick Ask an Admin article. How can I correctly configure DNS server addresses for a network adapter in Windows Server? DNS plays a vital role in a healthy Active Directory (AD) environment, and any failure in name resolution could be disastrous. Before promoting Windows Server to a DC, you should always assign the server a static IP address. What I'm showing you in this article applies to simple AD environments with one domain controller. DNS Server Addresses on a Domain Controller Assuming the DNS server role will be installed on the same server as the DC, specify the server’s static IP address as the primary DNS server and use the loopback address (127. 0. 0. 1) as the secondary DNS server entry. Configure Network Adapter in Windows Server 2012 Log in to Windows Server 2012 with an administrator account. To change the IP address and DNS server settings for a network adapter using the GUI: On the desktop, right-click the network icon in the bottom right of the Task Bar and select Open Network and Sharing Center from the menu. In the Network and Sharing Center, click Change adapter settings. Right-click the relevant network adapter in the Network Connections window and select Properties from the menu. In the adapter’s Properties window, select Internet Protocol Version 4 (TCP/IPv4) and click Properties. Enter the required IP address and DNS server settings and then click OK. Click Close in the adapter’s Properties window. Configure Network Adapter Settings Using PowerShell To perform the same procedure... --- ### What does vCloud Hybrid Service (vCHS) Mean for VMware Partners? > What do VMware partners think about the new VMware vCloud Hybrid Service (vCHS)? Check out our writer Brian Suhr's initial thoughts. - Published: 2013-08-05 - Modified: 2024-11-19 - URL: https://petri.com/vmware-partners-vcloud-hybrid-service-vchs/ - Categories: VMware - Tags: hybrid cloud, vCHS, vCloud, vmware - Article Type: Overview The new VMware vCloud Hybrid Service (vCHS) sounds interesting, but what do VMware partners think about it? Our writer Brian Suhr shares some initial thoughts. With the new VMware vCloud Hybrid Service (vCHS) customers will now be able to purchase virtual resources from a VMware-operated cloud. For the last couple of years you have been able to purchase vCloud capacity from third-party cloud vendors, but vCHS is a VMware supported and sold offering. This will allow customers to use as a public cloud or connect with their internal resources to build a hybrid cloud. Typically customers purchase their licensing and services through a VMware partner. So I can't help wondering: How will vCloud Hybrid Service affect VMware partners? I Want My vCHS Does having vCloud Hybrid Service mean I can pop over to a web page, enter my credit card and – bada boom – have cloud capacity? Well, not exactly. The current direction of VMware is to enable their partners to sell vCHS capacity and services. This means that a traditional VMware partner will be able to sell you a base core amount of capacity, or provide a larger amount to start with. This is good news for VMware partners, but I don't know if in the future this will continue to be the only way that vCHS services and capacity can be purchased. Perhaps you agree but still ask, "What happens after I purchase the initial amount, but I want to purchase some additional capacity? " The MY VMware portal for your account that was used to purchase vCHS will feature a section that will have a new Subscription Services portal... --- ### Configuring Simple Storage Spaces in a Failover Cluster > Learn to configure storage space in Windows Server to create a failover cluster. Use this to create a Hyper-V cluster or SMB 3.0 Scale-Out File Server (SOFS)! - Published: 2013-08-05 - Modified: 2024-09-04 - URL: https://petri.com/configure-storage-spaces-failover-cluster/ - Categories: Backup & Storage - Tags: Failover Clustering, Hyper-V, SMB 3.0, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Need more space? Increase storage by configuring storage space in Windows Server to create a failover cluster. In this blog post we will show you how to configure the JBOD storage space in Windows Server to create a failover cluster. This cluster can then be used to create a small Hyper-V cluster or an SMB 3. 0 Scale-Out File Server (SOFS). The following example has been done using Windows Server 2012 R2, but the instructions include Windows Server 2012. How to Configure Storage Spaces in a Failover Cluster: Physical Storage In this solution we will deploy two clustered servers with a single JBOD (Just a Bunch of Disks or Just a Bunch of Drives) tray. Storage space will be created on the JBOD and be made available to applications, such as a SOFS (to share using SMB 3. 0 to other servers) or Hyper-V which will be running on the two servers. The first step will be to acquire the servers and the storage. Please consult the Windows Server Catalog to find a selection of storage that is supported for Storage Spaces. Use the guidance of that vendor to purchase disks and to cable the storage to the servers. And then you will create a normal Windows Server Failover Cluster; do not add the disks of the JBOD to the cluster during this step. The disks will be managed by Storage Spaces as a single entity. Creating a Storage Pool Open Failover Cluster Manager and connect to the new cluster. Browse to Storage > Pools. Right-click and select New Storage Pool. Give the new storage pool a... --- ### Why Some IT Pros Deserve Cloud Outsourcing > Outsourcing to cloud computing is every IT pro's fear. Discover why our writer thinks bad IT pros are to blame for businesses outsourcing to the cloud. - Published: 2013-08-02 - Modified: 2024-09-04 - URL: https://petri.com/cloud-computing-outsourcing-it-service/ - Categories: Cloud Computing - Tags: Opinion - Article Type: Opinion Are you guilty of being a bad IT pro? Find out why our writer thinks some IT pros give business owners reason to outsource to cloud computing. I expect to get a lot of heat for this opinion piece. Actually, I think people might even consider hiring hitmen to get even with me. Why? I am going to explain why many (not all) IT pros have let down their colleagues by giving business owners every reason to outsource their IT infrastructure and services to the cloud. Cloud Computing and Outsourcing The outsourcing of IT is something that started to gather steam in the 1990s. Businesses had grown their dependency on IT services since the 1960s. One day the boards across the globe discovered that the business had become an accidental IT company, something that was never planned on. IT was seen as a cost center, a black hole – something that was not just eating up budget, but had also become a distraction to the core functions of the business. So IT jobs were outsourced. Some IT pros were lucky and got jobs with the outsourcing company to ensure continuity of service. The unlucky ones watched as their jobs went to another continent. One could argue that service levels also dropped, but that’s a mixed bag. We might come back to that topic later. Now here we are, two decades later, and businesses are once again looking at their core functionality. “Where did that computer room or data center come from? ” “Why are we always talking about IT? ” “Just when did this become an IT business? ” Those are the sort of questions that purveyors... --- ### Windows Intune: What's New in Q3 2013 > Windows Intune, Microsoft's cloud-based management service is ever-changing. Read on to discover the latest improvements to Windows Intune. - Published: 2013-08-01 - Modified: 2024-09-24 - URL: https://petri.com/windows-intune-update-2013/ - Categories: System Center - Tags: Windows Intune - Article Type: Overview So what are the latest improvements to Windows Intune, Microsoft's cloud-based management service? Read on to find out. With a continued emphasis on delivering scenario based solutions focused on addressing the primary challenges we face on a daily basis as IT pros, the latest Windows Intune update -- roughly aligned with the R2 updates of System Center 2012 and Windows Server 2012 -- includes a number of new features and improvements, with many of them focused on closer integration with Windows Server 2012 R2 and System Center 2012 R2, which also have new features that integrate with Windows Intune. Before we dive into what these are, I do want to highlight the fact that most of these additions and improvements are scenario based, which means that the true potential of the offering can only be realized when the supporting components are deployed and available. Windows Intune Update: Windows Server 2012 R2 The first of the enablers is enhanced support for Windows Intune in Windows Server 2012 R2. Investments in areas like Active Directory have a very specific focus on enabling organisations to deliver the foundation infrastructure for “bring your own device” (BYOD) offerings. There are currently three major new capabilities offered in Server 2012 R2 OS that relate to Intune, including: ADFS extensions – These extensions enable users to register their devices including Windows Phone, Apple IOS devices, and Android (limited support in the current preview) using a simple web form, to request that the device be trusted to access organization resources. Once registered, ADFS will establish a new object in the hosting Active Directory for... --- ### VMware Horizon Suite Licensing Explained > VMware Horizon Suite licensing options have changed, along with their mix of new and existing products. Discover what's new in this article. - Published: 2013-08-01 - Modified: 2024-09-24 - URL: https://petri.com/vmware-horizon-suite-licensing-options-changes/ - Categories: VMware - Tags: Horizon Suite, vmware, VMware View - Article Type: Overview Confused by the licensing options available for VMware Horizon Suite? Discover what's changed in our handy VMware Horizon Suite Licensing breakdown. Earlier this year VMware formally announced the release of the VMware Horizon Suite as its End User Computing (EUC) offering. Horizon is a mix of new and existing products, along with some licensing changes that impact how some of the products can be used and licensed. I'll break down the options for licensing Horizon Suite and cover the recent changes. VMware Horizon Suite Licensing: What's Involved Horizon Suite is made up of the following products: Horizon View for virtual desktops, Horizon Mirage for physical desktop management, and Horizon Workspace that now includes application management and a data service similar to Dropbox. In the near future Horizon Workspace will be expanded with the release of Horizon Mobile that will bring mobile device management to the suite. Currently there are two licensing options for Horizon Suite: Named user licensing and concurrent user licensing. The individual products have various methods of licensing, so I'll break down the options for the suite first then the individual products. Named User Licensing The named user license was the only available option for purchasing Horizon Suite at the launch. This meant that a license for anyone accessing the solution would need to be purchased. This was not an issue for all customers but for ones that run shifts of people (such as hospitals or call centers) were not excited about the limited licensing options. The named user license had a retail cost of $300 per user and would result in additional... --- ### Managing Active Directory in PowerShell 3.0 with Out-GridView > Manage Active Directory with PowerShell 3.0 Out-GridView with this easy tutorial, and learn to filter and manipulate the results. - Published: 2013-08-01 - Modified: 2024-09-24 - URL: https://petri.com/manage-active-directory-powershell-3-out-gridview/ - Categories: Active Directory (AD) - Tags: Active Directory, GridView, PowerShell 3.0, Windows Server 2012 - Article Type: How To PowerShell's Out-Gridview cmdlet is your friend. Learn to manage AD in PowerShell using Out-Gridview and filter your results. How do I manage Active Directory in PowerShell with Out-Gridview? Previously I looked at how to use PowerShell to export Active Directory user information as a comma-delimited file so that it could be opened in an Excel spreadsheet. This is useful when managers request reports or you just need an easier way to sort or digest information. However, PowerShell has its own GridView application that can be used not only to view information in a more palatable manner, but provide easy data filtering and send to results to another cmdlet. Export information to GridView Let’s start with a simple example. Log on to a Windows Server 2012 domain controller (DC) as an administrator and follow the steps below: Right-click the blue PowerShell icon on the desktop and select Run as Administrator from the menu. In the new PowerShell window type get-aduser –filter * -property * and press Enter. You’ll see all the user information in Active Directory (AD) displayed in the PowerShell window. Now run the same command, but let’s pipe the information to GridView. Type get-aduser –filter * -property * | out-gridview and press Enter. This time the information will displayed in the GridView window. Much like in an Excel spreadsheet, GridView lets you sort information by clicking on column names, filter information to narrow down your results, and also add search criteria to further hone the data. Playing with the results Filtering your results is easy. Just type into the Filter box at the top of... --- ### What Is Windows Azure Pack, aka Katal? > Use Windows Azure Pack (aka Katal) to bring Azure cloud integration to Microsoft System Center and Windows Server. Learn more in this introduction. - Published: 2013-07-31 - Modified: 2024-09-04 - URL: https://petri.com/what-is-windows-azure-pack-katal/ - Categories: Cloud Computing - Tags: cloud computing, WAP, Windows Azure Pack - Article Type: Overview Need to integrate with Windows Azure? Discover how Windows Azure Pack (WAP) brings Azure cloud integration to Microsoft System Center and Windows Server. As if all the different components and modules in the Microsoft System Center product family weren't confusing enough, the new Windows Azure Pack (WAP) could potentially be one of the most head-scratching components of the System Center suite. That said, it also has the potential to be one of the single most important components of the entire system! Introducing Windows Azure Pack (Katal) Although the Windows Azure Pack started as a way to bring the gorgeous HTML5 user experience developed for Windows Azure for deployment on premise by IaaS (Infrastructure as a Service or VMs to you and me) hosting companies, WAP was first offered to the public under the bewildering moniker "Windows Azure Services for Windows Server" and was commonly referred to by the internal Microsoft codename, Katal. The Windows Azure Pack (WAP) brings Azure cloud integration to Microsoft System Center and Windows Server. (Source: Microsoft) Portal Components Building on the framework of the Azure portal, Windows Azure Pack includes the following components: End User Portal – As portal built to look and feel just like the Windows Azure environment, this is a customizable self-service environment for users to access and manage resources offered to them in their clouds. The portal is multi-tenant aware, offering only the experience which the administrator configures for each tenant. Management Portal – A second portal offered specifically for cloud administrators to configure and manage the offerings and services which can then be offered to the tenants, through the End User Portal... . --- ### Manage Network Adapters with PowerShell: Configure an Adapter > Manage Network Adapters with PowerShell | Learn to configure an network adapter in Windows Server 2012 in part four of this multi-part series. - Published: 2013-07-31 - Modified: 2024-09-04 - URL: https://petri.com/manage-network-adapters-powershell-configure-adapter/ - Categories: Networking - Tags: Advanced, PowerShell, widows server 2012 - Article Type: How To We're returning with our mutli-part series on managing network adapters with PowerShell! Learn how to configure an adapter in today's tutorial. Over my last few articles I’ve been demonstrating how to use PowerShell to manage network adapters in Windows Server 2012 (and since the code base is the same – though to a lesser degree – Windows 8 adapters as well). To this point I’ve shown you how to gather a lot of information. In this article let’s start on how to configure an adapter. I hope it goes without saying, but don’t forget that some changes might not take effect until we restart the adapter, and network connections could be interrupted. So test everything in a non-production environment first. This is part four of a multi-part series. I've already covered how to manage network adapters with PowerShell and how to configure network adapters in Windows Server 2012. And in part three, I went over how to troubleshoot some networking issues using PowerShell cmdlets. Manage Network Adapters with PowerShell: Using Set-NetAdapter The Set-NetAdapter cmdlet is part of the NetAdapter module. You can specify an adapter by name, interface description, or pipe an adapter from Get-NetAdapter. You primarily can use this cmdlet to set the adapter’s VLAN ID (if supported) or the MAC address. The cmdlet even supports –WhatIf ​ PS C:> get-netadapter -CimSession chi-fp02 | Set-NetAdapter -MacAddress "001122334455" -whatif What if: chi-fp02: Set-NetAdapter 'Ethernet' -MacAddress 001122334455 I ran this command from my Windows 8 admin desktop. The remote adapter will most likely automatically restart when you make a change. But you can include –NoRestart to defer this operation... . --- ### Designing a Basic Scale-Out File Server (SOFS) > Scale-Out File Server (SOFS) | Discover what goes into designing a basic scale-out file server that will offer scalable SMB 3.0 connectivity to storage. - Published: 2013-07-31 - Modified: 2024-09-04 - URL: https://petri.com/design-basic-scale-out-file-server-sofs/ - Categories: Backup & Storage - Tags: Scale-Out File Server, SOFS, Windows Server 2012 - Article Type: How To We've shown you how to create a basic scale-out file server (SOFS) – now it's time to learn what goes into designing an SOFS! We're back with our look into building a basic scale-out file server (SOFS). In the first post, I showed you how to create a scale-out file server. In this post I'll show you what goes into designing a basic Windows Server 2012 Scale-Out File Server. This will offer scalable and continuously available SMB 3. 0 connectivity to storage for workloads such as Hyper-V, IIS, and SQL Server. (If you need to do some catching up, be sure to check out our previous articles on Windows Server 2012: SMB 3. 0 and the Scale-Out File Server. ) Scale-Out File Server: The Concept A Scale-Out File Server (SOFS) is a Windows Server cluster with some form of shared storage. The cluster provides a single access point for applications to connect to the shared storage via SMB 3. 0. This has two benefits: Software defined storage: Provisioning new storage for application is a matter of creating file shares and settings the permissions. This simple abstraction provides a common administrative model for all forms of physical storage in the data center. It’s also a model that every Windows administrator should already understand. SMB 3. 0: Microsoft’s datacenter and enterprise level storage protocol is simpler than MPIO (SMB Multichannel) and provides better performance than block storage alternatives such as iSCSI and fiber channel (SMB Direct). (For more on the topic, check out our previous article: Windows Server 2012 SMB 3. 0 File Shares: An Overview. ) SOFS High-Level Architecture A common misconception is that a SOFS is something like a HP P4000 storage... --- ### Setup a SharePoint 2013 Development Environment: Farm and Service App Configuration > Setup SharePoint 2013 Development Environment | Learn to do a farm and service application configuration in the final chapter in this 3-part series. - Published: 2013-07-30 - Modified: 2024-09-04 - URL: https://petri.com/setup-sharepoint-2013-development-environment-farm-configuration/ - Categories: SharePoint - Tags: development, farm configuration, SharePoint 2013 - Article Type: How To We're wrapping up our series on SharePoint 2013 development environments! Learn to do a farm and service app configuration in this tutorial. In this article I’ll be showing you how to complete a SharePoint 2013 development farm on a Hyper-V VM. This should help you fully explore the features of SharePoint in as quick and easy a manner as possible. By the end of this article, you’ll have your SharePoint 2013 environment running with all necessary Service Applications. Once that’s in place, you’ll be able to practice operational tasks like creating a web application, moving a site between site collections, and practicing how to restore unattached content databases in Sharepoint. SharePoint 2013 Development Environment: Farm Configuration Prerequisites I used evaluation editions of both Windows Server 2012 and SharePoint Server 2013, and SQL Server 2012 Express. This is the third and final part of a series on setting up a SharePoint 2013 development environment. In part one, we prepared a Hyper-V VM for SharePoint 2013. Once the VM was ready, we had to install the prerequisites and then a basic installation of SharePoint 2013 in strictly a development or pilot installation. We’re ready to begin the farm configuration. To make things easier, pin a couple of SharePoint items to the taskbar. Log into your SharePoint 2013 VM, view the Start Screen, and type in SharePoint. Right-click SharePoint Central Administration then click Pin to Taskbar. Do the same for SharePoint 2013 Management Shell. Create Managed Service Accounts in Active Directory The first thing we’ll need is two service accounts. One will run the web applications and one will run the service... --- ### Is PowerShell the Future of Windows Server Management? > Learn about features in PowerShell that could help you more effectively manage Windows Server. - Published: 2013-07-30 - Modified: 2024-09-24 - URL: https://petri.com/powershell-manage-windows-server/ - Categories: PowerShell - Tags: Windows Server 2012 - Article Type: Opinion Are you giving PowerShell a fair shake? Read about PowerShell features that could help you with Windows Server management strategy. I’m first to admit that I’ve been slow to appreciate the advantages of using Windows PowerShell for administering, managing, and configuring Windows Server, but that’s not to say that I’ve ignored it completely. Server Core forced me to take note, but beyond the basic setup, PowerShell can largely be disregarded with the help of GUI management consoles. But am I giving PowerShell a fair shake? Perhaps you should take closer look at what it can do for you and determine if there's a place for PowerShell in your Windows server management strategy. Using PowerShell to Manage Windows Server Recently I’ve been looking more carefully at the capabilities of PowerShell Remoting and how to configure endpoints so that IT staff can perform only specific tasks, and how best to log those activities. This led me to think about some of the traditional challenges associated with server management and how PowerShell might be a better fit than GUI tools. PowerShell might also be able to provide some of the additional logging and reporting features that third-party solutions currently deliver for internal governance or regulatory compliance. Some GUI management consoles are already driven by PowerShell, such as in Exchange Server. PowerShell and Managing Windows Servers In managed environments, configuration changes to servers tend to be predictable in that we plan for those changes, test them, and then deploy. For non-critical maintenance work, Windows Server provides a fairly granular system for assigning IT staff only the permissions... --- ### How to Change Languages for Each Application in Windows 8 > Per-Application Languages in Windows 8 | Many IT pros use more than one language. Learn to easily set per-application languages in Windows 8 with this tutorial. - Published: 2013-07-29 - Modified: 2024-12-03 - URL: https://petri.com/set-per-application-languages-windows-8/ - Categories: Windows 8 - Tags: language - Article Type: How To Know more than one language? Learn how to change languages for each application in Windows 8 in this quick 'n easy guide. Many of use use more than one language when we work on our computers. In previous Microsoft operating systems such as Windows XP, Vista, or 7 (and even on server operating systems such as Windows Server 2003, 2008, 2008 R2), when you added another language, you could easily select a language by using either the left or right ATL+SHIFT combo keys, and combining it with the left or right CTRL+SHIFT combo key (this would also justify the text-writing direction from left to right in case of an RTL language such as Arabic or Hebrew). So far so good, right? However, Microsoft has introduced a in Windows 8 "feature" that may drive you nuts. I know it drove me crazy, and this led to a numerous number of colleagues asking me for a solution to set per-application languages in Windows 8. Per-Application Languages in Windows 8: The Problem Here's a for-instance: In Windows XP or Windows 7, once you installed another language (for example - Install Hebrew on Windows XP and Install Hebrew Fonts on Windows 7), the default system locale (say, English) would be “in charge” for all system-wide typing. For example, you could switch to Hebrew when typing an e-mail, a Word document, or a blog post in IE, but once you clicked on the Win Logo key or pressed on the Start button and began typing to do a search, it would return to the default language. For example, you could type in Hebrew in one... --- ### Create a Basic Scale-Out File Server (SOFS) > Learn to create a scale-out file server (SOFS) to share scalable and transparent failover storage via SMB 3.0 using Windows Server 2012 R2. - Published: 2013-07-29 - Modified: 2024-09-24 - URL: https://petri.com/create-basic-scale-out-file-server-sofs/ - Categories: Backup & Storage - Tags: Hyper-V, networking, SMB 3.0, Virtualization, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To We're creating a scale-out file server (SOFS) to share failover storage using Windows Server 2012 R2. Learn how with this how-to guide! In this post we will show you how to create a scale-out file server (SOFS) to share scalable and transparent failover storage via SMB 3. 0. This lab will use Windows Server 2012 R2 but the instructions also apply to Windows Server 2012. (If you need to do some catching up, check out our previous articles on Windows Server 2012 SMB 3. 0 File Shares: An Overview and Windows Server 2012: SMB 3. 0 and the Scale-Out File Server. ) Scale-Out File Server and the Environment The design of the SOFS nodes in this example is as shown in the below diagram. Illustrated is a single node of the SOFS cluster. There are four NICs which are used for two roles. Management (Management1 and Management2): Two NICs are teamed and connected to a VLAN on the general server network. A single IP address is assigned to the team interface. This is the connection that is used to manage the cluster. SMB 3. 0 and cluster communications (SMB1 and SMB2): A pair of non-teamed NICs will be used to handle SMB 3. 0 connections and cluster communications (such as heartbeat and redirected IO). Each of these NICs is on a different VLAN, which is a requirement when mixing SMB Multichannel with failover clustering. These NICs are on a dedicated storage network, probably isolated from the general server network. Now, don’t get confused – these are two simple NICs that will be used by the cluster and SMB 3. 0 protocols. There are no virtual NICs... --- ### We're Bolstering our VMware, System Center, and Windows Intune Coverage > We've increased our VMWare, System Center, and Windows Intune coverage! Meet the new bloggers, Brian Suhr and Damian Flynn, who will cover this beat. - Published: 2013-07-26 - Modified: 2024-12-03 - URL: https://petri.com/new-bloggers-vmware-system-center-windows-intune-coverage/ - Categories: Windows Server - Tags: Brian Suhr, Damian Flynn, Windows Intune - Article Type: Overview We're increasing our coverage of VMware, System Center, and Windows Intune. Bloggers Brian Suhr and Damian Flynn will be leading the charge. Several months ago, I wrote a post about how reader feedback improves the Petri IT Knowledgebase. Back then I announced that we were doubling down on our coverage of Microsoft's Windows Server platform by hiring two dedicated bloggers -- Aidan Finn and Russell Smith -- who would be focused on the world's most popular server OS. Dozens of articles and blog posts later, we're ready to announce our next content expansion, this time into the realms of VMware, Microsoft System Center, and Windows Intune. Introducing Brian Suhr and Damian Flynn That's why I'm happy to announce that Brian Suhr and Damian Flynn have joined Aidan and Russell as our latest monthly contract bloggers. Brian will be writing about all things VMware-related, while Damian will focus on Microsoft System Center and Windows Intune. You can read Brian's first article about the new VMware vCloud Hybrid Service (vCHS), and check out Brian's bio: Brian is a Senior Technical Architect for a VMware partner and also writes for his own blog at Virtualizetips. com. Brian works with enterprise clients on creating virtual infrastructure, VDI and Cloud related design solutions. He is active in the VMware community and helps lead the Chicago VMUG group, and has been awarded VMware vExpert status for 2013, 2012 & 2011. He also holds the following VMware certifications: VCP3, VCP5, VCP5-Iaas, VCP-Cloud, VCAP5-DCD, VCAP5-DCA, VCA-DT, and VCP5-DT. Damian Flynn has already written an article explaining how Microsoft System Center has evolved over the years,... --- ### Easily Edit the HOSTS File in Windows 8 > Edit the HOSTS File in Windows 8 and block websites using Notebook and these easy step-by-step instructions. - Published: 2013-07-26 - Modified: 2024-09-04 - URL: https://petri.com/edit-hosts-file-windows-8/ - Categories: Windows 8 - Tags: Editor's Pick, hosts file, Security - Article Type: How To Block those bad websites by editing the HOSTS File in Windows 8. Learn how in this easy walkthrough guide. The Hosts file is a computer file used by an operating system to map hostnames to IP addresses. A Hosts file is a plain text file, and is conventionally named – you guessed it – "Hosts. " Today I'm going to walk you through the steps to edit the Hosts file in Windows 8 to help block dubious websites. Note: We also have tutorial articles on how to edit a hosts file in Windows 7 and on a mobile device running Windows RT. Using Hosts Files to Block Websites The Hosts file contains lines of text consisting of an IP address in the first text field followed by one or more host names or fully qualified domain names (FQDNs). Each field is separated by white space (blanks or tabulation characters). Comment lines may be included; they are indicated by a hash character (#) in the first position of such lines. Entirely blank lines in the file are ignored. For example, this is how my local Hosts file looks like: The HOSTS file may present an attack vector for malicious software, and it may be modified by malicious software such as adware, computer viruses, or trojan horses. These applications may use it to redirect traffic from the intended destination to sites hosting malicious or unwanted content. For example, lets say you wanted to prevent your computer (or someone else's computer) from accessing a site called www. badsite. com. In that case, one of the simplest ways to easily stop the computer from reaching that site would be to... --- ### The Petri IT Knowledgebase Names Richard Pugh as Most Valuable Forum Member (MVM) > The Petri IT Knowledgebase is happy to announce that forum member Richard Pugh has been awarded "Most Valuable Forum Member (MVM) status. - Published: 2013-07-25 - Modified: 2024-09-04 - URL: https://petri.com/petri-it-knowledgebase-forums-richard-pugh-mvm/ - Categories: Windows Server - Tags: Forums, Most Valuable Member, MVM, Richard Pugh - Article Type: News The Petri IT Knowledgebase is happy to announce that forum member Richard Pugh has been awarded "Most Valuable Forum Member (MVM) status. Call me biased, but I think that the Petri IT Knowledgebase is one of the best resources on the internet for technical, how-to information about Microsoft Windows and Server products, VMware offerings, Cisco networking products, and more. While some Petri IT Knowledgebase readers are familiar with our forums, our own reader survey results show that many site visitors don't visit our forums, and many forum members don't regularly visit the content portion of our website. We'd like to change that, so you'll start seeing more news and information about the Petri IT Knowledgebase forums in the near future. We'd like to start by announcing some good news: Our forum moderators and administrators, led by Daniel Petri, have just selected the latest in a long line of Most Valuable Forum Members (MVM), and have awarded the latest MVM designation to Richard Pugh, known by his forum username RicklesP. The MVM award is given to active forum participants who helpfully (and accurately) answer questions from visitors, help moderators keep the forums running smoothly, and generally contribute to the ongoing success of the Petri IT Knowledgebase forums. In addition to special MVM avatar badging and public acknowledgement in the forums, Richard also will receive the following items: A $200 Amazon Gift card Free 1-year subscription to Trainsignal online training ($540 value) Assorted T-shirts, USB keys, and other items donated by IT vendors (~ $75 value) I'd also like to personally thank and acknowledge the support of such... --- ### Setup a SharePoint 2013 Development Environment: Installation > Setup SharePoint 2013 Development Environment | Perform a basic SharePoint 2013 dev environment installation, including prerequisites, configuration, and more. - Published: 2013-07-25 - Modified: 2024-11-19 - URL: https://petri.com/setup-sharepoint-2013-development-environment-installation/ - Categories: SharePoint 2013 - Tags: development environment, Editor's Pick, PowerShell, SharePoint 2013 - Article Type: How To We're back with our series on SharePoint 2013 development environments! In part 2, learn to install the dev environment, including prerequisites and more. Are you ready to perform a basic SharePoint 2013 development environment installation? You will really find it helpful to have an installation available just so that you can get your feet wet with the basic operations of SharePoint 2013, such as creating web applications and site collections, or working with service applications. It also serves as a great place for doing some proof of concepts like testing workflows and site hierarchies, and it also lets the system administrator get some practice on some important operations like practicing how to backup SharePoint 2013. This article shows you how to do a basic installation of SharePoint 2013 in strictly a development or pilot installation. Some of the steps in this article do things very differently than if you are creating a SharePoint farm that would be used by other people, or anything that would turn into a production environment later. The end result is a simple and complete SharePoint 2013 installation that you can use to explore the features and abilities of SharePoint with a minimal amount of setup time. This is part two in a three-part series on setting up a SharePoint 2013 dev environment. In part one, I covered Setting Up a SharePoint Development Environment: Prepare a Hyper-V VM. Later, in part three I'll discuss farm configuration in a SharePoint 2013 development environment. SharePoint 2013 Development Environment: Installation Prerequisites To begin with, I’m using SharePoint 2013 Evaluation Edition and a Hyper-V VM. I’m going to use just... --- ### Deploy Windows Server 2012 in an Azure Virtual Machine > Create and configure a Windows Server 2012 virtual machine in Windows Azure in this Ask an Admin. Includes a download for a Azure trial/paid subscription! - Published: 2013-07-25 - Modified: 2024-11-19 - URL: https://petri.com/deploy-windows-server-2012-azure-virtual-machine/ - Categories: Cloud Computing - Tags: Windows Azure, Windows Server 2012 - Article Type: How To We get caught up in the cloud today as we show you how to create and connect to a new Windows Server 2012 VM Windows Azure. How do I go about deploying Windows Server 2012 in an Azure Virtual Machine? Microsoft’s Azure cloud platform provides organizations with the resources to deploy Windows Server 2012 virtual machines (VMs) quickly and with a variety of different hardware options. In this article, I will walk through the process of creating and connecting to a new Windows Server 2012 server virtual machine in Windows Azure. Sign up for an Azure trial or paid subscription If you’re completely new to Azure and just want to try it out, you can for a free one-month subscription. I’d recommend that you take this option in the first instance to make sure that Azure meets your needs. Create a new Windows Server 2012 virtual machine in Azure Once you’ve successfully signed up for an Azure trial, log on to the Azure Management Portal to create a new Windows Server 2012 VM. Sign in to the management portal and then do the following. Click the New icon in the bottom left corner of the Azure management console. In the new pop-up pane, make sure that Compute is selected on the far left, then click Virtual Machine to the right. Click From Gallery in the next column. In the Create a Virtual Machine pop-up window, select Windows Server 2012 Datacenter in the central column and then click the next arrow in the bottom-right corner. Under Virtual machine configuration, give the new VM a name. In the Size drop-down menu, select the amount... --- ### Typing Hebrew Niqqud (Voweling Points) in Windows 8 > Typing Hebrew vowels (niqqud) in Windows 8 is different than in past Windows versions. Learn to make the "Hebrew" layout your default in this tutorial. - Published: 2013-07-24 - Modified: 2024-12-03 - URL: https://petri.com/typing-hebrew-vowels-niqqud-windows-8/ - Categories: Windows 8 - Tags: Hebrew, language - Article Type: How To After 13 years, Microsoft went and changed the Hebrew keyboard in Win8. Learn to make the "Hebrew" layout your default and use Hebrew vowels (niqqud). What? "What is he talking about? " you may be asking at this point. Unless you're a Hebrew speaker, you may not know this, but in Hebrew these signs (points, neqqudot) indicate voweling or some other aspects of the pronunciation of a letter or word. Although in modern Israeli orthography niqqud is seldom used, many specialized texts such as dictionaries, poetry, or texts for children (or for new immigrants) still use this system. Today I'm going to walk you through the steps of how to type Hebrew vowels (niqqud) in Windows 8 and how to make the "Hebrew" layout your default. Typing Hebrew Vowels Using the standard Hebrew keyboard layout, the typist can enter niqqud by pressing caps lock and shift, typing along as you would normally, and then using one of the keys in the chart below for each niqqud sign you need to use: (Source: Wikipedia) As described in another article on the site, Install and use Hebrew fonts on Windows 8, Hebrew language fonts can be installed in a very easy manner in Windows 8. Much easier, in fact, than in previous operating systems. However, with Windows 8 came a bit of a problem. Hebrew Keyboard Layout Change in Windows 8 That was all well and good, except for one little issue: Microsoft changed the Hebrew keyboard layout in Windows 8, so that typing Hebrew niqqud no longer works the same way it used to work for more than 13 years... . --- ### Security Hardening Techniques for Windows Server 2008 R2 > Learn security hardening best practices in Windows Server 2008 R2, including Microsoft Baseline Security Analyzer (MBSA) and Security Configuration Wizard. - Published: 2013-07-24 - Modified: 2024-12-03 - URL: https://petri.com/security-hardening-strategies-windows-server-2008-r2/ - Categories: Security - Tags: Microsoft Baseline Security Analyzer, password protection, RSAT, Windows Server 2008 R2 - Article Type: Overview Don't be a security sucker! Pick up on some of the best security hardening best practices for Windows Server 2008 R2 in this comprehensive guide. So you’ve just finished preparing a new system using Windows Server 2008 R2 and now you’re ready to deploy it to production. You’ve prepared the physical hardware or virtual machine according to the system requirements, installed and configured the operating system, configured any necessary roles and/or features, perhaps joined the domain and applied group policy settings required for this system’s particular role, and finally installed anti-virus software along with your system management agents. But is this system really ready for production? Perhaps not! Today I'll go through security hardening techniques in Windows Server 2008 R2. Why Perform Security Hardening? In my experience, production servers are often deployed without consideration for the overall security posture of the system – an oversight that can often lead to serious security issues in the future. Before releasing a server to production, it would be wise to perform some level of system security hardening in an effort to reduce the attack surface and lower the potential for compromise. This process should be conducted on each server prior to production deployment, and it should be performed on a per-workload basis, as the security characteristics change dramatically depending on applications (e. g. file and print, IIS, domain controller, etc. ) and network location (e. g. internal, Internet accessible, edge facing, etc. ). It’s important to understand that even if the server you are deploying doesn’t hold sensitive data, it is still important for it to be secure. If, for example, a seemingly unimportant server is successfully compromised it... --- ### Setup a Sharepoint 2013 Development Environment: Prepare a Hyper-V VM > Setup a Sharepoint 2013 development environment | In part 1 of this series, build a Sharepoint 2013 dev environment using handy Hyper-V on your workstation. - Published: 2013-07-23 - Modified: 2024-11-19 - URL: https://petri.com/setup-sharepoint-2013-development-environment-prepare-hyper-v-vm/ - Categories: SharePoint - Tags: Hyper-V, SharePoint 2013, VM - Article Type: How To Cut through the clutter! Build a SharePoint 2013 development environment using Hyper-V in part 1 of a new 3 part series. Installing SharePoint is one of the more complicated installations in the Microsoft family of software. There are a lot of options and steps, and there are many architecture decisions to make. But you can find yourself in a bit of a catch-22: It’s hard to architect a solution until you’ve played with it and see what it can do – but you can’t see what it does until you’ve got it architected. Cut through some of the clutter by using Hyper-V on your workstation to install a SharePoint 2013 development environment. This article shows you how to prepare to run your own SharePoint pilot on your own workstation by creating a VM that can run SharePoint 2013. I use Hyper-V for this because it’s free on Windows 8 and is installed simply by turning on the feature. The steps are similar in other VM platforms, so if you’re not using Hyper-V you can still use this article as a guide. SharePoint 2013 Development Environment on Hyper-V: Installation Requirements I want to keep it really simple. That means that I’m going to use a single VM for doing everything. My VM will be an AD domain controller, a SQL server, and a SharePoint server. I’m also taking some shortcuts with the environment to reduce the steps that it takes to get you going. For example, typically we use multiple service accounts for handling service applications, the SharePoint setup, and the SP farm administrator account. In this environment we... --- ### Enable BitLocker Drive Encryption in Windows Server 2012 - Published: 2013-07-23 - Modified: 2024-09-24 - URL: https://petri.com/enable-bitlocker-drive-encryption-windows-server-2012/ - Categories: Security - Tags: Ask an Admin, bitlocker, encryption, Windows Server 2012 - Article Type: How To Make Bitlocker your security buddy! Check out these steps to enable and manage BitLocker drive encryption in Windows Server 2012. How do I enable Bitlocker drive encryption in Server 2012? BitLocker can be useful on servers, especially in remote branch offices where there’s often a lack of physical security. Bitlocker drive encryption in Windows Server 2012 works a little differently compared to how it works in Windows 8 in that BitLocker must be installed as a feature before it can be configured. In this article, I’ll describe how to install BitLocker on Windows Server 2012 and how to configure encryption for your server’s hard drives. Install BitLocker in Windows Server 2012 Log on to Windows Server 2012 as a local administrator. Right-click on the PowerShell icon on the desktop Taskbar and select Run as Administrator from the menu. Type Add-WindowsFeature BitLocker -IncludeAllSubFeature -IncludeManagementTools –Restart in the PowerShell window and press Enter. The server should automatically restart. If not, restart the server manually. Enable BitLocker on a fixed data drive Once the server has restarted, open PowerShell again as an administrator. In this example, I’m going to turn on BitLocker drive encryption for the fixed data drive (D:) on my server. Type the following command in the PowerShell window: Enable-BitLocker -MountPoint "D:" -EncryptionMethod Aes128 –UsedSpaceOnly –RecoveryPasswordProtector PowerShell will display a 48-digit recovery password in the window. You should make a note of this immediately and store it for safe keeping. There are three different types of encryption you can specify: AES128, AES256 or HARDWARE for drives that are Encrypted Drive Hardware compatible. Click here... --- ### VMware vCloud Hybrid Service (vCHS) Options Explained > Two vCloud Hybrid Service (vCHS) options wlll soon be available. Learn the difference between these cloud capacity options in this guide. - Published: 2013-07-23 - Modified: 2013-07-23 - URL: https://petri.com/vmware-vcloud-hybrid-service-vchs-explained/ - Categories: VMware - Tags: hybrid cloud, vCHS, vCloud - Article Type: Overview Want to learn what VMware vCloud Hybrid Service has to offer? Find out more about the vCHS Dedicated Cloud and vCHS Private Cloud service offerings in this guide. You will be able purchase capacity from VMware's new vCloud Hybrid Service (vCHS) in two ways when it becomes available to the public at or shortly after VMworld 2013: vCHS Dedicated Cloud and vCHS Private Cloud. I will explain the two different cloud options and what they mean to customers. With vCHS a company would purchase resources under what I would call a master account. These services can be a single dedicated or virtual private cloud (VPC) offering or multiple instances. I can then as an administrator assign access to my VPCs on a per user basis. This allows me to restrict access to a single VPC that is needed for a user that is part of a specific project for example. vCloud Hybrid Service: Dedicated Cloud The dedicated cloud offering from vCHS is exactly what the name implies. It is a dedicated vCloud instance on a dedicated vSphere cluster and vCenter. This means that you would be the only customer with access to these dedicated resources. As a Dedicated Cloud customer what type of vCloud Director actions can you configure. Create / Destroy VMs, Disks & Networks Configure an existing Edge Gateway (DHCP, Firewall, NAT, VPN and Load Balancing rules) create private catalogs create additional users in the VPC Exposes the consumer vCloud APIs for consumption Can create / delete Virtual Private Clouds from your dedicated resources Assign and remote resources from VPCs Can deploy Edge gateways in the VPCs VMware is... --- ### Install and Use Hebrew Fonts on Windows 8 > Install and display Hebrew fonts on Windows 8 using this easy guide – without language packs or localized OS versions. - Published: 2013-07-22 - Modified: 2024-09-04 - URL: https://petri.com/install-hebrew-fonts-windows-8/ - Categories: Windows 8 - Tags: language - Article Type: How To It's easy to get Hebrew fonts on Windows 8 without any fancy language packs. Learn to install and display Hebrew language fonts on Win8 in this easy guide. Windows 8, like Windows 7 before it, has the built-in ability to easily install and display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. Unlike previous Microsoft-based operating systems such as Windows XP and prior, Windows 8 makes the language installation very easy, and it does not even require a reboot to complete the installation. Even when compared to Windows 7, the process of installing Hebrew is much simpler. (Editor's note: Also check out our article on how to install Hebrew on Windows 7. ) On the downside, unless you customize the image installation (which may be a topic for a future post, if there is demand for it), you will need to repeat this process for each and every additional user that uses that particular computer. It's not hard to do it, but it will take you several clicks to accomplish.  You can choose to install Hebrew language support during the installation of Windows 8, or at any time after the installation is complete. Option 1: During the Installation Process After booting the computer into the setup process of Windows 8 you will need to wait for the initial Install Windows screen. From the Time and Currency Format drop-down list select Hebrew (Israel). In the keyboard or input method select Hebrew (Standard). Click Next to start your installation. Option 2: On an Installed Copy of Windows 8 If you already have Windows 8... --- ### What Is Windows Server 2012 Hyper-V Live Migration? > Windows Server 2012 Hyper-V Live Migration | Discover what Server 2012 Hyper-V Live Migration can do for you, including IT performance enhancements and more. - Published: 2013-07-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-hyper-v-live-migration/ - Categories: Hyper-V - Tags: live migration, Windows Server 2012 - Article Type: Overview Just what is Server 2012 Hyper-V Live Migration, anyway? Discover Live Migration's capabilities, flexibility, and more in this introduction. In this article we are going to explain what the capabilities are of Windows Server 2012 Live Migration and how this flexibility solution works. What Is Live Migration? Live Migration is the equivalent of vMotion. The purpose of this feature is to move virtual machines from one location to another without any downtime. Well, that’s the perception of Live Migration and vMotion. As anyone who as ever used these features in a lab will know, there is actually some downtime when vMotion or Live Migration are used. A better definition would be: Live Migration (or vMotion) allows you to move virtual machines without losing service availability. That’s a very subtle difference in definitions, which we will explain later on in this article. The purpose of Live Migration is flexibility. Virtual machines are abstracted from the hardware on which they run. This flexibility allows us to match our virtual machines to our resources and to replace hardware more easily. It makes IT and the business more agile and response – all without impacting on the operations of the business. Back to Basics Often there is confusion between Live Migration and high availability (HA). This is due to the fact that Live Migration (and vMotion) historically required a host cluster with shared storage. But things have changed, and it’s important to understand the differences between Live Migration and HA. Live Migration is a proactive operation. Maybe an administrator wants to power down a host and is draining it of... --- ### What is Microsoft System Center? > Microsoft System Center | Take this walkthrough on System Center and its components in this article by new Petri IT Knowledgebase writer Damian Flynn. - Published: 2013-07-22 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-system-center-introduction/ - Categories: System Center - Tags: SMS, Windows Intune - Article Type: Overview Learning Microsoft System Center can be a bewildering experience. Discover the origins of System Center in this first post by new Petri writer Damian Flynn. Investigating the Microsoft System Center product suite for the first time can be an overwhelming experience, an endeavor not easily taken by the faint of heart. The number of products bearing the System Center logo has steadily increased over the years, but not without some casualties along the way (and with a few name changes to keep things interesting). Keeping abreast of this constantly evolving suite is almost becoming a full-time job. In order for us to successfully navigate our way to delivering some truly impressive System Center-based IT solutions, a little trip back in time will help us understand where we might be going. What Is Microsoft System Center and Where Did It Come From? We begin our adventure a long time ago around the year 1994, in a far away place called "One Microsoft Way", where a wise old man realized that with the growing number of computers being deployed in offices and companies around the world, there had do be a better way to manage hundreds (and even thousands) of PCs at once. Clearly a utility was required to simplify the process of installing software, gathering inventories, and ensuring the basic health of these devices, and so it was that Systems Management Server (SMS) 1. 0 was born. Over the next few years SMS evolved, and version 2. 0 was presented  in 1999, which also happened to be the year when Microsoft revealed Active Directory. A short few months later, a new... --- ### Enable and Configure Access Denied Remediation (ADR) in Windows Server 2012 > Access Denied Remediation (ADR) in Windows Server 2012 | Learn to enable and configure ADR to display custom access-denied messages for Windows 8 users. - Published: 2013-07-19 - Modified: 2024-09-24 - URL: https://petri.com/configure-access-denied-remediation-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Access Denied Assistance, Access Denied Remediation, ADR, File and Print Services, File Server Resource Manager - Article Type: How To "No access for you!" Learn to enable & configure Access Denied Remediation (ADR) in Windows Server 2012 to display custom messages for Win8 users. Error messages in Windows are notorious for being especially unhelpful and uninformative, but Microsoft has set out to address this issue when users try to open a file or folder to which they don’t have sufficient access permissions. Access Denied Remediation (ADR), also known or as Access Denied Assistance, can be enabled on Windows Server 2012 file servers and allows organizations to configure customized access denied messages for Windows 8 users, including the ability to alert an administrator or the resource owner for further assistance. Today I will show you how to enable and configure this feature on Windows Server 2012 for your users. Help for IT administrators and Users One of the biggest problems associated with access denied messages is that to resolve the issue IT admins need to know the exact file or folder path, meaning that the administrator either has to search for the resource or walk the user through discovering the file path. Access Denied Remediation not only helps the user get a solution to the problem faster, but it also allows IT admins to respond more quickly. Install File Server Resource Manager (FSRM) While File and Print Services is installed on Windows Server by default, to manage advanced features of the role you’ll need to install the File Server Resource Manager (FSRM): Log on to Windows Server 2012 as a local administrator. Right-click the PowerShell icon on the desktop Taskbar and select Run as Administrator from the menu. Click Yes in the... --- ### Managing Windows Server 2008 R2 from Windows 8 > Manage Server 2008 R2 from a Windows 8 workstation using this tutorial, including downloading RSAT and adding remote servers to Server Manager. - Published: 2013-07-18 - Modified: 2024-12-03 - URL: https://petri.com/managing-server-2008-r2-with-windows-8/ - Categories: Windows Server 2008 - Tags: Editor's Pick, Windows 8 - Article Type: How To Wield Win8 like a weapon! Learn to manage Windows Server 2008 R2 from a Windows 8 workstation in this tutorial. I know that the deployment drive for Windows 8 in the corporate environment is not as high as Microsoft would have wanted it, but even so, Windows 8 was released about a year ago, so by now you'd think you could use it to manage the servers in your organization. Well, at least that's what I thought. I run a small Dell workstation in my work environment, and I decided I had enough of RDPing into the servers, either physical or virtual, just to manage some of their settings. Server 2008 R2 Management from a Windows 8 Workstation Before I go into the steps to do this, first I have a couple of points to make. Note: With all said, there are several roles – most prominently the Hyper-V role – that still cannot be managed from a Windows 8 machine unless you run the Hyper-V server side on a Windows Server 2012 machine. Remember that while you can manage all remote Windows Server 2012 Roles and Features, when you're connecting to a Windows Server 2008 R2 you can perform most management tasks, but you can't perform role or feature installation or uninstallation. Performance note: Server Manager can be used to manage up to 100 servers that are configured with a typical workload. The number of servers that you can manage with a single Server Manager console can vary depending on the amount of data that you request from managed servers, and hardware and network resources available to... --- ### How to Enable PowerShell Logging > PowerShell Logging | Discover how to enable PowerShell logging using the command line or in Group Policy in this easy Ask an Admin. - Published: 2013-07-18 - Modified: 2024-09-24 - URL: https://petri.com/enable-powershell-logging/ - Categories: PowerShell - Tags: Windows Server 2012 - Article Type: How To Defeat the default! Enable PowerShell logging using the command line or in Group Policy using the steps in this easy Ask an Admin. What are some ways I can enable PowerShell logging? PowerShell is a sophisticated management tool that can revolutionize the way you manage Windows Server. But with the power and capabilities that PowerShell has to offer also come risks. PowerShell logging is turned off by default, but there are two easy ways to enable logging so that you can get some insight into what commands are being executed and collect information for security forensics. Enable logging from the command line PowerShell logging is enabled per module. In this example I’ll show you how to enable logging for Active Directory cmdlets. Log on to Windows Server 2012 with local administrative privileges. Open a PowerShell window using the icon on the desktop Taskbar. Type Import-Module ActiveDirectory and press Enter. Type (Get-Module ActiveDirectory). LogPipelineExecutionDetails = $true and press Enter. To disable logging for the Active Directory module, you would simply exchange $true for $false. Now run an Active Directory cmdlet such as get-aduser –filter * -property *, and press Enter. Once the cmdlet has returned a complete set of results, open Event Viewer from the Tools menu in Server Manager and expand Applications and Services Log, Microsoft, Windows, and PowerShell, then select the Operational log. You should see an event similar to that shown below, giving details of the command run, any specified parameters, and the user who executed the command. Enable logging in Group Policy If you want to enable logging on more than one server, it may be more convenient to use... --- ### Introduction to Hyper-V Network Virtualization (HNV) > Hyper-V Network Virtualization (HNV): Learn about HNV basics, multitenant computing, and how HNV is used in Windows Server 2012 in this thorough guide. - Published: 2013-07-17 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-network-virtualization-hnv-introduction/ - Categories: Hyper-V - Tags: Cloud, HNV, Hyper-V Network Virtualization, virtual machine, vmm - Article Type: Overview You down with HNV? Learn about Hyper-V Network Virtualization, multitenant computing, Software Defined Networking (SDN), and more in this thorough primer. Today I'll walk you through the basics of Hyper-V Network Virtualization (HNV), including how multitenant computing works and its challenges. I'll also go into the concepts of how HNV is implemented in Windows Server 2012, Windows Server 2012 R2, and System Center. Challenges of Multitenant Computing Much of what Microsoft has done with Hyper-V and System Center in the 2012 and 2012 R2 generations was based on their own development and experiences in Windows Azure, as well as the feedback that was gathered from hosting companies. A key trait of a cloud is multitenancy, in which multiple customers of the cloud (known as "tenants"), rent space in the cloud and expect to be isolated from each other. Imagine Ford and General Motors both wanting to use the services of same public cloud. They must be isolated. In doing so, the cloud operator (the hosting company) must ensure that: Customers cannot communicate with each other: This is not only to prevent data leakage but also to prevent deliberate (corporate espionage) or accidental attack (via infection). Hosting companies cannot trust their tenants: Some customers do very dumb things, like, oh, opening TCP 1433 to the world and/or using “monkey” as their root/Administrator password. A hosting company cannot let a successful attack on a tenant compromise the hosting infrastructure and all of the other tenants along with it. As Microsoft found out, achieving this level of isolation with traditional solutions isn’t easy. How is this done with physical networking? The... --- ### Patching Hyper-V Clusters > Discover how to patch Hyper-V in a failover cluster and learn how to choose which Hyper-V patching solution is right for you. - Published: 2013-07-17 - Modified: 2024-09-04 - URL: https://petri.com/patching-hyper-v-clusters/ - Categories: Hyper-V - Tags: Failover Clustering, Patching, System Center, vmm, Windows Server 2012, WSUS - Article Type: Overview Patches are your friend. Learn to patch Hyper-V in a failover cluster with Windows Server 2012 Cluster Aware Updating and System Center 2012 SP1 VMM. In this article we will look at how you can patch Hyper-V in a failover cluster using Windows Server 2012 Cluster Aware Updating and System Center 2012 SP1 – Virtual Machine Manager. To Patch or Not to Patch By now we hope that all administrators should understand the need to regularly run Windows Update to secure their Windows desktop and server computers. There should be a certain Darwinian element to this, but it seems that the weak in our industry continue to survive, despite the best efforts of malware such as Conficker. Any reasons to not deploy patches on a regular basis should have been done away with the presence of patching solutions from Microsoft and many others. But what about patching a cluster? It’s messy because, by definition, a cluster hosts mission critical services such as virtual machines. You can’t just patch the entire set of hosts all at once and hope for the best. You need some kind of orchestration. There are also solutions to help us patch our Hyper-V clusters including System Center 2012 SP1 - Virtual Machine Manager Baselines and Windows Server 2012 Cluster Aware Updating. Virtual Machine Manager (VMM) Baselines System Center 2012 introduced a new feature in VMM called Baselines. Virtual machine manager can synchronize the Windows Catalog using Windows Server Update Services (WSUS). These updates are then managed by VMM to update the VMM managed Hyper-V hosts and the servers on which the VMM infrastructure is installed. A baseline is... --- ### Tips for SharePoint 2013 Apps > Check out our tips and tricks for using SharePoint apps, including how to make an app plan for your company. - Published: 2013-07-16 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-2013-apps-tips/ - Categories: SharePoint 2013 - Tags: Editor's Pick, SharePoint 2013 - Article Type: How To, Overview Is there an app for that? Check out our tips and tricks for using SharePoint apps. Is there an app for that? We’ve all heard the saying and probably have even asked it ourselves when trying to get something done. Apps are everywhere, on our smartphones, tablets, and now with SharePoint 2013 comes SharePoint apps. Apps allow SharePoint users to customize and configure more than ever before. SharePoint apps can also deliver specific functions to users that you couldn’t get out of a normal SharePoint 2013 installation. So without futher ado, here are some tips and tricks to getting started with apps in SharePoint 2013. What Are SharePoint Apps and How Do They Work? SharePoint apps are typically small, standalone packages that provide a function, like event planning, that solves a particular problem. Apps can be developed using any of the various web standards and do not use any server side SharePoint code. They run independently from SharePoint therefore it doesn’t change any of the SharePoint elements and can be installed, updated, or even uninstalled without affecting your main SharePoint farm resulting in less outage for the users. Apps running on a SharePoint 2013 farm use a different domain name than the SharePoint farm, so it’s key to properly assess the implementation of using apps and how they impact your current infrastructure. When an app is installed in a SharePoint site it creates a subweb on that site with its own unique URL on a different domain name. The reason for the isolation on a different domain is to add a layer of... --- ### Loopback Adapter Installation on Windows Server 2012 > Need connection? Learn how to add the Microsoft loopback network adapter in Windows Server 2012. - Published: 2013-07-16 - Modified: 2024-09-24 - URL: https://petri.com/loopback-adapter-installation-windows-server-2012/ - Categories: Networking - Tags: IP address, Loopback adapter, networking, Windows Server 2012 - Article Type: Overview Need connection? Learn how to add the Microsoft loopback network adapter in Windows Server 2012. How do I install the loopback adapter in Windows Server 2012? While there is a tendency for vendors to assume that we are always connected to a network or the Internet, there are occasions when network connectivity is not available but we’d still like to use an application that requires an IP address. One example is Hyper-V, which when used without a network connection has limited functionality if there is no IP address available on the host. Install Loopback Adapter Microsoft’s loopback adapter can be installed to provide a virtual network connection and IP address. Here's how you do it. Logon to Windows Server 2012 as a local administrator. Right-click the far bottom left of the Taskbar, over the Start charm when it appears, and select Device Manager from the menu. In the Device Manager window, right-click the server name and select Add legacy hardware from the menu. Click Next on the welcome screen of the Add Hardware Wizard. Select Install the hardware that I manually select from a list (Advanced) and click Next. Under Common hardware types, scroll down the menu, select Network adapters and click Next. On the Select Network Adapter screen, select Microsoft from the list of manufacturers. Select Microsoft KM-TEST Loopback Adapter from the list of network adapters on the right and click Next. Click Next again to confirm that you want to install the loopback adapter. Click Finish once the installation has completed. Configure Loopback Adapter Now that... --- ### Hyper-V Patch: Not Just a Windows Update > Beat the issue before it starts! Find out why why you should patch Hyper-V and where to download these updates. - Published: 2013-07-15 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-updates-patches-hotfixes/ - Categories: Hyper-V - Tags: patches, Virtualization, Windows Server 2008 R2, Windows Server 2012 - Article Type: Overview Beat the issue before it starts! Find out why why you should patch Hyper-V and where to download these updates. Today we'll look at why you should patch Hyper-V (and possibly failover clustering) on your Hyper-V hosts. We will also show you where you can download these updates. Why You Should Apply Hyper-V Patches When you run Windows Update, including System Center Configuration Manager and Windows Server Update Services (WSUS), you are downloading the updates that are shared by Microsoft using the Windows Catalog. This catalog typically contains: Security fixes Service packs Update rollups Other updates But the catalog almost never contains hotfixes that repair bugs in software. Downloading and deploying hotfixes is not something that was normally done for Windows computers; typically you only downloaded a hotfix when asked to do so by a Microsoft support agent in response to some specific issue. Normally you get these fixes when we install an update rollup, apply a service pack, or upgrade our operating system. You normally don’t experience issues (or accept that issues exist) and just get on with it. However, things are different with virtualization. Our hosts are servers that are stressed in ways that are unusual for normal servers. Memory management is pushed to the limits. Networking is made to work harder than ever. Storage nearly has steam coming out of it. And failover clustering is doing more than just making a SQL Server instance or a few file shares highly available. Bugs are inevitable in any software that is more complex than “Hello World,” and using virtualization is a good way to find them... . --- ### Top iOS 7 Features for IT Pros > Discover what new iOS 7 features IT pros will love come launch day! - Published: 2013-07-15 - Modified: 2024-09-04 - URL: https://petri.com/top-ios-7-features-it-pros/ - Categories: Mobile - Tags: Apple, business, Editor's Pick, enterprise, iOS 7, iPhone, IT apps - Article Type: Opinion, Overview Discover what new iOS 7 features IT pros will love come launch day! Updated: 9/10/2103, 11:30am MT - Added official iOS 7 release date (9/18) from Apple. According to Apple, the upcoming iOS 7 release “is the most significant update since the original iPhone. ” With Jony Ive now in charge of iOS software design, it’s quite possible this isn’t just marketing hype. Ive has been responsible for the hardware design of all things “i” since their inception. The iPhone and iPad both have Ive to thank for their physical aesthetics. He’s long desired a simpler, flatter, more industrial design for iOS and now it appears he’ll deliver it. The question for IT pros remains the same as it always has been: How will iOS 7 improve deploying and managing iPhones and iPads? Let’s take a look at some of iOS 7’s key enterprise features. 1. Managed Open In: Separation of Church and State iOS 7 gives hope that Apple is finally embracing the enterprise and realizing the need to keep separate personal and corporate data. Case in point is the new ability to control iOS’s open in functionality. IT admins can now configure what apps appear in the sharing panel. This may not seem like much, but consider this example: A user receives an email with a corporate confidential file attached. I’m talking a file that’s absolutely hush-hush. They tap and hold the attachment, the sharing panel opens, and they choose to open it in Filebrowser... . --- ### Full Drive Encryption (FDE) FAQs > Brimming with Full Drive Encryption questions? We got you covered. Check out our FAQs about FDE and Bitlocker! - Published: 2013-07-12 - Modified: 2024-09-04 - URL: https://petri.com/full-drive-encryption-fde-faq/ - Categories: Security - Tags: Backup, bitlocker, storage, TPM, Windows 8, Windows Server 2012 - Article Type: Overview Brimming with Full Drive Encryption questions? We got you covered. Check out our FAQs about FDE and Bitlocker! Full Drive Encryption (FDE), whether you use Windows BitLocker or purchase disks with hardware-based encryption, can sometimes be deemed to introduce complexity and administrative costs that are greater than the potential advantages. But with the increased use of mobile devices and the potential for data to find its way beyond the physical security of an office, FDE can protect data from falling into the hands of the casual thief. And, if implemented properly, FDE can prevent skilled hackers from extracting information from the disk. Can my data be read if my PC, notebook, or server is stolen? In short, yes. If FDE isn’t deployed, either the disk drive can be removed and read in another device, or your stolen computer can be booted into a different operating system that can then read the contents of the disk. Your logon username and password only protects data from network and user based attacks when Windows is running. Once the data is offline and an attacker has physical access, those credentials can’t protect unencrypted data on the disk. FDE protects data on the disk when Windows isn’t booted. Is TPM required to use BitLocker? A misconception about BitLocker is that it needs a Trusted Platform Module (TPM) on the device’s motherboard. While storing encryption keys on a TPM is the most secure and convenient way to deploy BitLocker, it’s also possible to require a user to enter a password or startup key (on a USB drive) to unlock a drive... . --- ### Backup and Restore Service Applications in SharePoint 2013 > Learn how to backup and restore your service applications in SharePoint 2013 using PowerShell and Central Administration. - Published: 2013-07-12 - Modified: 2024-09-04 - URL: https://petri.com/backup-restore-service-applications-sharepoint-2013/ - Categories: SharePoint - Tags: Backup and Restore, central administration, PowerShell - Article Type: How To Learn how to backup and restore your service applications in SharePoint 2013 using PowerShell and Central Administration. There are times when you don’t want to restore all of the data in your SharePoint farm, but you need to backup and restore one of your service applications. Whether you’re backing up a service application before a lot of changes are made, or whether you’re setting up a development environment and want to duplicate the data held in the Managed Metadata service, you can use either PowerShell or Central Administration to perform granular backups of just a single service application. Service Application Backup Options You can backup service applications using either PowerShell or Central Administration. In general, PowerShell is a little harder initially because you have to get the whole path for the item to be backed up first. But once you have the full path of the service application, it’s actually easier to use PowerShell to bypass multiple pages of settings. Central Administration is easy to use, and if you’re not completely comfortable with PowerShell, it’s there for you. However, you should at least get familiar with the PowerShell way of doing things. Backup SharePoint 2013 Service Applications with PowerShell Backing up a service application in SharePoint 2013 with PowerShell is basically two parts: finding the path of the service application, and then backing it up with the Backup-SPFarm cmdlet and the –item parameter. Finding the path of a service application in SharePoint 2013 Open the SharePoint Administration Shell and enter: Backup-SPFarm -ShowTree This will display the entire hierarchy if items that can be backed... --- ### Manage Network Adapters with PowerShell: Troubleshooting > Managing network adapters with PowerShell | Pick up handy network troubleshooting cmdlets in part 3 of this series. - Published: 2013-07-11 - Modified: 2024-09-04 - URL: https://petri.com/manage-network-adapters-powershell-troubleshooting/ - Categories: Networking - Tags: Advanced, cmdlets, PowerShell, troubleshooting - Article Type: How To It's round 3 of our series on managing network adapters with PowerShell! Pick up handy troubleshooting cmdlets in today's article. Over the last few articles I’ve been exploring and demonstrating PowerShell tools for managing network adapters and configuring network adapters in Windows Server 2012. If you missed either of those articles, you should read them first. In this article we’ll look at some cmdlets that might come in handy when troubleshooting a networking issue, and all of these commands can be run remotely.  Everything I’m going to show you requires PowerShell 3 and Windows Server 2012. These commands will also work with Windows 8, but that’s a bonus. Get Protocols The first item you might want to check is protocol configuration. There are IP version specific cmdlets that will return useful information. ​ PS C:> Get-NetIPv4Protocol -cimsession chi-app01 DefaultHopLimit             : 128 NeighborCacheLimit(Entries) : 1024 RouteCacheLimit(Entries)    : 128 ReassemblyLimit(Bytes)      : 8384928 IcmpRedirects               : Disabled SourceRoutingBehavior       : DontForward DhcpMediaSense              : Disabled MediaSenseEventLog          : Disabled IGMPLevel                   : All IGMPVersion                 : Version3 MulticastForwarding         : Disabled GroupForwardedFragments     : Disabled RandomizeIdentifiers        : Enabled AddressMaskReply            : Disabled PSComputerName              : chi-app01 To query a remote computer you can use a computer name, IP address, or an existing CIMSession. Although if you need to specify alternate credentials you will need to create a CIMSession. A useful feature of this cmdlet is that you can filter in place by a number of protocol settings. This is very helpful when you want to query multiple computers. For example, I need to see which of my servers are still configured for the protocol stack to pay attention to DHCP. ​... --- ### Windows Server Update Services 2012: Reporting and PowerShell > Show that WSUS who's who! Discover how to install Windows Server Update Services 2012 (WSUS) reporting and how to manage it with PowerShell. - Published: 2013-07-11 - Modified: 2024-11-19 - URL: https://petri.com/windows-server-update-services-2012-reporting-and-powershell/ - Categories: Windows Server 2012 - Tags: Patching, Security, Windows Server Update Services, WSUS - Article Type: Overview Show that WSUS who's who! Discover how to install Windows Server Update Services 2012 (WSUS) reporting and how to manage it with PowerShell. Welcome back to our series on Windows Server Update Services 2012 (WSUS) in Windows Server 2012! In part one, I went over the installation of WSUS 2012 and its prerequisites. In part two, I looked at how to configure computers to use WSUS, create WSUS groups to target updates and how to approve updates for distribution. In this third article, I’ll cover how to get WSUS reporting working. I'll also cover how manage WSUS using PowerShell cmdlets. Install WSUS Reporting There are a few additional steps you need to take to get reporting working after installing the WSUS role in Windows Server 2012. If you try to run a report from the WSUS management console after installing the WSUS role, you’ll get a message saying that you must install the Microsoft Report Viewer 2008 Redistributable. Log on to Windows Server 2012 WSUS as a local administrator. Download Microsoft Report Viewer 2008 SP1 Redistributable (using the link) and save it. Start Server Manager from the icon on the desktop Taskbar or Start screen. On the Server Manager Dashboard, click Add roles and features under Welcome to Server Manager. In the left pane of the Add Roles and Features Wizard, click Server Selection. Again in the left pane, click Features. Under Features in the right pane, check . NET Framework 3. 5 Features and click Next. On the Confirmation screen, click Specify an alternate source path. On a standard installation of Windows Server 2012, the binaries for . NET Framework 3. 5 (and 2. 0)... --- ### Delegate Permission to Reset AD User Account Passwords > Learn how to grant an Active Directory group permission to reset passwords and unlock user accounts in this easy Ask an Admin. - Published: 2013-07-10 - Modified: 2024-09-24 - URL: https://petri.com/delegate-permission-reset-ad-user-account-passwords/ - Categories: Active Directory (AD) - Tags: Active Directory, Delegation, Security, Windows Server 2012 - Article Type: How To Learn how to grant an Active Directory group permission to reset passwords and unlock user accounts in this easy Ask an Admin. How do I delegate permissions to reset user account passwords in Active Directory? It’s all too often that organizations grant IT staff domain admin rights to Active Directory to perform administrative tasks that require just a small subset of those permissions. In this article I will show you how to grant an AD group permission to reset passwords and unlock user accounts using Active Directory’s Delegation of Control Wizard. Once you’re familiar with the process, you will be able to use the same wizard to delegate other tasks. It’s preferable to create an OU structure so that you can apply different delegated permissions and Group Policy Objects (GPOs) to different sets of AD objects. For example, you may not want to give helpdesk users the ability to manage sensitive user accounts, in which case the given accounts need to be located in their own OU so that different management policies can be applied. For the purposes of this guide, I’ll delegate permissions to objects in the standard Users container. Log on to Windows Server 2012 as a domain administrator and open Server Manager from the icon on the desktop Taskbar or from the Start screen. Select Active Directory Users and Computers (ADUC) from the Tools menu. In the left pane of ADUC, expand your domain, right-click the Users container (or the OU for which you want to delegate permissions) and select Delegate Control from the menu. Click Next on the welcome screen. On the Users or Groups... --- ### Is PRISM Damaging Cloud Computing? > In June 2013, the world found out about PRISM. Learn more about this Internet surveillance program and how it could affect the future of cloud computing. - Published: 2013-07-10 - Modified: 2024-11-19 - URL: https://petri.com/prism-damaging-cloud-computing/ - Categories: Google Cloud Platform - Tags: Editor's Pick, Opinion, PRISM, surveillance - Article Type: Opinion In June 2013, the world found out about PRISM. Learn more about this Internet surveillance program and how it could affect the future of cloud computing. “No, sir. It does not. Not wittingly. There are cases where they could inadvertently perhaps collect, but not wittingly. " – U. S. Director of National Intelligence James Clapper, when asked during a March 12, 2013, Senate hearing about spying on U. S. citizens. In June 2013, the Guardian broke the news about a program called PRISM that is run by the United States National Security Agency (NSA) to spy on Internet users with the alleged cooperation of the tech giants in cloud computing. Surely this intrusion on privacy infringes on privacy, company security, and the competitiveness of American-owned cloud computing companies? PRISM and Providers In June and July, former analyst – and now tourist-on-the-run whistle blower – Edward Snowden leaked a set of slides and shared knowledge of the NSA’s spying program with the Guardian. The leaked slide deck in question stated that the NSA had direct access to the servers owned by the following companies: Microsoft Yahoo Google Facebook PalTalk YouTube Skype AOL Apple When asked by the media, companies such as Microsoft and Google refuted claims that they provide the NSA with direct access to their servers. You’ll notice in the original slide (shown above) that it refers to when data “collection” started, not when they obtained access. That is a subtle difference. The Real Source of Power On the Security Now podcast (episode 408), security expert Steve Gibson (Gibson Research Corporation) proposed a theory backed by many other people. He has suggested... --- ### Create a Network Map in Windows 7 > An accurate network map can be an invaluable troubleshooting aid. Discover how to create a network map for Windows 7 in this handy tutorial. - Published: 2013-07-09 - Modified: 2024-12-03 - URL: https://petri.com/create-network-map-windows-7/ - Categories: Windows 7 - Tags: Editor's Pick - Article Type: How To An accurate network map can be an invaluable troubleshooting aid. Discover how to create a network map for Windows 7 in this handy tutorial. Network discovery is a network setting that configures a computer to allow it to find other computers and devices on the network. It also configures whether other computers on the network can find, or "discover" that computer. One of the benefits of having the network discovery enabled is the fact that you can generate a map, that is, a diagram of the devices on your network. This is quite useful as, say, you hover the mouse pointer over a computer or other device you get more information about the device. Such information may contain IPv4 and IPv6 addresses, the MAC address, and possibly other information, such as a link to the device’s configuration page. Network Map Discovery States For computers with shared resources, you can double-click them in Network Map to open them, just as you can in the Network folder. There are three network discovery states: On – This state allows your computer to see other network computers and devices and allows people on other network computers to see your computer. This makes it easier to share files and printers. Off – This state prevents your computer from seeing other network computers and devices and prevents people on other network computers from seeing your computer. Custom – This is a mixed state in which some settings related to network discovery are enabled, but not all of them. For example, network discovery could be turned on, but you or your system administrator might have changed firewall settings... --- ### Manage Workstations Without Domain Admin Rights > Missing those domain admin rights? Configure a management group on workstations so that IT staff can provide support without full access to Active Directory - Published: 2013-07-09 - Modified: 2024-09-24 - URL: https://petri.com/manage-workstations-without-domain-admin-rights/ - Categories: Active Directory (AD) - Tags: gpo, Group Policy Preferences, Security, Windows Server 2012 - Article Type: How To Missing those domain admin rights? Configure a management group on workstations so that IT staff can provide support without full access to Active Directory. How can I manage workstations if I don't have domain administrator rights? It's common that IT staff are given domain administrator rights for a number of reasons, one being that it’s a convenient way to log on to workstations with local administrator privileges. But from a security standpoint, giving high-level access to Active Directory (AD) for the sake of an easy life, puts your IT infrastructure at risk. Create an AD group for workstation management First we need to create a management group in Active Directory for users who will have rights to log on to workstations with administrative privileges. Log on to Windows Server 2012 with a user account that has rights to create AD users and groups, and create Group Policy Objects (GPO). Open Server Manager from the icon on the desktop Taskbar or from the Start screen. Select Active Directory Users and Computers from the Tools menu. In the Active Directory Users and Computers MMC, right-click the Users container in the left pane, and select New > Group from the menu. In the New Object dialog box, name the group "Workstation Administrators" and click OK. Make sure the Users container is selected in the left pane of the AD Users and Computers MMC and double-click the new group in the right pane. Switch to the Members tab in the properties dialog box and click Add. In the selection dialog box, add any user accounts that you want to give administrative access to workstations and... --- ### Restore from Unattached Content Databases in SharePoint 2013 > Learn how to perform one of the most important restores in an admin's arsenal: the unattached content database restore in Sharepoint. - Published: 2013-07-08 - Modified: 2024-09-04 - URL: https://petri.com/restore-from-unattached-content-database-sharepoint-2013/ - Categories: SharePoint - Tags: Backup and Restore, PowerShell, SharePoint 2013 - Article Type: How To Learn how to perform one of the most important restores in an admin's arsenal: the unattached content database restore in Sharepoint. Part of your role as a SharePoint administrator is making backups of user content. This means backing up the content databases on a consistent basis. But what happens when you actually need to restore some items from that content database? It doesn’t always make sense to restore an entire content database. You might get the site collection back that was deleted last Tuesday, but you’ll also lose all of the content created and edited in the rest of the sites in the content database. I’m going to show you how to perform one of the most important restores: the unattached content database restore. It’s the most important because this restore saves the user's day and doesn’t trample on the other content that’s been added and deleted. You’ll be a hero! Note: It's a good idea to practice this backup and restore before you actually need it, as it will help build your confidence and make sure things go smoothly when your practicing and training is put to the test in a real-world scenario. Setting Up: Create Site Collections For this exercise, I’m going to create two site collections. One is “important” and has to be restored completely. The second is unimportant and will stay deleted except for one file in a document library. I create a separate content database and move both site collections onto it, but I only do that because – for this exercise – I don’t want to make a mistake with my real... --- ### Upgrade to System Center 2012 SP1 VMM: Post-Installation > After the upgrade, then what? Follow through with these post-installation steps for System Center 2012 SP1 Virtual Machine Manager (VMM). - Published: 2013-07-08 - Modified: 2024-09-24 - URL: https://petri.com/upgrade-system-center-2012-sp1-vmm-post-installation/ - Categories: System Center - Tags: Cloud, Hyper-V, Virtualization, vmm - Article Type: Overview After the upgrade, then what? Follow through with these post-installation steps for System Center 2012 SP1 Virtual Machine Manager (VMM). In our last post, we upgraded to System Center 2012 SP1 Virtual Machine Manager (VMM). Today we'll discuss some of the necessary and recommended post-installation steps for completing that upgrade. Say you've just installed or upgraded VMM, and you have your console running on the VMM server. You have probably been tempted into adding hosts/clusters into VMM and creating a few virtual machines. However, you aren’t finished preparing your VMM server for production usage yet. There are some things which you should do, and a few things you should consider implementing. Configure Windows Update Patching We normally consider Windows Update as a source of security fixes. That is the primary purpose of Windows Update, but it also is used occasionally to deploy other types of fixes. For the purposes of VMM 2012 SP1, ensure that the following products are enabled in your catalog synchronization: Windows Server 2012: This is what VMM is installed on. The version of SQL Server that VMM is using for the database. System Center 2012 SP1 – Virtual Machine Manager Synchronize the catalog, approve any updates, and force the newly installed VMM server to install/reboot until there are no more outstanding updates. (Still need the System Center 2012 Suite? Download it ! ) System Center 2012 SP1 Update Rollup Most people think that WSUS is the only source of fixes from Microsoft. This is far from the truth. Many products have regular updates. For example, Windows Server releases bug fixes for Hyper-V and Failover... --- ### Enable Office365 Integration in Windows Server Essentials 2012 > ADFS not cutting it? Save time and integrate Office365 with AD in Windows Server Essentials 2012 with this easy tutorial. - Published: 2013-07-03 - Modified: 2024-09-24 - URL: https://petri.com/office365-integrat-windows-server-essentials-2012/ - Categories: Windows Server 2012 - Tags: Ask an Admin, Office 365, Windows Server Essentials 2012 - Article Type: How To ADFS not cutting it? Save time and integrate Office365 with AD in Windows Server Essentials 2012 with this easy tutorial. How do I enable integrating Office365 in Windows Server Essentials 2012? Active Directory Federation Services (ADFS) in Windows Server 2012 allows organizations to share identity information with partners or cloud service providers. ADFS includes support for single-sign on, centralized federated identity management through the ADFS management console, support for Active Directory Rights Management and deployment control through Group Policy. One of the biggest drawbacks of ADFS is that it can be quite difficult and time consuming to deploy, but for smaller businesses that would like to integrate Active Directory and Office365, Windows Server Essentials 2012 has a handy add-in that allows provisioning of Office365 users from the local server dashboard, to assign an Office365 license, and synchronize Windows passwords to the cloud. Setting up Office 365 integration To enable integration for Office365 in Windows Server Essentials 2012: Logon to Windows Server Essentials 2012 as an administrator and open the dashboard using the icon on the desktop Taskbar or from the Start screen. On the dashboard homepage, click Email. On the right of the dashboard, select Integrate with Microsoft Office 365 and then Set up Microsoft Office 365 Integration. In the Microsoft Office 365 Integration wizard, select I already have a subscription for Office 365 and click Next. Enter your Office 365 administrator user ID and password, and click Next. Confirm that your password policy will be set to strong and click Next. Close the wizard. Once the dashboard has restarted, notice that as well as some information... --- ### Upgrade to System Center 2012 SP1 Virtual Machine Manager (VMM) > It's time for an upgrade! Move on up and learn to install System Center 2012 SP1 Virtual Machine Manager (VMM) in this easy how-to article. - Published: 2013-07-03 - Modified: 2024-09-24 - URL: https://petri.com/upgrade-system-center-2012-sp1-vmm/ - Categories: System Center - Tags: Cloud, Hyper-V, Virtualizatin, vmm - Article Type: Overview It's time for an upgrade! Move on up and learn to install System Center 2012 SP1 Virtual Machine Manager (VMM) in this easy how-to article. In this article, we will explain the process of upgrading to Virtual Machine Manager (VMM) 2012 SP1. This process has remained the same for all versions of VMM, and will continue with VMM 2012 R2. Okay, There Is No Upgrade, Per Se First, you must understand that it is not possible to perform an in-place upgrade of VMM. The process is actually: Uninstall the older version of VMM, while retaining the valuable data. Upgrade the dependencies. Install the new version of VMM while reusing the valuable data of the previous version. Upgrade the agents on your managed hosts. Some folks are upset that there is no upgrade wizard. However, the upgrade process is very quick. The VMM service is actually quite small and contains no data. All of the value of DPM is in the following. The VMM database: contains the configuration and metadata of VMM, the hosts, the managed clouds, and so on. The Distributed Key Management (DKM) container in Active Directory: the encryption keys for accessing secure data in the VMM database. The VMM Library folder: Here are the reusable file resources such as virtual hard disks, ISO files, saved scripts, and so on. The upgrade process just upgrades a small service. And that means that the process will have a minimum level of disruption on the business, and it'll be easily performed within a planned maintenance window. Note: You should get the hint that planning is the key to success... --- ### Connect to the Active Directory Drive in PowerShell > Find out how to connect to the AD drive and the commands used to navigate through. - Published: 2013-07-02 - Modified: 2024-09-04 - URL: https://petri.com/connect-active-directory-drive-in-powershell/ - Categories: Active Directory (AD) - Tags: PowerShell, Windows Server 2012 - Article Type: How To Find out how to connect to the AD drive and the commands used to navigate through. How do I connect to the AD drive using PowerShell? The Active Directory drive (AD:) in PowerShell gives administrators an easy way to explore AD from the command line, in much the same way you would list the directory contents of a hard disk using the DIR command in DOS. Let’s see how to connect to the AD drive and the commands used to navigate through it. Connecting to the AD drive Log in to Windows Server 2012 with a user account that has permission to access AD and open PowerShell from the icon on the desktop Taskbar. Type Import-Module ActiveDirectory in the PowerShell window and press Enter. Now we need to set the working location to the AD drive. Type Set-Location AD: and press Enter. Notice that the PowerShell prompt now changes to PS AD: >. Type DIR and press Enter. Navigating down You’ll see a list of the forest’s partitions. To do anything useful, we need to connect to the domain partition using the set-location cmdlet. Type Set-Location “” and press Enter. The distinguished name (DN) of your domain can be seen in the output of the previous DIR command. The DNS name of my Active Directory domain is ad. contoso. com, therefore the domain’s DN is dc=ad,dc=contoso,dc=com. So the command should look like Set-Location “dc=ad,dc=contoso,dc=com”. Again the PowerShell prompt will change, in this example to PS AD:dc=ad,dc=contoso,dc=com>. To drill further down into the AD hierarchy, use the Set-Location cmdlet to change the working location to the Users container... . --- ### Export Active Directory User Information to Excel > Learn how to export AD user information to Excel and generate reports on user objects with PowerShell in this quick 'n easy Ask an Admin! - Published: 2013-07-02 - Modified: 2024-12-03 - URL: https://petri.com/export-active-directory-user-information-to-excel/ - Categories: Active Directory (AD) - Tags: Ask an Admin, PowerShell, script, Windows Server 2012 - Article Type: How To Learn how to export AD user information to Excel and generate reports on user objects with PowerShell in this quick 'n easy Ask an Admin! How do I export Active Directory user information to Excel? Exporting information from Active Directory (AD) has been possible since its inception in Windows 2000 Server, but over time this task has become easier with the addition of the DS commands in Windows Server 2003 and – starting in Windows 2008 R2 Server – the PowerShell AD module. In this article, I’ll show you how to extract user information and export the data to an Excel spreadsheet. Enumerate AD users and specific properties Logon to a Windows Server 2012 domain controller (DC) and open PowerShell using the blue icon on the desktop Taskbar. Run the following command to return all AD users and attributes: get-aduser –filter * -property * While this information is useful, it’s not very digestible. If nothing else, you can see all the AD user properties listed so you know how to refer to them when writing more complex PowerShell commands. We can expand the previous command to hone down on specific information and format the output in a more readable form: get-aduser –filter * -property * | Select-Object Name, LastLogonDate Export the results to an Excel spreadsheet If you need to store the results of the last command or send the information to a manager, you can export the data to a comma delimited file that can be opened in Excel: get-aduser –filter * -property * | select-object Name, LastLogonDate | export-CSV adusers. csv -NoTypeInformation -Encoding UTF8 The resulting adusers. csv... --- ### New Features in Windows Server 2012 R2 Failover Clustering > Failover clustering has gotten even better in Windows Server 2012 R2. Discover the improvements in failover clustering, including CSV storage feature support. - Published: 2013-07-01 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-r2-failover-clustering-news/ - Categories: Windows Server 2012 - Tags: Failover Clustering - Article Type: Overview Failover clustering has gotten even better in Windows Server 2012 R2. Discover the improvements in failover clustering, including CSV storage feature support. Failover clustering is the feature in Windows Server that gives us high availability (HA) – that is, it allows us to make single instance services highly available. Possible implementations include clusters of Hyper-V hosts and traditional active/passive SQL clusters. Today I'll go over the number of improvements that have been added to failover clustering in Windows Server 2012 R2. VM Drain on Host Shutdown In Windows Server 2012, the correct process to shut down a host was to (a) pause the host, which would cause the VMs to move via Live Migration (or Quick Migration for low priority VMs by default) and (b) shut down the host.   Some would just shut down the host and get an unexpected and unpleasant result – all of the VMs would use Quick Migration to move to other hosts in the cluster. In Windows Server 2012 R2, a clustered node will use Live Migration to drain the VMs before shutting down. This can be slower than Quick Migration on densely populated hosts, but it gives administrators the experience they are expecting. Failback will not happen by default, but it can be configured. Proactive Server Service Health Detection Clustering will check the health of a destination host before moving a VM to another host. Proactive VM Network Health Detection A cluster will check the health of a virtual switch network connection on a destination host before moving virtual machines to that host. This will prevent movement of VMs to a host that... --- ### What Is Virtual Networking? > Learn the basics of virtual networking in this handy primer. - Published: 2013-07-01 - Modified: 2024-09-04 - URL: https://petri.com/virtual-networking-basics/ - Categories: Networking - Tags: Editor's Pick, virtual networking, Virtualization - Article Type: Overview Learn the basics of virtual networking in this handy primer. The term virtual or virtualization is becoming more and more common in the overall IT marketplace. However, when people hear the terms, they typically relate it to client and server virtualization, since those have been around for some time and are considered mature by most people in the IT field. But a newer virtualization type is slowly working its way into IT environments: virtual networking. This article takes a brief look at the concepts behind virtual networking and how it can be used in a number of different ways to aid in the deployment and operation of virtualized client and server environments. Back to Basics: Virtualization Before getting into virtual networking, let's back up and define "virtualization. " In simplest terms, the virtualization of an object – whether it be a client, server or a network device –  decouples the functions of that object from the underlying physical hardware. For example, a server that is not virtualized is built upon a physical server case, motherboard, CPU, memory, and various other physical components. When a server becomes virtualized, then the physical components of the server are emulated for the server operating system (OS); from the perspective of the server OS, it is sitting on a physical server. The common term used to refer to this virtual server (or client) at this point is a virtual machine (VM). The specific platform that is used to provide this emulated environment can be anything from VMware VSphere to Microsoft Hyper-V (with many... --- ### What's New in Windows 8.1 > So what's new in Windows 8.1? This article explains what the latest update to Microsoft's newest client OS has to offer. - Published: 2013-06-28 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-windows-8-1/ - Categories: Windows 8 - Tags: Windows 8.1, Windows Blue - Article Type: Overview So what's new in Windows 8.1? This article explains what the latest update to Microsoft's newest client OS has to offer. Updated 6/28: Added new information from BUILD about Windows 8. 1 features. With the official release of Windows 8. 1 just a few months away, Microsoft has been steadily doling out more information about what this free update to Windows 8 will include. Windows 8. 1 was the highlight of Microsoft's recent BUILD conference, during which a Windows 8. 1 preview was also made available for download. So what does Windows 8. 1 have to offer? Windows 8. 1 has a surprisingly large number of new and updated features for a free update, and it addresses a few -- but not all -- of the concerns that many IT professionals have had about Microsoft's latest client OS. I've downloaded and installed the Windows 8. 1 preview, and here are some initial thoughts. User Interface: Boot to Desktop and Start Button Based on the dozens of emails about Windows 8 I've received from readers, the two most requested Windows 8 changes were the ability to boot directly to the Windows desktop and to return the start button. Windows 8. 1 does include a configuration option that lets you boot directly to the desktop, and Microsoft has added a start button to the desktop and Metro halves of the Windows 8. 1 UI. To be accurate, however, the new Windows 8. 1 start button doesn't behave in the same way as the old Windows start button. Left-clicking on the Windows 8. 1 start button will toggle between the desktop and the start screen, while right-clicking on it brings up a... --- ### VMware Announces vSphere Big Data Extensions > Have Hadoop clusters you need virtualized? Check out VMware's new vSphere Big Data Extensions – they could be just what you need. - Published: 2013-06-28 - Modified: 2024-11-19 - URL: https://petri.com/vmware-vsphere-big-data-extensions/ - Categories: VMware - Tags: Big Data, Hadoop, vSphere - Article Type: News Have Hadoop clusters you need virtualized? Check out VMware's new vSphere Big Data Extensions – they could be just what you need. Big data and virtualization have been two of the biggest trends to hit the IT industry over the last decade or so, and VMware has plans to leverage their leadership position in the virtualization space to help VMware customers use their existing VMware vSphere investments to more easily manage big data projects. VMware will do this by way of their newly-announced VMware vSphere Big Data Extensions offering, which is based on VMware's earlier work with the Project Serengeti open-source effort. The Serengeti project was launched by VMware as a way to help IT administrators more easily virtualize their Hadoop clusters. As a result of VMware's work with Serengeti, vSphere Big Data Extensions becomes a standard feature of VMware vSphere. According to Fausto Ibarra, VMware's Senior Director of Product Management, the beta version of vSphere Big Data Extensions is available now for trial. VMware vSphere Big Data Extensions is based on the open-source Project Serengeti initiative. "This beta release will allow vSphere to natively deploy and run Hadoop workloads," Ibarra said. "It supports all of the key Hadoop distributions, and allows vSphere customers to manage those workloads through a new management interface. " Ibarra stressed that VMware's goal was to make the management of virtual Hadoop workloads as seamless and as easy as possible for admins already familiar with vSphere management tools. (Editor's note: We've embedded a video demonstration of the vSphere Big Data Extensions management console GUI below. ) Ibarra also mentioned that the open-source... --- ### Backup and Restore a SharePoint 2013 Farm Configuration > Learn how to backup and restore a SharePoint 2013 farm configuration in this how-to article! - Published: 2013-06-27 - Modified: 2024-09-04 - URL: https://petri.com/backup-restore-sharepoint-2013-farm-configuration/ - Categories: SharePoint - Tags: farm configuration - Article Type: How To Think you know all there is about backing up Sharepoint? Please. Learn how to backup and restore a SharePoint 2013 farm configuration in this how-to article! Lately I’ve been diving into the options of backing up SharePoint 2013. It’s a big and important topic, so today I’m going to show you how to backup your SharePoint 2013 farm configuration. I’ll also show you how to restore a SharePoint 2013 farm configuration and give you some use cases for when doing this is a good idea. All right, let’s dive in! What Is a Farm Configuration? The farm configurationis all of the items that make a farm your farm. It’s stored completely as a database in SQL. It’s the first database created when you create your SharePoint 2013 farm, and whenever you add a server to (or remove one from) the farm, the farm configuration database keeps those changes. (For more info, check out "Create a SharePoint 2013 Farm Configuration with PowerShell. ") A farm configuration keeps all of the information about how your farm is set up, from the service applications running on the farm to the web applications running on it. However, when you talk about backing up the farm configuration the one thing you’re specifically excluding from your backup is the content in your SharePoint farm. Backing up the farm configuration keeps the farm straight, but not a single document is going to be included in the backup.  When to Backup a Farm Configuration The first-use case is for pilot, development, and test farms. In those farms, the content was put in with no intention of the farm being the actual repository... --- ### Plan a Windows Server 2012 Migration with MAP 8.0 > Discover how Microsoft's Assessment and Planning Toolkit 8.0 can help you migrate to Windows Server 2012 in this handy Ask an Admin. - Published: 2013-06-27 - Modified: 2024-09-24 - URL: https://petri.com/plan-windows-server-2012-migration-map-8/ - Categories: Windows Server 2012 - Tags: MAP, Microsoft Assessment and Planning Toolkit, migration - Article Type: Overview Discover how Microsoft's Assessment and Planning Toolkit 8.0 can help you migrate to Windows Server 2012 in this handy Ask an Admin. Why would I use MAP 8. 0 to migrate to Windows Server 2012? There are many reasons why you might want to migrate your existing servers to Windows Server 2012, such as improved virtualization and cloud-management capabilities, but the job can be complicated, especially in environments where there are hundreds of servers running complex workloads on different hardware configurations. Microsoft’s Assessment and Planning Toolkit (MAP) version 8. 0 is available as a free download and can help organizations evaluate their current environment and plan a migration project to Windows Server 2012 or virtualize workloads on Hyper-V. MAP is agentless, meaning you don’t need to install any software on servers or clients to perform an inventory. Once MAP has collected data about your systems, it can generate reports to identify the hardware Windows is running on, the roles and features installed on servers, and other important details that might impact a migration. MAP can be installed on a single server and collects inventory data in a database. Migrating to Windows Server 2012 When planning a migration to Windows Server 2012, especially if you plan to use existing physical hardware, it’s important to ensure that the minimum hardware requirements for Windows Server 2012 will be met. For example, Windows Server 2012 can only be installed on devices with a 64bit architecture. MAP collects the necessary information and reports can be generated so you can get an overview of what hardware will run Windows Server 2012. Additionally, the Windows Server 2008R2 role... --- ### Create Guest Clusters in Windows Server 2012 Hyper-V > Create a guest cluster using virtual machines with Windows Server 2012 Hyper-V and learn what Microsoft is doing to make guest clustering easier. - Published: 2013-06-26 - Modified: 2024-09-04 - URL: https://petri.com/create-guest-clusters-windows-server-2012-hyper-v/ - Categories: Hyper-V - Tags: Cloud, storage, Virtualisation, Windows Server 2012, Windows Server 2012 R2 - Article Type: How To Create a guest cluster using virtual machines with Windows Server 2012 Hyper-V and learn what Microsoft is doing to make guest clustering easier. How do I create a guest cluster in Windows Server 2012 Hyper-V? Today we'll look at how you can create a guest cluster using virtual machines with Windows Server 2012 Hyper-V. We'll also find out what Microsoft is doing with Windows Server 2012 R2 Hyper-V to make guest clustering easier. Host Clusters Are Not the Whole Answer Most people are familiar with the concept of a Hyper-V cluster. This is where a number of hosts, attached to some shared storage, run highly available virtual machines. If a host has an unexpected failure, then the virtual machines on that host stop running. The cluster will automatically failover the virtual machines to another host(s) and start them up. This is great because it minimizes downtime to services to less than a few minutes. But for some businesses, even a few seconds of downtime is bad. Often forgotten is the fact that virtual machines are running operating systems (Windows or Linux) too. Guest operating systems can crash, and they need reboots after maintenance. All of which also leads to service downtime. The same is true of the services that are running in these VMs. There is nothing that any clustered hypervisor can do about this for real mission critical systems. That is why we need to extend high availability (HA) into the guest operating system and/or application: Load balancing: Some applications can be load balanced across multiple virtual machines with no shared storage. Guest clustering: Some services require shared storage... --- ### Top 5 Windows 8 Pro Tablet Apps for IT Admins > Need new sysadmin-friendly apps? Check out our favorite apps for Windows 8 Pro tablets! - Published: 2013-06-26 - Modified: 2024-12-03 - URL: https://petri.com/top-windows-8-pro-tablet-apps-it-admins/ - Categories: Mobile - Tags: sysadmin, tablet, Windows 8 - Article Type: Overview Need new sysadmin-friendly apps? Check out our favorite apps for Windows 8 Pro tablets! The best part of a Windows 8 Professional tablet is – obviously – that it runs Windows 8 Professional. No longer are we required to compromise between powerful apps and portable convenience. Now it’s possible to use touch-friendly, tablet-designed apps or full-blown Windows software. The choice is finally ours. Using Windows 8 Pro tablets every day in the IT trenches, I’ve developed a list of must-have favorite apps I can’t do without. Some are Windows Store (or “Metro”) versions, while others are the same versions I run on my laptop. 1. and 2: Get the party started with RSAT and Office What’s the first app to install after firing up a new Windows 8 Pro tablet? That’s easy: The Remote Server Administration Tools for Windows 8. Okay, really this is a bunch of apps all rolled into one installer. It allows you to manage Active Directory, use Server Manager, take care of business with MMCs for DNS, DHCP, Print Management, and more. Having the RSAT installed on any PC is a boon to productivity, but on a tablet... well, that’s a game-changer. (Download RSAT for Windows 8. )   Microsoft Office is next to get installed. Creating documents in Word, reviewing spreadsheets in Excel, preparing presentations in PowerPoint are among my daily activities. These pale in comparison, though, with my favorite Office app to have on my tablet: Outlook. Every iPad user who relies on Outlook on their PC bemoans the lack of this tool on their tablet... . --- ### How to Use SharePoint 2013 User License Enforcement > Discover how to best use SharePoint 2013's new user licensing capabilities in this helpful how-to article. - Published: 2013-06-25 - Modified: 2024-09-04 - URL: https://petri.com/sharepoint-2013-user-license-enforcement/ - Categories: SharePoint - Tags: PowerShell - Article Type: How To Discover how to best use SharePoint 2013's new user licensing capabilities in this helpful how-to article. Managing licenses can already be a headache, but it can be even more painful when SharePoint is involved because it has so many features that are specific to a license type. User License Enforcement is a new SharePoint 2013 feature that allows administrators to assign specific license features by mapping those license features to users in specific Active Directory groups. This article will show you how to utilize SharePoint's new licensing capabilities, which gives administrators better control of how licensed features are managed and assigned to users. New SharePoint Licensing Features = New Admin Abilities In previous versions of SharePoint, when a server was activated with the Enterprise feature, it was very difficult to determine which users actually used the Enterprise and Standard features. In most cases, administrators would deploy another server that only had Standard features activated, and they would try to restrict users to accessing only that server. Sometimes they would even resort to deploying separate SharePoint farms to ensure the correct licensing was used. These methods resulted in over-deploying servers, which increased deployment costs. The new licensing features will give administrators the ability to deploy a server with all the features, both Enterprise and Standard, but they will restrict users to use only the licensed features to which they are assigned. This can be cost effective for many organizations, as it can reduce the amount of servers that need to be deployed. Smaller organizations can utilize a single farm for blended licenses, such as... --- ### Windows Server Essentials 2012 R2: Deployment and Remote Access > Learn about the new deployment and remote access features in Windows Server Essentials 2012 R2 in this Ask an Admin. - Published: 2013-06-25 - Modified: 2013-06-25 - URL: https://petri.com/windows-server-essentials-2012-r2-deployment-remote-access/ - Categories: Windows Server 2012 - Tags: Hyper-V, Small Business Server, windows server 2012 essentials - Article Type: Overview Learn about the new deployment and remote access features in Windows Server Essentials 2012 R2 in this Ask an Admin. What are the new deployment and remote access features of Windows Server Essentials 2012 R2? Windows Server Essentials (WSE) is Microsoft’s replacement for Small Business Server (SBS), a popular product that served small- and mid-sized organizations for more than a decade. But with many businesses moving part or all of their operations to the cloud, Microsoft needed to rethink the SBS model. Unlike SBS, WSE doesn’t ship with Exchange; however, it is designed to integrate with Office 365, Microsoft’s cloud services platform, giving SMEs the option to create a hybrid cloud solution. Integrating Windows Server Essentials with Office 365 is easy, and it doesn’t involve the complex configuration of Active Directory Federation Services (ADFS) that’s required to achieve the same goal in the full version of Windows Server 2012. Deployment options Windows Server Essentials will be packaged as a server role in Windows Server 2012 R2 Standard and Datacenter editions, enabling organizations to benefit from WSE’s unique features and to join an existing Active Directory domain for better manageability. Just like any other server role in Windows Server 2012 R2, WSE can be deployed to multiple servers to improve scalability for some features, such as PC backup, which should be especially useful for companies with branch offices. Hyper-V Hyper-V is now part of WSE, and licensing has been changed to allow companies to run one instance of WSE as the Hyper-V host and another instance running in a guest virtual machine. Microsoft has also included a wizard to... --- ### Open Shortest Path First (OSPF) Configuration Basics > Open Shortest Path First (OSPF) is widely deployed in networks worldwide. Learn how to configure OSPF in this tutorial! - Published: 2013-06-24 - Modified: 2024-09-04 - URL: https://petri.com/open-shortest-path-first-ospf-configuration-basics/ - Categories: Networking - Tags: OSPF - Article Type: Overview Open Shortest Path First (OSPF) is widely deployed in networks worldwide. Learn how to configure OSPF in this tutorial! Open Shortest Path First (OSPF) is widely deployed in networks throughout the world, and its successor OSPFv3 is taking over the same segment with IPv6. Given that, OSPF will be around for some time. The concepts behind both versions of OSPF are very similar. Because of this, only OSPFv2 (IPv4) will be used for examples in this article, in which I'll go over the basics of OSPF configuration. OSPF Basics There are a couple of things that need to be known by every entry level network engineer about OSPF, as it is implemented on Cisco equipment, these include: OSPF (both v2 and v3) has an administrative distance of 110. (This is trusted more than RIP but less than EIGRP). OSPF can be configured into different administrative areas that are used to maintain routing efficiency. A central area 0 (Backbone) must exist in the center of the OSPF network with every other area having a direct connection to this area (either physically or logically ). OSPF is a classless protocol and fully supports Virtual Length Subnet Masking ). OSPF is standards based (IPv4 - RFC 2328, 5709; IPv6 – RFC5340, 6845, 6860). OSPF advertises routing information via Link State Advertisements (LSA). For Neighborships OSPF Hello and Dead intervals must match. OSPF Router-ID (RID) must be unique. OSPF Areas must match. OSPF Authentication parameters must match. For IPv4 Neighborships OSPF neighbors must be in the same IPv4 subnet For IPv6 Neighborships... --- ### System Center Virtual Machine Manager 2012 SP1: Prepare Installation > Discover the steps to prepare for an installation of System Center 2012 SP1, including Distribute Key Management (DKM) and service accounts. - Published: 2013-06-24 - Modified: 2024-09-24 - URL: https://petri.com/system-center-virtual-machine-manager-2012-sp1-prepare-installation/ - Categories: System Center - Tags: cloud computing, Hyper-V, Virtualization, vmm - Article Type: Overview Discover the steps to prepare for an installation of System Center 2012 SP1, including Distribute Key Management (DKM) and service accounts. This blog post will describe how to prepare your environment for a SCVMM 2012 SP1 installation. Be sure to check out these other articles in the series: System Center Virtual Machine Manager 2012 SP1: Components System Center Virtual Machine Manager 2012 SP1: System Requirements System Center Virtual Machine Manager 2012 SP1: Software Requirements System Center Virtual Machine Manager 2012 SP1: Installation VMM Service Account The default option in the setup wizard for authenticating and authorizing the VMM service is to use Local System. In the real world, you should create one service account for each VMM server/cluster that you plan to deploy. The requirements of this account are: It is a domain-based user account The user should not be a domain admin Grant local admin rights on the VMM server to the service account The account is used for nothing else Distributed Key Management The VMM database is going to store some sensitive information, including product keys and administrative credentials for managed systems/services. This data is encrypted by VMM. You can choose to store the key for access this data in a dedicated and secured container in Active Directory (it's not a default option in the setup wizard). This is referred to as Distributed Key Management (DKM). You should choose to implement this for two reasons. 1. Create a VMM Cluster The VMM service can be made highly available using an active/passive Windows Server failover cluster. This is important for environments where the VMM service becomes mission... --- ### The Friday Funny: Mr T. Battles IT Consultants, Frees Zombies > Ever lay awake at night wondering what Mr. T thinks of virtualization? Sleep soundly, dear readers, for now we know the answer. - Published: 2013-06-21 - Modified: 2024-09-04 - URL: https://petri.com/the-friday-funny-mr-t-it-zombie/ - Categories: The Friday Funny - Tags: Hitachi Data Systems, Mr. T - Article Type: Overview Ever lay awake at night wondering what Mr. T thinks of virtualization? Sleep soundly, dear readers, for now we know the answer. Mr. T is one of the most colorful characters ever to appear on the small (or large) screen. I was an avid watcher of the original A-Team television series in my youth, and Mr. T's Bosco "B. A. " Baracus was one of my favorite characters. Nobody could lay the smack down (or talk smack) like Mr. T. Mr. T virtualizes some IT fools. Hitachi Data Systems obviously thought Mr. T was as cool as I did, and cast the actor in a series of advertisements and YouTube videos extolling the virtues of Hitachi's virtualization expertise. The embedded video was shot in 2007 or so, and in it we see Mr. T battling with a big-headed consultant who looks like a refugee from the set of Mighty Morphin Power Rangers. In the skit we see the ginormous-domed consultant prattle on about his IT importance before being startled by Mr. T bursting through a wall. Mr. T then proceeds to eat said consultant's brain ("Tastes like chicken, sucka! "), which then frees a variety of zombies from the  evil yoke of traditional IT thinking. I won't spoil it all for you, but some of my favorite lines include: "I am the 'T' in IT! I am the virtualizer! " "I'm gonna virtualize you fools! " "Intelligence is in the controller and never in the network! " And arguably the highlight of the video (and undoubtedly the exact phrase hatched in the brain of a Hitachi exec that dreamed up the campaign) was Mr. T shouting "I pity the fool... --- ### Researchers Distribute Malware Via iOS Power Charger > Researcher surprised the industry when they infected an iOS with malware via an innocuous charger. We discuss staying vigilant against future malware attacks. - Published: 2013-06-21 - Modified: 2024-09-24 - URL: https://petri.com/malware-via-ios-charger/ - Categories: Security - Tags: BeagleBoard, iOS, Malware, USB - Article Type: News Researcher surprised the industry when they infected an iOS with malware via an innocuous charger. We discuss staying vigilant against future malware attacks. Georgia Institute of Technology security researchers released a thunderclap this week when they announced their successfully infecting iOS devices with malware. This news is obviously disturbing – not just because it shatters the misplaced ideal that iPhones and iPads are ultra-secure and exempt from such threats, but because it exposes a much deeper issue. Malware is evolving, and IT pros need to be ready. iOS Malware: Unexpected Attacks The researchers – Billy Lau, Yeongjin Jang, and Chengyu Song – successfully attacked the iPhone, but not by overcoming its defenses. They did it by completely ignoring them. In the Art of War, Sun Tzu famously gives this advice about confronting a secure enemy: “Attack him where he is unprepared, appear where you are not expected. ” This is exactly how the team easily infected the iPhone with their “arbitrary” software. Using a specially designed USB charger allowed the team to infect an iPhone within a minute of its being plugged in. The uploaded malicious software was hidden from the user in much the same way Apple’s built-in apps are hidden. The iPhone was not modified in any way, meaning it was not jailbroken. The latest 6. x version of iOS was installed. The bottom line is that in less than 60 seconds – without any alerts, user action, or fanfare – arbitrary code was installed and hidden on the iPhone. The charger was built from the credit card-sized, low-cost, open-source BeagleBoard. This charger wasn’t meant to be pretty or mass... --- ### How to Edit the Hosts File on a Microsoft Surface RT > Need to edit the hosts file on a Microsoft Surface RT tablet? Learn how to edit the hosts file, which also applies for other devices running Windows 8. - Published: 2013-06-20 - Modified: 2024-12-03 - URL: https://petri.com/edit-hosts-file-windows-surface-rt/ - Categories: Mobile - Tags: hosts file, Surface RT, Windows 8 - Article Type: How To Need to edit the hosts file on a Microsoft Surface RT tablet? Learn how to edit the hosts file, which also applies for other devices running Windows 8. I literally have spent the past two years paralyzed over deciding which tablet I want to buy. The obvious choice of just buying an iPad never really felt right, as I already own two PCs and a Samsung Galaxy S3. I wanted a tablet that not only performed well on Facebook but also allowed me to hammer out some work as needed. When the option surfaced to buy a Microsoft Surface RT tablet for $100 at TechEd 2013, I kind of felt like the choice was made for me. However, I've played around with it the past few days, and when the first opportunity to do a real work task came up, it occurred to me that I may have a problem on my hands. A small portion of my work requires me to sign into a portal that sits hidden on a server. The only way to access it is to enter the appropriate hostname, which is redirected to the proper IP via the hosts file. Read more: Easily edit the HOSTS files on a Windows 8 PC There are a few other reasons you'd want to edit the hosts file, but the good news is that you can do it on a Microsoft Surface RT. If you wanted to edit the hosts file on your iPad, you'd have to jailbreak it first. If you want to do it on an Android tablet, you have to root it first. Now, I'm not a fanboy, I'm just... --- ### Configure SMB Security in Windows Server 2012 > With Windows Server 2012 and Win8 comes a new version of the SMB protocol. Learn to disable SMB 1.0 and configure SMB encryption in this easy Ask an Admin. - Published: 2013-06-20 - Modified: 2024-09-04 - URL: https://petri.com/configure-smb-security-windows-server-2012/ - Categories: Security - Tags: encryption, File Server, PowerShell, SMB, Windows Server 2012 - Article Type: How To With Windows Server 2012 and Win8 comes a new version of the SMB protocol. Learn to disable SMB 1.0 and configure SMB encryption in this easy Ask an Admin. How do I configure SMB Security in Windows Server 2012? Windows Server 2012 (and Windows 8) introduce a new version of the Server Message Block (SMB) protocol for transferring files across a network. One of the most interesting new features is the ability to encrypt files over the wire between two supported clients. SMB 2. 1 in Windows Server 2008 R2 (and Windows 7) was able to sign SMB packets to prevent spoofing, but not encrypt the actual data. Prior to Windows Server 2012, the only way to encrypt file data in transit was to configure IPsec. SMB 3. 0 encryption can be enabled, either per share or file server, without any special planning. Disable SMB 1. o Microsoft recommends that unless you have clients running Windows XP or earlier, you should disable SMB 1. 0. Do this in a preproduction lab environment before rolling out the change to your production systems. However, there are still certain scenarios where SMB 1. 0 is still required, such as when the computer browser service is enabled in Vista (or later). Windows Server 2012 has a new PowerShell command that makes it easy to get the configuration status of SMB protocols on the server, and optionally enable or disable SMB protocol support. To get the current SMB protocol status on Windows Server 2012: Logon to the server as a local administrator, open a PowerShell prompt from the Start screen or icon on the desktop Taskbar, and run the following command: Get-SmbServerConfiguration | Select EnableSMB1Protocol, EnableSMB2Protocol... --- ### Managing Network Adapters with PowerShell: Addressing and Configuration Info > Managing network adapters with PowerShell | Learn to get addressing and configuration info in part 2 of an easy-to-understand 3-part series. - Published: 2013-06-19 - Modified: 2024-12-03 - URL: https://petri.com/manage-network-adapters-powershell-addressing-configuration-info/ - Categories: PowerShell - Tags: Advanced, PowerShell 3, RSAT, Windows 8 - Article Type: How To We're back with our series on managing network adapters with PowerShell! Learn to get addressing and configuration info with this tutorial. In my previous article, we started exploring working with network adapters in Windows Server 2012 using PowerShell. In that article, we looked at getting information from the physical adapter. Today let’s get some addressing and configuration information. As before, I’m running PowerShell 3 in a Windows 8 desktop that has RSAT (Remote Server Administration Tools) installed in a domain setting. The commands can be used remotely, but the server must be running Windows Server 2012 or later. Finally, in part three of this series I'll explore PowerShell cmdlets that might come in handy when troubleshooting a networking issue. Managing Network Adapters: Get-NetIPInterface First, I want to track down interface information for a remote server ​ PS C:> Get-NetIPInterface -CimSession chi-dev01 Results are displayed below in Figure 1. Since I’m not using IPv6 in my network, let me focus only on IPv4. ​ PS C:> Get-NetIPInterface -CimSession chi-dev01 -AddressFamily IPv4 Figure 2 displays an easier-to-read result. If I can do this for one, I can do it for many. Since I’m going to be querying remote machines more than once, I’ll go ahead and create some CIMSessions that I can reuse. ​ PS C:> $cim = New-CimSession -ComputerName chi-dc04,chi-fp02,chi-dev01,chi-app01 Now I’ll repeat my previous command for all the computers and filter out the loopback adapters. But I’ll also need to tweak it to show the computer name. ​ PS C:> Get-NetIPInterface -CimSession $cim -AddressFamily IPv4 -InterfaceAlias ethernet,team* | Select PSComputername,if*,InterfaceMetric,DHCP,nlMTU | Out-Gridview –title "IP Interface Data" This will... --- ### System Center Virtual Machine Manager 2012 SP1: Installation > Install System Center 2012 SP1 - Virtual Machine Manager (VMM/SCVMM) with this easy-to-follow guide. - Published: 2013-06-19 - Modified: 2024-09-24 - URL: https://petri.com/system-center-virtual-machine-manager-2012-sp1-installation/ - Categories: System Center - Tags: cloud computing, System Center Virtual Machine Manager, Virtualization - Article Type: Overview Install System Center 2012 SP1 - Virtual Machine Manager (VMM/SCVMM) with this easy-to-follow guide. In this post we will show you how to install System Center Virtual Machine Manager 2012 SP1/Virtual Machine Manager (SCVMM/VMM) in just a few easy steps. Of course, this assumes that you have prepared the System Center Virtual Machine Manager 2012 SP1 hardware requirements, the SCVMM software requirements, and you have prepared the environment for VMM. If you haven't done that yet, go do so. How to Install System Center Virtual Machine Manager 2012 SP1 First, insert the installation DVD or mount the ISO and run the setup program. A splash screen will appear. Click the Install link. In the Select the Features to Install screen, choose both VMM Management Server and VMM Console. Enter the license information, including the product key. You get a time-limited trial if you do not enter the key. You can add this afterwards in the VMM Console. You can normally choose the default installation location. In the Database Configuration screen, enter the name of the VMM server. Leaving Port blank will cause VMM to default to TCP 1433. If the user you are logged in as does not have admin rights in the SQL Server instance, then you can check Use The Following Credentials and supply an alternative username and password for a user with sufficient privileges. Choose the SQL Server Instance. The final option defaults to creating a new database called VirtualManagerDB. You have the option to reuse an existing VMM database if one exists (in the case of an upgrade... --- ### Install and Configure Remote BLOB Storage (RBS) in a SharePoint Farm > Need to maximize your hardware investment with tiered storage? Discover how RBS for Sharepoint can help! Learn to install and configure RBS in Sharepoint. - Published: 2013-06-18 - Modified: 2024-11-19 - URL: https://petri.com/install-configure-remote-blob-storage-rbs-sharepoint-farm/ - Categories: SharePoint 2010 - Tags: BLOB, Editor's Pick, RBS, SQL Server, storage - Article Type: How To Need to maximize your hardware investment with tiered storage? Discover how RBS for Sharepoint can help! Learn to install and configure RBS in Sharepoint. Optimizing disk usage is on every administrator’s wish list. Tiered storage is becoming an everyday consideration for administrator’s as the ever rising need for storage continues to grow. SharePoint administrators can now utilize Remote BLOB Storage (RBS) capabilities in SharePoint and SQL to take advantage of tiered storage. SharePoint RBS capabilities allow for the storage of potentially larger BLOB SQL database content to less-expensive disks and utilizing the expensive disks for intensive SQL workloads. RBS is available with SharePoint 2010 and 2013, so either version can take advantage of RBS. This article will show you how to configure a SharePoint farm for RBS using the Native SQL FILESTREAM provider. You can use these instructions in either SharePoint 2010 or 2013. What Is BLOB? BLOB stands for Binary Large Object. In SharePoint, BLOB is large block of unstructured data that is stored in the content databases. When BLOB is stored in the content databases, it is stored with all the metadata that it is associated with it, causing the database to grow in size. Typically BLOB data comprises word documents, video files, and power points, all of which can be large in size, so storing them outside of the content databases can mean performance improvements to the SQL database. Using RBS allows SharePoint to utilize less-expensive disks for BLOB and optimizes the faster disks for more intensive SQL transactions. When RBS is used with SharePoint, the metadata for the BLOB is stored in the SQL content database while... --- ### Installing the Desktop Experience on Windows Server 2012 > Miss having desktop features like the snipping tool and desktop themes on Windows Server 2012? Learn how to install Desktop Experience and add them. - Published: 2013-06-18 - Modified: 2024-09-24 - URL: https://petri.com/install-desktop-experience-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Ask an Admin, Desktop Experience, RDS, Remote Desktop Services - Article Type: How To Miss having desktop features like the snipping tool and desktop themes on Windows Server 2012? Learn how to install Desktop Experience and add them. How do I install the Desktop Experience on Windows Server 2012? Although it might seem counterintuitive to install desktop features on a server, there may be certain scenarios where it is desirable. One case is where users have access to a remote server desktop via Remote Desktop Services. The Desktop Experience installs features on Windows Server 2012 that are present in Windows 8 but are not part of the standard install of Windows Server. Desktop Experience Install Components The Desktop Experience feature installs the following components on Windows Server 2012: Windows Media Player Desktop themes Video for Windows (AVI support) Disk Cleanup Sync Center Sound Recorder Character Map Snipping Tool How to Install Desktop Experience Desktop Experience is an all-or-nothing feature, so you can’t choose which components to install. Before adding the Desktop Experience feature on Windows Server, I recommend that you test in a preproduction lab environment to ensure that Desktop Experience doesn’t conflict with any important server functions. Log on to Windows Server 2012 with an account that has local administrator permissions. Open Server Manager from the Start screen or the icon on the desktop taskbar. In Server Manager Dashboard, click Add roles and features under Welcome to Server Manager. In the Add Roles and Features Wizard, click Server Selection in the left pane. Now click Features in the left pane. Scroll down the list of features and expand User Interfaces and Infrastructure. Check Desktop Experience. In Windows Server 2012, Desktop Experience is no longer... --- ### Windows Server 2012: SMB 3.0 and the Scale-Out File Server > Wondering what's up with SOFS? Learn the basics of Windows Server 2012 SMB 3.0 Scale-Out File Server in this helpful article. - Published: 2013-06-17 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-smb-3-scale-out-file-server/ - Categories: Backup & Storage - Tags: Scale-Out File Server, SMB 3.0, SOFS, Windows Server 2012 - Article Type: Overview Wondering what's up with SOFS? Learn the basics of Windows Server 2012 SMB 3.0 Scale-Out File Server in this article. In this article, we will explain the building blocks of the Windows Server 2012 or Windows Server 2012 SMB 3. 0 R2 Scale-Out File Server. You should read our previous article, "Windows Server 2012 SMB 3. 0 File Shares: An Overview," to understand the role of SMB 3. 0 for storing application data, such as SQL Server database files and Hyper-V virtual machines. What Is a Scale-Out File Server (SOFS)? It is clear that while Microsoft is committed to their ongoing development and support for traditional block storage, they see SMB 3. 0 as a way to reduce the expense and increase the performance of one of the biggest cost centers in the data center. Once legacy concerns about SMB 3. 0 performance have been put to rest, the question of high availability will come up: You don’t want to rely on a single point of failure like a file server when your entire business is relying on it. The traditional active/passive file server will not suffice; the failover process is too slow. In Windows Server 2012, Microsoft gave us a new storage architecture called the Scale-Out File Server (SOFS), which is (deep breath required) a scalable and continuously available storage platform with transparent failover. Users of block storage will wonder what this new alien concept is. Actually, it’s not that different to a SAN. In the case of a SAN, there are four major components or layers: Disk trays Switches Controllers Application servers SAN: Disk Trays The disks of the SAN... --- ### Microsoft Exchange 2013 Highlights from TechEd 2013 > Missed TechEd 2013? We got your back! Check out the latest Microsoft Exchange 2013 news from the conference. - Published: 2013-06-17 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-exchange-2013-highlights-teched-2013/ - Categories: Exchange 2013 - Tags: TechEd - Article Type: News Missed TechEd 2013? We got your back! Check out the latest Microsoft Exchange 2013 news from the conference. Last week was TechEd 2013, Microsoft’s premier IT event. IT professionals from around the world come together to learn, network, and discover what new technologies Microsoft is launching. If you’re an Exchange admin like myself, the expectations for new announcements on Exchange would be low considering that the official Microsoft Exchange Conference (MEC) is scheduled for March 2014. Nevertheless, there was some interesting news and product information about Exchange 2013 that was revealed at TechEd. TechEd Exchange Highlights If you missed TechEd 2013, or simply didn’t have time for Exchange sessions, here are some of the Exchange-focused highlights: Exchange 2013 CU2 will now support 100 databases per server instead of the 50 databases. There were also hints that with CU2 there could be support to run the witness server in Azure, solidifying the push towards the cloud. The Remote connectivity Analyzer got an additional component: the Message Analyzer Beta. This new component allows the copy and paste of message headers in the tool which then breaks down the header of a message for you to analyze. Lagged copies in Exchange 2013 will now automatically replay log files that are under low disk space conditions (10%), these settings can be modified in the registry. Exchange 2013 continues to supports VHD of the server on SMB3 file shares; there is still no support for NFS at this point. For those virtualizing Exchange, Microsoft continues to stress that Dynamic memory is not recommended for Exchange servers... . --- ### Microsoft IT Slang and Buzzwords > IT slang? Let's double-click on that. Pick up some of Microsoft buzzwords in today's Friday Funny! - Published: 2013-06-14 - Modified: 2024-09-24 - URL: https://petri.com/friday-funny-microsoft-it-buzzwords-slang/ - Categories: The Friday Funny - Tags: buzzwords, jargon, Microsoft, slang - Article Type: Opinion IT slang? Let's double-click on that. Pick up some of Microsoft buzzwords in today's Friday Funny! Perhaps more than any other business segment, the IT industry is afflicted with legions of often confusing and ambiguous acronyms and buzzwords. Part of this stems from the nature of IT itself, where complex technical concepts need to be communicated in a way that people outside of the organization actually developing the technology can understand it. (Image via WordLo) Microsoft is one of the worst offenders in this respect, and after spending several weeks covering Microsoft more closely that usual -- thanks to a trip or two to the Microsoft campus and a long week at TechEd 2013 -- I thought it might be useful (and humorous) to present a list of some of the most common phrases and buzzwords I've come across. Some of these are actual technical terms and terminology, while others are less technical. Some of these buzzwords were used by Microsoft employees to describe product features, while others (submitted anonymously by Microsoft employees) deal more with internal Microsoft organizational structures and office politics. A-dash: A temporary Microsoft contractor who works for an agency, who may have a temporary Microsoft email address preceded by an "A-" prefix. Also called an "Orange Badge" for the color of their badges issued by Microsoft when on the company campus. B-dash: A Microsoft business guest, who may have a temporary Microsoft email address preceded by an "B-" prefix. Also called an "Purple Badge" for the color of their physical badges issued by Microsoft when on the company campus... . --- ### Xbox One and the Cloud OS: A Tale of Two Clouds > What do Microsoft's new Xbox One game console and Cloud OS strategy have in common? Read on to find out! - Published: 2013-06-13 - Modified: 2024-09-04 - URL: https://petri.com/xbox-one-cloud-os/ - Categories: Cloud Computing - Tags: PlayStation 4, PS4, XB1, Xbox One - Article Type: Opinion What do Microsoft's new Xbox One game console and Cloud OS strategy have in common? Read on to find out! Update: 6/19/2013 - Microsoft has removed the 24-hour Internet connection requirement for the Xbox One. Read the blog post by Microsoft's Don Mattick for more information. Microsoft has had lots of news to share at back-to-back tech-related conferences this month, starting with Microsoft TechEd 2013 in New Orleans the first week of June, and the Electronic Entertainment Expo (E3) this week in Los Angeles. The former deals with Microsoft's enterprise IT efforts, while the latter is entirely focused on the video game industry. While you may be wondering why I'm mentioning both in the same article, there are some common threads that bind them together: the use of cloud computing services; the near ubiquity of high-speed, always-on Internet connections; and the impact of losing the ability to utilize software or services in the cloud when that Internet connection is broken or otherwise unavailable. Cloud OS Vision: A Cloud for Every Taste Microsoft's big push at TechEd this year was the Cloud OS. In the Cloud OS model, key Microsoft products and platforms like Windows Server, System Center, Windows Intune, and Windows Azure services are designed and developed to allow IT administrators to embrace cloud computing on their own terms. They can manage their private clouds on-premise, or they can rely on trusted external hosting providers for cloud services. Finally, Microsoft offers Windows Azure Infrastructure as a Service (IaaS) for IT shops who want public cloud services. The Microsoft business unit behind the Cloud OS strategy -- the Server... --- ### New in Windows Server 2012: ReFS, NTFS Updates and SMB 3.0 > ReFS, NTFS, and SMB – oh my! Find out about new storage and file services features in Windows Server 2012 in this Ask an Admin article. - Published: 2013-06-13 - Modified: 2024-09-24 - URL: https://petri.com/windows-server-2012-refs-ntfs-updates-smb-3-0/ - Categories: Windows Server 2012 - Tags: file services, NTFS, ReFS, SMB, SMB 3.0, storage, Windows Server 2012 - Article Type: Overview ReFS, NTFS, and SMB – oh my! Find out about new storage and file services features in Windows Server 2012 in this Ask an Admin article. What are some of the other new features in Windows Server 2012? Following on from last week’s article on Storage Spaces and Data Deduplication, here I continue the list of new file services and storage features in Windows Server 2012. Resilient File System (ReFS) An extension to NTFS, ReFS is designed to prevent the corruption of file metadata that often occurs on standard NTFS volumes and renders data inaccessible. ReFS uses checksums for file metadata (and optionally for the actual file), and an allocate-on-write method to update data, minimizing the risk of corruption. Otherwise known as Integrity Streams, the use of checksums is a means of protecting data on disk that goes beyond what is possible on standard NTFS volumes. ReFS volumes are not bootable, cannot be used on removable media and there’s no way to convert an existing NTFS volume to ReFS. Along with Storage Spaces, thin provisioning, and ReFS, Windows Server 2012 makes for an extremely scalable file server solution. ReFS supports volumes up to 256 zettabytes and a storage pool can be a maximum of 4 petabytes. NTFS Improvements In addition to the improvements that ReFS brings, standard NTFS volumes also benefit from a continuous corruption scanner that tries to identify and repair errors before they affect system performance or data retrieval. The CHKDSK command line utility has also been updated so that it can scan for errors much faster than in previous versions of Windows, allowing you to get a volume back online... --- ### We're Hiring! Wanted: VMware and Microsoft System Center Bloggers > We're looking for writers and bloggers who are experts in Microsoft System Center and VMware products. Apply today! - Published: 2013-06-12 - Modified: 2024-09-04 - URL: https://petri.com/hiring-vmware-microsoft-system-center-blogger/ - Categories: VMware - Tags: Hiring, Jobs, Microsoft System Center, vmware - Article Type: News The Petri IT Knowledgebase is looking for writers and bloggers who are experts in Microsoft System Center and VMware products. Earlier this year, I wrote about how we're continuing to invest in how-to technical content by building out our pool of authors and increasing our posting frequency. Since my last post on the topic we've hired Aidan Finn and Russell Smith, who both cover the Microsoft Windows Server Platform for us. Now we're looking for two more bloggers to add to the Petri IT Knowledgebase editorial team, and this time we're looking for VMware and Microsoft System Center experts. Read on for more details on the new positions and what we're looking for. VMware Blogger Are you an IT professional who has extensive, hands-on experience with VMware’s product family? Can you recite the differences between VMware vCloud 5. 0 and vCloud 5. 1 in your sleep? And do you know – at a glance – what the acronyms VCHS, VCAP, VCLI, CBRC, SDDC, and S2 stand for? Do you also like to write – perhaps you have your own blog, or you’ve had technical articles published before – and you’re active on social media platforms like Facebook, Twitter, G+, and LinkedIn? If so, we’d like to talk to you. The VMware Blogger will post news analysis, opinion, and both short- and long-form technical how-to content about VMware’s product families, as well as provide regular tips and suggestions to help readers get the most out of VMware’s enterprise virtualization products. This position will focus on VMware deployment, management, optimization and security topics. Applicants should also be well versed and knowledgeable about using VMware... --- ### New Features in Windows Server 2012 R2 Storage Spaces > Check out the new features in Windows Server 2012 R2 Storage Spaces, including write-back cache, parallelized repair, tiered Storage Spaces, and more. - Published: 2013-06-12 - Modified: 2024-09-04 - URL: https://petri.com/new-features-windows-server-2012-r2-storage-spaces/ - Categories: Backup & Storage - Tags: Hyper-V, storage, Virtualization, Windows Server 2012 R2 - Article Type: Overview Check out the new features in Windows Server 2012 R2 Storage Spaces, including write-back cache, parallelized repair, tiered Storage Spaces, and more. Today I'm going to follow up on a recent article on SMB 3. 0 file shares by introducing the new features added to Storage Spaces in Windows Server 2012 R2. Storage Spaces: A Quick Primer Storage Spaces was introduced in Windows Server 2012 as a whole new way to aggregate physical disks and provision virtual disks as usable and fault tolerant logic units. The non-RAID physical disks are aggregated into an administrative unit called a Storage Space. From this, logical units called virtual disks are created. Each virtual disk consumes space from the physical disks in the Storage Space. So far, that’s not different from how a SAN uses disk groups to create virtual disks. However, Storage Spaces is a little bit more flexible. The Storage Space can be made up of disks of different sizes, and it will use all of their capacity if required.   We did say non-RAID disks are used – this is a requirement for Storage Spaces. In fact, Storage Spaces is designed to be deployed on the most economic disk tray solution you can get – just a bunch of disks (JBOD) that does not do any hardware RAID. We get our disk fault tolerance in two ways: A certified Storage Spaces solution supports SCSI Enclosure Service (SES). This allows the JBOD and the attached Windows server(s) to communicate if a disk is failing or has failed. Monitoring will pick up the alert and a light should indicate a disk failure on... --- ### Manage Network Adapters with PowerShell > Learn to manage Windows Server 2012 network adapters using PowerShell in part one of a three-part tutorial. - Published: 2013-06-12 - Modified: 2024-09-04 - URL: https://petri.com/manage-windows-server-201-network-adapters-powershell/ - Categories: PowerShell - Tags: Advanced, cmdlet, network adaptor, Windows Server 2012 - Article Type: How To For IT pros, the name of the game is management, and the easier the better. Learn to manage Windows Server 2012 network adapters using PowerShell in this tutorial. For IT pros, the name of the game is management, and the easier the better. For most of us this means Windows PowerShell. And when we throw Windows Server 2012 into the mix it gets even better. Windows 8 and Windows include a number of new modules specifically designed to manager network adapters, configuration, and security. These modules are based on the new CIM infrastructure that is part of Windows Management Framework 3. However, even if you have PowerShell 3 installed on, say, Windows Server 2008 R2, you don’t get these new toys. The underlying CIM namespaces and classes only exist on Windows 8 and Windows Server 2012. However, if you have a Windows 8 admin desktop and some Windows Server 2012 boxes, you’ll be amazed what you can accomplish. This is part one of a three-part series. Today I'll talk about how to get a network adapter with PowerShell and getting network adapter statistics. In part two, I'll go into addressing and configuration information. Finally, in part three I'll explore PowerShell cmdlets that might come in handy when troubleshooting a networking issue. Getting Network Adapters Enumerating network adapters couldn’t be easier. In PowerShell 3 you don’t even need to import the module first. Simply type the command. Here’s how I can get the network adapters on my laptop: ​ PS C:> get-netadapter As you can see in below in Figure 1, I have a lot going on. You can narrow down results by name: ​ PS... --- ### VMware Announces vCenter Log Insight > VMware has unveiled vCenter Log Insight, an analytics tool that helps admins measure and analyze the status of their physical and virtual IT infrastructures. - Published: 2013-06-11 - Modified: 2024-09-04 - URL: https://petri.com/vmware-announces-vcenter-log-insight/ - Categories: VMware - Tags: vCenter Log Insight, vmware - Article Type: News VMware has unveiled vCenter Log Insight, an analytics tool that helps admins measure and analyze the status of their physical and virtual IT infrastructures. VMware continues to innovate and broaden their product portfolio by announcing an all-new product today, VMware vCenter Log Insight. Based on a modified version of the product they purchased in August of 2012 -- see VMware Acquires Pattern Insight -- the new vCenter Log Insight "enables you to easily perform advanced analytics on log data aggregated across your physical, virtualized and cloud infrastructure, leading to across the board improvements in IT metrics" (according to VMware). The benefits for the Datacenter admin are: Improve security and compliance in the datacenter Improve troubleshooting for the virtual and physical infrastructure Monitor server, storage, network, and even application data events in greater detail than before Prevent the loss of historical event logs Correlate vSphere performance and capacity events with vSphere host and vCenter events Here's what vCenter Log Insight looks like: I was fortunate enough to be given advanced access to it and I'll summarize what I learned in the points below. Top 10 Things to Know about vCenter Log Insight 1. Virtual Appliance Deployment Log Insight is deployed as a virtual appliance so, like other VMware virtual appliances, getting up and running is quick and easy. There is no OS to install and no database to configure. 2. Tame Your Logs Log insight works to consolidate and help you analyze log files from any device that supports syslog. Thus, Log Insight works for physical servers, storage, network device, and virtual machines. Log Insight could even work for any... --- ### Search Active Directory for Locked-Out User Accounts with PowerShell > Finding locked user accounts in Active Directory can be a pain. Search for locked-out accounts using PowerShell in this quick 'n easy Ask an Admin. - Published: 2013-06-11 - Modified: 2024-09-24 - URL: https://petri.com/search-active-directory-locked-out-user-accounts-powershell/ - Categories: Active Directory (AD) - Tags: Ask an Admin, PowerShell 3.0, Windows Server 2012 - Article Type: Overview Finding locked user accounts in Active Directory can be a pain. Search for locked-out accounts using PowerShell in this quick 'n easy Ask an Admin. How do I search Active Directory for locked-out accounts using PowerShell? Most organizations set Active Directory Account Lockout Policy to a maximum number of three to five logon attempts. Once the threshold has been exceeded, users either need to call the helpdesk to have their account unlocked, or wait 30 minutes for the account to be unlocked automatically. While it's a necessary best practice to defend against brute force password attacks on Active Directory, account lockout policy sometimes leads users to accidentally lock themselves out, generating extra work for the help desk. It can be useful to search Active Directory for locked-out accounts, maybe to investigate potential security issues or preempt a helpdesk call. The easiest way to run a search is from the command line using PowerShell. Search Active Directory for Locked-Out Accounts If you’ve never worked with PowerShell before, the Search cmdlet is a good place to begin. The cmdlet is quite simple and can be useful when you need to generate reports. Logon to Windows Server 2012 with a user that has permission to enumerate Active Directory accounts. Open PowerShell by clicking the blue PowerShell icon on the desktop Taskbar. Type Search-ADAccount –LockedOut and press Enter. If there are any locked-out accounts in your Active Directory domain, the results should now be listed in the PowerShell window. Before you can run PowerShell Active Directory cmdlets on Windows Server 2008 (or R2), you have to import the Active Directory PowerShell module. To import the module,... --- ### 10 Things I Learned at Microsoft TechEd 2013 > Missed Microsoft TechEd 2013 – North America? Discover our top 10 favorite TechEd moments in this recap. - Published: 2013-06-10 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-teched-2013-recap/ - Categories: Windows Server - Tags: TechEd, TechEd 2013 - Article Type: News Missed Microsoft TechEd 2013 – North America? Discover our top 10 favorite TechEd moments in this recap. 1. Microsoft goes all-in on the cloud Now that Microsoft TechEd 2013 is in the history books, it's a good time to review some show highlights. The single biggest takeaway was this: Microsoft is focusing considerable energy on building out the "Cloud OS" vision that they've been talking about for the last year or so, and all of the Microsoft product updates announced at TechEd 2013 -- including Windows Server 2012 R2, Microsoft System Center 2012 R2, SQL Server 2014, and the upcoming updates to Windows Intune -- have extensive cloud-friendly feature sets that make it easier for admins to build their own private clouds, help service providers spin up hosted clouds, or facilitate the utilization of Microsoft's Windows Azure public cloud services. Microsoft is doing the hard, complex work of building an integrated, cloud-enabled IT environment from the endpoint to the server room and then into the public cloud. It's not an easy task, but Microsoft has been laying the groundwork, raising the scaffolding, and pouring the concrete that will eventually make their Cloud OS vision a tangible reality. Microsoft executives have repeatedly said that the company's trifecta of expertise in the realms of on-premise customer IT, service provider hosted clouds, and public cloud services and infrastructure (Xbox Live and Azure, anyone? ) put them in a unique position. Hyperbole aside, it may soon become increasingly difficult for Microsoft competitors to dispute that argument. Look for more thoughts on the conference from me and other Petri authors... --- ### HP ElitePad 900 Review: Almost (But Not Quite) Perfect > A longtime iPad user just about falls in love with the HP ElitePad 900 tablet. Discover the good and the bad of the ElitePad 900 in this review. - Published: 2013-06-10 - Modified: 2024-09-24 - URL: https://petri.com/hp-elitepad-900-review/ - Categories: Mobile - Tags: ElitePad, HP, mobility, tablet, Windows 8 - Article Type: Review A longtime iPad user just about falls in love with the HP ElitePad 900 tablet. Discover the good and the bad of the ElitePad 900 in this review. Possibly the most touted feature of Windows 8 is its capability as a mobile, or tablet, OS. The need for this is born from both the explosion of tablet computing and the monumental failures of previous Microsoft OSes to perform on a tablet. The promise of Windows 8 tablets piqued my interest after I loaded the original release candidate on an old Acer W700. Since then, I’ve put more than a few Windows 8 tablets through their paces including the Surface RT, the Surface Pro, and the subject of today’s review: the HP ElitePad 900. If you read my review of the Microsoft Surface Pro, you'll know one of my biggest complaints with that device is its bulky feel and hard edges. The tablet explosion began and is still driven by Apple’s sleek iPad, so why Microsoft would ignore style cues from that wildly successful device still escapes me. The iPad didn't sell millions upon millions of units because people were playing musical chairs with their money and looking for a place to spend it before the music stopped. It sold because of its design. With the ElitePad 900, HP doesn’t make the same mistake the team in Redmond did: The ElitePad 900 is every bit as svelte and refined as the iPad. ElitePad 900: Design and Storage The ElitePad 900 is only 9. 2mm thick and weighs just 1. 38 pounds. Compare that to the iPad at 9. 4mm and 1. 44 pounds, and the ElitePad 900 is actually thinner... --- ### How to Upload Photos to Active Directory with PowerShell > Adding the photo attribute is a great email tool for remote employees. Learn how to upload pics to Active Directory using PowerShell with this article. - Published: 2013-06-10 - Modified: 2024-09-04 - URL: https://petri.com/upload-photos-to-active-directory-powershell/ - Categories: PowerShell - Tags: Active Directory, email - Article Type: How To Adding the photo attribute is a great email tool for remote employees. Learn how to upload pics to Active Directory using PowerShell with this article. Do you work in a geographically dispersed company where employees rarely see each other? Do you like putting faces to names? Up until Exchange 2010 and Outlook 2010, viewing user photos in the GAL was not an easy task to do without some serious coding. Exchange 2010, Lync 2010, and SharePoint 2010 now can utilize the thumbnail photo attribute in Active Directory to display user photos. This is a great tool for companies that have remote workers or are geographically dispersed, allowing employees to finally see ID photos of their colleagues simply by reading an email from them. There are various methods of uploading photos to AD, but the easiest method – and one that requires no software installation – is PowerShell. Impact to Active Directory The thumbnail attribute can only store a photo up to 100K, so you are definitely not uploading high-resolution photos. Depending on the size of your organization, all those pretty faces can impact the size of your Active Directory database and the replication to other domain controllers so you will need to plan accordingly. The Active Directory schema must be at Windows Server 2008 before you can take advantage of the attribute. You will need to enable replication on the thumbnail attribute since it is disabled by default. If you have Exchange 2010 SP1 installed you won’t need to do this since the setup /SchemaPrep enables the thumbnail attribute replication settings for you. Upload Photos Using PowerShell To... --- ### How to Backup and Restore SharePoint 2013 > Don't wait until it's too late! Learn how to backup and restore SharePoint 2013, including incorporating user-performed backups and more. - Published: 2013-06-07 - Modified: 2024-09-24 - URL: https://petri.com/how-to-backup-restore-sharepoint-2013/ - Categories: SharePoint 2013 - Tags: Backup and Restore, PowerShell, SharePoint 2013 - Article Type: How To Don't wait until it's too late! Learn how to backup and restore SharePoint 2013, including incorporating user-performed backups and more. Simply put, backing up your SharePoint 2013 environment is not a second-tier consideration. If you’re taking your implementation seriously, then you’ve got to plan your backup and recovery options. This article shows you the basics about backing up SharePoint 2013. I’m going to demonstrate the different ways that you can backup your SharePoint 2013 data, as well as show you some of the PowerShell commands that you can use to backup your sites and farm configuration. SharePoint Restoration: A Matter of When, NOT If It’s going to happen. You’re going to need to perform a restore from backup. Even if a user never accidentally deletes a site or regrets his or her decision to delete a certain list, you should still perform restores as part of verifying the ability to restore from your backups. Because if your backup and restore procedures don’t work as well as you expected, there is most definitely a bad time to come to that realization. My point is: Backup your data, and practice your restore procedures even before you need to. Use different backups to fit the situation You can use different techniques for backing up SharePoint 2013 to backup just the right amount of data. Sometimes, you’ll only need to backup a just a single list, library, or Web. Other times you will need to make a comprehensive approach and backup on a larger scale, such as the farm configuration, service applications, and content shared across multiple site collections. But before... --- ### What's New in SQL Server 2014 - Published: 2013-06-06 - Modified: 2024-11-19 - URL: https://petri.com/sql-server-2014-news/ - Categories: SQL Server - Tags: Hekaton, SQL Server 2014 - Article Type: News, Overview Curious what new features Microsoft SQL Server 2014 offers? We've updated this guide with the latest info to help you decide if you're due for an upgrade. Update 2: 4/1/2014, 12:00pm MT - SQL Server 2014 is now generally available; added links to the SQL Server 2014 download page and SQL Server to Azure backup tool. Update 1: 3/18/2014, 10:00am MT - Added information about SQL Server 2014 RTM and GA dates and updated feature list. Microsoft first announced SQL Server 2014 at TechEd 2013, along with a slew of other significant upgrades and announcements for products and services from their Cloud and Enterprise group. That news also included taking the wraps off Windows Server 2012 R2, System Center 2012 R2, and alluding to forthcoming updates in Windows Intune. Of special interest to database administrators is SQL Server 2014, which boasts a host of new updates and improvements. SQL Server 2014 was released to manufacturing (RTM) on April 1st, 2014, and will be generally available (GA) on April 15th, 2014. SQL Server 2012 was released a while ago, but Microsoft is aggressively moving to update their relational database platform with even more features. With SQL Server 2014, Microsoft is focusing on enhancing the performance, scalability, cloud integration, and big data capabilities of the platform. During the TechEd 2013 keynote address, Microsoft Corporate Vice President for SQL Server Quentin Clark highlighted some of the new features of SQL Server 2014, and expanded on those features in more detail in a companion blog post entitled SQL Server 2014: Unlocking Real-Time Insights. I'll outline some key SQL Server 2014 features below, culled from Clark's keynote speech, the aforementioned... --- ### Windows Server Update Services 2012: Configuration > After you've installed WSUS 2012, what next? Learn how to configure clients and approve updates in Windows Server Update Services 2012 in this helpful article. - Published: 2013-06-06 - Modified: 2024-09-24 - URL: https://petri.com/windows-server-update-services-2012-configuration/ - Categories: Windows Server 2012 - Tags: Windows Server 2012, Windows Server Update Services, WSUS - Article Type: Overview After you've installed WSUS 2012, what next? Learn how to configure clients and approve updates in Windows Server Update Services 2012 in this helpful article. In part one of this series about Windows Server Update Services (WSUS) in Windows Server 2012, I described how to install the necessary prerequisite components for WSUS and how to carry out post-installation tasks. Today in part two, I’ll cover how to configure client computers to use your local WSUS instead of Microsoft Update, and how to configure WSUS to distribute updates to different groups of computers. Finally, in part three, I'll go over WSUS 2012, reporting, and PowerShell. Configuring Client Computers to Use WSUS To configure our client computers to connect to the new WSUS server, we’re going to create a Group Policy Object (GPO) to apply the necessary settings across the selected devices: In Server Manager, click Group Policy Management from the Tools menu. Expand your AD forest and domain in the left pane of the Group Policy Management Console (GPMC). Right-click your AD domain and select Create a GPO in this domain, and Link it here... from the menu. In the New GPO dialog, name the new GPO WSUS and click OK. Right-click the WSUS GPO under your domain in the left pane of GPMC and select Edit from the menu. The Group Policy Management Editor will open in a separate window. In the Group Policy Management Editor window, expand Computer Configuration > Policies > Administrative Templates > Windows Components and click Windows Update. In the right pane, double-click Configure Automatic Updates. In the Configure Automatic Updates dialog, select Enabled. Under Options, select Auto... --- ### Data Deduplication and Storage Spaces in Windows Server 2012 > Who doesn't like improvements? Read on for more about the new Data Deduplication and Storage Spaces features in Windows Server 2012. - Published: 2013-06-06 - Modified: 2024-09-24 - URL: https://petri.com/data-deduplication-storage-windows-server-2012/ - Categories: Backup & Storage - Tags: Ask an Admin, data deduplication, storage spaces, Windows Server 2012 - Article Type: Overview Who doesn't like improvements? Read on for more about the new Data Deduplication and Storage Spaces features in Windows Server 2012. Data Deduplication and Storage Spaces are new features in Windows Server 2012 – so, what do they do? As Microsoft continues its mantra of "do more with less" in a difficult economic climate, Windows Server 2012 introduces some significant new features and improvements to existing capabilities that will help organizations reduce costs. In this first article covering new features in Windows Server 2012, I’m going to take a closer look at two of these features: Data Deduplication and Storage Spaces. Data Deduplication While many enterprise-class storage area networks (SANs) have included data deduplication for some time, Windows Server 2012 now includes data deduplication out-of-the-box. This shouldn’t be confused with Single Instance Storage (SIS) found in earlier versions of Windows Server. Data Deduplication works at block level, making it a more efficient system. Data Deduplication identifies data on a volume that exists multiple times and reduces it to a single file, creating stub points that redirect users transparently to the actual data. Windows Server 2012 scans volumes for duplicated data in the background, using minimal CPU cycles to make sure the overall server workload isn’t affected. Data Deduplication in Windows Server 2012 is compatible with NTFS volumes and cannot be enabled on ReFS (Resilient File System) volumes or Cluster Shared Volumes (CSV). Considering that a lot of data today is stored either in Exchange or SharePoint databases, the biggest gain data deduplication will bring is reducing storage costs associated with virtualization libraries (VHD files), where Microsoft quotes a... --- ### BlackBerry Enterprise Service 10.1: Introduction > BlackBerry Enterprise Service 10.1 is not your dad’s BES server. Discover what's new with BES 10.1 in this article. - Published: 2013-06-05 - Modified: 2024-11-19 - URL: https://petri.com/blackberry-enterprise-service-10-1-introduction/ - Categories: Mobile - Tags: BlackBerry - Article Type: Overview BlackBerry Enterprise Server 10.1 is not your dad’s BES server. Discover what's new with BES 10.1 in this article. BlackBerry Enterprise Server 10. 1 (BES) is not your dad’s BES server – it’s a whole new product designed for today’s growing mobile workforce. Since early 2012 there have been so many changes within the BlackBerry MDM platform – new products, name changes, and most recently, another redesign – that it can actually be confusing on how to deploy or upgrade a BES server. This guide will break down what you’ll need to do to get yourself on the road to deploying or upgrading to BlackBerry Enterprise Service 10. 1. BES 10. 1: What’s New? BES 10. 1 is now a complete Enterprise Mobile Management system that can used to protect your corporate-or personally owned devices. Gone are the days of just using the BES server for BlackBerry devices – you can now manage androids and iOS devices using the Universal Device Service. Let’s just skip to chase and forget we ever heard the name BlackBerry Fusion. Renamed and revamped, the former Fusion products and BES 5. x server are now part of what is called the BlackBerry Enterprise Service 10 suite. The suite has merged together the following products: BlackBerry Enterprise Server 5. x – For managing BlackBerry OS 7 and earlier devices BlackBerry Mobile Fusion – The former unified BlackBerry management platform BlackBerry Mobile Fusion Studio – The former unified BlackBerry management console BlackBerry Device Service – For managing BlackBerry PlayBook tablets and BlackBerry 10 devices Universal Device Service – For managing iOS and Android devices BlackBerry Balance (only on BlackBerry 10... --- ### Windows Server 2012 SMB 3.0 File Shares: An Overview > Want increased performance, scalability, and availability? Discover how storing Windows Server 2012 VMs on SMB 3.0 file shares makes it happen. - Published: 2013-06-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-smb-3-file-shares/ - Categories: Backup & Storage - Tags: Hyper-V, Windows Server 2012 - Article Type: Overview Want increased performance, scalability, and availability but need to watch your pennies? Discover how storing Windows Server 2012 VMs on SMB 3.0 file shares makes it happen. Today I'll describe why and how Microsoft has made it possible to store Windows Server 2012 Hyper-V virtual machines on SMB 3. 0 file shares, giving you increased performance, scalability, and continuous availability at a fraction of the cost of traditional block storage. Why Microsoft Created SMB 3. 0 for Application Data The Server Message Block (SMB) protocol is the access protocol for file shares. It’s actually quite an old protocol that was originally designed and used over the years for providing access to information worker (IW) roles such as file shares. Microsoft decided to upgrade SMB from being just an IW protocol to a protocol that would provide file-based access to application data. Why would Microsoft decide to tackle the block-based storage giants such as iSCSI and fiber channel? There are many reasons to do this. Data growth: While we are tackling server sprawl with concepts such as Software-as-a-Service and virtualization, the amount of data that we are retaining is expanding greatly. This is because we are generating more data and retaining more of it. It is unfeasible to continuing to use traditional block storage for this data because it cannot scale as required. Expense: Small and large enterprises both find block storage to be too expensive. The majority of this cost is in the Storage Area Network rather than the disks. Do we really need to store any or all of our data on these feature rich block storage platforms? Service providers need to be competitive and... --- ### Remote Server Administration Tools (RSAT) for Windows 8: Download and Install > Need to manage servers from a dedicated workstation? Learn how to use Remote Server Administration Tools (RSAT) for Windows 8 to get it done. - Published: 2013-06-04 - Modified: 2024-12-03 - URL: https://petri.com/remote-server-administration-tools-rsat-windows-8-download-install/ - Categories: Windows 8 - Tags: Ask an Admin, Remote Server Administration Tools, RSAT, Windows 8, Windows Server 2012 - Article Type: Overview Need to manage servers from a dedicated workstation? Learn how to use Remote Server Administration Tools (RSAT) for Windows 8 to get it done. How do I use the Remote Server Administration Tools for Windows 8? Windows Server 2012 can be managed using the local Server Manager tool, or remotely using a Remote Desktop Connection. But a third and preferable option for managing Windows Server is to download the Remote Server Administration Tools (RSAT) for Windows 8 and manage all your servers from a dedicated workstation. Not only does RSAT include the GUI management tools found in Windows Server 2012, but it also includes the PowerShell cmdlets for Windows Server management. In addition, RSAT provides administrators with an easy way to manage Server Core. Both 64-bit and 32-bit versions of RSAT for Windows 8 are available to download. By default, remote management is enabled on Windows Server 2012. In Windows Server 2008 R2, remote management can be toggled on and off in Server Manager. Managing Windows Server 2008 R2 While RSAT is primarily intended for managing Windows Server 2012 from a Windows 8 workstation, some of the tools are compatible with earlier releases of Windows Server. If you intend to manage Windows Server 2008 R2 with RSAT for Windows 8, you will need to install the following components on the server(s) you want to manage: Microsoft . NET Framework 4. 0 Windows Management Framework 3. 0 An update that allows Server Manager to collect performance data on Windows Server 2008 R2. Adding a remote server to Server Manager Once RSAT is installed on the computer you want to use as a management workstation, you... --- ### Top Windows Server 2012 R2 Hyper-V Virtualization Features > Curious to see what the new and improved virtualization features are in Windows Server 2012 R2? Read this list of some of our favorites new features. - Published: 2013-06-03 - Modified: 2013-06-03 - URL: https://petri.com/top-virtualization-features-in-windows-server-2012-r2-hyper-v/ - Categories: Hyper-V - Tags: TechEd 2013, Windows Server 2012 R2 - Article Type: Overview Curious to see what the new and improved virtualization features are in Windows Server 2012 R2? Read this list of some of our favorites. Windows Server 2012 R2 brings with it a host of new virtualization features, as well as improvements to existing features and capabilities. Refer to our 'What's New in Windows Server 2012 R2' article for a more general overview, but read on for a list of some of the top new virtualization features found in the R2 release. 1. Hybrid Cloud Windows Azure Infrastructure-as-a-Service (IaaS) is built on the same hypervisor as Windows Server. This means that there is complete virtual machine compatibility between the private cloud, partner public clouds, and the Microsoft-owned public cloud. Customers now have to ask themselves: “Where do I want my service to run today? ” 2. Compressed Live Migration A compression engine is built into Live Migration in Windows Server 2012 R2 Hyper-V. The processor in hosts is often underused, so this engine makes use of this spare resource to compress the memory of virtual machines that are being moved before the memory pages are copied across the Live Migration network. Hyper-V will monitor the utilization of CPU resources on the host and throttle compression to prioritize guest services. Enabling Live Migration compression on networks with 10 Gbps or less without Remote Direct Memory Access (RDMA/SMB Direct) support will greatly reduce the time it takes to move virtual machines (not including storage migration). 3. SMB Direct Live Migration Live Migration can be configured to leverage SMB Direct (Remote Direct Memory Access, or RDMA) on hosts that that NICs with support for this feature. This... --- ### What's New in Windows Server 2012 R2 > Microsoft announced Windows Server 2012 R2 this morning at Microsoft TechEd 2013. Check out this early glimpse into what Server 2012 R2 has to offer. - Published: 2013-06-03 - Modified: 2024-09-04 - URL: https://petri.com/whats-new-in-windows-server-2012-r2/ - Categories: Windows Server 2012 - Tags: Windows Server 2012 R2 - Article Type: Overview Microsoft announced Windows Server 2012 R2 this morning at Microsoft TechEd 2013. Check out this early glimpse into what Server 2012 R2 has to offer. Microsoft took the wraps off the Windows Server 2012 R2 update this week at TechEd 2013, and the upgrade brings an impressive number of new features as well as improvements to existing capabilities in Windows Server 2012. According to Microsoft Corporate Vice President Brad Anderson, "Windows Server 2012 R2 will be available for preview in June and will be officially released before the end of the year . " The overriding theme of the upgrade is one of making it easier for IT administrators and cloud service providers to use Windows Server 2012 (along with System Center 2012 and Windows Azure) as a vital part of Microsoft's Cloud OS strategy. This article will focus on providing a top-level overview of what you can expect to see in Windows Server 2012 R2. Where appropriate, we'll be adding links to more technical deep dives into each of the feature listed here. Please note: This is also only a partial list of the new features being announced in the R2 release; we'll be updating this article with more features over time, so be sure to bookmark this page and check back often for updates. Windows Server 2012 R2: Storage Improvements The sheer number of new features being introduced that focus on storage improvements in Windows Server 2012 R2 is impressive, with enhancements in just about every area in the Windows Server storage subsystem. Here are a few highlights: Automated storage tiering: Storage in Windows Server 2012 can be configured to allocate... --- ### TechEd 2013 Survival Guide > Interested in news coming out of TechEd 2013 this week? Here's a handy guide for getting the most out of the show, whether you're onsite or watching remotely. - Published: 2013-06-03 - Modified: 2013-06-03 - URL: https://petri.com/teched-2013-survival-guide/ - Categories: Windows Server - Tags: TechEd 2013 - Article Type: News Interested in news coming out of TechEd 2013 this week? Here's a handy guide for getting the most out of the show, whether you're onsite or watching remotely. Odds are fairly good that at least some of you reading this will be attending Microsoft TechEd 2013 in New Orleans this week. I'll also be there with a number of Petri IT Knowledgebase contributors and writers, including Aidan Finn, Phoummala Schmitt, Peter De Tender, and Simon Bisson. While what Microsoft will be announcing at the show is still a tightly guarded secret, there's plenty of news about TechEd to share. For starters, be sure to stop by the Microsoft Server and Cloud Blog, which provides 11 tips on how to get the most out of TechEd. Microsoft's Channel 9 also has a handy TechEd FAQ that answers most common questions about the event. If you can't make it to TechEd this year, you can still watch select TechEd sessions online for free, and even stream Microsoft VP Brad Anderson's Monday morning TechEd keynote. You should also check out our TechEd 2013 photo galleries on Facebook and Google+, as we'll be posting photos from the conference during the show. One of the best reasons to attend TechEd this year was just announced by Microsoft a few days ago, so this won't help people who weren't able to make the trip this year. As part of a "special Surface offer for TechEd attendees" promotion, Microsoft will be selling the Microsoft Surface RT w/64GB for $99. 99 and the 128GB Surface Pro for only $399. 99 onsite at TechEd via the Microsoft Retail Store. Attending TechEd 2013... --- ### Managing Windows Server 2012 with Server Manager > Learn how to more effectively manage Windows Server using the new Server Manager tool in Windows Server 2012. - Published: 2013-05-31 - Modified: 2024-12-03 - URL: https://petri.com/manage-windows-server-2012-with-server-manager/ - Categories: Windows Server 2012 - Tags: remote administration, remote management, Server Manager - Article Type: How To Learn how to more effectively manage Windows Server using the new Server Manager tool in Windows Server 2012. Server Manager debuted in Windows Server 2008, and while the tool showed potential, it was too limited in functionality to offer a compelling alternative to tried-and-tested methods of managing and monitoring Windows Server. Server Manager in Windows 2012 has been given a complete overhaul to make it easier for administrators to manage Windows Server in the cloud. Much of the new functionality is tied to improvements in PowerShell 3. 0 and the Windows Management Framework (WMF) 3. 0, which have also been updated for improved remote connectivity and manageability. There is a small learning curve involved in understanding how to work with Server Manager, but if you can make the time to understand the new features, Server Manager is a more efficient way to manage Windows Server than connecting to individual remote desktops. Information at a Glance Server Manager’s Dashboard allows you to monitor the basic status of all your servers from one place. In previous versions of Windows Server, you could set up Event Log monitoring to be alerted on server health, and while that is still possible, the Dashboard now offers a convenient overview without any specialist knowledge of how to configure alerting. By default, the Dashboard only shows alerts for critical events, but this can be changed to suit your needs. Servers can be grouped together for more convenient management and monitoring. Not only can servers be accessed individually or by group, it’s also possible to quickly access all the servers that are running a particular... --- ### Joining Windows Server 2012 to a Domain > Learn how to join Windows Server 2012 to an AD domain using Server Manager in this quick 'n easy Ask an Admin. - Published: 2013-05-30 - Modified: 2024-09-24 - URL: https://petri.com/join-windows-server-2012-to-domain/ - Categories: Windows Server 2012 - Tags: Active Directory, AD, Domain - Article Type: How To Learn how to join Windows Server 2012 to an AD domain using Server Manager in this quick 'n easy Ask an Admin. How do I join Windows Server 2012 to a domain? Before you start on your quest to join Windows Server 2012 to a domain, make sure that you can resolve the Active Directory (AD) domain name using DNS. Pinging the Fully Qualified Domain Name (FQDN) ensures that at least one domain controller (DC) is available to process your domain join request. Check DNS resolution Open a command prompt window on Windows Server 2012 by clicking the blue PowerShell icon on the desktop Task Bar or by typing CMD on the Start screen and pressing ENTER. In the command prompt window, type ping , replacing with the Fully Qualified Domain Name for your Active Directory domain. For instance, this might look like ad. contoso. com. Note that there’s no need to include the name of any particular domain controller. If you don’t get a reply from the ping command, check that DNS is set up correctly on the machine that you are trying to join to the domain. There should be at least one DNS entry in the network card’s IP configuration settings. You can check the network adapter’s IP address configuration by typing ipconfig /all in the command prompt, where you should see at least one DNS server address listed. If a DNS server is present in the configuration but you still can’t successfully resolve the domain’s FQDN, you will need to do some more DNS and/or network troubleshooting. Join the computer to a domain Once you have... --- ### 6 Must-Have iPad Apps for System Administrators > iPad apps abound, but these six turn the iPad into an IT Pro's go-to tool. Discover our iPad apps every sysadmin should have. - Published: 2013-05-30 - Modified: 2024-11-19 - URL: https://petri.com/best-ipad-apps-sysadmin/ - Categories: Mobile - Tags: file management, iPad, IT apps, network troubleshooting, project management, Remote Access - Article Type: Overview iPad apps abound, but these six turn the iPad into an IT Pro's go-to tool. Discover our iPad apps every sysadmin should have. By all definitions, the iPad has changed the face of modern computing. It has become a trusted companion to millions of users who find its style and functionality a perfect combination. This is as true for IT professionals as it is for anyone else. Virtually not a day passes where I don’t grab my iPad and put it to work troubleshooting network problems, remotely administering servers and workstations, taking notes, or performing any number of other job-related tasks. With this in mind, I thought it high time to share with Petri readers my tried and true six favorite iPad apps for making life in the IT trenches a little bit easier. 1. NoteTaker HD: The New Post-its An app doesn’t actually need to be IT-related in order to be a go-to tool for IT pros. Case in point: NoteTaker HD. I work with numerous users on a plethora of projects each and every day. Taking notes is how I keep everything straight and how I avoid costly oversights and errors. Rather than carry around a pile of Post-its, I rely on my iPad and the amazing NoteTaker HD app. NoteTaker HD is impressive in its functionality. Beyond simply scribbling notes, the app allows users to perform many other common tasks: import and annotate PDF files, insert and crop images, or work with forms – it’s all there in NoteTaker HD. When taking notes I adjust the line thickness and use the Edit 2 mode to make the... --- ### Microsoft Surface Pro Review > Does the Microsoft Surface Pro have what it takes to replace your Windows 8 laptop and your existing tablet device? Read our review to find out. - Published: 2013-05-29 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-surface-pro-review/ - Categories: Windows 8 - Tags: Microsoft Surface Pro, Surface Pro - Article Type: Review Does the Microsoft Surface Pro have what it takes to replace your Windows 8 laptop and your existing tablet device? Read our review to find out. My adventure with the Microsoft Surface Pro began on the product’s launch day. Right from the start, I was so enamored by my experience unboxing and getting a first look at the device that I decided to really check things out by swearing off my other devices and instead using just the Pro for at least a week. I've already used Microsoft's Surface RT, and I wanted to see how the Surface Pro stacked up. What better way to determine if the Surface Pro really has what it takes to become my single go-to device? To give you an idea of the challenge the Pro faced, just look at the devices I regularly use. I have a number of them, but I primarily rely on two: a fourth generation iPad and a Lenovo ThinkPad T430s laptop. I’ll begin by talking about how well the Surface Pro did functioning as my tablet and then move on to how things turned out using it as my full-fledged laptop. Surface Pro As a Tablet Weight and Comfort First of all, compared to the iPad the Surface Pro feels bulkier. I’m not talking about specifications here – I’m talking about how it feels when carrying it around tucked up under my arm all day. Specifications are universal, while feel is individual. For me, the Surface Pro falls short when it comes to comfortable feel. The general shape and hard edges just don’t live up to my expectations. I think Microsoft can... --- ### System Center Virtual Machine Manager 2012 SP1: Software Requirements > Check out the software requirements for Microsoft System Center Virtual Machine Manager 2012 SP1, including VMM Database, VMM Library, and more. - Published: 2013-05-29 - Modified: 2024-11-19 - URL: https://petri.com/system-center-virtual-machine-manager-2012-sp1-software-requirements/ - Categories: System Center - Tags: Ask an Admin, Cloud, hybrid cloud, Hyper-V, Private Cloud, System Center 2012 SP1, System Center Virtual Machine Manager, Virtualization, Windows Server 2012 - Article Type: Overview Check out the software requirements for Microsoft System Center Virtual Machine Manager 2012 SP1, including VMM Database, VMM Library, and more. What are the software requirements for System Center Virtual Machine Manager 2012 SP1? System Center Virtual Machine Manager (VMM) 2012 SP1 supports a wide variety of configurations. Therefore, the full list of supported software is quite long. This article will describe the software requirements for System Center 2012 Service Pack 1 – Virtual Machine Manager for a modern configuration with the latest version of the supported components. Please consult TechNet to see the list of supported legacy software requirements. Editor's note: For more information, check out these other articles in the series: System Center Virtual Machine Manager 2012 SP1: Components System Center Virtual Machine Manager 2012 SP1: System Requirements System Center Virtual Machine Manager 2012 SP1: Prepare Installation System Center Virtual Machine Manager 2012 SP1: Installation   Virtual Machine Manager Server The requirements for the VMM server are as follows: Windows Server 2012 Std/DC: No support for previous versions, Full or Core install, Domain member WinRM enabled & running (it is by default) . NET Framework 4 (via Sever Manager) or 4. 5 (via download) Windows Assessment and Deployment Kit (ADK) for Windows 8 A supported version of SQL Server either on the VMM server or on another server/cluster You should be aware that the computer name must be shorter than 16 characters and cannot contain the string -SCVMM-.   For example, naming the VMM server as SanFran-SCVMM-1 is unsupported. Note the hyphen placement of these supported examples: SanFranSCVMM-1, SanFranSCVMM-1, or SanFranSCVMM1 are all okay. VMM Database The following versions... --- ### Windows 8 Keyboard Shortcuts > Having trouble navigating the interface in Windows 8? Check out our indispensable list of Windows 8 keyboard commands. - Published: 2013-05-28 - Modified: 2024-09-04 - URL: https://petri.com/windows-8-keyboard-shortcuts/ - Categories: Windows 8 - Tags: keyboard commands, keyboard shortcuts - Article Type: Overview Having trouble navigating the interface in Windows 8? Check out our indispensable list of Windows 8 keyboard commands. As one of the most controversial Windows OSes since Windows Vista, Windows 8 has earned both praise and criticism from system administrators and general users alike. I've blogged about some of the biggest concerns that many readers have about Windows 8, and most of those concerns revolve around the removal of the ubiquitous Windows start menu and the inability to boot directly to the mouse- and keyboard-friendly Windows desktop. The Windows 8 touch-optimized interface (formerly known as Metro) has also caused some grief for traditional mouse and keyboard users. While I'd readily agree that Windows 8 running on a tablet or a touch-enabled laptop is a joy to use, trying to get work done on a regular desktop PC can take some extra effort. I've found a lifesaver in the immense number of keyboard shortcuts and commands in Windows 8, so I've cobbled together some of my favorite Win8 keyboard shortcuts in this article as a service to Petri IT Knowledgebase readers. The ubiquitous Windows key, as seen on a Dell PC keyboard (photo by Jeff James) Some of these keyboard commands are specific to Windows 8, but I found all of these the most useful when trying to work my way through the new Windows 8 UI. Feel free to bookmark this page and/or print out a copy to post next next to your computer. If you're using other versions of Windows, we have you covered there as well: Check out our... --- ### Forcing a Remote Group Policy Update with GPMC > Take advantage of this new Windows Server 2012 feature and learn how to update Group Policy remotely using the Group Policy Management Console (GPMC). - Published: 2013-05-28 - Modified: 2024-09-04 - URL: https://petri.com/force-remote-group-policy-update-gpmc/ - Categories: Windows Server 2012 - Tags: group policy, group policy update - Article Type: How To Take advantage of this new Windows Server 2012 feature and learn how to update Group Policy remotely using the Group Policy Management Console (GPMC). How do I force a remote Group Policy update in Windows Server 2012? Group Policy settings refresh automatically every 90 minutes, with a random offset of 0 to 30 minutes so that not all computers in the domain refresh their Group Policy settings at the same time. If you want to apply new Group Policy settings without waiting for the next scheduled refresh, you can force an update by running the gpupdate command line tool locally. Windows Server 2012 Group Policy Management Console (GPMC) has a new feature that allows administrators to remotely force a Group Policy refresh on all computers in an Active Directory (AD) Organizational Unit (OU). Additionally, there’s also a new PowerShell cmdlet (Invoke-GPUpdate) that allows you to do the same thing programmatically, with the advantage of being able to target the default Computers container. Configure Windows Firewall to allow a remote Group Policy update First we need to configure Windows Firewall across our network to support the ability to remotely refresh Group Policy. Logon to Windows Server 2012, or Windows 8 if you have the Windows Server 2012 Remote Server Administration Tools (RSAT) installed. Open Server Manager from the desktop Task Bar or Start screen. Open Group Policy Management from the Tools menu in Server Manager. In the left pane of GPMC, expand your AD forest, domain, and select Starter GPOs. In the right pane of GPMC, if you don’t see a list of Starter GPOs for your domain, click Create Starter GPOs... --- ### System Center Virtual Machine Manager 2012 SP1: Components > Before you consider the architecture of VMM, know what each feature will do. Discover the components in System Center Virtual Machine Manager 2012 SP1. - Published: 2013-05-27 - Modified: 2024-09-24 - URL: https://petri.com/system-center-virtual-machine-manager-vmm-2012-sp1-components/ - Categories: System Center - Tags: Ask an Admin, cloud computing, Hyper-V, Microsoft, Virtualization, vmm, vSphere - Article Type: Overview Before you consider the architecture of VMM, know what each feature will do. Discover the components in System Center Virtual Machine Manager 2012 SP1. What are the components of Microsoft System Center Virtual Machine Manager 2012 SP1? Before you consider the architecture or requirements of VMM, you should know what each feature will do. You should also determine if you will need them and calculate your need for scale-out and high availability. So for today, I'll describe the purposes of each component of Virtual Machine Manager (VMM or SCVMM) 2012 SP1. Editor's note: For more in this series, check out the following articles:  System Center Virtual Machine Manager 2012 SP1: System Requirements System Center Virtual Machine Manager 2012 SP1: Software Requirements System Center Virtual Machine Manager 2012 SP1: Prepare Installation System Center Virtual Machine Manager 2012 SP1: Installation Virtual Machine Manager Service The VMM service is a small installation. It is the central piece of the Microsoft cloud, coordinating the fabrics and compute resources, managing service deployment, and delegating (controlled and measured) access to administrators and self-service users. VMM 2012 SP1 can be made highly available on a Windows Server failover cluster. The Components of VMM 2012 SP1 SQL Database A relatively small SQL Server (Standard edition or higher) database is required for VMM. This database can be installed on the VMM server, on another server, or on a SQL Cluster. It does support SQL Server 2012 Always On, but reviews of this are mixed. Library The Library contains an IT-controlled collection of reusable resources such as VM templates, VHD/X files, OS and Hardware profiles, scripts, ISO, files,... --- ### Configure SharePoint 2013 User Profiles for Social Networking > In this helpful article, learn the steps to setup and configure SharePoint 2013 User Profiles to maximize the social networking experience. - Published: 2013-05-24 - Modified: 2024-11-19 - URL: https://petri.com/configure-sharepoint-2013-user-profiles-for-social-networking/ - Categories: SharePoint 2013 - Tags: My Site - Article Type: How To In this helpful article, learn the steps to setup and configure SharePoint 2013 User Profiles to maximize the social networking experience. The social networking features in SharePoint are comprised of several components, including My Site, User Profiles, blogging, and the newly added Community sites. The key to providing access to connecting with other people in an organization through these features is by leveraging User Profiles. In today’s article I will show you how to setup and configure the User Profiles Service so you can begin to use SharePoint’s social networking features. This is where the personalization element comes into SharePoint: providing information that is specific to each user that can be indexed and searched. It can contain data about group memberships, managers, colleagues, as well as likes and interests. The collecting and aggregation of user profile data is performed by a service application called User Profile Service. The service maintains the User Profile Properties, Audiences, Profile Synchronization, Organizational browsing, and My Site settings. User Profiles can be imported from many sources that contain profile data but typical sources are Active Directory or LDAP Stores. Creating the My Site Web Application To start using User Profiles in SharePoint you will first need to create the web application to host My Site and the Profile Application. Once the My Site Web application and site collection have been created you can then begin setting up the User profile application. If you have not already created your My Site web application or site collection you can follow the steps outlined below. Before you begin, read more about the required accounts and permissions... --- ### How to Play DVDs in Windows 8 > Looking for a way to play DVD or Blu-ray discs using Windows 8? Learn a number of options for playing DVDs on Win8 with our latest Ask an Admin article. - Published: 2013-05-23 - Modified: 2024-11-19 - URL: https://petri.com/how-to-play-dvds-windows-8/ - Categories: Windows 8 - Tags: Ask an Admin, Blu-ray, DVD playback, Windows Media Center, Windows Media Player - Article Type: How To Looking for a way to play DVD or Blu-ray discs using Windows 8? Learn a number of options for playing DVDs on Win8 with our latest Ask an Admin article. How do I play DVD or Blu-ray movie discs on Windows 8? In addition to introducing a radical new user interface (formerly known as Metro), Windows 8 brought a host of other changes and improvements to the world's most popular OS family. One of the changes that has caused the most frustration is the removal of default DVD and Blu-ray playback in Windows 8, a development that has unfortunately led to a fair amount of confusion by end-users and system administrators alike. Microsoft's decision to remove default DVD and Blu-ray media playback was a controversial one, but former Windows chief Steve Sinofsky argued that Microsoft had to pay an onerous amount of licensing fees to include that capability by default in every copy of Windows 8. While you can't play DVDs or Blu-rays by default, you can access files that are stored on them. So loading Excel files off your DVD is fine, but playing The Dark Knight Rises on DVD wouldn't be. Adding movie playback capability to Windows 8 As of this writing, there are a number of ways to add the ability to play movies with Windows 8. It's all a bit confusing to the uninitiated, but here are your options. Brand-new PC with Windows 8: If you bought a PC brand-new with pre-installed Windows 8, chances are good that the PC hardware manufacturer included some DVD or video playback application. Check your user documentation that came with your system, or call up technical support for... --- ### Using DNS Logs As a Security Information Source > Learn how DNS logs and analysis can be a useful sources of security information in this article by Qualys CTO Wolfgang Kandek. - Published: 2013-05-23 - Modified: 2024-11-19 - URL: https://petri.com/dns-security-information-source/ - Categories: DNS - Tags: DNS, Editor's Pick - Article Type: How To, Overview Recently a number of tech companies experienced network attacks. Learn how DNS logs and analysis can be a useful sources of security information in this article by Qualys CTO Wolfgang Kandek. Editor’s Note: This article is a guest post, which is unpaid and non-sponsored content written by an independent contributor. The views and opinions expressed here do not necessarily represent the views of the Petri IT Knowledgebase. Last month, a number of technology companies came forward with information about a series of successful attacks against their corporate networks. Twitter first blogged about the attack and the associated loss of 250,000 user records, but it did not provide much background, even though there were references to a US-CERT advisory to turn off Java on workstations. In the following weeks, Facebook, Apple, and Microsoft all followed with blog posts of their own informing us that attackers had penetrated their networks by attacking developer workstations through an exploit for a Java 0-day vulnerability. Facebook’s blog post was the most detailed and interesting because it revealed how they detected the attack: “... we flagged a suspicious domain in our corporate DNS logs and tracked it back to an employee laptop. " After the Aurora attack in 2009 where DNS analysis also played an important role, this is another indication that DNS log analysis is a worthwhile effort for any security team interested in detecting malicious activity. Learning from DNS Logs The logfiles of your DNS resolver contain a wealth of information on the Internet activity of your users and their machines and can be filtered for signs of attacks and malware. In general, you would be baselining the logfiles for normal usage, and then... --- ### Enable Remote Desktop on Windows Server 2012 > Learn how to enable Remote Desktop in Windows Server 2012 so that you can remotely administer a server. - Published: 2013-05-23 - Modified: 2024-09-24 - URL: https://petri.com/enable-remote-desktop-windows-server-2012-for-remote-administration/ - Categories: Windows Server 2012 - Tags: Remote Access, Remote Desktop Connection, Server Manager - Article Type: How To Learn how to enable Remote Desktop in Windows Server 2012 so that you can remotely administer a server. I want to gain remote administrator access. How do I enable the Remote Desktop feature on Windows Server 2012? The first thing to understand about enabling remote desktop for administrative purposes (i. e. when you don’t require users to connect to your server to access applications) is that it’s really easy to do. Sometimes I see people trying to enable the full Remote Desktop Services (RDS) role in Windows Server, a confusion taken from earlier editions of Windows Server where there was a special remote administration mode for Terminal Services. Note: Installing Remote Desktop Services is not necessary in Windows Server 2012, and enabling remote desktop access for administration is the same process as enabling remote desktop access in Windows 8, except there is an extra entry point to the configuration via Server Manager. Enabling remote access using Server Manager Follow these steps to enable remote desktop access using Server Manager. Logon to Windows Server as a local administrator and open Server Manager from the desktop Task Bar or Start Screen. In the left pane of Server Manager, click Local Server. Wait a few seconds for the information about the local server to update in the right pane. In the Properties section of the right pane you should see the status of Remote Desktop, which is disabled by default. Click on the status to change it to Enabled. The Systems Properties dialog opens on the Remote tab. Under Remote Desktop in the Systems Properties dialog, select Allow remote... --- ### System Center Virtual Machine Manager 2012 SP1: System Requirements > Review the system requirements of Microsoft's System Center 2012 Service Pack 1 Virtual Machine Manager. - Published: 2013-05-22 - Modified: 2024-09-24 - URL: https://petri.com/requirements-system-center-virtual-machine-manager-2012-sp1/ - Categories: System Center - Tags: Cloud, cloud computing, hybrid cloud, Hyper-V, Private Cloud, Virtual Machine Manager, Virtualization, vmm, Windows Server 2012 - Article Type: Overview Review the system requirements of Microsoft's System Center 2012 Service Pack 1 Virtual Machine Manager. What are the system requirements of Microsoft System Center Virtual Machine Manager 2012 SP1? Today we'll describe the system or hardware requirements for the components of System Center 2012 Service Pack 1 – Virtual Machine Manager. Editor's note: For more in this series, check out the following articles: System Center Virtual Machine Manager 2012 SP1: Components System Center Virtual Machine Manager 2012 SP1: Software Requirements System Center Virtual Machine Manager 2012 SP1: Prepare Installation System Center Virtual Machine Manager 2012 SP1: Installation Virtual Machine Manager (VMM) Server The VMM server runs a service that coordinates all the operations of VMM. This service is incredibly scalable: A basic deployment of VMM on a single server running all of the VMM roles can scale out to managing 150 hosts! The system requirements for a single VMM server are shown below in Table 1. You can see that these requirements are quite basic. As usual, "minimum" is exactly that, and anyone deploying the minimum specification should expect to perform an upgrade soon after. A variable in this specification is the amount of disk space required for the VMM Library. The classic consultant’s answer of “it depends” genuinely does apply; some smaller businesses underuse the power of the library and don’t need much disk space. On the other hand, others who make the most of the VMM library will need more disk space. Note that enabling deduplication (Windows Server 2012) on the library’s volume could give huge space savings over time... . --- ### Free Password Management Tools to Make Your Life Easier > Bogged down by too many passwords and login credentials? Consider using these two free password management tools designed to free up some brain space. - Published: 2013-05-22 - Modified: 2024-09-04 - URL: https://petri.com/free-password-management-tools/ - Categories: Security - Tags: password manager - Article Type: Overview Bogged down by too many passwords and login credentials? Consider using these two free password management tools designed to free up some brain space. If you're like me, you have a lot of online IDs and presences that you have to constantly maintain. Some may be credentials to your email accounts. Others may be information pertaining to your Facebook, Twitter, LinkedIn, or other websites, or credentials for devices such as your routers, WiFi access points, and printers. Some of this info may be easier to remember mostly because – unlike what the common best practices tell us – many of us use nonexpiring passwords for these credentials. Meanwhile, other IDs may be more hard to remember, such as online banking, credit card sites, and other more security-aware sites and portals. Other IDs may be the ones that you opened just once in order to be able to read some members-only information, posted a question on some forgotten forum or community, or even registered to some company website that promised to give you something in return.  The list is endless. Almost all security experts will agree on this: Keeping your online IDs as diverse and complex as possible is good for your online safety. We wrote more about this in a past article, "10 Tips to Make a Secure Password. " Today I'll introduce you to two free password management tools: Password Safe and KeePass Password Safe. (Editor's note: Already caught in a bind and forgot an admin password? Need to do a reset? Check out this article on how to regain access to an administrator password. ) Free Password Management Tools Okay, so now it seems like... --- ### VMware Unveils vCloud Hybrid Cloud Service, Enters IaaS Market > VMware takes the wraps off their vCloud Hybrid Service, a cloud IaaS offering designed to compete with similar services from Amazon and Microsoft. - Published: 2013-05-21 - Modified: 2024-11-19 - URL: https://petri.com/vmware-vcloud-hybrid-service-unveiled/ - Categories: VMware - Tags: News, vCloud Automation Center, vCloud Orchestrator, vCloud Suite 5.1, VMware Horizon, VMware vCloud, VMware vCloud Hybrid Service - Article Type: News VMware takes the wraps off their vCloud Hybrid Service, a cloud IaaS offering designed to compete with similar services from Amazon and Microsoft. Earlier today at a press event at the VMware campus in Palo Alto, VMware CEO Pat Gelsinger announced the VMware vCloud Hybrid Service, an Infrastructure as a Service (IaaS) offering designed to compete against similar IaaS services such as Amazon AWS, , RackSpace, IBM SmartCloud, and others. Gelsinger said that VMware's corporate strategy revolved around three things: The software-defined data center concept, their new hybrid cloud service, and their end-user computing efforts (in the form of the VMware Horizon Suite). In a statement released today to coincide with the launch event this morning, Gelsinger said that the vCloud Hybrid Service will "seamlessly extend VMware software used by hundreds of thousands of customers into the public cloud. This means customers will be able to extend the same skills, tools, networking and security models across both on-premise and off-premise environments. " VMware's Bill Fathers discusses vCloud Hybrid Services at the launch event. The Day Has Arrived VMware's introduction of their cloud IaaS service underscores how competitive the market for IaaS cloud computing services has become, as many IT organizations are beginning to consider using public cloud computing services in greater numbers. Forrester Research IT infrastructure and operations analyst James Staten noted last month that these developments were a good sign of the growing acceptance towards and adoption of cloud services. "If all the above is so ho-hum, then why am I so bullish on these announcements? ," Staten wrote. "Because ho-hum releases like these are signs of maturity that signal to... --- ### Planning Hyper-V Virtual Machine Storage > Discover the many considerations when configuring storage for a Hyper-V virtual machine. - Published: 2013-05-21 - Modified: 2024-09-04 - URL: https://petri.com/hyper-v-virtual-machine-storage/ - Categories: Hyper-V - Tags: storage, virtual machine, VM - Article Type: Overview Discover the many considerations when configuring storage for a Hyper-V virtual machine. Over the past few weeks, we have discussed using physical disks for Hyper-V storage and virtual hard disks with virtual machines. In this post, we will look at what to consider when configuring a virtual machine’s storage. Virtual Machine Storage Hardware We attach disks (physical or virtual) to a virtual machine using virtual storage controller devices in a virtual machine. There are three kinds in the hardware settings of the virtual machine: IDE: two controllers by default, with two locations, allowing up to four disks, including the virtual DVD drive. SCSI: one controller by default. A virtual machine can have four SCSI controllers, each with 64 locations (or virtual hard disks). Fiber Channel Adapter:  Up to four virtual fiber channel adapters, each having unique Worldwide Names (WWNS) to identify themselves (using NPIV enabled host bus adapters) on a fiber channel SAN and connect to appropriately zoned LUNs. IDE Controllers Those who are new to Hyper-V, or those who work in marketing for Microsoft competitors, often focus on the presence of IDE controllers in a Hyper-V virtual machine. It makes no difference that they are “IDE” controllers; in fact, they are not actually IDE controllers – they are software. Senior Hyper-V Program Manager Ben Armstrong, explained on his blog why it does not matter that Hyper-V virtual machines use IDE controllers. The IDE controller is normally used for two things: A Hyper-V virtual machine’s boot volume must be on Location 0 on IDE Controller 0. Virtual DVD drives... --- ### Why You Shouldn't Disable the Firewall in Windows Server > Learn why you shouldn't disable Windows Server Firewall on your PC and what tools you can use to configure the firewall. - Published: 2013-05-21 - Modified: 2013-05-21 - URL: https://petri.com/dont-disable-firewall-windows-server/ - Categories: Security - Tags: firewall, Security Configuration Wizard, Windows Server - Article Type: Opinion It was once common practice to turn off Firewall in Windows as part of a PC or server build. Learn why you shouldn't disable Windows Server Firewall on your PC. Microsoft undertook a large-scale project to bolster security in Windows Server 2003 Service Pack 2, including a full-featured endpoint firewall (Windows Firewall). This resulted in what was known at the time as the Vista reset, putting a temporary freeze on development of Microsoft’s next operating system. Despite that Server 2003 and XP had only been released a couple of years before the arrival of SP2, the security landscape had changed dramatically, with Windows XP on the client side becoming increasingly vulnerable to attack. While Windows had previously included the Internet Connection Firewall (ICF), it was turned off by default and offered limited functionality, so a complete endpoint firewall solution was something new for Windows administrators. It was common practice to turn off Firewall in Windows as part of the build for PCs and servers on the corporate intranet. This was largely because it was considered that the network edge firewall provided enough protection for intranet devices, and system administrators didn’t know how to work with the new firewall. In situations where it was considered unnecessary, removing it from the equation was the easiest way to get systems up and running quickly. Fast forward to 2013, and all too often I come across servers where Windows Firewall has been switched off, either as part of the build or it's been temporarily turned off in an attempt to resolve an issue and never re-enabled. Disabling Windows Firewall increases the attack surface of Windows Server. Any... --- ### Microsoft Cloud OS: An Overview > Discover the ins and outs of cloud computing and learn how Microsoft has made a cloud OS with Windows Server 2012 and System Center 2012 SP1. - Published: 2013-05-20 - Modified: 2024-09-24 - URL: https://petri.com/microsoft-cloud-os/ - Categories: Microsoft Azure - Tags: Cloud OS, System Center 2012 SP1, Windows Server 2012 - Article Type: Overview Discover the ins and outs of cloud computing and learn how Microsoft has made a cloud OS with Windows Server 2012 and System Center 2012 SP1. In this article, we are going to introduce you to the concept of cloud computing (including public, private, and hybrid clouds). We'll also discuss how Microsoft has engineered a cloud OS with Windows Server 2012 and System Center 2012 with Service Pack 1. What Is a Cloud? Microsoft made a big deal about taking us “beyond virtualization” with the release of Windows Server 2012. What that meant was they were bringing us to an era of cloud computing with a designed-for-purpose solution. Cloud computing isn’t just a marketing term, although many marketers misuse it. Cloud computing has been driven by a change of attitude towards computing services. Traditionally, IT is a black box in the business, providing centrally or distributed services that are designed, engineered, and maintained by IT. The business sees IT as slow, inflexible, and unresponsive to threats and opportunities. Meanwhile, IT staff feel overwhelmed. Cloud computing requires one essential change in perspective. Those who are familiar with ITIL (Information Technology Infrastructure Library) or MOF (Microsoft Open Framework, a Microsoft focused version of ITIL) understand that IT provides services to customers. That is exactly what cloud computing does, but those customers can be internal or external, and (cross-) charging for those services is optional. (Image via Microsoft) The American National Institution of Standards and Technology (NIST) wrote a definition of cloud computing that is widely accepted. There are several essential characteristics in a cloud: Self-service: The customer can deploy services for themselves via a portal... . --- ### Windows Server Update Services (WSUS) 2012: Installation > Become a WSUS wizard! Learn to install and configure Windows Server Update Services (WSUS) 2012. - Published: 2013-05-20 - Modified: 2024-09-24 - URL: https://petri.com/windows-server-update-services-wsus-2012-installation/ - Categories: Windows Server 2012 - Tags: WSUS - Article Type: Overview Become a WSUS wizard! Learn to install and configure Windows Server Update Services (WSUS) 2012. Windows Server Update Services (WSUS) gives administrators control over how and when updates are distributed and installed on a private network, allowing organizations to test updates before they are applied in production and reducing the risk of an update causing a service outage. Although it’s possible to rely on Microsoft Update to patch your networked computers, there’s no centralized administration, reporting, or ability to target specific groups of machines, so it’s only suitable for home computers or small businesses with no access to IT support. In this article, I'll go over the installation of WSUS 2012 and its prerequisites. Later, in another article, I'll go further and discuss configuring WSUS 2012. Finally, in part three, I'll go over WSUS 2012, reporting, and PowerShell. Windows Server Update Services Prerequisites Before you begin installing the WSUS role on Windows Server 2012, the server should meet the following prerequisites: Microsoft . NET Framework 4. 0 must be installed on the WSUS server. The Network Service account must have full access to the %windir%Microsoft. NETFrameworkv4. 0. 30319Temporary ASP. NET Files and %windir%Temp file paths. The account you use to install WSUS must be a member of the Local Administrators group. The Microsoft . NET Framework 4. 0 is installed by default on Windows Server 2012, so unless you have specifically removed it, you don’t need to do anything other than check that it’s installed. The Temporary ASP. NET Files folder is installed as part of Internet Information Services (IIS), which is a requirement for WSUS and is installed as an... --- ### Network Address Translation Configuration > In this follow-up to our introduction to Network Address Translation (NAT), learn how configure dynamic, static, and overloaded NAT. - Published: 2013-05-17 - Modified: 2024-09-24 - URL: https://petri.com/network-address-translation-configuration/ - Categories: Networking - Tags: NAT, network address translation - Article Type: Overview In this follow-up to our introduction to Network Address Translation (NAT), learn how configure dynamic, static, and overloaded NAT. This article is the second in a series about Network Address Translation (NAT). In the first article, Introduction to Network Address Translation, I went over the basics of the purpose of NAT along with some of the different methods of implementation. This article takes a look at how to put these different methods into practice, including several examples. Static NAT In the "Introduction to Network Address Translation" article, the first thing that was discussed was static NAT. With static NAT there is a one-to-one relationship configured between an inside and an outside address. The image below lays out the scenario as shown in the initial article.  Figure 1 There are three main commands that are required to configure this. An overview of these commands and the steps to follow to utilize them  are shown below in Table 1.   1 Enter privileged EXEC mode router>enable 2 Enter device configuration mode router#configure terminal 3 Enter interface configuration mode for the inside interfaceNote: The inside interface faces into the internal network router(config)#interface interface 4 Configure the interface as the inside NAT interface router(config-if)#ip nat inside 5 Enter interface configuration mode for the outside interfaceNote: the outside interface faces towards an external network router(config-if)#interface interface 6 Configure the interface as the outside NAT interface router(config-if)#ip nat outside 7 Exit into global configuration mode (optional) router(config-if)#exit 8 Configure a static NAT mapping router(config)#ip nat inside source static inside-local-address inside-global-address Table 1 - Static NAT Configuration Commands Taking from the steps shown in... --- ### Using Remote Desktop Connection Manager > In this Ask an Admin, discover how to manage remote desktop connections with Microsoft's Remote Desktop Connection Manager (RDCM). - Published: 2013-05-16 - Modified: 2024-12-03 - URL: https://petri.com/using-remote-desktop-connection-manager/ - Categories: Windows - Tags: Ask an Admin, RDP, Remote Desktop Protocol, Windows Server - Article Type: Overview In this Ask an Admin, discover how to manage remote desktop connections with Microsoft's Remote Desktop Connection Manager (RDCM). How do I manage remote desktop connections? While Microsoft is doing its best to persuade us to manage remote servers using the Remote Server Administration Tools (RSAT), such as Server Manager, it’s common that system administrators will have a number of remote desktops that they connect to on a daily basis for administration purposes. When this number reaches more than a handful, managing and tracking these connections around your desktop can be frustrating. The Remote Desktop Connection Manager (RDCM), originally developed around the time of Windows Vista and not updated for a couple of years, can still be downloaded and works on Windows 8. You can download the Remote Desktop Connection Manager for free. Once the tool is installed, you need to create a new RDCM group collection. Select New from the File menu and in the New File dialog give your new group collection a name and click Save. You will now see your new group collection in the left pane of RDCM. Right-click the new group and click Add group... in the menu. Give the group a name in the Add Group dialog. At this point you have the option to set a variety of options for all servers that will become a member of the group. If you click on any of the tabs in the Add Group dialog, you’ll see that the settings are inherited from the group collection. This can be changed by deselecting the Inherit from parent check box. Click Add... --- ### Using Hyper-V Snapshots > It's a new Ask an Admin! Discover how to create, manage, and delete Hyper-V Snapshots. - Published: 2013-05-15 - Modified: 2024-09-24 - URL: https://petri.com/create-manage-delete-hyper-v-snapshot/ - Categories: Hyper-V - Tags: Ask an Admin, Hyper-V, Virtualization, Windows Server 2012 - Article Type: Overview It's a new Ask an Admin! Discover how to create, manage, and delete Hyper-V Snapshots. How do I create a Snapshot? How do I use it? And how do I delete a Snapshot? Recently we blogged about what Hyper-V snapshots are and why to use them. In this post we will describe to use create, manage, and delete Hyper-V snapshots. Creating a Snapshot You can create a snapshot of a virtual machine (running or not) very easily: Just select the VM and select Snapshot from the Actions pane in Hyper-V Manager. The status of the virtual machine will change to “Taking Snapshot” and show the progress of the action using a percentage value. You can view your snapshots in the Snapshots pane (this might require expanding) of a selected virtual machine in the center of Hyper-V Manager. By default, the snapshot is named after the virtual machine and shows the date and timestamp of the snapshot. You can rename the snapshot to something more descriptive. You can also view the settings of a snapshot to observe the specification of the virtual machine at the time of snapshot creation. Tiered Snapshots You can create up to 50 snapshots of a single virtual machine. Please remember that 50 is a limit, and not a goal.   Creating a snapshot will slow down a virtual machine. Creating more snapshots will increase that degradation. And you should also remember that Hyper-V snapshots are not to be used as a VM backup – that's why Volume Shadow Copy Service snapshots exist. Maybe you would like to keep multiple... --- ### Setup a Domain Controller with Windows 2012 Server Core > Server Core excels as an Active Directory Domain Controller. This article will guide you through creating a DC with Windows 2012 Server Core. - Published: 2013-05-15 - Modified: 2024-12-03 - URL: https://petri.com/setup-domain-controller-windows-2012-server-core/ - Categories: Active Directory (AD) - Tags: Domain Controller, PowerShell, Server Configuration Tool, Windows Server Core - Article Type: How To Server Core excels as an Active Directory Domain Controller. This article will guide you through creating a DC with Windows 2012 Server Core. Server Core, introduced with Windows Server 2008, is a lean and mean installation option for Windows Server 2012. It is a GUI-free, or "headless," operating system. Eliminating the GUI on the server offers many advantages; in fact, Microsoft believes in Server Core so strongly that it is the default installation option in Windows Server 2012. One of the best uses for Server Core in Windows Server 2012 is as an Active Directory Domain Controller. Why? For starters, Server Core minimizes the Windows components installed. Fewer components mean fewer security patches and Windows updates. It also means a lower attack surface making the server easier to protect from malware. Less running processes and services reduce the opportunity for system crashes and hangs. Preparing a DC Using Windows 2012 Server Core Now it’s time to go from just wanting a Server Core DC to actually having one. Before we get too far along, we better start by making sure our bases are covered and that all prerequisites have been met. It should go without saying Windows Server 2012 Server Core must already be installed. Next, we need to make sure network settings have been correctly configured. We'll begin by assigning a static IP address. Logon using an account with administrative privileges on the Server Core system. At the Windows Server 2012 Server Core Command Prompt, type sconfig. cmd and press Enter to start the Server Configuration Tool. Type 8 and press Enter to select Network Settings from the menu. Type... --- ### Disabling User Account Control (UAC) in Windows 8 > Wish you could drop UAC in Win8? We got you covered: Learn four easy ways to disable User Account Control in Windows 8 in this helpful tutorial. - Published: 2013-05-14 - Modified: 2024-09-04 - URL: https://petri.com/disabling-user-account-control-uac-in-windows-8/ - Categories: Windows 8 - Tags: Editor's Pick, uac, User Account Control - Article Type: How To Wish you could drop UAC in Win8? We got you covered: Learn four easy ways to disable User Account Control in Windows 8 in this helpful tutorial. User Account Control (UAC) was introduced in Windows Server 2008 and Windows Vista, and it was intended to provide an extra layer of system security by prompting a user for permission when a service or application tries to make changes to a system or install new software, or to modify existing applications. (See also: How to Disable UAC in Windows Vista. ) The primary purpose of UAC was to restrict user access to a least privilege model, where a user operates with a limited number of system privileges until more advanced privileges are required. When a program attempts to make changes to the system, UAC triggers an administrator prompt that requires administrator permission to continue. UAC helps keep Windows more secure by requiring users permission for system changes, which can help stop the spread of malware and other malevolent software. UAC was also a bit of a user-experience headache, which led to UAC being ridiculed in the infamous Mac vs PC TV ads and led to changes in Windows 7 that made UAC less obtrusive.  (See also: How to Disable UAC in Windows 7. ) Changes in Windows 8 UAC The most significant change to UAC in Windows 8 is that setting UAC to "Never Notify" in User Account Control Settings (see detailed steps on how to do this below) doesn't actually turn off UAC completely, as it did in Windows 7. In the vast majority of cases this isn't an issue, but some legacy applications -- especially those designed... --- ### Enable the Active Directory Recycle Bin in Windows Server 2012 > Learn how to enable the Active Directory recycle bin in Windows Server 2012 using the Active Directory Administrative Center. - Published: 2013-05-14 - Modified: 2024-09-24 - URL: https://petri.com/enable-active-directory-recycle-bin-windows-server-2012/ - Categories: Active Directory (AD) - Tags: Active Directory, Ask an Admin, recycle bin, Windows Server 2012 - Article Type: How To Learn how to enable the Active Directory recycle bin in Windows Server 2012 using the Active Directory Administrative Center. How do I enable the Active Directory Recycle Bin in Windows Server 2012? First introduced in Windows Server 2008 R2, the Active Directory recycle bin builds on AD’s tombstoning feature to allow administrators to easily restore deleted directory objects. Prior to Windows Server 2012, the recycle bin was accessible only from the command line using PowerShell. Windows Server 2012 contains a graphical user interface for working with and enabling the recycle bin as part of the Active Directory Administrative Center. Before following this procedure, it’s important to understand that once enabled, the recycle bin can’t be disabled. You’ll need to make sure that your forest is running at the Windows Server 2008 R2 forest function level or higher, that you have at least one Windows Server 2012 domain controller (DC) in the domain, and that all other DCs in the domain are running Windows Server 2008 R2 or higher. Enabling the Active Directory Recycle Bin Log on to a domain controller or a machine with the Remote Server Administration Tools (RSAT) installed as an enterprise administrator. Open the Active Directory Administrative Center from the Start screen (or Start menu if not using Windows 8 or Windows Server 2012). Alternatively, the AD Administrative Center can be opened from the Tools menu in Server Manager. In the left pane of the Active Directory Administrative Center, select the Active Directory domain that you want to connect to. Right click the AD domain in the left pane and select Raise the... --- ### How Hyper-V Snapshots Work > Ever wondered how Hyper-V snapshots work? Wonder no more as we go take a walk through how snapshots work and mistakes to avoid. - Published: 2013-05-13 - Modified: 2024-09-04 - URL: https://petri.com/how-hyper-v-snapshots-work/ - Categories: Hyper-V - Tags: Ask an Admin, Snapshot - Article Type: Overview Ever wondered how Hyper-V snapshots work? Wonder no more as we go take a walk through how snapshots work and mistakes to avoid. How do Hyper-V snapshots work? Files are flexible, and this is why snapshots can be made of virtual machines – pass-through disks do not support snapshots. The default location for storing a snapshot is configured in the virtual machine settings. By default, the snapshots are stored in subfolder of the virtual machine’s folder called Snapshots. You can change this setting and you can move snapshots using Live Storage Migration. The configuration of the virtual machine is stored in an XML. The contained settings are copied into an XML file in the Snapshots folder.   The running state of the virtual machine is also stored using BIN and VSV files. Each virtual hard disk of the virtual machine is also treated by the snapshot.   This is done using a special kind of differential virtual hard disk called the advanced virtual hard disk (AVHD): Each VHD file will become a parent to an AVHD file. The virtual machine will start using the AVHD file for reads and writes after the snapshot, and the VHD file for reads older than the snapshot. Each VHDX file will become a parent to an AVHDX file. The virtual machine will start using the AVHDX file for reads and writes after the snapshot, and the VHDX file for reads older than the snapshot. A virtual machine can be sent back in time by applying the snapshot – that is, by erasing the contents of the AVHD/X files. A snapshot can be deleted by merging the... --- ### Top 10 SharePoint 2013 Features > Is it worth upgrading to SharePoint 2013? We think so. Check out our list of the top 10 new SharePoint 2013 features. - Published: 2013-05-13 - Modified: 2024-11-19 - URL: https://petri.com/top-sharepoint-2013-features/ - Categories: SharePoint 2013 - Tags: SharePoint, SharePoint 2013 - Article Type: How To, Overview Is it worth upgrading to SharePoint 2013? We think so. Check out our top 10 new SharePoint 2013 features. Since SharePoint 2013 was released, it's been heralded as the greatest release yet from Microsoft's collaboration platform. But what's so great about it? Is it really any better than SharePoint 2010 for doing what you want it to? Are there any new features in Sharepoint 2013 that make it worth upgrading? I've listed my top 10 favorite SharePoint 2013 features and improvements. It just might be time for you to upgrade. 1. SharePoint 2013 Is Cloud Ready SharePoint 2013 is built to enable and help usher in cloud services. You can run SharePoint 2013 completely in the cloud through Office 365 and have almost all of the features of SharePoint on-premises. If you want to enable every feature of SharePoint 2013 and still stay in the cloud, you can opt for a solution where you run it on VMs in the cloud through Windows Azure or Amazon Web Services. If running in the cloud makes some sense, but you have some features that you want to stay on-premises, you can implement a hybrid architecture. Some enterprises aren’t ready to embrace the cloud just yet, even if they know that cloud services will be in their infrastructure within the next couple of years. If this describes your organization, you’ll be glad to know that the cloud isn’t being forced upon you. You can still do everything on premises in SharePoint 2013 with no help from the cloud at all if that’s what you want to do. (Video via... --- ### VM Limitations in Windows Server 2012 Hyper-V > What are the limitations of Virtual Machines (VMs) created in Windows Server 2012 Hyper-V? Read on to find out! - Published: 2013-05-10 - Modified: 2013-05-10 - URL: https://petri.com/limitations-virtual-machines-windows-server-2012-hyper-v/ - Categories: Hyper-V - Tags: Ask an Admin, virtual machine - Article Type: Overview What are the limitations of Virtual Machines (VMs) created in Windows Server 2012 Hyper-V? Read on to find out! What are the limitations of Virtual Machines (VMs) created in Windows Server 2012 Hyper-V? VMs created by Windows Server 2012 Hyper-V are much more scalable than VMs created by earlier versions of Hyper-V. They're more capable in just about every area, ranging from the number of virtual processors supported to the number of VMs per cluster.  Refer to the following bulleted list for some of the most striking differences between VMs created by Server 2012 Hyper-V and Server 2008 R2 Hyper-V (with values for the latter shown in brackets). Virtual processors per VM: 64 Logical processors in hardware: 320 Physical memory per host: 4 TB Memory per VM:   Nodes in a cluster: 64 VMs in a cluster: 8000 Active VMs: 1,024 Windows Server 2012 Hyper-V introduces dozens of other new features as well, including shared-nothing live migration, Hyper-V replica, and more scalability features in just about every dimension. Check out our interview with Microsoft's Matt McSpirit and Edwin Yuen for more information on the changes and improvements, or read Niklas Akerlund's deep dive into some of the most noteworthy new features in his article about managing virtual machines with Windows Server 2012 Hyper-V. Microsoft's Jeff Woolsey outlined some of the other enhancements during his portion of the Microsoft TechEd 2012 keynote address: "Well, today, we want to redefine performance, we want to redefine scale. So, today, with Server 2012 and Hyper-V we'll support up to 320... --- ### Virtualizing Microsoft Exchange Tips and Tricks > Considering using your virtualization infrastructure to run Exchange servers and save money? Check out these handy tips for virtualizing Exchange. - Published: 2013-05-10 - Modified: 2024-11-19 - URL: https://petri.com/virtualizing-microsoft-exchange-tips/ - Categories: Exchange Server - Tags: Virtualization - Article Type: Overview Considering using your virtualization infrastructure to run Exchange servers and save money? Check out these handy tips for virtualizing Exchange. Are you looking at reducing hardware cost and utilizing your virtualization infrastructure to run your Exchange servers? Are you still on edge about virtualizing a mailbox role or unified messaging role? Today I'll be sharing some tips for virtualizing Microsoft Exchange that I've picked up over the years – hopefully some of them may help ease your Exchange anxiety. Virtualization and Exchange are a great pair if designed correctly. If you were to go and ask a vAdmin about virtualizing Exchange, they will tell you that almost any application can be virtualized with no problem. While this is a true statement, there are certain tweaks that should be made to ensure your Exchange Servers run smoothly. I’ve been virtualizing Exchange servers since the days of running Exchange 2003 on ESX 3. 0, which at the time was not supported by Microsoft. I’m pretty confident that in those early days I was doing everything that the Microsoft support statement indicated not to do. Over the years, I’ve learn many lessons – some the hard way – on how to get the most out of running an Exchange virtual machine (VM). Tips for Virtualizing Exchange There are probably some administrators that are still concerned about performance issues with running all roles virtualized – it's a valid concerns to be sure, but if it's well designed you can have a completely virtualized Exchange environment. For those just getting their feet wet with the idea of virtualizing their Exchange servers I’ve made... --- ### The State of Windows 8 > We asked for our readers' opinions about Windows 8, and boy, you gave it to us. Check out what other IT pros thought of Win8 – for better or worse. - Published: 2013-05-09 - Modified: 2024-12-03 - URL: https://petri.com/state-of-windows-8/ - Categories: Windows 8 - Tags: Windows 8.1, Windows Blue - Article Type: Opinion We asked for our readers' opinions about Windows 8, and boy, you gave it to us. Check out what other IT pros thought – for better or worse. I recently asked readers of the Petri IT Knowledgebase email newsletter (follow link to register) to give me their feedback on Windows 8. Dozens of readers replied with emails full of feedback and input, and the consensus that emerged isn't one that Microsoft will like to hear: Windows 8 needs a makeover. Many thanks to readers who provided feedback, and I appreciate everyone who took the time to email me their thoughts. Windows 8 Redux Windows 8 has historically inspired both admiration and criticism from system administrators. Some have praised its touch-centric GUI on mobile devices, while others have focused on many of the complaints you see listed here. Late last year I authored two articles about why admins should deploy Windows 8 (and why they should not), and both received a fair amount of feedback, both pro and con. I received more than four dozen emails from readers about Windows 8, and the overwhelming majority listed the issues I've reprinted (with reader comments) below. From the minority of positive replies, reader Marvin Kuers said that "All our home users use Windows 8. It Works great for home users. " Kuers also said that he still "... uses Windows 7 on our office machines, but we have not purchased new PCs since Win8 was introduced. " And while most of the complaints listed here are focused on GUI and usability issues, we should all remember that Windows 8 -- underneath all the drama caused by a missing start button, interface... --- ### Dedicated Forest Root Domains in Active Directory > New Ask an Admin! Check out the benefits and disadvantages of using a dedicated forest root domain in your Active Directory design. - Published: 2013-05-09 - Modified: 2013-05-09 - URL: https://petri.com/dedicated-forest-root-domain-in-active-directory/ - Categories: Active Directory (AD) - Tags: Ask an Admin, Forest, Windows Server - Article Type: Overview New Ask an Admin! Check out the benefits and disadvantages of using a dedicated forest root domain in your Active Directory design. Should I include a dedicated forest root domain in my Active Directory design? Updated 6/17/2013 - 8:30am MT:  It’s long been considered best practice to create a dedicated forest root domain at the top of the Active Directory (AD) hierarchy. Often referred to as an empty root domain, a dedicated root domain doesn’t contain any groups or user accounts. In a child domain, users that belong to the Domain Admins and built-in Administrators groups cannot elevate privileges to Enterprise or Schema Administrator using standard administration tools, preventing them from obtaining unrestricted access to the forest, including the ability to make changes to the AD schema. Unlike in Windows NT, where the domain was considered to be the security boundary, in Active Directory, forests are the security boundary. This is because it has been shown that a resourceful administrator in a child domain could potentially elevate privileges to Enterprise or Schema Administrator. Complexity and politics If you decide not to use a dedicated forest root domain in your AD design you will need to select a regional or country domain to be the forest root, which some organizations prefer to avoid to prevent one domain being authoritative. Additionally, dedicated forest root domains are protected from organizational changes, potentially making restructuring the forest easier in the event of a company reorganization, takeover or merger. Using a dedicated forest root domain... --- ### Hyper-V Snapshots: What, When, and Why > What is a Hyper-V snapshot? Read this Ask an Admin for an introduction to Hyper-V snapshots and when you should consider using them. - Published: 2013-05-08 - Modified: 2013-05-08 - URL: https://petri.com/hyper-v-snapshots/ - Categories: Hyper-V - Tags: Ask an Admin, Microsoft, Windows 8, Windows Server, Windows Server 2012 - Article Type: Overview What is a Hyper-V snapshot? Read this Ask an Admin for an introduction to Hyper-V snapshots and when you should consider using them. What is a Hyper-V snapshot? Simply put, a Hyper-V snapshot allows you to capture a virtual machine as it was at that time (configuration, processor, memory, and virtual hard disk content), make changes to the virtual machine, and optionally restore the virtual machine to the previous snapshot. But let's dig a little deeper. Confusion about Snapshots The term “snapshot” is overused in the computer room. Here's how they break down. Hyper-V snapshots: Generally, this is the snapshot that people mean when discussing virtualization. SAN snapshots: to image a LUN Volume Shadow Copy Service (VSS) snapshots: to create an application consistent backup of a virtual machine, file system, and applications such as SQL Server To add to the confusion, System Center – Virtual Machine Manager has historically referred to a Hyper-V snapshot as a "checkpoint". Meanwhile Hyper-V uses "checkpoint" as a verb. For example, "one will checkpoint a virtual machine to create a Hyper-V snapshot. " Why use Snapshots? Snapshots are a useful tool because they can allow administrators to send virtual machines “back in time. " We can undo changes to those virtual machines since the snapshot was taken. This can be useful in many scenarios. You want to perform a complicated upgrade to an application in a virtual machine and want a quick way to roll back the changes if something goes wrong. The company is building a demo or class lab and a quick way is needed to reset the virtual machines to... --- ### Create Exchange 2010 Server Reports with PowerShell > Moving on from mailboxes, next we tackle server reports! Learn to create Exchange 2010 server reports using PowerShell with this handy how-to article. - Published: 2013-05-08 - Modified: 2024-09-04 - URL: https://petri.com/create-exchange-2010-server-reports-powershell/ - Categories: Exchange Server - Tags: Advanced, PowerShell - Article Type: How To Moving on from mailboxes, next we tackle server reports! Learn to create Exchange 2010 server reports using PowerShell with this how-to article. My recent articles have focused on reporting on mailbox usage in Microsoft Exchange 2010 with PowerShell (see: Create Exchange 2010 Mailbox Size Reports with PowerShell, as well as creating individual inbox reports and multiple inbox reports). But you might also want to prepare reports on the Exchange 2010 server itself. I believe there are several items that merit your attention. Some of these areas will require the Exchange Management Console. Others can be done from any administrator desktop with RPC and/or WMI access. But they all can be accomplished using PowerShell. Service Reports On one hand, getting the status of Exchange-related services is very easy and doesn’t require anything other than a PowerShell prompt, admin credentials, and RPC connectivity to the Exchange server. PS C:> $ex = "chi-ex01" PS C:> get-service -DisplayName "Microsoft Exchange*" -ComputerName $ex I defined a variable for my Exchange server to save some typing. The result of this command can be seen below. At a glance it is easy to see which services stopped. The downside is that we can’t tell which services are disabled, which is why they aren’t running. But this is fast and it may be all you need. Otherwise, we’ll turn to WMI. PS C:> Get-WmiObject win32_service -filter "displayname Like 'Microsoft Exchange%'" -ComputerName $ex | Sort State | Select name,StartMode,State Now, as you can see in Figure 2, I can identify potential problem services, i. e. those that are configured to auto start but are not running. [adkit zone="freestyle" limit="1"... --- ### Check a Domain Controller Configuration with the DCDiag Tool > Learn to wield the dcidiag.exe tool like a pro! Discover how to use check a DC configuration with the DCDiag tool in this Ask an Admin column. - Published: 2013-05-07 - Modified: 2024-09-24 - URL: https://petri.com/check-domain-controller-configuration-with-dcdiag/ - Categories: Active Directory (AD) - Tags: Ask an Adm, DC, dcdiag, Domain Controller, Windows Server 2012 - Article Type: How To Learn to wield the dcidiag.exe tool like a pro! Discover how to use check a DC configuration with the DCDiag tool in this Ask an Admin column. How do I use the DCDiag tool to check a domain controller configuration? After promoting a server to a domain controller (DC), or when you're experiencing some problems with Active Directory – and suspecting a DC configuration issue – the dcdiag. exe command-line tool can be extremely useful. There are 27 basic tests, including checking registration of DNS records, name resolution, AD replication, and Flexible Single Master Operations (FSMO) roles. If your DC fails any of the tests, it likely indicates a problem. To run the tool locally on a Windows Server 2012 DC, open an elevated PowerShell prompt, type dcdiag, and press ENTER. Useful DCDiag switches To run DCDiag against a remote DC, specify the /s: switch and replace with the name of your DC. If necessary, you can also specify a username and password when executing dcdiag against the remote DC. ​/s: /u: /p: Typing an asterisk (*) instead of your password in the command above will generate an additional prompt where you can enter the password for the specified user separately and the text will be hidden. The /c switch initiates more thorough testing, most notably more comprehensive DNS testing. Before running dcdiag, especially if the DNS test results are of particular interest, you might want to flush the DC’s local DNS cache to ensure that any results the tool returns are resolved from a DNS server. The cache can be cleared by running ipconfig /flushdns. The /v switch gives verbose output... --- ### Choosing Hyper-V Storage: Virtual Hard Disks > Looking at Hyper-V storage options? Discover the pros and cons of business friendly, cloud-enabled, virtual hard disks. - Published: 2013-05-07 - Modified: 2024-12-03 - URL: https://petri.com/choosing-hyper-v-storage-virtual-hard-disks-2/ - Categories: Hyper-V - Tags: storage, vhd, VHDX, virtual hard disk - Article Type: Overview Looking at Hyper-V storage options? Discover the pros and cons of business friendly, cloud-enabled, virtual hard disks. We recently looked at the ways that Hyper-V virtual machines could use physical disks, and we've discussed the benefits and flaws of these kinds of storage.   This week we are going to look at the modern, business friendly, cloud-enabled, virtual hard disk alternative. Flaws of Physical Disks The principal flaw is derived from the fact that a physical disk, such as a pass-through disk, is not abstracted from the physical LUN that enables it. The pass-through disk requires exclusive use of the LUN. A physical storage LUN cannot be moved using Live Storage Migration or Shared-Nothing Live Migration. We cannot backup a virtual machine from the host using a Hyper-V-ready VSS snapshot; instead, we need to install expensive (both in effort and complexity) backup agents into the guest OS to back up the physical disks. Granted, these are all technical reasons – which the board of directors and shareholders don’t care about. However, they do care about the following factors: Being more flexible and responsive to change: Whether deployed by IT or through a cloud (self-service), services that run on virtual machines are slow to deploy if a layer of physical infrastructure configuration (by humans) is injected into the process. This is a necessary step for physical storage deployment to virtual machines. Reducing costs: There is more to a business’s cost calculations than the cost of purchase. How much does something cost to deploy or configure? What is the cost of change? What are the costs of... --- ### Why Should I Use Windows 8 Client Hyper-V? > Discover the properties of Windows 8 Client Hyper-V and the reasons why you should use it in this new Ask an Admin column. - Published: 2013-05-06 - Modified: 2024-09-24 - URL: https://petri.com/reasons-for-windows-8-client-hyper-v/ - Categories: Windows 8 - Tags: Ask an Admin, Hyper-V, Virtualization, Windows 8 - Article Type: Overview Discover the properties of Windows 8 Client Hyper-V and the reasons why you should use it in this new Ask an Admin column. What is Client Hyper-V? After a lot of requests, Microsoft decided to create a client version of their hypervisor. Client Hyper-V is the same Hyper-V with the same architecture that you find on Windows Server 2012, minus a few server features such as: clustering live migration virtual fiber channel adapters RemoteFX for graphics acceleration Client Hyper-V has a few tricks of its own that are not found in the Server version: Power state support: Close the lid of a laptop to put it to sleep Seamless Wi-Fi support: You can “connect” a virtual switch to a Wi-Fi NIC without doing black magic; the “black magic” is done for you. The virtual machines are the exact same format as those on Windows Server 2012 Hyper-V. You can power down the virtual machines, move the files, and Import/Register the virtual machines to get them running on your PC or on a server. Why Would Microsoft Give Us Free Client Virtualization? With Hyper-V being just a couple of mouse clicks and a reboot away, this is Microsoft’s way of introducing their hypervisor to a whole new audience. Fear, uncertainty, and doubt can be dealt with in a hands-on fashion, instead of from a stage or a webcast. What Are the Uses of Windows 8 Client Hyper-V? There a number of possible uses, including: Split-user administration: Log into your Windows 8 PC using non-administrator credentials to surf the net and use email, and log into a virtual machine using administrator credentials... --- ### Create a Minecraft Server Using Windows Azure IaaS > Wondering what to do with the new Windows Azure IaaS service? Discover how to spool up a Minecraft server with Azure IaaS in this tutorial with John Savill. - Published: 2013-05-06 - Modified: 2024-11-19 - URL: https://petri.com/create-minecraft-server-windows-azure-iaas/ - Categories: Microsoft Azure - Tags: IaaS, Minecraft, Windows Azure, Windows Azure Infrastructure Services - Article Type: How To Wondering what to do with the new Windows Azure IaaS service? Discover how to spool up a Minecraft server with Azure IaaS in this tutorial with John Savill. Microsoft officially launched their Windows Azure infrastructure as a service (IaaS) offering a few weeks ago -- officially dubbed Windows Azure Infrastructure Services -- a move which now puts them squarely in competition with Amazon Web Services for cloud IaaS market dominance. Amazon is clearly the leader in this area, but Microsoft is entering the market with some aggressive pricing and an impressive set of features. Azure IaaS and Minecraft: Free-Form Building in the Cloud Some interesting examples of Windows Azure IaaS in operation have started to appear already, but perhaps none are as entertaining as watching IT expert and SavillTech founder John Savill show viewers how to spin up a multiplayer Minecraft server using Azure IaaS. I've embedded John's full YouTube video demonstrating how to do this process a bit farther down in this post, but here's an abbreviated version of what John does in the video: Create a . Create a new Windows Server 2012 datacenter edition virtual machine using Azure's gallery of VM templates. Give the new VM a unique DNS name, finish provisioning it, and add a 100GB disk. Connect to your new VM using remote desktop protocol (RDP). Azure provides a properly-configured RDP file for your VM. In the Windows Server 2012 datacenter edition VM, install the 64-bit version of Java. Download and install the Minecraft server. Setup and configure the Minecraft server; make sure server is accessible through firewall. Savill was willing to answer a few questions about his... --- ### Microsoft Exchange Storage Options: SATA Disks > As sysadmins seek to lessen deployment costs, many are deploying Exchange databases on SATA drives. Read on to discover why SATA storage may work for you. - Published: 2013-05-03 - Modified: 2013-05-03 - URL: https://petri.com/microsoft-exchange-storage-options-sata-disks/ - Categories: Exchange Server - Tags: Editor's Pick, IOPS, SATA, storage - Article Type: Overview As sysadmins seek to lessen deployment costs, many are deploying Exchange databases on SATA drives. Read on to discover why SATA storage may work for you. Microsoft Exchange servers have traditionally been an application that is disk I/O operations (IOPS) intensive due to its non-sequential random I/O. To put it in English, it’s an application that read and writes your data randomly across your disk, resulting in higher IOPS than a sequential I/O, which read and writes your data in continuous blocks. When Exchange 2010 was released, improvements over Microsoft Exchange 2007 reduced IOPS by up to 70%. It got even better with the release of Exchange Server 2013, which then saw a further reduction of up to 50% and optimization for multiple databases per volume. The reduction in IOPS couldn’t come at a better time. As IT budgets get crunched and IT administrators are looking at ways to lessen deployment costs, these reductions allow admins to consider something that they would’ve never done before: deploy Exchange database on lower-cost SATA drives. Before Exchange 2010, just the thought of SATA drives would make any Exchange admin cringe, but now it's a different a story. Microsoft redesigned Exchange databases to be more continuous by way of increasing the database page sizes; databases are a per-mailbox layout rather than per database layout, and the ESE engine was over hauled to be more efficient. The increase in efficiency can utilize the slower lower-cost disk, providing a cost savings as the need for larger mailboxes increases the need for more overall storage. This article will not go into deep depths about disk performance, platters, spindles, rotational speed,... --- ### Changing the IP Address of a Domain Controller > As part of your IT infrastructure, DCs should be assigned an IP address. Learn to change the IP address of a domain controller in this edition of Ask an Admin. - Published: 2013-05-02 - Modified: 2024-09-24 - URL: https://petri.com/change-ip-address-domain-controller/ - Categories: Active Directory (AD) - Tags: Ask the Admin, DC, Windows Server 2012 - Article Type: How To As part of your IT infrastructure, DCs should be assigned an IP address. Learn to change the IP address of a domain controller in this edition of Ask an Admin. How do I change a domain controller's IP address? As a critical part of your IT infrastructure, domain controllers (DC) should be assigned a static IP address so that they can be reliably discovered across the network. Sometimes it’s necessary to change the IP address assigned to a DC, for instance when there’s a change of IP addressing scheme on the local subnet, and this process can cause some concern for administrators due to the critical nature of DCs. However, assuming the DC is not hosting any other roles, changing the IP address shouldn’t pose any serious difficulties. Change the IP address In this example, I’m going to change the IP address of a Windows Server 2012 DC. The server is additionally configured as the domain’s only DNS server. Open a command prompt by right-clicking the PowerShell icon on the desktop Task Bar and select Run as Administrator. Run DCDIAG and make sure the DC passes all the tests. If any problems are identified, they should be resolved before proceeding any further. Right-click the network icon in the bottom right of the Task Bar and select Open Network and Sharing Center from the menu. In the Network and Sharing Center, click Change adapter settings. On the Network Connections screen, right-click the network adapter for which you want to change the IP address and select Properties from the menu. In the Ethernet Properties dialog box, scroll down the list and double-click Internet Protocol Version 4 (TCP/IPv4). In the... --- ### Guest Post: The Future of Virtualization: The Software-Defined Datacenter > What's next for virtualization? Discover what's new in this article by VMware's Sr. Cloud Strategist Neela Jacques. - Published: 2013-05-02 - Modified: 2024-09-04 - URL: https://petri.com/virtualizationsoftware-defined-datacenter/ - Categories: VMware - Tags: Guest Post, Virtualization - Article Type: Opinion What's next for virtualization? Discover what's new in this guest post by VMware's Sr. Cloud Strategist Neela Jacques. (Editor’s Note: This article is a guest post, which is unpaid and non-sponsored content written by an independent contributor. The views and opinions expressed here do not necessarily represent the views of the Petri IT Knowledgebase. ) Customers and partners routinely ask: “What’s next? What follows as the industry approaches 100 percent virtualization of x86 systems? ” The truth is virtualization of compute and memory at the cluster level is only the tip of the iceberg. The next step is to extend the benefits of virtualization to every domain of the datacenter – compute, storage, networking, availability, and security. The future of virtualization is the software-defined datacenter where infrastructure is virtualized and delivered as a service, and the datacenter is automated by software helping IT be more flexible, agile, and responsive to the business. IT Challenges The problem almost every IT organization faces is that the IT infrastructure is far too complex and rigid. Equipment and associated teams are siloed. It takes too long -- and it is too expensive -- to deploy a new service or scale an existing one. For many customers, business demands require IT to scale the size of an existing environment while maintaining the same level of resources. Virtualization has substantially reduced complexity and increased IT efficiency, but only a portion of the overall IT stack has benefited from those efficiencies. To illustrate, let’s examine the deployment of a new mobile application in a virtualized environment. First, deploy a new virtual machine (VM). In... --- ### Converting a Hyper-V Pass-Through Disk to a VHDX > Now that you know the merits of VHDX, let's dig deeper. Discover how to convert a Hyper-V pass-through disk to VHDX in this helpful Q&A. - Published: 2013-05-01 - Modified: 2024-09-04 - URL: https://petri.com/convert-hyper-v-pass-through-disk-to-a-vhdx/ - Categories: Hyper-V - Tags: Ask an Admin, hyper-v manager, VHDX - Article Type: How To Now that you know the merits of VHDX, let's dig deeper. Discover how to convert a Hyper-V pass-through disk to VHDX in this helpful Q&A. How do I convert a Hyper-V pass-through disk to a VHDX disk? After learning about the merits of VHDX format virtual hard disks, you might decide to convert any physical pass-through disks to VHDX on your Windows Server 2012 hosts. Luckily, Microsoft provides us with a way to do this in Hyper-V Manager. The first step is the tricky one: The virtual machine must not use the pass-through disk so that you can mount the disk exclusively on a machine that has the Hyper-V Manager installed. This will require a maintenance window. Next, open Disk Management on the Hyper-V Manager machine and note the disk number. In our example below it is Disk 3. Open up Hyper-V Manager, and select New >Hard Disk under Actions. This opens the New Virtual Hard Disk Wizard. Select the VHDX format, choose the type (Fixed Size or Dynamically Expanding), and choose the name and location of the new VHDX file. The crucial step in the process comes in the Configure Disk screen. Choose Copy the Contents of the Specified Physical Disk, and select the disk that you identified in Disk Management (again, in this example, it's Disk 3). On completion of the wizard, a new VHDX file will be created. You can then edit the properties of the machine and replace the pass-through disk with the VHDX file. Remember to remove the disk from Failover Cluster Manager if the virtual machine was highly available. Converting a Hyper-V Pass-Through Disk Using PowerShell... --- ### Managing Virtual Machines in Windows Server 2012 Hyper-V > Learn about the new features of Windows Server 2012 Hyper-V, how to manage VMs, and from which of its new features you can most benefit. - Published: 2013-05-01 - Modified: 2024-09-04 - URL: https://petri.com/manage-virtual-machines-in-windows-server-2012-hyper-v/ - Categories: Hyper-V - Tags: virtual machine, VM, Windows Server 2012 - Article Type: How To Go VM or go home! Learn about the new features of Windows Server 2012 Hyper-V, how to manage VMs, and from which of its new features you can most benefit. In this article I will dive a bit deeper into the new features of Windows Server 2012 Hyper-V, how you can manage virtual machines (VMs), and from which of its new features you can most benefit. Windows Server 2012 Hyper-V Exclusive Features My Petri IT Knowledgebase colleague Jeff Hicks has done a multi-part series Windows 8 client Hyper-V, including how to install and configure Windows 8 Client Hyper-V (part one) and how to manage client Hyper-V with PowerShell (part five). Managing VMs on the server side in Windows Server 2012 Hyper-V isn’t that different, although there are some enterprise virtualization features that are exclusive to Windows Server 2012. The following features are only available in the Windows Server 2012 Hyper-V role and also in the free Hyper-V 2012 Server. Hyper-V Replica Hyper-V network virtualization Virtual Machine Live Migration Shared-Nothing Live Migration SR-IOV Virtual HBA Failover Clustering Remote FX Parameters and Configuring VMs When it comes to configuring each virtual machine, there are many parameters that can be set. Configuring RAM with Dynamic Memory for VMs has been rewritten and improved in Server 2012 Hyper-V. In this version we use something called Startup Memory, which is memory that will be allocated by the virtual machine before the integration tool starts. Once that process completes, minimum and maximum memory will be utilized. For example, when a Windows Server with SQL starts, it will allocate what it has configured and what is available. If there is only a minimum memory... --- ### Performing an Offline Domain Join in Active Directory > Need to join a client to an AD domain that isn't connected to a domain controller? Learn how to perform an offline domain join in AD in this tutorial. - Published: 2013-04-30 - Modified: 2024-09-04 - URL: https://petri.com/offline-domain-join-active-directory/ - Categories: Active Directory (AD) - Article Type: How To Need to join a client to an AD domain that isn't connected to a domain controller? Learn how to perform an offline domain join in AD in this tutorial. How do you perform an offline domain join in Active Directory? Microsoft introduced the offline domain join tool (Djoin. exe) in Windows 7 and Server 2008 R2, allowing system administrators to join Windows server or client operating systems to an Active Directory (AD) domain when there’s no connectivity to a domain controller (DC). There are a couple of scenarios where this can come in handy. First, domain join operations don’t always work reliably over wide-area network connections, even when there is connectivity to a remote domain controller. Second, offline domain joins can be performed as part of an unattended Windows installation. You should note that use of the offline domain tool is not supported on VMs that use differencing disks generated from a master Windows image. There are two steps to the offline domain join process: provisioning a computer account in AD (djoin /provision) and then joining the desired computer to AD (djoin /requestODJ). To provision a computer account in AD, you must have connectivity to a DC. The Djoin. exe tool can only be run on Windows 7 and Server 2008 R2 (or later). Provision a computer account in AD Logon to any Windows 7 or Windows Server 2008 R2 (or later) computer that is a member of the domain. The account you logon with must have permission to add workstations to the domain -- for instance, a Domain Administrator. Open a command prompt and run the following command: djoin /provision /domain “AD” /machine “WIN8” /savefile win8blob. txt Replace... --- ### Create Exchange 2010 Multiple Mailbox Reports with PowerShell > With PowerShell, what you can do for one item you can do for 1,000. Learn to create multiple Exchange 2010 mailbox reports using PowerShell. - Published: 2013-04-30 - Modified: 2024-09-04 - URL: https://petri.com/exchange-mailbox-report-powershell-multiple-inboxes/ - Categories: Exchange Server - Tags: Advanced, cmdlet, Exchange 2010, mailboxes, PowerShell - Article Type: How To The best thing about PowerShell is that what you can do for one item you can do for 1,000. Learn to create multiple Exchange 2010 mailbox reports using PowerShell. In my last article, "Create Exchange 2010 Individual Inbox Reports with PowerShell," we looked at using the Get-MailboxFolderStatistics cmdlet to report on details of a single mailbox. If you missed that article I suggest you read it first otherwise you won’t understand the following examples. I always tell people the best thing about PowerShell is that if you can do something for a single item, you should be able to do it for 10, 100, or 1,000. So let's go ahead and do the same on a bigger scale, shall we? Exchange Mailbox Reporting: Scaling Out Now that we have a framework from the previous article, it's time to scale out. All I need to do is get a collection of mailboxes. I can either get all mailboxes or limit myself to a particular mailbox database. I’ll get everything and first check out overall total usage. Because of the way Exchange handles pipeline processing, I recommend first getting all of the mailboxes you want to report on. In my case, all my users are under one OU, so this helps filter out system mailboxes. I’ll save the mailboxes to a variable. $mb = Get-Mailbox-OrganizationalUnit "OU=Employees,DC=globomantics,dc=local" Next, I can pipe the collection of mailboxes to ForEach-Object and get the top level information for each. $data =$mb | foreach { get-mailboxfolderstatistics $_ | Select -first 1 -property @{Name="User";Expression={(Split-Path $_. Identity -Parent)}}, @{Name="Folder";Expression={Split-Path $_. Identity -Leaf}}, @{Name="Items";Expression={$_. ItemsinFolderandSubFolders}}, @{Name="Size";Expression={$_. FolderandSubFolderSize. tobytes}} } If you recall from the previous article, Get-MailboxFolderStatistics is returning a collection of... --- ### How to Convert a VHD File into VHDX > Stumped as to how to convert a Hyper-V VHD file into VHDX format? Learn how using both Hyper-V Manager and PowerShell in this article. - Published: 2013-04-29 - Modified: 2024-09-04 - URL: https://petri.com/convert-vhd-file-into-vhdx-file/ - Categories: Hyper-V - Tags: hyper-v manager, PowerShell, vhd, VHDX, virtual hard disk - Article Type: How To Stumped as to how to convert a Hyper-V VHD file into VHDX format? Learn how using both Hyper-V Manager and PowerShell. How do you convert a VHD file into a VHDX file? VHDX is the new and default format of virtual hard disk (VDH) that is provided by Windows 8 Client Hyper-V and Windows Server 2012 Hyper-V. There are many reasons to favor VHDX files over VHD files, including: scalability to 64 TB instead of 2040 GB better performance by offering 4 K sector matching protection against data corruption during power outages New virtual machines are probably being created using this new format. But don’t worry, you can convert existing virtual hard disks of the VHD format that are in use by virtual machines. Please note that VHDX files cannot be used on versions of Hyper-V prior to Windows 8. Most people won’t want to go back to older versions once they’ve upgraded, but you can convert VHDX files back into VHD. Also note that the conversion is done offline. Maybe it would make sense to use Live Storage Migration to move the virtual machine to some very fast storage. This will minimize the time required to read the VHD and create the VHDX. The two basic methods you can use to convert a VHD into a VHDX file are Hyper-V Manager and PowerShell. WARNING Do not attempt to convert a VHD to a VHDX if any of the following are true: You have created a snapshot of the virtual machine You are replicating the VHD using Hyper-V Replica The VHD is the parent to one or more... --- ### Installing Active Directory Domain Services Role on Windows Server 2012 > Active Directory really does keep getting better with age! Learn to install the AD domain services role on Windows Server 2012 in this handy how-to. - Published: 2013-04-29 - Modified: 2024-09-24 - URL: https://petri.com/install-active-directory-domain-services-role-windows-server-2012/ - Categories: Active Directory (AD) - Tags: Active Directory, AD, Domain Services, DS, PowerShell, Roles, Windows Server 2012 - Article Type: How To Active Directory really does keep getting better with age! Learn to install the AD domain services role on Windows Server 2012 in this handy how-to. Active Directory (AD) has been a staple of Windows-based networks since Microsoft integrated it into Windows 2000 Server. AD is based on the Lightweight Directory Access Protocol (LDAP), and it provides authentication, authorization, and accounting capabilities on a network. It’s also a repository for all sorts of key information: Computer and user accounts, security and distribution groups, and even configuration information of products such as Microsoft Exchange all live within Active Directory. Put simply, if you’re an organization with more than just a few users and you use Windows, you’ll want AD. In this article, I'll walk you though installing the Active Directory domain services role on Windows Server 2012. I'll even show you how to install AD domain services within PowerShell with a simple one-liner. Active Directory, Forests, and Trees Active Directory is grouped into forests and trees. This structure makes perfect sense and is analogous to a real forest with real trees. When AD is first configured, a domain tree is created. This also creates the forest by default. At this point it’s a forest of one tree only, but it’s still a forest. This first domain tree is appropriately known as the Forest Root Domain. The Forest and the Forest Root Domain share the same name. The workhorses of AD are Domain Controllers (DC). These are the servers in which the Active Directory database resides. DCs come in two main flavors: a standard Domain Controller or a Global Catalog Domain Controller. A standard DC... --- ### Create Exchange 2010 Individual Inbox Reports with PowerShell > Need to create Exchange 2010 individual mail reports? Learn how using PowerShell cmdlets to report on details of a single mailbox with this awesome article. - Published: 2013-04-26 - Modified: 2024-09-04 - URL: https://petri.com/create-exchange-2010-individual-inbox-reports-powershell/ - Categories: Exchange Server - Tags: Advanced, PowerShell - Article Type: How To Need to create Exchange 2010 individual mail reports? Learn how using PowerShell cmdlets to report on details of a single mailbox with this awesome article. In a previous article I demonstrated how to create Exchange 2010 Mailbox size reports with PowerShell. In that article we looked at usage data from the top level, such as a mailbox database. In this article, we’ll drill down a bit further into the mailbox itself and look at using the Get-MailboxFolderStatistics cmdlet to report on details of a single mailbox. As before, I’m going to use the Exchange 2010 PowerShell Management console installed on my Windows 8 computer. Using the local management tools is really the best choice. As you might expect, Microsoft Exchange is a complex product when it comes to PowerShell, and using traditional PowerShell remoting is not as simple as you might think. Initializing the Exchange environment for a PowerShell session requires a lot of moving parts, which is why I find it easiest to install the management tools locally – I think you’ll have less opportunities for failure. MailboxFolder Statistics The cmdlet we’re going to be using is called Get-MailboxFolderStatistics. Let’s see how it works with my mailbox on my test Exchange 2010 server. By the way, the Exchange Information Store service must be running for these commands to succeed so if you try the commands and get no results, check the service. C:> get-mailboxfolderstatistics jeffhicks You can use either the mailbox name or alias. You can also use Get-Mailbox and pipe it to Get-MailboxFolderStatistics. As you see below in Figure 1, the cmdlet generates a lot of information. What you... --- ### Promote a Member Server to Domain Controller in Windows Server 2012 > Promoting a server to domain controller is a common task for Active Directory admins. Learn how using both the GUI and PowerShell in this tutorial. - Published: 2013-04-25 - Modified: 2024-09-24 - URL: https://petri.com/promote-member-server-to-domain-controller-windows-server-2012/ - Categories: Active Directory (AD) - Tags: AD, ADPrep, DC, Domain Controller, Domain Services, Install-ADDSForest, Windows Server 2012 - Article Type: How To Promoting a server to domain controller is a common task for Active Directory admins. Learn how using both the GUI and PowerShell in this tutorial. Configuring Active Directory on Windows Server 2012 is a process worthy of patience and attention to detail. It involves installing the Active Directory Domain Services role, defining a new AD forest, creating the first (or root) domain in the forest, configuring DNS, and promoting a member server to a domain controller. Whew, that seems like a bunch of work! Never fear, Petri is here! A previous Petri post details how to get the Active Directory Domain Services role installed and running on a Windows Server 2012 machine. This article will walk you through the remainder of the process. Installing AD on Windows Server 2012 and Adding a Forest Before going any further, it’s important to verify that the member server to be promoted has the Active Directory Domain Services role installed. It also should have a static IP configured. A dynamically configured IP on a domain controller can produce incredibly unpredictable results. Login to the server where the Active Directory Domain Services role has been installed using an account that’s a member of the local administrator’s group. Open Server Manager. Click the Notifications icon. It looks like a flag and is found next to the Manage menu. Click Promote this server to a domain controller. This will fire up the Active Directory Domain Services Configuration Wizard. Select the radio button to Add a new forest. Enter the name for the new root domain. Remember, this will also become the name of the forest. For this example, I’ll... --- ### Install Active Directory on Windows Server 2012 with Server Manager > Want to know more about installing Active Directory on Windows Server 2012 with Server Manager? Learn to install AD DS components and configure a new forest. - Published: 2013-04-25 - Modified: 2024-09-24 - URL: https://petri.com/install-active-directory-windows-server-2012-manager/ - Categories: Active Directory (AD) - Tags: Ask the Admin, Editor's Pick, Windows Server 2012 - Article Type: How To Want to know more about installing Active Directory on Windows Server 2012 with Server Manager? Learn to install AD DS components and configure a new forest. How do I install Active Directory on Windows Server 2012 using Server Manager? If you’re new to Windows Server 2012, or have simply avoided using the graphical Server Manager tool that was introduced in Windows Server 2008, it might not be immediately obvious how to set up a new Active Directory (AD) domain. There are two stages to this process: installing the Active Directory Domain Services (AD DS) components and then configuring a new domain. Install the AD DS components: Start Server Manager from the Start screen or desktop Task Bar. On the Server Manager Dashboard, select Manage in the top right corner and then Add Roles and Features from the menu. Click Next in the Add Roles and Features Wizard. On the Installation Type screen, select Role-based or Feature-based installation and click Next. On the Server Selection screen, chose a server to promote to a domain controller from the list and click Next. On the Server Roles screen, check Active Directory Domain Services. Click Add Features in the pop-up dialog box and click Next on the Server Roles screen. On the Features screen click Next to accept the default AD feature list. Read the notes on the AD DS screen and click Next. Click Install on the Confirmation screen and Close when the installation has completed. Once the AD DS components are installed, you can use Server Manager to promote the local server to a domain controller. If you look again in the top right corner... --- ### Deploy Update Rollup 2 for Virtual Machine Manager 2012 SP1 > Check out our advice on how to deal with Microsoft's most recent update rollup for System Center Virtual Machine Manager 2012 Service Pack 1. - Published: 2013-04-24 - Modified: 2013-04-24 - URL: https://petri.com/deploy-update-rollup-2-virtual-machine-manager-2012-service-pack-1/ - Categories: Windows Server - Tags: Microsoft System Center 2012, Opinion, System Center Virtual Machine Manager - Article Type: How To Check out our advice on how to deal with Microsoft's most recent update rollup for System Center Virtual Machine Manager 2012 Service Pack 1. An update rollup is a bundle of bug fixes, and Microsoft appears to be releasing them on a regular basis for System Center. You can download update rollups from the Microsoft Update Catalog, or you can configure WSUS or the Configuration Manager to download/deploy the updates on your behalf. Usually the process of deploying an update rollup to System Center is very simple: The package is downloaded and installed. However, it appears that there was an issue with the previously released Update Rollup 1 (UR1) for System Center 2012 SP1 – Virtual Machine Manager (VMM). According to Carmen Summers (System Center, CDM Sustained Engineering Lead): "When Update Rollup 2 is applied to a system which is running System Center 2012 SP1 Virtual Machine Manager with UR1, the installer does not patch files correctly. This is caused by the way UR 1 was packaged. " As a result of this packaging issue with UR1 for VMM 2012 SP1 (KB2792926), Microsoft is giving us the following advice so we can correctly install the recently released UR2 for VMM: - If you download Update Rollup 2 package for System Center 2012 SP1 Virtual Machine Manager from Microsoft Update Catalog and install Update Rollup 2 without un-installing Update Rollup 1,  you should un-install Update Rollup 2 package for Virtual Machine Manager and then un-install Update Rollup 1 for System Center 2012 SP1 - Virtual Machine Manager via control panel.   - If you are using WSUS to update System Center 2012 SP1 - Virtual Machine Manager and... --- ### How to Verify Domain Ownership in Office 365 > One of the keys to successful federation is properly adding and verifying the domain. Learn to verify domain ownership in Office 365 with this handy article. - Published: 2013-04-24 - Modified: 2024-09-24 - URL: https://petri.com/office-365-verify-domain-ownership/ - Categories: Microsoft 365 - Tags: Cloud, cloud computing, Office 365 - Article Type: How To One of the keys to successful federation is properly adding and verifying the domain. Learn to verify domain ownership in Office 365 with this handy article. In previous articles, I’ve dove deep into the process of integrating local Active Directory with Microsoft’s cloud-based Office 365 services. This process, known as federating, provides considerable advantages including local one-stop user management and single sign-on capability. As you can imagine, these are worthy goals of many IT admins embarking on Office 365 implementations. Associate a Registered Domain Name with an Office 365 Account One of the key steps on the path to successful federation is properly adding and verifying the domain to be federated into Office 365. This process both associates the external domain name to federate with the Office 365 account and proves to Microsoft that we are the owner of the domain and thus have the legal right to do what we’re trying to do. Bad things would happen if Microsoft allowed people to federate domains they didn’t own. Possibly humorous things, but bad things nonetheless. To associate a registered domain name with an Office 365 account, follow these steps. Open Internet Explorer or your favorite web browser. Navigate to the Office 365 Admin Center. Login with a Microsoft Online Services ID with administrative rights to Office 365. From the dashboard, click Domains. Click Add a domain. Click Start step 1. Type the domain name to federate. This is the same one used as the UPN suffix for user accounts in Active Directory. In this example it’s awssol. com. Click Next. Drop down the list of step-by-step instructions and select General instructions. Scroll down and find the destination or points... --- ### How Reader Feedback Improves the Petri IT Knowledgebase > We asked readers for feedback, and boy, did you deliver. Read on to see some survey results and to welcome a few new authors to the Petri family. - Published: 2013-04-23 - Modified: 2024-09-04 - URL: https://petri.com/reader-feedback-petri-it-knowledgebase/ - Categories: Windows Server - Tags: Aidan Finn, Jeff James, Niklas Akerlund, Russell Smith - Article Type: Overview We asked readers for feedback, and boy, did you deliver. Read on to see some survey results and to welcome a few new authors to the Petri family. Not long ago we asked Petri IT Knowledgebase readers to provide us feedback on what you liked (and didn't like) about the content we offer. Nearly 700 readers responded, and all of that excellent feedback helped give us insight into what type of content you'd like to see us publish. Here are some of the more noteworthy bits of feedback that we received: 48% of respondents visit our site for the articles, while 49% of you drop by for the articles and our forums More than 88% are using Microsoft products and services, while 46% are using VMware offerings* (*Noteworthy because VMware primarily makes only virtualization products and services) A whopping 87% of respondents voted our how-to articles as the most popular content type Coverage of Windows Server products was voted the favorite topic area (70%) by readers, followed closely by Active Directory (65%), virtualization (62%), and networking (58%) topics The Petri IT Knowledgebase is known for our robust assortment of Windows Server-related content, and our survey results clearly indicate that readers feel the same way. Here's some of the data from that last bullet-point in visual form: So based on the results of our reader survey, as well as all of the feedback we've received over the months via email, Facebook, Twitter, and our other social media channels, I'm pleased to announce some exciting new changes and additions we'll be making to the site. Introducing Aidan Finn, Russell Smith, and Niklas Akerlund We heard readers loud... --- ### Create a SharePoint 2013 Farm Configuration with PowerShell > Installing SharePoint 2013 can be easy, but there are still a few “gotchas." Avoid those and learn to create a Sharepoint Farm Configuration using PowerShell. - Published: 2013-04-23 - Modified: 2024-09-04 - URL: https://petri.com/create-sharepoint-2013-farm-configuration-powershell/ - Categories: PowerShell - Tags: SharePoint - Article Type: How To Installing SharePoint 2013 can be easy, but there are still a few “gotchas." Avoid those and learn to create a Sharepoint Farm Configuration using PowerShell. Installing SharePoint 2013 can be a relatively simple process, but there are a few “gotchas” waiting for the uninitiated. I"ll focus on one of these gotchas in this article, which describes the process of creating the SharePoint 2013 farm creation using PowerShell. The farm configuration is typically performed right after installation of the first SharePoint server in a farm. In fact, by default the farm configuration wizard will kick off with the last screen of the SharePoint 2013 Server Installation Wizard. PowerShell vs the Farm Configuration Wizard Reasons to avoid using the built-in SharePoint Products Configuration Wizard: The Farm Configuration Wizard makes assumptions about the service application that you want installed. It makes assumptions about how you want your service applications configured. It auto-generates the database names for content databases and service application databases, which will include long and hard-to-read GUIDs for the web and service applications. Reasons to use PowerShell to perform the SharePoint configuration: Taking control over the details of the SharePoint Farm Configuration with PowerShell allows us to have only the service applications we want. Service applications will be configured in just the way we want them. Databases are named during the creation by the script, so that naming conventions are adhered to and database names are consistent and easy to read. Prerequisites This article starts from the point right after you’ve performed the SharePoint 2013 Server installation. Since you should already be installed and ready to configure the farm,... --- ### Choosing Hyper-V Storage: Physical Disks > Learn about storage and physical disks for Hyper-V virtual machines with Microsoft MVP and Hyper-V expert Aidan Finn. - Published: 2013-04-22 - Modified: 2024-09-04 - URL: https://petri.com/choosing-hyper-v-storage-physical-disks/ - Categories: Hyper-V - Tags: LUN, physical disks, SAN, virtual storage, Windows Server 2012 - Article Type: Overview Learn about storage and physical disks for Hyper-V virtual machines with Microsoft MVP and Hyper-V expert Aidan Finn. This subject has become a talking point recently because of a recent incorrect KB article that was published by Microsoft. We will talk you through the possible solutions you can use for virtual machine storage in this series of posts. There are several kinds of disk that you can present to a virtual machine. Some are physical volumes. These types can offer support for legacy management mechanisms, but they cannot offer the flexibility benefits that we associate with virtualization. Others are virtual solutions that are designed to offer flexibility and enable the self-service trait that we associate with cloud computing. Kinds of Physical Disks There are three kinds of physical disks that you can attach to a virtual machine in Windows Server 2012 Hyper-V: Passthrough disks, iSCSI disks, or Fibre Channel disks. Pass-through Disks The first of these is the pass-through disk, known to VMware customers as raw device mapping. The pass-through disk is a LUN that is connected directly to the controller of a virtual machine, located in the settings of that virtual machine’s virtual hardware. There are valid reasons for using a pass-through disk. There are also not-so-valid reasons for using pass-through disks, and these are often the reasons offered by engineers who have mistakenly gone down the path of favoring this type over superior virtual alternatives. Management of a pass-through disk’s LUN is done using the physical storage tools, just... --- ### The State of Windows Server Security > Learn about the state of Windows Server security in this article by Windows expert Russell Smith. - Published: 2013-04-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-security/ - Categories: Security - Article Type: Opinion Learn about the state of Windows Server security in this article by Windows expert Russell Smith. When I started writing about IT in 2005, the security landscape was quite different from that of today’s. Not only were there fewer threats, but also those threats were less sophisticated and infiltrated corporate networks via a limited number of available entry points. Today, with the shift towards cloud computing and employees using a variety of mobile devices outside the relative safety of the corporate intranet, the chance of falling victim to a targeted or opportunistic attack is much greater if the proper protections are not in place. Microsoft: Questionable Security? Much of the material I was writing in the past was connected to securing Windows Server on the basis that it was generally considered to be insecure, at least compared to its Linux and Unix counterparts. Over time, the hardening advice Microsoft issued came into question, in that the trade-off in usability often encountered when applying advanced security settings wasn’t worth exchanging for a minor improvement in security. Much of the advice Microsoft now issues is intended for special purpose uses of Windows Server, but hardening advice for high-risk scenarios is still available. Microsoft has released a number of tools in the past few years that make securing Windows Server easier. The Security Configuration Wizard (SCW) built into Windows Server makes it possible for administrators to configure ACLs, firewall ports, and a number of other security configurations without using Group Policy or modifying the registry. The Baseline Security Analyzer is available for Windows Server and a... --- ### vSphere Data Protection: Backup and Recovery > We're back with our look at the new vSphere Data Protection (VDP)! Learn the process of backing up and recovering a vSphere virtual machine with VDP. - Published: 2013-04-19 - Modified: 2024-11-19 - URL: https://petri.com/vsphere-data-protection-backup-recovery/ - Categories: Backup & Storage - Tags: Editor's Pick, VDP, vSphere Data Protection - Article Type: How To, Overview We're back with our look at the new vSphere Data Protection (VDP)! Learn the process of backing up and recovering a vSphere virtual machine with VDP. In my last article in this series, vSphere Data Protection: Introduction and Installation, I discussed the good and bad points of the new vSphere Data Protection (VDP), as well as how to install it and how to perform the initial configuration. In this article, I’ll walk you through the process of backing up and recovering a vSphere virtual machine using the vSphere Data Protection found in vSphere 5. 1+. Backup vSphere VMs with VDP To get started, open your vSphere Web Client and go to the Home screen. It’s there you’ll see a new option to go into vSphere Data Protection. Inside the VDP application, you’ll be brought to the Getting Started tab.   Under Basic Tasks, you’ll see the option to Create Backup Job. Clicking on this will bring up the New Backup Job Wizard, which will walk you through the process. The steps are: Select what virtual machines you want to backup – you can choose to backup all vSphere VMs that are managed by a single vCenter server, a single cluster, or a virtual machine. Create a schedule – specifying when you want the backups to occur. You can choose to back them up daily, weekly, or on a certain day of the month (like the first Sunday). Notice how, until with traditional backup applications, you aren’t specifying a certain time that the backups will occur. With VDP, the backups will occur anytime, day or night, with no downtime to virtual machines. Specify the Retention... --- ### vSphere Data Protection: Introduction and Installation > Learn the pros and cons of VMware's new product, vSphere Data Protection (VDP), as well as how to install and configure VDP. - Published: 2013-04-18 - Modified: 2024-11-19 - URL: https://petri.com/vsphere-data-protection-introduction-installation/ - Categories: VMware - Tags: vSphere - Article Type: Overview It's time to back it up! Learn how to install and configure VMware's new product, vSphere Data Protection (VDP). With the release of VMware vSphere 5. 1, VMware dropped their complementary backup product, VMware Data Recovery (VDR) (included with vSphere essentials and above) and replaced it with a new product, vSphere Data Protection (VDP). In this article, I'll tell you how to install and configure vSphere Data Protection. In a follow-up article, I'll go further with vSphere Data Protection: Backup and Recovery. Like its predecessor, VDR, this all-new backup and recovery product is included with vSphere essentials plus (and above). VDP is meant for small- and medium-size companies (SMB) who need to backup vSphere and don’t want to purchase a large, more costly, and comprehensive virtualization backup solution.   This new virtualization backup solution, VDP, is has the same limitations of VDR (and maybe one new one) but offers a much better user interface and integration with the new vCenter Web Client interface. vSphere Data Protection (VDP): Pros and Cons As with any solution, there are always pros and cons. Let's start out with what's good about vSphere Data Protection. VDP Pros Included free with vSphere enterprise plus and above Deployed as a virtual appliance – i. e. no OS license is needed and there are no installations Fully supported by VMware Performs deduplication on the backup data Utilizes VADP (the vSphere API for data protection) and CBT (change block tracking). Because of VADP and CBT, initial backups take a fair amount of time, but subsequent backups can be as little as a few minutes depending on the number of... --- ### Create Exchange 2010 Mailbox Size Reports with PowerShell > Whip up an Exchange 2010 mailbox storage report using PowerShell with this handy how-to article! - Published: 2013-04-17 - Modified: 2024-09-04 - URL: https://petri.com/create-exchange-2010-mailbox-size-reports-powershell/ - Categories: Exchange Server - Tags: Advanced, cmdlets, Exchange 2010, mailboxes, PowerShell - Article Type: How To Whip up an Exchange 2010 mailbox storage report using PowerShell with this handy how-to article! When I train or speak about PowerShell, I always talk about it in terms of a management engine. We can access this engine through a number of interfaces. PowerShell isn’t just a command line tool. If you need a GUI you can have one, but it will sit on top of Powershell. The Exchange management tools are a great example of this paradigm. Sure, there is a graphical Exchange management console, but it is limited to what it was designed to handle. If you want to do something else, you need to drop down to the PowerShell console. For example, there is no provision in the GUI to create mailbox storage reports. But it is relatively simple to do so from a PowerShell prompt. I’m going to demonstrate how to do this from a Windows 8 desktop with Exchange 2010 management tools installed. All of my commands in this article will be run from the Exchange PowerShell console running on the client. In follow-up articles, I'll show you how to create Exchange 2010 individual inbox reports and Exchange 2010 multiple inbox reports using PowerShell. Exchange Mailbox Size Reporting: Starting Small Let’s start small and look at reporting for a single mailbox. Exchange has a cmdlet for this task, Get-MailboxStatistics, which returns some basic information. First, I’ll get the mailbox statistics for Jack Frost. C:>$jf = get-mailboxstatistics jfrost Creating a new session for implicit remoting of "Get-MailboxStatistics" command... C:>$JF   DisplayName               ItemCount    StorageLimitStatus      LastLogonTime -----------               ---------   ... --- ### Review: ManageEngine Desktop Central > We take on ManageEngine's Desktop Central, an affordable device management system. Will it stand up to our in-depth testing? Read our review of Desktop Central! - Published: 2013-04-16 - Modified: 2024-09-24 - URL: https://petri.com/manageengine-desktop-central-review/ - Categories: Windows Server - Tags: Desktop Central, ManageEngine, System Center - Article Type: Review We take on ManageEngine's Desktop Central, an affordable device management system. Will it stand up to our in-depth testing? Read our review of Desktop Central! In the not-too-distant past, many IT professionals considered robust device management systems a luxury they couldn’t afford. Sure, solutions such as Microsoft’s System Center and Symantec’s Altiris have been on the scene for years. These solutions tended to be reserved for large organizations that could afford the overhead of not only licensing them, but of training their staff to support them. Now, in the era of BYOD, consumerization of IT, tablet computing, and the like, device management is no longer a luxury. Almost all organizations, be they small or large, corporation or non-profit, require some form of device management in order to effectively deploy, manage, and protect their IT assets. Desktop Central is a device management system from ManageEngine that fits the bill perfectly for many organizations. This is evidenced by their 55,000-strong customer base including high-profile organizations such as Duke University, Sony, and the New York Times. I downloaded, installed, and used Desktop Central for a couple of months, using it to manage a half-dozen servers, a plethora of desktops, and a handful of mobile devices, including iPhones and iPads running iOS 6. x. Straightforward Installation I’ve encountered few installations that are more straightforward than Desktop Central v8. After running the downloaded file, it took just a few clicks until everything was installed and ready to go. Once installed, everything in Desktop Central is done through a web interface. Opening up the main web page, logging on, and following the Getting Started wizard makes installation an absolute no-brainer. To... --- ### Access VMFS Volumes without a VMware Host > Need to access VMware VMFS files but don't have a running VMware host handy? Learn how to access VMFS files using the open source VMFS drive from fluid Ops. - Published: 2013-04-15 - Modified: 2024-09-04 - URL: https://petri.com/access-vmfs-volumes-without-vmware-host/ - Categories: VMware - Tags: Fluid Ops, VMFS - Article Type: How To Need to access VMware VMFS files but don't have a running VMware host handy? Learn how to access VMFS files using the open source VMFS drive from fluid Ops. As VMWare becomes more prevalent in more environments, the ability to access VMWare formatted file systems (VMFS) from other operating systems is increasingly important. In most cases where the need to access a VMWare disk on a non VMWare system arises, the issue is a time critical "system down" event. If your environment has more than one VMWare server, chances are that you can simply put the hard drive – or remap the LUN – into another VMWare system. Unfortunately, that is not always possible. There are also cases in which the VMFS has become corrupt in such a way that ESXI will not talk to it. In these circumstances we turn to the open source VMFS driver written by fluid Ops. This article will address accessing VMFS under Windows. For the purposes of this article, I am going to assume that you have the latest Java 6 Runtime Environment (32-bit) installed on your computer. This method is untested with Java 7. How to Access VMWare VMFS Volumes Before we begin, we need to know what physical drive number Windows has assigned to the VMWare drive. In order to do this, open up Computer Management.   From within Computer Management, navigate to Storage -> Disk Management and find the disk labelled as an Unknown Partition.   Write down which disk represents the unknown partition. Next, go to the Open Source VMFS Driver.   Select Downloads and download the latest version by clicking on the file name. It... --- ### MMS 2013: Microsoft and the Cloud-Optimized Business > What does Microsoft have in common with legendary linebacker Dick Butkus? Discover the connection in our MMS 2013 recap. - Published: 2013-04-12 - Modified: 2024-09-04 - URL: https://petri.com/mms-2013-microsoft-cloud-optimized-business/ - Categories: Windows Server 2012 - Tags: Microsoft Management Summit, Microsoft System Center 2012, MMS, MMS 2013, Windows Azure, Windows Intune - Article Type: News What does Microsoft have in common with legendary linebacker Dick Butkus? Discover the connection in our MMS 2013 recap. Now that another MMS 2013 has drawn to a close, it's a good time to look back over the major themes. I've cobbled together some thoughts on what transpired over the last week, and present them for you here. If you attended this year's MMS yourself, I'd love to get your perspective on the event as well, so please add a comment to this post or reach out to me on any of the social media platforms mentioned at the bottom of this post. You can also read my initial thoughts on Brad Anderson's MMS keynote and HP's private cloud in a glass box, the "Serverquarium. " Microsoft Is Back (Or, Is Windows Server 2012 the Dick Butkus of Server OSes? ) The last few years have been rocky ones for Microsoft, from the lukewarm reception to Windows 8 and a number of high-profile product failures (like the Kin, Zune, and Vista) to fierce and intensifying competition from VMware, Google, and Apple. I was beginning to think that Microsoft had lost its way, that the company was at risk of getting outpaced by younger, faster, and more aggressive competitors, much like how a leaner, mammalian Microsoft ran circles around the sclerotic and Jurassic-era IBM in the 1980s and '90s. For a while I've been kicking around the idea of an article about how Microsoft had "jumped the shark" (or nuked the fridge? ), and that its glory days were behind it. But seeing Windows Server 2012, System Center 2012, and... --- ### Installing Exchange 2010 Management Tools on Windows 8 > Wrangling Exchange servers? Learn how to install and setup Exchange 2010 Management Tools on Windows 8 and Windows 7. - Published: 2013-04-12 - Modified: 2024-09-04 - URL: https://petri.com/install-exchange-2010-management-tools-windows-8/ - Categories: Exchange Server - Tags: Advanced, PowerShell 2.0, Windows 7, Windows 8 - Article Type: How To Wrangling Exchange servers? Learn how to install and setup Exchange 2010 Management Tools on Windows 8 and Windows 7. Even though Exchange 2010 is built on top of PowerShell, you can’t simply use PowerShell remoting from your management desktop to manage the server. You will need to install the Exchange Client Management tools. Fortunately, this isn’t difficult, especially if you are already running Windows 8. There are still a few things to watch out for, and I'll cover those in this article. Note: Even though this article covers Windows 8, almost everything here will also apply to Windows 7. Exchange 2010 Requirements and Getting Started To begin, you will need to download the Microsoft Exchange Server 2010 Service Pack 3 (SP3), which is a self-extracting executable. Extract the contents to a folder on your desktop or a network share. Now, I’m assuming that the account with which you'll be installing has admin rights on your desktop and the necessary Exchange permissions to manage the mail server. There are some software requirements, most noticeably PowerShell 2. 0 and the . NET Framework, which most likely you already have. You will also need to install the IIS 6 Metabase Compatibility and IIS 6 Management Console features. Go to Control Panel – Programs. Click the link that says Turn Windows Features on or Off. Expand Internet Information Services and check the boxes for the IIS 6 Management Console and IIS Metabase, as shown below.   Finally, make sure your computer doesn’t have any pending restarts, say, from a Windows update. You may want to reboot your computer just in case and... --- ### Creating Failover Clusters in Windows Server 2012 Hyper-V > Learn how to set up high availability with failover clustering using Hyper-V in Windows 2012 and in the free Hyper-V 2012 Server. - Published: 2013-04-11 - Modified: 2024-09-04 - URL: https://petri.com/create-failover-clusters-windows-server-2012-hyper-v/ - Categories: Hyper-V - Tags: cmdlet, Failover Cluster, PowerShell, Windows Server 2012 - Article Type: How To Don't be a failover failure! Learn how to set up high availability with failover clustering using Hyper-V in Windows 2012 and in the free Hyper-V 2012 Server. In this article we will go through how to set up high availability using failover clustering with Hyper-V in Windows 2012 and also in the free Hyper-V 2012 Server. Windows 2012 Hyper-V allows us to use live migration between virtual machine hosts without having them in a failover cluster. With the new shared nothing live migration we can also live migrate the virtual machine -- including the storage -- without downtime. In fact, the new Hyper-V cluster can be up to 64 virtual machine hosts and with an amazing 8,000 (! ) running virtual machines in total. One big improvement in the new cluster is that you don't need to shut down the virtual machine before adding it to the cluster. This means that you can live migrate virtual machines with storage from standalone hosts to a cluster, making them highly available without any outage of the service the virtual machine runs. The failover cluster can also utilize the new SMB 3. 0 file shares for the virtual machines. And if you still want to continue with Cluster Shared Volumes, they have been improved in several ways. There's also a new file system Clustering for Scale Out File Server (CSVFS) with the new CSV v 2. 0. This new version includes resilience features to protect your volumes from corruption. You can now also use the CSVs with a file server cluster, which was not possible in the Windows 2008 R2 version where the CSV was only allowed for the Hyper-V... --- ### MMS 2013: The Private Cloud Under Glass: HP's 'Serverquarium' > Check this out: HP puts the private cloud on display with their 'Serverquarium' exhibit at MMS 2013. - Published: 2013-04-10 - Modified: 2024-09-04 - URL: https://petri.com/mms-2013-private-cloud-hp-serverquarium/ - Categories: Hyper-V - Tags: HP, HP Cloud Services, HP CloudSystem, Serverquarium - Article Type: News Check this out: HP puts the private cloud on display with their 'Serverquarium' exhibit at MMS 2013. Updated: April 11, 2013 - Changed StoreServ details and added comments from HP's Matthias Popp. One of the most popular aspects of every MMS event is the hands-on labs that allow attendees to try out the latest features and functionality of Microsoft's Windows Server and System Center products. This year's MMS didn't buck that trend, and HP and Microsoft joined forces once again to put together the lab experience. This year HP put the results of their efforts on display in a glass-walled booth dubbed the "Serverquarium. " Attendees can walk by and see the actual server and storage hardware running all the virtual machines for all of the live lab sessions, and also look at the control panels to see real-time data on server load, VM density, IOPs, and more. HP's MMS 2013 "Serverquarium" hardware, viewed from the front. I was given a tour of the Serverquarium installation by Dung K Hoang, HP's principal engineer on the project. Hoang mentioned that the compute portion of the hardware relies on 32 HP BL460c BladeServers, each equipped with 2x Intel Zeon CPUs with 8 cores and 256GB of RAM. The storage side relies on more than 153 TB of storage in the form of a single HP 3PAR StoreServ 10800 with 128 x 600GB drives and 64 x 200GB SSD drives. HP's Matthias Popp also emailed me some additional details about the MMS Serverquarium setup. "The system we brought to Las Vegas is a 4-controller node 3PAR storage system... --- ### Create SharePoint List Items with PowerShell > Have you tried using PowerShell to connect to SharePoint to save your output as list items? Learn to do just that in this helpful guide. - Published: 2013-04-09 - Modified: 2024-09-04 - URL: https://petri.com/create-sharepoint-list-items-using-powershell/ - Categories: PowerShell - Tags: cmdlet, SharePoint - Article Type: How To Have you tried using PowerShell to connect to SharePoint to save your output as list items? Learn to do just that in this helpful guide. Many Petri IT Knolwedgebase readers know that one of the reasons PowerShell is so useful is its versatility, seamlessly switching between working with files on a hard drive, computers across a domain, and registry keys in remote servers all in a single bound! But have you tried using PowerShell to connect up to SharePoint to save your output as list items? That's what we'll tackle in today's article. How to Create SharePoint List Items Using PowerShell The great thing about doing this is that you can work with your local workstation without having to remote into the SharePoint server to create your list items with PowerShell. In fact, you aren’t even really using SharePoint as a system administrator. Instead, think of this as using SharePoint as a user to maintain your system administration information. Prerequisites To begin, you’re going to need SharePoint set up in your environment, of course. You’ll also need a list to connect to, and the list columns need to already be in place. I am going to use a standard list from SharePoint -- a list of contacts -- and I'll show you the code that you’ll use to create a new user with PowerShell. These same techniques can be used to populate a SharePoint list as your PowerShell script iterates through a list of servers, desktops, databases, and web applications in a farm or service accounts in use throughout the domain. Do I need SharePoint 2013? You aren’t required to use any... --- ### MMS 2013: Microsoft Promotes Cloud OS, Touts Customer Success Stories > Microsoft's Brad Anderson took the stage at MMS 2013 this morning to urge attendees to embrace the cloud and work to improve the agility of IT services. - Published: 2013-04-08 - Modified: 2013-04-08 - URL: https://petri.com/mms-2013-microsoft-promotes-cloud-os-touts-customer-success-stories/ - Categories: Cloud Computing - Tags: Microsoft Management Summit, MMS, MMS 2013 - Article Type: News Microsoft's Brad Anderson took the stage at MMS 2013 this morning to urge attendees to embrace the cloud and work to improve the agility of IT services. Microsoft Corporate Vice President Brad Anderson urged an assembled crowd of more than 5,000 system administrators and IT professionals here at MMS 2013 in Las Vegas to embrace the cloud and work to make internal private cloud alternatives as user-friendly as public cloud offerings. Despite some intermittent Internet access at the start of his keynote and a demo glitch or two, Anderson's message focused on the continued integration of existing Microsoft server and tools products with cloud services, and an ongoing emphasis on making IT more agile and responsive to the needs of business stakeholders and end-users. Anderson also used the event to underscore Microsoft's efforts to compete with public cloud service providers and rival visions of the future of enterprise IT, including VMware's 'software-defined data center' push. Microsoft has gathered up a number of products and services under its Cloud OS umbrella, including three key components that Anderson blogged about earlier this year: Windows Azure, System Center 2012, and Windows Server 2012. The video presentation that opened the 2013 Microsoft Management Summit (MMS) Anderson also used his keynote address to promote some Microsoft customer success stories, including Microsoft's recent acquisition of StorSimple (a vendor who helped save the Sundance Film Festival from catastrophic data loss) and news that the Xerox India Development Center used a private cloud along with Visual Studio Team Foundation Server to enhance developer productivity. A smattering of other product updates and announcements were also mentioned by Microsoft today, including news that public previews... --- ### Virtualization Storage and the Importance of IOPS > We're talking serious storage specification! Learn more as we go into virtualization and an overview of IOPS (Input/Output Operations per Second). - Published: 2013-04-08 - Modified: 2024-09-04 - URL: https://petri.com/virtualization-storage-iops/ - Categories: Virtualization - Tags: IOPS - Article Type: Overview We're talking serious storage specification! Learn more as we go into virtualization and an overview of IOPS (Input/Output Operations per Second). It is my experience that storage has often been the most overlooked and least understood factor when assessing performance issues. Even with desktop PCs people tend to focus on the CPU and memory, while the hard drive is just a question of capacity (although the arrival of SSDs has rectified this somewhat). In this article, I'll present a common storage scenario. I'll also discuss how the problem could have been helped with IOPS (Input/Output Operations per Second), which is a key performance indicator once you start getting into more serious storage specification. A 10MB Seagate ST-412 hard drive from 1983 (left) and a 4TB Seagate ST4000DM000 from 2013. In 30 years the cost per GB has dropped from $40,000 to $0. 05For the IT manager with servers to consider protecting your storage is very important. A RAID system to protect data against drive failure becomes a must, as well as RAID options like battery-backed write cache. Most readers should know the difference between RAID 0, 1, and 5, and perhaps variants like 1+0 and 6. (For a RAID primer, refer to our overview of RAID storage levels. ) Hard drive statistics like access time, rotational speed, and bus transfer rate can be found on manufacturers’ websites, which will give some indication of the drive performance -- but how many of you consider those figures? Storage performance and specification has long been considered something of a black art; for years, the standard practice when purchasing a new server has been... --- ### Installing Microsoft Exchange 2010 SP3 > Wait no longer: Exchange 2010 SP3 is available! Download the update, discover its new features, and learn how to install the latest version of Exchange 2010. - Published: 2013-04-05 - Modified: 2024-09-04 - URL: https://petri.com/install-microsoft-exchange-2010-sp3/ - Categories: Exchange 2010 - Tags: Exchange 2010, Exchange 2010 SP3 - Article Type: How To Wait no longer: Exchange 2010 SP3 is available! Download the update, discover its new features, and learn how to install the latest version of Exchange 2010. Wait no longer: Exchange 2010 SP3 has been released and is available for download! The upgrade includes a list of new features and fixes some known issues. One of the big anticipated features is the support for coexistence with Exchange 2013. The gotcha with this new capability is that you will need to install Exchange Server 2013 CU1 in order to have coexistence work. Additional features in this latest release include support for installations on Windows Server 2012 and IE 10. To review the detailed list of fixes and capabilities I recommend you read the description of Exchange Server 2010 SP3 on Microsoft’s website. Exchange 2010 Prerequisites and Recommendations Upgrading to Exchange 2010 Sp3 is pretty straight forward, but I would still review the Exchange 2010 prerequisites  to make sure you have everything in place for a successful update. Take note of the following recommendations before you begin applying SP3 on your existing Exchange 2010 servers. As always, I recommend testing in a lab prior to updating your production servers. Download Exchange 2010 SP3 through Microsoft’s download center. Since upgrading to SP3 requires a schema update, you may want to review the Active Directory Schema changes beforehand. Upgrade your Exchange servers to SP3. This should be performed in the following order: CAS servers: If you have a CAS array I would recommend only updating a few at time. Once they are upgraded, you can continue with the remaining CAS servers until all the... --- ### How to Identify What Is Connected to a Network Switch > Trying to identify what is connected to a Cisco network switch? Discover some networking options, both free and commercial. - Published: 2013-04-04 - Modified: 2024-09-04 - URL: https://petri.com/identify-connections-network-switch/ - Categories: Networking - Tags: Cisco, linux, Simple Network Management Protocol, switchport mapping - Article Type: How To Trying to identify what is connected to a Cisco network switch? We show you some options, both free and commercial. In a well-organized networking department, documentation should exist to allow any network engineer to quickly look up those devices that are connected to each switch port throughout the organization. There are a number of different software options that help in the process of mapping these various devices to switch ports. When used, the likelihood of error on documentation can be reduced, and switchport connections can be easily verified dynamically whenever the engineers have a need for the information. But what happens if you are in one of those organizations that are not very, well... organized? Or what if you are a consultant who has been brought in to fix a problem in one of these types of organizations? Today I'll review the available switch port mapping software options and the available alternatives that exist on Cisco equipment when these software options are not in place. Switch Port Mapping Software and SNMP There are a number of different products that exist which provide an accurate mapping of the devices that connect to each switch port. Sometimes this information is limited to MAC address(es) only, and sometimes it can be very detailed depending on the specific configuration of the connected device. Most of these programs take advantage of the Simple Network Management Protocol (SNMP) and its query mechanisms and some even provide the ability to alter switchport status and configuration if needed. Here are some of the most noteworthy products. Managed Switch Port Mapping Tool – Of the available... --- ### Selecting the Right Mobile Device Management (MDM) Software > Struggling with managing BYOD and company-owned devices? Learn what questions to ask when considering mobile device management (MDM) software. - Published: 2013-04-03 - Modified: 2024-09-04 - URL: https://petri.com/selecting-mobile-device-management-mdm-software/ - Categories: Mobile - Tags: Editor's Pick, infosec, Mobile Device Management, mobility, Security - Article Type: Opinion, Overview Struggling with managing BYOD and company-owned devices? Learn what questions to ask when considering mobile device management (MDM) software. Smartphones and tablets have made their way into the enterprise and they are here to stay. Whether it’s BYOD or company-owned devices, sysadmins struggle with managing these devices and controlling access to company data. If these mobile devices are not properly managed they can pose huge security risks to your company’s network and data. Mobile Device Management (MDM) software can manage your devices, push down security policies, prevent access to resources, and basically secure your company’s assets as much as you need it to do. Like with everything else, mobile device management software can range from bare bones manageability to high-end, practically lined-with-gold software that has all the bells and whistles. For those already using Exchange Server 2010 or SCCM there is even the option of using the ActiveSync policies within Exchange or using the SCCM 2012 Mobile device polices to manage these devices. Mobile Device Management: What to Consider You have a small buffet of MDM software from which to choose, so it can be difficult to know where to start. That's where I step in with my list of things to think about when considering an MDM solution. 1. Device standards – What type of devices will be allowed to access the company’s resources? Are you planning on only allowing idevices, such as the iPad & iPhone or allow a range of devices like Androids, Blackberry? Having a defined list of what you are planning to support will set the expectations up front on what... --- ### Top 5 Free VMware Virtual Appliances > Need an application or solution up and running fast? Trying to troubleshoot? Check out our list of the best VMware virtual appliances. - Published: 2013-04-02 - Modified: 2024-11-19 - URL: https://petri.com/top-5-vmware-virtual-appliances/ - Categories: VMware - Tags: virtual appliance - Article Type: Overview Need an application or solution up and running fast? Trying to troubleshoot? Check out our list of the best VMware virtual appliances. Need an application or solution up and running fast? Want to solve a technology problem today? A virtual appliance may be able to do the trick. The VMware Virtual Appliance Marketplace has been totally redone and is now called the VMware Solutions Exchange, or VSX. For those who weren’t familiar with the older website (Virtual Appliance Marketplace), the VMware Solutions Exchange is a website where software vendors and individuals alike post their virtual machines available for free download. When a traditional virtual machine has a preconfigured operating system and applications installed, we call that an “appliance. ” These appliances can be inserted into your datacenter and can offer you a solution in minutes, such as a firewall, email server, web server, CRM, or more. Alternatively, you may just want a pre-installed Linux operating system that already has the Linux OS packages and VMware Tools you need, ready to go. Keep in mind that some of these solutions are totally free and open source whereas others are evaluations of commercial solutions like those available from Avaya, Wyse, NetApp, VMware, and more. Note: This post is an update to my previous post about Our 5 Favorite Free VMware Appliances. Experiences with VMware Solutions Exchange Over the years, I’ve used the Virtual Appliance Marketplace many times to download appliances link: Tiny Linux appliances to use for testing Open source applications pre installed such as Word press web servers, CRM, and MySQL database appliances Pre-installed Linux operating systems, already running the VMware virtual... --- ### Managing Hyper-V with PowerShell in Windows Server 2012 > Learn to manage the Hyper-V role in Windows Server 2012 using PowerShell 3.0 with this helpful tutorial. - Published: 2013-04-01 - Modified: 2024-09-04 - URL: https://petri.com/powershell-hyper-v-windows-server-2012/ - Categories: Hyper-V - Tags: PowerShell 3.0, Windows Server 2012 - Article Type: How To Hope you're ready for some cmdlets! Learn to manage the Hyper-V role in Windows Server 2012 using PowerShell 3.0 with this helpful tutorial. In this article we’ll look at how to manage the Hyper-V role in Windows Server 2012 using PowerShell 3. 0. This feature is new in Windows Server 2012, as the Windows Server 2008 R2 version of Hyper-V didn’t have an integrated PowerShell module. In Windows Server 2012 there has been extensive development in the PowerShell area. With all modules in the operating system there are now about 2,400+ cmdlets available to manage everything. The Hyper-V module alone consists of 164 cmdlets, but you will also use other cmdlets when automating your Hyper-V virtualization platform. If you are totally new to Hyper-V, I would recommend that you fire up the Hyper-V Manager and look around in that and see what you can do and what the default settings look like.  A bit later in this post we will look at how we can automate some of these features. Everything in the Hyper-V Manager can be accessed and managed from the PowerShell console, but not everything fits into this article. To show what PowerShell Hyper-V cmdlets are available you can use the following command: Get-Command –Module Hyper-V And if you want to count them you can use the following: (Get-Command –Module Hyper-V). Count PowerShell help is your friend! With it you can find what parameters can be used and see examples of the cmdlet usage: Get-Help Get-VM –Full Activating Hyper-V on Windows 2012 In order to use the Hyper-V module in PowerShell we need to enable that feature. Note that you... --- ### Active Directory Integration with Office 365: Directory Sync > After the installation, integration, and federation comes the next step: Learn to activate local Active Directory synchronization with Office 365. - Published: 2013-03-29 - Modified: 2024-11-19 - URL: https://petri.com/active-directory-integration-office-365-directory-sync/ - Categories: Active Directory (AD) - Tags: Microsoft Directory Synchronization Tool, Office 365 - Article Type: Overview After the installation, integration, and federation comes the next step: Learn to activate local Active Directory synchronization with Office 365 in part three of this how-to guide. The first two articles in this series focused on integrating and installing local Active Directory with Office 365 and setting up federation and single sign-on. Both are great features for any organization looking to realize the benefits of mixing on-premise Active Directory with the cloud-based messaging, collaboration, and other features of Office 365. In today’s article, we’ll complete the trifecta and perform the steps necessary to activate local Active Directory synchronization with Office 365. Activating Microsoft Directory Synchronization Federation and single sign-on allow Office 365 to trust the authentication of users performed by Active Directory, but user accounts must be synchronized between the systems for everything to work. While user information could manually be duplicated in Office 365, that would get very old, very fast. Thankfully, the Microsoft Directory Synchronization Tool offers a better way. The Microsoft Directory Synchronization Tool replicates certain objects and attributes from the local AD with Windows Azure Active Directory. Windows Azure AD is the cloud back-end that provides identity and access capabilities for Office 365. Objects replicated include user and groups and the attributes synchronized are those typically found in Exchange’s Global Address List such as description, phone number, and the like. Review the Microsoft Support article for a complete list of synchronized attributes. Note: There are a few things to be aware of before turning on Directory Synchronization. First and foremost, it’s not easy to turn off. In other words, Directory Synchronization should be viewed as permanent. So don’t turn it... --- ### RSA: Top 7 IT Security Trends for 2013 > Need to know what to keep an eye out for on the IT security front? Check out our list of seven infosec trends you should keep an eye on. - Published: 2013-03-28 - Modified: 2024-11-19 - URL: https://petri.com/rsa-it-security-trends-2013/ - Categories: Security - Tags: #RSAC, RSA Conference, RSA Conference 2013 - Article Type: News Need to know what to keep an eye out for on the IT security front? Here are seven key infosec trends you should keep an eye out for. One of the most interesting things to learn at every RSA conference is what the collective audience of security vendors, analysts, venture capitalists, government security types, grizzled security professionals -- and, of course, we cynical journalism types -- see as the main themes coming out of the show. This year's 2013 RSA conference, held in San Francisco, was no different, and several themes began to emerge as I talked to others about where the industry is headed, and what they thought security professionals and system administrators needed to worry about for the coming year. In addition to the seven themes I've listed here, I'd suggest that you also take a look at some others have written (or people they've interviewed) about RSA and the current information security landscape, namely Bill Brenner at CSO Online, Eleanor Dallaway at Infosecurity Magazine, and Mark Russinovich, Technical Fellow at Microsoft. Another must-read is Mandiant's M-Trends 2013: Attack the Security Gap report (link to registration for download) which provides another perspective on the threats facing IT security in 2013. Top IT Security Trends for 2013 1. Big data and business intelligence are the buzzwords du jour Big data and business intelligence are the current trending buzzwords in the more general IT market, and they've now seeped into the security space as well. While the promise of big data teamed with business intelligence to combat security threats has a tremendous upside, the reality is that we're still in the more sizzle/less steak phase... --- ### We're Hiring! Wanted: Windows Server Management and Virtualization Bloggers > The Petri IT Knowledgebase is looking for writers and bloggers who are experts in Microsoft Windows Server administration and virtualization. Apply here! - Published: 2013-03-27 - Modified: 2024-09-04 - URL: https://petri.com/hiring-windows-server-management-virtualization-bloggers/ - Categories: Windows Server - Article Type: News The Petri IT Knowledgebase is looking for writers and bloggers who are experts in Microsoft Windows Server administration and virtualization.   The Petri IT Knowledgebase is hiring! We currently have two open positions, both focused on Microsoft Windows Server. We're looking for experts in Windows Server administration and Windows Server virtualization. Both positions are part-time, contract positions that don’t require applicants to live in a specific location. We're looking for applicants who have writing experience, have already had IT-related work published, and/or have their own blogs. Most importantly, we're looking for people who have hands-on, real-world, in-the-trenches experience with making the Microsoft Windows Server platform roll over, play dead, and beg for treats. Bonus points if you also have relevant industry certifications (MCSE, MCT, etc. ) or industry recognition (Microsoft MVP, etc. ). Windows Server Administration Blogger Are you an IT professional who has extensive, hands-on experience with the Microsoft Windows Server product family? Can you recite the differences between Windows Server 2008 and 2008 R2 in your sleep? And do you know – at a glance – what the acronyms AD, DHCP, DNS, GPO, UAC, and ReFS stand for? Do you also like to write – perhaps you have your own blog, or you’ve had technical articles published before – and you’re active on social media platforms like Facebook, Twitter, G+, and LinkedIn? If so, we’d like to talk to you. The Windows Server (General Administration) Blogger will post news analysis, opinion, and both short- and long-form technical how-to content about Microsoft’s Windows Server product families, as well as provide regular tips and suggestions to help readers get the most out... --- ### Using Microsoft PST Capture Tool for Exchange 2010 > Microsoft PST Capture Tool can be a life saver! Learn to install the PST Capture Console and search for PST files on Exchange 2010 with this helpful guide. - Published: 2013-03-26 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-exchange-pst-capture-tool-exchange-2010/ - Categories: Exchange 2010 - Tags: Microsoft PST Capture, pst files - Article Type: How To, Overview Microsoft PST Capture Tool can be a life saver! Learn to install the PST Capture Console and search for PST files on Exchange 2010 with this helpful guide. Microsoft Exchange PST Capture is a tool that enables you to search for PST files on any system in your network and import them directly into any cloud or on-premises Exchange 2010 mailboxes. For those who are utilizing the native mailbox archive feature in Exchange 2010 this tool is great for importing a user's PST files into his or her archive mailbox or even regular mailbox. Today I'll walk you through the various steps involved with setting up Microsoft PST Capture, from installing the PST Capture Console to searching for PST files on systems with the PST Capture Agent. To get started using this new tool, you’ll first want to understand the basic architecture of it. The PST Capture tool consists of three components that run from a server that connects to an agent on a client system somewhere on your network. The PST Capture Central Service runs on a server where its main function is to maintain the listing of all the PST files that have been searched by the tool. For best performance it is recommended to use a dedicated server for PST Capture Central Service. The PST Capture Console is the GUI interface that is used to search and import the PST files. The console can be installed on the same server that is running the PST Capture Central Service. The final component is the PST Capture Agent which is the “searching” component. The agent performs the search for PST files on the systems that it is installed on... --- ### RSA 2013: 10 Security Companies to Watch > Fresh from the RSA security conference, check out our list of 10 security companies that are doing interesting work in the security space. - Published: 2013-03-25 - Modified: 2024-11-19 - URL: https://petri.com/rsa-security-companies-to-watch/ - Categories: Security - Tags: RSA, RSA Conference, RSA Conference 2013 - Article Type: News Fresh from the RSA security conference, check out our list of 10 security companies that are doing interesting work in the security space. This year's RSA Security Conference 2013 is already in the rearview mirror, and I've set about collecting my thoughts on which vendors at RSA had the most interesting products or services to announce at the show. What follows is an alphabetical list of ten companies that had some of the more interesting IT security products on display, based on my own observations and some questioning of attendees, fellow journalists, and a security analyst or two. Top 10 Security Companies to Watch 1. Barracuda Networks - Barracuda is a familiar name to many IT professionals, providing a variety of security products over the years, from virus and spam firewalls to web security services. This year Barracuda unveiled a revamped next-generation firewall (NGFW) aimed squarely at small and mid-sized businesses, as well as announcing a deal with Microsoft that will see Barracuda's web application firewall available for Windows Azure cloud services. 2. Bromium - I blogged a bit about Bromium when it was in the start-up phase last year, and the company made an impressive entrance onto the market at RSA. Citrix XenSource co-founder Simon Crosby is one of the key executives at Bromium, which relies on what it calls "micro-virtualization" to keep desktops "utterly secure. " According to Bromium, their technology leverages hardware virtualization to isolate suspicious tasks into virtual containers that protect the rest of the desktop or the network. The product is dubbed Bromium vSentry, and it's worth checking out the vSentry white paper or watching the... --- ### How to Block Websites by IP Address > Learn how to block specific websites, including Facebook and Youtube by IP address and how to research those addresses in this helpful how-to article. - Published: 2013-03-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-block-websites-ip-address/ - Categories: Networking - Tags: Facebook, IPv4, social media, Youtube - Article Type: How To No Facebook for you! Learn how to block specific websites by IP address and how to research those addresses in this helpful how-to article. When you're trying to block certain sites from within a network there are a couple of different things to consider: Is the purpose to just restrict access to a company website, or is the purpose to block everything from a whole site or company? The process is a little different depending on the answer to this question. No matter - both will be covered in this article, in which I'll show you how to block Facebook, YouTube, MySpace, or any other websites by IP addresses. There are certainly relatively easy methods that exist to allow the blocking of specific websites by IP address or addresses (IPv4 and IPv6). The real question is: Why not use a more comprehensive solution that can deal with the potential changes in addressing? For those that require this ability this article covers the basics of how to research these addresses. The blocking of specific large websites via IP can be very troublesome because the IP address being used for the site can be different depending on where the accessing host is located, or whether load balancing is being used across multiple addresses among other things. The best thing to do is to perform a number of Domain Name Service (DNS) lookups to try to determine as many IP addresses being used as possible. Since the majority of the users within a specific company get their DNS services through the same company and/or location, look-ups from that specific location are required to get... --- ### IPv4 and IPv6 Subnetting Differences > Do you know the fundamental differences between IPv4 and IPv6 subnetting? Read on to find out. - Published: 2013-03-21 - Modified: 2024-09-04 - URL: https://petri.com/ipv4-ipv6-subnetting-differences/ - Categories: Networking - Tags: IPv4, IPv6, subnetting - Article Type: Overview Do you know the fundamental differences between IPv4 and IPv6 subnetting? Read on to find out. A long-standing topic that has existed in the IPv4 world has been subnetting. This is something that is often taught at the beginning of network training, and it is often one of the topics that people have the largest problem wrapping their mind around. To those that are familiar and comfortable with IPv4 subnetting, the topic of IPv6 subnetting will not really be that hard to follow. But for those new to networking it would probably be best to concentrate on the IPv4 subnetting fundamentals before attempting to jump into IPv6. I'll tackle IPv4 first. IPv4 Subnetting The term "subnetting" originated from the further dividing of the classful addresses and address ranges that came along from the initial implementation of IPv4. Three main ranges exist that allowed the governing authorities the ability to divide the available space so that those organizations that needed large ranges could get them (Class A) and those that were smaller could get smaller ranges (Class B and Class C). What became obvious after the initial allocation of these addresses and the quick growth of those organizations that wanted to connect was that an allocation problem was going to occur rapidly. To avoid this problem, subnetting was developed, which allowed further division of these three main ranges. For example, instead of having 8-bit, 16-bit and 24-bit network divisions, an 8- through 30-bit network division was now possible. However, as most of us now know, even with using subnetting and various other technologies (NAT)... --- ### Active Directory Integration with Office 365: Complete Federation > Learn to set up single sign-on and complete federation in part two of this series on Active Directory integration with Office 365. - Published: 2013-03-20 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-integration-office-365-complete-federation/ - Categories: Active Directory (AD) - Tags: Active Directory Federation Services 2.0, Office 365 - Article Type: Overview Learn to set up single sign-on and complete federation in part two of this series on Active Directory integration with Office 365. Welcome back! In the first article of this series we began integrating and installing local Active Directory with Office 365. Verifying local account UPN suffixes was covered as well as downloading and installing Microsoft Active Directory Federation Services 2. 0 (AD FS 2. 0 for short). It’s time to complete federation and get everything ready for Single Sign-On. Before putting the cart before the horse, it’s important to verify that some prep work has been completed. First, an SSL Certificate for the domain to be federated is bound to the default website of the server running AD FS 2. 0. It's great if you have an internal certificate authority, but if not I strongly recommend investing in an SSL cert from a commercial authority. They’re relatively cheap, and most importantly they're easy to get up and going. Note: It's also necessary to make sure the domain to be federated is added and verified within the Office 365 Admin Center. If either of these tasks is not completed then the instructions in this article will fail miserably. In the third and final part of this series, I'll go over how to activate local Active Directory synchronization with Office 365, assign licenses to select users, and test everything for proper operation, Set Up Single Sign-On Download and install the Microsoft Online Services Sign-In Assistant for IT Professionals. This software is used to facilitate Single Sign-On on client PCs, but it’s also a requirement for the Windows Azure Active Directory Module for Windows... --- ### 8 Tips to Optimize the Surface Pro > Use that device like a pro! Discover 8 ways to get the most out of your Surface Pro. - Published: 2013-03-19 - Modified: 2024-09-04 - URL: https://petri.com/optimize-surface-pro-tips/ - Categories: Windows 8 - Tags: Microsoft Surface Pro - Article Type: How To Use that device like a pro! Discover 8 ways to get the most out of your Surface Pro. Just over three months after Microsoft’s Surface RT tablet was release it was followed by the Surface Pro, an Intel Core i5-powered tablet that’s as much an Ultrabook as it’s a tablet. Running Windows 8, the Pro is a full PC -- one that’s just as easy to hold and carry as any other tablet. Available in 64GB and 128GB versions, this is Microsoft’s first true PC, and it’s a very nice piece of hardware. However, like Surface RT, Microsoft had to make some compromises to fit a PC into a 10. 6” tablet. Today I'll show you some tips and tricks to optimize the performance of your Surface Pro. Read More: 7 Tips to Optimize the Surface RT Get the Most from Your Surface Pro 1. Using the pen Surface Pro is, at heart, a tablet PC. That means it comes with a Wacom digitizer pen and full support for digital ink with multiple levels of pressure support (though not yet in Photoshop). Touch and pen have traditionally been poor neighbors, especially when holding slate-format devices. Surface Pro's new touch-blocking feature prevents capacitive touch from launching or switching apps while you’re writing or sketching, making pen input a lot more useful. Surface Pro’s pen is lightweight and clips into the magnetic power connector when you’re carrying it in tablet mode. While the connection is pretty secure, it’s not perfect, and it’s certainly not as good as storing a pen in a slot. We’d recommend investing in a... --- ### Installing RightFax Connector on Exchange Server 2010 Hub Transport Servers > RightFax connectors provide a seamless way to fax within Outlook. Learn to install and configure RightFax on Exchange 2010 Hub Transport servers in this how-to. - Published: 2013-03-18 - Modified: 2024-09-04 - URL: https://petri.com/install-rightfax-exchange-server-2010-hub-transport/ - Categories: Exchange Server - Tags: hub transport server, RightFax - Article Type: How To RightFax connectors provide a seamless way to fax within Outlook. Learn to install and configure RightFax on Exchange 2010 Hub Transport servers in this how-to. Rightfax is an Enterprise Faxing solution that enables you to send and receive faxes either through the Rightfax client or through Outlook on a user’s local desktop. The Rightfax server can manage fax queues, routing of faxes, customized cover letters and templates, and it can even synchronize users with Active Directory. A component of the RightFax server called Email Gateway is the link that connects the RightFax server and email system. This communication link allows the users to use their email clients (such as Outlook) to send and receive faxes, making it a seamless operation for users to fax. There are many aspects to RightFax, but this article will focus only on the installation and configuration of the RightFax connector module on the Exchange Hub server. RightFax Exchange Connector Requirements In order to use the RightFax Exchange connector you must have the proper license installed and activated on your RightFax server. Prior to installation you will need to ensure that you have created a service account that has View-Only Organization Management permissions to your Exchange environment. You will also need to make sure that the service account is mail enabled and has rights to run services on the Hub transport server on which you are installing the connector. The Exchange connector is a service that runs on the Hub Transport server that is installed as a Foreign Connector to Exchange. The RFaxGate folder is created during the installation of the connector, which holds the IN and OUT... --- ### Generate Test Data for Exchange 2010 Using PowerShell: Sending Email > We're still generating test data! In part two of this series, learn how to send email using Exchange 2010 and PowerShell. - Published: 2013-03-15 - Modified: 2024-09-04 - URL: https://petri.com/generate-test-data-exchange-2010-using-powershell-send-mail/ - Categories: PowerShell - Tags: Advanced, cmdlets, Exchange 2010 - Article Type: How To We're still generating test data! In part two of this series, learn how to send email using Exchange 2010 and PowerShell. In a previous article I guided you through a technique to generate user logons in a test Exchange 2010 server. Certainly the heart of any testing will center around mailboxes and storage groups. The challenge is to populate mailboxes with data. This is easier than you might imagine using PowerShell. I’m not going to mess with Outlook or even Outlook Web Access, so my techniques won’t create perfect simulations of a user’s mailbox, but it will fill it with as much data as I want, which for my purposes is all I care about. When I run a command like Get-MailboxStatistics I want to see something. I hope it goes without saying, but these techniques are for use in a test and non-production environment. And they are certainly not the only way. But all I need is PowerShell on a client machine. Creating Test Data: Send Mail Message In PowerShell we can use the Send-MailMessage cmdlet and essentially spam the test Exchange server with mail messages. PS C:> Send-MailMessage -to jeffhicks@globomantics. local -from jfrost@globomantics. local -subject Spoof -body "I am a test message" -SmtpServer chi-ex01. globomantics. local There are steps you can do to define the SMTP server name in your PowerShell session, but I wanted to show the complete command. I sent a message to myself that will appear to come from Jack Frost. The message won’t show up as a sent item in Jack’s mailbox, but I don’t care about that. The point is that I was able to... --- ### 7 Tips to Optimize the Microsoft Surface RT > Increase the performance in your Microsoft Surface RT with these seven tips and tricks. - Published: 2013-03-14 - Modified: 2024-12-03 - URL: https://petri.com/optimize-microsoft-surface-rt/ - Categories: Windows 8 - Tags: intune, Surface RT - Article Type: How To Treat that shiny new device with the love it deserves. Read our tips and tricks to increase performance in your Microsoft Surface RT. Microsoft’s first tablet, the Surface Windows RT, arrived at the end of October 2012. It’s a significant departure for Microsoft, best thought of as a tablet designed for BYOD, mixing consumer-friendly touch features with a version of Office 2013. Within its VaporMg casing lies a powerful machine -- but it could always be better, right? Today I'll discuss some tips on how to get the most out of your Surface RT. (Editor’s note: Also check out our review of the Microsoft Surface RT. ) How to Get the Most from your Surface RT 1. Keeping in Sync Surface RT is at heart a companion device. Unlike other tablets it’s clearly designed to work with traditional desktop PCs and laptops, functioning as something you can quickly pick up when you don’t want the weight of a less portable device. To get the most out of it you’ll need a SkyDrive account, as Microsoft uses SkyDrive to share Office documents with Surface. The default SkyDrive 7GB may not seem that large, but it’s more than sufficient for a couple of OneNote notebooks and a set of Office documents. Unlike the desktop SkyDrive, Surface RT is limited to the Windows Store SkyDrive app and Office 2013’s built-in synchronization features. Office will use its cache to keep temporary copies of recently saved files so you can work offline, but in practice you’ll need a wireless connection if you’re working with cloud data. Surface RT’s built-in Office Home and Student 2013 will work... --- ### Patch Tuesday: Microsoft Fixes Vulnerabilities in Windows, Office, Internet Explorer, and Server Tools > While not as massive as the monster patch tuesday release for February 2013, Microsoft's patch tuesday updates for March 2013 were still noteworthy. - Published: 2013-03-14 - Modified: 2013-03-14 - URL: https://petri.com/microsoft-patch-tuesday-march-2013/ - Categories: Security - Tags: Adobe, Java, Patch Tuesday - Article Type: News While not as massive as the monster patch tuesday release for February 2013, Microsoft's patch tuesday updates for March 2013 were still noteworthy. While not as massive as the monster patch tuesday release for February 2013, Microsoft's patch tuesday updates for March 2013 were still noteworthy. The update include four critical and three important bulletins, which address close to two dozen vulnerabilities in a host of Microsoft products. Microsoft details all of the updates in their Security Bulletin for March 2013, which indicates that the vulnerabilities impact Microsoft Windows, Server Tools, Internet Explorer, Microsoft Office, and Silverlight. In a post on the Microsoft Security Response Center blog, Dustin Childs, Microsoft Group Manager, Response Communications in the Microsoft Trustworthy Computing group, urged system administrators to focus on three of the updates. "For those who need to prioritize deployment, we recommend focusing on MS13-021, MS13-022 and MS13-027 first. " I also spoke with Wolfgang Kandek, the CTO of cloud security vendor Qualys, to get more detail on the highest priority of this month's security updates. Kandek said that the most critical update was MS13-021 - Cumulative Security Update for Internet Explorer (2809289). "There are 9 vulnerabilities addressed in that update, which deals with a vulnerability for Internet Explorer 8," Kandek said. "An exploit for this vulnerability is already out and available... and will be integrated into the tools that attackers can use to build attacks from. " Kandek also provided further details of why MS13-022 - Vulnerability in Silverlight Could Allow Remote Code Execution (2814124) and MS13-027 - Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation Of Privilege (2807986) were important updates. "MS13-022... --- ### 5 Tips for PowerShell 3.0 ISE > Discover helpful tips for PowerShell 3.0 ISE (Integrated Scripting Editor), including region folding, snippets, managing themes, parentheses, and more! - Published: 2013-03-13 - Modified: 2024-09-04 - URL: https://petri.com/powershell-3-ise-tips/ - Categories: PowerShell - Tags: Beginner, ISE, PowerShell 3.0 - Article Type: How To Got the coding blues? Discover helpful tips for PowerShell 3.0 ISE (Integrated Scripting Editor), including region folding, snippets, managing themes, parentheses, and more! Recently I wrote an article in which I discussed 5 Tips and Tricks for the PowerShell 3. 0 console. It only seemed fitting to write a complementary article on the PowerShell 3. 0 ISE, or Integrated Scripting Editor. The PowerShell ISE has been redesigned for 3. 0. Today I'll tell you about five of my favorite tips for getting the most out of this PowerShell ISE. 1. Region Folding I love that PowerShell's ISE will collapse regions of code. The region can be a scriptblock like an IF statement or you can create your own regions. In your script start with a comment like this. #region get computers Hit enter a few times and then type this line: #endregion The ISE will automatically create a collapsible region. Write your code in between the comments. This is a great way of organizing your code and getting it out of the way when you don’t need it. Use Ctrl+M to toggle expanding and collapsing regions. In the ISE my script can look like this. Or I can expand individual sections by clicking on the plus (+) sign. Notice that constructs like ForEach and the If statement are also collapsed. You’ll automatically get the collapsible region with a scriptblock, but I like defining my own. You don’t have to type anything after #region, but if you don’t then you have no way of knowing what code is tucked away. 2. Snippets The new version of the ISE also supports snippets and ships with... --- ### Active Directory Integration with Office 365: Installation > Moving to the cloud? Learn how to install and integrate an existing Active Directory infrastructure with Office 365 in this helpful guide. - Published: 2013-03-12 - Modified: 2024-11-19 - URL: https://petri.com/active-directory-integration-office-365-installation/ - Categories: Microsoft 365 - Tags: Active Directory Federation Services 2.0, Editor's Pick, Office 365, PowerShell - Article Type: How To, Overview Moving to the cloud? Learn how to install and integrate an existing Active Directory infrastructure with Office 365 in this helpful guide. In 2010, Microsoft CEO Steve Ballmer famously staked out the company's cloud position years ago when he stated “for the cloud we're all in. ” To this end Microsoft continues to grow their cloud offerings with products such as Windows Server 2012, SQL Azure, and Office 365. And as time goes on, more organizations are integrating these solutions into their IT strategy. Because of the sheer amount of functionality provided, Office 365 has become one of Microsoft’s hottest cloud products. There is, however, still the challenge of implementing it. Few, if any, organizations with existing Active Directory (AD) infrastructures will dump everything and move entirely to the cloud overnight. The reality is that organizations need a solution that integrates their existing Active Directory infrastructure with Office 365, allowing them to leverage Office 365 features such as Exchange Online while still managing their AD users, groups, etc. , in-house. Don’t fret! Microsoft has provided the tools required to do exactly that. This is a three-part series. In this first article I'll walk you through downloading and installing Active Directory Federation Services 2. 0. In part two, we'll complete federation and get everything ready for Single Sign-On. And in part three, I'll show you how to activate local Active Directory synchronization with Office 365. Installing Active Directory Federation Services 2. 0 Beyond just managing users locally, enterprises want users to have a seamless experience. Key to this is providing a system that allows the user to authenticate once against the... --- ### Introduction to VMware Horizon Suite > Meet VMware's Horizon Suite, a client for end-user computing (EUC). Discover the Horizon Suite's components, and why you should consider using it. - Published: 2013-03-11 - Modified: 2024-12-03 - URL: https://petri.com/introduction-vmware-horizon-suite/ - Categories: VMware - Tags: Horizon, Horizon Suite, Horizon View - Article Type: Overview Meet VMware's Horizon Suite, a client for end-user computing (EUC). Discover the Horizon Suite's components, and why you should consider using it. The recently announced VMware Horizon Suite is all about end-user computing, or EUC. While the Horizon Suite is for end users, that doesn't mean that it has nothing to do with the datacenter. In fact, a large portion of the Horizon Suite is going to run in the datacenter as virtualized applications and desktops that are then presented to the end users over the network. While VMware offers a number of different Horizon products (like the Horizon Mail Android app) what you should think of when you think of Horizon is the VMware Horizon Suite. The suite is made of up three different but related end-user computing solutions: Horizon View, Horizon Mirage, and Horizon Workspace. Let's look at them, one at a time... VMware Horizon View VMware's popular VDI solution has been renamed from simply "VMware View" to "VMware Horizon View" to make it a core piece of the new Horizon Suite (nothing else has changed, however). If you are unfamiliar with Horizon View, it provides: Pooled virtual desktops that run on VMware vSphere The PCoIP remote display protocol for WAN-optimized, compressed display of virtual desktops Application virtualization with ThinApp for packaging apps so that they don't have to be installed and can be easily updated   End users can access their virtual desktop -- running in the data center -- using Horizon view clients such as zero client hardware devices and Mac, Android, and iPad clients. While mass pools of identical desktops are used at some companies, more typically... --- ### Five PowerShell 3.0 Tips & Tricks > PowerShell 3.0 packs a punch! Discover our five must-have Powershell 3.0 tips. - Published: 2013-03-07 - Modified: 2024-09-04 - URL: https://petri.com/powershell-3-tips/ - Categories: PowerShell - Tags: Beginner, cmdlets, PowerShell 3.0 - Article Type: Overview PowerShell 3.0 packs a punch! Discover our five must-have Powershell 3.0 tips. PowerShell 3. 0 includes a wealth of new functionality. In fact, it may be a bit overwhelming to know where to begin. So allow me to share five of my favorite PowerShell 3. 0 tips and tricks. These are items that I think can make you more productive or are just plain fun to use. They may also finally convince you to jump to the latest version if you’ve been sitting on the fence. 1. Default Parameter Values If you find yourself always using the same parameter value for a given cmdlet, you can now set it as a default, reducing the amount of typing you need at the console. For example, you might run a command like this because you always want to set Format-Wide to 3 columns. PS C:> get-process | format-wide –column 3 Or perhaps you always like to use –Autosize with Format-Table. PS C:> get-service m* | format-table Name,Displayname,Status -AutoSize Now you can store these default values in a new variable called PSDefaultParameterValues. The variable doesn’t exist by default but PowerShell will look for it. To use, create a hashtable where the key is the name uses the form “:”. PS C:> $PSDefaultParameterValues = @{'Format-Wide:Column'=3 ; 'Format-Table:Autosize'=$True} PS C:> $PSDefaultParameterValues Name                           Value ----                           ----- Format-Wide:Column             3 Format-Table:Autosize          True Now you can run the commands again and they will automatically use these values. PS C:> get-process | format-wide PS C:> get-service m* | format-table Name,Displayname,Status If you want to use a different value, simply specify... --- ### Generate Test Data for Exchange 2010 Using PowerShell: Simulate User Logons > You know you should make a test environment, right? Learn to create test data for Exchange 2010 using PowerShell in part one of this two-part series. - Published: 2013-03-06 - Modified: 2024-09-04 - URL: https://petri.com/generate-test-data-exchange-2010-powershell-user-logon/ - Categories: Exchange 2010 - Tags: Advanced, cmdlets, Exchange 2010, Outlook Web Access, owa - Article Type: How To You know you should make a test environment, right? Learn to create test data for Exchange 2010 using PowerShell in part one of this two-part series. Hopefully, you already know of the importance of maintaining a test environment. One of the challenges is configuring your test or lab setting as close to your production environment as possible. Or, at the very least having data so that when you run a command, there is a tangible or measurable result. AI practically live in a test environment, so I’ve had to come up with a variety of tools, tricks, and code to create more of a real-world environment. In this article I want to focus on Exchange -- specifically, generating test data for Exchange 2010 using PowerShell. One piece of test data I’d like to have is a user logon so that when I run a cmdlet like Get-MailboxStatistic, the LastLogonTime property has a value. Of course, I don’t want to have to manually log into the Exchange server with each test user account. There is a Test-OWAConnectivity cmdlet that I could also use. But again, I would have to manually enter credentials. I have over 100 mailbox-enabled users, so that isn’t very practical. Instead I’m going to turn to PowerShell 3. 0 and take advantage of the new web cmdlets. This article is a two-parter: In this first article, I'll discuss how to simulate user logons. In part two, I'll talk about sending mail messages. Creating Test Data: Log onto Outlook Web Access I can meet my goals by logging into Outlook Web Access (OWA) from my client desktop using the new Invoke-WebRequest cmdlet. The tricky... --- ### Exchange Administrator Tools, Tips, and Tricks > Every Exchange admin needs a toolbox. Check out our list of the top Exchange tools and resources. - Published: 2013-03-05 - Modified: 2024-11-19 - URL: https://petri.com/exchange-administrator-tools-tips/ - Categories: Exchange Server - Article Type: Overview Every Exchange admin needs a toolbox. Check out our list of the top Exchange tools and resources. We’ve all been there: Those days when you have a problem on the server but can’t quite figure out how to fix it, and the IT director is breathing down your neck to get the issue resolved. Whether you’re running a small setup or running several DAGs stretched across multiple datacenters, working as an Exchange administrator can be challenging. To make matters worse, you may not have the right tools or know where to go for troubleshooting information. To help ease the stress, I’ve compiled a list of items that a new or seasoned Exchange administrator may want to have in their tool bag. Top Exchange Administrator Tools and Resources The Exchange Team Blog – The official Microsoft Exchange Team blog, where you can get the latest information on all things Exchange, good or bad. There are postings about the latest updates, reported issues, and best-practice guides. You'll definitely want to bookmark this site to bookmark or subscribe to the RSS feed. PFDAVAdmin – PFDAVAdmin is a tool that can be used to perform tasks on public folders and mailboxes in Exchange 2000, 2003, and 2007. If you’re looking for a tool that checks permissions of your Public Folders and can propagate permissions down to subfolders, then this is the must-have tool. Personally, I think this is a great tool to manage bulk permissions and replicas for Public Folders. The interface is simple, very easy to use, and it can be installed locally on your workstation. PFDAVAdmin... --- ### Petri's Top 10 Windows Server 2012 Articles > Check out some of our favorite Windows Server 2012 articles that have appeared on Petri IT Knowledgebase. - Published: 2013-03-04 - Modified: 2024-09-04 - URL: https://petri.com/top-windows-server-2012-articles/ - Categories: Windows Server 2012 - Article Type: Overview Check out some of our readers' favorite Windows Server 2012 articles that have appeared on Petri IT Knowledgebase. Windows Server 2012 has been available for several months now, and many IT departments are considering making the switch to Microsoft latest (and arguably greatest) server OS ever. We've written a fair amount about Windows Server 2012 over the last year, so I thought it would be useful to round up our most popular articles here on the Petri IT Knowledgebase and present them in one blog post for ease of bookmarking, emailing, and sharing with your colleagues. These articles were picked mainly as being those that received the most web traffic, but we've also included some that received an impressive number of likes, shares, and retweets. If you have a favorite Windows Server 2012 article on the Petri IT Knowledgebase -- or on other sites as well -- feel free to share the wealth by adding a comment to the end of this blog post. 1. Windows Server 2012: First Five Fixes Have you just finishing installing Windows Server 2012? Our own Jeff Hicks shows you the first five things you should do with that fresh install to optimize it for your work environment. In this article, Hicks shows you how to enable PowerShell remoting, run best practice analyzers, and perform other PowerShell-friendly tasks. 2. Switching Between GUI and Server Core in Windows Server 2012 Server Core is a fantastic feature of Windows Server 2012, allowing you to only install only the OS features you need to minimize resource usage and reduce your security footprint. The... --- ### The Friday Funny: The Best T-Shirts at #RSAC 2013 > Looking for the best T-shirts spotted at the RSA Conference? We've got you covered with this handy list of the top tees seen at the event. - Published: 2013-03-01 - Modified: 2024-09-04 - URL: https://petri.com/the-friday-funny-the-best-t-shirts-at-rsac/ - Categories: The Friday Funny - Tags: #RSAC, RSA, RSA Conference, T-Shirt, tshirt - Article Type: Overview Looking for the best T-shirts spotted at the RSA Conference? We've got you covered with this handy list of the top tees seen at the event. I've been at the RSA Conference 2013 for most of this week, and like many attendees, I've listened to my share of sessions, met a few dozen very smart people, posted a few articles, and made an appearance at a number of vendor receptions and parties. One of my favorite pastimes at every trade show is to observe the lengths to which some vendors will go to get attendees to come by their booths and hear their sales pitch, and this year's RSA Conference is no exception. One of the most effective and time-honored ways for conference exhibitors to attract attention is by giving out free t-shirts. While some vendors go the safe, boring route -- a t-shirt with a company logo -- others go the extra mile by creating clothing that provides a witty commentary on the event or the industry itself. So I've gathered up a few of the better t-shirts I've seen at the show, culled from my own first-hand observation and some perusing of the #RSAC Twitter hashtag. If you're an #RSAC attendee that would like to point out a shirt I've missed -- or you represent a vendor and think your shirt is noteworthy enough to make the cut -- drop me an email, add a comment to this post, or reach out to me on Twitter. I'll be glad to add your shirt photo along with a link to your Twitter account and a hearty hat tip in your direction. RSA 2013: nCircle T-Shirts... --- ### RSAC: Microsoft Touts Windows 8 Support for Latest Hardware Security Options > Some new hardware security options are hitting the market, and Microsoft used the RSA Conference as a backdrop to discuss how Windows 8 will support them. - Published: 2013-02-28 - Modified: 2024-09-04 - URL: https://petri.com/rsac-microsoft-touts-windows-8-support-for-latest-hardware-security-options/ - Categories: Security - Tags: #RSAC, Microsoft, RSA, RSA Conference 2013 - Article Type: News Some new hardware security options are hitting the market, and Microsoft used the RSA Conference as a backdrop to discuss how Windows 8 will support them. At the RSA Conference I recently sat down for an interview with Microsoft's Chris Hallum, a senior product manager who deals with client security for Windows 8. During our interview Chris provided some additional details about some of the security features that are exclusive to Windows 8, and explained how Microsoft is adopting a security strategy for Windows 8 that revolves around malware resistance, data protection, and modern access control. Hallum also suggested that mobile devices running Windows 8 -- including Surface RT and Surface Pro tablets, as well as other mobile devices running Windows RT and various editions of Windows -- would help increase adoption of Windows 8 in the enterprise. "BYOD is the tip of the spear for Windows 8," Hallum said. "Administrators also need to have the mentality that it's not just about one OS , such as Windows 8, but many of them. " Hallum said that businesses of all sizes are now using multiple OSes and devices, from iOS and Android devices on mobile devices to desktop and laptop clients with Windows 7. Hallum's commits underscore Microsoft's current approach of being an amicable corporate citizen and playing well with other OSes and devices. Microsoft's "Three Pillars" Approach to Windows 8 Client Security We then discussed the approach Microsoft is taking with Windows 8 security efforts, and Hallum explained that Microsoft is grouping their Windows 8 client security strategy into three broad areas: Malware resistance, data protection, and modern access control.  ... --- ### SubInACL: Setting Permissions > SubInACL is a tool worth keeping in your admin toolbelt. Learn to set permissions in SubInACL in this helpful tutorial. - Published: 2013-02-28 - Modified: 2024-09-04 - URL: https://petri.com/subinacl-setting-permissions/ - Categories: Security - Tags: SubInACL, subinacl.exe - Article Type: Overview SubInACL is a tool worth keeping in your admin toolbelt. Learn to set permissions in SubInACL in this helpful tutorial. In a previous article, "SubInACL: Download and Deployment," I introduced you to a legacy command line tools from Microsoft called subInAcl. exe. While this tool doesn’t appear to be supported on anything after Windows Server 2003, I’ve rarely run into problems with it, and sometimes it is exactly what I need to handle a tricky permission automation task. Sometimes the old ways are still the best ways. SubInACL Permission Types You can use subinacl. exe to manage permissions on a variety of object types. The permission setting varies depending on the object. You can find the permission values with this command. ​ C:> subinacl /help /grant In the screen shot, I am running subinacl. exe from a network share. All I had to do was copy just the exe file.   In order for this to work, I am running the CMD session with elevated privileges. Use the correct permission abbreviation for the object you wish to manage. SubInACL File Share Example From my Windows 8 system, I can see the current share permission for CHI-FP01Sales. ​ C:Windowssystem32>chi-fp01itsubinacl /share chi-fp01sales   I want to remove the Everyone group and grant the Chicago Sales Users group change permission. I can do this with a single command: ​ C:Windowssystem32>chi-fp01itsubinacl /share chi-fp01sales /revoke=Everyone /grant="globomanticschicago sales users"=C From PowerShell I can quickly verify this change. ​ PS C:> invoke-command {net share Sales} -ComputerName chi-fp01 Share name        Sales Path              c:sharesSales Remark Maximum users     No limit Users Caching           Manual caching of documents Permission        BUILTINAdministrators, FULL GLOBOMANTICSchicago... --- ### Cisco Express Forwarding (CEF): An Overview > Learn about basic Cisco Express Forwarding (CEF) concepts, including the Forwarding Information Base (FIB), the Adjacency Table, dCEF, and more. - Published: 2013-02-27 - Modified: 2024-09-04 - URL: https://petri.com/cisco-express-forwarding-cef-overview/ - Categories: Cisco - Tags: CEF, cisco express forwarding, dCEF - Article Type: Overview Learn about basic Cisco Express Forwarding (CEF) concepts, including the Forwarding Information Base (FIB), the Adjacency Table, dCEF, and more. Cisco Express Forwarding (CEF) is a packet-switching technique that is the default for many of Cisco’s router lines over the last ten years. It provides the ability to switch packets through a device in a very quick efficient way while also keeping the load on the router’s processor low. This way the route process can be tasked with dealing with other duties that require larger amounts of processor time (Quality of Service, Encryption, etc. ). This article takes a brief look at the different structures that are used by CEF and how they are built and interrelate. Cisco Express Forwarding Concepts Cisco Express Forwarding is made up of two different main components: the Forwarding Information Base (FIB) and the Adjacency Table. These are automatically updated at the same time as the routing table. Let's look into these a little further. Forwarding Information Base (FIB) The FIB contains destination reachability information as well as next hop information. This information is then used by the router to make forwarding decisions. The FIB is organized as a multiway trie which allows for very efficient and easy lookups. There is a one-to-one relationship between the routes that exist within the routing table and the FIB. Adjacency Table The FIB is combined along with an adjacency table. For a node to be considered adjacent it must be reachable within a single hop of the data link layer (e. g. ethernet hop). The adjacency table is tasked with maintaining the layer... --- ### RSAC: Microsoft Makes Case for "Security Optimism" > Microsoft Corporate Vice President Scott Charney used his RSA Conference keynote to argue that the security industry has made great strides in recent years. - Published: 2013-02-26 - Modified: 2024-11-19 - URL: https://petri.com/rsac-microsoft-makes-case-for-security-optimism/ - Categories: Security - Tags: #RSAC, RSA, RSA Conference 2013, Trustworthy Computing - Article Type: News Microsoft Corporate Vice President Scott Charney used his RSA Conference keynote to argue that the security industry has made great strides in recent years. Speaking to a large crowd of security professionals at the RSA Conference 2013 in San Francisco this morning, Microsoft Corporate Vice President of Trustworthy Computing Scott Charney argued that despite the almost daily reports of data breaches and cyberattacks on companies and governments that the audience was getting accustomed to reading about, the security industry had made great strides towards combating cyber attacks in recent years. In a blog post timed to coincide with his RSA keynote, Charney writes that the industry is much more well prepared than the constant drumbeat of headlines discussing cyber attacks and data breaches. "In the midst of sometimes provocative headlines, the tangible progress being made to advance the industry is often overlooked... however look at the breadth of the good work that industry and government is doing, I’m encouraged. " A slide from Charney's RSA Conference 2013 keynote, visually demonstrating aspects of Microsoft's Trustworthy Computing model. Charney lumped the areas the industry had made progress in into three large groups, which he dubbed fundamentals, influences, and management. Fundamentals cover how computers, smartphones and tablets are engineered and added to an IT infrastructure, while influences deal with outside forces -- like the larger economy, state, federal, national, and international politics -- that have an impact on IT security. Management is focused on the basic blocking and tackling of security operations, and Charney made the case that great strides have been made in all of these areas. Charney mentioned the Unified... --- ### Increase Storage Space with a Surface Pro Recovery USB Stick > Unhappy with your new Microsoft Surface Pro's lack of storage space? Learn to increase storage with a recovery USB stick. - Published: 2013-02-26 - Modified: 2024-09-04 - URL: https://petri.com/increase-storage-surface-pro-recovery-usb/ - Categories: Backup & Storage - Tags: storage, Surface Pro, USB - Article Type: How To Unhappy with your new Microsoft Surface Pro's lack of storage space? Learn to increase storage with a recovery USB stick. The Surface Pro is Microsoft’s hot new “hybrid” mobile device. I put hybrid in quotes because the Surface Pro is really not a tablet nor is it an ultrabook -- in fact, many consider it the best of both worlds. One of the traits it shares with tablets is the fixed on-board storage. The Surface Pro currently comes with either 64GB or 128GB. Unfortunately, after you subtract the space used by Windows 8, along with that used by the hidden recovery image, the reality is quite different. For instance, fresh out of the box my shiny new Surface Pro only had 29. 8GB available on the C: drive! In this article, I'll show you how to get around this problem by creating more storage space on your Surface Pro with a recovery USB stick. Ain't that a shame: My shiny new Surface Pro had only 29. 8GB available out of the box. We aren’t totally helpless in our fight to get more usable on-board storage space. One technique with a nice bang for the buck is to move the recovery partition off of the Surface Pro and onto a USB stick. In my case, by taking advantage of this process, I jumped from 29. 8GB all the way up to 37. 4GB of free space. Of course, recovery information is critical if you ever want to set your Surface Pro back to that nice, clean out-of-the-box state, so make sure you don’t lose the USB stick! Creating a Recovery USB stick... --- ### Best Windows 8 Deployment Tools > Deploying Windows 8 (and other Microsoft OSes) is easier than ever with the right tools! Read on for our list of favorite Windows 8 deployment tools. - Published: 2013-02-25 - Modified: 2024-12-03 - URL: https://petri.com/best-windows-8-deployment-tools/ - Categories: Windows 8 - Tags: ADK, deployment tools, mdt 2012 - Article Type: Overview ADK, MDT, WDS... IDK? Read on for our list of favorite Windows 8 deployment tools. Today, deploying Windows 8 (and other Microsoft OSes) is easier than ever with the help of Microsoft’s deployment tools. Better yet, most of them are still free, and they have matured a lot over the past few years. But there are so many different tools available, you may need to use two or maybe even three together to meet your deployment needs; in fact, this leads to the question I get asked most often at conferences: “Which deployment tool should I use? ” I understand why: Some tools have little documentation and others have too much. For example, the Windows Assessment and Deployment Kit (Windows ADK) has 10 pages of instruction covering installation alone! In this article, I'll provide a brief overview of the capabilities of some of my favorite Windows 8 deployment tools -- specifically Windows Assessment and Deployment Kit (Windows ADK), Microsoft Deployment Toolkit 2012 with Update 1, System Center Configuration Manager 2012 (CM), and Windows Deployment Service (WDS). I'll introduce the new features of each tool, and help you decide which tool/tools will meet your deployment needs. I’ll address specific business scenarios where each tool (or combination of tools) will provide the most robust deployment solution. Top Windows 8 Deployment Tools Thanks to my work over the last year providing Desktop Deployment Product Services (DDPS) engagements to Federal/State Government agencies and Fortune 100 companies, and I’ve reconsidered my answer to the deployment tool question. In the past I would have told you the best tool to... --- ### RSA Conference 2013 Survival Guide > Going to the RSA Conference 2013 in San Francisco next week? Here's a handy survival guide filled with tips to help you get the most out of the conference. - Published: 2013-02-21 - Modified: 2024-12-03 - URL: https://petri.com/rsa-conference-2013-survival-guide/ - Categories: Security - Tags: #RSAC, RSA Conference - Article Type: Overview Going to the RSA Conference 2013 in San Francisco next week? Here's a handy survival guide filled with tips to help you get the most out of the conference. The annual IT security extravaganza known as the RSA Conference is just a few days away, and IT and security professionals from all over the globe are getting ready to pack their bags and head to the Moscone Center in San Francisco for a week (Feb 24 - Mar 1) of concentrated IT security sessions, keynotes, product announcements, and networking with colleagues. I attended RSA in 2011 and 2012, and I'm looking forward to seeing what the big trends and stories are for 2013. Having attended a few RSA Conferences already, I thought I'd offer up some tips and advice on what should help make your RSA experience a more enjoyable one. I'd also love to hear your own tips, tricks, and suggestions for surviving RSA, so please add a comment to this blog post or drop me an email with your thoughts. We'll be posting live from the RSA Conference show floor throughout the week, so be sure to follow me on Twitter (@jeffjames3) and via the Petri IT Knowledgebase Twitter account (@petri_co_il) to get the latest security news, views, and observations from the show. Get the RSA Conference Mobile Apps The RSA Conference has traditionally been fairly good about providing mobile apps for conference planning, and this year is no exception. At the time of this writing, RSA Conference 2013 mobile apps are available for iOS (iPhone and iPad) and Android (tablet and smartphone) mobile devices. Sorry, Windows Phone and Blackberry owners: No dedicated RSA mobile... --- ### SubInACL: Download and Deployment > Managing security? Download subinacl.exe and learn how SubInACL is the Swiss Army knife of permissions management. - Published: 2013-02-21 - Modified: 2024-09-04 - URL: https://petri.com/subinacl-download-deployment/ - Categories: Security - Tags: SubInACL, subinacl.exe, Windows - Article Type: Overview Managing security? Download subinacl.exe and learn how SubInACL is the Swiss Army knife of permissions management. Managing security is probably the number-one headache for Windows administrators. Between the file system, registry, and services, IT Pros have their hands full managing access control, especially if they want to script from the command line. There are certainly a number of command line tools to manage these different areas, but because I’m an old-school kind of guy, I tend to fall back to an old resource kit tool: SubInACL, or subinacl. exe, the veritable Swiss Army knife when it comes to managing permissions. SubInACL: Download, Limitations, and Requirements Because it's not part of the operating system, you will first need to download the subinacl. axe tool. The download file is an MSI file which will install by default to C:Program Files (x86)Windows Resource KitsTools. The tool is a single file that you can move to C:WindowsSystem32 so that you always have access to it. ​ C:Program Files (x86)Windows Resource KitsTools>move subinacl. exe c:windowssystem32 Note: I need to point out that, officially, subinacl. exe is not supported on anything later than Windows Server 2003. But in my experience, I've never had a problem running it on newer operating systems. Still, I strongly recommend first testing in a non-production environment and understand that Microsoft may not be able to help you if you run into problems. To use subinacl. exe, the assumption is that you have administrator credentials. If you are delegating administration using subinacl. exe, you will need to make sure the account has the following privileges: SeBackupPrivilege (Back Up Files and Directories)... --- ### Windows Network Troubleshooting Tools > Troubled by tracert? Puzzled by ping? Learn about the most commonly used Windows troubleshooting tools. - Published: 2013-02-20 - Modified: 2024-09-04 - URL: https://petri.com/windows-network-troubleshooting-tools/ - Categories: Networking - Tags: ping command, tracert - Article Type: Overview Troubled by tracert? Puzzled by ping? Learn about the most commonly used Windows troubleshooting tools. For those just beginning their Windows networking careers, it is important to get to know some of the commonly used network troubleshooting tools. These tools can be very useful in troubleshooting both simple and complex problems -- and frankly, it can make a Windows network engineer's or administrator's life much easier. This article focuses on the introduction of some of these tools. Windows Network: Common Troubleshooting Tools ping The ping utility is one of the most commonly used network troubleshooting tools, largely because it is supported on a large number of platforms and devices. Its primary task is to determine whether a specific host is reachable; this is done via the Internet Control Message Protocol (ICMP). An echo ICMP packet is sent from a source device towards a destination device. Assuming there is nothing blocking the ICMP echo packet between the source and the destination, the destination device that is up will respond back to the source device with an ICMP echo reply packet. This assumption is often a problem, though, as many firewalls (host- and network-based) by default will block ICMP echo and echo reply packets. Related article: Using Ping and Traceroute for Network Troubleshooting tracert (traceroute) The tracert command (or traceroute on other platforms) is another very common network troubleshooting tool. It is used to trace a packet’s path from source to destination. The output from this command gives the issuer a list of devices that a packet will move through on its way to the... --- ### Exchange Server 2013 Hits and Misses > Interested in Exchange Server 2013? Check out our look the new, improved features of Exchange 2013 as well as its misses and gotchas. - Published: 2013-02-19 - Modified: 2024-09-04 - URL: https://petri.com/exchange-server-2013-hits-misses/ - Categories: Exchange 2013 - Tags: Editor's Pick, Exchange 2013 - Article Type: Opinion Interested in Exchange Server 2013? Check out our look the new, improved features as well as the misses and gotchas. Since the release of Exchange Server 2013 this past fall, there has been a lot of excitement surrounding the most recent version and many reasons to upgrade to it. The latest version has many nice new features but there are also some misses and gotchas that need to be considered before making the leap to Exchange Server 2013. The gotchas could be a dealbreakers for many upgrades. In this article, I'll go over some of Exchange 2013's new features -- for better or worse. Read more about Exchange 2013 in my previous Petri IT Knowledgebase article, "How to Install Exchange 2013. " Exchange 2013 Hits and New Features First off, let’s discuss some of the new features that are included in Exchange Server 2013. Improved Outlook Web App Offline mode allows users to connect when not connected to the network. In order to utilize the offline mode for Outlook Web App users should be running Internet Explorer 10. Offline Mode gives them ability to access their inbox, calendar, and any items in their drafts. Users can even delete emails and move messages around between folders, but searching and sorting of messages is not available in offline. Public folders can now be part of a DAG Public folders databases are just like regular mailbox databases rather than the traditional hierarchy and public folder content database design seen in previous versions. With the new design you can now manage public folders using the EAC rather than a separate Public folder... --- ### Top 10 Cisco IOS Configuration Mistakes > Learning Cisco IOS? Check out our list of the top Cisco IOS configuration mistakes and avoid these common errors. - Published: 2013-02-18 - Modified: 2013-02-18 - URL: https://petri.com/cisco-ios-configuration-mistakes/ - Categories: Cisco - Tags: Cisco IOS - Article Type: How To, Overview Learning Cisco IOS? Check out our list of the top Cisco IOS configuration mistakes and avoid these common errors. When first becoming familiar with Cisco’s Internetwork Operating System (IOS) there are a number of different things to learn, and with this learning process there are a number of common mistakes that are made. The purpose of this article is to cover the largest of these misconfigurations (from my perspective). This list is of course subjective, but it should provide a good reference for those learning Cisco IOS. Common Cisco IOS Configuration Mistakes 1. Password Verification One easily made mistake comes with the way that passwords are configured with IOS. Unlike almost every other password configuration tool available, the password commands on IOS do not confirm the password being entered. Imagine getting a new piece of equipment configured and put into the field, then later when remote management is required, attempting to access the device only to learn that the password was entered incorrectly. In most cases, the only way to fix this is to have you or someone else physically on-site. Take care when configuring IOS passwords to ensure the password is entered correctly. 2. Wildcard Masks Of the many people that learn IOS, a large number don’t quite understand the concept of a wildcard mask (or a mask generally). It can be difficult enough to learn the fundamentals of a simple subnet mask; add in access lists (ACL) and Open Shortest Path First (OSPF) configurations, and throw in wildcard masks. The thing to remember about wildcard masks is, like subnet masks, they are easier to... --- ### How to Export and Import PowerShell Scheduled Jobs > Learn to export and import scheduled jobs in PowerShell with this helpful guide. Download our ScheduledJobTools module as well! - Published: 2013-02-14 - Modified: 2024-09-04 - URL: https://petri.com/export-import-powershell-scheduled-jobs/ - Categories: PowerShell - Tags: Advanced, scheduled jobs - Article Type: How To Learn to export and import scheduled jobs in PowerShell with this helpful guide. Download our ScheduledJobTools module as well! In previous articles I’ve written about how to export scheduled tasks and import scheduled tasks in PowerShell. In those articles, I made mention about the potential downside to exporting and importing PowerShell scheduled jobs. A scheduled job is a new feature in PowerShell 3. 0 that allows you to set up a background job but register it with the task scheduler. Because this is a PowerShell feature, it is available on any computer running PowerShell 3. 0. Bear with me here: In order to understand why exporting and importing is a bit more difficult you need to understand how a scheduled job works. When you create a scheduled job from within PowerShell, the job definition is stored under your AppData folder. ​ PS C:> dir C:usersjeffappdatalocalMicrosoftWindowsPowerShellScheduledJobs Directory: C:usersjeffappdatalocalMicrosoftWindowsPowerShellScheduledJobs Mode                LastWriteTime     Length Name ----                -------------     ------ ---- d----         1/18/2013   2:11 PM            Demo Scheduled Job Within the folder is a scheduled job definition XML file. The task scheduler essentially loads the job definition into a PowerShell session and runs it. You can see the actual command by looking at the scheduled job. ​ PS C:> get-scheduledjob "Demo Scheduled Job" | select PS* | format-list PSExecutionPath : powershell. exe PSExecutionArgs : -NoLogo -NonInteractive -WindowStyle Hidden -Command "Import-Module PSScheduledJob; $jobDef = ::LoadFrom Store('Demo Scheduled Job', 'C:UsersJeffAppDataLocal MicrosoftWindowsPowerShellScheduledJobs');$jobDef. Run" To export this job and import it on another machine would mean getting the files and folders in ScheduledJobs and recreate it. Frankly, that is too much work. I also wouldn’t be able to automatically recreate... --- ### Monster Microsoft Patch Tuesday Release Squashes 57 Bugs > Microsoft's monthly 'Patch Tuesday' update was made available yesterday and addresses a whopping 57 separate security vulnerabilities. - Published: 2013-02-13 - Modified: 2013-02-13 - URL: https://petri.com/monster-microsoft-patch-tuesday-release-squashes-57-bugs/ - Categories: Security - Tags: Patch Tuesday - Article Type: News Microsoft's monthly 'Patch Tuesday' update was made available yesterday and addresses a whopping 57 separate security vulnerabilities. Microsoft's monthly 'Patch Tuesday' update -- which occurs every second Tuesday each month -- was made available yesterday, and addresses a whopping 57 separate security vulnerabilities in the form of 12 separate security bulletins, and spans dozens of Microsoft platforms and products, including Windows Server, various Windows client OSes, and Internet Explorer. Microsoft outlined all of the separate bulletins in their Security Bulletin for February 2013, and rated five of the bulletins as critical and seven of them as important. Due to the size and severity of the issues being patched, many security experts have said that this is one of the largest and most significant Patch Tuesday updates in recent memory. According to Chester Wisniewski, a Senior Security Advisor at Sophos Canada, the first bulletin -- MS13-009 - Cumulative Security Update for Internet Explorer -- is the most important. "This patch fixes 13 privately disclosed vulnerabilities in Internet Explorer that could result in remote code execution (RCE)," Wisniewski writes in the Sophos Naked Security blog. "In more simple terms, browsing to a malicious web site could result in malware being installed on your computer. Often the distinction between privately and publicly disclosed vulnerabilities can make a difference as to the urgency of applying the fix. In this case, despite the bugs being privately disclosed Microsoft is warning that exploitation in the wild is imminent. " Wolfgang Kandek, CTO of cloud security provider Qualys, thinks that the second most significant bulletin is MS13-010 -... --- ### Windows Server 2012 Essentials: Configuration > Learn how to configure Windows Server 2012 Essentials as well as Anywhere Access and backup configuration in this tutorial by IT pro Peter de Tender. - Published: 2013-02-13 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-essentials-configuration/ - Categories: Windows Server - Tags: Office 365, windows server 2012 essentials - Article Type: Overview Learn how to configure Windows Server 2012 Essentials as well as run through backup and Anywhere Access configuration and user management. My first steps with Windows Small Business Server started around 1998 with SBS4. 0 running on top of Windows Server NT4. I've loved the product ever since, even as I became more experienced in the Windows and Exchange Server world and my implementation projects and the customers’ environments outgrew the target audience for Small Business Server. Eventually, I looked down on this server version -- it contained too much wizards and was way too easy to use -- but that is a bit unfair. After all, easier is almost always better, right? Not so fast! In this article, I'll walk you through the steps to configure Windows Server 2012 Essentials, how to use the Office365 Configuration Wizard. I'll also show you how to run through Windows Server 2012 Essentials backup and Anywhere Access configuration and user management. Background Info Now Windows Small Business Server is called Windows Server 2012 Essentials, and this product is the target server platform for small and medium businesses having anywhere between 5-50 users. Technically, it always contained a full version of Windows Server, and it could be configured as Domain Controller, Exchange Server, File and Print Server, Terminal Server, etc. A lot of customers and SMB partners were hoping for an SBS2012 edition with Windows Server 2012 and Exchange Server 2013 as its key components, but alas, it doesn't include those components. Windows Server 2012 is there, and a lot of (non-IT) user-friendly wizards have been migrated to the new Windows UI interface... --- ### Microsoft Surface Pro: Unboxing and First Impressions > We take an initial look at Microsoft's new Surface Pro with Windows 8 Professional. Learn how it compares to the Microsoft's Surface RT out of the box. - Published: 2013-02-12 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-surface-pro-first-impressions/ - Categories: Windows 8 - Tags: Microsoft Surface, Microsoft Surface Pro - Article Type: Review We take an initial look at Microsoft's new Surface Pro with Windows 8 Professional. Learn how it compares to the Microsoft's Surface RT out of the box. When the Surface RT was released a few months ago, I was excited to dive in and see for myself if Microsoft really had created a device to compete with the venerable iPad. I feverishly unboxed mine on launch day and have been putting it through its paces ever since. Unfortunately, it's been proven to me that the Surface RT is no iPad killer. Sure it’s a good device, but it’ll take more than "good" to dethrone the reigning champ. Today is a new day as Microsoft has brought forth the Microsoft Surface Pro -- and potentially introduced a true contender in the battle for tablet market share. Read More: Microsoft Surface RT Review Microsoft Surface Pro: Out of the Box I purchased my 64GB Surface Pro from the brick-and-mortar Microsoft Store in Beachwood, Ohio. By 11 am on launch day they had already sold out of the 128GB model and were running low on the 64GB. Store employees Jed and Zach took excellent care of me and threw in a 64GB Kingston SDXC card, saving me a $100. 00 and getting me the 128GB of space I wanted. I also decided to take advantage of a bundle being offered that added an Incipio screen protector and device sleeve along with a year of Office 365 and a Type Cover. All told I walked out of the store with my wallet a little over $1,200. 00 lighter, anxious to determine whether I had made a good investment or not... . --- ### Printing from iOS Devices to non-AirPrint Printers > Make printing from an iPad or iPhone a snap! Learn how to print from iOS devices using the Lantronix xPrintServer non-AirPrint Printer. - Published: 2013-02-12 - Modified: 2024-09-04 - URL: https://petri.com/printing-ios-devices-non-airprint-printers/ - Categories: Office - Tags: iOS, Lantronix xPrintServer, Print Management - Article Type: Overview Make printing from an iPad or iPhone a snap! Learn how to print from iOS devices using the Lantronix xPrintServer non-AirPrint Printer. Lately it seems that iOS devices are almost as ubiquitous as good old PCs. I’d even bet that between all the iPhones, iPads, and iPad Minis, that some people believe these little devices really have killed the PC. Shying away from this debate, I’ll make a slightly less charged statement: No matter how you look at it, some tasks are just easier to do on a PC instead of an iPhone or iPad. Case in point: printing. That is... it used to be a case in point. Printing Sans AirPrint: the xPrintServer Solution Sure, iOS has AirPrint. This built-in technology has been around since iOS 4. 2, and it has been improving ever since. When the conditions are right, printing from an iOS device through AirPrint couldn’t be simpler. Unfortunately, even with growing printer support, it’s more likely than not conditions won’t be right for AirPrint. First off, sure there are a ton of new AirPrint compatible printers on the market. That’s nice, but what organization or even home user wants to run out and buy a new printer when they have a perfectly good printer (or oodles of them) sitting on his or her desk? What’s the answer? An extremely elegant, simple, and reliable answer to the problem of printing from iOS devices to non-AirPrint printers comes from the brilliant team over at Lantronix: the xPrintServer. This small device, roughly the shape of an iPhone 5 but about three times the thickness, plugs into your network, discovers... --- ### Setting Out of Office (OOF) for Another User in Exchange 2010 > Learn how to configure the Out of Office (OOF) message for any user with the Exchange Management Shell. - Published: 2013-02-11 - Modified: 2024-09-04 - URL: https://petri.com/set-out-of-office-for-another-user-exchange-2010/ - Categories: Exchange 2010 - Tags: ems, Exchange Management Shell, Microsoft Outlook, Out of Office - Article Type: How To Learn how to configure the Out of Office (OOF) message for any user with the Exchange Management Shell. It's a common scenario: a user goes on holiday but forgets to turn on their Out of Office (OOF) message in Outlook, so you have been asked to do it for them. One solution is just to reset their password so you can log in to Outlook Web App as them and do it, but this has several drawbacks, including the fact that they won't be able to logon again until they return to the office. Prior to Exchange 2010 the only other option was to give yourself full mailbox access rights and create a new Outlook profile for their mailbox, but again in some organizations this may contravene security and HR policies. However, with Exchange 2010 Microsoft added a new Exchange Management Shell command that lets you configure a user's OOF settings. What our user should have done! Setting the OOF Message: Preparation First of all, the user account you are using for this administration task must at least be assigned the Server Management role on the Exchange 2010 Server where the specific user's mailbox is located. In smaller organizations you will probably use an Exchange administrator account, so you will have this role anyway, but it can be delegated to other users with the Exchange Role Based Access Control (RBAC) feature. Now, before you start you should make sure you have collected the following information: Identity -- This can be the alias, username, or SMTP address of the OOF user. End Date -- We can assume that... --- ### Take the Petri IT Knowledgebase Reader Survey for a Chance to Win a $100 Amazon Gift Card > Fill out the Petri IT Knowledgebase reader survey for a chance to win one of five $100 Amazon gift cards. Tell us what you think! - Published: 2013-02-07 - Modified: 2013-02-07 - URL: https://petri.com/petri-it-knowledgebase-reader-survey/ - Categories: Windows Server - Tags: Reader Survey - Article Type: News Fill out the Petri IT Knowledgebase reader survey for a chance to win one of five $100 Amazon gift cards. Tell us what you think! I've been lucky enough to cover the technology industry from a variety of perspectives for a good chunk of my adult life, and I've had the opportunity to talk with lots of smart industry executives and see many exciting new products come and go. Yet the thing that has always brought me the most satisfaction is getting to meet and interact with the system administrators and other IT professionals who are in the trenches, doing the daily work of keeping our servers running, the email flowing, and our favorite websites online. Enter Now: Take the Petri IT Knowledgebase Reader Survey That's why I'm happy to announce our latest reader survey. Our primary goal is to provide readers with the news, how-to articles, and useful tutorials that they need to do their jobs more effectively, and we'd like your input on what topics we should be covering and what types of content you'd like to see us produce. So I hope you'll take some time out of your busy day to fill out our Petri IT Knowledgebase reader survey and let us know what you think. We'll also be giving away five $100 Amazon gift cards to random survey respondents as a thank you for your participation. Prize winners will be announced on March 1st, 2013 via blog post on the petri. com website, on our Twitter feed,  and on our  Facebook page. Would you like to see us cover some IT topics more often? Drop me an email and share the... --- ### Import Scheduled Tasks with PowerShell > You've learned to export scheduled tasks, but what's next? Learn to import scheduled tasks using PowerShell, SchTasks.exe and Microsoft Management Console. - Published: 2013-02-07 - Modified: 2024-09-04 - URL: https://petri.com/import-scheduled-tasks-powershell/ - Categories: PowerShell - Tags: Advanced, microsoft management console, scheduled tasks - Article Type: How To You've learned to export scheduled tasks, but what's next? Learn to import scheduled tasks using PowerShell, SchTasks.exe and Microsoft Management Console. In the previous article we looked at how to export scheduled tasks using PowerShell and Microsoft Management Console. In it, I exported a task on my Windows 8 machine that creates a weekly report using SystemInfo. exe. I exported the task to an XML file and stored it on a file share. Naturally, the next step is to import the scheduled task using Management Console, SchTasks. exe, and PowerShell. Importing Scheduled Tasks: Microsoft Management Console You can manually import a task into any system running the “new” task scheduler (i. e. Vista and later). On my Windows 2008 R2 server, I’ll navigate to the task scheduler folder where I want to import the task. From here, I can either right-click and select Import Task from the context menu or use the Import Task action. I’ve highlighted the action below in Figure 1. Next, I’ll navigate to the folder where I saved the exported XML definition and select it. The import process will display the task properties as you can see below in Figure 3. This is actually helpful as it allows me an opportunity to customize the task for this system. After clicking OK I’ll be prompted to enter the credential password. But now my task is ready to go! Importing Scheduled Tasks: SchTasks. exe The server CHI-FP01 is running PowerShell 3. 0 but it is only Windows Server 2008 R2, which means I can’t use PowerShell to import the task. However, I can still use the venerable command line tool SchTasks. exe. The /XML... --- ### How to Install Exchange Server 2013 > Installing Exchange Server 2013 isn't too different from previous versions, but beware of some gotchas. Learn more in our guide to installing Exchange 2013. - Published: 2013-02-06 - Modified: 2024-09-04 - URL: https://petri.com/how-to-install-exchange-server-2013/ - Categories: Exchange 2013 - Tags: Editor's Pick, Exchange 2013 - Article Type: How To Installing Exchange Server 2013 isn't too different from previous versions, but beware of some gotchas. Learn more in our guide to installing Exchange 2013. Exchange Server 2013: Many IT pros have either already started testing it or are thinking about it. Now, it's a good idea to test the installation and configuration beforehand to see all the gotchas. Having installed previous versions of Exchange Servers many times through the years, I always recommend setting up a test lab where you can go through the installation at least once to familiarize yourself with the process. Exchange Server 2013 is no different than the previous versions in that it has its own set of gotchas. In this article I'll walk through the installation instructions for Exchange Server 2013 -- and point out a few things that can easily be missed if you don’t follow all pre-installation instructions. Before Installing Exchange 2013 Prior to the installation of Exchange server 2013, I highly recommend that you read over the prerequisites, as there are many depending on the the OS version that you are running and what roles you are intending to install. Exchange Server 2013 is supported to run on Windows server 2008 R2 Standard (non DAG servers), Enterprise (DAG server role), and Windows Server 2012 standard/Datacenter editions. Keep in mind that with any Exchange installation in an existing Active Directory site, the install will require some schema updates to your Active Directory. The lab I used to test Exchange Server 2013 had an existing Windows server 2008 Active Directory with the forest functional level at 2008. Prior to any installation in production you should... --- ### How to Enable an Administrator Account in Windows 8 > Need to enable an active administrator account in Windows 8? Read on to find easy how-to instructions. - Published: 2013-02-05 - Modified: 2024-09-04 - URL: https://petri.com/enable-administrator-account-windows-8/ - Categories: Windows 8 - Tags: administrator account - Article Type: How To Logged into a Windows 8 client that doesn’t have an active administrator account? Read this article to find out how to enable one. As is the case with previous versions of Windows, you may find yourself in a situation where you’re logged into a Windows 8 client (Professional or Enterprise Edition)  that doesn’t have an active administrator account. Thankfully, activating the account is a straightforward process. (For more, see our previous articles: “3 Ways to Enable the Built-In Windows 7 Administrator Account," "Adding the Administrator’s Account to the Vista Welcome Screen," and "Add the Administrator’s Account to the Welcome Screen in XP Pro. ") Enabling an Administrator Account in Win8 You’ll first need to open an elevated command prompt in Windows 8. This will allow you to open up a command prompt as an administrator, even if you’re not logged in as one. Let’s walk through the process step-by-step. 1. While logged in to either the Windows 8 Start Screen or the traditional desktop, use the Windows Key + X keyboard shortcut to open up the Windows 8 Quick Access Menu. 2. Select Command Prompt (Admin). Figure 1: The Windows 8 Quick Access Menu, activated by using Windows Key + X   3. Depending on your UAC settings for Windows 8, you may get a user access control dialog box like the one shown below in Figure 2. Click Yes if the prompt appears. Figure 2: Windows 8 User Account Control window   4. Type lusrmgr. msc in the newly-opened command prompt window and press Enter. Figure 3: The Windows 8 command prompt   5. A window entitled... --- ### Recover Data from a Dead PC with USMT: Migration > Don't be dour over a dead PC! Migrate recovered user data from a fried computer with this helpful guide. - Published: 2013-02-04 - Modified: 2024-09-04 - URL: https://petri.com/recover-data-dead-pc-usmt-migratio/ - Categories: Windows Client OS - Tags: data recovery, User State Migration Tool, USMT - Article Type: How To Don't be dour over a dead PC! Migrate recovered user data from a fried computer with this helpful guide. We're back with our discussion of utilizing Microsoft’s User State Migration Tool (USMT) as a means to save user files and settings from a failed PC. In the first article we installed the USMT and built custom XML files to control how the tool works. In this final article we'll work on deployment and migration: bring everything together, run the tools, and get the user up and running on a new PC with their data intact. Migrating Data for Multiple Users In the first article, we left off with the ScanState tool and its basic command line structure. But before continuing, recall that the USMT files were moved into the C:USMT folder to simplify the command lines. Keeping that in mind, the basic syntax is: scanstate {path to create migration store} /offlineWinDir:{drive letter of hard drive from old PC} /l:C:USMTscanstate. log /progress:C:USMTscanprogress. log /i:MigApp. xml /i:MigUser. xml /i:C:USMTExcludeDrive. xml /i:C:USMTInclude. xml /o /v:5 For the curious, here’s background on some of what’s going on in this command line: The . log files keep track of what ScanState. exe does, and they're handy in the event there’s a problem. The /o switch is a safety net of sorts, telling the system to overwrite data in the storage location known as the Migration Store (if the Migration Store already exists). If data exists in the Migration Store and the /o switch isn’t used, then ScanState. exe fails. The /v switch just sets the logging level for the log files. The /v:5 option sets the logging level to include... --- ### Recover Data from a Dead PC with USMT: Installation > Learn to retrieve user files and settings from a fizzled-out PC using User State Migration Tool (USMT) in this helpful guide. - Published: 2013-01-31 - Modified: 2024-09-04 - URL: https://petri.com/recover-data-dead-pc-usmt-installation/ - Categories: Windows Client OS - Article Type: How To Need to raise your user data from the dead? Learn to recover data from a fried PC using User State Migration Tool (USMT). Data is what makes a PC so important. We can all agree on that, right? Unfortunately, there are almost countless reasons a PC could become unusable, cutting off a user from the data they’ve spent innumerable hours creating. Motherboard failure, corrupt operating system... it really doesn’t matter. Either way, there will be a stressed-out user begging an IT pro to save their critical information. Of course, there are many tools to help save user files and settings from a catastrophic PC failure, but many of these tools require significant time and effort. It need not be so! Among Microsoft's free IT tools is a gem: the User State Migration Tool (USMT). In this two-part series I’ll show you how to use the User State Migration Tool to preserve all the user settings and files from a hard drive removed from a failed PC. In this first installment I'll walk you through installing the USMT, hooking up the old PC hard drive to our recovery computer, and building custom XML files so the USMT will know exactly what custom user folders and files to recover. In part two, we'll work on USMT deployment and migration: bring everything together, run the tools, and get the user up and running on a new PC with their data intact. Installing the User State Migration Tool First, here's a tip: Having an external USB to SATA or USB to IDE adapter greatly simplifies the process of hooking up the old hard drive to your... --- ### Export Scheduled Tasks Using PowerShell > Learn how to export scheduled tasks using PowerShell and the management console in this how-to by PowerShell pro Jeff Hicks. - Published: 2013-01-30 - Modified: 2024-09-04 - URL: https://petri.com/export-scheduled-tasks-using-powershell/ - Categories: PowerShell - Tags: Advanced, scheduled tasks - Article Type: How To Learn how to export scheduled tasks using PowerShell and the management console in this how-to by PowerShell pro Jeff Hicks. When Microsoft revised the Task Scheduler in Windows Vista, one major piece they worked on the use of XML for the task definition. The benefit to you is that you can export a scheduled task and import it on a totally different machine. While the techniques I’m going to demonstrate should work for just about any scheduled task, I’m assuming you intend to use them with a custom task that you have created. In this first article, I'll show you specifically how to export scheduled tasks using PowerShell and the Management Console. In a follow-up article, I'll discuss importing scheduled tasks in PowerShell. Export a Scheduled Task from the Management Console The easiest way to export a schedule task is to use the Task Scheduler management console. Find the task, then right-click it and select Export from the context menu.   I have a scheduled task that generates a text report using the SystemInfo. exe command line tool. I created it on my Windows 8 box and would like to add it on other computers. When prompted, I’ll save the XML file to a central location. The exported file will default to using the task name as the file name. Some task names are a bit verbose so feel free to adjust accordingly. Note: One potential downside to this approach is that you can only export one task at a time. Export a Scheduled Task from PowerShell An alternative, and one that lends itself... --- ### Seed a Database in an Exchange 2010 DAG with NetApp SAN > Moving a large amount of data? Learn how to use NetApp SnapMirror to seed a database in an Exchange 2010 DAG. - Published: 2013-01-29 - Modified: 2024-09-04 - URL: https://petri.com/seed-database-exchange-2010-dag-netapp-san/ - Categories: Exchange 2010 - Tags: DAG, Exchange databases, snapmirror - Article Type: How To, Overview Moving a large amount of data? Learn how to use NetApp SnapMirror to seed a database in an Exchange 2010 DAG. Picture this: You have an Exchange 2010 DAG running smoothly in a centralized datacenter -- there are no replication issues, and life is good. Then the day comes when you need to implement site failover for Exchange between two datacenters. Great, you think, that shouldn’t be an issue because Exchange 2010 DAGs was designed for these types of scenario, I can implement a stretched DAG. Now, in my past experience with implementing a stretched DAG, I was not overly concerned about the configuration and setup. Instead, what I found most challenging was how I was going to get more than 20TB of data seeded. I'll leave the specifics of setting up the stretched DAG for a future article; for now we’re going to discuss how we get that data to the second datacenter. The one requirement was that it needed to be done with very little to no downtime at all. The native Exchange 2010 seeding process can also perform the seeding with no downtime, but as I have seen the past, trying to seed a database that has been in production for a while can fail. I’ve already written about how to manually seed an Exchange 2010 DAG database, but this process involved dismounting databases, which would cause an outage that we are trying to avoid. When moving such large amounts of data, we needed to also consider other technologies such as the hardware and/or storage platform on which the data is residing. In my experience,... --- ### Top 5 Windows 8 Enterprise Features > What does Windows 8 Enterprise offer that other versions of Win8 lack? Take a look at our list of noteworthy Windows 8 Enterprise features and improvements. - Published: 2013-01-28 - Modified: 2024-09-04 - URL: https://petri.com/top-windows-8-enterprise-features/ - Categories: Windows 8 - Tags: Windows 8 Enterprise - Article Type: Overview What does Windows 8 Enterprise offer that other versions of Win8 lack? Take a look at our list of noteworthy Windows 8 Enterprise features and improvements. I've already written a fair amount about Windows 8 and my experiences with Microsoft's latest client OS, and have presented some reasons why you should and shouldn't deploy it. Of all the various editions of Windows 8, the one that admins should be most concerned about is Windows 8 Enterprise, the volume-licensed version of Windows 8 that most organizations with more than five PCs will likely deploy. If you want to deploy Windows 8 Enterprise, you'll also need to be a Microsoft Software Assurance (SA) customer. Windows 8 Enterprise Features So what does Windows 8 Enterprise offer that other versions of Windows 8 lack? Let's take a look. 1. AppLocker image: Microsoft Initially introduced in Windows 7 and Windows Server 2008 R2, AppLocker is a program feature that leverages Group Policy to allow administrators to control what applications a user can install and use. For example, you could use AppLocker to restrict users from installing software they don't have a license for, or for software that is outdated or not allowed for any number of auditing, compliance, security, or corporate HR policy reasons.  AppLocker has been updated with some new features for Windows 8, particularly support for managing applications available in the Windows App Store. 2. DirectAccess / BranchCache Two features aimed at improving network performance for branch office and remote users, DirectAccess and BranchCache made their debut with the release of Windows 7 and Windows Server 2008 R2. While they're effectively two separate features, they work so well... --- ### The Friday Funny: Star Wars Stormtrooper Guards Google Data Center > These aren't the servers you're looking for. Enjoy this hilarious look as the Star Wars Force seems to be strong with Google's data centers. - Published: 2013-01-25 - Modified: 2024-09-04 - URL: https://petri.com/friday-funny-star-wars-stormtrooper-google-data-center/ - Categories: Google Cloud Platform - Tags: Data Center, geek humor, Star Wars - Article Type: Overview These aren't the servers you're looking for. Enjoy this hilarious look as the Star Wars Force seems to be strong with Google's data centers. Google has traditionally been very secretive about its sprawling data centers they have scattered all over the globe that power their cloud services like Gmail, Google Apps, and YouTube. That changed with the launch of the Google Data Centers website in October 2012, which lifts a bit -- but only a bit -- of the secrecy surrounding Google's data center operations. On that site, Google offers visitors to learn more about their data centers by viewing photos, and using a limited version of Google Streetview to explore the interiors of some of them. One sharp-eyed viewer over at Google Sightseeing spotted something unusual while exploring Google's Lenoir, North Carolina, data center in Street View: a Star Wars Stormtrooper, complete with miniature R2-D2 companion. These aren't the servers you're looking for. Move along. (via Google Sightseeing) It's refreshing to see that Google (or at least in the Google Data Center in Lenoir, NC) has a sense of humor and is a Star Wars fan to boot. Maybe we should introduce them to the Star Wars AT-AT PC case designer? Have you seen any other interesting Star Wars (or Star Trek) references in the world of IT? Drop me an email with your best sightings, and we'll feature entries we receive in a future blog post. Follow Jeff James on Twitter (@jeffjames3) and Google+ (add Jeff to your circles) Follow Petri IT Knowledgebase on Twitter (@petri_co_il) Follow us on Facebook and Google+ as well! --- ### How to Manage Mobile Devices with Windows Intune > Learn how you can use Windows Intune to manage your mobile Windows RT, Android, and iOS-based devices devices in this helpful how-to by Peter de Tender. - Published: 2013-01-24 - Modified: 2024-09-04 - URL: https://petri.com/manage-mobile-devices-windows-intune/ - Categories: Windows 8 - Tags: intune, Windows RT - Article Type: How To On the go? Learn how you can use Windows Intune to manage your mobile Windows RT, Android, and iOS-based devices in this helpful how-to by Peter de Tender. In a previous article, I gave an introduction to Windows Intune, Microsoft’s cloud-based client management solution, and how it allows you to manage your Windows 8 clients in your company. While there I only discussed managing Windows 8 clients, in this article I’ll walk you through the necessary steps on how to manage any mobile device using Windows Intune. Now, by “any mobile device" I should add that I mean the following: Windows 8 RT (eg. Microsoft Surface) iOS-based devices (as of OS 4. x) Android-based devices (as of OS 2. 4) – this still relies on Exchange ActiveSync Note: Natively managing mobile devices is only possible as of Windows Intune Wave D, which went live in mid-December 2012. Microsoft recently announced that if you already had a subscription before that date, you will be migrated to Wave D sometime around mid-February 2013.   Mobile Device Management with Intune Although most steps are similar to the standard Windows 8 client management, there are a few configurations to be done in the Windows Intune Administration Portal first. Another thing to note is this portal is using Silverlight, which doesn’t run in IE10 on Windows 8 RT. Part 1: Enabling Mobile Device Management Logon to the Intune Administration console. Go to Administration/Mobile Device Management.     In the upper right corner, under the Task pane choose Set Mobile Device Management Authority. A small popup will appear informing you a script is being launched in background to change these configuration settings. Close... --- ### Manually Seed an Exchange 2010 DAG Database > Manually seeding a database isn’t common, but it's good in a pinch. Learn to manually seed an Exchange 2010 DAG database in this tutorial. - Published: 2013-01-23 - Modified: 2024-09-04 - URL: https://petri.com/seed-exchange-2010-dag-database/ - Categories: Exchange 2010 - Tags: DAG, Database Availability Group, Exchange 2010 - Article Type: How To Manually seeding a database isn’t common, but it's good in a pinch. Learn to manually seed an Exchange 2010 DAG database in this tutorial. If you’ve deployed an Exchange 2010 Database Availability Group (DAG) or are thinking about it, you already know that this is a high-availability feature that allows you to have multiple copies of each database on up to 16 mailbox servers. Without going into a whole discussion on how a DAG functions, essentially you have a group of mailbox servers that contain active/passive databases. The passive databases replicate data between the active databases; this provides high availability in the event a database should go down. The process to create a passive copy database is pretty straightforward and can be achieved by either using the Exchange Management Console (EMC) or the Exchange Management Shell (EMS). You kick off the wizard, after some time it completes and your DAG databases are replicating. I recommend reading J. Peter Bruzzese’s article on how to configure a Database Availability Group for more detailed instructions. Why Manually Seed a Database? However, there may be a time when the seeding doesn’t go correctly. During an upgrade to Exchange 2010, I ran into the issue of not being able to create a database copy. When trying to create a copy of a 200GB database that had been running for several weeks using the EMC database copy wizard, the wizard failed and I was unable to get a copy up and running. When I attempted to run the update database wizard, the database would go through the update process, but it wouldn’t successfully update and then it threw... --- ### Installing the Windows Intune Client on Windows 8 > Looking for a cloud-based client management solution for Windows 8? Learn how to install and deploy Windows Intune in this tutorial by Peter de Tender. - Published: 2013-01-22 - Modified: 2024-09-04 - URL: https://petri.com/install-deploy-windows-intune-windows-8/ - Categories: Windows 8 - Tags: intune, System Center Configuration Manager - Article Type: How To Looking for a cloud-based client management solution for Windows 8? Learn how to install and deploy Windows Intune in this handy tutorial by Peter de Tender. Continuing my series of articles about Windows 8, I want to introduce you to Microsoft’s cloud-based client management solution, Windows Intune -- more specifically, the latest edition of Itune, which went live in December 2012. The following topics will be discussed: What is Windows Intune? How does Itune compare to System Center Configuration Manager? Deploying Windows Itune What is Windows Intune? Windows Intune (Wave D) is a cloud-based management solution for clients, where clients can be anything from Windows XP SP3 all the way up to Windows 8 and RT, as well as Apple iOS 4. 0 or higher-based devices and Android 2. 1 or later. However, it is NOT capable of managing Server Operating Systems. Many enterprises are struggling with decent management of mobile devices (BYOD-related), for which Intune is a good and centralized solution. In short, management is handled through a web browser, where client integration is possible by using a Windows Intune client (on Windows devices) or through Exchange ActiveSync (Apple iOS and Android). The following features are part of Windows Intune: Device hardware and software inventory Software installation Anti-malware solution Device policies enforcement Windows Client (Win7 or Win8 Enterprise Operating System incl. Software Assurance) As of Wave D, which was released mid-December 2012, Windows Intune can also be integrated in System Center Configuration Manager 2012 SP1, allowing for both cloud-based and on-premise device management possibilities. As with most cloud-based solutions, a monthly fee is required for this solution. Also, as of Wave D, licensing is... --- ### Boot a Hyper-V Virtual Machine from a USB Drive > Can't get enough virtualization? Learn how to boot a Hyper-V VM to a USB drive in this tutorial by IT pro Peter de Tender. - Published: 2013-01-21 - Modified: 2024-09-04 - URL: https://petri.com/boot-hyper-v-virtual-machine-usb-drive/ - Categories: Windows Server - Tags: Hyper-V, USB, virtual machine, Virtualization, VM, Windows Server 2012 - Article Type: How To Can't get enough virtualization? Learn how to boot a Hyper-V VM to a USB drive in this tutorial by IT pro Peter de Tender. The idea for this article came to mind while I was writing my recent post about Windows To Go, which outlines how you can boot into a fully operational Windows 8 work environment from a USB drive. So I decided to share the specific steps with you on how to boot a virtual machine from a USB drive in your own environment. Although I’m writing this from the standpoint of using a Windows Server 2012 Hyper-V environment, this also works with Hyper-V in Windows Server 2008 R2. Booting a Windows Server Hyper-V VM to a USB From your physical Hyper-V Server, go to Disk Manager. Your USB drive will be shown as “Basic/Online” (32Gb drive in my example, split up in 2 partitions).   Before we can “redirect” the USB drive as a virtual hard drive in our VM, we have to make this drive offline. This can be achieved by right-clicking on the disk and selecting Offline.   Next, we'll select this USB drive as a virtual hard drive for our VM. To achieve this, go into the Settings of the VM; specifically, the IDE Controller 0 section, where we chose to add a hard drive.   Next to that, we select Physical Hard Disk, which shows our offline disk of 32Gb in size.   So far, so good! Now, to make sure the virtual machine is effectively booting from the USB drive, select the virtual hard drive “Physical drive” on the... --- ### PowerShell Web Access: Reconfiguration > We're at the end of our PowerShell Web Access series! Learn how to reconfigure PSWA for use in the domain. - Published: 2013-01-17 - Modified: 2024-09-04 - URL: https://petri.com/powershell-web-access-reconfiguration/ - Categories: PowerShell - Tags: Advanced - Article Type: Overview We're at the end of our PowerShell Web Access series! Learn how to reconfigure PSWA for use in the domain. We're back with our in-depth, multi-part look at PowerShell Web Access (PSWA) on Windows Server 2012. This feature allows you to access a remote PowerShell session via a web browser. The remote computer can be running PowerShell 2, as long as remoting is enabled, or PowerShell v3. The client computer should work with a current version of most major browsers. In the first article I showed how to install PowerShell Web Access remotely on a new web server from a Windows 8 client running Remote Server Administration Tools (RSAT). In part two, I discussed PSWA configuration, and in part three we learned how to test the PSWA web application. In this final article we’ll reconfigure PowerShell Web Access for use in the domain. So let's get started! Removing Test Rules First, I will remove all of the existing test rules. I will eventually set up some rules for the domain. But for now I’ll double-check the existing rule set from my Windows 8 management desktop using Invoke-Command to remotely run the command on the web server running PSWA. ​ PS C:> invoke-command {Get-PSwaAuthorizationRule} -comp chi-web01 You can see the results in Figure 1.   The easy way to remove all of the rules is to pipe them to Remove-PswaAuthorizationrule. ​ PS C:> invoke-command {Get-PSwaAuthorizationRule | Remove-PSwaAuthorizationRule -force } -comp chi-web01 The PSWA gateway is still running, but nobody can use it until I add new rules. Installing a Domain Certificate PowerShell Web Access was... --- ### Microsoft Updates Cloud OS Strategy > Learn about Microsoft's recent updates, add-ons, and improvements to System Center 2012, Windows Intune, and Windows Azure. - Published: 2013-01-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-cloud-os-update/ - Categories: Cloud Computing - Article Type: News Learn about Microsoft's recent updates, add-ons, and improvements to System Center 2012, Windows Intune, and Windows Azure -- all designed to give IT managers more control over cloud resources. Microsoft took another step deeper into the cloud recently, announcing a host of updates, add-ons, and improvements to System Center 2012, Windows Intune, and Windows Azure designed to give IT managers more control of private, public, and hybrid cloud IT resources. The announcements are part of Microsoft's recently articulated "Cloud OS" strategy, which not only attempts to unify cloud resources but also -- and perhaps most importantly -- makes cloud computing much more accessible and understandable. Microsoft's Cloud OS platform strategy  Microsoft Updates and Announcements The key products Microsoft has updated or introduced included the following: Windows Intune Microsoft's cloud-based systems management and security service, Windows Intune, also received some substantial updates related to Microsoft's Cloud OS push. Updates include integration with System Center Configuration Manager 2012 SP1, Windows 8 support, enhanced mobile and remote device management features. Windows Azure Services for Windows Server Of special interest to vendors who provide cloud services to IT customers was the introduction of Windows Azure services for Windows Server. While in beta for several months, this service is also now available. Using this new service, hosters can use System Center to manage hosted environments from a single management console in System Center. Hosting providers can now use Windows Azure, Windows Azure Services, and Windows Server 2012 to offer web site hosting solutions, provision and manage virtual machines, and it includes service management APIs and a service management portal. System Center 2012 Service Pack 1 (SP1) The first service pack for... --- ### How to Create a Windows To Go USB Drive > Learn Windows to Go basics and how to make a Windows to Go USB drive in this helpful tutorial by IT veteran Peter de Tender. - Published: 2013-01-15 - Modified: 2024-09-04 - URL: https://petri.com/create-windows-to-go-usb-drive/ - Categories: Windows 8 - Tags: BYOD, Windows 8 Enterprise edition, Windows To Go - Article Type: How To Need to boot from a USB device into a Windows 8 environment, no matter the OS currently running on it? IT veteran Peter de Tender shows you how. In my previous articles for the Petri IT Knowledgebase I wrote about an overview of Windows 8 features, and how to deploy Windows 8 with MDT 2012. In this next article, I will talk about one of the coolest features of Windows 8 Enterprise edition: Windows To Go. What Is Windows To Go? Windows To Go is a feature within the Windows 8 Enterprise edition that allows you to boot from a USB device into a fully operational Windows 8 Enterprise environment, no matter the operating system currently running on that device. Technically, the device should be at least Windows 7 certified, although I have it successfully running on a four-year-old Sony Vaio that has a “Vista certified” logo on it. (However, I'm not necessarily recommending it! ) Companies can use the same image for this Windows To Go device as the one they are already using for their regular desktop and laptop deployment. And by "fully operational," I mean a complete running environment with your familiar applications like Office, LOB apps, and network connections. Windows To Go: Usage Scenarios When talking to my customers about Windows To Go, I position it from multiple angles: External visitors: Imagine you have an external consultant coming over to your enterprise, who needs to work on your internal systems. Instead of letting the consultant use his or her own device, which might not be secured and may not have the required applications installed, you hand him or her a Windows To... --- ### Configure Exchange 2010 to Receive Emails for Other Domains > Learn to configure Exchange 2010 to receive emails from external domains via GUI or PowerShell in our easy step-by-step guide. - Published: 2013-01-14 - Modified: 2024-09-04 - URL: https://petri.com/configure-exchange-2010-receive-email-external-domains/ - Categories: Exchange 2010 - Tags: email, Exchange 2010, PowerShell - Article Type: How To Need to your Exchange servers to go outside your internal domain? No problem! Learn to configure Exchange 2010 to receive emails from external domains via GUI or PowerShell in our step-by-step guide. Exchange 2010 is similar to Exchange 2007 in that it will only accept email for your internal domain name. However, there are instances that may require your Exchange servers to receive emails that are in not your internal domain name. When this happens you will need to configure your Exchange servers to accept email for those other domains. To find further explanation on what an accepted domain is and the types of accepted domains, visit our previous Petri IT Knowledgebase article, Configure Exchange 2007 to Receive Email from Other Domains. Configuring Exchange 2010 Configuring Exchange 2010 to accept email for other domains is similar to configuring in Exchange 2007 to accept other domains, in that it natively does not accept email from the external world; instead, you must tell it that it is allowed to do so. For example, say your company decides to change its Internet domain name from mycompany. com to mycompanyemail. com. To do so, you will need to add the new domain name as an accepted domain name in Exchange. Accepted domain names can be used in various situations such as each company division having its own Internet domain name, company mergers and acquisitions, or when your internal domain name is different than your Internet domain name. Prior to configuring, ensure that you have the correct permissions to apply the changes. You must have the Exchange organizational administrator’s role permissions delegated to you in order to configure changes.  Accepted domains are configured at the organizational... --- ### PowerShell Web Access: Testing > PSWA installation, configuration... It's time for the next step: Learn how to test your PowerShell Web Access web applications. - Published: 2013-01-10 - Modified: 2024-09-04 - URL: https://petri.com/powershell-web-access-testing/ - Categories: PowerShell - Tags: Advanced, pswa, Windows Server 2012 - Article Type: Overview PSWA installation, configuration... It's time for the next step: Learn how to test your PowerShell Web Access web applications. We're back with our in-depth, multi-part look at PowerShell Web Access (PSWA). In the first article I showed how to install PowerShell Web Access remotely on a new web server from a Windows 8 client running Remote Server Administration Tools (RSAT). In part two, I discussed PSWA configuration. In the final article we’ll reconfigure PowerShell Web Access for use in the domain. PowerShell Web Access, a Windows Server 2012 feature, lets you remotely manage your servers via standard web browser, as long as it supports Javascript and accepts cookies. The remote computer can be running PowerShell v2 or v3, and you can control who can connect. And now for the next step: In this article we’ll look at testing the PSWA web application. How to Test the PSWA Application First, I’ll open Internet Explorer and go to https://chi-web01/pswa. (Don’t forget to use https. ) My web server is CHI-WEB01. I can use the name or IP address. Because I’m using a test certificate I’ll get a security warning in Figure 1.   I’ll continue since this is just a test. This leads to the logon screen as shown below in Figure 2. I’ll fill in my logon information.   Figure 3 also shows optional connection settings. These are the same type of settings you might set with New-PSSession.   For now, I’ll use the defaults. Clicking Sign in brings me to a PowerShell session inside the browser!   From here I can enter just about any command I... --- ### Performing a Remote Device Wipe with Exchange > Learn how to remotely wipe a device using Exchange in this helpful how-to article. - Published: 2013-01-09 - Modified: 2024-09-04 - URL: https://petri.com/remote-device-wipe-exchange/ - Categories: Security - Tags: cmdlets, Exchange 2010, mobile device, PowerShell - Article Type: How To IT pros need to know that they can reach out and erase a mobile device's data at a moment's notice. Learn how to remotely wipe a device using Exchange in this helpful how-to. The ability to securely and remotely wipe a mobile device, be it phone or tablet, iOS, Android, or Windows device is absolutely critical to the success of any enterprise mobility initiative. With data out walking around, IT pros must have the confidence they can reach out and erase that data at a moment’s notice. Remote device wipe capability is a core tenant of mobile security. As such, the tools available for performing a wipe are practically as numerous as the reasons for doing one. All major mobile device management solutions support the capability. Many devices have the functionality baked into their OS, such is the case with iCloud-integrated iPhones and iPads. There are even self-help methods allowing users to perform their own remote wipes. I described how a user can take this initiative using Outlook Web Access in a previous Petri IT Knowledgebase article, How to Wipe Mobile Devices Through Outlook Web Access (OWA). Yet another option for Exchange-integrated mobile devices is the ability for IT admins to complete a remote device wipe. Today is a buy one get one free day: I’ll show you not one, but two methods for completing this task using Exchange 2010’s administration tools -- the Exchange Management Console and the Exchange Management Shell. How to Remotely Wipe a Device with Exchange Management Console Open the Exchange Management Console (EMC) Expand Microsoft Exchange On-Premises. Expand Recipient Configuration. Click Mailbox. Scroll through the list of mailboxes until you find the user mailbox for... --- ### Top 10 VMware vSphere Performance Tips > Viva la virtualization! Make the most of vSphere with our top 10 performance and optimization tips from David M. Davis. - Published: 2013-01-08 - Modified: 2024-11-19 - URL: https://petri.com/top-10-vmware-vsphere-performance-tips/ - Categories: VMware - Tags: Editor's Pick, vSphere - Article Type: Overview Viva la virtualization! Make the most of it with our top 10 performance vSphere tips by David M. Davis. The virtualization debate is over and virtualization won. It's time to maximize your datacenter using virtualization. No longer will physical servers sit at 5 to 10 percent utilization. Those physical servers can become virtual hosts so that you can run many more servers on top as virtual machines. The CPU and RAM utilization can be maximized, thanks to a virtualization hypervisor, so that you can reduce costs and improve efficiency. To do that, you'll be pushing the resources of your physical servers to their max. Optimizing vSphere Performance: Why and How It's a great plan for financial return, company agility, and administrator efficiency but what about the performance of those virtual machines and their critical company applications? How do you maintain performance of those applications when, at the same time, you are trying to pack as many VMs on a host as possible? The answer is to follow our top 10 VMware vSphere performance tips. We'll start with number 10 at the bottom, and work our way up. 10. Install VMware Tools in all virtual machines Many sysadmins incorrectly think of VMware Tools as just being for mouse sync when opening a VM console. While this is an important (and convenient) benefit, VMware Tools is much more than that. As discussed in this VMware publication on VMware Tools, not only does VMware Tools contain the mouse driver but it also has many other drivers. And it's those other drivers that can actually increase performance on the VM in which... --- ### Bring Your Own Device: Will 2013 be the Year of BYOD? > Waiting for the Bring Your Own Device revolution? Read on for reasons 2013 will be the year employers embrace BYOD. - Published: 2013-01-07 - Modified: 2024-11-19 - URL: https://petri.com/bring-your-own-device-byod-trends/ - Categories: Windows Server - Tags: bring your own device, BYOD, Cloud, Private Cloud, tablet - Article Type: Opinion Waiting for the Bring Your Own Device revolution? Read on for reasons 2013 will be the year employers embrace BYOD. Last year was supposed to be The Year of BYOD. Bring Your Own Device (BYOD) is the concept that as more people purchase tablets, smartphones, and laptops of their own, they'll more likely to want to use those devices on the company network -- sometimes in place of a company computer. So, will 2013 bring the Bring Your Own Device revolution that some were predicting for 2012? I’ll show you some of the driving forces behind both the BYOD movement and its resistance, and tell you why the landscape for mobile in the enterprise, BYOD, and IT in general will be improved in 2013. The Bring Your Own Device Trend: What's Driving It? Two of the biggest drivers of the BYOD trend are usability and mobility. With tablets and touchscreens, human computing is now more natural and intuitive than ever before. This fluid user interface and control can make it hard to go back to using a keyboard and mouse. Granted, it’s true that in some cases a keyboard, mouse, and large monitor are required. After all, not every work function is better performed on a tablet (but many are). While the usability advantage of tablets for some work is still somewhat debated, the push toward mobile computing is undeniable and it's not going away. More and more, it’s a digital world, and a connected one. A workforce may be bound by the company, and its goals and mission, but the workforce is no longer defined by... --- ### PowerShell Web Access: Configuration > We continue our look at PowerShell Web Access (PSWA) -- read on as we delve into gateway configuration and configuring authorization rules. - Published: 2013-01-03 - Modified: 2024-09-04 - URL: https://petri.com/powershell-web-access-configuration/ - Categories: PowerShell - Tags: Advanced, Configuration, Powershell Web Access, pswa - Article Type: Overview You have PowerShell Web Access (PSWA) installed -- now what? We continue our look at PSWA as we delve into gateway configuration and configuring authorization rules. We're back with our look at Powershell Web Access (PSWA), a multi-part series in which I walk you through the installation, configuration, testing, and reconfiguring PSWA for use in the domain. Powershell Web Access -- a web-based application -- allows you to establish a remote PowerShell session via a web browser. With PSWA you are able to remotely manage servers from a machine that doesn’t even have PowerShell installed on it, such as a Mac or Android tablet. In the first article I showed how to install PowerShell Web Access remotely on a new web server from a Windows 8 client running Remote Server Administration Tools (RSAT). In part three I'll show you how to test the PSWA web application, and in the final article we’ll reconfigure PowerShell Web Access for use in the domain. PSWA and Gateway Configuration You could run the necessary commands on the server, but I prefer remote management. I’ll open a remote PowerShell session to the server from my Windows 8 desktop. ​ PS C:> enter-pssession CHI-WEB01 For now, I’m going to configure the gateway to use a self-signed test certificate. Later the website can be configured to use a valid certificate. ​ : PS C:> Install-PswaWebApplication –usetestcertificate This command assumes I haven’t changed the default web site name (“Default Web Site”) or application name (“pswa”). Figure 1 depicts the result.   I can’t think of a good reason to modify the application name. The application is secure out-of-the-box. [adkit zone="freestyle" limit="1"... --- ### What is VMware vCloud? > Learn about VMware vCloud and general cloud computing in this helpful walk-through with virtualization guru David Davis. - Published: 2013-01-02 - Modified: 2024-11-19 - URL: https://petri.com/vmware-vcloud/ - Categories: Cloud Computing - Tags: vCloud, vCloud Suite 5.1, vmware - Article Type: Overview Virtualization guru David Davis discusses cloud computing and VMware's vCloud products in particular. Cloud computing is all the rage, right? Microsoft has Azure, Amazon has AWS, VMware has vCloud, and Apple has iCloud. As a consumer and server admin, what are you to do? The most important thing is not to jump into any marriage with a cloud provider. Here's what you need to know about the cloud. The Types of Cloud Computing While the TV commercials saying "take it to the cloud! " might make it sound like there is just one type of cloud computing and even one cloud, it's a lot more complex than that. There are multiple forms of cloud computing and multiple providers offering them - each with their own twist. In essence, there are three types of cloud computing: Software as a Service (SaaS) -- Software that used to be running on your local computer now runs at a service provider and you use it over the Internet. Most likely, you are already using SaaS every day. Examples include Gmail. com and Dropbox. com -- even Facebook could be a type of SaaS. Infrastructure as a Service (IaaS) -- These are virtualized servers running at a service provider instead of in your company's own datacenter. Many companies use IaaS; examples include Amazon Web Services (AWS), Rackspace, and VMware vCloud providers. Platform as a Service (PaaS) -- This is a ready-made web and database service where application developers can get their application available to the world even faster than ever before. Examples of PaaS include Microsoft Azure and VMware CloudFoundry... . --- ### PowerShell Web Access: Installation Guide > Installing PowerShell Web Access (PSWA) is a snap in this easy-to-follow guide. - Published: 2012-12-27 - Modified: 2024-09-04 - URL: https://petri.com/powershell-web-access-installation-guide/ - Categories: PowerShell - Tags: Advanced, pswa, Windows Server 2012 - Article Type: Overview Installing PowerShell Web Access (PSWA) is a snap in this easy-to-follow guide by PowerShell pro Jeff Hicks. Since v2, Windows PowerShell has offered a great remote management story. With PowerShell v3 and the arrival of Windows Server 2012 it gets even better: How would you like to be able to remotely manage a server using PowerShell from your iPad or Android tablet? Or from your phone? Now you can with a new Windows Server 2012 feature that allows you establish secure, remote PowerShell sessions via a web browser. In the first part of this series, I'll go over installing PowerShell Web Access (PSWA). Installation doesn’t mean your entire network is wide open. PowerShell Web Access provides a web-based gateway to designated servers that you want to remotely manage via PowerShell. The gateway will create a secure connection to a remoting endpoint that you designate. (I’ll cover configuration in a separate article. ) But the point is that you could define a constrained endpoint and delegate remote administration via a web browser to the users or groups that you determine. I think you’ll find this easiest to set up in a domain environment. In part two of this series, I discuss PowerShell Web Access configuration, and in part three I'll show you how to test the PSWA web application. In this final article we’ll reconfigure PowerShell Web Access for use in the domain. Requirements for PowerShell Web Access (PSWA) PowerShell Web Access (PSWA) runs as an IIS application on Windows Server 2012. You will need the following role services or features: IIS Management Console ASP . NET... --- ### Top 10 Petri IT Knowledgebase Articles of 2012 > Take a look at some of the more popular Petri IT Knowledgebase articles that ran in 2012. - Published: 2012-12-26 - Modified: 2024-12-03 - URL: https://petri.com/top-10-petri-articles-2012/ - Categories: Windows Server - Tags: PowerShell, uac, Windows 8 - Article Type: Overview As we look to the upcoming year, we take a look at some of the more popular Petri IT Knowledgebase articles that ran in 2012. As 2012 draws to a close, we'd like to take a look back at some of the more popular articles published on Petri IT Knowledgebase this calendar year. Some of these selections were high-traffic superstars, while others were shared frequently via social media. Still others were simply some of our personal favorites, added to round out the list. Have a few favorite Petri IT Knowledgebase articles of your own to add to the list? Tell us your picks by adding a comment to this blog post. 1. Windows 8 Deployment Using MDT 2012: Setup and Configuration (by Peter De Tender) Installing Windows 8 in a business environment has never been easier, thanks to Peter De Tender's helpful two-part deployment guide. Part one covers setup and configuration, while part two covers the actual Windows 8 deployment. If you're looking to deploy Windows 8 sometime in 2013, be sure to give Peter's article a look. 2. Top 10 Holiday Gifts for Sysadmins (by Jeff James) Everyone loves getting creative gifts from someone, and system administrators are no different. That's why we put together this handy holiday gift guide, which includes a bit of everything, from IT-savvy T-shirts to Leatherman multitools and useful mobile phone apps. 3. Using Ping and Traceroute for Network Troubleshooting (by Sean Wilkins) Sometimes articles that cover the basics are the most useful, as not everyone has the IT budget or motivation to rush out and upgrade to Windows 8, buy a Microsoft Surface, or deploy the latest edition of VMware vCloud... . --- ### Holiday IT Horror Stories > Being an IT pro isn't always glamorous. Read on for some of our favorite reader-submitted holiday IT horror stories. - Published: 2012-12-21 - Modified: 2024-09-04 - URL: https://petri.com/holiday-it-horror-stories/ - Categories: The Friday Funny - Article Type: Overview Being an IT pro isn't always glamorous. Read on for some of our favorite reader-submitted holiday IT horror stories. For many system administrators, working in IT has a host of tangible benefits: Good pay, access to a never-ending stream of new and updated technologies, camaraderie among IT professionals, the chance to solve complex problems, and the opportunity to fundamentally impact how efficiently businesses and organizations can function. On the downside, being a system administrator can sometimes require long hours at the office or being on call during vacations and holidays. Now that we’re in the midst of the holiday season, I recently asked Petri IT Knowledgebase readers to submit their holiday IT horror stories, tales of when they had to solve an IT-related problem at the office -- even while on holidays or vacations. More than two dozen of you replied to my call for IT tales of woe (and some that were just adventurous), and we've included excerpts of some of them here. If you’d like to submit your own IT horror story, please drop me an email or add a comment to this blog post. IT work ain't always pretty -- especially around the holidays. Bad Santa Visits the IT Department Many years ago I worked for a large corporation here in the US who shall remain nameless. (They used static IP addresses – it was hell! ) Myself and another admin found ourselves working Christmas Eve doing patching, upgrades, etc. and were literally the only two people in the building... so we did as all good techs do when doing this kind of work: We broke out... --- ### How to Defrag Drives using Powershell in Windows Server 2012 > Defragging can be such a drag. Learn how to defrag drives using Powershell cmdlets in this helpful how-to by Jeff Hicks. - Published: 2012-12-20 - Modified: 2024-09-04 - URL: https://petri.com/defrag-drives-powershell-windows-server-2012/ - Categories: PowerShell - Tags: Advanced, cmdlet, Windows Server 2012 - Article Type: How To Defragging can be such a drag, but we have the answer! Learn how to defragment drives using Powershell in this helpful how-to by Jeff Hicks. I’ve written about how you can use PowerShell to repair disk volumes, but another common server maintenance task is identifying and defragmenting drives. There are a number of enterprise solutions available on the market which might make sense for many organizations. But if you lack the budget, run a smaller shop, or prefer to do your own thing, managing this task is a little more difficult. There has been the command line tool, defrag. exe, but it needs to be combined with other techniques to handle remote systems. With Windows Server 2012 and Windows 8, we have some new tools at our disposal for managing the defrag task using PowerShell v3. I should point out that even though you need PowerShell v3, this is operating system-specific, as it uses the new Storage module that is only available on Windows Server 2012 and Windows 8. Don’t have that? I’ll offer you an Powershell alternative later in the article. Defrag Drives with Optimize-Volume The new cmdlet we will use is called Optimize-Volume. It is part of the Storage module which utilizes the new CIM infrastructure. You can use this cmdlet to analyze and defrag all types of volumes.   We’ll focus on logical drives like C:. How to Run an Analysis To run an analysis all you need to do is run a command like this: ​ PS C:> Optimize-Volume G –Analyze But for some reason unknown to me, the cmdlet doesn’t write any sort of result to the pipeline! ... --- ### Oracle VM VirtualBox 4.2.4 Review > Looking for a free, easy-to-use desktop virtualization product? Check out our review to see if the latest version of Oracle VM VirtualBox makes the cut. - Published: 2012-12-19 - Modified: 2024-09-04 - URL: https://petri.com/oracle-vm-virtualbox-review/ - Categories: Virtualization - Tags: Oracle, VirtualBox - Article Type: Review Looking for a free, easy-to-use desktop virtualization product? Find out if the latest version of Oracle VM VirtualBox makes the cut in our review. If you're looking to quickly create a virtual machine with a different OS than your existing PC or server, you'll likely turn to products like Parallels Workstation, Parallels Desktop (Mac), VMware Workstation, or VMware Fusion (for the Mac). All of these products do an excellent job of running VMs and quickly spooling up work environments of all sorts of operating systems, but with both personal and IT budgets tighter than ever, isn't there a cheaper solution? Let's take a look. Oracle VM VirtualBox: Free to Play One of the best alternatives to all of the products I just mentioned is Oracle VM VirtualBox, an open source and free (at least for personal and home use) virtualization product that allows you to create and manage VMs. Companies and other institutions looking for a licensed version of Oracle VM VirtualBox with technical support can opt for a paid version. (See more details in this Oracle VM VirtualBox commercial license blog post. ) So how does the latest version of VirtualBox stack up as a virtualization platform? To find out I decided to spend a few weeks using Oracle VM VirtualBox 4. 2. 4, released on Oct. 26, 2012. VirtualBox version 4. 0 was the most significant release in the last year or so, but 4. 2. 4 brings a host of new features, bug fixes, and other improvements. Let's take a look at what this latest version of VirtualBox has to offer. Oracle VM VirtualBox Installation Installation is a straightforward process. I downloaded and installed VirtualBox 4. 2. 4... --- ### Top 10 Holiday Gifts for Sysadmins > Looking for a present for your favorite system administrator? Check out our 2012 holiday gift guide for sysadmins and network administrators. - Published: 2012-12-18 - Modified: 2024-11-19 - URL: https://petri.com/geek-gift-sysadmin/ - Categories: Windows Server - Tags: gift guide, sysadmin, System Administrator - Article Type: Overview Looking for a gift for your favorite system administrator? Check out our 2012 holiday gift guide for sysadmins and network administrators. The holiday gift-giving season is upon us, and sysadmins everywhere are hoping to find something useful in their Christmas stockings. There are already some excellent gift guides for tech gadgets that include things like the Microsoft Surface and Apple iPad, but we took a slightly different tack: We wanted to provide a holiday gift guide aimed squarely at in-the-trenches system and network administrators. We also turned to Twitter to gather up some geeky gift advice and inspiration from the system administrator community. What follows is a list of geek-worthy gifts for sysadmins (both useful and ridiculous) culled equally from my own somewhat caffeine-addled imagination, as well as some solid recommendations based on real-world IT work by the many smart sysadmins I'm lucky to know in the Twittersphere. So let's get to the list! 1. ThinkGeek IT Department T-Shirts - ThinkGeek - $20 If there was one store that "gets" system administrators more than any other, it would have to be ThinkGeek. With online shelves stuffed to the brim with all sorts of tech, geek, and gaming whatnots, it's hard to pick what item might be the most well-received. Should I get the Han Solo in carbonite ice tray, the Star Trek pizza cutter, or the Death Star tea infuser? So many decisions, but I'll make it easy for you: a T-shirt emblazoned with the text "There's no place like 127. 0. 0. 1. "   2. Leatherman Skeletool CX- Leatherman  - $60 Everyone in IT could use a good multi-tool, and... --- ### VMware Site Recovery Manager: VRM Server Configuration and Testing > Learn to configure the VRM server and test the database in VMware Site Recovery Manager 5.0 in the second part of these series. Step-by-step and video! - Published: 2012-12-17 - Modified: 2024-09-04 - URL: https://petri.com/vmware-site-recovery-manager-vrm-server-configuration-testing/ - Categories: Backup & Storage - Tags: SRM, VMware Site Recovery Manager 5.0, VRM - Article Type: Overview Learn to test the VRM server in VMware Site Recovery Manager 5.0 and configure the VRM database in the second part of these series. Includes step-by-step instructions and video! Welcome back to our VMware Site Recovery Manager (VRM) database configuration discussion. We’ve broken this article into two parts: Part one covered preparing the VRM database, while part two will go over testing the VRM database and configuring the VRM Server. How to Test the VRM Database To test that everything’s okay, close that session of SQL Server Management Studio and log in via SQL Server Authentication using the login account you just created. Once inside, select the database you created, click New Query, type in use in the large text box, and click Execute. That action would select the database in question and put you in the context of that database for the very next command you’re about to run. Next, type in the command: create table test (testcol varchar(10)), then click Execute. That will create a table named “test” with a column named “testcol” having type “varchar. " If you were able to do that, that means the user account you’re currently using has permissions with the ability to create tables and possibly put data to it. That also means, you should be good to go when you start connecting from the actual VRM server itself. Don’t forget to delete that test table before you go. Just right-click on it and select Delete. At this point, you’re now ready to move on to the next step, which is to configure your VRM Server. How to Configure... --- ### Switching Between the GUI and Server Core in Windows Server 2012 > The server GUI in Windows Server 2012 is now an optional feature. Learn to switch between the GUI and server core in this helpful how-to by Jeff Hicks. - Published: 2012-12-13 - Modified: 2024-09-04 - URL: https://petri.com/switching-gui-server-core-windows-server-2012/ - Categories: Windows Server 2012 - Tags: GUI, PowerShell, Windows Server Core - Article Type: How To It's a Windows Server 2012 switcheroo! Learn to switch between the GUI and server core in this helpful how-to by Jeff Hicks. Windows Server Core was a terrific introduction when first introduced several years ago. Most organizations don’t need a full-blown graphical interface for their servers and this was a great option. Of course, a major challenge is configuring server core. This has gotten easier over time, and with Windows Server 2012 we have a new option that makes this super easy: We can build and configure a server with a GUI and then take it away, turning the box into a Server Core installation. This is possible because the server GUI in Windows Server 2012 is now an optional feature which means it can be installed and removed as necessary. Switching from GUI Mode to Server Core Mode To make the transition, open Server Manager and click on Manage – Remove Roles and Features. This will launch the wizard, as seen below in Figure 1. Select a server from the list. I only have one, as you can see in Figure 2. The implication here is that if you are running Remote Server Administration Tools (RSAT) on Windows 8, you can remotely make this change. Clicking Next brings up a list of server roles. I don’t want to change any roles, so I’ll click next which brings us to figure 3. Scroll down to “User Interfaces and Infrastructure” and expand as I have in Figure 4. I’ll uncheck Server Graphical Shell. Since there will be no GUI, there is no reason to keep the... --- ### VMware Site Recovery Manager: Preparing the VRM Database > Learn how to prepare the VRM database in VMware Site Recovery Manager 5.0 for configuration in the first part of these series. Step-by-step and video! - Published: 2012-12-12 - Modified: 2024-09-04 - URL: https://petri.com/vmware-site-recovery-manager-5-preparing-vrm-database/ - Categories: Backup & Storage - Tags: SRM, vmware, vmware site recovery manager, VRM - Article Type: Overview Before you configure that VMware vCenter Site Recovery Manager 5 (VRM) server, you gotta prepare the database. Learn how in the first part of these series. Includes both step-by-step instruction and video! Let’s say you’ve already deployed your VMware vCenter Site Recovery Manager 5 (VRM) server. The next step, obviously, would be to configure it. But before you can configure that VRM server, you will have to configure its database first. That’s what I’m going to show you in this post. You may use any of these three databases: SQL Server, DB2, and Oracle. For this article, we’re going to focus on SQL Server because that’s the database that’s usually available for people who do this sort of thing. We’ve broken this article into two parts: In this portion, we'll discuss how to prepare the VRM server database. Later, in part two we'll go over testing and configuring the VRM server. Preparing the VMware Site Recovery Manager (VRM) Database Configuring this database will be very similar to the way you configure a Site Recovery Manager (SRM) database. For simplicity, we’re going to create an identically named database, schema, and login. Then, we’re going to set the database we create as the default database for this login. We’re going to proceed by creating a new user on that database and then map it to the login that we’ve created. We’ll then adjust a couple of login properties such as the schema and the database role membership. So now, let’s go to our SQL Server machine and get started. Launch your SQL Server Management Studio and login using an administrator account. As you see, in my case, I already have a... --- ### 3 Ways to Make the Most Out of Keeping Windows XP > Many IT departments are still using Windows XP and will likely stick with it. Check out these 3 tips on making the most out of keeping Windows XP. - Published: 2012-12-11 - Modified: 2024-11-19 - URL: https://petri.com/windows-xp-tips/ - Categories: Windows XP - Tags: IE6, Internet Explorer 6 - Article Type: How To Many IT departments are keeping Windows XP and will likely stick with the OS when support for the legacy OS expires in April 2014. Read our 3 tips on making the most out of Windows XP. Released in 2001, Windows XP will undoubtedly go down in history as one of the IT industry's most successful and widely-adopted operating systems. Even today, a significant minority of IT shops are still using Windows XP and even may stick with the OS when Microsoft support for the OS expires in April 2014 -- and beyond. Granted, the decision to stick with Windows XP does come with a variety of risks. It's clear that Windows 7 (and Windows 8) are superior to Windows XP in many areas -- including vastly enhanced security features -- that make adopting those newer OSes an easy decision for many IT departments. But many IT departments are deciding to stick with Windows XP for three primary reasons: The expense of upgrading, compatibility problems related to legacy apps that require Internet Explorer 6, and an assessment that Windows XP is still "good enough" for most office tasks. Why Keep Windows XP? A number of companies have stepped in to provide products that can help with the migration of legacy applications bound to IE6 or IE7 and Windows XP, including Browsium Ion. Yet many companies are reluctant to spend any more money on a legacy application to enable an effective migration, a situation that infrastructure architect Andrew Morgan has had to contend with. Morgan told me via Twitter that a client's decision to stick with Windows XP for a small number of PCs was driven primarily by a large, expensive application that required IE6 to operate... . --- ### Performing Disk Repair with PowerShell Cmdlets in Windows Server 2012 > Sometimes things go wrong with disks or volumes. Learn to repair disks with Powershell cmdlets in Windows 2012 in this helpful article. - Published: 2012-12-10 - Modified: 2024-09-04 - URL: https://petri.com/disk-repair-powershell-cmdlets-windows-server-2012/ - Categories: Backup & Storage - Tags: Advanced, cmdlet, PowerShell, repair-volume, Windows 8, Windows Server 2012 - Article Type: How To Sometimes things go wrong with disks or volumes: it's practically the Saga of the Sysadmin. Learn to perform disk repair with Powershell cmdlets in Windows 2012 in this helpful article by Jeff Hicks. As careful as we might be, sometimes things go wrong with disks or volumes. In the past this meant turning to command line tools such as chkdsk. exe to scan and repair problems. You might run a command like this: ​C:> chkdsk c: /r With Windows Server 2012 and even Windows 8, you can still run such commands. But a better approach would be to use a repair-volume PowerShell cmdlet from the Storage module. Note that this is not a PowerShell v3 feature -- it requires PowerShell v3 but you’ll only see the module on Windows Server 2012 or Windows 8. In this article, we'll cover the usage of the repair-volume Powershell cmdlet, the –OfflineScanAndFix parameter, the –SpotFix Powershell cmdlet, and the Get-VolumeScan Powershell cmdlet. The Storage module is a collection of CIM-based functions for managing files, volumes, and disks, and it should be installed by default on PowerShell v3 systems. The command we’re interested in is called Repair-Volume. You will need to run it in an elevated PowerShell session with administrative privileges. How to scan for problems with the Repair-Volume Powershell cmdlet Even though the cmdlet name implies an active process, i. e. repair, it can also be used like chkdsk. exe to simply scan a volume for problems. The easiest approach is to use drive letter. ​PS C:> Repair-Volume e -Scan NoErrorsFound Note that you only use the drive letter. Because the underlying command is using CIM, you can specify a remote computer running PowerShell v3 either by name... --- ### Windows 8 Deployment Using MDT 2012: OS Install > Read on about Windows 8 deployment using MDT 2012 in part two of this series by Peter De Tender. - Published: 2012-12-06 - Modified: 2024-09-04 - URL: https://petri.com/windows-8-deployment-mdt-2012-os-install/ - Categories: Windows 8 - Tags: mdt 2012, Microsoft Deployment Toolkit, Windows Client OS, windows deployment - Article Type: Overview In part two of this series, IT veteran Peter De Tender walks through the Windows 8 OS install using MDT 2012. In part one of this series on Windows 8 deployment using Microsoft Deployment Toolkit 2012, I went over the configuration and setup of MDT 2012. In this second and final installment, I’ll start with booting the machine with the bootable USB stick I created in the previous article. I'll also give you additional background and feedback of the client deployment process itself. The demo machine I used for creating this procedure is running Windows XP Pro SP3. It had a user profile active on it with some background desktop settings, some files on the desktop, and other items -- these settings and data need to be migrated after the deployment by using Microsoft's User State Migration Tool (USMT). Once we have booted the machine from the USB stick (a BIOS bootable settings update might be required to make booting from the USB possible), we can see the Solution Advisors MDT client start up.   Since we want to deploy a new image on this machine, go ahead and select Run Deployment Wizard. If no Dynamic Host Configuration Protocol (DHCP) is available on your subnet, you will have the option to configure Static IP settings here as well. Next we need to enter a domain password; it is also important to specify our keyboard layout to be used during the deployment. As we have only one possible image to be deployed (created in the previous step on server-side), we can select only that one here. In the next... --- ### HP Cloud Services and Strategy Updates Announced > Read on for the latest updates to HP Cloud Services, HP Cloud Service Automation, and HP CloudSystem, as announced at 2012 HP Discover Frankfurt. - Published: 2012-12-05 - Modified: 2024-12-03 - URL: https://petri.com/hp-cloud-services-strategy-update/ - Categories: Cloud Computing - Tags: HP Cloud Services, HP CloudSystem, hybrid cloud, IaaS, PaaS, Private Cloud, Public Cloud, SaaS - Article Type: News HP had a host of cloud computing-related news to reveal at the 2012 HP Discover Frankfurt event, including updates for HP Cloud Services, HP Cloud Service Automation (CSA) and HP CloudSystem. HP had a host of cloud computing-related news to reveal at their HP Discover Frankfurt event in Germany this morning, including upgrades to HP Cloud Services, new capabilities for HP Cloud Service Automation (CSA) and HP CloudSystem. The company also took the wraps off the latest updates to the HP Global Product Authentication Service (GPAS), a cloud-based service that helps companies track down counterfeit and imitation versions of their products. HP Cloud Services: Ready to Compete With Amazon? I’d argue that the biggest news are the updates to HP’s public cloud services, which fall under the HP Cloud Services umbrella. HP Cloud Compute and HP Cloud Block Storage are HP’s answer to the pay-as-you-go cloud computing models championed with great success by the Amazon Web Service (AWS) offerings Amazon Elastic Compute Cloud (EC2) and Amazon Simple Storage Service (S3), respectively. Updates to the HP Cloud Application Platform as a Service (PaaS) and HP Cloud Workload Migration Services round out the HP Cloud Services announcements. According to Ken Won, HP’s Product Marketing Director for HP Cloud Software, the company is positioning their Cloud Services platform as an integral part of their converged cloud strategy, an approach which ties together public, private, and hybrid clouds using HP cloud automation and management services. HP Cloud Strategy: Choice, Confidence, and Consistency “We’re trying to give our customers a consistent experience across all types of cloud offerings,” says Won. “Whether they’re using private, public, or hybrid cloud services, our approach is to focus on choice,... --- ### Windows 8 Deployment Using MDT 2012: Setup and Configuration > Learn how to setup Windows 8 deployment using MDT 2012 in this first of a two-part series by Peter De Tender. - Published: 2012-12-04 - Modified: 2024-12-03 - URL: https://petri.com/windows-8-deployment-mdt-2012-setup/ - Categories: Windows 8 - Tags: ADK, Configuration, Light Touch Installation, LTI, mdt 2012 - Article Type: Overview In this first of a two-part series, Peter De Tender walks through MDT 2012 setup and configuration prior to deploying Windows 8. I recently wrote an article about my Windows 8 experiences, with an overview of some cool features in this new version of the Windows client OS. As a follow-up, I thought it would be interesting to explain how one could deploy Windows 8 in a business environment. In this first article of a two-part series, we'll look at setup and configuration of the Microsoft Deployment Toolkit 2012 prior to Windows 8 deployment. In the second article I'll cover the actual Windows 8 deployment and installation using MDT2012, including booting the machine with the bootable USB stick. 3 Ways to Deploy Windows 8 But before we begin, let's cover some basics. In short, there are three possible ways for Windows 8 deployment: Manual deployment Semi-automated deployment, aka Light Touch Installation or LTI Fully-automated deployment, aka Zero Touch Installation or ZTI Manual Deployment: A manual deployment is something that could happen in homes and really small-to-medium business environments. This approach involves taking a backup of the data, reinstalling the PC by starting a manual setup of Windows 8 (DVD, ISO, etc. ), and restoring the user data. This is rather time-consuming, and I personally think it is a bit outdated. Even so, this is still a very good solution for all PC environments with less than ten machines. Light Touch Installation (LTI): Light Touch Installation means you will use a semi-automated approach for Windows 8 deployment. In short, this involves using a deployment tool, creating an image, and reproducing/deploying the... --- ### Using Ping and Traceroute for Network Troubleshooting > Learn how sysadmins use the ping and traceroute (aka tracert) commands to configure and troubleshoot networks. - Published: 2012-12-03 - Modified: 2024-09-04 - URL: https://petri.com/ping-and-traceroute-network-troubleshooting/ - Categories: Networking - Tags: ping command, traceroute, tracert - Article Type: Overview We're taking a look at traceroute! Learn how sysadmins use ping and traceroute (aka tracert) to configure and troubleshoot networks. There are a number of different tools that are available to help in the configuration and troubleshooting of networks. Many of these are included as part of the operating system which makes them even more useful because they are included on most computers automatically. This article takes a look at ping and traceroute (also known as "tracert"): two commands that are among the most commonly used tools used on Windows as well as their equivalents on other platforms. Their popularity has much to do with their basic simplicity: They offer a whole lot of output for very little input, and they can help in a number of different situations both during configuration and during troubleshooting. What are the Ping and Traceroute Commands? The Ping Primer The ping command is used to determine whether a destination host is reachable. It does this by taking advantage of the Internet Control Message Protocol’s (ICMP) echo facility. An ICMP echo packet does exactly what it sounds like: It sends a packet out onto the network with the expectation of hearing a response. If the response comes back, then a host is reachable; if no response is received, then a problem has possibly occurred. So why is this only a possibility and not a certainty? Because network security is such a big part of any modern Internet connection, ICMP echo packets are commonly not allowed through firewalls, whether host- or network-based. So if an ICMP echo is not received, it could mean... --- ### Using the Netstat Command to Monitor Network Traffic > The netstat command can be a very useful tool. Learn more about how to use netstat command to monitor your network traffic and more. - Published: 2012-11-30 - Modified: 2024-09-04 - URL: https://petri.com/netstat-command-monitor-network-traffic/ - Categories: Networking - Article Type: Overview The netstat command can be a very useful tool for the sysadmin. Learn more about how to use the netstat command to monitor your network traffic and more. There are a number of different tools that are available to help in the configuration and troubleshooting of networks. Many of these are included as part of the operating system, which makes them even more useful because they are included on most computers automatically. This article takes a look at the Windows implementation of the netstat command, although there are versions of netstat available for many other OSes. What Is the Netstat Command? Well if we are to use the most obvious description, the netstat command (short for "network statistics") is used to display protocol statistics and current TCP/IP network connections. While this may sound simple, it can be used to find a large amount of information about the state of the connection into the device including, but not limited to: which ports are open for incoming connections, which ports are actively in use, the current state of existing connections, in-depth protocol statistics, and many other useful pieces of information. How Is the Netstat Command Used? To ensure the best understanding of how the command is used and what information is returned, the easiest way for me to show you how to use netstat is to use several examples of useful output. This section takes a look at some of the most common command options and what output can be expected from their use. Below, figure 1 displays the options that are available for use with the netstat command -- without any additional parameters the command will... --- ### Useful Keyboard Shortcuts for Windows Server 2012 > Check out this helpful list of keyboard shortcuts for faster ways to navigate the new interface in Windows Server 2012. - Published: 2012-11-29 - Modified: 2024-11-19 - URL: https://petri.com/keyboard-shortcuts-for-windows-server-2012/ - Categories: Windows Server 2012 - Tags: Editor's Pick, keyboard commands, keyboard shortcuts - Article Type: Overview Looking for a faster way to navigate the new interface in Windows Server 2012? Check out this helpful list of Windows Server 2012 keyboard commands and shortcuts. Windows Server 2012 boasts an impressive number of new features and getting access to them quickly via the GUI can sometimes be a challenge. Like its client cousin, Windows 8, Windows Server 2012 now boots by default to a revamped "Start Screen" that presents programs and applications in a colorful tile-based interface, formerly known as Metro. The new Windows Server 2012 Start Screen (Image via Microsoft). If you're like me, I've found that using keyboard shortcuts can quickly help me cut through a few levels of mouse-clicks to get exactly what I need. Such is the case with Windows Server 2012, which features a bevy of keyboard commands you can use to quickly and easily access programs, files, and OS configuration options. I've gathered up a list of some of the most common keyboard shortcuts, but feel free to add your favorites to the comments section of this blog. One quick aside: The new Server Manager interface introduced in Windows Server 2012 is a joy to use -- and makes managing physical and virtual servers much easier than in previous versions of Windows Server -- but it has it's own assortment of keyboard shortcuts. Microsoft has posted a list of server manager keyboard shortcuts on Technet, so I'd suggest you give those a look as well. Keyboard Shortcuts for Windows Server 2012 Windows Key + C - Opens Charms bar Windows Key + Ctrl + Tab - Cycles through apps Windows Key + Shift... --- ### DameWare Remote Support Software [Sponsored] > Learn how DameWare Remote Support software by Solarwinds enables remote Windows administration, Active Directory Management, and more. - Published: 2012-11-28 - Modified: 2024-09-04 - URL: https://petri.com/dameware-remote-support-software/ - Categories: Windows Server - Tags: DameWare, remote support software, SolarWinds - Article Type: How To Have a need for remote support software? Learn how DameWare Remote Support software by Solarwinds enables remote Windows administration, Active Directory Management, and more. Sponsored IT content provided by SolarWinds  Remote support software is no longer an optional tool for SysAdmins, it’s a necessity. DameWare®, part of the SolarWinds® family, offers affordable, easy to use remote support tools that let you provide IT support across multiple locations and in a mixed-OS environment. DameWare Remote Support With DameWare Remote Support, you can support 1,000s of end-users without having to leave your desk. Its remote capabilities save you time by allowing you to complete Windows® administration tasks and quickly troubleshoot Windows, Mac OS® X, and Linux® computers – all from the convenience of your DameWare Remote Support console. Best of all, DameWare is priced per admin instead of per managed computer, making it easy to afford. Desktop Remote Control DameWare Remote Support software lets you provide remote tech support by taking control of an end-user’s computer. With DameWare’s remote control software, you can troubleshoot problems as if you were standing over the end-user’s shoulder. DameWare’s remote support tools let you: Quickly connect and control the end-user’s desktop Take one-click screenshots of the remote desktop Chat with the end-user as you troubleshoot problems Instantly transfer files to remote computers Perform Windows administration tasks Remotely control Windows, Mac OS X, and Linux desktops Remote Windows Administration DameWare Remote Support allows you to manage your distributed Windows environment with its remote administration tools. You can do everything remotely—reboot computers, view and clear event logs, start a remote console, and administer Windows services. Manage Windows services and... --- ### Five Reasons to Deploy Exchange 2013 > Exchange 2013 is loaded with useful new features. Read on for our reasons to deploy Exchange 2013, Microsoft's ubiquitous email server software. - Published: 2012-11-27 - Modified: 2024-09-04 - URL: https://petri.com/why-deploy-exchange-2013/ - Categories: Exchange 2013 - Tags: Editor's Pick, Exchange 2013 - Article Type: Opinion Exchange 2013 is loaded with useful new features, from OWA enhancements to new security options. Read on for more reasons why you may want to deploy the latest version of Microsoft's ubiquitous email server software. The arrival of Windows 8 has dominated news headlines over the last few months, but most IT professionals I've spoken with are adopting a wait-and-see attitude. Underneath the avalanche of media coverage, PR outreach, and advertising efforts for Windows 8, Microsoft has been steadily shipping significant updates to many of their server products this year, including Windows Server 2012, SharePoint 2013, and Exchange 2013. Aside from Windows Server -- which forms the core of any Windows-oriented IT infrastructure -- I'd argue that the next most significant server product line is Exchange, which still reigns as the internal e-mail server of choice for most IT professionals. Given the vital importance of e-mail communication in most businesses and organizations these days, every new version of Exchange should be carefully evaluated before deployment, and Exchange 2013 is no exception. Exchange 2013 ships with dozens of news features and improvements, but I've singled out a handful that could have the greatest impact over earlier versions of Exchange. Reason to Use Exchange 2013 #1: Outlook Web Access (OWA) Enhancements While Outlook may be the preferred e-mail client for many using a desktop PC in the office, Outlook Web Access (OWA) has increasingly become the preferred way for many people to get their e-mail via a remote PC, laptop, tablet, smartphone, or other mobile device. I think we can agree that the earliest versions of OWA had a long way to go in terms of functionality; Microsoft seems to agree, and the company... --- ### How to Configure a Static IPv4 Address in Windows 7 - Published: 2012-11-26 - Modified: 2024-09-04 - URL: https://petri.com/configure-static-ipv4-address-windows-7/ - Categories: Windows 7 - Tags: DHCP, Dynamic Host Configuration Protocol, IPv4, IPv4 addresses, Windows Server - Article Type: How To Knowledge is power! Learn how to configure a static IPv4 address using Windows 7 in this useful step-by-step tutorial. For many people, the configuration of a static IPv4 address is not required because of large-scale deployment of Dynamic Host Configuration Protocol (DHCP) servers. In fact, most people don’t even notice that they use these servers every day -- typically in the little box that connects to their service provider. This is also generally true for those working in a corporate environment: Usually this address management is handled by the network administrator who in turn runs a DHCP Server (a more powerful one) on the corporate network. For those who want to understand IPv4 addressing, one of the most helpful things to learn  is how to alter the configuration of a device to make it a static IPv4 address. The address is not requested and managed from a central server; because of this the address does not change (and thus is static). This article will take a look at the process of configuring a static IPv4 address in Windows 7; however, the same general steps can be followed on most of Microsoft’s current platforms, including Windows Server. Configuring a Static IPv4 Address Using Windows 7 Our first step involves getting to the Control Panel. Since there is more than one way, let's go ahead and begin by clicking on the Start menu and selecting Control Panel from the right side of the menu as shown below in Figure 1. This assumes default start menu settings. After you've opened the Control Panel, click on... --- ### 7 Things Sysadmins Can Be Thankful For This Thanksgiving > What are sysadmins thankful for this Thanksgiving? Check out what must-have items makes the lives of IT pros easier. - Published: 2012-11-21 - Modified: 2024-12-03 - URL: https://petri.com/7-things-sysadmins-are-thankful-thanksgiving/ - Categories: Windows Server - Tags: coffee, Halo, Mark Russinovich, Sysinternals - Article Type: Opinion What are system administrators thankful for this Thanksgiving? Jeff James offers up some things that make the lives of IT pros easier, from Windows Server 2012 to everyone's favorite hot beverage. It'll soon be Thanksgiving here in the United States, a holiday where friends and family gather to consume prodigious quantities of food, squabble with relatives, and attempt to enjoy a few days away from the workplace. If you're not an American and need a primer on what Thanksgiving is all about, please refer to Empire Online's excellent guide to Thanksgiving for Non-Americans. You could also watch Planes, Trains, and Automobiles, a film I consider to be simultaneously one of the best comedies of all time as well as a subtle reminder of what Thanksgiving should be about. Giving thanks for family, friends, and the things you're most fond of is a custom for many people around Thanksgiving, so in the spirit of the season, I've decided to put together a quick list of some of the things that IT professionals can be thankful for this year. Feel free to agree or disagree -- and add a few of your own things to be thankful for by sounding off in our comments section. What Sysadmins Can be Thankful For #1: Windows 7 Sure, Windows 8 is all over the news these days, and it is does happen to be the latest and greatest client operating system from Microsoft. But let's hear it for Windows 7, which is arguably the best example yet of what an OS optimized for a traditional mouse and keyboard should be. I've been an avid Windows user since the original release of Windows 1. 0 in 1985, and Windows 7... --- ### How to Modify, Schedule and Launch Scheduled Tasks in Windows 8 and Server 2012 > Learn to modify a scheduled task, manually launch a scheduled task, remove a scheduled task in this PowerShell series by Jeff Hicks, - Published: 2012-11-20 - Modified: 2024-09-04 - URL: https://petri.com/manage-schedule-and-launch-scheduled-tasks/ - Categories: PowerShell - Tags: cmdlet, Intermediate - Article Type: How To We're taking you to task in this final installment of our PowerShell scheduled tasks series. Learn to modify a task, manually launch a task, remove a task, and more. We’ve been looking at how to manage scheduled tasks in Windows 8 and Windows Server 2012 using PowerShell. In part one of this series, I showed you how to use the ScheduledTasks module to retrieve information about scheduled tasks. In part two, I walked you through creating a new scheduled task using PowerShell that would run daily. Let’s see what else we can do with it. In this final installment, we're going to learn how to manage scheduled tasks in Windows 8 and Windows Server 2012, specifically, how to modify a scheduled task, manually launch a scheduled task, disable and enable a task, and remove a scheduled task. First, I’ll save the task to a variable so I don’t have to keep getting it. ​PS C:> $task = Get-ScheduledTask DailyMSInfo PS C:> $task TaskPath TaskName State -------- -------- ----- MyCompanyReporting DailyMSInfo Ready The task object has a number of properties that can be set as you can see in Figure 1. How to Modify a Scheduled Task I think the easiest way to modify a scheduled task is to assign new values to the scheduled task object. Some properties you can modify like this: ​PS C:> $task. Author = "Jeff Hicks" PS C:> $task. Description = "create a daily MSINfo32 Report" PS C:> $task. version = "1. 0" Some properties are part of the nested Settings object. PS C:> $task. settings AllowDemandStart : True AllowHardTerminate : True Compatibility : Vista DeleteExpiredTaskAfter : DisallowStartIfOnBatteries : True Enabled : True ExecutionTimeLimit : PT72H Hidden... --- ### How to Limit Targeted Ad Tracking in iOS 6 > Of the 200+ new and enhanced features Apple touted with iOS 6, nowhere is their new form of Ad Tracking listed. Learn how to limit targeted ad tracking in iOS6 with this tutorial by John O'Neill, Sr. - Published: 2012-11-19 - Modified: 2024-09-04 - URL: https://petri.com/limit-targeted-ad-tracking-ios-6/ - Categories: Security - Tags: ad tracking, Apple, IDFA, ios6 - Article Type: How To Of the 200+ new and enhanced features Apple touted with iOS 6, nowhere is their new form of Ad Tracking listed. Learn how to limit targeted ad tracking in iOS6 with this tutorial by John O'Neill, Sr. Ad Tracking: Two simple words that when put together give many people cause to shudder. No one likes the idea that what he or she does on a computing device is monitored, analyzed, and used to target advertising. Personally, the concept conjures imagery of the Big Brother government from George Orwell’s novel 1984. Luckily that analogy is somewhat over-the-top and laughable, but the fact remains I still don’t like the concept of Ad Tracking. With the advent of iOS 6, Apple turned on Ad Tracking once more, but in this article I’m going to show you how to turn it right back off. Before we get to that though, let’s discuss what’s going on in a bit more detail. Apple's History of Ad Tracking It doesn’t much matter the device, operating system, or web browser you choose to use -- odds are there will be some degree of ad tracking implemented. The marketplace is just too lucrative for manufacturers of these systems to swear off the concept. So they try hard to have their cake and eat it too by implementing ad tracking mechanisms as quietly and discretely as possible. Apple is by no means any different: Of the 200+ new and enhanced features they touted with iOS 6, nowhere is their new form of Ad Tracking listed. No real surprise here. Ad Tracking on iPhones and iPads is nothing new. It was there in its original form until iOS 5 when Apple publicly killed it. Aye, here’s the rub... --- ### Microsoft at a Crossroads > It's been a busy few weeks for Microsoft. Read Jeff James' thoughts on the release of Windows 8, Microsoft Surface, and Windows Phone 8, as well as the departure of Windows President Steven Sinofsky. - Published: 2012-11-16 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-at-a-crossroads/ - Categories: Windows 8 - Tags: Microsoft Surface, steven sinofsky, Windows 8, windows phone 8 - Article Type: Opinion It's been a busy few weeks for Microsoft. Read Jeff James' thoughts on the release of Windows 8, Microsoft Surface, and Windows Phone 8, as well as the departure of Windows President Steven Sinofsky. It's been a busy few weeks for Microsoft: Windows 8, the new Microsoft Surface tablet, and Windows Phone 8 all were released to the computing public over the last month or so. I can't imagine a time where more significant products were released by Microsoft in such a short period, and the ramifications for consumer and IT professionals is profound. Sinofsky Departs Microsoft was also in the news recently for the surprising departure of Windows President Steven Sinofsky. More than any other person at Microsoft, Sinofksy was seen as the face of Windows 8. Sinofksy and his team were the ones credited with over-delivering and (under-promising) Windows 7, and Sinofsky and company sought do to the same with Windows 8. CNet's Jay Greene authored an excellent article about Sinofsky just a few short weeks of his departure that painted Sinofsky as driven, ambitious, and meticulous -- a brilliant individual who also had a propensity to ruffle the feathers of other senior Microsoft executives. Steven Sinofsky, former president of the Windows and Windows Live divisions at Microsoft The runaway success of the iPad meant that Microsoft had to radically change its approach to OS development. Whether you love or hate the design approach that Microsoft took with Windows 8 -- and the reaction to our recent articles for Windows 8 and against Windows 8 deployment seem to indicate a definite divide in the electorate of Petri IT Knowledgebase readers -- you have to agree that Microsoft had to do something to transition Windows from... --- ### Manage Scheduled Tasks in Windows 8 and Windows Server 2012 with PowerShell : Part 2 > Create a new scheduled task in Windows 8 and Windows Server 2012 with Powershell in part two of this series by Hicks. - Published: 2012-11-15 - Modified: 2024-09-04 - URL: https://petri.com/manage-scheduled-tasks-windows-8-windows-server-2012-powershell-part-2/ - Categories: PowerShell - Tags: cmdlet, Intermediate, scheduled tasks, Windows 8, Windows Server 2012 - Article Type: How To Create a new scheduled task in Windows 8 and Windows Server 2012 with Powershell in part two of this series by Jeff Hicks. In the first article of this series, I showed you how to use the ScheduledTasks module to retrieve information about scheduled tasks. This requires PowerShell v3 but is only available on Windows 8 and Windows Server 2012. However, you can use module cmdlets to remotely manage tasks on either platform. In this article I want to walk through creating a new scheduled task using PowerShell. Eventually we will use the New-ScheduledTask cmdlet, and it is possible to create a task with a complex one-line command. But for the sake of clarity I’m going to break things down step-by-step. Once you understand the concepts and have some experience you can throw everything together in a single command. Defining a Trigger The first item of business is to define a scheduled task trigger. That is, when do we want the task to run? The cmdlet to use is New-ScheduledTaskTrigger. You can see the help in Figure 1.   I am not going to go through every parameter option, as most of the parameters should be self-explanatory. But I do want to point out the –At parameter. You can specify any date or time string, and the cmdlet will try to convert it into an appropriate object. ​ PS C:> new-jobtrigger -Once -At "18:00"   Id         Frequency       Time                   DaysOfWeek          Enabled --         ---------       ----                   ----------          ------- 0          Once            10/3/2012 6:00:00 PM                          True PS C:> new-jobtrigger -Once -At "12/15/2012 8:30"   Id         Frequency       Time                   DaysOfWeek          Enabled --         ---------       ----                   ----------          -------... --- ### Generating Site Survey Reports Using Cisco WCS > Learn how to generate impressive site survey reports using Cisco WCS with this helpful step-by-step article. - Published: 2012-11-14 - Modified: 2024-09-04 - URL: https://petri.com/generating-site-survey-reports-using-cisco-wcs/ - Categories: Cisco - Tags: site survey report, wcs, wireless control system - Article Type: How To Learn how to generate impressive site survey reports using Cisco WCS with this helpful step-by-step article. (Editor’s note: This is a text transcript of the TrainSignal training video called Conducting a Cisco Unified Wireless Site Survey by Avril Salter. ) The Cisco Wireless Control System (WCS) allows you to generate very professional site survey reports, which can help you leave a good impression when you submit them to your customer. What is in the Site Survey Report? Let’s begin by discussing what should be in the Site Survey Report. I always start with a description of the facility where the site survey was conducted. I talk about the buildings, the floors, etc. You will want to list exactly where the sites you’ve been surveying (and where you would eventually be deploying equipment) are located. It’s also always good to put in the survey report what the customers needs are. You will also want to put in the recommended equipment, making sure you are as detailed as possible. You may want to talk about what your access point equipment are and where they should be located. In addition, you may want to talk about the antennas you’ll be using and, if you’ll be using external antennas, which direction they should be facing. You should give a very detailed description of the network cabling that you’ll be using to connect your access points. Don’t forget to mention your mounting requirements, including whether you will be attaching to a ceiling or to a wall. Naturally, you will have to know what mounting equipment you’ll need. Last but... --- ### How to Prepare an iPad for Deployment Using Apple Configurator > We're movin' on to mobile device management! Read on to learn how to prepare an iPad for deployment using Apple Configurator. - Published: 2012-11-13 - Modified: 2024-09-04 - URL: https://petri.com/how-to-prepare-ipad-deployment-using-the-apple-configurator/ - Categories: Windows Server - Tags: apple configurator, iPad - Article Type: How To We're movin' on to mobile device management! Read on to learn how to prepare an iPad for deployment using Apple Configurator. Mobility is all the rage. It’s on the Net, in the press, and -- most important to IT administrators -- it’s in the enterprise. Put mobility in the enterprise and the need for management is immediately apparent. Unfortunately, mobile device management solutions vary as much in features and functionality as they do in price. Lucky for us, good solutions don’t always have sky high prices. Enter Apple Configurator. Apple Configurator is a free mobile device management (MDM) solution from Apple. Although targeted at smaller organizations such as schools and small businesses, the product is equally at home as a key part of the MDM strategy at larger enterprises. The product runs on (and is only available for) Mac OS X. If you are a Windows-only shop and want to use Apple Configurator, the time to buy your first Mac may have just arrived. Apple Configurator divides all of its functions between three workflows: Prepare, Supervise, and Assign. Each workflow groups a task related to its purpose. In a nutshell, Prepare is about getting the iPad ready, Supervise takes control of it, and Assign allows you to deploy the iPad to specific users.   In this article I’ll show you how simple it is to use the Prepare workflow to perform the common preparatory task of naming the device. I’ll use Apple Configurator to assign a new name to not just one but two iPads. Since we’re discussing MDM, just any old name won’t do -- no, Apple Configurator... --- ### Five Must-Have Windows 8 Apps > Whether you're still deciding whether to upgrade to Win8 or have already taken the plunge, check out our list of the top 5 must-have Windows 8 apps. - Published: 2012-11-12 - Modified: 2024-09-04 - URL: https://petri.com/five-best-windows-8-apps/ - Categories: Windows 8 - Tags: Classic shell, Evernote, OneNote, skype, Start8 - Article Type: Overview Whether you're still deciding whether to upgrade to Windows 8 or have already taken the plunge, check out our list of the top 5 must-have Win8 apps. Windows 8 is now shipping and available, and the first wave of applications designed to specifically take advantage of Windows 8 are beginning to hit the market. If you're still on the fence about moving to Windows 8, I've written a pair of articles that argue, respectively, why moving to Windows 8 is a good idea and why you may want to wait on deploying Windows 8. If you have decided to take the plunge and upgrade to Windows 8, here are some of the better apps and utilities that I've come across. Windows 8 Start Menu Replacements No Windows 8 software discussion can be complete without talking about all the utilities that add a traditional Windows start button and menu to Windows 8. Our own Trevor Pott has written up an excellent how-to about using the Classic Shell utility to add the start menu to Windows 8, but there are several other utilities available, and more seem to be hitting the market every month. Here are a few of the others: Power8, Pokki, ViStart, StartMenu7, and Start8 (pictured). I haven't personally tried most of them, but we're currently working on a multi-product comparison at the Petri IT Knowledgebase of these tools, so stay tuned. Stardock's Start8 Windows 8 start menu utility Fresh Paint If you're running Windows 8 on a touch-enabled device, the Fresh Paint app (found in the Windows App Store) is one of the best pieces of software yet for demonstrating how cool a... --- ### Windows 8 Feature Focus: 3 Huge Improvements in IIS 8 > We name the three big improvements in IIS 8 and teach you how to install IIS 8 in Windows 8 and Windows Server 2012. - Published: 2012-11-08 - Modified: 2024-11-19 - URL: https://petri.com/windows-8-feature-focus-3-improvements-iis-8/ - Categories: Windows 8 - Tags: IIS8, Internet Information Server 8 - Article Type: Overview Who doesn't like improvements? We name the three biggest features in IIS 8 and teach you how to install IIS 8 in Windows 8 and Windows Server 2012. This article focuses on one of the features of Windows 8 and Windows Server 2012: IIS 8. In it, I'll give you three new abilities of Internet Information Services 8, and then I’ll show you a couple of different ways to install it on either Windows Server 2012 or Windows 8. Internet Information Services (IIS) 8 includes many new and improved features that make moving to Windows Server 2012 compelling for organizations that rely on Windows Servers as their web server. For developers and system administrators that are looking to mirror that IIS environment on their workstation for development or testing, IIS 8 gives another reason to move your workstation to Windows 8. Improvement 1: Centralized SSL Certificate Management With IIS on Windows 8 or Windows Server 2012, you can take advantage of the SSL certificate management console. This is a central management console that is able to install certificates and work with certificates across all IIS 8 web servers. This includes the ability to more rapidly bring new servers online by being able to import all certificates that are needed. If a certificate needs to be renewed on multiple systems, it can be done through the IIS 8 certificate management console. You no longer have to log onto each system to update the certificate. Note: Centralized SSL Certificate management is installed as a separate feature. You can install IIS without Centralized SSL Certificate Support. Centralized SSL Certificate Support is in the security section of “Windows Features. ”... --- ### Manage Scheduled Tasks in Windows 8 and Windows Server 2012 with PowerShell : Part 1 > Manage scheduled tasks in Windows 8 and Windows Server 2012 with Powershell in part one of this series by Jeff Hicks. - Published: 2012-11-08 - Modified: 2024-09-04 - URL: https://petri.com/manage-scheduled-tasks-windows-8-windows-server-2012-powershell-part-1/ - Categories: PowerShell - Tags: cmdlets, Intermediate, scheduled tasks - Article Type: How To You have the power! Manage scheduled tasks in Windows 8 and Windows Server 2012 with Powershell in part one of this series. One of the most useful features in Windows 8 and Windows Server 2012 is the ability to manage scheduled tasks from PowerShell. No more relying on the legacy workhorse schtasks. exe or trying to wrap it up in fancy PowerShell commands -- now we have true cmdlets. In the next few articles, we’ll explore how to take advantage of this feature. In this first article I'll teach you how to use the ScheduledTasks module to retrieve information about scheduled tasks. In part two, I'll walk through creating a new scheduled task using PowerShell. Requirements for Scheduled Tasks First things first. Managing scheduled tasks comes to us courtesy of the ScheduledTasks module. While this also requires PowerShell v3, the module can only be found on Windows 8 and Windows Server 2012 platforms. That means that even if you have PowerShell v3 running on Windows 7 or Windows Server 2008 R2, you don’t get this feature. In those situations, you’ll have to continue managing scheduled tasks as you are now. Note: Don’t confuse this with scheduled jobs - that is a feature of PowerShell v3, which means you have it anywhere v3 is installed. How to Get a List of Scheduled Tasks To get a list of all scheduled tasks, all you need to do is ask. ​PS C:> Get-ScheduledTask Below, Figure 1 depicts what you can expect on a Windows 8 system.   Because PowerShell autoloads modules, you don’t even have to import the ScheduledTasks module. The default behavior... --- ### What Is Windows Azure IaaS? > Want to feel clear-headed about the cloud? Learn more as Matt Hester discusses cloud services such as Windows Azure Iaas and how it can work for you. - Published: 2012-11-07 - Modified: 2024-09-20 - URL: https://petri.com/what-is-windows-azure-iaas/ - Categories: Cloud Computing - Tags: hybrid cloud, hybrid infrastructure, IaaS, infrastructure as a service, virtual machines, Windows Azure - Article Type: Overview Want to feel clear-headed about the cloud? Learn more as Matt Hester discusses cloud services such as Windows Azure Iaas and how it can work for you. Some of you may have started down the path of working with cloud computing and have run into the phrase "Infrastructure as a service" or IaaS. You might be wondering what IaaS can provide for you and your business. You may even get a little confused about IaaS and all the similar terminology that is out there: PaaS, SaaS, STaaS, SECaaS, etc. In this article we are going to take a brief look at IaaS, then we will take a longer look into Microsoft's Azure IaaS and how you can get started with Windows Azure IaaS. Cloud Services To understand cloud, think quickly on your on premise datacenters. In your datacenters you manage everything from the networking and servers to the applications and everything in between. When you begin to leverage clouds services you offload some or all of the management of your datacenter services. To understand this, let’s take a quick look at two other main cloud services: Platform as a Service (PaaS) and Software as a Service (SaaS). PaaS, SaaS, and Iaas PaaS provides a platform for your applications, and you have really no control over the platform. With PaaS you only had to manage the applications and data, and the cloud service managed the rest of infrastructure. This is by design: PaaS was the original offering of Windows Azure and provided a highly scalable Windows platform for your applications. You still architected, created, compiled, and tested your applications to run in Windows Azure. You then uploaded the... --- ### How to Use Windows Easy Transfer to Migrate to a Windows 8 PC > Moving info from an old computer to a new one can be a hassle. Read on for a hassle-free way to use Windows Easy Transfer to migrate to a Windows 8 PC. - Published: 2012-11-06 - Modified: 2024-11-19 - URL: https://petri.com/windows-easy-transfer-to-migrate-windows-8-pc/ - Categories: Windows 8 - Tags: Windows 8, windows easy transfer - Article Type: How To Moving info from an old computer to a new one can be a hassle. But no more! Read on for a hassle-free way to use Windows Easy Transfer to migrate to a Windows 8 PC. If you’re settled into your old ways of moving from an old computer to a new computer by copying the My Documents and Favorites folders from your old computer to your new computer, you’ll be happy to know that there is a better way. With many people considering an upgrade to Windows 8, now is a better time than ever to talk about the handy Windows Easy Transfer utility. In this article I am going to show you how to use the Windows Easy Transfer utility to efficiently and effectively move over all of the user accounts, Windows settings, and user data from an older computer to a new computer. FAQs About Windows Easy Transfer Windows Easy Transfer takes away the hassle of finding users documents and moving them to their new computer.   The utility replaces what used to be the Files and Settings Transfer Wizard. Who Should Use Windows Easy Transfer? Windows Easy Transfer is made so that it’s the easiest way to transfer files from an old computer onto a new computer. Whether you’re a nontechnical computer user who is excited about getting a new PC but not excited about the prospect of transferring your data, or you're a seasoned IT pro that is hoping to save some time, you should use Windows Easy Transfer to migrate user data from one computer to another. Does Windows Easy Transfer Work on Windows 8? Yes, Windows Easy Transfer is the supported and recommended method of moving data... --- ### Six Reasons to Deploy Windows 8 > Still on the fence about whether to deploy Windows 8? Here are six IT-friendly features that may convince you to make the switch. - Published: 2012-11-05 - Modified: 2024-09-04 - URL: https://petri.com/six-reasons-to-deploy-windows-8/ - Categories: Windows 8 - Tags: Client Hyper-V, Picture Password, Rest and Refresh, Windows To Go - Article Type: Opinion Still on the fence about whether to deploy Windows 8? Here are six IT-friendly features that may convince you to make the switch. The retail release of Windows 8 is upon us, and many IT professionals are considering whether to adopt Microsoft’s latest client OS or stick with Windows XP, Windows Vista, or Windows 7. Windows 8 is arguably the most significant update to the Windows client OS since the release of Windows XP in 2001, and the new Windows 8 UI – aka the Interface Formerly Known as Metro – is optimized for a new generation for touch and tablet devices. But does Windows 8 offer enough new and improved features for business users to warrant an upgrade? Many IT pros have strong opinions on the topic, so in the interest of presenting both side of the argument I’ve decided to write two articles: This one, which provides six reasons why you should deploy Windows 8, and a second article to appear early next week that serves up six reasons why you shouldn’t take the plunge. So what are the most IT-friendly features of Windows 8 that would warrant an upgrade? Let’s take a look. 1. Windows To Go One of the most promising features of Windows 8 Enterprise is Windows To Go, a feature that allows admins to create bootable, self-contained installations of Windows 8 on USB sticks and other USB storage devices. The Windows To Go installation is fully manageable as a traditional client OS, and it can be moved to other PCs with the users settings, files, and other configuration data kept intact. It’s a great feature for end-users... --- ### How to Import Hyper-V Virtual Machines from a Backup > Learn how to import virtual machines using Hyper-V Manager and Powershell with this helpful tutorial by Jeff Hicks. - Published: 2012-11-05 - Modified: 2024-09-04 - URL: https://petri.com/how-to-import-hyper-v-virtual-machines-from-a-backup/ - Categories: Hyper-V - Tags: cmdlet, hyper-v manager, PowerShell - Article Type: How To Learn how to import Hyper-V virtual machines using Hyper-V Manager and Powershell with this helpful tutorial by Jeff Hicks. In my previous article, I explained how to use the Hyper-V export feature to backup virtual machines. Naturally there may come a time when you need to import them again, perhaps to recover from some misconfiguration, data loss or even rebuilding a computer. As with exporting there are two approaches you can take. Using Hyper-V Manager to Import Virtual Machines I have covered using Hyper-V Manager a bit already. In a recent article, I discussed how to import virtual machines using Windows 8 Client Hyper-V. In short, when you import, enter the top-level folder and follow the wizard. Because everything is “self-contained” from your export it should go pretty smoothly. But I want to point out a critical choice below in Figure 1.   If you use the first option, the virtual machine will be registered in Hyper-V but all of the files will remain in the export location. Personally, I like to keep my export folders separate so I try to avoid this option. If you are restoring due to data loss or rebuilding, choosing to Restore the Virtual Machine (the second option) is best. This option will read the configuration files and import everything back to their original location. The end result is that you will be back where you started. If you choose to Copy the Virtual Machine, it will get a new guide, but you ‘ll also be able to specify where you want the different elements to go as you can see... --- ### Six Reasons Not to Deploy Windows 8 > Windows 8 may be an impressive product, but it still may not be right for you or your company. Read our six reasons why you shouldn't deploy Windows 8. - Published: 2012-11-02 - Modified: 2024-11-19 - URL: https://petri.com/six-reasons-not-to-deploy-windows-8/ - Categories: Windows 8 - Tags: iPad, iPhone, Windows 7, Windows Vista, Windows XP - Article Type: Opinion Windows 8 may be an impressive product, but it still may not be right for you or your company. Read our six reasons why you shouldn't deploy Windows 8. It’s been exactly a week since Windows 8 has been released, and Microsoft is doing its best to convince IT professionals and system administrators to adopt their latest client OS. As I pointed out in my article from last week that presented six reasons why you should deploy Windows 8, there are a fair number of impressive new features and improvements that make test-driving Windows 8 a requirement for anyone in IT. All that said, Windows 8 isn’t a sure thing for IT shops. While Windows 7 has been almost universally praised by administrators, end-users, analysts, and journalists – and has the sales figures to prove it – Windows 8 is running into what can only be described as a headwind on the IT adoption side of things. I’ve written a bit about this in the past, including a piece about how Windows XP continues to remain entrenched in many enterprises despite Microsoft’s best efforts to remove it, and how many IT professionals I’ve spoken with aren’t rushing to embrace Windows 8. It’s not just me making this claim, with analysts at research firm Gartner predicting that Windows 8 will only get a “20-25% adoption rate in the enterprise. ” Over at my old stomping grounds at Windows IT Pro, Senior Technical Director Michael Otey – one of the smartest people I know in IT  – has even gone so far as to ask if Windows 8 is the next Windows Vista. So as a counterpoint to the... --- ### Windows 8 Overview and XP-eriences > Veteran IT professional Peter De Tender gives his overview of Windows 8, and discusses what migration from Windows XP/7 to Windows 8 may entail. - Published: 2012-11-01 - Modified: 2024-12-03 - URL: https://petri.com/windows-8-overview/ - Categories: Windows 8 - Tags: deployment, Microsoft Deployment Toolkit, Windows 7, Windows XP - Article Type: Overview Veteran IT professional Peter De Tender gives his overview of Windows 8, and discusses what migration from Windows XP/7 to Windows 8 may entail. This article is coming from a presentation preparation I did a few weeks ago, titled “Windows 8 Overview and XP-riences. " As the session was received very well, I got the idea of writing down my notes to reach out to more than just the 50 people present in the room. Let me start my explaining the title: I assume it is quite obvious this article is about Windows 8, starting with a general overview about some great enhancements in the Operating System, moving over to some important reasons I think why businesses should migrate to this newest version, followed by some key features and new functionalities. But hey, what does the "XP" refer to? Long Live Windows XP Well, based on publicly available figures and facts, 60% of all business worldwide are still using Windows XP as the main operating system in their environment. To my opinion, Microsoft biggest weakness and concern in having organizations migrate massively to Windows 8 is the quality of its predecessor, Windows XP. Also in my opinion – and I’ve been playing and working on my production laptop with Windows 8 since the first beta came out September 2011 – companies will migrate to Windows 8 anyhow, but it will be a long way. When I was a system engineer during the XP era, I remember how difficult organizations migrated from their stable and trusted Windows NT workstations. Now that Windows 8 is available, I have this “back to the future” feeling. I truly hope... --- ### Microsoft Surface RT Review > Microsoft Surface RT | The new Surface RT tablet has finally arrived. Does Microsoft's entry into the tablet arena have what it takes? Read our review for more! - Published: 2012-10-31 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-surface-rt-review/ - Categories: Windows 8 - Tags: iPad, Microsoft Surface, Windows RT - Article Type: Review The Microsoft Surface with WIndows RT tablet has finally arrived. Does Microsoft's entry into the tablet arena have what it takes? Read our review by John O'Neill Sr. to find out. Last Friday, October 26, 2012, saw the release of Microsoft’s massively redesigned operating system Windows 8. Along with the software, Microsoft launched their first-ever internally designed and branded tablet computer: Surface RT. In its first weekend, Surface received arguably more attention than the OS it’s built to run. My own curiosity piqued, I set out to decide if the reality lives up to the rhetoric. Microsoft Surface RT: First Look I picked up my 32GB Surface RT with Touch Cover early on release day from the Microsoft Store. Although the device is inevitably compared to Apple’s iPad, physically it has a number of noticeable differences. It’s taller than but not quite as wide as the iPad. The two tablets are the same thickness, but the Surface feels thicker, possibly from its less rounded design. On the other hand, the Surface is a bit heavier than the iPad, at least on paper. Holding one in each hand, I sure couldn’t tell. The screen on the Surface is almost an inch bigger, but it has a significantly lower resolution of 1366 x 768 than the iPad’s 2048 x 1536. The biggest differences from my point of view are the expansion ports: The Surface RT has three you won’t find on any iPad -- a USB 2. 0 port, a MicroSD port, and an HD video-out port. These could be game changers in the near future. The Microsoft Surface with Windows RT Hardware Features The Surface RT is powered by an ARM-based... --- ### Introduction to Border Gateway Protocol (BGP) > Learn basic concepts of Border Gateway Protocol in this helpful introduction to BGP. - Published: 2012-10-29 - Modified: 2012-10-29 - URL: https://petri.com/introduction-border-gateway-protocol-bgp/ - Categories: Cisco - Tags: BGP, Border Gateway Protocol, Cisco - Article Type: Overview Understanding Border Gateway Protocol (BGP) can be a beastly task. Sean Wilkins lays down some basic concepts in this introduction to BGP. Cisco Border Gateway Protocol (BGP) is a complex topic that often overwhelms those just getting into the network arena. It also can be a confusing topic to cover, especially because it differs from many of the well-known routing protocols being used on most internal networks. The purpose of this article is to give a brief overview of BGP, where it is typically deployed, and how it can be helpful to any large-scale networking deployment. Basic BGP Concepts Unlike commonly known routing protocols like RIP, EIGRP, and OSPF, BGP is different fundamentally in how and where it operates. RIP, EIGRP, and OSPF are each considered Internal Gateway Protocols (IGP) -- in other words, these protocols are intended to be used on the inside of a network and not necessarily between routing domains. BGP, on the other hand, is an External Gateway Protocol (EGP), which was designed with the intention of connecting multiple large scale networks. Because of this assumption, BGP is exceptionally well suited for dealing with large-scale networks and a very large routing table while still being able to operate efficiently. The biggest example of a BGP deployment is the Internet, which is exclusively routed using BGP between all core connection points as well as between many of the smaller access points. BGP is also different from other routing protocols because it runs on top of TCP (port 179); this means that BGP neighbors don’t have to be directly connected (okay, this is an overstatement, but for... --- ### The First 5 Steps to Take with Windows 8 > You have the shiny new Windows release installed -- now what? Jeff Hicks shows you the first five steps to take with Windows 8. - Published: 2012-10-25 - Modified: 2024-09-04 - URL: https://petri.com/first-5-steps-windows-8/ - Categories: Windows 8 - Tags: PowerShell - Article Type: Overview You have the shiny new Windows release installed -- now what? Jeff Hicks shows you the first five steps to take with Windows 8. The arrival of Windows 8 has ushered in a new desktop paradigm that I think offers a few challenges, especially when deployed in a non-consumer environment. Personally, I think there is much Windows 8 has to offer for home users and especially those with tablet devices. But for the rest of us, there’s more work to be done after the initial install. There are five tasks most IT pros will tackle when deploying Windows 8. It remains to be seen how many of these tasks can be automated. For the sake of this article, I’m going to go through each of the steps I take manually with a fresh Windows 8 install. Clean Up the Start Screen in Windows 8 The first task is to clean up the Start (formerly known as Metro) screen. Most of the default tiles are for programs I'm never going to use in a non-consumer environment. On the Start screen, hold down the CTRL key and click the tiles you wish to manage. I’ve selected a number of them in Figure 1.   I can now click Unpin from Start to remove them. The apps are still installed but are gone from view. If you want to totally remove the app, right-click on the Start screen to bring up the All Apps icon and click it. From here you can see all applications. Here in Figure 2 you can see how I right-clicked an app.   Now you can click Uninstall and... --- ### Video Interview: HotLink CEO on Multi-Hypervisor Management and Hybrid Cloud > VMware expert David Davis sits down with HotLink CEO Lynn LeBlanc to discuss virtualization and private cloud management. - Published: 2012-10-24 - Modified: 2012-10-24 - URL: https://petri.com/video-interview-hotlink-multi-hypervisor-management-hybrid-cloud/ - Categories: Virtualization - Tags: Hotlink, Hybrid Express, Lynn LeBlanc, Private Cloud, Public Cloud - Article Type: Interview VMware expert David Davis sits down with HotLink CEO Lynn LeBlanc to discuss virtualization and private cloud management. With only about 50% of server workloads virtualized as of 2012, there is a lot of server consolidation using virtualization left to go. With most of today's servers virtualized using VMware vSphere, many companies are happy to keep it as their virtual infrastructure platform for critical company applications. However, when VMware end-user license agreements come up or when the need for more capacity arrives, enterprises are considering utilizing other hypervisors (like Hyper-V) or public cloud (like Amazon web services, or AWS) to save money. In a multi-hypervisor scenario, there have been traditionally two management options: Managed separately as virtual silos, with no integration Overlay automation such as VMware's DynamicOps or Microsoft System Center Virtual Machine Manager (SVCMM) However, a relatively new company called HotLink has come up with a new and unique option that they say is the third (and best) choice. At VMworld 2012, I participated in product judging for the Virtualization Review, and we ended up selecting Hotlink as the Best Cloud Application for their new Hybrid Express solution. Later, I visited their booth with the TrainSignal video crew and we got to hear firsthand from their CEO, Lynn LeBlanc, about what they are up to as well as see a product demo of HotLink Hybrid Express. They showed us how easy it is to administer both internal vSphere infrastructure and Amazon public IaaS cloud. And how about that demo of using PowerCLI on Amazon EC2 at the end of the video? Innovative! While the HotLink Hybrid Express solution... --- ### How to Upgrade iOS using Apple Configurator > John O'Neill, Sr., shows you just how to upgrade single or multiple iOS with Apple Configurator. - Published: 2012-10-23 - Modified: 2024-11-19 - URL: https://petri.com/how-to-upgrade-ios-apple-configurator/ - Categories: Mobile - Tags: apple configurator, ios 6, iPad, iPhone - Article Type: How To The advent of iOS 6 brought about tons of new features, but IT admins might find it a challenge to update their company's devices. John O'Neill, Sr., shows you just how to upgrade single or multiple iOS using Apple Configurator. The release of iOS 6 brings over 200 new and improved features to iPads around the world. For IT administrators, however, it presents a challenge -- that is, how to deploy this innovative software to legions iPads across their enterprise. Of course, for those organizations with but a few iOS devices, this isn't a big deal. But for organizations with dozens, hundreds, or even thousands of iPads and iPhones running around, big deal is an understatement. How to Upgrade iOS with Apple Configurator Hopefully any organization that has deployed hundreds or thousands of iPads already has a robust MDM solution in place to assist with their iOS upgrade deployments, but many organizations fall through the cracks. They have more than a few iPads making individual updates a challenge, but they do not have enough to warrant investing in big dollar MDM products. I’ll call this the “bigger than a breadbasket, but smaller than a planet” group. This article is aimed squarely at these groups, be it a school, a government agency, or a corporation. Today I will show how to quickly and easily use Apple’s free Apple Configurator software to painlessly upgrade dozens of iPads to the latest iteration of iOS. The preparation for this is straightforward: Grab a Mac running the latest version of OS X and Apple Configurator. Fire it up, hook up your iPad(s) to the USB port(s), open Apple Configurator from the Launchpad, and let’s roll!   First, click Prepare Workflow, then click... --- ### How to Use SetSPN to Set Active Directory Service Principal Names > Michael Simmons shows you how to how to specify a user or computer account to be identified with an SPN by using the SetSPN utility. - Published: 2012-10-22 - Modified: 2024-09-04 - URL: https://petri.com/how-to-use-setspn-to-set-active-directory-service-principal-names-2/ - Categories: Active Directory (AD) - Tags: Service Principal Name, setSPN, SPN, SQL Server - Article Type: How To Get ready, get SetSPN... GO! Michael Simmons shows you how to how to specify a user or computer account to be identified with an SPN by using the SetSPN utility. A common configuration step when establishing a Kerberos authentication method is the use of a Service Principal Name, or SPN, to identify a specific service. This article shows you how to specify a user or computer account to be identified with that specific service by using the SetSPN utility. First things first: SetSPN is a built in utility with Windows Server 2008 and Server 2008 R2. You don’t have to download SetSPN to use it. It’s already part of your operating system on both workstations and servers. Note: While SetSPN can be run from either a workstation or a server, don’t run it from domain controllers. Use SetSPN from either a member server or a client system to assign Service Principal Names to a user or computer account. We're talking about SetSPN, not to be confused with a Sit 'n Spin. (Image via Imremembering) What Is an SPN? An SPN is a reference to a specific service, for example, an instance of SQL or a web application run by IIS. Since SPNs are specific, they reference not only what the service is (such as an SQL server), but also which hostname runs the instance and on which port it’s running (however, you don’t have to specify the port if running on default ports). Service Principal Names are already in use for every computer and user account. Though not usually seen, there is a default SPN established at the time of account creation which is identified as the... --- ### The Friday Funny: Steve Ballmer Selling Windows 1.0 > Windows 8 officially arrives a week from now, but does anyone remember Windows 1.0? Watch Microsoft CEO Steve Ballmer make the official pitch for the Windows that started it all. - Published: 2012-10-19 - Modified: 2024-09-04 - URL: https://petri.com/the-friday-funny-steve-ballmer-selling-windows-1-0/ - Categories: The Friday Funny - Tags: Steve Ballmer, Windows 1.0 - Article Type: Overview Windows 8 officially arrives a week from now, but does anyone remember Windows 1.0? Watch Microsoft CEO Steve Ballmer make the official pitch for the Windows that started it all. The official release date of of Windows 8 is exactly one week away, and Microsoft CEO Steve Ballmer and everyone else at Microsoft is hard at work promoting the arrival of Windows 8 and the new Microsoft Surface tablets, which run either Windows 8 or Windows 8 RT. Microsoft CEO Steve Ballmer pitching Windows 1. 0 in 1985 Ballmer is widely regarded as a passionate sales leader and motivator, and perhaps nowhere is that more apparent than in an internal promotional video that was put together for the release of Windows 1. 0 way back in 1985. In the video Ballmer is seen vociferously extolling the virtues of the then-new Windows operating system in an over-the-top, infomercial-esque video, which you can see below. Microsoft's detractors like to paint the software giant as a hyper-competitive, humorless corporate titan bent on squashing its competitors flat. While Microsoft is famously competitive, internal videos like the ones shown here prove that Microsoft often has an under-appreciated sense of humor as well. Do you still have Windows 1. 0 running on a PC somewhere? Email me a digital photo and I'll send the first three readers that respond a free T-shirt. Feel free to tell me what you think of Ballmer's sales job by adding a comment to this blog post or reach out to me on Twitter. Follow Jeff James on Twitter (@jeffjames3) and Google+ (add Jeff to your circles) Follow Petri IT Knowledgebase on Twitter (@petri_co_il) --- ### How to Change the Product Key in Windows 8 > John O'Neill, Sr., shows you how to change the product key in Windows 8 using the GUI AND the command line. How's that for value? - Published: 2012-10-19 - Modified: 2024-09-04 - URL: https://petri.com/how-to-change-product-key-in-windows-8/ - Categories: Windows 8 - Tags: licensing, product key - Article Type: How To John O'Neill, Sr., shows you how to change the product key in Windows 8 using the GUI AND the command line. How's that for value? A generic volume license key (GVLK) is embedded in the volume license versions of Windows 8 media. This works great if your environment uses a Key Management Service (KMS) Host to activate your PC. But what if you don't use KMS? If you have an MSDN, Technet, or Windows InTune subscription you may very well rely on a Multiple Activation Key (MAK) to activate your Windows 8 PC. When using a MAK, PCs normally connect to a Microsoft Activation Server to activate. Unfortunately, if you try and activate a PC using a GVLK through Microsoft's Activation Servers you'll find yourself presented with an “I don't think so” -type message: Not this time!   The dilemma is how to get the embedded GLVK out and the valid MAK in so that the Microsoft Activation Servers will be friendly and activate your PC. Don't fret! Microsoft provides two fairly easy mechanisms to perform this task: one from the command line and the other from the GUI. Today we're going to tackle both methods. Using the Command Line to Change the Product Key in Windows 8 With your valid MAK at the ready, login to the Windows 8 PC using an account that has administrative privileges. Be sure the PC is connected to the Internet, otherwise the activation portion of this exercise is doomed to fail. However, even if you don't have Internet access you can still change the product key now and activate it later... . --- ### How to Export Hyper-V Virtual Machines > Jeff Hicks shows how to export Hyper-V virtual machines using PowerShell and Hyper-V Manager. - Published: 2012-10-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-export-hyper-v-virtual-machines/ - Categories: Hyper-V - Tags: Backup, cmdlet, PowerShell, virtual machine, Windows 8 - Article Type: How To We're back to backups! Jeff Hicks shows how to export Hyper-V virtual machines using PowerShell and Hyper-V Manager. With Windows 8, more IT pros will likely be taking advantage of client Hyper-V. One task you’ll undoubtedly have to deal with is the need to create and manage backups of your virtual machines. There are a number of Hyper-V backup utilities on the market -- some of them are even free -- but you might be able to get by with simply exporting a virtual machine. (If you need to learn more, please refer to my article series on Windows 8 client Hyper-V, beginning with Client Hyper-V Installation and Configuration. ) When you export a virtual machine, you get the configuration file, a copy of the VHD, and any snapshots. What is attractive about this feature is that you can move the virtual machine anywhere else or even reimport it in the event of data loss or if you rebuild a system. Before you can export a virtual machine, however, it must be shut down. Using Hyper-V Manager to Export a Virtual Machine There are two ways to export a virtual machine. In the Hyper-V Manager, you can select a virtual machine, then right-click and choose Export from the context menu, as seen below in Figure 1.   Next, you will be prompted for a folder path as in Figure 2.   Click Export to begin. However, there's one major “gotcha" -- you can’t have a previously exported version in the same location. If you do, you will get an error like in Figure 3. [adkit zone="freestyle"... --- ### Application Installations with Microsoft Deployment Toolkit 2102 Update 1 > You've installed MDT 2012 Update 1 -- now what? Michael Simmons walks you through adding and configuring application installations with Microsoft Deployment Toolkit 2102 Update 1. - Published: 2012-10-17 - Modified: 2024-12-03 - URL: https://petri.com/application-installation-microsoft-deployment-toolkit-2102-update-1/ - Categories: Windows Server 2012 - Tags: mdt 2012, Microsoft Deployment Toolkit - Article Type: How To You've installed MDT 2012 Update 1 -- now what? Michael Simmons walks you through adding and configuring application installations with Microsoft Deployment Toolkit 2102 Update 1. Microsoft Deployment Toolkit (MDT) 2012 Update 1 is the latest iteration of the Microsoft Solution Accelerator. It includes updates to aid the deployment of the latest Operating Systems, including Windows 8 and Windows Server 2012. This article describes the process and the options you have for adding and configuring the applications that you’re going to install during your OS deployment. After you’ve installed the MDT 2012 Update 1, you’ll need to have a deployment share. Deployment shares are not created by default during the installation of the MDT, so you’ll need to create the deployment shares after opening the deployment workbench if you haven’t already done so. Applications are added to the deployment share in support of a Lite Touch Installation (LTI) deployment method. For Zero Touch Installations (ZTI) and User Driven Installations (UDI), System Center Configuration Manager is utilized for managing the applications through use of packages. LTI, ZTI, and UDI are the three deployment methods used to deploy Operating Systems with MDT. You can find out more about those different methods in Petri’s article about Microsoft Deployment Toolkit (MDT) 2012 Update 1: Overview and Installation. Organize your Applications in MDT 2012 Update 1 As the number of applications in the deployment shares continues to increase, the need to keep them organized also grows. You can help to keep things organized by creating folders in the application folder. How to Create a Folder in the Applications Directory To create a Folder in the Applications directory, you... --- ### Spanning Tree Protocol (STP) Path Selection > Do you know what a root bridge is? Sean Wilkins shares some STP path selection know-how. - Published: 2012-10-16 - Modified: 2024-09-04 - URL: https://petri.com/stp-spanning-tree-protocol-path-selection/ - Categories: Cisco - Tags: spanning tree protocol, STP - Article Type: Overview Do you know what a root bridge is? Sean Wilkins shares some Spanning Tree Protocol (STP) path selection know-how. One of the most confusing things to understand when learning about the switched part of network is the Spanning Tree Protocol (STP – 802. 1D) and how it works to allow traffic to be efficiently forwarded through the switched network. This article will take a look at the STP path selection process, how a root switch is elected, how root and designated ports are assigned, and how each switch port is determined to be a root or a designated port as well as which ports will be forwarding or blocking. STP Root Bridge / Root Switch Selection The first question to really ask is: What is a root bridge? On an STP network, the root bridge (also known as a root switch) is intended to be the top of the forwarding pyramid, the forwarding decisions for the rest of the switched network depend on the location of the root bridge. The selection of the root bridge is determined by the bridge configured priority; by default this would be the switch with the lowest MAC address. It is important for anyone building a network using STP to ensure that the location of the root bridge is relatively central to the switched network so that forwarding decisions are made as efficiently as possible. This is possible because each switch can be configured with a lower bridge priority, which ensures it becomes the root switch. Path Selection Once the root bridge has been selected (or elected), the... --- ### How to Connect CentOS Web Server to a SQL Server > Learn how to set up an internal CentOS web server to talk to a SQL server in this handy how-to article. - Published: 2012-10-15 - Modified: 2024-09-04 - URL: https://petri.com/how-to-connect-centos-web-server-to-a-sql-server/ - Categories: SQL Server - Tags: CentOS, LAMP - Article Type: How To Learn how to set up an internal CentOS web server to talk to a SQL server in this handy how-to article. I recently needed to have an internal CentOS 6. x web server (LAMP-based) talk to one of our Microsoft SQL Servers in order to dynamically update records in the local MySQL server the web server normally communicates with. It turns out that it can be a bit of an interesting task to accomplish. Today I'm going to go through a confirmed working method of setting up your CentOS 6. x based web server to talk to a Microsoft SQL Server database. I'll also provide reusable PHP database connection handling code (in the form of connect and close functions) that can be placed in an include file. Configuring SQL Server and Its Host First, the SQL Server (and the appropriate database) must be configured for Windows and SQL Server Authentication. This requires a restart of the SQL Server service if changed. In addition, the server must also have TCP/IP connections enabled with a static port defined (for my example, I will be using the default of 1433), and the firewall on the host for the SQL Server must allow connections to SQL Server on the static port. At this stage, the first thing to test from your CentOS system is whether you can telnet into the SQL Server host on port 1433. It is important at this stage to test this as you need to determine (a) whether the CentOS system is properly resolving the DNS name of the Windows system (if you are wanting to connect via hostname rather... --- ### The Friday Funny: Kevin Costner and the Apple Lisa > Kevin Costner steps in as Apple Lisa pitchman in this advertising classic from the early 1980s. - Published: 2012-10-12 - Modified: 2024-09-04 - URL: https://petri.com/the-friday-funny-kevin-costner-and-the-apple-lisa/ - Categories: The Friday Funny - Tags: Apple, Apple Lisa, Macintosh - Article Type: Overview Kevin Costner steps in as Apple Lisa pitchman in this advertising classic from the early 1980s. Apple is now the world's most valuable tech company, but it hasn't always been this way. In the early 1980s -- before the Macintosh, the iPod, the iPhone, the iPad, and the billions of dollars in revenue that all those products created -- Apple was just beginning to venture into the world of point-and-click computing. While Microsoft and Apple partisans may argue like ill-tempered siblings these days, in the early 1980s Apple was still largely known as the company that developed the Apple II and helped usher in the era of the personal computer. Kevin Costner contemplates the Apple Lisa in this still from an Apple TV ad, circa 1983. (Video below) Development of the mouse-based Apple Lisa -- the precursor to the Macintosh -- began in 1978.  It was released in 1983, and was a rare commercial failure for Apple. Apple did it's best to market and promote the Lisa, including a short television spot that featured a (then) young actor by the name of Kevin Costner. In the ad, Costner is shown walking into an office building in the wee hours of the morning, a well-behaved dog in tow. After booting up his Lisa and awkwardly clicking the mouse with his left hand a few times, Costner receives a phone call and informs his caller that "He'll be home for breakfast. " It's not exactly the Mac vs PC ads yet, but it's clear that Apple was hard at work defining itself as the iconoclastic counterpoint to the relatively... --- ### Troubleshooting Cisco VTP > Does your Cisco VTP configuration need an SOS? Sean Wilkins tackles Cisco VLAN Trunking Protocol (VTP) troubleshooting issues. - Published: 2012-10-12 - Modified: 2012-10-12 - URL: https://petri.com/cisco-vtp-troubleshooting/ - Categories: Cisco - Tags: Editor's Pick, virtual trunking protocol, VLAN, VTP - Article Type: How To, Overview Does your Cisco VTP configuration need an SOS? Sean Wilkins tackles Cisco VLAN Trunking Protocol (VTP) troubleshooting issues. The Cisco VLAN Trunking Protocol (VTP) is an option for those who have selected Cisco as their switching platform provider. VTP offers a method of global VLAN assignment that lessens the amount of configuration work that is required by the networking staff. This article takes a look at some of the most common configuration mistakes that can cause confusion when performing VTP troubleshooting. Common Cisco VTP Troubleshooting Issues There are a couple of different common Cisco VTP configuration mistakes and misconceptions which can confuse those not overly familiar with its operation. Let's go over those misconceptions now. Matching VTP Configuration Parameters There are a couple of VTP configuration parameters that must match for switches to properly communicate; these include the VTP domain, password and VTP version. If any of these is misconfigured then the switch that is misconfigured will not communicate with other VTP switches. Cisco VTP Modes VTP has three modes of operation: Server, Client, and Transparent. By default, switches are configured as VTP servers and will operate with other VTP switches (as long as the parameters match). Only servers are allowed to configure the VLANs that are advertised by VTP -- VTP clients are not allowed to configure VLANs at all. Switches that are in VTP transparent mode do not participate with other VTP switches but do forward VTP traffic; these switches are able to configure VLANs but they are specific to that switch only and are not advertised by VTP. Cisco... --- ### Windows 8 Client Hyper-V : Managing Client Hyper-V with PowerShell > In part five of our Hyper-V series, Jeff Hicks runs through the steps in managing Windows 8 Client Hyper-V with PowerShell. - Published: 2012-10-11 - Modified: 2024-12-03 - URL: https://petri.com/manage-hyper-v-client-with-powershell/ - Categories: Hyper-V - Tags: cmdlet, PowerShell, Windows 8 - Article Type: How To We're at the end of our instructive series on Hyper-V! For good measure, Jeff Hicks runs through the steps in managing Windows 8 Client Hyper-V with PowerShell. In this five-part series I’ve been exploring Windows 8 Client Hyper-V. In the first article, I showed you how to install and configure the client Hyper-V feature in Windows 8. In part two, we configured a virtual switch, and in part three, I demonstrated how to populate Hyper-V with virtual machines. Part four saw us creating a new virtual machine from an existing VHD that had a previously installed operating system. I have a collection of VHD files that have been converted from my previously installed VirtualBox setup which I ran previously under Windows 7. I wanted to understand the process so I can re-build my test network under Hyper-V. And finally, today in part five, we're going to run through the steps in managing Windows 8 Client Hyper-V with PowerShell. Now, if I wanted I could create a totally new virtual machine, and when wizard asks about the disk, I can create a new one as I show below in Figure 1.   I’ve set the size to 20GB and am using the default location. Hyper-V will also help me get an operating system installed on the new disk.     I can install an OS from the CD/DVD drive in the host machine or even from an ISO. If I choose to install an OS later, it is up to me to make the necessary virtual machine configurations to mount the installation media. But since I don’t have existing test machine for Windows 8, I’ll... --- ### Comparison Shopping: SharePoint 2010 Versions > Which version of SharePoint should you use? Michael Simmons compares multiple editions of Sharepoint 2010. - Published: 2012-10-10 - Modified: 2024-11-19 - URL: https://petri.com/comparison-shopping-sharepoint-2010-versions/ - Categories: SharePoint 2010 - Tags: Editor's Pick, SharePoint 2010, sharepoint enterprise, SharePoint Online, sharepoint server - Article Type: Overview Which version of SharePoint should you use? Michael Simmons takes you on a shopping trip, comparing multiple editions of Sharepoint 2010. When setting up SharePoint 2010 in your organization, planning is important and it goes hand-in-hand with governance. Sometimes the needs of the organization determine the features that are required, and that drives the purchase of the licenses. Sometimes the opposite is true, and the cost drives the determination of what SharePoint 2010 version is going to be implemented. Whether you’re trying to justify the next big upgrade, finding out what you can do with the license you’ve been given, or just curious which licenses have a certain feature, a side-by-side comparison is the best way to see the differences between the versions of Microsoft SharePoint 2010. In this article, I’ll show you the features that are available in each version of Microsoft SharePoint 2010. I gathered the information for the charts in this article from the Microsoft SharePoint 2010 editions comparison site, and then combined that information with the Microsoft SharePoint Online for Enterprises Service Description (Appendix B, pg. 30). SharePoint Foundation 2010 I wrote an article recently about the features of SharePoint foundation. And for some organizations, SharePoint Foundation is good enough. SharePoint Foundation provides the features like Team Sites, lists, libraries, claims-based authentication, and SharePoint Timer jobs. Most of the features that are included with SharePoint 2010 Foundation are fine enough to get your site up and running, log onto, and use it for basic collaboration. SharePoint Server 2010 Standard Edition Many of the features that SharePoint 2010 is known for is included with the... --- ### VMware Updates vCloud Suite, Announces VMware vCloud Automation Center 5.1 > At VMworld Barcelona, VMware announces updates to the vCloud Suite and unveils VMware vCloud Automation Center 5.1. - Published: 2012-10-09 - Modified: 2024-09-04 - URL: https://petri.com/vcloud-automation-center-5-1/ - Categories: VMware - Tags: vCloud Automation Center, vCloud Orchestrator, vCloud Suite 5.1, VMware Horizon - Article Type: News At VMworld Barcelona, VMware announces updates to the vCloud Suite and unveils VMware vCloud Automation Center 5.1. With VMworld Barcelona underway in Spain, VMware used the occasion to announce a new addition to the VMware vCloud Suite and unveil several updates to the existing components in the suite. VMware vCloud Automation Center 5. 1 is the newest member of the vCloud ensemble. VMware acquired cloud automation services provider DynamicOps in July 2012, and Automation Center is based on DynamicOps technology. So what does vCloud Automation Center 5. 1 actually do? According to Mahesh Kumar, VMware’s Director of Enterprise Marketing Management. vCloud Automation Center is a service governor that allows IT administrators to provision private and public clouds using a policy-based approach in an automated fashion. “Following the launch of the VMware vCloud Suite in August, this new addition really focuses on the management and automation component,” he said. New additions and improvements to the VMware vCloud Suite explained. Using a self-service portal, resources can be requested by service customers. Thanks to automation capabilities provided in vCloud Automation Center, these services can be spooled up and made available much more quickly and efficiently than via previous methods. Kumar also said that Automation Center integrates closely with VMware vCenter Orchestrator to automate IT workflows related to service provisioning and to integrate with existing corporate IT policies. In a statement provided by VMware in support of the announcement, Raghu Raghuram, VMware’s executive vice president of cloud infrastructure and management, touted the ability of VMware’s vCloud suite to help enable IT departments serve... --- ### 10 Tips to Make a Secure Password > Trying to improve the strength of your passwords? Discover 10 tips to make a safer password and thwart people you don't want on your network. - Published: 2012-10-08 - Modified: 2024-11-19 - URL: https://petri.com/how-to-make-a-secure-password/ - Categories: Security - Tags: Editor's Pick - Article Type: Opinion Trying to improve the strength of your passwords? Discover 10 ways to thwart people you don't want on your network. Regardless of whether you’re using a client PC, a server, a tablet, a smartphone, or any other digital device to access information, choosing strong passwords for the programs and services you use is essential. While a weak password may not always be the primary cause of IT services getting hacked, it can contribute greatly to the scope and severity of a hacking attempt. To help you make the most secure passwords possible – both for administrators and for end-users – I’ve assembled ten bits of advice that should improve the strength and effectiveness of your passwords. Each of these suggestions don't provide enough security on their own, so I’d strongly suggest adopting as many of these tips and techniques as possible. There are several third-party applications that can help you automate and enforce password policies or allows users to reset their own passwords, like ManageEngine’s ADSelfService Plus and Specops Software’s Password Reset tool.  You can also check out some other articles on passwords on the Petri IT Knowledgebase, including how to reset an administrator password, how to recover passwords for Excel spreadsheets and passwords for Word documents, and changing user passwords with PowerShell. 1. Adopt a password change policy One of the best defenses against stolen passwords is to frequently change the passwords being used. There’s always a balance between security on one hand and usability on the other, so forcing passwords changes too often can lead to an excessive burden on users. Who wants to be forced... --- ### IPv6 Support in Windows 8 and Windows Server 2012 > Sean Wilkins discusses what's new in Windows Server 2012 and Windows 8 in terms of IPv6 support. - Published: 2012-10-05 - Modified: 2012-10-05 - URL: https://petri.com/ipv6-support-windows-8-windows-server-2012/ - Categories: Windows Server 2012 - Tags: IPv4, IPv6 - Article Type: Overview Ladies and gentlemen, it's time to talk IPv6. Sean Wilkins discusses what's new in Windows Server 2012 and Windows 8 in terms of IPv6 support. With the maturity level of IP version 6 (IPv6) rising quickly, the support for IPv6 is a vital component of any networked device. While Microsoft products have supported IPv6 in all of their released Operating Systems (OSes) for the last five years or so, the further support and refinement of their implementation of IPv6 on Windows 8 and Windows Server 2012 is vital for their future. This article will review a few of the main refinements that have been added to the IPv6 as deployed with Windows 8 and Windows Server 2012. So why is IPv6 so important? Microsoft Windows President Steven Sinofsky discussed the importance of IPv6 earlier this year in a post on the Building Windows 8 blog. Here's an excerpt: "The most immediate benefit of IPv6 is that it provides more than 3×1038 IP addresses, enough for every person to have billions of addresses all to themselves, or enough to give every star in the universe a unique address. This will allow the Internet to grow and evolve. IPv6 also provides for many security and performance improvements, like built-in support for IPsec. " Windows Server 2012 and Windows 8 IPv6 Enhancements While Windows 7 did have rather robust support for IPv6, there were a couple of things that were noticed and reported over its life which have been addressed by Microsoft in their newest OS. This includes enhancements addressing... --- ### Windows 8 Client Hyper-V : Create a Virtual Machine Based on an Exisiting VHD File > In part four of this series, Jeff Hicks shows you how to create a new virtual machine based on an existing VHD file in WIndows 8 Hyper-V. - Published: 2012-10-04 - Modified: 2024-12-03 - URL: https://petri.com/windows-8-client-hyper-v-part-4-create-a-virtual-machine-based-on-an-exisiting-vhd-file/ - Categories: Windows 8 - Tags: vhd, virtual machine, Windows 8 - Article Type: How To It's all Hyper-V, all the time! In part four of this series, Jeff Hicks shows you how to create a new virtual machine based on an existing VHD file. Are we having fun yet? Welcome to my five-part series on Windows 8 Client Hyper-V. In the first article, I showed you how to install and configure the client Hyper-V feature in Windows 8. In part two, we configured a virtual switch, and in part three I demonstrated how to populate Hyper-V with virtual machines. This promises to be a terrific desktop virtualization solution and it's included in Windows 8 Professional. Today I'll create a new virtual machine from an existing VHD that had a previously installed operating system. Finally, in part five, we're going to run through the steps in managing Windows 8 Client Hyper-V with PowerShell. As I’ve mentioned earlier, when I ran Windows 7, I primarily used Virtual Box from Oracle for desktop virtualization. Now that I’m running Windows 8, I want to use Hyper-V. I can’t import the virtual machines, but I can build new virtual machines from virtual disks. I have already converted the Virtual Box disk files from their format to VHD. But in order to test the entire process I’m going to use a copy of a VHD file previously created from another project. The first thing I want to do, although not required, is to verify the VHD file. In Hyper-V Manager, there is an inspect disk action as I’ve highlighted below in Figure 1. The action brings up a file browser. After navigating to the correct folder and selecting the VHD, I can see that it looks pretty... --- ### How to Create a Deployment Share in MDT 2012 > We continue our MDT talk with Michael Simmons, who shows you how to create a deployment share in MDT 2012. - Published: 2012-10-03 - Modified: 2024-12-03 - URL: https://petri.com/how-to-create-deployment-share-mdt-2012/ - Categories: Windows Server - Tags: mdt 2012, Microsoft Deployment Toolkit - Article Type: How To We continue our MDT talk with Michael Simmons, who shows you how to create a deployment share in MDT 2012. Microsoft Deployment Toolkit 2012, known by the acronym MDT, is a solution accelerator from Microsoft. The solution accelerators are a collection of tools and utilities developed to make implementing Microsoft solutions something that is less of a burden for IT administrators and engineers. MDT is a free download from Microsoft. However, once it’s installed you'll still need to configure a few more items before you can start creating system images. This article describes how to create a new distribution share in MDT 2012. It also describes why deployment shares are necessary. For more information on Microsoft Deployment Toolkit 2012, read our article "Microsoft Deployment Toolkit (MDT) 2012 Update 1: Overview and Installation. " The target computers to which you will be deploying the system images to need a place to download those files. The management computer, which runs the Deployment Workbench, does not need to have the deployment share located directly on the computer. Putting Deployment Share on Something Other than the Management Computer There are three great reasons for creating deployment shares that are not on the management computer. 1. Better fault tolerance. You may have a SAN that provides better fault tolerance. Your system images can represent a lot of time and effort getting everything just the way you want. Losing a hard drive that holds all of your system images can be very damaging to the infrastructure. New deployments will have to be delayed until the system image is recreated; during the recreation of the... --- ### How to Add a Windows 8 Start Menu > Find out how to add a start menu to Windows 8 and get Windows 8 working the way you want it to work. - Published: 2012-10-03 - Modified: 2024-09-04 - URL: https://petri.com/add-a-windows-8-start-menu/ - Categories: Windows 8 - Tags: Classic shell, Editor's Pick, Metro Interface, Start Menu - Article Type: How To Get Windows 8 working the way you want it to work. Trevor Pott clues you in on how to add a start menu to Windows 8. Windows 8 brings with it a whole new user interface for our collective consideration. This is The Interface Formerly Known As Metro (TIFKAM), then named ModernUI, and they've now settled ambiguously on the “Windows 8 interface” running “Windows Store apps. ” Whatever its name, the interface is based on tiles, full-screen applications, and the ability to run -- at a maximum -- two applications side by side. Hot corners are important, and there is a new “charms” bar, required for shutting down or accessing system settings. For many of us, this new interface is a shock. Even once we’re over the hurdle of learning how the interface works, the transition from TIFKAM to the classic desktop is both all too frequent and jarring. Some of us will fall in love with TIFKAM, others will try hard to love it because it is new. The rest of us just want our computers to work as they always have. Fortunately, making this happen isn’t hard. Today I’ll show you how to add a start menu to Windows 8. How to Install Classic Shell To get Windows 8 working the way you want it to work, download the free open-source tool Classic Shell. Click Download Now, and your download will start automatically. Save the file and run it when it has finished downloading. Classic Shell’s setup is fairly simple. You click Next, agree to the EULA, verify that you want to install all components (you do), and click Next again. Click... --- ### 5 Reasons Why You Should Replace Task Manager with Sysinternals Process Explorer > Michael Simmons can give you 5 good reasons why you should replace Task Manager with Sysinternals Process Explorer. - Published: 2012-10-01 - Modified: 2024-12-03 - URL: https://petri.com/5-reasons-replace-task-manager-with-sysinternals-process-explorer/ - Categories: Windows Server - Tags: Sysinternals Process Explorer, task manager - Article Type: Overview Listen up! Michael Simmons can give you 5 good reasons why you should replace Task Manager with Sysinternals Process Explorer. How many times per week do you use Task Manager? Depending on your role in IT, you could be using Task Manager anywhere from 3 to 25 times per week. Over the course of a year, an IT pro can end up spending quite a lot of time looking at Task Manager, so why settle for anything less than optimal? In this article, I give you five very excellent reasons for making the switch and replacing Task Manager with the free Sysinternals Process Explorer. Co-founder Mark Russinovich has been steadily updating many of the Sysinternals utilities by adding Windows 8 support, fixing bugs, and adding new features. (Editor’s Note: Download the latest Sysinternals utilities, including Sysinternals Process Explorer, from the Microsoft Sysinternals website. ) 1. Color-coded processes You might not think at first glance that color coding your processes is much to get excited about (and believe me, I am able to keep my excitement about color coding in check). Still, this is an understated and really cool feature. Not only because of the easy, at-a-glance ability to see which processes are service processes and which are user processes (check out the typical color-coding separation displayed in the picture below), but it also includes some very important security information. Opening the Options and selecting Configure Colors shows that one of the color-coding classifications available in Process Explorer  is whether the process contains packed images. Processes with packed images include DLLs that are packed in a way to prevent... --- ### Apple and Microsoft Fans: Can't We All Just Get Along? > In today's The Friday Funny, we explore the relationship between Apple, Microsoft, and the stoner as IT product pitchman. - Published: 2012-09-28 - Modified: 2024-11-19 - URL: https://petri.com/apple-and-microsoft-fans-cant-we-all-just-get-along/ - Categories: The Friday Funny - Tags: Apple, Ben Curtis, Dell, Dell Dude, Ellen Feiss - Article Type: Opinion In today's The Friday Funny, we explore the relationship between Apple, Microsoft, and the stoner as IT product pitchman. We're in the midst of an election year here in the United States, and the airwaves (and internets) are filled with the cacophonic chatter of our two largest political parties bashing each other endlessly. Like me, you've also undoubtedly seen some of this on a more personal level: Has part of your Facebook newsfeed devolved into a mudslinging contest between friends, family, co-workers, and acquaintances who identify with either side? I've seen it firsthand, with friends jumping into one camp or the other and vociferously questioning the intelligence, hygiene, and personal musical choices of their political adversaries. Do all Republicans believe that President Obama is a Muslim, or do all Democrats believe that Republicans support rape? While small minorities in both parties believe this nonsense, neither of these statements is actually true. True in the sense that they are real. Like, you know, based on those silly, inconvenient things called facts. Yet in this politically charged era, the red-faced, spittle-spewing wings of both parties believe their facts are more factual than the ones their adversaries believe in. Have a Republican tell some Democrats that the sky is blue, and some will disagree. Democrats may state that gravity is the force of attraction between all objects with mass, and some Republicans will claim otherwise. I hate to break it to the lunatic fringes of both parties, but a fact is a fact, regardless of whether it is viewed through red or blue-colored glasses. This same level of hyperbole, invective, and disparagement can also be found in... --- ### Microsoft Deployment Toolkit (MDT) 2012 Update 1: Overview and Installation > Monkeying around with the Microsoft Deployment Toolkit 2012? Michael Simmons takes you though the overview and installation process of MDT 2012 Update 1. - Published: 2012-09-28 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-deployment-toolkit-mdt-2012-update-1-overview-installation/ - Categories: Windows Server - Tags: deployment, MDT, Microsoft Deployment Toolkit - Article Type: Overview Monkeying around with the Microsoft Deployment Toolkit 2012? Michael Simmons takes you though the overview and installation process of MDT 2012 Update 1. Microsoft Deployment Toolkit (MDT) 2012 is a solution accelerator used by IT professionals to assist with the deployment of Microsoft products. MDT can be used to simplify the deployment of Microsoft operating systems and applications. Windows 7 and 8, as well as Windows Server 2008R2 and 2012, can be installed using MDT. How Microsoft Deployment Toolkit 2012 Update 1 Helps Deploy Office and Windows Microsoft Deployment Toolkit installs an application called deployment workbench to the computer. When using the Deployment Toolkit, there are several pieces that you’ll need to be familiar with. The Management Computer -- The computer that runs the deployment workbench is referred to as the management computer during the deployment process. The deployment workbench on the management computer is where you will prepare to deploy your products. The deployment OS, device drivers for the hardware to which you're deploying, and software applications are all used on the management computer. Task sequences and boot images are created using the deployment workbench on the management computer. The management computer doesn’t have to be the same operating system as the one you’re deploying. You can have a Windows 7 workstation as the management computer and deploy Windows 7, 8, and Server 2008 R2 and 2012, all from the same management computer. The Deployment Share -- Deployment shares are created by the management computer. The deployment shares are shared directories used to holding the source files, drivers, applications, and system images. Deployment shares can be held on the... --- ### Windows 8 Client Hyper-V : Importing Virtual Machines > In part 3 of our Windows 8 Client Hyper-V series, Jeff Hicks walks you through the steps of importing virtual machines. - Published: 2012-09-27 - Modified: 2024-12-03 - URL: https://petri.com/import-virtual-machines-in-windows-8-client-hyper-v/ - Categories: Hyper-V - Tags: virtual machine, Windows 8 - Article Type: How To In part 3 of our Windows 8 Client Hyper-V series, Jeff Hicks walks you through the steps of adding virtual machines. In this five-part series, we’ve been looking at the new Client Hyper-V feature in Windows 8. This is a great feature that replaces Virtual PC for desktop virtualization. This is a five-part series. In the first article, I showed you how to install and configure the client Hyper-V feature in Windows 8. In part two, we configured a virtual switch. In today's article, I'll demonstrate how to populate Hyper-V with virtual machines. Later, in part four, I'll create a new virtual machine from an existing VHD that had a previously installed operating system. And finally, in part five, we're going to run through the steps in managing Windows 8 Client Hyper-V with PowerShell. If you have previously saved virtual machines from another Hyper-V environment, it is pretty simple to import them. For my test lab, I downloaded an Ubuntu virtual machine appliance, a preconfigured virtual machine that should be ready to go. Sometimes you can also find preconfigured virtual machines from Microsoft that you can use for testing and evaluation purposes. The import process should be the same regardless. First, in the Hyper-V manager, click the Import Virtual Machine action, as seen below in Figure 1. It's your choice whether you want to see this page every time you run an import. I’ll go ahead and click Next. This is where I’ll specify the path to the virtual machine. All I had to do is browse to the top-level folder that had the config. xml file. Figure 2... --- ### How to Backup SharePoint 2010 > Don't get lazy! Michael Simmons shows you how to backup SharePoint 2010 data in three easy steps. - Published: 2012-09-26 - Modified: 2024-09-04 - URL: https://petri.com/how-to-backup-sharepoint-2010/ - Categories: SharePoint 2010 - Tags: Backup, Editor's Pick, SharePoint 2010, site collection - Article Type: How To Don't get lazy! Michael Simmons shows you how to backup Sharepoint 2010 data in three easy steps. Good backups are a critical component to your SharePoint 2010 farm. During the initial farm configuration, it can be easy to take a casual approach to the backups. After all, if it’s just a little bit of work restoring the farm, and there’s no real data on it, it’s easier to justify not having backups. But once people begin to use the SharePoint servers, and there is data on them, it’s important that you perform backups on the data regularly. Even if it’s not the only copy, losing the data from SharePoint can affect the trust that your users will ever place in the product. How to Backup SharePoint Data Step 1: Access the Central Administration site. To perform backups on SharePoint, you’ll need access to the Central Administration site. The Central Administration site is different than any of the other SharePoint sites -- just because you are a site collection administrator does not mean that you will have access to the Central Administration site. If you don’t know the address or port of the Central Administration site, ask one of the SharePoint farm administrators. They may provide you the address of the Central Administration site and ensure that you have permissions to use it. On the Central Administration site, you will notice that there are several sections of links right on the front page of the site: Application Management, System Settings, Monitoring, Backup and Restore, Security, Upgrade and Migration, General Application Settings, and Configuration Wizards. Also,... --- ### Microsoft Volume Activation Management Toolkit v3 (VAMT 3): Improvements and Installation > Microsoft's Volume Activation Management Toolkit version 3 (VAMT 3) is chock-full of new features. Michael Simmons walks you through the improvements. - Published: 2012-09-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-volume-activation-management-toolkit-3-improvements-installation/ - Categories: Windows Server - Tags: deployment, VAMT, Volume Activation - Article Type: Overview Microsoft's Volume Activation Management Toolkit version 3 (VAMT 3) is chock-full of new features. Michael Simmons walks you through the improvements. Microsoft’s free Volume Activation Management Toolkit (VAMT) helps administrators manage licensing on computers in their organization. Administrators can use the VAMT to update licenses and activate Office and Operating Systems on clients and servers. VAMT version 3 performs all of the operations that VAMT version 2 did while adding new features. Christian Mohn wrote about VAMT 2 and described its usage in his article, "License & Activation Management with Volume Activation Management Tool (VAMT). " If you haven’t used the VAMT before, check out Mohn’s article to get a grasp of the concepts that are common to both versions. What new features are in VAMT 3? There are several new features and improvements made to previously existing features. Active Directory Based Activation -- Active Directory Based Activation (ADBA) replaces the role previously held by KMS hosts in Active Directory. This means that activations are performed in AD itself and is not reliant on any specific hosts. PowerShell Support -- PowerShell cmdlets replace what used to be VAMT. exe. Proxy Authentication -- If some of your computers require a username and password to access the Internet, then the new VAMT 3 can serve as a proxy authentication. VAMT makes the connection and routes activation requests through it. Licensing Reports -- License reporting is built into VAMT, so it’s easy to figure out which computers are not in compliance. How to Install VAMT 3 While previous versions of VAMT could be installed on their own, VAMT version... --- ### iPhone 5 First Impressions > Our own John O'Neill Sr. gives his take on the new iPhone 5. Is Apple's latest smartphone worth the wait? - Published: 2012-09-24 - Modified: 2024-09-04 - URL: https://petri.com/iphone-5-first-impressions/ - Categories: Messaging - Tags: Apple, ios 6, iPhone, iPhone 5 - Article Type: Review Our own John O'Neill Sr. gives his take on the new iPhone 5. Is Apple's latest smartphone worth the wait? The iPhone 5 has been discussed, anticipated, and speculated about for months. The crescendo of excitement reached its climax Friday, September 21, when the device finally arrived on store shelves and into the hands of eager customers. As one of these fortunate customers, I spent the day ogling, exploring, and generally putting the device through its paces. Now that I've spent some time with the device I'm ready to share my first impressions. My iPhone 5 is a black 64GB Verizon model. As is par for the course with Apple products these days it arrived in packaging seemingly less suited to electronics and more reminiscent of a box for fine jewelry. Opening the box and looking at the device for the first time immediately I noticed how much longer it is compared to earlier generations. With my next thought I couldn’t help but to begin doubting Apple’s claims of the iPhone 5 being 20 percent lighter and 18 percent thinner than the iPhone 4S. Picking the iPhone 5 up instantly quashed those doubts -- it actually feels lighter and thinner than even the claims put forth. Holding my iPhone 4S in one hand and the iPhone 5 in the other, I wondered how that for an entire year I missed noticing just how heavy the 4S is. Apple iPhone 5 unboxing. iPhone 5 Hardware Features The glossy black and brushed graphite case is pleasing to the eye and put plainly, looks slick. Apple is not lying when they tout the fit and... --- ### Top 10 Windows Server 2012 Features > The jury may still be out on Windows 8 in the enterprise, but check out our list of 10 useful features in Windows Server 2012 for IT admins. - Published: 2012-09-21 - Modified: 2024-09-24 - URL: https://petri.com/top-10-windows-server-2012-features/ - Categories: Windows Server 2012 - Tags: CHKDSK, Editor's Pick, Hyper-V 3.0, IPAM, Network virtualization, ReFS, storage pools, storage spaces - Article Type: Overview While the jury may still be out on Windows 8 in the enterprise, there are plenty of useful features in Windows Server 2012 for IT admins. Windows Server 2012 has been officially available since September 9th, 2012, and many IT professionals and system administrators are evaluating the software for deployment. While the jury may still be out on Windows 8 in the enterprise, Windows Server 2012 ships with dozens – if not hundreds -- of new features that admins should find useful. Microsoft has a , so I'd encourage every Windows Server admin to give it a spin. To narrow that list down a bit I’ve taken the liberty of selecting 10 of what I feel are the most noteworthy new (or improved) features in Windows Server 2012, and written a bit about why they’re so important. Feel free to disagree with the features I’ve picked or add a few of your own in the comments section. 1. Data Deduplication One of the constants of technology and the IT industry is that data storage demands and requirements are increasing exponentially. From ballooning email inboxes to file shares overflowing with documents, just about every enterprise has a need for more efficient. That’s where the new data deduplication features in Windows Server 2012 come in handy. It works like this: Say you have a large number of VHD (virtual hard disk) files that you need to move. Each of those VHDs has a lot of duplicate (yet identical) files and applications, like minesweeper, Windows calculator, and other accessory applications. Data deduplication removes all of the copies of those applications from those VHDs but one. It... --- ### Windows 8 Client Hyper-V : Configuring a Virtual Switch > We continue our look at Windows 8 Client Hyper-V in part two of our series. In this installment, Jeff walks us through configuration of a virtual switch. - Published: 2012-09-21 - Modified: 2024-12-03 - URL: https://petri.com/windows-8-client-hyper-v-configuring-virtual-switch/ - Categories: Hyper-V - Tags: client virtualization, virtual networking, virtual switch, Windows 8, Windows Client OS - Article Type: How To We continue our look at Windows 8 Client Hyper-V in part two of our series. In this installment, Jeff walks us through configuration of a virtual switch. We're back with part two of this five-part series on Windows 8 Client Hyper-V. In the first article, I showed you how to install and configure the client Hyper-V feature in Windows 8. In this article, part two, our next step is to take the plunge and finish configure a virtual switch. In part three, I'll demonstrate how to populate Hyper-V with virtual machines. In part four, I'll create a new virtual machine from an existing VHD that had a previously installed operating system. And finally, in part five, we're going to run through the steps in managing Windows 8 Client Hyper-V with PowerShell. But first things first: We need to configure networking. In the Hyper-V Manager, click Virtual Switch Manager link in the Actions pane. You should see something like Figure 1. You can create any number of switches from a variety of types, but because this is on a client operating system you may not need more than one or two. The type of switch to define depends on how you expect to use your virtual machines. If you are creating a VM that needs access to the physical network and resources then you’ll need an external switch. If you only need to communicate between the client and the VM then you can use an internal switch. The virtual machine won’t be accessible from nor can it reach the physical network. Another option is to use a private switch that is only accessible by your... --- ### Interview: Microsoft's Chris Van Wesep on System Center 2012 SP1 > In this interview, Microsoft's Chris Van Wesep clues us in on the new features in System Center 2012 SP1. - Published: 2012-09-19 - Modified: 2024-09-24 - URL: https://petri.com/interview-microsofts-chris-van-wesep-on-system-center-2012-sp1/ - Categories: System Center - Tags: Microsoft System Center 2012, System Center 2012 SP1, System Center Configuration Manager, System Center Operations Manager, System Center Virtual Machine Manager - Article Type: Interview In this interview, Microsoft's Chris Van Wesep clues us in on the new features in System Center 2012 SP1. During our recent trip to the Microsoft campus, we had a chance to chat with Chris Van Wesep, a Group Product Manager on the System Center team. Our interview with Chris primarily focused on the new features being introduced in Windows Server 2012 Service Pack 1 (SP1), which was just released in beta form last week. Be sure to also catch our recent interview with Microsoft's Edwin Yuen and Matt McSpirit about Windows Server 2012 and Hyper-V 3. 0. Jeff James: Could you walk us through some of the most noteworthy new features in System Center 2012 SP1? Chris Van Wesep: the introduction of an API for System Center 2012. It’s called the Service Provider Foundation API. Where we think it will provide the most value is with service providers to help create and manage virtual machines. As more hosters deploy System Center 2012, this is a valuable feature for them... we recently demonstrated Windows Azure services running on Windows Server, and we talked about that quite a bit... leveraging this new API. You could also see a situation where enterprise organizations may want to set up their own portal internally for people to do stuff, like creating VMs. the API... but I think that we could see even more value from a service provider perspective as they've already got portals set up that need to go execute on stuff and it's mostly creating VMs, running websites, and doing other... --- ### How to Wipe Mobile Devices Through Outlook Web Access (OWA) > John O'Neill, Sr., shows you how to enable users to perform a remote wipe of their own mobile devices through Outlook Web Access (OWA). - Published: 2012-09-18 - Modified: 2024-09-04 - URL: https://petri.com/how-to-wipe-mobile-devices-outlook-web-access-owa/ - Categories: Mobile - Tags: Editor's Pick, mobile device, Outlook Web Access, owa, remote wipe - Article Type: How To Power to the people! John O'Neill, Sr., shows you how to enable users to perform a remote wipe of their own mobile devices through Outlook Web Access (OWA). Mobility is a fact of modern IT life. Devices are mobile, users are mobile -- and, most importantly, so is their data. That data mobility can create sleepless nights for diligent IT admins, and remote wiping of mobile devices is a critical feature of mobile device management for precisely this reason. Unfortunately there is often a delay between when a remote wipe becomes necessary and when IT is notified by the user of this fact. During this time the data stored on the device is exposed and vulnerable. Empowering users to wipe their devices themselves is a great way to eliminate, or at least reduce, the “vulnerability gap” between when a remote wipe is needed and when it is performed. In an Exchange 2007/2010 or Office365 environment where Outlook Web Access and Exchange ActiveSync are enabled, the process is quick, easy, and safe. Train users to follow the instructions I've provided below, and they will have the knowledge needed to remove sensitive data from lost or stolen devices. First, open an Internet browser such as Internet Explorer, navigate to the Outlook Web Access (OWA) URL, and log in. Once logged in, the OWA Inbox will display. Click Options in the upper right, then click See All Options. The account options screen will display. On the left side of the screen, click Phone. The Phone options screen will display. Click Mobile Phones at the top. A list will appear of all mobile devices that have used Exchange ActiveSync... --- ### Win A Free Trip to VMworld, TechEd, Citrix Synergy, or Cisco Live 2013 - Published: 2012-09-17 - Modified: 2024-11-19 - URL: https://petri.com/win-a-free-trip-with-trainsignals-10th-anniversary-giveaway/ - Categories: Training & Certification - Article Type: News Our friends at TrainSignal are celebrating their 10th anniversary by giving away a free trip to VMware VMworld, TechEd, Citrix Synergy, or Cisco Live 2013. Read for details on how to enter! Disclaimer: Unfortunately, due to Facebook’s new contest regulations, this contest is open to U. S. residents only. Our friends over at TrainSignal just turned 10 years old, and to celebrate, they're giving away a free trip to VMware VMworld, Microsoft TechEd, Citrix Synergy, or Cisco Live 2013. The contest ends September 30th, so enter now. So how do you enter? It’s easy! Check out the contest details on our Facebook page. Fill out your name and e-mail address, and click Submit. You will be automatically entered into our drawing to win the free trip to VMworld, TechEd, Citrix Synergy, or Cisco Live 2013. Share with your friends via e-mail, Twitter, or Facebook using the bit. ly URL you receive after entry. If two friends sign up using your link, you’re automatically eligible for more prizes. We will post the winners on our blog on October 1, 2012. Did someone say “sweet prizes”? Check out what you could win! Grand Prize: One lucky winner will win a trip to VMworld, TechEd, Citrix Synergy or Cisco Live 2013 (includes airfare, hotel, and conference pass). Referral Prizes: One winner will receive a free iPad2, and one winner will receive a free TrainSignal training course of their choosing. Official Contest Rules: Please read through all of the official stuff below before entering: No purchase necessary to enter or win. Binding Agreement In order to enter TrainSignal’s 10 Year Anniversary Giveaway (the “Giveaway”), you must agree to these Official Giveaway Rules (the “Rules”); please read this entire... --- ### Understanding Managed Paths in SharePoint 2010 > Without forethought and planning, it's easy for managed paths to get out of hand. Michael Simmons helps you understand managed paths in SharePoint 2010. - Published: 2012-09-17 - Modified: 2024-11-19 - URL: https://petri.com/understanding-managed-paths-sharepoint-2010/ - Categories: SharePoint 2010 - Tags: Editor's Pick, explicit inclusion managed path, managed path, microsoft sharepoint 2012, wildcard inclusion managed path - Article Type: How To, Overview If the promise of "explicit" and "wildcard" wasn't alluring enough, Michael Simmons gently guides you through understanding managed paths in SharePoint 2010. Managed paths in Microsoft SharePoint 2010 can seem straightforward, but it can also easily get out of hand. Without SharePoint governance and thoughtful planning, your managed paths will be configured without any logic or strategy and can quickly become confusing and hard to manage. In this article we'll cover what managed paths are, why they’re important, and how you can plan for them and use them. What is a managed path in SharePoint 2010? A managed path is a location within a web application in which you can have site collections. When a web application is created, there are two managed paths that were created with it. The first managed path is called the “/” path, or root.   The “/” path is an explicit inclusion managed path. The second is called “sites,” or a wildcard inclusion path. These are the two types of managed paths that you can create. An explicit inclusion managed path defines an exact path to which a site collection can be directly attached. A wildcard inclusion managed path defines a path that cannot have a site collection attached at its root but can have multiple site collections assigned beneath it. Example of an explicit inclusion managed path A good example of an explicit inclusion managed path is the one that is created at the root of a web application, as seen below. With an explicit inclusion managed path defined at the root, you can create one site collection there. Any attempts to put... --- ### Interview: Microsoft's Edwin Yuen, Matt McSpirit Discuss System Center 2012 > Read our interview with Microsoft's Edwin Yuen and Matt McSpirit as they discuss the evolution of System Center 2012. - Published: 2012-09-14 - Modified: 2024-09-24 - URL: https://petri.com/interview-microsoft-edwin-yuen-matt-mcspirit-system-center-2012-part-2/ - Categories: System Center - Tags: Edwin Yuen, Matt McSpirit, Microsoft System Center 2012, System Center Operations Manager, System Center Virtual Machine Manager - Article Type: Interview Jeff James continues his talk with Microsoft's Edwin Yuen and Matt McSpirit about the evolution of System Center 2012 and its ability to manage heterogenous IT environments. In this final part of our two-part interview with Microsoft’s Edwin Yuen and Matt McSpirit, we’ll touch on how Microsoft System Center is the linchpin of Microsoft’s private cloud strategy and how System Center has evolved over the years to integrate with platforms, tools, and technologies from other vendors, from Linux to VMware. ] Read part one, in which Yuen and McSpirit discuss Windows Server 2012 and Hyper-V 3. 0. Question: You had mentioned before our interview that your team is tasked with making sure that Microsoft products work well together. One of the things that is becoming clear is that the new Microsoft System Center 2012, when combined with Windows Server 2012, really does open up a whole lot of extra potential and capability on the private cloud front. If you were talking to an IT professional who has primarily used Hyper-V for server virtualization, what are some of the things you would tell him about combining System Center with Hyper-V 3. 0 that would be the most effective and impactful for him? Edwin Yuen: What System Center 2012 really gives that administrator is an additional level of capability and abstraction, so to speak. So what you have is the great power of virtualization and the infrastructure you're going to be leveraging, networking, storage, and virtualization... you get the management you need there, the multiple server that you have in Virtual Machine Manager. You can then leverage all these other tools within System Center, and it becomes seamless, because you're... --- ### Interview: Microsoft's Edwin Yuen, Matt McSpirit Discuss Windows Server 2012 and Hyper-V 3.0 > We interview Microsoft's Edwin Yuen and Matt McSpirit as they discuss Windows Server 2012, Hyper-V 3.0, Windows ODX, and SR-IOV. - Published: 2012-09-13 - Modified: 2024-09-24 - URL: https://petri.com/edwin-yuen-matt-mcspirit-discuss-windows-server-2012-hyper-v-3-0/ - Categories: Windows Server 2012 - Tags: Edwin Yuen, Hyper-V 3.0, Matt McSpirit, SR-IOV, Windows ODX - Article Type: Interview Microsoft's Edwin Yuen and Matt McSpirit Discuss Windows Server 2012, Hyper-V 3.0, Windows ODX, and SR-IOV. The Petri IT Knowledgebase editorial team recently had the opportunity to visit the Microsoft campus in Redmond, WA, and interview some members from the Windows Server 2012, System Center 2012, and SQL Server 2012 product teams. We recorded audio interviews with Microsoft employees from all of these teams, and we’re now happy to provide edited transcripts of those interviews to Petri IT Knowledgebase readers. We’ll begin with our discussion with Edwin Yuen, director of cloud and virtualization strategy at Microsoft, and Matt McSpirit, a senior product marketing manager on the Windows Server team. In part two of our interview, Yuen and McSpirit discuss System Center 2012. Petri: The latest release of Hyper-V in Windows Server 2012 has a raft of new features. Maybe you could talk a little bit about what you feel are the top maybe three or four really most important new features in this next release of Hyper V. ] Edwin Yuen: there has been a desire to have greater scale. You're going to see that in Windows Server 2012 Hyper V. You're going to see this massive scale, in terms of number of processors, in terms of memory, in terms of storage and adapters. It's across the board. We really feel it's segment leading. It's at or above anything that the competitors have. I think we are ahead in many areas. But really, it gives the assurance, for many people out there, to understand that we can certainly scale to whatever workload that they... --- ### Windows 8 Client Hyper-V : Installation and Configuration > Jeff Hicks discusses using Windows 8 client Hyper-V in the first of a five-part series. - Published: 2012-09-12 - Modified: 2024-12-03 - URL: https://petri.com/using-windows-8-client-hyper-v-part-1/ - Categories: Hyper-V - Tags: Windows 8, Windows Client OS - Article Type: How To Hyper-V was developed to scratch the itch that Windows Virtual PC couldn't satisfy. Jeff Hicks discusses using Windows 8 client Hyper-V in the first of a five-part series. One of the new features in Windows 8 that has me very interested is client Hyper-V, which was intended to fill the need that Windows Virtual PC never seemed to satisfy. Personally, I had been using the free VirtualBox solution from Oracle, but now that I have moved to Windows 8 I am planning on taking advantage of Hyper-V. This is a five-part series. In this first article, I'll show you how to install and configure the client Hyper-V feature in Windows 8. In part two, we'll configure a virtual switch. In part three, I'll demonstrate how to populate Hyper-V with virtual machines. In part four, I'll create a new virtual machine from an existing VHD that had a previously installed operating system. And finally, in part five, we're going to run through the steps in managing Windows 8 Client Hyper-V with PowerShell. First, your computer must be able to run Hyper-V. This means you need a 64bit system that has the necessary hardware and BIOS bits to run virtualization. You’ll also need at least 4GB of RAM -- the more the merrier, assuming you want to run multiple virtual machines simultaneously. Fortunately, if you need to run a server operating system, say, for testing purposes, running a Server Core edition can save a lot on memory. Windows Server 2012 will be a big help here because you will be able to install and configure it with a GUI and then take the GUI away, leaving a... --- ### Enable and Restore File History in Windows 8 > File History is not just another name for a backup -- it also protects against accidental changes. John O'Neill, Sr., shows you how to enable and restore File History in Windows 8. - Published: 2012-09-11 - Modified: 2024-09-24 - URL: https://petri.com/enable-restore-file-history-windows-8/ - Categories: Backup & Storage - Tags: file history, Windows 8 - Article Type: How To You know, File History is not just another name for a backup -- it also protects against accidental changes. John O'Neill, Sr., shows you how to enable and restore File History in Windows 8. As I mentioned in a previous Petri IT Knowledgebase article in which I showed you how Windows 8 File History protects users from data loss , Windows 8 File History protects what is most important to users -- their data. Remember, File History is not just another name for a backup. File History focuses only on the files and folders that are typically the nearest and dearest to a user’s heart, including Libraries, Desktop, Favorites, and Contacts folders. File History also protects against unwanted and accidental changes by maintaining unlimited versions of a file -- provided, of course, you have enough storage and sanity to let it. In this article, we'll tackle the steps in enabling and restoring File History. Enabling File History in Windows 8 Really, this is a straightforward and quick process. From the Windows 8 Metro interface, open the Charms Bar by moving the mouse cursor to the extreme lower left corner. Right-click on this Hot Corner and a menu pops up. Click Control Panel. From the control panel, under System and Security, select "Save backup copies of your files with File History. " The first thing to do when the File History Control Panel App opens is to set a storage location for the protected files. Click Use Network Drive. Note: If you have an external drive (such as a USB drive) connected to the PC, it will default here. The Select a File History drive dialog opens. Select "Add network location. " Browse... --- ### Microsoft Develops Pointers Web App to Improve Windows 8 Deployment Experience > Microsoft is using pointers to streamline users' Windows 8 deployment experience. Michael Simmons discusses its advantages for Microsoft – and for you. - Published: 2012-09-10 - Modified: 2024-11-19 - URL: https://petri.com/pointers-improve-windows-8-deployment/ - Categories: Windows 8 - Tags: community, pointers, training - Article Type: News Microsoft is using a web application called pointers to streamline users' Windows 8 deployment experience. Michael Simmons discusses its advantages for Microsoft – and for you. Microsoft IT developed a web application to ease the stress of going through the Windows 8 upgrade process for their users. As of now, it’s only available within Microsoft.  So what does this mean for your upcoming Windows 8 deployment? That's where pointers comes in, an internal training and customer support application used to improve users' Windows 8 deployment experience. Pointing Users in the Right Direction A pointer is not a type of software that you can buy or download, and it's not required to deploy Windows 8. But when Microsoft IT started their project to deploy Windows 8, they realized that since the User Interface (the UI formerly known as Metro) was such a departure, the Microsoft user community was going to need extra training. Microsoft began to set up a web application for their Intranet, simply known by its URL: “//pointers. ” This was poised to become a community for the early adopters within Microsoft to receive training, ask questions, get answers, get and give support, and exchange feedback. (Editor’s Note: Read more about Microsoft’s pointers project by visiting Microsoft’s Office of the CIO blog on MSDN. ) The Microsoft Windows 8 Consumer Preview deployment consisted of over 36,000 PCs. At that scale, the training had to be accommodated with technology. And instead of making an online classroom, they looked at what was missing in their current customer support initiatives online communities. Discussion groups such as Petri’s IT Forum are so useful because once a question has... --- ### How to Wipe an iPhone or iPad > John O'Neill, Sr., walks you through how to wipe an iPhone or iPad and render it factory-fresh. - Published: 2012-09-07 - Modified: 2024-09-04 - URL: https://petri.com/how-to-wipe-an-iphone/ - Categories: Security - Tags: iOS Disaster Recovery Plan, iPad, iPhone - Article Type: How To That iOS device may not be new, but it's new to you, right? John O'Neill, Sr., walks you through how to wipe an iPhone or iPad and render it factory-fresh. The term "reuse" seems far friendlier than "replace," right? Maybe this is due to prevailing environmentally conscious attitudes in our Western society. Maybe it is due to the financial benefits gained from using something already owned versus buying new. Regardless of the reason, reusing IT equipment is often just the right thing to do. Redeploying previously configured equipment brings with it a few unique concerns. Primary among these is completely, securely, and efficiently removing all previous data and settings from the device before it is set up for its new owner. Simply deleting a few files and changing a bit of setup information doesn’t cut it -- the data needs to be destroyed and existing settings need to be erased no matter how buried they are in the device’s innards. Often, the best way to accomplish this is to perform a factory reset on it. A factory reset does just what it implies; sets the device back to the same state it was in when it originally left the factory. Also known as wiping a device, the process removes all user data and sets all settings to prepurchase values -- a fresh start from which the device can be configured for a new user. An iPad or iPhone supports a quick and easy factory reset process. In just a few steps, these iOS devices can be ready to provide an out-of-box experience. The following instructions reference wiping an iPad, but they work equally well on an iPhone... . --- ### How to Create a PowerShell Update System for Help Files > Jeff Hicks shows you how to create a PowerShell update system for help files. - Published: 2012-09-06 - Modified: 2024-09-04 - URL: https://petri.com/how-to-create-powershell-update-system-help-files/ - Categories: PowerShell - Tags: cmdlet, help files, Intermediate, update system - Article Type: How To One of the perks of PowerShell 3 is the ability to update help files. Jeff Hicks shows you how to create your own update system. One of the best new features in PowerShell v3 is the ability to update help files. This means you can periodically run a command and download the most current versions from Microsoft. The command is easy enough although it must be run in an elevated session. ​PS C:> Update-Help This will go through all the modules on your computer and download (and install) the latest help files. Note that as of this writing there are still a number of modules that don’t have downloadable help so the cmdlet will throw a few exceptions, which you can safely ignore. All in all, this works great for you, but what about other PowerShell users and admins? The default behavior is to download from Microsoft, but why have ten people make the same trip? The solution is to save help files once locally and then update from there. Here’s how I’m going to implement a single source help solution in my test network. Saving Help The first step is to save the latest help files locally. I’m going to create a network share on my NAS device that will be widely available in my environment. Next, I’ll use the Save-Help cmdlet to download help files to my share. ​PS C:> Save-Help -DestinationPath \jdh-nvnasfilesPowerShell_Help This will get all of the modules on my computer running Windows 8, and save all help files to the share. Eventually everyone will download from this share, which will lead to some potential gaps. If another... --- ### Microsoft Technical Fellow Mark Russinovich Updates Sysinternals, Adds Windows 8 Support > Microsoft Technical Fellow Mark Russinovich has updated many of his free Sysinternals Windows utilities with bug fixes and other improvements. - Published: 2012-09-05 - Modified: 2012-09-05 - URL: https://petri.com/sysinternals-adds-windows-8-support/ - Categories: Windows Server - Tags: AccessChk, Autoruns, Mark Russinovich, Process Explorer, Process Monitor, RAMMap, Sysinternals, Zoomit - Article Type: News Microsoft Technical Fellow Mark Russinovich has updated many of his free Windows Sysinternals utilities with bug fixes and other improvements. Microsoft Technical Fellow, Sysinternals co-founder, frequent tech conference keynote speaker, and published fiction author Mark Russinovich has been diligently updating his popular Sysinternals suite of free Windows tools over the last few months, fixing bugs, adding new features (including Windows 8 support) and generally giving many of these popular utilities a fresh coat of paint. If you've never used the Sysinternals tools, you're missing out on some of the best free tools and utilities available for Windows IT professionals.  Sysinternals used to be a separate company -- founded by Russinovich and Bryce Cogswell in the early 1990s -- that focused on providing handy system utilities that helped admins troubleshoot their servers and clients. The suite of Sysinternals tools and applications expanded over the years, eventually resulting in a bumper crop of more than five dozen individual system utilities. Microsoft acquired Sysinternals in 2006, and all the Sysinternals tools moved with Russinovich to Microsoft. Many of the Sysinternals tools hadn't been updated in some time, with some incompatible with Windows 8 and others not taking advantage of some new Windows 8-specific features. So over the last few months Russinovich has been steadily improving and updating several of the existing Sysinternals utilities to be compatible with Windows 8, among other improvements. I won't list all of them, but here's a brief description of some of the more popular Sysinternals tools that Russinovich has either updated to be compatible with Windows 8 or added noteworthy fixes and improvements to over the... --- ### VMworld 2012: VMware Hopes to Revolutionize Online Learning with Project NEE > VMware's new Project NEE training platform has the potential to significantly improve online education. - Published: 2012-09-04 - Modified: 2024-09-04 - URL: https://petri.com/vmworld-2012-vmware-online-learning-project-nee/ - Categories: VMware - Tags: education, Project NEE, training, vmware, VMworld 2012 - Article Type: News The Knights Who Say NEE: VMware's new Project NEE training platform has the potential to revolutionize online education. Most of the media spotlight at the VMworld 2012 conference in San Francisco last week was squarely focused on VMware's new CEO, or the new features in vSphere 5. 1 and the vCloud Suite, or on the official reveal of the VMware Horizon suite. But one of the most promising new VMware projects in development was being demonstrated without fanfare in a tiny corner of the sprawling VMware expo hall. Called Project NEE (for Next-Generation Education Environment), this new project has the potential to revolutionize online learning. Project NEE is the brainchild of a group of VMware engineers who were determined to find a better way to conduct online training.   They decided to incubate the project in a program at VMware -- sponsored by the office of the CTO -- that encourages employees to pursue projects that aren't part of their traditional responsibilities. VMware engineers Curtis Pope and Mike DiPetrillo are the NEE project leads, while VMware engineers David Colwell and Simon Threasher contribute development effort towards the project as well. Project NEE is currently in closed beta. (From L to R): Project NEE developers Curtis Pope, David Colwell, and Simon Threasher. So what exactly is Project NEE? In a nutshell, it provides a radical new way for online training to be presented by instructors and utilized by students. Project NEE offers online labs, live chat, video, social media, and access to real virtual machines -- delivered via the cloud -- to enhance training. For example, a student... --- ### Windows Server 2012 Arrives Today > Microsoft will announce later this morning that Windows Server 2012 is now generally available for purchase and download. - Published: 2012-09-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-arrives-today/ - Categories: Windows Server 2012 - Tags: Hyper-V, News, ReFS, storage spaces - Article Type: News Microsoft will announce later this morning that Windows Server 2012 is now generally available for purchase and download. Microsoft will announce a bit later this morning -- via an online launch event slated to begin at 8:00am Pacific Time -- that Windows Server 2012 is now generally available for purchase and download. Windows Server 2012 introduces dozens of new features and improvements over Windows Server 2008 R2, including dramatically improved virtualization capabilities via Windows Server 2012 Hyper-V, improvements to Active Directory, introduction of the Resilient File System (ReFS), dramatically new ways to handle storage (storage spaces), and dozens (if not hundreds) of other improvements. The Windows Server 2012 Launch Announcement The Petri IT Knowledgebase has already covered the arrival of Windows Server 2012 from multiple angles, including Michael Simmons' articles on storage spaces and how to add Windows Server 2012 as a domain controller. Jeff Hicks has provided some tips for your first Windows Server 2012 install. There's also lots of great discussion about Windows Server 2012 in the Petri Forums, so be sure to stop by there as well. Aside from our own coverage, there are some excellent resources elsewhere on the web concerning Windows Server 2012 launch day. Amy Eisenberg at Windows IT Pro has a summary of some good Windows Server 2012 resources, while Michael Otey has offered up an in-depth deep dive on the Windows Server 2012 feature set. Doug Barney at Redmond Magazine updates readers on Windows Server 2012 Essentials, while the official Microsoft Windows Server Blog has a Windows Server 2012 launch post by Microsoft Distinguished Engineer (and Lead Architect for Windows... --- ### Creating Custom Objects in PowerShell: v3.0 Enhancements > Learn to create custom objects in PowerShell and discover the enhancements found in PowerShell v3.0 in this last installment of a multi-part series. - Published: 2012-08-31 - Modified: 2024-11-19 - URL: https://petri.com/creating-custom-objects-windows-powershell-part-4/ - Categories: PowerShell - Tags: cmdlet, custom object, PowerShell 2.0, PowerShell 3.0 - Article Type: How To We're at the end of our multi-part series on creating custom objects in PowerShell! Discover the enhancements found in PowerShell v3.0. We're at the end of our multi-part series on creating custom objects in PowerShell! In part one, I discussed the basics of creating custom objects in PowerShell to meet your needs; however, in this version, we lost the original object. In part two, I showed you how to modify and create the custom object while retaining the original. In part three, we learned how to create a custom object from scratch. Everything I’ve demonstrated up to now is intended for PowerShell 2. 0. My examples should also work in the upcoming PowerShell 3. 0, but v3 offers some terrific enhancements. Today, I’ll go deeper and include the enhancements found in PowerShell 3. 0. First, instead of using New-Object and passing a hash table of property values, we can easily create an object with the type accelerator. ​PS C:\> $obj=@{ >> Name="Jeff Hicks" >> Title="PowerShell Pro" >> Help="http://bit. ly/AskJeffHicks" >> Blog="http://jdhitsolutions. com/blog" >> } >>   I’m still creating a hash table, but in front I’m using the type accelerator. The end result is a custom object. ​PS C:\> $obj | format-list Name : Jeff Hicks Title : PowerShell Pro Help : http://bit. ly/AskJeffHicks Blog : http://jdhitsolutions. com/blog   But it gets better. If you recall from a previous article, there was a subtle issue when using hash tables for property values: you couldn’t control the order. That is still true in PowerShell 3. 0. Here’s a simple hash table. ​$drivec=Get-WmiObject win32_logicaldisk -filter "deviceid='C:'" $hash=@{ Computername=$env:computername ProcCount=(Get-Process). Count OS=(Get-WmiObject Win32_operatingsystem). Caption C_Size=$drivec. size C_Free=$drivec. freespace }   When I... --- ### Creating Custom Objects in PowerShell from Scratch > Learn to create PowerShell custom objects from scratch in part three of this series. - Published: 2012-08-31 - Modified: 2024-09-04 - URL: https://petri.com/creating-custom-objects-in-windows-powershell-part-3/ - Categories: PowerShell - Tags: cmdlet, custom object, Intermediate - Article Type: How To Learn to create PowerShell custom objects from scratch in part three of this series. Welcome back to our four-part series on creating custom objects in PowerShell! In part one, I discussed the basics of creating custom objects in PowerShell to meet your needs; however, in this version, we lost the original object. In part two, I showed you how to modify and create the custom object while retaining the original. Today we'll learn how to create a custom object from scratch. Later, in part four I’ll go deeper and include the enhancements found in PowerShell 3. 0. Creating Custom Objects Using Add-Member First, let's use Add-Member to create our objects. ​$obj=New-Object PSObject $obj | Add-Member Noteproperty -Name Name -value "Jeff Hicks" $obj | Add-Member Noteproperty -Name Memory -value ((Get-WMIObject win32_computersystem). TotalPhysicalMemory/1gb -as ) $obj | Add-Member Noteproperty -Name Title -value "PowerShell Pro" $obj | Add-Member Noteproperty -Name MVP -value $True $obj | Add-Member Noteproperty -Name Blog -value http://jdhitsolutions. com/blog I create an empty object and pipe it to Add-Member, adding new items. When I write $obj to the pipeline, I end up with this: ​PS C:> $obj Name : Jeff Hicks Memory : 8 Title : PowerShell Pro MVP : True Blog : http://jdhitsolutions. com/blog This is a reasonable solution if you are gathering values to assign to your custom object throughout the script. I’ve also seen the following approach – which, although it does work, it is really more of a kludge. ​$obj = "" | Select Name,Memory,Title,MVP,Blog $obj. Name="Jeff Hicks" $obj. Memory=(Get-WMIObject win32_computersystem). TotalPhysicalMemory/1gb -as $obj. Title="PowerShell Pro" $obj. MVP=$True $obj. Blog=http://jdhitsolutions. com/blog Select-Object automatically creates the property names... --- ### How to Enable and Manage Safari’s Bookmarks Bar > John O'Neill, Sr., shows you how to enable and manage Safari's bookmarks bar. - Published: 2012-08-31 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-manage-safari-bookmarks-bar/ - Categories: Windows Client OS - Tags: Bookmarks bar, iOS 5.x, Safari - Article Type: How To Need to keep track of your favorite sites? John O'Neill, Sr., walks you through how to enable and manage Safari's bookmarks bar. For as long as there have been web pages, people have needed a way to keep track of them. Whether called Bookmarks, Favorites, or something else entirely, the concept of storing a web page address for easy recall is practically as old as the Web itself. Unfortunately, the bookmark capabilities of the built-in iOS 5. x Safari browser on the iPad and iPhone are, to put it mildly, somewhat lacking. The discomfort to users is exacerbated by the fact that web browsing is a key function of these mobile devices. One feature that can help keep track of frequently visited sites is the Bookmark Bar. How to Enable Safari's Bookmarks Bar The Bookmark Bar in Safari's browser provides quick, one-touch access to any site added to it. When enabled, it appears under the Safari address bar and above the open tabs. Notice that I said when enabled – Apple does not enable the Bookmark Bar by default in iOS. Manually turning it on isn’t exactly intuitive, but at least it’s straightforward once you know the steps. To enable the Bookmarks Bar, open the Settings App and tap Safari; on the right hand side, tap Always Show Bookmarks Bar so that it displays On. That’s all it takes to turn on the Bookmarks Bar. Safari will now show it as enabled (although don’t be surprised if it’s empty since nothing has been added to it). How to Manage the Bookmarks Bar In addition to providing... --- ### VMworld 2012 : VMware Introduces Horizon Suite > VMware Chief Technology Officer Steve Herrod introduces the new VMware Horizon Suite at day two of VMworld 2012. - Published: 2012-08-28 - Modified: 2012-08-28 - URL: https://petri.com/vmworld-2012-vmware-introduces-horizon-suite/ - Categories: VMware - Tags: vmware, VMware Horizon, VMware Mirage, VMware View, Wanova Mirage - Article Type: News VMware Chief Technology Officer Steve Herrod kicked off the 2nd day keynote of VMworld 2012 by playing drums with the opening musical act and introducing the new VMware Horizon Suite. VMware Chief Technology Officer Steve Herrod kicked off the second day keynote of VMworld 2012 by playing drums with the opening musical act and introducing the new VMware Horizon Suite. Currently in alpha form, the Horizon Suite is aimed at helping system administrators manage the new IT management challenges posed by the consumerization of IT and "bring your own device" (BYOD) trends. The Horizon Suite combines several previously announced products and technologies, including Horizon Mobile, Horizon Application Manager, Project Octopus, Project AppBlast, and ThinApp. One of the most impressive aspects of the Horizon Mobile portion of the keynote involved running a virtual container on an iPhone that included approved enterprise applications. When the presenter tried to copy information out of the container into an an external app (in this case, Evernote) Horizon Mobile's management features prevented the copy from taking place. Horizon seems like it has the potential to relieve many of the headaches IT pros face when it comes to managing and enforcing corporate policies on mobile devices. The second major component of Herrod's keynote focused on updates to VMware View and Wanova Mirage, which soon be renamed to VMware Mirage. VMware View was updated to version 5. 1 earlier this year, and Herrod -- along with some assistance from Vittorio Viarengo, VMware's vice president of product marketing for end-user computing -- showed the value of combining VMware View with the recently acquired Wanova Mirage technology. Herrod and Viarengo demonstrated upgrading a Windows XP laptop to Windows 7, simulated having... --- ### VMworld 2012: VMware Launches vCloud Suite 5.1 > VMware unveiled vSphere 5.1 and vCloud 5.1 today at VMworld 2012. David M. Davis provides a technical overview of what's new and noteworthy. - Published: 2012-08-27 - Modified: 2024-09-04 - URL: https://petri.com/vmworld-2012-vmware-launches-vcloud-suite-5-1-find-out-whats-new/ - Categories: VMware - Tags: vCloud Suite 5.1, vmware, VMworld 2012, vSphere - Article Type: News VMware unveiled vSphere 5.1 and vCloud 5.1 at VMworld 2012 this morning. David M. Davis provides a technical overview of what's new and noteworthy about the products. On stage at VMworld 2012, VMware's annual event held this year in San Francisco, CA, VMware announced their latest virtualization and cloud hypervisor. Part of this announcement includes their vision of the first solution that creates a software-defined data center. In the confusing cloud computing market, VMware is attempting to differentiate their vision by touting how their new vCloud suite is the ideal (and first ever) solution to create a software-defined data center (SDDC). Certainly this vision of the SDDC is a long-term vision that isn't completely fulfilled in today's vCloud Suite 5. 1, but it is a unique and powerful vision that sets VMware apart. As an example of how virtual data centers of the future, as part of a software defined data center, can help IT pros think about the time it takes to provision new storage, network, server, OS, and applications related to new server implementation (even with virtualization). Because the physical storage and network are still involved, this provisioning takes five days on average, according to VMware. With the new software-defined data center, this can take as little as three minutes. The five core tenants of the SDDC are: standardized, adaptive, automated, holistic, and resilient. Can VMware offer a 100 percent software-based data center that fulfills these traits? VMware says that they can. Let's find out more about the products that make up this suite and how they can help you. What Makes Up the vCloud Suite 5. 1 ? With this announcement, VMware's flagship product... --- ### VMworld 2012: VMware Introduces New CEO, Attempts to Redefine Cloud Discussion > At VMworld 2012, incoming VMware CEO Pat Gelsinger outlined the company's new "software-defined datacenter" product strategy and unveiled the new VMware vCloud Suite. - Published: 2012-08-27 - Modified: 2024-09-04 - URL: https://petri.com/vmworld-2012-vmware-introduces-new-ceo-redefines-cloud-discussion/ - Categories: VMware - Tags: News, vmware, VMworld 2012, vSphere - Article Type: News In front of a crowd of close to 20,000 VMworld 2012 attendees, outgoing VMware CEO Paul Maritz introduced incoming CEO Pat Gelsinger, who outlined VMware's new "software-defined datacenter" product strategy and unveiled the new VMware vCloud Suite. In front of a crowd of close to 20,000 VMworld 2012 attendees, outgoing VMware CEO Paul Maritz introduced incoming CEO Pat Gelsinger, who outlined VMware's new "software-defined datacenter" product strategy and unveiled the new VMware vCloud Suite. Gelsinger becomes the third CEO of VMware, replacing Maritz, who replaced founding CEO Diane Greene in 2008. Geslsinger also announced that VMware was ending the company's controversial vRAM licensing strategy by ending the "four-letter word we created with vRAM" and moving to a per-CPU and per-socket pricing model, news that elicited cheers from the audience. VMware is also attempting to redefine the discussion around cloud computing by embracing the software-defined datacenter (SDC) phrase to brand their cloud computing architecture and to possibly distinguish it from the overused (and overlooked) "cloud computing" moniker. In an official statement supporting the keynote, VMware  provided the following description for SDC: "All infrastructure is virtualized and delivered as a service, and the control of this datacenter is entirely automated by software... the (SDC) extends the benefits of virtualization to every domain in the datacenter -- computer, storage, and networking, and the associated availability and security services. " My colleague (and VMware training ninja) David Davis has written a detailed blog post covering all the new features in vSphere 5. 1 and vCloud 5. 1, and the the Petri IT Knowledgebase editorial team will be covering news and events from VMworld 2012 throughout the week, so keep checking back for updates. Attending VMworld 2012 in San Francisco this week? Feel free to tell me what... --- ### Free Network Management Tools from SolarWinds [Sponsored] > Looking for some free network management tools? SolarWinds describes three of their best no-charge networking tools in this sponsored post. - Published: 2012-08-23 - Modified: 2024-09-24 - URL: https://petri.com/free-network-management-tools-from-solarwinds-sponsored/ - Categories: Networking - Tags: Bandwidth Monitor, IP Address Tracker, Network Device Monitor, SolarWinds, sponsored - Article Type: How To Looking for some free network management tools? SolarWinds describes three of their best no-charge networking tools in this sponsored post. Sponsored IT content provided by SolarWinds  There are numerous tools available to assist network managers with their day to day tasks, but most come with a cost. Here are three of the top free tools from SolarWinds that help thousands of network managers every day. Realtime Bandwidth Monitor SolarWinds Real-Time Bandwidth Monitor allows you to monitor interfaces on your network to see how much bandwidth is in use or how much traffic is currently on those interfaces via a constantly updating graph. And it allows you to do so at a very granular level by offering sub-second polling. With this free tool you can also monitor multiple interfaces from different devices at the same time. By setting thresholds the real-time updating graphs allow you to quickly identify which interfaces are experiencing a high percentage of utilization. Once you’ve downloaded and installed you’ll need to enter in the IP address and the SNMP credentials or community string that you can use to query the device. Next on the string you’ll see a list of interfaces that are available for monitoring on that particular device. These are the interfaces that you’ll want to collect bandwidth data, i. e. a router, switch firewall, a server or any intelligent network device that supports SNMP. Next, you can select the thresholds for warning and critical error states and also how much history you’d like to store for the bandwidth data you’re collecting. Once you’ve completed those steps you’ll be able to chart the bandwidth... --- ### Use System Center to Monitor Your Coffee Consumption > Microsoft System Center can easily manage thousands of PCs, but did you know it can also monitor your coffee intake? - Published: 2012-08-22 - Modified: 2024-09-24 - URL: https://petri.com/use-system-center-to-monitor-your-coffee-consumption/ - Categories: Cloud Computing - Tags: coffee, Microsoft System Center 2012, System Center Operations Manager - Article Type: How To Microsoft System Center can easily manage thousands of PCs, but did you know it can also monitor your coffee intake? I've been visiting the Microsoft campus in Redmond, WA, this week to get an update on System Center 2012, Windows Server 2012, and SQL Server 2012 from several different product teams at Microsoft. I'm also here to attend the TechMentor Conference and hopefully catch some sessions by IT industry luminaries such as Mark Russinovich, Mark Minasi, J. Peter Bruzzese, and Bruce Mackenzie-Low. One of my meetings on the Microsoft campus was with Chris Van Wesep from the System Center product team. Most of our discussion revolved around the new features in System Center 2012 and the new capabilities being introduced in the upcoming System Center 2012 SP1 service pack, but Van Wesep also mentioned some of the creative ways that IT professionals have used System Center over the years. Case in point: Danish System Center experts Kare Rude Anderson and Jakob Gottlieb Svendsen from Coretech have created a management pack for System Center Operations Manager 2007 R2 that employs a webcam and some creative scripting to monitor the fullness of the Coretech office coffee pot. Coretech's Jakob Svendsen describes how they developed the management pack in the video below. Svendsen explains that the management pack relies on two photos of the coffee pot being monitored -- one of an empty pot, and one of a full pot -- then counts the black pixels in the live webcam image and compares it to the low (empty) and high (full) values. Some of my favorite comments from the video include "... because [the coffee... --- ### Windows 8 File History Protects Users from Doom and Data Loss > John O'Neill, Sr., shows you how the Windows 8 File History feature protects users from disastrous data loss. - Published: 2012-08-21 - Modified: 2012-08-21 - URL: https://petri.com/windows-8-file-history/ - Categories: Windows 8 - Tags: data loss, file history, Windows Backup - Article Type: Overview Got backup? John O'Neill, Sr., shows you how the new File History feature protects Windows 8 users from impending doom. What’s the most important part of a computer? Is it the CPU? The hard drive? Possibly the memory? Nope, it’s none of these. The most important part of any computer is its data. Yep, the information managed by a PC -- photos, documents, e-mails, and other such things -- is the only thing about it that may truly be irreplaceable. Yet, strangely, it may also be the least protected. Microsoft aims to change that by introducing File History to protect Windows 8 users. File History: Reinventing Backup Backup in Windows is nothing new -- it’s been there for generations. The problem is that very few people use it. Even Microsoft admits less than 5% of consumers use Windows Backup. Although people have devices like surge protectors and UPSes to protect their equipment, they are leaving their most important asset -- their data -- exposed to loss and corruption. With the new File History feature, Windows aims to reinvent backup, making data protection so easy that every user can easily safeguard their information. File History eliminates the complexity of backup and restore operations. Designed for the modern PC user, File History is automatic and transparent once enabled. Users create more information in more places than ever before. Laptops, tablets, and smartphones have only increased the importance of data protection. Designed with all this in mind, File History not only creates copies of files, but it also provides protection against unintended modifications to those files. File History is a different sort of... --- ### 3 Ways to Shut Down Windows 8 > Need to know how to shut down Windows 8? John O'Neill, Sr., walks you through three easy methods to shut down Windows 8. - Published: 2012-08-20 - Modified: 2024-09-04 - URL: https://petri.com/how-to-shut-down-windows-8/ - Categories: Windows 8 - Article Type: How To Windows 8 provides several ways to shut down the OS, but they aren't immediately obvious to new users. John O'Neill Sr. walks us through the new shut-down options. Shutting down a computer is almost as common a task as starting one. "Start – Shut Down" has become part of the IT vernacular over the course of many years and through multiple versions of Windows. With the dawning of Windows 8, this tried-and-true phrase goes the way of the Dodo bird. Since the release of the preview builds of Windows 8, many users have wasted countless minutes searching for the Windows 8 version of Start – Shut Down only to find it is not an intuitive process. With the hope of eliminating this frustration from future Windows 8 users, in this article I will show you how to shut down Windows 8 with three different methods. How to Shut Down Windows 8 With The Settings Charm First, from the Windows 8 Metro Interface or Desktop, move the mouse to the very lower right corner of the screen until the mouse pointer disappears. The Windows 8 Charms Bar will appear. Move the mouse straight up to click the Settings Charm icon, which resembles a gear. Once clicked, the Settings Charm opens. Click the Power Button, and then click the Shut Down option. That’s it! The computer will now turn off. How to Shut Down Windows 8 With The Windows Key To save a few mouse clicks, press the Windows key on the keyboard and the letter I key at the same time. This directly opens the Settings Charm. Now all you have to do is press the... --- ### Creating Custom Objects in PowerShell with the Original Object > Learn to create custom objects in PowerShell while keeping the original object in part two of this series. - Published: 2012-08-18 - Modified: 2024-09-04 - URL: https://petri.com/creating-custom-objects-windows-powershell-part-2/ - Categories: PowerShell - Tags: cmdlet, custom object, Intermediate, PowerShell - Article Type: How To Learn to create custom objects in PowerShell while keeping the original object in part two of this series. As I often say, PowerShell is all about the objects. Getting your head around this object nature is one of the primary hurdlers for PowerShell newcomers. Cmdlets write objects to the pipeline, but you can also create your own custom objects either from a script or directly in the console. This is a four-part series. In part one, I discussed the basics of creating custom objects in PowerShell to meet your needs; however, in this version, we lost the original object. Today I'll show you how to modify and create the custom object while retaining the original. Later, in part three we'll learn how to create a custom object from scratch. Finally, in part four, I’ll go deeper and include the enhancements found in PowerShell 3. 0. Lost and Found : Original Object In Part 1 of this series, I demonstrated how to use Select-Object to create a custom object in Windows PowerShell. One potential downside to that technique is that you lose the original object. Assuming Select-Object is the last part of your expression, you end up with a Selected object type as you see in Figure 1. Figure 1: A selected object type Here’s what the actual result looks like: Computername                   RequiredCount Name            DisplayName ------------                   ------------- ----            ----------- SERENITY                                   2 spooler         Print Spooler   Defining a New Object Member Using Add-Member But what if I wanted to keep the original object type yet still add these properties? The solution is to define... --- ### IP Security Basics : How to Set Up IPSec Direct Encapsulation on Cisco Devices > Sean Wilkins walks you through the setting up IPSec direct encapsulation on Cisco devices. - Published: 2012-08-16 - Modified: 2012-08-16 - URL: https://petri.com/ipsec-direct-encapsulation/ - Categories: Cisco - Tags: Cisco, direct encapsulation, Editor's Pick, Internet protocol security, IP Security, IPSec, Security - Article Type: How To, Overview IP Security got you down? Sean Wilkins walks you through the basic steps of configuring IPSec direct encapsulation on Cisco devices. With the importance of internet security being at the forefront of everyone’s mind these days, importance of keeping data safe while in transit is vital. There are of course a number of different technologies that are available to keep data safe including IP Security (IPSec), Generic Routing Encapsulation (GRE), Secure Sockets Layer (SSL) VPNs, and more. One of the major issues that many people have with IPSec is that it does not directly support IP multicast (required for many routing protocols) or protocols other than IP; this is often why a mix of different technologies are used to provide a solution that is optimal for each situation. For now, let's take a look at just IPSec -- specifically, IPSec direct encapsulation on Cisco devices. Transport or Tunnel? Tackling IPSec Modes The first thing to recognize is that IPSec itself is not a protocol but a collection of protocols that are used collectively to create a secure connection between endpoints. While IPSec is an open standard, among the most used features are the Internet Security Association and Key Management Protocol (ISAKMP), which is used to establish a Security Association (SA) between endpoints. This includes a common encryption protocol (for ISAKMP) and authentication method and parameters. Authentication Header (AH) provides the ability for a connection to have integrity protection and data origin authentication, while Encapsulating Security Payload (ESP) provides the ability for a connection to have integrity protection and data origin authentication as well as the ability to have... --- ### The Advantages of Using the Cloud to Unify Communications > Mike Danseglio shows you why it's smart to use the cloud to unify and combine your communications. - Published: 2012-08-15 - Modified: 2024-11-19 - URL: https://petri.com/advantages-using-cloud-communications/ - Categories: Cloud Computing - Tags: Asynchronous communication, Cloud, cloud computing, Lync, skype, Synchronous communication - Article Type: Overview Do meetings, SMS texting, conference calls, and social media have you in a bind? Mike Danseglio shows you why it's smart to use the cloud to unify and your communications. You’re already familiar with computer-centric communications. Electronic communication has existed for decades, evolving and adapting to its current ubiquity. Enormous amounts of text and voice communications are now carried by networks and servers. And communicating by electronic voice and data transfer is a core part of every facet of life, including business, personal, recreational, and civic. But not for everyone. One of my peers frequently says, “I don’t do meetings or phone calls. I use computers. ” Yet over the past six months I’ve seen this man: Present a PowerPoint slide deck in both WebEx and GoToMeeting Share his screen with GoToMyPC and VNC Participate in video conference calls with Skype, Lync, and Google Talk Send SMS and group MMS messages Broadcast his current location, activities, interests, and solicitations for companionship on Twitter and Facebook Call friends and relatives from his iPad with Voice over IP software How is this not the same? How does he assert his aversion to meetings and phone calls yet participate in countless activities that are nearly identical? The difference is in the cloud. Rather, the difference is the advantages of using the cloud to unify communication. Those advantages changed his definition of meetings from an uncomfortable chore to an enjoyable experience that adapts to fit his communications needs. The concept of communications is far too broad to analyze in one big piece. I could compare digital to analog, voice to data, phone to PC to in-person, 1:1 to 1:many, and so on. But to best... --- ### How to (Painlessly) Transfer Your iTunes Library to a Different PC > Is your iTunes library in the Lost & Found? John O'Neill, Sr. walks you through an easy and pain-free way of transferring your old info to a new device. - Published: 2012-08-14 - Modified: 2024-09-04 - URL: https://petri.com/how-to-transfer-itunes-library/ - Categories: Backup & Storage - Tags: Apple, CopyTrans Tuneswift, iTunes, iTunes library, Macintosh - Article Type: How To Is your iTunes library in the Lost & Found? John O'Neill, Sr. walks you through an easy and pain-free way of transferring your old info to a new device. With the staggering amount of iPods, iPhones, and iPads already in use, the problem of how to transfer iTunes sync relationships between an old PC and a new PC becomes a bigger issue -- a much bigger issue, indeed. Imagine for a moment that you have three iPhones and two iPads in your house, all set to sync with your household PC. In iTunes, you have tucked away hundreds of songs in dozens of playlists, a few movies, and oodles of apps all organized on in folders on your devices. Organizing the folders to meet your needs took hours. But then one day you buy a shiny new PC. You install iTunes and hook up an iPhone, but a dialog box pops up to inform you that the device already synchronized with your old computer, and that if you continue it will replace that information with the nothingness that is on the new PC. In this article, I will show you how to transfer your itunes library from one PC to another. Transfer Your iTunes Library in Less than an Hour One would think (or hope) that Apple makes it easy to move iTunes and all your downloaded information from your old PC over to the new one. Think again. Now, don’t get me wrong -- it certainly is possible, especially if you have oodles of time and patience. Luckily, CopyTrans TuneSwift, a third-party solution from the folks at WindSolutions, easily resolves that pesky problem. CopyTrans TuneSwift will migrate virtually... --- ### Creating Custom Objects in PowerShell : Introduction > Learn to create your own custom object in Powershell in this four-part series. - Published: 2012-08-09 - Modified: 2024-09-04 - URL: https://petri.com/custom-objects-windows-powershell-part-1/ - Categories: PowerShell - Tags: cmdlet, custom object, Intermediate, PowerShell, Windows - Article Type: How To Learn to create your own custom object in Powershell in this four-part series. Whenever I’m writing, speaking about, or training someone on PowerShell, I always stress that it is “all about the objects. " PowerShell is not about parsing or grep’ing text; it is about working with objects in the pipeline. Most of the time, you can simply reference objects that come from cmdlets such as Get-Service or Get-EventLog. But sometimes, especially when scripting, you may want to create your own custom objects. By writing scripts and functions that write objects to the pipeline, you can take advantage of PowerShell cmdlets like Sort-Object, Select-Object and Export-CSV. This is a four-part series. Today I'll discuss the basics of creating custom objects in PowerShell to meet your needs; however, in this version, we lose the original object. In part two, I'll show you how to modify and create the custom object while retaining the original. Part three saw us learninghow to create a custom object from scratch. Finally, in part four, I’ll go deeper and include the enhancements found in PowerShell 3. 0. Creating a Custom Object from a Basic Object You can use a number of techniques for creating a custom object. There’s not necessarily a “best” way except whatever best fits your objective. PowerShell 3. 0 introduces some new techniques, but I’ll cover those another day. First, let’s say you have a basic object from a cmdlet, and you simply want to add a custom property. The quick way is to pipe the object to Select-Object and use a special hash table to... --- ### The Session Initiation Protocol (SIP) Primer > New to the wide world of Session Initiation Protocol (SIP)? In this article, Sean Wilkins will briefly demystify SIP and its network elements. - Published: 2012-08-08 - Modified: 2012-08-08 - URL: https://petri.com/session-initiation-protocol/ - Categories: Messaging - Tags: Session Initiation Protocol, SIP, VoIP - Article Type: Overview An overview of the Session Initiation Protocol (SIP) call signaling protocol. Overview In the wide world of Voice over IP (VoIP) technologies there are a number of call signaling protocol options available. One popular option is the Session Initiation Protocol (SIP). Its popularity is due in large part because SIP was designed with the Internet in mind, and it uses a relatively simple ASCII encoded language similar to the Hypertext Transfer Protocol (HTTP) used for websites. It also uses an identifying format that many may find familiar, including a SIP Uniform Resource Identifier (URI) that looks similar to an e-mail address in formatting (e. g. , sip:me@here. com). Here we'll give you a brief overview of the purpose of SIP and its network elements. SIP Basics It's important to recognize that SIP itself is not a protocol that transports anything but is used solely to set up multimedia sessions. It can also be used in conjunction with other protocols to support voice and video and other functionalities. So, what is involved in the establishing and termination of a session? We can break it down into five steps. First, you must be able to locate the destination end system. Once an end system has been located, it must then be determined whether the end system is available for a new session. If it is available, you then need to determine what types of media and media parameters are supported by the end system The session setup will then commence, which includes a negotiation for a common set of session parameters. If this is... --- ### Cloud Storage for Content Creation and Management > Considering moving files and content to the cloud? Mike Danseglio gives you some tips on how to make the most of your cloud computing solution. - Published: 2012-08-08 - Modified: 2012-08-08 - URL: https://petri.com/cloud-storage-for-content-creation/ - Categories: Cloud Computing - Tags: cloud computing, SharePoint - Article Type: Overview Considering moving files and content to the cloud? Mike Danseglio gives you some tips on how to make the most of your cloud computing solution. In the consulting and freelance writing business I work with dozens of companies a year. Most of them embrace and leverage cloud storage solutions for our projects. And rightly so. They love the benefits that cloud-based storage provides. A recent article by my peer Dr. Avril Salter compared some of the major cloud storage providers. She did a fantastic job of providing the details for general cloud storage use. My intention in this article is to explore the area a bit deeper and target a specific common cloud storage scenario – creating, editing, and managing content. In this context, content can mean any number of things. I typically create content using the common Microsoft Office applications like documents, spreadsheets, and presentations from Word, Excel, and PowerPoint respectively. I also create or purchase photos, create graphics and charts, and record audio and video content. All of these are content. The drawbacks of email, FTP, and the rest How often have you emailed a Word document to a customer or partner and had them return it to you with their changes? If you’re like most of us, it was pretty recent. Not long ago email was the fastest and most reliable way to share content with anyone outside your workgroup. But there are a ton of drawbacks to using email including: No guaranteed delivery. Verification usually required a second avenue of contact (e. g. phone call, chat). No simultaneous editing. No backup or redundancy while the file is out for review. Sure, there... --- ### Turn Off Data Roaming on Your iOS Devices (and Avoid Surprises) > Worried about the cost of unfettered data roaming on your iOS device? John O'Neill Sr. serves up some tips to help you avoid stress and save money. - Published: 2012-08-07 - Modified: 2024-09-04 - URL: https://petri.com/turn-off-data-roaming-on-ios-devices/ - Categories: Mobile - Tags: data roaming, iOS, iPad, iPhone - Article Type: How To Worried about the cost of unfettered data roaming on your iOS device? John O'Neill Sr. serves up some tips to help you avoid stress and save money. In the not too distant past people were worried about their cell phones “roaming” and racking up massive charges in little time if they didn’t keep a close eye. How wonderful life became for all of us when nationwide plans banished this horror from our daily lives. Now, only those that travel abroad typically concern themselves with roaming. They easily deal with the problem either by not making calls from their cell or by keeping them brief to minimize the cost. Problem solved, right? Well, not so fast... Cellphones are no longer just phones. They are smartphones. The era of phones used simply to talk to one another is almost past. Nowadays, our phones do so much more and they do it automatically. Email, check. Web browsing, check. Text messaging, check. All this is performed while our phones sit quietly in our pocket, purse, or on the car seat next to us. Multi-gigabyte and unlimited data plans fuel this background content consumption by our devices leaving us with no or very rare unexpected charges. This is all true and great, until you take a business trip to London or that well deserved vacation to Niagara Falls, Canada, as I recently did. Unless you have a rare international data plan, data roaming will kick in and send your cell bill skyrocketing faster than the space shuttle. How to Turn Off Data Roaming on iPhone or iPad Engineers at Apple have taken sympathy on our plight and developed a... --- ### WinRM - Not Just for PowerShell > Jeff Hicks explains how WinRM can be used outside of PowerShell - Published: 2012-08-03 - Modified: 2024-09-04 - URL: https://petri.com/winrm-not-just-for-powershell/ - Categories: PowerShell - Tags: Intermediate, PowerShell, WinRM, WS-Man - Article Type: Overview Did you know you can leverage WinRM outside of PowerShell? Jeff Hicks shows you how to do exactly that. Overview As you are probably aware, Windows PowerShell Remoting is based on the WS-Man protocols which are managed by the WinRM service. The primary advantage of this technology is that a secure, remote connection is made over a single, configurable port. None of the chaos normally associated with RPC and DCOM connections. Plus the command is executing on the remote machine, just as if you were sitting in front of the computer. But you are not required to use PowerShell to leverage WinRM. Sure a lot of remote management is easier done through PowerShell, but let me show you some tricks you might want to try outside of the PS prompt. Using WinRM Outside of PowerShell First, remoting must be enabled on the remote machine if you haven’t already done it via PowerShell. Open a CMD prompt and run this command: ​C:winrm –quickconfig Follow any prompts and in moments you’ll be ready to go. To see your configuration try this: ​C:winrm get winrm/config You should get something like Figure 1. Figure 1 - WinRM Configuration If you haven’t guessed by now, we’ll be using the WinRM command line tool. Run it with –help or /? parameter at any time to see help. The first thing I’m going to do is check on the status of WinRM on a remote computer. ​C:winrm id -remote:quark IdentifyResponse ProtocolVersion = http://schemas. dmtf. org/wbem/wsman/1/wsman. xsd ProductVendor = Microsoft Corporation ProductVersion = OS: 6. 2. 8400 SP: 0. 0 Stack: 3. 0 SecurityProfiles SecurityProfileName = http://schemas. dmtf. org/wbem/wsman/1/wsman/secprofile/http/spnego-kerberos I got a response,... --- ### Introduction to Network Address Translation - Published: 2012-08-02 - Modified: 2024-09-04 - URL: https://petri.com/introduction-to-network-address-translation/ - Categories: Networking - Tags: IPv4, IPv6, NAT, network address translation - Article Type: Overview Interested in learning more about Network Address Translation (NAT)? In this article, Sean Wilkins provides a tutorial on what NAT is all about. Overview Almost anyone with a modern Internet connection has used Network Address Translation (NAT). NAT has been a big part of large scale IP network deployments since the IPv4 address space began to dwindle. At its most basic, NAT enables an internal IP address (or addresses) to be mapped to an external IP address (or addresses); this enables the use of private RFC 1918 IP addresses on internal networks while only using a single or very few public IP addresses. This article takes a look at some of the basic NAT concepts including the types of NAT as well as how interfaces are labeled to perform NAT functions. NAT Basics The first thing to understand is the different types of NAT, which include: static, dynamic and overloaded. With static NAT a single specific internal IP address is mapped to a single specific external IP address; an example of this is shown in Figure 1. Figure 1 - Static NAT In Figure 1, a PC on the internal network needs to communicate to a host on the external network, which in this case is the Internet. Private RFC 1918 are not routable on the public Internet and would not be allowed as a source or destination address. To get around this, NAT can be statically configured to map the internal IP address 192. 168. 1. 10 (the host) to the external IP address 203. 0. 113. 10; if this was with all communications on the external network it would look like traffic would be... --- ### Identity Management with Forefront Identity Manager 2010 - Published: 2012-08-01 - Modified: 2012-08-01 - URL: https://petri.com/identity-management-with-forefront-identity-manager-2010/ - Categories: Security - Tags: Active Directory, AD, FIM2010, ForeFront, Identity Management, Microsoft Forefront - Article Type: Overview Microsoft’s Forefront Identity Manager 2010, or FIM 2010, is an identity management solution which can handle every aspect of managing identities. Microsoft’s Forefront Identity Manager 2010, or FIM 2010, is an identity management solution which can handle every aspect of managing identities. Account provisioning, group memberships, and self-service password resets are all part of what Forefront Identity Manager 2010 can provide to an organization. This article provides an overview of the topic of Identity Management.   It will define some of the terminology used and describe some of the ways that Microsoft Forefront Identity Manager 2010 works to improve Identity Management. What is Identity Management? Identity management helps organizations get control of some critical aspects of their IT infrastructure:  primarily user accounts.   There are two important parts of identity management.   First, business decisions are made that define the rules of who gets an account, and when.   Second, it’s the implementation of those rules. Identity management is more than just managing accounts and passwords. It’s the total management of identities across their entire lifecycle.   What happens when a new user enters the organization?   What happens when an existing user changes roles within the organization?   Finally, what happens when a user leaves an organization?   Those are the questions that identity management addresses. How does Forefront Identity Manager 2010 help? Microsoft Forefront Identity Manager 2010 helps to implement the management rules that an organization creates.   While it does not really help to define the rules that an organization should create, it does provide the tools to make a reality the rules that the organization does define. Forefront Identity Manager 2010 is more... --- ### 4 Steps to Protect Your Data in The Cloud > Considering using the cloud for part of your IT infrastructure? Here are four tips that any IT pro should find useful when preparing for a move to the cloud. - Published: 2012-07-30 - Modified: 2012-07-30 - URL: https://petri.com/protect-your-data-in-the-cloud/ - Categories: Cloud Computing - Tags: cloud computing, cloud security, encryption, SaaS - Article Type: How To Considering using the cloud for part of your IT infrastructure? Here are four tips that any IT pro should find useful when preparing for a move to the cloud. Overview I have been quite surprised in recent months at how many individuals and companies store content in the cloud without thinking about who might have access to their data and how these files are being used. There seems to be an implicit trust. After all, backing up data to the cloud is more reliable and recoverable than backing up to onsite hard drives. Common sense mandates that you should do due diligence before storing data in the cloud. This article provides you with a four step roadmap to guide you through the process of assessing your cloud storage provider’s security policies. 1.     Read the Fine Print We are all guilty of scrolling through terms and conditions on web sites and pressing the agree button without actually reading anything. Even though we have all heard horror stories about people who failed to read the small print, we either perceive that it is not worth spending time on or think that we will not be able to interpret it correctly. “By submitting or posting such Content ... . .  you grant Apple a worldwide, royalty-free, non-exclusive license to use, distribute, reproduce, modify, adapt, publish, translate, publicly perform and publicly display such Content on the Service solely for the purpose for which such Content was submitted or made available, without any compensation or obligation to you. ” A storage service provider needs to be able to manage the data stored on their network. This means that the service providers need be able to move your... --- ### Installing Windows Server 2012 (RC) Step-by-Step > A step-by-step easy-to-follow guide on how to install Windows Server 2012. - Published: 2012-07-27 - Modified: 2024-09-04 - URL: https://petri.com/installing-windows-server-2012-rc/ - Categories: Windows Server - Article Type: How To Learn how to install Windows Server 2012 in this step-by-step guide. In exactly 21 easy-to-follow steps, you'll be running your very own Windows Server 2012 system, and will be ready to start creating a storage pool or ready to add it as a Domain Controller. Overview In this step-by-step guide, we’ll review the process of installing Windows Server 2012. In exactly 21 easy-to-follow steps, you’ll be running your very own Windows Server 2012 system and you’ll be ready for Jeff Hicks’ First Five Fixes. Now let’s get started! How to Install Windows Server 2012 1. Download Windows Server 2012 - http://aka. ms/getwin2012 2. Follow Step-By-Step Instructions to configure BIOS - Configure BIOS Before Installing Windows Server 2012 and Hyper-V 3. Press ENTER to boot from DVD. Files will start loading. 4. Take the defaults on the Language screen, and click Next. 5. Click Install now on the install screen. 6. Click the second line item for the GUI. The default install is now Server Core. Then click Next. 7. Read License Agreement, Turn on Checkbox “I accept the license terms,” and then click Next. 8. Click Custom: Install Windows only (Advanced). . 9. The disk you are using should be listed. If not, you will need to Load driver. Select the disk you will be installing on. If you do not want to change drive options (optional), Click Next. If you want to use Dual boot using Native Boot To VHD (Boot2VHD), see below: 10. Click drive options; then you can create custom partitions. 11. Add a drive using Native Boot To Vhd: SHIFT-F10 to open a command prompt window; Find installation drive (dir c:, dir d:, dir e:, etc).  Diskpart to open the Disk Partition Utility (the first four lines below... --- ### Where Is the File: Using Get-FileItem > Learn how to quickly find the file you are looking for by using the command line utility Get-FileItem. - Published: 2012-07-26 - Modified: 2024-11-19 - URL: https://petri.com/using-get-fileitem/ - Categories: PowerShell, Windows Server - Tags: Beginner, cmdlets, PowerShell - Article Type: Overview In Part 1 of this series, Microsoft MVP Jeff Hicks demonstrated how to use a command line utility called where.exe. In the second part of this series, Jeff shows you how to use another command line alternative called Get-FileItem to help you find the files you’re looking for. And we're back with our look at a couple of command line utility items. In part one, I discussed how to use Where. exe, which can locate files and return the full file name. There’s nothing wrong with the utility because it gets the job done efficiently. However, it really is a legacy command line tool and as such has some limitations, especially if you want to do anything with the results. It is possible to run it in PowerShell, although you have to be explicit to avoid confusing it with the Where alias for Where-Object. ​PS C:> where. exe calc. exe C:WindowsSystem32calc. exe It certainly makes it easier to find and execute the file. PS C:> where. exe calc. exe | invoke-item But anything more complicated, especially once you start adding directories and parameters gets a little messy. If you are going to be using this in PowerShell (and why wouldn’t you? ) then it would seem to make sense to use a PowerShell version of WHERE. EXE. So I wrote one for us! Using Get-FileItem My version is an advanced function called Get-FileItem. I wanted to stick with a conventional naming scheme, but the script file will also define an alias called pswhere. The where alias is already in use from Where-Object so I had to come up with something else. The function acts just like a cmdlet and includes complete help and examples as you can see in Figure 1. Figure 1 Help for Get-FileItemI tried to stick to the same syntax and features as... --- ### Problems with RDP Connections on Windows Server 2008 R2 > Learn how to solve RDP problems on your Windows Server 2008 R2 machine. - Published: 2012-07-25 - Modified: 2024-09-04 - URL: https://petri.com/rdp-windows-server-2008-r2/ - Categories: Windows Server - Article Type: Overview Issues that prevent the use of Remote Desktop Protocol (RDP) to manage servers can be a headache for any busy system administrator. In this article we'll take a look at solving an RDP problem caused by some specific Windows security updates. Recently we came across a nasty issue when remotely connecting to Windows Server 2008 R2 machines via RDP (Remote Desktop Protocol). In this case, these servers were actually Domain Controllers and not full featured terminal servers, but we've seen issues with these as well. Failing to use RDP to these servers caused the administrators to have to physically go to the servers and log on locally, or use some other sort of remote management software such as HP iLO. If these are virtual machines, it's also possible to connect to their console using the virtualization software management suite. Either way, failing to use RDP to manage these servers may cause a significant issue for some. RDP Connection Problems in Windows Server 2008 R2 The symptoms for the RDP problem include the following: A user with administrative rights and permissions to RDP into the server(s), who was able to successfully connect to these machines, now reports that they can no longer connect to the machines. Note: It seems that in some cases, this issue also happens for Windows 7 machines as well. Once the user opens an MSTSC window and attempts to RDP into the server(s), they are prompted to enter their credentials. They do so, but just before their desktop appears, an error warning appears:"The connection to the remote computer was broken. This may have been caused by a network error. Please try connecting to the remote server again. "The user acknowledges the error... --- ### Selecting High Availability Technologies for Cloud Computing > Mike Danseglio explores the Availability Technologies recommendations, from the NIST's Guidelines on Security and Privacy in Public Cloud Computing. - Published: 2012-07-24 - Modified: 2012-07-24 - URL: https://petri.com/high-availability-in-the-cloud/ - Categories: Cloud Computing - Article Type: Overview High availability is one of the most important benefits your company can get from cloud computing. In this post, IT veteran Mike Danseglio explores the Availability Technologies recommendations, recently published in the NIST's Special Publication 800-144 Guidelines on Security and Privacy in Public Cloud Computing. Overview The National Institute of Standards and Technology (NIST), part of the US Department of Commerce, recently published Special Publication 800-144 Guidelines on Security and Privacy in Public Cloud Computing to clearly express concerns about using public cloud computing service providers. I covered a number of these concerns in my article on Security and Privacy in Public Cloud Computing (Security and Privacy in Public Cloud Computing). My intention in examining these concerns is to map the theory and recommendations that were expressed in SP 800-144, including some supporting reference documents, to a practical IT approach. Last week, we focused on defining availability requirements for cloud computing (Defining Availability Requirements for Cloud Computing); in today’s article, we’ll explore the Availability Technologies recommendations. Availability Technologies for the Cloud SP 800-144 broke out two pillars of availability. First, it recommends you understand and define availability requirements. Then you select technologies that achieve or exceed the requirements. My previous article showed you how to define availability, how to distinguish between recovery and availability scenarios, and how to determine your availability needs. Remember that availability, in the context of outsourced business services, is how much time the service provider guarantees that your data and services are available. This is typically documented as a percent of time per year - e. g. 99. 999% (or five nines) uptime means you will be unable to access resources for no more than about five minutes per year. Note that cloud service providers differ in their definition and measurement of availability... . --- ### Microsoft Lync Resources on Twitter > A handy guide to some of the best Microsoft Lync resources and experts on Twitter. - Published: 2012-07-23 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-lync-resources-on-twitter/ - Categories: Messaging - Tags: Lync - Article Type: Overview Twitter is a great resource for finding Lync experts and information, so we've put together a handy list of some of the best Lync resources in the Twitterverse. Microsoft announced its Q4 2012 fiscal results last week, reporting $18. 6 billion in revenue during April to June 2012. Those are impressive stats, but that record-breaking quarter -- the most revenue Microsoft has generated in any quarter in its 37-year history -- was tempered by news that Microsoft's purchase of online advertising company aQuantive (which Redmond took a $6. 2 billion write-down for) led also to Microsoft's first quarterly-loss, a pool of red ink that weighed in at $492 million. The devil is always in the details, however, and digging further into Microsoft's earnings report revealed that Microsoft's Server and Tools Group continues to bring home the bacon, and Microsoft's Lync unified communications (UC) product experienced some impressive growth. How impressive has Lync's growth been? Here's what Peter Klein, Microsoft's Chief Financial Officer, said about it in the Q4 2012 earnings conference call: "Our productivity server offerings continue to perform very well, with double digit growth. Our newest server offering, Lync, grew over 45% this quarter. And we're excited about the unified communication scenarios that are enabled by new voice, video, and social capabilities. " Given that Lync adoption is booming these days, where can you go to get the latest information on Microsoft's newest rising star? As always, Twitter is a great resource for finding Lync experts, support, and information, so I've taken the liberty of putting together a list of some of the Lync resources I found in the Twitterverse. This list by no means wholly complete or exhaustive, so if... --- ### How To Use The Active Directory Topology Diagrammer > Learn how to use the Active Directory Topology Diagrammer to quickly create diagrams of your AD structure. - Published: 2012-07-23 - Modified: 2024-11-19 - URL: https://petri.com/using-active-directory-topology-diagrammer/ - Categories: Active Directory (AD) - Article Type: How To If you've ever needed to quickly create diagrams of your Active Directory structure and wanted to automate the process, this article will help. In this post, IT veteran Michael Simmons shows you a utility that is going to do it. Overview Do you need to quickly create diagrams of your Active Directory structure? Do you want to automate the process of creating a diagram of Active Directory OU? As described on Microsoft’s download page for Active Directory Topology Diagrammer: The Microsoft Active Directory Topology Diagrammer reads an Active Directory configuration using LDAP, and then automatically generates a Visio diagram of your Active Directory and /or your Exchange Server topology. The diagramms may include domains, sites, servers, organizational units, DFS-R, administrative groups, routing groups and connectors and can be changed manually in Visio if needed. - Microsoft. com, Downloads page, Brief Description If you need to create Active Directory drawings for Visio, then this is the utility that is going to do it. You Don’t Create the Drawings From Inside Visio Previous versions of Visio made connections into different data sources. For instance, you could ping networks and connect up to Active Directory. Visio 2010 does not connect up to Active Directory directly, and the Active Directory Topology Diagrammer does not operate from inside Visio. After downloading the AD Diagrammer, you run it independently. You actually don’t even need Visio on your machine unless you want to edit the diagrams. If you just want to view them, you can just use the Visio Viewer, or upload them to a SharePoint site with Visio Services enabled. Running the Active Directory Topology Diagrammer To create your Active Directory diagrams, start the AD Topology Diagrammer and provide it... --- ### Grant DNSAdmins the Right to View DNS Event Log Entries Remotely on Windows Server 2008 R2 > Learn how to grant DNSAdmins the right to view DNS event log entries remotely on Windows Server 2008 R2. - Published: 2012-07-20 - Modified: 2024-12-03 - URL: https://petri.com/grant-dnsadmins-rights-on-windows-server-2008-r2/ - Categories: Windows Server 2008 - Article Type: How To Learn how to grant DNSAdmins the right to view DNS event log entries remotely on Windows Server 2008 R2. Using a lab environment, we show you the steps to take when granting these rights, and what to do when an error occurs. Overview This is an issue we’ve struggled with in the past day or so. An organization running Windows Server 2008 R2 is delegating control of their DNS servers to specific people, and in order to do so, they added these users to the DNSAdmins built-in group in Active Directory. However, since these users are not members of any administrative groups, while they can view the DNS Event Logs and manage them locally, on the DNS server(s), they cannot do so remotely from another Windows Server 2008 R2 or Windows 7 management workstation. The Problem: Access Denied when Viewing Event Logs Remotely To demonstrate this in our lab environment, we created a user called DNSManager, and added him to the DNSAdmins group. Once the user logs on to their management workstation and opens Event Viewer, they connect to a remote computer. Figure 1: Connecting to a Remote ComputerIn the “Another Computer” area, they type the name of the remote machine. In this case, it’s a remote Domain Controller that is called DC1, which also hosts the DNS service. Figure 2: Select Computer to View Event Logs onOnce connected, they attempt to open one of the Event Logs, but get an “Access is Denied (5)” message: Figure 3: Access Denied Error Message when Viewing Event Logs Remotely The Solution: Granting DNSAdmins to the Event Log Readers Group This can be easily fixed by adding these users (or group of users) to the “Event Log Readers”... --- ### Where is the File: Using Where.exe > Learn how to use the command line Where.exe to quickly search for files in part 1 of this how-to. - Published: 2012-07-19 - Modified: 2024-09-04 - URL: https://petri.com/using-where-exe/ - Categories: Windows Server - Article Type: Overview If you've ever run commands from a command prompt and run into problems, Microsoft MVP Jeff Hicks has a solution for you. In this tutorial Jeff shows how to use a command line utility called where.exe. In part 2 of this series, Jeff will show you another command line alternative to help you find the files you’re looking for. There used to be a time where you ran commands on your computer without any fancy GUIs or icons. You typed a command and it ran. In order to simplify your life, you didn’t even have to specify the full path to the program. The operating system would search in predefined set of directories and run the first matching command. These directories were stored in an environmental variable called %PATH%. Today, most IT Pros don’t think too much about this, nor do they when using Windows. But for those of you who run commands from a command prompt, sometimes you can run into problems. This is a two-part article: Today I'll discuss using the command line utility Where. exe. In part two, I'll go further and discuss using Get-FileItem to help you find the files you want. Using Where. exe For example, if you want to run foo. exe but there are two different versions in two different folders in %PATH%, you might end up running the wrong version. If you open a command prompt in Windows 7, you have at your disposal a nifty command line utility called Where. exe. To see how to use it, run where /? at a prompt. You can see the results in Figure 1. Figure 1 Where. exe helpThe easy way to use this utility is to specify a pattern for a filename. You can even use wildcards. C:>where notepad. * C:WindowsSystem32notepad. exe C:Windowsnotepad. exe The default behavior is to display the full file... --- ### Defining Availability Requirements for Cloud Computing > Mike Danseglio goes over government requirements for defining availability in the cloud. - Published: 2012-07-18 - Modified: 2024-09-04 - URL: https://petri.com/availability-requirements-for-cloud-computing/ - Categories: Cloud Computing - Article Type: Overview The US government has many concerns about using public cloud computing service providers. In this article, IT veteran and award-winning author Mike Danseglio critically examines the Availability Technologies recommendations, and shows how to define the value of service availability to your business. Overview In my article about Security and Privacy in Public Cloud Computing, I described a number of concerns that the US government expressed about using public cloud computing service providers. The National Institute of Standards and Technology (NIST), part of the US Department of Commerce, published Special Publication 800-144 Guidelines on Security and Privacy in Public Cloud Computing to clearly express these concerns. I’m examining all of these concerns with the intent of mapping the theory and recommendations expressed in SP 800-144, and supporting reference documents, to a practical IT approach. In this article, I’m exploring the Availability Technologies recommendations. Availability in the Cloud It might seem odd to think critically about availability in a cloud scenario. After all, isn’t cloud computing a solution to availability problems? Don’t most of us assume that great backups, mirrored data, and multiple data centers are features of every cloud provider and solution? Yes and no. Virtually all cloud providers use effective data backup and restore solutions. It is usually part of every service offering. But backing up and restoring data is only part of what you really need. What you need is availability. And that’s different. When you’re selecting a cloud provider and service package, you must first define the value of service availability to your business. That’s actually harder than it seems. Only then can you determine whether the cloud provider’s products meet your expectations. How Do I Define My Availability Requirements? I get this question in many forms and within many... --- ### BYOD - Bring Your Own Device - Coming to a Workplace Near You > This article focuses on ways that Windows on ARM (WOA) installations that your users bring into your organizations can not only be useful, but safe. - Published: 2012-07-17 - Modified: 2012-07-17 - URL: https://petri.com/byod-bring-your-own-device/ - Categories: Mobile - Tags: Windows on ARM - Article Type: Overview The consumerization of IT is here and doesn't seem to be going anywhere. This article by Michael Simmons discusses some of the advances made that allows Windows 8 on ARM (WOA) installations that your users bring into your organizations to not only be useful, but safe. It's called the "consumerization of IT," and if you haven't heard the term yet, you've surely seen it firsthand. Phones and tablets are getting so useful and personal, that they are being preferred over a typical workplace computer. You can't keep them out -- the devices are already there. And you surely can't fight it -- it's usually the bosses and executives that are the first to bring in the devices and demand that they be made to work on the network. Instead of trying to hold back the tide, it's time to realize that the consumerization of IT is here, and it gives the power to the people. Ten years ago, end users did what they were told (at least that's the way we remember it). They got a company-owned computer and ran company-owned software on a desktop computer. Most users rarely checked their work email from home. Even fewer actually worked from home, and when they did, it would be a simple remote connection to that already controlled desktop computer. The end users of ten years ago are as long gone as a Palm Pilot, and if IT departments don't keep up with them, they will turn into a dinosaur -- just as useless. This article discusses some of the advances made that allows Windows on ARM (WOA) installations that your users bring into your organizations to not only be useful, but safe. Can Your IT Department Handle Installing Apps on Users' Devices? Windows... --- ### Oracle to Launch New Cloud Application: Are They Too Late? > Oracle's announced the launch of their new cloud application -- will it be able to stand out from its competitors or is Oracle too late? - Published: 2012-07-16 - Modified: 2024-11-19 - URL: https://petri.com/oracle-to-launch-cloud-application/ - Categories: Google Cloud Platform - Article Type: Opinion In June of this year, Oracle announced the long-awaited launch of the Oracle cloud. In this post, Avril Salter, Ph.D. examines whether Oracle is too late to make a difference in the cloud market given its late arrival, or if they will be able to stand out from their competitors. Overview In June of this year, Oracle CEO Larry Ellison announced the arrival of the Oracle cloud. His opening comments were, "It's been a long time coming ... we made a decision to rebuild our applications for the cloud almost seven years ago. " These comments both acknowledged that Oracle is late to market and that running applications in the cloud is different than running them in the enterprise. The question is, can Oracle recover and do they have anything different or better than the folks who have been offering cloud applications for over seven years, apparently before Oracle even started developing cloud applications? One of the first things students learn in business school, is that time to market has a major impact on a business' profitability. If a business is late to the market, they reduce the time period that their product is in the market, which reduces revenue. Introducing products late also reduces market share. This then reduces volume, which negatively effects profitability. Ellison clearly agrees with this, as in the same speech he criticized SAPs plan to have cloud applications by 2020: “Our applications will have had eight years of maturing. ” This is an interesting comment given that Facebook and Salesforce. com applications have had over eight years of maturing in the market ahead of Oracle. Is Ellison actually implying through his criticism of SAP that Oracle cannot catch up with Facebook and Salesforce. com? Relying on brand power might not be enough... --- ### How to Find the Right SharePoint Training: A Resource Guide for IT Pros > IT veteran Michael Simmons lists the best resources when learning SharePoint. - Published: 2012-07-13 - Modified: 2024-11-19 - URL: https://petri.com/sharepoint-training-resources/ - Categories: Training & Certification - Article Type: How To Are you looking to learn SharePoint but don't know where to start? In this post, IT veteran Michael Simmons lists some great resources -- both free and paid -- to help get you started, from instructor-led and online courses, to books and blogs. Overview One of those things that is always so important is for system engineers to quickly get up to speed on a new technology. If you’re getting ready to implement SharePoint, or you’ve been hearing your CITO talk about needing it and you want to help lead the project, there are a lot of resources available to help you get from “curious” to “awesome. ” Courses and Training Options for SharePoint 2010 You have some great training options that are available. There are both in-person and online classes and training videos that are dedicated to SharePoint 2010. In-Person Training for SharePoint 2010 SharePoint 2010 Administration from SharePoint 911 – SharePoint 911 has a bunch of Microsoft MVPs working for them, and was founded by SharePoint MVP Shane Young. I’ve taken SharePoint training from Shane and he absolutely knows his stuff! Online Courses for SharePoint 2010 Official Microsoft Instructor-Led SharePoint course – If you’re looking for something beyond what is available for free, this is one of the really great options. You can choose SharePoint training courses that are piecemeal (pick and choose the topics) or you can buy a collection which includes all of the training courses. TrainSignal SharePoint Server courses – TrainSignal products are especially nice because they can be viewed online or you can use the DVDs they send to watch when you're offline. If that’s something that’s important because broadband connections aren’t available to you, TrainSignal may be the best option for you. Online... --- ### Windows Server 2012: First Five Fixes > PowerShell MVP Jeff Hicks discusses his "First Five Fixes" when setting up a new Windows Server 2012 system. - Published: 2012-07-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-fixes/ - Categories: Windows Server 2012 - Article Type: Overview What do you do with a brand new Windows Server 2012 install? Let PowerShell MVP, Jeff Hicks, show you his "first five fixes" for a new Windows Server 2012 build that although you might not think of immediately, will prove to pay off down the road. I think Windows Server 2012 will fundamentally change the way IT Pros manage their Windows environments. I expect many of you are already kicking the tires on Windows Server 2012 and perhaps are even running it in a limited, testing environment. When you first build a new system, and there are a number of ways to do it, I expect you will have a checklist of standard steps. Eventually, you will be like all the cool kids and use a PowerShell workflow, but for now I’m going to assume you will be employing a manual process. I assume you will do the following tasks by default when setting up a new Windows Server 2012 system: Configure computer name Configure networking Install features and roles Run Windows Update I’m not going to cover those as I think they are pretty self-evident in the Server Manager GUI, but I do have 5 additional “fixes” that I’ve been using. These are things that you may not think of immediately, but they will pay off down the road. My “First Five Fixes” aren’t in any order, but I’m assuming you’ve completed at least the default steps above before moving on to these. Note: This article is based on a pre-release version of Windows Server 2012 and is naturally subject to change. 5. Enable PowerShell Remoting Windows Server 2012 relies on PowerShell remoting, and for the most part, it is now turned on and enabled by default. I... --- ### Spanning Tree Protocol: STP Port States > Learn what happens during each Spanning Tree Protocol port state and why they are needed for STP operation. - Published: 2012-07-11 - Modified: 2024-09-04 - URL: https://petri.com/spanning-tree-protocol-port-states/ - Categories: Networking - Article Type: Overview In this article, Petri's Cisco pro Sean Wilkins takes a look at the Spanning Tree Protocol port states -- what happens during each port state and why they are needed for STP operation. Overview The Spanning Tree Protocol (STP) has long been a staple of Local Area Networks (LAN) in multiple environments. It is required in environments where multiple layer 2 paths exist between the various layer 2 devices within the LAN. Each of these ports that connect these devices together pass through a number of different states (Port states) that allow STP enough time to determine the status of the network and in what final state the port should be placed. This article takes a look at these port states, what happens during each of them, and why they are needed for STP operation. What are STP Port States? The main purpose of STP is to prevent switching loops throughout a LAN. The way it does this is by controlling the redundant links that connect into the same network segment. Each network segment is only allowed to have a single designated port that is used to forward traffic onto it. All other access points into the same segment are enabled, but in a blocking state that disallows traffic flow. If a failure should occur on the forwarding port, one of the blocking ports will be transitioned into forwarding state to continue to allow access to the network segment. This transition process includes a number of different states, including each of the states shown in Figure 1. Figure 1 - STP Port States What Happens During Each STP Port State? Each port begins in a blocking... --- ### Drobo Storage Pushing the Limits with BeyondRAID, Thunderbolt and vSphere Certification > Drobo is pushing the limits of SMB-level and pro-sumer storage with BeyondRAID, Thunderbolt, Data-Aware SSD Tiering, 'VMware Ready' cert and much more. - Published: 2012-07-10 - Modified: 2024-11-19 - URL: https://petri.com/drobo-storage/ - Categories: Backup & Storage - Article Type: Review The Drobo B800i iSCSI storage array is the perfect solution for SMB-level and "pro-sumer" storage as well as virtualization environments utilizing VMware. The new generation of Drobo is pushing the limits with BeyondRAID, Thunderbolt, Data-Aware SSD Tiering and so much more. Read vExpert David Davis' review of Drobo B800i to learn more. Recently I was given access to a new Drobo B800i iSCSI storage array for use in my home vSphere lab environment. I was impressed with the Drobo since I first learned about them at TechField Day, back in 2010. Some products you fall in love with from the moment you see them. The Apple iPhone and iPad were the consumer products that did it for me. When it comes to storage, the Drobo is the only product that I have ever been so enamored with, just from the first glance. Here's why. Drobo Storage: BeyondRAID, Thin Provisioning, Dual Gig-E and More Simple, Sleek, and Flat-out Beautiful As soon as you see it, you'll say "wow, that's a beautiful storage array. " The rounded form-factor is smooth. The front-cover slides on with just a rubber seal. The blue lights instantly tell you how much storage capacity you have remaining. You'd rather have it on your desk than locked away in the closet somewhere because it just "looks cool. " BeyondRAID Aside from being attractive, the single best technical feature of the Drobo is BeyondRAID. What it does is it eliminates you from having to worry about RAID types or carving out LUNs. You say how much storage you want to provide and Drobo does it with protection and minimal overhead. If a disk fails, you can insert a new disk, and Drobo rebuilds. It's like having your own "robotic storage admin" taking care of these things so that you don't have... --- ### July 2012 Webinar Update: Free Webinars for IT Pros - Published: 2012-07-09 - Modified: 2024-11-19 - URL: https://petri.com/it-webinars-july-2012/ - Categories: Training & Certification - Article Type: News Don't miss free, live webinars happening this month on Windows 8, IT security fundamentals, and how to build a successful IT career with the new generation of Microsoft certifications. There are a number of free webinars happening this month that you don't want to miss. Our July 2012 webinar list includes some exciting live events that will help you get started with Windows 8, improve your IT security knowledge, write the perfect cover letter and build a successful IT career with the new generation of Microsoft certifications. New VoIP Network Quality Manager, VoIP Troubleshooting with Detailed CDRs Presented by: SolarWinds Tuesday, July 10, 2012 11:00 AM CDT | Learn More & Register >> Need help finding your real VoIP issues? VoIP and Network Quality Management is a critical component in any VoIP environment to keep your end users happy! But finding where the problem exists can be tedious and time consuming if you can’t see everything you need to analyze the situation. Is it your network, your provider or your VoIP phone? SolarWinds will show you real VoIP troubleshooting to get to the heart of the problem. Sharpshooting Hyper-V with Real-Time Alerting and Focused Reporting Presented by: Greg Shields & Rick Vanover Wednesday, July 11, 2012 1:00 PM EDT | Learn More & Register >> Join Greg Shields and Rick Vanover for the second of a multi-part webinar series: I've got Hyper-V, now what? You've been told for years to implement Hyper-V, and now that you've done it, you're probably asking, "Now what? " Improving backups and monitoring is your first, most critical concern. Better visibility comes next. Conquering the IT Cover Letter Presented by: Heather Ackmann & Alan Ackmann... --- ### How the Cloud is Making Siri Smarter in iOS 6 > See how Apple is making Siri smarter in iOS6 by utilizing the Cloud. - Published: 2012-07-09 - Modified: 2024-09-04 - URL: https://petri.com/cloud-improving-siri-in-ios6/ - Categories: Cloud Computing - Article Type: Opinion Apple’s Siri has a lot of potential to improve its performance in the next iPhone release. In this post John O'Neill Sr. examines how Apple is making Siri smarter in iOS6 by utilizing the Cloud. Overview Apple's Siri on the iPhone 4s has been both revered and reviled since its release last year. Based on Apple's uncanny ability to create such love/hate relationships, this comes as no surprise. At the root of why Siri evokes these emotions are her potential and her performance. Luckily, it is possible to realize potential and improve performance. So how will Apple do this for Siri in the upcoming iOS 6 release? They will leverage the technology that is both Siri's heart and her soul -- the Cloud. How Siri Works A wise person once said that to understand where we are going, we must understand where we have been. Let’s take a few moments to understand a little about Siri and the path she has traveled until now. Siri is not a speech recognition app, but instead a natural language processing technology that focuses more on what you meant than on what she thinks you said. For example, if asked “is there a bathroom on the right? ” with a heavy accent, simple speech recognition may hear “Is there a bad moon on the rise? ” which would only be helpful when looking for the lyrics to a classic Creedence Clearwater Revival song. Natural language processing on the other hand will realize what you meant and allow the system to answer you correctly, which you will most assuredly appreciate. Natural language processing also empowers Siri to have a conversation, not just respond to simple commands. When an iPhone... --- ### Where is the Cisco CCNA 2012 Update? > Where is the CCNA 2012 update? In this article we'll help you understand Cisco's certification revision process and how to prepare for the CCNA in 2012. - Published: 2012-07-06 - Modified: 2012-07-06 - URL: https://petri.com/cisco-ccna-2012/ - Categories: Training & Certification - Article Type: Overview Where is the CCNA 2012 update? That's the question a lot of CCNA candidates have on their mind. Many are in a limbo state where they're not preparing for their CCNA because they're awaiting the new exam. If this is you, then this article will help you understand Cisco's certification revision process and how to prepare for the CCNA in 2012. Overview It has been three years since Cisco updated their CCNA certification track. While Cisco has not formally introduced an update to their CCNA track for 2012, based on their previous schedule of certification revisions, it should not be that much longer before the CCNA 2012 update is announced. For many candidates, this uncertainty is unsettling because they do not want to prepare for an exam that will be changed right before they have to take it. This article addresses these concerns providing advice to aspiring CCNA candidates on whether they should take the current CCNA exam or wait for the new one. Cisco's Certification Revision Process One thing that history has taught veteran candidates is that Cisco rarely if ever leaves us in a scenario where test preparation is completed and then not able to be used for future testing. The typical process seems to be that Cisco will give candidates at least 4-6 months of time once a certification update has been announced to shift the focus of test preparation. This typically allows enough time for candidates to figure out which version of the exam is best to prepare for, based on both the test preparation schedule and the anticipated test date. As long as you take the time to learn the specific dates that Cisco is following, you won't run into any major issues. Preparing for the CCNA in 2012 Another thing you should take into consideration is what is the best plan to... --- ### Using the Active Directory Recycle Bin in Windows Server 2008 R2 > PowerShell MVP Jeff Hicks shows how to easily recover deleted objects in Active Directory using PowerShell. - Published: 2012-07-05 - Modified: 2024-09-04 - URL: https://petri.com/using-active-directory-recycle-bin/ - Categories: Active Directory (AD) - Tags: Active Directory, Intermediate - Article Type: Overview In a previous article in this series, PowerShell MVP Jeff Hicks walked us through enabling the Active Directory Recycle Bin feature. In this post, Jeff demonstrates how to easily recover deleted objects in Active Directory using PowerShell. In a previous article, we looked at enabling the Active Directory Recycle Bin feature. Once enabled, you can easily recover deleted objects. However, you can only recover objects that were deleted after you enabled the Recycle Bin feature. For everything else, you will need to use the "old school" procedures. Using the Active Directory Recycle Bin with PowerShell There is no graphical interface for recovering items from the recycle bin; you have to use Windows PowerShell, but it is not especially difficult. First, you need to load the Active Directory module. ​PS C:> Import-Module ActiveDirectory Deleted items are stored in a super-hidden container: ​PS C:> get-addomain | select DeletedObjectsContainer DeletedObjectsContainer ----------------------- CN=Deleted Objects,DC=GLOBOMANTICS,DC=local But you can't simply open this container and drag objects out of it. In fact, there really isn't any practical interface to this container, but that doesn't really matter. When an object is deleted, it is moved to this container pretty much as is. For our purposes, Active Directory will add two key properties: IsDeleted and LastKnownParent. The former is a Boolean value that I trust is self-explanatory. The latter is the AD path to the object’s last know parent container. Because the object retains all of its last configured properties, when you restore it to its last location, it is more or less ready to go. To find deleted objects, we can’t use the same cmdlet we’d use to find any other type of object, such as Get-ADUser. Instead... --- ### Understanding Mailbox Auditing Reports in Office 365 > Learn about the different auditing reports that are available in Office 365, and why they are useful. - Published: 2012-07-03 - Modified: 2024-12-03 - URL: https://petri.com/office-365-mailbox-auditing-reports/ - Categories: Office - Article Type: Overview For administrators of Office 365, one of the functions of your role may be to create auditing reports for Exchange Online. In this post, Michael Simmons helps you to understand the different auditing reports that are available in Office 365, and describes why they are useful. For administrators of Office 365, one of the functions of your role may be to create auditing reports for Exchange Online. This article helps you to understand the different auditing reports that are available in Office 365, and describes why they are useful and how to create them. There are 5 types of auditing reports available in Office 365 (Exchange Online). They are: Non-owner mailbox access Export mailbox audit logs Litigation hold report Administrator role group report Export administrator audit logs This article focuses on the non-owner mailbox access reports. It describes the non-owner mailbox access report, and the options available for it. Non-Owner Mailbox Access Reports in Office 365 The Non-owner mailbox access report identifies mailboxes that have been accessed by somebody other than the mailbox owner, and the actions that were taken by the non-owner. When auditing is enabled on a mailbox, an audit record is created any time that mailbox is accessed by a non-owner.  The non-owner access report quickly shows that access. This is ideal for legal cases in which you need to be able to identify any access other than the owner of the mailbox, or to ensure that the companies' privacy standards are being upheld. But auditing on accounts is not enabled by default.  Before audit records are saved for mailbox access, auditing must be set on the user accounts. This can only be done through a PowerShell administrative session. I describe how to set up PowerShell to connect... --- ### Hyper-V Backup Tools: New and Improved > vExpert David Davis explains the different backup tools available for your enterprise backup, and how to choose the best one. - Published: 2012-07-02 - Modified: 2024-09-04 - URL: https://petri.com/new-hyper-v-backup-tools/ - Categories: Hyper-V - Article Type: Overview While there are many backup tools out there, they aren't all created equal. In this post, vExpert David Davis goes through the various types of backup tools available for your enterprise backup, and how to choose the best one. Today, over 50% of the servers in the world are running as virtual machines on top of hypervisors like VMware vSphere, Microsoft Hyper-V, and Citrix XenServer. The need to protect those virtual machines from disaster, or even to recover individual files from them, hasn't changed. For the most part, the world of server virtualization is new to many Windows Admins and the question of the best way to back up the virtual machines running in, let's say, Microsoft Hyper-V, is still up for some debate. Here on Petri, we've had discussions about how to back up Hyper-V virtual machines and Microsoft has some official documentation as well. However, I bet that after you read both of those, you'll still be saying, "Isn't there an easier way? " Hyper-V Backup Tools Types Any of you who have a backup tool in place today, I'm sure that your backup vendor will say, "Yes, we back up Hyper-V, you don't need another tool. " While that may be true, you first need to consider the various types of backup tools. They are: Physical Server Backup Tools -- Most traditional physical server backup tools (like Symantec Backup Exec, NetBackup, AppAssure or Acronis) can back up virtual machines running in Hyper-V with agents, just as if they were physical servers. Recently, many of these backup tools have been adapted to communicate directly with vSphere or Hyper-V servers, and more intelligently back up virtual machines. While these tools weren't originally designed... --- ### Top 3 Reasons to Learn PowerShell > Speaker and author Mark Minasi tells you why you should learn PowerShell. - Published: 2012-06-29 - Modified: 2012-06-29 - URL: https://petri.com/top-3-reasons-to-learn-powershell/ - Categories: PowerShell - Article Type: Overview Are you debating whether or not to learn PowerShell? In this video, speaker and author Mark Minasi gives you his top three reasons for learning PowerShell -- before it's too late. Overview In this video, speaker and author Mark Minasi walks us through his top three reasons why you should learn PowerShell. Mark Minasi on PowerShell There are probably three reasons to learn PowerShell. First of all, if you just want to create a user account or stop a service or something, doing it from the GUI is way faster than figuring out the PowerShell command. Once you've figured out the PowerShell command, though, a lot of times we as IT pros have to do the same thing over and over and over again, configure 27 web servers or something like that, and you want consistency. The great thing about PowerShell is you can cut and paste text, so you can do it over and over and over again. That's the first value. The second value is, that once you've expended that time once... OK, it was three hours to figure out the first time, but it's five seconds afterwards. The second thing, though, along those lines is the boss is constantly saying, "Did you document what you did? Are you just documenting it? " If everything you do in PowerShell, you copy and paste it to Notepad, "Here's the documentation, boss. " It's documentation that runs itself. What it means is, you can rebuild the system in almost no time at all. By the way, 2A is, they do these salary surveys on a regular basis about what IT pros make in the Windows world versus the UNIX guys. UNIX... --- ### Setting Up the Active Directory Recycle Bin in Windows Server 2008 R2 > Learn how to set up Windows Server 2008 R2's new feature, the Active Directory Recycle Bin. - Published: 2012-06-28 - Modified: 2024-09-04 - URL: https://petri.com/setting-up-active-directory-recycle-bin/ - Categories: Active Directory (AD) - Tags: Active Directory, Intermediate - Article Type: How To Windows Server 2008 R2 has introduced an exciting new feature, the Active Directory Recycle Bin. In this post, Jeff Hicks shows how to enable the feature with PowerShell to recover deleted objects in your AD. Windows Server 2008 R2 has introduced an exciting new feature, the Active Directory Recycle Bin. When you use this feature, a deleted object is moved to a special container instead of simply being tombstoned. The tombstone period is still important, as objects reside in this special container only for the length of the tombstone period. Once the period expires, the object is permanently deleted. But until that happens, recovering a deleted object is relatively easy. Before you can recover an item, you have to enable this feature. It is not turned on by default. Once you enable it, you can only recover items from the recycle bin that were deleted after the feature was enabled. If you enable the feature Tuesday morning, you can recover items from the recycle bin that were deleted Tuesday afternoon, but not Monday morning. Setup Active Directory Recycle Bin with Windows PowerShell The first challenge you will face is that Microsoft did not provide any sort of GUI interface for this feature. You will have to use Windows PowerShell and the Active Directory module. You don’t have to run these commands on a domain controller; I prefer and recommend using Windows 7 and Remote Server Administration Tools (RSAT), which have been configured to manage Active Directory with PowerShell. The first step is to import the module. ​PS C:> Import-Module ActiveDirectory The Recycle Bin is part of a concept Microsoft calls AD Optional Features. As you might expect, there... --- ### Improve Your Networking Skills with the CCNA Aspire Game > A complete review of Cisco's CCNA Aspire, a game filled with tasks that encompass more than 80% of the material covered on the CCNA exam. - Published: 2012-06-27 - Modified: 2024-11-19 - URL: https://petri.com/ccna-aspire-game/ - Categories: Networking - Article Type: Overview Learning the different aspects of networking can be a daunting task, but Cisco has developed a number of games to help. In this post, Sean Wilkins reviews the Cisco Aspire CCNA Edition, a game filled with tasks that encompass more than 80% of the material covered on the CCNA exam. This article covers how the game is structured and how you can use it to improve your networking skills. Overview If you're just beginning your networking career, you have a steep hill to climb. There are so many different aspects of networking that attempting to learn it all at once can be a daunting task. To try to make this progression a little easier, Cisco has developed a number of games that are geared towards those just getting into the networking arena and wanting to learn the different topics that are part of the duties of a network engineer. The game covered in this article is Cisco Aspire CCNA Edition. This game is filled with tasks that encompass more than 80% of the material covered on the Cisco Certified Network Associate (CCNA) exam. This article covers how the game is structured and how you can use it to improve your skills as you begin your journey of becoming an entry level network engineer. Cisco Aspire CCNA Edition First, let's take a look at how you can gain access to the Cisco Aspire game. You can access the game simply by clicking here or you can download the game here. The Cisco Aspire CCNA Edition game is organized into a format that should be familiar to consultants of any type. A contract is given to you as the network engineer with a number of tasks that need to be completed. If the tasks are completed correctly and in a timely manner, then the player will gain through a number of game metrics including... --- ### The New MCSE: Changes To The Microsoft Certification Program > Learn about Microsoft's new MCSE program. - Published: 2012-06-26 - Modified: 2012-06-26 - URL: https://petri.com/the-new-mcse/ - Categories: Training & Certification - Article Type: News Microsoft has recently made some significant changes in the way they're running the certification program, including the return of the #1 certification in the Windows world: the MCSE. In this post, Michael Simmons talks about the changes in Microsoft's new certification program and what the new MCSE means for IT pros. Overview Microsoft has recently made some significant changes in the way they’re running the certification program, including the return of the #1 certification in the Windows world: The MCSE. Shelby Grieve, Director of Professional Certification with Microsoft Learning, sat down recently for an interview with Joey Snow from the Channel9's Edge Show at the Microsoft Management Summit, and discussed the upcoming changes to the Microsoft Certification Program. Grieve had been hearing feedback from the community that it is too easy to get a Microsoft certification, and that the tests aren't rigorous enough -- so Microsoft has increased both the difficulty and the relevance with their new set of certifications. Microsoft Exams are Getting Harder, And More Relevant To increase the relevancy of the exams, they are focusing on some key aspects of the technologies that are front and center in the next wave of implementations, including an emphasis on cloud services, both public and private. To increase the rigor of the exams, they are increasing both the breadth and depth of the curriculum tested – going deeper into the technologies and crossing over more with complementary technologies. With the new MCSE, which is now a designation for a Microsoft Certified Solutions Expert instead of Microsoft Certified System Engineer, you will not be focused so much on system engineering with Active Directory and network services, but instead on having a more general knowledge of a wider range... --- ### Microsoft Surface: Will It Beat the iPad? > Learn how the Microsoft Surface tablet compares to Apple's iPad. - Published: 2012-06-25 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-surface-vs-ipad/ - Categories: Windows Client OS - Article Type: Opinion Microsoft has officially announced that they will be offering a Microsoft designed and branded Windows 8 tablet this fall, called the Surface. In this post, IT veteran John O'Neill Sr. discusses the pros and cons of the Surface, and how it compares to the iPad. Will the Surface make a difference in the tablet world? Find out. Overview Microsoft has officially announced they will be offering a Microsoft designed and branded Windows 8 tablet come fall. During a Hollywood-esque event, Surface met the world on June 18, 2012. Side Note: This is not to be confused with the little-known, coffee table sized, touch interface device of the same name the titans of Redmond announced a few years back. The new Surface is Microsoft’s first internally designed and built tablet. The buzz since its announcement has been phenomenal. Whether good or bad, pro or con, it seems everyone has something to say about the upcoming product. Even mainstream primetime news broadcasts, such as ABC’s Good Morning America, devoted coverage to the news. It is almost inevitable to think Microsoft just kicked the tablet wars up a notch. Cutting through the hype though, one question remains: will Microsoft Surface really change anything? Microsoft Surface vs Apple iPad It is obvious that Microsoft has iPad’s dominance in the tablet market squarely in its sights. Who can blame them? In the first four months of this year alone, Apple reported selling 11. 8 million iPads. Nudging in on the iPads' territory is not easy. Android, HP, and Blackberry have unsuccessfully been trying to for the last two years. What will Microsoft Surface bring to the table that those other products did not? What are the similarities and the differences between Surface and the iPad? Surface will come in two flavors: Surface RT and Surface Pro. One look at... --- ### Exchange 2010 High Availability: Non-Mailbox Server Roles > Learn how to configure two CAS-HUB servers for high availability. - Published: 2012-06-22 - Modified: 2024-09-04 - URL: https://petri.com/exchange-2010-ha-non-mailbox-server-roles/ - Categories: Exchange 2010 - Tags: Editor's Pick - Article Type: How To, Overview In this video post, Exchange MVP J. Peter Bruzzese walks you through the process of configuring two CAS-HUB servers for High Availability. The process starts with enabling Network Load Balancing on both servers, enabling IP forwarding on the network adapters and establishing on the database itself that you need to use the CAS array. Overview Let's say you have two CAS-HUB servers and you want to configure them both for High Availability. In this video post, you're going to learn how to do just that. This lesson is taken directly from my Exchange Server 2010 High Availability Training. In this demo, we're working with two CAS-HUB servers named LAEX2K10CASHUB1 and LAEX2K10CASHUB2. We'll start by enabling Network Load Balancing on both servers, enabling IP forwarding on the network adapters for both the 1st and 2nd CAS-HUB servers and finally establishing on the database itself that you need to use that CAS array. (Instructional video below provides a walkthrough of the steps contained in this article. ) Enable Network Load Balancing The first thing we need to do is enable Network Load Balancing on both servers. In our case, we'll start with LAEX2K10CASHUB1. To do that, we simply type: servermanagercmd -i nlb You may get a message saying that servermanagercmd. exe is deprecated, but trust me, it works. Alternatively, you can enable NLB through the Server Manager or through PowerShell. There's all sorts of ways you can enable Network Load Balancing. This just seemed to be the easiest way. Once you're done with the first server, perform the exact same task on the other server. The next part will be carried out on the Network Load Balancing Manager. To start, we right-click on the Network Load Balancing Clusters and select New Cluster. Put in the name of the host. In our... --- ### Managed Service Accounts: Change or Roll Back the MSA > Read on to learn how to change or roll back the Managed Service Account (MSA) in part three of this series. - Published: 2012-06-21 - Modified: 2012-06-21 - URL: https://petri.com/managed-service-accounts-3/ - Categories: Active Directory (AD) - Tags: Active Directory, Intermediate, Managed Service Account, MSA - Article Type: How To Read on to learn how to change or roll back the Managed Service Account (MSA) in part three of this series. In Part 1 of this series, we looked at setting up managed service accounts. In Part 2, we added the msa to a member server and configured a service. In today's third and final part, we'll look at steps involved in changing or rolling back the msa. Changing and Rolling Back the MSA Should you decide to stop using an msa, naturally the first thing to do is to modify the service on the domain member to use whatever replacement account you have in mind. Once this is done, you have to decide if you think you’ll use the msa again on this computer or on another computer in the domain. If you no longer need the msa on the member server, perhaps the application has been removed. You can uninstall it. Like the Install-ADServiceAccount, you must run this command on the host computer. The cmdlet does not write anything to the pipeline. However, this will also update Active Directory and remove the host from the msa object. If I try to run: I'll get no result. I can also verify the HostComputers property. DistinguishedName : CN=MSATest2,CN=Managed Service Accounts,DC=GLOBOMANTICS,DC=local Enabled : True HostComputers : Name : MSATest2 ObjectClass : msDS-ManagedServiceAccount ObjectGUID : 98c79151-5861-4b5c-bccc-de71482ed658 SamAccountName : MSATest2$ SID : S-1-5-21-2552845031-2197025230-307725880-1190 UserPrincipalName : At this point, we still have the msa in Active Directory, but it isn't tied to any other computer. We could add it to another computer and install it if we wanted to re-use the msa... . --- ### RIP for IPv6: RIPng Configuration > Learn how to configure RIPng for IPv6. - Published: 2012-06-20 - Modified: 2024-09-04 - URL: https://petri.com/ipv6-ripng-configuration/ - Categories: Networking - Article Type: Overview The depletion of IPv4 address space is upon us. 2012 is the year for current and aspiring network engineers to learn how to configure IPv6 routing protocols, specifically RIPng, EIGRP and OSPFv3. In this article, network engineer Sean Wilkins focuses on the basic configuration of RIPng for IPv6, helping you enter the world of IPv6 routing protocols. Overview If you've been following the IPv6 news and developments, you probably know that the depletion of the IPv4 address space is upon us. 2012 is the year for network engineers, and those aspiring to become network engineers, to learn how to configure IPv6 routing protocols, speficially RIPng, EIGRP and OSPFv3. As you'll notice, the configurations are very similar to the IPv4 implementations, but they had to be altered to work with the design of IPv6 networks. In the past couple of weeks, we covered OSPFv3 for IPv6 configuration as well as EIGRP for IPv6 configuration. Today, we'll focus on the basic configuration of RIPng for IPv6. RIPng Configuration The configuration of RIP for IPv4 was never that complicated, but is often used as a primer for the configuration of routing protocols generally. RIPng serves a very similar purpose; it will probably not be widely implemented but it is still relatively easy to configure. Table 1 shows the commands required to configure RIPng on a network device. Table 1 - Basic RIPng Configuration 1 Enter global configuration mode router#configure terminal 2 Enable device IPv6 unicast forwarding router(config)#ipv6 unicast-routing 3 Enter interface configuration mode router(config)#interface interface 4 Enable RIPng on the interface router(config-if)#ipv6 rip process-name enable   The first thing that anyone familiar with configuring RIP for IPv4 should notice is that the configuration of RIPng is being performed within interface configuration mode. RIP for IPv4 used network commands when within router configuration mode... --- ### iPad Disaster Recovery: Backup Procedures for iPads > Learn the disaster recovery process for your iPad by IT veteran John O'Neill Sr. - Published: 2012-06-18 - Modified: 2024-09-04 - URL: https://petri.com/backup-procedures-for-ipads/ - Categories: Backup & Storage - Tags: Editor's Pick - Article Type: How To, Overview The disaster recovery process for an iPad is fairly easy and can be broken down into three phases. Backing up the data is part of phase 1 and is the focus of this article by IT veteran John O'Neill Sr. He will cover the remaining phases, which include wiping and restoring the device, in the next couple articles in this series. Overview One of the core responsibilities of any IT Professional is to make sure that data is there when and where the user needs it. Disaster recovery is the process of guaranteeing we meet this responsibility under any and all circumstances. When using an iPad in an enterprise, disaster recovery of its data is an important function for an IT administrator to master. The great news is – the process is simple and quick to implement. The disaster recovery process for an iPad can be broken into three phases: Back up the data Wipe the device Restore the data Phase 1 - Backing up the data will be the focus of this article. I will cover wiping and restoring the device in the coming weeks. Backup Procedures for iPads Backing up the iPad is the first and most critical step in iPad disaster recovery. Without a good, timely backup, the data recovered is at best less valuable because it is out of date or incomplete. At worst, the recovered data is non-existent because the data is missing or the backup is unusable. Either of these conditions is unacceptable, so to avoid them it is important to set up the iPad to perform regular backups and perform manual backups when necessary. There are a few choices when it comes to how to back up an iPad: Perform backups through iTunes on a PC or Mac Backup wirelessly to iCloud Perform backups using another tool such as Apple Configurator... --- ### Citrix XenServer 6: Installing XenServer and XenCenter > Learn how to install and configure Citrix XenServer 6 and XenCenter in this video tutorial from Citrx CTP Elias Khnaser. - Published: 2012-06-15 - Modified: 2024-12-03 - URL: https://petri.com/install-xenserver-6/ - Categories: Virtualization - Article Type: How To See how to install and configure Citrix XenServer 6 and XenCenter in this video tutorial from Citrx CTP Elias Khnaser. Elias starts by going over the minimum requirements, hardware capabilities, recommended specifications before jumping to the step-by-step installation process. Overview In this post, I'm going to show you how to install Citrix XenServer 6 and XenCenter. I'm going to start by going over the minimum requirements (as well as a couple of recommended specifications) and then I'm going to jump into the installation process itself. Let's get started. (Instructional video below provides a walkthrough of the steps contained in this article. ) XenServer Requirements XenServer runs directly on your hardware, so there won't be anything between your hardware and XenServer. In other words, XenServer will function literally as the operating system. It will talk directly to your hardware, including your network interface card (NIC) and storage controller. It requires a 64-bit CPU with Intel VT or AMD-V enabled. Now, this is actually more like a recommended spec. It doesn't mean that XenServer won't install if your CPU isn't Intel VT or AMD-V enabled, it will. However, the features and functionality will be very limited. Remember, XenServer is a paravirtualized hypervisor. It uses the paravirtualization technique of server virtualization. Therefore, it requires the processor that you have on your physical server to be capable of doing virtualization technology in order for you to leverage its capabilities. You need a minimum of 2 GB of RAM just to install XenServer, but the recommended is at least 8 GB, especially if you intend to host multiple virtual machines on top of it. XenServer alone will require 16 GB of disk space. But again, you'll need more... --- ### Managed Service Accounts: Configure a Service Using MSA > Learn how to connect the MSA to the computer account in Active Directory in part two of this series. - Published: 2012-06-14 - Modified: 2012-06-14 - URL: https://petri.com/managed-service-accounts-2/ - Categories: Active Directory (AD) - Tags: Active Directory, Intermediate - Article Type: How To Learn how to connect the MSA to the computer account in Active Directory in part two of this series. In part one of this three-part series, we looked at how to set up a managed service account (MSA). These accounts, which I’ll refer to as an msa, are stored in Active Directory and can be implemented on Windows 7 or Windows Server 2008 R2. In Part 1 we saw how to create, find, and modify them using Windows PowerShell. There is no graphical interface really; you have to use Windows PowerShell or find a third party tool. I’m going to manage from my Windows 7 client with RSAT and the Microsoft ActiveDirectory module. Today we're going to learn to add the MSA to a member server and configured a service. And in the third and final part, we'll look at steps involved in changing or rolling back the MSA. ​PS C:\> Import-Module ActiveDirectory The next step is to connect the msa to the computer account in Active Directory. An msa can only be associated with one computer account at a time, but a computer can have multiple msa’s. In Part 1, I created an account to be used on CHI-FP01 with a new service I will be installing. ​PS C:\> Get-ADServiceAccount -Identity MSATest2 DistinguishedName : CN=MSATest2,CN=Managed Service Accounts,DC=GLOBOMANTICS,DC=local Enabled : True HostComputers : Name : MSATest2 ObjectClass : msDS-ManagedServiceAccount ObjectGUID : 98c79151-5861-4b5c-bccc-de71482ed658 SamAccountName : MSATest2$ SID : S-1-5-21-2552845031-2197025230-307725880-1190 UserPrincipalName : Notice that HostComputers is empty. We’re going to add this msa to the CHI-FP01 computer account using the Add-ADComputerServiceAccount cmdlet. I like... --- ### Basic EIGRP for IPv6 Configuration > Learn the basic configuration of EIGRP for IPv6. - Published: 2012-06-13 - Modified: 2024-09-04 - URL: https://petri.com/eigrp-for-ipv6-configuration/ - Categories: Networking - Article Type: Overview With the wide scale implementation of IPv6 coming closer, it is important for any network engineer to learn the IPv6 routing protocols. This article by Networking Consultant Sean Wilkins walks you through the basic configuration of EIGRP for IPv6. Overview As I mentioned last week, the depletion of the IPv4 address space is quickly becoming a reality. Now is the time for current and aspiring network engineers to become familiar with configuring IPv6 routing protocols, including RIP, EIGRP and OSPFv3. Although the configurations of these internal routing protocols are very similar, each had to be altered to work with the design of the IPv6 network. Last week we focused on the basic --- ### Understanding Journaling in Office 365 > Learn how to keep track of your organization's correspondences using Office 365 journaling. - Published: 2012-06-12 - Modified: 2024-09-24 - URL: https://petri.com/office-365-journaling/ - Categories: Cloud Computing - Tags: exchange, Exchange Online, Journal rules, Journaling, Microsoft, Office, Office 365, Windows - Article Type: Overview There are many reasons why organizations need to keep track of their correspondences. In this post, IT veteran Michael Simmons explores why journaling is important and how to do it using Office 365. Overview Using Journal Rules, organizations can keep track of correspondences. This can be used to ensure quality by implementing journal rules that catalog all of the email messages sent by the sales staff to anybody outside the organization. Journal rules can also be used to ensure that individuals within the organization are in compliance with regulatory requirements, such as those set forth in the Sarbanes-Oxley Act or Health Insurance Portability and Accountability Act (HIPAA). Office 365 allows the use of journal rules to help organizations meet their own needs. Journal rules must be set up by one of the Office 365 administrators. They cannot be set up by individual users. Download: Whenever a message is sent or received in Office 365, it is checked against all of the journal rules in the organization. An email can be processed against multiple journal rules, and for each journal rule that it matches, there is an action taken to journal the message. The message is either mailed as an attachment (also called envelope journaling) or sent (copied) in its entirety to a mailbox that has been set up to be the recipient of mail journals. How To Set Up Who Gets Undeliverable Journal Reports Before you set up a journal rule, you should first pick somebody to get the notification that a journal report was not able to be delivered. For example, you could have set up a mailbox to receive the journal reports for... --- ### Dropbox, Box, and SkyDrive: A Comparison > Discover the differences between Dropbox, Box, and SkyDrive -- and which one may best suit your needs. - Published: 2012-06-11 - Modified: 2024-11-19 - URL: https://petri.com/dropbox-vs-skydrive-vs-box/ - Categories: Cloud Computing - Article Type: Overview We look at three of the most popular online file storage cloud services out there today: Dropbox, Box, and SkyDrive. She compares the storage, sharing and security features, and explains when you should or should not use these services. The CIO of IBM recently asked employees to stop using some public cloud services due to security concerns. The problem is simple. Employees that use their personal electronic devices such as smart phones, tablets, and eReaders to communicate and share personal information in the cloud, are using the same cloud services to share business data. This introduces a proliferation of security concerns. Concerns range from people eavesdropping on over-the-air transmissions at public Wi-Fi hotspot locations, to the risk that information stored in the cloud is vulnerable to attack. This article looks at three of the most popular online file storage cloud services: Dropbox vs Skydrive vs Box comparing the storage, sharing and security features. It also explains when you should or should not use these services. Storage Let’s look at the size of available storage first. In table 1, you will see that Microsoft SkyDrive offers the most “free” storage, and what is particularly nice is that SkyDrive Wave 5 will include unlimited storage for all your photos and office documents.  DropboxBoxSkyDriveFree Storage2 GB5 GB7 GB Tier 150 GB $9. 99/mo25 GB $9. 99/mo27 GB $10/yrTier 2100 GB $19. 99/mo50 GB $19. 99/mo57 GB $20/yrTier 3$795/yr 5 user team 1000 GB+ (+$125/user/yr)$15/user/month 1000 GB+ (5 users cost $900/yr)$25/yr 107 GB Table 1: Storage comparison You will also see that Dropbox, Box, and SkyDrive offer a tiered service, to enable you to get more storage for a higher monthly fee. Dropbox clearly wins on price, and for many... --- ### Top 3 Features in PowerShell V3 (video) > In this video, PowerShell MVP Don Jones talks about his top 3 features in PowerShell V3 - Published: 2012-06-08 - Modified: 2012-06-08 - URL: https://petri.com/powershell-v3-features/ - Categories: PowerShell - Tags: PowerShell 3.0, video - Article Type: Overview In this video, PowerShell MVP Don Jones talks about his top 3 features in PowerShell V3. See what Windows Admins can look forward to in the newest version of this powerful scripting tool. In this video, PowerShell MVP Don Jones talks about his top 3 features in PowerShell V3. What can Windows Admins look forward to in the newest version of the powerful scripting tool? Watch the video or check out the transcription below. What's New in PowerShell 3. 0? So what's new in and important in PowerShell version 3? What isn't? Microsoft has invested heavily in their remoting technology for version 3. They support the ability to disconnect a session, reconnect a session, have sessions be a little bit more resilient across network hiccups, things like that. They've really incorporated remoting throughout the PowerShell product. It used to be "I'm going to send a command to a server; I'll get results. Yay, done! " It's a lot more intense than that now. I can sit on my computer and use a GUI that's really just using remoting to send commands to a server, to bring results back, to draw icons, or whatever else. The idea of having to install admin tools on your computer kind of goes away. You don't need to remote desktop into the server, either. You get your GUI and your client, and remoting takes care of the connection in between. Remoting plays into workflow too; which is, I think, a major feature that people are going to overlook, because it's going to seem kind of... maybe it's going to seem complicated, or "Why do I care? " I'm not sure that Microsoft's telling a great story about it yet, but, man,... --- ### Master Cloud Development with Azure Achievements in Visual Studio > Visual Studio Achievements was launched by Microsoft to help developers perfect their coding skills when working with Visual Studio and Windows Azure. - Published: 2012-06-07 - Modified: 2024-09-24 - URL: https://petri.com/visual-studio-achievements/ - Categories: Cloud Computing - Article Type: Overview Visual Studio Achievements for Windows Azure is a fun way for developers to hone in their skills and receive recognition for their knowledge. Microsoft has added 15 new achievements and there's talk of more challenges on the way. See how VS Achievements work and how you can benefit from the experience. Overview Microsoft has come up with a very clever (and fun! ) way to help developers perfect their coding skills when working with Visual Studio and Windows Azure. Visual Studio Achievements for Windows Azure launched earlier this year on Channel 9 to the delight of the developer community. Similar to the Cisco's Subnet Game we wrote about a couple of months ago, VS Achievements is a fun and engaging way to learn. The gamified learning experience allows developers to hone in their skills and receive some recognition for their knowledge. A total of 15 new achievements based on Windows Azure cloud development have already been added, and there's talk of more achievements coming to the platform in the upcoming months. Let's take a look at how Visual Studio Achievements works and how you can benefit from the experience. You can as well. Getting Started with Visual Studio Achievements for Windows Azure To get started earning your VS achievements, you'll need four things: A Channel 9 account (if you have a Windows live ID, that will work too) Visual Studio Achievements Plugin (if you're an MSDN subscriber, a Microsoft partner or a BizSpark member, that will work too) Once you've downloaded the plugin and logged into your Channel 9 account, you can start earning achievements based on your Visual Studio activity. When you unlock an achievement, you will see a pop-up that looks something like this: Figure 1: Visual Studio Windows Azure Achievement UnlockedSince you're logged into your Channel... --- ### Managed Service Accounts: MSA Setup > Learn to set up Managed Service Accounts (MSA) in part one of this three-part series. - Published: 2012-06-07 - Modified: 2024-09-04 - URL: https://petri.com/managed-service-accounts-1/ - Categories: Active Directory (AD) - Tags: Active Directory, Intermediate, Manage Server Accounts, MSA - Article Type: How To Service account management can be pretty labor intensive, but there might be an alternative. In part 1 of this two-part series, Microsoft MVP Jeff Hicks goes over a feature called Managed Service Accounts (msa). In Part 2, Jeff will cover how to deploy the accounts. One challenge that IT pros have always faced is managing service accounts, especially those accounts that are either machine or domain based, ie something other than accounts like LocalSystem. Not only do you need to keep track of what is using these accounts, you most likely need to change passwords periodically. All of this service account management is labor intensive, but there might be an alternative for you. When Windows Server 2008 R2 was released, it included a new feature called Managed Service Accounts (MSA). I believe this feature didn't garner a lot of attention, primarily because it requires Windows 7 or Windows Server 2008 R2 and the service or application must be designed to work with these new types of accounts. You'll have to check your product's documentation or contact the vendor to learn which service cans use an MSA and which don't. This is a three-part series. Today I'll talk about setting up managed service accounts. In part two, we'll add the MSA to a member server and configured a service. And finally, we'll look at steps involved in changing or rolling back the MSA. Managed Service Accounts (MSA) in Active Directory Managed service accounts are stored in Active Directory in their own container, which I would leave alone. After you create an msa it must be installed on all the computers where you wish to use it and finally the service must be configured to use the account. The beauty... --- ### IPv6 Launch Day: IPv6 Resources for Network Admins > Sean Wilkins has been prepping Petri reader's for the past several months with a series of articles on IPv6. Here are all of the articles. - Published: 2012-06-06 - Modified: 2012-06-06 - URL: https://petri.com/ipv6-launch-day-resources/ - Categories: Networking - Article Type: Overview Today, June 6th 2012, is IPv6 Launch day. Several of the internet's largest websites and services are making a permanent switch to IPv6 setting the bar for the rest of the internet to follow. Sean Wilkins has been prepping Petri reader's for the past several months with a series of articles on IPv6 -- check them out! IPv6 Launch Day Today is IPv6 launch day. Across the internet, many of the largest internet websites and services will be flipping the switch and implementing IPv6 permanently. Over the past several years, the number of available IPv4 addresses has been running out. The solution: IPv6 utilizing 128bit addresses which, in addition to offering more addresses than the internet will be able to utilize in the foreseeable future, adds a whole host of additional features and advantages over IPv4 which it replaces. For the past few months, Sean Wilkins has been covering the differences between IPv4 and IPv6 in a series of articles for Petri. Check out our IPv6 article roundup and share your favorite IPv6 resources in the comments. IPv6 Resources for Network Admins The IPv6 Header The last of the available unreserved IANA IPv4 addresses were allocated nearly a year ago and with complete IPv4 exhaustion fast approaching, knowledge of IPv6 is critically important. In this brief post, Sean Wilkins introduces the IPv6 Header and how the different fields are used. IPv6 Header vs IPv4 Header Since the IPv4 address space will soon be replaced, now is a great time to familiarize yourselves with IPv6. In this post, Sean Wilkins discusses the differences between the IPv6 header and the IPv4 header. IPv6 Address Types IPv6 is largely about adding more IP capacity as we are quickly running out of IPv4 addresses to allocate, but IPv6 also offers different and better functionality. In this post, Sean Wilkins describes the... --- ### OSPFv3 Configuration - OSPF for IPv6 > Learn the basic configuration of OSPFv3 in a single area for IPv6. - Published: 2012-06-06 - Modified: 2024-09-04 - URL: https://petri.com/ospfv3-configuration-for-ipv6/ - Categories: Networking - Article Type: Overview With the IPv6 Launch Day upon us, it is becoming more important for network engineers to become familiar with how to configure IPv6 routing protocols. This article by Networking Consultant Sean Wilkins focuses on the basic configuration of OSPFv3 for IPv6 Overview With the complete depletion of the IPv4 address space quickly becoming a reality, it is becoming more important for network engineers (and those learning to become network engineers) to become familiar with how to configure IPv6 routing protocols. Some of the internal IPv6 routing protocols available include RIPng, EIGRP for IPv6, and OSPFv3. Each of these has similar configurations to their IPv4 implementations but had to be altered to work with the design of IPv6 networks; this article focuses on the basic configuration of OSPFv3. OSPFv3 Configuration One of the things that some engineers love and other engineers hate about OSPF is that its configuration can get very complex. This is because there are a number of different ways to configure OSPF, and with this comes additional complexity for these types of configurations. However, the basic configuration of OSPFv3 into a single area is not all that complex when complex features are not required (often). This article focuses on the simplest way to configure OSPFv3 onto a device. Table 1 shows the commands required to configure OSPFv3 on a network device. 1 Enter global configuration mode router#configure terminal 2 Enable device IPv6 unicast forwarding router(config)#ipv6 unicast-routing 3 Enter interface configuration mode router(config)#interface interface 4 Enable OSPFv3 on the interfaceNote: In newer versions of IOS 15 this command is being changed, the newer version of the command will be ospfv3 process-id area area. router(config-if)#ipv6 ospf process-id area area Repeat steps 1-4 on all... --- ### How to Create a Storage Pool on Windows Server 2012 > How to create a storage pool on Windows Server 2012,with the PowerShell Cmdlets and the Storage Manager GUI tools. - Published: 2012-06-05 - Modified: 2024-09-04 - URL: https://petri.com/create-storage-pool-on-windows-server-2012/ - Categories: Windows Server 2012 - Article Type: How To In this post, Michael Simmons provides an in-depth look at how to create a storage pool on Windows Server 2012, using both the PowerShell cmdlets and the Storage Manager GUI tools. Introduction Storage Spaces, the Windows Server 2012 storage subsystem, is a storage virtualization platform that allows fast and easy provisioning of storage pools, and the virtual hard disks that they host. Windows Server 2012 Storage Spaces builds thinly provisioned virtual hard disks (VHDs), otherwise known as simply Storage Spaces, on the storage pools. The storage pools are a collection of disks that are grouped together by Storage Spaces. This article provides an in depth look at how to create a storage pool on Windows Server 2012, using both the PowerShell Cmdlets and the Storage Manager GUI tools. Add Some Storage Before You Create a Storage Pool Before you can create a storage pool on your Windows Server 2012 computer, you need to add some storage to it. This can be either SAS or SATA drives, installed either internally or externally, such as a JBOD or a SAN array. How to Create a Storage Pool from the Management GUI Step 1: Open Server Manager, then select “File and Storage Services. ” Step 2: Select “Storage Pools” from the left side menu. Then select “New Storage Pool” from the Tasks actions list. Step 3: Click Next on the “Before you begin” dialog. Step 4: Name your storage pool. Step 5: Select physical drives to add to the storage pool. Step 6: Click “Create” on the confirmation dialog box. If you want to create a Virtual Disk immediately, there is a checkbox to bring up the New... --- ### Lepide Exchange Manager: Exchange Migration, Recovery, and More > Overview of Lepide Exchange Manager. Perform restore from EDB, PST or OST by converting them to PSTs or importing them directly into your live Exchange server. - Published: 2012-06-05 - Modified: 2024-12-03 - URL: https://petri.com/edbtopst/ - Categories: Exchange Server - Article Type: How To There are a number of third party Exchange management tools that can assist with email archiving, monitoring and reporting, backup and recovery, and the ever-complicated process of migrating from one Exchange server to another. In this post, we will show you one tool that stands out from the rest, Lepide Exchange Manager. Sponsored IT content provided by Lepide  There are a number of third-party Exchange management tools available on the market that can assist you with email archiving, monitoring and reporting, backup and recovery, as well as the complicated process of migrating from one Exchange server to another. One tool that stands out from the rest is Lepide Exchange Manager, which has the capacity to provide complete Exchange disaster recovery and a whole lot more. The new tool recently received the Gold Award from MSExchange. org and was called a "solid and smooth" product by Exchange MVP J. Peter Bruzzese in his review of Lepide Exchange Manager. In this article, we'll provide you with a quick introduction to some of the more important features in Lepide Exchange Manager including: Restoring Exchange from backup Repairing corrupt Exchange database files Performing EDB conversions Performing granular searches for Email items Performing Exchange migrations Restore Exchange from Backup Lepide Exchange Manager allows you to perform restore from any backup format – EDB, PST or OST – by either converting them to PSTs or importing them directly into your live Exchange server. You can restore select mailboxes and other email data without a recovery server or costly brick level backups. The tool simplifies the restore process and allows you to only restore the items you need. Figure 1: Restore deleted mailboxes without a recovery server Figure 2: Search and restore deleted emails without brick level backup Repair Corrupt Exchange Database Files Information store corruption issues come... --- ### June 2012 Webinar Update: Free Webinars for IT Pros > Free IT Webinars Recommended by Petri IT Knowledgebase, including Windows Server 2012, Hyper-V, Security and Data Privacy, VMware Backup and more. - Published: 2012-06-04 - Modified: 2024-11-19 - URL: https://petri.com/it-webinars-june-2012/ - Categories: Training & Certification - Article Type: News Take a look at our June list of free webinars for IT pros. This month our webinar lineup includes presentations on Windows Server 2012, Hyper-V, Security and Data Privacy, VMware Backup and more. Jumpstart your learning with free webinars from some of the biggest names in IT. This month our list of free webinars includes presentations on Windows Server 2012, Hyper-V, Security and Data Privacy, VMware Backup and more. First Look at Windows Server 2012 (Windows Server 8 Beta) Presented by: Ed Liberman Thursday, June 7, 2012 12:00 PM CDT | Learn More & Register >> Haven't had the chance to play around with Windows Server 2012? In this live webinar, Ed Liberman of TrainSignal will help you get familiar with the new interface, features and functionalities of Windows Server 2012. How to Restore a Terabyte-Sized Server in Five Minutes... Guaranteed! Presented by: Greg Shields and Joseph Hand Tuesday, June 5, 2012 1:30 PM | Learn More & Register >> Five minutes? A terabyte-sized server? Ridiculous! Or, merely ridiculous with the backup and recovery solution you're currently using. A different approach to achieve 5-minute recovery of 1TB, the right tools for the job, best practices & more! I've Got Hyper-V, Now What? Presented by: Greg Shields and Chris Henley Thursday, June 7, 2012 1:00 PM EDT | Learn More & Register >> You've been told for years to take a serious look at Hyper-V. And now that you've finally implemented it, you're still asking, "Now what? " Hyper-V by itself is a great platform for hosting virtual machines, but it lacks in a few key areas such as monitoring and backups. Join Greg Shields of Concentrated Technology and Chris Henley of Veeam in this... --- ### Windows Server 2012: Is Storage Spaces the Killer Feature? > Discover the main features and functions of Storage Spaces. - Published: 2012-06-01 - Modified: 2012-06-01 - URL: https://petri.com/storage-spaces-windows-server-2012/ - Categories: Windows Server 2012 - Tags: storage spaces - Article Type: Opinion We look into Storage Spaces, the Windows Server 2012 storage subsystem, and delves into why it deserves a closer look. Storage Spaces, the Windows Server 2012 storage subsystem, is worth a closer look. Storage Spaces is available in Windows Server 2012 and also in Windows 8 clients. Storage Spaces is simple to use and has a feature-rich approach to managing your storage. Storage Spaces uses thin provisioning, and can dynamically add storage to an existing RAID, even if the drives are of different sizes and types. Storage Virtualization for Windows Server 2012 Storage Spaces is a storage subsystem for Windows Server 2012. Using Storage Spaces, a collection of internal and external drives can be placed into storage pools. Those storage pools can have storage spaces created on them. Storage Spaces are actually virtual hard drives that are placed on the storage pools. The Storage Spaces are then presented to the operating system as volumes, looking just like a hard drive. There can be multiple Storage Spaces on a storage pool. For example, you may have 3 internal hard drives installed to use as a storage pool. You can then create several different Storage Spaces on the storage pool, such as one for each group that is using the server. Already Installed with Windows Server 2012 Storage Spaces is built in with Windows Server 2012. You don’t need to install it as a role or feature. It is able to be managed simply and easily, right out of the box. All you need to do to take advantage of it is to add some... --- ### Manage Windows Features with PowerShell: Add Feature or Role > Learn how to add a feature or role to a Windows Server 2008 R2 system using Windows PowerShell and the ServerManager module. - Published: 2012-05-31 - Modified: 2012-05-31 - URL: https://petri.com/windows-features-with-powershell-part-2/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To In Part 2 of this two-part series, we show you how to add a feature or role to a Windows Server 2008 R2 system using Windows PowerShell and the ServerManager module. In part one of this two-part series, I showed you how to configure and manage Windows features using Windows PowerShell and the ServerManager module. Naturally, the next step is to add a feature or role. We’ll pick up where the last article left off in a remote PowerShell session. To get back up to speed, I want to identify File-Service sub features that are not installed. petri. com/wp-admin: PS C:\> import-module ServerManager : PS C:\> Get-WindowsFeature file-services | select -expandproperty SubFeatures | get-WindowsFeature | where {-Not $_. Installed} Display Name Name ------------ ---- Distributed File System FS-DFS File Server Resource Manager FS-Resource-Manager Services for Network File System FS-NFS-Services Windows Search Service FS-Search-Service Windows Server 2003 File Services FS-Win2003-Services BranchCache for network files FS-BranchCache I’m betting you can figure out the name of the cmdlet to add a Windows feature. petri. com/wp-admin: PS C:\> Add-WindowsFeature FS-DFS -WhatIf What if: Checking if running in 'WhatIf' Mode. What if: Performing operation "Add-WindowsFeature" on Target " Distributed File System". What if: Performing operation "Add-WindowsFeature" on Target " DFS Replication". What if: Performing operation "Add-WindowsFeature" on Target " DFS Namespaces". What if: This server may need to be restarted after the installation completes. Success Restart Needed Exit Code Feature Result ------- -------------- --------- -------------- True Maybe Success {} : PS C:\> Using –Whatif is a smart idea here as I can see that some additional features... --- ### Cisco IPv6 Static Address Configuration > Learn how to configure IPv6 addressing on a Cisco IOS device. - Published: 2012-05-30 - Modified: 2012-05-30 - URL: https://petri.com/ipv6-static-address-configuration/ - Categories: Cisco - Tags: Editor's Pick - Article Type: How To Once you obtain a basic understanding of IPv6, the next logical step is to test out the different capabilities that exist within Cisco equipment and IOS. In this article, Cisco Professional Sean Wilkins explains the configuration of IPv6 addressing on a Cisco IOS device. Overview Once you have a basic understanding of IPv6, the next logical step on Cisco equipment is to test out the different capabilities that exist within Cisco equipment and IOS. This article takes a look at the configuration of IPv6 addressing on a Cisco IOS device. Cisco IPv6 Static Address Configuration IPv6 is a little different from IPv4 in that multiple IPv6 addresses can exist on a single network interface; this can include an Aggregatable Unicast Address, Link-Local Unicast address, and/or anycast address. The next few sections review the configuration of these different address types. Configuring Unicast Addresses There are two common address types that are assigned to each IPv6 interface; this includes an Aggregatable Unicast address and a Link-Local address. An Aggregatable Unicast address is allowed to be globally routed and operates similarly to a public IPv4 address. An Aggregatable Unicast address can be configured in a number of ways. This article goes over the ways to statically address an IPv6 interface, which includes either specifying the whole IPv6 address and prefix-length or by using a prefix and using EUI-64. Table 1 shows the steps that are required to configure an Aggregatable Unicast address, using both a completely manual configuration and by using EUI-64. Table 1 - IPv6 Aggregatable Unicast Address Configuration 1 Enter global configuration mode router#configure terminal 2 Enter interface configuration mode router(config)#interface interface 3 Configure the interface with a manual Aggregatable Unicast address router(config-if)#ipv6 address address/prefix-length OR 3 Configure the interface with an... --- ### Can 4G Meet the Needs of Mobile Cloud Users? > Avril Salter, PhD discusses the differences between 4G and Wireless, and which one will ultimately take over. - Published: 2012-05-29 - Modified: 2024-11-19 - URL: https://petri.com/4g-mobile-cloud-users/ - Categories: Cloud Computing - Article Type: Overview There is no question that the cloud and wireless communications are intricately linked, but are the demands of cloud users overwhelming the wireless networks? Avril Salter examines this question and what you should prepare for in the foreseeable future. Overview There is no question that the cloud and wireless communications are intricately linked. The cloud allows you to access computer resources and services from anywhere on any device at any time. Wireless communications also allow you to connect to the cloud anywhere, from any device. However, are the demands of cloud users overwhelming the wireless networks? The adoption of wireless data has grown at a significant rate, with standalone and prepaid mobile data plans generating more than $110B USD in revenue in 2011. Informa Telecoms & Media forecasts that this number will reach $230B USD by 2016. Informa also reports that in the UK only 19% of smart phone data traffic is over the cellular networks. This means that over 80% of wireless data traffic from smart phones is actually going over Wi-Fi networks. If you couple this data with the fact that tablets are generating more traffic than all the smart phones combined, and that most tablets are shipping with Wi-Fi only, you should start to realize that W-Fi networks are significantly more important for rolling out mobile cloud services than 4G cellular networks. There are two dominant reasons for this. Firstly, people are predominately indoor and stationary when they are using wireless data. Secondly, the cost of 4G cellular is prohibitively high, and the recent capping of monthly usage by cellular operators has left users scared about overage charges. Why Wi-Fi Outperforms 4G Back in the 70’s, the first mobile systems put up tall radio towers that... --- ### Creating a New vDS with VMware vSphere > This video post demonstrates a walkthrough of the configurations you'll set up when creating a new vNetwork Distributed Switch. - Published: 2012-05-25 - Modified: 2024-09-04 - URL: https://petri.com/vsphere-vds-setup/ - Categories: VMware - Article Type: How To In this video post, VCDX & vExpert Jason Nash provides a walkthrough of the configurations you’ll need when creating a new vDS - vNetwork Distributed Switch, including settings for the main switch, uplinks, and port groups. Overview The vNetwork Distributed Switch (vDS) streamlines the process of setting up virtual machine networking by providing you with a centralized point of control for provisioning, administration and monitoring through vSphere's vCenter. In today's video and how-to article, vExpert Jason Nash walks you through the configurations required to setup a new vDS in your vSphere environment. (Instructional video below provides a walkthrough of the steps contained in this article. ) Let's start by briefly reviewing the relevant information associated with the main switch and the uplinks group. First up is the main switch. vCenter vDS - Summary Tab The Summary tab is where you’ll find information telling you the number of hosts, number of VMs, number of networks, total ports, available ports, and so on. As you start rolling out hosts and VMs, those numbers will go up. vCenter vDS - Networks Tab The Networks tab contains all your networks, which equate to port groups. Other information includes port binding, VLAN ID, number of VMs, number of ports used, and whether alarms are enabled. vCenter vDS - Ports Tab This tab contains vital information related to Port Mirroring and Netflow. When you plug a VM into a vSwitch or a VMs NIC into a vSwitch (as a VM may have multiple NICs), it gets assigned a port. That is, a port ID on the distributed switch. So, for example, MediaXP is assigned Port 11, while Media SAB is assigned Port 10. Domain Controller (DC)... --- ### Manage Windows Features with PowerShell > Learn to configure and manage servers the easy way using Windows PowerShell. - Published: 2012-05-24 - Modified: 2024-09-04 - URL: https://petri.com/manage-windows-features-with-powershell/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To Configuring and managing servers can be a bit time consuming, especially if you need to manage a feature on 10 servers. Discover a much quicker and easier way to manage servers running Windows Server 2008 R2 - using Windows PowerShell. Configuring and managing servers these days can be a time consuming process, unless you work more efficiently and smarter. For example, suppose you need to add a new server feature. Are you going to go to the server, open up server manager, scroll around to find where to add a feature or role and then click through the wizard? Or would you prefer to type a few commands and go to lunch? With the increasing role of Server Core machines, GUIs aren't even an option. Sure, you could use the Server Manager console from RSAT, but that still takes time to get going. What if you need to manage a feature on 10 servers? Today I'll show you what Windows features and roles were installed on a Windows Server 2008 R2 system using Windows PowerShell and the ServerManager module. In part two, I'll add a feature or role to Windows features with PowerShell. Manage Windows Server 2008 R2 with PowerShell Your answer lies with Windows PowerShell - what else! I'm also talking about managing servers running Windows Server 2008 R2, ideally from a Windows 7 desktop. What makes this all possible is the ServerManager module. Unfortunately, this module only resides on server operating systems. I've never been able to find a way to load it on Windows 7, but that's ok. Because the server is also running PowerShell 2. 0 with remoting enabled, I can do everything from a remote PowerShell session. If you need to automate the... --- ### IPv6 Address Notation > Networking Consultant Sean Wilkins shows how to use IPv6 address notation, and how it differs from using IPv4. - Published: 2012-05-23 - Modified: 2024-09-04 - URL: https://petri.com/ipv6-address-notation/ - Categories: Networking - Article Type: Overview Learning IPv6 addressing may look daunting, but once you get over the large hexadecimal numbers, it isn't much different than using IPv4. In this post, Networking Consultant Sean Wilkins shows how IPv6 addresses and subnetting work the same as with IPv4 address when converted to binary. Overview When learning IPv6 addressing, one of the first things that people notice is that it is much more complex to look at than the previous IPv4 addresses; this is compounded by the fact that a single address can be notated in a number of different ways and still refers to the same device. This article takes a look at IPv6 notation, how a single IPv6 address can be notated in a number of different ways, and how to expand and compress them correctly. IPv6 Address Notation An IPv6 address has a total of 128 bits that are represented in hexadecimal form, using 8 – 4 hex character groupings.  Figure 1 below shows a fully expanded IPv6 address: Figure 1 - Expanded IPv6 Address There are two ways that an IPv6 address can be additionally compressed: compressing leading zeros and substituting a group of consecutive zeros with a single double colon (::). Both of these can be used in any number of combinations to notate the same address. It is important to note that the double colon (::) can only be used once within a single IPv6 address notation. Figure 2 below shows what the same address shown in Figure 1 would look like if the leading zeros were removed. Figure 2 - Compressing Leading ZerosAnother method is to use the double colon (::).  Figure 3 shows how the use of a double colon (::) could be used to compress the IPv6 address: Figure... --- ### Print from your Phone or Tablet using Google Cloud Print > How to use Google Cloud Print to print from your mobile device. - Published: 2012-05-22 - Modified: 2024-11-19 - URL: https://petri.com/google-cloud-print/ - Categories: Google Cloud Platform - Article Type: How To Printing from smartphones and tablet computers is becoming less of an option and more of a necessity. In this post, John O'Neill Sr. demonstrates how to use Google Cloud Print, a simple and free way to answer this need. Overview The proliferation of mobile devices today is exploding. The consumerization of IT is only accelerating the amount and types of mobile devices we encounter every day. This evolution in IT creates many new opportunities along with many need demands. A perfect example is the need to print easily, effectively, and seamlessly, from our mobile devices. However, enabling print capability from tablets and phones is not as complex as one might think and doesn't require buying a new printer. Challenges of Printing from Mobile Devices The challenges of printing from mobile devices such as tablets or phones include concerns like dealing with different OSes and printing from widespread locations. With conventional PCs, we often find ourselves on common networks that we visit frequently such as work, home, or even the local Starbucks. We set up printing for these networks once and reuse whenever we connect to that network. Mobile devices explode that method since they may connect to dozens, or possibly hundreds, of different networks every day. For instance, it isn't too common to find someone with a laptop wandering an aisle at a department store trying to capture a picture of a dress with their webcam. It is, however, becoming more and more common to find someone snapping a picture of a dress, pair of shoes, or some other item they like using the multi-megapixel camera on their smartphone. The same scenario plays out in industry every day. It wouldn't be safe or smart to wander... --- ### 8 Questions (and Answers) about Windows 8 > We answer 8 lingering questions about Windows 8. - Published: 2012-05-21 - Modified: 2012-05-21 - URL: https://petri.com/windows-8-features/ - Categories: Windows 8 - Tags: Hyper-V, Microsoft, Windows, Windows 8, Windows To Go - Article Type: Overview Do you still have questions about Windows 8? Are you wondering if Microsoft finally got it right this time? In this post, we answer 8 questions about Windows 8. Microsoft does such a great job of having a full solution for enterprises. I’ve heard some people question the costs of the licenses in contrast to other vendors or open source solutions, but there is no open source solution or vendor that can cover everything that Microsoft products can. It can be really easy to love Microsoft if you’re an IT professional that works on their products. Easy to use GUIs, free training and documentation, and market share that can find you a job in any location. Still, there are a few nagging questions that can get you wondering, "Is Microsoft ever going to get this right? " Sometimes it seems like Microsoft just messed up a feature, or they just don’t understand what we want to do. Without further ado, here are my top 8 questions for Windows 8. 1. Why can’t I have Hyper-V on my laptop? What ever happened to Virtual PC? Client Hyper-V, full featured virtualization software, is finally coming to workstations in Windows 8! Client Hyper-V is installed as a feature, so you don’t have to buy it separately. It includes all of the features that you expect from your virtualization software: virtual networking, shared drives, and most importantly, snapshots. You can also use the advanced features of Hyper-V on your installation of Windows 8 desktop. For example, Client Hyper-V allows you to automate your virtual environment using PowerShell, and if you’ve got a multipoint touch-enabled device that you’re... --- ### Providing Last-Mile Desktop and Application Lockdown with PolicyPak > The founder of PolicyPak shows how you can deliver Group Policy settings over VDI to lock down applications. - Published: 2012-05-18 - Modified: 2012-05-18 - URL: https://petri.com/policypak/ - Categories: Active Directory (AD) - Article Type: Overview In this video post, Jeremy Moskowitz, Group Policy MVP and founder of PolicyPak software walks us through his Group Policy add-on, PolicyPak, and shows how you can deliver Group Policy settings over VDI to lock down applications. Overview In this video, Group Policy MVP Jeremy Moskowitz walks us through his Group Policy add-on, PolicyPak, and shows how you can deliver Group Policy settings over VDI to lock down applications. Jeremy Moskowitz on PolicyPak Hi everybody. This is Jeremy Moskowitz, Group Policy MVP and founder of PolicyPak software. My friends at TrainSignal grabbed me by the ear; they said "you got to show this to our friends and viewers and stuff," and I am happy to bring this to you. So let's set the stage about what we are about to see and why you should care. A lot of folks now are being told they have to support this idea of "bring your own device" or BYOD to work, and I know what a huge pain in the neck that can be. You don't know if they are bringing in an iPhone or iPad or a tablet computer. You don't know what is around the bend even, or whatever is next basically. So what I've got here, what I am about to show you is I don't have a real iPad; I have a fake iPad, and so, you just have to play pretend with me. I hope that will be ok. On my fake iPad, you know that if you use a VDI-based solution to remotely give somebody an entire desktop environment, you have to support the applications. Now getting those applications on those target computers, really those target VDI sessions, is kind... --- ### Managing Local User Accounts with Windows PowerShell > Learn basic management tasks using Windows PowerShell. - Published: 2012-05-17 - Modified: 2012-05-17 - URL: https://petri.com/managing-local-user-accounts-with-powershell/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To In the first part of this series, PowerShell MVP Jeff Hicks demonstrated how to create a local user account with Windows Powershell. In this follow-up article, Jeff walks you through some basic management tasks accomplished with PowerShell. In my previous article, I demonstrated how to create a local user account with Windows PowerShell. In today's article, I want to cover some basic management tasks that can be done with PowerShell. Using ADSI The first step is to use ADSI and get the local user account object. ​PS C:\> $HelpDesk="WinNT://CHI-FP01/HelpDesk,User" Remember, the WinNT moniker is case sensitive. Changing Password One task you are most likely to need is changing the local account password. If you pipe the ADSI object to Get-Member, you won't see any methods; you just have to know they are there, such as SetPassword. This is the same method we called when we set up the account. ​PS C:\> $HelpDesk. SetPassword("P@ssw0rd") The change is immediate and there is no need to call SetInfo. By the way, if you want to see how old a password is, you can look at the PasswordAge property. ​PS C:\> $helpDesk. PasswordAge 1775 This is a value in seconds. So if you wanted to get the age in days all you need to do is divide it by 86400. ​PS C:\> $Admin="WinNT://CHI-FP01/Administrator,user" PS C:\> $admin. PasswordAge. value/86400 269. 749664351852 Changing Group Membership When I set up the HelpDesk local account, I added it to the Power Users group. Well, the account needs to belong to the local Administrators group so I need to fix group membership. First, I’ll remove the account from the Power Users group. ​PS C:\> $power="WinNT://CHI-FP01/Power Users,group" PS C:\> $power. Remove($HelpDesk. Path) The change is immediate. Now... --- ### How to Recover Deleted and Lost Files > Learn how to easily recover damaged, deleted or misplaced files from hard drives and other storage devices. - Published: 2012-05-16 - Modified: 2024-09-24 - URL: https://petri.com/recover-lost-data-from-hard-drive/ - Categories: Backup & Storage - Article Type: How To Anyone who has relied on a hard drive or other storage device has probably lost an important file. It may be due to accidental deletion, data corruption, or merely a change of mind - "Shoot, I shouldn't have deleted that file!". The good news is that these files can almost always be restored. In this post, we walk you through a few simple steps to recover those lost files. Overview Whether you’re an IT pro, a normal home user, or a photographer, you have probably accidentally deleted an important file from a hard drive or memory card before.   Maybe you didn’t mean to delete it or maybe you did delete the file intentionally but changed your mind.   Maybe the storage device is beginning to corrupt and become unreliable. The result is always the same; panic. In this post, we’re going to try and put your panic at ease.  With , virtually any file can be recovered from a storage device, generally within just a few minutes. What Happens When a File is Deleted? While the idea of dragging a file to the “Recycle Bin” seems pretty straightforward and certainly feels final, the reality is that the file doesn’t actually go anywhere.   When you delete a file, you are simply telling your computer that the file is no longer needed and your operating system simply acts as though the file isn’t there.   The deleted file will actually remain intact until the hard drive needs that space and overwrites it. The bad news is that if you are really trying to get rid of a file, you’re going to need to do a little more than just move it to and emptying the recycle bin.   The good news is that if you accidentally deleted a file, you have a pretty good chance of recovering it.   Here’s how... Real World Data Recovery Scenario Even with the... --- ### IPv6 Header vs IPv4 Header > Get to know the differences between the IPv6 headers and the IPv4 headers. - Published: 2012-05-16 - Modified: 2024-09-04 - URL: https://petri.com/ipv6-header-vs-ipv4/ - Categories: Networking - Article Type: Overview Since the IPv4 address space will soon be replaced, now is a great time to familiarize yourselves with IPv6. In this post, Sean Wilkins discusses the differences between the IPv6 header and the IPv4 header. Overview When studying IPv6, one of the main things that differs from IPv4 is the complexity of the IPv6 header compared with that of its predecessor’s header. The IPv6 header was designed to be less complex and easier to process than the IPV4 header, and with efficiency as one of the main design elements. This article takes a look at the contents of the IPv6 header and how they compare with the contents of the IPv4 header. IPv6 Header Figure 1 below shows the contents of the main contents of the IPv4 header and will be used as a comparison to the IPv6 header elements. Figure 1 - IPv4 Main Header The main IPv6 header is shown in Figure 2 below:   Figure 2 - IPv6 Header There are a number of unfamiliar fields within the IPv6 header but each of them replicates some of the functionality of the IPv4 header fields. Table 1 takes a look at each of these fields and what they are used for: Version The version field is 4 bits long and contains the IP version to be expected in the following contents; since this article is talking about IPv6, this value is always going to be 6 (0110). Traffic Class The traffic class field is 8 bits long and operates the same as the IPv4 Type of Service field; this includes support for the marking of traffic based on a differentiated services code point (DSCP). Flow Label... --- ### 4 Reasons ReFS (Resilient File System) is Better Than NTFS > Learn how ReFS will likely replace NTFS, and why you will love this new file system. - Published: 2012-05-15 - Modified: 2012-05-15 - URL: https://petri.com/4-reasons-refs-is-better-than-ntfs/ - Categories: Windows Server 2012 - Article Type: Opinion Resilient File System (ReFS) is a new file system introduced in Windows Server 2012, which, before long, we will all be using on our boot partitions. In this post, We explain how ReFS will likely replace NTFS completely within the next versions of Windows, and why you will love this new file system. Overview Resilient File System (ReFS) is a new file system introduced in Windows Server 2012. Initially, it is being targeted for implementation as a file system that is primarily used for file servers. However, starting as the file system for a file server is just the beginning. Like its predecessor, NTFS, ReFS will begin as a file server system, then become a mainstream file system. Before long, we will all be using ReFS on our boot partitions. So why would you want to change file systems? If NTFS is working, why should anybody even consider switching to ReFS? ReFS is better and faster in many ways than NTFS, but in one way more than all others: its resiliency. Resilient File System will likely replace NTFS completely within the next versions of Windows, and here are some reasons why you are going to really love the new file system. 4) ReFS Supports Long File Names and File Path. Really Long. Capacity is just one of the ways that ReFS is making changes. There will no longer be a limitation of 255 characters for a long file name. A file name in ReFS can be up to 32,768 unicode characters long! The limitation on full path size has also been updated from 255 characters for the total path size to 32K (32,768). The legacy 8. 3 naming convention is no longer stored as part of the file data. There is only one file name, and it... --- ### 8 Reasons Windows 8 Tablets will make a Splash in the Enterprise > John O'Neill, Sr. shows how Windows 8 tablets can add value to organizations, and why they will make a splash in the enterprise. - Published: 2012-05-14 - Modified: 2012-05-14 - URL: https://petri.com/windows-8-tablets-will-make-a-splash-in-the-enterprise/ - Categories: Windows 8 - Article Type: Overview Will Windows 8 tablets offer valuable and compelling features for the enterprise? The excitement surrounding Windows 8 is unmistakable, but everyone seems to have this question in mind. John O'Neill, Sr. shows how these tablets can add value to organizations, and why they will most certainly make a splash in the enterprise. As of today, there is no official launch date for Microsoft’s next operating system, Windows 8. Even so, Windows 8 Consumer Preview currently receives more press and is the topic of more conversations than any other operating system, including Microsoft’s current OS Windows 7. One of the many explanations for this is the excitement surrounding Windows 8 tablets. One question in particular on many minds, including my own, resonates above the others: Will Windows 8 tablets offer valuable and compelling features for the enterprise? Windows 8 Tablets in the Enterprise Naysayers abound, but the data is clear; tablets can add value to organizations. Case in point: according to Tim Cook, CEO of Apple, over 80% of the Fortune 100 have deployed or are testing deployments of iPads. Think about that for a moment. 80 of the 100 largest companies are finding value in using tablets. Add to this the rapid adoption of BYOD (Bring Your Own Device) policies, along with the general consumerization of IT, and Windows 8 tablets have a great opportunity in front of them. Based on the published specifications and the current Consumer Preview of Windows 8, the product not only looks ready to add value to organizations from day one, but it looks poised to penetrate the enterprise faster than any tablet before it. Most modern organizations leverage Microsoft technology to build their networks and run their companies. Because of this, Windows 8 tablets will complement and integrate with these technologies. Top 8 Windows 8 Tablet... --- ### Security Essentials - Intro to Shares > This post teaches how to administer shares using Windows Explorer. - Published: 2012-05-11 - Modified: 2024-09-04 - URL: https://petri.com/security-essentials-intro-to-shares/ - Categories: Security - Article Type: Overview The purpose of a share (aka shared folder) is to expose a portion of a server’s file system to network users. The idea is to just keep portions of that file system available to users while allowing other portions of the server’s file system to remain private and unseen by network users. In this post, you will learn how to administer shares using Windows Explorer. Overview The purpose of a share, which is also called a shared folder, is to expose a portion of a server’s file system to network users. The idea is to just keep portions of that file system available to users while allowing other portions of the server’s file system to remain private and unseen by network users. (Instructional video below provides a walkthrough of the steps contained in this article. )A share can expose a single folder and everything in it or an entire drive and everything on that drive. Windows Explorer is where you’ll often administer shares, so let me show you how it’s done there. Administrating Shares with Windows Explorer Launch Windows Explorer and create a new folder. Just right-click on an empty space and select New > Folder. Give the folder a name, e. g. “UserFiles. ” The intent here is that the contents of this folder will be the things we want our users to have access to from the network. For the purpose of an example, I’d like you to create a text document and give it a name, e. g. “Example. ” Next, let’s assign permissions to that file. Right-click on it and then select Properties from the context menu. Once you’re in the Properties window, navigate to the Security tab. By default, the file is inheriting the permissions of the folder which, in turn, is inheriting the permissions from the drive itself. If you click on each group or user name, you’ll see their... --- ### Creating Local Accounts with Windows PowerShell > Microsoft MVP Jeff Hicks shows how to set up local user accounts using Powershell. - Published: 2012-05-10 - Modified: 2024-09-04 - URL: https://petri.com/create-local-accounts-with-powershell/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To Are you looking for an easy way to set up additional local user accounts? In this post, PowerShell MVP Jeff Hicks shows how easy it is to set up these accounts across multiple machines remotely, using Windows PowerShell. Way back in the day, all we had were local accounts on stand alone or workgroup-based computers, and in some ways, nothing has really changed. We still have computers that have local user accounts. Most of the time the local Administrator account is all that matters, but you may have situations where you want or need additional local user accounts. Today, I will show you how easy it is to set up these accounts remotely, using Windows PowerShell. Now, if you only need to do this on a single machine on a rare occasion, by all means use the Computer Management console. However, if you are looking to create a number of local accounts across multiple machines, PowerShell will make this much easier. Leveraging PowerShell to Create Local Accounts across Multiple Machines I’m going to demonstrate in a domain environment from a Windows 7 desktop running PowerShell 2. 0, creating local accounts on other domain members. I’m logged on with an account that has admin rights on the remote computers. With this approach, I don’t need PowerShell installed anywhere else. If you need to create accounts on non-domain members, I think the best approach is to use PowerShell remoting. You can run the same commands I’m going to show you, but in a remote session or using Invoke-Command. The advantage is that you can specify the credentials you need. Setting up remoting for non-domain members is a bit tricky, and I don’t have space to cover it here,... --- ### EIGRP Redistribution Troubleshooting > How to troubleshoot problems that are seen when redistributing to and from Cisco’s Enhanced Interior Gateway Routing Protocol (EIGRP). - Published: 2012-05-09 - Modified: 2012-05-09 - URL: https://petri.com/eigrp-redistribution-troubleshooting/ - Categories: Networking - Article Type: Overview This article by Networking Consultant Sean Wilkins takes a look at some of the most common problems that are seen when redistributing to and from Cisco’s Enhanced Interior Gateway Routing Protocol (EIGRP). Overview The idea behind route redistribution sounds so simple: routing protocol A will tell routing protocol B about its known paths. For the most part, when dealing with one-way redistribution solutions, it can be this simple; the complexity of redistribution comes with multiple routing protocols, two-way redistribution points, and multiple entry and exit points. When all of these different things exist within a redistribution situation, the configuration can get very complex very quickly. This article takes a look at some of the most common problems that are seen when redistributing to and from Cisco’s Enhanced Interior Gateway Routing Protocol (EIGRP). Things to Look for When Using EIGRP Redistribution There are a couple different things that can be commonly misconfigured when setting up EIGRP redistribution. The following sections go over a couple of these and how they can be remedied. Routing Table Entries One thing that must be hammered into the mind of the configuring network engineer is that only routes that actively exist within the routing table will be redistributed. For example, if a router is being configured to redistribute OSPF into EIGRP, only those OSPF routes that are actively in the redistributing router’s routing table will be redistributed into EIGRP. This is not a behavior that is specific to EIGRP; it is the same regardless of dynamic routing protocol. EIGRP default metric Unlike most of the other dynamic routing protocols, EIGRP does not automatically have a default metric for any learned routes. What this means is... --- ### Add Windows Server 2012 as a Domain Controller > Learn how to add Windows Server 2012 as a domain controller. - Published: 2012-05-08 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2012-as-domain-controller/ - Categories: Windows Server 2012 - Tags: Active Directory, dcpromo, Domain, Domain Controller, Forest, Microsoft, PowerShell, Server Manager, Windows 8, Windows Server, Windows Server 8 - Article Type: How To Whether you're looking to take advantage of Dynamic Access Control, begin virtualizing your Active Directory infrastructure, or start using one of the other amazing features that Windows Server 2012 Active Directory offers, it all begins with getting a Windows Server 2012 added as a domain controller. Read on to learn how. Windows Server 2012 provides advancements to every area of IT services, and that certainly includes Active Directory. Whether you're looking to take advantage of Dynamic Access Control, begin virtualizing your Active Directory infrastructure, or start using one of the other amazing features that Windows Server 2012 Active Directory offers, it all begins with getting a Windows Server 2012 added as a domain controller. What Happened to dcpromo? Similar to previous versions of Windows Server, you start the process of making a server into a domain controller by adding the Active Directory Domain Services roles to your computer. However, in Windows Server 2012, you do not run dcpromo to promote your server to a domain controller. In Windows Server 2012, dcpromo has been deprecated. So what replaces dcpromo in Windows Server 2012? There are now two ways to promote your server to a DC. The first option is to use PowerShell. This provides the ability to script the process, save the script, or batch the process out to multiple servers. The second option is a task made available in Server Manager that can be run to begin the promotion wizard. Who Can Install Active Directory on Windows Server 2012? If you are going to be creating the first domain in a new forest, log on as the local Administrator. If you're adding a new domain in an existing forest, be a member of the Enterprise Admins group for the forest you're going to join... . --- ### May 2012 Webinar Update: Free Webinars for IT Pros > Free webinars for IT Pros on browser security, disaster recovery, Exchange HA, SCOM and SCCM, VMware certifications and more. - Published: 2012-05-07 - Modified: 2024-11-19 - URL: https://petri.com/it-webinars-may-2012/ - Categories: Training & Certification - Article Type: News Jumpstart your learning with free webinars from some of the biggest names in IT! Check out our list of upcoming webinars for the month of May on browser security, disaster recovery, Exchange HA, SCOM and SCCM, VMware certifications and more. Jumpstart your learning with free webinars from some of the biggest names in IT. This month there are a number of live webinars designed specifically for IT pros on browser security, disaster recovery, Exchange HA, SCOM and SCCM, VMware certifications and more. Why All Toolbars Are Evil: What IT Pros Need to Know about Browser Security Presented by: Mike Danseglio and Lisa Szpunar Thursday, May 10, 2012 10:00am - 11:00am CDT | Learn More & Register >> Learn about the latest in browser security with plenty of examples and ways to prevent threats and minimize vulnerabilities. Security experts Mike Danseglio and Lisa Szpunar also cover techniques for teaching your users safe web browsing. Four Key Elements of a Successful Disaster Recovery Strategy Presented by: Greg Shields and Joseph Hand Wednesday, May 16, 2012 12:30pm - 1:30pm CDT | Learn More & Register>> In this free webinar, Greg Sheilds will help you get on the path to a unified disaster recovery strategy by showing you the four critical features of a virtual and physical disaster recovery strategy, while outlining the right approach to disaster recovery.   Exchange High Availability: Eliminating “Disaster” in Disaster Recovery Presented by: J. Peter Bruzzese Wednesday, May 16, 2012 12:00pm - 1:00pm CDT | Learn More & Register>> Let J. Peter Bruzzese show you how cloud archiving combined with High Availability in Exchange Server 2010 can eliminate the need for a backup restore while providing better results for you and your users. Daily Disasters: 5 Lessons for... --- ### What Makes a Great Mobile Cloud App? > Dr. Avril Salter shows how mobile cloud apps can enable you to reach your customers in new ways, and improve the productivity of your employees. - Published: 2012-05-07 - Modified: 2024-11-19 - URL: https://petri.com/what-makes-a-great-mobile-cloud-app/ - Categories: Cloud Computing - Article Type: Opinion If you're not thinking about mobile cloud apps, you should be! In this post, Dr. Avril Salter shows how mobile cloud apps can enable you to reach your customers in new ways, as well as to improve the productivity of your employees. Overview Do your customers and employees carry a smart phone or a tablet? Do your customers and employees access your network services on a regular basis? If so, you need to be thinking about mobile cloud apps, and how they can enable you to reach your customers in new ways, or to improve the productivity of your employees. A mobile cloud app is not simply porting your existing app to a virtual environment, or modifying them for use on a mobile device. Mobile cloud apps are a new breed of apps that integrate the experience of a downloaded app with the enablement of a cloud service. Early examples of such mobile apps include a tool that allows you to edit your pictures on your mobile device and then store them in the cloud. A field service’s app has tools on the device the engineer needs to analyze a problem but syncs with a cloud app to enable the engineer to investigate if there are existing solutions. There are three essential qualities that you need to think about when you specify your mobile cloud app. Combine the advantages of the cloud with the advantages of a mobile device The cloud offers the ability to store vast amounts of data, to collaborate with others, and to pay as you go. The mobile device offers the capabilities to go anywhere, to locate the user, and personalization. When these capabilities are brought together, you can create new and innovative apps. Examples are: Combine cloud... --- ### VMware vCloud Director Essentials - Managing vCloud Director > Learn about vCloud Director Task and Events, and how to monitor Blocking Tasks, view Provider and Org vDC usage, and check vCD Logs. - Published: 2012-05-04 - Modified: 2024-09-04 - URL: https://petri.com/managing-vmware-vcloud-director/ - Categories: Virtualization - Article Type: Overview In this video post, vExpert David Davis talks about vCloud Director Tasks and Events, and shows how to monitor Blocking Tasks, view Provider and Org vDC usage, and check vCD Logs. Overview In this post, we’ll talk about vCloud Director Task and Events. We’ll also show you how to monitor Blocking Tasks, view Provider and Org vDC usage, and check vCD Logs. (Instructional video below provides a walkthrough of the steps contained in this article. ) Tasks and Events Just like in the VMware vSphere Client, you also have Tasks and Events inside the vCloud Director. Tasks are things that you requested vCloud Director to do, while events can be either the results of those tasks, or just system events that have happened inside vCloud Director. As a vCloud Director admin, you need to be monitoring vCloud Director tasks and events just like you do in the vSphere Client. Let’s now go over to an actual vCloud Director client and check out where and how you would do that. If you start in the Home screen, there a couple of different places to go to when you want to monitor tasks and events. The first one is down at the bottom-left corner: in the Running and Failed statuses. If you click on either Running or Failed, you’ll be shown exactly the same interface. Of course, one will show you running (or recently ran) tasks, while the other will prioritize recently failed tasks. You can filter results by selecting an item from that drop-down list at the top. You can also conduct searches using the search box beside that list. Double-clicking on a task will reveal... --- ### Find User-Based Service Accounts with PowerShell and Command Line > How to identify what accounts your services are running under, as well as identify potential problems before they become major headaches. - Published: 2012-05-03 - Modified: 2012-05-03 - URL: https://petri.com/find-user-based-service-accounts-with-powershell-and-command-line/ - Categories: PowerShell - Tags: Intermediate - Article Type: How To In this post, Jeff Hicks shows how to identify what accounts your services are running under, as well as identify potential problems before they become major headaches, using both PowerShell and the command line. For the most part, Windows Server services run under generic system based accounts, such as LocalSystem or NT AUTHORITY\LocalService. But occasionally, a service needs to be run under a “real” user account, either domain or machine-based. Too often I’ve seen these running under an administrator account. In any event, you should know where these types of service accounts are being used. Find User-Based Service Accounts with PowerShell The first thing you might want to do is find out what accounts are currently being used. PowerShell is the easiest tool. We can use WMI to query all instances of the Win32_Service class and look at the StartName property. One approach might be to use Group-Object. ​PS C:\> get-wmiobject win32_service -comp jdhit-dc01 | Group Startname -NoElement | Sort Count Count Name ----- ---- 1 administrator@jdhitsol... 1 JDHITSOLUTIONS\Adminis... 10 NT AUTHORITY\NetworkSe... 14 NT AUTHORITY\LocalService 79 LocalSystem This gives me a nice distribution breakdown, but I can see there are a few services using a user account. If I know in advance what account to search for, I could run a PowerShell command like this: ​PS C:\> get-wmiobject win32_service -comp jdhit-dc01 -filter "Startname Like '%Administrator%'" | select name,startname name startname ---- --------- MSSQL$MICROSOFT##SSEE administrator@jdhitsolutions. local RSEEService JDHITSOLUTIONS\Administrator A better approach would be to filter out all the system accounts. This is a little tricky with WMI filtering, but here’s something that should do the trick. ​PS C:\> get-wmiobject win32_service -comp jdhit-dc01 -filter "Startname Like '%' OR Startname... --- ### Specifying an iOS Upgrade File Manually Using iTunes > This article shows how to manually upgrade your iOS device using iTunes. - Published: 2012-05-02 - Modified: 2024-11-19 - URL: https://petri.com/specifying-an-ios-upgrade-file-manually-using-itunes/ - Categories: Cloud Computing - Article Type: How To With iOS devices everywhere and new versions of the OS being released a couple times a year, you may be looking for a quick way to manually update your device. In today's post by John O'Neill Sr., you will learn how to upgrade a device by specifying a specific iOS file. Overview The proliferation of Apple iOS devices continues to occur at a blisteringly fast rate. Apple began shipping the new iPad on March 16th, 2012 in quantities that boggle the mind. From teenagers with iPhones to CEOs with iPads, these devices seem to be everywhere. The common thread is that all these devices use Apple’s iOS software and therefor, at some point, need that iOS software upgraded. Today’s article will address how to upgrade a device by specifying a specific iOS file. This technique is useful in a number of scenarios. One that comes quickly to mind for use in the enterprise is using just one upgrade file stored on a network to upgrade many devices from many different computers. This approach is a great timesaver and drastically cuts down on bandwidth. iOS Upgrades Before getting started with the how-to, let’s take a moment to discuss some of the background behind iOS upgrades. Apple often updates their iOS software with the release of a new mobile device. Such was the case with the release of the iPhone 4S last fall and such is the case with the release of the new iPad this month. On March 7, 2012 along with the new iPad announcement came the unveiling of iOS 5. 1. iOS 5. 1 brings with it many new features and is a worthwhile upgrade. More information about iOS 5. 1 can be found on Apple’s website. With only a single device, upgrading is not much... --- ### Making Sense of the New MCSE: Microsoft Certified Solutions Expert - Published: 2012-05-01 - Modified: 2012-05-01 - URL: https://petri.com/mcse-microsoft-certified-solutions-expert/ - Categories: Training & Certification - Article Type: Overview The reinvention of the MCSE has spawned a number of opinions, both good and bad. In this article, MCT Ed Liberman shares his opinions about how things are falling into place as well as his advice on how IT professionals should be approaching the new certification program from Microsoft. Overview The reinvention of the MCSE has spawned a number of opinions, both good and bad. As an MCT who has seen many certification changes over the years -- both good and bad -- I want to share my own opinions about how things are falling into place. The MCSE is Back! First of all, I’m excited about the new MCSE certifications and I’m glad that Microsoft has found a way to get back to the MCSE brand that is recognized around the world, and not just within the IT industry. I have been very proactive in working with Microsoft Learning during this process, as I strongly believe the new MCSE certification program will benefit IT professionals. Although there is still much confusion about the new certifications I know that when all the questions have been answered, IT professionals will be happy with these changes. Let’s face it, this is a change that IT professionals have been asking for since the MCIP and MCTS certifications were released over 5 years ago. As I mentioned in my first post on this topic (Read: The MCSE is Back! ), to this day I get students asking me about the Windows Server 2008 MCSE track. This alone should tell you that Microsoft simply made a mistake when they decided to get rid of the MCSE certifications and now they are doing the right thing by bringing it back. Understanding the New MCSE How should IT professionals approach the new MCSE certification program? To begin... --- ### How To Import Contacts into Office 365 and Outlook Web Access > Discover several different approaches to moving your contacts or address book into Office 365. - Published: 2012-05-01 - Modified: 2024-09-04 - URL: https://petri.com/importing-contacts-into-office-365-and-outlook-web-access/ - Categories: Cloud Computing - Tags: Address Book, Contact, Exchange Online, Microsoft, Office, Office 365, Outlook, Outlook Web Access - Article Type: How To Office 365 allows you to connect to your work email as easily as you’ve been connecting to your personal Hotmail account. We go over several approaches to moving your contacts or address book into Office 365. If you’re a new user of Office 365, you may be excited at the ability to connect to your work email as easily as you’ve been connecting to your personal Hotmail account. With always on service and the ability to connect to your work email from anywhere, your productivity is sure to improve. One of the first things you will want to do is import your contacts from other email accounts. Of course, if you’re an administrator or support professional, you’ll need to be able to teach others how to import their contacts. Depending on the system that you are importing your contacts from, there are several approaches to moving your contacts or address book into Office 365. If you’re moving from an existing Exchange server (on-premises) to Office 365, then you’ll migrate the users through the PowerShell console. This is beyond the scope of this article, but if you’re moving from an Exchange Server that is on site to Office 365 in the cloud, then you do not want to leave the importing of contacts up to the users. That is handled by the administrators as they move the mail and contacts for their users. Option 1: Use Import Contacts to Load Your Contacts From a CSV Get your contacts into a CSV file, and then: From Office 365’s Outlook Web Access, go to your Contacts. Click Import on the contacts toolbar. If you don’t already have a CSV of your contacts... --- ### Examining Cloud Service Provider Policies and Practices > Learn about the US government's concerns about public cloud computing, and their Policies and Practices recommendations. - Published: 2012-04-30 - Modified: 2024-11-19 - URL: https://petri.com/cloud-service-provider-policies-and-practices/ - Categories: Cloud Computing - Article Type: Overview In this post, IT veteran Mike Danseglio examines the US government's concerns about using public cloud computing, by mapping the theory and recommendations expressed in the Special Publication 800-144 Guidelines on Security and Privacy in Public Cloud Computing with a practical IT approach. Overview In my article about Security and Privacy in Public Cloud Computing, I described a number of concerns that the US government expressed about using public cloud computing service providers. The National Institute of Standards and Technology (NIST), part of the US Department of Commerce, published Special Publication 800-144 Guidelines on Security and Privacy in Public Cloud Computing to clearly express these concerns. I’m examining all of these concerns with the intent of mapping the theory and recommendations expressed in SP 800-144, and supporting reference documents, to a practical IT approach. In this article I’m exploring the Policies and Practices recommendations. Your IT organization undoubtedly has policies and practices in place that control and define how IT assets are managed. Your policies and practices should already cover areas including maintenance windows, system upgrades, software configuration, secure system access, and documentation. There are two critical questions to ask yourself: Does my cloud service provider implement the policies that I require? How do I know? Does my cloud service provider implement the policies that I require? Being in the IT service provider business requires some policies in place. These core IT building blocks, including policies, procedures, practices, and standards, are established by the service provider before they open for business. And these practices evolve over time based on experience and business need. When you ask a cloud service provider about their policies, practices, and other core IT components, they often cite industry standards and provide audit results. Those are the most generic... --- ### VMware vCloud Director Essentials: Provider vDC and Deployment Templates > In Part 2 of this two-part series, vExpert David Davis shows how to create a Provider Virtual Datacenter and a VM Deployment Template. - Published: 2012-04-27 - Modified: 2024-11-19 - URL: https://petri.com/setting-up-vmware-vcloud-director-essentials-part-2/ - Categories: Virtualization - Article Type: Overview In the conclusion of this series on vCloud Director, we discuss creating two important entities: a Provider Virtual Datacenter and a VM Deployment Template. Welcome back to this mini-series on VMware vCloud Director Essentials. Part one was an introduction to the vCloud Director web interface. I also demonstrated how to connect to vCenter and vShield. Now we’re ready to talk about creating two important entities: a Provider Virtual Datacenter and a VM Deployment Template. (Instructional video below provides a walkthrough of the steps contained in this article. ) Creating a Provider Virtual Datacenter According to the VMware knowledgebase, a provider virtual datacenter (provider vDC) “combines the compute and memory resources of a single vCenter Server resource pool with the storage resources of one or more datastores connected to that resource pool,” and that it is the “source for organization vDCs. ” First, you need to create a provider vDC, which is going to serve as the source for all organizational vDCs underneath. Think of it like this. Assuming you were a private cloud provider and you have three different tiers of service: Gold, Silver, and Bronze. You could, for example, create provider vDCs called “Gold,” “Silver,” and “Bronze,” and then you could create customer organization virtual datacenters inside each one. As a result, the organizations could have those three different tiers of service. Alternatively, they could subscribe to just one tier of service, e. g. they just have an organizational vDC inside of the Bronze provider vDC. You need to first create at least one provider vDC, which is going to link to a single resource pool from a single... --- ### Command Line WMI: Formatting Data > In the conclusion of this three-part series, Jeff Hicks looks at some advanced ways of formatting data. - Published: 2012-04-26 - Modified: 2024-09-04 - URL: https://petri.com/command-line-wmi-part-3/ - Categories: Windows Server - Article Type: Overview In the conclusion of this series on Command Line WMI, Jeff looks at some advanced ways of formatting data. In the last few articles, we’ve been learning how to take advantage of Windows Management Instrumentation, or WMI. Specifically, in part one we we looked at basic syntax and querying for the local computer, discovering ways to gather WMI information using the command line tool WMIC. In part two, we learned how to query remote machines and work with WMIC right from the command line. Now, in part three, we'll take a closer look at some advanced ways of formatting data. If you’ve been following along, you’ve seen me use expressions like this to format the output:   ​wmic:rootcli>cpu list brief /format:list Caption=Intel64 Family 6 Model 30 Stepping 5 DeviceID=CPU0 Manufacturer=GenuineIntel MaxClockSpeed=1600 Name=Intel(R) Core(TM) i7 CPU Q 720 @ 1. 60GHz SocketDesignation=CPU 1 Otherwise, WMIC would have displayed everything as one long line. But where did I discover /format? This option is a switch parameter for GET and LIST. Run a command like this, using any alias: ​wmic:rootcli>os list /? You’ll see a list of switch parameters. Each of these has its own help. ​wmic:rootcli>os list /format /? Keyword/XSL filename to process XML results. USAGE: /FORMAT: NOTE: : ((| : )). where :((=)). NOTE: is a or an . Keywords: CSV HFORM HTABLE LIST MOF RAWXML TABLE VALUE XML htable-sortby htable-sortby. xsl texttablewsys texttablewsys. xsl wmiclimofformat wmiclimofformat. xsl wmiclitableformat wmiclitableformat. xsl wmiclitableformatnosys wmiclitableformatnosys. xsl wmiclivalueformat wmiclivalueformat. xsl You’ve already seen me use a list and table as the default. What about creating a CSV file? ​wmic:rootcli>logicaldisk where drivetype=3 get Name,Size,Freespace,SystemName... --- ### Setting up a Multi-Subnet Infrastructure without a Router between Subnets > Learn how to work with a multi-site environment without having access to a "true" router. - Published: 2012-04-25 - Modified: 2024-12-03 - URL: https://petri.com/set-up-a-multi-subnet-infrastructure-without-a-router/ - Categories: Networking - Article Type: How To Are you looking to work with a multi-site environment but don't have a “true” router to work with? In this post, J. Peter Bruzzese and Ed Liberman team up to show you a relatively simple solution, as long as you have a decent grasp of subnetting, an understanding of AD Sites and Services, and basic network troubleshooting and testing. Coauthored By: Ed Liberman Overview In a lab environment, you oftentimes want to mimic what you will see in a production network. The problem is that you often don’t have the equipment to give you a fair mimic of the real world. This is becoming less of an issue with virtualization, because you can set up multiple VMs on a single system so long as it has the memory to handle the load you’re putting upon it. Where you might come up short is if you wish to work with a multi-site environment but do not have a “true” router to work with. In this case, there is a solution that is relatively simple but requires you to have a decent grasp of subnetting. There are many worthwhile reasons for learning how to do this. Two in particular that we came across was: to obtain a greater understanding of Active Directory sites and site replication to perform lab-work with something like cross-site Exchange High Availability to perform datacenter switchovers Our Setup You don’t need to have exactly the same equipment and setup that we have here. You just need to have basically what we have in play for this to work. We’re working with a single Dell T110 server running Windows Server 2008 R2 with Hyper-V. We have a single NIC that is being used by Hyper-V as a virtual switch with a virtual NIC running on the 192. 168. 1. x network. The IP address... --- ### Converting VMware VMDK Files to Microsoft's VHD Format and VHD to VMDK > How to convert VMware VMDK Files to Microsoft's VHD Format and VHD to VMDK using Starwind's V2V Converter utility. - Published: 2012-04-24 - Modified: 2024-09-04 - URL: https://petri.com/converting-vmware-files/ - Categories: Virtualization - Tags: converter, v2v, vhd, virtual disk, Virtualization, virtualize, vmdk, vmware - Article Type: How To There are two popular and mutually incompatible virtual disk file formats in common use today: VMware's VMDK format and Microsoft's VHD format. In order to attach a VHD disk to a VMware virtual machine, or vice-versa, you have to convert it first. This guide by virtualization and storage expert Tom Finnis explains how to use Starwind's V2V Converter utility to do just that, with a detailed example explaining how to convert a VMDK virtual disk to VHD format and then mount it in a Windows system in order to edit the files it contains. Overview VMware's virtualization products, such as ESXi and Workstation, all use versions of the VMDK file format for their virtual hard disk files - essentially an entire hard disk in a . vmdk file. In contrast, Microsoft has standardized on the VHD file format for the same purpose, used by Virtual PC and Hyper-V, as well as being natively supported by the Windows 2008/7 file system. You can mount a vmdk file within Windows but you need to have the VMware Disk Mount utility installed, whilst if you have Windows 2008 or 7 then you can "attach" a VHD file and give it its own drive letter. When Should You Use This Guide? Don't use this guide if you are looking to convert an operating system boot drive, e. g. to migrate a Virtual PC VM to an ESXi server, as there are several additional steps you would need to carry out to make the virtual disk bootable. Instead, use a dedicated conversion utility such as the VMware Converter Standalone, or the Converter plug-in for vSphere as explained in this Petri article: "Importing Hyper-V VMs Into vSphere. " However, if it's just the data files you need to access, then this is a quick and easy way to do it - for example, if you have a corrupted Windows 2008 ESXi VM that no longer boots and you want to access the system disk in order to replace some dll files. Alternatively, you might have a data drive on a Hyper-V VM that you want to copy... --- ### 3 Free April Webinars for IT Pros - Published: 2012-04-24 - Modified: 2024-11-19 - URL: https://petri.com/it-webinars-april-2012/ - Categories: Virtualization - Article Type: News Webinars are a great way to learn without spending much time or money. They give you a chance to ask questions and interact with the top industry experts. Learn about 3 free webinars geared specifically for IT Pors happening this week. Webinars are a great way to learn. They're mostly free, usually take no longer than an hour and allow you to interact with the top industry experts. Today I'd like to share three upcoming webinars that you can take advantage of this week. Wednesday, April 25th, 2012: What Every Growing Business Must Know About Desktop Virtualization Desktop virtualization isn't new, which means that Desktop Virtualization Solutions (DVS) have had a chance to mature. They are more affordable and more available than ever, and they're easier to implement than you might think. And as more businesses are relying on remote workers, desktop virtualization is becoming more important. In this live webinar, David Davis, David Reoch and Dan Reis will cover the benefits and different types of Desktop Virtualization Solutions, security concerns associated with utilizing these solutions and much more. Learn more and register for this free webinar: What Every Growing Business Must Know About Desktop Virtualization Thursday April 26th, 2012: Near-Continuous Data Protection for Hyper-V Data protection is on every system administrator's mind, and Continuous Data Protection (CDP), also known as continuous backup or real-time backup, is usually the best solution for a virtualized environment. The main advantage of CDP is that you no longer need to specify the recovery time until you do your restore. The downside of CDP is the cost. In this live webinar, Chris Henley from Veeam will explain Continuous Data Protection and how you can achieve near-continuous data protection at a fraction of cost of CDP... --- ### Delivering IT as a Service with Microsoft System Center 2012 > An overview of some of the concepts surrounding the development of delivering ITaaS in enterprise IT organizations. - Published: 2012-04-23 - Modified: 2024-09-04 - URL: https://petri.com/intro-to-itaas-with-microsoft-system-center-2012/ - Categories: Cloud Computing - Tags: IT as a Service, ITaaS, ITIL, Microsoft, Microsoft System Center 2012, SCCM, SCOM, scvmm, System Center - Article Type: Overview Delivering IT as a service (ITaaS) reduces errors and increases end user satisfaction. This post by IT veteran Michael Simmons provides an overview of some of the concepts surrounding the development of delivering ITaaS in enterprise organizations. Simmons lists all the Microsoft System Center 2012 products and a description of what each one does. Overview Across IT, the landscape is constantly changing.  Whether it’s changes to the operating systems, adoption of virtualization, or the implementation of a framework such as Microsoft Operations Framework (MOF) or Information Technology Infrastructure Library (ITIL) across your enterprise, there is a steady stream of changes not only to the services provided, but also to the methods that they are provided. This article is intended to provide an overview of some of the concepts surrounding the development of delivering ITaaS (IT as a Service) in enterprise IT organizations. What it Means to Deliver IT as a Service To deliver IT as a service, an IT organization prepares their services to be used by their customers where and when the customer is in charge of the use of the services. To illustrate this, consider the service of installing software on a user's computer. In a traditional IT service organization, a customer would put in a request from a service desk, and then a ticket would be assigned to either have a configuration manager administrator assign the software to the users, or to a desktop tech to go install the software.   By contrast, when an IT organization has provided the delivery of software installations as a service, the end users are able to pick and choose what software is available to them, and install it themselves without error. The commoditization of IT services in this way reduces errors. The services are automated, reliable, and timely.  The customers get to choose when... --- ### VMware vCloud Director Essentials: Introduction and Setup > Learn how to set up vCloud Director from the Web interface, and how to create your first Provider Virtual Datacenter and VM Deployment Template. - Published: 2012-04-20 - Modified: 2024-09-04 - URL: https://petri.com/setting-up-vmware-vcloud-director-part-1/ - Categories: Virtualization - Article Type: Overview Interested in learning more about VMware vCloud Director? In the first of this two-part series, we’ll show you how to set up vCloud Director from the web interface. Welcome to this two-part series on VMware vCloud Director. In part one, we’ll give you an overview of vCloud Director administration. We’ll go into the web Interface that vCloud Director admins would spend their time in, and then we’ll go through the different tabs and options and other things you might typically see when administering vCloud Director. From there, we’ll move on and perform the first step in setting up vCloud Director from the Web Interface, which is to connect it to a vCenter Server and a vShield Manager virtual appliance. In part two of this series, we’ll show you how to create a Provider Virtual Datacenter and VM Deployment Template. (Instructional video below provides a walkthrough of the steps contained in this article. ) vCloud Director Administration Overview When it comes to administering VMware vCloud Director, things are primarily done at the Web Interface. The Web Interface is rich and it really has everything that you’ll need to administer vCloud Director. Whether you’re an administrator or an end user, you’ll spend most of your time with vCloud Director’s Web Interface. To access the Web Interface, you can just type in the IP address or the domain name of your vCloud Director virtual machine or physical server (if you chose that route) into your Web browser. That’s most likely going to redirect you to: https://name-of-your-server/cloudwhere name-of-your-server is just the IP address/name of your vCloud Director server. If you created a static DNS entry or... --- ### Command Line WMI: Query Remote Machines > Jeff Hicks teachs us how to work with WMIC directly from the command line to query remote machines. - Published: 2012-04-19 - Modified: 2012-04-19 - URL: https://petri.com/command-line-wmi-part-2/ - Categories: Windows Server - Article Type: Overview The ability to gather information from remote computers is where WMI can really come in handy. In Part 2 of this three-part series, Jeff Hicks shows how to query remote machines and work with WMIC right from the command line. Welcome back to our look at Windows Management Instrumentation, or WMI. In part one we we looked at basic syntax and querying for the local computer, discovering ways to gather WMI information using the command line tool WMIC. But where WMI really is worth your time is the ability to gather information from remote computers. Generally, most WMI classes are the same across operating systems, so I try to test locally first and then run my command against remote computers. Today in part two of this three-part series, we'll learn how to query remote machines and work with WMIC right from the command line. Later, in part three, we'll take a closer look at some advanced ways of formatting data. However, let me take a moment to point out that WMI continues to change with each new operating system release. New classes are added and sometimes even new properties. Just because you can get information from a Windows 7 computer doesn’t necessarily mean Windows XP has the same information. If you are ever in doubt, check the documentation on MSDSN (Win32 Classes). Querying Remote Computers So, let me go back into an interactive WMIC session on my Windows 7 computer. ​C:\>wmic wmic:root\cli> After a little trial and error to get the syntax right, I have a command that works. ​wmic:root\cli>computersystem list brief /format:list Domain=JDHITSOLUTIONS Manufacturer=TOSHIBA Model=Qosmio X505 Name=SERENITY PrimaryOwnerName=Jeffery Hicks TotalPhysicalMemory=8577855488 To connect to a remote computer, all I have to do is insert the /Node parameter in front. When... --- ### Cisco Unified Computing System: UCS Manager Simulator Overview > This article takes a look at the simulator installation prerequisites, basic setup configuration and UCSPE limitations. - Published: 2012-04-18 - Modified: 2024-09-04 - URL: https://petri.com/cisco-ucs-manager-simulator/ - Categories: Networking - Article Type: Overview Are you looking to gain experience with the Cisco Unified Computing System (UCS) platform, but don't have access to a UCS lab? No problem! Sean Wilkins shows you how to use UCS Platform Emulator (UCSPE), Cisco's perfect low cost solution. Overview For those looking to gain experience with the Cisco Unified Computing System (UCS) platform without access to a UCS lab, Cisco has developed the UCS Platform Emulator (UCSPE). Because the UCS platform requires a large investment to deploy in a lab, the UCSPE offers a perfect low cost solution. The UCSPE is a packaged VMware virtual machine and offers most of the capabilities of the latest UCS platform; this can be used by candidates looking to gain experience or for experienced engineers looking to test a configuration. This article takes a look at the simulator installation prerequisites, basic setup configuration and UCSPE limitations. If you're interested, check out my previous articles on Cisco UCS: Cisco Unified Computing System: UCS Manager Overview Cisco Unified Computing System: UCS Components Cisco Unified Computing System: UCS Service Profiles UCSPE Prerequisites Before UCSPE can be used, the physical system slated to be used for installation must meet some minimum requirements, including: 1 GB of free RAM 8 GB of free HD space At least a 1. 8 GHz single-core processor Along with these physical system requirements, the machine must also have a VMware product installed that will run the UCSPE virtual machine; these products include one of the following: VMware player VMware Workstation (on Windows OS) VMware Fusion (on MAC OS) VMware ESX hypervisor To run the UCS Manager GUI, the Firefox browser is required, along with an installation of the Java Runtime Environment 1. 6 or higher. UCSPE... --- ### Introduction to Microsoft's Private Cloud with System Center 2012 > Learn more about Microsoft's Private Cloud, which allows a faster delivery of services, and a more categorical approach to your datacenters. - Published: 2012-04-17 - Modified: 2024-09-24 - URL: https://petri.com/intro-to-private-cloud-system-center-2012/ - Categories: Cloud Computing - Tags: Citrix, cloud computing, Microsoft, Private Cloud, scvmm, System Center, Virtual Machine Manager, vmm, vmware - Article Type: Overview Introducing Microsoft's Private Cloud, which allows a faster delivery of services, and a more categorical approach to your datacenters and your method of delivering services while utilizing System Center 2012. With System Center 2012, Microsoft introduces data center administrators to their solution for hosting and administering private clouds. Private clouds are an abstraction of all of the hardware that already exists in your data center: servers, clusters, networking, and storage, but they’re more than just a collection of hardware. Private clouds allow a faster delivery of services, and a more categorical approach to your datacenters and your method of delivering services. You can span geographies with a single private cloud, or you can have multiple clouds located in the same datacenter. Private clouds leverage 4 concepts in making the whole cloud function correctly: abstraction heterogeneity access control Each one plays a part in how your private clouds will function. Abstraction You can abstract the hardware in your datacenters into logical private clouds. Using Microsoft System Center 2012, you can create private clouds which are built upon hosts running Citrix XenServer, VMware's ESX, and Microsoft’s Hyper-V. The private cloud acts as a common fabric which runs throughout the cloud, and makes it possible to run applications all together. Private clouds are logical, not physical. The hardware that goes into making the cloud is not the cloud itself. Instead, you can have hardware that serves multiple clouds, and clouds that span multiple hardware and even multiple datacenters in geographically diverse locations. Download: For instance, if you had 2 datacenters on opposite sides of the world, and you wanted SharePoint servers in each datacenter, you... --- ### How to Determine which Attribute will be Saved for a Deleted Active Directory Object > Daniel Petri shows how to determine which attributes will be saved for a deleted object. - Published: 2012-04-16 - Modified: 2024-09-04 - URL: https://petri.com/attributes-deleted-active-directory-object/ - Categories: Active Directory (AD) - Article Type: How To In this post, Daniel Petri shows how to determine which attributes will be saved for a deleted object. To perform the steps in this article, you must be a member of the Schema Admins group, and have network connectivity with the DC that holds the Schema Master FSMO role. Overview As you probably know by now, each Active Directory object (or “Object Class”) contains a lot of additional information that is related to the object and provides additional information about it, whether it’s a user account or computer account, or any other object. These fields are also known as “attributes. ” These attributes are defined in the Active Directory Schema, which configures the attribute properties, such as its name, the type of information it contains, and a few other parameters. Some of these attributes are mandatory (for example, for a user object – the logon name or sAMAccountName), others are optional (again, for a user object, an example would be the zip code or postalAddress). When you create an object, some of these attributes are automatically populated (for example, the object’s distinguished name, its SID or objectSid, if it has one, and so on), and others are left blank until you enter information into them. When we delete an object, by default, not all the attributes are saved with the object and if we look for this object (after the deletion), we will be able to see only those specific attributes that were not removed when the object was deleted. This is a list of attributes that are retained by default after the object deletion: attributeID attributeSyntax dnReferenceUpdate dNSHostName flatName governsID groupType instanceType lDAPDisplayName legacyExchangeDN mS-DS-CreatorSID mSMQOwnerID nCName objectClass objectGUID objectSid oMSyntax proxiedObejctName replPropertyMetaData sAMAccountName securityIdentifier sIDHistory subClassOf systemFlags trustPartner trustDirection trustType trustAttributes... --- ### Troubleshooting VLAN Switch Problems: No Connectivity > Learn how to troubleshoot VLAN and switch problems in the conclusion of this two-part series by seasoned Cisco veteran Joe Rinehart. - Published: 2012-04-13 - Modified: 2024-09-04 - URL: https://petri.com/troubleshoot-vlan-switch-part-2/ - Categories: Networking - Article Type: Overview In the conclusion of this two-part video post, seasoned Cisco professional and CCIE Joe Rinehart takes you through step-by-step how to troubleshoot VLAN and switch problems, specifically a "No Connectivity" issue. Having already solved your first trouble ticket for the day, which basically was an "Internet is down" issue (including common switch issues, VLAN-related issues, and spanning-tree issues), you're now ready to tackle your second trouble ticket. This time, we're looking into a "No connectivity" issue. (Instructional video below provides a walkthrough of the steps contained in this article. ) Just like the first one, you pick up the ticket, assign it to yourself, contact the requester to inform him/her that you are already actively working on the problem, and perform troubleshooting and resolution. Here's a screenshot of this particular request: You start by going back to some of the devices you were looking at earlier. After some initial investigation, you learn that users aren’t even getting any DHCP addresses. As always, you begin troubleshooting at the Physical Layer. You execute a show ip interface brief to get a quick summary, and you see that everything is doing well from there. You follow that up with a command that will give you more detailed information: show interfaces All relevant devices are still showing Up/Up. Just to make sure you eliminate any potential problem, you issue the show controllers fastEthernet 0/0 command. The results tell you that nothing is really wrong there. For instance, there are no collisions... ... it is autonegotiated ... ... and so on. At this point, you presume that the problem is not physical. You then execute the show cdp neighbors command... . --- ### Command Line WMI: Basic Syntax and Querying > Learn how to use Windows Management Instrumentation (WMI) as a database you can query in part one of this series. - Published: 2012-04-12 - Modified: 2012-04-12 - URL: https://petri.com/command-line-wmi-part-1/ - Categories: Windows Server - Article Type: Overview In part 1 of this series, Jeff Hicks shows you how to take advantage of Windows Management Instrumentation (WMI) and how to use it as a database you can query, without a single bit of scripting or using a PowerShell command. If you are an IT Pro responsible for managing desktops and/or servers in a Windows environment, then you have to know how to take advantage of Windows Management Instrumentation, or WMI -- Microsoft’s implementation of an industry standard for providing management information to all of the software and hardware elements that make up a modern Windows-based computer. This is a three-part series on Windows Management Instrumentation. Today we'll look at basic syntax and querying for the local computer, discovering ways to gather WMI information using the command line tool WMIC. In part two, we'll learn how to query remote machines and work with WMIC right from the command line. And finally, in part three we'll take a closer look at some advanced ways of formatting data. I’ll cover the nuts and bolts in a future article, but for now think of WMI as a database that you can query. The “tables” are WMI classes that describe things like the BIOS, operating system, logical disk, or product. Many management software packages query WMI for their information and you can do the same thing. I’m going to show you how and you don’t have to do a single bit of scripting or even use a single PowerShell command. Windows XP shipped with a command line utility called WMIC. This tool offered command line access to WMI locally and remotely. Here’s a little tidbit: the man behind WMIC was Jeffrey Snover, who went on to bring us PowerShell. After using... --- ### Cisco First Hop Redundancy Protocols: HSRP, VRRP, GLBP > How to implement a first-hop redundancy protocol, using Cisco's Hot Standby Router Protocol (HSRP), Virtual Router Redundancy Protocol (VRRP), and Gateway Load Balancing Protocol (GLBP). - Published: 2012-04-11 - Modified: 2012-04-11 - URL: https://petri.com/cisco-first-hop-redundancy-protocols/ - Categories: Cisco - Tags: Editor's Pick - Article Type: How To, Overview Sean Wilkins explains how to implement a first-hop redundancy protocol, using Cisco's Hot Standby Router Protocol (HSRP), Virtual Router Redundancy Protocol (VRRP), and Gateway Load Balancing Protocol (GLBP). This article gives an overview of these protocols and describes how they differ. Overview When designing a network, one of the common things to focus on after simple access is how the network will deal with failure. Part of this process is trying to build as much redundancy into the design as financially possible, while also maintaining performance and manageability. From the client’s perspective, the first piece of the network they deal without, outside of their local subnet, is the default gateway; if this gateway were to go down, then access to an entire subnet (at least) would go down. One of the ways to deal with this is to implement a first hop redundancy protocol. On Cisco equipment, there are a couple of different options to choose from, including Hot Standby Router Protocol (HSRP), Virtual Router Redundancy Protocol (VRRP) and Gateway Load Balancing Protocol (GLBP). This article gives an overview of these options and how they differ. Hot Standby Router Protocol (HSRP) HSRP is a Cisco proprietary protocol that enables the network engineer to configure multiple redundant routers that exist on the same subnet; each can be used as a gateway for the devices on the subnet. Without HSRP, each of the devices on the subnet would need to be individually configured to use a specific gateway, effectively not providing redundancy but limiting the number of clients that would be affected if a router were to go down. With HSRP, a group of routers (gateways) will be configured together, and a single HSRP virtual IP address and MAC address... --- ### How to Search for Deleted Objects in Active Directory > When an object is deleted in Active Directory, it isn't completely removed at first. In this article, we'll show you how to find these deleted objects. - Published: 2012-04-10 - Modified: 2024-09-04 - URL: https://petri.com/deleted-objects-in-active-directory/ - Categories: Active Directory (AD) - Article Type: How To If you have ever wondered where you can find an object that was deleted from the Archive Directory or if you ever wanted to see the details of your lost objects, this post by Daniel Petri can help you. With these instructions, you will have the ability to recover deleted objects. Overview If you have ever wondered where you can find an object that was deleted from the Active Directory or if you ever wished to see the details of your lost objects, this article can help you. Let’s say you were called in to assist a Systems Administrator that could swear he used to have a specific computer account but now it’s gone and you have to find it – with these instructions, you have the ability to do it! Searching for Deleted Objects in Active Directory Before we get started, just a quick reminder. When an object is deleted from Active Directory, it is not immediately erased, and instead it is marked for future deletion. The marker used to designate that an AD object is scheduled to be destroyed is called a "tombstone. " A tombstone is an object whose IsDeleted property has be set to True, and it indicates that the object has been deleted but not removed from the directory, much like a deleted file is removed from the file allocation table but the data is not actually removed from the drive. The directory service moves tombstone objects to the Deleted Objects container, where they remain until the garbage collection process removes the objects (this process is performed every 12 hours by default). The length of time tombstone objects remain in the directory service before being deleted is either 60 days for Windows 2000/2003 Active Directory, or 180 days for Windows Server 2003 SP1 Active... --- ### How to Resize Windows Virtual Machine Disks > Storage expert Tom Finnis shows how to re-size existing drives in Windows, - Published: 2012-04-09 - Modified: 2024-11-19 - URL: https://petri.com/resize-virtual-disks/ - Categories: Backup & Storage - Article Type: How To As fast as hard drive capacities grow, so does the amount of data users expect to store on them. In this post, storage expert Tom Finnis shows how to re-size existing drives in Windows, when what may have seemed like plenty of storage when you first installed a Windows VM is now not enough. Overview Last week at the office, Annalisa, one of our helpdesk technicians, asked me to assist her with a problem which at first I thought had a very simple solution, but in fact turned out to be more complicated. The file server for one of our clients was rapidly running out of free space on its main data drive, and there were no files that could be deleted or moved, so expanding the drive seemed the best option. Adding a second drive might be easier, but the client's shared folder structure didn't lend itself to being split - they were used to everything being under one root folder. The reason I thought this should be a simple job was because this client has a vSphere based virtual infrastructure, with a pair of ESXi hosts and a large SAN that all their virtual machines run on. It would just be a case of increasing the size of the server's virtual disk, then expanding that disk within Windows to use the extra space; it wouldn't even need a reboot to make more free space available. All completely true, as Annalisa pointed out, if it was a Windows 2008 Server (or Vista/Win7) VM, but this was in fact a Windows 2003 Server (the same applies for WinXP and other older Windows versions).  Although the Disk Management console showed that the space was available, it didn't provide any option to use it other than creating a new partition: In fact, like most things, it's... --- ### Troubleshooting VLAN and Switch Problems > Learn how to troubleshoot VLAN and switch problems in the first of this two-part series by Joe Rinehart. Video Tutorial. - Published: 2012-04-06 - Modified: 2024-09-04 - URL: https://petri.com/troubleshoot-vlan-switch/ - Categories: Networking - Article Type: Overview In Part 1 of this two-part video post, seasoned Cisco professional Joe Rinehart takes you through step-by-step how to troubleshoot VLAN and switch problems. He discusses common general switch issues, VLAN related issues, and spanning-tree issues, as well as VLAN/switch troubleshooting techniques. Let’s talk about the essential part of troubleshooting VLAN and switch problems. In this post, we’ll discuss common general switch issues, VLAN related issues, and spanning-tree issues. We’ll also cover VLAN/switch troubleshooting techniques. Later, in part two I'll look further into a "No connectivity" issue. (Instructional video below provides a walkthrough of the steps contained in this article. ) Common General Switch Issues One of the things to keep in mind is that there are some things that can just generally happen on a switch. One example is a physical or connectivity related issue. Physical Interface/Connectivity Issues Symptoms Interface is down/down - This means it’s not receiving keepalives and it’s not physically connected Interface is up/down - Meaning, it’s physically up but the Layer 2 protocol is down Interface is administratively down Solutions Check your cabling. Always start by assuming the problem is with the cable. Swap with a known good cable. This may not be the case all the time, but in some instances, you might have to substitute the crossover cable. It may not have the auto-MDIX crossover function, so you may actually have to do something manually. You can also verify that the hardware is functional. You can use the show controllers command to see if there’s something physically wrong with it, or try a different port on the switch to see if the same problem is happening. Check your interface. Verify that the interface is operational and use the no shutdown command. That would take... --- ### Find Service Pack Information > Gather service pack info by using the command line tool, WMIC.EXE, as well as Windows PowerShell. - Published: 2012-04-05 - Modified: 2012-04-05 - URL: https://petri.com/find-service-pack-info/ - Categories: Windows Client OS - Article Type: How To Are you having issues figuring out what service packs you have installed on your device? Jeff Hicks show you how to gather this info using the command line tool, WMIC.EXE, as well as by using Windows PowerShell. Overview The one constant about Windows operating systems is that there is always an update. Major updates are delivered as service packs. In fact, some people won’t even upgrade to a new operating system until the first service pack has been released. For the rest of us, and those of you who wait until SP1, you probably need a way to get a handle on what OS service packs you have installed. Assuming you don’t have some sort of system or enterprise management solution in place, you can gather this information yourself pretty easily. Service pack information is stored in WMI as part of the Win32_OperatingSystem class. So to find out what service pack a particular computer is running, all you need to do is query WMI, and this doesn’t have to require complex scripting. When you query WMI, you will get an instance back of the Win32_OperatingSystem class. The properties we are most interested in are ServicePackMajorVersion and ServicePackMinorVersion, although I can’t think of an incremental OS service pack. The other useful property is CSDVersion, which displays service pack information in a “friendly” format. First, let me show you how to gather this information using the command line tool, WMIC. EXE. ​C:\>wmic os get servicepackmajorversion,csdversion CSDVersion ServicePackMajorVersion Service Pack 1 1 This command queried the local computer for the 2 properties. Querying a few remote machines isn’t much more work. ​C:\>wmic /node:quark,'jdhit-dc01' os get servicepackmajorversion,csdversion,csname,caption /format:list Caption=Microsoft Windows 7 Professional CSDVersion=Service Pack 1 CSName=QUARK ServicePackMajorVersion=1 Caption=Microsoft(R) Windows(R)... --- ### EIGRP Metrics Troubleshooting > Enhanced Interior Gateway Routing Protocol (EIGRP), how its metric is calculated, and how this info can be used with traffic. - Published: 2012-04-04 - Modified: 2024-09-04 - URL: https://petri.com/eigrp-metrics-troubleshooting/ - Categories: Networking - Article Type: Overview Networking Consultant Sean Wilkins takes a look at the Enhanced Interior Gateway Routing Protocol (EIGRP), how its metric is calculated, and how this information can be used to ensure that traffic is taking the path that is expected. Overview When implementing any routing protocol, it is vital to have a handle on how the protocol operates and makes decisions. Without this knowledge, it is almost impossible to check and make sure that the protocol is configured properly and is operating as expected. This article takes a look at the Enhanced Interior Gateway Routing Protocol (EIGRP), how its metric is calculated, and how this information can be used to ensure that traffic is taking the path that is expected. EIGRP Metric Calculation Unlike OSPF, the EIGRP metric can be complex to calculate and is calculated differently depending on the configuration of the EIGRP device. By default, the EIGRP metric is calculated as shown in Figure 1:   Figure 1 - EIGRP Default Metric Calculation As shown in Figure 1, by default, the EIGRP metric only takes into account the bandwidth and delay parameters of a network path to calculate the metric. It does have the ability to take into account a number of additional parameters, including load and reliability. These are reflected in the complete EIGRP metric, which is shown in Figure 2:  Figure 2 - EIGRP Metric Calculation The k-values shown in Figure 2 can be used to alter the metric and give additional weight to certain network parameters. On most modern networks, the default k-values and default metric calculation are used. Figure 3 displays a simple network topology that will be used to calculate a sample EIGRP metric.  Figure 3... --- ### Check If CPU Supports Second Level Address Translation (SLAT) > Learn about the specific requirements for the embedded Hyper-V feature that Windows 8 Client offers, which is to have a CPU with SLAT capabilities. - Published: 2012-04-03 - Modified: 2024-09-04 - URL: https://petri.com/check-cpu-slat-support/ - Categories: Windows Server - Article Type: How To Want to know if your CPU supports SLAT (Second Level Address Translation)? In this post, Daniel Petri goes over the specific requirements for the embedded Hyper-V feature that Windows 8 Client offers. Overview Windows Server “8” Beta is now available for evaluation; you can download it from Microsoft. Microsoft lists the system requirement for Windows 8 installation as follows: Processor: 1 gigahertz (GHz) or faster RAM: 1 gigabyte (GB) (32-bit) or 2 GB (64-bit) Hard disk space: 16 GB (32-bit) or 20 GB (64-bit) Graphics card: Microsoft DirectX 9 graphics device or higher Other new Windows 8 features have some additional hardware requirements, but in this article I will focus on one of the specific requirements for the embedded Hyper-V feature that Windows 8 Client offers, which is to have a CPU with Second Level Address Translation (SLAT) capabilities. Note that SLAT can also be enabled at the BIOS. Note: While SLAT is a requirement from the Windows 8 Client perspective (i. e. you cannot install the Hyper-V role on the Windows 8 Client without having a CPU that supports SLAT), it is NOT a mandatory requirement on Windows 8 Server (i. e. while lacking SLAT will affect VM performance, it is still possible to run the Hyper-V role on a Windows 8 Server without SLAT). What is SLAT? SLAT or Second Level Address Translation, is a technology that was applied on Intel and AMD processors. Intel’s SLAT technology is represented as EPT (Extended Page Table). This technology is available in processors with virtualization support: core i7, i5, i3, Pentium G6950 and other appropriate Xeons. It is not available in Core 2 based or other earlier Intel... --- ### Deciding How to Store Data with the Mobile Cloud > Learn what data you should be saving on your mobile device using the Mobile Cloud. - Published: 2012-04-02 - Modified: 2024-11-19 - URL: https://petri.com/storing-data-with-mobile-cloud/ - Categories: Cloud Computing - Article Type: Overview You might be wondering if it's safe to keep sensitive files and information on your mobile device. IT veteran Mike Danseglio discusses how to decide what data to save on your device using the Mobile Cloud, as well as three questions you should ask yourself before safely saving your data. Overview When the topic of mobile cloud computing comes up, one of the first questions I hear is centered on data. Usually it is an iPad or Android tablet user who finds some useful productivity applications and is now considering working remotely, perhaps from a coffee shop or a school sporting event. The user wants to access data on this device outside the office. So they ask a question like, “Is it safe to keep sensitive files and information on my device? ” Personally, I love that this question gets asked because it illustrates that users are aware of the need for data security. As wonderful as the awareness is, however, the question still stands and demands an answer. There is no automatic answer to the question of mobile data storage. To properly determine whether data should be stored on the device, the cloud application, the corporate server, or some combination of these, requires some additional information. I always ask the user three questions that get me enough information to make a confident decision. What Data Are You Accessing? Some information, such as electronic medical records (EMR) and financial transactions, are governed by laws and industry guidelines. This data must not be accessed from or stored outside secure systems that your organization directly manages. Other data should be handled on a case-by-case basis and subject to your data classification system. You do have a data classification system, don’t you? What applications are you using? Some applications are more trustworthy than others... . --- ### Remote Desktop Services in Windows Server 2008 > This article describes what the components of Remote Desktop Services are and how they relate to those found in past versions of Windows Server. - Published: 2012-03-30 - Modified: 2024-09-04 - URL: https://petri.com/remote-desktop-services-windows-server-2008/ - Categories: Windows Server - Article Type: Overview In this video post, Ed Liberman describes what the components of Remote Desktop Services in Windows Server 2008 R2 are, and how they relate to those found in past versions of Windows Server. Overview Remote Desktop Services is a role in Windows Server 2008 R2 that provides remote access to sessions running on centralized servers. If you’ve tried Windows Server 2008, then you’ve probably encountered what used to be known as Terminal Services. That’s what Remote Desktop Services, or RDS, really is. Basically, RDS provides remote access to sessions like: Session-based desktops - You can connect to a session of the actual desktop on the server. Virtual machine-based desktops - You can connect to a virtual machine. Applications - You can even connect to a session of an application running on a server. Some of the advancements that have been made allow us not only to access these remote sessions from within the corporate network but also from just about any other network, including the Internet. RDS Role Services There’s a number of different role services that fall under RDS. This includes: RD (Remote Desktop) Session Host - This is the most important RDS role service. Without it, you can’t have Remote Desktop Services. That’s because the Session Host is the server responsible for hosting the sessions that are going to be accessed remotely. RD Virtualization Host - This supports the Virtual Desktop Infrastructure or VDI. RD Licensing - Manages RDS Client Access Licenses or CALs. In order to access a remote session, you need to have a license (or CAL) to do so. The server that validates that a client has a license to access a session on the Session Host is... --- ### Integrating Microsoft Excel with PowerShell: Reading Data > In the conclusion of this three-part series, learn how to read data from an Excel file, using PowerShell. - Published: 2012-03-29 - Modified: 2024-09-04 - URL: https://petri.com/export-to-excel-with-powershell-part-3/ - Categories: PowerShell - Tags: Advanced, Excel - Article Type: How To In part three of this series, learn how to read data from an Excel file using PowerShell. Welcome back to this three-part series on Integrating Microsoft Excel with PowerShell. In the first 2 parts of this series, we looked at ways of writing data to Excel and creating rich reports, as well as some additional formatting options and other items that take advantage of Microsoft Excel. The other half of the story for some IT pros is reading data from an Excel file. The challenge is that you have to know in advance the worksheet layout. It is possible to find the data but that’s a much more complicated situation. I’m going to assume that you have an Excel file that you have worked with before and that you know the data you want. In this case, reading the data with PowerShell is not that difficult. As we did in the first two parts of this series, the first step is to create the Excel application object. ​$xl=New-Object -ComObject "Excel. Application" I’m going to use this Excel file in my script. Figure 1 Excel DataTo open the file, use the Open method from the Workbooks object. ​$wb=$xl. Workbooks. Open($file) $ws=$wb. ActiveSheet The $ws object is our main reference point to the data. The data I want to work with starts in A2. In my test scenario, I might not know how many rows of data I need to process, but as long as I know where to start I can use a Do loop to read the row, get the data, and then advance. ​$Row=2 do { $data=$ws. Range("A$Row"). Text... --- ### OSPF Metrics Troubleshooting > Learn about the Open Shortest Path First (OSPF) routing protocol, how its metric is calculated, and how this info can be used to ensure that traffic is taking the path that is expected. - Published: 2012-03-28 - Modified: 2024-09-04 - URL: https://petri.com/ospf-metrics-troubleshooting/ - Categories: Networking - Article Type: Overview In this post, Networking Consultant Sean Wilkins looks at the Open Shortest Path First (OSPF) routing protocol, how its metric is calculated, and how this info can be used to ensure that traffic is taking the path that is expected. Overview When implementing any routing protocol, it is vital to have a handle on how the protocol operates and makes decisions. Without this knowledge, it is almost impossible to check and make sure that the protocol is configured properly and is operating as expected. This article takes a look at the Open Shortest Path First (OSPF) routing protocol, how its metric is calculated, and how this information can be used to ensure that traffic is taking the path that is expected. OSPF Metric Calculation OSPF has one of the easiest metric calculations; by default, the bandwidth of the outbound interface is used to calculate each part of the route path. The default formula is shown in Figure 1: Figure 1 - OSPF Metric Formula For example, a network contained two routers that were connected together, as shown in Figure 2: Figure 2 - OSPF Metric Sample Topology Assuming that OSPF is configured, R1 would have an OSPF routing table entry for the network that is connected to R2’s F0/1 interface. For traffic from R1 to reach that network it would need to pass through both R1’s F0/0 interface and R2’s F0/1 interface. R2 would calculate the OSPF metric for its F0/1 interface (100,000,000 / 100,000,000 = 1) and R1 would calculate the OSPF metric for its F0/0 interface (100,000,000 / 100,000,000 = 1). Based on this information from R1’s perspective, the OSPF metric to the network off of R2’s F0/1 interface is 2... . --- ### Create an Exchange ActiveSync Configuration Profile for iPhones and iPads > Easily connect multiple iPhones or iPads to email systems using Exchange ActiveSync Configuration Profiles - Published: 2012-03-27 - Modified: 2024-09-04 - URL: https://petri.com/exchange-activesync-configuration-profiles/ - Categories: Exchange Server - Article Type: How To John O'Neill Sr. demonstrates how to save time (and possibly your sanity) when connecting multiple devices to an email system, by showing how to create an Exchange ActiveSync Configuration Profile for your iPhone or iPad. In future articles, he will cover how to add additional functionality to your iOS device configuration profiles. Overview One of the most common tasks when deploying iPhones and iPads into the enterprise is connecting them to the organization's e-mail system. This is simple enough for one or two devices, but what happens when there are 10 or even 100 devices to deploy? In these instances, creating a configuration policy with the iPhone Configuration Utility will save you time and quite possibly a little sanity. Quite often, the email systems being connected to are Microsoft Exchange based so connectivity through Exchange ActiveSync is the preferred method. Exchange ActiveSync offers a number of advantages over other mail connection methods such as IMAP or POP3/SMTP. One major consideration for enterprises is that Exchange ActiveSync allows remote wiping a configured device. If a user ever loses their device, you can remotely wipe all data on it simply and easily. This includes the devices' AES encryption key, rendering any data that could be recovered unusable. Today we'll walk through creating an iOS device configuration profile to connect to e-mail through Exchange ActiveSync. To make this easy, I'll use the free iPhone Configuration Utility from Apple. Configure the General Payload If you’re new to the iPhone Configuration Utility, or iPCU for short, now would be a great time to check out my previous article on the General Payload and creating a basic policy. For those comfortable with the iPCU, let’s forge ahead and launch the software. Click Configuration Profiles, and then click New on the toolbar.  This creates a new profile and... --- ### The Mobile Cloud: Mobile Applications and Cloud Services > This article covers the mobile cloud, whether to should put your applications on the cloud or the device, and what the cloud means to IT professionals. - Published: 2012-03-26 - Modified: 2024-11-19 - URL: https://petri.com/mobile-cloud-applications-and-services/ - Categories: Cloud Computing - Article Type: Overview Should you put your applications in the cloud or on the device? In this post, Dr. Avril Salter discusses the Mobile Cloud, how and when you should use it, and what it means to the IT industry. Overview Mobile applications and cloud services are both increasingly relevant to CIOs and IT decision makers. The IT industry is starting to talk about the Mobile Cloud; however, there is no official definition of what the mobile cloud is or how it will impact the enterprise. Indeed, I moderated a panel a few months ago with top vendors and service providers. I asked each panelist to present their vision of the mobile cloud. To my surprise, there was no commonality or cohesion across the panel. In this and subsequent articles we are going to break down the technical components of the mobile cloud. We are going to look at what is happening in the industry, and discuss the implications to IT professionals. This article considers where you should put your applications, in the cloud or on the device. Do You Put Your Applications in the Cloud or on the Device? To answer this question, we first need to look at the mobile device. The number of mobile phone users worldwide is measured in billions, with most countries exceeding the number of active phones per population by 70%. While the growth of the smartphone and the tablet has been impressive, the growth is measured in millions, and these numbers pale in comparison with the number of mobile phone users. The key question is, "Will these mobile phone users move towards the more expensive smart phone, or will these users prefer a cheap device with pay-as-you-go services in the cloud? " The mobile... --- ### Top 5 Benefits of Server Virtualization > This article takes a look at the top 5 benefits of server virtualization for IT departments. - Published: 2012-03-23 - Modified: 2024-12-03 - URL: https://petri.com/server-virtualization-benefits/ - Categories: Virtualization - Article Type: Overview Why is server virtualization beneficial? Greg Ferro lists in detail the top 5 benefits of server virtualization for IT departments, which includes cost control, better operation with automation, ability to reduce risks with snapshots, storage management, and granular scaling. Overview The surge of server virtualization has produced many benefits for IT departments because it allows for better operational control, lowering of existing cost, and better scaling than we’ve ever had before. Let’s look at the top 5 benefits that server virtualization brings to IT operations, as well as the infrastructure improvements that we also gain by virtualizing our networking, storage, and server platforms. 5. Cost Control The last few years have seen a shift in the computer industry from deploying new applications, new services and new opportunities, to a focus on managing the infrastructure that we already have. The level of innovation of new software and capabilities has now slowed because our operational practices have not managed to keep up. Therefore, many organizations are looking to virtualization to find ways to dramatically simplify the ownership and administration of their existing IT servers. The operational overhead of staffing, powering, backup, hardware, and software maintenance has now become overly significant in IT budgets, and businesses are looking to reduce their costs through virtualization. Learn More About SolarWinds Virtualization Manager. 4. Better Operation with Automation Reducing the operational cost is a difficult issue. On one hand, it’s about using less people and fewer resources to achieve more work. Alternately, automation of simple, repetitive tasks can mean no more tedious drudgery of minor works. Virtualization provides options for all of these problems. VMware is proud of their PowerCLI scripting environment that provides for extensive customization and... --- ### Integrating Microsoft Excel with PowerShell: Create a Rich Excel Doc > In the second of this three-part series, learn how to create a more detailed report straight into Excel using PowerShell. - Published: 2012-03-22 - Modified: 2024-12-03 - URL: https://petri.com/export-to-excel-with-powershell-part-2/ - Categories: PowerShell - Tags: Advanced, Excel - Article Type: How To In the second of this three-part series, Jeff Hicks goes into even more detail about how to create a rich Excel document with PowerShell. In the conclusion of this series, which will be posted next week, he will explain how to look at reading data from Excel files. And we're back with our series on integrating Microsoft Excel with PowerShell. Last time we looked at building a basic report with Microsoft Excel and Windows PowerShell. In some ways, what we created last time isn't that much different than creating a CSV and opening it in Excel. So, if you want to use Excel, let's really use it! In today's post, I'll use the basic demonstration script from last time, but create a richer Excel document. Later, in part three I'll show you how to read data from an Excel file. How to Integrate Microsoft Excel with PowerShell As before, we'll get disk information via WMI and create an Excel application object. Win32_LogicalDisk -ComputerName $computer -Filter "DriveType=3" $xl=New-Object -ComObject "Excel. Application" Like Microsoft Word, a great deal of Excel automation relies on the use in internal constant values like xlDown. I could track down the value and create a variable, or I can load the appropriate classes that contain the required constants. For what I have in mind, I will need to grab the following: $xlTheme= $xlChart= $xlIconSet= $xlDirection= Later, when I want to use xlDown, I can specify it as $xlDirection::xlDown, which you'll see in a bit. For now, I'll write the disk data as I did in Part 1, but now let's add some style. Another way of referencing parts of a spreadsheet is to use a Range from the worksheet object. You can either specify a range by a single cell reference like... --- ### Master Subnetting with Cisco's Subnet Game > Learn how to master IP Subnetting by using Cisco's Subnet Game. Networking Consultant Sean Wilkins teaches you how to use the game and shows why it is beneficial. - Published: 2012-03-21 - Modified: 2024-09-04 - URL: https://petri.com/cisco-subnet-game/ - Categories: Cisco - Article Type: How To, Overview Are you looking for a fun and easy way to learn how to master IP subnetting? In this post, Networking Consultant Sean Wilkins shows one way to master the art of subnetting, by using Cisco's Subnet game. Overview One topic that gives many new network engineers the most trouble is learning and understanding IP subnetting. There are a number of different techniques that have been used to make the learning of subnetting easier, with each technique working for a specific set of individuals. In an effort to sure up the understanding aspect of IP subnetting, Cisco has developed a Subnet game. This game allows the candidate to solve a number of Sci-fish scenarios of IP subnetting problems. This article takes a look at this game and how to use it to further your understanding of IP subnetting. Subnet Game To start with, take a web browser and point it at the following URL: https://learningnetwork. cisco. com/docs/DOC-1802; this will take you the Cisco Learning Network, as seen in Figure 1: Figure 1 - Subnet Game Launch Screen Select the Play Now! link which will open a second window, which launches the Subnets game; this is shown in Figure 2: Figure 2 - Subnet Game Main Screen Take a look over the instructions to understand the basic idea behind the game, and then select the Start link; this will bring up the scenario screen shown in Figure 3: Figure 3 - Subnet Game Scenario Screen Select the Click to continue link to start Level one. This will bring up the Level one screen, which contains a number of different sized boxes; this is shown in Figure 4: Figure 4 - Subnet Game Level 1... --- ### Add Administrative Templates to a Group Policy Object in Windows Server 2008 Domain > Discover how to add administrative templates to group policy objects (GPO) in Windows Server 2008 using the new ADMX file extension. - Published: 2012-03-20 - Modified: 2024-12-03 - URL: https://petri.com/add-administrative-templates-to-gpo/ - Categories: Active Directory (AD) - Article Type: How To Learn about the new XML-based file system in Windows Server 2008 for Administrative Templates for Group Policy Objects. Michael gives a brief overview of these new file types and shows you where they need to go depending on the administrative needs. Overview With Microsoft Windows Server 2008 and 2008 R2, there is a new file format for the Administrative Templates that controls and standardizes the operating system and software in Active Directory domains. Administrative Templates for GPOs are used to set and control the registry. There are hundreds of Administrative Templates available for Windows Server in 2008.  For more details, you can see our article: Understanding Administrative Templates in Windows Server 2008. Administrative Template Types You are not limited to the Administrative Templates that come in Windows Server 2008 by default. For example, if your environment uses Office 2010, you can download and install the Office 2010 Administrative Templates that will allow you to configure settings for almost every aspect of all of the different software components in Office 2010, from the commonly used Word and Excel, to the more specialized Visio and Project. In earlier versions of Windows Server, the Administrative Templates had an . ADM file extension, and were Unicode-based text files. In Windows Server 2008 and 2008 R2, the Administrative Template files are XML files with an ADMX or an ADML extension.  Thankfully, if you still have your Administrative Templates in the classic ADM file type, then you can still use them. They can be installed through the use of the Group Policy Management Console, as described in our previous article, Adding New Administrative Templates to a GPO. If you have one of the new XML-based Administrative Templates, you do not install it through the console in the... --- ### Installing and Testing Citrix VDI-in-a-Box > vExpert David Davis records his experience with Citrix VDI-in-a-box, and shows how to install, configure, and test this affordable and easy to use product. - Published: 2012-03-19 - Modified: 2024-12-03 - URL: https://petri.com/install-citrix-vdi-in-a-box/ - Categories: Virtualization - Article Type: How To In this video post, vExpert David Davis shares his experience with Citrix VDI-in-a-box, and shows how to install, configure, and test this affordable and easy to use product. Learn how to get started with VDI-in-a-box, as well as how virtual desktops are deployed and how end users can connect to and actually use them. Overview As part of a new free video training on desktop virtualization I am creating for TrainSignal, I finally had the chance to check out a product I have been interested in for some time - VDI-in-a-Box. Citrix recently bought Kaviza whose product they renamed "VDI-in-a-Box". I have been interested in Kaviza since VMworld 2010 when they won the Best of VMworld awards but I hadn't had a chance to try the solution until now. I was told that VDI-in-a-Box made implementing VDI / desktop virtualization so easy that anyone could do it. Plus, implementing VDI could be done using free VMware ESXi or free Hyper-V Server AND you didn't even need a storage area network (although high availability is included). The thought of making desktop virtualization EASY and "the norm" for small and medium size companies around the world really intrigues me so I was excited to try VDI-in-a-Box. I recorded my complete installation, initial configuration, and testing of VDI-in-a-Box. I used a single vSphere ESXi server and the Windows AD option for authentication (although AD isn't required). I happen to have a small NAS (Iomega IX4) in my lab and vCenter but those things aren't required. Here's the video: (Instructional video below provides a walkthrough of the steps contained in this article. )Not all companies can afford enterprise-grade desktop virtualization solutions, but that shouldn’t stop small and medium-sized businesses from experiencing desktop virtualization altogether. Citrix Systems has an affordable and easy to use product named VDI-in-a-Box... --- ### Auto Deploy In VMware vSphere 5 > This step-by-step tutorial shows you how to use Auto Deploy, one of VMware vSphere 5's coolest features. Learn how to significantly cut down time normally spent in provisioning vSphere servers. - Published: 2012-03-16 - Modified: 2024-09-24 - URL: https://petri.com/auto-deploy-using-vsphere-5/ - Categories: VMware - Article Type: Overview In this tutorial, vExpert David Davis partners with Elias Khnaser to show you how to use Auto Deploy, one of the coolest features that comes with vSphere 5. Auto Deploy enables admins to significantly cut down time they usually spend in provisioning vSphere servers, and Davis and Khnaser take you through the step-by-step process. Overview One of the great new features of vSphere 5 allows you to roll out pre-configured VMware ESXi hosts, "en masse. " This is the absolute fastest way to have a large vSphere infrastructure up and running, in no time. As part of the VMware vSphere 5 Training I created with Elias Khnaser, Elias created a one hour video on Auto Deploy (yes, there is a lot to know). By the way, if you are preparing for your VCP5, then learning Auto Deploy is on the blueprint and something to be studied. In the 8 minute video sample below, taken from the full course, Elias shows us how to: use PowerCLI to create a deployment rule boot host via PXE to install ESXi view that newly installed host in a vCenter staging profile create a cluster & add the host to a cluster attach a host profile to the host to configure it move a host from a staging folder to the production cluster with PowerCLI (Instructional video below provides a walkthrough of the steps contained in this article. ) What is Auto Deploy? Auto Deploy is one of the coolest features that comes with VMWare vSphere 5. It enables admins to significantly cut down time they usually spend in provisioning vSphere servers. It makes a very substantial impact when you need to provision hundreds or thousands of physical hosts with ESXi. To use Auto Deploy, you will need: A PXE Boot Infrastructure comprised of DHCP and TFTP servers... --- ### Integrating Microsoft Excel with PowerShell: Build a Basic Report > Learn how to export basic reports straight into Excel using PowerShell in the first of this three-part series. - Published: 2012-03-15 - Modified: 2024-12-03 - URL: https://petri.com/export-to-excel-with-powershell/ - Categories: PowerShell - Tags: Advanced, Excel - Article Type: How To In the first of this three-part series, Jeff Hicks details how to integrate PowerShell with Microsoft Excel by exporting Excel files from PowerShell. Not too long ago I wrote about Integrating Microsoft Word with PowerShell, but I know that after text files, the most used tool for Windows administration is Microsoft Excel. Based on what I see in forums and talking with people at conferences, there is a lot of information tucked away in Excel spreadsheets. There's no shortage of people who want to save information to Excel or read from it. Normally, I tell people that if they are using PowerShell, they can simply export results to a CSV file and then open that in Excel, but perhaps you really need an Excel file. I'm going to take the next few columns and explore how to integrate Microsoft Excel with Windows PowerShell. Today we'll go into building a basic report with Microsoft Excel and Windows PowerShell. In part two, I'll go over how to create a richer Excel document. Later, in part three I'll show you how to read data from an Excel file. How to Integrate Microsoft Excel with PowerShell Microsoft Excel has a very complex COM object model that we can interact with in Windows PowerShell. Let's start at the beginning and create an object for the Excel application. ​PS C:> $xl=New-Object -ComObject "Excel. Application" Right now Excel is running in the background, even though there isn’t an interactive window. ​PS C:> get-process excel Handles NPM(K) PM(K) WS(K) VM(M) CPU(s) Id ProcessName ------- ------ ----- ----- ----- ------ -- ----------- 203 23 16392 24340 267 0. 28 1280 EXCEL Next,... --- ### Take Control of iOS Device Configuration - Creating a Basic Configuration Profile for an iPhone or iPad > Learn how to create a basic configuration profile for your iPhone or iPad, using the iPhone Configuration Utility tool from Apple. - Published: 2012-03-14 - Modified: 2024-11-19 - URL: https://petri.com/iphone-configuration-utility/ - Categories: Mobile - Article Type: How To In this post, John O'Neill Sr. takes you through a new and easier way to configure your iPhone or iPad, using Apple's (free!) innovative iPhone Configuration Utility tool. Learn what a configuration profile is, and how to use the iPhone Configuration Utility to create a basic iOS configuration profile. Overview One of the first steps in deploying an iOS device in the enterprise is taking control of its configuration. Creating an iTunes Store account, connecting to iTunes, and the rest of the processes that consumers follow to configure their iPhone or iPad just won't cut it for most enterprise IT administrators. The good news is they don't have to. The better news is that one of the best enterprise configuration tools is easy to learn and use. The best news is ... the tool is free! The tool I'm alluding to is the iPhone Configuration Utility from Apple. This article will give a quick overview of what a configuration profile is, a description of the iPhone Configuration Utility, where to get it, and how to use it to create a basic iOS device configuration profile. Future articles will cover creating more advanced profiles. What is a Configuration Profile? A configuration profile is an XML file that contains settings to deploy to an iOS device. These settings will control everything from device passcode policies to email account configurations. Configuration profiles can be used on both iPhones and iPads. Common uses for configuration profiles include: setting up email, calendar, and contact accounts (including Exchange) creating VPN connections defining WiFi settings enabling restrictions for how the device can (and cannot) be used Using the iPhone Configuration Utility (iPCU) Very few people seem to cherish the idea of writing an entire XML file in Notepad, myself... --- ### Create a SharePoint Document Library in Office 365 > Learn how to create a SharePoint document libraries in Office 365. See example scenarios and solutions in this comprehensive walk-through. - Published: 2012-03-13 - Modified: 2024-09-04 - URL: https://petri.com/create-sharepoint-document-library/ - Categories: Cloud Computing - Tags: Office 365, SharePoint - Article Type: How To Learn about SharePoint document libraries in Office 365, which allow you to share collections of files with team members with a high level of customization. There are no PowerShell cmdlets for working with the SharePoint Online capabilities of Office 365, so to create a document library, you will need to use the web interface of your SharePoint site. Of course, you will need to have permissions to create lists and libraries on the site that you want to create the document library in. In this post, I'll walk you through the steps that will allow you to create a sharepoint document library so you can easily share documents and files in Office 365 and SharePoint. A Document Library is a Collection of Files To Be Shared It’s common for the administrator to not only create the document libraries, but also to decide how many to have, and to plan their uses. When deciding how many document libraries to start with, you need to consider who will have access to the files. For example, if you have a particular client that you will be sharing a few files with, you can create a document library to hold the files and manage the sharing of them. Adding new files to the library is very easy to do, and once you’ve added new files into the library, your client will immediately have access to them. Document libraries can also take advantage of the document management features of SharePoint 2010, such as version control and creating workflows. The version control feature tells SharePoint to create a copy of a file when it is saved, and to... --- ### Intro to Virtualization: Hardware, Software, Memory, Storage, Data and Network Virtualization Defined > This Introduction to Virtualization guide takes a detailed look at the different types of virtualization as well as the benefits of each. - Published: 2012-03-12 - Modified: 2024-12-03 - URL: https://petri.com/intro-to-virtualization/ - Categories: Virtualization - Article Type: Overview What exactly is virtualization and what are the benefits? This guide is designed specifically for IT professionals who are new to virtualization, and takes a detailed look at the different types of virtualization as well as the benefits of each. What is virtualization? What are the different types of virtualization? And most importantly, what are the benefits of virtualization? In this guide, designed specifically for IT professionals who are new to virtualization, we’ll take a detailed look at the different types of virtualization as well as the benefits of each: What I hope you get out of this article is that virtualization is not just for the datacenter, and it's not just for large organization. Same thing applies to its benefits; virtualization has a lot to offer to IT professionals and in many cases, to end users. If you're new to the concept of virtualization, or you're unfamiliar with the different shapes virtualization can take, this article is the perfect place to start. What is Hardware Virtualization? Historically, there has been a 1-to-1 relationship between physical servers and operating systems. Low CPU, memory, and networking requirements matched nicely with the limited hardware resources available. As this model continued, however, the costs of doing business rose. The amount of power, physical space, and hardware required meant that costs were adding up. Virtualization is all about abstraction. Hardware virtualization is accomplished by abstracting the physical hardware layer by use of a hypervisor (aka - a Virtual Machine Monitor). The hypervisor handles sharing the physical resources of the hardware between the guest operating systems running on the host. Physical resources become abstracted versions in standard formats, so regardless of the hardware platforms, the hardware is presented as the same... --- ### Profile Management in VMware View 5 > Learn about VMware View 5 View Persona Management and why it's more than just another profile management tool. - Published: 2012-03-09 - Modified: 2012-03-09 - URL: https://petri.com/vmware-view-persona-management/ - Categories: Virtualization - Article Type: Overview IT veteran Greg Stuart takes you behind the scenes in a VDI environment and examines industry leader VMware's proprietary profile management tool called View Persona Management, now available in VMware View 5. Overview It seems as if the end of standard desktop computing has all but come to an end, or will shortly.   Many companies have thrown out the inflexible desktop PC model for their employees for a much better suited virtual desktop model.   What does this do?  For starters, it gives the end user much more freedom than they've ever had with their desktop PC.  These days, there are numerous options for end points that are suitable to load your virtual desktop on.  You can even be at the ball game, working on your virtual desktop via VMware View, which is all accessed from a client loaded on your iPad.  The possibilities are endless. Many times as an end user you don't question the "how" of your desktop; you just log in and want it to boot up without any issues, and you want it done fast.  There are many things that go on behind the scenes in a VDI environment and one of the most important things is profile or persona management.  Why is it important?   That's a good question and one that is not usually given a second thought, that is until something goes wrong and your desktop is hung on "applying personal settings" for 20 minutes.  That is when the "how" of VDI gets questioned. What is Profile Management? In a nutshell, profile management is what goes on behind the scenes when you log onto your virtual desktop.  You type in your username and password, hit enter, and profile management kicks in.  In traditional... --- ### Put the Squeeze on Files with Compact.exe > Compress files and folders easily with Comapct.exe. This simple command line tool in combination with PowerShell makes compressing files easy. - Published: 2012-03-08 - Modified: 2024-09-04 - URL: https://petri.com/compress-files-with-compact-exe/ - Categories: Windows Client OS - Article Type: How To Jeff Hicks returns with an excellent and easy to use tip. With a few commands, Compact.exe can compress files and folders on the fly. Although easy to use, Jeff suggests testing Compact.exe out in a non-production environment first to avoid running into any issues. Overview Maybe it is my Midwestern heritage, but I like to be thrifty and economical. Perhaps that is why I like file compression; I can keep the file but only consume a minimal amount of space. Back in the day we typically turned compression on at the folder level, which is still probably a good thing. But sometimes you might want to take a more granular approach. Turns out you can accomplish both with a command line tool called Compact. exe. Using Compact. exe First, how do we use Compact. exe? As with most command line tools, let's start by asking for help: ​C:> compact /? Figure 1: Compact. exe Help Now let’s check the status of folder. For this to work properly you need to be at the folder root. ​C:work>compact /q Listing C:work New files added to this directory will not be compressed. Of 445 files within 1 directories 0 are compressed and 445 are not compressed. 962,585,132 total bytes of data are stored in 962,585,132 bytes. The compression ratio is 1. 0 to 1. This folder has no compressed files. If you run the command without /Q you'll get details for all the files. I know there are a lot of text files which compress well so I'm going to compress them like this: ​C:work>compact /c /s *. txt Compressing files in C:work a. txt                  322158 :     81920 = 3. 9 to 1 a2. txt                 322174 :     81920 = 3. 9 to 1 add-perm. txt             5444 :      4096 =... --- ### Intro to Server Virtualization: Hypervisor vs. Paravirtualization > What is Hypervisor and Paravirtualization and server virtualization? This overview explains the differences and advantages to each. - Published: 2012-03-07 - Modified: 2012-03-07 - URL: https://petri.com/hypervisor-vs-paravirtualization/ - Categories: Virtualization - Article Type: Overview Greg Ferro provides an introduction to server virtualization by explaining the concepts of Paravirtualization (ParaV) and Hypervisor (also known as, full hardware virtualization). Learn about the main advantages and disadvantages in the two approaches to server virtualization that will help you make the right decision when choosing your next virtualization solution. Overview Virtualization is the creation of multiple logical systems from a single physical system. Consider the computer you are using: it has a single CPU, single hard drive, memory modules, motherboard etc. But how much of this are you using? 5%? 10%? Consider a server in your data center that has multiple CPU’s, and each CPU has multiple cores. The computer’s memory slots can hold gigabytes of memory modules. It has a single operating system installed and probably just a single application that is providing services to your business such as a Web Server, MS Exchange, or Middleware. Research suggests that the vast majority of servers are less than 10% utilized. Virtualization is the technology that provides "stacking" of multiple operating systems onto a single physical server to achieve an astonishing range of benefits. With proper management of these virtualized machines with tools like SolarWind's Award Winning Virtualization Solution you can cut IT costs, improve data and backup protection and increase performance and efficiency. Before we talk more about these benefits, let's look at the two fundamentally similar approaches to virtualization – Paravirtualization (ParaV) and Hypervisor. Hypervisor The Hypervisor is a software structure used to fully emulate computer hardware in software. The software layer creates virtual CPUs and virtual Memory by intercepting the input/output from the Operating System before it reaches the physical hardware. Virtual Hard Disk Drives are created by mapping disk read and writes to a single file or LUN. Read and writes to the... --- ### VMware vCenter Operations Manager 5 - To Have and Have Not > Is VMware vCenter Operations Manager 5 (vCOPS) worth buying? David Davis reviews the good and bad of the newest version. Top 5 features and more... - Published: 2012-03-06 - Modified: 2024-11-19 - URL: https://petri.com/vcenter-operations-manager-5-review/ - Categories: VMware - Article Type: Opinion vExpert David Davis explores the functionality and usefulness of VMware's new vCenter Operations Manager (vCOPS) 5. David goes in-depth covering the various versions, top 5 features, and his general opinion on where vCOPS 5 hits and misses the mark. Overview If you are using VMware vSphere then you need a performance and capacity management tool – bottom line. vCenter and the vSphere client can give you the basics of performance utilization (both real-time and historical) but, let's face it, it's just not ideal. Once you have hundreds or thousands of virtual machines across too many servers to count – you need help. Originally, third-party performance and capacity tools popped up to fill this void (tools like vKernel vOPS, Veeam Monitor, and Quest vFoglight) but then, in February of 2011, VMware entered the market with vCenter Operations Manager (or vCOPS), a modified version of Integrien’s Alive product (purchased in August of 2009). Initially, I was afraid that vCOPS would be a "me too" tool from VMware – a tool that may just fulfill the minimum needed by VMware to say that they had a performance/capacity tool, without giving the third-party tools real competition. However, I am pleased to say that, the latest release has a lot to offer. VMware recently announced their latest major revision to vCenter Operations Manager, which has now been rev’ed up to version 5 (all the way from version 1. 0. 1). Before I tell you my opinion of the new release, let’s first explore the different flavors of vCOPS and what new features are included with each edition. The Four Flavors of vCOPS 5 VMware offers vCOPS in four different editions – standard, advanced, enterprise, and enterprise plus. The higher... --- ### AutoDiscover Configuration for Exchange 2007 and 2010 > How to configure AutoDiscover for Exchange 2007 and Exchange 2010. Automatically configure email clients for smart phones tablets. - Published: 2012-03-05 - Modified: 2024-09-04 - URL: https://petri.com/autodiscover-configuration-exchange-2010/ - Categories: Exchange Server - Article Type: Overview AutoDiscover in Exchange is often overlooked but can provide some excellent functionality to your users, making it easier to setup new mail clients and smartphones. Tom Finnis explains how to configure AutoDiscover for Exchange 2007 and 2010 as well as covers some common problems to look out for. Overview The AutoDiscover feature in Exchange 2007/2010 is often overlooked during setup but is an important factor in ensuring smooth day to day running of your Exchange environment. Its main function is to provide the mail client with all the configuration options it needs, from only the user's email address and password. This is particularly useful for remote users and smartphone users, who no longer have to enter advanced settings like server names and domains. It is also vital for the correct functioning of features such as Out Of Office and the Offline Address Book in Outlook. AutoDiscover simplifies email client configuration for remote and mobile users; you may not have noticed it but most email clients nowadays will simply ask for your email address and password first, e. g. the Android email setup screen: What actually happens after you have entered your details is that the client looks for autodiscover. yourdomain. com and attempts to retrieve the rest of the server configuration details from there. If you've set that up properly then no more information is required, making the setup process very simple for non IT-literate users and saving you from having to deal with support calls. The second main function of AutoDiscover in Exchange is linked to the Offline Address Book and "Out of Office" settings, as Outlook uses part of Outlook Web Access for them, rather than the MAPI based connections used for mailbox access. The Outlook client actually uses the AutoDiscover... --- ### Installing Exchange Server 2010 SP2 > Learn how to install exchange server 2010 SP2 in this video tutorial post by TrainSignal. - Published: 2012-03-02 - Modified: 2024-09-04 - URL: https://petri.com/install-exchange-server-2010-sp2/ - Categories: Exchange 2010 - Article Type: How To In this video tutorial, Exchange MVP J. Peter Bruzzese demonstrates how to install Exchange Server 2010 SP2 from start to finish. Overview This article and video covers a clean installation of Exchange Server 2010 SP2. In order to successfully complete this installation without worrying about an upgrade situation, we have a new Windows Server 2008 R2 setup for the purpose of this demo, that includes all of the hotfixes and prerequisites. The easiest way to ensure that your Server 2008 R2 is ready for the SP2 install is to simply run Windows Update until all the updates are done. After that, the server will be ready to handle Exchange Service Pack 2. Before Installing Exchange 2010 SP2 Now, there are a couple of things that you may be prompted to before the actual installation of SP2. For instance, if you're performing a typical Exchange installation which includes the Mailbox Server Role and the Hub Transport Server Role, you're going to need the Microsoft Office 2010 Filter Packs. It's not an absolute necessity but Microsoft is going to recommend it during the installation and it's nice to have that done ahead of time. If you're going to set up a Unified Messaging Server, then there are a couple of other things that need to be installed, like the various speech engines and so on. But in our case, we're just going to do a straight, typical install. Now, let's go over to TechNet and what we're going to do here is quite similar to what we've done in Exchange 2010 RTM and with Exchange Service Pack 1: you open up PowerShell, type... --- ### Integrate Microsoft Word with PowerShell: Format Style Documents > Integrate Microsoft Word Docs with PowerShell | Discover how to format and style Word documents with PowerShell in part 2 of this series. - Published: 2012-03-01 - Modified: 2024-12-03 - URL: https://petri.com/format-microsoft-word-docs-powershell/ - Categories: PowerShell - Tags: Advanced, Word - Article Type: How To We back with our series on integrating Microsoft Word with PowerShell! Learn how to add formatting and style to Word documents using PowerShell in part 2 of this series. In Part 1 of this two-part series, we looked at the basics of creating a Microsoft Word document from Windows PowerShell. If you tried out my sample commands you noticed that the formatting left a little something to be desired. Fortunately, there are some easy steps you can take to improve the quality of your document, and I'll show you those in this post. We’ll use the script from Part 1 as a starting point. The key is the selection object. ​PS C:\>$word=new-object -ComObject "Word. Application" PS C:\>$doc=$word. documents. Add PS C:\> $selection=$word. Selection One important element you can modify with the selection object is the Font. You can easily modify the font size and color, as well as what font to use. I’m going to set the font for the date and time to be Green. ​PS C:\> $selection. Font. Color="wdColorGreen" PS C:\> $selection. TypeText((Get-Date)) In the days of VBScript we would have had to identify the value of wdColorGreen and define a constant. But in PowerShell we can simple insert the constant as a string. Curious about the color choices? Ask PowerShell: ​PS C:\> ::GetNames Unless you want the entire document in this font color, you’ll need to set it back. ​PS C:\ >$selection. font. Color="wdColorAutomatic" PS C:\> $selection. TypeParagraph In my original script I inserted a title. This time let’s make it stand out a bit with a larger font. I’ll use the same WMI code as I did last time. ​$selection. Font. Size=12 $selection. TypeText("Operating System Information for $($os. CSName)") If you recall... --- ### Cisco Unified Computing System: UCS Service Profiles > What are UCS Service Profiles? This post explains Service Profiles and what settings and configurations they help automate. - Published: 2012-02-29 - Modified: 2012-02-29 - URL: https://petri.com/ucs-service-profiles/ - Categories: Networking - Article Type: Overview Sean Wilkins returns with his series on Cisco Unified Computing System. In this post, Sean discusses UCS Service Profiles. Sean covers the basic principles behind why profiles are used and what settings and configurations they help control. Introduction When deploying or thinking about deploying Cisco's Unified Computing System (UCS), it is important to understand the concept of a service profile.  A service profile is an idea that is central to the deployment of UCS as it is used to define the computing, networking and storage requirements of each deployed server. This article takes a brief look at the concept of a  service profiles and how it can be used to reduce the amount of ongoing management of the UCS. UCS Service Profiles The first basic question to answer is: what is a service profile? The basic concept follows a virtualized server model. For example, when deploying virtualized servers in place of a physical server, a profile of the physical server must be created and then replicated within the virtualized environment. This profile includes the processing, storage, and network interface requirements for the server being deployed. The problem with this is that the management of the server and the network and storage (storage area network) management are all separate. The idea of the UCS is to wrap not only these profile items for the individual server but also include the ability to profile the required elements of the network and storage infrastructures and have those all provisioned at once within the same management system (UCS Manager Overview). The combination of all of these different items is referred to as a service profile. The UCS service profile includes all of the following elements... --- ### 3 Ways to Crack or Remove Lost Passwords in Word 2010 Files > Lost or forgot your MS Word 2010 password? Try one of these 3 solutions to recover or crack MS Word 2010 and .docx passwords. - Published: 2012-02-28 - Modified: 2024-12-03 - URL: https://petri.com/recover-word-2010-password/ - Categories: Office - Article Type: How To Have you ever been locked out of an important Word document either because you forgot the password or perhaps it left with an employee that is no longer with the company? Michael Simmons provides 3 solutions for recovering lost passwords associated with Microsoft Office 2010 documents. Overview Have you forgotten the password that you set on your Word 2010 document?   Whether you have just forgotten the password, or whether somebody else locked it and you don’t know what the password on the . docx file is, you do have some options. In this article, I will show you three different options for software tools that will help you either crack the password on your Word doc,  or remove the Word document password altogether. Option 1:  Office Password Recovery Pro Vendor:  Avanquest Price:  Free (Demo);  $119 $89 Pro Version (Save $30) Download:  direct download is available here. (2. 1Mb) Description:  Office Password Recovery Pro offers all Office 2010 files (and all previous versions of Microsoft Office) password recovery.   It has some advanced features, including multilingual support, and the ability to perform password cracking on multiple files at the same time. While it’s more expensive than some of the other options, it does include all updates and technical support for 1 year. Features Listed: You can add any known information about the password to decrease the time needed to crack the password. Weak encryption passwords (Office 2003 and before) are able to be cracked instantly. Uses multiple cores for faster processing. You can choose to run the process in the background, or to assign it a higher priority. Option 2:  Word Key Vendor: Passware Price: Free (Demo); $39 Full Version Download: http://www. lostpassword. com/downloads/passware-kit-basic-demo. msi Description:  Passware has password recovery solutions for many file types, as well as password reset utilities for local... --- ### PCoIP: What Is PC-over-IP and How Does It Work? > Learn about PC-over-IP (PCoIP) and how it differs from other options, including Remote Desktop Protocol (RDP) and Independent Computing Architecture (ICA). - Published: 2012-02-27 - Modified: 2012-02-27 - URL: https://petri.com/what-is-pc-over-ip/ - Categories: Virtualization - Article Type: Overview Learn about PC-over-IP (PCoIP) and how it differs from the alternative options, including Remote Desktop Protocol (RDP) and Independent Computing Architecture (ICA). Also included is a video from the company behind PCoIP (Teradici) that helps explain the protocol. PC-over-IP (PCoIP) is a display protocol that allows complete compression of a desktop which is then displayed through a zero client device over a standard IP network. While there are several display protocols that exist in desktop virtualization such as RDP, ICA and RGS, PCoIP has become the most prevalent protocol for display back of a virtual desktop. Does PC-over-IP sound vaguely familiar?  It might remind you of Voice-over-IP (VoIP) and there are definitely similarities.  While Voice-over-IP delivers voice over a standard IP network, that is where it ends.  PCoIP not only delivers full audio it also delivers USB and the full user display.  How is it different from RDP (Remote Desktop Protocol) or ICA (Independent Computing Architecture)?  That's a great question, because PCoIP is not the only display protocol.  Let's take a look at some of the other display protocols and how they compare to PCoIP. Remote Desktop Protocol (RDP) With Remoted Desktop Protocol (RDP) you have a terminal server on the opposite end that acts as a controller to the client's screen.  The client is basically getting a drawn representation of the hosts desktop display.  RDP reaches back to the terminal server which sends a refresh on 10 second intervals so long as there is activity at the client.  Every 10 seconds is a pretty hard rate to stick to if you aren't constantly typing away or moving the mouse.   When the client end has no activity for 10 seconds the terminal server decides to cut the refresh rate in half in order to ensure bandwidth... --- ### Troubleshooting VMware View 5: Examples > Explore real-world situations of VMware View 5 failures and troubleshooting techniques and solutions. - Published: 2012-02-24 - Modified: 2024-09-04 - URL: https://petri.com/troubleshooting-vmware-view-5-examples/ - Categories: Virtualization - Article Type: Overview We're back with part 2 of this video series on troubleshooting VMware View 5! Learn from real-word examples of problem VMware View 5 desktops. In part one of troubleshooting VMware View 5, we examined six common failure points that you’re likely to stumble upon when working with VMware View 5. We also reviewed the connection procedures for connecting users to their desktops before moving on to linked clones. Today we’ll take a look at some real-world examples of problem desktops in View 5 and show you some of the usual steps we take to troubleshoot them. So take a look at the video, from TrainSignal’s new VMware View 5 Training before reviewing the troubleshooting steps outlined below. Examples of Troubleshooting VMware View 5 Desktops You can find Problem Desktops in the Problem Desktops view within the View Administrator. This can be reached by navigating to Inventory > Desktops > vCenter VMs > Problem Desktops. You’ll then be presented with a list of Desktops that are in a status considered as Problem. In our example, you can see three Desktops with three different problems. First one has a status named Agent unreachable, the second has Unassigned user, and the third has Error. Example #1 - Error You can click on the Error status of a Desktop to see more information regarding that error. Apparently, this Error has something to do with a failure to join the domain. We can see from the first column that this error is occurring in the Desktop named Accounting02. You can take a closer look at that Desktop by going to the vSphere Client and then... --- ### Integrating Microsoft Word with PowerShell: Generate a Document > Learn how to integrate Microsoft Word with PowerShell and generate a Word document in part 1 of a 2-part series. - Published: 2012-02-23 - Modified: 2012-02-23 - URL: https://petri.com/generate-microsoft-word-document-powershell/ - Categories: PowerShell - Tags: Advanced, PowerShell, Word - Article Type: How To In this two-part series, discover how to integrate PowerShell with Microsoft Word. In part 1, learn to generate a Word file. I’m assuming many of you use Windows PowerShell to create reports for servers, events and all the other items you come across in a Windows network. You probably create text files; perhaps even some nice HTML reports. But you can also use Microsoft Word, assuming you have it installed of course. In part two of this series, I'll show you steps you can take to format the style of your Word document using PowerShell. Create an Object for the Word App The Word application can be controlled via a COM interface in PowerShell. What is very interesting is that you can do all of this in an interactive session, although I expect you’ll eventually script everything. We’ll start by creating an object for the Word application. ​PS C:\> $word=new-object -ComObject "Word. Application" If you are curious, pipe the object to Get-Member. We’re going to be creating a hierarchy of objects, any of which you can pipe to Get-Member to explore. Next we need a new document object. ​PS C:\> $doc=$word. documents. Add At this point, Word is running with a new document, but you won’t see anything on your desktop. Normally this is fine since we want this to happen behind the scenes anyway. But if you’d like to view the document as it is being created set the application’s Visible property to True. ​PS C:\> $word. Visible=$True Before we can start inserting text, we need to get focus. Creating a selection object will also let us do things like setting... --- ### Cisco Unified Computing System: UCS Components > A summary of Cisco Unified Computing System (UCS) hardware capabilities and features by Sean Wilkins including fabric interconnects, blade server chassis and fabric extenders. - Published: 2012-02-22 - Modified: 2024-09-04 - URL: https://petri.com/cisco-ucs-hardware-overview/ - Categories: Networking - Article Type: Overview Following up on his Cisco UCS Manager Overview from last week, Sean Wilkins dives into the hardware that drives Cisco UCS. This post provides a nice overview for the different components that are used with UCS and their capabilities and options. Introduction Cisco’s Unified Computing System (UCS) provides a solution that integrates the server, network and storage resources that are used within a modern datacenter. It does this through the deployment of equipment that is managed through a single management system (UCS Manager). The idea is to save on a number of different costs within the datacenter, including equipment and support costs. When deploying a system that is closely integrated and provides the ability to provision the server, network and storage resources in one step, support costs can be reduced and configuration errors avoided. To create this system there are a number of different components that are deployed, including fabric interconnects, blade server chassis, fabric extenders and the blade servers themselves. This article takes a look at these different components, what they are and what they provide to the UCS solution. UCS 6100 Series Fabric Interconnects At the center of UCS is the UCS 6100 Fabric Interconnect, it provides the management and communications backbone for the entire solution. For management, the UCS Manager software is embedded in the appliance itself. For communications, the appliance offers lossless 10 Gigabit Ethernet and Fiber Channel over Ethernet (FCoE) functionality and connectivity. Each of the 10 Gigabit ports on the appliance offers a line-rate, lossless connection regardless of packet size or services configured. There are three different models of the Fabric Interconnect that are currently offered: these include the UCS 6120XP 20-Port, UCS 6140XP 40-Port and 6248UP 32-Port... --- ### Top 3 Mistakes When Selecting Cloud Service Providers > Avoid the top 3 mistakes when picking and selecting cloud service providers. 3.) Failure to plan for multiple... - Published: 2012-02-20 - Modified: 2024-11-19 - URL: https://petri.com/selecting-cloud-service-providers-mistakes/ - Categories: Cloud Computing - Article Type: Overview Avril Salter discusses the top 3 mistakes companies make when selecting a cloud service provider and what you can do to avoid them. This is the first post in a series of upcoming articles that will guide IT pros into successfully embracing and implementing this new delivery model. Overview Cloud computing offers the ability to rent capacity and share applications on a third party’s server farm. IT departments worldwide are actively looking at how they can embrace this new model for delivering computer solutions to their users. This article is part of a series of focused articles that will help you successfully embrace this new delivery model. In this article, we are going to focus on the three common mistakes that IT professional make when selecting a third party cloud service provider. Failure to quantify the expected advantages When people talk about the cloud, they will give you a list of reasons and benefits of moving to the cloud. Experience tells us that there are two dominant reasons why companies adopt cloud technologies. It either saves them money or time. The cloud offers a substantial financial advantage if you have situations where you need additional capacity for short periods. For example, if you are a retailer and have high system loading during holiday periods, or if you are a service provider that runs extensive billing computations on a month cadence. In these situations it is cheaper to rent than to buy. The second key advantage of using a third party cloud provider is quick access to massive amounts of computer resources. For example, if your business is project based, you could get set up and ready to go within minutes of a contract being signed, instead of weeks if you had to order and install new equipment. You... --- ### Administrative Templates in Server 2008 R2 Group Policy Objects (GPO) > Overview of Administrative Templates in Windows Server 2008 R2 Group Policy Objects. These templates allow customization of virtually any settings on AD domains - Published: 2012-02-20 - Modified: 2024-12-03 - URL: https://petri.com/administrative-templates-for-group-policy-objects/ - Categories: Active Directory (AD) - Article Type: Overview In this post, Michael Simmons explains the functions of the Administrative Templates for Group Policy Objects in Windows Server, specifically, Server 2008 R2. These templates allow a huge range of customization of settings for administrators configuring computers and users in Active Directory. What are Administrative Templates in Group Policy Objects? Starting in Windows 2000, and still present in Windows Server 2008 R2 today, Group Policy Objects (known also as GPO's) provide hundreds of useful settings which can be used to automatically configure computers in your domain. The configuration options are separated into several different sections which make it easy to find the configuration option you want to set for your computers. Using GPOs, you can specify practically any setting available for your users or computers, often making them either a preferred method, or a mandated requirement. Once you know how to create a group policy, it is easy to create a policy which performs settings such as: Manage services, defining whether or not they must be started automatically or disabled completely. Remove the ability to save data, certain parts of the hard drive or desktop. Enforce corporate policies that prohibit users from using Internet Explorer to run or install software. Manage and lock down desktop environments, including setting items on the desktop and disallowing changes to desktop items and toolbars. Manage all aspects of security: encryption, auditing, event logs, and the rights that users have to change these settings. Control the remote user profile settings, for either redirecting certain folders in the profile or making the entire profile be a roaming profile. Set administrative and scheduled tasks, and set scripts to run at startup, logon, logoff, and shutdown on systems. Of course, these are just a few of the... --- ### Troubleshooting VMware View 5: Failure Points > Failure points in VMware View 5 | Discover what common failure points will help you better troubleshoot VMware View 5 in part 1 of a 2-part video series. - Published: 2012-02-17 - Modified: 2024-09-04 - URL: https://petri.com/troubleshooting-vmware-view-failure-points/ - Categories: Virtualization - Tags: troubleshooting, vmware - Article Type: Overview In this first of two video posts, learn about the most common failure points in VMware View 5 and how to troubleshoot them. Welcome to part one of a two-part series about troubleshooting VMware View 5. In this first post, we’ll tackle the most common failure points in VMware View 5 and talk about the best ways to troubleshoot them when issues arise. The failure points we’ll review include: Network connectivity failure between client and connection or security serve Network connectivity failure between desktops and connection server Failure to create a pool VM stuck in provisioning state VM stuck in customizing state USB redirection problems After learning about the different points of failure you should look out for, we’ll take a look at the connection procedures for connecting a user to a desktop and how linked clones work, which will help you troubleshoot vmware view issues related to your composer-based pools. Later, in part two, we'll explore some real-world examples of troubleshooting VMware View 5 desktops. In part 2 we’ll get our hands dirty with some real-world examples on troubleshooting problem desktops in VMware View 5. In the video, from TrainSignal’s new VMware View 5 Training , VMware vExpert Brian Knudtson will explain the concepts and walk you through the troubleshooting procedures. But everything is also outlined below, so watch the video and review the article below for maximum effect. Failure Point #1: Network Connectivity between Client and Connection or Security Server Network connectivity is probably the most common issue you’ll run into. It’s a good thing most of your standard connectivity troubleshooting will work here. For example, you’ll often... --- ### Use PowerShell to Create Custom Log Events > Learn how to use PowerShell to create custom event's in the Windows Event Log. - Published: 2012-02-16 - Modified: 2012-02-16 - URL: https://petri.com/use-powershell-to-create-custom-log-events/ - Categories: PowerShell - Tags: Advanced - Article Type: How To Jeff Hicks continues his two-part series on creating custom events in the Windows Event Log. In this post, Jeff explains how to use PowerShell to create the log events as opposed to EVENTCREATE.EXE which he demonstrated in Part 1. Last time I showed how to use the command tool EVENTCREATE. EXE, to create your own custom event log entries. Today I want to demonstrate how to accomplish this task using Windows PowerShell. Here we’ll use the Write-EventLog cmdlet. The first step should be to look at cmdlet help. ​PS C:\> help Write-EventLog When using this cmdlet you must specify the log name, a source, an event id and a message. In this regard it is very similar to EVENTCREATE. EXE. But you can’t use a non-standard source or something ad hoc. You must use a pre-defined or existing source. An easy way to discover the source names is to use Windows Management Instrumentation (WMI). ​PS C:\> $log=Get-WmiObject win32_nteventlogfile -filter "filename='system'" PS C:\> $log. Sources System ACPI adp94xx adpahci adpu320 ... If one of these sources seems appropriate, then you can log your own entry like this. ​PS C:\> write-eventlog System -source Server -eventid 12345 -message "I am a custom event log message" The default entry type is Information. I created my own eventID which has its drawbacks. ​PS C:\> get-eventlog system -newest 1 | format-list EventID,EntryType,Source,Message EventID   : 12345 EntryType : Information Source    : Server Message   : The description for Event ID '12345' in Source 'Server' cannot be             found.   The local computer may not have the necessary registry             information or message DLL files to display the message, or you             may not have permission to access them.   The following inform             ation is... --- ### Cisco Unified Computing System: UCS Manager Overview > Sean Wilkins gives a brief overview of Cisco UCS and how it can save your company money. - Published: 2012-02-15 - Modified: 2012-02-15 - URL: https://petri.com/cisco-unified-computing-system-overview/ - Categories: Networking - Article Type: Overview Sean Wilkins gives a brief overview of Cisco's Unified Computing System (UCS) Manager. Sean explains how UCS brings together many of the psychical managerial components into one integrated (unified) solution which can help cut costs. Introduction In the modern IT environment there are a number of different constants that exists; one of these is that organizations are continually looking to reduce their costs. This can be done in a number of different ways, from reducing the number of new equipment purchases an organization makes to laying off people to “save” on support costs. Cisco’s Unified Computing System is an attempt to reduce these costs by integrating a number of different pieces of the data center network that would previously be separate both physical and managerially. The basic idea is to integrate the function of the data center servers, network and storage networks into a single system that is managed by a single system; this system is Cisco’s Unified Computing System (UCS) Manager. This article takes a brief look at this manager and what it provides. UCS Manager The UCS Manager is a single system that is responsible for the provisioning and management of multiple systems, including the fabric interconnects (Switch), blade chassis, fabric extenders (connectivity to the fabric interconnects) and different blade servers. The UCS management software itself is embedded in the fabric interconnects; all of these different components mentioned above are treated as a single entity. Management is able to be completed through a GUI, CLI or through an XML API. Once the physical installation is complete a service profile is able to be created, the profile defines the different server, network and storage requirements of specific machines be them physical... --- ### How To Find Office 365 Mailbox Size With PowerShell > Michael Simmons explains how to use PowerShell to find Office 365 mailbox size. PowerShell makes administration efficient and easily repeatable. - Published: 2012-02-14 - Modified: 2024-11-19 - URL: https://petri.com/find-office-365-mailbox-size-with-powershell/ - Categories: Cloud Computing - Tags: administration, Exchange Online, mailboxes, Office 365, PowerShell - Article Type: How To Michael Simmons explains how you can use PowerShell to find mailbox sizes in Office 365. Michael shows you two functions that you will need (and can save for later use) and then walks you through the steps to administer Office 365 quickly and efficiently in PowerShell. Introduction Office 365 provides options for working with Exchange online, SharePoint online, and Office Web Apps, in addition to features such as Active Directory Sync and access to full featured Office 2010 Professional software. While using Office 365 in either a production environment or a 30 day trial, you have the ability to use PowerShell for command line access to account administration.   This article describes one scenario that you will want to perform:  Creating a usage report to determine the sizes of each users’ mailbox. Getting Office 365 If you haven’t yet setup an account for Office 365, but would like to follow these exercises, it’s very easy to setup a trial account.   Follow the instructions to Setup an Office 365 Trial and Configure it for Your Own Domain Name. If you’ve already got an account, either a trial or subscription, then you’re ready to configure PowerShell to connect to your Exchange Online account. Setting Up PowerShell to Connect to Office 365 If you don't have PowerShell 2. 0, go download the Windows Management Framework and install it.   Remote sessions are needed, so you’ll need PowerShell 2. 0.   After you’ve got that, you’ll need to start an administrative console.   My administrative sessions are always colored red, so I know they’re ready to make changes to the system. Next you’ll need to make a few configuration changes. Set a few configuration items: Set the execution policy to “RemoteSigned”: Set-ExecutionPolicy RemoteSigned Enable the remoting features of PowerShell... --- ### Top 10 Reasons You Need To Be Using Windows Intune > What is Windows Intune? John Weston of Microsoft shares the top 10 reasons you should use Intune to manage and secure your PC's via the cloud. - Published: 2012-02-13 - Modified: 2024-09-20 - URL: https://petri.com/what-is-windows-intune/ - Categories: Cloud Computing - Article Type: Overview Do you know what Microsoft Intune is and are you using it? Released just under a year ago, Intune provides a cloud-based solution to manage and secure your PCs. Microsoft Evangelist John Weston gives 10 compelling reasons why you need to be using Intune if you aren't already. Overview Many times over the last year I have been asked the question, “What is Windows Intune? ”  I like to describe Windows Intune as the cloud service that helps you centrally manage and secure your PCs through a simple, web-based console.  Released back in March 2011, Windows Intune has already had a major Update on October 17th, 2011. Why should any IT Pro consider using Windows Intune?   Well, I came up with these top 10 reasons (there are many more, but let’s start with 10). Top 10 Reasons to Use Windows Intune Windows Intune is a web based subscription service with an easy-to-use web-based console that gives you insight into your PCs.   You can view updates, Forefront status, security policies, alerts, and much more.  You do need an Internet connection; install the Intune client on each machine, and off you go managing your PCs. Windows Intune is in “The Cloud”.  With Windows Intune there is no need to build and maintain a server infrastructure.  All you need is a browser.   No need to buy server hardware, license server OS, install, configure, and keep each server backed up and current. Windows Intune has “Endpoint Protection”.   Endpoint Protection provides real-time protection against potential threats of managed PC’s.  This ensures keeping malicious software, what is known as malware, from infecting your PC’s, with up-to-date definitions, and automatically running scans.   To make your life easier with centralized computer management, Windows Intune includes a policy template with Endpoint Protection Agent settings so that you can... --- ### Service Manager 2012 Beta Part 6 - Self-Service Portal Installation > Learn how to install Self-Service Portal Installation in Peter De Tender's final post in his series on installing System Service Manager 2012 - Published: 2012-02-10 - Modified: 2024-09-24 - URL: https://petri.com/self-service-portal-installation/ - Categories: Windows Server - Article Type: Overview Peter De Tender concludes his six-part series on installing Service Manager 2012 in this post. In his concluding post, Peter explains how to install and configure the Self-Service Portal based on SharePoint Foundation 2010. Overview In parts one through five of this series, we went through the SCSM 2012 System Requirements, a step-by-step walkthrough of the installation and configuration of the Service Manager Management Server and the Data Warehouse Server, as well as the configuration of the SCCM and AD Connectors in order to make our SCSM environment functional. Here are links to the previous parts in this series in case you missed them: Part 1: System Center Service Manager System Requirements  Part 2: Installing the Service Management Server  Part 3: Installing the Data Warehouse Server  Part 4: Configuration Manager 2007 R3 Connector Configuration  Part 5: Active Directory Connector Configuration In this final chapter of this documentation, we will detail the required steps to install and configure the Self-Service Portal, based on SharePoint Foundation 2010. How to Install the Self-Service Portal The first step involves the installation of SharePoint Foundation 2010, after which the specific Service Manager web console components will be installed. Step 1: Download the SharePoint Foundation 2010 (with SP1) from the following website: Step 2: Begin the setup by selecting Install software prerequisites Figure 1: Installing SharePoint Foundation 2010 Step 3: Once the SharePoint Preparation Tool lauches, click Next.   Figure 2: SharePoint 2010 Preparation Tool Step 3: Review the license terms, mark the checkbox for accept and click Next. Figure 3: License Terms for SharePoint 2010 Step 4: You’ll see that the prerequisites will all be installed (Figure 4). You’ll also see... --- ### Create and Log Your Own Events - Part 1 > Insert custom events in Windows event log. This can be useful for a variety of reasons such as noting system changes made or a whole host of scenarios. - Published: 2012-02-09 - Modified: 2024-09-24 - URL: https://petri.com/create-custom-event-in-event-log-part-1/ - Categories: Windows Client OS - Article Type: How To In part 1 of his two-part series, Jeff Hicks explains how to create events/entries inside the Windows event logs. There are a variety of reasons why this could be useful, and Jeff covers a few, and luckily creating an event is pretty straightforward once you get a hang of it. Overview I’m sure you’ve used the event logs in Windows on more than one occasion. They are an invaluable resource for IT Pros when it comes to troubleshooting, analyzing or reporting. But did you know you can create your own event log entries? It doesn’t even require any programming or scripting. Perhaps you want to write an entry to the System event log when you run some sort of audit process. Perhaps you need an entry in the Application log to reflect the installation of an in-house application. Or perhaps you simply want to “touch” an event log. On your Windows 7 desktop, you can use the command line utility, EVENTCREATE. EXE. This utility can create event log entries locally as well as on remote computers. Use the typical command line syntax to get help. ​C:> eventcreate /? Figure 1 EventCreate. exe Help Let’s try this out locally. You must specify at least the type (/T) and id (/id). ​C:>eventcreate /d "This is my sample event" /t information /id 10 SUCCESS: An event of type 'information' was created in the 'Application' log with 'EventCreate' as the source. The default log is Application and the default source is “EventCreate”. Figure 2 shows what the event looks like. Figure 2 A New Event The ID number can be whatever you need it to be. Let’s create another event locally. ​C:>eventcreate /l System /id 900 /so Private /d "Internal Audit Complete" /t Information SUCCESS: An event of type 'Information'... --- ### Monitor vRAM Usage and Licensing in vSphere 5 > Learn how to monitor vRAM usage in vSphere 5 in this post by Eric Siebert. Because VMware's license is related to vRAM usage admins need to keep usage in check - Published: 2012-02-09 - Modified: 2024-09-24 - URL: https://petri.com/monitor-vram-usage-and-licensing-in-vsphere-5/ - Categories: Virtualization - Article Type: How To Because VMware's vSphere 5 licensing is now related to the amount of virutal RAM (vRAM) assigned to virtual machines, it is more important than ever for admins to keep memory usage in check. In this post, Eric Siebert demonstrates how to monitor vRAM usage to ensure that you are compliant with your license and your VM's are running as lean as possible. Overview When VMware released vSphere 5 they also implemented a new licensing model that is based on the amount of virtual RAM (vRAM) that is assigned to virtual machines. vSphere 5 licenses are still sold by the CPU socket, but each license comes with a set vRAM entitlement that varies based on the vSphere 5 edition as shown below: vSphere Standard – 32GB per CPU socket vSphere Enterprise – 64GB per CPU socket vSphere Enterprise Plus – 96GB per CPU socket If the vRAM license entitlement is exceeded you must purchase another full CPU socket license to increase it. Previously in vSphere 4 the only memory restrictions that existed were a 256GB limit on physical host memory in all editions except for Enterprise Plus which had no limits. In vSphere 5 there are no limits on the amount of physical memory a host can have, instead the limits are applied to the amount of vRAM assigned to powered on VMs. VMs that are powered off do not count against the allotment but VMs that are powered on have the full vRAM that is assigned to a VM counted towards the allotment regardless of the amount of vRAM that a guest OS is actually using. This includes all memory used by a VM, both physical host memory and any memory that a VM may be swapping to disk because of memory over-commitment. Impact of vRAM Licensing on VMware Admins So what does all this mean for VMware customers? ... --- ### Security and Privacy in Public Cloud Computing > Mike Danseglio summarizes the 80 page NIST document (Special Publication 800-144) about Security and Privacy in Public Cloud Computing. - Published: 2012-02-08 - Modified: 2024-11-19 - URL: https://petri.com/cloud-security-and-privacy/ - Categories: Cloud Computing - Article Type: Overview Any technology presents unique security issues but cloud computing stands on its own as it ties many different technologies together. In today's post, Mike Danseglio touches on the main points of the 80 page document, "Guidelines on Security and Privacy in Public Cloud Computing", published in December by the National Institute of Standards and Technology (NIST). There’s lots of confusion about the security of using public cloud computing. I hear questions about data security at rest, security in transit, and how secret a provider must keep stored data whenever I speak at a conference or teach a class. The US government also hears these questions, both from inside and outside the government. The National Institute of Standards and Technology (NIST), part of the US Department of Commerce, is typically responsible for issuing security guidance and has helped to create and publish guidelines on operating system hardening and secure data processing. NIST answers many of the public cloud security questions with Special Publication 800-144, Guidelines on Security and Privacy in Public Cloud Computing. Published in December 2011, this 80 page report is comprehensive in both defining cloud computing and providing guidelines for using it in a secure and private manner. 80 pages is a bit of a long read. What you need to know about SP 800-144 is best thought of in five areas of general concern. I summarize those areas as policies and practices, weak security technologies, weak availability technologies, different security expectations, and my personal favorite, attenuation of expertise. These topics will each be the focus of future articles, but an initial summary shows you where NIST’s concerns are. As you read these, you might notice that NIST has broken the concerns down into my three favorite categories for security topics: people, process, and technology. This is intentional, as you can use... --- ### How To Share A Document Library In Office 365 > Set up a document library in Office 365 to share documents with people outside your organization, such as clients or contractors. - Published: 2012-02-08 - Modified: 2024-12-03 - URL: https://petri.com/share-office-365-document-library/ - Categories: Cloud Computing - Tags: collaboration, Document library, Document sharing, Microsoft, Office 365, SharePoint, SharePoint Online - Article Type: How To In this post by IT veteran Michael Simmons, learn how to set up the sharing features of your document libraries in Office 365 so you can share a document library with someone outside of your organization, including clients or contractors. Overview With Office 365, you can use SharePoint as a collaboration tool for people working in the same department, or those working on the same project, but you can also set up a document library to share documents with people outside your organization, such as clients or contractors. In this article, I show you how to set up the sharing features of your document libraries so that you can share a document library with someone that doesn’t have an account in your organization's Office 365 deployment. If you haven’t set up a document library yet, we'll show you some of the things you should consider before you create one, and then show you the steps to create one in my previous article, Create a Document Library for SharePoint in Office 365. If you don’t have Office 365 yet, but are wondering about whether it’s a good fit for your organization, then you should definitely try out the software for yourself. You can even use your own domain name during the trial, like we show in the Petri article, Set Up Office 365 Trial With Your Own Domain Name. First, you can’t give somebody outside your organization permission to a document library without first giving them some permissions to the site the document library is in. Also, when a person gets permission to access a site, they also get access to any sub-sites that inherit their permissions from their parent site, so plan out your strategy first. You... --- ### Set Up Office 365 Trial With Your Own Domain Name > Michael Simmons walks you through setting up an Office 365 free 30 day trial on your own domain. Is Office 365 right for you? Try it out and see! - Published: 2012-02-07 - Modified: 2024-09-24 - URL: https://petri.com/set-up-office-365-trial-on-own-domain/ - Categories: Cloud Computing - Article Type: How To Microsoft's Office 365 is an entirely different approach to their software model, putting the Office suite and server products into the cloud. Because this is such a leap from what we've been doing for decades, you may be wondering if it's the right solution for your company. In this post, Michael Simmons shows you how to set up Microsoft's free 30 day trial which you can set up on your own domain. Is Office 365 right for you? Try it out and see! If you’re ready to start evaluating whether Office 365 is the right fit for you, your company, or your customers, you will be happy to know that it is easy to get started and try it out for yourself.   This article describes what you’ll need to do in order to setup a free 30 day Office 365 trial, and how to set it up to use your own domain name. Getting Started To sign up for a trial account, log in with your Hotmail or Live account and go to .   There, you can sign up for a free 30-day trial of the software, long enough to see the administration interface, and use it. Choose the Right Office 365 Plan for your Business The P ("Professional") Plan The first option you can choose is the plan type.   There are several features that the P plans offer, including email and calendar with Exchange Online; creating and editing Word, Excel, PowerPoint, and OneNote with Office Web Apps; Instant Messaging, online meetings, and PC-to-PC audio and video calls with Lync Online; and websites and document sharing with SharePoint Online.   The P plan can only be used for organizations that have up to 50 users, and cost $6 per month for each user, if you decide to convert your trial into a subscription. If you have more than 50 users, then you’ll need to use the Enterprise plans (or “E” plans. ) The E ("Enterprise") Plans The E... --- ### Configuring UCS Service Profile Templates - vNIC/vHBA Placement Policies - Part 2 > Jason Nash of TrainSignal explains how to set up vNIC & vHBA Placement Policies when configuring Service Profile Templates in Cisco UCS - Published: 2012-02-06 - Modified: 2024-09-04 - URL: https://petri.com/configure-cisco-service-profile-templates-placement-policies/ - Categories: Networking - Article Type: How To In part 2 of this two-part video series, Jason Nash of TrainSignal finishes his lesson on configuring Cisco UCS Service Profile Templates. Specifically, in this post Jason covers setting up vNIC/vHBA placement policies. This relatively new feature allows you to set up policies that determine how PCI devices are ordered on system boot-up. Overview In Part 1 of this 2-part series we discussed initial configuration of Cisco UCS Service Profile Templates.  In this second and final part of our series on creating service profile templates, we discuss configuration of Cisco UCS vNIC/vHBA Placement Policies. vNIC / vHBA Placement Configurations Placement Policies is a relatively new feature in UCSM. The long and short of it is, this becomes important in two areas: If you’re moving from, say, different blade types with different adapters like full to half or half to full, or one adapter to two adapters; or If you’re using that vNIC connection with VMWare where you’re going to create 16 new NICs. And so what you want to do here is make sure that your set devices like your HBAs and your hard set vNICs come before those dynamic vNICs. So then you set placement. You can just set it to Let System Perform Placement, which is the default. But you also have other options, like you can choose any of the placement policies you may have already created. To create a Placement Policy from here, just click Create Placement Policy. This will bring up the Create Placement Policy dialog box. You can then just move things around and tell the system where you want the slots to assign. For example, you can say Exclude Dynamic. This means, dynamic does not get placed up front.   The system allows you to set PCI order. So that when the system boots up,... --- ### Service Manager 2012 Beta: Active Directory Connector Configuration > Learn how to configure the Active Directory Connector in System Center Service Manager (SCSM) 2012. This is part 5 of a 6 part series by Peter De Tender - Published: 2012-02-03 - Modified: 2024-09-04 - URL: https://petri.com/scsm-active-directory-connector-configuration/ - Categories: Windows Server - Article Type: Overview In Part 5 of Peter De Tender's series on installing System Service Manager 2012, Peter explains how to configure the Active Directory Connector. With the AD Connector configured properly, SCSM is able to synchronize data from Active Directory. Microsoft’s System Center Service Manager 2012 Beta is now available for download. In this series of articles we’re going through all of the necessary steps to install and configure all of the different components of SCSM so you can start using it right away. So far we’ve covered: Part 1: System Center Service Manager 2012 System Requirements Part 2: How to install the Service Management Server  Part 3: How to Install the Data Warehouse Server  Part 4: How to Configure the System Center Configuration Manager 2007 R3 Today we’ll take a look at configuring the Active Directory Connector. And in the upcoming part 6 in this series we’ll complete our Service Manager setup by installing Self-Service Portal. How to Configure the Active Directory Connector in SCSM 2012 In Part 4 of this series I showed you how to create a System Center Configuration Manager connector, which synchronizes data between Configuration Manager and Service Manager. Another available connector for SCSM 2012 is Active Directory Connector, which will synchronize data from Active Directory. Let’s take a look at how to configure the AD connector. Step 1: Open the Active Directory Connector Wizard from the Service Manager console and click Next to begin the process. Figure 1: Active Direcotry Connector Wizard Step 2: Enter the name and description for this connector; in our scenario we kept it simple and enterd AD Connector for both. Figure 2: Enter a name and description for the connector   Step... --- ### Book Review - Priceless Computer Tips at Your Fingertips > Book review of Sudhir Diddee's Priceless Computer Tips at Your Fingertips by TrainSignal's Heather Ackamn. - Published: 2012-02-01 - Modified: 2012-02-01 - URL: https://petri.com/book-review-priceless-computer-tips-at-your-fingertips/ - Categories: Windows Client OS - Article Type: Review In today's post, Heather Ackmann of TrainSignal gives a short book review of Sudhir Diddee's Priceless Computer Tips at Your Fingertips. The book covers simple tips for the "average office worker" that Diddee hopes can eventually become excellent time-saving habits. Priceless Computer Tips at Your Fingertips I’ve been teaching end-users various operating systems and Microsoft Office applications for many years now and in that time I have become fairly acquainted with a lot different computer help and how-to books on the market. Sudhir Diddee’s book Priceless Computer Tips at Your Fingertips is unlike any help and how-to book I've seen thus far. Rather than creating yet another beginner deep-dive book on any one application, or a task-based step-by-step reference book, Diddee has compiled a simple book of tips covering a variety of applications that an “average office worker,” a label given to the book’s intended reader, could use to shave time off of ordinary daily tasks performed on Windows 7 and its common applications (Outlook, Excel, Word, PowerPoint, and OneNote). These “tips” take many forms, be it a not-so-commonly-known keyboard shortcut, application or OS feature, or in some cases advice on how to better leverage a feature that has been staring you in the face, every day, since the application was first loaded onto your machine. Typically, application manuals (take the Missing Manuals books for instance) treat tips such as these as an aside to the narrative or explanatory flow of the book, placing the tips in a shadowy box or divided sidebar. Here, Diddee has turned the spotlight onto these tips, making them the focus of the book. Not Your Average Book In short, this is not your typical book, and it cannot be read as such. In fact,... --- ### Crash Dump Analysis Part 3: Basic BSOD Troubleshooting > Have a Blue Screen Error in Windows? Diagnosis Blue Screen of Death in this BSOD Troubleshooting article by Michael Simmons - Published: 2012-02-01 - Modified: 2024-09-24 - URL: https://petri.com/bsod-troubleshooting/ - Categories: Windows Client OS - Article Type: Overview In part 3 of Micahel Simmons' series on crash dump analysis, Michael finally dives into the dreaded Blue Screen of Death (BSOD) by using the Windows Debugger (WinDbg). There is a lot of information to be had in these memory dumps and Michael will show you how to find out what Windows is trying to tell us about your unhealthy computer. Overview This is the 3rd part in the series, and in this post we’ll actually work through the analysis of a memory dump. There are many other names for the memory dump.   Besides memory dump, they’re called crash dumps, system dumps, blue screen dumps, blue screen errors, system crash files, plus every other combination of those words.   Microsoft calls them memory dumps in their documentation, but I refer to them all synonymously.   No matter whether you call them system dumps or crash dumps, this post tells you how to read them. How To Find Out What Causes A Blue Screen and Memory Dump Once you’ve gotten a copy of a memory dump file, the first thing you’ll need to do is - Open Windbg - Press CTRL+D, or choose “Open Crash Dump... ” from the File menu - Select the crash dump If you haven’t already gotten your crash dump, then you’ll need to do that.   There are options for connecting to a remote session, but that cannot be used to connect to a memory dump file located on another machine. You can email it to yourself, save it to the administrator’s file server, or carry it over on a jump drive.   For that matter, if you can talk a customer through finding it over the phone (as long as the machine is bootable and operable), just have your customer email it to you.   As long as it’s not a complete memory dump it... --- ### Free Webinar: Best New Features in Exchange 2010 SP2 - Published: 2012-01-30 - Modified: 2024-11-19 - URL: https://petri.com/exchange-2010-sp2-webinar/ - Categories: Exchange Server - Article Type: News Service Pack 2 for Exchange 2010 offers a number of features that will help you get more done and save time. Join Exchange MVP J. Peter Bruzzese for a freelive webinar to learn about the best new features in Exchange 2010 SP2. Overview Service Pack 2 for Exchange Server 2010 offers four key features along with several smaller enhancements that will help Exchange Admins get more done and save time. What are these features you ask? And how can you take advantage of them? Join me on Wednesday, February 1st for a free live webinar on the Best New Features in Exchange 2010 SP2 to learn about the new features and enhancements built into the service pack and how you can start utilizing them today. Register Today: Best New Features in Exchange 2010 SP2 Date: Wednesday, February 1st 2012 Time: 12 PM - 1 PM CST Registration: Register today. Seats are limited. During this free webinar you'll learn about: Outlook Web App Mini - a lightweight browser-based client that provides all the basic functionality of OWA but is easier to use than the standard OWA webpage. Address Book Policies - which allows you to specify which Global Address Lists, offline address books, room lists or address lists are visible to users. OWA Cross-Site Silent Redirection - which improves user experience by performing a silent redirection for requests to a Client Access Server (CAS) in another Active Directory site, also allowing for a Single sign-On (SSO) experience. You'll also learn about the new Hybrid Configuration Wizard which will help you simplify deployments of your hybrid scenarios, as well as an easier way to enable the Mailbox Replication Service that will prove to be a huge time saver, plus a lot more. Why spend hours (or days! ) researching the different features in SP2... --- ### Avoid Storage I/O Bottlenecks With vCenter and Esxtop > Use Virtualization Manger and Storage Manager to troubleshoot and solve I/O Bottlenecks that can hurt virutlization performance. - Published: 2012-01-30 - Modified: 2024-12-03 - URL: https://petri.com/avoid-stroage-io-bottlenecks/ - Categories: Virtualization - Article Type: How To In today's post, Eric Siebert discusses I/O storage bottlenecks, perhaps the most vulnerable part of a VM in terms of potential performance loss. Eric demonstrates how to use vCenter Server and exstop to troubleshoot and solve any I/O bottlenecks but also suggests looking at other 3rd party options such as Virtualization Manager and Storage Manager. Overview Storage I/O bottlenecks can have a big impact on virtual environments and can wreak havoc on the performance of the virtual machines within them. The guest operating systems and applications running inside VMs are constantly reading and writing to and from their virtual disks and anything that delays this can slow a VM to a crawl. Of all the resources a host manages, traditional storage devices are typically the slowest resource because they rely on mechanical spinning hard disks. In addition shared storage arrays are commonly used in virtual environments because of the many features that require shared storage and as a result there is a longer path to get to storage resources. Storage I/O must leave the host through an I/O adapter and traverse a storage or traditional network to get to a storage array. This long data path creates the potential for several choke points or bottlenecks that can occur which can reduce the capacity and speed of storage I/O. Bottlenecks dictate the speed limit of your storage I/O; for example you may have a very fast storage array but if the path to that storage array has a bottleneck you are not going to be able to take advantage of the speed of the storage array. On the flip side you may have a fast connection to your storage array but if it is not optimally configured the storage array can become a bottleneck as well. The result is that a bottleneck becomes... --- ### Service Manager 2012 Beta Part 4 - SCSM 2007 R3 Connector Configuration > In part 4 of this series on installing Service Manager 2012, learn to configure the SCCM 2007 R3 Connector. - Published: 2012-01-27 - Modified: 2024-09-24 - URL: https://petri.com/sccm-2007-r3-connector-configuration/ - Categories: Windows Server - Article Type: Overview In part 4 of Peter De Tender's 6 part series on installing Service Manager 2012, Peter walks through configuring the SCCM 2007 R3 Connector. This is a critical step as it connects SCSM to your System Manager, feeding important data to your CMDB and simplifying the management of objects and data. Microsoft has recently released the Beta version of System Center Service Manager 2012. In this series we’re focusing on all of the installation and configuration steps you’ll need to go through to successfully get your Service Manager 2012 up and running. In previous parts in this series we covered: Part 1: What SCSM 2012 has to offer and the system requirements you’ll need before you begin the installation  Part 2: The complete installation walk-through of the Service Management Server installation  Part 3: How to install and configure the Data Warehouse Server In today’s Part 4 of the series we’ll focus on configuring the System Center Configuration Manager 2007 R3, which is a fairly simple process. In upcoming parts of the series we’ll also cover: Part 5: Active Directory Connector Configuration Part 6: Self-Service Portal Installation Configuring System Center Configuration Manager 2007 R3 One of the major benefits when using System Center Service Manager, is also making use of System Center Configuration Manager. This allows for “feeding” Service Manager with important data from Configuration Manager, into the CMDB, which in turn simplifies the management of objects and data into the Service Desk application. Step 1: From the Service Manager console, select Create Connectors wizard and choose Create a Configuration Manager Connector. Figure 1: Create Connectors Wizard in SCCM Step 2: Once you’re in the connector wizard, click Next to start the process. Figure 2: Creating a new connector in SCCM Step 3: Enter a Name and Description for... --- ### Diagnosing Windows Memory Problems > Jeff Hicks shows us how to use Windows Memory Diagnostic tool to diagnose windows memory issues. - Published: 2012-01-26 - Modified: 2024-09-24 - URL: https://petri.com/windows-memory-diagnostic-tool/ - Categories: Windows Client OS - Article Type: Overview One of the most common reasons computers fail is because of faulty or failed memory and Windows does a good job alerting you after the memory has failed. It is better to find failing memory before it has crippled your machine though. In this post, Jeff Hicks explains how to use the Windows Memory Diagnostic Tool to diagnose memory issues. Overview I can remember way back when how amazed I was to order a new desktop computer with 2MB of RAM. Even the days of ordering a server with 64MB of RAM seemed like sooooo much memory. And in case you missed it, those are values in megabytes. Naturally today’s systems are in another class altogether. And while I’d like to think the quality of memory manufacturing has also increased over the years, things can still go wrong. Failing or faulty memory doesn’t always manifest itself with a huge announcement. In the event that Windows 7 or Windows Server 2008 detects such a problem, it will most likely prompt you to run the Windows Memory Diagnostic tool. But you can also manually run this tool anytime you’d like if you prefer to be a bit more proactive. Using the Windows Memory Diagnostic Tool You can manually launch the Windows Memory Diagnostic tool from the Administrator Tools menu short cut. Or if you prefer a command line approach run this: ​C:> mdsched Alas, there do not appear to be any command line parameters. However you launch it you should get something like Figure 1. Figure 1 Windows Memory Diagnostic As the dialog suggests you can either reboot immediately or schedule the diagnostic for the next reboot. Whichever option you choose, upon reboot, the memory diagnostic will launch automatically and begin running. You will see something like Figure 2.   Figure 2 Running Memory Diagnostic... --- ### 3 Steps To Secure Your Data In the Cloud > Top 3 steps to secure your data in the cloud. Greg Stuart walks through three simple steps to secure your data utilizing the cloud and cloud services. - Published: 2012-01-26 - Modified: 2024-09-24 - URL: https://petri.com/3-steps-to-secure-your-data-in-the-cloud/ - Categories: Cloud Computing - Article Type: How To In this post, Greg Stuart challenges you to protect your data in 2012. Greg provides an easy 3 step guide to protecting your data both from intruders and from hardware failure by putting your data in the cloud and securing it properly. Introduction A new year always brings new promises, fresh starts and an opportunity to right what was wrong from the past year.  With 2011 in the rear view mirror we can make changes that will put us in a better place in 2012.  The resolution I'm talking about is finally securing your data in the Cloud.  It might sound like a daunting task, but believe me, it's easier than you think. In 2011 there was an outcropping of attacks by hackers and phishers looking to either corrupt our data, steal it or destroy it. Let's look back at a few of the startling statistics from 2011: Playstation Network was hacked and 77 million user accounts were compromised Central Intelligence Agency's (CIA) website was hacked taking control of the site's accessibility PBS. org website was hacked taking control of internal hosts and databases These attacks and others have cost companies loss of revenue and has hurt the consumer's wallets as well.  So what is the ironclad approach to securing our personal data? Unfortunately, there is no ironclad approach. There are however, some simple ways that we can protect our data that will keep us from losing all that we have. The majority of us are not CEOs or Executive Vice Presidents, but our data is still important to us and we should treat it as such. With the growth and popularity of Cloud Computing, we have the opportunity to create a multi-layered approach to securing our data. Here are... --- ### OSPF Redistribution Troubleshooting > Sean Wilkins discusses OSPF Redistribution configuration. Proper configuration is the first step to troubleshoot OSPF Redistribution issues. - Published: 2012-01-25 - Modified: 2024-09-24 - URL: https://petri.com/ospf-redistribution-troubleshooting/ - Categories: Networking - Article Type: Overview In today's post, Sean Wilkins discusses OSPF redistribution and briefly covers some issues that one must keep in mind when configuring redistribution within OSPF. With these things in mind, you can go a long way towards ensuring that your network will continue to run smoothly and correctly when utilizing OSPF redistribution. Overview Configuring OSPF redistribution in the first place can be very overwhelming, especially when attempting to perform two-way redistribution. There are many things to consider ensuring that the intended result will be achieved without injecting unwanted routes into either network. This article takes a look at OSPF redistribution, how it is done and some things to look out for when configuring it to ensure that any potential problems are limited. What is Redistribution? Redistribution is the exchange of routing information between two separate routing domains. These domains can be different routing protocols (EIGRP to OSPF, OSPF to EIGRP) or can be between the same routing protocols in different domains (OSPF to OSPF). One way redistribution is used is to only move routes in a single direction and is typically much easier to configure. Problems typically occur when two-way redistribution is used and multiple redistribution points and/or multiple routing domains are used. These problems occur because it is then possible to have routes sent into a neighboring routing domain and then sent back; it is possible in these situations to have local traffic be routed through an external routing domain because the re-redistributed routes have better metrics. Another thing to keep in mind when configuring redistribution, routes will only be redistributed if they exist within the current routing table. If the device knows of a route to a network via two different routing protocols, the route that will be inserted into the routing table... --- ### How To Change User Password With PowerShell > How to Change Windows Passwords with PowerShell. This is much faster because you can apply it to several machines at once with reusable code. - Published: 2012-01-24 - Modified: 2012-01-24 - URL: https://petri.com/how-to-change-user-password-with-powershell/ - Categories: Security - Tags: Editor's Pick - Article Type: How To In today's post, Michael Simmons shows how simple it is to change user's local and domain passwords using PowerShell with WMI and .NET. This allows quick flexible changes to user accounts with script that can be reused whenever the need arises. I am going to show a couple of very easy ways to change or reset a user's local or domain account password using PowerShell.   You do not need any PowerShell modules.   Just built in PowerShell will be used to change the password. Why do anything with PowerShell when you can already use CMD? An important concept to grasp is the ability to reuse code and process multiple items. “I can already use the NET USER command from CMD.   Why use PowerShell? ” We want to use PowerShell for 3 reasons: It’s the new way.   PowerShell creator Jeffrey Snover is now the Lead Architect for Windows Server 8.   Him moving into a role of such importance is the exclamation point on what PowerShell people have been saying since it came out: “Start using it or start getting left behind! ” Reusability.   Even though our simple task of changing a user’s password should not be something that needs to be scripted, and then reused, it could be.   And anything you use with PowerShell can be.   It’s definitely one of the important reasons we want to use PowerShell when we can.   You never know at the start of a project that you won’t want to reuse some part of it on a later project. Write once, process many.   Once we’ve got a command to change a password, there’s no reason we can’t use that command on multiple objects.   It’s easy, and that’s philosophy is at the core of all automation. [adkit zone="freestyle"... --- ### Cisco UCS - Creating Service Profile Templates - Part 1 > In this video post from TrainSignal, Jason Nash explains how to create service profile templates in Cisco Unified Computing System Manager. - Published: 2012-01-23 - Modified: 2024-09-04 - URL: https://petri.com/cisco-ucs-creating-service-profile-templates/ - Categories: Networking - Article Type: How To In this video post from TrainSignal, Cisco UCS expert Jason Nash will show you the required steps to creating a Service Profile Template in your Cisco Unified Computing System. Service Profile Templates can make it easy for you to provision many servers because it will allow you to quickly create multiple service profiles having the same basic parameters like say the number of vNICs and vHBAs. Introduction Service Profile Templates can make it easy for you to provision many servers because it will allow you to quickly create multiple service profiles having the same basic parameters like say the number of vNICs and vHBAs. In this video, from TrainSignal's Cisco UCS expert Jason Nash will show you the required steps to creating a Service Profile Template in your Cisco Unified Computing System. To create a service profile template from within your Cisco Unified Computing System Manager, navigate to Servers > Service Profile Templates, and right-click on root.   On the context menu, select Create Service Profile Template.   Identify Service Profile Template The first thing you’ll be asked to enter is your service profile template’s name. For best practice, use a naming scheme that will help you quickly differentiate this from something else like a profile or a policy. For example, here, we used a dash followed by “Templ” for template. Next, choose a template type. The options are Initial Template and Updating Template. Initial templates don’t have linkages to the servers created based on them. So if you make changes to items defined by initial templates, those changes won’t be propagated to the servers. Updating templates, on the other hand, do have links to servers created based on them. So changes to an updating template will be cascaded to those servers. In our example, we selected this particular kind of service profile template. After selecting a template type, choose an appropriate UUID assignment. This... --- ### Service Manager 2012 Beta: Installing the Data Warehouse Server > Install data warehouse server on a virtual machine to comply with Microsoft's best practices on installing System Service Manager 2012. Part three of six! - Published: 2012-01-20 - Modified: 2024-09-24 - URL: https://petri.com/installing-the-data-warehouse-server/ - Categories: Windows Server - Article Type: Overview In the third installment of Peter De Tender's series on Installing Service Mangager 2012 Beta, Peter explains how to set up the data warehouse server. Microsoft best practices state that this should be installed on a separate machine so Peter walks you through, step-by-step, installing the data warehouse manager on a separate VM. In the first two parts of this series, we covered what System Center Service Manager 2012 has to offer and what the SCSM System Requirements entail as well as the complete step-by-step instructions for installing the Service Management Server, with the end result being a fully operational Service Manager 2012 beta infrastructure. Today we will focus on installing the Service Manager Data Warehouse Server. This role will be configured on a separate virtual machine in our environment. According to Microsoft’s best practices, the Data Warehouse Server should not reside on the same server as the Management Server, so we’ll follow the guidelines by installing it on a separate VM. After we successfully install the Data Warehouse Server, we will configure the Data Warehouse Connection from the Service Manager management server console. In future articles in this series we’ll take a look at: Part 4: Configuration Manager 2007 R3 Connector Configuration  Part 5: Active Directory Connector Configuration Part 6: Self-Service Portal Installation Installing the Service Manager Data Warehouse Server Start by opening the Service Manager Setup Wizard and selecting “Install a Service Manager data warehouse management server. ” Figure 1: Install a Service Manager data warehouse management server Step 1: Enter the Name and Organization and click Next. Figure 2: Data Warehouse Server Product Registration Step 2: Confirm the suggested program file location or choose a specific one and click Next Figure 3: Installation location Step 3: Confirm the prerequisites (we’ll ignore the warnings in our... --- ### Create Environmental Variables With SetX > Jeff Hicks shows how to use setx.exe to create custom environmental variables easily and efficiently. This is especially useful for remote machines. - Published: 2012-01-19 - Modified: 2022-12-05 - URL: https://petri.com/setx-to-create-custom-environmental-variables/ - Categories: Windows Client OS - Article Type: How To In today's post, Jeff Hicks discusses SetX.EXE which allows IT pro's to quickly and efficiently create their own environmental variables. SetX makes the task of adding custom environmental variables to support internal applications or automated processes very easy, especially when this needs to be done on remote machines. Overview Even though it has been around since forever, environmental variables continue to play an important role in the Windows operating system. You will still find applications, even the operating system, looking for values like %WINDIR% and %USERNAME%. Many IT Pros add their own environmental variables to support internal applications or automation processes. Configuring new environmental variables on remote machines can be a difficult and time consuming chore, or you can use a command tool like SETX. EXE. Using SETX. EXE You can find SETX. EXE on your Windows 7 desktop, which is where I’m assuming you are doing most of your management from. Open an elevated command prompt with administrator credentials and look at help. ​C:\> setx /? | more There’s a lot here so I’m piping to the MORE command. You can use this tool to set environmental variables locally or on remote computers, assuming you have admin credentials. You can create either USER environmental variables or MACHINE environmental variables. The default is USER, using whatever credentials you are running under. I’m going to assume you want to set per machine variables. The simplest syntax is to specify the variable name and a value. ​C:\> setx /s server01 Company "Acme Anvils" /m This variable should be available the next time someone logs on to SERVER01. If you are running commands like this locally, they will be available in the next console window you open. ​C:\> setx MyLocation 9 C:\> setx asset_center 45632456 /m The... --- ### OSPF Stub Area Troubleshooting > Sean Wilkins explains OSPF Stub Area troubleshooting and how it relates to Link State Advertisement (LSA) types. This is the 2nd post in a series on OSPF Areas. - Published: 2012-01-18 - Modified: 2012-01-18 - URL: https://petri.com/ospf-stub-area-troubleshooting/ - Categories: Networking - Article Type: Overview Sean Wilkins continues his discussion on OSPF Area Troubleshooting. In today's post, Sean reviews link state advertisement (LSA) types and also reviews the different stubby areas and what they allow and deny. From there, Sean dives into common stubby area problems and how they can be resolved. Overview It is hard to understand the concepts, configuration and troubleshooting of normal OSPF areas. This article extends on these topics and covers the specifics inside the OSPF stub area types. The article on normal OSPF area troubleshooting reviews the different types of OSPF areas that can be used; this article will take a look at the different Link State Advertisement (LSA) types as well as a deeper look at what the stubby area types provide and how they are used to control the different LSAs that are allowed within each type of stubby area. What are LSAs? The reachability information that is passed between the different routers in an OSPF domain are communicated via LSAs. There are several different types of LSA that communicate different pieces of information. In a normal area, all LSA types are allowed and communicated between the devices. A list of the different common LSAs is shown below: LSA Type 1 – Router Link Advertisements – All OSPF devices send this LSA type, it contains the states of all of the interfaces that the device has in the OSPF domain. This LSA type is kept within a single area. LSA Type 2 – Network Link Advertisements – Only Designated Routers (DR) send this type of LSA, it contains a list of devices connected to a particular network.   This LSA type is kept within a single area. LSA Type 3 – Summary Link Advertisements – Only Area Border Routers... --- ### Understanding FSMO Roles in Server 2008 Active Directory > Michael Simmons explains FSMO Roles and how they can prevent conflicts when making changes to Active Directory objects. - Published: 2012-01-17 - Modified: 2024-11-19 - URL: https://petri.com/fsmo-roles-in-server-2008-active-directory/ - Categories: Active Directory (AD) - Article Type: Overview In this post, Michael Simmons explains FSMO Roles in Active Directory 2008. Michael covers all 5 roles: Schema Master, Domain Naming Master, Infrastructure Master, Relative ID Master and Primary Domain Controller Emulator. Together, these FSMO Roles help prevent conflicts when making changes within the traditional multi-master model. Overview FSMO stands for Flexible Single Master Operations, and FSMO roles (also known as operations master roles) help you prevent conflicts in your Active Directory. In this article we'll examine the difference between the single and multi-master models in Windows Server 2000, 2003 and 2008 and we'll go through what you need to know about the different FSMO roles. We'll also take a look at FSMO reliability and availability and what's new with FSMO in Windows Server 2008. Windows 2000/2003/2008 Multi-Master Model For most Active Directory objects, the task of updating can be performed by any Domain Controller except those Domain Controllers that are read-only.  Updates such as computer object properties, renamed organizational units, and user account password resets can be handled by any writable domain controller. After an object is changed on one domain controller, those changes are propagated to the other domain controllers through replication.  During replication all of the Domain Controllers share their updates.  So a user that has their password reset in one part of the domain may have to wait until those changes are replicated to the Domain Controller that they are signing in from. This model works very well for most objects.  In the case of any conflicts, such as a user's password being reset by both the central helpdesk as well as an administrator working at the user's site, then conflicts are resolved by whichever made the last change.  However, there are some changes that are too important, and are not... --- ### Video: Social Engineering for Your Enterprise > Lisa Szpunar of TrainSignal explains different social engineering techniques and how you can protect yourself and your company from losing sensitive information. - Published: 2012-01-16 - Modified: 2024-09-04 - URL: https://petri.com/social-engineering-security-plus/ - Categories: Security - Article Type: How To Lisa Szpunar of TrainSignal explains basic social engineering tactics in this video lesson. Lisa eloquently explains the different techniques used to steal personal information and simple ways companies and individuals can combat these attacks. Social Engineering: Overview Because social engineers largely build on the gullibility, enthusiasm, and in general, the desire of most individuals to please, it’s very hard to defend against a social engineering attack. In most cases, the victims, i. e. company employees and even executives, don’t even realize that they’ve been duped. Those who utilize social engineering in attacking a company have similar objectives as that of any other type of fraudster: to gain access to the company’s money, sensitive information, and/or IT resources. Or, they may simply be motivated by curiosity or the desire to sabotage. A social engineer may therefore be anyone who has something to gain from getting hold of important data - counterfeiters, hackers, competitors,or even an ex-employee who has an axe to grind against the company. For these people, social engineering strategies may yet provide the perfect recipe for them to wreak havoc. It is thus imperative for company employees to be aware of the various social engineering techniques employed by fraudulent individuals and how they should react accordingly when faced with these types of scenarios. So let’s get on with the all-important question - just what is social engineering? What is Social Engineering? Social engineering is defined as the art of manipulating people into divulging confidential information or performing certain actions that could lead to the disclosure of or access to the sensitive information. Rather than using conventional hacking techniques to break into a system, a social engineer makes use of psychological trickery on legitimate users... --- ### Service Manager 2012 Beta: Installing the Service Management Server > Learn how to install System Center Service Manager 2012 beta in this 2nd post of the 6 part series by Peter De Tender. - Published: 2012-01-13 - Modified: 2024-09-24 - URL: https://petri.com/system-center-service-manager-2012-installation/ - Categories: Windows Server - Article Type: Overview In Part 2 of Peter De Tender's series on System Center Service Manager 2012 beta, Peter walks through the installation processes. Peter provides an excellent walkthrough with screen shots and instructions. In part 1 of this series we went over the software and hardware system requirements for System Center Service Manager 2012 Beta installation. Today we'll go through a full installation walk-through, complete with screenshots that will help you get Service Manager 2012 setup on your system. The end result will be a fully operational Service Manager 2012 beta infrastructure. In future articles in this series we'll take a look at: Part 3: Installing the Data Warehouse Server  Part 4: Configuration Manager 2007 R3 Connector Configuration  Part 5: Active Directory Connector Configuration Part 6: Self-Service Portal Installation Installing System Center Service Manager 2012 Beta The download of System Center Service Manager 2012 beta is currently available at: http://www. microsoft. com/download/en/details. aspx? id=27844 One of the first popups you will see when starting the setup program from the Service Manager installation medium is the requirement for the . NET Framework 3. 5 SP1, as shown in Figure 1 below.   Figure 1: . NET Framework 3. 5 SP1 Requirement This might cause some confusion when clicking OK, since the setup routine will fail. The reason for this is that the . NET Framework 3. 5 is part of the Windows Server 2008 R2 Operating System, and should be installed by using the Roles & Features snap-in. Once this feature is properly installed, you will see the setup wizard window: Figure 2: Service Manager Setup Wizard Step 1: Select the first available option: Install a Service Manager management server Figure 3: Service Manager Product Registration Step... --- ### Command Line Event Logs - Part 2 > Learn how to manage event logs with command line. Jeff Hicks explains how to use WEVTUTIL.EXE to manage event logs via Command Line. - Published: 2012-01-12 - Modified: 2024-12-03 - URL: https://petri.com/managing-command-line-event-logs/ - Categories: Windows Client OS - Article Type: Overview In part 2 of his series on command line event logs, Jeff Hicks discusses how to manage the event logs with the command line and WEVTUTIL.EXE Overview In my last article Command Line Event Logs I introduced the command line utility WEVTUTIL. EXE, which you can use to get event log information on your Windows 7 machine. In this article, I want to show you how to use it to manage the event logs themselves. Remember, you can always ask the utility for help. ​C:\> wevtutil /? If some of the parameters don’t make sense to you in the following examples, take a few minutes to go back and read Command Line Event Logs - Part 1. Listing Logs The first task to look at is enumerating all the event logs. You might also need to know the log name for query purposes. All we need to do is use the el or enum-logs parameter. Here are the logs on the remote server CHI-FP01: ​C:\>wevtutil el /r:chi-fp01 | more Analytic Application DNS Server DirectShowFilterGraph DirectShowPluginControl EndpointMapper ForwardedEvents HardwareEvents Internet Explorer Key Management Service Microsoft-IE/Diagnostic ... I piped to MORE to send results in pages. The server is running Windows Server 2008 R2 so it has all of the new diagnostic logs. Once you’ve identified a log, you can get additional information on it using the gli or get-log-info parameter. ​C:\>wevtutil gli application /r:chi-fp01 creationTime: 2011-04-27T00:51:21. 140Z lastAccessTime: 2011-04-27T00:51:21. 140Z lastWriteTime: 2011-12-26T19:05:11. 537Z fileSize: 2166784 attributes: 32 numberOfLogRecords: 2399 oldestRecordNumber: 1 The file size is in bytes and I can see that there are almost 2,400 entries in the Application log. Here’s a little... --- ### OSPF Area Troubleshooting > Sean Wilkins explains what OSPF areas are and how to troubleshoot and solve OSPF area problems. - Published: 2012-01-11 - Modified: 2024-09-24 - URL: https://petri.com/ospf-area-troubleshooting/ - Categories: Networking - Article Type: Overview In this post, Sean Wilkins discusses OSPF areas. Sean first discusses what OSPF areas are and the different types of OSPF areas. From there Sean discusses different issues that can arise with OSPF area setups and how to troubleshoot them. Overview When setting up dynamic routing protocols, there are certainly a number of things that need to be configured correctly for everything to end up working as planned. On top of this, each of the different routing protocols has different elements that they expect to be configured first for each of them to operate correctly. This article takes a look at these requirements from the perspective of OSPF and shows the different commands that can be used to ensure proper OSPF area configuration and display the different messages that occur when misconfiguration exist. What are OSPF Areas? Before an engineer is able to effectively troubleshoot OSPF areas they must be familiar with what an OSPF area is and how it is used. An OSPF area (also referred to as an OSPF domain) is created to logically group together networks and the hosts that are connected to them (including the routers). The specific design of OSPF areas is outside the scope of this article, but they can be very simple with a single area (area 0) or very complex with several areas connecting together thousands of routers. There are a couple of different OSPF area types, these include: Backbone – The backbone area must be implemented when configuring OSPF and all areas must connect through it (area 0). Normal – A normal area is an area that has no constraints, the backbone area is a special normal area. Stubby – A stubby area is an area that is... --- ### Crash Dump Analysis Part 2: Memory Dump Files > Learn how to save memory dump files and chose the type of dump that is best for your situation. Solve BSOD with memory dump files. - Published: 2012-01-09 - Modified: 2024-11-19 - URL: https://petri.com/memory-dump-files/ - Categories: Windows Client OS - Article Type: Overview In Part 2 of his series on Crash Dump Analysis, Michael Simmons discusses the memory dump files themselves. Michael explains which type of memory dump is best for your situation and how to make sure you can find them after they are saved. Overview In this series, you’ll be introduced to crash dump analysis. Crash dump analysis is the examination of a Windows Crash Dump, the byproduct of Blue Screen of Death (BSOD).    In Part 1, we showed you the Windows Debugger found in the Windows SDK and how to install it.  In this post, we will discuss the memory dump files in a greater depth. How To Find Memory Dumps On Windows 7 and Windows Server 2008 R2 By default, Windows 7 is configured to automatically reboot on a system crash.   Instead of the typical Blue Screen of Death (BSOD) you may have become accustomed to in older versions of the Windows, the system just performs an unannounced reboot in the middle of doing your work.   This picture shows the Startup and Recover options on a default installation of Windows Server 2008 R2.   Notice that the system is configured to automatically restart.   Also, there are options for the location of the dump file, and what type of memory dump file is available: Complete, Kernel, or Small. What is the Difference Between a Complete, Kernel, and Small Memory Dump? A complete memory dump is all of the memory in use by all processes at the time of the crash.   It has the most available information within it.   The kernel dump is a smaller, keeping only the items in memory from processes running in kernel mode.   The small dump, (also known as a Mini-dump) is very... --- ### Exchange 2010 UM - Creating Custom Prompts (Video) > Learn how to record custom auto attendant prompts in Exchange 2010 Unified Messaging (UM) in this video post. - Published: 2012-01-09 - Modified: 2024-09-04 - URL: https://petri.com/creating-custom-prompts-in-unified-messaging/ - Categories: Exchange Server - Article Type: How To In this video post, J. Peter Bruzzese explains how to create custom prompts for auto attendants on Exchange 2010 Unified Messaging using a telephone. This can be an excellent way to add or change custom prompts quickly from any location. Peter cites a great usage example: Communicating to clients that a severe storm has closed your offices for the day. Overview In this tutorial, we’ll show you how to create custom prompts for your Unified Messaging (UM) Auto Attendants. We’ll start by briefly discussing your options for creating these prompts. Then we’ll zoom in to a particular method, which I’m sure you’ll find rather cool, and discuss that method in detail. Various methods for creating custom prompts for your auto attendants There are a couple of ways for creating custom prompts for your auto attendants. All of them involve recording your voice in some kind of sound recorder. Note that custom prompts have to be recorded in a very specific format, which is: 16-bit, 8KHz, Mono, stored in a . wav file format. Alternatively, you can initially save the recording in some other format and then convert the file into the format specified above (i. e. , 16-bit, 8KHz, etc. ). The problem with this method is that, even if you have the right format, the codec used may not be acceptable to the Unified Messaging server. One way to remedy this would be to use a Windows XP sound recorder to record your voice and then save it. Or you can bring in a wav file, open it using the Windows XP sound recorder, and then save it in the accepted format. There are also third-party tools (e. g. Blaze Media Pro) that can record your voice and save them into the accepted format, so you can use those as well. Of course, many of these third-party tools require a fee, so if you... --- ### Service Manager 2012 Beta: SCSM System Requirements > What is System Center Service Manager 2012? Download the beta and learn system requirements and how to install SCSM 2012 - Published: 2012-01-06 - Modified: 2012-01-06 - URL: https://petri.com/system-center-service-manager-2012-installation-requirements/ - Categories: Windows Server - Article Type: Overview Microsoft recently released System Center Service Manager 2012 beta. In this first of a series of posts by Peter De Tender about installing System Center Service Manager 2012, we learn what SCSM 2012 offers and what is needed to get it up and running. Microsoft has recently released the System Center Service Manager 2012 Beta. In this series of articles, I’m going to show you how to install the newest version of SCSM so you can start using it right away. Today we’ll go over what System Center Service Manager 2012 is and what it has to offer. We’ll also take a look at the software and hardware requirements that you’ll need in order to successfully complete the installation. In future posts we’ll cover the Service Manager console server components, SQL 2008 R2 server components, data warehouse server components and the self-service portal server components. Here’s an outline of the complete series: Part 2: Installing the Service Management Server  Part 3: Installing the Data Warehouse Server  Part 4: Configuration Manager 2007 R3 Connector Configuration  Part 5: Active Directory Connector Configuration Part 6: Self-Service Portal Installation After completing the steps outlined in this series of articles you will have a fully operational base installation of Service Manager 2012 Beta platform. After that I’ll publish regular updates on how to make use of your Service Manager 2012 install as a professional Service Desk solution. Now, let’s take a look at what System Center Service Manager is and what the new 2012 Beta version has to offer. What Is System Center Service Manager 2012? System Center Service Manager 2012 delivers an integrated platform for automating and adapting IT Service Management best practices to your organization's requirements. Service Manager can help... --- ### Command Line Event Logs - Part 1 > Quickly manage event logs through command line. This can often be quicker and more efficient than using a graphic interface (GUI) - Published: 2012-01-05 - Modified: 2024-12-03 - URL: https://petri.com/command-line-event-log/ - Categories: Windows Client OS - Article Type: Overview Jeff Hicks is back with more command line tricks. In today's post, Jeff talks about how you can manage event logs with the command line. This is usually faster than navigating through a GUI once you get a hang of it. Overview Don’t get me wrong, graphical tools are just fine. However, I tend to spend a lot of time at the command line and can often type commands faster than I can navigate through a GUI. Plus, if I’m looking for ways to build an automated administrative task, command line tools are essential. You might think all I care about is Windows PowerShell. And while PowerShell is indeed an incredible tool, I realize some IT Pros aren’t ready for it or for one reason or another can’t use it. But all is not lost. Let me show you a command line tool you have on your Windows 7 desktop that you can use to manage event logs. Actually, this tool has been around since Windows Vista, but since command line tools rarely get the love they deserve I’m expecting many of you have never seen this. Managing Event Logs with the Command Line Open a command prompt and look at help for WEVTUTIL. EXE ​C:> wevtutil /? Windows Events Command Line Utility. Enables you to retrieve information about event logs and publishers, install and uninstall event manifests, run queries, and export, archive, and clear logs. Usage: You can use either the short (for example, ep /uni) or long (for example, enum-publishers /unicode) version of the command and option names. Commands, options and option values are not case-sensitive... . There’s much more to the help than what I’ve shown here. But as you can see... --- ### The IPv6 Transition > Learn about IPv4 to IPv6 Transition options. Sean Wilkins discusses Dual Stack, Tunneling and Translation. - Published: 2012-01-04 - Modified: 2012-01-04 - URL: https://petri.com/ipv6-transition/ - Categories: Networking - Article Type: Overview The IPv4 to IPv6 transition is upon us but the undertaking is not one that can take place with the flick of a switch. In this post, Sean Wilkins takes a look at the options available to organizations for an efficient and headache free transition. Which method is best for you? Overview With the number of IPv4 addresses almost completely depleted, the implementation of IPv6 has become a priority for many organizations. However, it is not all that feasible to just switch everything over to IPv6 without some type of transition. This article takes a look at the methods that can be used to transition to IPv6 from IPv4. IPv6 Transition Methods There are a couple of main methods that can be used when transitioning a network from IPv4 to IPv6; these include: Dual Stack - Running both IPv4 and IPv6 on the same devices Tunneling - Transporting IPv6 traffic through an IPv4 network transparently Translation – Converting IPv6traffic to IPv4 traffic for transport and vice versa. Dual Stack The simplest approach when transitioning to IPv6 is to run IPv6 on all of the devices that are currently running IPv4. If this is something that is possible within the organizational network, it is very easy to implement. However, for many organizations, IPv6 is not supported on all of the IPv4 devices; in these situations other methods must be considered. Tunneling Most people with some networking knowledge are familiar with the concept of tunneling; a given packet is encapsulated into a wrapper than enables its transport from a source to destination transparently where it is decapsulated and retransmitted. There are a number of different tunneling methods that exist for IPv6, many that are integrated as part of Cisco and other manufactures certification tests. The following... --- ### Petri's Top 4 Password Reset Utilities > Lost your windows password? Try one of these password reset tools to get access to your machine quickly. - Published: 2012-01-03 - Modified: 2024-12-03 - URL: https://petri.com/top-4-windows-password-reset-tools/ - Categories: Windows Client OS - Tags: commercial, password reset, software roundup, Windows - Article Type: Overview Have you ever needed to work on a computer but couldn't because the password was lost? Instead of spending time trying to guess what the password is or tracking it down from an old employee, sometimes it's better to just reset the password. In this post, Michael Simmons covers 4 great password reset utilities that will get you into the locked out machine in no time. Introduction Working with computers all day, technicians can fix anything.   But you can't get much done without logging into the computer.   Whether the old password was reset by a former employee, or perhaps the computer is older than you realized and the admin password is just not any of the recent passwords, the results are the same:  You either need to find out the password, or reset it. "Hmm... the administrator password isn't working.  How long has this been off the network? " More often than not, technicians describe this as "cracking the password".   Cracking the password is actually describing methods to determine what the password is.   Now, most technicians don't especially care what the password is.   What is really needed is access to the system.   That can come from cracking the password, but it's faster and easier to reset the password, where regardless of the original password, you set a new password to whatever you choose. If you download a password reset utility from the wrong place, you may get more than you bargained for.   Avoid malware and viruses and get reliable password resetting utilities here in Petri's List of Commercially available password reset software. Warning: If you reset a password for somebody that is using encrypted files, they may lose access to those files.   EFS is explained in detail at TechNet, and the troubleshooting section of the TechNet article describes options for regaining access to encrypted files if lost through a password reset. #1 Passware's Password Recovery Kit... --- ### Use System Configuration Tool to Solve Problems > Jeff Hicks goes over several troubleshooting tasks you can accomplish with the Windows System Configuration. You can also add new tools easily. - Published: 2011-12-29 - Modified: 2024-09-24 - URL: https://petri.com/system-configuration-to-solve-problems/ - Categories: Windows Client OS - Article Type: How To In this post, Jeff Hicks discusses how you can use the Windows System Configuration interface to troubleshoot and fix simple system issues. Overview Any IT Pro can tell you that solving problems is as much as art as it is a science. I don’t think you can ever have enough tools in your admin toolkit. Here’s one that ships with Windows that you may not know about but one which I think can be very useful. This tool has been around for awhile on both client and server platforms. For the sake of this article I’m going to demonstrate using it on Windows 7, but everything should equally apply to your servers. System Configuration Under Administrative Tools you should find a link to System Configuration. Or, click on the Start orb and search for “system configuration”. You should see something like this when you start it. Figure 1 System Configuration One of the first ways to use this is to troubleshoot with a minimal configuration. Select Diagnostic startup and click OK. You’ll be prompted to restart immediately or later. This is not the same thing as a safe boot, although I’ll show you in a moment how to add that option. If you reboot, you may not notice much difference. To return to your standard configuration, run the tool again and select Normal startup. Or take additional steps. For example, when you select Selective startup you can decide to load other items such as system services or startup items. This is very helpful when trying to narrow down the culprit to a problem. Next, click... --- ### IPv6 Address Types > Sean Wilkins discusses the IPv6 address types. Learn about IPv6 Unicast, Multicast and Anycast. Anycast is where IPv4 and IPv6 differ the most. - Published: 2011-12-28 - Modified: 2011-12-28 - URL: https://petri.com/ipv6-address-types/ - Categories: Networking - Article Type: Overview IPv6 is largely about adding more IP capacity as we are quickly running out of IPv4 addresses to allocate, but IPv6 also offers different and better functionality. In this post, Sean Wilkins describes the different IPv6 address types: Unicast, Multicast, and the new Anycast. Overview With the coming wide scale implementation of IPv6, it has become vital that network engineers become familiar with IPv6 and how it operates. While there are many different parts of IPv6 that mimic the same behaviors of IPv4, there are some subtle changes that engineers must be aware of. This article takes a look at the IPv6 address types and how they compare with the existing IPv4 address types. IPv6 Address Types Like IPv4, IPv6 has three different address types that are commonly used; these include: Unicast Multicast Anycast Unicast The IPv6 unicast address type operates in the same way as IPv4; a unicast address is used to send traffic from one source device to one destination device. This is the most used address type as most traffic (currently) is sourced from one place and destined for one other place; this may change as network telephone and video services become  used more. Multicast The IPv6 multicast address type also operates in the same was as with IPv4; a multicast address is used to send traffic to a group of devices. This is used when there is a single source that needs to send traffic to multiple destinations; this traffic can be treated differently by the intermediate devices compared with unicast. If this same traffic would be sent via unicast methods, these devices would need to process each traffic stream from source to destination separately causing additional traffic delay. Another large difference between... --- ### Is Exchange Unified Messaging Right for You? > J. Peter Bruzzese interviews Exchange Unified Messaging Expert Jesse Ortiz to talk about some of the features and benefits of Unified Messaging. - Published: 2011-12-23 - Modified: 2011-12-23 - URL: https://petri.com/exchange-unified-messaging-right-for-you/ - Categories: Exchange Server - Article Type: Opinion In this post, Microsoft Exchange MVP J. Peter Bruzzese interviews Unified Messaging Expert Jesse Ortiz. Although Exchange Unified Messaging is not utilized by very many companies yet, there are many reasons why these companies should reconsider. Ortiz, who has implemented Unified Messaging with over 2,000 users at his company, provides some excellent insight into Unified Messaging's capabilities and benefits. Overview Exchange Unified Messaging is still considered a rather obscure product that not a lot of companies are utilizing. Most Exchange Admins aren't thinking about getting into telephony and telephony experts aren't used to looking at Microsoft for their phone system solutions. But Microsoft's Unified Messaging product is a powerful tool that easily integrates voicemail and email in a single system that benefits both the users and administrators. If you're not sure if Exchange Unified Messaging is the right solution for your company, take a look at this video from Exchange MVP J. Peter Bruzzese and Unified Messaging Expert Jesse Ortiz to get more information on how Unified Messaging can successfully fit in your organization. J. Peter Bruzzese Interviews Unified Messaging Expert Jesse Ortiz J. Peter Bruzzese: Greetings! My name is J. P. Bruzzese, and I am here with Jesse Ortiz. Jesse Ortiz: Hello. Peter: Jesse why don't you tell us a little bit about the company that you work for. Jesse: Sure. I work for Holland and Knight. It is an international law firm, mainly based in the United States. We have about 1,000 attorneys; about 2,000 to 2,100 total employees that we support here. Peter: Very good. Now we are here with Jesse, because when I contacted Microsoft and said, "I want to speak to someone in the world of Unified Messaging. " I wanted to speak to an expert. They sent me to him. That is nice, because it is only an hour and a half from my home... . --- ### Use Command Line To Monitor Server Performance > Jeff Hicks explains how to use Command Line to monitor server performance by using TYPEPERF.EXE - Published: 2011-12-22 - Modified: 2024-09-04 - URL: https://petri.com/typeperf-exe-command-line-performance/ - Categories: Networking - Article Type: How To Although there are plenty of performance management options that utilize nice-looking GUI's, sometimes the "quick and dirty" approach is best. In this post, Jeff Hicks explains the use of TYPEPERF.EXE to monitor server performance with the command line. This can often be a much more efficient approach to diagnosing issues or just checking on servers. Overview For IT Pros, knowing how a server is behaving or performing is critical. Ideally, you want your servers to be performing optimally to keep your boss and end users happy. Or you may need to peek at what is going on to solve a problem. There are a number of 3rd party performance monitoring tools, not to mention the Performance Monitor management console that comes with every version of Windows, but sometimes you only need a “quick and dirty” solution. For those situations, you can turn to your command prompt and TYPEPERF. EXE. TYPEPERF. EXE As with most performance monitoring, the best approach is to remotely monitor the system in question. So we’ll use typeperf from a Windows 7 desktop. Open a command prompt. If you don’t have a shortcut handy to CMD. EXE click on the Start orb and type cmd. exe in the Search box. Click on the link. To see how to use this tool at the prompt type: typeperf /? . Figure 1 TypePerf help There are two types of performance counters: those with instances and those without. The former are counters that apply for each instance of an object, such as a logical disk or processor. For example there is a counter with no instances that will return the % processor time. Or you can get a counter that is instance specific, say for the first processor. To get the list of counters I would suggest these commands: ​C:> typeperf –q >... --- ### The IPv6 Header > Learn what the IPv6 Header Fields are for. Sean Wilkins explains Version, Traffic Class, Flow Label, Payload Length, Hop Limit and Source/Destination Address. - Published: 2011-12-21 - Modified: 2024-09-04 - URL: https://petri.com/ipv6-header/ - Categories: Networking - Article Type: Overview The last of the available unreserved IANA IPv4 addresses were allocated nearly a year ago and with complete IPv4 exhaustion fast approaching, knowledge of IPv6 is critically important. In this brief post, Sean Wilkins introduces the IPv6 Header and how the different fields are used. Overview With the depletion of available IPv4 addresses, knowledge of IPv6 and how it operates has become a vital part of any engineers training. While IPv6 is different from IPv4 in many respects, it should not be a large undertaking for any seasoned engineer to pick up, understand and implement. This article takes a look at the IPv6 header, the fields that exist and how they are used. IPv6 Header As shown in Figure 1, the IPv6 header has been designed to be simple and easy to process. This enables IPv6 devices the ability to spend the majority of their time dealing with the data contained within the packet and not the packet header itself. Figure 1 - The IPv6 Header Version The version field is 4 bits long and is used to tell the processing equipment the version of the IP header that can be expected; when building an IPv6 header the value of the Version field is 6 (0110). Traffic Class The Traffic Class field is an 8 bit field that is used to signify the importance of the data contained within this specific packet. With IPv4, this information was signified with the TOS field and supported both IP precedence and Differentiated Services Code Point (DSCP). The Traffic Class field used with IPv6 supports DSCP solely; this specification uses the first 6 bits to indicate the Per Hop Behavior (PHB) of the contained data; these PHB’s are defined in RFC 2474... --- ### Introduction to Data Deduplication > What is Data deduplication? Learn how to reduce storage and backup costs with data dedupliation. Learn what type of deduplication is best for you - Published: 2011-12-20 - Modified: 2024-12-03 - URL: https://petri.com/data-deduplication-introduction/ - Categories: Backup & Storage - Article Type: Overview Wesley David discusses data deduplication and why all system admins should consider utilizing it. Duplicate data can lead to system inefficiencies and unnecessary costs in your system's storage arrays. In this introductory post, Wesley covers what deduplication actually is, the different types of deduplication and helps you decide what would be the best option for you. Introduction Long gone are the days when software installers came on 3. 25 inch disks and CDs could be considered a corporate backup medium. Storage has been firmly in the realm of commodities for years now, and as a result the amount of data within businesses is somewhere between staggering and “are you serious? ” There are many, many problems associated with having mass amounts of data to steward. Two of the most obvious and painful are 1) How to make room for the continued growth of data, and 2) How to back up all of the data. Indeed, how does one handle a terabyte or more of growth per year? It's not trivial and many corporations are facing vastly larger growth rates than a mere 1 terabyte. Even if you can keep up with the data growth, you haven't even begun the hard part yet. Backing up your data – ah! - now that is the true gauntlet to be won! Vast landscapes of storage are not easily backed up in under 24 hours and fitting your archives into a business-day-sized backup window can leave you with just minutes to spare before the next backup is kicked off. Enter the miracle of deduplication! In essence, there are two broad types of deduplication: single instance storage (SIS) and byte or block-level deduplication. Typically, the more granular a deduplication scheme, the greater the savings in storage space can be. Single instance storage has existed for many years. If two file... --- ### Crash Dump Analysis Part 1: How to Install the Windows Debugger > Troubleshoot Blue Screen of Death (BSOD) with Crash Dump Analysis. Learn how to install windows debugger to debug BSOD and troubleshoot system errors. - Published: 2011-12-19 - Modified: 2024-11-19 - URL: https://petri.com/crash-dump-analysis-how-to-install-the-windows-debugger/ - Categories: Windows Client OS - Tags: Blue Screen, BSOD, Crash Dump, Debugging, WinDbg - Article Type: Overview In today's post, Michael Simmons talks about one of our least favorite Windows screens: The Blue Screen of Death. In part 1 (of 2), Simmons covers why these errors generally happen, what they tell us (specifically, the crash dump that they produce) and how you can begin to troubleshoot the hardware or software that is crashing the system. Introduction The Blue Screen of Death (BSOD) Windows produces on critical system failures is something most Windows users have come across at some point in the last 2 decades.  So ubiquitous has the screen become that not even Bill Gates himself can escape it and to many users it is merely a sign that something went wrong and it's time to turn restart the computer.  The truth is that the screen is trying to tell us something. Knowing how to troubleshoot BSOD can be a critical skill in maintaining healthy systems.    In this series, you’ll be introduced to crash dump analysis. Crash dump analysis is the examination of Windows Crash Dumps, the byproduct of a Blue Screen of Death. Blue Screen of Death, BSOD, Blue Screens, System Crash, Memory Dump Whatever you call it, you’re sure to know what it means. All systems administrators and IT support staff know what they are, but have you ever taken the time to figure out what a blue screen means? When it happens right after you’ve installed new hardware, you can be relatively sure that the two are connected somehow. But when an executive’s laptop is crashing and rebooting every day, and they assure you “they haven’t installed anything or made any changes”, you’ll really be glad you know how to troubleshoot them properly. As shown here, most systems are configured to automatically restart after the BSOD happens. This is great for the users. Not that they love having... --- ### Exchange MVP J. Peter Bruzzese on UCC, Bull Riding and Why VDI is like a Keurig > Video interview with Microsoft Exchange MVP J. Peter Bruzzese. Peter touches on Microsoft's push for UCC, VDI ROI's and this year's TechMentor in Vegas - Published: 2011-12-16 - Modified: 2011-12-16 - URL: https://petri.com/j-peter-bruzzese-exchange-interview/ - Categories: Exchange Server - Article Type: Interview Kasia Lorenc is back again with another video interview for today's post. Kasia talks to Exchange MVP J. Peter Bruzzese about Exchange, Microsoft's push for UCC, VDI ROI's and touches a bit on his bull riding experience in Vegas at this year's TechMentor conference. Overview J. Peter Bruzzese is an Exchange MVP, author, and speaker. You've probably seen his popular Enterprise Windows column at InfoWorld or read one of his books or many articles. Peter recently spoke at the TechMentor conference in Las Vegas and we got a chance to ask him a few questions about his sessions, upcoming projects and more. He's a great speaker, and as you'll see from the video, he has a unique way of explaining technical concepts. During our interview Peter compared VDI to Keurig (yes, the coffee maker), which might sound a little weird, but when you hear it you'll see why it makes sense. And I wouldn't be surprised if you end up using the same comparison when you have to explain the benefits of VDI to others. Oh yeah, and then there was a discussion about bull riding... but I'll let you get that from Peter himself. Check out the video below and say hello to Peter on Twitter at @JPBruzzese. http://www. youtube. com/v/rB6Vkt3QWiE Following is a full transcript of the interview. J. Peter Bruzzese: My name is J. Peter Bruzzese, and I'm a Microsoft MVP. We're here at TechMentor, speaking about a variety of different subjects, like Exchange, Windows 7, and Virtual Desktop Infrastructure. And so, that's why we're here. Question: Are you a regular at TechMentor events? J. Peter Bruzzese: I am a staple, yes. Actually, for over 10 years, I've been speaking at TechMentor events. Wow, it's been that long. It's kind of surprising. Back... --- ### Windows 7 Power Scheme Configuration using POWERCFG.EXE - Published: 2011-12-15 - Modified: 2024-09-04 - URL: https://petri.com/power-scheme-configuration-using-powercfg-exe/ - Categories: Windows 7 - Article Type: Overview If you're in a position where you are responsible for managing or supporting several laptops, it's likely that one task you have is ensuring their power settings are properly configured. Having to do this on multiple machines can be time consuming though. In this post, Jeff Hicks demonstrates the use of POWERCONFIG.EXE, a command line that comes with Windows 7 and streamlines the process. If you are responsible for supporting or managing laptops, you most likely have found the need to properly configure power settings or the "power scheme". Or if not, perhaps this is a task you should look into. You could use the GUI in Control Panel, or you could take advantage of a command line tool in Windows 7 called POWERCFG. EXE and maximize your efficiency. Let’s look at a few features of this handy utility. First, open a command prompt (or PowerShell if you prefer) and run this command: ​C:> powercfg /? Figure 1 Powercfg help As you can see there are many ways to use this tool. You can use either the long parameter names or the short. If you are going to be scripting anything with this utility, I suggest using the long parameter names. It won’t impact the command but will make your script easier to read. List Power Schemes First, let’s see what schemes are currently available. ​C:>powercfg -list Figure 2 Existing Power Schemes The setting marked with an asterisk is the current setting. Depending on your laptop vendor and installed applications you will most likely have a different list. Or if you simply wanted to see the active scheme, use this command: ​C:>powercfg -getactivescheme But what is in these schemes? We can use the –Query parameter. By default it shows all scheme details. ​C:>powercfg –query Figure 3 Querying PowerScheme Details   Otherwise, you will need to copy and paste... --- ### EIGRP Neighborship Troubleshooting > Enhanced Interior Gateway Routing Protocol (EIGRP) neighborship troubleshooting techniques and solutions. Learn how to solve these issues here. - Published: 2011-12-14 - Modified: 2024-09-04 - URL: https://petri.com/eigrp-neighborship-troubleshooting/ - Categories: Cisco - Article Type: Overview A system can only run efficiently if it's set up properly. In this post, Sean Wilkins discusses Enhanced Interior Gateway Routing Protocol (EIGRP) neighborship issues and how to troubleshoot and solve these problems. As was shown in the OSPF neighborship troubleshooting article earlier, there are a number of things that need to be configured correctly for everything to end up working as planned. This article takes a look at these requirements from the perspective of Enhanced Interior Gateway Routing Protocol (EIGRP) and shows the different commands that can be used to ensure proper EIGRP neighborship configuration and communications between devices. EIGRP Neighborship Requirements From the perspective of EIGRP, there are a couple of things that must match for a EIGRP neighborship to establish; keep in mind that these are different from other routing protocols (like OSPF ), these include: The devices must be in the same autonomous system (AS) The devices must have the same authentication configuration The devices must have the same k-values EIGRP Neighborship Configuration Verification and Troubleshooting Starting from the top of the list, the interfaces connecting devices must be on the same autonomous system. To display the various commands and what to look for, Figure 1 shows a simple lab has been setup with two devices that are connected together via an Ethernet connection. Figure 1 - Simple Lab The first thing that is going to be checked by the EIGRP device is whether the remote device is in the same autonomous system. No other processing will occur on the device until both devices have been configured with the same area. The troubleshooting for this type of problem requires someone with access... --- ### Cisco CCNP Route - BGP Troubleshooting > Learn how to troubleshoot Border Gateway Protocol (BGP) issues. This video is great for anyone looking to take the Cisco CCNP Route Exam - Published: 2011-12-13 - Modified: 2024-09-04 - URL: https://petri.com/bgp-troubleshooting-ccnp-route/ - Categories: Cisco - Article Type: Overview In this video post, Joe Rinehart of TrainSignal explores Border Gateway Protocol Troubleshooting techniques to four of the more common issues that can arise on your BGP. Joe covers neighbor relationship problems, route advertisement issues, routes missing from the table, and address summarization problems. A great post for anyone that is going to take the Cisco CCNP Route exam. Every time you troubleshoot your BGP (Border Gateway Protocol), always follow a tried and tested troubleshooting model. That way, you can work more efficiently and probably even resolve the problem much faster. We usually follow an 8-point troubleshooting model like the one below: Define the problem Gather the facts Document the facts Consider the possibilities Create an action plan Implement the action plan Repeat until resolution Document the solution Just like in most protocols, there are some very specific, common issues and problems, as well as their corresponding solutions. Here in our article on BGP troubleshooting, we’ll be looking at these four potential problems/issues: Neighbor relationship problems Route advertisement issues Routes missing from the table Address summarization problems Neighbor Relationship Problems There are a number of possible reasons that may prevent neighbors from establishing a relationship. Here are some of the most common causes of neighbor relationship problems: Possible Cause: Layer 2 or Interface is down If the Layer 2 process or Interface is down, it may prevent a neighbor relationship from forming. The easiest way to determine that this is the problem when it’s stuck in the Active or Idle state is by executing the show interface . For example, execute: show interfaces fastethernet 0/0 or show interfaces gigabitethernet 0/0 When the output is displayed, look at the interface that’s facing the BGP peer. You should be able to see a line where it says something like: Fast Ethernet 0/0 is up, line protocol is... --- ### Add Open PowerShell To Context Menu > Learn how to add "Open PowerShell" to the Windows Context Menu allowing you to open PowerShell in-context anywhere in Windows. - Published: 2011-12-12 - Modified: 2024-09-04 - URL: https://petri.com/add-powershel-tl-context-menu/ - Categories: PowerShell - Article Type: How To One of Windows simplest time-saving features, the "right-click" context menu, enables you to perform an array of tasks in the context of whatever Windows object you are working with. In this article, we show you how to add "Open PowerShell" to this context menu, enabling you to open PowerShell in the context of whatever folder or object you are working with. I am sure most of us prefer to use the quick menu that appears when we right click on any Windows object. Let's have a look on the menu we get when we press shift +right click on a folder in Windows 7 or Windows Server 2008: As you see above, by default, there is an option called "Open command window here". Wouldn't it be nice to have also "Open PowerShell here" also? Now we are going to do it! Warning: This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. Edit Registry Let's Begin: Press Start button + R to open run command dialog box. Type regedit and press Enter to open the Registry Editor. You may be prompted with a UAC prompt, click "Yes". Navigate to the following path: HKEY_CLASSES_ROOTDirectoryShell Right click on the right pane and select New > Key. Enter the values:  powershell. On the right pane, double click on Default and set the value to Open PowerShell Here. Click OK. On the left pane mark powershell and right click on the right pane and select... --- ### Veeam Backup and Replication Support for Hyper-V is Finally Here > TrainSignal's Kasia Lorenc talks with Veeam's VP of Product Strategy Doug Hazelman about the newest Backup & Replication software which now supports Hyper-V. - Published: 2011-12-09 - Modified: 2011-12-09 - URL: https://petri.com/veeam-hyper-v-backup-and-replication/ - Categories: Hyper-V - Article Type: News TrainSignal's Kasia Lorenc is back with another video interview, this time with Veeam's VP of Product Strategy, Doug Hazelman. Hazelman discusses Veeam's latest release of their popular Backup & Replication solution. Now on it's 6th version, Backup & Replication now has support for Hyper-V. Just last week, Veeam announced the release of version 6 of their popular Backup & Replication solution. Among the many enhancements for VMware vSphere, including enterprise scalability, enhanced performance, accelerated replication and the 1-click file restore feature, the most notable addition to the new version is support for Hyper-V. Recognizing the huge demand, Veeam has been working on this functionality for quite some time, making the big announcement earlier this year at TechEd. When I met with Doug Hazelman, Veeam's VP of Product Strategy (@VMDoug), at the conference he explained how the added support for Hyper-V will benefit virtualization administrators who manage multi-hypervisor environments that include Hyper-V and vSphere. Veeam Backup & Replication v6 offers speed and efficiency that is unmatched by other solutions and now has the capability of protecting data on both vSphere and Hyper-V. Learn more about the newest version of the tool and about Veeam from Doug Hazelman himself in this video from TechEd 2011. http://www. youtube. com/v/P20Xj6-pXXE Following is a full transcript of the interview. Doug Hazelman: So the big announcement was that we're bringing support for Hyper-V to Veeam Backup & Replication in version 6. It's going to be out in Q4 of this year. The big announcement was obviously here at TechEd, a big Microsoft event, so very excited. We've got a lot of very positive feedback on our announcement via Twitter and blogs. And VMwareVideos. com has got a good blog on it. It's been very well received. Read David Davis' post: Can Veeam do... --- ### Command Line Task Management > Many tools exist for remotely managing computers but sometimes command line (CMD.exe) is the best option because of its ease of use. Learn some simple tasks... - Published: 2011-12-08 - Modified: 2024-09-04 - URL: https://petri.com/command-line-task-management/ - Categories: Windows Server - Article Type: Overview Most IT pros are routinely managing computers remotely and for such tasks there are several tools, such as PowerShell. Sometimes these tools are a little more than we need to perform some of the simpler tasks. In this post, Jeff Hicks goes over some common tasks that are most efficiently carried out using CMD.EXE. Introduction Managing processes on remote computers is a typical task for the IT Pro. We have a number of tools at our disposal, including Windows PowerShell. But I’m a big believer in the right tool for the job. Sometimes you need a quick way to manage processes on remote machines. For those situations, the legacy CMD. EXE prompt still has much to offer. The first command to check out is TASKLIST. EXE. Open a CMD. EXE prompt and run: ​C:> tasklist /? Figure 1 - Tasklist. exe Help To connect to a remote computer, which is most likely, use the /S parameter followed by the computername. The utility will use your current credentials to authenticate but you can specify alternate credentials with the /U and /P passwords. ​C:> tasklist /s chi-fp01 Figure 2  - Tasklist for a remote computer By default you get all processes, but you can do some basic filtering using the /FI parameter. After the parameter, specify a filtering expression using these operators and key words. Filters: ​Filter Name     Valid Operators           Valid Value(s) -----------     ---------------           -------------------------- STATUS          eq, ne                    RUNNING | NOT RESPONDING | UNKNOWN IMAGENAME       eq, ne                    Image name PID             eq, ne, gt, lt, ge, le    PID value SESSION         eq, ne, gt, lt, ge, le    Session number SESSIONNAME     eq, ne                    Session name CPUTIME         eq, ne, gt, lt, ge, le    CPU time in the format of hh:mm:ss. MEMUSAGE        eq, ne, gt, lt, ge, le    Memory usage in KB USERNAME        eq, ne                    User name in... --- ### OSPF Neighborship Troubleshooting > Learn how to troubleshoot OSPF neighborship issues by utilizing these 5 useful commands. Find mismatched areas, authentication mismatches, subnet mismatches... - Published: 2011-12-07 - Modified: 2024-09-04 - URL: https://petri.com/ospf-neighborship-troubleshooting/ - Categories: Networking - Article Type: Overview The Open Shortest Path First (OSPF) protocol is probably the most frequently utilized interior networking protocol and it's because it works so well, but only when it's working! In this post, Sean Wilkins covers 5 common OSPF neighborship issues and explains methods for troubleshooting and solving these issues. Introduction When setting up dynamic routing protocols, there are certainly a number of things that need to be configured correctly for everything to end up working as planned. On top of this, each of the different routing protocols has different elements that they expect to be configured first for each of them to operate correctly. This article takes a look at these requirements from the perspective of OSPF and shows the different commands that can be used to ensure proper OSPF neighborship configuration and communications between devices. OSPF Neighborship Requirements From the perspective of OSPF, there are a couple of things that must match for a OSPF neighborship to establish; these include: The devices must be in the same area The devices must have the same authentication configuration The devices must be on the same subnet The devices hello and dead intervals must match The devices must have matching stub flags OSPF Neighborship Configuration Verification and Troubleshooting Starting from the top of the list, the interfaces connecting devices must be on the same area. To display the various commands and what to look for, Figure 1 shows a simple lab has been setup with two devices that are connected together via an Ethernet connection. Figure 1 - Simple Lab Mismatched Areas The first thing that is going to be checked by the OSPF device is whether the remote device is in the same area. No other processing will occur on the device until... --- ### Top 10 Server 2008 Tasks With PowerShell - Part 2 (6 through 10) > In part 2, learn the final 5 Top 10 Server Tasks with PowerShell in Windows Server 2008 in this video lesson from TrainSignal.com - Published: 2011-12-06 - Modified: 2024-09-04 - URL: https://petri.com/top-10-server-2008-tasks-done-with-powershell-part-2/ - Categories: Windows Server 2008 - Tags: Beginner - Article Type: Overview In this video post, Jeff Hicks returns with 5 more PowerShell tasks to perform in Windows Server 2008, rounding out the top 10. In part 2, Jeff covers getting recent event log errors, resetting ACL's, finding server uptime, getting service pack information and deleting old and unused files. In Part 1 of the Top 10 Server 2008 Tasks with PowerShell, we covered the first 5 tasks of our list.  Today in part 2, we'll cover the remaining 5 tasks that will help you perform server tasks faster and more efficiently. Change the local administrator password with PowerShell Restart or shutdown a server with PowerShell Restart a service with PowerShell Terminate a process with PowerShell Create a disk utilization report with PowerShell Get 10 most recent event log errors with PowerShell Reset access control on a folder with PowerShell Get a server’s uptime with PowerShell Get service pack information with PowerShell Delete old files with PowerShell 6. Getting 10 most recent event log errors Every morning, you may have to go through your event logs to find the 10 most recent errors in the system event log on one or more computers. You can easily accomplish that task with PowerShell using the Get-EventLog cmdlet. All you need to specify is the name of the log and the entry type. A typical command for this particular task would look like this: Here, the name of the log is ‘system’ and the entry type is ‘Error’. So PowerShell is going to fetch the 10 most recent error entries from the system log. This command is issued to a local computer, so we don’t have to specify a computer name. Notice that the messages aren’t shown in their entirety. Let’s modify the command a bit so... --- ### Remove User Account From The Logon Screen in Windows 7 > Remove user account from Windows 7 logon screen. Delete unused accounts from logon screen without deleting the account completely. - Published: 2011-12-05 - Modified: 2024-09-04 - URL: https://petri.com/remove-user-account-from-the-logon-screen-in-windows-7/ - Categories: Windows 7 - Article Type: How To In this post we solve the minor but perhaps frustrating issue of having user accounts on the logon screen that are no longer needed or used. Deleting user accounts entirely may sometimes be overkill (what if the account is needed down the road). The better option is to simply remove the user account from the logon screen. Let's say you have more than one user account on your Windows 7 machine and each time you need to log on you have to click the icon of your account – You might see it very annoying especially if you are the only person who use the computer and for some reason those other accounts are not needed anymore. Remove User Account In the example below there are two user accounts in the system, Donald and Jeff: You can delete the unused account but there is another way to handle it and in this article I will show you how to disappear the other account(s) from the logon screen without deleting them. Warning: This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. Now we will remove Jeff from the logon screen and leave only Donald. 1. Press Start button + R to open run command dialog box. Type regedit and press Enter to open the Registry Editor. You may be prompted with a UAC prompt, click "Yes". 2. Navigate to the following path: HKEY_LOCAL_MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogon 3. Right click... --- ### Flexible NetFlow - What It Does and Why You Need It > Flexible NetFlow is Cisco's next generation network monitoring software. Flexible NetFlow provides a more in-depth and richer view of network activity. - Published: 2011-12-02 - Modified: 2011-12-02 - URL: https://petri.com/flexible-netflow-explained/ - Categories: Cisco - Article Type: Overview In this post we briefly discuss Cisco's newest network monitoring software. Flexible NetFlow offers a richer and deeper insight into network traffic including visibility of all Layers from 2 through 7 as well as deep packet inspection. So, what is Flexible Netflow and why would anyone care? Flexible Netflow is Cisco's next generation technology that provides richer and more detailed information than the original NetFlow (V5 or V9) did. Let's take a closer look at why you'd want to deploy Flexible NetFlow. Why Deploy Flexible NetFlow Flexible Netflow allows you to gain visibility into Layer 2 (MAC addresses, VLAN ID’s), Layer 3 and Layer 4 and all layers through Layer 7 with deep packet inspection. Combined with Cisco NBAR (Network Based Application Recognition), it also provides deep packet inspection for application identification (like Skype or YouTube)-details not available with traditional NetFlow. Flexible NetFlow also handles the problems that traditional Netflow has with large flow volumes. You can setup a permanent cache to export all bytes seen and so Flexible Netflow will give you accurate volume numbers without overwhelming your Netflow collector. This eliminates the need for Netflow sampling to reduce router load. Benefits of Flexible NetFlow Flexible NetFlow also tracks different applications in different buckets. For instance, security information, traffic analysis, billing and compliance data can be tracked simultaneously and separately. Traditional NetFlow tracked all information in one single cache. Flexible NetFlow provides a new functionality where it can collect security information in one cache, traffic analysis and billing in separate caches. Flexible NetFlow also has the ability to export flow information to multiple collectors. Depending on your network performance vendors, this may or may not be relevant. More importantly,... --- ### Troubleshooting DHCP Problems > Solve several DHCP configuration issues that can cause DHCP problems on your Cisco Network. Fix Unable to reach external network errors DNS issues duplicate IP - Published: 2011-12-01 - Modified: 2024-09-04 - URL: https://petri.com/troubleshoot-dhcp-problem/ - Categories: Networking - Article Type: Overview Manually assigning IP addresses on large networks can be a hassle which is what makes the automation of DHCP wonderful as long as it is running and configured properly. In this post, Sean Wilkins discusses some common DHCP configuration issues and troubleshooting techniques to ensure your DHCP network runs smoothly. One of the most important services that run on an organization’s network is the DHCP server. Without a correctly configured DHCP server to supply the address and server information to be used on each of the client devices, users are left without a usable network computer. If this happens the administrator only has a few options: get the server back up and running correctly or statically configure each of the client devices; the latter not being preferred. This article takes a look at a number of the common DHCP problems and their symptoms from the perspective of the network administrator and the DHCP server (being run on a Cisco device). Common DHCP Configuration Problems There are a couple common configuration problems that can make the life of a network administrator quite challenging, these include: Server not giving out addresses Clients receiving addresses already statically assigned to servers or reserved devices Clients unable to reach external networks (off subnet) Clients unable to use the Internet with domain names Clients not receiving domain name suffix Server Not Giving out Addresses There are a couple of reasons that a server (In this case the Cisco device) will not give out addresses. The most obvious of these is that the server is not configured. On a Cisco DHCP device, this can be verified by viewing the current DHCP pool configuration using the show ip dhcp pool command; this is shown in Figure 1. Figure 1 - No... --- ### Why You Need NetFlow: See Who Is Using Your Bandwidth and Why > What is NetFlow and why do you need to use it? Network engineers and admins need to use Netflow to monitor networks and analyse traffic through regular routers. - Published: 2011-11-30 - Modified: 2011-11-30 - URL: https://petri.com/netflow-and-why-you-need-it/ - Categories: Cisco - Article Type: Overview In this video post, Josh Stephens, Head Geek at SolarWinds, explains what NetFlow is and why all network engineers need to be using it. NetFlow offers a wide range of features that allow easy monitoring and analysis of network traffic through ordinary routers and switches. NetFlow is a technology developed by Cisco that allows you to collect IP traffic information so you can monitor your traffic and see who is using your bandwidth and why. It is a powerful and extremely useful tool for network monitoring and something every network administrator should know how to use. In this video from Josh Stephens, Head Geek at SolarWinds, you'll learn more about NetFlow and why you need it. Josh will also share some information on how to use NetFlow with a couple of free and paid tools from SolarWinds. Following is a full transcript of the interview. Josh Stephens: Howdy, y'all. Josh Stephens here, Head Geek at SolarWinds, and today we're going to talk for a few minutes about NetFlow. Now, NetFlow is a technology that you not only should know about, you really need to know about it as a network engineer. NetFlow is a technology that actually turns your routers and switchers into traffic analyzers. Now, a few years ago, there were a lot of us that tried NetFlow but saw that it had a negative impact upon our routers and switchers. And the software available for consuming NetFlow and helping us actually use it were expensive and hard to use. Today that's not the case. NetFlow technology has come a long way and the routers and switchers out in the industry available today can actually do traffic analysis and can pass traffic and do their normal jobs without a problem... --- ### Top 10 Windows Server 2008 Tasks done with PowerShell - Part 1 > Learn the top 10 most useful server tasks with PowerShell in Windows Server 2008 in this video lesson from TrainSignal.com. - Published: 2011-11-29 - Modified: 2024-09-04 - URL: https://petri.com/top-10-server-2008-tasks-done-with-powershell-part-1/ - Categories: PowerShell - Tags: Beginner - Article Type: Overview In this video post, Jeff hicks goes through the first 5 of the top 10 tasks to perform with PowerShell in Windows Server 2008. In part 1 Jeff covers changing local administrator passwords, restarting & shutting down servers, terminating or restarting processes and creating a disk utilization report, all with PowerShell. There are lots of server tasks in Windows Server 2008 that can be done much faster with Windows PowerShell than with a GUI. What you’ll find in this article series are ten common server tasks all done on PowerShell. In this two part mini-series you’ll learn how to: Change the local administrator password with PowerShell Restart or shutdown a server with PowerShell Restart a service with PowerShell Terminate a process with PowerShell Create a disk utilization report with PowerShellPart 2 Get 10 most recent event log errors with PowerShell Reset access control on a folder with PowerShell Get a server’s uptime with PowerShell Get service pack information with PowerShell Delete old files with PowerShell In today’s article we’ll start with tasks one through five; in Part 2 in this series we’ll continue with tasks six through ten. 1. Changing the local administrator password with PowerShell Let’s assume you’re logged in as a domain administrator on a Windows 7 desktop that belongs to your domain. Now, let’s say you want to change the local admin password on a remote server in Chicago named CHI-WIN7-22. After an account password is used for some time, the chances of it getting exposed gets higher. That’s why you need to change your passwords from time to time. The first thing to do to change the admin password in question is to create an ADSI object for the local administrator on that computer. That can be achieved by typing this in your PowerShell screen: ​$Admin=”WinNT://CHI-WIN7-22/Administrator” This... --- ### Interview With Jeffrey Snover - Inventor of PowerShell and Lead Architect for Windows Server 2012 > Kasia Lorenc sits down with Jeffery Snover to discuss the creation and history of PowerShell as well as his new role at Microsoft. - Published: 2011-11-28 - Modified: 2011-11-28 - URL: https://petri.com/jeffrey-snover-powershell/ - Categories: PowerShell - Article Type: Interview Kasia Lorenc catches up with Jefferey Snover, inventor of PowerShell to discuss PowerShell's beginnings, its history and the importance of PowerShell for today's IT professionals. Jeffrey Snover is the Inventor and Architect of Windows PowerShell and currently the Lead Architect for Windows Server 2012. If you've been following Windows Server 2012 developments you've probably heard that PowerShell will be one of the core management engines of the new OS. With PowerShell v3 the number of cmdlets has grown from just 300 in Server 2008 R2 to over 2,300 and counting in Windows Server 2012. When I spoke with Jeffrey earlier this year, he hinted at the importance of PowerShell in Windows Server 2012. He also told me how important it will be for IT Professionals to know and understand PowerShell; important to their careers that is. If you've been putting off learning PowerShell, check out this video interview (or the transcription of the video below) and see why now is the time to start learning PowerShell. If you're interested in learning more about the developments in Windows Server 2012, take a look at Sean Deuby's article Windows Server 8: A Leap Ahead. Jeffrey Snover: When I came to Microsoft, I knew that we needed an automation story. I had asked people about that and they said, "Oh, we have one. " I said, "Well, what is it? " They'd say, "Well, it's VB Script. " I said, "Oh, my friend. You do not understand what we need. " I tried a number of things to try and get it going. Eventually what ended up having to happen was I locked myself in a room, spent a few months, prototyped... --- ### Configuring Outgoing Email on SharePoint 2010 - Part 2 > Configuring outgoing email in SharePoint 2010 with this video tutorial. Email in SharePoint increases productivity, alerts, and improve communication. - Published: 2011-11-23 - Modified: 2024-09-04 - URL: https://petri.com/configure-outgoing-email-sharepoint-2010/ - Categories: SharePoint 2010 - Tags: Editor's Pick - Article Type: How To In this video tutorial, J. Peter Bruzzese demonstrates how to set up outgoing email services in SharePoint 2010. Email in SharePoint enables alerts, improves communication and assists with organization. This is the 2nd part of a 2-part video series. In the first part of this article, we talked about configuring SharePoint for Incoming Email. This time, we’ll talk about the processes involved in configuring Outgoing Email. Outbound emails on SharePoint can be utilized for a variety of things such as setting up alerts or communicating important system issues. Go back to your Exchange Server where you’ll start by configuring a Receive Connector (remember that you configured a Send Connector in Part 1). Here’s that Incoming Send Connector again: Creating a New Receive Connector Note that the Send Connector was created under the Hub Transport settings of the Organization Configuration. Receive Connectors, on the other hand, fall under the Hub Transport settings of the Server Configuration. Go there now and, in the right-hand panel, click New Receive Connector. Give it a name and choose the intended use for that connector (e. g. Custom). Click Next. Leave the Local Network settings as is. Click Next. When you’re already in the Remote Network Settings window, select a range of IP addresses in the list box to change it. Basically, a single item is a range of IP addresses of servers from which mail will be received. You’ll need to enter the IP address of the SMTP server (the SharePoint Server in this case) for the Start Address, as well as an End Address in case you have additional servers in play. Click OK. Then click Next. In the next window, click New to commence creation of the new... --- ### How to Install ESXi 5 - The Free VMware vSphere Hypervisor > How to install ESXi 5 from VMware. ESXi 5 is the freevSphere Hypervisor from VMware. Download and install for free. Virtualization... - Published: 2011-11-22 - Modified: 2024-12-03 - URL: https://petri.com/install-esxi-5/ - Categories: VMware - Tags: ESXi, esxi5, free, hypervisor, vmware, vSphere, vsphere5 - Article Type: How To ESXi5 is the latest version of VMware's virtualization hypervisor, which enables multiple virtual machines to run simultaneously on a single physical host, and is free to download and use. In this article Tom Finnis describes the new features in this version and discusses how you might benefit from installing it, whilst covering the basics like hardware requirements and the installation procedure. Introduction to ESXi 5 VMware continues to be the world's leading vendor of virtualization solutions with their vSphere suite of products, based on their ESXi hypervisor. Now in its fifth major version, what is even more remarkable is that VMware gives this enterprise level product away free, without any significant restrictions. To get it all you have to do is visit the VMware website, create an account for yourself to receive your license key, and then download the ISO image. Follow the instructions below and in less than an hour you can be ready to deploy your first virtual machine. What's new in ESXi5? Take a look at the news pages and you will see a long list of new features and upgrades for ESXi 5, however many of these are only relevant to users of vSphere, the paid multi-server virtual infrastructure solution. The significant changes for users of the free ESXi version are as follows: No more service console -  technically not a change for free version users, as you could only get the service console-less ESXi version of release 4 too but with version 5 VMware has made it the only option for everyone. VMFS 5 file system - it's GPT rather than MBR based, so the size limit for datastores goes up from 2TB to 64TB, and you no longer have to specify the block size which could limit the maximum size of your virtual disks before. Improved hardware support - ESXi5 now supports a wider range... --- ### Interview With Jeff Hicks: Why IT Pros Need to Learn PowerShell > Kasia Lorenc interviews Jeff Hicks to discuss Microsoft PowerShell and why it will soon be a requirement for every IT admin to know how to use it. - Published: 2011-11-21 - Modified: 2011-11-21 - URL: https://petri.com/powershell-jeff-hicks-interview/ - Categories: Windows Server - Article Type: Interview In this post, Kasia Lorenc of TrainSignal catches up with Jeff Hicks at TechEd to discuss Windows PowerShell and why he feels that it will soon be a requirement for every IT admin to know how to use it. PowerShell is the future for Windows administrators. Maybe right now you can get by without it, but with the new version of Windows Server every admin will have to be familiar with PowerShell. And it's not just Windows Server or Microsoft that has made the commitment to this powerful management tool. PowerShell is being integrated across Microsoft products (including Exchange, SharePoint, SQL, System Center, Lync) and is being implemented in products from VMware, Citrix, Cisco, NetApp and more. Now is the time to learn PowerShell. My prediction is that in the next couple of years PowerShell will be a requirement for every IT admin. So how do you get a start with PowerShell? PowerShell MVP, Jeff Hicks suggests using it on a daily basis to build on your experience. "If you use it every day" he says, "even just for a little bit, that's how you are going to learn it. " In this video interview shot at TechEd, Jeff shares some great PowerShell resources and his advice for admins who are new to scripting for learning how to use PowerShell. http://www. youtube. com/v/L0TISpd6r1c Following is a full transcript of the interview. Jeff Hicks: Yesterday I did a talk on using Resultant Set of Policy, that's a feature in Group Policy, and how to troubleshoot systems. So if I have a bunch of policies that may be applied to a computer, what is that computer getting? Or maybe I have policies that are supposed to be applied, so the user gets a corporate... --- ### Intro to Virtualization - Free Video Training Course and Whitepaper by vExpert David Davis > vExpert David Davis shares a free introduction to virtualization video training and white paper. - Published: 2011-11-18 - Modified: 2024-12-03 - URL: https://petri.com/intro-to-virtualization-training/ - Categories: Virtualization - Article Type: Overview In this post, vExpert David Davis shares his free 2 hour training course and whitepaper on virtualization that covers a variety of topics ranging from what virtualization is, why you need it, overviews of the various virtualization solutions and more. When I was first introduced to server virtualization and the advanced features it offered, it seemed almost too good to be true. To think that a datacenter full of physical servers could be consolidated into just a few servers, that new servers could be created in seconds, and that virtual servers could move around to balance load, from one host to another, with NO downtime - it all seems so incredible! After using server virtualization in production and seeing the results I can tell you that these features I mentioned are just a few of the "base" features. There are so many mind-blowing features that take a few hours to describe. In fact, I would LOVE to offer you a free and unbiased video training course on virtualization that you can watch at your own pace, over the web. This isn't some kind of introductory offer, it's a full 2 hour, high-quality, training course that covers: What is Virtualization? - In this introductory lesson, find out what the different types of virtualization are and how they can help you. Additionally, after watching, you’ll understand the two types of server virtualization hypervisors and see how you would administer a virtual infrastructure, in the real world. Why You Need Server Virtualization - Datacenters have experienced an explosion of physical server growth. In this lesson, you will learn how Server Admins can take back control of the datacenter and how companies can save time and money all by deploying... --- ### How To Tame Application Management Overload in Your Environment > Controlling application management overload with a single application where you can have all your performance and alert data presented to you. - Published: 2011-11-16 - Modified: 2024-09-24 - URL: https://petri.com/application-management-system-for-performance-and-alert-data/ - Categories: Networking - Article Type: How To Deploying performance and fault monitoring tools to monitor and configure your infrastructure adds layers of complexity; multiple products to log into & maintain, in addition to out of control alerts. Solve the issue of application management overload with a single application containing all your performance and alert data. Problem: Deploying performance and fault monitoring tools to monitor and configure your complex infrastructure adds layers of complexity such as: multiple products to log on to multiple products to maintain out of control alerts Solution: How do we solve the issue of application management overload? The easiest way is to use a single application or portal where you can have all your performance and alert data presented to you, "a single pane of glass" if you will. First: Let’s talk about the ease of management part. Depending on the size and complexity of your environment, you are usually logging into products that manage and/or watch routers, switches, servers, storage, virtual infrastructure, backups, Anti-Virus. The first issue is the fact that you have to log in to half a dozen or more products to ensure that your infrastructure is running smoothly. This is not only time consuming, it also presents headaches of its own; managing several complex credentials being the biggest. The management products are supposed to solve problems, not add to them. Second: During an outage or similar crisis, you do not have a single place where you can log in to isolate the issue. You are wasting precious moments logging into several management products to figure out where the issue is. Once you identify the issue, you have to log into that product (server, router, storage, etc. ) and fix it. Having a single pane of glass simplifies this process and greatly reduces the MTTR by quickly and painlessly identifying... --- ### Get-WMIObject - WMI PowerShell Tricks for Windows Server Management > Get-WMIObject in Windows Powershell makes it easier to utilize Windows Management Instrumentation (WMI) and makes managing windows servers much easier. - Published: 2011-11-15 - Modified: 2024-12-03 - URL: https://petri.com/get-wmiobject-wmi-powershell-tricks/ - Categories: Windows Server - Tags: Beginner, CIM-WMI - Article Type: Overview In this post, Jeff Hicks goes over some useful tricks utilizing Get-WMIObject in WMI PowerShell. Utilizing PowerShell, and GetWMIObject, makes working with WMI easier and more flexible, allowing for more efficient management of your Windows Servers. Introduction IT Pros responsible for Windows Servers are hopefully already familiar with Windows Management Instrumentation, or WMI. This technology has been a staple in Microsoft operating systems since the days of Windows 2000. Using WMI we can identify all types of management and system information from the BIOS to logical disks to the operating system. In the past, if we wanted to access this treasure trove of information we typically used VBScript. But, with the arrival of Windows PowerShell, working with WMI information is much easier, flexible and downright fun. The primary cmdlet is Get-WMIObject. I have a few tricks I’ll show you in a bit for using this command. But I also have a few other WMI PowerShell tricks that you might use to get system information or to help develop your own WMI scripts. WMI datetime First up is converting those ugly WMI datetime strings like this: 20110128161223. 000000-300. In the VBScript days that meant a bit of string parsing. However, PowerShell offers a more convenient approach. Here is an example of the ugly part. ​PS S:\> get-wmiobject win32_operatingsystem | select InstallDate,Caption InstallDate                             Caption -----------                             ------- 20110128161223. 000000-300               Microsoft Windows 7 Ultimate It would be much nicer if the install date was more user-friendly. Fortunately the PowerShell team thought the same thing and every WMI class in PowerShell has a method called ConvertToDateTime. Pass a WMI datetime object as the method parameter and you get a friendly date time object back. The easiest... --- ### How To Configure a Cisco Router to Export NetFlow Data > How-To video and transcript with Josh Stephens, Head Geek at SolarWinds on configuring a Cisco router to export NetFlow data. - Published: 2011-11-14 - Modified: 2011-11-14 - URL: https://petri.com/netflow-data-export-from-cisco-router/ - Categories: Networking - Article Type: How To A walk-through with Josh Stevens, Head Geek at SolarWinds, on configuring a Cisco router to export NetFlow data. In this video Josh covers the manual setup since there could be situations when NetFlow Configurator might not work for you, for instance, if you don't have SNMP access to your routers. Full transcript provided. Introduction Following is a brief how-to video with Josh Stephens, Head Geek at SolarWinds on configuring a Cisco router to export NetFlow data. If you're not familiar with NetFlow, check out this Geek Guide to NetFlow at SolarWinds to get started. Following is a full transcript of the video. Josh Stephens: Hi there. Josh Stephens here, Head Geek at SolarWinds, and today I'm going to show you how to configure a Cisco router to export NetFlow data. Now, NetFlow is a really cool technology and we've talked about it a few times before. If you're not familiar with NetFlow, a good place to go would be to go to SolarWinds. com/geek, and you'll find lots of videos and tutorials where we talk about this technology. Another really cool place to go is Thwack. com, which is our online community or social networking site for network engineers. Now, once you've decided to deploy this technology, you need to configure your routers and switches so they'll export the data to your network management system like Orion NetFlow Traffic Analyzer. To do that, you can use the , which is a free tool offered at SolarWinds. com. But there are some situations where that application won't work for you, for instance, if you don't have SNMP access to your routers. So I'm going to show you how to do it the manual way. Now, the first thing you'll want to do is open a command prompt and telnet to your routers. So what... --- ### Persistent vs. Non-persistent Virtual Desktops > Learn the difference between persistent and non-persistent virtual desktops and which one is better for you - Published: 2011-11-10 - Modified: 2024-12-03 - URL: https://petri.com/virtual-desktop-persistent-vs-non-persistent/ - Categories: Virtualization - Tags: non-persistent virtual desktops, persistent virtual desktops - Article Type: Overview Do you know the difference between persistent and non-persistent virtual desktops? Learn more as Greg Stuart guides you through deciding which setup is best for your situation. Introduction The virtualization phenomena began simply with server virtualization, but each year seems to bring to light a new use case for virtualization. What we are going to talk about in this article is specifically desktop virtualization. The desktop virtualization market has experienced substantial growth in the past 2 years. The niche players that own the lion's share of the market are Citrix and VMware. Citrix offers their XenDesktop approach to desktop virtualization and VMware offers VMware View as their solution. If you've been paying attention at all for the past 2 years you've seen the steady growth in the desktop virtualization war between these two virtualization giants. Either way you decide to go, you'll eventually come to the crossroads of deciding whether your virtual desktop infrastructure (VDI) will employ persistent desktops, non-persistent desktops or a hybrid persistent/non-persistent environment. How do you decide which route to take? First off, you have to understand what these two types of virtual desktops are and their differences. By the time you get to the end of this article, my hope is that you will be able to answer that question for yourself and plan your VDI deployment successfully. Persistent Virtual Desktops Let's begin with persistent desktops. A persistent virtual desktop is one in which a user will be able to keep all the configurations and personalization they have created from session to session. Persistent desktops keep the user's profile and documents on a separate user disk,... --- ### Configuring Incoming and Outgoing Email on SharePoint 2010 - Part 1 > Learn how to configure incoming and outgoing emails in SharePoint 2010 with this how-to video from Trainsignal - Published: 2011-11-08 - Modified: 2024-09-04 - URL: https://petri.com/configure-email-sharepoint-2010-part-1/ - Categories: SharePoint 2010 - Tags: Editor's Pick - Article Type: How To In this 2-part video post, J. Peter Bruzzese explains the benefits of setting up inbound and outbound email capabilities in SharePoint 2010. In part 1, Peter walks you through setting up incoming emails in SharePoint. There are certain benefits you can get from configuring your SharePoint system for incoming and outgoing emails. For instance, with Incoming Email enabled in SharePoint, your teams members can automatically store the messages and attachments they send to other team members into lists and libraries without having to open your SharePoint site and doing a manual upload. This will help your organization move away from Public Folders. On the other hand, with Outgoing Email enabled, users can set alerts and use them to track various items such as lists, library items, and documents and be notified whenever changes to these items occur. It will also allow email administrators to receive messages regarding important system issues. Important Reminders Before Configuring Email Before you set out to configure your SharePoint for incoming and outgoing email, there are some things you need to know. SharePoint 2010, which is the version we’ll be referring to throughout this tutorial, relies on the SMTP service in Windows 2008 or Windows 2008 R2 for incoming email. Thus, that service will have to be enabled in SharePoint before anything else. SharePoint 2010 supports configurations from any SMTP service for sending outgoing email. However, for this tutorial, we’ll be using Exchange 2010 and we’ll be assuming it has already been set up as its own member server in your organization and ready for use. Finally, to work with Exchange 2010, you will have to configure send and receive connectors. Let’s start the ball rolling... . --- ### Video with Josh Stephens, VP of Technology and Head Geek at SolarWinds > Interview with Josh Stephens, VP and Head Geek at SolarWinds which provides network & storage management and monitoring software. - Published: 2011-11-07 - Modified: 2011-11-07 - URL: https://petri.com/video-with-josh-stephens-vp-of-technology-and-head-geek-at-solarwinds/ - Categories: Networking - Article Type: Interview In this post, Kasia Lorenc sits down with Josh Stephens, VP of Technology at SolarWinds to learn more about what SolarWinds does, the products they currently sell and what to expect in the coming months. Introduction In the past we have posted about the different network monitoring tools that SolarWinds has to offer. You have probably seen the popular guide on how to track IP addresses, or read about simple monitoring for any SNMP device with Network Device Monitor. We have even covered SolarWinds' SCP Network Management certification which was released earlier this year. Earlier this year I got a chance to sit down with Josh Stephens, VP of Technology and Head Geek at SolarWinds, to learn more about the company, the products and the fun side of SolarWinds. In this video interview you'll hear Josh explain why this year has been monumental for SolarWinds, how the company is helping the community and what fun projects are in the works. Josh also shared some of his latest projects, including his ComputerWorld column and SolarWinds Films. Following is a full transcript of the interview. Josh Stephens: Hello, I'm Josh Stevens, VP of Technology and Head Geek at SolarWinds. This year at VMworld is very different for SolarWinds from a year ago, because a year ago SolarWinds really focused primarily on network management. Since then, we've transitioned, and we are now an IT management company, meaning, we have solutions to manage all of your IT infrastructure, be it networking, systems and applications, a virtualization infrastructure, storage area networks or even log and event management. That transition for us is really key. I'm excited to be at VMworld this year to talk about that transition and to discover... --- ### Anti Virus Exclusion Guidelines for Microsoft Products > This article provides a list of anti virus exclusion guidelines for Microsoft Products. Exclusions prevent anti-virus software conflicts with other software. - Published: 2011-11-03 - Modified: 2024-12-03 - URL: https://petri.com/anti-virus-exclusion-guidelines-for-microsoft-products/ - Categories: Security - Article Type: Overview Anti-virus software is a great way to protect your machines against attack. Unfortunately they can sometimes interfere with software that is running on your machine; anti-virus exclusions fix this. In this article we discuss anti virus exclusion guidelines for Microsoft products. Running a good, constantly updated Anti-Virus program on your computers - server and workstations - is a must when looking into the potential risks in today's IT world. However, when installing Anti-Virus software on a computer, you also risk having issues with some of the services and applications that run on these computers, most specially with the server machines. Anti-Virus software scans and sometimes locks files on the computers, and when you scan these files, performance and operating system reliability problems may occur because of file locking. This is why it is extremely important to properly configure the Anti-Virus software to exclude specific files, file type and/or folders on the computers (most importantly - server machines) with an anti virus exclusion. However, please note: When possible, try not exclude files based on the file name extension. For example, try not exclude all files that have a . dit or . vhd extensions. Of course this may not always be possible, but do try to be as specific as possible with any anti virus exclusion . In addition, try to exclude specific files and not entire folders. Excluding an entire folder maybe simpler but may not provide as much protection as excluding specific files based on file names. With that said, enclosed is a comprehensive list of services and or software and links to articles that describe the proper Microsoft recommendations for configuring anti-Virus software that runs on servers hosting them. General Enterprise Configuration Recommendations for Windows operating systems: http://support. microsoft. com/kb/822158... --- ### Wireless LAN Maintenance and Troubleshooting Part 2 > This article goes through some awesome tools that you can use to help find and fix problems on your wireless network. - Published: 2011-11-02 - Modified: 2024-09-04 - URL: https://petri.com/wireless-network-tools/ - Categories: Networking - Article Type: Overview In this second part of his two-part series on wireless network maintenance and troubleshooting, Joe Rinehart goes through some useful tools that can help diagnosis and fix issues that may arise on your wireless network. If you an admin of a wireless network, being able to fix problems that arise is equally as important as being able to troubleshoot the problems in the first place. In part 1 of this series, we went over different troubleshooting techniques, maintenance practices and some common issues that can arise.  In the following article, we will now go over some useful wireless network tools that are at your disposal for actually fixing wireless network problems after you identify them. CLI Debug/Show Commands The CLI may not be the most appealing interface to interact with, but it certainly is the most powerful. For instance, there are lots of information you can get from debug commands that are simply not available in any of the graphical interfaces. You usually have three options when you set out to use a command line interface. They are serial, telnet, and ssh. Regardless which of these three you prefer, there are two sets of CLI commands that you’ll be frequently using. These are the Debug and Show commands. The relevant show commands include the following: show running-config: Displays WLC configuration (see screenshot below) show ap summary: Displays access points currently registered with the WLC and is useful for troubleshooting association issues and registration issues. show wlan summary: Displays what WLANs are currently configured and what their current status are. show client summary:  Tells you what client devices are currently associated with an AP, what protocols are in use, and so on. show sysinfo: Displays a lot of status information regarding the... --- ### How To Pass The VCP5 Exam > Are you going to be taking the VCP5 Exam? This article provides some great information on how to approach studying for the exam - Published: 2011-11-01 - Modified: 2024-11-19 - URL: https://petri.com/vcp5-exam/ - Categories: VMware - Article Type: How To Greg Stuart provides some excellent study ideas and resources for those looking to take the VCP5 exam in this post. Inside, Greg covers where to begin, specific tips, and provides a large list of exam resources. Introduction There are so many good technical certifications out there today that it can be a daunting task to know which certifications path to take. If you are looking for a virtualization based certification path, the decision is a much easier one to make. VMware has laid out their virtualization certification path nicely on their website, which makes it easy to understand which course you need to take (let me emphasize NEED, VMware requires you take an Install, Configure and Manage or ICM course before you can certify) and what will help you to prepare. Unfortunately, what VMware doesn't do is give you an extensive list of resources that will help you prepare. They basically lay out the courses you need to take, ones that will help but are optional, and then point you to the exam blueprint. Well, lucky for you, I'm going to go deeper into what will help you you are studying for, because there are TONS of resource out there that will indeed get you over the 300 mark. Where Do I Start? Ok, if you're going to tackle passing your VCP5 exam, you have to make the pilgrimage to the mother land, VMware. com. This is the first place you want to start. Here you will find a list of all the certifications VMware offers the corresponding certification track. This post is focused specifically on passing the VCP5 exam so here is a nice graphic on what the VCP5 certification track consists... --- ### CCNP TSHOOT: Cisco Troubleshooting Procedures > Getting ready to take the CCNP TSHOOT exam? This article is a great crash course in common troubleshooting procedures. - Published: 2011-10-31 - Modified: 2011-10-31 - URL: https://petri.com/ccnp-tshoot-cisco-troubleshooting-procedures/ - Categories: Cisco - Article Type: How To Sean Wilkins returns for his second CCNP TSHOOT exam prep article. In this post, Sean discusses basic trouble shooting procedures by providing a nice step-by-step outline from the start, defining the problem, to actually solving the problem. Like his previous post on troubleshooting techniques, this is a great article for anyone looking to pass the CCNP TSHOOT exam. The overall process of troubleshooting is a very subjective and which trouble shooting techniques that are used to troubleshoot specific problems are as well. This article takes a look at the basic troubleshooting process steps as laid out by Cisco; these procedures are vital to understand for those candidates looking to obtain the Cisco certified Network Professional (CCNP) and other higher level certifications. The CCNP TSHOOT exam is one of the required exams that must be taken to achieve the CCNP; this exam requires a knowledge base including the concepts discussed in this article. It is also important to note that these specific process steps are given in a specific order but can be used and reused in a number of different orders depending on the experience of the engineer. Defining a Problem A common issue that exists for troubleshooters is a lack of a clear definition of a problem being reported; a common one is “My **** is not working”. While this gives a basic idea of what to look at it does not really give an engineer a good idea of where to start; it is sort of like “my car doesn’t work”. During this step in the process an engineer must define the problem being reported; this includes talking to the reporting party and hopefully observing the exact problem being reported. The more specific definition of the problem, the easier it is to narrow down and fix the problem. Gathering Information Once a proper definition... --- ### Video with Scott Lowe, VMware vExpert and Author of Mastering VMware vSphere 5 > Watch TrainSignal.com's interview with Scott Lowe; popular virtualization blogger, speaker and author of the newly released Mastering VMware vSphere 5 book. - Published: 2011-10-27 - Modified: 2011-10-27 - URL: https://petri.com/scott-lowe-interview-vsphere/ - Categories: VMware - Article Type: Interview Scott Lowe is a popular virtualization blogger, speaker and author of the newly released Mastering VMware vSphere 5 book. In this video interview from VMworld 2011, Scott talks about his latest book, his VMworld 2011 presentations and his favorite features in vSphere 5. If you're new to the virtualization field and new to VMware, then Scott Lowe's Mastering VMware vSphere books are the best place to begin learning about virtualization. Scott's Mastering VMware vSphere 4 has been called the "vSphere bible" and has received rave reviews since it's publication in 2009. With the release of vSphere 5, Scott created an updated version of the book aptly called Mastering VMware vSphere 5 which just became available last week. For the more advanced virtualization crowd, Scott has also written a book on VMware vSphere Design along with Forbes Guthrie and Maish Saidel-Keesing which focuese on the best practices in designing vSphere infrastructures. When I set down with Scott for an interview at VMworld 2011, we talked about his books, his VMworld sessions and his favorite features in vSphere 5. Take a look at the video interview and transcription below. Following is a full transcript of the interview. Scott Lowe: Hi, I'm Scott Lowe. I am an author and speaker and participant in the VMware community. VCDX as you can tell by the shirt, and a vExpert three years running. I have three books on the market currently and a fourth one coming out on October 11th. Not as fast as some people want it, but still coming out. I'm an overall supporter of the VMware community trying to give back to the community and support what's going on. And I blog and a tweet and that kind of thing, too. I have two sessions going... --- ### Install Windows 8 Developer Preview > Download and learn how to install Windows 8 Developer Preview in this short tutorial by J. Peter Bruzzese. Learn how to navigate the new Metro UI. - Published: 2011-10-26 - Modified: 2024-09-04 - URL: https://petri.com/install-windows-8-developer-preview/ - Categories: Windows 8 - Article Type: How To Windows 8 Developer Preview has been downloadable from Microsoft for a few weeks now. In this Article Peter Bruzzese walks through how to install Windows 8 Developer Preview and how to navigate around the new Metro UI. Overview In this post, we’ll show you how to install Windows 8 Developer Preview. This is basically a preview of the next version of Windows and is primarily meant to give developers an idea how the user interface looks like so they can start building applications for it. You can download the ISO from Microsoft. Installing Windows 8 Developer Preview Upon launching the Windows 8 Developer Preview installation, you’ll be greeted by a black welcome screen: After that, you’ll be asked to choose: What language you’d like to install, What time and currency format should be used, and What keyboard or input method should be used. After selecting the appropriate settings from the drop-down lists, click Next. In the following screen, just click Install now. This will take you to the license agreement. Check the I accept the license terms check box and click Next. You’ll then be asked to choose between two types of installations: Upgrade or Custom. For this example, we’re assuming you want to install a new copy of Windows, so go ahead and click Custom. Choose where you want to place the installation by selecting your preferred disk or volume and then clicking Next. With that, the installation proper will kick-off. As with all installations, this part can take some time, so grab a cup of coffee while the installation follows through. Personalize System When that part finishes, you’ll be asked to personalize your system. The first step would be to give your PC a name... . --- ### Wireless LAN Maintenance and Troubleshooting Part 1 > Wireless LAN troubleshooting techniques and maintenance tips in this two-part series. Learn how to maintain your wireless LAN. - Published: 2011-10-25 - Modified: 2024-09-04 - URL: https://petri.com/wireless-troubleshooting-and-maintenance/ - Categories: Networking - Article Type: Overview In this first part of his two part series, Joe Rinehart goes over basic system maintenance of a wireless LAN system and its components including the Wireless LAN Controller, Access Point, and the Wireless Control System. From there, Joe explains a proven troubleshooting model that efficiently helps diagnose and ultimately solve issues on the LAN. In this article, we’ll share with you all the important things you need to know to efficiently maintain and troubleshoot a wireless LAN.  In this first part of the two part series, we will start off by discussing system maintenance on a WLC (Wireless Lan Controller), AP (Access Point), and WCS (Wireless Control System). Then we’ll proceed to share with you a tested and proven troubleshooting model. We’ll also take up some common issues and their corresponding mitigation steps. Check existing code version You can obtain the version of your existing code by using any of the following series of steps: Through the Wireless LAN Controller: Login to the WLC web interface Look for the software version number on the Summary page. This is what you should be looking for on the Summary page: Through the WCS: Login to the WCS web interface Navigate to the Monitor tab and select Controller. Look for the software version number on the Summary page. Through the command line: Login to whatever CLI program you wish to use (e. g. Telnet or SSH). Execute the show sysinfo command. Scroll to the output labeled Product Version and get the software version number from there. Determine what version you can upgrade to After knowing which version of the code you currently have, the next step is to determine what available version of the code is that you can upgrade to.  This is done through www. cisco. com. Note that you can only download the appropriate code from there if you have... --- ### CCNP TSHOOT: Cisco Troubleshooting Techniques > Prepare for the CCNP TSHOOT exam with this article that covers basic Cisco troubleshooting techniques. - Published: 2011-10-24 - Modified: 2011-10-24 - URL: https://petri.com/ccnp-tshoot-cisco-troubleshooting-techniques/ - Categories: Cisco - Article Type: How To There are several approaches and techniques that systems are troubleshooted and they can all work well. Which one you chose can come down to personal preference or be dependent on the nature of the issue. In this article, Sean Wilkins goes over several of these approaches. This is a great article for those about to take the CCNP TSHOOT exam. As most experienced network engineers know, there are a number of different methods that people use to troubleshoot problems on a network (or systems in general). Now determining which one is “better” is very subjective and can end up being a bit like having a political conversation with other engineers. This article takes a look at a number of the common troubleshooting techniques; these techniques are vital to understand for those candidates looking to obtain the Cisco certified Network Professional (CCNP) and other higher level certifications. The CCNP TSHOOT exam is one of the required exams that must be taken to achieve the CCNP; this exam requires a knowledge base including the concepts discussed in this article. Top-Down Approach The Top-Down approach takes advantage of the hierarchy of the Open Systems Interconnection (OSI) model. As most network engineers are drilled in both the structure of the OSI and TCP/IP models, basing a troubleshooting model from them makes sense and tends to be very “natural” to most trained engineers. The Top-Down model as the name indicates takes a look first at the application layer (OSI model) and then works down based on whether a problem has been found. This model tends to be used when troubleshooting apparent application problems on specific computers. An example of using the Top-Down approach would be to first look at the application being used when the trouble is happening and determining whether it is causing the reported problem, if not, continue to work down... --- ### Cisco IOS Diagnostic Tools > Sean Wilkins discusses Cisco IOS diagnostic tools available to help troubleshoot and monitor network issues. - Published: 2011-10-20 - Modified: 2024-09-04 - URL: https://petri.com/cisco-ios-diagnostic-tools/ - Categories: Cisco - Article Type: Overview In this article, Sean Wilkins discusses the several diagnostic tools included with Cisco IOS. These tools simplify the diagnosis and troubleshooting of any network issue. This article is an excellent read for anyone that is prepping for the CCNP TSHOOT exam. There are certain a number of diagnostic tools that can be used to troubleshoot and monitor the different elements of a network. This article takes a look at a number of the built-in tools/command that exists within Cisco IOS. Any experienced IOS engineer knows that many issues can be diagnosed using only the tools that exist within the IOS itself; the target audience of this article includes engineers with less experience looking to become more familiar with the available tools and those preparing for the CCNP TSHOOT exam. Show Processes CPU One of the most basic commands to run on a Cisco device is show processes cpu. In its full view the command will show all of the active processes on a device and how much of the processor time the process is taking both currently and historically. Figure 1 below shows a shortened version of the command: Figure 1 - show processes cpu This command would typically be used when troubleshooting a problem with a device that is having trouble performing basic functions; for example if a router is having trouble forwarding and routing packets without loss. Show Memory Another command that is commonly in conjunction with the show processes cpu is the show memory command. This command is used to display the current status used and available memory; as with the show processes cpu command the show memory command also displays much more specific information about how memory is being allocated, however the initial information... --- ### External Hard Drive Read Only Issue and Solution > External hard drive stuck as Read Only? Need to trouble shoot how to write to your external drive? This article explains how to solve this issue. - Published: 2011-10-19 - Modified: 2024-09-04 - URL: https://petri.com/external-hard-drive-read-only-solution/ - Categories: Backup & Storage - Article Type: Overview The following article explores the puzzling situation in which an external disk drive behaves as if it is "Read Only" but there is no indication in the Windows UI that indicates this is the case. A walk-through is provided to troubleshoot and ultimately provide a solution to this situation. I usually use an external USB drive to backup my files, documents,  scripts, pictures and other important data. Recently, I was using a Samsung 1TB external drive and I was moving it back and forth between several machines.  I was using a different computer (actually, it was a laptop) than the one I was regularly using at the time and something happened to my external USB drive. Right-click > New didn't work. In fact, it was not even showing on the screen. The Delete button on the keyboard didn't work; pressing it didn't do anything. Files, folders, the entire disk seemed to be write protected, or read-only. In order to investigate this, I looked at the volume properties in Windows Explorer. Nothing indicated that it was read-only. Nor did the folders or files within. My user was a member of the local administrators group, and these had Full Control. I also checked to see if there were no specific Deny permissions, and the answer was negative. Looking at the ownership of the files and folders showed that it was not the problem. I was a local administrator, so there was no issue there: Notice that there is no reference to the fact that the disk is read-only. On the Security tab, also note that (in this case) the administrators group has Full Control permissions (my user is a member of that group), and that no individual deny permissions are assigned to any user or group. [adkit zone="freestyle"... --- ### Microsoft Network Monitor - Part 2 > The second of a two part series, learn how to handle and understand data captures from Microsoft Network Monitor. - Published: 2011-10-18 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-network-monitoring-part-2/ - Categories: Networking - Article Type: Overview In the 2nd of this two part series, Rhonda Layfield continues her tutorial of Microsoft Network Monitor. In this installment, learn how to make sense of and get the most information out of the data that Microsoft Network Monitor captures from the network. In Part 1 of this post, we talked about: where to take a capture how to gather documentation and use a cheat sheet how to customize what information should be captured how to customize the user interface Here in Part 2, we’ll talk about: how to make sense of the captured data how to get more information out of the data that’s captured how to view specific frames in an XML format and in a window by themselves Ready? Let’s get started. How to make sense of the captured data Using aliases When you start dealing with multiple machines and big traces, that Frame Summary window can be very confusing to look at. It would help you work more efficiently if you could quickly identify the machines involved in a particular process. For example, it would help if you could quickly determine which machine served as the source machine, i. e. where the command originated from, and which machine served as the destination machine, i. e. where the command was ultimately processed. One solution is to use aliases. Aliases allow you to turn IP addresses into names that make sense in a particular network capture. For example, you could label one machine as ‘Server’ and another machine as ‘Client’. In Network Monitor, you can even create an alias list containing all the aliases of all your servers (e. g. Domain Controllers, Exchange Servers, SQL Servers, etc), which you can then use in multiple traces in the future. To create an alias, click the... --- ### Hyper-V Backup - Considerations when Backing Up Virtual Machines > Backing up a virtual machine is a little different than backing up physical hardware. Keep these tips in mind before you backup on Hyper-V. - Published: 2011-10-17 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-backup-considerations/ - Categories: Backup & Storage - Article Type: Overview Backing up virtual machines presents different challenges than backing up physical machines. Ignoring these challenges may lead to an incomplete or even failed backup even though it may not be apparent until you try and restore the backup. This brief article goes over these important considerations and will help you make sure your VM backups are complete. Overview Making proper backups on virtual machines can be a little different than backing up physical hardware. Specifically, backing up VM's on Hyper-V with Windows Server Backup requires some special considerations.  This article will provide a brief overview on what needs to be considered to properly backup a virtual machine on Hyper-V. Before you proceed with the process of backing-up virtual machines by using Windows Server Backup and VSS, make sure that you are aware of the following considerations: It's an all or nothing situation You must perform a VSS snapshot of the entire volume on which the VMs are stored. You cannot select individual folders or files from within Windows Server Backup, although the UI may seem to let you select them. Also, partial backups are not supported. If any VM fails to create a snapshot, no VMs will be backed up. Location of the VM configuration files and disks When you perform a backup of the virtual machines, you must back up all volumes that host files for the virtual machine, including the InitialStore. xml file and the volume(s) containing the VHD(s) and configuration XML files. This means that if virtual machine configuration files are stored on D:, the virtual machine virtual hard disk (VHD) files are stored on E:, and the InitialStore. xml file is stored on C:, you must back up the C:, D: and E: volumes. This is why I strongly advise to configure the default location of the VM files and make sure all VMs... --- ### Killing a Hung Virtual Machine on Hyper-V > If a VM becomes unresponsive or hung killing it without restarting the host machine may be the only option. Learn how to kill a hung VM in this article. - Published: 2011-10-14 - Modified: 2024-09-04 - URL: https://petri.com/killing-a-hung-hyper-v-virtual-machine/ - Categories: Hyper-V - Article Type: How To In the event that you have a VM that hangs and becomes unresponsive and it resides on a host machine with other VMs that are running fine, simply restarting the host machine is not an option. In this article, learn alternative methods to killing a hung VM without interfering with other healthy VMs. Hyper-V virtual machines usually run without any special issues that cause them to become unresponsive or hung. However, sometimes, for no apparent reason, a VM might seem to hang on the Hyper-V host and nothing you do will close it even if you attempt to shut it down, turn it off, reboot or reset it. Using the Hyper-V Management Console or System Center Virtual Machine Manager (SCVMM) to kill the VM will not work, and the last resort will seem to be to reboot the Hyper-V host itself. However, rebooting the host will probably affect other VMs that run on the same host. If you're using a Hyper-V Failover Cluster you may be able to move the other VMs to anther node in the cluster which will leave just the failed VM on the host. But what if you don't have a cluster in place and have just one or two hosts that run several VMs? If it was a "normal" process, you could probably use Task Manager to find the hung process and terminate it. But how do you find the process of the entire VM? Killing Hung VMs Task Manager shows a process called VMWP. EXE. This is the virtual machine worker process that runs for every VM that is currently running. In the above example you only see two instances, but on a production host there may be many instances of the process running. So how can you identify which VMWP. EXE process is the one... --- ### Desktop Virtualization Challenges - Introduction to Desktop Virtualization Part 3 > Desktop Virtualization is becoming more and more popular. This article goes over some of the challanges that Desktop Virtualization faces. - Published: 2011-10-12 - Modified: 2024-09-04 - URL: https://petri.com/desktop-virtualization-xendesktop-5-part-3/ - Categories: VMware - Article Type: Overview In his final installment of Introduction to Desktop Virtualization, Elias Khnaser goes over the challenges of Desktop Virtualization and attempts to debunk some of the myths surrounding these challenges. Lastly, Elias offers some best practices and tips to keep in mind when implementing desktop virtualization. You’re now on the third and final leg of your journey to understanding desktop virtualization. This is where you can get information that can help you decide whether desktop virtualization is right for your organization. Let’s start off by talking about desktop virtualization challenges. What are the critics saying? What are the main arguments against DV? Arguments against Desktop Virtualization Each form of Desktop Virtualization has its set of criticisms, and these are illustrated in the figure below. Let’s look at these criticisms more closely. Arguments against VDI Too complex and costly - These are what most of the VDI critics are saying; that it’s just way too complex to set up and manage. They say it’s too costly to acquire, and that you don’t realise any savings at all. Availability and performance is heavily dependent on the network - Because the VMs are installed on a server in the data center, people don’t see any offline use case for VDI. And because a connection to the VM is needed, even if a user is online but the network is slow, performance is expected to suffer. Storage requirements are too high - When people look at desktop virtualization, they usually liken it to server virtualization. When treated this way, VDI’s storage consumption can be staggering. For example, if you have a thousand users and assign each desktop to a vdisk equivalent to 40 GB, then you’ll certainly need a lot of storage space. Requires new rounds of... --- ### Microsoft Network Monitor - Part 1 > Learn what Microsoft Network Monitor is and how it works. Learn how to take a network capture from network's data stream. - Published: 2011-10-11 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-network-monitor-part-1/ - Categories: Networking - Article Type: Overview In the first of this two part series on Microsoft Network Monitor, Rhonda Layfield walks you through the basics behind Network Monitor, how it works, and how you can most effectively use it. Microsoft offers a network diagnostic/monitoring tool that allows you to perform network trouble-shooting tasks. Aptly named Microsoft Network Monitor, this tool collects information from a network’s data stream and displays different types of information, including: the source address of the computer that sent a frame onto a network the destination address of the computer that received the frame the protocols used to send the frame the data, or portion of the message being sent and many others (Instructional video below provides a walkthrough of the steps contained in this article. ) Capturing Microsoft Network Monitor collects information using a process known as capturing. You can use this tool to capture statistics on all frames it detects on the network or on a specific subset of frames. In this post, we’ll show you: where to take a capture, how to gather documentation and use a cheat sheet, how to customize what information should be captured, how to customize the user interface, how to make sense of the captured data, how to get more information out of the data that’s captured, and how to view specific frames in an XML format and in a window by themselves. Where to take a capture The decision on where you need to take a capture from will depend on certain conditions like say, the number of machines involved or whether firewalls are in place. For example, if you have two machines, there can be two possible scenarios: 1) when there are... --- ### Get Hyper-V Virtual Machine Process ID and GUID > Learn how to obtain a VM's process ID and GUID on Hyper-V. This can be useful when you need to manipulate a VM. - Published: 2011-10-10 - Modified: 2024-11-19 - URL: https://petri.com/get-hyper-v-virtual-machine-process-id-and-guid/ - Categories: Hyper-V - Article Type: How To There are times when you may need to manipulate a virtual machine and it could be valuable to know the VM's process ID. If, for example, the VM has become unresponsive, knowing the process ID could help in closing the VM without interrupting another VM on the same host machine. This brief article will show you how to obtain a VM's process ID and GUID. Overview When needing to manipulate a virtual machine - either kill it if it's unresponsive, or do other management tasks such as working with virtual disks or snapshots and even fixing specific issues with NTFS file permissions - it may be useful to know the virtual machine ID or GUID.  In this brief article, we'll show you where to find the process ID and GUID. Find Virtual Machine GUID in XML Config File If you look at the folder where the VM is located, you'll find an . XML file that contains the configuration information for the VM. This file name uses a long GUID string, which in fact is identical to the VM's GUID. Other Methods to Obtain ID and GUID This is a good script written by Michael Michael from Microsoft. It will give you a list of all VMs in a hyper-v system as well as their respective BIOS GUIDs. How to get the BIOS GUID from a Hyper-V VM - Virtual Machine Management - Site Home - TechNet Blogs http://blogs. technet. com/b/m2/archive/2008/07/04/how-to-get-the-bios-guid-from-a-hyper-v-vm. aspx? ppud=4&wa=wsignin1. 0 Next, a good resource to know, the PowerShell management Library for Hyper-V, a project to provide a PowerShell management library for Hyper-V. It does pretty much what it says, with 80 functions in the library. PowerShell Management Library for Hyper-V http://pshyperv. codeplex. com After importing the management library, run a command such as this one: get-vm | ft ElementName,name Another easy to use method is by querying the WMI repository. Copy... --- ### Citrix XenDesktop 5: Intro to Desktop Virtualization Part 2 > Elias Khnaser goes over different types of Desktop Virtualization including Virtual Desktop Infrastructure, Terminal Server, and Client Hypervisors. - Published: 2011-10-06 - Modified: 2024-09-04 - URL: https://petri.com/types-of-desktop-virtualization-xendesktop-5-part-2/ - Categories: Virtualization - Article Type: Overview In part 1 of our Intro to Desktop Virtualization, Elias Khnaserwent over what Desktop Virtualization is and why it's being used. In the 2nd part of this 3 part series, Elias takes a closer look into the different types of desktop virtualization and why you might want to chose one over the other. Introduction to Desktop Virtualization - Part 2 A closer look at the different types of Desktop Virtualization In Part I of this article, we gave you a brief introduction to desktop virtualization and some very brief descriptions of each type of Desktop Virtualization. In this article, we’ll be taking a much closer look at what each type can offer, their benefits, as well as the types of users they are best suited for. Importance of user profiling Before you go out and invest on any desktop virtualization technology, you need to examine the types of end users your organization has and then profile them. The reason why you have to go through this is because each desktop virtualization type caters to a specific group of users. Take a look at the diagram below. To simplify, your company may have power users, terminal users, mobile users, and so on. As you can see, server-side computing types like Terminal Server and VDI are best suited for task users.   These are users who do the same tasks and use the same applications every single day. In addition, the applications they use may not be memory or CPU-intensive. Client-side computing types like Client Hypervisor and Streaming, on the other hand, work best for users who need richer user interfaces. Notice also that Application Virtualization may cater to all kinds of users. After we discuss the different types of desktop virtualization, you can use the knowledge you’ll learn there when the time... --- ### vSphere Client for iPad - Administering vSphere 5 from your iPad > Learn how to install and set up vSphere Client for iPad so you can administer virtual machines in vSphere 5 from iPad. - Published: 2011-10-05 - Modified: 2024-09-04 - URL: https://petri.com/vsphere-client-for-ipad/ - Categories: VMware - Article Type: Overview David Davis explains an exciting feature with VMware's new vSphere 5 that allows you to manage your vSphere environments through an iPad with the new VMware vSphere Client for iPad. David explains how to set up the client on your machine and iPad. After reading this article, you'll be managing your virtual machines from a sunny beach in no time. Ever dreamed of administering your vSphere environment while on the go using an ultraportable device? I’m not talking about your laptop or even a netbook for that matter. I’m talking about something much lighter and more portable ... something like the iPad. That’s actually possible now with the VMware vSphere Client for iPad. The vSphere Client for iPad is an administrative client. Meaning, its features are mainly geared towards accomplishing VMware-related administrative tasks such as: Searching for vSphere hosts and virtual machines Monitoring the performance of vSphere hosts and virtual machines (VMs) Starting, stopping, and suspending VMs Viewing and restoring VM snapshots Rebooting vSphere hosts and bringing them into maintenance mode Diagnosing vSphere hosts and virtual machines using built-in tools like ping and traceroute Requirements for using vSphere Client for iPad Before you can use vSphere Client for iPad, you will need the following: A running installation of vSphere and vCenter - Actually, vCenter is not required if you want to implement this on an individual ESX/ESXi server vCenter Mobile Access (vCMA) - This is a virtual appliance which you can download for free from http://labs. vmware. com/flings/vcma and is the most important component in this list. It allows you to manage your virtual infrastructure from either the vSphere Client for iPad (on the iPad of course) or from a web browser, when using other mobile devices. A network connection to the vCMA server - This can be either a LAN or an Internet VPN. Although it is theoretically... --- ### Citrix XenDesktop 5: Intro to Desktop Virtualization Part 1 > Ever wonder what Desktop Virtualization is? This post explains the benefits of XenDesktop 5 and why you should be using it. - Published: 2011-10-04 - Modified: 2011-10-04 - URL: https://petri.com/desktop-virtualization-xendesktop-5-part-1/ - Categories: Virtualization - Article Type: Overview In this first of three posts, Elias Khnaser introduces Citrix XenDesktop 5, explains what Desktop Virtualization is and why it is becoming more prominent. Overview What we have for you right here is a detailed introduction to desktop virtualization (DV). When you’re through with this article, you’ll not only know what desktop virtualization is. You’ll also learn about the various types of desktop virtualization (there’s actually more than just VDI),  the reasons why companies are considering DV, what the benefits are, and even some tips and best practices. Because of the length of this article, we’ve broken it down into three parts. However, we suggest you read it from Part I through III. Let’s get started. What is Desktop Virtualization? First, let’s correct a misconception. You see, people usually associate desktop virtualization with VDI. There’s nothing wrong with that. But while VDI or Virtual Desktop Infrastructure is a kind of desktop virtualization, it is certainly not the only one. Other forms of DV include: client hypervisors, streaming, application virtualization, and terminal server.   We’ll cover each of these in more detail later. But in the meantime, let’s describe them briefly. VDI - This is the most popular type of desktop virtualization today. It allows users to access dedicated virtual machines (VMs) that are hosted on servers like Hyper-V boxes, ESX boxes, XenServer boxes, etc. Client hypervisor - Similar to a server hypervisor but is installed on a client, not a server. Normally, it is used on laptops but can also be used on desktops. It can abstract the hardware from the software, thus allowing one version of a VM to be deployed on different brands... --- ### Free Webinar - How to Get Started with Virtualization > Watch this free webinar from David Davis on Introduction to Virtualization. Improve your skills by learning virtualization for. - Published: 2011-10-03 - Modified: 2024-09-24 - URL: https://petri.com/virtualization-training-free-webinar/ - Categories: Virtualization - Tags: Virtualization, webinar - Article Type: News If you're an IT Professional unfamiliar with virtualization, then now is the time to start learning and building your skills. In this free webinar I'll explain what virtualization is and why you need it and show you how you can get started with virtualization right away by building your own testing lab. Overview Virtualization has reached 39. 4% penetration rate according to Veeam's v-index, which means that nearly 40% of all servers are now virtual. This is a huge increase over the past few years, and something that is not going to slow down. If you're an IT professional unfamiliar with virtualization, then now is the time to start learning and building new skills. As a virtualization instructor for TrainSignal I have helped thousands of students worldwide get a start in virtualization. Today, I'd like to invite you to a live webinar that will help you understand what virtualization is and why you need it and show you how you can build your own virtualization lab so you can get started with virtualization right away. This one hour webinar is completely free and focused 100% on virtualization. It's also an opportunity for you to ask me questions and get the answers you need to get started with your own virtualization studies, whether you're using VMware, Citrix or Microsoft products. View webinar here: Virtualization professionals are in high demand and you too can improve your job prospects by learning about virtualization and getting some hands-on experience in your own lab. About David Davis: David is the author of the best-selling library from TrainSignal. He has written hundreds of virtualization articles and presented at conferences including VMworld and TechMentor. He is a VMware vExpert, a VCP, VCAP-DCA and CCIE #9369 with more than 18 years of enterprise IT experience. --- ### Deploying Printers Using Group Policy - Networking Printers & Windows 2008 Server Part 2 > Learn how to deploy network printers automatically in Windows Server 2008 using Group Policy Management. - Published: 2011-09-29 - Modified: 2024-11-19 - URL: https://petri.com/deploying-printers-using-group-policy-windows-2008/ - Categories: Windows Server 2008 - Tags: deploy printers with group policy, GPMC, gpo, group policy, networking printers, Print Management, printers, push printer connections, pushprinterconnections, XP pushprinterconnections.exe - Article Type: How To In this second part of Tom Finnis' article on deploying printers on your network he explains how to assign your printers to specific users and computers using Group Policy and the Active Directory. He also covers in depth how to avoid the most common problem encountered, the lack of built-in support for GPO printer deployment in Windows XP In the first part of this article series covered adding the Print Services role to a Windows 2008 Server, and then how to use the Print Management console to add shared printers with the correct drivers for your network clients. For a small network this may well be all you need to know, but with more users and printers there are more tools available to simplify management. In this article we will look at automating printer deployment with Group Policy and how to use GPOs to assign access to printers. Windows GPOs Anyone responsible for managing a Windows domain based network should be familiar with the basics of Group Policy Management, and the granular control it allows over virtually every setting available within the Windows client systems. Although quite impressive results can be achieved with old style login scripts (especially if you know vbscript), Group Policy Objects can do much more without requiring you to become a scripting expert. This particular printer challenge is a good example of how apparently complicated solutions can be achieved with a few simple GPO settings and some planning: Pre-Requisites To use Group Policy for printer deployment you will need to have a Windows Active Directory domain, and this article assumes that your Domain Controller is a Windows 2008 R2 Server. You will also need the Print Services role installed on a server (can be on your DC), and you will be using the Print Management and Group Policy Management consoles to configure the various settings. Its assumed that... --- ### VM Backup - Backing up Virtual Machines with Windows Server 2008 R2 & Hyper-V > Learn how to backup virtual machines (VM) on Windows Server 2008 R2 using Windows Server Backup & Hyper-V. - Published: 2011-09-28 - Modified: 2024-09-04 - URL: https://petri.com/vm-backup-with-windows-server-backup/ - Categories: Backup & Storage - Article Type: Overview Backing up virtual machines is a little different than backing up a traditional system. The following article provides a nice walk through for backing up virtual machines on Windows Server 2008 R2 with Hyper-V using Windows Server Backup. Overview Virtual machines are basically made of files. They contain configuration files, virtual hard disks, snapshot files and saved state files. While running computers are virtual machines can benefit from virtualization, a lot of thought needs to be taken in order to protect the contents of the virtual machines and the VMs themselves, so that if something goes wrong, you can perform a pre-defined list of steps to successfully restore the VMs to a functional and running state. We will cover the fundamentals of VM backup in a future article. However, in this article we want to focus on one of the basic methods of VM backup - using Windows Server Backup. Considerations Before starting with the VM backups you must pay close attention to a number of considerations. Please read the full article: Considerations when Backing Up Virtual Machines on Hyper-V Installing Windows Server Backup Please follow the guidelines in this article: Installing Windows Server Backup on Windows Server 2008 R2 Note: To install Windows Server Backup, log on to the computer by using the local Administrator account or another account with Administrator privileges. To perform backups or recoveries by using Windows Server Backup, you must be a member of the Administrators or Backup Operators groups. Registering the Microsoft Hyper-V VSS writer with Windows Server Backup Please follow the guidelines in this article: Registering the Microsoft Hyper-V VSS writer with Windows Server Backup Performing the backup To perform the actual VM backup... --- ### Registering the Microsoft Hyper-V Volume Shadow Copy Service with Windows Server Backup > Learn how to register Volume Shadow Copy Service (VSS) writer with Windows Server Backup. This allows backups to volumes that remain in running state. - Published: 2011-09-23 - Modified: 2024-09-04 - URL: https://petri.com/register-volume-shadow-copy-service/ - Categories: Backup & Storage - Article Type: Overview Sometimes you need to backup a virtual machine that needs to remain in a running state. Volume Shadow Copy Service allows volumes to be backed up while applications continue to write to those volumes. In order to perform this task properly, you must first register the Hyper-V VSS writer with Windows Server Backup. The following article explains how this is accomplished. Overview There are times when you will need to back up a virtual machine that needs to remain in a running state.  Fortunately, Microsoft has provided a handy tool on its Windows Server platform that allows admins to make backups to volumes while applications continue to run and write to those volumes called Volume Shadow Copy Service. Volume Shadow Copy Service Volume Shadow Copy Service (VSS) is an infrastructure on Windows server platforms that enables applications to create shadow copies. These disk volume backups  can be performed while applications continue to write to those volumes. There are basically 3 components that are involved in a VSS backup: A VSS requestor is an application that requests VSS services to create shadow copies. Typically, VSS requestors are backup applications such as Windows Server Backup. Requestors communicate with writers to gather system data and signal writers to prepare data for backup. A VSS provider manages storage volumes and creates shadow copies on demand. A VSS writer is an application or service that writes data to disk and cooperates with VSS providers and requestors. During backups, writers ensure that data is in the proper state for a shadow copy. Writers exist for several types of applications, such as Exchange 2007/2010, Hyper-V, NTDS and others. In order to properly back up virtual machines that are in running state, a VSS-aware backup application (or requester) must be used, and that application must notify the VMs that they are being... --- ### Clear Logs in Windows Server Backup Console > In this article, learn how to clear the Windows Server 2008 Backup log - Published: 2011-09-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-backup-log-how-to-delete/ - Categories: Windows Server 2008 - Article Type: How To Windows Server Backup on Windows Server 2008 R2 is an excellent backup utility that takes care of safe backups of just about anything on your Windows Server 2008. As one would expect, a convenient log of all of these backups is kept but it is not very apparent how one clears this log. The following article describes the few simple steps to clear the log. Overview Windows Server Backup is the built-in tool in Windows Server 2008/R2 that allows you to backup and restore files, folders, and critical system data such as the System State, entire volumes and even the full server itself. Installing Windows Server Backup on Windows Server 2008 R2 After using it, Windows Server Backup will begin to display a log of recent backup and restore operations. This log allows the administrator to keep track of what backup and restore operations were taken on that server, and may be quite useful especially when having many people dealing with your servers. While useful, sometimes one might want to delete or clear that list of log entries. Strangely, there's no obvious place, button, command or checkbox you can use to clear that log. After some digging, we found a workaround. Clearing Windows Server Event Log To clear the event log: 1. Open Event Viewer from the Administrative Tools folder. 2. Go to Applications and Services Logs. 3. Expand Microsoft > Windows > Backup. 4. Right click on the Operational Channel log and choose Save and Clear or just Clear in case you don't want to save the existing log (we suggest you save the logs before clearing for any future reference). 5. Now, if you open Windows Server Backup, you'll see that the log is empty.   Summary And that's it! Windows Server Backup is a very useful tool and the fact... --- ### Advanced Dial Peer Concepts and Configuration > Learn advanced Dial Peer Concepts and configurations in this overview of Dial Plans, Dial Peer Matching and Inbound Peer Matching - Published: 2011-09-21 - Modified: 2011-09-21 - URL: https://petri.com/dial-peer-configuration/ - Categories: Cisco - Article Type: Overview This is the second in a series of Dial Peer Concepts and Configuration articles. This advanced overview goes into more depth about dial peer matching and the differences between inbound and outbound dial peer matching. The first article in this series on Basic Dial Peer Concepts and Configuration  included an overview of the call leg and dial peer concepts and basic dial peer configuration. To review from the previous article, a dial peer is a physical implementation of the call legs that exist between voice equipment. In modern networks, this mainly includes two types of dial peer: Plain Old Telephone Service (POTS) and Voice over IP (VoIP). This article takes a slightly deeper look at dial peer configuration with explanations of dial plan options and the dial plan features and configuration options available. Dial Plans The first thing that must be reviewed is the concept of a dial plan. Most people are familiar with the concept of a dial plan as they use it every day when using the public phone system. Basically, a dial plan is used to organize a group of numbers so that dialing parties know how to reach a specific destination. The example of this is the use of area codes and prefixes in the U. S. ; for example, calling parties know that if they dial the 212 area code they are reaching someone in the New York City, New York area. The biggest part of the configuration of a dial peer includes implementing a call routing logic so that the voice device knows how to route traffic to specific destinations; the configuration of this routing logic is covered in the next section. Dial Peer... --- ### Using VMware vSphere Hot-Add to Dynamically Add CPU and RAM > Learn how to use vSphere Hot-Add to Dynamically add CPU and RAM to resource hungry virtual applications that are mission critical and require high availability. - Published: 2011-09-20 - Modified: 2024-09-04 - URL: https://petri.com/vsphere-hot-add-memory-and-cpu/ - Categories: VMware - Article Type: Overview Every now and then an application on a virtual machine will become very resource hungry. If the application requires high-availability and is mission critical, shutting the application down to add more RAM or CPU is not an option. In such an instance, Hot-Adding CPU or RAM is a very useful skill. The following article describes how to Dynamically add CPU and Memory using vSphere Hot-Add. There might be instances when an application running on a virtual machine starts consuming a lot of resources and, as a result, the VM starts running out of RAM and CPU. If the application is mission critical and has to be highly available, you can’t just shut it down to add more RAM and CPU. These are the kind of instances when a Hot-Add and Hot-Plug feature can come in handy. A Hot-Add will allow you to improve the performance of a VM by enabling you to add RAM dynamically without requiring the virtual machine or the application to be shut down. The same holds true for a Hot-Plug, except that it technically refers to the adding of a CPU. In some texts, the terms Hot-Add and Hot-Plug are used interchangeably. In this post, we’ll take a look at the basic concepts relevant to Hot-Adds and Hot-Plugs. We’ll then proceed to show you how to dynamically add CPU and RAM using vSphere’s Hot-Add/Hot-Plug feature.   What you need to know about adding, modifying and removing virtual hardware In most cases, only very few types of hardware can be added “hot”, i. e. , while the VM is running. For all other types of virtual hardware, the VM has to be powered off before they can be added or removed. In addition, your operating system and applications have to be configured to recognize the virtual hardware you want to add. Let me show you a running... --- ### Access Denied Error Attempting to Manage a Remote Hyper-V Server in a Workgroup Environment > Access Denied Error Attempting to Manage a Remote Hyper-V Server? Learn how to fix this this error in the following article. - Published: 2011-09-19 - Modified: 2024-11-19 - URL: https://petri.com/access-denied-error-hyper-v/ - Categories: Hyper-V - Article Type: How To A well documented error exists when you try to use the Hyper-V management tools from a Windows Vista or Windows 7 machine and try to connect to a remote Windows Server 2008 R2 machine. Fortunately there is a workaround to this issue but it does involve several steps. This article walks you through the required steps that will allow you to connect from your Vista or Windows 7 machine. Overview When you attempt to use the Hyper-V management tools on a Windows Vista or Windows 7 computer, and connect to a remote Windows Server 2008 R2 machine running the Hyper-V role enabled, if both machines are in a workgroup, you will get a nasty error: You do not have the required permission to complete this task. Contact the administrator of the authorization policy for the computer `IP address` Here is what it looks like in the UI: I will not go into details on why this happens. The reasons for this were well documented on the official Microsoft documentation: http://technet. microsoft. com/en-us/library/cc794756. aspx. In addition, John Howard, a Senior Program Manager in the Hyper-V team at Microsoft Corporation, has done a wonderful job in documenting all the manual steps that were needed to be taken in order to allow for such a remote management scenario (it is strange that Microsoft themselves did not offer an easier way to do this). His blog posts can be found in the following links: Part 1, Part 2, Part 3, Part 4, Part 5 So if you really want the nasty bits, make sure you read the above posts. How to enable remote management of Hyper-V John Howard has drafted, in great detail, all the steps that need to be taken in order to make it work. The process is long, it has many steps that need to be done (part on the server side, part on the client... --- ### Communications Manager Express - Installation and Upgrade Overview > Learn how to install Cisco's Unified Communications Manager Express (CME) in this brief step-by-step how-to article. - Published: 2011-09-16 - Modified: 2011-09-16 - URL: https://petri.com/install-communications-manager-express/ - Categories: Cisco - Article Type: Overview Cisco's Communications Manager Express (CME) offers a wide range of features for voice networks. Although installation of CME is rather simple, there are certain steps that need to be considered. The following article provides a brief overview of the installation process. Overview The Unified Communications Manager Express (CME) solution provides the ability to supplement or replace existing voice solutions while also taking advantage of equipment that can support not only a voice solution but also data feature support requirements. This article discusses how the Unified Communication Manager Express software is installed on supporting equipment. Unified Communications Manager Express Files The installation of the Unified CME software onto supporting equipment is not a complex task but does require the knowledge of the different files that are required for each of the different Unified CME features. The following table goes over the required files and what they are used for: Basic files The basic files for Unified CME are typically packaged into a tar archive and contain all of the files required to have the Unified CME feature operate. This archive also contains the many of the phone firmware files that are required. Graphic User Interface (GUI) files The Unified CME solution can be provisioned using a GUI that can be installed on the supporting Unified CME equipment; this GUI is contained within a separate tar archive then the basic files. The basic setup of CME with basic files is required before the GUI can be utilized. Phone Firmware Files Each of the supporting phones that are going to be deployed with Unified CME must be running the same version of the firmware that is installed on the supporting equipment as well as be running a version of the firmware that... --- ### Configure High Availability for Non-Mailbox Servers > The following describes how to set up high availability in Hub Transport, Edge Transport, Client Access and Unified Messaging Servers. - Published: 2011-09-14 - Modified: 2024-09-04 - URL: https://petri.com/configure-high-availability-for-non-mailbox-servers/ - Categories: Exchange Server - Article Type: How To Typically, mailbox servers are given priority to high-availability in Exchange but network admins should also provide high-availability to non-mailbox servers as well. The following article describes how to set up HA in Hub Transport, Edge Transport, Client Access and Unified Messaging Servers. Although Mailbox Servers are usually given top priority when providing high availability (HA) in Exchange, you should also configure high availability to the non-mailbox servers. Just imagine this - if your Hub Transport server is not available, then your organization cannot send or receive any mail. Similar disruptions can likewise be experienced if the Edge Transport, Client Access, and Unified Messaging (UM) servers go down. Thus, to make your system more resilient, it would be prudent to extend high availability to non-mailbox server roles. In this article, I’ll present you a typical environment that can assure HA for the various server roles and then show you how to configure high availability for your non-mailbox servers. A typical environment that provides High Availability for the various server roles Figure 1: Shows an environment that can exhibit high availability. Site 1 has two physical boxes (NYDC1 and EX2K10MB1) and three child virtual machines (NYDC2, EX2K10PRIME, and EX2K10MB2) residing on a single Hyper-V parent system. Site 2, on the other hand is made up of three servers (CHIDC1, EX2K10CHPRIME, and EX2K10MB), all running on one Hyper-V server and hence is a purely virtualized system. There are also two physical boxes in the perimeter, EDGE and EDGE1. Figure 2: Site 1 is assumed to be in New York, while Site 2 is in Chicago. Notice that in Site 1 there is one more server for each server role; two servers for each role, to be more exact. This is done to provide the needed... --- ### Exchange Server 2010: Data Protection Manager Setup > Learn how to install and setup Microsoft Data Protection and learn about all of DPM's features and capabilities. - Published: 2011-09-14 - Modified: 2024-09-04 - URL: https://petri.com/data-protection-manager-setup/ - Categories: Exchange 2010 - Tags: Editor's Pick - Article Type: How To It happens rarely but systems do fail. A robust and reliable backup solution is paramount to ensuring the safety of valuable and irreplaceable data. Microsoft's Data Protection Manager is one option that reliably backs up Exchange servers as well as a whole list of other services. The following article describes DPM's capabilities as well as describes how to set the service up. Overview Looking to learn how to set up Microsoft’s Data Protection Manager? You’ve come to the right place. But before we show you how to set up DPM, we’d like to briefly go over the underlying concepts and terms associated with DPM to make sure we’re starting off on the same foot. Let’s begin. DPM Replicas and Synchronization and How They Provide Continuous Data Protection There are a number of backup solutions that can handle your Microsoft Exchange data. But if you need a product that’s specifically designed for Exchange 2010 - especially if you’re running a DAG (Database Availability Group) - then Data Protection Manager (DPM) is one of the highly recommended options. DPM can already provide continuous data protection for Exchange, which is much better than what traditional backup tools can offer. Traditional backup tools can restore data only up to the point when the last backup was made. With DPM, a protection group member (more about protection groups below) can be fully recovered from just about any recovery point, which is characteristic of continuous data protection. Much of this capability relies on DPM’s block level replication and synchronization feature. DPM block level replication and synchronization starts with the creation of an initial replica similar to what you have after a full backup. Then each time a block undergoes a change, that block is synchronized with the replica. Essentially, DPM can achieve the same outcome as a traditional full backup each... --- ### Default Keys for Windows Server 2008 R2 and Windows 7 Deployment > In need of a list of installation keys for Windows Server 2008 and Windows Server 7? Windows references this list of available keys so you don't have to enter a key - Published: 2011-09-07 - Modified: 2024-09-04 - URL: https://petri.com/windows-server-2008-windows-7-product-keys/ - Categories: Windows Server 2008 - Article Type: Overview One of the more tedious tasks of a Windows install is entering the product key. This is compounded when you have to set up dozens of computers at a time. Fortunately, in Windows 7 and Windows Server 2008, you no longer have to enter the product key to install the OS. Instead, Windows uses a list of valid install keys. The following article displays this list and shows you where to find it. Overview In Windows Server 2008, Windows Vista, Windows 7 and Windows Server 2008 R2 - you can perform a full OS installation without having to manually enter a product key like you had to in previous Microsoft operating systems. This feature makes the installation much easier, and while Windows Server 2008 RTM and Windows Vista were "polite" about asking for the key (and you could simply ignore this polite request and promise to enter it after setup), in Windows Server 2008 R2 and Windows 7 you no longer need to have the key handy during the installation process. Where are the keys located So where does the installation process grab the keys from? How does it know what key to enter? The answer is simple. It has knowledge of all the keys that can be used, and it takes that information from a simple textual answer file that is used, by default, during the installation process. You can locate the file, called PRODUCTS. INI, in the installation DVD, in the SOURCES folder. This is how it looks like in Windows 7: If you open the file, you'll get the following list of product keys: HomeBasicN=MD83G-H98CG-DXPYQ-Q8GCR-HM8X2 ServerHomeStandard=BTMWJ-8KHD9-B9BX8-J7JQ9-7M6J2 ServerForSBSolutions=PHYFD-HQ4XW-78PR4-2CXKF-V67KJ ServerSolutionsPremium=4TMY4-8JG4B-VKY8X-6TVDH-J7XFV ProfessionalE=3YHKG-DVQ27-RYRBX-JMPVM-WG38T UltimateE=TWMF7-M387V-XKW4Y-PVQQD-RK7C8 Professional=HYF8J-CVRMY-CM74G-RPHKF-PW487 ServerWinSBV=WQG3Q-VWT72-VX39Q-VRTRD-2RF7K Starter=7Q28W-FT9PC-CMMYT-WHMY2-89M6G UltimateN=HTJK6-DXX8T-TVCR6-KDG67-97J8Q ServerSolution=VVWPG-XFYWQ-4HBR7-DYGCW-TF7XW ServerSBSPremiumCore=BXQQP-Q6Q6D-TR7TR-3YXQW-VFHKM Embedded=743Q4-G676P-84RX9-B8HRR-6V73F ServerHomePremium=YQXDR-G2MBV-63VW2-JX8J2-FVTVG ServerEssentialAdditional=MDWJ7-3XKWR-P7M89-YXFWX-B3DWD ServerMediumBusinessManagement=FD499-FD79G-V9D2W-F9WQ6-MD2VC ServerEssentialManagement=D93YD-6Q3KV-FQFG2-P6D23-PKR8T HomeBasicE=VTKM9-74GQY-K3W94-47DHV-FTXJY StarterE=BRQCV-K7HGQ-CKXP6-2XP7K-F233B ServerSolutionsPremiumCore=4TMY4-8JG4B-VKY8X-6TVDH-J7XFV ServerForSBSolutionsEM=JR4Y2-WC84X-PBRDJ-QTBTB-TQGGH ServerEnterpriseIA64=7YKJ4-CX8QP-Q23QY-7BYQM-H2893 Enterprise=H7X92-3VPBB-Q799D-Y6JJ3-86WC6 Ultimate=D4F6K-QK3RD-TMVMJ-BBMRX-3MBMV ServerHPC=Q7PRR-M2WBM-RJJ99-FG393-MGY3B HomePremiumE=76BRM-9Q4K3-QDJ48-FH4F3-9WT2R ServerHyperCore=Q8R8C-T2W6H-7MGPB-4CQ9R-KR36H ServerEmbeddedSolution=M2KD2-F2333-Q3TJ8-BQMHX-9PWX6 ServerWinFoundation=36RXV-4Y4PJ-B7DWH-XY4VW-KQXDQ ServerStandard=HMG6P-C7VGP-47GJ9-TWBD4-2YYCD ServerSBSStandard=YT76W-VD3W9-QDCK4-9QFPX-WQY4J HomeBasic=YGFVB-QTFXQ-3H233-PTWTJ-YRYRV ServerEssentialAdditionalSvc=VKP7D-84WCR-YHGQP-TXT76-6283H HomePremium=RHPQ2-RMFJH-74XYM-BH4JX-XM76F HomePremiumN=D3PVQ-V7M4J-9Q9K3-GG4K3-F99JM ServerDatacenterCore=7X29B-RDCR7-J6R29-K27FF-H9CR9 ServerWeb=YGTGP-9XH8D-8BVGY-BVK4V-3CPRF ServerMediumBusinessSecurity=YQ3V7-79DM4-42PVW-BYRH8-69VXK ServerSBSPremium=BXQQP-Q6Q6D-TR7TR-3YXQW-VFHKM ServerWebCore=YGTGP-9XH8D-8BVGY-BVK4V-3CPRF ServerEmbeddedSolutionCore=M2KD2-F2333-Q3TJ8-BQMHX-9PWX6 ServerEnterprise=7P8GH-FV2FF-8FDCR-YK49D-D7P97 ProfessionalN=BKFRB-RTCT3-9HW44-FX3X8-M48M6 ServerMediumBusinessMessaging=YVYC7-KVQ8G-XF6K4-9MG8M-QXFC2 ServerSolutionEM=WF9T8-VT7D2-GD629-WTKGH-3WBJT ServerEnterpriseCore=7P8GH-FV2FF-8FDCR-YK49D-D7P97 ServerEssentialManagementSvc=YJXJC-Q227R-YBMG7-7VF8K-H24QY StarterN=D4C3G-38HGY-HGQCV-QCWR8-97FFR ServerDatacenter=7X29B-RDCR7-J6R29-K27FF-H9CR9 EnterpriseE=H3V6Q-JKQJG-GKVK3-FDDRF-TCKVR ServerWinSB=RBY6X-FDBHT-P86CY-MVFV8-4W43X... --- ### An Overview of Cisco Communications Manager Express > This overview of Cisco Communications Manager Express demonstrates Cisco CME's wide range of features as an affordable and easily implemented voice solution. - Published: 2011-09-02 - Modified: 2024-12-03 - URL: https://petri.com/communications-manager-express-overview/ - Categories: Cisco - Article Type: Opinion As high-performance networking switching equipment continues to drop in price, these systems are being implemented more frequently. This article gives a broad overview of one of these systems: Cisco Unified Communications Manager Express (CME). Like many of these systems, CME can be implemented over existing networks in several fashions. Overview With the cost of high-performance networking switching equipment coming down, the implementation of alternative voice solutions has become common. There are a number of different voice solutions that utilize the existing network to provide not only a data connection but also provide a voice connection. One of these solutions that are available is Cisco Unified Communications Manager Express (CME). Cisco Unified CME provides a solution that can fill a number of different voice requirements within a small business or branch location. As well as working in these smaller environments, the Unified CME solution can also be integrated into a larger Cisco Unified Communications Manager (CUCM) solution. This article provides a high-level overview of some of the most commonly used abilities of the Unified Communications Manager Express solution.   After this overview, hopefully you will know whether or not you are in a position to install Communications Manager Express. Unified Communications Manager Express Solution As stated in the overview, the Unified CME solution can provide not only a simple voice solution that utilizes the existing data network infrastructure, but also can provide a feature rich voice solution with support for many common business voice features. The Unified Communications Manager Express solution includes support for many features including: Call Hunt Call Pickup Call Waiting Hunt Group Call Park Caller ID Blocking Conferencing Music on Hold Paging An example of how the Unified CME solution in a small office can be deployed is shown in Figure 1. Figure 1... --- ### How to Configure Database Availability Group for Exchange Server 2010 > This article explains how to configure Database Availability Group (DAG) in Exchange 2010 to ensure High Availability. - Published: 2011-09-01 - Modified: 2024-09-04 - URL: https://petri.com/configure-database-availability-groups-exchange-2010/ - Categories: Exchange 2010 - Tags: Editor's Pick - Article Type: How To J. Peter Bruzzese explains how to ensure High Availability in Exchange 2010 using Database Availability Groups. By properly configuring this component of Exchange 2010, you can ensure your company's email system is always working efficiently and reliably. Overview Because your end users rely so much on email not only for their day-to-day communications but also ultimately for your company’s daily operations, you need to make sure the services for Exchange are accessible and available practically all the time. In other words, they should exhibit High Availability. In this article, we’ll talk about how Exchange 2010 offers High Availability, which is basically through Database Availability Groups. We’ll then come up with a sample scenario and then show you how to configure Database Availability Groups using that scenario. In the video lesson below you will learn about a real world scenario that will help you configure Exchange Server 2010 Database Availability Groups. If you’re already familiar with the concepts of Database Availability Groups and simply want to know how to configure them, just scroll down directly to the section A sample scenario. High Availability in Exchange 2010 First of all, High Availability (HA) does not just mean that an Exchange server should be up. Rather, that server must also be available to serve. Simply put, users should be able to do all the things they expect to do through an Exchange service, e. g. , send and receive emails, all the time. Exchange 2010 provides HA using a feature known as Continuous Replication. In Continuous Replication, the database is copied first and then the log files are shipped and replayed constantly to ensure that the database stays up to date. Figure 1: Shows System 1 and System 2 Database Availability Group... --- ### Install Replmon to Work on Windows Server 2008 R2 > Install Replmon on Windows Server 2008. Replmon is not installed by default on Windows Server 2008. Learn how to set up Replmon which adds a useful GUI - Published: 2011-08-29 - Modified: 2024-12-03 - URL: https://petri.com/install-replmon-on-windows-server-2008/ - Categories: Active Directory (AD) - Article Type: How To A lot of the effort that goes into administering an Active Directory can be minimized by using Replmon. This tool provides a very useful GUI to accomplish several key tasks for AD administrators. Unfortunately, it does not come installed on Windows Server 2008, though it can be. This article will walk you through the process of setting up Replmon on Windows Server 2008. Replmon Overview The Replmon utility was introduced with the Windows Server 2000 and Windows Server 2003 Support Tools many years ago as a GUI mechanism for performing certain Active Directory and Domain Controller admin tasks. Unlike AD Sites and Services snap-in (dssites. msc), Replmon exposed more information and had a deeper view into the AD partitioning structure. Replmon gave an administrator the ability to quickly force replication, get basic status reports, and see information about the environmental configuration. Replmon Overview: Active Directory http://technet. microsoft. com/en-us/library/cc772954(WS. 10). aspx Download Details - Microsoft Download Center - Windows Server 2003 Service Pack 2 32-bit Support Tools http://www. microsoft. com/download/en/details. aspx? displaylang=en&id=15326 By the way, although it may seem like a late tip, if you ever get your hands on a Windows Server 2003 machine (DC or member server), make sure you install Support Tools on it if they're not yet installed. These tools will make your life as administrator a lot easier. You can use ReplMon to do the following: See when a replication partner fails. View the history of successful and failed replication changes for troubleshooting purposes. View the properties of directory replication partners. Create your own applications or scripts written in Microsoft Visual Basic Scripting Edition (VBScript) to extract specific data from Active Directory. View a snapshot of the performance counters on the computer, and the registry configuration of the server. Generate status reports that include direct and transitive replication partners, and detail a record of changes. Find all direct and transitive replication... --- ### Improve VoIP Quality with Link Fragmentation and Interleaving > How to configure Link Fragmentation and Interleaving which can improve VoIP quality by preventing packet delay across network. - Published: 2011-08-26 - Modified: 2011-08-26 - URL: https://petri.com/configure-link-fragmentation-and-interleaving-for-improved-voip/ - Categories: Cisco - Article Type: How To Sean Wilkins discusses configuration of Link Fragmentation and Interleaving (LFI). Although LFI is rather easy to implement, the benefits can be significant by preventing delays of large high-priority packets across the network, therefore increasing VoIP quality. There are a number of different mechanisms that can be used to increase the likelihood that high priority Voice over IP (VoIP) traffic is not delayed across a network path. One of these features is link fragmentation and interleaving (LFI); this feature is used on low speed links (< 768kbps) to help high priority traffic obtain link access when other parallel large packet traffic is also being sent. This article provides a brief description of these features and their configuration. Link Fragmentation and Interleaving When transmitting voice over a packet network, traffic must be transmitted across the network within a specific amount of time in order to ensure that the conversation is high quality. One of the things that can introduce large amounts of delay along this path is combining high priority VoIP traffic, low priority large datagram traffic and a slow speed link. When transmitting large datagram packet traffic along a slow speed link, the amount of time it takes to transmit the packet across the link can be quite long. The problem that occurs is what happens to a high priority packet if it needs to be transmitted across the link at the same time the link is committed to transmitting this large packet. Without LFI, the high priority packet will wait behind this large packet until it is sent completely; this will typically introduce a high amount of delay making the packet unusable for an active VoIP conversation. The LFI feature can be used... --- ### The Great Big Hyper-V Survey of 2011 > Why did you choose Hyper-V? How do you use Hyper-V? These are the questions Hyper-V MVPs are trying to find answers to in the Great Big Hyper-V Survey of 2011. - Published: 2011-08-19 - Modified: 2011-08-19 - URL: https://petri.com/why-hyper-v/ - Categories: Hyper-V - Tags: Hyper-V - Article Type: Overview Why did you choose Hyper-V? How do you use it? These are the questions Hyper-V MVPs are trying to get at in their Great Big Hyper-V Survey of 2011. The survey's goals are to learn how you use virtualization and to share this knowledge with everyone. So take 5 minutes of your time and fill out the survey to help the community. It's time to give a little of your knowledge back to the community, so read on: Two well-known Hyper-V MVPs -- Aida Finn and Damian Flynn -- have teamed up with Failover Clustering MVP Hans Vredevoort to bring you the "Great Big Hyper-V Survey of 2011". The survey's goals are: To learn more about what everyone is up to in regards to virtualization, virtualization software, and management solutions To share the findings with everyone so you can learn what everyone else is up to The survey contains 80 multiple choice questions that are easily formatted and already filled in. The survey will run until September 5th, 2011, and the authors promise to publish the results later that week, which just so happens to be the week before the Build Windows conference. Why is this important? Well, for starters, the Build conference will show developers what to expect with the Microsoft's new OS - Windows 8 - and how to develop apps for it. The Windows 8 Build conference is also being held simultaneously around the world. Among the countries where Microsoft’s Developer and Platform Evangelism (DPE) team is expected to hold (at least) one-day events are France, Spain, Sweden, Italy, Poland, Portugal, Ireland, Denmark, Belgium, Greece and the Netherlands; Dubai also seems to be hosting a Build event. According to Microsoft, developers should go to the conference in order to: “Hear how the (Windows) UI was designed to work seamlessly with a diversity... --- ### Power Consumption Graphing and Control in vSphere 4.1 > The power management feature in VMware vSphere 4.1 can help you save money and reduce energy consumption by setting the right controls in vSphere Client. - Published: 2011-08-17 - Modified: 2024-09-04 - URL: https://petri.com/vmware-power-management/ - Categories: VMware - Tags: vmware, vSphere - Article Type: Overview The Power Management feature in vSphere 4.1 allows you to choose between five power management policies, helping you reduce energy consumption and increase savings. See how easy it is to configure hardware power management in vSphere and utilize graphing to monitor the CPU of your ESX and ESXi servers. The power management feature in vSphere 4. 1 enables companies to save money by allowing them to reduce their servers' energy consumption. This is done by setting controls in the vSphere Client to enforce a conservative hardware power management policy. Using a technique known as Dynamic Voltage and Frequency Scaling (DVFS), which basically lowers the frequency in the CPU to subsequently bring down CPU voltage - and hence power consumption - during times when demand is minimal, vSphere 4. 1 can reduce overall energy consumption without affecting virtual machine performance. Hardware Power Management Requirements For this power saving feature to work, your server must have the capability to support any of these power management technologies: Enhanced Intel SpeedStep or Enhanced AMD PowerNow! In addition, you may also have to enable this feature in your server's BIOS to allow vSphere to control the CPU frequency, a process sometimes known as Demand Based Switching. How to Configure Hardware Power Management in vSphere As mentioned earlier, the main setting of controls takes place in the vSphere Client. Once you're in there, select the server whose power management policy you'd like to configure, click the Configuration tab, then click the link named Power Management found under the Hardware section (not the Power Management link under the Software section). Notice that it shows the power management technology currently being used. In my case for example, it's Enhanced Intel SpeedStep. If your server does not support any of the technologies mentioned earlier, then it will state this accordingly... . --- ### Upgrading to vSphere 4.1 Overview > Get an overview of the VMware vSphere 4.1 upgrade process. Learn about vCenter Agent Pre-Upgrade Check Tool, vCenter Server Data Migration Tool and more. - Published: 2011-08-17 - Modified: 2024-09-04 - URL: https://petri.com/vsphere-4-1-upgrade/ - Categories: VMware - Tags: vmware, vSphere - Article Type: Overview What does a typical vSphere upgrade entail? What do you need to know before upgrading your vSphere to version 4.1? In this overview you'll learn about preventing downtimes, performing backups, and using the vCenter Agent Pre-Upgrade Check Tool to get ready for upgrading to vSphere 4.1 What you'll find in this article is an overview of a typical vSphere 4. 1 upgrade. We'll give you a birds-eye-view of all the relevant information such as the vSphere Upgrade Guide, the Pre-Upgrade Check Tool, prerequisites that you need to prepare for, as well as the things you need to consider before proceeding with the main upgrade process. vSphere 4. 1 Upgrade Guide The vSphere Upgrade Guide for version 4. 1 is a 94-page PDF that contains practically everything you need to know to perform a vSphere 4. 1 upgrade. If you have questions regarding your setup that aren't tackled in this article, then this guide is where you'll likely find the answers. Download the vSphere Upgrade Guide from the VMware website. vSphere 4. 1 Upgrade Considerations Here's what you need to take into consideration when upgrading to vSphere 4. 1. Downtimes Some of your end users might be affected during the vSphere upgrade. You should therefore figure out ways to reduce or perhaps even eliminate possible downtime. If you have two ESX servers, for example, then you can employ VMotion and shared storage, which will enable you to move running virtual machines from one server to another without disturbing your end users. Basically, you can move running virtual machines to, say, ESX server 1 and perform the upgrade on ESX server 2. When you're done, you can then move the virtual machines unto ESX server 2 and then perform the upgrade on ESX server 1. Backups If vCenter is running as a VM, then... --- ### Troubleshooting "Access Denied" Error Messages When Accessing Administrative Shares in Windows 7 > Solve the "Access Denied" issue in Windows 7 when accessing administrative shares on Windows 7 computers that are members of a workgroup. - Published: 2011-08-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-access-denied/ - Categories: Windows 7 - Tags: Windows 7 - Article Type: Overview The "Access Denied" error message is a common issue when accessing administrative shares on one Windows 7 PC from another, especially when they are members of a workgroup. In this article we'll show you how to troubleshoot and fix this issue by doing a quick registry edit. Introduction I recently ran into an "Access Denied" error message when I was trying to access administrative shares on a Windows 7-based computer from another Windows 7-based computer that was a member of a workgroup. This issue usually occurs when you attempt to use one computer running either version of Windows Vista, Windows 7, Windows Server 2008 or Windows Server 2008 R2 to access a remote administrative share (C$, D$ etc. ) that resides on another Windows Vista, Windows 7, Windows Server 2008 or Windows Server 2008 R2 machine, and both machines are part of a workgroup (and not an Active Directory domain! ). When attempting to use Windows Explorer (or the Run command) you receive the following error message: Logon unsuccessful: Windows is unable to log you on. Make sure that your user name and password are correct. If you try to map a network drive to the administrative share by using the Net Use command, you get the following error message after providing the correct credentials: System error 5 has occurred. Access is denied. For example (remote computer name is ZEUS): Troubleshooting Checklist Stuff you need to check before proceeding: We're talking about any combination of Windows Vista, Windows 7, Windows Server 2008 and/or Windows Server 2008 R2. Both computers are members of a workgroup. The workgroup's name is "Workgroup". From one of the computers, you try to access an administrative share that is located on the other computer... . --- ### Installing Windows Server Backup on Windows Server 2008 R2 > Install Windows Server Backup on Windows Server 2008 R2 using Server Manager, Servermanagercmd.exe and PowerShell. - Published: 2011-08-03 - Modified: 2024-11-19 - URL: https://petri.com/windows-server-2008-r2-backup/ - Categories: Windows Server 2008 - Article Type: How To Windows Server Backup is built-in to Windows Server 2008 R2 and allows you to back up a full server, a selected list of volumes, the system state, or specific files or folders. Learn how to install the Windows Server Backup feature using three different installation methods: the server manager, the command prompt and PowerShell. Windows Server Backup is a built-in component of Windows Server 2008 R2 that consists of a Microsoft Management Console (MMC) snap-in, command-line tools, and Windows PowerShell cmdlets. Windows Server Backup, like its predecessor - Ntbackup (on Windows Server 2000/2003), provides a complete solution for your day-to-day backup and recovery needs. When compared to Windows Server 2008 RTM, in Windows Server 2008 R2 there are new features that expand what you can back up, where you can store backups, and how you can perform recoveries. Note: One thing to keep in mind is that you cannot recover backups with Windows Server Backup that were created in earlier versions of Windows with Ntbackup. However, a read-only version of Ntbackup is freely available if you want to recover data from backups created using Ntbackup, and can be installed to recover files on Windows Server 2008 R2 and Windows 7: Download Details - Microsoft Download Center - Windows NT Backup - Restore Utility http://www. microsoft. com/download/en/details. aspx? DisplayLang=en&id=4220 What You Can Backup with Windows Server Backup You can use Windows Server Backup to back up a full server (all volumes), a selected list of volumes, the system state, or specific files or folders—and to create a backup that you can use for bare metal recovery. Note: In Windows Server 2008 RTM, you were very limited in what you could choose to backup, with the only choices being volumes or the entire server. Luckily, this was changed in R2. After performing a... --- ### Traffic Policing and Shaping Configuration > Guide to Traffic Policing and Shaping Configuration which uses the Modular Quality of Service (QoS) Command line interface (MQC). - Published: 2011-07-25 - Modified: 2024-11-19 - URL: https://petri.com/traffic-shaping-and-policing/ - Categories: Networking - Article Type: Overview In a continuation of his Traffic Policing and Shaping Overview, Sean Wilkins gets into the details of Traffic Policing and Shaping Configuration. Both features are implemented using the Modular Quality of Service (QoS) Command line interface (MQC) which is used to classify traffic, define a traffic policy, and assign it to a specific interface. This article focuses on the the configuration of the two different traffic shaping and traffic policing mechanisms. A general understanding how the token bucket is implemented by these two features is necessary before getting into the details of traffic policing and shaping setup. For an introduction to these concepts, check out the Traffic Policing and Shaping Overview article. For traffic policing, the Traffic policing feature is covered and is implemented using the Modular Quality of Service (QoS) Command line interface (MQC), and is based on traffic class. For traffic shaping, the Class-based traffic shaping feature is covered and is also implemented using the MQC. Traffic Policing and Shaping Configuration Both the Traffic policing and Class-based traffic shaping features are implemented using the MQC. The MQC is used to classify traffic by defining a traffic class, set traffic policy by defining a traffic policy (where policing and shaping is implemented) and is assigned to a specific interface. Setting Up Traffic Classification The first step involves traffic classification setup; traffic that is matched to a specific class can have a number of different actions taken against it. For the purposes of this article, the action to be taken will be to police or shape the matched traffic. There are a number of different ways to match the specific traffic, however since this is outside the scope of this article, a link to the available commands can be found here: http://www. cisco. com/en/US/docs/ios/qos/configuration/guide/classification_oview_ ps10592_TSD_Products_Configuration_Guide_Chapter. html Setting Up a Traffic... --- ### Moving Mailboxes to Exchange 2010 and the BadItemLimit > Step-by-step instructions for using the Exchange Management Shell (EMS) to override the BadItemLimit when moving large mailboxes. - Published: 2011-07-18 - Modified: 2024-09-04 - URL: https://petri.com/baditemlimit-override-exchange-2010/ - Categories: Exchange Server - Tags: AcceptLargeDataLoss, BadItemLimit, Exchange 2010, Exchange Server, New-MoveRequest, Single Instance Storage - Article Type: Overview Exchange 2010 has made the process of upgrading much easier, and now includes a simple wizard to assist with moving mailboxes to your new server. SBS and Exchange expert Tom Finnis provides a guide for moving mailboxes to Exchange 2010, including step-by-step instructions for using the Exchange Management Shell (EMS) to override the BadItemLimit when moving large mailboxes. Overview Whether you are upgrading to Exchange 2010 as part of an SBS2011 project or as a standalone server, one of the major tasks you will need to perform is moving your users' mailboxes. Those readers who can remember upgrading to Exchange 2003 or previous versions may well be concerned already, but in fact Exchange 2010 makes the process very easy. Move mailboxes with one click (below) However, there is one thing which may catch you out if you have mailboxes with a large number of corrupted items in them - the BadItemLimit. We'll cover options for managing this issue later on in the article. Moving a Mailbox to Exchange 2010 We'll assume you have followed the Microsoft Exchange 2010 upgrade guide successfully up to the point where you are ready to move your mailboxes to your new server. In fact the procedure is well documented and is simple, so we'll only cover it briefly here, and then move on to what happens when there is a problem. Open your Exchange Management Console (the EMC) and expand your way down to the Mailbox container under "Recipient Configuration" - you should see all your mailboxes listed. At the moment virtually all of them will be "Legacy Mailbox", indicating that they are hosted on a pre-2010 server; once moved they will become "User Mailbox". Select a mailbox to migrate and then in the right-hand "Actions" pane click on "New Local Move Request" to start the wizard. Note that... --- ### Log Blind Spots - A Review of Cases Where System Logs are Insufficient > Utilizing activity monitoring to avoid blind spots in your audit reports which can occur when relying solely on system logs. - Published: 2011-07-08 - Modified: 2024-09-04 - URL: https://petri.com/user-activity-monitoring-and-system-audits/ - Categories: Backup & Storage - Article Type: Overview In this article, Daniel Petri addresses the case for user activity monitoring instead of relying only on system logs, which leave blind spots in your audit reports. Several scenarios are detailed to demonstrate how user activity monitoring can be used to augment the existing system and database logs. If you spend a few minutes browsing the websites of Log Management and SIEM tool vendors, you might come away with the conclusion that all your system audit and compliance problems are solved. Unfortunately, this rosy picture seems to ignore the ever-present problem of blind spots in audit reports: If your apps don’t log it, your audit report won’t show it. Audit report tools may do a good job at interpreting and presenting log info, but we can no longer overlook two key facts: 1. Hundreds of critical security event types are not logged at all 2. Those events that are logged typically do not show what was done. Instead, the logs only show obscure technical details of the resulting system changes. In this whitepaper, I’ll highlight a number of examples where these blind spots occur. In so doing, I’ll show a number of very common and basic system activities that one might think should generate auditable log entries, but in actuality they do not. These examples include: Adding and Deleting IP Address Setting a Service to run as administrator Change Web server config file Change port usage for an active service   One possible way to eliminate blind spots is to implement custom log utilities, security platforms or WMI-based tools.  But to do this, the burden remains on you to know what you are looking for.   For the examples listed above, adding an IP Address change monitor won’t help with web config file changes, and... --- ### Traffic Policing and Shaping Overview > Overview of traffic policing and traffic shaping configuration when implementing Quality of Service (QoS) on a network. - Published: 2011-07-01 - Modified: 2011-07-01 - URL: https://petri.com/traffic-policing-and-shaping/ - Categories: Networking - Article Type: Overview Overview by Sean Wilkins of traffic policing and traffic shaping configuration when implementing Quality of Service (QoS) on a network. Included are the main differences between traffic policing and shaping. Also explained is the token bucket mechanism. When implementing Quality of Service (QoS) on a network, one of the main features to consider is the ability to regulate traffic flow. There are two methods that can be implemented independently or together to achieve this. These methods include traffic policing and traffic shaping. For in-depth configuration information, see subsequent article on Traffic Policing and Shaping Configuration. Traffic Policing and Shaping Following are the main differences between traffic policing and traffic shaping. Generally speaking, traffic policing takes a harder view of traffic that violates the configured allowable amount of traffic; what this means is that traffic that exceeds a traffic policing limit is typically dropped. Traffic shaping, on the other hand, takes the softer approach by attempting to “smooth” out traffic that violates the configured limit by buffering it and attempting to send it when available bandwidth exists. Both traffic policing and shaping are implemented using a token bucket mechanism. It is important to have a general idea of how the token bucket mechanism works in order to understand how traffic decisions are made by these two features. A token bucket has three components: a mean rate, a burst size, and a time interval (Tc). The mean rate (also referred to as the Committed Information Rate (CIR)) specifies how much data that can be transmitted per unit of time on average and is typically represented in bits per second. The burst size (also referred to as Bc) is used to specify the... --- ### Xperf Rocks Part 2: Analyzing Storage Performance Data & Generating Graphs > Overview of Xperf, part of the Microsoft Windows Performance Toolkit. Part 2 focuses on analyzing storage performance data & generating graphs. - Published: 2011-06-21 - Modified: 2024-09-04 - URL: https://petri.com/xperf-analyzing-storage-performance/ - Categories: Backup & Storage - Article Type: How To Bruce Mackenzie-Low covers Xperf, one of Microsoft’s hottest diagnostic tools. This article continues where "Xperf Rocks Part 1: Troubleshooting Storage Performance Problems" left off. Part 2 focuses on how to use Xperf to analyze event data and generate graphs & tables. Powerful graph options are explained, which allow you to quickly pinpoint storage bottlenecks, along with the detailed data in a tabular format. Xperf is one of Microsoft’s hottest diagnostic tools. It collects event trace information from components of the operating system and then displays the data in a graphical format. Powerful graph options allow you to quickly pinpoint any storage bottlenecks, along with the detailed data in a tabular format. This article continues where Xperf Rocks Part 1: Troubleshooting Storage Performance Problems left off. It discusses how to use Xperf to analyze event data and generate graphs and tables. Xperf Viewer In the previous Xperf article (part 1), we learned how Xperf is installed and used to collect event trace logs (ETLs). These trace logs contain data that characterizes the problem. The ETL data can be analyzed on the problem system or it can be copied to another workstation where WPT is installed. The following Xperf command will analyze the data and then use Xperfview. exe to generate graphs and tables: Xperf tracedata. etl As the Xperf tool parses the ETL log file, it performs 2 passes at analyzing the data. Once the data is analyzed, Xperf displays a viewer that you can use to study the various graphs. Of particular concern for a storage bottleneck, you would want to focus on the Disk Utilization and the Disk Utilization by Process graphs. In figure 1 below, you can see the Disk I/O graph displays the various I/O counts for read and write operations. Xperf also shows an expandable frame on the left-hand side allowing you to quickly... --- ### Interview with Don Jones at Windows Connections 2011 > TrainSignal recently had the opportunity to sit down with Don Jones at Windows Connections 2011 to discuss the importance of learning PowerShell. - Published: 2011-06-10 - Modified: 2011-06-10 - URL: https://petri.com/learn-powershell-don-jones-interview/ - Categories: PowerShell - Article Type: Interview TrainSignal recently had the opportunity to sit down with Don Jones at Windows Connections 2011 in Orlando to discuss the importance of learning PowerShell. The overriding message of the interview is that if you plan to learn one thing in 2011, it should be PowerShell. Video and transcript included. Kasia Lorenc from TrainSignal recently had the opportunity to sit down with Don Jones at Windows Connections 2011 in Orlando to discuss the importance of learning PowerShell. Don is a multiple-year recipient of Microsoft’s MVP Award and is a top-rated speaker at technology conferences worldwide, including TechEd, Windows Connections and TechMentor. Don is the author of more than 35 books and is regularly featured in top IT publications such as TechNet Magazine and Redmond Magazine, as well as websites including TechTarget and MCPMag. com. The overriding message of the interview is that if you plan to learn one thing in 2011, it should be PowerShell. Don has recently completed his PowerShell book called Learn Windows PowerShell in a Month of Lunches, which is designed for the absolute PowerShell beginner. It's also one of the only PowerShell books which does not assume you want to become a programmer. Don Jones: I have done sessions on Windows PowerShell. So kind of one that's a crash course like a "deploy the airbags crash" course. A lot of info, a very, very short period of time. Just finished one on PowerShell remoting, which I think is probably the biggest, coolest feature in PowerShell. The next one is going to be a little bit more advanced. I'm going to do some error handling, some debugging in Windows PowerShell, building little commandlets in PowerShell. Then to wrap it all up I'm actually going to cross over to the SharePoint connections conference and do an introductory session on... --- ### How Do You Track IP Addresses? > A guide for tracking IP addresses on a network. Includes suggested tools to prevent outages related to duplicate IP addresses. - Published: 2011-06-06 - Modified: 2024-09-04 - URL: https://petri.com/track-ip-addresses-reference-guide/ - Categories: Networking - Article Type: How To In this article, David Davis covers issues related to keeping track of IP addresses on lab and production networks. Included are suggested tools which can help prevent outages caused by duplicate IP addresses. Introduction Keeping track of IP addresses on a network is always a challenge. Having duplicate IP addresses in use can, potentially, cause large scale outages. Having multiple admins and different types of admins (Windows vs Network admins) can cause confusion. All of these problems can be prevented by strictly following manual procedures but in dynamic environments this doesn't usually happen. What is an admin to do? Why not use DHCP? Most Windows Admins use DHCP (Dynamic Host Configuration Protocol) on their network to provide and track IP addresses. Using DHCP prevents most of the problems that can occur when you have duplicate IPs, as it checks to see if an IP address is already in use before offering it to a client needing an IP. It also keeps track of IPs that have been already handed out and to whom. While DHCP is used for end user client devices (and works well), there are always infrastructure devices like routers, switches, printers, and lots of servers that need static IP addresses. You can, of course, do reservations with DHCP and map a MAC address to an IP. However, my guess is that the majority of admins don't use this for all devices as it can be a pain to obtain the Ethernet MAC address of the device and map it. Why not set aside a range of IP addresses for static assignment? Instead of static reservations (or in combination with them), many admins set... --- ### AutoQoS Configuration > Overview of AutoQoS VoIP and AutoQoS for the Enterprise features, which allow for automatic quality of service (QoS) configuration on your network. - Published: 2011-05-27 - Modified: 2011-05-27 - URL: https://petri.com/autoqos-voip-and-enterprise/ - Categories: Cisco - Article Type: Overview Sean Wilkins covers AutoQoS VoIP and AutoQoS for the Enterprise, which allow for automatic quality of service (QoS) configuration on your network. While AutoQoS VoIP requires very little configuration in order to implement, AutoQoS for the Enterprise is split into two separate configuration phases: a discovery phase, and a generation & installation phase. This article covers configuration of AutoQoS VoIP and AutoQoS for the Enterprise. One of the common problems that can arise when designing a network is ensuring that the traffic that is being transported is able to get the appropriate amount of attention and priority when it needs it. For example, if implementing Voice over IP (VoIP) on a network, it is important that this traffic get priority over other types of lower priority traffic. This traffic has to meet a number of traffic requirements in order for the service to work correctly, i. e. , the voice is transported without much delay or loss. The way to ensure that this happens is to implement some type (or types) of Quality of Service (QoS). The problem however, that arises many times in smaller companies is that the experience required for good QoS configurations is hard to find. In order to fill this gap, the AutoQoS feature has been developed. When used, the AutoQoS feature is able to automatically configure a device with appropriate QoS commands to ensure correct traffic priority over the network. There are actually two different AutoQoS feature options, the first is specific to VoIP traffic and requires little configuration in order to implement. The second feature option takes a more detailed approach and is split into two separate configuration phases: a discovery phase and a generation and installation phase. AutoQoS – VoIP As is obvious from its name, the AutoQoS – VoIP feature... --- ### Xperf Rocks Part 1: Troubleshooting Storage Performance Problems > Overview of Xperf, part of the Microsoft Windows Performance Toolkit, used for troubleshooting Windows storage performance issues. - Published: 2011-05-25 - Modified: 2024-12-03 - URL: https://petri.com/xperf-windows-storage-performance/ - Categories: Backup & Storage - Article Type: How To There is one crown jewel from Microsoft’s toolbox treasure trove that has not received much attention. Xperf, which is part of the Microsoft Windows Performance Toolkit, allows you to dig deeper into performance issues than Perfmon and PAL ever dreamed. In this article, Bruce Mackenzie-Low provides an overview of Xperf for troubleshooting Windows storage performance issues. Xperf is part of the Microsoft Windows Performance Toolkit (WPT for short) which includes several other software development tools.   This article will introduce Xperf as a troubleshooting tool, covering the tool installation and data collection process.   It will focus on storage related troubleshooting, but can be leveraged for all aspects of performance issues. Troubleshooting Windows storage performance issues can be a very challenging endeavor.   You can get a cursory overview of the system performance by using the Task Manager, or a more in depth look by using Perfmon, as discussed in the Windows troubleshooting tools article, which covers a variety of free tools for troubleshooting Windows storage performance problems.   Or you can use PAL, the Performance Analysis of Logs tool, to automate the analysis of Perfmon logs (see Performance Analysis of Logs article) and the generation of PAL reports (see Performance Analysis of Logs Reports article). However, there is one crown jewel from Microsoft’s toolbox treasure trove that has not received much attention, a tool called Xperf.   This tool allows you to dig deeper into performance issues than Perfmon and PAL ever dreamed. Xperf Installation Xperf is a free download kit that is part of the Microsoft SDK (Software Development Kit).   It capitalizes on ETW (Event Tracing for Windows) which has been built into the operating system since Windows 2000.   In addition to storage related problems, Xperf can be used to troubleshoot other issues such as CPU bottlenecks, application responsiveness, slow boot times... --- ### Permissions and Role Based Access Control (RBAC) - Part II > Guide to RBAC (Role Based Access Control), a new permissions model in Exchange Server 2010. - Published: 2011-05-20 - Modified: 2024-09-04 - URL: https://petri.com/role-based-access-control-exchange-2010/ - Categories: Exchange Server - Article Type: Overview 2nd installment by J. Peter Bruzzese on RBAC (Role Based Access Control), a new permissions model in Exchange Server 2010. RBAC allows you to define both a broad, as well as a more granular assignment of permissions to administrators, ensuring that they are given the appropriate permissions based on the roles they perform within your organization. The 1st installment covered broad permission settings by employing Predefined Role Groups. Part 2 addresses more specific permission settings at the granular level. Overview In Part I, we talked about how you can configure broad permission settings in RBAC (Role Based Access Control) by employing Predefined Role Groups through the Exchange Control Panel’s graphical user interface. However, you will no doubt encounter situations wherein you will need to perform permission settings on a more granular level than what the Predefined Role Groups can support. This is where the Exchange Management Shell becomes more suitable. For instance, what if you want an admin to make transport rules but don’t want him to have anything to do with retention rules and message classifications? Obviously, assigning him to the Records Management role group - which, in addition to transport rules, also covers other compliance features like retention policies and message classifications - would not suffice because it would grant him more permissions than you want him to have. Note: You may see brief descriptions of the Predefined Role Groups in Part I of this article: Exchange 2010 RBAC: Role Based Access Control. Viewing RBAC Settings Through the Exchange Management Shell At this point, I’ll show you first how you can view, in the Exchange Management Shell, the same information that you see in the Exchange Control Panel. For example, while you can use the Exchange Control Panel (see screenshot immediately below) to view Assigned Roles belonging to the Recipient Management role group, you can likewise view that same information in the Exchange Management Shell by typing: Get-RoleGroup “Recipient Management” | fl. Here’s the result when you... --- ### Digital Voice Port Configuration > Digital voice port configuration on a VoIP network focusing on T1 & E1 voice port types. - Published: 2011-05-18 - Modified: 2024-12-03 - URL: https://petri.com/voip-digital-voice-port-configuration/ - Categories: Networking - Article Type: How To Digital voice port configuration on a VoIP network by Sean Wilkins, focusing on T1 and E1 voice port types. Covers emulation methods, codec complexity configuration and T1 & E1 controller configuration. This article focuses on digital voice port configuration in relation to VoIP implementation. There are a number of different components that need to be designed and configured when setting up a VoIP network, one of which is the voice port. The voice port is located at the intersection of the network between the packet based network and the traditional telephony network. In addition to physically connecting these two network types, a voice port is responsible for correctly translating voice calls and signaling. As the name suggests, digital voice ports transport the voice information between devices using digital methods. This article focuses on T1 and E1 voice port configuration. T1 and E1 Voice Port Types Some background information on the operations of both T1 and E1 circuits is required to fully understand the digital voice port configuration details in this article. Both T1 and E1 contain a number of 64-kbps channels (DS0) which are used for each path of voice. A T1 circuit has a total of 24 of these channels, and an E1 has a total of 30 (usable). When configuring a voice port, it is possible to separate the physical channels on a specific circuit and create several logical voice ports with different parameters. Digital voice ports operate by emulating analog voice port types (e. g. , FXS, FXO or E&M) on a channel by channel basis. For example, it is possible to configure the first 4 channels of a T1 to emulate FXS and the next... --- ### Top Storage Pitfalls to Avoid with Windows Failover Clusters > Configuring Windows failover clusters to ensure proper setup when choosing partition size, compatible and consistent storage drivers & storage controller settings. - Published: 2011-05-17 - Modified: 2024-09-04 - URL: https://petri.com/windows-failover-cluster-setup/ - Categories: Backup & Storage - Article Type: Overview What to consider when configuring Windows Failover Clusters, by Bruce Mackenzie-Low. With a little planning and the help of tools like the Cluster Validation Wizard for failover cluster setup, you can implement failover clusters with confidence, ensuring proper setup when choosing partition size, configuring compatible and consistent storage drivers and storage controller settings. Windows Failover Clusters can provide the highest level of availability for business critical applications such as SQL or Exchange. The fault tolerant design of clusters ensures there is no single point of failure including multiple servers, multiple network connections and multiple storage controllers.   The trade-off that you pay for this high availability is the additional layer of complexity involved with installing, configuring, and troubleshooting issues. Storage is one area of Windows Failover Clusters that can drastically affect the overall stability of the cluster.   Careful planning and design of the storage subsystem will ensure a smooth cluster installation, and will help with any future troubleshooting efforts.   This article will examine the various storage components that need to be considered when designing, installing and configuring failover clusters, and how to avoid the common pitfalls that affect stability. Choosing the Right Partition Size Perhaps one of the biggest decisions to make when installing a Windows Failover Cluster is the size of the storage partitions.   While this might seem like a simple decision, the consequences can directly affect the future availability of the cluster.   Most people tend to under estimate their storage needs which presents several problems.   As available free space shrinks, the fragmentation of files increase which directly affects performance.   Also, administrators must continually spend time purging, archiving, and moving files around to free up room for new files. Fortunately, most storage subsystems allow storage LUNs (logical unit numbers) to be dynamically expanded.    The Windows operating... --- ### What is esxtop? > Overview of esxtop, VMware's command-line tool for analyzing vSphere performance issues. - Published: 2011-05-13 - Modified: 2024-09-04 - URL: https://petri.com/esxtop-overview/ - Categories: VMware - Article Type: Overview Esxtop is VMware's command-line tool to analyze performance. David Davis provides an overview and configuration options of this valuable tool for solving vSphere performance issues. Also included are suggestions on top resources available to further your understanding of esxtop. Simply put, esxtop is VMware's command-line tool to analyze performance. Where did it come from? If you've used the Linux or Unix top command, esxtop may already be familiar to you. Esxtop is VMware's version of this popular "top" command that run on an ESX or ESXi server. Both top and esxtop run only at the command line of a server. You would access these commands by either going directly to a server console or by connecting to a server remotely via SSH (or telnet, if enabled). What does esxtop do? Esxtop is used to analyze real-time performance data from an individual ESX or ESXi server. You bring it up by going to the physical server console or remote console via SSH, logging in, and typing esxtop. Most people would say that esxtop analyzes CPU, Memory, Disk, and Network statistics. More specifically, you'll find that esxtop has 8 different "displays" that show CPU, interrupt, memory, network, disk adapter, disk interface, disk VM, and power management, as you see in the screenshot below. In the graphic, you can see that each of these different displays are brought up by pressing the corresponding letter for each display (i. e. , press "d" for the "disk adapter" display). Once in a display, you'll always have uptime and CPU trending info at the top of each screen. From there, you'll have a column view that shows stats for different objects. For example, in the CPU view you have processes... --- ### Networking Printers & Windows 2008 Server - Part 1 > Adding the Print Services role to a Windows 2008 Server and using the Print Management console to share printers on your network. - Published: 2011-05-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-2008-print-server-management/ - Categories: Networking - Tags: Print Management, Print services, printer sharing - Article Type: Overview In this article Tom Finnis explains how to add the Print Services role to a Windows 2008 Server and then shows you how to use the Print Management console to share printers on your network. This is the first of two articles explaining how to share and manage network printers with MS Windows 2008 Server. Part 1 explains how to add the Print Services role to your server, and then how to use the Print Management console to install and make printers available to users on your network. The second article will examine more advanced features such as automating printer deployment with Group Policy and logon scripts. Requirements Before You Start This guide assumes that you have a Windows based network, with a Windows 2008 (R2) Domain Controller - either a standard server or a Small Business Server 2008/2011 server. Ideally all your printers should have a built-in networking capability, or shared on the network from the PC they are attached to, and you need to make sure you have downloaded all the drivers for the different versions of Windows client on your network. When you have both 64 and 32 bit versions of a print driver it is essential to make sure that the version numbers of the driver package are identical, otherwise it will not work. Setup a Print Server There are two main benefits to centralizing all your shared printers onto a print server, firstly you can install all the different Windows client drivers on the server so they are automatically deployed, and secondly it greatly simplifies the management of the printers. First of all you need to ensure that your Windows 2008 Server has the Print Services role... --- ### Analog Voice Port Configuration > Analog voice port configuration on a VoIP network including configuration details for the three main voice port types: FXO, FXS and E&M. - Published: 2011-05-09 - Modified: 2011-05-09 - URL: https://petri.com/analog-voice-port-configuration/ - Categories: Cisco - Article Type: Overview Analog voice port configuration on a VoIP network by Sean Wilkins. Includes configuration details for the three main voice port types: Foreign Exchange Office (FXO), Foreign Exchange Station (FXS), and Ear and Mouth (E&M). This article focuses on basic analog voice port configuration. When implementing a VoIP network, there are a number of different components that need to be designed and configured in order to make the whole solution work correctly. One of these many components, the voice port, is located at the intersection of the network between the packet based network and the traditional telephony network. Along with physically connecting together these two different network types, a voice port is responsible for correctly translating voice calls and signaling. As the name suggests, analog voice ports transport the voice information between devices using analog methods.   The three main types of analog voice port types include Foreign Exchange Office (FXO), Foreign Exchange Station (FXS), and Ear and Mouth (E&M) (also called rEceive and TransMit or Earth and Magnet). FXO & FXS Voice Port Types Most people are actually quite familiar with these interface types as they have existed in most homes for the last several decades. The FXS voice port type is used to connect to traditional telephones and fax machines, the telephone itself is actually a FXO device; FXO and FXS voice ports are always paired together. A FXS voice port provides ring, voltage and dial tone to the end FXO device. An FXO voice port is usually used to connect a device to a Public Switch Telephone System (PSTN) Central Office (CO) or to a Public Branch Exchange (PBX), when an E&M voice port is not... --- ### Permissions and Role Based Access Control (RBAC) - Part I > Guide to RBAC (Role Based Access Control), a new permissions model in Exchange Server 2010. - Published: 2011-04-29 - Modified: 2024-09-04 - URL: https://petri.com/rbac-in-exchange-2010/ - Categories: Exchange Server - Article Type: Overview 1st installment by J. Peter Bruzzese in a guide to RBAC (Role Based Access Control), a new permissions model in Exchange Server 2010. RBAC allows you to define both a broad, as well as a more granular assignment of permissions to administrators, ensuring that they are given the appropriate permissions based on the roles they perform within your organization. Pre-Exchange 2010 vs. Exchange 2010 Permission Models Microsoft Exchange Server 2010 now comes with the new RBAC (Role Based Access Control) permissions model. This new permissions model allows you to define both a broad, as well as a more granular assignment of permissions to administrators. The roles you assign to administrators can reflect more accurately the actual roles they perform in your organization. Previous to Exchange Server 2010, Microsoft Exchange administrators who needed to create new administrators, or assign new permissions to existing ones, used to get stumped when deciding which administration group to assign administrators to. Each administration group contains different sets of permissions, and older versions of Exchange had only a few administration groups to choose from. As a result, administrators often ended up being assigned to admin groups that enabled them with more permissions than were appropriate for their role. Note: If you’re familiar with the concept of role groups and roles, you can go straight to the section “Predefined Role Groups and Roles”. Role Groups and Roles An important concept you need to understand in order to appreciate RBAC is the relationship between role groups, roles, cmdlets (commandlets) and parameters. First of all, a role defines a set of tasks a particular administrator can perform. For instance, the ‘Mail Recipients’ role enables admins to perform the tasks of managing mailboxes, mail users, and mail contacts. When an admin is assigned a role, he is, in effect, granted the permissions... --- ### Windows GPT Disks - Is Bigger Really Better? > Comparison of MBR (Master Boot Record) and GPT (GUID Partition Table) based Windows disks. - Published: 2011-04-28 - Modified: 2024-09-04 - URL: https://petri.com/gpt-vs-mbr-based-disks/ - Categories: Backup & Storage - Article Type: Overview Bruce Mackenzie-Low examines the benefits and disadvantages of MBR and GPT-based Windows disks. The 2 approaches differ in how they track the mapping of physical disk sectors to logical block numbers. MBR (Master Boot Record) is widely accepted, but partition size is limited to 2 terabytes. GPT (GUID Partition Table) was created to accommodate the larger partition sizes and offers greater resilience to corruption. The Microsoft Windows operating system offers 2 architectures for partitioning disk drives into usable areas to store data.   The 2 approaches differ with how they track the mapping of physical disk sectors to logical block numbers.   The original method of partitioning disks is referred to as MBR (Master Boot Record) which was developed during the 1980’s.   Although widely accepted, this scheme has many shortcomings including partitions being limited to 2TB (terabytes) in size. As disk capacity has increased to over a terabyte, a new partition architecture developed in the late 1990’s called GPT (GUID Partition Table) was created to accommodate the larger partition sizes.   In addition to size, GPT disks also offer more partitions and greater resilience to corruption.   This article examines MBR and GPT-based Windows disks discussing, their benefits and disadvantages. GPT-based Disks Microsoft adopted the GPT disk partitioning scheme in 2001 from Intel’s EFI (Extensible Firmware Interface) specifications.   It accommodates disk partition sizes up to 18 EB (Exabyte’s) or 1 million terabytes.   Each GUID (globally unique ID) partition contains a 36-character field to allow a readable name to be associated with each partition. Another shortcoming of MBR-based disk partitions is the limitation of 3 primary partitions and 1 extended partition.   The extended partition can be further divided into multiple logical partitions.   By limiting the number of partitions on a disk, you effectively reduce the number of partitions to organize or manage the data.   With GPT-based disks, Microsoft supports up to 128... --- ### Understanding Memory Compression in vSphere 4.1 > Overview of memory compression in vSphere 4.1. Includes configuring memory compression on your vSphere virtual infrastructure. - Published: 2011-04-26 - Modified: 2024-09-04 - URL: https://petri.com/memory-compression-in-vsphere-4-1/ - Categories: VMware - Article Type: Overview An overview by David Davis on memory compression, new in vSphere 4.1. Memory compression helps to prevent degradation of performance when you're running low on memory. It's not as fast as real memory but a lot faster than swap (on disk). This article includes configuring memory compression on your vSphere virtual infrastructure. vSphere 4. 1 comes with a new performance-enhancing feature called memory compression. It can give your system a performance boost when it starts running low on RAM. Just like swap memory, memory compression is not equal to real memory but can help to prevent degradation of performance when you're running low on memory. For comparison, memory compression is faster than swap on disk but slower than real memory. vSphere 4. 1’s memory compression is switched on by default and it reinforces other memory performance techniques also found in vSphere such as: Transparent Page Sharing (TPS), Ballooning, and Hypervisor Swapping. As you can see from the graph below, memory compression improves throughput. (Graphic thanks to VMware. com) We’ll now proceed to show you where memory compression configurations can be carried out. Note: Before you go on to the next section, we’d like to warn you that making changes to anything in the Advanced Settings is strongly discouraged unless you’ve already made a thorough assessment of your infrastructure’s performance in relation to memory compression. Where to configure Memory Compression in vSphere 4. 1 To start, go to your vSphere Client and select an ESX server whose memory compression settings you’d like to configure. Now, navigate to that server’s Configuration tab and, in the Software panel, click the Advanced Settings link. In the Advanced Settings window, open the Mem set of settings by clicking that name in the left-hand-side panel. The settings we’re looking for are found near the bottom, so you’ll have... --- ### Configuring vSphere 4.1 VM to Host DRS Affinity Rules > Configuring VM to Host DRS Affinity Rules on vSphere 4.1. - Published: 2011-04-21 - Modified: 2024-09-04 - URL: https://petri.com/host-drs-affinity-rules-vsphere-4-1/ - Categories: VMware - Article Type: How To VMware vSphere’s Distributed Resource Scheduler (DRS) is mainly used for load balancing virtual machines on a cluster. While most virtualization admins will want to run DRS in fully automated mode, there may be certain instances when you would want to enforce some conditions by setting what are known as DRS Affinity Rules. In this article, David Davis explains setting up VM to Host Affinity Rules on vSphere 4.1. VMWare vSphere’s DRS (Distributed Resource Scheduler) is mainly used for load balancing virtual machines (VMs) on a cluster. While most virtualization admins will want to run DRS in fully automated mode - i. e. , vSphere decides on its own which VM is assigned to which ESX Server - there may be certain instances when you would want to enforce some conditions by setting what are known as DRS Affinity Rules. Note that while there are two types of DRS Affinity Rules, the other one being VM to VM, this article focuses on VM to Host Affinity Rules, a feature which has just been introduced in vSphere 4. 1. These rules allow you to take individual VMs or Groups of VMs and assign them to individual ESX Servers or Groups of ESX Servers. Instances wherein you would want to enforce DRS Affinity Rules So what are some of those instances wherein you would want to dictate which VM or VMs should (or should not) be assigned to a particular ESX Server or group of ESX Servers? Licensing Issues Some applications running on your VMs may have licensing peculiarities such as: Those that require the application to be run on only one CPU; a restriction that can have complications if you have a single-CPU server along with a bunch of dual-CPU servers. Those that restrict the application to one specific server with a specific serial number. Availability Requirements You might want to prevent a group of VMs... --- ### SBS 2011 and SharePoint Foundation: Configuring Outgoing & Incoming E-mail Settings > Detailed instructions on configuring outgoing & incoming email for SharePoint Foundation on SBS (Small Business Server) 2011. - Published: 2011-04-19 - Modified: 2024-09-04 - URL: https://petri.com/setting-up-sharepoint-email-sbs-2011/ - Categories: SharePoint 2010 - Article Type: How To Step-by-step article and video by J. Peter Bruzzese on configuring outgoing & incoming email for SharePoint Foundation on SBS (Small Business Server) 2011. Due to the unique circumstances of Small Business Server, very specific configuration settings are required for SharePoint email. Covers outgoing/incoming email settings, configuring alerts, creating a document library, and creating a foreign connector to the drop folder. Due to the unique circumstances of SBS (Small Business Server), there is a need for very specific configuration of SharePoint email settings.   Are you a Small Business Server 2011 admin looking for help on configuring SharePoint Foundation for email settings?   Well, that would be the most logical reason for reading on.   Any other scenario may prove to be an effort in futility since these are very specific instructions for a very specific task: that of outgoing/incoming email settings for SharePoint Foundation on SBS 2011. Outgoing and Incoming Email Settings Overview Why configure outgoing and incoming email settings?   Quite simply, the outbound side is what is used for users to configure alerts to track items on a site like lists, libraries and document changes.   These alerts can also benefit site administrators with various aspects of their admin responsibilities, like receiving a message that storage space has been exceeded.   So, obviously the outbound email has to be configured.   As for the incoming side, the purpose of configuring this is so that SharePoint can receive email messages and attachments in lists and libraries. In the case of both outgoing and incoming, if you research the configuration through TechNet, you'll find the first step is installing and configuring the SMTP service on the SharePoint server.   This is the case even if you are working with an in-house Exchange Server.   However, with SBS 2011 and SharePoint Foundation you do NOT install and configure the SMTP connector. TechNet articles for incoming and outgoing email settings for... --- ### Implementing iSCSI Storage with Windows Failover Clusters > Step-by-step guide covering configuration of iSCSI-based disks for use with Windows Failover Clusters. - Published: 2011-04-15 - Modified: 2024-09-04 - URL: https://petri.com/windows-failover-cluster-iscsi-technology/ - Categories: Backup & Storage - Article Type: Overview Windows failover clusters can now take advantage of iSCSI storage to access shared data. Using iSCSI reduces the initial investment costs for clusters by allowing you to use your existing TCP/IP networks instead of expensive SANs. This article by Bruce Mackenzie-Low explains how to set up iSCSI-based disks and configure them for use with Windows failover clusters. Historically speaking, computer clusters conjure up notions of tightly coupled servers attached to high speed SANs in a data center type environment.   These clusters have existed for many years primarily in the enterprise class space due to their high initial investment costs.   In addition, the technology associated with these SAN-based clusters requires a close proximity of the hardware due to fibre cable length restrictions.   With the high initial cost and the close proximity requirement, clusters have typically been confined to corporate data centers. This has all changed with the advent of iSCSI technology!   As you may know, iSCSI stands for Internet Small Computer System Interface.   It is a transport protocol for mapping block-oriented storage data over TCP/IP networks.   This allows clusters to take advantage of existing networks to access shared storage instead of using expensive SAN environments. In addition, by using the network, servers and storage can be located anywhere on the LAN instead of being restricted to the close proximity of a data center.   Small and medium sized businesses can now leverage iSCSI technology to implement clusters. This article discusses how Microsoft has embraced iSCSI technology and now supports Windows Failover Clusters using it to access shared storage.   The article explores the different iSCSI components and how they are implemented with clusters.   Screen shots are provided to illustrate how to setup iSCSI-based disks and configure them for use with Windows Failover Clusters. iSCSI Failover Clusters In order to implement iSCSI technology with... --- ### Using Storage IO Control (SIOC) in vSphere 4.1 > Guide for enabling SIOC, explanation of shares & IOPs, configuration details for controlling resources between VMs, and SIOC performance monitoring. - Published: 2011-04-13 - Modified: 2024-09-04 - URL: https://petri.com/storage-io-control-vsphere-4-1/ - Categories: VMware - Article Type: Overview How-to tutorial and video by David Davis providing a rundown of Storage IO Control (SIOC), a new feature in vSphere 4.1. SIOC ensures that each virtual machine is given an appropriate allocation of disk resources by preventing a single VM from monopolizing storage resources over other virtual machines. Includes instructions for enabling SIOC, explanation of shares and IOPs, configuration guidelines for controlling resources between VMs, and SIOC performance monitoring. There are a lot of new features in vSphere 4. 1 and I covered the major ones in my "Best of vSphere 4. 1 for vNerds" mini-training course (free with any Train Signal vSphere purchase). Today, I want to take the opportunity to release one of those videos to the world and use it to educate on the topic of vSphere Storage I/O Control (or SIOC). Background on vSphere Resource Controls To understand vSphere SIOC, you first need to understand resource controls in vSphere. To control resources between VMs, vSphere uses the concept of "shares". A share is piece of all the CPU and RAM resources that are available. Thus, whether you have a single server or a group of servers in a DRS (distributed resource scheduler) load-balanced cluster, you will still have a total amount of resources and then each VM will get a piece of those resources (the share). By default, they will all get the same share of resource but you, as a VMware Admin can determine whether some applications on some VMs are more important than others and set the share value for those VMs higher. The problem with shares is that, until vSphere 4. 1, they didn't apply to storage as the shared storage was between the ESX/ESXi hosts and those hosts weren't communicating with each other to determine who had more shares of the storage resources. vSphere 4. 1 comes with a new feature called Storage I/O Control that provides a... --- ### Leveraging the Cluster Validation Wizard for Troubleshooting Storage Problems > Using the Cluster Validation Wizard, also known as Validate, to perform a variety of tests to ensure that cluster components are accurately configured and supported in a clustered environment. - Published: 2011-04-07 - Modified: 2024-09-04 - URL: https://petri.com/cluster-validation-wizard-and-failover-clusters/ - Categories: Backup & Storage - Article Type: Overview How to use the Cluster Validation Wizard, also known as Validate, to perform a variety of tests to ensure that cluster components are accurately configured and supported in a clustered environment. Bruce Mackenzie-Low explains using the Cluster Validation Wizard to systematically test the storage subsystem in order to isolate any failing components, including generation of a Validation Report which documents the tests and their results, along with hyperlinks to detailed troubleshooting information such as failing disks and server names. Whether you are configuring a brand new Windows Failover cluster, or maintaining an existing one, the Cluster Validation Wizard is a handy tool to verify your storage configuration.   The Cluster Validation Wizard, also known as Validate, is used to perform a variety of tests to ensure that cluster components are accurately configured and supported in a clustered environment. The Validate tool includes various tests such as listing the system configuration, or performing network and storage tests.   These tests can be run on a new, proposed member of a cluster, or they can be run to establish a baseline for an existing cluster.   Validate can also be used to troubleshoot a broken cluster by isolating the system, network or storage component that is failing a particular test. This article describes how to use the Cluster Validation Wizard to troubleshoot storage related problems.   It explores the different storage tests that can be performed and how to troubleshoot any failures.   Finally, a Validation Report is examined to illustrate how the tool can be used to isolate any storage related problems. Using Validate for Storage Troubleshooting The Cluster Validation Wizard is part of the Failover Cluster Management MMC snap-in.   The tool is installed when the Failover Cluster “feature” is installed via the Server Manager.   To invoke the Wizard, use the snap-in to select “Validate a Configuration... ” in the center pane under Management.   The Wizard prompts for the names of the servers and which tests to perform.   Below... --- ### How To Disable Internet Explorer First Run Welcome Screen Pop Up > How to disable first run welcome screen in IE8 and IE9 via group policy editor or registry editor. - Published: 2011-04-04 - Modified: 2024-09-04 - URL: https://petri.com/disable-ie8-ie9-welcome-screen/ - Categories: Windows Client OS - Article Type: How To Disabling first run welcome screen in IE8 & IE9 via Group Policy Editor or Registry Editor. Daniel Petri provides a walkthrough for disabling the "Welcome to Internet Explorer" page that continues to appear if you reset the IE settings or log in as a different user. One of the things that makes me run and pull my (remaining) hair out is the mind-nagging "Welcome to Internet Explorer" page that pops out  after you install Internet Explorer 8 or 9 and launch it for the first time. I could live with that, however someone with a sick sense of humor in the IE team has made up his or her mind to constantly keep nagging us even when you reset the IE settings, and obviously when you log in as a different user. This welcome screen appears and asks you to go through a few steps, with the final goal to change the search and accelerator settings of IE. I don't know about you, but I am so annoyed with this screen, mostly because it always pops out when I least expect it, for example, when I'm in the middle of a demo or a class, and even when I think it won't appear, because that nasty designer has probably deliberately configured it in such a way that there's a slight delay between the opening of the IE window, and the pop up welcome screen.   Even more nagging, running through the welcome screen will then pop up a new IE tab, taking you to a web page that you do not want to be at, causing you to again waste even more time. Needless to say, in the days where IE is not my default browser anyway (I tend to... --- ### Utilizing SAN Storage with Windows Failover Clusters > Windows 2008 Failover Clustering with SAN storage. - Published: 2011-03-31 - Modified: 2024-09-04 - URL: https://petri.com/2008-failover-clustering-and-san/ - Categories: Backup & Storage - Article Type: Overview Bruce Mackenzie-Low covers SAN based Windows clusters, the improvments in failover clustering with Windows 2008 R2, and the requirements to consider when configuring disk drives to be used in a SAN-based Windows cluster. Storage Area Networks (SAN’s) are well suited to support clustering technologies.   As you may know, clustering is the concept of connecting several servers to the same shared disk storage.   This allows multiple servers to access the disk storage in a coordinated fashion, offering fault tolerance by avoiding a single point of failure should a server malfunction. Clustering technology has been around for over 25 years, such as OpenVMS clusters by Digital Equipment Corporation.   Microsoft first introduced Windows clusters in NT4 with the code name Wolf Pack.   These early clusters allowed 2 servers, aka “nodes”, to be configured with parallel SCSI or SAN-based fibre cables to access shared storage.   In today’s clusters, Windows 2008 R2 allows up to 16 servers to be configured in a failover cluster with access to hundreds of terabytes worth of data. SAN-Based Clusters As previously discussed in the article “Exploring Windows Storage Technologies: DAS, NAS and SAN-Based Solutions”, SAN-based configurations lend themselves to shared disk access.   In the typical SAN-based cluster configuration, 2 or more servers are connected by fibre cables to SAN switches.   Multiple SAN switches are used to provide redundancy should 1 of the switches fail.   Storage controllers are also connected to the SAN switches to connect the disk arrays to the SAN.   The following diagram illustrates a typical SAN-based cluster with redundant paths. Diagram 1: SAN-Based Cluster with Redundant Paths Storage Considerations When configuring disk drives to be used in a SAN-based Windows cluster, several requirements... --- ### QoS Classification and Marking Configuration > QoS Marking and Classification configuration for VoIP Quality of Service implementation. - Published: 2011-03-29 - Modified: 2011-03-29 - URL: https://petri.com/qos-marking-and-classification/ - Categories: Cisco - Article Type: Overview Sean Wilkins discusses QoS Classification and Marking configuration in relation to VoIP Quality of Service implementation on Cisco equipment. This marking is used by devices on the network to prioritize high priority over low priority marked traffic. Also covered are Differentiated Services Code Point (DSCP) values, Per Hob Behaviors (PHB) and Modular QoS Command Line Interface (MQC). This article covers the details for proper QoS Marking and Classification configuration. As discussed in the VoIP Quality of Service (QoS) Basics article, the first thing that must be accomplished when configuring QoS is the classification and marking of traffic; this marking is then used by the devices on the network to prioritize high priority over low priority marked traffic. This article discusses the commonly used Differentiated Services Code Point (DSCP) values and the basic concepts of classification and marking. The article then goes on to show the basic configuration steps required to implement traffic classification and marking. The material in this article can be used as a jumping off point for studying for the CCNP Voice certification as this material is found in the CVOICE (642-437) exam that must be passed to obtain this certification. With the integration of voice and video becoming more and more common on modern networks, a solid understanding of what is possible with QoS is essential. DSCP - Per Hob Behaviors (PHB) The purpose of DSCP is to differentiate the different classes or types of traffic on the network; the DSCP section takes up the first 6 bits of the Type of Service field in the IP header. This space was previously used for IP precedence, and while some older implementations may still use IP precedence, most modern implementations have moved over to using DSCP. The value contained within the DSCP section is called a Per Hob... --- ### Preventing Automatic Service Pack 1 Update to Windows 7 and Windows Server 2008 R2 > Blocking Windows 7 and Windows Server 2008 R2 Service Pack 1 (SP1) automatic updates with the Windows Service Pack Blocker Tool Kit. - Published: 2011-03-25 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-server-2008-r2-sp1-blocker/ - Categories: Windows Server 2008 - Article Type: How To Daniel Petri explains how to block Windows 7 and Windows Server 2008 R2 Service Pack 1 (SP1) automatic updates with the Windows Service Pack Blocker Tool Kit. Unlike the IE9 blocking tool, this tool does have an expiration date - the 22nd of February 2012. Microsoft began to distribute Windows 7 and Windows Server 2008 R2 Service Pack 1 (SP1) as a high-priority update through Automatic Updates. However, as with most large corporate environments, IT organizations may want to delay the introduction of a new Service Pack until they have tested compatibility with internal applications and sites. Microsoft created a tool called “Windows Service Pack Blocker Tool Kit” to stop it from updating your servers and workstations without your permission. Unlike the Blocker Toolkit for IE9, this tool does have an expiration date - the 22nd of February 2012. The tool and can be configured either by running the registry file on the client machines or through Group Policy in domain joined environments. Download Download details: www. microsoft. com/downloads/en/details. aspx? FamilyID=D7C9A07A-5267-4BD6-87D0-E2A72099EDB7 The tool can be used with: Windows 7 Service Pack 1 Windows Server 2008 R2 Service Pack 1 Toolkit Components The tool contains three components. All of them function primarily to set or clear a specific registry key that is used to detect and block download of Service Packs from Windows Update. You need to only use one of the components, the one that best serves your organization’s computer management infrastructure. The components are: A Microsoft-signed executable A script An ADM template Registry key The executable creates a registry key on the computer on which it is runs that blocks or unblocks (depending on the command-line option used) the delivery of a Service Pack to that computer through Windows Update. The key used is HKLMSoftwarePoliciesMicrosoftWindowsWindowsUpdate. Key value name:... --- ### Understanding the Windows Disk Storage Architecture > Overview of Windows storage disk architecture for troubleshooting disk storage issues. - Published: 2011-03-24 - Modified: 2024-09-04 - URL: https://petri.com/windows-storage-disk-architecture/ - Categories: Backup & Storage - Article Type: Overview Explanation by Bruce Mackenzie-Low of Windows disk storage architecture for troubleshooting disk storage issues. Includes detailed overview of the I/O request, storage drivers and the Windows storage stack. Troubleshooting Windows storage disk issues can be a very challenging endeavor.   It often helps to have an understanding of what’s under the hood, so to speak, with regards to I/O requests, device drivers and redundant storage architectures.   This article explores the fundamental Windows storage components and how they interact to provide high performance, reliable data storage. Previously in an article entitled “Exploring Windows Storage Technologies”, we discussed the different storage architectures including DAS, NAS and SAN based solutions.   This article provided a high level overview of the various ways storage can be configured on Windows servers.   We will now dig deeper into what happens when a user issues a read or write request to a disk, and the potential failures that can occur during the process. The I/O Request The process of reading or writing data from a disk begins with an I/O request from a user application or a component of the operating system.   This request is typically a READ or WRITE request to either retrieve or store data in a particular file.   Files are stored on disks utilizing various formats such as FAT32 or the NTFS file system.   Finally, the actual magnetic bits on the disks are read or written to by the disk controllers.   As you can see below, there are several layers of the Windows storage architecture that an I/O request must travel. Storage Drivers To accommodate the different layers of the storage architecture, kernel mode software called drivers are used to implement... --- ### Congestion Management Configuration > Congestion management and queue configuration including FIFO (First-In First-Out), WFQ (Weighted Fair Queueing), Priority and Custom Queueing. - Published: 2011-03-23 - Modified: 2011-03-23 - URL: https://petri.com/congestion-management-and-queue-configuration/ - Categories: Cisco - Article Type: Overview Expanding upon VoIP Quality of Service (QoS) basics, Sean Wilkins discusses congestion management techniques and queue configuration. Includes popular queueing mechanisms like FIFO (First-In First-Out), WFQ (Weighted Fair Queueing), Priority and Custom Queueing to reduce the effect that network congestion has on the flow of traffic across the network. Congestion Management Overview As discussed in the VoIP Quality of Service (QoS) Basics article, one of the methods of controlling the amount of congestion on the network is to utilize congestion management techniques, primarily queue configuration. This article addresses the various congestion management techniques, and reviews the steps required to configure it on a network. Congestion management techniques can be used alongside other Quality of Service (QoS) techniques to ensure that the traffic which requires a high level of service is able to get it. Congestion management techniques work by reducing the effect that network congestion has on the flow of traffic across the network; this is done with a number of different queueing mechanisms. Congestion management, like classification and marking, is another subject area that is required for the completion of the CVOICE (642-437) exam. Congestion management, along with a carefully planned overall QoS plan, is essential when implementing multiservice networks. Queueing The majority of the time that a network is set up without the need for QoS or congestion management, a queueing mechanism is still being used to process traffic through a device. By default, all interfaces that are below 2. 048 Mbps utilize Weighted Fair Queueing (WFQ), while all interfaces above 2. 048 Mbps utilize First-In, First-Out Queueing (FIFO); both of these will be covered in more detail later in this section. So, what is a queue? One of the most recognizable examples of queueing is at a large store. There are... --- ### An Overview of RAID Storage Levels > RAID levels comparison summary; an explanation of the most common RAID storage levels. - Published: 2011-03-18 - Modified: 2024-09-04 - URL: https://petri.com/raid-levels-comparison-guide/ - Categories: Backup & Storage - Article Type: Overview This RAID levels comparison article provides an overview of RAID storage levels. Veronica Henry provides an explanation of the most common RAID levels, including requirements and benefits of each level. This RAID levels comparison article provides an overview of RAID storage levels. Enterprise demands for increased storage capabilities, improved performance, and disaster recovery, have all driven the need for alternative storage solutions. And though failures may be more rare than in previous years, for many organizations, the cost of even an hour of downtime is significant enough to warrant the added protection afforded by what is known as a drive array. This array is a collection of two or more drives that combined, provide a single point of data storage. For the operating systems as well as network users, the array appears as a single drive. This technique is alternately referred to as either Redundant Array of Inexpensive Disks or Redundant Array of Independent Disks, abbreviated RAID. There are several RAID implementations, known as levels, but only a few are widely used. RAID 0 RAID 0, also called striping, is a scheme where data is divided into blocks and distributed across the drives in the array. This level does not provide redundancy, so consequently it has the best overall performance. For this reason, it is not suitable for mission critical situations, but is best used in situations where improved performance is the primary driver. RAID 1 There are two implementations of RAID 1: mirroring and duplexing. With both schemes, data is duplicated on a second disk. Mirroring uses a single drive controller, while duplexing uses two controllers. In the event of a single drive failure, data... --- ### More Information About RemoteFX on Hyper-V R2 SP1 > Explanation of RemoteFX including hardware & software requirements, functionality overview, and required editions of Windows Server 2008 R2 with SP1. - Published: 2011-03-17 - Modified: 2011-03-17 - URL: https://petri.com/hyper-v-r2-sp1-remotefx/ - Categories: Hyper-V - Article Type: Overview Explanation of RemoteFX by Daniel Petri. Now, with Windows Server 2008 R2 with SP1, RemoteFX introduces a set of end-user experience enhancements for Remote Desktop Protocol (RDP) that enable a rich desktop environment within the corporate network. Article includes hardware and software requirements, functionality overview, and a rundown of required editions of Windows Server 2008 R2 with SP1. Calista Technologies was acquired by Microsoft in January 2008. The technology was soon after merged and renamed RemoteFX. Now, with Windows Server 2008 R2 with Service Pack 1 (SP1), it introduces a set of end-user experience enhancements for Remote Desktop Protocol (RDP) that enable a rich desktop environment within the corporate network. RemoteFX describes a set of RDP technologies - most prominently graphics virtualization and the use of advanced codes - that are being added to Windows Server 2008 R2 Service Pack 1. These technologies are based on the IP that Microsoft acquired and continued to develop since acquiring Calista Technologies. RemoteFX is a technology that allows you to virtualize the Graphical Processing Unit (GPU) on the server side and deliver next-generation rich media and 3D user experiences for VDI. Hyper-V is the first hypervisor in the industry to support true multi-user GPU virtualization for VDI deployments. RemoteFX enables new low cost ultra-thin client devices to enter the market. Together, these technologies will drive down the end-point cost and reduce endpoint power consumption to as little as a few watts. RemoteFX does this via a technique known as host-based rendering, which means the entire final composited screen image is rendered on the remote host and then compressed and sent down to the client (in effect this moves more computing into the datacenter and lessens the importance on specific client devices or client specs). GPU vendors have already announced their active support for Remote FX, and thin client and system-on-a-chip... --- ### Basic Dial Peer Concepts and Configuration > Cisco IOS voice dial peer and call leg configuration options. - Published: 2011-03-15 - Modified: 2024-09-04 - URL: https://petri.com/voip-dial-peer-configuration/ - Categories: Cisco - Article Type: Overview Explanation of VoIP dial peer configuration options by Sean Wilkins, including different ways to utilize the dial peer functionality that is built into Cisco IOS. One of the most important concepts to understand when implementing voice over networks on Cisco equipment is the concept of dial peers and call legs. This article discusses this concept and reviews the configuration steps required for implementation. A call leg is a logical connection between two routers or between a telephony device and a router. From the perspective of the originating router and the terminating router, there are two call legs for a total of four; an example of this is shown in Figure 1:   A dial peer is the physical implementation of a call leg, and as stated in the last paragraph, there are two call legs and thus two dial peers to be configured on each router. Depending on the type of call leg, there are two different types of dial peers that can be configured; these include: Plain Old Telephone System (POTS) – This type of dial peer defines the characteristics of a traditional telephony connection. Typically, a POTS dial peer is associated with a voice port connecting to the PSTN, PBC or telephone. Voice network – This type of dial peer defines the characteristics of a packet connection. There are several different types of voice network dial peers that can be configured including VoIP, VoFR and VoATM. Figure 2 shows an illustration of an example POTS/VoIP dial peer implementation: There also needs to be a... --- ### Understanding PAL Reports to Identify Windows Storage Bottlenecks > Using PAL reports for troubleshooting performance issues by identifying when counters have exceeded various thresholds and identifying bottlenecks. - Published: 2011-03-11 - Modified: 2024-11-19 - URL: https://petri.com/performance-analysis-of-logs-reports/ - Categories: Backup & Storage - Article Type: Overview How-to by Bruce Mackenzie-Low on using PAL (Performance Analysis of Logs) reports for highlighting which counters have exceeded predetermined thresholds. The lastest versions of PAL 2.0, now using PowerShell instead of VBScript, can simplify the troubleshooting of performance issues by identifying when counters have exceeded various thresholds, graphing their trends and identifying bottlenecks. Previously, in an article called “Leveraging PAL to Troubleshoot Windows Storage Performance Issues”, a tool known as PAL (Performance Analysis of Logs) was introduced.   PAL is used in conjunction with Perfmon performance counters to generate an HTML report that highlights which counters have exceeded pre-determined thresholds.   By using hyperlinks, the report quickly takes you to graphs and charts which reflect the potential performance bottlenecks. PAL Reports Unveiled After executing the PAL wizard, a job is executed which reads the Perfmon log file (counters) and compares the values to pre-determined thresholds.   Any values that exceed the thresholds are flagged in an HTML report that can be read by any web browser.   The PAL report begins by listing the tool parameters that were collected by the wizard to specify the server configuration and threshold profile used in the report: Next, a listing of the alerts that triggered the threshold values are chronologically presented in the report.   This allows you to quickly focus on the time period when the majority of bottlenecks occurred.   Each alert contains a hyperlink so you can expand the details associated with each event, such as the corresponding graph of the counter along with an explanation and when each occurrence exceeded the threshold.   A color-coded severity is given to each alert indicating if it is normal (green), a warning (yellow), or reason for concern (red).   The following example illustrates the alerts by chronological order: In the next section of the report, the... --- ### What is I/O Virtualization (IOV)? > Overview of I/O Virtualization (IOV) utilized in data centers allowing for a huge reduction in network and storage cabling. - Published: 2011-03-11 - Modified: 2024-09-04 - URL: https://petri.com/what-is-io-virtualization-iov/ - Categories: Virtualization - Article Type: Overview An overview by David Davis of I/O Virtualization (or IOV), a relatively new form of virtualization utilized in data centers allowing for a huge reduction in network and storage cabling. Video included of interview at VMware Partner Exchange (PEX) 2010 with Stephen Spellicy of Virtensys.   There are various forms of virtualization with some being much more popular than others. For example: Server Virtualization (we all know this one) - consolidating physical servers into virtual server that run on many fewer physical servers Desktop Virtualization - virutalizing desktops and running them on servers Network Virtualization - creating virtual networks inside the software that don't require any physical network hardware (a must-have for server virtualization) No matter the type of virtualization, the idea is that you are "decoupling the software from the hardware", making the software hardware independent. There are more benefits to virtualization than I have space to write in this article but, trust me, it's "good stuff". Instead, let's talk about a topic that has been fascinating me lately and that is I/O Virtualization (or IOV). What is I/O Virtualization? Just as you decouple an operating system from the hardware with server virtualization, you decouple network and storage communications from it's typical hardware cable path, network/storage switches, and network/storage adaptors with I/O Virtualization. In my opinion, understanding IOV can best be described with pictures and math. Here is how the typical server datacenter "does IO" today: With traditional I/O, EVERY server has: Network - between 1-4+ Ethernet network connections that require individual NICs, Ethernet cables, and switch ports SAN - a large majority of servers are redundantly connected to a fibre channel (FC) SAN that requires individual HBAs, FC cables, and FC switch ports If you have 6 connections per server... --- ### Configuring RemoteFX on Windows Server 2008 R2 SP1 Hyper-V > How-to guide covering some of the basic configuration options for RemoteFX on Hyper-V R2 SP1. - Published: 2011-03-09 - Modified: 2011-03-09 - URL: https://petri.com/configuring-remotefx-hyper-v-r2-sp1/ - Categories: Hyper-V - Article Type: How To Daniel Petri covers some of the basic configuration options for RemoteFX - a set of RDP technologies, most prominently graphics virtualization and the use of advanced codes, that are being added to Windows Server 2008 R2 Service Pack 1. RemoteFX describes a set of RDP technologies - most prominently graphics virtualization and the use of advanced codes - that are being added to Windows Server 2008 R2 Service Pack 1. These technologies are based on the IP that Microsoft acquired and continued to develop since acquiring Calista Technologies. Read more about RemoteFX in my More information about RemoteFX on Hyper-V R2 SP1 article. In this article, I will try to cover some of the basic configuration options for RemoteFX. This is not meant to be a full how-to article. For such a guide, please reference these links: Guides Deploying Microsoft RemoteFX on a Single Remote Desktop Virtualization Host Server Step-by-Step Guide http://technet. microsoft. com/en-us/library/ff817586(WS. 10). aspx Deploying Microsoft RemoteFX for Personal Virtual Desktops Step-by-Step Guide http://technet. microsoft. com/en-us/library/ff817611(WS. 10). aspx Deploying Microsoft RemoteFX for Virtual Desktop Pools Step-by-Step Guide http://technet. microsoft. com/en-us/library/ff817591(WS. 10). aspx Configuring USB Device Redirection with Microsoft RemoteFX Step-by-Step Guide http://technet. microsoft. com/en-us/library/ff817581(WS. 10). aspx Deploying Microsoft RemoteFX on a Remote Desktop Session Host Server Step-by-Step Guide http://technet. microsoft. com/en-us/library/ff817595(WS. 10). aspx To install RemoteFX by using Server Manager Note: You should install drivers for the video card on the virtualization server before you enable the Remote Desktop Services and Hyper-V roles. Otherwise, the RemoteFX 3D Video Adapter will not be available in Hyper-V Manager. 1. Open Server Manager. To open Server Manager, click Start, point to Administrative Tools, and then click Server Manager. 2. Expand Roles, and then click Remote Desktop Services. 3. Under Role Services, click Add Role Services. 4. Select the Remote Desktop Virtualization Host check... --- ### Leveraging PAL to Troubleshoot Windows Storage Performance Issues > Performance Analysis of Logs (PAL) tool, a powerful free tool developed by Microsoft and the open source community for analyzing storage performance issues. - Published: 2011-03-07 - Modified: 2024-11-19 - URL: https://petri.com/leveraging-pal-to-troubleshoot-windows-storage-performance-issues/ - Categories: Backup & Storage - Article Type: Overview Overview by Bruce Mackenzie-Low of Performance Analysis of Logs (PAL), a free tool developed by Microsoft and the open source community for analyzing storage performance issues. This powerful tool is used in conjunction with Perfmon data to automatically analyze the counters for various thresholds. Introduction Continuing on from the previous article covering Free Windows Troubleshooting Tools for Storage Performance, I will now introduce you to a free tool called PAL (Performance Analysis of Logs).   PAL is used to automate the analysis of Perfmon counters identifying if they exceed a pre-determined threshold.   PAL is especially useful for analyzing storage bottlenecks by quickly identifying the disk or application responsible for the poor performance. As we previously discussed, the Task Manager is a useful tool for gaining a preliminary analysis of a performance concern.   Unfortunately, the Task Manager is an interactive tool that doesn’t allow you to save the performance metrics for subsequent analysis.   This can be a problem if your performance issue is an intermittent one that comes and goes. The Performance Monitor (Perfmon) tool can be used to record performance metrics to a log file as we mentioned last time.   This can be advantageous for those intermittent problems.   Perfmon also allows you to graph the various performance counters to reveal any bottlenecks.   Unfortunately, there are literally hundreds of counters to review which can take hours or even days. PAL (Performance Analysis of Logs): In an effort to automate the analysis of Perfmon counters, a tool called PAL was jointly developed by Microsoft and the open source community.   PAL is used to read Perfmon counters from a log file and then apply pre-determined threshold values to identify any counters that are flagged as excessive.   The tool then produces a... --- ### Importing Hyper-V VMs into vSphere > Step-by-step guide and video for importing Hyper-V virtual machines into VMware vSphere 4.1. - Published: 2011-03-03 - Modified: 2024-09-04 - URL: https://petri.com/import-vm-hyper-v-to-vsphere/ - Categories: VMware - Article Type: How To David Davis walks us through the new VMware vSphere 4.1 feature which allows importing of Hyper-V virtual machines into vSphere. Complete instructions for importing Hyper-V VMs into vSphere, including what you'll need to get started (vSphere 4.1, vCenter 4.1, vCenter Converter 4.2 installer). Video included. I recently released a new 2 hour training course called Best of vSphere 4. 1 for vNerds, and as part of that course I explored the new vSphere 4. 1 feature which allows you to import Hyper-V virtual machines to VMware vSphere. As a robust platform for cloud-based infrastructure, featuring high levels of availability and responsiveness, VMware vSphere offers a great solution for business continuity and disaster recovery. If you’re an IT administrator in the process of migrating your entire organization’s cloud solution from Hyper-V to vSphere, or just parts of it, this article can serve as a practical step-by-step guide for importing Hyper-V virtual machines. What You Need to Prepare The process of migrating a VM from Hyper-V to vSphere isn't hard, but before you can proceed with importing any Hyper-V virtual machine, you’ll need to have the following: vSphere 4. 1 (at least one ESXi or ESX Server) vCenter 4. 1 vCenter Converter 4. 2 installer As of this writing, those are the latest versions of vSphere, vCenter, and vCenter Converter respectively. As mentioned, the ability to import Hyper-V virtual machines is a new feature that comes with vSphere version 4. 1. Since vCenter Converter (which you’ll need in the importation process) is an optional module for VMware vCenter Server, we’re assuming you don’t have it on your vCenter Server yet. That’s why we’ve opted to include a very brief vCenter Converter installation section below. Let’s start with that. Installing vCenter Converter on Your vCenter Server Go to your vCenter Server... --- ### Preventing Automatic Update to IE9 with Internet Explorer 9 Blocker Toolkit > How to block Windows Automatic Update of IE9 with Internet Explorer 9 Blocker Toolkit from Microsoft, in environments where Automatic Updates are enabled. - Published: 2011-03-01 - Modified: 2024-09-04 - URL: https://petri.com/blocker-toolkit-for-ie9/ - Categories: Windows Server - Article Type: How To Tips from Daniel Petri for blocking Windows Automatic Update of Internet Explorer 9. Internet Explorer 9 Blocker Toolkit from Microsoft blocks automatic delivery of IE9 to machines in environments where Automatic Updates are enabled. If you'd previously used the IE7 or IE8 Blocker Toolkit, you will still need to run the IE9 version, as each version of the toolkit uses different registry keys to block or unblock automatic delivery. Microsoft began to (or will shortly begin to, depending on the time you read this article) distribute Windows Internet Explorer 9 as a high-priority update through Automatic Updates for Windows Vista SP2 for x64 and x86, Windows Server 2008 SP2 for x64 and x86, Windows 7 x86 RTM and higher and Windows Server 2008 R2 RTM and higher for x64. However, as with most large corporate environments, IT organizations may want to delay the introduction of a new Web browser until they have tested compatibility with internal applications and sites. Microsoft created a tool called “Internet Explorer 9 Blocker Toolkit” to stop it from updating your desktops without your permission. The toolkit has no expiration date and can be configured either by running the registry file on the client machines, or through Group Policy in domain joined environments. This Blocker Toolkit is intended for organizations that would like to block automatic delivery of Internet Explorer 9 to machines in environments where Automatic Updates is enabled. Note that if you previously used the IE7 Blocker toolkit to block IE7 from installing itself, or the IE8 Blocker toolkit to block IE8, you will still need to run the IE9 version. This is because there are different registry keys used to block or unblock automatic delivery of Internet Explorer 7, Internet Explorer 8 and Internet Explorer 9. Please note: While installation of IE9 may be delayed by administrators, I strongly recommend NOT to leave your machines running the older and... --- ### Cisco Voice Over IP (VoIP) QoS Basics > Basic overview for configuring Quality of Service (QoS) with VoIP, including the high level QoS methods available to achieve quality voice traffic. - Published: 2011-02-23 - Modified: 2011-02-23 - URL: https://petri.com/voip-quality-of-service-basics/ - Categories: Cisco - Article Type: Overview Sean Wilkins covers the basic factors to take into consideration when configuring Quality of Service (QoS) with VoIP, including bandwidth, delay, jitter & loss, and the high level QoS methods available to achieve quality voice traffic. One of the most important things that must be configured in concert with available VoIP solutions is Quality of Service (QoS). Without QoS options properly configured, the quality of voice (and video) could, and probably will be, sacrificed along with the overall demands of general traffic. These options provide a priority channel that is used by the voice traffic so that quality can be maintained while also allowing general traffic flow. This article reviews QoS basics and briefly discusses available QoS options and how they operate to provide quality for voice traffic. Many of these QoS concepts are integral when studying for a Cisco voice certification. QoS concepts are covered on all of the following exams: •  640-461 ICOMMv8. 0 - CCNA Voice https://learningnetwork. cisco. com/community/certifications/voice_ccna/icomm •  642-437 CVOICE v8. 0 - CCNP Voice https://learningnetwork. cisco. com/community/certifications/ccvp/cvoicev8? tab=overview •  350-030 CCIE Voice Written - CCIE Voice https://learningnetwork. cisco. com/community/certifications/ccie_voice/written_exam? tab=1 The Basics There are a number of QoS factors to consider when configuring a modern QoS implementation on Cisco, or any other vendor’s equipment. However, the most basic of these concepts revolves around what QoS is attempting to accomplish. There are four major factors that need to be controlled in order to have a quality VoIP phone call; these include: • Bandwidth – The amount of end-to-end available bandwidth dictates whether a call will work correctly or not. With unlimited constant bandwidth, a voice call can work from end-to-end without much issue; however, bandwidth is rarely unlimited. The codec selected for use over a specific line is... --- ### Exploring Windows Storage Technologies: DAS, NAS and SAN-Based Solutions > Overview of Windows storage technologies including Direct Attached Storage (DAS), Storage Area Networks (SAN) and Network Attached Storage (NAS). - Published: 2011-02-20 - Modified: 2024-09-04 - URL: https://petri.com/das-nas-san-storage-technologies/ - Categories: Backup & Storage - Article Type: Overview Bruce Mackenzie-Low discusses the major storage architectures that can be used in a Windows environment. This article provides an overview of Direct Attached Storage (DAS), Storage Area Networks (SAN) and Network Attached Storage (NAS). This article will explore the major storage architectures including DAS (Direct Attached Storage), NAS (Network Attached Storage) and SAN (Storage Area Networks), discussing their benefits and tradeoffs. Microsoft Windows storage technologies have evolved over the years to take advantage of new offerings from storage vendors.   Internal disk drives have advanced from a few hundred megabytes to over a terabyte.   The traditional IDE drives have been joined by SCSI and SATA hard disks offering a variety of options when configuring Windows storage. When considering the different storage options, you need to keep several things in mind.   First, how much storage capacity will you need?   Will you be able to add additional storage on-demand?   How about data availability – will nightly backups suffice or do you need redundant storage arrays?   And finally, how much are you willing to pay for your storage solutions?   The answers to these questions will help you to decide what Windows storage technology is right for you. DAS (Direct Attached Storage): When Windows servers leave the factory, they can be configured with several storage options.   Most servers will contain 1 or more local disk drives which are installed internal to the server’s cabinet.   These drives are typically used to install the operating system and user applications.   If additional storage is needed for user files or databases, it may be necessary to configure Direct Attached Storage (DAS). DAS is well suited for a small-to-medium sized business where sufficient amounts of storage can be configured at a... --- ### Cisco SMB Wireless Solutions Overview > SMB wireless solutions, including features overview of Cisco’s current access point and wireless router products. - Published: 2011-02-17 - Modified: 2011-02-17 - URL: https://petri.com/smb-wireless-cisco-solutions/ - Categories: Cisco - Article Type: Overview Sean Wilkins covers wireless solutions for small and medium sized businesses (SMB), including features overview of Cisco’s current access point and wireless router products. There are a number of Cisco wireless solutions available to the small and medium sized business (SMB) market. This article reviews the currently available solutions, features and options available to the SMB market. There are two major categories for most wireless devices: wireless access points and wireless routers. Cisco is no different.   They provide different wireless solutions from both of these categories. Wireless access points provide a device that is able to terminate wireless connections from clients and connect them together, and if needed, connect them to other wired devices. Wireless routers are able to provide the same capabilities as the wireless access points and provide a separate interface to be connected to another network, which is typically a connection leading to the Internet. These wireless routers have additional capabilities (with this separate interface) that allow it to perform NAT, security (firewall or IPS), and VPN functionality securely with a public network. Cisco’s SMB products seem to be focused on businesses which have outgrown the standard SOHO routers (think Linksys and Dlink), but still cannot justify the cost of going to an enterprise grade wireless solution. The following sections discuss Cisco’s current access point and wireless router products and features. Access Points There are six major devices which are currently being offered by Cisco under their SMB access point banner. These include: WAP200 WAP200E WET200 (Bridge) WAP2000 WAP4410N AP541N "Pro Line" WAP200 & WAP200E The WAP200 and WAP200E are sister products with the “E” variation being built... --- ### Get Ready - Windows Server 2008 R2 / Windows 7 Service Pack 1 is almost here! > Microsoft has announced the February 2011 availability of Windows Server 2008 R2 and Windows 7 Service Pack 1 (SP1). - Published: 2011-02-15 - Modified: 2011-02-15 - URL: https://petri.com/windows-7-and-server-2008-r2-sp1/ - Categories: Windows Server 2008 - Article Type: News Microsoft has announced the availability of Windows Server 2008 R2 and Windows 7 Service Pack 1 (SP1). Windows Server 2008 R2 SP1 includes previous improvements delivered via Windows Update and addresses feedback from customers. Currently, there are 625 hotfixes and updates. Many of these updates are available to the public on the Microsoft Download Center and Windows Update, while others are only available to specific customers or partners. It is standard practice to include all of these updates in a Service Pack, and as such they are included in Windows 7 and Windows Server 2008 R2 Service Pack 1. After a very super long wait of almost one year, at the beginning of February 2011, Microsoft has announced the availability of Windows Server 2008 R2 and Windows 7 Service Pack 1 (SP1). Windows Server 2008 R2 SP1 includes previous improvements delivered via Windows Update and addresses feedback from customers. Currently, there are 625 hotfixes and updates. Many of these updates are available to the public on the Microsoft Download Center and Windows Update, while others are only available to specific customers or partners.   It is standard practice to include all of these updates in a Service Pack and as such they are included in Windows 7 and Windows Server 2008 R2 Service Pack 1. These changes, spanning several key areas, fall into three categories: Changes to simplify administrative and management tasks Ongoing improvements to overall quality: security, reliability, and performance Support for emerging technologies and standards Two new features in Windows Server SP1, Dynamic Memory and RemoteFX, enable sophisticated desktop virtualization capabilities. These features build on the comprehensive virtualization functionality already included in the Windows Server operating system. I will blog about these features in upcoming articles, so stay tuned. There are additional features and improvements which include Enhancements to scalability and high availability when using DirectAccess, Support for Managed Service Accounts (MSAs) in secure branch office scenarios, Support for increased volume of authentication traffic on domain controllers connected to high-latency networks, Enhancements to Failover Clustering with Storage and Higher Virtual Processor to Logical Processor Ratios... . --- ### Beginning SSIS: How to Create a Basic Data Load Package in SQL Server Integration Services > Step-by-step guide by Jennifer McCown on creating a basic data load package in SQL Server Integration Services. - Published: 2011-02-11 - Modified: 2024-11-19 - URL: https://petri.com/ssis-creating-data-load-package/ - Categories: SQL Server - Article Type: How To Step-by-step guide by Jennifer McCown on creating a basic data load package in SQL Server Integration Services. SSIS is used to extract data from sources such as SQL Server databases, flat files, Excel files, Oracle and DB2 databases, perform data manipulation and transformation, and deliver it to one or more data destinations. SQL Server Integration Services (SSIS) is Microsoft's full feature extract-transform-load (ETL) tool in SQL Server 2005 and beyond.   SSIS is used to extract data from any of a myriad of sources, such as SQL Server databases, flat files, Excel files, Oracle and DB2 databases, etc. It allows you to perform data manipulation and transformation on the data, and deliver it to one or more data destinations. This is the first article in a series on beginning SSIS.   For an introduction to the SSIS development environment - Business Intelligence Development Studio (BIDS) - see Introduction to the SQL Server Integration Services (SSIS) Development Environment. All examples in this series are in SQL Server 2008 and Visual Studio (BIDS) 2008. Create a Package The package we create will pull data from one SQL Server table and push it to another SQL Server table. To accomplish this, we will: Create a new SSIS project. Add a data flow task. Add OLE DB source, and configure the source connection manager and data. Add OLE DB destination, and configure the destination connection manager and data. Specify the source and destination tables and columns. Create a New SSIS Project Create a new Integration Services project in BIDS. In the Solution Explorer, right-click the package and rename it as "BeginningSSIS1. dtsx". A dialogue will ask if you want to rename the package object; click Yes. The new, empty package has four tabs at the top of the development window.   You will use the Control Flow and... --- ### Top 5 VoIP Concepts to Know for CCNA Voice > An overview of the basic concepts of deploying and operating VoIP technologies as they relate to CCNA Voice Certification. - Published: 2011-02-07 - Modified: 2024-09-04 - URL: https://petri.com/voip-basics-ccna-voice-exam/ - Categories: Cisco - Article Type: Overview Sean Wilkins provides an overview of the basic concepts of voice operations as they relate to VoIP implementation and the CCNA Voice Exam. The implementation of Voice over IP (VoIP) has become more common as an organizational alternative to traditional voice services. This article reviews the basic concepts of voice operations, and provides a base of knowledge for deploying and operating these technologies. The CCNA Voice certification provides the candidate an associate level of knowledge in several common voice implementations. These implementations can include devices like IP phones, gateways and gatekeepers, as well as voice concept basics like call control and QoS. The CCNA Voice certification holder holds such titles as Voice Administrator, Voice Technician or Telecom Analyst, and has the ability to administer these types of voice implementations. Sampling & Quantization (PCM) Sampling takes a continuous signal and converts it into a discrete signal; quantization is then used to assign a value representing the sample. The amount of values available depends on the quantization type used; typically, in voice communications, 8-bit quantization is used. The standard codec that is used on voice networks is G. 711 which samples an 8-bit signal (via quantization) at 8000 times a second. Signals are digitally represented by 256 values from -127 (11111111) through 127 (01111111) with the first digit representing value polarity. An example of this is shown in Figure 1. Figure 1 – Sampling and Quantization Example Voice Interfaces (Analog & Digital) Voice interfaces are what connect the voice device to the outside world. When implementing VoIP on modern equipment, it is still necessary in most implementations to utilize... --- ### Changing SQL Server Job Owners with PowerShell > Using PowerShell for changing job owners in bulk in SQL Server, a more efficient choice than SSMS or T-SQL. - Published: 2011-01-26 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-powershell-change-job-owners/ - Categories: SQL Server - Tags: Editor's Pick - Article Type: How To Using PowerShell for changing job owners in SQL Server. Sean McCown demonstrates how PowerShell is a more efficient option than SSMS or T-SQL when changing job owners in bulk. Changing a job owner in SQL Server is relatively easy in SSMS and in T-SQL, but when you need to change it several times, it becomes a bit more involved.   While making the change in T-SQL can be done more quickly than in SSMS, it can also be tricky to code and debug.   This is where PowerShell can make your life much easier. Here we’ll start by right-clicking on ‘Jobs’ in SSMS and choosing ‘Start PowerShell’. You can also get to the same place in PowerShell proper though, so no matter how you get to the ‘Jobs’ node, the rest of the operation will be the same. Let me give you a couple of reasons why you might want to change job owners in bulk.   There are two really common scenarios that you’ll run into.   First, you want to standardize all of your jobs to a single owner (most commonly ‘sa’).   It’s a really good idea to make ‘sa’ the standard for job names because individual users come and go, but ‘sa’ will always be there.   The second scenario is when you do have jobs owned by individual users, and you need to change all the jobs owned by one user to be owned by another user.   Maybe the 1st user left the company or moved to a different job within the company.   Now that I’ve given you a couple of reasons why this could be necessary, let’s continue. Now that PowerShell is open. Let’s start by... --- ### Free Tools for Troubleshooting Windows Storage Performance Problems > Free tools for storage performance monitoring, including Task Manager & Perfmon, which display performance metrics to help identify any I/O bottlenecks. - Published: 2011-01-24 - Modified: 2024-09-04 - URL: https://petri.com/troubleshooting-windows-storage-performance/ - Categories: Backup & Storage - Article Type: Overview Bruce Mackenzie-Low covers free Windows tools for storage performance monitoring, including Task Manager and Perfmon. These tools gather and display performance metrics to help identify any I/O bottlenecks or saturation. Stay tuned for future articles on using other free tools such as PAL and xPerf, to analyze storage performance data. Introduction This article covers free Windows troubleshooting tools for identifying storage performance issues, some of the toughest performance problems to diagnose.   In many cases, a system administrator must be intricately familiar with the underlying storage architecture to effectively troubleshoot storage slowdowns.   Fortunately, there are a variety of free tools that can be used to monitor storage performance metrics to help determine what is causing your storage woes. Task Manager To get a cursory view of the problem, use the Task Manager (Ctrl+Shift+Esc) to select the Processes tab.   Use the View pull-down menu to Select Columns... specifying I/O Reads, I/O Writes, I/O Other, I/O Read Bytes, I/O Write Bytes, and I/O Other Bytes.   These I/O metrics will identify if a particular process is responsible for causing the I/O bottleneck.   Keep in mind that the I/O metrics include both disk and network I/O operations.   As you can see below, the Rtvscan. exe process (real time virus scan) is consuming significantly large amounts of I/O.   While this is typical for a virus scanner to consume large amounts of I/O, they are often blamed for storage performance slowdowns. Perfmon If you need to shed some more light on your storage performance problems, it may be necessary to gather some performance metrics in a log file.   This will allow you to collect the data while the problem is occurring, and then analyze the data with charts and graphs to identify any problem areas.   Windows provides a built-in system tool known as the Performance... --- ### Finding What You Need in PowerShell > Working with cmdlets in PowerShell. Learn about what's available in PowerShell by running help on and searching specific cmdlets. - Published: 2011-01-20 - Modified: 2024-09-04 - URL: https://petri.com/sql-server-powershell-cmdlets-overview/ - Categories: SQL Server - Article Type: How To Sean McCown provides an overview of working with cmdlets in PowerShell. Covers how to run help on cmdlets, and search specific cmdlets to learn what's available in PowerShell, including the use of format-table and get-member to control how resulting information is displayed. In the last article, PowerShell Basics for DBAs, we talked about how PowerShell is organized as a set of drives that are accessible through psdrive. We also talked about cmdlets and how they take parameters. This time we’re talking about help, get-member, and format-table. These are going to be invaluable in your day to day PowerShell work. So let’s go ahead and get started. One of the main ways you’ll learn to work with cmdlets is by using help. If you type help by itself at the prompt you get help about help. However, if you type help followed by a specific cmdlet, you’ll get help about that object like this: >help get-service If you look at the bottom of the above screenshot you’ll see in the ‘Remarks’ section that you can pass parameters to help. Sifting through the examples of each cmdlet is one of the best ways to learn about the different uses and functionality of it. Besides running help on a specific cmdlet, you can also search for cmdlets to learn about what’s available in PowerShell. You can run wildcard searches like this: >help get* This will show you all the cmdlets that start with ‘get’. Format-table Probably the most useful cmdlet for getting output to the screen is format-table. Its meaning should be clear; it tells PowerShell to format the output as a table to the console. Let’s take a look at how this works. Type the following at the prompt: >get-service |... --- ### PowerShell Basics for DBAs > Overview of PowerShell basics - an explanation of how PowerShell is organized and how to get information about the different drives you work with. - Published: 2011-01-17 - Modified: 2024-09-04 - URL: https://petri.com/powershell-basics-for-dbas/ - Categories: SQL Server - Article Type: How To, Overview Overview of PowerShell basics by Sean McCown. PowerShell makes it possible for DBAs to easily manage multiple servers at once, often with very little coding. This article explains how PowerShell is organized, and how to get information about the different drives you work with. As the DB field gets more mature and as DBAs become more seasoned, so do companies. So companies are starting to keep more and more data, which in turn means more and more servers, which in turn means that DBAs can no longer manage things the way they used to. For example, it’s no longer acceptable to run through your morning checklist to make sure that servers are behaving and that backups are ok. This is where PowerShell comes into play. DBAs can now not only manage multiple servers at once, but they can do it very easily with often times very little coding. So let’s get into the basics of PowerShell and see what it’s all about. By the way, if you’d like to know why you should even care about PowerShell, you can read about some of the things it can do for you in my article, Why Should DBAs Care About PowerShell? Familiar concepts PowerShell is easy because it presents you with things as drives. For example, if you wanted to access your C-drive you would use “CD C:” in PowerShell, just the same as you would in DOS. However, if you wanted to access your registry as well, you would also access it like a drive by typing “CD HKLM:” for example. Or if you wanted to access SQL Server via PowerShell, you’d type “CD SQLSERVER:”. So you can see that the concept is very simple... everything can be accessed as a drive... . --- ### Why Should DBAs Care About PowerShell? > Advantages that PowerShell offers to DBAs. Real world examples demonstrating the simplicity of scripting with PowerShell, in contrast to T-SQL and VBScript. - Published: 2011-01-13 - Modified: 2011-01-13 - URL: https://petri.com/powershell-scripting-advantages-for-dbas/ - Categories: SQL Server - Article Type: How To, Overview Why Should DBAs Care About PowerShell? Sean McCown answers this question by demonstrating the simplicity of scripting in PowerShell, in contrast to T-SQL and VBScript, through a variety of real world examples. I teach PowerShell all over the place. I teach it at conferences, in webinars, in user groups, at work, etc. One of the questions I get from DBAs the most is “Why should I care about PowerShell? ” That’s not only a very easy question to answer, but it’s also fun. I’ll admit though that it often makes me feel like an infomercial spokesperson: “How would you like to spend about ¼ of the time administering your servers as you do right now? ” “Are you tired of doing everything one server at a time? ” And stuff like that. It’s true though; these are the reasons you should care about PowerShell. PowerShell isn’t just another scripting language. And in fact I don’t think it’s officially a scripting language at all; it’s a scripting environment. So what makes PowerShell so cool then? Well, let’s look at a couple of examples that will show how much easier it can be to do things in PowerShell. 1. Let’s say you want to get a list of all the tables in your database, along with their row counts and data space used. In T-SQL that’s definitely a cursor with some logic thrown in for good measure. And if you wanted to throw in how much space indexes are using too, that would make it even more involved. The same operation in PowerShell only requires a single line of code: Dir | FT Name, RowCount, DataSpaceUsed, IndexSpaceUsed Doing it even... --- ### License & Activation Management with Volume Activation Management Tool (VAMT) > Christian Mohn provides a walkthrough of Microsoft's Volume Activation Management Tool (VAMT) for license and activation management. - Published: 2011-01-10 - Modified: 2024-09-04 - URL: https://petri.com/volume-activation-management-tool/ - Categories: Windows Server 2008 - Article Type: Overview Christian Mohn provides a walkthrough of Microsoft's Volume Activation Management Tool (VAMT) for license and activation management. In addition to license administration, VAMT allows admins to manage and activate Multiple Activation Key (MAK), Key Management Service (KMS) and retail product keys. What is the Microsoft VAMT? The Volume Activation Management Tool (VAMT) is a free tool from Microsoft that can help administrators perform licensing and activation related tasks from a single viewpoint. VAMT is currently available in version 2. 0, and supports the following products and operating systems: Windows Vista and Windows 7 Windows Server 2008 and Windows Server 2008 R2 Office 2010, Visio 2010 and Project 2010 What can VAMT do? VAMT enables you to manage and activate Multiple Activation Key (MAK) and Key Management Service (KMS), as well as retail product keys. By utilizing Windows Management Instrumentation (WMI), an administrator can perform these tasks remotely over the network. In addition to performing the actual license key assignments and triggering the activation process, VAMT can help administrators with license compliance, letting them monitor licensing states for their systems. Installing VAMT After downloading Volume Activation Management tool (VAMT) from Microsoft. com, the installation is very straightforward. VAMT 2. 0 is a Microsoft Management Console (MMC) snap-in that is available on the Start Menu as soon as the installation is finished. How does VAMT work? The first thing an administrator needs to do when starting to use VAMT is to perform a discovery of the environment. To perform the discovery, start VAMT and find the "Add computers" section of the interface. Click on the "Manually enter name or IP address" drop-down menu to view your discovery options. Choose the desired method for discovery, usually the "Search for computers in Active Directory" provides... --- ### Creating an Enterprise Scripting Template in PowerShell > Step-by-step instructions for building a scripting process in PowerShell which enables each object to be scripted to its own file. - Published: 2011-01-07 - Modified: 2011-01-07 - URL: https://petri.com/powershell-enterprise-scripting-template/ - Categories: PowerShell - Article Type: How To Sean McCown builds upon past 2 PowerShell scripting articles (Scripting Database Objects in PowerShell & Scripting Database Objects with Advanced Options in PowerShell) to discuss how to build a scripting process which enables each object to be scripted to its own file. What we’ve done in the previous articles (Scripting Database Objects in PowerShell and Scripting Database Objects with Advanced Scripting Options in PowerShell) was to set the stage for this final piece that will make everything infinitely more usable.   Don’t get me wrong, those other skills come in handy from time to time and are useful to have.   It’s also useful to have them as a frame of reference to be able to graduate the examples so they’re easier to understand.   So what we’re going to talk about this time is taking everything we’ve learned so far and using it to build a scripting process that’s easier to sustain in the different areas you’re going to need it in.   And I suppose it would be good to start with defining what ‘easier to sustain’ actually means so we’ll know what we’re trying to achieve. In this case, we’re trying to meet some simple criteria: Make it easier to manually recover a single object. Make it easier to automate the recovery of a single object. Make it easier to compare versions of an object from different days. Make it easier to allow users to recover their own objects. Make it easier to recover a specified group of objects. We’ve got this list of 5 basic things that we want to accomplish.   There could easily be some more discrete tasks we might want to perform as well, but I think they’ll all be derivatives of these.   So how are we... --- ### Wireless LAN Technologies Overview > Overview of wireless LAN technologies, by Sean Wilkins, including 802.11 standards variations, channel planning & options for implementing Cisco Access Points. - Published: 2011-01-05 - Modified: 2024-09-04 - URL: https://petri.com/wireless-lan-technologies-overview/ - Categories: Networking - Article Type: Overview Overview of wireless LAN technologies including 802.11 standards variations, channel planning and options for implementing Cisco Access Points. In modern networks, the use of Wireless LAN technologies is becoming more common.   This article will provide an overview of the available wireless LAN technologies, and then discuss the Cisco wireless solution. Wireless LAN Overview There are a number of different wireless LAN technologies available; these different technologies require the wireless implementation engineer to understand an alphabet soup of standards. All of the modern technologies are amendments of the original IEEE 802. 11 standard. The most commonly known of these standards is the 802. 11a, b, g and n amendments. As can be followed by the order in which the amendments are in the alphabet, the 802. 11a and 802. 11b standard were implemented widely first, followed by 802. 11g and then 802. 11n most recently. Each evolution of the standard added different range and speed advantages over the previous options. Table 1 shows a summary of the different 802. 11 standards, their frequencies, bandwidth, and channel options. Frequency Advantages As anyone who has implemented a wireless network has found out, there can be a number of different devices which overlap and operate in the same frequency ranges as used by the wireless LAN. On top of this, the 2. 4 GHz band has a number of available channels which overlap into their neighboring channels. At this time, the 2. 4 GHz band has more devices which contend for, or interfere with those devices trying to use the band. This is compounded by the fact that most of the initial wireless LAN devices used the 802. 11b... --- ### How to Backup Fault Tolerant VMs in vSphere 4 > Step-by-step instructions for backing up Fault Tolerant enabled VMs in vSphere 4, by temporarily disabling FT in order to allow a snapshot to be created. - Published: 2011-01-04 - Modified: 2024-11-19 - URL: https://petri.com/backup-fault-tolerant-vms-vsphere-4/ - Categories: VMware - Tags: Backup, ESXi, Fault Tolerance, FT, Veeam, VMware Data Recovery, vSphere, vsphere4 - Article Type: How To vSphere based backup solutions such as VMware Data Recovery and Veeam Backup and Replication v5 rely on vSphere's snapshot technology to backup live VMs, which excludes Fault Tolerant VMs as they do not allow snapshots. In this article, Tom Finnis explains how to use custom scripts to work around these restrictions and enable regular scheduled backups of Fault Tolerance protected Virtual Machines. A major benefit of deploying VMware's vSphere 4 is the additional options it offers you for business continuity and disaster recovery, such as virtual machine level backups and high availability features. vSphere 4 Essentials Plus, Advanced, and Enterprise editions all include VMware Data Recovery, and a number of third party applications (e. g. Veeam's Backup & Replication v5 , "Best of Show" @ VMworld 2010) provide even more powerful features. A more detailed explanation of the potential of vSphere based DR solutions is beyond the scope of this article, but all the products utilise VM snapshots to enable backing up of live VMs without affecting availability: VMware Data Recovery Snapshot Based Backup Another major feature in vSphere 4 Advanced and higher editions is Fault Tolerance, which is intended to eliminate VM downtime in the event of a host server failure by creating a live shadow instance of the VM on another host and keeping them in "lockstep" synchronisation. The effect is similar to clustering, but since it operates at the hypervisor level it does not require any special features at the VM software level. Again it is beyond the scope of this article to discuss the advantages and disadvantages of this technology, the important thing to note here is that FT enabled VMs cannot be snapshotted. The Problem with Backing Up FT enabled VMs As we have already seen, all the vSphere based VM backup solutions rely on snapshot technology to image live VMs, but Fault Tolerant VMs cannot be snapshotted which therefore... --- ### Scripting Database Objects with Advanced Scripting Options in PowerShell > How-To guide for scripting database objects in PowerShell using SMO for advanced scripting options. - Published: 2010-12-30 - Modified: 2024-09-04 - URL: https://petri.com/powershell-scripting-advanced-options/ - Categories: SQL Server - Article Type: How To Sean McCown takes us beyond the basics of scripting database objects in PowerShell. This article explains how to set advanced scripting options using SMO. In the last article, Scripting Database Objects in PowerShell, I showed you the basics of scripting your database objects so you could schedule it to run anytime you'd like, and run it against multiple servers.   In this article, I’m going to show you how you can set different scripting options by using SMO to pass a parameter to the overload of the script method. Typically when you script database objects in SSMS you use the scripting wizard, which provides you with different options for your scripts.   Here’s a screenshot of the options window from the SQL Server 2008 R2 scripting wizard: Scripting objects in PowerShell would be pretty useless if you couldn’t get the same detailed level of control over your scripts as you can through the wizard though.   And this is where SMO is going to come into play.   In powershell, we’re going to start by loading the SMO provider like this: >::LoadWithPartialName(“Microsoft. SqlServer. Smo”) If you loaded the SMO assembly correctly, you’ll get a confirmation that looks like this: Next, you need to create a new variable and give it the ScriptingOptions type.   To do this you need to create a new object of that type like this: >$so = new-object Microsoft. SqlServer. Management. Smo. ScriptingOptions Now that you’ve got the assembly loaded and a variable created as a ScriptingOptions type, you can begin to use your new variable and set its properties.   We’ll start by simply inspecting the properties.   You can do this by simply typing the name of the variable... --- ### Scripting Database Objects in PowerShell > A guide for scripting database objects in PowerShell to easily script all the objects in your database for as many of your servers as you'd like. - Published: 2010-12-29 - Modified: 2010-12-29 - URL: https://petri.com/scripting-database-objects-in-powershell/ - Categories: SQL Server - Article Type: How To A step-by-step guide covering the basics of scripting database objects in PowerShell by Sean McCown. With PowerShell you can easily script all the objects in your database manually, or schedule the scripting anytime you'd like, and for as many of your servers as you'd like. One of the most important tasks a DBA can perform is to make sure he can recover from unexpected disasters.   And while backup and restore is usually the method chosen for recovery, scripting the database schema can be a very powerful tool.   Quite often a user will drop a stored procedure, or change a view by mistake and you don’t want to restore the entire database just to get back a single piece of code.   The problem is that scripting database objects for a single server is a manual process for the most part and keeping up with schema changes for a single server can be hard enough, but for an entire enterprise it’s nearly impossible.  There are some third party tools that can help, but most of them don’t have command lines that are rich enough to handle such a process.   This is where powershell comes in very nicely.   With powershell you can easily script all the objects in your database manually, or schedule the scripting anytime you'd like.   And you can do it for as many of your servers as you'd like. Let’s start by scripting all the tables in a database.   For our purposes we’re going to connect to a database and navigate to the ‘tables’ node. >cd SQL:\SQLServer\localhost\default\databases\MyDB\Tables Now that we’re connected to the ‘tables’ node we can script all of the objects. Dir | %{$_. Script} It’s just that easy.   Now I’ll go ahead and explain the code.   First you... --- ### Introduction to Indexes in SQL Server > An explanation of indexes in SQL Server, one of the most effective and essential elements to an efficient database system. - Published: 2010-12-27 - Modified: 2024-12-03 - URL: https://petri.com/introduction-to-sql-server-indexes/ - Categories: SQL Server - Article Type: Overview Jennifer McCown covers the basics of indexing in SQL Server, one of the most effective and essential elements to an efficient database system. SQL Server is the engine that allows you to store, modify, and retrieve data. Working with databases is a very different prospect from working with application programs, which tend to perform one (or a few) very small tasks sequentially. Requests to a database server often incur massive retrieval and sort operations under the covers, even when the outcome is a very small result set. In addition to good database design and effective query writing, one of the most effective and essential elements to an efficient database system is indexing. A database index is very much like the index in a book: the book index has an alphabetized list of topics with page numbers to the location of the data. A database index has an ordered list of values (made up of one or more table columns), with pointers to the row in which the value and its corresponding data reside. Without indexes, any query or data modification causes the SQL engine to search the referenced tables from the top down. This is akin to searching for a piece of information in a book by reading it from page 1. A single well-placed index can shorten your query time from dozens of minutes to under a second. There are two kinds of indexes in SQL Server: clustered and nonclustered. A table can only have one clustered index, because the clustered index sorts the rows in the table itself.   Every table in the database should... --- ### How to Create and Edit a Report in SQL Server Reporting Services > Step-by-step instructions for creating, formatting, and exporting reports with SQL Server Reporting Services (SSRS). - Published: 2010-11-24 - Modified: 2024-12-03 - URL: https://petri.com/sql-reporting-services-create-edit-reports/ - Categories: SQL Server - Article Type: How To In this installment of this SQL Server Reporting Services series, Jennifer McCown covers creating, formatting, and exporting SSRS reports. SQL Server 2005, 2008 and 2008 R2 all come packaged with SQL Server Reporting Services (SSRS) - an enterprise-level reporting solution. With SSRS, you can create, schedule, publish, and manage a multitude of reports using a variety of data sources.   In the following sections, we will create, edit, and export a SSRS report manually. If you have not already done so, download and install the free AdventureWorks database, and complete the steps in the article SQL Server Reporting Services: An Introduction. Add an SSRS Report to a Project in BIDS To create a report manually in Business Intelligence Development Studio (BIDS): Open BIDS.   Select File > Open > Project/Solution. Locate and open the previously created Report Server Project. In the Solution Explorer, right-click the Reports folder and select Add > New Item. Select "Report" from the Add New Item window, and name the report (e. g. , "MyReport. rdl"). Click OK. You now have an empty SSRS report open in BIDS. On one side of the screen, you should see tabs for Toolbox and Report Data. If either of these tabs is not visible, select the appropriate tab from the View menu.  The Toolbox tab displays the items available to your report, such as textboxes and tables.   The Report Data tab displays the available data elements, which can include result sets from your data sources, images, and built-in report fields (like "Page Number"). Add a Data Source and Dataset to the Project A data source identifies... --- ### Total Backup Solutions from Hybir > What is 'total backup' and how can Hybir's new technology ensure complete, automated backup for individual files and/or your entire system? - Published: 2010-11-24 - Modified: 2024-11-19 - URL: https://petri.com/total-backup-solutions-from-hybir/ - Categories: Backup & Storage - Article Type: Overview One of the most frustrating situations presented to computer users is the instance when their hard drive fails. They try to access their files and they might even purchase a SATA or IDE to USB attachment to try and get their files off onto another computer. Unfortunately, in many instances, the files are gone and unless you’re willing to pay the exceptionally high prices for data recovery, they’ll be gone for good. You’re taught that you need to backup our computer. A computer backup means that you take the files that are on our hard drive and place them somewhere else—CDs or external hard drives are personal favorites—so that you have them in case our HD crashes. However, it takes time to get them. You have to find the external drive, plug it in, drag the files over, wait for them to finish copying over and then, and only then, can you remove the drive from your computer. More importantly, you have to do that, manually, every time you want to back up. If you have a lot of large files on your computer, it can be an incredible waste of time. Hybir Backup Hybir is referred to as a revolution because a product was created that was entirely different from what was already out there on the web. Never before had anyone seen a complete, total backup offered for the price on Hybir—as little as $60 for the year. It was never possible to do a total backup. Hybir... --- ### How to Configure an iPhone for Microsoft BPOS Exchange Online Email > How to configure an iPhone to connect to your BPOS Exchange account. - Published: 2010-11-15 - Modified: 2024-09-24 - URL: https://petri.com/iphone-configuration-for-bpos-exchange/ - Categories: Cloud Computing - Article Type: How To Microsoft Business Productivity Online Suite (BPOS) works seamlessly with nearly any smartphone. In this article, Aaron Leskiw explains how to connect an iPhone to your BPOS Exchange account. One of the great things about Exchange Online and the Microsoft Business Productivity Online Suite is that it works seamlessly with nearly any Smartphone.   This guide will show you how to connect your iPhone to BPOS. How to Connect an iPhone to BPOS The iPhone 3G, 3GS, or 4 can be used to connect to BPOS as long as it is running iOS 4. 0. 1 or newer. This procedure can also be used for the iPod Touch, with the same iOS requirements. The iPhone only supports a single Exchange Account. If you already have configured your iPhone to connect to an Exchange server, then you'll need to delete your old account settings before you can add your BPOS Exchange account. Note that when you delete an Exchange account, any mail or data on your phone for that account will be removed. To delete your old Exchange settings from your iPhone: 1. On your iPhone, touch the Settings icon, then go to Mail, Contacts, Calendars. . 2. Touch the account that you wish to delete. This will open up the Exchange Account settings window. 3. Touch the Delete Account button. A confirmation box will pop-up - if you're sure you with to proceed then touch the Delete Account button again to confirm. To add a new Exchange connection to BPOS: 1. On your iPhone, touch the Settings icon, then go to Mail, Contacts, Calendars. . 2. Choose Add Account. 3. From the Add Account screen, choose Microsoft Exchange. 4. On the... --- ### Microsoft Office 365: The Next Generation of Cloud-Hosted Exchange, Sharepoint, Office and Lync > Overview of Office 365, the next step forward in Microsoft's cloud computing platform. Includes resources for admins transitioning from BPOS to Office 365. - Published: 2010-11-09 - Modified: 2024-11-19 - URL: https://petri.com/office-365-cloud-hosted-exchange-sharepoint-office-lync/ - Categories: Office - Article Type: Overview Microsoft recently announced Office 365, the next step forward in their cloud computing platform and a significantly enhanced update to the current Business Productivity Online Standard Suite, or BPOS. Aaron Leskiw walks us through the major features of Office 365, including resources for admins transitioning from BPOS to Office 365. Microsoft recently announced Office 365, the next step forward in their cloud computing platform. Office 365 is an update to the current Business Productivity Online Standard Suite, or BPOS. But, this is more than just a new version. Office 365 includes a large number of new features, as well as more flexible licensing that could be very attractive to smaller businesses. Office 365 consists of four key products: - Office Professional Plus - Exchange Online - Sharepoint Online - Lync Online Office Professional Plus One of the new features in Office 365 is Office Web Apps.   Web Apps are “online companions” to the standard Office applications like Word and Excel.   These aren’t full-featured online versions of Office, but rather more like Office-light. Office Web Apps allows you to review and make light edits to documents from your browser. Microsoft has flexible licensing for Office 365.   So, enterprises could optionally purchase licenses for the full Office Professional desktop software as part of the Office 365 bundle. Exchange Online Exchange Online provides a cloud-based, hosted email system using the new Exchange 2010 platform. In addition to providing all of the standard services that you’d expect, like mail and calendars, it also has some great additional features. Users get large 25GB mailboxes, and the ability to archive mail. It supports the new optional conversation view.   It makes it easy to deploy smartphones whether iPhone, Blackberry, Android, or Windows Phones.   It now provides support for voicemail, and can integrate with your... --- ### Outline and Introduction to Exam 70-653: TS: Windows Small Business Server 2008, Configuring > Outline of Microsoft Exam 70-653: TS: Windows Small Business Server 2008, Configuring. Covers guidelines and recommendations for preparing for the exam. - Published: 2010-11-04 - Modified: 2024-11-19 - URL: https://petri.com/exam-70-653-microsoft-certification/ - Categories: Windows Server 2008 - Tags: 70-653, certification, Technology Specialist, training, Windows Small Business Server 2008 - Article Type: Overview Jason Zandri discusses the details of Microsoft Exam 70-653: TS: Windows Small Business Server 2008, Configuring. Listing of required skills and recommended preparations for the exam are covered. Microsoft exam 70-653: TS: Windows Small Business Server 2008, Configuring exam has been available to exam candidates since late 2008 and it is designed for information technology professionals who work in or consult with small businesses that use Windows Small Business Server 2008. There are no real prerequisites for the exam, but the testing candidate should have at least one year of experience deploying and managing interconnected systems in a business environment that has: Up to 75 interconnected devices Company networks with Internet connectivity Individual users or user groups that connect to the company network from remote locations When you take and pass the "Windows Small Business Server 2008, Configuring 70-653 Exam" you earn the "70-653: TS: Windows Small Business Server 2008, Configuration" certification. This certification is a standalone Microsoft Certified Technology Specialist (MCTS) credential; it does not map to any of the larger Microsoft Certified IT Professional (MCITP) certification tracks. Skills Measured for the 70-653 Exam The skills that are measured as part of this exam are as follows: Deploying Hardware and Software for SBS Servers (10%) Install SBS on servers Configure a second server Configure Internet connectivity Configure Microsoft Exchange Configure SBS fax settings Configure the network firewall Migrating to SBS 2008 (16%) Prepare for migration Perform migration Verify migration Deploying Hardware and Software for Computers on the Network (9%) Prepare the computer Join computers to the domain Migrate local data Maintaining Systems and Services Availability (16%) Modify software update settings Customize Windows Server Update Service (WSUS) and... --- ### Moving a Virtual Machine Between Hyper-V Hosts > Guidelines for moving a virtual machine between Hyper-V hosts while minimizing downtime of the VM and limiting effect of other VMs on the virtualization host. - Published: 2010-11-01 - Modified: 2024-12-03 - URL: https://petri.com/move-virtual-machine-between-hyper-v-hosts/ - Categories: Hyper-V, Virtualization - Tags: Editor's Pick - Article Type: Overview Daniel outlines 3 possible solutions for migrating a virtual machine between Hyper-V hosts. He discusses minimizing downtime of the VM and limiting the effect of other VMs on the virtualization host. A virtual machine (or VM) is an entity that is stored on one virtualization host, and that runs an instance of an operating system and uses resources that are presented to it by the virtualization software on that host. In Hyper-V, a VM uses a set of configuration files, and one or more virtual disks (in the format of VHD files). There may come a time when there is a need to move a VM or more between virtualization hosts. I will not go into a debate of why this needs to be done, however, I will just mention that the most common reasons for this would be: To free up a virtualization host for maintenance tasks that may require a reboot To free up resources on the virtualization host To re-arrange VM placement Before moving or migrating a VM from one host to another, one should carefully consider these issues: Is there downtime involved when moving the VM? How long is the downtime? How long does the actual migration take? Is performance of other VMs and the virtualization host and/or network affected by the migration process? While other potential issues may play a key role in the migration planning, the main rule of thumb when moving the VM is as follows. Moving the VM should be as fast as possible, with little or no downtime to the VM, and with a limited effect on the performance of other VMs on that host or on the network... --- ### 10 Tools Every Network Administrator Should Have On Their Thumbdrive > Wesley David outlines some of the best tools and utilities every Network Administrator should have with them at all times. - Published: 2010-10-27 - Modified: 2024-12-03 - URL: https://petri.com/10-things-every-windows-admin-should-have-on-their-thumbdrive/ - Categories: Windows Server 2008 - Tags: Editor's Pick - Article Type: Overview Wesley David outlines some of the best tools and utilities every Network Administrator should have with them at all times. Working as a systems administrator oftentimes requires you to interact with many different computers in a single day. One minute you're dealing with cranky users complaining about slow performance on their PCs and the next minute your soothing badly behaving domain controllers. Having to interact with so many different PCs makes it all the more advantageous to keep a core set of tools with you at all times. Many useful tools can be run from a portable storage device and some have even been specifically designed to run on portable storage devices. The former are what I call "portable compatible" and the latter can be considered "stealthy". That is, some apps can work on a portable device but are likely to add edits to the local registry while "stealthy" apps make no changes to the registry and ostensibly leave no traces behind. With that said, here are 10 things that I believe every Windows Administrator should have on their USB thumbdrives: 1. The Sysinternals Suite As of June 2009 there are 66 tools in the suite. A thorough understanding of each of them is improbable (unless your name is Cogswell or Russinovich), however some of them have more readily understandable uses than others. For instance, Process Explorer allows you to see deeply into each running process, its CPU history, which executable was used to launch the program, where it is and what switches were used when launching. PsExec allows you to run any process on a remote... --- ### Email Coexistence for BPOS and Exchange: Part 3 - Activate Users and Migrate Mailboxes to BPOS > Final part in a 3 part series on setting up email coexistence for BPOS and Exchange. Includes activating users and migrating mailboxes to BPOS. - Published: 2010-10-25 - Modified: 2024-09-04 - URL: https://petri.com/bpos-email-coexistence-setup-part-3/ - Categories: Exchange Server - Article Type: Overview In the last article of a 3 part series, Aaron Leskiw covers the final steps in setting up email coexistence for BPOS and Exchange. This segment includes activating users and then setting up the key tool that makes this all work – the Mailbox Migration tool. Parts I and II of this article explained key concepts of BPOS email coexistence, and how to configure Active-Directory synchronization. To recap, configuring email coexistence with BPOS requires the following steps: Add your own domain to BPOS and enable external relay (Covered in Part I) Verify the domain (Covered in Part I) Verify email traffic flow (Covered in Part II) Enable Active Directory Synchronization (Covered in Part II) Activate migrated users Migrate mailboxes to BPOS Optional steps: Configure SPF and secure the mail flow At this point you should be able to send email between your on-premise Exchange, and a test user on BPOS. You also should have installed the Dirsync tool, and have successfully synchronized your own Active-Directory to BPOS. In this final article of the series, we’ll activate users and then set up the key tool that makes this all work – the Mailbox Migration tool. Step 5: Activate Migrated Users Synchronized user accounts are disabled by default. First step – activate them. Open up the BPOS admin center. Click on the Users tab, then the User List sub-tab. Click on “Disabled User Accounts” from the left-hand task pane. A list of all users synchronized from your domain should appear if synchronization is working correctly. Click on one of the users to open up their properties window, then click the “Activate User Wizard” link. To activate a large number of users at once, simply select them using the checkboxes beside their accounts on the Disabled Users screen. Then,... --- ### Email Coexistence for BPOS and Exchange: Part 2 - How to Synchronize Active Directory with BPOS > How to set up and configure email coexistence for BPOS and Exchange. Includes verifying email traffic flow and enabling Active Directory Synchronization. - Published: 2010-10-20 - Modified: 2024-09-04 - URL: https://petri.com/bpos-email-coexistence-setup-part-2/ - Categories: Exchange Server - Article Type: Overview In the second of a 3 part series, Aaron Leskiw continues to explain the steps in setting up email coexistence for BPOS and Exchange. This article covers verifying email traffic flow and enabling Active Directory Synchronization. Part I of this article series explained how email coexistence with BPOS and your local on-premise exchange system works. We also walked through the first steps to configure this. To recap, configuring email coexistence with BPOS requires the following steps: Add your own domain to BPOS and enable external relay (Covered in Part I) Verify the domain (Covered in Part I) Verify email traffic flow Enable Active Directory Synchronization Activate migrated users Migrate mailboxes to BPOS Optional steps: Configure SPF and secure the mail flow This 2nd installment covers steps 3 and 4: Verify email traffic flow Enable Active-Directory Synchronization Step 3: Verify Email Traffic Flow This step may seem out of order, but it’s actually very important. Before configuring Active-Directory sync, it’s crucial to verify that the two SMTP domains used for coexistence can successfully communicate. As explained in part I of this article series, BPOS makes it look as if all users are using the same SMTP domain, whether using BPOS or your on-premise Exchange. However, behind the scenes it uses two different domains, and some tricky forwarding techniques. So, it’s important to verify that the two domains can talk to each other. For this example we’ll continue to use the sample domain bpostutorials. com, and the BPOS domain bpostutorial. microsoftonline. com. To verify email flow: In your BPOS environment, create a test user with a mailbox in the microsoftonline. com domain. For example, UserOne@bpostutorial. microsoftonline. com Create a test user in your on-premise Exchange environment. For example, UserTwo@bpostutorials. com Log on to the BPOS Outlook... --- ### Installing Windows 7 Service Pack 1 BETA > Installation walkthrough of Windows 7 Service Pack 1 Beta and information on specific changes for both Windows 7 and Windows Server 2008 R2 systems. - Published: 2010-10-11 - Modified: 2024-09-04 - URL: https://petri.com/installing-windows-7-service-pack-1-beta/ - Categories: Windows 7 - Tags: 7, BETA, installation, Service Pack, upgrade, Windows 7, Windows Client, Windows Server 2008 - Article Type: How To In this article, Jason Zandri provides a step-by-step installation walkthrough of Windows 7 SP1 Beta and information on major changes that the service pack provides for both Windows 7 and Windows Server 2008 R2 systems. Introduction to Windows 7 Service Pack 1 BETA and an Installation Walkthrough Microsoft has recently announced that the BETA release for Windows 7 Service Pack 1 for IT professionals and enthusiasts that want to sign up for the public program. You can register for the Service Pack 1 Beta, which will allow you to receive information and updates on new builds and beta expiration dates. Registration is not mandatory and you can opt out of registration and simply download the bit. This article will review some of the information with respect to the BETA release and offer an installation walkthrough. Requirements for the BETA release of Service Pack 1 The system requirements for Service Pack BETA release for Windows 7 are: 1 GHz or faster 32-bit (x86) or 64-bit (x64) processor 1 GB of RAM (32-bit systems) 2 GB RAM (64-bit systems) 16 GB available disk space (32-bit systems) 20 GB available disk space (64-bit systems) DirectX 9 graphics processor with WDDM 1. 0 or higher driver DVD-compatible drive Internet access The BETA release is available for the following languages: English French German Japanese Spanish There are additional prerequisites for the installation of the Windows 7 SP1 BETA. You will need to be running the Release to Manufacturing (RTM) version of Windows 7 or Windows Server 2008 R2 (build 7600). If you are getting your updates through Windows Update/WSUS you must install the Servicing Stack Update (SSU) that handles the installation and removal of software updates, language packs, and optional Windows... --- ### Using Remote Desktop Connection Manager > Step-by-step guide for using Windows Remote Desktop Connection Manager (RDCMan) for performing administration and configuration tasks remotely. - Published: 2010-10-08 - Modified: 2024-09-04 - URL: https://petri.com/remote-desktop-connection-manager/ - Categories: Windows Server 2008 - Article Type: Overview In this article, Daniel explains how to download and use RDCMan (Remote Desktop Connection Manager) to more efficiently manage multiple remote desktop connections. This tool is so cool I thought I'd take the time to tell you all about it. We as IT experts, are usually required to handle the task of performing a lot of administration and configuration tasks on many servers and workstations.   In most cases, these tasks can and should be performed remotely instead of having to actually walk over to that machine. Remote connection mechanisms exist to allow us to perform these tasks. While there are some nice 3rd-party tools such as VNC and its variants, NetOP, Dameware and others, Remote Desktop Connection (also known as RDC) is already built into 99% of Windows systems. Therefore, it is both free to use and provides you with many useful features that are directly related to Terminal Services. It's easy to configure, only requiring the click of a mouse. Furthermore, it's pretty secure. In the most recent versions of Windows, it can be used easily over WAN links by deploying both regular TS-based encryption or connecting through a Terminal Server (Remote Desktop) Gateway by using SSL (similar to what's used when connecting your Outlook client to your Exchange servers with Outlook Anywhere - or RPC over HTTPs). So, we've got the capability to remotely connect to our systems, but what tool shall we use for that task? The built-in RDC client - mstsc. exe - is all we need, and it's already installed by default on all modern versions of Windows. Updates for the client are being made available... --- ### How to Enable IMAP Access to Exchange Mailboxes > Instructions for enabling IMAP support on Exchange Server 2003/2007 including details on configuring IMAP over SSL. - Published: 2010-10-04 - Modified: 2024-09-04 - URL: https://petri.com/how-to-enable-imap-access-to-exchange-mailboxes/ - Categories: Exchange Server - Tags: email, exchange, Exchange Server 2007, IMAP, IMAP4, iPhone, Outlook 2011, SSL, sync - Article Type: How To Virtually every modern email client supports the IMAP protocol. In this article, Microsoft Exchange expert Tom Finnis looks at the main reasons for implementing IMAP support on your Exchange Server and explains how to configure it with Exchange 2003 and 2007. Why use IMAP? At first glance enabling IMAP on your Exchange Server might seem like a backwards step since much of the advanced client functionality that Exchange supports requires a MAPI enabled PIM application, usually Outlook. However, there are a number of scenarios when using an MS Exchange compatible client is not an option, or cannot provide the functionality you require, e. g. : Users with non-Windows systems, such as Macs or Linux based desktops - Although Microsoft's official advice when using Outlook is not an option is to use Outlook Web Access instead, this is not always possible or practical. One obvious drawback of OWA is that it requires a constant connection to the server, which may not be available for a remote Macbook user. Ideally, you want your Mac users to use Entourage, but if this isn't an option then you should consider IMAP. Outlook 2011 on Mac with Exchange 2003 - The new Outlook For Mac 2011 cannot connect to Exchange 2003 as it uses Exchange Web Services, only introduced in Exchange 2007. The only option is to enable IMAP and synchronise the mailbox that way instead. Mobile devices without Exchange Activesync support - Whilst Exchange support is virtually a prerequisite for any "business class" smartphone nowadays, there are still many devices which don't support it but do offer IMAP access. Mobile access to multiple Exchange mailboxes - Virtually all mobile clients (with the notable exception of Apple's IOS4) will only sync with one mailbox, so users cannot check other shared mailboxes... --- ### Replace Default Windows 7/Server 2008 R2 Recovery Environment in Diagnostic and Recovery Toolset Version 6.5 > How to replace the default Windows Recovery Environment with DaRT (Diagnostic and Recovery Toolset) version 6.5. - Published: 2010-10-01 - Modified: 2024-09-04 - URL: https://petri.com/replace-default-windows-recovery-environment-in-dart/ - Categories: Windows 7 - Article Type: How To In this article, Daniel explains how to replace the default Windows Recovery Environment with DaRT version 6.5. Diagnostic and Recovery Toolset (DaRT) is a part of Microsoft Desktop Optimization Pack 2009 R2 and is the new version of Winternals ERD Commander. This guide describes how to replace the default Windows Recovery Environment (RE) with the Diagnostic and Recovery Toolset version 6. 5 (new version of Winternals ERD Commander). Read my "Description of Windows RE" article. Note: Article was written and sent to me by Netanel Ben-Shushan. Thanks Netanel! Microsoft has developed a new version of ERD Commander from Winternals, which Microsoft acquired a while ago. The new version is called Diagnostic and Recovery Toolset, or DaRT for short. DaRT 6. 5 is a part of Microsoft Desktop Optimization Pack 2009 R2 (available to customers with an active Software Assurance license). Microsoft Windows Enterprise: Microsoft Diagnostics and Recovery Toolset http://www. microsoft. com/windows/enterprise/products/mdop/dart. aspx In order to replace Windows RE boot image with DaRT, you'll need to use an account with administrative privileges (member of the local Administrators group at least). It's recommended to replace the default Windows RE within DaRT for getting a wide local troubleshooting toolset, such as LockSmith, for passwords reset, restoration utility, etc. In order to perform the replacement, follows these steps: Preparing the field 1. Open Windows Explorer, click on the ALT key and choose "Folder Options" from the Tools menu. 2. Choose "Show hidden files, folders and drives" and deselect "Hide protected operating system files (Recommended)"and "Hide extensions for known file types". 3. Click "OK". 4. Open C: Drive, right-click Recovery folder. Choose "Properties" from the menu. 5. Select Security tab, and click on "Edit". 6. On the new windows, click on "Add" and find you user account, then... --- ### Support for IPv6 in Windows Server 2008 R2 > In this second installment of hot topics in Windows Server 2008 R2, Matt and Chris discuss IPv6, the new Internet protocol supported in Windows Server 2008 R2. - Published: 2010-09-30 - Modified: 2024-12-03 - URL: https://petri.com/support-for-ipv6-in-windows-server-2008-r2/ - Categories: Windows Server - Article Type: How To In this second installment of hot topics in Windows Server 2008 R2, Matt and Chris discuss IPv6, the new Internet protocol supported in Windows Server 2008 R2. A special video presentation of the hottest features and functionality included in Windows Server 2008 R2, direct from seasoned Microsoft experts Matt Hester and Chris Henley. Enjoy! In this second installment, Matt and Chris discuss IPv6, the new Internet protocol supported in Windows Server 2008 R2. View other segments in this series: Part 1: IIS in Windows Server 2008 R2 Related Resources: Download Windows Server 2008 R2 --- ### Email Coexistence for BPOS and Exchange: Part 1 - Introduction and Verifying Your Domain > Part 1 of 3 in a series on setting up email coexistence for BPOS and Exchange. Includes adding domain to BPOS, enabling external relay and verifying domain. - Published: 2010-09-30 - Modified: 2024-12-03 - URL: https://petri.com/bpos-email-coexistence-setup-part-1/ - Categories: Exchange Server - Article Type: Overview In part 1 of a 3 part series, Aaron Leskiw explains the first steps in setting up email coexistence for BPOS and Exchange. This article covers adding your own domain to BPOS, enabling external relay and verifying your domain. Microsoft’s cloud service, the Business Productivity Online Standard (BPOS) Suite is designed to integrate with your existing on-premise Exchange system. BPOS can host your mail domains in parallel with your own servers.   It also can sync with your own Active-Directory, making it simple to migrate users to BPOS. This is the first article of a three-part series. In this article, we'll look at how Exchange coexistence with the cloud works, and start working through the technical steps to make this happen. What is Email Coexistence? First a definition: email coexistence refers to keeping some of your users on your own on-premise Exchange servers, and migrating other users over to BPOS – but you want all users to have the same SMTP domain. So in the example scenario in this article, all users keep the same user@bpostutorials. com addresses. In our example, some users would use Exchange the traditional way – with a mail client like Outlook pointed at in-house mail servers.   However, some users have been migrated over to BPOS, and their mail client is pointed to cloud servers.  But all users have email addresses in the same domain, and all of them show up in the same Global Address List (GAL), making corporate-wide communication easy. Email coexistence is a great solution, but it is not perfect. There are a few things you should be aware of: This is an either/or scenario – users can’t maintain a mailbox on both systems. Old mailboxes on the on-premise Exchange should be removed as... --- ### Enable Remote Management of Windows Server 2008 R2 Server Core > How to enable remote management of Windows Server 2008 R2 Server Core using SCONFIG and Remote Server Administration Tools (RSAT). - Published: 2010-09-24 - Modified: 2024-09-04 - URL: https://petri.com/2008-r2-server-core-enable-remote-management/ - Categories: Windows Server 2008 - Article Type: How To In this article, Daniel gives step-by-step instructions for enabling remote management of Windows Server 2008 R2 Server Core using SCONFIG and Remote Server Administration Tools (RSAT). As you probably know by now, Windows Server 2008 Server Core installation provides a minimal environment for running specific server roles. This reduces the maintenance and management requirements, as well as the attack surface for those server roles. You can read more about Server Core on this site. One of the challenges of using Server Core is the management aspect. Fortunately, most of the management pain has been solved by usage of local Command Prompt, PowerShell (new to R2 Server core), manually created scripts, 3rd-party graphical user interface tools, and recently in R2, a tool called SCONFIG. Read more about SCONFIG in my Manage Windows Server 2008 R2 Core with SCONFIG article. Server Core is usually intended to be remotely managed. This makes your life easier, as you can manage remote servers and core installations on your Windows 7 workstation, in the comfort of your own office. To do that, you must first make sure that you initially configure the machine with a proper IP address, add it to a domain (if needed) and open the correct Firewall rules and ports. After doing that, you can relax and start using local GUI-based management tools to remotely manage the server, just like you would for any server. So, how do you enable these rules? Read on. The easiest method would be to use the built-in SCONFIG tool. Log in to the core machine, and launch SCONFIG: Assuming that the machine is properly joined to a domain, press 4... --- ### 10 Windows Server 2008 R2 Hot Topics: IIS - Published: 2010-09-23 - Modified: 2024-12-03 - URL: https://petri.com/10-windows-server-2008-r2-hot-topics-iis/ - Categories: Windows Server 2008 - Article Type: Overview A special video presentation and discussion of some of the hottest features and functionality included in Windows Server 2008 R2, direct from seasoned Microsoft experts Matt Hester and Chris Henley. 10 Hot Topics Every IT Admin Needs to Know about Windows Server 2008 R2 - Part 1: IIS A special video presentation and discussion of some of the hottest features and functionality included in Windows Server 2008 R2, direct from seasoned Microsoft experts Matt Hester and Chris Henley. Enjoy! Related Resources: Download Windows Server 2008 R2 Sample Video Excerpt: The following is just a small excerpt of what's in Part 1 of this series video. Good afternoon! Alright, wake up just a little bit. I realize it is 4:30. I think they put Matt and I in this spot because they wanted us to wake you up before your evening was actually over. My name is Chris Henley. This is Matt Hester, my co-presentor, co-worker, co-author and one of my best friends. During the course of the next seventy-five minutes we are going to read every page of the book Matt Hester is showing to you. Five hundred and thirty nine pages from now you will know at least 10 things every IT Pro should know about administration. Unfortunately, we don't have time in seventy five minutes to cover all of those topics. Instead what we’ve done is gone through and picked out what we think are ten of the hottest topics that are out there from the IT world and we will focus on those topics over the course of the next seventy-five minutes. We will also give you some insights as to... --- ### Get the Windows Live Messenger Icon back to the Tray Area in Windows 7 > Great Windows 7 tip on how to remove the Windows Live Messenger Icon from the taskbar, without having to close down the application. - Published: 2010-09-23 - Modified: 2024-09-04 - URL: https://petri.com/windows-live-messenger-and-windows-7-taskbar/ - Categories: Windows 7 - Article Type: How To Another great Windows 7 tip from Daniel as he explains how to remove the Windows Live Messenger Icon from the taskbar without closing down the application. When you run the Windows Live Messenger application in Windows 7, it permanently takes up space on your taskbar. This can be annoying, because the icon takes up precious space on the taskbar, and it cannot be made to go away. Furthermore, if you do close it by clicking on the red X mark, it will close Windows Live Messenger and you will be signed off. Luckily, there's a way around this. Follow me: 1. First, you must find the file location for Windows Live Messenger. We can do so by using the Task Manager. Right-click on an empty spot on the Taskbar and select Start Task Manager. You can also click on CTRL+SHIFT+ESC or use CTRL+ALT+DEL to tart Task Manager. Needless to say, you can skip steps 1 and 2 if you know that location already. 2. Click on the Processes tab and look for msnmsgr. exe. Right-click on it and select Open File Location. 3. Windows Explorer will open to the folder where msnmsgr. exe is located. 4. In the meantime, close Windows Live Messenger. Right-click on the Messenger icon and select Exit. 4. Next, right-click msnmsgr. exe and select Properties. 5. In the Properties window, click on the Compatibility tab. Then click to select Run this program in compatibility mode for:. In the drop-down list select Windows Vista SP2. Click Ok. Next, run Windows Live Messenger. You will still see it in the taskbar, but now it will also have a tray icon. When you minimize it, the Taskbar icon... --- ### Installing System Center Virtual Machine Manager 2008 Configuration Analyzer Update 1 > Virtual Machine Manager 2008 Configuration Analyzer (VMMCA) Update 1 is a diagnostic tool that can be used to evaluate important configuration settings for computers that are serving, or might serve, Virtual Machine Manager (VMM) roles or other VMM functions. - Published: 2010-09-21 - Modified: 2024-09-04 - URL: https://petri.com/installing-vmmca-update-1/ - Categories: System Center - Article Type: How To Detailed instructions for installing Virtual Machine Manager Configuration Analyzer (VMMCA) Update 1, for use with SCVMM2008. This diagnostic tool can be used to evaluate important configuration settings for computers that are serving, or might serve, Virtual Machine Manager (VMM) roles or other VMM functions. Virtual Machine Manager 2008 Configuration Analyzer (VMMCA) Update 1 is a diagnostic tool that you can use to evaluate important configuration settings for computers that are either serving, or might serve, Virtual Machine Manager (VMM) roles or other VMM functions. I recommend to using it whenever SCVMM2008 is planned for installation, on all involved servers and/or computers (when the console is installed separately). When I received this tip from my old friend - Sorin Solomon, I decided to immediately upload it to the site. Thanks Sorin! Note:  this version is intended for use with SCVMM2008 only. For the previous SCVMM2007 version, see here: Download details - VMMCA 2007: http://www. microsoft. com/downloads/details. aspx? FamilyID=ae7c6a09-e8df-4adc-8686-f4d140a3a3f4&displaylang=en The VMMCA tool can be downloaded from Microsoft's site. As a prerequisite, the 64-bit version of Microsoft Baseline Configuration Analyzer needs to be installed prior the installation of this tool. Download details - SC Virtual Machine Manager 2008 Configuration Analyzer Update 1: http://www. microsoft. com/downloads/details. aspx? FamilyID=02d83950-c03d-454e-803b-96d1c1d5be24&displaylang=en Download details - Microsoft Baseline Configuration Analyzer: http://www. microsoft. com/downloads/details. aspx? FamilyId=DB70824D-ABAE-4A92-9AA2-1F43C0FA49B3&displaylang=en 1) MBCA Setup After the two tools are downloaded, start by running MBCASetup64. msi . The following message will appear. Click Next. Accept the EULA and click Next. On the Microsoft Update screen, use the default setting and click Next. You can then install in the default folder or change it as needed. Click Next. The setup program now has all the info it needs. Click Back to review it or change it, or click Install to start the installation. At the end of the installation process, you will get the... --- ### How to Move Database Files in SQL Server: Part 2 > How to move database files in SQL Server with the Detach/Attach method, including the restrictions and implications of detaching a database. - Published: 2010-09-17 - Modified: 2024-12-03 - URL: https://petri.com/move-db-files-in-sql-server-detach-attach/ - Categories: SQL Server - Article Type: How To Sean McCown discusses moving database files in SQL Server with the Detach/Attach method. Includes discussion of restrictions and implications to be aware of when detaching a database. In the first part of this article we showed you the best way to move database files. Now we’re going to show you the other way and briefly discuss a third way, though you’ll never use it... at least you’d better not. Detach/Attach There’s a real difference between taking a database offline and detaching it. Setting a database offline merely changes a value in the sys. databases table in the master database. Detaching a database actually removes the entry for that database, so it stands to reason that re-attaching a database can be a bigger ordeal than just bringing it back online. For starters, there are some restrictions; you can’t detach a database if any of the following conditions exist: Database is a system database Database is being mirrored Database is being published through replication The database has a snapshot You should also be aware that there are implications to detaching a database that you may not be expecting. One of them is that any users that have that database as their default will now be given master as their default. This can have consequences for applications as well as for users that are expecting their database to be set when they log in. Now that we’ve gotten past all the scary stuff, let’s go ahead and look at how to do the same file move we did in part 1, only this time we’ll use the detach/attach method. There are two ways to... --- ### How to Move Database Files in SQL Server: Part 1 > How to move database files in SQL Server by taking the database offline. Overview of what makes this method one of the simplest options with minimal interruption to the server and to the database itself. - Published: 2010-09-16 - Modified: 2010-09-16 - URL: https://petri.com/move-db-files-in-sql-server-taking-db-offline/ - Categories: SQL Server - Article Type: How To Sean McCown discusses moving database files in SQL Server by taking the database offline, in his opinion on the simplest, most flexible, and least invasive method. Moving database files in SQL Server is a very common task. Here we’re going to show you how to do it with minimal interruption to the server and to the database itself. You may recall from our other article on how to plan SQL Server data files, that we talked about the need to separate your data and log files. That’s easy to do if you create the database from scratch, but what if you inherit it? In this case, you’ll need to move the files while they’re on the production server. There are three ways to accomplish this task, but we’re only going to show you two of them. That’s because the third way is just pointless and wasteful so, you’d never actually do it. We’ll mention it anyway, just so you know it’s a method that will achieve your goal (regardless of how ridiculous). Following are the three methods we’re going to talk about, listed in order of preference: Take database offline Detach database Backup/Restore with move Method 1: Take Database Offline This is the simplest, most flexible, and least invasive method. The steps needed to complete this task are easy and don’t necessarily have to be performed in the order we present them. For all of these examples we’ll assume the database name is Mydatabase. Let’s assume you want to move the log file to drive D:\. Open a query window in SQL Server Management Studio (SSMS) and type the... --- ### Using Quick Migration to Migrate a VM Between Hyper-V Hosts > Instructions on using SCVMM to perform Quick Migration when migrating a virtual machine between Hyper-V hosts. - Published: 2010-09-15 - Modified: 2024-09-04 - URL: https://petri.com/migrate-vm-using-quick-migration/ - Categories: Hyper-V - Article Type: Overview Daniel discusses using Windows Server Hyper-V, or Windows Server 2008 with Hyper-V, and the quick migration capability to rapidly migrate a running virtual machine from one physical host system to another with minimal downtime. With quick migration, you can rapidly migrate a running virtual machine from one physical host system to another with minimal downtime. Using Windows Server Hyper-V or Windows Server 2008 with Hyper-V, and the quick migration capability, you can consolidate physical servers while maintaining the availability and flexibility of business-critical services during scheduled maintenance, or quickly restore services after unplanned downtime. In order to use this method you must install System Center Virtual Machine Manager 2008 (preferably R2, and this is the version I will be referring to from now on), and use it to perform the migration. When used on a failover cluster, Quick Migration is an automatic process: For a planned quick migration, the operation saves the state of a running guest VM (memory of original server to disk/shared storage), moves the storage connectivity from one physical host to another, and then restores the guest VM to the second host (disk/shared storage to memory on the new server). When migrating the VM, there will be some downtime for the migrated VM. The length of this downtime is related to the amount of RAM that is configured for the VM and the speed of the network subsystem. In the case of unplanned downtime, the system cannot save the state of the workload and running VM. Instead, the entire VM would be failed over to another host in the cluster, automatically, and there it will be booted from a cold state. Important: You do NOT need to have... --- ### Manually Migrating a VM Between Hyper-V Hosts > Instructions for manually moving a virtual machine between Hyper-V hosts with Hyper-V R2. - Published: 2010-09-10 - Modified: 2024-09-04 - URL: https://petri.com/migrate-vm-manually-between-hyper-v-hosts/ - Categories: Hyper-V - Article Type: How To In this article, Daniel explains how to manually move a virtual machine between Hyper-V hosts, including what considerations need to be made for a manual migration. Manually moving VMs between Hyper-V hosts means that you need to perform a manual (or scripted) export of each VM you wish to migrate, copy the files to the target Hyper-V host, and then import the VM on that host. This process takes time because it requires you to wait until the exporting process is done before you can copy the VHD and other VM files to the target host. Once copied, you need to manually import the VM, which doesn't take as much time as the export operation, but still requires time. In addition, the migrated VM will experience a prolonged downtime, due to the fact that it must be shut down on the original host, exported in the shut down state, copied across the network to the target host, then imported and booted. Note that this article only deals with Hyper-V R2, and not with the RTM version of Hyper-V. Therefore, there may be changes in functionality, and if you're using the RTM version (isn't it time to upgrade already? ), you may find that some of the options listed here are not available to you. Considerations before performing the migration When you want to manually move a virtual machine from one Hyper-V host to another, you must use the "Export" option on the source VM, and then the "Import Virtual Machine" option on the target machine. The are basically 2 things you should do to make this import process go smoothly: Make sure the same... --- ### How to Set Up Custom Domains and Receive Email with Microsoft BPOS > A step-by-step guide for setting up custom domains and email with Microsoft BPOS. - Published: 2010-09-02 - Modified: 2024-09-04 - URL: https://petri.com/bpos-domain-and-email-configuration/ - Categories: Office - Article Type: How To In this article, Aaron outlines the simplest way of getting BPOS up and running. Step-by-step instructions for configuring BPOS as primary mail server for a domain without any data migration and no Exchange co-existence. One of the first tasks for many admins switching to the Microsoft Business Productivity Online Services (BPOS) is to configure email messaging.   This can be accomplished a few different ways, depending on your migration strategy. In this article we’ll walk through the simplest way of getting BPOS up-and-running: configuring BPOS as primary mail server for a domain without any data migration; and no Exchange co-existence. When would this scenario be used? Most likely for one of these reasons: You are setting up a brand new domain with BPOS. You are running a trial evaluation of BPOS with a test domain before committing and migrating users. You’re switching to BPOS from another hosting provider, and have no (or little) mailbox data to migrate. You want to switch to BPOS, but only have a small number of mailboxes, so creating new mailboxes is low-effort. High-Level Summary of the Steps Setting up BPOS as your primary mail server is very easy.   There are only a few tasks involved, and we’ll walk through them step by step. First, a couple of prerequisites. If you haven’t already, sign up for a BPOS trial or pay account. I’m going to assume you can handle this one on your own. Second, log in to the BPOS Admin site with the Administrator ID you just created. The link will be in the welcome email from Microsoft. Third, you’ll need account login information for your domain registrar.   Setting up email involves creating a DNS record with... --- ### Introduction to the SQL Server Integration Services (SSIS) Development Environment > An introduction to SQL Server Integration Services (SSIS), with an emphasis on the SSIS development environment. - Published: 2010-09-01 - Modified: 2024-11-19 - URL: https://petri.com/sql-server-integration-services-introduction/ - Categories: SQL Server - Tags: Editor's Pick, SQL Server Integration Services - Article Type: Overview Jennifer McCown provides an introduction to SQL Server Integration Services (SSIS), with an emphasis on the SSIS development environment. SSIS is Microsoft's full feature extract-transform-load (ETL) tool in SQL Server 2005, 2008, and R2. This article is a bare bones introduction to SQL Server Integration Services (SSIS), with an emphasis on the SSIS development environment. SSIS is Microsoft's full feature extract-transform-load (ETL) tool in SQL Server 2005, 2008, and R2.   SSIS is used to extract data from any of a myriad of sources, such as SQL Server databases, flat files, Excel files, Oracle and DB2 databases, etc. It  performs data manipulation and transformation on the data and delivers it to one or more data destinations. While SSIS is part of the SQL Server suite of tools, and is very adept at handling SQL Server-to-SQL Server ETL operations, it easily handles many other source and destination you have a library for. Potential applications include scrubbing and exporting Excel data for output to network directories, or third party database ETL transformations (e. g. , Oracle-to-Oracle data loads). Let's create a new SSIS package and take a brief look at the major components and features of the SSIS development environment. Visual Studio vs. BIDS The SSIS development environment can be installed during a SQL Server installation or independently, i. e. , you don't have to have the SQL Server engine installed to develop SSIS packages. The SSIS development environment consists of the Business Intelligence Development Studio (BIDS), a full-fledged Visual Studio installation with components specific to SSIS and other elements comprising SQL Server business intelligence. If you already have Visual Studio 2008 installed on your computer, the SSIS installation will install a separate BIDS application and add components... --- ### Secure Active Directory Objects in Windows Server 2008/R2 ADUC > Instructions on using Active Directory Users and Computers (ADUC) in Windows Server 2008/2008 R2 to protect Active Directory objects from accidental deletion. - Published: 2010-08-31 - Modified: 2024-09-04 - URL: https://petri.com/secure-active-directory-objects-windows-server-2008r2/ - Categories: Active Directory (AD) - Article Type: How To Daniel discusses a new option available in Windows Server 2008/2008 R2 designed to protect Active Directory objects from accidental deletion. The option is available for all objects that are manageable through Active Directory Users and Computers (ADUC). Who hasn't heard of "someone" who has accidentally deleted an entire Organizational Unit (OU) in Active Directory? If you're lucky, you've never had to explain a personal human error such as this, but I've heard of many horror stories of people who have accidentally deleted OUs filled with hundreds, and in one case, over 5000 users. It's true that by using a proper backup procedure it is possible to restore these objects. It's also true that you can use manual restore procedures such as the one in my Recovering Deleted Items in Active Directory article. However, I'm sure you'll gladly agree that it's best not to put yourself in that position in the first place. Luckily for us, in Windows Server 2008 and Windows Server 2008 R2, Microsoft has introduced a new option designed to protect Active Directory objects from being accidentally deleted. The option to protect objects from accidental deletion is available for all objects that are manageable through Active Directory Users and Computers (ADUC), and is enabled by default when you create a new OU. Let's see an example. I will create an OU and select the "Protect container from accidental deletion": Next, I will attempt to delete the object: As you can see, I failed to delete the object and received the following error message: So how does this work? By selecting the Protect container from accidental deletion option, an Access Control Entry (ACE) is added to the Access Control List (ACL) on the... --- ### Daniel Petri’s MCSE & System Administrator Interview Questions – Part 8 – Windows Server 2008/R2 Hyper-V and Virtualization > The top technical job interview questions MCSE's and System admins should prepare for; specific to Windows Server 2008/R2 Hyper-V and Virtualization topics. - Published: 2010-08-26 - Modified: 2024-12-03 - URL: https://petri.com/mcse-system-administrator-virtualization-interview-questions/ - Categories: Windows Server - Article Type: Overview Job interview coming up? Daniel continues his series on technical job interview questions for MCSE's and System admins with a focus on Windows Server 2008/R2 Hyper-V and Virtualization topics. This is a part 8 of my MCSE and System Administrator job interview sample questions. See previous parts at: Part 1 – Networking Part 2 - Windows Server 2003 Active Directory Part 3 - Exchange Server 2003 Part 4 - PC Technician Part 5 - Exchange Server 2007/2010 Part 6 - Windows Server 2008/R2 Active Directory Part 7 - Windows Server 2008/R2 TS/RDS Like previous parts, this article set is targeted at both the interviewer (who needs a pool of valid questions they can ask) and to the candidate (who wants a pool of sample questions they can prepare for). Needless to say, both MUST know what they're talking about. Although I consider these questions as a thorough verbal test for the candidate's knowledge, in most cases, when he or she passes this phase I will also ask them to perform an actual hands-on lab based on my written exercises. I might also include these in a future part of this session. I have deliberately left out the answers to these questions. I want YOU to research them and take the time to actually learn these topics if you don't know them already. Most sub topics start off with relatively easy questions where the candidate is supposed to demonstrate their knowledge on that topic. A few sentences will be enough to show their (lack of) knowledge on the topic. As always, your comments and feedback are more than welcome. Use the "Comment" form below to send them... --- ### The Case for Commercial SSL Certificates for Exchange Server 2007/2010 > Reasons to buy SSL SAN certificates for Exchange Server 2007/2010 from a genuine commercial certificate authority. - Published: 2010-08-24 - Modified: 2024-11-19 - URL: https://petri.com/ssl-exchange-certificate-buying-commercial/ - Categories: Exchange Server - Article Type: Overview Purchasing SSL SAN certificates from a genuine commercial certificate authority to use with Exchange Server 2007 and 2010 ensures less administrative effort in implementing and maintaining SSL for Exchange services. Businesses who are implementing Microsoft Exchange Server face important decisions about how they will manage SSL certificates. In the history of Exchange Server there was a time when SSL certificates were optional, but not required by default. Even today there are people who do not consider them mandatory. The use of SSL certificates with Exchange Server rose to importance as more Exchange services became open to the internet. Services such as Outlook Web Access (now Outlook Web App) for webmail, ActiveSync for mobile devices, Outlook Anywhere, and the new Exchange Web Services APIs are now web-facing and play a critical role in business communications. Exchange Server 2007 was the first version to require SSL certificates by default for certain services. It was also the first time many Exchange administrators had encountered SAN certificates. SAN stands for "Subject Alternative Names" and refers to using additional attributes in the SSL certificate to list more than one name for the SSL certificate. This became necessary with the move to SSL by default for Exchange Server 2007, because the server would now be answering to more than one name for SSL connections. This typically includes: The server’s fully qualified domain name One or more public aliases such as "mail. domain. com" or "webmail. domain. com" One or more Exchange Web Services names such as "autodiscover. domain. com" Exchange Server 2010 continues this standard of using SSL by default on end user and server-to-server communications protocols. Because of the default requirement for SSL, each Exchange server is automatically... --- ### Error when Attempting to Remove Windows Server 2008 Server Core from Domain > Resolve Server 2008 R2 Server Core error: "The security database on the server does not have a computer account for this workstation trust relationship" - Published: 2010-08-18 - Modified: 2024-09-04 - URL: https://petri.com/windows-2008-server-core-error/ - Categories: Windows Server 2008 - Article Type: Overview Daniel explains how to resolve Server 2008 R2 Server Core error: "The security database on the server does not have a computer account for this workstation trust relationship" A few days ago I played around with some of my virtual machines and encountered an issue when attempting to remove a Windows Server 2008 R2 Server Core machine from a domain. Because both the core machine and the Domain Controller (DC) machine were virtual machines, when I reverted the DC back to a previous snapshot, the core machine could no longer access resources on the DC, and I couldn't log on to the machine by using the domain admin user account. This is the error I got while attempting to log on by using a domain user account: "The security database on the server does not have a computer account for this workstation trust relationship. " To fix this, I tried to remove the server core machine from the domain. In core, this can be done in one of 2 ways: By using SCONFIG By using NETDOM Since SCONFIG is easier, I used it. I typed SCONFIG in the Command Prompt window, and when SCONFIG opened, I pressed on the "1" key. I then attempted to remove the machine from the domain in order to later re-join it. I entered the right local credentials: But no matter what I did, I got an error: "Failed to join domain. " (Actually, I tried to get out of a domain, but no matter... ) So I tried using NETDOM. In the Command Prompt window I typed the following command: netdom /remove %computername% /domain:petri-labs. local /userd:administrator /passwordd:************ I... --- ### Monitoring Your Database with SQL Profiler > Explains how to use SQL Server Profiler to record of the activity of your database, including ad hoc queries, stored procedure requests, logins, errors & more. - Published: 2010-08-05 - Modified: 2024-11-19 - URL: https://petri.com/monitoring-with-sql-profiler/ - Categories: SQL Server - Article Type: How To SQL Server Profiler is a flexible profiling tool that comes with SQL Server. In this article, Jennifer McCown introduces the tool and details how to begin tracing database activity in your environment. SQL Server Profiler is a flexible profiling tool that comes with SQL Server. Profiler allows you to monitor and capture a record of the activity going on in your database, including ad hoc queries, stored procedure requests, logins, errors, and much more.   Today we will walk through an example of one way to use Profiler as we introduce the tool. Important: When you run Profiler, it puts added strain on your server and network. We advise against running SQL Profiler against your production databases for any length of time during operating hours. If you absolutely need production trace data, please see the Further Reading section below for information on server side traces. Let’s say that we have an application named SOCK that runs against our database SOCKsql, on the SwampTest server.   We’d like to see what T-SQL queries hit the database when a user logs into SOCK. We’ll need to: Start SQL Server Profiler and set up the trace Run the trace while we perform the SOCK application login Stop the trace and examine the captured data Start SQL Server Profiler You can start SQL Profiler from the Start menu, or from within SQL Server Management Studio (SSMS) under the Tools menu. (You can also use Start > Run > Profiler. )  On startup, Profiler will present you with a Connect to Server dialog box; enter the name of the server you wish to trace - and your authentication details - just as you would for... --- ### Configuring Taskbar Alerts & Maintenance Functions in Windows 7 Action Center > Step-by-step instructions on how to configure the Windows 7 alerts you see in the taskbar and built-in security and maintenance functions of Windows 7. - Published: 2010-07-28 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-action-center-security-and-maintenance-functions/ - Categories: Windows 7 - Article Type: How To Jason Zandri goes inside the Windows 7 Action Center and explains how to configure which Windows 7 alerts you see in the taskbar as well as a couple of maintenance and troubleshooting tasks that can be performed. The Windows 7 Action Center is a segment of the Control Panel where you can go to configure and tune which Windows 7 alerts you see in the taskbar. There are a number of different settings that can be configured right from the Action Center main page as well as a couple of maintenance and troubleshooting tasks that can be performed. Getting to the Action Center When you go to the Control Panel you might not see the Action Center because you are viewing it in category view as shown below. You can adjust the view to Large Icons (or Small Icons) in order to see each of the items in their own independent view which will allow you to select the Action Center as show below Alternatively, you can just go to the Windows Pearl (Windows "Start") and type in the Search Programs and Files box "Action" and you'll be presented with the Action Center option. Once you have the Action Center open you can review recent messages that are being held for your review as well as dealing with some maintenance items that may be shown for your system. Action Center Security If you have security notifications such as those shown in the image above with the "yellow" warning color, you have the option to change the settings by clicking the Change settings button or by using the down arrow to expand the review pane. When you do this you'll see the list of options... --- ### How to Remove Libraries & Favorites from Windows Explorer in Server 2008 R2 & Windows 7 > Instructions on how to edit the registry setting in Windows 7 in order to remove the favorites and libraries folders in the default view of Windows Explorer. - Published: 2010-07-21 - Modified: 2024-09-04 - URL: https://petri.com/remove-libraries-and-favorites-from-windows-explorer/ - Categories: Windows 7 - Article Type: How To Daniel shows readers how to edit the registry settings in Windows 7 so as to remove the Libraries and Favorites folders from Windows Explorer. Ever since Windows Server 2008 R2 and Windows 7 were released, there is one thing that personally annoys me in the default view in Windows Explorer (well, there is more than one thing, but let's start with this one first... ). When you open Windows Explorer by double-clicking on the Computer icon, or by pressing the Windows Logo key + "E", you see this default view: Personally, this default view drives me nuts. So much space is taken away by the Favorites and the Libraries! Why? Who needs these anyway? What we do need, is a proper way to navigate through our local, network, and removable disks. In my opinion, by adopting this view in Windows Server 2008 R2 and Windows 7, Microsoft is moving towards the "users are dumb, they don't need to see their drives, they need to see what we show them" attitude. I don't like it. So, first of all, let's remove the Favorites and the Libraries from the default Explorer view. By default, Windows Server 2008 R2 and Windows 7 do not provide Group Policy settings to disable or turn off Favorites and Libraries feature in Explorer, so you need to modify some registry key to hide them. Note: This tweak will only remove them from the Explorer view, it will NOT disable them totally. To do so, follow these steps: Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause... --- ### Prepare your Domain for the Windows Server 2008 R2 Domain Controller > Prior to installing the 1st Windows Server 2008 DC on an existing Windows 2000, Windows Server 2003/2008 domain, the domain must be prepared using ADPREP. - Published: 2010-07-19 - Modified: 2024-11-19 - URL: https://petri.com/prepare-for-server-2008-r2-domain-controller/ - Categories: Active Directory (AD) - Article Type: How To ADPREP is a necessary tool used to prepare a forest and domain prior to installing a domain controller on a Windows Server 2008. Daniel takes users through the steps needed to run this valuable tool. Before installing the first Windows Server 2008 R2 domain controller (DC) into an existing Windows 2000, Windows Server 2003 or Windows Server 2008 domain, you must prepare the AD forest and domain. You do so by running a tool called ADPREP. ADPREP extends the Active Directory schema and updates permissions as necessary to prepare a forest and domain for a domain controller that runs the Windows Server 2008 R2 operating system. Note: You may remember that ADPREP was used on previous operating systems such as Windows Server 2003, Windows Server 2003 R2 and Windows Server 2008. This article focuses on Windows Server 2008 R2. What does ADPREP do? ADPREP has parameters that perform a variety of operations that help prepare an existing Active Directory environment for a domain controller that runs Windows Server 2008 R2. Not all versions of ADPREP perform the same operations, but generally the different types of operations that ADPREP can perform include the following: Updating the Active Directory schema Updating security descriptors Modifying access control lists (ACLs) on Active Directory objects and on files in the SYSVOL shared folder Creating new objects, as needed Creating new containers, as needed To prepare the forest and domain for the installation of the first Windows Server 2008 R2 domain controller please perform these tasks: Lamer note: The following tasks are required ONLY before adding the first Windows Server 2008 R2 domain controller. If you plan on simply joining a Windows Server 2008 R2 Server to the... --- ### Enabling Remote Management in Windows Server 2008 R2 > How to use the built-in Windows Server Manger in Server 2008 R2 to remotely manage via server to server, server to server core & client to server scenarios. - Published: 2010-07-08 - Modified: 2024-12-03 - URL: https://petri.com/remote-management-in-windows-server-2008-r2/ - Categories: Windows Server 2008 - Article Type: How To In this article, Daniel explains a handy new feature of Windows Server 2008 R2, which allows for remote management from another server or from a Windows 7 workstation, by using Server Manager. Windows Server 2008 R2, unlike Windows Server 2008 RTM, has a nice feature that allows you to remotely manage it, from another server or from a Windows 7 workstation, by using Server Manager. Note: Windows Server 2008 RTM also has remote management capabilities. You can easily manage these servers by using almost any MMC Snap-In. However, the fact that you can use Server Manager to do it is new in R2. This is useful when using both regular-type installations, and Server Core installations. Read more about Server Core on the site. By using Server Manager to remotely manage Windows Server 2008 R2 servers, you can manage the following scenarios: Server to server - Server Manager on a full installation of Windows Server 2008 R2 can be used to manage roles and features that are installed on another server that is running Windows Server 2008 R2. Server to Server Core - Server Manager on a full installation of Windows Server 2008 R2 can be used to manage roles and features that are installed on a Server Core installation of Windows Server 2008 R2. Client to server - Server Manager is installed as part of Remote Server Administration Tools on a computer that is running Windows 7. This can be used to manage roles and features on a computer that is running either the full or Server Core installations of Windows Server 2008 R2. To install Server Manager on a Windows 7 machine you will need to install the... --- ### Fix "RPC Server is Unavailable" Error in Windows Server 2008 R2 Remote Disk Management > Detailed steps to fixing the "RPC Server is Unavailable" error when attempting to connect to a remote server in Windows Server 2008 R2. - Published: 2010-07-08 - Modified: 2024-09-04 - URL: https://petri.com/rpc-server-is-unavailable-error/ - Categories: Windows Server 2008 - Article Type: How To Daniel outlines the important steps needed to remotely manage disks on a Windows Server 2008 R2 machine so as to avoid a "RPC Server is Unavailable" error. One of the coolest features of the Windows Server 2008 R2 Server Manager application, is the fact that you can now remotely connect to a server running Windows Server 2008 R2, and manage roles, features, services, disks and other aspects of the remote server. This was not possible in Windows Server 2008. The steps needed to enable remote management are listed in my Enabling Remote Management in Windows Server 2008 R2 article. A few days ago I was asked by one of my readers about a strange error he was getting. It seems that whenever they tried to connect to a remote server and use the Disk Management snap-in, they got this error: Virtual Disk Manager The RPC server is unavailable And this is what it looks like: Searching Google for an answer brought a few results, but I thought I'd list it here for my other readers, as it seems that the configuration steps that are needed in order to get remote disk management going are a bit vague. In order to remotely manage disks on a Windows Server 2008 R2 machine, you need to perform the following tasks: Target Server On the target server (the one you want to connect to) you need to set the Virtual Disk Service (VDS) to Automatic, and start it. Open a Command Prompt window and type the following command: sc config vds start= auto Next, type: net start vds BTW, this can also be done through the Services snap-in... --- ### String Data Types in SQL Server: VARCHAR vs. CHAR > SQL Server Basics: How to choose proper string data types, when to use CHAR instead of VARCHAR, and why it's important for your database. - Published: 2010-06-29 - Modified: 2025-01-15 - URL: https://petri.com/sql-server-string-data-types/ - Categories: SQL Server - Tags: Editor's Pick - Article Type: How To, Overview Your database is made of data; data is defined by data types. Data types are so fundamental yet they're often overlooked. In this article, Jennifer McCown answers a few of the most common questions on VARCHAR, CHAR and choosing string data types for your database. Your database is made of data; data is defined by data types. SQL Server data types are so fundamental that they're often overlooked, but here are a few very common questions, and their answers. Can I just use VARCHAR for everything? The short answer is: No. Sure, VARCHAR is very flexible and will accept most kinds of data. But using VARCHAR for everything robs your database of critical functionality, data consistency, and performance. Let's take the example of storing date data in a VARCHAR column.  We've instantly lost functionality, because we can't easily add, subtract, or compare our date data. If we use one of the date data types (e. g. , DATETIME, SMALLDATE, etc. ) then we have a host of system functions like DATEADD and DATEPART. Another problem with storing date data in a VARCHAR is that we have no built-in format control.   Our system will now readily accept all of the following as "valid" date data: February 1, 2010 eFbruary 1, 2010 Feb 1 2010 Star date 002. 1. 2010. 304 2-1-2010 2-1-2010 3:03pm 02012010 020110 February 31, 2010 We want to unify and enforce the date format in the database, so we can easily seek out date errors (like February 31) and compare date, for example:  SELECT columns FROM table1 WHERE myDate > '1/1/2010'. We run into the same issues no matter what non-string type we try to store in VARCHAR. What's the difference between CHAR and VARCHAR? The short answer is: VARCHAR is variable length, while CHAR is fixed length. CHAR... --- ### Exchange, SharePoint & Live Meeting in the Cloud: Microsoft Business Productivity Online Suite (BPOS) > Explains what's really included in Microsoft's Business Productivity Online Suite (BPOS) and how it compares to other hosted Exchange and SharePoint providers. - Published: 2010-06-29 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-bpos-hosted-services-review/ - Categories: Office - Article Type: Overview Hosted services have been around for a long time. But, it’s only recently that Microsoft has waded into the fray with their own flavor of hosted cloud software: the Business Productivity Online Standard Suite (BPOS). But does it stack up to the competition? Many companies are still struggling financially, forcing them to look for ways to cut costs and shave expenses from their balance sheets.   Unfortunately for many of us working in IT, technology is usually seen as a cost-center meaning that our departments come under the knife. But the paradox is that businesses often don’t want to sacrifice service quality, and don’t want to accept risks associated with cost cutting – like risk of increased downtime caused by aging hardware. As a result, many IT managers are looking toward hosted and cloud solutions to help them out of a bind.   Hosted cloud services for something like Exchange offer potential to save large amounts of capital dollars that would otherwise be spent on expensive servers and software. Instead, the cost is shifted into monthly operating fees, allowing capital investments to be re-allocated to other areas. Hosted services have been around for a long time. But, it’s only recently that Microsoft seems to have realized that a number of companies are making a nice profit by using Exchange to offer hosted email. In response, Microsoft has waded into the fray with their own flavor of hosted cloud software: the Business Productivity Online Standard Suite (BPOS).   This is much more than just Exchange though.   BPOS consists of four core services: Exchange Online Exchange Online is the heart of BPOS, providing email, contacts, and calendars. Microsoft has made great steps toward making it easy for businesses of all sizes to use BPOS.   It will integrate with... --- ### Daniel Petri’s MCSE & System Administrator Interview Questions – Part 7 – Windows Server 2008 R2 TS/RDS > The questions interviewers need to ask and candidates should prepare for in an MCSE or system administrator job interview. Part 7: Windows Server 2008/R2 TS/RDS - Published: 2010-06-28 - Modified: 2024-12-03 - URL: https://petri.com/mcse-system-administrator-windows-server-2008-r2-ts-rds-interview-questions/ - Categories: Windows Server - Article Type: Overview Daniel compiles the key questions interviewers need to ask and candidates should prepare for in an MCSE or system administrator job interview. In part 7 of this series, Daniel specifically covers Windows Server 2008/R2 TS/RDS questions. his is a part 7 of my MCSE and System Administrator job interview sample questions. See previous parts at: Part 1 – Networking Part 2 - Windows Server 2003 Active Directory Part 3 - Exchange Server 2003 Part 4 - PC Technician Part 5 - Exchange Server 2007/2010 Part 6 - Windows Server 2008/R2 Active Directory Like previous parts, this article set is targeted at both the interviewer (who needs a pool of valid questions they can ask) and to the candidate (who wants a pool of sample questions they can prepare for). Needless to say, both MUST know what they're talking about. Also, although I consider these questions as a thorough verbal test for the candidate's knowledge, in most cases, when he or she passes this phase, I will also ask them to perform an actual hands-on lab based on my written exercises. I might also include these in a future part of this session. I have deliberately left out the answers to these questions. I want YOU to research them and take the time to actually learn these topics, if you don't know them already. Most sub topics start off with relatively easy questions where the candidate is supposed to demonstrate their knowledge on that topic. A few sentences will be enough to show their (lack of) knowledge on the topic. As always, your comments and feedback are more than welcome. Use the "Comment" form below to send them in. If you're using this interview... --- ### Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 5 – Exchange Server 2007/2010 > The questions interviewers need to ask and candidates should prepare for in an MCSE or system administrator job interview. Part 5: Exchange Server 2007/2010 - Published: 2010-06-28 - Modified: 2010-06-28 - URL: https://petri.com/mcse-system-administrator-exchange-server-2007-2010-interview-questions/ - Categories: Exchange Server - Article Type: Overview Daniel compiles the key questions interviewers need to ask and candidates should prepare for in an MCSE or system administrator job interview. In part 5 of his series, Daniel specifically covers off Exchange Server 2007/2010 interview questions. After a long delay please welcome my 5th part of my MCSE and System Administrator job interview sample questions article series. See previous parts at: Part 1 – Networking Part 2 - Windows Server 2003 Active Directory Part 3 - Exchange Server 2003 Part 4 - PC Technician This article set is targeted at both the interviewer (who needs a pool of valid questions they can ask) and to the candidate (who wants a pool of sample questions they can prepare for). Needless to say, both MUST know what they're talking about. Also, although I consider these questions as a thorough verbal test for the candidate's knowledge, in most cases, when he or she passes this phase, I will also ask them to perform an actual hands-on lab based on my written exercises. I might also include these in a future part of this session. I have deliberately left out the answers to these questions. I want YOU to research them and take the time to actually learn these topics, if you don't know them already. Most sub topics start off with relatively easy questions where the candidate is supposed to demonstrate their knowledge on that topic. A few sentences will be enough to show their (lack of) knowledge on the topic. As always, your comments and feedback are more than welcome. Use the "Comment" form below to send them in. If you're using this interview question sample in your own environment please drop me a line... --- ### Daniel Petri’s MCSE & System Administrator Interview Questions – Part 6 – Windows Server 2008/R2 Active Directory - Published: 2010-06-28 - Modified: 2010-06-28 - URL: https://petri.com/mcse-system-administrator-windows-server-2008-r2-active-directory-interview-questions/ - Categories: Windows Server - Article Type: Overview This is a part 6 of my MCSE and System Administrator job interview sample questions See previous parts at: Part 1 – Networking Part 2 - Windows Server 2003 Active Directory Part 3 - Exchange Server 2003 Part 4 - PC Technician Part 5 - Exchange Server 2007/2010 Like previous parts, this article set is targeted at both the interviewer (who needs a pool of valid questions they can ask) and to the candidate (who wants a pool of sample questions they can prepare for). Needless to say, both MUST know what they're talking about. Also, although I consider these questions as a thorough verbal test for the candidate's knowledge, in most cases, when he or she passes this phase, I will also ask them to perform an actual hands-on lab based on my written exercises. I might also include these in a future part of this session. I have deliberately left out the answers to these questions. I want YOU to research them and take the time to actually learn these topics, if you don't know them already. Most sub topics start off with relatively easy questions where the candidate is supposed to demonstrate their knowledge on that topic. A few sentences will be enough to show their (lack of) knowledge on the topic. As always, your comments and feedback are more than welcome. Use the "Comment" form below to send them in. If you're using this interview question sample in your own environment please drop... --- ### Introduction to the DoD / TCP/IP Model > A review of the TCP/IP / DoD Model as it relates to the CCNA & Network+ exams with a breakdown of the Four Layers in the model. - Published: 2010-06-25 - Modified: 2010-06-25 - URL: https://petri.com/introduction-to-the-dod-tcpip-model/ - Categories: Networking - Article Type: Overview A review of the TCP/IP/DOD Model as it relates to the CCNA & Network+ exams. Also provides a breakdown of the Four Layers of the TCP/IP Model and some of the protocols that are in use at each of the Layers. The TCP/IP model, sometimes referred to as the Department of Defense (DoD) Model, is a four-Layer model that was developed in the early 1970s for the Defense Advanced Research Projects Agency (DARPA) internetwork project that eventually grew into the modern day Internet. This article will be a brief overview of the model itself and the tie in to the Cisco Certified Network Associate Routing & Switching exam (640-802 CCNA), as well as the Network+ exam. Tie in to the CCNA and Network+ exams Both the 640-802 CCNA exam and the Network+ exam test for some of the common knowledge of the DOD / TCP/IP Model. For the CCNA 640-802 exam this information is tested as part of the "Describe how a network works" domain as part of the following subtopics: Use the OSI and TCP/IP models and their associated protocols to explain how data flows in a network Describe the purpose and basic operation of the protocols in the OSI and TCP models Select the components required to meet a network specification Beyond this domain and the subtopics you'll need a good, general understanding of the model across some of the other domains as well but this is the primary area of focus. For the Network+ exam most of your need of this material will be a part of domain 4. 0 - Network Management. Having said that, there are secondary needs for knowing the information peppered throughout the exam in other domains. A couple of examples are... --- ### Defrag Windows 7 Quickly and Easily > Want to know how to defragment windows 7? Learn how to defrag Windows 7 using Auslogic Disk Defrag or Windows built-in tools. - Published: 2010-06-23 - Modified: 2024-09-04 - URL: https://petri.com/defragmenting-partitions-in-windows-7/ - Categories: Windows 7 - Article Type: How To Although there are many different tools that one can use to defrag a partition or hard disk in Windows 7, Daniel outlines 2 for our readers: a built in tool and a free 3rd party tool, Auslogic Disk Defrag. When you make frequent writes and deletions from your hard disk, your disks will become fragmented with time. Fragmentation means that files are not consistent and not contiguous, and thus fragmentation of the disks will result in lower I/O performance. While in NTFS performance degradation is a lot lower than it was in FAT or FAT32 partitions, in order to prevent loss of performance over time, it is best to perform routine defragmentations of your partitions and hard disks.  The following article will teach you how to defrag windows 7 in a few short steps. There are several methods of performing defragmentations of partitions and hard disks. In this article I will list two of them. Method #1 – Using the Built-In Windows 7 Defrag Tool First, let me cover the internal Windows 7 tool that allows you to defrag windows 7 hard disks. This tool is a lot better than the one available in Windows Vista (at least in its design and in the way it works) but the built-in tool lacks many user options and that is why I offer Method #2, below. To run the Windows 7 built-in defragmenting tool follow these steps: Open Windows Explorer. Right-click the desired partition and select Properties. In the Tools tab, click on Defragment Now. Note: Since Windows Vista, the defrag tool is no longer available as an MMC snap-in. BTW, you can reach the defrag tool by typing dfrgui in the Start menu search box. The Disk Defragmenter tool... --- ### Creating a Partition During Windows 7 Installation > How to properly configure the partition's size during a Windows 7 custom install. - Published: 2010-06-15 - Modified: 2024-12-03 - URL: https://petri.com/creating-a-partition-during-windows-7-installation/ - Categories: Windows 7 - Article Type: How To Daniels explains the importance of properly configuring the partition's size during a fresh install of Windows 7. During the installation of Windows 7, you must choose a partition on which to install the operating system. Reading Microsoft's recommendations, you must make this partition at least 16GB in size. However, this is a minimal size and should not be used as the recommended size. As you know by now, the system partition (meaning the partition on which the operating system is installed on) is a place that just begs for more space as time goes by. Hotfixes, Patches, Service Packs, installed applications such as Microsoft Office and many others - all consume a lot of space on that partition. The more it is used, the more space will be consumed by these apps. That is why it is strongly recommended to properly configure the partition's size. While it is possible to extend this partition (if un-used space is available on the hard disk - read my "Extending the System Partition in Windows 7" article), it is best to plan in advance. As a rule of thumb, I personally give that partition at least 40 GB of space, and when using more than one hard disk on the computer, I give it as much as 100 GB. Just in case. Anyway, while it is possible to extend that partition later, even after installation of the OS, it is best to plan accordingly and create the right partition size during the installation process. Read my article on how to install Windows 7 for more information. Starting a... --- ### Shrinking the System Partition in Windows 7 > Step by step guide on how to shrink the system partition in Windows 7 by using the extend feature in Disk Management, or using the DISKPART command line executable. - Published: 2010-06-15 - Modified: 2024-09-04 - URL: https://petri.com/shrink-system-partition-in-windows-7/ - Categories: Windows 7 - Article Type: How To Daniel outlines the 2 methods to shrinking the system partition in Windows 7. As you know by now, the system partition (meaning the partition on which the operating system is installed on) is a place that just begs for more space as time goes by. In most cases, proper design before the installation of the operating system will prevent you from having to extend that system partition (read more about it in my article on how to extend the system partition in Windows 7 ). However, in some rare cases, there is a need to shrink the system partition and make room on the disk for something else, perhaps a new partition that could be used to store personal files, the pagefile or whatever. Previous Microsoft operating systems had some internal mechanism to shrink partitions. But there were limitations on these operations. Some 3rd-party applications could (and still can) be used to extend partitions, but in this article, like the one mentioned above, we want to focus on internal tools. Windows 7 allows for an easy, out-of-the-box, method of shrinking partitions (any partition, including the system partition) and making them smaller. Like when extending a partition, shrinking a partition is done by using the Extend feature in Disk Management, or in the DISKPART command line executable. Note: When you shrink a partition, all data on the existing partition will NOT be erased, but it's better to be safe than sorry, therefore I always recommend using a good backup procedure to back up your data, just in case. Note: While this... --- ### Extending the System Partition in Windows 7 > A detailed description of the 2 internal methods for extending the system partition in Windows 7. - Published: 2010-06-15 - Modified: 2024-12-03 - URL: https://petri.com/extending-the-system-partition-in-windows-7/ - Categories: Windows 7 - Article Type: How To Overtime, a computer's system partition may need to be re-sized as applications consume more and more space. Daniel outlines the 2 internal methods available to extend the system partition in Windows 7. As you know by now, the system partition (meaning the partition on which the operating system is installed on) is a place that just begs for more space as time goes by. Hotfixes, Patches, Service Packs, installed applications such as Microsoft Office and many others - all consume a lot of space on that partition. The more it is used, the more space will be consumed by these apps. Previous Microsoft operating systems had some internal mechanism to extend or expand partitions. But there were limitations on these operations, such as having the need for the disks to be configured as Dynamic Disks, and the fact that for a long period of time you could extend any partition as long as it's not the system partition. Some 3rd-party applications could (and still can) be used to extend partitions, but in this article we want to focus on internal tools. Unlike previous Microsoft operating systems, Windows 7 now allows for an easy, out-of-the-box method of expanding those partitions and making them larger, while reliving us of these previous limitations. Note: Of course, extending a partition requires one thing, and if you don't have it, there's no point in talking or thinking about extending any partition. That thing is "Free, unused space on the hard disk where the partition exists". You cannot extend a partition, any partition, if you've got nowhere to extend it to... Extending a partition is done by using the Extend feature in Disk Management, or... --- ### Get Back Quick Launch in Windows 7 > Detailed instruction on how to enable the Quick Launch toolbar in Windows 7 - Published: 2010-06-14 - Modified: 2024-09-04 - URL: https://petri.com/get-back-quick-launch-in-windows-7/ - Categories: Windows 7 - Article Type: How To Daniel details the steps needed to get the Quick Launch toolbar back in Windows 7. As you all probably know by now, in Windows 7, Microsoft has done away with both the Classic Start menu and what we know as the Quick Launch bar. Getting the classic menu back in Windows Vista was possible, but in Windows 7, Microsoft no longer lets us change the default settings back to Classic (you can use 3rd-party tools to do it - Read my Get Back the Classic Start Menu in Windows 7 article for more info). Anyway, Start menu is one thing, but the Quick Launch toolbar is another. In previous Microsoft-based operating systems, the Quick Launch was always there, allowing you to easily open applications, but most importantly - to add your own apps as shortcuts. True, in Windows 7, the taskbar has evolved into something more potent than the "simple" Quick Launch toolbar. In Windows 7, apps are now pinned to the taskbar, allowing you to do much more than you could be able to with Quick Launch. For example, you can quickly get a graphic preview of what's happening in each minimized app, even see movie thumbnails. You can also pin apps to the taskbar, and have them show you the latest documents or files that you used with these apps. But I've gotten man e-mails from my readers asking how it could be possible to get the Quick Launch toolbar back, and I've decided to investigate this. It turns out that quite a few people are not so easily taken... --- ### Gaining Exclusive Access to a SQL Server Database > Learn how to gain exclusive access to a SQL Server database so you can safely perform operations like taking it offline, restoring etc. - Published: 2010-06-11 - Modified: 2010-06-11 - URL: https://petri.com/gaining-exclusive-access-to-a-sql-server-database/ - Categories: SQL Server - Article Type: How To This is one of those database topics that sounds really easy on its face but can be tricky in practice. The issue is how to gain exclusive access to a database so you can perform operations like taking it offline, etc. MVP Sean McCown explains what's involved and the benefits of each method. This is one of those database topics that sounds really easy on its face but can be tricky in practice.   The issue is how to gain exclusive access to a database so you can perform operations like taking it offline, etc.   Unfortunately it’s not as easy as the documentation (BOL-Books Online) tries to make it sound and depending on what you’re trying to do it can actually be quite difficult. Like we said, you may choose to do this is different ways depending on your ultimate goal and the type of system you’re on.   First let’s talk about the way that is strictest (and the most protective) of your data.   This method is what you’ll use if you’re working on an OLTP system where you don’t want to lose any transactions. Open a query window in SSMS. Set your context to the database you want to work with. Type: ALTER database Mydatabase SET single_user WITH rollback immediate To explain the command a bit we’ll discuss each element. ALTER database Mydatabase – This is simply the command you’re trying to run.   You want to alter this database. SET single_user – This is the parameter that you use to tell the database to only accept one user and no more.   The problem, as you’ll see later, is that it can be any user that gets there first.   Other choices for this command are restricted_user and multi_user.   Restricted_user will restrict database access to the db_owner group... --- ### Transfer User Files and Settings from Windows XP/Vista to Windows 7 > A step by step guide to using Windows Easy Transfer to migrate files and user settings from Windows XP/Vista to Windows 7. - Published: 2010-06-11 - Modified: 2024-12-03 - URL: https://petri.com/transfer-user-files-and-settings-from-windows-xpvista-to-windows-7/ - Categories: Windows 7 - Article Type: How To Daniel breaks down the important steps to follow for a successful migration of files and user settings in Windows XP/Vista to Windows 7. So, you made sure your computer's hardware and software is ready for Windows 7. (Read my "Getting Ready for Windows 7 with Microsoft Windows 7 Upgrade Advisor" article). Now you wish to install Windows 7 on it. Basically, there are 2 approaches to installing Windows 7: Upgrade (In-place upgrade) - This option replaces your current version of Windows with Windows 7, and keeps your files, settings, and programs in place on your computer. Custom ("fresh" installation) - This option replaces your current version of Windows with Windows 7, but doesn't preserve your files, settings, and programs. It's sometimes referred to as a clean installation for that reason. As always, a fresh installation is much better and I strongly recommend taking that track. Even if you've got an existing Windows XP/Vista OS on your computer, I would strongly recommend that you format it and install a fresh copy of the OS. Read my "Installing Windows 7" article. Note: Either way, you cannot use an existing 32-bit version of a previous OS to perform an in-place upgrade to a 64-bit version of Windows 7, and you'll need to format and install a fresh copy. Also, you cannot use an existing 64-bit version of a previous OS to perform an in-place upgrade to a 32-bit version of Windows 7. You can transfer files and settings using a network, USB Easy Transfer Cable, removable media, or an external hard drive. Note: Windows Easy Transfer does not migrate installed programs. To use... --- ### Introduction to the OSI Model > A detailed review of the tie in between the OSI Model to the CCNA and Network+ exams as well as the breakdown of the seven layers of the OSI Model. - Published: 2010-06-02 - Modified: 2010-06-02 - URL: https://petri.com/introduction-to-the-osi-model/ - Categories: Networking - Tags: CCNA, Network, OSI - Article Type: Overview A detailed review of the tie in between the OSI Model to the CCNA and Network+ exams as well as the breakdown of the seven layers of the OSI Model. The Open System Interconnection Reference Model (OSI) is a seven layer model that was developed as part of the effort to standardize networking that was started in the late 1970's as part of the Open Systems Interconnection (OSI) initiative. This article will be a brief overview of the model itself and the tie in to the Cisco Certified Network Associate Routing & Switching exam (640-802 CCNA), as well as the Network+ exam. OSI Model's place in the CCNA and Network+ exams Both the 640-802 CCNA exam and the Network+ exam test for some of the common knowledge of the OSI Model. For the CCNA 640-802 exam this information is tested as part of the "Describe how a network works" domain as part of the following subtopics: Use the OSI and TCP/IP models and their associated protocols to explain how data flows in a network Describe the purpose and basic operation of the protocols in the OSI and TCP models Select the components required to meet a network specification Beyond these subtopics you'll need to have at least a general understanding of the model across some of the other exam topics as well but this is the primary area of focus. For the Network+ exam most of this relates to subtopic  4. 1 Explain the function of each layer of the OSI model. For both certification exams you'll need to know where in the model certain protocols function as well as knowing at what layers hardware devices such as... --- ### How to Install SQL Server 2008 > A walk through of the setup wizard for SQL Server 2008 installation with screen shots and step by step instructions. - Published: 2010-05-25 - Modified: 2024-12-03 - URL: https://petri.com/how-to-install-sql-server-2008/ - Categories: SQL Server - Article Type: How To While a SQL Server 2008 installation is fairly straight forward, a little planning and background knowledge can ensure the a successful install. Microsoft SQL MVP Sean McCown shares his insight with the readers. SQL Server 2008 is relatively easy to install, but it does take a little knowledge of the process and a little planning.   For most shops the planning phase can be minimal but there will be instances (like clustering) when you’ll need to plan quite a bit.   This will not be one of those cases.   Today we’re going to discuss a straight-forward SQL Server 2008 install.   Unlike some of the other Microsoft products there are a lot of screens to go through when installing SQL Server 2008, but most of them aren’t that bad.   You just need to know what choices to make. Before we walk through the screens and the choices you’ll be making, let’s go over a couple things you’re going to need to know before you get started.   First of all you need to make sure your system meets the minimum requirements for the version of SQL Server 2008 you’re installing.   That really isn’t very difficult these days but it’s best to check anyway.   You can find a list of the minimum requirements here. Assuming that you’ll be installing this on a production system it’s important to know that there is at least one system reboot required for this install.   That’s because the first thing this install will do is upgrade your version of Windows Installer to 4. 5.   If you’ve already got Windows Installer 4. 5 then setup will not require the reboot.   Next it will install version 3. 5 of the . Net framework.   On most boxes... --- ### Troubleshooting a Slow Database Server: Is SQL Server the Cause? > How to use Perfmon for high level troubleshooting to determine if database slowness is being caused by SQL issues. - Published: 2010-05-25 - Modified: 2010-05-25 - URL: https://petri.com/troubleshooting-a-slow-database-server/ - Categories: SQL Server - Article Type: Overview Sean McCown, Microsoft SQL MVP, offers valuable insight on using Perfmon to determine if database slowness is being caused by SQL issues. Troubleshooting a slow database server is one of the easiest and hardest things you’ll ever do in IT.   While there are some anomalies that can take a real performance expert several days to track down, most of the time your performance issues are going to be fairly straight forward.   The easy part is determining whether or not the issue is SQL-related and what form it’s taking.   The hard part can be determining exactly what the root cause of the issue is inside the SQL Server itself.   That is, does it stem from a bad query, parallelism, caching, too many compiles, bad execution plans, etc. And while this article really applies to any database server, I'm going to discuss SQL Server specifically as a point of reference.   Additionally, I’m going to discuss the high-level troubleshooting to determine whether the issue is SQL Server, and leave the internal database troubleshooting for another article. Typically a production SQL Server will be on a dedicated box, but there are times when it’s not.   You’ll need to try to determine this up front if you can.   It may help guide your troubleshooting. From an end user perspective, there’s no way of knowing where the slowdown is coming from.   It could logically be CPU, memory, disk, network, or any of the more specific sub-components of each of those broad categories.   So the first thing you need to do is to determine the offending component and then you can snipe the... --- ### Working with Domain Member Virtual Machines and Snapshots > 3 options to follow in order to avoid authentication issues when using virtualization software and snapshots. - Published: 2010-05-24 - Modified: 2024-12-03 - URL: https://petri.com/working-with-domain-member-virtual-machines-and-snapshots/ - Categories: Virtualization - Article Type: Overview While the ability to create snapshots is a benefit of using virtual machines, issues can arise when these snapshots are restored. Daniel outlines some the authentication issues that can occur and available options. One of the benefits of using a virtualization product that allows you to create snapshots, is the ability to create a "point in time" to which you can always revert your virtual machines. By reverting to this snapshot, you get your VM to the state in which it was saved, and are able to perform various tasks such as testing software, doing QA, creating labs and so on. However, one of the nasty issues of working with snapshots is when you have one or more virtual machines that are members of an Active Directory domain. When you create snapshots of such machines and restore them, you might occasionally find that all authentication involving the VM seem to fail, and face an issue of not being able to log on to the virtual machines, or not being able to access files and shares across the network. You might even get errors like this one: Windows cannot connect to the domain, either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear, contact your system administrator for assistance. If you log on locally (not using a  domain account) to the computer (in this example it's a Windows XP Pro client), you'll see the following events in the Event Viewer. NETLOGON 3210 This computer could not authenticate with \WIN2003-SRV1. petrilabs. local, a Windows domain controller for domain PETRILABS, and therefore this computer might deny logon... --- ### Fixing "Windows cannot connect to the domain" Errors > Detailed instructions on how to use the 2 methods to repair "windows cannot connect to the domain" errors. - Published: 2010-05-24 - Modified: 2024-12-03 - URL: https://petri.com/fixing-windows-cannot-connect-to-the-domain-errors/ - Categories: Windows Server 2008 - Article Type: How To Daniel outlines the 2 methods available to use in order to repair "windows cannot connect to the domain" errors. Sometimes, after extended periods of time when a computer which is a member of an Active Directory domain was taken offline and then brought online, or when some sort of cloning or imaging method or even a virtualization software snapshot mechanism was used on a domain member, you may get an error similar to this: Windows cannot connect to the domain, either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear, contact your system administrator for assistance. No matter what you do, you will not be able to log on to the computer by using a domain account. The only possible solution for logging on could be to use a local user account. Note: In most cases, unless this has been specifically disabled by the administrator, you may be able to log on using a domain user account if you disconnect the network cable from the computer. This will only work if you're using a user account that has successfully logged on to that computer in the past, and again, unless it has been specifically disabled by the administrator. Note: If you've used a cloning software and cloned a computer that was a member of a domain you should know 2 things: Never clone a domain member. You now know why. Never clone a Windows-based computer that is supposed to operate in an Active Directory domain and/or on any type of network,... --- ### How to Plan SQL Server Database Files > Setting up data and log files properly in SQL can eliminate future production problems. Here are some important things to consider. - Published: 2010-05-24 - Modified: 2024-12-03 - URL: https://petri.com/sql-server-database-files/ - Categories: SQL Server - Tags: Editor's Pick - Article Type: How To It’s a common misconception that you will get a performance gain by using several log files. Although this is something we see quite often, Sean McCown, Microsoft SQL MVP, show us how it simply isn’t true. One of the most important tasks you can do in SQL Server is to setup your data and log files.   Not getting these files setup correctly can be one of the biggest causes for production problems whether it’s disk contention, space usage, or something else.   And honestly this level of planning is often overlooked and by the time the problem is discovered the application and its users have already suffered.   So let’s get into some good discussion about how to setup your database files. Log files We’re going to start with logs first because they’re the easiest and probably the ones you’ll touch most frequently.   And we need to talk about placing your log files on disk first.   In general, you’ll want to place your log files on a different physical partition than your data files.   This is for 2 reasons.   The first is disk contention.   Every transaction has to write something to the log file before it can write it to the data file and if both files are on the same disk, then the disk arm has to work twice has hard because it has to jump over here to write the log and then jump over there to write to the table.   Putting a log file on its own disk is also better for the performance of the log because logs write sequentially so if the log file is on its own disk the disk arm has very little moving to do to get... --- ### Update Hyper-V Hosts > Updating Hyper-V Host on a regular basis is part of the maintenance needed to keep a stable and secure virtual host environment. Here are some best practices to follow. - Published: 2010-05-20 - Modified: 2024-09-04 - URL: https://petri.com/update-hyper-v-hosts/ - Categories: Hyper-V - Article Type: Overview Taking the time now to upgrade patches and security fixes for Hyper-V Host will help maintain a stable and secure virtual host environment. Daniel provides some valuable insight on how this should be done. Hyper-V, as you probably know by now, is being introduced more and more as a virtualization host (a "host" is a physical computer/server that runs a virtualization product, and which is used to run multiple virtual machines, also called "guests"). Because Hyper-V is based on a Windows 2008/R2 operating system, we need to pay close attention to update Hyper-v ; patches, bug fixes, security fixes and critical updates that are released by Microsoft. Also remember that patches and updates can come from any number of software products (and not just Microsoft), software products such as backup agents, drivers and firmware, as well as management, monitoring and anti-virus software. Before updating the host we need to consider several key issues. How important is a patch management for virtual hosts? Virtual hosts are computers running Microsoft-based operating systems (naturally, there are other options such as VMware-based or XEN-based hosts, but I do not discuss about these in this article). Virtual machine host updates are just as important as keeping any Windows-based operating system up to date, which in turn will help maintain a stable and secure virtual host environment. Coordinating the right time to apply the patching The coordination of your host patches is important. Your design objective should be to follow host patch management best practices with as few disruptions to your most critical VMs, mostly because: 1. Some (but not all) of the hyper-v updates might need a reboot of the host. This means that you will need... --- ### Installing .NET Framework 1.1 on Windows NT 4.0 Server > Important information on downloading and installing Microsoft's .NET Framework 1.1 on Windows NT 4.0 Server, including debugging certain errors. - Published: 2010-05-17 - Modified: 2024-12-03 - URL: https://petri.com/installing-net-framework-1-1-on-windows-nt-4-0-server/ - Categories: Windows Client OS - Article Type: How To Daniel walks readers through the steps needed to debug errors while installing Microsoft .NET Framework on a Windows NT 4.0 server. Yes. Windows NT 4. 0 Server! Why on earth would I write an article about Windows NT 4. 0 Server, 14 years after the product was initially released, and almost 10 years after the last official service pack (which was SP 6a, if we're at it)? Well, the reason behind such an article is that in my line of work I recently had to install the ObserveIT Agent (read more about my job at ObserveIT and on the ObserveIT website) for testing purposes. Yes, it turns out that there are still quite a few people out there running Windows NT 4. 0 Server. Some just don't want to let go, or cannot let go... So, I set up my virtual machine (using Microsoft Virtual Server 2005, BTW), installed NT 4. 0 (which turned out to be using SP1... that's a totally different story which I'll tell in another article). I then installed the latest Service Pack (6a) and the Post-Windows NT 4. 0 Service Pack 6a Security Rollup Package (SRP) (see links below). Because I could not live and work with the built-in Internet Explorer that comes with NT 4. 0, I installed Internet Explorer 4. 01 with the Active Desktop (BTW, you may want to read my "Install Active Desktop on NT 4. 0" article). After a bit more playing with the system (do you remember you had to actually reboot the server each time you made a change to the IP address and settings? Duh! ) I came about to install Microsoft . NET Framework... . --- ### Microsoft Releases Office 2010 & SharePoint Server > Today, Microsoft officially launched Microsoft Office 2010 and Microsoft SharePoint 2010. Here's the highlights... - Published: 2010-05-12 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-releases-office-2010-and-sharepoint/ - Categories: Office - Article Type: News Today, Microsoft officially launched Microsoft Office 2010 and Microsoft SharePoint 2010, as well as Microsoft Visio 2010 and Microsoft Project 2010. Here's just a few of the highlights... Today, Microsoft officially launched Microsoft Office 2010 and Microsoft SharePoint 2010, as well as Microsoft Visio 2010 and Microsoft Project 2010.   The official launch caps off what has been Microsoft’s largest beta programs ever, with nearly 8. 6 million people are already using Office 2010 and related products. So, what should we be looking forward to with Office 2010? Here's just a few of the highlights: Better Collaboration Tools Better version control and co-authoring tools for Word 2010, PowerPoint 2010, Excel Web App that let you work on a file with multiple people at once and from different locations. Microsoft Office Web Apps Office Web Apps lets you store your Word, Excel, PowerPoint, and OneNote files online and then access, view, edit, and share content seamlessly through the Web. Better Management for High E-mail Volumes With Outlook 2010 you can compress long e-mail threads into a few conversations that can be categorized, filed, ignored, or cleaned up. A new 'Quick Steps' feature also lets you perform multi-command tasks, like 'reply and delete' in one click, saving you time and inbox space. Enhanced Data Analysis and Visuals for Excel The new Sparklines feature delivers a clear and compact visual representation of your data with small charts within worksheet cells and 'Slicers' for PivotTables data in multiple layers using Slicers to spend more time analyzing and less time formatting. Broadcasting for PowerPoint Broadcast your PowerPoint presentation to a remote audience, whether or not they have PowerPoint installed. The new Broadcast Slide Show feature... --- ### Changes in the CCNP exam > A review of the CCNP certification and prerequisites and some of the recent changes announced from Cisco regarding updates to the exam structure. - Published: 2010-05-05 - Modified: 2024-09-04 - URL: https://petri.com/changes-in-the-ccnp-exam/ - Categories: Cisco - Article Type: Overview A review of the CCNP certification and prerequisites and some of the recent changes announced from Cisco regarding updates to the exam structure. The Cisco Certified Network Professional (CCNP) exam is used to gauge a network professional's ability to architect, implement, operate and troubleshoot LANs and WANs in enterprise environments. It also justiifes their ability to work collaboratively with specialists on advanced security, voice, wireless and video solutions. This article will review the CCNP certification and outline some of the recent changes announced from Cisco regarding updates to the exam structure. Overview of the CCNP Prerequisites The CCNP certification as outlined above is designed for candidates with at least one year of networking experience. Examinees that pass the CCNP exam will have proven that they possess the demonstrated skills required in enterprise roles such as network technician, support engineer, systems engineer, network engineer and network administrator. Prerequisites for candidates that wish to take the CCNP exam include the Cisco Certified Network Associate - Routing & Switching Certification (CCNA). The CCNA can be obtained by taking the single 640-802 CCNA EXAM which runs about 90 minutes in timed length and covers 45 to 55 questions or you might opt to take the separate 640-822 ICND1 Interconnecting Cisco Networking Devices Part 1 and 640-816 ICND2 Interconnecting Cisco Networking Devices Part 2 exams. Passing the 640-822 ICND1 exam singly will give the examine the Cisco Certified Entry Networking Technician (CCENT) Certification. This exam runs 90 minutes in total time and has 40 to 50 questions and is offered in English, Japanese, Chinese, Spanish, Russian, Korean, French, Portuguese. The 640-816 ICND2 Interconnecting Cisco Networking... --- ### Almost Everything You Need to Know About DHCP as a Systems Administrator > DHCP is a critical "must have" network service that enables SysAdmins to manage clients by assigning, tracking and re-assigning IP addresses. - Published: 2010-05-05 - Modified: 2024-09-04 - URL: https://petri.com/almost-everything-you-need-to-know-about-dhcp-as-a-systems-administrator/ - Categories: Networking - Article Type: Overview Daniel outlines the importance of DHCP for any systems administrator and demonstrates why it is a critical "must have" network service. This article will help you to learn everything that you need to know as a systems administrator (or SysAdmin) about this protocol and what can you do with it. Note: Article was written and sent to me by Netanel Ben-Shushan. Thanks Netanel! What's DHCP? And why it's recommended to use it? Imagine that you're working as a SysAdmin for a large company with 500 desktop computers; you need to set to each desktop computer IP address, subnet mask, default gateway, DNS servers, and other network settings. How could you do that? If you'll try to perform this task manually you're probably going to waste a lot of time on sitting on each computer 5-10 minutes, beside time, you can for example accidentally enter wrong IP address to few clients, or to type the same IP address to few clients too. In order to solve these "problems" you can use Dynamic Host Configuration Protocol (or DHCP) in your network. DHCP allows you  to manage the networks' IP addresses scopes and other TCP/IP settings like DNS, Default Gateway, etc. from central place, this central place called DHCP server. Beside the management, if there's any problem you don't need to run between your clients, you just need to connect to your server and to check the DHCP settings, as I mentioned – the DHCP works from central place, so if there's a problem, it's probably from the server, so you know where to go in case of problem and your... --- ### Installing Hyper-V on Windows Server 2008 R2 > There are 3 methods of installing Hyper-V on Windows Server 2008 R2: through the GUI, using command prompt and using PowerShell. - Published: 2010-05-05 - Modified: 2024-09-04 - URL: https://petri.com/installing-hyper-v-on-windows-server-2008-r2/ - Categories: Hyper-V - Tags: Editor's Pick - Article Type: How To Daniel outlines the 3 methods of installing Hyper-V on Windows Server 2008 R2: through the GUI, using command prompt and using PowerShell. To install Hyper-V on Windows Server 2008 R2 you can use one of the following approaches. Note that all methods require a reboot after completion. Important note: This article does NOT deal with the tasks required to pre-configure the Hyper-V host itself. For that, please read my Prepare Your Windows Server 2008 R2 for Hyper-V Role article. Method #1 - Through the GUI Probably the easiest for this specific role. I would use this method. 1. Open Server Manager, wait for it to load. 2. Click on "Roles", wait for it to load. 3. On the "Before you begin" page, click "Next". 4. In the "Select Server Roles" page, click to select the Hyper-V role. Click "Next". 5. Click "Next". 6. Select all the Network Interface Cards (NICs) that you wish to assign for the Virtual Machines. Make sure you leave one NIC un-selected for host management. If you only have one NIC, select it, but make a note that it is best to have at least 2 NICS - one for the host and one for the VMs. These settings can be changed later. 7. In the "Confirm Installation Selections" page click "Install". 8. One finished, you will need to reboot the server. Click on the "Close" button, and then click "Yes" when you are prompted to reboot the server. 9. When the server reboots, log back into the server and the Server Manager should automatically load and resume the installation process. After about a minute,... --- ### Prepare Your Windows Server 2008 R2 for Hyper-V Role > Step by step instructions on the necessary 9 steps to follow prior to installing the Hyper-V Role on a Windows Server 2008 R2. - Published: 2010-05-04 - Modified: 2024-09-04 - URL: https://petri.com/prepare-your-windows-server-2008-for-hyper-v-role/ - Categories: Hyper-V - Article Type: How To Daniel outlines the necessary 9 steps to follow in order to prepare a Windows Server 2008 R2 for Hyper-V Role. This post will help you go through a simple but elementary checklist of all the actions that you need to perform prior to installing the Hyper-V role on your Windows Server 2008 R2 machine. These are the settings and changes that need to be made prior to installing the Hyper-V role on your machine: Make the necessary BIOS changes. Install Windows Updates Change the default Host Name. Configure the host's product key and activate it. Change the IP to static addresses. Enabled RDP support. Join the host to a domain. Configure Remote Management. Enable remote disk management. When you're done, continue to my Installing Hyper-V on Windows Server 2008 R2 article. 1. BIOS changes You must enter the BIOS setup of the server and make sure that “Virtualization Technology” and “Execute Disable” are both set to Enabled.   In most cases, the required BIOS settings can be found in these BIOS sections (actual names may differ, based upon your server's BIOS settings): Security > Execute Disable (set to On) Performance > Virtualization (set to On) Performance > VT for Direct I/O Access (set to On) Performance > Trusted Execution (set to Off) Here are some screenshots of the BIOS settings on a Dell R610 server: Directly in the server's BIOS: Enable Virtualization Technology: Enable the Execute Disable option: Or through the Dell setup guide: Request from my readers: Can you send me pictures of the same BIOS settings on other brands of servers? With your assistance we will... --- ### Introduction to the Cisco Certified Network Associate Routing & Switching (CCNA) certification - Published: 2010-05-04 - Modified: 2010-05-04 - URL: https://petri.com/introduction-to-the-cisco-certified-network-associate-routing-switching-ccna-certification/ - Categories: Cisco - Tags: 640-802, CCNA, certification, Cisco - Article Type: Overview The Cisco Certified Network Associate Routing & Switching exam, 640-802 CCNA, is available to candidates as a combined exam from the individual Interconnecting Cisco Networking Devices Part 1 (ICND1) v1. 0 and the Interconnecting Cisco Networking Devices Part 2 (ICND2) v1. 0 courses. This article will review the CCNA certification from an overview perspective along with an outline of the exam topics as well as some training resources that are available. Summary of the CCNA exam 640-802 The CCNA exam is designed for candidates with at least one year of networking experience and it will test a candidate's knowledge and ability to troubleshoot a small to medium size enterprise network installation and their ability to operate and maintain it. The subject matter for the CCNA includes but is not limited to: implementing network security understanding TCP/IP and OSI models understanding network types understanding network media understanding routing and switching fundamentals understanding IP v4 and v6 addressing connecting to wide area networks (WAN) connecting to local area networks (LAN) connecting to metropolitan / campus networks connecting to wireless networks operating and configuring IOS devices extending switched networks with VLANs determining IP routes managing IP traffic with access lists establishing point-to-point connections establishing Frame Relay connections The CCNA exam is made up of two entry level exams 640-822 ICND1 Interconnecting Cisco Networking Devices Part 1 (ICND1) and 640-816 ICND2 Interconnecting Cisco Networking Devices Part 2 (ICND2). Candidates can study for both of these entry level exams and take them separately or study for the... --- ### The Ultimate Guide to Installing Windows 7 > Step-by-step guide for how to install Windows 7. Explains common configuration settings and installation pitfalls with easy-to-follow screenshots. - Published: 2010-04-28 - Modified: 2024-12-03 - URL: https://petri.com/ultimate-guide-to-installing-windows-7/ - Categories: Windows 7 - Article Type: Overview This step-by-step guide shows how to install Windows 7 and details configuration settings and common installation pitfalls with easy-to-follow screenshots and explanations by MVP Daniel Petri. So, you're ready to install Windows 7? Read on to get guidance on how to approach this installation and make sure your copy of Windows 7 is properly installed. Planning the Installation As with any OS installation, we must first plan the installation process. When you run the Windows 7 Setup program, you must provide information about how to install and configure the operating system. Thorough planning can make your installation of Windows 7 more efficient by helping you to avoid potential problems during installation. An understanding of the configuration options will also help to ensure that you have properly configured your system. Here are some of the most important things you should take into consideration when planning for your Windows 7 installation: Check System Requirements Check Hardware and Software Compatibility Determine Disk Partitioning Options Complete a Pre-Installation Checklist Microsoft states the  minimum recommended specs for Windows 7: 1 GHz 32-bit or 64-bit processor 1 GB of system memory 16 GB of available disk space Support for DirectX 9 graphics with 128 MB memory (to enable the Aero theme) DVD-R/W Drive Internet access (to activate and get updates) 32-bit or 64-bit Version? You need to decide whether to install the 32-bit or 64-bit version of Windows 7. The Windows 7 installation disc package includes both 32-bit and 64-bit versions of Windows 7. Basically, the 64-bit version of Windows handles large amounts of random access memory (RAM) more effectively than a 32-bit system. So if you plan on... --- ### How to Join a Domain in Windows 7 > Explains the prerequisites, settings and steps required to join a domain in Windows 7 via two different methods. - Published: 2010-04-27 - Modified: 2024-09-04 - URL: https://petri.com/join-a-domain-in-windows-7/ - Categories: Windows Server 2008 - Article Type: How To MVP Daniel Petri explains the prerequisites, settings and steps required to join a domain in Windows 7 via two different methods. Joining your machine to a domain will let you enjoy the domain's benefits, such as scalability, central management, Group Policies, security and more. Prerequisites Before joining your Windows 7 machine to a domain, make sure you properly understand the following prerequisites: Use Windows 7 Professional, Ultimate or Enterprise - Only Windows 7 these editions can join a domain. No, Windows 7 Home can't. Don't try it. Have a  network Interface Card (NIC) - Duh, but unless you have one (or a wireless connection) how do you expect to connect to the server? Be physically be connected to the LAN - Windows 7 (and previous OSs) has an LAN auto sensing feature. Whenever you disconnect from the network, a balloon appears in the tray area notifying you of the disconnection status. Note that Windows 7 can be joined in an offline mode to a Windows Server 2008 R2 domain, but that's a topic for a different article. Have a valid IP address - Valid for the network you're connected to. You can either configure one manually, receive one from a local DHCP Server, or leave it as is and receive an APIPA address (whatever starts with 169. 254. X. Y). If it's an APIPA address you're asking for potential problems, as APIPA and AD do not go together hand-in-hand. Have all-time connectivity to the Domain Controller - Or at least one of them. The IP address you've configured (or leased) should be good enough to enable you to connect to one... --- ### Is Your PC Compatible with Windows 7? Find Out with Upgrade Advisor > Will your computer support Windows 7? Learn how to use Windows 7 Upgrade Advisor to check if hardware, software & peripheral devices will support the upgrade. - Published: 2010-04-27 - Modified: 2024-09-04 - URL: https://petri.com/is-your-pc-compatible-with-windows-7/ - Categories: Windows 7 - Article Type: How To Will your computer support Windows 7? Daniel explains how to use Windows 7 Upgrade Advisor to check if hardware, software & peripheral devices will support the upgrade. Windows 7 is here to stay, and thank God, it's much much better than Windows Vista. Therefore, if any of you guys is still contemplating about moving on from Windows XP Pro to Windows 7, or, if God forbid, you're using Windows Vista - now is a perfect time to move on. Windows 7 will work much faster than Windows Vista ever did - on the same hardware. And, if you're buying a new computer - laptop or desktop - you'll be guaranteed to get the ultimate user experience. But hold on. How can you tell if your current computer - hardware, software and peripheral devices such as scanners and printers - is all compatible with Windows 7? Generally speaking, if your PC can run Windows Vista, it can probably run Windows 7, but it's still a good idea to check first. Luckily for us, there is a tool that'll do just that. The Microsoft Windows 7 Upgrade Advisor scans your PC for potential compatibility issues and lets you know about your Windows 7 upgrade options, and see if it’s ready for Windows 7. Within minutes, you'll get a report that lets you know if your processor is capable of running 64-bit versions of Windows 7 and gives guidance on your upgrade options and tells you if your PC meets the system requirements, if any known compatibility issues with your hardware, devices, and installed programs are found, and gives guidance on what to do to before installing... --- ### Identity Management and the Administrator's Account > Explains identity management fundamentals and how to positively identify who used specific generic user accounts such as the "Administrator" account. - Published: 2010-04-23 - Modified: 2024-12-03 - URL: https://petri.com/identity-management-and-the-administrators-account/ - Categories: Windows Server 2008 - Article Type: Overview Daniel explains the "Identification Services" feature of ObserveIT, and how it enables complete identification and tracking of users, even when multiple people are accessing the system via the same 'Administrator' account credentials. When multiple users have access to a generic account (for example the default Administrator account), it can be difficult, even impossible to identify the actual person using the account. Identity Management (or IDM for short) is one of the challenges that IT managers need to face in this ever changing environment, and with plenty of security and compliance issues at hand, failing to properly manage identities of users and service accounts can cause some great headaches. Imagine working in a datacenter that hosts tens or even hundreds or web servers. In that site, you've got many users that are all using the same user account credentials – "Administrator" – and all are logging on locally to perform their daily administration tasks. Even if there are just a handful of users accessing these machines, it will still be very hard for you, as the person in charge, to really know which one of these administrators has logged on to which system. Finding out “who touched the server” and "who did what" is critical when you've got a situation at hand. For example, you are awaken by a text message on your cellular phone, telling you that a particular server has just stopped responding, or that a specific service is no longer running. The first thought that comes to mind of any IT administrator in that case is “who touched this server". In most cases, you remotely connect to the system (if you can), and look around. You can... --- ### Windows Recovery Environment (RE): The Solution When A Computer Won't Boot > How to use the Windows Recovery Environment to diagnose and recover from serious booting errors and the security implications of using it. - Published: 2010-04-19 - Modified: 2024-09-04 - URL: https://petri.com/windows-recovery-environment/ - Categories: Windows Client OS - Article Type: Overview Daniel explains the Windows Recovery Environment (WinRE): how it automates the diagnosis and repair of an unbootable Vista, Windows 7 or Windows Server 2008/R2 installation and the security considerations to be aware of when using it. Windows Recovery Environment (Windows RE) is an extensible recovery platform based on Windows Preinstallation Environment (Windows PE). When the computer fails to start, Windows automatically fails over into this environment, and the Startup Repair tool in Windows RE automates the diagnosis and repair of an unbootable Windows Vista, Windows 7, Windows Server 2008 or Windows Server 2008 R2 installation. Windows RE provides two main functionalities: 1. Automatic diagnosis and repair of boot problems using a tool called Startup Repair. 2. A centralized platform for advanced recovery tools. Benefits Windows RE provides the following benefits: Can help reduce support costs through automatic repair of common root causes of unbootable operating system installations. The Startup Repair will try to repair computers that are unbootable because of the following reasons: registry corruption missing or damaged system and driver files disk metadata corruption (MBR, partition table, and boot sector) file system metadata corruption installation of problematic or incompatible drivers installation of incompatible Windows service packs and patches corrupt boot configuration data bad memory and hard disk hardware (detection only). Startup Repair will not repair unbootable systems caused by the following issues: malfunctioning firmware and other hardware components problems with clean Windows installations or Windows upgrades (for example, from Windows XP to Windows Vista or to Windows 7) Windows logon errors and viruses and malicious software. The following table describes possible repair actions: Repair Action Description BCDMD Repairs the MBR, partition table, or boot sector. ChkDsk Runs ChkDsk in repair mode. File... --- ### Free Tool to Manage Windows Server 2008 R2 Core with a GUI: Visual Core Configurator > Reviews Visual Core Configurator 2008, a free tool used to set up and configure Microsoft Windows Server 2008 R2 Core server using a GUI. Download here. - Published: 2010-04-14 - Modified: 2024-11-19 - URL: https://petri.com/manage-server-2008-r2-core-with-visual-core-configurator/ - Categories: Windows Server 2008 - Article Type: Overview In this article, Daniel Petri introduces Visual Core Configurator 2008, a free tool used to configure and manage Microsoft Windows 2008 Server Core using a GUI. As you probably know by now, in Windows Server 2008, the Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. In Windows Server 2008 and Windows Server 2008 R2, Server Core installation does not include the traditional full graphical user interface (GUI). Therefore, once you have configured the server, you can only manage it locally at a command prompt or PowerShell (in R2). It is also possible to manage the server remotely using the Microsoft Management Console (MMC) Snap-Ins, command-line tools that support remote use, or the new PowerShell remote management capabilities. SCONFIG is a built-in tool that is in fact a collection of scripts which can help you get the server up and running within moments. Read more about SCONFIG on my "Manage Windows Server 2008 R2 Core with SCONFIG" article. However, even SCONFIG cannot fully give you the entire set of tools that are needed to fully configure and manage Server Core. For example, tasks such as installing server roles or features, or running DCPROMO and so on. For those, you need to either know the command line tool, or use a script or 3rd-party tool. For example, read my "Installing Active Directory on Windows 2008 Server Core" article. One of these tools is Visual Core Configurator 2008, created by Guillermo Musumeci. The tool is free to use, and can be obtained here: CtxAdmTools - Visual Core... --- ### Should You Migrate from Exchange Server to Google Apps? > Paul Cunningham of ExchangeServerPro.com takes a holistic look at the challenging aspects of migrating from Exchange to Google Apps. - Published: 2010-04-07 - Modified: 2024-11-19 - URL: https://petri.com/exchange-to-google-apps-issues/ - Categories: Exchange Server - Article Type: Overview Paul Cunningham of ExchangeServerPro.com takes an in-depth look at the considerations that Google doesn't mention when thinking of migrating from Microsoft Exchange to Google Apps. The following article is reprinted with full permission by Paul Cunningham from ExchangeServerPro. com.   Be sure to check out Paul's excellent, free Exchange 2007 transition guide. There is some recent buzz (no pun intended) around Google’s release of their Google Apps Migration for Microsoft Exchange tool.   The tool does what you would assume from its name, or as Google puts it: Now you can migrate email, contacts and calendar data from on-premise and hosted Microsoft® Exchange to Google Apps, whether you have just a few users or tens of thousands. Feature Overview Perform a centrally managed bulk migration of users Selectively migrate email, calendar or contacts (or any combination thereof) Migrate in phases for very large migrations Businesses of all sizes are migrating their email systems to Google Apps (though many are moving from Lotus Notes or Novell Groupwise, not Microsoft Exchange).   You can see some of the case studies and stories on this Google page.   Google Apps is clearly a good fit for these businesses or they would not have made the move, but I’ll be honest, every time the idea has been floated for a customer I’ve talked to there has been some requirement that makes it impractical or impossible to move to Google. Among Google Apps’ benefits are cost reductions for some customers and better support than their in-house staff can provide.   Feature-wise Google Apps certainly does provide a basic email, calendar, and contacts experience.   In some areas it is lagging behind though, such as... --- ### Simple Monitoring For Any SNMP Device (Free Download) > Solarwinds network management has released a free network device monitor for SNMP devices. It can monitor any SNMP variable and will send alerts as needed. - Published: 2010-04-07 - Modified: 2024-09-04 - URL: https://petri.com/network-device-monitor-solarwinds/ - Categories: Networking - Article Type: Overview Solarwinds network management has just released a free network device monitor for keeping an eye on just about any SNMP device, from switches to network printers. The free download is definitely worth a look. SolarWinds has just released a new free tool called the Network Device Monitor. The Network Device Monitor can watch a single network device like a router, firewall or server. It can monitor any SNMP variable, and the desktop dashboard will display current status to help alert you if the system is in trouble. The Network Device Monitor includes support for devices from many major manufacturers. In addition, Network Device Manager is fully integrated with the Thwack online community. Through Thwack, you can download Solarwinds and user-generated templates that make the Network Device Manager work with hundreds of different manufacturers' hardware.     According to SolarWinds, some of the features of the new tool are: Monitor real-time performance and health for any device on your network with a groovy desktop dashboard Get started immediately with an extensive collection of "out-of-the-box" monitors for popular network devices including Juniper® devices, Cisco ASA appliances, HP Procurve equipment, Cisco switches, and much more Create and share custom network device monitoring templates – one click posts your monitoring template to thwack, the SolarWinds community site Compile custom MIBs to monitor virtually any statistic on an SNMP-enabled network device Use your monitoring templates with Orion Network Performance Monitor when you are ready to monitor all of your devices simultaneously Network reliability continues to become ever-more important as businesses increase reliance on network applications. Detecting and repairing problems quickly is crucial. Any free tools that can make this job a little easier are always useful, and Network Device Manager... --- ### 3 Ways to Enable the Built-In Windows 7 Administrator Account > Learn the 3 ways to enable the built-in Administrator account in Windows 7: with the users and groups snap-in, from the command prompt or during installation. - Published: 2010-04-06 - Modified: 2024-12-03 - URL: https://petri.com/enable-the-windows-7-administrator-account/ - Categories: Windows 7 - Article Type: How To Like in Windows Vista, in Windows 7 the built-in Administrator's account is disabled by default. Furthermore, this account is not associated with any password. So, if you find yourself in a situation where you need to enable the built in account (cloning machines, etc.) and not just a user with administration rights, then this article is for you... In Windows 7, like Windows Vista, when you install the operating system, you are asked to enter a user name which will be the primary local user that will use this system. Read more: How to Enable the Windows 8 Administrator Account Like in Windows Vista, in Windows 7 the built-in Administrator's account is disabled by default. Furthermore, this account is not associated with any password. The new user which is created during the installation is configured to be a member of the built-in Administrators group, and in fact, can be used for any management task. That use is in fact equivalent by all means with the original built-in Administrator account. However, there may be situations where one would like to use the built-in Administrator account instead of that "new" user. One of these might be when you're building a system for cloning purposes, and would like all cloned machines to be able to use the built-in Administrator's account. Note that since that account does NOT have a password, enabling it without properly setting a password for that account will open a serious security opening on your system! There are basically 2 easy methods of enabling the built-in Administrator's account and 1 advanced method. Method #1 - Using the Local Users and Groups Snap-in To enable the built-in Administrator's account by using the Local Users and Groups snap-in please follow these steps: Open Local Users and Groups. You can do so by typing lusrmgr. msc in the Start... --- ### The Case For A Network Management Certification > SolarWinds Certified Professional (SCP) is the latest network management certification option. This certification picks up where Cisco's CCNA ends off. - Published: 2010-03-30 - Modified: 2010-03-30 - URL: https://petri.com/the-case-for-a-network-management-certification/ - Categories: Networking - Article Type: Overview Many certifications have been developed by various software and hardware vendors targeted to just about every IT field, however, one discipline continues to be overlooked – network management. Learn about the latest network management certification options it in this article by Thomas Hoyle. Many certifications have been developed by various software and hardware vendors targeted to just about every IT field, however, one discipline continues to be overlooked – network management. The most popular networking certification track, the Cisco Certified Network Administrator (CCNA), covers building and setting up a network, but doesn’t address network management day-to-day requirements and responsibilities.   If network management is your core discipline, is there a certification to validate those skills? As the “Network” continues to experience exponential growth, managing and monitoring it is becoming more critical. The increases we’re seeing in bandwidth-hungry traffic like video and VoIP, in conjunction with the always connected expectation, puts a heavy burden on the network and creates a need to better manage the environment to ensure business traffic does not suffer.    Add the network management industry’s push toward standardization and commoditization and we see products becoming cheaper and easier to use.   This means some network engineers may not understand the complex technologies behind the scenes, but have the skills to use the tools to manage it.   A certification in this space provides a way for professionals to demonstrate their conceptual knowledge of in-depth network management technologies as well as their ability to apply that knowledge in the corporate environment. To fill this gap, SolarWinds developed a network management certification in 2009 called the SolarWinds Certified Professional (SCP), and it covers 5 critical aspects of network management.   Prometric, an independent third party testing and assessment service, delivers the exam in its... --- ### How Can I Install and Use Hebrew Fonts on My Windows 7 Computer? > Detailed instructions on how to install Hebrew fonts in Windows 7. You can install Hebrew language support during the setup of Windows 7, or at any time after. - Published: 2010-03-15 - Modified: 2024-09-04 - URL: https://petri.com/install-hebrew-on-windows-7/ - Categories: Windows 7 - Article Type: How To Unlike previous operating systems, the installation of Hebrew support in Windows 7 is much simpler, but it still comes down to performing the steps in the right order for a successful installation. In this article, MVP Daniel Petri details the proper sequence... Windows 7 (like previous Microsoft-based operating systems) has the built-in ability to display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. To see Hebrew fonts on your Windows 7 computer you MUST perform the following tasks precisely in the order listed here. Not doing so might cause your computer to display ? ? ? ? ? ? ? instead of Hebrew fonts, especially in Office applications. Unlike in previous operating systems, the installation of Hebrew support in Windows 7 is much simpler and usually does not require a reboot. You can choose to install Hebrew language support during the setup phase of Windows 7, or at any time after the installation is complete. There is NO difference between the two. Note: You might also want to read the following articles: Install Hebrew on Windows 2000 Install Hebrew on Windows Server 2003 Install Hebrew on Windows XP Install Hebrew on Windows Vista Option 1: During the Installation Process After booting the computer into the setup process of Windows 7 you will need to wait for the initial Install Windows screen. From the Time and Currency Format drop-down list select "Hebrew (Israel)". Option 2: On an Installed Copy of Windows 7 If you already have Windows 7 installed you can basically do the same, only this time it's done from within Control Panel. Note: Unlike previous Microsoft-based operating systems, in Windows 7 you do NOT need to have the installation DVD handy, because all... --- ### Quick Tip: How to Create a Network Connections Shortcut in Windows 7, Server 2008 and Vista Too! > Explains how to quickly and easily create a desktop shortcut to the network connection settings in Windows 7, Vista and Windows Server 2008. - Published: 2010-03-09 - Modified: 2024-09-04 - URL: https://petri.com/create-shortcut-to-network-connections/ - Categories: Windows 7 - Article Type: How To This quick tip by MVP Daniel Petri explains how to create a handy desktop shortcut to your Network Connections in Windows 7, Vista and Windows Server 2008. One of the nasty annoyances in Windows Vista, Windows 7 and Windows Server 2008 operating system was and still is, for me, the lack of ability to easily access the computer's network interface cards' properties. True, you *could* right-click the network connection icon in the tray area, select "Open Network and Sharing Center", then click on the "Change Adapter Settings" link. But that's just too many clicks away. True, you *could* do it through the Control Panel, type "netw" or something similar in the Search box, then click on "View Network Connections" link. Again, just too many clicks away. True, you *could* do it by running ncpa. cpl from the run command. But again, too much typing. True, you *could* simply drag the icon of one of the network interface cards to the desktop and create a shortcut, but that's only a shortcut, and it does not have the regular "properties" options that the NICs should have. So that's no good. So, how do I get the "Network Connections" icon on my desktop? To get the "Network Connections" icon on your desktop follow these steps: 1. Right-click an empty spot on your desktop and select "New" > "Shortcut". 2. When prompted to type in the location, enter the following line: explorer. exe ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} Note: Just copy the above string. Note there's a space after the "explorer. exe". 3. In the name type "Network Connections". 4. Click on "Finish". Now, double-click the new icon and you’ll be sent straight into the... --- ### Video: Cisco Nexus 1000-V and vSphere Video Training > In this video tutorial, Rick Scherer creates the Cisco VSM and VEM (virtual ethernet module) and now goes about adding an ESX host to the new Nexus 1000V switch - Published: 2010-03-05 - Modified: 2024-11-19 - URL: https://petri.com/cisco-nexus-1000v-vsphere-video-training/ - Categories: Cisco - Article Type: Overview In this video, Rick Scherer has created the Cisco VSM (virtual supervisor module) and VEM (virtual ethernet module) and now must add an ESX host to the new Nexus 1000V switch. However, as Rick points out, there is more to adding it than just an ESX host and VM than just "adding you to the switch"... Unlike just about every other Cisco physical switch, the Cisco's Nexus 1000-V is a virtual software switch. This switch is custom made for VMware vSphere and it is the only 3rd party switch for vSphere. While there is a free 60 day eval of vSphere and the Nexus 1000-V, to use them for the long run, you'll have to buy the highest edition of vSphere - Enterprise Plus - and the Nexus 1000-V, both of which are based on the number of CPUs your servers have which will run the 1000-V. With the Nexus 1000V (N1KV), you get the Cisco IOS command line (actually NX-OS) for your virtual infrastructure, policies, QoS, Security, and many other Cisco switch featuers that you (or your network admin) are used to using. VMware's dvSwitch and the Cisco Nexus 1000V make a powerful team but you mut also know how to install it, add ESX hosts to the new switch, and create port profiles. Once you already have your vSphere infrastructure up and running and have met the prerequisites, you can start the install process for the Nexus 1000V. I'll warn you that there is a lot more to it than, say, just installing a new Windows app. The install is detailed in the 44 page installation guide for the Nexus 1000-V. Luckily, VMware VCP and VCDX Rick Scherer has created a new video series on the Nexus 1000-V. The video below is part of the Train Signal vSphere Pro Vol 1... --- ### Secret Commands for Emergency Maintenance from the ESXi4 Console > Useful commands for ESXi4's official and unsupported consoles to avoid a dirty shutdown and for management and configuration tasks. - Published: 2010-03-04 - Modified: 2024-11-19 - URL: https://petri.com/vmware-esxi4-console-secret-commands/ - Categories: VMware - Tags: CLI, command line, console, ESXi, esxi 4, tech support mode, vim-cmd, vmware - Article Type: Overview Ever needed to manage an ESXi server when a vSphere Client isn't available or refuses to connect to it? VMware specialist Tom Finnis explains the various options available to you from the ESXi console, including several unofficial commands that will let you control your virtual machines directly. Anyone who has installed VMware's ESXi4 hypervisor (if you haven't then get an idea of what you are missing with my article on how to setup your own ESXi4 server) will be aware that the options for maintenance at the server itself are somewhat limited. In fact its just a one page menu: For setting up your ESXi4 server you don't even need to go that far in fact, since you can just point your vSphere Client at the IP assigned to the server by DHCP and do everything afterwards from there. So why should you even bother to attach a monitor and keyboard to your ESXi server? To be honest, if everything is working as it should then you can happily leave your server humming away in its place and never need to touch it again, but when in IT has everything worked happily ever after? During my day job supporting a multitude of ESXi servers I have encountered several scenarios where the vSphere Client has failed me and more direct access was required. Power cycling the ESXi Server is usually an effective solution but in a production environment it poses additional risks and should only be treated as a last resort, so here I will look at the other options available. Once you are at the server itself there are basically two interfaces available to you, the "official" ESXi4 console with its system configuration menu, and then the "unsupported" command line Linux console. Yes, according to the... --- ### How to Create Professional Network Diagrams Using Microsoft Visio > Learn how to use Microsoft Visio to quickly and easily generate professional-looking network diagrams. - Published: 2010-02-24 - Modified: 2024-09-04 - URL: https://petri.com/network-diagrams-using-visio/ - Categories: Networking - Tags: network diagram - Article Type: How To Aaron Leskiw, CCNA from NetworkManagementSoftware.com demonstrates how to use Microsoft Visio to quickly and easily generate professional-looking network diagrams. I'm going to go ahead and say this right off the bat: I'm a Visio junkie. In my opinion Visio deserves a place in every administrator’s toolbox. Trust me on this - nothing makes you look less professional than sharing a diagram created on the back of a scrap piece of paper - or worse, MS Paint. However there can be an art to using tools like Visio. Here are a few simple tips to help you create quality, professional-looking network diagrams. Use Multiple Pages The number one mistake in many network diagrams is an attempt to convey too much information on one page. Visio allows use of multiple pages just like an Excel workbook with many worksheets, so consider using multiple drawing sheets for different purposes. For instance, you might show your Layer 2 wiring on one page, WAN and core on another page, and your VLAN scheme on a third. You could also add pages for things like your datacenter and internet connections. Keep it simple, but use as much space as is necessary. Make Use of Border Templates A border template can make your life a little easier by providing a way to track changes to your diagrams. In your template include sections for author name, version number, date, page number, and any other fields that will be useful. Most of the fields can automatically update themselves - more information on that can be found on the Microsoft website here. Borders can be locked to the page... --- ### Get Back the Classic Start Menu in Windows 7 > Missing the classic Start Menu? Learn the easiest ways to switch back and forth between the new and classic Start Menu in Windows 7 and Windows Server 2008 R2. - Published: 2010-02-24 - Modified: 2024-09-04 - URL: https://petri.com/classic-start-menu-in-windows-7/ - Categories: Windows 7 - Article Type: How To If you aren't ready to move the new Start Menu in Windows 7 or Windows Server 2008 R2, here are a few ways to get the classic Start Menu back... In Windows 7 and Windows Server 2008 R2 it is not possible easily revert to the original, Classic Start menu that was used since Windows NT 4. 0 SP6a with IE 4 and the Active Desktop addition. The classic version was previously included in all MS operating systems, including Windows 95/98/ME/2000/XP/2003/Vista/2008. While in Windows XP and Windows Server 2003 we did get a new looking Start menu, it was still possible to right-click on it and in its Properties window, get it to use the Classic menu. Here's how the default Start menu looks in Windows 7: Why did Microsoft decide to remove the Classic Start menu option in Windows 7 and in Windows Server 2008 R2? I don't know. Personally, I like the new way the new Windows 7 Start Menu works, and have gotten used to it a long time ago. However, a lot of people still haven't gotten used to the newer version, so we thought it would be handy to explain a couple of ways to get the Classic Start menu back: 1. Classic Shell Classic Shell is free and takes up very little memory. It changes the Windows 7 start menu to classic and it looks exactly the same like what you see in Windows XP. The nice thing about it, besides being totally free, is that when you type the first letter of a program or folder it brings you to the correct menu. Get it from here: Classic Shell Files on... --- ### Manage Windows Server 2008 R2 Core with SCONFIG > SCONFIG eases Windows Server 2008 R2 Core deployments. Join a domain, configure remote management, change network settings and more with this built-in tool. - Published: 2010-02-23 - Modified: 2024-12-03 - URL: https://petri.com/manage-windows-server-2008-r2-core-with-sconfig/ - Categories: Windows Server 2008 - Article Type: How To SCONFIG, now included in Windows Server 2008 R2, eases server configuration for Windows Server 2008 R2 core deployments; allowing admins to manage many aspects of the Server Core machine and connect it to the network in preparation for remote management. Learn more about it in this article by MVP Daniel Petri. As you probably know by now, in Windows Server 2008, the Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. The Server Core installation option of Windows Server 2008 and R2 provides the following benefits: Reduced maintenance - Because the Server Core installation option installs only what is required to have a manageable server for the AD DS, AD LDS, AD CS, DHCP Server, DNS Server, File Services, Print Services, Web Server and Hyper-V server roles, less maintenance is required than on a full installation of Windows Server 2008. Reduced attack surface - Because Server Core installations are minimal, there are fewer applications running on the server, which decreases the attack surface. Reduced management - Because fewer applications and services are installed on a server running the Server Core installation, there is less to manage. Less disk space required - A Server Core installation requires only about 1. 5 gigabyte (GB) of disk space to install and approximately 2 GB for operations after the installation. Lower risk of bugs - Reducing the amount of code can help reduce the amount of bugs. While Server Core itself is, in my opinion, one of Microsoft's greatest positive investments in the past 3 years, one of the major implementing pains for Core is the lack of GUI-based management tools. For those that have never seen a Server Core, this is the way it... --- ### 5 Ways to Install Windows Updates on Windows Server 2008 R2 Core > The 5 quickest ways to download Windows Server updates from the Windows Update site and install for Windows Server 2008 R2 Core. - Published: 2010-02-23 - Modified: 2024-12-03 - URL: https://petri.com/install-windows-updates-on-windows-server-2008-r2-core/ - Categories: Windows Server 2008 - Article Type: How To After properly configuring Server Core and getting it ready to deploy, you decide you want to download and install the latest Windows Server 2008 R2 updates from the Windows Update site. But, how do you do that? In this article, MVP Daniel Petri provides 5 ways to accomplish the task. Read on for more... As you probably know by now, in Windows Server 2008, the Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles (read more about Server Core on my "Understanding Windows Server 2008 Server Core" and "Installing Windows Server 2008 Core" articles). One of the challenges of using Server Core is the management aspect. Luckily for us, most of the management pain has been solved by usage of the either manually created scripts, 3rd-party graphical user interface tools, and lately in R2 - the SCONFIG tool. So after properly configuring Server Core and getting ready to deploy it on your server farm, you now want to download and install the latest Windows Server 2008 R2 updates from the Windows Update site. How do you do that? Well, there are several methods which you can use to download and install the latest Windows Server 2008 R2 updates from the Windows Update site. Read on. Method #1 - Manually Install Updates In order to install updates you need to configure the Server Core machine to automatically download and install updates: At a command prompt: To verify the current setting, type: cscript scregedit. wsf /AU /v To enable automatic updates, type: cscript scregedit. wsf /AU 4 To disable automatic updates, type: cscript scregedit. wsf /AU 1 Problem with this setting is that you have no control over what updates are being downloaded and installed. Therefore, if you... --- ### Finding VMware vSphere Virtual Machine Snapshots with PowerCLI > Train Signal vSphere Pro Vol 1 explains you how to find old snapshots in your vSphere infrastructure, report on how old they are, and how much space they take up in your datastores. - Published: 2010-02-17 - Modified: 2010-02-17 - URL: https://petri.com/finding-vsphere-vm-snapshots-with-powercli/ - Categories: VMware - Article Type: How To Finding which virtual machines have snapshots, how old those snapshots are, and how much space they take up can be very time consuming in the vSphere client graphical interface - see how this topic is covered in Train Signal's new vSphere Pro Vol 1 training course. The snapshot feature in any virtualization software is powerful because it allows you to "snap back" (revert) and "snap forward" in time. With this, you can perform installations and revert if they don't work. You can make configuration changes over and over again until you get them right. And, you can go back to a point in the "life" of that virtual machine when it was freshly installed and brand new. Sure, snapshots are cool but they can also be dangerous. These snapshots can take up a ton of disk space and, potentially, cause you to run out of space in your ESX Server datastores. By running out of space, you could, potentially, experience downtime and end users could be upset when their virtual desktops or applications no longer work. Finding which virtual machines have snapshots, how old those snapshots are, and how much space they take up can be very time consuming in the vSphere client graphical interface. You have to click on each virtual machine, look to see if the Revert to Snapshot button is colored and, if it is, go into the snapshot manager and look at each snapshot. Fortunately, vExpert and Microsoft MVP Hal Rottenberg's PowerCLI videos - the new Train Signal vSphere Pro Vol 1 training course - show you how to find old snapshots in your vSphere infrastructure, report on how old they are, and how much space they take up in your datastores. By finding these snapshots early, before they... --- ### Getting Certified: CompTIA Network+ Certification and the N10-004 Exam > This article will introduce you to CompTIA - the Computing Technology Industry Association - as well as the Network+ certification plus expected skills and knowledge a candidate should have prior to sitting the exam. - Published: 2010-02-09 - Modified: 2024-11-19 - URL: https://petri.com/comptia-network-certification/ - Categories: Networking - Tags: CCNA, certification, Cisco, CompTIA, Network - Article Type: Overview An introduction by Jason Zandri to CompTIA - the Computing Technology Industry Association - and their Network+ certification program, plus the skills and knowledge a candidate should have prior to sitting the N10-004 exam. CompTIA - the Computing Technology Industry Association - first launched the Network+ exam in 1999. I gained the certification in August of 1999 taking and passing the N10-001 exam. Eleven years later it has released the fourth iteration of the certification with the N10-004 exam. This article will introduce you to CompTIA - the Computing Technology Industry Association - as well as the Network+ certification and some of the expected skills and knowledge that a candidate should have prior to sitting the exam.   What is CompTIA and Network+ CompTIA stands for the Computing Technology Industry Association and a portion of its business goes beyond just certification exams. That being said, it is the Information Technology industry’s largest developer of vendor-neutral IT certification exams. The original certification program launched in 1993 and since that time more than 1 million people have earned a CompTIA certification. The hardware based A+ certification was first launched in 1993. With respect to Network+, exam N10-001 launched back in 1999 and is now in its 4th release as N10-004. The CompTIA website lists nearly a quarter of a million holders of the Network+ certification. The history of the exams are: N10-001 CompTIA Network+ Exam (1999 Edition) (Retired March 14, 2002) N10-002 CompTIA Network+ Exam (2002 Edition) (Retired June 30, 2005) N10-003 CompTIA Network+ Exam (2005 Edition) (Retired July 31, 2009) N10-004 CompTIA Network+ Exam (2009 Edition) (Slated for retirement in 2012) In general the certification is used to measure the skill set... --- ### Video Training on VMware View, ThinApp, Cisco Nexus 1000V, and PowerCLI > Top-rated, hands-on video training for VMware desktop and application virtualization. VMware View, ThinApp, Cisco Nexus 1000V, and PowerCLI and more! - Published: 2010-02-09 - Modified: 2024-11-19 - URL: https://petri.com/video-training-on-vmware-view-thinapp-cisco-nexus-1000v-and-powercli/ - Categories: VMware - Article Type: Overview New from Train Signal and VMware vExperts - Rick Scherer, Hal Rottenberg and David Davis is "vSphere Pro Vol. 1" - the latest VMware vSphere video training course. See a demo and find what's included in this newest vSphere training resource. This week, Train Signal launched their latest VMware vSphere training course, entitled vSphere Pro Vol 1. This course is nearly 11 hours and is a unique series of videos by prominent VMware vExperts - Rick Scherer, Hal Rottenberg, and myself (David Davis). The course covers VMware desktop and application virtualization using VMware View and ThinApp, the Cisco Nexus 1000-V 3rd party vNetwork Distributed Switch, and VMware's PowerCLI command line toolset for vSphere. My part of the course is VMware View and ThinApp. ThinApp is VMware's Application Virtualization product. Application Virtualization is so new that most system admins are still relatively unfamiliar with how it can help them. In the video below, "Virtualizing your App with ThinApp in under 5 minutes", I cover the the five easy steps to virtualizing your app. In the video, I demonstrate this using Firefox but the concept works with just about any application. Of course, in my full course I spend about an hour covering this same process butin great detail. Checkout the following demo video from the Tran Signal vSphere Pro Vol 1 trainng course, How to virtualize your App with ThinApp in under 5 minutes. While ThinApp can be purchased by itself, it is also part of VMware View - VMware's deskop virtulization solution. Both ThinApp and View can be downloaded and evaluated for free over 60 days at their respective websites. Learn about the Train Signal computer training and their new vSphere Pro Vol 1 video training course from Train Signal. --- ### The Essential Guide to Creating and Cloning Virtual Machine Images > Essential guide for creating and cloning virtual machines for use with VMware, Microsoft Hyper-V or Citrix XEN and how to avoid the most common pitfalls. - Published: 2010-02-05 - Modified: 2024-11-19 - URL: https://petri.com/guide-to-creating-and-cloning-virtual-machines/ - Categories: Virtualization - Article Type: Overview A great reference guide for creating and cloning virtual machines for use with VMware, Microsoft Hyper-V or Citrix XEN and how to avoid the most common pitfalls. As you probably know by now, Microsoft-based operating systems use SIDs (Security IDs) that are generated as part of the initial setup of Windows. If you have more than one computer with the same SID, this could cause problems, and cloning a computer (either physical or virtual) without re-generating this SID can cause SID duplication. Please read the following article if you need to learn more about this issue: Do not disk duplicate installed versions of Windows http://support. microsoft. com/kb/162001 Curious about what sort of problems you may run into if you don't follow these guides? See my article about email stuck in Drafts folder on Exchange Server 2007/2010, for one example of what can happen... BTW, you can use PsGetSid (by Microsoft Sysinternals) to find out if you're using computers with duplicate SIDs: Have you performed a rollout, only to discover that your network might suffer from the SID duplication problem? In order to know which systems have to be assigned a new SID (using a SID updater like our own NewSID), you have to know what a computer's machine SID is. Up until now, there's been no way to tell the machine SID without knowing Regedit tricks and exactly where to look in the Registry. PsGetSid makes reading a computer's SID easy, and works across the network so that you can query SIDs remotely. PsGetSid also lets you see the SIDs of user accounts and translate a SID into the name that represents it. Assumptions This guide... --- ### Issues with E-mail Stuck in the Drafts Folder on Exchange 2007/2010 > Not able to send mail from Outlook or OWA 2010? Is it stuck in the Drafts folder on your Exchange Server? Learn why this is happening and how to fix it. - Published: 2010-02-04 - Modified: 2024-11-19 - URL: https://petri.com/email-stuck-in-drafts-folder/ - Categories: Exchange Server - Article Type: Overview Not able to send mail from Outlook or OWA 2010? Is it stuck in the Drafts folder on your Exchange Server? Learn why this is happening and how to fix it in this quick tip article by MVP Daniel Petri. This is one of the cases where you get the feeling that things got messed up, and you simply do not know why or how to even begin to fix them. Story goes like this: In preparation for an upcoming Exchange Server 2010 course that I'm scheduled to teach next week, I sat at home with my Dell XPS laptop (running with 8 GB RAM and a 258 GB SSD), installed VMware Workstation, and prepared a few base images of Windows Server 2003 SP2 (to be installed with Exchange Server 2003 in preparation for the migration labs), and Windows Server 2008 R2 (to be installed with Exchange Server 2010). To prepare the images I installed 2 virtual machines, one with each operating system. I then updated each VM, installed some of the stuff I use in order to customize and prepare the machines for my personal preferences, and got ready to clone them. As you probably know by now, and if you don't, it's about time, Microsoft-based operating systems use SIDs (Security IDs) that are generated as part of the initial setup of Windows. If you have more than one computer with the same SID, this could cause problems, and cloning a computer (either physical or virtual) without re-generating this SID can cause SID duplication. You can read my "Creating and Cloning Virtual Machine Images" article for more information. Anyway, knowing this issue I was careful to run SYSPREP on both VMs before shutting them down and... --- ### VMware vSphere Data Recovery: Overview and Deployment > See where VMware Data Recovery for vSphere improves upon VMware Consolidated Backup for management of all your virtual machine backup, restore, and recovery needs. - Published: 2010-01-20 - Modified: 2024-11-19 - URL: https://petri.com/vmware-vsphere-data-recovery/ - Categories: VMware - Tags: Backup, data recovery, Disaster Recovery, esx, ESXi, vmware, vSphere - Article Type: Overview In this article VMware expert Tom Finnis continues his evaluation of vSphere4 with a look at the new Data Recovery feature. This adds a comprehensive disaster recovery solution to the vSphere suite, providing full and incremental Virtual Machine backups all managed via a vCenter plugin. Read on to learn more.... Overview One of the new features in vSphere is VMware's Data Recovery, included in the “Essentials Plus” solution bundle or the vSphere Advanced edition. It is provisioned as a virtual machine within your vSphere environment and integrates with the vCenter server to give you fully centralized management of your backups. Data Recovery greatly improves on the original “VMware Consolidated Backup” by offering a full GUI management interface with various wizards to aid the setup and management of all your backup/restore jobs. Key Features Full and incremental backups of Virtual Machine images, and file level backup/restore for Windows VMs. VSS support for Windows VMs for more reliable backups Data de-duplication to reduce storage requirements for backups vCenter based management console for centralized GUI management and intuitive wizards to simplify operations Disk based storage using the standard range of connection protocols – iSCSI, FC, NAS or local host storage Fully vSphere integrated and aware so will continue to backup VMs when they are moved to a different host You can try out VMware Data Recovery for free by evaluating VMware vSphere at this link. Will it replace my existing Disaster Recovery solution? The simple answer is no, vSphere Data Recovery is not intended  as a single solution for your backup requirements, although it can greatly enhance your disaster recovery. There are two main reasons for this, the first being that it only supports disk based backups, so you still have to provide some form of off-site storage. The second... --- ### How to Create & Restore a Backup with VMware vSphere Data Recovery > Guided instructions for how to configure the data recovery appliance, schedule backups and restore a virtual machine with VMware Data Recovery. - Published: 2010-01-20 - Modified: 2024-11-19 - URL: https://petri.com/vmware-data-recovery-backup-and-restore/ - Categories: VMware - Tags: Backup, data deduplication, data recovery, Disaster Recovery, esx, ESXi, restore rehearsal, upgrade virtual hardware, vmware, vSphere - Article Type: How To Tom Finnis explains how to configure the Data Recovery appliance, schedule backups and restore a virtual machine from a backup. Also covered are advanced features such as VSS integrated file level backups and data de-duplication. Introduction In my previous article on vSphere Data Recovery, you learned how to deploy the DR plug-in for the vSphere4 client and how to add the appliance to your virtual infrastructure. You also learned that one of its key features is an intuitive, wizard driven management interface that is integrated with the vSphere client to allow for simple configuration of your backup jobs. Assuming you followed the steps described in that article you should now be ready to learn how to use that management interface; in this article we will cover creating a backup schedule for a virtual machine, running a backup job and then how to restore that VM from the backup. Data Recovery Basic Principles The vSphere Client Data Recovery plug-in is used to configure the Data Recovery virtual machine, which then takes care of backup and restore jobs. In theory the DR VM can backup up to eight VMs concurrently, although its CPU utilization must be under 90% for it to start a backup job, otherwise it will wait until it drops. It works by using ESX's snapshot feature to freeze a point-in-time copy of the target VM's disks, which then give it a locked image to backup whilst the VM can continue to ope rate as any disk changes are instead written to an interim snapshot file. Once the backup has completed the DR VM then releases the snapshot so that the intervening disk changes are replayed from the interim snapshot file into the frozen... --- ### Create a Unified Outgoing VDI Gateway with Windows Server 2008 R2 and ObserveIT > How to use a single outgoing virtual desktop (VDI) gateway to remotely connect to multiple locations with full audit visibility of all actions performed. - Published: 2010-01-15 - Modified: 2010-01-15 - URL: https://petri.com/unified-outgoing-vdi-gateway/ - Categories: Windows Server 2008 - Article Type: How To In this article, MVP Daniel Petri provides a solution for service providers that need to connect to multiple customer locations (using different protocols, according to customer requirements) and want to provide a single access point through which all outgoing traffic is routed. It is very common for enterprises to use a Terminal Server/Citrix gateway in order to give access to external vendors to your internal servers/resources. However, I am starting to see a growing adoption of “mirror-image” solution: Service providers that need to connect to multiple customer locations (using different protocols, according to customer requirements) want to provide a single access point through which all outgoing traffic is routed. Just as with an incoming gateway solution for enterprises, these service providers have achieved two important benefits with their outgoing gateway architecture: Ease of administration and lower costs for managing multiple access methods Full audit visibility of all actions performed on your clients’ servers during any remote support session In order to fulfill this requirement, the service providers are using a different approach that includes a VDI gateway solution to initiate the remote connections, and ObserveIT software in order to provide the full audit of the user session activities. In this scenario, service providers use a combination of Virtual Desktop Infrastructure (VDI) client machines that are stored on one of more virtualization hosts. These computers are stored in a saved or even shut down state, and are woken up when one or more users connect to them. This VDI implementation is combined with a central remote access mechanism that the users connect to. That mechanism serves as a session broker, a central component that “knows” where the VDI clients are stored, their state (running, saved, shut down and so on), and the status of existing... --- ### Enable "God Mode" in Windows Server 2008/R2, Windows 7 and Vista > See how to enable "God Mode" - a secret tweak for Windows 7, Server 2008 and Vista that shows all Windows customization settings in a central GodMode folder. - Published: 2010-01-13 - Modified: 2024-09-04 - URL: https://petri.com/windows-god-mode/ - Categories: Windows Server - Article Type: How To Learn how to enable "God Mode" - a tweak for Windows 7, Server 2008 and Vista that shows all Windows customization settings in a central GodMode folder. When you want to customize your workstation (and sometimes, even your server), you usually turn to "regular" configuration tools such as Control Panel applets, the computer's registry, command line tools and even the computer's local Group Policy. In most cases, using these tools allows you to get the job done and configure your computer the way YOU want it. However, there are times where you need to make one small tweak, one small change, and you simply cannot find the correct Control Panel applet to make the change you need. Here is where this tweak comes in action. By using it, you will be able to enter what is called "God Mode", and you will get all the possible Windows tweaks conveniently located at your finger tips, all in one place. Suddenly you will get every setting and option right in front of you, ready to be used without having to browse among different settings before getting what you are looking for. Note: While initially discovered for Windows 7, it seems that this tweak works for Windows 7, Windows Vista, Windows Server 2008 and Windows Server 2008 R2. To enable "God Mode" follow these steps: 1. Right click on any blank space on your desktop. 2. Click new from the menu and create a New Folder. 3. Rename the folder as follow: GodMode. {ED7BA470-8E54-465E-825C-99712043E01C} 4. Once the folder has been renamed, the folder icon will change too. Now, simply double-click on the GodMode folder... Bingo... over 200 separate... --- ### Using ImageX for File-Based Image Deployments > Understand ImageX for Windows 7; a tool that allows you to capture, modify, and apply disk images for deployment of systems using Windows Imaging format (.wim). - Published: 2010-01-12 - Modified: 2010-01-12 - URL: https://petri.com/imagex/ - Categories: Windows Client OS - Tags: disk management, Hyper-V, Microsoft, Virtualization, Windows Client OS - Article Type: Overview ImageX is a command-line tool that can be used to capture, modify, and apply file-based disk images for deployment of systems in an enterprise by leveraging the Windows Imaging format (.wim files). Learn how you can leverage it for your imaging and deployment needs in this article by Jason Zandri. By leveraging the Windows Imaging format for your Windows 7 deployments, systems administrators will be able to streamline the process of deploying systems in their environments. Imaging systems with tools available in Windows Server 2008 and Windows 7 that leverage image-based installations allow for easier initial setup, overall improvements to their systems deployments and their image storage and management. In a recent article about Windows Image Format I reviewed some of the benefits in leveraging the Windows Imaging format and in an effort to get the most out of your imaging efforts you'll need to get an understanding of the tools you can use; one of which is ImageX. In this article I will go over what ImageX is and how you can leverage it for your imaging and deployment needs. What is ImageX? ImageX is a command-line tool that can be used to capture, modify, and apply file-based disk images for deployment of systems in an enterprise by leveraging the Windows Imaging format (. wim files). This can be done by leveraging the image files on a network share for a more "manual" / one off deployment of the images scenario or through the use of Windows Deployment Services (Windows DS) in an effort to add a little methodology, process and standardization to your deployments. On an even larger scale than Windows Deployment Services, you could leverage the Systems Management Server (SMS) Operating System Deployment Feature Pack as part of your deployment strategy to roll out the... --- ### Creating a Virtual Hard Disk Image from a Running OS with Disk2vhd > Disk2vhd is tool that creates virtual hard disk images of running operating systems loaded on physical hardware; allowing the transition from disk to VM. - Published: 2010-01-04 - Modified: 2010-01-04 - URL: https://petri.com/physical-to-virtual-with-disk2vhd/ - Categories: Virtualization - Tags: disk management, Hyper-V, Microsoft, Virtualization, Windows Client OS - Article Type: How To Disk2vhd is tool from Microsoft's Sysinternals group that allows system administrators to create virtual hard disk images (VHD) of running operating systems loaded on physical hardware. VHDs are the Microsoft’s Virtual Machine disk format used in Microsoft Virtual PC or Microsoft Hyper-V virtual machines (VMs). Disk2vhd Overview There are other physical-to-virtual tools that are available to create images out of installed operating systems running on physical hardware; the main advantage of the Disk2vhd tool is that you can run it on a system that is up and loaded as it uses the Windows’ Volume Snapshot capability to create a point-in-time snapshot of the volumes you want to include in a conversion. The Disk2vhd tool also allows for the ability to create the VHDs on other local volumes including the active one being converted. – While the tool does allow you to create the file in this manner there is a performance hit; it is always better to create the VHD is on a different physical disk. Running Disk2vhd Once you download the tool from the Microsoft Website (which still shows as a Sysinternals download point at http://download. sysinternals. com/Files/Disk2vhd. zip) you would open the ZIP file to expand the files to a location to run them. Once that is done you would run disk2vhd. exe and accept the Sysinternals Software License Terms which would then bring you to the application's main view. The default view of my physical system is shown below. You'll notice that the tool... --- ### Evolution of Windows Firewall: Windows 7 > Learn the basic functionality of the Windows 7 Firewall service as well as some of the advanced security configuration. - Published: 2009-12-20 - Modified: 2009-12-20 - URL: https://petri.com/windows-7-firewall/ - Categories: Security - Tags: firewall, Security, Windows 7, Windows Vista, Windows XP - Article Type: Overview Learn the basic functionality of the Windows 7 Firewall service as well as some of the advanced security configuration. In this four part series, we covered how Windows Firewall started out in Windows XP (in part one), the changes to Windows Firewall in Windows XP SP2 (in part two), and how Windows Firewall evolved with Windows Vista. In this article we will take a look at the final sets of enhancements that we have available today in Windows 7. Basic Functionality of the Windows 7 Firewall Service The Windows 7 Firewall service performs many of the same functions as its Windows Vista predecessor with a few moderate changes. When you open the Windows Firewall from Control Panel --> All Control Panel Items --> Windows Firewall you can see all of the base configuration settings that you can adjust on the system. As you can see from the screen shot above, one of the added basic functionalites is the ability to configure the firewall service on a network by network basis as each network connection can be assigned its own firewall profile separate of other connections on the computer. In prior versions of the Windows Firewall service, only one firewall profile could be active at a time. When a system was configured to use multiple networks (e. g. wireless and wired where one was set to DOMAIN and the other set to PUBLIC) the firewall profile that was used for both networks was the one with the most restrictive rule set. When you need to make changes to the notification settings you can make this selection via Control... --- ### Increase Boot Volume Size of a Windows Server 2008 Virtual Machine > Learn how to use the native Disk Manager in Windows Server 2008 to expand (and in some cases shrink) the boot partition without any downtime at all! - Published: 2009-12-18 - Modified: 2024-09-04 - URL: https://petri.com/expanding-boot-volumes-for-server-2008-vm/ - Categories: Virtualization - Article Type: How To Before the release of Windows Server 2008 the process of expanding the boot volume was tedious, and in most cases involved downtime and the usage of third party partition tools to get the job done. Now, with Windows Server 2008 you can use the native Disk Manager to expand (and in some cases shrink) the boot partition without any downtime at all! Learn more... How often have you found yourself running out of space on your boot volume on your Windows server? Before the release of Windows Server 2008 the process of expanding the boot volume was tedious, and in most cases involved downtime and the usage of third party partition tools to get the job done. Using Windows Server 2008 you can use the native Disk Manager expand (and in some cases shrink) the boot partition without any downtime at all! Let me demonstrate this using VMware vSphere with the Windows Server 2008 system as a virtual machine (VM). If your Windows server wasn't virtualized, this same process would apply but you would have to either have additional space available on the physical disk or you would have had to dynamically "hot" added a new physical disk. Expanding the Boot Volume To demonstrate how this works, I installed Windows Server 2008 as a virtual machine inside VMware ESXi 4. 0. During the creation of the VM the boot partition size was set at 20 GB, which in Windows Server 2008 might just be a bit to small. To expand it, we need to expand the virtual disk first. This is a simple process, all it needs is a couple of mouse clicks and you're set. In the vSphere Client, right click the virtual machine and select Edit Settings Next, you need to find the virtual disk and edit it's size from 20 GB to 30 GB, or any other size you... --- ### Evolution of Windows Firewall: Windows Vista Firewall - Published: 2009-12-15 - Modified: 2009-12-15 - URL: https://petri.com/windows-vista-firewall/ - Categories: Security - Tags: firewall, Security, Windows 7, Windows Vista, Windows XP - Article Type: Overview We started this series with how Windows Firewall started out in Windows XP and then the changes to Windows Firewall in Windows XP SP2. This article will cover how Windows Firewall changed with Windows Vista. Stepping up from Windows XP SP 2 Windows Firewall as it was introduced as part of Windows XP Service Pack 2 was a big change from what was offered under Internet Connection Firewall as part of the initial release of Windows XP. Windows Firewall on Windows Service Pack 2 introduced users to the Windows Security Center for the first time which was a central point of access for users and administrators to manually configure not only the firewall settings for Windows but also the settings and the status of Automatic Updates and Virus Protection as desired. Additionally, these new changes to the underlying Windows Firewall service were paralleled by some functional changes offered to administrators regarding some automation of the settings of the Windows Firewall service using Group Policy. The Windows Firewall service on Vista, as was also the case on the Windows XP Service Pack 2 overhaul, provides protection for the operating system during the boot process and this protection caries forward to the present version under Windows 7 today. The largest changes to Windows Firewall from XP SP2 to Vista can be summed up as follows: The management interfaces of Internet Protocol Security (IPsec) and the firewall have merged. IPsec and the firewall are both designed to block traffic within set parameters and... --- ### Fast and Affordable Backup for the SMB - Published: 2009-12-13 - Modified: 2024-11-19 - URL: https://petri.com/fast-affordable-backup-for-the-smb/ - Categories: Backup & Storage - Article Type: Overview This month's topic comes as a result of a question sent to our feedback email box recently: "Data is increasing and budgets are shrinking but reliable backups are more important than ever. As an SMB, what should I be looking for? " Today's backup systems need to be fast, reliable, affordable and designed to easily handle offsite storage and quick recovery. Tape, disk and cloud backup providers all tout the benefits of their solutions but each tends to fall short in at least one of these important characteristics. So, what to choose... ? Idealstor, a US based data storage company, has a new option. The company recently launched their Bantam removable disk backup system to meet the needs and budget of the small to mid sized business. The Bantam combines the best of tape, disk and cloud backup and offers an affordable, portable and reliable backup system. By using SATA disks as removable backup media, Idealstor's Bantam combines the speed, reliability and capacity of disk with the portability of tape based backup, transfer rates up to 480MB/second and is designed to be used like tape for backup, offsite storage and disaster recovery. The result is a removable disk backup system designed to help you backup more data faster, and starting at only $299 with capacities up to 1TB/disk, it's a great option priced to fit even the tightest SMB budgets. Bantam's Top Features: Native disk capacities of 320GB, 500GB, 750GB and 1TB Up to 480MB/second transfer rates and is compatible with USB3... --- ### Evolution of Windows Firewall: Windows XP with SP2 > Learn how Windows Firewall changed between Windows XP and XP SP2. - Published: 2009-12-12 - Modified: 2024-12-03 - URL: https://petri.com/windows-xp-sp2-firewall/ - Categories: Security - Article Type: Overview We started this series with how Windows Firewall started out in Windows XP. This article will cover how Windows Firewall changed between Windows XP and XP SP2. In the other 3 parts of this series, I will show you how the Windows Firewall changed, over time, to be what it is today in Windows 7. From Internet Connection Firewall to Windows Firewall Internet Connection Firewall (ICF) that was available as part of Windows XP and Windows XP with Service Pack 1 (SP1) offered a baseline level of security through Stateful Packet Filtering which derives filtering decisions on a packet's state and the context information of the active session. This initial firewall service offered as a part of Windows XP was disabled by default due to concerns with backward compatibility with older applications and due to the fact that many end users were not familiar enough to configure their existing applications to work through the firewall. Because of some high profile worm attacks in 2003 and 2005 against the Windows operating system as evidenced in the Blaster Worm and Sasser Worm events Microsoft totally revamped the Internet Connection Firewall. As part of the release of Service Pack 2 the Windows Security Center was introduced and the Windows Firewall was born. Windows Security Center The introduction of the Windows Security Center as part of Service Pack 2 was almost as important as the changes to Windows Firewall. This resource center allow users to have a single place for them... --- ### Disabling User Account Control (UAC) in Windows 7 > Highlights the best options to reduce or completely disable User Account Control (UAC) notifications on your Windows 7 computer. - Published: 2009-12-08 - Modified: 2024-12-03 - URL: https://petri.com/disable-uac-in-windows-7/ - Categories: Windows 7 - Tags: Editor's Pick - Article Type: How To Learn your options for limiting User Account Control (UAC) notifications and/or turning them off completely in Windows 7 in this article by MVP Daniel Petri. As described in previous articles, User Account Control (or UAC) is included in Windows to help prevent unauthorized changes to your computer. UAC notifies you when changes are going to be made to your computer that require administrator-level permission. These types of changes can affect the security of your computer or can affect settings for other people that use the computer. Editor's Note: In this article you'll learn how to limit notifications from and/or disable UAC in Windows 7, but we also have tutorials that show you how to disable UAC in Windows Vista or disable UAC in Windows 8 as well. When you are notified by UAC that there is a pending change to your computer, you should carefully read the contents of each dialog box before allowing changes to be made to your computer. It's usually safe to allow changes to be made to Windows settings without you being notified. However, certain programs that come with Windows can have commands or data passed to them, and malicious software can take advantage of this by using these programs to install files or change settings on your computer. You should always be careful about which programs you allow to run on your computer. In Windows 7, UAC settings has a slider to change the level of the notifications and allows you to choose one between the following four options: Always notify - With this option, you'll be notified before programs make changes to your computer or to Windows settings that require the permissions of... --- ### Install & Configure the Verizon Network Access Manager > A step by step guide, including system requirements, for the installation and configuration of the Verizon Network Access Manager. - Published: 2009-12-03 - Modified: 2024-09-04 - URL: https://petri.com/install-configure-the-verizon-network-access-manager/ - Categories: Networking - Article Type: How To VZAccess Manager works with your notebook computer and data PC Card to provide wireless Internet connectivity through your network. VZAccess Manager can also be used optionally to connect to Wi-Fi networks when available. It lets people stay on top of their business when they're on the road by bringing more of the office directly to their laptops, and conveniently brings together the remote access connections and business applications one needs to stay productive in a single, easy-to-use control panel. Having access to almost everything you need in one place at the click of a button helps make you more productive than ever. This easy how-to-guide will show you how to setup VZAccess manager and get started. SYSTEM REQUIREMENTS In order to set up VZAccess Manager, you will need the following minimum system requirements: * Microsoft Windows 98 (Second Edition), Windows Millennium Edition (ME), Windows 2000 Professional, or Windows XP (Home, Professional or Tablet) * Pentium 166 MHz or higher * Verizon Wireless PC Card * Optional Wi-Fi adapter for Wi-Fi access. * Internet browser software for Internet access or the software used by your company for network access. * Verizon Wireless wireless data service SETUP INSTRUCTIONS Important: VZAccess Manager software must be installed before you insert the PC Card in to the computer for the first time. Only after the software has been installed can Windows successfully install and configure the PC Card. After inserting the CD, the CD front-end will run and present you will several options. At this... --- ### Installing Chromium in VMware Player 3.0 > Preview the latest development version of the new Google Chrome OS with VMware Player 3.0. - Published: 2009-12-02 - Modified: 2024-12-03 - URL: https://petri.com/installing-chromium-in-vmware-player-3-0/ - Categories: VMware - Article Type: How To Want to check out the new Google Chromium OS? Got VMware Player 3.0? You're in luck! All it takes is a quick download and some clicking and you're all set to explore the developer preview thats curently available. Want to check out the new Google Chrome OS? Got VMware Player 3. 0? You're in luck! If you don't have the prerequisites, fear not. They are both available as quick downloads, and you'll be up and running in no time! All it takes is a quick download and some clicking and you're all set to explore the developer preview thats curently available. Note that this isn't the final version, it's just what they have so far so don't get too excited just yet. Downloading Prerequisites As mentioned, we need VMware Player, so if you don't have that already go ahead and download it from VMware. Next, you need the pre-configured disk file from gdgt and when that's finished, we're just a couple of small steps away from testing out the Chromium Preview. Installing Chromium Find the pre-configured disk file you downloaded and extract it to a known location. We need to use that file at the very end of the installation, so remember where you extracted it to. Configuring a new Chromium virtual machine is very easy in VMware Player 3. 0. Start VMware Player, and click on the "Create a New Virtual Machine" option Since we have downloaded a preconfigured disk image for use with VMware Player, we select the "I will install the operating system later" option, and click on "Next" As you might expect, VMware Player doesn't come with a predefined and supported template for Chromium. This is no problem, we just need to define... --- ### Image-based Installations with Windows Imaging Format > Details the Windows Imaging file format (WIM), the benefits using it for Windows installs, and reviews the tool (WIMGAPI) used to manage the WIM format. - Published: 2009-11-29 - Modified: 2024-11-19 - URL: https://petri.com/image-based-installations-with-windows-imaging-format/ - Categories: Windows 7 - Tags: disk management, Hyper-V, Microsoft, Virtualization, Windows Client OS - Article Type: Overview This article details the Windows Imaging file format (WIM), the benefits of leveraging it for deploying Windows installs, and reviews the tool (WIMGAPI) that developers use to mange existing WIM files. Image-based deployments of Windows 7 and prior desktop operating systems like XP Profession and Windows Vista are done to streamline the roll out process and to better allow small to large businesses as well as OEM manufactures the ability to quickly build and deploy their systems in an assembly line fashion. After installing an operating system on reference system and setting it up with specific settings and configuring other applications they would leverage an imaging solution to capture an image based on a sector-by-sector copy of the reference computer. Sector-by-sector copying can be effective in only so many scenarios and has a number of limitations. Imaging systems with tools available in Windows Server 2008 and Windows 7 that leverage image-based installations allow for easier initial setup, overall system deployment, and an improvement to image storage and management. WIM Overview Windows Imaging format, referred to as WIM, is a file-based disk image first introduced around the release of Windows Vista. Windows 7 installations use this image file as well. – Imaging systems has been around a long time and for many iterations of Windows operating systems; Windows Vista was the first desktop operating system to leverage the WIM format. When installing Windows 7 right off of the DVD you are booting the system from a boot image (boot. wim) which is the bootable version of Windows PE (Windows Preinstallation Environment) and this is the installation environment in which the installation routine runs for the operating... --- ### Evolution of Windows Firewall: Windows XP > This article will cover the background and evolution of the Windows Firewall, starting with Windows XP. - Published: 2009-11-27 - Modified: 2024-12-03 - URL: https://petri.com/windows-xp-firewall/ - Categories: Security - Tags: firewall, Security, Windows 7, Windows Vista, Windows XP - Article Type: Overview Windows Firewall under the Windows 7 operating system offers many new features and operational enhancements over prior versions.  Where did the Windows Firewall begin? Windows XP offers the first iteration of a firewall service as part of the operating system. Additional changes were introduced as a part of the release of Windows Vista until the full evolution of what we have today under Windows 7. This article will cover some of the background and evolution of the Windows Firewall, starting with Windows XP. In the other 3 parts of this series, I will show you how the Windows Firewall changed, over time, to be what it is today in Windows 7. Related: Windows XP End of Support Guide Enabling Internet Connection Firewall Internet Connection Firewall (ICF) under Windows XP and Windows XP with Service Pack 1 (SP1) provided Windows users with a baseline level of security from within services that the operating system natively managed through Stateful Packet Filtering. Stateful packet filtering will derive decisions on a packets state and the context information of a session whereas a static packet filter decides whether or not to drop a packet based solely on packet addressing information only. The service was designed to protect systems that were directly connected to the Internet as well as other systems connected to in via Internet Connection Sharing in a home network setup. To review or make changes to the Internet Connection Firewall you would need to open Network Connections from the Control Panel and... --- ### Installing Ubuntu 9.10 as a Virtual Machine in Windows > Step-by-step tutorial on how to Ubuntu Linux 9.10 Karmic Koala into Microsoft Windows via virtualization using only free software. - Published: 2009-11-27 - Modified: 2024-11-19 - URL: https://petri.com/installing-ubuntu-9-10-as-a-virtual-machine-in-windows/ - Categories: Virtualization - Article Type: How To This tutorial by Christian Mohn provides instructions on how to nest Ubuntu Linux 9.10 Karmic Koala into Microsoft Windows using only free software. Introduction This tutorial will provide instructions on how to nest Ubuntu Linux 9. 10 Karmic Koala into Microsoft Windows using only free, as in beer,  software. Getting Started The first step in the tutorial is to download and install VMware Player. VMware Player is a free download, and the installation is very straight forward. Download VMware Player from the VMware homepage. Download and install the latest version. At the time of writing, VMware has recently released the 3. 0 version of the software. One of many improvements in this version, is the ability to create new virtual machines. In earlier versions this ability was only available in VMware Server, VMware Workstation or VMware ESX. The second step is to download Ubuntu Linux. You can download Ubuntu for free from the Ubuntu website. The download will be a disk image of Ubuntu with an extension of . ISO. The download will be about 700MB, so depending on the speed of your Internet connection, it may take several hours to download completely. To enable the fastest download, pick a mirror closest to your physical location. Creating a new Virtual Machine in VMware Player 3. 0 Since we can create new VMs in VMware Player now and we don't have to resort to any hacks or workarounds like we had to in previous versions, we'll get right down to installing the virtualized Ubuntu 9. 10 instance. Start VMware Player, and find the "Create a New Virtual Machine" option This will in turn show you the... --- ### Generate Reports About User Actions on Windows Servers > Learn how to record and index of any human interaction with your servers, and index this data alongside with detailed meta data of what is seen on the screen. - Published: 2009-11-24 - Modified: 2024-12-03 - URL: https://petri.com/generate-reports-about-user-actions-on-windows-servers/ - Categories: Windows Server 2008 - Article Type: How To One of the toughest questions that IT professionals commonly face in today's dynamic IT world... Who touched the servers and what did they do? ObserveIT provides products which allow enterprise-wide recording and indexing of any human interaction with your servers, and index this data alongside with detailed metadata of what is seen on the screen. Learn all about it in this article by MVP Daniel Petri. Whenever there is need to generate reports about what users have been doing on your servers, most administrators are left empty handed. This need may arise due to some misconfiguration that someone did, a deleted configuration file, a registry key that someone edited, Active Directory objects such as users, groups or OUs that were changed or even deleted and many more. These configuration changes and other actions can potentially render a server or even the entire system inoperable, but the sad thing is that there are very few ways in which an administrator can truly see or tell what exactly happened and who did it. Do you use any social networks? Follow ObserveIT on Facebook, Linkedin and/or Twitter. The lack of reporting capability in Windows-based operating systems is not new. Administrators have been left "in the dark" ever since the old days, and although Windows Server 2008 and Windows Vista/7 have changed the way administrators work with the Event Viewer, it's still up to us to perform the tedious task of decrypting long and poorly written events, decipher event IDs (many of which share the same number, but for a wide variety of error codes and sources). Even with the new and re-designed Windows Server 2008/Vista/7 Event Viewer, many human actions are still not recorded. For example, unless you specifically enable Object Access auditing in the local policy of the system (or through a GPO), there is no way on earth to tell what files have been... --- ### Managing Multiple Remote Connections mRemote (Open-Source) Connection Manager > Learn how you can save money and aid in the administration of multiple remote systems with the free and open-source tool mRemote (released under the GPL license). - Published: 2009-11-23 - Modified: 2024-09-04 - URL: https://petri.com/mremote-open-source-remote-connection-manager/ - Categories: Windows 7 - Article Type: How To Learn how you can save money and simplify the administration of multiple remote systems with the free and open-source tool, mRemote (released under the GPL license), as detailed in this article by Wesley D. It seems as if the ratio between Systems Administrators and the systems that they must manage is getting higher and higher. At the same time, budgets are getting smaller and smaller. You may have managed to get a copy of Windows 7 out of the budget, but not much else. One way to save both money and aid in the administration of multiple remote systems is with the free and open-source tool mRemote (released under the GPL license). The mRemote project was actively developed up until late 2008 when it was merged with a commercial, closed-source multiple remote desktop tool called vRD. However, in spite of the project having been officially halted, mRemote is quite mature and has no crippling restriction on its available features like the free version of vRD does. Supported Protocols: mRemote supports creating connections with the following protocols: Remote Desktop Protocol VNC Citrix ICA SSH Telnet HTTP and HTTPS rlogin RAW Connections using RDP require version 6. 0 of the Microsoft Terminal Services Client. Citrix ICA connections require you to download the free ICA Client from Citrix. com. Telnet, SSH, rlogin and RAW connections require the use of PuTTY as an external helper application. All mRemote packages come with PuTTY already included in the files. HTTP and HTTPS connections can be made within mRemote using the Internet Explorer rendering engine. However, you can also use the Gecko (Firefox) rendering engine if you download the free XULrunner. User Interface: One of the best features of mRemote... --- ### Planning for vSphere: Key Considerations for a Successful Deployment > The ultimate guide to planning a VMware vSphere 4.0 deployment; from determining system requirements to licensing considerations, and all options in between. - Published: 2009-11-22 - Modified: 2024-11-19 - URL: https://petri.com/planning-for-vsphere/ - Categories: VMware - Tags: esx, ESXi, High Availability, Virtualization, vmware, vSphere, vsphere4 - Article Type: Overview Whether you're planning on virtualizing the majority of your existing servers or just using it as part of your infrastructure, vSphere4 represents a major investment for most SME IT managers. This article is aimed at helping you plan for implementing your own vSphere4 Infrastructure, from meeting system requirements to choosing appropriate licensing options, and all options in between. The fundamental assumption in all my vSphere4 articles is obviously that you are intending to carry out all the work yourself, rather than bring in outside experts to do it for you. I believe that none of the procedures involved should be beyond the skill level of the average IT Manager, provided they put in the necessary preparation and practice. However evaluating systems in a lab is a major step away from deploying them in a live business environment, with both the immediate cost of hardware/software and the potential cost of disrupting business productivity to take into account. Therefore please consider carefully whether you are ready to take this on yourself, or if it would be more prudent to seek assistance. At the very least this article should help you to gain a much better understanding of what is involved, and so ensure that you are getting value for money if you do outsource the work. Part 1 - Assess Your Requirements To begin, when considering a vSphere deployment, there are two basic areas where you need to assess your requirements; virtual machine resource capacity and vSphere features such as high availability. As well as the immediate needs you also need to consider what they will be in the future too, as a small additional outlay now could save you having to spend a much bigger sum a year down the line. One of the key benefits of virtualization is that you can separate your software upgrade... --- ### Easier Navigation Between Remote Desktop Sessions with Windows 7/2008 R2 > Learn how to drag and move RDP tabs to any side of the screen, making it easy to see all sessions when doing RDP-in-RDP in Windows 7 / Server 2008 R2. - Published: 2009-11-18 - Modified: 2024-09-04 - URL: https://petri.com/easy-navigation-between-rdp-sessions/ - Categories: Windows Server 2008 - Article Type: How To Previously, when doing an RDP-in-RDP session, the yellow RDP bar or tab sits one on top of the other, making it hard to minimize one screen instead of the other. However, new functionality in Windows 7/ 2008 R2 makes it possible to drag these tabs to any side of the screen, making it easy to see one tab on top of the other. Get the details in this article by MVP Daniel Petri. In previous version of Windows, the remote desktop client, mstsc. exe, used to have a yellow tab on top of the screen, viewable when using the RDP connection in full screen. This tab could be fixed to the top of the screen, or minimized when needed. So far, so good. Now imagine this: You're using a Windows Server 2003 or Windows Server 2008, or even a Windows XP Pro machine as an RDP Gateway to other servers/computers on your network. This is a very common usage scenario for many organizations that need to enable remote administrators' access to their internal servers, but do not want to enable RDP access to the entire set of internal computers. In addition, this scenario is useful for administrators that do not have VPN or SSL VPN infrastructure that allows them to connect to any computers that they need on the internal network. This way, these administrators only enable RDP access to one external computer, which could be a Windows Server 2003 or Windows Server 2008, or even a Windows XP Pro machine. From there, the connected administrator opens another RDP connection to internal machines, performing an RDP-in-RDP session. Now, the nasty part is that when doing an RDP-in-RDP session, the yellow RDP bar or tab sits one on top of the other, making it hard to minimize one screen instead of the other. For example, I have an XP Pro machine that has a VPN connection to a specific client's network. After... --- ### Windows Image Deployment with FOG - Published: 2009-11-18 - Modified: 2024-11-19 - URL: https://petri.com/windows-image-deployment-with-fog/ - Categories: Windows Server - Article Type: Overview Whether you have five or 5,000 PCs, managing your OS images is a crucial part of your IT infrastructure. Done well, an image management solution can free up your time and make your help desk (and by extension your users) blissful. Done poorly or not at all and you have entered the misty realms of error prone manual labor, tedium and late nights. FOG (Which stands for Free, Open-source Ghost) can help clear the air surrounding your current image management system (or lack thereof). Basic Components FOG is a Linux based server application that uses TFTP, PXE and client MAC addresses as its core components. Once installed you don't need to hack around in the Linux CLI to operate the software because it uses a handsome PHP based web interface. FOG relies on the network's DHCP service to supply clients with DHCP options 66 (TFTP) and 67 (PXE server). The FOG installation can act as the network's DHCP server or you can use an existing DHCP server. FOG tracks PCs entirely based on their MAC address. Hosts can be entered into FOG's database manually in the GUI, via an imported CSV file or automatically via a client-side command given during the PXE boot process. Server Installation FOG can be installed easily on Fedora or Ubuntu based distributions in spite of it not being included in an official sources list. There are thorough instructions at the official Fog User Guide. There is also a listing of flash tutorial... --- ### Big Improvements to Virtualization in Windows Server 2008 R2 > Windows Server 2008 R2 Virtualization Features: Hot-Add VM Storage, Enhanced Processor and Networking Support, Cluster Shared Volumes (CSV), Live Migration. - Published: 2009-11-18 - Modified: 2024-09-20 - URL: https://petri.com/virtualization-improvements-in-server-2008-r2/ - Categories: Hyper-V - Article Type: Overview Windows Server 2008 R2 brings big improvements in the virtualization area. Learn about Hot-Add VM Storage, Enhanced Processor Support, Enhanced Networking Support, Cluster Shared Volumes (CSV), Live Migration and more... Windows Server 2008 R2 brings a lot of improvements in the virtualization area. Some of the top improvements include: 1. Hot-Add VM Storage Windows Server 2008 R2 Hyper-V supports hot plug-in and hot removal of disk storage in the format of Virtual Hard Drive (VHD) files and/or pass-through disks. This can be done while a VM is running, and allows administrators to meet changing workload requirements. 2. Enhanced Processor Support 64 Logical Processors per host - Windows Server 2008 R2 Hyper-V supports up to 64 logical processor cores, making it possible to run even more demanding workloads on a single physical computer, or consolidate more workloads on a single physical computer. Second-Level Address Translation (SLAT) - Windows Server 2008 R2 Hyper-V also supports Second-Level Address Translation (SLAT) that uses special CPU functions available in Intel processors that support Extended Page tables and AMD processors that support Rapid Virtualization Indexing to perform more VM memory management functions and reduce the overhead of translating guest physical addresses to real physical addresses. By doing this, Hypervisor CPU time is significantly reduced, and more memory is saved for each VM. CPU Core Parking - CPU Core Parking enables power savings by scheduling VM execution on only some of a server’s CPU cores and placing the rest in a sleep state. Processor Compatibility Mode - Processor Compatibility Mode works by hiding a fixed set of processor features that differ among members of the same processor architecture. It brings the... --- ### Speeding Up Internet Explorer 8 with Accelerators > Learn all about Internet Explorer Accelerators; a new feature of IE8 that speed up web browsing by providing quick access to functions like mapping, emailing, etc. - Published: 2009-11-01 - Modified: 2024-11-19 - URL: https://petri.com/internet-explorer-8-accelerators/ - Categories: Windows 7 - Article Type: How To Accelerators are a new feature of Internet Explorer 8 that speed up the web browsing experience by providing quick access to functions like mapping, emailing, etc. that would normally require a few extra steps to reach. Learn all about them in this article by Jason Zandri. Internet Explorer 8 on Windows 7 is the newest release of Microsoft's infamous web browser. In this newest release and running natively in Windows 7 there are a host of new features and options that users can leverage to get more out of their experience on the web and to make it safer than before. – You can leverage some of the new features of Internet Explorer 8 on your Windows XP system as well as Windows Vista and Windows Server 2008 by leveraging the Microsoft download site. Windows Internet Explorer 8 for Windows XP is available for Windows XP Service Pack 2; Windows XP Service Pack 3 and it is available for Windows Internet Explorer 8 for Windows Vista or Windows Server 2008 (all service pack levels). Most of the features and functionality have been back ported to the legacy operating systems but in order to get all of the features and functionality you need to be running it under Windows 7 Overview of Internet Explorer 8 Accelerators One of the new features of Internet Explorer 8 are Accelerators. In order to use them you simply highlight any section of text from the website you are on and then click on the blue Accelerator icon that appears above your selection to get options available to you through the function. These may be Blog with Windows Live, Email with Windows Live, Map with Bing and so forth. Some of the options may not... --- ### How to access USB and Other PCI Devices in VMware ESXi4 VMs with VMDirectPath > In this latest article in his series on vSphere4 Tom Finnis explains one of the less publicised new features in ESXi4 - VMDirectPath; which allows host PCI & PCIe devices to be passed through to the virtual machine. - Published: 2009-10-31 - Modified: 2024-09-04 - URL: https://petri.com/vmware-esxi4-vmdirectpath/ - Categories: VMware - Tags: esx, esxi4, IOMMU, passthrough, PCI, PCIe, USB, VMDirectPath, VT-d - Article Type: How To In this latest article in his series on vSphere4 Tom Finnis explains one of the less publicised new features in ESXi4 - VMDirectPath; which allows host PCI & PCIe devices to be passed through to the virtual machine. Introduction to VMDirectPath Although hardware independence is fundamental to many of the advantages of virtualization it also creates a problem when you need to connect a specific hardware device to a virtual machine. Although SCSI passthrough has been available in ESX for some time accessing other types of device, especially USB, has always required alternative solutions such as USB over IP hubs. With the release of vSphere4 VMware have introduced a new feature called VMDirectPath I/O which allows up to two PCI(e) devices on the host server to be connected to a Virtual Machine. Officially this is provided to reduce the latency and hence improve the performance of devices such as 10Gb NICs and Host Bus Adapters, in fact only a handful of such devices are supported by VMware. However in fact pretty much any PCI(e) device can be connected, just bear in mind that VMware will not help with any problems you may encounter. So far, so good, but there are a number of things to consider before you can go ahead and connect a device, first of all the system requirements. VMDirectPath requires a host server which supports Intel's VT-d or AMD's IOMMU technology, which means the latest generation of chipsets so if your server is over a year old you're probably out of luck. The second significant issue is that because you are directly connecting your virtual machine to physical hardware several key features will no longer be available on that VM, namely: vMotion and Storage vMotion... --- ### Getting Familiar with the Windows 7 Start Menu > See what's changed in the Windows 7 start menu from Windows Vista and XP versions and learn how to quickly customize it for personalization and ease of use. - Published: 2009-10-22 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-start-menu/ - Categories: Windows 7 - Tags: Windows 7, Windows Client OS - Article Type: How To This article looks at the Windows 7 Start Menu, some of the changes in the basic functions of it and how you can perform some customizations for personalization and ease of use. As of today, Windows 7 has been officially released and while there are some subtle changes to the Graphical User Interface (GUI) from Vista it is a pretty big departure from what many people are used to seeing under Windows XP Professional or Home Editions. Despite the inroads Windows Vista may have made into some homes and businesses, Windows XP is still the most widely used operating system so these changes are going to be a bit more of a change for most people. This article will take a brief look the Windows 7 Start Menu and some of the changes in the basic functions of it and how you can perform some customizations for personalization and ease of use. How is the Windows 7 Start Menu Different from Vista and XP The Start Menu has a bit of a different look from what the average Windows XP user is used to working with. Accessing it is still done pretty much the same ways as it was in the past - you'd either hit the Windows "pearl" (the replacement name for START - sometimes referred to as the Windows Logo) or the Windows Logo key on the keyboard to bring it up.   – The Start Menu is normally at the bottom of the screen; I always move it from that default location to the top of the screen on all my systems.   This is just a personal preference of mine and... --- ### Private Browsing with Internet Explorer 8 and Windows 7 > Learn how to use Internet Explorer's InPrivate Browsing feature to surf the web without leaving a track to where you've been and what your activities were. - Published: 2009-10-21 - Modified: 2024-09-04 - URL: https://petri.com/private-browsing-in-windows-7/ - Categories: Windows 7 - Tags: InPrivate, Internet Explorer 8, Windows 7 - Article Type: Overview Internet Explorer's new InPrivate Browsing feature allows you to surf the web using IE8 without effectively leaving a track to where you've been and what your activities were. In this article, Jason Zandri walks through the security and privacy features of this new functionality. Internet Explorer 8 on Windows 7 is the newest release of Microsoft's web browser which include a host of new options and features for security and usability. In this article I will be reviewing one of the security and privacy features called InPrivate Browsing. – You can leverage some of the new features of Internet Explorer 8 on your Windows XP system as well as Windows Vista and Windows Server 2008 by leveraging the Microsoft download site. Windows Internet Explorer 8 for Windows XP is available for Windows XP Service Pack 2; Windows XP Service Pack 3 and it is available for Windows Internet Explorer 8 for Windows Vista or Windows Server 2008 (all service pack levels). Most of the features and functionality have been back ported to the legacy operating systems but in order to get all of the features and functionality you need to be running it under Windows 7 Overview of Internet Explorer 8 InPrivate Browsing The new InPrivate Browsing feature allows you to surf the web using IE8 without effectively leaving a track to where you've been and what your activities were with respect to the details that are often left behind in the browser itself. This new privacy option is useful when you would like to minimize what anyone else might see when they are using your computer. You can start an InPrivate Browsing session from the New Tab page or the Safety button. Opening the InPrivate Browsing... --- ### How to Resolve an Error in NetWkstaGetInfo (2138) > Instructions for how to diagnose and resolve an error in NetWkstaGetInfo (2138). - Published: 2009-10-18 - Modified: 2024-11-19 - URL: https://petri.com/fix-for-error-in-netwkstagetinfo-2138/ - Categories: VMware - Article Type: How To I am running a multitude of Windows-based virtual machines hosted on a bunch of virtualization products, ranging from Microsoft Virtual PC and Virtual Server (yes, I need those for most of the Microsoft Official Curriculum courses I teach), Microsoft Hyper-V, along with those hosted on VMware products such as ESX and (my personal favorite) Workstation. In the past year or so I began receiving strange error when booting up some of my virtual machines: --------------------------- Error --------------------------- Error in NetWkstaGetInfo (2138) --------------------------- OK --------------------------- The error came up on some of the virtual machines I used on VMware Workstation, but because after clicking on the "OK" button nothing wrong happened to my machines and I could continue working normally, I never took enough time to investigate the error. This is why I could not pinpoint the exact times when it occurred. I tried to find a solution for this strange error. I searched Google for the error message but while there were many hits on it, no result seemed to suit my specific environment. Some results did, however, point me to the fact that this error usually appears on VMs running on VMware products. Another solution I found gave me a hint. It suggested to take a look at the computer's startup settings by using MSCONFIG, and if that doesn't help, they suggested repairing the computer's system files by running SFC SCANNOW. While this command usually repairs the operating system's system files, I wanted to find something... --- ### Virtual Disk Options in Windows 7 Virtual PC > Understand the virtual disk options available when configuring a VM: Dynamically Expanding Virtual Disk, Fixed Size Virtual Disk and Differencing Virtual Disk - Published: 2009-10-17 - Modified: 2024-09-04 - URL: https://petri.com/virtual-disk-options-in-windows-7-virtual-pc/ - Categories: Windows 7 - Article Type: Overview This article is one of a list of articles dealing with Windows Virtual PC on Windows 7, and in it I will show you what are the virtual disk options that you can use when building and configuring a VM in Windows Virtual PC. If you haven't done so yet, read my article on installing Virtual PC on Windows 7. When using Virtual PC, there are basically 3 virtual disk options you can use. Unless you want to use the default option which is a dynamically expanding disk, select "Create a virtual disk using advance options" in the VM creation wizard. After pressing Next, you will be presented with the 3 virtual disk options: Lets walk through these options and see what's the difference between them. Dynamically Expanding Virtual Disk As a recommendation, if you're planning to use Windows Virtual PC for its original purpose, that is to run legacy applications that do not work on Windows 7 (most notably - 64-bit version of Windows 7), then using a Dynamically Expanding Virtual Disk, which is the default, is for you. It'll save you disk space, and while there ARE some performance drawbacks, VPC is not intended for running production-type virtual machines. It's all about testing, running legacy apps, giving demos and so on. From a performance point of view, using Dynamically Expanding Virtual Disks is not ideal, and since the VHD files need to grow as more data is added to the virtual disk, there is a... --- ### Can Windows Virtual PC and VMware Workstation Coexist on the Same Computer? > Can Windows Virtual PC & VMware Workstation be installed and function properly on the same machine? Daniel explains the most common errors. - Published: 2009-10-17 - Modified: 2024-12-03 - URL: https://petri.com/can-virtual-pc-and-vmware-workstation-coexist/ - Categories: VMware - Article Type: How To Can Windows Virtual PC & VMware Workstation be installed and function properly on the same machine? Daniel explains the most common errors. I really like VMware Workstation. I've been using it, on and off, for a long time now. I like the fact that it's robust, it's got tons of features, it supports USB devices (a long time before other vendors did), it uses a neat snapshot mechanism, it runs on 32-bit and 64-bit machines, and it lets you run 32-bit and 64-bit versions of guest operating systems. Also, it's got a bunch of other features like ability to drag and drop files, use shared folders, and a many other advanced settings and options. Sure, it costs money, but if there was one software that was worth buying, that's it. However, being a Microsoft Certified Trainer and all, and being an MVP and all, and above all this, having to do demos and a lot of presentations for Microsoft, I always had to have an alternative to VMware Workstation on my "work" laptop. You see, it sure doesn't look nice if I show up at a Microsoft conference, plug my laptop on the podium, and then fire up a VMware product to demo a bunch of virtual machines. Does it? So what are my alternatives? Microsoft Virtual PC is nice. It's free, has been ever since Microsoft bought it from Connectix. However, the older VPC 2007 doesn't seem to work nice on Windows Vista or Windows 7, and besides, there's the new version now - Windows Virtual PC. The new version has a lot of features that were not... --- ### Enabling More than One Remote Desktop Session on Windows XP SP3 - Published: 2009-10-16 - Modified: 2024-09-04 - URL: https://petri.com/multiple-remote-desktop-sessions-on-windows-xp-sp3/ - Categories: Windows Client OS - Article Type: How To As you probably all know by now, Windows XP Professional allows you to only use one concurrent Remote Desktop session. The moment the remote user connects to the workstation by using Remote Desktop, the locally logged-on user is locked out of the computer, and the remote user, if he or she are using the same credentials as the user which is currently logged-on, see the same desktop as the current user saw right before he or she were locked out. If the remote user is using different credentials than the user which is currently logged-on, then they must be members of the administrators local group in order to log-off the current user, and create a new user session. All this is well and fine, but the problem is that sometimes one might want to have more than one concurrent Remote Desktop session. Luckily for us, ever since the first days of Windows XP, there were people who managed to get around this limitation by editing a file on the XP machine, and making some registry changes. When Windows XP SP2 came out, the patched file got overwritten by the new version of the file, and so was the case in Windows XP SP3. Now, there's a new version of the patched file available for you to use. Actually, this is not really a news item, it's just something I came across and decided to write about because I recently got some questions about this issue from a... --- ### Getting Started with the Windows 7 Desktop > See the changes to the Windows desktop and learn to leverage the new functionality to perform customizations for personalization with Windows 7. - Published: 2009-10-15 - Modified: 2024-09-04 - URL: https://petri.com/getting-started-with-the-windows-7-desktop/ - Categories: Windows 7 - Tags: desktop, notification area, Windows 7 - Article Type: Overview This article takes a look the changes to the Windows desktop and new functionality to perform customizations for personalization and ease of use that are included in Windows 7. If you've recently upgraded to a PC running Windows 7, or are considering it, there are some subtle changes to Desktop that you should be aware of. This article takes a brief look the Windows 7 Desktop and the changes in the basic functions of it and how you can perform some customizations for personalization and ease of use. Taking a New Look at the "Old" Desktop When you first log in to the Windows Operating system, the first place you arrive once the machine completely starts is the desktop. The default desktop will look (for the most part) as shown in the image below. – You may notice I have a couple more items that are pinned to my Taskbar than what you might see on a standard installation. With a standard installation you'd see just Internet Explorer, Windows Explorer and Windows Media Player. The default Windows 7 wallpaper / desktop background is shown and unless you have a system that was installed and built by an OEM (Original Equipment Manufacturer) then this is what you'd see. You will find program icons on the desktop that are available to launch when you double click on them and by default on a clean install you'll have only the Recycle Bin there. The Windows Taskbar will be at the bottom of the page in the locked position and you can unlock it by right clicking on it and clearing the Lock the Taskbar checkmark. Once you do... --- ### Installing Remote Server Administration Tools (RSAT) for Windows 7 > Complete instructions (including screenshots) for where to download and how to install Remote Server Administration Tools (RSAT) for Windows 7. - Published: 2009-10-14 - Modified: 2024-11-19 - URL: https://petri.com/remote-server-administration-tools-for-windows-7/ - Categories: Windows 7 - Article Type: How To Remote Server Administration Tools for Windows 7 are a package of add-ons that allow administration of computers running Windows Server 2003/2008/2008 R2 from a remote computer that is running Windows 7. What are Remote Server Administration Tools and where can I get them? Remote Server Administration Tools for Windows 7 are a package of administration tools add-ons that allow IT administrators to manage roles and features that are installed on computers that are running Windows Server 2008/2008 R2, and Windows Server 2003, from a remote computer that is running Windows 7. Note: RSAT is similar in concept, although not in function and method of installation, to what was known as the "Adminpak" in Windows Server 2003/XP days, which could be found in the %systemroot%system32 folder of the server (or downloaded separately - see links below). Another important note: This version is NOT compatible with Windows Vista. To install and use RSAT on Windows Vista (if you're one of the few that actually have Vista... LOL), you'll need to use Vista's specific version. Download details: Microsoft Remote Server Administration Tools for Windows Vista: http://www. microsoft. com/downloads/details. aspx? FamilyId=9FF6E897-23CE-4A36-B7FC-D52065DE9960&displaylang=en RSAT for Windows 7 includes support for remote management of computers that are running either the Server Core or full installation options of Windows Server 2008 R2, and for some roles and features, Windows Server 2008. See download links below. Note that some roles and features on Windows Server 2003 can be managed remotely by using Remote Server Administration Tools for Windows 7, meaning you can use tools such as Active directory Users and Computers, DNS or DHCP management tools and so on, but not all tools will work against Windows Server 2003, and even... --- ### Creating a Virtual Machine in Virtual PC on Windows 7 > Learn how to use Virtual PC in Windows 7 to create, configure and boot your own set of virtual machines with step-by-step instructions and screenshots. - Published: 2009-10-07 - Modified: 2024-12-03 - URL: https://petri.com/creating-a-virtual-machine-in-virtual-pc-on-windows-7/ - Categories: Windows 7 - Article Type: How To In on previous article ("Install Virtual PC on Windows 7") I walked you through the features of the new Windows Virtual PC software that is specially designed for Windows 7. While you can utilize it to boot the default and pre-configured Windows XP virtual machine that can be downloaded from Microsoft's website (see my article on how to install Windows XP Mode on Windows 7), Virtual PC can also be used to create, configure and boot your own set of virtual machines. Important: To run Windows Virtual PC (and with it, XPM), your computer has to have the Intel VT or AMD-V features enabled in the BIOS. To find out if your PC is virtualization capable, please visit the Windows Virtual PC support page: www. microsoft. com/virtual-pc/support. aspx Note: All screenshots and procedures are based on the RC version of Windows Virtual PC. Microsoft Virtual PC for Windows 7 allows users to conveniently run multiple operating systems on a single computer. Users can switch operating systems as easily as they switch applications instantly, with a mouse click. Because each virtual machine acts like a standalone computer, each VM can has its own sound card, video, hard disk(s), network card(s) and its own processor. Since each VM runs its own operating system, users can install and run most x86 operating systems. Note: The fact that the new version of Virtual PC can still only run x86 guest VMs is a pitty. This means that only 32-bit guest operating systems can be... --- ### How to Remove Old Device Drivers from Vista & Windows 7 > Step-by-step instructions for how to uninstall and completely remove unused and conflicting device drivers from Windows 7 & Vista. - Published: 2009-10-07 - Modified: 2024-12-03 - URL: https://petri.com/removing-old-drivers-from-vista-and-windows7/ - Categories: Windows 7 - Article Type: How To With time, computers gather an increasing number of unused drivers that not only take space on your hard disk, but being still installed, might cause problems if they are somehow enabled. In this article by MVP Daniel Petri, learn how to completely remove these old, unused device drivers from your machine. One of the most annoying issues with Windows is when your hardware manufacturer fails to provide a proper driver for the operating system. Even when you do find the proper driver, sometimes the manufacturer releases an updated version which you then need to install on top of the older version. As if that's not enough, every version of Windows from the past 10 years or so, including server versions will retain the older driver binaries even if you upgrade or change hardware. There is a logic behind this behavior. If, for example, you're using a removable USB disk drive, which has once been plugged in, Windows will install the appropriate driver for it. When you eject that drive, Windows retains the drivers so that they will be ready the next time you connect the drive. But what about replacing a video adapter? A network interface card? A printer that has been thrown away? What about working with a laptop that you once used to connect to an external device, and has not used that device since? What happens to that driver if you never connect that device to your computer again? With time, your computer will gather an increasing number of unused drivers that not only take space on your hard disk, having been still installed, they might cause problems if they are somehow enabled. In some cases they can also cause hardware conflicts. And to make things worse, when you do want to use the same... --- ### Fixing the Hyper-V Export Error: "Failed to Create Export Directory" > Learn how to fix a Hyper-V export error indicating "failed to create export directory with the name ..." with this simple tip. - Published: 2009-10-05 - Modified: 2024-09-04 - URL: https://petri.com/fixing-hyper-v-export-errors/ - Categories: Virtualization - Tags: Hyper-V - Article Type: How To If you've received a Hyper-V error on export indicating "failed to create export directory with the name...", learn how to resolve it with this quick tip from MVP Daniel Petri. I had to recently perform an export of a bunch of virtual machines off a Windows Server 2008 host running Hyper-V when I came upon an error. Out of the many virtual machine guests running on that particular server, I managed to export most of the VMs, however when trying to export 3 of them, I got this error: An error occurred while attempting to export the virtual machine. Failed to create export directory. Failed to create export directory with the name 'D:BackupOIT2003DEV2 (73) Virtual Hard Disks' with error 'The system cannot find the path specified. '(0x80070003): OIT2003DEV2 (73)  (FC56A6B8-2046-4670-9DAA-D72203098CFB) Note: I have not tested this on an SP2 machine, so it may very well be that this error is fixed in SP2 or even in R2. Luckily, I have also managed to work around this issue. Read below. Steps to reproduce the problem: In Hyper-V Manager, I right-clicked the virtual machine. Note that the VM was in shut-down state, and currently it did not have any snapshots associated with it. I chose "Export", and then browsed for a location for the exported VM. I have made sure that there was plenty of disk space available for the eport operation. File path wasn't complex, and it even did not have spaces in it. I then clicked on the "Export" button, and behold, the error appeared. The Solution: I have searched the Internet for a documented solution, but have yet to find one. Because the VM has worked well... --- ### Working with Virtual Windows XP Disks in Windows 7 > Learn how the default Virtual Windows XP virtual machine used for enabling Windows XP Mode (or XPM for short) uses virtual hard disks (VHDs) - Published: 2009-09-28 - Modified: 2024-09-04 - URL: https://petri.com/virtual-windows-xp-disks/ - Categories: Virtualization - Article Type: Overview Learn how the default Virtual Windows XP virtual machine (used for enabling the Windows XP Mode - or XPM for short) uses virtual hard disks. This article is one of a list of articles dealing with Windows Virtual PC on Windows 7, and in it I will show you how the default virtual Windows XP  machine used for enabling the Windows XP Mode (or XPM for short) uses virtual hard disks. Knowing how it works with VHD files will save you a lot of time trying to figure out where and what uses all that disk space. Note: This article is directly related to the default Windows XP virtual machine used by Windows XP Mode (or XPM). When you create additional virtual hard disks, and when you use your own virtual machines, you can configure them to store the VHD files anywhere you want. First, if you haven't done so yet, install Virtual PC and then install the default Virtual Windows XP machine. You can use my "Installing Virtual PC on Windows 7" and "Installing Windows XP Mode (XPM) on Windows 7" articles for more information on that. Now lets take a look at the way it uses virtual disks. Note: All screenshots and procedures are based on the RC version of Windows 7, and the beta version of Virtual PC. By default, the Virtual Windows XP machine uses one (1) virtual disk that is configured as a dynamically expanding differencing disk. This is the parent disk: C:Program FilesVirtual Windows XPVirtual Windows XP. vhd Note: In the RC version, this path was changed to C:Program FilesWindows XP ModeWindows XP Mode base. vhd. Now, unlike... --- ### Hiding the User Name for a Locked Computer in Windows Vista/2008 > Improve computer security by learning how to prevent the last username from being displayed on the Windows logon screen of a locked computer. - Published: 2009-09-21 - Modified: 2024-09-04 - URL: https://petri.com/hiding-user-name-on-logon-screen/ - Categories: Security - Article Type: How To Having the user name is half of the puzzle for anyone trying to gain access to a locked computer. Learn how to prevent the last user's name from being shown on the logon screen with this quick tip from MVP Daniel Petri. Last week I received a question from one of my readers, asking how it was possible to hide the name of the user that has locked his or her workstation. The reason behind it was that in a secure environment, where computers need to be hardened in order to better protect them from any unauthorized access attempt, having the user name of a locked machine is considered to be "half the job". With that information, the malicious user that wants to unlock the workstation, only needs to guess the user's password. Naturally this information should not be easy to guess, but why make life easier for such a malicious user? So I investigated this issue, and came up with a solution. Note: You might want to also implement the setting that prevents the last user from being displayed on the logon screen. Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. To hide the user name for the user that has locked the computer, follow the next steps: 1. Start Registry Editor. 2. Locate the following key in the registry: ​ HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystem... --- ### Tools for Customizing Windows Server 2008 as a Workstation > There are times that you may want to use Windows Server 2008 as your personal workstation OS. Daniel Petri shows you how. - Published: 2009-09-16 - Modified: 2024-11-19 - URL: https://petri.com/tools-for-customizing-windows-server-2008-as-a-workstation/ - Categories: Windows Server 2008 - Article Type: Overview There are times that you may want to use Windows Server 2008 as your personal workstation OS, and Daniel Petri shows you how. In my previous article titled “Customizing Windows Server 2008 as a Workstation - The Logic” I wrote about the reasons for trying Windows Server 2008 as your workstation, that is instead of using Windows Vista for that task. I then continued to my “Registry and System Tweaks for Customizing Windows Server 2008 as a Workstation”, in which you’ve learned how to manually or programmatically make changes to the system’s registry in order to have more “workstation-like” features. In this article I will walk you through some of the tools and software that I use on my personal computers. Here you will read about some of the steps I take to customize my own Windows Server 2008 machine running on both of my current laptops (a Dell XPS M1210 with 4GB of RAM and a 200GB fast hard drive, and a newer Dell XPS M1330 with 8GB or RAM and a 2358GB Solid State hard drive). I did not list ALL available tweaks or changes, I just wrote about the ones that I use the most and that help me get a better working experience with my own machine. As always, reader feedback and recommendations are welcome. Please use the Feedback form for that and I will gladly add your tips to this growing list. Note: I have not listed specific software versions, as these will change with time and it’ll be virtually impossible for me to keep this article always up-to-date. Another note: I’ve always tried to... --- ### The Registry and System Tweaks for Customizing Windows Server 2008 as a Workstation - Published: 2009-09-16 - Modified: 2024-11-19 - URL: https://petri.com/registry-and-tweaks-for-server-2008-as-a-workstation/ - Categories: Windows Server 2008 - Article Type: Overview In my previous article titled “Customizing Windows Server 2008 as a Workstation - The Logic” I wrote about the reasons for trying Windows Server 2008 as your workstation, that is instead of using Windows Vista for that task. In order to make the necessary changes and tweak your newly installed system to have more “workstation-like” features, you will need to either manually edit the computer’s registry, use script that accomplish the same task, or use some sort of automated tweaking tool that’ll do it all for you. This is the first article of a 3-part article series. Next, please continue to my "The Tools for Customizing Windows Server 2008 as a Workstation" for more interesting details. I currently run Windows Server 2008 machine running on both of my laptops (a Dell XPS M1210 with 4GB of RAM and a 200GB fast hard drive, and a newer Dell XPS M1330 with 8GB or RAM and a 2358GB Solid State hard drive). I did not list ALL available tweaks or changes, I just wrote about the ones that I use the most and that help me get a better working experience with my own machines. As always, reader feedbacks and recommendations are welcome. Please use the Feedback form for that and I will gladly add your tips to this growing list. Please carefully read the following warning: Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause... --- ### Customizing Windows Server 2008 as a Workstation - The Logic - Published: 2009-09-16 - Modified: 2024-11-19 - URL: https://petri.com/customizing-windows-server-2008-as-a-workstation/ - Categories: Windows Server 2008 - Article Type: How To As the general discontent of Windows Vista was growing on more and more people, I decided to write a series of articles about one alternative to using the modern-day Windows ME counterpart. No, I did not turn to Linux (well not yet, anyway, but who knows, the day isn’t over yet... ). I refer to what has become a widely accepted replacement to Windows Vista – using windows Server 2008. You see, when using the right tweaks such as installing the Desktop Experience feature, adding a few missing utilities, (read more below), you can turn Windows Server 2008 into a more than adequate Vista workstation replacement, one that's faster and more scalable than the original. How much faster? Read below. Or as Mary Jo Foley has written in one of her articles: “I’ve suggested to a number of folks at Microsoft that perhaps it might be a good idea if they took the core of Windows 2008 Server and re-marketed it as Windows 2008 Workstation, simply because it seems that a large number of companies are much more likely to adopt Server before it adopts Vista, and it simplifies things from a management and administration perspective if the Server and Workstation OSs are closely aligned with each other. ” Server 2008: The Windows Workstation we always wanted | All about Microsoft | ZDNet. com: http://blogs. zdnet. com/microsoft/? p=1218 Even though both operating systems now have the same kernel, according to various blogs and reports, and also based upon my personal experience, Windows Server... --- ### Windows Virtual PC and Win XP Mode Release Candidate > Windows Virtual PC (WVPC) is a client virtualization software, which can be used on Windows 7 to create multiple Virtual Machines (VMs), each running a different operating system (OS). - Published: 2009-09-16 - Modified: 2009-09-16 - URL: https://petri.com/windows-virtual-pc-and-win-xp-mode-release-candidate/ - Categories: Windows 7 - Article Type: News Windows Virtual PC (WVPC) is a client virtualization software, which can be used on Windows 7 to create multiple Virtual Machines (VMs), each running a different operating system (OS). WVPC can be obtained as a free download from Windows Virtual PC website. WVPC is the engine which supports Windows XP Mode, a pre-configured VM running Windows XP SP3 provided by Microsoft on Windows Professional, Ultimate and Enterprise SKUs. You can read more about Windows Virtual PC and Windows XP Mode in my "Installing Virtual PC on Windows 7" and "How To Install Windows XP Mode (XPM) on Windows 7" articles. Windows Virtual PC: Download: http://www. microsoft. com/windows/virtual-pc/download. aspx Note that Windows Virtual PC only supports Windows 7 as the host platform, and in order to successfully use it you must have a computer that uses a virtualization-enabled technology by Intel (Intel VT) or AMD (AMD V). Windows Virtual PC: Configure BIOS: http://www. microsoft. com/windows/virtual-pc/support/configure-bios. aspx Windows XP Mode is specially designed for small and medium-sized businesses to help ease the migration process to Windows 7 by providing additional compatibility for their older productivity applications. As always, make sure to read the Release Notes and the Installation Guide before installing. Note: You need to uninstall the Beta before installing the RC product binaries, upgrades aren’t supported. Based on feedback they've received from the Windows XP Mode beta users, Microsoft has made several improvements to the usability of Windows XP Mode for small and medium-sized business users: You can now attach USB devices to Windows XP Mode applications... --- ### Administering Your Network with Terminals: An Open Source Connection Manager > Why and where to get Terminals; an open source, remote connection tool that manages all your network connections (RDP, VNC, HTTP, VMRC, etc.) from one place. - Published: 2009-09-10 - Modified: 2024-11-19 - URL: https://petri.com/terminals-remote-connection-manager/ - Categories: Networking - Article Type: How To Take a tour through the features of Terminals; an open source network management app from Microsoft’s CodePlex that simplifies working with remote connections and systems. As an administrator who primarily supports users and computers in distant places, I have come to appreciate anything that can make working with remote systems easier. One of the biggest timesavers in my workday is an open source application named Terminals from Microsoft’s open source project hosting site, CodePlex. Imagine my trepidation after I installed the Windows 7 RC and began testing to see if Terminals 1. 7e worked well with the new Windows or not. Would I need to run it in compatibility mode? Or even XP virtual mode? Fortunately, after extensive tire-kicking, Terminals 1. 7e seems to behave every bit as good on Windows 7 as it did on Vista. Let me take you on a tour of its many capabilities. Terminals 1. 7e is all about storing multiple remote connections of varying types and arranging them by tags or in groups and then allowing you to mange numerous simultaneous open sessions via an interface similar to tabbed web browsers.   However, you have the option of having any connection that you create open in either Terminal’s tab system or within a separate window. Here’s what the basic interface looks like (remember, you can click the images for a full-sized view): Terminals is capable of creating connections using RDP, VNC, VMRC, Telnet, SSH1, SSH2, ICA Citrix, RAS and HTTP sessions. When manually creating a connection you are given the choice of the aforementioned protocols and, depending on the protocol that you choose, you will have a different set of... --- ### Issues with Video Performance on Hyper-V Hosts > Quick tip to help correct display issues and improve video performance on your Hyper-V hosts. - Published: 2009-09-04 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-video-performance-issues/ - Categories: Virtualization - Article Type: Overview If your Hyper-V host is having issues displaying certain screens, or with general video performance, learn the possible cause and how to correct it with this quick tip from MVP Daniel Petri. This little "issue" on one of my Hyper-V hosts had been giving me a headache for a while; for some unknown reason, the Hyper-V host began to have issues when displaying specific screens. It wasn't happening on my Dell servers, just on a couple of self-built "no-name" servers. Since these servers were used by our QA department, people sometimes logged on to them straight from the servers' console, and the display issues drove them nuts. So I decided to investigate further. After a bit of Googling I found this KB: Video performance may decrease when a Windows Server 2008-based computer has the Hyper-V role enabled and an accelerated display adapter installed: http://support. microsoft. com/default. aspx/kb/961661 Reading the KB, it turns out that this issue occurs when a device driver or other kernel mode component makes frequent memory allocations by using the PAGE_WRITECOMBINE protection flag set while the hypervisor is running. When the kernel memory manager allocates memory by using the WRITECOMBINE attribute, the kernel memory manager must flush the Translation Lookaside Buffer (TLB) and the cache for the specific page. However, when the Hyper-V role is enabled, the TLB is virtualized by the hypervisor. Therefore, every TLB flush sends an intercept into the hypervisor. This intercept instructs the hypervisor to flush the virtual TLB. This is an expensive operation that introduces a fixed overhead cost to virtualization. Usually, this is an infrequent event in supported virtualization scenarios. However, some video graphics drivers may cause this operation to occur very frequently... --- ### How to Set Up Your Own VMware ESXi4 Server > Step-by-step instructions for how to set up your own VMware ESXi 4.0 server and allow multiple virtual machines to be run on a single physical host. - Published: 2009-09-01 - Modified: 2024-12-03 - URL: https://petri.com/installing-vmware-esxi4/ - Categories: VMware - Tags: ESXi, esxi4, hypervisor, Virtualization, vmware, vSphere - Article Type: How To ESXi 4.0 is the latest version of VMware's industry leading hypervisor; allowing multiple virtual machines to be run on a single physical host. Amazingly its available completely free of charge, so in this step by step guide Tom Finnis will show you how to set up your own ESXi4 server. Before you can start installing there are a couple of important pre-requisites; the server hardware and the ESXi4 software to install on it. For various reasons you can't just install ESXi4 on any old PC, although it is less picky than previous versions there are still some basic hardware requirements you must meet. A fundamental requirement is a 64bit CPU, if you only have 32bit available then you will have to limit yourself to the previous version 3. 5, which is also free fortunately. Ideally the system you intend to use should be listed on the official VMware Hardware Compatibility List, as these are all fully tested and certified so will work without any fiddling. Should you not be fortunate enough to have one of those servers lying about, or the budget to purchase a new one, then do not despair yet! The helpful people over at vm-help. com have taken the time to compile their own Whitebox HCL, which lists common desktop PCs which are known to work with ESXi 4. 0.  It also covers a wide range of storage controllers, motherboards and network cards which have been tested so you can assemble a system to work on.  For a live production environment I would always recommend sticking to the VMware HCL but for testing and evaluation provided it will work then you should be fine. Once you've found yourself some suitable hardware you next need to head over to the VMware website and register yourself on there for your free ESXi 4. 0... --- ### An Intro to Virtualization with VMware vSphere 4 > An in-depth look at the features and changes in vSphere 4, how they apply to SMBs and info to help you decide whether a deployment should be in your future... - Published: 2009-08-26 - Modified: 2024-09-04 - URL: https://petri.com/vmware-vsphere-4/ - Categories: VMware - Tags: DPM, DRS, esx, Fault Tolerance, High Availability, storage vMotion, virtual machines, virtual servers, Virtualization, vMotion, vmware, vSphere - Article Type: Overview VMware has recently replaced their entire Virtual Infrastructure virtualization product suite with vSphere 4. Read on to find out why all IT Admins should be considering a vSphere 4 deployment in their future. VMware officially released vSphere 4 on the 21st of April, with all the fanfare you would expect to accompany a major product launch, however much of the focus was on how it would enable enterprises to move to "cloud computing". Whilst this all sounds great it is of little relevance to the SMB IT Admin, whose "datacentre" might run from a couple of servers to a couple of racks of servers with a constrained budget to match it. Since our focus is on IT for those "Small to Medium Businesses" I have been evaluating vSphere 4 from that angle - looking at the features which are most relevant for those considering whether it is right for their network. This is the first of a series of articles to help you with your evaluation, which will discuss the key features of vSphere 4, subsequent articles will cover the actual process of installing and configuring the various components so you can test it yourself. Virtualization Terminology When discussing virtualization there are several key terms which can often cause confusion, in particular that of "server" which can be interchangeable between physical and virtual systems. Thus to avoid any confusion it is important to define the various terms employed by VMware and in this article: Datacenters, clusters and hosts - The "host" is the basic building block of vSphere and refers to a physical server running the ESX hypervisor, whilst a cluster consists of two or more hosts with their associated resource pools, virtual machines... --- ### Managing Multiple Remote Desktop Connections with Windows 7 and MuRD > Learn how to manage multiple remote desktop connections with Windows 7 and MuRD - Published: 2009-08-24 - Modified: 2024-11-19 - URL: https://petri.com/managing-multiple-remote-desktop-connections-with-windows-7-and-murd/ - Categories: Windows 7 - Article Type: How To MuRD allows you to store all of your remote desktop connections within its Connection Manager interface and easily keep track of multiple open sessions within tabs or the standard full screen view. What if instead of administering a fleet of remote Windows computers via separate remote desktop windows you could have a compact tabbed interface to manage them all in? What if instead of managing your remote desktop connections via a folder full of . rdp files you could arrange them in a neat hierarchy within one simple interface? With MuRD (Multiple Remote Desktop) from T and K software, those things and more are available to you. MuRD is a $34. 95 USD remote desktop connection manager that uses the mstscax. dll ActiveX control to establish remote desktop connections. MuRD allows you to store all of your remote desktop connections within its Connection Manager interface and easily keep track of multiple open sessions within tabs or the standard full screen view. The Connection Manager is the heart of MuRD's management capabilities. It is a tab within the MuRD interface that is opened by default when the application launches. Within Connection Manager you can add new connections, create a folder hierarchy for your connections, drag connections to a favorites panel for easy access and even see which connections are open on which monitor. Also within the Connection Manager tab is an optional Connection Details pane that allows you to quickly see some of the specific options that have been chosen for a selected remote desktop connection. Making a remote desktop connections is virtually the same as using the familiar Windows Remote Desktop Connection application (mstsc. exe). However, there are a few useful additions. For... --- ### Inside SolarWinds Free TFTP Server: Simple to Use, Easy to Like > Download and installation instructions for SolarWinds free TFTP which can be used to upload and download executable images and configurations to network devices. - Published: 2009-08-18 - Modified: 2024-09-04 - URL: https://petri.com/free-tftp-server-from-solarwinds/ - Categories: Networking - Article Type: Review The SolarWinds Free TFTP Server is a multi-threaded TFTP server that can be run locally and used to upload and download executable images and configurations to routers and switches. In this article, Jason Zandri walks you through the features and installation of this handy free tool. SolarWinds is headquartered in Austin, Texas, with sales and product development offices around the world. The company provides network management products – including over 10 free tools – that allow administrators and networking professionals the better visibility and control that they need to complete their tasks more effectively and to manage their networks even better than before. In this overview article series I will be outlining one of their current free tools - their free TFTP Server - made available for free download here. An Overview of SolarWinds Free TFTP Server The SolarWinds free TFTP Server is a multi-threaded TFTP server that can be run locally and used to upload and download executable images and configurations to routers and switches. The free TFTP Server runs on Windows XP, Vista, 2000, and 2003. Advanced Security of the server allows administrators to specify single IP addresses or a full range of IP addresses that can be authorized to use the TFTP Server. Additional parameters also allows admins to configure usage to sending only or receiving only based on user needs and in consideration of following the principal of least privilege. The server is multi-threaded which allows for concurrent uploads and download images from multiple network devices. It can also be configured to runs as a service to deliver 24 x 7 TFTP Server availability for your entire network. The tool also allows for the transfer of files larger than 32MB by supporting the option negotiation protocol (transfer size, block... --- ### Quick Guide to the New Aero Features in Windows 7 > Quick tips and shortcuts for how to use Aero Peek, Aero Snap and Aero Shake in Windows 7. Instructions also include video demonstrations of all features... - Published: 2009-08-17 - Modified: 2024-09-04 - URL: https://petri.com/new-aero-features-in-windows-7/ - Categories: Windows 7 - Tags: Aero, Peek, Shake, Snap, Windows, Windows 7 - Article Type: Overview Jason Zandri takes you inside the new Aero features of Windows 7; including Aero Peek, Aero Snap and Aero Shake. Learn how these tools will make interacting with Windows easier and more intuitive than ever before... Windows 7 has released to manufacturing and TechNet and MSDN subscription holders already have the ability to download the bits. Enterprise customers should also be able to download the operating system for testing purposes and obtain licensing from their licensing providers. The intent of this short article is to give an overview of three of the newer features of Windows 7. Through feedback and as time permits I plan to go back through at least some of these features in this and other entries and write them out in additional submissions in a little more detail. Aero Peek One of Windows 7 new features is called Aero Peek which is available on Home Premium Edition, Professional Edition and Ultimate Edition SKUs. Aero Peek allows the end user the ability to “see through” all of the currently open windows on the display so that they can see straight to the items on the Windows 7 desktop. This is done by pointing the mouse to the right edge of the Windows taskbar (which is actually the Show desktop button) which forces all of the open windows to become transparent, allowing the user to “see through” them and review icons and other items on the desktop background Another way to do this is to hit the Windows logo key on the keyboard and the Spacebar to temporarily preview the desktop. To restore the desktop you would release the Windows logo key and the Spacebar. If you need to minimize open windows... --- ### Has Windows Mail Suddenly Disappeared on You? > If Windows Mail is missing from your start or default programs menu, use these easy instructions to restore it on your Windows 7, Vista or Server 2008 computer. - Published: 2009-08-13 - Modified: 2024-09-04 - URL: https://petri.com/windows-mail-has-disappeared/ - Categories: Messaging - Article Type: Overview If Windows Mail has been doing a bit of a vanishing act on you; suddenly disappearing from your start menu and toolbars, this article by MVP Daniel Petri provides the simple steps you should follow to get it back. Windows Mail is Microsoft's current implementation of the built-in e-mail client (previous versions of Windows had Outlook Express). While hardly a competitor against the full fledged Outlook e-mail client, Windows Mail has some nice features that still make it useful even when using Outlook as the main e-mail client. One of these is its ability to read newsgroups, meaning connect to NNTP-based servers. Newsgroups are still being used all over the world as alternatives to web-based forums and mailing lists. Some of the newsgroups I frequent (in read-only mode, or as an active contributor) are Microsoft's Online Newsgroups (used for community support), and a few MCT and MVP newsgroups (the latter are for MCTs and MVPs only, respectively). So imagine my wonder when a couple of weeks ago I went to the Start menu, typed "Mail" as I have for the past year or more, and no Windows Mail icon was displayed. It's worth noting that the following screenshots were taken on my Windows Server 2008-based laptop computer that I use at home. This computer was customized to act as a workstation (watch for more info on this in  upcoming articles). Another thing I've noticed but have not had time yet to fully explore, is that the same thing has suddenly happened to my Windows 7 RC laptop as well. I do not know why, and I haven't yet begun to pinpoint the reason, but when I do I'll post an article about it. Immediately after seeing... --- ### Network Monitoring with Orion Network Performance Monitor > Download network monitoring software used to detect, diagnose, and resolve network outages and performance issues and review features of Orion network monitor. - Published: 2009-08-10 - Modified: 2024-12-03 - URL: https://petri.com/orion-network-performance-monitor/ - Categories: Networking - Article Type: Overview SolarWinds is headquartered in Austin, Texas, with sales and product development offices around the world. The company produces a number of system and network tools that allows administrators and networking professionals better visibility and the control that they need to complete their tasks more effectively which helps them manage their networks even better than before. In this overview article series I will be outlining one of their network administration tools – the Orion Network Performance Monitor that is available. Download Orion directly here. You can download most of the tools on the site and use them for 30 day trial periods before purchasing licenses for them. Solarwinds also provides a number of great network management tools completely free, so be sure to check those out as well. An Overview of Orion Network Performance Monitor The Orion Network Performance Monitor (often referred to as Orion NPM or ONPM for short) is a web-enabled performance management solution that has a number of important features that makes it a valuable tool for any Network Administrator’s toolkit. By leveraging the features of the tool it allows Network Administrators to detect, diagnose, and resolve network performance problems which may allow you to avoid outages or dramatically reduce the impact time of a network related issue for your end users and your customers. Orion Network Performance Monitor can be used to monitor and analyze in detail the network performance statistics for your enterprise routers, switches, wireless access points, servers, and any other SNMP-enabled devices in real... --- ### Securing Removable Storage Devices with BitLocker To Go in Windows 7 > Inside the features and requirements of BitLocker To Go and its capabilities to to control how removable storage devices; like USBs, are secured. - Published: 2009-08-05 - Modified: 2009-08-05 - URL: https://petri.com/bitlocker-to-go-in-windows/ - Categories: Security - Tags: disk management, Security, Windows 7, Windows Client OS, Windows Server, Windows Server 2008, Windows Vista, Windows XP - Article Type: How To Jason Zandri provides a 'from the field' overview of the features and requirements of BitLocker To Go and its abilities to control how removable storage devices are secured. Windows 7 is the next generation of operating system due from Microsoft and it is now set for a planned release in the final quarter of 2009 which would be just a bit shy of the three years since the release of Windows Vista. This article series is a security overview of BitLocker and Encrypting File System (EFS) in Windows 7. – Microsoft has now released their Release Candidate for Windows 7; and at this time there is a tentative release date for Windows 7 this fall ~ October 22nd time frame. My first article in this security series article covered a high level review of the Encrypting File System (EFS). In part 2 of the series, I provided an overview and requirements for BitLocker on Windows 7. In this third article, I will be reviewing similar details with respect to the BitLocker To Go feature of BitLocker. An Overview of “Why” BitLocker To Go BitLocker Drive Encryption itself is available on some versions of Windows Vista, Windows Server 2008 R2 and in some editions of Windows 7. Using BitLocker Drive Encryption is one of the best ways to protect portable systems such as laptops from loss of data and information when the laptops themselves are lost or stolen. The main issue with other devices such as removable hard drives and especially USB drives and other flash card type memory is that there is often data loss that results from the loss or... --- ### Uninstalling Windows XP Mode (XPM) Beta from Windows 7 > Step-by-step instructions for how to uninstall the default (beta) Virtual Windows XP machine (Windows XPM) when the RTM version is available. - Published: 2009-08-04 - Modified: 2024-12-03 - URL: https://petri.com/uninstalling-virtual-windows-xp-beta/ - Categories: Windows 7 - Article Type: How To Since the current version of Virtual PC for Windows 7 is beta, you might want to remove the default Virtual Windows XP machine when the RTM version is available. This article by MVP Daniel Petri, provides step-by-step instructions for how to do so. In my previous Windows 7 articles on installing Virtual PC and installing Windows XPM, I walked you through the features of the new Windows Virtual PC software that is specially designed for Windows 7. If you're not familiar with the terms yet, here's a quick reminder: Windows Virtual PC provides the capability to run multiple Windows environments such as Windows XP Mode from your Windows 7 desktop. Since the current version of Virtual PC for Windows 7 is beta, you might want to remove the default Virtual Windows XP machine when the RTM version is available. To remove the default Virtual Windows XP machine that is installed when you first use it, follow these steps: Note: You will lose all the data that was stored inside the default Virtual Windows XP machine, plus all integrated applications. The default virtual machine used by Virtual PC is stored in the C:Program FilesVirtual Windows XP folder. All the contents of this folder will be removed when you uninstall Virtual Windows XP. Note: All screenshots and procedures are based on the RC version of Windows 7, and the beta version of Virtual PC. 1. Go to the Control Panel and select "Uninstall a Program". Note: This article is directly related to the default Windows XP virtual machine used by Windows XP Mode (or XPM). When you create additional virtual machines, you need to manually delete them, as they will not be visible inControl Panel > "Uninstall a Program". 2. In the... --- ### Having Trouble Installing Hyper-V Integration Services on Vista SP2? > Instructions for resolving installation errors when adding Hyper-V Integration Services on a Windows Vista SP2 virtual machine. - Published: 2009-08-03 - Modified: 2024-09-04 - URL: https://petri.com/installing-hyper-v-integration-services-on-vista-sp2/ - Categories: Virtualization - Article Type: Overview When trying to install the Hyper-V Integration Services on a Windows Vista SP2 virtual machine, you may run into errors which require you to install Service Pack 2 (SP2) on the Hyper-V host, meaning SP2 for Windows Server 2008. In this article, MVP Daniel Petri guides you through the process from start to finish. Recently, when trying to install the Hyper-V Integration Services on a newly installed Windows Vista SP2 VM, I received this error: Error An error has occurred: One of the update processes returned error code 1. This means that whatever you do, you will not be able to install the Hyper-V Integration Services on the Vista SP2 VM. What makes it most nasty, is the fact that there seems to be no issue with any other operating system, including Vista SP1. Not having the Hyper-V Integration Services prevents the VM from using the virtual network card, and thus it cannot be used on the network. Also, the mouse is not captured when you're using RDP to connect to the Hyper-V host. In order to solve this issue it seems that you must install Service Pack 2 (SP2) on the Hyper-V host, meaning SP2 for Windows Server 2008. Before installing SP2, you'll need to download it (577 MB in size). Here's the download link: Download details: Windows Server 2008 Service Pack 2 and Windows Vista Service Pack 2 - Five Language Standalone for x64-based systems (KB948465): http://www. microsoft. com/downloads/details. aspx? displaylang=en&FamilyID=656c9d4a-55ec-4972-a0d7-b1a6fedf51a7 After downloading the file, you need to make sure all the virtual machines on the Hyper-V host are shut down (not in saved state, not paused, but shut down). Normally, this isn't an issue... but because your VM does not allow you to use the VM shut-down shortcut from the Hyper-V management console (as it doesn't have the Hyper-V Integration Services installed... --- ### Correcting Display Direction for Text-based E-mails in Outlook 2007 > Instructions for how to fix the display direction of plain text emails in Outlook so messages read from right-to-left or left-to-right based on the language. - Published: 2009-07-28 - Modified: 2024-12-03 - URL: https://petri.com/correcting-email-display-direction-in-outlook/ - Categories: Messaging - Article Type: How To It seems that Outlook 2007 wrongfully displays e-mail messages that are written in plain text. When the local system locale is one of right-to-left format, the e-mail is displayed from right to left in the preview pane, and also when you open it in a separate window even if the email isn't written in a right-to-left type of language. In this article, MVP Daniel Petri explains how to correct this issue and have your emails display properly. This is a major annoyance in Outlook 2007 for many users that work with languages that are written and read from right to left, such as Hebrew and Arabic. It seems that Outlook 2007 wrongfully displays e-mail messages that are written in plain text (i. e. not rich or HTML texts). When such an e-mail message is received in Outlook, and when the local system locale is one of right-to-left format, the e-mail is displayed from right to left in the preview pane, and also when you open it in a separate window. This is fine as long as the e-mail is written in a right-to-left type of language such as Hebrew and Arabic, but what if the message was in English for example (or in any left-to-right type of language)? For example, this message is in English: Notice how the entire text is displayed from right to left. If you want to switch it to the right display format, meaning left to right in this case, you need to open the message, forward or reply to it, and press CTRL+A to select all text, and then switch language direction by using the LEFT SHIFT+ALT keys. So how can you fix this annoyance? What I found is that all you need to do is to change one language setting in any Office 2007 application. I've used Outlook in this example, as it's the one Office 2007 application that suffers the most from this. 1. Open a new e-mail... --- ### Stop File Transfer Manager from Restarting Completed Downloads > Simple instructions for clearing the File Transfer Manager download queue and eliminating the repeated "Confirm Transfer Request" messages. - Published: 2009-07-27 - Modified: 2024-12-03 - URL: https://petri.com/clearing-file-transfer-manager-downloads/ - Categories: Windows Client OS - Article Type: How To Is Microsoft's File Transfer Manager (FTM) repeatedly prompting you to download files you've already downloaded, and you can't seem to get rid of them? This article by MVP Daniel Petri provides a quick and simple tip for how to stop this annoying behavior. In the past months I've encountered a nasty annoyance in Microsoft's File Transfer Manager (FTM) utility. FTM is used by Microsoft-based websites that offer various downloads, most bigger ISO and archive files. Such sites include the TechNet site, the Connect side, the MSDN Subscribers Download site and more. Anytime you choose to download a file or more from these sites, an ActiveX program is initiated on your computer, and a check is performed to see whether FTM is installed or not. If it's not, you're prompted to install it. If it is, or when it has finished installing, FTM will be launched and you'll be prompted to select a destination folder for the download you're requesting. After the file has been successfully downloaded (or when the user chooses to cancel the download), the file is cleared from the download queue. So far so good. However, since the past 3 or 4 months, I've seen a nasty annoyance that causes FTM to repeatedly prompt you to download files you've already downloaded in the past, and whatever you do doesn't stop it from resurrecting these already completed download requests. As you can see from the following screenshot, you're prompted to re-download the file, and get 2 options: Either Transfer, or Cancel. This is the error I'm getting, over and over again: Confirm Transfer Request A request has been received by the Microsoft File Transfer Manager to deliver files over the Internet. Please confirm that this request was initiated with... --- ### How To Install Windows XP Mode (XPM) on Windows 7 > Detailed instructions for how to install and launch Windows XP Mode (also known as XPM) from your Windows 7 computer. - Published: 2009-07-20 - Modified: 2024-12-03 - URL: https://petri.com/installing-windows-xpm-on-windows-7/ - Categories: Virtualization - Article Type: How To Windows Virtual PC provides the capability to run multiple Windows environments from your Windows 7 desktop. In this article by MVP Daniel Petri, learn the steps for installing Windows XP Mode (also known as XPM) on your Windows 7 computer. In my previous article ("Installing Virtual PC on Windows 7") I walked you through the features of the new Windows Virtual PC software that is specially designed for Windows 7. Windows Virtual PC provides the capability to run multiple Windows environments such as Windows XP Mode from your Windows 7 desktop. What Exactly is Windows XP Mode? Windows XP Mode (or XPM for short) is a new feature of Windows 7 (available only in the Professional, Enterprise and Ultimate editions) that can help businesses to upgrade their computers to Windows 7. It does so by providing a virtual Windows XP environment capable of running many Windows XP-compatible business and productivity applications. By using Windows Virtual PC you can now run many older business and productivity applications that only work in Windows XP on your Windows 7 machine. This is made possible by installing these applications inside the Windows XP virtual machine, and integrating them with your Windows 7 desktop and start menu. This way, you can launch these applications from the Windows 7 desktop or Start menu with just a single click, and have them integrate seamlessly with the Windows 7 environment. Here are some of new features in Windows Virtual PC that make it easier for you to run your legacy applications in a virtual software environment: The ability to use many of your USB devices from within a virtual Windows environment, such as Windows XP Mode. Seamless launching of Windows XP applications from your Windows... --- ### Install Virtual PC on Windows 7 > Step-by-step instructions for installing Windows Virtual PC functionality and multiple OS environments to your Windows 7 computer. - Published: 2009-07-20 - Modified: 2024-11-19 - URL: https://petri.com/installing-virtual-pc-on-windows-7/ - Categories: Windows 7 - Article Type: How To Windows Virtual PC is a feature of Windows 7 (Professional, Ultimate, and Enterprise) that allows you to run multiple Windows environments from your Windows 7 desktop. In this article by MVP Daniel Petri, learn the impressive new features and installation steps for this latest version of Virtual PC. Windows Virtual PC is a feature of Windows 7 Professional, Windows 7 Ultimate, and Windows 7 Enterprise, that allows you to run multiple Windows environments such as Windows XP Mode from your Windows 7 desktop. The list of features for the new version is impressive when compared to the old Virtual PC 2007 version (which had none of these). Finally, Microsoft is adding many features that are already long present in 3rd-party virtualization software like VMware Workstation and Sun Virtual Box. But I guess late is better than never. Some of the new features of Virtual PC include: Easy setup of Windows XP Mode - Once both the Windows Virtual PC and the virtual Windows XP environment are installed, Windows Virtual PC provides a simple wizard to set up Windows XP Mode with just a few clicks. USB support - Users can access USB devices attached to the host directly from virtual Windows XP. These devices include printers and scanners, flash memory/sticks and external hard disks, digital cameras, and more. Seamless applications - Publish and launch applications installed on virtual Windows XP directly from the Windows 7 desktop, as if they were installed on the Windows 7 host itself. Folder integration between host and guest - Access your Windows 7 Known Folders: My Documents, Pictures, Desktop, Music, and Video, from inside the virtual Windows environment, such as Windows XP Mode. Clipboard sharing - Cut and paste between your Windows 7 host and any virtual machine. Printer redirection... --- ### Correcting Multiple Monitor Configuration Issues in Vista > Simple step-by-step instructions for correcting multi monitor configuration issues in Windows Vista computers. - Published: 2009-07-15 - Modified: 2009-07-15 - URL: https://petri.com/multi-monitor-configuration-in-vista/ - Categories: Windows Vista - Article Type: How To Whenever you plug in an external monitor to your Vista computer the OS is supposed to remember your setup and then replicate it each time you plug that monitor in again. However, this doesn't always happen. In this article, MVP Daniel Petri provides a couple quick solutions for getting multiple monitors to configure correctly in Windows Vista. In Windows Vista, the operating system was designed in such a way that whenever you plug in an external monitor to your computer (naturally, this is mostly done in laptop computers), Vista is supposed to remember your setup and it is then supposed to replicate it each time you plug that monitor in again. However, Vista doesn't always do what it was designed to do. You could blame it on the driver and in some cases you'll actually be right, but in most cases, you can update the video driver as much as you want, and Vista will continue to do what it wants. For example, you might get one behavior when you hibernate the laptop, another when you shut it down, a third one when you put it to sleep, and no consistency! So, who's responsible for the multiple monitor deal in Vista? Transient Multimon Manager (TMM), which is a feature targeted at improving the user experience of connecting and disconnecting displays, particularly for the mobile user. BTW, it's also the component that's to blame for the 2 second delay in the boot time, when the screen suddenly goes blank on you. So how do I fix the multiple monitor fiasco and reset the multiple monitor profiles? Please carefully read the following warning: Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to... --- ### Inside Windows 7 Security: BitLocker Drive Encryption > An overview with respect to Bitlocker on Windows 7. - Published: 2009-07-08 - Modified: 2009-07-08 - URL: https://petri.com/bitlocker-in-windows-7/ - Categories: Windows 7 - Tags: 7, bitlocker, encryption, Security, Windows - Article Type: Overview Using BitLocker Drive Encryption is one of the best ways to protect portable systems such as laptops from loss of data and information when the laptops themselves are lost or stolen. In this article, Jason Zandri provides an overview of the functionality and security features of this tool as it applies to Windows 7. Windows 7 is the next generation of operating system due from Microsoft and it is still set for a planned release for early 2010 which would be three years after the release of Windows Vista. – Microsoft has now released their Release Candidate for Windows 7; I wrote a brief article Windows 7 Release Candidate (Build 7100) - Early Details on this already and indications are that Microsoft will have Windows 7 available for the 2009 holiday shopping season. Stay tuned... This article series is an overview of BitLocker and Encrypting File System (EFS) in Windows 7. My first article in this series covered a high level review of the Encrypting File System and in this article, I'll review some of the information with respect to Bitlocker on Windows 7. What is BitLocker? BitLocker Drive Encryption is available on some versions of Windows Vista, Windows Server 2008 R2 and in some editions of Windows 7. Using BitLocker Drive Encryption is one of the best ways to protect portable systems such as laptops from loss of data and information when the laptops themselves are lost or stolen. Additionally, the use of BitLocker on desktop systems is also a good consideration when you consider how much information can be lost from recycled desktop systems that have not undergone a proper hard drive wipe routine before being sold off. BitLocker leverages the Trusted Platform Module (TPM) version 1. 2 hardware component installed in many of the newer... --- ### Do I Need to Add the /3GB Switch to a 64-bit Windows Server? > Step-by-step instructions for how to allocate more memory (3GB) to Exchange and other applications with Windows Server and the /3GB switch . - Published: 2009-07-03 - Modified: 2024-11-19 - URL: https://petri.com/3gb-switch-with-64-bit-windows/ - Categories: Exchange Server - Article Type: Overview Windows Server 2003 includes support for a startup switch (entered in the Boot.ini file) that lets you tune the allocation of use of memory and memory address space. This small change can have significant benefits for Exchange Server... learn all about it in this article by MVP Daniel Petri. Recently I've stumbled upon a question regarding the usage of the /3GB switch on a 64-bit version of Windows Server 2003. But before I answer that question, let me give you a brief overview of what the /3GB switch is used for. Windows Server 2003 includes support for a startup switch (entered in the Boot. ini file) that lets you tune the allocation of use of memory and memory address space. In Windows Server 2003, and regardless of the amount of physical memory that is installed on your system, the operating system uses a virtual address space of 4 GB. Out of that amount, 2 GB is allocated to user-mode processes (for example, applications and services) and 2 GB is allocated to kernel-mode processes (for example, the operating system and kernel-mode drivers). On systems that have more than 1 GB of physical memory, this startup switch can be used to allocate more memory to applications (3 GB) and less memory to the operating system (1 GB). The most significant product that benefits from this switch is Exchange Server. This additional virtual address space helps reduce the amount of memory fragmentation in the virtual address space of the Exchange Information Store process. The /3GB switch is used to effect this allocation change. The switch is entered in the system’s Boot. ini file and takes effect after a restart. The /3GB switch is supported only on the following operating systems (note that the /3GB switch was first added to Windows NT... --- ### Introduction to Cisco ASA 5500 Series Adaptive Security Appliances > Key features, capabilities and benefits of the Cisco ASA 5500 series adaptive security appliances for industry standard routing and firewall functionality. - Published: 2009-06-30 - Modified: 2024-09-04 - URL: https://petri.com/cisco-asa-5500-series/ - Categories: Cisco - Tags: ASA, Cisco, firewall, IPS, SSL VPN - Article Type: Overview The ASA 5500 series is the successor to Cisco's PIX range of firewall devices, providing industry standard routing and firewall functionality with a range of models designed for teleworker right up to large datacenter scenarios. In this article Cisco expert Tom Finnis will focus on the 5505 and 5510 models aimed at branch and head office deployments, highlighting key features and capabilities. Product History There used to be a saying in the IT industry that "you wouldn't get sacked for buying IBM"; whilst that may be somewhat dated the same could be said for Cisco equipment nowadays. There are plenty of alternative vendors providing firewall solutions with many similar features and at a lower price but the industry standard is still Cisco. The Cisco PIX range of firewall/NAT devices was originally launched in 1995 but the models most readers are likely to encounter are the 501, 506 and 515 which were launched in 2002. They were finally discontinued in 2008, their longevity was mainly down to their use of the PIX OS which enabled new features to be provided via firmware upgrade without the need for major hardware updates. Although the Cisco ASA range was launched in 2005 and aligned as a replacement for the PIX range Cisco users tend to resist change and so ASAs have only started to become widespread in the last couple of years. The original release versions of the ASA officially combined the separate firewall, VPN and IPS (Intrusion Prevention Systems) functionality of several Cisco devices, although the current PIX OS at the time (version 7. x) supported all these features. In fact the ASA range started life running PIX7. 0 and only diversified with the release of version ASA8. 0 which moved back in line with the main Cisco IOS by using their customized Linux based kernel. For users from a Unix background this makes Cisco devices' use of text files... --- ### Connecting to Your SMTP Server with the SMTP-AUTH Login Command > Configure SMTP authentication on your mail servers using the SMTP-AUTH login command by following these step-by-step instructions and examples. - Published: 2009-06-26 - Modified: 2024-11-19 - URL: https://petri.com/smtp-authentication/ - Categories: Exchange Server - Article Type: How To In this article, MVP Daniel Petri walks through the process of SMTP authentication using the SMTP-AUTH login command. Get detailed instructions and examples for connecting users to your mail server via this method. SMTP is the standard protocol for e-mail traffic. Either for sending e-mail from an e-mail client such as Windows Mail in Vista or Outlook Express in previous Windows versions, to entire mail servers sending e-mail between themselves across the Internet. SMTP used to be anonymous in its origins, with authentication implemented during its evolution. Originally, SMTP servers were typically internal to an organization, receiving mail that was destined for the organization from the outside. These servers were also responsible for relaying messages from the organization to the outside. But, with time, SMTP servers evolved to become message submission agents for e-mail user agents, some of which were now relaying mail from the outside of an organization, such as when a company mobile worker that wants to send e-mail while on a trip using the corporate SMTP server. This meant that the SMTP protocol had to include specific rules and methods for relaying mail and authenticating users to prevent abuses such as spam relaying. Note: An open mail relay is an SMTP server configured in such a way that it allows anyone on the Internet to send e-mail through it, not just mail destined to or originating from known users. While SMTP-AUTH is generally a security improvement over unauthenticated SMTP, it can also introduce a weakness. If authenticated users are allowed to submit messages from IP addresses and unauthenticated users are not, then an attacker who manages to get the credentials of one user's account is then able... --- ### Restoring Windows 7 from a Backup System Image > Learn how to restore and recover your system from a previously backed-up system image in Windows 7. - Published: 2009-06-19 - Modified: 2024-09-04 - URL: https://petri.com/restore-windows-7-from-backup-image/ - Categories: Windows 7 - Tags: image backup, Restore, System Image, Windows 7 - Article Type: How To Unfortunately, there's always potential for a software malfunction that cannot be repaired by using a Safe Mode boot or a system repair. When this happens, you may need to restore your system from a previously backed-up system image. In this article, MVP Daniel Petri walks you through the process specifically for Windows 7. As always, before rushing to totally wipe and re-install your system in case of a sudden software malfunction, make absolutely sure that you do need to go all the way. In many cases a wrong registry setting, a bad driver, a missing system file – all these might be repaired by performing a boot as Safe Mode, or if need arises, a system repair. However, if nothing else works, it’s time to bring in the heavy cannons and restore your system from a previously backed-up System Image. In my Working with System Image Backups in Windows 7 article I described the steps needed to be taken in order to successfully create a System Image backup of your Windows 7 computer. Note: Remember, Windows 7 is still under development. The version used for these screenshots is beta build 7000, and things might (and probably will) change with RTM. So first thing first – you must make be 100% sure that this is the only means to repair your system. Why? Well that’s because when you restore your computer from a system image, it's always a complete restoration. You cannot choose individual items to restore, and all of your programs, system settings, and files are replaced with those on the system image. If you’re perfectly sure that a restore is the only way to get your computer back to business, you now have 3 options to start the restore operation: Option 1: Restore using Recovery This... --- ### Using the vSphere 4.0 Client to Manage ESXi 4.0 > Learn how to use the VMware's new vSphere Client to complete the configuration of ESXi4 host servers and deploy virtual machines. - Published: 2009-06-17 - Modified: 2024-11-19 - URL: https://petri.com/managing-esxi4-with-vsphere-client/ - Categories: VMware - Tags: ESXi, esxi4, hypervisor, Virtualization, VMs, vSphere, vsphere4 - Article Type: Overview Following on from his previous article on deploying ESxi4, Tom Finnis now shows you how to use the vSphere Client to complete the configuration of your new ESXi4 host server and then deploy your first Virtual Machine. Introduction Assuming you followed the previous article, on deploying ESXi 4. 0, without any major problems you should now have your first ESXi4 host server up and running. You will be pleased to hear that you have already done all the text console configuration that is required and from now onwards everything will be done using the vSphere 4. 0 Client and its graphical interface. The vSphere 4. 0 Client will only run on systems with Windows XP Pro SP2 or later versions of Windows so you will need a suitable system with a network connection to your ESXi 4. 0 host server. Getting Started with the vSphere Client You may have downloaded the vSphere Client installer when you downloaded the ESXi ISO from the VMware website, in which case run that to install the vSphere Client on your system. Otherwise open Internet Explorer and enter the IP address of your ESXi server in the address bar, then click the link on the page which opens to download and install the client. Considering the small size of the installer package it can take a surprising amount of time to extract the files and install so be prepared to be patient. Once it has completed you will find a new shortcut on your desktop and in your Programs list for the "vSphere Client", so double-click it and you will be presented with a logon prompt: Enter the IP address of your ESXi host, the username "root" and the password you selected when you did the initial... --- ### How to Enable More Simultaneous Downloads in IE 8 > Step-by-step instructions for how to increase the number of simultaneous file downloads in Internet Explorer 8 past the default max of 6. - Published: 2009-06-16 - Modified: 2009-06-16 - URL: https://petri.com/adjust-ie8-download-limits/ - Categories: Windows 7 - Tags: Internet Explorer - Article Type: How To Internet Explorer 8 currently limits the number of files that you can download at one time to six. If you'd like to increase this number, this article details a quick process for modifying your IE 8 configuration to give you custom control over the simultaneous download limit. Unlike previous versions of IE (mostly IE 6. 0 and 7. 0), where IE was configured to only allow up to two simultaneous file downloads, Windows Internet Explorer 8 limits the number of files that you can download at one time to six. However, if you need to increase this number, you must make a registry modification. The path is not the same as it was in IE 6. 0 and IE 7. 0, so please take care before making any change to the registry. Please carefully read the following warning: Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. To do so, follow the next steps: 1. Start Registry Editor. 2. Locate the following key in the registry: ​HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER 3. If it doesn't exist, on the Edit menu, point to New, click DWORD Value, and then add the following registry values: Value name: iexplore. exe Value data: 10 Base: Decimal Note: By setting the value to 10, you increase the connection limit to 10. 4. Locate the following key in the registry: ​HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER 5. If it doesn't exist, on... --- ### Seven Simple Ways to Find Your Uptime in Windows Server 2008 > Learn seven simple methods to quickly view and monitor the uptime of your system in Windows Server 2008. - Published: 2009-06-12 - Modified: 2024-11-19 - URL: https://petri.com/check-uptime-in-server-2008/ - Categories: Windows Server 2008 - Article Type: How To While there are plenty of 3rd-party tools that allow you to find the exact uptime of your system, there are also several tools that are either built-in to Windows Server 2008, or can be used quite easily. This article walks through seven such methods for finding your server's uptime. Knowing how much time your system has been running is a piece of information useful for administrators. Sometimes you might need it in order to know when the machine has recovered from a possible power failure or any other issue it might have had. While there are plenty of 3rd-party tools that allow one to find the exact uptime of the system, there are several methods that are either built-in Windows Server 2008, or can be easily accomplished. Method #1: By using the Task Manager In Windows Vista and Windows Server 2008, the Task Manager has been beefed up to show additional information about the system. One of these pieces of info is the server’s running time. 1.     Right-click on the Taskbar, and click Task Manager. You can also click CTRL+SHIFT+ESC to get to the Task Manager. 2.     In Task Manager, select the Performance tab. 3.     The current system uptime is shown under System. Method #2: By Using the System Information Utility Probably one of the easiest methods to accomplish this task. The Systeminfo command line utility checks and displays various system statistics such as installation date, installed hotfixes and more. Open a Command Prompt and type the following command: ​systeminfo You can also narrow down the results to just the line you need: ​systeminfo | find "System Boot Time:" Method #3: By Using the Uptime Utility Microsoft have published a tool called Uptime. exe. It is a simple command line tool that analyzes the computer's reliability and... --- ### Inside the New Features of ObserveIT v4.08 > A detailed look at the new features and functionality included in the latest version of ObserveIT (v4.08). - Published: 2009-06-10 - Modified: 2024-12-03 - URL: https://petri.com/observeit-v408-features/ - Categories: Windows Server - Article Type: Overview ObserveIT is a client/server application that allows administrators and auditors to monitor, audit, record and replay all activities performed by people on an enterprise's servers. Take a closer look at the exciting new UI and functionality changes included in ObserveIT v4.08 in this article by MVP Daniel Petri. ObserveIT is a client/server software application that allows administrators and auditors to replay entire user sessions. It monitors, audits and records all activities performed by people on an enterprise's servers. The indexed, searchable, visual database allows those activities to be replayed to see exactly what is happening on the monitored servers. Read my "Record and Audit Terminal, Citrix and DRP Session – ObserveIT Product Overview" article for more information. ObserveIT Express is a freeware version of ObserveIT's flag ship product - the Pro edition. Read more about it on my "Free Remote Desktop, Terminal & Citrix Session Recorder: ObserveIT Express" article. Do you use any social networks? Follow ObserveIT on Facebook, Linkedin and/or Twitter. In its new version there are various changes that have been made to the product’s user interface (UI) and functionality. Some of these changes and features include: •    Indication of the length of user sessions •    “On-Air” real-time replay of active sessions •    Administrator-initiated server messages with acknowledgment and reply functions •    Granular permissions for user objects •    Ability to exclude specific users from being recorded •    Faster Identification Services pop-up window Indication of the Length of User Sessions ObserveIT now allows an administrator or auditor to clearly view the overall length of a user session. It does so by displaying the start and end time of each session. This change makes it easier to quickly determine the start and end of each user session. Note: If the user session is still active, that last user... --- ### How to Test Your Internet Download Speed > How to test your ISP's Internet connection bandwidth and your computer's download speed in a few simple steps. - Published: 2009-06-05 - Modified: 2024-11-19 - URL: https://petri.com/download-speed-testing/ - Categories: Networking - Article Type: How To If you're having Internet connectivity issues, if you're looking to call your ISP's support, and want to have some details about the speed of your Internet connection, or if you're simply curious to see how fast your Internet connection really is, then this tip is for you. This is another one of those tips that can make your life easier. If you're having Internet connectivity issues, if you're looking to call your ISP's support, and want to have some details about the speed of your Internet connection, if you're simply curious to see how fast (or slow) your Internet connection really is, then this tip is for you. Internet connection speeds refers to the rate of the data transfer, from a server found on the Internet, to your computer. Basically what this means is that the amount of time it takes your computer to download a file of a specific size. For those unfamiliar with the terms, Internet connection speeds are usually measured in Kbps (kilobits per second) or KBps (kilobytes per second). Note that there IS a difference between a small case "b" which means "bits", to a capital letter "B" which means bytes. Broadband Internet connection speeds can also be measured in Mbps (megabits per second) or MBps (megabytes per second). This table will give you a rough estimate of what your download speed should look like: If you have a 1. 5 Mb/s connection speed, your download speed should be around 187 KB/s. 2 Mb/s should be 250 KB/s. 2. 5 Mb/s should be 312 KB/s. 3 Mb/s should be 375 KB/s. 4 Mb/s should be 500 KB/s. 5 Mb/s should be 625 KB/s. 6 Mb/s should be 750 KB/s. 8 Mb/s should be 1000 KB/s. 10 Mb/s should be 1250 KB/s. In... --- ### How to Slipstream Updates for Office 2007 > Step-by-step instructions for slipstreaming Office 2007 installations along with service pack updates (SP1 and SP2). - Published: 2009-06-03 - Modified: 2024-12-03 - URL: https://petri.com/slipstream-updates-for-office-2007/ - Categories: Windows Client OS - Tags: Office 2007, slipstream updates, slipstreaming, SP1, SP2 - Article Type: How To Learn how to do a clean installation of Microsoft Office along with SP1/SP2 updates at the same time with this step-by-step article on slipstreaming Office 2007 by MVP Daniel Petri. I recently received a couple of emails asking me how to do a clean installation of Microsoft Office 2007 using an Office 2007 image along with SP1 at the same time. This is called “Slipstreaming”, and it is available, with some modifications, to previous versions of Office and even to entire operating systems. Needless to say, this also works with the recently published Service Pack 2 (SP2). You can read my “Office System (2003) SP3 Slipstreaming” and “Windows Server 2003 SP Slipstreaming” articles for more information on that. Unlike previous versions of Office, in Office 2007 Microsoft has made use of the Updates folder in the installation media. With Office 2007, and new updates that the setup program finds in the Updates folder will automatically be installed during the product’s installation process. This will enable us to get a fully updated (or almost fully updated, depending on the level of updates that you keep) version of Office 2007, and will rid us from the need to use Windows/Office Update for these downloads. As of the time of this article, there are over 300 MB of updates that need to be downloaded. This will save us the time required to download them and manually install each and every one of them. At the beginning of May 2009, Service Pack 2 was released, including most of the previously available patches and updates. However there is one last bridge that needs to be crossed before applying these updates to our... --- ### Reduce Your Windows 2008 Server Core Installation by ~200MB > Reduce your Windows Server 2008 Server Core installation footprint by as much as 200MB with this step-by-step guide. - Published: 2009-05-27 - Modified: 2009-05-27 - URL: https://petri.com/server-2008-core-footprint/ - Categories: Windows Server 2008 - Article Type: How To In Windows Server 2008, Server Core installation does not include the traditional full graphical user interface (GUI). Although Server Core is a lot smaller than a regular full-GUI Windows Server 2008 installation, you may be able to free up as much as 200 MB more disk space if you remove all un-needed roles and features. Learn all about it in this article by MVP Daniel Petri. In Windows Server 2008, Server Core installation does not include the traditional full graphical user interface (GUI). A Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. A server running a Server Core installation supports the following server roles: Active Directory Domain Services (AD DS) Active Directory Lightweight Directory Services (AD LDS) DHCP Server DNS Server File Services Print Services Streaming Media Services Internet Information Services (IIS) Windows Virtualization (Hyper-V) Although Server Core is a lot smaller in size than a regular full-GUI Windows Server 2008 installation, the Server Core blog has recently written about an interesting way to further reduce this footprint by removing the server roles and optional features that you do not require from the disk. By doing so, you can free up more space. It is estimated that you will be able to free up as much as 200 MB of disk space if you remove all un-needed roles and features. This procedure could be used to prevent an administrator from adding a role or feature to a server that is supposed to perform a fixed function. Warning: Removing a role or feature from the hard disk is irreversible. Once a role or feature is removed, the only option is to reinstall; there is no way to bring it back. An even greater warning: Be very careful to comment out any line that has a... --- ### Hyper-V in SCVMM 2008 "Needs Attention" > Details the key Hyper-V updates to download to resolve the "Needs Attention" status in Virtual Machine Manager (VMM). - Published: 2009-05-25 - Modified: 2024-11-19 - URL: https://petri.com/hyper-v-updates-for-scvmm-2008/ - Categories: Virtualization - Article Type: Overview System Center Virtual Machine Manager (SCVMM or VMM for short) 2008 is Microsoft’s management tool for Hyper-V and Virtual Server 2005. In this article by MVP Daniel Petri, learn how to resolve a persistent "Needs Attention" Hyper-V status with two quick downloads. System Center Virtual Machine Manager (or SCVMM or even VMM for short) 2008 is Microsoft’s management tool for Hyper-V and Virtual Server 2005, with added ability to even manage VMware ESX servers. After installing VMM 2008 and connecting it to Hyper-V hosts, if these Hyper-V hosts do not have two updates installed on them, SCVMM 2008 server will report your hosts as "Needs Attention", and the sub-status for Virtualization Service Version will show as "Upgrade Available". The nasty thing about this is that these updates are not listed in the Windows Update list of available updates, and you must manually download and install them. Download #1:  Hyper-V Update (KB956589) http://support. microsoft. com/? kbid=956589 Install this update to resolve potential issues when you manage Hyper-V with System Center Virtual Machine Manager (SCVMM). Download #2: BITS Update (KB956774) http://support. microsoft. com/? kbid=956774 Install this update to resolve the scenario where a Background Intelligent Transfer Service (BITS) client cannot handle files that have paths that contain the volume GUID in Windows Server 2008. After you install this item, you may have to restart your computer. Note: This patch is not available for download like the previous one. You must request it through the provided link, and you’ll receive a confirmation e-mail containing the download link and a password for the zipped file. Important note: Both hotfixes require a reboot, so be sure to properly plan for installing them with minimum interruption to running virtual machines. After installing these updates, you must refresh the status of the Hyper-V hosts. Once... --- ### SQL Server Recovery Models > How to implement the 3 different SQL Server 2008 recovery models according to your backup strategy needs. - Published: 2009-05-25 - Modified: 2024-12-03 - URL: https://petri.com/sql-server-recovery-models/ - Categories: SQL Server - Tags: Editor's Pick - Article Type: Overview In SQL Server 2008 there are 3 recovery models you can use: simple, bulk-logged, and full. These recovery models really just define how log management behaves so you can have what you need to perform your desired backups. In our previous article we discussed how to design a backup strategy.   This time we’re going to talk more about how to implement the different recovery models you’ll need to accomplish your goals.   In SQL Server 2008 there are 3 recovery models you can use: simple, bulk-logged, and full.   These recovery models really just define how log management behaves so you can have what you need to perform your desired backups.   And while the different modes define what you can and can’t do with your backups, the focus is really on recovery.   This is why they’re called recovery models, because you’re really defining the level of data recovery you need and SQL Server 2008 will manage the log accordingly.   Let’s go ahead and discuss each one so you’ll know what they do.   I’ll discuss how to actually switch between the modes towards the end. Simple Mode Putting a database into simple mode means that you don’t want to take log backups and all you want to do is rely on full backups for your recovery.   How it accomplishes this is simple.   It forces the log to truncate when the database writes data to the disk (we call that a checkpoint).   So if the log isn’t storing any long-term data, then it can’t be backed up.   It’s also worth noting that SQL Server 2008 won’t shrink the log file itself; it only deletes the inactive portion of the log.   This means that if you have a huge transaction... --- ### Top 4 Reasons to Move to Microsoft SQL Server 2008 R2 > Built-in security, availability, and scale coupled plus robust business intelligence offerings. Learn the to 10 features of Microsoft SQL Server 2008 R2. - Published: 2009-05-24 - Modified: 2009-05-24 - URL: https://petri.com/top-4-reasons-to-move-to-microsoft-sql-server-2008-r2/ - Categories: SQL Server - Article Type: Overview Microsoft® SQL Server 2008 R2 expands on the value delivered in SQL Server 2008 with new technologies and capabilities specifically designed to make actionable intelligence accessible to all employees in the enterprise. It delivers a comprehensive data platform that provides built-in security, availability, and scale coupled with robust business intelligence offerings—helping enable high service levels for mission-critical workloads. Here are the top 10 reasons to make the move: 1. New Features PowerPivot for Excel 2010. Delivers unmatched computational power directly within Microsoft Excel. Users can quickly transform huge quantities of data into meaningful information using familiar Excel software, and share their workbooks using SharePoint. Report Builder 3. 0. Accelerates report creation, collaboration, and consistency by enabling users to create and share reusable report elements in a Shared Component Library. Shared components make it quick and easy to assemble comprehensive business reports in a professional-looking format. Master Data Services. Provides the foundation to create, edit, and update master data including members and hierarchies, and to drive direct stewardship to ensure data quality by enforcing business rules, integrity, and security. 2. Empower End-Users 2. Empower End-Users Intuitive Authoring and Publishing. Work with the most effective tools from Microsoft to drive excellence in managed, self-service BI. Process massive amounts of data in seconds. Capitalize on column-based compression and the in-memory BI engine available with PowerPivot for Excel 2010, and take advantage of Data Analysis Expressions (DAX) to perform powerful manipulations, aggregate over billions of rows, and define calculated columns and measures... . --- ### Windows 7 Upgrade Paths > A summary of the possible upgrade paths from previous versions to the Windows 7 operating system. - Published: 2009-05-22 - Modified: 2009-05-22 - URL: https://petri.com/windows-7-upgrade-paths/ - Categories: Windows 7 - Tags: 7, Microsoft, upgrade, Windows - Article Type: Overview A summary of the possible upgrade paths from previous versions to the Windows 7 operating system. Windows 7 is the next generation of operating system due from Microsoft with an expected releaseof of late October 22, 2009. As part of some recent posts here on the site I have written articles that deal with upgrading previous versions of Microsoft Windows to Windows 7. Upgrading Windows XP Professional SP3 to Windows 7 Ultimate was an article that I wrote intentionally misnamed as upgrades from Windows XP Professional to any version of Windows 7 are not supported. – The actual walkthrough showed the steps when an upgrade installation is attempted and how the installation routine defaults to a Custom (advanced) clean install because it is not permitted. Upgrading Windows Vista Ultimate to Windows 7 Ultimate walked through the steps of performing a supported upgrade to Windows 7. An additional article, Setting up Windows Vista to multi-boot Windows 7 Ultimate, reviewed the steps to set up a system with an additional partition (by shrinking the existing volume) where an existing operating system was already installed so that you could have an environment that would allow you to dual boot into that existing operating system or the new install of Windows 7 (covered in my Dual Booting Windows Vista with Windows 7 Ultimate walkthrough). Recently, Microsoft released a white paper titled Windows 7 Upgrade Paths that outlined the support boundaries for supported upgrades from prior installations of Windows operating systems to Windows 7. I wanted to provide that summary information here and to... --- ### Troubleshoot a Slow Database in SQL Server 2008 > Follow these steps in order to uncover the queries causing SQL database slowness. - Published: 2009-05-18 - Modified: 2024-12-03 - URL: https://petri.com/troubleshoot-slow-database-in-sql-server-2008/ - Categories: SQL Server - Article Type: Overview Microsoft SQL MVP Sean McCown outlines the steps to follow in order to uncover the queries causing SQL database slowness. Troubleshooting database slowness can be both fairly straightforward and tricky at the same time.   Most of the time the problems will present themselves to you right away and the fixes will be fairly easy too, but there are those times when the exact issue will elude you and even when you find it there is no really good solution. Here, we're going to concentrate on that low hanging fruit that will get you through around 90% of your database speed issues. First Up: Determine If it Really Is an SQL Server Issue Let’s say that you’ve definitely determined that the issue is inside SQL Server via Troubleshooting a Slow Database Server: Is SQL Server the Cause? .   The first thing to do inside SQL Server is to see which query is causing the problems.   To do this, you need to open a query window and type the following line of code: Select * from sys. sysprocesses order by cpu desc This of course, depends on what your external investigation revealed.   If it revealed a CPU issue, then the above query is what you want to use. If it revealed a disk issue, then you’ll want to change the order by clause to “order by physical_io desc”.   And of course if it revealed memory issues, then you’ll want to change your order by clause to “order by memusage desc”. Each of these order clauses tells you what the most expensive queries are in terms of what... --- ### How to Design a Backup Strategy in SQL Server > A high-level discussion on the best practices to follow when developing a backup strategy in SQL. - Published: 2009-05-18 - Modified: 2023-06-12 - URL: https://petri.com/design-a-backup-strategy-in-sql-server/ - Categories: SQL Server - Tags: SQL Server - Article Type: How To Designing a backup strategy in SQL is fairly straightforward, but it can get complicated when you’ve got a lot of moving pieces in your scenario. Sean McCown, Microsoft SQL MVP, takes the readers through the "best" practices to follow. Designing a backup strategy is fairly straightforward, but it can get complicated when you’ve got a lot of moving pieces in your scenario.   Here we'll discuss some of the factors you’ll want to take into consideration when designing your strategy as well as some good practices.   Notice I stayed away from the phrase ‘best practices’.   This is because best practices only give you a point from which you should start the discussion.   Too often best practices are blindly followed, and that’s very dangerous. For starters, best practices are never published with an explanation of perspective.   There’s rarely anything that holds true 100% of the time. For example, if "best practices" say to always do full backups once a day followed by log backups every hour, that’s pretty specific.   But what "best" are we talking about? Best for backups, for recovery, for server resources?   And so on.   So here we'll stay away from ‘best practice’ recommendations like that and just give you a couple high-level discussion points so you’ll be better prepared to make your own decisions. Let’s first talk about backing up user and system databases.   It’s always a good idea to back up system databases separately from user databases.   The reason is, should any of the user database backups fail, the system database backups may also fail.   Your entire installation relies on your system databases, so you don’t want them to fail.   Set up a job to backup the system databases, and another job (or set... --- ### How to Choose a SQL Server Authentication Mode > Insight on when it is appropriate to select Windows authentication or Windows and SQL authentication during an install of SQL Server 2008. - Published: 2009-05-18 - Modified: 2009-05-18 - URL: https://petri.com/how-to-choose-sql-server-authentication-mode/ - Categories: SQL Server - Article Type: How To Microsoft SQL MVP, Sean McCown, takes us through the pros and cons of using Windows authentication vs SQL and Windows Authentication when installing an SQL server 2008. Probably one of the most important decisions you’ll make during your install of SQL Server 2008 is which authentication mode to choose.   You’ve only got two choices:  Windows authentication, and Windows and SQL authentication.   They both have their place, and I know one of the choices seems redundant, but it’s really not.   Here I’m going to explain what each of these means and when you would choose each one. Windows Authentication This is the default option during setup because it’s the most secure.   Using this method allows you to control all of your database security through Windows and Active Directory.   This method allows you to place users into groups if you so desire (more on that later), and it allows you not have to manage passwords for your users.   It also keeps your environment secure by either eliminating generic accounts, or at least allowing you to keep tighter control over their passwords.   This scenario is simple.   You’ve got an application that needs to connect to SQL Server 2008, and you don’t want the username and password sitting out there in a file somewhere.   So the easiest way to protect against this is to use a Windows account with a password you control and run the application under that user.   This way you can also rotate the password as you see fit and there’s nothing out on the server that reveals it.   Having passwords sitting out in ini files or in webcofig files, etc... --- ### How to Manage SQL Server Database Files > T-SQL is a useful tool in managing large numbers of files in SQL. While this can be done in SSMS, t-SQL is much more flexible and less prone to error. - Published: 2009-05-18 - Modified: 2009-05-18 - URL: https://petri.com/how-to-manage-sql-server-database-files/ - Categories: SQL Server - Article Type: How To Important insight on managing large numbers of files in SQL from Microsoft SQL MVP, Sean McCown. Managing database files in SQL Server 2008 is fairly easy and most of it can be done in SSMS.   However, when you start getting into large numbers of files it can take a lot of time to manage them this way and it’s an error prone process to do everything manually so we’re going to show you how to manage your database files with T-SQL instead.   Trust us, while this seems like a beating compared to doing it in the GUI, we’re really doing you a favor because this method is far more flexible. Also, if you come across a database that has a lot of files you won’t have to learn a completely different skill to manage them effectively.   So let’s get into the different things you may need to do with your database files. Log Files We’re starting with log files because typically they’re the ones that will give you the most trouble in production.   One of the first things you’ll need to do is find out how big your log file is on disk and how full it is.   This can tell you right away if you’re dealing with an issue caused by the log filling up. To query these simple log file statistics you open a query window in SSMS and type the following command: DBCC SQLPERF('logspace') This will give you the log space usage for every DB on the server.   So depending on what you find (we’ll pretend... --- ### Quickly Access your Folders in Vista > In this article, MVP Daniel Petri will show you how to quickly access any folder on your computer through a cool toolbar shortcut. - Published: 2009-05-15 - Modified: 2024-09-04 - URL: https://petri.com/quickly-access-your-folders-in-vista/ - Categories: Windows Vista - Tags: My Computer, shortcuts, Windows Vista - Article Type: How To One of the most handy tricks in Windows Vista (and previous operating systems) is the My Computer shortcut. In this article, MVP Daniel Petri shows you how to quickly access any folder on your computer through a cool toolbar shortcut. When using a computer for so many hours as I do, you need to work fast. You need to find shortcuts to better manage your computer, and work faster with daily tasks. One of the most handy tricks in Windows Vista (and previous operating systems) is the My Computer shortcut. When using Microsoft Office programs, web browsers,  or practically any other application that needs to gain access you your saved files, you frequently find yourself looking for your stuff. You look for your documents, for MP3 audio files, for Power Point presentations, for text files and more. Windows Vista introduced the built-in search folder. While search did exist in previous operating systems (and you could also upgrade it by using tools such as Microsoft Windows Desktop Search), Vista has moved a step forward in that area. However, even Vista’s quick search capability requires you to know the name of the file you want to open, or at least part of it. If you don’t,  what’ you’ll end up doing in most cases is to open Windows Explorer for navigating, copying, moving, opening and other file operations. When your desktop is hidden behind other opened windows, finding the ”My Computer” icon can be time consuming, and you’ll probably need to “dig” deep in order to find it. Needless to say, this is made even more time consuming since someone in Microsoft had the nasty idea that users do not need to have the “My Computer” icon on their desktop...   BTW, you... --- ### Working with System Image Backups in Windows 7 > Learn how to successfully restore your Windows 7 computer to working status with system image backups. - Published: 2009-05-14 - Modified: 2024-12-03 - URL: https://petri.com/working-with-system-image-backups-in-windows-7/ - Categories: Windows 7 - Tags: Backup and Restore, restoration, System images, system settings - Article Type: Overview Windows 7’s Backup and Restore tool allows you to backup and restore individual files, groups of files, or all of the files that you have backed up. One possible use for it is when something goes terribly wrong with your operating system, causing you to have to either format and re-install, or use the System Image backup you created. In this article, MVP Daniel Petri will show you how to successfully restore your Windows 7 computer to working status. System images are exact images of the drive that Windows is installed on and are used by Windows 7’s Backup and Restore tool. You can read more about Windows 7’s Backup and Restore in my Backup and Restore in Windows 7 - What it should have been in Vista! and Restoring Files with Backup and Restore in Windows 7 articles. A system image includes Windows and system settings, programs and files. You can use a system image to restore the contents of your computer, or the drive that Windows is installed on, if your hard drive or computer ever stops working. When you restore your computer from a system image, it is a complete restoration and you can't choose individual items to restore, and all of your current programs, system settings, and files are replaced. Restoring Windows 7 systems with System images and Backup and Restore tool is also addressed in an upcoming article. Note: Although this type of backup includes your personal files, remember that because of the fact that they cannot be used to restore individual items to restore, I strongly recommend that you regularly back up your files using the Backup and Restore. Note: If you have more than one drive or partition on your computer, a system image is only made of the drive or partition that Windows is installed on. Note: Remember, Windows 7 is still under development. The version I’m working with to grab screenshots from is beta build 7000, and... --- ### Restoring Files with Backup and Restore in Windows 7 > Learn how to restore your lost data from backup in this step-by-step guide for the restore process in the Windows 7 Backup and Restore utility. - Published: 2009-05-12 - Modified: 2024-09-04 - URL: https://petri.com/restoring-files-with-backup-and-restore-in-windows-7/ - Categories: Windows 7 - Tags: Backup and Restore, backup media, Restore files - Article Type: How To By using the new Windows 7 Backup and Restore tool you can restore individual files, groups of files, or all of the files that you have backed up. Hopefully, one will never need it. But in case they do, in this article, MVP Daniel Petri explains the process. Following my Backup and Restore in Windows 7 - What it should have been in Vista! article, I would like to walk you through the steps needed to restore files or folders from a previous backup created by the new Windows 7 Backup and Restore tool. In Windows 7 (currently in beta phase, build 7000), the Vista’s Backup Status and Configuration tool is replaced by a tool called “Backup and Restore”. You can access it by going to the Control Panel and typing “backup” in the search box. One of the results will lead you to it. You can also type “backup” on the Start Menu search box, and again, one of the results will lead you to it. You can also run the following command from the Run or search box option: sdclt. exe (insert in text box) The Backup and Restore tool will open. If you’ve already created a backup previously, you’ll see the “Restore my files” button. You can restore individual files, multiple files, or all files in a backup. Lamer note: There’s no real point in trying to restore files from an un-existing backup, is there? Make sure you regularly backup your files, settings and folders, otherwise you will not be able to restore them when you need to. Duh... If you have more than one backup, you can select which backup media you wish to restore from by pressing on the “Selecting another backup to restore files from” link. Going back to business,... --- ### Choosing the Best Storage Desination for your Windows 7 Backup > Details where Windows 7 allows you to store your data backups, the benefits of each storage medium and which option will best fit your requirements. - Published: 2009-05-12 - Modified: 2024-09-04 - URL: https://petri.com/where-to-save-your-windows-7-backup/ - Categories: Windows 7 - Tags: Backup, operating system, Restore, Windows 7 - Article Type: Overview When using the Backup and Restore tool in Windows 7, an important aspect of the backup job is the proper selection of backup target. In this article, MVP Daniel Petri continues the Windows 7 backup series with important information to help you choose where to save your backup. Windows 7 Backup and Restore is the long awaited backup replacement for Vista’s Backup Status and Configuration tool which lacked many important features. When using the Backup and Restore tool, an important aspect of the backup job is the proper selection of backup target. While Backup and Restore can use several types of hardware for the backup destination, where you save your backup depends on the hardware that you have available, the information you are saving on your backup, and how you want to interact with the backup wizard. BTW, when you insert a new hard drive (such as an external USB drive) and Windows 7 recognizes it, it will prompt you if you wish to use it as the target for your backups. This can be changed later, but if you do select it, the Backup Files will begin. When you choose a destination to save your backup to, the wizard searches your computer and displays a list of all destinations that you can use. The following list describes the types of backup destinations that Backup and Restore supports: Internal hard disk – In the past years, hard disks became relatively inexpensive. This makes them the best option for backup media targets.   If you have a problem with your operating system and cannot boot your computer up anymore, you can use the hard disk in another computer and you will still have access to the backups. Note: You should also never back up files on the... --- ### Windows 7 Backup & Restore - What it should have been in Vista! > A detailed walk-through of the new Backup & Restore tool included in Windows 7. Learn how to back up your files and data with ease. - Published: 2009-05-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-backup-restore/ - Categories: Windows 7 - Tags: Backup, backup tool, Configuration, Restore, storage, Windows 7 - Article Type: Overview In Windows Vista, the Backup Status and Configuration tool was the place where one could (at least try to) backup pictures, music, media and documents on their computer. However, as many users found, it just didn't allow for some key configuration options. In Windows 7 this has changed, and it seems quite likely that we’ll finally get a good backup tool. In this article, MVP Daniel Petri takes you inside Windows 7 Backup & Restore . In Windows Vista, the Backup Status and Configuration tool was the place where one could (or at least try to) backup pictures, music, media and documents on their Vista computer. However, it seems Vista’s designers have made every effort possible to make the backup tool as un-configurable as possible; even preventing us from choosing exactly which file or folder we want to backup. Instead, the Backup Status and Configuration tool will only allow us to select what GENERAL file type we want to backup, not its location. Read my article on backup status and configuration in Vista for more on that issue. Note: That is why more advanced users might want to consider using a different and more customizable backup software. Perhaps try installing Windows XP Ntbackup on Windows Vista. In Windows 7 this has changed, and it seems that there’s a good chance that we’ll finally get a good and working tool this time. In Window 7 (beta phase, build 7000), the Backup Status and Configuration tool is replaced by a tool called “Backup and Restore”. You can access it by going to the Control Panel and typing “backup” in the search box. One of the results will lead you to it. You can also type “backup” on the Start Menu search box, and again, one of the results will lead you to it. You can also run the following command from the Run or search box option: sdclt. exe (if you really must know, you can... --- ### Top Tips for Importing & Exporting your VM with Hyper-V > A detailed guide for how to use the import and export process to move virtual machines around in a Hyper-V environment. - Published: 2009-05-08 - Modified: 2024-09-04 - URL: https://petri.com/importing-and-exporting-your-virtual-machines/ - Categories: Virtualization - Tags: export process, exported image, host server, virtual machines - Article Type: Overview One of the things that makes server virtualization so enticing is virtual machine portability. If a host server starts to become overloaded, or you need to upgrade to newer hardware, you can move virtual machines to another host server via the Import and Export function. In this article, Brien Posey explains the import/export process and how to avoid some common pitfalls of moving your virtual machines. As you accumulate virtual machines, then sooner or later you are probably going to run into a situation in which you want to move one or more virtual machines to a new host server. Microsoft makes this possible through the Hyper-V Manager’s Import and Export functions. If you look at Figure A, you can see that  when you select a virtual machine, Hyper-V displays an Export link in the lower right corner of the console. There is also an Import Virtual Machine link at near the top of the Actions pane. Figure A The Import and Export functions are accessible through the Hyper-V Manager. On the surface, it appears that you can simply select a virtual machine, export it, take the exported image to another server that’s running Hyper-V, and import it. On some levels this really is the way that the import and export processes work. There are some gotchas that you need to be aware of though, and the only way that you can avoid those gotchas is to understand what’s really going on when you export and import a virtual machine. Virtual Machine Identification The first thing that you need to understand about the import and the export process is that Hyper-V has two different ways of identifying virtual machines. The most obvious way of identifying a virtual machine is by the name that you have assigned to it. For example, if you look back at Figure A, the Actions pane will show you... --- ### Security Overview of Encrypting File System (EFS) in Windows 7 > Comparison & analysis of Windows 7's BitLocker encryption versus EFS. Detailed deployment instructions included. - Published: 2009-05-05 - Modified: 2024-09-04 - URL: https://petri.com/encrypting-file-system-overview/ - Categories: Windows 7 - Tags: 7, client, EFS, NTFS, Security, Ultimate, Windows, XP - Article Type: Overview A comparative overview of BitLocker and Encrypting File System (EFS) in Windows 7 and how they can be leveraged to improve the security of your data. Windows 7 is the next generation of operating system due from Microsoft and it is still set for a planned release for early 2010 which would be three years after the release of Windows Vista. This article is an overview of BitLocker and Encrypting File System (EFS) in Windows 7. – Windows 7 is only in beta release at the time of writing this article and the version that I am using is Windows 7 Ultimate edition, build 6. 1. 7000. Because the operating system is in beta release this article should only be considered a preliminary write up and the details are subject to change upon the final release of this new version of Windows. Encrypting File System (EFS) Overview When you want to make sure that data access is restricted only to certain individuals you can leverage NTFS permissions to deny access to everyone and to only grant access to those users by way of the access controls provided within the file system. The problem with this is that the security is bound to the file system so as ownership control is gained to the data on a given system at the level of administrator, that file system security is easily undone and access to that data becomes available. When you are the admin with admin level controls to a system you pretty much can do what you want on the system; one of those options is to take ownership of data and change the access... --- ### Setting Up Mobile Messaging in Exchange 2007, Part 2 > A step-by-step procedure for synchronizing a Windows Mobile device to an Exchange 2007 server and resolving a setup error. - Published: 2009-05-04 - Modified: 2024-09-04 - URL: https://petri.com/setting-up-mobile-messaging-in-exchange-2007-part-2/ - Categories: Exchange Server - Tags: ActiveSync, Client Access Server, Exchange 2007 mailbox, Exchange Server, SSL certificate, Windows Mobile 6.1 - Article Type: How To Mobile Messaging is one of the hottest trends in messaging today. In this article, Brien Posey explains how to resolve a common error that may occur when synchronizing a Windows Mobile device to an Exchange 2007 server. In the first part of this series, I began walking you through the process of synchronizing a Windows Mobile 6. 1 device to an Exchange 2007 mailbox. As you will recall though, the synchronization process failed. In this article, I want to wrap things up by showing you how to correct this issue. Attention Required When I concluded Part 1 of this series, we were left with a mobile device screen that indicated that attention was required, as shown in Figure A. Assuming that you have entered your E-mail address, authentication credentials and the name or IP address of your Exchange Server correctly, and the mobile device has basic network connectivity, this error message is almost always related to the device not trusting the Exchange Server’s SSL certificate. Figure A The Attention Required error often indicates that the mobile device does not trust your Client Access Server’s SSL certificate. Of course you can find out for sure what the reason for the failure is by simply clicking on the Attention Required link. An error message such as the one shown in Figure B indicates that the SSL certificate is the problem. In the case of a problem with the SSL certificate or with general connectivity, the error message shown when you click the Attention Required link is fairly self explanatory. In other situations, you may just receive an error code. If you receive such a code, you can go to http://support. microsoft. com and look up the code in the... --- ### Configuring Nokia E71 to Synchronize with Exchange Server 2007 > This article walks through the simple steps on how to configure your Nokia E71 cellular phone to synchronize with an Exchange Server 2007 organization. - Published: 2009-05-03 - Modified: 2024-09-04 - URL: https://petri.com/configuring-nokia-e71-with-exchange-2007/ - Categories: Exchange Server - Article Type: How To I have recently migrated the users (and myself) in one of the companies I do consulting for, from one cellular provider to another. The new provider offered them to use Nokia E71 phones, and after some testing we began to deploy the phone. What I like about that particular phone is the simplicity of the UI and the extensible possibilities it has, without sacrificing battery power and usability like other 3G phones. In this article I will walk you through the simple steps on how to configure your Nokia E71 cellular phone to synchronize with an Exchange Server 2007 organization. Note: In this article I will only cover the client side (i. e. the Nokia phone) settings. I will not go into the server side details. these are covered in other articles on this site. Assuming you have an Exchange Server 2007 which you want to sync your phone(s) with, this is the information you need: 1. User name 2. User e-mail address 3. User mailbox account password 4. The user account domain name 5. The FQDN of the Exchange Server CAS machine Note: The above is not necessary if you've correctly published the CAS in DNS. 6. A Nokia E71 phone Note: These steps might work on some other Nokia phones, most likely the ones using Symbian operating system. YMMV. 7. You must have a data plan from your cellular provider, otherwise you'll get a large bill at the end of the month... Hosting Exchange and 3rd-party... --- ### Establishing a Service Level Agreement (SLA) for Exchange 2007 > In this article, Brien Posey uses his experiences to show you why service level agreements can be made to work in your favor. - Published: 2009-05-01 - Modified: 2009-05-01 - URL: https://petri.com/establishing-a-service-level-agreement-for-exchange-2007/ - Categories: Exchange Server - Tags: Exchange databases, Exchange Server, restore operation, service level agreements - Article Type: Overview Although service level agreements are often a source of stress for network administrators, they can be made to work in your favor. In this article, Brien Posey uses his experiences to show you why service level agreements can sometimes be a good thing. These days almost every company considers E-mail to be a mission critical application. As such, the IT staff is usually under quite a bit of pressure to keep the mail flowing.   In fact, company executives probably expect you to keep the servers up twenty four hours a day, three hundred sixty five days a year. Service Level Agreements When service level agreements first began making their way into the work place, I have to admit that I cringed at the idea. After all, the only thing worse than a server crash is having a company imposed deadline for getting the problem fixed. Experience has shown me though that if you are careful, service level agreements can actually be set up so that they work in your favor. The Nagging Manager About ten years ago, I was responsible for IT operations at a military base. I remember one particular situation in which an Exchange Server failed on a day when the officer in charge was already in a bad mood. He would come storming into the server room every five minutes or so demanding answers and making threats. Believe it or not, the Army did not have any service level agreements in place at the time. If there had been one though, I could have used it to get the Colonel  off of my back. After all, a service level agreement typically entitles the IT staff to a certain amount of time to fix the problem. This is where the part... --- ### Virtual Processor Limitations in Hyper-V > In this article, Brien Posey talks about configuring Hyper-V to find the right balance between CPU cores and guest operating systems. - Published: 2009-05-01 - Modified: 2024-09-04 - URL: https://petri.com/virtual-processor-limitations-in-hyper-v/ - Categories: Virtualization - Tags: assigning virtual processors, CPU resources, guest operating systems, virtual machines - Article Type: Overview One of the tricky things about configuring Hyper-V is that you can have more guest operating systems than you have CPU cores. In this article, Brien Posey talks about finding the right balance between cores and guest operating systems. If you have ever experimented with the various settings in Hyper-V, then you probably know that Hyper-V offers a lot of flexibility when it comes to allocating CPU resources to virtual machines. In a way this is both good and bad. It is good, because Hyper-V allows you to achieve granular control over the allocation of system resources. The bad part is that it is possible to allocate CPU resources in a way that starves the server of processing power. In this article, I will show you why this is the case, and how to avoid it. Virtual Processor Mapping One of the reasons why there is so much flexibility in allocating CPU resources is that every version of Windows that has been built on the Windows NT kernel (or some variation of it) supports at least two processors. Every computer being manufactured today includes multiple CPU cores, and in many cases multiple CPUs, each of which contain multiple CPU cores. What this means is that you have a lot of flexibility in deciding how many CPU cores you want to allocate to each guest operating system. If you look at Figure A, you can see that Hyper-V allows you to decide how many virtual processors you want to assign to a guest operating system. Before you start doing that though, you need to understand that when you assign CPU resources to a virtual machine, you're not assigning physical CPU cores but rather virtual processors. Figure A... --- ### How to Play Sound Alerts on Microsoft System Center Operations Manager Console - Published: 2009-05-01 - Modified: 2009-05-01 - URL: https://petri.com/play-sound-alerts-on-microsoft-system-center-operations-manager-console/ - Categories: Windows Server - Tags: alerts, OpsMgr, System Center Operations Manager - Article Type: How To One of the most annoying facts about the Microsoft System Center Operations Manager console (also known as OpsMgr) is that it is too silent… Sometimes you simply wish there was a simple beep or other sound alert coming out of it. In this article, MVP Daniel Petri passes along a great solution for how to make that happen. One of the most annoying facts about the Microsoft System Center Operations Manager console (also known as OpsMgr) is that it is too silent... Sometimes you simply wish there was a simple beep or other sound alert coming out of it. When a new alert is triggered, anyone would expect its monitoring system to play a sound alert that would wake the computer operator from his nap. Since this feature is not available in OpsMgr out of the box, I was happy to read a very cool tip submitted to me by Snir Hofman - One of the guys in the Smart-X experts team (visit them at www. smart-x. com). This is what Snir wrote: I came up with a solution to play a sound on a remote computer when a new alert is triggered (or whenever you decide). This works using a VBS script as a notification method utilizing WMI to create a remote process and play a wav file using “Media Player Classic”. Here are the steps needed to be followed: 1. Download “Medial Player Classic” from the following URL: http://www. free-codecs. com/Media_Player_Classic_download. htm 2. Extract the exe file. (I use mplayerc because it’s stand alone and very light). 3. Get a WAV file from the web (Google it, you can use any sound you like, but please, no elephants in the servers' room! ) 4. Create a share on a central location and copy mplayerc. exe and the wav file into it (let’s call it alert. wav). 5. Copy the text from... --- ### Easily Removing End Users from the Local Administrators Group - Published: 2009-04-30 - Modified: 2024-09-04 - URL: https://petri.com/removing-end-users-from-the-local-administrators-group/ - Categories: Security - Tags: Active Directory, Security - Article Type: How To In many enterprises, the organization policy is to add end users to the local Administrators group on their assigned PC; often to allow legacy applications which require administrative privileges to run correctly. However, there's a great risk in setting the end users as local administrators... information security. In this article MVP Daniel Petri presents a few better and more secure options. In many enterprises around the globe, the organization policy is to add end users to the local Administrators group on their assigned PC. The reason for that is most likely legacy applications which require administrative privileges in order to run correctly. These organizations are most likely to consume extra resources in the Help desk department and would probably have to deal with viruses and licensing issues since users can install any application they like. However, the greatest risk in setting the end users as local administrators is information security. Here is a little scenario that demonstrates how easy it is to get hold of sensitive information when users are set as local administrators: Imagine yourself an employee that was "planned" in your organization by a business competitor and was assigned the task of retrieving documents and Emails which belongs to the CFO. This employee has been accepted to work in a legitimate way and was given a user account and a workstation on which he is defined as local administrator. Now, this employee performs the following simple tasks: Creates a local account named 'Whatever'. Make 'Whatever' a member of the local Administrators group. Login using the new account. Installs a Key-Logger application. Deletes the account and empty the security log. At this point, all he has to do is create some sort of problem in his workstation, open a support call, shut down the computer and go home. Once the technician arrives to the workstation, he will... --- ### Windows 7 Release Candidate (Build 7100) - Early Details - Published: 2009-04-28 - Modified: 2009-04-28 - URL: https://petri.com/windows-7-release-candidate-build-7100-early-details/ - Categories: Windows 7 - Tags: Downloads, Microsoft, Release Candidate, Security, System Requirements, Windows 7, Windows Vista, Windows XP - Article Type: Overview The Windows 7 Release Candidate download page on TechNet suddenly showed up online and available for review for a short while a few days before it was supposed to officially show up. Here's a summary of what was published... In many times gone by now Microsoft has had situations where information has suddenly come online ahead of the planned schedule release date “unintentionally” and “accidentally” and the releasing information for Windows 7 with respect to the upcoming Release Candidate is no different. These events are always defended as true errors but often considered tactical marketing ploys to generate buzz and interest. I stand in the accusing group and I hate justifying the event but I am so excited over the promise of Windows 7 that I have no choice but to play into it. The Windows 7 Release Candidate download page on TechNet suddenly showed up online and available for review for a short while a few days before it was supposed to officially show up (according to the Microsoft website Windows 7 Release Candidate will be available for download by the public on May 5, with early access for MSDN/TechNet subscribers and beta testers on April 30. ) The Release Candidate build is supposed to be tagged as build 7100, and the additional information that been supplied regarding the testing program indicates that it will be available at least through June 2009. Communications around the planned Release Candidate build 7100 peg the expiration date of the bits as June 1, 2010. It is supposed to be available in both 32-bit and 64-bit versions in English, German, Japanese, French, and Spanish and the details from the leaked page showed as much. The leaked information showed the system requirements as: Internet access... --- ### Dual Booting Windows Vista with Windows 7 Ultimate - Published: 2009-04-28 - Modified: 2024-11-19 - URL: https://petri.com/dual-booting-windows-vista-with-windows-7-ultimate/ - Categories: Windows 7 - Tags: 7, client, install, Ultimate, upgrade, Windows, XP - Article Type: How To This article is a detailed guide on the steps to take to install Windows 7 Ultimate edition alongside your existing Windows Vista installation in a dual boot configuration. Windows 7 is the next generation of operating system due from Microsoft and it is still set for a planned release for early 2010 which would be three years after the release of Windows Vista. This article is a complete walkthrough on the steps taken to install Windows 7 Ultimate edition alongside your existing Windows Vista installation in a dual boot configuration. – It is important to note that Windows 7 is only in beta release at the present time. The version of Windows 7 that I am using for this walk through is Windows 7 Ultimate edition, build 6. 1. 7000.   Because the content is still under development and in software is in beta release it is a preliminary tutorial and is subject to change upon the final release of this new version of Windows.   The terms multi-boot and dual-boot are often used interchangeably when talking about two side by side installations of operating systems. When there are more than two available installations of operating system available the correct term is multi-boot but even in a situation where there are just two you can use that term as well despite the fact that dual-boot is more appropriate.   Our activities outlined here are going to be a major change to the configuration of the host system as we’re going to take a system that previously contained only the single installation of Windows Vista and we’re going to make changes to add the... --- ### Setting up Windows Vista to multi-boot Windows 7 Ultimate - Published: 2009-04-28 - Modified: 2024-11-19 - URL: https://petri.com/setting-up-windows-vista-to-multi-boot-windows-7-ultimate/ - Categories: Windows 7 - Tags: 7, client, install, Ultimate, upgrade, Windows, XP - Article Type: How To Take complete walk through on the steps taken to set up your Windows Vista Ultimate system to multi-boot with Windows 7 Ultimate edition as Jason Zandri shows you how to prepare your existing system so that there is a free partition for the install. Windows 7 is the next generation of operating system due from Microsoft and it is still working on a planned release for early 2010 which would be three years after the release of Windows Vista. This article is a complete walk through on the steps taken to set up your Windows Vista Ultimate system to multi-boot with Windows 7 Ultimate edition. Basically we are going to be outlining the steps to prepare the existing system so that there is a free partition for the installation. – It is important to note that Windows 7 is only in beta release at the present time. The version of Windows 7 that I am using for this walk through is Windows 7 Ultimate edition, build 6. 1. 7000.   Because the content is still under development and in beta release it is a preliminary tutorial and is subject to change upon the final release of this new version of Windows.   The terms multi-boot and dual-boot are often used interchangeably when talking about two side by side installations of operating systems. When there are more than two available installations of operating system available the correct term is multi-boot but even in a situation where there are just two you can use that term as well despite the fact that dual-boot is more appropriate.   When you are getting ready to do any major installation on a host system, whether that is making a major configuration change to the... --- ### Upgrading Windows Vista Ultimate to Windows 7 Ultimate - Published: 2009-04-28 - Modified: 2024-09-04 - URL: https://petri.com/upgrading-windows-vista-ultimate-to-windows-7-ultimate/ - Categories: Windows 7 - Tags: 7, client, install, Ultimate, upgrade, Windows, XP - Article Type: Overview Windows 7 is the next generation of operating system due from Microsoft. In this article, Jason Zandri takes you on a complete walk through on the steps taken to upgrade your Windows Vista Ultimate installation to Windows 7 Ultimate edition. Windows 7 is the next generation of operating system due from Microsoft and it is still working on a planned release for early 2010 which would be three years after the release of Windows Vista. This article is a complete walk through on the steps taken to upgrade your Windows Vista Ultimate installation to Windows 7 Ultimate edition. – It is important to note that Windows 7 is only in beta release at the present time. The version of Windows 7 that I am using for this walk through is Windows 7 Ultimate edition, build 6. 1. 7000. Because the content is still under development and in beta release it is a preliminary tutorial and is subject to change upon the final release of this new version of Windows. One of the first aspects to consider when doing an in-place upgrade is to make sure you back up any data on the system that you must preserve. While 99. 99% of the time an in-place upgrade of supported hardware and pre-installed software will allow the operating system upgrade to go smoothly there is no point in risking critical data by skipping a step. – How to back up a PC is a very good write up that can be found on the Microsoft website that breaks down backing up PCs running Windows Vista as well as Windows XP. Other important things to remember when contemplating an in-place upgrade: You need to be... --- ### Setting Up Mobile Messaging in Exchange 2007, Part 1 > In this article, Brien Posey shows you how to set up Exchange 2007 to provide users access to their messages and their calendar while on the go. - Published: 2009-04-27 - Modified: 2024-09-04 - URL: https://petri.com/setting-up-mobile-messaging-in-exchange-2007-part-1/ - Categories: Exchange Server - Tags: Client Access Server, Exchange ActiveSync, Exchange Server 2007, mobile device, Windows Mobile - Article Type: How To Users are no longer content to access their E-mail solely from their desktop computer. Users demand access to their messages and to their calendar while on the go. Exchange 2007 offers very rich mobile messaging capabilities to such users, but the trick is setting it up. In this article, Brien Posey shows you how. If someone were to ask me what was the single biggest feature that had improved in Exchange Server 2007 over the way that the feature existed in Exchange Server 2003, I would have to say that it is mobile messaging. Exchange Server 2007 makes it simple to allow users to stay connected to their mailboxes, calendars, etc through a Windows Mobile device. In this article, I will show you how to connect a Windows Mobile device to your Exchange Server. Before I Begin Before I get started, I need to point out that there are some Exchange 2007 features (such as access to file servers) that will not work with legacy versions of Windows Mobile. As such, I will be using Windows Mobile 6. 1 for this article. Enabling Users The first thing that you are going to have to do if you want to allow users to have mobile messaging capabilities is to give them permission to use Exchange ActiveSync. To do so, open the Exchange Management Console, and then navigate through the console tree to Recipient Configuration | Mailbox. Right click on the mailbox that you want to allow mobile access to, and choose the Properties command from the resulting shortcut menu. Upon doing so, you will see the user’s properties sheet. Go to the properties sheet’s Mailbox Features tab, and enable Exchange ActiveSync as shown in Figure A. Click OK to complete the process. Figure A Users wishing to access their mailbox through a mobile device must have... --- ### Microsoft's Assessment and Planning Toolkit - Planning for Virtualization > Learn how to plan the implementation of your server virtualization with Microsoft's Assessment and Planning Toolkit - Published: 2009-04-24 - Modified: 2024-09-04 - URL: https://petri.com/microsoft-assessment-and-planning-toolkit/ - Categories: Virtualization - Article Type: Overview Server virtualization can save money by making better use of your hardware resources. Even so, deciding which servers should be virtualized, and which server should host which virtual servers is something of an art form. In this article, Brien Posey shows you a free tool from Microsoft that can help you with the planning process. Introduction Although it is usually fairly easy to virtualize a server, the virtualization process is something of an art form. Without the proper planning, the virtualization process can result in a tremendous loss of performance, reliability, or even stability. In the past, I have always used manual assessment techniques to develop a virtualization plan. However, Microsoft has integrated virtualization planning into its latest version of the Microsoft Assessment and Planning Toolkit. In case you're not familiar with the Assessment and Planning Toolkit, it is kind of a catchall tool for helping you to prepare for a number of different deployment scenarios, most of which have absolutely nothing to do with virtualization. For example, if you take a look at Figure A, you can see that one of the things that this tool is designed to do is to help you to find ways of consuming less electricity. Figure A Microsoft's Assessment and Planning Toolkit is designed to assist you with various deployment projects. Acquiring the Microsoft Assessment and Planning Toolkit Microsoft makes the Assessment and Planning Toolkit freely available via Internet download. You can get the toolkit at: http://technet. microsoft. com/en-us/library/bb977556. aspx  Keep in mind that in order to install the toolkit, your computer will need to have some prerequisite software installed, including Microsoft Office 2007 and the . NET Framework. When you run the installation wizard, it will check your computer, and tell you where to get any of the required components that aren’t already installed. Using the Microsoft Assessment and Planning Toolkit... --- ### Configuring Exchange 2007 as an Authenticated or Anonymous SMTP Relay - Published: 2009-04-21 - Modified: 2024-09-04 - URL: https://petri.com/authenticated-or-anonymous-smtp-relay-with-exchange-2007/ - Categories: Exchange Server - Tags: anonymous relay, authenticated SMTP, Exchange 2007, SMTP - Article Type: How To We've recently had to configure a couple of client's SBS2008 Exchange 2007 servers to act as SMTP relays for remote users. Why not just use OWA or Outlook Anywhere? It mostly seems to be Mac users, in particular those with "MobileMe", which insists on IMAP and SMTP to communicate with the mail server. Adding authenticated SMTP in Exchange 2003 was a pretty simple process, but the procedure in 2007 is not so obvious - read on to find out how to do that, and enable anonymous relaying too. Scenario By default Exchange 2007 is configured to only accept SMTP email for domains it is authoritative for, and will only relay email onto other domains for authenticated local users. Usually for Outlook/OWA based clients this is entirely sufficient as even when connecting from remote locations the clients appear to be local to the Exchange Server so it is happy to relay for them. This is thanks to the connection mechanism, Outlook Anywhere and OWA both route the email data through the IIS server, or a user on a VPN will appear to be on the LAN. This does create a problem if you need to use an alternative mail client that does not support the Outlook web protocols, in which case it will want to use SMTP to send emails. You are most likely to encounter this scenario with non-Windows/Blackberry mobile devices and "cloud" based PIM sync applications like Apple's "MobileMe". The solution is to configure your Exchange 2007 Server to accept authenticated SMTP connections and allow them to relay emails to remote domains - note that "authenticated" is essential otherwise you will turn your server into an "open relay" which will soon be abused by spammers. Implementation There are some fundamental differences between the SMTP implementation in Exchange 2003 and 2007 that will leave you very confused if you dont know about them. The main thing is that the Exchange 2007 no longer uses the SMTP service you were familiar with but has replaced it... --- ### Windows Server 2008 Foundation: An Entry-Level Server Platform - Published: 2009-04-17 - Modified: 2024-09-04 - URL: https://petri.com/introduction-to-windows-server-2008-foundation/ - Categories: Windows Server 2008 - Tags: foundation, SMB, Windows Server 2008 - Article Type: Overview A new version of Windows Server 2008 has been announced: Windows Server 2008 Foundation. In this article, MVP Daniel Petri examines the benefits and limitations of this new addition to the Windows Server family; geared towards smaller and growing organizations. A lot of small organizations are looking into a solution that enables them to run small-business-type applications, while minimizing licensing and IT management costs. Some of these organizations have looked, are looking, and will probably look into Linux-based solutions for these tasks. This is something that Microsoft will need to prevent, and for that, a new version of Windows Server 2008 has been announced. Windows Server 2008 Foundation is a technology that enables core IT resources, such as file and print sharing, remote access, and security. It provides a network foundation from which you can centrally manage settings on your computers that are based on the Windows operating system, and upon which you can run the most popular business applications. When compared to Linux-based servers, running a Windows-based machine also provides a familiar Windows user experience that helps low-budget IT administrators manage users and safeguard business information without the associated learning curve of a totally new operating system. The nice (but theoretic) thing about Windows Server 2008 Foundation is that, as your business grows, you can use Windows Server 2008 Foundation to upgrade to more advanced versions of Windows Server. The reason I say “theoretic” is that in most cases, this “basic” and cheap server will probably not be a good candidate for running more advanced versions of Windows Server 2008, mostly because of hardware considerations. For example, a Windows Server 2008 Foundation-based server will probably only have one CPU and less than 8 GB of RAM... --- ### Preventing Automatic Update to IE8 with Internet Explorer 8 Blocker Toolkit - Published: 2009-04-15 - Modified: 2024-09-04 - URL: https://petri.com/using-internet-explorer-8-blocker-toolkit/ - Categories: Windows Client OS - Tags: Automatic Updates, Blocker Toolkit, IE8, Internet Explorer 8, Windows Updates - Article Type: How To For organizations wanting to delay the introduction of IE8 until they have tested compatibility with internal applications and sites, Microsoft has created the Internet Explorer 8 Blocker Toolkit. In this article, MVP Daniel Petri details how to use this toolkit to prevent users from installing Internet Explorer 8 through Windows Update or Automatic Updates. Microsoft began to distribute Windows Internet Explorer 8 as a high-priority update through Automatic Updates for Windows XP with Service Pack 2 (SP2), Windows XP with Service Pack 3 (SP3), Windows XP Professional x64 Edition, Windows Server 2003 with Service Pack 2 (SP2) for x64 and x86, Windows Vista for x64 and x86, Windows Vista with Service Pack 1 (SP1) for x64 and x86, and Windows Server 2008 for x64 and x86. For Windows XP and Windows Server 2003 users, Automatic Updates (AU) will notify you when IE8 is ready to install. You will also be able to visit Windows Update or Microsoft Update sites and manually install IE8 update by performing an “Express” scan for high-priority updates. For Windows Vista and Windows Server 2008 Users, AU will notify you when IE8 is ready to install. You can click on the bubble to launch IE8 installation. You can also install IE8 from Windows Update manually by typing Windows Update in the command prompt and checking for updates. However, as with most large corporate environment, IT organizations may want to delay the introduction of a new Web browser until they have tested compatibility with internal applications and sites. Quoting from their site: "To help prevent users from installing IE8 through Automatic Update before compatibility testing has been completed, we are providing the IE8 Blocker Toolkit. This toolkit has no expiration date and can be configured either by running the registry file on the client machines or via Group... --- ### The Benefits of Creating Multiple Storage Groups - Part 2 - Published: 2009-04-13 - Modified: 2024-09-04 - URL: https://petri.com/the-benefits-of-creating-multiple-storage-groups-part-2/ - Categories: Exchange Server - Article Type: Overview Deciding how many mailbox stores to place on an Exchange Server, and deciding how to arrange the storage groups can be something of an art form. In this article, Brien Posey discusses more considerations for store and storage group placement. Introduction Last month I spent the first part of this article series talking about the various memory and hard disk related issues that you must consider when deciding whether or not to use multiple storage groups, or even multiple databases on a mailbox server. Now, I want to turn my attention to some of the practicality aspects of the various architectures. Disaster Recovery One of the primary reasons why Exchange Server administrators sometimes divide up their mailboxes into multiple databases is because doing so can make it easier to recover the server in the event of a disaster. As I mentioned last month, dividing up the users into multiple databases can help to ensure that fewer users are impacted when database failures occur. There is more to it than that though. Suppose for a moment that you had to restore a database from backup. The smaller the database is, the more quickly you could restore it. Distributing user mailboxes among several databases is one way of keeping the database size small. Keep in mind though, that all of the databases in a storage group share a common set of transaction logs. This means that you may not end up saving much time during your recovery efforts unless each database is a part of a different storage group. Performance Another major reason for distributing mailboxes among multiple mailbox databases is that doing so can help to increase performance. Again though, the storage group structure plays a role in how well the... --- ### Backing Up Group Policy Objects - Published: 2009-04-10 - Modified: 2024-09-04 - URL: https://petri.com/backing-up-group-policy-objects/ - Categories: Active Directory (AD) - Tags: Active Directory, Backup, group policy objects - Article Type: How To Backing up your Group Policy Objects allows you to restore group policy settings without having to perform an entire Active Directory restoration. In this article, Brien Posey walk you through the process. Introduction Not too long ago I got a call from a friend who was having some problems related to group policy objects on his network. My friend made a habit of backing up his domain controllers on a regular basis. Even so, someone in the organization have made some changes to some group policy objects, and my friend needed to return them to their previous state. The catch was that he didn't want to have to perform an authoritative restoration of the entire Active Directory just to recover a few group policy settings. Fortunately, there is a way that you can backup your group policy settings separately from the rest of the Active Directory. Of course you have to do this before the need to restore your group policy settings arises. Backing Up the Group Policy Objects Begin the process by logging on to a Windows Server 2008 domain controller, and opening the Group Policy Management console. Now, navigate through the console tree to Group Policy Management | Forest: | Domains | | Group Policy Objects. When you do, the details pane should display all of the group policy objects that are associated with the domain. In Figure A there are only two group policy objects, but in a production environment you may have many more. Figure A The Group Policy Objects container stores all of the group policy objects for the domain. Now, right-click on the Group Policy Objects container,... --- ### "Fix It" with Microsoft's Automated Knowledge Base Solutions > An introduction to Fix It; Microsoft's automated knowledge base solutions and how they can be used to perform some OS fixes without manual intervention. - Published: 2009-04-08 - Modified: 2024-12-03 - URL: https://petri.com/introducing-fix-it-for-me/ - Categories: Windows Client OS - Article Type: Overview In the past few months, Microsoft has begun an interesting project to build out automated solutions for many KB articles that allow administrators to perform some necessary fixes without having to manually intervene with the operating system. These are the “Fix It For Me” articles. In this article, MVP Daniel Petri introduces this new resource. “Oh I hate working with the Registry, I wish there was some sort of magic button that would do that for me! ” this is what one of my students told me when I gave her an answer for an issue she had with Windows Server 2008. As IT Professionals we are often in the need to troubleshoot, research, read and attempt to fix various issues or challenges with server and client operating systems. In many cases, the road to the solution leads to an online Microsoft Knowledge Base article, or KB article for short. These KB articles have a 6 digit number and in most cases describe the problem and offer a solution to it. Some of the solutions listed in these articles require performing manual changes to the system’s registry, running command prompt commands, replacing files, renaming files and overall – messing with the system in order to fix something that should have not needed fixing in the first place (but that’s an issue for another article... ). In the past few months, Microsoft has begun an interesting project in which many KB articles get an automated solution that allows the administrator to perform the necessary fixes without having to manually open the registry editor or perform other types of manual intervention with the operating system. The magic button has been invented, and it’s called “Fix It For Me”. True, a “real IT Pro” should not need to fear the manual process of fixing things in the... --- ### Changes to the Security Center in Windows 7 - Published: 2009-04-06 - Modified: 2024-09-04 - URL: https://petri.com/changes-to-the-security-center-in-windows-7/ - Categories: Windows 7 - Article Type: Overview Microsoft has replaced the Security Center with the Action Center in Windows 7. In this article, Brian Posey explains the changes. Introduction The Windows Security Center made its debut in Windows XP SP2.   As you may recall, SP2 was designed to correct some of Windows XP’s chronic security problems. Although SP2 did its job at least to some extent, many IT professionals saw the Security Center largely as a public relations stunt. After all, Microsoft proudly proclaimed that the Security Center contained code that was originally intended for Windows Vista, but yet the Security Center didn’t really do much other than confirming that certain security settings (such as the Windows Firewall) were enabled. When Vista was released, the Security Center looked a lot like the Windows XP version, but there was at least some stuff going on behind the scenes. The Security Center not only monitors the state of various security mechanisms, but it can use that information to assess the machine’s health when Network Access Protection is being used. With that in mind, you might be surprised to learn that the Security Center does not exist in Windows 7. Instead, Microsoft has replaced the Security Center with the Action Center, which you can see in Figure A. Figure A The Security Center has been replaced by the Action Center. The Action Center The first time that I heard about this change, I just assumed that Microsoft’s marketing department had been at it again. After all, Microsoft has a long history of renaming features to make them sound more enticing or more useful. The change actually involves more than a simple... --- ### Creating Recipient Filters in Exchange 2007 - Published: 2009-04-03 - Modified: 2024-09-04 - URL: https://petri.com/creating-recipient-filters-in-exchange-2007/ - Categories: Exchange Server - Tags: Exchange 2007, Exchange Management Shell, Exchange Server 2007, filters, mailboxes - Article Type: How To Recipient filtering can be a handy way to quickly locate a user or a mailbox, but it can also be a great way to perform an action on a subgroup. In this article, Brien Posey shows how to create simple and compound recipient filters and perform actions on the filter results through the Exchange Management Shell. In previous articles I've noted that when you view the Exchange Management Console’s Recipient Configuration | Mailbox container, Exchange shows you up to a thousand mailboxes, and these mailboxes can be spread across the entire Exchange Server organization.   Filtering can be really handy in helping you to locate specific mailboxes, but it’s real power comes in its ability to be used in the Exchange Management Shell. In this article, I will show you how it’s done. Why Use the Exchange Management Shell? When I have spoken on Exchange 2007 at various IT conferences, one of the questions that I get asked most often is why anyone would want to use the Exchange Management Shell to perform an operation that could be performed just as easily through the GUI. Well, my philosophy is that if an operation really is just as easy to do with the GUI, then you should use the GUI. As Exchange administrators we are all overworked, and it just makes sense to use the tool that is going to make our job the easiest. Having said that, if all you want to do is to create a filtered view of the mailboxes, then it is probably going to be easier to create that filter by using the GUI. Most of the time though, if someone is going through the trouble of creating a filter, then they are going to be performing some kind of operation on the filtered results. This is where the Exchange... --- ### Using a Template to Create Recipient Objects - Published: 2009-04-01 - Modified: 2024-09-04 - URL: https://petri.com/using-a-template-to-create-recipient-objects/ - Categories: Exchange Server - Article Type: Overview Templates can be used to create multiple mailboxes using a single command. In this article, Brien Posey shows you how it’s done. Introduction In previous articles, I showed you how creating a mailbox template could reduce the amount of work that you have to do in the future when creating new Exchange Mailboxes, all the while making the mailbox creation process less prone to error. That’s just the beginning of what templates are capable of doing though. In this article, I want to show you how you can use templates to create multiple mailboxes simultaneously. Building a CSV FileU sing a template simplified the process of creating a mailbox, but there was still some work that you had to do. Although the template filled in a lot of the particulars, you still has to provide the mailbox name, the user principle name, the name of the Exchange Server and the database that would be used to store the mailbox, the organizational unit, and of course the name of the template that you want to base the mailbox on. If after reading my first article, you were thinking that it would be easier to just create mailboxes in the old fashion way, you are right. Of course that’s assuming that you are only creating one mailbox. If you have multiple mailboxes to create, then the process is far easier if you use the template. Of course the template can’t do everything all by itself. We need a way of providing Exchange with the necessary information about the mailboxes that we are going to create. The easiest way to do this is to create... --- ### The Benefits of Creating Multiple Storage Groups, Part 1 > In this article, Brien Posey helps you to figure out the best mailbox server architecture for your own environment. - Published: 2009-03-28 - Modified: 2009-03-28 - URL: https://petri.com/the-benefits-of-creating-multiple-storage-groups-part-1/ - Categories: Exchange Server - Tags: databases, Exchange Server, mailboxes, Multiple Storage Groups, transaction logs - Article Type: Overview The way that storage groups and mailbox databases are used on a mailbox server has a huge impact on the server's performance and reliability. In this article, Brien Posey explains why this is the case, and helps you to figure out the best mailbox server architecture for your own environment. When it comes to a product like Exchange Server, there are recommended best practices for practically everything. One particular area where I have seen a lot of contradictory recommendations is in regard to storage group and database usage. That being the case, I want to take the opportunity to explore this issue a bit from a practicality standpoint. Basic Architecture Most Exchange administrators are probably already familiar with storage group architecture, but I wanted to quickly go over the basics, just to make sure that we are all on the same page. Essentially, every database must be placed in a storage group. You can however, place multiple databases into a single storage group (the exact number depends on the version and edition of Exchange). The transaction logs for the database are bound to the storage group. Therefore, if a storage group contains multiple databases, then all of those databases will share a common set of transaction logs. Design Considerations Now that I have quickly gone over the basics, I want to talk about design considerations. Some of the materials that I have read say that you should place all of your mailboxes into a single database if possible. Other resources will tell you that if you have more than a few dozen mailboxes, then those mailboxes should be distributed among multiple databases. Likewise, some resources will tell you that each database should reside in its own storage group, while other resources tout the benefits of loading up... --- ### Add Missing User Properties Tabs in Active Directory Users and Computers on Windows Vista - Published: 2009-03-28 - Modified: 2024-09-04 - URL: https://petri.com/add-missing-user-properties-tabs-in-adu-on-windows-vista/ - Categories: Active Directory (AD) - Article Type: How To This tip was submitted by Sorin Solomon, one of the Petri forums moderators: Those who followed the instructions in the article Installing Remote Server Administrative Tools on Windows Vista have probably noticed that even after installing the required RSAT tools on Windows Vista, few tabs are missing in the User properties in Active Directory Users and Computers. The missing tabs are: Sessions Remote Control Terminal Services Profile Environment The odd thing is that when if you're using Adminpak on Windows XP, when looking at the same user (and with the same administrative rights) you will see all the tabs (as shown below). Luckily for us, Ned Pyle from "Ask the Directory Services Team" official blog released the solution for this problem. Here are the details of the solution. Notes: The following steps are a workaround, they are not supported by Microsoft The version of the server's OS needs to be the same as the client. Meaning, both need to be either 32bit, either 64bit You will need a Windows 2008 Server with the Remote Server Administration Tools feature installed. If this feature is not installed, please install it using Server Manager > Features > Add features wizard (as shown in the screenshot below). (If you're not sure on how to install RSAT on Vista, please see my Installing Remote Server Administrative Tools on Windows Vista article). In order to add missing User Properties tabs in Active Directory Users and Computers on Windows Vista please follow these steps:... --- ### What's New in Exchange Server 2007 SP2 > Exchange Server 2007 SP2 is a mission-critical update. Learn what's included in this latest service pack and the proper steps for installation. - Published: 2009-03-28 - Modified: 2024-11-19 - URL: https://petri.com/exchange-server-2007-sp2/ - Categories: Exchange Server - Article Type: Overview Exchange Server 2007 SP2 is a mission-critical update that provides administrators with advanced protection options against e-mail security threats, such as spam and viruses, as well as the tools to help manage internal compliance and high availability needs. Download details: Exchange Server 2007 SP2: http://www. microsoft. com/downloads/details. aspx? displaylang=en&FamilyID=4c4bd2a3-5e50-42b0-8bbb-2cc9afe3216a Since Exchange Server 2007 has been originally offered as either a 64-bit (recommended and the only version supported for production), and as a 32-bit version (only used for testing purposes and to provided 32-bit management tool capabilities for client workstations), here too, 64-bit and 32-bit versions are made available: 32-bit version (870 MB): http://download. microsoft. com/download/9/4/4/9444906E-647B-4EED-AC36-F0F75682FAAD/E2K7SP2EN32. exe 64-bit version (884. 3 MB): http://download. microsoft. com/download/9/4/4/9444906E-647B-4EED-AC36-F0F75682FAAD/E2K7SP2EN64. exe So, what's new in SP2? Exchange Server 2007 SP2 introduces many new features for each server role. Migration, transition and co-existence with Exchange Server 2010 - Only after installing Exchange Server 2007 SP2 you will be able deploy Exchange Server 2010 in your organization. First, you must upgrade all of the Client Access servers. Next, any Exchange 2007 Server, regardless of server role, in the Active Directory site you are transitioning, must be upgraded to Exchange 2007 SP2. Exchange Backup Functionality built-in to Windows Server 2008 - Exchange Server 2007 RTM and SP1 didn't have this capability on Windows Server 2008 and additional solutions were required to perform this task. Finally, Exchange 2007 Service Pack 2 includes a VSS plug-in for Windows Server Backup to support Exchange backups. Now you can use Windows Server Backup in Windows Server 2008 to back up and restore Exchange 2007 SP2... --- ### Physical to Virtual Conversion of Linux Servers with VMware Converter BootCD > Learn how to use a BootCD to convert Linux Servers from Physical to Virtual (P2V) in VMware Server - Published: 2009-03-25 - Modified: 2024-11-19 - URL: https://petri.com/physical-to-virtual-conversion-of-linux-servers-with-vmware-converter-bootcd/ - Categories: VMware - Tags: bootcd, conversion, linux, p2v, Virtualization, vmware - Article Type: Overview Although VMware Converter 4 now has Linux support there are still a number of limitations to what servers you will be able to convert. Written for Windows people, this guide by VMware Pro Tom Finnis explains how to use the Converter BootCD to convert any physical server to a virtual image, and how to resolve the problems you're likely to encounter without needing advanced Linux skills. Although we have a number of Linux servers running on our ESX servers until recently the need had never arisen to convert an existing physical Linux server to virtual. However recently I've been doing a lot of work on using virtualization to improve Disaster Recovery options for SME clients (typically 2-25 servers), where cost is always important. Nowadays its not unusual to find networks of this size running one or two Linux boxes amongst their Windows servers but often the in-house IT only have minimal Linux admin skills. VMware have now released Converter 4 which has support for P2V conversion of Linux systems, but only live conversion using a helper VM which has a number of drawbacks - for a start it only supports Red Hat, Suse and Ubuntu currently. My Linux guru said he wouldn't bother using any virtualization utilities but instead would backup all the config files and other data, then install the OS from scratch on a new Virtual Machine and restore the configs. I'm sure that would work but I wouldn't have a clue where to start doing that in Linux so instead I worked out a simple step-by-step process that any Windows IT person should be able to easily follow. Another important advantage of this "cold cloning" method is that no changes are made to the source Linux server as it remains offline throughout the process, so there is no risk of accidentally corrupting it. Step One: Obtain the Required Tools First... --- ### Hyper-V Licensing Considerations > An overview of licensing requirements for virtual servers. - Published: 2009-03-23 - Modified: 2024-09-04 - URL: https://petri.com/licensing-virtual-servers/ - Categories: Virtualization - Tags: Hyper-V, licensing, Microsoft, Server 2008, virtual servers - Article Type: Overview Many organizations virtualize their servers to help save money on hardware costs. What you may not realize is though, is that virtualization can save you a bundle on licensing costs too. In this article, Brien Posey explains why. It never ceases to amaze me just how quickly server virtualization went from being a novelty to being a technology that almost everybody uses. For decades a server could be defined as a physical computer that was running a server operating system, and possibly a set of applications. This rather simplistic definition meant that licensing for a server was also usually pretty simple. There were exceptions to every rule, but generally speaking, you needed a license for the server’s operating system, and for any applications that were running on the server. Sometimes you might also require client access licenses, but even that wasn’t all that difficult to figure out. Licensing gets a little bit trickier when you throw server virtualization into the mix, because suddenly there are multiple operating systems to consider. Unfortunately, there is no one single standard licensing model for virtualized environments. Every virtualization software vendor has their own licensing model. Even so, I wanted to try to shed some light on some of the issues that you will encounter when licensing virtualized servers by talking about Microsoft’s licensing policies. Windows Server 2008 for Free? Believe it or not, there are some licensing provisions which actually allow you to run Windows Server 2008 for free! Well, not completely free. You still need a license. In many organizations though, the costs of the Client Access Licenses (CALs) far outweigh the cost of the server license, and there are situations in which Microsoft does not require you to purchase CALs... --- ### How to Create a CatchAll Mailbox in Exchange 2007 > Simple instructions for configuring a catchall mailbox in Exchange 2007 to capture email for unresolved addresses. - Published: 2009-03-19 - Modified: 2024-11-19 - URL: https://petri.com/setting-up-a-catchall-mailbox-in-exchange-2007/ - Categories: Exchange Server - Tags: catchall, email, Exchange 2007, mailbox, Microsoft - Article Type: How To Setting up a "catchall" mailbox in Exchange 2003 wasn't easy and now you will find the method has changed completely in Exchange 2007. In this article SBS guru Tom Finnis shows you how to install a transport agent that will redirect all emails for unresolved recipients to one mailbox instead of rejecting them. Catchall mailboxes are usually a legacy of POP email systems so its a feature clients require quite often when we install a new SBS server for them. Although they are regarded as bad practice because they can accumulate spam at a frightening rate some users feel the benefits outweigh the negatives. Unfortunately its not an officially supported feature in Exchange, there were a couple of workarounds in Exchange 2003 but these won't work in Exchange 2007 so we need to do it a different way. Should your Exchange 2007 deployment be large enough to have a separate Edge Transport server then you can implement a catchall easily enough with transport rules, however this is not an option if you just have a single Hub Transport server setup. Since I suspect the users who are most likely to want a catchall will have a single Exchange 2007 server, often as part of SBS2008, I've written this guide to explain how to do it. Wilbert's Exchange 2007 CatchAll Agent The key to making this work is a custom transport agent that a nice Exchange engineer called Wilbert De Graaf has created and posted on Codeplex for anyone to use. So the first thing we need to do is download the files (config. xml and CatchAllAgent. dll), then save them to an easy to find folder on your Exchange server, e. g. C:catchall. Feel free to have a look at the ReadMe doc, the instructions are pretty good but I'll explain the process simply along... --- ### Identify Your Windows Vista/2008 Operating System Version and Architecture in 2 Steps > Simple 2-step process for determining the version and architecture (32-bit/64-bit) of your Windows OS. - Published: 2009-03-17 - Modified: 2009-03-17 - URL: https://petri.com/quickly-find-your-windows-version-and-architecture-info/ - Categories: Windows Server 2008 - Article Type: How To In order to successfully install Hyper-V on a Windows Server 2008 server, you must meet the required system and hardware prerequisites. One of these is to have a hardware that’s capable of running 64-bit operating systems. Furthermore, there are versions of Windows Server 2008 that do not support Hyper-V at all. In this article, MVP Daniel Petri will show you how to determine the system’s operating system version and architecture type. In order to successfully install Hyper-V on a Windows Server 2008 server, you must meet the required system and hardware prerequisites. One of these is to have a hardware that’s capable of running 64-bit operating systems, and to actually install a 64-bit version of Windows Server 2008 on it. Another prerequisite is to have the correct build of Windows Server 2008, as there are some builds that are either “without Hyper-V”, or are of a type that does not support Hyper-V at all (such as the Web edition). In a previous article, “Installing Hyper-V on Windows Server 2008”, I've detailed the complete list of requirements for installing Hyper-V. It’s safe to assume that if you’re in the business of installing servers, you’re also supposed to “know” what you’re doing... but there are some cases where one needs to know what type of operating system is installed on the server/PC/laptop, for example, in case you were not the person that has initially installed the machine. In that case you'd better make sure it supports Hyper-V and that is has the appropriate license to operate it, before starting to install the role. To find out what kind of Windows Server product is currently installed follow these steps: In the Start menu, either click on the Command Prompt shortcut, or, if not present, type “cmd” and press Enter. In the command prompt window type the following command and press Enter: ​wmic OS get OperatingSystemSKU The number that is returned corresponds... --- ### The Ultimate Guide to Hard Drive Partitioning > This tutorial shows you how to use free hard drive partition utilities to safely divide your HD into several paritions for an alternate OS or data preservation. - Published: 2009-03-11 - Modified: 2024-11-19 - URL: https://petri.com/the-ultimate-guide-to-hard-drive-partitioning/ - Categories: Backup & Storage - Article Type: Overview This tutorial shows you how to use free hard drive partition tools and utilities. Safely divide your HD into several paritions for the installation of an alternate operating system or to separate data from the OS itself. Ten different free tools are featured. Disk partitioning divides the data storage space of a hard disk into separate areas referred to as 'partitions'. Partitions are usually created when the hard disk is first being prepared for usage. Once a disk is divided into partitions, directories and files may be stored on them. Because of later changes on the computer and operating system, often an administrator or power user will be faced with the need to resize partitions, create new partitions in the unallocated space, and sometimes even undelete partitions that were previously removed or deleted. Hard disk partitioning tools will allow you to create additional partitions from existing ones by resizing the existing partitions and creating empty, un-used space on which you can create new partitions. The most important aspect of such tools is their ability to do this without losing your data that is currently on your existing partitions. Such tools allow you to create and format these new partitions. Hard Drive Partitioning:  Use Caution! Most tools will let you convert a partition from one file type to another, i. e. from NTFS to FAT/FAT32 or vice versa. Needless to say that in most cases, such a conversion, especially from NTFS to FAT/FAT32 will cause the files to lose their NTFS permissions (ACLs), and in some cases where EFS was used to encrypt the files, it will actually cause you to lose access to these files. So beware! Some of these tools may be able to help you recover deleted partitions, and... --- ### Quickly Change Screen Resolution in Windows 7 > This article by Daniel Petri describes some of the UI improvements in Windows 7, Microsoft’s upcoming client operating system. - Published: 2009-03-07 - Modified: 2024-09-04 - URL: https://petri.com/quickly-change-screen-resolution-in-windows-7/ - Categories: Windows 7 - Tags: display resolution, UI, Windows 7 - Article Type: How To Windows 7, Microsoft’s upcoming client operating system, has some nice UI improvements. Some of these were discussed in our previous articles. In this article, MVP Daniel Petri will show you how to easily and quickly change screen resolution in Windows 7. Windows 7, Microsoft’s upcoming client operating system, has some nice UI improvements. Some of these were discussed in our previous articles. For example, read my upcoming New Taskbar Features in Windows 7 article. One of these nice changes is the ability to easily and quickly change the display resolution of a Windows 7 computer. Prior to Windows 7, in Windows 2000/XP/2003, you could access the screen resolution properties through the Display applet in the Control Panel or from the Properties options on the Desktop. One click, another click, and you were there. In Windows Vista and Windows Server 2008, although they were still 2 clicks away, these settings got deeper inside something that looked like a lame try to re-design the look of the personalization features of Windows. In Windows 7, luckily for us, the Vista UI designers either got new brain implants, or got fired, and new client and customer-oriented designers were hired instead. Finally, something to look forward to! Note: Remember, Windows 7 is still under development. The version I’m working with to grab screenshots from is beta build 7000, and things might (and probably will) change by RTM comes along. To change the screen resolution in Windows 7 follow these steps: Right-click an empty spot on your desktop and select “Screen Resolution” (now was it that hard, Vista UI designers? Was it indeed that hard? ) In the Control Panel'Appearance and Personalization'Display'Screen Resolution window, click on the “Resolution” drop-down list. Notice... --- ### Fine Tuning Service's Startup for Speed on Windows 7 > Learn which Windows 7 startup services are safe to disable, allowing you to get some of your system’s speed and resources back. - Published: 2009-03-04 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-startup-for-speed/ - Categories: Windows 7 - Article Type: How To The Windows 7 operating system makes use of dozens of system services, each of which rob your system of resources that could potentially be used to deliver better performance. In this article, Brien Posey shows you some of the services that are safe to disable, so that you can get some of your system’s resources back. Introduction If you have ever taken a look at the Service Control Manager, shown in Figure A, then you know that at any given time, Windows has dozens of services running in the background. Each of these services consumes some amount of system resources, and you can reclaim some of those resources by turning off unnecessary services. In this article, I’ll show you how. Figure A The Service Control Manager allows you to enable and disable system services. Before I Begin The subject of which services are unnecessary is certainly open to debate. I have seen several different Websites that list the services that can be safely disabled in various versions of Windows. The thing that you have to remember though, is that each service provides some kind of functionality. Whenever you disable a service, you lose the functionality that it provides. I am going to try to avoid telling you to disable services that provide commonly used functionality, even if such services can be “safely” disabled. For example, many of the lists that I have seen tell you to disable the Print Spooler service, but without it you can’t print. I am also going to avoid talking about any services that are configured for a manual startup by default. The other thing that I want to say is that you should set services to Manual, rather than disabling them completely. That way, if Windows has to use a service for some reason, it can at least... --- ### Defragmenting the Active Directory Database - Published: 2009-03-04 - Modified: 2024-09-04 - URL: https://petri.com/active-directory-database-defragmentation/ - Categories: Active Directory (AD) - Article Type: How To Performing an offline defragmentation of the Active Directory database is a great way to reclaim lost disk space if the system volume on your domain controller begins to run low on space. In this Article, Brien Posey shows you how the process for doing so has changed in Windows Server 2008. Introduction The Active Directory database tends to become fragmented over time, just like any other database does. Windows Server 2008 performs behind-the-scenes maintenance tasks in an effort to keep the database healthy, and defragmented. Although the data within the database is regularly defragmented, the database itself has a tendency to increase in size over time. This is especially true if administrators periodically purge database records. For instance, I once saw a 5 GB Active Directory database that contained less than 1 GB of data, and over 4 GB of empty space. You can reclaim the space by performing an off-line defragmentation. Before I get started, I want to mention that reclaiming disk space is pretty much the only reason for performing an off-line defragmentation of the Active Directory database. The online maintenance cycle keeps the database healthy in spite of any free space that may exist within it. Performing the Defragmentation Windows has allowed you to perform an off-line defragmentation of the Active Directory database ever since the Active Directory was first introduced with Windows 2000. Prior to the release of Windows Server 2008 though, off-line defragmentation had to be performed in Directory Service Restore Mode. That's because that was the only way to take the Active Directory database off-line. In Windows Server 2008, the Active Directory is a service. Any time that you want to perform maintenance on the Active Directory database, you can taken off-line by simply stopping of the Active Directory Domain Service. I... --- ### Creating Custom Event Views in Windows Server 2008 > Learn to create custom views in Windows Server 2008 by following these simple step-by-step instructions and screenshots. - Published: 2009-03-04 - Modified: 2024-09-04 - URL: https://petri.com/custom-event-views-in-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: How To The Event Viewer is one of the few components that has changed very little since the days of Windows NT. This tired interface received an overhaul in Windows Server 2008, and now includes the option of creating custom views. In this article, Brien Posey shows you how to use this new feature. Introduction Trying to locate a specific event in the Windows Event Viewer is kind of looking for the proverbial needle in the haystack. Individual processes can fire off dozens of events in a minute’s time, effectively burying the events that you are looking for. This isn’t a huge problem if you know exactly what it is that you are looking for. For instance, Microsoft has always made it pretty easy to locate specific event IDs in the Event Viewer. If you don’t have a specific piece of information to search on though, finding the event that you are looking for can be a little tough. Custom Event Views The Windows Server 2008 version of the Event Viewer allows you to create custom event views. Don’t think of custom event views like a search engine though. There is really more to it than that. Custom Event Views allow you to perform highly dynamic searches based on a number of filtering criteria. That way, you can (hopefully) find all of the events that led up to a particular error rather than just finding the error itself. Creating a custom event view is a relatively painless process. Begin the process by opening the Event Viewer. You can find it on the server’s Administrative Tools menu. When the Event Viewer opens, navigate through the console tree to Event Viewer (Local) | Custom Views. Next, right click on the Custom Views container, and choose the Create Custom View command from the resulting... --- ### A Guide to Windows 7 Network and Sharing Center > Look inside the new Windows 7 Network and Sharing Center. See the features and functionality included in this latest version. - Published: 2009-03-04 - Modified: 2024-09-04 - URL: https://petri.com/inside-windows-7-network-and-sharing-center/ - Categories: Windows 7 - Article Type: Overview As with Windows Vista, most of Windows 7’s network configuration tasks are performed through the Network and Sharing Center. In this article, Brien Posey takes you on a tour of the Windows Sharing Center’s latest incarnation. Introduction I can’t seem to recall where I saw it, but I read a review last week of the Windows 7 beta in which the reviewer described Windows 7 as Windows Vista with a fresh coat of paint. In some areas this is a fairly accurate description, especially if you are looking at some of the pre beta builds. Gradually though, Microsoft has been making changes to Windows 7 that make it look a little bit less like Windows Vista. One of the newly redesigned features is the Network and Sharing Center, which was first introduced in Windows Vista. In this article, I want to show you around the Network and Sharing Center, and let you decide for yourself whether it is new and improved, or simply Windows Vista with a new paint job. The Network and Sharing Center You can access the Network and Sharing Center by opening the Windows 7 Control Panel and clicking on the Network and Internet link, followed by the Network and Sharing Center link. You can see what the Network and Sharing Center looks like in Figure A. Figure A This is what the Windows 7 Network and Sharing Center looks like. As you can see in the figure above, the Network and Sharing Center looks a lot like it did in Windows Vista.   If you want to compare the two versions, then check out the Windows Vista Network and Sharing Center in Figure B below. Figure B This is the... --- ### Setting Virtual Machine Boot Options in Windows Server 2008 Hyper-V > Here, Brien Posey shows you how to minimize the amount of work involved in rebooting a host server containing virtual machines by setting some automatic startup options. - Published: 2009-03-03 - Modified: 2024-09-04 - URL: https://petri.com/setting-virtual-machine-boot-options-windows-sever-2008-hyper-v/ - Categories: Hyper-V - Tags: automatic start actions, boot options, virtual machines, virtual servers - Article Type: How To Rebooting a host server containing virtual machines can be a big job, because the virtual machines also have to be rebooted. Thankfully, Brien Posey shows you how to minimize the amount of work involved in these types of reboots by setting some automatic startup options. One of the problems with server virtualization is that when you virtualize your servers, you are essentially putting all of your eggs into one basket. Imagine for instance that a physical server that is hosting a number of virtual machines drops offline for whatever reason. None of the virtual machines hosted by that server will be available until the host operating system is rebooted, and all of the virtual servers are booted. Fortunately, there are some things that you can make the process of bringing everything back online a lot less painful. Automatic Start Action Even if your host operating system isn’t normally prone to failure, it’s worth taking a look at Hyper-V’s automatic startup options for virtual machines. It’s inevitable that you will eventually have to reboot your host operating system as a part of the match management process. When those reboots do occur, it’s nice not to have to manually boot every single virtual machine that’s hosted by that server individually. This is where the automatic start actions come into play. Automatic start actions are set individually for each virtual machine. You can access the automatic start actions by opening the Hyper-V Manager Console, right clicking on a virtual server, and choosing the Settings command from the shortcut menu. When you do, Windows will display the settings for the selected virtual machine. Toward the bottom of the settings list is an option called Automatic Start Action. You can see what this option looks like in... --- ### Using Templates to Create Exchange Recipient Objects, Part 1 > Here, Brien Posey explains how you can use recipient template objects to make the mailbox creation process quicker, easier, and less prone to error. - Published: 2009-03-03 - Modified: 2024-09-04 - URL: https://petri.com/using-templates-to-create-exchange-recipient-objects-part-1/ - Categories: Exchange Server - Tags: Exchange Server 2007, mailboxes, recipient template, setup mailboxes manually, templates - Article Type: Overview The process of creating new Exchange Server mailboxes can be tedious, boring, and prone to errors. However, Brien Posey explains how you can use recipient template objects to make the mailbox creation process quicker, easier, and less prone to error. When I was a network administrator many moons ago, one of my least favorite tasks was setting up new users. It wasn’t really that it was such a bad job, it’s just that the process was tedious and boring.   Today, the same could be said about manually setting up new Exchange Server mailboxes. The good news though, is that you don’t have to setup mailboxes manually. You can use a template to do a good bit of the work for you. Why Use a Template? Obviously, every recipient object is different, so you might be wondering why you should even bother using a template. Well, even though each recipient object has unique properties, there are also aspects of the object that are going to be the same for other objects. For example, every employee in your building is probably going to have the same mailing address. If you are still questioning the usefulness of a recipient template, then you should keep in mind that you aren’t limited to only creating one template. You can create as many different templates as you need. For example, you could create a separate template for each department. Creating a Template Creating a new template is really easy to do. You can create a template based on any type of recipient other than a public folder. Most often though, you would probably create templates to help you to create mailboxes. With that in mind, you must begin the process by creating a... --- ### Get Your Desktop Icons Back in Vista > In this article, MVP Daniel Petri will show you how to get your old desktop icons back in Windows Vista, Windows Server 2008, and even Windows 7. - Published: 2009-03-03 - Modified: 2024-09-04 - URL: https://petri.com/get-your-desktop-icons-back-in-vista/ - Categories: Windows Vista - Tags: desktop, desktop icons, Windows 7, Windows Server 2008, Windows Vista - Article Type: How To Windows Vista (and Windows Server 2008 and even Windows 7 for that matter) are configured so that after the installation completes and the user first logs on, the desktop is totally empty from any icons, and only the Recycle bin is present. While this setup might fit some users, most users want control over their old desktop icons. In this article, MVP Daniel Petri will show you how to do that. Windows Vista (and Windows Server 2008 and even Windows 7 for that matter) are configured so that after the installation completes and the user first logs on, the desktop is totally empty from any icons, and only the Recycle bin is present. While this setup might fit some users, most users want control over their old desktop icons. I have received countless emails from people asking how to get these icons back. The good news is that hope is not lost. You CAN get these icons back. The bad news is that unlike in Windows XP/2003, you can’t get ALL of the icons back. For example, in Windows Vista/2008 there’s no equivalent of Windows XP/2003’s My Network Places. Also, you cannot get the Internet Explorer built-in icon back. Sure, you can work around these limitations by creating a shortcut to both special icons, however, these will only be shortcuts and will not have the special properties and functionality of the old icons. So these 2 special icons cannot be returned to the desktop, but the rest can. For example, right clicking on the Windows XP/2003 Internet Explorer icon and selecting Properties will bring out the Internet Options applet: This applet can be accessed from the Control Panel or by typing inetcpl. cpl in the Run command. BTW, if you use method 4 below, you will get this icon back! Also, right clicking on the Windows XP/2003 My Network Places icon and selecting Properties will bring out the Network... --- ### New Taskbar Features in Windows 7 > In this article, MVP Daniel Petri will walk you through some of the new features found in the Windows 7 taskbar. - Published: 2009-03-02 - Modified: 2024-09-04 - URL: https://petri.com/new-taskbar-features-in-windows-7/ - Categories: Windows 7 - Tags: icons, Quick Launch toolbar, shortcuts, taskbar, Windows 7 - Article Type: Overview Windows 7 (currently in beta) has a bunch of cool new capabilities that might come in handy for a lot of users. Some good, some bad, some a welcome change, others are a thing to get used to, in this article, MVP Daniel Petri will walk you through some of the new features found in the Windows 7 taskbar. Working with Windows 7 (currently in beta) I soon discovered a whole bunch of cool new features that might come in handy for a lot of users. Many things in Windows 7 seem to be pretty much in line with what Vista already has in, but there are also a lot of new and exciting features and changes. The taskbar is one of them. Note: Remember, Windows 7 is still under development. The version I’m working with to grab screenshots from is beta build 7000, and things might (and probably will) change by RTM comes along. First of all, the taskbar looks new and re-designed. It’s twice as high as the one in Windows Vista. You can make the icons smaller, but frankly, that doesn’t look better... Second, the Quick Launch toolbar is gone. No more present. Done with, caput! Instead, in this beta build, you get 3 default shortcuts: Internet Explorer, Windows Explorer and Windows Media Player. While one might miss the good old Quick Launch toolbar, new functionality of the taskbar will quickly make your pains go away. The Taskbar now acts as a place to both launch common applications as well as access running tasks, and there’s no difference anymore between the 2 functions. This is one change that I like! The new Windows 7 taskbar not only lets you customize the default “pinned” application shortcuts, but it also acts as the regular Quick Launch toolbar, allowing you to drag and drop any application... --- ### Setting Up System Center Virtual Machine Manager (SCVMM) > Here, Brien Posey shows you how to install Microsoft’s System Center Virtual Machine Manager, which improves an administrator’s ability to manage virtual machines in the enterprise. - Published: 2009-02-26 - Modified: 2024-09-04 - URL: https://petri.com/setting-up-system-center-virtual-machine-manager-scvmm/ - Categories: Virtualization - Tags: scvmm, System Center Virtual Machine Manager, vmm, VMM Administrator Console - Article Type: How To Microsoft’s System Center Virtual Machine Manager (SCVMM) really improves an administrator’s ability to manage virtual machines in the enterprise. In this article, Brien Posey shows you how to install this handy management tool. Although Hyper-V Manager works well for managing virtual servers in smaller environments, it is definitely not an enterprise class solution. Fortunately, Microsoft makes a much more comprehensive virtual machine management product called System Center Virtual Machine Manager. In this article, I will show you how to install and configure this product. Acquiring Virtual Machine Manager Microsoft offers a free trial version of System Center Virtual Machine Manager that you can download at: http://www. microsoft. com/systemcenter/virtualmachinemanager/en/us/trial-software. aspx The download consists of three files totaling just under 3 GB in size. When you have downloaded all three files, place them into an empty folder and double click on the first file to launch the extraction and installation process. Installing Virtual Machine Manager When the extraction process completes, Windows should display the Virtual Machine Manager splash screen. Click the VMM Server link located in the splash screen’s Setup section. When you do, Windows will launch the Virtual Machine Manager Server Setup wizard. The wizard’s first screen displays the end user license agreement. Accept the license agreement, and click Next. At this point, you will be taken to a screen that asks you if you want to participate in Microsoft’s Customer Experience Improvement Program. It’s entirely up to you as to whether or not you want to participate. Just make your decision, and click Next. The next screen that you will encounter asks you to enter your name and the name of your company. Enter this information, and click Next. The wizard will now... --- ### Drag and Drop to Command Prompt - It's Back in Windows 7! > In this article, Daniel Petri tells you if you can drag an object to an open Command Prompt window in Windows 7. - Published: 2009-02-24 - Modified: 2024-09-04 - URL: https://petri.com/drag-and-drop-to-command-prompt-its-back-in-windows-7/ - Categories: Windows 7 - Tags: 7, Command Prompt, drag and drop, Windows - Article Type: Overview Working with the Command Prompt is one of an IT Professional’s required skills. In previous Windows operating systems, one could drag and object to an open Command Prompt window in order to ease our work. Somehow, this useful feature wend away in Windows Vista and Windows Server 2008. In this article by Daniel Petri, we’ll see if we get it back in Windows 7. Working with the Command Prompt is one of an IT Professional’s required skills. In previous Windows operating systems, one could drag and object to an open Command Prompt window in order to ease our work. This feature was nice to have especially when running executable files nested deep within a folder hierarchy. Instead of manually navigating the Command Prompt path to the required folder, you could simply drag and drop the necessary file to the Run option or to the Command Prompt and press Enter to run it. Somehow, this useful feature wend away in Windows Vista and Windows Server 2008. I wrote about this in my Missing Drag and Drop in Vista Command Prompt article. In Vista/2008, if you try to drag a file from anywhere in Windows Explorer to an open Command Prompt window you see that the pointer icon changes to a “no entry” symbol: When asked, Microsoft officials provided dull answers and claimed that this is “by design” and that it was in fact “a feature”. Some claimed that “This was done to reduce the command window's dealings with the dragged data object”. This last excuse is, in my opinion, pure crap especially when compared to the huge overhead provided by other so-called “advanced” features of Vista such as the process-intensive Aero theme (read my Aero Theme is bad, disable it article or to the huge overhead of the TCP Window Auto tuning functionality that wrecks havoc to your network copy and browse... --- ### Upgrading Windows XP Professional SP3 to Windows 7 Ultimate (beta build 7000) > Learn how to Upgrade from Windows XP to Windows 7 Ultimate, step by step, from a Microsoft expert! There is more to it that you may think. - Published: 2009-02-23 - Modified: 2024-09-04 - URL: https://petri.com/upgrading-windows-xp-professional-sp3-to-windows-7-ultimate-beta/ - Categories: Windows 7 - Tags: 7, client, install, Ultimate, upgrade, Windows, XP - Article Type: Overview Learn how to Upgrade from Windows XP to Windows 7 Ultimate, step by step, from a Microsoft expert! There is more to it that you may think. Windows 7 is the next generation of operating system due from Microsoft and it is still working on a planned release for early 2010 – on target for the three year window after the release of Windows Vista. This article is a complete walk through on the steps taken when attempting to upgrade your Windows XP Professional SP3 installation to Windows 7 Ultimate edition. – It is important to note that Windows 7 is only in beta release at the present time. The version of Windows 7 that I am using for this walk through is Windows 7 Ultimate edition, build 6. 1. 7000. Because the content is still under development and in beta release it is a preliminary tutorial and is subject to change upon the final release of this new version of Windows. So, when is an upgrade of your currently installed operating system installation not really an upgrade? Anytime you choose AUTORUN within a non-supported operating system and you choose the "upgrade" option because the setup installation routine will eventually stop you from completing this action. As a point of reference, the Windows Vista upgrade options from prior installations of Windows XP and Windows 2000  are shown on the Microsoft website on the Get Windows Vista: Upgrade options page and it shows you which installations allow an in-place upgrade and on which ones you'll need to perform a clean install. – Windows 2000 Professional requires a clean install... --- ### Installing Windows 7 in VMware Server 2.0 > The best way to test Windows 7 is to install it inside the FREE VMware Server 2.0 - Learn how, step by step, from an IT Pro! - Published: 2009-02-19 - Modified: 2024-12-03 - URL: https://petri.com/installing-windows-7-in-vmware-server-20/ - Categories: Windows 7 - Tags: 7, installing, vmware server, Windows - Article Type: How To In this article Christian Mohn shows you how you can install the Windows 7 beta in VMware Server. Get in on the Windows 7 action now, and see what all the fuss is about! To get started, you will need to get hold of the Windows 7 Beta installation media. Thankfully Microsoft has made this generally available for everyone, but with a couple of caveats; The Windows 7 beta was available for download from Microsoft until February 10th, 2009 and it will stop working on August 1, 2009. Sadly the download window has now passed, but you can still request a product key from the Windows 7 Customer Preview site. Hopefully someone you know has already downloaded it, and all you need is the product key. You will not get any technical support from Microsoft while testing the product Normally, beta testing a new operating system would require you to have dedicated hardware resources available for testing. By using virtualization technology like VMware Server you can do this without having dedicated hardware or having to replace your existing operating system of choice. Installing Windows 7 in VMware Server The next natural step is to check that you have downloaded the Windows 7 ISO from Microsoft and I'll assume that you already have VMware Server installed. If thats not the case, download them both now and get VMware Server installed. I'll be right here waiting for you when you return. Got it sorted? Good. We'll continue with the issue at hand, installing Windows 7 in VMware Server. First off, you need to create a new VM in the VMware server console. You do this by logging in to the VMware Server Web... --- ### Windows 7 Editions Comparison > The new Microsoft Windows 7 OS will have all new versions that you need to be aware of! Upgrades from XP and Vista are available. - Published: 2009-02-19 - Modified: 2009-02-19 - URL: https://petri.com/windows-7-editions-comparison/ - Categories: Windows 7 - Tags: 7, Edition, Home, Premium, Ultimate, Version, Windows, XP - Article Type: Overview With its planned upcoming release of Windows 7, presently slated for release in early 2010, Microsoft has released some information as to the different editions of Windows 7 that may be available for use by consumers for purchase, original equipment manufacturers (OEMs) and corporations for use in their enterprise as part of their open and / or volume licensing agreements through their reseller. Learn all about these new versions of Windows 7 in this hot article by Jason Zandri! With its planned upcoming release of Windows 7, presently slated for release in early 2010, Microsoft has released some information as to the different editions of Windows 7 that may be available for use by consumers for purchase, original equipment manufacturers (OEMs) and corporations for use in their enterprise as part of their open and / or volume licensing agreements through their reseller. – A couple notes to point out. The first is the state of this information; it is important to remember that Windows 7 is still in beta release and this information as it is being provided is in a state of flux. Some of the different versions and editions of Windows 7 may be pulled or the details changed when the product formally releases to manufacturing (RTM) and then forward from there. This was the case with Windows Vista that started with four versions formally released and then more editions were added. Additionally, not every version listed is going to be available for consumer purchase or OEM purchase, etc. For example, you cannot presently go out and buy at a retail outlet a copy of Windows Vista Business. Same is true for Windows Vista Starter edition. Back History – Windows XP With respect to the Windows XP family of operating systems Microsoft has formally released Home Edition, Professional Edition, Media Center Edition, Tablet PC Edition and Professional x64 Edition as outlined in Microsoft's Windows XP Homepage. With respect to system... --- ### Low Budget Exchange Server Deployments; What Do You Really Need? > In the midst of the current economic situation, it is very important to keep tabs on spending. Learn how to save money on your Exchange Server Deployment! - Published: 2009-02-18 - Modified: 2024-09-04 - URL: https://petri.com/low-budget-exchange-server-deployments-what-do-you-really-need/ - Categories: Exchange Server - Tags: 2007, deployment, exchange, low-cost - Article Type: Overview In the midst of the current economic situation, it may be more important than ever to keep close tabs on IT spending. Unfortunately though, deploying an Exchange Server organization is rarely cheap. In this article, Brien Posey explains why this is the case, and talks about some of the things that you can do to reduce the cost of your deployment. Given the current economic crunch, just about everybody is being far more cautious with their IT spending. Even so, companies can’t just put everything on hold until things get better. If everyone did that, the economy would come to a grinding halt overnight. If your company has been considering deploying Exchange 2007, then my advice would be to go for it, but be smart about the deployment. My purpose in writing this article is to help you to plan a cost effective Exchange Server deployment. How Many Servers Do You Really Need? Exchange Server 2007 was designed from the very beginning to be a distributed application. If you look at any of the Microsoft documentation related to installing Exchange 2007, you will likely see elaborate diagrams that show a bunch of different Exchange Servers all connected together in an intricate design. The diagram might look something like the one shown in Figure A. Figure A Exchange 2007 is designed to use a distributed topology. Whenever you see  these types of diagrams, it is important to stop and think about why Microsoft is recommending the topology that they are. While it’s true that Exchange will generally perform better if you distribute the workload across multiple servers, it is also true that Microsoft’s primary goal is to sell software. It is therefore in their best interest to recommend a topology that involves using lots of servers, because each individual server requires a Windows Server license, an Exchange Server license, client access licenses,... --- ### How to Model and Predict Changes to your VMware ESX Infrastructure using vKernel Modeler > How do you know if the change you are about to make to your VMware Infrastructure will help or hurt? You need vKernel Modeler! - Published: 2009-02-18 - Modified: 2024-11-19 - URL: https://petri.com/how-to-model-and-predict-changes-to-your-vmware-esx-infrastructure-using-vkernel-modeler/ - Categories: VMware - Tags: esx, modeler, performance, vkernel, vmware - Article Type: How To In this article, Virtualization Expert (VCP) Gabrie van Zanten covers how to model changes to your VMware virtual infrastructure and test those planned changes before implementation by using VKernel Modeler. With products like Capacity Analyzer, SearchMyVM and Chargeback, VKernel has proven to deliver easy to use tools for today’s performance and systems management challenges in a virtual infrastructure. Recently they released VKernel Modeler, their latest product which allows you to create “What-if scenarios”. With the new Modeler product you can simulate different scenarios to see what the effect of certain changes would be on your virtual environment. What kind of scenarios might you want to simulate? I know that in my environment, I was interested in modeling changes such as adding a number of VMs, changing cluster or resource pools settings, and pre-testing what a host failure will do to the performance of my cluster. How do I get started? Modeler is offered as an appliance and I really like appliances because all you have to do is download, start the VM, enter network settings, and you’re done. I see this with more and more products and it makes deploying really easy. With VKernel Modeler it was no different, within a few minutes I was up and running and made a connection to the web interface. By adding your vCenter (Virtual Center) server or a number of hosts to your “Virtual Environment” in Modeler, your current environment is analyzed and available in the tree on the left side of the browser screen. By default Modeler retrieves performance data of the last 168 hours (7 days) from vCenter, just make sure to set your vCenter statistics level to... --- ### BitLocker To Go Walkthrough on Legacy Systems - Published: 2009-02-15 - Modified: 2024-09-04 - URL: https://petri.com/bitlocker-to-go-walkthrough-on-legacy-systems/ - Categories: Security - Tags: disk management, Security, Windows 7, Windows Client OS, Windows Server, Windows Server 2008, Windows Vista, Windows XP - Article Type: How To Windows 7 is the next generation of operating system due from Microsoft and it is now set for a planned release in the final quarter of 2009 which would be just a bit shy of the three years since the release of Windows Vista. This segment of the article series is an overview of BitLocker Drive Encryption and BitLocker To Go. – Microsoft has now released their Release Candidate for Windows 7; I wrote a brief article Windows 7 Release Candidate (Build 7100) - Early Details on this already and at this time there is a tentative release date for Windows 7 this fall supposedly near the end of October time frame. In my Walkthrough for BitLocker on Windows 7 article I did a walkthrough of the steps for enabling BitLocker on your Windows 7 system. In my BitLocker To Go Walkthrough Windows 7 article I did a walkthrough of the steps of getting a removable USB drive (thumb drive) enabled with BitLocker Drive Encryption. In this article I will do a walkthrough of the steps to leverage the BitLocker To Go secured device on legacy operating systems. BitLocker To Go Review Just as a quick review (and if you want to review this information in a little more depth, the articles listed above contain the information broken out in some more detail) here is a high summary review of BitLocker Drive Encryption and BitLocker To Go. BitLocker Drive Encryption protects portable systems... --- ### Finding Unread E-Mails in Gmail - Published: 2009-02-14 - Modified: 2024-09-04 - URL: https://petri.com/finding-unread-e-mails-in-gmail/ - Categories: Messaging - Article Type: How To Argghhh... another one of these nasty annoyances that can drive you nuts! I expect that most of you have a Gmail-based account. I do too. Having a Gmail account is nice because of the high availability it provides, the fact that I can access it from anywhere in the world (as well as from my IPhone or Nokia cellular phones), and the fact that it gives me a 7GB mailbox. So far so good. However, Gmail's settings are limited in comparison with Exchange-based web mail. For example, you cannot create folders in your mailbox, and while you can tag (or label) e-mail items, you cannot actually move the items to a different folder. What look, at first, like a limitation, is in fact an advantage. You can treat each label as a folder, and you can "open" a label and see all the items "in" it. The nice thing is that you can "put" any item in any number of folders (or labels). Gmail's web interface shows you a limited number of e-mail messages per page. This can be changed from the "Settings" page, however you'll be limited to a maximum number of 100 e-mail items, per page. Also, Gmail will display the number of unread e-mail messages in your mailbox, but it does not display this number per-page, but for the entire mailbox (which is quite logical). Now, if you're like me, hording hundreds and thousands of e-mail messages in your mailbox, you'll need to scroll... --- ### Walkthrough for BitLocker on Windows 7 - Published: 2009-02-14 - Modified: 2024-09-04 - URL: https://petri.com/walkthrough-for-bitlocker-on-windows-7/ - Categories: Security - Tags: disk management, Security, Windows 7, Windows Client OS, Windows Server, Windows Server 2008, Windows Vista, Windows XP - Article Type: How To Windows 7 is the next generation of operating system due from Microsoft and it is still set for a planned release for early 2010 which would be three years after the release of Windows Vista. This article is a walkthrough of the steps for enabling BitLocker on your Windows 7 system. – Microsoft has now released their Release Candidate for Windows 7; I wrote a brief article Windows 7 Release Candidate (Build 7100) - Early Details on this already and at this time there is a tentative release date for Windows 7 this fall supposedly near the end of October time frame. An Overview of BitLocker on Windows 7 From a write up provided by Microsoft titled Windows 7 Pre-release (M3) Privacy Supplement (which was last updated in October of 2008) indicated that only certain versions of Windows 7 would natively include BitLocker; they were “Windows 7 Enterprise Edition and Windows 7 Ultimate Edition” This may have changed since that release of information but I still do not know of any other versions other than Windows 7 Starter Edition, Windows 7 Home Basic, Windows 7 Home Premium, Windows 7 Professional, Windows 7 Enterprise and Windows 7 Ultimate. – I am speculating that since there is no Windows 7 Business Edition listed as we have with Vista that there will be no released in that category and that Windows 7 Professional may well be the replacement for that. Having said... --- ### Windows 7 Cool Feature - Problem Steps Recorder - Published: 2009-02-12 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-cool-feature-problem-steps-recorder/ - Categories: Windows 7 - Article Type: Overview In Windows 7 (currently in beta), Problem Steps Recorder is a new feature that will record each and every step a user takes and document the entire operation in both screen captures and step-by-step details. It will save the resulting capture in a ZIP file allowing the user to easily send it by e-mail or file share to a support professional. In this article, MVP Daniel Petri will walk you through using this cool tool. Folks, it seems that Microsoft is coming up with something quite interesting in Windows 7. Feature is called “Problem Steps Recorder”. Problem Steps Recorder can be used to automatically capture the steps performed by a user on a computer, including a text description of where they clicked and a picture of the screen during each click. This capture is then automatically saved to a file that can be used by a support professional to help the user troubleshoot the issue or understand what steps were taken by the user. Note that they’re still in beta, and this feature is not complete. For example, it won’t record typed text, which means it is TOTALLY USELESS for command prompts or PowerShell commands or even outputs, but if properly guided, the user can add his own comments for any screenshot. It’s worth noting that unlike enterprise-wide visual recording solutions like ObserveIT, Problem Steps Recorder is not designed to capture videos, centrally store the captures, or even allow for indexing of the content by users, computers or applications. It will be probably used as a personal solution aggregator for help desk and support scenarios. In any case, PSR is more than just a screenshot capturing tool. Besides automating the capturing of what’s going on the screen, it will also highlight the user’s mouse clicks, and, most importantly, will provide a detailed textual metadata with a description of what the user is doing. Note: Remember, Windows 7 is still under development. The version I’m working... --- ### Free Remote Desktop, Terminal & Citrix Session Recorder: ObserveIT Express - Published: 2009-02-11 - Modified: 2024-12-03 - URL: https://petri.com/free-remote-desktop-terminal-citrix-session-recorder-observeit-express/ - Categories: Security - Article Type: Overview ObserveIT is a software that is designed from the ground up to be deployed in multi-server enterprise environments and provides visibility into all user activity such as Microsoft Terminal Services, Citrix (ICA) including published applications, Remote Desktop (RDP), PC-Anywhere, VNC and NetOP... This is a special offer for the Petri Knowledgebase readers. ObserveIT empowers companies to demonstrate Compliance, augment Security Administration and reduce mean-time-between-failure for systems administrators. The software visually records and replays all Terminal, Citrix, and Console sessions, providing detailed insight into all activities on your network. Do you use any social networks? Follow ObserveIT on Facebook, Linkedin and/or Twitter. ObserveIT Express - Free product download Download ObserveIT Express here ObserveIT is a software that is designed from the ground up to be deployed in multi-server enterprise environments and provides visibility into all user activity such as Microsoft Terminal Services, Citrix (ICA) including published applications, Remote Desktop (RDP), PC-Anywhere, VNC and NetOP. ObserveIT continuously records and indexes all user activities performed in a window session. Agnostic to protocol or application, ObserveIT records any window session in a compressed and searchable format. ObserveIT's unique metadata architecture enables you to generate detailed reports (For example: "Show me all window console and terminal session recordings that include access to the registry on all servers through January 2009") quickly and effectively, solving system related problems and helping prevent future repetition of similar errors. Read more about ObserveIT in my “Record and Audit Terminal, Citrix and DRP Session ObserveIT Product Overview” article. Until now, ObserveIT has (and still does) required a valid license to use. However, as an exclusive offer for the readers of the Petri IT Knowledgebase, I have managed to get the ObserveIT developers to create a special version of the... --- ### Windows 7 Performance Tweaks > Quick tips to optimize the performance of your Windows 7 computer. - Published: 2009-02-05 - Modified: 2024-09-04 - URL: https://petri.com/windows-7-performance-tweaks/ - Categories: Windows 7 - Article Type: Overview In an effort to atone for Windows Vista’s excessive resource consumption, Microsoft has designed Windows 7 to perform better than Vista on comparable hardware. Even so, Brien Posey explains that there are still things that you can do to improve the way that Windows 7 performs. Introduction Windows Vista has drawn a lot of criticism for running more slowly than Windows XP did on comparable hardware. As such, one of the goals that Microsoft set for themselves when creating Windows 7 was to make it perform better than Vista did. This doesn’t mean that there isn’t room for improvement though. In this article, I will show you some things that you can do to squeeze even better performance out of Windows 7. Internet Explorer Add-Ons By itself, Internet Explorer is a fairly efficient application. However, add-ons can really decrease the browser’s performance. Windows 7 actually allows you to see which add-ons are taking the longest to load. From there, you can make a decision as to whether or not you want to disable the add-on in the name of faster load times. You can check the performance of each add-on by opening Internet Explorer, and selecting the Manage Add-Ons command from the Tools menu. When the list of add-ons appears, scroll all the way to the right, and you will see a column that tells you how long each add-on takes to load, as shown in Figure A. Figure A Internet Explorer shows you how long it took to load each add-on. MSCONFIG MSConfig has been around in one form or another since the days of Windows 3. 1, and is alive and well in Windows 7. Although MSConfig was originally intended as a tool for diagnosing boot problems, it can also be used... --- ### Installing Windows 7 Beta - Published: 2009-02-02 - Modified: 2024-09-24 - URL: https://petri.com/installing-windows-7-beta/ - Categories: Windows 7 - Article Type: How To Windows 7 is the name of the next version of Windows-based operating system. Windows 7 is next version of the Windows client operating and is on track to be available approximately 3 years after the release of Windows Vista. As a Microsoft Windows support professional, one of your tasks may be to install the operating system. This article is a quick walk through on the steps needed to be performed in order to install Windows 7 on one PC. Too soon? I don't think so. Although Windows 7 is still in beta phase, since it was released for testing to the public I have received many emails from readers asking me to publish an installation guide. So, here it is. Note: Please keep in mind that as of January 2009, Windows 7 is still in beta. I've used build 7000. 0. 081212-1400, and used VMware Workstation 6. 5 for the installation and screenshots. This article will be edited when new builds are made available. Step #1: Plan your installation When you run the Windows 7 Setup program, you must provide information about how to install and configure the operating system. Thorough planning can make your installation of Windows 7 more efficient by helping you to avoid potential problems during installation. An understanding of the configuration options will also help to ensure that you have properly configured your system. Here are some of the most important things you should take into consideration when planning for your Windows 7 installation: Check System Requirements Check Hardware... --- ### Installing Hyper-V on Windows Server 2008 - Published: 2009-02-01 - Modified: 2024-11-19 - URL: https://petri.com/installing-hyper-v-on-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: How To Hyper-V is a hypervisor-based technology that is a key feature of Windows Server 2008, and provides a scalable, reliable, and highly available virtualization platform. It provides scalability and high performance by supporting features like guest multi-processing support and 64-bit guest and host support; reliability and security through its hypervisor architecture; flexibility and manageability by supporting features like quick migration of virtual machines from one physical host to another, and integration with System Center Virtual Machine Manager (SCVMM). Installing the Hyper-V role on a full installation of Windows Server 2008 installs all the components of the Hyper-V technology, including the remote management tools. The tools consist of Hyper-V Manager, which is a Microsoft Management Console (MMC) snap-in, and Virtual Machine Connection, which provides you with direct access to a virtual machine through a network connection. So, how do you get Hyper-V up and running on your server? Installation is easy, but before installing it you must make sure you meet the required prerequisites. Hyper-V Installation Prerequisites Hyper-V requires specific hardware. You will need the following: An x64-based processor. Hyper-V is available only in the x64-based versions of Windows Server 2008—specifically, the x64-based versions of Windows Server 2008 Standard, Windows Server 2008 Enterprise, and Windows Server 2008 Datacenter. Hardware-assisted virtualization must be available and be enabled in the BIOS. This is available in processors that include a virtualization option; specifically, Intel VT or AMD Virtualization. Hardware Data Execution Protection (DEP) must be available and be enabled in the BIOS. You... --- ### Product Overview - Citrix SmartAuditor vs. ObserveIT - Published: 2009-01-30 - Modified: 2024-11-19 - URL: https://petri.com/product-overview-citrix-smartauditor-vs-observeithtm/ - Categories: Windows Server - Article Type: Overview In today's shifting IT world  many organizations has servers hosting applications for both internal and customer-facing applications. These servers are managed and accessed by multiple staff members and in some cases, accessible by external vendor contractors as well. While a lot of money was invested in protecting these servers from malicious users and other types of unauthorized connections by deploying firewalls, VPN servers, identity management solutions and intrusion detection systems, currently, these organizations have no practical way of logging user activities on these servers and of knowing exactly who did what on these machines. Do you use any social networks? Follow ObserveIT on Facebook, Linkedin and/or Twitter. The need for recording user actions is mostly due to these reasons: Regulatory compliance - Over the past few years, organizations have implemented internal controls as part of their efforts to meet regulatory requirements. Non-compliance with these requirements carries great risk for organizations. In order to comply with these regulatory requirements, Organizations need to record on-screen user activity for applications that deal with sensitive information. The organization is responsible for reducing this risk and developing a risk management strategy that incorporates effective internal controls to meet regulatory compliance such as Sarbanes-Oxley, HIPAA, and many others, and monitor suspicious activity while protecting company information. This is especially critical in regulated industries such as healthcare and finance, where compliance with personal information security rules is critical. Most organizations strive to be compliant and protect company information, but because of growing dependency on... --- ### Repair Corrupt Microsoft Excel Spreadsheets > This guide outlines how to automatically repair your damaged XLS or XLSX files and recover Excel spreadsheets, tables, formulas and formatting. - Published: 2009-01-21 - Modified: 2024-11-19 - URL: https://petri.com/excel-recovery/ - Categories: Office - Article Type: How To How many times have you been working away on a complex spreadsheet only to have Excel crash? Often you're left with a corrupt spreadsheet you can't open and critical data you can't access. This guide outlines how to use Stellar Phoenix's Excel Recovery application to automatically repair your damaged . XLS or . XLSX files and recover Excel worksheets, formulas and formatting. Note: For . xls password recovery go here: Recover an Excel Password Step 1: Download and Install the Excel Spreadsheet Recovery Utility To perform the following recovery steps, you'll need to download and install Excel Recovery from Stellar Phoenix, download available directly here. (3. 5Mb) Once you've downloaded the program, run the install with the default options. Step 2: Locate the Damaged File and Begin the Recovery Process Open Stellar Phoenix Excel Recovery from the icon on your desktop. On the top left, click the Add File to Tree View button and navigate to the damaged spreadsheet file. To make it easier, the browsing window automatically filters for XLS and XLSX files. Select the Open button to add the file location into the wizard. In the list that appears on the left, select the checkbox beside the file you'd like recover. 3. Preview the Recovered Excel Data A handy feature of Excel Recovery is its ability to give you a preview of your recoverable data, even down to the individual worksheets, before beginning the restore process. Simply double click the file to launch the preview. 4. Restore Your Spreadsheet To proceed with... --- ### Driver Detective Driver Updater > Computer Driver Updates Can Be Done Automatically With the Right Driver Update Tool. This Guide Covers the Use of Driver Detective to Update PC and Server Drivers. - Published: 2009-01-21 - Modified: 2024-11-19 - URL: https://petri.com/computer-driver-updates/ - Categories: Main - Article Type: Overview Traditionally, locating the right driver for a PC, server, or peripheral has required that you know the specifics of your device's manufacturer, model number, your OS version, the date of your current or placeholder driver.   This guide outlines how to use an automated driver 'locate and install tool' called Driver Detective to source the correct drivers for your device or PC without scouring hardware vendor's websites. Note: Driver Detective retails for $29. 95.   If you're looking for a free driver update try Device Doctor (portable USB version also available). Step 1: Download and Install the Driver Updater Utility To start the automated update process, grab the Driver Detective installer download available directly here. (3. 8Mb) Driver Detective is built on the Microsoft . NET 2. 0 platform, so if you're running Windows XP SP1 or SP2, the app will download the . NET framework for you automatically.   If you're running XP SP3, Windows Vista, or Windows 7, the framework is baked into Windows by default. The average install time is about 30 seconds. Step 2: Start the Driver Scan and Search In some instances, Driver Detective's "Universal Match Intelligence" technology may be able to identify your PC's brand and model number automatically reducing scan and compatibility check times. In our test case, we were using a custom built machine, so scan presets weren't available.   This wasn't an issue however. Click the Scan Now button on the top right: The driver scan will search your PC for internal hardware components and even currently unplugged peripheral devices.  ... --- ### Web Servers Training Labs - Published: 2009-01-21 - Modified: 2024-11-19 - URL: https://petri.com/web_servers_training_labs/ - Categories: Career Skills - Article Type: Overview A review of Train Signal’s Web Servers Video Lab Training – Product Details.  See more details at Train Signal's website. We start with the Concepts video where the advantages and disadvantages of various web servers are discussed: IIS 4, IIS5 & IIS6 and Apache (Apache being the dominant server at this point in time) Difference between Web Site and Web Server.   Site = software. Server = hardware Host yourself or use a dedicated hosting company Expense involved Domain Names – top level and different suffix like . net, . org as opposed to . com Sockets (IP & Port Number) in a simple graphical presentation (great analogy) SSL – type of encryption to secure sensitive info transferred over the net FrontPage Server Extensions – again a simple explanation of how it is used to manage your website using you guessed it, FrontPage.   HTML knowledge not needed Want to host your own web site or even multiple sites on one server, then Train Signal's Lab 3 - Web Server tutorial is the ultimate guide for you. Video 1 - New features in IIS6 are covered with security being a high priority. Microsoft has even released a scaled down version of Windows 2003 Server that can only act as a Web Server. IIS6 is not installed by default, unlike IIS5 and when you do install IIS6, you only get what you select. It just doesn’t install everything in one hit.  This way if it isn’t used, it doesn’t get neglected during security patch time. Worker Process Application... --- ### Five things you should know before hooking up your wireless network > Planning to setup a wireless network? David Davis walks you through five things you should know before rolling up your sleeves. - Published: 2009-01-21 - Modified: 2024-09-24 - URL: https://petri.com/wireless-networking-five-things-you-should-know-security-cwna/ - Categories: Cisco - Article Type: Overview Planning to setup a wireless network? David Davis walks you through five things you should know before rolling up your sleeves. Let's face it, wireless networking is everywhere and, in most cases, it is insecure and out of control. To the average household user, they assume that it should always "just work" and just "be secure". To IT Pros like you and I, we know that while wireless networking has become a fact of life, it will always be a source of concern. So, the next time your boss asks you to put up a new wireless network, I hope that you will take pause and consider the 5 things you will learn about wireless in this article. Why I wrote this article Even in business today, it is tough to not use wireless. Every laptop come with it. PDA's have it. People use it at home. The CEO thinks its cool. To the users it just seem obvious to have wireless everywhere, just like it does to hook up their ipod on their work PC. I mean, if you have all these things at home, why not have them at work, right? However, after using wireless at my office and all the research I did while creating the Train Signal Wireless Networking video series, part of me just wants to "turn it all off". As part of the TS Wireless administration video series, one of the things I did was demonstrate how to hack wireless security protocols. I demonstrated how easy it is to hack WEP with brute force. I demonstrated how easy it is to hack... --- ### Planning for an Exchange 2007 Migration, Part 2 - Published: 2009-01-21 - Modified: 2024-09-17 - URL: https://petri.com/planning-for-exchange-2007-migration-part-2/ - Categories: Exchange Server - Article Type: Overview In the first part of this article series, I talked about a few of the things that you should do to begin planning for an eventual migration to Exchange Server 2007. In this article I want to conclude the series by discussing some other aspects to the planning process. Prepare the Active Directory Exchange Server 2007 makes use of some Active Directory objects and attributes that were not used by Exchange Server 2003. As such, the Active Directory schema will have to be extended, and the forest and the individual domains will have to be prepared before you can even install Exchange 2007. Preparing the Active Directory is something that you can safely do ahead of time, even if it is going to be quite a while before you actually install Exchange 2007. I would however recommend making a full system state backup of at least one domain controller just before you prepare the Active Directory, just to cover you in the unlikely event that something goes wrong. Public Folder Hosting Another aspect to the migration planning process is that you need to decide what you want to do with any existing public folders. Contrary to some rumors that you might have heard, public folders are supported in Exchange 2007, but they may or may not be supported in the next version of Exchange. Microsoft eventually wants to transition public folder content to SharePoint. I recommend deciding whether or not you still need to use public folders. If you do... --- ### Home Network Setup - What are the possible configuration settings for a home/SOHO network with 3-4 computers and an ADSL Internet connection? - Published: 2009-01-20 - Modified: 2024-12-03 - URL: https://petri.com/adsl_home_network_config/ - Categories: Networking - Article Type: Overview On this page I will describe the 4 variants or options that one has when connecting a home or small office network to the Internet via an ADSL or Cable modem. Carefully read the pros and cons of each method and decide what's best for you. In this page I will not go into PC configuration details. There are now software apps from Cisco/Linksys that assist with the PC configuration component. Home Network Setup Option 1: Everything hooked to a Hub or Switch Pros Simple setup No server needed Configure each PC manually Cons Maximum 4 PC's Fixed IP addresses for all 4 PC's Dial-in required per PC No Proxy Hub ports = the number of PC's + 1 Only one PC at a time can be connected to the Internet With this home network setup we connect all Ethernet cables (PC and ADSL) to a hub or switch. The hub or switch can be any model UTP based hub preferably with a uplink/MDI crossed connector. You will need the uplink connector to connect the ADSL connector. If your hub does not come with such a connector, you should buy or prepare a UTP crossed-over network cable and use that instead. Your hub should have at least the amount of PC's plus 1 (ADSL) UTP ports. Layout: The ADSL cable goes to the splitter. The ADSL modem is connected to the splitter. The Ethernet cable from the modem either is connected to the uplink UTP connector of... --- ### Configuring a Windows 2003 Server to exchange RIP routes with a Cisco router - Part 1 - Published: 2009-01-20 - Modified: 2024-12-03 - URL: https://petri.com/configure-windows-2003-server-exchange-rip-cisco-router/ - Categories: Networking - Article Type: How To Did you know that a Windows Server can act as a router? Even better, did you know that a Windows server could be configured to exchange routes with a Cisco router? In this two part series, we will show you how to configure both the Windows server and the Cisco router to exchange routes. Let's find out how it is done. Why would you want a Windows Server to exchange RIP routes with a Cisco Router? There are a number of applications for these two different network devices to exchange routes. Here are some possible needs for this: You have a Cisco router on your network and need a second router but all you have is a Windows server. For testing / lab purposes Because Windows servers cost much less than Cisco routers To have a Windows server exchange routes, not only with a Cisco router, but also with any other device that runs RIP (like a Cisco PIX, ASA, or small firewall) Our Network In the diagram below, you can see our sample network. In this, part 1, of this series, we will be configuring the Windows 2003 Server shown in the diagram. In Part 2, we will configure the Cisco router. Network Diagram This configuration was performed on a Windows 2003 SP1 Server that has two NIC interfaces. It was demonstrated using VMware Workstation with two virtual interfaces - one going to my normal LAN and the other going to the VMware Host Only network... . --- ### How can I gain access to a Windows 7 or XP computer if I forgot the administrator's password? How can I reset the administrator's password if I forgot it? > Petri's top tools to recover or reset Windows Login and Windows Administrator Password. Did you forget your password? We'll show you how to get back on your PC. - Published: 2009-01-19 - Modified: 2024-08-27 - URL: https://petri.com/forgot_administrator_password/ - Categories: Security - Article Type: How To Automatically recover a Windows 7 or XP administrator password with this helpful and crucial guide. Ok, so you say you forgot your Windows administrator's password, huh? Oh well, it doesn't really matter if you did or you just say you did. The fact is that you need to gain access to a computer and you cannot "remember" the administrator's password. How can you get out of this situation without formatting and re-installing the operating system? One method of gaining access to the system is by trying hard to remember the forgotten password, or a password of another user which has the same level of administrative rights. However I don't think this approach will help you, otherwise you wouldn't be sitting here reading article, would you? Another method is by trying to restore a backed up System State (in Windows 2000/XP/2003) or a ERD (in NT 4. 0) in which you do remember the password. The problem with doing so is that you'll probably lose all of the recently add users and groups, and all the changed passwords for all of your users since the last backup was made. A third method might be to install a parallel operating system on a different partition on the same computer, then use a simple trick to gain access to the old system. Read more about it on my Forgot the Administrator's Password? - Alternate Logon Trick article.   For Office document password removal, you can also check our tutorials on Excel password recovery. Note: If you are looking for password cracking tools that can be used for miscellaneous objectives such... --- ### Windows Server 2008 ADPREP - Published: 2009-01-19 - Modified: 2009-01-19 - URL: https://petri.com/windows-server-2008-adprep/ - Categories: Windows Server 2008 - Article Type: Overview   Before you can introduce Windows Server 2008 domain controllers into existing Windows 2000 or Windows Server 2003 domains, you must prepare the forest and domains with the ADPREP utility. ADPREP. exe is a command-line tool that extends the Active Directory schema, and updates permissions as necessary to prepare a forest and domain for a domain controller that runs the Windows Server 2008 operating system. Note: ADPREP was also available in Windows Server 2003 and Windows Server 2003 R2. In Windows Server 2008, ADPREP follows the same logic and performs similar tasks to prepare for the upgrade to Windows Server 2003 or Windows Server 2003 R2. Please read my "Windows 2003 ADPREP" article for more information on that. ADPREP. exe is a command-line tool that is available on the Windows Server 2008 installation disc in the 'sources'adprep folder. When you run it, it must be run ADPREP from an elevated command prompt. To open an elevated command prompt, click Start, right-click Command Prompt, and then click Run as administrator. Where should I run ADPREP? ADPREP /forestprep must be run on the Schema Master of a forest and under the credentials of someone in the Schema Admins and Enterprise Admins groups. ADPREP /domainprep must be run on the Infrastructure Master of a domain and under the credentials of someone in the Domain Admins group. Important: Since at the time of running ADPREP you still do not have any Windows Server 2008 Domain Controllers, it should be made clear that these commands... --- ### How can I write (burn) ISO files to CD or DVD? - Published: 2009-01-16 - Modified: 2024-09-24 - URL: https://petri.com/how_to_write_iso_files_to_cd/ - Categories: Disk Management - Article Type: How To ISO files are actually images of complete CDs or DVDs compiled as one whole image file (*. iso), just like Ghost does for hard disks and partitions. ISO images can be loaded into several different CD/DVD recording software packages to create CDs or DVDs. ISO Recorder Power Toy (Freeware) Update: ISO Recorder is now compatible with Windows Vista and Windows 7. ISO Recorder is a Windows XP freeware utility that uses native Windows XP functions to write images to a CD. You can download this utility from the author's Web page. When the program is installed, it is automatically associated with the ISO file extension in Windows Explorer. For more information about this utility, visit the author's Web page at Steps to create a CD if you have installed ISO Recorder Power Toy: Download the ISO CD or DVD image to a folder on your computer. Insert a blank CD or DVD in your CD-RW drive. Start Windows Explorer. Locate the ISO file, right-click the file name, and then click Copy image to CD to open the ISO Recorder Wizard. Follow the steps in the wizard to write the image to the CD. Another alternate method: You can also right-click your CD-R drive and choose Copy Image to CD. In the new window browse to the ISO file and click Next. Reader comment: Reader Ori Artman adds his small useful tip: "Small and maybe valuable tip for the ‘How can I write ISO files to CD? ' tip... . --- ### How can I install Windows XP Pro on my computer? - Published: 2009-01-16 - Modified: 2024-09-24 - URL: https://petri.com/install_windows_xp_pro/ - Categories: Windows XP - Article Type: How To How can I install Windows XP Pro on my computer? As a Microsoft Windows support professional, one of your tasks may be to install the operating system. This article provides a step-by-step tutorial on installing Windows XP Pro. Windows Vista Update: We've recently added similar instructions for how to install Windows Vista Step #1: Plan your installation When you run the Windows XP Professional Setup program, you must provide information about how to install and configure the operating system. Thorough planning can make your installation of Windows XP Professional more efficient by helping you to avoid potential problems during installation. An understanding of the configuration options will also help to ensure that you have properly configured your system. I won't go into that part right now but here are some of the most important things you should take into consideration when planning for your XP installation: Check System Requirements Check Hardware and Software Compatibility Determine Disk Partitioning Options Choose the Appropriate File System: FAT, FAT32, NTFS Decide on a Workgroup or Domain Installation Complete a Pre-Installation Checklist After you made sure you can go on, start the installation process. Step #2: Beginning the installation process You can install Windows XP in several methods - all are valid and good, it all depends upon your needs and your limitations. Manual installations usually come in 3 flavors: Boot from CD - No existing partition is required. Boot from the 6 Setup Boot Disks, then insert the CD - No... --- ### Exchange 2007 Migration Planning > Prepare for a Exchange 2007 Migration with this how to article by Brian Posey. - Published: 2009-01-16 - Modified: 2009-01-16 - URL: https://petri.com/planning-for-exchange-2007-migration/ - Categories: Exchange Server - Article Type: Overview We've all heard that the difference between a successful Exchange 2007 migration and a disaster is planning. That being the case, I wanted to take the opportunity to write about the types of issues that you need to think about planning for prior to a migration. Assessing the Exchange Features that Your Organization Needs Generally speaking, if you're migrating from Exchange Server 2003 to Exchange Server 2007 then the migration process tends to be fairly painless. Even so, it important to keep in mind that there are some features that existed in Exchange Server 2003 that do not exist in Exchange Server 2007. Discontinued features are even more of an issue though if you are going to be migrating from Exchange 2000. My advice is that before you even think about performing a migration, you need to take a look at the features that have been discontinued, and see if any of the discontinued features impact your organization. If you do happen to be using any of the features that have been discontinued, then you will have to figure out if you can live without the feature, or how you can implement the feature in a different way. In some cases you can maintain access to feature just by keeping a legacy Exchange Server in the Exchange organization. In other cases though, some of the discontinued features are completely unsupported in Exchange 2007 organizations. There is no way that I can possibly talk about all of the features that have... --- ### Testing Exchange 2007 Migration Readiness - Published: 2009-01-16 - Modified: 2024-09-24 - URL: https://petri.com/testing-exchange-2007-migration-readiness/ - Categories: Exchange Server - Article Type: Overview Lately, I have had a lot of people contacting me because they are interested in bringing Exchange 2007 into an existing Exchange Server organization. The topic has become so popular that I spent last week in Las Vegas speaking on the topic. After my presentations, one of the questions that kept coming up is how an administrator really knows whether or not they have sufficiently completed the planning and preparation work, and are ready to bring Exchange 2007 into the organization. In this article, I want to show you a technique for determining your organization’s Exchange 2007 readiness. The Microsoft Exchange Best Practices Analyzer Tool Microsoft offers a free tool that can help organizations to assess their Exchange 2007 readiness. The tool is called the Microsoft Exchange Best Practices Analyzer Tool, or ExBPA. If this tool sounds familiar to you, it’s probably because it has been around for quite a while.   The tool was originally designed to help Exchange Administrators to determine whether or not their organizations are configured according to Microsoft’s best practices, and to show them which aspects of their Exchange organizations need attention. The ExBPA is still capable of doing this, but Microsoft has also added functionality that allows the tool to assess an organization’s Exchange 2007 readiness. Microsoft routinely updates the ExBPA, so even if you already have a copy, you will want to download the latest version. You can get the most recent ExBPA revision from Microsoft's site. What ExBPA Won’t Do... --- ### BitLocker To Go Walkthrough Windows 7 - Published: 2009-01-15 - Modified: 2009-01-15 - URL: https://petri.com/bitlocker-to-go-walkthrough-windows-7/ - Categories: Security - Tags: disk management, Security, Windows 7, Windows Client OS, Windows Server, Windows Server 2008, Windows Vista, Windows XP - Article Type: How To Windows 7 is the next generation of operating system due from Microsoft and it is now set for a planned release in the final quarter of 2009 which would be just a bit shy of the three years since the release of Windows Vista. This article series is an overview of BitLocker and Encrypting File System (EFS) in Windows 7. – Microsoft has now released their Release Candidate for Windows 7; I wrote a brief article Windows 7 Release Candidate (Build 7100) - Early Details on this already and at this time there is a tentative release date for Windows 7 this fall supposedly near the end of October time frame. In my A Security Comparison Overview of BitLocker and Encrypting File System (EFS) in Windows 7 – PART 3 BitLocker To Go in Windows 7 article, I reviewed some of the feature details of BitLocker and in Walkthrough for BitLocker on Windows 7 I did a walkthrough of the steps for enabling BitLocker on your Windows 7 system. In this article I will walk through the steps of getting a removable USB drive (thumb drive) enabled with BitLocker Drive Encryption. Reasons for BitLocker To Go Using BitLocker Drive Encryption in any version of Windows that supports it is one of the best ways to protect portable systems such as laptops from loss of data and information when the laptops themselves are lost or stolen. BitLocker To Go is natively available in Windows... --- ### Exchange Server Recovery the Easy Way > Learn how to perform an automated Exchange Server recovery. Repair .EDB database files and restore users' emails, calendars and contacts. - Published: 2009-01-15 - Modified: 2024-09-04 - URL: https://petri.com/exchange-recovery/ - Categories: Exchange Server - Article Type: How To Overview on recovering corrupted or damaged Microsoft Exchange Server .edb files. Try the Stellar Exchange Repair Tool for quick and simple Exchange db recovery. Microsoft Exchange Server is not without its flaws. The Exchange Server database is hosted in an . EDB file with the potential of getting corrupted. This can be a crippling event as all of your users will suddenly lose access to their mail stores, calendars and contacts. In this article, we'll show you how to perform Exchange disaster recovery and restore your users' email using an end-to-end Exchange recovery tool. Step 1: Download and Install Microsoft Exchange Server Recovery Tool Start the process by installing Stellar Mailbox Exchange Recovery. You can download the . edb recovery tool here (6. 5 MB). After the download is finished proceed with the installation; make sure to download and install it on your Exchange Server and not on your user’s desktop. The process is straight-forward, just keep the default installation options. Step 2: Select Your Exchange Server Database to Begin EDB Recovery The first time you run Stellar Mailbox Exchange Recovery you will be asked to select the EDB file you want to recover. If you are not certain where the file is stored you can use the Find . EDB File feature to automatically scan your drives and locate the likely Exchange database.   You will also need to pick a destination path; this is the directory where the recovered email will be saved, in the form of one PST file for each user found in the Exchange Server database. More about that later! Step 3: Start the Exchange Server Restore Process At this point you are... --- ### Managing Windows Server 2008 Disk Quotas, Part 2 - Published: 2009-01-15 - Modified: 2009-01-15 - URL: https://petri.com/managing-windows-server-2008-disk-quotas-part-2/ - Categories: Windows Server 2008 - Article Type: How To In the previous article in this series, I introduced you to the concept of quota template. Now that I have shown you how to create or modify a quota template, I want to wrap up the series by showing you how to actually implement a disk quota in Windows Server 2008. Implementing Disk Quotas By now you should already be familiar with the File Server Resource Manager, because we used it to create and edit disk quota templates. It should therefore come as no surprise that this is also the tool that you will be using to implement disk quotas. Open the File Server Resource Manager, and then navigate through the console tree to Quota Management | Quotas. When you select that Quotas container, the Details pane will display any existing quotas. Since we haven't actually created any quotas yet there shouldn't be any listed though. To create a new quota, right-click on the Quota container and choose the Create Quota command from the shortcut menu. When you do, Windows will display the Create Quota dialog box, shown in Figure A.   Figure A The Create Quota dialog box is used for implementing disk quotas. As you can see in the figure, the first thing that you have to provide is the file system path that you want to apply the quota to. After you specify a path, you need to tell Windows whether you want to simply apply the quota to the path, or if you... --- ### Exclude VMware Virtual Adapters from Vista/2008 Network Awareness and Windows Firewall > This article explains how to exclude VWware virtual adapters from built in network awareness and firewalls in Windows Vista and Server 2008. - Published: 2009-01-13 - Modified: 2024-09-24 - URL: https://petri.com/exclude-vmware-virtual-adapters-vista-2008-network-awareness-windows-firewall/ - Categories: VMware - Article Type: How To I've been using VMware Workstation to run my virtual machines on my Vista laptop. After being installed, VMware Workstation creates several virtual network adapters which are simply dummy adapters for VMware’s host bridging, which in turn allows the virtual machine to access the host machine’s network. While I like this product very much, one of the nasty annoyances is the fact that after each reboot, the Windows Firewall switches the VMware virtual network adapters from the “public” network profile to a “private” network profile each time I reboot the laptop. Because the VMware virtual network adapters appear to be in a “Public network”, Windows thinks that the whole machine is exposed to a public network, and it triggers the public profile for Windows Firewall. While in most cases this helps protect the entire computer from external access, sometimes you actually need to have external access, and therefore you need to manually change the setting. MSDN has an explanation for this behavior - see Keywords Not Displayed in the User Interface It turns out that Windows Vista automatically identifies and monitors the networks to which a computer connects. However, if the NDIS_DEVICE_TYPE_ENDPOINT flag is set on the network adapter, this means that the device is an endpoint device and is not a connection to a true external network. Because of that, Windows ignores the endpoint device when Windows identifies networks. The Network Awareness APIs indicate that the device does not connect the computer to a network. For end... --- ### Edge Transport Server Security - Firewall Configuration > Brian Posey covers Edge Transport Server Security in this how-to article on proper firewall configuration. - Published: 2009-01-13 - Modified: 2024-09-24 - URL: https://petri.com/edge-transport-server-security-part-1/ - Categories: Exchange Server - Article Type: Overview According to all of Microsoft's marketing hype, one of the goals of the secure computing initiative is to make server secure by default. I would have to agree that the newer Microsoft products tend to be more secure while running a default set up than the product from even a few years ago were. Even so, I have to disagree with the notion of servers being secure by default. There is always something that can be done to make a deployment more secure. Of course this is more of an issue with some types of servers than others. One type of server that you should really focus a lot of attention on securing is an edge transport server. The reason why I say this is that an edge transport server is designed to sit in a DMZ, and filter out potentially malicious messages coming in from the Internet. Because of the server's position within the DMZ, it is more vulnerable to attack than a server on the backend network would be. Fortunately, Microsoft realizes that edge transport servers reside in a dangerous area, and has designed them accordingly. Unlike other types of Exchange servers, which transport servers do not rely on the Active Directory, and are not even domain members. In fact, when you deploy the Edge Transport Server role, you are actually deploying a hardened version of Exchange that is well-suited to the task at hand. So What's the Problem? If Exchange Server is deployed in... --- ### Establishing Group Policies for Outlook 2007 - Published: 2009-01-13 - Modified: 2024-09-24 - URL: https://petri.com/establishing-group-policies-for-outlook-2007/ - Categories: Exchange Server - Article Type: Overview Many years ago, I used to work in the help desk for a large company. At that time, group policies simply did not exist, and there was no way of locking down Windows or a user’s applications. What I found is that many times the problems that users reported with their systems were directly to changes that the users made to various settings. Of course the users rarely owned up to these unauthorized modifications, so the help desk staff had to waste a lot of time looking for the cause of the problem. I have never liked the idea of taking the “Network Nazi” approach to network administration, but at the same time, there is no denying that ensuring that all of your workstations are configured in a consistent manner, and that the users are not able to alter that configuration drives down support costs.   That being the case, I wanted to show you a technique for configuring Outlook 2007 at the group policy level. The Administrative Templates By default, the group policy does not contain any Outlook 2007 specific settings that you can use to lock down Outlook’s configuration settings. Microsoft does however offer a set of administrative templates for Office 2007 (of which Outlook is a part) that you can download for free from Microsoft's site.  You can then use these administrative templates to add Outlook specific settings to the group policy. Applying the Outlook Specific Settings The Office 2007 administrative templates are bundled into a... --- ### Redirect Favorites and Cookies folder using a Group Policy - Published: 2009-01-12 - Modified: 2009-01-12 - URL: https://petri.com/redirect-favorites-cookies-folder-using-group-policy/ - Categories: Windows Server 2008 - Article Type: How To   Here's a great tip submitted by one of our readers - Ziv Shadar. I've uploaded it almost word for word. Thanks Ziv! When using roaming profiles we must understand that a lot of file copying is performed when logging on to and logging off from the workstation. For example, a user can have thousands of little cookie files on his or her user profile, and when copies to and from the profile's location to the user's workstation, they can really slow down your logon. That is why it’s good to redirect cookies to the user’s home folder, because it stops lots of files from being copied every time you logon into a new computer. Favorites are more secure on home folder if you ever need to delete the user profile, and more easy to access, and backup. Both redirections can be done via GPO using a custom ADM file, which I found on the Internet. When properly used, this GPO tattoos the registry and will not revert back when removed, so if you have to change the settings back, you will need to logon and only then it will revert back. Copy the following text and paste it into a new file with the . ADM extension. Save this file on the server in the c:\windows\inf folder.   ​CLASS USER CATEGORY ! ! WindowsComponents CATEGORY ! ! InternetExplorer CATEGORY ! ! IE_Favorites KEYNAME "Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" POLICY ! ! IE_Favorites #if version >= 4 SUPPORTED ! ! SUPPORTED_IE5 #endif EXPLAIN ! ! IE_Favorites_Location_Explain PART ! ! IE_Favorites_Location_Tip1 TEXT END PART PART... --- ### Edge Transport Server Security, Part 2 - Published: 2009-01-12 - Modified: 2024-09-24 - URL: https://petri.com/edge-transport-server-security-part-2/ - Categories: Exchange Server - Article Type: Overview In the first article in this series, I talked about the edge transport server’s role within an Exchange server organization, and I talked about the firewall port requirements associated with an edge transport server. In this article, I want to conclude the discussion by talking about some more techniques that you can use to ensure that security of your edge transport server. The Security Configuration Wizard One of the absolute best things that you can do to secure an edge transport server is to run the Security Configuration Wizard. The Security Configuration Wizard is actually a Windows component. As such, it is completely unaware of Exchange Server, and if not initially contain any Exchange specific settings. Even so, Exchange server 2007 ships with a couple of XML files that can be used to extend the Security Configuration Wizard to make it Exchange Server aware. Installing the Security Configuration Wizard Although the Security Configuration Wizard is an excellent tool for helping you to secure just about any Windows server, it is not installed by default in Windows Server 2003. To install the Security Configuration Wizard, open the server's Control Panel, and double-click on the Add or Remove Programs icon. When you do, Windows will open the Add or Remove Programs window. Click the Add/Remove Windows Components button, and Windows will display a list of the various optional Windows components that you can install. Scroll through the list of components and tell you locate the Security Configuration Wizard option, as shown in... --- ### Tips for Deploying Exchange on a Budget > Learn money-saving tips and strategies for deploying Exchange servers within budget restrains. - Published: 2009-01-11 - Modified: 2009-01-11 - URL: https://petri.com/reducing-exchange-costs/ - Categories: Exchange Server - Article Type: Overview Although the thought of saving money on Exchange 2007 deployment costs is tantalizing, the money that you save may not be such a bargain if the Exchange organization’s performance suffers as a result of the shortcuts that you have taken. In this article, Brien Posey shows you how to estimate the impact of consolidating your Exchange servers. Introduction In a previous article, I suggested virtualization or the consolidation of server roles as a method for minimizing Exchange deployment costs by reducing the number of physical servers and the number of Exchange 2007 licenses that you would be required to purchase. In that article I mentioned that while these techniques usually work really well for small and medium sized companies, there are some performance issues that you have to consider. That being the case, I want to conclude the series by showing you some ways that you can figure out if these approaches will work for your Exchange organization. I also wanted to take the opportunity to mention some other approaches for lowering your deployment costs. The System Center Capacity Planner Any time that you are considering making any sort of major architectural change to your Exchange Server organization, I recommend using the System Center Capacity Planner to get a feel for how those changes are going to affect your Exchange Server deployment. You can download the System Center Capacity Planner from Microsoft here. Unfortunately, the System Center Capacity Planner is a fairly complicated tool, and there is no way that I can show you step by step how to use it within the amount of space that I have to work with. Even so, I wanted to at least mention it. This tool allows you to create a simulation of your proposed Exchange Server installation. You can enter information about your hardware, your user base and the... --- ### Automatically Repair .mdb and .accdb Files with Access Recovery > This guide outlines how to use Stellar Phoenix Access Recovery application to automatically repair access database files. damaged MDB or ACCDB files and recover your Access tables and forms. - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/ms-access-recovery/ - Categories: Office - Article Type: How To This guide outlines how to use Stellar Phoenix Access Recovery application to automatically repair access database files. damaged MDB or ACCDB files and recover your Access tables and forms. Step 1: Download and Install the Access Recovery Application First, you'll need to download and install Access Recovery, available directly here. (2. 5Mb) Once you've downloaded the program, run the install with the default options. Step 2: Locate the Damaged File and Begin the Access Repair Utility Open Stellar Phoenix Access Recovery from the icon on your desktop or your programs menu. On the top left of the toolbar, choose 'Open MS Access File' and navigate to the damaged database file. The browsing window automatically filters for . mdb and . accdb files; making the search even quicker. Select the Open button to add the file location into the wizard. 3. Repair Your Database To proceed with the recovery, select 'Start Repair' from the toolbar or 'File' menu. In the 'Advanced Options' dialogue, choose the location to save your recovered Access file. For easy access afterward, you're able to choose a custom location like your 'Desktop' as the destination. Important Note: By default, your recovered database will not overwrite your existing one. Instead, if your original database was named Data. mdb the recovered file would be called Recovered_Data. mdb. Select 'OK' The recovery utility will now run through and repair and restore your corrupt file. As it does, you'll see its progress in the bottom half of the application window. Once complete, a final dialogue will... --- ### DelDate - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/deldate/ - Categories: Administrative Tools and Scripts - Article Type: Overview Description This command deletes all files from the specified directory that were last modified prior to the number of dates specified. The utility is very useful when scheduled to delete old log files. Important: No spaces are to be specified in the directory path. Use MS-DOS style short names. Requirements: Windows NT4/2000/XP/2003 Download Download (4kb) You need to extract the tool/script found in the downloaded file by using WinZip or similar. Syntax ​DelDate Example: ​DelDate c:'logs 60 This sample would deletes all files in c:'logs that were last modified 60 days ago or earlier. Detailed Instructions Place DelDate. exe in your system path folders. Use the above syntax. Support No support of any sort will be given for this script/tool or for any other script/tool found on the Petri. co. il website for that matter. If you need to contact us with any support issues, feedback or suggestions regarding the tool(s) and script(s) found on this page please write an e-mail to THIS address. Disclaimer The software available from GanoTools is FREEWARE. It is not in the Public Domain. Asaf Ganot retains the copyright for this work. You can use it freely but do not claim it for your own or charge others money for it. Use these tools at your own risk. They are provided for your own personal use and enjoyment and Asaf Ganot nor Daniel Petri nor Petri. co. il do not provide any warranty for them, nor they will be held responsible for any result allegedly caused by use or... --- ### Self-Service Updates for Active Directory and the Global Address List - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/directory_update_tool/ - Categories: Active Directory (AD) - Article Type: Overview Directory Update - Update your Active Directory and Global Address List (GAL) information One of the most annoying daily tasks that help desk personnel and user account administrators face each day is keeping their user’s information updated in the Active Directory. The time involved in making just a few changes a week for a small organization will quickly add up to a lot of time spent each year just to make sure basic information in the Active Directory is current. Daniel's recommendations If you are looking to really master Active Directory (or other Networking skills), I strongly recommend that you try Train Signal.  I've discovered this company a few months ago and I always send people their way because the training is so good. You can see more HERE. Daniel Petri Keeping Active Directory information correct and current is important for organizations that use Microsoft Exchange Server for a couple of reasons. The first and most important is for organizations that use their Active Directory as a corporate white pages service. Users depend on the Global Address List (GAL) to retrieve information (telephone numbers, fax numbers, department, title, address, etc... ) about their co-workers.   Users can now easily retrieve the Global Address List from not only all versions of Outlook, but Outlook Web Access and Windows Mobile devices. User frustration and support calls results when the information they require is no valid. The second reason that up-to-date information in the Active Directory is essential is that Exchange address lists... --- ### Disable NetBIOS in W2K/XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_netbios_in_w2k_xp_2003/ - Categories: Networking - Article Type: How To NetBIOS is an ancient session-level interface and transport protocol developed by IBM to network together PCs. It is a broadcast-based, non-routable and insecure protocol, and it scales poorly mostly because it was designed with a flat namespace. Since the late 1980s Microsoft has adopted NetBIOS for their LAN Manager product, and from there it found its way into early versions of Windows and all the way into Windows NT. Since Windows 2000 however, DNS has become the default name resolution method for Windows-based networks and is required if you want to deploy Active Directory domains, as seen in the How to Install Active Directory on Windows 2000, Install and Configure Windows 2000 DNS Server to Prepare for AD and the How to Install Active Directory on Windows 2003 articles. Although Windows 2000, Windows XP, and Windows Server 2003 provide for the ability to disable NetBIOS over TCP/IP (NetBT), many corporate networks will remain reluctant to do so because of the fact that most of them still have legacy (Windows 9x or Windows NT) machines on their network. These machines need NetBIOS to function properly on a network because they use NetBIOS to logon to domains, find one another, and establish sessions for accessing shared resources. But for networks that are "free" of legacy systems you may want to consider disabling the NetBT transport altogether on all computers (it can be easily accomplished by using DHCP) or at least on critical file and print servers. In order to... --- ### Download DirectX 9.0c - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_directx_90c/ - Categories: Downloads - Article Type: Overview Where can I download DirectX 9. 0c? Microsoft DirectX 9. 0 for home users will update your current version of DirectX - the core Windows technology that drives high-speed multimedia and games on the PC. Typically, any title that uses DirectX will install the version of DirectX it requires in order to run. Therefore, you generally should not need to download DirectX 9. 0 in order to get your programs to run. That said, it does not hurt to install DirectX 9. 0. Some of the new functionality built into DirectX 9. 0 may even enhance the quality and performance of your existing titles. Additionally, many game demos do not come with DirectX, so you may need to install DirectX 9. 0 if you plan to play the latest demos. DirectX 9. 0c End-User Runtime (10kb-16. 6mb) - Use this setup if you're connected to the Internet when installing DirectX. DirectX 9. 0c Redistributable for Software Developers - Multilingual (Supported on Windows 2000, Windows 98, Windows ME, Windows XP) (34. 1mb) - The DirectX 9. 0c Redist is recommended for those user that do not have internet connection during installation. Use this setup if you want to download the DirectX pack and save it for future installations. You'll need to extract the necessary files from this big pack. Note: You can customize the way DirectX works by running the command dxdiag. exe from the Run menu. Links IE 6. 0 SP1 DirectX homepage DirectX on MSDN Microsoft DirectX 9. 0 Downloads on MSDN --- ### Download ISA Server SP1 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_isa_server_sp1/ - Categories: Security - Article Type: Overview Where can I download ISA Server 2000 Service Pack 1? Internet Security and Acceleration (ISA) Server 2000 fixes are distributed in service packs. Installing the latest service pack keeps your installation of ISA Server 2000 current. Service packs include updates and fixes that are conveniently bundled for easy downloading. Service packs are cumulative; each new service pack contains all of the fixes that are included in previous service packs, as well as any new fixes. You do not have to install a previous service pack before you install the latest one. ISA Server 2000 Service Pack 1 (2. 8mb) Release Date: February 18, 2002 Note: This is the latest version of ISA Server 2000 SP1. You can install this version in ISA Server 2000 with or without the version of SP1 that was released on January 15, 2002. Microsoft previously recommended that customers not using the Simple Mail Transfer Protocol (SMTP) Filter should continue to use the original version of SP1. If you installed SP1 before January 24, 2002, Microsoft strongly recommends that you install the latest build of SP1 over the previous build on all computers running ISA Server. There is no need to install the previous build of SP1 before installing version 3. 0. 1200. 166. Follow these steps to determine which version of SP1 you have installed: On the Start menu, point to Programs, then point to Microsoft ISA Server, and click ISA Management to start the ISA Server management console. Click to expand Internet Security and Acceleration Server, then Servers... --- ### Download Windows 2000 SP4 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_w2k_sp4/ - Categories: Downloads - Article Type: Overview Where can I download Windows 2000 Service Pack 4? SP4 is a collection of updates for Windows 2000. You can install SP4 either from the Service Pack 4 CD or from the Microsoft Windows 2000 Service Pack 4 Web site. SP4 contains updates for the following areas of Windows 2000 functionality: Security Operating system reliability Application compatibility Windows 2000 Setup SP4 also includes: The updates contained in Service Pack 1, Service Pack 2, and Service Pack 3 for Windows 2000 Microsoft Internet Explorer 5. 01 Service Pack 4 Microsoft Outlook Express 5. 5 with Service Pack 2 You can use either the Express installation or the Network installation to install Microsoft Windows 2000 Service Pack 4 (SP4). Note: Either installation you choose will have the same result of installing SP4. If you are a home user and want to quickly update this computer only, choose SP4 Express Installation (faster). If you are a corporate administrator who wants to install SP4 on multiple computers or combine it with an installation of Windows 2000, hotfixes, or both, choose SP4 Network Installation (slower). When you have chosen an installation method make sure you stop real-time virus checkers just before you start the installation (they interfere with the installation process). For more information about the installation of SP4, see Readme for Windows 2000 Service Pack 4 Note: If you have not installed a previous Windows 2000 service pack, you need to install only Windows 2000 SP4 to get all of the Windows 2000 updates... --- ### Enable Alcatel SpeedTouch Pro with Static Port Mapping - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/enable_alcatel_speedtouch_pro_with_static_port_mapping/ - Categories: Alcatel - Article Type: How To How to configure Alcatel SpeedTouch Pro with Static Port Mapping? In the previous tip I've explained how to convert your Alcatel SpeedTouch Home ADSL modem to the PRO version. After you've done that you might want to begin some serious network configuration. To be able to access your LAN from outside you'll have to configure NAT (Network Address Translation) on your modem. I won't go into explaining what NAT is and what it's good for. That will come later. I'll assume you know what you want, and this tip will only tell you how to do it, not why. Let's say you have the following LAN configuration: Computer OS Software IPs and Ports PRO1 Windows XP Pro Remote Desktop 10. 0. 0. 100:3389 (TCP) SRV1 Windows 2000 SRV Exchange 2000 10. 0. 0. 200:25 (TCP) 10. 0. 0. 200:110 (TCP) 10. 0. 0. 200:80 (TCP) Terminal Services (TSWEB) 10. 0. 0. 200:80 (TCP) IIS 10. 0. 0. 200:80 (TCP) 10. 0. 0. 200:21 (TCP) Let's say you need to make all of the above services and applications available from the Internet. Reasons for doing so might be: Receive SMTP mail destined for your domain (if you have one and if you have an MX record for it) Connect to your Exchange Server via OWA Send to and receive mail from your Exchange Server via Outlook Express Have a small web page for your customers Have a small FTP site for your use Control your Server and XP computers from Terminal Services and RDP clients There may be other reasons and other applications you'd want to use but we'll stick to those... --- ### Enable Telnet on Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/enable_telnet_on_windows_2003/ - Categories: Networking - Article Type: How To Windows Server 2003 has the Telnet disabled by default (and so good that it does! ) To have the Telnet service running on Windows Server 2003 follow the next steps: Go to the Services applet in Administrative Tools (or click Start, then Run, and type "services. msc" (without quotes) and click OK). Find the "Telnet" service, right-click and select Properties, select "Automatic" instead of "Disabled" in the startup type box. Click Apply. Right-click the "Telnet" service and select Start. Click OK. You can also modify start state and start it from a Command Prompt console by using the following command: ​sc config TlntSvr start= auto and sc start TlntSvr or net start TlntSvr Configuration for Pre-W2K/XP/2003 Clients: The Telnet server requires NTLM authentication by default. To deactivate this and use only password authentication, use the tlntadmn command: ​tlntadmn config sec=-NTLM Also, switching to streams mode may make display easier for Unix/Linux clients. Do this with the following command: ​tlntadmn config mode=stream --- ### Extract Specific Tools from Adminpak.msi - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/extract_specific_tools_from_adminpak_msi/ - Categories: Windows Client OS - Article Type: How To How can I extract only specific Snap-ins from the Adminpak. msi? Installing the adminpak. msi will install all of the tools found in it without prompting you which tool to install. You can, however, run the installation from the Command Prompt or from the Run menu, and choose which tools to extract and install. For example: If you wish to extract only the AD MMC Snap-ins from the Adminpak. msi file, use the following command syntax: ​msiexec /i adminpak. msi ADDLOCAL=FeADTools /qb (Where FeADTools is the abbreviation for "Active Directory Tools". This will install only the AD-related MMC Snap-Ins). Note: Make sure there is no space between the ADDLOCAL and the "=" character, and between the "=" character and the FeADTools switch. Note: The adminpak. msi file is not available on the Windows 2000 Professional or Windows XP Pro CD-ROM, but you can install it from the Windows 2000/2003 Server CD-ROM or download it from Microsoft's web site see links at the bottom of this page). Other abbreviations are: FeRRASConsole - Routing and Remote Access FeDHCPConsole - DHCP FeDNSConsole - DNS FeDFSConsole - Distributed File System FeWINSConsole - WINS FeTAPIConsole - Telephony FeACSConsole - QoS Admission Control FeCERTConsole - Certification Authority FeClusterConsole - Cluster Administrator FeCMAKConsole - Connection Manager Administration Kit FeIASConsole - Internet Authentication Service FeIISConsole - Internet Information Services FeRSConsole - Remote Storage FeTSClientConsole - Terminal Services Client FeTSMgrConsole - Terminal Services Manager You can install adminpak. msi directly from the Windows 2000/2003 Server CD media or find it in the... --- ### Forgot the Administrator Password - Alternate Method - The LOGON.SCR trick - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/forgot_administrator_password_alternate_logon_trick/ - Categories: Security - Tags: Editor's Pick - Article Type: How To Forgot the Administrator password - Alternate Method - The LOGON. SCR trick This is another trick that will easily work in Windows NT 4. 0 and some versions of Windows 2000. The principal is that you need to install a second instance of your OS to your HD, then manipulate the default screen saver (the one that's used if you don't move your mouse while the CTRL-ALT-DEL box appears) for the original OS. NoteThe information found on this page is valid ONLY for Windows NT 4. 0, and for some earlier versions of Windows 2000 (prior to more advanced service packs). DO NOT ATTEMPT TO TRY THIS ON WINDOWS XP PRO MACHINES, you will only waste your time. Update: You can also discuss these topics on the dedicated Petri. co. il Forgot Admin Password Forum. Windows Server 2003 Domain Admin password This tip will NOT work for Windows Server 2003. This is because of changes in the service account with which the process runs. In Windows 2000 it was run in the Local SYSTEM account (LSA) privileges, while in Windows Server 2003 it is run with the LOCAL SERVICE account, thus resulting in far less privileges than it used to have in W2K and NT 4. 0. The reason 2 new account have been introduced in 2003 is that SYSTEM Account has way too many power over the system and the system could be compromised by exploiting almost any system service. The Microsoft's solution was to introduce 2 less powerful accounts (LOCAL SERVICE... --- ### GFI Network Server Monitor 7 - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/gfi_network_server_monitor/ - Categories: Networking - Article Type: Review GFI Network Server Monitor 7 New GFI Network Server Monitor 7 enables enhanced complex monitoring tasks for small, medium and large enterprises.   London, UK, 20 October 2005 – GFI today announced the release of GFI Network Server Monitor 7, developed to meet the needs of enterprises of all sizes. The new upgrade features a new component that allows enhanced configuration and status monitoring that automatically identifies and resolves issues before users report them. GFI Network Server Monitor 7 also supports a number of enhancements that enable administrators to monitor status checks in distributed architectures, in addition to sending SMS alerts through third party email to connected SMS gateways. Advanced automated checks GFI Network Server Monitor 7 can monitor the status of a check by mimicking administration operations. The software can check the status of a terminal server by automatically logging in as the administrator, and carrying out administrator operations to monitor servers including IMAP, POP3 and SMTP. Standard monitoring checks such as email delivery can be replaced with automatic checks to provide administrators with a more realistic assessment of network performance. Enhanced SMS functionality Administrators can now be alerted to a network failure by SMS text message through a range of channels, including through an SMS message to a connected GSM mobile, or network fax servers such as GFI FAXmaker to an SMS gateway service. The upgrade also alerts administrators to a network failure through the Clickatell web email facility, or by any other third party email to SMS gateways. For backward... --- ### Hyper-V beta embedded inside Windows Server 2008 RTM - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/hyperv-beta-embedded-inside-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: Overview A few days ago, on the 4th of February 2008, Microsoft has finalized the Windows Server 2008 code, declaring it Ready to Manufacture (RTM) – Read more about it on my "Windows Server 2008 is RTM" article. Unlike in any previous product in Microsoft's history, for this release Microsoft took an unusual step by including a beta version of its upcoming hypervisor Hyper-V (also known as Windows Server Virtualization – or WSV) inside this RTM image of Windows Server 2008. Although it is only available for x64 platforms, customers that don't want the beta hypervisor inside their operating system can download a different version of Windows Server 2008, called "Windows 2008 without Hyper-V". Here the complete list of available SKUs: x64 Standard/Enterprise/Datacenter Editions - Hyper-V included (server role and management console) x86 Standard/Enterprise/Datacenter Editions - Hyper-V partially included (management console only) x64 Standard/Enterprise/Datacenter Editions - Hyper-V not included x86 Standard/Enterprise/Datacenter Editions - Hyper-V not included x86/x64 Web Edition - Hyper-V not included For more information on these versions, visit:Microsoft Windows Server 2008 Edition Summaries Windows Server 2008 Without Hyper-V EditionsThe Hyper-V build included inside the RTM is the same released in December and was included in Windows 2008 Release Candidate 1 (RC1). This beta version of Hyper-V has several critical features customers were looking for: Quick Migration and support for host-level HA (up to 16 nodes) Out-of-the-box integration with Windows Server 2008 Server Manager (no more separate installation like in RC0) Support... --- ### Implementing Hyper-V in Windows Server 2008 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/implementing-hyper-vision-hyperv-windows-server-2008/ - Categories: Hyper-V - Article Type: Overview When it comes to file and application servers, often times the server hardware is grossly underutilized. In fact, many servers only use about ten percent of the hardware’s total capacity. For several years now, Microsoft and various third party companies have offered server virtualization solutions that allow you to run multiple server instances on a single physical computer. When Microsoft released Windows Server 2008, they introduced a new feature called Hyper-V. Hyper-V is a server virtualization role that is designed to be the successor to Microsoft’s Virtual Server 2005. As you might expect though, Hyper-V uses completely different installation and configuration methods than its predecessor did. In Part 1 of this series on Windows Server 2008 Virtualization, we learned about Planning for Windows Server 2008 Virtualization. In Part 2 in this series, I will show you how to install the Hyper-V role on Windows Server 2008. In the next article in the series, I will show you how to actually create a virtual server that can run in a Hyper-V environment. Update – January 2009 – from Daniel Petri Hyper-V is a virtualization platform from Microsoft, originally available as Beta 3 on the RTM installation DVD of Windows Server 2008, but the RTM update for Hyper-V is now available for download or from Windows Update (after July 8, 2008). In order to get the Hyper-V role on Windows Server 2008 you need to install this update. The update package consists of the Hyper-V role, including the x64 version... --- ### How do I install and configure a new Windows 2000 DNS server within an existing DNS environment where Active Directory is not enabled? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/install_and_configure_a_new_w2k_dns_server/ - Categories: DNS - Article Type: How To To create a new Windows 2000 DNS Server, you must install Windows 2000 Server or Advanced Server on a server that is attached to your network. Because DNS is not installed by default during installation of Windows 2000 Server or Advanced Server, you have to install DNS on the server. You can install the Windows 2000 DNS service either during the installation of Windows 2000 Server or Advanced Server, or after the initial installation. If your existing environment already has a DNS domain and an existing DNS infrastructure, and Active Directory is enabled, you can delegate a sub-domain of your existing DNS domain to the Windows 2000 domain. The Windows 2000 DNS server must already be installed to complete the following step. With an existing DNS domain, you can delegate a sub-domain from the existing DNS server to the Windows 2000 DNS server. For example, if your domain name is mycompany. com, you can create a sub-domain with the name windows2000. mycompany. com. The Windows 2000 DNS server has authority over that sub-domain. To create the sub-domain, configure the DNS server to use one of the organization's main DNS servers as a forwarder. A forwarder provides recursive lookups for any queries that the DNS server receives that it cannot answer based on its local zones. After you set up the forwarder, the Windows 2000 DNS server is responsible for resolving any queries for computers or resources that are contained within its own local domain. Any queries beyond this range, however, are forwarded directly... --- ### Install Remote Desktop Web Connection on Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_remote_desktp_web_connection_on_windows_xp/ - Categories: Networking - Article Type: How To Remote Desktop Web Connection is an optional World Wide Web Service component of Internet Information Services, which is included by default in Windows XP Professional, Windows 2000 and Windows Server 2003. Just like IIS, Remote Desktop Web Connection is not installed by default on Windows XP/2003, but must be installed using Add or Remove Programs. The Remote Desktop Web Connection is an optional component of Windows XP Professional and can be installed from the Windows XP installation media. Note: Users of Windows Server 2003 do not need to download this package. They can manually add this package from Add/Remove in the Control Panel. However, if you still want to download the package please read Download Remote Desktop Web Connection for Windows Server 2003. When you install Remote Desktop Web Connection, the files are copied by default to the %systemroot%\Web\Tsweb directory of your webserver. The included sample default. htm and connect. asp page can be used as is, or you can modify them to meet the needs of your application. The Remote Desktop Web Connection is a Win32-based ActiveX control (COM object) that can be used to run Remote Desktop sessions from within Internet Explorer. The Remote Desktop Web Connection download package includes the downloadable ActiveX control and sample Web page that can be used as a starting point for running Windows-based programs inside Internet Explorer. Developers can also use the Remote Desktop Web Connection to develop client-side applications that interact with applications running on a terminal server. The downloadable... --- ### Installing Hyper-V on Windows Server 2008 Server Core - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/installing-hyper-v-on-windows-server-2008-server-core/ - Categories: Windows Server 2008 - Article Type: How To The Server Core installation option of the Windows Server 2008 operating system installs a minimal server installation of Windows Server 2008 to run supported server roles, including the Hyper-V role. When you select the Server Core installation type option, the Windows setup program installs only the files that are required for the supported server roles. For example, the Explorer shell is not installed as part of a Server Core installation. Instead, you must configure the server locally using the command line. You can read more information about Server Core on my "Understanding Windows Server 2008 Server Core" and "Managing Windows 2008 Server Core Local Settings" articles. The benefits of using the Hyper-V on a Server Core installation include a reduced attack surface, reduced management, and reduced maintenance. After you have enabled the Hyper-V role on Server Core, you can manage the Hyper-V role and virtual machines remotely using the Hyper-V management tools. The management tools are available for Windows Server 2008 and Windows Vista Service Pack 1 (SP1). Download Hyper-V is a virtualization platform from Microsoft, originally available as Beta 3 on the RTM installation DVD of Windows Server 2008, but the RTM update for Hyper-V is now available for download or from Windows Update (after July 8, 2008).   In order to get the Hyper-V role on Windows Server 2008 you need to install this update. The update package consists of the Hyper-V role, including the x64 version of the remote management tools, and integration services for the... --- ### ISA Server Feature Pack 1 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/isa_server_2000_feature_pack_1/ - Categories: Patches and Service Packs - Article Type: Overview ISA Server 2000 Feature Pack 1 ISA Server Feature Pack 1 delivers enhanced security and ease of use beyond that of traditional firewalls for e-mail server, Web server and Exchange Outlook Web Access (OWA) deployments. E-mail server security is enhanced by the improved ability to help filter out unwanted e-mail messages. ISA Server with Feature Pack 1 provides protection for remote Outlook users accessing Exchange Server over untrusted networks without a VPN. Improved authentication and protection from evolving types of Internet attacks enables ISA Server to better secure Web and OWA servers. New wizards, scenario walkthroughs and technical documentation make configuration easier and answer commonly asked questions. Included in ISA Server Feature Pack 1: Enhanced SMTP filter Enhanced Exchange RPC filter (RPC encryption and Outbound RPC) URLScan 2. 5 for ISA Server RSA SecurID authentication Basic authentication delegation OWA wizard RPC filter configuration wizard Link translator Scenario walk-throughs and technical documentation There are seven ISA Server Feature Pack 1 downloads in all. They are: docs. zip - Scenario walk-throughs and technical documentation isafp1. exe - ISA Server Feature Pack 1 main download isafp1_readme. htm - Release notes for ISA Server Feature Pack 1 isafp1sd. exe - ISA Server Feature Pack 1 Web filter for RSA SecurID (requires isafp1. exe) isafp1ur. exe - ISA Server Feature Pack 1 URLScan filter (requires isafp1. exe) securID_readme. htm - Release notes for ISA Server Feature Pack 1 Web filter for RSA SecurID urlscan_readme. htm - Release notes for ISA Server Feature Pack 1 URLScan filter Read more... --- ### MCAP Certification – More Info - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/mcap_certification_more_info/ - Categories: Windows Server - Tags: certification - Article Type: Overview MCAP stands for Microsoft Certified Architect Program, a program Microsoft has devised in order to identify top industry experts in IT Architecture. These recognized professionals must have 10 or more years of experience, possess strong technical and leadership skills and form an elite community. Unlike other IT certifications, this credential was built and is granted by industry architects, as candidates must pass a rigorous review board with previously certified architects. The certification itself will involve no written tests (unlike the current MS certifications which rely primarily and absolutely on written exams). Rather, candidates must demonstrate their skills and knowledge by creating architectures that solve complex business problems and then present their solutions to a board of their peer architects. This certification is targeted to practicing solutions architects and infrastructure architects who have successfully applied frameworks and methodologies to create an architecture that serves the entire IT lifecycle. These architects can employ multiple technologies to solve business problems and provide business metrics and measurements to describe the success or failure of the projects they drive. A candidate for the program will have to have a broad-based knowledge that extends well beyond Microsoft technologies. It is expected that only about a quarter of the emphasis of a candidate's knowledge will be on Microsoft-related architecture technologies; the rest will relate to general architecture principles and best practices that aren't Microsoft specific. In addition, the non-technical skills domain that candidates will face throughout the process will be broad, including such knowledge areas as project... --- ### Microsoft Action Pack Subscription – What it is and Why you Need it - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/ms_action_pack_subscription/ - Categories: Windows Server - Article Type: Overview Microsoft Action Pack Subscription – What it is and Why you Need it Many MCSE students and serious IT Professionals set up their own test networks to learn the latest and greatest in software that Microsoft has to offer.  In my opinion, there is no better way to learn Microsoft Networking than to actually plan, build and administer your own network.  One problem that most students come across is getting all of the software that is necessary to setup and build your own network.  Yeah, you can use evaluation copies but they are not available for all products and are also a hassle to deal with.  You can also purchase the software for your home network but this also is not very practical and will cost you thousands of dollars just to set up a “practice” network. Let me offer you an alternative; a Microsoft Action Pack Subscription (enter the full name into Google and you will see multiple listings for it).  A Microsoft Action Pack Subscription (MAPS for short) provides you with a CD Case/Holder FILLED with valuable Microsoft software, basically just about everything that they make. For example, the April 2009 quarterly update content includes: Microsoft Virtual PC 2007(via download) Windows Small Business Server 2008 Standard Edition(localized versions) Windows Essential Business Server 2008 Standard Edition(localized versions) Microsoft Hyper-V Server 2008(via download) Microsoft System Center Data Protection Manager 2007 SP1(via download) Microsoft System Center Essentials 2007 SP1(via download) I am talking about full working copies of Microsoft software (take a look... --- ### Obtain a Digital Certificate from an Online Certificate Authority (CA) - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/obtain_digital_certificate_from_online_ca/ - Categories: Security - Article Type: How To How do I obtain a Digital Certificate from my Certificate Authority (CA)? This article will describe the 2 most popular methods for obtaining a Digital Certificate from your online Certificate Authority (or CA). I will not elaborate on the reasons for doing so, and if you feel uncomfortable about these issues I suggest you take a look at the related articles at the bottom of this page. As stated above, there are 2 easy methods for obtaining a Digital Certificate from your online CA. Digital Certificates can be granted to users based upon their roles and group membership. For example, a regular user that wants to enroll for a certificate will only be allowed to enroll for a specific set of Digital Certificates, while another user that is a member of the Domain Admins group will be allowed to enroll for a different set of certificates that can be used for a variety of functions, including Recovery Agents, IPSec, SSL and so on. User Digital Certificates are valid for different purposes, including: Allowing data on disk to be encrypted Protecting e-mail messages Proving the user's identity to a remote computer Method #1 - By using a custom MMC In this method a user will need to open a custom MMC and enroll by use of the MMC GUI. In order to obtain a Digital Certificate by use of a custom MMC please perform the following steps: Go to the Start menu > Run > type MMC and... --- ### Planning for Windows Server 2008 Virtualization - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/planning-for-windows-server-2008-virtualization-hyperv/ - Categories: Hyper-V - Article Type: Overview The concept of server virtualization has been around for quite a few years now, but it seems to just now really be taking off.   The basic idea behind server virtualization is that many servers tend to be grossly underused.   It is not uncommon for a server to only use about 10% of its hardware resources.   Virtualization allows a single physical server to run multiple guest operating systems as a way of making more efficient use of the hardware. Virtualization in Windows Server 2008 In Windows Server 2008, Microsoft includes a virtualization technology called Hyper-V. The biggest advantage that Hyper-V offers over its predecessor (Virtual Server 2005) is that it offers full 64-bit support.   In fact, only 64-bit versions of Windows Server 2008 support Hyper-V. Hyper-V is capable of running both 32-bit and 64-bit guest operating systems. Although it is fairly easy to deploy Hyper-V and the guest operating systems that run on it, you're going to need to do some planning beforehand in order to make sure that your server is up to the job.   Although servers tend to be underutilized, utilization can go way up when you start running multiple operating systems.   As such, hardware planning is critical. Hardware Planning for Hyper-V I have already mentioned the 64-bit requirement, but Hyper-V also requires virtualization support from the underlying hardware.   The reason for this is that most virtualization technologies work by piggybacking the guest operating systems on top of the host operating system.   Although this technique works,... --- ### Publishing OWA 2003 with ISA Server 2004 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/publishing_owa_with_isa2004/ - Categories: Exchange Server - Article Type: How To How can I publish OWA 2003 with ISA Server 2004? Publishing OWA 2003 with an internal certificate (issued by an unknown/un-trusted CA) Internet Security and Acceleration Server 2004 has made a significant breakthrough in publishing Secured web-sites in general and Outlook Web Accesses specifically. We don't need another exchange server for use as a front-end server if the only job we need it for is protecting our internal exchange server which holds our mailboxes. Before we begin the publishing process, we need to make sure we already have Form-Based OWA, already working with SSL (See Configuring OWA 2003 with SSL). In case the ISA server is not part of the domain, the first stage should be installing CA-Root certificate of the Enterprise CA on the trusted root certificates on the ISA server. If the ISA server is a part of the domain (which is not recommended for security reasons), you can skip to the next stage. Open the Certificates snap-in (Start > Run > MMC) on the Certificate Authority Server for the local computer, and under "Trusted Root Certification Authorities, click certificates. Right click your Enterprise CA Certificate and click export. On the Welcome screen, click Next. On the Export File format window, choose DER encoded binary x. 509, and on the next screen, save the file to a specified location. Copy the exported certificate to the ISA server, and open Certificates snap-in on the local machine (ISA server). Go to Trusted root certification authorities, right click the... --- ### How can I quickly edit the items in the Quick Launch toolbar in Windows Vista? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/quickly_edit_quick_launch_icons_in_windows_vista/ - Categories: Windows Vista - Article Type: How To How can I quickly edit the items in the Quick Launch toolbar in Windows Vista? As you may have known already, Windows Vista has a cool option that enables you to Quickly Add Quick Launch Icons in Windows Vista. Quick Launch is a toolbar that can be added to the task bar on Windows 2000/XP/2003 and Vista, and it can be used to launch any application, document or shortcut you may want. Launching applications in this manner is much faster then having to go through the Start menu and clicking your way around. You just place your shortcut or application in the Quick Launch toolbar, and then you can fire it away with just one click. I've used Quick Launch for many years now, and have really gotten used to it. However, when I had the need to edit some of the icons that were in it, and to manually change some settings in it, I saw that Windows Vista treats the Quick Launch in a different way that it used to in previous OS versions. You see, the Quick Launch is in fact a folder. As you've seen in my Quickly Edit Quick Launch Icons in Windows XP/2003 article, it can be opened and used to manually edit and add items to it. However instead of placing the Quick Launch folder in the same place as in Windows 2000/XP/2003, Windows Vista places the folder in a different spot: ​"C:UsersDanielAppDataRoamingMicrosoftInternet ExplorerQuick Launch" You can... --- ### Quickly Search Active Directory from the Desktop - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_search_active_directory_from_the_desktop/ - Categories: Windows Client OS - Article Type: How To How can I quickly perform search operations in AD from my desktop? No problem. Create a new shortcut on your desktop with the following command: ​%SystemRoot%SYSTEM32rundll32. exe dsquery,OpenQueryWindow Give it a name and run it. This is what you'll get: You can also configure a specific search option, such as a subset of the entire domain (one specific OU to search in, for instance), or a specific search operation, such as a Shared Folder search, or a Printer search: After configuring the search criteria you can save the customized search to your desktop, and thus easily create a "Search Printers" or "Shared Folders Search" icon. You can also easily change the icon for each search option and choose a better icon for each search option. Related articles You might also want to read the following related articles: Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Printers and Fax Icon to the Desktop in XP/2003 Add Scanners and Cameras Icon to the Desktop in XP Pro Add Scheduled Tasks Icon to the Desktop in XP/2003 Add Spell Checking to Internet Explorer Change or Add OEM Logo and Information Create Taskpads for Active Directory Operations Customize a New XP Installation Customize Command Prompt in Windows XP/2000/2003 Customize the Places Bar in Office XP Delete the Recycle Bin Icon from the Desktop in XP/2003 Disable Shared Documents Folder in Windows XP Extract Specific Tools from Adminpak. msi... --- ### Recover Lost Product Keys for Windows 2000, XP, 2003 - CD-Key Recovery for Windows 2000, Windows 2003, and Windows XP - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/recover_lost_product_keys_for_windows_2000_xp_2003/ - Categories: Windows Client OS - Article Type: How To One of the biggest nags for an IT administrator facing the need to format and reinstall a Windows-based operating system is the need to recover that system's Product ID (or CD-Key). Normally you'd find the Product ID for the installed Windows OS either on the computer's sticker (found on the bottom of a laptop, or on the side or back panels of a desktop computer), or on the installation media itself (for older OSs). Two cool and freeware tools come to mind when trying to recover the seemingly lost Product ID. The first is ProductKey by Nirsoft, and the other is Magical Jelly Bean Keyfinder. Both do not require any installation and will easily allow you to view local Product IDs and in many cases – Product IDs or remote computers. ProduKey ProduKey is a small utility written by Nir Sofer (who's wonderful freeware tools can be downloaded on his website at http://www. nirsoft. net), that displays the Product ID and the CD-Key of Microsoft Windows 2000/XP and 2003 operating systems, Microsoft Office products, Microsoft Exchange and SQL Servers. The nice thing about this (freeware) tool is that you can view this information for your current running operating system, or for another operating system/computer on your network by using command-line options. In order to start using it, just run the executable file - produkey. exe. The main window of ProduKey displays the list of Windows, Office, and SQL Server products installed on your system. For each product, the "Product ID"... --- ### Remote Version Checking through SMTP/POP3/IMAP4 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/remote_version_checking/ - Categories: Exchange Server - Article Type: How To How can I tell what build is my Windows/Exchange server? It's quite easy to forget which builds your servers are running. Here's a quick way of telling which OS build and Exchange version is running on a remote server: Operating System TELNET to the SMTP port (25) and look at the banner returned. 5. 0. 2195 - Windows 2000 6. 0. 3663 - Windows 2003 RC1 6. 0. 3718 - Windows 2003 RC2 6. 0. 3790 - Windows 2003 RTM Exchange Server TELNET to the SMTP/POP3/IMAP port (25/110/143) and look at the banner returned. 6. 0. 6249. 0 - Exchange 2000 SP3 6. 5. 6728. 0 - Exchange 2003 Beta 1 6. 5. 6803. 0 - Exchange 2003 Beta 2 6. 5. 6851. 0 - Exchange 2003 RC0 6. 5. 6595. 0 - Exchange 2003 RC1-Candidate 6. 0. 3790. 0 - Exchange 2003 RTM Note: The dot build (italicized) reported by the Exchange protocols will not normally reflect the exact build number you installed. This is because dot builds only contain the actual files changed/fixed since the major version was released. Related articles You might also want to read the following related articles: Block Incoming Internet Mail to Specific Users or Groups Change the IMAP4 Banner Change the POP3 Banner Change the SMTP Banner Configure IIS to be a Smart Host for Exchange Configure MX Records for Incoming SMTP E-Mail Traffic Message Protocols Used by Exchange 2000/2003 Ports used by Exchange Server Preventing Exchange 2000/2003 from Relaying Quickly Send Email Messages Send Mail from Script Send Mail (from the Tools and Scripts section) SMTP, POP3 and Telnet in Exchange 2000/2003 Test... --- ### Restore Ntbackup Backups from Windows XP to Windows Vista - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/restore_ntbackup_backups_to_windows_vista/ - Categories: Windows Vista - Article Type: How To Lately I began to use Windows Vista on my laptop computer, needless to say that one of the basic and first tasks that one will stumble upon when switching operating systems is the need to safely restore files and items from the old machine to the new one. Although Windows Vista comes with a file and setting transfer wizard called Windows Easy Transfer (see attached image), I find it too slow for my personal use. I know what I need to transfer, and I know where to find it. It so happens that some of the files I needed for my Vista laptop were lost when I re-formatted my old Windows XP laptop. Luckily for me, I've made a backup of all my personal files and documents using Windows XP's Ntbackup software, and backed that file to DVD. Now the question that comes up is how to use the . BKF media created by Windows XP's Ntbackup, on Windows Vista. You see, Windows Vista comes with a different backup and restore program called Backup Status and Configuration (sdclt. exe). Although the new backup software is better suited for home users and inexperienced users, it is built in a way that it will not allow manual configurations of WHAT to backup, nor does it include any means of restoring any backups other than the ones that were created by it. Read more about it in my "Using Backup Status and Configuration in Vista" article. So, how is a user supposed to... --- ### Saved Queries in Windows Server 2003 AD Users & Computers - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/saved_queries_in_windows_2003_dsa/ - Categories: Active Directory (AD) - Article Type: Overview How can I use the new Saved Queries capabilities in Windows Server 2003 AD Users & Computers? Windows Server 2003 AD Users and Computers has a new built-in feature called "Saved Queries". With the Saved Queries feature we can now create our LDAP-based search strings and have them saved for future use, either in the DSA. MSC snap-in itself, or as XML files that can be used in other computer (no, the saved queries you've just created are not replicated to any other computer or DC, they're local to the computer you've created them on). Before this new feature, Windows 2000 Active Directory administrators had the option to create LDAP search strings via the AD Users and Computers tool, however these queries could not saved for future use. This wouldn't have been a great disaster had the built-in find tool been totally customizable, but unfortunately, that was (and still is) not the case. As seen in my LDAP Search Samples for Windows Server 2003 and Exchange 2000/2003 article, most regular LDAP searches can be easily done via the provided GUI (such as in a new Address List filter), however there are instances where the provided GUI does not give us the needed flexibility. For example, you cannot use the GUI to create a search that uses the Boolean word "OR", you can only create searches that use "AND" as their filter. In those cases, if you wanted to create a filter that finds users that are either in... --- ### Send To Notepad Shortcut - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/send_to_notepad_shortcut/ - Categories: Windows Client OS - Article Type: How To How can I quickly send files to Notepad for quick editing? This is one of my favorite tweaks, and it will amaze you how you lived all these years without knowing it (or did you? you wouldn't be here if you did... ) The easiest way of all is to do the following: Go to %SystemDrive%documents and settings%username%sendto (or WindowsSendTo in Win9X). Right-click in the right hand panel and select New > Shortcut Create a new shortcut to Notepad. exe in the sendto folder. Now if you right-click any REG, TXT, VBS, CMD, DAT, NFO etc. file, you can choose the Send To menu and send the file to Notepad which will immediately open it for editing. BTW, you can do this with any Notepad replacement you're currently using. Read Free Notepad Replacements for more info. --- ### The Art and Science of Sizing Exchange 2003 (Part 2) - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/sizing_exchange_part_2/ - Categories: Exchange Server - Article Type: How To The Art and Science of Sizing Exchange 2003 (Part 2) Storage is the most critical component of an Exchange back-end server and it’s usually the cause of performance degradation. If your users are complaining about frequent Outlook messages saying that it’s trying to retrieve data from the Exchange Server, that’s probably a storage bottleneck. A good Exchange planning with proper disk sizing can prevent this kind of problems from happening. Note: This article is published with permission from www. msexchange. org The Disk Subsystem Sizing the disk subsystem is the most complex and critical task, since this component is the most common cause of bottlenecks. During the next lines I’ll try to show you how to estimate your storage requirements and how to correctly size your back-end server to handle that load. But before starting the calculations, let’s take a look at some of the most common storage technologies available: Technology Description DAS – Direct Attached Storage It’s the most basic level of storage and the most common technology for small/medium servers. Storage devices are local to the host computer, as internal drives, or directly connected to a single server, as with RAID arrays or tape libraries. The disks can be SCSI, Fibre-Channel or ATA/SATA. SAN – Storage Area Network It’s the technology of election for enterprise solutions. Data is kept separate from the servers, connected trough a high performance, dedicated network. Fibre-Channel, a gigabit network technology, is primarily used, but SCSI or iSCSI can be used as well... --- ### Summer clock in Israel for 2006 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/summer_clock_in_israel_for_2006/ - Categories: Windows Client OS - Article Type: Overview Summer clock (Daylight Savings Time or DST) in Israel for 2006 On the 30th of March 2006 Israel will be switching to Daylight Savings Time (aka "Summer clock"). For those of you who don't know, because of various political reasons, the Israeli government keeps shifting the DST entry and exit points each year, which causes a great pain in the back-end for us IT people. That's right ! Israel is rather special when it comes to summer clock - the actual dates of summer clock's beginning and ending are decided every year in Knesset, so we, the sysadmins, every year have to update our environment with the new settings. Since 2005 a law exists that regulates the beginning and end of the DST period in Israel. The law tells us when the DST period begins based on the international calendar, but because of religious reasons, the exit point of the DST is based upon the Hebrew lunar calendar (the DST always ends at 2 AM on a Sunday between Rosh Ha'Shana and Yom Kippur Hebrew holidays). This year's dates are: Beginning: Last Friday of March, or March 30th, 2006 at 2 AM End: Sunday, October 1st 2006 at 2 AM Note for Exchange users: Make sure you read the Calendar Issues later in this article BEFORE applying any changes. Note for Windows Vista users: Using the following method on the latest (or any, I didn't check) build of Windows Vista might cause some issues with the time zone settings. You... --- ### Understanding FSMO Roles in Active Directory - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/understanding_fsmo_roles_in_ad/ - Categories: Active Directory (AD) - Article Type: Overview What are the FSMO Roles in Active Directory? Windows 2000/2003 Multi-Master Model A multi-master enabled database, such as the Active Directory, provides the flexibility of allowing changes to occur at any DC in the enterprise, but it also introduces the possibility of conflicts that can potentially lead to problems once the data is replicated to the rest of the enterprise. One way Windows 2000/2003 deals with conflicting updates is by having a conflict resolution algorithm handle discrepancies in values by resolving to the DC to which changes were written last (that is, "the last writer wins"), while discarding the changes in all other DCs. Although this resolution method may be acceptable in some cases, there are times when conflicts are just too difficult to resolve using the "last writer wins" approach. In such cases, it is best to prevent the conflict from occurring rather than to try to resolve it after the fact. For certain types of changes, Windows 2000/2003 incorporates methods to prevent conflicting Active Directory updates from occurring. Windows 2000/2003 Single-Master Model To prevent conflicting updates in Windows 2000/2003, the Active Directory performs updates to certain objects in a single-master fashion. In a single-master model, only one DC in the entire directory is allowed to process updates. This is similar to the role given to a primary domain controller (PDC) in earlier versions of Windows (such as Microsoft Windows NT 4. 0), in which the PDC is responsible for processing all updates in a given domain... . --- ### Microsoft Virtual Hard Disk Test Drive Program - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/vhd_test_drive_program/ - Categories: Virtualization - Article Type: Overview Work with the Microsoft Virtual Hard Disk (VHD) Test Drive Program Great new resource from Microsoft: The Virtual Hard Disk Test Drive Program. The VHD Test Drive Program is designed to help customers to install and configure complex environments for the purpose of evaluating Microsoft and partner products and solutions. Currently, customers can either download evaluation software, which often takes time to install and configure the applications to evaluate a specific scenario or customers can use the Virtual Labs to evaluate software over Internet (Read more about the TechNet Virtual Labs). With VHDs that are fully configured, customers can save time and resources by downloading pre-configured images of Microsoft's software and operating systems. Microsoft partners can now offer their prospective/current customers greater choice during the software evaluation process for mainstream applications and make it easier to evaluate complex solutions through the distribution of pre-configured virtual machines that can run on Virtual Server 2005 R2. You can also use System Center Virtual Machine Manager, now available as a beta, to manage all the virtual machines in your environment. As of November 2006, the available VHDs are: Windows Server 2003 R2 - Windows Server 2003 R2 helps to simplify branch server management, can improve identity and access management, helps to reduce storage management costs, provides a rich Web platform, and offers cost-effective server virtualization. In this VHD, you'll have the opportunity to road-test new and improved features and functionality of Windows Server 2003, including management and usability enhancements to... --- ### Aero Theme is Bad, Disable It - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/vista_aero_performance_issues/ - Categories: Windows Vista - Article Type: How To With the new Aero Theme Microsoft introduced 3D look to windows, something that Mac OS X users have had for quite a while. With Aero, the user can view the 3rd dimension of a window by flipping the window by pressing the Windows Logo key + TAB. The overall appearance of the Windows Vista desktop changed. In order to run Aero you need to have a high speed processor, at least 512 MB RAM, DirectX 9. 0 compatible graphics card with minimum 128 MB RAM, and a high RPM hard disk. Based on my current laptop hardware specs I knew I had enough to run Aero. And indeed, Aero has automatically enabled itself. Quite impressive (it's not the first time I've worked with Aero, but I usually disable it, as you will soon learn why). I looked at my Task Manager and I was NOT impressed to see that it was using quite a lot of memory. Looking at the Processes tab I noticed a process called Desktop Window Manager (or DWM). It responsible for the graphical effects such as live window previews and a glass-like frame around windows (Aero Glass), but the main problem is that it doesn't do that without draining your CPU. Just look: This is a screenshot of the Task Manager before the Aero Theme is turned on. Never mind that running Vista with just the basic installed services and NO application running except Task Manager and the screen capturing utility (SnagIt) consumes way too... --- ### What's Network Setup Wizard in Windows XP? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/whats_network_setup_wizard_in_windows_xp/ - Categories: Networking - Article Type: Overview The Network Setup Wizard sets the proper permissions on shared folders, adds required keys to the registry, configures protocols and binds them to network cards, enables or disables the Internet Connection Firewall, and adjusts system policies so that file sharing works properly over the network. You should run the Windows XP Network Setup Wizard on every system that’s connected to your network. Doing so is the only reliable way to ensure that your network has the proper baseline configuration. Afterward, you can manually adjust settings and enable or disable features as required. If your network includes one computer that you want to use as an Internet Connection Sharing host (ICS, see Configuring ICS on Windows XP), be sure to configure the Internet connection on that computer first, and then run the Network Setup Wizard on that computer. If all your networked computers have separate Internet connections, or if you use a router or residential gateway to share an Internet connection, you can start with any computer. To start the Network Setup Wizard, open Control Panel, double-click Network Connections, and then click the Set Up A Home Or Small Office Network link under Network Tasks in the left pane. This choice is also available in the My Network Places folder. To use the Network Setup Wizard, follow these steps: Click Next to skip past the Welcome screen. Click Next again to move past the Before You Continue screen. The Select A Connection Method page appears. Choose one of... --- ### What's Windows Product Activation? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows-product-activation/ - Categories: Windows Client OS - Article Type: Overview What is Microsoft (or Windows) Product Activation (or WPA for short)? Windows Product Activation (or WPA) is Microsoft's attempt to make sure that one copy of Windows XP is used on only one box. More specifically, to ensure that each CD-key is used to install Windows XP on only one box. It makes up a string based on the hardware you're running and asks that you register that string with your CD-key at MS. This means that if you change your hardware too dramatically, you are forced to re-activate Windows. Product Activation technology is being included in several Microsoft products, including Microsoft Office XP and Windows XP. This technology is aimed at reducing software piracy as well as ensuring that Microsoft's customers are receiving the product quality that they expect. There are many forms of piracy, including counterfeiting, hard disk loading, and Internet pirating. The goal of Product Activation is to reduce a form of piracy known as "casual copying" or "softlifting. " Casual copying is the sharing of software between people in a way that infringes on the software's end user license agreement (EULA). An example of casual copying is if someone were to obtain a copy of Office XP and load it on his or her PC, then share it with a second person who loaded it on his or her PC, and so on. This form of piracy has been estimated by some industry trade groups to account for a staggering 50 percent of the... --- ### Windows 2003 ADPrep - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/windows_2003_adprep/ - Categories: Active Directory (AD) - Article Type: Overview What do I need to do to prepare my Windows 2000 forest for the installation of the first Windows Server 2003 DC? Before you can introduce Windows Server 2003 domain controllers, you must prepare the forest and domains with the ADPrep utility. ADPrep /forestprep on the schema master in your Windows 2000 forest. ADPrep /domainprep on the Infrastructure Master in each AD domain. ADPrep is located in the i386 directory of the Windows Server 2003 install media. UPDATE: For Windows Server 2008, please refer to our Windows Server 2008 ADPrep article Note: In Windows Server 2003 R2, ADPrep is not located in the same folder as in the older Windows Server 2003 media, and instead you need to look for it in the second CD. You see, Windows Server 2003 R2 comes on two installation disks. Installation disk 1 contains a slip-streamed version of Windows Server 2003 with Service Pack 2 (SP2). Installation disk 2 contains the Windows Server 2003 R2 files. The correct version of the ADPrep. exe tool for Windows Server 2003 R2 is 5. 2. 3790. 2075. You can find the R2 ADPrep tool in the following folder on the second CD: drive:CMPNENTSR2ADPREP (where drive is the drive letter of your CD-Rom drive) Read more about ADPrep and Windows Server 2003 R2 in KB 917385 Exchange 2000 note: Please make sure you read Windows 2003 ADPrep Fix for Exchange 2000 before installing the first Windows Server 2003 DC in your existing organization. Microsoft recommends that you have at... --- ### Windows Server 2003 Gold (RTM) Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_server_2003_gold_patches/ - Categories: Windows Server 2003 - Article Type: How To Windows Server 2003 Gold (RTM) Patches You should consider installing Service Pack 1 as soon as possible During March 2005 Microsoft released SP1 for Windows Server 2003. SP1 is the latest collection of updates for Windows Server 2003. To download SP1 for Windows Server 2003: Download Windows Server 2003 SP1 Network Installation (329mb) The Network Installation is ideal for IT professionals installing SP1 on multiple computers. SP1 is also available via the Windows Update site See the Windows 2003 SP1 Slipstreaming page for info on how to integrate SP1 into your existing media. Required Patches Windows Server 2003, Standard and Enterprise editions, require the following security-related patches: Make sure you read Internet Explorer 6 on Windows Server 2003 Patches before you go on. October 2005 MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706) MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) MS05-044 : Vulnerability in the Windows FTP Client Could Allow File Transfer Location Tampering (905495) August 2005 MS05-043 : Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423) MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and... --- ### How to use the Cisco IOS Policy-Based Routing Features - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how-to-use-cisco-ios-policy-based-routing-features/ - Categories: Cisco - Article Type: How To The use of a dynamic routing protocol on a company's WAN and LAN is standard practice today. Whether you use OSPF or EIGRP to automatically determine the path that your traffic takes, at some point, for some reason, you may want to direct that traffic for yourself. In this article, we will learn what Policy-based routing is, how it can help you, and what a basic configuration looks like. What is Policy-based Routing? With policy-based routing (which we will call PBR from here on out), you get the option to implement policies that selectively cause packets to take different paths. Additionally, PBR can mark packets so that certain types of traffic get prioritized. One example of PBR is, say that your OSPF routing protocol says that a packet with a destination of 10. 1. 1. 1 should go out interface e0/0, you could create a policy so that packets destined to 10. 1. 1. 1, instead, go out interface e1/0. Or, you could make this happen ONLY when the source of that packet was 192. 168. 1. 1. How does policy based routing work? If you look at the Cisco IOS Order of Operations, Policy routing always happens BEFORE regular routing. What policy routing does is to inspect the traffic on the interface where the policy is applied and then, based on the policy, make some decision. First, the traffic has to be identified "matched" according to the policy. Second, for each match, there is something "set". What is set could be that the traffic matches must... --- ### Veeam's New Backup Application for VMware ESX Server - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/veeam-backup-vmware-vmware-esx-server-replication/ - Categories: VMware - Article Type: Overview There haven't been a lot of companies offering VMware VMFS backup applications, up until this point. Recently, Veeam, the company that offers FastSCP, has introduced Veeam Backup. In this article, learn what Veeam Backup has to offer and how it can help you backup your VMware Infrastructure. Who is Veeam? Veeam is a software company, dedicated to offering software tools to help manage virtualized environments – specifically solutions for VMware ESX Server. Veeam is best known for their FastSCP secure file transfer program, tailored for VMware ESX Server. Over time, they have come out with a number of different VMware ESX Server add-ons such as Veeam Reportor, Veeam Configurator, and Veeam Monitor. Still, they offer FastSCP, RootAccess, and their VMware Stencils for free. Most well known VMware backup solutions From going to VMware trade-shows and from talking with other VMware Admins, the two most well known VMware ESX Backup programs are: Vizioncore’s vRanger Pro and esXpress from PHD. Besides being the most well know, these two programs are also the most proven in the mind of VMware system administrators. Because these two applications and companies are so ingrained into VMware administrators, I was surprised to see a new offering from Veeam. New from Veeam – Veeam Backup Veeam Backup is a new VMware ESX Server / VMFS backup application. According to Veeam, what makes it unique is that it can perform backup, restore, replication, data de-duplication, replication rollback, and integration with VCB – all in one product... --- ### Installing Windows Vista in VMware Server - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_installing_vista_under_vmware_server/ - Categories: VMware - Article Type: How To VMware Server is the perfect place to test Microsoft Windows Vista. That is because VMware Server is free to download and you don't want to install Vista over your existing operating system. Vista is a significant upgrade to Windows XP and there are so many changes. In the perfect world, installing Vista under VMware would be without issue. However, the world is not perfect and neither is installing Vista under VMware Server. In this article, I will show you how I installed Vista under VMware Server and how to resolve a major issue I ran into. What I started with For the tasks I performed in this article, I started with the following: Microsoft Windows Vista Enterprise in an ISO file VMware Server 1. 0 Desktop PC with 2GB of RAM Creating the Virtual Machine Prior to the actual installation, you must create a virtual machine inside VMware to house the Vista system. To do this, I went to File, New, Virtual Machine. I clicked Next and took the default of Typical. I found that VMware does now have an option for Vista and Vista x64 as valid "machine types". I selected Vista from the drop down of machine type, like this: From here, I clicked Next, typed a name for my new Vista Test machine (called "Vista Test", how original). I clicked Next and Next again to select bridging as my network connection. Next, I took the default to allocate 16GB of disk space for the guest... --- ### VMware or Virtual PC - Which Product is Right For You? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_vmware_virtualpc_compared/ - Categories: Virtualization - Article Type: Opinion Whether you would like to use virtualization on your desktop PC or on a server farm, you must choose a virtualization product. The two most popular virtualization products are EMC’s VMware and Microsoft’s Virtual PC/Server. So how do you choose the right product for your needs? Let’s find out... Understanding Your Needs No matter what your needs, it is very likely that either VMware or Virtual PC/Server can do the job. In my opinion, the key to choosing the right product is understanding your needs. What is it that you want to do with virtualization? Do you want to have a test network on your desktop PC? Do you want to do software development? What features are needed? How many servers will you run concurrently? How much RAM is required? What operating systems will be run in the virtual systems? The answers to these questions will help you choose the right class of virtualization product. Choosing the Class of Virtualization Product Once you take a look at your needs, you will be able to better choose the class of virtualization product you need. For example, if you just want to run a test Windows 2003 server and Windows XP workstation, on their own private network, on your local desktop PC, then you should choose a desktop virtualization product. Examples of these are VMware Workstation and MS Virtual PC. Both of those applications are designed to be run on a local desktop. On the other hand, if you... --- ### Creating a Wireless Network Group Policy, Part 1 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/creating-wireless-network-group-policy-part-1/ - Categories: Windows Server 2008 - Article Type: How To One of the things that always seems weird about wireless networking is that companies typically go to great lengths to make sure that their wireless networks are secure, but often times do nothing to ensure that employees are actually connecting to the correct network. In fact, I recently received an e-mail from someone who had worked diligently to make sure that their network was secure. One of the users on their network ended up with a rather serious malware infections. An inspection of the users browser cache revealed that the user had been surfing adult websites. At first, the administrator was a little bit confused because software was in place to prevent access to these types of sites. Further investigation revealed that the user was circumventing network security by simply attaching to an unsecured wireless network down the street. Fortunately, it is possible to prevent this type of behavior by setting some group policies. In this article, I will show you how. How is it Possible? The first time that I ever heard about wireless group policies, the concept kind of messed with my mind. After all, it seems a little bit strange to be able to set a group policy that regulates wireless access when the wireless access point is not even aware of your Windows domain, and is certainly not subject to any group policy settings. The reason why group policies can be used to regulate wireless access, is that they can be applied to... --- ### Performance Monitoring The Easy Way, Part 1 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/performance-monitoring-easy-way-part-1/ - Categories: Windows Server 2008 - Article Type: Overview The Windows Performance Monitor has been around in one form or another since the days of Windows NT.   Even so, this is one tool that I rarely see anyone use in the real world.   I suspect that the reason for this is probably that the Performance Monitor tends to be both tedious and difficult to use, and it is useless unless you know how to interpret the results.   Of course interpreting the results practically requires a Ph. D. in computer science.   Okay, not really, but there are well over a thousand Performance Monitor counters built into Windows, and most Microsoft applications also add their own Performance Monitor counters on top of this. Another reason why I think that so few people actually use that Performance Monitor in real life situations is because there are tools available that can monitor Performance Monitor counters for you, and interpret the results in a way that is easier to understand than looking at the raw numbers that are generated by the Performance Monitor. Even so, I personally believe that performance monitoring is becoming far more critical than it ever has been in the past.   The reason why I say this is because today there is a huge shift towards the use of virtual machines.   In a virtual server environment, multiple virtual machines reside on a single physical machine.   As I'm sure you probably have heard, the main reason why virtualization has become so popular is because most server hardware is underutilized.   Virtualizing... --- ### Using Exchange Management Shell to Configure Content Filtering - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using-exchange-2007-management-shell-configure-content-filtering-part1/ - Categories: Exchange Server - Article Type: Overview One of the things that I've always found interesting about Exchange Server 2007 is that the Exchange Management Console was built on top of the Exchange Management Shell.   As such, anything that you can do through the console can also be done from a command line.   For the most part, I have always preferred to use a graphical user interface to accomplish administrative tasks, but there are times when using the GUI isn't practical. For example, it's easy to think of content filtering as a set it and forget it proposition.   However, some organizations may find themselves constantly making adjustments to the content filters as the spam flow dictates.   If an organization happens to have a lot of servers, then fine tuning the spam filters can turn into a really big job.   Fortunately, Exchange Server 2007 makes it relatively easy to create a script that you can use to set up content filtering on a server.   In this article, I will show you how. Before I Begin Before I get started, I just want to quickly mention that Exchange Server 2007 offers an extensive number of anti spam mechanisms.   As such, there is no way that I can possibly cover all of them within the confines of an article.   As such, I'm going to show you some of the basic techniques that you can use to configure content filtering from the command line. Viewing the Current Configuration The first thing that you'll probably want to do is... --- ### Delete IE7 History From the Command Line - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/delete-ie7-history-from-command-line/ - Categories: Windows Server 2008 - Article Type: How To When cloning a computer running Windows XP, 2003, Vista or 2008, one of the tasks that you should perform before running SYSPREP is to delete the Internet Explorer 6 history, stored passwords, offline files and cookies. Same goes when preparing a computer for transfer to another user, or simply requiring that previous user data be deleted. Through the usual IE GUI One method of performing this task is by using the IE7 GUI. Open Internet Explorer, and from the Tools menu, open Internet Options. Go to the General tab, and in the Browser History section, click on the Delete button. In the Delete Browser History window, click one of the following buttons, based upon your requirements: Temporary Internet Files > Delete files – To delete copies of web pages, images, and media that  are saved for faster viewing. Cookies > Delete cookies – To delete cookies, which are files stored on your computer by websites to save preferences such as login information. History > Delete history – To delete the history of the websites you have visited. Form data > Delete forms – To delete all the saved information that you have typed into forms. Passwords > Delete passwords – To delete all the passwords that are automatically filled in when you log on to a website you've previously visited. Delete all – To delete all of the above in one operation. By using a command However, sometimes it is much easier to simply run a command line... --- ### Disable Administrative Shares - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/disable_administrative_shares/ - Categories: Windows Client OS - Article Type: How To How can I disable the Administrative Share creation in Windows NT/2000/XP/2003? Every Windows NT/W2K/XP/2003 machine automatically creates a share for each drive on the system. These shares are hidden, but available with full control to domain administrators. The drive letter, followed by the $ sign is the name, and it is shared from the root. When trying to attain a highly secure network, you may wish to address this potential security issue by disabling these shares, or at least restricting their permissions to specific users or services.   The default-hidden shares are: C$ D$ E$ - Root of each partition. For a Windows NT workstation/W2K/2003/XP Professional computer only members of the Administrators or Backup Operators group can connect to these shared folders. For a Windows NT Server/W2K Server computer, members of the Server Operators group can also connect to these shared folders. ADMIN$ - %SYSTEMROOT% This share is used by the system during any remote administration of a computer. The path of this resource is always the path to the W2K/NT system root (the directory in which W2K/NT is installed usually C:Winnt and in XP it's C:Windows). FAX$ - On W2K Server, this used by fax clients in the process of sending a fax. The shared folder temporarily caches files and accesses cover pages stored on the server. IPC$ - Temporary connections between servers using named pipes essential for communication between programs. It is used during remote administration of a computer and when viewing a computer's shared resources... . --- ### Disable Password Requirements in Windows Server 2003 Domains - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/disable_password_requirement_in_win2003_domain/ - Categories: Active Directory (AD) - Article Type: How To How can I disable the password requirement for a user in a Windows Server 2003 Active Directory domain? Windows Server 2003 provides security policies that ensure that all users select strong passwords. Creating a password policy involves setting the following options in the Default Domain Group Policy object. These policies, with the exception of those settings related to password lifetime, are enforced on all users in a domain. The default password filter (Passfilt. dll) included with Windows Server 2003 requires that a password: Is not based on the user’s account name. Contains at least six characters. Contains characters from three of the following four categories: Uppercase alphabet characters (A–Z) Lowercase alphabet characters (a–z) Arabic numerals (0–9) Nonalphanumeric characters (for example, ! $#,%) As stated above, this policy is enabled by default. In some occasions, such as testing, lab-building, classes and so on, you might want to disable this built-in requirement. Security Warning: Bare in mind that this setting can only be enabled/disabled at the domain level, and NOT on an OU level. Disabling the password requirement for an entire domain will lower your security configuration, and should only be done when absolutely necessary. In order to disable this requirement you need to edit the Default Domain Policy for your domain. Go to Administrative tools folder. Double-click on the Default Domain Security Policy icon. Note: If for any reason you don't see that icon you can still edit the Default Domain Group Policy from the AD Users and Computers snap-in,... --- ### How can I prevent users from writing to USB removable disks (USB flash drives)? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_writing_to_usb_disks_in_xp_sp2/ - Categories: Disk Management - Article Type: How To USB removable disks (also known as flash drives or "Disk on Key" and other variations) are quickly becoming an integral part of our electronic life, and now nearly everybody owns one device or another, in forms of small disks, external hard drives that come enclosed in cases, card readers, cameras, mobile phones, portable media players and more. Portable USB flash drives are indeed very handy, but they can also be used to upload malicious code to your computer (either deliberately or by accident), or to copy confidential information from your computer and take it away. Microsoft has introduced some changes into Windows XP Service Pack 2 that allow an administrator some control over how USB Removable Disks (or flash drives) are handled. A new storage device policy named WriteProtect makes it possible to prevent all removable USB drives from being written to. Users can still read from these devices, but are not longer able to write to them. This tweak will only work in Windows XP SP2 and above. You can also Disable Writing to USB Disks with GPO. Block writing to USB Removable Disks To block your computer's ability to use USB Removable Disks follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlStorageDevicePolicies Create the following value (DWORD): WriteProtect and give it a value of 1. Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete... --- ### Download Windows XP Reskit Tools - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_xp_reskit_tools/ - Categories: Downloads - Article Type: Overview Where can I get the Windows XP Support Tools? The Windows XP Resource Kit Tools are a set of software tools for administrators, developers, and power users to manage Active Directory, Group Policy, TCP/IP Networks, Registry, Security, Scalability and many other areas of the Windows XP operating system. Note: I recommend using the Windows Server 2003 Support Tools instead, as they are newer than the XP ones and include a few new tools. The Windows Support Tools for Windows XP can be installed only on a computer that is running the Windows XP operating system. The Windows Support Tools for Windows XP cannot be used to upgrade Microsoft Windows NT or Microsoft Windows 2000 Support Tools installed on Windows NT or Windows 2000. Since Windows XP SP2 came out, a newer version of the Support Tools is available for download, see link below. The following Support Tools have been updated in Service Pack 2: bitsadmin. exe extract. exe httpcfg. exe iadstools. dll ipseccmd. exe netdom. exe replmon. exe Note: The original XP Reskit tools are available on the XP installation CD in the 'support'tools directory. Supported Operating Systems: Windows Server 2003, Windows XP Windows XP 2600 Windows XP SP1 and SP2 Windows Server 2003 family (3790) Plus, 30 MB of free disk space are needed for the installation. Download the Windows XP Support Tools (4. 8mb - smaller download from Microsoft, missing the Deployment Tools and some features) Download the Windows XP Support Tools (12. 5mb) Download the (12. 5mb - local... --- ### Enable Theme Support in Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/enable_themes_on_windows_2003/ - Categories: Windows Client OS - Article Type: How To How can I enable theme support in Windows Server 2003? Windows Server 2003 has the theme support services disabled by default. To enable themes on Windows Server 2003 follow the next steps: Go to the Services applet in Administrative Tools (or click Start, then Run, and type "services. msc" (without quotes) and click OK). Find the "Themes" service, right-click and select Properties, select "Automatic" instead of "Disabled" in the startup type box. Click Apply. Right-click the Themes service and select Start. Click OK. You can also modify start state and start it from a Command Prompt console by using the following command: ​sc config Themes start= auto and sc start Themes or net start Themes For now you only have Luna Blue, Silver and Olive Green to choose from. Go to Control Panel, select Display and then go to the Appearance tab. In the "Windows and Buttons" drop-down list select "Windows XP Style". Click Ok. Now you can choose the color scheme. --- ### Free Packet Sniffers for Windows 2003/Vista/2008 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/free-packet-sniffers-for-windows-2003-vista-2008/ - Categories: Windows Server 2008 - Article Type: Overview A packet sniffer is usually used to analyze network traffic. The reason for using a packet sniffer (or simply called "sniffer") is to configure the NIC to work in a mode called "promiscuous" mode. Without going into that mode, Ethernet network interface cards normally work in a "filter" mode that ignores all traffic that doesn't belong to it. By working in "promiscuous" mode we are allowing the capture of ANY frame that is transmitted on the wire, even though it is not destined for that NIC. With that said, a packet sniffer is a actually wire-tap device that plugs into a computer networks and eavesdrops on the network traffic. Note: The word "sniffer" is a registered trademark by Network Associates referring to the "Sniffer(r) Network Analyzer". However, the term "sniff" is used in many other products (some of which are listed in this document) and the term "sniffer" is more popular in everyday usage than alternatives like "protocol analyzer" or "network analyzer". Typical uses of packet sniffer programs include: Automatic sifting of clear-text passwords and usernames from the network. Used hackers/crackers in order to break into systems Conversion of data to human readable format so that people can read the traffic Fault analysis to discover problems in the network, such as why computer A can't talk to computer B Performance analysis to discover network bottlenecks Network intrusion detection in order to discover hackers/crackers Network traffic logging, to create logs that hackers can't break into and erase You can... --- ### Grant Full Mailbox Rights to an Administrator on Exchange 2000/2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/grant_full_mailbox_rights_on_exchange_2000_2003/ - Categories: Exchange Server - Article Type: How To How do I grant the administrator(s) (or any other user) full mailbox right on Exchange 2000/2003 mailboxes? In Microsoft Exchange Server 5. 5, when you grant Service Account Admin privileges on the Site container to a Microsoft Windows account, you grant that account unrestricted access to all mailboxes. Because Exchange 2000 and Exchange Server 2003 do not use a service account, even accounts with Enterprise Administrators rights are denied rights to access all mailboxes, by default. This means that Exchange Full Administrators do not have the right to open any mailbox found on any server within the Exchange organization. In fact, if your logon account is the Administrator account or is a member of the Domain Admins or Enterprise Admins groups, then you are explicitly denied access to all mailboxes other than your own, even if you otherwise have full administrative rights over the Exchange system. However, unlike Exchange Server 5. 5, all Exchange 2000/2003 administrative tasks can be performed without having to grant an administrator sufficient rights to read other people's mail. This default restriction can be overridden in several ways, but doing so should be in accordance with your organization's security and privacy policies. In most cases, using these methods is appropriate only in a recovery server environment. Granting right to a specific mailbox Use the following procedure to grant access to an Exchange 2000 or an Exchange 2003 mailbox: Note: You must have the appropriate Exchange administrative permissions to do so. Start Active Directory Users and... --- ### How to Disable SMB 2.0 on Windows Vista/2008 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/how-to-disable-smb-2-on-windows-vista-or-server-2008/ - Categories: Windows Server 2008 - Article Type: How To Server Message Blocks Protocol (SMB) is the file sharing protocol used by default on Windows-based computers. SMB 1. 0 was designed for early Windows network operating systems such as Microsoft LAN Manager and Windows for Workgroups, but until Windows Server 2008 and Vista, all Microsoft-based operating systems continued to use it more or less in its original format. SMB 2. 0 was introduced in Windows Vista and Windows Server 2008. SMB 2. 0 is designed for the needs of the next generation of file servers. Windows Server 2008 and Windows Vista support both SMB 1. 0 and SMB 2. 0 in order to preserve backward compatibility. Some of the enhancements in SMB 2. 0, include: Sending multiple SMB commands in the same packet which reduces the number of packets sent between a client and server Larger buffer sizes Increased scalability, including an increase in the number of concurrent open file handles on the server and the number of shares that a server can share out Support for Durable Handles that can withstand short network problems Support of Symbolic Links Testing done with copying large files between Windows Vista and Windows Server 2008, and then Vista to Windows 2003, have shown that by using SMB 2. 0 the file copying was, in averege, 2 times faster than with older operating systems. However, while SMB 2. 0 seems to do a good job if BOTH client and server OSs support it, in some cases it will slow things down. The reson for this is that the version... --- ### IconZone - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/iconzone/ - Categories: Administrative Tools and Scripts - Article Type: How To Description This utility changes desktop icons, start-menu icons and quick-launch icons as well as proxy settings whenever the computer's IP address is changed. It is also capable of running scripts whenever the IP address changes. Here are a number of usage scenarios: Configure a laptop computer to automatically set the organizational proxy server as the internet proxy server whenever the laptop is connected to the office LAN and disable the proxy settings when the user is disconnected. Configure a laptop computer to display an outlook shortcut on the desktop when the laptop is connected to the office LAN and replace it with a web-access internet shortcut when the laptop is disconnected Configure to run a script that sends an administrative notification whenever the computer is connected to the LAN. These are only few samples. You could use IconZone in many ways to enhance user experiment and automate your network. Requirements: This tool requires Windows 2000, Windows XP or Windows Server 2003. Download Download (106kb) You need to extract the tool/script found in the downloaded file by using WinZip or similar. Installation First, download IconZone and expand it into any location on your hard drive. Note: It is recommended not to use a temporary directory but a permanent directory such as C:Program filesIconZone. Click Start a Run and Type the path to IconZone. exe with the /Setup argument. For example: ​C:Program filesIconZoneiconzone. exe /setup If IconZone is not configured to launch automatically when windows starts, the following screen will appear:   If... --- ### Import Virtual Machines from Virtual Server to Hyper-V with VMC2HV - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/import-virtual-machines-virtual-server-hyper-v-vmc2hv/ - Categories: Hyper-V - Article Type: How To Matthijs ten Seldam, who has developed VMRC+ (see my Manage Virtual Server Machines with VMRC Plus article for more info), has released a new tool that helps import Virtual Server or Virtual PC virtual machines to Hyper-V. You see, the VHD file is compatible between the two, but the configuration file format has changed. While System Center Virtual Machine Manager (SCVMM) 2008 can also accomplish the same task, SCVMM is not free, while VMC2HV is. VMC to Hyper-V Import Tool, or VMC2HV for short, imports the configuration from a Virtual Machine Configuration (VMC) file used in Virtual Server 2005 or Virtual PC 2007, and converts it to the format used by Hyper-V. The tool reads the VMC file and maps all relevant properties to those used by Hyper-V. For those properties that did not exist, it provides additional options. The properties that no longer exist are ignored. VMC2HV not only imports the configuration but lets you adjust almost any setting before creating the VM in Hyper-V. Prior to using VMC2HV, when you wanted to move a virtual machine from Virtual Server 2005 or Virtual PC 2007 to Hyper-V, you had to take the VHD hard disk file and move/copy it to the Hyper-V server, and then instead of just adding the virtual machine, you had to create a totally new one, enter all the right hardware settings, and use the original VHD file as the virtual machine's hard disk. This manual process can by quite annoying and it... --- ### How do I install and configure Windows 2000 DNS server? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_and_configure_w2k_dns_server/ - Categories: DNS - Article Type: How To The Domain Name System (DNS) is the Active Directory locator in Windows 2000. Active Directory clients and client tools use DNS to locate domain controllers for administration and logon. You must have a DNS server installed and configured for Active Directory and the associated client software to function correctly. This article guides you through the required DNS configuration. Install Microsoft DNS Server Click Start, point to Settings, and then click Control Panel. Double-click Add/Remove Programs. Click Add and Remove Windows Components. The Windows Components Wizard starts. Click Next. Click Networking Services, and then click Details. Click to select the Domain Name System (DNS) check box, and then click OK. Click OK to start server Setup. The DNS server and tool files are copied to your computer. Continue to the next step to configure the DNS server. Configure the DNS Server Using DNS Manager These steps guide you through configuring DNS by using the DNS Manager snap-in in Microsoft Management Console (MMC). Click Start, point to Programs, point to Administrative Tools, and then click DNS Manager. You see two zones under your computer name: Forward Lookup Zone and Reverse Lookup Zone. The DNS Server Configuration Wizard starts. Click Next. If the Wizard does not auto-start, right-click your server name object in the DNS Manager console and choose Configure your Server. Choose to add a forward lookup zone. Click Next. The new forward lookup zone must be a primary zone so that it can accept dynamic updates. Click Primary,... --- ### Install VM Additions on Windows Vista Beta and Virtual Server R2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_vs_r2_vm_additions_on_windows_vista_beta/ - Categories: Windows Vista - Article Type: How To How can I install the Virtual Server R2 VM Additions on Windows Vista? The Virtual Additions are a set of features that improve integration of the host and guest operating systems, as well as the performance of the guest operating system. For example, without the VM Additions to any VM, whenever you'll want to perform any mouse-click operation within the VM and then release the mouse control from the VM to the real host operating system, you will need to do so by pressing the Right ALT key. Installing VM Additions will allow the mouse movement to be dynamic. Windows Vista, running as a virtual machine, benefits greatly from these additions. Without them performance is sluggish at best, and it might take ages to do basic tasks. This tip, although specifically written for the latest Windows Vista beta 1 build (currently 5365 as of late April 2006), can be also implemented on any other VM that refuses to automatically run the VM Additions. In order to install the VM Additions on Windows Vista VM please perform the following steps: Open Internet Explorer and navigate to the URL of your Virtual Server R2 machine, usually in the format of http://computername/VirtualServer/VSWebApp. exe? view=1 Note that if you have SSL enabled for the administrative website of VS, you will need to use HTTPS instead. In the navigation pane, under Virtual Machines, point to Configure, and then click the appropriate virtual machine. Since we need to turn on the VM, if the virtual machine is not... --- ### Installing Link Layer Topology Discovery (LLTD) on Windows Server 2003 > Link Layer Topology Discovery (LLTD) graphically displays the topology of a network. This post shows you how to setup LLTD on Windows Server 2003. - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/installing-link-layer-topology-discovery-on-windows-server-2003/ - Categories: Windows Server 2003 - Article Type: How To Link Layer Topology Discovery (LLTD) graphically displays the topology of a network. This post shows you how to setup LLTD on Windows Server 2003. In one of my previous articles – "Hide your Vista Computer on the Network" I wrote about what the network map is in Vista. The network map on a computer running Windows Vista shows a graphical view of the computers and devices on your network and how they are connected by using the LLTD protocol. Thing is, that in order to display Windows Vista/2008 computers in the network map you need not do anything special. However, in order to make Windows XP computers appear in it, you will need to download and install the LLTD responder before it can be detected and appear on the network map. You can read more about this issue in my "Installing Link Layer Topology Discovery (LLTD) on Windows XP" article. You can download the update from the following link: Link Layer Topology Discovery (LLTD) Responder (KB922120) All this is good and well, however there's one little catch. By default, you can’t run the LLTD responder update under Windows 2003. If you try to run the update you'll get this error: However, you can try to force the update to run by performing these steps: Note: Installing LLTD on Windows Server 2003 is NOT SUPPORTED by Microsoft, and has mixed results. Do NOT do it if you don't know what you're doing, and if something breaks, don't expect anyone to help you. After downloading the update, navigate to the folder where you've saved the file and right-click it. Select Properties.   Next,... --- ### Limitations of Alternate PF Trees - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/limitations_of_alternate_pf_trees/ - Categories: Exchange Server - Article Type: Overview Why does Outlook still show only the basic Public Folders structure although I've created additional Public Folder hierarchies? When you install Exchange, a default public folder hierarchy is created. All MAPI clients such as Microsoft Outlook can access this public folder hierarchy to read messages and store documents. You can create subfolders to reflect the departments in your organization. In addition to this default hierarchy, you can create alternate public folder hierarchies for applications or Web browsers to access (See Create new PF Tree on Exchange 2000 and Create new PF Tree on Exchange 2003). Because of their intended use, there are different access methods for the default public folder hierarchy than for alternate hierarchies that you create. The general purpose of a public folder hierarchy is displayed on the General tab of a public folder root. Although Exchange 2000 allows multiple Public Folder roots, current Outlook clients don't, so you can't display these other structures in Outlook. However, you can view them via the Web (OWA - Outlook Web Access) with the following format: http://exchange server/public folder root or via EXIFS just like you'd look at any shared folder on the network. See the following pages on my site for more info: EXIFS Access to Alternate PF Trees in Exchange 2000 EXIFS Access to Alternate PF Trees in Exchange 2003 Web Access to Alternate PF Exchange 2003 note: Exchange Server 2003 does not expose drive M: by default so for you, the only method of providing access to the... --- ### Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 3 – Exchange Server 2003 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/mcse-system-administrator-exchange-interview-questions/ - Categories: Exchange Server - Article Type: Overview This is a part 3 of my MCSE and System Administrator job interview sample questions. See previous parts at: Part 1 - Networking Part 2 - Windows Server 2003 Active Directory This article set is targeted at both the interviewer (who needs a pool of valid questions they can ask) and to the candidate (who wants a pool of sample questions they can prepare for). Needless to say, both MUST know what they're talking about. Also, although I consider these questions as a thorough verbal test for the candidate's knowledge, in most cases, when he or she passes this phase, I will also ask them to perform an actual hands-on lab based on my written exercises. I might also include these in a future part of this session. I have deliberately left out the answers to these questions. I want YOU to research them and take the time to actually learn these topics, if you don't know them already. Most sub topics start off with relatively easy questions where the candidate is supposed to demonstrate their knowledge on that topic. A few sentences will be enough to show their (lack of) knowledge on the topic. As always, your comments and feedback are more than welcome. Use the "Comment" form below to send them in. If you're using this interview question sample in your own environment please drop me a line telling me how it works for you. Also, placing a link to my site and giving me... --- ### Offer Remote Assistance in Windows XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/offer_remote_assistance_in_windows_xp/ - Categories: Networking - Article Type: How To Sometimes you're up against stupid or lamer users who can't figure out their GUI (not to mention basic computer skills). Sometimes these users will need your help in performing some task on their computer, but are not able to invite you to help them because of their lack of knowledge or simple lameness. To offer Remote Assistance to a remote XP PRO and Windows Server 2003 computers without the need for the user who is currently logged on to that computer to personally invite you to help him do the following: Click Start and select Help and Support. In the Search bar type Offer and press the green arrow to begin a search. You will get one result called "Offer Remote Assistance". Double click it and add it to your favorites if you want. You should make sure you performed the Enable Remote Assistance Offering in XP/2003 tip BEFORE going on because if you didn't you'll get this error: Also, you need to be a user with local administrative rights on the target computer. Assuming you did follow my tip, now enter the computer name for the remote XP/2003 computer. Press the Connect button. If all is ok you'll see a list of all current users on that computer. Select the one with the problems. Press the Start Remote Assistance button. A brief window will appear and then you will get the Waiting for an Answer window. You will require the remote user to acknowledge your offering... --- ### Planning FSMO Roles in Active Directory - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/planning_fsmo_roles_in_ad/ - Categories: Active Directory (AD) - Article Type: Overview What are the considerations for the FSMO placement in Active Directory? Windows 2000/2003 Active Directory domains utilize a Single Operation Master method called FSMO (Flexible Single Master Operation), as described in Understanding FSMO Roles in Active Directory. In most cases an administrator can keep the FSMO role holders (all 5 of them) in the same spot (or actually, on the same DC) as has been configured by the Active Directory installation process. However, there are scenarios where an administrator would want to move one or more of the FSMO roles from the default holder DC to a different DC. Windows Server 2003 Active Directory is a bit different than the Windows 2000 version when dealing with FSMO placement. In this article I will only deal with Windows Server 2003 Active Directory, but you should bear in mind that most considerations are also true when planning Windows 2000 AD FSMO roles. Single Domain Forest In a single domain forest, leave all of the FSMO roles on the first domain controller in the forest. You should also configure all the domain controller as a Global Catalog servers. This will NOT place additional stress on the DCs, while allowing GC-related applications (such as Exchange Server) to easily perform GC queries. Multiple Domain Forest In a multiple domain forest, use the following guidelines: In the forest root domain: If all domain controllers are also global catalog servers, leave all of the FSMO roles on the first DC in the forest. If all... --- ### Quickly See if your Server, PC or Laptop Supports Hyper-V - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly-see-if-your-server-pc-or-laptop-supports-hyper-v/ - Categories: Windows Server 2008 - Article Type: How To Virtual machine technology enables multiple operating systems to run concurrently on a single machine. Microsoft Hyper-V, a key feature of Windows Server 2008, enables one or more operating systems to run simultaneously on the same physical system. Hyper-V provides scalability and high performance by supporting features like guest multi-processing support and 64-bit guest and host support; reliability and security through its hypervisor architecture; flexibility and manageability by supporting features like quick migration of virtual machines from one physical host to another, and integration with System Center Virtual Machine Manager (SCVMM). Installing the Hyper-V role on a full installation of Windows Server 2008 is easy. All you need to do is to make sure you have the right hardware, both in CPU as well as in memory and disk that are calculated based upon the number of virtual machines and functions that the virtual machines are to perform on the host. Hyper-V requires specific hardware: An x64-based processor. Hyper-V is  available only in the x64-based versions of Windows Server 2008—specifically, the x64-based versions of Windows Server 2008 Standard, Windows Server 2008 Enterprise, and Windows Server 2008 Datacenter. Hardware-assisted virtualization must be available and be enabled in the BIOS. This is available in processors that include a virtualization option; specifically, Intel VT or AMD Virtualization. Hardware Data Execution Protection (DEP) must be available and be enabled in the BIOS. You must enable Intel XD bit (execute disable bit) or AMD NX bit (no execute bit). Frequently the question arises on how... --- ### Quickly Edit Quick Launch Icons in Windows XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_edit_quick_launch_icons_in_windows_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I quickly edit the items in the Quick Launch toolbar in Windows 2000/XP/2003? The Quick Launch toolbar is the area that's just right to the Start menu button, and where you can place your own shortcuts to some of your most used applications. Launching applications in this manner is much faster then having to go through the Start menu and clicking your way around. You just place your shortcut or application in the Quick Launch toolbar, and then you can fire it away with just one click. Adding items to the Quick Launch toolbar is easy. All you have to do is drag and drop to it. I prefer dragging with the right mouse button, that way you have more control over the action that being performed. Read more about it on the Quickly Add Quick Launch Icons in Windows XP/2003 article. Thing is that you might also need to edit the items that are in the Quick Launch toolbar, delete some, add others, and also change their properties or startup options. Since the Quick Launch is in fact a folder, it can be easily opened and used to manually edit and add items to it. Windows 2000/XP/2003 store the Quick Launch toolbar folder in the following place: ​"C:Documents and SettingsDanielApplication DataMicrosoftInternet ExplorerQuick Launch" You can manually navigate to that path, but an easier way is found in the Windows context menu. Just right-click an empty spot on the Quick Launch toolbar and select "Open Folder"... . --- ### Quickly Search the Web - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly_search_the_web/ - Categories: Windows Client OS - Article Type: How To How can I quickly search the web from my web browser? Searching the web for specific articles, sites and links can be quite tiresome as you go from one search engine to another. If you make a habit of always using the same search engine, be it Google, MSN Search, Yahoo! or any other site, here is a tip that will allow you to quickly and easily perform the search from Internet Explorer's address bar. After getting acquainted with this method you will no longer need to open the search engine's website prior to performing the search, thus enabling you to perform the search much quicker and with less mouse clicks. Sure, many search engines have their own customized search toolbar (such as Google's Toolbar, Yahoo's Toolbar and others). These toolbars have some great features such as Pop-up blockers, quick search links and so on. I use Google's Toolbar myself, but for quick web searches I still prefer the method outlined in this article. Even if you don't use the same search engine for each web search you make you can still use this tip and quickly perform searches on your favorite search engine with just 2-3 keyboard clicks. The trick is performed by inserting specific keywords and search strings for each search engine into your computer's registry. For example, to search for the words "Daniel Petri" in Google, instead of opening a new browser window, surfing to Google's website, and performing the search, you can now... --- ### Remote to a Windows Vista Machine using VNC on Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/remote_windows_vista_using_vnc/ - Categories: Windows Vista - Article Type: How To Through the use of VNC and port-forwarding, you can control your Windows Vista or Windows XP computer from inside and outside your local area network. For the purposes of this tutorial, assume you have a Windows XP laptop and you have Windows Vista installed on your desktop, and you want to have complete control of your Windows Vista desktop computer from your Windows XP laptop. A screenshot of this is shown here: The first step is to install TightVNC. TightVNC needs to be installed on both the Windows XP computer and the Windows Vista computer. You can download TightVNC from the TightVNC homepage. I will first demonstrate how to setup TightVNC in Windows Vista. Installing TightVNC (must be done in Vista and XP) Once you have downloaded TightVNC, double click the icon to begin the installation process and click Next: After you agree to the TightVNC license, install TightVNC to the C:'Program Files'TightVNC directory and click Next: Select all three components of TightVNC: TightVNC Server, TightVNC Viewer, and Web pages and documentation, and Click Next: Leave the default Start Menu shortcut as "TightVNC" and click Next: The following screen will be ask you to "Select Additional Tasks. " Only check "Associate . vnc files with TightVNC Viewer" and click Next: TightVNC will summarize your selections. Click Install and TightVNC will begin the install process: Congratulations, the installation process is complete, click Finish: Note: You need to repeat the exact same process in Windows XP. After you have completed the... --- ### SBS 2000 Installation Tips - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/sbs_2000_installation_tips/ - Categories: Windows Client OS - Article Type: Overview I'm about to install SBS 2000 on my network. Are there any special issues to take into consideration before I start the installation? SBS 2000 is an easy installation. The installation phase can be divided into 2 distinctive sections: The simple-good-old Windows 2000 setup process, and the SBS Back-office components installation phase. Installing the W2K phase is just like installing W2K. However, after running that part there are a few things you should be aware of BEFORE you begin the second phase. Make sure to get hold of and install SBS Service Pack 1. That is basically Windows 2000 SP3, Exchange 2000 SP3 and ISA SP1. There are other parts to the actual Service Pack but if you cannot get it on time, the regular Service Packs will be fine. Read this for more: Small Business Server 2000 Patches. Make sure to use the wizards! When setting up users, you will use a wizard. These are very good, but you must use them so you do not get into issues with security. Specifically, the wizard creates a client setup disk for use on each PC. During the installation (on the client) the setup disk sets up the local user rights etc. Set up all users with Power User rights (done using the wizard). This will allow them to add software etc. However, you do not need to do this. Just a suggestion. Unlike the previous versions of SBS, you can set the IP addressing as you wish... --- ### Sender Policy Framework - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/sender_policy_framework/ - Categories: Anti-Spam Solutions - Article Type: Overview Sender Policy Framework (SPF) tackles email address forgery. Without SPF it is very easy to send e-mails using someone else's email address. Often you get spam from yourself - this is because the spammer puts your e-mail address as the sender. In order for SPF to work you need to publish a list of IP addresses that are used to send e-mails to other users on the Internet. When you send an email to someone else on the Internet your SMTP server connects to the recipient’s SMTP server, which knows the IP address of your SMTP server. The recipient’s server can compare this IP with the published records in the DNS for your domain. This is how the recipient's server can find out if the email was sent by your server or someone posing to be a user on your domain. Does SPF stop spam? SPF can stop spam to a certain extent. Although spammers can still send you unwanted e-mails, they will be forced to use their own domain. SPF can effectively stop viruses or worms from an infected machine that send out thousands of message to everyone found in your address book. How do I publish my IP Addresses? Follow the steps below to publish SPF records. Gather the list of IP addresses that you know can send email to the Internet from your organization Use this wizard to create an SPF entry for your DNS Update your DNS with the string created by the wizard Once your... --- ### Slow Shutdown of Exchange 2003 Server Installed on DC - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/slow_shutdown_of_exchange_2003_server_installed_on_dc/ - Categories: Exchange Server - Article Type: Overview Exchange 2003 on a Domain Controller or "Why does my Exchange 2003 server take 10 minutes or more to shutdown" and other problems It seems that most users that install Exchange Server 2003 on a Windows Server 2003 machine that is also configured as a Domain Controller may experience a slow shutdown when they try to reboot/shutdown the server. This is because the Active Directory related services shut down before the Exchange services, thus causing the Exchange services to fail repeatedly while looking for the DS. Exact and detailed explanations for this behavior and restrictions can be found in the KB articles listed below. Note: Although installing Exchange on a server that is also a DC is possible, changing the server status while Exchange is already installed is NOT supported by Microsoft. For an example, if you demote a DC with Exchange Server install to a member server, the DS2MB service (which copies Active Directory data from A/D to the IIS metabase) stops working throughout an Exchange organization. Although some of these issues CAN be fixed, un-knowing administrators might ruin their configurations and as stated before - they will not be supported by Microsoft. There are 2 known solutions for this problem (besides listening to me and NOT installing Exchange on a DC in the first place... ). One is to change the timeout for a failed service to shutdown itself, and the second is to manually stop the Exchange services BEFORE shutting down the server. Method #1:... --- ### What is Microsoft Software Update Services (SUS)? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/sus/ - Categories: Windows Server - Article Type: Overview What is Microsoft Software Update Services (SUS)? Microsoft SUS is a free patch management tool provided by Microsoft to help network administrators deploy security patches more easily. In simple terms, Microsoft SUS is a version of Windows Update that you can run on your network. Today corporations have to frequently check the Windows Update site or the Microsoft Security Web site for patches. Then they have to manually download patches that have been made available since they last visited the site, test the patches, and then distribute the patches manually or by using their traditional software-distribution tools. Instead of each workstation having to connect to the Internet to update Windows, each workstation connects to the Microsoft SUS Server instead and updates from there. Microsoft SUS Server alone requires access to the public Internet as it connects to Windows Update. Software Update Services solves these problems by providing dynamic notification of critical updates to Windows computers as well as automatic distribution of those updates to your corporate Windows desktops and servers. For Software Update Services to function, only one corporate intranet computer requires access to the public Internet. By connecting to Windows Update, Microsoft SUS Server provides notification of critical updates as well as performing automatic distribution of those updates to your workstations and servers. Microsoft SUS server gives the administrator control over updates: The administrator can test and approve updates from the public Windows Update site before deployment on the corporate intranet. Deployment takes place on a... --- ### Understanding Function Levels in Windows Server 2003 Active Directory - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/understanding_function_levels_in_windows_2003_ad/ - Categories: Active Directory (AD) - Article Type: Overview What are the domain and forest function levels in a Windows Server 2003-basedActive Directory? Functional levels are an extension of the mixed/native mode concept introduced in Windows 2000 to activate new Active Directory features after all the domain controllers in the domain or forest are running the Windows Server 2003 operating system. When a computer that is running Windows Server 2003 is installed and promoted to a domain controller, new Active Directory features are activated by the Windows Server 2003 operating system over its Windows 2000 counterparts. Additional Active Directory features are available when all domain controllers in a domain or forest are running Windows Server 2003 and the administrator activates the corresponding functional level in the domain or forest. To activate the new domain features, all domain controllers in the domain must be running Windows Server 2003. After this requirement is met, the administrator can raise the domain functional level to Windows Server 2003 (read Raise Domain Function Level in Windows Server 2003 Domains for more info). To activate new forest-wide features, all domain controllers in the forest must be running Windows Server 2003, and the current forest functional level must be at Windows 2000 native or Windows Server 2003 domain level. After this requirement is met, the administrator can raise the domain functional level (read Raise Forest Function Level in Windows Server 2003 Active Directory for more info). Note: Network clients can authenticate or access resources in the domain or forest without being affected by... --- ### Upgrade Windows 2000 GPO with XP Features - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/upgrade_windows_2000_gpo_with_xp_features/ - Categories: Active Directory (AD) - Article Type: Overview How do I upgrade a Windows 2000 Active Directory Group Policy object (GPO) to support the new features in Windows XP? Windows XP Professional supports a superset of the Group Policy features supported by Windows 2000. These features are available by using updated extension components the clients, . adm files, and an updated Group Policy snap-in. If you upgrade an Active Directory GPO to support the new Windows XP policy settings, Windows 2000-based clients ignore any Windows XP-specific settings. This behavior occurs on a per-setting level; if a policy object contains a policy setting that is unsupported, all other supported policy settings from that policy object are applied. To upgrade a Windows 2000 GPO, follow these steps on a Windows XP-based domain member: Click Start, click Run, type mmc, and then click OK. On the File menu, click Add/Remove Snap-in. In the Add/Remove Snap-in dialog box, click Add. In the Add Standalone Snap-in dialog box, click Group Policy, and then click Add. In the Select Group Policy Object dialog box, Local Computer appears as the target object. Click Browse, select the GPO that you want to upgrade, and then click OK. Note that when you click Browse, a delay might occur while Windows searches for the policy objects in the domain. Click Close. Click OK. You can now adjust the policy settings in this Policy object by using the Group Policy console from the Windows XP-based client. The GPO is actually updated with the new administrative template (. adm) files when you... --- ### View Additional User Information in AD Users and Computers - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/view_additional_user_information_in_aduc/ - Categories: Active Directory (AD) - Article Type: How To How can I view additional information about a user in the AD Users and Computers snap-in? The Windows 2003 Resource Kit has a hidden . dll file called Acctinfo. dll. After registering the . dll with the following command, it will add a new property page, called Additional Account Info, to the user properties page in Active Directory Users and Computers (or ADUC for short). If you don't have the Windows 2003 Resource Kit Tools download it from here: Windows 2003 Resource Kit Support Tools (12mb) If you just want the Acctinfo. dll then download it from (78kb) After installing the Resource Kit Tools, in order to register the Acctinfo. dll enter the following command: ​regsvr32 %systemroot%system32acctinfo. dll (change the path if you've placed the . dll in some other location) Acctinfo. dll needs to be installed on the computer that you are accessing  Active Directory Users and Computers from. If you plan to manage your domain from multiple computers, Acctinfo. dll will need to be installed on each computer. This is what you'll see on a user's properties in AD Users and Computers:   The page includes information is not typically available in the regular Active Directory Users and Computers snap-in: The date when the user's password was last set, the user's password expiry date, the date and time when a user last logged on and off, the user's SID and GUID and more. Most of the information displayed is quite easy to understand. For example, if you press the... --- ### Vista Command Prompt - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/vista_command_prompt/ - Categories: Windows Vista - Article Type: Overview The Command Prompt is a native Windows program that lets you execute commands without using a GUI. You can accomplish pretty much every task in the Command Prompt as you can with the GUI and a mouse. The Command Prompt gets its roots (arguably) from a combination of UNIX and MS-DOS. Consider it "Windows without the windows. " Microsoft has streamlined your ability to launch Command Prompt sessions in Windows Vista. Besides accessing the Command Prompt through the Start Menu, the following are three other methods to launch the Command Prompt with varying permission-levels. Shift and Right-Click You can hold down shift and right-click and you will get the option to "Open Command Window Here. " This will open a Command Prompt that is queued to your current directory. For example, if I use the above command on the desktop, the corresponding Command Prompt session will be set to C:UsersasdfDesktop": Creating an Administrator Session Shortcut Alternatively, you can create a shortcut to give yourself an elevated (administrator) Command Prompt session by right-clicking on the desktop and creating a shortcut: For the location of the item type "cmd" and click Next: Name the shortcut "cmd" and click Finish: Your shortcut will now be created. Right-click on the shortcut and choose "Properties": In the properties dialog, select the "Shortcut" tab, and click Advanced... In the Advanced Properties, check "Run as administrator," and click Ok: Anytime you launch the shortcut, you will have administrator privileges, and your Command Prompt session will start in... --- ### What's New in Windows Server 2003 Active Directory? > Looking for an overview of what's new in Active Directory in Windows Server 2003? Daniel points out the highlights and noteworthy additions. - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/whats_new_in_windows_server_2003_active_directory/ - Categories: Active Directory (AD) - Article Type: Overview Looking for an overview of what's new in Active Directory in Windows Server 2003? Daniel points out the highlights and noteworthy additions. What's new in Windows Server 2003 Active Directory? The Active Directory service is an essential and inseparable part of the Windows Server 2003 network architecture that provides a directory service designed for distributed networking environments. Active Directory provides a single point of management for Windows-based user accounts, clients, servers, and applications. It also helps organizations integrate systems not using Windows with Windows-based applications and Windows-compatible devices, thus consolidating directories and easing management of the entire network operating system. Companies can also use Active Directory to extend systems securely to the Internet. Active Directory thus increases the value of an organization's existing network investments and lowers the overall costs of computing by making the Windows network operating system more manageable, secure, and interoperable. Active Directory plays such an important role in managing the network, that as you prepare to move to Windows Server 2003, it is helpful to review the new features of the Active Directory service. New Active Directory Features With the new Active Directory features in Standard Edition, Enterprise Edition, and Datacenter Edition, more efficient administration of Active Directory is available to you. New features can be divided into those available on any domain controller running Windows Server 2003, and those available only when all domain controllers of a domain or forest are running Windows Server 2003. Features Available If Any Domain Controller Is Running Windows Server 2003 The following list summarizes the Active Directory features that are enabled by default on any domain controller running... --- ### What You Need to Know About Securing Your Virtual Network - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/what-you-need-to-know-about-vmware-virtualization-security/ - Categories: Virtualization - Article Type: Overview A lot of people think that if you virtualize, let's say, a Windows 2003 Server, that virtualized system should be secure because it is completely separate from the VMware ESX Server operating system and it could be, potentially "protected" by VMware ESX Server. This is not true and there are a lot of things you need to know about virtualization security. In this article, I will cover what you need to be aware of when it comes to securing your Virtualized Servers. Why Do I Care About Securing My Virtual Servers? A recent study stated that about 40% of the Fortune 100 and 1000 companies use virtualization. That is a LOT of companies, a LOT of virtual hosts, and a LOT of guest operating systems (virtual machines). Just because they are virtualized doesn't' give them any MORE security. In fact, they could even be LESS secure. While it is generally true that virtualized servers are about as secure as their physical server counterparts, there are some security issues that virtualization brings. Here is my short list: No matter what virtualization operating system you choose (VMware ESX, Virtual IRON, or others), you are introducing a new operating system on your network and that is always a cause for security concern. Because you are bringing on a new operating system, there could be security holes that are in need of patching The possibility exists for guest to guest attacks Because virtual guest systems tend to move around with high... --- ### Windows Server 2003 SP1 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_server_2003_sp1_patches/ - Categories: Windows Server 2003 - Article Type: Overview   You should consider installing Service Pack 1 as soon as possible During March 2005 Microsoft released SP1 for Windows Server 2003. SP1 is the latest collection of updates for Windows Server 2003. To download SP1 for Windows Server 2003: Download Windows Server 2003 SP1 Network Installation (329mb) The Network Installation is ideal for IT professionals installing SP1 on multiple computers. SP1 is also available via the Windows Update site See the Windows 2003 SP1 Slipstreaming page for info on how to integrate SP1 into your existing media. Required Patches Windows Server 2003, Standard and Enterprise editions running SP1 require the following security-related patches: Make sure you read Internet Explorer 6 on Windows Server 2003 Patches before you go on. October 2005 MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706) MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) August 2005 MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587) MS05-041 : Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591) MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) MS05-039 : Vulnerability in Plug and Play... --- ### Virtual Floppy Disks with VMware - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual-floppy-disks-vmware/ - Categories: Virtualization - Article Type: Overview You might be thinking that floppy disks are "dead", right? Well, you are correct that the physical floppy 3. 5" disks (or physical floppy disks of any size) are not used anymore. However, the use of virtual floppy drives is very much alive and surprisingly useful. In this article, we will show you how to use virtual floppy drives with VMware Workstation or VMware Server. What is a virtual floppy drive? Like a regular floppy disk drive, a virtual floppy disk is mounted on your common floppy disk drive letter, A:. However, the difference is that, instead of being a physical floppy disk that is inserted into the drive, the virtual floppy is an image file that is really located on your hard drive. The benefits to using virtual floppies and virtual floppy imaging tools are: Ability to boot certain applications - like a Linux virtual router/firewall on a floppy (read more about this here: http://www. rtfm-ed. co. uk/? p=101) Ability to transfer files between systems No Floppy media to storage, search or get damaged (do you really have floppies lying around anymore, I hope nor) If you need to get data on a virtual floppy, a virtual floppy imaging tool can be used to save you the steps of having to first boot a virtual machine, copy your data to the virtual machine, then to the virtual floppy. How do you create Virtual Floppy Files? Virtual floppy files usually have an extension of . FLP or . IMG. They can be created with... --- ### How to Mount VMware Virtual Disks Without VMware - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_mount_vmware_virtual_disk_without_vmware/ - Categories: VMware - Article Type: How To VMware Workstation and Server uses virtual disk files as the disk drives for virtual machines. These files (ending in . vmdk) are just files on the host’s hard drive. There are a number of scenarios where you would want to mount these virtual disks on the host operating system. Perhaps you want to transfer a file to or from the virtual disk or maybe the operating system is corrupt on the virtual disk and you want to make a registry change. No matter what the case, the VMware disk mount utility is available to serve this need. What Does The VMware Disk Mount Utility Do? The VMware disk mount utility allows you to mount a VMware virtual disk (. vmdk file) on a host Windows system. That disk is mounted as a drive letter (letter D: or greater) and you can then read, write, or modify that disk. You can only mount FAT or NTFS virtual disks. If you mount a virtual disk that has snapshots, any changes you make to the virtual disk will be lost if you revert to the snapshot. Also, you should know that you cannot mount a virtual disk from a virtual machine that is currently running or is suspended. Although VMware offers this utility for download, there is NO support offered for the VMware disk mount utility. Where Do I Obtain The Disk Mount Utility? To obtain the VMware disk mount utility, go to the VMware disk mount download website and accept the... --- ### Understanding VMware VMX Configuration Files - Learn How To Create and Edit VMX Files - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_vmware_vmx_configuration_files/ - Categories: VMware - Article Type: Overview In our article called VMware Disk Files Explained, we talked about the different VMware files on disk. In particular, we talked about the important VMware VMX configuration file. In this article, we'll go into more details on this critical file. What are VMX Files? In our previous article, VMware Disk Files Explained, we covered how a VMX file is the primary configuration file for a virtual machine. When you create a new virtual machine and answer questions about the operating system, disk sizes, and networking, those answers are stored in this file. As you can see from the screenshot below, a VMX file is actually a simple text file that can be edited with Notepad. VMX files are located in each of the folders of each of your virtual machines. For example, my Window XP Professional virtual machine is located in c:'Virtual Machines'Windows XP Professional and it is called Windows XP Professional. vmx. When I right-click on that file and click Open With and Wordpad, Here is what I see: If you just double click on the file, it will open in your VMware Server Console. Exploring a VMX File If we look into more detail, we can see the syntax of a VMX file and how it is constructed. Here are important tips and syntax of note: A hash (or pound sign, #) are used for comments. Thus, anything that starts with a # sign is ignored and considered a comment. The displayName is what is used... --- ### Why you need to Decommission Exchange 2003 Servers after your Exchange 2007 Upgrade - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/decommission-exchange-2003-servers-exchange-2007-upgrade/ - Categories: Exchange Server - Article Type: Overview The Exchange Server 2003 Setup program was designed from the very beginning to allow you to uninstall Exchange server should you have the need. Even so, removing Exchange Server 2003 from and Exchange Server 2007 organization requires a little bit more work than what you might initially expect. In this article, I'll show you the trick to removing the last Exchange 2003 server from your Exchange 2007 organization. Before you get started... Before you get started, I just want to quickly say that if you're reading this that I am assuming that you are actually ready to remove Exchange Server 2003 from your organization. That being the case, you should make sure that all of the mailboxes and public folders have been removed from the Exchange 2003 servers prior to using the technique that I'm about to show you. What is the Recipient Update Service? The real trick to removing Exchange Server 2003 from your organization is reassigning the Recipient Update Service. Setup will not allow you to uninstall Exchange Server 2003 until the Recipient Update Service has been reassigned to another server. This is ironic since Exchange Server 2007 doesn't even use the Recipient Update Service. Even so, this task must be performed. Reassigning the Recipient Update Service is fairly easy. Begin the process by opening the Exchange System Manager. Now, navigate through the console tree to Recipients | Recipient Update Service. When you do, the console screen should look something like what you see in... --- ### Performance Monitoring the Easy Way, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/performance-monitoring-easy-way-part-2/ - Categories: Windows Server 2008 - Article Type: Overview In the previous article in this series, I explained why I believe that performance monitoring is becoming more important now than it ever has been before.   I also showed you a quick trick for getting an idea of how your system's resources are currently being used.   In this article, I want to continue the discussion by showing you some more techniques for monitoring your system's performance.   One of my major goals in writing this article though, is to keep things simple.   There are countless articles on the Internet (including some that I have written) that address all of the various complexities associated with using the Performance Monitor.   I think that although these types of articles certainly have their place, they tend to scare a lot of administrators away from performance monitoring.   Although performance monitoring can be very complicated, it doesn't have to be.   Therefore, my goal is to help you to understand what is going on with your system, but to do so when a way that you can understand regardless of your level of experience. Monitoring CPU Resources In the previous article, I showed you how you could use a screen similar to the one shown in Figure A to see how hard a CPU is working, and what processes are consuming the most CPU time.   Although that technique works well in a pinch, it can be a little bit misleading. Figure A The overview screen works well in a pinch, but it can be misleading... . --- ### Using Exchange Management Shell to Configure Content Filtering, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using-exchange-2007-management-shell-configure-content-filtering-part2/ - Categories: Exchange Server - Article Type: Overview In the previous article in this series (Using Exchange Management Shell to Configure Content Filtering, Part 1), I showed you how to use the Set-ContentFilterConfig command to specify bypassed sender domains in Exchange Server 2007. As you may recall though, the biggest problem was that whenever you enter this command, the existing list of bypassed domains is overwritten. Suppose for example that you wanted to list Microsoft. com and Contoso. com as bypassed sender domains. It would stand to reason that you could accomplish this by entering the following commands: ​Set-ContentFilterConfig –BypassedSenderDomains Microsoft. com ​Set-ContentFilterConfig –BypassedSenderDomains Contoso. com However, if you enter these two commands in sequence then the listing for Microsoft. com will be replaced by Contoso. com. There is a way to add both domains (and any other domains that you may want to include) to the list of bypassed sender domains, but it is a little bit tricky. If you want to append additional data to a property that already contains data, so as to create a multi valued property, you will have to make use of variables. In the previous article, I showed you how you could use the Get-ContentFilterConfig command to display the data that is already in the content filter. What we can do is to assign this command to a variable. That way, all of the data that currently resides in the content filter is assigned to a variable. In this particular case, the actual command that you would use is: ​$list = (Get-ContentFilterConfig). BypassedSenderDomains Notice in... --- ### Delete Failed DCs from Active Directory - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/delete_failed_dcs_from_ad/ - Categories: Active Directory (AD) - Article Type: How To How can I delete a failed Domain Controller object from Active Directory? When you try to remove a domain controller from your Active Directory domain by using Dcpromo. exe and fail, or when you began to promote a member server to be a Domain Controller and failed (the reasons for your failure are not important for the scope of this article), you will be left with remains of the DCs object in the Active Directory. As part of a successful demotion process, the Dcpromo wizard removes the configuration data for the domain controller from Active Directory, but as noted above, a failed Dcpromo attempt might leave these objects in place. The effects of leaving such remains inside the Active Directory may vary, but one thing is sure: Whenever you'll try to re-install the server with the same computername and try to promote it to become a Domain Controller, you will fail because the Dcpromo process will still find the old object and therefore will refuse to re-create the objects for the new-old server. In the event that the NTDS Settings object is not removed correctly you can use the Ntdsutil. exe utility to manually remove the NTDS Settings object. If you give the new domain controller the same name as the failed computer, then you need perform only the first procedure to clean up metadata, which removes the NTDS Settings object of the failed domain controller. If you will give the new domain controller a different name, then you need to perform... --- ### Disable APIPA in Windows 98/ME/2000/XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_apipa_in_windows_2000_xp_2003/ - Categories: Networking - Article Type: How To A Windows-based computer that is configured to use DHCP can automatically assign itself an Internet Protocol (IP) address if a DHCP server is not available. For example, this could occur on a network without a DHCP server, or on a network if a DHCP server is temporarily down for maintenance. Read more about APIPA on the What's APIPA? page. You may want to disable it in any of the following cases: Your network uses routers. Your network is connected to the Internet without a NAT or proxy server. To disable automatic address configuration do the following: Windows 2000/XP/2003 Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\adapter_name Create the following entry: IPAutoconfigurationEnabled: REG_DWORD Assign a value of 0 to disable Automatic Private IP Addressing (APIPA) support for the selected network adapter. Close Registry Editor. Note: You must be logged on as an administrator or a member of the Administrators group in order to complete this procedure. If the IPAutoconfigurationEnabled entry is not present, a default value of 1 is assumed, which indicates that APIPA is used. If multiple adapters are installed, you can disable APIPA for all installed adapters by setting the IPAutoconfigurationEnabled entry to 0 at the following registry key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters Windows 98/ME Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\DHCP Create the following entry: IPAutoconfigurationEnabled: REG_DWORD Assign a value of 0 to disable Automatic Private IP Addressing (APIPA) support for the selected network adapter. Close Registry... --- ### How can I prevent users from writing to USB removable disks (USB flash drives) by using Group Policy (GPO)? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_writing_to_usb_disks_in_xp_sp2_with_gpo/ - Categories: Disk Management - Article Type: How To USB removable disks (also known as flash drives or "Disk on Key" and other variations) are quickly becoming an integral part of our electronic life, and now nearly everybody owns one device or another, in forms of small disks, external hard drives that come enclosed in cases, card readers, cameras, mobile phones, portable media players and more. Portable USB flash drives are indeed very handy, but they can also be used to upload malicious code to your computer (either deliberately or by accident), or to copy confidential information from your computer and take it away. Microsoft has introduced some changes into Windows XP Service Pack 2 that allow an administrator some control over how USB Removable Disks (or flash drives) are handled. A new storage device policy named WriteProtect makes it possible to prevent all removable USB drives from being written to. Users can still read from these devices, but are not longer able to write to them. This tip is a variation of Disable Writing to USB Disks in XP SP2, you can prevent users from writing on to any portable USB removable disk or flash drive by using a custom . ADM file that can be imported into the Local Group Policy (thus effecting only the local computer) or by using Active Directory-based Group Policy Objects (also known as GPOs). Follow the steps outlined in the Adding New Administrative Templates to a GPO article on general instructions on how to add or remove... --- ### Download Microsoft Defender - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_microsoft_defender/ - Categories: Downloads - Article Type: How To Download Microsoft Windows Defender (formerly known as Microsoft AntiSpyware) Microsoft Windows Defender (Beta 2) is the final name for Microsoft’s AntiSpyware solution (formerly known as Giant AntiSpyware) While still in Beta 2 phase and not yet a complete product, Microsoft claims that this release includes enhanced features that reflect ongoing input from customers, as well as Microsoft’s growing understanding of the Spyware landscape. Specific features of Windows Defender Beta 2 include: A redesigned and simplified user interface – Incorporating feedback from our customers, the Windows Defender UI has been redesigned to make common tasks easier to accomplish with a warning system that adapts alert levels according to the severity of a threat so that it is less intrusive overall, but still ensures the user does not miss the most urgent alerts. Improved detection and removal – Based on a new engine, Windows Defender is able to detect and remove more threats posed by Spyware and other potentially unwanted software. Real Time Protection has also been enhanced to better monitor key points in the operating system for changes. Protection for all users – Windows Defender can be run by all users on a computer with or without administrative privileges. This ensures that all users on a computer are protected by Windows Defender. Support for 64-bit platforms, accessibility and localization - Windows Defender Beta 2 also adds support for accessibility and 64-bit platforms. Microsoft also plans to release German and Japanese localized versions of Windows Defender Beta 2 soon... --- ### Download Microsoft PowerShell for Windows - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/download_powershell_for_windows/ - Categories: Downloads - Article Type: Overview Download Microsoft PowerShell 1. 0 Installation Packages for Windows 2003 SP1, Windows XP SP2 and Windows Vista Microsoft Windows PowerShell is a new command-line shell and scripting language built on the Microsoft . NET Framework that is designed for system administration and automation. PowerShell lets IT professionals and developers control and automate the administration of Windows and applications. PowerShell includes the following features: More than 130 command-line tools (also called "cmdlets") that can be used for performing common system administration tasks and for using Windows Management Instrumentation (WMI). These cmdlets are designed to be easy to learn and easy to use with standard naming conventions and common parameters, and simple tools for piping, sorting, filtering, and formatting data and objects. Support for existing scripting languages, existing command-line tools, and multiple versions of Windows, including Windows XP, Windows Server 2003, Windows Vista, and Windows Server code name “Longhorn". Features that enable users to navigate data stores, like the registry and certificate stores, as if they were a file system. Standard utilities for managing Windows data in different stores and formats, including Active Directory Service Interfaces (ADSI), Windows Management Instrumentation (WMI), Component Object Model (COM) objects, ActiveX Data Objects (ADO), HTML, and XML. Sophisticated expression parsing and . NET Framework object manipulation at the command line, including pipelining of objects help IT professionals to work more efficiently and effectively. An extensible interface that enables independent software vendors and enterprise developers to build custom cmdlets to meet unique application and system administration requirements... . --- ### Download Windows 2000 SP4 Support Tools - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_w2k_sp4_support_tools/ - Categories: Downloads - Article Type: Overview What are the Windows 2000 Support Tools? Where can I get them? Why do I need to update them? Along with many useful tools built into the Windows 2000 operating system, over 40 additional Support Tools are included on the Windows 2000 CD. These tools are a subset of the Windows 2000 Resource Kits, including: The Microsoft Windows 2000 Server Deployment Planning Guide in online format. Approximately 50 of the Resource Kit tools. These tools are intended to assist Microsoft support personnel and network administrators in diagnosing and resolving computer problems. Windows 2000 Service Pack 4 (SP4) includes updates for the following Support Tools: Iadstools. dll Replmon. exe Netdiag. exe Repadmin. exe Netdom. exe For detailed information about the specific tools being updated, read Microsoft Knowledge Base Article 812809. Note: Tools can be accessed from Start'Run'Program Files'Support Tools, unless you chose Custom installation and changed the location of the files. The Support Tools are also available on the Windows 2000 Service Pack 4 CD in the 'support'tools directory. For descriptions of the tools and examples of how they are used, read "Windows 2000 Support Tools" (W2rksupp. chm). This help file is included in the support cab. Download the Windows 2000 SP4 Support Tools (10. 3mb) Download the (10. 3mb - local download - slow) Related articles You may find these related articles of interest to you: Download Free Windows 2000 Resource Kit Tools Download GPMC Download IIS 6. 0 Resource Kit Download IIS 6. 0 Reskit Tools Download Office 2000 Reskit Tools... --- ### Download Windows XP SP1 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_xp_sp1/ - Categories: Downloads - Article Type: Overview Where can I download Windows XP Service Pack 1/1a? Update - SP2 is out On August 9, 2004, Microsoft released SP2 for Windows XP. SP2 is the latest collection of updates for Windows XP. See the Download Windows XP SP2 page for more info, and the Windows 2000/XP SP Slipstreaming page for info on how to integrate SP2 into your existing media. If you still need SP1/1a On February 3, 2003, Microsoft released SP1 again as SP1a. Just like SP1, SP1a is a collection of updates for Windows XP. Windows XP SP1a is the same as Windows XP SP1 except that the Microsoft virtual machine (VM) is removed in SP1a. There are no other changes or fixes included in this update. The service pack is a collection of updates for Windows XP. These updates address: Security issues (including the Windows XP Update Package) Operating system reliability Application compatibility Windows XP Setup Note: If you have not yet installed the Windows XP Update Package, you only need to install Service Pack 1 because the security update is included. If you are not running Windows XP SP1, install SP1a to make sure that you have the latest security and reliability updates for Windows XP. Install any appropriate security updates and hotfixes that are already released or that will be released after SP1 on Windows XP-based computers that are running SP1a. Windows Update will continue to offer the same set of updates for Windows XP-based computers that are running either SP1... --- ### Enable Compressed Folder in Windows 2000 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/enable_compressed_folder_in_w2k/ - Categories: Windows Client OS - Article Type: How To How can I enable the "Compressed Folder" feature in Windows 2000? The Compressed Folder feature that exists in Microsoft Plus! 98, Microsoft Windows Millennium Edition and Microsoft Windows XP was not included in the Microsoft Windows 2000 family products. In order to open compressed file (with a . zip extension) in Microsoft Windows 2000, you have to install a third party program (like WinZip) that would give you the ability to access those files or compress new files and folders also. In this article, you will learn how to enable the "Compressed (zipped) Folder" feature on Microsoft Windows 2000, just like you've got on Microsoft Windows XP. The Compressed Folder feature uses this 4 following system files: Dunzip32. dll - Responsible for decompressing files stored in a compressed folder or file when they are copied, extracted, or executed. Dzip32. dll - Responsible for compressing files when they are put into a compressed folder or file. Zipfldr. dll - Contain the shell extensions for Compressed Folder. Compressed Folder. ZFSendToTarget - Adds the Compressed Folder option to the Send To menu. A shortcut is placed in the Send To directory that points to Zipfldr. dll. (More information about Compressed Folders can be found at kb272996) How to obtain the required files All of the DLL files listed above can be located in the MS02-054 Hotfix, also known as kb329048. To obtain this Hotfix you'll need to access the Windows Update Catalog site, and download the Microsoft Windows Millennium Edition version of this update for your... --- ### Free Notepad Replacements - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/free_notepad_replacements/ - Categories: Windows Client OS - Article Type: Overview Freeware Notepad Replacements Notepad is one of the few tools that have always been a part of Windows, but in the process of updating and improving the OS, were left behind and have not evolved at all. When talking to people from Microsoft I got the clear impression that Microsoft views Notepad as a final product and does not plan to make any changes or additions to it in the foreseeable future. Notepad has some disadvantages that are clear to any person using it on a daily basis. That's why many programmers and 3rd-party software developers looked into developing better tools that will still be as simple to use as Notepad, yet offer additional features and capabilities that were left out of the original Notepad. In the article I will try to list some of these tools. Note that since these are 3rd-party tools and are written by other people than myself, I cannot provide any sort of support or any kind of guarantee. Also, since make note that links and version numbers might change with time. If you know of any other totally free tools (yes, free, 100% free, no nags, shareware or feature limited) please let me know. My favorites are at the top of this list. Notepad ++ (Currently v5. 3. 1) Notepad++ is a free source code editor (and Notepad replacement) which supports several programming languages running under the MS Windows environment. Here are some of the features of Notepad++ : Syntax Highlighting and Syntax... --- ### Greylisting in Exchange 2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/greylisting_in_exchange_2003/ - Categories: Exchange Server - Article Type: Overview Greylisting seems to be the right method to effectively lower the spam levels your mail servers get daily. Read more about it on my Combating Spam with Greylisting article. There are quite a few Greylisting implementations available for a wide variety of SMTP mail servers. So far I was only able to find one freeware Exchange 2000/2003 implementation (if you know of any other freely available tool please let me know). JEP(S) Greylist JEP(S) is a spam filter which intercepts mail sessions before the mail is actually received. This is done by using several different technologies like greylisting, dynamic black- and whitelists and static whitelists. By doing this it drastically reduces the load on the mail server as the spam mail is never received. When JEP(S) suspects that a mail session is spam related it will send back a response to the sending mail server which indicates that the session has failed and that the mail has to be resent. The sending mail server will then queue the mail to be resent and retry at a later time. JEP(S) keeps track of this and when the mail is resent after a configured delay (normally 2 minutes) it will be allowed to be pass through to the mail system. The benefit of refusing the mail before it’s delivered is that you have never received the email that you’re refusing. By doing this the sending mail system is informed while the session is still open that you’re refusing the... --- ### How to Install Microsoft Virtual Machine (VM) Additions on Server Core - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how-to-install-microsoft-virtual-machine-vm-additions-windows-server-core-2008/ - Categories: Windows Server 2008 - Article Type: How To As you already know by now, in Windows Server 2008,  Server Core installation does not include the traditional full graphical user interface (GUI). You can read more about Server Core on my "Understanding Windows Server 2008 Core" article. Without going to much into detail, because of the lack of GUI, installing applications on server core might be more complex than installing them on a regular server installation, not to mention the fact that they might not function at all. One of these applications is the Microsoft Virtual Machine (VM) Additions that comes with Microsoft virtualization products such as Virtual PC 2007 and Virtual Server 2005 R2 SP1. VM Additions greatly improve the guest's performance. Virtual Machine Additions adds the following enhancements to a guest operating system: Improved mouse cursor tracking and control Greatly improved overall performance Virtual machine heartbeat generator Optional time synchronization with the clock of the physical computer You can read more about it on my "Installing VM Additions on Windows Server 2008/Vista" article. Now you might be asking yourself "Why would I want to install VM Additions on Server Core? It doesn't have a GUI to worry about, so why bother? ". Well, you see, the answer to that question is that although you're not likely to sit around the core installation and play Solitaire on it, many performance issues will be solved simply by installing the VM Additions, and since installing them doesn't cost money nor is it complicated, why not do it? So... --- ### Internet Explorer 7 causes Exchange System Manager (ESM) to crash when I try to open Help - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/ie7_crashes_when_opening_esm_help/ - Categories: Exchange Server - Article Type: Overview One of the issues we discovered with Internet Explorer 7 was that it did not have full compatibility with various administrative tools or appliances. Many of these issues might cause you to lose full or partial control over the way some of your appliances work. That's why I recommend NOT TO INSTALL IE7 on server machines, not yet anyway. Some if these "issues"  were fixed by Microsoft as can be seen in the Internet Explorer 7 Crashes when Posting Messages in OWA 2003 article, but others still exist. One of administrative tools that crash when accessed from a computer that has IE7 installed on is the Exchange 2007 System Manager (ESM). In order to test this "issue" of IE7 and ESM, open ESM on a computer that has IE7 on it. Click the Help icon, press F1, or click on the Help menu option. Bingo: You might also get the following error when expanding the administrative groups node: 'Exchange System Manager: The operation completed successfully. Facility: Win32 ID no: c0070000' If you open the Event Viewer you will see an Event ID 1000 (source: Microsoft Exchange Server) displayed: app: contentfilter. dll; module hhctrl. ocx; address 0x00013368 app: maildsmx. dll; module unknown; address 0x00d2e6b1 app: exadmin. dll; module unknown; address 0x00d0fd11 (varies) One way to fix this issue is to uninstall IE7. Another supported method is by following the next steps and remove the PSAPI. DLL from the Exchsrvrbin subdirectory: Stop the Exchange System Attendant Service Stop the IIS Admin Service Open a Command Prompt rename... --- ### Import Saved Queries in Windows Server 2003 AD Users & Computers - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/import_saved_queries_in_windows_2003_dsa/ - Categories: Active Directory (AD) - Article Type: How To How can I import saved queries to Windows Server 2003 AD Users & Computers? Windows Server 2003 AD Users and Computers has a new built-in feature called "Saved Queries". With the Saved Queries feature we can now create our LDAP-based search strings and have them saved for future use, either in the DSA. MSC snap-in itself, or as XML files that can be used in other computer (no, the saved queries you've just created are not replicated to any other computer or DC, they're local to the computer you've created them on). Read more about it in my Saved Queries in Windows Server 2003 AD Users & Computers article. As seen in my LDAP Search Samples for Windows Server 2003 and Exchange 2000/2003 article, most regular LDAP searches can be easily done via the provided GUI (such as in a new Address List filter), however there are instances where the provided GUI does not give us the needed flexibility. For example, you cannot use the GUI to create a search that uses the Boolean word "OR", you can only create searches that use "AND" as their filter. In those cases, if you wanted to create a filter that finds users that are either in the Sales department OR in the Development department - you'd need to use a manual search string. In Windows Server 2003 AD Users and Computers we can now save our LDAP queries in XML format, to be used later or... --- ### Install and Configure Windows Server 2003 DNS Server > Need some help with your Domain Name System (DNS) Server setup in Windows Server 2003? This article shows you how to configure and install it. - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_and_configure_windows_2003_dns_server/ - Categories: DNS - Article Type: How To Need some help with your Domain Name System (DNS) Server setup in Windows Server 2003? This article shows you how to configure and install it. How do I install and configure Windows Server 2003 DNS server? The Domain Name System (DNS) is the Active Directory locator in Windows 2000 and Windows Server 2003. Active Directory clients and client tools use DNS to locate domain controllers for administration and logon. You must have a DNS server installed and configured for Active Directory and the associated client software to function correctly. This article guides you through the required DNS configuration. Install Microsoft DNS Server Click Start, point to Settings, and then click Control Panel. Double-click Add/Remove Programs. Click Add and Remove Windows Components. The Windows Components Wizard starts. Click Next. Click Networking Services, and then click Details. Click to select the Domain Name System (DNS) check box, and then click OK. Click OK to start server Setup. The DNS server and tool files are copied to your computer. Continue to the next step to configure the DNS server. Configure the DNS Server Using DNS Manager These steps guide you through configuring DNS by using the DNS Manager snap-in in Microsoft Management Console (MMC). Click Start, point to Programs, point to Administrative Tools, and then click DNS Manager. You see two zones under your computer name: Forward Lookup Zone and Reverse Lookup Zone. The DNS Server Configuration Wizard starts. Click Next. If the Wizard does not auto-start, right-click your server name object in the DNS Manager console and choose Configure your Server. Choose to add a forward lookup zone. Click Next. The new forward lookup... --- ### Install WAMP on Windows Vista - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/install_wamp_server_on_vista/ - Categories: Windows Vista - Article Type: How To If you recently upgraded to Microsoft Vista, you can enhance the functionality of Vista by turning it into a server. Among many other possibilities, running Vista as a server will let you host web pages, share your documents with friends and family, and allow you to access your documents from outside your local area network. This tutorial will demonstrate how to turn Windows Vista (any version) into a Web server, and how to enable port forwarding on your router which will allow you to connect to your server from outside your local area network. This tutorial requires Windows Vista, 512MB RAM, and 64. 6MB of free space on your hard drive. You can install Apache Server, MySQL, and PHP in one step using WAMP. WAMP is a freeware package that bundles Apache, MySQL, and PHP into one executable. You can download WAMP from the project homepage. Once you download WAMP, double click the icon and begin the install process. Click Next to begin: After agreeing to the WAMP license, select the destination location. Leave the default location as "c:'wamp" and click Next: Leave the default Start Menu shortcut as "WampServer" and click Next: Select automatically launch WAMP5 on startup. This will allow Vista to act as a server whenever it is started. Select the check box and click Next: WAMP will summarize your selections. Click Install and WAMP will begin the install process: WAMP will extract and install itself. The process should only take a few seconds, and WAMP... --- ### Installing Link Layer Topology Discovery (LLTD) on Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/installing-link-layer-topology-discovery-on-windows-xp/ - Categories: Windows Vista - Article Type: How To In one of my previous articles – "Hide your Vista Computer on the Network" I wrote about what the network map is in Vista. The network map on a computer running Windows Vista shows a graphical view of the computers and devices on your network and how they are connected by using the LLTD protocol. LLTD allows a Windows Vista PC to accurately map the topology of your home network. In order to have Windows Vista/2008 computers appear in the network map you need not do anything special. But in order to discover computers running Windows XP, you need to install the LLTD Responder component. You can download the update from the following link: Link Layer Topology Discovery (LLTD) Responder (KB922120) Network Map in Windows Vista does not display computers that are running Windows XP – 922120 http://support. microsoft. com/? kbid=922120 After you download the update, double-click on the file to run it. The installation finishes. It seems that you are not required to reboot in order to finish the installation. After the installation you will see your Windows XP computers appear in the Vista network map. Note: You might be able to have your Windows Server 2003 servers displayed in the network map as well. Read my "Installing Link Layer Topology Discovery (LLTD) on Windows Server 2003" article for more info on that. After having your devices set up and available on the network map, if you move your pointer over one of the devices on the map... --- ### Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 4 – PC Technician - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/mcse-system-administrator-pc-technician-interview-questions/ - Categories: Windows Vista - Article Type: Overview After a long delay, this is a part 4 of my MCSE and System Administrator job interview sample questions. See previous parts at: Part 1 – Networking Part 2 - Windows Server 2003 Active Directory Part 3 - Exchange Server 2003 This article set is targeted at both the interviewer (who needs a pool of valid questions they can ask) and the candidate (who wants a pool of sample questions they can prepare for). Needless to say, both MUST know what they're talking about. Also, although I consider these questions as a thorough verbal test for the candidate's knowledge, in most cases, when he or she passes this phase, I will also ask them to perform an actual hands-on lab based on my written exercises. As I said before, I might also include these in a future parts of this series. I wish to thank Shachaf Cohen of John Bryce Training in Israel who has helped me to compile a large part of this article's questions. I have deliberately left out the answers to these questions. I want YOU to research them and take the time to actually learn these topics, if you don't know them already. Most sub topics start off with relatively easy questions where the candidate is supposed to demonstrate their knowledge on that topic. A few sentences will be enough to show their (lack of) knowledge on the topic. As always, your comments and feedback are more than welcome. Use the "Comment" form... --- ### Microsoft Powertoys Suit - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/microsoft_powertoys_suit/ - Categories: Windows Client OS - Article Type: Overview What are the Windows XP Powertoys? Where can I get them? The Microsoft Powertoys are small tools/gadgets from Microsoft that enhance Windows. Powertoys have been around since windows 95 and are a must for power users. Get them HERE. Note: You *can* install all of them, but since most of them are either crap or plain resource hogging, you will only need the 2 that are a MUST: Open Command Window Here: Adds an "Open Command Window Here" context menu option on file system folders, giving you a quick way to open a command window (cmd. exe) pointing at the selected folder. You can also get it from if the link at Microsoft breaks (which has happened before). Tweak UI: Gives you access to system settings that are not exposed in the Windows XP default user interface, including mouse settings, Explorer settings, taskbar settings, and more. You can also get it from , or get the Win9X version ). If you really need to, read on. Current Powertoys include Open Command Window Here - This PowerToy adds an "Open Command Window Here" context menu option on file system folders, giving you a quick way to open a command window (cmd. exe) pointing at the selected folder. Alt-Tab Replacement - With this PowerToy, in addition to seeing the icon of the application window you are switching to, you will also see a preview of the page. This helps particularly when multiple sessions of an application are open. Note: If... --- ### MS Knowledge Base Search Tips - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/ms_kb_search_tips/ - Categories: Windows Server - Article Type: Overview How to Query the Microsoft Knowledge Base The Microsoft Knowledge Base is a primary Microsoft product information source that Microsoft support professionals use to help customers. This source is also available to Microsoft customers. This comprehensive database includes more than 250,000 detailed articles containing technical information about Microsoft products, fix lists, documentation errors, and answers to commonly asked technical support questions. These articles are also available through the Microsoft TechNet CD and the Microsoft Developer Network (MSDN) CD. Tips for Obtaining the Best Search Results Use more than one word, and then check for correct spelling. Good examples: Setup requirement RAM no sound volume mute Bad examples: how much RAM is needed to run Windows 2000? (too specific; too many words; may return no results) sound (too general; will return too many results) Find and Use the Commonly-Used Terms When you are reading the search results, look for commonly-used terms, and then use them in your search. At the bottom of each article there are two sections that might help: Additional Query Words and Keywords. Using words in either of these sections may help you to find similar articles. Boolean and Proximity Operators The English mathematician, George Boole, developed an algebra of logic, which has become the basis for computer database searches. Boolean logic uses words called operators to determine whether a statement is true or false. The most common operators are AND, OR and NOT. These three little words can be enormously helpful when doing online searches. Boolean and... --- ### Office System (2003) SP3 Slipstreaming - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/office-system-2003-sp3-slipstreaming/ - Categories: Office - Article Type: Overview How can I slipstream service packs into Office System (2003)? Like in previous versions of Office and their corresponding Service Packs, SP3 can be slipstreamed into an administrative installation point of Office 2003, in order to allow for a fully integrated installation. This scenario explains how to create an integrated installation of Office System (2003) and the corresponding service pack in a shared distribution folder on a network or on your local computer. To complete this procedure, you must have the original Office 2003 CD media. Note: This explanation is based upon usage of Office System (2003) and SP3, but will also work for any future service packs. For Office XP integrated installations see "Office XP SP1/2/3 Slipstreaming". Prerequisites for slipstreaming Before we begin anything, you'll need to have a few things: Office System (2003) CD You will need the Administrative Update of Service Pack 3. It can be downloaded from HERE (117mb) No, the regular SP won't do. Note: For languages other than English you'll need the Office 2003 Multilanguage SP which is available HERE Around 650MB of free space on one of your hard drives. A CDR/CDRW drive, CD burning software and (This is actually only optional, but if you want to burn the resulting slipstreamed Office 2003 then you'll need it). Step 1: Perform an administrative installation Do NOT just copy your CD to your HD! Doing so will cause the setup files to grow to more than 900mb, and you will not be able to burn... --- ### OrgBuilder - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/orgbuilder/ - Categories: Administrative Tools and Scripts - Article Type: Overview Description This utility builds up Active Directory users, OU's and groups as well as private and public shared folders. The users are retrieved from the attached Excel file. Requirements: Windows 2000/2003 domain. Download Download (2mb) You need to extract the tool/script found in the downloaded file by using WinZip or similar. Usage First, install the tool by double-clicking on the Setup. exe file. Next, open the attached users_list. xls file and paste the users' first name, last name, description, department, duty, and phone number. Then save the file using the Save command button. Now, open the OrgBuilder utility, specify your domain name (Fully qualified domain name, for example mydomain. com), specify a root folder for public and private folder and hit GO. Detailed Instructions Edit the Excel file. Open the Users_List. xls file. Edit the file and type users' details. Each user must have either a first or last name, a department and a duty. You can automatically generate the description in the form of . When you're done, Click on the 'Save' command button, located on the first line of the excel sheet. The file will be saved either as an XLS and CSV file. The CSV file is used for the building process. Create the organizational tree. Open the OrgBuilder. Type in your domain fully qualified domain name. Sample: mydomain. com Make sure the path for the CSV file (created using the Excel file) is correct. Type in the root folder for the public and private shared directories that will be... --- ### Port Scanning with NMAP - Installation & Usage of NMAP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/port-scanning-with-nmap/ - Categories: Networking - Article Type: Overview Port scanning is a technique used to determine the states of network ports on a host and to map out hosts on a network. In this article, I’ll go over the very basics of port scanning with the NMAP tool. NMAP Overview Port States NMAP will categorize ports as being in one of the following states: Open – The port is accepting TCP connections and UDP packets. This means that an application is running that is using this port. Closed – The port responds to NMAP probe requests but no application is using this port Filtered – The port state cannot be determined because packet filters prevent NMAP probes from reaching the port Unfiltered – The port is accessible but NMAP cannot determine if it is open or closed Open | Filtered – NMAP cannot determine if the port is open or filtered Closed | Filtered – NMAP cannot determine if the port is closed or filtered Port Scanning Techniques NMAP supports different methods of port scanning. These methods are called scan techniques. Each technique is tailored to solving a specific problem. Often times you will have to run several scans using different techniques in order to get a more complete picture of the host(s) you are scanning. TCP SYN scan (-sS) – Can be performed on many thousands of hosts very quickly on a fast network with no firewalls. It starts to open a connection by sending a SYN packet, but it never finishes the connection. The... --- ### Quickly Turn On/Off the Aero Theme in Vista - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly-turn-on-off-aero-theme-in-windows-vista/ - Categories: Windows Vista - Article Type: How To As you all probably know by now, Vista's new Aero Theme is one of the cool features of Microsoft's current operating system. The Aero Theme has, however, some drawbacks. You can read more about these issues in my "Aero Theme is bad, disable it" article. The Aero theme has one major drawback you might want to consider. If you’re using Vista on a laptop computer you might notice that Vista, with Aero Theme on, drains your batter life much faster than you’d expect. I don’t have details on exactly how much battery life is reduced when using Vista Aero, but many websites report seeing this reduction. When Aero is turned off, battery life is equal to or better than Windows XP systems. But with it turned on, battery life suffers compared with Windows XP. Naturally, there is a "regular" way to disable or enable the Aero Theme. If you want to follow along and haven't yet enabled it, you can read "How To Enable Windows Vista Aero Graphics". However, using the manual way might be tedious when you just need to quickly enable or disable it. I do it all the time whenever I turn my laptop on and know that I won't be near a power outlet in the next few hours. By turning the Aero Theme temporarily off I save a few minutes of battery power (some blogs and websites claim that there is a 10%-15% gain in battery power when disabling Aero). The truth is, like always,... --- ### Work with Vista Hibernation - Quickly  Enable Hibernation & Quickly Disable Hibernation - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly_enable_or_disable_vista_hibernation/ - Categories: Windows Vista - Article Type: How To Hibernation is a term used for laptops and portable computers. Windows Vista (like XP before it) supports the industry standard power management technology known as the Advanced Configuration and Power Interface (or ACPI). This allows the operating system to control power to the computer's disk, monitor and peripheral devices. The power management features in Windows Vista include Hibernate and Standby. Hibernate saves an image of your desktop with all open files and documents to your hard disk. This will create a hidden system file called hiberfil. sys, with the size of your installed physical memory on your system partition (usually the C: drive). The computer uses the hiberfil. sys file to store a copy of the system memory on the hard disk when the hibernation setting is turned on. If this file is not present, the computer cannot hibernate. After it stores the information in the file it will power down your computer. When you turn on power, your files and documents will open on your desktop exactly as you left them. Standby reduces the power consumption of your computer by cutting power to hardware components you are not using. Standby can cut power to peripheral devices, monitor and hard drives, but maintains power to the computer's memory so you don't lose your work. These features make most sense if you use a laptop. You can take advantage of the Standby and Hibernate features which reduce the drain on battery power when you leave your laptop running. When you... --- ### Recovering Deleted Items in Active Directory - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/recovering-deleted-items-active-directory/ - Categories: Active Directory (AD) - Article Type: How To Active Directory is a hierarchical database that holds information about the network’s resources such as computers, servers, users, groups and more. The main purpose of Active Directory is to provide central authentication and authorization services. Normal administrative tasks when working with Active Directory include creating, managing, moving, editing and sometimes – deleting – various objects such as user accounts, computer accounts, groups, contacts and other objects. The Active Directory database is stored on Domain Controllers (or DCs), in a file called NTDS. DIT (that's not everything, but it'll do for a short intro... ) While deleting an object in Active Directory is usually something an administrator would think twice before doing, sometimes mistakes do happen, and then the administrator ends up with one (or more) deleted items that he or she cannot restore anymore. I bet I'm not telling you stuff you don't know, otherwise you wouldn't be here, would you? As a skilled IT professional, one should always make sure he or she has a working backup of the current AD database. In Windows 2000 Server and Windows Server 2003 this can be easily accomplished by running NTBACKUP and performing a System State backup. However, let's assume that, for this example, no such backup exists, or, if it does, certain issues are preventing us from using it to restore our deleted objects. How does Active Directory treat deleted items? When an object is deleted from Active Directory, it is not immediately erased, but is marked for future deletion... . --- ### Remotely Manage Devices in Windows 2008 Server Core - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/remotely-manage-devices-windows-server-2008-core/ - Categories: Windows Server 2008 - Article Type: How To As I wrote in previous Windows Server 2008 articles, a Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. You can read more about Server Core in the "What's Related" section at the bottom of this page. Getting to the point of this article, remotely managing Server Core is not as hard as it seems. You can read more about it on several of my articles, but the point is that most things can be done remotely by using the regular MMC-based snap-in Administration tools, WinRM and WinRS, and even through Remote Desktop. This article focuses on remote administration via the MMC-based Administration tools. In order to get these to work across the network you will need to run the following command on the server core machine (or on any other Windows Server 2008 server for that matter): ​netsh advfirewall firewall set rule group=“remote administration” new enable=yes The above command will allow for most remote management tools to work out-of-the-box. However, in addition to allowing the MMC snap-ins through the firewall, using Device Manager remotely requires additional configuration. If you don't perform the following steps you will end up with this error:   Running Device Manager remotely To allow Device Manager to connect to a remote computer, you must first enable the “Allow remote access to the PnP interface” setting on the target computer's Local Group Policy. 1.  On a... --- ### Reporting Storage Size in Microsoft Exchange - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/reporting_storage_size_in_exchange/ - Categories: Exchange Server - Article Type: How To In a great blog entry by Michael B. Smith, he has outlined a scripted method of obtaining the Mailbox and Public Folder store sizes on all Exchange servers in your organization. As Michael explains, it is a common request is to find out how much disk space Exchange is using in all of the various EDB and STM files spread out everywhere. By running Michael's fine script, you will get an output similar to this (I've used Michael's own report, as I do not have a test environment with more than one server right now): ​Exchange Organization Name: We Do Email best Default SMTP address for organization: e12beta. com All Exchange Servers in forest DC=e12beta,DC=com Server Name: VOLCANO Server Name: E12BETA Server name: VOLCANO Storage group: First Storage Group Store: Public Folder Store (VOLCANO) EDB file: C:Program FilesExchsrvrmdbdatapub1. edb Size: 11 megabytes SLV file: C:Program FilesExchsrvrmdbdatapub1. stm Size: 4 megabytes Store Size Total: 15 megabytes Store: Mailbox Store (VOLCANO) EDB file: C:Program FilesExchsrvrmdbdatapriv1. edb Size: 6 megabytes SLV file: C:Program FilesExchsrvrmdbdatapriv1. stm Size: 8 megabytes Store Size Total: 14 megabytes Storage Group total: 29 megabytes Server total: 29 megabytes Server name: E12BETA Storage group: First Storage Group Store: Public Folder Store (E12BETA) EDB file: D:ExchsrvrMDBDATApub1. edb Size: 897 megabytes SLV file: D:ExchsrvrMDBDATApub1. stm Size: 212 megabytes Store Size Total: 1,109 megabytes Store: 7-Day-DIR EDB file: D:ExchsrvrMDBDATA7-Day-DIR. edb Size: 22,189 megabytes SLV file: D:ExchsrvrMDBDATA7-Day-DIR. stm Size: 15,296 megabytes Store Size Total: 37,485 megabytes Store: DBI Archive Store EDB file: D:ExchsrvrMDBDATADBI Archive Store. edb Size: 4,752 megabytes SLV file:... --- ### Restoring Exchange 2000/2003 mailboxes with ExMerge after moving the mailbox to Exchange 2007 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/restoring-exchange-2003-mailboxes-exchange-2007-exmerge/ - Categories: Exchange Server - Article Type: How To Imagine the following scenario: You perform a full backup of mailbox store on Exchange 2000/2003.   You move a mailbox from the backed-up store to an Exchange 2007 server.   You try to leverage the Recovery Storage Group feature on the Exchange 2000/2003 server to restore the contents of the mailbox in question using ExMerge to restore/export the contents of the mailbox from a date before the mailbox was moved.   The ExMerge export phase fails with the following error in the exmerge. log: Error opening message store (MSEMS). Verify that the Microsoft Exchange Information Store service is running and that you have the correct permissions to log on. (0x8004011d) Usually you would get this error if the account you run Exmerge with does not have full permissions on the mailbox you are trying to restore, but this case is a bit different. Even if you grant yourself Full Mailbox Access and get rid of the "Send As" and "Receive As" denies (see KB322312 for details), the process still fails with the error message above. The issue stems from the fact that the mailbox in question has been moved to a different mailbox store from the one it was backed-up from. In order to better understand the problem, lets look at how Recovery Storage Group links a mailbox from RSG to an existing account in AD and what are some of the checks that are performed when you try to export the contents of a mailbox from a database... --- ### Small Business Server 2000 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/sbs_2000_patches/ - Categories: Windows 2000 - Article Type: Overview   Required Patches - SP1/SP1a Small Business Server 2000 is based on the Windows 2000 platform, and incorporates Back Office 2000 products such as Exchange 2000 Server, ISA Server 2000, SQL 2000 Server and more. Because of that, virtually all Windows 2000, Exchange 2000, SQL 2000, ISA Server 2000 patches and service packs apply to SBS 2000. 2 versions of Service Pack 1 exist: SP1 and SP1a. Service Pack 1 for SBS 2000 was released in the beginning of August 2002. This service pack includes SP3 for Windows 2000, SP3 for Exchange 2000, plus other add-ons and SBS 2000 patches. If you are currently running Small Business Server 2000 SP1 with Windows 2000 SP3, Microsoft recommends upgrading to Windows 2000 SP4. Service Pack 1a for SBS 2000 contains the same updates as SP1, plus Windows 2000 Service Pack 4 (SP4). Small Business Server 2000 SP1a also differs from SP1 in that it does not include or install the Microsoft virtual machine (VM), which provides support for running Java programs. You can download SP1a for SBS 2000 right HERE (300mb) You should also download and install the following patches: January 2004 MS04-001 : Vulnerability in H. 323 Filter can Allow Remote Code Execution (816458) August 2002 MS02-044 : Unsafe Functions in Office Web Components (328130) W2K and E2K individual patches still apply! Applying SP1 for SBS 2000 will bring your SBS 2000 server to date with SP3 for W2K and E2K. Applying SP1a will bring your SBS 2000 server to date with... --- ### Server Performance Advisor (SPA) for Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/server-performance-advisor-spa-windows-server-2003/ - Categories: Windows Client OS - Article Type: Overview This is an article following my previous one about the PAL (Performance Analysis of Logs) tool – read "Quickly Analyze your Server's Performance Monitor Logs ". Microsoft Windows Server 2003 Performance Advisor v2. 0 is the latest version of Server Performance Advisor, which is a simple but robust tool that helps you diagnose the root causes of performance problems in a Microsoft Windows Server 2003 deployment. It measures the performance and use of resources by your computer to report on the parts that are stressed under workload. It does so by collecting performance data and generating comprehensive diagnostic reports that give you the data to easily analyze problems and develop corrective actions. SPA provides several specialized reports, including a System Overview (focusing on CPU usage, Memory usage, busy files, busy TCP clients, top CPU consumers) and built-in template reports for server roles such as Active Directory, Internet Information System (IIS), DNS, Terminal Services, SQL, print spooler, and others. In fact, SPA is kind of a Performance Monitor tool that is integrated with Network Monitor and has a built-in logic that allows for easier understanding of the captured data and can help you identify clients or applications that are consuming resources on a server. What can SPA be used for? When collecting data for a report, SPA logs activity over short periods of time (seconds or minutes, not hours). Logged events are then correlated to generate a profile of the workload, and a rule-based system analyzes the data to highlight... --- ### S/MIME Benefits in OWA 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/smime_benefits_in_owa_2003/ - Categories: Exchange Server - Article Type: Overview Some benefits of using the S/MIME control in OWA 2003 Outlook Web Access (OWA) in Exchange Server 2003 has many fine features that make you feel like you were using the full-featured Outlook client. With that said, note that you can improve the user's experience by opting to install the S/MIME control on your machine. The S/MIME control is used to allow the user to read encrypted emails sent to him (providing he or she has the private key used to decrypt the messages), and to send encrypted and digitally signed messages to other users. Read more about it on the Configure Message Security in OWA 2003 article. Besides that ability, by installing this control you also get additional useful features to enhance your OWA experience: Drag and Drop messages - You will be able to drag and drop existing messages into new messages that you are currently composing, and by doing so you will see those messages added as . eml attachments. Drag and Drop attachments - You will be able to drag and drop files from an open Windows Explorer window directly into new messages you are composing, and the file attachment tool is much easier to use than having to browse with the old way. Before: After: Enhanced Fonts - Instead of having just 5 default fonts to choose from, you now have access to all the installed fonts on your system. Before: After: Solves issues with Hebrew and Arabic fonts - The problem and solution is described... --- ### Tar Pitting in Exchange 2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/tar_pitting_exchange_2003/ - Categories: Exchange Server - Article Type: How To Microsoft KB 842851 has more info: Tar pitting is the practice of deliberately inserting a delay into certain SMTP communications that are associated with spam or with other unwanted traffic. The tar pit feature works by slowing all responses that contain SMTP protocol 5. x. x error codes. By slowing an SMTP conversation, you can reduce the rate at which automated spam can be sent or at which a dictionary attack can be conducted. On the downside, legitimate traffic may also be slowed by tar pitting. The tar pit feature is available in Microsoft Windows Server 2003 and in several third-party SMTP servers. An administrator can configure the delay that is introduced by the tar pit feature. Tar pitting is a feature of the generic Windows Server 2003 SMTP service, meaning that it is used by the SMTP service and can also be used by other applications. Tar pitting will become effective when you've enabled Exchange Server 2003 recipient filtering. Recipient filtering lets you filter or reject incoming mail for specifically defined recipients and for any incoming recipient that is not listed in the Active Directory directory service for your organization. Therefore, senders will not be able to send you mail that is destined for invalid recipients or for filtered recipients. Such mail is rejected early in the SMTP conversation before the body of the mail is transmitted. This behavior generally reduces the processing demand of dealing with invalid mail on your Exchange server. Not only do you not... --- ### How to Transfer FSMO Roles > Learn how to quickly transfer FSMO roles in Active Directory using PowerShell and GUI tools - Published: 2009-01-08 - Modified: 2024-10-15 - URL: https://petri.com/transferring_fsmo_roles/ - Categories: Active Directory (AD) - Tags: Active Directory, Windows Server - Article Type: How To In this article, you will learn how to transfer FSMO roles in Active Directory quickly using the command lines tools and GUI. Windows Server Active Directory domains utilize a Single Operation Master method called FSMO (Flexible Single Master Operation). In most cases an administrator can keep the FSMO role holders (all 5 of them) in the same spot (or actually, on the same domain controller) as has been configured by the Active Directory installation process. However, there are scenarios where an administrator would want to move one or more of the FSMO roles from the default holder domain controller (DC) to a different DC. Moving the FSMO roles while both the original FSMO role holder and the future FSMO role holder are online and operational is called Transferring, and is described in this article. Transfer FSMO roles using PowerShell You can move/transfer FSMO roles using the PowerShell Move-ADDirectoryServerOperationMasterRole cmdlet. The syntax for the command is as follows: Move-ADDirectoryServerOperationMasterRole -Identity -OperationMasterRole -Server -Identity sets the domain controller (DC) you want to assign the role(s) to-OperationMasterRole specifies the role(s) you want to seize. You can specify the roles by name or number Move the PDC Emulator role Move-ADDirectoryServerOperationMasterRole -Identity "DC3" -OperationMasterRole PDCEmulator Move RID Master Move-ADDirectoryServerOperationMasterRole -Identity "DC3" -OperationMasterRole RIDMaster Move Infrastructure Master Move-ADDirectoryServerOperationMasterRole -Identity "DC3" -OperationMasterRole InfrastructureMaster Move Schema Master Move-ADDirectoryServerOperationMasterRole -Identity "DC3" -OperationMasterRole SchemaMaster Move Domain Naming Master Move-ADDirectoryServerOperationMasterRole -Identity "DC3" -OperationMasterRole DomainNamingMaster You can check FSMO roles, and which DCs hold each role, using the GUI and command line... . --- ### Understanding Multiple Local GPOs in Windows Vista - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/understanding_multiple_local_gpo_in_windows_vista/ - Categories: Windows Vista - Article Type: Overview Local GPOs are used to allow the administrator of a Windows 2000/XP/2003/Vista computer to configure security and registry settings for the computer. LGPOs allow the administrator to do so in absence of an Active Directory-based GPO infrastructure, such as in the following scenarios: Kiosk computer Demo workstation Public environments such as libraries and so on. LGPOs are also useful in scenarios where an AD GPO infrastructure does exist, but for various reasons they need to configure extra settings for the local workstation instead of assigning these settings via AD-based GPOs. LGPOs can also be used in home scenarios, where one needs to configure a restriction on the computer, like preventing your children from messing your Control Panel settings, Regedit and so on. The bad news The main disadvantage of LGPOs is the fact that Windows 2000/XP/2003 only allows the creation and usage of only one Local GPO. This may be problematic when trying to create different settings for users that are part of different groups. For example, if you want to configure different settings for members of the administrators group and for any user that is not a member of that group. The good news Windows Vista has the ability to create multiple local group policies (GPOs). Wow! This means that whenever you want to configure different settings for different users you can do so easily without the need to mess with NTFS permissions (this was one of the methods used by Pre-Vista administrators to bypass the single LGPO limit... --- ### Upgrading From Exchange Server Standard Edition to the Enterprise Edition - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/upgrading_from_exchange_server_standard_edition_to_the_enterprise_edition/ - Categories: Exchange Server - Article Type: Overview How to Upgrade from Exchange Server Standard Edition to the Enterprise Edition? MS KB 170280 has info on this issue: Exchange 2000/2003 Server Standard Edition has quite a few limitations in comparison with the Enterprise Edition. Among them is the 16GB database size limit, lack of Clustering support, lack of ability to act as a Front-End server (this limit was in fact removed in Exchange Server 2003 Standard Edition) and more (read What's my Exchange 2000/2003 Version? ). To upgrade the Standard Edition of Microsoft Exchange Server to the Enterprise Edition of Microsoft Exchange Server, run the Setup program from the Exchange Server Enterprise Edition compact disc and click the Reinstall button. Note: Do not forget to create a full backup set of your Information Store, including all Mailbox and Public Folder stores BEFORE you begin the upgrade process. To install any additional components or connectors included in the Enterprise Edition of Exchange Server, run the setup program again and click Add/Remove. Note: Once upgraded you cannot downgrade Exchange Enterprise Server edition to the standard version of Exchange Server. Note: After checking to see that the upgrade process was indeed successful you should run your backup software and create a full backup set of your Information Store, including all Mailbox and Public Folder stores, starting a new cycle of backing up the IS. Do NOT continue the old backup cycle, start a new one. Links Upgrading From Exchange Server Standard Edition to the Enterprise... --- ### How can I view the Intelligent Message Filter (IMF) archive in Exchange 2003? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/view_imf_archive/ - Categories: Exchange Server - Article Type: How To Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users. You can read more about IMF on the Block Spam with Exchange 2003 Intelligent Message Filter page. When using IMF to help reduce the volume of Unsolicited Commercial E-Mail (UCE, or most commonly known as Spam) received by your users, one of the configuration options is to archive the received messages that are flagged as spam and have a Spam Confidence Level (or SCL) greater than a certain threshold you find reasonable. SCL is a "rating system" that on a scale from -1 (only used for authenticated users) to 10, will tell Outlook or OWA whether or not the e-mail should be moved to the Junk E-mail folder (depending on the user's settings). Note that not all messages might be transferred to the store (i. e. the user's mailbox) depending on the settings on the IMF tab. Read more about how to Configure Intelligent Message Filter in Exchange 2003 SP2. Archiving the incoming messages for a period of 2 or 3 weeks allows you to be sure that the IMF filter settings are optimal for your organization. Lowering the SCL threshold or making it higher will allow you to control the percentage of false positives that IMF thinks is spam, to some extent. Note: When performing the archive operation on the messages that have an SCL that is greater than the threshold you've configured (make... --- ### How to Choose the Right VMware Infrastructure ESX Edition For You - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/vmware-infrastructure-esx/ - Categories: VMware - Article Type: How To In our previous article, "VMware Versions Compared", we compared the various products in VMware's product line. For example, the difference between VMware Server, Workstation, and Server ESX. In this article, we will focus specifically on the VMware ESX product line and the VMware virtualization suite called VMware Infrastructure. With a variety of VMware Infrastructure suites and ESX Server product options, it is difficult to know which is right for you. Let's find out... What is VMware Infrastructure? As you probably already know, VMware ESX is an enterprise grade virtualization product by VMware. Unlike VMware Server, VMware ESX does not require an underlying operating system to be loaded first. What this means is that you get the highest virtualization performance that is possible when using VMware ESX Server. So what is VMware Infrastructure (VI)? VI, is really just a product suite. Keep that in mind. There is really no application called "VMware Infrastructure". VI is a bundle of VMware products. What capabilities or options are available for VMware ESX? When you buy a VMware Infrastructure suite, you are really just buying VMware ESX Server, the VMFS file system, and some number of options. No matter which suite or bundle you buy, you MUST get VMware ESX as that is the core virtualization product you will need. So what options are available for VMware ESX? (some of these were covered in our VMware Versions Compared article) Virtual Center (VC) - VC provides a centralized management console for all VMware... --- ### What's Remote Assistance in Windows XP/2003? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/remote-assistance-in-windows-xp/ - Categories: Networking - Article Type: Overview If you’ve ever tried to help a novice user troubleshoot a Windows problem over the phone, you know how frustrating the entire process can be. It’s usually difficult for an inexperienced user to accurately communicate detailed configuration information, especially if the problem involves technically challenging areas such as hardware drivers or network protocols. Because you’re not looking over the user’s shoulder, you can’t see error messages or informational dialog boxes, so you have to rely on the user to read this crucial information back to you. Even when you successfully pin down the problem and find a solution, you have to walk the user through a repair process that can be daunting. With Windows XP, on the other hand, you can eliminate most of those headaches using a new support tool called Remote Assistance. This feature, available in both Windows XP Professional and Home Edition and on Windows Server 2003, lets you open a direct connection between two machines over the Internet or over a local area network. Even if you’re hundreds or thousands of miles away, you can watch as the user demonstrates the problem and take control of the screen to make repairs quickly and accurately. You can investigate Control Panel settings, run diagnostic tools, install updates, and even edit the registry of the problem-plagued PC. Repairs that might have taken hours the old-fashioned way can be accomplished in a few minutes using this tool. What's the difference between Remote Assistance and Remote Desktop? Behind... --- ### What are IPSEC Policies? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/what_are_ipsec_policies/ - Categories: Security - Article Type: Overview What are IPSEC Policies and how do I work with them? If you’ve studied Windows 2000 security much, then you know that one of the biggest security features that’s included in Windows 2000 is the IPSec protocol. IPSec is a protocol that’s designed to protect individual TCP/IP packets traveling across your network by using public key encryption. In a nut shell, the source PC encapsulates the normal IP packet inside of an encrypted IPSec packet. This packet then remains encrypted until it arrives at the destination PC. While this concept sounds simple enough, there’s actually quite a bit that you need to know about IPSec before you can effectively use it on your network. One of the first things that you should know about IPSec is that it’s slower than a normal IP packet because of the larger packet size and the overhead required for encryption and decryption. The larger packet size also means that IPSec can consume more network bandwidth than traditional IP packets. Needless to say, you probably only want to use IPSec for communications that really need to be secure. Fortunately, using IPSec isn’t an all or nothing situation. There are ways for telling Windows which communications need to be performed through IPSec and which communications can be sent through traditional packets. Such rules can be established through the use of IPSec policies. In this article, I’ll introduce you to the concept of IPSec policies. As I do, I’ll explain how to implement various... --- ### Windows 2003 Domain Controller Rename > Free instructions on renaming your domain controller with Windows Server 2003. Step-by-step guide through the renaming screens. - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2003_domain_controller_rename/ - Categories: Active Directory (AD) - Article Type: Overview How can I rename my Windows 2003 Domain Controllers? Although not the best idea in the world and although I rather re-build the entire server from scratch, this can be done in Windows Server 2003-based Domain Controllers. The procedure is quite simple. It only requires one reboot of the DC that had it's name renamed. You don't even have to sit near the DC, you can accomplish it from any computer that has the Windows Server 2003 Support Tools installed, and if you have the appropriate user credentials. Note: Only Windows Server 2003 Domain Controllers can be renamed. Note: You must be a member of the Domain Admins group. Another Note: Domain Controllers running Microsoft's Certificate Authority services (CA) can never be renamed. Lamer Note: This is NOT the same as renaming your entire domain! In order to do that read Windows 2003 Domain Rename Tool. Before: After: There are 2 methods for performing the rename procedure. One is easier and done through the GUI, the other is more complex and requires the installation of the Windows Server 2003 Support Tools. Method #1 - Through the GUI Although easier to implement, if you rename a domain controller through the System Properties dialog box instead of using the Netdom. exe tool, DNS and Active Directory replication latency may delay the ability of clients to locate or authenticate to the renamed domain controller. The length of this latency depends on your network design and the replication topology of your organization... . --- ### What is a VLAN? How to Setup a VLAN on a Cisco Switch - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/csc_setup_a_vlan_on_a_cisco_switch/ - Categories: Cisco - Article Type: How To What is a VLAN? How to Setup a VLAN on a Cisco Switch Have you ever wondered what a Virtual LAN (or VLAN) is or been unclear as to why you would want one? If so, I have been in your place at one time too. Since then, I have learned a lot about what a VLAN is and how it can help me. In this article, I will share that knowledge with you. What is a LAN? Okay, most of you already know what a LAN is but let’s give it a definition to make sure. We have to do this because, if you don’t know what a LAN is, you can’t understand what a VLAN is. A LAN is a local area network and is defined as all devices in the same broadcast domain. If you remember, routers stop broadcasts, switches just forward them. What is a VLAN? As I said, a VLAN is a virtual LAN. In technical terms, a VLAN is a broadcast domain created by switches. Normally, it is a router creating that broadcast domain. With VLAN’s, a switch can create the broadcast domain. This works by, you, the administrator, putting some switch ports in a VLAN other than 1, the default VLAN. All ports in a single VLAN are in a single broadcast domain. Because switches can talk to each other, some ports on switch A can be in VLAN 10 and other ports on switch B can be in VLAN... --- ### Layer by Layer Troubleshooting with a Cisco Router - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/layer-by-layer-troubleshooting-cisco/ - Categories: Cisco - Article Type: Overview Every network admin is going to have trouble with network links on a Cisco router, at one point or another. The best way to troubleshoot any networking issues is to use the OSI model and go layer by layer. In my article How to use the OSI Model to Troubleshoot Networks, we talked about the different troubleshooting approaches and how to use them to troubleshoot your network, in general. In this article, you will find out how to use the OSI model to troubleshoot, bottom up, using a Cisco router. OSI Model - Bottom Up Troubleshooting If you will recall, the OSI model starts with the physical layer (layer 1) and goes up to layer 7 (application). When troubleshooting with a Cisco router, much of your time will be spent working in layers 1-3. They are: Layer 3 - Network Layer 2 - Data Link Layer 1 - Physical Because these layers build on each other, Layer 1 is most critical, without layer 1, layer 2 will not function. Without layer 1 & 2, layer 3 will not function, and so on. For this reason, I start troubleshooting at layer 1, physical, and move on up from there. Router Troubleshooting at OSI Layer 1 & 2 - Physical & Data link Remember, if Layer 1 isn't up, nothing else will work so make sure you start here. Examples of layer 1 are your T1 circuit or your Ethernet cable - physical connectivity. I usually troubleshoot layer 1... --- ### Essential Information About VMware Consolidated Backup (VCB) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual-vmware-consolidated-backup-vcb/ - Categories: VMware - Article Type: Overview As part of VMware Infrastructure (VI), VMware includes VMware Consolidated Backup (VCB). This product is used to backup VMware ESX Virtual Servers. For those of you who are dealing with the challenge of backing up VMware ESX virtual machines, this article is for you. So why would you want to use VCB? What can it do for you? And what do you need to know about it? Let's find out... What is VCB? As I said, VCB is used to help you backup your VMware ESX virtual servers. Essentially, VCB is a "backup proxy server". It is not backup software. If you use VCB, you still need backup software. It is commonly installed on its own dedicated Windows physical server (not a virtual server). VCB is included in VMware's virtual infrastructure enterprise edition or you can buy it separately for $500. What will VCB do for me? Here are the benefits of VMware's VCB: Centralize backups of VMware ESX Virtual Servers Provide file-level backups of VMware ESX Virtual Servers - both full and incremental (file level backup available to only Windows guests) Provide image-level backups Prevent you from having to load a backup agent on every Virtual Machine Prevent you from having to shutdown Virtual Machines to get a backup Provides LAN-Free backup because the VCB server is connected to the SAN through your fibre channel adaptor Provides centralized storage of Virtual Server backups on the VCB server, that is then moved to your backup tapes through... --- ### How to Remotely Manage your VMware Servers - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_remote_manage_vmware_servers/ - Categories: VMware - Article Type: How To As soon as you begin using VMware Servers in a production environment you will have a need for remotely managing those VMware servers. Sure you could use remote desktop or something but there are much better tools. As the number of servers grows, the need will grow for a remote management application to administer those servers from your desk or from home. In this article, we'll discuss and demonstrate the remote management options for VMware Servers. Which VMware Server platform are we talking about? In this article, we are talking about the FREE version of VMware, VMware Server. This is not to be confused with VMware ESX and the Virtual Infrastructure (VI) system. With VI, you would very likely use Virtual Center for centralized management. With the FREE version of VMware Server, you have a number of options for remote management. VMware Server Console The VMware Server Console is installed, by default with VMware Server. This is the application you usually think of when you think of VMware Server. This is what it looks like:   The Server console can, optionally, NOT be installed on a VMware server if you only plan on managing it remotely. Also, you can choose to install only the VMware server console on another machine (and not install VMware Server). You would then use the VMware Server console to manage a remote server using a username & password. These credentials would just need to be administrator equivalent on the remote system, running VMware... . --- ### How to quickly find and resolve VMware ESX Server performance capacity bottlenecks with VKernel - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/vkernel-capacity-bottleneck-analyzer-vmware-appliance-quickly-resolve-performance/ - Categories: VMware - Article Type: How To As a system administrator with growing demand on your servers you will eventually run into a capacity bottleneck in your CPU, RAM, Disk, or network. These performance issues can be difficult to identify and troubleshoot without a quality tool. For typical Windows servers, performance management tools can often be difficult to install, configure, and obtain necessary information out of. Just like most Windows Admins, administrators of VMware ESX Server & VMware Infrastructure will eventually run into performance capacity bottlenecks. However, what will make life much easier for VMware virtualization administrators is the availability of the VKernel Capacity Bottleneck Analyzer. Because of this tool, virtualization administrators can quickly and easily identify the cause of performance issues and find out what is needed to resolve them. Even better the VKernel Capacity Bottleneck Analyzer can alert VMware admins that a performance issue is “about” to occur, before it actually happens. Let’s find out more about the VKernel Capacity Bottleneck Analyzer... What are the features of the VKernel Capacity Bottleneck Analyzer? While I already had a basic idea of what the VKernel Capacity Bottleneck Analyzer was, I still wanted to learn more about it before I tried it out for myself. To do that, I clicked on the flash video on the VKernel homepage. Here is what it looked like: I must say that I was impressed! The Capacity Bottleneck Analyzer flash video was very professional and I learned a lot about the product. I might even say that the video... --- ### Defining an Exchange 2007 E-Mail Address Policy, Part 1 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/defining-exchange-2007-email-address-policy-part-1/ - Categories: Exchange Server - Article Type: Overview As we all know, Exchange Server 2007 is a lot different from previous versions of Exchange.   One of the changes that Microsoft made in creating Exchange Server 2007 was to get rid of the Recipient Update Service.   In case you're not familiar with the Recipient Update Service, it was the mechanism responsible for stamping e-mail addresses onto Active Directory objects.   As you may know, the Recipient Update Service didn't always behave as anticipated, and sometimes the result long delay before user accounts would be assigned an e-mail address. In Exchange Server 2007, the Recipient Update Service has been replaced by a new synchronous process that assigns e-mail addresses to Active Directory accounts immediately via the EmailAddressPolicy command.   Of course one of the side effects to this change is that the method for creating a new e-mail address policy has changed.   The process is still simple, and straight forward, but it is quite a bit different from the process used in Exchange Server 2003. Accepted Domains Before you can create an e-mail address policy, you must first define at least one excepted domain.   Accepted domains are generally domains for which the Exchange organization should be authoritative for.   In some cases though, an accepted domain can be a domain in a different Active Directory forest within the organization, or an external domain. When you deploy the first hub transport server in your Exchange Server organization, Exchange configures the forest root domain as an accepted domain by default.   This works... --- ### Performance Monitoring the Easy Way, Part 3 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/performance-monitoring-easy-way-part-3/ - Categories: Windows Server 2008 - Article Type: Overview In the second article in this series, I mentioned that one of the biggest improvements in performance monitoring was the addition of Data Collector Sets. Data Collector Sets are collections of performance monitor counters and system traces, that are all related to a specific purpose. In this article, I will show you how they work. Data Collector Sets Earlier in this series, I mentioned that a lot of administrators seem to shy away from using the Performance Monitor because of its complexity. This complexity has gotten worse as time has gone on. The Windows NT version of the Performance Monitor was really similar to the Windows Server 2003 version. Both of those versions were complex in that you had to know how to interpret the data provided by the various counters. At the same time though, Windows NT had relatively few Performance Monitor counters that you had to learn about. There have been hundreds of counters created since that time though. In fact, one of the biggest challenges in using the Windows Server 2003 and Windows Server 2008 versions of the Performance Monitor is just figuring out which counters you should be using. There are a hand full of Performance Monitor counters that are almost always of interest in just about any situation. Typically though, just looking at the more generic counters is not going to help you to gain any sort of in depth understanding of what is happening with your system. For that, you need... --- ### Getting Mailbox Sizes in PowerShell > Learn how to get Microsoft Exchange mailbox sizes in PowerShell in this step-by-step tutorial by the Petri IT Knowledgebase. - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/getting-mailbox-sizes-in-powershell/ - Categories: Exchange Server - Article Type: How To Learn how to get Microsoft Exchange mailbox sizes in PowerShell in this step-by-step tutorial by the Petri IT Knowledgebase. One of the comments I hear often by Exchange admins who move from a legacy version of Exchange to Exchange 2007, is that they can’t find how to see a list of users and their mailbox sizes. Fear not – help is here! In earlier versions of Exchange, we could look in the Exchange console and see mailbox sizes on a per database basis. Not bad, but better than what we have in the Exchange 2007 GUI. Fortunately, we can use PowerShell to see the information we need. And, we have more control over how the information is displayed, as well as what information is displayed. Let’s fire up PowerShell and get started. We can use the Get-MailboxStatistics cmdlet and supply a username like this: ​Get-MailboxStatistics This shows the DisplayName, ItemCount, StorageLimitStatus, and LastLogonTime fields for the specified user, as seen in Figure 1 below. Figure 1 But that doesn’t show what we need. We can have the cmdlet display just specific fields, such as DisplayName, ItemCount, and TotalItemSize, which will show the size of the mailbox. For that, we use the FT command, short for Format-Table, along with the fields we want. ​Get-MailboxStatistics | ft DisplayName, TotalItemSize, ItemCount This shows us the size of the mailbox in bytes, as well as the number of items, and the username, as seen in Figure 2 below. Figure 2 We can add another field to show if the user is above or below the storage limits by including the StorageLimitStatus... --- ### Delete Internet Explorer Address Bar History - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/delete_ie_address_bar_history/ - Categories: Windows Client OS - Article Type: How To Can I delete the Internet Explorer Address Bar History? Sure you can! When you use Internet Explorer to browse to a website and do so by directly typing the URL in the address bar, the URL you've typed will be saved. This is useful for your own use, but in case you're using a computer of co-worker (or your wife, even nastier), and the URL you've typed is, hmmm... how should I say, a bit suspicious, then that URL could be viewed by the other user by pulling down the list. If you've logged on as your own user then that's ok, but if you've temporarily used a different user's account to "just check in your email" (wink wink... ), then that might get you into trouble. That's why you may want to remove, delete or clear the history of links from Internet Explorer address bar. Now here is the tricky part. We all know that you could simply clear your IE history (Internet Explorer > Tools >Internet Options > General tab > click Clear History), however that'll clear ALL your history, including the address bar URL cache. That we do not want, because that'll just signal the "other user" (e. g. wife) that you've done something you wanted to hide. And that my friend, is harder to explain. So, in order to clear or the history of the address bar in IE only without deleting your IE History folder follow these steps: Start Registry Editor (Regedit. exe). Note: As always,... --- ### Disable Automatic Image Resizing in IE 6 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_auto_picture_resizing_in_ie_6/ - Categories: Windows Client OS - Article Type: How To How can I disable automatic image resizing in Internet Explorer 6/7? Internet Explorer 6/7 has a feature that causes images that are larger than the display area to automatically be reduced in size, thus removing the need to scroll around the picture. While nice in concept, this feature can be quite annoying. Luckily for us, it can be easily disabled. To prevent IE from automatically resizing images follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerMain Create the following value (SZ): Enable AutoImageResize and give it a value of NO. Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a . REG file before performing the changes. Close Registry Editor. Close and re-open Internet Explorer windows for settings to take place. Done! You can also disable the auto picture resizing by going to Internet Explorer > Tools > Internet Options > Advanced > Browsing and removing the checkbox. Related articles You might also want to read the following related articles: Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Scanners and Cameras Icon to the Desktop in XP Pro Add Scheduled Tasks Icon to the Desktop in XP/2003 Add Spell Checking to Internet Explorer Change or Add OEM... --- ### Disable the RunAs Command - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_runas/ - Categories: Windows Client OS - Article Type: How To Can I disable the RunAs command? You sure can! The RunAs command was first introduced in Windows 2000 (in NT 4. 0 you could use a tool called SU. EXE from the Resource Kit), and enables administrators to use alternate logons, also known as secondary logons. As a security best practice, it is recommended that you do not log on to your computer with administrative credentials. Running your computer as a member of the Administrators group makes the system vulnerable to Trojan horses attacks and other security risks. It is recommended that you use a regular, non-administrative user account to perform routine tasks, including running programs and visiting Internet sites. When it becomes necessary to perform administrative tasks on the local computer or in Active Directory, use RunAs to start a program using administrative credentials. RunAs allows you to accomplish administrative tasks without exposing your computer or data stored in Active Directory to unnecessary risk. While the RunAs feature can help administrators do their jobs more securely, you may not want ordinary users to have access to this feature. To invoke RunAs, the user can use one of two methods: Graphic User Interface - Right-click and shortcut and select "Runas" (In W2K and XP you sometimes might need to hold down the SHIFT key while right-clicking): This article deals with disabling the GUI RunAs interface. Command Line - use the RunAs command from the CMD or Run commands. For example, to run Active Directory Users and Computers you'd enter: ​runas... --- ### DispCompInfo - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/dispcompinfo/ - Categories: Administrative Tools and Scripts - Article Type: How To Description This tool displays the computer name, IP address and optionally a text message on the user’s desktop. Not as complex as Sysinternals’ BGInfo, but very easy to deploy. Just specify the file in the logon script. The current version allows for displaying of computer names that are longer than 8 characters. Requirements: Windows NT/2000/XP/2003 Current version: 1. 1 Download Download (14kb) You need to extract the tool/script found in the downloaded file by using WinZip or similar. Detailed Instructions Place the file in a network share. For example "''dc01'netlogon". Add the following lines to your login script: ​Xcopy %windir%'system32 /d /y %windir%'system32'DispCompInfo Support No support of any sort will be given for this script/tool or for any other script/tool found on the Petri. co. il website for that matter. If you need to contact us with any support issues, feedback or suggestions regarding the tool(s) and script(s) found on this page please write an e-mail to THIS address. Disclaimer The software available from GanoTools is FREEWARE. It is not in the Public Domain. Asaf Ganot retains the copyright for this work. You can use it freely but do not claim it for your own or charge others money for it. Use these tools at your own risk. They are provided for your own personal use and enjoyment and Asaf Ganot nor Daniel Petri nor Petri. co. il do not provide any warranty for them, nor they will be held responsible for any result allegedly caused by use or misuse... --- ### Download Microsoft Evaluation Products - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/download_microsoft_evaluation_products/ - Categories: Downloads - Article Type: Overview Where can I download 120-day evaluation versions of Windows 2000/2003 or other MS products? As you may recall, my first and most important tip is to "Learn by Doing". There are many ways to practice the skills you want to teach. You should base your studies on practice and practice and guess what? Practice. Don't take my word for granted. Try everything out yourself. Build a home network, wreck it and re-build it. Try it all for yourself, and if you get to a point where you can't do something yourself, go wreck someone else's computer. Work with the product. Use your imagination. Envision a scenario. Plan the scenario. Implement the scenario. Install and configure, try the various features, create error situations and troubleshoot them. Ask yourself questions about the process. Push the boundaries. Be conscious as you click the Next button. To better your understanding of the OS you should use it every day. You cannot go on using Windows 98 SE while you're trying to be a professional at Windows 2000 or any other OS for that matter. I cannot accept the sorry excuse that I hear quite often: "I can't play games on W2K, that's why I'll stick with Win98... I can get a chance to practice at class, but at home I'll keep Win98... " You must breath, smell and sleep with the product, that's the only way to really KNOW it. You can get a free copy of Windows 2000 right HERE, and a... --- ### Download the Microsoft Device Emulator 1.0 with Windows Mobile OS Images (Pocket PC and Smart Phone) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_ppc_device_emulator/ - Categories: Downloads - Article Type: Overview The Microsoft Device Emulator 1. 0 is a standalone version of the same ARM based Device Emulator that ships as part of Visual Studio 2005. The standalone emulator is intended for situations when you want to demonstrate or test your application on a computer that does not have Visual Studio 2005 installed. In addition, Microsoft is offering the Windows Mobile 5. 0 MSFP operating system images that you can use with the Device Emulator. The MSFP addition to the Windows Mobile 5 operating system enables the device to receive direct push synchronization from Exchange Server 2003 SP2 machines, and offers more security control over the device. Needless to say, this emulator can help us IT personnel when testing the deployment of new PPC-based applications in our network environment, plus allows us to perform live synchronizations and direct push with our Exchange Server 2003 SP2 servers (and future Exchange Server 2007 servers). Device Emulator 1. 0 has a number of features that make it significantly better than its predecessor (the x86 emulator). You will find that it: Runs code compiled for ARM processors rather than for x86 processors. In most cases, you can run the same binaries on the emulator as you do on the device. Supports synchronizing with ActiveSync. You can use the Device Emulator with a full ActiveSync partnership. This feature allows you to debug applications that are syncing, or be able to use real synchronized data from within the Device Emulator. Provides support for more development environments. The... --- ### Download Windows 2000 Sysprep - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_w2k_sysprep/ - Categories: Windows 2000 - Article Type: Overview Where can I download W2K Sysprep? The Windows 2000 System Preparation Tool (Sysprep) Version 1. 1 enables administrators to prepare Windows 2000 System Images as part of an automated deployment. Sysprep 1. 1 is an update to Sysprep 1. 0 and adds the ability to reduce the number of images required in a deployment by supporting multiple mass storage controllers. Important: You can install the Windows 2000 System Preparation Tool on any copy of Windows 2000 you have licensed, but you must accept the license agreement presented to you before downloading the tool. If you do not accept the terms of the license agreement, you are not authorized to use the tool and should promptly remove it from your computer. If you plan to use Sysprep to prepare a Windows 2000 computer that has applications software installed, make sure you carry the appropriate licenses for the applications software you plan to duplicate. System Requirements To install Sysprep 1. 1, you must be running one of the following Windows 2000 products on your computer: Windows 2000 Professional Windows 2000 Server Windows 2000 Advanced Server Windows 2000 Datacenter Note: Sysprep does reset many security settings, so it is best to use group policies to configure security settings on the destination computers. Additionally, Sysprep should not be used to prepare the operating system for imaging if the computer has software installed that is dependent on the computer's Security IDs (SIDs). Windows 2000 Sysprep Tool 1. 1 (213kb) Links Windows 2000... --- ### Enable Envelope Journaling in Exchange 2000/2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/enable_envelope_journaling_in_exchange/ - Categories: Exchange Server - Article Type: How To Standard message-only journaling simply delivers a copy of a message flagged for archival to a designated journal mailbox. Envelope journaling instead delivers archival messages using an envelope message containing a journal report with the original message as an attachment. In order to enable standard journaling please read Enable Journaling in Exchange 2000/2003. Envelope Journaling is available in Exchange 2000 Service Pack 3 and Exchange 2003 Service Pack 1 and later. Exchange Envelope Journaling is used to capture all the available RFC2821 and RFC2822 recipients, including CC and BCC recipients that were configured on an email message. It also captures members of a distribution group expansion and it captures reports that include delivery receipts, NDRs, read receipts, and out-of-office notifications. Envelope journaling enables you to archive the following information to specified journal mailboxes: All the recipients of the message (P1 data as contained in the Simple Mail Transfer Protocol (SMTP) conversation) Distribution group lists are completely expanded and included in the above list The journaled message consists of a multi-part Multipurpose Internet Mail Extensions (MIME) message with the following contents: Plain text that contains information about the complete list of P1 recipients, the recipients specified in the SMTP conversation by the RCPT TO: command, and original message ID. The original message as attachment It's easy to see the difference between the two: This is a journaled message - see how it looks exactly like the original message, but it lacks all the additional protocol information: This is a journaled message AFTER... --- ### Enabling Telnet Client in Windows Server 2008 and Windows Vista - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/enabling-telnet-client-in-windows-server-2008-and-windows-vista/ - Categories: Windows Server 2008 - Article Type: How To   Telnet Client allows a computer to connect to a remote Telnet server and run applications on that server. Once logged on, a user is given a command prompt that can be used as if it had been opened locally on the Telnet server’s console. Commands that you type at the Telnet client command prompt are sent to the Telnet Server and executed there, as though you were locally logged on to a command prompt session at the server. Output from the commands that you run are sent back to the Telnet client where they are displayed for you to view. The Telnet client is a feature included with Microsoft Windows Server 2008 and Windows Vista, however, it is not enabled by default. The nice part about Telnet is that it can be used across computers that use different operating systems, such as Linux, Unix, or Windows. However, unless you need it for specific text-based commands on those remote machines, and if you are only using computers running the Windows operating system, you might find it easier to use the Windows Remote Desktop feature. On Windows Server 2008 machines you can also use the Remote Shell feature (winrs) which is considered to be more secure than Telnet. As noted above, the Telnet client is considered to be a "Feature" on both operating systems, and can be easily installed: On Windows Server 2008, you can install Telnet client by using the Add Features Wizard in Server Manager. On... --- ### File Servers Training Labs - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/file_servers_training_labs/ - Categories: Backup & Storage - Article Type: Overview File Servers Learning Labs A review of Train Signal’s Windows 2000/2003 File Servers Video Lab Training – Product Details.  See more details at Train Signal's website. I start at the beginning of Lab 2 with the Concepts video. Here Scott delves into RAID, Software and Hardware versions with the advantages, disadvantages being discussed along with Basic and Dynamic disks, what they are, what they do and when they are called Partitions and when they are called Volumes. Software RAID in Windows 2003 Server is given a workout with RAID 0, 1 and 5 being created and then an “uncreated” demonstration. The hardware setup for this Lab is as always very straight forward. There are two Windows 2003 Servers (1 x DC, 1 x Member Server as a File Server) and one XP Client.   A quick run through about DC, a more in-depth look and emphasis of the importance of getting the IP settings correct on all your lab devices BEFORE starting. The File Server is joined to the Domain, so too is the XP client and then a small lesson on NSLookup. Video 1 starts as all Train Signal Labs with an in-depth overview of what is going to be covered. Don’t be surprised by the size of the overview briefing as Train Signal overviews are very detailed and extensive. We begin with the creation of partitions, setting up of folders, SHARES and NTFS permissions, special permissions and a look at some folder management. Next we get shown how to convert a... --- ### Free Tweaking Tools for Windows XP > Want to get the most out of Windows XP? Daniel Petri shows you some of his favorite tweaking tools for Microsoft's long-lived client OS. - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/free_tweaking_tools/ - Categories: Windows Client OS - Article Type: Overview Want to get the most out of Windows XP? Daniel Petri shows you some of his favorite tweaking tools for Microsoft's long-lived client OS. I want to tweak Windows XP and I don't want to spend any money on fancy software. Do you have any freeware software recommendations for me? Yes! There are a few freeware software packages on the web that can and will help you tweak Windows XP (and also Win9X, NT & W2K) to some extent. I usually recommend 2 option I use the most. Both are free and will give you a lot of control over hidden system tweaks. Microsoft TweakUI The first is Microsoft Tweak UI which is a part of the MS Powertoys. Make sure you install the latest version (v2. 0) and not an earlier one. If you have an older version of TweakUI installed, use Add or Remove Programs in Control Panel to uninstall it now. This includes the older version of TweakUI previously available as part of the single "Powertoys for Windows XP" package. Download TweakUI for Windows XP Unzip TweakUiPowertoySetup. zip using an unzip utility and place the files in a new folder in a convenient location, such as your desktop. Double-click TweakUiPowertoySetup. exe, and follow the instructions on-screen. To start TweakUI, use the TweakUI shortcut in your Start Menu (it's no longer found in Control Panel), or run windowssystem32tweakui. exe. Note for Win9X users: This version will only work on Windows XP. For Windows Me, Windows 2000, Windows 98, and Windows 95 you should download (local download) Unzip tweakui. zip using an unzip utility and place the files in a new folder in... --- ### Hardware Requirements for Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/hardware_requirements_for_windows_server_2003/ - Categories: Windows Client OS - Article Type: Overview What are the Windows Server 2003 Hardware/System requirements? Review the table on this page to determine the minimum and recommended system requirements needed to run Windows Server 2003, Standard Edition, Enterprise Edition, Datacenter Edition, and Web Edition. Requirement Standard Edition Enterprise Edition Datacenter Edition Web Edition Minimum CPU Speed 133 MHz 133 MHz for x86-based computers 733 MHz for Itanium-based computers* 400 MHz for x86-based computers 733 MHz for Itanium-based computers* 133 MHz Recommended CPU Speed 550 MHz 733 MHz 733 MHz 550 MHz Minimum RAM 128 MB 128 MB 512 MB 128 MB Recommended Minimum RAM 256 MB 256 MB 1 GB 256 MB Maximum RAM 4 GB 32 GB for x86-based computers 512 GB for Itanium-based computers* 64 GB for x86-based computers 512 GB for Itanium-based computers* 2 GB Multiprocessor Support ** Up to 4 Up to 8 Minimum 8 required Maximum 64 Up to 2 Disk Space for Setup 1. 5 GB 1. 5 GB for x86-based computers 2. 0 GB for Itanium-based computers* 1. 5 GB for x86-based computers 2. 0 GB for Itanium-based computers* 1. 5 GB * Important: The 64-bit versions of Windows Server 2003, Enterprise Edition and Windows Server 2003, Datacenter Edition are only compatible with 64-bit Intel Itanium-based systems. They cannot be successfully installed on 32-bit systems. ** Windows Server 2003 may not use multiple processors with some Intel Pentium Pro or Pentium II Processors. For more information, please review Windows Server 2003 May Not Use Multiple Processors with Some Pentium... --- ### How to Install Windows Server 2008 Step by Step - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/how-to-install-windows-server-2008-step-by-step/ - Categories: Windows Server 2008 - Article Type: How To Installing Windows Server 2008 is pretty straightforward and is very much like installing Windows Vista, but I thought I'd list the necessary steps here for additional information. For those of you who have never installed Vista before, the entire installation process is different than it used to be in previous Microsoft operating systems, and notably much easier to perform. Using Vista's installation routine is a major benefit, especially for a server OS. Administrators can partition the system's hard drives during setup. More importantly, they can install the necessary AHCI or RAID storage drivers from a CD/DVD or even a USB thumb drive. Thus, error-prone floppies can finally be sent to the garbage bin. Note: Windows Server 2008 can also be installed as a Server Core installation, which is a cut-down version of Windows without the Windows Explorer GUI. Because you don’t have the Windows Explorer to provide the GUI interface that you are used to, you configure everything through the command line interface or remotely using a Microsoft Management Console (MMC). The Server Core can be used for dedicated machines with basic roles such as Domain controller/Active Directory Domain Services, DNS Server, DHCP Server, file server, print server, Windows Media Server, IIS 7 web server and Windows Server Virtualization virtual server. For Server Core installations please see my "Installing Windows Server 2008 Core" article. To use Windows Server 2008 you need to meet the following hardware requirements: Component Requirement Processor • Minimum: 1GHz... --- ### Internet Explorer 7 Crashes when Posting Messages in OWA 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/ie7_crashes_when_posting_messages_in_owa_2003/ - Categories: Exchange Server - Article Type: Overview We all love Outlook Web Access (OWA) in Exchange Server 2003. However when using Internet Explorer 7 (if you still don't have it read Download IE7) to browse to OWA 2003 we've encountered a nasty problem: You compose a new message: You click on Send, and boom: Microsoft has acknowledges this to be a problem (read MS KB 924334 for more info) and has posted a hotfix that needs to be installed on the Exchange servers. Download the hotfix right here: Update for Exchange Server 2003 SP2 (KB 924334) (2. 8mb) Note: During the installation of this hotfix the Exchange Information Store service will be stopped and re-started, therefore plan for a couple of minutes of downtime for your mailboxes. Important note about using Front-End and Back-End servers: If you have a FE/BE setup you MUST install this hotfix on all Front-End servers BEFORE installing it on the Back-End servers. Otherwise you might have issues with OWA (thank you Guy Teverovsky for this input). After installing the hotfix on the server you must uninstall the S/MIME control from any computer that's using IE7, and reinstall the new S/MIME control from the server. In order to remove the S/MIME control use Add/Remove Programs from the Control Panel. After removing the old S/MIME control, use OWA's Options screen to install it again (this time it'll be the new version): When you'll look at the Add/Remove Programs applet (and on the Exchange server in the Exchweb folder) you'll see you've got... --- ### The Importance of Web Application Scanning - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/importance_of_web_application_scanning/ - Categories: Security - Article Type: Overview The Importance of Web Application Scanning White paper – November ‘05 Organizations need a Web application scanning solution that can scan for security loopholes in Web-based applications to prevent would-be hackers from gaining unauthorized access to corporate applications and data. Web applications are proving to be the weakest link in overall corporate security, even though companies have left no stone unturned in installing the better-known network security and anti-virus solutions. Quick to take advantage of this vulnerability, hackers have now begun to use Web applications as a platform for gaining access to corporate data. Web Applications Are Easy to Hack The hacker’s life has become tougher in recent days. Thanks to various intrusion detection and defence mechanisms developed by network security companies, it is no longer easy to breach security perimeters and gain unauthorized access to an organization’s network. Today, firewalls, security scanners and antivirus software protect almost all corporate networks. Hemmed in by such constraints, hackers have been researching alternate ways to breach the security infrastructure. Unfortunately, hackers have been successful in finding a gaping hole in the corporate security infrastructure, one of which organizations were previously unaware – Web applications. By design, Web applications are publicly available on the Internet, 24/7. This provides hackers with easy access and allows almost unlimited attempts to hack the application. While the adoption of Web-based technologies for conducting business has enabled organizations to connect seamlessly with suppliers, customers and other stakeholders, it has also exposed a multitude of previously... --- ### Install DC from Media in Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_dc_from_media_in_windows_server_2003/ - Categories: Active Directory (AD) - Article Type: How To How do I install a Replica Domain Controller from a previous backed-up media on my Windows Server 2003 server? First make sure you read and understand Active Directory Installation Requirements. If you don't comply with all the requirements of that article you will not be able to set up your AD (for example: you don't have a NIC or you're using a computer that's not connected to a LAN). Note: This article is only good for understanding how to install an ADDITIONAL DC in an EXISTING AD Domain. For any other scenario please read the How to Install Active Directory on Windows 2003 page. Install from Media In Windows Server 2003 a new feature has been added, and this time it's one that will actually make our lives easier... You can promote a domain controller using files backed up from a source domain controller! ! ! This feature is called "Install from Media" and it's available by running DCPROMO with the /adv switch. It's not a replacement for network replication, we still need network connectivity, but now we can use an old System State copy from another Windows Server 2003, copy it to our future DC, and have the first and basic replication take place from the media, instead of across the network, this saving valuable time and network resources. What you basically have to do is to back up the systems data of an existing domain controller, restore that backup to your replica candidate, use DCPromo /Adv to... --- ### Install Windows 2000 Server - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_windows_2000/ - Categories: Windows 2000 - Article Type: How To How can I install Windows 2000 Server? As a Microsoft Windows 2000 Server support professional, one of your tasks may be to install the operating system. Step #1: Plan your installation When you run the Windows 2000 Server Setup program, you must provide information about how to install and configure the operating system. Thorough planning can make your installation of W2K more efficient by helping you to avoid potential problems during installation. An understanding of the configuration options will also help to ensure that you have properly configured your system. I won't go into that part right now but here are some of the most important things you should take into consideration when planning for your Windows Server 2000 installation: Check System Requirements Check Hardware and Software Compatibility Determine Disk Partitioning Options Choose the Appropriate File System: FAT, FAT32, NTFS Decide on a Workgroup or Domain Installation Complete a Pre-Installation Checklist After you made sure you can go on, start the installation process. Step #2: Beginning the installation process You can install Windows 2000 Server in several methods - all are valid and good, it all depends upon your needs and your limitations. Manual installations usually come in 3 flavors: Boot from CD - No existing partition is required. Boot from the 4 Setup Boot Disks, then insert the CD - No existing partition is required. Boot from an MS-DOS startup floppy, go to the command prompt, create a 4GB FAT32 partition with FDISK, reboot, format the C... --- ### Installing Remote Server Administrative Tools on Windows Vista - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/installing-remote-server-administration-tools-rsat-windows-vista/ - Categories: Windows Vista - Article Type: How To Microsoft Remote Server Administration Tools (RSAT) enables IT administrators to remotely manage roles and features in Windows Server 2008 from a computer that is running Windows Vista with SP1. It includes support for remote management of computers that are running either a Server Core installation option or a full installation option of Windows Server 2008. It provides similar functionality to the Windows Server 2003 Administration Tools Pack (read more about Adminpak in my "Download Windows 2000 Adminpak", "Download Windows 2003 SP1 Adminpak", and "Download Windows 2003 R2 Adminpak" articles). What does RSAT contain? RSAT tools contain both Role management tools, and Feature management tools. Here is a descriptive list. The Roles tools contain: Active Directory Certificate Services Tools - Includes the Certification Authority, Certificate Templates, Enterprise PKI, and Online Responder Management snap-ins. Active Directory Certification Authority Tools includes the Certification Authority, Certificate Templates, and the Enterprise PKI snap-ins. Online Responder Tools includes the Online Responder Management snap-in. Active Directory Domain Services (AD DS) Tools - Includes Active Directory Users and Computers, Active Directory Domains and Trusts, Active Directory Sites and Services, and other snap-ins and command-line tools for remotely managing Active Directory Domain Services. Server for Network Information Service (NIS) Tools includes an extension to the Active Directory Users and Computers snap-in and the Ypclear. exe command-line tool. Active Directory Lightweight Directory Services (AD LDS) Tools - Includes Active Directory Sites and Services, Active Directory Services Interfaces (ADSI) Edit, Schema Manager, and other snap-ins and command-line tools for... --- ### Links - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/links/ - Categories: Main - Article Type: Overview Here is Daniel's List of Recommended Web links: (Sorted in some freestyle alphabetical order) Great Microsoft-related Knowledge Bases These are the ones I'm currently using. Note that a very short description doesn't imply that the featured site is less useful than one with a long description: Link Description Brian Madden Great resource for Citrix, Terminal Server, Bear Paw, and Thin Client information. BrienPosey. com Nice articles and tips by Brien Posey. Computer Performance Nice articles and tips by Guy Thomas. EventID. net The Event ID database contains thousands of event IDs and comments provided by thousands of contributors. Needs a subscription but non-subscribers will get what they want too, and it's sure worth the pennies they're asking for. Events and Errors Message Center Find detailed explanations, recommended user actions, and links to additional support and resources for Microsoft products, such as Windows 2000/XP/2003, Exchange 2000/2003, SQL Server and Office products. FAQ for WindowsOr here:FAQ for Windows Formerly known as John Savill's NT Faq. Many tips for Windows NT/2000/XP/2003. Although many tips are in fact copied KB articles, the ones that are there are hand-picked and easy to find. JSI, INC. - Tips & Tricks Like NT Faq, one of the first and finest tip repositories, with thousands of Windows NT/2000/XP/2003 tips and tricks. kbAlertz kbAlertz. com is an e-mail notification system that scans the entire Microsoft Knowledge Base every night, and e-mails you when updates or additions are made to the technologies you subscribe to. LabMice. net "If you work with Microsoft Operating Systems... --- ### Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 2 – Windows Server 2003 Active Directory - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/mcse_system_administrator_active_directory_interview_questions/ - Categories: Active Directory (AD) - Article Type: Overview This is a part 2 of my MCSE and System Administrator job interview sample questions. See previous part at: Part 1 – Networking This article set is targeted at both the interviewer (who needs a pool of valid questions they can ask) and to the candidate (who wants a pool of sample questions they can prepare for). Needless to say, both MUST know what they're talking about. Also, although I consider these questions as a thorough verbal test for the candidate's knowledge, in most cases, when he or she passes this phase, I will also ask them to perform an actual hands-on lab based on my written exercises. I might also include these in a future part of this session. I have deliberately left out the answers to these questions. I want YOU to research them and take the time to actually learn these topics, if you don't know them already. Most sub topics start off with relatively easy questions where the candidate is supposed to demonstrate their knowledge on that topic. A few sentences will be enough to show their (lack of) knowledge on the topic. As always, your comments and feedbacks are more than welcome, you can use the form after the article. If you're using this interview question sample in your own environment please drop me a line telling me how it works for you. Also, placing a link to my site and giving me credit for my work is expected. For a Windows... --- ### MSG.EXE replaces Net Send in Windows Vista - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/msg-exe-net-send-vista/ - Categories: Windows Vista - Tags: Editor's Pick - Article Type: News, Overview When using Windows XP and previous operating systems one could easily send messages from one computer to another by using the "Net Send" command from the command prompt. Typing a command like this: ​Net send Daniel "Please contact help desk immediately! " Would result in the computer searching for the location where the user Daniel has last logged on, or in case of a computer, where the computer called Daniel is listed, and would send that message to that user or computer. You should note that this method of sending messages was made available by the Messenger service running on the target machine. Without it, there could be no messages transmitted to that computer. Note: Windows XP SP1 (or was it SP2? I can't remember right now) disabled the Messenger service by default. So does Windows Server 2003 SP1. Long story made short, when using Windows Vista one might go looking for the "Net send" in Vista and wonder where it went. There is NO "Net send" command in Vista... However, there is a solution. You can use MSG. EXE instead. Note: Apparently Windows Vista Home Basic and Home Premium editions do not have the msg. exe command installed. It does work on Vista Business, Enterprise or Ultimate edition. Click on the Start button, type CMD in the search box and press Enter. Next, test MSG. EXE by typing the following command: ​C:'Windows'system32>msg /? Send a message to a user. MSG {username | sessionname | sessionid |... --- ### OSI Model Concepts > Learn the 7 layers of the OSI Model, the standard model for networking protocols and distributed applications. - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/osi_concepts/ - Categories: Cisco - Article Type: Overview The standard model for networking protocols and distributed applications is the International Standard Organization's Open System Interconnect (ISO/OSI) model. It defines seven network layers. Short for Open System Interconnection, an ISO standard for worldwide communications that defines a networking framework for implementing protocols in seven layers. Control is passed from one layer to the next, starting at the application layer in one station, proceeding to the bottom layer, over the channel to the next station and back up the hierarchy. At one time, most vendors agreed to support OSI in one form or another, but OSI was too loosely defined and proprietary standards were too entrenched. Except for the OSI-compliant X. 400 and X. 500 e-mail and directory standards, which are widely used, what was once thought to become the universal communications standard now serves as the teaching model for all other protocols. Control is passed from one layer to the next, starting at the application layer in one station, proceeding to the bottom layer, over the channel to the next station and back up the hierarchy. (This graphic is taken from The Abdus Salam International Centre for Theoretical Physics). Understanding how the OSI Model works is not only useful for taking certification exams, but also for real life scenarios. Read How to use the OSI Model to Troubleshoot Networks for more info. Layer 1 - Physical Physical layer defines the cable or physical medium itself, e. g. , thinnet, thicknet, unshielded twisted pairs (UTP). All media... --- ### Ports used by Exchange Server - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/ports_used_by_exchange/ - Categories: Exchange Server - Article Type: Overview What TCP and UDP ports does my Exchange 2000/2003 Server use? For purposes of configuring firewalls or for troubleshooting communications issues, it may be useful to know what TCP/UDP ports Exchange 2000 Server and Exchange 2000 Conferencing Server are using. This article is also true for Exchange Server 2003 installations. Protocol: LDAP Port (TCP/UDP): 389 (TCP) Description: Lightweight Directory Access Protocol (LDAP), used by Active Directory, Active Directory Connector, and the Microsoft Exchange Server 5. 5 directory. Protocol: LDAP/SSL Port (TCP/UDP): 636 (TCP) Description: LDAP over Secure Sockets Layer (SSL). When SSL is enabled, LDAP data that is transmitted and received is encrypted. To enable SSL, you must install a Computer certificate on the domain controller or Exchange Server 5. 5 computer. Protocol: LDAP Port (TCP/UDP): 379 (TCP) Description: The Site Replication Service (SRS) uses TCP port 379. Protocol: LDAP Port (TCP/UDP): 390 (TCP) Description: While not a standard LDAP port, TCP port 390 is the recommended alternate port to configure the Exchange Server 5. 5 LDAP protocol when Exchange Server 5. 5 is running on a Microsoft Windows 2000 Active Directory domain controller. Protocol: LDAP Port (TCP/UDP): 3268 (TCP) Description: Global catalog. The Windows 2000 Active Directory global catalog (which is really a domain controller "role") listens on TCP port 3268. When you are troubleshooting issues that may be related to a global catalog, connect to port 3268 in LDP. Protocol: LDAP/SSL Port (TCP/UDP): 3269 (TCP) Description: Global catalog over SSL. Applications that connect to TCP port 3269 of a... --- ### Quickly Abort Shut Down Commands on Windows XP/2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly_abort_shut_down_commands_on_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I quickly abort a shutdown command on Windows XP/2003? Some worms, such as the Blaster worm, use known bugs in Microsoft Operating Systems to force the computer to shut down itself. Best Practice: In order to protect yourself from such worms and malicious code you should first make sure that your computer is fully patched. Then, make sure you're using either the built-in Internet Connection Firewall (found in Windows XP and Windows Server 2003). Last but not least, you should make sure you're running a good and trustworthy Anti-Virus program that's fully updated. Besides following the above guidelines you might also want to create a nice shortcut for a command that will allow to to quickly abort any un-wanted shutdown command you might get. In order to create the "Anti-Shutdown" shortcut follow these steps: Right-click an empty spot on your desktop and select New > Shortcut. In the Create Shortcut wizard windows type: shutdown. exe -a Click Next. In the Select Title type any title you want. Click Finish. You can also change the shortcut's icon by right-clicking it, and pressing the Change Icon button in the Shortcut tab. BTW, you can also use this trick on Windows 2000, but there you'll need to download SHUTDOWN. EXE from (11kb). Windows XP and Windows Server 2003 have the SHUTDOWN. EXE command built-in. Whenever you see a shutdown message on your screen: you can use the Anti-Shutdown shortcut to abort it. Lamer tip: As stated above,... --- ### Quickly Share Folders from Desktop - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_share_folders_from_desktop/ - Categories: Windows Client OS - Article Type: How To I want to be able to quickly create shares or manage shares from my desktop. How can I do that? No problem. In Windows 2000/XP/2003 you can easily create new shares and manage existing shares from the Shared Folder MMC snap-in. You can access the Shared Folder MMC snap-in by opening Computer Management (Right-click My Computer > Manage), by running a custom-made MMC, or by running ​fsmgmt. msc from the run command. If you only what the New Share functionality and you want quick access to it you can follow this trick: Create a new shortcut on your desktop with the following command: ​%SystemRoot%SYSTEM32Rundll32. exe ntlanui. dll,ShareCreate Give it a name and run it: You can also gain quick access to the old, NT-style share management software (that used to be found in Server Manager) by creating a new shortcut on your desktop with the following command: ​%SystemRoot%SYSTEM32Rundll32. exe ntlanui. dll,ShareManage Give it a name and run it: You can create, manage and stop sharing existing shares, but pay attention that you will get the old, NT-styled permission wizard, and you will not get the Active Directory Publishing feature found the the Windows Server 2003 Shared Folder MC snap-in. Even with these limitations in mind, using these shortcuts can make folder sharing much easier for some of you. Enjoy. Related articles You might also want to read the following related articles: Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Scanners and Cameras Icon to the... --- ### Recovery and Troubleshooting Options in Windows XP - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/recovery_and_troubleshooting_options_in_windows_xp/ - Categories: Windows XP - Tags: Disaster Recovery - Article Type: Overview What recovery and troubleshooting options do I have in Windows XP? Software and hardware issues can affect the way that your system functions. Severe problems might prevent you from starting Windows XP Professional normally. Software problems: Installing incompatible software, incorrectly changing system configuration settings, or installing faulty device drivers can cause system instability or a Stop error. Hardware problems: Hardware that is defective, malfunctioning, incorrectly installed, or incorrectly configured can also cause instability or a Stop error. Other problems: Deleted or corrupted system files caused by problems such as user error or virus activity can cause data loss or prevent you from starting the operating system. Any of the preceding types of problems can prevent you from starting Windows XP Professional in normal mode, causing certain applications or data to become inaccessible. Windows XP Professional provides several tools that enable you to troubleshoot startup and stability problems, and restore system and data files. the following list lists these tools according to the preferred order of use, from tools that present little or no risk to data, to those that might cause data loss. With the exception of the Automated System Recovery (ASR) restore phase, Last Known Good Configuration, and Recovery Console, the features in the table are available in safe and normal startup modes. If the following tools and features do not resolve the problem, and you upgraded your system from an earlier version of Windows, you might have the option to uninstall Windows XP Professional. Last... --- ### Remotely Managing Windows 2008 Server Core Settings through MMC Snap-ins - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/remotely-manage-windows-server-2008-mmc/ - Categories: Windows Server 2008 - Article Type: How To In my previous articles (see list below) I have written about how, in Windows Server 2008, Server Core installation does not include the traditional full graphical user interface (GUI). Therefore, once you have configured the server, you can only manage it locally at a command prompt, or remotely using a Terminal Server connection. Read more about Server Core on my "Understanding Windows Server 2008 Server Core" article. One of the major pains of managing such a GUI-stripped installation is the configuration of the any Windows settings, mostly because we, Windows-based and Windows-accustomed administrators, have very little in common with non-GUI-based operating systems. In Server Core, some (although not all) of the server settings can somehow be managed by existing MMC snap-ins, however, since Server Core has no MMC available to run locally, we need to fire up those snap-ins remotely, from one of our management workstations or servers. In this article, I assume that you have already configured your server core with the bare minimum requirements to operate in a network. These requirements are: Configuring an IP address Configuring a server name Configuring an administrator's password Configured the server's firewall You should, but are not required to, also join the server to your domain. All of the above can be accomplished by following the "Configuring Windows Server 2008 Server Core Basic Networking Settings" and "Remotely Managing Windows 2008 Server Core Firewall" (Upcoming) articles. Next, in order to properly configure Server Core to allow you to control its... --- ### Require Windows 98 Clients to Logon to the Domain - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/require_windows_98_clients_to_logon_to_the_domain/ - Categories: Active Directory (AD) - Article Type: How To How can I require Windows 98 clients to logon to the domain instead of pressing "cancel" at the welcome screen? By default Windows 9x doesn't require a valid network username and password combination for a user to bypass the logon and gain access to the local machine. This functionality can be changed to require validation by the network before allowing access. Actually there are 2 ways in which you can do it: Method #1: You need to set a system policy by creating a CONFIG. POL file using POLEDIT. EXE which comes on the Win9x CD and put the file in the NETLOGON directory of the domain controller server (if you have more than one you need to manually copy the file to the same location on all DCs). The path is: %systemroot%system32replscriptsexport Go to your Win98 CD and navigate to X:toolsreskitnetadminpoleditpoledit. exe (where X is the drive letter of your CD). Run poledit. exe. Note: Make sure you use the version found on the Win98 CD and NOT the one provided with W2K! From the Options menu go to Policy Templates and Add the Windows. adm template if it isn't showing already. Go to the File menu, then choose New Policy. Double click into Default Computer. Drill down through Win98 Network, Logon. Tick Require Validation from network to logon. You can also add a banner warning users not to attempt to logon if they dont have the correct username and password or a capital punishment warning... Click down to the Update... --- ### Restoring items from Exchange Snapshots - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/restoring_items_from_exchange_snapshots/ - Categories: Exchange Server - Article Type: How To Restoring items from Exchange snapshots In order to maximize Exchange 2003 capabilities and performance and to minimize the restore time of a single mailbox or a single item, more and more companies are relocating their Exchange Databases in Storage appliances like Netapp or EMC, using iSCSI (read Exchange on NAS - Proved and Approved  for more info). One of the benefits of relocating the Exchange’s Database in storage is the ability to take a snapshot (quick backup) of the Exchange Database without interfering with the user’s work. We can configure the storage to take a snapshot every 4 hours - 6 times a day. That means that we can restore each item or mailbox for the last day in 4 hour periods and not 24 hour back-ups like any regular backup. Also, we can keep snapshots on daily and weekly basis (if we allocate the needed space). In this article I will explain how to restore items from a backup snapshot that was created approximately 1 month ago, using Netapp Single Mailbox Recovery 4. 0 - SMBR (powered by Ontrack). Requirements and naming conventions For the purpose of this article I've used to following server names: ISREXCH01 - Exchange 2003 standard edition with Service pack 2. ACCORD-FS - Netapp 3020 storage server. - ''accord-fs'exch_db$ - location of the Exchange Database snapshots. - ''accord-fs'exch_logs$ - location of the Exchange Logs snapshots. PRS-SERVER - Server that used to restore the item form snapshot using SMBR 4. 0. Tkolber - destination mailbox... --- ### SMTP, POP3 and Telnet in Exchange 2000/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/smtp_pop3_and_telnet/ - Categories: Exchange Server - Article Type: Overview How can I verify that my Exchange server is accepting connections? How can I connect to my Exchange server via Telnet? Sometimes you might want to troubleshoot your Exchange server from outside your corporate LAN (or from within, it makes no difference) in order to see if it accepts incoming connections. An example for this situation might be when your users are complaining about lack of incoming mail or lack of ability to pull mail from the server. Using PORTQRY. EXE A quick way to check SMTP connectivity is to use the PORTQRY. EXE command (see Quickly Find Remote Open Ports page for more info): Querying target system called: petri. com Attempting to resolve name to IP address... Name resolved to 64. 5. 48. 48 TCP port 25 (smtp service): LISTENING Data returned from port: 220-atlas. polymorphic. net ESMTP Exim 4. 24 #1 Sat, 11 Oct 2003 19:30:25 -0400 220-We do not authorize the use of this system to transport u64. 5. 48. 48 Using Telnet You will also need to check various settings for possible problems, such as your virtual servers status, connectivity to the Internet, presence of a valid MX record and authentication problems, but if all seems to work fine and you still want to check the connectivity yourself - you can try it via Telnet. Telnet forms part of the basic TCP/IP protocol suite and is therefore to be found on most machines that have TCP/IP installed. It is a very useful diagnostic tool that we can use to establish a connection to a remote... --- ### Travel in Time with the Wayback Machine - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/travel_in_time/ - Categories: Windows Server - Article Type: Overview A couple of days ago I wanted to re-read some information that I once used to have on my old website (the one prior to this current site, for those of you who have been here and remember). I searched all my hard disk's archives, loaded a bunch of old CDs and backup hard drives, yet failed to find the required information anywhere on them. I thought it was all lost. Then I remembered one of my favorite Web sites - The Internet Archive. The Internet Archive allows you to browse through 85 billion web pages archived from 1996 to a few months ago. It is a public nonprofit corporation that was founded to build an “Internet library. ” The library is intended to offer permanent access for researchers, historians, and scholars to historical collections that exist in digital format. To start surfing the Wayback, type in the web address of a site or page where you would like to start, and press enter. Then select from the archived dates available. The resulting pages point to other archived pages at as close a date as possible. Use your Web browser to surf to http://web. archive. org. In the Wayback Machine field enter the URL of the Web site you want to access. You can use any valid Web address (and this is the cool part - including ones that no longer exist). Click the "Take Me Back" button to start your journey back through time. This will produce a table of search results... --- ### Unhide Recycle Bin when Dragging and Dropping Files - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/unhide_recycle_bin_when_dragging_and_dropping_files/ - Categories: Windows Client OS - Article Type: How To How do I drag and drop a file to the Recycle Bin if it's hidden behind many open windows? This is one of these cool tips that you'll never forget. This tip was new to me and when I first used it I found myself with my jaw hanging... Sometimes one might want to drag-and-drop a file or folder from on of his or her Windows Explorer windows to the Recycle Bin that's found on the desktop. This can be easily accomplished when the Recycle Bin icon is visible on the desktop. You just drag and drop the file to the Recycle Bin icon, when your mouse cursor is over the Recycle Bin icon the icon will be marked, and when you let go of the left mouse button the file you've just dragged will be dropped to the Recycle Bin and deleted. But wait, how will you drag and drop the file or folder to the Recycle Bin icon if the icon is obscured and hidden behind other open windows? I know, you can minimize all open windows and then re-open the Explorer window, move the window border so it won't hide the Recycle bin icon, and then drag to file to that icon. Right. But now listen to this: Drag the file you want to delete to an empty spot on your Taskbar. Just hold the mouse button for 2 or 3 seconds, don't let go of the button. Wow! See how the window that hid the Recycle... --- ### Use OEM Version to Upgrade XP - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/use_oem_version_to_upgrade_xp/ - Categories: Windows XP - Article Type: How To How can I force an OEM version of Windows XP to install as an upgrade installation? First, find your setupp. ini file in the i386 directory on your Windows XP CD. Open it up, it'll look something like this: ExtraData=707A667567736F696F697911AE7E05 Pid=55034000 The Pid value is what we're in this for. What's there now looks like a standard default, but that is no good. There are special numbers that determine if it's a retail, OEM, or volume license edition. First, we must break down that number into two parts. The first five digits determines how the CD will behave, i. e. is it a retail CD that lets you clean install or upgrade, or an OEM CD that only lets you perform a clean install? The last three digits determine what CD key it will accept. You are able to mix and match these values. For example you could make a Windows XP CD that acted like a retail CD, but then yet accepted OEM keys. This is in my opinion a very useful tweak if done properly, so listen up! Here are the individual values, the first and last values are interchangeable but you should keep them together: Retail = 51882 335 Volume License = 51883 270 OEM = 82503 OEM Now if you wanted a retail CD that accepted the retail CD key then you would use. Pid=51882335 And if you wanted a retail CD that accepted OEM keys, you'd use: Pid=51882OEM You should remember that doing this... --- ### Manage Virtual Server Machines with VMRC Plus - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/virtual-manage-virtual-server-vmrc-plus/ - Categories: Virtualization - Article Type: How To As some of you know, a few Microsoft employees have been spotted working with a cool tool called VMRC Plus, which is an improved version of the VMRC client that is deployed together with Virtual Server 2005. This tool used to be an internally available app, but not anymore. I was recently informed of this blog by Arlindo Alves, a Microsoft employee (found at http://blogs. technet. com/aralves/default. aspx) that has finally made VMRC Plus available for the general public. Furthermore, it now seems that there's an official blog written by Matthijs ten Seldam who is the original author of the tool. You can read more about it here: http://blogs. technet. com/matthts Anyway, as soon as I got the link I downloaded this tool, installed it on my machine. In order to use it you need Virtual Server 2005 R2 SP1 running, so get it too for free from the link below. The cool part about VMRC Plus is that you do not need to install IIS or the Web Administration tools for Virtual Server anymore. Not having to install IIS on the host machine is naturally a good thing as it lowers the machine's attack profile and reduces some of the resources it uses. What does VMRC Plus offer? Direct control of local or remote instances of the Virtual Server service. No more need for IIS! Reusable saved states: this feature allows users to preserve a particular saved state and return to that state at any time. Multiple guest selection supported for... --- ### Windows 2000 Domain Rename - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/w2k_domain_rename/ - Categories: Active Directory (AD) - Article Type: Overview Can I rename my Windows 2000 Domain? The short answer is YES and NO. :-) You can rename a Windows 2000 Server AD Domain only if it's still configured as a Mixed mode domain. Note: Windows Server 2003 AD Domains CAN be renamed (see Windows 2003 Domain Rename page for more info). MS KB 292541 has more info: Although you can rename a Windows 2000 domain in some situations that are described in this article, Microsoft highly recommends that you decide on the Fully Qualified Domain Name (FQDN) for DNS before you actually create a new domain or before you upgrade the domain from Windows NT 4. 0 to Windows 2000. After you create the domain, you cannot rename a Windows 2000 domain controller. Renaming the domain involves a considerable amount of work, and it is only possible in a scenario that meets the following conditions: You have to keep the Windows 2000 domain in Mixed mode. After you change it to Native mode, you cannot return the domain to Mixed mode, thereby rendering renaming impossible. To determine the mode in which the domain is currently running, expand Active Directory Users and Computers, right-click the domain name, and then click Properties. The mode appears in the Domain operation mode dialog box. Because the domain is in Mixed mode, it must also either have one or more existing Windows NT 4. 0 backup domain controllers (BDCs), or computers that are available to use as Windows NT 4. 0 BDCs. Because you... --- ### What's Remote Desktop in Windows XP/2003? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/remote-desktop-in-windows-xp/ - Categories: Networking - Article Type: Overview With Remote Desktop on Windows XP Professional or Windows Server 2003, you can have access to a Windows session that is running on your computer when you are at another computer. This means, for example, that you can connect to your work computer from home and have access to all of your applications, files, and network resources as though you were in front of your computer at work. You can leave programs running at work and when you get home, you can see your desktop at work displayed on your home computer, with the same programs running. On Windows Server 2003 you can also connect to 2 new sessions, not just to the "console" session, thus enabling you to have multiple sessions open to the server. See the Enable Remote Desktop on Windows Server 2003 page for more info. On Windows XP and on the "Console" session in Windows Server 2003, when you connect to your computer at work, Remote Desktop automatically locks that computer so no one else can access your applications and files while you are gone. When you come back to your computer at work, you can unlock it by typing CTRL+ALT+DEL. Remote Desktop also allows more than one user to have active sessions on a single computer. This means that multiple users can leave their applications running and preserve the state of their Windows session even while others are logged on. In Windows XP, with Fast User Switching, you can easily switch from... --- ### What is a Public Key Infrastructure (PKI & Windows PKI)? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/what_is_a_public_key_infrastructure_pki/ - Categories: Security - Article Type: Overview I remember several years back wondering what a PKI was. PKI was a hot topic in the media; often appearing as a buzz word in many different publications. Claims of what this technology could and would do were often glamorous and exaggerated. However, much of the hype over the technology has now ceased. Lets take a look at what a PKI actually is and what it could do for you. What is a PKI? A PKI is a set of services combined to form an infrastructure for the purpose securing applications. A PKI provides these services to applications: Certificate Authority – Digitally signs a certificate that contains an identity and a key. This process is called certification Key Backup and Recovery – A means to restore lost or damaged certificates Key History – Certificates may be updated (because of expiration or a name change) Any data secured using the older keys would not be accessible unless the older keys are kept in an archive Certificate Repository – A Storage repository for certificates Certificate Revocation – A means of breaking the relationship between an identity and a key Automatic Key Recertification – Certificates expire after a specified amount of time (determined at certificate creation). Automated key recertification can update the certificate with a new expiration date when necessary without manual intervention Cross Certification – Used to establish a trust relationship between separate PKI’s. This allows for a distributed and decentralized infrastructure Support for Non-Repudiation – Prevents a certificate owner... --- ### Windows 2003 Domain Rename - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2003_domain_rename/ - Categories: Active Directory (AD) - Article Type: Overview Can I rename my Windows 2003 Domain? Can I move Child Domains between different trees in Active Directory? Yes you can, by using the Windows Server 2003 Active Directory Domain Rename Tools. The Windows Server 2003 Active Directory Domain Rename Tools provide a secure and supported methodology to rename one or more domains (as well as application directory partitions) in a deployed Active Directory forest. The DNS name and/or the NetBIOS name of a domain can be changed using the domain rename procedure. This functionality is not available in Microsoft Windows 2000 Server family. Note: Windows Server 2000 AD Domains CAN be renamed if they are still in Mixed mode (see Windows 2000 Domain Rename page for more info). Microsoft Windows Server 2003 family provides the capability to rename domains in an Active Directory forest after the forest structure is in place. The structure of an Active Directory forest is the result of the order in which you create domains and the hierarchical names of those domains. Beginning with the forest root domain, all child domains derive their distinguished names and default DNS names from the forest root domain name. The same is true of every additional tree in the forest. The way to change the hierarchical structure of an existing domain tree is to rename the domains. For example, you can rename a child domain to have a different parent, or rename a child domain to be a new tree-root domain. In each case, you reposition... --- ### Find Out How PacketTrap Perspective Fills Your Network Management Needs – Now With VMware Support - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/find-out-how-packettrap-perspective-fills-your-network-management-needs/ - Categories: VMware - Article Type: How To There are a lot of network management systems out there but not a lot of them make network management easy for the network manager. I have worked with PacketTrap since the days of their free pt360 network troubleshooting tools and I have always seen their goal of making network management “easy” evident in their network management products. Since that introduction of their free tool, PacketTrap has come a long way and now offers a comprehensive network monitoring and management system called Perspective. I asked them why they chose the name “Perspective” for their new product and they said that it is because the product shows you the status of your network and devices from the “perspective” of that network device and from the perspective that the network manager needs to see it from. Recently, I attended a webinar on Perspective and demoed the product for myself. Let me tell you more about it and how I feel that it can help you. By the way, if you want to skip reading this article and get a free evaluation of Perspective right now, just go to the Perspective Download Site and you’ll be using it for yourself in few minutes. What can PacketTrap Perspective do for me? While I said that Perspective was PacketTrap’s “new product”, I should be more specific and point out that it is their most recent product but it has already made large inroads into companies like Harley Davidson, Oracle, American Red Cross, Cisco,... --- ### Monitor VMware ESX Server Performance for Free: Solarwinds VM Monitor - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/monitor-vmware-esx-server-performance-for-free-vm-monitor/ - Categories: VMware - Article Type: Review Just released today is SolarWinds free performance monitoring tool – VM Monitor. In this article, learn how to download VM Monitor, how to enable ESX Server to use SNMP, and find out what VM Monitor can do for you! Or, to download now just click here – Download Solarwinds VM Monitor. Using SolarWinds free VM Monitor To me, SolarWinds is best known for their Engineer’s ToolsSet, used to monitor and troubleshoot networks. They are also well known for their network management system (NMS) – Orion Network Performance Monitor (NPM). Today, they have announced a free VMware performance monitoring tool called VM Monitor. This free tool is similar to their free Microsoft Exchange Server performance monitoring tool – Exchange Monitor in the sense that it monitors a single server, it is graphically very attractive, and it is a quick way to get performance information. The only requirement is that you have the full version of VMware ESX Server running and that you enable SNMP on that server. Luckily, I have included instructions for enabling SNMP in VMware ESX Server below. So, here is how you download and use VM Monitor: If you haven’t already, enable SNMP on your server (instructions below) Download VM Monitor and install it. It is only a 4MB program so this will take just 1-2 minutes. After installation, VM Monitor will start automatically. Enter the VMware ESX host server you want to monitor and the community name: Upon connecting, it gathered data using SNMP... --- ### Five Reasons you should Virtualize your servers with VMware Server - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/virtual_5_-reasons_to_virtualize_your_servers_with_vmware_server/ - Categories: VMware - Article Type: Opinion Virtualization is becoming more and more popular but that isn't reason enough to do it. So why should you virtualize your your servers? Specifically, why should you use VMware Server? Most of these reasons apply not only to VMware Server but to virtualization in general. Let's take a look at the top 5 reasons... 1. Its Free Like Microsoft's Virtual Server, VMware Server is free to download and use. You must still, of course, pay for any licensed operating system you install inside of it. For example, say you wanted to install 5 virtual Microsoft Windows Servers inside VMware, you would have to pay for those 5 licenses, just as you would if you had 5 physical serves. Of course, if you were to use a free version of Linux for both the host and guest operating system, that server could cost you absolutely nothing, except for the cost of the server. 2. Reduced Administration Burden With VMware Server, the burden of administrating your servers will be reduced. According to VMware, you can reduce the administrator to server ratio from 1:10 to 1:30. This means that you can either save time in your daily server admin tasks or be able to administer more servers by having VMware implemented. Here are some examples of how VMware can reduce your administrative burden: Centralized console allows quicker access to servers You can quickly mount CD/DVDs using ISO files You can deploy servers quicker (see #3) Quickly allocate additional RAM or... --- ### What You Need to Run a 64-Bit Guest OS in VMware - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_run_a_64_bit_guest_operating_system_in_vmware/ - Categories: VMware - Article Type: Overview Have you seen 64-bit versions of popular operating systems any applications? Perhaps you would like to try out these 64-bit editions. VMware is the ideal test bed to do this but what is required? Let's find out how to make it work... Running a 64-bit VM Guest on your 32-bit CPU? There are a ton of 64-bit operating systems and enterprise applications. Here is a short list: Windows XP 64-bit Windows Vista 64-bit Windows 2003 Server 64-bit Linux 64-bit Enterprise applications in 64-bit, like Exchange 2007 64-bit and many more... As 64-bit becomes more and more adopted, chances are you will want to test these new versions on your network. A common question with VMware is, "can I run my 64-bit test OS in my virtual machine, even though I only have a 32-bit CPU". The unfortunate answer is, No. VMware does not provide CPU virtualization. All the CPU requests are processes from the Guest to the Host's real CPU. Because of this, you need a 64-bit processor to run 64-bit Virtual Guest operating systems. How do I know if I can run a 64-bit Virtual Guest? Say that you your computer was recently bought and you think you have a 64-bit CPU but just aren't sure what you have and if it will work to run a 64-bit VMware Guest OS. VMware has an easy way to find out. To test your computer to ensure it has the proper hardware, go to the Processor Check for... --- ### Top 3 VMware Consolidated Backup (VCB) Utilities - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/vmware-consolidated-backup-utilities/ - Categories: VMware - Article Type: Overview In our previous article, "What you need to know about VMware Consolidated Backup (VCB)", we provided an overview of how VCB can help you. In this article, we will explore the command line utilities provided with VCB. There is no GUI interface for VCB so these tools are THE tools that you get with VCB. Because of that, if you are using VCB, you must know how to use these CLI tools well. Let's take a look... Intro to VCB CLI utilities All executable VCB commands are located in the directory C:'Program Files'VMware'VMware Consolidated Backup Framework. As I said, there is no GUI for VCB so if you are using VCB, you have to know how to manipulate options and switches for these CLI utilities. With that, let's get started... #1 mountvm. exe The mountVM utility is used to mount VMware VMDK (virtual disk) files that have been either backed up with the VCBmounter or have been restore to the VCB server with your backup utility. In other words, the mountvm command takes the VMDK disk file and mounts it as a virtual disk on top of your existing hard drive's filesystem. By doing that, you can go and browse the VMware virtual disk and copy files in/out of it. The mountvm tool is a great tool to use to restore a file (or a few files) from a VMware virtual disk to your local hard drive. Let's take a scenario. Say that you have a virtual file... --- ### Defining an Exchange 2007 E-Mail Address Policy, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/defining-exchange-2007-email-address-policy-part-2/ - Categories: Exchange Server - Article Type: Overview If you have done much work with Exchange Server 2003 or Exchange 2000 Server, then you are probably familiar with the concept of recipient policies. Recipient policies still exist in Exchange Server 2007, but they have been broken into two different components; accepted domains (which I covered in Defining an Exchange 2007 E-Mail Address Policy, Part 1), and E-Mail address policies (Which I’m about to cover). E-mail address policies are the policies that allow you to define an Active Directory user’s E-mail address. Creating an E-Mail Address Policy Now that we have defined our accepted domains, we can create a new E-mail address policy. To do so, navigate through the console tree to Organization Configuration | Hub Transport. Next, click the New E-Mail Address Policy link, found in the Actions pane. When you do, Exchange will launch the New E-Mail Address Policy Wizard. The Wizard’s initial screen will prompt you to enter a name for the policy that you are creating, and to choose the types of recipients that you want to apply the policy to. I recommend leaving the All Recipient Types setting enabled in most cases.   You can see what this screen looks like in Figure A. Figure A Enter a name for the policy that you are creating, and leave the All Recipient Types option selected. Click Next, and you will be taken to a screen that’s similar to the one that’s shown in Figure B. Even though you have already told the wizard... --- ### Performance Monitoring the Easy Way, Part 4 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/performance-monitoring-easy-way-part-4/ - Categories: Windows Server 2008 - Article Type: Overview In the previous article in this series, I showed you how data collector sets could free an administrator from having to select individual Performance Monitor Counters. Even so, knowing that a data collector set can make the selection easier is one thing, but actually performing an analysis is something entirely different. In this article, I will conclude the series by showing you how you can use the data collector sets. Using Data Collector Sets The first thing that you need to know about data collector sets is that although Microsoft has created them for you, they do not actually get used unless you tell Windows to run them.   Fortunately, running a data collector set is easy. All you have to do is to right click on the data collector set that you are interested in, and then select the Start command from the resulting shortcut menu. It is important to keep in mind that data collection is not an instantaneous process. Performance monitor counters are samples at various intervals, so you are going to need to let the data collector run for a while in order for you to get an accurate sampling of performance data. The actual length of time that the data collector set needs to run varies depending on what performance counters are involved, and on what you are trying to accomplish. When you decide that you have collected an adequate sampling of data, then you must manually stop the data collector set. To... --- ### Installing the Exchange 2007 prerequisites on Windows Server 2008 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/installing-exchange-2007-prerequisites-on-windows-server-2008/ - Categories: Exchange Server - Article Type: How To Installing the Windows prerequisites on Windows Server 2008 is a bit more involved than on Windows 2003. On Windows 2003, we installed IIS, MMC 3. 0, the . Net framework, and PowerShell. The list of prereqs for Windows 2008 is longer, and is complicated by different needs for different roles. The Exchange product group has posted a detailed list of Windows Server 2008 commands that can be manually run on a server at "How to Install Exchange 2007 SP1 Prerequisites on Windows Server 2008 or Windows Vista". However, this can be a tedious task. Fortunately, those geniuses in Building 34 have come up with a better way of getting the prerequisites installed. Let’s get started. Streamlining the installation of prerequisites Download the XML files from the product group’s blog site. Once downloaded, extract the files from the . zip file. You should end up with the following XML files: Exchange-Base. xml – used to install prerequisites for all roles Exchange-MBX. xml – used for the Mailbox Server role Exchange-CAS. xml – used for the Client Access Server role Exchange-Edge. xml – used for the Edge Transport role Exchange-UM. xml – used for the Unified Messaging role Exchange-ClusMBX. xml – used to install the requirements for clustered mailbox servers. Identical to Exchange-MBX. xml but also adds failover clustering. Open a command prompt, and navigate to the folder where the extracted XML files reside. At this point, install the general prerequisites that are needed for all Exchange Server roles. This is accomplished by running the Windows Server 2008 command... --- ### How do I use EXMERGE to delete specific messages from Exchange 2000/2003 mailboxes? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/delete_messages_from_mailboxes_by_using_exmerge/ - Categories: Exchange Server - Article Type: How To Sometimes one might need to delete many messages from one or more mailboxes. This might happen when trying to stop someone from reading an e-mail message you've sent by mistake (assuming he or she didn't open his or her mailbox yet), deleting an infected attachment or even removing an appointment that was sent to 100 people by mistake. Deleting one message from one mailbox isn't a hard thing to accomplish, but deleting hundreds of specific messages from hundreds of mailboxes found on many Exchange servers is sure to give a good headache to any system administrator. For example, let's say I've sent a message titles "This is a test message" with the attachment 70-720. doc to another user, and I want to delete this message before that user opens his or her mailbox. Luckily for us, we can utilize the power of EXMERGE to delete these messages (and they do not need to be e-mail messages. In fact you can use EXMERGE to remove and delete any kind of object found inside your mailbox folders). Prerequisites First, you need to obtain the correct version of EXMERGE for your Exchange server. EXMERGE first shipped with the Exchange 5. 5 Resource Kit and the most recent version can be obtained from the latest Exchange 2000 Service Pack (SP3) and Exchange Server 2003 installation CD. Exchange 5. 5 (v3. 3. 10) (1. 4 mb) - You need to extract and use the tool, don't mind the rest of the stuff in the zipped file, and do... --- ### Disable Automatic Update in Windows XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_automatic_update_in_windows_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I turn off the Automatic Update feature in in Windows XP and Windows Server 2003? To turn off the Automatic Update feature in Windows XP and Windows Server 2003 do the following: Go to Control Panel. Click System. Go to the Automatic Updates tab. Un-select the "Keep my computer up to date" box. Click Ok. BTW, next time you need to open the System applet you can do so much faster: instead of clicking your way to the System icon, you can just right click My Computer and choose Properties, or even better - press the Windows Logo key on your keyboard and then press Pause/Break at the same time. Related articles You may find these related articles of interest to you: Add Spell Checking to Internet Explorer Allow More than 2 Simultaneous Downloads in IE 6 Open in Regedit in Internet Explorer Quickly Change Font Size in Internet Explorer Reinstall Internet Explorer 6 on Windows XP --- ### Disable Shared Documents Folder in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_shared_documents_folder_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To What is the Shared Documents folder used for? Can I remove this option from Windows XP? Shared folders are counterparts to your personal folders: My Documents, My Pictures, and My Music. Shared Documents, Shared Pictures, and Shared Music provide a place for you to store files, pictures, and music that everyone on your computer can access. For example, Billy can put his homework in Shared Documents so that dad can check his work. And mom can put digital pictures from the family vacation in Shared Pictures so that the whole family can see them. Moving or copying a file or folder to Shared Documents makes it available to everyone who uses your computer. The contents of the shared folders are always available to anyone who uses your computer. To share files and folders on your computer: Open My Documents. Click the file or folder you want to share. Drag the file or folder to Shared Documents in Other Places. If you are connected to a network domain, the Shared Documents, Shared Pictures, and Shared Music folders are not available. To disable this option you should do the following: Start Registry Editor (Regedit. exe). Locate the following key in the registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\NameSpace\DelegateFolders Locate the key {59031a47-3f72-44a7-89c5-5595fe6b30ee}. Right click on it and select delete. Reboot to take effect. Close the registry editor. Related articles You might also want to read the following related articles: Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt... --- ### Display Phantom Drivers in Windows 2000/XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/display_phantom_drivers_in_windows_2000_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I display hidden (phantom) drivers in Windows 2000/XP/2003? There are times when you'll need to manually remove old, obsolete, hidden (phantom) drivers from your system. Looking in Device Manager does not show all the installed drivers, just the ones that are configurable by the GUI. (Before) (After) To force your system to display these old and hidden drivers you'll need to follow these steps: Method #1: Note: Credits to this tip go to Amir Meron, John Bryce. Go to Control Panel and double click on System. You can also right-click My Computer (if the icon is shown on the desktop) and choose Properties. Note: A faster way for opening up the System applet is to press the Windows logo key ÿ on your keyboard and then press Pause/Break at the same time. Go to the Advanced tab and click Environment Variables. In the System Variables section click on the New button. In the New System Variable dialog box, under the Variable Name value enter devmgr_show_nonpresent_devices (just copy the value from here and paste it there) and give it a variable value of 1. Click Ok. In the Environment Variables window notice how the new variable appeared in the System Variables section. Click Ok. In the System Properties window click Ok. Log off and log on. Open Device Manager (Control Panel > System > Hardware > Device Manager). From the View menu click Show Hidden Devices and notice the change. Method #2: You can perform the... --- ### Download RDP 5.2 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/download_rdp_5_2/ - Categories: Downloads - Article Type: Overview Where can I download the Remote Desktop Connection 5. 2 software (the Windows Server 2003 TS client)? This software package will install the client portion of Remote Desktop on a computer running any of the following operating systems: Windows 95, Windows 98 and 98 Second Edition, Windows Me, Windows NT 4. 0, Windows 2000 or Windows XP. This software, when run, allows other Windows platforms to remotely connect to a computer running Windows XP Professional or Windows Server 2003. The version of this software is 5. 2. 3790. 1830. Note: There is a new RDP client available - read Download RDP Client 6. 0. Note: If you still need to older v5. 2 client read the Download RDP 5. 2 (Old Version) page. System Requirements Supported Operating Systems: Windows 2000, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 95, Windows 98, Windows 98 Second Edition, Windows ME, Windows NT, Windows Server 2003, Windows XP, Windows XP Media Center Edition. The Remote Desktop Connection software will be installed to the Program Files directory of the target computer. On Windows XP machines this package will not replace the system installed version of Remote Desktop Connection. Instead they will be installed side by side. The start menu icon for Remote Desktop Connection, however will point to the new version in the Program Files directory. This download is the same executable that is offered in Windows Server 2003 and can be used to connect to Windows XP Professional machines or other legacy Terminal Server platforms. (Note... --- ### Download Windows 2003 SP2 Adminpak - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_windows_2003_adminpak/ - Categories: Downloads - Article Type: Overview What is the Windows Server 2003 SP2Administration Pack? Where can I get it? The Administration Tools Pack allows administrators to install the Windows Server 2003 management tools onto a computer running Windows XP Professional or a Windows Server 2003 family operating system to perform remote server management functions. This is the final version (build 5. 2. 3790. 1830) of the adminpak. msi file. You must uninstall all previous versions of the Administration Tools Pack before installing this version. The Adminpak. msi (Adminpak) file is a self-extracting file that contains commonly used administrative tools. The Adminpak. msi file is located in the 'I386 folder on the Windows Server 2003 CD-ROM or as a separate Web download package. Note that there is a difference between the original version of Adminpak. msi and the version included in Service Pack 2. Note: To separately install specific Adminpak tools (i. e. not all of the tools, just the ones you need) see my Extract Specific Tools from Adminpak. msi page. If you want to remotely administer Windows 2000 Server or Windows Server 2003 family member-based computers and domain controllers from Windows XP Professional or Windows Server 2003 family-based clients, note the following issues: You must completely remove previous beta versions of the Windows Server 2003 Administration Tools package before you install the final release version. Note In some limited cases, servers must be administered from clients that are running the same operating system version. For example, some remote administration operations against Windows 2000-based servers can be accomplished only from Windows 2000-based... --- ###  Encrypted files using Cygwin and OpenSSL - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/encrypted-files-using-cygwin-and-openssl/ - Categories: Security - Article Type: Overview Using Cygwin, the free open-source terminal emulator, in coordination with OpenSSL, you can create cross-platform encrypted files. The files created using Cygwin can be exported using mobile media including thumb drives, CDs, external hard drives, etc. Cygwin and OpenSSL are bundled in the download of Cygwin. The following tutorial (although demonstrated using Windows Vista) can be applied to Windows XP, Linux, and Mac OS. Download Cygwin from the project homepage. Cygwin is the executable located approximately half-way down the page. Double-click setup. exe to begin the installation and click Next. Choose Install from Internet and click Next. Leave the installation directory as C:'cygwin and leave the Default Text File Type set as Unix/binary and click Next. Change the local package directory path to C:'Users'USERNAME' and click Next. On the Select Your Internet Connection dialog, select Direct Connection and click Next. Select a mirror and click Next. Untie the “Net” tab, double-click openssl and click Next. It will take a few minutes for Cygwin to install. Leave the default icon selections and click Finish. Congratulations, the installation of Cygwin is complete. Double-click the icon on your desktop to launch Cygwin. Cygwin will create several personalization files and will launch the default window (shown below). In order to create an encrypted version of a file enter the following command: ​openssl des3 -salt -in UnencryptedFile. html -out EncryptedFile. html. des3 Replace “unencryptedFile. html” with the name of a file you would like to encrypt. OpenSSL will prompt you to create a... --- ### Exchange 2007 Deemphasized Functionality - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/exchange_2007_deemphasized_functionality/ - Categories: Exchange Server - Article Type: Overview Many features found in earlier versions of Microsoft Exchange Server have been deemphasized in Exchange 2007. "Deemphasizing" means that these features are still supported by Microsoft, but future development is not planned since they are considered to be legacy features, and future versions of Exchange (now code named "Exchange 14") will no longer support them. Some of these features have replaced by other Microsoft products, other simply do not exist, and require you to keep an older version of Exchange 2000/2003 if you wish to continue using them. Public folders - Free/busy calendaring functionality is provided by the Availability service. If you need additional functionality, migrate to SharePoint Portal Server or a similar product. Future versions of Exchange will no longer support Public Folders, and since Exchange 2007 can now be installed without even creating the default Public Folder tree, you should plan to migrate existing PF infrastructure and applications to other products. Proxy address generators - Use the Exchange Management Shell. CDO 1. 2. 1 - This functionality is provided by the Exchange Web Services. MAPI32 - This functionality is provided by the Exchange Web Services. CDOEX (CDO 3. 0) - This functionality is provided by the Exchange Web Services. Exchange WebDAV extensions - This functionality is provided by the Exchange Web Services. ExOLEDB - This functionality is provided by the Exchange Web Services. Store events - This functionality is provided by the Notification Web service. Streaming backup APIs. Exchange 2003 Virus Scanning Application Programming Interface (VSAPI). Other features are no longer... --- ### How to Filter MAC Address with Windows Server 2003/2008 DHCP Server Callout DLL - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/filter-mac-address-windows-server-2008-dhcp-server-callout-dll/ - Categories: Windows Server 2008 - Article Type: How To As we all know, DHCP Servers are used to assign IP Addresses and other configuration information to client computers running almost any sort of operating system, ranging from regular desktop computers, through laptop computers, up to thin clients and mobile devices. All these require a DHCP server in order to get their TCP/IP configuration settings (unless you manually configure them). One of the major headaches around using DHCP servers was the fact that the moment a computer is connected to your network, it will ask for, and receive, an IP Address from any available DHCP. This will happen to both trusted and un-trusted computers, causing us, the administrators, a potential security risk. Didn't you ever wish you could use your Windows-based DHCP server to filter out unwanted MAC Addresses? Up to this point, the only option you had was either to labor through the process of configuring manual reservation for all your known DHCP clients, or use 3rd-Party filtering hardware. Well, now you can! Published a while ago by Raunak Pandya from the DHCP Server Team, a DLL that you can install on your Windows Server 2003 and Windows Server 2008 DHCP servers, and which helps administrators to filter out DHCP Requests to DHCP Server based on MAC Address. This DLL is called the "DHCP Server Callout DLL". Note: A MAC Address, or Media Access Control Address is the unique hardware identifier of a network interface card (or NIC), and comes in the format of 02-00-54-55-4E-01. How... --- ### Front Page 2003 SP2 Slipstreaming - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/front_page_2003_sp_slipstreaming/ - Categories: Office - Article Type: Overview How can I slipstream service packs into Front Page 2003? This scenario explains how to create an integrated installation of Front Page 2003 and the corresponding service pack in a shared distribution folder on a network or on your local computer. To complete this procedure, you must have the original Front Page 2003 CD media. Note: This explanation is based upon usage of Front Page 2003 and SP2, but will also work for any future service packs. For Office XP integrated installations see Office XP SP1/2/3 Slipstreaming and for general Office System (2003) slipstreaming instructions see Office System (2003) SP2 Slipstreaming and One Note 2003 SP2 Slipstreaming. Prerequisites Before we begin anything, you'll need to have a few things: Front Page 2003 CD You will need the Administrative Update of Service Pack 2. It can be downloaded from HERE (101mb) No, the regular SP won't do. Note: For languages other than English you'll need the Office 2003 Multilanguage SP which will be available at a later date (as of October 2005). Around 360MB of free space on one of your hard drives. A CDR/CDRW drive, CD burning software and (This is actually only optional, but if you want to burn the resulting slipstreamed Front Page 2003 then you'll need it). Step 1: Perform an administrative installation Do NOT just copy your CD to your HD! Instead, use the following steps: Insert the Front Page 2003 CD into your drive, from the "Start" button select "Run" and type... --- ### Review of VMware Server 2.0 Beta - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/review-vmware-server-2-beta/ - Categories: VMware - Article Type: Review It was just announced that VMware Server 2. 0 Beta is now available for download. There are a lot of new features in this Beta. In this article, we checkout those features and show you what the new 2. 0 version looks like. So, check it out, I think you will like what you see in VMware Server 2. 0! What's new in VMware Server 2. 0 Beta? As you would expect when going from a 1. x version to a 2. x version, there are a lot of new features available in VMware Server 2. 0. But are these features really useful to you and I? Let's find out... In VMware Server 2. 0, VMware is boasting the following features: Web-based management interface: A new Web-based user interface provides a simple, flexible, intuitive and productive way for you to manage your virtual machines. Expanded operating system support: VMware Server now supports Windows Vista Business Edition and Ultimate Edition (guest only), Windows Server 2008 (Longhorn Server Beta 3), Red Hat Enterprise Linux 5 and Ubuntu 7. 1, among others. Greater scalability: Take full advantage of high-end hardware with support for up to 8GB of RAM per virtual machine, up to two virtual SMP (vSMP) processors and up to 64 virtual machines per host. 64-bit guest operating system support: Run high-performance operating systems in virtual machines with support for Intel EM64T VT-enabled processors and AMD64 processors with segmentation support. Support for VIX API 1. 2: This feature provides a programming interface for automating virtual machine and guest operations. Support for Virtual... --- ### Move Physical Machines to VMs with VMware Converter: Part 1 > This free tutorial outlines the steps to transform physical servers to virtual formats using VMWare's Converter utility. - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_convert_physical_machines_to_virtual_machines_with_vmware_converter/ - Categories: VMware - Article Type: How To VMware recently announced a new product called VMware Converter version 3. 0. This product is based on the discontinued VMware P2V assistant. The purpose of VMware converter is to allow you to quickly migrate from physical machines to VMware virtual machines. Let's find out what this new product can do for you... Introduction to VMware Converter VMware Converter is designed to do the following: convert local and remote physical servers with NO DOWNTIME convert many P2V conversions at the same time with a centralized console convert third party VMs to VMware. For example- MS Virtual PC, MS Virtual Server, Backup Exec LiveState, & Ghost. Clone and backup physical machines to virtual machines as part of a DR plan. VMware Converter comes in two flavors. They are: VMware Converter Starter (FREE Edition) VMware Converter Enterprise Of course not all feature are supported on the free edition. For a comparison chart between these two editions, see this link. Currently, VMware Converter is only supported to convert Windows systems from physical to virtual (for specific versions, see the FAQ). For specific information on VMware Converter, see this data sheet. Downloading & Installing VMware Converter To download VMware Converter, simply go to the download link on the product webpage. This will take you to the download site to download the VMware Converter Starter edition. Click Download Now. After filling out the registration form and accepting the license agreement, you will see something like this: Either Run or Save... --- ### 5 Essential Free VMware Appliances - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_top_5_free_vmware_appliances/ - Categories: VMware - Article Type: Overview Did you know that you can download FREE, already configured servers from the Internet, then run them on your Windows XP/2003 or Linux VMware computer? These servers can do some amazing things, they are free, and they can be up and running in minutes. Let's find out how... Read more: Updated for 2013 - Top Free VMware Virtual Appliances What do I need to get started? To use one of these VMware appliances, you will need to download and install either VMware Server or VMware Player. Both of these are free. VMware Player, of course, will only allow you to "play" a virtual machine, not edit its configuration or create new virtual machines. Also, keep in mind that every virtual machine you run will take resources away from your host system. This is especially true when it comes to RAM. Memory is the most crucial resource on a system that is hosting virtual machines. What do I need to know about these Virtual Appliances? There are a few things you should know about these virtual appliances. First off, let's cover the benefits: These are complete pre-built servers. That means that the OS and applications already installed and ready for use. Once these servers are opened with VMware Server or Player, you can instantly "turn them on" and use them. Installing a new server and enterprise application doesn't get any easier than that! These Virtual appliances are a great way to demo or test applications. When you are... --- ### VMware ESX Server 3i's Impact on Virtualization - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/vmware-esx-server-3i/ - Categories: VMware - Article Type: Overview You are probably already familiar with what VMware ESX Server is, how it is revolutionary, and how virtualization is changing server infrastructure forever. Perhaps you are already an ESX Server user, perhaps not. Either way, the latest version of ESX Server, 3i (could go even farther than ESX Server 3, in changing the face of your server infrastructure. Let me show you how... What is VMware ESX Server? Because we are talking about a new spin on the current version of ESX Server and I will be comparing the two, I want to make sure you first know what ESX Server is. If you are already familiar with ESX Server, just skip to the next section. VMware ESX is an enterprise grade virtualization product by VMware. Unlike VMware Server or Microsoft Virtual Server, VMware ESX does not require an underlying operating system to be loaded first. What this means is that you get the highest virtualization performance that is possible when using VMware ESX Server. ESX Server is purchased in a suite of products called VMware Infrastructure (VI) with ESX Server being the foundation of that suite. To find out how ESX Server and Virtual Infrastructure are packaged and what options are available, see our upcoming Petri article entitled How to choose the right VMware Infrastructure ESX Edition for you. What's new with VMware ESX Server 3i? With as amazing, revolutionary, and popular as ESX Server has been in the recent past, it is hard to sit... --- ### Enterprise Print Management in Windows Server 2008, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/enterprise-print-management-in-windows-server-2008-part-two/ - Categories: Windows Server 2008 - Article Type: Overview In the previous article, I showed you how to install the Print Management console. In this article, I will continue the discussion by showing you how to migrate other network print servers to the  network print server that you’ve created. Network Printer Migration Now that you have an enterprise print management server in place, you will probably want to consolidate some of your other print servers. Consolidation allows you to operate all of your network printers through a single network print server, thus reducing the amount of print server related maintenance tasks that your administrative staff has to do. To consolidate network print servers, open the Print Management console by selecting the Print Management command from the server’s Administrative Tools menu. When the console opens, expand the Print Servers container, and then choose the print server that you want to migrate. Right click on this print server, and then choose the Export Printers to a File command from the resulting shortcut menu. At this point, Windows will launch the Printer Migration Wizard. The wizard’s initial screen will show you the print drivers and print processors that are about to be exported, as shown in Figure A. Figure A The Printer Migration Wizard lists the print drivers and print processors that will be exported. Click Next, and you will be prompted to specify a path and a filename to which you want to export the printer information. Enter this information into the place provided, and click Next again... . --- ### Planning a DFS Architecture, Part 3 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/planning-dfs-architecture-part-three/ - Categories: Windows Server 2008 - Article Type: Overview Note:This article is a follow up to Planning a DFS Architecture Part One and Part Two. Although Windows Server 2008 improves upon DFS technology, DFS has been around for quite a while, and I have learned quite a bit over the years about planning for DFS replication.   I'm not talking about the replication topology itself, although that is important.   When I'm talking about are the little things that make the difference between replication performing well, and DFS running amuck.   In this article, I want to wrap up the series by sharing with you some best practices for DFS replication. Backup Strategy Just because the files stored on a DFS tree are being replicated to other servers does not mean that you don't have to back them up.   Having a DFS replicas on other servers helps to protect the data against a catastrophic hard drive failure, but does nothing to protect against data corruption.   If a file were to become corrupted, the corruption would likely be replicated to the other targets. Because the data should be identical on each DFS replica, you can usually get away with only backing up one of the replicas.   But one important thing that you need to keep in mind about the backup process though, is that it is important that you configure your backup software not to update the archive bit.   The reason for this is that file replication is triggered by a file version change, or a modified date and time... --- ### Optimizing PowerShell in Exchange 2007 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/optimizing-powershell-in-exchange-2007/ - Categories: Exchange Server - Article Type: Overview PowerShell introduces a substantial amount of flexibility and possibilities. With Microsoft introducing PowerShell in more products, we have the ability to perform tasks amongst several different resources, all from within a PowerShell window. Given the potential, it’s easy to spend a fair amount of time in PowerShell. It’s time now to make the environment a little friendlier. With these few changes, we’ll do just that. Tweak the shortcut First, we’ll tweak the shortcut that launches the Exchange Management Shell. Click on Start > All Programs > Microsoft Exchange Server 2007. Right click on Exchange Management Shell and click Properties. On the Shortcut tab, set the Start In field to be your Scripts folder as seen in Figure 1 below.   Figure 1 Exchange Management Shell Properties Shortcut tab By default, this is c:\Program Files\Microsoft\Exchange Server\Scripts. That way, you’ll get tab completion for . ps1 files in this folder, and won’t have to go hunting for them. If your environment uses a single repository for all PowerShell scripts, adjust the path accordingly. Next, click on the Options tab. Set the Command History Buffer Size to 999 to allow a much bigger buffer. This gives us the ability to look further back into what we’ve done. Next, check the box that says Discard Old Duplicates. This way, if you run the same command several times, it only shows up in the buffer once. After all, it doesn’t make sense to show more than that, right? Check the two boxes marked... --- ### How can I display the Spam Confidence Level (SCL) score in Outlook Web Access (OWA)? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/display_scl_level_in_owa_2003_sp2/ - Categories: Anti-Spam Solutions - Article Type: How To Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users. You can read more about IMF on the Block Spam with Exchange 2003 Intelligent Message Filter page. When an external user sends e-mail messages to an Exchange server with Intelligent Message Filter enabled, IMF evaluates the textual content of the messages and assigns the message a rating based on the probability that the message is UCE or spam. All incoming messages are marked with a Spam Confidence Level (or SCL) rating. SCL is a "rating system" that on a scale from -1 (only used for authenticated users) to 10, will tell Outlook or OWA whether or not the e-mail should be moved to the Junk E-mail folder (depending on the user's settings). Note that not all messages might be transferred to the store (i. e. the user's mailbox) depending on the settings on the IMF tab. Read more about how to Configure Intelligent Message Filter in Exchange 2003 SP2. Viewing this SCL rating might be beneficial in some cases, especially when evaluating the effectiveness of IMF right before beginning to actually delete messages instead of just rating them or archiving them (read View Intelligent Message Filter Archive). You can view the SCL rating in Outlook. Read Display SCL Level in Outlook 2003 for more info. In Outlook Web Access there are 2 methods for viewing the SCL rating. Please contact me in case you know... --- ### Download Mozilla Firefox - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_firefox/ - Categories: Downloads - Article Type: Overview Where can I download Mozilla Firefox? The wait is over. Firefox 2. 0 empowers you to browse faster, more safely and more efficiently than with any other browser. Firefox imports your Favorites, settings and other information, so you have nothing to lose. Looking at the Petri. co. il logs I've noticed an interesting trend, where Firefox usage is constantly growing, compared to the percentage of readers that are using IE, and as of October 2006, Firefox consists of more than 23% of this site's readers! Some of the features incorporated into Firefox 2. 0 include: Security: Mozilla’s open and transparent community-driven security model helps ensure Firefox provides the safest possible online experience. Thousands of security experts and technical contributors from around the world examine and analyze the Firefox source code, uncover potential threats and vulnerabilities, and work together to quickly identify and address emerging threats. This open, distributed, innovative approach to security puts people’s interests first and delivers the safest Web experience possible. Tabbed Browsing: Instead of opening a separate browser window for each site you want to visit, you can open multiple sites within the same window and tab between them. You can also set a group of tabs as your home page. For more information see Tabbed Browsing. Web feeds: Firefox users can now take better advantage of the frequently updated content offered by Web sites, with increased options for handling Web feeds. Users now see a preview of the content being offered and are given the option to subscribe... --- ### Download Remote Desktop Web Connection for Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/download_remote_desktop_web_connection_for_win_2003/ - Categories: Downloads - Article Type: Overview Where can I download the Remote Desktop Web Connection for Windows Server 2003? The Remote Desktop Web Connection ActiveX control allows you to access your computer through Remote Desktop, via the Internet, from another computer using Internet Explorer. You must be using Internet Information Services (IIS) to host a Web site to use this feature. Remote Desktop Web Connection provides most of the same functionality as the Remote Desktop Connection software. Note: Users of Windows Server 2003 do not need to download this package. They can manually add this package from Add/Remove in the Control Panel. This package is offered as a convenience to Microsoft customers. The Remote Desktop Web Connection ActiveX control allows you to access your computer, via the Internet, from another computer using Internet Explorer. You can download the software on this page and run setup to install the ActiveX control and sample Web page on any computer running Internet Information Server 4. 0 or higher. Supported Operating Systems: Windows 2000; Windows 2000 Service Pack 2; Windows 2000 Service Pack 3; Windows NT; Windows Server 2003; Windows XP; Windows XP Media Center Edition. See Install Remote Desktop Web Connection on Windows Server 2003 and Install Remote Desktop Web Connection on Windows XP for more instructions. Download Remote Desktop Web Connection (v5. 2. 3970) (492kb) Related articles You might also want to read the following related articles: Add a new RDP Listening Port to Terminal Server Change Terminal Server Listening Port Download RDP... --- ### Download Windows XP Update Rollup 1 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_xp_update_rollup_1/ - Categories: Downloads - Article Type: Overview Where can I download Windows XP Update Rollup 1? Update - SP2 is out On August 9, 2004, Microsoft released SP2 for Windows XP. SP2 is the latest collection of updates for Windows XP. See the Download Windows XP SP2 page for more info, and the Windows 2000/XP SP Slipstreaming page for info on how to integrate SP2 into your existing media. If you still need SRP1 On October 15, 2003, Microsoft has released Update Rollup 1 for Microsoft Windows XP. An update rollup is a cumulative set of hotfixes, security patches, critical updates, and updates that are packaged together for easy deployment. Update Rollup 1 for Windows XP is a single package that includes many previously released critical updates for Windows XP. For additional information about the critical updates that are included in this update rollup, click the following article numbers to view the articles in the Microsoft Knowledge Base: 810565 Hyperlinks Open in Internet Explorer Instead of in Default Browser or Help and Support Center 821557 MS03-027: An Unchecked Buffer in the Windows Shell Could Permit Your System to Be Compromised 811493 MS03-013: Buffer Overrun in Windows Kernel Message Handling Could Lead to Elevated Privileges 328310 MS02-071: Flaw in Windows WM_TIMER Message Handling Can Enable Privilege Elevation 823980 MS03-026: Buffer Overrun in RPC May Allow Code Execution 331953 MS03-010: Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks 323255 MS02-055: Unchecked Buffer in Windows Help Facility May Allow Attacker to Run Code 810577 MS03-005: Unchecked Buffer... --- ### Enterprise Print Management in Windows Server 2008, Part 1 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/enterprise-print-management-in-windows-server-2008-part-one/ - Categories: Windows Server 2008 - Article Type: Overview I’m probably revealing a little too much about my age, but when I first started working with Windows Server, the current version was Windows NT Server 3. 5. One of the interesting things about that version of Windows was that like all of its successors, it had the ability to host network print queues. At the time though, in most cases the printer that was being hosted needed to be physically connected to the server. In essence, the number of print queues that a server could host was limited by the number of parallel ports that were available on the server. Today, most printers are connected directly to the network, and parallel ports have been extinct for many years. As printer hardware changed, so to did the printer management capabilities that were built into Windows Server. Of course not all of the changes to Windows were directly related to advances in printer hardware. Microsoft has also made a number of changes over the years that are geared toward making printers easier to manage.   When Microsoft created Windows Server 2008, they have once again redesigned the print management interface to make managing printers easier. In this article, I will show you the new interface and how to use it. Installing the Print Services Tools In some ways, Microsoft has taken a minimalist approach when designing Windows Server 2008. Don’t get me wrong though; Windows Server 2008 is even more bloated than Windows Server 2003 R2. What I’m talking about... --- ### Filtering E-mail by Regions in Outlook 2003/2007 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/filtering-email-by-region-outlook-2003-2007-exchange/ - Categories: Exchange Server - Article Type: How To In my previous article – "Filtering E-mail by World Regions in Exchange Server 2003", I wrote about a way to block e-mail originating from specific countries. Although this can be done at the Exchange server level, sometimes, in cases where a user wants to block certain areas of the world from sending him or her spam or other unwanted e-mail, he or she can turn to the client side of the messaging infrastructure. Using Outlook 2003 SP2 or Outlook 2007's Junk Email filter options, you can block e-mail by the top level domains by country (. NG, . CN, . CZ, . HK, and so on) and encoding (character sets). As noted on my previous article, originally, most spamming e-mail servers were hosted in the United States, but with the adoption of several anti-spam laws many spammers were forced to move their operations to countries with fewer controls and rules to host their operations. Today, countries such as China, Korea, Russia, Vietnam, and Brazil are fast becoming sources of spamming mail servers. Naturally, countries with the highest number of spammers operating within their networks are usually those with poor or non-existent spam laws. (Source: http://www. spamhaus. org/statistics/countries. lasso) E-mail traffic received from places where an organization has no interest will likely be spam, and can be easily accomplished by using either Exchange 2003's connection filtering capabilities alongside with a good DNSBL server (see "Filtering E-mail by World Regions in Exchange Server 2003"), or by using a good 3rd-party anti-spam software or appliance. Since in Outlook... --- ### Fujitsu Siemens Innovations Contest - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/fujitsu-siemens-innovations-contest/ - Categories: Windows Server - Article Type: News I was asked by Fujitsu/Siemens to get the word on on their innovations contest. I thought that the contest was very unique, open to just about anyone on the planet earth, and could generate some amazing results! Do you have good ideas for data centers of the future? Submit your ideas and you could win a lot of money! The following info is the official announcement from Fujitsu/Siemens about the contest: Fujitsu Siemens Computers will run the first community-based innovation contest on the Internet starting April 23rd. The contest is dedicated to “IT Services for Tomorrow’s Data Center” and will address issues of strategic business importance to our users. As we look toward the future, it is important to anticipate how data centers will function and to find out what services will be required in the years ahead. "We see this innovation contest not as a one-time initiative, but as an ongoing contribution to our innovation philosophy," says Richard Schlauri, Executive Vice President Service. How does the contest work? Simply contribute your idea(s) regarding IT Services for Tomorrow´s Data Center. Those with the best ideas will be awarded valuable prizes. Who can participate? Anyone with a good knowledge of data center environments and solutions can take part. We are looking for creative and motivated participants with experience in consultancy, installation, administration and maintenance of modern data centers – people like you with an interest in technology – engineers, system administrators, IT managers, customers, partners, professors and students. What makes this... --- ### HFNetChk - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/hfnetchk/ - Categories: Windows 2000 - Article Type: Overview HFNetChk is a command-line tool that enables an administrator to check the patch status of all the machines in a network from a central location. The tool does this by referring to an XML database that's constantly updated by Microsoft. HFNetChk can be run on Windows NT 4. 0 or Windows 2000 systems, and will scan either the local system or remote ones for patches available for the following products: Windows NT 4. 0 Windows 2000 All system services, including Internet Information Server 4. 0 and 5. 0 SQL Server 7. 0 and 2000 (including Microsoft Data Engine) Internet Explorer 5. 01 and later The HFNetChk tool uses an Extensible Markup Language (XML) file that contains information about which hotfixes are available for each product. The XML file contains security bulletin name and title, and detailed data about product-specific security hotfixes, including: files in each hotfix package and their file versions and checksums, registry keys that were applied by the hotfix installation package, information about which patches supersede which other patches, related Microsoft Knowledge Base article numbers, and much more. When you run the HFNetChk tool for the first time from a command line (without any switches), the tool must obtain a copy of this XML file so that the tool can find the hotfixes that are available for each product. The XML file is available on the Microsoft Download Center Web site in compressed form. The file is a digitally signed . cab file. HFNetChk downloads the . cab file, verifies the signature, and... --- ### How does EFS Work? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how_does_efs_work/ - Categories: Security - Article Type: Overview How does EFS work? EFS uses an encryption attribute to designate files for EFS protection. When a file's encryption attribute is on, EFS stores the file as encrypted cipher text. When an authorized user opens an encrypted file in an application, EFS decrypts the file in the background and provides a plaintext copy to the application. The authorized user can view or modify the file, and EFS saves any changes transparently as cipher text. Other users are denied permission to view or modify EFS-encrypted files. EFS-protected files are bulk encrypted to provide confidentiality even from intruders who bypass EFS and attempt to read files by using low-level disk tools. When you specify that you want to use EFS to encrypt a file or a folder, EFS generates a file encryption key (FEK), which consists of a pseudo-random number. The system uses this number and the Data Extended Standard X (DESX) algorithm to create the encrypted file and write it to the hard disk. The system then encrypts the FEK with your public key and stores it with the encrypted file. When you access the encrypted file, the system uses your private key to decrypt the FEK and then uses the FEK to decrypt the file. When you use EFS for the first time, the system automatically generates a public/private key pair if one doesn’t already exist. If you're logged on to a domain, the public/private key pair resides on a domain controller (DC); otherwise, it resides on the local machine... . --- ### Internet Explorer 5.X and 6.0 Patches - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/ie_5x_60_patches/ - Categories: Patches and Service Packs - Article Type: Overview   You should consider installing IE 6. 0 SP1 as soon as possible Internet Explorer 6 Service Pack 1 (SP1) is the most recent version of the Internet Explorer 6 core technologies in Windows XP Home Edition and Windows XP Professional. Internet Explorer 6 Service Pack 1 provides a reliable and flexible browsing experience and the freedom to experience the best of the Internet for users of Windows XP, Windows Millennium Edition (Windows Me), Windows 2000, Windows 98, and Windows NT 4. 0 Service Pack 6a. Total download size for a typical installation is approximately 25 megabytes (MB). However, because setup downloads only those files that are necessary for your computer, this size can vary between 11 and 75 MB. Download IE 6 + SP1 List of Issues Fixed in Internet Explorer 6 Service Packs - 326489 If you still need IE 5. 01 make sure you have SP2 First, if you're not using them by now, make sure you download and install SP2 for IE 5. 01. Read more about SP2: Internet Explorer 5. 01 SP2 Info Read How to determine which version of Internet Explorer is installed - 164539 Note: Microsoft has stopped supporting Internet Explorer 5. 5 SP2. To download IE5. 5 SP2 you'll need to find a different link (with Google for example). I found one for you but I don't know how long it will last because it is an outside link that is NOT controlled by me. Try it and if you find that it stopped working please let me know... . --- ### Browsing Websites and Downloading Files is Painfully Slow with Windows Vista - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/improve_windows_vista_network_performance/ - Categories: Windows Vista - Article Type: Overview Microsoft KB article 929868 describes a problem which will cause you to experience very slow browsing on certain websites when using IE7 on Windows Vista, and eventually the website might even drop the data completely. To work around this issue you might consider changing the Windows Scaling factor to 2. To change the Windows Scaling factor to 2, follow these steps: Click Start and type CMD.   Press CTRL+SHIFT+ENTER to open the command Prompt with Administrative rights.   At the prompt in the Administrator: Command Prompt window, type the following command, and then press ENTER:  netsh interface tcp set global autotuninglevel=highlyrestricted This will set the autotuninglevel to "Allow the receive window to grow beyond its default value, but do so very conservatively". To read more about the netsh command in Windows Vista please use Vista's help and support tool. You will need to reboot in order for the setting to take effect. You can easily restore the setting back to the default by typing netsh interface tcp set global autotuninglevel=normal Remember to reboot in order for the setting to take effect. You can also disable autotuning with the following command: netsh int tcp set global autotuninglevel=disable Again, you will need to reboot in order for the setting to take effect. It seems that disabling the autotuning feature will speed up threaded network downloads, mostly used with all sorts of downloading agents and per-to-peer networking, along with great improvement with file copying on your network. BTW, it also seems... --- ### Install Hebrew on Windows 2000 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_hebrew_on_w2k/ - Categories: Windows 2000 - Article Type: How To How can I install and use Hebrew fonts on my Windows 2000 computer? Windows 2000 (and XP/2003/Vista) has the built-in ability to display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. To see Hebrew fonts on your Windows 2000 computer you MUST perform the following tasks precisely in the order listed here. Not doing so might cause your computer to display ? ? ? ? ? ? ? instead of Hebrew fonts, especially in Office applications. Note: You might also want to read the following articles: Install Hebrew on Windows XP Install Hebrew on Windows Server 2003 Install Hebrew on Windows Vista Open Control Panel. Go to Regional Options.   In the Language Settings for this system find Hebrew and click the check-box.   Click the Set Default button.   The Select System Locale window will pop up. Find Hebrew and click OK.   Back at the Regional Options window look at the Your Locale (location) drop list. Select Hebrew.   Click OK.   If the system cannot find the i386 folder it will ask you for the CD. Put it in the CD drive or browse to where you've placed your i386 folder. In it there is a folder named LANG, and in it a subfolder named HEB. A progress bar will appear while copying the files.   A windows will pop up asking you if you want to keep the files found on your HD or copy them from the CD. Click Yes... . --- ### Install Windows 2000/XP/2003 Recovery Console - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_windows_2000_xp_2003_recovery_console/ - Categories: Windows XP - Tags: Disaster Recovery - Article Type: How To How can I install the Windows XP/2000 Recovery Console? How can I start the computer and use the Recovery Console from the Setup CD-ROM? The Windows Recovery console is designed to help you recover when your Windows-Based computer does not start properly or does not start at all. If Safe mode and other startup options do not work, you can consider using the Recovery Console. This method is recommended only if you are an advanced user who can use basic commands to identify and locate problem drivers and files. In addition, you must be an administrator to use the Recovery Console. Installing the Recovery Console You can install the Recovery Console on your computer to make it available in case you are unable to restart Windows. You can then select the Recovery Console option from the list of available operating systems on startup. It is wise to install the Recovery Console on important servers, and on the workstations of IT personnel. This article describes how you can install the Recovery Console to your Windows XP computer. To install the Recovery Console, you must have administrative rights on the computer. Although you can run the Recovery console by booting directly from the Windows XP CD, it's much more convenient to set it up as a startup option on your boot menu. To run directly by booting from the CD see the "Using the Recovery Console" section later in this article. To install the Recovery Console, perform the following... --- ### Installing VMware Additions on Windows Server 2008 Server Core Installations - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/installing-vmware-additions-on-windows-server-2008-server-core-installations/ - Categories: VMware - Article Type: How To As you already know by now, in Windows Server 2008,  Server Core installation does not include the traditional full graphical user interface (GUI). You can read more about Server Core on my "Understanding Windows Server 2008 Server Core" article. Without going to much into detail, because of the lack of GUI, installing applications on server core might be more complex than installing them on a regular server installation, not to mention the fact that they might not function at all. One of these applications is the VMware Tools that comes with VMware's virtualization products such as VMware Server and VMware Workstation. VMware Tools greatly improve the guest's performance. In addition, VMware tools provide the following: Improved video performance Mouse synchronization with the host operating system so that you don't have to keep releasing your mouse from the guest to go back to the host Improved mouse performance Copy and paste between the host and guest You can read more about VMware Tools on the "How to Install VMware Tools in your Windows Guest" article. Installing VMware Tools on a server core is exactly the same as installing them on any regular operating system, except for the fact that Auto-Run will not invoke the installer, and thus you must do so manually. Note: Before installing the VMware Tools make sure they're not installed already. Read the above article for more info on that. How do I Install the VMware Tools on Server Core? First, you need to mount... --- ### Load Balancing on Windows 2000/2003 DC after Upgrading from NT - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/load_balancing_on_windows_2000_2003_dc_after_upgrading_from_nt/ - Categories: Active Directory (AD) - Article Type: Overview How do I to prevent overloading on the first Windows 2000 or Windows Server 2003 domain controller as I upgrade my Windows NT 4. 0 domain? The overloading effect takes place under the following set of conditions: You have a Microsoft Windows NT 4. 0-based domain. You upgrade several computers in the domain to Windows 2000 or Windows XP before you upgrade a primary domain controller (PDC) to Windows 2000 or Windows Server 2003. You then upgrade the PDC to Windows 2000 or Windows Server 2003 and convert the Windows NT 4. 0-based domain to an Active Directory domain. After Windows 2000 and Windows XP-based computers join an Active Directory domain, they will not use a Windows NT 4. 0-based domain controller (DC) for any operation that requires them to contact the DC. Therefore, all of the computers that run Windows 2000 or Windows XP contact only the lone Windows 2000- or Windows Server 2003-based DC. The overloading effect on the DC introduces a single point of failure. If that lone Windows 2000- or Windows Server 2003-based DC becomes unavailable, computers and users cannot contact any other of the (non-Windows 2000- and non-Windows Server 2003-based) DCs in the domain. There is a scenario in which the overloading effect can take place even though you upgrade the PDC before you upgrade the domain members. In this scenario, no additional DCs are upgraded to Windows 2000 or Windows Server 2003 while large numbers of the domain member computers are being upgraded. However, this scenario is not... --- ### Meaning of Lights in Alcatel SpeedTouch ADSL Modem - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/meaning_of_lights_in_alcatel_speedtouch_adsl_modem/ - Categories: Alcatel - Article Type: Overview What do the lights in the Alcatel SpeedTouch ADSL modem mean? Here you will find a summery of what the LEDs of your Alcatel SpeedTouch ADSL modem are suppose to indicate. This can be useful for solving problems, but in order to really understand the modem's operation and troubleshooting techniques you should read Alcatel's manual found HERE. The SpeedTouch Home is equipped with 5 LEDs on its front panel, indicating the state of the device: Indicator Description Name Color State LAN Green Flashing Data is flowing from/to the Ethernet port(s). Off No activity on the Ethernet port(s). Line TX Green Flashing ATM cells are being sent over the DSL line. Off No transmission activity. Line RX Green Flashing ATM cells are being received via the DSL line. Off No reception activity. Line Sync Green Flashing During initialization of the DSL line. On DSL line synchronization achieved. PWR/Alarm Green On Power on, normal operation. Amber On Power on, start up failed. Red Flashing Power on, POST pending. On Power on, POST failed. RTFM for more info. Links Alcatel SpeedTouch Support page --- ### Network Issues with Windows Server 2008 RDP and VS/Hyper-V on Dell Servers - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/network-issues-with-windows-server-2008-rdp-on-dell-servers/ - Categories: Windows Server 2008 - Article Type: Overview Last month I had a client buy and install several Dell PowerEdge 2950 servers. These servers had 2 Quad processors, 16GB or RAM, and 2 300GB 15K RAPM SAS hard disks, making them ideal for medium-range departmental servers. When the machines arrived, I installed Windows Server 2008 Standard Edition 64-bit on them, and proceeded to configure them based upon the client's needs. One of the machines was installed as a Domain Controller. Another was configured to host a SQL database, and 3 more were to act as Virtual Server machines. At that time. Microsoft has not yet released Hyper-V as RTM, and I decided against deploying it at an RC1 phase on that client's network. So instead, I installed Microsoft Virtual Server 2005 R2 SP1 (with the KB948515 update). All machines were configured to allow remote administration through RDC (Remote Desktop Connection). At first all seemed well. However, after some time, I began seeing strange network issues. Sometime the servers would just lose connectivity. Their NICs where in a "Connected" status, they had static IP addresses assigned, but they would sometimes lose Internet connectivity. The Virtual Machines hosted on these servers would act even more erratically. They sometimes lost connectivity with the host server, sometimes responding to PINGs, sometimes losing it. Furthermore, each VM was accessed through RDC, and whenever I tried to use the RDC client (mstsc. exe) to connect to the VM, every second attempt would fail. I would press "Connect" and it would just sit... --- ### Outlook 2007 Performance Issues - Tips & Tweaks To Improve - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/outlook_2007_performance_problems/ - Categories: Exchange Server - Article Type: Overview For the past 6 months I've been playing with Outlook 2007 RTM on my personal environment, I do not play with clients' work environments unless they absolutely need me to do so. I run a fairly large mailbox with tens of thousands of emails that spread over at least 6 or 7 years back. I am currently using Exchange 2003 SP2 as my mail server, and I also use 2 IMAP4 accounts that I pull mail from, and move items to my Exchange mailbox. I've seen a huge decrease in performance in Outlook 2007 in comparison to the same mailbox, on the same Exchange server, on the same laptop and desktop computer. And it's not just me. Users all over the world are reporting that Outlook 2007 is slow - much slower than Outlook 2003 which it is meant to replace though most people say this only occurs with mailboxes larger than 2GB. Read the links section for more on that. Furthermore, using Outlook 2003 on the SAME exact environments produces a much faster user experience, not to mention using 3rd-party mail clients for pure POP3/IMAP4 environments. And if you really want to mess up things, try using a simple client-side rule to filter email based on subject and have them placed in a PST file. Now try doing this when you have 200 email waiting to be pulled from the server, and you'll see what I'm talking about. Total lack of responsiveness from Outlook. Unfortunately, Microsoft's advice... --- ### Pre-configure Mailbox Language - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/preconfigure_mailbox_language/ - Categories: Exchange Server - Article Type: How To How can I pre-configure the default language for the folder names inside my mailbox? If you use Microsoft Outlook Web Access to log on to a mailbox for the very first time, the following folders are always created in English: Calendar Journal Tasks Notes Contacts Only the standard Messaging Application Programming Interface (MAPI) folders are localized, which are: Inbox Outbox Sent Items Deleted Items To pre-configure user's mailboxes with a pre-defined language you need to create a new registry setting that can be set to select one of the following languages: ​HKLMSYSTEMCurrentControlSetServicesMSExchangeWebParameters The new value is called: DefaultLCIDForCDO1, type: REG_DWORD The value for this is the Local ID (LCID) that the Outlook Web Access clients use and want their Outlook folder names in. For example, for Japanese Outlook Web Access clients, this value should be set to 0x0411. The legal values for this are listed below (Note: Make sure you enter these values in Hex, not Decimal notation! ! ! ): 0x0409: //English (US) 0x0809: //English (Britain) 0x1009: //English (Canada) 0x1409: //English (New Zealand) 0x0C09: //English (Australia) 0x1809: //English (Ireland) 0x1C09: //English (South Africa) 0x2009: //English (Jamaica) 0x2409: //English (Caribbean) 0x040C: //French (Standard) 0x080C: //French (Belgium) 0x100C: //French (Switzerland) 0x0C0C: //French (Canada) 0x140C: //French (Luxembourg) 0x0407: //German (Standard) 0x0807: //German (Switzerland) 0x0C07: //German (Austria) 0x1007: //German (Luxembourg) 0x1407: //German (Liechtenstein) 0x0411: //Japanese 0x080A: //Spanish (Mexico) 0x040A: //Spanish (Traditional) 0x0C0A: //Spanish (Modern) To install the fix, perform the following steps on the computer where Outlook Web Access is installed: Stop the Microsoft Internet Information... --- ### Quickly Find MX Records - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/quickly_find_mx_records/ - Categories: Networking - Article Type: How To How can I quickly find MX Records for SMTP domains? MX is an acronym for Mail eXchange. MX is defined in RFC 1035. It specifies the name and relative preference of mail servers for the zone. MX is a DNS record used to define the host(s) willing to accept mail for a given domain. I. e. an MX record indicates which computer is responsible for handling the mail for a particular domain. Searching the web for specific pieces of information is easy when you know where to search (On the Quickly Search the Web article I've shown you several methods of performing quick searches on the web). Most search engines have their own customized search toolbar (such as Google's Toolbar or the Yahoo's Toolbar). These toolbars have some great features such as Pop-up blockers, quick search links and so on. In order to find MX Records for SMTP domains you can use Command-line tools such as NSLOOKUP or DIG. You can also use online web services that allow you to perform quick searches and display the information in a convenient manner. One of these online engines is the one found at www. dnsstuff. com (more sites like that one exist, see links section at the bottom). When using their services one can easily find DNS records and gather important diagnostic information. You can utilize some of these online services and add their URLs to your browser's address bar, while adding the required record to perform the search on. The trick... --- ### How can I quickly zoom on file and folder details in Windows Vista? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_zoom_on_file_and_folder_details_in_windows_vista/ - Categories: Windows Vista - Article Type: How To How can I quickly zoom on file and folder details in Windows Vista? Windows Vista has many cool visual additions. Many of these are a total waste of time and are only there in order to capture the hearts and minds of non-power users and of those who are innovation freaks. That's fine with me, but I don't buy that stuff. New fonts and extra colors won't don't do it for me. However, every now and then one finds a true gem, a tweak or an addition that has made it to the front. A good example of this is Vista's ability to zoom in on icons, folders and files and to show you miniaturized versions of what can be found within the folder, and a little preview of the file (in case it can read it). Just navigate to the folder you want to preview. You can now click on the "Views" button and it will cycle between the different pre-set folder views: Or you can use the slider to manually change the folder and icon view: Or, and here is where this tip comes in handy - Hold the CTRL key on your keyboard and simply scroll with your mouse wheel up or down to set your folder and file views. Neat, huh? Some folders might contain graphics or documents. You may want to preview them in one way: Other folders might contain data you want to view in a different way: And so on:... --- ### Red Earth Policy Patrol - more info - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/red_earth_policy_patrol/ - Categories: Exchange Server - Article Type: Review Red Earth Policy Patrol 2. 5 - more info Perhaps no problem plagues the Internet as deeply as that of unsolicited junk E-mail, or SPAM. While there’s no doubt that SPAM can be annoying to the end users, SPAM can cause problems for both the network administrators and for those who own or manage a company. The reason for this is that SPAM robs your company of productivity and of system resources. Red Earth Policy Patrol 2. 5 One of the most cost effective spam controlling software is Policy Patrol by Red Earth Software. Policy Patrol is a comprehensive e-mail-filtering tool that offers advanced anti-spam, anti-virus, content & attachment checking, disclaimers, archiving and reporting. Policy Patrol works with Microsoft Exchange Server 2003/2000/5. 5, Lotus Domino and any other SMTP mail server (found at http://www. policypatrol. com). Why use Policy Patrol to stop spam? Policy Patrol offers a comprehensive and powerful set of features to help you put an end to unwanted mails, whilst keeping false positives at a minimum: Policy Patrol combats spam by checking for spam words, spam headers, sender domains, sender IP addresses, number of recipients, language character sets, illegal HTML and the absence of a plain text body part. Policy Patrol is one of the few products that can remove HTML tags before checking the e-mail text. Therefore the product is capable of successfully stopping spammers who try to circumvent content filters by placing HTML comment tags within the text. Policy Patrol can make use of multiple spam black... --- ### Remove the Windows Mail splash screen - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/remove-windows-mail-splash-screen/ - Categories: Windows Vista - Article Type: How To Windows Mail is an excellent client-based email application bundled into Windows Vista and described by Microsoft as the following: "Windows Mail in Windows Vista addresses today's serious concerns about junk mail, e-mail, and phishing attacks, while adding new features that help you search and manage the increasing volume of e-mail messages that you receive. If you're like most people, sending e-mail is one of your most important computer activities, allowing you to keep in touch with family, friends, and colleagues across town or around the world. As the popularity and importance of e-mail have grown over the years, so, too, have its annoyances and risks. " Unfortunately, Windows Mail is very slow to load, and comes packaged with an extremely annoying splash screen. However, a simple registry tweak will remove the splash screen and load Windows Mail about 1 to 3 seconds faster. As previously mentioned, in order to remove the splash screen you need to change make a registry change. Note: Editing the registry has the potential to cause serious (and unrecoverable) damage to your PC. If you are at all uncomfortable editing the registry, please do not attempt the following. The first step is to open your registry editor. You can do this by clicking the Start menu and typing regedit and hitting Enter. Windows User Account Control will ask you for permission before continuing, choose Continue. (Unless you go in and Disable UAC first) In the registry editor, navigate through the following tabs: HKEY_CURRENT_USER, Software, Microsoft and Windows Mail... . --- ### Forgot the Administrator's Password? - Change Domain Admin Password in Windows Server 2003 AD - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/reset_domain_admin_password_in_windows_server_2003_ad/ - Categories: Security - Article Type: How To Note: In order to successfully use this trick you must first use one of the password resetting tools available on the Forgot the Administrator's Password? page. The reason for that is that you need to have the local administrator's password in order to perform the following tip, and if you don't have it, then the only method of resetting it is by using the above tool. Update: After some reader feedback I'm pleased to say that this procedure ALSO WORKS for Windows Server 2008 Domain Controllers. Feel free to send in your feedback. I kept the original page syntax in relation to Windows Server 2003, but you can now perform the same actions on Windows Server 2008. Lamer note: This procedure is NOT designed for Windows XP since Windows XP is NOT a domain controller. Also, for a Windows 2000 version of this article you should read the Forgot the Administrator's Password? - Change Domain Admin Password in Windows 2000 AD page. Reader Sebastien Francois added his own personal note regarding the changing of Domain Admin passwords on Windows Server 2003 Active Directory domains (HERE). I will quote parts of it (thanks Seb! ): Requirements Local access to the Domain Controller (DC). The Local Administrator password. Two tools provided by Microsoft in their Resource Kit: SRVANY and INSTSRV. Download them from (24kb). Step 1 Restart Windows 2003 in Directory Service Restore Mode. Note: At startup, press F8 and choose Directory Service Restore Mode. It disables Active Directory... . --- ### Run Active Directory Management Tools as Another User - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/run_ad_tools_as_another_user/ - Categories: Active Directory (AD) - Article Type: How To How can I run Active Directory management tools as another user (one with administrative privileges)? As a security best practice, it is recommended that you do not log on to your computer with administrative credentials.  Running your computer as a member of the Administrators group makes the system vulnerable to Trojan horses attacks and other security risks. It is recommended that you use a regular, non-administrative user account to perform routine tasks, including running programs and visiting Internet sites. When it becomes necessary to perform administrative tasks on the local computer or in Active Directory, use RUNAS to start a program using administrative credentials. RUNAS allows you to accomplish administrative tasks without exposing your computer or data stored in Active Directory to unnecessary risk. However, using the RUNAS command can turn out as a real bugger when you need to perform regular administrative operations such as adding a new user, resetting someone's password, stopping or starting a system service and so on. In Windows 2000 we welcomed the new addition - the RUNAS command. However, in Windows Server 2003 the RUNAS command got even easier to use. Therefore I recommend using the following method to make your administrative tasks a bit easier to accomplish: When logged in as a normal, non-privileged user, right-click on an empty spot on your desktop and create a new shortcut. In the Create Shortcut window type the following text (see other examples below): ​runas /savecred /user:dpetri'administrator "mmc dsa. msc" Note: The... --- ### Search - Published: 2009-01-08 - Modified: 2024-09-04 - URL: https://petri.com/search/ - Categories: Windows Server - Article Type: Overview Advanced Search You can use the search form found on each page's right-hand top corner. It will invoke a Google-based search engine that will perform searches on the Petri. co. il website. Please use this form to search for a specific word or phrase found on this site.   Web petri. com You can also see the following pages for more info and help: Contents Search Tips MS Knowledge Base Search Tips Site Structure --- ### Setting Windows Server 2008 Terminal Services Display Data Prioritization - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/setting-windows-server-2008-terminal-services-display-data-prioritization/ - Categories: Windows Server 2008 - Article Type: How To Windows Server 2008 holds some major key benefits in Terminal Services technology. Some of these are discussed in various articles on my site (see Related Articles section below). One of these features is Display Data Prioritization. Display Data Prioritization in Windows Server 2008 Terminal Services allows for automatic control over the virtual channel traffic that is passed between the client (RDP 6. 0) and the server (running Windows Server 2008). This enables better performance and user experience because display, keyboard typing, and mouse movement data is given a higher priority over other virtual channel traffic, such as printing, clipboard operations or file transfers. This prioritization is designed to ensure that your screen performance (user experience) is not affected by bandwidth intensive actions, such as large print jobs. In Windows Server 2008 Terminal Services, the default bandwidth ratio is 70:30. This means that display and input data will be allocated 70% of the bandwidth and all other traffic, such as print jobs , clipboard or file transfers will be allocated 30% of the bandwidth. Changing the Display Data Prioritization Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of... --- ### Temporarily Increase the Exchange 2000 16 Gigabyte Database Size Limit - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/temporarily_increase_the_exchange_2000_16_gigabyte_database_size_limit/ - Categories: Exchange Server - Article Type: How To How to Temporarily Increase the Exchange 2000 16-Gigabyte Database Size Limit? MS KB 813051 has info on this issue: The Microsoft Exchange 2000 Server message database (MDB) automatically shuts down and does not restart when it reaches the maximum size limit that is permitted. This behavior is by design to prevent the database from trying to insert more data into the database file than it was designed to hold. Frequently, you experience this behavior when you are running Microsoft Exchange 2000 Server Standard Edition. Exchange 2000 Server Standard Edition limits the database size to 16 gigabytes (read more - What's my Exchange 2000/2003 Version? ). A new update to Exchange 2000 has been developed that permits you to temporarily increase the database size limit by 1 gigabyte. By increasing the size limit, you can selectively remove unnecessary database content (read more - Delete Messages from Mailboxes by using EXMERGE), defragment the database (read more - Defragment Exchange 2000/2003 Server Databases), and reduce the database size to a manageable level that is below the defined limits for database size. Follow these easy steps: Run Regedit and navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesMSExchangeISPrivate On the Edit menu, click Add Value (Select REG_DWORD for the data type), and then type the following in the Value name box: Temporary DB Size Limit Extension Enter a value of 1. Exit the registry editor and reboot the server or restart the Information Store service. If the Temporary DB Size Limit Extension registry... --- ### Create a mountable virtual encrypted hard drive in Windows Vista using TrueCrypt - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/truecrypt/ - Categories: Security - Article Type: How To TrueCrypt is a free, open-source application for Windows XP and Windows Vista that will create a mountable, virtual, encrypted, hard disk. The encrypted files can be easily transported to mobile media including thumb drives, CDs, external hard drives, etc. The entire process is graphical and can be completed by users of any experience level. TrueCrypt accepts command line parameters which allows you to create a batch file to automatically mount your encrypted virtual hard disk. TrueCrypt will dynamically increase the size of your partition if you run out of drive space. Install TrueCrypt The first step is to download and extract TrueCrypt from the project homepage. Double click TrueCrypt Setup to begin. If you are prompted for an administrator password or confirmation, type the password or provide confirmation. Leave the default installation path and leave all five text boxes selected and click Install. TrueCrypt will create a system restore point and begin the installation process. It will take several minutes, click Ok. TrueCrypt Setup will prompt you to review the documentation. The documentation is very thorough and well worth the read, however, for the purposes of this tutorial click No. In the TrueCrypt Setup dialog, choose Exit. Create A TrueCrypt Encrypted Volume Launch TrueCrypt from the Start menu (Start >> All Programs >> TrueCrypt >> TrueCrypt) Click Create Volume. Leave the default selection as “Create a standard TrueCrypt Volume” and click Next. Click Select File... Create a file at C:'Users'USERNAME'Encryption and click Save. Click Next. Leave the... --- ### Untrusted Certificate Source - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/untrusted_certificate_source/ - Categories: Security - Article Type: Overview How can I tell if an SSL certificate is from an un-trusted source or not before I enter the secured site? Any website operator that wants to secure the site or some of it's pages with SSL must obtain a valid certificate from a trusted third party CA. If you try to enter a secure website that uses a certificate from an un-trusted CA, like the MCP Secure site on Microsoft's website at http://www. microsoft. com/traincert/mcp/mcpsecure. asp you will get a secure website warning (This was true for the 29th of January 2003 - read more about it on the Expired SSL Website Certificate page): If you click OK your web browser will try to obtain the signed certificate from the web server, but if that certificate is signed by an un-trusted CA you'll get this warning: You can choose to view the certificate and if you do you'll see (on the General tab) the reason for the error message: If you click on the Details tab you can see that this specific certificate is outdated: If you choose to agree to accept this certificate you will be able to enter the secure site, providing it is indeed a secure and valid site, and not an exploit or a redirected malicious site. Note: Having respected sites like Microsoft's use expired certificates or certificates from un-trusted CAs is somewhat irresponsible in my opinion. Any hacker or malicious user with little HTML, X500 and hacking knowledge can easily divert the innocent and un-expecting users to... --- ### Using Backup Status and Configuration in Vista - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using_backup_status_and_configuration_in_vista/ - Categories: Windows Vista - Article Type: Overview To protect your files you can create a backup by using Vista's Backup Status and Configuration tool. A backup set is a set of copies of the files that is stored in a different location from the original files. That location can be a different partitions on your computer's internal hard disk, an external hard disk, a remote share on a different computer, and even writable media such as CD-R and DVD-R. Note: It is recommended that you never back up files to a location that is on the same hard disk as where Windows is installed, because if your computer gets hit by a virus or has a software failure, you might have to reformat the disk and reinstall Windows to recover from the problem, and if you do so you will probably lose the ability to gain access to your backup media. BTW, you should also read my "Using System Restore in Windows Vista", "Restore Ntbackup Backups from Windows XP to Windows Vista" and "Installing Windows XP Ntbackup on Windows Vista" articles. Vista's Status and Configuration tool has a simple user interface, and with a small number of clicks even the less experienced user can easily set up an automatic backup schedule. With automatic backups, you don't have to remember to back up your files, the system does it for you, all you need to do is to remember to leave enough disk space on the destination drive, or in case of writing to a... --- ### Creating Differencing Disks with Microsoft Virtual PC - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/virtual_creating_differencing_disks_with/ - Categories: Virtualization - Article Type: How To As I mentioned in my "Creating Virtual Machines with Microsoft Virtual PC 2007" article, Microsoft Virtual PC is one of the top contenders in a growing line of Virtual Machine utilities. I will not go into the age-old fight on who's best – Microsoft Virtual PC or VMWare's software. Both are free and both are good, but as far as I am concerned, the latest version, called Microsoft Virtual PC 2007, is my preferred VM tool for my own personal use. You can download Microsoft Virtual PC 2007 for free from the following link: Download details - Virtual PC 2007 Note that besides Virtual PC, Microsoft also offers a more robust product called Virtual Server 2005 R2. We will deal with that product in a later article. When you work with Virtual Machines you must allocate at least one virtual hard disk per machine. The virtual machine "sees" the virtual hard disk as a real hard disk, and is able to format it and install itself on it. Microsoft Virtual PC also supports two types of virtual hard disk that I want to talk about in this article: Differencing virtual hard disks - Differencing virtual hard disks allow multiple users and multiple virtual machines to use the same parent virtual hard disk at the same time. Virtual PC stores any changes to the virtual hard disk in the differencing virtual hard disk. For example, you can build one instance of a given operating system, configure it as a... --- ### What's a Trojan Horse? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/whats_a_trojan_horse/ - Categories: Security - Article Type: Overview What is a Trojan Horse and what threat does it pose? Since "Trojan Horses" (or Backdoors) have been in the news just recently, the term probably sounds familiar to you. But perhaps you’re not quite sure what a Trojan Horse is and what damage it is capable of doing to your system. Trojan Horses, of which there are now more than one thousand in circulation (including modifications and variants), are a relatively new and probably the most dangerous strain of viruses that have appeared in recent times. They also threaten to overwhelm systems that only run anti-virus applications and firewalls as a means of combating the threat. Today's Trojans as they are commonly referred to as, have now attained such a degree of sophistication that they pose a real threat to any user who hasn't taken adequate precautions to protect their data. The name "Trojan Horse" derives itself from a page in Greek history when the Greeks had lain siege to the fortified city of Troy for over ten years. Their spy, a Greek called Sinon offered the Trojans a gift in the form of a wooden horse and convinced them that by accepting it, they would become invincible. The horse though was hollow and was occupied by a contingent of Greek soldiers. When they emerged in the dead of night and opened the city gates, the Greeks swarmed in, slaughtered its citizens and subsequently pillaged, burned and laid waste to the city. In the IT environment,... --- ### What's the HCL? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/hardware-compatibility-list/ - Categories: Windows Client OS - Article Type: Overview What's the HCL? The hardware compatibility list (or HCL) provides a representative list of hardware peripherals that are compatible with the Microsoft Windows operating systems (e. g. Windows 98, Windows NT 4. 0, Windows 2000, Windows XP and Windows 2003). Microsoft has validated the compatibility of the hardware peripherals on an x86-based Windows hardware reference platform. Microsoft Product Support Services uses the HCL to determine whether or not a computer is supported for use with the Windows operating system. Before you install Windows on a computer, check the HCL to determine whether the computer is certified by Microsoft as Windows-compliant. The latest Windows HCL is available from the Microsoft Windows Drivers and Hardware Central web site You can search for specific hardware items and see if they are listed as compatible with the Microsoft OS that you are running. I suggest you visit the site before buying any piece of hardware that does not have the Microsoft Windows Logo icon on it. Note that MS has not tested every computer and/or device in all possible configurations, and that some computers may be sold with peripherals that are not yet supported by your version of Windows, or that require a device driver supplied by the manufacturer. Note: Additional products that are not found on the latest HCL will probably (but not always) cause the Microsoft support staff to stop your support. Contact your hardware manufacturer for details on products not listed there. Related articles You may also want to read:... --- ### Microsoft Hyper-V will not boot virtual SCSI devices - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/win-2008-hyper-v-will-not-boot-virtual-scsi-devices/ - Categories: Virtualization - Article Type: Overview There is recent unexpected bad news from Microsoft concerning Hyper-V: Anthony F. Voellm, Principal Software Development Lead of Hyper-V at Microsoft, reveals in his corporate blog that the upcoming hypervisor (named Microsoft Hyper-V, formerly known as "Viridian") will not boot from virtual SCSI hard drives: "Each IDE controller can have two devices.   You can not boot from a SCSI controller.   This means an IDE disk will be required.   The boot disk will be IDE controller 0 Device 0.   If you want a CDROM it will consume an IDE device slot. " Source: MSDN Blog The hypervisor that runs the virtual BIOS does not support booting from a SCSI controller, today, but it does support the following boot devices: CD IDE Legacy Network Adapter Floppy The root reason is SCSI in a synthetic device and there is no VMBUS until after boot. One might think that this shouldn't be a problem, after all, the virtual machines can still boot from regular IDE-based virtual disks. So where's the catch? The main problem is related to the fact that in Virtual Server, virtual SCSI controllers have major performance benefits over virtual IDE controllers. In Virtual Server, it is recommended to attach the Virtual Disks to one or more SCSI controllers to improve disk input/output (I/O) performance. IDE is limited to one transaction at a time, regardless of whether the bus is physical or virtual. This means that a virtual machine with two virtual hard disks attached to the IDE adapter is limited... --- ### What is Windows Server 2003 SP1 Slipstreaming? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2003_sp1_slipstreaming/ - Categories: Windows Server 2003 - Article Type: Overview What is Windows Server 2003 SP1 Slipstreaming? How can I slipstream service packs into the Windows Server 2003 media? This scenario explains how to create an integrated installation of Windows Server 2003 and the corresponding service pack in a shared distribution folder on a network. This integration is called "Slipstreaming". The integrated process installs the service pack during Windows 2003 Setup, so when the setup process is done, you'll have the OS + SP in one operation. Important: Do not update Windows 2003 integrated with a service pack in a shared distribution folder if there are users who are still using a previously installed integrated version in the same shared folder. For other versions of this article please visit the following links: Office System (2003) Hotfix Slipstreaming Office System (2003) SP1 Slipstreaming Office XP SP3 Slipstreaming One Note 2003 SP1 Slipstreaming Windows 2000 SP4 Slipstreaming Windows XP SP2 Slipstreaming The Slipstreaming process Prerequisites Before we begin anything, you'll need to have a few things: Installation CD of Windows Server 2003. Service Pack 1 for Windows Server 2003 Download Windows Server 2003 SP1 Network Installation (329mb) Lamer Note: This guide is based on the English versions of Windows Server 2003, and of their corresponding Service Packs. If you're using a different localized build of Windows, you will need to find the right version of SP for your build. At least 800MB (for Windows Server 2003 SP1) of free space on your hard drives (you can later delete these... --- ### How can Cisco's Network Security and Deployment Methodologies help you? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how-cisco-network-security-and-methodologies-can-help/ - Categories: Cisco - Article Type: Overview In my time browsing the Cisco website and also from watching Cisco presentations, there are a couple of different methodologies and lifecycle approaches, subscribed to by Cisco that can help any enterprise customer. Let's find out how these methodologies can help you. How can Methodologies help you? The Wikipedia defines a methodology as: "the analysis of the principles of methods, rules, and postulates employed by a discipline", "the systematic study of methods that are, can be, or have been applied within a discipline" or "a particular procedure or set of procedures" All technology consulting companies use methodologies to ensure that they delivery quality to their customers. For example, a common consulting methodology is “plan design, build, test, implement, & audit”. Of course there are tasks that go along with each of these phases. If you follow this approach to a project, chances are, that you will have a much better chance of success. That is because you took time to plan, design, test, and audit. Usually, IT guys (or really anyone with not a lot of time, like IT guys) tend to go only to build, and then implement. Some out there might wonder how this applies to you and especially to Cisco Routers and Switches. Bear with me here as I will get to that. Over time, I have seen a number of different systems, offered by Cisco, that could be applied to help just about any business out there, whether you are using Cisco routers... --- ### Roboform -  Automated Password Manager & Form Filler - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/roboform-password-manager-form-filler/ - Categories: Security - Article Type: Overview Many times when I get a recommendation for a software application, it is from a salesman who is trying to sell me something. So when a friend of mine told me about Roboform, I was dubious and not too interested. My friend explained how much time he had saved, while web surfing, since he installed roboform. After I finally tried it out, I now wish that I had of heard about Roboform long ago. So please read on and, you, like me, will be glad that you did. The problem with Internet passwords If you are like me, you have a lot of passwords. Being a system admin and having surfed the web for many years, I checked my "secret password folder" and found that I actually have 449 passwords to different websites. Obviously, I cannot remember all of those in my head. As I use the Internet for business and personal use, I find myself checking my password file multiple times even though I have made an effort to use the same password in many places (which is insecure). Sure, I have considered the IE or Google's "remember your password" option but that is just not secure either and I would be afraid that I would forget what the password was and have no record of it. The end result is that it can sometimes be frustrating to go to a website you haven't been to in some time and have to try to dig for the password. Additionally,... --- ### How to Convert Physical Machines to Virtual Machines with VMware Converter: Part 2 > This is article covers part two of using VMware Converter to transition physical servers to virtual machines. - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/virtual_convert_physical_machines_to_virtual_machines_with_vmware_converter_2/ - Categories: VMware - Article Type: How To In the part one of this two part series, we learned what VMware Converter can do for us, how to download it, and how to install it. In this article, we will demonstrate how VMware converter can assist you in migrating a physical machine to a virtual machine. Using VMware Converter When VMware Converter starts, you will be asked if you want to enter a license (to use the Enterprise version) or move into Starter mode. To go into Starter mode, click Continue in Starter Mode. There are two purposes for VMware Converter: 1) Import a Virtual Machine from a physical machine or other type of virtual machine 2) Configure Virtual Machine to make an existing image bootable In our case, we are going to demonstrate how you can import a hard drive from a physical machine (while that machine is running), change the drivers on it to be VMware drivers, and boot it in VMware. The first step of this is importing the virtual machine. Importing Virtual Machines To Import a virtual machine, just click on the Import Machine button the top left side of the interface. Next, you'll see the Import dialog box come up. Click Next twice. Select the type of source to import from: In our case, we selected physical computer but notice all the different sources you can import virtual machines from. You could import an existing virtual machine, a physical machine that this program is running on, or a remote machine... --- ### Understanding VMware ESX Users, Groups, And Roles - ESX User Configuration, ESX Group Management, ESX Role Management - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/virtual_understanding_vmware_esx_users_groups_roles/ - Categories: VMware - Article Type: Overview Just like with any network operating system, to securely setup VMware ESX, you need to understand how to configure users, groups, and roles. In this article, you will find out how. Introduction to VMware ESX users, groups, and roles Keep in mind that VMware ESX is a modified version of Red Hat Enterprise Linux. Thus, ESX has Linux users and group. If you understand the basics of Linux users and groups, you have a jumpstart on understanding ESX users and groups. By default, ESX has 22 different users and 31 groups. Wow! That's amazing! All of these are used by the system. The single account that you will be most common with is the root account. When you installed ESX, you set the password for this account. Common user accounts are shown in the picture below: With VMware ESX Server, you have 4 Roles, by default. These Roles can be configured in the Admin Section. Besides the Roles section, you also have a Permissions tab and Users & Group tab. The Users & Groups tab is where you add & remove Local users and groups. The Permissions tab is where you grant those users and groups access to certain Roles in VMware ESX. VMware ESX User Configuration On the Users & Groups tab, each user account has a UID number (used to uniquely identify the user) and a common name (as you can see by the graphic above). If you double-click on the user, you will see this:... --- ### VMware ESX Server Cluster & Resource Pools Explained - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/vmware-esx-server-cluster-pools/ - Categories: VMware - Article Type: Overview One of the most important features of VMware ESX Server / Virtual Infrastructure is the ability to configure Cluster Pools and Resource Pools. How can these pools help you and what is the difference between them? Let's find out. What are VMware ESX Server Cluster Pools? A cluster is defined as "a group of tightly coupled computers that work together closely so that in many respects they can be viewed as though they are a single computer" (per Wikipedia). A VMware ESX Cluster is no difference. Clusters are used for 3 things- 1) high availability, 2) load balancing, and 3) high performance computing. VMware ESX clusters are used for #1 and #2. With a VMware ESX Cluster, you define 2 or more physical machines that will provide resources for the hosts (or resource pools) that are assigned to that cluster. By using ESX clusters, you can achieve high availability (VM HA) and load balancing of virtual machines (called VMware DRS, discussed below) Just to reiterate, here is why you use VMware ESX Clusters: if one of the physical hosts goes down, the other physical host starts up the virtual guests machines that the original virtual host was running (VM HA). if one physical host is over utilized by a virtual guest, that virtual guest is moved to the other physical host (VMware DRS, discussed in the resource pool section, below). Both of these features use VMotion to move these virtual guests from one system to another. How... --- ### Monitoring Exchange 2007 Service Level Agreements - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/exchange-2007-service-level-agreements/ - Categories: Exchange Server - Article Type: How To E-mail has become a mission critical application within most organizations, so it has become common for upper level management to mandate a specific Service Level Agreement (SLA) for Exchange Server administrators. In case you are not familiar with the concept of an SLA, a SLA mandates the percentage of time that an application is available. For example, an SLA might mandate that your company’s Exchange Servers are online and available for use 99% of the time. One of the biggest problems with having upper management to impose an SLA is the fact that many of those managers will ask for proof that the SLA was met. Exchange Server 2007 doesn’t provide an easy way of generating a report that shows whether or not a particular SLA was met, but you can produce such a report by using Microsoft Operations Manager (MOM) 2005. Before you can produce an SLA report, you will need to install the Management Pack for Exchange Server 2007, and configure your MOM server to monitor your Exchange 2007 servers. If you need a copy of the Exchange 2007 management pack, you can download it here. Importing Reports and Management Packs Before you can generate the necessary reports, you will have to import the management packs and the reports. To do so, open the MOM 2005 Administrator Console, and then click the Import Management Packs link. When you do, Windows will open the Management Pack Import / Export Wizard. Click Next to bypass the wizard’s Welcome screen, and... --- ### Planning a DFS Architecture, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/planning-dfs-architecture-part-two/ - Categories: Windows Server 2008 - Article Type: Overview In the first part of this article series, I talked about the differences between a stand-alone DFS namespace and a domain based DFS namespace.   The next thing I want to discuss is the replication topology that will be used by your DFS servers. Why Replicate? When I have introduced the concept of DFS to clients in the past, one of the first questions that they always ask me is why in the world they need multiple DFS servers.   Technically, you don't have to have multiple DFS servers, but there are some advantages to using multiple replica servers.   For starters, using multiple replicas provides you with a degree of scalability.   Rather than having every user in your organization access their files from the same server, you can distribute the user workload across multiple DFS replicas rather than over burdening a single server. Another reason for having multiple DFS replicas is because doing so provides you with a degree of fault tolerance.   For example, suppose that you need to install a service pack onto your servers.   Most of the time when you install a service pack for Windows, the installation process requires you to reboot the server when you're done.   Normally, rebooting a server is disruptive to the users who are accessing files on that server.   If you know that you're going to be doing maintenance on one of your servers though, you can remove the server from the DFS namespace, and perform your maintenance without disrupting the users.  ... --- ### SCW for Exchange Server 2007 – Part I - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/scw-for-exchange-server-2007-part-1/ - Categories: Exchange Server - Article Type: Overview What is the Security Configuration Wizard (SCW)? The Security Configuration Wizard is a security tool that reduces the attack surface of an Exchange server by disabling unnecessary services, ports, features, and programs. Additionally, the wizard configures auditing and the Windows Firewall, secures network interfaces, and more. In doing so, we further secure a server to provide a more secure, stable, Windows environment. The SCW is a straightforward interface that takes much of the guesswork out of securing an Exchange 2007 server. The SCW is a feature of Windows Server 2003 SP1, but isn’t installed by default, nor is it aware of Exchange Server. However, we can get it installed and it can be easily extended to support Exchange Server 2007. Installing the SCW in Windows After ensuring that your Windows Server 2003 box has Service Pack 1 for the operating system installed, getting the SCW installed is quite easy. Click Start > All Programs > Control Panel > Add/Remove Programs > Windows Components. Scroll down and check the box for Security Configuration Wizard as seen in Figure A. Figure A Click Next, then Finish when the installation is done. You’ll notice that there is a shortcut to the help info placed on the desktop of the server. You should look through this information as it will prove beneficial to securing your server. Registering the Exchange 2007 XML files Once the SCW is installed, the configuration files for Exchange Server 2007 need to be registered. As mentioned previously,... --- ### How do I delete an "undeletable" file? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/delete_undeletable_files/ - Categories: Disk Management - Article Type: How To Sometimes you want to delete a file but when you do so an error message pops and tells you it cannot be done. Method #1 - Kill explorer. exe Do successfully delete an undeletable file that is caught be the explorer. exe process (and most of them are) do the following: Open a Command Prompt window and leave it open. Close all open programs. You now need to close EXPLORER. EXE. The proper way to shutdown Explorer is to raise the "Shut Down Windows" dialog (select "Shut Down... " from the start menu), hold down CTRL+SHIFT+ALT and press the CANCEL button. Explorer will exit cleanly. Note: The at the 'Shut Down Windows' dialog method of closing Explorer is built into Explorer. (It was specifically designed so that developers writing Shell Extensions could get Explorer to release their Shell Extension DLLs while debugging them). Go back to the Command Prompt window and change to the directory where the undeletable file is located in. At the command prompt type DEL where is the file you wish to delete. Go back to Task Manager, click File, New Task and enter EXPLORER. EXE to restart the GUI shell. Close Task Manager. (Tip modification submitted by James R. Twine who has a great utility called Delete FXP Files that can help you delete files and folders that simply won't go away). Method #2 - Unlocker Another cool tool that will allow you to delete any undeletable file is Unlocker (author's web site can be found HERE). [adkit... --- ### Disable System Restore in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_system_restore_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I turn off the System Restore feature in XP? System Restore is an incredible space hog (read more about it in What's System Restore in Windows XP? ). It might be worth it, if System Restore were a truly complete and foolproof form of backup, but it's not. At best, System Restore can and will get the core operating system running again after a bad crash, but it doesn't return all files to the pre-trouble state, and it can't remove all traces of a program that went bad. As a result, System Restore's usefulness is limited, and so should be its appetite for disk space.   To turn System Restore off:   Go to your Control Panel. Click System. Go to the System Restore tab. Check the box Turn off System Restore for all drives. You can also turn it off only for specific partitions, for example partitions that contain information that does not change as often as your system and boot partitions. If you have more than one drive, you may wish to turn off System Restore entirely for non-system drives. There's little, if any, benefit to be gained by having them monitored. You can also choose the amount of space System Restore will take on each and every disk it uses: Be sure to know that when you disable System Restore your system will automatically delete all previous restore points, so if you do want to keep them, do NOT disable this feature. A note for Windows... --- ### Download Free Windows 2000 Resource Kit Tools - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/download_free_reskit_tools/ - Categories: Downloads - Article Type: Overview Where can I download the Windows 2000 Resource Kit tools? You can download the Windows 2000 Resource Kit software tools listed on this page for free and install them on your computer. These utilities can help you streamline administrative tasks such as managing Active Directory, administering security features, working with Group Policy and Terminal Services, automating application deployment, and other important jobs. Nearly 300 such tools are included on the Windows 2000 Server Resource Kit companion CD. These tools are designed to be installed and run only on Microsoft Windows 2000. They are neither localized nor supported by Microsoft. Note: Microsoft only lets you download a subset of the original Resource Kit Tools. I've managed to gather many other tools for you to download besides the ones from Microsoft. These tools are linked as direct downloads, while the MS-provided ones link you to a description page from where you can download the files. Note: Please note that these are NOT the entire Reskit tools set. The Reskit has a greater number of tools and documentation, and it is one of the most valuable resources for system administrators. To read more about the W2K Reskit please see my Book Recommendations page (where you can also buy the package and other valuable books). Note: Links may change or break. If you find any broken links please notify me . Note: If any of you are willing to provide hosting space for these tools please let me know . Available Tools Active Directory... --- ### Download Windows NT 4.0 SP6a - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_nt_4_sp6a/ - Categories: Downloads - Article Type: Overview Where can I download Windows NT 4. 0 Service Pack 6a? Windows NT 4. 0 Service Pack 6a (SP6a) resolves the SP6 issue with Lotus Notes and other Winsock based applications and provides the latest updates to Microsoft Windows NT Workstation 4. 0 and Windows NT Server 4. 0 (including Enterprise Edition). Windows NT 4. 0 SP6a contains known Year 2000 updates for Windows NT 4. 0. These Year 2000 updates are also available as separate Web downloads that you can apply to a Windows NT 4. 0 Service Pack 4 system. Download page: Windows NT 4. 0 Service Pack 6a High Encryption version for the Intel (x86) platform This version provides 128-bit encryption capabilities for computers running on the Intel (x86) platform. The High Encryption version of Windows NT 4. 0 SP6a is eligible for export from the U. S. to all customers worldwide, except to U. S. embargoed destinations. Note for Hebrew Enabled users: Do NOT install this version of SP6a on your system! ! ! Standard Encryption version for the Intel (x86) platform Available to all customers, this version provides standard encryption capabilities for computers running on the Intel (x86) platform. Note for Hebrew Enabled users: Please make sure you select HEBREW from the drop down list of available languages! There are two ways to install Windows NT 4. 0 SP6a: Network installation, and Express installation: Express: 1. 6 MB-34. 5 MB (Initial download of 280kb) Fastest way to install SP6a, for single computer installation only, for computers running Internet Explorer 3. 02 or later. Network: 34. 5mb... --- ### Download Remote Desktop Web Connection for XP SP1 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/download_remote_desktop_web_connection_for_xp_sp1/ - Categories: Downloads - Article Type: Overview Where can I download the Remote Desktop Web Connection for Windows Server 2003? The Remote Desktop Web Connection ActiveX control allows you to access your computer through Remote Desktop, via the Internet, from another computer using Internet Explorer. You must be using Internet Information Services (IIS) to host a Web site to use this feature. Remote Desktop Web Connection provides most of the same functionality as the Remote Desktop Connection software. Note: Users of Windows Server 2003 do not need to download this package. They can manually add this package from Add/Remove in the Control Panel. This package is offered as a convenience to Microsoft customers. The Remote Desktop Web Connection ActiveX control allows you to access your computer, via the Internet, from another computer using Internet Explorer. You can download the software on this page and run setup to install the ActiveX control and sample Web page on any computer running Internet Information Server 4. 0 or higher. Supported Operating Systems: Windows 2000; Windows 2000 Service Pack 2; Windows 2000 Service Pack 3; Windows NT; Windows Server 2003; Windows XP; Windows XP Media Center Edition. See Install Remote Desktop Web Connection on Windows Server 2003 and Install Remote Desktop Web Connection on Windows XP for more instructions. Download Remote Desktop Web Connection (v5. 2. 3970) (492kb) Related articles You might also want to read the following related articles: Add a new RDP Listening Port to Terminal Server Change Terminal Server Listening Port Download RDP 5. 2 Download RDP 5. 2 (Old... --- ### Download Windows 2003 Reskit Tools - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_2003_reskit_tools/ - Categories: Downloads - Article Type: Overview Where can I get the Windows Server 2003 Reskit Tools? The Windows Server 2003 Resource Kit Tools are a set of software tools for administrators, developers, and power users to manage Active Directory, Group Policy, TCP/IP Networks, Registry, Security, Scalability and many other areas of the Windows Server 2003 operating system. The following tools are provided: Acctinfo. dll (documented in Readme. htm) Adlb. exe: Active Directory Load Balancing Tool Admx. msi: ADM File Parser Atmarp. exe: Windows ATM ARP Server Information Tool Atmlane. exe: Windows ATM LAN Emulation Client Information Autoexnt. exe: AutoExNT Service Cdburn. exe: ISO CD-ROM Burner Tool Checkrepl. vbs: Check Replication Chklnks. exe: Link Check Wizard Chknic. exe: Network Interface Card Compliance Tool for Network Load Balancing Cleanspl. exe: Spooler Cleaner Clearmem. exe: Clear Memory Clusdiag. msi: Cluster Diagnostics and Verification Tool Clusfileport. dll: Cluster Print File Port Clusterrecovery. exe: Server Cluster Recovery Utility Cmdhere. inf: Command Here Cmgetcer. dll: Connection Manager Certificate Deployment Tool Compress. exe: Compress Files Confdisk. exe: Disk Configuration Tool Consume. exe: Memory Consumers Tool Creatfil. exe: Create File Csccmd. exe: Client-Side Caching Command-Line Options Custreasonedit. exe: Custom Reason Editor (documented in Readme. htm) Delprof. exe: User Profile Deletion Utility Dh. exe: Display Heap Diskraid. exe: RAID Configuration Tool Diskuse. exe: User Disk Usage Tool Dnsdiag. exe: SMTP DNS Diagnostic Tool (documented in Readme. htm) Dumpfsmos. cmd: Dump FSMO Roles Dvdburn. exe: ISO DVD Burner Tool Empty. exe: Free Working Set Tool Eventcombmt. exe: Check Replication Fcopy. exe: File Copy Utility for Message Queuing Frsflags. vbs Getcm. exe: Connection Manager Profile Update Gpmonitor. exe: Group Policy Monitor Gpotool. exe: Group Policy Objects Hlscan. exe: Hard Link Display Tool Ifilttst. exe: IFilter Test Suite Ifmember. exe: User Membership Tool Inetesc. adm: Internet Explorer Enhanced Security Configuration... --- ### Enable MP3 File Transfer in Windows Live Messenger - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/enable_mp3_file_transfer_in_wlm/ - Categories: Windows Client OS - Article Type: How To How can I enable transfer of MP3 files through Microsoft Windows Live Messenger? Microsoft Windows Live Messenger is the new version of the old MSN Messenger client (read Download Windows Live Messenger for more info). Although in general this version is pretty nice and lacks some of the annoying "Features" that were part of the older versions (such as the annoying tabs), one "feature" still bugs me: In order to make the browsing experience safer to users, the sending and receiving of potentially unsafe files such as executables and JavaScript is disabled by default in Windows Live Messenger, as some file types may contain viruses, spyware or other potential security risks to your computer. Therefore, whenever you try to send or receive a file that has the file extension from the following list, Messenger assumes is potentially unsafe file and thus banned. By default, Messenger blocks files that have the following file extensions: . ade . adp . app . asp . bas . bat . cer . chm . cmd . com . cpl . crt . csh . exe . fxp . hlp . hta . inf . ins . isp . its . js . jse . ksh . lnk . mad . maf . mag . mam . maq . mar . mas . mat . mau . mav . maw . mda . mdb . mde . mdt . mdw . mdz . msc . msi . msp . mst . ops . pcd . pif . pl . prf . prg . pst . reg . scf . scr . sct . shb . shs . tmp . url . vbs . vsd . vb . vbe . vsmacros . vss . vst . vsw . ws . wsc . wsf . wsh All this is fine and nice, we need someone to protect us, don't we? However, as I soon found out, Messenger also blocks files... --- ### Error c1030af1 on Public Folder Properties in Exchange System Manager - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/error_c1030af1_on_pf_properties/ - Categories: Exchange Server - Article Type: Overview The following article deals with solving error c1030af1 when trying to view or modify Public Folder properties in Exchange System Manager. In some cases, when you open ESM (Exchange System Manager) and try to view or modify any Public Folder's properties you might get this error: Note: This error is usually displayed in Exchange Server 2003 System Manager, and right now I don't have any Exchange 2000 machine available to check if this error is also applicable to Exchange 2000. The problem In some cases, when you open ESM (Exchange System Manager) and try to view or modify any Public Folder's properties you might get this error: --------------------------- Exchange System Manager --------------------------- The requested operation is forbidden. ID no: c1030af1 Exchange System Manager --------------------------- OK --------------------------- The solution It seems that this error is related to the fact that SSL is enabled on the EXADMIN virtual directory in IIS on the server. If, for any reason, you enabled SSL on the Default Web Site in IIS, and chose to overwrite the sub folders' (virtual directories) SSL properties, or, for some reason you chose to specifically enable SSL on the EXADMIN virtual directory under the Default Web Site in IIS, you will get this error. Note that if you do want to use SSL on the EXCHANGE virtual directory (in order to use SSL on Outlook Web Access - OWA) you do not need to also enable SSL on the EXADMIN virtual directory. Read... --- ### Exchange 2007 SP1 Preview - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/exchange_2007_sp1_preview/ - Categories: Exchange Server - Article Type: Overview Exchange 2007 Service Pack 1 Preview Microsoft Exchange Server 2007 has been released in the beginning of 2007, and most of us have not gotten used to the many new features (and to the tons of discontinued and deemphasized functionalities - read Exchange 2007 Discontinued Features and Exchange 2007 Deemphasized Functionality for more info). Exchange 2007 is already being deployed all over the world, but since many features that were supposed to be introduced with the RTM version have been removed from the initial release. That is why many companies running previous versions of Exchange have decided to wait till Service Pack 1 will be released (the same is true for deployment of Windows Vista). The Exchange Team Blog has published many of the new features that will be incorporated with SP1, here is a quick and partial list: Standby Continuous Replication (SCR) With Exchange 2007, we introduced Clustered Continuous Replication (CCR) for replication of data between 2 servers within a cluster within the same datacenter. With SCR, data replicates to a non-clustered server in a remote datacenter. If the primary datacenter becomes unavailable, the standby replica in the second datacenter is readily available to be activated. Mobility Great new policies for: Enforcing encryption of main memory contents on device Enforcing which applications are allowed/blocked from running on the device Enforcing networking capabilities: disable wifi, Bluetooth, infrared, external storage Enforcing communication capabilities: disable SMS, MMS, POP/IMAP, disable camera Outlook Web Access (OWA) SP1 will fill in the feature... --- ### Filtering E-mail by World Regions in Exchange Server 2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/filtering-email-world-regions-exchange-server-2003/ - Categories: Exchange Server - Article Type: How To Working with messaging products for many years I've noticed that a popular question on Exchange and Outlook forums is how to block email originating from specific countries or world regions. It is possible in both Outlook and Exchange, with varying degrees of success (read my "Filtering E-mail by Regions in Outlook 2003/2007" article for more info on working with the Exchange client). Originally, most spamming e-mail servers were hosted in the United States. The adoption of laws, such as the CAN-SPAM law of 2004, have forced many spammers to move their operations to countries with fewer controls and rules to host their operations. Today, the United States is declining as the leading source of spam and countries such as China, Korea, Russia, Vietnam, and Brazil are fast becoming sources of spamming mail servers. Naturally, countries with the highest number of spammers operating within their networks are usually those with poor or non-existent spam laws. (Source: http://www. spamhaus. org/statistics/countries. lasso) E-mail traffic received from places where an organization has no interest will likely be spam. Blocking e-mail from those countries or geographic regions (city, state, country, or continent), instantly eliminates a very large percentage of total spam received. Even excluding the USA, blocking the next 10 top spam generating countries might still eliminate over 50% of spam email. IP addresses are allocated by geographical regions. Some of the following links have more information on how the IP range was divided into geographical regions, and give clues on how to find to what... --- ### GAL Problems and OAB Automatic Updates in Outlook 2003 - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/gal_problems_and_oab_automatic_updates_in_outlook_2003/ - Categories: Exchange Server - Article Type: Overview Address List entries in Outlook 2003 are not updated even though I've made changes to users or groups in Active Directory. How can I fix this problem? The problem occurs when an Active Directory administrator made a change to an entry in the GAL, but even after waiting for AD replication, users still sees the old value. When running in cached mode, the offline address book is automatically downloaded and used by the client. There is a registry tweak to disable this behavior (see later in article), however you cannot make Outlook 2003 dynamically switch between full online AD and full cached. By default, most address book data will be retrieved from the OAB, and then back-filled by RPC requests to the AD. However, if a property is found in the OAB, no check is made to see if that property has been recently updated in the AD. Because OAB generation only takes place once a day (by default), users may complain to the support desk that their directory change requests have not been satisfied. To solve the problem you should either re-generate OABs on a more regular basis, or use the following registry parameter. Disabling OAB Download With Outlook 2003 running in cached mode will automatically download offline address books to your local machine. This is desirable for remote and roving users, but you may not want this behavior for local desktop users. In this case, set the following registry parameter: HKEY_CURRENT_USERSoftwareMicrosoftOffice11. 0OutlookCached Mode Parameter: DownloadOAB Type:... --- ### Shavlik HFNetChk Pro/LT - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/hfnetchk_pro/ - Categories: Security - Article Type: Overview Featuring Shalvik's exclusive PatchPush, HFNetChkPro is the easiest way to manage security patches on your network, keeping your network safe. You no longer need to walk to each computer to install patches, or track security patches by hand. HFNetChkPro does this job for you, providing significant time savings in dealing with the large number of security patches system administrators must manage. It's easy. Just install HFNetChkPro once, instead of installing agents over and over. And in just minutes this automated, real-time, patch management tool scans your entire network for vulnerabilities right from your desktop, freeing you up to focus on other security and administrative issues. Built on the industry standard HFNetChk, it is the automated, real-time, patch management tool that helps you quickly eliminate security risks associated with un-patched computers. Used worldwide by corporations including Microsoft, educational institutions, government agencies, and others to assure proper security patch management. Accurately identify missing patches on your network using HFNetChkPro's leading discovery engine, providing you with the most secure and robust patch inspection solution in the industry. HFNetChkPro allows you to precisely review, manage and report on the patch state of your network using up-to-the minute patch information. Remotely update computers with patches from your desktop with the ease of a few mouse clicks. HFNetChkPro enables you to remotely install the patches you determine as necessary for your unique environment. You can install patches one at a time, or in groups, to one or many computers at a time. The HfnetchkPro tool uses... --- ### How to Ask a Question? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how_to_ask_a_question/ - Categories: Main - Article Type: How To How to ask a question? (or - How do I ask a question on a professional forum/newsgroup without getting flamed? ) How many times did you post a question on a technical newsgroup or forum, waited quite a lot of time for an answer, and the only thing you got was either a long silence, or this type of answer: "Your question does not contain all the required information needed for us to help you. Please re-write your question, this time make sure you have all the needed info and we'll try to help. " If you've seen such answers before (not to mention plain simple RTFMs) then it's highly likely that you'll benefit from reading this article. When posting a question to a professional forum or newsgroup it is vital to format the question and it's content in a proper way. Doing so will greatly increase the possibility for quickly receiving a good answer, and thus saving you time and frustration. Failing to do so will cause your question to be ignored by the forum's readers and thus wasting your time and delaying the solution to the original problem. In the worst case scenario your badly-written question might cause other readers to flame you or even ban you from that forum or newsgroup. After posting a question to a professional forum or newsgroup and waiting for a while, you get the following answer(s) from the active forum/newsgroup members: "Your question does not contain all... --- ### Internet Explorer 6.0 SP1 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/ie_60_sp1_patches/ - Categories: Patches and Service Packs - Article Type: Overview Internet Explorer 6. 01 SP1 Patches Microsoft Internet Explorer 6 Service Pack 1 (SP1) is available for Windows XP, Windows Millennium Edition, Windows 2000, Windows 98, and Microsoft Windows NT 4. 0 Service Pack 6a. Internet Explorer 6 SP1 is a critical update. Internet Explorer 6 SP1 includes all prior patches and updates as well as enhancements to security and reliability. IE 6 is not compatible with Windows 95. Download IE 6. 0 + SP1 Total download size for a typical installation is approximately 25 megabytes. However, because setup downloads only those files that are necessary for your computer, this size can vary between 11 and 75mb. See the Download the full IE package page for a tip on how to download ALL the files needed to install IE. For a list of issues that are addressed in Internet Explorer 6 SP1, read Microsoft Knowledge Base Article 326489. Uninstalling Service Pack 1: If you upgraded from IE5. 5 to IE6 prior to applying IE6 SP1, you are in trouble. Uninstalling IE6 SP1 will then uninstall the entire IE6 instead of only the Service Pack. Don't do it unless you must. Windows Server 2003 Note: For the Windows Server 2003 version of this article please read Internet Explorer 6 on Windows Server 2003 Patches. Required Patches Internet Explorer 6. 0 with SP1 requires the following security-related patches: October 2005 MS05-052 : Cumulative Security Update for Internet Explorer (896688) This update replaces the update that is included with Microsoft Security... --- ### Increase your Windows Vista Performance with the Performance & Reliability Improvements Pack - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/increase-windows-vista-performance-reliability-improvement-pack-sp1/ - Categories: Windows Vista - Article Type: How To As you've probably read here on my site in the past, I and many of my readers have been very disappointed with the performance of Windows Vista, as it is when installed out of the box. Although I've written many tips and tricks on the necessary steps needed to be done in order to make Vista run a bit faster, still these changes that one should perform are mostly manual changes, and even after doing so, Vista's performance is still lacking when compared to a similar computer running Windows XP SP2. In fact, here are some of my more recent Windows Vista Tips: Why you should Upgrade to Windows Vista SP1 Windows Vista Service Pack 1 is RTM What's User Account Control in Windows Vista? Enable Windows Vista Aero Graphics Disable User Account Control in Windows Vista Although not quite breaking news, Microsoft has officially released the Window Vista "Performance and Reliability Pack" and "Compatibility and Reliability Pack" that, after installing on RTM versions of Vista, have had quite a good improvement in speed and reliability of these computers. These updates are part of the recently released Service Pack 1 (SP1) for Vista (see Why you should Upgrade to Windows Vista SP1). The first patch available as a Windows Update fix can be found in KB 938979. This update resolves the following issues: You experience a long delay when you try to exit the Photos screen saver. A memory leak occurs when you use the Windows Energy... --- ### Install Hebrew on Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_hebrew_on_windows_server_2003/ - Categories: Windows Server - Article Type: How To How can I install and use Hebrew fonts on my Windows Server 2003 computer? Windows Server 2003 (and 2000/XP/Vista) has the built-in ability to display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. To see Hebrew fonts on your Windows XP computer you MUST perform the following tasks precisely in the order listed here. Not doing so might cause your computer to display ? ? ? ? ? ? ? instead of Hebrew fonts, especially in Office applications. Unlike W2K, it is SAFE and it is OK for you to install Hebrew language support during the GUI setup phase of Windows Server 2003. Note: You might also want to read the following articles: Install Hebrew on Windows 2000 Install Hebrew on Windows XP Install Hebrew on Windows Vista Option 1: During the GUI phase of the setup process After rebooting from the text-based setup phase, the computer will display the setup GUI, and the fist prompt you'll get is the Regional Settings customization window. You can install Hebrew support at this phase by pressing the Customize button and going to the Languages tab. Select the "Install files for complex script and right-to-left languages" check-box. A warning message will appear. Press Ok. Warning: You must now press Apply! ! ! Setup will copy the necessary files from the installation point. You can now go to the Regional Options tab and select Israel in the Location drop-down list, and Hebrew in the Standards and Formats drop-down... --- ### Install Windows Server 2003 > This Windows Server 2003 installation and setup guide takes you from initial install to final configuration. - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_windows_2003/ - Categories: Windows Server 2003 - Article Type: How To This Windows Server 2003 installation and setup guide takes you from initial install to final configuration. How can I install Windows Server 2003 on my server? As a Microsoft Windows Server support professional, one of your tasks may be to install the operating system. Update: Get step-by-step instructions on how to install Windows Server 2008 here. Step #1: Plan your installation When you run the Windows Server 2003 Setup program, you must provide information about how to install and configure the operating system. Thorough planning can make your installation of Windows Server 2003 more efficient by helping you to avoid potential problems during installation. An understanding of the configuration options will also help to ensure that you have properly configured your system. I won't go into that part right now (I might later this month, no promises... ) but here are some of the most important things you should take into consideration when planning for your Windows Server 2003 installation: Check System Requirements Check Hardware and Software Compatibility Determine Disk Partitioning Options Choose the Appropriate File System: FAT, FAT32, NTFS Decide on a Workgroup or Domain Installation Complete a Pre-Installation Checklist After you made sure you can go on, start the installation process. Step #2: Beginning the installation process You can install Windows Server 2003 in several methods - all are valid and good, it all depends upon your needs and your limitations. For example, you can install directly from a CD by booting your computer with the CD, or you can also copy the I386 folder from a CD and run the setup... --- ### Installing Windows Server 2008 Core - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/installing-windows-server-2008-core/ - Categories: Windows Server 2008 - Article Type: How To As I wrote in my previous articles, a Windows Server 2008 Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. The advantages of Server Core are: security improvement (reduced attack surface), needs less system resources (occupies only one third disk space), patching is easier, boots up faster. A server running a Server Core installation supports the following server roles: Active Directory Domain Services (AD DS) Active Directory Lightweight Directory Services (AD LDS) DHCP Server DNS Server File Services Print Services Streaming Media Services Internet Information Services (IIS) Windows Virtualization In Windows Server 2008,  Server Core installation does not include the traditional full graphical user interface (GUI). You can read more about how to locally and remotely manage Server Core machines by reading the list of articles in the Related Articles section at the bottom of this page. Installing Server Core is pretty straightforward, but I thought I'd list the necessary steps here for additional information. However, please note the following: There is no way to upgrade from a previous version of the Windows Server operating system to a Server Core installation. Only a clean installation is supported. There is no way to upgrade from a full installation of Windows Server 2008 to a Server Core installation. Only a clean installation is supported. There is no way to upgrade from a Server Core installation to a full installation of Windows Server... --- ### How to Create an Inexpensive iSCSI SAN for VMware ESX - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/iscsi-san-vmware-esx/ - Categories: VMware - Article Type: How To Many of the features of VMware ESX Server and VMware Virtual Infrastructure depend on having a storage area network (SAN). That applies to all the "cool" features like vMotion and VMHA. With a SAN, you have two choices, FC or iSCSI. A fiber channel (FC) SAN can easily cost as much as a small house and enterprise iSCSI equipment may cost half that. Still, what if you just want a test or demonstration iSCSI SAN? No one wants to have to buy one of these expensive options if you want to just test a couple of ESX Servers and Virtual Center. What are your options? Why use iSCSI? Before the die-hard SAN users out there send me an email, let me tell you why I want to use iSCSI: If done right, with the right equipment, and proper level of investment in equipment, iSCSI can be, dare I say, just as reliable and almost as high of performance as Fibre Channel. Still, I am not recommending anyone invest in enterprise iSCSI equipment in this article. That's not what it is about. For testing and development systems, I don't want to spend a lot of money. iSCSI is an excellent choice for these because it can be done at low cost and you still get almost every ESX Server feature out of it. What if I want to run VMware ESX server inside a virtual machine like VMware Workstation? Yes, it can be done with Workstation 6 but... --- ### Logon Locally User Right - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/logon_locally_user_right/ - Categories: Windows Server 2003 - Article Type: Overview How can I easily give someone the Log On Locally user right on a Windows 2000 and Windows Server 2003 Domain Controllers? In Windows 2000 (and Windows Server 2003) servers that are configured as Domain Controllers only 5 groups have the right to log on locally on the computer. Those groups are: Administrators, Account, Print, Backup, and Server Operators. Without this right any user who will try to log on locally will receive this message: (The local policy of this system does not permit you to log-on interactively) To give a specific user or group the right to log on locally on the DC you must edit the Domain Controller GPO (or create another one and link it to the Domain Controllers OU in Active Directory Users and Computers). Most novice IT personnel find it harder to add user rights on W2K than in Windows NT 4. I agree, but life goes on, doesn't it? To make life easier run this command and you won't have to edit the GPO: ​ntrights -u Users +r SeInteractiveLogonRight You must have the NTRIGHTS. EXE program from the W2K Resource kit (or d/l it from HERE). (You can substitue USERS with the name of the user or group you want to configure). If you still want to do it via the GPO, do the following: Go to Start, Settings, Control Panel, Administrative Settings. Double-click Domain Controller Security Policy. Go to Security Settings, Local Policies, User Rights. Double-click... --- ### Message Protocols Used by Exchange 2000/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/message_protocols_used_by_exchange_2000_2003/ - Categories: Exchange Server - Article Type: Overview What message protocols does Exchange 2000/2003 use? Each Exchange server has a Protocols container that contains the HTTP, Internet Message Access Protocol version 4 (IMAP4), Network News Transfer Protocol (NNTP), Post Office Protocol version 3 (POP3), Simple Message Transfer Protocol (SMTP), and X. 400 protocol objects. Each object provides a virtual server to messaging clients using that protocol. HTTP Support HTTP is the underlying protocol used by the World Wide Web. HTTP defines how messages are formatted and transmitted, and what actions Web servers and browsers take in response to various commands. Microsoft Exchange 2000 Server supports HTTP and WebDAV to provide more functionality for general data access. Document access - HTTP and WebDAV support a collaborative environment in which users can edit documents; protect updated data from being lost; collect resources in a common folder; move or copy files; and modify information about files, such as author, date of creation, and related file links. E-mail access - HTTP and WebDAV can be used to access mailboxes and messages; notify users that new e-mail has arrived; and allow users to move, copy, or delete e-mail on the server. Application access - HTTP and WebDAV are also referred to as standards-based application layers. Mailboxes and public folders are exposed through a unique URL, allowing custom applications to retrieve data directly from Information Store. Microsoft Exchange 2000 Server provides support for WebDAV through HTTP virtual servers. The folder contents the HTTP virtual server displays are converted to Web pages and sent... --- ### Missing Drag and Drop in Vista Command Prompt - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/missing_drag_and_drop_vista_command_prompt/ - Categories: Windows Vista - Article Type: Overview   One of the cool features in the Windows 2000/XP/2003 Command Prompt (CMD) window was the ability to drag and drop files from it. You could drag a file from your desktop or from within any folder in Windows Explorer, and drop it to an open Command Prompt window. This feature was nice to have especially when running executable files nested deep within a folder hierarchy. Instead of manually navigating the Command Prompt path to the required folder, you could simply drag and drop the necessary file to the Run option or to the Command Prompt and press Enter to run it. After playing with beta versions of Windows Vista many users realized that the drag and drop functionality of the Command Prompt in Vista has been removed. This is also true for the RTM version. If you try to drag a file from anywhere in Windows Explorer to an open Command Prompt window in Vista you see that the pointer icon changes to a “no entry” symbol: When asked, Microsoft officials provided dull answers and claimed that this is “by design” and that it was in fact “a feature”. Some claimed that “This was done to reduce the command window's dealings with the dragged data object” which in my opinion is pure crap when compared to the huge overhead provided by other so-called “advanced” features of Vista such as the process-intensive Aero theme (read my “Aero Theme is bad, disable it” article or to the huge... --- ### New GFI Software White Paper Explains NDR Spam - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/new-gfi-software-white-paper-explains-ndr-spam/ - Categories: Exchange Server - Article Type: Overview I was recently informed by GFI Software that they have a new white paper that explains what NDR spam is and how administrators can take effective measures to reduce the impact on their email servers. As an email marketing manager, I found this white paper very helpful in understanding what NDR or non-delivery report spam is, and how spammers use it. I have included a few excerpts from the press release below. To read the full press release on their website, click here. You can also download a copy of the white paper by clicking here.   NDR spam: When non-delivery reports become a nuisance Research shows that up to 90% of emails received by companies are spam, and spammers have adopted a variety of methods to bypass spam filters used in anti-spam software. In the beginning, spam was mainly text based but over the past few years, spammers have resorted to using embedded images and attaching common file types such as mp3s and Excel documents in emails to gain access to mailboxes. Another option is NDR or non-delivery report spam. NDRs are a common part of email exchanges. Users receive NDRs, for example, when an email does not arrive at a recipient’s address and notification is sent to the sender. However, spammers can cause a considerable increase in NDR activity because they send junk mail to thousands of email addresses. Some are genuine but others are not and these are used to generate NDR messages by manipulating the ‘From’... --- ### Overview of Windows Server 2003 - Enterprise Edition > Windows Server 2003 Enterprise Edition boasts a number of features that lesser versions of Windows Server lack. Find out what they are in this handy overview. - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/overview_of_windows_server_2003_enterprise_edition/ - Categories: Windows Server 2003 - Article Type: Overview Windows Server 2003 Enterprise Edition boasts a number of features that lesser versions of Windows Server lack. Find out what they are in this handy overview. Designed for medium to large businesses, Windows Server 2003, Enterprise Edition, is the recommended operating system for servers running applications such as networking, messaging, inventory, and customer service systems; databases; and e-commerce Web sites. Windows Server 2003, Enterprise Edition, delivers high reliability, performance, and superior business value and is available in both 32-bit and 64-bit versions. In This Edition Windows Server 2003, Enterprise Edition, differs from Windows Server 2003, Standard Edition, primarily in its support for high-performance servers and its ability to cluster servers for greater load handling. These capabilities provide reliability that helps ensure systems remain available even if problems arise. At a high level, Windows Server 2003, Enterprise Edition, provides support for: Eight-way symmetric multiprocessing (SMP).   To increase server performance and capacity, you can add processors, an approach to increasing your network capacity is known as scaling up. The enhanced support for SMP allows you to add processors that work together—that is, multiprocessor servers. Up to 8 multiprocessors are supported in the 32-bit version. For 64-bit Intel Itanium-based systems, 64-way SMP is supported. Eight-node clustering.   Server clusters up to eight nodes are available only in Windows 2003, Enterprise Edition, and Windows 2003, Datacenter Edition. 32 gigabytes (GB) of RAM in 32-bit versions, 512 GB in 64-bit versions.   By adding memory, a computer can work with more information at once. Windows Server 2003, Enterprise Edition, includes enhanced memory capabilities that let you increase the memory available for server processing to as much as 32 GB of... --- ### Prepare IIS on Windows XP/2003 for Sharing Calendars using Internet Publishing - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/prepare-iis-sharing-calendars-using-internet-publishing/ - Categories: Exchange Server - Article Type: How To As I discussed in my previous article – "Share Calendars with Local Users using Internet Publishing", Outlook 2007 has improved calendar sharing using Office Online. You can share your calendar with everyone, or with only designated people, by publishing your Internet Calendars to Office Online. You can publish and share your calendars with others by publishing them to a WebDAV server. This server can be either on the local network, or on the Internet. If you prefer not to publish them on an Internet server and you have one machine running Windows Server 2003, Windows XP or Vista, you can publish the calendar to your computer and share it with other user accounts or anyone on your network who uses Outlook 2007 or Vista's Windows Calendar. This article assumes you wish to publish the calendar to an internal server. Tip: For Small Office/Home Office (SOHO) networks that do not have a central server, install IIS on a machine that will be turned on either 24/7 or on longer than the others for best results. This article describes the first step in publishing the calendars, which is the IIS installation and configuration phase. When you're done, follow the steps outlined in my "Share Calendars with Local Users using Internet Publishing" article. Publish Calendars to a Windows XP computer In order to publish a calendar to a Windows XP computer you will need to install IIS 5. 1 on that computer. Follow these steps:   1.  Go to Control Panel, click Add... --- ### Quickly Check EFS Attributes - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_check_efs_attributes/ - Categories: Security - Article Type: How To How can I check to see if a file is encrypted with EFS or not? When you try to access a file on an NTFS file system volume, you may receive an "access is denied" error message. The file's NTFS permissions indicate that you can access the file. Sometimes this means that the file is encrypted with EFS. To determine if a file has been encrypted: Start Windows Explorer, and then click Detail on the View menu to view the details of the folder's contents. Click Choose Columns from the View menu, and then click to select the Attributes check box to add the Attributes column to the current view, and to view the file attributes. You can also right-click any portion of the details header-column and click the Attributes column to be displayed.   If there is an "E" in the Attributes column for that file, the file is encrypted.   You can also use the CIPHER command from a CMD window: Run the CIPHER command without any parameters to display the encryption status of files and folders.   A U means that the file/folder is un-encrypted. An E means that it is encrypted. Related articles You might also want to read the following related articles: Access Denied Error in EFS Encrypted Files Compression and Other Attributes in EFS Copy Encrypted Files on the Network Data Protection and Recovery in Windows XP Disable EFS in Windows 2000 Disable EFS in Windows... --- ### Quickly Find Remote Open Ports - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/quickly_find_remote_open_ports/ - Categories: Networking - Article Type: How To If you want to see all the used and listening ports on a remote computer use the PORTQRY. EXE command, which is available on any Windows 2000, XP or Windows Server 2003 computer. PORTQRY. EXE reports the status of a TCP/IP port in one of the following three ways: Listening - A process is listening on the port on the computer that you selected. PORTQRY. EXE received a response from the port. Not Listening - No process is listening on the target port on the target system. PORTQRY. EXE received an Internet Control Message Protocol (ICMP) "Destination Unreachable - Port Unreachable" message back from the target UDP port. Or if the target port is a TCP port, Portqry received a TCP acknowledgement packet with the Reset flag set. Filtered - The port on the computer that you selected is being filtered. PORTQRY. EXE did not receive a response from the port. A process may or may not be listening on the port. By default, TCP ports are queried three times, and UDP ports are queried one time before a report indicates that the port is filtered. PORTQRY. EXE can query a single port, an ordered list of ports, or a sequential range of ports. Also, PORTQRY. EXE displays "extended information" that is returned from some ports. PORTQRY. EXE looks for "extended information" on ports where SMTP, POP3, IMAP4, and FTP services listen. An example is SMTP. By default, SMTP listens on TCP port 25. When PORTQRY. EXE finds that TCP port 25 on a target computer is... --- ### Raise Domain Function Level in Windows Server 2003 Domains - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/raise_domain_function_level_in_windows_2003/ - Categories: Active Directory (AD) - Article Type: How To How can I raise the domain function level in a Windows Server 2003-based domain? Functional levels are an extension of the mixed/native mode concept introduced in Windows 2000 to activate new Active Directory features after all the domain controllers in the domain or forest are running the Windows Server 2003 operating system. When a computer that is running Windows Server 2003 is installed and promoted to a domain controller, new Active Directory features are activated by the Windows Server 2003 operating system over its Windows 2000 counterparts. Additional Active Directory features are available when all domain controllers in a domain or forest are running Windows Server 2003 and the administrator activates the corresponding functional level in the domain or forest (read Understanding Function Levels in Windows Server 2003 Active Directory for more info). To activate the new domain features, all domain controllers in the domain must be running Windows Server 2003. After this requirement is met, the administrator can raise the domain functional level to Windows Server 2003. To activate new forest-wide features, all domain controllers in the forest must be running Windows Server 2003, and the current forest functional level must be at Windows 2000 native or Windows Server 2003 domain level. After this requirement is met, the administrator can raise the domain functional level (read Raise Forest Function Level in Windows Server 2003 Active Directory for more info). Note: Network clients can authenticate or access resources in the domain or forest without being affected by... --- ### Reduce Help Desk Calls With The Specops Password Reset Tool - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/reduce-help-desk-calls-with-specops-password-reset/ - Categories: Windows Server 2008 - Article Type: Overview One of the most time consuming administrative tasks is the password reset issue. Research shows that help desk calls may consist of up to 40% of password reset related issues. When I've learned about a new tool that was designed to help mitigate these issues I wanted to test it out. The tool is called Specops Password Reset or SPR for short, and it is designed to allow the end user the ability to reset a lost password without the help of administrative personnel. However, when trying to solve this problem, one must be cautious about verifying the identity of a user, so that they can only reset their own password and not somebody else's. Here is where Specops Password Reset introduces uses two different techniques to verify users’ identities: secret questions and mobile verification codes. Secret questions To use secret questions for user verification, users must enroll in the Password Reset Service. When enrolling they are asked a number of questions. A question can be for example “What was your mother’s maiden name? ” The nature of the questions should be such that the user easily will remember the answer to them, whereas other users should not be likely to know the answer, or easily find it out. What questions and how many questions to be answered are configured by the administrator.   All the users' secret answers are stored in Active Directory using one-way encryption (SHA-256) and they are also protected against reading through an ACL... --- ### Remove the Manage My Computer Context Menu from My Computer in 2000/XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/remove_manage_my_computer_from_context_menu_in_w2k_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I remove the Manage My Computer context menu from My Computer in 2000/XP/2003? In Windows 2000/XP/2003, when you right-click the My Computer icon on the desktop, you will see an option called "Manage". By clicking on the Manage option will are opening the Computer Management console - a collection of the computer's management tools (including Device Manager, Event Viewer, Disk Management, Disk Defragmenter, Shared Folders, Local Users and Groups and more). Although this tool can be easily run by going to the Administrative Tools folder, or by running compmgmt. msc from the Run command, it is still a possible security threat to leave it in place, and thus complicating the process or opening it (especially if you are also using GPO to add some extra security limitations). To remove the Manage option from the context menu of My Computer in Windows 2000/XP/2003 follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer Create the following value (DWORD): NoManageMyComputerVerb and give it a value of 1. Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a . REG file before performing the changes. Close Registry Editor. There is no need to reboot if you update your desktop by running gpupdate /force from the Run command (XP and... --- ### Forgot the Administrator's Password? - Change Domain Admin Password in Windows Server 2008 AD - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/reset_domain_admin_password_in_windows_server_2008_ad/ - Categories: Security - Article Type: How To Step 1 Restart Windows 2003 in Directory Service Restore Mode. Note: At startup, press F8 and choose Directory Service Restore Mode. It disables Active Directory. When the login screen appears, log on as Local Administrator. You now have full access to the computer resources, but you cannot make any changes to Active Directory. Step 2 You are now going to install SRVANY. This utility can virtually run any programs as a service. The interesting point is that the program will have SYSTEM privileges (LSA) (as it inherits the SRVANY security descriptor), i. e. it will have full access on the system. That is more than enough to reset a Domain Admin password. You will configure SRVANY to start the command prompt (which will run the 'net user' command). Copy SRVANY and INSTSRV to a temporary folder, mine is called D:\temp. Copy cmd. exe to this folder too (cmd. exe is the command prompt, usually located at %WINDIR%\System32). Start a command prompt, point to d:\temp (or whatever you call it), and type: instsrv PassRecovery "d:\temp\srvany. exe" (change the path to suit your own). It is now time to configure SRVANY. Start Regedit, and navigate to HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\PassRecovery Create a new subkey called Parameters and add two new values: name: Application type: REG_SZ (string) value: d:\temp\cmd. exe name: AppParameters type: REG_SZ (string) value: /k net user administrator 123456 /domain Replace 123456 with the password you want. Keep in my mind that the default domain policy require complex passwords (including digits, respecting a minimal length etc) so unless you've... --- ### Run Control Panel Applets as Another User - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/run_control_panel_applets_as_another_user/ - Categories: Windows Client OS - Article Type: How To How can I run Control Panel applets as another user (one with administrative privileges)? Sometimes you'll want to do file and folder modifications, or even partition formatting, but you won't want to do it while logged on as an administrator. Every Control Panel applet is in fact a file with a . CPL extension. If you perform a search for these files you'll see that they're all located in the %systemroot%system32 folder. Right-click any file and choose Run As. A dialog box will pop-up asking you for a valid username and password. Enter one of a user that has the required administrative privileges to run and manage that applet. If you gave a valid username and password the applet will open giving you the full permissions to manage it. That's it! BTW, it's time you got to know the RUNAS command that's now native in W2K and XP. Open a Command Prompt and run the following command: ​runas /user:computernameAdministrator command where computername is the name of your computer, and username is the name of the user you're trying to run the command as (e. g. Administrator). The command is the command you're trying to run (e. g. a batch file, an . exe file or even a control panel applet). For example, to open System from a command line as an administrator, type: ​runas /user:computernameAdministrator "rundll32. exe shell32. dll,Control_RunDLL sysdm. cpl" For a list of some of the Control Panel applet filenames see this (incomplete) list: Control Panel Applet Filename Accessibility access. cpl Add New... --- ### Search Tips - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/search_tips/ - Categories: Windows Server - Article Type: Overview Advanced Search Tips "Knowledge is of two kinds. We know a subject ourselves, or we know where we can find information upon it. " Samuel Johnson, 1744 A lot of people have problems navigating through Microsoft's knowledgebase as well as general difficulty with finding information on the Internet. This page might help you do a better job. The Internet is basically the world's largest knowledge dump. Why do I call it a dump? Because you know that what you're looking for is inside there, but you need to have a method of searching it and asking the right questions in order to extract that information out of it. Finding the Web documents (a. k. a. Web "pages" or "sites") you want can be easy or seem impossibly difficult. This is in part due to the sheer size of the WWW, currently estimated to contain 3 billion documents. It is also because the WWW is not indexed in any standard vocabulary. Unlike a library's catalogs, in Web searching you are always guessing what words will be in the pages you want to find or guessing what subject terms were chosen by someone to organize a web page or site covering some topic. When you do what is called "searching the Web," you are NOT searching it directly. It is not possible to search the WWW directly. The Web is the totality of the many web pages which reside on computers (called "servers") all over the world. Your computer cannot find or go to them... --- ### Setting Mailbox Limits - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/setting_mailbox_limits/ - Categories: Exchange Server - Article Type: How To Setting mailbox limits in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of users in the Exchange Organization. Setting limits on the mailboxes help control the database size and plan for efficient backup, restore and maintenance tasks (read Calculating Storage Space in Exchange for more info). Mailbox limits can be set in 3 places via the UI, plus by using scripts to directly edit the Active Directory. I will focus on the first 3 in this article. Note that in order to set mailbox limits over 3GB you will need to manually edit the information in AD. The UI will not let you specify these sizes. Read Setting Mailbox Limits over 2GB for more info. Mailbox Store properties When you want to configure all mailboxes in a store to be limited in size you can either manually edit the store's properties, or create a Mailbox Store Policy to effect many stores at once. Method #1 - Mailbox Store settings - One store at a time Mailbox Stores can be configured to have mailbox limits for all the mailboxes in them. You can make these changes on the Limits tab of the Mailbox Store's properties. Open ESM. Expand your organization, browse to find the required server object, and in it expand the right Storage Group. Right-click the required Mailbox Store and select Properties. In the Limits tab, click to select the Use Mailbox Store Defaults checkbox. Then click to select the... --- ### Test OMA in Exchange 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/test_oma_in_exchange_2003/ - Categories: Exchange Server - Article Type: How To How can I verify that OMA is functioning on my Exchange Server 2003? Outlook Mobile Access (OMA) in Exchange Server 2003 is installed by default, and although you do need to configure it to run (see my Configure OMA in Exchange 2003 article), there is little that needs to be done. You can verify Outlook Mobile Access (OMA) is functioning from a desktop machine running IE 6. 0. Assuming that SERVER1 is running Exchange 2003: From a desktop PC running IE6. 0, navigate to http://server1/oma Enter the logon credentials for an existing mailbox which resides on server1. Click the OK hyperlink when you receive the warning about your device being unsupported. Welcome to OMA! You can also run any sort of WAP emulators freely available on the net and perform a simulated connection to your mailbox. Note that you might get the same warning as above, just scroll to the right place and press Ok, or Ok and do not warn me (for SP1). (This screenshot is of a Microsoft Mobile Explorer emulator) After providing your credentials and successfully authenticating, you will gain access to your mailbox. (More screenshots of Microsoft Mobile Explorer emulator) Read Configure OMA in Exchange 2003 for more screenshots and information. You can also Configure SSL on OMA, in that case make sure you're using a certificate from a trusted source and use https://server1/oma (this is just an example, lamer... ) Related articles You may find these related articles of interest to you: Adding Root Certificates to... --- ### Tweaking - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/tweaking/ - Categories: Windows Server - Article Type: Overview Tweaking Tips and Tricks This page contains a collection of tweaking tips & tricks, articles and how-to guides, all related to Windows 2000, Windows XP and Windows Server 2003. Please feel free to contact me if you'd like to contribute to this section . Available topics (Sorted in alphabetical order) Press CTRL+F to search the page for keywords Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Desktop Icons in Windows Vista Add Printers and Fax Icon to the Desktop in XP/2003 Add Scanners and Cameras Icon to the Desktop in XP/2003 Add Scheduled Tasks Icon to the Desktop in XP/2003 Add Spell Checking to Internet Explorer Add the Administrator's Account to the Welcome Screen in XP Pro Add Volume Control in Windows XP Allow More than 2 Simultaneous Downloads in IE 6 Alternative Command Shells for Windows Automatic Completion with a Command Prompt Bypass the Welcome Screen in Windows XP Pro Change BSOD Color to a Different Color Change Mouse Wheel Scroll Rate Change or Add OEM Logo and Information Change your Microsoft Passport Password Changing the Default NumLock Key State Change the Timeout for Hanged Applications Change to "No Sounds" Sounds Scheme by default Close Many Applications At Once Configure Auto-Starting Applications Configure USB Disks to be Read-Only in Windows XP SP2 Configuring Auto Logon Copy User Profiles in Windows XP Customize Command Prompt in Windows XP/2000/2003 Customize the Places Bar in Office XP Delay Services... --- ### Update the Time on Windows XP - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/update_the_time_on_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I update the clock on my Windows XP machine? Why does the clock always drift away from the actual time? The computer clock will gradually get out of line with reality since it's not a very accurate beast. Some software can check the time with an outside source on the network or Internet and regularly adjust your computer by a few seconds so it never drifts so far off that you would notice. If your computer is a part of a domain (not possible in Home Edition) you do not need to do anything. The computer will automatically update it's time by querying the PDC Emulator (usually the first DC n the domain). If you still want to adjust your clock (you shouldn't because it might have adverse effects on some of your network connections and management tools) you can run the following command: ​net time %logonserver% /set /y (%logonserver% can be used as a variable, but you can specify a DC name if you want). If you're not a part of a domain and still want to update your clock automatically, you can right click the clock found on the tray area on the lower right of your screen and choose "adjust time/date". Click on the Internet Time tab, then select the "Automatically synchronize with an Internet time server" checkbox. This will work for most people, but what if the only 2 time servers specified in the drop list cannot be reached for various reasons,... --- ### Using ExMap to view your Exchange Topology - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using_exmap_to_view_your_exchange_topology/ - Categories: Exchange Server - Article Type: Overview Almost every Exchange administrator would like to see his Exchange servers and the relations between them in one visual map. Using Microsoft ExMap, you will be able to see in one diagram, all the exchange servers, including versions, in the relevant administrative groups, the SMTP connectors and the routing groups connectors. In this article I will present the Microsoft ExMap tool and the different options it has. Requirements and naming conventions ISRDC01 - Domain Controller (LDAP Server). C:ExMap 2. 0. 58 – Location of the ExMap extracted files (working directory). * Because most of the Exchange configuration (Connectors, Routing Groups, Administrative Groups, Storage Groups, etc’) is located in the AD configuration partition (on each one of the DCs in your forest), you don’t need access to any of your Exchange servers - only to one of your AD servers.          Pre-requisites: Windows 2000 Professional / Server Visio 2000 or later Access to LDAP server (Active Directory) – the user needs read permission to the LDAP ExMap works with Exchange 5. 5 or higher Installing ExMap: The ExMap utility is available to download from the following link: Download ExMap (626kb) After downloading the . exe file, you just need to extract it to a working directory (usually its C:ExMap 2. 0. 58). In order to start the utility, just double click the ExMap. exe file in the directory where you extract the files. Configuring the ExMap: ExMap has some options that can be configured, in many cases the defaults will do. I will present the major and... --- ### Download Exchange 2007 Virtual Machines - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_download_exchange_2007_virtual_machines/ - Categories: Virtualization - Article Type: Overview Download Microsoft Exchange Server 2007 Virtual Machines The Microsoft VHD Test Drive Program provides customers with an enhanced server-based software evaluation experience that’s faster, better supported and more flexible. You can now access the entire catalog of pre-configured Microsoft and partner products and solutions in the VHD format and start evaluating and testing today from www. microsoft. com/vhd. This download enables you evaluate how Microsoft Exchange Server 2007 and Microsoft Office Live Communications Server 2005 together can help create an optimized messaging system for your organization. Microsoft Exchange Server 2007 is designed to reduce the growing cost and complexity of managing a corporate messaging system by providing more control for IT administrators, more value and expanded inbox access for end users, and increased security and compliance for the organization as a whole. Microsoft Exchange Server 2007 provides built-in protection technologies to help keep the e-mail system up and running and better protected from outside threats while allowing employees to work from wherever they are using a variety of clients including Microsoft Outlook, Outlook Web Access, and mobile devices. Exchange Server 2007 makes it easier for IT to deliver these new capabilities to their organizations by making the messaging environment easier to manage and more cost efficient. Live Communications Server 2005 provides a standards-based platform, allowing developers the ability to presence-enable existing applications and create next-generation solutions with real-time capabilities. This fully functional pre-configured VHD provides you a trial software will automatically expire after 30 days. This is a preconfigured virtual... --- ### What's Active Directory Cleanup Wizard > What is the active directory cleanup wizard and what does it do? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/active-directory-cleanup-wizard/ - Categories: Exchange Server - Article Type: Overview In Exchange 2000, what is the Active Directory Cleanup Wizard and what is it good for? MSKB 270652 has the following information: The Active Directory Account Cleanup Wizard is a utility designed to merge duplicate Microsoft Windows NT accounts that are created when multiple directories are migrated or upgraded to Active Directory. The Active Directory Account Cleanup Wizard searches Active Directory for duplicate Windows NT accounts, and then suggests merge operations that eliminate the duplicates. You can also verify the individual merge operations. Finally, the wizard merges various account types, their attributes, and their properties into a single user account. Removing duplicate accounts in Windows 2000 Active Directory can help improve performance of your Exchange 2000 servers. The Active Directory Account Cleanup Wizard allows you to: Identify duplicate objects to be merged. You can have the wizard search Active Directory for possible duplicate Windows NT accounts, or you can manually select the duplicate accounts that you want to merge. Review and modify merge operations that the wizard has selected to perform before you merge the duplicate accounts. Export and import lists of accounts. This functionality gives you the flexibility to export a list of merge operations (pairs of duplicate accounts) into a . CSV file so you can import them back to the Active Directory Account Cleanup Wizard for further review. Then at a later time, you can run the merge process. Use command-line options to run the wizard. For additional information about command-line options, click the article number below to... --- ### What's the Microsoft Computer Browser Service? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-computer-browser-service/ - Categories: Networking - Article Type: Overview Microsoft Active Directory services in Windows 2000 replace the computer browser service used in earlier versions of Windows to provide the network basic input/output system (NetBIOS) name resolution. The browser service in Windows 2000 is provided for backwards compatibility with client computers that are running earlier versions of Windows. The primary function of the browser service is to provide a list of computers sharing resources in a client's domain along with a list of other domain and workgroup names across the wide-area network (WAN). This list is provided to clients that view network resources with Network Neighborhood or the NET VIEW command. The Master Browser On each network segment, a master browser is elected from the group of computers located on the segment that are running the browser service. The master browser is responsible for collecting host or server announcements, which are sent as datagrams every 12 minutes by each server on the network segment of the master browser. The master browser instructs the potential browsers for each network segment to become backup browsers. The backup browser on a given network segment provides a browse list to the client computers located in the same segment. The Domain Master Browser In a Windows NT domain structure, the primary domain controller (PDC) is always selected as the domain master browser. Only the PDC can be a domain master browser. If a PDC is not present, a domain master browser is not available and you are unable to obtain browse lists from workgroups... --- ### Windows 2000 MCSA Certification Requirements - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2000_mcsa_certification_requirements/ - Categories: Windows 2000 - Article Type: Overview What are the Windows 2000 MCSA certification requirements? The Microsoft Certified Systems Administrator (MCSA) credential proves that you have the skills to successfully implement, manage, and troubleshoot the ongoing needs of Microsoft Windows 2000–based operating environments, including Windows Windows Server 2003. An MCSA candidate should have 12 months of experience working with a desktop operating system, a network operating system, and an existing network infrastructure. The MCSA credential is for professionals who implement, manage, and troubleshoot existing network and system environments based on the Microsoft Windows 2000 and Microsoft Windows Server 2003 operating systems. These individuals typically do not deploy new networks and systems as part of their job function, as is expected of individuals holding the MCSE credential. In addition, unlike MCSEs, MCSAs are not expected to have design skills. The MCSA credential is for IT professionals working in the typically complex computing environment of medium to large organizations. An MCSA candidate should have six to 12 months of experience implementing and administering a desktop operating system, implementing and administering a network operating system, and managing client and network operating systems in environments with the following characteristics: From 200 to 26,000 users are supported. From two to 100 physical locations are supported. Typical network services and resources include messaging, database, file and print, proxy server or firewall, Internet and intranet, remote access, and client computer management. Connectivity needs include connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to... --- ### Windows 98 Second Edition (SE) Patches - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/windows_98_se_patches/ - Categories: Windows Client OS - Article Type: Overview Windows 98 Second Edition (SE) Patches Note: Microsoft has stopped supporting Windows 98 and Windows NT 4. 0 Workstation as of June 30, 2003. Required Patches Windows 98 SE requires the following security-related patches: Make sure you read Internet Explorer 5. X and 6. 0 Patches and Internet Explorer 6. 0 SP1 Patches before you go on. August 2005 MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) July 2005 MS05-036 : Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214) June 2005 MS05-032 : Vulnerability in Microsoft Agent Could Allow Spoofing (890046) MS05-030 : Cumulative Security Update in Outlook Express (897715) MS05-026 : Vulnerability in HTML Help Could Allow Remote Code Execution (896358) May 2005 MS05-024 : Vulnerability in Web View Could Allow Remote Code Execution (894320) April 2005 MS05-019 : Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066) MS05-018 : Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859) MS05-017 : Vulnerability in Message Queuing Could Allow Code Execution (892944) MS05-016 : Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086) February 2005 MS05-015 : Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113) MS05-013 : Vulnerability in the DHTML Editing ActiveX Control could allow code execution (891781) MS05-012 : Vulnerability in OLE and COM Could Allow Remote Code Execution (873333) MS05-009 : Vulnerability in PNG Processing Could Lead to Buffer Overrun (890261) January 2005 MS05-002 : Vulnerability in Cursor and Icon... --- ### How do you install VMware ESX Server 3i (ESXi)? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how-do-you-install-vmware-esx-server-3i-esxi/ - Categories: VMware - Article Type: How To VMware ESX Server 3i is a very powerful and free Enterprise virtualization platform. I covered all the basics of it, how it is different, and why you want it in our previous article "What is VMware ESX Server 3i? " Now, let me show you how easy it is to download and install VMware ESX Server 3i. Downloading VMware ESX Server 3i The following assumes that you DID NOT receive ESX 3i embedded in your server. If you did, you wouldn’t need this article. You wouldn’t need to download it or install it. To download ESX Server 3i, you need the installable 200MB ESX Server 3i ISO. Go to the VMware ESX 3i website and fill out all the necessary information. Once you have 3i, you can install it on any server that is supported in the VMware ESX Server 3i HCL (hardware compatibility list). And keep in mind that because 3i support SATA disk, it can be installed on much wider variety of servers than ESX 3. x can. To demonstrate and get screen captures of how to install VMware ESX 3i, I installed it inside VMware Workstation. While you can use the ISO CD to install ESX Server 3i inside VMware Workstation with the proper settings, I can tell you that, no matter your host system hardware or settings, 3i will run extremely slow and if you go to start a new virtual guest, 3i will crash. Thus, I recommend that you find a physical server the... --- ### How To Create A Network Test Lab With VMware - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/virtual_create_network_testlab_vmware/ - Categories: VMware - Article Type: How To Let’s say that you want to do some testing of network applications using VMware. This is the perfect use for a VMware’s virtualization technology. By default, most people connect their virtual machines to the bridged (VMnet0) network. This is great for connecting to the Internet and downloading patches or registering the OS. However, once you have done that, many times, you want to connect two or more virtual machines together to create a private network lab environment. Let’s talk about how to do that. Introduction to VMware Networks Before we talk about changing the network of a virtual host, let’s learn about the different VMware networks that are available. By default there are three virtual networks created on a VMware server. They are: VMnet0 – Bridged VMnet1 – Host-only VMnet8 – NAT To configure VMware networks, inside the VMware server management interface, go to Host à Virtual Network Settings, like this: Once inside the virtual network settings, you will see a summary of the virtual networks, like this: Here you can see the three different virtual networks that I talked about above. Inside this Virtual Network Editor, as it is called, is where you make all VMware network changes. The configuration of these virtual networks and how they match up with the virtual machines can get complex. Now that we know what virtual networks are available, let’s talk about how to change from the bridged (VMnet0) network to a network that can be shared by our two... --- ### How to Use VNC to 'Backdoor' Access VMware Servers > This free article explains how to use VNC to access and manage a VMware ESX or GSX server. Detailed instructions are included. - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_using_vnc_and_vmware_server/ - Categories: VMware - Article Type: How To In our Remotely Manage VMware Servers article, we talked about the different ways to remotely manage your VMware Server. A very cool (I believe) "backdoor" management method for VMware is VNC. And even better, its built-in to VMware - you don't have to install it. All you have to do is turn it on. Let's find out how... What can the built-in VMware Server VNC Management tool do for you? VNC is pretty well known but when it comes to understanding how it is going to manage your VMware virtual servers, it required some clarification. Here is how this works: VNC Server functionality can easily be enabled with a single command for each Virtual Machine (VM) You must enable VNC for each VM that will use it You would connect to the IP address or DNS name of the VMware Host - NOT of your VM guests The VM must be powered on to be able to connect to it The only function you can perform with the VNC tool is remote control of the console. You cannot perform all the other VM management and configuration tasks like you can with the VMware Server Console or the VMware MUI web interface. Each VM guest you connect to must have a different port number, starting at 5900 When you connect to the VM you can abbreviate your port number. For example, to connect to server1, port 5900, you can just type server1:0 If you connect a second VNC... --- ### How to Reset your VMware ESX Server root password - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/vmware-esx-server-root-password-reset-recovery-lost/ - Categories: VMware - Article Type: How To Just like every other password, it is inevitable that, eventually, you will loose or forget the root password to one of your VMware ESX Server systems. So how do you reset your VMware ESX Server root password? Let's find out... 1. Shutdown and Reboot your VMware ESX Server If you don't know the VMware ESX Server root password, you don't know any passwords for root-equivalent accounts, and your virtual center server also does not have it cached, the only way to change the root user password is to first shutdown / power off your VMware ESX Server. 2. Press "a" to modify the kernel arguments As soon as you see the GRUB boot screen, press "a" to modify the kernel arguments, like this:   3. Enter single user mode At the end of the kernel arguments command line, type "single" and press Enter, like this:   4. Change the root password Now, change the root password using the passwd command, like this: You will need to enter the new root password twice. 5. Reboot the ESX Server Once you have reset the root password, reboot the server to go back into multi-user mode.   6. Verify the new password Once the system reboots, verify that the new root password works, like this:   In Summary Resetting the VMware ESX Server root password is not difficult but you will have to bring down the server, enter single user mode, use the passwd command,... --- ### Group Policy Object Modeling in Windows Server 2008 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/group-policy-object-modeling-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: Overview If you have ever done much work with group policies, then you have undoubtedly found out that managing group policies are an organization wide basis can be a complicated endeavor. That's primarily due to the hierarchical nature of group policies. Group policy settings can be applied at the OU, site, domain, and local computer levels. All of these various group policy objects combine to form the effective policy. As if combining settings for multiple group policy objects were not enough, contradictory settings can, and often do exist within the various group policy objects. Not only can two separate group policy objects contained directly contradictory settings, the group policy settings that apply to the computer can sometimes also contradict with group policy settings applied to a user. Windows has all kinds of rules for automatically dealing with contradictory group policy settings. Even so, you as an administrator need to know the outcome of these conflict resolutions and what the effective policy look like once the various policy elements have been combined. In Windows Server 2003 this was known as the resultant set of policy. In Windows Server 2008, Microsoft has changed the name to group policy modeling. Why Do Group Policy Modeling? There are several different reasons why you might want to engage in group policy modeling. For starters, even if everything appears to be running smoothly is a good idea to periodically use group policy modeling just to make sure that group policies are being applied in... --- ### Planning a Sites and Services Architecture for Exchange 2007, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/planning-sites-services-architecture-windows-ad-exchange-2007-server-part2/ - Categories: Exchange Server - Article Type: Overview In my previous article in this series, Planning a Sites and Services Architecture for Exchange 2007, I explained that Exchange 2007 does not have its own built in routing topology, but rather piggybacks off of the Active Directory site structure. In this article, I want to give you a little bit of practical know how to go along with the more theoretical material that I covered last time. What Are Site Links? The first thing that you need to know about Active Directory sites is that the sites themselves are a logical structure that mimics your network’s physical topology. Typically, each site will represent a well connected area of your network. Some administrators like to create a separate site for each network segment, but I tend to prefer to create sites based on connectivity speed. My rule of thumb is that there should be a site link for every WAN connector, and every part of your network that is separated from another part by a WAN link should be represented by a site. Creating Site Links Creating the sites themselves is simple. To do so, open the Active Directory Sites and Services container. When you do, you will see that Windows has automatically created the first site for you, as shown in Figure A (it’s called Default-First-Site-Name). Figure A The first site is created automatically. If you are going to be creating multiple sites, then the first thing that I would recommend doing is renaming the built... --- ### Security Configuration Wizard for Exchange Server 2007 – Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/security-configuration-wizard-scw-exchange-2007-part-2/ - Categories: Exchange Server - Article Type: Overview In Part I of this series, we registered the XML files so that the Security Configuration Wizard could create an apply policies for Exchange 2007 servers. In this part, we’ll create and apply a policy to a server. It’s very important that all applications and utilities be installed on the server before running the SCW wizard. This includes all antivirus and backup applications, monitoring tools, etc. This is because once the policy is applied, applications installed after that may not work as key services and ports may be disabled. It’s generally a good idea to make sure all other configuration on your Exchange servers is completed, and use the SCW as the last step before putting the server into production. Before applying a policy, validate your installation by checking event logs and functionality to verify that everything is working as desired. The SCW doesn’t “fix” any broken functionality. Also keep in mind is that while some of the dialog boxes are a little different when creating policies for Edge Transport servers, the process is the same, and not differentiated any further here. With that in mind, let’s create a policy for a server. Creating an Exchange server role policy for the Security Configuration Wizard To run the wizard, you’ll need local administrator access to the server. From the server console, Click Start > All Programs>Administrative Tools > Security Configuration Wizard to start the wizard. On the Welcome to the Security Configuration Wizard screen, click Next. Choose Create... --- ### Disable the Built-In Firewall in Alcatel SpeedTouch Pro - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_the_built-in_firewall/ - Categories: Alcatel - Article Type: How To How can I disable the built-in Firewall in the Alcatel SpeedTouch ADSL modem? The Alcatel SpeedTouch ADSL modem has a built-in firewall that protects your internal network from outside infiltration. You might want to disable this firewall for various reasons. For example: Some program needs direct incoming Internet connection in random and dynamic ports (ports you cannot map in NAT, because they keep changing, like NetMeeting, MSN Messenger and others). Step One - Connect to the modem Open a Telnet session to the modem: Telnet to your modem by using this command: ​telnet 10. 0. 0. 138 Log in as any user and the modem will show a string like 'SpeedTouch (00-00-00-00-00-00)' before asking the password. That's the MAC address of the modem. Enter the password that you obtained through the script found here: Upgrade from Home to Pro (the one I told you to write down... you did write it down, didn't you? ). Go into the NAT command by typing nat   Step Two - Disable the firewall Enter the following command in the nat prompt: ​defserver addr 10. 0. 0. 1 save where 10. 0. 0. 1 is the IP address of the computer you want to forward all Internet connectivity to. Of course you will have to change this address to suit your network configuration. Warning: All IP traffic will now be forwarded to that IP address, thus enabling hackers and script kiddies to easily reach your computer. Step Three - Enable the firewall To enable the firewall you can enter the following... --- ### Download GPMC - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/download_gpmc/ - Categories: Downloads - Article Type: Overview Where can I download the GPMC console for Windows Server 2003/XP? The Microsoft Group Policy Management Console (GPMC) is the new solution for Group Policy management that helps you manage your enterprise more cost-effectively. It consists of a Microsoft Management Console (MMC) snap-in and a set of scriptable interfaces for managing Group Policy. The GPMC is available as a separate component to Windows Server 2003. Purpose of GPMC GPMC is designed to simplify the management of Group Policy by providing a single place for managing core aspects of Group Policy. You can think of the GPMC as a one-stop resource for managing your Group Policy needs. GPMC addresses the top Group Policy deployment requirements, as requested by customers, by providing: A user interface (UI) that makes Group Policy much easier to use. Backup/restore of Group Policy objects (GPOs). Import/export and copy/paste of GPOs and Windows Management Instrumentation (WMI) filters. Simplified management of Group Policy–related security. HTML reporting for GPO settings and Resultant Set of Policy (RSoP) data. Scripting of GPO operations that are exposed within this tool—but not scripting of settings with a GPO. Prior to GPMC, administrators were required to use several Microsoft tools to manage Group Policy. GPMC integrates the existing Group Policy functionality of those tools into a single, unified console, along with the new capabilities listed above. Managing Windows 2000 and Windows Server 2003 Domains: GPMC is able to manage both Windows 2000 and Windows Server 2003-based domains with the Active Directory service. System... --- ### Download Windows 2003 SP1 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_2003_sp1/ - Categories: Downloads - Article Type: Overview Where can I download Windows 2003 Service Pack 1? In the beginning of April, 2005, Microsoft released SP1 for Windows Server 2003. SP1 is the latest collection of updates for Windows Server 2003. Install Microsoft Windows Server 2003 Service Pack 1 (SP1) to help secure your server and to better defend against hackers. Windows Server 2003 SP1 enhances security infrastructure by providing new security tools such as Security Configuration Wizard, which helps secure your server for role-based operations, improves defense-in-depth with Data Execution Protection, and provides a safe and secure first-boot scenario with Post-setup Security Update Wizard. Windows Server 2003 SP1 assists IT professionals in securing their server infrastructure and provides enhanced manageability and control for Windows Server 2003 users. Note: This version of the Service Pack 1 only installs on the 32-bit versions of the Microsoft Windows Server 2003 operating systems. For the 64-bit version of SP1 go HERE. You can find in-depth technical information about Windows Server 2003 SP1 at the Windows Server 2003 TechCenter on TechNet. To download SP1 for Windows Server 2003: Download Windows Server 2003 SP1 Network Installation (329mb) The Network Installation is ideal for IT professionals installing SP1 on multiple computers. SP1 is also available via the Windows Update site Note: Make note that in order to install SP1 you might need as much as 1. 4gb of free hard disk space available. View The hard disk space requirements for Windows Server 2003 Service Pack 1 - 892807... --- ### Active Directory Client (dsclient) for Win98/NT - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/dsclient_for_win98_nt/ - Categories: Active Directory (AD) - Article Type: Overview How can I work with NT 4. 0 and Win98 clients in a Windows 2000 or Windows Server 2003 Domain? Microsoft has developed extensions for the Windows 95, Windows 98, and Windows NT 4. 0 operating systems that allow those client platforms to take advantage of features provided by the Windows 2000 and Windows Server 2003 Active Directory service. These client extensions were developed for customers who wish to deploy Windows 2000/2003 Server in environments with Windows 95, Windows 98, and Windows NT 4. 0 based client workstations. Active Directory Features Supported Windows 9x and Windows NT 4 based clients lack many of the features of Windows 2000 Professional and Windows XP Professional that are related to Active Directory. The Active Directory client extension is an upgrade or patch for Windows 95, Windows 98, and Windows NT 4. 0, which enables the following Active Directory features: Site awareness - This includes the ability to log on to the domain controller that is closest to the client in the network and the ability to change passwords on any Windows 2000/2003-based domain controller, instead of the primary domain controller (PDC). In order to benefit from this new functionality the computer object where the Client extension is installed must exist in a Windows 2000/2003 domain. Note: Active Directory Client for Windows NT4. 0 does not change the NT4. 0 WinLogon change password behavior. The WinLogon change password still contacts the PDC. However, Active Directory Client extension provides necessary APIs to change the password to any Windows 2000... --- ### Enable Password Changing through OWA in Exchange 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/enable_password_changing_through_owa_in_exchange_2003/ - Categories: Exchange Server - Article Type: How To Can I enable user password changes through Outlook Web Access (OWA) in Exchange 2003? Yes, although this behavior is not enabled by default. In order to do so you must first configure your server to use SSL. Then, you need to create a new Virtual Directory called Iisadmpwd under the Default Web Site. Open Internet Information Services Manager from the Administrative Tools. In IIS Manager expand SERVERNAME (Where SERVERNAME is your server name object), expand Web Sites, and then expand Default Web Site. Right-click Default Web site and choose New, then select Virtual Directory. In the Welcome screen click Next. In the Virtual Directory Alias window type Iisadmpwd. Click Next. In the Website Content Directory screen navigate to %Systemroot%System32InetsrvIisadmpwd. Click Next. In the Virtual Directory Access Permissions grant Read, Run Scripts and Execute permissions. Click Next. Click Finish. See that the new Virtual Directory is listed in the folder list on the right-pane of the IIS Admin console. Next, you need to enable the Change Password button in the Registry of the server. Note: This article was written at a time when there was no other method of performing the above. Nowadays we can use a nice graphic tool called OWAADMIN to perform the same trick (and many others). However even with OWAADMIN you will still need to perform parts of the steps outlined on this current page. The only step you can skip is the following step: Open Regedit. Navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesMSExchangeWEBOWA Create a new REG-DWORD... --- ### Error While Installing Applications in Vista (like Adobe Acrobat Reader) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/error_installing_applications_on_vista/ - Categories: Windows Vista - Article Type: Overview One of the first tasks that one performs right after finishing the installation of a new operating system is to install all the required additional applications and change the system's settings to match their own requirements. One of the most frequently used applications I install on my machine is Adobe Acrobat Reader (see http://www. adobe. com/products/acrobat/readstep2. html for a download link). After downloading it you need to double-click the executable file and allow the wizard to kick in. However, in some cases, when installing Adobe Acrobat Reader on Windows Vista you might see the following error message: The Temp folder is on a drive that is full or is inaccessible. Free up space on the drive or verify that you have write permission on the Temp folder. While trying to find a solution to this error I discovered the reason for the error and a way around it that allowed me to install Adobe Acrobat Reader without any issue. The reason for the error It seems that the reason behind this error is the fact that I usually tend to immediately disable User Account Control (or UAC) as one of the first tweaking steps of any new Vista installation (read "Disable User Account Control in Windows Vista" for more info). UAC is an attempt made by the Vista engineers to increase the security of the operating system. Although UAC will indeed help the user gain more control over the actions that are performed with administrative rights on their computers, it... --- ### EXIFS Access to Alternate PF Trees in Exchange 2000 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/exifs_access_to_alternate_pf_trees_in_e2k/ - Categories: Exchange Server - Article Type: Overview In Exchange 2000, how can I provide access to Alternate Public Folder Trees via EXIFS? Although Exchange 2000 allows multiple Public Folder roots (Create new PF Tree on Exchange 2000), current Outlook clients don't, so you can't display these other structures in Outlook. However, you can view them via the Web with the following format: ​http://exchange server/public folder root or via EXIFS (virtual drive M) just like you'd look at any shared folder on the network. To make your PF available via EXIFS do the following: On your Exchange server open Windows Explorer and go to your M:\ drive. Drill down to your new Public Folder Tree. Right click it and choose Sharing. Share it with any name you want, and give it the proper share access control permissions. Note: You can also share any sub-folder you want. You do not have to share the PF Tree itself if you don't want to. Click OK and see if it's visible through Network Neighborhood or through a NET SHARE command on the server. Users will be able to access this new PF like it was a regular shared folder on the server. Note: This method of sharing Public Folders also works for the Default (MAPI) Public Folder tree and all of it's subfolders. Exchange 2003 note: Exchange Server 2003 does not expose drive M by default. In order to access Alternate PF Trees via EXIFS in Exchange Server 2003 (Create new PF Tree on... --- ### Determine the System Uptime in Windows Vista - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/find_system_uptime_windows_vista/ - Categories: Windows Vista - Tags: Editor's Pick - Article Type: How To Knowing how much time your system has been running is a piece of information useful for administrators. Sometimes you might need it in order to know when the machine has recovered from a possible power failure or any other issue it might have had. While there are plenty of 3rd-party tools that allow one to find the exact uptime of the system, there are at least 4 methods I can think of built-in in your system. Windows Vista has made it easier in at least 2 or 3 ways out of the total number described below, but method #2 and 3 also work for pre-Vista operating systems. Method #1 – Using Task Manager (Vista only) Probably the easiest of them all. Right-click on the Taskbar, and click Task Manager. You can also click CTRL+SHIFT+ESC to get to the Task Manager. In Task Manager, select the Performance tab. The current system uptime is shown under System.   Method #2 – Using the System Information tool Harder to remember by heart, but useful for various scripting options. Click Start, type the following command and press ENTER: ​Cmd /k systeminfo | find "System Boot Time"   System uptime data is shown in the output: ​System Boot Time: 05/25/2007, 23:57:47   Method #3 – Using Uptime. exe Microsoft have published a tool called Uptime. exe. While hardly a new tool, uptime. exe is a simple command line tool that analyzes the computer's reliability and availability information. It can work locally or remotely. In its simple... --- ### Get Ready for Windows Server 2008/Vista Service Pack 2 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/get-ready-for-windows-server-2008-vista-service-pack-2/ - Categories: Windows Server 2008 - Article Type: How To MSDN and TechNet subscribers now have access to Service Pack 2 (SP2) beta for Windows Vista and Windows Server 2008. The beta version of SP2 is also supposed to be available to the general public. Prior to that, Microsoft began testing SP2  with just a small group of testers first before making it more broadly available to the public. Microsoft currently estimates that Service Pack 2 will ship in the first half of 2009. Microsoft says Windows Server 2008 SP2 addresses feedback from their customers. It contains all previously released hot fixes that have been released since SP1, integrated into a single service pack covering both server (Windows Server 2008) and client (Windows Vista) versions. See links section below for a link to the full list of all the hot fixes and security updates in Windows Server 2008 SP2 Beta. To download Windows Vista and Windows Server 2008 SP2 beta please see: Windows Server 2008 SP2 and Windows Vista SP2 Beta SP2 also adds some new features for corporate users including full integration of Hyper-V into Windows Server 2008. The Hyper-V integration includes one free guest license for users of Windows Server 2008 Standard, four free licenses for users of the Enterprise version and an unlimited number of licenses for the DataCenter version. Additional features found in SP2 include: The ability to configure power management policies via Group Policy. Additional changes to the power profile that claim to have yielded a 10% improvement over the power profile of Windows Server... --- ### Hide a Server from the Microsoft Computer Browser Service - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/hide_a_server_from_the_microsoft_computer_browser_service/ - Categories: Networking - Article Type: How To You can configure a computer so that it does not send announcements to browsers on the domain. If you do so, you hide the computer from the Browser list, which can help reduce network traffic. Editing the Registry Open the registry editor and go to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesLanmanServerParameters From the Edit menu, choose Add Value and type: Hidden Note: This value is case sensitive and must begin with a capital H. In the Data Type field, choose REG_DWORD and choose OK. In the Data field, type 1 to enable hiding and choose OK. Restart your computer. Using the NET CONFIG SRV command This setting can also be changed using the following command: net config server /hidden:yes|no To hide the computer from the Browser List, type net config server /hidden:yes at the command prompt, and then press ENTER. To unhide the computer from the Browser list, type net config server /hidden:no at the command prompt, and then press ENTER. Note: It may take up to 30 minutes for the server to disappear from the Browser lists. Related articles You may find these related articles of interest to you: Disable NetBIOS in W2K/XP/2003 Install NetBEUI in Windows XP Registration of NetBIOS Names Speed Up LAN Browsing in Windows XP Speed Up Network File Copying in Windows XP What's Port 445 in W2K/XP/2003? What's the Microsoft Computer Browser Service? Links Description of the Microsoft Computer Browser Service - 188001 Server Service Configuration and Tuning - 314498 How... --- ### How to Install Active Directory on Windows 2000 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how_to_install_active_directory_on_w2k/ - Categories: Active Directory (AD) - Article Type: How To How do I install Active Directory on my Windows 2000 Server? First make sure you read and understand Active Directory Installation Requirements. If you don't comply with all the requirements of that article you will not be able to set up your AD (for example: you don't have a NIC or you're using a computer that's not connected to a LAN). Note: This article is only good for understanding how to install the FIRST DC in a NEW AD Domain, in a NEW TREE, in a NEW FOREST. Meaning - don't do it for any other scenario, such as a new replica DC in an existing domain (How to Install a Replica DC in an Existing AD Domain on Windows 2000). Here is a quick list of what you must have: An NTFS partition with enough free space An Administrator's username and password The correct operating system version A NIC Properly configured TCP/IP (IP address, subnet mask and - optional - default gateway) A network connection (to a hub or to another computer via a crossover cable) An operational DNS server (which can be installed on the DC itself) A Domain name that you want to use The Windows 2000 CD media (or at least the i386 folder) Brains (recommended, not required... ) This article assumes that all of the above requirements are fulfilled. Step 1: Configure the computer's suffix (Not mandatory, can be done via the Dcpromo process). Right click My Computer and choose Properties. Click the... --- ### Increase Broadband Connection Speed in Windows XP/Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/increase_broadband_connection_speed_in_windows_xp_2003/ - Categories: Networking - Article Type: How To This tip is designed for increased BROADBAND speed in Windows XP while using standard Network Interface cards (NIC) that are connected to ADSL modems, or when using any directly-connected USB ADSL modem. To speed up the Internet connection speed we need to configure a special buffer in the computer's memory in order to enable it to better deal with interrupts made from the NIC or the USB modem. This tip is only recommended if you have 256MB RAM or higher. Step #1 - Identify the IRQ used by the NIC/USB modem Follow these steps: Open the System Information tool by running MSINFO32. EXE from the Run command. Expand System Summary > Hardware Resources > IRQs. Look for the listing made for your NIC (in my case - a Intel(R) PRO/100+ Management Adapter). Note the IRQ next to the specified line (in my case - IRQ21). In case of USB modems you will first need to find the right USB device used by your modem. Follow these steps: Open the Device Manager tool by running DEVMGMT. MSC from the Run command (or by right-clicking My Computer > Hardware tab > Device Manager button). Scroll down to Universal Serial Bus controllers and expand it. Right-click the USB Root Hub and select Properties. Note that you might need to do so for all listed USB Root hubs (if there are more than one) in order to find the right one. In the Power tab, look for your USB ADSL modem. In the Resources... --- ### Install Hebrew on Windows Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_hebrew_on_windows_vista/ - Categories: Windows Vista - Article Type: How To How can I install and use Hebrew fonts on my Windows Vista computer? Windows Vista (and 2000/2003/XP) has the built-in ability to display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. To see Hebrew fonts on your Windows Vista computer you MUST perform the following tasks precisely in the order listed here. Not doing so might cause your computer to display ? ? ? ? ? ? ? instead of Hebrew fonts, especially in Office applications. Unlike in previous operating systems, the installation of Hebrew support is much simpler and usually does not require a reboot. You can choose to install Hebrew language support during the setup phase of Windows Vista, or at any time after the installation is complete. Note: You might also want to read the following articles: Install Hebrew on Windows 2000 Install Hebrew on Windows Server 2003 Install Hebrew on Windows XP Note: This guide is based on the latest beta build of Windows Vista, and it's possible that the display and screens on an RTM copy of Vista will differ. If that happens I will change the screenshots. Option 1: During the installation process After rebooting the computer during the setup process of Windows Vista you will need to wait for the green progress bar to reach the end, You will then get a chance to select your language settings and locale. Option 2: On a running installation of Windows Vista If you already have Windows Vista... --- ### Install Windows 98 after Windows XP - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/install_windows_98_after_windows_xp/ - Categories: Windows Client OS - Article Type: How To This procedure assumes that Windows XP is installed on drive C: Drive C: must be FAT16 or FAT32 to be able to install Windows 98 after XP is already installed. The 98/Me installation routine cannot write to an NTFS partition. You must have a second hard disk or partition formatted for FAT16/32 in order to be able to install Windows 98/Me. As always, installing 98/Me to the same partition as Windows XP is Not recommended! I recommend the use of a Windows 98 Startup disk for this procedure. You should ensure that DEBUG. EXE is on your Startup disk. On a 98 Startup disk, created from Add/Remove Programs, its in the EBD. CAB file on the Startup disk. For a 98 Startup disk created from FAT32EBD. EXE its on the floppy Installing Windows 98 Use a Win98 Startup disk (with CD support) to boot your computer. Insert your Win98 CD into the CD Rom drive. At the A: prompt type X:\Win98\Setup. exe where X: is your CD-ROM drive. Proceed with the install. When prompted for the install location, you'll see C:\Windows. 000. Choose Other directory and change this to the drive you wish to install 98 to and name the folder Windows (or something else if you prefer). Complete the Win98 install. Allow the computer to boot into Win98. Repairing the Windows XP Boot Loader Create a Win98 Startup Disk Create a Notepad file with the following entries, exactly as shown: L 100 2 0 1 N C:\BOOTSECT. DOS R BX 0 R CX 200 W... --- ### Installing Exchange 2007 Management Tools On a 32-Bit Operating System - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/installing_exchange_2007_management_tools_on_a_32bit_os/ - Categories: Exchange Server - Article Type: How To As you probably know by now, Exchange 2007 is distributed in 2 versions - 64-bit and 32-bit. Only the 64-bit version is supported by Microsoft, and the 32-bit version is only provided for evaluation purposes. Microsoft requires that you run the production versions of Exchange 2007 only on 64-bit platforms (read Is my Server Exchange 2007 Ready? ). However, in many cases, although the actual deployment of Exchange 2007 is done on 64-bit machines, your daily management of these servers is still performed on "regular" 32-bit machines, and not on the servers themselves. So, one might find himself trying to install the Exchange 2007 Management Tools on a 32-bit operating system such as Windows XP SP2 or Windows Server 2003 machine, only to find that when trying to install them they get an error message: "The image file D:Setup. EXE is valid, but is for a machine type other than the current machine. " The reason for this error is because the Exchange 2007 setup require Windows Server 2003 64-bit Edition to initiated. The solution to this problem is to install the 32-bit version of the Exchange 2007 Management Tools instead. Download 32 Bit Microsoft Exchange 2007 installation files Exchange Server 2007 - Evaluation Software. Extract the installation file. Install the following pre-requirements components: Microsoft . NET Framework Version 2. 0 Microsoft . NET Framework Update Required Microsoft Management Console 3. 0 for Windows XP (KB907265) Microsoft Management Console 3. 0 for Windows Server 2003 (KB907265) Windows PowerShell 1. 0 English-Language Installation Package for Windows XP... --- ### Joining a Domain in Windows XP Pro - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/joining_a_domain_in_windows_xp_pro/ - Categories: Active Directory (AD) - Article Type: How To How do I change a computer's description, name, or join a domain in Windows XP Pro? Update for Windows 7 Users: Please also see "How to Join a Domain in Windows 7" for instructions specific to your operating system. You can perform the preceding tasks by using the Computer Name tab in the System Properties dialog box from the Control Panel or by right-clicking My Computer, and then Properties or by pressing the Windows logo key ÿ and Break. To add a computer description On the Computer Name tab, type a name or description in the box, and then click Apply. This name will help you identify the computer on the network and in the Network Neighborhood, so please try to be as specific and as methodic as possible. To change a computer name Many users setup their computer without giving a second thought to it's name. This is a bad thing. Make note of the following naming rules: If your computer does not have TCP/IP networking installed, or it has other networking protocols installed (without TCP/IP), the computer name must be in uppercase 15 or fewer bytes long (depending on which characters are used and the language set as the Language for non-Unicode programs in Regional and Language Options in Control Panel). If your computer has TCP/IP networking installed, the computer name can be up to 63 bytes long (depending on which characters are used and the language set as the Language for non-Unicode programs in... --- ### Microsoft Data Protection Manager 2007 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/microsoft-data-protection-manager-2007/ - Categories: SharePoint 2007 - Article Type: Overview This week Microsoft has finally released the final (RTM) version of System Center Data Protection Manager (SCDPM) 2007, which introduces live backup for virtual machines hosted by Virtual Server 2005 R2 Service Pack 1, through the Windows Server 2003 Volume Shadow Service (VSS). Microsoft Data Protection Manager 2007 is a full featured data protection product designed to protect Microsoft Applications and the Windows Server System. SCDPM is not free of charge but has been included in the System Center Management Suite Enterprise, along with Virtual Machine Manager (SCVMM) 2007, Operation Manager (SCOP) 2007 and Configuration Manager (SCCM) 2007. DPM 2007 can be used to natively protect the following Operations systems and Applications. White paper solutions are available for a number of other applications on the DPM website. Windows Server 2003 Windows Server 2003 R2 Windows Storage Server (Storage Server 2003, Storage Server R2, WUDSS) Windows Server 2008 Windows XP SP2 (support limited to machines with persistant network connectivity) Windows Vista (support limited to machines with persistant network connectivity) Microsoft Exchange Server (2003 and 2007) Microsoft SQL Server (2000 and 2005) Microsoft SharePoint (MOSS 2007 and WSS 3. 0) Host Based Virtual Server Protection Read a whitepaper about the integration with SCVMM HERE and download the trial product HERE. New features in Data Protection Manager 2007: Continuous Data Protection for Windows Application and File Servers - DPM protects Windows Servers by continuously capturing data changes with application-aware, block-level agents, providing an easy-to-manage and robust disk and tape data protection... --- ### New EFS Features in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/new_efs_features_in_windows_xp/ - Categories: Security - Article Type: Overview What are the new EFS features in Windows XP? Microsoft Windows 2000 introduced the capability for data recovery with the implementation of Encrypting File System (EFS), and this capability has been enhanced in Windows XP. Microsoft Windows XP provides many enhancements in the area of data protection - especially Encrypting File System (EFS). Windows XP provides significant advancements in data recovery and protection, and private key recovery. This article provides a technical walkthrough that illustrates how to use important data recovery and protection features in Windows XP. Also included are best practices and the steps you need to take to build an effective data recovery and protection strategy. In addition to explaining strategies for data recovery and data protection in Windows XP, this article includes many step-by-step examples that illustrate how to set up the data recovery and data protection features you'll want to use when deploying a Windows XP data recovery and protection solution. Note: EFS is only available on Windows XP Professional; it is not supported on Windows XP Home Edition. The increased functionality of EFS has significantly enhanced the power of the Windows XP Professional client. Windows XP Professional now provides additional flexibility for corporate users when deploying security solutions based on encrypted data files and folders. These new features include: Full support for revocation checking on certificates used by the system Alternate color support (green) for encrypted files Support for encrypted offline folders Multi-user support for encrypted files in the shell user interface (UI)... --- ### Office System (2003) SP2 Slipstreaming - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/office_system_2003_sp_slipstreaming/ - Categories: Patches and Service Packs - Article Type: Overview Office System (2003) SP2 Slipstreaming How can I slipstream service packs into Office System (2003)? This scenario explains how to create an integrated installation of Office System (2003) and the corresponding service pack in a shared distribution folder on a network or on your local computer. To complete this procedure, you must have the original Office 2003 CD media. Note: This explanation is based upon usage of Office System (2003) and SP2, but will also work for any future service packs. For Office XP integrated installations see Office XP SP1/2/3 Slipstreaming. For other versions of this article please visit the following links: Front Page 2003 SP2 Slipstreaming Office System (2003) Hotfix Slipstreaming Office XP SP3 Slipstreaming One Note 2003 SP2 Slipstreaming Windows 2000 SP4 Slipstreaming Windows Server 2003 SP1 Slipstreaming Windows XP SP2 Slipstreaming Prerequisites Before we begin anything, you'll need to have a few things: Office System (2003) CD You will need the Administrative Update of Service Pack 2. It can be downloaded from HERE (101mb) No, the regular SP won't do. Note: For languages other than English you'll need the Office 2003 Multilanguage SP which will be available at a later date (as of October 2005). Around 650MB of free space on one of your hard drives. A CDR/CDRW drive, CD burning software and (This is actually only optional, but if you want to burn the resulting slipstreamed Office 2003 then you'll need it). Step 1: Perform an administrative installation Do NOT just copy your... --- ### Overview of Windows Server 2003 - Standard Edition > Windows Server 2003 - Standard Edition is a fully-featured server OS, but does it have all the features you need? Read our overview to find out. - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/overview_of_windows_server_2003_standard_edition/ - Categories: Windows Server 2003 - Article Type: Overview Windows Server 2003 - Standard Edition is a fully-featured server OS, but does it have all the features you need? Read our overview to find out. Designed for small organizations and departmental use, Windows Server 2003, Standard Edition, delivers intelligent file and printer sharing, secure Internet connectivity, centralized desktop policy management, and Web solutions that connect employees, partners, and customers. Windows Server 2003, Standard Edition, provides high levels of dependability, scalability, and security. In This Edition Windows Server 2003, Standard Edition, takes the best of Windows 2000 Server technology and makes it easier to deploy, manage, and use. The result is a highly productive operating system that is secure, reliable, highly available, and scalable. At a high level, Windows Server 2003, Standard Edition, provides support for: Advanced networking features such as Internet Authentication Service (IAS), the Network Bridge feature, and Internet Connection Sharing (ICS). Four-way symmetric multiprocessing (SMP). 4 gigabytes (GB) of RAM. Customers seeking the highest availability and scalability should consider Windows Server 2003, Enterprise Edition, or Windows Server 2003, Datacenter Edition. Built for Dependability Run Your Business on the Most Solid Server Operating System Microsoft Has Ever Released Today's organizations expect technology to be a consistent enabler of business value. They want systems that are always up and always responsive, and they demand a level of security able to meet today's challenges. Windows Server 2003, Standard Edition, includes new features and improvements that make it the most dependable small business and departmental server operating system Microsoft has ever created. Windows Server 2003, Standard Edition, improves on many technologies introduced in Windows 2000 Server, such as support for smart cards, bandwidth throttling,... --- ### How can I disable the caching of failed DNS lookups in Windows 2000/XP/2003? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/preventing_caching_of_failed_dns_lookups/ - Categories: DNS - Article Type: How To Windows 2000/XP/2003 added the ability to cache DNS lookup results in the client's cache. This cache can be viewed by typing ipconfig /displaydns in the command prompt: Windows IP Configuration ddlnetwork. net ---------------------------------------- Record Name ... . . : ddlnetwork. net Record Type ... . . : 1 Time To Live ... . : 13445 Data Length ... . . : 4 Section ... ... . : Answer A (Host) Record ... : 67. 159. 5. 63 Record Name ... . . : ns1. gothosted. com Record Type ... . . : 1 Time To Live ... . : 13445 Data Length ... . . : 4 Section ... ... . : Additional A (Host) Record ... : 67. 159. 5. 63 kona3. kontera. com ---------------------------------------- Record Name ... . . : kona3. kontera. com Record Type ... . . : 1 Time To Live ... . : 3161 Data Length ... . . : 4 Section ... ... . : Answer A (Host) Record ... : 208. 185. 211. 88 Record Name ... . . : ns. above. net Record Type ... . . : 1 Time To Live ... . : 3161 Data Length ... . . : 4 Section ... ... . : Additional A (Host) Record ... : 207. 126. 96. 162... --- ### Quickly Check Which User Encrypted a File - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_check_which_user_encrypted_a_file/ - Categories: Security - Article Type: How To How can I easily discover who's the user that encrypted a file? The Windows Explorer user interface (UI) shows which files are encrypted but not who encrypted them, causing a lot of confusion when trying to access specific files needed by other users. As an administrator, you could rectify the situation by decrypting the files. But wouldn't you like to know the identity of the dastard that caused the trouble? The Windows 2000 Resource Kit includes the tool Efsinfo. exe, which you can use to view information about the recovery agent accounts. You can use Efsinfo to verify what recovery accounts are current for an encrypted file. To determine who the designated recovery agent is after installing the Windows 2000 Resource Kit: Click Start, point to Programs, point to Accessories, and then click Command Prompt. Use the cd (change directory) command to change to the folder that contains the encrypted file. Type efsinfo /r /u filename, where filename is the name of the file you want to check. Or, leave the filename parameter off to report information for all the files in the current folder. Sample Output from Efsinfo ​ EFSINFO /r /u Myfile. doc Myfile. doc: Encrypted Users who can decrypt: DOMAINNAMEUsername (CN=User Name,L=EFS,OU=EFS File Encryption Certificate) Recovery Agents: DOMAINNAMEEFSRecover (OU=EFS File Encryption Certificate, L=EFS, CN=EFSRecover) The output indicates that the Myfile. doc file was encrypted by domain user "Username" from domain "Domainname. " The "EFSRecover" account in domain "Domainname" is the designated EFS recovery agent for the file. For example:... --- ### Quickly Find Remote Open Ports - GUI - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly_find_remote_open_ports_gui/ - Categories: Networking - Article Type: How To The process of testing a remote server's open or listening ports is called "Scanning". The Internet is full with various scanner and network suit programs, and many security related websites offer a lot of information about these programs, therefore I've decided to only write about a small number of my favorite programs, and only if they're freeware. SuperScan (currently v3. 0) My personal favorite!   A powerful connect-based TCP port scanner, pinger and hostname resolver. Multithreaded and asynchronous techniques make this program extremely fast and versatile. Perform ping scans and port scans using any IP range or specify a text file to extract addresses from. Scan any port range from a built in list or specified range. Resolve and reverse-lookup any IP address or range. Modify the port list and port descriptions using the built in editor. Connect to any discovered open port using user-specified "helper" applications (e. g. Telnet, Web browser, FTP) and assign a custom helper application to any port. Save the scan list to a text file. User friendly interface. Download it from HERE (197kb) Angry IP scanner (currently v2. 19) - is a very fast and small IP scanner. It pings each IP address to check if it's alive, then optionally it is resolving hostname and tries to connect at specified in Options dialog box TCP port. The program uses separate threads for each scanned address to reduce scanning speed. It can also display NetBIOS information: computer name, workgroup, currently logged user and MAC address. No installer,... --- ### Raise Forest  Fuction Level in Windows Server 2003 Active Directory - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/raise_forest_function_level_in_windows_2003/ - Categories: Active Directory (AD) - Article Type: How To How can I raise the forest function level in a Windows Server 2003-based Active Directory? Functional levels are an extension of the mixed/native mode concept introduced in Windows 2000 to activate new Active Directory features after all the domain controllers in the domain or forest are running the Windows Server 2003 operating system. When a computer that is running Windows Server 2003 is installed and promoted to a domain controller, new Active Directory features are activated by the Windows Server 2003 operating system over its Windows 2000 counterparts. Additional Active Directory features are available when all domain controllers in a domain or forest are running Windows Server 2003 and the administrator activates the corresponding functional level in the domain or forest (read Understanding Function Levels in Windows Server 2003 Active Directory for more info). To activate the new domain features, all domain controllers in the domain must be running Windows Server 2003. After this requirement is met, the administrator can raise the domain functional level to Windows Server 2003 (read Raise Domain Function Level in Windows Server 2003 Domains for more info). To activate new forest-wide features, all domain controllers in the forest must be running Windows Server 2003, and the current forest functional level must be at Windows 2000 native or Windows Server 2003 domain level. After this requirement is met, the administrator can raise the domain functional level. Note: Network clients can authenticate or access resources in the domain or forest without being affected by... --- ### Reduce Spam with Exchange 2007 Server Safe List Aggregation - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/reduce-spam-exchange-server-2007-safe-list-aggregation-safe-senders/ - Categories: Exchange Server - Article Type: How To As you probably know, Exchange server 2007 is designed to take a layered approach to message hygiene.  Typically, when an SMTP message arrives, it passes through an edge transport server.  The edge transport server typically checks the message for viruses, and make sure that the message isn't spam.   Once these checks have been performed, the message is allowed to continue on to the mailbox server that hosts the recipient's mailbox.   Depending on the way that Exchange Server is configured, the mailbox server may perform some additional screening of its own. The recipient may also perform some screening of their own.  Usually, server level screening is designed to get rid of viruses and remove the most obvious spam.  Ultimately though, it is up to the end user to configure Outlook for the level of spam removal that the user wants. One of the antispam features that the user can take advantage of is the safe senders list.   Although the safe senders list resides at the mailbox server level, it is something that the end user configures completely independently of settings implemented by the administrator or by other users. Although the safe senders list is a nice feature, it can be a bit problematic in environments that take a multilevel approach to spam filtering.  Think about it for a moment.  The safe senders list allows users to create a list of senders that they consider to be safe.  This allows the users to receive messages from those senders regardless of message content.  The problem is though, that the... --- ### Remove Orphaned Apps from the Add/Remove Applet in Control Panel - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/remove_orphaned_apps_from_the_add_remove_applet_in_control_panel/ - Categories: Windows Client OS - Article Type: How To How can I remove orphaned apps from the Add/Remove applet in Control Panel in Windows 2000/XP/2003? Sometimes after you uninstall a program its entry still remains in the Add or Remove Programs dialog box. This should not have happened in the first place, but if it does happen you'll be really pissed off because when you click on Change/Remove in the dialog box, you get an error, telling you that the program no longer exists. To remove these orphan entries do the following: Start Registry Editor (Regedit. exe). Locate the following key in the registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall Make sure you backup the keys by exporting them to a . reg file. Look for the name of the program with the orphaned entry. Delete the entire listing for the software with the orphaned entry. Close the registry editor. Restart your computer. BTW, this can also be accomplished by use of many third-party tools such as TweakUI and others. To read more about these apps go to this article: Free Tweaking Tools. --- ### Reset Folder Views in Windows XP - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/reset_folder_views_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I reset the folder views in Windows XP? Sometimes the default folder views in Windows Explorer and My Computer in  XP can drive you nuts... The default views in Windows Explorer and My Computer in a out-of-the-box Windows XP computer are not the same as we were used to in W2K and Windows 98, and for many users (including yours humbly) these settings are quite annoying. Especially annoying is the fact that the Status Bar is not visible by default, and it tends to vanish after a reboot or even between reboots.   You can change these views by changing the Views settings in My Computer... Or in Windows Explorer... Click View and then add the Status Bar and change the display option for the icons (I like to use Details). But sometimes these settings will revert back to default. Even if you click to apply to all folders, the settings might return to default. One thing you can try is to set your preferred view setting, then instead of closing the window via the X on the top right-hand corner, close it via the File menu. This is known to keep the settings in place for some time. Another solution to the problem is to reset the folder views back to the out-of-the-box settings and then re-set them according to your desire, hoping that this time they will remain in place. To do so do the following: Start Registry Editor (Regedit. exe)... . --- ### Run Windows Explorer as Another User - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/run_windows_explorer_as_another_user/ - Categories: Windows Client OS - Article Type: How To How can I run Windows Explorer as another user (one with administrative privileges)? Sometimes you'll want to do file and folder modifications, or even partition formatting, but you won't want to do it while logged on as an administrator. To do so follow the next steps: When logged in as a normal, non-privileged user, navigate to your system folder, usually C:WINNT. Shift-right-click on explorer. exe. Select "Run As" and provide the credentials for the local admin account. A dialog box will pop-up asking you for a valid username and password. Enter one of a user that has the required administrative privileges to run and manage that program. If you give a wrong username or password an error will pop-up: If you gave a valid username and password then Explorer will open giving you the full permissions to manage it and any programs you run from within that window will run with admin privileges. That's it. BTW, it's time you got to know the RUNAS command that's now native in Windows 2000, XP and Windows Server 2003. Open a Command Prompt and run the following command: runas /user:computernameAdministrator command where computername is the name of your computer, and username is the name of the user you're trying to run the command as (e. g. Administrator). The command is the command you're trying to run (e. g. a batch file, an . exe file or even a control panel applet). For example: C:>runas /user:pro1Administrator "explorer. exe" Enter the password for... --- ### Secure IPSec Policy Agent - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/secure_ipsec_policy_agent/ - Categories: Security - Article Type: Overview How can I prevent other users from disabling the IPSEC Policy Agent service? In previous articles I've showed you how to protect your computer with the IPSEC mechanism (see Block Ping Traffic with IPSec, Block Web Browsing but Allow Intranet Traffic with IPSec and Block Web Browsing with IPSec). These articles describe how an administrator can potentially block specific computers from accessing specific web sites or even from browsing the entire Internet. So where's the catch? The problem lies in the fact that the IPSec policy is enabled by a service called IPSec Policy Agent. This service is loaded as Automatic (by default) and is supposed to be started in order for the IPSec Policy to run properly. A user with administrative privileges can view the service status by running Services from the Administrative tools and easily stop the service and even disable it, thus preventing the IPSec policy from running. This is something we want to stop. To do so we need to configure a Group Policy Object (GPO) in the Active Directory. You can also configure the setting locally, but for that you'll need to run GPEDIT. MSC. Open Active Directory Users & Computers. Right-click the domain (or an OU if you want to only configure a specific set of computers). Choose Properties. In the Properties window click the Group Policy tab. Click New to configure a new GPO (if you don't have one set for that OU already). Give it a descriptive name, such as Secure... --- ### Setting Mailbox Limits over 2GB - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/setting_mailbox_limits_over_2gb/ - Categories: Exchange Server - Article Type: How To Setting mailbox limits over 2GB in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of users in the Exchange Organization (read Setting Mailbox Limits, Working with Store Policies and Overwriting Mailbox Store Policy Limits for more info). Setting limits on the mailboxes help control the database size and plan for efficient backup, restore and maintenance tasks. However, in most scenarios, there will always be users that think that they deserve more storage space than they were given in the first place. Some of these are VIPs, others just need it for their work, and the rest are simply trying to make their life easier. So, whatever may be the reason, you might find yourself in need to configure higher mailbox limits for some users. Well, up to this point all I did was to explain what you already know. However, there is one tricky bit: When trying to configure mailbox limits higher than 2097151 KB the Exchange System Manager (ESM) or Active Directory Users and Computers (ADUC) snap-ins will not allow you to enter these higher limits. You will receive an error saying: "The value for 'Issue warning at (KB)' is not valid. Specify a value from 0 through 2097151".   The mailbox limits are actually Active Directory attributes. If you set a sample user's mailbox limits and look at the user object with a tool such as LDP or Adsiedit. msc you will notice that they are: Issue Warning =... --- ### Speed Up Network File Copying in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/speed_up_network_file_copying_in_windows_xp/ - Categories: Networking - Article Type: How To If you use the TCP/IP protocol and you have a 100mbps network adapter, you may notice slow network performance while you copy files. You may also experience this slow performance while you use Windows Explorer in Windows XP. Note that although the slow performance is known to occur on several 100mbps network adapters, this issue is not specific to Windows. This issue is due to a high rate of early collisions on the network. The interframe gap (the amount of time that a workstation waits before attempting to transmit on the wire) is less than the IEEE 802. 3 specification of 9. 6 microseconds. A "collision" occurs when two stations transmit simultaneously on the wire. An "early collision" is any collision that occurs before 512 bits of the frame are on the wire. Early collisions can occur regularly in a normally operating Ethernet network. There is no hardware malfunction or misbehaving station. The IEEE 802. 3 specification states that a station must wait 9. 6 microseconds (the interframe gap) before the station can attempt to transmit on the wire. Several adapter manufacturers design their adapters with a smaller interframe gap to achieve higher data transfer rates. This smaller interframe gap can lead to a high rate of collisions. The potential for collisions is also influenced by the behavior of the upper layer protocol. The TCP/IP specification is sending an ACK (acknowledgement) for every other data frame that is received. That is, after a TCP host receives two data frames, the TCP... --- ### Test SMTP Service in IIS and Exchange - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/test_smtp_service/ - Categories: Exchange Server - Article Type: How To How can I test to see if my SMTP service is ready to receive incoming mail? There are a couple of ways to verify if the SMTP service is working properly: Testing with an e-mail client First, you can choose to use a standard Internet e-mail client program, such as Microsoft Outlook Express, for a quick verification. Locate the place where you can specify the outgoing e-mail (SMTP) server and change it to the domain name of the new SMTP server. Send a test message to your regular e-mail address and verify its delivery. Note: There are many small e-mail clients made for the purpose of sending e-mail to mail servers without needing to configure them with e-mail accounts (like you need to do with Outlook Express for example). You can use any of these small (and mostly freeware) programs for fast troubleshooting. You can also use a small tool that does not require installation: Ghost Mail 5. 1 Testing with the Pickup directory You can also compose a simple e-mail text file based on the SMTP specifications (RFC 822). Here is the content of a sample text file typed in Notepad: From: myname@mydomain. com To: someone@somedomain. com Subject: testing This is the test message body. Simply copy or move the text file into the Pickup directory where SMTP was installed. (The default path should be "'Inetpub'mailroot'Pickup" but if you have Exchange installed then the path will be "'Program FilesExchsrvrMailrootVsi 1Pickup". ) The SMTP service periodically checks into the Pickup directory... --- ### Unattended Installation of Active Directory - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/unattended_installation_of_active_directory/ - Categories: Active Directory (AD) - Article Type: Overview How do I automatically upgrade a server to a domain controller during installation? You can automatically run DCPROMO during an unattended installation. Enter the command ​dcpromo /answer:%path_to_answer_file% You’ll see a dialog box that says DCPROMO is running in unattended mode. Then, the machine will reboot. You can also add DCPROMO to the unattended file that's used to install your server. The Microsoft Windows 2000 Resource Kit details the DCInstall section’s parameters in the file Unattend. doc: Value Explanation AdministratorPassword The new password for the domain Administrator account AutoConfigDNS Specifies whether the wizard should configure DNS ChildName Name of the child part of the domain CreateOrJoin Specifies whether the domain will join an existing forest or create a new one DatabasePath Location for the Active Directory database DNSOnNetwork Used when a new forest of domains is installed and no DNS client is configured on the computer DomainNetBiosName NetBIOS name for the domain IsLastDCInDomain Only valid when demoting an existing domain controller to a member server LogPath Path for the Directory Service (DS) logs NewDomainDNSName Name of the new tree or when a new forest is created ParentDomainDNSName Specifies the name of the parent domain Password Password for the username used to promote the server RebootOnSuccess Specifies whether an automatic reboot should be performed ReplicaDomainDNSName Name of the domain to be replicated from ReplicaOrMember Specifies whether a Windows NT 4. 0 or 3. 51 BDC being upgraded should become a replica domain controller or be demoted to a regular member server ReplicaOrNewDomain... --- ### Update Windows Messenger - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/update_windows_messenger/ - Categories: Windows Client OS - Article Type: How To What updates or upgrades do you use for Windows Messenger? So you've decided not to uninstall the Windows Messenger client you've got bundled with XP (as explained in the Windows Messenger - Uninstall Windows Messenger page). If you did, make sure you've got all the required patches and updates. Microsoft now has a couple of Instant Messaging clients, and you should know which one you'd like to use. Make a note that the original Windows Messenger client that came with XP is very outdated, and if you do choose to use it, make sure you at least upgrade it. Windows Messenger Use the latest version! First, make sure you're using the latest version of Windows Messenger. The version that comes with Windows XP is 4. 0, but nowadays the current version is labeled Windows Live Messenger. You can download it from here: Windows Live Messenger for Windows 7; Windows Server 2008; Windows Vista; Windows Vista Service Pack 1;Windows Vista Service Pack 2;Windows XP Service Pack 2;Windows XP Service Pack 3 (1. 1mb) Messenger Plus! Live Add-in Next, install the Messenger Plus! update. Messenger Plus! is an add-on for MSN Messenger and Windows Messenger. Messenger Plus! adds different features to Messenger to make it more enjoyable for a regular usage. It seems that the Messenger Plus! program has an embedded "sponsor program" that will wreck havoc inside your computer. Luckily for us (because the tool in itself is very useful) when installing the tool you CAN choose not to install... --- ### Download Microsoft Virtual PC 2007 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_download_virtual_pc_2007/ - Categories: Virtualization - Article Type: Overview Download Microsoft Virtual PC 2007 Yes, now you can, for free! Microsoft has released the new Microsoft Virtual PC 2007 version of their VM software. You can use it to run multiple operating systems (also called "guests") at the same time on the same physical computer (also called "the host machine"). You can easily switch between virtual machines with the click of a button. Use virtual machines to run legacy applications, provide support, train users, and enhance quality assurance. Virtual PC lets you create separate virtual machines on your Windows desktop, each of which virtualizes the hardware of a complete physical computer. Use virtual machines to run operating systems such as MS-DOS, Windows 9X/NT/2000/XP/2003 and Vista, Linux, OS/2 and others. Virtual PC is perfect for any scenario in which you need to support multiple operating systems, whether you use it for tech support, legacy application support, training, or just for consolidating physical computers. System Requirements Supported Operating Systems (guest machines): Windows Server 2003, Standard Edition (32-bit x86); Windows Server 2003, Standard x64 Edition; Windows Vista Business; Windows Vista Business 64-bit edition; Windows Vista Enterprise; Windows Vista Enterprise 64-bit edition; Windows Vista Ultimate; Windows Vista Ultimate 64-bit edition; Windows XP Professional Edition ; Windows XP Professional x64 Edition ; Windows XP Tablet PC Edition. An x64-based or an x86-based computer with a 400 MHz or faster (1 GHz recommended) processor with L2 cache. Processor: AMD Athlon/Duron, Intel Celeron, Intel Pentium II, Intel Pentium III, Intel Pentium 4, Intel Core... --- ### What's APIPA? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/whats_apipa/ - Categories: Networking - Article Type: Overview A Windows-based computer that is configured to use DHCP can automatically assign itself an Internet Protocol (IP) address if a DHCP server is not available. For example, this could occur on a network without a DHCP server, or on a network if a DHCP server is temporarily down for maintenance. With this feature, a Windows computer can assign itself an Internet Protocol (IP) address in the event that a DHCP server is not available or does not exist on the network. This feature makes configuring and supporting a small Local Area Network (LAN) running TCP/IP less difficult. Note: You may want to read Disable APIPA in Windows 98/ME/2000/XP/2003 The Internet Assigned Numbers Authority (IANA) has reserved 169. 254. 0. 0-169. 254. 255. 255 for Automatic Private IP Addressing. As a result, APIPA provides an address that is guaranteed not to conflict with routable addresses. After the network adapter has been assigned an IP address, the computer can use TCP/IP to communicate with any other computer that is connected to the same LAN and that is also configured for APIPA or has the IP address manually set to the 169. 254. x. y (where x. y is the client’s unique identifier) address range with a subnet mask of 255. 255. 0. 0. Note that the computer cannot communicate with computers on other subnets, or with computers that do not use automatic private IP addressing. Automatic private IP addressing is enabled by default. Is my computer using APIPA now? Windows 98/ME You can also determine whether your computer is using APIPA by using... --- ### What's the Password Reset Disk in Windows XP? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/whats_the_password_reset_disk_in_windows_xp/ - Categories: Security - Article Type: Overview What is the Windows XP Password Reset Disk and how can I use it? To protect user accounts in the event that the user forgets the password, every local user should make a password reset disk and keep it in a safe place. Then, if the user forgets his or her password, the password can be reset using the password reset disk and the user is able to access the local user account again. The Forgotten Password Wizard lets you create a password reset disk that you can use to recover your user account and personalized computer settings if you forget your password. How to create the password reset disk The steps to perform this task differ depending on whether your computer is a member of a network domain or is part of a workgroup (or is a stand-alone computer). If you're using Windows XP in a workgroup (and not in a domain), you have the option to create a password reset disk. To create the password reset disk go to the Start menu, Control Panel, User Accounts. Click your account name. Under Related Tasks located on the left side of the window, click Prevent a forgotten password. In the Forgotten Password Wizard, follow the instructions as they appear on the screen. When the wizard starts, click Next. Select the drive that contains the media you want to create the information on (you can use a diskette or a Zip disk), and click Next. Type your current password, and click... --- ### Windows 2000 MCSE Certification Requirements - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2000_mcse_certification_requirements/ - Categories: Windows 2000 - Article Type: Overview What are the Windows 2000 MCSE certification requirements? The Windows 2000 track of the MCSE credential is designed for information technology (IT) professionals working in the typically complex computing environment of medium to large organizations. An MCSE candidate should have at least one year of experience implementing and administering a network operating system in environments with the following characteristics: 200 to 26,000 supported users Five to 150 physical locations Typical network services and applications including file and print, database, messaging, proxy server or firewall, dial-in server, desktop management, and Web hosting Connectivity needs including connecting individual offices and users at remote locations to the corporate network and connecting corporate networks to the Internet In addition, an MCSE candidate should have at least one year of experience in the following areas: Implementing and administering a desktop operating system Designing a network infrastructure On December 2nd 2002, Microsoft has updated their Microsoft Certification Requirements page. Note: Microsoft has developed independent certification requirements for Microsoft Windows Server 2003. See Windows 2003 MCSE Certification Requirements for exam details. Microsoft Certified Systems Engineer (MCSE) candidates on the Microsoft Windows 2000 track are required to pass seven exams or the equivalent that include the following: Core Exams (5 Exams Required) Four operating system exams: Candidates must pass one exam from each set of operating system exams—client operating system and networking system. Candidates can complete the core operating system exams requirement by passing either four Windows 2000 or four Windows XP Professional/. NET Enterprise Server... --- ### What is Windows Auditing? - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/windows_auditing/ - Categories: Security - Article Type: Overview Security is an ever increasing concern in almost every area of society today and computers are no exception. A detailed computer security plan should not only include policies and procedures to ensure that proper access rights are configured for all users, it must also include methods for verifying that these rights are effectively deployed throughout the network. Being able to see what your network users are doing is not a bad thing either. Windows auditing is one such method for obtaining information about how effective your security practices are. In this article I will give a quick overview of Windows auditing and what it can do for you. What Is It? Windows auditing is a mechanism for tracking events. Knowing when and where these events occurred and who triggered them can help when doing Windows network forensics. It can also be very helpful with detecting certain types of problems like improper rights assignments in the file system. Dozens of events can be audited in Windows. The events fall into several categories: Audit account logon events - audit each instance of a user logging on to or logging off from another computer in which this computer is used to validate the account. This event category is applicable to domain controllers only since DC’s are used to validate accounts in domains. Audit account management - audit each event of account management on a computer. Examples of account maintenance include password changes, user account and group modifications. Audit directory service... --- ### How to Configure a Cisco Router as a Terminal Server > David Davis shows us how to quickly access the console on Cisco routers and switches and how to configure them as terminal servers. - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how-to-configure-cisco-router-as-terminal-server/ - Categories: Cisco - Article Type: How To David Davis shows us how to quickly access the console on Cisco routers and switches and how to configure them as terminal servers. Whether you have a rack of 3 Cisco routers and switches or 30, it is always nice to be able to easily and quickly get to the console of each device. This is especially true if you do much reconfiguration. By using a Cisco router with async ports as a terminal server, you can very quickly go to a single device and configure all your Cisco router and switches (in that rack) from a single device. Let's find out how to do it... Console ports are not Ethernet ports All too often, new Cisco admins confuse Cisco's console port to be an Ethernet port. However, the console port on Cisco routers and switches is a SERIAL port (not Ethernet). That means that it is designed to connect to the COM port (serial port) on your PC. Although the cable that connects to it has an RJ45 on the end, just like an Ethernet cable, an Ethernet cable will not work to connect these two together. What you need is a serial "rolled cable" if you are going to directly connect the router to the PC. What's a Terminal Server? A "terminal server" is also called an access server. This is a device that commonly provides access FROM dumb terminals TO the network. However, you can turn this around and also use it to allow a single device to allow access TO the device, FROM the network. The most well known Cisco access servers are the 2509 and... --- ### Best Practices for Securing VMware ESX Server - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/secure-vmware-esx-server/ - Categories: VMware - Article Type: How To As VMware ESX is loaded directly on hardware and is its own virtualization operating system, there are a number of factors to consider when securing it. While, due to its design architecture, ESX is inherently secure, there are still a number of security factors to consider. In this article we will cover the vulnerability points of ESX and how you can ensure that your ESX Servers are as secure as they can be. Where is VMware ESX Server Vulnerable? On a traditional server, you are only concerned with locking down the server OS. That OS could be Linux or Windows. Windows has, of course, been the favorite for security attacks so much of our time is spent securing it. So what if you put VMware ESX into this picture? With VMware ESX being loaded on top of the server hardware, there are a few points of immediate concern: the VMKernel & its virtualization layer the VMware ESX Service console (based on Red Hat Linux Enterprise) These two pieces are two very distinct parts of VMware ESX. VMware has periodically released patches for both of these different components although you probably just thought of them as "ESX patches". Concerning #1, the VMKernel and its virtualization layer is extremely secure. The Guest machines have hardware isolation in place and it seems impossible that a guest VM could somehow compromise the security of the host virtualization layer. As for #2, with the services console being based on Linux, it will... --- ### What You Need to VMware ESX Server 3.0 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_esx_install_requirements/ - Categories: VMware - Article Type: Overview Perhaps you are planning to install VMware ESX in a product environment or, like many of us, we just want to find some way to test it out and learn more about it. Either way, even if you are just testing it, you need to know the installation requirements. Because ESX is such a specialized product, you cannot just install ESX on any computer, the hardware must be compatible. Let's find out more... Published Installation Requirements for VMware ESX Server 3. 0 Yes, of course VMware has their own published installation requirements and very long lists of supported hardware. Those requirements and lists can be found at the following links: ESX Server 3. x Systems Compatibility Guide ESX Server 3. x I/O Compatibility Guide ESX Server 3. x Storage/SAN Compatibility Guide ESX Server 3. x Backup Software Compatibility Guide Unlike most other Enterprise server products, VMware even goes so far as to specify the brand and model of server that you can install VMware ESX on. For example, the lowest model of Dell server that VMware supports is a Dell 1850. That server would also have to have either local SCSI drives (SAS - SCSI attached storage) or a SAN adaptor. Besides specifying the server brand & model, VMware has brand & model requirements for all hardware that will go into that server - Disk, Disk adaptor, and network adaptor. Just like when specing out any production server, for any production environment you will need to take into account the "4 food... --- ### Beyond VMware: Virtualization Options Compared - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/virtual_virtualization_options_compared/ - Categories: Virtualization - Article Type: Overview When most people think of Virtualization, they might think of Microsoft but I'd be willing to bet that they think of VMware. In fact, there may be many out there who don't know that there are other virtualization products besides VMware's solutions. While VMware has excellent Virtualization products, I think it is important to know that there are other choices available. In this article, you will learn what those other virtualization options are, where you can find them, and how they might help you. Virtualization Companies I started off my gathering my list of virtualization options then I did research on the Internet to find others. What I came up with was this list of Virtualization companies: VMware Microsoft VirtualIRON Xen Keep in mind that we are talking about SERVER virtualization here and, specifically, doing it on x86 processors. I say this because, if you just type in virtualization on Google. com, you will find that there are a multitude of types of virtualization and from many different companies. For example, you can perform network virtualization, storage virtualization, or server virtualization with your IBM PowerPC system using IBM software. I left all of these types of virtualization out of this mix. Next, I took those companies, researched their virtualization options, and broke them down into different grades of products in terms of their intended use. For example, some products were designed to perform . Some company's only make one product and it could be also used on your... --- ### How do you replicate VMware ESX Guest Machines from one ESX Server to another? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/vmware-esx-server-vizioncore-replication-site-to-site/ - Categories: VMware - Article Type: How To Recently, I downloaded an evaluation version of the Vizioncore vEssentials bundle for VMware ESX Server. Included in that bundle are vRanger Pro, vCharter, and vReplicator. In this article, I offer my review of vReplicator. What is vReplicator? What can it do for you? Does it really work? Let's find out... What is the vEssentials Suite? While researching third party products for my new Train Signal VMware ESX Server video series, I spent some time with Vizioncore's product line. I was impressed at the breadth of products that they offer. They offer over 7 different virtualization products for VMware ESX Server. That is a larger virtualization product line than I can recall being offered by any other company. vEssentials is one of their most popular bundles and it includes vRanger Pro. vRanger Pro is Vizioncore's most popular product. Also included in the bundle is vCharter and vReplicator. Here is a breakdown of the vEssentials product bundle: vRanger Pro - image-level HOT backups of VMware ESX Server guest operating systems. That backup can be done for the entire VM or just a differential of the VM. vRanger Pro provides a much needed backup GUI and it integrates with VCB and Virtual Center. vCharter - top-down performance monitoring of VMware ESX Servers with drill-down capabilities. vCharter provides alerting, reporting, capacity planning, and chargeback. vReplicator- replicates entire VMware ESX Server Guest virtual machines from one ESX Server to another. Only the changes to the Guest virtual disk are sent and those... --- ### Hyper-V Quirks That Take Some Getting Used To - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/hyper-v-quirks-that-take-some-getting-used-to/ - Categories: Hyper-V - Article Type: Overview Lately, it seems as though everyone that I talk to is interested in virtualizing at least some of the servers in their organization. Although Hyper-V does a great job as a virtual server hosting solution, it does have some quirks that you might not expect. In this article, I want to talk about some of these quirks and how to work around them. The CD or DVD Drive is Inaccessible One of the first issues that network administrators are likely to run into is that the CD / DVD drive is inaccessible from within a virtual machine. The reason why this happens is that a CD or DVD drive can only be used by one virtual machine at a time. In order to use a CD or a DVD drive from within a virtual machine, an administrator must capture the drive. An administrator can capture or release a CD or DVD drive from the virtual machine’s Media menu. Simply select the DVD Drive command from the media menu, and then choose either the Capture command or the Uncapture command. The Media | DVD menu also gives you the option of capturing an ISO file (A CD or a DVD image file) and treating that file as though it were a CD or a DVD drive. A New Virtual Machine Won’t Start When I was first learning my way around Hyper-V, one of the issues that I would commonly run into was that I would create a new... --- ### Planning a Sites and Services Architecture for Exchange 2007 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/planning-sites-services-architecture-windows-ad-exchange-2007-server/ - Categories: Exchange Server - Article Type: Overview When Microsoft created Exchange Server 2007, they introduced a number of architectural changes.  Among these changes are the fact that Exchange Server 2007 no longer has an independent routing topology.  Instead of using routing groups, Exchange Server 2007 uses the routing topology defined by that Active Directory.  In situations in which Exchange Server 2007 has to coexist with Exchange Server 2003 or with Exchange 2000, Exchange 2007 will emulate a routing group and use a routing group connector to interact with the legacy Exchange servers.  In pure Exchange 2007 environments though, routing groups are not used at all, so it makes sense to take a look at your Active Directory topology to make sure that messages can be routed efficiently. In smaller, self-contained organizations, the routing topology isn't really a concern.   Organizations that span WAN links must design their Active Directory infrastructure in a way that uses low bandwidth WAN connections efficiently though.  The most common way of doing this is to implement Active Directory sites. Generally speaking, the Active Directory site structure should mimic your network topology. Each network segment should generally correspond to its own site, although this isn’t an absolute requirement, especially if the network segments are bridged by high speed links. Requirements for Implementing AD The primary requirement for implementing Active Directory sites is that each site must contain at least one domain controller. Computers on the network use the site information to locate a domain controller that’s close to them, rather than traversing a WAN link every... --- ### Security Configuration Wizard for Exchange Server 2007 – Part 3 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/security-configuration-wizard-scw-exchange-2007-part-3/ - Categories: Exchange Server - Article Type: Overview In Part 1 of this series, we registered the XML files so that the Security Configuration Wizard could create an apply policies for Exchange 2007 servers and we installed the wizard in Windows. In Part 2, we created the policy and applied it to the local server. In this final part, we’ll look at applying the policy to other servers, and rolling back a policy. Rolling back There are several reasons why we might need to remove, or “rollback”, an applied security configuration policy. The first is that when the policy was applied, email “broke”. Rolling back the policy will change the server back to how it was configured before the policy was applied. As with applying a policy, a rollback will require a reboot of the server. The second reason for rolling back is that we’re going to make changes to the server, and rolling back, then creating a new policy might be easier than trying to troubleshoot an already applied policy later. A perfect example of this is the installation of a new application on the server. So let’s look at rolling back a policy. Start the Security Configuration Wizard from the Start Menu. On the Configuration Action screen, select Rollback the last applied security policy as seen in Figure 1 below, and click Next.   Figure 1 Choose the server that you’d like to rollback. The wizard defaults to the local server, as seen in Figure 2 below. When you’ve selected the correct server, click Next.  ... --- ### Bypass UAC using a Desktop Shortcut - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/bypass-uac-using-desktop-shortcut/ - Categories: Windows Vista - Article Type: How To   Windows Vista has the built-in ability to automatically reduce the potential of security breaches in the system. It does that by automatically enabling a feature called User Account Control (or UAC for short). The UAC forces users that are part of the local administrators group to run like they were regular users with no administrative privileges. User Account Control provides security protection for system kernel, memory and registry from unauthorized access by programs or processes. You can read more about UAC on my What's User Account Control in Windows Vista? article. UAC can drive you crazy. It will bug you to the point where you'll totally ignore it and automatically click to accept its prompts without giving it a second consideration, virtually rendering it useless. Or, you could simply disable it. You can read more about UAC on my How can I disable the User Account Control (UAC) feature on my Windows Vista computer? article. While disabling UAC is not a hard task to accomplish, there is another method you can use to deal with it. In this guide, I will help tell you how to create a desktop shortcut for bypassing UAC for programs that require UAC Administrative Permissions, and allow standard users to run these programs without administrative access. You will be doing it by using a known bypass trick in Task Manager and a desktop shortcut. You will also be able to use this trick to launch a program from the Command Prompt... --- ### Deploy Windows XP through GPO - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/deploy_windows_xp_through_gpo/ - Categories: Windows XP - Article Type: How To How do I use Group Policy to deploy Windows XP in a Windows 2000 network? You can use Group Policy to make a Windows XP Professional upgrade available to the Windows 2000 Professional workstations in your network. Create a folder to hold the Windows Installer package (Winnt32. msi) on a network server. Give the folder the appropriate permissions to allow the users and the computers to read and run the files, and then copy the I386 folder from the Windows XP Professional CD-ROM to this folder. You can create a GPO for a domain, an organizational unit, or a site. It is recommended that you assign a GPO to an organizational unit that contains the users whose workstations you want to upgrade. In that GPO, click to expand User Configuration, and then click to expand Software Settings. Right-click Software installation, point to New, and then click Package. In the Look in box, browse to the share where the I386 folder is located. Make sure that the path that you enter is an accessible Universal Naming Convention (UNC) path and not a file system path. Open the share that contains the Windows Installer package, click Winnt32. msi, and then click Open. Click Publish, and then click OK. Note: When you make changes to the GPO, these changes are not applied immediately to the target computers. Instead, they are applied according to the currently valid Group Policy refresh interval. In this scenario, when the program has been published to the users, it is available... --- ### How can I easily administer DNS servers by using the command prompt? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/dnscmd_command_in_windows_2000_2003/ - Categories: DNS - Tags: Editor's Pick - Article Type: How To A GUI interface is great for novice administrators but is cumbersome if you have to perform the same task over and over again. Command line tools can be more efficient than GUI tools. Dnscmd. exe is one of the support tools from Support. cab, which is located in the support'tools directory on the Windows 2000 CD. Dnscmd is provided as a command-line interface for managing DNS servers. This tool can be used to script batch files, to help automate management and update of existing DNS server configurations or to perform setup and configuration of new DNS servers on your network. DNSCmd displays and changes the properties of DNS servers, zones, and resource records. It manually modifies these properties, creates and deletes zones and resource records, and forces replication events between DNS server physical memory and DNS databases and data files. Some operations of this tool work at the DNS server-level while others work at the zone-level. You can use Dnscmd on any Windows 2000 or XP computer as long as the user that is running the application is a member in the Administrators or Server Operators group on the target computer. Both the user account and the server computer must be members of the same domain or reside within trusted domains. Dnscmd. exe can be used to: Get DNS server info; Initiate server scavenging; Enumerate and view zone info; Create, delete, pause, and resume zones; Change zone type (standard primary, standard secondary, AD integrated); Add, delete, and enumerate records... --- ### Download Group Policy ADM Files for All Microsoft Operating Systems - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_gpo_adm_files/ - Categories: Downloads - Article Type: Overview Download Group Policy ADM Files for all Microsoft Operating Systems Administrative Template files are used to populate user interface settings in the Group Policy Object Editor, enabling administrators to manage registry-based policy settings. Each successive Windows operating system and service pack includes a newer version of these . adm files. Note: In the upcoming Windows Vista and Windows Longhorn server, the . adm files will be superseded by . admx files. I will write an article about those in the near future. Previously, customers could only obtain the most recent . adm files by obtaining the latest service pack or operating system. Now, these . adm files are available directly from this page. This page provides access to each version of the original . adm files that shipped with each operating system or service pack. Each set of . adm files is included in a Microsoft Installer (MSI) package, available for download from this page. Supported Operating Systems: Windows 2000; Windows 2000 Service Pack 2; Windows 2000 Service Pack 3; Windows 2000 Service Pack 4; Windows Server 2003; Windows Server 2003 Service Pack 1; Windows XP; Windows XP Service Pack 1 File information: These are the files you can download from the d/l page. Windows Server 2003 SP1 admFiles_WindowsServer2003SP1 installs: • conf. adm, 2/22/2003 • inetres. adm, 2/18/2005 • system. adm, 2/18/2005 • wmplayer. adm, 7/18/2005 • wuau. adm, 7/18/2005 Windows XP SP2 admFiles_WindowsXPSP2 installs: • conf. adm, 7/17/2004 • inetres. adm, 7/23/2004 • system. adm, 7/17/2004 • wmplayer. adm, 7/17/2004 • wuau. adm, 7/17/2004 Windows Server 2003 admFiles_WindowsServer2003. msi installs: • conf. adm, 2/21/2003 • inetres. adm,... --- ### Download Shadow Copy Client - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_shadow_copy_client/ - Categories: Downloads - Article Type: Overview Where can I download the Shadow Copy Client? What are the system requirements for the Shadow Copy client? Shadow Copy Restore is a component of the intelligent file storage technologies in Microsoft Windows Server 2003. It enables you to prevent data loss by creating and storing shadow copies of files and folders on your network at predetermined time intervals. Before a client computer can access shadow copies, you must install the Shadow Copy Client. The operating systems that require the Shadow Copy Client include: Windows XP Windows 2000 (SP3 and higher) System Requirements Supported Operating Systems: Windows 2000 Service Pack 3, Windows XP, Windows 98SE Windows Installer : To install this msi package you need Windows Installer 2. 0 or higher. You can download it from one of the following locations: Windows Installer 2. 0 Redistributable for Windows 98 SE Windows Installer 2. 0 Redistributable for Windows 2000 Download the Shadow Copy Client (488kb) For Clients Running Windows XP From the client computer, click the Download File link to start the download, then do one of the following: To start the installation immediately, click Open. To copy the download to your computer for installation at a later time, click Save. For Clients Running Earlier Versions of Windows To use Shadow Copies of Shared Folders on a client computer running a version of Windows earlier than Windows XP, you must install the shadow copy client software on both the client running the earlier version of Windows, and the server running Windows Server... --- ### Easily Identify Computer Name on Windows 2008 Server Core - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/easily-identify-computer-name-on-windows-2008-server-core/ - Categories: Windows Server 2008 - Article Type: How To   In Windows Server 2008, one of the installation methods available is server core. A core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. Server core installation does not include the traditional full graphical user interface (GUI). Read more about Server Core on my "Understanding Windows Server 2008 Server Core" article. If you are planning to deploy Windows Server 2008 - server core installations in your network I would strongly advise you to use the following tip.   In all my server core installations I change the default prompt to something like this:   This customized command prompt will enable you to quickly and easily identify the name of the server you're currently logged on to. This is quite useful in scenarios where you've got many servers connected to one physical monitor, and you switch between the various displays by using a KVS switch. Another usage for this customized command prompt is when you use RDP or Terminal Services to remotely log on to the server, and since all you get is a command prompt window, it's hard to tell to which server you're currently connected. So, how can you get this cool command prompt? Quite easily, but you do need to edit the server's registry. Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to... --- ### Enable Remote Desktop on Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/enable_rdp_windows_2003/ - Categories: Networking - Article Type: How To With Remote Desktop on Windows XP Professional or Windows Server 2003 (in Windows 2000 Advanced Server, this feature was called Terminal Services in Remote Administration Mode), you can have access to a Windows session that is running on your computer when you are at another computer. Read What's Remote Desktop in Windows XP/2003? for more info. To enable the RDP service on Windows Server 2003 follow the next steps: Go to Control Panel. Click System. Go to the Remote tab. Select the "Allow users to connect remotely to this computer" box. Click Ok. BTW, next time you need to open the System applet you can do so much faster: instead of clicking your way to the System icon, you can just right click My Computer and choose Properties, or even better - press the Windows Logo key on your keyboard and then press Pause/Break at the same time. Note: In order for the RDP connection to work you need to allow TCP port 3389 connections to the server. You also need the name and password of one of the local (or domain) administrators, because this type of connection is only allowed for administrative accounts. Related articles You might also want to read the following related articles: Add a new RDP Listening Port to Terminal Server Change Terminal Server Listening Port Download RDP 5. 2 Download Remote Desktop Web Connection for XP SP1 Install Remote Desktop Web Connection on Windows XP Install Remote Desktop... --- ### Errors After Moving Exchange Stores to a Different Disk - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/errors_after_moving_exchange_stores_to_a_different_disk/ - Categories: Exchange Server - Article Type: Overview Errors after moving Exchange Stores to a different disk in Exchange 2000/2003? When you install Exchange 2000/2003 on your server the setup program installs and configures Exchange in a default directory under the C:Program FilesExchsrvr folder. Although this is the default setup, in order to facilitate better hard disk performance and redundancy it is best that the Exchange stores and log files are NOT placed on the System partition (i. e. C:). In order to learn how to move the databases and/or log files please read Move Exchange Stores to a Different Disk. However, after moving the store and/or the log files to a different location, if you accidentally (or deliberately) delete or rename the old MDBdata folder path after you move the Exchange database you may experience the following symptoms on your Exchange 2000/2003 server: Messages that have attachments that are encoded by using the Microsoft Outlook Rich Text formatting or the Transport Neutral Encapsulation Format (TNEF) content type build up in the SMTP local delivery queue on the destination Exchange Server computer, while messages that have attachments that use the MIME body part of the Application/MS-TNEF content type encoding are successfully delivered to the recipient. In some cases, Exchange cannot send messages that have attachments to another routing group or to the Internet, or are received without the attachment. The attachment icon is present, but when you try to open the attachment, you experience one of the following behaviors: If you use Microsoft Outlook as a... --- ### EXIFS Access to Alternate PF Trees in Exchange 2003 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/exifs_access_to_alternate_pf_trees_in_exchange_2003/ - Categories: Exchange Server - Article Type: Overview In Exchange 2000, how can I provide access to Alternate Public Folder Trees via EXIFS? Although Exchange 2003 allows multiple Public Folder roots (Create new PF Tree on Exchange 2003), current Outlook clients don't, so you can't display these other structures in Outlook. However, you can view them via the Web with the following format: ​http://exchange server/public folder root or via EXIFS (virtual drive M) just like you'd look at any shared folder on the network. Exchange Server 2003 does not expose drive M by default. In order to access Alternate PF Trees via EXIFS in Exchange Server 2003 you'll need to re-create drive M. In order to re-create drive M on Exchange Server 2003 follow instructions on the Restore the M Drive Mapping in Exchange 2003 page. This will re-create drive M for you. After restoring drive M, to make your PF available via EXIFS do the following: On your Exchange server open Windows Explorer and go to your M:\ drive. Drill down to your new Public Folder Tree. Right click it and choose Sharing. Share it with any name you want, and give it the proper share access control permissions. Note: You can also share any sub-folder you want. You do not have to share the PF Tree itself if you don't want to. Click OK and see if it's visible through Network Neighborhood or through a NET SHARE command on the server. Users will be able to access this new PF like it was a regular shared... --- ### Find your Microsoft Passport Password - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/find_your_microsoft_passport_password/ - Categories: Windows Client OS - Article Type: How To How do I find out my MSN Messenger (Microsoft Passport) password, in case I forgot it? You've used your good old Windows XP computer for over 2 years now. Suddenly something breaks, and you're forced to reinstall your operating system. You know you've got important stuff on the machine, and you want to make sure you'll be able to use the same settings on the newly installed machine. One of the small but nagging things include the logging information for instant messaging services such as ICQ or MSN Messenger. After using the same computer for that long, it's more than likely that you forgot the password you've used to create your MSN (Microsoft) Passport account, and since your computer does not prompt you for that password, you have no clue as of what it is right now. One thing you can do is to ask Microsoft Passport's account services for a new password. You can read more about it on the Change your Microsoft Passport Password page. Note: This page does NOT contain information on how to hack/crack your MSN Passport password, nor does it contain any illegal items. It also does not offer any help in cracking someone else's password. One of the coolest tools I came upon a long time ago was MessenPass by Nir Sofer (NirSoft): MessenPass is a password recovery tool that reveals the passwords of the following instant messenger applications: MSN Messenger Windows Messenger (In Windows XP) Yahoo Messenger (Versions 5. x and 6. x)... --- ### Get the Windows Experience Index (WEI) score of a Vista Network Computer - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/get-windows-experience-index-score-of-vista-network-computer/ - Categories: Windows Vista - Article Type: How To Microsoft defines the Windows Experience Index as the following: "The Windows Experience Index is a new feature built into Windows Vista that is designed to help you better understand how well Windows Vista and other software will perform on your PC. Your computer, running Windows Vista, is assigned a rating number called a "base score" that is achieved by measuring the capability of your computer's hardware configuration. This base score rating will help you to more confidently buy additional hardware, programs, and software that are matched to your computer's base score. ". One of the cool new tools introduced with Windows Vista is the Windows System Assessment Tool. The System Assessment Tool runs a series of tests and then rates your computer on a scale ranging from 1 through 5 (with 1 representing the lowest possible score and currently 5 representing the highest possible score). The Tool actually rates several subsets of your computer system, including processor, memory, primary hard disk, graphics, and gaming graphics. It then uses a special algorithm to calculate an overall Windows System Performance Rating. The ratings are displayed as Windows Experience Index or WEI score. Unfortunately, some software requires your WEI score to be above a certain threshold for all the features to work, features like the new Vista Aero theme. BTW, you can artificially raise the WEI score of your computer if you really need to show off to your friends (although I might think of better ways to show off, that's... --- ### Hide a User from the Welcome Screen in Windows XP - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/hide_a_user_from_the_welcome_screen_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I hide a user from the Welcome Screen in Windows XP? To hide a user's account from the welcome screen in Windows XP: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList Create the following entry: Username: REG_DWORD (Where Username is the username of the user you want to hide from the Welcome Screen). Assign a value of 0. Close Registry Editor. Reboot. This will prevent the user from showing up on the welcome screen. You will need to press CTRL-ALT-DEL twice at the logon screen to get the old W2K logon style box to be able to logon to the account you've hidden. Adding a username and setting the value to 1 will cause that user, such as Administrator, to show up on the Welcome screen as well. --- ### How to Install Active Directory on Windows 2000 (for idiots) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how_to_install_active_directory_on_w2k_for_idiots/ - Categories: Active Directory (AD) - Article Type: How To I'm a Lamer! How do I install Active Directory on my Windows 2000 Server? You can configure your server as a Domain Controller manually (as covered in How to Install Active Directory on W2K), but if you don't have the time, skill, brains or will to do it manually, it can still be done with just a few mouse clicks. Dynamic Host Configuration Protocol (DHCP), Domain Name Service (DNS), and DCPROMO (the command-line tool that creates DNS and Active Directory) can be by using the Windows 2000 Configure Your Server Wizard. Even though it's all done automatically, you still need the following: A NIC The TCP/IP protocol An NTFS partition with enough free space A network connection (to a hub or to another computer via a crossover cable). An Administrator's username and password The Windows 2000 Server (or Advanced Server) CD media (or at least the i386 folder) This article assumes that all of the above requirements are fulfilled. See my Active Directory Installation Requirements page for more info. Note: This article does NOT assume you have a working brain, or that you can use it correctly. If you think you really want to know how this thing works, please read the How to Install Active Directory on W2K page instead... To configure your server as a Domain Controller Press Ctrl-Alt-Del and log on to the server as administrator. Leave the password blank. When the Windows 2000 Configure Your Server page appears, select This is the only server in my... --- ### IIS 4.0 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/iis_40_patches/ - Categories: Patches and Service Packs - Article Type: Overview IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to protect your computer from IIS related attacks, and remember that even though you're using Windows 2000 Professional - you're still vulnerable to those attacks (IIS is installed by default on all W2K platforms, but not on XP and Windows Server 2003). Note: Since IIS is such a potential threat to your system, and since my site is usually NOT security oriented, I cannot guarantee your computer's safety even if you do follow my recommendations. I cannot be held responsible for anything that might happen to you, your computer, or the information stored on it.   I might compile a list of IIS security issues later this month. but till then you can read the TechNet Security Webpage and search for the IIS related issued, and also the Microsoft Security page IIS 4. 0 Required Patches IIS 4. 0 is an optional upgrade to Windows NT 4. 0, and can be installed on the machine by installing the Windows NT 4. 0 Option Pack. Internet Information Server (IIS) 4. 0 installed on a Windows NT 4. 0 SP6a Server box requires the following security-related patches: July 2004 MS04-021 : Security Update for IIS 4. 0 (841373) May 2003 MS03-018 : Cumulative Patch for Internet Information Service (811114) This patch is a cumulative patch that includes the functionality of all security patches released for IIS 4. 0 since Windows NT 4. 0 Service Pack 6a: 327696 MS02-062: October 2002 Cumulative Patch for Internet... --- ### Install Hebrew on Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_hebrew_on_windows_xp/ - Categories: Windows XP - Article Type: How To How can I install and use Hebrew fonts on my Windows XP computer? Windows XP (and 2000/2003/Vista) has the built-in ability to display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. To see Hebrew fonts on your Windows XP computer you MUST perform the following tasks precisely in the order listed here. Not doing so might cause your computer to display ? ? ? ? ? ? ? instead of Hebrew fonts, especially in Office applications. Unlike W2K, it is SAFE and it is OK for you to install Hebrew language support during the GUI setup phase of Windows XP. Note: You might also want to read the following articles: Install Hebrew on Windows 2000 Install Hebrew on Windows Server 2003 Install Hebrew on Windows Vista NEW! Install Hebrew on Windows 7 Option 1: During the GUI phase of the setup process After rebooting from the text-based setup phase, the computer will display the setup GUI, and the fist prompt you'll get is the Regional Settings customization window. You can install Hebrew support at this phase by pressing the Customize button and going to the Languages tab. Select the "Install files for complex script and right-to-left languages" check-box. A warning message will appear. Press Ok. Warning: You must now press Apply! ! ! Setup will copy the necessary files from the installation point. You can now go to the Regional Options tab and select Israel in the Location drop-down list, and Hebrew in the... --- ### Install Windows Server 2003 CA - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/install_windows_server_2003_ca/ - Categories: Security - Article Type: How To How can I install the Certificate Authority (CA) service in Windows Server 2003? Windows Server 2003 can be used as a Certificate Authority (also known as CA) to provide extended security by offering support for Digital Certificates. Digital Certificates can be granted to users based upon their roles and group membership. For example, a regular user that wants to enroll for a certificate will only be allowed to enroll for a specific set of Digital Certificates, while another user that is a member of the Domain Admins group will be allowed to enroll for a different set of certificates that can be used for a variety of functions, including Recovery Agents, IPSec, SSL and so on. User Digital Certificates are valid for different purposes, including: Allowing data on disk to be encrypted Protecting e-mail messages Proving the user's identity to a remote computer and more. Note: There may be scenarios where a company might opt to use 3rd party issued Digital Certificates instead of creating their own, especially when that company's users will be dealing with out-of-the-company users, exchanging encrypted e-mail messages between themselves and these outside users, or when using SSL on a secured web site. This is because the outside users might not be willing to trust the company's internal CA. Step 1: Install the IIS Service In order to install the CA you will first need to install IIS on a Windows Server 2003 computer. On Windows Server 2003 IIS is not installed with... --- ### How can I install Intelligent Message Filter on Exchange Server 2003 Service Pack 2? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/installing_imf_with_exchange_2003_sp2/ - Categories: Exchange Server - Article Type: How To Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users.  IMF used to be a stand-alone tool downloadable from Microsoft, however now IMF is an integral part of Exchange Service Pack 2 (SP2). As usual, one should read the Microsoft Exchange Server 2003 Service Pack 2 Release Notes before installing SP2. This is more important in regards to the installation and configuration of the Intelligent Message Filter in SP2. Download Exchange 2003 SP2 (109mb) After downloading Exchange Server 2003 SP2 you can now install it on your machine. However, make sure you read the following information before doing so: Uninstall IMF v1 first! Exchange 2003 SP2 setup program will check for the presence of IMF v1 on the server, and if found it will display an error that the older IMF v1 needs to be uninstalled first before SP2 (with IMF v2 bundled in) can be installed. Important note: There seems to be a bug in the SP2 setup program that will sometimes, under specific circumstances, to ignore the fact that IMF v1 is in fact installed on the machine, and will proceed without warning. In this case, IMF v2 will not work. Make sure you remove IMF v1 prior to installing SP2. If there was no IMF v1 prior to installing SP2 The Microsoft Exchange Server 2003 Service Pack 2 Release Notes has a note about the need to manually create... --- ### Junk E-mail Reporting Tool for Microsoft Office Outlook 2003/2007 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/junk_email_reporting_tool_for_outlook_2003/ - Categories: Exchange Server - Article Type: Overview Microsoft has released a nice tool that allows us to report any spam e-mail message that has bypassed the built-in Junk Mail filter, the Exchange-side Intelligent Message Filter (IMF) or any other spam filter that you're using. After installing the tool, if you choose to send that e-mail for Microsoft for analysis, select the e-mail in Outlook and then click the junk e-mail button on your tool bar. You will see a pop-up window asking whether you want to report the selected e-mail to Microsoft and its affiliates. When you click “Yes” to confirm that you’d like to report the selected e-mail as junk e-mail, the junk e-mail will be deleted from your Inbox and sent to FrontBridge, a Microsoft company, for analysis to help them improve the effectiveness of our junk e-mail filtering technologies. The e-mail you're about to send is submitted for your review, and after a close inspection you can safely send it away. After a few moments you'll get a confirmation e-mail: "Why would I want to send Microsoft anything? " you're probably asking yourself. The reason to do so would be because by sending your own unique spam samples you will help Microsoft analyze how spammers evolve, what means they employ in order to bypass today's anti-spam filters, and thus keep the battle between "good and evil" (i. e. anti-spam tools and the spammers that we all hate). Since the e-mail you're sending is spam and does not contain any confidential or personal information it's safe to... --- ### Manage your Network with ManageNet - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/managenet/ - Categories: Windows Client OS - Article Type: How To ManageNet network administration tool - more info It is estimated that 85% of a network administrator's time is spent rolling out the latest service packs, mapping drives, configuring folder redirections, configuring Internet connections, setting Microsoft Office paths, creating new Outlook profiles, deploying new printers, configuring proxy setting and tightening security policies. ManageNet uses a graphical user interface to simplify desktop administration, eliminate redundant tasks and reduce other time-consuming activities. Network administrators can manage Windows clients and applications more efficiently, precisely choose settings to apply to computer or user and deliver the configuration for each user as they logon and while they working. By automating various redundant administrative activities, desktop management resources can be minimized by as much as 50%. Benefits for Users and Administrators More Productive Users - Personalized desktops—unique configurations of security policies, preferences, drive mappings, printers, Internet, and applications settings—can be applied to PCs based on ManageNet's Actions, so everyone on the network has the familiar interface and set of resources they need, when and where they need them. Simplified Administration - By centralizing the process of desktop management and enabling remote troubleshooting and repair in many cases, ManageNet keeps users working with less intervention required by administrators. Reduced Costs - ManageNet control your network using unique LoginScript engine during the network logon process to reduce the number of menial management tasks and to eliminate redundant administration so your staff can concentrate on more strategic activities and reduce your total cost of ownership. The benefits of a centralized... --- ### Microsoft launches Hyper-V beta 1 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-launches-hyperv-beta-1/ - Categories: Virtualization - Article Type: News Completely unexpected Microsoft launches the first beta of its upcoming hypervisor Hyper-V (formerly codename Viridian / Windows Server Virtualization). This first beta, initially planned for the end of this year, was later postponed to February 2008, in sync with the global launch of Windows Server 2008 (formerly known as "Longhorn"). But Microsoft put a great effort to launch the beta ahead of time. Some people say that this was in conjunction with the VMware launch of VI 3. 5... The new build unlocks several critical features customers were looking for: Quick Migration and support for host-level HA (up to 16 nodes) Out-of-the-box integration with Windows Server 2008 Server Manager (no more separate installation) Support for Windows Server Core edition (allowing a smaller hypervisor footprint) Support for Volume Shadow Service (VSS) (which implies capability to perform VMs live backup at host level) Support for 64GB virtual RAM per VM Support for multiple virtual NICs per VM Support for 4 virtual SCSI controller per VM ntegration of VHD manipulation tools With this beta Microsoft is providing support for Windows Server 2003 and 2008 guest OS, as well as Novell Linux guests (thanks to the special agreement the two companies have on interoperability). Customers and partners today can download Windows Server 2008 RC1 Enterprise with the beta version of Hyper-V to evaluate the new technology, test applications and plan future consolidation, business continuity and high-availability projects. The final version of Hyper-V remains on target for release within 180 days of the RTM of Windows... --- ### Monitoring Exchange and Finding Common Problems - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/monitoring_exchange_server_and_finding_common_problems/ - Categories: Exchange Server - Article Type: How To Monitoring Exchange and Finding Common Problems Introduction In our daily jobs as Systems Engineers and Administrators we come across systems that are in need of our help... and may even be asking for it. Beyond checking your Event Viewer’s, this article looks at some common issues you might find on the server you are running Exchange on. As a Network and Systems Consultant, I see many times that Exchange itself is not the problem, but the fact that Exchange is installed on a sub-par system. Either the server hardware isn’t enterprise class, or the minimum hardware requirements weren’t addressed. In this article, we will take a look at checking the fundamentals of your Exchange System and look at a real world production server suffering from a common problem. Note: This article is published with permission from www. msexchange. org Make Sure Exchange is Strong Would you drive a truck on a sheet of glass over a bridge? No. Then why would you run an enterprise class server operating system hosting a mission critical application such as e-mail and messaging on an antiquated desktop? Don’t think it happens? It happens more than you think. In the past 5 years alone I have worked with many teams of experts weeding out these exact systems and replacing them with what should have been there before... a system that was thought out and built strong. Now, you don’t have to cluster everything you run, but it would help if your enterprise level servers... --- ### New Generation of Microsoft Certifications - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/new_generation_of_microsoft_certifications/ - Categories: Windows Server - Article Type: Overview New Generation of Microsoft Certifications On the October 25th 2005 Microsoft has announced a new generation of certifications that are more specific and targeted to reflect the detail of what professionals do, and to prove their expertise. The new generation of certifications is designed to reflect today's business landscape and the needs of people working in many diverse IT job roles. Read more about the new certifications: The New Generation of Microsoft Certifications The new generation of certifications are made of 3 series: The Technology Series: Proven Core Technical Skills on Microsoft Technologies The Technology Series certifications enable professionals to target specific technologies and distinguish themselves by demonstrating in-depth knowledge of and expertise in the broad range of technologies with which they work. Microsoft Technology Specialists are consistently capable of implementing, building, troubleshooting, and debugging a particular Microsoft technology. The Technology Series certifications: Typically consist of one to three exams. Are focused on a key Microsoft product or technology. Do not include job-role skills. Will be retired when mainstream product support for the particular technology expires. The Professional Series: Professional Skills and a Proven Ability to Perform on the Job Professional Series credentials validate a comprehensive set of skills required to be successful on the job. These skills include design, project management, operations management, and planning, and they are contextual to the job role. By validating a more comprehensive set of skills, these credentials give candidates and their hiring managers a reliable indicator of on-the-job performance. The Professional Series certifications:... --- ### Office XP SP3 Info - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/office_xp_sp3_info/ - Categories: Patches and Service Packs - Article Type: Overview Office XP Service Pack 3 (SP3) provides the latest updates to Microsoft Office XP. SP3 contains significant security enhancements, in addition to stability and performance improvements. This service pack applies to any level of Office XP. It contains all updates included in Office XP Service Pack 1 (SP1) and Office XP Service Pack 2 (SP2), and updates released after SP2. You can download the administrative version of SP3 for Office XP right here: Download Office XP SP3 (58. 9mb) This version is used to install across the network and to slipstream onto the Office CD - Office XP SP1/2 Slipstreaming. Or get the minimal required files right HERE (16. 4mb, local installation files only) Read more about Office XP Deployment Included in this Service Pack Office XP SP3 addresses the issues described in the following Microsoft Security Bulletins: Microsoft Security Bulletin MS02-044: Unsafe Functions in Office Web Components (Q328130) Microsoft Security Bulletin MS02-059: Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure (Q330008) Microsoft Security Bulletin MS02-067: E-mail Header Processing Flaw Could Cause Outlook 2002 to Fail (331866) Microsoft Security Bulletin MS03-003: Flaw in how Outlook 2002 handles V1 Exchange Server Security Certificates could lead to Information Disclosure (812262) Microsoft Security Bulletin MS03-035 : Flaw in Microsoft Word Could Enable Macros to Run Automatically (827653) Microsoft Security Bulletin MS03-036: Buffer Overrun in WordPerfect Converter Could Allow Code Execution (827103) Microsoft Security Bulletin MS03-037: Flaw in Visual Basic for Applications Could Allow Arbitrary Code Execution (822715) Microsoft Security Bulletin... --- ### Overview of Windows Server 2003 - Web Edition - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/overview_of_windows_server_2003_web_edition/ - Categories: Windows Server 2003 - Tags: Editor's Pick - Article Type: Overview Microsoft Windows Server 2003, Web Edition is a part of the Microsoft Windows Server 2003 family. It is an easy-to-deploy, easy-to-manage server operating system that is optimized to be a complete Web hosting package. Windows Server 2003, Web Edition includes the following features: Internet Information Services (IIS) 6. 0, which provides a robust architecture for building and publishing secure Web applications. IIS is a software services that support Web site creation, configuration, and management, along with other Internet functions. Internet Information Services include Network News Transfer Protocol (NNTP), File Transfer Protocol (FTP), and Simple Mail Transfer Protocol (SMTP). Revolutionary Microsoft ASP. NET, for deploying Web services and applications rapidly Remotely administered management, with an easy-to-use, task-driven, internationalized Web user interface (UI). This means that it's possible to manage one computer by an administrator working at another computer that is connected to the first computer across a network. Remote Desktop for Administration, which provides remote access to the desktop of any computer running a product in the Windows Server 2003 family. Web Interface for Remote Administration, for configuring and managing a server from a remote client, including creating and deleting Web sites, configuring network settings, setting disk quotas, managing local user accounts, and restarting the Web server. Flexibility to use Microsoft Management Console (MMC) and scripting, using Windows Management Instrumentation (WMI) for detailed control and management. MMC is a framework for hosting administrative tools called snap-ins. A console might contain tools, folders or other containers, World Wide Web pages, and other administrative items. These items are... --- ### Problem with Exchange 2003 SP2 OWA and Windows XP SP3 When Using the Jerusalem Time Zone - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/problem-with-exchange-2003-sp2-owa-windows-xp-sp3-when-using-jerusalem-time-zone/ - Categories: Exchange Server - Article Type: Overview During some of the consulting sessions that I hold with my various clients I often stumble upon things that I know (these make me happy), things that I did not know (these make me go back to my books/online resources), and things that I didn't know even existed. But sometimes I also find things that simply make me mad. So was the case with the recent bug I discovered in Windows Server 2008 - "Windows Backup Bug Prevents Israeli Administrators from Backing Up Windows Server 2008" article, and so is the following bug. It seems that if you're using Windows XP SP3 (which was released to the public earlier this year), and you have IE7 installed on the computer (which you should), and you're using the DST+2 Jerusalem time zone, AND you're using Exchange 2003 SP2 Outlook Web Access (OWA) to work with your mailbox – you will not be able to reply or forward email messages! Here are the repro details: I've used a brand new installation of Windows XP SP3 (downloaded from MSDN). My tests were performed against 2 different Exchange 2003 SP2 servers in 2 different organizations. As you know, Windows XP SP3 comes without IE7. So, I tried without installing IE7. OWA works great in IE6. I installed the latest SMIME addon from within the OWA > Options window. OWA works great. Next, I tried after installing IE7 + all available hotfixes from Windows Update. OWA works fine, however I am prompted to accept ActiveX. As... --- ### Raising Windows Server 2008 Active Directory Domain and Forest Functional Levels - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/raising-windows-server-2008-active-directory-domain-and-forest-functional-levels/ - Categories: Windows Server 2008 - Article Type: How To   When the first Windows Server 2008–based Domain Controller is deployed in a domain or forest, the domain or forest operates by default at the lowest functional level that is possible in that environment, meaning Windows 2000 Native Mode. This allows you to take advantage of the default Active Directory features while running versions of Windows earlier than Windows Server 2008. When you raise the functional level of a domain or forest, a set of advanced features becomes available. Make sure you read my "Understanding Windows Server 2008 Active Directory Domain and Forest Functional Levels" article for more info about domain and forest function levels. Note: In the Windows Server 2008 version of DCPROMO, when you install a new domain in a new forest, you are prompted for the function level of your choice. Therefore, it may very well be that a brand new installation of Active Directory will not hold the "default" domain or forest function levels.   Raising Domain Function Levels To activate new domain features that available in Windows Server 2008, all domain controllers in the domain must be running Windows Server 2008. After this requirement is met, the administrator can raise the domain functional level to Windows Server 2008. Important Raising the domain functional levels to Windows Server 2008 is a nonreversible task and prohibits the addition of Windows 2000–based or Windows Server 2003–based Domain Controllers to the environment. Any existing Windows 2000–based or Windows Server 2003–based Domain Controllers in the environment will... --- ### REG Command in Windows XP - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/reg_command_in_windows_xp/ - Categories: Windows Client OS - Article Type: Overview What can the REG. EXE command do in Windows XP? REG. EXE does almost everything Regedt32 can do, but it allows you to do it from a command line. This can be useful when you want to quickly make a change without opening Regedt32, and it also allows you to embed registry operations in logon scripts and batch files.   Resource Kit to add this tool. You can download REG. EXE from here: Download Free Windows 2000 Resource Kit Tools You can use REG. EXE by giving it a command from a short list of options (query, add, update, delete, copy, save, backup, restore, load, and unload), followed by one or more optional parameters that the command you specify will interpret. Querying keys REG query allows you to query a single key for a single value, or a range of keys for all their values. This provides you with a quick way to check whether a key has the value you think it does, or in fact whether it has any values associated with it at all: REG QUERY KeyName KeyName FullKey Machine - Name of remote machine, omitting defaults to the current machine (Note: the REG. EXE help syntax is wrong. You should use \\ and NOT \ as written! ) Only HKLM and HKU are available on remote machines FullKey - in the form of ROOTKEY\SubKey name ROOTKEY SubKey - The full name of a registry... --- ### Remove the M Drive Mapping in Exchange 2000 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/remove_the_m_drive_mapping_in_e2k/ - Categories: Exchange Server - Article Type: How To How can I remove the IFS Mapping for Drive M in Exchange 2000 Server? MS KB 305145 has more info: This step-by-step article describes how to remove the Exchange 2000 Installable File System (IFS) mapping from drive M. The IFS provides access to the Exchange 2000 information store through Win32 file system APIs. The Exchange 2000 IFS supports the ''. 'backofficestorage' namespace. For compatibility and convenience, Exchange 2000 also supports a normal drive namespace, by default M:'. The IFS was introduced in Exchange 2000 as a way to access the Exchange 2000 information store by using the standard file system interface. However, in some situations, you may experience issues when you use the IFS. Because of these issues, Microsoft recommends that you remove the drive M mapping to the IFS, unless you are using the IFS for specific reasons. The ''. 'backofficestorage' namespace remains available even when you remove drive M or other drive letter mappings. Some reasons to keep the IFS mapping in place are: If you use Microsoft FrontPage Extensions for Web Storage System Forms. For development using the drive M mapping. If you use Microsoft Internet Explorer to search drive M as a file system. If any of the preceding items describe your Exchange 2000 environment, Microsoft recommends that you keep the mapping in place on servers the where these conditions exist. To remove the drive M mapping To remove the drive M mapping, use the script that is provided here: - 2kb) After you download and extract... --- ### Reset Mailbox Language - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/reset_mailbox_language/ - Categories: Exchange Server - Article Type: How To How can I reset the language for the folder names inside my mailbox? In Exchange 2000/2003 and Outlook 2000/XP/2003, when one of the following conditions takes place, the default language names of the folders inside the user's mailbox might change: You move a mailbox from one Exchange server to another Exchange server. You create a new mailbox. In both cases, the client's regional settings and locale will set the folder's language, but only if the proper language was also configured on the Exchange 2000/2003server itself. Some clients (for example, Outlook 2000 or older) do not allow the names of certain standard folders (for example, the Inbox) to be changed, but this is a client restriction and not a limitation of Exchange. In these cases, you could use a different client (such as the older Exchange client) to modify the folder names. Outlook 2002 clients can run a command line switch to rename the default folders to the language of the client. To do this, click Start, click Run, and then type ​Outlook. exe /resetfoldernames Outlook will start normally and the default folder names will be in the language of the client. You can also plant a registry tweak to all computers on your network by using a simple . REG file and running it with the REGEDIT /S switch: ​Windows Registry Editor Version 5. 00 "ResetFolderNames"=dword:00000001 Copy the text and paste it into a file. Save the file as (for example) RESETFOLDER. REG. For Outlook 2003 change... --- ### Runas Command Failure - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/runas_command_failure/ - Categories: Windows Client OS - Article Type: Overview Why do get errors when trying to run programs or MMC snap-ins with the RUNAS command? As a security best practice, it is recommended that you do not log on to your computer with administrative credentials. Running your computer as a member of the Administrators group makes the system vulnerable to Trojan horses attacks and other security risks. It is recommended that you use a regular, non-administrative user account to perform routine tasks, including running programs and visiting Internet sites. When it becomes necessary to perform administrative tasks on the local computer or in Active Directory, use RUNAS to start a program using administrative credentials. RUNAS allows you to accomplish administrative tasks without exposing your computer or data stored in Active Directory to unnecessary risk. However, Windows 2000/XP/2003 administrators might get error messages when trying to run the RUNAS command. Here are some of the reasons for these errors: Service not started or disabled If you're trying to run the RUNAS command yet fail without any specific error message, good chance is that the service was stopped or even set to be disabled on that computer. To start the service follow the next steps: Go to the Services applet in Administrative Tools (or click Start, then Run, and type "services. msc" (without quotes) and click OK). Check to see if the "Secondary Logon" service is listed as "Automatic" or "Disabled". If the service is indeed set to start automatically (as it should) then just right-click it and select "Start". [adkit zone="content-block"... --- ### Securing RDP/Terminal Services Communications - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/securing_rdp_communications/ - Categories: Networking - Article Type: How To When Microsoft Windows 2000 was released many years ago, administrators were blessed with new functionality called Terminal Services which easily allowed remote administration of a server. The functionality or the concept was actually not new. Administrators of Windows operating systems as well as other platforms are plenty familiar with the concept of remote administration. For Windows and some many other platforms, remote administration was accomplished through the use of 3rd party tools which meant the purchase of an extra remote administration tool license for every server that is deployed. While the licensing costs generally weren’t terrible, especially for what is gained in return (ease of remote administration, working from home in your pajamas while smoking a cigar like I’m doing now), the costs could add up quickly for infrastructures with large numbers of servers to remotely administrate. What was new, however, was that Windows 2000 introduced a remote administration tool that was built into the OS with no bolt-on licensing costs needed. The tool was called Terminal Services and other than a few minor quirks that it had such as software installation problems in Terminal Services, drive letters not dynamically added/removed without a logoff/logon, not a true console0, etc. , it was a God send and still is to this day.   The release of Windows XP brought us an overhauled remote administration tool. The Terminal Services client was still a viable tool but the version in Windows XP called Remote Desktop Connection was, well, cooler. In typical... --- ### Setup an SSH Server in Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/setup-ssh-server-vista/ - Categories: Windows Vista - Article Type: How To The free, open source application Cygwin can be used in combination with OpenSSH to turn Windows Vista into an SSH Server. Cygwin is an extremely robust application and one of the many uses of Cygwin is an SSH Server. This tutorial will demonstrate how to setup Cygwin and consequently OpenSSH on Windows Vista. Among many other things, OpenSSH can then be used to transfer files and setup a SOCKS proxy to encrypt your browsing session. The first step is to download OpenSSH.  OpenSSH is bundled in an application called Cygwin. Download Cygwin from the project homepage.  Cygwin is the setup. exe file on the project homepage. Move the executable file into C:'Cygwin'setup. exe Right-click on setup. exe and choose Create Shortcut. Drag the shortcut to your desktop and double-click the shortcut and start Cygwin. The following is the first installation screen for Cygwin. Click Next. Leave the default choice as Install from Internet and click Next. Change the directory to C:'cygwin if it is not already populated and leave the default selections as All Users and Unix/binary and click Next. On the Select Local Package Directory Prompt. Change the directory to C:'Cygwin if it is not already populated and click Next. Leave your Internet connection as Direction Connection and click Next. Choose any mirror and click Next. Unfold the Net tab and then double-click on OpenSSH. It will take a few minutes for Cygwin to install your necessary packages depending on the speed of your Internet connection and the mirror you... --- ### Testing RPC over HTTP/S Connection - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/testing_rpc_over_http_connection/ - Categories: Exchange Server - Article Type: How To How can I test RPC over HTTP/S on Exchange 2003? RPC over HTTP/S is a cool method for connecting your Outlook 2003 client to the corporate Exchange Server 2003 from the Internet or WAN, without the need to establish a VPN session to the corporate LAN and/or needing to open many ports on your corporate firewall. The only ports you'll need to open on your firewall are TCP 80 and, if using SSL, TCP 443. The process of setting up the RPC over HTTP/S connection is outlined in the Setting up RPC over HTTP/S on a Single Server article. After configuring RPC over HTTP/S you'll want to test it in order to make sure your users can connect to your Exchange server. The methods of testing your configuration are outlined below. Testing in the LAN The easiest method of quickly testing your newly configured RPC over HTTP/S configuration is by connecting an Outlook 2003 client found on a different computer in your local area network (or LAN) to your Exchange 2003 server. Such a configuration can be quickly accomplished by simply creating a new Outlook profile on the client test computer, and then running Outlook on that computer. However, I found out that for some reason, local area connections to the Exchange server tend to use regular RPC connections (i. e. TCP/IP) rather than RPC over HTTP/S, thus you'll actually use the "regular" method of Outlook-Exchange method of connection, and in fact won't be testing your newly configured RPC... --- ### Vista Blocked File Protection Control - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/unblock-files-windows-vista/ - Categories: Windows Vista - Tags: Editor's Pick - Article Type: How To, Overview Windows Vista is known to be much more picky about the file types it allows the user to use than previous operating systems. Some file types are considered to be a potential threat, and therefore are blocked. As a general – this is good, but sometimes it can just drive you nuts. Windows XP Pro also used to block many potentially harmful file types (read my "How can I enable transfer of MP3 files through Microsoft Windows Live Messenger? " article), but here, with Vista, the file range is extended to even more file types. Some of these *might* be harmful, and I'm not saying that they should always be trusted. That's why you're *supposed* to have an updated Anti-Virus and Anti-Malware program running and scanning your computer at all times (Lamer note: You do have one, don't you? ). But my point is that if you know what you're doing you could very well disable this protection and trust your AV program to do the scanning for you. Consider this example – You're using Windows Live Messenger to chat with your friend, when she sends you a zipped file containing some stuff you need. All this is good and well, but for some reason, Windows Vista now thinks that the . ZIP file is dangerous and should be blocked. It seems that the content of the zipped file is unimportant, Vista will block this file type because it was received from an un-trusted source – via Windows Live Messenger. This warns users... --- ### Using Outlook 2003 to Recover Deleted Items - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/using_outlook_2003_to_recover_deleted_items/ - Categories: Exchange Server - Article Type: Overview Can I recover deleted items through Outlook 2003 in Exchange 2003? Can I recover hard-deleted items through Outlook? Of course you can. Deleted items that are deleted via OWA or the regular Outlook client can be easily recovered, as long as the items that were deleted we not purged from the Exchange store. See Using OWA 2003 to Recover Deleted Items for more info. Set retention times First, lets see how long an item is kept in the store after a user deletes it: On your Exchange server open Exchange System Manager (ESM) and navigate to your server object. Right-click the server object and select Properties. In the Limits tab notice the value in the "Keep Deleted Items" box. In our case it's 7 days. This means that a user has 7 days to recover his or her deleted items. After that - it's restore from media time! Note that the higher you make this value, the bigger the store gets, as deleted items take a longer time to be purged from the store. Note: Purging deleted items from the store does NOT make the store any smaller. For that you need to Defragment Exchange 2000/2003 Server Databases Offline. Use Outlook to recover deleted items The good news is that you can recover deleted items both from the regular Outlook client and from OWA. In order to recover a deleted item via Outlook we need to first open Outlook (Duh). Then, click on the Deleted Items folder. Click on... --- ### Installing a new OS on a new VM witn Microsoft Virtual PC 2007 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/virtual_install_new_os_on_microsoft_virtual_pc/ - Categories: Virtualization - Article Type: How To If you got to this article I suppose you've already read my "Creating Virtual Machines with Microsoft Virtual PC 2007" article (if not, it might be a good time to suggest that you did). Remember, creating a VM is just equivalent to buying a new physical computer with a CPU, memory, an empty hard disk, one or more network interface cards and other peripherals. You can use that computer as a paper weight at the most unless you install an operating system on it... Allowing you to mount . ISO files instead of inserting real CDs or DVDs to the real CD/DVD player of your host machine. Therefore you do not need to physically burn the installation media, you can keep it as an . ISO file for ease of use. For instance, if you have MSDN access and have downloaded the OS you want to install, you can keep it in the . ISO format and mount that file to the VM's CD-ROM drive. Also, using VMs allows you to temporarily "freeze" the installation process and continue it in a later time. On the other hand, installing the new OS on the new VM takes longer because of the performance issues on the host machine. Installing the new OS on Virtual PC 2007 First thing to do is to boot the guest machine. Just select the VM from the list of the configured VMs and click Start. When the VM boots you can notice that it "sees" the amount... --- ### What is ASR in Windows XP and Windows Server 2003? - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/whats_asr_in_windows_xp_2003/ - Categories: Windows Server 2003 - Tags: Disaster Recovery - Article Type: Overview What is the ASR feature in Windows XP/2003? How do I use it? If you run a  Windows XP Pro or Windows Server 2003 computer and you wish to backup the system you can use a new feature called Automated System Recovery (ASR). The ASR process allows to restore the system disk (usually the C: drive) including the Windows files, all Registry settings and all user programs and data, allowing to recover a completely crashed system. To use this procedure you must be able to boot the Windows XP Pro Setup-program from the installation CD-ROM. During the restore process all data previously found on the System partition (usually C:) will be erased, then XP/2003 will be reinstalled, and the data from the ASR backup will be restored. Create the ASR backup In order to use ASR you first need to create the ASR backup. Follow these steps: Run NTBACKUP. EXE from the Run command or from the Program Files > Accessories > System Tools. When the program starts click on the ASR button to invoke it's wizard. The Wizard will start with a Welcome screen, advising that a Backup and the ASR disk will be created. Click Next. Choose a destination and filename for the ASR backup. Make sure you do NOT select A: as the destination (duh... ) nor C:, and that you have at least 2GB of free space on that partition. The "Completing the ASR Preparation Wizard" will appear. When you click Finish, the Wizard creates a... --- ### What's the Recovery Console? - Published: 2009-01-08 - Modified: 2025-02-12 - URL: https://petri.com/whats_the_recovery_console/ - Categories: Windows Client OS - Tags: Disaster Recovery - Article Type: Overview What is the Recovery Console? How can I use it? What will it help me do? If safe mode and other startup options do not work, you can consider using the Recovery Console. This method is recommended only if you are an advanced user who can use basic commands to identify and locate problem drivers and files. In addition, you must be an administrator to use the Recovery Console. Using the Recovery Console, you can enable and disable services, format drives, read and write data on a local drive (including drives formatted to use NTFS), and perform many other administrative tasks. The Recovery Console is particularly useful if you need to repair your system by copying a file from a floppy disk or CD-ROM to your hard drive, or if you need to reconfigure a service that is preventing your computer from starting properly. After you start the Recovery Console you will have to choose which installation you want to log on to (if you have a dual-boot or multiple-boot system) and you will have to log on with your administrator password. The console provides commands you can use to do simple operations such as changing to a different directory or viewing a directory, and more powerful operations such as fixing the boot sector. You can access Help for the commands in the Recovery Console by typing help at the Recovery Console command prompt. The following commands can be used with the Recovery Console: Attrib - Changes the attributes of... --- ### Windows 2000 SP4 Info - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2000_sp4_info/ - Categories: Patches and Service Packs - Article Type: Overview Windows 2000 Service Pack 4 is a well-tested collection of updates that focuses on a variety of customer-reported concerns with the Windows 2000 operating System. SP4 can be applied to Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server and Windows 2000 with Server Appliance Kit. Windows 2000 SP4 includes the updates contained in Windows 2000 Service Pack 1 (SP1), Windows 2000 Service Pack 2 (SP2), Windows 2000 Security Rollup Package 1 and Windows 2000 Service Pack 3 (SP3). Windows 2000 SP4 is a recommended upgrade. Windows 2000 Service Pack 4 (SP4) provides the latest updates to the Windows 2000 family of operating systems. These updates are a collection of fixes in the following areas: application compatibility, operating system reliability, security, and setup. Installation and download options Windows 2000 SP4 is available from the Windows 2000 Service Pack 3 CD or via free download. The Express Installation - The Express installation can be significantly faster to download than the Network installation. The Express installation detects the service pack files that are already installed on your computer. It then installs only those files that need to be updated. You must stay connected to the Internet during the installation. Typical sizes and times for the Express installation: Initial download size: 610kb Windows 2000 Professional: 15mb Windows 2000 Server Family: 27. 4mb This method of installation requires an Internet connection during installation. Download from this link: SP4 Express Installation The Network Installation - Before you install SP4 on multiple computers, see the Windows... --- ### Unable to Logon to Windows 2003 Domain Due to Windows Cannot Connect to the Domain Error - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_cannot_connect_to_the_domain_error/ - Categories: Active Directory (AD) - Article Type: Overview Some IT admins report issues with Windows XP workstations that are joined to a Windows 2003 Active Directory domain. These workstations are part of the domain, however, when a domain user tries to authenticate and logon to the domain from one of these workstations they cannot login and receive the following error message: Windows cannot connect to the domain either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear contact your System Administrator for assistance. This error is received even though the computer account for the workstation and user account for the user both exist. This or error may appear when a PC is replaced with another computer with the same computer name without first deleting the duplicate computer name from the Active Directory domain before joining the new workstation to the domain with the same duplicate name. The funny part is that the symptom may either appear immediately at the first try, or even after a few successful logons. The cause of the error is usually related to security identifier (SID) issues. Another possible cause for the error is that the computer account for the workstation was accidentally deleted from the Active Directory domain. Another common cause for the error is using Norton Ghost or any other similar disk cloning software. This happens when the administrator has cloned one XP machine and reproduced it to many other new... --- ### How to configure EIGRP on your Cisco router - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/how-to-configure-eigrp-on-your-cisco-router/ - Categories: Cisco - Article Type: How To Do you need to configure dynamic routing protocol for you network? EIGRP may be an excellent choice. It is a full-featured routing protocol that can grow as your network grows. Let's learn how to configure EIGRP in the Cisco IOS. What do you need to know about EIGRP? Before you configure EIGRP, there are some things you should know about it first. Here they are: EIGRP is the Enhanced Interior Gateway Routing Protocol. EIGRP is a Cisco proprietary routing protocol based on their original Interior Gateway Routing Protocol. EIGRP can only be used on networks where all routers are Cisco routers. The administrative distance for EIGRP is 90 and 170 for internal and external EIGRP, respectively. What features does EIGRP offer? Automatic redistribution of routes between IGRP and EIGRP. Ability to turn off and on EIGRP and IGRP on individual interfaces of the router. Fast network convergence thanks to EIGRP's DUAL algorithm (convergence is when all routers know about all the networks that every other router is offering). Incremental Updates that save network bandwidth and speed convergence. Reduced router CPU load, as compared to IGRP. EIGRP uses neighbor discovery to find and keep track of neighboring routers. Neighbor discovery uses multicast IP and is not tied to whether or not the the IP network is properly configured. EIGRP prevents routing loops on the network Supports variable length subnet masks (VLSM) Automatic Route Summarization How do you configure EIGRP in the Cisco IOS? To configure EIGRP in the Cisco... --- ### Server Virtualization, Network Virtualization & Storage Virtualization Explained - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/server-virtualization-network-virtualization-storage-virtualization/ - Categories: Virtualization - Article Type: Overview There are many types of virtualization- server, network, storage, and more. In this article, we will demystify these complex terms, explain what they can do for you, and name specific products that provide these functions. So prepare for the smoke to be cleared... What is Server Virtualization? Out of all three of the different types of virtualization discussed in this article, I believe that server virtualization is the type of virtualization you are most familiar with. When people say "virtualization", they are usually referring to server virtualization. However, they should really clarify what type of virtualization they are talking about because there are multiple types. The Wikipedia defines virtualization as "a broad term that refers to the abstraction of computer resources". Another definition, also from Wikipedia is "a technique for hiding the physical characteristics of computing resources from the way in which other systems, applications, or end users interact with those resources". With those definitions as our background, what is server virtualization? Simply put, server virtualization software allows you to run multiple guest computers on a single host computer with those guest computers believing they are running on their own hardware. By doing this, you gain all the benefits of any type of virtualization: portability of guest virtual machines, reduced operating costs, reduced administrative overhead, server consolidation, testing & training, disaster recovery benefits, and more. Examples of server virtualization products are: VMware Server, Workstation, Player, and ESX Server Microsoft Virtual PC and Virtual Server Xen Virtual Iron... --- ### How to Import Virtual PC and Virtual Server machines to VMware - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_import_virtual_server_and_pc_to_vmware/ - Categories: VMware - Article Type: How To Do you have Microsoft Virtual PC or Virtual Server machines already built? If so, now you can import them to VMware Workstation or Server with just a few clicks of the mouse? Why Import Microsoft Virtual PC / Server machines to VMware? There are a few reasons you may want to import a Microsoft Virtual PC / Server virtual machine to VMware. They are: Save time from having to reinstall operating systems – installing Windows XP, Windows 2003 Server, or Linux can easily take over an hour. If you have existing Virtual PC / Server machines, you can save a lot of time by importing those to VMware Save time from having to install 3rd party applications – perhaps you have applications installed on your Virtual PC / Server machines already. By importing these to VMware, you can save the time it would have to have to reinstall those applications. Quickly create new machines – even if a friend of yours uses Virtual PC / Server, you can save a lot of time by just copying his/her virtual machines and importing those into your new VMware system. What should I know about Importing Virtual machines? Here is a list of things you should know about importing your Microsoft Virtual machines: In previous versions of VMware, there was a separate application to perform the import but now it is built into VMware Workstation 5. 5+ and VMware Server. If you use the typical importer options, your existing virtual machine... --- ### VMware File Types Explained: VMDK, VMEM, VMSN, VMSD, VMX & More - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_vmware_files_explained/ - Categories: VMware - Article Type: Overview When using VMware Server & Workstation, you will, at some point, go to the directory where your VMware virtual machines are stored. Inside this directory, you will see a number of strange files and you will probably wonder what they are and what they do. Now, you can stop wondering and find out. Directory Listing Below, you’ll see a typical VMware directory listing of a folder where VMware virtual machines are stored.   Here is the command prompt version of the same directory listing:   In this directory, you’ll notice a number of different files types. There are log files, vmdk files, vmem files, vmsn, nvram, vmsd, and vmx files. In fact, there may be other types of files. Some of these files are very small, while others are very large. Let’s learn about each of these VMware files. Files you should know Log files – Log files are just that- a log of virtual server activity for a single virtual server. Here is an example of what a log file looks like:   Log files should be used only when you are having trouble with a virtual machine. VMDK files – VMDK files are the actual virtual hard drive for the virtual guest operation system (virtual machine / VM). You can create either dynamic or fixed virtual disks. With dynamic disks, the disks start small and grow as the disk inside the guest OS grows. With fixed disks, the virtual disk and guest OS disk start... --- ### VMware Virtual Center Benefits - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/vmware-virtual-center/ - Categories: VMware - Article Type: Overview The VMware Infrastructure package consists of 3 applications - VMware ESX, Virtual Center, and VMware Consolidated Backup. In this article, we'll learn the features of VMware's Virtual Center (VC) and what it can do for you. Features of VMware Virtual Center For those who aren't took familiar with VC, let's start off by hitting the core features of Virtual Center. They are: Centralize Management Rapid Provisioning Performance Monitoring Automation Windows Authentication to VC Virtual Resource optimization Migration of virtual machines (VMotion) High Availability (VMHA) More detail on these features can be found on the Virtual Center datasheet. What VMware Virtual Center Can Do For You Now let's talk about how Virtual Center can help you. Specifically, I want you to SEE these features, not just read about them. As everyone's company and needs are different, different features of the product will hit home with different people. What I am going to cover are the features that really hit home with me. VC provides centralized management for all VMware ESX servers. Keep in mind that VC 3. x does not control free VMware Server systems. To control VMware Server systems, you have to buy Virtual Center 2. x (which cannot control VMware ESX 3. x servers). With centralized management you get a single place to go to control all virtual servers. The more virtual servers you have, the more necessary Virtual Center becomes. Here is what the Virtual Machine Inventory screen looks like:   From this screen, you can see the... --- ### An Introduction to Network Access Protection’s Components - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/introduction-to-network-access-protection-components/ - Categories: Windows Server 2008 - Article Type: Overview Although VPN connections have been a staple of enterprise environments for many years now, security concerns have increased exponentially in recent years. Some of those concerns are related to the various federal regulations affecting IT departments, but many more of the concerns have to do with the machines from which users connect to the network. Although policies differ from one company to another, it is not at all uncommon for users to use their own personal computers to connect to the corporate VPN. One of the problems with allowing such connections is that since the company does not own the user’s personal machines, they have a limited ability to impose security standards on those machines. In the past this has been problematic, because although some companies try to impose security standards for any machine that the users use to connect to the corporate VPN, there usually hasn’t been a practical way of enforcing those standards. This is where Network Access Protection comes into play. Network Access Protection, or NAP, is a Windows 2008 security feature that allows organizations to compare a machine’s configuration to the organization’s security policy. Although there are several variations of this technique, the most commonly used form of Network Access Protection is something called VPN Enforcement. VPN enforcement works by comparing a client’s health to a network health policy requirement. If a client is found to be non compliant with the network health policy, then IP filters are used to prevent the client from... --- ### Restoring Exchange Mailbox Data Using the Recovery Storage Group, Part 1 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/restoring_exchange_mailbox_recovery_storage_group_part1/ - Categories: Exchange Server - Article Type: How To Recovery storage groups were first introduced in Exchange Server 2003.   At the time, the idea behind them was that you could restore Exchange database into the recovery storage group, and then use ExMerge to merge the data from the recovery storage group into the production database.   In Service Pack 1, Microsoft improve the process so that you no longer have to use ExMerge. If you've looked through the Exchange Management Console in Exchange Server 2007, it might at first appear that the recovery storage group feature is gone.   However, Exchange Server 2007 not only still offers this feature, recovery storage groups have been improved over the Exchange 2003 implementation.   In this article series, I will walk you through the process of using recovery storage groups in Exchange Server 2007. By far the biggest improvement to the recovery storage group feature is the fact that you can restore data from a different server.   Suppose for instance that you had in Exchange Server that suffered a catastrophic failure, and that you had a backup of the stores, but not a full system state backup. In Exchange 2003, you could rebuild the server from scratch, and there were even some techniques that you could use to get the data back, but the recovery process tended to be a bit tricky. In Exchange 2007 though, you could rebuild the server and then use recovery storage groups to restore the mailbox data even though from Exchange Server's point of view the data... --- ### Transport Rules: Adding a disclaimer - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/transport-rules-adding-a-disclaimer/ - Categories: Exchange Server - Article Type: How To Many businesses incorporate a disclaimer or footer at the bottom of their outbound messages. These disclaimers often advise as to the limitation or ramifications of using information within the message for purposes other than they were intended, or to assert ownership of creative works contained in them. While there is always a debate as to how effective these disclaimers are, many businesses use them nonetheless. Another useful purpose is for the addition of sales and marketing information to the bottom of email messages. Imagine being able to include info about your product’s latest release or other important news. With Exchange 2007 transport rules, you can accomplish this quite easily. Here, we’ll go through creating a simple disclaimer for outbound mail, then discuss some variations to make it more effective and less intrusive. Building our Transport Rule Let’s open the Exchange Management Console, and expand Organization Configuration. Under that, click on Hub Transport. In the Actions pane on the far right, click New Transport Rule to launch the Transport Rule wizard. Give the transport rule a name such as Legal disclaimer, and a comment. Ensure the Enable Rule box is checked, as in Figure 1 below, and click Next. The next screen is the Conditions screen. Select both from users inside or outside the organization and sent to users inside or outside the organization. In the bottom section, select the second link and change it to Outside, as shown in Figure 2 below. Then click Ok. This sets... --- ### Change the Default Boot Partition in Windows Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/change-the-default-boot-partition-windows-vista/ - Categories: Windows Vista - Article Type: How To With the release of Windows Vista, many users have been dual booting between Windows XP and Windows Vista. Unfortunately, the process of changing the boot operating system is not entirely intuitive. Windows Vista has a little known, but very useful tool, that allows the user to select which operating system to load when dual (or triple) booting.   (See this article for help in partitioning a hard drive) The first step is to launch Computer. Click Start and then type Computer and hit enter. Vista will automatically launch the Vista version of "My Computer. " At the top of computer, select System Properties. This will bring up the basic information about your computer. On the left panel, select Advanced System Settings. If you are prompted for an administrator password or confirmation, type the password or provide confirmation. In the System Properties dialog, click the Advanced tab in the center. In the Startup and Recovery section click Settings... In the top of the Startup and Recovery dialog, in the "System startup" you can change the Default operating system to whatever operating system you want. In this dialog you can also change the amount of time you would like to wait before launching the default operating system. Windows Vista defaults to 30 seconds which is probably more than enough time. Feel free to reduce this to a more manageable time like 8 seconds and click OK. Got a question? Post it on our Windows Vista Forums! --- ### Determining FSMO Role Holders - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/determining_fsmo_role_holders/ - Categories: Active Directory (AD) - Article Type: How To How can I determine who are the current FSMO Roles holders in my domain/forest? Windows 2000/2003 Active Directory domains utilize a Single Operation Master method called FSMO (Flexible Single Master Operation), as described in Understanding FSMO Roles in Active Directory. The five FSMO roles are: Schema master - Forest-wide and one per forest. Domain naming master - Forest-wide and one per forest. RID master - Domain-specific and one for each domain. PDC - PDC Emulator is domain-specific and one for each domain. Infrastructure master - Domain-specific and one for each domain. In most cases an administrator can keep the FSMO role holders (all 5 of them) in the same spot (or actually, on the same DC) as has been configured by the Active Directory installation process. However, there are scenarios where an administrator would want to move one or more of the FSMO roles from the default holder DC to a different DC. The transferring method is described in the Transferring FSMO Roles article, while seizing the roles from a non-operational DC to a different DC is described in the Seizing FSMO Roles article. In order to better understand your AD infrastructure and to know the added value that each DC might possess, an AD administrator must have the exact knowledge of which one of the existing DCs is holding a FSMO role, and what role it holds. With that knowledge in hand, the administrator can make better arrangements in case of a scheduled shut-down of any... --- ### Disable EFS in Windows 2000 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_efs_in_windows_2000/ - Categories: Security - Article Type: How To How can I disable EFS on Computers Running Windows 2000? To disable EFS on computers running Windows 2000, you must remove the default data recovery agent from the computer. This restriction is removed in Windows XP and Windows Server 2003 to help prevent security attacks on computers that are not members of a domain. The following procedure will show you how to use Group Policy to disable EFS for all computers running Windows 2000 in a Windows Server 2003 domain. Note: Before you remove the certificate for the default domain recovery agent, you should back up the certificate by exporting it to a file. Open the Default Domain Policy GPO. You can use Active Directory Users and Computers or the GPMC to edit the GPO. In the Group Policy Object Editor, expand Computer Configuration, expand Windows Settings, expand Security Settings, expand Public Key Policies, and then click Encrypting File System. In the details pane, right-click Administrator, point to All Tasks, and then click Export. Complete the Certificate Export Wizard to export the Administrator's EFS recovery certificate. This will export the default EFS recovery certificate for the domain to a file. Store this file on removable media such as a floppy disk, and then store the media in a secure location. In the details pane, right-click Administrator, and then click Delete. This will delete the default EFS recovery certificate for the domain. In the Certificates window, click Yes to permanently delete the certificate. Important: Deleting the EFS recovery agent for the... --- ### Disable the Guest account in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_the_guest_account_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To Do I need the Guest account in Windows XP? Can I disable it? Yes you can disable the guest account, but you shouldn't. You need it. The Guest account in Windows XP Home Edition and Windows XP Professional (when not joined on a domain) serves several special functions that relate to security and network shares. Because of its importance, you must not disable the Guest account. If you disable the Guest account, your network can have problems that include malfunctioned shares. Note: You might also be interested in Disable the Guest account in Windows 2000. To hide the guest account - On a Windows XP Home computer, or on a Windows XP Professional computer that is not a part of a domain do the following: Click Start, and then click Control Panel. Click User Accounts. Under or pick an account to change, click Guest. On the What do you want to change about the guest account page, click Turn off the guest account. The Windows XP Guest account is used in the Windows XP Home Edition and in Windows XP Professional when it is not a domain member. Windows XP - particularly XP Home - uses the Guest Account in an unexpected way. Everybody who gets onto a networked XP Home computer is automatically authenticated as a "Guest". Doesn't matter who they are, or what kind of privileges they have on their home computer, if they're connected to an XP computer, they're a Guest. If you're using your... --- ### Download Group Policy Settings Reference - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_gpo_reference/ - Categories: Downloads - Article Type: Overview This spreadsheet lists Group Policy settings described in Administrative Template (. adm) files and Security Settings that shipped with Windows Server 2003 Service Pack 1. This includes all Administrative Template policy settings supported on the following operating systems: Microsoft Windows Server 2003, Windows XP Professional with SP2 or earlier service packs, and Microsoft Windows 2000 with Service Pack 4 or earlier service packs. In addition, this spreadsheet includes the following categories of security policy settings: Account Policies (Password Policy, Account Lockout Policy, and Kerberos Policy), Local Policies (Audit Policy, User Rights Assignment, and Security Options), Event Log, Restricted Groups, System Services, Registry, and File System policy settings. Note: This does not include security settings that exist outside of the Security Settings extension (scecli. dll), such as Wireless Network extension, Public Key Policies, or Software Restriction Policies. The spreadsheet includes separate worksheets for each of the . adm files and the security policy settings that shipped in Windows XP SP2 , a consolidated worksheet for easy searching, and an Update History worksheet that lists policy settings that have been added since the Windows Server 2003 operating systems were released. Using column filters, you can easily filter the information in the spreadsheet by operating system, component, or machine/user configuration. You can also search for information by using text or keywords. Download the Group Policy Settings Reference (3. 9 mb) Related articles You may find these related articles of interest to you: Download Free Windows 2000 Resource Kit Tools Download GPMC Download... --- ### Download the full IE package - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_the_full_ie_package/ - Categories: Downloads - Article Type: Overview I want to download Internet Explorer 6 SP1 from Microsoft but I don't want to install it right away. Can I do that? Yes! First, download the IE6 SP1 setup program from HERE (481kb basic setup program. The full IE package might go as high as ~44mb depending upon your selection). This tip will let you customize the d/l parameters. Go to the folder where you've placed the above file. Open a Command Prompt (CMD) in that folder, then run the following command in the CMD window: ​ie6setup. exe /c:"ie6wzd. exe /d /s:""#E" Note: Just copy and paste the above line. Don't try to be a wise guy. Copy the damn line! I've received quite a few feedbacks about the accuracy of this tip, and always they got the syntax wrong. Copy and paste! Oh, and yes, this tip works for IE 6 SP1 too, and so will older IE versions. Just replace the "6" in the previous line with a "5" and so on. You can also choose to download all IE versions in one go. For example, if you choose to download the version for Win9X, the version for NT, the version for W2K, and the version for Win ME - all the files will go to one location - a folder named "Windows Update Setup Files" - and you can then burn this folder to a CD and use it to install IE on any OS version you want. Reader notes: Reader Jason Vanderhill wrote: Great... --- ### Download Windows Server 2003 SP1 Sysprep - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_2003_sp1_sysprep/ - Categories: Windows Server 2003 - Article Type: Overview Where can I download Windows Server 2003 Sysprep? The Windows Server 2003 SP1 System Preparation tool enables administrators to prepare Windows Server 2003 system images as part of an automated deployment. This tool is an updated version of the System Preparation tool that is included with Windows Server 2003. You can use the System Preparation tool to perform the following tasks in a manner that is supported by Microsoft: Prepare Windows for duplication from one computer to another computer. Change security identifiers (SIDs) and other system and configuration settings to make them unique. Configure user-specific information to be customized by the end-user when Windows starts the first time. Create images of operating systems. Automate the Windows mipetri-Setup program. Perform auditing tasks. To obtain the updated version of the Sysprep. exe program, download and install the latest version of Windows Server 2003 SP1 Deployment Tools. These tools are also available in the SupportTools folder on the Windows Server 2003 SP1 product CD. Windows Server 2003 Deploy. cab (1. 76mb) --- ### Enable Remote Assistance in XP/2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/enable_remote_assistance_in_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I enable Remote Assistance in Windows XP or Windows Server 2003? Windows XP and Windows Server 2003 install the Remote Assistance feature by default. To check your configuration: Go to Control Panel > System > Remote. You can also right-click My Computer (if the icon is shown on the desktop). Note: A faster way for opening up the System applet is to press the Windows Logo key on your keyboard and then press Pause/Break at the same time. The Allow Remote Assistance invitations to be sent from this computer box should be checked. Note: There is a difference between the default settings of Windows XP and Windows Server 2003. Make sure you get yours right. Press the Advanced button to Set the maximum amount of time invitations can remain open. The maximum is 30 days. If you want the expert user to be able to control your computer, check the Allow this computer to be controlled remotely box. Press OK. If you made any changes, press the Apply button. Press OK. You can Allow Remote Assistance invitations to be sent from this computer by using the registry: Use Regedit to navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlTerminal Server Double-click the fAllowToGetHelp Value Name, a REG_DWORD data type, and set the data value to 1. A data value of 0 will deny connections. Note: You do NOT have to restart for this change to become effective. Links Overview of Remote Assistance in Windows XP - 300546 HOW TO: Configure a... --- ### Establishing a Proper Global Catalog Placement Strategy - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/establishing-proper-global-catalog-placement-strategy/ - Categories: Active Directory (AD) - Article Type: Overview Deciding how many Global Catalog Servers to have on your network, and where to place those servers can be tricky. If there are too few Global Catalog Servers, you could cause severe performance problems or possibly a single point of failure. At the same time though, having too many Global Catalog Servers can also cause performance problems. So what’s an administrator to do? In this article, I will share with you some techniques for determining how many global catalog servers you really need. Why Are Global Catalog Servers So Important? In case you aren’t familiar with Global Catalog Servers, they are simply domain controllers that have been designated to perform the Global Catalog server role. When you create an Active Directory forest, the first domain controller in the forest is automatically assigned the Global Catalog server roll, because every forest requires at least one Global Catalog server. The Global Catalog server performs a variety of tasks, both for Windows and for Exchange. Since my primary focus in this article is Exchange Server, I don’t really want to get into the Global Catalog server’s Windows related function. I will tell you though, that if a Global Catalog server is not available, then nobody will be able to log into the domain except for the Administrator. As you can see, the Global Catalog server performs some critical functions at the Active Directory level, but its role in relation to Exchange Server is just as critical. In order for clients... --- ### EXMERGE and Hebrew Fonts - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/exmerge_and_hebrew_fonts/ - Categories: Exchange Server - Article Type: Overview How do I use EXMERGE with Hebrew fonts? EXMERGE is very useful in many scenarios, one of which is migrating mailboxes from one Exchange server to another. Examples of such operations are featured in the Delete Messages from Mailboxes by using EXMERGE and Brick Level Backup of Mailboxes by using EXMERGE articles. I won't go into details about this tool here but I do want to discuss one problem that Israeli administrators have: Whenever you use EXMERGE to migrate one or more mailboxes or Public Folders that have Hebrew fonts in their names or even in posts and items within them - after the migration process is finished, the migrated mailbox, PF or items all have gibberishes fonts instead of the Hebrew fonts on the original item. The solution is to run EXMERGE in GUI mode once, save your configuration settings and have it create a configuration file called EXMERGE. INI. You do NOT need to finish the EXMERGE process entirely, instead, you must click cancel to stop the GUI phase right after saving your configuration files. Next, you'll need to manually edit the EXMERGE. INI file and re-run EXMERGE, this time in Command Prompt mode, and force it to use the Hebrew charset. This article assumes you know what EXMERGE does and how to use it. It also assumes you have the latest version. See Download Exmerge for Exchange 2000/2003 for more info. Follow these steps: First, run EXMERGE in GUI mode with the required settings. Choose English... --- ### Finding Delegates in Active Directory - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/finding_delegates_in_active_directory/ - Categories: Exchange Server - Article Type: How To Finding delegates in Active Directory When using Exchange 2000/2003 there are very common situations where users define delegates in their mailboxes in order to let others manage their mailboxes. For example - a managers and his or her secretary (send of behalf). The problem occurs when one of the employees that was configured as a delegate (for example user A) has left the company. When user B sends a meeting request for the manager, user B will receive an NDR because user A no longer exists in Active Directory, but is still configured as a delegate for user B. In this scenario we will use 3 users: Tzahi Kolber (Tkolber) as a Manager. Daniel Petri (Dpetri) as a Manager. Krystal James (Kjames) as the Secretary. We are going to use the LDIFDE command (from the Windows 2003 Support Tools - or in the Windows 2003 CDROM). This command queries 2 attributes in the AD that can be found for every user object: publicDelegates - This attribute stores the user that was configured as a delegate (the secretary). publicDelegatesBL - This attribute stores the user his mailbox that was configured with a delegate (the manager). As a side note, you can view these attributes by using ADSIedit. msc (also from the Windows 2003 Support Tools) and navigating to the following path: Domain partition. The relevant domain (for example DC=ms,DC=com). The relevant location of the user that you are looking for (for example CN=Users). Choose the relevant user, right-click >... --- ### Hide Entries in the Boot.ini - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/hide_entries_in_the_boot_ini/ - Categories: Windows Client OS - Article Type: How To How do I hide entries in the Boot. ini file so that they're not visible when I boot my computer? You can hide additional installations of Windows from being displayed in the boot menu, but still gain access to them when you need to. To hide menu items from the Boot. ini file, so they will not be accessible: Remove the read-only attribute from the Boot. ini file. Use an editor to edit the Boot. ini file. Place the following entry above the lines you want hidden: . This will hide all entries below the heading. To restore the entry and make it accessible again, remove the line. Save the file and reapply the read-only attribute. Restart your computer. For example, the 3 bottom entries below will not be displayed or accessible the next time the system is restarted. Simply remove to gain access to this installation. timeout=30 default=multi(0)disk(0)rdisk(0)partition(1)'NT351SVR multi(0)disk(0)rdisk(0)partition(1)'NT351SVR="NT Server 3. 51" multi(0)disk(0)rdisk(0)partition(1)'NT351SVR="NT Server 3. 51 " /basevideo /sos multi(0)disk(0)rdisk(0)partition(1)'WINNT35="NT Wks 3. 51" multi(0)disk(0)rdisk(0)partition(1)'WINNT35="NT Wks 3. 51 " /basevideo /sos] C:'="MS-DOS" Another method for hiding the entries but having access to them at another time is to create a boot disk. To do so, follow these instructions: Format a floppy disk in Windows. Copy ntldr, Ntdetect. com, and the Boot. ini file to the root of the floppy disk. Edit the Boot. ini file and remove the items that you want to hide. Boot the system with this disk. This method works well but requires... --- ### How to Install Active Directory on Windows 2000 (for Lamers) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how_to_install_active_directory_on_w2k_for_lamers/ - Categories: Active Directory (AD) - Article Type: How To I'm a Lamer! How do I install Active Directory on my Windows 2000 Server? You can configure your server as a Domain Controller manually (as covered in How to Install Active Directory on W2K), but if you don't have the time, skill, brains or will to do it manually, it can still be done with just a few mouse clicks. Dynamic Host Configuration Protocol (DHCP), Domain Name Service (DNS), and DCPROMO (the command-line tool that creates DNS and Active Directory) can be by using the Windows 2000 Configure Your Server Wizard. Even though it's all done automatically, you still need the following: A NIC The TCP/IP protocol An NTFS partition with enough free space A network connection (to a hub or to another computer via a crossover cable). An Administrator's username and password The Windows 2000 Server (or Advanced Server) CD media (or at least the i386 folder) This article assumes that all of the above requirements are fulfilled. See my Active Directory Installation Requirements page for more info. Note: This article does NOT assume you have a working brain, or that you can use it correctly. If you think you really want to know how this thing works, please read the How to Install Active Directory on W2K page instead... To configure your server as a Domain Controller Press Ctrl-Alt-Del and log on to the server as administrator. Leave the password blank. When the Windows 2000 Configure Your Server page appears, select This is the only... --- ### IIS 5.0 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/iis_50_patches/ - Categories: Patches and Service Packs - Article Type: Overview   IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to protect your computer from IIS related attacks, and remember that even though you're using Windows 2000 Professional - you're still vulnerable to those attacks (IIS is installed by default on all W2K platforms, but not on XP and Windows Server 2003). Note: Since IIS is such a potential threat to your system, and since my site is usually NOT security oriented, I cannot guarantee your computer's safety even if you do follow my recommendations. I cannot be held responsible for anything that might happen to you, your computer, or the information stored on it.   I might compile a list of IIS security issues later this month. but till then you can read the TechNet Security Webpage and search for the IIS related issued, and also the Microsoft Security page IIS 5. 0 Required Patches IIS 5. 0 is the version installed by default on W2K computers. If you have SP4 for W2K (and you should), these are the patches that you need to apply to your computer: October 2004 MS04-030 : Vulnerability in WebDav XML Message Handler Could Lead to a Denial of Service (824151) May 2003 MS03-018 : Cumulative Patch for Internet Information Service (811114) This patch is a cumulative patch that includes the functionality of all security patches released for IIS 5. 0 since Windows 2000 Service Pack 3: 327696 MS02-062: October 2002 Cumulative Patch for Internet Information Services 321599 MS02-028:... --- ### Increase Internet Connection Speed in Windows XP - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/increase_internet_connection_speed_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To This tip is designed for increased BROADBAND speed in Windows XP, but it should work for 56k modems too. Note: You might also want to read the Increase Broadband Connection Speed in Windows XP/2003 tip for more info. QoS Packet Scheduler is a method of network bandwidth management that can monitor the importance of data packets and depending upon the priority of the packet, give it higher or lower priority or bandwidth levels. It's not very useful unless you're using apps which are QoS-aware or running a server, so you can gain some network overhead back by turning it off. Note: This following tip will not work on XP Home Edition. Make sure you're logged on as actually "Administrator". Do not log on with any account that just has administrator privileges. Start > Run > type gpedit. msc (not available in home version). Expand the Local Computer Policy branch. Expand the Administrative Templates branch. Expand the Network branch. Highlight the "QoS Packet Scheduler" in left window. In right window double click the "limit reservable bandwidth" setting. On setting tab check the ENABLED item. Where it says "Bandwidth limit %" change it to read 0 (ZERO). Close gpedit. msc. Effect is immediate on some systems, some need to re-boot. Links Quality of Service (QoS) Windows XP Quality of Service (QoS) Enhancements and Behavior - 316666 --- ### Install IIS on Windows XP - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/install_iis_on_windows_xp/ - Categories: Networking - Article Type: How To To install IIS 5. 1 on Windows XP Pro follow these steps: On the Start menu, click Control Panel. Double-click Add or Remove Programs. Click Add/Remove Windows Components. Click Internet Information Services (IIS) and then click Details.   In Internet Information Services (IIS), select the check boxes for SMTP Service and World Wide Web Service, and then click OK.   In Windows Component selection, ensure that the Internet Information Services (IIS) check box is selected, and then click OK to install the components that you selected. --- ### How can I install Windows Vista? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_windows_vista/ - Categories: Windows Vista - Article Type: How To How can I install Windows Vista? As a Microsoft Windows Vista support professional, one of your tasks may be to install the operating system. Step #1: Plan your installation When you run the Windows Vista Setup program, you must provide information about how to install and configure the operating system. Thorough planning can make your installation of Windows Vista more efficient by helping you to avoid potential problems during installation. An understanding of the configuration options will also help to ensure that you have properly configured your system. I won't go into that part right now (I might later this month, no promises... ) but here are some of the most important things you should take into consideration when planning for your Windows Vista installation: Check System Requirements Check Hardware and Software Compatibility Determine Disk Partitioning Options Decide on a Workgroup or Domain Installation Complete a Pre-Installation Checklist After you made sure you can go on, start the installation process. Step #2: Beginning the installation process You can install Windows Vista in several methods - all are valid and good, it all depends upon your needs and your limitations. In this manual I will focus on the simplest form of installation - directly from the Windows Vista DVD media. More on other forms of installation can be found in the Windows Vista Information, Tweaking, Tips and Tricks section. So, insert your Windows Vista DVD media into your DVD drive and reboot your computer. A black window will appear... --- ### Installing Windows XP Ntbackup on Windows Vista - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/installing_windows_xp_ntbackup_on_windows_vista/ - Categories: Windows Vista - Tags: Editor's Pick - Article Type: How To You've read my "Using Backup Status and Configuration in Vista" article (if you haven't I urge you to do so). You might have also read my "Restore Ntbackup Backups from Windows XP to Windows Vista" article, but you kept wondering why not have the full Windows XP Ntbackup functionality in your Windows Vista computer. Well, now you can. But hold on just one second. Why would I want to use an old program from an old operating system on my new and shining Vista? Well, the answer to that is probably because the all-new and shining Vista is not so shining after all. For example, let's say you want to make a backup of just one folder on your computer. A folder containing not just images, but also documents and spreadsheets from a recent job you've accomplished. How would you do that in Windows Vista? Well, you cannot, not with the native Backup Status and Configuration tool, because it will simply not allow you to select what folders you want to backup! Another issue you might have is when you'd like to copy EFS protected files, or even files that you need but are not on Vista's Backup Status and Configuration tool's list of backed-up file types. So, these are just a few reason for having the good old Ntbackup program handy. In order to install the Windows XP Ntbackup program on your Windows Vista computer you will need to following files from a Windows XP computer:... --- ### Keyboard Accelerators in Windows Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/keyboard_accelerators_in_windows_vista/ - Categories: Windows Vista - Article Type: Overview Windows Vista’s new Windows Explorer interface has many interesting keyboard shortcuts, also called “Keyboard Accelerators”. They are especially useful for repetitive tasks in Windows Explorer and might come handy when performing various file and folder actions. You can use these in addition to the regular keyboard shortcuts you’ve been used to since older Microsoft operating systems. Here are Vista’s keyboard accelerators, listed in no particular order. You might also want to read the “Keyboard shortcuts in Windows Vista”, “How can I quickly open a Command Prompt on a folder in Windows Vista? ” and “How can I quickly copy a file or a folder's path in Windows Vista? ” articles for some more tricks. Note: I do not know why the Vista design team chose to do so, but many of the following keyboard accelerators are ONLY available when you use the right-hand side details pane in the Windows Explorer view, and NOT in the left-hand side tree view. Note: Some of these tips are also usable in older Microsoft operating systems such as Windows XP and Windows Server 2003. File or folder properties Method 1 – in a new window - Hold the ALT key while double-clicking on a file or folder in the right-hand side pane window to view the Properties window for that object. The new window is identical to what you get when you press ALT+ENTER while the file or folder is selected. Method 2 – as a hovering balloon - Hover your mouse cursor... --- ### Managing Windows 2008 Server Core Local Settings - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/managing-windows-2008-server-core-locally/ - Categories: Windows Server 2008 - Article Type: How To A Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. A server running a Server Core installation supports the following server roles: Active Directory Domain Services (AD DS) Active Directory Lightweight Directory Services (AD LDS) DHCP Server DNS Server File Services Print Services Streaming Media Services Internet Information Services (IIS) Windows Virtualization In Windows Server 2008, Server Core installation does not include the traditional full graphical user interface (GUI). Therefore, once you have configured the server, you can only manage it locally at a command prompt, or remotely using a Terminal Server connection. A third management option is to manage the server remotely using the Microsoft Management Console (MMC) or command-line tools that support remote use. A Server Core installation provides these benefits in three ways: By reducing the software maintenance required (less updates, etc... ) By reducing the management required By reducing the attack surface To accomplish this, the Server Core installation option installs only the subset of the binary files that are required by the supported server roles. It takes about 1 GB of disk space and +/- 100 MB memory footprint (varies per server core role). The following list is a compilation of some of the most useful commands allowing you to either locally or remotely manage a Server Core installation. You can use this as a quick reference guide, but as always, reading the full server help... --- ### Cleaning your Computer from Malware with the Microsoft Malware Removal Starter Kit - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-malware-removal-starter-kit/ - Categories: Security - Article Type: How To Every day, viruses, spyware, and other malware are triggered by employees, potential adversaries and/or malicious users. Some are sent to you by e-mail, others attempt to invade your computer after surfing to malicious websites or running macros that contain viruses. As an IT professional focused on security, the first step toward containing the spread of malware is to understand the various technologies and techniques that malware authors can use to attack your computer. However, it is also important to know that the majority of threats come from malware that targets the user rather than the computer. If a user with administrator-level user rights can be tricked into launching an attack, the malicious code has more power to perform its tasks. Such an attack can frequently cause more damage than one that has to rely on a security hole or vulnerability in an application or the operating system. How Does Malware Get In? Malware uses many different methods to try and replicate among computers: E-mail - E-mail is the transport mechanism of choice for many malware attacks. Phishing - Phishing attacks try to trick people into revealing personal details such as credit card numbers or other financial or personal information. Removable media - Including floppy disks, CD-ROM or DVD-ROM discs, USB drives, and memory cards, such as those used in digital cameras and mobile devices. Internet downloads - Malware can be downloaded directly from Internet Web sites such as social networking sites, serial/keygens/hacks sites and p2p file sharing... --- ### How can I mount the Exchange 2000/2003 database when the E00.log is missing and I receive events 9518 and 455? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/mount_exchange_database_when_e00log_is_missing/ - Categories: Exchange Server - Article Type: How To You may receive the following error message when you try to mount a mailbox or public store: An internal processing error has occurred. Try restarting the Exchange System Manager or the Microsoft Exchange Information Store service, or both. ID no: c1041724 In the Application event log, you may also receive following events. Event Type: Error Event Source: ESE98 Event Category: Logging/Recovery Event ID: 455 Date: 3/18/2001 Time: 5:14:22 PM User: N/A Computer: SERVER1 Description: Information Store (2376) Error -1811 (0xfffff8ed) occurred while opening log file D:exchsrvrMDBDATAE000xxx. log. Event Type: Error Event Source: MSExchangeIS Event Category: General Event ID: 9518 Date: 3/18/2001 Time: 5:14:22 PM User: N/A Computer: SERVER1 Description: Error Current log file missing starting Storage Group /DC=COM/DC=COMPANY/CN=CONFIGURATION/CN=SERVICES/CN=MICROSOFT EXCHANGE/CN=MICROSOFT/CN=ADMINISTRATIVE GROUPS/CN=FIRST ADMINISTRATIVE GROUP/CN=SERVERS/CN=SERVER1/CN=INFORMATIONSTORE/CN=FIRST STORAGE GROUP on the Microsoft Exchange Information Store. There might be a few reasons for these errors: You might be running an Anti-Virus program on the Exchange server and that program might not be properly configured. Read article KB245822 for more info on how to properly configure your Anti-Virus software on a computer running Exchange server. If the Anti-Virus Quarantine option is enabled on the Exchange server and the anti-virus is not configured according to article KB245822. If your Anti-Virus software is configured to scan x:Program FilesexchsrvrMDBDATA it might think that the “E00. log “ contains a virus, or that the file itself is the virus, therefore it will automatically quarantine the E00. log and cause the Exchange services to crash. In order to solve these errors you... --- ### New Security Features in Exchange 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/new_security_features_in_exchange_2003/ - Categories: Exchange Server - Article Type: Overview What are the new security features found in Exchange Server 2003 in comparison to Exchange 2000? Exchange Server 2003 is much more secure "out of the box" than Exchange 2000 was. Here is a list of some of the new features found in Exchange Server 2003: OMA Browse disabled by default (global) Exchange 2003 includes the new OMA (Outlook Mobile Access) feature. However, although installed by default, OMA is in fact disabled by default. The setting to enable/disable OMA Browse is actually set during ForestPrep. Exchange 2003 ForestPrep will not enable OMA Browse by default. Exchange 2003 ForestPrep/Reinstall will keep it enabled if it was already enabled. This means that OMA Browse WON’T be enabled when running ForestPrep to upgrade from Exchange 2000, but WILL remain enabled when running ForestPrep to upgrade from an earlier Exchange 2003 build. You can find OMA Browse settings in Exchange System Manager (ESM), under Global Settings -> Mobile Services -> Properties. POP3, IMAP4 and NNTP services default to disabled (per server) On a new Exchange 2003 server install, POP3, IMAP4, and NNTP will be set to disabled. On upgrades and reinstalls, the current state of the service is preserved. To enable these protocols go to Services in Administrative Tools and set the protocols startup type to Automatic, then start the services. Basic Authentication for POP3 and IMAP4 is enabled by default (per virtual server instance) Basic Authentication is enabled on POP3 and IMAP4 virtual server instances (VSIs). There is a special case for upgrading... --- ### Overwriting Mailbox Store Policy Limits - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/overwriting_mailbox_store_policy_limits/ - Categories: Exchange Server - Article Type: How To Overwriting Mailbox Store Policy limits in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of users in the Exchange Organization. Setting limits on the mailboxes help control the database size and plan for efficient backup, restore and maintenance tasks (read Calculating Storage Space in Exchange for more info). General mailbox limits can be set in 2 easy places - Store properties and Store Policies. Read Setting Mailbox Limits and Working with Store Policies for more info. These settings, when applied, will enforce limits on all the mailboxes in that store (or many stores if set by using policies). Note that in order to set mailbox limits over 3GB you will need to manually edit the information in AD. The UI will not let you specify these sizes. Read Setting Mailbox Limits over 2GB for more info. However, if you have Mailbox Store settings in place or Mailbox Store Policies up and running and effecting many stores, you might still want to exclude specific users from these limits. The best method of excluding these mailboxes will be by putting them in a separate store, and configure higher limits on that store. However in some scenarios this is not possible (for example - when using Exchange Server 2000/2003 Standard edition or SBS, where only one Mailbox Store is possible). Therefore we need to overwrite the mailbox limits for specific users. Setting Mailbox limits on the user account properties in Active Directory Users and Computers (ADUC)... --- ### Problems with Exchange 2003 Installed on Domain Controllers - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/problems_with_exchange_2003_installed_on_domain_controllers/ - Categories: Exchange Server - Article Type: Overview Why is it NOT recommended to install Exchange Server 2003 on a computer that is also a Domain Controller? There are a few issues you should be aware of before installing Exchange Server 2003 on a computer that is also configured as a Domain Controller. The server must NOT be a cluster. Exchange 2003 clusters co-existing on Active Directory servers is not supported by Microsoft. Installing Exchange 2003 and Active Directory on the same server has a significant performance impact. The server must be a Global Catalog server (not just a DC). DSAccess/DSProxy/Cat will not load-balance or fail-over to another DC/GC. Avoid the use of the /3GB switch, otherwise the Exchange cache might monopolize system memory. Additionally, the number of user connections should be very low, therefore the /3GB switch should not be required. All services run under LocalSystem so there is a greater risk of exposure should a security bug be found (e. g. a bug in AD which allows an attacker to access the AD will also allow them to access Exchange, and vice-versa) If Exchange administrators will be able to logon to the local server. Because they have physical console access to a DC, potentially they can elevate their permissions in the AD. It may take approximately 10 minutes for the server to shutdown. This is because the AD service (LSASS. EXE) shuts down before the Exchange services, and DSAccess will go through several timeouts before shutting down. The workaround for this issue is to manually stop the... --- ### Quickly Copy Error and Display Messages - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_copy_error_and_display_messages/ - Categories: Windows Client OS - Article Type: How To How can I quickly copy error messages and other type of messages in Windows 2000/XP/2003? Did you ever find yourself staring into your computer screen and see that long, hard to understand error message? Did you ever need to copy that loooong error or information text found in one of Windows' error/warning/information windows? Did you ever want to copy a command's output directly into your clipboard, and later to paste it into a different program or search engine (such as Google, TechNet etc. )? If you've answered yes to any of these questions (and we all do) then you'll love the following tips: Copying Error / Warning / Information / Confirmation windows Try this nifty trick: When faced with the error message window, click on the window's title bar to highlight it. I've used Active Directory Sites and Services and created a new site, which generates an information message: Next, press CTRL + C, just like you do when you want to copy a text string or a file. Now, open Notepad. exe from the Run menu, and paste the message by using CTRL + V. Run tell your friends about how great this tip is... :-) Copying a Command's Output to the clipboard We all know that you can easily direct a command's output to a text file by using the ">" character: ​ipconfig /all > c:ipsetting. txt However, although this can be very useful when searching for a string or when documenting a setting, if you only need... --- ### Quickly Find Used IP Addresses - GUI - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly_find_used_ip_addresses_gui/ - Categories: Networking - Article Type: How To You can also find the used IP Addresses on your network by use of GUI tools. There are many tools that can do that, but I prefer 2 nice, small and most important - free - tools: Net World Scanner Small, free and simple - this tool will list all IP addresses on a given subnet (even remote ones). It will also list the NetBIOS name of the computers, and if any shares are present, double-clicking a computer will list the shares on that computer (providing you have the right access permission - this is not a hacking tool). You can also create a shortcut to the tool and in the Target box add /subnet:w. x. y to quickly scan a specific subnet. Download it from (156kb). TCP Net View Small, free and useful on local networks. It will list computer NetBIOS names, IP addresses, MAC addresses and remarks, plus will export to a test file. Download it from or from THERE (33kb) FastResolver Another cool method to quickly resolve LAN IP addresses is by using this nifty tool by Nir Sofer: FastResolver is a small utility that resolves multiple host names into IP addresses and vice versa. You can simply type the list of IP addresses or host name that you want to resolve, or alternatively, you can specify IP addresses range that you want to scan. For local network, FastResolver also allows you to get the MAC address of all IP... --- ### Registration of NetBIOS Names - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/registration_of_netbios_names/ - Categories: Networking - Article Type: Overview MS KB 119495 article  has more info: Names registered by the WINS server can be divided into three groups: Computer Name Domain Name Other/Special Names Each WINS Client actually registers its name with the WINS Server three or four times. Note: The MS-DOS clients that ship with Windows NT version 3. 5 (LAN Manager version 2. 2c client for MS-DOS and Microsoft Network Client version 3. 0) provide support for WINS resolution, but not registration. Several special NetBIOS names are also registered to maintain and retrieve browse lists. Names listed here are indicated by "Name(xx)" name followed by the hex value (xx) and padded with spaces to the 16th byte. Registered Computer Names: '' This name is registered for the WINS Client Workstation name. '' This name is registered for the Messenger Service on the WINS. Client: '' Network monitoring utility (group name, registered when running netmon) This name is registered for the Network Monitoring Agent service and will only appear if the service is started on the system. If the computer name is not a full 15 characters, the name will be padded with plus (+) symbols. '' Network monitoring agent (unique name, registered when remote agent is started) '' This name is registered for the Network Dynamic Data Exchange (NetDDE) services and will only appear if the NetDDE services are started on the system. By default, under Windows NT version 3. 5, the NetDDE services are not automatically started. '' This name is registered for the Server Service on the... --- ### Reset Nickname and Automatic Completion in Outlook XP - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/reset_nickname_and_automatic_completion_in_outlook_xp/ - Categories: Exchange Server - Article Type: How To How to reset the Nickname and Automatic Completion cache in Outlook XP? Outlook 2002 maintains a nickname list that is used by both the automatic name checking and the automatic completion features. The nickname list is automatically generated as you use Outlook. If the nickname cache is corrupted, Outlook may not be able to identify recipients, may offer incorrect recipients when automatically completing the e-mail address, or may send the message to the wrong person. Use the steps in the following section to reset the Outlook 2002 nickname cache for both Microsoft Windows 2000 and Microsoft Windows Millennium Edition (Me). Quit Outlook. Start Windows Explorer. On the Tools menu, click Folder Options, and then click the View tab. Under Advanced Settings, click to select the Show hidden files and folders check box. Click OK. Click Start, point to Search, and then click For Files or Folders. In the Search for Files or Folders box, type *. NK2 in the File Name box. In the Look In box, click to select your local hard disk. Click Search Now. Right-click the . NK2 file with the name of the profile that you want to reset, and then click Rename. Rename the file to profilename. bak, and then press ENTER. Quit Windows Explorer. Restart Outlook. Outlook will generate a new nickname cache. Use the steps in the following section to reset the Outlook 2002 nickname cache for both Microsoft Windows NT 4. 0 and Microsoft Windows 98: Quit Outlook. Start Windows Explorer. On the Tools menu, click... --- ### How can I run the Windows Server 2003 SP1 Adminpak.msi on Windows Vista RTM? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/running_win_2003_adminpak_on_vista_rtm/ - Categories: Windows Vista - Article Type: How To Installing the Adminpak. msi will install all of the management tools that are needed to administer Windows 2000, Windows XP Pro and Windows Server 2003 computers and network. Adminpak. msi has a few versions, and the latest one is for Windows Server 2003 SP1. Read more about Adminpak. msi on the Download Windows 2000 Adminpak. msi, Download Windows 2003 SP1 Adminpak. msi, Download Windows 2003 R2 Adminpak. msi and Extract Specific Tools from Adminpak. msi articles. However, right now there is still no Adminpak. msi for Windows codenamed Longhorn Server available, and beta versions of Vista prevented you from installing the Windows Server 2003 Adminpak. msi on them. As Windows Vista is released to manufacturers (RTM) and to the public during the beginning of January 2007, the lack of the right Adminpak. msi will cause system administrators to have to continue running Windows XP SP2 workstations in order to allow them to control and administer their networks. Although I am 100% positive that Microsoft will come up with a solution pretty quickly, for now, if you want to use the Windows Server 2003 SP1 Adminpak. msi on your Windows Vista computer, you will need to do the following: Install the Windows Server 2003 SP1 Adminpak. msi on Vista RTM. Once it is installed you will need to register the DLLs needed for the various snap-ins manually from an elevated command prompt. Copy the following text and paste it into a CMD file (something like adminpak_vista. cmd): @echo off set filelist=adprop. dll azroles. dll azroleui. dll ccfg95. dll set filelist=%filelist% certadm. dll certmmc. dll certpdef. dll certtmpl. dll set filelist=%filelist% certxds. dll cladmwiz. dll... --- ### Share Calendars with Local Users using Internet Publishing` - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/share-calendars-local-users-internet-publishing/ - Categories: Exchange Server - Article Type: How To Microsoft Office Outlook 2007 provides you with a comprehensive time and information manager. Users can share their calendars with other users by using Exchange Server, but because this action requires you to use a Microsoft Exchange Server 2000/2003/2007 account, it may not be suited for home users or small offices lacking a local Exchange server. Outlook 2007 has improved calendar sharing using Office Online. You can share your calendar with everyone, or with only designated people, by publishing your Internet Calendars to Office Online. You can publish and share your calendars with others by publishing them to a WebDAV server. This is useful if you want to share calendars and availability information with others, but do not use a software application such as Exchange. The server that you are publishing a calendar to must support the World Wide Web Distributed Authoring and Versioning (WebDAV) protocol. WebDAV is an extension of HTTP (HTTP (Hypertext Transfer Protocol): Protocol that is used when you access Web pages from the Internet. Outlook uses HTTP as an e-mail protocol. ) that enables you to create and modify documents on a Web server. Your server administrator or Internet service provider (ISP) can tell you if WebDAV is supported on the server you want to use. Note: An ISP is a business that provides access to the Internet for such things as electronic mail, chat rooms, or use of the World Wide Web. Some ISPs are multinational, offering access in many locations, while others are limited... --- ### Three Steps to the Initial Configuration of your Windows 2008 Server After Installation - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/three-steps-to-the-initial-configuration-of-your-windows-2008-server-after-installation/ - Categories: Windows Server 2008 - Article Type: How To When Microsoft created Windows Server 2008, one of their many goals was to simplify the deployment process. In fact, you can perform a manual server installation with just a few mouse clicks. One of the side effects to such a minimalist approach to the installation process though, is that you may find yourself having to do quite a bit of work after the installation completes, just to prepare your server for use. I’m not talking about installing antivirus software and things like that; those types of tasks are a given. What I’m talking about are things that you might have taken for granted in Windows Server 2003. In this article, I will show you some post installation tasks that you might need to perform. Adjust the Local Security Policy The very first thing that I recommend doing after the installation completes is to adjust the server's local security policy.   As you probably know, Windows Server 2008 was designed to be secure by default.   As such, the machine's local security policy is already populated with various settings, especially related to your password.   The problem that I experienced in my own organization is that these default settings were very different from the settings that I like to use on my servers, and tended to be a bit disruptive.   That being the case, I recommend reviewing the machine's local security policy immediately after the installation completes, and making any necessary changes. You can access the machine’s local security policy by... --- ### Understanding VPN Remote Access Mechanism - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/understanding-vpn-remote-access-mechanism/ - Categories: Windows Server 2008 - Article Type: Overview What is a Virtual Private Network (VPN)? A VPN, or Virtual Private Network, is a group of two or more computer systems, typically connected to a private network, that communicates securely over a public network (typically the Internet). VPNs may exist between an individual machine and a private network (client-to-server or remote access) or a remote LAN and a private network (site-to-site). Site to site VPNs involve the use of dedicated VPN hardware at each remote site. Remote access VPNs however, utilize a central site VPN concentrator and a software VPN client. The client is installed on the users' desktop or laptop computers and enables the users to establish a secure, encrypted tunnel to the office network. A VPN connection extends the boundaries of the physical network. Computers that gain access to a VPN can potentially access all the resources of the private network as if they were physically connected to it. This allows for workers, consultants, external vendors and offshore support to connect to the corporate network from any spot on earth, and perform their job remotely. The number of concurrent VPN connections is only limited by the public network bandwidth and the performance capabilities of the VPN server/appliance. VPNs provide encryption and additional security measures to ensure that only authorized users have access to the network and its data. Traffic is encrypted in both directions while it travels the public network. Since VPN is a secure method for allowing remote users access to a private... --- ### Using OWA 2003 for Storing Files - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using_owa_2003_for_storing_files/ - Categories: Exchange Server - Article Type: Overview Can I enable users to store / upload files in their mailboxes through Outlook Web Access (OWA) in Exchange 2003? This cool tip was first published by Sami Khoury on the Microsoft Exchange Team Blog. Yes, although when users learn this trick they will soon start to upload ALL their crap to their mailboxes, and you will probably need to either implement mailbox quotas, or, if already using them, forcibly prevent users from crossing their quota limit. In Windows 2000/2003 support has been added to a term called “web folders”, where you can browse the files and folders on a website in exactly the same way you browse your local disk. The underlying transport for web folders is called DAV, and Exchange 2000/2003 also supports and hooks itself to this interface. By connecting a client computer running Windows XP for example to a Windows Server 2003 computer running Exchange Server 2003, a user can send out HTTP requests to the server and if all is set up right, receive a window in which he or she can graphically browse their mailbox and folders. In order to do so you must first configure your server to accept HTTP connections. This is done by default, as Exchange Server 2003 is installed on top of IIS and uses the WWW service for the OWA interface. Just make sure you can access OWA from your client machine, and preferably configure it to use SSL (read Configure SSL on OWA). Next, assuming you use the... --- ### Installing Ubuntu 6.10 as a Virtual Machine - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_installing_ubuntu_as_virtual_machine/ - Categories: Virtualization - Article Type: How To For those of you new to the idea of virtualization, virtualization is the nesting of "sub-operating systems" within a host operating system.   More specifically, virtual operating systems, better known as virtual machines, allow the end user to leverage the power of the host PC to explore other operating systems.   With virtualization, a user can run Linux inside of Windows, Windows inside of Linux, Linux inside of Linux, or Windows inside of Windows.   A nested operating system has access to all of the components of the host operating system including: USB ports, wireless cards, parallel ports, firewire, etc. This tutorial will provide instructions on how to nest Ubuntu Linux 6. 10 Edgy Eft into Microsoft XP using only free software. In addition, I will demonstrate how to fully install Ubuntu Linux 6. 1 and how to set up a shared folder so you can copy files between Windows and Linux. I would recommend having at least 512MB of RAM and 4GB of hard disk space available to complete this process. Getting Started The first step in the tutorial is to download and install VMware Player. VMware player is a free download, and the installation is very straight forward. Download VMware Player from the VMware homepage. After you download and complete the installation of VMware Player, navigate to your "My Network Places" and then to "View Network Connections. " You will notice the addition of at least two network connections: the VMware Network Bridge and the VMware Network Adapter. These additions will allow... --- ### What's CIDR? - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/whats_cidr/ - Categories: Networking - Article Type: Overview The Classless Inter Domain Routing (CIDR) standard is already in effect and most newer routers supports it. In a few years it is likely to be the way IP addressing is handled. It is already becoming common for ISP and major providers to use this scheme. The old Classfull IP Addressing scheme provided for Class A, B and C networks: Class type Starting bits for the first octet How many networks per Class? How many hosts per network? Range of the first octet Class A 0 126 (2^24)-2=~16 Million 1-126 127=Loopback Class B 10 2^14=16384 (2^16)-2=~65000 128-191 Class C 110 2^21=~2 Million (2^8)-2=254 192-223 Class D 1110 - - 224-239 Class E 1111 - - 240-255 The default Subnet Masks for these networks are: Class type Number of bits used for the Network ID Number of bits used for the Host ID Default Subnet Mask Class A 8 24 255. 0. 0. 0 Class B 16 16 255. 255. 0. 0 Class C 24 8 255. 255. 255. 0 The problem with such a scheme is that we are bound to blocks of IP addresses and if we don't need all of them (for example if a small company would need 100 computers they would still have to use a class C network) or if we need more than we can get (for example if a medium sized company needed 1000 computers per network they couldn't use a class C network - they'd need a class B network) we can do nothing about it. The inefficiencies... --- ### Windows 2000 SP4 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2000_sp4_patches/ - Categories: Patches and Service Packs - Article Type: Overview Required Patches Windows 2000 Server/Advanced Server with Service Pack 4 requires the following security-related patches:Make sure you read Internet Explorer 6. 0 SP1 Patches and IIS 5. 0 Patches before you go on. Internet Explorer 6 Service Pack 1 Download IE 6. 0 + SP1 October 2005 MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706) MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) MS05-044 : Vulnerability in the Windows FTP Client Could Allow File Transfer Location Tampering (905495) August 2005 MS05-043 : Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423) MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587) MS05-041 : Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591) MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) July 2005 MS05-036 : Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214) June 2005 MS05-033 : Vulnerability in Telnet Client Could Allow Information Disclosure (896428) MS05-032 : Vulnerability in Microsoft Agent Could Allow Spoofing (890046) MS05-031 : Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458) MS05-030 : Cumulative Security Update... --- ### Windows Millennium (ME) Patches - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/windows_me_patches/ - Categories: Windows Windows Millennium (ME) Patches No one will help you, no one will support you, no one will ever hear you cry! The best patch to this sorry-looking, miserable, ill-fated, bugged, problematic and sick operating system is to format your hard disk and install a fresh copy of Windows XP Pro (Home Edition if you must). Even Windows 98 SE is a better choice (As Microsoft themselves say, and as support for this Joke-OS is virtually non-existent). No, an upgrade is not an option. Format your HD and get done with it. Required Patches If you really must, Windows ME requires the following security-related patches: Make sure you read Internet Explorer 5. X and 6. 0 Patches and Internet Explorer 6. 0 SP1 Patches before you go on. August 2005 MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) July 2005 MS05-037 : Vulnerability in JView Profiler Could Allow Remote Code Execution (903235) MS05-036 : Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214) June 2005 MS05-032 : Vulnerability in Microsoft Agent Could Allow Spoofing (890046) MS05-030 : Cumulative Security Update in Outlook Express (897715) MS05-026 : Vulnerability in HTML Help Could Allow Remote Code Execution (896358) May 2005 MS05-024 : Vulnerability in Web View Could Allow Remote Code Execution (894320) April 2005 MS05-019 : Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066) MS05-018 : Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859) MS05-016... --- ### How to configure IPSEC encryption with the Cisco IOS (site to site VPN tunneling) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how-to-configure-ipsec-encryption-with-cisco-ios/ - Categories: Cisco - Article Type: How To The OSPF dynamic routing protocol is probably the most popular LAN routing protocol today. OSPF can scale to the largest LANs but can also start out small. While OSPF can be complex to configure, its basic configuration isn't difficult. Let's learn how to configure OSPF in the Cisco IOS. What do you need to know about OSPF? IPSEC VPN Configuration in the Cisco IOS is not an easy task. For even experienced IT Pros, if you have never configured a Cisco IOS VPN, attempting to configure it can be frustrating and complex. In this article, we will look at a working Cisco IOS IPSEC VPN configuration and dissect the important parts to help you understand this very useful configuration. What is an IPSEC VPN? IPSec (or IP Security) offers methods to authenticate and encrypt IP traffic as if traverses a network. By doing this, that traffic can remain secure in transit. VPN (or virtual private networks) are created when network traffic is tunneled through another network. In our case, we are using IPSec to encrypt the VPN tunnel. A site to site VPN tunnel is just a VPN tunnel that is, usually, permanently connected and used to connect two networks through another network (usually through the Internet). The Cisco router IOS can be used to create a site to site VPN tunnel using IPSec. You could connect a Cisco IOS router to another router, a Cisco PIX, Cisco ASA, or other brand of router/firewall. You should note... --- ### Solarwinds Read-Time NetFlow Analyzer - Free Download - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/solarwinds-read-time-netflow-analyzer-free-download/ - Categories: Cisco - Article Type: Overview So many network performance tools tell you that you have too much traffic here or there but then don't go the next step and tell you what that traffic is and where its coming from. In the past to find out the answer to this, you would have to take a protocol analyzer, put it on your network, configure port mirroring on a switch, and then try to analyze what that traffic was. It doesn't have to be so complex or expensive. Solarwinds Free Real-Time NetFlow Analyzer can help (click here to download it now). What is NetFlow and how can it help you? NetFlow is a patented Cisco router feature that provides detailed information about what types of traffic is going through an IOS router, where that traffic is coming from, and where it is going to. This could be as simple as seeing that "57% of your traffic on this router's Serial interface is HTTP". Or, it could be more complex and you might find that PC with IP address 1. 2. 3. 4 is sending 1500kb of Skype traffic on port 5678, to the Internet, and that is what is maxing out your Internet T1. In fact, NetFlow can even get more complex than that. The Cisco Router itself doesn't tell you any of this with NetFlow. What the Cisco router does is to forward that NetFlow data to a NetFlow Analysis computer. Thus, you need a NetFlow application. What is the Solarwinds Free Real-Time NetFlow Analyzer? ... --- ### Top 10 VMware Performance Tweaks - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/virtual_increase_vmware_performance/ - Categories: VMware - Article Type: Overview With VMware Server, you run virtual guest operating systems inside a host operating system. Because you are running multiple operating systems on a single server, you can imagine that the performance of that host system will be pushed to the maximum. You need to get every ounce of performance you can out of your system. In this article, you will be given 10 ways to increase performance on your VMware server. Note that these 10 ways are in no particular order. 10. Use VMware Tools When you load the VMware tools for Windows or Linux, you get a number of benefits. First off, you can now have SVGA resolution instead of just standard VGA. This also increases graphics performance on the virtual machine. Next, the mouse between the host and guest are now synchronized. No longer do you have to press Ctrl-Alt to ext the guest operating system. Mouse performance is also increased. Finally, you can cut and paste between operating systems. These tools are easy to install. Inside the VMware management interface, once the virtual machine is booted, go to VM -> Install VMware Tools, like this: 9. Defrag Your Virtual Disks Just like any other operating system, over time, a disk will become fragmented. Virtual machines are no different. The time that it takes for a disk to become fragmented depends on what data is being added to and removed from the virtual machine hard drive. Periodically, you should use a program like Diskkeeper, PerfectDisk,... --- ### Top 20 VMware Keyboard Shortcuts - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/virtual_vmware_keyboard_shortcuts/ - Categories: VMware - Article Type: Overview Pointing and clicking is great but you can save a lot of time by knowing the keyboard shortcuts used by VMware. In fact, in some cases, you must know the right keys to push to do what you need to do. Let's learn more... What can you do with Keyboard Shortcuts? So what can you do with these keyboard shortcut keys? Here is a list of some of the more important functions: Ungrab your mouse from being synced with the virtual machine and allow you to control it in the host again (assuming no VMware Tools are installed) Switch between virtual machines Leave full screen mode Send Ctrl-Alt-Del to the virtual machine only (and not to the host machine) VMware Keyboard Shortcuts you should know There are some required keyboard shortcuts you need to know just to use VMware. Then there are other keyboard shortcuts that you must know. Here's our list: F11 switches to full-screen mode and back to normal mode Ctrl-Alt-Insert sends a Ctrl-Alt-Delete to the VMware Guest OS Ctrl-Alt is also used for - exiting full screen mode Ctrl-Alt-Enter Expands the current VM into full-screen. If you have a number of VMs, this sequence will also move you between virtual machines Ctrl-Alt-Tab switch between VMs when the mouse is grabbed Ctrl-Tab switch between VMs when the mouse is not grabbed but VMware is the active window Ctrl-Alt is used to exit a Virtual machine from having control of your mouse and return your mouse... --- ### What is the Best Performance Monitoring Application for VMware ESX Server? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/what-is-the-best-performance-monitoring-application-for-vmware-esx-server-vizioncore-vcharter/ - Categories: VMware - Article Type: Opinion As you know, VMware ESX Server and the Virtual Infrastructure Client does have some basic performance monitoring tools. While these built-in tools may look "fancy", once you start using them in a production environment, you will quickly find that you need more. I caution you that you want to make sure that you find a performance monitoring application that is VMware ESX / VMware Infrastructure specific - more generic but well known performance monitoring tools like Cacti, NetIQ, or Microsoft MOM just won't do the job. So what is the best performance monitoring tool for VMware ESX Server? Let's find out... How can vCharter help you monitor Performance? After having looked around for performance monitoring applications for my production VMware ESX Server farm, I believe I have found what I believe is the best performance monitoring application for VMware ESX Server. That application is Vizioncore's vCharter. But what is vCharter and how can it help you? Before I offer my opinion, let me offer the description that Vizioncore (the creator of vCharter) uses to describe vCharter. According to Vizioncore, "vCharter is the only comprehensive monitoring tool for VMware ESX Server that goes "under the hood" to provide a real-time and historical monitoring and performance control solution for your virtual environments. " In general, I would have to agree with that. To me, the key word there is "comprehensive". While you may be able to find other performance packages for VMware ESX Server, I think that you will find... --- ### Learn the Basics of Journaling in Exchange Server 2007 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/learn-basics-journaling-exchange-server-2007/ - Categories: Exchange Server - Article Type: Overview These days, there are a lot of federal regulations in place that require companies that function as a part of various industries to archive their mail. When Microsoft created Exchange Server 2007, they provided a few different mechanisms to assist in the archival process. One of these mechanisms is Journaling. Journaling existed in previous versions of Exchange, but has been enhanced in Exchange Server 2007. In this article, I will discuss some of the basics of journaling in Exchange Server 2007, and how to use it to gain more granular control over the archiving process. If you are interested in learning how to create a journaling rule, I will demonstrate the technique in the next article in this series. Before I Begin Before I get started, I just want to mention that although journaling can be used as a part of the archival process, journaling is not technically the same as archiving. Archiving refers to the practice of backing up messages, and then removing them from their original location. Journaling records e-mail communications and forwards them to a designated mailbox. Another important thing that you need to know about journaling is that depending on the industry that you're in, journaling may or may not satisfy the legal requirements for archiving.   I recommend consulting a legal professional when determining the suitability of journaling in your organization. What’s New in Exchange Server 2007? Exchange Server 2003 supported journaling, but it used an all or nothing approach.   The journal included... --- ### Restoring Exchange Mailbox Data Using the Recovery Storage Group, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/restoring_exchange_mailbox_recovery_storage_group_part2/ - Categories: Exchange Server - Article Type: How To In part one of this article series, I showed you how to create a recovery storage group, and how to restore data to it. In this article, I will continue the discussion by showing you how to use your recovery storage group to recover data. Mounting the Recovery Storage Group The first thing that you need to do after the restoration process completes is to mount your Recovery Storage Group. To do so, open the Exchange Management Console, and go to the Toolbox folder. Now, double click on the Database Management Recovery icon. When you do, the console will launch the Microsoft Exchange Troubleshooting Assistant. The first thing that the Troubleshooting Assistant will ask you to do is to provide a name for the operation that you are about to perform. Just as before, you can call the operation anything that you want. Click Next, and you will be taken to a screen prompting you to select the task that you want to perform. Choose the option to Mount or Dismount Databases in the Recovery Storage Group. A this point, you will see a screen, similar to the one that’s shown in Figure A, prompting you to choose the database that you want to mount. Click the check box next to the dismounted database, and then click the Mount Selected Database link. Figure A You must select the database that you want to mount. When the operation completes, you should see a screen informing you that the... --- ### DNS Training Labs - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/dns_training_labs/ - Categories: DNS - Article Type: How To, Overview A review of Train Signal’s Windows 2000/2003 DNS Video Lab Training – Product Details.  See more details at Train Signal's website. After completing Train Signal’s Active Directory CBT course, I thought I might delve into and learn the Black Art of DNS.  So the Train Signal turned red and Lab 4 pulled into my workstation. I started the lab with a briefing from DNS Concepts although concepts are anything but brief.   The concepts video is a thorough run through of the lab setup, what IP settings are applied to each of the lab servers, how they are arranged in the lab and the terminologies used.   Until this video I hadn’t come across Split Brain DNS before.    If I had, I most likely would have had a panic attack and again avoided the Black Art.   Even after the comprehensiveness of the AD Lab, I was still impressed by the detail and easy to understand presentation.   Everything was covered, from DNS Namespace, Name Resolution, Root Hints through domain levels (top, second, sub and private domains). Video 1 started with DNS installation options and proceeded to NS Lookup Commands.   It stresses the importance of the Primary Domain Suffix and goes into an explanation of Dynamic Updates and what the security implications are of using non-secure dynamic updates.   Reverse Lookup Zones always confused me, but not any more.   While not necessary for DNS to work, they are a very useful diagnostic troubleshooting tool.   Scott (the instructor) took only a couple of minutes... --- ### Change Office XP CD Key - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/change_office_xp_cd_key/ - Categories: Windows XP - Article Type: How To How can I change the CD Key of my Office XP installation? You can do it by editing the Registry. Apply this procedure: Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. Locate your valid product CD Key, which is located on the back of the original CD case. On the Start menu, click Run. In the Open box, type Regedit, and then click OK. In Registry Editor, find the following subkey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\10. 0\Registration Click the plus sign (+) next to this folder. If you see only one subkey in this folder that has a 32-character {GUID} (globally unique identifier), select that subkey and go to step 5. If you see more than one subkey that has a 32-character {GUID}, select each one until you find the one whose DisplayName value (in the right pane) matches your version of Office. For the selected {GUID} subkey, select the ProductID string value in the right pane. On the Edit menu, click Rename. Type OldProductID and then press ENTER. On the Registry menu, click Exit. Reader note: Reader Mike Fairburn wrote: "Great work and a great... --- ### DHCP Server Migration Made Easy in Windows Server 2008 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/dhcp-server-migration-made-easy-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: How To If you have ever had to move a DHCP Server from one physical server to another, you know that the process isn’t exactly fun or intuitive if the servers are running Windows Server 2003. Fortunately, when Microsoft created Windows Server 2008, they completely redesigned the administrative interface, and in doing so, also made DHCP much easier to migrate. In this article, I will show you how it’s done. Migration in Windows Server 2003 Since this article is supposed to be about Windows Server 2008, I don’t want to talk too much about Windows Server 2003. Even so, I do want to give you a quick overview of the migration process that was used in that version of Windows so that you can better appreciate what I am about to show you. To migrate a Windows 2003 DHCP Server, the first thing that you must do is to stop, and then disable the DHCP service. Of course this means that clients will not be able to use the DHCP server to obtain IP addresses until the process is complete.   You must then copy the server’s %systemroot%system32DHCP folder to a safe location that you can use later on. After doing so, you should remove this folder from the original server. Next, you will have to do some work through the Registry Editor. As always, when you are working with the Registry Editor, you should make a backup first, because making an incorrect change can destroy Windows. With that said,... --- ### Disable the Welcome Screen in XP Pro - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_the_welcome_screen_in_xp_pro/ - Categories: Windows Client OS - Article Type: How To How can I disable the Welcome Screen in Windows XP Pro? To turn the Welcome Screen on or off: You must have a computer administrator account on a computer that is a member of a workgroup or is a stand-alone computer to turn on or turn off the Use the Welcome screen feature. Logging on at the Welcome screen is not available on computers that are members of a network domain. Open User Accounts in Control Panel. Click Change the way users log on or off. Do one of the following: To specify that users log on to the computer using the Welcome screen, select the Use the Welcome screen check box. A user logs on to the computer by clicking his or her user account name on the Welcome screen. If a password is assigned to the account, the user is prompted to type it. To specify that users log on to the computer without using the Welcome screen, clear the Use the Welcome screen check box.   The Welcome screen will no longer appear when you start the computer. To log on to the computer, type your user name (and password, if you have one) in the standard Log On to Windows dialog box. Note: To open User Accounts, click Start, click Control Panel, and then double-click User Accounts. Fast User Switching is available only when the Welcome screen is turned on. Note: To disable the Welcome screen you can also open... --- ### How to downgrade your converted Alcatel SpeedTouch 510 ADSL modem back to the Pro model? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/downgrade_from_alcatel_speedtouch_510_to_pro/ - Categories: Alcatel - Article Type: How To How to downgrade your converted Alcatel SpeedTouch 510 ADSL modem back to the Pro model? This document describes how you can configure an Alcatel SpeedTouch Pro ADSL modem and downgrade it from the 510 model to the Pro model. This method will work if the following assumption is true: Your modem was basically a Home model and was subsequently upgraded to the Pro model. It was then upgraded to the 510 model. Read more about it - Upgrade from Alcatel SpeedTouch Home to Pro and Upgrade from Alcatel SpeedTouch Pro to 510. "Why downgrade the modem? " you must be asking. Well, UPnP isn't a good security bet for starters, it can only work with Windows XP workstations and the new web interface is so damn ugly, but I also miss some of the settings you could configure in the Pro model, settings options that are gone in the 510 model. It's your call anyway. Disclaimer & Warning Messing with the software settings of your modem and/or messing with the registry or internal settings of your operating system can render your modem or operating system useless. Read the whole article and manual before you do any changes. Following these steps might work for you. It did for me and for many others, but that does not necessarily mean they will! I take no responsibility for anything bad that might happen to your OS or modem, and since you're on your own - Do not ask me for help! ... --- ### Download IE7 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_ie7/ - Categories: Downloads - Article Type: Overview Download Internet Explorer 7 Yes! It's finally here, Microsoft's latest and anticipated Internet browser - Internet Explorer 7. IE 7 has some nice features and a new look, you can read more about it on the links featured below. Also, following the footsteps on Firefox, you can add more functionality to IE 7 by installing one or more of the available Add-Ins (see link below). However, if you ask me personally, I think IE7 sucks big time. As of today, I don't know about any IE 7's security flaws, however the interface, although trying to be more user friendly, lacks many useful features that were easily available in older versions. So if you still want to use it, here are the download links. BTW, Microsoft plans to push IE 7 as a required update via Windows Update and Microsoft Update, so prepare for a many support calls coming to your line during the month of November... :-) Download Internet Explorer 7 (14. 8mb for the Windows XP SP2 version, other versions exist) See the Download Other IE Versions and Download the full IE 6 package pages for other IE versions. Links Download Internet Explorer 7 (14. 8mb) Release Notes for Internet Explorer 7 Internet Explorer 7 Add-Ins Internet Explorer 7 will be delivered through Automatic Updates - customers should complete preparations by November 1 IE Blog - Be Ready for Automatic Update Distribution of IE7 by November 1 Internet Explorer 7 Blocker Toolkit Download Internet Explorer 7 Blocker Toolkit FAQ --- ### Download Virtual Server R2 Enterprise Edition - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/download_virtual_server_r2_ent/ - Categories: Virtualization - Article Type: Overview Download Microsoft Virtual Server R2 Enterprise Edition Yes, now you can, for free! From Microsoft's webpage: Microsoft Virtual Server 2005 R2 is an ideal, production-quality tool for consolidating multiple workloads onto a physical server, allowing organizations to make more efficient use of their hardware resources. Built upon Microsoft Virtual Server 2005 SP1 and bolstered with new functionality, Virtual Server 2005 R2 enables IT organizations to enhance their administrative productivity and rapidly deploy new servers to address changing business needs through automated deployment and configuration of connected virtual machines that are easily administered with standard server management tools. Virtual Server 2005 R2 is an extensively tested and well supported virtualization solution that is supported both by the broader ISV community and by Microsoft in conjunction with its server operating systems and applications. Because it is part of the Microsoft Windows Server System, Virtual Server 2005 R2 is designed to integrate seamlessly with your other server infrastructure investments. System Requirements Supported Operating Systems: Windows Server 2003 R2 Datacenter Edition (32-Bit x86); Windows Server 2003 R2 Datacenter x64 Edition; Windows Server 2003 R2 Enterprise Edition (32-Bit x86); Windows Server 2003 R2 Enterprise x64 Edition; Windows Server 2003 R2 Standard Edition (32-bit x86); Windows Server 2003 R2 Standard x64 Edition ; Windows Small Business Server 2003 ; Windows XP Service Pack 2 Supported Host Operating Systems: Microsoft Windows Server 2003 Standard Edition, Enterprise Edition, or Datacenter Edition or later; Windows Server 2003 Standard x64 Edition, Enterprise... --- ### Download Windows 2003 Support Tools - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_windows_2003_support_tools/ - Categories: Windows Server 2003 - Article Type: Overview What are the Windows Server 2003 Support Tools? Where can I get them from? The Windows Server 2003 Support Tools are a set of software tools for administrators, developers, and power users to manage Active Directory, Group Policy, TCP/IP Networks, Registry, Security, Scalability and many other areas of the Windows Server 2003 operating system. These tools include troubleshooting operating system tools, network configuration and security-related tools, tools for managing Active Directory and automating application deployment and much more. With the use of these tools, the user is able to pin-point problematic issues with the system and will therefore be able to find a solution more easily. I recommend that you always install the Support Tools on any copy of Windows Server 2003 that you install, plus on all the management workstations running XP that you use to manage your network from. Supported Operating Systems: Windows XP SP1 and SP2 Windows Server 2003 SP1 Plus, 30 MB of free disk space are needed for the installation. The Support Tools are not automatically installed when you install Windows 2003, and unless someone finds a good and stable download link, they cannot be found anywhere on the Internet. The only place for you to look for these tools is on the installation CD-ROM in the supporttools folder. Download the Windows 2003 SP1 Support Tools (5. 2mb) Related articles You may find these related articles of interest to you: Download Free Windows 2000 Resource Kit Tools Download... --- ### Edit Registry Settings for Users Other Than Myself - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/edit_registry_settings_for_users_other_than_myself/ - Categories: Windows Client OS - Article Type: How To How can I edit registry settings for users other than myself? From an account with Administrator level access: Start Registry Editor (Regedit. exe). In Regedit, highlight the HKEY_USERS key and go to File, Load Hive. Use the File Open dialog to go to the Documents and Settings folder, where is the account you wish to modify. Highlight the NTUSER. DAT file in this folder (usually a hidden file) and select Open. You'll be prompted to enter a "Key name". You can use whatever you wish, but I use the User's logon name. You can now expand the Hive you just loaded and make any needed changes. When finished, highlight this Hive again and go to File, Unload Hive. Note: You MUST unload the Hive prior to logging on to the users account. Otherwise XP may have trouble loading the user's profile. --- ### Enable Remote Assistance Offering in XP/2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/enable_remote_assistance_offering_in_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I enable Remote Assistance offering in Windows XP and Windows Server 2003? MSKB 301527 has more: The Remote Assistance tool can be configured to enable an expert user to initiate a Remote Assistance session by using the Offer Remote Assistance feature. This feature requires the computer of the expert user as well as the computer of the novice user (that the expert user is going to help) to be members of the same domain, or members of trusted domains. Domains are used in corporate networks for security purposes, and a network administrator usually manages them. The Offer Remote Assistance feature is not a viable option for most home-based networks. Requirements To configure the computer of the novice user to accept Remote Assistance offers, you must ensure that the following three requirements are met: The Group Policy on the computer of the novice user must be configured to enable Remote Assistance offers. The computers of the novice and expert users must be members of the same domain, or members of trusted domains. Both computers must have Windows XP installed (or Windows Server 2003). You need to be a user with local administrative rights on the target computer. To configure the Group Policies for the Remote Assistance tool, you need a list of expert users from which the computers of the novice users can accept Remote Assistance offers. This list must contain Domain User groups and Domain User accounts. Note: Experts using Offer Remote Assistance will not be able... --- ### Forgot the Administrator's Password? - Change Domain Admin Password in Windows Server 2003 AD - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/reset_domain_admin_password_in_windows_server_2003_ad/ - Categories: Security - Article Type: How To Note: In order to successfully use this trick you must first use one of the password resetting tools available on the Forgot the Administrator's Password? page. The reason for that is that you need to have the local administrator's password in order to perform the following tip, and if you don't have it, then the only method of resetting it is by using the above tool. Update: After some reader feedback I'm pleased to say that this procedure ALSO WORKS for Windows Server 2008 Domain Controllers. Feel free to send in your feedback. I kept the original page syntax in relation to Windows Server 2003, but you can now perform the same actions on Windows Server 2008. Lamer note: This procedure is NOT designed for Windows XP since Windows XP is NOT a domain controller. Also, for a Windows 2000 version of this article you should read the Forgot the Administrator's Password? - Change Domain Admin Password in Windows 2000 AD page. Reader Sebastien Francois added his own personal note regarding the changing of Domain Admin passwords on Windows Server 2003 Active Directory domains (HERE). I will quote parts of it (thanks Seb! ): Requirements Local access to the Domain Controller (DC). The Local Administrator password. Two tools provided by Microsoft in their Resource Kit: SRVANY and INSTSRV. Download them from (24kb). Step 1 Restart Windows 2003 in Directory Service Restore Mode. Note: At startup, press F8 and choose Directory Service Restore Mode. It disables Active Directory... . --- ### How do I run Powershell and VBScripts on Windows PCs using AD and Group Policy? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/run-powershell-scripts-windows-ad-group-policy-specops-command/ - Categories: Active Directory (AD) - Article Type: How To We all know that Windows Active Directory (AD) Group Policy is very powerful. It can apply policies on the PCs in your Windows AD domain. However, the list of policies is limited as are the scheduling and reporting of those policies. While you might be able to run a Powershell script or VB script on the remote PC via some method, Windows GP is still the preferred method. What is lacking in GP is the ability to deploy PowerShell & VB Scripts, as well as feedback, reporting, and scheduling. To get this level of functionality that most Windows Admins desire, what you need is the new tool from Special Operations Software - Specops Command. Who is Specops? Special Operations Software (Specops) is a software company, focused on providing enhanced tools for Active Directory Management and Group Policy. They have been in business since 2001 and, today, they offer a variety of products that are tailored to this market. Their products include: Specops Command Specops Deploy Specops Inventory Specops Gpupdate (free) Specops Suite Specops Password Policy Basic (free) and full versions Active Directory Janitor and many more... So what is Specops Command? Specops Command is what combines the power of AD Group Policy and Windows Powershell and, at the same time, adds a ton of new features. Before I go into more detail on Command, let's talk about the two technologies that Command takes advantage of. Windows Group Policy is used as the script distribution method to distribute... --- ### SCW for Exchange Server 2007 – Part II - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/scw-for-exchange-server-2007-part-2/ - Categories: Exchange Server - Article Type: Overview In Part I of this series, we registered the XML files so that the Security Configuration Wizard could create an apply policies for Exchange 2007 servers. In this part, we’ll create and apply a policy to a server. It’s very important that all applications and utilities be installed on the server before running the SCW wizard. This includes all antivirus and backup applications, monitoring tools, etc. This is because once the policy is applied, applications installed after that may not work as key services and ports may be disabled. It’s generally a good idea to make sure all other configuration on your Exchange servers is completed, and use the SCW as the last step before putting the server into production. Before applying a policy, validate your installation by checking event logs and functionality to verify that everything is working as desired. The SCW doesn’t “fix” any broken functionality. Also keep in mind is that while some of the dialog boxes are a little different when creating policies for Edge Transport servers, the process is the same, and not differentiated any further here. With that in mind, let’s create a policy for a server. Creating an Exchange server role policy for the Security Configuration Wizard To run the wizard, you’ll need local administrator access to the server. From the server console, Click Start > All Programs>Administrative Tools > Security Configuration Wizard to start the wizard. On the Welcome to the Security Configuration Wizard screen, click Next. Choose Create a new security... --- ### Setting up a Logon Script through GPO in Windows Server 2008 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/setting-up-logon-script-through-gpo-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: How To As written in the first part of this set of articles, there are two ways to assign Logon scripts. The first is done on the Profile tab of the user properties dialog in the Active Directory Users and Computers (ADUC). The second is done via Group Policy Objects (GPO). This article will focus on the second method. To read more about the first method please read my "Setting up a Logon Script through Active Directory Users and Computers in Windows Server 2008" article. There are a few benefits for using GPOs to assign scripts: GPOs only work with Windows 2000 and above, meaning that if your users use older clients such as Windows 95/98 or Windows NT, GPOs won't work for them. When using GPOs you can assign MORE than one logon script per user, and you can configure which script runs first. When using GPOs you can assign more than JUST logon scripts, you can also assign LOGOFF scripts for users, and even STARTUP and SHUTDOWN scripts for the computer itself. GPOs can be linked to OUs, Site or Domain levels, meaning that with one GPO you can assign a logon script to many users, or even to all your users, instead of having to manually adding it to all the user objects in the domain. This is why for most scenarios, using GPOs is more useful than doing it the old fashioned way, through ADUC. Note: Using Windows Server 2008 GPOs to assign logon scripts is... --- ### Reducing Help Desk Calls With The Specops Password Reset Tool By Daniel Petri - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/specops-password-reset/ - Categories: Security - Article Type: Overview One of the most time consuming administrative tasks is the password reset issue. Research shows that help desk calls may consist of up to 40% of password reset related issues. When I've learned about a new tool that was designed to help mitigate these issues I wanted to test it out. The tool is called "Specops Password Reset" or SPR for short (http://www. specopssoft. com/products/password%20reset%20self%20service), and it is designed to allow the end user the ability to reset a lost password without the help of administrative personnel. However, when trying to solve this problem, one must be cautious about verifying the identity of a user, so that they can only reset their own password and not somebody else's. Here is where Specops Password Reset introduces uses two different techniques to verify users’ identities: secret questions and mobile verification codes. Secret questions To use secret questions for user verification, users must enroll in the Password Reset Service. When enrolling they are asked a number of questions. A question can be for example “What was your mother’s maiden name? ” The nature of the questions should be such that the user easily will remember the answer to them, whereas other users should not be likely to know the answer, or easily find it out. What questions and how many questions to be answered are configured by the administrator. All the users' secret answers are stored in Active Directory using one-way encryption (SHA-256) and they are also protected against reading through an ACL (access control list)... . --- ### Temporarily Disable the Windows XP SP2 Automatic Download - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/temporarily_disable_windows_xp_sp2_auto_download/ - Categories: Windows XP - Article Type: How To How do I temporarily disable the automatic download of Windows XP SP2? Windows XP SP2 was released to the Windows Update - Auto Update tool in the middle of August 2004. While recognizing the security benefits of Windows XP SP2, some organizations have requested the ability to temporarily disable delivery of this update via Automatic Updates (AU) and Windows Update (WU). These organizations have populations of PCs, upon which they have enabled AU. This is done to ensure that these PCs receive all critical security updates. These customers would like to temporarily block the delivery of SP2 in order to provide additional time for validation and testing of the update. In response to these requests, Microsoft is providing this set of tools. Please note that the mechanism to temporarily disable delivery of Windows XP SP2 will be available for a period of 240 days (8 months) from August 16 till the 12th of April 2005. At the end of this period, Windows XP SP2 will be delivered to all Windows XP and Windows XP Service Pack 1 systems, but still download other critical updates. This toolkit contains 5 components: A Microsoft signed executable A script An ADM template Sample email text with included link to block delivery of Windows XP SP2 Sample email text with included link to unblock delivery of Windows XP SP2 The executable creates the registry key and sets the associated value on the machine upon which it is run, to block or unblock (depending on the... --- ### Troubleshooting Dcpromo Errors - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/troubleshooting_dcpromo_errors/ - Categories: Active Directory (AD) - Article Type: Overview What are the most common DNS related Dcpromo errors? How do I fix them? Some common issues that you may encounter with Active Directory installation and configuration can cause a partial or complete loss of functionality in Active Directory. These issues may include, but not be limited to: Domain Name System (DNS) configuration errors. Network configuration problems Difficulties when you upgrade from Microsoft Windows NT. You must configure DNS correctly to ensure that Active Directory will function properly. Review the following configuration items to ensure that DNS is healthy and that the Active Directory DNS entries will be registered correctly: DNS IP configuration Active Directory DNS registration Dynamic zone updates DNS forwarders DNS IP Configuration An Active Directory server that is hosting DNS must have its TCP/IP settings configured properly. TCP/IP on an Active Directory DNS server must be configured to point to itself to allow the server to register with its own DNS server. To view the current IP configuration Open a command window and type ipconfig /all to display the details. You can modify the DNS configuration by following these steps: Right-click My Network Places, and then click Properties. Right-click Local Area Connection, and then click Properties. Click Internet Protocol (TCP/IP), and then click Properties. Click Advanced, and then click the DNS tab. Configure the DNS information as follows: Configure the DNS server addresses to point to the DNS server. This should be the computer's own IP address if it is the first server or if... --- ### UNIX Connectivity from Windows: Telnet, FTP, rsh, rcp, rexec and putty - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/unix-connectivity-from-windows/ - Categories: Networking - Article Type: Overview As much as each software vendor would like it to be so, most IT environments are not homogenous. Most shops do not run Linux or Windows or Solaris exclusively. So what happens when a user on one type of system needs to interact with another type of system? To be more specific what should a Windows user do if she needs to access a UNIX system? In this article, I’ll talk about six utilities that allow a Windows user to interact with a UNIX host. UNIX vs Windows The creators of UNIX worked from a set of principles that would later become known as the UNIX Philosophy. This philosophy was to lead to a system that Was easy for UNIX developers to extend Was easy for end users to learn Was interoperable with other systems The result was the development of many small, simple utilities that could be combined to accomplish more complex tasks. So that’s where Windows PowerShell got the idea! Windows was initially designed to be easy for end users to learn and manage, but not necessarily easy to extend. It is also pretty obvious that early Windows version were not designed to play nicely with other systems. These are conflicting goals. Thankfully, there are now more options available for connectivity between Windows and UNIX systems. I use some of these utilities fairly often. And the cool thing about these utilities is that most of them ship with all current versions of Windows (actually most of... --- ### Using GlobalNames Zone in Windows Server 2008 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/using-globalnames-zone-window-server-2008/ - Categories: Windows Server 2008 - Article Type: Overview On my previous article, "Understanding GlobalNames Zone in Windows Server 2008", I've listed the major benefits for using the new GlobalNames Zone (also known as GNZ) in Windows Server 2008 DNS. Basically, if you are retiring WINS or are planning on deploying an IPv6-only environment, all the client and server name resolution will depend on DNS. Today, many customers support name resolution for important servers or Web sites by using a single-label name. For example, one might want to allow for name resolution for a record called Webserver, without the need for the client to manually add the full DNS suffix for that record. Today, before the implementation of Windows Server 2008 DNS servers, such names might already be registered in DNS for the domain that they belong to, allowing the clients to easily resolve them. Without WINS name resolution, DNS Client is able to resolve single-label names by appending an appropriate list of suffixes to the name, which are then answered by the authoritative DNS Servers. For example, if the client issues the following command: ​Ping Webserver And the machines DNS suffix is, for example, adatum. com, then the client will append the DNS suffix to the host name and query the DNS for the Fully Qualified domain Name (FQDN) of Webserver. adatum. com. Note: The correct DNS suffix depends on the domain membership of the client, but can also be manually configured in the advanced TCP/IP properties for the computer. All this is nice, but for a customer... --- ### Creating Virtual Machines with Microsoft Virtual PC 2007 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_create_virtual_machines_virtual_pc_2007/ - Categories: Virtualization - Article Type: How To Microsoft Virtual PC is one of the top contenders in a growing line of Virtual Machine utilities. The latest version, called Microsoft Virtual PC 2007, allows users to conveniently run multiple operating systems on a single computer. Users can switch operating systems as easily as they switch applications instantly, with a mouse click. Because each virtual machine acts like a standalone computer, each VM can has its own sound card, video, hard disk(s), network card(s) and its own processor. Since each VM runs its own operating system, users can install and run most x86 operating systems. Microsoft fully supports the following operating systems running in a virtual machine on Virtual PC: Windows Vista Enterprise, Windows Vista Business, Windows Vista Ultimate, Windows 98, Windows Me, Windows 2000 Professional, Windows XP and OS/2, but users can also install Windows 2000/2003 Server systems, Linux builds and other operating systems. The operating system that runs on the physical computer is called the host operating system and the operating systems that run on virtual machines are called guest operating systems. You can download Microsoft Virtual PC 2007 for free from the following link: Download details - Virtual PC 2007 Note that besides Virtual PC, Microsoft also offers a more robust product called Virtual Server 2005 R2. We will deal with that product in a later article. The main purpose of Virtual PC is to allow the user to run multiple guest machines on one real host machine. So in that case, let's... --- ### What's System Restore in Windows XP? - Published: 2009-01-08 - Modified: 2022-08-23 - URL: https://petri.com/windows-xp-system-restore/ - Categories: Windows XP - Tags: Disaster Recovery - Article Type: Overview What is System Restore in Windows XP? System Restore is a component of Windows XP Professional that you can use to restore your computer to a previous state, if a problem occurs, without losing your personal data files (such as Microsoft Word documents, browsing history, drawings, favorites, or e-mail). System Restore monitors changes to the system and some application files, and it automatically creates easily identified restore points. These restore points allow you to revert the system to a previous time. They are created daily and at the time of significant system events (such as when an application or driver is installed). You can also create and name your own restore points at any time. Note: You may also want to read Disable System Restore in Windows XP. System Restore functions like an "undo" feature for Windows XP Professional configuration changes, allowing you to recover from problems caused by such things as incorrect system settings, faulty drivers, incompatible applications and so on, without risk to personal files, such as documents or e-mail. System Restore enables you to restore your system by automatically creating restore points based on a preset schedule or in response to system events (such as installing a new application or driver). You can also manually create restore points as needed. You must be logged on as an administrator or a member of the Administrators group to use System Restore. System Restore consists of two parts, file monitoring and restore point management. File Monitoring System... --- ### Why you should Upgrade to Windows Vista SP1 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/why-you-should-upgrade-to-windows-vista-service-pack-1-sp1/ - Categories: Windows Vista - Article Type: Opinion Windows Vista SP1 is now RTM, and will be shortly available for download for all Vista users. You can read more about it on my Changes in Vista Service Pack 1 article and my Windows Vista Service Pack 1 is RTM article. SP1 is made of a large number of individual files and components, resulting is a big file (over 1. 1 GB in size, if downloaded from MSDN). In addition to all previously released updates, Windows Vista SP1 contains changes focused on addressing specific reliability and performance issues, supporting new types of hardware, and adding support for several emerging standards. SP1 contains 479 patches. Also, there are also 109 new features included. Windows Vista SP1 will support the following delivery methods: Express: Through Windows Update. Requires an internet connection, but minimizes the size of the download by sending only the changes needed for a specific computer. This installation will take about 65 MB for x86-based operating systems.   Stand-alone: As a stand-alone download. Recommended for computers with limited Internet connectivity and for applying the service pack to multiple computers. The download size is (much) larger than the express package, but customers can apply a single package to any Windows Vista version and language combination (within a platform). This installation will take about 450 MB (5 Language package) and about 550 MB (Full 36 language package) for x86-based operating systems.   Slipstream: The slipstream version of Windows Vista SP1 is media that already contains the service pack, which companies can use... --- ### Windows 2003 MCSE/MCSA Upgrade Requirements - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2003_mcse_mcsa_upgrade_requirements/ - Categories: Windows Server 2003 - Tags: Editor's Pick - Article Type: Overview What are the requirements for a W2K MCSE/MCSA to upgrade his or her certification to the Windows 2003 MCSE/MCSA certification? Microsoft has designed an upgrade path that will enable a current MCSE on Windows 2000 to earn the Windows Server 2003 credential in a time- and cost-effective manner. The certification requirements for MCSE on Windows Server 2003 differ from those for MCSE on Windows 2000. As a result, you must either complete the entire Windows 2000 track or the entire Windows Server 2003 track to become certified as an MCSE. However, if you complete your MCSE or MCSA certification in Windows 2000, you will have the opportunity to take advantage of an upgrade path that will enable you to update your certification to Windows Server 2003 in a time- and cost-effective manner. The Windows Server 2003 exams will be released in the second half of 2003. MCSE upgrading An MCSE on Windows 2000 may take the following exams and upgrade his or her certification to the Windows 2003 certification: Upgrade Exams (2 Exams Required) Upgrade (2 exam required) Courses Do the following exams Exam 70-292: Managing and Maintaining a Microsoft Windows Server 2003 Environment for an MCSA Certified on Windows 2000 Workshop 2209: Updating Systems Administrator Skills from Microsoft Windows 2000 to Windows Server 2003 (2 days) Exam 70-296: Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Environment for an MCSE Certified on Windows 2000 Workshop 2210: Updating Systems Engineer Skills from Microsoft Windows 2000... --- ### How can Cisco's Network Security and Deployment Methodologies can help you? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how-cisco-network-security-and-methodologies-can-help-2/ - Categories: Cisco - Article Type: Overview In my time browsing the Cisco website and also from watching Cisco presentations, there are a couple of different methodologies and lifecycle approaches, subscribed to by Cisco that can help any enterprise customer. Let's find out how these methodologies can help you. How can Methodologies help you? The Wikipedia defines a methodology as: "the analysis of the principles of methods, rules, and postulates employed by a discipline", "the systematic study of methods that are, can be, or have been applied within a discipline" or "a particular procedure or set of procedures" All technology consulting companies use methodologies to ensure that they delivery quality to their customers. For example, a common consulting methodology is “plan design, build, test, implement, & audit”. Of course there are tasks that go along with each of these phases. If you follow this approach to a project, chances are, that you will have a much better chance of success. That is because you took time to plan, design, test, and audit. Usually, IT guys (or really anyone with not a lot of time, like IT guys) tend to go only to build, and then implement. Some out there might wonder how this applies to you and especially to Cisco Routers and Switches. Bear with me here as I will get to that. Over time, I have seen a number of different systems, offered by Cisco, that could be applied to help just about any business out there, whether you are using Cisco routers and switches or... --- ### Review of VMware Server 2.0 Beta - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/review-vmware-server-2-beta/ - Categories: VMware - Article Type: Review It was just announced that VMware Server 2. 0 Beta is now available for download. There are a lot of new features in this Beta. In this article, we checkout those features and show you what the new 2. 0 version looks like. So, check it out, I think you will like what you see in VMware Server 2. 0! What's new in VMware Server 2. 0 Beta? As you would expect when going from a 1. x version to a 2. x version, there are a lot of new features available in VMware Server 2. 0. But are these features really useful to you and I? Let's find out... In VMware Server 2. 0, VMware is boasting the following features: Web-based management interface: A new Web-based user interface provides a simple, flexible, intuitive and productive way for you to manage your virtual machines. Expanded operating system support: VMware Server now supports Windows Vista Business Edition and Ultimate Edition (guest only), Windows Server 2008 (Longhorn Server Beta 3), Red Hat Enterprise Linux 5 and Ubuntu 7. 1, among others. Greater scalability: Take full advantage of high-end hardware with support for up to 8GB of RAM per virtual machine, up to two virtual SMP (vSMP) processors and up to 64 virtual machines per host. 64-bit guest operating system support: Run high-performance operating systems in virtual machines with support for Intel EM64T VT-enabled processors and AMD64 processors with segmentation support. Support for VIX API 1. 2: This feature provides a programming interface for automating virtual machine and guest operations. Support for Virtual... --- ### Move Physical Machines to VMs with VMware Converter: Part 1 > This free tutorial outlines the steps to transform physical servers to virtual formats using VMWare's Converter utility. - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_convert_physical_machines_to_virtual_machines_with_vmware_converter/ - Categories: VMware - Article Type: How To VMware recently announced a new product called VMware Converter version 3. 0. This product is based on the discontinued VMware P2V assistant. The purpose of VMware converter is to allow you to quickly migrate from physical machines to VMware virtual machines. Let's find out what this new product can do for you... Introduction to VMware Converter VMware Converter is designed to do the following: convert local and remote physical servers with NO DOWNTIME convert many P2V conversions at the same time with a centralized console convert third party VMs to VMware. For example- MS Virtual PC, MS Virtual Server, Backup Exec LiveState, & Ghost. Clone and backup physical machines to virtual machines as part of a DR plan. VMware Converter comes in two flavors. They are: VMware Converter Starter (FREE Edition) VMware Converter Enterprise Of course not all feature are supported on the free edition. For a comparison chart between these two editions, see this link. Currently, VMware Converter is only supported to convert Windows systems from physical to virtual (for specific versions, see the FAQ). For specific information on VMware Converter, see this data sheet. Downloading & Installing VMware Converter To download VMware Converter, simply go to the download link on the product webpage. This will take you to the download site to download the VMware Converter Starter edition. Click Download Now. After filling out the registration form and accepting the license agreement, you will see something like this: Either Run or Save... --- ### 5 Essential Free VMware Appliances - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_top_5_free_vmware_appliances/ - Categories: VMware - Article Type: Overview Did you know that you can download FREE, already configured servers from the Internet, then run them on your Windows XP/2003 or Linux VMware computer? These servers can do some amazing things, they are free, and they can be up and running in minutes. Let's find out how... Read more: Updated for 2013 - Top Free VMware Virtual Appliances What do I need to get started? To use one of these VMware appliances, you will need to download and install either VMware Server or VMware Player. Both of these are free. VMware Player, of course, will only allow you to "play" a virtual machine, not edit its configuration or create new virtual machines. Also, keep in mind that every virtual machine you run will take resources away from your host system. This is especially true when it comes to RAM. Memory is the most crucial resource on a system that is hosting virtual machines. What do I need to know about these Virtual Appliances? There are a few things you should know about these virtual appliances. First off, let's cover the benefits: These are complete pre-built servers. That means that the OS and applications already installed and ready for use. Once these servers are opened with VMware Server or Player, you can instantly "turn them on" and use them. Installing a new server and enterprise application doesn't get any easier than that! These Virtual appliances are a great way to demo or test applications. When you are... --- ### VMware ESX Server 3i's Impact on Virtualization - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/vmware-esx-server-3i/ - Categories: VMware - Article Type: Overview You are probably already familiar with what VMware ESX Server is, how it is revolutionary, and how virtualization is changing server infrastructure forever. Perhaps you are already an ESX Server user, perhaps not. Either way, the latest version of ESX Server, 3i (could go even farther than ESX Server 3, in changing the face of your server infrastructure. Let me show you how... What is VMware ESX Server? Because we are talking about a new spin on the current version of ESX Server and I will be comparing the two, I want to make sure you first know what ESX Server is. If you are already familiar with ESX Server, just skip to the next section. VMware ESX is an enterprise grade virtualization product by VMware. Unlike VMware Server or Microsoft Virtual Server, VMware ESX does not require an underlying operating system to be loaded first. What this means is that you get the highest virtualization performance that is possible when using VMware ESX Server. ESX Server is purchased in a suite of products called VMware Infrastructure (VI) with ESX Server being the foundation of that suite. To find out how ESX Server and Virtual Infrastructure are packaged and what options are available, see our upcoming Petri article entitled How to choose the right VMware Infrastructure ESX Edition for you. What's new with VMware ESX Server 3i? With as amazing, revolutionary, and popular as ESX Server has been in the recent past, it is hard to sit... --- ### Enterprise Print Management in Windows Server 2008, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/enterprise-print-management-in-windows-server-2008-part-two/ - Categories: Windows Server 2008 - Article Type: Overview In the previous article, I showed you how to install the Print Management console. In this article, I will continue the discussion by showing you how to migrate other network print servers to the  network print server that you’ve created. Network Printer Migration Now that you have an enterprise print management server in place, you will probably want to consolidate some of your other print servers. Consolidation allows you to operate all of your network printers through a single network print server, thus reducing the amount of print server related maintenance tasks that your administrative staff has to do. To consolidate network print servers, open the Print Management console by selecting the Print Management command from the server’s Administrative Tools menu. When the console opens, expand the Print Servers container, and then choose the print server that you want to migrate. Right click on this print server, and then choose the Export Printers to a File command from the resulting shortcut menu. At this point, Windows will launch the Printer Migration Wizard. The wizard’s initial screen will show you the print drivers and print processors that are about to be exported, as shown in Figure A. Figure A The Printer Migration Wizard lists the print drivers and print processors that will be exported. Click Next, and you will be prompted to specify a path and a filename to which you want to export the printer information. Enter this information into the place provided, and click Next again... . --- ### Planning a DFS Architecture, Part 3 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/planning-dfs-architecture-part-three/ - Categories: Windows Server 2008 - Article Type: Overview Note:This article is a follow up to Planning a DFS Architecture Part One and Part Two. Although Windows Server 2008 improves upon DFS technology, DFS has been around for quite a while, and I have learned quite a bit over the years about planning for DFS replication.   I'm not talking about the replication topology itself, although that is important.   When I'm talking about are the little things that make the difference between replication performing well, and DFS running amuck.   In this article, I want to wrap up the series by sharing with you some best practices for DFS replication. Backup Strategy Just because the files stored on a DFS tree are being replicated to other servers does not mean that you don't have to back them up.   Having a DFS replicas on other servers helps to protect the data against a catastrophic hard drive failure, but does nothing to protect against data corruption.   If a file were to become corrupted, the corruption would likely be replicated to the other targets. Because the data should be identical on each DFS replica, you can usually get away with only backing up one of the replicas.   But one important thing that you need to keep in mind about the backup process though, is that it is important that you configure your backup software not to update the archive bit.   The reason for this is that file replication is triggered by a file version change, or a modified date and time... --- ### Optimizing PowerShell in Exchange 2007 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/optimizing-powershell-in-exchange-2007/ - Categories: Exchange Server - Article Type: Overview PowerShell introduces a substantial amount of flexibility and possibilities. With Microsoft introducing PowerShell in more products, we have the ability to perform tasks amongst several different resources, all from within a PowerShell window. Given the potential, it’s easy to spend a fair amount of time in PowerShell. It’s time now to make the environment a little friendlier. With these few changes, we’ll do just that. Tweak the shortcut First, we’ll tweak the shortcut that launches the Exchange Management Shell. Click on Start > All Programs > Microsoft Exchange Server 2007. Right click on Exchange Management Shell and click Properties. On the Shortcut tab, set the Start In field to be your Scripts folder as seen in Figure 1 below.   Figure 1 Exchange Management Shell Properties Shortcut tab By default, this is c:\Program Files\Microsoft\Exchange Server\Scripts. That way, you’ll get tab completion for . ps1 files in this folder, and won’t have to go hunting for them. If your environment uses a single repository for all PowerShell scripts, adjust the path accordingly. Next, click on the Options tab. Set the Command History Buffer Size to 999 to allow a much bigger buffer. This gives us the ability to look further back into what we’ve done. Next, check the box that says Discard Old Duplicates. This way, if you run the same command several times, it only shows up in the buffer once. After all, it doesn’t make sense to show more than that, right? Check the two boxes marked... --- ### How do I delete an "undeletable" file? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/delete_undeletable_files/ - Categories: Disk Management - Article Type: How To Sometimes you want to delete a file but when you do so an error message pops and tells you it cannot be done. Method #1 - Kill explorer. exe Do successfully delete an undeletable file that is caught be the explorer. exe process (and most of them are) do the following: Open a Command Prompt window and leave it open. Close all open programs. You now need to close EXPLORER. EXE. The proper way to shutdown Explorer is to raise the "Shut Down Windows" dialog (select "Shut Down... " from the start menu), hold down CTRL+SHIFT+ALT and press the CANCEL button. Explorer will exit cleanly. Note: The at the 'Shut Down Windows' dialog method of closing Explorer is built into Explorer. (It was specifically designed so that developers writing Shell Extensions could get Explorer to release their Shell Extension DLLs while debugging them). Go back to the Command Prompt window and change to the directory where the undeletable file is located in. At the command prompt type DEL where is the file you wish to delete. Go back to Task Manager, click File, New Task and enter EXPLORER. EXE to restart the GUI shell. Close Task Manager. (Tip modification submitted by James R. Twine who has a great utility called Delete FXP Files that can help you delete files and folders that simply won't go away). Method #2 - Unlocker Another cool tool that will allow you to delete any undeletable file is Unlocker (author's web site can be found HERE). [adkit... --- ### Disable System Restore in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_system_restore_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I turn off the System Restore feature in XP? System Restore is an incredible space hog (read more about it in What's System Restore in Windows XP? ). It might be worth it, if System Restore were a truly complete and foolproof form of backup, but it's not. At best, System Restore can and will get the core operating system running again after a bad crash, but it doesn't return all files to the pre-trouble state, and it can't remove all traces of a program that went bad. As a result, System Restore's usefulness is limited, and so should be its appetite for disk space.   To turn System Restore off:   Go to your Control Panel. Click System. Go to the System Restore tab. Check the box Turn off System Restore for all drives. You can also turn it off only for specific partitions, for example partitions that contain information that does not change as often as your system and boot partitions. If you have more than one drive, you may wish to turn off System Restore entirely for non-system drives. There's little, if any, benefit to be gained by having them monitored. You can also choose the amount of space System Restore will take on each and every disk it uses: Be sure to know that when you disable System Restore your system will automatically delete all previous restore points, so if you do want to keep them, do NOT disable this feature. A note for Windows... --- ### Download Free Windows 2000 Resource Kit Tools - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/download_free_reskit_tools/ - Categories: Downloads - Article Type: Overview Where can I download the Windows 2000 Resource Kit tools? You can download the Windows 2000 Resource Kit software tools listed on this page for free and install them on your computer. These utilities can help you streamline administrative tasks such as managing Active Directory, administering security features, working with Group Policy and Terminal Services, automating application deployment, and other important jobs. Nearly 300 such tools are included on the Windows 2000 Server Resource Kit companion CD. These tools are designed to be installed and run only on Microsoft Windows 2000. They are neither localized nor supported by Microsoft. Note: Microsoft only lets you download a subset of the original Resource Kit Tools. I've managed to gather many other tools for you to download besides the ones from Microsoft. These tools are linked as direct downloads, while the MS-provided ones link you to a description page from where you can download the files. Note: Please note that these are NOT the entire Reskit tools set. The Reskit has a greater number of tools and documentation, and it is one of the most valuable resources for system administrators. To read more about the W2K Reskit please see my Book Recommendations page (where you can also buy the package and other valuable books). Note: Links may change or break. If you find any broken links please notify me . Note: If any of you are willing to provide hosting space for these tools please let me know . Available Tools Active Directory... --- ### Download Windows NT 4.0 SP6a - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_nt_4_sp6a/ - Categories: Downloads - Article Type: Overview Where can I download Windows NT 4. 0 Service Pack 6a? Windows NT 4. 0 Service Pack 6a (SP6a) resolves the SP6 issue with Lotus Notes and other Winsock based applications and provides the latest updates to Microsoft Windows NT Workstation 4. 0 and Windows NT Server 4. 0 (including Enterprise Edition). Windows NT 4. 0 SP6a contains known Year 2000 updates for Windows NT 4. 0. These Year 2000 updates are also available as separate Web downloads that you can apply to a Windows NT 4. 0 Service Pack 4 system. Download page: Windows NT 4. 0 Service Pack 6a High Encryption version for the Intel (x86) platform This version provides 128-bit encryption capabilities for computers running on the Intel (x86) platform. The High Encryption version of Windows NT 4. 0 SP6a is eligible for export from the U. S. to all customers worldwide, except to U. S. embargoed destinations. Note for Hebrew Enabled users: Do NOT install this version of SP6a on your system! ! ! Standard Encryption version for the Intel (x86) platform Available to all customers, this version provides standard encryption capabilities for computers running on the Intel (x86) platform. Note for Hebrew Enabled users: Please make sure you select HEBREW from the drop down list of available languages! There are two ways to install Windows NT 4. 0 SP6a: Network installation, and Express installation: Express: 1. 6 MB-34. 5 MB (Initial download of 280kb) Fastest way to install SP6a, for single computer installation only, for computers running Internet Explorer 3. 02 or later. Network: 34. 5mb... --- ### Download Remote Desktop Web Connection for XP SP1 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/download_remote_desktop_web_connection_for_xp_sp1/ - Categories: Downloads - Article Type: Overview Where can I download the Remote Desktop Web Connection for Windows Server 2003? The Remote Desktop Web Connection ActiveX control allows you to access your computer through Remote Desktop, via the Internet, from another computer using Internet Explorer. You must be using Internet Information Services (IIS) to host a Web site to use this feature. Remote Desktop Web Connection provides most of the same functionality as the Remote Desktop Connection software. Note: Users of Windows Server 2003 do not need to download this package. They can manually add this package from Add/Remove in the Control Panel. This package is offered as a convenience to Microsoft customers. The Remote Desktop Web Connection ActiveX control allows you to access your computer, via the Internet, from another computer using Internet Explorer. You can download the software on this page and run setup to install the ActiveX control and sample Web page on any computer running Internet Information Server 4. 0 or higher. Supported Operating Systems: Windows 2000; Windows 2000 Service Pack 2; Windows 2000 Service Pack 3; Windows NT; Windows Server 2003; Windows XP; Windows XP Media Center Edition. See Install Remote Desktop Web Connection on Windows Server 2003 and Install Remote Desktop Web Connection on Windows XP for more instructions. Download Remote Desktop Web Connection (v5. 2. 3970) (492kb) Related articles You might also want to read the following related articles: Add a new RDP Listening Port to Terminal Server Change Terminal Server Listening Port Download RDP 5. 2 Download RDP 5. 2 (Old... --- ### Download Windows 2003 Reskit Tools - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_2003_reskit_tools/ - Categories: Downloads - Article Type: Overview Where can I get the Windows Server 2003 Reskit Tools? The Windows Server 2003 Resource Kit Tools are a set of software tools for administrators, developers, and power users to manage Active Directory, Group Policy, TCP/IP Networks, Registry, Security, Scalability and many other areas of the Windows Server 2003 operating system. The following tools are provided: Acctinfo. dll (documented in Readme. htm) Adlb. exe: Active Directory Load Balancing Tool Admx. msi: ADM File Parser Atmarp. exe: Windows ATM ARP Server Information Tool Atmlane. exe: Windows ATM LAN Emulation Client Information Autoexnt. exe: AutoExNT Service Cdburn. exe: ISO CD-ROM Burner Tool Checkrepl. vbs: Check Replication Chklnks. exe: Link Check Wizard Chknic. exe: Network Interface Card Compliance Tool for Network Load Balancing Cleanspl. exe: Spooler Cleaner Clearmem. exe: Clear Memory Clusdiag. msi: Cluster Diagnostics and Verification Tool Clusfileport. dll: Cluster Print File Port Clusterrecovery. exe: Server Cluster Recovery Utility Cmdhere. inf: Command Here Cmgetcer. dll: Connection Manager Certificate Deployment Tool Compress. exe: Compress Files Confdisk. exe: Disk Configuration Tool Consume. exe: Memory Consumers Tool Creatfil. exe: Create File Csccmd. exe: Client-Side Caching Command-Line Options Custreasonedit. exe: Custom Reason Editor (documented in Readme. htm) Delprof. exe: User Profile Deletion Utility Dh. exe: Display Heap Diskraid. exe: RAID Configuration Tool Diskuse. exe: User Disk Usage Tool Dnsdiag. exe: SMTP DNS Diagnostic Tool (documented in Readme. htm) Dumpfsmos. cmd: Dump FSMO Roles Dvdburn. exe: ISO DVD Burner Tool Empty. exe: Free Working Set Tool Eventcombmt. exe: Check Replication Fcopy. exe: File Copy Utility for Message Queuing Frsflags. vbs Getcm. exe: Connection Manager Profile Update Gpmonitor. exe: Group Policy Monitor Gpotool. exe: Group Policy Objects Hlscan. exe: Hard Link Display Tool Ifilttst. exe: IFilter Test Suite Ifmember. exe: User Membership Tool Inetesc. adm: Internet Explorer Enhanced Security Configuration... --- ### Enable MP3 File Transfer in Windows Live Messenger - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/enable_mp3_file_transfer_in_wlm/ - Categories: Windows Client OS - Article Type: How To How can I enable transfer of MP3 files through Microsoft Windows Live Messenger? Microsoft Windows Live Messenger is the new version of the old MSN Messenger client (read Download Windows Live Messenger for more info). Although in general this version is pretty nice and lacks some of the annoying "Features" that were part of the older versions (such as the annoying tabs), one "feature" still bugs me: In order to make the browsing experience safer to users, the sending and receiving of potentially unsafe files such as executables and JavaScript is disabled by default in Windows Live Messenger, as some file types may contain viruses, spyware or other potential security risks to your computer. Therefore, whenever you try to send or receive a file that has the file extension from the following list, Messenger assumes is potentially unsafe file and thus banned. By default, Messenger blocks files that have the following file extensions: . ade . adp . app . asp . bas . bat . cer . chm . cmd . com . cpl . crt . csh . exe . fxp . hlp . hta . inf . ins . isp . its . js . jse . ksh . lnk . mad . maf . mag . mam . maq . mar . mas . mat . mau . mav . maw . mda . mdb . mde . mdt . mdw . mdz . msc . msi . msp . mst . ops . pcd . pif . pl . prf . prg . pst . reg . scf . scr . sct . shb . shs . tmp . url . vbs . vsd . vb . vbe . vsmacros . vss . vst . vsw . ws . wsc . wsf . wsh All this is fine and nice, we need someone to protect us, don't we? However, as I soon found out, Messenger also blocks files... --- ### Error c1030af1 on Public Folder Properties in Exchange System Manager - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/error_c1030af1_on_pf_properties/ - Categories: Exchange Server - Article Type: Overview The following article deals with solving error c1030af1 when trying to view or modify Public Folder properties in Exchange System Manager. In some cases, when you open ESM (Exchange System Manager) and try to view or modify any Public Folder's properties you might get this error: Note: This error is usually displayed in Exchange Server 2003 System Manager, and right now I don't have any Exchange 2000 machine available to check if this error is also applicable to Exchange 2000. The problem In some cases, when you open ESM (Exchange System Manager) and try to view or modify any Public Folder's properties you might get this error: --------------------------- Exchange System Manager --------------------------- The requested operation is forbidden. ID no: c1030af1 Exchange System Manager --------------------------- OK --------------------------- The solution It seems that this error is related to the fact that SSL is enabled on the EXADMIN virtual directory in IIS on the server. If, for any reason, you enabled SSL on the Default Web Site in IIS, and chose to overwrite the sub folders' (virtual directories) SSL properties, or, for some reason you chose to specifically enable SSL on the EXADMIN virtual directory under the Default Web Site in IIS, you will get this error. Note that if you do want to use SSL on the EXCHANGE virtual directory (in order to use SSL on Outlook Web Access - OWA) you do not need to also enable SSL on the EXADMIN virtual directory. Read... --- ### Exchange 2007 SP1 Preview - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/exchange_2007_sp1_preview/ - Categories: Exchange Server - Article Type: Overview Exchange 2007 Service Pack 1 Preview Microsoft Exchange Server 2007 has been released in the beginning of 2007, and most of us have not gotten used to the many new features (and to the tons of discontinued and deemphasized functionalities - read Exchange 2007 Discontinued Features and Exchange 2007 Deemphasized Functionality for more info). Exchange 2007 is already being deployed all over the world, but since many features that were supposed to be introduced with the RTM version have been removed from the initial release. That is why many companies running previous versions of Exchange have decided to wait till Service Pack 1 will be released (the same is true for deployment of Windows Vista). The Exchange Team Blog has published many of the new features that will be incorporated with SP1, here is a quick and partial list: Standby Continuous Replication (SCR) With Exchange 2007, we introduced Clustered Continuous Replication (CCR) for replication of data between 2 servers within a cluster within the same datacenter. With SCR, data replicates to a non-clustered server in a remote datacenter. If the primary datacenter becomes unavailable, the standby replica in the second datacenter is readily available to be activated. Mobility Great new policies for: Enforcing encryption of main memory contents on device Enforcing which applications are allowed/blocked from running on the device Enforcing networking capabilities: disable wifi, Bluetooth, infrared, external storage Enforcing communication capabilities: disable SMS, MMS, POP/IMAP, disable camera Outlook Web Access (OWA) SP1 will fill in the feature... --- ### Filtering E-mail by World Regions in Exchange Server 2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/filtering-email-world-regions-exchange-server-2003/ - Categories: Exchange Server - Article Type: How To Working with messaging products for many years I've noticed that a popular question on Exchange and Outlook forums is how to block email originating from specific countries or world regions. It is possible in both Outlook and Exchange, with varying degrees of success (read my "Filtering E-mail by Regions in Outlook 2003/2007" article for more info on working with the Exchange client). Originally, most spamming e-mail servers were hosted in the United States. The adoption of laws, such as the CAN-SPAM law of 2004, have forced many spammers to move their operations to countries with fewer controls and rules to host their operations. Today, the United States is declining as the leading source of spam and countries such as China, Korea, Russia, Vietnam, and Brazil are fast becoming sources of spamming mail servers. Naturally, countries with the highest number of spammers operating within their networks are usually those with poor or non-existent spam laws. (Source: http://www. spamhaus. org/statistics/countries. lasso) E-mail traffic received from places where an organization has no interest will likely be spam. Blocking e-mail from those countries or geographic regions (city, state, country, or continent), instantly eliminates a very large percentage of total spam received. Even excluding the USA, blocking the next 10 top spam generating countries might still eliminate over 50% of spam email. IP addresses are allocated by geographical regions. Some of the following links have more information on how the IP range was divided into geographical regions, and give clues on how to find to what... --- ### GAL Problems and OAB Automatic Updates in Outlook 2003 - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/gal_problems_and_oab_automatic_updates_in_outlook_2003/ - Categories: Exchange Server - Article Type: Overview Address List entries in Outlook 2003 are not updated even though I've made changes to users or groups in Active Directory. How can I fix this problem? The problem occurs when an Active Directory administrator made a change to an entry in the GAL, but even after waiting for AD replication, users still sees the old value. When running in cached mode, the offline address book is automatically downloaded and used by the client. There is a registry tweak to disable this behavior (see later in article), however you cannot make Outlook 2003 dynamically switch between full online AD and full cached. By default, most address book data will be retrieved from the OAB, and then back-filled by RPC requests to the AD. However, if a property is found in the OAB, no check is made to see if that property has been recently updated in the AD. Because OAB generation only takes place once a day (by default), users may complain to the support desk that their directory change requests have not been satisfied. To solve the problem you should either re-generate OABs on a more regular basis, or use the following registry parameter. Disabling OAB Download With Outlook 2003 running in cached mode will automatically download offline address books to your local machine. This is desirable for remote and roving users, but you may not want this behavior for local desktop users. In this case, set the following registry parameter: HKEY_CURRENT_USERSoftwareMicrosoftOffice11. 0OutlookCached Mode Parameter: DownloadOAB Type:... --- ### Shavlik HFNetChk Pro/LT - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/hfnetchk_pro/ - Categories: Security - Article Type: Overview Featuring Shalvik's exclusive PatchPush, HFNetChkPro is the easiest way to manage security patches on your network, keeping your network safe. You no longer need to walk to each computer to install patches, or track security patches by hand. HFNetChkPro does this job for you, providing significant time savings in dealing with the large number of security patches system administrators must manage. It's easy. Just install HFNetChkPro once, instead of installing agents over and over. And in just minutes this automated, real-time, patch management tool scans your entire network for vulnerabilities right from your desktop, freeing you up to focus on other security and administrative issues. Built on the industry standard HFNetChk, it is the automated, real-time, patch management tool that helps you quickly eliminate security risks associated with un-patched computers. Used worldwide by corporations including Microsoft, educational institutions, government agencies, and others to assure proper security patch management. Accurately identify missing patches on your network using HFNetChkPro's leading discovery engine, providing you with the most secure and robust patch inspection solution in the industry. HFNetChkPro allows you to precisely review, manage and report on the patch state of your network using up-to-the minute patch information. Remotely update computers with patches from your desktop with the ease of a few mouse clicks. HFNetChkPro enables you to remotely install the patches you determine as necessary for your unique environment. You can install patches one at a time, or in groups, to one or many computers at a time. The HfnetchkPro tool uses... --- ### How to Ask a Question? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how_to_ask_a_question/ - Categories: Main - Article Type: How To How to ask a question? (or - How do I ask a question on a professional forum/newsgroup without getting flamed? ) How many times did you post a question on a technical newsgroup or forum, waited quite a lot of time for an answer, and the only thing you got was either a long silence, or this type of answer: "Your question does not contain all the required information needed for us to help you. Please re-write your question, this time make sure you have all the needed info and we'll try to help. " If you've seen such answers before (not to mention plain simple RTFMs) then it's highly likely that you'll benefit from reading this article. When posting a question to a professional forum or newsgroup it is vital to format the question and it's content in a proper way. Doing so will greatly increase the possibility for quickly receiving a good answer, and thus saving you time and frustration. Failing to do so will cause your question to be ignored by the forum's readers and thus wasting your time and delaying the solution to the original problem. In the worst case scenario your badly-written question might cause other readers to flame you or even ban you from that forum or newsgroup. After posting a question to a professional forum or newsgroup and waiting for a while, you get the following answer(s) from the active forum/newsgroup members: "Your question does not contain all... --- ### Internet Explorer 6.0 SP1 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/ie_60_sp1_patches/ - Categories: Patches and Service Packs - Article Type: Overview Internet Explorer 6. 01 SP1 Patches Microsoft Internet Explorer 6 Service Pack 1 (SP1) is available for Windows XP, Windows Millennium Edition, Windows 2000, Windows 98, and Microsoft Windows NT 4. 0 Service Pack 6a. Internet Explorer 6 SP1 is a critical update. Internet Explorer 6 SP1 includes all prior patches and updates as well as enhancements to security and reliability. IE 6 is not compatible with Windows 95. Download IE 6. 0 + SP1 Total download size for a typical installation is approximately 25 megabytes. However, because setup downloads only those files that are necessary for your computer, this size can vary between 11 and 75mb. See the Download the full IE package page for a tip on how to download ALL the files needed to install IE. For a list of issues that are addressed in Internet Explorer 6 SP1, read Microsoft Knowledge Base Article 326489. Uninstalling Service Pack 1: If you upgraded from IE5. 5 to IE6 prior to applying IE6 SP1, you are in trouble. Uninstalling IE6 SP1 will then uninstall the entire IE6 instead of only the Service Pack. Don't do it unless you must. Windows Server 2003 Note: For the Windows Server 2003 version of this article please read Internet Explorer 6 on Windows Server 2003 Patches. Required Patches Internet Explorer 6. 0 with SP1 requires the following security-related patches: October 2005 MS05-052 : Cumulative Security Update for Internet Explorer (896688) This update replaces the update that is included with Microsoft Security... --- ### Increase your Windows Vista Performance with the Performance & Reliability Improvements Pack - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/increase-windows-vista-performance-reliability-improvement-pack-sp1/ - Categories: Windows Vista - Article Type: How To As you've probably read here on my site in the past, I and many of my readers have been very disappointed with the performance of Windows Vista, as it is when installed out of the box. Although I've written many tips and tricks on the necessary steps needed to be done in order to make Vista run a bit faster, still these changes that one should perform are mostly manual changes, and even after doing so, Vista's performance is still lacking when compared to a similar computer running Windows XP SP2. In fact, here are some of my more recent Windows Vista Tips: Why you should Upgrade to Windows Vista SP1 Windows Vista Service Pack 1 is RTM What's User Account Control in Windows Vista? Enable Windows Vista Aero Graphics Disable User Account Control in Windows Vista Although not quite breaking news, Microsoft has officially released the Window Vista "Performance and Reliability Pack" and "Compatibility and Reliability Pack" that, after installing on RTM versions of Vista, have had quite a good improvement in speed and reliability of these computers. These updates are part of the recently released Service Pack 1 (SP1) for Vista (see Why you should Upgrade to Windows Vista SP1). The first patch available as a Windows Update fix can be found in KB 938979. This update resolves the following issues: You experience a long delay when you try to exit the Photos screen saver. A memory leak occurs when you use the Windows Energy... --- ### Install Hebrew on Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_hebrew_on_windows_server_2003/ - Categories: Windows Server - Article Type: How To How can I install and use Hebrew fonts on my Windows Server 2003 computer? Windows Server 2003 (and 2000/XP/Vista) has the built-in ability to display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. To see Hebrew fonts on your Windows XP computer you MUST perform the following tasks precisely in the order listed here. Not doing so might cause your computer to display ? ? ? ? ? ? ? instead of Hebrew fonts, especially in Office applications. Unlike W2K, it is SAFE and it is OK for you to install Hebrew language support during the GUI setup phase of Windows Server 2003. Note: You might also want to read the following articles: Install Hebrew on Windows 2000 Install Hebrew on Windows XP Install Hebrew on Windows Vista Option 1: During the GUI phase of the setup process After rebooting from the text-based setup phase, the computer will display the setup GUI, and the fist prompt you'll get is the Regional Settings customization window. You can install Hebrew support at this phase by pressing the Customize button and going to the Languages tab. Select the "Install files for complex script and right-to-left languages" check-box. A warning message will appear. Press Ok. Warning: You must now press Apply! ! ! Setup will copy the necessary files from the installation point. You can now go to the Regional Options tab and select Israel in the Location drop-down list, and Hebrew in the Standards and Formats drop-down... --- ### Install Windows Server 2003 > This Windows Server 2003 installation and setup guide takes you from initial install to final configuration. - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_windows_2003/ - Categories: Windows Server 2003 - Article Type: How To This Windows Server 2003 installation and setup guide takes you from initial install to final configuration. How can I install Windows Server 2003 on my server? As a Microsoft Windows Server support professional, one of your tasks may be to install the operating system. Update: Get step-by-step instructions on how to install Windows Server 2008 here. Step #1: Plan your installation When you run the Windows Server 2003 Setup program, you must provide information about how to install and configure the operating system. Thorough planning can make your installation of Windows Server 2003 more efficient by helping you to avoid potential problems during installation. An understanding of the configuration options will also help to ensure that you have properly configured your system. I won't go into that part right now (I might later this month, no promises... ) but here are some of the most important things you should take into consideration when planning for your Windows Server 2003 installation: Check System Requirements Check Hardware and Software Compatibility Determine Disk Partitioning Options Choose the Appropriate File System: FAT, FAT32, NTFS Decide on a Workgroup or Domain Installation Complete a Pre-Installation Checklist After you made sure you can go on, start the installation process. Step #2: Beginning the installation process You can install Windows Server 2003 in several methods - all are valid and good, it all depends upon your needs and your limitations. For example, you can install directly from a CD by booting your computer with the CD, or you can also copy the I386 folder from a CD and run the setup... --- ### Installing Windows Server 2008 Core - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/installing-windows-server-2008-core/ - Categories: Windows Server 2008 - Article Type: How To As I wrote in my previous articles, a Windows Server 2008 Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. The advantages of Server Core are: security improvement (reduced attack surface), needs less system resources (occupies only one third disk space), patching is easier, boots up faster. A server running a Server Core installation supports the following server roles: Active Directory Domain Services (AD DS) Active Directory Lightweight Directory Services (AD LDS) DHCP Server DNS Server File Services Print Services Streaming Media Services Internet Information Services (IIS) Windows Virtualization In Windows Server 2008,  Server Core installation does not include the traditional full graphical user interface (GUI). You can read more about how to locally and remotely manage Server Core machines by reading the list of articles in the Related Articles section at the bottom of this page. Installing Server Core is pretty straightforward, but I thought I'd list the necessary steps here for additional information. However, please note the following: There is no way to upgrade from a previous version of the Windows Server operating system to a Server Core installation. Only a clean installation is supported. There is no way to upgrade from a full installation of Windows Server 2008 to a Server Core installation. Only a clean installation is supported. There is no way to upgrade from a Server Core installation to a full installation of Windows Server... --- ### How to Create an Inexpensive iSCSI SAN for VMware ESX - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/iscsi-san-vmware-esx/ - Categories: VMware - Article Type: How To Many of the features of VMware ESX Server and VMware Virtual Infrastructure depend on having a storage area network (SAN). That applies to all the "cool" features like vMotion and VMHA. With a SAN, you have two choices, FC or iSCSI. A fiber channel (FC) SAN can easily cost as much as a small house and enterprise iSCSI equipment may cost half that. Still, what if you just want a test or demonstration iSCSI SAN? No one wants to have to buy one of these expensive options if you want to just test a couple of ESX Servers and Virtual Center. What are your options? Why use iSCSI? Before the die-hard SAN users out there send me an email, let me tell you why I want to use iSCSI: If done right, with the right equipment, and proper level of investment in equipment, iSCSI can be, dare I say, just as reliable and almost as high of performance as Fibre Channel. Still, I am not recommending anyone invest in enterprise iSCSI equipment in this article. That's not what it is about. For testing and development systems, I don't want to spend a lot of money. iSCSI is an excellent choice for these because it can be done at low cost and you still get almost every ESX Server feature out of it. What if I want to run VMware ESX server inside a virtual machine like VMware Workstation? Yes, it can be done with Workstation 6 but... --- ### Logon Locally User Right - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/logon_locally_user_right/ - Categories: Windows Server 2003 - Article Type: Overview How can I easily give someone the Log On Locally user right on a Windows 2000 and Windows Server 2003 Domain Controllers? In Windows 2000 (and Windows Server 2003) servers that are configured as Domain Controllers only 5 groups have the right to log on locally on the computer. Those groups are: Administrators, Account, Print, Backup, and Server Operators. Without this right any user who will try to log on locally will receive this message: (The local policy of this system does not permit you to log-on interactively) To give a specific user or group the right to log on locally on the DC you must edit the Domain Controller GPO (or create another one and link it to the Domain Controllers OU in Active Directory Users and Computers). Most novice IT personnel find it harder to add user rights on W2K than in Windows NT 4. I agree, but life goes on, doesn't it? To make life easier run this command and you won't have to edit the GPO: ​ntrights -u Users +r SeInteractiveLogonRight You must have the NTRIGHTS. EXE program from the W2K Resource kit (or d/l it from HERE). (You can substitue USERS with the name of the user or group you want to configure). If you still want to do it via the GPO, do the following: Go to Start, Settings, Control Panel, Administrative Settings. Double-click Domain Controller Security Policy. Go to Security Settings, Local Policies, User Rights. Double-click... --- ### Message Protocols Used by Exchange 2000/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/message_protocols_used_by_exchange_2000_2003/ - Categories: Exchange Server - Article Type: Overview What message protocols does Exchange 2000/2003 use? Each Exchange server has a Protocols container that contains the HTTP, Internet Message Access Protocol version 4 (IMAP4), Network News Transfer Protocol (NNTP), Post Office Protocol version 3 (POP3), Simple Message Transfer Protocol (SMTP), and X. 400 protocol objects. Each object provides a virtual server to messaging clients using that protocol. HTTP Support HTTP is the underlying protocol used by the World Wide Web. HTTP defines how messages are formatted and transmitted, and what actions Web servers and browsers take in response to various commands. Microsoft Exchange 2000 Server supports HTTP and WebDAV to provide more functionality for general data access. Document access - HTTP and WebDAV support a collaborative environment in which users can edit documents; protect updated data from being lost; collect resources in a common folder; move or copy files; and modify information about files, such as author, date of creation, and related file links. E-mail access - HTTP and WebDAV can be used to access mailboxes and messages; notify users that new e-mail has arrived; and allow users to move, copy, or delete e-mail on the server. Application access - HTTP and WebDAV are also referred to as standards-based application layers. Mailboxes and public folders are exposed through a unique URL, allowing custom applications to retrieve data directly from Information Store. Microsoft Exchange 2000 Server provides support for WebDAV through HTTP virtual servers. The folder contents the HTTP virtual server displays are converted to Web pages and sent... --- ### Missing Drag and Drop in Vista Command Prompt - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/missing_drag_and_drop_vista_command_prompt/ - Categories: Windows Vista - Article Type: Overview   One of the cool features in the Windows 2000/XP/2003 Command Prompt (CMD) window was the ability to drag and drop files from it. You could drag a file from your desktop or from within any folder in Windows Explorer, and drop it to an open Command Prompt window. This feature was nice to have especially when running executable files nested deep within a folder hierarchy. Instead of manually navigating the Command Prompt path to the required folder, you could simply drag and drop the necessary file to the Run option or to the Command Prompt and press Enter to run it. After playing with beta versions of Windows Vista many users realized that the drag and drop functionality of the Command Prompt in Vista has been removed. This is also true for the RTM version. If you try to drag a file from anywhere in Windows Explorer to an open Command Prompt window in Vista you see that the pointer icon changes to a “no entry” symbol: When asked, Microsoft officials provided dull answers and claimed that this is “by design” and that it was in fact “a feature”. Some claimed that “This was done to reduce the command window's dealings with the dragged data object” which in my opinion is pure crap when compared to the huge overhead provided by other so-called “advanced” features of Vista such as the process-intensive Aero theme (read my “Aero Theme is bad, disable it” article or to the huge... --- ### New GFI Software White Paper Explains NDR Spam - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/new-gfi-software-white-paper-explains-ndr-spam/ - Categories: Exchange Server - Article Type: Overview I was recently informed by GFI Software that they have a new white paper that explains what NDR spam is and how administrators can take effective measures to reduce the impact on their email servers. As an email marketing manager, I found this white paper very helpful in understanding what NDR or non-delivery report spam is, and how spammers use it. I have included a few excerpts from the press release below. To read the full press release on their website, click here. You can also download a copy of the white paper by clicking here.   NDR spam: When non-delivery reports become a nuisance Research shows that up to 90% of emails received by companies are spam, and spammers have adopted a variety of methods to bypass spam filters used in anti-spam software. In the beginning, spam was mainly text based but over the past few years, spammers have resorted to using embedded images and attaching common file types such as mp3s and Excel documents in emails to gain access to mailboxes. Another option is NDR or non-delivery report spam. NDRs are a common part of email exchanges. Users receive NDRs, for example, when an email does not arrive at a recipient’s address and notification is sent to the sender. However, spammers can cause a considerable increase in NDR activity because they send junk mail to thousands of email addresses. Some are genuine but others are not and these are used to generate NDR messages by manipulating the ‘From’... --- ### Overview of Windows Server 2003 - Enterprise Edition > Windows Server 2003 Enterprise Edition boasts a number of features that lesser versions of Windows Server lack. Find out what they are in this handy overview. - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/overview_of_windows_server_2003_enterprise_edition/ - Categories: Windows Server 2003 - Article Type: Overview Windows Server 2003 Enterprise Edition boasts a number of features that lesser versions of Windows Server lack. Find out what they are in this handy overview. Designed for medium to large businesses, Windows Server 2003, Enterprise Edition, is the recommended operating system for servers running applications such as networking, messaging, inventory, and customer service systems; databases; and e-commerce Web sites. Windows Server 2003, Enterprise Edition, delivers high reliability, performance, and superior business value and is available in both 32-bit and 64-bit versions. In This Edition Windows Server 2003, Enterprise Edition, differs from Windows Server 2003, Standard Edition, primarily in its support for high-performance servers and its ability to cluster servers for greater load handling. These capabilities provide reliability that helps ensure systems remain available even if problems arise. At a high level, Windows Server 2003, Enterprise Edition, provides support for: Eight-way symmetric multiprocessing (SMP).   To increase server performance and capacity, you can add processors, an approach to increasing your network capacity is known as scaling up. The enhanced support for SMP allows you to add processors that work together—that is, multiprocessor servers. Up to 8 multiprocessors are supported in the 32-bit version. For 64-bit Intel Itanium-based systems, 64-way SMP is supported. Eight-node clustering.   Server clusters up to eight nodes are available only in Windows 2003, Enterprise Edition, and Windows 2003, Datacenter Edition. 32 gigabytes (GB) of RAM in 32-bit versions, 512 GB in 64-bit versions.   By adding memory, a computer can work with more information at once. Windows Server 2003, Enterprise Edition, includes enhanced memory capabilities that let you increase the memory available for server processing to as much as 32 GB of... --- ### Prepare IIS on Windows XP/2003 for Sharing Calendars using Internet Publishing - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/prepare-iis-sharing-calendars-using-internet-publishing/ - Categories: Exchange Server - Article Type: How To As I discussed in my previous article – "Share Calendars with Local Users using Internet Publishing", Outlook 2007 has improved calendar sharing using Office Online. You can share your calendar with everyone, or with only designated people, by publishing your Internet Calendars to Office Online. You can publish and share your calendars with others by publishing them to a WebDAV server. This server can be either on the local network, or on the Internet. If you prefer not to publish them on an Internet server and you have one machine running Windows Server 2003, Windows XP or Vista, you can publish the calendar to your computer and share it with other user accounts or anyone on your network who uses Outlook 2007 or Vista's Windows Calendar. This article assumes you wish to publish the calendar to an internal server. Tip: For Small Office/Home Office (SOHO) networks that do not have a central server, install IIS on a machine that will be turned on either 24/7 or on longer than the others for best results. This article describes the first step in publishing the calendars, which is the IIS installation and configuration phase. When you're done, follow the steps outlined in my "Share Calendars with Local Users using Internet Publishing" article. Publish Calendars to a Windows XP computer In order to publish a calendar to a Windows XP computer you will need to install IIS 5. 1 on that computer. Follow these steps:   1.  Go to Control Panel, click Add... --- ### Quickly Check EFS Attributes - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_check_efs_attributes/ - Categories: Security - Article Type: How To How can I check to see if a file is encrypted with EFS or not? When you try to access a file on an NTFS file system volume, you may receive an "access is denied" error message. The file's NTFS permissions indicate that you can access the file. Sometimes this means that the file is encrypted with EFS. To determine if a file has been encrypted: Start Windows Explorer, and then click Detail on the View menu to view the details of the folder's contents. Click Choose Columns from the View menu, and then click to select the Attributes check box to add the Attributes column to the current view, and to view the file attributes. You can also right-click any portion of the details header-column and click the Attributes column to be displayed.   If there is an "E" in the Attributes column for that file, the file is encrypted.   You can also use the CIPHER command from a CMD window: Run the CIPHER command without any parameters to display the encryption status of files and folders.   A U means that the file/folder is un-encrypted. An E means that it is encrypted. Related articles You might also want to read the following related articles: Access Denied Error in EFS Encrypted Files Compression and Other Attributes in EFS Copy Encrypted Files on the Network Data Protection and Recovery in Windows XP Disable EFS in Windows 2000 Disable EFS in Windows... --- ### Quickly Find Remote Open Ports - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/quickly_find_remote_open_ports/ - Categories: Networking - Article Type: How To If you want to see all the used and listening ports on a remote computer use the PORTQRY. EXE command, which is available on any Windows 2000, XP or Windows Server 2003 computer. PORTQRY. EXE reports the status of a TCP/IP port in one of the following three ways: Listening - A process is listening on the port on the computer that you selected. PORTQRY. EXE received a response from the port. Not Listening - No process is listening on the target port on the target system. PORTQRY. EXE received an Internet Control Message Protocol (ICMP) "Destination Unreachable - Port Unreachable" message back from the target UDP port. Or if the target port is a TCP port, Portqry received a TCP acknowledgement packet with the Reset flag set. Filtered - The port on the computer that you selected is being filtered. PORTQRY. EXE did not receive a response from the port. A process may or may not be listening on the port. By default, TCP ports are queried three times, and UDP ports are queried one time before a report indicates that the port is filtered. PORTQRY. EXE can query a single port, an ordered list of ports, or a sequential range of ports. Also, PORTQRY. EXE displays "extended information" that is returned from some ports. PORTQRY. EXE looks for "extended information" on ports where SMTP, POP3, IMAP4, and FTP services listen. An example is SMTP. By default, SMTP listens on TCP port 25. When PORTQRY. EXE finds that TCP port 25 on a target computer is... --- ### Raise Domain Function Level in Windows Server 2003 Domains - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/raise_domain_function_level_in_windows_2003/ - Categories: Active Directory (AD) - Article Type: How To How can I raise the domain function level in a Windows Server 2003-based domain? Functional levels are an extension of the mixed/native mode concept introduced in Windows 2000 to activate new Active Directory features after all the domain controllers in the domain or forest are running the Windows Server 2003 operating system. When a computer that is running Windows Server 2003 is installed and promoted to a domain controller, new Active Directory features are activated by the Windows Server 2003 operating system over its Windows 2000 counterparts. Additional Active Directory features are available when all domain controllers in a domain or forest are running Windows Server 2003 and the administrator activates the corresponding functional level in the domain or forest (read Understanding Function Levels in Windows Server 2003 Active Directory for more info). To activate the new domain features, all domain controllers in the domain must be running Windows Server 2003. After this requirement is met, the administrator can raise the domain functional level to Windows Server 2003. To activate new forest-wide features, all domain controllers in the forest must be running Windows Server 2003, and the current forest functional level must be at Windows 2000 native or Windows Server 2003 domain level. After this requirement is met, the administrator can raise the domain functional level (read Raise Forest Function Level in Windows Server 2003 Active Directory for more info). Note: Network clients can authenticate or access resources in the domain or forest without being affected by... --- ### Reduce Help Desk Calls With The Specops Password Reset Tool - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/reduce-help-desk-calls-with-specops-password-reset/ - Categories: Windows Server 2008 - Article Type: Overview One of the most time consuming administrative tasks is the password reset issue. Research shows that help desk calls may consist of up to 40% of password reset related issues. When I've learned about a new tool that was designed to help mitigate these issues I wanted to test it out. The tool is called Specops Password Reset or SPR for short, and it is designed to allow the end user the ability to reset a lost password without the help of administrative personnel. However, when trying to solve this problem, one must be cautious about verifying the identity of a user, so that they can only reset their own password and not somebody else's. Here is where Specops Password Reset introduces uses two different techniques to verify users’ identities: secret questions and mobile verification codes. Secret questions To use secret questions for user verification, users must enroll in the Password Reset Service. When enrolling they are asked a number of questions. A question can be for example “What was your mother’s maiden name? ” The nature of the questions should be such that the user easily will remember the answer to them, whereas other users should not be likely to know the answer, or easily find it out. What questions and how many questions to be answered are configured by the administrator.   All the users' secret answers are stored in Active Directory using one-way encryption (SHA-256) and they are also protected against reading through an ACL... --- ### Remove the Manage My Computer Context Menu from My Computer in 2000/XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/remove_manage_my_computer_from_context_menu_in_w2k_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I remove the Manage My Computer context menu from My Computer in 2000/XP/2003? In Windows 2000/XP/2003, when you right-click the My Computer icon on the desktop, you will see an option called "Manage". By clicking on the Manage option will are opening the Computer Management console - a collection of the computer's management tools (including Device Manager, Event Viewer, Disk Management, Disk Defragmenter, Shared Folders, Local Users and Groups and more). Although this tool can be easily run by going to the Administrative Tools folder, or by running compmgmt. msc from the Run command, it is still a possible security threat to leave it in place, and thus complicating the process or opening it (especially if you are also using GPO to add some extra security limitations). To remove the Manage option from the context menu of My Computer in Windows 2000/XP/2003 follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer Create the following value (DWORD): NoManageMyComputerVerb and give it a value of 1. Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a . REG file before performing the changes. Close Registry Editor. There is no need to reboot if you update your desktop by running gpupdate /force from the Run command (XP and... --- ### Forgot the Administrator's Password? - Change Domain Admin Password in Windows Server 2008 AD - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/reset_domain_admin_password_in_windows_server_2008_ad/ - Categories: Security - Article Type: How To Step 1 Restart Windows 2003 in Directory Service Restore Mode. Note: At startup, press F8 and choose Directory Service Restore Mode. It disables Active Directory. When the login screen appears, log on as Local Administrator. You now have full access to the computer resources, but you cannot make any changes to Active Directory. Step 2 You are now going to install SRVANY. This utility can virtually run any programs as a service. The interesting point is that the program will have SYSTEM privileges (LSA) (as it inherits the SRVANY security descriptor), i. e. it will have full access on the system. That is more than enough to reset a Domain Admin password. You will configure SRVANY to start the command prompt (which will run the 'net user' command). Copy SRVANY and INSTSRV to a temporary folder, mine is called D:\temp. Copy cmd. exe to this folder too (cmd. exe is the command prompt, usually located at %WINDIR%\System32). Start a command prompt, point to d:\temp (or whatever you call it), and type: instsrv PassRecovery "d:\temp\srvany. exe" (change the path to suit your own). It is now time to configure SRVANY. Start Regedit, and navigate to HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\PassRecovery Create a new subkey called Parameters and add two new values: name: Application type: REG_SZ (string) value: d:\temp\cmd. exe name: AppParameters type: REG_SZ (string) value: /k net user administrator 123456 /domain Replace 123456 with the password you want. Keep in my mind that the default domain policy require complex passwords (including digits, respecting a minimal length etc) so unless you've... --- ### Run Active Directory Management Tools as Another User - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/run_ad_tools_as_another_user/ - Categories: Active Directory (AD) - Article Type: How To How can I run Active Directory management tools as another user (one with administrative privileges)? As a security best practice, it is recommended that you do not log on to your computer with administrative credentials.  Running your computer as a member of the Administrators group makes the system vulnerable to Trojan horses attacks and other security risks. It is recommended that you use a regular, non-administrative user account to perform routine tasks, including running programs and visiting Internet sites. When it becomes necessary to perform administrative tasks on the local computer or in Active Directory, use RUNAS to start a program using administrative credentials. RUNAS allows you to accomplish administrative tasks without exposing your computer or data stored in Active Directory to unnecessary risk. However, using the RUNAS command can turn out as a real bugger when you need to perform regular administrative operations such as adding a new user, resetting someone's password, stopping or starting a system service and so on. In Windows 2000 we welcomed the new addition - the RUNAS command. However, in Windows Server 2003 the RUNAS command got even easier to use. Therefore I recommend using the following method to make your administrative tasks a bit easier to accomplish: When logged in as a normal, non-privileged user, right-click on an empty spot on your desktop and create a new shortcut. In the Create Shortcut window type the following text (see other examples below): ​runas /savecred /user:dpetri'administrator "mmc dsa. msc" Note: The... --- ### Search - Published: 2009-01-08 - Modified: 2024-09-04 - URL: https://petri.com/search/ - Categories: Windows Server - Article Type: Overview Advanced Search You can use the search form found on each page's right-hand top corner. It will invoke a Google-based search engine that will perform searches on the Petri. co. il website. Please use this form to search for a specific word or phrase found on this site.   Web petri. com You can also see the following pages for more info and help: Contents Search Tips MS Knowledge Base Search Tips Site Structure --- ### Setting Windows Server 2008 Terminal Services Display Data Prioritization - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/setting-windows-server-2008-terminal-services-display-data-prioritization/ - Categories: Windows Server 2008 - Article Type: How To Windows Server 2008 holds some major key benefits in Terminal Services technology. Some of these are discussed in various articles on my site (see Related Articles section below). One of these features is Display Data Prioritization. Display Data Prioritization in Windows Server 2008 Terminal Services allows for automatic control over the virtual channel traffic that is passed between the client (RDP 6. 0) and the server (running Windows Server 2008). This enables better performance and user experience because display, keyboard typing, and mouse movement data is given a higher priority over other virtual channel traffic, such as printing, clipboard operations or file transfers. This prioritization is designed to ensure that your screen performance (user experience) is not affected by bandwidth intensive actions, such as large print jobs. In Windows Server 2008 Terminal Services, the default bandwidth ratio is 70:30. This means that display and input data will be allocated 70% of the bandwidth and all other traffic, such as print jobs , clipboard or file transfers will be allocated 30% of the bandwidth. Changing the Display Data Prioritization Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of... --- ### Temporarily Increase the Exchange 2000 16 Gigabyte Database Size Limit - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/temporarily_increase_the_exchange_2000_16_gigabyte_database_size_limit/ - Categories: Exchange Server - Article Type: How To How to Temporarily Increase the Exchange 2000 16-Gigabyte Database Size Limit? MS KB 813051 has info on this issue: The Microsoft Exchange 2000 Server message database (MDB) automatically shuts down and does not restart when it reaches the maximum size limit that is permitted. This behavior is by design to prevent the database from trying to insert more data into the database file than it was designed to hold. Frequently, you experience this behavior when you are running Microsoft Exchange 2000 Server Standard Edition. Exchange 2000 Server Standard Edition limits the database size to 16 gigabytes (read more - What's my Exchange 2000/2003 Version? ). A new update to Exchange 2000 has been developed that permits you to temporarily increase the database size limit by 1 gigabyte. By increasing the size limit, you can selectively remove unnecessary database content (read more - Delete Messages from Mailboxes by using EXMERGE), defragment the database (read more - Defragment Exchange 2000/2003 Server Databases), and reduce the database size to a manageable level that is below the defined limits for database size. Follow these easy steps: Run Regedit and navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesMSExchangeISPrivate On the Edit menu, click Add Value (Select REG_DWORD for the data type), and then type the following in the Value name box: Temporary DB Size Limit Extension Enter a value of 1. Exit the registry editor and reboot the server or restart the Information Store service. If the Temporary DB Size Limit Extension registry... --- ### Create a mountable virtual encrypted hard drive in Windows Vista using TrueCrypt - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/truecrypt/ - Categories: Security - Article Type: How To TrueCrypt is a free, open-source application for Windows XP and Windows Vista that will create a mountable, virtual, encrypted, hard disk. The encrypted files can be easily transported to mobile media including thumb drives, CDs, external hard drives, etc. The entire process is graphical and can be completed by users of any experience level. TrueCrypt accepts command line parameters which allows you to create a batch file to automatically mount your encrypted virtual hard disk. TrueCrypt will dynamically increase the size of your partition if you run out of drive space. Install TrueCrypt The first step is to download and extract TrueCrypt from the project homepage. Double click TrueCrypt Setup to begin. If you are prompted for an administrator password or confirmation, type the password or provide confirmation. Leave the default installation path and leave all five text boxes selected and click Install. TrueCrypt will create a system restore point and begin the installation process. It will take several minutes, click Ok. TrueCrypt Setup will prompt you to review the documentation. The documentation is very thorough and well worth the read, however, for the purposes of this tutorial click No. In the TrueCrypt Setup dialog, choose Exit. Create A TrueCrypt Encrypted Volume Launch TrueCrypt from the Start menu (Start >> All Programs >> TrueCrypt >> TrueCrypt) Click Create Volume. Leave the default selection as “Create a standard TrueCrypt Volume” and click Next. Click Select File... Create a file at C:'Users'USERNAME'Encryption and click Save. Click Next. Leave the... --- ### Untrusted Certificate Source - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/untrusted_certificate_source/ - Categories: Security - Article Type: Overview How can I tell if an SSL certificate is from an un-trusted source or not before I enter the secured site? Any website operator that wants to secure the site or some of it's pages with SSL must obtain a valid certificate from a trusted third party CA. If you try to enter a secure website that uses a certificate from an un-trusted CA, like the MCP Secure site on Microsoft's website at http://www. microsoft. com/traincert/mcp/mcpsecure. asp you will get a secure website warning (This was true for the 29th of January 2003 - read more about it on the Expired SSL Website Certificate page): If you click OK your web browser will try to obtain the signed certificate from the web server, but if that certificate is signed by an un-trusted CA you'll get this warning: You can choose to view the certificate and if you do you'll see (on the General tab) the reason for the error message: If you click on the Details tab you can see that this specific certificate is outdated: If you choose to agree to accept this certificate you will be able to enter the secure site, providing it is indeed a secure and valid site, and not an exploit or a redirected malicious site. Note: Having respected sites like Microsoft's use expired certificates or certificates from un-trusted CAs is somewhat irresponsible in my opinion. Any hacker or malicious user with little HTML, X500 and hacking knowledge can easily divert the innocent and un-expecting users to... --- ### Using Backup Status and Configuration in Vista - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using_backup_status_and_configuration_in_vista/ - Categories: Windows Vista - Article Type: Overview To protect your files you can create a backup by using Vista's Backup Status and Configuration tool. A backup set is a set of copies of the files that is stored in a different location from the original files. That location can be a different partitions on your computer's internal hard disk, an external hard disk, a remote share on a different computer, and even writable media such as CD-R and DVD-R. Note: It is recommended that you never back up files to a location that is on the same hard disk as where Windows is installed, because if your computer gets hit by a virus or has a software failure, you might have to reformat the disk and reinstall Windows to recover from the problem, and if you do so you will probably lose the ability to gain access to your backup media. BTW, you should also read my "Using System Restore in Windows Vista", "Restore Ntbackup Backups from Windows XP to Windows Vista" and "Installing Windows XP Ntbackup on Windows Vista" articles. Vista's Status and Configuration tool has a simple user interface, and with a small number of clicks even the less experienced user can easily set up an automatic backup schedule. With automatic backups, you don't have to remember to back up your files, the system does it for you, all you need to do is to remember to leave enough disk space on the destination drive, or in case of writing to a... --- ### Creating Differencing Disks with Microsoft Virtual PC - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/virtual_creating_differencing_disks_with/ - Categories: Virtualization - Article Type: How To As I mentioned in my "Creating Virtual Machines with Microsoft Virtual PC 2007" article, Microsoft Virtual PC is one of the top contenders in a growing line of Virtual Machine utilities. I will not go into the age-old fight on who's best – Microsoft Virtual PC or VMWare's software. Both are free and both are good, but as far as I am concerned, the latest version, called Microsoft Virtual PC 2007, is my preferred VM tool for my own personal use. You can download Microsoft Virtual PC 2007 for free from the following link: Download details - Virtual PC 2007 Note that besides Virtual PC, Microsoft also offers a more robust product called Virtual Server 2005 R2. We will deal with that product in a later article. When you work with Virtual Machines you must allocate at least one virtual hard disk per machine. The virtual machine "sees" the virtual hard disk as a real hard disk, and is able to format it and install itself on it. Microsoft Virtual PC also supports two types of virtual hard disk that I want to talk about in this article: Differencing virtual hard disks - Differencing virtual hard disks allow multiple users and multiple virtual machines to use the same parent virtual hard disk at the same time. Virtual PC stores any changes to the virtual hard disk in the differencing virtual hard disk. For example, you can build one instance of a given operating system, configure it as a... --- ### What's a Trojan Horse? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/whats_a_trojan_horse/ - Categories: Security - Article Type: Overview What is a Trojan Horse and what threat does it pose? Since "Trojan Horses" (or Backdoors) have been in the news just recently, the term probably sounds familiar to you. But perhaps you’re not quite sure what a Trojan Horse is and what damage it is capable of doing to your system. Trojan Horses, of which there are now more than one thousand in circulation (including modifications and variants), are a relatively new and probably the most dangerous strain of viruses that have appeared in recent times. They also threaten to overwhelm systems that only run anti-virus applications and firewalls as a means of combating the threat. Today's Trojans as they are commonly referred to as, have now attained such a degree of sophistication that they pose a real threat to any user who hasn't taken adequate precautions to protect their data. The name "Trojan Horse" derives itself from a page in Greek history when the Greeks had lain siege to the fortified city of Troy for over ten years. Their spy, a Greek called Sinon offered the Trojans a gift in the form of a wooden horse and convinced them that by accepting it, they would become invincible. The horse though was hollow and was occupied by a contingent of Greek soldiers. When they emerged in the dead of night and opened the city gates, the Greeks swarmed in, slaughtered its citizens and subsequently pillaged, burned and laid waste to the city. In the IT environment,... --- ### What's the HCL? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/hardware-compatibility-list/ - Categories: Windows Client OS - Article Type: Overview What's the HCL? The hardware compatibility list (or HCL) provides a representative list of hardware peripherals that are compatible with the Microsoft Windows operating systems (e. g. Windows 98, Windows NT 4. 0, Windows 2000, Windows XP and Windows 2003). Microsoft has validated the compatibility of the hardware peripherals on an x86-based Windows hardware reference platform. Microsoft Product Support Services uses the HCL to determine whether or not a computer is supported for use with the Windows operating system. Before you install Windows on a computer, check the HCL to determine whether the computer is certified by Microsoft as Windows-compliant. The latest Windows HCL is available from the Microsoft Windows Drivers and Hardware Central web site You can search for specific hardware items and see if they are listed as compatible with the Microsoft OS that you are running. I suggest you visit the site before buying any piece of hardware that does not have the Microsoft Windows Logo icon on it. Note that MS has not tested every computer and/or device in all possible configurations, and that some computers may be sold with peripherals that are not yet supported by your version of Windows, or that require a device driver supplied by the manufacturer. Note: Additional products that are not found on the latest HCL will probably (but not always) cause the Microsoft support staff to stop your support. Contact your hardware manufacturer for details on products not listed there. Related articles You may also want to read:... --- ### Microsoft Hyper-V will not boot virtual SCSI devices - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/win-2008-hyper-v-will-not-boot-virtual-scsi-devices/ - Categories: Virtualization - Article Type: Overview There is recent unexpected bad news from Microsoft concerning Hyper-V: Anthony F. Voellm, Principal Software Development Lead of Hyper-V at Microsoft, reveals in his corporate blog that the upcoming hypervisor (named Microsoft Hyper-V, formerly known as "Viridian") will not boot from virtual SCSI hard drives: "Each IDE controller can have two devices.   You can not boot from a SCSI controller.   This means an IDE disk will be required.   The boot disk will be IDE controller 0 Device 0.   If you want a CDROM it will consume an IDE device slot. " Source: MSDN Blog The hypervisor that runs the virtual BIOS does not support booting from a SCSI controller, today, but it does support the following boot devices: CD IDE Legacy Network Adapter Floppy The root reason is SCSI in a synthetic device and there is no VMBUS until after boot. One might think that this shouldn't be a problem, after all, the virtual machines can still boot from regular IDE-based virtual disks. So where's the catch? The main problem is related to the fact that in Virtual Server, virtual SCSI controllers have major performance benefits over virtual IDE controllers. In Virtual Server, it is recommended to attach the Virtual Disks to one or more SCSI controllers to improve disk input/output (I/O) performance. IDE is limited to one transaction at a time, regardless of whether the bus is physical or virtual. This means that a virtual machine with two virtual hard disks attached to the IDE adapter is limited... --- ### What is Windows Server 2003 SP1 Slipstreaming? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2003_sp1_slipstreaming/ - Categories: Windows Server 2003 - Article Type: Overview What is Windows Server 2003 SP1 Slipstreaming? How can I slipstream service packs into the Windows Server 2003 media? This scenario explains how to create an integrated installation of Windows Server 2003 and the corresponding service pack in a shared distribution folder on a network. This integration is called "Slipstreaming". The integrated process installs the service pack during Windows 2003 Setup, so when the setup process is done, you'll have the OS + SP in one operation. Important: Do not update Windows 2003 integrated with a service pack in a shared distribution folder if there are users who are still using a previously installed integrated version in the same shared folder. For other versions of this article please visit the following links: Office System (2003) Hotfix Slipstreaming Office System (2003) SP1 Slipstreaming Office XP SP3 Slipstreaming One Note 2003 SP1 Slipstreaming Windows 2000 SP4 Slipstreaming Windows XP SP2 Slipstreaming The Slipstreaming process Prerequisites Before we begin anything, you'll need to have a few things: Installation CD of Windows Server 2003. Service Pack 1 for Windows Server 2003 Download Windows Server 2003 SP1 Network Installation (329mb) Lamer Note: This guide is based on the English versions of Windows Server 2003, and of their corresponding Service Packs. If you're using a different localized build of Windows, you will need to find the right version of SP for your build. At least 800MB (for Windows Server 2003 SP1) of free space on your hard drives (you can later delete these... --- ### How can Cisco's Network Security and Deployment Methodologies help you? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how-cisco-network-security-and-methodologies-can-help/ - Categories: Cisco - Article Type: Overview In my time browsing the Cisco website and also from watching Cisco presentations, there are a couple of different methodologies and lifecycle approaches, subscribed to by Cisco that can help any enterprise customer. Let's find out how these methodologies can help you. How can Methodologies help you? The Wikipedia defines a methodology as: "the analysis of the principles of methods, rules, and postulates employed by a discipline", "the systematic study of methods that are, can be, or have been applied within a discipline" or "a particular procedure or set of procedures" All technology consulting companies use methodologies to ensure that they delivery quality to their customers. For example, a common consulting methodology is “plan design, build, test, implement, & audit”. Of course there are tasks that go along with each of these phases. If you follow this approach to a project, chances are, that you will have a much better chance of success. That is because you took time to plan, design, test, and audit. Usually, IT guys (or really anyone with not a lot of time, like IT guys) tend to go only to build, and then implement. Some out there might wonder how this applies to you and especially to Cisco Routers and Switches. Bear with me here as I will get to that. Over time, I have seen a number of different systems, offered by Cisco, that could be applied to help just about any business out there, whether you are using Cisco routers... --- ### Roboform -  Automated Password Manager & Form Filler - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/roboform-password-manager-form-filler/ - Categories: Security - Article Type: Overview Many times when I get a recommendation for a software application, it is from a salesman who is trying to sell me something. So when a friend of mine told me about Roboform, I was dubious and not too interested. My friend explained how much time he had saved, while web surfing, since he installed roboform. After I finally tried it out, I now wish that I had of heard about Roboform long ago. So please read on and, you, like me, will be glad that you did. The problem with Internet passwords If you are like me, you have a lot of passwords. Being a system admin and having surfed the web for many years, I checked my "secret password folder" and found that I actually have 449 passwords to different websites. Obviously, I cannot remember all of those in my head. As I use the Internet for business and personal use, I find myself checking my password file multiple times even though I have made an effort to use the same password in many places (which is insecure). Sure, I have considered the IE or Google's "remember your password" option but that is just not secure either and I would be afraid that I would forget what the password was and have no record of it. The end result is that it can sometimes be frustrating to go to a website you haven't been to in some time and have to try to dig for the password. Additionally,... --- ### How to Convert Physical Machines to Virtual Machines with VMware Converter: Part 2 > This is article covers part two of using VMware Converter to transition physical servers to virtual machines. - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/virtual_convert_physical_machines_to_virtual_machines_with_vmware_converter_2/ - Categories: VMware - Article Type: How To In the part one of this two part series, we learned what VMware Converter can do for us, how to download it, and how to install it. In this article, we will demonstrate how VMware converter can assist you in migrating a physical machine to a virtual machine. Using VMware Converter When VMware Converter starts, you will be asked if you want to enter a license (to use the Enterprise version) or move into Starter mode. To go into Starter mode, click Continue in Starter Mode. There are two purposes for VMware Converter: 1) Import a Virtual Machine from a physical machine or other type of virtual machine 2) Configure Virtual Machine to make an existing image bootable In our case, we are going to demonstrate how you can import a hard drive from a physical machine (while that machine is running), change the drivers on it to be VMware drivers, and boot it in VMware. The first step of this is importing the virtual machine. Importing Virtual Machines To Import a virtual machine, just click on the Import Machine button the top left side of the interface. Next, you'll see the Import dialog box come up. Click Next twice. Select the type of source to import from: In our case, we selected physical computer but notice all the different sources you can import virtual machines from. You could import an existing virtual machine, a physical machine that this program is running on, or a remote machine... --- ### Understanding VMware ESX Users, Groups, And Roles - ESX User Configuration, ESX Group Management, ESX Role Management - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/virtual_understanding_vmware_esx_users_groups_roles/ - Categories: VMware - Article Type: Overview Just like with any network operating system, to securely setup VMware ESX, you need to understand how to configure users, groups, and roles. In this article, you will find out how. Introduction to VMware ESX users, groups, and roles Keep in mind that VMware ESX is a modified version of Red Hat Enterprise Linux. Thus, ESX has Linux users and group. If you understand the basics of Linux users and groups, you have a jumpstart on understanding ESX users and groups. By default, ESX has 22 different users and 31 groups. Wow! That's amazing! All of these are used by the system. The single account that you will be most common with is the root account. When you installed ESX, you set the password for this account. Common user accounts are shown in the picture below: With VMware ESX Server, you have 4 Roles, by default. These Roles can be configured in the Admin Section. Besides the Roles section, you also have a Permissions tab and Users & Group tab. The Users & Groups tab is where you add & remove Local users and groups. The Permissions tab is where you grant those users and groups access to certain Roles in VMware ESX. VMware ESX User Configuration On the Users & Groups tab, each user account has a UID number (used to uniquely identify the user) and a common name (as you can see by the graphic above). If you double-click on the user, you will see this:... --- ### VMware ESX Server Cluster & Resource Pools Explained - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/vmware-esx-server-cluster-pools/ - Categories: VMware - Article Type: Overview One of the most important features of VMware ESX Server / Virtual Infrastructure is the ability to configure Cluster Pools and Resource Pools. How can these pools help you and what is the difference between them? Let's find out. What are VMware ESX Server Cluster Pools? A cluster is defined as "a group of tightly coupled computers that work together closely so that in many respects they can be viewed as though they are a single computer" (per Wikipedia). A VMware ESX Cluster is no difference. Clusters are used for 3 things- 1) high availability, 2) load balancing, and 3) high performance computing. VMware ESX clusters are used for #1 and #2. With a VMware ESX Cluster, you define 2 or more physical machines that will provide resources for the hosts (or resource pools) that are assigned to that cluster. By using ESX clusters, you can achieve high availability (VM HA) and load balancing of virtual machines (called VMware DRS, discussed below) Just to reiterate, here is why you use VMware ESX Clusters: if one of the physical hosts goes down, the other physical host starts up the virtual guests machines that the original virtual host was running (VM HA). if one physical host is over utilized by a virtual guest, that virtual guest is moved to the other physical host (VMware DRS, discussed in the resource pool section, below). Both of these features use VMotion to move these virtual guests from one system to another. How... --- ### Monitoring Exchange 2007 Service Level Agreements - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/exchange-2007-service-level-agreements/ - Categories: Exchange Server - Article Type: How To E-mail has become a mission critical application within most organizations, so it has become common for upper level management to mandate a specific Service Level Agreement (SLA) for Exchange Server administrators. In case you are not familiar with the concept of an SLA, a SLA mandates the percentage of time that an application is available. For example, an SLA might mandate that your company’s Exchange Servers are online and available for use 99% of the time. One of the biggest problems with having upper management to impose an SLA is the fact that many of those managers will ask for proof that the SLA was met. Exchange Server 2007 doesn’t provide an easy way of generating a report that shows whether or not a particular SLA was met, but you can produce such a report by using Microsoft Operations Manager (MOM) 2005. Before you can produce an SLA report, you will need to install the Management Pack for Exchange Server 2007, and configure your MOM server to monitor your Exchange 2007 servers. If you need a copy of the Exchange 2007 management pack, you can download it here. Importing Reports and Management Packs Before you can generate the necessary reports, you will have to import the management packs and the reports. To do so, open the MOM 2005 Administrator Console, and then click the Import Management Packs link. When you do, Windows will open the Management Pack Import / Export Wizard. Click Next to bypass the wizard’s Welcome screen, and... --- ### Planning a DFS Architecture, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/planning-dfs-architecture-part-two/ - Categories: Windows Server 2008 - Article Type: Overview In the first part of this article series, I talked about the differences between a stand-alone DFS namespace and a domain based DFS namespace.   The next thing I want to discuss is the replication topology that will be used by your DFS servers. Why Replicate? When I have introduced the concept of DFS to clients in the past, one of the first questions that they always ask me is why in the world they need multiple DFS servers.   Technically, you don't have to have multiple DFS servers, but there are some advantages to using multiple replica servers.   For starters, using multiple replicas provides you with a degree of scalability.   Rather than having every user in your organization access their files from the same server, you can distribute the user workload across multiple DFS replicas rather than over burdening a single server. Another reason for having multiple DFS replicas is because doing so provides you with a degree of fault tolerance.   For example, suppose that you need to install a service pack onto your servers.   Most of the time when you install a service pack for Windows, the installation process requires you to reboot the server when you're done.   Normally, rebooting a server is disruptive to the users who are accessing files on that server.   If you know that you're going to be doing maintenance on one of your servers though, you can remove the server from the DFS namespace, and perform your maintenance without disrupting the users.  ... --- ### SCW for Exchange Server 2007 – Part I - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/scw-for-exchange-server-2007-part-1/ - Categories: Exchange Server - Article Type: Overview What is the Security Configuration Wizard (SCW)? The Security Configuration Wizard is a security tool that reduces the attack surface of an Exchange server by disabling unnecessary services, ports, features, and programs. Additionally, the wizard configures auditing and the Windows Firewall, secures network interfaces, and more. In doing so, we further secure a server to provide a more secure, stable, Windows environment. The SCW is a straightforward interface that takes much of the guesswork out of securing an Exchange 2007 server. The SCW is a feature of Windows Server 2003 SP1, but isn’t installed by default, nor is it aware of Exchange Server. However, we can get it installed and it can be easily extended to support Exchange Server 2007. Installing the SCW in Windows After ensuring that your Windows Server 2003 box has Service Pack 1 for the operating system installed, getting the SCW installed is quite easy. Click Start > All Programs > Control Panel > Add/Remove Programs > Windows Components. Scroll down and check the box for Security Configuration Wizard as seen in Figure A. Figure A Click Next, then Finish when the installation is done. You’ll notice that there is a shortcut to the help info placed on the desktop of the server. You should look through this information as it will prove beneficial to securing your server. Registering the Exchange 2007 XML files Once the SCW is installed, the configuration files for Exchange Server 2007 need to be registered. As mentioned previously,... --- ### Disable the Built-In Firewall in Alcatel SpeedTouch Pro - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_the_built-in_firewall/ - Categories: Alcatel - Article Type: How To How can I disable the built-in Firewall in the Alcatel SpeedTouch ADSL modem? The Alcatel SpeedTouch ADSL modem has a built-in firewall that protects your internal network from outside infiltration. You might want to disable this firewall for various reasons. For example: Some program needs direct incoming Internet connection in random and dynamic ports (ports you cannot map in NAT, because they keep changing, like NetMeeting, MSN Messenger and others). Step One - Connect to the modem Open a Telnet session to the modem: Telnet to your modem by using this command: ​telnet 10. 0. 0. 138 Log in as any user and the modem will show a string like 'SpeedTouch (00-00-00-00-00-00)' before asking the password. That's the MAC address of the modem. Enter the password that you obtained through the script found here: Upgrade from Home to Pro (the one I told you to write down... you did write it down, didn't you? ). Go into the NAT command by typing nat   Step Two - Disable the firewall Enter the following command in the nat prompt: ​defserver addr 10. 0. 0. 1 save where 10. 0. 0. 1 is the IP address of the computer you want to forward all Internet connectivity to. Of course you will have to change this address to suit your network configuration. Warning: All IP traffic will now be forwarded to that IP address, thus enabling hackers and script kiddies to easily reach your computer. Step Three - Enable the firewall To enable the firewall you can enter the following... --- ### Download GPMC - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/download_gpmc/ - Categories: Downloads - Article Type: Overview Where can I download the GPMC console for Windows Server 2003/XP? The Microsoft Group Policy Management Console (GPMC) is the new solution for Group Policy management that helps you manage your enterprise more cost-effectively. It consists of a Microsoft Management Console (MMC) snap-in and a set of scriptable interfaces for managing Group Policy. The GPMC is available as a separate component to Windows Server 2003. Purpose of GPMC GPMC is designed to simplify the management of Group Policy by providing a single place for managing core aspects of Group Policy. You can think of the GPMC as a one-stop resource for managing your Group Policy needs. GPMC addresses the top Group Policy deployment requirements, as requested by customers, by providing: A user interface (UI) that makes Group Policy much easier to use. Backup/restore of Group Policy objects (GPOs). Import/export and copy/paste of GPOs and Windows Management Instrumentation (WMI) filters. Simplified management of Group Policy–related security. HTML reporting for GPO settings and Resultant Set of Policy (RSoP) data. Scripting of GPO operations that are exposed within this tool—but not scripting of settings with a GPO. Prior to GPMC, administrators were required to use several Microsoft tools to manage Group Policy. GPMC integrates the existing Group Policy functionality of those tools into a single, unified console, along with the new capabilities listed above. Managing Windows 2000 and Windows Server 2003 Domains: GPMC is able to manage both Windows 2000 and Windows Server 2003-based domains with the Active Directory service. System... --- ### Download Windows 2003 SP1 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_2003_sp1/ - Categories: Downloads - Article Type: Overview Where can I download Windows 2003 Service Pack 1? In the beginning of April, 2005, Microsoft released SP1 for Windows Server 2003. SP1 is the latest collection of updates for Windows Server 2003. Install Microsoft Windows Server 2003 Service Pack 1 (SP1) to help secure your server and to better defend against hackers. Windows Server 2003 SP1 enhances security infrastructure by providing new security tools such as Security Configuration Wizard, which helps secure your server for role-based operations, improves defense-in-depth with Data Execution Protection, and provides a safe and secure first-boot scenario with Post-setup Security Update Wizard. Windows Server 2003 SP1 assists IT professionals in securing their server infrastructure and provides enhanced manageability and control for Windows Server 2003 users. Note: This version of the Service Pack 1 only installs on the 32-bit versions of the Microsoft Windows Server 2003 operating systems. For the 64-bit version of SP1 go HERE. You can find in-depth technical information about Windows Server 2003 SP1 at the Windows Server 2003 TechCenter on TechNet. To download SP1 for Windows Server 2003: Download Windows Server 2003 SP1 Network Installation (329mb) The Network Installation is ideal for IT professionals installing SP1 on multiple computers. SP1 is also available via the Windows Update site Note: Make note that in order to install SP1 you might need as much as 1. 4gb of free hard disk space available. View The hard disk space requirements for Windows Server 2003 Service Pack 1 - 892807... --- ### Active Directory Client (dsclient) for Win98/NT - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/dsclient_for_win98_nt/ - Categories: Active Directory (AD) - Article Type: Overview How can I work with NT 4. 0 and Win98 clients in a Windows 2000 or Windows Server 2003 Domain? Microsoft has developed extensions for the Windows 95, Windows 98, and Windows NT 4. 0 operating systems that allow those client platforms to take advantage of features provided by the Windows 2000 and Windows Server 2003 Active Directory service. These client extensions were developed for customers who wish to deploy Windows 2000/2003 Server in environments with Windows 95, Windows 98, and Windows NT 4. 0 based client workstations. Active Directory Features Supported Windows 9x and Windows NT 4 based clients lack many of the features of Windows 2000 Professional and Windows XP Professional that are related to Active Directory. The Active Directory client extension is an upgrade or patch for Windows 95, Windows 98, and Windows NT 4. 0, which enables the following Active Directory features: Site awareness - This includes the ability to log on to the domain controller that is closest to the client in the network and the ability to change passwords on any Windows 2000/2003-based domain controller, instead of the primary domain controller (PDC). In order to benefit from this new functionality the computer object where the Client extension is installed must exist in a Windows 2000/2003 domain. Note: Active Directory Client for Windows NT4. 0 does not change the NT4. 0 WinLogon change password behavior. The WinLogon change password still contacts the PDC. However, Active Directory Client extension provides necessary APIs to change the password to any Windows 2000... --- ### Enable Password Changing through OWA in Exchange 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/enable_password_changing_through_owa_in_exchange_2003/ - Categories: Exchange Server - Article Type: How To Can I enable user password changes through Outlook Web Access (OWA) in Exchange 2003? Yes, although this behavior is not enabled by default. In order to do so you must first configure your server to use SSL. Then, you need to create a new Virtual Directory called Iisadmpwd under the Default Web Site. Open Internet Information Services Manager from the Administrative Tools. In IIS Manager expand SERVERNAME (Where SERVERNAME is your server name object), expand Web Sites, and then expand Default Web Site. Right-click Default Web site and choose New, then select Virtual Directory. In the Welcome screen click Next. In the Virtual Directory Alias window type Iisadmpwd. Click Next. In the Website Content Directory screen navigate to %Systemroot%System32InetsrvIisadmpwd. Click Next. In the Virtual Directory Access Permissions grant Read, Run Scripts and Execute permissions. Click Next. Click Finish. See that the new Virtual Directory is listed in the folder list on the right-pane of the IIS Admin console. Next, you need to enable the Change Password button in the Registry of the server. Note: This article was written at a time when there was no other method of performing the above. Nowadays we can use a nice graphic tool called OWAADMIN to perform the same trick (and many others). However even with OWAADMIN you will still need to perform parts of the steps outlined on this current page. The only step you can skip is the following step: Open Regedit. Navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesMSExchangeWEBOWA Create a new REG-DWORD... --- ### Error While Installing Applications in Vista (like Adobe Acrobat Reader) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/error_installing_applications_on_vista/ - Categories: Windows Vista - Article Type: Overview One of the first tasks that one performs right after finishing the installation of a new operating system is to install all the required additional applications and change the system's settings to match their own requirements. One of the most frequently used applications I install on my machine is Adobe Acrobat Reader (see http://www. adobe. com/products/acrobat/readstep2. html for a download link). After downloading it you need to double-click the executable file and allow the wizard to kick in. However, in some cases, when installing Adobe Acrobat Reader on Windows Vista you might see the following error message: The Temp folder is on a drive that is full or is inaccessible. Free up space on the drive or verify that you have write permission on the Temp folder. While trying to find a solution to this error I discovered the reason for the error and a way around it that allowed me to install Adobe Acrobat Reader without any issue. The reason for the error It seems that the reason behind this error is the fact that I usually tend to immediately disable User Account Control (or UAC) as one of the first tweaking steps of any new Vista installation (read "Disable User Account Control in Windows Vista" for more info). UAC is an attempt made by the Vista engineers to increase the security of the operating system. Although UAC will indeed help the user gain more control over the actions that are performed with administrative rights on their computers, it... --- ### EXIFS Access to Alternate PF Trees in Exchange 2000 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/exifs_access_to_alternate_pf_trees_in_e2k/ - Categories: Exchange Server - Article Type: Overview In Exchange 2000, how can I provide access to Alternate Public Folder Trees via EXIFS? Although Exchange 2000 allows multiple Public Folder roots (Create new PF Tree on Exchange 2000), current Outlook clients don't, so you can't display these other structures in Outlook. However, you can view them via the Web with the following format: ​http://exchange server/public folder root or via EXIFS (virtual drive M) just like you'd look at any shared folder on the network. To make your PF available via EXIFS do the following: On your Exchange server open Windows Explorer and go to your M:\ drive. Drill down to your new Public Folder Tree. Right click it and choose Sharing. Share it with any name you want, and give it the proper share access control permissions. Note: You can also share any sub-folder you want. You do not have to share the PF Tree itself if you don't want to. Click OK and see if it's visible through Network Neighborhood or through a NET SHARE command on the server. Users will be able to access this new PF like it was a regular shared folder on the server. Note: This method of sharing Public Folders also works for the Default (MAPI) Public Folder tree and all of it's subfolders. Exchange 2003 note: Exchange Server 2003 does not expose drive M by default. In order to access Alternate PF Trees via EXIFS in Exchange Server 2003 (Create new PF Tree on... --- ### Determine the System Uptime in Windows Vista - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/find_system_uptime_windows_vista/ - Categories: Windows Vista - Tags: Editor's Pick - Article Type: How To Knowing how much time your system has been running is a piece of information useful for administrators. Sometimes you might need it in order to know when the machine has recovered from a possible power failure or any other issue it might have had. While there are plenty of 3rd-party tools that allow one to find the exact uptime of the system, there are at least 4 methods I can think of built-in in your system. Windows Vista has made it easier in at least 2 or 3 ways out of the total number described below, but method #2 and 3 also work for pre-Vista operating systems. Method #1 – Using Task Manager (Vista only) Probably the easiest of them all. Right-click on the Taskbar, and click Task Manager. You can also click CTRL+SHIFT+ESC to get to the Task Manager. In Task Manager, select the Performance tab. The current system uptime is shown under System.   Method #2 – Using the System Information tool Harder to remember by heart, but useful for various scripting options. Click Start, type the following command and press ENTER: ​Cmd /k systeminfo | find "System Boot Time"   System uptime data is shown in the output: ​System Boot Time: 05/25/2007, 23:57:47   Method #3 – Using Uptime. exe Microsoft have published a tool called Uptime. exe. While hardly a new tool, uptime. exe is a simple command line tool that analyzes the computer's reliability and availability information. It can work locally or remotely. In its simple... --- ### Get Ready for Windows Server 2008/Vista Service Pack 2 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/get-ready-for-windows-server-2008-vista-service-pack-2/ - Categories: Windows Server 2008 - Article Type: How To MSDN and TechNet subscribers now have access to Service Pack 2 (SP2) beta for Windows Vista and Windows Server 2008. The beta version of SP2 is also supposed to be available to the general public. Prior to that, Microsoft began testing SP2  with just a small group of testers first before making it more broadly available to the public. Microsoft currently estimates that Service Pack 2 will ship in the first half of 2009. Microsoft says Windows Server 2008 SP2 addresses feedback from their customers. It contains all previously released hot fixes that have been released since SP1, integrated into a single service pack covering both server (Windows Server 2008) and client (Windows Vista) versions. See links section below for a link to the full list of all the hot fixes and security updates in Windows Server 2008 SP2 Beta. To download Windows Vista and Windows Server 2008 SP2 beta please see: Windows Server 2008 SP2 and Windows Vista SP2 Beta SP2 also adds some new features for corporate users including full integration of Hyper-V into Windows Server 2008. The Hyper-V integration includes one free guest license for users of Windows Server 2008 Standard, four free licenses for users of the Enterprise version and an unlimited number of licenses for the DataCenter version. Additional features found in SP2 include: The ability to configure power management policies via Group Policy. Additional changes to the power profile that claim to have yielded a 10% improvement over the power profile of Windows Server... --- ### Hide a Server from the Microsoft Computer Browser Service - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/hide_a_server_from_the_microsoft_computer_browser_service/ - Categories: Networking - Article Type: How To You can configure a computer so that it does not send announcements to browsers on the domain. If you do so, you hide the computer from the Browser list, which can help reduce network traffic. Editing the Registry Open the registry editor and go to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesLanmanServerParameters From the Edit menu, choose Add Value and type: Hidden Note: This value is case sensitive and must begin with a capital H. In the Data Type field, choose REG_DWORD and choose OK. In the Data field, type 1 to enable hiding and choose OK. Restart your computer. Using the NET CONFIG SRV command This setting can also be changed using the following command: net config server /hidden:yes|no To hide the computer from the Browser List, type net config server /hidden:yes at the command prompt, and then press ENTER. To unhide the computer from the Browser list, type net config server /hidden:no at the command prompt, and then press ENTER. Note: It may take up to 30 minutes for the server to disappear from the Browser lists. Related articles You may find these related articles of interest to you: Disable NetBIOS in W2K/XP/2003 Install NetBEUI in Windows XP Registration of NetBIOS Names Speed Up LAN Browsing in Windows XP Speed Up Network File Copying in Windows XP What's Port 445 in W2K/XP/2003? What's the Microsoft Computer Browser Service? Links Description of the Microsoft Computer Browser Service - 188001 Server Service Configuration and Tuning - 314498 How... --- ### How to Install Active Directory on Windows 2000 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how_to_install_active_directory_on_w2k/ - Categories: Active Directory (AD) - Article Type: How To How do I install Active Directory on my Windows 2000 Server? First make sure you read and understand Active Directory Installation Requirements. If you don't comply with all the requirements of that article you will not be able to set up your AD (for example: you don't have a NIC or you're using a computer that's not connected to a LAN). Note: This article is only good for understanding how to install the FIRST DC in a NEW AD Domain, in a NEW TREE, in a NEW FOREST. Meaning - don't do it for any other scenario, such as a new replica DC in an existing domain (How to Install a Replica DC in an Existing AD Domain on Windows 2000). Here is a quick list of what you must have: An NTFS partition with enough free space An Administrator's username and password The correct operating system version A NIC Properly configured TCP/IP (IP address, subnet mask and - optional - default gateway) A network connection (to a hub or to another computer via a crossover cable) An operational DNS server (which can be installed on the DC itself) A Domain name that you want to use The Windows 2000 CD media (or at least the i386 folder) Brains (recommended, not required... ) This article assumes that all of the above requirements are fulfilled. Step 1: Configure the computer's suffix (Not mandatory, can be done via the Dcpromo process). Right click My Computer and choose Properties. Click the... --- ### Increase Broadband Connection Speed in Windows XP/Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/increase_broadband_connection_speed_in_windows_xp_2003/ - Categories: Networking - Article Type: How To This tip is designed for increased BROADBAND speed in Windows XP while using standard Network Interface cards (NIC) that are connected to ADSL modems, or when using any directly-connected USB ADSL modem. To speed up the Internet connection speed we need to configure a special buffer in the computer's memory in order to enable it to better deal with interrupts made from the NIC or the USB modem. This tip is only recommended if you have 256MB RAM or higher. Step #1 - Identify the IRQ used by the NIC/USB modem Follow these steps: Open the System Information tool by running MSINFO32. EXE from the Run command. Expand System Summary > Hardware Resources > IRQs. Look for the listing made for your NIC (in my case - a Intel(R) PRO/100+ Management Adapter). Note the IRQ next to the specified line (in my case - IRQ21). In case of USB modems you will first need to find the right USB device used by your modem. Follow these steps: Open the Device Manager tool by running DEVMGMT. MSC from the Run command (or by right-clicking My Computer > Hardware tab > Device Manager button). Scroll down to Universal Serial Bus controllers and expand it. Right-click the USB Root Hub and select Properties. Note that you might need to do so for all listed USB Root hubs (if there are more than one) in order to find the right one. In the Power tab, look for your USB ADSL modem. In the Resources... --- ### Install Hebrew on Windows Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_hebrew_on_windows_vista/ - Categories: Windows Vista - Article Type: How To How can I install and use Hebrew fonts on my Windows Vista computer? Windows Vista (and 2000/2003/XP) has the built-in ability to display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. To see Hebrew fonts on your Windows Vista computer you MUST perform the following tasks precisely in the order listed here. Not doing so might cause your computer to display ? ? ? ? ? ? ? instead of Hebrew fonts, especially in Office applications. Unlike in previous operating systems, the installation of Hebrew support is much simpler and usually does not require a reboot. You can choose to install Hebrew language support during the setup phase of Windows Vista, or at any time after the installation is complete. Note: You might also want to read the following articles: Install Hebrew on Windows 2000 Install Hebrew on Windows Server 2003 Install Hebrew on Windows XP Note: This guide is based on the latest beta build of Windows Vista, and it's possible that the display and screens on an RTM copy of Vista will differ. If that happens I will change the screenshots. Option 1: During the installation process After rebooting the computer during the setup process of Windows Vista you will need to wait for the green progress bar to reach the end, You will then get a chance to select your language settings and locale. Option 2: On a running installation of Windows Vista If you already have Windows Vista... --- ### Install Windows 98 after Windows XP - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/install_windows_98_after_windows_xp/ - Categories: Windows Client OS - Article Type: How To This procedure assumes that Windows XP is installed on drive C: Drive C: must be FAT16 or FAT32 to be able to install Windows 98 after XP is already installed. The 98/Me installation routine cannot write to an NTFS partition. You must have a second hard disk or partition formatted for FAT16/32 in order to be able to install Windows 98/Me. As always, installing 98/Me to the same partition as Windows XP is Not recommended! I recommend the use of a Windows 98 Startup disk for this procedure. You should ensure that DEBUG. EXE is on your Startup disk. On a 98 Startup disk, created from Add/Remove Programs, its in the EBD. CAB file on the Startup disk. For a 98 Startup disk created from FAT32EBD. EXE its on the floppy Installing Windows 98 Use a Win98 Startup disk (with CD support) to boot your computer. Insert your Win98 CD into the CD Rom drive. At the A: prompt type X:\Win98\Setup. exe where X: is your CD-ROM drive. Proceed with the install. When prompted for the install location, you'll see C:\Windows. 000. Choose Other directory and change this to the drive you wish to install 98 to and name the folder Windows (or something else if you prefer). Complete the Win98 install. Allow the computer to boot into Win98. Repairing the Windows XP Boot Loader Create a Win98 Startup Disk Create a Notepad file with the following entries, exactly as shown: L 100 2 0 1 N C:\BOOTSECT. DOS R BX 0 R CX 200 W... --- ### Installing Exchange 2007 Management Tools On a 32-Bit Operating System - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/installing_exchange_2007_management_tools_on_a_32bit_os/ - Categories: Exchange Server - Article Type: How To As you probably know by now, Exchange 2007 is distributed in 2 versions - 64-bit and 32-bit. Only the 64-bit version is supported by Microsoft, and the 32-bit version is only provided for evaluation purposes. Microsoft requires that you run the production versions of Exchange 2007 only on 64-bit platforms (read Is my Server Exchange 2007 Ready? ). However, in many cases, although the actual deployment of Exchange 2007 is done on 64-bit machines, your daily management of these servers is still performed on "regular" 32-bit machines, and not on the servers themselves. So, one might find himself trying to install the Exchange 2007 Management Tools on a 32-bit operating system such as Windows XP SP2 or Windows Server 2003 machine, only to find that when trying to install them they get an error message: "The image file D:Setup. EXE is valid, but is for a machine type other than the current machine. " The reason for this error is because the Exchange 2007 setup require Windows Server 2003 64-bit Edition to initiated. The solution to this problem is to install the 32-bit version of the Exchange 2007 Management Tools instead. Download 32 Bit Microsoft Exchange 2007 installation files Exchange Server 2007 - Evaluation Software. Extract the installation file. Install the following pre-requirements components: Microsoft . NET Framework Version 2. 0 Microsoft . NET Framework Update Required Microsoft Management Console 3. 0 for Windows XP (KB907265) Microsoft Management Console 3. 0 for Windows Server 2003 (KB907265) Windows PowerShell 1. 0 English-Language Installation Package for Windows XP... --- ### Joining a Domain in Windows XP Pro - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/joining_a_domain_in_windows_xp_pro/ - Categories: Active Directory (AD) - Article Type: How To How do I change a computer's description, name, or join a domain in Windows XP Pro? Update for Windows 7 Users: Please also see "How to Join a Domain in Windows 7" for instructions specific to your operating system. You can perform the preceding tasks by using the Computer Name tab in the System Properties dialog box from the Control Panel or by right-clicking My Computer, and then Properties or by pressing the Windows logo key ÿ and Break. To add a computer description On the Computer Name tab, type a name or description in the box, and then click Apply. This name will help you identify the computer on the network and in the Network Neighborhood, so please try to be as specific and as methodic as possible. To change a computer name Many users setup their computer without giving a second thought to it's name. This is a bad thing. Make note of the following naming rules: If your computer does not have TCP/IP networking installed, or it has other networking protocols installed (without TCP/IP), the computer name must be in uppercase 15 or fewer bytes long (depending on which characters are used and the language set as the Language for non-Unicode programs in Regional and Language Options in Control Panel). If your computer has TCP/IP networking installed, the computer name can be up to 63 bytes long (depending on which characters are used and the language set as the Language for non-Unicode programs in... --- ### Microsoft Data Protection Manager 2007 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/microsoft-data-protection-manager-2007/ - Categories: SharePoint 2007 - Article Type: Overview This week Microsoft has finally released the final (RTM) version of System Center Data Protection Manager (SCDPM) 2007, which introduces live backup for virtual machines hosted by Virtual Server 2005 R2 Service Pack 1, through the Windows Server 2003 Volume Shadow Service (VSS). Microsoft Data Protection Manager 2007 is a full featured data protection product designed to protect Microsoft Applications and the Windows Server System. SCDPM is not free of charge but has been included in the System Center Management Suite Enterprise, along with Virtual Machine Manager (SCVMM) 2007, Operation Manager (SCOP) 2007 and Configuration Manager (SCCM) 2007. DPM 2007 can be used to natively protect the following Operations systems and Applications. White paper solutions are available for a number of other applications on the DPM website. Windows Server 2003 Windows Server 2003 R2 Windows Storage Server (Storage Server 2003, Storage Server R2, WUDSS) Windows Server 2008 Windows XP SP2 (support limited to machines with persistant network connectivity) Windows Vista (support limited to machines with persistant network connectivity) Microsoft Exchange Server (2003 and 2007) Microsoft SQL Server (2000 and 2005) Microsoft SharePoint (MOSS 2007 and WSS 3. 0) Host Based Virtual Server Protection Read a whitepaper about the integration with SCVMM HERE and download the trial product HERE. New features in Data Protection Manager 2007: Continuous Data Protection for Windows Application and File Servers - DPM protects Windows Servers by continuously capturing data changes with application-aware, block-level agents, providing an easy-to-manage and robust disk and tape data protection... --- ### New EFS Features in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/new_efs_features_in_windows_xp/ - Categories: Security - Article Type: Overview What are the new EFS features in Windows XP? Microsoft Windows 2000 introduced the capability for data recovery with the implementation of Encrypting File System (EFS), and this capability has been enhanced in Windows XP. Microsoft Windows XP provides many enhancements in the area of data protection - especially Encrypting File System (EFS). Windows XP provides significant advancements in data recovery and protection, and private key recovery. This article provides a technical walkthrough that illustrates how to use important data recovery and protection features in Windows XP. Also included are best practices and the steps you need to take to build an effective data recovery and protection strategy. In addition to explaining strategies for data recovery and data protection in Windows XP, this article includes many step-by-step examples that illustrate how to set up the data recovery and data protection features you'll want to use when deploying a Windows XP data recovery and protection solution. Note: EFS is only available on Windows XP Professional; it is not supported on Windows XP Home Edition. The increased functionality of EFS has significantly enhanced the power of the Windows XP Professional client. Windows XP Professional now provides additional flexibility for corporate users when deploying security solutions based on encrypted data files and folders. These new features include: Full support for revocation checking on certificates used by the system Alternate color support (green) for encrypted files Support for encrypted offline folders Multi-user support for encrypted files in the shell user interface (UI)... --- ### Office System (2003) SP2 Slipstreaming - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/office_system_2003_sp_slipstreaming/ - Categories: Patches and Service Packs - Article Type: Overview Office System (2003) SP2 Slipstreaming How can I slipstream service packs into Office System (2003)? This scenario explains how to create an integrated installation of Office System (2003) and the corresponding service pack in a shared distribution folder on a network or on your local computer. To complete this procedure, you must have the original Office 2003 CD media. Note: This explanation is based upon usage of Office System (2003) and SP2, but will also work for any future service packs. For Office XP integrated installations see Office XP SP1/2/3 Slipstreaming. For other versions of this article please visit the following links: Front Page 2003 SP2 Slipstreaming Office System (2003) Hotfix Slipstreaming Office XP SP3 Slipstreaming One Note 2003 SP2 Slipstreaming Windows 2000 SP4 Slipstreaming Windows Server 2003 SP1 Slipstreaming Windows XP SP2 Slipstreaming Prerequisites Before we begin anything, you'll need to have a few things: Office System (2003) CD You will need the Administrative Update of Service Pack 2. It can be downloaded from HERE (101mb) No, the regular SP won't do. Note: For languages other than English you'll need the Office 2003 Multilanguage SP which will be available at a later date (as of October 2005). Around 650MB of free space on one of your hard drives. A CDR/CDRW drive, CD burning software and (This is actually only optional, but if you want to burn the resulting slipstreamed Office 2003 then you'll need it). Step 1: Perform an administrative installation Do NOT just copy your... --- ### Overview of Windows Server 2003 - Standard Edition > Windows Server 2003 - Standard Edition is a fully-featured server OS, but does it have all the features you need? Read our overview to find out. - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/overview_of_windows_server_2003_standard_edition/ - Categories: Windows Server 2003 - Article Type: Overview Windows Server 2003 - Standard Edition is a fully-featured server OS, but does it have all the features you need? Read our overview to find out. Designed for small organizations and departmental use, Windows Server 2003, Standard Edition, delivers intelligent file and printer sharing, secure Internet connectivity, centralized desktop policy management, and Web solutions that connect employees, partners, and customers. Windows Server 2003, Standard Edition, provides high levels of dependability, scalability, and security. In This Edition Windows Server 2003, Standard Edition, takes the best of Windows 2000 Server technology and makes it easier to deploy, manage, and use. The result is a highly productive operating system that is secure, reliable, highly available, and scalable. At a high level, Windows Server 2003, Standard Edition, provides support for: Advanced networking features such as Internet Authentication Service (IAS), the Network Bridge feature, and Internet Connection Sharing (ICS). Four-way symmetric multiprocessing (SMP). 4 gigabytes (GB) of RAM. Customers seeking the highest availability and scalability should consider Windows Server 2003, Enterprise Edition, or Windows Server 2003, Datacenter Edition. Built for Dependability Run Your Business on the Most Solid Server Operating System Microsoft Has Ever Released Today's organizations expect technology to be a consistent enabler of business value. They want systems that are always up and always responsive, and they demand a level of security able to meet today's challenges. Windows Server 2003, Standard Edition, includes new features and improvements that make it the most dependable small business and departmental server operating system Microsoft has ever created. Windows Server 2003, Standard Edition, improves on many technologies introduced in Windows 2000 Server, such as support for smart cards, bandwidth throttling,... --- ### How can I disable the caching of failed DNS lookups in Windows 2000/XP/2003? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/preventing_caching_of_failed_dns_lookups/ - Categories: DNS - Article Type: How To Windows 2000/XP/2003 added the ability to cache DNS lookup results in the client's cache. This cache can be viewed by typing ipconfig /displaydns in the command prompt: Windows IP Configuration ddlnetwork. net ---------------------------------------- Record Name ... . . : ddlnetwork. net Record Type ... . . : 1 Time To Live ... . : 13445 Data Length ... . . : 4 Section ... ... . : Answer A (Host) Record ... : 67. 159. 5. 63 Record Name ... . . : ns1. gothosted. com Record Type ... . . : 1 Time To Live ... . : 13445 Data Length ... . . : 4 Section ... ... . : Additional A (Host) Record ... : 67. 159. 5. 63 kona3. kontera. com ---------------------------------------- Record Name ... . . : kona3. kontera. com Record Type ... . . : 1 Time To Live ... . : 3161 Data Length ... . . : 4 Section ... ... . : Answer A (Host) Record ... : 208. 185. 211. 88 Record Name ... . . : ns. above. net Record Type ... . . : 1 Time To Live ... . : 3161 Data Length ... . . : 4 Section ... ... . : Additional A (Host) Record ... : 207. 126. 96. 162... --- ### Quickly Check Which User Encrypted a File - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_check_which_user_encrypted_a_file/ - Categories: Security - Article Type: How To How can I easily discover who's the user that encrypted a file? The Windows Explorer user interface (UI) shows which files are encrypted but not who encrypted them, causing a lot of confusion when trying to access specific files needed by other users. As an administrator, you could rectify the situation by decrypting the files. But wouldn't you like to know the identity of the dastard that caused the trouble? The Windows 2000 Resource Kit includes the tool Efsinfo. exe, which you can use to view information about the recovery agent accounts. You can use Efsinfo to verify what recovery accounts are current for an encrypted file. To determine who the designated recovery agent is after installing the Windows 2000 Resource Kit: Click Start, point to Programs, point to Accessories, and then click Command Prompt. Use the cd (change directory) command to change to the folder that contains the encrypted file. Type efsinfo /r /u filename, where filename is the name of the file you want to check. Or, leave the filename parameter off to report information for all the files in the current folder. Sample Output from Efsinfo ​ EFSINFO /r /u Myfile. doc Myfile. doc: Encrypted Users who can decrypt: DOMAINNAMEUsername (CN=User Name,L=EFS,OU=EFS File Encryption Certificate) Recovery Agents: DOMAINNAMEEFSRecover (OU=EFS File Encryption Certificate, L=EFS, CN=EFSRecover) The output indicates that the Myfile. doc file was encrypted by domain user "Username" from domain "Domainname. " The "EFSRecover" account in domain "Domainname" is the designated EFS recovery agent for the file. For example:... --- ### Quickly Find Remote Open Ports - GUI - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly_find_remote_open_ports_gui/ - Categories: Networking - Article Type: How To The process of testing a remote server's open or listening ports is called "Scanning". The Internet is full with various scanner and network suit programs, and many security related websites offer a lot of information about these programs, therefore I've decided to only write about a small number of my favorite programs, and only if they're freeware. SuperScan (currently v3. 0) My personal favorite!   A powerful connect-based TCP port scanner, pinger and hostname resolver. Multithreaded and asynchronous techniques make this program extremely fast and versatile. Perform ping scans and port scans using any IP range or specify a text file to extract addresses from. Scan any port range from a built in list or specified range. Resolve and reverse-lookup any IP address or range. Modify the port list and port descriptions using the built in editor. Connect to any discovered open port using user-specified "helper" applications (e. g. Telnet, Web browser, FTP) and assign a custom helper application to any port. Save the scan list to a text file. User friendly interface. Download it from HERE (197kb) Angry IP scanner (currently v2. 19) - is a very fast and small IP scanner. It pings each IP address to check if it's alive, then optionally it is resolving hostname and tries to connect at specified in Options dialog box TCP port. The program uses separate threads for each scanned address to reduce scanning speed. It can also display NetBIOS information: computer name, workgroup, currently logged user and MAC address. No installer,... --- ### Raise Forest  Fuction Level in Windows Server 2003 Active Directory - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/raise_forest_function_level_in_windows_2003/ - Categories: Active Directory (AD) - Article Type: How To How can I raise the forest function level in a Windows Server 2003-based Active Directory? Functional levels are an extension of the mixed/native mode concept introduced in Windows 2000 to activate new Active Directory features after all the domain controllers in the domain or forest are running the Windows Server 2003 operating system. When a computer that is running Windows Server 2003 is installed and promoted to a domain controller, new Active Directory features are activated by the Windows Server 2003 operating system over its Windows 2000 counterparts. Additional Active Directory features are available when all domain controllers in a domain or forest are running Windows Server 2003 and the administrator activates the corresponding functional level in the domain or forest (read Understanding Function Levels in Windows Server 2003 Active Directory for more info). To activate the new domain features, all domain controllers in the domain must be running Windows Server 2003. After this requirement is met, the administrator can raise the domain functional level to Windows Server 2003 (read Raise Domain Function Level in Windows Server 2003 Domains for more info). To activate new forest-wide features, all domain controllers in the forest must be running Windows Server 2003, and the current forest functional level must be at Windows 2000 native or Windows Server 2003 domain level. After this requirement is met, the administrator can raise the domain functional level. Note: Network clients can authenticate or access resources in the domain or forest without being affected by... --- ### Reduce Spam with Exchange 2007 Server Safe List Aggregation - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/reduce-spam-exchange-server-2007-safe-list-aggregation-safe-senders/ - Categories: Exchange Server - Article Type: How To As you probably know, Exchange server 2007 is designed to take a layered approach to message hygiene.  Typically, when an SMTP message arrives, it passes through an edge transport server.  The edge transport server typically checks the message for viruses, and make sure that the message isn't spam.   Once these checks have been performed, the message is allowed to continue on to the mailbox server that hosts the recipient's mailbox.   Depending on the way that Exchange Server is configured, the mailbox server may perform some additional screening of its own. The recipient may also perform some screening of their own.  Usually, server level screening is designed to get rid of viruses and remove the most obvious spam.  Ultimately though, it is up to the end user to configure Outlook for the level of spam removal that the user wants. One of the antispam features that the user can take advantage of is the safe senders list.   Although the safe senders list resides at the mailbox server level, it is something that the end user configures completely independently of settings implemented by the administrator or by other users. Although the safe senders list is a nice feature, it can be a bit problematic in environments that take a multilevel approach to spam filtering.  Think about it for a moment.  The safe senders list allows users to create a list of senders that they consider to be safe.  This allows the users to receive messages from those senders regardless of message content.  The problem is though, that the... --- ### Remove Orphaned Apps from the Add/Remove Applet in Control Panel - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/remove_orphaned_apps_from_the_add_remove_applet_in_control_panel/ - Categories: Windows Client OS - Article Type: How To How can I remove orphaned apps from the Add/Remove applet in Control Panel in Windows 2000/XP/2003? Sometimes after you uninstall a program its entry still remains in the Add or Remove Programs dialog box. This should not have happened in the first place, but if it does happen you'll be really pissed off because when you click on Change/Remove in the dialog box, you get an error, telling you that the program no longer exists. To remove these orphan entries do the following: Start Registry Editor (Regedit. exe). Locate the following key in the registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall Make sure you backup the keys by exporting them to a . reg file. Look for the name of the program with the orphaned entry. Delete the entire listing for the software with the orphaned entry. Close the registry editor. Restart your computer. BTW, this can also be accomplished by use of many third-party tools such as TweakUI and others. To read more about these apps go to this article: Free Tweaking Tools. --- ### Reset Folder Views in Windows XP - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/reset_folder_views_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I reset the folder views in Windows XP? Sometimes the default folder views in Windows Explorer and My Computer in  XP can drive you nuts... The default views in Windows Explorer and My Computer in a out-of-the-box Windows XP computer are not the same as we were used to in W2K and Windows 98, and for many users (including yours humbly) these settings are quite annoying. Especially annoying is the fact that the Status Bar is not visible by default, and it tends to vanish after a reboot or even between reboots.   You can change these views by changing the Views settings in My Computer... Or in Windows Explorer... Click View and then add the Status Bar and change the display option for the icons (I like to use Details). But sometimes these settings will revert back to default. Even if you click to apply to all folders, the settings might return to default. One thing you can try is to set your preferred view setting, then instead of closing the window via the X on the top right-hand corner, close it via the File menu. This is known to keep the settings in place for some time. Another solution to the problem is to reset the folder views back to the out-of-the-box settings and then re-set them according to your desire, hoping that this time they will remain in place. To do so do the following: Start Registry Editor (Regedit. exe)... . --- ### Run Control Panel Applets as Another User - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/run_control_panel_applets_as_another_user/ - Categories: Windows Client OS - Article Type: How To How can I run Control Panel applets as another user (one with administrative privileges)? Sometimes you'll want to do file and folder modifications, or even partition formatting, but you won't want to do it while logged on as an administrator. Every Control Panel applet is in fact a file with a . CPL extension. If you perform a search for these files you'll see that they're all located in the %systemroot%system32 folder. Right-click any file and choose Run As. A dialog box will pop-up asking you for a valid username and password. Enter one of a user that has the required administrative privileges to run and manage that applet. If you gave a valid username and password the applet will open giving you the full permissions to manage it. That's it! BTW, it's time you got to know the RUNAS command that's now native in W2K and XP. Open a Command Prompt and run the following command: ​runas /user:computernameAdministrator command where computername is the name of your computer, and username is the name of the user you're trying to run the command as (e. g. Administrator). The command is the command you're trying to run (e. g. a batch file, an . exe file or even a control panel applet). For example, to open System from a command line as an administrator, type: ​runas /user:computernameAdministrator "rundll32. exe shell32. dll,Control_RunDLL sysdm. cpl" For a list of some of the Control Panel applet filenames see this (incomplete) list: Control Panel Applet Filename Accessibility access. cpl Add New... --- ### Search Tips - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/search_tips/ - Categories: Windows Server - Article Type: Overview Advanced Search Tips "Knowledge is of two kinds. We know a subject ourselves, or we know where we can find information upon it. " Samuel Johnson, 1744 A lot of people have problems navigating through Microsoft's knowledgebase as well as general difficulty with finding information on the Internet. This page might help you do a better job. The Internet is basically the world's largest knowledge dump. Why do I call it a dump? Because you know that what you're looking for is inside there, but you need to have a method of searching it and asking the right questions in order to extract that information out of it. Finding the Web documents (a. k. a. Web "pages" or "sites") you want can be easy or seem impossibly difficult. This is in part due to the sheer size of the WWW, currently estimated to contain 3 billion documents. It is also because the WWW is not indexed in any standard vocabulary. Unlike a library's catalogs, in Web searching you are always guessing what words will be in the pages you want to find or guessing what subject terms were chosen by someone to organize a web page or site covering some topic. When you do what is called "searching the Web," you are NOT searching it directly. It is not possible to search the WWW directly. The Web is the totality of the many web pages which reside on computers (called "servers") all over the world. Your computer cannot find or go to them... --- ### Setting Mailbox Limits - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/setting_mailbox_limits/ - Categories: Exchange Server - Article Type: How To Setting mailbox limits in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of users in the Exchange Organization. Setting limits on the mailboxes help control the database size and plan for efficient backup, restore and maintenance tasks (read Calculating Storage Space in Exchange for more info). Mailbox limits can be set in 3 places via the UI, plus by using scripts to directly edit the Active Directory. I will focus on the first 3 in this article. Note that in order to set mailbox limits over 3GB you will need to manually edit the information in AD. The UI will not let you specify these sizes. Read Setting Mailbox Limits over 2GB for more info. Mailbox Store properties When you want to configure all mailboxes in a store to be limited in size you can either manually edit the store's properties, or create a Mailbox Store Policy to effect many stores at once. Method #1 - Mailbox Store settings - One store at a time Mailbox Stores can be configured to have mailbox limits for all the mailboxes in them. You can make these changes on the Limits tab of the Mailbox Store's properties. Open ESM. Expand your organization, browse to find the required server object, and in it expand the right Storage Group. Right-click the required Mailbox Store and select Properties. In the Limits tab, click to select the Use Mailbox Store Defaults checkbox. Then click to select the... --- ### Test OMA in Exchange 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/test_oma_in_exchange_2003/ - Categories: Exchange Server - Article Type: How To How can I verify that OMA is functioning on my Exchange Server 2003? Outlook Mobile Access (OMA) in Exchange Server 2003 is installed by default, and although you do need to configure it to run (see my Configure OMA in Exchange 2003 article), there is little that needs to be done. You can verify Outlook Mobile Access (OMA) is functioning from a desktop machine running IE 6. 0. Assuming that SERVER1 is running Exchange 2003: From a desktop PC running IE6. 0, navigate to http://server1/oma Enter the logon credentials for an existing mailbox which resides on server1. Click the OK hyperlink when you receive the warning about your device being unsupported. Welcome to OMA! You can also run any sort of WAP emulators freely available on the net and perform a simulated connection to your mailbox. Note that you might get the same warning as above, just scroll to the right place and press Ok, or Ok and do not warn me (for SP1). (This screenshot is of a Microsoft Mobile Explorer emulator) After providing your credentials and successfully authenticating, you will gain access to your mailbox. (More screenshots of Microsoft Mobile Explorer emulator) Read Configure OMA in Exchange 2003 for more screenshots and information. You can also Configure SSL on OMA, in that case make sure you're using a certificate from a trusted source and use https://server1/oma (this is just an example, lamer... ) Related articles You may find these related articles of interest to you: Adding Root Certificates to... --- ### Tweaking - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/tweaking/ - Categories: Windows Server - Article Type: Overview Tweaking Tips and Tricks This page contains a collection of tweaking tips & tricks, articles and how-to guides, all related to Windows 2000, Windows XP and Windows Server 2003. Please feel free to contact me if you'd like to contribute to this section . Available topics (Sorted in alphabetical order) Press CTRL+F to search the page for keywords Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Desktop Icons in Windows Vista Add Printers and Fax Icon to the Desktop in XP/2003 Add Scanners and Cameras Icon to the Desktop in XP/2003 Add Scheduled Tasks Icon to the Desktop in XP/2003 Add Spell Checking to Internet Explorer Add the Administrator's Account to the Welcome Screen in XP Pro Add Volume Control in Windows XP Allow More than 2 Simultaneous Downloads in IE 6 Alternative Command Shells for Windows Automatic Completion with a Command Prompt Bypass the Welcome Screen in Windows XP Pro Change BSOD Color to a Different Color Change Mouse Wheel Scroll Rate Change or Add OEM Logo and Information Change your Microsoft Passport Password Changing the Default NumLock Key State Change the Timeout for Hanged Applications Change to "No Sounds" Sounds Scheme by default Close Many Applications At Once Configure Auto-Starting Applications Configure USB Disks to be Read-Only in Windows XP SP2 Configuring Auto Logon Copy User Profiles in Windows XP Customize Command Prompt in Windows XP/2000/2003 Customize the Places Bar in Office XP Delay Services... --- ### Update the Time on Windows XP - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/update_the_time_on_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I update the clock on my Windows XP machine? Why does the clock always drift away from the actual time? The computer clock will gradually get out of line with reality since it's not a very accurate beast. Some software can check the time with an outside source on the network or Internet and regularly adjust your computer by a few seconds so it never drifts so far off that you would notice. If your computer is a part of a domain (not possible in Home Edition) you do not need to do anything. The computer will automatically update it's time by querying the PDC Emulator (usually the first DC n the domain). If you still want to adjust your clock (you shouldn't because it might have adverse effects on some of your network connections and management tools) you can run the following command: ​net time %logonserver% /set /y (%logonserver% can be used as a variable, but you can specify a DC name if you want). If you're not a part of a domain and still want to update your clock automatically, you can right click the clock found on the tray area on the lower right of your screen and choose "adjust time/date". Click on the Internet Time tab, then select the "Automatically synchronize with an Internet time server" checkbox. This will work for most people, but what if the only 2 time servers specified in the drop list cannot be reached for various reasons,... --- ### Using ExMap to view your Exchange Topology - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using_exmap_to_view_your_exchange_topology/ - Categories: Exchange Server - Article Type: Overview Almost every Exchange administrator would like to see his Exchange servers and the relations between them in one visual map. Using Microsoft ExMap, you will be able to see in one diagram, all the exchange servers, including versions, in the relevant administrative groups, the SMTP connectors and the routing groups connectors. In this article I will present the Microsoft ExMap tool and the different options it has. Requirements and naming conventions ISRDC01 - Domain Controller (LDAP Server). C:ExMap 2. 0. 58 – Location of the ExMap extracted files (working directory). * Because most of the Exchange configuration (Connectors, Routing Groups, Administrative Groups, Storage Groups, etc’) is located in the AD configuration partition (on each one of the DCs in your forest), you don’t need access to any of your Exchange servers - only to one of your AD servers.          Pre-requisites: Windows 2000 Professional / Server Visio 2000 or later Access to LDAP server (Active Directory) – the user needs read permission to the LDAP ExMap works with Exchange 5. 5 or higher Installing ExMap: The ExMap utility is available to download from the following link: Download ExMap (626kb) After downloading the . exe file, you just need to extract it to a working directory (usually its C:ExMap 2. 0. 58). In order to start the utility, just double click the ExMap. exe file in the directory where you extract the files. Configuring the ExMap: ExMap has some options that can be configured, in many cases the defaults will do. I will present the major and... --- ### Download Exchange 2007 Virtual Machines - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_download_exchange_2007_virtual_machines/ - Categories: Virtualization - Article Type: Overview Download Microsoft Exchange Server 2007 Virtual Machines The Microsoft VHD Test Drive Program provides customers with an enhanced server-based software evaluation experience that’s faster, better supported and more flexible. You can now access the entire catalog of pre-configured Microsoft and partner products and solutions in the VHD format and start evaluating and testing today from www. microsoft. com/vhd. This download enables you evaluate how Microsoft Exchange Server 2007 and Microsoft Office Live Communications Server 2005 together can help create an optimized messaging system for your organization. Microsoft Exchange Server 2007 is designed to reduce the growing cost and complexity of managing a corporate messaging system by providing more control for IT administrators, more value and expanded inbox access for end users, and increased security and compliance for the organization as a whole. Microsoft Exchange Server 2007 provides built-in protection technologies to help keep the e-mail system up and running and better protected from outside threats while allowing employees to work from wherever they are using a variety of clients including Microsoft Outlook, Outlook Web Access, and mobile devices. Exchange Server 2007 makes it easier for IT to deliver these new capabilities to their organizations by making the messaging environment easier to manage and more cost efficient. Live Communications Server 2005 provides a standards-based platform, allowing developers the ability to presence-enable existing applications and create next-generation solutions with real-time capabilities. This fully functional pre-configured VHD provides you a trial software will automatically expire after 30 days. This is a preconfigured virtual... --- ### What's Active Directory Cleanup Wizard > What is the active directory cleanup wizard and what does it do? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/active-directory-cleanup-wizard/ - Categories: Exchange Server - Article Type: Overview In Exchange 2000, what is the Active Directory Cleanup Wizard and what is it good for? MSKB 270652 has the following information: The Active Directory Account Cleanup Wizard is a utility designed to merge duplicate Microsoft Windows NT accounts that are created when multiple directories are migrated or upgraded to Active Directory. The Active Directory Account Cleanup Wizard searches Active Directory for duplicate Windows NT accounts, and then suggests merge operations that eliminate the duplicates. You can also verify the individual merge operations. Finally, the wizard merges various account types, their attributes, and their properties into a single user account. Removing duplicate accounts in Windows 2000 Active Directory can help improve performance of your Exchange 2000 servers. The Active Directory Account Cleanup Wizard allows you to: Identify duplicate objects to be merged. You can have the wizard search Active Directory for possible duplicate Windows NT accounts, or you can manually select the duplicate accounts that you want to merge. Review and modify merge operations that the wizard has selected to perform before you merge the duplicate accounts. Export and import lists of accounts. This functionality gives you the flexibility to export a list of merge operations (pairs of duplicate accounts) into a . CSV file so you can import them back to the Active Directory Account Cleanup Wizard for further review. Then at a later time, you can run the merge process. Use command-line options to run the wizard. For additional information about command-line options, click the article number below to... --- ### What's the Microsoft Computer Browser Service? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-computer-browser-service/ - Categories: Networking - Article Type: Overview Microsoft Active Directory services in Windows 2000 replace the computer browser service used in earlier versions of Windows to provide the network basic input/output system (NetBIOS) name resolution. The browser service in Windows 2000 is provided for backwards compatibility with client computers that are running earlier versions of Windows. The primary function of the browser service is to provide a list of computers sharing resources in a client's domain along with a list of other domain and workgroup names across the wide-area network (WAN). This list is provided to clients that view network resources with Network Neighborhood or the NET VIEW command. The Master Browser On each network segment, a master browser is elected from the group of computers located on the segment that are running the browser service. The master browser is responsible for collecting host or server announcements, which are sent as datagrams every 12 minutes by each server on the network segment of the master browser. The master browser instructs the potential browsers for each network segment to become backup browsers. The backup browser on a given network segment provides a browse list to the client computers located in the same segment. The Domain Master Browser In a Windows NT domain structure, the primary domain controller (PDC) is always selected as the domain master browser. Only the PDC can be a domain master browser. If a PDC is not present, a domain master browser is not available and you are unable to obtain browse lists from workgroups... --- ### Windows 2000 MCSA Certification Requirements - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2000_mcsa_certification_requirements/ - Categories: Windows 2000 - Article Type: Overview What are the Windows 2000 MCSA certification requirements? The Microsoft Certified Systems Administrator (MCSA) credential proves that you have the skills to successfully implement, manage, and troubleshoot the ongoing needs of Microsoft Windows 2000–based operating environments, including Windows Windows Server 2003. An MCSA candidate should have 12 months of experience working with a desktop operating system, a network operating system, and an existing network infrastructure. The MCSA credential is for professionals who implement, manage, and troubleshoot existing network and system environments based on the Microsoft Windows 2000 and Microsoft Windows Server 2003 operating systems. These individuals typically do not deploy new networks and systems as part of their job function, as is expected of individuals holding the MCSE credential. In addition, unlike MCSEs, MCSAs are not expected to have design skills. The MCSA credential is for IT professionals working in the typically complex computing environment of medium to large organizations. An MCSA candidate should have six to 12 months of experience implementing and administering a desktop operating system, implementing and administering a network operating system, and managing client and network operating systems in environments with the following characteristics: From 200 to 26,000 users are supported. From two to 100 physical locations are supported. Typical network services and resources include messaging, database, file and print, proxy server or firewall, Internet and intranet, remote access, and client computer management. Connectivity needs include connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to... --- ### Windows 98 Second Edition (SE) Patches - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/windows_98_se_patches/ - Categories: Windows Client OS - Article Type: Overview Windows 98 Second Edition (SE) Patches Note: Microsoft has stopped supporting Windows 98 and Windows NT 4. 0 Workstation as of June 30, 2003. Required Patches Windows 98 SE requires the following security-related patches: Make sure you read Internet Explorer 5. X and 6. 0 Patches and Internet Explorer 6. 0 SP1 Patches before you go on. August 2005 MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) July 2005 MS05-036 : Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214) June 2005 MS05-032 : Vulnerability in Microsoft Agent Could Allow Spoofing (890046) MS05-030 : Cumulative Security Update in Outlook Express (897715) MS05-026 : Vulnerability in HTML Help Could Allow Remote Code Execution (896358) May 2005 MS05-024 : Vulnerability in Web View Could Allow Remote Code Execution (894320) April 2005 MS05-019 : Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066) MS05-018 : Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859) MS05-017 : Vulnerability in Message Queuing Could Allow Code Execution (892944) MS05-016 : Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086) February 2005 MS05-015 : Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113) MS05-013 : Vulnerability in the DHTML Editing ActiveX Control could allow code execution (891781) MS05-012 : Vulnerability in OLE and COM Could Allow Remote Code Execution (873333) MS05-009 : Vulnerability in PNG Processing Could Lead to Buffer Overrun (890261) January 2005 MS05-002 : Vulnerability in Cursor and Icon... --- ### How do you install VMware ESX Server 3i (ESXi)? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how-do-you-install-vmware-esx-server-3i-esxi/ - Categories: VMware - Article Type: How To VMware ESX Server 3i is a very powerful and free Enterprise virtualization platform. I covered all the basics of it, how it is different, and why you want it in our previous article "What is VMware ESX Server 3i? " Now, let me show you how easy it is to download and install VMware ESX Server 3i. Downloading VMware ESX Server 3i The following assumes that you DID NOT receive ESX 3i embedded in your server. If you did, you wouldn’t need this article. You wouldn’t need to download it or install it. To download ESX Server 3i, you need the installable 200MB ESX Server 3i ISO. Go to the VMware ESX 3i website and fill out all the necessary information. Once you have 3i, you can install it on any server that is supported in the VMware ESX Server 3i HCL (hardware compatibility list). And keep in mind that because 3i support SATA disk, it can be installed on much wider variety of servers than ESX 3. x can. To demonstrate and get screen captures of how to install VMware ESX 3i, I installed it inside VMware Workstation. While you can use the ISO CD to install ESX Server 3i inside VMware Workstation with the proper settings, I can tell you that, no matter your host system hardware or settings, 3i will run extremely slow and if you go to start a new virtual guest, 3i will crash. Thus, I recommend that you find a physical server the... --- ### How To Create A Network Test Lab With VMware - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/virtual_create_network_testlab_vmware/ - Categories: VMware - Article Type: How To Let’s say that you want to do some testing of network applications using VMware. This is the perfect use for a VMware’s virtualization technology. By default, most people connect their virtual machines to the bridged (VMnet0) network. This is great for connecting to the Internet and downloading patches or registering the OS. However, once you have done that, many times, you want to connect two or more virtual machines together to create a private network lab environment. Let’s talk about how to do that. Introduction to VMware Networks Before we talk about changing the network of a virtual host, let’s learn about the different VMware networks that are available. By default there are three virtual networks created on a VMware server. They are: VMnet0 – Bridged VMnet1 – Host-only VMnet8 – NAT To configure VMware networks, inside the VMware server management interface, go to Host à Virtual Network Settings, like this: Once inside the virtual network settings, you will see a summary of the virtual networks, like this: Here you can see the three different virtual networks that I talked about above. Inside this Virtual Network Editor, as it is called, is where you make all VMware network changes. The configuration of these virtual networks and how they match up with the virtual machines can get complex. Now that we know what virtual networks are available, let’s talk about how to change from the bridged (VMnet0) network to a network that can be shared by our two... --- ### How to Use VNC to 'Backdoor' Access VMware Servers > This free article explains how to use VNC to access and manage a VMware ESX or GSX server. Detailed instructions are included. - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_using_vnc_and_vmware_server/ - Categories: VMware - Article Type: How To In our Remotely Manage VMware Servers article, we talked about the different ways to remotely manage your VMware Server. A very cool (I believe) "backdoor" management method for VMware is VNC. And even better, its built-in to VMware - you don't have to install it. All you have to do is turn it on. Let's find out how... What can the built-in VMware Server VNC Management tool do for you? VNC is pretty well known but when it comes to understanding how it is going to manage your VMware virtual servers, it required some clarification. Here is how this works: VNC Server functionality can easily be enabled with a single command for each Virtual Machine (VM) You must enable VNC for each VM that will use it You would connect to the IP address or DNS name of the VMware Host - NOT of your VM guests The VM must be powered on to be able to connect to it The only function you can perform with the VNC tool is remote control of the console. You cannot perform all the other VM management and configuration tasks like you can with the VMware Server Console or the VMware MUI web interface. Each VM guest you connect to must have a different port number, starting at 5900 When you connect to the VM you can abbreviate your port number. For example, to connect to server1, port 5900, you can just type server1:0 If you connect a second VNC... --- ### How to Reset your VMware ESX Server root password - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/vmware-esx-server-root-password-reset-recovery-lost/ - Categories: VMware - Article Type: How To Just like every other password, it is inevitable that, eventually, you will loose or forget the root password to one of your VMware ESX Server systems. So how do you reset your VMware ESX Server root password? Let's find out... 1. Shutdown and Reboot your VMware ESX Server If you don't know the VMware ESX Server root password, you don't know any passwords for root-equivalent accounts, and your virtual center server also does not have it cached, the only way to change the root user password is to first shutdown / power off your VMware ESX Server. 2. Press "a" to modify the kernel arguments As soon as you see the GRUB boot screen, press "a" to modify the kernel arguments, like this:   3. Enter single user mode At the end of the kernel arguments command line, type "single" and press Enter, like this:   4. Change the root password Now, change the root password using the passwd command, like this: You will need to enter the new root password twice. 5. Reboot the ESX Server Once you have reset the root password, reboot the server to go back into multi-user mode.   6. Verify the new password Once the system reboots, verify that the new root password works, like this:   In Summary Resetting the VMware ESX Server root password is not difficult but you will have to bring down the server, enter single user mode, use the passwd command,... --- ### Group Policy Object Modeling in Windows Server 2008 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/group-policy-object-modeling-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: Overview If you have ever done much work with group policies, then you have undoubtedly found out that managing group policies are an organization wide basis can be a complicated endeavor. That's primarily due to the hierarchical nature of group policies. Group policy settings can be applied at the OU, site, domain, and local computer levels. All of these various group policy objects combine to form the effective policy. As if combining settings for multiple group policy objects were not enough, contradictory settings can, and often do exist within the various group policy objects. Not only can two separate group policy objects contained directly contradictory settings, the group policy settings that apply to the computer can sometimes also contradict with group policy settings applied to a user. Windows has all kinds of rules for automatically dealing with contradictory group policy settings. Even so, you as an administrator need to know the outcome of these conflict resolutions and what the effective policy look like once the various policy elements have been combined. In Windows Server 2003 this was known as the resultant set of policy. In Windows Server 2008, Microsoft has changed the name to group policy modeling. Why Do Group Policy Modeling? There are several different reasons why you might want to engage in group policy modeling. For starters, even if everything appears to be running smoothly is a good idea to periodically use group policy modeling just to make sure that group policies are being applied in... --- ### Planning a Sites and Services Architecture for Exchange 2007, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/planning-sites-services-architecture-windows-ad-exchange-2007-server-part2/ - Categories: Exchange Server - Article Type: Overview In my previous article in this series, Planning a Sites and Services Architecture for Exchange 2007, I explained that Exchange 2007 does not have its own built in routing topology, but rather piggybacks off of the Active Directory site structure. In this article, I want to give you a little bit of practical know how to go along with the more theoretical material that I covered last time. What Are Site Links? The first thing that you need to know about Active Directory sites is that the sites themselves are a logical structure that mimics your network’s physical topology. Typically, each site will represent a well connected area of your network. Some administrators like to create a separate site for each network segment, but I tend to prefer to create sites based on connectivity speed. My rule of thumb is that there should be a site link for every WAN connector, and every part of your network that is separated from another part by a WAN link should be represented by a site. Creating Site Links Creating the sites themselves is simple. To do so, open the Active Directory Sites and Services container. When you do, you will see that Windows has automatically created the first site for you, as shown in Figure A (it’s called Default-First-Site-Name). Figure A The first site is created automatically. If you are going to be creating multiple sites, then the first thing that I would recommend doing is renaming the built... --- ### Security Configuration Wizard for Exchange Server 2007 – Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/security-configuration-wizard-scw-exchange-2007-part-2/ - Categories: Exchange Server - Article Type: Overview In Part I of this series, we registered the XML files so that the Security Configuration Wizard could create an apply policies for Exchange 2007 servers. In this part, we’ll create and apply a policy to a server. It’s very important that all applications and utilities be installed on the server before running the SCW wizard. This includes all antivirus and backup applications, monitoring tools, etc. This is because once the policy is applied, applications installed after that may not work as key services and ports may be disabled. It’s generally a good idea to make sure all other configuration on your Exchange servers is completed, and use the SCW as the last step before putting the server into production. Before applying a policy, validate your installation by checking event logs and functionality to verify that everything is working as desired. The SCW doesn’t “fix” any broken functionality. Also keep in mind is that while some of the dialog boxes are a little different when creating policies for Edge Transport servers, the process is the same, and not differentiated any further here. With that in mind, let’s create a policy for a server. Creating an Exchange server role policy for the Security Configuration Wizard To run the wizard, you’ll need local administrator access to the server. From the server console, Click Start > All Programs>Administrative Tools > Security Configuration Wizard to start the wizard. On the Welcome to the Security Configuration Wizard screen, click Next. Choose Create... --- ### Bypass UAC using a Desktop Shortcut - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/bypass-uac-using-desktop-shortcut/ - Categories: Windows Vista - Article Type: How To   Windows Vista has the built-in ability to automatically reduce the potential of security breaches in the system. It does that by automatically enabling a feature called User Account Control (or UAC for short). The UAC forces users that are part of the local administrators group to run like they were regular users with no administrative privileges. User Account Control provides security protection for system kernel, memory and registry from unauthorized access by programs or processes. You can read more about UAC on my What's User Account Control in Windows Vista? article. UAC can drive you crazy. It will bug you to the point where you'll totally ignore it and automatically click to accept its prompts without giving it a second consideration, virtually rendering it useless. Or, you could simply disable it. You can read more about UAC on my How can I disable the User Account Control (UAC) feature on my Windows Vista computer? article. While disabling UAC is not a hard task to accomplish, there is another method you can use to deal with it. In this guide, I will help tell you how to create a desktop shortcut for bypassing UAC for programs that require UAC Administrative Permissions, and allow standard users to run these programs without administrative access. You will be doing it by using a known bypass trick in Task Manager and a desktop shortcut. You will also be able to use this trick to launch a program from the Command Prompt... --- ### Deploy Windows XP through GPO - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/deploy_windows_xp_through_gpo/ - Categories: Windows XP - Article Type: How To How do I use Group Policy to deploy Windows XP in a Windows 2000 network? You can use Group Policy to make a Windows XP Professional upgrade available to the Windows 2000 Professional workstations in your network. Create a folder to hold the Windows Installer package (Winnt32. msi) on a network server. Give the folder the appropriate permissions to allow the users and the computers to read and run the files, and then copy the I386 folder from the Windows XP Professional CD-ROM to this folder. You can create a GPO for a domain, an organizational unit, or a site. It is recommended that you assign a GPO to an organizational unit that contains the users whose workstations you want to upgrade. In that GPO, click to expand User Configuration, and then click to expand Software Settings. Right-click Software installation, point to New, and then click Package. In the Look in box, browse to the share where the I386 folder is located. Make sure that the path that you enter is an accessible Universal Naming Convention (UNC) path and not a file system path. Open the share that contains the Windows Installer package, click Winnt32. msi, and then click Open. Click Publish, and then click OK. Note: When you make changes to the GPO, these changes are not applied immediately to the target computers. Instead, they are applied according to the currently valid Group Policy refresh interval. In this scenario, when the program has been published to the users, it is available... --- ### How can I easily administer DNS servers by using the command prompt? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/dnscmd_command_in_windows_2000_2003/ - Categories: DNS - Tags: Editor's Pick - Article Type: How To A GUI interface is great for novice administrators but is cumbersome if you have to perform the same task over and over again. Command line tools can be more efficient than GUI tools. Dnscmd. exe is one of the support tools from Support. cab, which is located in the support'tools directory on the Windows 2000 CD. Dnscmd is provided as a command-line interface for managing DNS servers. This tool can be used to script batch files, to help automate management and update of existing DNS server configurations or to perform setup and configuration of new DNS servers on your network. DNSCmd displays and changes the properties of DNS servers, zones, and resource records. It manually modifies these properties, creates and deletes zones and resource records, and forces replication events between DNS server physical memory and DNS databases and data files. Some operations of this tool work at the DNS server-level while others work at the zone-level. You can use Dnscmd on any Windows 2000 or XP computer as long as the user that is running the application is a member in the Administrators or Server Operators group on the target computer. Both the user account and the server computer must be members of the same domain or reside within trusted domains. Dnscmd. exe can be used to: Get DNS server info; Initiate server scavenging; Enumerate and view zone info; Create, delete, pause, and resume zones; Change zone type (standard primary, standard secondary, AD integrated); Add, delete, and enumerate records... --- ### Download Group Policy ADM Files for All Microsoft Operating Systems - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_gpo_adm_files/ - Categories: Downloads - Article Type: Overview Download Group Policy ADM Files for all Microsoft Operating Systems Administrative Template files are used to populate user interface settings in the Group Policy Object Editor, enabling administrators to manage registry-based policy settings. Each successive Windows operating system and service pack includes a newer version of these . adm files. Note: In the upcoming Windows Vista and Windows Longhorn server, the . adm files will be superseded by . admx files. I will write an article about those in the near future. Previously, customers could only obtain the most recent . adm files by obtaining the latest service pack or operating system. Now, these . adm files are available directly from this page. This page provides access to each version of the original . adm files that shipped with each operating system or service pack. Each set of . adm files is included in a Microsoft Installer (MSI) package, available for download from this page. Supported Operating Systems: Windows 2000; Windows 2000 Service Pack 2; Windows 2000 Service Pack 3; Windows 2000 Service Pack 4; Windows Server 2003; Windows Server 2003 Service Pack 1; Windows XP; Windows XP Service Pack 1 File information: These are the files you can download from the d/l page. Windows Server 2003 SP1 admFiles_WindowsServer2003SP1 installs: • conf. adm, 2/22/2003 • inetres. adm, 2/18/2005 • system. adm, 2/18/2005 • wmplayer. adm, 7/18/2005 • wuau. adm, 7/18/2005 Windows XP SP2 admFiles_WindowsXPSP2 installs: • conf. adm, 7/17/2004 • inetres. adm, 7/23/2004 • system. adm, 7/17/2004 • wmplayer. adm, 7/17/2004 • wuau. adm, 7/17/2004 Windows Server 2003 admFiles_WindowsServer2003. msi installs: • conf. adm, 2/21/2003 • inetres. adm,... --- ### Download Shadow Copy Client - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_shadow_copy_client/ - Categories: Downloads - Article Type: Overview Where can I download the Shadow Copy Client? What are the system requirements for the Shadow Copy client? Shadow Copy Restore is a component of the intelligent file storage technologies in Microsoft Windows Server 2003. It enables you to prevent data loss by creating and storing shadow copies of files and folders on your network at predetermined time intervals. Before a client computer can access shadow copies, you must install the Shadow Copy Client. The operating systems that require the Shadow Copy Client include: Windows XP Windows 2000 (SP3 and higher) System Requirements Supported Operating Systems: Windows 2000 Service Pack 3, Windows XP, Windows 98SE Windows Installer : To install this msi package you need Windows Installer 2. 0 or higher. You can download it from one of the following locations: Windows Installer 2. 0 Redistributable for Windows 98 SE Windows Installer 2. 0 Redistributable for Windows 2000 Download the Shadow Copy Client (488kb) For Clients Running Windows XP From the client computer, click the Download File link to start the download, then do one of the following: To start the installation immediately, click Open. To copy the download to your computer for installation at a later time, click Save. For Clients Running Earlier Versions of Windows To use Shadow Copies of Shared Folders on a client computer running a version of Windows earlier than Windows XP, you must install the shadow copy client software on both the client running the earlier version of Windows, and the server running Windows Server... --- ### Easily Identify Computer Name on Windows 2008 Server Core - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/easily-identify-computer-name-on-windows-2008-server-core/ - Categories: Windows Server 2008 - Article Type: How To   In Windows Server 2008, one of the installation methods available is server core. A core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. Server core installation does not include the traditional full graphical user interface (GUI). Read more about Server Core on my "Understanding Windows Server 2008 Server Core" article. If you are planning to deploy Windows Server 2008 - server core installations in your network I would strongly advise you to use the following tip.   In all my server core installations I change the default prompt to something like this:   This customized command prompt will enable you to quickly and easily identify the name of the server you're currently logged on to. This is quite useful in scenarios where you've got many servers connected to one physical monitor, and you switch between the various displays by using a KVS switch. Another usage for this customized command prompt is when you use RDP or Terminal Services to remotely log on to the server, and since all you get is a command prompt window, it's hard to tell to which server you're currently connected. So, how can you get this cool command prompt? Quite easily, but you do need to edit the server's registry. Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to... --- ### Enable Remote Desktop on Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/enable_rdp_windows_2003/ - Categories: Networking - Article Type: How To With Remote Desktop on Windows XP Professional or Windows Server 2003 (in Windows 2000 Advanced Server, this feature was called Terminal Services in Remote Administration Mode), you can have access to a Windows session that is running on your computer when you are at another computer. Read What's Remote Desktop in Windows XP/2003? for more info. To enable the RDP service on Windows Server 2003 follow the next steps: Go to Control Panel. Click System. Go to the Remote tab. Select the "Allow users to connect remotely to this computer" box. Click Ok. BTW, next time you need to open the System applet you can do so much faster: instead of clicking your way to the System icon, you can just right click My Computer and choose Properties, or even better - press the Windows Logo key on your keyboard and then press Pause/Break at the same time. Note: In order for the RDP connection to work you need to allow TCP port 3389 connections to the server. You also need the name and password of one of the local (or domain) administrators, because this type of connection is only allowed for administrative accounts. Related articles You might also want to read the following related articles: Add a new RDP Listening Port to Terminal Server Change Terminal Server Listening Port Download RDP 5. 2 Download Remote Desktop Web Connection for XP SP1 Install Remote Desktop Web Connection on Windows XP Install Remote Desktop... --- ### Errors After Moving Exchange Stores to a Different Disk - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/errors_after_moving_exchange_stores_to_a_different_disk/ - Categories: Exchange Server - Article Type: Overview Errors after moving Exchange Stores to a different disk in Exchange 2000/2003? When you install Exchange 2000/2003 on your server the setup program installs and configures Exchange in a default directory under the C:Program FilesExchsrvr folder. Although this is the default setup, in order to facilitate better hard disk performance and redundancy it is best that the Exchange stores and log files are NOT placed on the System partition (i. e. C:). In order to learn how to move the databases and/or log files please read Move Exchange Stores to a Different Disk. However, after moving the store and/or the log files to a different location, if you accidentally (or deliberately) delete or rename the old MDBdata folder path after you move the Exchange database you may experience the following symptoms on your Exchange 2000/2003 server: Messages that have attachments that are encoded by using the Microsoft Outlook Rich Text formatting or the Transport Neutral Encapsulation Format (TNEF) content type build up in the SMTP local delivery queue on the destination Exchange Server computer, while messages that have attachments that use the MIME body part of the Application/MS-TNEF content type encoding are successfully delivered to the recipient. In some cases, Exchange cannot send messages that have attachments to another routing group or to the Internet, or are received without the attachment. The attachment icon is present, but when you try to open the attachment, you experience one of the following behaviors: If you use Microsoft Outlook as a... --- ### EXIFS Access to Alternate PF Trees in Exchange 2003 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/exifs_access_to_alternate_pf_trees_in_exchange_2003/ - Categories: Exchange Server - Article Type: Overview In Exchange 2000, how can I provide access to Alternate Public Folder Trees via EXIFS? Although Exchange 2003 allows multiple Public Folder roots (Create new PF Tree on Exchange 2003), current Outlook clients don't, so you can't display these other structures in Outlook. However, you can view them via the Web with the following format: ​http://exchange server/public folder root or via EXIFS (virtual drive M) just like you'd look at any shared folder on the network. Exchange Server 2003 does not expose drive M by default. In order to access Alternate PF Trees via EXIFS in Exchange Server 2003 you'll need to re-create drive M. In order to re-create drive M on Exchange Server 2003 follow instructions on the Restore the M Drive Mapping in Exchange 2003 page. This will re-create drive M for you. After restoring drive M, to make your PF available via EXIFS do the following: On your Exchange server open Windows Explorer and go to your M:\ drive. Drill down to your new Public Folder Tree. Right click it and choose Sharing. Share it with any name you want, and give it the proper share access control permissions. Note: You can also share any sub-folder you want. You do not have to share the PF Tree itself if you don't want to. Click OK and see if it's visible through Network Neighborhood or through a NET SHARE command on the server. Users will be able to access this new PF like it was a regular shared... --- ### Find your Microsoft Passport Password - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/find_your_microsoft_passport_password/ - Categories: Windows Client OS - Article Type: How To How do I find out my MSN Messenger (Microsoft Passport) password, in case I forgot it? You've used your good old Windows XP computer for over 2 years now. Suddenly something breaks, and you're forced to reinstall your operating system. You know you've got important stuff on the machine, and you want to make sure you'll be able to use the same settings on the newly installed machine. One of the small but nagging things include the logging information for instant messaging services such as ICQ or MSN Messenger. After using the same computer for that long, it's more than likely that you forgot the password you've used to create your MSN (Microsoft) Passport account, and since your computer does not prompt you for that password, you have no clue as of what it is right now. One thing you can do is to ask Microsoft Passport's account services for a new password. You can read more about it on the Change your Microsoft Passport Password page. Note: This page does NOT contain information on how to hack/crack your MSN Passport password, nor does it contain any illegal items. It also does not offer any help in cracking someone else's password. One of the coolest tools I came upon a long time ago was MessenPass by Nir Sofer (NirSoft): MessenPass is a password recovery tool that reveals the passwords of the following instant messenger applications: MSN Messenger Windows Messenger (In Windows XP) Yahoo Messenger (Versions 5. x and 6. x)... --- ### Get the Windows Experience Index (WEI) score of a Vista Network Computer - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/get-windows-experience-index-score-of-vista-network-computer/ - Categories: Windows Vista - Article Type: How To Microsoft defines the Windows Experience Index as the following: "The Windows Experience Index is a new feature built into Windows Vista that is designed to help you better understand how well Windows Vista and other software will perform on your PC. Your computer, running Windows Vista, is assigned a rating number called a "base score" that is achieved by measuring the capability of your computer's hardware configuration. This base score rating will help you to more confidently buy additional hardware, programs, and software that are matched to your computer's base score. ". One of the cool new tools introduced with Windows Vista is the Windows System Assessment Tool. The System Assessment Tool runs a series of tests and then rates your computer on a scale ranging from 1 through 5 (with 1 representing the lowest possible score and currently 5 representing the highest possible score). The Tool actually rates several subsets of your computer system, including processor, memory, primary hard disk, graphics, and gaming graphics. It then uses a special algorithm to calculate an overall Windows System Performance Rating. The ratings are displayed as Windows Experience Index or WEI score. Unfortunately, some software requires your WEI score to be above a certain threshold for all the features to work, features like the new Vista Aero theme. BTW, you can artificially raise the WEI score of your computer if you really need to show off to your friends (although I might think of better ways to show off, that's... --- ### Hide a User from the Welcome Screen in Windows XP - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/hide_a_user_from_the_welcome_screen_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I hide a user from the Welcome Screen in Windows XP? To hide a user's account from the welcome screen in Windows XP: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList Create the following entry: Username: REG_DWORD (Where Username is the username of the user you want to hide from the Welcome Screen). Assign a value of 0. Close Registry Editor. Reboot. This will prevent the user from showing up on the welcome screen. You will need to press CTRL-ALT-DEL twice at the logon screen to get the old W2K logon style box to be able to logon to the account you've hidden. Adding a username and setting the value to 1 will cause that user, such as Administrator, to show up on the Welcome screen as well. --- ### How to Install Active Directory on Windows 2000 (for idiots) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how_to_install_active_directory_on_w2k_for_idiots/ - Categories: Active Directory (AD) - Article Type: How To I'm a Lamer! How do I install Active Directory on my Windows 2000 Server? You can configure your server as a Domain Controller manually (as covered in How to Install Active Directory on W2K), but if you don't have the time, skill, brains or will to do it manually, it can still be done with just a few mouse clicks. Dynamic Host Configuration Protocol (DHCP), Domain Name Service (DNS), and DCPROMO (the command-line tool that creates DNS and Active Directory) can be by using the Windows 2000 Configure Your Server Wizard. Even though it's all done automatically, you still need the following: A NIC The TCP/IP protocol An NTFS partition with enough free space A network connection (to a hub or to another computer via a crossover cable). An Administrator's username and password The Windows 2000 Server (or Advanced Server) CD media (or at least the i386 folder) This article assumes that all of the above requirements are fulfilled. See my Active Directory Installation Requirements page for more info. Note: This article does NOT assume you have a working brain, or that you can use it correctly. If you think you really want to know how this thing works, please read the How to Install Active Directory on W2K page instead... To configure your server as a Domain Controller Press Ctrl-Alt-Del and log on to the server as administrator. Leave the password blank. When the Windows 2000 Configure Your Server page appears, select This is the only server in my... --- ### IIS 4.0 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/iis_40_patches/ - Categories: Patches and Service Packs - Article Type: Overview IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to protect your computer from IIS related attacks, and remember that even though you're using Windows 2000 Professional - you're still vulnerable to those attacks (IIS is installed by default on all W2K platforms, but not on XP and Windows Server 2003). Note: Since IIS is such a potential threat to your system, and since my site is usually NOT security oriented, I cannot guarantee your computer's safety even if you do follow my recommendations. I cannot be held responsible for anything that might happen to you, your computer, or the information stored on it.   I might compile a list of IIS security issues later this month. but till then you can read the TechNet Security Webpage and search for the IIS related issued, and also the Microsoft Security page IIS 4. 0 Required Patches IIS 4. 0 is an optional upgrade to Windows NT 4. 0, and can be installed on the machine by installing the Windows NT 4. 0 Option Pack. Internet Information Server (IIS) 4. 0 installed on a Windows NT 4. 0 SP6a Server box requires the following security-related patches: July 2004 MS04-021 : Security Update for IIS 4. 0 (841373) May 2003 MS03-018 : Cumulative Patch for Internet Information Service (811114) This patch is a cumulative patch that includes the functionality of all security patches released for IIS 4. 0 since Windows NT 4. 0 Service Pack 6a: 327696 MS02-062: October 2002 Cumulative Patch for Internet... --- ### Install Hebrew on Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/install_hebrew_on_windows_xp/ - Categories: Windows XP - Article Type: How To How can I install and use Hebrew fonts on my Windows XP computer? Windows XP (and 2000/2003/Vista) has the built-in ability to display Hebrew fonts on your system without the need to install language packs or special localized versions of the OS. To see Hebrew fonts on your Windows XP computer you MUST perform the following tasks precisely in the order listed here. Not doing so might cause your computer to display ? ? ? ? ? ? ? instead of Hebrew fonts, especially in Office applications. Unlike W2K, it is SAFE and it is OK for you to install Hebrew language support during the GUI setup phase of Windows XP. Note: You might also want to read the following articles: Install Hebrew on Windows 2000 Install Hebrew on Windows Server 2003 Install Hebrew on Windows Vista NEW! Install Hebrew on Windows 7 Option 1: During the GUI phase of the setup process After rebooting from the text-based setup phase, the computer will display the setup GUI, and the fist prompt you'll get is the Regional Settings customization window. You can install Hebrew support at this phase by pressing the Customize button and going to the Languages tab. Select the "Install files for complex script and right-to-left languages" check-box. A warning message will appear. Press Ok. Warning: You must now press Apply! ! ! Setup will copy the necessary files from the installation point. You can now go to the Regional Options tab and select Israel in the Location drop-down list, and Hebrew in the... --- ### Install Windows Server 2003 CA - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/install_windows_server_2003_ca/ - Categories: Security - Article Type: How To How can I install the Certificate Authority (CA) service in Windows Server 2003? Windows Server 2003 can be used as a Certificate Authority (also known as CA) to provide extended security by offering support for Digital Certificates. Digital Certificates can be granted to users based upon their roles and group membership. For example, a regular user that wants to enroll for a certificate will only be allowed to enroll for a specific set of Digital Certificates, while another user that is a member of the Domain Admins group will be allowed to enroll for a different set of certificates that can be used for a variety of functions, including Recovery Agents, IPSec, SSL and so on. User Digital Certificates are valid for different purposes, including: Allowing data on disk to be encrypted Protecting e-mail messages Proving the user's identity to a remote computer and more. Note: There may be scenarios where a company might opt to use 3rd party issued Digital Certificates instead of creating their own, especially when that company's users will be dealing with out-of-the-company users, exchanging encrypted e-mail messages between themselves and these outside users, or when using SSL on a secured web site. This is because the outside users might not be willing to trust the company's internal CA. Step 1: Install the IIS Service In order to install the CA you will first need to install IIS on a Windows Server 2003 computer. On Windows Server 2003 IIS is not installed with... --- ### How can I install Intelligent Message Filter on Exchange Server 2003 Service Pack 2? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/installing_imf_with_exchange_2003_sp2/ - Categories: Exchange Server - Article Type: How To Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users.  IMF used to be a stand-alone tool downloadable from Microsoft, however now IMF is an integral part of Exchange Service Pack 2 (SP2). As usual, one should read the Microsoft Exchange Server 2003 Service Pack 2 Release Notes before installing SP2. This is more important in regards to the installation and configuration of the Intelligent Message Filter in SP2. Download Exchange 2003 SP2 (109mb) After downloading Exchange Server 2003 SP2 you can now install it on your machine. However, make sure you read the following information before doing so: Uninstall IMF v1 first! Exchange 2003 SP2 setup program will check for the presence of IMF v1 on the server, and if found it will display an error that the older IMF v1 needs to be uninstalled first before SP2 (with IMF v2 bundled in) can be installed. Important note: There seems to be a bug in the SP2 setup program that will sometimes, under specific circumstances, to ignore the fact that IMF v1 is in fact installed on the machine, and will proceed without warning. In this case, IMF v2 will not work. Make sure you remove IMF v1 prior to installing SP2. If there was no IMF v1 prior to installing SP2 The Microsoft Exchange Server 2003 Service Pack 2 Release Notes has a note about the need to manually create... --- ### Junk E-mail Reporting Tool for Microsoft Office Outlook 2003/2007 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/junk_email_reporting_tool_for_outlook_2003/ - Categories: Exchange Server - Article Type: Overview Microsoft has released a nice tool that allows us to report any spam e-mail message that has bypassed the built-in Junk Mail filter, the Exchange-side Intelligent Message Filter (IMF) or any other spam filter that you're using. After installing the tool, if you choose to send that e-mail for Microsoft for analysis, select the e-mail in Outlook and then click the junk e-mail button on your tool bar. You will see a pop-up window asking whether you want to report the selected e-mail to Microsoft and its affiliates. When you click “Yes” to confirm that you’d like to report the selected e-mail as junk e-mail, the junk e-mail will be deleted from your Inbox and sent to FrontBridge, a Microsoft company, for analysis to help them improve the effectiveness of our junk e-mail filtering technologies. The e-mail you're about to send is submitted for your review, and after a close inspection you can safely send it away. After a few moments you'll get a confirmation e-mail: "Why would I want to send Microsoft anything? " you're probably asking yourself. The reason to do so would be because by sending your own unique spam samples you will help Microsoft analyze how spammers evolve, what means they employ in order to bypass today's anti-spam filters, and thus keep the battle between "good and evil" (i. e. anti-spam tools and the spammers that we all hate). Since the e-mail you're sending is spam and does not contain any confidential or personal information it's safe to... --- ### Manage your Network with ManageNet - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/managenet/ - Categories: Windows Client OS - Article Type: How To ManageNet network administration tool - more info It is estimated that 85% of a network administrator's time is spent rolling out the latest service packs, mapping drives, configuring folder redirections, configuring Internet connections, setting Microsoft Office paths, creating new Outlook profiles, deploying new printers, configuring proxy setting and tightening security policies. ManageNet uses a graphical user interface to simplify desktop administration, eliminate redundant tasks and reduce other time-consuming activities. Network administrators can manage Windows clients and applications more efficiently, precisely choose settings to apply to computer or user and deliver the configuration for each user as they logon and while they working. By automating various redundant administrative activities, desktop management resources can be minimized by as much as 50%. Benefits for Users and Administrators More Productive Users - Personalized desktops—unique configurations of security policies, preferences, drive mappings, printers, Internet, and applications settings—can be applied to PCs based on ManageNet's Actions, so everyone on the network has the familiar interface and set of resources they need, when and where they need them. Simplified Administration - By centralizing the process of desktop management and enabling remote troubleshooting and repair in many cases, ManageNet keeps users working with less intervention required by administrators. Reduced Costs - ManageNet control your network using unique LoginScript engine during the network logon process to reduce the number of menial management tasks and to eliminate redundant administration so your staff can concentrate on more strategic activities and reduce your total cost of ownership. The benefits of a centralized... --- ### Microsoft launches Hyper-V beta 1 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/microsoft-launches-hyperv-beta-1/ - Categories: Virtualization - Article Type: News Completely unexpected Microsoft launches the first beta of its upcoming hypervisor Hyper-V (formerly codename Viridian / Windows Server Virtualization). This first beta, initially planned for the end of this year, was later postponed to February 2008, in sync with the global launch of Windows Server 2008 (formerly known as "Longhorn"). But Microsoft put a great effort to launch the beta ahead of time. Some people say that this was in conjunction with the VMware launch of VI 3. 5... The new build unlocks several critical features customers were looking for: Quick Migration and support for host-level HA (up to 16 nodes) Out-of-the-box integration with Windows Server 2008 Server Manager (no more separate installation) Support for Windows Server Core edition (allowing a smaller hypervisor footprint) Support for Volume Shadow Service (VSS) (which implies capability to perform VMs live backup at host level) Support for 64GB virtual RAM per VM Support for multiple virtual NICs per VM Support for 4 virtual SCSI controller per VM ntegration of VHD manipulation tools With this beta Microsoft is providing support for Windows Server 2003 and 2008 guest OS, as well as Novell Linux guests (thanks to the special agreement the two companies have on interoperability). Customers and partners today can download Windows Server 2008 RC1 Enterprise with the beta version of Hyper-V to evaluate the new technology, test applications and plan future consolidation, business continuity and high-availability projects. The final version of Hyper-V remains on target for release within 180 days of the RTM of Windows... --- ### Monitoring Exchange and Finding Common Problems - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/monitoring_exchange_server_and_finding_common_problems/ - Categories: Exchange Server - Article Type: How To Monitoring Exchange and Finding Common Problems Introduction In our daily jobs as Systems Engineers and Administrators we come across systems that are in need of our help... and may even be asking for it. Beyond checking your Event Viewer’s, this article looks at some common issues you might find on the server you are running Exchange on. As a Network and Systems Consultant, I see many times that Exchange itself is not the problem, but the fact that Exchange is installed on a sub-par system. Either the server hardware isn’t enterprise class, or the minimum hardware requirements weren’t addressed. In this article, we will take a look at checking the fundamentals of your Exchange System and look at a real world production server suffering from a common problem. Note: This article is published with permission from www. msexchange. org Make Sure Exchange is Strong Would you drive a truck on a sheet of glass over a bridge? No. Then why would you run an enterprise class server operating system hosting a mission critical application such as e-mail and messaging on an antiquated desktop? Don’t think it happens? It happens more than you think. In the past 5 years alone I have worked with many teams of experts weeding out these exact systems and replacing them with what should have been there before... a system that was thought out and built strong. Now, you don’t have to cluster everything you run, but it would help if your enterprise level servers... --- ### New Generation of Microsoft Certifications - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/new_generation_of_microsoft_certifications/ - Categories: Windows Server - Article Type: Overview New Generation of Microsoft Certifications On the October 25th 2005 Microsoft has announced a new generation of certifications that are more specific and targeted to reflect the detail of what professionals do, and to prove their expertise. The new generation of certifications is designed to reflect today's business landscape and the needs of people working in many diverse IT job roles. Read more about the new certifications: The New Generation of Microsoft Certifications The new generation of certifications are made of 3 series: The Technology Series: Proven Core Technical Skills on Microsoft Technologies The Technology Series certifications enable professionals to target specific technologies and distinguish themselves by demonstrating in-depth knowledge of and expertise in the broad range of technologies with which they work. Microsoft Technology Specialists are consistently capable of implementing, building, troubleshooting, and debugging a particular Microsoft technology. The Technology Series certifications: Typically consist of one to three exams. Are focused on a key Microsoft product or technology. Do not include job-role skills. Will be retired when mainstream product support for the particular technology expires. The Professional Series: Professional Skills and a Proven Ability to Perform on the Job Professional Series credentials validate a comprehensive set of skills required to be successful on the job. These skills include design, project management, operations management, and planning, and they are contextual to the job role. By validating a more comprehensive set of skills, these credentials give candidates and their hiring managers a reliable indicator of on-the-job performance. The Professional Series certifications:... --- ### Office XP SP3 Info - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/office_xp_sp3_info/ - Categories: Patches and Service Packs - Article Type: Overview Office XP Service Pack 3 (SP3) provides the latest updates to Microsoft Office XP. SP3 contains significant security enhancements, in addition to stability and performance improvements. This service pack applies to any level of Office XP. It contains all updates included in Office XP Service Pack 1 (SP1) and Office XP Service Pack 2 (SP2), and updates released after SP2. You can download the administrative version of SP3 for Office XP right here: Download Office XP SP3 (58. 9mb) This version is used to install across the network and to slipstream onto the Office CD - Office XP SP1/2 Slipstreaming. Or get the minimal required files right HERE (16. 4mb, local installation files only) Read more about Office XP Deployment Included in this Service Pack Office XP SP3 addresses the issues described in the following Microsoft Security Bulletins: Microsoft Security Bulletin MS02-044: Unsafe Functions in Office Web Components (Q328130) Microsoft Security Bulletin MS02-059: Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure (Q330008) Microsoft Security Bulletin MS02-067: E-mail Header Processing Flaw Could Cause Outlook 2002 to Fail (331866) Microsoft Security Bulletin MS03-003: Flaw in how Outlook 2002 handles V1 Exchange Server Security Certificates could lead to Information Disclosure (812262) Microsoft Security Bulletin MS03-035 : Flaw in Microsoft Word Could Enable Macros to Run Automatically (827653) Microsoft Security Bulletin MS03-036: Buffer Overrun in WordPerfect Converter Could Allow Code Execution (827103) Microsoft Security Bulletin MS03-037: Flaw in Visual Basic for Applications Could Allow Arbitrary Code Execution (822715) Microsoft Security Bulletin... --- ### Overview of Windows Server 2003 - Web Edition - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/overview_of_windows_server_2003_web_edition/ - Categories: Windows Server 2003 - Tags: Editor's Pick - Article Type: Overview Microsoft Windows Server 2003, Web Edition is a part of the Microsoft Windows Server 2003 family. It is an easy-to-deploy, easy-to-manage server operating system that is optimized to be a complete Web hosting package. Windows Server 2003, Web Edition includes the following features: Internet Information Services (IIS) 6. 0, which provides a robust architecture for building and publishing secure Web applications. IIS is a software services that support Web site creation, configuration, and management, along with other Internet functions. Internet Information Services include Network News Transfer Protocol (NNTP), File Transfer Protocol (FTP), and Simple Mail Transfer Protocol (SMTP). Revolutionary Microsoft ASP. NET, for deploying Web services and applications rapidly Remotely administered management, with an easy-to-use, task-driven, internationalized Web user interface (UI). This means that it's possible to manage one computer by an administrator working at another computer that is connected to the first computer across a network. Remote Desktop for Administration, which provides remote access to the desktop of any computer running a product in the Windows Server 2003 family. Web Interface for Remote Administration, for configuring and managing a server from a remote client, including creating and deleting Web sites, configuring network settings, setting disk quotas, managing local user accounts, and restarting the Web server. Flexibility to use Microsoft Management Console (MMC) and scripting, using Windows Management Instrumentation (WMI) for detailed control and management. MMC is a framework for hosting administrative tools called snap-ins. A console might contain tools, folders or other containers, World Wide Web pages, and other administrative items. These items are... --- ### Problem with Exchange 2003 SP2 OWA and Windows XP SP3 When Using the Jerusalem Time Zone - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/problem-with-exchange-2003-sp2-owa-windows-xp-sp3-when-using-jerusalem-time-zone/ - Categories: Exchange Server - Article Type: Overview During some of the consulting sessions that I hold with my various clients I often stumble upon things that I know (these make me happy), things that I did not know (these make me go back to my books/online resources), and things that I didn't know even existed. But sometimes I also find things that simply make me mad. So was the case with the recent bug I discovered in Windows Server 2008 - "Windows Backup Bug Prevents Israeli Administrators from Backing Up Windows Server 2008" article, and so is the following bug. It seems that if you're using Windows XP SP3 (which was released to the public earlier this year), and you have IE7 installed on the computer (which you should), and you're using the DST+2 Jerusalem time zone, AND you're using Exchange 2003 SP2 Outlook Web Access (OWA) to work with your mailbox – you will not be able to reply or forward email messages! Here are the repro details: I've used a brand new installation of Windows XP SP3 (downloaded from MSDN). My tests were performed against 2 different Exchange 2003 SP2 servers in 2 different organizations. As you know, Windows XP SP3 comes without IE7. So, I tried without installing IE7. OWA works great in IE6. I installed the latest SMIME addon from within the OWA > Options window. OWA works great. Next, I tried after installing IE7 + all available hotfixes from Windows Update. OWA works fine, however I am prompted to accept ActiveX. As... --- ### Raising Windows Server 2008 Active Directory Domain and Forest Functional Levels - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/raising-windows-server-2008-active-directory-domain-and-forest-functional-levels/ - Categories: Windows Server 2008 - Article Type: How To   When the first Windows Server 2008–based Domain Controller is deployed in a domain or forest, the domain or forest operates by default at the lowest functional level that is possible in that environment, meaning Windows 2000 Native Mode. This allows you to take advantage of the default Active Directory features while running versions of Windows earlier than Windows Server 2008. When you raise the functional level of a domain or forest, a set of advanced features becomes available. Make sure you read my "Understanding Windows Server 2008 Active Directory Domain and Forest Functional Levels" article for more info about domain and forest function levels. Note: In the Windows Server 2008 version of DCPROMO, when you install a new domain in a new forest, you are prompted for the function level of your choice. Therefore, it may very well be that a brand new installation of Active Directory will not hold the "default" domain or forest function levels.   Raising Domain Function Levels To activate new domain features that available in Windows Server 2008, all domain controllers in the domain must be running Windows Server 2008. After this requirement is met, the administrator can raise the domain functional level to Windows Server 2008. Important Raising the domain functional levels to Windows Server 2008 is a nonreversible task and prohibits the addition of Windows 2000–based or Windows Server 2003–based Domain Controllers to the environment. Any existing Windows 2000–based or Windows Server 2003–based Domain Controllers in the environment will... --- ### REG Command in Windows XP - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/reg_command_in_windows_xp/ - Categories: Windows Client OS - Article Type: Overview What can the REG. EXE command do in Windows XP? REG. EXE does almost everything Regedt32 can do, but it allows you to do it from a command line. This can be useful when you want to quickly make a change without opening Regedt32, and it also allows you to embed registry operations in logon scripts and batch files.   Resource Kit to add this tool. You can download REG. EXE from here: Download Free Windows 2000 Resource Kit Tools You can use REG. EXE by giving it a command from a short list of options (query, add, update, delete, copy, save, backup, restore, load, and unload), followed by one or more optional parameters that the command you specify will interpret. Querying keys REG query allows you to query a single key for a single value, or a range of keys for all their values. This provides you with a quick way to check whether a key has the value you think it does, or in fact whether it has any values associated with it at all: REG QUERY KeyName KeyName FullKey Machine - Name of remote machine, omitting defaults to the current machine (Note: the REG. EXE help syntax is wrong. You should use \\ and NOT \ as written! ) Only HKLM and HKU are available on remote machines FullKey - in the form of ROOTKEY\SubKey name ROOTKEY SubKey - The full name of a registry... --- ### Remove the M Drive Mapping in Exchange 2000 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/remove_the_m_drive_mapping_in_e2k/ - Categories: Exchange Server - Article Type: How To How can I remove the IFS Mapping for Drive M in Exchange 2000 Server? MS KB 305145 has more info: This step-by-step article describes how to remove the Exchange 2000 Installable File System (IFS) mapping from drive M. The IFS provides access to the Exchange 2000 information store through Win32 file system APIs. The Exchange 2000 IFS supports the ''. 'backofficestorage' namespace. For compatibility and convenience, Exchange 2000 also supports a normal drive namespace, by default M:'. The IFS was introduced in Exchange 2000 as a way to access the Exchange 2000 information store by using the standard file system interface. However, in some situations, you may experience issues when you use the IFS. Because of these issues, Microsoft recommends that you remove the drive M mapping to the IFS, unless you are using the IFS for specific reasons. The ''. 'backofficestorage' namespace remains available even when you remove drive M or other drive letter mappings. Some reasons to keep the IFS mapping in place are: If you use Microsoft FrontPage Extensions for Web Storage System Forms. For development using the drive M mapping. If you use Microsoft Internet Explorer to search drive M as a file system. If any of the preceding items describe your Exchange 2000 environment, Microsoft recommends that you keep the mapping in place on servers the where these conditions exist. To remove the drive M mapping To remove the drive M mapping, use the script that is provided here: - 2kb) After you download and extract... --- ### Reset Mailbox Language - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/reset_mailbox_language/ - Categories: Exchange Server - Article Type: How To How can I reset the language for the folder names inside my mailbox? In Exchange 2000/2003 and Outlook 2000/XP/2003, when one of the following conditions takes place, the default language names of the folders inside the user's mailbox might change: You move a mailbox from one Exchange server to another Exchange server. You create a new mailbox. In both cases, the client's regional settings and locale will set the folder's language, but only if the proper language was also configured on the Exchange 2000/2003server itself. Some clients (for example, Outlook 2000 or older) do not allow the names of certain standard folders (for example, the Inbox) to be changed, but this is a client restriction and not a limitation of Exchange. In these cases, you could use a different client (such as the older Exchange client) to modify the folder names. Outlook 2002 clients can run a command line switch to rename the default folders to the language of the client. To do this, click Start, click Run, and then type ​Outlook. exe /resetfoldernames Outlook will start normally and the default folder names will be in the language of the client. You can also plant a registry tweak to all computers on your network by using a simple . REG file and running it with the REGEDIT /S switch: ​Windows Registry Editor Version 5. 00 "ResetFolderNames"=dword:00000001 Copy the text and paste it into a file. Save the file as (for example) RESETFOLDER. REG. For Outlook 2003 change... --- ### Run Windows Explorer as Another User - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/run_windows_explorer_as_another_user/ - Categories: Windows Client OS - Article Type: How To How can I run Windows Explorer as another user (one with administrative privileges)? Sometimes you'll want to do file and folder modifications, or even partition formatting, but you won't want to do it while logged on as an administrator. To do so follow the next steps: When logged in as a normal, non-privileged user, navigate to your system folder, usually C:WINNT. Shift-right-click on explorer. exe. Select "Run As" and provide the credentials for the local admin account. A dialog box will pop-up asking you for a valid username and password. Enter one of a user that has the required administrative privileges to run and manage that program. If you give a wrong username or password an error will pop-up: If you gave a valid username and password then Explorer will open giving you the full permissions to manage it and any programs you run from within that window will run with admin privileges. That's it. BTW, it's time you got to know the RUNAS command that's now native in Windows 2000, XP and Windows Server 2003. Open a Command Prompt and run the following command: runas /user:computernameAdministrator command where computername is the name of your computer, and username is the name of the user you're trying to run the command as (e. g. Administrator). The command is the command you're trying to run (e. g. a batch file, an . exe file or even a control panel applet). For example: C:>runas /user:pro1Administrator "explorer. exe" Enter the password for... --- ### Secure IPSec Policy Agent - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/secure_ipsec_policy_agent/ - Categories: Security - Article Type: Overview How can I prevent other users from disabling the IPSEC Policy Agent service? In previous articles I've showed you how to protect your computer with the IPSEC mechanism (see Block Ping Traffic with IPSec, Block Web Browsing but Allow Intranet Traffic with IPSec and Block Web Browsing with IPSec). These articles describe how an administrator can potentially block specific computers from accessing specific web sites or even from browsing the entire Internet. So where's the catch? The problem lies in the fact that the IPSec policy is enabled by a service called IPSec Policy Agent. This service is loaded as Automatic (by default) and is supposed to be started in order for the IPSec Policy to run properly. A user with administrative privileges can view the service status by running Services from the Administrative tools and easily stop the service and even disable it, thus preventing the IPSec policy from running. This is something we want to stop. To do so we need to configure a Group Policy Object (GPO) in the Active Directory. You can also configure the setting locally, but for that you'll need to run GPEDIT. MSC. Open Active Directory Users & Computers. Right-click the domain (or an OU if you want to only configure a specific set of computers). Choose Properties. In the Properties window click the Group Policy tab. Click New to configure a new GPO (if you don't have one set for that OU already). Give it a descriptive name, such as Secure... --- ### Setting Mailbox Limits over 2GB - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/setting_mailbox_limits_over_2gb/ - Categories: Exchange Server - Article Type: How To Setting mailbox limits over 2GB in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of users in the Exchange Organization (read Setting Mailbox Limits, Working with Store Policies and Overwriting Mailbox Store Policy Limits for more info). Setting limits on the mailboxes help control the database size and plan for efficient backup, restore and maintenance tasks. However, in most scenarios, there will always be users that think that they deserve more storage space than they were given in the first place. Some of these are VIPs, others just need it for their work, and the rest are simply trying to make their life easier. So, whatever may be the reason, you might find yourself in need to configure higher mailbox limits for some users. Well, up to this point all I did was to explain what you already know. However, there is one tricky bit: When trying to configure mailbox limits higher than 2097151 KB the Exchange System Manager (ESM) or Active Directory Users and Computers (ADUC) snap-ins will not allow you to enter these higher limits. You will receive an error saying: "The value for 'Issue warning at (KB)' is not valid. Specify a value from 0 through 2097151".   The mailbox limits are actually Active Directory attributes. If you set a sample user's mailbox limits and look at the user object with a tool such as LDP or Adsiedit. msc you will notice that they are: Issue Warning =... --- ### Speed Up Network File Copying in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/speed_up_network_file_copying_in_windows_xp/ - Categories: Networking - Article Type: How To If you use the TCP/IP protocol and you have a 100mbps network adapter, you may notice slow network performance while you copy files. You may also experience this slow performance while you use Windows Explorer in Windows XP. Note that although the slow performance is known to occur on several 100mbps network adapters, this issue is not specific to Windows. This issue is due to a high rate of early collisions on the network. The interframe gap (the amount of time that a workstation waits before attempting to transmit on the wire) is less than the IEEE 802. 3 specification of 9. 6 microseconds. A "collision" occurs when two stations transmit simultaneously on the wire. An "early collision" is any collision that occurs before 512 bits of the frame are on the wire. Early collisions can occur regularly in a normally operating Ethernet network. There is no hardware malfunction or misbehaving station. The IEEE 802. 3 specification states that a station must wait 9. 6 microseconds (the interframe gap) before the station can attempt to transmit on the wire. Several adapter manufacturers design their adapters with a smaller interframe gap to achieve higher data transfer rates. This smaller interframe gap can lead to a high rate of collisions. The potential for collisions is also influenced by the behavior of the upper layer protocol. The TCP/IP specification is sending an ACK (acknowledgement) for every other data frame that is received. That is, after a TCP host receives two data frames, the TCP... --- ### Test SMTP Service in IIS and Exchange - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/test_smtp_service/ - Categories: Exchange Server - Article Type: How To How can I test to see if my SMTP service is ready to receive incoming mail? There are a couple of ways to verify if the SMTP service is working properly: Testing with an e-mail client First, you can choose to use a standard Internet e-mail client program, such as Microsoft Outlook Express, for a quick verification. Locate the place where you can specify the outgoing e-mail (SMTP) server and change it to the domain name of the new SMTP server. Send a test message to your regular e-mail address and verify its delivery. Note: There are many small e-mail clients made for the purpose of sending e-mail to mail servers without needing to configure them with e-mail accounts (like you need to do with Outlook Express for example). You can use any of these small (and mostly freeware) programs for fast troubleshooting. You can also use a small tool that does not require installation: Ghost Mail 5. 1 Testing with the Pickup directory You can also compose a simple e-mail text file based on the SMTP specifications (RFC 822). Here is the content of a sample text file typed in Notepad: From: myname@mydomain. com To: someone@somedomain. com Subject: testing This is the test message body. Simply copy or move the text file into the Pickup directory where SMTP was installed. (The default path should be "'Inetpub'mailroot'Pickup" but if you have Exchange installed then the path will be "'Program FilesExchsrvrMailrootVsi 1Pickup". ) The SMTP service periodically checks into the Pickup directory... --- ### Unattended Installation of Active Directory - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/unattended_installation_of_active_directory/ - Categories: Active Directory (AD) - Article Type: Overview How do I automatically upgrade a server to a domain controller during installation? You can automatically run DCPROMO during an unattended installation. Enter the command ​dcpromo /answer:%path_to_answer_file% You’ll see a dialog box that says DCPROMO is running in unattended mode. Then, the machine will reboot. You can also add DCPROMO to the unattended file that's used to install your server. The Microsoft Windows 2000 Resource Kit details the DCInstall section’s parameters in the file Unattend. doc: Value Explanation AdministratorPassword The new password for the domain Administrator account AutoConfigDNS Specifies whether the wizard should configure DNS ChildName Name of the child part of the domain CreateOrJoin Specifies whether the domain will join an existing forest or create a new one DatabasePath Location for the Active Directory database DNSOnNetwork Used when a new forest of domains is installed and no DNS client is configured on the computer DomainNetBiosName NetBIOS name for the domain IsLastDCInDomain Only valid when demoting an existing domain controller to a member server LogPath Path for the Directory Service (DS) logs NewDomainDNSName Name of the new tree or when a new forest is created ParentDomainDNSName Specifies the name of the parent domain Password Password for the username used to promote the server RebootOnSuccess Specifies whether an automatic reboot should be performed ReplicaDomainDNSName Name of the domain to be replicated from ReplicaOrMember Specifies whether a Windows NT 4. 0 or 3. 51 BDC being upgraded should become a replica domain controller or be demoted to a regular member server ReplicaOrNewDomain... --- ### Update Windows Messenger - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/update_windows_messenger/ - Categories: Windows Client OS - Article Type: How To What updates or upgrades do you use for Windows Messenger? So you've decided not to uninstall the Windows Messenger client you've got bundled with XP (as explained in the Windows Messenger - Uninstall Windows Messenger page). If you did, make sure you've got all the required patches and updates. Microsoft now has a couple of Instant Messaging clients, and you should know which one you'd like to use. Make a note that the original Windows Messenger client that came with XP is very outdated, and if you do choose to use it, make sure you at least upgrade it. Windows Messenger Use the latest version! First, make sure you're using the latest version of Windows Messenger. The version that comes with Windows XP is 4. 0, but nowadays the current version is labeled Windows Live Messenger. You can download it from here: Windows Live Messenger for Windows 7; Windows Server 2008; Windows Vista; Windows Vista Service Pack 1;Windows Vista Service Pack 2;Windows XP Service Pack 2;Windows XP Service Pack 3 (1. 1mb) Messenger Plus! Live Add-in Next, install the Messenger Plus! update. Messenger Plus! is an add-on for MSN Messenger and Windows Messenger. Messenger Plus! adds different features to Messenger to make it more enjoyable for a regular usage. It seems that the Messenger Plus! program has an embedded "sponsor program" that will wreck havoc inside your computer. Luckily for us (because the tool in itself is very useful) when installing the tool you CAN choose not to install... --- ### Download Microsoft Virtual PC 2007 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_download_virtual_pc_2007/ - Categories: Virtualization - Article Type: Overview Download Microsoft Virtual PC 2007 Yes, now you can, for free! Microsoft has released the new Microsoft Virtual PC 2007 version of their VM software. You can use it to run multiple operating systems (also called "guests") at the same time on the same physical computer (also called "the host machine"). You can easily switch between virtual machines with the click of a button. Use virtual machines to run legacy applications, provide support, train users, and enhance quality assurance. Virtual PC lets you create separate virtual machines on your Windows desktop, each of which virtualizes the hardware of a complete physical computer. Use virtual machines to run operating systems such as MS-DOS, Windows 9X/NT/2000/XP/2003 and Vista, Linux, OS/2 and others. Virtual PC is perfect for any scenario in which you need to support multiple operating systems, whether you use it for tech support, legacy application support, training, or just for consolidating physical computers. System Requirements Supported Operating Systems (guest machines): Windows Server 2003, Standard Edition (32-bit x86); Windows Server 2003, Standard x64 Edition; Windows Vista Business; Windows Vista Business 64-bit edition; Windows Vista Enterprise; Windows Vista Enterprise 64-bit edition; Windows Vista Ultimate; Windows Vista Ultimate 64-bit edition; Windows XP Professional Edition ; Windows XP Professional x64 Edition ; Windows XP Tablet PC Edition. An x64-based or an x86-based computer with a 400 MHz or faster (1 GHz recommended) processor with L2 cache. Processor: AMD Athlon/Duron, Intel Celeron, Intel Pentium II, Intel Pentium III, Intel Pentium 4, Intel Core... --- ### What's APIPA? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/whats_apipa/ - Categories: Networking - Article Type: Overview A Windows-based computer that is configured to use DHCP can automatically assign itself an Internet Protocol (IP) address if a DHCP server is not available. For example, this could occur on a network without a DHCP server, or on a network if a DHCP server is temporarily down for maintenance. With this feature, a Windows computer can assign itself an Internet Protocol (IP) address in the event that a DHCP server is not available or does not exist on the network. This feature makes configuring and supporting a small Local Area Network (LAN) running TCP/IP less difficult. Note: You may want to read Disable APIPA in Windows 98/ME/2000/XP/2003 The Internet Assigned Numbers Authority (IANA) has reserved 169. 254. 0. 0-169. 254. 255. 255 for Automatic Private IP Addressing. As a result, APIPA provides an address that is guaranteed not to conflict with routable addresses. After the network adapter has been assigned an IP address, the computer can use TCP/IP to communicate with any other computer that is connected to the same LAN and that is also configured for APIPA or has the IP address manually set to the 169. 254. x. y (where x. y is the client’s unique identifier) address range with a subnet mask of 255. 255. 0. 0. Note that the computer cannot communicate with computers on other subnets, or with computers that do not use automatic private IP addressing. Automatic private IP addressing is enabled by default. Is my computer using APIPA now? Windows 98/ME You can also determine whether your computer is using APIPA by using... --- ### What's the Password Reset Disk in Windows XP? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/whats_the_password_reset_disk_in_windows_xp/ - Categories: Security - Article Type: Overview What is the Windows XP Password Reset Disk and how can I use it? To protect user accounts in the event that the user forgets the password, every local user should make a password reset disk and keep it in a safe place. Then, if the user forgets his or her password, the password can be reset using the password reset disk and the user is able to access the local user account again. The Forgotten Password Wizard lets you create a password reset disk that you can use to recover your user account and personalized computer settings if you forget your password. How to create the password reset disk The steps to perform this task differ depending on whether your computer is a member of a network domain or is part of a workgroup (or is a stand-alone computer). If you're using Windows XP in a workgroup (and not in a domain), you have the option to create a password reset disk. To create the password reset disk go to the Start menu, Control Panel, User Accounts. Click your account name. Under Related Tasks located on the left side of the window, click Prevent a forgotten password. In the Forgotten Password Wizard, follow the instructions as they appear on the screen. When the wizard starts, click Next. Select the drive that contains the media you want to create the information on (you can use a diskette or a Zip disk), and click Next. Type your current password, and click... --- ### Windows 2000 MCSE Certification Requirements - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2000_mcse_certification_requirements/ - Categories: Windows 2000 - Article Type: Overview What are the Windows 2000 MCSE certification requirements? The Windows 2000 track of the MCSE credential is designed for information technology (IT) professionals working in the typically complex computing environment of medium to large organizations. An MCSE candidate should have at least one year of experience implementing and administering a network operating system in environments with the following characteristics: 200 to 26,000 supported users Five to 150 physical locations Typical network services and applications including file and print, database, messaging, proxy server or firewall, dial-in server, desktop management, and Web hosting Connectivity needs including connecting individual offices and users at remote locations to the corporate network and connecting corporate networks to the Internet In addition, an MCSE candidate should have at least one year of experience in the following areas: Implementing and administering a desktop operating system Designing a network infrastructure On December 2nd 2002, Microsoft has updated their Microsoft Certification Requirements page. Note: Microsoft has developed independent certification requirements for Microsoft Windows Server 2003. See Windows 2003 MCSE Certification Requirements for exam details. Microsoft Certified Systems Engineer (MCSE) candidates on the Microsoft Windows 2000 track are required to pass seven exams or the equivalent that include the following: Core Exams (5 Exams Required) Four operating system exams: Candidates must pass one exam from each set of operating system exams—client operating system and networking system. Candidates can complete the core operating system exams requirement by passing either four Windows 2000 or four Windows XP Professional/. NET Enterprise Server... --- ### What is Windows Auditing? - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/windows_auditing/ - Categories: Security - Article Type: Overview Security is an ever increasing concern in almost every area of society today and computers are no exception. A detailed computer security plan should not only include policies and procedures to ensure that proper access rights are configured for all users, it must also include methods for verifying that these rights are effectively deployed throughout the network. Being able to see what your network users are doing is not a bad thing either. Windows auditing is one such method for obtaining information about how effective your security practices are. In this article I will give a quick overview of Windows auditing and what it can do for you. What Is It? Windows auditing is a mechanism for tracking events. Knowing when and where these events occurred and who triggered them can help when doing Windows network forensics. It can also be very helpful with detecting certain types of problems like improper rights assignments in the file system. Dozens of events can be audited in Windows. The events fall into several categories: Audit account logon events - audit each instance of a user logging on to or logging off from another computer in which this computer is used to validate the account. This event category is applicable to domain controllers only since DC’s are used to validate accounts in domains. Audit account management - audit each event of account management on a computer. Examples of account maintenance include password changes, user account and group modifications. Audit directory service... --- ### How to Configure a Cisco Router as a Terminal Server > David Davis shows us how to quickly access the console on Cisco routers and switches and how to configure them as terminal servers. - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/how-to-configure-cisco-router-as-terminal-server/ - Categories: Cisco - Article Type: How To David Davis shows us how to quickly access the console on Cisco routers and switches and how to configure them as terminal servers. Whether you have a rack of 3 Cisco routers and switches or 30, it is always nice to be able to easily and quickly get to the console of each device. This is especially true if you do much reconfiguration. By using a Cisco router with async ports as a terminal server, you can very quickly go to a single device and configure all your Cisco router and switches (in that rack) from a single device. Let's find out how to do it... Console ports are not Ethernet ports All too often, new Cisco admins confuse Cisco's console port to be an Ethernet port. However, the console port on Cisco routers and switches is a SERIAL port (not Ethernet). That means that it is designed to connect to the COM port (serial port) on your PC. Although the cable that connects to it has an RJ45 on the end, just like an Ethernet cable, an Ethernet cable will not work to connect these two together. What you need is a serial "rolled cable" if you are going to directly connect the router to the PC. What's a Terminal Server? A "terminal server" is also called an access server. This is a device that commonly provides access FROM dumb terminals TO the network. However, you can turn this around and also use it to allow a single device to allow access TO the device, FROM the network. The most well known Cisco access servers are the 2509 and... --- ### Best Practices for Securing VMware ESX Server - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/secure-vmware-esx-server/ - Categories: VMware - Article Type: How To As VMware ESX is loaded directly on hardware and is its own virtualization operating system, there are a number of factors to consider when securing it. While, due to its design architecture, ESX is inherently secure, there are still a number of security factors to consider. In this article we will cover the vulnerability points of ESX and how you can ensure that your ESX Servers are as secure as they can be. Where is VMware ESX Server Vulnerable? On a traditional server, you are only concerned with locking down the server OS. That OS could be Linux or Windows. Windows has, of course, been the favorite for security attacks so much of our time is spent securing it. So what if you put VMware ESX into this picture? With VMware ESX being loaded on top of the server hardware, there are a few points of immediate concern: the VMKernel & its virtualization layer the VMware ESX Service console (based on Red Hat Linux Enterprise) These two pieces are two very distinct parts of VMware ESX. VMware has periodically released patches for both of these different components although you probably just thought of them as "ESX patches". Concerning #1, the VMKernel and its virtualization layer is extremely secure. The Guest machines have hardware isolation in place and it seems impossible that a guest VM could somehow compromise the security of the host virtualization layer. As for #2, with the services console being based on Linux, it will... --- ### What You Need to VMware ESX Server 3.0 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_esx_install_requirements/ - Categories: VMware - Article Type: Overview Perhaps you are planning to install VMware ESX in a product environment or, like many of us, we just want to find some way to test it out and learn more about it. Either way, even if you are just testing it, you need to know the installation requirements. Because ESX is such a specialized product, you cannot just install ESX on any computer, the hardware must be compatible. Let's find out more... Published Installation Requirements for VMware ESX Server 3. 0 Yes, of course VMware has their own published installation requirements and very long lists of supported hardware. Those requirements and lists can be found at the following links: ESX Server 3. x Systems Compatibility Guide ESX Server 3. x I/O Compatibility Guide ESX Server 3. x Storage/SAN Compatibility Guide ESX Server 3. x Backup Software Compatibility Guide Unlike most other Enterprise server products, VMware even goes so far as to specify the brand and model of server that you can install VMware ESX on. For example, the lowest model of Dell server that VMware supports is a Dell 1850. That server would also have to have either local SCSI drives (SAS - SCSI attached storage) or a SAN adaptor. Besides specifying the server brand & model, VMware has brand & model requirements for all hardware that will go into that server - Disk, Disk adaptor, and network adaptor. Just like when specing out any production server, for any production environment you will need to take into account the "4 food... --- ### Beyond VMware: Virtualization Options Compared - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/virtual_virtualization_options_compared/ - Categories: Virtualization - Article Type: Overview When most people think of Virtualization, they might think of Microsoft but I'd be willing to bet that they think of VMware. In fact, there may be many out there who don't know that there are other virtualization products besides VMware's solutions. While VMware has excellent Virtualization products, I think it is important to know that there are other choices available. In this article, you will learn what those other virtualization options are, where you can find them, and how they might help you. Virtualization Companies I started off my gathering my list of virtualization options then I did research on the Internet to find others. What I came up with was this list of Virtualization companies: VMware Microsoft VirtualIRON Xen Keep in mind that we are talking about SERVER virtualization here and, specifically, doing it on x86 processors. I say this because, if you just type in virtualization on Google. com, you will find that there are a multitude of types of virtualization and from many different companies. For example, you can perform network virtualization, storage virtualization, or server virtualization with your IBM PowerPC system using IBM software. I left all of these types of virtualization out of this mix. Next, I took those companies, researched their virtualization options, and broke them down into different grades of products in terms of their intended use. For example, some products were designed to perform . Some company's only make one product and it could be also used on your... --- ### How do you replicate VMware ESX Guest Machines from one ESX Server to another? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/vmware-esx-server-vizioncore-replication-site-to-site/ - Categories: VMware - Article Type: How To Recently, I downloaded an evaluation version of the Vizioncore vEssentials bundle for VMware ESX Server. Included in that bundle are vRanger Pro, vCharter, and vReplicator. In this article, I offer my review of vReplicator. What is vReplicator? What can it do for you? Does it really work? Let's find out... What is the vEssentials Suite? While researching third party products for my new Train Signal VMware ESX Server video series, I spent some time with Vizioncore's product line. I was impressed at the breadth of products that they offer. They offer over 7 different virtualization products for VMware ESX Server. That is a larger virtualization product line than I can recall being offered by any other company. vEssentials is one of their most popular bundles and it includes vRanger Pro. vRanger Pro is Vizioncore's most popular product. Also included in the bundle is vCharter and vReplicator. Here is a breakdown of the vEssentials product bundle: vRanger Pro - image-level HOT backups of VMware ESX Server guest operating systems. That backup can be done for the entire VM or just a differential of the VM. vRanger Pro provides a much needed backup GUI and it integrates with VCB and Virtual Center. vCharter - top-down performance monitoring of VMware ESX Servers with drill-down capabilities. vCharter provides alerting, reporting, capacity planning, and chargeback. vReplicator- replicates entire VMware ESX Server Guest virtual machines from one ESX Server to another. Only the changes to the Guest virtual disk are sent and those... --- ### Hyper-V Quirks That Take Some Getting Used To - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/hyper-v-quirks-that-take-some-getting-used-to/ - Categories: Hyper-V - Article Type: Overview Lately, it seems as though everyone that I talk to is interested in virtualizing at least some of the servers in their organization. Although Hyper-V does a great job as a virtual server hosting solution, it does have some quirks that you might not expect. In this article, I want to talk about some of these quirks and how to work around them. The CD or DVD Drive is Inaccessible One of the first issues that network administrators are likely to run into is that the CD / DVD drive is inaccessible from within a virtual machine. The reason why this happens is that a CD or DVD drive can only be used by one virtual machine at a time. In order to use a CD or a DVD drive from within a virtual machine, an administrator must capture the drive. An administrator can capture or release a CD or DVD drive from the virtual machine’s Media menu. Simply select the DVD Drive command from the media menu, and then choose either the Capture command or the Uncapture command. The Media | DVD menu also gives you the option of capturing an ISO file (A CD or a DVD image file) and treating that file as though it were a CD or a DVD drive. A New Virtual Machine Won’t Start When I was first learning my way around Hyper-V, one of the issues that I would commonly run into was that I would create a new... --- ### Planning a Sites and Services Architecture for Exchange 2007 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/planning-sites-services-architecture-windows-ad-exchange-2007-server/ - Categories: Exchange Server - Article Type: Overview When Microsoft created Exchange Server 2007, they introduced a number of architectural changes.  Among these changes are the fact that Exchange Server 2007 no longer has an independent routing topology.  Instead of using routing groups, Exchange Server 2007 uses the routing topology defined by that Active Directory.  In situations in which Exchange Server 2007 has to coexist with Exchange Server 2003 or with Exchange 2000, Exchange 2007 will emulate a routing group and use a routing group connector to interact with the legacy Exchange servers.  In pure Exchange 2007 environments though, routing groups are not used at all, so it makes sense to take a look at your Active Directory topology to make sure that messages can be routed efficiently. In smaller, self-contained organizations, the routing topology isn't really a concern.   Organizations that span WAN links must design their Active Directory infrastructure in a way that uses low bandwidth WAN connections efficiently though.  The most common way of doing this is to implement Active Directory sites. Generally speaking, the Active Directory site structure should mimic your network topology. Each network segment should generally correspond to its own site, although this isn’t an absolute requirement, especially if the network segments are bridged by high speed links. Requirements for Implementing AD The primary requirement for implementing Active Directory sites is that each site must contain at least one domain controller. Computers on the network use the site information to locate a domain controller that’s close to them, rather than traversing a WAN link every... --- ### Security Configuration Wizard for Exchange Server 2007 – Part 3 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/security-configuration-wizard-scw-exchange-2007-part-3/ - Categories: Exchange Server - Article Type: Overview In Part 1 of this series, we registered the XML files so that the Security Configuration Wizard could create an apply policies for Exchange 2007 servers and we installed the wizard in Windows. In Part 2, we created the policy and applied it to the local server. In this final part, we’ll look at applying the policy to other servers, and rolling back a policy. Rolling back There are several reasons why we might need to remove, or “rollback”, an applied security configuration policy. The first is that when the policy was applied, email “broke”. Rolling back the policy will change the server back to how it was configured before the policy was applied. As with applying a policy, a rollback will require a reboot of the server. The second reason for rolling back is that we’re going to make changes to the server, and rolling back, then creating a new policy might be easier than trying to troubleshoot an already applied policy later. A perfect example of this is the installation of a new application on the server. So let’s look at rolling back a policy. Start the Security Configuration Wizard from the Start Menu. On the Configuration Action screen, select Rollback the last applied security policy as seen in Figure 1 below, and click Next.   Figure 1 Choose the server that you’d like to rollback. The wizard defaults to the local server, as seen in Figure 2 below. When you’ve selected the correct server, click Next.  ... --- ### Change the Default Boot Partition in Windows Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/change-the-default-boot-partition-windows-vista/ - Categories: Windows Vista - Article Type: How To With the release of Windows Vista, many users have been dual booting between Windows XP and Windows Vista. Unfortunately, the process of changing the boot operating system is not entirely intuitive. Windows Vista has a little known, but very useful tool, that allows the user to select which operating system to load when dual (or triple) booting.   (See this article for help in partitioning a hard drive) The first step is to launch Computer. Click Start and then type Computer and hit enter. Vista will automatically launch the Vista version of "My Computer. " At the top of computer, select System Properties. This will bring up the basic information about your computer. On the left panel, select Advanced System Settings. If you are prompted for an administrator password or confirmation, type the password or provide confirmation. In the System Properties dialog, click the Advanced tab in the center. In the Startup and Recovery section click Settings... In the top of the Startup and Recovery dialog, in the "System startup" you can change the Default operating system to whatever operating system you want. In this dialog you can also change the amount of time you would like to wait before launching the default operating system. Windows Vista defaults to 30 seconds which is probably more than enough time. Feel free to reduce this to a more manageable time like 8 seconds and click OK. Got a question? Post it on our Windows Vista Forums! --- ### Determining FSMO Role Holders - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/determining_fsmo_role_holders/ - Categories: Active Directory (AD) - Article Type: How To How can I determine who are the current FSMO Roles holders in my domain/forest? Windows 2000/2003 Active Directory domains utilize a Single Operation Master method called FSMO (Flexible Single Master Operation), as described in Understanding FSMO Roles in Active Directory. The five FSMO roles are: Schema master - Forest-wide and one per forest. Domain naming master - Forest-wide and one per forest. RID master - Domain-specific and one for each domain. PDC - PDC Emulator is domain-specific and one for each domain. Infrastructure master - Domain-specific and one for each domain. In most cases an administrator can keep the FSMO role holders (all 5 of them) in the same spot (or actually, on the same DC) as has been configured by the Active Directory installation process. However, there are scenarios where an administrator would want to move one or more of the FSMO roles from the default holder DC to a different DC. The transferring method is described in the Transferring FSMO Roles article, while seizing the roles from a non-operational DC to a different DC is described in the Seizing FSMO Roles article. In order to better understand your AD infrastructure and to know the added value that each DC might possess, an AD administrator must have the exact knowledge of which one of the existing DCs is holding a FSMO role, and what role it holds. With that knowledge in hand, the administrator can make better arrangements in case of a scheduled shut-down of any... --- ### Disable EFS in Windows 2000 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_efs_in_windows_2000/ - Categories: Security - Article Type: How To How can I disable EFS on Computers Running Windows 2000? To disable EFS on computers running Windows 2000, you must remove the default data recovery agent from the computer. This restriction is removed in Windows XP and Windows Server 2003 to help prevent security attacks on computers that are not members of a domain. The following procedure will show you how to use Group Policy to disable EFS for all computers running Windows 2000 in a Windows Server 2003 domain. Note: Before you remove the certificate for the default domain recovery agent, you should back up the certificate by exporting it to a file. Open the Default Domain Policy GPO. You can use Active Directory Users and Computers or the GPMC to edit the GPO. In the Group Policy Object Editor, expand Computer Configuration, expand Windows Settings, expand Security Settings, expand Public Key Policies, and then click Encrypting File System. In the details pane, right-click Administrator, point to All Tasks, and then click Export. Complete the Certificate Export Wizard to export the Administrator's EFS recovery certificate. This will export the default EFS recovery certificate for the domain to a file. Store this file on removable media such as a floppy disk, and then store the media in a secure location. In the details pane, right-click Administrator, and then click Delete. This will delete the default EFS recovery certificate for the domain. In the Certificates window, click Yes to permanently delete the certificate. Important: Deleting the EFS recovery agent for the... --- ### Disable the Guest account in Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_the_guest_account_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To Do I need the Guest account in Windows XP? Can I disable it? Yes you can disable the guest account, but you shouldn't. You need it. The Guest account in Windows XP Home Edition and Windows XP Professional (when not joined on a domain) serves several special functions that relate to security and network shares. Because of its importance, you must not disable the Guest account. If you disable the Guest account, your network can have problems that include malfunctioned shares. Note: You might also be interested in Disable the Guest account in Windows 2000. To hide the guest account - On a Windows XP Home computer, or on a Windows XP Professional computer that is not a part of a domain do the following: Click Start, and then click Control Panel. Click User Accounts. Under or pick an account to change, click Guest. On the What do you want to change about the guest account page, click Turn off the guest account. The Windows XP Guest account is used in the Windows XP Home Edition and in Windows XP Professional when it is not a domain member. Windows XP - particularly XP Home - uses the Guest Account in an unexpected way. Everybody who gets onto a networked XP Home computer is automatically authenticated as a "Guest". Doesn't matter who they are, or what kind of privileges they have on their home computer, if they're connected to an XP computer, they're a Guest. If you're using your... --- ### Download Group Policy Settings Reference - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_gpo_reference/ - Categories: Downloads - Article Type: Overview This spreadsheet lists Group Policy settings described in Administrative Template (. adm) files and Security Settings that shipped with Windows Server 2003 Service Pack 1. This includes all Administrative Template policy settings supported on the following operating systems: Microsoft Windows Server 2003, Windows XP Professional with SP2 or earlier service packs, and Microsoft Windows 2000 with Service Pack 4 or earlier service packs. In addition, this spreadsheet includes the following categories of security policy settings: Account Policies (Password Policy, Account Lockout Policy, and Kerberos Policy), Local Policies (Audit Policy, User Rights Assignment, and Security Options), Event Log, Restricted Groups, System Services, Registry, and File System policy settings. Note: This does not include security settings that exist outside of the Security Settings extension (scecli. dll), such as Wireless Network extension, Public Key Policies, or Software Restriction Policies. The spreadsheet includes separate worksheets for each of the . adm files and the security policy settings that shipped in Windows XP SP2 , a consolidated worksheet for easy searching, and an Update History worksheet that lists policy settings that have been added since the Windows Server 2003 operating systems were released. Using column filters, you can easily filter the information in the spreadsheet by operating system, component, or machine/user configuration. You can also search for information by using text or keywords. Download the Group Policy Settings Reference (3. 9 mb) Related articles You may find these related articles of interest to you: Download Free Windows 2000 Resource Kit Tools Download GPMC Download... --- ### Download the full IE package - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_the_full_ie_package/ - Categories: Downloads - Article Type: Overview I want to download Internet Explorer 6 SP1 from Microsoft but I don't want to install it right away. Can I do that? Yes! First, download the IE6 SP1 setup program from HERE (481kb basic setup program. The full IE package might go as high as ~44mb depending upon your selection). This tip will let you customize the d/l parameters. Go to the folder where you've placed the above file. Open a Command Prompt (CMD) in that folder, then run the following command in the CMD window: ​ie6setup. exe /c:"ie6wzd. exe /d /s:""#E" Note: Just copy and paste the above line. Don't try to be a wise guy. Copy the damn line! I've received quite a few feedbacks about the accuracy of this tip, and always they got the syntax wrong. Copy and paste! Oh, and yes, this tip works for IE 6 SP1 too, and so will older IE versions. Just replace the "6" in the previous line with a "5" and so on. You can also choose to download all IE versions in one go. For example, if you choose to download the version for Win9X, the version for NT, the version for W2K, and the version for Win ME - all the files will go to one location - a folder named "Windows Update Setup Files" - and you can then burn this folder to a CD and use it to install IE on any OS version you want. Reader notes: Reader Jason Vanderhill wrote: Great... --- ### Download Windows Server 2003 SP1 Sysprep - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_2003_sp1_sysprep/ - Categories: Windows Server 2003 - Article Type: Overview Where can I download Windows Server 2003 Sysprep? The Windows Server 2003 SP1 System Preparation tool enables administrators to prepare Windows Server 2003 system images as part of an automated deployment. This tool is an updated version of the System Preparation tool that is included with Windows Server 2003. You can use the System Preparation tool to perform the following tasks in a manner that is supported by Microsoft: Prepare Windows for duplication from one computer to another computer. Change security identifiers (SIDs) and other system and configuration settings to make them unique. Configure user-specific information to be customized by the end-user when Windows starts the first time. Create images of operating systems. Automate the Windows mipetri-Setup program. Perform auditing tasks. To obtain the updated version of the Sysprep. exe program, download and install the latest version of Windows Server 2003 SP1 Deployment Tools. These tools are also available in the SupportTools folder on the Windows Server 2003 SP1 product CD. Windows Server 2003 Deploy. cab (1. 76mb) --- ### Enable Remote Assistance in XP/2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/enable_remote_assistance_in_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I enable Remote Assistance in Windows XP or Windows Server 2003? Windows XP and Windows Server 2003 install the Remote Assistance feature by default. To check your configuration: Go to Control Panel > System > Remote. You can also right-click My Computer (if the icon is shown on the desktop). Note: A faster way for opening up the System applet is to press the Windows Logo key on your keyboard and then press Pause/Break at the same time. The Allow Remote Assistance invitations to be sent from this computer box should be checked. Note: There is a difference between the default settings of Windows XP and Windows Server 2003. Make sure you get yours right. Press the Advanced button to Set the maximum amount of time invitations can remain open. The maximum is 30 days. If you want the expert user to be able to control your computer, check the Allow this computer to be controlled remotely box. Press OK. If you made any changes, press the Apply button. Press OK. You can Allow Remote Assistance invitations to be sent from this computer by using the registry: Use Regedit to navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlTerminal Server Double-click the fAllowToGetHelp Value Name, a REG_DWORD data type, and set the data value to 1. A data value of 0 will deny connections. Note: You do NOT have to restart for this change to become effective. Links Overview of Remote Assistance in Windows XP - 300546 HOW TO: Configure a... --- ### Establishing a Proper Global Catalog Placement Strategy - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/establishing-proper-global-catalog-placement-strategy/ - Categories: Active Directory (AD) - Article Type: Overview Deciding how many Global Catalog Servers to have on your network, and where to place those servers can be tricky. If there are too few Global Catalog Servers, you could cause severe performance problems or possibly a single point of failure. At the same time though, having too many Global Catalog Servers can also cause performance problems. So what’s an administrator to do? In this article, I will share with you some techniques for determining how many global catalog servers you really need. Why Are Global Catalog Servers So Important? In case you aren’t familiar with Global Catalog Servers, they are simply domain controllers that have been designated to perform the Global Catalog server role. When you create an Active Directory forest, the first domain controller in the forest is automatically assigned the Global Catalog server roll, because every forest requires at least one Global Catalog server. The Global Catalog server performs a variety of tasks, both for Windows and for Exchange. Since my primary focus in this article is Exchange Server, I don’t really want to get into the Global Catalog server’s Windows related function. I will tell you though, that if a Global Catalog server is not available, then nobody will be able to log into the domain except for the Administrator. As you can see, the Global Catalog server performs some critical functions at the Active Directory level, but its role in relation to Exchange Server is just as critical. In order for clients... --- ### EXMERGE and Hebrew Fonts - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/exmerge_and_hebrew_fonts/ - Categories: Exchange Server - Article Type: Overview How do I use EXMERGE with Hebrew fonts? EXMERGE is very useful in many scenarios, one of which is migrating mailboxes from one Exchange server to another. Examples of such operations are featured in the Delete Messages from Mailboxes by using EXMERGE and Brick Level Backup of Mailboxes by using EXMERGE articles. I won't go into details about this tool here but I do want to discuss one problem that Israeli administrators have: Whenever you use EXMERGE to migrate one or more mailboxes or Public Folders that have Hebrew fonts in their names or even in posts and items within them - after the migration process is finished, the migrated mailbox, PF or items all have gibberishes fonts instead of the Hebrew fonts on the original item. The solution is to run EXMERGE in GUI mode once, save your configuration settings and have it create a configuration file called EXMERGE. INI. You do NOT need to finish the EXMERGE process entirely, instead, you must click cancel to stop the GUI phase right after saving your configuration files. Next, you'll need to manually edit the EXMERGE. INI file and re-run EXMERGE, this time in Command Prompt mode, and force it to use the Hebrew charset. This article assumes you know what EXMERGE does and how to use it. It also assumes you have the latest version. See Download Exmerge for Exchange 2000/2003 for more info. Follow these steps: First, run EXMERGE in GUI mode with the required settings. Choose English... --- ### Finding Delegates in Active Directory - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/finding_delegates_in_active_directory/ - Categories: Exchange Server - Article Type: How To Finding delegates in Active Directory When using Exchange 2000/2003 there are very common situations where users define delegates in their mailboxes in order to let others manage their mailboxes. For example - a managers and his or her secretary (send of behalf). The problem occurs when one of the employees that was configured as a delegate (for example user A) has left the company. When user B sends a meeting request for the manager, user B will receive an NDR because user A no longer exists in Active Directory, but is still configured as a delegate for user B. In this scenario we will use 3 users: Tzahi Kolber (Tkolber) as a Manager. Daniel Petri (Dpetri) as a Manager. Krystal James (Kjames) as the Secretary. We are going to use the LDIFDE command (from the Windows 2003 Support Tools - or in the Windows 2003 CDROM). This command queries 2 attributes in the AD that can be found for every user object: publicDelegates - This attribute stores the user that was configured as a delegate (the secretary). publicDelegatesBL - This attribute stores the user his mailbox that was configured with a delegate (the manager). As a side note, you can view these attributes by using ADSIedit. msc (also from the Windows 2003 Support Tools) and navigating to the following path: Domain partition. The relevant domain (for example DC=ms,DC=com). The relevant location of the user that you are looking for (for example CN=Users). Choose the relevant user, right-click >... --- ### Hide Entries in the Boot.ini - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/hide_entries_in_the_boot_ini/ - Categories: Windows Client OS - Article Type: How To How do I hide entries in the Boot. ini file so that they're not visible when I boot my computer? You can hide additional installations of Windows from being displayed in the boot menu, but still gain access to them when you need to. To hide menu items from the Boot. ini file, so they will not be accessible: Remove the read-only attribute from the Boot. ini file. Use an editor to edit the Boot. ini file. Place the following entry above the lines you want hidden: . This will hide all entries below the heading. To restore the entry and make it accessible again, remove the line. Save the file and reapply the read-only attribute. Restart your computer. For example, the 3 bottom entries below will not be displayed or accessible the next time the system is restarted. Simply remove to gain access to this installation. timeout=30 default=multi(0)disk(0)rdisk(0)partition(1)'NT351SVR multi(0)disk(0)rdisk(0)partition(1)'NT351SVR="NT Server 3. 51" multi(0)disk(0)rdisk(0)partition(1)'NT351SVR="NT Server 3. 51 " /basevideo /sos multi(0)disk(0)rdisk(0)partition(1)'WINNT35="NT Wks 3. 51" multi(0)disk(0)rdisk(0)partition(1)'WINNT35="NT Wks 3. 51 " /basevideo /sos] C:'="MS-DOS" Another method for hiding the entries but having access to them at another time is to create a boot disk. To do so, follow these instructions: Format a floppy disk in Windows. Copy ntldr, Ntdetect. com, and the Boot. ini file to the root of the floppy disk. Edit the Boot. ini file and remove the items that you want to hide. Boot the system with this disk. This method works well but requires... --- ### How to Install Active Directory on Windows 2000 (for Lamers) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how_to_install_active_directory_on_w2k_for_lamers/ - Categories: Active Directory (AD) - Article Type: How To I'm a Lamer! How do I install Active Directory on my Windows 2000 Server? You can configure your server as a Domain Controller manually (as covered in How to Install Active Directory on W2K), but if you don't have the time, skill, brains or will to do it manually, it can still be done with just a few mouse clicks. Dynamic Host Configuration Protocol (DHCP), Domain Name Service (DNS), and DCPROMO (the command-line tool that creates DNS and Active Directory) can be by using the Windows 2000 Configure Your Server Wizard. Even though it's all done automatically, you still need the following: A NIC The TCP/IP protocol An NTFS partition with enough free space A network connection (to a hub or to another computer via a crossover cable). An Administrator's username and password The Windows 2000 Server (or Advanced Server) CD media (or at least the i386 folder) This article assumes that all of the above requirements are fulfilled. See my Active Directory Installation Requirements page for more info. Note: This article does NOT assume you have a working brain, or that you can use it correctly. If you think you really want to know how this thing works, please read the How to Install Active Directory on W2K page instead... To configure your server as a Domain Controller Press Ctrl-Alt-Del and log on to the server as administrator. Leave the password blank. When the Windows 2000 Configure Your Server page appears, select This is the only... --- ### IIS 5.0 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/iis_50_patches/ - Categories: Patches and Service Packs - Article Type: Overview   IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to protect your computer from IIS related attacks, and remember that even though you're using Windows 2000 Professional - you're still vulnerable to those attacks (IIS is installed by default on all W2K platforms, but not on XP and Windows Server 2003). Note: Since IIS is such a potential threat to your system, and since my site is usually NOT security oriented, I cannot guarantee your computer's safety even if you do follow my recommendations. I cannot be held responsible for anything that might happen to you, your computer, or the information stored on it.   I might compile a list of IIS security issues later this month. but till then you can read the TechNet Security Webpage and search for the IIS related issued, and also the Microsoft Security page IIS 5. 0 Required Patches IIS 5. 0 is the version installed by default on W2K computers. If you have SP4 for W2K (and you should), these are the patches that you need to apply to your computer: October 2004 MS04-030 : Vulnerability in WebDav XML Message Handler Could Lead to a Denial of Service (824151) May 2003 MS03-018 : Cumulative Patch for Internet Information Service (811114) This patch is a cumulative patch that includes the functionality of all security patches released for IIS 5. 0 since Windows 2000 Service Pack 3: 327696 MS02-062: October 2002 Cumulative Patch for Internet Information Services 321599 MS02-028:... --- ### Increase Internet Connection Speed in Windows XP - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/increase_internet_connection_speed_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To This tip is designed for increased BROADBAND speed in Windows XP, but it should work for 56k modems too. Note: You might also want to read the Increase Broadband Connection Speed in Windows XP/2003 tip for more info. QoS Packet Scheduler is a method of network bandwidth management that can monitor the importance of data packets and depending upon the priority of the packet, give it higher or lower priority or bandwidth levels. It's not very useful unless you're using apps which are QoS-aware or running a server, so you can gain some network overhead back by turning it off. Note: This following tip will not work on XP Home Edition. Make sure you're logged on as actually "Administrator". Do not log on with any account that just has administrator privileges. Start > Run > type gpedit. msc (not available in home version). Expand the Local Computer Policy branch. Expand the Administrative Templates branch. Expand the Network branch. Highlight the "QoS Packet Scheduler" in left window. In right window double click the "limit reservable bandwidth" setting. On setting tab check the ENABLED item. Where it says "Bandwidth limit %" change it to read 0 (ZERO). Close gpedit. msc. Effect is immediate on some systems, some need to re-boot. Links Quality of Service (QoS) Windows XP Quality of Service (QoS) Enhancements and Behavior - 316666 --- ### Install IIS on Windows XP - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/install_iis_on_windows_xp/ - Categories: Networking - Article Type: How To To install IIS 5. 1 on Windows XP Pro follow these steps: On the Start menu, click Control Panel. Double-click Add or Remove Programs. Click Add/Remove Windows Components. Click Internet Information Services (IIS) and then click Details.   In Internet Information Services (IIS), select the check boxes for SMTP Service and World Wide Web Service, and then click OK.   In Windows Component selection, ensure that the Internet Information Services (IIS) check box is selected, and then click OK to install the components that you selected. --- ### How can I install Windows Vista? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_windows_vista/ - Categories: Windows Vista - Article Type: How To How can I install Windows Vista? As a Microsoft Windows Vista support professional, one of your tasks may be to install the operating system. Step #1: Plan your installation When you run the Windows Vista Setup program, you must provide information about how to install and configure the operating system. Thorough planning can make your installation of Windows Vista more efficient by helping you to avoid potential problems during installation. An understanding of the configuration options will also help to ensure that you have properly configured your system. I won't go into that part right now (I might later this month, no promises... ) but here are some of the most important things you should take into consideration when planning for your Windows Vista installation: Check System Requirements Check Hardware and Software Compatibility Determine Disk Partitioning Options Decide on a Workgroup or Domain Installation Complete a Pre-Installation Checklist After you made sure you can go on, start the installation process. Step #2: Beginning the installation process You can install Windows Vista in several methods - all are valid and good, it all depends upon your needs and your limitations. In this manual I will focus on the simplest form of installation - directly from the Windows Vista DVD media. More on other forms of installation can be found in the Windows Vista Information, Tweaking, Tips and Tricks section. So, insert your Windows Vista DVD media into your DVD drive and reboot your computer. A black window will appear... --- ### Installing Windows XP Ntbackup on Windows Vista - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/installing_windows_xp_ntbackup_on_windows_vista/ - Categories: Windows Vista - Tags: Editor's Pick - Article Type: How To You've read my "Using Backup Status and Configuration in Vista" article (if you haven't I urge you to do so). You might have also read my "Restore Ntbackup Backups from Windows XP to Windows Vista" article, but you kept wondering why not have the full Windows XP Ntbackup functionality in your Windows Vista computer. Well, now you can. But hold on just one second. Why would I want to use an old program from an old operating system on my new and shining Vista? Well, the answer to that is probably because the all-new and shining Vista is not so shining after all. For example, let's say you want to make a backup of just one folder on your computer. A folder containing not just images, but also documents and spreadsheets from a recent job you've accomplished. How would you do that in Windows Vista? Well, you cannot, not with the native Backup Status and Configuration tool, because it will simply not allow you to select what folders you want to backup! Another issue you might have is when you'd like to copy EFS protected files, or even files that you need but are not on Vista's Backup Status and Configuration tool's list of backed-up file types. So, these are just a few reason for having the good old Ntbackup program handy. In order to install the Windows XP Ntbackup program on your Windows Vista computer you will need to following files from a Windows XP computer:... --- ### Keyboard Accelerators in Windows Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/keyboard_accelerators_in_windows_vista/ - Categories: Windows Vista - Article Type: Overview Windows Vista’s new Windows Explorer interface has many interesting keyboard shortcuts, also called “Keyboard Accelerators”. They are especially useful for repetitive tasks in Windows Explorer and might come handy when performing various file and folder actions. You can use these in addition to the regular keyboard shortcuts you’ve been used to since older Microsoft operating systems. Here are Vista’s keyboard accelerators, listed in no particular order. You might also want to read the “Keyboard shortcuts in Windows Vista”, “How can I quickly open a Command Prompt on a folder in Windows Vista? ” and “How can I quickly copy a file or a folder's path in Windows Vista? ” articles for some more tricks. Note: I do not know why the Vista design team chose to do so, but many of the following keyboard accelerators are ONLY available when you use the right-hand side details pane in the Windows Explorer view, and NOT in the left-hand side tree view. Note: Some of these tips are also usable in older Microsoft operating systems such as Windows XP and Windows Server 2003. File or folder properties Method 1 – in a new window - Hold the ALT key while double-clicking on a file or folder in the right-hand side pane window to view the Properties window for that object. The new window is identical to what you get when you press ALT+ENTER while the file or folder is selected. Method 2 – as a hovering balloon - Hover your mouse cursor... --- ### Managing Windows 2008 Server Core Local Settings - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/managing-windows-2008-server-core-locally/ - Categories: Windows Server 2008 - Article Type: How To A Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. A server running a Server Core installation supports the following server roles: Active Directory Domain Services (AD DS) Active Directory Lightweight Directory Services (AD LDS) DHCP Server DNS Server File Services Print Services Streaming Media Services Internet Information Services (IIS) Windows Virtualization In Windows Server 2008, Server Core installation does not include the traditional full graphical user interface (GUI). Therefore, once you have configured the server, you can only manage it locally at a command prompt, or remotely using a Terminal Server connection. A third management option is to manage the server remotely using the Microsoft Management Console (MMC) or command-line tools that support remote use. A Server Core installation provides these benefits in three ways: By reducing the software maintenance required (less updates, etc... ) By reducing the management required By reducing the attack surface To accomplish this, the Server Core installation option installs only the subset of the binary files that are required by the supported server roles. It takes about 1 GB of disk space and +/- 100 MB memory footprint (varies per server core role). The following list is a compilation of some of the most useful commands allowing you to either locally or remotely manage a Server Core installation. You can use this as a quick reference guide, but as always, reading the full server help... --- ### Cleaning your Computer from Malware with the Microsoft Malware Removal Starter Kit - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/microsoft-malware-removal-starter-kit/ - Categories: Security - Article Type: How To Every day, viruses, spyware, and other malware are triggered by employees, potential adversaries and/or malicious users. Some are sent to you by e-mail, others attempt to invade your computer after surfing to malicious websites or running macros that contain viruses. As an IT professional focused on security, the first step toward containing the spread of malware is to understand the various technologies and techniques that malware authors can use to attack your computer. However, it is also important to know that the majority of threats come from malware that targets the user rather than the computer. If a user with administrator-level user rights can be tricked into launching an attack, the malicious code has more power to perform its tasks. Such an attack can frequently cause more damage than one that has to rely on a security hole or vulnerability in an application or the operating system. How Does Malware Get In? Malware uses many different methods to try and replicate among computers: E-mail - E-mail is the transport mechanism of choice for many malware attacks. Phishing - Phishing attacks try to trick people into revealing personal details such as credit card numbers or other financial or personal information. Removable media - Including floppy disks, CD-ROM or DVD-ROM discs, USB drives, and memory cards, such as those used in digital cameras and mobile devices. Internet downloads - Malware can be downloaded directly from Internet Web sites such as social networking sites, serial/keygens/hacks sites and p2p file sharing... --- ### How can I mount the Exchange 2000/2003 database when the E00.log is missing and I receive events 9518 and 455? - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/mount_exchange_database_when_e00log_is_missing/ - Categories: Exchange Server - Article Type: How To You may receive the following error message when you try to mount a mailbox or public store: An internal processing error has occurred. Try restarting the Exchange System Manager or the Microsoft Exchange Information Store service, or both. ID no: c1041724 In the Application event log, you may also receive following events. Event Type: Error Event Source: ESE98 Event Category: Logging/Recovery Event ID: 455 Date: 3/18/2001 Time: 5:14:22 PM User: N/A Computer: SERVER1 Description: Information Store (2376) Error -1811 (0xfffff8ed) occurred while opening log file D:exchsrvrMDBDATAE000xxx. log. Event Type: Error Event Source: MSExchangeIS Event Category: General Event ID: 9518 Date: 3/18/2001 Time: 5:14:22 PM User: N/A Computer: SERVER1 Description: Error Current log file missing starting Storage Group /DC=COM/DC=COMPANY/CN=CONFIGURATION/CN=SERVICES/CN=MICROSOFT EXCHANGE/CN=MICROSOFT/CN=ADMINISTRATIVE GROUPS/CN=FIRST ADMINISTRATIVE GROUP/CN=SERVERS/CN=SERVER1/CN=INFORMATIONSTORE/CN=FIRST STORAGE GROUP on the Microsoft Exchange Information Store. There might be a few reasons for these errors: You might be running an Anti-Virus program on the Exchange server and that program might not be properly configured. Read article KB245822 for more info on how to properly configure your Anti-Virus software on a computer running Exchange server. If the Anti-Virus Quarantine option is enabled on the Exchange server and the anti-virus is not configured according to article KB245822. If your Anti-Virus software is configured to scan x:Program FilesexchsrvrMDBDATA it might think that the “E00. log “ contains a virus, or that the file itself is the virus, therefore it will automatically quarantine the E00. log and cause the Exchange services to crash. In order to solve these errors you... --- ### New Security Features in Exchange 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/new_security_features_in_exchange_2003/ - Categories: Exchange Server - Article Type: Overview What are the new security features found in Exchange Server 2003 in comparison to Exchange 2000? Exchange Server 2003 is much more secure "out of the box" than Exchange 2000 was. Here is a list of some of the new features found in Exchange Server 2003: OMA Browse disabled by default (global) Exchange 2003 includes the new OMA (Outlook Mobile Access) feature. However, although installed by default, OMA is in fact disabled by default. The setting to enable/disable OMA Browse is actually set during ForestPrep. Exchange 2003 ForestPrep will not enable OMA Browse by default. Exchange 2003 ForestPrep/Reinstall will keep it enabled if it was already enabled. This means that OMA Browse WON’T be enabled when running ForestPrep to upgrade from Exchange 2000, but WILL remain enabled when running ForestPrep to upgrade from an earlier Exchange 2003 build. You can find OMA Browse settings in Exchange System Manager (ESM), under Global Settings -> Mobile Services -> Properties. POP3, IMAP4 and NNTP services default to disabled (per server) On a new Exchange 2003 server install, POP3, IMAP4, and NNTP will be set to disabled. On upgrades and reinstalls, the current state of the service is preserved. To enable these protocols go to Services in Administrative Tools and set the protocols startup type to Automatic, then start the services. Basic Authentication for POP3 and IMAP4 is enabled by default (per virtual server instance) Basic Authentication is enabled on POP3 and IMAP4 virtual server instances (VSIs). There is a special case for upgrading... --- ### Overwriting Mailbox Store Policy Limits - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/overwriting_mailbox_store_policy_limits/ - Categories: Exchange Server - Article Type: How To Overwriting Mailbox Store Policy limits in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of users in the Exchange Organization. Setting limits on the mailboxes help control the database size and plan for efficient backup, restore and maintenance tasks (read Calculating Storage Space in Exchange for more info). General mailbox limits can be set in 2 easy places - Store properties and Store Policies. Read Setting Mailbox Limits and Working with Store Policies for more info. These settings, when applied, will enforce limits on all the mailboxes in that store (or many stores if set by using policies). Note that in order to set mailbox limits over 3GB you will need to manually edit the information in AD. The UI will not let you specify these sizes. Read Setting Mailbox Limits over 2GB for more info. However, if you have Mailbox Store settings in place or Mailbox Store Policies up and running and effecting many stores, you might still want to exclude specific users from these limits. The best method of excluding these mailboxes will be by putting them in a separate store, and configure higher limits on that store. However in some scenarios this is not possible (for example - when using Exchange Server 2000/2003 Standard edition or SBS, where only one Mailbox Store is possible). Therefore we need to overwrite the mailbox limits for specific users. Setting Mailbox limits on the user account properties in Active Directory Users and Computers (ADUC)... --- ### Problems with Exchange 2003 Installed on Domain Controllers - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/problems_with_exchange_2003_installed_on_domain_controllers/ - Categories: Exchange Server - Article Type: Overview Why is it NOT recommended to install Exchange Server 2003 on a computer that is also a Domain Controller? There are a few issues you should be aware of before installing Exchange Server 2003 on a computer that is also configured as a Domain Controller. The server must NOT be a cluster. Exchange 2003 clusters co-existing on Active Directory servers is not supported by Microsoft. Installing Exchange 2003 and Active Directory on the same server has a significant performance impact. The server must be a Global Catalog server (not just a DC). DSAccess/DSProxy/Cat will not load-balance or fail-over to another DC/GC. Avoid the use of the /3GB switch, otherwise the Exchange cache might monopolize system memory. Additionally, the number of user connections should be very low, therefore the /3GB switch should not be required. All services run under LocalSystem so there is a greater risk of exposure should a security bug be found (e. g. a bug in AD which allows an attacker to access the AD will also allow them to access Exchange, and vice-versa) If Exchange administrators will be able to logon to the local server. Because they have physical console access to a DC, potentially they can elevate their permissions in the AD. It may take approximately 10 minutes for the server to shutdown. This is because the AD service (LSASS. EXE) shuts down before the Exchange services, and DSAccess will go through several timeouts before shutting down. The workaround for this issue is to manually stop the... --- ### Quickly Copy Error and Display Messages - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_copy_error_and_display_messages/ - Categories: Windows Client OS - Article Type: How To How can I quickly copy error messages and other type of messages in Windows 2000/XP/2003? Did you ever find yourself staring into your computer screen and see that long, hard to understand error message? Did you ever need to copy that loooong error or information text found in one of Windows' error/warning/information windows? Did you ever want to copy a command's output directly into your clipboard, and later to paste it into a different program or search engine (such as Google, TechNet etc. )? If you've answered yes to any of these questions (and we all do) then you'll love the following tips: Copying Error / Warning / Information / Confirmation windows Try this nifty trick: When faced with the error message window, click on the window's title bar to highlight it. I've used Active Directory Sites and Services and created a new site, which generates an information message: Next, press CTRL + C, just like you do when you want to copy a text string or a file. Now, open Notepad. exe from the Run menu, and paste the message by using CTRL + V. Run tell your friends about how great this tip is... :-) Copying a Command's Output to the clipboard We all know that you can easily direct a command's output to a text file by using the ">" character: ​ipconfig /all > c:ipsetting. txt However, although this can be very useful when searching for a string or when documenting a setting, if you only need... --- ### Quickly Find Used IP Addresses - GUI - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly_find_used_ip_addresses_gui/ - Categories: Networking - Article Type: How To You can also find the used IP Addresses on your network by use of GUI tools. There are many tools that can do that, but I prefer 2 nice, small and most important - free - tools: Net World Scanner Small, free and simple - this tool will list all IP addresses on a given subnet (even remote ones). It will also list the NetBIOS name of the computers, and if any shares are present, double-clicking a computer will list the shares on that computer (providing you have the right access permission - this is not a hacking tool). You can also create a shortcut to the tool and in the Target box add /subnet:w. x. y to quickly scan a specific subnet. Download it from (156kb). TCP Net View Small, free and useful on local networks. It will list computer NetBIOS names, IP addresses, MAC addresses and remarks, plus will export to a test file. Download it from or from THERE (33kb) FastResolver Another cool method to quickly resolve LAN IP addresses is by using this nifty tool by Nir Sofer: FastResolver is a small utility that resolves multiple host names into IP addresses and vice versa. You can simply type the list of IP addresses or host name that you want to resolve, or alternatively, you can specify IP addresses range that you want to scan. For local network, FastResolver also allows you to get the MAC address of all IP... --- ### Registration of NetBIOS Names - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/registration_of_netbios_names/ - Categories: Networking - Article Type: Overview MS KB 119495 article  has more info: Names registered by the WINS server can be divided into three groups: Computer Name Domain Name Other/Special Names Each WINS Client actually registers its name with the WINS Server three or four times. Note: The MS-DOS clients that ship with Windows NT version 3. 5 (LAN Manager version 2. 2c client for MS-DOS and Microsoft Network Client version 3. 0) provide support for WINS resolution, but not registration. Several special NetBIOS names are also registered to maintain and retrieve browse lists. Names listed here are indicated by "Name(xx)" name followed by the hex value (xx) and padded with spaces to the 16th byte. Registered Computer Names: '' This name is registered for the WINS Client Workstation name. '' This name is registered for the Messenger Service on the WINS. Client: '' Network monitoring utility (group name, registered when running netmon) This name is registered for the Network Monitoring Agent service and will only appear if the service is started on the system. If the computer name is not a full 15 characters, the name will be padded with plus (+) symbols. '' Network monitoring agent (unique name, registered when remote agent is started) '' This name is registered for the Network Dynamic Data Exchange (NetDDE) services and will only appear if the NetDDE services are started on the system. By default, under Windows NT version 3. 5, the NetDDE services are not automatically started. '' This name is registered for the Server Service on the... --- ### Reset Nickname and Automatic Completion in Outlook XP - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/reset_nickname_and_automatic_completion_in_outlook_xp/ - Categories: Exchange Server - Article Type: How To How to reset the Nickname and Automatic Completion cache in Outlook XP? Outlook 2002 maintains a nickname list that is used by both the automatic name checking and the automatic completion features. The nickname list is automatically generated as you use Outlook. If the nickname cache is corrupted, Outlook may not be able to identify recipients, may offer incorrect recipients when automatically completing the e-mail address, or may send the message to the wrong person. Use the steps in the following section to reset the Outlook 2002 nickname cache for both Microsoft Windows 2000 and Microsoft Windows Millennium Edition (Me). Quit Outlook. Start Windows Explorer. On the Tools menu, click Folder Options, and then click the View tab. Under Advanced Settings, click to select the Show hidden files and folders check box. Click OK. Click Start, point to Search, and then click For Files or Folders. In the Search for Files or Folders box, type *. NK2 in the File Name box. In the Look In box, click to select your local hard disk. Click Search Now. Right-click the . NK2 file with the name of the profile that you want to reset, and then click Rename. Rename the file to profilename. bak, and then press ENTER. Quit Windows Explorer. Restart Outlook. Outlook will generate a new nickname cache. Use the steps in the following section to reset the Outlook 2002 nickname cache for both Microsoft Windows NT 4. 0 and Microsoft Windows 98: Quit Outlook. Start Windows Explorer. On the Tools menu, click... --- ### Runas Command Failure - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/runas_command_failure/ - Categories: Windows Client OS - Article Type: Overview Why do get errors when trying to run programs or MMC snap-ins with the RUNAS command? As a security best practice, it is recommended that you do not log on to your computer with administrative credentials. Running your computer as a member of the Administrators group makes the system vulnerable to Trojan horses attacks and other security risks. It is recommended that you use a regular, non-administrative user account to perform routine tasks, including running programs and visiting Internet sites. When it becomes necessary to perform administrative tasks on the local computer or in Active Directory, use RUNAS to start a program using administrative credentials. RUNAS allows you to accomplish administrative tasks without exposing your computer or data stored in Active Directory to unnecessary risk. However, Windows 2000/XP/2003 administrators might get error messages when trying to run the RUNAS command. Here are some of the reasons for these errors: Service not started or disabled If you're trying to run the RUNAS command yet fail without any specific error message, good chance is that the service was stopped or even set to be disabled on that computer. To start the service follow the next steps: Go to the Services applet in Administrative Tools (or click Start, then Run, and type "services. msc" (without quotes) and click OK). Check to see if the "Secondary Logon" service is listed as "Automatic" or "Disabled". If the service is indeed set to start automatically (as it should) then just right-click it and select "Start". [adkit zone="content-block"... --- ### Securing RDP/Terminal Services Communications - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/securing_rdp_communications/ - Categories: Networking - Article Type: How To When Microsoft Windows 2000 was released many years ago, administrators were blessed with new functionality called Terminal Services which easily allowed remote administration of a server. The functionality or the concept was actually not new. Administrators of Windows operating systems as well as other platforms are plenty familiar with the concept of remote administration. For Windows and some many other platforms, remote administration was accomplished through the use of 3rd party tools which meant the purchase of an extra remote administration tool license for every server that is deployed. While the licensing costs generally weren’t terrible, especially for what is gained in return (ease of remote administration, working from home in your pajamas while smoking a cigar like I’m doing now), the costs could add up quickly for infrastructures with large numbers of servers to remotely administrate. What was new, however, was that Windows 2000 introduced a remote administration tool that was built into the OS with no bolt-on licensing costs needed. The tool was called Terminal Services and other than a few minor quirks that it had such as software installation problems in Terminal Services, drive letters not dynamically added/removed without a logoff/logon, not a true console0, etc. , it was a God send and still is to this day.   The release of Windows XP brought us an overhauled remote administration tool. The Terminal Services client was still a viable tool but the version in Windows XP called Remote Desktop Connection was, well, cooler. In typical... --- ### Setup an SSH Server in Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/setup-ssh-server-vista/ - Categories: Windows Vista - Article Type: How To The free, open source application Cygwin can be used in combination with OpenSSH to turn Windows Vista into an SSH Server. Cygwin is an extremely robust application and one of the many uses of Cygwin is an SSH Server. This tutorial will demonstrate how to setup Cygwin and consequently OpenSSH on Windows Vista. Among many other things, OpenSSH can then be used to transfer files and setup a SOCKS proxy to encrypt your browsing session. The first step is to download OpenSSH.  OpenSSH is bundled in an application called Cygwin. Download Cygwin from the project homepage.  Cygwin is the setup. exe file on the project homepage. Move the executable file into C:'Cygwin'setup. exe Right-click on setup. exe and choose Create Shortcut. Drag the shortcut to your desktop and double-click the shortcut and start Cygwin. The following is the first installation screen for Cygwin. Click Next. Leave the default choice as Install from Internet and click Next. Change the directory to C:'cygwin if it is not already populated and leave the default selections as All Users and Unix/binary and click Next. On the Select Local Package Directory Prompt. Change the directory to C:'Cygwin if it is not already populated and click Next. Leave your Internet connection as Direction Connection and click Next. Choose any mirror and click Next. Unfold the Net tab and then double-click on OpenSSH. It will take a few minutes for Cygwin to install your necessary packages depending on the speed of your Internet connection and the mirror you... --- ### Testing RPC over HTTP/S Connection - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/testing_rpc_over_http_connection/ - Categories: Exchange Server - Article Type: How To How can I test RPC over HTTP/S on Exchange 2003? RPC over HTTP/S is a cool method for connecting your Outlook 2003 client to the corporate Exchange Server 2003 from the Internet or WAN, without the need to establish a VPN session to the corporate LAN and/or needing to open many ports on your corporate firewall. The only ports you'll need to open on your firewall are TCP 80 and, if using SSL, TCP 443. The process of setting up the RPC over HTTP/S connection is outlined in the Setting up RPC over HTTP/S on a Single Server article. After configuring RPC over HTTP/S you'll want to test it in order to make sure your users can connect to your Exchange server. The methods of testing your configuration are outlined below. Testing in the LAN The easiest method of quickly testing your newly configured RPC over HTTP/S configuration is by connecting an Outlook 2003 client found on a different computer in your local area network (or LAN) to your Exchange 2003 server. Such a configuration can be quickly accomplished by simply creating a new Outlook profile on the client test computer, and then running Outlook on that computer. However, I found out that for some reason, local area connections to the Exchange server tend to use regular RPC connections (i. e. TCP/IP) rather than RPC over HTTP/S, thus you'll actually use the "regular" method of Outlook-Exchange method of connection, and in fact won't be testing your newly configured RPC... --- ### Vista Blocked File Protection Control - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/unblock-files-windows-vista/ - Categories: Windows Vista - Tags: Editor's Pick - Article Type: How To, Overview Windows Vista is known to be much more picky about the file types it allows the user to use than previous operating systems. Some file types are considered to be a potential threat, and therefore are blocked. As a general – this is good, but sometimes it can just drive you nuts. Windows XP Pro also used to block many potentially harmful file types (read my "How can I enable transfer of MP3 files through Microsoft Windows Live Messenger? " article), but here, with Vista, the file range is extended to even more file types. Some of these *might* be harmful, and I'm not saying that they should always be trusted. That's why you're *supposed* to have an updated Anti-Virus and Anti-Malware program running and scanning your computer at all times (Lamer note: You do have one, don't you? ). But my point is that if you know what you're doing you could very well disable this protection and trust your AV program to do the scanning for you. Consider this example – You're using Windows Live Messenger to chat with your friend, when she sends you a zipped file containing some stuff you need. All this is good and well, but for some reason, Windows Vista now thinks that the . ZIP file is dangerous and should be blocked. It seems that the content of the zipped file is unimportant, Vista will block this file type because it was received from an un-trusted source – via Windows Live Messenger. This warns users... --- ### Using Outlook 2003 to Recover Deleted Items - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/using_outlook_2003_to_recover_deleted_items/ - Categories: Exchange Server - Article Type: Overview Can I recover deleted items through Outlook 2003 in Exchange 2003? Can I recover hard-deleted items through Outlook? Of course you can. Deleted items that are deleted via OWA or the regular Outlook client can be easily recovered, as long as the items that were deleted we not purged from the Exchange store. See Using OWA 2003 to Recover Deleted Items for more info. Set retention times First, lets see how long an item is kept in the store after a user deletes it: On your Exchange server open Exchange System Manager (ESM) and navigate to your server object. Right-click the server object and select Properties. In the Limits tab notice the value in the "Keep Deleted Items" box. In our case it's 7 days. This means that a user has 7 days to recover his or her deleted items. After that - it's restore from media time! Note that the higher you make this value, the bigger the store gets, as deleted items take a longer time to be purged from the store. Note: Purging deleted items from the store does NOT make the store any smaller. For that you need to Defragment Exchange 2000/2003 Server Databases Offline. Use Outlook to recover deleted items The good news is that you can recover deleted items both from the regular Outlook client and from OWA. In order to recover a deleted item via Outlook we need to first open Outlook (Duh). Then, click on the Deleted Items folder. Click on... --- ### Installing a new OS on a new VM witn Microsoft Virtual PC 2007 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/virtual_install_new_os_on_microsoft_virtual_pc/ - Categories: Virtualization - Article Type: How To If you got to this article I suppose you've already read my "Creating Virtual Machines with Microsoft Virtual PC 2007" article (if not, it might be a good time to suggest that you did). Remember, creating a VM is just equivalent to buying a new physical computer with a CPU, memory, an empty hard disk, one or more network interface cards and other peripherals. You can use that computer as a paper weight at the most unless you install an operating system on it... Allowing you to mount . ISO files instead of inserting real CDs or DVDs to the real CD/DVD player of your host machine. Therefore you do not need to physically burn the installation media, you can keep it as an . ISO file for ease of use. For instance, if you have MSDN access and have downloaded the OS you want to install, you can keep it in the . ISO format and mount that file to the VM's CD-ROM drive. Also, using VMs allows you to temporarily "freeze" the installation process and continue it in a later time. On the other hand, installing the new OS on the new VM takes longer because of the performance issues on the host machine. Installing the new OS on Virtual PC 2007 First thing to do is to boot the guest machine. Just select the VM from the list of the configured VMs and click Start. When the VM boots you can notice that it "sees" the amount... --- ### What is ASR in Windows XP and Windows Server 2003? - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/whats_asr_in_windows_xp_2003/ - Categories: Windows Server 2003 - Tags: Disaster Recovery - Article Type: Overview What is the ASR feature in Windows XP/2003? How do I use it? If you run a  Windows XP Pro or Windows Server 2003 computer and you wish to backup the system you can use a new feature called Automated System Recovery (ASR). The ASR process allows to restore the system disk (usually the C: drive) including the Windows files, all Registry settings and all user programs and data, allowing to recover a completely crashed system. To use this procedure you must be able to boot the Windows XP Pro Setup-program from the installation CD-ROM. During the restore process all data previously found on the System partition (usually C:) will be erased, then XP/2003 will be reinstalled, and the data from the ASR backup will be restored. Create the ASR backup In order to use ASR you first need to create the ASR backup. Follow these steps: Run NTBACKUP. EXE from the Run command or from the Program Files > Accessories > System Tools. When the program starts click on the ASR button to invoke it's wizard. The Wizard will start with a Welcome screen, advising that a Backup and the ASR disk will be created. Click Next. Choose a destination and filename for the ASR backup. Make sure you do NOT select A: as the destination (duh... ) nor C:, and that you have at least 2GB of free space on that partition. The "Completing the ASR Preparation Wizard" will appear. When you click Finish, the Wizard creates a... --- ### What's the Recovery Console? - Published: 2009-01-08 - Modified: 2025-02-12 - URL: https://petri.com/whats_the_recovery_console/ - Categories: Windows Client OS - Tags: Disaster Recovery - Article Type: Overview What is the Recovery Console? How can I use it? What will it help me do? If safe mode and other startup options do not work, you can consider using the Recovery Console. This method is recommended only if you are an advanced user who can use basic commands to identify and locate problem drivers and files. In addition, you must be an administrator to use the Recovery Console. Using the Recovery Console, you can enable and disable services, format drives, read and write data on a local drive (including drives formatted to use NTFS), and perform many other administrative tasks. The Recovery Console is particularly useful if you need to repair your system by copying a file from a floppy disk or CD-ROM to your hard drive, or if you need to reconfigure a service that is preventing your computer from starting properly. After you start the Recovery Console you will have to choose which installation you want to log on to (if you have a dual-boot or multiple-boot system) and you will have to log on with your administrator password. The console provides commands you can use to do simple operations such as changing to a different directory or viewing a directory, and more powerful operations such as fixing the boot sector. You can access Help for the commands in the Recovery Console by typing help at the Recovery Console command prompt. The following commands can be used with the Recovery Console: Attrib - Changes the attributes of... --- ### Windows 2000 SP4 Info - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2000_sp4_info/ - Categories: Patches and Service Packs - Article Type: Overview Windows 2000 Service Pack 4 is a well-tested collection of updates that focuses on a variety of customer-reported concerns with the Windows 2000 operating System. SP4 can be applied to Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server and Windows 2000 with Server Appliance Kit. Windows 2000 SP4 includes the updates contained in Windows 2000 Service Pack 1 (SP1), Windows 2000 Service Pack 2 (SP2), Windows 2000 Security Rollup Package 1 and Windows 2000 Service Pack 3 (SP3). Windows 2000 SP4 is a recommended upgrade. Windows 2000 Service Pack 4 (SP4) provides the latest updates to the Windows 2000 family of operating systems. These updates are a collection of fixes in the following areas: application compatibility, operating system reliability, security, and setup. Installation and download options Windows 2000 SP4 is available from the Windows 2000 Service Pack 3 CD or via free download. The Express Installation - The Express installation can be significantly faster to download than the Network installation. The Express installation detects the service pack files that are already installed on your computer. It then installs only those files that need to be updated. You must stay connected to the Internet during the installation. Typical sizes and times for the Express installation: Initial download size: 610kb Windows 2000 Professional: 15mb Windows 2000 Server Family: 27. 4mb This method of installation requires an Internet connection during installation. Download from this link: SP4 Express Installation The Network Installation - Before you install SP4 on multiple computers, see the Windows... --- ### Unable to Logon to Windows 2003 Domain Due to Windows Cannot Connect to the Domain Error - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_cannot_connect_to_the_domain_error/ - Categories: Active Directory (AD) - Article Type: Overview Some IT admins report issues with Windows XP workstations that are joined to a Windows 2003 Active Directory domain. These workstations are part of the domain, however, when a domain user tries to authenticate and logon to the domain from one of these workstations they cannot login and receive the following error message: Windows cannot connect to the domain either because the domain controller is down or otherwise unavailable, or because your computer account was not found. Please try again later. If this message continues to appear contact your System Administrator for assistance. This error is received even though the computer account for the workstation and user account for the user both exist. This or error may appear when a PC is replaced with another computer with the same computer name without first deleting the duplicate computer name from the Active Directory domain before joining the new workstation to the domain with the same duplicate name. The funny part is that the symptom may either appear immediately at the first try, or even after a few successful logons. The cause of the error is usually related to security identifier (SID) issues. Another possible cause for the error is that the computer account for the workstation was accidentally deleted from the Active Directory domain. Another common cause for the error is using Norton Ghost or any other similar disk cloning software. This happens when the administrator has cloned one XP machine and reproduced it to many other new... --- ### How to configure EIGRP on your Cisco router - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/how-to-configure-eigrp-on-your-cisco-router/ - Categories: Cisco - Article Type: How To Do you need to configure dynamic routing protocol for you network? EIGRP may be an excellent choice. It is a full-featured routing protocol that can grow as your network grows. Let's learn how to configure EIGRP in the Cisco IOS. What do you need to know about EIGRP? Before you configure EIGRP, there are some things you should know about it first. Here they are: EIGRP is the Enhanced Interior Gateway Routing Protocol. EIGRP is a Cisco proprietary routing protocol based on their original Interior Gateway Routing Protocol. EIGRP can only be used on networks where all routers are Cisco routers. The administrative distance for EIGRP is 90 and 170 for internal and external EIGRP, respectively. What features does EIGRP offer? Automatic redistribution of routes between IGRP and EIGRP. Ability to turn off and on EIGRP and IGRP on individual interfaces of the router. Fast network convergence thanks to EIGRP's DUAL algorithm (convergence is when all routers know about all the networks that every other router is offering). Incremental Updates that save network bandwidth and speed convergence. Reduced router CPU load, as compared to IGRP. EIGRP uses neighbor discovery to find and keep track of neighboring routers. Neighbor discovery uses multicast IP and is not tied to whether or not the the IP network is properly configured. EIGRP prevents routing loops on the network Supports variable length subnet masks (VLSM) Automatic Route Summarization How do you configure EIGRP in the Cisco IOS? To configure EIGRP in the Cisco... --- ### Server Virtualization, Network Virtualization & Storage Virtualization Explained - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/server-virtualization-network-virtualization-storage-virtualization/ - Categories: Virtualization - Article Type: Overview There are many types of virtualization- server, network, storage, and more. In this article, we will demystify these complex terms, explain what they can do for you, and name specific products that provide these functions. So prepare for the smoke to be cleared... What is Server Virtualization? Out of all three of the different types of virtualization discussed in this article, I believe that server virtualization is the type of virtualization you are most familiar with. When people say "virtualization", they are usually referring to server virtualization. However, they should really clarify what type of virtualization they are talking about because there are multiple types. The Wikipedia defines virtualization as "a broad term that refers to the abstraction of computer resources". Another definition, also from Wikipedia is "a technique for hiding the physical characteristics of computing resources from the way in which other systems, applications, or end users interact with those resources". With those definitions as our background, what is server virtualization? Simply put, server virtualization software allows you to run multiple guest computers on a single host computer with those guest computers believing they are running on their own hardware. By doing this, you gain all the benefits of any type of virtualization: portability of guest virtual machines, reduced operating costs, reduced administrative overhead, server consolidation, testing & training, disaster recovery benefits, and more. Examples of server virtualization products are: VMware Server, Workstation, Player, and ESX Server Microsoft Virtual PC and Virtual Server Xen Virtual Iron... --- ### How to Import Virtual PC and Virtual Server machines to VMware - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_import_virtual_server_and_pc_to_vmware/ - Categories: VMware - Article Type: How To Do you have Microsoft Virtual PC or Virtual Server machines already built? If so, now you can import them to VMware Workstation or Server with just a few clicks of the mouse? Why Import Microsoft Virtual PC / Server machines to VMware? There are a few reasons you may want to import a Microsoft Virtual PC / Server virtual machine to VMware. They are: Save time from having to reinstall operating systems – installing Windows XP, Windows 2003 Server, or Linux can easily take over an hour. If you have existing Virtual PC / Server machines, you can save a lot of time by importing those to VMware Save time from having to install 3rd party applications – perhaps you have applications installed on your Virtual PC / Server machines already. By importing these to VMware, you can save the time it would have to have to reinstall those applications. Quickly create new machines – even if a friend of yours uses Virtual PC / Server, you can save a lot of time by just copying his/her virtual machines and importing those into your new VMware system. What should I know about Importing Virtual machines? Here is a list of things you should know about importing your Microsoft Virtual machines: In previous versions of VMware, there was a separate application to perform the import but now it is built into VMware Workstation 5. 5+ and VMware Server. If you use the typical importer options, your existing virtual machine... --- ### VMware File Types Explained: VMDK, VMEM, VMSN, VMSD, VMX & More - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_vmware_files_explained/ - Categories: VMware - Article Type: Overview When using VMware Server & Workstation, you will, at some point, go to the directory where your VMware virtual machines are stored. Inside this directory, you will see a number of strange files and you will probably wonder what they are and what they do. Now, you can stop wondering and find out. Directory Listing Below, you’ll see a typical VMware directory listing of a folder where VMware virtual machines are stored.   Here is the command prompt version of the same directory listing:   In this directory, you’ll notice a number of different files types. There are log files, vmdk files, vmem files, vmsn, nvram, vmsd, and vmx files. In fact, there may be other types of files. Some of these files are very small, while others are very large. Let’s learn about each of these VMware files. Files you should know Log files – Log files are just that- a log of virtual server activity for a single virtual server. Here is an example of what a log file looks like:   Log files should be used only when you are having trouble with a virtual machine. VMDK files – VMDK files are the actual virtual hard drive for the virtual guest operation system (virtual machine / VM). You can create either dynamic or fixed virtual disks. With dynamic disks, the disks start small and grow as the disk inside the guest OS grows. With fixed disks, the virtual disk and guest OS disk start... --- ### VMware Virtual Center Benefits - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/vmware-virtual-center/ - Categories: VMware - Article Type: Overview The VMware Infrastructure package consists of 3 applications - VMware ESX, Virtual Center, and VMware Consolidated Backup. In this article, we'll learn the features of VMware's Virtual Center (VC) and what it can do for you. Features of VMware Virtual Center For those who aren't took familiar with VC, let's start off by hitting the core features of Virtual Center. They are: Centralize Management Rapid Provisioning Performance Monitoring Automation Windows Authentication to VC Virtual Resource optimization Migration of virtual machines (VMotion) High Availability (VMHA) More detail on these features can be found on the Virtual Center datasheet. What VMware Virtual Center Can Do For You Now let's talk about how Virtual Center can help you. Specifically, I want you to SEE these features, not just read about them. As everyone's company and needs are different, different features of the product will hit home with different people. What I am going to cover are the features that really hit home with me. VC provides centralized management for all VMware ESX servers. Keep in mind that VC 3. x does not control free VMware Server systems. To control VMware Server systems, you have to buy Virtual Center 2. x (which cannot control VMware ESX 3. x servers). With centralized management you get a single place to go to control all virtual servers. The more virtual servers you have, the more necessary Virtual Center becomes. Here is what the Virtual Machine Inventory screen looks like:   From this screen, you can see the... --- ### An Introduction to Network Access Protection’s Components - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/introduction-to-network-access-protection-components/ - Categories: Windows Server 2008 - Article Type: Overview Although VPN connections have been a staple of enterprise environments for many years now, security concerns have increased exponentially in recent years. Some of those concerns are related to the various federal regulations affecting IT departments, but many more of the concerns have to do with the machines from which users connect to the network. Although policies differ from one company to another, it is not at all uncommon for users to use their own personal computers to connect to the corporate VPN. One of the problems with allowing such connections is that since the company does not own the user’s personal machines, they have a limited ability to impose security standards on those machines. In the past this has been problematic, because although some companies try to impose security standards for any machine that the users use to connect to the corporate VPN, there usually hasn’t been a practical way of enforcing those standards. This is where Network Access Protection comes into play. Network Access Protection, or NAP, is a Windows 2008 security feature that allows organizations to compare a machine’s configuration to the organization’s security policy. Although there are several variations of this technique, the most commonly used form of Network Access Protection is something called VPN Enforcement. VPN enforcement works by comparing a client’s health to a network health policy requirement. If a client is found to be non compliant with the network health policy, then IP filters are used to prevent the client from... --- ### Restoring Exchange Mailbox Data Using the Recovery Storage Group, Part 1 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/restoring_exchange_mailbox_recovery_storage_group_part1/ - Categories: Exchange Server - Article Type: How To Recovery storage groups were first introduced in Exchange Server 2003.   At the time, the idea behind them was that you could restore Exchange database into the recovery storage group, and then use ExMerge to merge the data from the recovery storage group into the production database.   In Service Pack 1, Microsoft improve the process so that you no longer have to use ExMerge. If you've looked through the Exchange Management Console in Exchange Server 2007, it might at first appear that the recovery storage group feature is gone.   However, Exchange Server 2007 not only still offers this feature, recovery storage groups have been improved over the Exchange 2003 implementation.   In this article series, I will walk you through the process of using recovery storage groups in Exchange Server 2007. By far the biggest improvement to the recovery storage group feature is the fact that you can restore data from a different server.   Suppose for instance that you had in Exchange Server that suffered a catastrophic failure, and that you had a backup of the stores, but not a full system state backup. In Exchange 2003, you could rebuild the server from scratch, and there were even some techniques that you could use to get the data back, but the recovery process tended to be a bit tricky. In Exchange 2007 though, you could rebuild the server and then use recovery storage groups to restore the mailbox data even though from Exchange Server's point of view the data... --- ### Transport Rules: Adding a disclaimer - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/transport-rules-adding-a-disclaimer/ - Categories: Exchange Server - Article Type: How To Many businesses incorporate a disclaimer or footer at the bottom of their outbound messages. These disclaimers often advise as to the limitation or ramifications of using information within the message for purposes other than they were intended, or to assert ownership of creative works contained in them. While there is always a debate as to how effective these disclaimers are, many businesses use them nonetheless. Another useful purpose is for the addition of sales and marketing information to the bottom of email messages. Imagine being able to include info about your product’s latest release or other important news. With Exchange 2007 transport rules, you can accomplish this quite easily. Here, we’ll go through creating a simple disclaimer for outbound mail, then discuss some variations to make it more effective and less intrusive. Building our Transport Rule Let’s open the Exchange Management Console, and expand Organization Configuration. Under that, click on Hub Transport. In the Actions pane on the far right, click New Transport Rule to launch the Transport Rule wizard. Give the transport rule a name such as Legal disclaimer, and a comment. Ensure the Enable Rule box is checked, as in Figure 1 below, and click Next. The next screen is the Conditions screen. Select both from users inside or outside the organization and sent to users inside or outside the organization. In the bottom section, select the second link and change it to Outside, as shown in Figure 2 below. Then click Ok. This sets... --- ### Change Office XP CD Key - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/change_office_xp_cd_key/ - Categories: Windows XP - Article Type: How To How can I change the CD Key of my Office XP installation? You can do it by editing the Registry. Apply this procedure: Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. Locate your valid product CD Key, which is located on the back of the original CD case. On the Start menu, click Run. In the Open box, type Regedit, and then click OK. In Registry Editor, find the following subkey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\10. 0\Registration Click the plus sign (+) next to this folder. If you see only one subkey in this folder that has a 32-character {GUID} (globally unique identifier), select that subkey and go to step 5. If you see more than one subkey that has a 32-character {GUID}, select each one until you find the one whose DisplayName value (in the right pane) matches your version of Office. For the selected {GUID} subkey, select the ProductID string value in the right pane. On the Edit menu, click Rename. Type OldProductID and then press ENTER. On the Registry menu, click Exit. Reader note: Reader Mike Fairburn wrote: "Great work and a great... --- ### DHCP Server Migration Made Easy in Windows Server 2008 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/dhcp-server-migration-made-easy-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: How To If you have ever had to move a DHCP Server from one physical server to another, you know that the process isn’t exactly fun or intuitive if the servers are running Windows Server 2003. Fortunately, when Microsoft created Windows Server 2008, they completely redesigned the administrative interface, and in doing so, also made DHCP much easier to migrate. In this article, I will show you how it’s done. Migration in Windows Server 2003 Since this article is supposed to be about Windows Server 2008, I don’t want to talk too much about Windows Server 2003. Even so, I do want to give you a quick overview of the migration process that was used in that version of Windows so that you can better appreciate what I am about to show you. To migrate a Windows 2003 DHCP Server, the first thing that you must do is to stop, and then disable the DHCP service. Of course this means that clients will not be able to use the DHCP server to obtain IP addresses until the process is complete.   You must then copy the server’s %systemroot%system32DHCP folder to a safe location that you can use later on. After doing so, you should remove this folder from the original server. Next, you will have to do some work through the Registry Editor. As always, when you are working with the Registry Editor, you should make a backup first, because making an incorrect change can destroy Windows. With that said,... --- ### Disable the Welcome Screen in XP Pro - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_the_welcome_screen_in_xp_pro/ - Categories: Windows Client OS - Article Type: How To How can I disable the Welcome Screen in Windows XP Pro? To turn the Welcome Screen on or off: You must have a computer administrator account on a computer that is a member of a workgroup or is a stand-alone computer to turn on or turn off the Use the Welcome screen feature. Logging on at the Welcome screen is not available on computers that are members of a network domain. Open User Accounts in Control Panel. Click Change the way users log on or off. Do one of the following: To specify that users log on to the computer using the Welcome screen, select the Use the Welcome screen check box. A user logs on to the computer by clicking his or her user account name on the Welcome screen. If a password is assigned to the account, the user is prompted to type it. To specify that users log on to the computer without using the Welcome screen, clear the Use the Welcome screen check box.   The Welcome screen will no longer appear when you start the computer. To log on to the computer, type your user name (and password, if you have one) in the standard Log On to Windows dialog box. Note: To open User Accounts, click Start, click Control Panel, and then double-click User Accounts. Fast User Switching is available only when the Welcome screen is turned on. Note: To disable the Welcome screen you can also open... --- ### How to downgrade your converted Alcatel SpeedTouch 510 ADSL modem back to the Pro model? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/downgrade_from_alcatel_speedtouch_510_to_pro/ - Categories: Alcatel - Article Type: How To How to downgrade your converted Alcatel SpeedTouch 510 ADSL modem back to the Pro model? This document describes how you can configure an Alcatel SpeedTouch Pro ADSL modem and downgrade it from the 510 model to the Pro model. This method will work if the following assumption is true: Your modem was basically a Home model and was subsequently upgraded to the Pro model. It was then upgraded to the 510 model. Read more about it - Upgrade from Alcatel SpeedTouch Home to Pro and Upgrade from Alcatel SpeedTouch Pro to 510. "Why downgrade the modem? " you must be asking. Well, UPnP isn't a good security bet for starters, it can only work with Windows XP workstations and the new web interface is so damn ugly, but I also miss some of the settings you could configure in the Pro model, settings options that are gone in the 510 model. It's your call anyway. Disclaimer & Warning Messing with the software settings of your modem and/or messing with the registry or internal settings of your operating system can render your modem or operating system useless. Read the whole article and manual before you do any changes. Following these steps might work for you. It did for me and for many others, but that does not necessarily mean they will! I take no responsibility for anything bad that might happen to your OS or modem, and since you're on your own - Do not ask me for help! ... --- ### Download IE7 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_ie7/ - Categories: Downloads - Article Type: Overview Download Internet Explorer 7 Yes! It's finally here, Microsoft's latest and anticipated Internet browser - Internet Explorer 7. IE 7 has some nice features and a new look, you can read more about it on the links featured below. Also, following the footsteps on Firefox, you can add more functionality to IE 7 by installing one or more of the available Add-Ins (see link below). However, if you ask me personally, I think IE7 sucks big time. As of today, I don't know about any IE 7's security flaws, however the interface, although trying to be more user friendly, lacks many useful features that were easily available in older versions. So if you still want to use it, here are the download links. BTW, Microsoft plans to push IE 7 as a required update via Windows Update and Microsoft Update, so prepare for a many support calls coming to your line during the month of November... :-) Download Internet Explorer 7 (14. 8mb for the Windows XP SP2 version, other versions exist) See the Download Other IE Versions and Download the full IE 6 package pages for other IE versions. Links Download Internet Explorer 7 (14. 8mb) Release Notes for Internet Explorer 7 Internet Explorer 7 Add-Ins Internet Explorer 7 will be delivered through Automatic Updates - customers should complete preparations by November 1 IE Blog - Be Ready for Automatic Update Distribution of IE7 by November 1 Internet Explorer 7 Blocker Toolkit Download Internet Explorer 7 Blocker Toolkit FAQ --- ### Download Virtual Server R2 Enterprise Edition - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/download_virtual_server_r2_ent/ - Categories: Virtualization - Article Type: Overview Download Microsoft Virtual Server R2 Enterprise Edition Yes, now you can, for free! From Microsoft's webpage: Microsoft Virtual Server 2005 R2 is an ideal, production-quality tool for consolidating multiple workloads onto a physical server, allowing organizations to make more efficient use of their hardware resources. Built upon Microsoft Virtual Server 2005 SP1 and bolstered with new functionality, Virtual Server 2005 R2 enables IT organizations to enhance their administrative productivity and rapidly deploy new servers to address changing business needs through automated deployment and configuration of connected virtual machines that are easily administered with standard server management tools. Virtual Server 2005 R2 is an extensively tested and well supported virtualization solution that is supported both by the broader ISV community and by Microsoft in conjunction with its server operating systems and applications. Because it is part of the Microsoft Windows Server System, Virtual Server 2005 R2 is designed to integrate seamlessly with your other server infrastructure investments. System Requirements Supported Operating Systems: Windows Server 2003 R2 Datacenter Edition (32-Bit x86); Windows Server 2003 R2 Datacenter x64 Edition; Windows Server 2003 R2 Enterprise Edition (32-Bit x86); Windows Server 2003 R2 Enterprise x64 Edition; Windows Server 2003 R2 Standard Edition (32-bit x86); Windows Server 2003 R2 Standard x64 Edition ; Windows Small Business Server 2003 ; Windows XP Service Pack 2 Supported Host Operating Systems: Microsoft Windows Server 2003 Standard Edition, Enterprise Edition, or Datacenter Edition or later; Windows Server 2003 Standard x64 Edition, Enterprise... --- ### Download Windows 2003 Support Tools - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/download_windows_2003_support_tools/ - Categories: Windows Server 2003 - Article Type: Overview What are the Windows Server 2003 Support Tools? Where can I get them from? The Windows Server 2003 Support Tools are a set of software tools for administrators, developers, and power users to manage Active Directory, Group Policy, TCP/IP Networks, Registry, Security, Scalability and many other areas of the Windows Server 2003 operating system. These tools include troubleshooting operating system tools, network configuration and security-related tools, tools for managing Active Directory and automating application deployment and much more. With the use of these tools, the user is able to pin-point problematic issues with the system and will therefore be able to find a solution more easily. I recommend that you always install the Support Tools on any copy of Windows Server 2003 that you install, plus on all the management workstations running XP that you use to manage your network from. Supported Operating Systems: Windows XP SP1 and SP2 Windows Server 2003 SP1 Plus, 30 MB of free disk space are needed for the installation. The Support Tools are not automatically installed when you install Windows 2003, and unless someone finds a good and stable download link, they cannot be found anywhere on the Internet. The only place for you to look for these tools is on the installation CD-ROM in the supporttools folder. Download the Windows 2003 SP1 Support Tools (5. 2mb) Related articles You may find these related articles of interest to you: Download Free Windows 2000 Resource Kit Tools Download... --- ### Edit Registry Settings for Users Other Than Myself - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/edit_registry_settings_for_users_other_than_myself/ - Categories: Windows Client OS - Article Type: How To How can I edit registry settings for users other than myself? From an account with Administrator level access: Start Registry Editor (Regedit. exe). In Regedit, highlight the HKEY_USERS key and go to File, Load Hive. Use the File Open dialog to go to the Documents and Settings folder, where is the account you wish to modify. Highlight the NTUSER. DAT file in this folder (usually a hidden file) and select Open. You'll be prompted to enter a "Key name". You can use whatever you wish, but I use the User's logon name. You can now expand the Hive you just loaded and make any needed changes. When finished, highlight this Hive again and go to File, Unload Hive. Note: You MUST unload the Hive prior to logging on to the users account. Otherwise XP may have trouble loading the user's profile. --- ### Enable Remote Assistance Offering in XP/2003 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/enable_remote_assistance_offering_in_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I enable Remote Assistance offering in Windows XP and Windows Server 2003? MSKB 301527 has more: The Remote Assistance tool can be configured to enable an expert user to initiate a Remote Assistance session by using the Offer Remote Assistance feature. This feature requires the computer of the expert user as well as the computer of the novice user (that the expert user is going to help) to be members of the same domain, or members of trusted domains. Domains are used in corporate networks for security purposes, and a network administrator usually manages them. The Offer Remote Assistance feature is not a viable option for most home-based networks. Requirements To configure the computer of the novice user to accept Remote Assistance offers, you must ensure that the following three requirements are met: The Group Policy on the computer of the novice user must be configured to enable Remote Assistance offers. The computers of the novice and expert users must be members of the same domain, or members of trusted domains. Both computers must have Windows XP installed (or Windows Server 2003). You need to be a user with local administrative rights on the target computer. To configure the Group Policies for the Remote Assistance tool, you need a list of expert users from which the computers of the novice users can accept Remote Assistance offers. This list must contain Domain User groups and Domain User accounts. Note: Experts using Offer Remote Assistance will not be able... --- ### Event logs archiving with GPO - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/event_logs_archiving_with_gpo/ - Categories: Active Directory (AD) - Article Type: Overview In some environments the company policy requires that security logs of Domain Controllers are configured to retain information X days into the past. Requiring such a setting means 2 things: You can not configure the Event Log to override events as needed (if the log reaches it's maximal size) The log file can grow to a rather large size (the default is 512KB, but if you retain logs you have probably changed that) One of the things that can help you in this situation is automating the process of opening a new security log file when the maximum size limit is reached. Below you will find an Administrative Template (. ADM file) that does exactly that: the moment the file size limit is reached, the server archives the security log and opens a fresh one. I'll quote: Using this entry causes the Event Log service to automatically clear a full event log and to back-up the log file. On computers with the "CrashOnAuditFail" policy turned on, the computer continues to log events (instead of hanging because of an audit failure) if the current log file can be backed up automatically. By default, event logs are stored in the %SystemRoot%System32Config folder. If you enable this setting, a full log file is automatically backed up in the %SystemRoot%System32Config folder, the log file is cleared, and event logging resumes. If you are still wondering what I am talking about, lets have a look at the following example: The company's policy requirement... --- ### Expired SSL Website Certificate - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/expired_ssl_website_certificate/ - Categories: Security - Article Type: Overview How can I tell if an SSL certificate has expired or not before I enter the secured site? Any website operator that wants to secure the site or some of it's pages with SSL must obtain a valid certificate from a trusted third party CA. If you try to enter a secure website that uses an expired certificate, like the MCP Secure site on Microsoft's website at http://www. microsoft. com/traincert/mcp/mcpsecure. asp you will get a secure website warning (This was true on the 26th of January 2003, but 2 days later it was fixed without great success - read more about it on the Untrusted Certificate Source page): If you click OK your web browser will try to obtain the signed certificate from the web server, but if that certificate is obsolete you'll get this warning: You can choose to view the certificate and if you do you'll see (on the General tab) the reason for the error message: If you click on the Details tab you can see that this specific certificate is outdated (although the screenshot is in Hebrew it's still correct): If you choose to agree to accept this certificate you will be able to enter the secure site, providing it is indeed a secure and valid site, and not an exploit or a redirected malicious site. Note: Having respected sites like Microsoft's use expired certificates or certificates from un-trusted CAs is somewhat irresponsible in my opinion. Any hacker or malicious user with... --- ### Finding Public Folder Calendars and their Owners - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/finding_pf_calendars_and_their_owners/ - Categories: Exchange Server - Article Type: How To One of the tasks associated with the new DST changes is identifying Public Folder calendars, and their associated owners. In order to do so you can use the PFDAVAdmin tool that is freely available from Microsoft. The PFDAVAdmin tool can be used to perform various management tasks related to public folders and mailboxes. It can check the permissions status of each public and mailbox folder and corrects any problems found. It can also bulk export/import the permissions and replica lists. The program can also report content information of each public folder and mailbox folder such as the number of items in each folder, size of folder and most recent modification date of any item in the folder. Microsoft Exchange Server Public Folder DAV-based Administration Tool v2. 6 Finding Calendar-type Public Folders When you create a folder that holds appointment items (i. e. a calendar-type PF), this sets the PR_CONTAINER_CLASS (0x3613001E) property on the folder to IPF. Appointment. If we need to find all calendar-type Public Folders, all we need to do is look for the Public Folders that have that type or property set to them. After you download and extract the file from the above link, open PFDAVAdmin, go to Tools > Options and enable logging. Connect to the Exchange server with PFDAVAdmin. We are looking for the PR_CONTAINER_CLASS property of each Public Folder. So in order to find the owner we can either export the properties to a tab-delimited file containing properties for every folder in the hierarchy,... --- ### GFI LANguard Network Security Scanner - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/gfi_languard_nss/ - Categories: Security - Article Type: Review GFI LANguard N. S. S. is a leading security scanner that also offers patch management. Security scanning and patch management go hand in hand: Using one tool to do both makes the process more intuitive and more manageable for the administrator. GFI LANguard N. S. S. can use the Microsoft Software Update Services (SUS) tool to maintain a centralized database of patches and hotfixes. Read more about SUS on the Software Update Services (SUS) page. Why use the combination of GFI LANguard N. S. S. and Microsoft SUS server? Microsoft SUS server is a good solution for pushing out operating system patches. It supports all operating system patches, including patches for applications that are part of the operating system such as IIS and IE. However, Microsoft SUS does not offer the following features that are provided by GFI LANguard N. S. S. : Deployment of service packs Deployment of patches to machines running Windows NT Deployment of third party software patches and clients Deployment of Microsoft application patches and service packs for Microsoft Office, Microsoft SQL Server, Microsoft Exchange Server & Microsoft ISA server. Ability to check that all patches have been installed correctly. Therefore, GFI LANguard N. S. S. and Microsoft SUS jointly make a perfect combination to keep Windows 2000/XP/. NET machines up-to-date, including service packs, Microsoft application patches and service packs, and third party software patches. How to set up patch management on your network Step 1: Installing Microsoft SUS server Because Microsoft SUS server is not really a desktop-based scanning tool, but rather an automated server designed to... --- ### How do I install Active Directory on my Windows Server 2003 server? > Installing Active Directory isn't always a straightforward process, so Daniel Petri walks you through an AD install for Windows Server 2003. - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/how_to_install_active_directory_on_windows_2003/ - Categories: Active Directory (AD) - Article Type: How To Installing Active Directory isn't always a straightforward process, so Daniel Petri walks you through an AD install for Windows Server 2003. First make sure you read and understand Active Directory Installation Requirements. If you don't comply with all the requirements of that article you will not be able to set up your AD (for example: you don't have a NIC or you're using a computer that's not connected to a LAN). Note: This article is only good for understanding how to install the FIRST DC in a NEW AD Domain, in a NEW TREE, in a NEW FOREST. Meaning - don't do it for any other scenario, such as a new replica DC in an existing domain. In order to install a Windows Server 2003 DC in an EXISTING Windows 2000 Domain follow the Windows 2003 ADPrep tip. Windows 2000 Note: If you plan to install a new Windows 2000 DC please read How to Install Active Directory on Windows 2000. Windows 2008 Note: Install Active Directory on Windows Server 2008 provides complete instruction details for working with Windows Server 2008. Windows Server 2003 Note: If you plan to install a new Windows Server 2003 DC in an existing AD forest please read the  page BEFORE you go on, otherwise you'll end up with the following error: Here is a quick list of what you must have: An NTFS partition with enough free space An Administrator's username and password The correct operating system version A NIC Properly configured TCP/IP (IP address, subnet mask and - optional - default gateway) A network connection (to a hub or to another... --- ### IIS 5.1 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/iis_51_patches/ - Categories: Patches and Service Packs - Article Type: Overview   IIS is one of the biggest threats to Windows NT, 2000 and XP security! You must know how to protect your computer from IIS related attacks, and remember that even though you're using Windows 2000 Professional - you're still vulnerable to those attacks (IIS is installed by default on all W2K platforms, but not on XP and Windows Server 2003). Note: Since IIS is such a potential threat to your system, and since my site is usually NOT security oriented, I cannot guarantee your computer's safety even if you do follow my recommendations. I cannot be held responsible for anything that might happen to you, your computer, or the information stored on it.   I might compile a list of IIS security issues later this month. but till then you can read the TechNet Security Webpage and search for the IIS related issued, and also the Microsoft Security page IIS 5. 1 Required Patches IIS 5. 1 is the version available on Windows XP computers. Although it is not installed by default on XP Pro computers, it's still a big security concern. If you have SP1 for XP (and you should), these are the patches that you need to apply to your computer: October 2004 MS04-030 : Vulnerability in WebDav XML Message Handler Could Lead to a Denial of Service (824151) May 2003 MS03-018 : Cumulative Patch for Internet Information Service (811114) This patch is a cumulative patch that includes the functionality of all security patches released for IIS 5. 1 since Windows... --- ### Info Collected by Windows Update - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/info_collected_by_windows_update/ - Categories: Windows Client OS - Article Type: Overview Information collected by Windows Update Does Windows Update collect personal information from your computer? Go to Windows Update, click on About Windows Update in the left side bar, and then scroll down to Windows Update Privacy Statement. From the Windows Update Privacy Statement: Windows Update is committed to protecting your privacy. To provide you with the appropriate list of updates, Windows Update must collect a certain amount of configuration information from your computer. This information includes: Operating-system version number and Product Identification number Internet Explorer version number Version numbers of other software Plug and Play ID numbers of hardware devices The Product Identification number is collected to confirm that you are running a validly licensed copy of Windows. A validly licensed copy of Windows ensures that you will receive on-going updates from Windows Update. Windows Update does not collect your name, address, e-mail address, or any other form of personally identifiable information. The configuration information collected is used only for the period of time that you are visiting the site, and is not saved. To provide you with the best possible service, Windows Update also tracks and records how many unique machines visit its site and whether the download and installation of specific updates succeeded or failed. In order to do this, Windows generates a Globally Unique Identifier (GUID) that is stored on your computer to uniquely identify it. Windows Update records the GUID of the computer that attempted the download, the ID of the item that you attempted to... --- ### Install ISA Server 2000 on Windows Server 2003 > Daniel walks us through installation of Microsoft's Internet and Acceleration Server (ISA) 2000 on Windows Server 2003. - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/install_isa_server_2000_on_windows_server_2003/ - Categories: Windows Server 2003 - Tags: Editor's Pick - Article Type: How To Daniel walks us through installation of Microsoft's Internet and Acceleration Server (ISA) 2000 on Windows Server 2003. Can I install ISA Server 2000 on a Windows Server 2003? ISA Server is supported on all versions of Windows Server 2003 except Windows Server 2003, Web Edition. Microsoft ISA Server 2000 can be installed on Windows Server 2003 under these conditions: Install ISA 2000 on Windows Server 2003, ignore the error messages, and then install SP2 for ISA 2000 or Install ISA 2000 on Windows Server 2003, ignore the error messages, install SP1 for ISA 2000, and then install the required updates for Windows Server 2003. Read the articles listed in the links section below for more info. Upgrading from Servers Running Windows 2000 Microsoft recommends that you install ISA Server, ISA Server SP1, and the ISA Server 2000 Required Updates for Windows Server 2003 package, or SP2 on the Windows 2000-based ISA Server computer before you upgrade to Windows Server 2003. To upgrade a computer running Windows 2000, follow these steps: Install ISA Server. Download and install ISA Server SP1. After the installation of SP1 completes, you must restart the computer. ISA Server 2000 Service Pack 1 (2. 8mb) After the computer restarts, download and install the ISA Server 2000 Required Updates for Windows Server 2003 package. ISA Server 2000 Required Updates for Windows Server 2003 Alternatively, instead of performing steps 3 and 4 above, you can install SP2 alone. ISA Server 2000 Service Pack 2 (3. 9mb) Upgrade to Windows Server 2003. Installing ISA Server on Servers Running Windows Server 2003 You can also install ISA... --- ### How can I install Windows Vista without supplying the product key? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_windows_vista_without_supplying_the_product_key/ - Categories: Windows Vista - Article Type: How To How can I install Windows Vista without supplying the product key? Well, you can, sort of. You can configure Windows Vista to install without having to manually enter the product key during the setup process. This is quite useful if you find yourself in need to perform an installation of the OS but without having the (legal) product key with you at that very moment. Unlike previous Windows versions where you had to have a CD Key handy during the installation of the OS, the Windows Vista setup process only makes it appear as if you have to enter a product key to install it. During the setup program's progress you will reach a dialog box that will ask you to enter a valid product key. Here is where the fun part starts. You can actually leave it blank! Next click No in response to the "Are you sure" dialog box. You will now be presented with a list of all the different Windows Vista versions available on the DVD. Yes, the cool thing about the Windows Vista DVD is that every DVD has every version of Vista available for you to pick from, and the product key you own is the only thing that tells the setup process what version of Vista it should install. You can now pick any one from that list and use it for up to 14 days without any having any issues. After 14 days you... --- ### Integrating ObserveIT with the New Windows Server 2008 Terminal Server Features - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/integrate-observeit-new-windows-2008-terminal-server-features/ - Categories: Windows Server 2008 - Article Type: How To If you recall, I've recently began working for ObserveIT (www. observeit-sys. com), a startup company that has an amazing solution for one of the toughest questions that IT professionals face in today's dynamic IT world: Who touched my servers, what did they do, what did my privileged users do, what did my external vendors change on my servers. ObserveIT's product allows enterprise-wide recording and indexing of any human interaction with the servers, and what makes it so awesome is the fact that it indexes this data alongside with detailed metadata of what is seen on the screen, allowing full searches within the database. I've written more about ObserveIT's recording capabilities in my "Record and Audit Terminal, Citrix and RDP Sessions – ObserveIT Product Overview" article. Do you use any social networks? Follow ObserveIT on Facebook, Linkedin and/or Twitter. Seeing the new and exciting features that are added to Windows Server 2008 TS, you can imagine that I immediately wanted to test how these additions incorporate with ObserveIT's capabilities. After some testing and tweaking I decided to write this article in order to expose you to these great features, and in order to show you how you can get full visual audit of your system. Terminal Server on Windows Server 2008 has four primary features that deal directly with ObserveIT's capabilities to record, audit, and provide visual tracking of Terminal Server connections: TS RemoteApp (a seamless windows/application publishing) TS Web Access (a web front-end for TS RemoteApps) TS Gateway (an... --- ### Keyboard Shortcuts in Windows XP - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/keyboard_shortcuts/ - Categories: Windows Client OS - Article Type: Overview How can I quickly open Windows Explorer in Windows XP? What keyboard shortcuts do you know? In Windows XP, as in other Windows Operating Systems, you can use shortcut keys as an alternative to the mouse. You can open, close, and navigate the Start menu, desktop, menus, dialog boxes, and Web pages using keyboard shortcuts. Keyboard shortcuts may also make it easier and sometimes a lot faster for you to interact with your computer. See the following tables for some of the most useful shortcuts: General keyboard shortcuts Press To CTRL+C Copy. CTRL+X Cut. CTRL+V Paste. CTRL+Z Undo. DELETE Delete. SHIFT+DELETE Delete selected item permanently without placing the item in the Recycle Bin. CTRL while dragging an item Copy selected item. CTRL+SHIFT while dragging an item Create shortcut to selected item. F2 Rename selected item. CTRL+RIGHT ARROW Move the insertion point to the beginning of the next word. CTRL+LEFT ARROW Move the insertion point to the beginning of the previous word. CTRL+DOWN ARROW Move the insertion point to the beginning of the next paragraph. CTRL+UP ARROW Move the insertion point to the beginning of the previous paragraph. CTRL+SHIFT with any of the arrow keys Highlight a block of text. SHIFT with any of the arrow keys Select more than one item in a window or on the desktop, or select text within a document. CTRL+A Select all. F3 Search for a file or folder. ALT+ENTER View properties for the selected item. ALT+F4 Close the active item, or... --- ### Managing Windows 2008 Server Core through RDP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/managing-windows-2008-server-core-rdp/ - Categories: Windows Server 2008 - Article Type: How To As described in my previous articles, Windows Server 2008 has an interesting option to install it with a minimal graphical user interface (or GUI for short). This method of installation is called "Server Core", and it allows an administrator to only install the minimum binaries required to run a specific server role (currently, there are 9 possible Server Core roles). You can read more about it on my "Understanding Windows Server 2008 Server Core" article. Although Server Core has no real GUI (except a few tools such as Task Manager), we still need to access it locally in order to run configuration and diagnostic commands on it. Some of these commands are accessible via remote MMC snap-ins, run from remote management workstations or servers. However, some commands need to be run only on the local Command Prompt, causing us to need to physically have access to the Server Core server. This can be avoided by enabling the machine running Server Core to allow us to remotely connect to it by using the Remote Desktop Protocol client, also known as mstsc. But before we can use it to connect to the machine, we need to make sure the following issues have been dealt with. These requirements are: Configuring an IP address Configuring a server name Configuring an administrator's password Configured the server's firewall You should, but are not required to, also join the server to your domain. Next, in order to properly configure Server Core to allow ICMP replies,... --- ### Microsoft Network Monitor 3.1 has been released - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/microsoft-network-monitor-3/ - Categories: Networking - Article Type: News The Microsoft Network Monitor tool has been around since the days of NT 4. 0, and although it wasn't the best sniffer around, it was a good tool to have in your toolbox if nothing else worked. Network Monitor (or NM for short) has been released in 2 major versions, and has had 2 types of installations – one, as a freeware add-on to the Windows Server operating systems (and it is still available for use on Windows Server 2003), and the second as a full sniffer program capable of using promiscuous mode, available only for SMS users. All this has changed with the release of NM3. 0 last year. NM3. 0 looks much more mature than the program it has evolved from, and it already has some of the cool features only found in 3rd-party sniffers such as WireShark (previously known as "Ethereal"). You can take a look at some of the most used freeware Windows-based sniffers below. Microsoft Network Monitor v3. 1 is now available on http://connect. microsoft. com, featuring wireless sniffing and an easier way to create filters using "Right Click Add To Filter".   Here is a list of features that are new to NM3. 1: Wireless (802. 11) capturing and monitor mode on Vista - With supported hardware, (Native WIFI), you can now trace wireless management packets. You can scan all channels or a subset of the ones your wireless NIC supports. You can also focus in on one specific channel. We now show the wireless metadata for normal wireless frames. This is... --- ### Mount ISO Files in Windows Vista - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/mount_iso_files_in_windows_vista/ - Categories: Windows Vista - Article Type: How To An . ISO file is a file that contains the complete image of a disc, either a CD or a DVD. Such files are often used when transferring CD and DVD images over the Internet (for example, most MSDN downloads that are available from the MSDN subscriber downloads page, AND the files that are delivered monthly with the MSDN subscription package – are in . ISO format). ISO files are typically created through an application that will open, create, edit, and extract CD or DVD image files, then convert the extracted image to an . ISO file, easily allowing users to burn an exact copy of the original onto CD or DVD. When you get your hands on an . ISO (or other image file format) that you want to use, you can either burn it to a physical CD or DVD media (thus "wasting" a few cents and valuable rack space in your CD shelf, or mount it by using some sort of emulating software. By using a mounting software you can keep the . ISO file as a file somewhere on your hard disk or network, and then just access it like it was a real CD or DVD drive. Prior to Windows Vista there were a lot of tools that allowed mounting of . ISO files. With Vista, many of these tools were not compatible anymore and some even caused blue screens (BSODs) on Vista. I decided to make a list of the tools that do work, and the only... --- ### Why are the options to configure Root Hints or Forwarders unavailable? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/no_forwarding_or_root_hints_on_dns_server/ - Categories: DNS - Article Type: How To, Overview If no DNS servers were detected during the initial configuration of Windows 2000 DNS, the system will typically designate the new DNS server as a "root server", which is the ultimate authority for all naming resolution activities. As a result, the new DNS server will not be able to forward any name resolution queries that it is unable to resolve to another server or to the root servers on the Internet. Consequently, a Windows 2000 DNS server that has been configured as a root server disables the options to add forwarders automatically. Also, the Root Hints tab will be empty. If, at a later date, you decide that this DNS server should be integrated into a larger DNS environment such as the Internet, you will need to remove the "root" forward lookup zone. To remove the root forward lookup zone: Click Start, point to Programs, point to Administrative Tools, and then click DNS to start the DNS Management Console. Click the DNS Server object for your server in the left pane of the console, and click the (+) PLUS sign next to the server object to expand the tree. Click the (+) PLUS sign next to Forward Lookup Zones to expand it. Click the zone that is marked with a (. ) period, and then press DELETE. Click OK to confirm that you want to delete the zone. Close the DNS Management Console and re-open it. Now the options to configure Root Hints or Forwarders are available. After... --- ### Office XP SP3 Slipstreaming - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/office_xp_sp_slipstreaming/ - Categories: Patches and Service Packs - Article Type: Overview How can I slipstream service packs into Office XP (2002)? This scenario explains how to create an integrated installation of Office XP and the corresponding service pack in a shared distribution folder on a network or on your local computer. To complete this procedure, you must have the original Office XP CD media. Note: This explanation is based upon usage of Office XP and SP3, but will also work for SP1, SP2 and future service packs. For Office 2000 integrated installations see THIS note. Note: SP3 already holds all the fixes and patches that were applied in SP1 and SP2, so you do NOT need to apply SP3 over SP2, instead apply ONLY SP3. Important SP3 Note: Unlike previous service packs, Office XP SP3 installs successfully on any previous baseline of Office XP, including SP1, SP2, and the original release version of Office XP. For that reason, Office XP SP3 represents an opportunity to establish a new baseline throughout your organization and proceed with the most efficient patching strategy for the future. For other versions of this article please visit the following links: Office System (2003) Hotfix Slipstreaming Office System (2003) SP1 Slipstreaming One Note 2003 SP1 Slipstreaming Windows 2000 SP4 Slipstreaming Windows Server 2003 SP1 Slipstreaming Windows XP SP2 Slipstreaming Prerequisites Before we begin anything, you'll need to have a few things: Office XP CD You will need the Administrative Update of Service Pack 3. It can be downloaded from HERE (58. 9mb) No, the regular SP won't do. SP2... --- ### Windows Small Business Server 2003: A Clear and Concise Administrator's Reference and How-To - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/packt_sbs_book/ - Categories: Windows Server 2003 - Tags: Editor's Pick - Article Type: Review Windows Small Business Server 2003: A Clear and Concise Administrator's Reference and How-To Many small to medium sized companies that are looking into software solutions for their network operating systems are looking towards the direction of Microsoft Small Business Server 2003. SBS 2003, made to fit companies with 75 users or less, is a one-machine server solution with a broad range of services, all in one box. These services include Windows Server 2003, Exchange Server 2003, SQL Server, ISA Server, a Fax Server and more. Although many regard the setting-up and maintenance of SBS as a non-knowledge intensive task made easy by the abundance of wizards and setup shortcuts, the truth behind the scenes is in fact harder to swallow. While an eager self-taught wannabe administrator can in fact set up SBS in less than a day's work, the real pain comes in the shape of all the hidden settings, tweaking, network and server configurations, mobility and connectivity issues and other common tasks. These tasks can pose great difficulty for those who lack the in-depth technical skills that a network maintenance task requires. In order to navigate a through the software documentation and features one needs a good reference guide, one that will not only help in performing the most basic tasks, but also will dive into those hidden corners of the system and allow the administrator more control over the operating system and its services. Windows Small Business Server SBS 2003: A Clear and Concise Administrator's Reference and How-To... --- ### Problems with Forms-Based Authentication and SSL in ActiveSync - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/problems_with_forms_based_authentication_and_ssl_in_activesync/ - Categories: Exchange Server - Article Type: Overview Problems in Synchronizing a Pocket PC with Exchange Server 2003 when using SSL and Forms-Based Authentication in OWA As written in my other article (How to Synchronize a Pocket PC with Exchange 2003? ), Exchange Server 2003 has many new features tailored for mobile users. One of them is ActiveSync which can be used to establish a connection between your Pocket PC 2002 or 2003 and Exchange Server 2003. If you have an Internet connection on your PPC, you can ActiveSync your calendar, contacts and inbox wirelessly over the Internet. However, if you've configured either SSL (read Configure SSL on OWA and Configure SSL on Your Website with IIS for more info) or (read Configuring Forms-Based Authentication in OWA and Exchange 2003 for more info), when you try to access a Microsoft Exchange Server 2003 computer by using Microsoft Outlook Mobile Access or Exchange ActiveSync, you may receive the following error message: Synchronization failed due to an error on the server. Try again. Error code: HTTP_500 This issue can occur if the Exchange virtual directory in Microsoft Internet Information Server (IIS) is configured to accept only Secure Sockets Layer (SSL) connections or if Integrated Windows authentication is not enabled on the Exchange virtual directory. With Exchange ActiveSync, this issue can occur if forms-based authentication is enabled on the Exchange Server. MS KB 817379 has more info and more error messages. This occurs because ActiveSync and OMA virtual directories make an explicit DAV logon to the Exchange virtual directory. The... --- ### How can I quickly copy a file or a folder's path in Windows Vista? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_copy_file_and_folder_path_in_windows_vista/ - Categories: Windows Vista - Article Type: How To While working with files and folders in your Windows operating system you might sometimes find the need to copy a file's exact and full path. Besides needing these paths for programming needs you might might also need it for usage in the Run command, a Command Prompt window, e-mail messages, a Google search or for a billion other uses. Before Windows Vista you had to manually copy the folder path from the Windows Explorer (or Command Prompt) window, and then manually add the file's name, plus the file's extension, and do not forget having to add the quotation marks around the long path. Here comes Windows Vista and ads this very useful shortcut to the DEFAULT installation inside Windows Explorer's context menu! Open a Windows Explorer windows, browse to the required file. Right-click the file in the right pane of the Windows Explorer window. Note that you do NOT have the "Copy as Path" option. Now, hold the SHIFT key while you right-click the folder. Behold! You can now paste the copied path anywhere you want. Note: As in most cases, Microsoft has only gone part of the way with this cool feature. It's silly but this context menu add-on in only available when you right-click on the folder in the right pane, and not in the left pane or in a My Computer window...   Further Reading You might also want to read the following related articles: Add Desktop Icons in Windows Vista Configure Multiple Local GPOs in Windows... --- ### RegPol - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/regpol/ - Categories: Administrative Tools and Scripts - Article Type: How To Description This command line utility enables you to import . REG files even if the Group Policy is set to restrict the registry editing tools. If you use this policy setting, just use regpol. zip to import . REG files instead of the traditional 'Regedit –s' and 'Reg import'. Requirements: Windows 2000/XP/2003 Current version: 1. 2. 8 Version highlights: Minor fixes "Windows Registry Editor Version 5. 00" error “Subscript out of range" error Download Download (11kb) You need to extract the tool/script found in the downloaded file by using WinZip or similar. Syntax ​RegPol Example: ​Regpol c:tempx. reg Support No support of any sort will be given for this script/tool or for any other script/tool found on the Petri. co. il website for that matter. If you need to contact us with any support issues, feedback or suggestions regarding the tool(s) and script(s) found on this page please write an e-mail to THIS address. Disclaimer The software available from GanoTools is FREEWARE. It is not in the Public Domain. Asaf Ganot retains the copyright for this work. You can use it freely but do not claim it for your own or charge others money for it. Use these tools at your own risk. They are provided for your own personal use and enjoyment and Asaf Ganot nor Daniel Petri nor Petri. co. il do not provide any warranty for them, nor they will be held responsible for any result allegedly caused by use or misuse of any of the tools found on this page. Back to... --- ### Reset OWA 2000/2003 Language - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/reset_owa_2000_2003_language/ - Categories: Exchange Server - Article Type: How To How can I reset the language for the right-click operations within OWA? In Exchange 2000 and 2003, OWA (Outlook Web Access) is one of the most used features. Exchange 2003 takes OWA even further down the road and makes it look and feel just like the full-featured Outlook 2003. OWA has a cool feature that allows you to configure the language in which it displays all the folders, menus, titles and options. For example, let's assume that we're an Israeli-based company that uses both Hebrew and English as it's main languages. I've set up my Exchange 2000/2003 server to support both languages, as you can see in the following screenshot: Now, let's say one of my users is using a Windows XP Pro based computer from home and he wants to connect to his mailbox via OWA. That user (I've used a user called ITPRO4) opens Internet Explorer and points it to the following URL: ​http://server1. dpetri. local/exchange (this is only an example, it won't work for you) That user happens to have Hebrew configured as his locale on his home computer: and also in his Internet Options applet within IE: Since it's his first time connecting to OWA, that setting is "burned" into his mailbox, and all the folders within his mailbox receive Hebrew names. Also notice that the entire OWA interface is localized to Hebrew. This is ok as long as he wishes to remain with these Hebrew settings. But what will happen it ITPRO4 changes his... --- ### How can I run the Windows Server 2003 SP1 Adminpak.msi on Windows Vista RTM? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/running_win_2003_adminpak_on_vista_rtm/ - Categories: Windows Vista - Article Type: How To Installing the Adminpak. msi will install all of the management tools that are needed to administer Windows 2000, Windows XP Pro and Windows Server 2003 computers and network. Adminpak. msi has a few versions, and the latest one is for Windows Server 2003 SP1. Read more about Adminpak. msi on the Download Windows 2000 Adminpak. msi, Download Windows 2003 SP1 Adminpak. msi, Download Windows 2003 R2 Adminpak. msi and Extract Specific Tools from Adminpak. msi articles. However, right now there is still no Adminpak. msi for Windows codenamed Longhorn Server available, and beta versions of Vista prevented you from installing the Windows Server 2003 Adminpak. msi on them. As Windows Vista is released to manufacturers (RTM) and to the public during the beginning of January 2007, the lack of the right Adminpak. msi will cause system administrators to have to continue running Windows XP SP2 workstations in order to allow them to control and administer their networks. Although I am 100% positive that Microsoft will come up with a solution pretty quickly, for now, if you want to use the Windows Server 2003 SP1 Adminpak. msi on your Windows Vista computer, you will need to do the following: Install the Windows Server 2003 SP1 Adminpak. msi on Vista RTM. Once it is installed you will need to register the DLLs needed for the various snap-ins manually from an elevated command prompt. Copy the following text and paste it into a CMD file (something like adminpak_vista. cmd): @echo off set filelist=adprop. dll azroles. dll azroleui. dll ccfg95. dll set filelist=%filelist% certadm. dll certmmc. dll certpdef. dll certtmpl. dll set filelist=%filelist% certxds. dll cladmwiz. dll... --- ### Share Calendars with Local Users using Internet Publishing` - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/share-calendars-local-users-internet-publishing/ - Categories: Exchange Server - Article Type: How To Microsoft Office Outlook 2007 provides you with a comprehensive time and information manager. Users can share their calendars with other users by using Exchange Server, but because this action requires you to use a Microsoft Exchange Server 2000/2003/2007 account, it may not be suited for home users or small offices lacking a local Exchange server. Outlook 2007 has improved calendar sharing using Office Online. You can share your calendar with everyone, or with only designated people, by publishing your Internet Calendars to Office Online. You can publish and share your calendars with others by publishing them to a WebDAV server. This is useful if you want to share calendars and availability information with others, but do not use a software application such as Exchange. The server that you are publishing a calendar to must support the World Wide Web Distributed Authoring and Versioning (WebDAV) protocol. WebDAV is an extension of HTTP (HTTP (Hypertext Transfer Protocol): Protocol that is used when you access Web pages from the Internet. Outlook uses HTTP as an e-mail protocol. ) that enables you to create and modify documents on a Web server. Your server administrator or Internet service provider (ISP) can tell you if WebDAV is supported on the server you want to use. Note: An ISP is a business that provides access to the Internet for such things as electronic mail, chat rooms, or use of the World Wide Web. Some ISPs are multinational, offering access in many locations, while others are limited... --- ### Three Steps to the Initial Configuration of your Windows 2008 Server After Installation - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/three-steps-to-the-initial-configuration-of-your-windows-2008-server-after-installation/ - Categories: Windows Server 2008 - Article Type: How To When Microsoft created Windows Server 2008, one of their many goals was to simplify the deployment process. In fact, you can perform a manual server installation with just a few mouse clicks. One of the side effects to such a minimalist approach to the installation process though, is that you may find yourself having to do quite a bit of work after the installation completes, just to prepare your server for use. I’m not talking about installing antivirus software and things like that; those types of tasks are a given. What I’m talking about are things that you might have taken for granted in Windows Server 2003. In this article, I will show you some post installation tasks that you might need to perform. Adjust the Local Security Policy The very first thing that I recommend doing after the installation completes is to adjust the server's local security policy.   As you probably know, Windows Server 2008 was designed to be secure by default.   As such, the machine's local security policy is already populated with various settings, especially related to your password.   The problem that I experienced in my own organization is that these default settings were very different from the settings that I like to use on my servers, and tended to be a bit disruptive.   That being the case, I recommend reviewing the machine's local security policy immediately after the installation completes, and making any necessary changes. You can access the machine’s local security policy by... --- ### Understanding VPN Remote Access Mechanism - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/understanding-vpn-remote-access-mechanism/ - Categories: Windows Server 2008 - Article Type: Overview What is a Virtual Private Network (VPN)? A VPN, or Virtual Private Network, is a group of two or more computer systems, typically connected to a private network, that communicates securely over a public network (typically the Internet). VPNs may exist between an individual machine and a private network (client-to-server or remote access) or a remote LAN and a private network (site-to-site). Site to site VPNs involve the use of dedicated VPN hardware at each remote site. Remote access VPNs however, utilize a central site VPN concentrator and a software VPN client. The client is installed on the users' desktop or laptop computers and enables the users to establish a secure, encrypted tunnel to the office network. A VPN connection extends the boundaries of the physical network. Computers that gain access to a VPN can potentially access all the resources of the private network as if they were physically connected to it. This allows for workers, consultants, external vendors and offshore support to connect to the corporate network from any spot on earth, and perform their job remotely. The number of concurrent VPN connections is only limited by the public network bandwidth and the performance capabilities of the VPN server/appliance. VPNs provide encryption and additional security measures to ensure that only authorized users have access to the network and its data. Traffic is encrypted in both directions while it travels the public network. Since VPN is a secure method for allowing remote users access to a private... --- ### Using OWA 2003 for Storing Files - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using_owa_2003_for_storing_files/ - Categories: Exchange Server - Article Type: Overview Can I enable users to store / upload files in their mailboxes through Outlook Web Access (OWA) in Exchange 2003? This cool tip was first published by Sami Khoury on the Microsoft Exchange Team Blog. Yes, although when users learn this trick they will soon start to upload ALL their crap to their mailboxes, and you will probably need to either implement mailbox quotas, or, if already using them, forcibly prevent users from crossing their quota limit. In Windows 2000/2003 support has been added to a term called “web folders”, where you can browse the files and folders on a website in exactly the same way you browse your local disk. The underlying transport for web folders is called DAV, and Exchange 2000/2003 also supports and hooks itself to this interface. By connecting a client computer running Windows XP for example to a Windows Server 2003 computer running Exchange Server 2003, a user can send out HTTP requests to the server and if all is set up right, receive a window in which he or she can graphically browse their mailbox and folders. In order to do so you must first configure your server to accept HTTP connections. This is done by default, as Exchange Server 2003 is installed on top of IIS and uses the WWW service for the OWA interface. Just make sure you can access OWA from your client machine, and preferably configure it to use SSL (read Configure SSL on OWA). Next, assuming you use the... --- ### Installing Ubuntu 6.10 as a Virtual Machine - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_installing_ubuntu_as_virtual_machine/ - Categories: Virtualization - Article Type: How To For those of you new to the idea of virtualization, virtualization is the nesting of "sub-operating systems" within a host operating system.   More specifically, virtual operating systems, better known as virtual machines, allow the end user to leverage the power of the host PC to explore other operating systems.   With virtualization, a user can run Linux inside of Windows, Windows inside of Linux, Linux inside of Linux, or Windows inside of Windows.   A nested operating system has access to all of the components of the host operating system including: USB ports, wireless cards, parallel ports, firewire, etc. This tutorial will provide instructions on how to nest Ubuntu Linux 6. 10 Edgy Eft into Microsoft XP using only free software. In addition, I will demonstrate how to fully install Ubuntu Linux 6. 1 and how to set up a shared folder so you can copy files between Windows and Linux. I would recommend having at least 512MB of RAM and 4GB of hard disk space available to complete this process. Getting Started The first step in the tutorial is to download and install VMware Player. VMware player is a free download, and the installation is very straight forward. Download VMware Player from the VMware homepage. After you download and complete the installation of VMware Player, navigate to your "My Network Places" and then to "View Network Connections. " You will notice the addition of at least two network connections: the VMware Network Bridge and the VMware Network Adapter. These additions will allow... --- ### What's CIDR? - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/whats_cidr/ - Categories: Networking - Article Type: Overview The Classless Inter Domain Routing (CIDR) standard is already in effect and most newer routers supports it. In a few years it is likely to be the way IP addressing is handled. It is already becoming common for ISP and major providers to use this scheme. The old Classfull IP Addressing scheme provided for Class A, B and C networks: Class type Starting bits for the first octet How many networks per Class? How many hosts per network? Range of the first octet Class A 0 126 (2^24)-2=~16 Million 1-126 127=Loopback Class B 10 2^14=16384 (2^16)-2=~65000 128-191 Class C 110 2^21=~2 Million (2^8)-2=254 192-223 Class D 1110 - - 224-239 Class E 1111 - - 240-255 The default Subnet Masks for these networks are: Class type Number of bits used for the Network ID Number of bits used for the Host ID Default Subnet Mask Class A 8 24 255. 0. 0. 0 Class B 16 16 255. 255. 0. 0 Class C 24 8 255. 255. 255. 0 The problem with such a scheme is that we are bound to blocks of IP addresses and if we don't need all of them (for example if a small company would need 100 computers they would still have to use a class C network) or if we need more than we can get (for example if a medium sized company needed 1000 computers per network they couldn't use a class C network - they'd need a class B network) we can do nothing about it. The inefficiencies... --- ### Windows 2000 SP4 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_2000_sp4_patches/ - Categories: Patches and Service Packs - Article Type: Overview Required Patches Windows 2000 Server/Advanced Server with Service Pack 4 requires the following security-related patches:Make sure you read Internet Explorer 6. 0 SP1 Patches and IIS 5. 0 Patches before you go on. Internet Explorer 6 Service Pack 1 Download IE 6. 0 + SP1 October 2005 MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706) MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) MS05-044 : Vulnerability in the Windows FTP Client Could Allow File Transfer Location Tampering (905495) August 2005 MS05-043 : Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423) MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587) MS05-041 : Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591) MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) July 2005 MS05-036 : Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214) June 2005 MS05-033 : Vulnerability in Telnet Client Could Allow Information Disclosure (896428) MS05-032 : Vulnerability in Microsoft Agent Could Allow Spoofing (890046) MS05-031 : Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458) MS05-030 : Cumulative Security Update... --- ### Windows Millennium (ME) Patches - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/windows_me_patches/ - Categories: Windows Windows Millennium (ME) Patches No one will help you, no one will support you, no one will ever hear you cry! The best patch to this sorry-looking, miserable, ill-fated, bugged, problematic and sick operating system is to format your hard disk and install a fresh copy of Windows XP Pro (Home Edition if you must). Even Windows 98 SE is a better choice (As Microsoft themselves say, and as support for this Joke-OS is virtually non-existent). No, an upgrade is not an option. Format your HD and get done with it. Required Patches If you really must, Windows ME requires the following security-related patches: Make sure you read Internet Explorer 5. X and 6. 0 Patches and Internet Explorer 6. 0 SP1 Patches before you go on. August 2005 MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) July 2005 MS05-037 : Vulnerability in JView Profiler Could Allow Remote Code Execution (903235) MS05-036 : Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214) June 2005 MS05-032 : Vulnerability in Microsoft Agent Could Allow Spoofing (890046) MS05-030 : Cumulative Security Update in Outlook Express (897715) MS05-026 : Vulnerability in HTML Help Could Allow Remote Code Execution (896358) May 2005 MS05-024 : Vulnerability in Web View Could Allow Remote Code Execution (894320) April 2005 MS05-019 : Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066) MS05-018 : Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859) MS05-016... --- ### How to configure IPSEC encryption with the Cisco IOS (site to site VPN tunneling) - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/how-to-configure-ipsec-encryption-with-cisco-ios/ - Categories: Cisco - Article Type: How To The OSPF dynamic routing protocol is probably the most popular LAN routing protocol today. OSPF can scale to the largest LANs but can also start out small. While OSPF can be complex to configure, its basic configuration isn't difficult. Let's learn how to configure OSPF in the Cisco IOS. What do you need to know about OSPF? IPSEC VPN Configuration in the Cisco IOS is not an easy task. For even experienced IT Pros, if you have never configured a Cisco IOS VPN, attempting to configure it can be frustrating and complex. In this article, we will look at a working Cisco IOS IPSEC VPN configuration and dissect the important parts to help you understand this very useful configuration. What is an IPSEC VPN? IPSec (or IP Security) offers methods to authenticate and encrypt IP traffic as if traverses a network. By doing this, that traffic can remain secure in transit. VPN (or virtual private networks) are created when network traffic is tunneled through another network. In our case, we are using IPSec to encrypt the VPN tunnel. A site to site VPN tunnel is just a VPN tunnel that is, usually, permanently connected and used to connect two networks through another network (usually through the Internet). The Cisco router IOS can be used to create a site to site VPN tunnel using IPSec. You could connect a Cisco IOS router to another router, a Cisco PIX, Cisco ASA, or other brand of router/firewall. You should note... --- ### Solarwinds Read-Time NetFlow Analyzer - Free Download - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/solarwinds-read-time-netflow-analyzer-free-download/ - Categories: Cisco - Article Type: Overview So many network performance tools tell you that you have too much traffic here or there but then don't go the next step and tell you what that traffic is and where its coming from. In the past to find out the answer to this, you would have to take a protocol analyzer, put it on your network, configure port mirroring on a switch, and then try to analyze what that traffic was. It doesn't have to be so complex or expensive. Solarwinds Free Real-Time NetFlow Analyzer can help (click here to download it now). What is NetFlow and how can it help you? NetFlow is a patented Cisco router feature that provides detailed information about what types of traffic is going through an IOS router, where that traffic is coming from, and where it is going to. This could be as simple as seeing that "57% of your traffic on this router's Serial interface is HTTP". Or, it could be more complex and you might find that PC with IP address 1. 2. 3. 4 is sending 1500kb of Skype traffic on port 5678, to the Internet, and that is what is maxing out your Internet T1. In fact, NetFlow can even get more complex than that. The Cisco Router itself doesn't tell you any of this with NetFlow. What the Cisco router does is to forward that NetFlow data to a NetFlow Analysis computer. Thus, you need a NetFlow application. What is the Solarwinds Free Real-Time NetFlow Analyzer? ... --- ### Top 10 VMware Performance Tweaks - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/virtual_increase_vmware_performance/ - Categories: VMware - Article Type: Overview With VMware Server, you run virtual guest operating systems inside a host operating system. Because you are running multiple operating systems on a single server, you can imagine that the performance of that host system will be pushed to the maximum. You need to get every ounce of performance you can out of your system. In this article, you will be given 10 ways to increase performance on your VMware server. Note that these 10 ways are in no particular order. 10. Use VMware Tools When you load the VMware tools for Windows or Linux, you get a number of benefits. First off, you can now have SVGA resolution instead of just standard VGA. This also increases graphics performance on the virtual machine. Next, the mouse between the host and guest are now synchronized. No longer do you have to press Ctrl-Alt to ext the guest operating system. Mouse performance is also increased. Finally, you can cut and paste between operating systems. These tools are easy to install. Inside the VMware management interface, once the virtual machine is booted, go to VM -> Install VMware Tools, like this: 9. Defrag Your Virtual Disks Just like any other operating system, over time, a disk will become fragmented. Virtual machines are no different. The time that it takes for a disk to become fragmented depends on what data is being added to and removed from the virtual machine hard drive. Periodically, you should use a program like Diskkeeper, PerfectDisk,... --- ### Quickly Search Active Directory from the Desktop - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_search_active_directory_from_the_desktop/ - Categories: Windows Client OS - Article Type: How To How can I quickly perform search operations in AD from my desktop? No problem. Create a new shortcut on your desktop with the following command: ​%SystemRoot%SYSTEM32rundll32. exe dsquery,OpenQueryWindow Give it a name and run it. This is what you'll get: You can also configure a specific search option, such as a subset of the entire domain (one specific OU to search in, for instance), or a specific search operation, such as a Shared Folder search, or a Printer search: After configuring the search criteria you can save the customized search to your desktop, and thus easily create a "Search Printers" or "Shared Folders Search" icon. You can also easily change the icon for each search option and choose a better icon for each search option. Related articles You might also want to read the following related articles: Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Printers and Fax Icon to the Desktop in XP/2003 Add Scanners and Cameras Icon to the Desktop in XP Pro Add Scheduled Tasks Icon to the Desktop in XP/2003 Add Spell Checking to Internet Explorer Change or Add OEM Logo and Information Create Taskpads for Active Directory Operations Customize a New XP Installation Customize Command Prompt in Windows XP/2000/2003 Customize the Places Bar in Office XP Delete the Recycle Bin Icon from the Desktop in XP/2003 Disable Shared Documents Folder in Windows XP Extract Specific Tools from Adminpak. msi... --- ### Recover Lost Product Keys for Windows 2000, XP, 2003 - CD-Key Recovery for Windows 2000, Windows 2003, and Windows XP - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/recover_lost_product_keys_for_windows_2000_xp_2003/ - Categories: Windows Client OS - Article Type: How To One of the biggest nags for an IT administrator facing the need to format and reinstall a Windows-based operating system is the need to recover that system's Product ID (or CD-Key). Normally you'd find the Product ID for the installed Windows OS either on the computer's sticker (found on the bottom of a laptop, or on the side or back panels of a desktop computer), or on the installation media itself (for older OSs). Two cool and freeware tools come to mind when trying to recover the seemingly lost Product ID. The first is ProductKey by Nirsoft, and the other is Magical Jelly Bean Keyfinder. Both do not require any installation and will easily allow you to view local Product IDs and in many cases – Product IDs or remote computers. ProduKey ProduKey is a small utility written by Nir Sofer (who's wonderful freeware tools can be downloaded on his website at http://www. nirsoft. net), that displays the Product ID and the CD-Key of Microsoft Windows 2000/XP and 2003 operating systems, Microsoft Office products, Microsoft Exchange and SQL Servers. The nice thing about this (freeware) tool is that you can view this information for your current running operating system, or for another operating system/computer on your network by using command-line options. In order to start using it, just run the executable file - produkey. exe. The main window of ProduKey displays the list of Windows, Office, and SQL Server products installed on your system. For each product, the "Product ID"... --- ### Remote Version Checking through SMTP/POP3/IMAP4 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/remote_version_checking/ - Categories: Exchange Server - Article Type: How To How can I tell what build is my Windows/Exchange server? It's quite easy to forget which builds your servers are running. Here's a quick way of telling which OS build and Exchange version is running on a remote server: Operating System TELNET to the SMTP port (25) and look at the banner returned. 5. 0. 2195 - Windows 2000 6. 0. 3663 - Windows 2003 RC1 6. 0. 3718 - Windows 2003 RC2 6. 0. 3790 - Windows 2003 RTM Exchange Server TELNET to the SMTP/POP3/IMAP port (25/110/143) and look at the banner returned. 6. 0. 6249. 0 - Exchange 2000 SP3 6. 5. 6728. 0 - Exchange 2003 Beta 1 6. 5. 6803. 0 - Exchange 2003 Beta 2 6. 5. 6851. 0 - Exchange 2003 RC0 6. 5. 6595. 0 - Exchange 2003 RC1-Candidate 6. 0. 3790. 0 - Exchange 2003 RTM Note: The dot build (italicized) reported by the Exchange protocols will not normally reflect the exact build number you installed. This is because dot builds only contain the actual files changed/fixed since the major version was released. Related articles You might also want to read the following related articles: Block Incoming Internet Mail to Specific Users or Groups Change the IMAP4 Banner Change the POP3 Banner Change the SMTP Banner Configure IIS to be a Smart Host for Exchange Configure MX Records for Incoming SMTP E-Mail Traffic Message Protocols Used by Exchange 2000/2003 Ports used by Exchange Server Preventing Exchange 2000/2003 from Relaying Quickly Send Email Messages Send Mail from Script Send Mail (from the Tools and Scripts section) SMTP, POP3 and Telnet in Exchange 2000/2003 Test... --- ### Restore Ntbackup Backups from Windows XP to Windows Vista - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/restore_ntbackup_backups_to_windows_vista/ - Categories: Windows Vista - Article Type: How To Lately I began to use Windows Vista on my laptop computer, needless to say that one of the basic and first tasks that one will stumble upon when switching operating systems is the need to safely restore files and items from the old machine to the new one. Although Windows Vista comes with a file and setting transfer wizard called Windows Easy Transfer (see attached image), I find it too slow for my personal use. I know what I need to transfer, and I know where to find it. It so happens that some of the files I needed for my Vista laptop were lost when I re-formatted my old Windows XP laptop. Luckily for me, I've made a backup of all my personal files and documents using Windows XP's Ntbackup software, and backed that file to DVD. Now the question that comes up is how to use the . BKF media created by Windows XP's Ntbackup, on Windows Vista. You see, Windows Vista comes with a different backup and restore program called Backup Status and Configuration (sdclt. exe). Although the new backup software is better suited for home users and inexperienced users, it is built in a way that it will not allow manual configurations of WHAT to backup, nor does it include any means of restoring any backups other than the ones that were created by it. Read more about it in my "Using Backup Status and Configuration in Vista" article. So, how is a user supposed to... --- ### SBS 2000 Installation Tips - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/sbs_2000_installation_tips/ - Categories: Windows Client OS - Article Type: Overview I'm about to install SBS 2000 on my network. Are there any special issues to take into consideration before I start the installation? SBS 2000 is an easy installation. The installation phase can be divided into 2 distinctive sections: The simple-good-old Windows 2000 setup process, and the SBS Back-office components installation phase. Installing the W2K phase is just like installing W2K. However, after running that part there are a few things you should be aware of BEFORE you begin the second phase. Make sure to get hold of and install SBS Service Pack 1. That is basically Windows 2000 SP3, Exchange 2000 SP3 and ISA SP1. There are other parts to the actual Service Pack but if you cannot get it on time, the regular Service Packs will be fine. Read this for more: Small Business Server 2000 Patches. Make sure to use the wizards! When setting up users, you will use a wizard. These are very good, but you must use them so you do not get into issues with security. Specifically, the wizard creates a client setup disk for use on each PC. During the installation (on the client) the setup disk sets up the local user rights etc. Set up all users with Power User rights (done using the wizard). This will allow them to add software etc. However, you do not need to do this. Just a suggestion. Unlike the previous versions of SBS, you can set the IP addressing as you wish... --- ### Sender Policy Framework - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/sender_policy_framework/ - Categories: Anti-Spam Solutions - Article Type: Overview Sender Policy Framework (SPF) tackles email address forgery. Without SPF it is very easy to send e-mails using someone else's email address. Often you get spam from yourself - this is because the spammer puts your e-mail address as the sender. In order for SPF to work you need to publish a list of IP addresses that are used to send e-mails to other users on the Internet. When you send an email to someone else on the Internet your SMTP server connects to the recipient’s SMTP server, which knows the IP address of your SMTP server. The recipient’s server can compare this IP with the published records in the DNS for your domain. This is how the recipient's server can find out if the email was sent by your server or someone posing to be a user on your domain. Does SPF stop spam? SPF can stop spam to a certain extent. Although spammers can still send you unwanted e-mails, they will be forced to use their own domain. SPF can effectively stop viruses or worms from an infected machine that send out thousands of message to everyone found in your address book. How do I publish my IP Addresses? Follow the steps below to publish SPF records. Gather the list of IP addresses that you know can send email to the Internet from your organization Use this wizard to create an SPF entry for your DNS Update your DNS with the string created by the wizard Once your... --- ### Slow Shutdown of Exchange 2003 Server Installed on DC - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/slow_shutdown_of_exchange_2003_server_installed_on_dc/ - Categories: Exchange Server - Article Type: Overview Exchange 2003 on a Domain Controller or "Why does my Exchange 2003 server take 10 minutes or more to shutdown" and other problems It seems that most users that install Exchange Server 2003 on a Windows Server 2003 machine that is also configured as a Domain Controller may experience a slow shutdown when they try to reboot/shutdown the server. This is because the Active Directory related services shut down before the Exchange services, thus causing the Exchange services to fail repeatedly while looking for the DS. Exact and detailed explanations for this behavior and restrictions can be found in the KB articles listed below. Note: Although installing Exchange on a server that is also a DC is possible, changing the server status while Exchange is already installed is NOT supported by Microsoft. For an example, if you demote a DC with Exchange Server install to a member server, the DS2MB service (which copies Active Directory data from A/D to the IIS metabase) stops working throughout an Exchange organization. Although some of these issues CAN be fixed, un-knowing administrators might ruin their configurations and as stated before - they will not be supported by Microsoft. There are 2 known solutions for this problem (besides listening to me and NOT installing Exchange on a DC in the first place... ). One is to change the timeout for a failed service to shutdown itself, and the second is to manually stop the Exchange services BEFORE shutting down the server. Method #1:... --- ### What is Microsoft Software Update Services (SUS)? - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/sus/ - Categories: Windows Server - Article Type: Overview What is Microsoft Software Update Services (SUS)? Microsoft SUS is a free patch management tool provided by Microsoft to help network administrators deploy security patches more easily. In simple terms, Microsoft SUS is a version of Windows Update that you can run on your network. Today corporations have to frequently check the Windows Update site or the Microsoft Security Web site for patches. Then they have to manually download patches that have been made available since they last visited the site, test the patches, and then distribute the patches manually or by using their traditional software-distribution tools. Instead of each workstation having to connect to the Internet to update Windows, each workstation connects to the Microsoft SUS Server instead and updates from there. Microsoft SUS Server alone requires access to the public Internet as it connects to Windows Update. Software Update Services solves these problems by providing dynamic notification of critical updates to Windows computers as well as automatic distribution of those updates to your corporate Windows desktops and servers. For Software Update Services to function, only one corporate intranet computer requires access to the public Internet. By connecting to Windows Update, Microsoft SUS Server provides notification of critical updates as well as performing automatic distribution of those updates to your workstations and servers. Microsoft SUS server gives the administrator control over updates: The administrator can test and approve updates from the public Windows Update site before deployment on the corporate intranet. Deployment takes place on a... --- ### Understanding Function Levels in Windows Server 2003 Active Directory - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/understanding_function_levels_in_windows_2003_ad/ - Categories: Active Directory (AD) - Article Type: Overview What are the domain and forest function levels in a Windows Server 2003-basedActive Directory? Functional levels are an extension of the mixed/native mode concept introduced in Windows 2000 to activate new Active Directory features after all the domain controllers in the domain or forest are running the Windows Server 2003 operating system. When a computer that is running Windows Server 2003 is installed and promoted to a domain controller, new Active Directory features are activated by the Windows Server 2003 operating system over its Windows 2000 counterparts. Additional Active Directory features are available when all domain controllers in a domain or forest are running Windows Server 2003 and the administrator activates the corresponding functional level in the domain or forest. To activate the new domain features, all domain controllers in the domain must be running Windows Server 2003. After this requirement is met, the administrator can raise the domain functional level to Windows Server 2003 (read Raise Domain Function Level in Windows Server 2003 Domains for more info). To activate new forest-wide features, all domain controllers in the forest must be running Windows Server 2003, and the current forest functional level must be at Windows 2000 native or Windows Server 2003 domain level. After this requirement is met, the administrator can raise the domain functional level (read Raise Forest Function Level in Windows Server 2003 Active Directory for more info). Note: Network clients can authenticate or access resources in the domain or forest without being affected by... --- ### Upgrade Windows 2000 GPO with XP Features - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/upgrade_windows_2000_gpo_with_xp_features/ - Categories: Active Directory (AD) - Article Type: Overview How do I upgrade a Windows 2000 Active Directory Group Policy object (GPO) to support the new features in Windows XP? Windows XP Professional supports a superset of the Group Policy features supported by Windows 2000. These features are available by using updated extension components the clients, . adm files, and an updated Group Policy snap-in. If you upgrade an Active Directory GPO to support the new Windows XP policy settings, Windows 2000-based clients ignore any Windows XP-specific settings. This behavior occurs on a per-setting level; if a policy object contains a policy setting that is unsupported, all other supported policy settings from that policy object are applied. To upgrade a Windows 2000 GPO, follow these steps on a Windows XP-based domain member: Click Start, click Run, type mmc, and then click OK. On the File menu, click Add/Remove Snap-in. In the Add/Remove Snap-in dialog box, click Add. In the Add Standalone Snap-in dialog box, click Group Policy, and then click Add. In the Select Group Policy Object dialog box, Local Computer appears as the target object. Click Browse, select the GPO that you want to upgrade, and then click OK. Note that when you click Browse, a delay might occur while Windows searches for the policy objects in the domain. Click Close. Click OK. You can now adjust the policy settings in this Policy object by using the Group Policy console from the Windows XP-based client. The GPO is actually updated with the new administrative template (. adm) files when you... --- ### View Additional User Information in AD Users and Computers - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/view_additional_user_information_in_aduc/ - Categories: Active Directory (AD) - Article Type: How To How can I view additional information about a user in the AD Users and Computers snap-in? The Windows 2003 Resource Kit has a hidden . dll file called Acctinfo. dll. After registering the . dll with the following command, it will add a new property page, called Additional Account Info, to the user properties page in Active Directory Users and Computers (or ADUC for short). If you don't have the Windows 2003 Resource Kit Tools download it from here: Windows 2003 Resource Kit Support Tools (12mb) If you just want the Acctinfo. dll then download it from (78kb) After installing the Resource Kit Tools, in order to register the Acctinfo. dll enter the following command: ​regsvr32 %systemroot%system32acctinfo. dll (change the path if you've placed the . dll in some other location) Acctinfo. dll needs to be installed on the computer that you are accessing  Active Directory Users and Computers from. If you plan to manage your domain from multiple computers, Acctinfo. dll will need to be installed on each computer. This is what you'll see on a user's properties in AD Users and Computers:   The page includes information is not typically available in the regular Active Directory Users and Computers snap-in: The date when the user's password was last set, the user's password expiry date, the date and time when a user last logged on and off, the user's SID and GUID and more. Most of the information displayed is quite easy to understand. For example, if you press the... --- ### Vista Command Prompt - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/vista_command_prompt/ - Categories: Windows Vista - Article Type: Overview The Command Prompt is a native Windows program that lets you execute commands without using a GUI. You can accomplish pretty much every task in the Command Prompt as you can with the GUI and a mouse. The Command Prompt gets its roots (arguably) from a combination of UNIX and MS-DOS. Consider it "Windows without the windows. " Microsoft has streamlined your ability to launch Command Prompt sessions in Windows Vista. Besides accessing the Command Prompt through the Start Menu, the following are three other methods to launch the Command Prompt with varying permission-levels. Shift and Right-Click You can hold down shift and right-click and you will get the option to "Open Command Window Here. " This will open a Command Prompt that is queued to your current directory. For example, if I use the above command on the desktop, the corresponding Command Prompt session will be set to C:UsersasdfDesktop": Creating an Administrator Session Shortcut Alternatively, you can create a shortcut to give yourself an elevated (administrator) Command Prompt session by right-clicking on the desktop and creating a shortcut: For the location of the item type "cmd" and click Next: Name the shortcut "cmd" and click Finish: Your shortcut will now be created. Right-click on the shortcut and choose "Properties": In the properties dialog, select the "Shortcut" tab, and click Advanced... In the Advanced Properties, check "Run as administrator," and click Ok: Anytime you launch the shortcut, you will have administrator privileges, and your Command Prompt session will start in... --- ### What's New in Windows Server 2003 Active Directory? > Looking for an overview of what's new in Active Directory in Windows Server 2003? Daniel points out the highlights and noteworthy additions. - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/whats_new_in_windows_server_2003_active_directory/ - Categories: Active Directory (AD) - Article Type: Overview Looking for an overview of what's new in Active Directory in Windows Server 2003? Daniel points out the highlights and noteworthy additions. What's new in Windows Server 2003 Active Directory? The Active Directory service is an essential and inseparable part of the Windows Server 2003 network architecture that provides a directory service designed for distributed networking environments. Active Directory provides a single point of management for Windows-based user accounts, clients, servers, and applications. It also helps organizations integrate systems not using Windows with Windows-based applications and Windows-compatible devices, thus consolidating directories and easing management of the entire network operating system. Companies can also use Active Directory to extend systems securely to the Internet. Active Directory thus increases the value of an organization's existing network investments and lowers the overall costs of computing by making the Windows network operating system more manageable, secure, and interoperable. Active Directory plays such an important role in managing the network, that as you prepare to move to Windows Server 2003, it is helpful to review the new features of the Active Directory service. New Active Directory Features With the new Active Directory features in Standard Edition, Enterprise Edition, and Datacenter Edition, more efficient administration of Active Directory is available to you. New features can be divided into those available on any domain controller running Windows Server 2003, and those available only when all domain controllers of a domain or forest are running Windows Server 2003. Features Available If Any Domain Controller Is Running Windows Server 2003 The following list summarizes the Active Directory features that are enabled by default on any domain controller running... --- ### What You Need to Know About Securing Your Virtual Network - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/what-you-need-to-know-about-vmware-virtualization-security/ - Categories: Virtualization - Article Type: Overview A lot of people think that if you virtualize, let's say, a Windows 2003 Server, that virtualized system should be secure because it is completely separate from the VMware ESX Server operating system and it could be, potentially "protected" by VMware ESX Server. This is not true and there are a lot of things you need to know about virtualization security. In this article, I will cover what you need to be aware of when it comes to securing your Virtualized Servers. Why Do I Care About Securing My Virtual Servers? A recent study stated that about 40% of the Fortune 100 and 1000 companies use virtualization. That is a LOT of companies, a LOT of virtual hosts, and a LOT of guest operating systems (virtual machines). Just because they are virtualized doesn't' give them any MORE security. In fact, they could even be LESS secure. While it is generally true that virtualized servers are about as secure as their physical server counterparts, there are some security issues that virtualization brings. Here is my short list: No matter what virtualization operating system you choose (VMware ESX, Virtual IRON, or others), you are introducing a new operating system on your network and that is always a cause for security concern. Because you are bringing on a new operating system, there could be security holes that are in need of patching The possibility exists for guest to guest attacks Because virtual guest systems tend to move around with high... --- ### Windows Server 2003 SP1 Patches - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/windows_server_2003_sp1_patches/ - Categories: Windows Server 2003 - Article Type: Overview   You should consider installing Service Pack 1 as soon as possible During March 2005 Microsoft released SP1 for Windows Server 2003. SP1 is the latest collection of updates for Windows Server 2003. To download SP1 for Windows Server 2003: Download Windows Server 2003 SP1 Network Installation (329mb) The Network Installation is ideal for IT professionals installing SP1 on multiple computers. SP1 is also available via the Windows Update site See the Windows 2003 SP1 Slipstreaming page for info on how to integrate SP1 into your existing media. Required Patches Windows Server 2003, Standard and Enterprise editions running SP1 require the following security-related patches: Make sure you read Internet Explorer 6 on Windows Server 2003 Patches before you go on. October 2005 MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706) MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) August 2005 MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587) MS05-041 : Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591) MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) MS05-039 : Vulnerability in Plug and Play... --- ### Virtual Floppy Disks with VMware - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual-floppy-disks-vmware/ - Categories: Virtualization - Article Type: Overview You might be thinking that floppy disks are "dead", right? Well, you are correct that the physical floppy 3. 5" disks (or physical floppy disks of any size) are not used anymore. However, the use of virtual floppy drives is very much alive and surprisingly useful. In this article, we will show you how to use virtual floppy drives with VMware Workstation or VMware Server. What is a virtual floppy drive? Like a regular floppy disk drive, a virtual floppy disk is mounted on your common floppy disk drive letter, A:. However, the difference is that, instead of being a physical floppy disk that is inserted into the drive, the virtual floppy is an image file that is really located on your hard drive. The benefits to using virtual floppies and virtual floppy imaging tools are: Ability to boot certain applications - like a Linux virtual router/firewall on a floppy (read more about this here: http://www. rtfm-ed. co. uk/? p=101) Ability to transfer files between systems No Floppy media to storage, search or get damaged (do you really have floppies lying around anymore, I hope nor) If you need to get data on a virtual floppy, a virtual floppy imaging tool can be used to save you the steps of having to first boot a virtual machine, copy your data to the virtual machine, then to the virtual floppy. How do you create Virtual Floppy Files? Virtual floppy files usually have an extension of . FLP or . IMG. They can be created with... --- ### How to Mount VMware Virtual Disks Without VMware - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_mount_vmware_virtual_disk_without_vmware/ - Categories: VMware - Article Type: How To VMware Workstation and Server uses virtual disk files as the disk drives for virtual machines. These files (ending in . vmdk) are just files on the host’s hard drive. There are a number of scenarios where you would want to mount these virtual disks on the host operating system. Perhaps you want to transfer a file to or from the virtual disk or maybe the operating system is corrupt on the virtual disk and you want to make a registry change. No matter what the case, the VMware disk mount utility is available to serve this need. What Does The VMware Disk Mount Utility Do? The VMware disk mount utility allows you to mount a VMware virtual disk (. vmdk file) on a host Windows system. That disk is mounted as a drive letter (letter D: or greater) and you can then read, write, or modify that disk. You can only mount FAT or NTFS virtual disks. If you mount a virtual disk that has snapshots, any changes you make to the virtual disk will be lost if you revert to the snapshot. Also, you should know that you cannot mount a virtual disk from a virtual machine that is currently running or is suspended. Although VMware offers this utility for download, there is NO support offered for the VMware disk mount utility. Where Do I Obtain The Disk Mount Utility? To obtain the VMware disk mount utility, go to the VMware disk mount download website and accept the... --- ### Understanding VMware VMX Configuration Files - Learn How To Create and Edit VMX Files - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/virtual_vmware_vmx_configuration_files/ - Categories: VMware - Article Type: Overview In our article called VMware Disk Files Explained, we talked about the different VMware files on disk. In particular, we talked about the important VMware VMX configuration file. In this article, we'll go into more details on this critical file. What are VMX Files? In our previous article, VMware Disk Files Explained, we covered how a VMX file is the primary configuration file for a virtual machine. When you create a new virtual machine and answer questions about the operating system, disk sizes, and networking, those answers are stored in this file. As you can see from the screenshot below, a VMX file is actually a simple text file that can be edited with Notepad. VMX files are located in each of the folders of each of your virtual machines. For example, my Window XP Professional virtual machine is located in c:'Virtual Machines'Windows XP Professional and it is called Windows XP Professional. vmx. When I right-click on that file and click Open With and Wordpad, Here is what I see: If you just double click on the file, it will open in your VMware Server Console. Exploring a VMX File If we look into more detail, we can see the syntax of a VMX file and how it is constructed. Here are important tips and syntax of note: A hash (or pound sign, #) are used for comments. Thus, anything that starts with a # sign is ignored and considered a comment. The displayName is what is used... --- ### Why you need to Decommission Exchange 2003 Servers after your Exchange 2007 Upgrade - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/decommission-exchange-2003-servers-exchange-2007-upgrade/ - Categories: Exchange Server - Article Type: Overview The Exchange Server 2003 Setup program was designed from the very beginning to allow you to uninstall Exchange server should you have the need. Even so, removing Exchange Server 2003 from and Exchange Server 2007 organization requires a little bit more work than what you might initially expect. In this article, I'll show you the trick to removing the last Exchange 2003 server from your Exchange 2007 organization. Before you get started... Before you get started, I just want to quickly say that if you're reading this that I am assuming that you are actually ready to remove Exchange Server 2003 from your organization. That being the case, you should make sure that all of the mailboxes and public folders have been removed from the Exchange 2003 servers prior to using the technique that I'm about to show you. What is the Recipient Update Service? The real trick to removing Exchange Server 2003 from your organization is reassigning the Recipient Update Service. Setup will not allow you to uninstall Exchange Server 2003 until the Recipient Update Service has been reassigned to another server. This is ironic since Exchange Server 2007 doesn't even use the Recipient Update Service. Even so, this task must be performed. Reassigning the Recipient Update Service is fairly easy. Begin the process by opening the Exchange System Manager. Now, navigate through the console tree to Recipients | Recipient Update Service. When you do, the console screen should look something like what you see in... --- ### Performance Monitoring the Easy Way, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/performance-monitoring-easy-way-part-2/ - Categories: Windows Server 2008 - Article Type: Overview In the previous article in this series, I explained why I believe that performance monitoring is becoming more important now than it ever has been before.   I also showed you a quick trick for getting an idea of how your system's resources are currently being used.   In this article, I want to continue the discussion by showing you some more techniques for monitoring your system's performance.   One of my major goals in writing this article though, is to keep things simple.   There are countless articles on the Internet (including some that I have written) that address all of the various complexities associated with using the Performance Monitor.   I think that although these types of articles certainly have their place, they tend to scare a lot of administrators away from performance monitoring.   Although performance monitoring can be very complicated, it doesn't have to be.   Therefore, my goal is to help you to understand what is going on with your system, but to do so when a way that you can understand regardless of your level of experience. Monitoring CPU Resources In the previous article, I showed you how you could use a screen similar to the one shown in Figure A to see how hard a CPU is working, and what processes are consuming the most CPU time.   Although that technique works well in a pinch, it can be a little bit misleading. Figure A The overview screen works well in a pinch, but it can be misleading... . --- ### Using Exchange Management Shell to Configure Content Filtering, Part 2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/using-exchange-2007-management-shell-configure-content-filtering-part2/ - Categories: Exchange Server - Article Type: Overview In the previous article in this series (Using Exchange Management Shell to Configure Content Filtering, Part 1), I showed you how to use the Set-ContentFilterConfig command to specify bypassed sender domains in Exchange Server 2007. As you may recall though, the biggest problem was that whenever you enter this command, the existing list of bypassed domains is overwritten. Suppose for example that you wanted to list Microsoft. com and Contoso. com as bypassed sender domains. It would stand to reason that you could accomplish this by entering the following commands: ​Set-ContentFilterConfig –BypassedSenderDomains Microsoft. com ​Set-ContentFilterConfig –BypassedSenderDomains Contoso. com However, if you enter these two commands in sequence then the listing for Microsoft. com will be replaced by Contoso. com. There is a way to add both domains (and any other domains that you may want to include) to the list of bypassed sender domains, but it is a little bit tricky. If you want to append additional data to a property that already contains data, so as to create a multi valued property, you will have to make use of variables. In the previous article, I showed you how you could use the Get-ContentFilterConfig command to display the data that is already in the content filter. What we can do is to assign this command to a variable. That way, all of the data that currently resides in the content filter is assigned to a variable. In this particular case, the actual command that you would use is: ​$list = (Get-ContentFilterConfig). BypassedSenderDomains Notice in... --- ### Delete IE7 History From the Command Line - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/delete-ie7-history-from-command-line/ - Categories: Windows Server 2008 - Article Type: How To When cloning a computer running Windows XP, 2003, Vista or 2008, one of the tasks that you should perform before running SYSPREP is to delete the Internet Explorer 6 history, stored passwords, offline files and cookies. Same goes when preparing a computer for transfer to another user, or simply requiring that previous user data be deleted. Through the usual IE GUI One method of performing this task is by using the IE7 GUI. Open Internet Explorer, and from the Tools menu, open Internet Options. Go to the General tab, and in the Browser History section, click on the Delete button. In the Delete Browser History window, click one of the following buttons, based upon your requirements: Temporary Internet Files > Delete files – To delete copies of web pages, images, and media that  are saved for faster viewing. Cookies > Delete cookies – To delete cookies, which are files stored on your computer by websites to save preferences such as login information. History > Delete history – To delete the history of the websites you have visited. Form data > Delete forms – To delete all the saved information that you have typed into forms. Passwords > Delete passwords – To delete all the passwords that are automatically filled in when you log on to a website you've previously visited. Delete all – To delete all of the above in one operation. By using a command However, sometimes it is much easier to simply run a command line... --- ### Disable Administrative Shares - Published: 2009-01-08 - Modified: 2024-09-17 - URL: https://petri.com/disable_administrative_shares/ - Categories: Windows Client OS - Article Type: How To How can I disable the Administrative Share creation in Windows NT/2000/XP/2003? Every Windows NT/W2K/XP/2003 machine automatically creates a share for each drive on the system. These shares are hidden, but available with full control to domain administrators. The drive letter, followed by the $ sign is the name, and it is shared from the root. When trying to attain a highly secure network, you may wish to address this potential security issue by disabling these shares, or at least restricting their permissions to specific users or services.   The default-hidden shares are: C$ D$ E$ - Root of each partition. For a Windows NT workstation/W2K/2003/XP Professional computer only members of the Administrators or Backup Operators group can connect to these shared folders. For a Windows NT Server/W2K Server computer, members of the Server Operators group can also connect to these shared folders. ADMIN$ - %SYSTEMROOT% This share is used by the system during any remote administration of a computer. The path of this resource is always the path to the W2K/NT system root (the directory in which W2K/NT is installed usually C:Winnt and in XP it's C:Windows). FAX$ - On W2K Server, this used by fax clients in the process of sending a fax. The shared folder temporarily caches files and accesses cover pages stored on the server. IPC$ - Temporary connections between servers using named pipes essential for communication between programs. It is used during remote administration of a computer and when viewing a computer's shared resources... . --- ### Disable Password Requirements in Windows Server 2003 Domains - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/disable_password_requirement_in_win2003_domain/ - Categories: Active Directory (AD) - Article Type: How To How can I disable the password requirement for a user in a Windows Server 2003 Active Directory domain? Windows Server 2003 provides security policies that ensure that all users select strong passwords. Creating a password policy involves setting the following options in the Default Domain Group Policy object. These policies, with the exception of those settings related to password lifetime, are enforced on all users in a domain. The default password filter (Passfilt. dll) included with Windows Server 2003 requires that a password: Is not based on the user’s account name. Contains at least six characters. Contains characters from three of the following four categories: Uppercase alphabet characters (A–Z) Lowercase alphabet characters (a–z) Arabic numerals (0–9) Nonalphanumeric characters (for example, ! $#,%) As stated above, this policy is enabled by default. In some occasions, such as testing, lab-building, classes and so on, you might want to disable this built-in requirement. Security Warning: Bare in mind that this setting can only be enabled/disabled at the domain level, and NOT on an OU level. Disabling the password requirement for an entire domain will lower your security configuration, and should only be done when absolutely necessary. In order to disable this requirement you need to edit the Default Domain Policy for your domain. Go to Administrative tools folder. Double-click on the Default Domain Security Policy icon. Note: If for any reason you don't see that icon you can still edit the Default Domain Group Policy from the AD Users and Computers snap-in,... --- ### How can I prevent users from writing to USB removable disks (USB flash drives)? - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/disable_writing_to_usb_disks_in_xp_sp2/ - Categories: Disk Management - Article Type: How To USB removable disks (also known as flash drives or "Disk on Key" and other variations) are quickly becoming an integral part of our electronic life, and now nearly everybody owns one device or another, in forms of small disks, external hard drives that come enclosed in cases, card readers, cameras, mobile phones, portable media players and more. Portable USB flash drives are indeed very handy, but they can also be used to upload malicious code to your computer (either deliberately or by accident), or to copy confidential information from your computer and take it away. Microsoft has introduced some changes into Windows XP Service Pack 2 that allow an administrator some control over how USB Removable Disks (or flash drives) are handled. A new storage device policy named WriteProtect makes it possible to prevent all removable USB drives from being written to. Users can still read from these devices, but are not longer able to write to them. This tweak will only work in Windows XP SP2 and above. You can also Disable Writing to USB Disks with GPO. Block writing to USB Removable Disks To block your computer's ability to use USB Removable Disks follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlStorageDevicePolicies Create the following value (DWORD): WriteProtect and give it a value of 1. Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete... --- ### Download Windows XP Reskit Tools - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/download_windows_xp_reskit_tools/ - Categories: Downloads - Article Type: Overview Where can I get the Windows XP Support Tools? The Windows XP Resource Kit Tools are a set of software tools for administrators, developers, and power users to manage Active Directory, Group Policy, TCP/IP Networks, Registry, Security, Scalability and many other areas of the Windows XP operating system. Note: I recommend using the Windows Server 2003 Support Tools instead, as they are newer than the XP ones and include a few new tools. The Windows Support Tools for Windows XP can be installed only on a computer that is running the Windows XP operating system. The Windows Support Tools for Windows XP cannot be used to upgrade Microsoft Windows NT or Microsoft Windows 2000 Support Tools installed on Windows NT or Windows 2000. Since Windows XP SP2 came out, a newer version of the Support Tools is available for download, see link below. The following Support Tools have been updated in Service Pack 2: bitsadmin. exe extract. exe httpcfg. exe iadstools. dll ipseccmd. exe netdom. exe replmon. exe Note: The original XP Reskit tools are available on the XP installation CD in the 'support'tools directory. Supported Operating Systems: Windows Server 2003, Windows XP Windows XP 2600 Windows XP SP1 and SP2 Windows Server 2003 family (3790) Plus, 30 MB of free disk space are needed for the installation. Download the Windows XP Support Tools (4. 8mb - smaller download from Microsoft, missing the Deployment Tools and some features) Download the Windows XP Support Tools (12. 5mb) Download the (12. 5mb - local... --- ### Enable Theme Support in Windows Server 2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/enable_themes_on_windows_2003/ - Categories: Windows Client OS - Article Type: How To How can I enable theme support in Windows Server 2003? Windows Server 2003 has the theme support services disabled by default. To enable themes on Windows Server 2003 follow the next steps: Go to the Services applet in Administrative Tools (or click Start, then Run, and type "services. msc" (without quotes) and click OK). Find the "Themes" service, right-click and select Properties, select "Automatic" instead of "Disabled" in the startup type box. Click Apply. Right-click the Themes service and select Start. Click OK. You can also modify start state and start it from a Command Prompt console by using the following command: ​sc config Themes start= auto and sc start Themes or net start Themes For now you only have Luna Blue, Silver and Olive Green to choose from. Go to Control Panel, select Display and then go to the Appearance tab. In the "Windows and Buttons" drop-down list select "Windows XP Style". Click Ok. Now you can choose the color scheme. --- ### Free Packet Sniffers for Windows 2003/Vista/2008 - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/free-packet-sniffers-for-windows-2003-vista-2008/ - Categories: Windows Server 2008 - Article Type: Overview A packet sniffer is usually used to analyze network traffic. The reason for using a packet sniffer (or simply called "sniffer") is to configure the NIC to work in a mode called "promiscuous" mode. Without going into that mode, Ethernet network interface cards normally work in a "filter" mode that ignores all traffic that doesn't belong to it. By working in "promiscuous" mode we are allowing the capture of ANY frame that is transmitted on the wire, even though it is not destined for that NIC. With that said, a packet sniffer is a actually wire-tap device that plugs into a computer networks and eavesdrops on the network traffic. Note: The word "sniffer" is a registered trademark by Network Associates referring to the "Sniffer(r) Network Analyzer". However, the term "sniff" is used in many other products (some of which are listed in this document) and the term "sniffer" is more popular in everyday usage than alternatives like "protocol analyzer" or "network analyzer". Typical uses of packet sniffer programs include: Automatic sifting of clear-text passwords and usernames from the network. Used hackers/crackers in order to break into systems Conversion of data to human readable format so that people can read the traffic Fault analysis to discover problems in the network, such as why computer A can't talk to computer B Performance analysis to discover network bottlenecks Network intrusion detection in order to discover hackers/crackers Network traffic logging, to create logs that hackers can't break into and erase You can... --- ### Grant Full Mailbox Rights to an Administrator on Exchange 2000/2003 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/grant_full_mailbox_rights_on_exchange_2000_2003/ - Categories: Exchange Server - Article Type: How To How do I grant the administrator(s) (or any other user) full mailbox right on Exchange 2000/2003 mailboxes? In Microsoft Exchange Server 5. 5, when you grant Service Account Admin privileges on the Site container to a Microsoft Windows account, you grant that account unrestricted access to all mailboxes. Because Exchange 2000 and Exchange Server 2003 do not use a service account, even accounts with Enterprise Administrators rights are denied rights to access all mailboxes, by default. This means that Exchange Full Administrators do not have the right to open any mailbox found on any server within the Exchange organization. In fact, if your logon account is the Administrator account or is a member of the Domain Admins or Enterprise Admins groups, then you are explicitly denied access to all mailboxes other than your own, even if you otherwise have full administrative rights over the Exchange system. However, unlike Exchange Server 5. 5, all Exchange 2000/2003 administrative tasks can be performed without having to grant an administrator sufficient rights to read other people's mail. This default restriction can be overridden in several ways, but doing so should be in accordance with your organization's security and privacy policies. In most cases, using these methods is appropriate only in a recovery server environment. Granting right to a specific mailbox Use the following procedure to grant access to an Exchange 2000 or an Exchange 2003 mailbox: Note: You must have the appropriate Exchange administrative permissions to do so. Start Active Directory Users and... --- ### How to Disable SMB 2.0 on Windows Vista/2008 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/how-to-disable-smb-2-on-windows-vista-or-server-2008/ - Categories: Windows Server 2008 - Article Type: How To Server Message Blocks Protocol (SMB) is the file sharing protocol used by default on Windows-based computers. SMB 1. 0 was designed for early Windows network operating systems such as Microsoft LAN Manager and Windows for Workgroups, but until Windows Server 2008 and Vista, all Microsoft-based operating systems continued to use it more or less in its original format. SMB 2. 0 was introduced in Windows Vista and Windows Server 2008. SMB 2. 0 is designed for the needs of the next generation of file servers. Windows Server 2008 and Windows Vista support both SMB 1. 0 and SMB 2. 0 in order to preserve backward compatibility. Some of the enhancements in SMB 2. 0, include: Sending multiple SMB commands in the same packet which reduces the number of packets sent between a client and server Larger buffer sizes Increased scalability, including an increase in the number of concurrent open file handles on the server and the number of shares that a server can share out Support for Durable Handles that can withstand short network problems Support of Symbolic Links Testing done with copying large files between Windows Vista and Windows Server 2008, and then Vista to Windows 2003, have shown that by using SMB 2. 0 the file copying was, in averege, 2 times faster than with older operating systems. However, while SMB 2. 0 seems to do a good job if BOTH client and server OSs support it, in some cases it will slow things down. The reson for this is that the version... --- ### IconZone - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/iconzone/ - Categories: Administrative Tools and Scripts - Article Type: How To Description This utility changes desktop icons, start-menu icons and quick-launch icons as well as proxy settings whenever the computer's IP address is changed. It is also capable of running scripts whenever the IP address changes. Here are a number of usage scenarios: Configure a laptop computer to automatically set the organizational proxy server as the internet proxy server whenever the laptop is connected to the office LAN and disable the proxy settings when the user is disconnected. Configure a laptop computer to display an outlook shortcut on the desktop when the laptop is connected to the office LAN and replace it with a web-access internet shortcut when the laptop is disconnected Configure to run a script that sends an administrative notification whenever the computer is connected to the LAN. These are only few samples. You could use IconZone in many ways to enhance user experiment and automate your network. Requirements: This tool requires Windows 2000, Windows XP or Windows Server 2003. Download Download (106kb) You need to extract the tool/script found in the downloaded file by using WinZip or similar. Installation First, download IconZone and expand it into any location on your hard drive. Note: It is recommended not to use a temporary directory but a permanent directory such as C:Program filesIconZone. Click Start a Run and Type the path to IconZone. exe with the /Setup argument. For example: ​C:Program filesIconZoneiconzone. exe /setup If IconZone is not configured to launch automatically when windows starts, the following screen will appear:   If... --- ### Import Virtual Machines from Virtual Server to Hyper-V with VMC2HV - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/import-virtual-machines-virtual-server-hyper-v-vmc2hv/ - Categories: Hyper-V - Article Type: How To Matthijs ten Seldam, who has developed VMRC+ (see my Manage Virtual Server Machines with VMRC Plus article for more info), has released a new tool that helps import Virtual Server or Virtual PC virtual machines to Hyper-V. You see, the VHD file is compatible between the two, but the configuration file format has changed. While System Center Virtual Machine Manager (SCVMM) 2008 can also accomplish the same task, SCVMM is not free, while VMC2HV is. VMC to Hyper-V Import Tool, or VMC2HV for short, imports the configuration from a Virtual Machine Configuration (VMC) file used in Virtual Server 2005 or Virtual PC 2007, and converts it to the format used by Hyper-V. The tool reads the VMC file and maps all relevant properties to those used by Hyper-V. For those properties that did not exist, it provides additional options. The properties that no longer exist are ignored. VMC2HV not only imports the configuration but lets you adjust almost any setting before creating the VM in Hyper-V. Prior to using VMC2HV, when you wanted to move a virtual machine from Virtual Server 2005 or Virtual PC 2007 to Hyper-V, you had to take the VHD hard disk file and move/copy it to the Hyper-V server, and then instead of just adding the virtual machine, you had to create a totally new one, enter all the right hardware settings, and use the original VHD file as the virtual machine's hard disk. This manual process can by quite annoying and it... --- ### How do I install and configure Windows 2000 DNS server? - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_and_configure_w2k_dns_server/ - Categories: DNS - Article Type: How To The Domain Name System (DNS) is the Active Directory locator in Windows 2000. Active Directory clients and client tools use DNS to locate domain controllers for administration and logon. You must have a DNS server installed and configured for Active Directory and the associated client software to function correctly. This article guides you through the required DNS configuration. Install Microsoft DNS Server Click Start, point to Settings, and then click Control Panel. Double-click Add/Remove Programs. Click Add and Remove Windows Components. The Windows Components Wizard starts. Click Next. Click Networking Services, and then click Details. Click to select the Domain Name System (DNS) check box, and then click OK. Click OK to start server Setup. The DNS server and tool files are copied to your computer. Continue to the next step to configure the DNS server. Configure the DNS Server Using DNS Manager These steps guide you through configuring DNS by using the DNS Manager snap-in in Microsoft Management Console (MMC). Click Start, point to Programs, point to Administrative Tools, and then click DNS Manager. You see two zones under your computer name: Forward Lookup Zone and Reverse Lookup Zone. The DNS Server Configuration Wizard starts. Click Next. If the Wizard does not auto-start, right-click your server name object in the DNS Manager console and choose Configure your Server. Choose to add a forward lookup zone. Click Next. The new forward lookup zone must be a primary zone so that it can accept dynamic updates. Click Primary,... --- ### Install VM Additions on Windows Vista Beta and Virtual Server R2 - Published: 2009-01-08 - Modified: 2024-09-24 - URL: https://petri.com/install_vs_r2_vm_additions_on_windows_vista_beta/ - Categories: Windows Vista - Article Type: How To How can I install the Virtual Server R2 VM Additions on Windows Vista? The Virtual Additions are a set of features that improve integration of the host and guest operating systems, as well as the performance of the guest operating system. For example, without the VM Additions to any VM, whenever you'll want to perform any mouse-click operation within the VM and then release the mouse control from the VM to the real host operating system, you will need to do so by pressing the Right ALT key. Installing VM Additions will allow the mouse movement to be dynamic. Windows Vista, running as a virtual machine, benefits greatly from these additions. Without them performance is sluggish at best, and it might take ages to do basic tasks. This tip, although specifically written for the latest Windows Vista beta 1 build (currently 5365 as of late April 2006), can be also implemented on any other VM that refuses to automatically run the VM Additions. In order to install the VM Additions on Windows Vista VM please perform the following steps: Open Internet Explorer and navigate to the URL of your Virtual Server R2 machine, usually in the format of http://computername/VirtualServer/VSWebApp. exe? view=1 Note that if you have SSL enabled for the administrative website of VS, you will need to use HTTPS instead. In the navigation pane, under Virtual Machines, point to Configure, and then click the appropriate virtual machine. Since we need to turn on the VM, if the virtual machine is not... --- ### Installing Link Layer Topology Discovery (LLTD) on Windows Server 2003 > Link Layer Topology Discovery (LLTD) graphically displays the topology of a network. This post shows you how to setup LLTD on Windows Server 2003. - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/installing-link-layer-topology-discovery-on-windows-server-2003/ - Categories: Windows Server 2003 - Article Type: How To Link Layer Topology Discovery (LLTD) graphically displays the topology of a network. This post shows you how to setup LLTD on Windows Server 2003. In one of my previous articles – "Hide your Vista Computer on the Network" I wrote about what the network map is in Vista. The network map on a computer running Windows Vista shows a graphical view of the computers and devices on your network and how they are connected by using the LLTD protocol. Thing is, that in order to display Windows Vista/2008 computers in the network map you need not do anything special. However, in order to make Windows XP computers appear in it, you will need to download and install the LLTD responder before it can be detected and appear on the network map. You can read more about this issue in my "Installing Link Layer Topology Discovery (LLTD) on Windows XP" article. You can download the update from the following link: Link Layer Topology Discovery (LLTD) Responder (KB922120) All this is good and well, however there's one little catch. By default, you can’t run the LLTD responder update under Windows 2003. If you try to run the update you'll get this error: However, you can try to force the update to run by performing these steps: Note: Installing LLTD on Windows Server 2003 is NOT SUPPORTED by Microsoft, and has mixed results. Do NOT do it if you don't know what you're doing, and if something breaks, don't expect anyone to help you. After downloading the update, navigate to the folder where you've saved the file and right-click it. Select Properties.   Next,... --- ### Limitations of Alternate PF Trees - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/limitations_of_alternate_pf_trees/ - Categories: Exchange Server - Article Type: Overview Why does Outlook still show only the basic Public Folders structure although I've created additional Public Folder hierarchies? When you install Exchange, a default public folder hierarchy is created. All MAPI clients such as Microsoft Outlook can access this public folder hierarchy to read messages and store documents. You can create subfolders to reflect the departments in your organization. In addition to this default hierarchy, you can create alternate public folder hierarchies for applications or Web browsers to access (See Create new PF Tree on Exchange 2000 and Create new PF Tree on Exchange 2003). Because of their intended use, there are different access methods for the default public folder hierarchy than for alternate hierarchies that you create. The general purpose of a public folder hierarchy is displayed on the General tab of a public folder root. Although Exchange 2000 allows multiple Public Folder roots, current Outlook clients don't, so you can't display these other structures in Outlook. However, you can view them via the Web (OWA - Outlook Web Access) with the following format: http://exchange server/public folder root or via EXIFS just like you'd look at any shared folder on the network. See the following pages on my site for more info: EXIFS Access to Alternate PF Trees in Exchange 2000 EXIFS Access to Alternate PF Trees in Exchange 2003 Web Access to Alternate PF Exchange 2003 note: Exchange Server 2003 does not expose drive M: by default so for you, the only method of providing access to the... --- ### Daniel Petri’s MCSE & System Administrator Job Interview Questions – Part 3 – Exchange Server 2003 - Published: 2009-01-08 - Modified: 2009-01-08 - URL: https://petri.com/mcse-system-administrator-exchange-interview-questions/ - Categories: Exchange Server - Article Type: Overview This is a part 3 of my MCSE and System Administrator job interview sample questions. See previous parts at: Part 1 - Networking Part 2 - Windows Server 2003 Active Directory This article set is targeted at both the interviewer (who needs a pool of valid questions they can ask) and to the candidate (who wants a pool of sample questions they can prepare for). Needless to say, both MUST know what they're talking about. Also, although I consider these questions as a thorough verbal test for the candidate's knowledge, in most cases, when he or she passes this phase, I will also ask them to perform an actual hands-on lab based on my written exercises. I might also include these in a future part of this session. I have deliberately left out the answers to these questions. I want YOU to research them and take the time to actually learn these topics, if you don't know them already. Most sub topics start off with relatively easy questions where the candidate is supposed to demonstrate their knowledge on that topic. A few sentences will be enough to show their (lack of) knowledge on the topic. As always, your comments and feedback are more than welcome. Use the "Comment" form below to send them in. If you're using this interview question sample in your own environment please drop me a line telling me how it works for you. Also, placing a link to my site and giving me... --- ### Offer Remote Assistance in Windows XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/offer_remote_assistance_in_windows_xp/ - Categories: Networking - Article Type: How To Sometimes you're up against stupid or lamer users who can't figure out their GUI (not to mention basic computer skills). Sometimes these users will need your help in performing some task on their computer, but are not able to invite you to help them because of their lack of knowledge or simple lameness. To offer Remote Assistance to a remote XP PRO and Windows Server 2003 computers without the need for the user who is currently logged on to that computer to personally invite you to help him do the following: Click Start and select Help and Support. In the Search bar type Offer and press the green arrow to begin a search. You will get one result called "Offer Remote Assistance". Double click it and add it to your favorites if you want. You should make sure you performed the Enable Remote Assistance Offering in XP/2003 tip BEFORE going on because if you didn't you'll get this error: Also, you need to be a user with local administrative rights on the target computer. Assuming you did follow my tip, now enter the computer name for the remote XP/2003 computer. Press the Connect button. If all is ok you'll see a list of all current users on that computer. Select the one with the problems. Press the Start Remote Assistance button. A brief window will appear and then you will get the Waiting for an Answer window. You will require the remote user to acknowledge your offering... --- ### Planning FSMO Roles in Active Directory - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/planning_fsmo_roles_in_ad/ - Categories: Active Directory (AD) - Article Type: Overview What are the considerations for the FSMO placement in Active Directory? Windows 2000/2003 Active Directory domains utilize a Single Operation Master method called FSMO (Flexible Single Master Operation), as described in Understanding FSMO Roles in Active Directory. In most cases an administrator can keep the FSMO role holders (all 5 of them) in the same spot (or actually, on the same DC) as has been configured by the Active Directory installation process. However, there are scenarios where an administrator would want to move one or more of the FSMO roles from the default holder DC to a different DC. Windows Server 2003 Active Directory is a bit different than the Windows 2000 version when dealing with FSMO placement. In this article I will only deal with Windows Server 2003 Active Directory, but you should bear in mind that most considerations are also true when planning Windows 2000 AD FSMO roles. Single Domain Forest In a single domain forest, leave all of the FSMO roles on the first domain controller in the forest. You should also configure all the domain controller as a Global Catalog servers. This will NOT place additional stress on the DCs, while allowing GC-related applications (such as Exchange Server) to easily perform GC queries. Multiple Domain Forest In a multiple domain forest, use the following guidelines: In the forest root domain: If all domain controllers are also global catalog servers, leave all of the FSMO roles on the first DC in the forest. If all... --- ### Quickly See if your Server, PC or Laptop Supports Hyper-V - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly-see-if-your-server-pc-or-laptop-supports-hyper-v/ - Categories: Windows Server 2008 - Article Type: How To Virtual machine technology enables multiple operating systems to run concurrently on a single machine. Microsoft Hyper-V, a key feature of Windows Server 2008, enables one or more operating systems to run simultaneously on the same physical system. Hyper-V provides scalability and high performance by supporting features like guest multi-processing support and 64-bit guest and host support; reliability and security through its hypervisor architecture; flexibility and manageability by supporting features like quick migration of virtual machines from one physical host to another, and integration with System Center Virtual Machine Manager (SCVMM). Installing the Hyper-V role on a full installation of Windows Server 2008 is easy. All you need to do is to make sure you have the right hardware, both in CPU as well as in memory and disk that are calculated based upon the number of virtual machines and functions that the virtual machines are to perform on the host. Hyper-V requires specific hardware: An x64-based processor. Hyper-V is  available only in the x64-based versions of Windows Server 2008—specifically, the x64-based versions of Windows Server 2008 Standard, Windows Server 2008 Enterprise, and Windows Server 2008 Datacenter. Hardware-assisted virtualization must be available and be enabled in the BIOS. This is available in processors that include a virtualization option; specifically, Intel VT or AMD Virtualization. Hardware Data Execution Protection (DEP) must be available and be enabled in the BIOS. You must enable Intel XD bit (execute disable bit) or AMD NX bit (no execute bit). Frequently the question arises on how... --- ### Quickly Edit Quick Launch Icons in Windows XP/2003 - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/quickly_edit_quick_launch_icons_in_windows_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I quickly edit the items in the Quick Launch toolbar in Windows 2000/XP/2003? The Quick Launch toolbar is the area that's just right to the Start menu button, and where you can place your own shortcuts to some of your most used applications. Launching applications in this manner is much faster then having to go through the Start menu and clicking your way around. You just place your shortcut or application in the Quick Launch toolbar, and then you can fire it away with just one click. Adding items to the Quick Launch toolbar is easy. All you have to do is drag and drop to it. I prefer dragging with the right mouse button, that way you have more control over the action that being performed. Read more about it on the Quickly Add Quick Launch Icons in Windows XP/2003 article. Thing is that you might also need to edit the items that are in the Quick Launch toolbar, delete some, add others, and also change their properties or startup options. Since the Quick Launch is in fact a folder, it can be easily opened and used to manually edit and add items to it. Windows 2000/XP/2003 store the Quick Launch toolbar folder in the following place: ​"C:Documents and SettingsDanielApplication DataMicrosoftInternet ExplorerQuick Launch" You can manually navigate to that path, but an easier way is found in the Windows context menu. Just right-click an empty spot on the Quick Launch toolbar and select "Open Folder"... . --- ### Quickly Search the Web - Published: 2009-01-08 - Modified: 2024-11-19 - URL: https://petri.com/quickly_search_the_web/ - Categories: Windows Client OS - Article Type: How To How can I quickly search the web from my web browser? Searching the web for specific articles, sites and links can be quite tiresome as you go from one search engine to another. If you make a habit of always using the same search engine, be it Google, MSN Search, Yahoo! or any other site, here is a tip that will allow you to quickly and easily perform the search from Internet Explorer's address bar. After getting acquainted with this method you will no longer need to open the search engine's website prior to performing the search, thus enabling you to perform the search much quicker and with less mouse clicks. Sure, many search engines have their own customized search toolbar (such as Google's Toolbar, Yahoo's Toolbar and others). These toolbars have some great features such as Pop-up blockers, quick search links and so on. I use Google's Toolbar myself, but for quick web searches I still prefer the method outlined in this article. Even if you don't use the same search engine for each web search you make you can still use this tip and quickly perform searches on your favorite search engine with just 2-3 keyboard clicks. The trick is performed by inserting specific keywords and search strings for each search engine into your computer's registry. For example, to search for the words "Daniel Petri" in Google, instead of opening a new browser window, surfing to Google's website, and performing the search, you can now... --- ### Remote to a Windows Vista Machine using VNC on Windows XP - Published: 2009-01-08 - Modified: 2024-12-03 - URL: https://petri.com/remote_windows_vista_using_vnc/ - Categories: Windows Vista - Article Type: How To Through the use of VNC and port-forwarding, you can control your Windows Vista or Windows XP computer from inside and outside your local area network. For the purposes of this tutorial, assume you have a Windows XP laptop and you have Windows Vista installed on your desktop, and you want to have complete control of your Windows Vista desktop computer from your Windows XP laptop. A screenshot of this is shown here: The first step is to install TightVNC. TightVNC needs to be installed on both the Windows XP computer and the Windows Vista computer. You can download TightVNC from the TightVNC homepage. I will first demonstrate how to setup TightVNC in Windows Vista. Installing TightVNC (must be done in Vista and XP) Once you have downloaded TightVNC, double click the icon to begin the installation process and click Next: After you agree to the TightVNC license, install TightVNC to the C:'Program Files'TightVNC directory and click Next: Select all three components of TightVNC: TightVNC Server, TightVNC Viewer, and Web pages and documentation, and Click Next: Leave the default Start Menu shortcut as "TightVNC" and click Next: The following screen will be ask you to "Select Additional Tasks. " Only check "Associate . vnc files with TightVNC Viewer" and click Next: TightVNC will summarize your selections. Click Install and TightVNC will begin the install process: Congratulations, the installation process is complete, click Finish: Note: You need to repeat the exact same process in Windows XP. After you have completed the... --- ### Active Directory Offline Defragmentation - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/active_directory_offline_defragmentation/ - Categories: Active Directory (AD) - Article Type: Overview How do I defragment the Active Directory to make it smaller in size? The size of NTDS. DIT will often be different sizes across the domain controllers in a domain. Remember that Active Directory is a multi-master independent model where updates are occurring in each of the domain controllers with the changes being replicated over time to the other domain controllers. The changed data is replicated between domain controllers, not the database, so there is no guarantee that the files are going to be the same size across all domain controllers. Windows 2000 and Windows Server 2003 servers running Directory Services (DS) perform a directory online defragmentation every 12 hours by default as part of the garbage-collection process. This defragmentation only moves data around the database file (NTDS. DIT) and doesn’t reduce the file’s size - the database file cannot be compacted while Active Directory is mounted. Active Directory routinely performs online database defragmentation, but this is limited to the disposal of tombstoned objects. The database file cannot be compacted while Active Directory is mounted (or online). An NTDS. DIT file that has been defragmented offline (compacted), can be much smaller than the NTDS. DIT file on its peers. However, defragmenting the NTDS. DIT file isn’t something you should really need to do. Normally, the database self-tunes and automatically tombstoning the records then sweeping them away when the tombstone lifetime has passed to make that space available for additional records. Defragging the NTDS. DIT file probably won’t help your... --- ### Advanced Drag-and-Drop Techniques in Vista - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/advanced_drag_and_drop_vista/ - Categories: Windows Vista - Article Type: How To Ever since Microsoft introduced mice into their operating systems (something done earlier by other vendors such as Apple and pioneered by the Xeros PARC - Palo Alto Research Center - mythical design team) we could drag-and-drop items from one spot of the graphical user interface (or GUI) to a different spot. I will not go into the basics of drag-and-drop as I assume that if you’re advanced enough to read this article then you’ve mastered these actions as a reasonable level, but instead I will remind you of some of the advanced techniques in dragging-and-dropping. These will allow you to have more control over items when you're dragging-and-dropping items. Since many users deal with more than just typing documents and replying to emails, most of us will have had a chance to drag-and-drop a file or folder from, for instance, a USB flash disk to their My Documents folder. It is important for us to be able to determine what will happen when you drag-and-drop an item from one location in the GUI to another, and that is before you perform the actual dropping. Now here is where the challenge hides: Drag-and-drop functions are handled differently in various situations. Based on the drag-and-drop scenario the end result changes, and unless you know what will be the outcome of your drag-and-drop action, you might find yourself without the necessary files in the middle of an important presentation. Therefore, in order to achieve the required result you will sometimes... --- ### Before you begin - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/before_you_begin/ - Categories: Windows Client OS - Article Type: How To Before you begin messing with your system The registry is no child's play Modifying the registry can cause serious problems that may require you to reinstall your operating system. I cannot guarantee that problems resulting from modifications to the registry can be solved nor do I provide technical support for such issues if they occur. Use the information provided at your own risk. As always, your tips and recommendations are welcome . Before you dig in Tweaking isn't for everyone. If you're using XP or Windows 2000 and you like it the way it is, leave things alone. Some changes are hard to undo, so don't make needless changes to your operating system. Likewise, weigh each suggestion against the likely benefit you'll gain. Don't tear apart a working operating system or subsystem unless you believe the results are truly worth it. Anyway, before you do any significant tweaking work on any operating system, always make a full backup. You need to be able to restore things to the way they were before, if a change doesn't work out the way you intended. In Windows XP, it's also a good idea to make a "Restore Point" before each and every change. System Restore can roll back many minor system changes without requiring you to restore your full backup. Also, it makes no sense to try to tune and tweak an operating system that's fundamentally incomplete or broken. I suggest to always try to use a clean installation of the OS, and... --- ### Change the Registered User and Company Name in Windows XP / Vista - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/change_registered_user_and_company_vista_xp/ - Categories: Windows Vista - Article Type: How To Network administrators have had countless times that they need to change the registered user and company name for a Windows installation. Unfortunately, this process is rather difficult and needs to be done through the registry. Fortunately, by following the steps below you will be able to edit the registered user and company name for either a Windows XP computer or a Windows Vista computer. To begin, first verify the registration details of your Windows computer. For Windows XP and Windows Vista click on Start and right-click on My Computer (just Computer). You will see the screen shown below. For privacy purposes I have blurred my product key.   In order to change your registered user name, you will need to edit this information in your registry. Note: Editing the registry has the potential to cause serious (and unrecoverable) damage to your PC. If you are at all uncomfortable editing the registry, please do not attempt the following. In Windows Vista, open your registry by clicking the Start Menu and typing regedit. Windows will prompt you for confirmation before running the Registry Editor. In Windows XP, open your registry by going to Start and then Run and typing regedit. In your registry you will have several choices, untie the tab named HKEY_LOCAL_MACHINE   Continue to navigate through the registry by untying the following tabs: Software, Microsoft, Windows NT, Current Version. The Current Version will have two editable sections called RegisteredOrganization and RegisteredOwner.   In order to change... --- ### Changes in Vista Service Pack 1 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/changes-windows-vista-sp1-enhancements-security-quality-bugfix/ - Categories: Windows Vista - Article Type: News Scheduled to be released in the beginning of 2008, Windows Vista Service Pack 1 (SP1) delivers improvements and enhancements to existing Vista features that significantly impact customers, but it does not deliver substantial new operating system features. Microsoft has published a comprehensive document outlining exactly what difference SP1 makes to Vista. See a download link at the bottom of this article. Generally speaking, the updates in Vista SP1 can be divided into three categories: Quality improvements Improvements to the administration experience Support for emerging hardware and standards 1.  Vista SP1 Quality Improvements Windows Vista SP1 includes all previously released updates for Vista. It also includes security, reliability, and performance improvements. These improvements target some of the issues Microsoft has identified as the most common causes of operating system crashes and hangs, giving customers a more reliable experience. These updates also improve performance in key scenarios—for example, when copying files or shutting down the computer (see my "Vista Performance and Reliability Improvements Pack" article) (insert link). The following sections describe many of the security, reliability, and performance improvements that will be in Windows Vista SP1. Security Security improvements that will be in Windows Vista SP1 include: Provides security software vendors a more secure way to communicate with Windows Security Center. Includes application programming interfaces (APIs) by which third-party security and malicious software detection applications can work with kernel patch protection on x64 versions of Windows Vista. Improves the security of running RemoteApp programs and desktops by allowing Remote Desktop... --- ### How to configure your Alcatel SpeedTouch 510 ADSL modem not to use NAT? - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_alcatel_speedtouch_510_for_dhcp_spoofing/ - Categories: Alcatel - Article Type: How To This document describes how you can configure an Alcatel SpeedTouch 510 ADSL modem not to use NAT anymore. This process is often called DHCP SPOOFING. The public IP will be sent to your machine by DHCP therefore eliminating NAT. It is also for setups where combination of an Ethernet gateway routers which do not have PPTP dialer support are in placed. Doing so will enable you to configure an internal router or a server that has routing software installed and have it receive an IP address from your ISP - instead of having the dialer obtain the address for you. The difference between DHCP SPOOFING and BRIDGING (described here Configure Alcatel SpeedTouch Pro to Act as a Transparent Bridge) is that with bridging the end-machine/router does the dialing, and so it gets the real IP address from the ISP. With spoofing the modem dials for you, receives the IP address from the ISP, and then gives it to the end-machine/router. This method will work if one of the following assumptions is true: Your modem is connected to the Internet and another computer is connected to your modem. Your modem is connected to the Internet and you have a router that is connected to the modem. This router must have NAT capabilities. The router will then be connected to a hub/switch, and to it other computers will connect. Your modem is connected to the Internet and you have a server computer that is connected to the modem. This... --- ### Configure MX Records for Incoming SMTP E-Mail Traffic - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_mx_records_for_incoming_smtp_email_traffic/ - Categories: Exchange Server - Article Type: How To How do I configure and test the MX Record for my Internet Domain name? When you want to run your own mail server, and it does not matter what version and make of mail server you're using - as long as the mail server is using SMTP as the e-mail transfer mechanism - you'll need to configure the MX Records for your domain. MX is an acronym for Mail eXchange. MX is defined in RFC 1035. It specifies the name and relative preference of mail servers for the zone. MX is a DNS record used to define the host(s) willing to accept mail for a given domain. I. e. an MX record indicates which computer is responsible for handling the mail for a particular domain. Without proper MX Records for your domain, only internal e-mail will be delivered to your users. External e-mail from other mail servers in the world will not be able to reach your server simply because these foreign servers cannot tell to which server they need to "talk" (or open a connection to) in order to send the mail destined for that domain. You can have multiple MX records for a single domain name, ranked in preference order. If a host has three MX records, a mailer will try to deliver to all three before queuing the mail. MX Records must be in the following format: domain. com.     IN    MX   10     mail. domain. com. The Preference field is relative to any other MX Record for the zone... --- ### Configure USB Disks to be Read-Only in Windows XP SP2 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_usb_disks_to_be_read_only_in_xp_sp2/ - Categories: Windows Client OS - Article Type: How To How can I configure USB Disks to be Read-Only in Windows XP SP2? Since USB Disks-on-key and other external USB storage devices have appeared, the fact that users can transfer sensitive data from their corporate computers to their portable USB devices has caused great security concerns. Some 3rd-party software exists that can effectively block all USB storage devices throughout the corporate network, but sometimes a simpler approach is needed. This tip only works with Service Pack 2 installed in Windows XP Pro. To prevent users from being able to write to USB disks follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINESystemCurrentControlSetControlStorageDevicePolicies Note: This key might not exist. In that case simply create it as a new key under the parent key. Create the following value (DWORD): WriteProtect and give it a value of 1. Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a . REG file before performing the changes. Close Registry Editor. Done! Try to write something to any USB Disk and you'll get the following error: Related articles You might also want to read the following related articles: Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Scanners and Cameras Icon to the... --- ### Copy Encrypted Files on the Network - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/copy_encrypted_files_on_the_network/ - Categories: Security - Article Type: How To Can I copy or move an encrypted file or folder across the network? No. When you attempt to gain access to a file on a shared network resource, the following error message may be displayed: This behavior can occur if the shared file was encrypted by another user using the Windows 2000 Encrypted File System (EFS), even if you have full access to the share. To resolve this issue, the owner of the file must decrypt the file on the network share. You can use EFS to encrypt files on remote servers. However, EFS encrypts files on only the hard disk; it doesn’t encrypt data that users transmit over the wire. To encrypt data you transfer over the network, you must use a method that encrypts all TCP/IP client communications (e. g. , IP security) or offers similar protection (e. g. , Secure Sockets Layer - SSL). Related articles You might also want to read the following related articles: Access Denied Error in EFS Encrypted Files Compression and Other Attributes in EFS Copy Encrypted Files on the Network Data Protection and Recovery in Windows XP Disable EFS in Windows 2000 Disable EFS in Windows XP/2003 How does EFS Work? New EFS Features in Windows XP Quickly Check EFS Attributes Quickly Check Which User Encrypted a File What's EFS? Links Cannot Use Shared Encrypted Files in Windows 2000 - 223448 --- ### Creating an Unattend Installation File for DCPROMO in Windows Server 2008 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/creating-unattend-installation-file-dcpromo-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: How To This article describes the syntax that you use to build answer files to perform unattended installations of Active Directory Domain Services on Windows Server 2008-based domain controllers. Performing an unattended installation using an answer file is not as hard as it sounds, and can be performed without any user interaction. Using the answer (or sometimes referred to as the unattend) file eliminates the need for an administrator to interact with the DCPROMO wizard, and is most important when using a server core machine to act as a DC. You can read more about Active Directory on Windows Server 2008 core installations on my "Installing Active Directory on Windows 2008 Server Core" article. You can also use the answer files to remove AD DS in unattended mode. Note that a similar article exists that describes the basics of the unattend file in Windows 2000/2003 – "How do I automatically upgrade a server to a domain controller during installation? ". One method of creating the unattend file is by manually copying a sample text and pasting it into a text file. You can read more about this process in the next section below. Another method of creating the file is by running the DCPROMO wizard on a different server, then, when finished, saving the configuration into a text file, and then pressing Cancel. You can read more about this method below. Manually creating the unattend file The unattend file can be manually created, and the... --- ### Windows Backup Bug Prevents Israeli Administrators from Backing Up Windows Server 2008 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/windows-server-2008-backup-bug-for-israeli-administrators/ - Categories: Windows Server 2008 - Article Type: Overview Update: As of June 2008, this bug has been acknowledged and a private fix is already available. I was informed by the product group that a public fix will be shortly available. Stay tuned for more info. A couple of days ago I was teaching a Windows Server 2008 course and I got to the point where I had to demo the procedure of backing up and restoring Windows Server 2008. When I teach I usually use a virtual machine, and this time too I had Windows Server 2008 RTM running as a VM inside Virtual Server 2005 R2 SP1. Note that I've been able to repro on 3 separate installations, but these were ALL under some sort of virtualization software - either VS 2005 R2 SP1, or VMware Workstation 6. 02. I simply don't have a physical box at hand to test on right now. Here are the repro details: Configure Windows Server 2008 RTM with Jerusalem Time Zone, make sure that the DST check-box is selected (as it should).   Install Windows Backup. You can install it via Server Manager, or via servermanagercmd. exe. I didn't try to install Windows Backup before changing the time zone, mostly because changing the time zone is one of the first things that an administrator does for a computer not located in the default Pacific time zone. Also note that I tested this on a DC as well as on a simple member server. No additional roles have been installed or tested. . NET Framework... --- ### Windows XP SP2 Patches - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_sp2_patches/ - Categories: Patches and Service Packs - Article Type: Overview You should consider installing Service Pack 2 as soon as possible On August 9, 2004, Microsoft released SP2 for Windows XP. SP2 is the latest collection of updates for Windows XP. Download Windows XP SP2 Network Installation (266mb) See the Windows 2000/XP SP Slipstreaming page for info on how to integrate SP2 into your existing media. Required Patches Windows XP Home or Professional with Service Pack 2 requires the following security-related patches: Make sure you read Internet Explorer 6. 0 SP1 Patches and IIS 5. 1 Patches before you go on. October 2005 MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706) MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) MS05-047 : Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749) MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) August 2005 MS05-043 : Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423) MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587) MS05-041 : Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591) MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) July 2005 MS05-036 : Vulnerability in Microsoft... --- ### What is Cisco Telepresence and what does it take? - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/cisco-telepresence-what-is-it-what-does-it-take-video-conferencing-hdtv/ - Categories: Cisco - Article Type: Overview If you are like me, you have probably heard about Cisco’s Telepresence video conferencing system but probably didn’t realize that it was much more than a regular video conferencing suite. Sure, I had seen Cisco Telepresence on the TV show “24” and it looked pretty neat but I didn’t envision the scope of what is behind it. What isn’t Cisco Telepresence? Recently my local Cisco Account Manager came by and asked me if we did any video conferencing. I said “wait, you are going to try to talk me into one of those Telepresence Suites from TV, aren’t you”. He said, “no” but proceeded to tell me all about it. It was intriguing but I also realized that it wasn’t within the reach of my company - even though we are a large company. Today, a Cisco Telepresence Suite may only be practical for the largest of the large companies. I have evaluated a number of video conferencing systems in my time. On the more expensive side, most of these were a dedicated unit that mounted in a room. There was a TV and a camera. The camera transmitted the images of the people in the room over dedicated circuits. All of this was, say $15,000 for the equipment on each side of the video link plus the dedicated circuits that connect the two locations. For full motion video and quality audio, you need a fair amount of bandwidth, such as a 512Kb or T1 circuit. While... --- ### How to Recover a Lost Password on a Cisco Switch > Lost the password to your Cisco switch? David Davis walks you through how to recover that password (and your sanity). - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_how_to_recover_lost_password_on_cisco_switch/ - Categories: Cisco - Article Type: How To Lost the password to your Cisco switch? David Davis walks you through how to recover that password (and your sanity). So you lost the password on your Cisco switch. Maybe the old administrator left or maybe you just haven’t used this switch in a while and don’t recall the password. No matter what the case, you need to change the password on the switch so you can create a new password. How do you do this on a Cisco switch? It is a little more difficult than a Cisco router. One important difference between resetting the password on a Cisco switch vs. a router is that you don’t use configuration registers to reset the password on the switch. Let me show you how it’s done. I want to point out that this article is based on a Cisco Catalyst 2900, 3500XL, 2940, 2950, 2955, and 3550 switches. If you have another model of Cisco Catalyst switch, see the link concerning general Cisco password recovery at the bottom of this article. To recover a password on a Cisco switch, you will have to be connected to the console port of the Cisco switch using 9600 baud, 8 bits, no parity, 1 stop bit, and xon/xoff flow control. I recommend using Hyperterminal that comes with Windows XP to do this (Read How to Use HyperTerminal with Cisco Routers & Switches for more info). Once you are connected and see something on the terminal window when you press enter, unplug the power cable. Next, hold down the mode button on the front, as seen in the photo below, and connect... --- ### Best Practices for Exchange Server Migrations, Part 2 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/best-practices-for-exchange-server-migrations-part-2/ - Categories: Exchange Server - Article Type: How To In the first article in this series, I outlined three steps that I think are essential to the Exchange 2007 migration process. In this article, I want to continue the discussion by providing you with some more steps in my migration best practices. Step 4: Focus on the Clients Your users aren’t going to get the full benefit of your Exchange 2007 migration unless they are running Outlook 2007. An upgrade to Office 2007 isn’t an absolute essential, but it is a good idea, and pretty much every company that I have assisted with the migration process has adopted Office 2007 as a part of that process. One thing about Office 2007, and Outlook 2007 in particular, is that you don’t have to wait until you perform the Exchange Server migration to deploy it. In fact, I personally use Outlook 2007, even though my mailbox is on an Exchange 2003 server. One of the best things that you can do to ensure a smooth migration is to go ahead and get your users trained on Office 2007, and then deploy it. Training is important, because the Office 2007 user interface is quite a bit different from the one used by previous versions of Office. If you are not familiar with these differences, then you can see what the Outlook 2007 user interface looks like in Figure A. Figure A Outlook 2007 has a different interface than its predecessors used. The reason why I suggest moving forward... --- ### Creating a Group Policy Central Store - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/creating-group-policy-central-store/ - Categories: Active Directory (AD) - Article Type: How To One of the issues that sometimes made managing group policies difficult in Windows XP and in Windows Server 2003 was the non centralized nature of the group policy template files. For example, Microsoft offers downloadable templates that allow you to manage Microsoft Office via group policy. Even so, these templates are not automatically available from every domain controller. In Windows Vista and Windows Server 2008, Microsoft decided to make life easier for network administrators by introducing the concept of centralized group policy storage. This storage repository, known as a central store, can be created in domains containing Windows Server 2003 and / or Windows Server 2008 domain controllers. Even though Windows Server 2003 does not technically support centralized group policy storage, Windows Vista does, and this allows you to store the central store on Windows Server 2003 domain controllers if necessary, but manage the central store through Windows Vista. How Does a Central Store Work? As you may have gathered from the previous paragraph, there is really nothing special about the central store itself. It is nothing more than a folder on a server. The reason why a central store can work the way that it does is because of the way that the store is used by Windows Vista and Windows Server 2008. When an administrator attempts to create or edit a group policy template, Windows checks the domain controller to which it is connected for the existence of a central store. If a central store... --- ### Access Denied Error in EFS Encrypted Files - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/access_denied_error_in_efs_encrypted_files/ - Categories: Security - Article Type: How To   Why do I get an “Access Denied” error every time I try to read a file even though I’ve double-checked my permissions, and they’re ok? Featured Product: Passware Kit - Password recovery software pack for the world's most popular office application files including Excel, Word, Windows 2003/XP/2000, Access, Outlook, QuickBooks, Lotus Notes, etc. Download FREE version now! When you try to access a file on an NTFS file system volume, you may receive an "access is denied" error message. The file's NTFS permissions indicate that you can access the file. This message will appear if another user has encrypted the file: Or this error:   This behavior can occur if another user has encrypted the file. To determine if a file has been encrypted, see the Quickly Check EFS Attributes article. To resolve this behavior, the file must be decrypted by the user who encrypted the file, or by the designated Recovery agent. Files that are encrypted by using the Encrypting File System (EFS) are accessible only to the person who encrypted the file, regardless of the other permissions that are on the file. Related articles You might also want to read the following related articles: Compression and Other Attributes in EFS Copy Encrypted Files on the Network Data Protection and Recovery in Windows XP Disable EFS in Windows 2000 Disable EFS in Windows XP/2003 How does EFS Work? New EFS Features in Windows XP Quickly Check EFS... --- ### Block Incoming Internet Mail to Specific Users or Groups - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/block_incoming_internet_mail_to_specific_users_or_groups/ - Categories: Exchange Server - Article Type: How To How do I block incoming Internet mail to specific users or groups in Exchange 2003? This tip might come in handy when you want to effectively block all incoming Internet mail traffic for a specific user or a specific group. Note: The original tip was submitted by Ade Famoti on the excellent You Had Me At EHLO... official Exchange blog. Before the advent of Exchange 2003, the solution to this question would have been to give the user or group a false e-mail address consisting of a non-resolvable SMTP domain name. Now, with Exchange Server 2003, you can block all incoming Internet mail traffic for a specific user or group by forcing the user or group to only accept mail from authenticated users, thus blocking all (usually) anonymous Internet traffic. To block all incoming Internet mail traffic for a specific group follow these steps: Click "Start", point to "Programs", point to "Administrative Tools", and then click "Active Directory Users and Computers". Right-click the distribution group, and then click "Properties".   Click the "Exchange General" tab. Under "Message restrictions", click to select the "From authenticated users only" check box.   To block all incoming Internet mail traffic for a specific user follow these steps: Click "Start", point to "Programs", point to "Administrative Tools", and then click "Active Directory Users and Computers". Right-click the user account, and then click "Properties".   Click the "Exchange General" tab. Click "Delivery Restrictions".   ... --- ### Cannot Install Update for Windows Vista KB929777 - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/cannot_install_update_windows_vista_kb929777/ - Categories: Windows Vista - Article Type: How To Trying to install Windows Vista on a computer with more than 3 GB of RAM might cause a BSOD (Blue Screen of Death, or more better known as a STOP error). Or at least that's what Microsoft KB 929777 is all about. When you try to install Windows Vista, you may receive an error message that resembles the following: STOP 0x0000000A (parameter1, parameter2, parameter3, parameter4) IRQL_NOT_LESS_OR_EQUAL In order to resolve the problem there are 2 things you might want to do: Remove 2 GB of physical memory BEFORE you try to install Windows Vista. When the installation is over, insert the extra RAM into the computer, and the issue will be solved. Silly, but it works.   If Vista is already installed and you would like to install a patch for this bug, then you can install the available hotfixes from Microsoft, available in the following format: Update for Windows Vista, 32-bit versions (KB929777) Update for Windows Vista, 64-bit versions (KB929777) All this is good and well, but seeing there is already a fix from Microsoft, I've tried to install it on my Dell XPS 1210 laptop which just so happens to have 4 GB of memory. As you can clearly see from the following screenshot, Vista's Windows Update program clearly notifies you that a hotfix exists, and that you should install it.      You can also see that there is a pending hotfix to be installed when you go to the shutdown menu: But when you try... --- ### Changing Store Limits in Exchange 2003 SP2 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_store_size_limits_ex2003_sp2/ - Categories: Exchange Server - Article Type: How To How can I change the store limits in Exchange 2003 SP2? By default, the size limit of each database on a server running Exchange 2000 and Exchange Server 2003 Standard Edition is 16 GB (this limit is also enforced in SBS 2000/2003). Exchange Server 2003 Service Pack 2 (SP2) is supposed to remove this limit and thus allow for further DB size growth. After installing Exchange Server 2003 Service Pack 2, the default size limit for each Exchange database is 18 GB, but can easily be configured to allow for database size limits of up to 75 GB per database (for the Standard and SBS 2003 versions), or up to 8000 GB (or 8 TB) per database (for the Enterprise version). By default, Exchange 2003 SP2 logs events when the database has grown to within 10% of the configured database size limit (i. e. using 90% of the allocated limit). This threshold is configurable and can range from 1% to 100%. BTW, you can easily check your store size by performing the steps outlined in the Reporting Storage Size in Exchange article. The database size check happens at 5am, every 24 hours by default. This time can be changed through the registry. The first database size check will not take the database offline if the size limit has been exceeded, but an error event (ID 9689) will be logged in the Application event log (i. e. it has reached the 18 GB limit, or any other limit you have... --- ### Changes in Default Behavior in Windows Server 2003 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/changes_in_default_behavior_in_windows_server_2003/ - Categories: Windows Client OS - Article Type: Overview What are the changes in default behavior in Windows Server 2003? The Windows security initiative, launched in the spring of 2002, has the goal of further strengthening the security of Windows operating systems for servers. During the early phases of this initiative, the Windows Server team examined the entire Windows Server 2003 code base, developed threat models to uncover security weaknesses in the product, and created design changes to mitigate those threats. In the time between the release of Windows 2000 Server and the release of Windows Server 2003, numerous design changes were made to the product as a result of the Windows security initiative. Some of these design changes represent changes to the default configuration of a newly created or upgraded server. Traditionally, each new Windows server operating system release is designed with default configuration settings that support the protocols, services, and applications currently running on the previous releases, without requiring these protocols, services, and applications to be reconfigured. As part of the security initiative, Microsoft has chosen to change this policy so that the server product is secure “out of the box. ” Administrators who reconfigure their server configurations to restore previous defaults should consider whether these changes enhance or reduce the security of their servers and network. A high-level overview of design changes that were made to the Microsoft Windows Server 2003 family of operating systems. This document can assist developers and IT professionals who migrate their servers to Windows Server 2003 or developers who create... --- ### How to configure your Alcatel SpeedTouch ADSL modem not to use NAT? - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_alcatel_speedtouch_pro_for_dhcp_spoofing/ - Categories: Alcatel - Article Type: How To This document describes how you can configure an Alcatel SpeedTouch Pro ADSL modem not to use NAT anymore. This process is often called DHCP SPOOFING. The public IP will be sent to your machine by DHCP therefore eliminating NAT. It is also for setups where combination of an Ethernet gateway routers which do not have PPTP dialer support are in placed. Doing so will enable you to configure an internal router or a server that has routing software installed and have it receive an IP address from your ISP - instead of having the dialer obtain the address for you. The difference between DHCP SPOOFING and BRIDGING (described here Configure Alcatel SpeedTouch Pro to Act as a Transparent Bridge) is that with bridging the end-machine/router does the dialing, and so it gets the real IP address from the ISP. With spoofing the modem dials for you, receives the IP address from the ISP, and then gives it to the end-machine/router. This method will work if one of the following assumptions is true: Your modem is connected to the Internet and another computer is connected to your modem. Your modem is connected to the Internet and you have a router that is connected to the modem. This router must have NAT capabilities. The router will then be connected to a hub/switch, and to it other computers will connect. Your modem is connected to the Internet and you have a server computer that is connected to the modem. This... --- ### Configure Web Access to Newsgroups Hosted on Exchange 2000/2003 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure_web_access_to_newsgroups_hosted_on_exchange_2000_2003/ - Categories: Exchange Server - Article Type: How To In Exchange 2000/2003, how can I configure web access to some of the newsgroups that are hosted on the server? If you're running a newsgroup feed from a live NNTP server (see Configure a Newsgroup Feed From a NNTP Server), or if you're running your own newsgroup hierarchy, you might want to configure alternate access to these folders by use of a web browser. To do so open the Exchange System Manager console. Drill down to your server's name and open the Protocols container. Open the HTTP container, double-click the Default HTTP Virtual Server. Right-click the Exchange Virtual Directory sub-container and choose New > Virtual Directory. Give the new Virtual Directory a name. You can use any name, but this will be the directory's alias, so make it an easy one. In the Exchange Path select the Public Folder radio box. Click Modify. In the Public Folder selection window select the folder you want to make visible. Note: I used the MCT private newsgroups demonstrated in the Configure a Newsgroup Feed From a NNTP Server page, but as stated before, you won't be able to use the same folders because these groups are password restricted. Use your own folders, the ones you've downloaded from your ISP News server. Click Ok. In the Access tab you can change the Authentication level required. I used the default, which has the Anonymous authentication disabled. Click Ok when you're done. Now you can see the new Virtual Directory in the listing. If you try... --- ### Copy User Profiles in Windows XP - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/copy_user_profiles_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To How do I copy a user profile in Windows XP? Why is the COPY TO button grayed out? UPDATE: This method is no longer supported. You need to create an additional account and copy it over that account (and not over the default user profile). To copy a user profile in XP do the following: Open System applet in Control Panel (or right-click My Computer and choose Properties). Click the Advanced tab. In the User Profiles section click Settings. Highlight the user profile you want to copy. Press Copy To. You can't copy the profile you're currently logged in with. Also, I do believe that if you've ever been logged into a profile without rebooting you won't be able to copy that profile either. So you might have to restart before you can copy the profile. To fix this "feature" you should log on as your preferred user (who should be an administrator, to make things easier), make all the needed changes, log off, log on as an administrator, then try to copy the previous user profile. Now it should work. Note: To be clear, the best procedure based on Microsoft's recommendations, is NOT to use the built-in Administrator account. Read this: How to create a custom default user profile http://support. microsoft. com/default. aspx? kbid=319974 In the Copy To dialog box enter the path to where you want to copy the profile to. You can also browse. The default location for the user's profile should be %systemdrive%Documents... --- ### Get certified on Windows Server 2003 to Windows Server 2008 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/windows-server-2008-certifications/ - Categories: Windows Server 2008 - Article Type: How To The Windows Server 2008 certifications are part of the new generation of Microsoft certifications, which emphasize primary skill sets and job roles, providing a more relevant, flexible, and cost-effective way to validate core technical, professional, and architectural skills. Microsoft Certified Systems Administrators (MCSAs) and Microsoft Certified Systems Engineers (MCSEs) in Windows Server 2003 can quickly and easily transfer their skills to achieve Microsoft Certified Technology Specialist (MCTS) accreditation on Windows Server 2008. The MCTS credential enables professionals to target specific technologies and distinguish themselves by demonstrating in-depth knowledge and expertise in those technologies. By becoming a Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 you can help your organization take advantage of advanced server technology with the power to increase the flexibility of your server infrastructure, save time, and reduce costs. Transition certifications are available today for Windows Server 2003 certified professionals, while full certification paths will be available soon after the Windows Server 2008 product release. Upgrading Your MCSA on Windows Server 2003 to Windows Server 2008, Technology Specialist - Exam 70-648 Professionals with an MCSA on Windows Server 2003 must pass one exam to become an MCTS on Windows Server 2008. If you are an MCSA and pass Exam 70-648, you will earn two distinct MCTS certifications: MCTS: Windows Server 2008 – Active Directory Configuration MCTS: Windows Server 2008 – Network Infrastructure Configuration The MCTS certifications earned with Exam 70-648 are credit toward the following Professional Series certifications: MCITP: Server Administrator MCITP: Enterprise Administrator... --- ### Windows XP SP2 Slipstreaming - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_sp_slipstreaming/ - Categories: Patches and Service Packs - Article Type: Overview How can I slipstream service packs into the Windows XP media? This scenario explains how to create an integrated installation of Windows XP and the corresponding service pack in a shared distribution folder on a network. This integration is called "Slipstreaming". The integrated process installs the service pack during Windows XP Setup, so when the setup process is done, you'll have the OS + SP in one operation. Important: Do not update Windows XP integrated with a service pack in a shared distribution folder if there are users who are still using a previously installed integrated version in the same shared folder. For other versions of this article please visit the following links: Office System (2003) Hotfix Slipstreaming Office System (2003) SP1 Slipstreaming Office XP SP3 Slipstreaming One Note 2003 SP1 Slipstreaming Windows 2000 SP4 Slipstreaming Windows Server 2003 SP1 Slipstreaming The Slipstreaming process Prerequisites Before we begin anything, you will need to have a few things: Installation CD of Windows XP. Service Pack 2 for Windows XP Download Windows XP SP2 (266mb) Lamer Note: This guide is based on the English versions of Windows XP, and of their corresponding Service Packs. If you are using a different localized build of Windows, you will need to find the right version of SP for your build. At least 1100MB (for Windows XP SP2) of free space on your hard drives (you can later delete these files). A CDR/CDRW drive, CD burning software and (This is actually only optional, but if you... --- ### Configuring a Cisco router to exchange RIP routes with a Windows 2003 Server - Part 2 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure-cisco-router-exchange-rip-routes-windows-server/ - Categories: Cisco - Article Type: How To Did you know that a Windows Server can act as a router? Even better, did you know that a Windows server could be configured to exchange routes with a Cisco router? In Part 1 of this series, we demonstrated how to configure a Windows 2003 Server to exchange routes with a Cisco router using RIP. In this second part of the series, we will configure the Cisco router and prove that these configurations work. Let's get started! Our Network If you'll remember from Part 1 of this series, we offered a diagram of our sample network. To refresh your memory, here is what it looks like. Network Diagram Configure a Cisco Router to exchange routes with a Windows 2003 Server I have configured my Cisco router with interfaces in the two networks shown above. Here is the relevant configuration: interface Ethernet0/0 ip address 10. 253. 15. 38 255. 255. 0. 0 ! interface Loopback0 ip address 2. 2. 2. 2 255. 0. 0. 0 To configure the Cisco router to advertise these RIP routes and exchange then with the Windows Server, I enable RIP version 2 and add these networks to the RIP routing process: ​Router#conf t Enter configuration commands, one per line. End with CNTL/Z. Router(config)# router rip Router(config-router)# ver 2 Router(config-router)# network 10. 253. 0. 0 Router(config-router)# network 2. 0. 0. 0 Router(config-router)#exit Router(config)#exit Router#   What we did was this: Enter RIP configuration mode on the router Configure RIP to use version 2 so that subnet masks will be sent with routing updates, allowing us to use classless IP routing, with out... --- ### Static Routes in the Cisco IOS - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_how_to_static_routes_cisco_ios/ - Categories: Cisco - Article Type: Overview As a network administrator, you must be able to configure your routers to route traffic across the network. Static routes are commonly used on routers to accomplish this. For a network admin, knowing how to use a static route is a requirement. Let’s learn about static routes, and how to properly use them. Static vs. Dynamic There are two types of routing that can be configured on a network device- static and dynamic. Static routes are hard-coded on a network device. They tell the device exactly where to send traffic, no matter what. Dynamic routes, on the other hand, use a routing protocol to determine the best path. If one route becomes less preferred, the route being used may change. With dynamic routes, routes communicate with each other and exchange routing information. Examples of dynamic routing protocols are RIP, EIGRP, OSPF, and BGP. Basics of Static Routes Now that you know the difference between static and dynamic routes, let’s learn the basics of static routes. When there are two or more routes to the same destination, routers use administrative distance to decide which routing protocol (or static route) to trust more. For example, here are some administrative distances (the lower the number, the more trustworthy the type of route is): - Static Route to a connected interface = 0 - Static Route to a IP address = 1 - Internal EIGRP = 90 - OSPF = 110 - RIP = 120 Because of how administrative distance works,... --- ### Classifying Messages in Exchange Server 2007, Part 1 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/classifying-messages-in-exchange-server-2007-part-one/ - Categories: Exchange Server - Article Type: How To By now you're probably familiar with the idea that Exchange Server 2007 is designed in such a way that every message flows through a central pipeline.   Microsoft designed Exchange Server in this way so that there would be a central portal through which all messages flow, and therefore messages could be analyzed in certain types of content could be acted on by transport rules.   Although Exchange Server gives you a great deal of flexibility in the types of transport rules that you can create, imagine how much more powerful the transport rules could be if Exchange Server could actually understand what the messages were all about.   I'm not talking about just knowing who the messages going to, or where it came from, or whether or not the message has been flagged as important, but rather the message’s purpose. Believe it or not, Exchange Server 2007 has been designed so that users have the ability to categorize messages.   You can then create transport rules that are based on message classifications, rather than trying to create transport rules that guess what messages purpose might be based on some of the more common attributes. Good News and Bad News As you can imagine, message categorization can be a very powerful tool to help you to manage the messages flowing through your organization. Before I show you how message categorization works though, I have some good news for you and I’ve got some bad news. The good news is that Exchange Server has several... --- ### Creating a Journal Rule in Exchange 2007 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/creating-journal-rule-exchange-server-2007/ - Categories: Exchange Server - Article Type: How To In the previous article in this series (Learn the Basics of Journaling in Exchange Server 2007), I talked about how Exchange 2007 journaling differs from journaling in Exchange 2003. That article also discussed some of the basic concepts behind Exchange 2007 journaling. In this article, we will put the theory into practice as I walk you through the process of creating a journaling rule. Enabling the Journaling Agent The process of creating a journal rule is fairly straightforward, but before any of the rules that you create will work, you must enable the Journal Agent. To do so, you must open the Exchange Management Shell and enter the following command: Get-TransportAgent When you enter this command, you will see a summary indicating which transport agents are enabled, as shown in Figure A. Figure A - You must enable the Journaling Agent prior to using Journal Rules. When you look at this report, you should see that the Journaling Agent is enabled, but if not, then enter the following commands to enable it: Enable-Transport Agent You should now be prompted as to which transport agent you want to enable. Type Journaling Agent and press Enter. Now, enter the Get-TransportAgent command one more time to verify that the agent has been enabled. Now that the Journaling Agent is enabled, we can move forward with creating a journaling rule. Begin the process by going to your Hub transport server and opening the Exchange Management Console. Now, navigate through the console... --- ### Activate Vista Aero Interface on Windows Vista Basic Edition - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/activate_vista_aero_on_vista_basic_edition/ - Categories: Windows Vista - Article Type: How To Microsoft has made some awesome graphical additions to Windows Vista, namely, the Aero theme (read more about it on my "Enable Windows Vista Aero Graphics" and "Aero Theme is Bad, Disable It" articles).   The Aero theme is not available in all the Vista editions. You can read "Windows Vista Editions" for more info, but the main point is that the Vista Home Basic Edition does not have Aero theme, and if you wanted it (I'm not sure why someone would really HAVE to have it... ) you had to buy one of the more advanced editions. Not anymore. It turns out that some forums have published a workaround to active the Vista Aero theme on Windows Vista Basic Edition. It is apparently not a big problem to enable the Vista Aero interface in Windows Vista Home Basic even though it is officially not included in that version. Note: Please make sure you understand the EULA before you perform this trick. Making any functional change in the operating system *might* be considered illegal by Microsoft. I am not responsible in any way for any legal issues that might arise because of this. The reason I chose to upload the information is mostly because it is already freely available on the Internet (so I'm not the first one talking about it), and because I think it is important to show how changes to the Registry can easily add or remove blocked features from the OS. Note: Please take note... --- ### Active Directory Search Limit - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/active_directory_search_limit/ - Categories: Active Directory (AD) - Article Type: Overview How do I modify the number of Active Directory objects to search? By default, the Windows 2000 Active Directory searches 10,000 objects at a time. This policy affects all browse displays associated with AD, the Microsoft Management Console (MMC) Active Directory Users and Computers snap-in, and the dialog boxes you use to set permissions for user or group objects in AD. As your organization grows, you might need to change the number of objects to search. To set the number for a group policy object: Start the MMC Active Directory Users and Computers snap-in. Right-click the container, and select Properties. Select the Group Policy tab. Select the Group Policy Object, and select Edit. Select the User Configuration branch, and expand Administrative Templates > Desktop > Active Directory. Double-click Maximum size of Active Directory searches. Select Enabled, and set the number (e. g. , 20000). Click Apply. Click OK. Close the Group Policy Editor. To edit the registry to set the number for a user: Start regedit. Go to the HKEY_CURRENT_USERSoftwarePoliciesMicrosoft registry entry. From the Edit menu, select New > Key. Enter ​Windows Select the new Windows key, and from the Edit menu, select New, Key. Enter ​Directory UI Go to the Directory UI key, and from the Edit menu, select New, DWORD Value. Enter ​QueryLimit and press Enter. Double-click the new value, and set the decimal value (i. e. 20000). Click OK. Close the registry editor. For both methods, the change will take effect when the... --- ### Backup Exchange 2000/2003 from a Non-Exchange Server - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/backup_exchange_from_non_exchange_server/ - Categories: Exchange Server - Article Type: How To How can I backup my Exchange 2000/2003 server from a non-Exchange Windows 2000/2003 server? When you install Exchange 2000/2003 on a Windows 2000/2003 server, or, alternatively, when you install the Management Tools for Exchange 2000/2003 on a non-exchange server, you actually enhance the built-in Ntbackup. exe tool from the regular tool to one that is capable to backup local and remote Exchange servers. However, you might want to backup one or more of your Exchange servers from a non-Exchange server, one that does not have the Exchange Management Tools installed on. To permit a Microsoft Windows 2000/2003 server-based backup server that does not have Exchange 2000 or Exchange System Manager installed to perform online Exchange 2000 backups, follow these steps: Copy Esebcli2. dll to the backup server. This file is located in the Exchsrvr\Bin folder on any Exchange 2000/2003 computer. You can copy this file directly from the Exchange 2000/2003 installation CD-ROM. Note: For Exchange 2000 please use the version found in SP3. For Exchange Server 2003 please use the version found in SP1. You can find these files in the setup\i386\exchange\bin path of the Service Pack folder (or CD). Start Registry Editor (Regedt32. exe). Locate and click the following registry key: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\BackupRestore\DLLPaths Double-click the DLLPaths key, and then add the following value: Value Name: Esebcli2 Data Type: REG_EXPAND_SZ String: Drive\Path\Esebcli2. dll Make sure that on the Exchange 2000/2003 computer the account that performs the backups is given Backup Operator permissions. Note: The original MS KB article claims that on... --- ### Bug in the Intelligent Message Filter (IMF) interface - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/bug_in_imf_interface/ - Categories: Exchange Server - Article Type: Overview Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users. You can read more about IMF on the Block Spam with Exchange 2003 Intelligent Message Filter page. When looking at the IMF interface in the Exchange System Management snap-in (ESM) you can notice it specifically says that: "Block messages with an SCL rating greater than or equal to:" and on the Store Junk E-mail Configuration section, it clearly says: "Move messages with an SCL rating greater than or equal to:" SCL is a "rating system" that on a scale from -1 (only used for authenticated users) to 10, will tell Outlook or OWA whether or not the e-mail should be moved to the Junk E-mail folder (depending on the user's settings). Note that not all messages might be transferred to the store (i. e. the user's mailbox) depending on the settings on the IMF tab. Read more about how to Configure Intelligent Message Filter in Exchange 2003 SP2. So, the SCL rating is in fact a threshold level, and by looking at the text, this threshold level is either any number GREATER than the level, or the number specified on the level itself.   However that is not true. A quick follow-up of my Display SCL Level in Outlook 2003 and Display SCL Level in OWA 2003 SP2 articles and by monitoring the SCL level in your inbox, you will be surprised to find that... --- ### Change or Add OEM Logo and Information - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_or_add_oem_logo_and_information/ - Categories: Windows Client OS - Article Type: How To How can I change or add OEM logo and information on my computer? By default, the General tab (right-click My Computer, or double-click System in Control Panel, or press the ÿ + BREAK keys on your keyboard) contains information on the Windows version, processor, memory, registered user and registration identity. Optional items include the manufacturer and model, a small picture, and a button leading to a separate page of support information. The information is not held in the registry, but in an old-style . INI file, which can be created in any plain-text editor including Windows Notepad. This file can have two sections: The first section, has a section header called , and within that section -  two entries: Manufacturer= Model= The second section, headed , is optional, but if present adds a button with that label to the page. The entries after that heading should be in the form: Line1= Line2= Line3= and so on. The limit on the number and length of lines seems limited only by the 64 KB general limit on . INI files. The file should be saved in the %systemroot%system folder (for Windows 98/ME computers) or in %systemroot%system32 folder (for W2K/XP/2003 computers) as OEMINFO. INI. The picture is a 256-colour-Windows bitmap (. BMP) file. Microsoft states that the size should be 96 pixels square when using small fonts in Display Property settings, or 120 square with large fonts. The file should be saved in the %systemroot%system folder (for Windows 98/ME computers)... --- ### Change User Password from the Command Prompt - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/change_user_password_from_the_command_prompt/ - Categories: Security - Article Type: How To How can I change my user-account password from a Command Prompt? You can change a Windows User Account password that is on any Windows computer from any other Windows computer regardless of whether the User Account is on a workstation, a stand-alone server, or a Windows domain controller. Additionally, it makes no difference whether the password being changed from a workstation, a stand-alone server, or a Windows domain controller. This is true for any NT 4. 0, W2K, XP Pro and Windows Server 2003 computer. To change a user's password at the command prompt, log on as an administrator and type: ​net user danielp * /domain (This is only an example, use your own username) When you are prompted to type a password for the user, type the new password, not the existing password. After you type the new password, the system prompts you to retype the password to confirm. The password is now changed. Alternatively, you can type the following command: ​net user danielp 123456 /domain When you do so, the password changes without prompting you again. This command also enables you to change passwords in a batch file. Note: If you type these commands on a member server or workstation and you don't add the /domain switch, the command will be performed on the local SAM and NOT on the DC SAM. For example, to change the administrator's password type: ​net user administrator 123456 Note: Non-administrators receive a "System error 5 has... --- ### Configure a New Global Catalog - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_a_new_global_catalog/ - Categories: Active Directory (AD) - Article Type: How To How can I configure a Windows 2000/2003 Server as a Global Catalog? The Global Catalog (GC) contains an entry for every object in an enterprise forest but only a few properties for each object. An entire forest shares a GC, with multiple servers holding copies. You can perform an enterprise wide forest search only on the properties in the GC, whereas you can search for any property in a user’s domain tree. Only Directory Services (DS) or Domain Controller (DC) can hold a copy of the GC. Configuring an excessive number of GCs in a domain wastes network bandwidth during replication. One GC server per domain in each physical location is sufficient. Windows NT sets servers as GCs as necessary, so you don’t need to configure additional GCs unless you notice slow query response times. Because full searches involve querying the whole domain tree rather than the GC, grouping the enterprise into one tree will improve your searches. Thus, you can search for items not in the GC. By default, the first DC in the First Domain in the First Tree in the AD Forest (the root domain) will be configured as the GC. You can configure another DC to become the GC, or even add it as another GC while keeping the first default one. Reasons for such an action might be the need to place a GC in each AD Site. To configure a Windows 2000/2003 Domain Controller as a GC... --- ### Configure Message Security in Outlook 2003 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_message_security_in_outlook_2003/ - Categories: Exchange Server - Article Type: How To How can I configure e-mail and message security in Outlook 2003? After installing the online Certificate Authority (CA) and after obtaining a user Digital Certificate signed by your CA you will now need to configure Outlook 2003 to use the new message security features. These features include: Message encryption Message signing Note: Before being able to encrypt or sign messages you will need to apply for, receive and install a Digital Certificate designated for this purpose. For more info please see the Related Articles section at the bottom of this page. In order to configure Outlook 2003 to use the new message security settings please follow these steps: Open Outlook. Go to Tools > Options > Security tab. In the Encrypted E-Mail section press the Settings button.   In the Security Settings Name drop-down list make sure you see a "My S/MIME Settings (your e-mail)" title appears.   In the Cryptography Format make sure S/MIME is selected. In the Certificates and Algorithms section, under Signing Certificate make sure that the Digital Certificate you've previously obtained is listed. If not, press Choose and browse to the required certificate.   Note: The obtained certificate should be listed automatically, and in most cases you will not need to modify any setting. In the Encryption Certificate section, under Encryption Certificate make sure that the Digital Certificate you're previously obtained is listed. If not, press Choose and browse to the required certificate. Note: The obtained certificate should be listed automatically, and in most... --- ### Configure SSL on Your Website with IIS - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure_ssl_on_your_website_with_iis/ - Categories: Security - Article Type: How To On IIS 6. 0, how do I configure my website to use SSL? By default, web browsing is being performed by use of the HTTP protocol, i. e. a connection between the client computer (using a web browser) to the web server (using IIS, Apache or any other sort of web server program). HTTP relies on TCP (Transmition Control Protocol) and uses port 80 on the listening server. The main security issue with HTTP is the fact that all the traffic between the client and the server is done as clear text, meaning that anyone could potentially "listen" to your talk and grab frames and valuable information from the net. To secure the transmission of information between your web server running IIS 6. 0 on Windows Server 2003 and your browser clients, you can encrypt the information being transmitted by using SSL (Secure Sockets Layer). Note: The procedure for applying SSL on IIS 5. 0 (on Windows 2000) and IIS 5. 1 (on Windows XP) is quite the same. In order to successfully use SSL you need to obtain a Server Certificate. In this article I will only focus on obtaining a certificate from a local CA or importing an already existing certificate. However, it is possible (and in many cases preferred) that you obtain the Server Certificate from a trusted 3rd party CA such as Verisign or Thawte. Configure SSL To configure SSL for your website on IIS 6. 0 (running on Windows Server 2003) complete the following steps: Note: Although the screenshots... --- ### Control USB Drive Letter Assignment in Windows XP/2003/Vista/2008 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/control-usb-drive-letter-assignment-in-windows/ - Categories: Windows Server 2008 - Article Type: How To In Windows XP/2003/Vista/2008, when a removable drive (USB flash drive, flash card reader, portable hard drive, etc. ) is attached for the first time, Windows mounts it to the first available local drive letter. So far so good. But if there is a network share on this letter, Windows will use it anyway for the new USB drive, because network shares are specific to the current user and not visible in the context of the system where the letter is assigned. In this example I have a USB disk that had been previously assigned the first available drive letter (F: in my case). I removed it, and then mapped a network share to the same drive letter: I now re-inserted the USB disk, but it did not get the F: drive letter assigned to it as it had before, because the network share now holds the F: drive letter. The USB disk appears to be invisible, and opening Windows Explorer does not show you the inserted disk. You can change the letter assignments in the Windows Disk Management Console with a lot of mouse clicks but you have to do it again for every new device. To change the assigned drive letter open Computer Management from the Administrative Tools folder, or by right-clicking My Computer > Manage. Expand Storage > Disk Management. There you'll see the USB disk with its original drive letter (or no drive letter at all, depending on your OS). Right-click the partition on the... --- ### Creating and Managing Virtual Servers with Windows 2008 Server and Hyper-V - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/creating-managing-virtual-servers-windows-server-2008-hyperv/ - Categories: Windows Server 2008 - Article Type: How To In the two previous articles in this series (Planning for Windows Server 2008 Virtualization and Implementing Hyper Vision in Windows Server 2008), I walked you through planning and installing Windows Server 2008 Hyper-V. In this article, I will continue the discussion by showing you how to install a virtual operating system. Installing a Virtual Operating System Open Server Manager and then navigate through the console tree to Roles -> Hyper-V -> Microsoft Hyper-V Server. If this is the first time that you have used Hyper-V, then you will be prompted to accept Hyper-V License Agreement.   Once you accept the license agreement, the various Hyper-V options will be made available to you. The first thing that you must do is to click on the Connect to Server link, located in the Actions pane. When you do, you will be prompted to select the computer that you want to connect to. Choose the Local Computer option, and click OK. You will now see the screen shown in Figure A. Figure A This is the main screen that you will use for managing virtual machines. Creating a New Virtual Server To create a new virtual server, click the New -> Virtual Machine options found in the Actions pane. When you do, Windows will launch the New Virtual Machine Wizard. The wizard’s initial screen explains that you can click Next to begin customizing a virtual machine, but that you also have the option of clicking Finish right now to create a... --- ### Customize the Places Bar in Office XP/2003 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/customize_the_places_bar_in_office_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I customize the Places Bar in Office XP? In Office 2000 you needed to either edit the registry or use a utility to change the places bar and could not do it on the fly. Also, the places bar was limited to no more than ten entries. With Office XP, it's easy to add new places right from the File | Open or File | Save dialog and you can have more than ten. You can easily access frequently used folders or even partitions. Open any Office XP application such as Word etc. Go to the File menu then select either Save or Open. Browse to the folder you want added to the Places Bar and select it. Click on the Tools menu and choose Add to "My Places". The folder now appears in your places menu. You can now move it up or down as desired. Right-click the folder in the left pane and select Move Up until you get it to the desired position. If you have more icons than will fit on the bar, a small arrow appears to indicate there are more icons and you can scroll up or down the list. If scrolling isn't does sound so hot, you can resize the dialog window to show more, made easier if you switch to small icons. You can also add removable ZIP drives, USB devices, Disk-on-key USB devices, Floppy drives and what not. You can also add FTP sites and browse... --- ### Windows XP SP1 Info - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_sp1_info/ - Categories: Patches and Service Packs - Article Type: Overview What's SP1? The service pack is a collection of updates for Windows XP. These updates address: Security issues (including the Windows XP Update Package) Operating system reliability Application compatibility Windows XP Setup Note: If you have not yet installed the Windows XP Update Package, you only need to install Service Pack 1 because the security update is included. To download SP1 for Windows XP: Download Windows XP SP1 Network Installation (125mb) The Network Installation is ideal for IT professionals installing SP1 on multiple computers. Get more information about SP1 and instructions on how to deploy it. SP1 Express Installation (typically ~30mb) Use the Express installation if you have only one computer to upgrade to SP1. Get more information about SP1 and instructions on how to install it. The Express installation checks your computer and installs only the files that are necessary to bring your computer up to date. As a result, the number of files installed and the time required may be less for computers that already have Windows XP hotfixes installed. SP1 official web site: http://www. microsoft. com/windowsxp/pro/downloads/servicepacks/sp1 Additional SP1 Resources SP1 Installation and Deployment Guide The Microsoft Windows XP Service Pack 1 Installation and Deployment Guide provides instructions for administrators installing Service Pack 1 for Windows XP. This guide includes information for advanced users, technical details, procedures, and recommendations for successfully installing the service pack on multiple computers in a small business or corporate environment. Deployment Tools Download the Windows XP Corporate Deployment Tools (deploy. cab) for... --- ### Windows Update Problems - Error 0x800A138F - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/wu_problems_800a138f/ - Categories: Windows Server 2003 - Tags: Windows Update - Article Type: Overview Many users of Windows XP, Windows 2000 and Windows Server 2003 have had problems when trying to access the Windows Update site. Windows Update works fine scanning for updates, but when you choose to download and install them the page displays this happy error message: Windows Update has encountered an error and cannot display the requested page. 0x800A138F BTW, this error is not the only error message one might receive while trying to scan, download or install Hotfixes from the Windows Update site. Here is my current list of other Windows Update error codes and their respective solutions: Windows Update Problems - Error 0x8007007E Windows Update Problems - Error 0x80070485 The 0x800A138F error is actually a general error message, and many people get it when they visit Windows Update. But after the the MSBlast virus was unleashed a few months ago, Microsoft changed a few things at the main update website. This worm was expected to attack windowsupdate. com on the 16th of August 2003 by using a distributed denial of service attack (DDOS). To prevent this attack Microsoft made a few changes on the WU site. One of them was to use Akamai for additional bandwidth and this connectivity is exclusively using HTTPS (SSL) for the downloading of the update catalogue. It is since then that an escalation in the number of 0x800A138F error messages was reported. As stated in the previous paragraph, the 0x800A138F error is in fact a general error message. To get a clearer... --- ### How Router Interfaces get their names on Cisco Routers - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_how_router_interfaces_get_their_names_on_cisco_routers/ - Categories: Cisco - Article Type: Overview Why is your router’s Ethernet interface called Ethernet0/0 on one router but Ethernet 3/0 on another router? Where do these names come from? This article will explain how Cisco router interfaces get their names. Where do Router Interfaces get their names? Router interfaces get their names when the router boots.  A “device discovery” takes place and the names of the interfaces are generated based on a predicable method. On fixed interface routers (like the older 2500 series routers) the interfaces will always be the same. However, on newer routers like 2600, 3600, 3700, and 2800 series routers, interfaces can be modular. That means that the interfaces are cards (modules) that can be “plugged into” the router in different slots. Some of these interfaces are on WAN interface cards (WIC) and some are on Network Modules (NM). Other router interfaces will be built right onto the router. The newer model routers have different names for some of these slots like enhanced network modules (NME) and high-speed WIC (HWIC). However, for the purposes of naming the interfaces, the effect is the same. Interface Naming Conventions Cisco router interfaces are named with the following convention: Media-type slot#/port# The media type is Ethernet, FastEthernet, GigabitEthernet, Serial, Token-ring, or other media types. You must keep in mind that a 10Mb Ethernet interface is the only kind of Ethernet interface called Ethernet. A 100Mb Ethernet interface is called a FastEthernet interface and a 1000Mb Ethernet interface is called a GigabitEthernet interface. Now let’s... --- ### What you need to know about BGP routing protocol - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_what_is_bgp/ - Categories: Cisco - Article Type: Overview Perhaps you are thinking that you could care less about some routing protocol called BGP. Could it possibly have anything to do with your every day life? The answer is yes. BGP is the routing protocol of the Internet. BGP is how all Internet routers route your email and web requests across the Internet. Without BGP, no traffic would flow across the Internet and the Internet would be useless. Let’s learn about BGP... What is BGP? In the early days, the Internet used static routes, but very quickly network administrators couldn’t keep manually updating their routing tables. Later, Internet network admin’s used a protocol called EGP but EGP was not scaleable. BGP was introduced to solve all these problems and more. BGP stands for Border Gateway Protocol and the most current version is BGP4. BGP4 is based on RFC4271. BGP is a routing protocol (software) that runs on routers. BGP allows for fully decentralized management of the Internet. That means, if you have a BGP router on the Internet, you can tell all other routers what networks you have available to everyone in the world. BGP calls each routing domain an autonomous system (AS). BGP is called a path vector routing protocol and its main metric is “shortest AS path”. That means that it selects the best path, through the Internet, by choosing the route that has to traverse the fewest autonomous systems. Do I need to run BGP on my home or small business router? The... --- ### Controlling Access to Message Attachments Through OWA, Part 3 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/control-exchange-server-2007-attachments-through-owa-part-three/ - Categories: Exchange Server - Article Type: How To In the previous part of this article series, I showed you several different options for controlling how users are allowed to access attachments through OWA. In this article, I want to conclude the series by talking about a feature that’s new to Exchange Server 2007; Web Ready Document Viewing. What is Web Ready Document Viewing? If your users are accessing their mailbox through OWA, then you really don’t know where they are logged in from, or what the capabilities are of the machine that they are using. Web Ready Document Viewing allows you to ensure that users are able to open certain types of attachments, even if the application that is normally associated with those attachments is not installed. For example, I have a very strict policy of never taking my laptop with me on vacation. However, last year when I visited the Arctic, I knew that someone was going to be E-mailing me an article that I had to review so that it could be published in a certain issue of a magazine. Needless to say, cyber cafes are a little tough to come by in that part of the world, but I did eventually find one, and was able to get my E-mail. Fortunately, I had the foresight to enable Web Ready Document Viewing, and I was able to view the document through a Web browser. The Internet kiosk that I was using did not have Microsoft Office installed, and had it not been for Web Ready Document... --- ### How can I transfer NT4 domain data using the Active Directory Migration Tool? - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/active_directory_migration_tool_usage_nt_w2k/ - Categories: Active Directory (AD) - Article Type: How To When migrating to Windows 2000 Active Directory Services, many organizations choose the path of restructuring rather than upgrading. This involves building a pristine Windows 2000 ADS environment and then adding the organization’s users, groups, and computer accounts rather than upgrading a Windows NT4 domain. Of course, with a clean ADS domain structure, you still have to import the domain information from your existing NT 4. 0 domain into your new Active Directory, while maintaining seamless access to network resources for your users. This is where Microsoft’s Active Directory Migration Tool (ADMT) comes in. ADMT provides a fast way to migrate your NT 4. 0 domain data into the W2K Active Directory. Overview of ADMT features The ADMT interface is basically a series of wizards that step you through the process of migrating user accounts, groups, service accounts, trusts, and computers. The features and individual settings found in the migration tool are too numerous for me to describe them all in detail here; however, I'll provide an overview to familiarize you with the main features. User Account Migration The User Account Migration Wizard allows an administrator to essentially copy existing NT 4. 0 domain user accounts to the Windows 2000 AD, complete with the same user settings, such as name, home directory, and logon times. An important feature is the ability to migrate SID history information along with the user accounts. Maintaining users SID history allows them to access the same network resources, such as files and Exchange 5. 5 mailboxes, while... --- ### Administer Exchange 2003 from Windows XP SP1 - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/administer_exchange_2003_from_windows_xp_2000_2003/ - Categories: Exchange Server - Article Type: How To How can I manage my Exchange 2003 server from a Windows XP/2000/2003 workstation? This article describes the steps to be taken in order to be able to administer an Exchange 2003 server from a Windows XP Pro computer that is installed with SP1 or SP1a or from a Windows Server 2003 Member Server. Note: For an Exchange 2000 version of this page and for more background on this issue (with detailed screenshots) click on the following article: Administer Exchange 2000 from Windows XP SP1. You can administer Exchange Server 2003 servers from a Windows computer by using Exchange Setup to install only Microsoft Exchange System Management Tools. Note: If you have not installed an Exchange 2003 server in your organization, you must first run ForestPrep. ForestPrep extends the Active Directory schema to include Exchange-specific classes and attributes, and creates the container object for the Exchange organization in Active Directory. To install Exchange System Management Tools ensure that the computer meets the following requirements: The computer is running Windows XP, Windows Server 2003, Windows 2000 Professional, or Windows 2000 Server SP3. The computer name does not contain unsupported characters. The language version matches any previous installation of Exchange 2000 System Management Tools (except for upgrades from English to Korean, Traditional Chinese, or Simplified Chinese). Log onto the domain with an account that has local machine administrator permissions. Depending on the version of Windows that is running on the computer, install the required services. Windows... --- ### Problematic SSL Website Certificate on the Official Website of the Bank of Israel - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/bankisrael/ - Categories: Security - Article Type: Overview Problematic SSL Web Certificate on the Official Website of the Bank of Israel Any website operator that wants to secure the site or some of it's pages with SSL must obtain a valid certificate from a trusted third party CA. Without a valid SSL certificate any user who will try to surf to that site will receive a warning telling them that the certificate should not be trusted for validity. When you try to surf to the official website for the Bank of Israel (Bank Israel) http://www. bankisrael. gov. il  you will have an option to view the website in English or in Hebrew. The English version does not have SSL set up so we won't use it here. Instead we will go to the Hebrew version: We will click on the Information and Database icon: Now, let's go to the link that allows us to check the validity of other people's ID numbers and restricted accounts: Up to this point the surfing was done via regular un-encrypted HTTP (TCP port 80). We will now enter the ID number (Tehudat Zehut number) for the person I want to enquire about, and click Search (in Hebrew - Hapes): A pop up Security Alert warning message will appear, telling me I'm about to enter a secure site. Good. I will now click Ok: Hold on! ! ! What's that? ? ? Another security alert message, this time telling me that the source of the certificate protecting the site (need I remind you? The official website for the Bank of... --- ### Configure Message Security in OWA 2003 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_message_security_in_owa_2003/ - Categories: Exchange Server - Article Type: How To How can I configure e-mail and message security in Outlook Web Access (OWA) 2003? After installing the online Certificate Authority (CA) and after obtaining a user Digital Certificate signed by your CA you will now need to configure Outlook Web Access (OWA) to use the new message security features. In Outlook Web Access you will need to install the S/MIME control by downloading it to the computer that you are using to browse. These features include: Message encryption Message signing Other benefits are described in the S/MIME Benefits in OWA 2003 article. Note: These features are only available as part of the Exchange Server 2003 OWA, and are not available on previous versions of OWA. Note: Before being able to encrypt or sign messages you will need to apply for, receive and install a Digital Certificate designated for this purpose. For more info please see the Related Articles section at the bottom of this page. BTW, there's an issue with IE 7 and the S/MIME control found in Exchange 2003. Read more about it and how to fix it in Internet Explorer 7 Crashes when Posting Messages in OWA 2003. In order to configure Outlook 2003 to use the new message security settings please follow these steps: Open Internet Explorer. Type http://server. domainname/exchange in the address field and press Enter. Type the user name and password in the dialog box. In the Navigation Pane, click Options.   On the Options page, under E-Mail Security, click Download.   If a File Download... --- ### Configure TCP/IP from the Command Prompt - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/configure_tcp_ip_from_cmd/ - Categories: Networking - Tags: IP address, Netsh.exe, TCP/IP - Article Type: How To Learn how to configure TCP/IP settings using Netsh.exe in this article by Daniel Petri. In order to configure TCP/IP settings such as the IP address, Subnet Mask, Default Gateway, DNS and WINS addresses and many other options you can use Netsh. exe. Netsh. exe is a command-line scripting utility that allows you to, either locally or remotely, display or modify the network configuration of a computer that is currently running. Netsh. exe also provides a scripting feature that allows you to run a group of commands in batch mode against a specified computer. Netsh. exe can also save a configuration script in a text file for archival purposes or to help you configure other servers. Netsh. exe is available on Windows 2000, Windows XP, and Windows Server 2003. You can use the Netsh. exe tool to perform the following tasks: Configure interfaces Configure routing protocols Configure filters Configure routes Configure remote access behavior for Windows-based remote access routers that are running the Routing and Remote Access Server (RRAS) Service Display the configuration of a currently running router on any computer Use the scripting feature to run a collection of commands in batch mode against a specified router. What can we do with Netsh. exe? With Netsh. exe you can easily view your TCP/IP settings. Type the following command in a Command Prompt window (CMD. EXE): ​netsh interface ip show config With Netsh. exe, you can easily configure your computer's IP address and other TCP/IP related settings. For example: The following command configures the interface named Local Area Connection with the static IP address 192. 168. 0. 100, the subnet mask of 255. 255. 255. 0, and a default gateway of... --- ### Controlling IE cache size via GPO - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/controlling_ie_cache_size_via_gpo/ - Categories: Active Directory (AD) - Article Type: How To I have seen this question several times at different message boards, so I've decided to write something on it. The built-in GPO settings do not provide a method for controlling the size of the "Temporary Internet Files", hence the users (if no restriction on the user profile size exist) can quickly fill up the disk space on their computers. The problem becomes more serious with Terminal Services - user profiles start growing and chewing up the disk space on the server. Follow the steps outlined in the Adding New Administrative Templates to a GPO article on general instructions on how to add or remove an . ADM file from the Administrative Templates section in GPO. Note: As with many custom Administrative Templates, you will need to remove the requirement to show policy settings that can be fully managed in the GPO editor. Follow the above link for instructions on how to do that. Next, go to User Configuration > Administrative Templates > Windows Components > Internet Explorer Cache and configure the cache size. Needless to say, as with any GPO setting, this option will only work on Windows 2000 operating systems and higher, and requires you to have an Active Directory in place. Grab it from (1kb) Related articles You may find these related articles of interest to you: Adding New Administrative Templates to a GPO Disable USB Disks Disable USB Disks with GPO Disable Writing to USB Disks in XP SP2 Disable Writing to USB Disks with... --- ### Secure Remote Access – Configuring and Session Recording - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/creating-secure-auditable-remote-access-management-environment-windows-server-security/ - Categories: Windows Server 2008 - Article Type: How To In today's complex network and IT environments more and more people need to gain access to the corporate servers, applications, databases and management tools. Secure Remote Access allow secure access to corporate servers across the Internet, however can you see what these remote users are doing? While trying to minimize the human intervention with these critical services, the IT manager needs to consider how to allow the remote access and management of these services, who to allow access, and how to secure, audit and record this access and actions that are performed on the servers. As if not an issue on its own, lowering costs and maintenance fees has moved many large and medium corporations to using hired external experts or outsourcing services while trying to minimize their own internal IT department. Furthermore, with today's compliance requirements, companies need to be able to proactively monitor, audit and record these remote access sessions. This poses an additional issue on the management scenarios, and now the IT manager has an additional concern on their mind. In this article I will cover some of the most common remote access and management scenarios available, and I will try to show you what the benefits and drawbacks (or challenges) are for each scenario. I would also like to use the opportunity to tell you a bit about ObserveIT – A company which I have recently began working for (read more about my new job at my "My new job - VP Technologies... --- ### Customizing New Meeting Request Outlook Form - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/customizing_new_meeting_request_outlook_form/ - Categories: Exchange Server - Article Type: How To You are all familiar with the standard Outlook form for meeting requests where you specify the meeting details and invite attendees and probably have seen it so many times that an idea of changing the way the form looks or adding some information to the form is something you have not even thought about. But suppose one day you come to work and discover that there had been a management meeting (oh well... they always have those weird requests) and the folks in charge have come to conclusion that there are too many meetings held in your organization. Almost every topic involving more than one attendee results in a meeting being scheduled, while quite a generous amount of the issues planned to be resolved during the meeting can actually be solved by simple phone call. A standard meeting form:   At this stage the management issues a new policy and requests from the messaging administrators to customize the meeting request form and add some guidelines to remind the mere mortals not to waste company resources. Those familiar with creating Outlook forms will probably have the quick answer and will create a custom Outlook form published to "Organizational Forms Library" (more on this later), and will be on the right track, but yet without a complete solution. In order to actually to achieve the goal we need to perform several tasks: Create a custom Outlook form Publish the new Outlook form to Organizational Public Forms public folder Configure... --- ### Windows XP SP1/SP1a Patches - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_sp1_patches/ - Categories: Patches and Service Packs - Article Type: Overview You should consider installing Service Pack 2 as soon as possible On August 9, 2004, Microsoft released SP2 for Windows XP. SP2 is the latest collection of updates for Windows XP. Download Windows XP SP2 Network Installation (266mb) See the Windows 2000/XP SP Slipstreaming page for info on how to integrate SP2 into your existing media. Required Patches Windows XP Home or Professional with Service Pack 1 or Service Pack 1a requires the following security-related patches (If you don't know about SP1a or if you want to read about it go to my Windows XP SP1a Info page): Make sure you read Internet Explorer 6. 0 SP1 Patches and IIS 5. 1 Patches before you go on. October 2005 MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706) MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) MS05-047 : Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749) MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) MS05-044 : Vulnerability in the Windows FTP Client Could Allow File Transfer Location Tampering (905495) August 2005 MS05-043 : Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423) MS05-042 :... --- ### Automatically Power Up VMware Server Guest Operating Systems > This free article outlines techniques for auto-booting a VMWare ESX Server Guest operating system. Screenshots are included as well. - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/automatically-power-up-vmware-server-guest-os/ - Categories: VMware - Article Type: How To Recently, there was a Petri Virtualization Forums member asking about how he could automatically power up a VMware Guest OS. To help that member and others member who may have the same question, I have created this article on how to automatically power up VMware Server Guest Operating systems on server boot up. Why do I need VMware Server Automatic Power up Options? Most commonly on a production server, you will want to power up VMware Server virtual machines when the server boots up. You don't want to have to remember to login to the server, start the VMware Server Console, then turn on the guest operating systems one by one. Plus, what if the server reboots in the middle of the night for some reason or another? All of those production virtual machines would be unavailable available until someone was alerted to power them on. For this reason, you should consider configuring VMware Server automatic power up options. Let's find out how to do it... Configure VMware Server Automatic Power up Options To configure VMware Server automatic power up motions for Virtual Guest OS systems, go to your VMware Server Console. Select the tab of the virtual machine that you want to configure the automatic power up options for. Click on Edit Virtual Machine Settings, either on the Summary View for that Virtual Machine (VM) or by going to the VM Menu, then Settings. Once inside the VM Settings, click on the Options tab, then select... --- ### How to Configure Local Username Database in Cisco IOS - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_how_to_configure_local_username_database_cisco_ios/ - Categories: Cisco - Article Type: How To In this article, we will take a step further in securing our Cisco router by using a local username / password database in the Cisco IOS. Thus, a user must know a username AND password to be granted access to the Cisco IOS. Let’s see how this is done. Local Authentication The most basic level of security you can configure on a Cisco IOS device is a password. When this is done, a password is assigned to allow access to the privileged/global configuration mode, and to protect initial entry to the user mode of the IOS. However, the Cisco IOS can take this a step further, and have actual usernames and passwords assigned for access. By doing this, you have the real name of the person who is accessing the device. If you chose to do so, this username could be logged so that you know when that user logged into the router, and when they logged off. The Cisco IOS can, of course, also support external authentication through services like Cisco ACS and RADIUS. In this example, we will create a basic local authentication database containing usernames and passwords, and then use that to login to the Cisco IOS device. Creating the Database To create the user database, you use the username command. Let’s create 2 users with different privileges. The Admin user will have level 15 (Cisco administrator / super-user access). The user Bob will have level 7 access (moderate user access). Here is how it is done:... --- ### How to Unlock Password Protected Word Documents - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/word-password-recovery/ - Categories: Office - Article Type: How To The following article details the steps for removing Microsoft Word document passwords using the our recommended download for Office document password removal. These instructions are valid for all versions of Microsoft Office including Office 2007. Note: Use this article if you're looking for Excel password recovery. Step 1: Install the Word Password Recovery Download To recover your Word document password, you'll need to first download the Petri-recommended Office Password Recovery Pro utility. *As has been pointed out in our comment's below, the software is not free.  There will be a registration fee to fully recover any document. Run the setup file, using the recommended default install options. Step 2: Start the Password Recovery Wizard Use the Open command on the toolbar (or in the application’s file menu) and locate the Word document you’d like to access. This launches the Office Password Recovery wizard. Step 3: Choose to Remove or Retrieve the Password Office Password Recovery gives you two ways of accessing your protected file; completely remove the password protection, or reveal the original password.   Choose the option that best meets your needs: Recovery Option 1: Delete the Existing Password Using a web-based tool, the application gathers information about your document’s encryption and determines the ideal configuration needed to remove your password. Note: This option removes all password encryption on your file and leaves the document completely unlocked until you choose to re-enable password protection. Once the process completes, you simply specify where to save the decrypted file and hit OK... . --- ### Controlling Access to Message Attachments Through OWA, Part 2 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/control-exchange-server-2007-attachments-through-owa-part-two/ - Categories: Exchange Server - Article Type: How To In the first part of this article series, I gave you a general description of the options that are available to you for controlling the way that users are allowed to access message attachments through OWA. In this article, I want to continue the discussion by giving you some more specific information on how to implement the restrictions that I have already talked about in the previous article. Public VS. Private As I mentioned in the previous article, OWA maintains two separate profiles; one for public computers, and one for private computers. For the purposes of this article, I will be working with the Private Computer File Access profile. Keep in mind though that the exact same techniques can be used to configure the Public Computer File Access Profile. Direct File Access To begin configuring OWA file access, open the Exchange Management Console, and navigate through the console tree to Server Configuration | Client Access. Next, select your client access server and click the Properties link. When you do, the console will display the OWA (Default Web Site) Properties sheet. Go to the properties sheet’s Private Computer File Access tab, shown in Figure A. Figure A The Public Computer File Access tab is used for configuring file access through OWA while logged in through a private computer. The first section listed on this tab is the Direct File Access section. Direct file access refers to being able to open attached files through OWA. To configure direct file... --- ### How to Set Up ADMT for a Windows NT 4.0-to-Windows Server 2003 Migration? - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/active_directory_migration_tool_usage_nt_windows_2003/ - Categories: Active Directory (AD) - Article Type: How To MS KB 326480 has more info: This article describes how to set up the Active Directory Migration Tool (ADMT) to perform a migration from a Windows NT 4. 0-based domain to a Windows Server 2003-based domain. You can use the ADMT to migrate users, groups, and computers from one domain to another, and to analyze the migration impact before and after the actual migration process. Make sure that you run ADMT from the primary domain controller (PDC) that is the Flexible Single Master Operation (FSMO) role holder in the target domain. How to Set Up ADMT for a Windows NT 4. 0-to-Windows Server 2003 Migration Before you upgrade a Windows NT 4. 0 domain to a Windows Server 2003-based domain, the following domain and security configurations are required. Note: This article assumes that the source domain is running Windows NT 4. 0 Service Pack 4 (SP4) or later with 128-Bit encryption, and that the target domain is a Windows Server 2003-based domain in native mode. Also, the Windows Server 2003 must have 128-Bit encryption (which comes as a default setting in Windows 2003). Trusts Configure the source domain to trust the target domain. Configure the target domain to trust the source domain. Groups Add the Domain Admins global group from the source domain to the Administrators local group in the target domain. Add the Domain Admins global group from the target domain to the Administrators local group in the source domain. Create a new local group in... --- ### Administer Windows 2000/2003 Domain from Windows XP - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/administer_windows_2000_2003_domain_from_windows_xp/ - Categories: Active Directory (AD) - Article Type: How To How can I administer Windows 2000/2003-based computers using Windows XP Professional-based clients? This article describes how to use the Windows Server 2003 Administration Tools package on Windows XP Professional or how to use the Windows Server 2003 family to remotely administer Microsoft Windows 2000 Server family-based and Windows Server 2003 family-based computers. The following topics are discussed in this article: How to remotely administer computers that are running Windows 2000 Server family products or Windows Server 2003 family products from Windows Server 2003 and Windows XP-based clients that are using the Release to Manufacturing (RTM) version of the Adminpak. msi file from the Windows Server 2003 media. How to download the RTM version of the Windows Server 2003 Administration Tools Pack from the Microsoft Web site. Known issues that may occur when you use Administration tools from the Windows Server 2003 Adminpak. msi file to manage Windows 2000-based and Windows Server 2003-based computers. Compatibility issues that occur when Windows 2000 Professional-based computers that have Windows 2000 Administration tools installed are upgraded to Windows XP. Compatibility issues that occur when Windows 2000 domain controllers are upgraded to Windows Server 2003 domain controllers Other procedures to remotely administer Windows-based servers. Note: You might also want to read Download Windows 2003 Adminpak, Administer Exchange 2003 from Windows XP SP1, Administer Exchange 2000 from Windows XP SP1 and Extract Specific Tools from Adminpak. msi. Windows Server 2003 Administration Tools Pack (Adminpak. msi) To make the remote management of your servers easier, Microsoft has included... --- ### Basic Active Directory Services Interface (ADSI) Scripting - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/basic_adsi_scripting/ - Categories: Active Directory (AD) - Article Type: Overview ADSI is a set of COM objects that are used to programmatically manipulate a namespace. A namespace could be anything from the Active Directory to an application such as MS Exchange Server. Since ADSI is based on COM, it may be scripted using any language with COM bindings (any language that supports accessing the COM subsystem). This means that you may access ADSI with C\C++, Visual Basic, Java, Perl or many other languages. You could even embed ADSI scripts into an MS Office macro using VBA as part of a workflow process. The possibilities are almost limitless. ADSI Concepts It is necessary to understand some terminology before delving into ADSI programming. Component Object Model (COM) – A technology that allows the creation of binary compatible software components. This simply means that a COM component is a chunk of software that may be accessed anywhere a COM system is available. This is regardless of location, language or even operating system. It helps to think of this in a similar fashion to the Java system. Java may run wherever a Java Virtual Machine (JVM) is available. COM is accessible wherever a COM subsystem is available. But do not confuse the purposes of COM and Java. They are two very different technologies with different purposes. Interface – A set of functions that are packaged and grouped together according to purpose. COM components provide a number of Interfaces that are available for use in applications. For example... --- ### Temporarily Bypass Windows Server 2008 Activation - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/bypass-windows-server-2008-activation/ - Categories: Windows Server 2008 - Article Type: How To In Windows Server 2008 (and previous Microsoft operating systems) you must activate your computer in order to use it legally. You have 30 days after installing Windows to activate it online or by telephone. If this 30-day period expires before you complete activation, Windows will stop working. If this happens, you won't be able to create new files or save changes to existing ones. You can regain full use of your computer by activating your copy of Windows. Activation is mandatory (unless of course you have a different sort of licensing in your organization). Last evening, while giving a demo to one of my classes, I started up a virtual machine running Windows Server 2008 RC1. The VM had been installed a few weeks ago and hasn't been used since then, but before it was shut down, I had it configured with a static IP address, default gateway, and DNS server. When the machine was last configured, it was on my office network, thus, the network settings that had been applied to it fit my office network setup. The issue was that now I needed it, and I needed it at a different location- one that had a DHCP Server on it. Because of that, booting the machine with the current network configuration caused the virtual machine to not be able to access the Internet. All this is good and well, except it happened just in time for the Windows Activation pop-up to appear! If you chose to automatically... --- ### Change Recovery Console Administrator Password on a Domain Controller - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/change_recovery_console_administrator_password_on_a_domain_controller/ - Categories: Active Directory (AD) - Tags: Disaster Recovery - Article Type: How To How can I change the Recovery Console Administrator password on a Domain Controller? When you promote a Windows 2000 Server-based computer to a domain controller, you are prompted to type a Directory Service Restore Mode Administrator password. This password is also used by Recovery Console, and is separate from the Administrator password that is stored in Active Directory after a completed promotion. The Administrator password that you use when you start Recovery Console or when you press F8 to start Directory Service Restore Mode is stored in the registry-based Security Accounts Manager (SAM) on the local computer. The SAM is located in the %SystemRoot%System32Config folder. The SAM-based account and password are computer specific and they are not replicated to other domain controllers in the domain. For ease of administration of domain controllers or for additional security measures, you can change the Administrator password for the local SAM. To change the local Administrator password that you use when you start Recovery Console or when you start Directory Service Restore Mode, use one of the following methods: Method #1 If Windows 2000 Service Pack 2 or later is installed on your computer, you can use the Setpwd. exe utility to change the SAM-based Administrator password. To do this: At a command prompt, change to the %SystemRoot%System32 folder. To change the local SAM-based Administrator password, type setpwd and then press ENTER. To change the SAM-based Administrator password on a remote domain controller, type setpwd /s: servername and then press ENTER, where... --- ### Change Print Server - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/changeprintsrv/ - Categories: Administrative Tools and Scripts - Article Type: How To Description Do you need to change your organizational print server? You might find the task of updating the clients' printers' settings pretty tiring... This utility will update your clients' printers to the new print server through a logon script. The utility does not affect local printers, Netware printers and network printers from a different print server than the one specified in execution arguments. Requirements: Windows NT4/2000/XP/2003 Current version: 1. 3 Version 1. 3 highlights: Bug fix: Printer connections are deleted when using a case-sensitive command line argument. The bug was fixed. Download Download (16kb) You need to extract the tool/script found in the downloaded file by using WinZip or similar. Syntax ​ChangePrintSRV from Switches: /localports – Also changes the printers that are installed as local port. This option require administrative privileges, i. e. the user has to be a member of the local administrator/power users group. This switch causes the spooler service to restart. Example: ​ChangePrintSRV from oldprintsrv NewPrintSRV /localports Detailed Instructions Install and configure your new print server. You can use Microsoft Print Migrator for printers and printer driver's migration from one print server to another. The tool is available for download HERE. Make sure your new print server is ready: All printers from the old server are installed on it with the exact same names. All printers are shared and have proper security settings. Test the utility on a single workstation. Copy ChangePrintSRV to a network share. For example: ​''fileSRV'Utils'ChangePrintSRV. EXE Make sure there are several network printers from your existing... --- ### Configure Active Directory Connector Connection Agreements - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/configure_active_directory_connector_connection_agreements/ - Categories: Exchange Server - Article Type: How To How do I configure Active Directory Connector Connection Agreements (CA)? MSKB 296260 has the following information: In most ADC deployments, your configuration falls under one of the following scenarios; before you configure Connection Agreements (CA), determine which scenario applies to your situation: First scenario. The Exchange Server 5. 5 mailboxes are associated with accounts in a Windows 2000 Active Directory domain. Second scenario. The Exchange Server 5. 5 mailboxes are associated with accounts that are located in a Windows NT 4. 0 domain, even though a new Windows 2000 Active Directory domain has been created. In both scenarios, you need to install the ADC. To install the ADC follow this article: Active Directory Connector Installation First Scenario To configure the two-way user Connection Agreement: On the Start menu, point to Programs, point to Administrative Tools, and then click Active Directory Connector Management. Right-click Active Directory Connector, point to New, and then click Connection Agreement. Click the General tab, and then: Type the name of the Connection Agreement in the Name box. Under Replication Direction, click Two-way. When you receive the following message, click OK: The connection agreement must now write to the Exchange directory. Click the Active Directory Connector server that you want to use. Note: If this is the first installation, there is only be one server available. Click the Connections tab, and then: Under Windows Server Information: Make sure that: The Server box contains the name of your Windows 2000-based server. The Authentication box defaults to "Windows Challenge/Response". The account that... --- ### How to configure Multiple Local GPOs in Windows Vista? - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_multiple_local_gpo_in_windows_vista/ - Categories: Windows Vista - Article Type: How To How to configure Multiple Local GPOs in Windows Vista? Windows Vista has the ability to create multiple local group policies (GPOs). Wow! This means that whenever you want to configure different settings for different users you can do so easily without the need to mess with NTFS permissions (this was one of the methods used by Pre-Vista administrators to bypass the single LGPO limit in Windows 2000/XP/2003). You can read more about LGPOs on my Understanding Multiple Local GPOs in Windows Vista article. In order to configure Multiple Local Group Policies perform the following steps: Go to Start > Run and type MMC. Press Enter. A new MMC window will open. Go to File > Add Remove Snap-in.   In the Add or Remove Snap-ins window, scroll till you reach Group Policy Object Editor. Click on it and then on the Add button.   In the Welcome window you'll see that "Local Computer" is selected by default. This is the same as in Windows 2000/XP/2003. However in Windows Vista you can click on the Browse button. Do so.   In the Browse for a GPO window, click on the Users tab. Note that you'll see all the local user accounts (these are users created on your local computer, NOT users from the AD domain). You can select each one of these users and click on Ok, one user at a time. Note that you can also select the Administrators group. This will allow you to set an LGPO for any... --- ### Configure TCP/IP to use DHCP and a Static IP Address at the Same Time - Published: 2009-01-07 - Modified: 2022-05-27 - URL: https://petri.com/configure_tcp_ip_to_use_dhcp_and_a_static_ip_address_at_the_same_time/ - Categories: Networking - Article Type: How To Thanks to reader pnatan from Tapuz we can do that with just a simple registry tweak. To configure your computer (tested on Windows 2000, Windows XP and Windows Server 2003) to use both a DHCP obtained IP address and a statically configured IP address follow these steps: Configure your computer to use DHCP Right-click My Network Places and choose Properties. On the NIC that is (usually) labeled as Local Area Connection - right-click and choose Properties.   Select TCP/IP (make sure you don't remove the check mark accidentally) and press the Properties button.   Make sure you have "Obtain Automatically" selected.   You can verify your settings by using a simple ipconfig command. Type ipconfig /all at a Command Prompt:   Ok all the way out. Add a second (or third and so on), static, IP address Click Start and choose Run. Enter Regedit and press Enter. Note: On Windows 2000 and NT you need to run Regedt32 instead. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSetServices\Tcpip\Parameters\Interfaces\{B003AD4A-B6DB-44FD-9741-CBA3C51B6498} (actual GUID of the NIC may vary, select the one that represents your own NIC (from step 2 above) Select the IPAddress key and double click it. In the Edit Multi String dialog box enter a second (and third and so on) IP address. Make sure you enter each IP on a separate line. Click Ok.   Select the SubnetMask key and double click it. In the Edit Multi String dialog box enter a second (and third and so on)... --- ### Why do I get error messages when I try to convert FAT16 partitions to FAT32 in Windows 2000/XP/2003? - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/convert_fat16_to_fat32_in_windows_2000_xp_2003/ - Categories: Disk Management - Article Type: Overview In W2K, XP and Windows Server 2003, if you attempt to convert a File Allocation Table (FAT or FAT16) partition to the FAT32 file system using the "drive:'convert drive: /fs:fat32" command-line switch, where drive is the drive from which you are running the convert utility and the drive you are trying to convert to FAT32, you may receive the following error message: The type of the file system is FAT. Convert cannot gain exclusive access to the drive drive, so it cannot convert it now. Would you like to schedule it to be converted the next time the system restarts. (Y/N) When you restart your computer, the conversion process seems to start, and then the following error message is displayed: FAT32 is not supported If you attempt use the "drive1:'convert drive2: /fs:fat32" command- line switch, where drive1 is the drive from which you are running the convert utility and drive2 is the drive you are trying to convert to FAT32, the following error message is displayed: FAT32 is not a valid file system This behavior occurs because Windows 2000/XP does not have a process for converting a partition from FAT16 to FAT32. The only conversion process that Windows 2000/XP supports is converting from FAT16 or FAT32 to the Windows NT file system (NTFS). Note: If you type convert /? at a command prompt, there is not an option to convert to the FAT32 file system. Note: Windows 2000/XP/2003 provides NO way to convert NTFS partitions to... --- ### Creating security alerts of abnormal user actions on Windows servers using Microsoft System Center Operation Manager 2007 and ObserveIT - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/creating-security-alerts-using-scom-2007-and-observeit/ - Categories: Windows Server 2008 - Article Type: How To System and software downtime frequently mean lost revenues, lowered employee productivity and reduced customer satisfaction. Despite the fact that companies are investing in high-availability systems and performance monitoring solutions for data centers, many are failing to follow best practice procedures to avoid human errors. Do you use any social networks? Follow ObserveIT on Facebook, Linkedin and/or Twitter. While some very limited capabilities exist within the built-in Windows Auditing mechanism, they are limited to a very basic set of actions, such as shutting down a system or deleting a file. Even if configured properly, these resulting events are cryptic and hard to understand, quickly filling the Windows Event Viewer and giving only a limited understanding of what the user has done during that period. Imagine being able to receive alerts whenever a user performs an action such as deleting a file, opening a specific network share, using the Registry Editor to change a key or value, opening an RDP connection to a specific server, or even using Internet Explorer to navigate to a specific page in the company’s intranet website. Existing Windows Auditing cannot even begin to deliver this capability. Imagine being able to distinguish between various users, all logging on as “Administrator” to your servers, and knowing the exact name of the person logging on. Furthermore, imagine being able to visually replay the entire user session whenever such an alert is received, thus visually seeing what the user did, where else they performed the same action, and... --- ### Windows Server 2003 Server Performance Advisor (SPA) - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/windows-server-2003-server-performance-advisor/ - Categories: Networking - Article Type: Overview Microsoft Windows Server 2003 Server Performance Advisor (or SPA for short) is a simple but robust tool that helps administrators diagnose the root causes of performance problems in a Microsoft Windows Server 2003 deployment. Actually, SPA is in fact a cool network monitor and performance monitor wrapped into one package so that you can correlate which clients might be causing load on your system. Server Performance Advisor collects performance data and generates comprehensive diagnostic reports that give you the data to easily analyze problems and develop corrective actions. Windows Server 2003 Performance Advisor provides several specialized reports, including a System Overview (focusing on CPU usage, Memory usage, busy files, busy TCP clients, top CPU consumers) and reports for server roles such as Active Directory, Internet Information System (IIS), DNS, Terminal Services, SQL, print spooler, and others.   SPA has many useful templates. There are templates for System Overview, AD, print servers, terminal servers, and so on. Each one of these templates focuses on a specific role and collects different counters depending on the role selected. For example, on a DC SPA will capture the Directory Services counters and then analyze the output from those counter and flag issues it finds for follow-up. To download SPA please follow the link below. To install SPA (on Windows Server 2003 SP1 or above computers) just double-click MSI file and leave the defaults. Some cool things about SPA It's XML based, so the reports that are collected get organized by date... --- ### Windows XP SP1a Info - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_sp1a_info/ - Categories: Patches and Service Packs - Article Type: How To   What's SP1a and what's the difference between SP1 and SP1a? On February 3, 2003, Microsoft released SP1 again as SP1a. Just like SP1, SP1a is a collection of updates for Windows XP. Windows XP SP1a is the same as Windows XP SP1 except that the Microsoft virtual machine (VM) is removed in SP1a. There are no other changes or fixes included in this update. Go to the SP1a official web site If you are not running Windows XP SP1, install SP1a to make sure that you have the latest security and reliability updates for Windows XP. Install any appropriate security updates and hotfixes that are already released or that will be released after SP1 on Windows XP-based computers that are running SP1a. Windows Update will continue to offer the same set of updates for Windows XP-based computers that are running either SP1 or SP1a. To determine if you are running Windows XP SP1, right-click My Computer, and then click Properties. If "Service Pack 1" appears under System, you are already running Windows XP SP1. There is no benefit to installing SP1a if you are already running Windows XP SP1. Microsoft does not recommend that you install SP1a if you are already running SP1. Note: If you are running Windows XP or Windows XP SP1 with the Microsoft VM, you can continue to update the Microsoft VM by using Windows Update. If you are running Windows XP without the Microsoft VM, you do not have to install updates to the... --- ### Cisco 800 series Routers - the best routers to practice for your CCNA exam and learn the IOS - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/cisco-800-series-routers/ - Categories: Cisco - Article Type: Overview So many new or aspiring network administrators have asked me "what is the best router to use to learn the Cisco IOS? ", or "what is the best router to use to practice for your CCNA exam? ", or even, "what is the best router to use to connect your home or small business to the Internet? ". While there are certainly less expensive options that might try to fulfill all three of these needs, in my mind at least, there is one clear answer. That is the Cisco 800 series routers. In this article, we will take a look at what this router line can do and how it can fulfill all of these needs. What is the scoop on Cisco 800 series routers? The Cisco 800 series router lineup is the least expensive and least performance router that Cisco puts their name on (in their current product line up, that is). While Cisco does own Linksys, I am not counting line system routers in this discussion, other than to say that they are lacking the Cisco IOS and all the features that the IOS brings. I am certainly not selling Cisco routers so the point of this article is to only inform you about a product that just might fit your needs perfectly, as it did in my case. With that, let's learn more about this Cisco 800 series product line... As we all want to see a picture, let me show you what my Cisco 871W router looks like:... --- ### How to Configure Passwords to Secure your Cisco Router - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_how_to_configure_passwords_to_secure_your_cisco_router/ - Categories: Cisco - Article Type: How To Maybe you have a new router or you want to verify that you have security properly configured on your existing router. Either way, password security is critical to properly securing your Cisco router. So let’s get started configuring passwords on your Cisco router. Types of Cisco Router Passwords When it comes to basic password security, there are three basic types: Line Passwords Privileged mode Passwords (enable mode) Username Passwords (optional) Let’s explore these. Line Passwords Line passwords are configured on router lines. Examples of lines are: Console Line - The console is the main serial administrative port on a router. This is where you configure the router when it is new and has no network configuration. Aux Line – The aux line is an auxiliary port. Like the console, it is a physical port on every router. You can think of it as a backup console port. Besides being a backup console port, the aux port is periodically used for administrative console dial up access to the router. VTY Lines – Vty lines are “virtual tty” lines and are used when you connect to the router via telnet or ssh. These are not physical lines on the router but virtual “inbound network lines”. Async Lines – Async lines are asynchronous serial lines and are optional. These async lines are created when you insert an async serial card in a router. You can use the async serial lines to connect dumb-terminals (text-based terminals), serial printers, or modems. All... --- ### Best Practices for Exchange Server Migrations - Published: 2009-01-07 - Modified: 2024-09-05 - URL: https://petri.com/best-practices-for-exchange-server-migrations-part-1/ - Categories: Exchange Server - Article Type: How To Any time that I think about server migrations, I always have to cringe a little bit. I'm not anti-progress or anything, it's just that my memory always reflects the way that we used to do migration at a company that I worked at in the early 1990s. Although it was a large, enterprise environment there always seemed to be a haphazard approach to migrations. Typically, when we needed to perform a large-scale migration, the IT staff would arrive early on Saturday morning with software licenses and caffeine in hand, and hope that we could ever written functioning by the time that everyone showed up for work on Monday morning. Obviously, this type of approach simply is not acceptable today. Network servers are far more important to companies today than they were back then. As such, migrations need to be handled in a way that ensures their success, and that limits any disruption to the business processes. Having performed my share of migrations to Exchange Server 2007, I wanted to take the opportunity to share with you some best practices for the migration process. Before I Begin Before I get started, I just want to point out that the information I'm about to share with you does not come from any sort of Microsoft best practices guide. The techniques that I will be discussing are based solely on real world experiences. A Multi-Step Approach Rather than taking the old-school approach of getting hyped up on caffeine, and trying to knock out... --- ### Creating A Postmaster Mailbox In Exchange Server - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/creating-a-postmaster-mailbox-in-exchange-server-2007/ - Categories: Exchange Server - Article Type: How To We’ve all occasionally run into situations in which we have tried to e-mail someone and received an unexpected non delivery report. To a techie, a non delivery report contains a wealth of information that can be used to figure out why the message didn’t reach its intended recipient (I will be discussing this in detail in a future article). For the less technically savvy though, a non delivery report is nothing less than a brick wall in the face. Imagine the frustration that a casual user must feel at receiving a message filled with technical mumbo jumbo, and nowhere to turn to for help. If you are interested in helping senders who receive a non delivery reports, you can do so by creating a postmaster mailbox. By default, the postmaster is used to transmit non delivery reports and any other messages that are generated internally by Exchange. However, Exchange 2007 does not contain a postmaster mailbox. This means that those who receive non delivery reports cannot reply back and ask for help. Before I show you how to get around this issue, I need to explain that the primary reason why Microsoft chose not to include a postmaster mailbox in Exchange 2007 was because the postmaster could potentially receive a lot of spam. Even so, if your company receives e-mail messages from customers, it may be worthwhile to allow senders to reply to NDRs. Creating A Postmaster Mailbox The first step in the process is to make... --- ### Active Directory Offline Defragmentation - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/active_directory_offline_defragmentation/ - Categories: Active Directory (AD) - Article Type: Overview How do I defragment the Active Directory to make it smaller in size? The size of NTDS. DIT will often be different sizes across the domain controllers in a domain. Remember that Active Directory is a multi-master independent model where updates are occurring in each of the domain controllers with the changes being replicated over time to the other domain controllers. The changed data is replicated between domain controllers, not the database, so there is no guarantee that the files are going to be the same size across all domain controllers. Windows 2000 and Windows Server 2003 servers running Directory Services (DS) perform a directory online defragmentation every 12 hours by default as part of the garbage-collection process. This defragmentation only moves data around the database file (NTDS. DIT) and doesn’t reduce the file’s size - the database file cannot be compacted while Active Directory is mounted. Active Directory routinely performs online database defragmentation, but this is limited to the disposal of tombstoned objects. The database file cannot be compacted while Active Directory is mounted (or online). An NTDS. DIT file that has been defragmented offline (compacted), can be much smaller than the NTDS. DIT file on its peers. However, defragmenting the NTDS. DIT file isn’t something you should really need to do. Normally, the database self-tunes and automatically tombstoning the records then sweeping them away when the tombstone lifetime has passed to make that space available for additional records. Defragging the NTDS. DIT file probably won’t help your... --- ### Advanced Drag-and-Drop Techniques in Vista - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/advanced_drag_and_drop_vista/ - Categories: Windows Vista - Article Type: How To Ever since Microsoft introduced mice into their operating systems (something done earlier by other vendors such as Apple and pioneered by the Xeros PARC - Palo Alto Research Center - mythical design team) we could drag-and-drop items from one spot of the graphical user interface (or GUI) to a different spot. I will not go into the basics of drag-and-drop as I assume that if you’re advanced enough to read this article then you’ve mastered these actions as a reasonable level, but instead I will remind you of some of the advanced techniques in dragging-and-dropping. These will allow you to have more control over items when you're dragging-and-dropping items. Since many users deal with more than just typing documents and replying to emails, most of us will have had a chance to drag-and-drop a file or folder from, for instance, a USB flash disk to their My Documents folder. It is important for us to be able to determine what will happen when you drag-and-drop an item from one location in the GUI to another, and that is before you perform the actual dropping. Now here is where the challenge hides: Drag-and-drop functions are handled differently in various situations. Based on the drag-and-drop scenario the end result changes, and unless you know what will be the outcome of your drag-and-drop action, you might find yourself without the necessary files in the middle of an important presentation. Therefore, in order to achieve the required result you will sometimes... --- ### Before you begin - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/before_you_begin/ - Categories: Windows Client OS - Article Type: How To Before you begin messing with your system The registry is no child's play Modifying the registry can cause serious problems that may require you to reinstall your operating system. I cannot guarantee that problems resulting from modifications to the registry can be solved nor do I provide technical support for such issues if they occur. Use the information provided at your own risk. As always, your tips and recommendations are welcome . Before you dig in Tweaking isn't for everyone. If you're using XP or Windows 2000 and you like it the way it is, leave things alone. Some changes are hard to undo, so don't make needless changes to your operating system. Likewise, weigh each suggestion against the likely benefit you'll gain. Don't tear apart a working operating system or subsystem unless you believe the results are truly worth it. Anyway, before you do any significant tweaking work on any operating system, always make a full backup. You need to be able to restore things to the way they were before, if a change doesn't work out the way you intended. In Windows XP, it's also a good idea to make a "Restore Point" before each and every change. System Restore can roll back many minor system changes without requiring you to restore your full backup. Also, it makes no sense to try to tune and tweak an operating system that's fundamentally incomplete or broken. I suggest to always try to use a clean installation of the OS, and... --- ### Change the Registered User and Company Name in Windows XP / Vista - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/change_registered_user_and_company_vista_xp/ - Categories: Windows Vista - Article Type: How To Network administrators have had countless times that they need to change the registered user and company name for a Windows installation. Unfortunately, this process is rather difficult and needs to be done through the registry. Fortunately, by following the steps below you will be able to edit the registered user and company name for either a Windows XP computer or a Windows Vista computer. To begin, first verify the registration details of your Windows computer. For Windows XP and Windows Vista click on Start and right-click on My Computer (just Computer). You will see the screen shown below. For privacy purposes I have blurred my product key.   In order to change your registered user name, you will need to edit this information in your registry. Note: Editing the registry has the potential to cause serious (and unrecoverable) damage to your PC. If you are at all uncomfortable editing the registry, please do not attempt the following. In Windows Vista, open your registry by clicking the Start Menu and typing regedit. Windows will prompt you for confirmation before running the Registry Editor. In Windows XP, open your registry by going to Start and then Run and typing regedit. In your registry you will have several choices, untie the tab named HKEY_LOCAL_MACHINE   Continue to navigate through the registry by untying the following tabs: Software, Microsoft, Windows NT, Current Version. The Current Version will have two editable sections called RegisteredOrganization and RegisteredOwner.   In order to change... --- ### Changes in Vista Service Pack 1 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/changes-windows-vista-sp1-enhancements-security-quality-bugfix/ - Categories: Windows Vista - Article Type: News Scheduled to be released in the beginning of 2008, Windows Vista Service Pack 1 (SP1) delivers improvements and enhancements to existing Vista features that significantly impact customers, but it does not deliver substantial new operating system features. Microsoft has published a comprehensive document outlining exactly what difference SP1 makes to Vista. See a download link at the bottom of this article. Generally speaking, the updates in Vista SP1 can be divided into three categories: Quality improvements Improvements to the administration experience Support for emerging hardware and standards 1.  Vista SP1 Quality Improvements Windows Vista SP1 includes all previously released updates for Vista. It also includes security, reliability, and performance improvements. These improvements target some of the issues Microsoft has identified as the most common causes of operating system crashes and hangs, giving customers a more reliable experience. These updates also improve performance in key scenarios—for example, when copying files or shutting down the computer (see my "Vista Performance and Reliability Improvements Pack" article) (insert link). The following sections describe many of the security, reliability, and performance improvements that will be in Windows Vista SP1. Security Security improvements that will be in Windows Vista SP1 include: Provides security software vendors a more secure way to communicate with Windows Security Center. Includes application programming interfaces (APIs) by which third-party security and malicious software detection applications can work with kernel patch protection on x64 versions of Windows Vista. Improves the security of running RemoteApp programs and desktops by allowing Remote Desktop... --- ### How to configure your Alcatel SpeedTouch 510 ADSL modem not to use NAT? - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_alcatel_speedtouch_510_for_dhcp_spoofing/ - Categories: Alcatel - Article Type: How To This document describes how you can configure an Alcatel SpeedTouch 510 ADSL modem not to use NAT anymore. This process is often called DHCP SPOOFING. The public IP will be sent to your machine by DHCP therefore eliminating NAT. It is also for setups where combination of an Ethernet gateway routers which do not have PPTP dialer support are in placed. Doing so will enable you to configure an internal router or a server that has routing software installed and have it receive an IP address from your ISP - instead of having the dialer obtain the address for you. The difference between DHCP SPOOFING and BRIDGING (described here Configure Alcatel SpeedTouch Pro to Act as a Transparent Bridge) is that with bridging the end-machine/router does the dialing, and so it gets the real IP address from the ISP. With spoofing the modem dials for you, receives the IP address from the ISP, and then gives it to the end-machine/router. This method will work if one of the following assumptions is true: Your modem is connected to the Internet and another computer is connected to your modem. Your modem is connected to the Internet and you have a router that is connected to the modem. This router must have NAT capabilities. The router will then be connected to a hub/switch, and to it other computers will connect. Your modem is connected to the Internet and you have a server computer that is connected to the modem. This... --- ### Configure MX Records for Incoming SMTP E-Mail Traffic - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_mx_records_for_incoming_smtp_email_traffic/ - Categories: Exchange Server - Article Type: How To How do I configure and test the MX Record for my Internet Domain name? When you want to run your own mail server, and it does not matter what version and make of mail server you're using - as long as the mail server is using SMTP as the e-mail transfer mechanism - you'll need to configure the MX Records for your domain. MX is an acronym for Mail eXchange. MX is defined in RFC 1035. It specifies the name and relative preference of mail servers for the zone. MX is a DNS record used to define the host(s) willing to accept mail for a given domain. I. e. an MX record indicates which computer is responsible for handling the mail for a particular domain. Without proper MX Records for your domain, only internal e-mail will be delivered to your users. External e-mail from other mail servers in the world will not be able to reach your server simply because these foreign servers cannot tell to which server they need to "talk" (or open a connection to) in order to send the mail destined for that domain. You can have multiple MX records for a single domain name, ranked in preference order. If a host has three MX records, a mailer will try to deliver to all three before queuing the mail. MX Records must be in the following format: domain. com.     IN    MX   10     mail. domain. com. The Preference field is relative to any other MX Record for the zone... --- ### Configure USB Disks to be Read-Only in Windows XP SP2 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_usb_disks_to_be_read_only_in_xp_sp2/ - Categories: Windows Client OS - Article Type: How To How can I configure USB Disks to be Read-Only in Windows XP SP2? Since USB Disks-on-key and other external USB storage devices have appeared, the fact that users can transfer sensitive data from their corporate computers to their portable USB devices has caused great security concerns. Some 3rd-party software exists that can effectively block all USB storage devices throughout the corporate network, but sometimes a simpler approach is needed. This tip only works with Service Pack 2 installed in Windows XP Pro. To prevent users from being able to write to USB disks follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINESystemCurrentControlSetControlStorageDevicePolicies Note: This key might not exist. In that case simply create it as a new key under the parent key. Create the following value (DWORD): WriteProtect and give it a value of 1. Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a . REG file before performing the changes. Close Registry Editor. Done! Try to write something to any USB Disk and you'll get the following error: Related articles You might also want to read the following related articles: Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Scanners and Cameras Icon to the... --- ### Copy Encrypted Files on the Network - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/copy_encrypted_files_on_the_network/ - Categories: Security - Article Type: How To Can I copy or move an encrypted file or folder across the network? No. When you attempt to gain access to a file on a shared network resource, the following error message may be displayed: This behavior can occur if the shared file was encrypted by another user using the Windows 2000 Encrypted File System (EFS), even if you have full access to the share. To resolve this issue, the owner of the file must decrypt the file on the network share. You can use EFS to encrypt files on remote servers. However, EFS encrypts files on only the hard disk; it doesn’t encrypt data that users transmit over the wire. To encrypt data you transfer over the network, you must use a method that encrypts all TCP/IP client communications (e. g. , IP security) or offers similar protection (e. g. , Secure Sockets Layer - SSL). Related articles You might also want to read the following related articles: Access Denied Error in EFS Encrypted Files Compression and Other Attributes in EFS Copy Encrypted Files on the Network Data Protection and Recovery in Windows XP Disable EFS in Windows 2000 Disable EFS in Windows XP/2003 How does EFS Work? New EFS Features in Windows XP Quickly Check EFS Attributes Quickly Check Which User Encrypted a File What's EFS? Links Cannot Use Shared Encrypted Files in Windows 2000 - 223448 --- ### Creating an Unattend Installation File for DCPROMO in Windows Server 2008 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/creating-unattend-installation-file-dcpromo-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: How To This article describes the syntax that you use to build answer files to perform unattended installations of Active Directory Domain Services on Windows Server 2008-based domain controllers. Performing an unattended installation using an answer file is not as hard as it sounds, and can be performed without any user interaction. Using the answer (or sometimes referred to as the unattend) file eliminates the need for an administrator to interact with the DCPROMO wizard, and is most important when using a server core machine to act as a DC. You can read more about Active Directory on Windows Server 2008 core installations on my "Installing Active Directory on Windows 2008 Server Core" article. You can also use the answer files to remove AD DS in unattended mode. Note that a similar article exists that describes the basics of the unattend file in Windows 2000/2003 – "How do I automatically upgrade a server to a domain controller during installation? ". One method of creating the unattend file is by manually copying a sample text and pasting it into a text file. You can read more about this process in the next section below. Another method of creating the file is by running the DCPROMO wizard on a different server, then, when finished, saving the configuration into a text file, and then pressing Cancel. You can read more about this method below. Manually creating the unattend file The unattend file can be manually created, and the... --- ### Windows Backup Bug Prevents Israeli Administrators from Backing Up Windows Server 2008 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/windows-server-2008-backup-bug-for-israeli-administrators/ - Categories: Windows Server 2008 - Article Type: Overview Update: As of June 2008, this bug has been acknowledged and a private fix is already available. I was informed by the product group that a public fix will be shortly available. Stay tuned for more info. A couple of days ago I was teaching a Windows Server 2008 course and I got to the point where I had to demo the procedure of backing up and restoring Windows Server 2008. When I teach I usually use a virtual machine, and this time too I had Windows Server 2008 RTM running as a VM inside Virtual Server 2005 R2 SP1. Note that I've been able to repro on 3 separate installations, but these were ALL under some sort of virtualization software - either VS 2005 R2 SP1, or VMware Workstation 6. 02. I simply don't have a physical box at hand to test on right now. Here are the repro details: Configure Windows Server 2008 RTM with Jerusalem Time Zone, make sure that the DST check-box is selected (as it should).   Install Windows Backup. You can install it via Server Manager, or via servermanagercmd. exe. I didn't try to install Windows Backup before changing the time zone, mostly because changing the time zone is one of the first things that an administrator does for a computer not located in the default Pacific time zone. Also note that I tested this on a DC as well as on a simple member server. No additional roles have been installed or tested. . NET Framework... --- ### Windows XP SP2 Patches - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_sp2_patches/ - Categories: Patches and Service Packs - Article Type: Overview You should consider installing Service Pack 2 as soon as possible On August 9, 2004, Microsoft released SP2 for Windows XP. SP2 is the latest collection of updates for Windows XP. Download Windows XP SP2 Network Installation (266mb) See the Windows 2000/XP SP Slipstreaming page for info on how to integrate SP2 into your existing media. Required Patches Windows XP Home or Professional with Service Pack 2 requires the following security-related patches: Make sure you read Internet Explorer 6. 0 SP1 Patches and IIS 5. 1 Patches before you go on. October 2005 MS05-051 : Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) MS05-050 : Vulnerability in DirectShow Could Allow Remote Code Execution (904706) MS05-049 : Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) MS05-048 : Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) MS05-047 : Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749) MS05-046 : Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) MS05-045 : Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) August 2005 MS05-043 : Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423) MS05-042 : Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587) MS05-041 : Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591) MS05-040 : Vulnerability in Telephony Service Could Allow Remote Code Execution (893756) July 2005 MS05-036 : Vulnerability in Microsoft... --- ### What is Cisco Telepresence and what does it take? - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/cisco-telepresence-what-is-it-what-does-it-take-video-conferencing-hdtv/ - Categories: Cisco - Article Type: Overview If you are like me, you have probably heard about Cisco’s Telepresence video conferencing system but probably didn’t realize that it was much more than a regular video conferencing suite. Sure, I had seen Cisco Telepresence on the TV show “24” and it looked pretty neat but I didn’t envision the scope of what is behind it. What isn’t Cisco Telepresence? Recently my local Cisco Account Manager came by and asked me if we did any video conferencing. I said “wait, you are going to try to talk me into one of those Telepresence Suites from TV, aren’t you”. He said, “no” but proceeded to tell me all about it. It was intriguing but I also realized that it wasn’t within the reach of my company - even though we are a large company. Today, a Cisco Telepresence Suite may only be practical for the largest of the large companies. I have evaluated a number of video conferencing systems in my time. On the more expensive side, most of these were a dedicated unit that mounted in a room. There was a TV and a camera. The camera transmitted the images of the people in the room over dedicated circuits. All of this was, say $15,000 for the equipment on each side of the video link plus the dedicated circuits that connect the two locations. For full motion video and quality audio, you need a fair amount of bandwidth, such as a 512Kb or T1 circuit. While... --- ### How to Recover a Lost Password on a Cisco Switch > Lost the password to your Cisco switch? David Davis walks you through how to recover that password (and your sanity). - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_how_to_recover_lost_password_on_cisco_switch/ - Categories: Cisco - Article Type: How To Lost the password to your Cisco switch? David Davis walks you through how to recover that password (and your sanity). So you lost the password on your Cisco switch. Maybe the old administrator left or maybe you just haven’t used this switch in a while and don’t recall the password. No matter what the case, you need to change the password on the switch so you can create a new password. How do you do this on a Cisco switch? It is a little more difficult than a Cisco router. One important difference between resetting the password on a Cisco switch vs. a router is that you don’t use configuration registers to reset the password on the switch. Let me show you how it’s done. I want to point out that this article is based on a Cisco Catalyst 2900, 3500XL, 2940, 2950, 2955, and 3550 switches. If you have another model of Cisco Catalyst switch, see the link concerning general Cisco password recovery at the bottom of this article. To recover a password on a Cisco switch, you will have to be connected to the console port of the Cisco switch using 9600 baud, 8 bits, no parity, 1 stop bit, and xon/xoff flow control. I recommend using Hyperterminal that comes with Windows XP to do this (Read How to Use HyperTerminal with Cisco Routers & Switches for more info). Once you are connected and see something on the terminal window when you press enter, unplug the power cable. Next, hold down the mode button on the front, as seen in the photo below, and connect... --- ### Best Practices for Exchange Server Migrations, Part 2 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/best-practices-for-exchange-server-migrations-part-2/ - Categories: Exchange Server - Article Type: How To In the first article in this series, I outlined three steps that I think are essential to the Exchange 2007 migration process. In this article, I want to continue the discussion by providing you with some more steps in my migration best practices. Step 4: Focus on the Clients Your users aren’t going to get the full benefit of your Exchange 2007 migration unless they are running Outlook 2007. An upgrade to Office 2007 isn’t an absolute essential, but it is a good idea, and pretty much every company that I have assisted with the migration process has adopted Office 2007 as a part of that process. One thing about Office 2007, and Outlook 2007 in particular, is that you don’t have to wait until you perform the Exchange Server migration to deploy it. In fact, I personally use Outlook 2007, even though my mailbox is on an Exchange 2003 server. One of the best things that you can do to ensure a smooth migration is to go ahead and get your users trained on Office 2007, and then deploy it. Training is important, because the Office 2007 user interface is quite a bit different from the one used by previous versions of Office. If you are not familiar with these differences, then you can see what the Outlook 2007 user interface looks like in Figure A. Figure A Outlook 2007 has a different interface than its predecessors used. The reason why I suggest moving forward... --- ### Creating a Group Policy Central Store - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/creating-group-policy-central-store/ - Categories: Active Directory (AD) - Article Type: How To One of the issues that sometimes made managing group policies difficult in Windows XP and in Windows Server 2003 was the non centralized nature of the group policy template files. For example, Microsoft offers downloadable templates that allow you to manage Microsoft Office via group policy. Even so, these templates are not automatically available from every domain controller. In Windows Vista and Windows Server 2008, Microsoft decided to make life easier for network administrators by introducing the concept of centralized group policy storage. This storage repository, known as a central store, can be created in domains containing Windows Server 2003 and / or Windows Server 2008 domain controllers. Even though Windows Server 2003 does not technically support centralized group policy storage, Windows Vista does, and this allows you to store the central store on Windows Server 2003 domain controllers if necessary, but manage the central store through Windows Vista. How Does a Central Store Work? As you may have gathered from the previous paragraph, there is really nothing special about the central store itself. It is nothing more than a folder on a server. The reason why a central store can work the way that it does is because of the way that the store is used by Windows Vista and Windows Server 2008. When an administrator attempts to create or edit a group policy template, Windows checks the domain controller to which it is connected for the existence of a central store. If a central store... --- ### Access Denied Error in EFS Encrypted Files - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/access_denied_error_in_efs_encrypted_files/ - Categories: Security - Article Type: How To   Why do I get an “Access Denied” error every time I try to read a file even though I’ve double-checked my permissions, and they’re ok? Featured Product: Passware Kit - Password recovery software pack for the world's most popular office application files including Excel, Word, Windows 2003/XP/2000, Access, Outlook, QuickBooks, Lotus Notes, etc. Download FREE version now! When you try to access a file on an NTFS file system volume, you may receive an "access is denied" error message. The file's NTFS permissions indicate that you can access the file. This message will appear if another user has encrypted the file: Or this error:   This behavior can occur if another user has encrypted the file. To determine if a file has been encrypted, see the Quickly Check EFS Attributes article. To resolve this behavior, the file must be decrypted by the user who encrypted the file, or by the designated Recovery agent. Files that are encrypted by using the Encrypting File System (EFS) are accessible only to the person who encrypted the file, regardless of the other permissions that are on the file. Related articles You might also want to read the following related articles: Compression and Other Attributes in EFS Copy Encrypted Files on the Network Data Protection and Recovery in Windows XP Disable EFS in Windows 2000 Disable EFS in Windows XP/2003 How does EFS Work? New EFS Features in Windows XP Quickly Check EFS... --- ### Block Incoming Internet Mail to Specific Users or Groups - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/block_incoming_internet_mail_to_specific_users_or_groups/ - Categories: Exchange Server - Article Type: How To How do I block incoming Internet mail to specific users or groups in Exchange 2003? This tip might come in handy when you want to effectively block all incoming Internet mail traffic for a specific user or a specific group. Note: The original tip was submitted by Ade Famoti on the excellent You Had Me At EHLO... official Exchange blog. Before the advent of Exchange 2003, the solution to this question would have been to give the user or group a false e-mail address consisting of a non-resolvable SMTP domain name. Now, with Exchange Server 2003, you can block all incoming Internet mail traffic for a specific user or group by forcing the user or group to only accept mail from authenticated users, thus blocking all (usually) anonymous Internet traffic. To block all incoming Internet mail traffic for a specific group follow these steps: Click "Start", point to "Programs", point to "Administrative Tools", and then click "Active Directory Users and Computers". Right-click the distribution group, and then click "Properties".   Click the "Exchange General" tab. Under "Message restrictions", click to select the "From authenticated users only" check box.   To block all incoming Internet mail traffic for a specific user follow these steps: Click "Start", point to "Programs", point to "Administrative Tools", and then click "Active Directory Users and Computers". Right-click the user account, and then click "Properties".   Click the "Exchange General" tab. Click "Delivery Restrictions".   ... --- ### Cannot Install Update for Windows Vista KB929777 - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/cannot_install_update_windows_vista_kb929777/ - Categories: Windows Vista - Article Type: How To Trying to install Windows Vista on a computer with more than 3 GB of RAM might cause a BSOD (Blue Screen of Death, or more better known as a STOP error). Or at least that's what Microsoft KB 929777 is all about. When you try to install Windows Vista, you may receive an error message that resembles the following: STOP 0x0000000A (parameter1, parameter2, parameter3, parameter4) IRQL_NOT_LESS_OR_EQUAL In order to resolve the problem there are 2 things you might want to do: Remove 2 GB of physical memory BEFORE you try to install Windows Vista. When the installation is over, insert the extra RAM into the computer, and the issue will be solved. Silly, but it works.   If Vista is already installed and you would like to install a patch for this bug, then you can install the available hotfixes from Microsoft, available in the following format: Update for Windows Vista, 32-bit versions (KB929777) Update for Windows Vista, 64-bit versions (KB929777) All this is good and well, but seeing there is already a fix from Microsoft, I've tried to install it on my Dell XPS 1210 laptop which just so happens to have 4 GB of memory. As you can clearly see from the following screenshot, Vista's Windows Update program clearly notifies you that a hotfix exists, and that you should install it.      You can also see that there is a pending hotfix to be installed when you go to the shutdown menu: But when you try... --- ### Changing Store Limits in Exchange 2003 SP2 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_store_size_limits_ex2003_sp2/ - Categories: Exchange Server - Article Type: How To How can I change the store limits in Exchange 2003 SP2? By default, the size limit of each database on a server running Exchange 2000 and Exchange Server 2003 Standard Edition is 16 GB (this limit is also enforced in SBS 2000/2003). Exchange Server 2003 Service Pack 2 (SP2) is supposed to remove this limit and thus allow for further DB size growth. After installing Exchange Server 2003 Service Pack 2, the default size limit for each Exchange database is 18 GB, but can easily be configured to allow for database size limits of up to 75 GB per database (for the Standard and SBS 2003 versions), or up to 8000 GB (or 8 TB) per database (for the Enterprise version). By default, Exchange 2003 SP2 logs events when the database has grown to within 10% of the configured database size limit (i. e. using 90% of the allocated limit). This threshold is configurable and can range from 1% to 100%. BTW, you can easily check your store size by performing the steps outlined in the Reporting Storage Size in Exchange article. The database size check happens at 5am, every 24 hours by default. This time can be changed through the registry. The first database size check will not take the database offline if the size limit has been exceeded, but an error event (ID 9689) will be logged in the Application event log (i. e. it has reached the 18 GB limit, or any other limit you have... --- ### Changes in Default Behavior in Windows Server 2003 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/changes_in_default_behavior_in_windows_server_2003/ - Categories: Windows Client OS - Article Type: Overview What are the changes in default behavior in Windows Server 2003? The Windows security initiative, launched in the spring of 2002, has the goal of further strengthening the security of Windows operating systems for servers. During the early phases of this initiative, the Windows Server team examined the entire Windows Server 2003 code base, developed threat models to uncover security weaknesses in the product, and created design changes to mitigate those threats. In the time between the release of Windows 2000 Server and the release of Windows Server 2003, numerous design changes were made to the product as a result of the Windows security initiative. Some of these design changes represent changes to the default configuration of a newly created or upgraded server. Traditionally, each new Windows server operating system release is designed with default configuration settings that support the protocols, services, and applications currently running on the previous releases, without requiring these protocols, services, and applications to be reconfigured. As part of the security initiative, Microsoft has chosen to change this policy so that the server product is secure “out of the box. ” Administrators who reconfigure their server configurations to restore previous defaults should consider whether these changes enhance or reduce the security of their servers and network. A high-level overview of design changes that were made to the Microsoft Windows Server 2003 family of operating systems. This document can assist developers and IT professionals who migrate their servers to Windows Server 2003 or developers who create... --- ### How to configure your Alcatel SpeedTouch ADSL modem not to use NAT? - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_alcatel_speedtouch_pro_for_dhcp_spoofing/ - Categories: Alcatel - Article Type: How To This document describes how you can configure an Alcatel SpeedTouch Pro ADSL modem not to use NAT anymore. This process is often called DHCP SPOOFING. The public IP will be sent to your machine by DHCP therefore eliminating NAT. It is also for setups where combination of an Ethernet gateway routers which do not have PPTP dialer support are in placed. Doing so will enable you to configure an internal router or a server that has routing software installed and have it receive an IP address from your ISP - instead of having the dialer obtain the address for you. The difference between DHCP SPOOFING and BRIDGING (described here Configure Alcatel SpeedTouch Pro to Act as a Transparent Bridge) is that with bridging the end-machine/router does the dialing, and so it gets the real IP address from the ISP. With spoofing the modem dials for you, receives the IP address from the ISP, and then gives it to the end-machine/router. This method will work if one of the following assumptions is true: Your modem is connected to the Internet and another computer is connected to your modem. Your modem is connected to the Internet and you have a router that is connected to the modem. This router must have NAT capabilities. The router will then be connected to a hub/switch, and to it other computers will connect. Your modem is connected to the Internet and you have a server computer that is connected to the modem. This... --- ### Configure Web Access to Newsgroups Hosted on Exchange 2000/2003 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure_web_access_to_newsgroups_hosted_on_exchange_2000_2003/ - Categories: Exchange Server - Article Type: How To In Exchange 2000/2003, how can I configure web access to some of the newsgroups that are hosted on the server? If you're running a newsgroup feed from a live NNTP server (see Configure a Newsgroup Feed From a NNTP Server), or if you're running your own newsgroup hierarchy, you might want to configure alternate access to these folders by use of a web browser. To do so open the Exchange System Manager console. Drill down to your server's name and open the Protocols container. Open the HTTP container, double-click the Default HTTP Virtual Server. Right-click the Exchange Virtual Directory sub-container and choose New > Virtual Directory. Give the new Virtual Directory a name. You can use any name, but this will be the directory's alias, so make it an easy one. In the Exchange Path select the Public Folder radio box. Click Modify. In the Public Folder selection window select the folder you want to make visible. Note: I used the MCT private newsgroups demonstrated in the Configure a Newsgroup Feed From a NNTP Server page, but as stated before, you won't be able to use the same folders because these groups are password restricted. Use your own folders, the ones you've downloaded from your ISP News server. Click Ok. In the Access tab you can change the Authentication level required. I used the default, which has the Anonymous authentication disabled. Click Ok when you're done. Now you can see the new Virtual Directory in the listing. If you try... --- ### Copy User Profiles in Windows XP - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/copy_user_profiles_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To How do I copy a user profile in Windows XP? Why is the COPY TO button grayed out? UPDATE: This method is no longer supported. You need to create an additional account and copy it over that account (and not over the default user profile). To copy a user profile in XP do the following: Open System applet in Control Panel (or right-click My Computer and choose Properties). Click the Advanced tab. In the User Profiles section click Settings. Highlight the user profile you want to copy. Press Copy To. You can't copy the profile you're currently logged in with. Also, I do believe that if you've ever been logged into a profile without rebooting you won't be able to copy that profile either. So you might have to restart before you can copy the profile. To fix this "feature" you should log on as your preferred user (who should be an administrator, to make things easier), make all the needed changes, log off, log on as an administrator, then try to copy the previous user profile. Now it should work. Note: To be clear, the best procedure based on Microsoft's recommendations, is NOT to use the built-in Administrator account. Read this: How to create a custom default user profile http://support. microsoft. com/default. aspx? kbid=319974 In the Copy To dialog box enter the path to where you want to copy the profile to. You can also browse. The default location for the user's profile should be %systemdrive%Documents... --- ### Get certified on Windows Server 2003 to Windows Server 2008 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/windows-server-2008-certifications/ - Categories: Windows Server 2008 - Article Type: How To The Windows Server 2008 certifications are part of the new generation of Microsoft certifications, which emphasize primary skill sets and job roles, providing a more relevant, flexible, and cost-effective way to validate core technical, professional, and architectural skills. Microsoft Certified Systems Administrators (MCSAs) and Microsoft Certified Systems Engineers (MCSEs) in Windows Server 2003 can quickly and easily transfer their skills to achieve Microsoft Certified Technology Specialist (MCTS) accreditation on Windows Server 2008. The MCTS credential enables professionals to target specific technologies and distinguish themselves by demonstrating in-depth knowledge and expertise in those technologies. By becoming a Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 you can help your organization take advantage of advanced server technology with the power to increase the flexibility of your server infrastructure, save time, and reduce costs. Transition certifications are available today for Windows Server 2003 certified professionals, while full certification paths will be available soon after the Windows Server 2008 product release. Upgrading Your MCSA on Windows Server 2003 to Windows Server 2008, Technology Specialist - Exam 70-648 Professionals with an MCSA on Windows Server 2003 must pass one exam to become an MCTS on Windows Server 2008. If you are an MCSA and pass Exam 70-648, you will earn two distinct MCTS certifications: MCTS: Windows Server 2008 – Active Directory Configuration MCTS: Windows Server 2008 – Network Infrastructure Configuration The MCTS certifications earned with Exam 70-648 are credit toward the following Professional Series certifications: MCITP: Server Administrator MCITP: Enterprise Administrator... --- ### Windows XP SP2 Slipstreaming - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_sp_slipstreaming/ - Categories: Patches and Service Packs - Article Type: Overview How can I slipstream service packs into the Windows XP media? This scenario explains how to create an integrated installation of Windows XP and the corresponding service pack in a shared distribution folder on a network. This integration is called "Slipstreaming". The integrated process installs the service pack during Windows XP Setup, so when the setup process is done, you'll have the OS + SP in one operation. Important: Do not update Windows XP integrated with a service pack in a shared distribution folder if there are users who are still using a previously installed integrated version in the same shared folder. For other versions of this article please visit the following links: Office System (2003) Hotfix Slipstreaming Office System (2003) SP1 Slipstreaming Office XP SP3 Slipstreaming One Note 2003 SP1 Slipstreaming Windows 2000 SP4 Slipstreaming Windows Server 2003 SP1 Slipstreaming The Slipstreaming process Prerequisites Before we begin anything, you will need to have a few things: Installation CD of Windows XP. Service Pack 2 for Windows XP Download Windows XP SP2 (266mb) Lamer Note: This guide is based on the English versions of Windows XP, and of their corresponding Service Packs. If you are using a different localized build of Windows, you will need to find the right version of SP for your build. At least 1100MB (for Windows XP SP2) of free space on your hard drives (you can later delete these files). A CDR/CDRW drive, CD burning software and (This is actually only optional, but if you... --- ### Configuring a Cisco router to exchange RIP routes with a Windows 2003 Server - Part 2 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure-cisco-router-exchange-rip-routes-windows-server/ - Categories: Cisco - Article Type: How To Did you know that a Windows Server can act as a router? Even better, did you know that a Windows server could be configured to exchange routes with a Cisco router? In Part 1 of this series, we demonstrated how to configure a Windows 2003 Server to exchange routes with a Cisco router using RIP. In this second part of the series, we will configure the Cisco router and prove that these configurations work. Let's get started! Our Network If you'll remember from Part 1 of this series, we offered a diagram of our sample network. To refresh your memory, here is what it looks like. Network Diagram Configure a Cisco Router to exchange routes with a Windows 2003 Server I have configured my Cisco router with interfaces in the two networks shown above. Here is the relevant configuration: interface Ethernet0/0 ip address 10. 253. 15. 38 255. 255. 0. 0 ! interface Loopback0 ip address 2. 2. 2. 2 255. 0. 0. 0 To configure the Cisco router to advertise these RIP routes and exchange then with the Windows Server, I enable RIP version 2 and add these networks to the RIP routing process: ​Router#conf t Enter configuration commands, one per line. End with CNTL/Z. Router(config)# router rip Router(config-router)# ver 2 Router(config-router)# network 10. 253. 0. 0 Router(config-router)# network 2. 0. 0. 0 Router(config-router)#exit Router(config)#exit Router#   What we did was this: Enter RIP configuration mode on the router Configure RIP to use version 2 so that subnet masks will be sent with routing updates, allowing us to use classless IP routing, with out... --- ### Static Routes in the Cisco IOS - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_how_to_static_routes_cisco_ios/ - Categories: Cisco - Article Type: Overview As a network administrator, you must be able to configure your routers to route traffic across the network. Static routes are commonly used on routers to accomplish this. For a network admin, knowing how to use a static route is a requirement. Let’s learn about static routes, and how to properly use them. Static vs. Dynamic There are two types of routing that can be configured on a network device- static and dynamic. Static routes are hard-coded on a network device. They tell the device exactly where to send traffic, no matter what. Dynamic routes, on the other hand, use a routing protocol to determine the best path. If one route becomes less preferred, the route being used may change. With dynamic routes, routes communicate with each other and exchange routing information. Examples of dynamic routing protocols are RIP, EIGRP, OSPF, and BGP. Basics of Static Routes Now that you know the difference between static and dynamic routes, let’s learn the basics of static routes. When there are two or more routes to the same destination, routers use administrative distance to decide which routing protocol (or static route) to trust more. For example, here are some administrative distances (the lower the number, the more trustworthy the type of route is): - Static Route to a connected interface = 0 - Static Route to a IP address = 1 - Internal EIGRP = 90 - OSPF = 110 - RIP = 120 Because of how administrative distance works,... --- ### Classifying Messages in Exchange Server 2007, Part 1 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/classifying-messages-in-exchange-server-2007-part-one/ - Categories: Exchange Server - Article Type: How To By now you're probably familiar with the idea that Exchange Server 2007 is designed in such a way that every message flows through a central pipeline.   Microsoft designed Exchange Server in this way so that there would be a central portal through which all messages flow, and therefore messages could be analyzed in certain types of content could be acted on by transport rules.   Although Exchange Server gives you a great deal of flexibility in the types of transport rules that you can create, imagine how much more powerful the transport rules could be if Exchange Server could actually understand what the messages were all about.   I'm not talking about just knowing who the messages going to, or where it came from, or whether or not the message has been flagged as important, but rather the message’s purpose. Believe it or not, Exchange Server 2007 has been designed so that users have the ability to categorize messages.   You can then create transport rules that are based on message classifications, rather than trying to create transport rules that guess what messages purpose might be based on some of the more common attributes. Good News and Bad News As you can imagine, message categorization can be a very powerful tool to help you to manage the messages flowing through your organization. Before I show you how message categorization works though, I have some good news for you and I’ve got some bad news. The good news is that Exchange Server has several... --- ### Creating a Journal Rule in Exchange 2007 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/creating-journal-rule-exchange-server-2007/ - Categories: Exchange Server - Article Type: How To In the previous article in this series (Learn the Basics of Journaling in Exchange Server 2007), I talked about how Exchange 2007 journaling differs from journaling in Exchange 2003. That article also discussed some of the basic concepts behind Exchange 2007 journaling. In this article, we will put the theory into practice as I walk you through the process of creating a journaling rule. Enabling the Journaling Agent The process of creating a journal rule is fairly straightforward, but before any of the rules that you create will work, you must enable the Journal Agent. To do so, you must open the Exchange Management Shell and enter the following command: Get-TransportAgent When you enter this command, you will see a summary indicating which transport agents are enabled, as shown in Figure A. Figure A - You must enable the Journaling Agent prior to using Journal Rules. When you look at this report, you should see that the Journaling Agent is enabled, but if not, then enter the following commands to enable it: Enable-Transport Agent You should now be prompted as to which transport agent you want to enable. Type Journaling Agent and press Enter. Now, enter the Get-TransportAgent command one more time to verify that the agent has been enabled. Now that the Journaling Agent is enabled, we can move forward with creating a journaling rule. Begin the process by going to your Hub transport server and opening the Exchange Management Console. Now, navigate through the console... --- ### Activate Vista Aero Interface on Windows Vista Basic Edition - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/activate_vista_aero_on_vista_basic_edition/ - Categories: Windows Vista - Article Type: How To Microsoft has made some awesome graphical additions to Windows Vista, namely, the Aero theme (read more about it on my "Enable Windows Vista Aero Graphics" and "Aero Theme is Bad, Disable It" articles).   The Aero theme is not available in all the Vista editions. You can read "Windows Vista Editions" for more info, but the main point is that the Vista Home Basic Edition does not have Aero theme, and if you wanted it (I'm not sure why someone would really HAVE to have it... ) you had to buy one of the more advanced editions. Not anymore. It turns out that some forums have published a workaround to active the Vista Aero theme on Windows Vista Basic Edition. It is apparently not a big problem to enable the Vista Aero interface in Windows Vista Home Basic even though it is officially not included in that version. Note: Please make sure you understand the EULA before you perform this trick. Making any functional change in the operating system *might* be considered illegal by Microsoft. I am not responsible in any way for any legal issues that might arise because of this. The reason I chose to upload the information is mostly because it is already freely available on the Internet (so I'm not the first one talking about it), and because I think it is important to show how changes to the Registry can easily add or remove blocked features from the OS. Note: Please take note... --- ### Active Directory Search Limit - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/active_directory_search_limit/ - Categories: Active Directory (AD) - Article Type: Overview How do I modify the number of Active Directory objects to search? By default, the Windows 2000 Active Directory searches 10,000 objects at a time. This policy affects all browse displays associated with AD, the Microsoft Management Console (MMC) Active Directory Users and Computers snap-in, and the dialog boxes you use to set permissions for user or group objects in AD. As your organization grows, you might need to change the number of objects to search. To set the number for a group policy object: Start the MMC Active Directory Users and Computers snap-in. Right-click the container, and select Properties. Select the Group Policy tab. Select the Group Policy Object, and select Edit. Select the User Configuration branch, and expand Administrative Templates > Desktop > Active Directory. Double-click Maximum size of Active Directory searches. Select Enabled, and set the number (e. g. , 20000). Click Apply. Click OK. Close the Group Policy Editor. To edit the registry to set the number for a user: Start regedit. Go to the HKEY_CURRENT_USERSoftwarePoliciesMicrosoft registry entry. From the Edit menu, select New > Key. Enter ​Windows Select the new Windows key, and from the Edit menu, select New, Key. Enter ​Directory UI Go to the Directory UI key, and from the Edit menu, select New, DWORD Value. Enter ​QueryLimit and press Enter. Double-click the new value, and set the decimal value (i. e. 20000). Click OK. Close the registry editor. For both methods, the change will take effect when the... --- ### Alternative Command Shells for Windows - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/alternative-command-shells_for-windows/ - Categories: Windows Client OS - Article Type: Overview I’ve used the command shell since the days of DOS 5. 0. In these days, using the command line was a necessity since Windows was in its infancy. As Windows technology improved I never gave up my command line roots since I could automate many tasks using scripts which gave me more time to do other things. However, I became more dissatisfied with the native Windows command shell. I learned to program the UNIX shell (bash to be specific) a bit and found it to be way more advanced than the Windows shell. I wanted this power under Windows and I eventually began to use a mixture of NT shell scripts with Perl programs.   Today there are more options available for Windows scripting than there were seven years ago when I started using Perl. Let’s explore a few of them. PowerShell PowerShell is a new command line shell designed to address many of the shortcomings of the NT command shell and Windows Scripting Host. It includes interactive and scripting command support and was created from the ground up with system administrators in mind. PowerShell is available for Windows XP, 2003 Server and Vista. Basic Powershell Usage Using PowerShell is a bit different than any other command shell I have used. It is centered around the concept of cmdlets (command lets), which are commands that manipulate objects to perform a single task. Cmdlets may be combined to perform more complex tasks. PowerShell Cmdlets typically consist... --- ### Block Web Browsing but Allow Intranet Traffic with IPSec - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/block_internet_but_allow_intranet_with_ipsec/ - Categories: Security - Article Type: How To How can I block a Windows 2000/XP/2003 computer from surfing on the Internet but still allow it to surf to Intranet sites? As written in the previous article - Block Web Browsing with IPSec, Windows 2000/XP/2003 machines have a built-in IP security mechanism called IPSec (IP Security). IPSec is a protocol that’s designed to protect individual TCP/IP packets traveling across your network by using public key encryption. Besides encryption, IPSec will also let you protect and configure your server/workstation with a firewall-like mechanism. How can you block specific users from surfing the Internet but still allow them to use a web browser to surf to internal (Intranet) sites? Right! With IPSec. You can do so simply by creating a policy element that will tell the computer to block all the specific IP traffic that uses HTTP and HTTPS, which use TCP ports 80 and 443 respectively as their destination ports. By blocking this specific traffic you will be able to stop a specific computer from browsing the Internet. But wait! Blocking all HTTP and HTTPS traffic will also prevent the user from surfing to internal sites. The solution is to add another policy element that will in fact ALLOW HTTP and HTTPS traffic but only to a specific computer's IP address, a specific computer's DNS name, or an entire subnet of computers. You can configure this policy specifically for one computer by manipulating that computers' IPSec policy, or, even better, you can configure the... --- ### Cellular Data to your Cisco Router - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/cellular_data_cisco_router/ - Categories: Cisco - Article Type: Overview What do you do when your primary T1, cable, or DSL connection goes down to the Internet or your private network? Do you have a backup solution? While my company uses a combination of ISDN, DSL, Wireless Internet, and Internet T1's, I have recently been interested in the new higher-speed cellular data options. However, as my primary application is Citrix, the backup solution must be low latency and be reliable. To the end of finding such a solution, I tried out some of the cellular data options available today. The Kyocera KR1 - Wireless cellular data wi-fi router Recently, a friend of mine loaned me a Kyocera KR1 wireless cellular data / wi-fi router and Sprint cellular 3G data card.      My initial reaction was probably just like yours "Kyocera makes routers? ". I tried connecting to the Internet with it using the Sprint 3G PCMCIA card and my laptop. It worked well except it would disconnect after some time of non-use and not reconnect until I rebooted it. After checking for timeouts and auto reconnect settings, I gave up. It seems like a good unit but I didn't take the time to make it work. (but then, if you have to *make* it work, then perhaps it isn't that good of a unit after all). Junxion Box - Wireless cellular data router Next, I borrowed a Junxion Box cellular data router. This is a very similar unit but from a different company. As far as I can... --- ### How can I change the System partition drive letter in Windows XP? - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/change_system_drive_letter_in_windows_xp/ - Categories: Disk Management - Article Type: How To For the most part, this is not recommended, especially if the drive letter is the same as when Windows was installed. The only time that you may want to do this is when the drive letters get changed without any user intervention. This may happen when you break a mirror volume or there is a drive configuration change. This should be a rare occurrence and you should change the drive letters back to match the initial installation. To change or swap drive letters on volumes that cannot otherwise be changed using the Disk Management snap-in, use the following steps: Note: In these steps, drive D refers to the (wrong) drive letter assigned to a volume, and drive C refers to the (new) drive letter you want to change to, or to assign to the volume. Make a full system backup of the computer and system state. Log on as an Administrator. Start Regedt32. exe (or Regedit. exe in Windows XP). Go to the following registry key: HKEY_LOCAL_MACHINE\SYSTEM\MountedDevices Click MountedDevices. On the Security menu, click Permissions. Check to make sure Administrators have full control. Change this back when you are finished with these steps. Quit Regedt32. exe, and then start Regedit. exe. Go to the following registry key: HKEY_LOCAL_MACHINE\SYSTEM\MountedDevices Find the drive letter you want to change to (new). Look for "\DosDevices\C:". Right-click \DosDevices\C:, and then click Rename. In Windows 2000 you must use Regedit instead of Regedt32 to rename this registry key. Rename it to an unused drive letter "\DosDevices\Z:". (This will free up... --- ### Changing the Tombstone Lifetime Attribute in Active Directory - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/changing_the_tombstone_lifetime_windows_ad/ - Categories: Active Directory (AD) - Article Type: How To The tombstone lifetime must be substantially longer than the expected replication latency between the domain controllers. The interval between cycles of deleting tombstones must be at least as long as the maximum replication propagation delay across the forest. Because the expiration of a tombstone lifetime is based on the time when an object was deleted logically, rather than on the time when a particular server received that tombstone through replication, an object's tombstone is collected as garbage on all servers at approximately the same time. If the tombstone has not yet replicated to a particular domain controller, that DC never records the deletion. This is the reason why you cannot restore a domain controller from a backup that is older than the tombstone lifetime. By default, the Active Directory tombstone lifetime is sixty days. This value can be changed if necessary. To change this value, the tombstoneLifetime attribute of the CN=Directory Service object in the configuration partition must be modified. This object is located here: ​ cn=Directory Service,cn=Windows NT,cn=Services,cn=Configuration,dc= Note: Longer tombstone lifetime decreases the chance that a deleted object remains in the local directory of a disconnected DC beyond the time when the object is permanently deleted from online DCs. The tombstone lifetime is not changed automatically when you upgrade to Windows Server 2003 with SP1, but you can change the tombstone lifetime manually after the upgrade. New forests that are installed with Windows Server 2003 with SP1 have a default tombstone lifetime of 180 days... . --- ### How to configure your Alcatel SpeedTouch ADSL modem to act as a transparent bridge? - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_alcatel_speedtouch_pro_to_act_as_a_transparent_bridge/ - Categories: Alcatel - Article Type: How To This document describes how you can configure an Alcatel SpeedTouch Pro ADSL modem not to use NAT anymore, and not to perform the dialing to the ISP. Note that you'll need a software login method to achieve a connection to ADSL. Alternatively, there are many relatively cheap and/or better Routers on the market which perform these "port forwarding" requirements in a much easier and reliable manner. This process is often called BRIDGING. The Alcatel modem will not receive the true IP address from the ISP, instead it will be sent to your machine or Internet Gateway box (or router). BRIDGING in the case of the Pro, is just a fancy name for turning it into an ordinary ADSL modem and switching off the Security and Internet Sharing features. This often becomes necessary when trying to allow services like MSN Messenger, VPNs or even running certain Servers. The difference between BRIDGING and DHCP SPOOFING (described here Configure Alcatel SpeedTouch ADSL for DHCP Spoofing) is that with bridging the end-machine/router does the dialing, and so it gets the real IP address from the ISP. With spoofing the modem dials for you, receives the IP address from the ISP, and then gives it to the end-machine/router. As stated, this process will therefore eliminating NAT on the Alcatel modem. It is also useful for setups where combination of an Ethernet gateway routers which have PPTP dialer support are in placed. Doing so will enable you to configure an internal router or... --- ### Configure a Newsgroup Feed From a NNTP Server - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_newsgroup_feed_from_nntp_server/ - Categories: Exchange Server - Article Type: How To In Exchange 2000/2003, how can I configure a newsgroup feed from a live NNTP server? To configure an Exchange 2000 mail server to receive a live newsgroup feed from a live NNTP newsgroup server do the following: Write down the URL for the live NNTP server. These addresses usually (but not always) come in the form of news. domain. com or similar. We'll use the live MCT (Microsoft Certified Trainer) news server. This server's address is privatenews. microsoft. com, but it requires a username and password so you won't be able to use it. I used this server only for the purpose of capturing the screenshots, do not try to access it yourself. Open the Exchange System Manager console. Drill down to your server's name and open the Protocols container. Open the NNTP container, double-click the Default NNTP Virtual Server. Right-click the Feeds sub-container and choose New.   In the New NNTP Feed Wizard page enter the IP address or the FQDN of the remote live NNTP server. Click Next.   In the Select the remote server role select the Peer role (Unless you'll accept remotely configured feeds, and then you'll select the Master role). Click Next.   In the next window select both the Inbound and Outbound feeds (In case you want local users to be able to post items to the remote server via your own server). Click Next.   In the Pull Articles From page make sure you configure the proper desired date. Note: If you configure a date that's too... --- ### Configuring Exchange 2007 to Send E-mail to External domains - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configuring-exchange-2007-send-external-email/ - Categories: Exchange Server - Article Type: How To Those of you skilled in Exchange 2000/2003 versions surely remember that, out of the box, Exchange 2000/2003 allows you to send e-mail to the external world right after the Exchange installation was finished. You need not configure any additional setting, and as long as the Exchange server had Internet access (and access to a valid DNS server), it could begin to function as an outgoing server for you mail. Exchange 2000/2003 did this by using the SMTP service mechanism, and it could do it without any additional configuration. It's true that you *could* and probably should create an SMTP Connector to configure the logic on outgoing e-mail, but you did not HAVE to create one in order for Exchange to be able to send e-mail externally. In Exchange 2007 the story is entirely different. Exchange 2007 does not send outgoing e-mail to the external world just like that. Meaning, after the installation of an Exchange server 2007 machine, you must manually configure it to be able to "talk" to the external world. You do so by creating a send connector by either using PowerShell or EMC (Exchange Management Console). Send connectors are configured on computers that are running Exchange 2007 and that have Hub Transport and Edge Transport server roles installed (see more about Exchange 2007 roles on the Related Articles section below). The Send Connector represents a logical gateway through which outbound messages are sent. A Send connector controls outbound connections from the internal sending server to... --- ### How do I install and configure a new Windows 2000 DNS server to prepare for a new AD Domain? - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/create_a_new_dns_server_for_ad/ - Categories: Active Directory (AD) - Article Type: How To The Domain Name System (DNS) is the Active Directory locator in Windows 2000. Active Directory clients and client tools use DNS to locate domain controllers for administration and logon. You must have a DNS server installed and configured for Active Directory and the associated client software to function correctly. This article guides you through the required DNS configuration. NetBIOS name resolution (WINS server, LMHOSTS file, or NetBIOS broadcast) is still required for earlier versions of Windows to resolve network resources on an Active Directory domain. DNS Server Requirements for Active Directory Support Microsoft recommends that you use Microsoft DNS Server as supplied with Windows 2000 Server as your DNS server. However, Microsoft DNS is not required. The DNS server that you use: Must support the SRV RR (RFC 2052). Supports the dynamic update protocol (RFC 2136). Version 8. 1. 2 and later of BIND (a popular DNS server implementation) supports both the SRV RR and dynamic update. (Version 8. 1. 1 does support dynamic updates but it has flaws that were fixed in 8. 1. 2. ) If you are using a version of BIND that does not support dynamic update, you need to manually add records to the DNS server. Note: Microsoft Windows NT 4. 0 Server DNS does not support the SRV record. Use DNS Server that is provided with Windows 2000 Server. Starting with a Windows 2000-Based Stand-Alone Server This server becomes a DNS server for your network. You can also promote it to the domain controller role at a later time... . --- ### Configure Outlook XP/2003/2007 to Prompt for a Password - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure_outlook_xp_2003_2007_to_prompt_for_a_password/ - Categories: Exchange Server - Article Type: How To How can I configure Outlook XP/2003/2007 to prompt me for a password? When using an Outlook client to connect to your Exchange mailbox you are getting a lot of information, some of it might be confidential, displayed on your computer screen. This type of information should be protected from viewing by other users. While using a username and password to protect your online identity is considered best practice, it is within the nature of the SSO (Single Sign On) method that Windows uses to allow the user unrestricted access to all the resources that they have permissions to, AFTER the user has logged on. Therefore, after the user logs on to their Windows client with their correct credentials, they will NOT be prompted to supply their credentials again within that session when accessing online resources. Your mailbox is one of those resources. So, we need to add some extra security in order to protect your mailbox from being accessed while you're logged on to your computer but are not near it right now (i. e. took your lunch break, went to the printing room to pick your copies, or even took a quick restroom break). One tested method of protecting your session from being used by another person is to safely lock your computer while you're not near it, even for a second. Another method would be to log yourself off each time you were not near the computer. But a more controlled approach for protecting your mailbox... --- ### Configuring Auto Logon - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configuring_autologon/ - Categories: Windows Client OS - Article Type: How To Can I configure Windows 2000/XP/2003 to log me on automatically? You sure can! Old but nevertheless good. The auto logon can be accomplished by means of Registry modifying, or by use of 3rd-party tools. To configure auto logon through the Registry follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogon Create or modify the following value (REG_SZ): DefaultUserName and enter the exact username you'd like to use. Then, create or modify the following value (REG_SZ): DefaultPassword and enter the exact password you'd like to use. Note: The password is stored in clear text, allowing anyone with access to the registry (either locally or remotely) to see your password. Use with extreme caution! Next, create or modify the following value (REG_SZ): AutoAdminLogon and enter a value of 1. Finally, create or modify the following value (REG_SZ): DefaultDomainName and enter the domain name you wish to logon to. Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a . REG file before performing the changes. Close Registry Editor and reboot the computer. Note: As far as I know, this trick will NOT work if the user does not have a password. It will only work once, but for subsequent logons it will stop working. In order to... --- ### Creating Wireless GPO Setting - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/creating_wireless_gpo_settings/ - Categories: Networking - Article Type: How To I found this nice blog by Darren Mar-Elia regarding an issue with editing wireless GPO settings from a Windows XP SP2 machine. I thought it was interesting enough to share, so here is my interpretation of it. If you may recall, Windows Server 2003 has added quite a few good GPO settings, some of which only work on Windows XP and above, and some require XP SP2 and above. One of the nicest security settings is the ability to create a wireless settings GPO that will require your client computers to connect only to a predefined set of wireless networks, and to require various security settings such as the type of wireless network access, level of encryption, method of authentication and more. Daniel's recommendations If you are looking to really master Active Directory (or other Networking skills), I strongly recommend that you try Train Signal.  I've discovered this company a few months ago and I always send people their way because the training is so good. You can see more HERE. Daniel Petri When creating and editing these wireless GPO settings you need to first have a Windows Server 2003 Domain. This is because of various additions to the AD Schema that the first Windows Server 2003 DC introduces (read Windows 2003 ADPrep). After you have a Windows Server 2003 Domain in place, you will need to create a new GPO or edit an existing GPO and add the wireless settings to it. BTW, if you plan to create... --- ### Windows Server 2008 Scenarios - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/windows-server-2008-scenarios/ - Categories: Windows Server 2008 - Article Type: Overview Microsoft Windows Server 2008 is the next generation of the Windows Server operating system, scheduled to be officially released during Q1 2008. Formerly known as "Longhorn Server", Windows Server 2008 is designed to help IT Professionals to maximize control over their infrastructure, while providing enhanced availability and management capabilities, leading to a significantly more secure, reliable server environment than ever before. This is not just one of Microsoft's sales pitches, over exaggerating the benefits for the new OS. The benefits included in Windows Server 2008 are real, and they are already available today (this article was written while Windows Server 2008 was in RC0 phase). Windows Server 2008 is the most flexible and robust Windows Server operating system to date. Quoting from Microsoft's site, Windows Server 2008 builds on the success and strengths of the award-winning Windows Server 2003 operating system and on the innovations delivered in Service Pack 1 and Windows Server 2003 R2. However, Windows Server 2008 is far more than a refinement of predecessor operating systems. Windows Server 2008 is designed to provide organizations with the most productive platform for powering applications, networks, and Web services from the workgroup to the datacenter with exciting, valuable new functionality and powerful improvements to the base operating system. By making all these functional and architectural changes, Windows Server 2008 is designed to deliver new value to organizations by ensuring that all users regardless of location are able to get the full complement of services from the network, with... --- ### Working with the Favorite Items in Vista Explorer - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/working_with_favorite_items_in_windows_vista/ - Categories: Windows Vista - Article Type: Overview Windows Vista comes with a new and shiny user interface. Most of the things we've gotten used to in Windows XP are still there, in one way or another, but there are also many new features that need getting used to. One of the most noticeable changes is the way the Windows Vista Explorer, in which we can browse through our disks and partitions, look for files and documents, and perform many administrative tasks.   One of the new features of the Explorer interface (and there are many new features, just take a look at "Quickly Copy File and Folder Path in Windows Vista", "Quickly Open Command Prompt Here in Windows Vista", "Quickly Zoom on File and Folder Details in Windows Vista" and many more) is the ability to use a new cascading type of menu called "Favorites". This favorites menu has nothing to do with your real Internet Explorer Favorites, but instead it allows the user to easily go to some of the most used folders in their computer, places like Documents, Pictures, Music and other recently-opened folders, and is similar to the Places bar feature in pre-Vista operating systems. The Explorer Favorites menu is located in the top left hand side of the Windows Vista Explorer window:   I personally find that the Favorites links menu is just taking too much valuable screen space, and I really do not need a reminder of where MY PERSONAL favorite items are located. I would like to get... --- ### 3 WAN Protocols you should know: HDLC, PPP, and Frame-Relay - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_3_wan_protocols_you_should_know/ - Categories: Cisco - Article Type: Overview Your company is connected to the Internet, right? (everyone nod your head yes) So what WAN protocol do you use to connect to the Internet? Chances are, that if you have a T1 leased line to the Internet or a private network between locations, you use one of these three WAN Protocols: HDLC, PPP, or Frame-relay. Let’s explore the differences and similarities of these protocols. What is HDLC? HDLC stands for High-Level Data Link Control protocol. Like the two other WAN protocols mentioned in this article, HDLC is a Layer 2 protocol (see OSI Model for more information on Layers). HDLC is a simple protocol used to connect point to point serial devices. For example, you have point to point leased line connecting two locations, in two different cities. HDLC would be the protocol with the least amount of configuration required to connect these two locations. HDLC would be running over the WAN, between the two locations. Each router would be de-encapsulating HDLC and turning dropping it off on the LAN.   HDLC performs error correction, just like Ethernet. Cisco’s version of HDLC is actually proprietary because they added a protocol type field. Thus, Cisco HDLC can only work with other Cisco devices. HDLC is actually the default protocol on all Cisco serial interfaces. If you do a show running-config on a Cisco router, your serial interfaces (by default) won’t have any encapsulation. This is because they are configured to the default of HDLC. If you do... --- ### How to use the OSI Model to Troubleshoot Networks - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/csc_how_to_use_the_osi_model_to_troubleshoot_networks/ - Categories: Cisco - Article Type: How To In a previous article, we explained the OSI model and how it works. In that article, we went over how the OSI model is a standard theoretical model for how networking hardware, software, protocols work together. What we didn’t discuss in that article is how the OSI model can help you in your day to day life. Some of you might be thinking “theoretical models don’t help me” or “the OSI model is just some engineering thing for the nerds”. However, in reality, it is quite the opposite. The OSI model can help you. Let me show you how. Using the OSI model First off, I want you to have a visual image of the OSI mode. It looks like this: This graphic is courtesy of the Abdus Salam International Centre for Theoretical Physics On the left hand side is a user. On the right hand side, you could have a server. Every request AND response has to travel from the left, down every layer, to the physical layer, across the physical layer, up the layers on the right, and up to the server on the top right hand corner. By understanding this information and having a visual image of how the OSI model works, you have a very valuable troubleshooting tool. If you can visualize the different pieces that complete the path of the data, you will have much less trouble resolving a networking issue. You can think of the OSI model as a map for the path that... --- ### How to Configure Exchange 2007 OWA for Individual Users - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure-exchange-2007-owa-for-individual-users/ - Categories: Exchange Server - Article Type: How To Although I think that Microsoft has done a pretty decent job creating the Exchange 2007 version of OWA, the fact remains that the default OWA configuration may not suit every organization, or even every user within an organization. There are a number of possible reasons why an administrator may need to customize the OWA experience, but they may not always want for these customizations to be applied globally to every user. Fortunately, Exchange 2007 makes it possible to customize the end user OWA experience; to a degree anyway. Unfortunately, it’s impossible to completely customize OWA on a user by user basis. OWA is a Web application that rides on top of IIS. This means that like any other Web application, the same code is used by all of the users who access it. What this means is that any changes that you make to OWA are generally going to apply to everyone (with certain exceptions). Of course that raises the question of what to do if you have users with varying needs. Running Multiple OWA Instances As I explained, OWA is just a Web application running on top of IIS. When run in a default configuration, IIS is a completely independent server application. What this means is that IIS is not aware of other instances of IIS that may be running on other servers on your network (clusters excluded). Therefore, if you want to assign different users different OWA configurations, then the first step toward doing so... --- ### Active Directory Training Labs - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/ad_training_labs/ - Categories: Active Directory (AD) - Article Type: How To A review of Train Signal’s Windows 2000/2003 Active Directory Video Lab Training – Product Details.  See more details at Train Signal's website. Comprehensive Instructional Video. Perfect for the novice who needs a crash course in installing and setting up Active Directory in Windows 2000 Server/Advanced Server and/or Windows 2003 Server or for the more experienced administrator who wants to expand their knowledge. Both operating systems are covered on each CD. The CD comes with AVI movies that can be played through the Camtasia player supplied on the CD or Windows Media player but first the Camtasia codec must be installed. I prefer Windows Media player due to the video time played display. Makes it easier to restart at a point after stopping or “bookmarking” an area of interest. This instructional CD comes with several videos. The first to look at is Concepts. This covers the terms used in Windows 2003 Server, what they mean and how they apply to the O/S. Each concept is explained fully with some cross covering of the explained terms during the introduction to the new one. I found this very useful as the repetition of the explanations assisted with the absorption of the new information or old (forgotten) material revisited. These concept explanations provide a good grounding for what is to come. The next video in the list covers the new features in Active Directory in Windows 2003. Once again these features are explained in an easy to understand... --- ### Difference between Activation and Registration - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/activation_vs_registration/ - Categories: Windows Client OS - Article Type: Overview What's the difference between Product Activation and Product Registration? In one short line: Activation is mandatory, registration is optional. Activation is anonymous, registration is not. Windows XP and Windows Server 2003, retail and OEM products, contain software-based product activation technology, which means you need to activate your copy of Windows XP/2003 in order to use it. Some new PCs purchased with Windows XP/2003 pre-installed will also require activation. If your organization licenses Windows XP through one of Microsoft’s volume licensing agreement programs such as Open License and Select License, you will not be required to activate those Windows XP/2003 licenses. Product activation is not the same as product registration. Product activation is required and is completely anonymous. Product registration, on the other hand, is completely optional. You may opt to provide personal information, such as your e-mail address, for product registration purposes. Registration entitles you to receive information about product updates and special offers directly from Microsoft. All registration information provided is stored securely and no information is ever loaned or sold to third parties (or so they say... ). Related articles You may also want to read: Activate Windows XP Activate XP with Sysprep Installations Activate XP with Unattended Installations What's Windows Product Activation? Links Frequently Asked Questions about Microsoft Product Activation - 302878 Windows XP frequently asked questions about Windows Product Activation (WPA) Microsoft Product Activation Frequently Asked Questions General Questions Microsoft Product Activation: Frequently Asked Questions Piracy... --- ### Add Logo and Support Information to Vista - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/add-logo-and-support-information-to-vista/ - Categories: Windows Vista - Article Type: How To As you may remember, in my "How can I change or add OEM logo and information on my computer? " article, one could easily add support information such as manufacturer information, support link and other information, plus a small image of the manufacturer's logo. This information was inserted by manufacturers that sold pre-installed computers and laptops, and was visible when one went to the My Computer > Properties screen, or pressed the ÿ + Break key. In Windows Vista, adding support information and a company logo is not as simple as it was in Windows XP, and it requires some Registry editing. You will also need a small logo of the company or other entity you want to display. Please follow these instructions: The Logo You will need to create a small logo of your choice by using any graphics editing tools. Make sure that the logo file is called OEMLOGO. BMP, and, guess what, save it in . BMP format. Also, the logo file should not be bigger than 120X120 pixels in size. For example: You can place the file in any directory of your choice, but I suggest you put it in the %systemroot%system32 folder of your computer (for example - C:WindowsSystem32). Note this path, you'll need it later. The Registry The next phase is to edit the local Registry and add the support information. In the Start Menu type “Regedit” and press Enter. Note: As always, be very careful while the editing the Registry. A small mistake can... --- ### Add User Account Information to Active Directory Users and Computers - Published: 2009-01-07 - Modified: 2022-08-12 - URL: https://petri.com/add_user_account_information_to_dsa/ - Categories: Active Directory (AD) - Article Type: How To How can I add additional user account information option to the Active Directory Users and Computers context menu? As seen in the Add Unlock User Option to Active Directory Users and Computers article, many of the daily tasks of a network administrator is to monitor user accounts, logo activities, password changes and account options, such as disabling and enabling user accounts, and also looking for logon information for the user account. One method of viewing additional information about user accounts is by using the Acctinfo. dll add-in for Active Directory Users and Computers (as explained in the View Additional User Information in AD Users and Computers article). Another method is by adding some right-click (context menu) options to the user account objects. By right-clicking a user object you will be able to view some more information about any user account you want, information that includes the last logon time, the user's logon script, the last time the user has changed his or her password and so on. Writing the script First we need to write a small VBS script (I thank Antid0t for the insight). It will be used as a context menu option on any user account object. I guess the script could be done in a better way, and if any of you have a good suggestion please send it over . ​On Error Resume Next Set wshArguments = WScript. Arguments Set objUser = GetObject(wshArguments(0)) str1 = "Last Login: " & objUser. LastLogin str2... --- ### Artificially Raise Your Windows Experience Index - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/artificially_raise_wei/ - Categories: Windows Vista - Article Type: How To When you first install and run Windows Vista, it will calculate your Windows Experience Index score to evaluate your computer's speed and graphics capabilities. Microsoft defines the Windows Experience Index as the following: "The Windows Experience Index is a new feature built into Windows Vista that is designed to help you better understand how well Windows Vista and other software will perform on your PC. Your computer, running Windows Vista, is assigned a rating number called a "base score" that is achieved by measuring the capability of your computer's hardware configuration. This base score rating will help you to more confidently buy additional hardware, programs, and software that are matched to your computer's base score. " WEI has been a point of contention for many Windows Vista users because the WEI scores tend to be extremely low. Unfortunately, some software requires your WEI score to be above a certain threshold for all the features to work. Fortunately, it is easy to artificially raise your WEI score by modifying the configuration file. The first step is to check your current score. In order to check your WEI score, go to to Start >> Computer >> System Properties >> Performance Click Rate this computer. It will take a few minutes while Windows evaluates your computer. Your baseline WEI score will now be set. In order to raise this score, navigate to the following directory: C:'Windows'Performance'WinSAT'DataStore Note: You will need to have your UAC temporarily disabled to proceed with the rest of... --- ### How can I configure Exchange 2003 to block unsolicited commercial e-mail (spam) with Intelligent Message Filter? - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/block_spam_with_exchange_2003_imf/ - Categories: Exchange Server - Article Type: How To Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users. Intelligent Message Filter is based on Microsoft SmartScreen Technology from Microsoft Research. By using e-mail characteristics tracked by SmartScreen technology, Intelligent Message Filter can help determine whether each incoming e-mail message is likely to be spam. Based on this likelihood, you can choose to block e-mail messages at the gateway or at the mailbox store. How it works? When an external user sends e-mail messages to an Exchange server with Intelligent Message Filter installed, IMF evaluates the textual content of the messages and assigns the message a rating based on the probability that the message is UCE or spam. All incoming messages are marked with a Spam Confidence Level SCL rating, regardless of the rating threshold you set. This rating is saved with the other message properties and these properties are sent with the message to other Exchange servers. In Gateway Blocking Configuration, select the rating in Block messages with an SCL rating greater than or equal to above which Intelligent Message Filter takes action on this message. If a message has a rating higher than the gateway threshold, IMF takes the action specified. If the message has a rating below the gateway threshold, the message is sent to the Exchange mailbox store of the recipient. At the Exchange mailbox store, if the message has a higher rating than the... --- ### How can I change a drive letter in Windows XP? - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_a_drive_letter_in_windows_xp/ - Categories: Backup & Storage - Article Type: How To When you add drives to your computer, such as an extra hard drive, a CD drive, or a storage device that corresponds to a drive, Windows automatically assigns letters to the drives. However, this assignment might not suit your system; for example, you might have mapped a network drive to the same letter that Windows assigns to a new drive. When you want to change drive letters, follow these steps: Right-click My Computer, and then click Manage. Under Computer Management, click Disk Management. In the right pane, you’ll see your drives listed. CD-ROM drives are listed at the bottom of the pane. Right-click the drive or device you want to change, and then click Change Drive Letter and Paths. Click Change, click Assign the following drive letter, click the drive letter you want to assign, and then click OK. You will not be able to change the boot or system drive letter in this manner. Many MS-DOS-based and Windows-based programs make references to a specific drive letter (for example, environment variables). If you modify the drive letter, these programs may not function correctly. Links Change the System/Boot Drive Letter in Windows - 223188 Change Drive Letter Assignments in Windows XP - 307844 Unable to Log on if the Boot Partition Drive Letter Has Changed - 249321 --- ### Change the IMAP4 Banner - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_the_imap4_banner/ - Categories: Exchange Server - Article Type: How To How can I change the IMAP4 banner seen when connecting to my Exchange server? MS KB article 303513 has more: When you connect to an Exchange 2000/2003 server with the Internet Message Access Protocol (IMAP) you receive a banner that is similar to the following: ​* OK Microsoft Exchange Server 2003 IMAP4rev1 server version 6. 5. 6944. 0 (your_server_name) ready. Note: The IMAP4 banner has another function. Read Remote Version Checking through SMTP/POP3/IMAP4. Note: You may also want to Change the POP3 Banner, Change the SMTP Banner or Change the Telnet Banner. WARNING: If you use the ADSI Edit snap-in, the LDP utility, or any other LDAP version 3 client, and you incorrectly modify the attributes of Active Directory objects, you can cause serious problems. These problems may require you to reinstall Microsoft Windows 2000/2003 Server, Microsoft Exchange 2000/2003 Server, or both. Microsoft cannot guarantee that problems that occur if you incorrectly modify Active Directory object attributes can be solved. Modify these attributes at your own risk. This may be an issue if you do not want the version of the IMAP4 service that is running on your server to be displayed. To remove the version information from the Exchange 2000/2003 POP3 banner, follow these steps: Note: The following screenshots were taken on a Windows Server 2003 computer running Exchange 2003. I bet you can find your way on a similar W2K + E2K computer. Using a metabase editing tool such as MetaEdit or Metabase Explorer, locate the following file: ​Lm'IMAP4SVC'virtual server number... --- ### Combating SPAM Problems in a Corporate Environment - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/combating_spam/ - Categories: Anti-Spam Solutions - Article Type: How To Perhaps no problem plagues the Internet as deeply as that of unsolicited junk E-mail, or SPAM. While there’s no doubt that SPAM can be annoying to the end users, SPAM can cause problems for both the network administrators and for those who own or manage a company. The reason for this is that SPAM robs your company of productivity and of system resources. SPAM and Backend Mail Systems First, let’s take a look at the system resource that are consumed by SPAM. Any time that an E-mail message is sent to someone in your organization, the message must first pass through your organization’s Internet connection and through the firewall before reaching your Exchange Server. Regardless of how much bandwidth your organization may have, there is a finite amount of data that the Internet connection can handle in a given amount of time. This means that if your organization is using their Internet connection at or near its total capacity then any time you receive a junk E-mail message, other legitimate messages are kept waiting until bandwidth becomes available. Once a message passes into your organization, it must pass through your firewall, which then hands the message off to the appropriate Exchange Server. Both the firewall and the Exchange server use CPU cycles and memory when processing the message, resources that would be better used elsewhere. Keep in mind that each E-mail message that your organization receives consumes a tiny amount of resources such as bandwidth, memory, CPU cycles, etc. Most... --- ### Configure Exchange 2000/2003 to Receive E-Mail for other Domains - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/configure_exchange_2000_2003_to_receive_email_for_other_domains/ - Categories: Exchange Server - Article Type: How To How do I configure my Exchange 2000/2003 server to accept e-mails for domains other than my own? Exchange 2000/2003 will only accept e-mail traffic for the e-mail domain that is identical to the name of your Active Directory domain. However sometimes we would like to allow our Exchange server to also receive e-mail for domains other than our own, internal domain name. For example, if you have an AD domain called TEST. HOME and you've installed Exchange 2000/2003 on it, each and every mailbox enabled user, mail enabled user, mail enabled group, mail enabled contact and mail enabled Public Folders you have will automatically have an e-mail address of ALIAS@TEST. HOME. One day you've decided that you'd like to have an Internet presence, so you bought TEST. COM and you'd like to begin using it on your Exchange server. You don't need to rename your AD domain for that, but you DO need to configure Exchange to receive e-mail for the new domain, along with the traffic you might have had for the old domain name. This example can also be extended to instances where a company has had it's Internet domain name changed, or when one Exchange server is used to host mailboxes for more than one company. Basically, Exchange can handle hundreds of mail domains without any problem (up to about 1000 domains), so performance is usually not an issue. In all of the above examples you'll need to configure Exchange to use new (or modified) Recipient Policies... --- ### Configuring Forms-Based Authentication in OWA and Exchange 2003 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configuring_forms_based_authentication_in_exchange_2003/ - Categories: Exchange Server - Article Type: How To How can I configure Forms-Based Authentication in Exchange Server 2003 OWA? Exchange Server 2003 has greatly improved the Outlook Web Access (or OWA for short) experience when compared to older Exchange versions. Besides the nice new GUI, spell-checking in different languages, drag-and-drop features, S/MIME support (see Configure Message Security in OWA 2003 for more info) and more, Exchange Server 2003 has added a new logon method that can be used on OWA. Instead of entering the username and password in an annoying pop-up screen, when configured with Forms-Based Authentication (or FBA for short), OWA will display a logon screen that enables the user to select various options and get a generally better look for the logon process. FBA can also be used to enable compression and other nice features, but in this article I will only deal with enabling it. In order to successfully configure Forms-Based Authentication in OWA on Exchange Server 2003 you need to perform the following steps: Configure SSL on OWA If you plan to use SSL or Forms-Based Authentication on your OWA site you must first configure OWA to use SSL as the connection protocol. See Configure SSL on OWA for more info. Configuring Forms-Based Authentication After configuring SSL on the OWA site, you now need to enable the Forms-Based Authentication on the HTTP Virtual Server in Exchange System Manager. Open Exchange System Manager. Navigate to your server object. Expand your server object, and expand Protocols. Expand HTTP. Right-click on the Exchange Virtual... --- ### Create new PF Tree on Exchange 2000 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/create_new_pf_tree_on_e2k/ - Categories: Exchange Server - Article Type: How To How do I create a new Public Folder Tree in Exchange 2000? When you first install Exchange 2000, you have a default Public Folders store that is connected to a default Public Folder hierarchy. However, you might want to create your own separate Public Folder Tree for certain uses, such as a store for Internet newsgroups or for company specific tasks. Note: To create new PF Trees on Exchange Server 2003 see Create new PF Tree on Exchange 2003. Creating a new Public Folder Tree requires three steps: Creating a new public folder tree Start the Exchange System Manager. Go to the Folders branch. Right-click the Folders, and select New, Public Folder Tree. Enter a name for the public folder root (e. g. , New PF Tree). Click OK. Creating the new public folder store Start the Exchange System Manager. Expand the Servers, Server name, First Storage Group. Right-click the First Storage Group (or another storage group if you have one) and select New, Public Store. On the General tab, enter a name. This name should match the public folder root, so, in our example you'd enter New PF Store. Under "Associate public folder tree," click Browse, and select the folder you created. Click OK. On the Database tab, the system creates default names based on the name you entered, so you can leave these. All other tabs are optional. Click OK. The system will display a dialog box to confirm the creation and ask whether you want to mount the new... --- ### Windows Server 2008 Terminal Services Presentation - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/windows-server-2008-terminal-services-new-features-presentation/ - Categories: Windows Server 2008 - Article Type: Overview Terminal Server on Windows Server 2008 has 3 primary features that offer great out-of-the-box manageability, improved access and improved user experience. These key features include: TS RemoteApp TS Web Access TS Gateway Other features include TS Session Broker, TS Licensing and Easy Print, but these will be covered in a different presentation. . Settings tab, he or she will need to enter the FQDN or IP Address of the TS Gateway server. Because TS Gateway uses port 443 instead of 3389, by using an HTTP Secure Sockets Layer/Transport Layer Security (SSL/TLS) tunnel, it enables most remote users to connect to internal network resources that are hosted behind firewalls in private networks and across network address translators (NATs). You can configure TS Gateway servers and Terminal Services clients to use Network Access Protection (NAP) to further enhance security. Requirements: TS Gateway – Windows Server 2008 installed with TS Gateway role, IIS 7. 0 and NAP TS Client – Windows XP SP3, Vista, Vista SP1, Windows Server 2008 Internal Network Resource – Windows XP SP2/3, Vista, Vista SP1, Windows Server 2003 SP1/2, Windows Server 2008 You must obtain an externally trusted SSL certificate for the TS Gateway server if you do not have one already. Key Takeaways Terminal Services in Windows Server 2008 offers many new features that allow the users to easily connect to their desktops from anywhere, or just specific applications that are being made available by the administrator, all with much-improved performance and user experience. Download Daniel's ! --- ### Working with Query Based Distribution Groups in Exchange 2003 - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/working_with_query_based_distribution_groups_in_exchange_2003/ - Categories: Exchange Server - Article Type: Overview How can I work with Query-Based Distribution groups in Windows Server 2003 and Exchange Server 2003? Windows Server 2003 and Exchange Server 2003 have a new group type called "Queries-Based Distribution groups". With the new Queries-Based Distribution groups we can now create new types of distribution groups that are different from the regular type of distribution groups. The reason for this difference is the fact that the Queries-Based Distribution groups are dynamic by nature and their membership is not static as in regular types of groups. The members of Queries-Based Distribution groups are dynamically inserted or removed from the group when they fall under the scope of the group's LDAP-based search filter. Note: In order to be able to use Queries-Based Distribution groups you need to be running a Windows Server 2003 AD and Exchange Server 2003. These types of groups are not present in Windows 2000 AD, nor are they present if Exchange Server 2003 is not installed in your organization. To create a Queries-Based Distribution group perform the following steps: In the Windows Server 2003 AD Users and Computers right-click any OU you want and choose New > Query-Based Distribution Group. In the New Object window, give the new group a name and Alias and click Next. Note: Make sure you do NOT enter an Alias in Hebrew. The e-mail address of the new group will be based upon this alias (unless you change it later), and Hebrew characters will cause the e-mail address to... --- ### Analyzing the Boot Process of a Cisco IOS Router - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_analyzing_boot_process_cisco_ios_router/ - Categories: Networking - Article Type: Overview You can learn a lot about a router by watching it power-up / boot-up. When the router boots, you can learn how fast it is, how much RAM it has, how much storage it has, how many interfaces it has, what type of interfaces, and much more. Many administrators don’t think about the boot-up process because they may not boot-up a router every day. In this article, we will boot a router and analyze the boot process. By knowing what to look for, you will quickly know what is normal and what is not. Router Boot-up Part 1 You have just turned on the power switch of your router. You are connected to the console power with a terminal emulator. The screenshot below shows the first part of the router boot-up (power-on). In this first part of the boot process, I’d like to point out three things. First, you see that this router has a “2500 processor”. In other words, this router is part of the Cisco 2500 series of routers. Next, it says “with 16384 Kbytes of main memory”. This means that this router has 16Mb (16384Kb) of RAM. The RAM is where the operating system (the IOS) is loaded in when the router is running. The RAM is also used to process packets. Just like a PC, RAM is a very necessary thing, and the more you have the better. Lastly, I’d like to point out that this is IOS 2500 Software, series C2500-IS-L. More... --- ### Using the Ping Command In The Cisco IOS - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_ping_command_cisco_ios/ - Categories: Cisco - Article Type: Overview The ping command is irreplaceable when it comes to troubleshooting. At some point, you will undoubtedly use this command to solve a networking problem. But how do you properly use this command in the Cisco IOS? There is more to it than you might think. What Are The Basics of Ping? The ping command works just like on those old submarine movies. You are on one network device and you “ping” another. When you do this, in your head think of the sound that you heard on those old submarine movies- “PPiiiiiiiiiiiing”. The sound would go out and, on the sonar operator’s-screen, he would or would not see the other submarine. This is exactly how the ping-command in networking, works. Your sonar screen is your Cisco router’s command prompt. Usage of the ping command can be as simple as this:   As you can see in this example, I simply typed ping, and the IP address of the host I wanted to ping. In response, I got five exclamation points that told me that I sent 5 ping packets out, and they were all returned (a complete success). In other words, a ping request is sent out to the remote device, and a ping response is received back, acknowledging the request. As ping uses the ICMP protocol, these packets are technically called ICMP echo request, and ICMP echo reply. ICMP is considered the management protocol for IP. ICMP uses the IP protocol but ICMP is not TCP,... --- ### Configuring Exchange 2007 Send Connectors - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configuring-exchange-2007-send-connectors/ - Categories: Exchange Server - Article Type: How To A lot of Exchange administrators are surprised to learn that in most cases a new Exchange Server 2007 deployment is not able to send mail to the outside world until the administrator does some additional configuration.   The reason for this is that unless you have installed an Edge transport server, and created an Edge subscription, Exchange Server 2007 does not create a Send connector. As you probably know, hub transport servers use the SMTP protocol to send mail both internally and externally.   All SMTP mail is routed through a Send connector.   Exchange Server 2007 creates an implicit and invisible send connector that it uses to route mail between hub transport servers on your internal network.   The reason why Exchange Server is able to create these implicit Send connectors is because it is able to compute the necessary requirements based on information that is stored in the Active Directory. Unfortunately, Microsoft assumes that you are going to create an edge transport server at your network perimeter.   Creating an edge transport server, and the accompanying edge transport subscription, causes Exchange Server to create a Send connector that can be used to transmit SMTP messages to the outside world.   Like the implicit Send connectors, this connector is stored in the Active Directory.   If you don't have an edge transport server though, then you will have to create the send connector manually. Creating a Send Connector Creating a Send connector is a fairly simple task.   Begin the process by opening the Exchange... --- ### WINS Training Labs - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/wins_training_labs/ - Categories: Networking - Article Type: Overview A review of Train Signal’s Windows 2000/2003 WINS Video Lab Training – Product Details.  See more details at Train Signal's website. I had always used WINS because it was easy to install and configure.  It was a no brainer. Static Mappings was the extent of my configuration attempts with WINS.  Didn’t think there was really much to it until I ran through Train Signal’s training video. As with all of the Train Signal videos I have viewed they start at the very beginning and show you how to install and most importantly where to find it as it is hidden away in Windows 2003 Server. Lab 6 provides a complete coverage of the options in WINS from Scavenging and Tombstoning, Database Consistency, Replication, Database Backup and where to Start, Stop and Restart WINS.   Push/Pull Replication is gone into in some depth and Replication Partners is given the usual methodical Train Signal workout and you come away a confidence from the knowledge gained. Settings are given a run through with a thorough explanation of the default settings and what each one does.   I had never bothered to lookup what the various Active Registrations record types meant but thanks to Train Signal I now know what 00h, 03h and 20h records are and what they are used for. The NBTSTAT command, which is run from the Console (Command Prompt), is given a good workout and I took the opportunity to get some much needed practice with this useful tool.   Load Balancing for... --- ### Active Directory on Windows Server 2008 Requirements - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/active-directory-windows-server-2008-requirements/ - Categories: Windows Server 2008 - Article Type: Overview   The process of installing an Active Directory domain in Windows Server 2008 is quite simple, but some beginners or IT professionals that have never had a chance to get their hands on AD installations and that are not familiar with its requirements might stumble across a few pitfalls. So, what do we need in order to successfully install Active Directory on a Windows Server 2008? Here is a quick list of what you must have: An NTFS partition with enough free space An Administrator's username and password The correct operating system version A NIC Properly configured TCP/IP (IP address, subnet mask and - optional - default gateway) A network connection (to a hub or to another computer via a crossover cable) An operational DNS server (which can be installed on the DC itself) A Domain name that you want to use Brains (recommended, not required... ) After you have all the above go ahead and read my "Installing Active Directory on Windows Server 2008" article. An NTFS Partition To successfully install AD you must have at least one NTFS formatted partition. Back in older operating systems this was something that you actually had to tell people about, because *some* administrators had servers that did not have their partitions formatted with NTFS. Nowadays, NTFS is the only way to go in Windows-based servers, but I will nevertheless put it on the writing, just to make sure. This partition is where the SYSVOL folder is... --- ### Add "Take Ownership" to right-click menu in Vista - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/add-take-ownership-context-menu-vista/ - Categories: Windows Vista - Article Type: How To In order to streamline the ownership of various files and folders in Windows Vista, you can add the “Take Ownership” option to your right-click menu. After clicking this icon, the owner of the selected file or folder will automatically change to your username. Please note that in order to use this feature you must have administrative privileges. Check out this article on Petri about how to modify access control lists using icacls if you don't want to use the GUI. Please be aware that this change requires making a change to the Windows Vista registry. Note: Editing the registry has the potential to cause serious (and unrecoverable) damage to your PC. If you are at all uncomfortable editing the registry, please do not attempt the following. The first step is to create a registry file. You can do this by opening Notepad (Start >> All Programs >> Accessories >> Notepad) and copying and pasting the following: Windows Registry Editor Version 5. 00 @="Take Ownership" "Extended"="" "NoWorkingDirectory"="" @="cmd. exe /c takeown /f "%1" && icacls "%1" /grant administrators:F" "IsolatedCommand"="cmd. exe /c takeown /f "%1" && icacls "%1" /grant administrators:F" @="Take Ownership" "Extended"="" "NoWorkingDirectory"="" @="cmd. exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t" "IsolatedCommand"="cmd. exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t" Save the file with the name Ownership. reg and close Notepad. Double-click your Ownership. reg file to apply it to the registry. You will have to... --- ### Add Volume Control in Windows XP - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/add_volume_control_in_windows_xp/ - Categories: Windows Client OS - Article Type: How To Where did the volume control icon disappear in Windows XP? This is another stupid "feature" of Windows XP. I usually restore the volume control icon back to where it belongs: The notification area of the tray. To display the volume control icon in the notification area: Open Sounds and Audio Devices in Control Panel. On the Volume tab, under Device volume, select the Place volume icon in the taskbar notification area check box. If your sound card volume can be changed using software, a speaker icon appears in the notification area. You can change the volume by clicking the icon and adjusting the slider. Just like in Windows 2000, you can also use Volume Control to adjust the volume, balance, bass, and treble settings for sounds played on your computer or by multimedia applications. You can also use Volume Control to adjust the level of system sounds, microphones, CD audio, line-in, synthesizer, and wave output. To open Volume Control, click Start, point to All Programs, point to Accessories, point to Entertainment, and then click Volume Control. --- ### Assigning Custom Tasks to Events in Vista - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/assigning-custom-tasks-to-events/ - Categories: Windows Vista - Article Type: How To As mentioned earlier in my "Working with Vista's new Event Viewer" and "Working with Filtering and Custom Views in the Vista Event Viewer" articles, the new Event Viewer in Windows Vista and Windows Server 2008 has been totally re-designed and now offers a much wider administrative capabilities. One of the features of the new Event Viewer is the ability to easily assign custom tasks to events that are logged to any one of the logs. Although this feature has been possible in Windows XP and Windows Server 2003 by using the EVENTTRIGGERS command-line application, assigning tasks to events is now so simple that I fear we will all get too used to it... Note: Although assigning tasks to events is a nice thing to have, I would like to remind you that this is not a true monitoring and reporting replacement. Tools like MOM and other monitoring software will perform much better than the simple tasks one would assign to any given event. Assigning a custom task to an event Open Computer Management by right-clicking the Computer icon on the start menu (or on the Desktop if you have it enabled) and select Manage. Navigate to the Event Viewer. Note: If you did not disable UAC (read my "Disable User Account Control in Windows Vista" article) then you will be prompted to consent to the action you're about to perform. Click Continue. Note: You can also open the Event Viewer by typing Event Viewer in the Search box... --- ### How can I configure Outlook 2003 to block spam? - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/block_spam_with_outlook_2003/ - Categories: Exchange Server - Article Type: How To Microsoft Office Outlook 2003 includes features and functionality designed to help block much of the junk e-mail messages (or spam) that you receive. These features give you more control over the kinds of messages delivered to your Inbox, and from whom you want to receive messages.  Although these features are not customizable in any way, they do provide a means for reducing the amount of incoming spam. In combination with good rules that you manually create - you can get a 80% spam blocking rate. Update - Exchange Intelligent Message Filter Microsoft Exchange Intelligent Message Filter (IMF) was first released at the end of May 2004. Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users. Intelligent Message Filter is based on Microsoft SmartScreen Technology from Microsoft Research. By using e-mail characteristics tracked by SmartScreen technology, Intelligent Message Filter can help determine whether each incoming e-mail message is likely to be spam. Based on this likelihood, you can choose to block e-mail messages at the gateway or at the mailbox store. Furthermore, users are able to view the Spam Confidence Level (or SCL) rating for each message, and thus determine the effectiveness of IMF. Read more about it on the Display SCL Level in Outlook 2003 page. Exchange Server 2003 SP2 Update Note: IMF is now an integral part of Exchange Service Pack 2 (SP2). You can learn how to configure... --- ### Control Active Directory Intrasite Replication Interval - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/change_ad_replication_interval/ - Categories: Active Directory (AD) - Article Type: How To How do I change the intrasite replication interval in Windows 2000 for domain information? Active Directory intrasite replication for naming context data doesn’t occur until 5 minutes after a change. When you make a change to the naming context (i. e. , domain) data, the DC’s local copy of Active Directory (AD) records the change, then the DC waits 5 minutes (by default) before notifying its replication partners of the change. You can continue to make changes during this time period. The delay exists so that all changes transmit at once. If no changes occur during a particular time period (which you can configure in the intrasite connection object schedule), a replication sequence initiates to ensure no changes were missed. This delay lets all changes transmit at once. You can change this 5-minute delay by using the registry editor: Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. Start Regedit. exe. Go to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesNTDSParameters Double-click Replicator notify pause after modify (secs). Note: The default value data for the "Replicator notify pause after modify (secs)" DWORD value is 0x12c, which in hexadecimal format is 300 decimal... --- ### Change the POP3 Banner - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_the_pop3_banner/ - Categories: Exchange Server - Article Type: How To How can I change the POP3 banner seen when connecting to my Exchange server? MS KB article 303513 has more: When you connect to an Exchange 2000/2003 server with the Post Office Protocol (POP) you receive a banner that is similar to the following: ​Microsoft Exchange 2003 POP3 server version 6. 0. 4417. 0 (your_server_name) ready. Note: The POP3 banner has another function. Read Remote Version Checking through SMTP/POP3/IMAP4. Note: You may also want to Change the IMAP4 Banner, Change the SMTP Banner or Change the Telnet Banner. WARNING: If you use the ADSI Edit snap-in, the LDP utility, or any other LDAP version 3 client, and you incorrectly modify the attributes of Active Directory objects, you can cause serious problems. These problems may require you to reinstall Microsoft Windows 2000/2003 Server, Microsoft Exchange 2000/2003 Server, or both. Microsoft cannot guarantee that problems that occur if you incorrectly modify Active Directory object attributes can be solved. Modify these attributes at your own risk. This may be an issue if you do not want the version of the SMTP service that is running on your server to be displayed. To remove the version information from the Windows 2000 SMTP banner, follow these steps: Note: The following screenshots were taken on a Windows Server 2003 computer running Exchange 2003. I bet you can find your way on a similar W2K + E2K computer. Using a metabase editing tool such as MetaEdit or Metabase Explorer, locate the following file: LmPOP3SVCvirtual server number Click Edit, click New,... --- ### Combating Spam with Greylisting - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/combating_spam_with_greylisting/ - Categories: Exchange Server - Article Type: How To Greylisting is quickly emerging as the new weapon that can be effectively used to fight against spam. Greylisting is somewhat related to whitelisting and blacklisting, but instead of specifying who is on your white or black lists, Greylisting works in a different way. Each time a mailbox receives an e-mail from an unknown contact, that e-mail is rejected with a "try again later" message. This means that the e-mail message is delayed for a few more moments until the sender tries to send it again. You see, spammers rely on speed, and their spam-shooting applications are built to quickly bombard a domain's MX records, but they rarely listen to the recipient's mail server's reply. Because of that, the spammers will not obey your server's request for them to "try again later". How it works? The Greylisting method is very simple. It looks for three pieces of information (or what is commonly known as the "Triplet") about any particular mail delivery attempt: The IP address of the host attempting the delivery The envelope sender address (the MAIL FROM: part) The envelope recipient address (the RCPT TO: part) From this, we now have a unique triplet for identifying a mail "relationship". With this data, we simply follow a basic rule which is: If we have never seen this triplet before, then refuse this delivery and any others that may come within a certain period of time with a temporary failure. Since SMTP is considered an unreliable transport, the possibility... --- ### Configure IIS to be a Smart Host for Exchange - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_iis_to_be_a_smart_host_for_exchange/ - Categories: Exchange Server - Article Type: How To How can I configure an IIS computer to be a Smart Host for my Exchange Server? It may be necessary to configure a Windows 2000 server to relay or act as a smart host for security reasons, such as in a perimeter network scenario (also known as DMZ, demilitarized zone, and screened subnet) when you do not want to have a server that participates in domain security available on the Internet or you do not need the full functionality that an Exchange server provides to do e-mail for CDO and list serve-type applications.   Step 1: Verify the Installation of the SMTP Service In Control Panel, open Add/Remove Programs, click Add/Remove Windows Components. Click the Internet Information Services (IIS) component, click Details, and then verify that the SMTP Service check box is selected.   If it is not selected, click to select it, click OK, and then follow the installation directions that are displayed. Step 2: Configure the SMTP Service to Relay for Internal Domains Depending on the scenario, it may be necessary to configure the SMTP service to relay inbound messages for your internal domains. Click Start, point to Programs, click Administrative Tools, and then click Internet Services Manager. Expand the tree under the server name, and then expand the Default SMTP Virtual Server. By default, you should have a Local (Default) domain with the fully qualified domain name of the server. Configure the domain for inbound: Right-click the Domains icon, click New, and then click Domain. Click... --- ### Configure Public Folder to Hold Default Contacts List - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure_public_folder_to_hold_default_contacts_list/ - Categories: Exchange Server - Article Type: How To How can I configure a Public Folder to hold my default Contacts list in Exchange 2000/2003? If you’ve ever created Exchange public folders before, you’ve probably noticed that Exchange gives you a choice of what types of items can be stored in the public folder. One of the possible choices is Contacts. In this article, I’ll show you how to remap the normal Contacts folder to a Contacts public folder.   Note: This tip is mostly accurate for Exchange 2000, not for Exchange Server 2003. The reason for the difference is the fact that Exchange 2003 already has this feature built-in, so basically, all you need to do is to simply create the Public Folder, and it will do the rest on its own. In order to create the Public Folder perform the following steps: Log in as an Administrator and open Outlook. Select All Public Folders in the public folder tree and then select New > Folder. You’ll see the Create New Folder dialog box. This box requires you to specify a folder name, location, and to tell Outlook what type of content the folder will contain. Use any name as the folder name (I've used "Sales Shared Contacts") and select Contact items from the Folder Contains drop down list. You may place this new folder anywhere in the public folder hierarchy that meets your needs. You’ve now created the necessary folder, and may begin filling it with contacts. Done, you can now begin to copy your contacts to... --- ### Configuring ICS on Windows 2000 - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/configuring_ics_on_windows_2000/ - Categories: Networking - Article Type: How To This is a step by step setup of how you get Windows 2000 Server (or Professional) to use Internet Connection Sharing or ICS. These instructions assume that when you have a Cable Modem connection or an ADSL connection (frankly, it can also be a simple Dial-Up modem connection, but that won't get you anywhere, would it? ). Let's say you have the following LAN configuration: Internet       |       |       |       | 212. 143. 143. 12     (Real IP from ISP)    SRV1                  (This will be the ICS computer) 192. 168. 0. 1    (Bogus IP - Configured by ICS)       |       |       |       | Switching Hub---------PRO2       |                   192. 168. 0. 2  (Bogus IP - Configured by ICS)       |       |       |       | 192. 168. 0. 3    (Bogus IP - Configured by ICS)    PRO3 Instead of a hub you could use a crossover cable to the other computer but then you will only be able to connect 2 computers, and if you'd want more you'd need more NICs. Step 1: Configure Internet Connection Sharing Right click "My Network Places" and select "Properties". In this window you should see an icon for "Local Area Connection" and "Local Area Connection 2" for both of your NIC's.   Right click on the Network Area Connection icon that connects to your Cable or ADSL modem, and select "Properties" from the drop down window.   If you're using a modem to connect to the Internet you must right click the icon that represents the connection to the Internet. Click on... --- ### Create new PF Tree on Exchange 2003 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/create_new_pf_tree_on_exchange_2003/ - Categories: Exchange Server - Article Type: How To How do I create a new Public Folder Tree in Exchange Server 2003? When you first install Exchange Server 2003, you have a default Public Folders store that is connected to a default Public Folder hierarchy. However, you might want to create your own separate Public Folder Tree for certain uses, such as a store for Internet newsgroups or for company specific tasks. Note: To create new PF Trees on Exchange Server 2000 see Create new PF Tree on Exchange 2000. Creating a new Public Folder Tree requires three steps: Creating a new public folder tree Start the Exchange System Manager. Go to the Folders branch. Right-click the Folders, and select New, Public Folder Tree. Enter a name for the public folder root (e. g. , New PF Tree). Click OK. Creating the new public folder store Start the Exchange System Manager. Expand the Servers, Server name, First Storage Group. Right-click the First Storage Group (or another storage group if you have one) and select New, Public Store. On the General tab, enter a name. This name should match the public folder root, so, in our example you'd enter New PF Store. Under "Associate public folder tree," click Browse, and select the folder you created. Click OK. On the Database tab, the system creates default names based on the name you entered, so you can leave these. All other tabs are optional. Click OK. The system will display a dialog box to confirm the creation and ask whether you... --- ### Cisco Network Assistant (CNA) – Configure, Monitor, Troubleshoot & Maintain your Devices - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/csc_cisco_network_assistant/ - Categories: Cisco - Article Type: How To In Basics of Cisco Switch Administration - Part 1, we touched on some of the basic uses of the Cisco Network Assistant (CNA). The CNA is a feature-rich product with many uses. In this article, I’d like to focus on several of the common uses of CNA. Let’s take a look... What is Cisco Network Assistant? The Cisco Network Assistant (CNA) is a free graphical tool included when you purchase a new switch. If you don’t have CNA, you can download CNA for free if you are a registered user on the Cisco. com website. CNA is used to administer Cisco network devices. Of course, you could always go to each device directly and use the GUI web interface or command line. However, with CNA, you can go to the CNA centralized Cisco management interface and manage all your Cisco devices. To me this is the greatest benefit to using Cisco Network Assistant. CNA supports management of switches, routers, PIX 515 firewalls, IP phones, and wireless access-points. The list of supported devices can be found here. It runs on a Windows 2000 SP3 or Windows XP SP1 computer with at least 256MB of RAM. At the time of writing this article, the latest version of CNA is 4. 1. What do I need to do to use CNA? Full documentation on installing and using CNA is available by going to the CNA Getting Started Guide. To use CNA you must first download and install it. Because CNA uses HTTP to... --- ### Windows Vista Service Pack 1 is RTM - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/windows-vista-sp1-is-rtm/ - Categories: Windows Vista - Article Type: News Almost exactly one year since the first release of Windows Vista to the market in 2007, Windows Vista Service Pack 1 (SP1) was released to manufacturing (RTM) today and will start being available to customers in March, starting with Microsoft Volume Licensing customers. The first available languages for download are English, French, Spanish, German and Japanese, and more will shortly follow. Service Pack 1 is an important milestone for Microsoft because it aims to address many of the key issues that their customers have identified with Windows Vista over the last year. Although Microsoft claim that more than 100 million copies of Vista have been licensed so far, it has been clear that adaptation ratio of Windows Vista for corporate users has not been as high as Microsoft has initially expected, and by offering SP1 Microsoft hopes that many customers, waiting for the OS's first SP, will finally yield and begin to migrate their corporate workstations to Vista. Microsoft claims that major issues with Vista, such as driver and compatibility and reliability problems have been addressed in Service Pack 1, allowing the Vista computers to perform better and more reliably. SP1 also includes changes focused on improving the performance of Windows Vista in areas that impact the customer experience the most. For instance, with SP1, copying or moving files around your PC, your home network or your corporate network should now be much faster - up to 50% faster in some scenarios. In addition, on many kinds of hardware, resuming... --- ### Working with Store Policies - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/store-policies/ - Categories: Exchange Server - Article Type: Overview Working with Store System Policies in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set limits on the mailboxes of users in the Exchange Organization (read Setting Mailbox Limits for more info). Setting limits on the mailboxes help control the database size and plan for efficient backup, restore and maintenance tasks (read Calculating Storage Space in Exchange for more info). Mailbox limits can be set in 3 places via the UI, plus by using scripts to directly edit the Active Directory. However, if you have many servers with many stores on each one of them, you might find the task of manually editing each store's properties to be a bit time consuming. This is where Exchange System Policies come in handy. For example, look at the following image. It describes a simple 2-server setup, and one of the servers is shown to have quite a few Mailbox Stores: System Policies in Exchange Server 2003 are configuration objects that allow the administrator to force a store settings to Mailbox and Public Folder Stores. If you have many servers with many stores on them and you'd like to force the same setting on all stores, you can easily create Mailbox Store Policies, and have them applied to any number of stores. In order to be able to create and work with System Policies you will first need to manually create the System Policies container in ESM: Open ESM, expand your organization tree, expand Administrative Groups, and then expand the desired... --- ### Basics of Cisco Switch Administration - Part 1 > Need help configuring a switch port or seeing what MAC address is on what port? David Davis serves up some Cisco switch admin basics. - Published: 2009-01-07 - Modified: 2024-09-04 - URL: https://petri.com/csc_basics_of_cisco_switch_administration_01/ - Categories: Cisco - Article Type: Overview Need help configuring a switch port or seeing what MAC address is on what port? David Davis serves up some Cisco switch admin basics. Introduction Perhaps you are asked to configure a switch port or see what MAC address is on what port. Maybe this isn’t something you do every day and need a refresher course on the most basic Cisco switch administration tasks. Let’s find out how to perform some basic Cisco switch administration tasks. Log in Before you can administer the switch you are going to need some basic information: What is the switches IP address or DNS name? What is the username/password you can use to login? What Ethernet switch port is the device in question connected to? One option to configure the switch might be a web-based administration interface. If this is the case, basic configurations aren’t going to be that difficult and perhaps you don’t need much more help. On the other hand, GUI interfaces aren’t always available, but on Cisco IOS switches, the Cisco IOS Command Line Interface (CLI) always is. Plus, in a GUI interface, you won’t be able to configure every possible configuration as you can with the CLI. For that reason, I encourage you to use the IOS CLI. The Cisco IOS CLI will be used in this article to perform several common switch administration tasks. Showing the switch configuration Just like on a router, the most common switch IOS command is to show the switch’s configuration. This will show you the configuration for the entire switch, including all the Ethernet ports on the switch. To see switch configuration, just type show... --- ### Preventing network loops with Spanning-Tree Protocol (STP) 802.1d - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_preventing_network_loops_with_stp_8021d/ - Categories: Cisco - Article Type: Overview Preventing network loops with Spanning-Tree Protocol (STP) 802. 1d Have you ever had a loop in your LAN?  You don’t want one and neither do your users.  A loop in your LAN can bring down the whole network.  You can avoid a loop by using Spanning Tree protocol (STP).   Let’s find out what Spanning Tree is, how it works, and how it can save your day by preventing a loop on your network. What is Spanning Tree? The Spanning Tree protocol is a networking standard, as defined by the IEEE in the 802. 1d standard.  The purpose of Spanning Tree is to prevent loops in the LAN and to select the fastest network links, if there are redundant links in the network.  In the event that a link in the network goes down, Spanning Tree will failover to the alternate link, if one exists. If this sounds like what a routing protocol does then you are on the right track. Routing protocols help devices route between WAN networks (prevent loops, use alternate paths, etc) at Layer 3.   Spanning Tree could be termed a Layer 2 routing protocol for a LAN because it performs the same functions but for an Ethernet network, regardless of IP addresses.  So, Spanning Tree is not an IP routing protocol but has some similar functions for the data-link layer (Layer 2). How Spanning Tree works Spanning Tree works by first using an algorithm to find redundant links in the LAN and selecting the best paths. Its... --- ### Configuring Exchange ActiveSync Policies, Part 1 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configuring-exchange-active-sync-policies-part-1/ - Categories: Exchange Server - Article Type: How To If you have been using Exchange Server for a while, then you probably remember when Microsoft introduced ActiveSync policies in Exchange Server 2003 SP2.   The policies that were available in that version of Exchange Server were a good start, but there were a bit lacking.   For starters, you only have the option of creating a single ActiveSync policy, and that policy would apply globally to all mobile users.   Furthermore, there were only a few security settings available.   You could enforce password usage, set a device timeout period, or perform a remote wipe, but there wasn't a whole lot else. Creating a New ActiveSync Policy For the sake of demonstration, I want to start out by showing you how to create a basic ActiveSync policy in Exchange Server 2007.   After I do, I will go back and show you how to incorporate some of the new security settings into the policy, and how to assign the policy to a specific mailbox. Begin the configuration process by opening the Exchange Management Console, and navigating through the console tree to Organization Configuration | Client Access.   Next, click the New Exchange ActiveSync Mailbox Policy link, found in the Actions pane.   When you do, Exchange will launch the New Exchange ActiveSync Mailbox Policy wizard. The first thing that you have to do is to enter a name for the policy that you are creating.   You can call the policy anything that you want, but I recommend using a name that is at... --- ### Can I disable the circular logging method in Active Directory? - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/active_directory_circular_logging/ - Categories: Active Directory (AD) - Article Type: How To Actually you do NOT need to do anything... Windows 2000/2003 Active Directory uses circular logging for maintaining transactions in the database (Ntds. dit). The log files are maintained until the data they contain is committed to the database. It uses these log files to recover transactions if the database is shut down in an inconsistent state (for example, as a result of a power failure or a blue-screen error message). In Windows 2000 and Windows Server 2003, there is currently no way to disable or turn off circular logging. With Microsoft Exchange, Microsoft currently recommends that administrators turn this feature off, or never turn it on in the first place (unless the server is used as a Front end server). In Windows 2000/2003, this is not the case. There is no documented or supported way to disable this feature in Windows 2000/2003. Because of the redundancy built into Active Directory with multiple domain controllers within a given organization and domain, Windows 2000/2003 has been optimized to use circular logging. Administrators should be able to successfully recover a domain controller with a solid backup strategy and at least one replica domain controller per domain in the organization. When Windows 2000/2003 performs a database write operation, it records the transaction in a log file and shortly thereafter writes the transaction to memory. When the system has time or at system shutdown, the transactions are written to the database file. Windows 2000/2003 records the transaction in the current log file... --- ### How can I add a new RDP listening port to Windows 2000/2003 Terminal Server? - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/add_a_new_rdp_listening_port_to_terminal_server/ - Categories: Networking - Article Type: How To You cannot add a new listening port to your Terminal Server via the GUI (Terminal Server Configuration in Administrative Tools) because there is no option for changing the listening port via the GUI. What you need to do is create the new RDP listening port via the registry. Warning! This document contains instructions for editing the registry. If you make any error while editing the registry, you can potentially cause Windows to fail or be unable to boot, requiring you to reinstall Windows. Edit the registry at your own risk. Always back up the registry before making any changes. If you do not feel comfortable editing the registry, do not attempt these instructions. Instead, seek the help of a trained computer specialist. Run Regedit. exe on your Terminal Server. Navigate to the following key: ​ Export the entire key to a . REG file by selecting the key (click on it... ) and going to File > Export. Give it any name you want. Edit the . REG file you've just created and change the name of the key at the 3rd line of the file to something like: ​ Lamer Note: Do not double-click on the . REG file, instead right-click it and choose Edit. In the . REG file find ​ ​ and change it to whatever port you want. Make sure you write it in hexadecimal format. For example, for 3390 you must enter D3E (use calculator in scientific mode to easily convert decimal to hexadecimal format). Import the . REG... --- ### Add Your Own Link - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/add_your_own_link/ - Categories: Windows Server - Article Type: How To Want to add a link to your own site? As long as your site is a free, non-profit, non-pop-up-banner, IT/Microsoft related site - send me a link with a small description of the contents of your site, and if it's as good as you say - I'll add it to the list. If your site fits into a specific category that's not yet listed (that's not too hard, there are only 3 or 4 existing categories right now, duh) then make sure you tell me to what category you'd like me to add your site to. Note: Only non-commercial sites, sites that have public-free information or downloadable tools (really free, not craplike-free or *free* or "click here to subscribe and then it'll be free" crappy sites) will be listed. If you don't fit into this category (or if you say you do but I find out later that you lied to me) you will NOT be listed here and I will add your site to the banned-for-life-list of Daniel Petri, and will make sure every visitor of this site knows about it. Commercial sites: If you sell product(s) that are top-quality, if you have top-quality subscriber-only information, if your services are not public-free (again, if you're having trouble in understanding the difference between "Free" and "*Free*" then read the above paragraph) - if you have a site that fits into one of these categories and still feel that you'd like to be listed here - you will have to pay... . --- ### Automatically back up your hard drive, delete temp files, and backup a Web site using batch scripting - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/automate_backup_of_your_computer_using_batch_scripting/ - Categories: Windows Vista - Article Type: How To Batch scripting is a powerful aspect of Windows. If you are unaware, batch scripts are files that are executed by the Command Prompt. In theory, every task that you can complete in Windows using a GUI can be completed using a batch script. This tutorial is an introduction to batch scripting in Windows Vista that will show you how to automatically back up your hard drive and delete your temp files without installing extra software. Additionally, this tutorial will show you how to backup a Web site using Wget and a batch script. What is Batch Scripting? Firstly, as an introduction to batch scripting, create a sample batch file, open Notepad (Start >> All Programs >> Accessories >> Notepad) and save the file as hello. bat onto your desktop. On the first line of the file, type echo "hello" on the second line of the file type echo "the end" and resave your batch file. It should look like the following: Open a Command Prompt session (Start >> All Programs >> Accessories >> Command Prompt) and type "cd Desktop" and then "hello. bat" and your output will look like the following: When Vista executes a batch file, it executes one line at a time. Our sample file is printing "hello" and "the end" to the screen. "Echo" is a very simple command to print text to the screen. You can probably imagine that batch scripting allows for the automation of some pretty powerful tasks. Let's get to them... Note: This... --- ### Block Web Browsing with IPSec - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/block_web_browsing_with_ipsec/ - Categories: Security - Article Type: How To How can I block a Windows 2000/XP/2003 computer from surfing on the Internet? Windows 2000/XP/2003 machines have a built-in IP security mechanism called IPSec (IP Security). IPSec is a protocol that’s designed to protect individual TCP/IP packets traveling across your network by using public key encryption. In a nut shell, the source PC encapsulates the normal IP packet inside of an encrypted IPSec packet. This packet then remains encrypted until it arrives at the destination PC. This is not the place for a more detailed intro to the IPSec features, but know that besides encryption, IPSec will also let you protect and configure your server/workstation with a firewall-like mechanism. How can you block specific users from surfing the Internet with IPSec? Simply by creating a policy element that will tell the computer to block all the specific IP traffic that is configured by those rules. Internet traffic uses HTTP and HTTPS, which use TCP ports 80 and 443 respectively as their destination ports. By blocking this specific traffic you will be able to stop a specific computer from browsing the Internet. BTW, you can also Block Web Browsing but Allow Intranet Traffic with IPSec if you want. To block all Internet traffic to and from a computer you need to create an IPSec policy that will block all HTTP traffic. You can configure this policy specifically for one computer by manipulating that computers' IPSec policy, or, even better, you can configure the policy... --- ### Change the Amount of Disk Space Used by System Restore in Windows Vista - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/change_amount_of_disk_space_used_by_system_restore_in_vista/ - Categories: Windows Vista - Article Type: How To The System Restore program created restore points whenever you installed a new hotfix, service pack or even (some) applications, and you could also create restore points manually. You can read more about it in my "Using System Restore in Windows Vista" article. Note that System Restore is not intended for backing up personal files, so it cannot help you recover a personal file that has been deleted or damaged. You should regularly back up your personal files and important data using a backup program. The main issue with System Restore is that after running for a few weeks it can use a lot of your hard disk space. With the default settings turned on, System Restore might use up to 15 percent of the space on each disk. For example, if you have a 300 GB hard disk drive, System Restore might end up using 45 GB of it. That is a lot of space, especially on laptop computers where you only usually find 80 GB or 100 GB hard disks. In Windows XP allowed you to easily change the amount of space used by System Restore by adding a slider in the System Properties > System Restore tab, that you could move left or right to the desired percentage. It seems that the Windows Vista designers thought that a slider was a silly tool, and thus removed it from Windows Vista. Therefore, in order to configure the amount of space used by System Restore in Windows... --- ### Change the SMTP Banner - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_the_smtp_banner/ - Categories: Exchange Server - Article Type: How To How can I change the SMTP banner seen when connecting to my Exchange server via Telnet? MS KB articles 281224 and 836564 have more: When you use Telnet to connect to the Simple Mail Transfer Protocol (SMTP) service of a Windows 2000/2003-based server (regardless of whether it is running Exchange 2000/2003), the following banner is displayed: ​220 hostname. domain. com Microsoft ESMTP MAIL Service, Version: 5. 0. 2195. 1600 ready at Thu, 30 Nov 2000 18:09:43 -0600 Note: The SMTP banner has another function. Read Remote Version Checking through SMTP/POP3/IMAP4. Note: You may also want to Change the IMAP4 Banner, Change the POP3 Banner or Change the Telnet Banner. Method #1 To change the response that appears when you connect to an SMTP virtual server, follow these steps: Click Start, and then click Run. In the Open box, type CMD, and then click OK. Change to the Adminscripts directory. The Adminscripts directory is located in the following location: Drive:\Inetpub\Adminscripts Type the following line, and then press Enter: ​cscript adsutil. vbs set smtpsvc/vsi number/connectresponse "Your Text" In this line, vsinumber is the number of the SMTP virtual server (usually 1, in some cases it could be higher, see your ESM for more details), and Your Text is the text that you want to appear instead of the default response. To complete this procedure, stop and then restart the SMTP service. You can do so from the Services snap-in or by using the net stop / net start commands. Close the CMD window. Method #2... --- ### Key difference between ISA Server 2004 and ISA Server 2006 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/compare-isa-server-2004-and-2006/ - Categories: Networking - Article Type: Overview ISA Server 2000 was Microsoft’s first attempt at a commercial and full-featured Firewall + Proxy server product, offering features not found in its predecessor, Proxy Server 2. 0, nor in most of the third party commercial firewall products at that time and in its price class. A few years later, and after several Service Packs and updates, Microsoft released ISA 2004. It was the first major overhaul of ISA Server since its introduction in 2000, and had attempted to close the gap and missing features that were lacking in the original product. ISA added improvements in these key areas: Better and more advanced protection Ease of use and a (very, very needed) improved management interface High performance Better network integration Next came Microsoft ISA 2006, which included all the ISA 2004 SP2 features and capabilities, plus a bunch of new features missing from its predecessor. Many times I get questions from my students, asking me to describe the benefits of ISA 2006 when compared to ISA 2004. You see, Microsoft has developed an official MOC (MOC stands for Microsoft Official Curriculum) for ISA 2004, but for some mysterious reason unknown to us, have neglected to develop a similar MOC for ISA 2006. Furthermore, many ISA firewall admins who are currently running ISA Server 2000 or 2004 will want to know why they should upgrade to ISA Server 2006. Here is a list of some of the new key features available in ISA Server 2006: Share Point Portal Server... --- ### How can I configure Intelligent Message Filter in Exchange 2003 SP2? - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/configure_imf_in_exchange_2003_sp2/ - Categories: Exchange Server - Article Type: How To Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users. You can read more about IMF on the  page. How it works? When an external user sends e-mail messages to an Exchange server with Intelligent Message Filter enabled, IMF evaluates the textual content of the messages and assigns the message a rating based on the probability that the message is UCE or spam. All incoming messages are marked with a Spam Confidence Level (or SCL) rating, regardless of the rating threshold you set. This rating is saved with the other message properties and these properties are sent with the message to other Exchange servers (you might want to read Archiving the SCL Rating in Intelligent Message Filter). In Gateway Blocking Configuration, select the rating in Block messages with an SCL rating greater than or equal to above which Intelligent Message Filter takes action on this message. If a message has a rating higher than the gateway threshold, IMF takes the action specified. If the message has a rating below the gateway threshold, the message is sent to the Exchange mailbox store of the recipient. At the Exchange mailbox store, if the message has a higher rating than the mailbox store threshold, the mailbox store delivers the message to the user's Junk E-mail folder rather than to the Inbox. Intelligent Message Filter does not need to be installed on Exchange mailbox servers. If Intelligent... --- ### Configuring ICS on Windows XP - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/configuring_ics_on_windows_xp/ - Categories: Networking - Article Type: How To This is a step by step setup of how you get Windows XP to use Internet Connection Sharing or ICS. These instructions assume that when you have a Cable Modem connection or an ADSL connection (frankly, it can also be a simple Dial-Up modem connection, but that won't get you anywhere, would it? ). Let's say you have the following LAN configuration: Internet       |       |       |       | 212. 143. 143. 12     (Real IP from ISP)    PRO1                  (This will be the ICS computer) 192. 168. 0. 1    (Bogus IP - Configured by ICS)       |       |       |       | Switching Hub---------PRO2       |                   192. 168. 0. 2  (Bogus IP - Configured by ICS)       |       |       |       | 192. 168. 0. 3    (Bogus IP - Configured by ICS)    PRO3 Instead of a hub you could use a crossover cable to the other computer but then you will only be able to connect 2 computers, and if you'd want more you'd need more NICs. Step 1: Configure Internet Connection Sharing Right click "My Network Places" and select "Properties". In this window you should see an icon for "Local Area Connection" and "Local Area Connection 2" for both of your NIC's. Right click on the Network Area Connection icon that connects to your Cable or ADSL modem, and select "Properties" from the drop down window.   If you're using a modem to connect to the Internet (just like in the previous screenshot) you must right click the icon that represents the connection... --- ### Create New Top-Level Public Folders in Exchange 2000/2003 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/create_new_top-level_public_folders_in_exchange_2000_2003/ - Categories: Exchange Server - Article Type: How To How can I create new Top-Level Public Folders in Exchange 2000/2003? Public folders can be administered and created using the 32-bit Exchange clients such as Exchange and Outlook, but also by using other tools such as Windows Explorer etc. To create a Top-Level Public Folder via Outlook perform the following: Start the Outlook client Expand "Public Folders" and double click on "All Public Folders" From the File menu select New - Folder Note: In Outlook 2003 the same process looks like this: In the dialog enter a name and click OK Note: In Outlook 2003 the process looks like this: To create other non-top-level folders just select the folder that you wish to be the parent and select New - Folder from the File menu. You will then be able to name the sub-folder as with above. You can also drag any folder from your own Mailbox or from another top-level PF to the PF list. To create a new Public Folder from within Windows Explorer do the following: On your Exchange server open Windows Explorer and go to your M: drive. Drill down to the Public Folder store. Right click it and choose New. Give it any name you want. Note: To perform some client-side security settings you'll have to return to Outlook and change the settings from there. Exchange 2003 note: Exchange Server 2003 does not expose drive M: by default. In order to access Alternate PF Trees via EXIFS in... --- ### Convert an IP Address from Decimal to Binary Form - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/csc_convert_ip_address_from_decimal_to_binary/ - Categories: Cisco - Article Type: How To Decimal to binary conversion is an important task to understand in IP addressing and Subnetting. IP addressing is a core functionality of networking today. The knowledge of how to assign an IP address, or determine the network or host ID via a subnet, is vital to any good network engineer. Having a good, solid understanding of the simple things makes more complex tasks easier. Here are steps on how to convert a decimal IP address to its binary form, without memorization. The first, and probably most important step, is to put down this row of values: 128 64 32 16 8 4 2 1 In order to remember these values start with the number 1, go from right to left, and double that number seven times. For example, start with 1 on the right side. For your next number, double the 1 (1 x 2 = 2). So, 2 is your next number (remembering to go from right to left). For your third number, double the 2 (2 x 2 = 4); to continue the sequence, double the 4 (4 x 2 = 8). Repeat this process until you’ve doubled your original number, seven times. The key to this is that every single one of the values we put in that row are going to have either number 1 or number 0 assigned to it. To convert the IP address we will take that string of numbers and start from left to right this time. For each... --- ### Windows Vista Windows Remote Assistance - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/windows-vista-windows-remote-assistance/ - Categories: Windows Vista - Article Type: Overview Windows Remote Assistance is a built-in tool that allows users to connect remotely and control the guest operating system. Windows Remote Assistance is a very useful tool for providing remote assistance when users need help. The tool is similar to VNC and NetOp. Windows Remote Assistance is an excellent way for network administrators to remotely help frustrated users. Windows Remote Assistance sessions require password authentication. In addition, Windows Remote Assistance sessions are secured and encrypted. You can launch Windows Remote Assistance by clicking the Start menu and typing Windows Remote Assistance and clicking Enter. Windows Vista will automatically launch Windows Remote Assistance. Click Invite someone you trust to help you. You can invite a guest to connect through instant messaging or through email. For the purpose of this tutorial, click Use email to send an invitation. Please note at the bottom of the Windows Remote Assistance dialog whether Windows Firewall is blocking Windows Remote Assistance. In order to unblock Remote Assistance, click the Start button and type Firewall and choose Windows Firewall. In the left panel, select Allow a program through Windows Firewall. If you are prompted for an administrator password or confirmation, type the password or provide confirmation. Click the Exceptions tab. Scroll down to Remote Assistance and select the box to the left of Remote Assistance and click OK. As previously mentioned, you must setup a password for your guest user. Please note that the password will not be included in the email invitation. You... --- ### Working with Wireless GPO Settings from XP SP2 - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/working_with_wireless_gpo_settings_from_xp_sp2/ - Categories: Networking - Article Type: Overview I found this nice blog by Darren Mar-Elia regarding an issue with editing wireless GPO settings from a Windows XP SP2 machine. I thought it was interesting enough to share, so here is my interpretation of it. If you may recall, Windows Server 2003 has added quite a few good GPO settings, some of which only work on Windows XP and above, and some require XP SP2 and above. One of the nicest security settings is the ability to create a wireless settings GPO that will require your client computers to connect only to a predefined set of wireless networks, and to require various security settings such as the type of wireless network access, level of encryption, method of authentication and more. When creating and editing these wireless GPO settings you need to first have a Windows Server 2003 Domain. This is because of various additions to the AD Schema that the first Windows Server 2003 DC introduces (read Windows 2003 ADPrep). It uses the msieee80211-Policy class that was added in the 2003 AD schema to store the policy settings. After you have a Windows Server 2003 Domain in place, you will need to create a new GPO or edit an existing GPO and add the wireless settings to it. Read Creating Wireless GPO Setting for more info. Editing this new GPO from one of your Windows Server 2003 DCs is fine, but some of you might want to perform the editing and management of the Wireless... --- ### Basics of Cisco Switch Administration - Part 2 - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_basics_of_cisco_switch_administration_02/ - Categories: Cisco - Article Type: Overview Introduction In Basics of Cisco Switch Administration - Part 1, we covered some of the basics of Cisco switch administration – how to log in, how to show configuration, how to change interface speed & duplex, how to enable switch ports, and how to show switch port status. In Part 2, we will stick to the basics of switch administration by covering how to save your configuration, how to use the Cisco Network Assistant, how to speed up switch port startup, and basic VLAN commands. How to save your switch configuration In Part 1 of this series, we talked about how to enable/disable ports and how to change speed & duplex settings. Those are necessary administrator functions but, when you are done, you must save your configuration. Cisco switches will not automatically save your changes. If you make these changes and the switch looses power, those changes are gone. You must save your changes when you are done. The minimum that is required is to save your changes to the local switch NVRAM. There are two ways to do this, let me demonstrate: The textbook method of savings your configuration is: Switch# copy running-config startup-config However, a legacy command that is short and sweet is: Switch# wr Both of these commands save your running configuration in RAM to the file NVRAM:startup-config. When the switch is powered off, the running-config is lost. The startup-config is read when the switch boots and the running-config is created. I also highly... --- ### Reset Administrator Password On A Cisco Router With SNMP - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/csc_reset_admin_password_with_cisco_snmp/ - Categories: Cisco - Article Type: How To Recently, a fellow Cisco administrator told me about a tool he had used to reset a password on a router. He had forgotten the line vty password and the enable password. He could not log in to the router. He did, however, know the SNMP Read/Write password. Using a freeware tool dubbed “Cisco SNMP Tool” he was able to reset the passwords on the router so he could log in. He found that, without knowing the admin passwords, he could even upload and download the start and running configuration files. Amazingly, he could even reboot the router. In this article, we will review the Cisco SNMP Tool and provide an example of how it works. What Is SNMP? SNMP is a standard protocol for managing and monitoring network devices. SNMP works by having an agent run on a SNMP device, and having a SNMP manager run on a workstation or server. In our case, a Cisco IOS router will be the SNMP device. A Windows workstation with PRTG will be our SNMP manager. SNMP is a standard defined by the IETF and is based on a number of RFC’s. Usually, the agent uses UDP port 161 and the manager uses UDP port 162. There are 3 versions of SNMP. There are so many different types of SNMP managers available and they are all created to perform different functions. For example, some programs like Whatsup can alert you when a server is low on disk space, or when... --- ### Lightweight Directory Services Setup and Overview > Brian Posey shows a real world example of AD LDS setup in this two part Lightweight Directory Services overview. - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/lightweight-directory-services-setup/ - Categories: Exchange Server - Tags: AD LDS - Article Type: Overview The Light Weight Directory Services, or AD LDS, has been around in one form or another for quite a few years now. In Windows Server 2003, this service was called the Active Directory Application partition, or ADAM. Being that the service’s new name is the Lightweight Directory Service, I hate to describe the service as a lightweight version of the Active Directory, but that’s really what it is. The basic idea behind this service is that sometimes you may need to provide an application with Active Directory data or with a way of storing application data in the Active Directory database. In many cases though, providing the application with access to a domain controller may be impossible because of connectivity issues. More often though, security concerns may prevent you from making a domain controller available to the application in question. A Real World Example OK, I realize that my description of the AD LDS is a bit abstract, but I want to try to clear things up by explaining one example of how AD LDS is commonly used in the real world. Microsoft makes use of AD LDS in Exchange Server 2007. In case you are not familiar with Exchange 2007, it is Microsoft’s E-mail server product. Exchange Server 2007 is designed to be run in a distributed manner, and you can configure each individual Exchange Server to perform specific roles. One of these roles is called the Edge Transport Server role. The edge transport server sits... --- ### Active Directory Cleanup Wizard Usage - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/active_directory_cleanup_wizard_usage/ - Categories: Exchange Server - Article Type: How To In Exchange 2000/2003, what is the Active Directory Cleanup Wizard and what is it good for? MSKB 270652 has the following information: The Active Directory Account Cleanup Wizard is a utility designed to merge duplicate Microsoft Windows NT accounts that are created when multiple directories are migrated or upgraded to Active Directory. The Active Directory Account Cleanup Wizard searches Active Directory for duplicate Windows NT accounts, and then suggests merge operations that eliminate the duplicates. You can also verify the individual merge operations. Finally, the wizard merges various account types, their attributes, and their properties into a single user account. Removing duplicate accounts in Windows 2000 Active Directory can help improve performance of your Exchange 2000 servers. The Active Directory Account Cleanup Wizard allows you to: Identify duplicate objects to be merged. You can have the wizard search Active Directory for possible duplicate Windows NT accounts, or you can manually select the duplicate accounts that you want to merge. Review and modify merge operations that the wizard has selected to perform before you merge the duplicate accounts. Export and import lists of accounts. This functionality gives you the flexibility to export a list of merge operations (pairs of duplicate accounts) into a . CSV file so you can import them back to the Active Directory Account Cleanup Wizard for further review. Then at a later time, you can run the merge process. Use command-line options to run the wizard. For additional information about command-line options, click the article number below to... --- ### Add Additional Attributes to the User Objects - Published: 2009-01-07 - Modified: 2022-09-26 - URL: https://petri.com/add_additional_attributes_to_user_objects/ - Categories: Active Directory (AD) - Article Type: How To How can I add additional attributes to the users objects in Active Directory? Windows 2000 and Windows Server 2003 Active Directory allows you to edit the Schema and add additional attributes to it. These attributes can be easily connected to existing Object Classes such as users, groups, computers and so on. Adding items to the Schema, also called "extending the Schema", or even modifying existing objects can be a tricky business, and if done without proper knowledge, can be very destructive to your existing Active Directory infrastructure. This is because the Schema is a forest-wide setting, and any additions or changes to the Schema will be immediately replicated to each and every Domain Controller in each and every domain in your AD Forest. You cannot make any changes to the Schema and yet keep it within your domain's boundaries. Furthermore, changing existing attributes (such as configuring an attribute to replicate itself to the Global Catalog) will cause a forest-wide replication of all the attributes and objects, even if your change was just made on one attribute. Note that this behavior was changed in Windows Server 2003, but even so, you might unintentionally cause a major network load and a lot of overhead by simply clicking one one small checkbox on one small attribute. Many articles talk about adding items and extending the Schema. However on this article I wish to show you a simple method of adding attributes to the Schema, and by... --- ### Adding Network Support to Virtual Servers - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/adding-network-support-to-virtual-servers/ - Categories: Virtualization - Article Type: How To A couple of months ago, I wrote a series of articles on Hyper Visor (more commonly known as Hyper-V), the new server virtualization component for Windows Server 2008. Since that time, I have gotten a several E-mail messages from people wondering why they can’t access their network from a virtual server. In this article, I will attempt to shed some light on the subject. Assign a Network Adapter The first step in making sure that a virtual server can access your network is to assign a physical network adapter to the virtual server. Ideally, your physical server should have enough network adapters installed that each virtual server can have a dedicated network adapter, but this isn’t a requirement. Virtual servers can share a network adapter with each other, and even with the host operating system if necessary. With that said, open the Hyper-V Manager by selecting the Hyper-V Manager command from the server’s Administrative Tools menu. When the console opens, select the virtual machine that you want to add network support to, and then click the Settings link found on the Action pane. You should now see a screen that allows you to adjust the various settings for the virtual server. Choose the Network Adapter option, as shown in Figure A, and then assign a physical network adapter for the virtual machine to use. As you can see in the figure, you also have the option of specifying a MAC address and a... --- ### Automatic Completion with a Command Prompt - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/automatic_completion_with_a_command_prompt/ - Categories: Windows Client OS - Article Type: Overview Can I use Automatic Completion with a Command Prompt in Windows 2000/XP/2003? Yes. This article describes how to configure Windows 2000/XP/2003 to complete file and folder names automatically that you type at a command prompt. This feature works by typing a control character that invokes the feature. For example, to change to the Program Files folder, you can type cd pro . Or, to display the contents of the Myfile. txt file, you can type type myf . If there are multiple folders or files that match the characters you type, typing the control character again displays the next matching instance. When the correct folder or file is displayed, press ENTER to complete the command. If no folder of file matches the characters that you type, you hear a beep. You can activate or deactivate this feature for a computer, for a user, or for only the current command session. To Activate Automatic Completion in the Current Session To activate automatic completion for the current command session, type cmd /f. Then type CTRL+D to complete a folder name or CTRL+F to complete a file name. To deactivate automatic complete, type cmd /f:off. If you enable file and directory name completion by using /f:on, use CTRL+D for directory name completion and CTRL+F for file name completion. When you press CTRL+D or CTRL+F, cmd processes file and directory name completion. These key combination functions append a wildcard character to string (that is, if one is not present), build a list of paths that... --- ### Change BSOD Color to a Different Color - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/change_bsod_color/ - Categories: Windows Client OS - Article Type: How To Can I change the Blue Screen of Death (BSOD) color to something other than blue? You sure can! In Windows 2000/XP/2003, each time the Windows Kernel crashes, a blue screen appears, giving the administrator some clues and information as to what has caused the error. This screen, because of its blue color and catastrophic nature, was nicknamed BSOD - Blue Screen Of Death. Why blue - no one knows, but what I do know is the fact that the blue screen can be changed to a different color, thus creating your own YSOD or RSOD or even WSOD... To do so follow these steps: Open the SYSTEM. INI file found in the %systemroot% folder (i. e. C:'Windows or other). You can easily open the file by running SYSEDIT from the Run command, or by using Notepad. exe. Locate the section in the file: If not already present, create the following new entries: MessageBackColor= MessageTextColor= and give it a value according to the following list: 0 = black 1 = blue 2 = green 3 = cyan 4 = red 5 = magenta 6 = yellow/brown 7 = white 8 = gray 9 = bright blue A = bright green B = bright cyan C = bright red D = bright magenta E = bright yellow F = bright white For example: MessageBackColor=2 MessageTextColor=F will change the BSOD to Green with bright white text. Note: Use CAPITAL LETTERS, i. e. F and not f. Close SYSTEM. INI... --- ### Change the Telnet Banner - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_the_telnet_banner/ - Categories: Windows Server 2003 - Article Type: How To How can I change the Telnet banner seen when connecting to my Windows Server 2003 server via Telnet? MS KB article 245095 has more: When you use Telnet to connect to the a Windows 2000/2003-based server the following banner is displayed: ​*========================================================== Welcome to Microsoft Telnet Server. *========================================================== C:'Documents and Settings'Administrator> You can change your Telnet server to display a banner and run programs upon logon for all users by modifying the Login. cmd file. You can modify this file to run other programs (such as a different shell). The commands in the Login. cmd file are run for all users. Note: You may also want to Change the IMAP4 Banner, Change the SMTP Banner or Change the POP3 Banner. To change the prompt in the Telnet banner, follow these steps: Use any text editor (such as Notepad - see Free Notepad Replacements) to open the %SystemRoot%'System32'Login. cmd file. Modify the Telnet server banner or add the path and name of the program you want to run upon logon. For example, you could change ​echo Welcome to Microsoft Telnet Server to: ​echo Welcome to Devine Telnet Server on Server: %computername% You could also add the following line at the end of the file to change the command prompt to reflect the name of the server in your Telnet session: ​prompt %computername%: $P$G Save the file, and then quit Notepad. ​*========================================================== Welcome to Devine Telnet Server on Server: ZEUS *========================================================== ZEUS: C:'Documents and Settings'Administrator> Related articles You might also want to... --- ### Configure Instant Messaging in Exchange 2000 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_instant_messaging_in_e2k/ - Categories: Exchange Server - Article Type: How To How to install and configure Instant Messaging on Exchange 2000? Step #1: Installing the IM service If you didn't do so already, you must first install the IM service on the E2K server. Do so by running the E2K setup. When you get to the "Component Selection" page make sure you see a "V" on the "Microsoft Exchange Instant Messaging Service" line. Note: IM is not supported on Exchange Server 2003. You will need to uninstall it from your server if you ever decide to upgrade.   If you don't see one, on the "Microsoft Exchange 2000" line click the little black arrow and select "Change".   Now go to the "Microsoft Exchange Instant Messaging Service" line and change it's status to "Install".   Click Next and choose "I Agree" (if you indeed do agree... ), now review your settings. Click Next to start the installation process. When it finishes click Finish.   Check to see it the service is indeed installed. Go to the Microsoft Exchange System Manager console, drill down to your server name, open the Protocols container and see if you have an "Instant Messaging" sub-container. If you do, proceed with this guide. If you don't, go back and make sure you've installed it correctly.   Right-click the "Instant Messaging (RVP)" sub-container and choose New > "Instant Messaging Virtual Server... "   In the Welcome to the Virtual Server Wizard page click Next. In the Enter Display Name page enter the name you want to identify your server by... . --- ### How can I configure RPC over HTTP/S on Exchange 2003 (single server scenario)? - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/how-can-i-configure-rpc-over-https-on-exchange-2003-single-server-scenario/ - Categories: Exchange Server - Article Type: How To RPC over HTTP/S is a cool method for connecting your Outlook 2003 client to the corporate Exchange Server 2003 from the Internet or WAN, without the need to establish a VPN session to the corporate LAN and/or needing to open many ports on your corporate firewall. The only ports you'll need to open on your firewall are TCP 80 and, if using SSL, TCP 443. Note: This procedure is not required on SBS and that SBS fully configures Exchange for RPC over HTTPS and also provides instructions to connect an Outlook client on the 'Configure Outlook over the internet' link on RWW https://sbs/remote. Note: While RPC over HTTP does not require SSL, you must modify the registry to enable RPC over HTTP if you do not want to use SSL. This is why I've used the term "RPC over HTTP/S" in this set of articles. Basically, there are 2 configurations possible when configuring RPC over HTTP/S: Multiple servers - In this scenario, you have multiple servers in your organization. These servers are configured to function as Domain Controllers, Global Catalog servers, Exchange front-end servers, Exchange back-end servers, and RPC proxy servers. See Exchange Server 2003 RPC over HTTP Deployment Scenarios Single server - In this scenario, you have only one server that is configured to function as a Domain Controller, a Global Catalog, an Exchange computer, and an RPC proxy server. This article discusses the single-server configuration in detail. MS KB 833401 has more info, but as... --- ### Configuring IPSec Policies through GPO - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configuring_ipsec_policies_through_gpo/ - Categories: Security - Article Type: How To How can I configure an IPSec Policy through GPO? As written in previous articles (see related articles at bottom of page), Windows 2000/XP/2003 machines have a built-in IP security mechanism called IPSec (IP Security). IPSec is a protocol that’s designed to protect individual TCP/IP packets traveling across your network by using public key encryption. Besides encryption, IPSec will also let you protect and configure your server/workstation with a firewall-like mechanism. When working on one single computer you can easily set up and assign IPSec Policies either from the Command Prompt by using the NETSH command, or from an MMC console that's loaded with the IP Security snap-in. However when working with more than one computer, one might need a better way than going through each computer and re-configuring the IPSec Policy. We need a method in which we can use the same IPSec Policy on multiple computers, or at least have the same policy set up on a number of computers. One method of configuring many computers to use the same IPSec Policy is to perform Exporting and Importing IPSec Policies. However in this article we will use the second method - use of Active Directory Group Policy Objects (or GPOs). Important: Several features in the Windows Server 2003 family implementation of IPSec are not provided in Windows 2000 or in Windows XP. To ensure that the same IPSec policy functions as expected on computers running the Windows Server 2003 family and on computers running Windows 2000 or... --- ### Create Quick Launch Shortcuts to Lock, Restart, and Shutdown Computer - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/create_quick_launch_shortcuts_lock_computer_restart_shutdown/ - Categories: Windows Vista - Article Type: How To Windows Vista automatically assigns shortcuts to the quick launch toolbar. You can quickly create shortcuts to shutdown, restart, and lock the screen, and add them to the quick launch toolbar to have instant access to them. For example, the first shortcut in your quick launch toolbar is automatically assigned to WINDOWS + 1, and the second shortcut is automatically assigned WINDOWS + 2, and so on. Lock Screen Quick Launch Shortcut Before you can create a shortcut to lock the screen, you must add a new shortcut to the desktop. Do this by right-clicking on the desktop and choose New and then Shortcut. In the Create Shortcut dialog, add rundll32. exe user32. dll,LockWorkStation and click Next. Change the name of the shortcut to Lock Screen and click Finish. After you create the shortcut, drag it into the quick launch panel. You will notice that the icon looks like a plain document. In order to choose a more recognizable icon, right click the Lock Screen shortcut and choose properties and then click Change Icon... Navigate to %SystemRoot%'system32'imageres. dll, choose a more appeasing icon and click Ok. Your shortcut will be much more recognizable. Also, remember that Vista will automatically assign your icon a shortcut. If your icon is third in the list (as it is in the image below) the keystroke WINDOWS + 3 will lock the screen. Restart Quick Launch Shortcut You can repeat this exact process to create shortcuts to restart and shutdown. In order... --- ### What is IP Subnet Zero? - Cisco Articles & Tips - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/csc_ip_subnet_zero/ - Categories: Cisco - Article Type: Overview I am sure you have used the Cisco IOS command show running-config before, and noticed a peculiar default command in the configuration. The command I am talking about is ip subnet-zero. Here is what I am talking about: But what is this command? Why is it there? Let’s find out. What is a zero subnet in the first place? Before we talk about the command, let’s ask ourselves, “In the first place, what is a zero subnet? ” Under old IP subnetting rules, the all 0’s subnet was reserved for the network, and the all 1’s subnet was reserved for the broadcast. Over time, engineers found that the all 0’s subnet wasn’t really used and, if it could be handed out as a useable network, many IP addresses could be changed. An example of an IP address that is using a zero subnet is 10. 1. 0. 1 with a subnet mask of 255. 255. 255. 0. This IP address may look pretty weird to you. Some people may even try to argue that it is an invalid IP address because there is a 0 in third octet. However, today, this IP address is perfectly legal when it comes to subnetting. Thus, if I had an IP address of 10. 1. 0. 0 with a 255. 255. 0. 0 subnet mask and wanted to subnet it, I could actually get 255 valid networks out of it by using the 0 subnet. In other words, I could have networks ranging from 10. 1. {0-254}. X where the X represents hosts 1-254. This gives me... --- ### What are the editions of Windows Vista? - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/windows_vista_editions/ - Categories: Windows Vista - Article Type: Overview What are the editions of Windows Vista? Microsoft, learning from their experience in Windows XP, have created different versions of Windows Vista for different lifestyles. Within the editions of Windows Vista, Microsoft have separated them into two sets: “Home” and “Business”. Windows Vista Ultimate Windows Vista Ultimate is the most comprehensive edition of Windows Vista. It is the first operating system that combines all of the advanced infrastructure features of a business-focused operating system, all of the management and efficiency features of a mobility-focused operating system, and all of the digital entertainment features of a consumer-focused operating system. Windows Vista Ultimate delivers all of the features available to both business users and home users. It is the ideal solution for a small-business owner who wants a single PC that he or she can use at the office, on the road, and at home. It is also the ideal solution for someone who wants a home PC that will be used primarily for entertainment purposes but that can also be used for business purposes such as connecting to a corporate network. Windows Vista Ultimate delivers all of the entertainment features available in Windows Vista Home Premium. It includes everything you need to enjoy the latest in digital photography, music, movies, analog TV, or even HDTV. Windows Vista Ultimate has great tools such as Windows Photo Gallery and Windows Movie Maker to ensure that you have everything you need to collect, manage, and edit your digital content. It also includes... --- ### Windows Update - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/wu/ - Categories: Patches and Service Packs - Article Type: Overview Windows Update & Windows Update Catalog As always, check the Windows Update site for a good reference on what you're missing (the site does not always display the latest info, but it's better that nothing). The Microsoft Windows Update site (also known as WU) is a site made for Windows 2000, Windows XP and Windows Server 2003 (this link does NOT support Win9X, ME or NT 4. 0). Once you're there, you can scan your computer for any missing or new updates, and download them to your computer. Note: Download whatever you want from Windows Update, but never, never, never ever download and install any driver from that site! Drivers supplied through Windows Update are either old and obsolete or are simply the wrong version of driver for your hardware. There have been too many reports of drivers from WU causing problems, especially with XP users. This is a known fact. If you think you need a driver update try to go to the hardware's manufacturer's site instead (just because YOU haven't had a problem doesn't mean that others haven't. Maybe it's an urban legend, maybe not, but I will stick to vendor websites rather than WU for my driver updates. ) Windows Update Catalog If you ever need to re-apply a patch, or if you want to install the patches on multiple computers - this might be a problem, because after downloading all the updates, Windows Update installs them right away and then erases the downloaded files from your computer. To... --- ### Configuring Dynamic DNS (DDNS) in the Cisco IOS - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/csc_configuring_dynamic_dns_in_cisco_ios/ - Categories: Cisco - Article Type: How To Would you like to host a web server or e-mail server on your Internet connection, but don’t want to pay for a static IP address? Dynamic DNS (DDNS) is here to allow you to host that website while still using a dynamic IP address. Previously, this was only available as an executable computer program, or was offered on some small home routers. However, with IOS version 12. 4 (and some versions of 12. 3), DDNS is now available in the Cisco IOS. What can DDNS do for me? The problem with hosting a web server, or email server, on an Internet link that has a dynamic IP address is that your IP address could change. For example, you might register your website as www. mywebsite. com and point it to IP address 20. 20. 20. 20. Later, your IP address could change to 30. 30. 30. 30 and all the users trying to get to your website suddenly cannot connect. You would then have to update your DNS record and that change could take a couple of days to propagate to all Internet DNS servers. The result is some serious downtime for your server. DDNS solves this issue by monitoring your IP address and, if it changes, that change is immediately reported to your DNS provider. This DNS provider is the only host of that domain and, thus, the DNS record is instantly updated when your IP address changes. There should be only seconds of downtime for any users trying to connect to your web or mail... --- ### Routers, Switches & Firewalls – Learn how they are different - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_routers_switches_and_firewalls/ - Categories: Cisco - Article Type: Overview If you are used to working with home networking gear you are used to an integrated device that “does it all”. On a home network, you may have one box that is a cable/DSL modem, router, firewall, switch, and wireless access point all in one. It is amazing all the functions they can fit into one box today. If you are studying Cisco networking and learning about how businesses use these devices, you may be wondering why there is so much importance on the differences between a switch, router, firewall, and other devices. If the home user can have all these devices combined into one, why doesn’t the business user do this as well? This article will attempt to answer that question AND cover the differences between theses devices. Integrated devices Just like home devices, business devices have become more and more consolidated over time but not to the extent that the home devices have. Network administrators in a business network are more comfortable having separate devices and even like the idea. This is because network administrators like to be able to isolate problems down to a certain device and they like to be able to know the performance capabilities of every device. If you use an integrated router, switch, and firewall all into one device, troubleshooting, managing, and understanding the performance capabilities of that device gets complicated. I’m not saying that this isn’t done. You can buy a big & expensive, chassis-based, Cisco 6500 series switch... --- ### Configuring the Lightweight Directory Services, Part 2 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configuring-lightweight-directory-services-part-2/ - Categories: Exchange Server - Article Type: How To In my first article in this series on creating lightweight directory services, I explained that the Lightweight Directory Service (AD LDS) had replaced Active Directory Application Mode in Windows Server 2008. I talk about some real world examples of how AD LDS is used. In this article, I want to finish off the series by showing you how to install AD LDS, and by talking about some of the differences between AD LDS and ADAM. Installing the Lightweight Directory Service The process of installing AD LDS is pretty simple. Begin by opening the Server Manager console. When the console opens, click the Roles container to go to the Roles Summary section. Now, click the Add Roles link. Windows will now launch the Add Roles Wizard. Click Next to bypass the wizard’s Welcome screen, and you will see a screen that allows you to select the roles that you want to install. Choose the Active Directory Lightweight Directory Services option, as shown in Figure A. Figure A Select the Active Directory Lightweight Directory Services option. Click Next, and you will see a screen introducing you to the AD LDS. Go ahead and click Next again, and you will see a message telling you that the server will need to be restarted once the installation process completes. Now, click the Install button, and Windows will begin copying the necessary files. When the file copy process completes, click Close. Configuring AD LDS Now that you have installed AD LDS, it... --- ### Add Administrative Tools Icon to the Desktop in XP/2003 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/add_admin_tools_icon_to_the_desktop_in_xp_2003/ - Categories: Windows Server 2003 - Article Type: How To How can I add the Administrative Tools icon to the desktop in Windows XP/2003? The administrative Tools folder is in fact a sub-folder of the Documents and SettingsAll UsersStart MenuPrograms folder, but dragging it or moving it around your computer might cause it to stop functioning. There are 2 methods of adding the Administrative Tools folder to the Quick Launch toolbar: One method is by dragging it from the Control Panel folder, and NOT from the Programs folder. The other method is by editing the registry. Follow these steps to add the Administrative Tools icon to the Windows XP/2003 desktop by editing the registry: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerDesktopNameSpace Create the following key: {D20EA4E1-3957-11d2-A40B-0C5020524153} (just copy/paste, including the brackets) Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a . REG file before performing the changes. Close Registry Editor. There is no need to reboot. Just wait a few seconds and see how the icon appears: Done! Related articles You might also want to read the following related articles: Add Command Prompt Here Shortcut to Windows Explorer Add Printers and Fax Icon to the Desktop in XP/2003 Add Scanners and Cameras Icon to the Desktop in XP Pro Add Scheduled Tasks Icon to the... --- ### Adding New Administrative Templates to a GPO - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/adding_new_administrative_templates_to_gpo/ - Categories: Active Directory (AD) - Article Type: How To How can I add a new Administrative Template to an existing (or new) GPO? In a previous article - Understanding Administrative Templates in GPO - I've described the purpose of the Administrative Templates section in the Windows 2000/XP/2003 GPO. Administrative Templates are a large repository of registry-based changes that can be found in any GPO on Windows 2000, Windows XP, and Windows Server 2003. The Administrative Templates are Unicode-formatted text files with the extension . ADM and are used to create the Administrative Templates portion of the user interface for the GPO Editor. Although Administrative Templates have virtually hundreds of options within them, there may be times when an administrator will need to add more options to a new or existing GPO. One method for an administrator to add such extensions to the GPO is by adding new settings to the Administrative Templates sections. This can be done by adding . ADM files to the existing Administrative Templates section in GPO. Adding . ADM files to the Administrative Templates in a GPO In order to add additional . ADM files to the existing Administrative Templates section in GPO please follow the next steps: 1. Open the Group Policy Management Console (or GPMC) from the Administrative Tools folder in the Stat menu, or by typing gpmc. msc in the Run command. Note: GPMC is not a built-in part of Windows 2000/XP/2003, and needs to be separately installed. You can download GPMC from the following link (Download GPMC), yet remember... --- ### Automating The Creation Of Active Directory Snapshots - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/automating-creation-active-directory-snapshots/ - Categories: Windows Server 2008 - Article Type: How To   Windows Server 2008 has a new feature allowing administrators to create snapshots of the Active Directory database for offline use. There are quite a few scenarios for using AD snapshots. For example, if someone has changes properties of AD objects and you need to revert to their previous values, you can mount a copy of a previous snapshot to an alternate port and easily export the required attributes for every object that was changed. These values can then be imported into the running instance of AD DS. You can also restore deleted objects or simply view objects for diagnostic purposes. The process of working with AD snapshots is described in detail in my "Working with Active Directory Snapshots in Windows Server 2008" and "Exporting Information from Active Directory Snapshots in Windows Server 2008" articles, and there's more info in the "Directory Service Comparison Tool" article. If you've read the above articles, you've learned that the NTDSUTIL command is nested. Therefore, you can enter the entire sequence of commands in one long line, and put that into a batch file or script, then configure that batch or script to run at a specific time by using Task Scheduler. In order to automate the creation of an Active Directory snapshot follow these steps: Create a new batch file with the following lines: @echo off ntdsutil snapshot "activate instance ntds" create quit quit exit Save the file as "ad-snapshot. bat" or similar, and place it in... --- ### Change Default Location of the i386 Folder - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_default_location_of_the_i386_folder/ - Categories: Windows Client OS - Article Type: How To How can I change the default location of the i386 folder? After installing Windows 2000 or XP, if I ever need to add a component to it (like DHCP etc. ) it always asks me for the CD, even if I copy the i386 files to my local drive. Can I fix this? Yes you sure can.    Open the registry editor and go to HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionSetup Highlight the Setup folder. On the right pane, locate the SourcePath. Double-click the SourcePath and replace the drive letter in the box to C: (if you copied the files to your C: drive). Make sure it's C: and not C:i386. Close the registry editor. If the system ever needs files from the i386 folder, it will automatically look in the C:i386 folder. You can also do the trick with Windows 2000 and XP Professional client computers that were installed from a shared folder on your network, but do not copy the i386 folder to the local drive of each computer. Instead, copy the i386 folder to a share located on a network server. Edit the registry for the Windows 2000 or XP Pro machines and make it point to the UNC path of the network server. Also, if you installed from a RIS server, keep the RIS server running. Your system is smart enough to grab the files from the RIS server when it needs extra files. This tip works for service packs too. You'll notice at the registry string from step #1 that... --- ### Configure Exchange 2007 to Receive E-Mail for other Domains - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure-exchange-2007-recieve-email-other-domains/ - Categories: Exchange Server - Article Type: How To Exchange 2007 will only accept e-mail traffic for the e-mail domain that is identical to the name of your Active Directory domain. However, in some cases, we would like to allow our Exchange server to also receive e-mail for domains other than our own, internal domain name. On my "Configure Exchange 2000/2003 to Receive E-Mail for other Domains" article. I have explained how to configure previous versions of Exchange to receive e-mail for domains other than the ones configures as their internal Active Directory domain. In Exchange 2007 things are a bit more complex since it does not natively accept ANY sort of incoming mail from the external world, therefore we need to go through some more steps to get things rolling. For example, if you have an AD domain called PETRI. LOCAL and you've installed Exchange 2007 on it, each recipient you have will automatically have an e-mail address of ALIAS@PETRI. LOCAL, and the Exchange organization will treat the PETRI. LOCAL SMTP domain name as an internal domain. To follow on the example, let's say that one day you've decided that you'd like to have an Internet presence, so you bought PETRI. CO. IL and you'd like to begin using it on your Exchange server. Luckily, you don't need to rename your AD domain for that, but you DO need to configure Exchange to receive e-mail for the new domain, along with any traffic you might have had for the old domain name. This example can also be extended to instances where... --- ### Configure Instant Messaging SRV Records - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure_instant_messaging_srv_records/ - Categories: Exchange Server - Article Type: How To How can I configure Instant Messaging SRV records on Exchange 2000? The problem When you configure IM on your network (See Configure Instant Messaging) you must configure user accounts and IM clients. Those users must log on to the IM service by using their usernames and domain names, but not as a regular e-mail address but in a different way: If the username is danielp and your domain name is dpetri. net, usually, the user's e-mail address will be danielp@dpetri. net. However, although while logging to the IM client it asks for your e-mail address, usually this will not work for the user, and instead he will have to use the following format: If the username is danielp and your domain name is dpetri. net, and the Instant Messaging server's FQDN (Fully Qualified Domain Name) is server4. dpetri. net (this server is called the IM Router), then the user's logon name to the IM service will be danielp@server4. dpetri. net, quite different than the user's regular e-mail. If you want to use the user's e-mail as the logon name you'll have to configure an SRV record in the DNS to allow all the IM clients to find their IM Routers. Note: To enable Win98 and NT clients to logon by using this scheme you'll have to install the DS Client software on them - Active Directory Client (dsclient) for Win98/NT. The solution: Configuring the SRV Record Open the DNS MMC from the Administrative Tools. Open the Forward Lookup Zone container and double-click the zone for your domain... . --- ### Configure Specific E-Mail Addresses for Specific Exchange 2000/2003 Users - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure_specific_email_addresses_for_exchange_users/ - Categories: Exchange Server - Article Type: How To How do I configure some Exchange recipients to have different e-mail addresses in Exchange 2000/2003? Exchange 2000/2003 will automatically configure e-mail addresses for your recipients, based on the name of your Active Directory domain. For example, if you have an AD domain called TEST. HOME and you've installed Exchange 2000/2003 on it, each and every mailbox enabled user, mail enabled user, mail enabled group and mail enabled contact you have will automatically have an e-mail address of ALIAS@TEST. HOME. However sometimes we would like to configure other e-mail addresses for our recipients, for domains other than our own, internal domain name. Basically, Exchange can handle hundreds of mail domains without any problem (up to about 1000 domains), so performance is usually not an issue. For example, some users might require additional e-mail addresses that will better reflect their position or role in the company (such as "support" or similar). You might also need to configure totally different e-mail addresses for other users, such as where these users work for a different subsidiary or even when you're using one server to host multiple companies and therefore require different domain names for different recipients. In all of the above examples you'll need to configure Exchange to use new (or modified) Recipient Policies to reflect the change in the e-mail domain names. However, unlike the case described in my Configure Exchange 2000/2003 to Receive E-Mail for other Domains article, you cannot modify the Default Recipient Policy, because that will cause all your... --- ### Configuring Routing in W2K Pro/XP Pro - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configuring_routing_in_w2k_pro_xp_pro/ - Categories: Networking - Article Type: How To Routing is configured on a W2K Server / Windows Server 2003 machine by use of the RRAS snap-in. However, this console is NOT available on a W2K Pro or XP Pro machine. If you have 2 small network segments populated with no more than a handful of computers per segment, you CAN use a W2K Pro / XP Pro machine as a router between these segments. First, you need to install at least 2 NICs on the machine. Now you need to configure each NIC with the appropriate IP address for the segments that it's connected to. Next, you need to configure that IP as the Default Gateway for all the computers on that NIC. For example, if you have 2 segments (we'll call them Segment A and Segment B respectively) with the following Network IDs: Segment A - 192. 168. 0. 0/24 Segment B - 192. 168. 1. 0/24 (/24 means 255. 255. 255. 0 - see my What's CIDR? page for more info) and on your computer you have 2 NICs (we'll call them NIC A and NIC B respectively) with the following IP addresses: NIC A - 192. 168. 0. 1 NIC B - 192. 168. 1. 1 Then the IP addresses of NIC A and NIC B will be the Default Gateways for segment A and B respectively. Next, you need to configure IP Routing between the segments. As I said, this feature is not configurable via any GUI in W2K Pro and XP Pro, so you'll need to edit the registry: In the... --- ### Create Setup Boot Disks for Windows XP - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/create_setup_boot_disks_for_windows_xp/ - Categories: Windows Client OS - Article Type: How To How can I create the Setup Boot floppies for Windows XP Pro/Home? Windows XP Setup boot disks are available only by download from Microsoft. The Setup boot disks are available so that you can run Setup on computers that do not support a bootable CD-ROM.   If your computer does support booting from a CD-ROM, or if network-based installation is available, Microsoft recommends that you use those installations methods instead. Future products will no longer support installation via the setup boot disks. Installation of future Microsoft Operating Systems will require the ability to boot from the CD or PXE boot from Network. Setup boot disks that are provided for Windows XP are provided and supported on an as is basis. The MAKEBOOT or MAKEBT32 tool we used on W2K isn't here anymore. Use these links to create the sets. For the PRO edition (SP1 version, 4. 29mb) For the Home edition (SP1 version, 4. 4mb)   You can't use XP Home Edition boot disks with XP Pro or vice-versa, and you can use boot disks only for new installations, not to initiate an upgrade. There are six Windows XP Setup boot floppy disks. These disks contain the files and drivers that are required to access the CD-ROM drive and begin the Setup process. Creating the Setup Disks When you download the Setup disks, the download contains only one large program file. When you run the downloaded file, it extracts the files. You receive the following prompt: This program creates the Setup boot disks... --- ### Customize Windows Vista in Two Clicks - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/customize-windows-vista-in-two-clicks/ - Categories: Windows Vista - Article Type: How To If you recall, back in the times of Windows 95/98, Windows 2000 Workstation and even Windows XP, many tools were available, some for free, some for a fee, that allowed the more advanced user to make changes to their computer's operating system. These changes were (and still are) called "Tweaks". Many of these tools had a hidden, darker and sinister agenda. Some claim to do one thing, while, in fact, perform a totally different action on your computer. Some claim to be able to tweak your computer, modem, wireless connection or Internet speed up to hundreds of times, some claim to clean your computer from obnoxious programs. Both types usually do the opposite, and either install spyware, porn or casino traps, back-doors, Trojan horses or even viruses on your computer. Then, when you notice your computer stops working as it had in the past, they "come to the rescue" and offer to clean your computer after you pay them money. So what does this have to do with Vista you may ask. Well, Windows Vista, Microsoft's latest operating system, is one of those operating systems that you either like, as is, or hate. However, some changes can be made to the way Vista works in order to make it more usable for your needs, and in some way, reduce the many "issues" it has. Although Vista is a nice operating system, and although it has many interesting features and capabilities, in my opinion, one of the challenges... --- ### An Introduction to Windows Vista Sync Center - Sync files between your laptop and desktop - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/windows_vista_sync_center/ - Categories: Windows Vista - Article Type: Overview If you consistently use a desktop computer in the office and a laptop while traveling, being able to accurately sync the many versions of your files is important. Windows Vista has a built-in tool called the Sync Center to help you with this task. Sync Center is a file management system that will keep your files in sync between a primary computer and your mobile equipment. Sync Center automatically determines the latest version of your files and overwrites older versions with the newest version. Sync Center communicates with shared folders on a central server and downloads the latest version of the files to your local equipment. Sync Center can be used with portable music players, portable video players, mobile phones, mobile computing devices, PDAs, and many other types of hand held devices. In order to use the Sync Center, you must have a shared directory that you would like to sync. Navigate to a shared folder, right-click the directory and choose Always available offline.   It will take Windows Vista a few minutes to ensure that all the shared files are available offline.   To start Sync Center click Start and type Sync Center and hit enter.   Click Set up new sync partnerships in the left panel. You will now see the folder you made available offline. You can manually Sync all the files in the folder by clicking Sync. In order to automate this process so that you do not have to manually sync your... --- ### Configuring Router Interface Descriptions on a Cisco Router - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/csc_configuring_router_interface_descriptions_on_a_cisco_router/ - Categories: Cisco - Article Type: How To If someone were to look at your router’s configuration, could they understand what the real purpose of the network connections were, who they connect to, and what to do if the interface is down? If you answered no, then you need to look at using router interface descriptions. What is a router interface description? Router interface descriptions are description commands that network administrators configure on each interface of a router. With these commands, the administrator can enter whatever pertinent information he wants to, about that interface. This can be very useful for the original administrator that configured the interface. Or this can be valuable to any other administrator that has to try to troubleshoot or reconfigure the interface later. For example, you could put the following command on your router’s interface: description T1 circuit to Internet – Sprint Circuit ID QVX. 123. 098. 765. DAX – Tech Support 800-555-1234 By using this command, I have described what the circuit’s purpose was, the Circuit ID, the provider, and the tech support phone number. By doing this, the next time I look at the router, I have all the important troubleshooting information I need, right at my fingertips. Uses of a router interface description The recommended uses for the router interface description command are: Identifying the interface Noting who to call if the interface is down Documenting the circuit information for that connection In general, using the description for a “notes” field I have even used the description field to notate what the... --- ### How to Setup VLAN Trunking Protocol (VTP) on Cisco Switches - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/csc_setup_a_vtp_on_cisco_switches/ - Categories: Cisco - Article Type: How To How to Setup VLAN Trunking Protocol (VTP) on Cisco Switches In our last article about VLAN’s (Read ore about it on the What is a VLAN? How to Setup a VLAN on a Cisco Switch article), we learned about how VLAN’s provide greater performance and security for your LAN. Unfortunately, if you have more than a couple of switches, configuring VLAN’s can be a real pain. To make life easier, Cisco developed VLAN Trunking Protocol (VTP). Let’s find out what VTP can do for you. How can VTP help me? Say that you have 20 switches in your large office building. On each of these switches, you have four VLAN’s. Without VTP, you have to create each of these four VLANs on each of these switches. With VTP, you only have to create the four VLANs once, on one switch, and all other switches learn about the four VLANs. In other words, the job of VTP is to distribute VLAN configuration information between all the switches. How does it work? The job of VTP is best explained from the perspective of the VTP server. All switches, by default, are VTP servers. The VTP server is where you would create, remove, or modify VLANs. This VTP server sends an advertisement, across the domain, every 5 minutes or whenever a change is made in the VLAN database. That advertisement contains all the different VLAN names, VLAN numbers, what switches have ports in what VLANs, and a revision number. Whenever a... --- ### Configuring Virtual Networks With Hyper-V - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configuring-virtual-networks-with-hyper-v/ - Categories: Hyper-V - Article Type: How To If you’ve ever worked with Microsoft’s Virtual PC or Virtual Server, then you know that those products work in the same way as any other Windows application. They sit on top of the host operating system, and all of the virtual machine’s hardware calls are passed through the host operating system, which manages the server’s hardware usage. Hyper-V takes a completely different approach to virtualization though, and this means that network communications are implemented in a much different way than they were in Microsoft’s other virtualization products. In this article, I will show you how networking works in Hyper-V. The Virtual Switch What really sets Hyper-V apart from Microsoft’s other virtualization products is that virtual machines perform much better because they can communicate with the server’s hardware directly rather than having to pass hardware requests through the host operating system (although there are some exceptions to this). Of course you can’t just bombard a network adapter with simultaneous traffic from multiple virtual machines. There has to be a way of managing the traffic. To get around this problem, Microsoft has introduced the concept of the virtual switch. To understand how this is possible, you have to realize that Hyper-V is not a Windows Server 2008 add-on, but rather is a part of the operating system. When you install the Hyper-V role, the hyper visor is placed “underneath” the Windows 2008 operating system. The existing operating system (known as the host operating system) is placed into something called... --- ### Active Directory Connector Requirements - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/active_directory_connector_requirements/ - Categories: Exchange Server - Article Type: Overview What are the requirements for installing the Exchange 2000 Active Directory Connector on a Windows 2000 computer? MSKB 253286 has the following information: To successfully install the Active Directory Connector (ADC) and configure a Connection Agreement, you must be able to log on to Windows 2000 Server with an account that carries distinctive credentials. The permissions that are required to perform various tasks are described in the "More Information" section of this article. Initial ADC Installation When you first install an ADC in a Windows 2000 forest, the ADC Setup program extends the Active Directory schema with the Exchange 2000 schema extensions. To do this, the account that you are running Setup from must belong to a member of the Schema Administrators group or otherwise have permissions to extend the schema. Additionally, ADC Setup creates objects in the Active Directory Configuration container. This requires that the account running Setup belong to the Enterprise Administrators group. This permission is a prerequisite of the ADC installation process and Setup cannot succeed without it. Finally, ADC Setup creates two security groups in the local domain called "Exchange Services". This requires that the account you are running Setup from belongs to a member of the Domain Administrators Group or otherwise has permissions to create objects in the Users container. If this group is inadvertently deleted, a reinstallation of the ADC over the existing installation will recreate this group without adverse effects to Exchange or the AD. [adkit zone="freestyle"... --- ### Adding the Administrator's Account to the Vista Welcome Screen - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/add_administrators_account_to_vista_welcome_screen/ - Categories: Windows Vista - Article Type: How To Those of you who’ve already installed Windows Vista on their own (read my “Install Windows Vista” article) must have noticed that the installation process prompts you to create a user account when it runs. Note: See this article to enable the administrator's account in Windows 7 This account is an administrator account (and a member of the Administrators local group) that lets you set up the computer and install any programs that you want. Security Note: For security purposes, it is best to logon and work with a standard user account instead of an administrator user account. The standard user account can help protect your computer by preventing users from making changes that affect everyone who uses the computer. When you are logged on to Windows Vista with a standard user account, you can do anything that you can do with an administrator account, but if you want to do something that affects other users of the computer, such as installing software or changing security settings, Windows might ask you to provide a password for an administrator account. This makes the daily usage of the computer much safer than previous versions of Windows. When you first logon to Vista you have only one option in the Welcome screen, that is of the user that you’ve just created during the setup process. In order to be able to logon as the “default” Administrator’s account you need to first activate the Administrator’s account. Also, since the default Administrator’s account... --- ### Adding Root Certificates to Windows Mobile 2003 Pocket PC - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/adding_root_certificates_to_windows_mobile_2003_ppc/ - Categories: Exchange Server - Article Type: How To How can I add a Root Certificate to my Windows Mobile 2003 Pocket PC? Windows Mobile 2002 and 2003 based Pocket PCs use Root Certificates to allow access to SSL-enabled applications such as Microsoft Pocket Internet Explorer, Microsoft ActiveSync (when it is configured to synchronize directly with Microsoft Exchange 2003 Server), L2TP-based VPN connections and 3rd-party programs. When working with the server-side of these applications you can use commercial certificate authorities (such as Verisign, Thawte and others) to obtain Digital Certificated for the SSL connections (see Configure SSL on Your Website with IIS for an example). Windows Mobile 2003 is already configured with Root Certificates that represent the following certificate authorities: VeriSign Cybertrust Thawte Entrust GlobalSign Equifax However, in order to save money on Digital Certificates many enterprises might want to use their own, internally configured certificate authorities (one example of such a CA would be the built-in CA in Windows Server 2003 - See Install Windows Server 2003 CA for more info). Although such CAs can issue various certificates for many uses (for example EFS encryption, IPSec, E-Mail encryption and so on), the biggest problem with using internally-issued and non-commercial certificates is the fact that computers outside your organization will not trust these certificates. This is due to the fact that these "outside" computers and devices do not automatically trust the root certificate of the your internal certificate authority, thus any certificate issued by it will be treated as signed by a... --- ### Backup Windows Server 2003 Active Directory - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/backup-windows-server-2003-active-directory/ - Categories: Active Directory (AD) - Article Type: How To Backing up Active Directory is essential to maintain the proper health of the Active Directory database. You can backup Active Directory by using the NTBACKUP tool that comes built-in with Windows Server 2003, or use any 3rd-party tool that supports this feature. Backing up the Active Directory is done on one or more of your Active Directory domain Controllers (or DCs), and is performed by backing up the System State on those servers. The System State contains the local Registry, COM+ Class Registration Database, the System Boot Files, certificates from Certificate Server (if it’s installed), Cluster database (if it’s installed), NTDS. DIT, and the SYSVOL folder. To ensure your ability to actually use this backup, you must be aware of the tombstone lifetime. By default, the tombstone is 60 days (for Windows 2000/2003 DCs), or 180 days (for Active Directory based upon Windows Server 2003 SP1 DCs). Note: Longer tombstone lifetime decreases the chance that a deleted object remains in the local directory of a disconnected DC beyond the time when the object is permanently deleted from online DCs. The tombstone lifetime is not changed automatically when you upgrade to Windows Server 2003 with SP1, but you can change the tombstone lifetime manually after the upgrade. New forests that are installed with Windows Server 2003 with SP1 have a default tombstone lifetime of 180 days. Read my "Changing the Tombstone Lifetime Attribute in Active Directory" article for more info on that. Any backup older... --- ### Change to "No Sounds" Sounds Scheme by default - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_to_no_sounds_sound_scheme_by_default/ - Categories: Windows Client OS - Article Type: How To Can I change to "No Sounds" Sounds Scheme by default? You sure can! In Windows 2000/XP/2003, each time a new user logs on for the first time, it is given a new user profile in which the default Windows Sound Scheme is used. While nice to have at home, sometimes this feature is plain annoyance. You can easily change this behavior and force Windows to use the "No Sounds" sound scheme as the default sound scheme. To do so follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_USERS. DEFAULTAppEventsSchemes Create the following value (SZ): Default and give it a value of . NONE (Yes, you need the leading dot - . ) Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you're supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a . REG file before performing the changes. Close Registry Editor. Any new user who will now logon to this computer will have the "No Sounds" sound scheme applied. Related articles You might also want to read the following related articles: Add Administrative Tools Icon to the Desktop in XP/2003 Add Command Prompt Here Shortcut to Windows Explorer Add Scanners and Cameras Icon to the Desktop in XP Pro Add Scheduled Tasks Icon to the Desktop in XP/2003 Add Spell Checking to... --- ### Configure Specific E-Mail Addresses for Specific Exchange 2007 Recipients - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure-specific-email-addresses-exchange-2007-recipients/ - Categories: Exchange Server - Article Type: How To In Exchange 2000/2003, in order to generate a new or different E-Mail address for specific recipients, you had to edit or create Recipient Policies. In Exchange 2007, E-mail Address Policies are the components that generate the primary and secondary e-mail addresses for your recipients (which include users, contacts, and groups) so they can receive and send e-mail. By default, Exchange 2007 contains an e-mail address policy that specifies the recipient's alias (usually, but not necessarily – the same as the user's logon name) as the local part of the e-mail address, and uses the default accepted domain. The local part of an e-mail address is the name that appears before the "@" sign. By using custom e-mail address policies, you can define how the recipients' e-mail addresses will display. For example, you may want to have all of your e-mail addresses display as firstname. lastname@petri. com. You must configure an accepted domain before that SMTP address space can be used in an e-mail address policy. Read my "Configure Exchange 2007 to Receive E-Mail for other Domains" article for more information on that. When you create an accepted domain, you can use a wildcard character in the address space to indicate that all sub-domains of the SMTP address space are also accepted by the Exchange organization. For example, to configure PETRI. CO. IL and all its sub-domains as accepted domains, you will need to enter *. PETRI. CO. IL as the SMTP address space. However, if the sub-domain names will be used in an e-mail... --- ### Configure ISA to Publish OWA - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/configure_isa_to_publish_owa/ - Categories: Exchange Server - Article Type: How To How can I configure Internet Security and Acceleration Server to publish OWA on an Internal Exchange Server? The ISA Server allows for traditional mail server protocols (SMTP, POP3, IMAP4, and so on) to be published easily under the Server Publishing Rules node. However, no ISA Server wizard automates publishing an internal mail server that allows mail retrieval by using the Hypertext Transfer Protocol (HTTP). This article assumes that the following prerequisites are in effect: You are running ISA Server in firewall mode and there are at least two network interfaces. Outlook Web Access (OWA) for Exchange Server 5. 5 or Exchange 2000 Server is accepting HTTP requests within the internal network. To configure ISA Server to allow external clients to access the internal OWA server, perform the following four steps: Enable an HTTP listener on ISA Server: In the ISA Management console, expand Servers and Arrays, right-click the ISA Server, and then click Properties.   Click the Incoming Web Requests tab, and then click Configure listeners individually per IP address.   Click Add, and click the ISA Server name in the list box in the Add/Edit Listeners dialog box. Enter the IP address that is assigned to one of the external network interface cards (NICs).   Click OK to close the dialog box, and then click OK again to save changes.   Create a destination set that can point the Web clients to the appropriate folders that are used by the OWA Web site: Open the ISA Management... --- ### Configure SSL on Outlook Mobile Access (OMA) - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure_ssl_on_oma/ - Categories: Exchange Server - Article Type: How To How do I configure OMA to use SSL? Outlook Mobile Access (or OMA for short) is a new feature found in Exchange Server 2003 that allows you to connect to your mailbox by means of almost any mobile phone or mobile device–based browsers that support HTML, XHTML, or Compact Hypertext Markup Language (cHTML). These include a wide variety of mobile devices such as mobile phones, Palm OS based devices and Pocket PC based devices. You can read more about OMA in the featured links at the bottom of this article. OMA transmits traffic to and from the web browser on the mobile device in HTTP (based upon TCP, port 80) and in clear text, meaning that anyone could potentially "listen" to your talk and grab frames and valuable information from the net. To secure the transmission of information between Exchange Server 2003 and Outlook Mobile Access (OMA) clients, you can encrypt the information being transmitted by using SSL (Secure Sockets Layer). Configure SSL To configure SSL for Outlook Mobile Access on Exchange Server 2003 complete the following steps: Click Start, point to All Programs, point to Administrative Tools, and then click Internet Information Services (IIS) Manager. In Internet Services Manager, in the console tree, expand SERVERNAME (your local computer), and then expand Web Sites. In the console tree, right-click Default Web Site, and then click Properties. In the Default Web Site Properties dialog box, click Directory Security. On the Directory Security tab, click Server Certificate. In the... --- ### Conflicting Store Policies - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/conflicting_store_policies/ - Categories: Exchange Server - Article Type: Overview Conflicting Store System Policies in Exchange 2003 Exchange Server 2000/2003 allows the Exchange Administrator to set store settings by directly editing the store's properties, or by creating and working with Store System Policies (read Working with Store Policies for more info). When you're set System Policies and configured them to apply for specific stores (may these stores be Mailbox Stores or Public Folder Stores, it makes no difference), these stores will immediately "inherit" the policy's settings. This is not regular inheritance, like in NTFS or AD permissions, but the effect is almost similar. There are times when you might need to configure more than one policy. For example one policy for mailbox limits, and another for Full Text Indexing settings. You can easily follow the outlines in the Working with Store Policies article to configure multiple policies. However, you cannot apply more than one policy with the same exact settings tab in them for a Mailbox or Public Folder Store. For example, if you have one Mailbox Store Policy for the Limits tab in place, and you want to create another Mailbox Store Policy for the Full Text Indexing tab and apply it to the same Mailbox Stores - that's fine. However you cannot apply another Mailbox Store Policy with the same Limits tab to any of the Mailbox Stores affected by the first Mailbox Store Policy. First Policy, its settings,and the Mailbox Stores linked to it:   Second Policy, its settings, and no Mailbox Stores linked... --- ### Create Taskpads for Active Directory Operations - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/create_taskpads_for_ad_operations/ - Categories: Active Directory (AD) - Article Type: How To How can I easily perform management operations in AD from a customized Taskpad? As your AD infrastructure grows, and the number of objects within it constantly changes, you might find that managing the growing number of users, groups and computers is becoming more than a headache. Fortunately for us, one of Active Directory's best features is the ability to delegate administrative control over specific objects to lower-level administrators. You can read more about the administrative tasks delegation in an article that will be published shortly. In this article I'll show how to create a custom tool (called Taskpad) from the Active Directory Users and Computers snap-in, and how to use this custom tool to ease some of your daily user management tasks. Let's assume that your organization has an AD domain with several thousands of users. This domain consists of several distinctive divisions or departments. You have already created the right OU (Organization Unit) structure, and have already placed the right users accounts, groups and computers in their respective OUs. We will also assume that one user named David will be responsible for managing all the user objects within the Sales OU. Other users might be responsible for other management tasks (such as adding computer objects, controlling Group Policy Objects or managing group membership, but for now let us concentrate on David). This is how your AD domain structure looks like:   Note: This is only an example, you should use your own OU structure, based upon... --- ### Customize a New XP Installation - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/customize_a_new_xp_installation/ - Categories: Windows Client OS - Article Type: How To How can I customize a new Windows XP installation? When installing a brand new Windows XP Pro computer (read my Install Windows XP Pro page) I end up making many changes to its interface and some of its interior settings. Some of these changes are for made for performance reasons while others are purely visual and made only for my convenience. Some of these tips can be easily modified without the need to go into registry changes. For example, in order to disable the "Windows XP Tour" you can simply click on "Cancel" when it first pops up. However, if you want to disable this "feature" for all users on the workstation, or would like to disable if for many computers, you will need to programmatically do it. Either way, here are some of the steps I take to customize my own XP machine. I did not list ALL available tweaks or changes, I just wrote about the ones that I use the most and that help me get a better working experience with my own XP machine. BTW, some settings will also work on W2K and Windows 2003. You might also want to read Free Tweaking Tools for more info. Get rid of the Tour prompt The "Take Tour of Windows XP" prompt can drive you mad. To disable it follow the next steps:   Open the registry editor and go to HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionAppletsTour Create a new value with the name of RunCount Data Type: REG_DWORD Give it a... --- ### How to Edit Cisco IOS ACL's Using Line Numbers - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_edit_cisco_ios_acl_using_line_numbers/ - Categories: Cisco - Article Type: How To In our previous series on Cisco IOS Access-lists Part 1 and Part 2 , we covered all the basics of ACL’s and went through a real-world example. In the past, it was not possible to edit an ACL. Now, the impossible is possible with IOS 12. 2 or later. In this article, you’ll learn how you can edit your access-list by using line numbers. This will prevent you from having to remove, and recreate, your ACL whenever you need to modify it. Creating the ACL with the ip access-list command The key to being able to edit an ACL is to use the ip access-list command. Let me show you how it’s done. To start off, let’s create an ACL, like this: This is an over simplified ACL that we are using as a simple example. Notice how we used a named ACL called “MyACL”. We could have also used a numbered ACL and we would have still been able to edit the ACL. Also note how we were taken to the prompt that looked like this: Router (config-ext-nacl)# Finally, you should see that the numbers at the start of each line were manually typed in, and are only there to make the lines unique and individually removable later. The line numbers also specify in what order that the ACL lines will be processed (ACL’s are processed from the top down, or lowest line number down). We could have created this ACL with the ip access-list, or just... --- ### The Basics of Ethernet Cabling > Getting the basic networking tasks done right is the key to any PC Ethernet network, and David Davis shows you how to get off on the right foot. - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_the_basics_of_ethernet_cabling/ - Categories: Networking - Tags: Editor's Pick - Article Type: Overview Getting the basic networking tasks done right is the key to any PC Ethernet network, and David Davis shows you how to get off on the right foot. Almost anyone who has connected to the Internet through a broadband connection (like cable or DSL) has used an Ethernet cable to do it. You have connected your PC’s network interface card (NIC) to your cable modem, DSL modem, or home router with an Ethernet cable.   Because of the commonality of this, if I say “use an Ethernet cable” you have a picture of a cable in your mind.  However, you should know that there is more than one type of Ethernet cable. When you start learning about Cisco equipment and get further into networking, the different types of Ethernet cabling will come up. In fact, Ethernet cabling is an important topic on Cisco’s CCNA exam. So what do you need to know about Ethernet cabling? Let’s find out. Types of Ethernet cabling To start off with, you should know that not all Ethernet cabling is the same.   If you go to a store you may find a variety of “categories” of cabling. These categories tell you the quality of the cabling.   The quality determines, essentially, how much the cable can handle.   Here are the categories that you need to know: Cat 3 – used for voice cabling and 10Mb Ethernet Cat 5 – used for 10/100Mb Ethernet and works for voice as well Cat 5E – Enhanced Cat 5 cabling that helps to prevent cross-talk, works for 10/100Mb and 1000Mb (or Gigabit Ethernet) Cat 6 – Like Cat 5E but with larger gauge wires, works for 10/100/1000Mb... . --- ### Consolidating Multiple Windows Domains - Published: 2009-01-07 - Modified: 2024-02-14 - URL: https://petri.com/consolidating-multiple-windows-domains/ - Categories: Active Directory (AD) - Article Type: How To If you're considering bringing Windows Server 2008 onto your network, then one of the decisions that you will eventually have to make is how you plan to integrate this new operating system into your network.   In the vast majority of cases, Windows Server 2008 domain controllers are simply added to existing domains, or some of the existing Windows Server 2003 domain controllers may be upgraded to Windows Server 2008.   These types of migrations will require you to update the Active Directory schema, and you may have to do some application compatibility testing, but aside from that the actual implementation process is easy and straightforward. On the other hand though, I have heard of a few different companies lately who are using an upgrade to Windows Server 2008 as an excuse to restructure a dysfunctional Active Directory.   These types of migrations are much more difficult to perform, and require a lot more planning.   In the end though, they can be very rewarding because you end up with an Active Directory structure that is specifically tailored to meet your needs. Of course this idea of restructuring an Active Directory is nothing new. The Active Directory was designed to be flexible from the very beginning, but restructuring has gotten progressively easier from one version of Windows to the next. This is helpful if you find yourself in the middle of a corporate merger, or if you just decide that your current Active Directory design isn’t getting the job done. The tool of choice... --- ### What Do You Need to Install Active Directory? > This article explains what you need to install Active Directory in Windows Server 2000 and 2003. Screenshots are included. - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/active_directory_installation_requirements/ - Categories: Active Directory (AD) - Article Type: Overview The process of installing an Active Directory domain is quite simple, but if you don't know your basics you might stumble across a few pitfalls. For additional information about any of the information in this article, refer to the Windows 2000 online Help and the Microsoft Windows 2000 Server Deployment Planning Guide Chapter 9 of the deployment guide describes the design of the Active Directory structure, which is essential to a successful Windows 2000 Active Directory deployment By the way, you can download all the guide right HERE (3. 91mb) What do we need in order to successfully install Active Directory on a Windows 2000 or Windows Server 2003 server? Here is a quick list of what you must have: An NTFS partition with enough free space An Administrator's username and password The correct operating system version A NIC Properly configured TCP/IP (IP address, subnet mask and - optional - default gateway) A network connection (to a hub or to another computer via a crossover cable) An operational DNS server (which can be installed on the DC itself) A Domain name that you want to use The Windows 2000 or Windows Server 2003 CD media (or at least the i386 folder) Brains (recommended, not required... ) After you have all the above go ahead and read How to Install Active Directory on Windows 2000 and How to Install Active Directory on Windows 2003. An NTFS Partition To successfully install AD you must have at least one NTFS formatted partition,... --- ### Add Command Prompt Here Shortcut to Windows Explorer - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/add_command_prompt_here_shortcut_to_windows_explorer/ - Categories: Windows Client OS - Article Type: How To How can I add a Command Prompt option to the default Explorer right click context menu? If you find that you frequently open a Command Prompt window and change to a specific directory, you can add the Command Prompt to your shortcut menu. This option enables you to right-click on a folder within Windows Explorer and choose the Command Prompt - which opens a Command Prompt window with that folder as your active directory. To add the Command Prompt option to the default right click context menu in Windows Explorer you can do one of the following: Note: For Windows Vista this feature is already built in the operating system. Read Quickly Open Command Prompt Here in Windows Vista for more info. Method #1: Microsoft Powertoys This is the easiest and most idiot-proof method. Use the old Microsoft Powertoy called "DOSHERE". You can download it from (1kb). Unzip it and then right click the INF file and choose install. You can also use the newer MS Powertoys found HERE. Download the Open Command Window Here file and install it. Method #2: Send to Toys One of my favorite tools, one that I usually install right after finishing setting up any new system. Send To Toys is an enhancement of the Send To system menu. It has many nice features including: Send To Toys Control Panel Applet allows you to manage the Send To system menu content, and configure Send To Toys settings. "Add to Send To menu" and "Remove... --- ### Administer Exchange 2000 from Windows XP - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/administer_exchange_2000_from_windows_xp/ - Categories: Exchange Server - Article Type: How To How can I manage my Exchange 2000 server from a Windows XP computer? This article describes the steps to be taken in order to be able to administer an Exchange 2000 server from a Windows XP Pro computer that does NOT have SP1 or SP1a installed. Note: For a newer version of this page click on the following article: Administer Exchange 2000 from Windows XP SP1. For an Exchange 2003 version of this article click here: Administer Exchange 2003 from Windows XP SP1. If you wish to administer an Exchange 2000 server from a Windows XP Pro workstation computer you need to do the following: Step #1: Join the computer to the same domain as the Exchange server First make sure the XP computer is a part of the AD Domain where the E2K server is installed. Read Joining a Domain in Windows XP Pro for more info. Step #2: Install the Windows 2000 Adminpak Install the Active Directory tools from the Windows 2000 Adminpak (adminpak. msi) on the XP computer. You will get a warning message about version problems. Ignore the warning.   You can install all the tools from the adminpak but you don't have to. Open a command prompt in the adminpak. msi folder (you can copy it to the %systemroot%\system32 folder to make sure it's in the OS's path) and enter the following command (copy and paste): ​msiexec /i adminpak. msi ADDLOCAL=FeADTools /qb   Read more about it on the Extract Specific Tools from Adminpak. msi page... --- ### Backing up Exchange 2000/2003 with NTBACKUP - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/backup_exchange_2000_2003_with_ntbackup/ - Categories: Exchange Server - Article Type: How To How do I backup my Exchange 2000/2003 server? One of the most important tasks for an Exchange administrator is the regular, day-by-day, backing up of all the Exchange databases. This can be easily accomplished by use of the built-in NTBACKUP. EXE software found on your Exchange 2000/2003 server. Some administrators might choose to your 3rd-Party backup tools, such as: Veritas Backup Exec (currently version 10. 0) BrightStor ARCserve Backup (currently version r11. 1) Legato Co-StandbyServer Advanced (currently version 5. 1) However, as stated above, you do NOT need to buy expensive 3rd-Party tools just to backup your Exchange server. Generally, you can backup Exchange 2000/2003 in 2 ways: Online backup and Offline backup. Online Backup - An Online backup is performed while the Information Store is still mounted and the Exchange server is operational. The Exchange is Online and available for transactions, therefore it still allows users to work without interruption. Online backups also automatically clear the database logs upon completion. Another major advantage of the Online backup method is the fact that the Exchange store is checked for corruption at the file-system level. This check is done by verifying the checksums on each 4 KB (Kilobyte) block or page in the database. If there is a checksum failure, backup will terminate. Exchange will not allow you to back up an Exchange store with a wrong checksum in it. Therefore, after an online backup is complete, you should check the Event Viewer to find out whether your... --- ### Brick Level Backup of Mailboxes by using EXMERGE - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/brick_level_backup_of_mailboxes_by_using_exmerge/ - Categories: Exchange Server - Article Type: How To How do I use EXMERGE to make Brick-Level backups of Exchange 2000/2003 mailboxes? One of the most important tasks for an Exchange administrator is the regular, day-by-day, backing up of all the Exchange databases. This can be easily accomplished by use of the built-in NTBACKUP. EXE software found on your Exchange 2000/2003 server. Note: You can also Backup Exchange 2000/2003 from a Non-Exchange Server. Some administrators might choose to your 3rd-Party backup tools, such as: Veritas Backup Exec (currently version 10. 0) BrightStor ARCserve Backup (currently version r11. 1) Legato Co-StandbyServer Advanced (currently version 5. 1) However, as stated above (and in the Backing up Exchange 2000/2003 with NTBACKUP article), you do NOT need to buy expensive 3rd-Party tools just to backup your Exchange server. Then why bother with expensive 3rd-Party backup tools? The main reasons behind the usage of such tools are their advanced scheduling capabilities, advanced tape drive management, and in some cases - the ability to perform Brick-Level backups of your Exchange mailboxes. What is Brick-Level Mailbox backup? Brick-Level mailbox backup is a method in which the backup program logs on into each mailbox on the store (by using MAPI, just like Outlook does) and then backs-up the contents of the mailboxes to the tape device. Each mailbox is backed up individually, and thus restoring a specific mailbox in case it has been deleted and purged from the database is easier than before. Note: Read Recover a Deleted Mailbox for more info on how to... --- ### Changing the Default NumLock Key State - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_numlock_default_state/ - Categories: Windows Client OS - Article Type: How To Can I change the Default NumLock Key State? You sure can! The NumLock key is a key that toggles the state of the Numbers section of the keyboard (you know, the right-hand side keys duh... ) The state of the NumLock key can be set in three ways: In the BIOS (not all computers have that feature in their BIOS) By Windows (i. e. Registry setting) By the user (i. e. by manually pressing the NumLock key) Although full-sized keyboards offer good Num keypads, most laptop and some server keyboards (especially the IBM ones) do not have the Num part of the keyboard, and instead use additional key mappings for the normal character keys. Having the NumLock key turned on will be beneficial for most full-sized keyboard users, but the laptop and server users might be annoyed because they will forget that the NumLock key is on, and thus whenever they type something on their small keyboards, they will get numbers instead of letters when pressing keys like u,i,o,p,j,k,l,m and so on. To control the state of the NumLock key follow these steps: Open Registry Editor. In Registry Editor, navigate to the following registry key: HKEY_USERS. DEFAULTControl PanelKeyboard Create the following value (DWORD): InitialKeyboardIndicators and give it a value of 0 (zero) or 2 (two) 0 = NumLock is turned off after logon 2 = NumLock is turned on after logon Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases... --- ### Change User Password from a Remote Computer - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_user_password_from_a_remote_computer/ - Categories: Security - Article Type: How To How can I change my user-account password from a remote computer? You can change a Windows User Account password that is on any Windows computer from any other Windows computer regardless of whether the User Account is on a workstation, a stand-alone server, or a Windows domain controller. Additionally, it makes no difference whether the password being changed from a workstation, a stand-alone server, or a Windows domain controller. This is true for any NT 4. 0, W2K, XP Pro and Windows Server 2003 computer. You do not have to be logged on from the User Account Database that contains the Username, and you do not have to be currently logged on with that Username. This procedure is especially useful if you want to change your password in a User Account Database or security accounts manager (SAM) that is not in your default logon domain. To change your password: Press CTRL+ALT+DEL to bring up the Windows Security dialog box. Press the Change Password button. Enter the User name whose password you wish to change. In the From dialog box, click either the computer name or domain name in the drop-down list box, or type the computer name or domain name that contains the User Account Database where the user name exists. Type the appropriate password in the Old Password, New Password, and Confirm New Password box. You should receive a message indicating "Your password has been changed. " This procedure is allowed even if... --- ### Configure Time and Date Settings in Windows 2008 Server Core - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/configure-time-date-settings-windows-2008/ - Categories: Windows Server 2008 - Article Type: How To As noted in previous articles, Windows Server 2008 has an interesting option to install it with a minimal graphical user interface (or GUI for short). This method of installation is called "Server Core", and it allows an administrator to only install the minimum binaries required to run a specific server role (currently, there are 9 possible Server Core roles). You can read more about it on my upcoming "Understanding Windows Server 2008 Server Core" article. Since there are virtually no graphical tools to use in Server Core, one must be able to configure its settings via Command Prompt, PowerShell or other means. See my site for a growing list of additional articles on these subjects. As you may all know, setting the right time, date and time zone on a windows machine is crucial for it to properly function, especially in an Active Directory environment. Since our Server Core machine will most likely be a part of an AD domain, we need to properly configure it as well. In order to configure time, date, and time zone settings on a machine running Windows 2008 Server Core, please follow these steps: On the server running a Server Core installation, type the following command at a command prompt: ​Control timedate. cpl This will fire up the Time and Date Control Panel applet (one of two . CPL survivors on Server Core... ) In order to change the clock and date, press the Change Date and Time button. In order to change the... --- ### Configure Message Security in Exchange 2003 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_message_security_in_exchange_2003/ - Categories: Exchange Server - Article Type: How To How can I configure e-mail and message security in Exchange Server 2003? Exchange Server 2003 can work hand-in-hand with the Windows Server 2003 Certificate Authority (also known as CA) to provide message security by offering support for digital signatures and message encryption. Both forms of security will be discussed in a separate article, but what is important to us is the fact that both require the presence of a Digital Certificate to be issued for any user how will need to use these features. In order to offer message security with Exchange Server 2003 you will first need to install and configure a CA in your domain. Note: There may be scenarios where a company might opt to use 3rd party issued Digital Certificates instead of creating their own, especially when that company's users will be dealing with out-of-the-company users, exchanging encrypted e-mail messages between themselves and these outside users. This is because the outside users might not be willing to trust the company's internal CA. Step 1: Install the IIS Service In order to install the CA you will first need to install IIS on a Windows Server 2003 computer. This server does NOT need to be the Exchange server, and in fact can either be one of your Domain Controllers or any member server. On Windows Server 2003 IIS is not installed with the default Windows 2003 installation. Click Start > Control Panel > Add or Remove Programs. In Add or Remove Programs, click Add/Remove... --- ### Configure SSL for Outlook Web Access (OWA) - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_ssl_on_owa/ - Categories: Exchange Server - Article Type: How To How do I configure OWA to use SSL? Outlook Web Access (or OWA for short) is one of Exchange Server's best features, allowing you to connect to your corporate mailbox from virtually any spot on earth as long as you have an Internet connection and a decent web browser. You can read more about OWA in the featured links at the bottom of this article. OWA transmits traffic to and from the web browser in HTTP (based upon TCP, port 80) and in clear text, meaning that anyone could potentially "listen" to your talk and grab frames and valuable information from the net. To secure the transmission of information between Exchange Server 2003 and Outlook Web Access clients, you can encrypt the information being transmitted by using SSL (Secure Sockets Layer). Configure SSL To configure SSL for Outlook Web Access on Exchange Server 2003 complete the following steps: Note: Although the screenshots are made with Exchange 2003 on Windows Server 2003, the same procedure applies for Exchange 2000 and Windows 2000. Note: If you already have a valid certificate for your website skip this phase and continue at the next one. Click Start, point to All Programs, point to Administrative Tools, and then click Internet Information Services (IIS) Manager. In Internet Services Manager, in the console tree, expand SERVERNAME (your local computer), and then expand Web Sites. In the console tree, right-click Default Web Site, and then click Properties.   In the Default Web Site Properties dialog... --- ### Control Usage of Portable Devices with GFI EndPointSecurity - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/control-portable-device-security-gfi-endpoint-security/ - Categories: Windows Vista - Article Type: How To Uncontrolled use of iPods, USB sticks, PDAs and other devices on your network can lead to data theft, introduction of viruses, legal liability issues and more. In a society where the use of portable storage devices is commonplace, the threat that these devices pose to corporations and organizations is often ignored. GFI EndPointSecurity is one of the best portable device control software that I've tested, allowing you to easily control the usage of portable devices into your corporate network and thus strengthening your physical security. Control network access and use of devices such as USB drives, iPods, PDAs, Cameras and more The introduction of consumer devices such as iPods, USB drivers, smart phones and other portable devices in the past few years has greatly increased the risk of data leakage and malicious activity on networks. With mass storage devices easily inserted into USB ports, employee can easily copy huge amounts of sensitive data onto an iPod or USB stick without ever being noticed. Unfortunately, many businesses are unaware of or ignore the threat until something actually happens. Developments in removable media technology are escalating. The newer versions of portable devices, such as flash memory, have been increasing in capacity and performance making them: Easy and fast to install Capable of storing huge amounts of data Physically small enough to carry in a pocket These devices are so easy to use that inserting them into un-trusted computers can easily get them infected with viruses or malware, and introducing... --- ### Create Users for Testing Purposes - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/create_users_for_testing_purposes/ - Categories: Active Directory (AD) - Article Type: How To How can I create a large number of users for testing purposes? If you want to create a large amount of test user accounts in your domain or local accounts on your workstation, you can do so in more than one way. On this page I'll try to list a few of these methods. By using the NET USER command By using the DSADD USER command By using the CSVDE command By using the LDIFDE command If you happen to have some nice scripts that can do the same job in other methods (oh yes, there are other methods), please do send me an e-mail and I'll upload it to this page . Windows Server 2003 AD Note: Windows Server 2003 Active Directory is configured, by default, to request that any user that you create will have a password that is complex and with a minimum of 7 characters. Some methods described here (mainly method #3 and #4) cannot add the password attribute to a user account. In order for these methods to work in your test environment you must first disable the password requirement for the Windows Server 2003-based Domain. Read my Disable Password Requirements in Windows Server 2003 Domains article for more info. Method #1: By using the NET USER command NET USER is an old NT-related user manipulation command. I will not list all of it's attributes here (you can find for yourself by going to the Help and Support site on your computer). I... --- ### Customize the Places Bar in Office XP - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/customize_the_places_bar_in_office_xp/ - Categories: Office - Article Type: How To How can I customize the Places Bar in Office XP? In Office 2000 you needed to either edit the registry or use a utility to change the places bar and could not do it on the fly. Also, the places bar was limited to no more than ten entries. With Office XP, it's easy to add new places right from the File | Open or File | Save dialog and you can have more than ten. You can easily access frequently used folders or even partitions. Open any Office XP application such as Word etc. Go to the File menu then select either Save or Open. Browse to the folder you want added to the Places Bar and select it.   Click on the Tools menu and choose Add to "My Places".   The folder now appears in your places menu. You can now move it up or down as desired. Right-click the folder in the left pane and select Move Up until you get it to the desired position.   If you have more icons than will fit on the bar, a small arrow appears to indicate there are more icons and you can scroll up or down the list. If scrolling isn't does sound so hot, you can resize the dialog window to show more, made easier if you switch to small icons. You can also add removable ZIP drives, USB devices, Disk-on-key USB devices, Floppy drives and what not.   You can also add... --- ### Windows XP Search Bug - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_search_bug/ - Categories: Windows Client OS - Article Type: Overview How can I find a text file containing a text string? I'm sure I have that file but the XP Search engine says I don't. Why? In Microsoft Windows 2000 and earlier versions of Windows, all files are searched for the content that you specify. Windows XP does not search all file to enhance the performance of searching and to avoid extraneous results. This behavior occurs whether or not you use the Indexing service when you search. Therefore, Windows XP has a known issue for not finding a number of File Types when you do a Search for Files "containing text" or using the "A word or phrase in the file" option. This can be remedied for many file types, but not all. The cause is the lack of a PersistentHandler value in the Registry for this type of file. Method #1 Download this (Written by Doug Knox). Save the file you just downloaded to your hard disk. Locate the file you just saved and double click it. Enter the file extension you wish to modify. If the PersistentHandler sub-key exists, no changes will be made. If it does not exist for the file type in question, the Registry will be updated accordingly. Reboot when you're finished with the file types you wish to change. (Press ÿ  +F to open the Search dialog box and see for yourself). Method #2 MS KB 309173 has another fix for this bug: To configure Windows XP to search all files... --- ### Windows Update Problems - Error 0x80070485 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/wu_problems_80070485/ - Categories: Patches and Service Packs - Article Type: Overview Windows Update Problems - Error 0x80070485 When you use a computer that is running Microsoft Windows 98, Windows 98 Second Edition or Windows Millennium Edition to access the Windows Update Web site, you may receive a 0x80070485 initialization error message while the page loads. BTW, this error is not the only error message one might receive while trying to scan, download or install Hotfixes from the Windows Update site. Here is my current list of other Windows Update error codes and their respective solutions: Windows Update Problems - Error 0x8007007E Windows Update Problems - Error 0x800A138F 0x80070485  Error - Possible solutions MS KB 836923 has some info: To resolve this problem you must reinstall the Windows Installer. To do so, follow the steps for your operating system. Windows Millennium Edition Insert your Windows Millennium Edition startup disk in your floppy disk drive, and then restart your computer. For additional information about how to make a Windows Millennium Edition startup disk read How to Create a Startup Disk in Windows Me - 267287 At the Windows Millennium Edition Startup menu, select Minimal Boot. At the command prompt, type the following commands. Press ENTER after each command: ​c: cd 'Windows'System del msi. dll exit Remove the Millennium Edition startup disk from your floppy disk drive, and then restart your computer. Windows 98 and Windows 98 Second Edition Download the Instmsiw. exe file from HERE. Make a note of the folder where you download this file. Click Start, and then click Shut... --- ### How a Cisco Switch functions on an Ethernet network - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/csc_how_a_cisco_switch_functions_on_an_ethernet_network/ - Categories: Cisco - Article Type: Overview Many of us use switches every day but never really think about how they work. Whether you are studying to become a CCNA or just want to learn more about how a switch really functions, this article is for you. Hubs vs. Switches Prior to switches, Hubs were the standard for connecting devices on a local area network (LAN). The problem with hubs was that everything that went through them had to share the bandwidth of the link, bandwidth was wasted because all traffic was sent to all devices, and there were a lot of collisions because the hub didn’t do anything to prevent them. A switch fixes these problems. What do switches do? Here are some facts about switches that you should know: Switches work at Layer 2 of the OSI model, not Layer 1 like a hub Switches switch Ethernet frames Switches don’t look at IP address information, only Ethernet MAC addresses Switches keeps a table of all MAC addresses traversing the switch and what port they are on (this table is called the bridge forwarding table or CAM table) Switches only sends traffic to the devices that are the destination for that traffic, saving bandwidth Each device connected to the switch gets the full bandwidth of the switch port because the switch prevents collisions Flooding Now that you know that the switch has the bridge forwarding table and uses that to intelligently send traffic, a common question is, “what if the destination MAC address... --- ### Use TFTP to Backup your Cisco Router Configurations - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/csc_use_tftp_to_backup_your_cisco_router_configurations/ - Categories: Cisco - Article Type: How To Just like any important server on your network, Cisco routers and switches need to be periodically backed up. You don’t want your router to crash one day, get a replacement, and spend days trying to recreate the configuration file. To prevent this, make sure you backup your configurations with TFTP. Let’s find out how to do this. What is TFTP? TFTP stands for Trivial File Transfer Protocol. TFTP uses UDP, not TCP for transferring of files (like FTP does). Because it uses UDP and UDP is connectionless, TFTP file transfers are not meant for networks with a lot of latency, like the Internet. However, because UDP doesn’t use any kind of acknowledgements, it is also faster than TCP. Obtaining a TFTP server You can make a Cisco router a TFTP server and copy files from other routers to that router.  However, storing your backups on a router isn’t the best idea.  You really want your Cisco device backups on a PC or server that can be backed up to tape.  So, let’s find out how to obtain a Windows TFTP server. You can download a Windows TFTP server for free, from a variety of sources. Here are a couple of my favorites: SolarWinds Tftpd32 In fact, Windows XP has a built in command-line TFTP program but I wouldn’t recommend it if you can obtain a free graphical program instead. Running a TFTP server Because I like the Tftpd32 program so much, let me show you how to... --- ### How to Control Exchange 2007 Attachments through OWA, Part 1 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/control-exchange-server-2007-attachments-through-owa-part-one/ - Categories: Exchange Server - Article Type: How To As someone who spends a lot of time traveling, I have always thought that OWA was pretty much the greatest thing since sliced bread. In the hands of a user though, OWA can present a serious security risk. You just never know when a user could potentially disclose sensitive information by opening a file attachment from a public computer or from a computer that is infected with malware. Fortunately, Exchange Server 2007 makes it easy to control when and how a user is allowed to open e-mail attachments. In this article, I will show you how. Your Options for Blocking Attachments When it comes to blocking attachments through OWA, you have five options.   Your first option is to allow users to open attachments that have a known file type, using the application that is associated with that file type.   An example of this would be using Microsoft Word to open a . DOC file. Your second option is to force users to save certain types of attachments to disk before they are allowed to open them.   The reason why this option exists is because some users are in the habit of using public kiosks to check their messages.   When a user opens an attachment directly through OWA, the attachment is first copied to the machine's hard disk prior to being open.  This means that even after the user logs out, a copy of the file may remain on the machine.   Administrators sometimes require attachments to be saved to disk... --- ### Running the Windows 2000 Server Active Directory Migration Tool > Using the Active Directory Migration Tool to test and configure the migration of NT4 to Active Directory under Windows 2000 Server. - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/active_directory_migration_tool/ - Categories: Active Directory (AD) - Article Type: How To How can I migrate users and groups from my NT 4. 0 domain to a Windows 2000 Domain? The Active Directory Migration Tool provides an easy, secure, and fast way to migrate to Windows 2000 Active Directory service. As a system administrator, you can use this tool to diagnose any possible problems before starting migration operations to Windows 2000 Server Active Directory. You can then use the task-based wizard to migrate users, groups, and computers; set correct file permissions; and migrate Microsoft Exchange Server mailboxes. The tool's reporting feature allows you to assess the impact of the migration, both before and after move operations. In many cases, if there is a problem, you can use the rollback features to automatically restore previous structures. The tool also provides support for parallel domains, so you can maintain your existing Windows NT 4. 0 domains while you deploy Windows 2000. Note: To successfully run the AD Migration Tool the source domain must be running Windows NT 4. 0 Service Pack 4 or later, and the target domain will be a Windows 2000-based domain in Native mode. The Active Directory Migration Tool version 3 (ADMT v3) simplifies the process of restructuring your operating environment to meet the needs of your organization. You can use ADMT v3 to migrate users, groups, and computers from Microsoft Windows NT 4. 0 domains to Active Directory directory service domains; between Active Directory domains in different forests (interforest migration); and between Active Directory domains in the same forest (intraforest migration). ADMT v3 also... --- ### Add Desktop Icons in Windows Vista - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/add_desktop_icons_in_windows_vista/ - Categories: Windows Vista - Article Type: How To How can I add the desktop icons back to the Windows Vista desktop? You can, but unlike in Windows XP and Windows Server 2003, you need to do a little bit more clicking... Someone in the Windows XP/2003/Vista design team has decided that desktop icons are bad for you. I don't know what this assumption is based upon, but one of the first things I do whenever I put my hands on a computer, any computer, is to add the missing icons. Too many easy shortcuts are missed because of the removed desktop icons, and I'm just too hooked on them to live without them. So in order to restore the desktop icons you could use just one method instead of the 2 methods in Windows XP/2003 (see comment below). Right-click an empty spot on your desktop, select Personalize. In the Personalization window, in the top left-hand corner, click on "Change desktop icons". Note, you can also get to this window directly from the Control Panel. In the Desktop Icon Settings window, click to select all the empty checkboxes for the desktop icons. Click Ok. Done. Note: As I mentioned earlier, in Windows XP/2003 you could use a second method - by reverting to the "Classic" Start menu you got your icons back (but also missed the "Regular" Start menu as a result). In Windows Vista doing so will only return the Internet Explorer icon back, not the rest of the desktop... --- ### Administer Exchange 2000 from Windows XP SP1 - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/administer_exchange_2000_from_windows_xp_sp1/ - Categories: Exchange Server - Article Type: How To How can I manage my Exchange 2000 server from a Windows XP SP1 computer? This article describes the steps to be taken in order to be able to administer an Exchange 2000 server from a Windows XP Pro computer that is installed with SP1 or SP1a. Note: For an older version of this page and for more background on this issue (with detailed screenshots) click on the following article: Administer Exchange 2000 from Windows XP. For an Exchange 2003 version of this article click here: Administer Exchange 2003 from Windows XP SP1. If you have not already done so, install Windows XP Service Pack 1 (SP1a) on your client computer: Download Windows XP SP1a Network Installation Problem When you try to install the Microsoft Exchange System Management Tools on a Windows XP-based client computer, you may receive the following error message: The component "Microsoft Exchange System Management Tool" cannot be assigned the action "install" because the Windows 2000 Administration Tools must be present. You receive this error message although you have installed the Microsoft Windows Server 2003 Administration Tools (Adminpak. msi). This behavior occurs because Exchange Setup only determines if the Windows 2000 Administration Tools are installed on the client computer. The Windows 2000 version of the Administration Tools is not supported on Windows XP. Step #1: Install the HotFix To resolve this issue, obtain and install the Exchange2000-kb815529-x86-enu. exe package before you install the Exchange System Management Tools. This update causes the Exchange 2000 Setup program to interpret that the Windows... --- ### Backup Exchange 2000/2003 from a Non-Exchange Server - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/backup_exchange_from_non_exchange_server/ - Categories: Exchange Server - Article Type: How To How can I backup my Exchange 2000/2003 server from a non-Exchange Windows 2000/2003 server? When you install Exchange 2000/2003 on a Windows 2000/2003 server, or, alternatively, when you install the Management Tools for Exchange 2000/2003 on a non-exchange server, you actually enhance the built-in Ntbackup. exe tool from the regular tool to one that is capable to backup local and remote Exchange servers. However, you might want to backup one or more of your Exchange servers from a non-Exchange server, one that does not have the Exchange Management Tools installed on. To permit a Microsoft Windows 2000/2003 server-based backup server that does not have Exchange 2000 or Exchange System Manager installed to perform online Exchange 2000 backups, follow these steps: Copy Esebcli2. dll to the backup server. This file is located in the Exchsrvr\Bin folder on any Exchange 2000/2003 computer. You can copy this file directly from the Exchange 2000/2003 installation CD-ROM. Note: For Exchange 2000 please use the version found in SP3. For Exchange Server 2003 please use the version found in SP1. You can find these files in the setup\i386\exchange\bin path of the Service Pack folder (or CD). Start Registry Editor (Regedt32. exe). Locate and click the following registry key: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\BackupRestore\DLLPaths Double-click the DLLPaths key, and then add the following value: Value Name: Esebcli2 Data Type: REG_EXPAND_SZ String: Drive\Path\Esebcli2. dll Make sure that on the Exchange 2000/2003 computer the account that performs the backups is given Backup Operator permissions. Note: The original MS KB article claims that on... --- ### Bug in the Intelligent Message Filter (IMF) interface - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/bug_in_imf_interface/ - Categories: Exchange Server - Article Type: Overview Microsoft Exchange Intelligent Message Filter is a product developed by Microsoft to help companies reduce the amount of unsolicited commercial e-mail (UCE), or spam, received by users. You can read more about IMF on the Block Spam with Exchange 2003 Intelligent Message Filter page. When looking at the IMF interface in the Exchange System Management snap-in (ESM) you can notice it specifically says that: "Block messages with an SCL rating greater than or equal to:" and on the Store Junk E-mail Configuration section, it clearly says: "Move messages with an SCL rating greater than or equal to:" SCL is a "rating system" that on a scale from -1 (only used for authenticated users) to 10, will tell Outlook or OWA whether or not the e-mail should be moved to the Junk E-mail folder (depending on the user's settings). Note that not all messages might be transferred to the store (i. e. the user's mailbox) depending on the settings on the IMF tab. Read more about how to Configure Intelligent Message Filter in Exchange 2003 SP2. So, the SCL rating is in fact a threshold level, and by looking at the text, this threshold level is either any number GREATER than the level, or the number specified on the level itself.   However that is not true. A quick follow-up of my Display SCL Level in Outlook 2003 and Display SCL Level in OWA 2003 SP2 articles and by monitoring the SCL level in your inbox, you will be surprised to find that... --- ### Change or Add OEM Logo and Information - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/change_or_add_oem_logo_and_information/ - Categories: Windows Client OS - Article Type: How To How can I change or add OEM logo and information on my computer? By default, the General tab (right-click My Computer, or double-click System in Control Panel, or press the ÿ + BREAK keys on your keyboard) contains information on the Windows version, processor, memory, registered user and registration identity. Optional items include the manufacturer and model, a small picture, and a button leading to a separate page of support information. The information is not held in the registry, but in an old-style . INI file, which can be created in any plain-text editor including Windows Notepad. This file can have two sections: The first section, has a section header called , and within that section -  two entries: Manufacturer= Model= The second section, headed , is optional, but if present adds a button with that label to the page. The entries after that heading should be in the form: Line1= Line2= Line3= and so on. The limit on the number and length of lines seems limited only by the 64 KB general limit on . INI files. The file should be saved in the %systemroot%system folder (for Windows 98/ME computers) or in %systemroot%system32 folder (for W2K/XP/2003 computers) as OEMINFO. INI. The picture is a 256-colour-Windows bitmap (. BMP) file. Microsoft states that the size should be 96 pixels square when using small fonts in Display Property settings, or 120 square with large fonts. The file should be saved in the %systemroot%system folder (for Windows 98/ME computers)... --- ### Change User Password from the Command Prompt - Published: 2009-01-07 - Modified: 2024-09-17 - URL: https://petri.com/change_user_password_from_the_command_prompt/ - Categories: Security - Article Type: How To How can I change my user-account password from a Command Prompt? You can change a Windows User Account password that is on any Windows computer from any other Windows computer regardless of whether the User Account is on a workstation, a stand-alone server, or a Windows domain controller. Additionally, it makes no difference whether the password being changed from a workstation, a stand-alone server, or a Windows domain controller. This is true for any NT 4. 0, W2K, XP Pro and Windows Server 2003 computer. To change a user's password at the command prompt, log on as an administrator and type: ​net user danielp * /domain (This is only an example, use your own username) When you are prompted to type a password for the user, type the new password, not the existing password. After you type the new password, the system prompts you to retype the password to confirm. The password is now changed. Alternatively, you can type the following command: ​net user danielp 123456 /domain When you do so, the password changes without prompting you again. This command also enables you to change passwords in a batch file. Note: If you type these commands on a member server or workstation and you don't add the /domain switch, the command will be performed on the local SAM and NOT on the DC SAM. For example, to change the administrator's password type: ​net user administrator 123456 Note: Non-administrators receive a "System error 5 has... --- ### Configure a New Global Catalog - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_a_new_global_catalog/ - Categories: Active Directory (AD) - Article Type: How To How can I configure a Windows 2000/2003 Server as a Global Catalog? The Global Catalog (GC) contains an entry for every object in an enterprise forest but only a few properties for each object. An entire forest shares a GC, with multiple servers holding copies. You can perform an enterprise wide forest search only on the properties in the GC, whereas you can search for any property in a user’s domain tree. Only Directory Services (DS) or Domain Controller (DC) can hold a copy of the GC. Configuring an excessive number of GCs in a domain wastes network bandwidth during replication. One GC server per domain in each physical location is sufficient. Windows NT sets servers as GCs as necessary, so you don’t need to configure additional GCs unless you notice slow query response times. Because full searches involve querying the whole domain tree rather than the GC, grouping the enterprise into one tree will improve your searches. Thus, you can search for items not in the GC. By default, the first DC in the First Domain in the First Tree in the AD Forest (the root domain) will be configured as the GC. You can configure another DC to become the GC, or even add it as another GC while keeping the first default one. Reasons for such an action might be the need to place a GC in each AD Site. To configure a Windows 2000/2003 Domain Controller as a GC... --- ### Configure Message Security in Outlook 2003 - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/configure_message_security_in_outlook_2003/ - Categories: Exchange Server - Article Type: How To How can I configure e-mail and message security in Outlook 2003? After installing the online Certificate Authority (CA) and after obtaining a user Digital Certificate signed by your CA you will now need to configure Outlook 2003 to use the new message security features. These features include: Message encryption Message signing Note: Before being able to encrypt or sign messages you will need to apply for, receive and install a Digital Certificate designated for this purpose. For more info please see the Related Articles section at the bottom of this page. In order to configure Outlook 2003 to use the new message security settings please follow these steps: Open Outlook. Go to Tools > Options > Security tab. In the Encrypted E-Mail section press the Settings button.   In the Security Settings Name drop-down list make sure you see a "My S/MIME Settings (your e-mail)" title appears.   In the Cryptography Format make sure S/MIME is selected. In the Certificates and Algorithms section, under Signing Certificate make sure that the Digital Certificate you've previously obtained is listed. If not, press Choose and browse to the required certificate.   Note: The obtained certificate should be listed automatically, and in most cases you will not need to modify any setting. In the Encryption Certificate section, under Encryption Certificate make sure that the Digital Certificate you're previously obtained is listed. If not, press Choose and browse to the required certificate. Note: The obtained certificate should be listed automatically, and in most... --- ### Configure SSL on Your Website with IIS - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/configure_ssl_on_your_website_with_iis/ - Categories: Security - Article Type: How To On IIS 6. 0, how do I configure my website to use SSL? By default, web browsing is being performed by use of the HTTP protocol, i. e. a connection between the client computer (using a web browser) to the web server (using IIS, Apache or any other sort of web server program). HTTP relies on TCP (Transmition Control Protocol) and uses port 80 on the listening server. The main security issue with HTTP is the fact that all the traffic between the client and the server is done as clear text, meaning that anyone could potentially "listen" to your talk and grab frames and valuable information from the net. To secure the transmission of information between your web server running IIS 6. 0 on Windows Server 2003 and your browser clients, you can encrypt the information being transmitted by using SSL (Secure Sockets Layer). Note: The procedure for applying SSL on IIS 5. 0 (on Windows 2000) and IIS 5. 1 (on Windows XP) is quite the same. In order to successfully use SSL you need to obtain a Server Certificate. In this article I will only focus on obtaining a certificate from a local CA or importing an already existing certificate. However, it is possible (and in many cases preferred) that you obtain the Server Certificate from a trusted 3rd party CA such as Verisign or Thawte. Configure SSL To configure SSL for your website on IIS 6. 0 (running on Windows Server 2003) complete the following steps: Note: Although the screenshots... --- ### Control USB Drive Letter Assignment in Windows XP/2003/Vista/2008 - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/control-usb-drive-letter-assignment-in-windows/ - Categories: Windows Server 2008 - Article Type: How To In Windows XP/2003/Vista/2008, when a removable drive (USB flash drive, flash card reader, portable hard drive, etc. ) is attached for the first time, Windows mounts it to the first available local drive letter. So far so good. But if there is a network share on this letter, Windows will use it anyway for the new USB drive, because network shares are specific to the current user and not visible in the context of the system where the letter is assigned. In this example I have a USB disk that had been previously assigned the first available drive letter (F: in my case). I removed it, and then mapped a network share to the same drive letter: I now re-inserted the USB disk, but it did not get the F: drive letter assigned to it as it had before, because the network share now holds the F: drive letter. The USB disk appears to be invisible, and opening Windows Explorer does not show you the inserted disk. You can change the letter assignments in the Windows Disk Management Console with a lot of mouse clicks but you have to do it again for every new device. To change the assigned drive letter open Computer Management from the Administrative Tools folder, or by right-clicking My Computer > Manage. Expand Storage > Disk Management. There you'll see the USB disk with its original drive letter (or no drive letter at all, depending on your OS). Right-click the partition on the... --- ### Creating and Managing Virtual Servers with Windows 2008 Server and Hyper-V - Published: 2009-01-07 - Modified: 2024-09-24 - URL: https://petri.com/creating-managing-virtual-servers-windows-server-2008-hyperv/ - Categories: Windows Server 2008 - Article Type: How To In the two previous articles in this series (Planning for Windows Server 2008 Virtualization and Implementing Hyper Vision in Windows Server 2008), I walked you through planning and installing Windows Server 2008 Hyper-V. In this article, I will continue the discussion by showing you how to install a virtual operating system. Installing a Virtual Operating System Open Server Manager and then navigate through the console tree to Roles -> Hyper-V -> Microsoft Hyper-V Server. If this is the first time that you have used Hyper-V, then you will be prompted to accept Hyper-V License Agreement.   Once you accept the license agreement, the various Hyper-V options will be made available to you. The first thing that you must do is to click on the Connect to Server link, located in the Actions pane. When you do, you will be prompted to select the computer that you want to connect to. Choose the Local Computer option, and click OK. You will now see the screen shown in Figure A. Figure A This is the main screen that you will use for managing virtual machines. Creating a New Virtual Server To create a new virtual server, click the New -> Virtual Machine options found in the Actions pane. When you do, Windows will launch the New Virtual Machine Wizard. The wizard’s initial screen explains that you can click Next to begin customizing a virtual machine, but that you also have the option of clicking Finish right now to create a... --- ### Customize the Places Bar in Office XP/2003 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/customize_the_places_bar_in_office_xp_2003/ - Categories: Windows Client OS - Article Type: How To How can I customize the Places Bar in Office XP? In Office 2000 you needed to either edit the registry or use a utility to change the places bar and could not do it on the fly. Also, the places bar was limited to no more than ten entries. With Office XP, it's easy to add new places right from the File | Open or File | Save dialog and you can have more than ten. You can easily access frequently used folders or even partitions. Open any Office XP application such as Word etc. Go to the File menu then select either Save or Open. Browse to the folder you want added to the Places Bar and select it. Click on the Tools menu and choose Add to "My Places". The folder now appears in your places menu. You can now move it up or down as desired. Right-click the folder in the left pane and select Move Up until you get it to the desired position. If you have more icons than will fit on the bar, a small arrow appears to indicate there are more icons and you can scroll up or down the list. If scrolling isn't does sound so hot, you can resize the dialog window to show more, made easier if you switch to small icons. You can also add removable ZIP drives, USB devices, Disk-on-key USB devices, Floppy drives and what not. You can also add FTP sites and browse... --- ### Windows XP SP1 Info - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/windows_xp_sp1_info/ - Categories: Patches and Service Packs - Article Type: Overview What's SP1? The service pack is a collection of updates for Windows XP. These updates address: Security issues (including the Windows XP Update Package) Operating system reliability Application compatibility Windows XP Setup Note: If you have not yet installed the Windows XP Update Package, you only need to install Service Pack 1 because the security update is included. To download SP1 for Windows XP: Download Windows XP SP1 Network Installation (125mb) The Network Installation is ideal for IT professionals installing SP1 on multiple computers. Get more information about SP1 and instructions on how to deploy it. SP1 Express Installation (typically ~30mb) Use the Express installation if you have only one computer to upgrade to SP1. Get more information about SP1 and instructions on how to install it. The Express installation checks your computer and installs only the files that are necessary to bring your computer up to date. As a result, the number of files installed and the time required may be less for computers that already have Windows XP hotfixes installed. SP1 official web site: http://www. microsoft. com/windowsxp/pro/downloads/servicepacks/sp1 Additional SP1 Resources SP1 Installation and Deployment Guide The Microsoft Windows XP Service Pack 1 Installation and Deployment Guide provides instructions for administrators installing Service Pack 1 for Windows XP. This guide includes information for advanced users, technical details, procedures, and recommendations for successfully installing the service pack on multiple computers in a small business or corporate environment. Deployment Tools Download the Windows XP Corporate Deployment Tools (deploy. cab) for... --- ### Windows Update Problems - Error 0x800A138F - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/wu_problems_800a138f/ - Categories: Windows Server 2003 - Tags: Windows Update - Article Type: Overview Many users of Windows XP, Windows 2000 and Windows Server 2003 have had problems when trying to access the Windows Update site. Windows Update works fine scanning for updates, but when you choose to download and install them the page displays this happy error message: Windows Update has encountered an error and cannot display the requested page. 0x800A138F BTW, this error is not the only error message one might receive while trying to scan, download or install Hotfixes from the Windows Update site. Here is my current list of other Windows Update error codes and their respective solutions: Windows Update Problems - Error 0x8007007E Windows Update Problems - Error 0x80070485 The 0x800A138F error is actually a general error message, and many people get it when they visit Windows Update. But after the the MSBlast virus was unleashed a few months ago, Microsoft changed a few things at the main update website. This worm was expected to attack windowsupdate. com on the 16th of August 2003 by using a distributed denial of service attack (DDOS). To prevent this attack Microsoft made a few changes on the WU site. One of them was to use Akamai for additional bandwidth and this connectivity is exclusively using HTTPS (SSL) for the downloading of the update catalogue. It is since then that an escalation in the number of 0x800A138F error messages was reported. As stated in the previous paragraph, the 0x800A138F error is in fact a general error message. To get a clearer... --- ### How Router Interfaces get their names on Cisco Routers - Published: 2009-01-07 - Modified: 2009-01-07 - URL: https://petri.com/csc_how_router_interfaces_get_their_names_on_cisco_routers/ - Categories: Cisco - Article Type: Overview Why is your router’s Ethernet interface called Ethernet0/0 on one router but Ethernet 3/0 on another router? Where do these names come from? This article will explain how Cisco router interfaces get their names. Where do Router Interfaces get their names? Router interfaces get their names when the router boots.  A “device discovery” takes place and the names of the interfaces are generated based on a predicable method. On fixed interface routers (like the older 2500 series routers) the interfaces will always be the same. However, on newer routers like 2600, 3600, 3700, and 2800 series routers, interfaces can be modular. That means that the interfaces are cards (modules) that can be “plugged into” the router in different slots. Some of these interfaces are on WAN interface cards (WIC) and some are on Network Modules (NM). Other router interfaces will be built right onto the router. The newer model routers have different names for some of these slots like enhanced network modules (NME) and high-speed WIC (HWIC). However, for the purposes of naming the interfaces, the effect is the same. Interface Naming Conventions Cisco router interfaces are named with the following convention: Media-type slot#/port# The media type is Ethernet, FastEthernet, GigabitEthernet, Serial, Token-ring, or other media types. You must keep in mind that a 10Mb Ethernet interface is the only kind of Ethernet interface called Ethernet. A 100Mb Ethernet interface is called a FastEthernet interface and a 1000Mb Ethernet interface is called a GigabitEthernet interface. Now let’s... --- ### What you need to know about BGP routing protocol - Published: 2009-01-07 - Modified: 2024-11-19 - URL: https://petri.com/csc_what_is_bgp/ - Categories: Cisco - Article Type: Overview Perhaps you are thinking that you could care less about some routing protocol called BGP. Could it possibly have anything to do with your every day life? The answer is yes. BGP is the routing protocol of the Internet. BGP is how all Internet routers route your email and web requests across the Internet. Without BGP, no traffic would flow across the Internet and the Internet would be useless. Let’s learn about BGP... What is BGP? In the early days, the Internet used static routes, but very quickly network administrators couldn’t keep manually updating their routing tables. Later, Internet network admin’s used a protocol called EGP but EGP was not scaleable. BGP was introduced to solve all these problems and more. BGP stands for Border Gateway Protocol and the most current version is BGP4. BGP4 is based on RFC4271. BGP is a routing protocol (software) that runs on routers. BGP allows for fully decentralized management of the Internet. That means, if you have a BGP router on the Internet, you can tell all other routers what networks you have available to everyone in the world. BGP calls each routing domain an autonomous system (AS). BGP is called a path vector routing protocol and its main metric is “shortest AS path”. That means that it selects the best path, through the Internet, by choosing the route that has to traverse the fewest autonomous systems. Do I need to run BGP on my home or small business router? The... --- ### Controlling Access to Message Attachments Through OWA, Part 3 - Published: 2009-01-07 - Modified: 2024-12-03 - URL: https://petri.com/control-exchange-server-2007-attachments-through-owa-part-three/ - Categories: Exchange Server - Article Type: How To In the previous part of this article series, I showed you several different options for controlling how users are allowed to access attachments through OWA. In this article, I want to conclude the series by talking about a feature that’s new to Exchange Server 2007; Web Ready Document Viewing. What is Web Ready Document Viewing? If your users are accessing their mailbox through OWA, then you really don’t know where they are logged in from, or what the capabilities are of the machine that they are using. Web Ready Document Viewing allows you to ensure that users are able to open certain types of attachments, even if the application that is normally associated with those attachments is not installed. For example, I have a very strict policy of never taking my laptop with me on vacation. However, last year when I visited the Arctic, I knew that someone was going to be E-mailing me an article that I had to review so that it could be published in a certain issue of a magazine. Needless to say, cyber cafes are a little tough to come by in that part of the world, but I did eventually find one, and was able to get my E-mail. Fortunately, I had the foresight to enable Web Ready Document Viewing, and I was able to view the document through a Web browser. The Internet kiosk that I was using did not have Microsoft Office installed, and had it not been for Web Ready Document... --- ### Running More than 128 VMs on Windows Server 2008 Hyper-V - Published: 2009-01-06 - Modified: 2024-11-19 - URL: https://petri.com/running-more-than-128-vms-on-windows-server-2008-hyper-v/ - Categories: Windows Server 2008 - Article Type: Overview Microsoft's Hyper-V is a hypervisor-based technology that is a key feature of Windows Server 2008, and provides a scalable, reliable, and highly available virtualization platform. Hyper-V provides a great virtualization solution for many small, medium and large organizations. Some of the capabilities of Hyper-V include x64 host and guest support, ability to run guest machines in a multi-processor environment, large memory allocation per virtual machine, integrated virtual switch support, and ability to migrate virtual machines across hosts with minimal downtime. By default, Hyper-V is supported on physical computers with up to 16 logical processors. However, an update has been released that, after installation, will allow you to increases the limitation on the number of logical processors to 24. Note that a logical processor can be a core processor or a processor using hyper-threading technology. You can use Hyper-V to configure and use many virtual machines at the same time. The specific number depends on two factors. One factor is the available physical resources on the server running Hyper-V. With the appropriate physical resources, Hyper-V supports up to 128 virtual machines running at the same time. However, with this update, Hyper-V can support up to 192 virtual machines running at the same time. This update package includes the following improvements: The update package increases the limitation on the number of logical processors to 24. The previous limitation was 16. The update package increases the number of Hyper-V virtual machines that you can run per server to 192. The previous limitation was... --- ### How to Partition Your Hard Drive > This article details how to create a multiple partitions on any hard drive. These partitions can be used to separate data from the OS or install other operating systems. - Published: 2009-01-06 - Modified: 2024-12-03 - URL: https://petri.com/partition-hard-drive/ - Categories: Backup & Storage - Article Type: How To A hard drive partition can allow you to easily test out new operating systems (like Windows 7 beta) or create a simple way to separate your user data from the operating system install.   You can divide your hard drive into multiple partitions, some bootable, others not. The main reasons for having separate partitions are: to better organize your files to separate system files, log files, cache and virtual memory from data files and programs to create separate virtual drives for multiple operating systems • to protect or isolate groups of files to make data recovery easier Step 1: Download and Install Partition Commander To partition your hard drive, you’ll need a partitioning utility. We recommend Partition Commander from Avanquest (previously VCOM). You can Once you've downloaded the program, run the install with the default options. You’ll need to reboot when the installation is complete. Step 2: Start Partition Commander Select Create Partition and click the Create Partition option in the main screen: The Create New Partition Wizard will appear. Choose the Next button. Step 3: Select the hard drive where you would like to create the partition Partition Commander will let you select a hard drive where you would like to create your partition. In this example, there is only a single drive. Click the Next button once you’d selected your drive. Step 4: Set the size for the new partition. Drag the slider button to set the size for your new partition. Once... --- ### Cleaning Up Exchange 2003 Remnants, Part 2 - Published: 2009-01-06 - Modified: 2024-09-24 - URL: https://petri.com/cleaning-up-exchange-2003-remnants-part-2/ - Categories: Exchange Server - Article Type: How To In the previous article in this series, I talked about the importance of removing the routing group connectors prior to removing the last legacy Exchange Server from an organization. In this article, I want to conclude the series by showing you how to remove a routing group connector, and how to redirect the Recipient Update Service. Removing Routing Group Connectors Before you can remove the last Exchange 2003 server from your Exchange organization, you have to remove the routing group connector that connects your Exchange 2003 routing group to the Exchange 2007 routing group. The easiest way to accomplish this task is to use the Exchange System Manager. To do so, open the Exchange System Manager and navigate through the console tree to Administrative Groups | your administrative group | Routing Groups | First Routing Group | Connectors, as shown in Figure A. Now, simply right-click on the routing group connector and choose the Delete command from the shortcut menu. You will have to repeat this process for any other routing group connectors that may still exist. Figure A Right-click on a routing group connector, and choose the delete command to remove it. You also have the option of using the Exchange Management Shell to get rid of any remaining routing group connectors. To do so, you would use the Remove-RoutingGroupConnector command. The syntax for this command is: ​Remove-RoutingGroupConnector –Identity ] It can be a... --- ### Expanding Virtual Hard Disks with Hyper-V - Published: 2009-01-06 - Modified: 2009-01-06 - URL: https://petri.com/expanding-virtual-hard-disks-with-hyper-v/ - Categories: Hyper-V - Article Type: How To One of the most frequent questions I see on forums and newsgroups that deal with virtualization is the age-old question of "I have used all the space inside a VHD hard disk. How do I expand the virtual hard disk to make room for additional data? ". Luckily for us, with Microsoft Hyper-V on Windows Server 2008, this is now possible. Hyper-V now adds the ability to increase the maximum size of a virtual hard disk.   Expanding the disk increases the storage capacity of a dynamically expanding virtual hard disk or a fixed virtual hard disk. Before using the ability to expand the VHD hard disk you must take the following issues into consideration: You must first completely shut down the virtual machine. You cannot expand a virtual hard disk that is associated with a running or saved stated virtual machine. If you expand a virtual hard disk that is associated with a virtual machine that has snapshots, these snapshots will be invalidated. If you need the snapshots, you'd better make sure you plan ahead of time, and/or create new snapshots after performing the expansion of the hard disk.   Make sure no snapshots are associated with this VM.   After expanding the virtual hard disk there will be an empty space at the end of the virtual hard disk, just like not using the entire disk when you've originally created partitions in it.   You will either need to create a new partition to use the new space,... --- ### IPv6's Role in Windows Server 2008 > Windows Server 2008 now includes support for IPv6. This article provides an overview of IPv6 as it applies to Windows Server. - Published: 2009-01-05 - Modified: 2024-09-17 - URL: https://petri.com/introduction-ipv6-part-1/ - Categories: Windows Server 2008 - Article Type: Overview One of the biggest architectural changes in Windows Server 2008 is the inclusion of IPv6. IPv6 has been a part of Windows since Windows 2000, but Windows Server 2008 is the first version of Windows to enable IPv6 by default. Furthermore, The transport stack has been completely redesigned so that IPv6 and IPv4 are able to run parallel to each other, as shown in Figure A below. The fact that some Windows features will not even work without IPv6 proves that Microsoft sees IPv6 as the protocol of the future. Even so, IPv6 is a lot more complex than IPv4, and can be a bit intimidating to say the least. In this article series, I will introduce you to the basics of using IPv6. Figure A IPv4 and IPv6 run parallel to each other in the Network Layer of Windows 2008’s TCP/IP stack. IPv4 Addressing Although IPv6 addresses look nothing like IPv4 addresses, they do have their similarities. The biggest differences are that IPv4 addresses are 32 bits long, and IPv6 addresses are 128 bits long. Because of the excessive length of an IPv6 address, they are represented in an abbreviated form that will probably look completely foreign to anyone who has never used them before. Any time a seasoned network administrator sees an address like 192. 168. 1. 1, they instantly recognize it as an IPv4 address. This address contains four, eight bit numbers separated by periods. In order to understand how IPv6 addressing works, it is important to... --- ### Domain Controller Virtualization Options - Published: 2008-12-31 - Modified: 2024-09-17 - URL: https://petri.com/domain-controller-virtualization-options/ - Categories: Windows Server 2008 - Article Type: Overview One of the most frequent questions on virtualization forums that deal with server deployments is the question of how should one deploy their Active Directory domain controllers. Should they be deployed on stand-alone separate servers, should they be kept on separate physical servers, or should they be run inside virtual machines that are hosted on servers that are part of the same domain? Why do people struggle to find a solution to this question? Why is it a dilemma in the first place? Shouldn't domain controllers be just placed on regular physical servers, just like you used to do before the advent of virtualization products? A few days ago I bumped on a great blog entry written by Ben Armstrong – the Virtual PC Guy. Let me talk a bit about the options listed in his blog entry. So, what's the basic problem with domain controllers? Well, to make it short, it's basically the "What comes first? The egg or the hen? " dilemma. If you virtualize all of your servers, including the domain controllers, how do you handle the domain controllers which control the domain used by your Hyper-V servers?   What happens if a host server that hosts a virtual machine running a DC fails? What will happen if the VM itself fails? What will assure the continuity of your Active Directory in cases of a disaster? What's the best approach to virtualizing DCs? Basically, there are a few options that you can consider: Keep the root domain... --- ### RDP Security – Designing Terminal Server Security - Published: 2008-12-30 - Modified: 2024-09-24 - URL: https://petri.com/securing-rdp-remote-desktop-and-terminal-server-connections/ - Categories: Windows Server 2008 - Article Type: Overview Remotely accessing your servers and workstations through terminal services or RDP is an easy method of doing your job from a remote location, or gaining access to specific published applications that have been published on your servers. However, without properly investing in securing these types of RDP connections, you could be compromising the security and integrity of your servers, the data on them, and the services they're providing. Ever since I started working at ObserveIT (Remote Desktop RDP Session Auditor) - see my "My new job - VP Technologies for ObserveIT – Enterprise Scale Window Session Recording" article for some info on my new job - a company that provides IT and security managers to protect, secure, record and audit RDP and other types of remote access, I have received many emails and answered many forum posts regarding terminal server and RDP security. In this article I will summarize some of the most common security considerations you should take into account when designing your terminal server and RDP security. Terminal Server usage scenarios When planning for terminal server and RDP security we must take the terminal server usage scenario into consideration. While some terminal server and RDP deployment scenarios are created to allow full remote desktop capabilities, some allow full remote administration capabilities, while others only allow access to a specific list of line of business applications. Every scenario might pose additional security risks and thus require us to make additional changes to our security design. Terminal... --- ### Synchronize Outlook PST Files on Your Desktop & Notebook PCs - Published: 2008-12-29 - Modified: 2024-09-17 - URL: https://petri.com/synchronizing_outlook_on_desktop_and_notebook/ - Categories: Office - Article Type: How To In the past year notebooks have outsold desktop computers for the first time. If you have Outlook both on your Desktop computer and on your notebook (or netbook), then you’ll want to have the same e-mails, contacts and calendars and both machines. This article provides a step-by-step tutorial on how to do exactly that with the Outlook synchronization software Easy2Sync for Outlook. Quick Outlook Sync Setup: Creating a New Task First Step: Grab the Easy2Sync download here and install per the setup screens. In Easy2Sync’s terms, a task stores the information what you want to synchronize. To create a new task, click the "New" button and choose "New task". Click "Next". You’ll see this screen: Normally you’ll want to use the "Synchronize", so you can just click "Next". The other modes can be useful if you want to create a backup or merge multiple calendars into one. In the next step, you can specify which data you want to synchronize: If you want to synchronize your entire default PST file, just click "Next". To sync a different PST file, click on the drop-down menu in the upper right corner and choose the right one. If you want to synchronize only a part of the file (like the contacts folder), then simply click on that folder in the tree view. The next step depends on how your computers are connected. The most convenient way is to use your local network, so let’s choose that: The next step has to be done... --- ### Windows XP SP1/SP1a Deployment Info - Published: 2008-12-25 - Modified: 2024-12-03 - URL: https://petri.com/windows_xp_sp1-deployment_info/ - Categories: Windows Client OS - Article Type: Overview How do I deploy SP1? Service Pack 1 (SP1) includes installation files that you can extract from the XPsp1. exe file. This file contains all of the service pack binary files that have been updated for SP1; it also contains the Update. exe program file. XPsp1. exe is a self-extracting compressed file. You can extract all of the files it contains and proceed by using command-line options to determine the type of installation. For example, you can extract all of the files to a shared network folder and then use Update. exe to upgrade individual computers. If you run this program without command-line options, all of the SP1 files will be installed on the local computer, which is the default installation location. Command-Line Options for XPsp1. exe and Update. exe To deploy the service pack, you can run the XPsp1. exe program, which extracts the contents of the service pack. After this, the Update. exe program runs automatically to install the service pack. You can define the way these steps are completed by using the options explained in this section. The following table describes the command-line options that both the Update. exe and XPsp1. exe programs support. You include the options you want to use when you enter the command to extract files from XPsp1. exe. The options, which are passed to Update. exe, dictate the specifics of the installation process; they do not, however, affect the way the files are extracted. All of the options listed in the table include a forward slash (/), but you can use a hyphen (-)... --- ### A Word about Working with GPOs and Terminal Servers - Published: 2008-12-23 - Modified: 2024-09-24 - URL: https://petri.com/a_word_about_working_with_gpos_and_ts/ - Categories: Active Directory (AD) - Article Type: Overview A word about working with Group Policy Objects (GPOs) and Terminal Servers Recently I had a long conversation with one of my clients about the proper way for using GPOs. I think my readers could benefit from the stuff that was said there. Naturally, the client's name and details are not an issue and are not disclosed, what matters is the essence of the conversation. The client wanted to have a GPO for locking users' settings on some Terminal Servers machines. He wanted to have the settings apply to any user that logs on to the TS, while the Administrators group should not receive the same settings. I had suggested that he create an OU for the TS servers and place them inside: Then, create an OU for the users, and place them inside: Now comes the tricky part - creating the right GPO for the users, and configuring it to apply to the TS servers. A GPO has two parts - the Computer Settings part and the Users Settings part, as you can see from the following screenshot: Some of the settings that control the user's ability to perform actions such as shutting down the server, accessing a floppy, getting access to the Control Panel, the Run command and others are all part of the User Settings half of the GPO. Whenever a user logs on to a computer that is in the same OU as the user object then both parts of the GPO are... --- ### Recommended 3rd-Party VMware ESX Server Tools > This free article outlines six excellent tools for use with VMware ESX Server installations. Optimization and more. - Published: 2008-12-23 - Modified: 2008-12-23 - URL: https://petri.com/3rd-party-tools-available-esx-server/ - Categories: VMware - Article Type: Opinion With the growing popularity of VMware Infrastructure & ESX Server, there are an ever growing number of 3rd party tools available for ESX Server. In this article, we will provide a list of ESX 3rd party tools you should consider as add-ons for your ESX Servers. Take a look... What applications do I get with VMWare ESX Server? I have had a number of people ask me what is really included when you buy VMware ESX Server. Well, just like most of the answers to performance questions with ESX server, the answer is "it depends". In this case, it depends on what package of VMware Infrastructure you bought when you bought VMware ESX Server. Here are the packages available and what they come with: Starter Standard Enterprise ESX Server X X X Virtual SMP X X VMotion X VMware HA X VMware DRS X VMware Consolidated Backup (VCB) X In all cases, VMware Virtual Center Management Server is a separately licensed product. While none of these are "third party" products, it is first important to know what you have before you start investing money in other options. VMware ESX 3rd Party Add-on Tools Now let's get to the meat of this article and cover all of the third-party products for VMware ESX I could locate. Here is the list: Vizioncore - Vizioncore offers vRanger, vMigrator, vCharter, and vReplicator. vRanger (formerly ESX Ranger) is a popular backup application for VMware ESX Server. vMigrator is a P2V conversion application,... --- ### 5 Critical VMware ESX CLI Network Troubleshooting Commands > Five essential commands for troubleshooting VMWare ESX based networks. This free article provides a description of each command and its use. - Published: 2008-12-23 - Modified: 2008-12-23 - URL: https://petri.com/5-critical-vmware-esx-cli-network-commands/ - Categories: VMware - Article Type: Overview Have you ever made a change to your VMware ESX Server Network configuration using the Virtual Infrastructure (VI) Client and then lost communications with the server? If you had to go to the ESX Service console to troubleshoot the virtual network configuration, would you know the commands to do it? In this article, you will learn the 5 most critical ESX CLI commands you need to know to troubleshoot networking issues. #1) service network restart The service X restart command is an excellent command that allows you to restart any service running on your ESX Server. In our case, we are using the network keyword to restart network services. This is the command you should run after making changes to your ESX networking configuration. You can also do network start or network stop. This brings down all network interfaces, then brings up the interfaces configured to start at boot. Here is an example of what it looks like an an ESX Server:   #2) ifconfig The second command is ifconfig. Similar to the Windows command, ipconfig, this command is used to view the status of all network interfaces on the system. However, it can do a lot more than just view an interface, it can reconfigure interfaces, bring them down, or back up. You can change the IP address of your interfaces with ifconfig. Here is an example of what it looks like an an ESX Server:   #3) esxcfg-vswif Next, we have... --- ### Five Ways to Administer a VMware ESX Server > This free article outlines five methods for the administration of VMware ESX server installations. - Published: 2008-12-23 - Modified: 2008-12-23 - URL: https://petri.com/5_ways_to_adminster_esx_server/ - Categories: VMware - Article Type: Overview VMware ESX server is an amazing and complex product. It combines a Linux Service console with the power to run multiple virtual machine operating systems, all on the same server. There are a number of ways to administer ESX. Perhaps you are considering VMware ESX server or maybe you have it installed but want to learn more about administering it. Either way, this article is for you. Let's find out the 5 different ways you can administer a VMware ESX Server. 1. Console access to the Service Console Just like any other operating system, you can access the console of the VMware ESX Server. From the console, you can access a Linux login prompt that to the ESX Service Console. What you won't get is any kind of GUI interface. To use this form of management for your ESX server, you will have to have a good knowledge of Linux as well as some of the proprietary VMware ESX commands and terminology. Normally, the console of an ESX server looks like this:   If you press Alt-F1, you can get access to the Linux login prompt of the ESX service console and login to a command prompt, like this:   The disadvantages to this mode is 1) you must be at the console (or connect using an IP KVM) and 2) you must know Linux to accomplish your task (no GUI). 2. SSH to the Service Console You can SSH to the console... --- ### Using CSVDE and LDIFDE to Export Information from Active Directory Snapshots in Windows Server 2008 - Published: 2008-12-17 - Modified: 2024-11-19 - URL: https://petri.com/using-csvde-ldifde-export-active-directory-snapshots-windows-server-2008/ - Categories: Windows Server 2008 - Article Type: Overview   As described in the previous articles in this series, Active Directory snapshots in Windows Server 2008 allow an administrator to create snapshots of the Active Directory database. By using them, you can view the data inside such a snapshot and use it to restore or inspect data without the need to start the server in Directory Services Restore Mode. These snapshots can be stored on the local hard disk of the Domain Controller (DC), or moved to an offline type of storage. You can read more about this topic on my "Working with Active Directory Snapshots in Windows Server 2008", "Automating the Creation of Active Directory Snapshots" and "Exporting Information from Active Directory Snapshots in Windows Server 2008" articles. In order to remind you let me briefly go over the process of creating and using the AD snapshot: Either manually create or schedule a task that regularly runs NTDSUTIL to take snapshots of the volume that contains the AD DS database. Run NTDSUTIL to list the snapshots that are available, and mount the snapshot that you want to view. Run DSAMAIN to expose the snapshot volume as an LDAP server. A previous article described how to use a GUI-based tool such as DSA. msc, LDP. exe or ADSIEDIT. msc to attach to the snapshot’s LDAP port that you specified when you exposed the snapshot as an LDAP server. This article will walk you through the steps of using 2 command prompt-based tools: LDIFDE and CSVDE to export information from... --- ### Understanding Windows Server 2008 Server Core > Introduced in Windows Server 2008, Server Core is a low-footprint way to install your server OS. This article explains why Server Core is such a big deal for system administrators. - Published: 2008-09-30 - Modified: 2008-09-30 - URL: https://petri.com/understanding-windows-server-2008-server-core/ - Categories: Windows Server 2008 - Article Type: Overview Introduced in Windows Server 2008, Server Core is a low-footprint way to install your server OS. This article explains why Server Core is such a big deal for system administrators. One of the most exciting new features of Windows Server 2008 is its ability to install as a Server Core machine.   A Server Core installation provides a minimal environment for running specific server roles, which reduces the maintenance and management requirements and the attack surface for those server roles. A server running a Server Core installation supports the following server roles:   Active Directory Domain Services (AD DS) Active Directory Lightweight Directory Services (AD LDS) DHCP Server DNS Server File Services Print Services Streaming Media Services Internet Information Services (IIS) Windows Virtualization       In Windows Server 2008, Server Core installation does not include the traditional full graphical user interface (GUI). You can read more about how to locally and remotely manage Server Core machines by reading the list of articles available below.     This is, in a way, revolutionizing the way Microsoft is looking at GUI-based administration, a step enforced by other means such as Windows PowerShell and Microsoft Exchange Server 2007, all allowing strong command line management capabilities.   There are, alas, some GUI tools you might want to use in Server Core. Some of these include:   Task Manager:     Notepad (stripped down):     Time, Date, and Time Zone Control Panel applet:     Regional Settings Control Panel applet:     That's about it. The rest is all CLI and remote management.   What's new in the Server Core installation option?   The Server Core installation option of Windows... --- ### ESXi 4.0 - Installing In "Embedded" Mode > Full details on VMware ESXi 4.0 and it's enhanced support for installing in "embedded" mode, where the host server does not need any physical disks installed. - Published: 2008-09-28 - Modified: 2024-11-19 - URL: https://petri.com/installing-esxi4-in-embedded-mode/ - Categories: VMware - Tags: ESXi, ESXi embedded, ESXi SATA support, ESXi SD install, ESXi USB, Virtualization, vmware, vSphere - Article Type: Overview VMware ESXi 4.0 provides enhanced support for installing in "embedded" mode, so the host server does not need any physical disks installed. For vSphere Infrastructures utilizing SAN storage this allows diskless operation, reducing hardware costs and improving boot times. In this article Tom Finnis demonstrates how to do this with Hewlett Packard's new G6 series servers using their built-in SD card slot. Starting with ESX 3. 0 VMware began issuing an alternative ESXi version, the main difference being that the Linux Service Console was removed (although in fact it was not completely removed - see my blog here to see how you can still access it). This greatly reduced the overall size of the installation from around 2GB down to only 300MB, with the additional benefits of dramatically cutting boot times  and improving security. Another advantage was that it could also now be installed on a USB storage device and as a result several server manufacturers started to include an internal USB slot for this purpose. On their new G6 range of servers Hewlett-Packard have extended this to give owners a choice of USB or SD Card media slots integrated onto the motherboard: Mainboard layout of an HP DL380 G6 Installing on Embedded Media First of all you need to prepare your server, and as usual I recommend ensuring the BIOS and hardware firmwares are all up to date - HP provide a downloadable firmware CD ISO which is regularly updated, although you should also check the specific support page for your server model for interim updates. Dell operate an even simpler system whereby you can just enter the "Service Tag" for your server in order to see the available updates, and most major manufacturers do something similar. Nowadays BIOS and firmware updates are easy to install as most are supplied on bootable media with graphical... --- ### ARP cache: What is it and how can it help you? - Published: 2008-02-18 - Modified: 2008-02-18 - URL: https://petri.com/csc_arp_cache/ - Categories: Networking - Article Type: Overview What is ARP? The Address Resolution Protocol (or ARP) is a very important part of IP networking. ARP is used to connect OSI Layer 3 (Network) to OSI Layer 2 (Data-Link). For most of us, that means that ARP is used to link our IP addressing to our Ethernet addressing (MAC Addressing). For you to communicate with any device on your network, you must have the Ethernet MAC address for that device. If the device is not on your LAN, you go through your default gateway (your router). In this case, your router will be the destination MAC address that your PC will communicate with. What is an ARP Cache? There are two types of ARP entries- static and dynamic. Most of the time, you will use dynamic ARP entries. What this means is that the ARP entry (the Ethernet MAC to IP address link) is kept on a device for some period of time, as long as it is being used. The opposite of a dynamic ARP entry is static ARP entry. With a static ARP entry, you are manually entering the link between the Ethernet MAC address and the IP address. Because of management headaches and the lack of significant negatives to using dynamic ARP entries, dynamic ARP entries are used most of the time. So how is the dynamic ARP entry created? The answer is that the ARP protocol is used. Let's say that a PC wants to communicate with host Myserver. Bluecrabfood. com. Before it can do that,... --- ### Windows Vista Training & Tutorials for IT Admins > Hundreds of free articles covering Windows Vista for IT Administrators. Deployment, security, tips, and more are covered. - Published: 2008-01-23 - Modified: 2024-12-03 - URL: https://petri.com/vista_tips/ - Categories: Windows Vista - Tags: Editor's Pick - Article Type: Overview This page contains a collection of tweaking tips & tricks, articles and how-to guides, all related to Windows Vista.   Recommended Reading: Disable User Account Control (UAC) in Windows Vista Although UAC clearly improves the security on Windows Vista, under some scenarios you might want to disable it, for example when giving demos in front of an audience (demos that are not security related, for example). This article details how to do just that. More... Forgot the Administrator's Password? Learn how to access your computer without it. If you need to gain access to a computer and cannot remember the administrator's password, this article details a number of ways you can get around the issue. More... Advanced Drag-and-Drop Techniques in Vista Dragging-and-dropping has been a part of the Windows operating system for a long time. Knowing what drag-and-drop does in each scenario is beneficial to the user’s productivity and ease of use. This article details some advanced drag and drop techniques you should know. More...   Further Reading: Extending the System Partition in Windows 7 Transfer User Files and Settings from Windows XP/Vista to Windows 7 Windows Recovery Environment (RE): The Solution When A Computer Won't Boot Quick Tip: How to Create a Network Connections Shortcut in Windows 7, Server 2008 and Vista Too! Evolution of Windows Firewall: Windows 7 Evolution of Windows Firewall: Windows Vista Firewall Evolution of Windows Firewall: Windows XP with SP2 Evolution of Windows Firewall: Windows XP Tools for... --- ### Tweaking Windows Vista so it can run a bit faster - Published: 2008-01-21 - Modified: 2024-12-03 - URL: https://petri.com/tweaking_window_vista_performance/ - Categories: Windows Vista - Article Type: How To I decided to write this article after I bought myself a brand new, state of the art, laptop from Dell. I'm talking about 2. 33 GHz Core Duo, 4 GB of fast RAM, a 7200 RPM SATA hard disk, and all the other necessary hardware. And yet, when I booted up the pre-installed Windows Vista Ultimate edition, it was so painfully slow.   After poking around and investigating for awhile I found a few tweaks that have dramatically improved performance for me. The Aero Theme If you read my "Aero Theme is bad, disable it" article (insert link) you will understand why the Aero Theme is bad for your computer's resource usage, if you haven't gotten that insight yourself already. Disabling the Aero theme is easy, however Microsoft went through some hoops to make you look for the option. Once you know where it is it's easy. Right-click an empty spot on your desktop and click Personalize. Click on the Window Color and Appearance link. Click on the "Open classic appearance properties for more color options" link. BTW, you can also run the following command from the Run option in the Start menu: "C:Windowssystem32rundll32. exe" Shell32. dll,Control_RunDLL desk. cpl,Appearance,@Appearance Next, select any of the available themes, such as the Windows Classic theme. If you need to reserve as much system resources as possible in order to run other applications or services, Aero is bad for you. Lose it. The Aero theme has another “undocumented” feature you might want to consider. If you’re using Vista on... --- ### Acunetix Web Vulnerability Scanner Version 3.0 Combats Rise in “Google Hacking” Attacks - Published: 2005-11-22 - Modified: 2024-11-19 - URL: https://petri.com/acunetix_web_vulnerability_scanner/ - Categories: Security - Article Type: Review Seattle, Washington - November 21, 2005 – Acunetix, a leading security software company focused exclusively on helping enterprises secure their web applications and web sites, today announced the next-generation version of  Acunetix Web Vulnerability Scanner, which provides a comprehensive solution to detecting system vulnerabilities that are frequently exploited by hackers. Acunetix Web Vulnerability Scanner provides a complete solution by automatically auditing website security. The software crawls an entire website, launches popular web attacks (SQL Injection, Cross Site scripting, Google hacking, etc. ) and identifies vulnerabilities that need to be fixed. The Achilles Heel in Enterprise Security Strategies: Web Applications Increasingly, hackers are concentrating their efforts on web-based applications - shopping carts, forms, login pages, and dynamic content. A Gartner Group study determined that 75% of cyber attacks are done at the web application level. Web applications are accessible 24 hours a day, 7 days a week and are a passageway to valuable data: customer and employee databases, transaction information and proprietary corporate data. Many enterprises have addressed network security issues and have implemented firewall technology but have not yet protected their “crown jewels” – data that can be compromised via web application hacks. The first reported instance of a Web application attack was perpetrated in 2000. While making online transactions with a large bank, a 17 year-old Norwegian boy noticed that the URLs of the pages he was viewing displayed his account number as one of the parameters. He substituted his account number with the account numbers of random bank customers... ---